1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

outrate redirect virus

Discussion in 'Virus & Other Malware Removal' started by pendle, Jan 7, 2013.

Thread Status:
Not open for further replies.
Advertisement
  1. pendle

    pendle Thread Starter

    Joined:
    Jan 7, 2013
    Messages:
    8
    Hi

    I am not a techie but yours seems to be the only site offering help on this one. I think I have just picked up outrate.co.uk redirect virus. (and I have been sent to drugsnews as well if that is similar). It seems to be this that has also caused a problem with Microsoft Security essentialsl as well, MSE seems to be working but from my user account I cannot open it up to do a scan. Trying to open it just gets the page to flash on the screen but not stay for long enough to do anything. Another user account on this computer is working Ok and I am doing a full scan on that at the moment. But is there an simple way to get rid of that redirect virus. I am using windows 7.
     
  2. dvk01

    dvk01 Moderator Malware Specialist

    Joined:
    Dec 14, 2002
    Messages:
    56,452
    First Name:
    Derek
    follow advice here and post the logs those programs make
     
  3. pendle

    pendle Thread Starter

    Joined:
    Jan 7, 2013
    Messages:
    8
    Before I attempt the steps described the current situation is that the full scan by Microsoft Security Essentials found 2 severe threats.
    VirTool:Win32/Obfuscator.XG which has been quarantined and
    Rogue:Win32/FakePAV which was removed

    What I am not sure about is exactly what that has fixed, ie is the main corruption from the redirect virus now eliminated.

    But although the MSE works as expected on the second user on this machine, on my account it will still not open properly although when trying to open it I can see it flash onto the screen long enough to see it shows in green.
     
  4. pendle

    pendle Thread Starter

    Joined:
    Jan 7, 2013
    Messages:
    8
    Here are the reports
    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 10:32:18, on 08/01/2013
    Platform: Windows 7 SP1 (WinNT 6.00.3505)

    MSIE: Internet Explorer v9.00 (9.00.8112.16457)

    Boot mode: Normal



    Running processes:

    C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

    C:\Windows\SysWOW64\rundll32.exe

    C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe

    C:\Program Files (x86)\Dell Webcam\Dell WebcamCentral\WebcamDell2.exe

    C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe

    C:\Program Files (x86)\Garmin\LifetimeUpdater\GarminLifetime.exe

    C:\Program Files (x86)\Internet Explorer\iexplore.exe

    C:\Program Files (x86)\Internet Explorer\iexplore.exe

    C:\Program Files (x86)\Internet Explorer\iexplore.exe

    C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.exe

    C:\Users\colinfoot\Desktop\HijackThis.exe



    R1 - HKCU\Software\Microsoft\InternetExplorer\Main,Default_Page_URL = http://g.uk.msn.com/USCON/2

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchPage = http://go.microsoft.com/fwlink/?LinkId=54896

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,StartPage = http://www.bbc.co.uk/news/

    R1 - HKLM\Software\Microsoft\InternetExplorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

    R1 - HKLM\Software\Microsoft\InternetExplorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchPage = http://go.microsoft.com/fwlink/?LinkId=54896

    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,StartPage = http://go.microsoft.com/fwlink/?LinkId=69157

    R0 - HKLM\Software\Microsoft\InternetExplorer\Search,SearchAssistant =

    R0 - HKLM\Software\Microsoft\InternetExplorer\Search,CustomizeSearch =

    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,LocalPage = C:\Windows\SysWOW64\blank.htm

    R0 - HKCU\Software\Microsoft\InternetExplorer\Toolbar,LinksFolderName =

    F2 - REG:system.ini: UserInit=userinit.exe

    O2 - BHO: AcroIEHelperStub -{18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\CommonFiles\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

    O2 - BHO: Search Helper -{6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files(x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

    O2 - BHO: Java(tm) Plug-In SSV Helper -{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files(x86)\Java\jre7\bin\ssv.dll

    O2 - BHO: Windows Live ID Sign-in Helper -{9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\CommonFiles\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

    O2 - BHO: Google Toolbar Helper -{AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\GoogleToolbar\GoogleToolbar_32.dll

    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9}- C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

    O3 - Toolbar: (no name) -{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)

    O3 - Toolbar: Google Toolbar -{2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\GoogleToolbar\GoogleToolbar_32.dll

    O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files(x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe"

    O4 - HKLM\..\Run: [Dell Webcam Central] "C:\ProgramFiles (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2

    O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files(x86)\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter

    O4 - HKLM\..\Run: [Desktop Disc Tool] "C:\Program Files(x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"

    O4 - HKLM\..\Run: [Garmin Lifetime Updater] C:\Program Files(x86)\Garmin\Lifetime Updater\GarminLifetime.exe /StartMinimized

    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\ProgramFiles (x86)\Common Files\Java\Java Update\jusched.exe"

    O4 - HKCU\..\Run: [swg] "C:\Program Files(x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files(x86)\Windows Live\Messenger\msnmsgr.exe" /background

    O4 - HKCU\..\Run: [Rzkconrx] rundll32"C:\Users\colinfoot\AppData\Roaming\mlangb.dll",Ekdre

    O4 - .DEFAULT User Startup: Dell Dock First Run.lnk =C:\Program Files\Dell\DellDock\DellDock.exe (User 'Default user')

    O4 - Startup: Dell Dock.lnk = C:\ProgramFiles\Dell\DellDock\DellDock.exe

    O8 - Extra context menu item: E&xport to Microsoft Excel- res://C:\PROGRA~2\MIF5BA~1\Office12\EXCEL.EXE/3000

    O8 - Extra context menu item: Google Sidewiki... -res://C:\Program Files (x86)\Google\GoogleToolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html

    O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004- {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\WindowsLive\Writer\WriterBrowserExtension.dll

    O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\WindowsLive\Writer\WindowsLiveWriterShortcuts.dll,-1003 -{219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\WindowsLive\Writer\WriterBrowserExtension.dll

    O9 - Extra button: Send to OneNote -{2670000A-7350-4f3c-8081-5663EE0C6C49} -C:\PROGRA~2\MIF5BA~1\Office12\ONBttnIE.dll

    O9 - Extra 'Tools' menuitem: S&end to OneNote -{2670000A-7350-4f3c-8081-5663EE0C6C49} -C:\PROGRA~2\MIF5BA~1\Office12\ONBttnIE.dll

    O9 - Extra button: Research -{92780B25-18CC-41C8-B9BE-3C9C571A8263} -C:\PROGRA~2\MIF5BA~1\Office12\REFIEBAR.DLL

    O10 - Unknown file in Winsock LSP: c:\program files(x86)\common files\microsoft shared\windows live\wlidnsp.dll

    O10 - Unknown file in Winsock LSP: c:\program files(x86)\common files\microsoft shared\windows live\wlidnsp.dll

    O11 - Options group: [ACCELERATED_GRAPHICS] Acceleratedgraphics

    O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTimePlugin Control) -http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab

    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (ShockwaveFlash Object) -http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} -http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

    O18 - Protocol: wlpg -{E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\WindowsLive\Photo Gallery\AlbumDownloadProtocolHandler.dll

    O23 - Service: Adobe Flash Player Update Service(AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated -C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

    O23 - Service: Andrea RT Filters Service (AERTFilters) -Andrea Electronics Corporation - C:\ProgramFiles\Realtek\Audio\HDA\AERTSr64.exe

    O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) -Unknown owner - C:\Windows\System32\alg.exe (file missing)

    O23 - Service: Dock Login Service (DockLoginService) -Stardock Corporation - C:\Program Files\Dell\DellDock\DockLogin.exe

    O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS)- Unknown owner - C:\Windows\System32\lsass.exe (file missing)

    O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax)- Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

    O23 - Service: Google Update Service (gupdate) (gupdate) -Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

    O23 - Service: Google Update Service (gupdatem) (gupdatem) -Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

    O23 - Service: Google Software Updater (gusvc) - Google -C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

    O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner -C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: Intel(R) Management and Security ApplicationLocal Management Service (LMS) - Intel Corporation - C:\Program Files(x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

    O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner -C:\Windows\System32\msdtc.exe (file missing)

    O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102(Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: @%systemroot%\system32\psbase.dll,-300(ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (filemissing)

    O23 - Service: @%systemroot%\system32\Locator.exe,-2(RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs)- Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3(SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

    O23 - Service: @%systemroot%\system32\spoolsv.exe,-1(Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101(sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

    O23 - Service: TurboBoost - Intel(R) Corporation -C:\Program Files\Intel\TurboBoost\TurboBoost.exe

    O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101(UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

    O23 - Service: Intel(R) Management & SecurityApplication User Notification Service (UNS) - Intel Corporation - C:\ProgramFiles (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

    O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003(VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) -Unknown owner - C:\Windows\System32\vds.exe (file missing)

    O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) -Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

    O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601(WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (filemissing)

    O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine)- Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

    O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) -Unknown owner - C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE

    O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110(wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (filemissing)

    O23 - Service: Windows Media Player Network Sharing Service(WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows MediaPlayer\wmpnetwk.exe (file missing)



    --

    End of file - 10314 bytes





    DDS (Ver_2012-11-20.01) - NTFS_AMD64

    Internet Explorer: 9.0.8112.16457 BrowserJavaVersion: 10.9.2

    Run by colinfoot at 10:34:17 on 2013-01-08

    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.3893.2298 [GMT0:00]

    .

    AV: Microsoft Security Essentials *Enabled/Updated*{B140BF4E-23BB-4198-90AB-A51A4C60A69C}

    SP: Microsoft Security Essentials *Enabled/Updated*{0A215EAA-0581-4E16-AA1B-9E6837E7EC21}

    SP: Windows Defender *Disabled/Outdated*{D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

    .

    ============== Running Processes ===============

    .

    C:\Windows\system32\lsm.exe

    C:\Windows\system32\svchost.exe -k DcomLaunch

    C:\Windows\system32\svchost.exe -k RPCSS

    C:\Program Files\Microsoft Security Client\MsMpEng.exe

    C:\Windows\System32\svchost.exe -kLocalServiceNetworkRestricted

    C:\Windows\System32\svchost.exe -kLocalSystemNetworkRestricted

    C:\Windows\system32\svchost.exe -k netsvcs

    C:\Windows\system32\svchost.exe -k LocalService

    C:\Program Files\Dell\DellDock\DockLogin.exe

    C:\Windows\system32\svchost.exe -k NetworkService

    C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE

    C:\Windows\system32\WLANExt.exe

    C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwltry.exe

    C:\Windows\System32\spoolsv.exe

    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

    C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe

    C:\Windows\system32\svchost.exe -kLocalServiceAndNoImpersonation

    C:\Program Files (x86)\Intel\Intel(R) Management EngineComponents\LMS\LMS.exe

    C:\Windows\system32\svchost.exe -k imgsvc

    C:\Program Files\Common Files\Microsoft Shared\WindowsLive\WLIDSVC.EXE

    C:\Program Files\Common Files\Microsoft Shared\WindowsLive\WLIDSvcM.exe

    C:\Program Files\Microsoft Security Client\NisSrv.exe

    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

    C:\Windows\system32\taskhost.exe

    C:\Windows\system32\taskeng.exe

    C:\Windows\system32\Dwm.exe

    C:\Windows\Explorer.EXE

    C:\Program Files (x86)\Uniblue\SpeedUpMyPC\spmonitor.exe

    C:\Program Files\DellTPad\Apoint.exe

    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

    C:\Windows\System32\igfxtray.exe

    C:\Windows\System32\hkcmd.exe

    C:\Windows\System32\igfxpers.exe

    C:\Program Files\Dell\QuickSet\quickset.exe

    C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRAY.EXE

    C:\Windows\system32\igfxsrvc.exe

    C:\Program Files(x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

    C:\Windows\system32\wbem\wmiprvse.exe

    C:\Windows\System32\rundll32.exe

    C:\Program Files\Dell\DellDock\DellDock.exe

    C:\Windows\SysWOW64\rundll32.exe

    C:\Program Files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe

    C:\Program Files (x86)\Dell Webcam\Dell WebcamCentral\WebcamDell2.exe

    C:\Program Files\DellTPad\ApMsgFwd.exe

    C:\Program Files\DellTPad\Apntex.exe

    C:\Program Files\DellTPad\HidFind.exe

    C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe

    C:\Program Files (x86)\Garmin\LifetimeUpdater\GarminLifetime.exe

    C:\Windows\system32\SearchIndexer.exe

    C:\Windows\System32\svchost.exe -k LocalServicePeerNet

    C:\Program Files\Windows Media Player\wmpnetwk.exe

    C:\Program Files (x86)\Internet Explorer\iexplore.exe

    C:\Program Files (x86)\Internet Explorer\iexplore.exe

    C:\Program Files (x86)\Internet Explorer\iexplore.exe

    C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_5_502_135_ActiveX.exe

    C:\Windows\system32\svchost.exe -k SDRSVC

    C:\Program Files (x86)\Intel\Intel(R) Management EngineComponents\UNS\UNS.exe

    C:\Windows\system32\taskeng.exe

    C:\Windows\System32\jusched.exe

    C:\Windows\sysWOW64\wbem\wmiprvse.exe

    C:\Windows\system32\taskhost.exe

    C:\Windows\system32\SearchProtocolHost.exe

    C:\Windows\SysWOW64\NOTEPAD.EXE

    C:\Windows\splwow64.exe

    C:\Program Files\Microsoft Security Client\MpCmdRun.exe

    C:\Windows\system32\wbem\wmiprvse.exe

    C:\Windows\System32\cscript.exe

    .

    ============== Pseudo HJT Report ===============

    .

    uStart Page = hxxp://www.bbc.co.uk/news/

    mWinlogon: Userinit = userinit.exe

    BHO: Adobe PDF Link Helper:{18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\CommonFiles\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

    BHO: Search Helper: {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SearchHelper\SEPsearchhelperie.dll

    BHO: Java(tm) Plug-In SSV Helper:{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files(x86)\Java\jre7\bin\ssv.dll

    BHO: Windows Live ID Sign-in Helper:{9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\CommonFiles\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

    BHO: Google Toolbar Helper:{AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\GoogleToolbar\GoogleToolbar_32.dll

    BHO: Java(tm) Plug-In 2 SSV Helper:{DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files(x86)\Java\jre7\bin\jp2ssv.dll

    TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} -C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

    TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} -C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

    uRun: [swg] "C:\Program Files(x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

    uRun: [msnmsgr] "C:\Program Files (x86)\WindowsLive\Messenger\msnmsgr.exe" /background

    uRun: [Rzkconrx] rundll32"C:\Users\colinfoot\AppData\Roaming\mlangb.dll",Ekdre

    mRun: [PDVDDXSrv] "C:\Program Files(x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe"

    mRun: [Dell Webcam Central] "C:\Program Files(x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2

    mRun: [DellSupportCenter] "C:\Program Files (x86)\DellSupport Center\bin\sprtcmd.exe" /P DellSupportCenter

    mRun: [Desktop Disc Tool] "C:\Program Files(x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"

    mRun: [Garmin Lifetime Updater] C:\Program Files(x86)\Garmin\Lifetime Updater\GarminLifetime.exe /StartMinimized

    mRun: [SunJavaUpdateSched] "C:\Program Files(x86)\Common Files\Java\Java Update\jusched.exe"

    StartupFolder: C:\Users\COLINF~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\DELLDO~1.LNK- C:\Program Files\Dell\DellDock\DellDock.exe

    mPolicies-Explorer: NoActiveDesktop = dword:1

    mPolicies-Explorer: NoActiveDesktopChanges = dword:1

    mPolicies-System: ConsentPromptBehaviorAdmin = dword:5

    mPolicies-System: ConsentPromptBehaviorUser = dword:3

    mPolicies-System: EnableUIADesktopToggle = dword:0

    IE: E&xport to Microsoft Excel -C:\PROGRA~2\MIF5BA~1\Office12\EXCEL.EXE/3000

    IE: Google Sidewiki... - C:\Program Files(x86)\Google\GoogleToolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html

    IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} -{5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\WindowsLive\Writer\WriterBrowserExtension.dll

    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} -{48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\MicrosoftOffice\Office12\ONBttnIE.dll

    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} -{FF059E31-CC5A-4E2E-BF3B-96E929D65503}

    DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} -hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab

    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} -hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab

    DPF: {CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA} -hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_38-windows-i586.cab

    DPF: {CAFEEFAC-0017-0000-0007-ABCDEFFEDCBA} -hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_07-windows-i586.cab

    DPF: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA} -hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab

    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} -hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_38-windows-i586.cab

    DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} -hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

    DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} -hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

    TCP: NameServer = 192.168.1.1

    TCP: Interfaces\{E385C6AC-41CB-40E7-90AF-0BD1335B3706} :DHCPNameServer = 192.168.1.1

    TCP:Interfaces\{E385C6AC-41CB-40E7-90AF-0BD1335B3706}\358627567737265727970234F66666565686F6573756: DHCPNameServer = 192.168.1.254

    TCP:Interfaces\{E385C6AC-41CB-40E7-90AF-0BD1335B3706}\37568617 : DHCPNameServer =217.65.146.98 82.203.0.2

    TCP: Interfaces\{E385C6AC-41CB-40E7-90AF-0BD1335B3706}\458656023427561647966756023547574696F6: DHCPNameServer = 192.168.0.1

    TCP: Interfaces\{F0859355-4E81-421A-A5E5-29404C16BB34} :DHCPNameServer = 192.168.1.1

    Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} -C:\Program Files (x86)\Windows Live\PhotoGallery\AlbumDownloadProtocolHandler.dll

    SSODL: WebCheck - <orphaned>

    x64-BHO: Windows Live ID Sign-in Helper:{9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\CommonFiles\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

    x64-BHO: Google Toolbar Helper:{AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\GoogleToolbar\GoogleToolbar_64.dll

    x64-BHO: Java(tm) Plug-In 2 SSV Helper:{DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

    x64-TB: Google Toolbar:{2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\GoogleToolbar\GoogleToolbar_64.dll

    x64-Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe

    x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe-s

    x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe

    x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe

    x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe

    x64-Run: [QuickSet] C:\Program Files\Dell\QuickSet\QuickSet.exe

    x64-Run: [Broadcom Wireless Manager UI] C:\ProgramFiles\Dell\Dell Wireless WLAN Card\WLTRAY.exe

    x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files(x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

    x64-Run: [MSC] "C:\Program Files\Microsoft SecurityClient\msseces.exe" -hide -runkey

    x64-DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} -hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab

    x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} -hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab

    x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} -<orphaned>

    x64-Notify: igfxcui - igfxdev.dll

    x64-SSODL: WebCheck - <orphaned>

    .

    ============= SERVICES / DRIVERS ===============

    .

    R0 MpFilter;Microsoft Malware ProtectionDriver;C:\Windows\System32\drivers\MpFilter.sys [2012-8-30 228768]

    R0PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2011-9-17 55280]

    R2 AERTFilters;Andrea RT Filters Service;C:\ProgramFiles\Realtek\Audio\HDA\AERTSr64.exe [2009-10-9 92160]

    R2 DockLoginService;Dock Login Service;C:\ProgramFiles\Dell\DellDock\DockLogin.exe [2009-6-9 155648]

    R2 NisDrv;Microsoft Network InspectionSystem;C:\Windows\System32\drivers\NisDrvWFP.sys [2012-8-30 128456]

    R2 TurboB;Turbo Boost UI Monitor driver;C:\Windows\System32\drivers\TurboB.sys[2009-11-2 13784]

    R2 UNS;Intel(R) Management & Security Application UserNotification Service;C:\Program Files (x86)\Intel\Intel(R) Management EngineComponents\UNS\UNS.exe [2010-4-1 2320920]

    R3 CtClsFlt;Creative Camera Class Upper FilterDriver;C:\Windows\System32\drivers\CtClsFlt.sys [2010-4-1 172704]

    R3 HECIx64;Intel(R) Management EngineInterface;C:\Windows\System32\drivers\HECIx64.sys [2009-9-17 56344]

    R3 Impcd;Impcd;C:\Windows\System32\drivers\Impcd.sys[2009-10-26 151936]

    R3 IntcDAud;Intel(R) DisplayAudio;C:\Windows\System32\drivers\IntcDAud.sys [2009-9-26 233984]

    R3 NisSrv;Microsoft Network Inspection;C:\ProgramFiles\Microsoft Security Client\NisSrv.exe [2012-9-12 368896]

    R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys[2009-8-20 239616]

    S2 clr_optimization_v4.0.30319_32;Microsoft .NET FrameworkNGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe[2010-3-18 130384]

    S2 clr_optimization_v4.0.30319_64;Microsoft .NET FrameworkNGENv4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe[2010-3-18 138576]

    S3 RSUSBSTOR;RtsUStor.Sys Realtek USB CardReader;C:\Windows\System32\drivers\RtsUStor.sys [2009-7-17 220672]

    S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys[2011-6-9 59392]

    S3 TurboBoost;TurboBoost;C:\ProgramFiles\Intel\TurboBoost\TurboBoost.exe [2009-11-2 126352]

    S3 WatAdminSvc;Windows Activation TechnologiesService;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-8-5 1255736]

    .

    =============== Created Last 30 ================

    .

    2013-01-08 05:53:17 -------- d-----w- C:\Users\colinfoot\AppData\Local\{DE286C0D-D3B4-4889-B9F4-F04D2C6DA9B9}

    2013-01-07 22:48:07 -------- d-----w- C:\Users\colinfoot\AppData\Local\{839AD455-FA2A-4DB7-97B8-D3BBFE1211DD}

    2013-01-07 22:33:51 -------- d-----w- C:\Users\colinfoot\AppData\Local\{3A9C798C-5E36-4001-84F2-A9EF0C2BC69B}

    2013-01-07 14:59:46 972264 ----a-w- C:\ProgramData\Microsoft\MicrosoftAntimalware\Definition Updates\{A99C8876-0BA2-4C91-9F89-E1378B774BB4}\gapaengine.dll

    2013-01-07 14:59:42 9125352 ----a-w- C:\ProgramData\Microsoft\MicrosoftAntimalware\DefinitionUpdates\{B2274CE7-E91E-40F2-9007-E49A2B261866}\mpengine.dll

    2013-01-07 14:49:59 -------- d-----w- C:\ProgramFiles (x86)\Microsoft Security Client

    2013-01-07 14:49:55 -------- d-----w- C:\ProgramFiles\Microsoft Security Client

    2013-01-07 06:21:49 -------- d-----w- C:\Users\colinfoot\AppData\Local\{D9FB9DC9-0D36-4817-9C75-969DDB1E84F1}

    2013-01-06 10:29:41 -------- d-----w- C:\Users\colinfoot\AppData\Local\{FEE2D7DC-17EB-429C-BBDF-0BF472FC5E5D}

    2013-01-05 20:40:25 118784 --sha-r- C:\Users\colinfoot\AppData\Roaming\mlangb.dll

    2013-01-05 17:47:14 -------- d-----w- C:\Users\colinfoot\AppData\Local\{1C710112-80AB-4307-9A16-D92FA9702C10}

    2013-01-04 13:40:08 -------- d-----w- C:\Users\colinfoot\AppData\Local\{522FE25D-E8FB-455C-8816-F612E5891D77}

    2013-01-04 12:50:10 -------- d-----w- C:\Users\colinfoot\AppData\Local\{F24D0963-A1E9-4BA2-9E3D-F60C52A7937A}

    2013-01-03 21:37:32 -------- d-----w- C:\Users\colinfoot\AppData\Local\{62560E69-4FBF-4BBB-B6CF-7B28986A0AA9}

    2013-01-03 15:46:19 -------- d-----w- C:\Users\colinfoot\AppData\Local\{5EA2685A-ACEA-4BDD-91F4-0D556F853678}

    2013-01-03 06:25:46 -------- d-----w- C:\Users\colinfoot\AppData\Local\{9143EB38-AB6D-46AD-84FC-D76299F60C76}

    2013-01-02 11:20:13 -------- d-----w- C:\Users\colinfoot\AppData\Local\{A3A3CA63-5329-458E-B700-4C7C539F7D1C}

    2013-01-01 11:04:28 -------- d-----w- C:\Users\colinfoot\AppData\Local\{62B37EE0-01CE-4C4E-BAF3-7B745B860197}

    2012-12-31 09:32:01 -------- d-----w- C:\Users\colinfoot\AppData\Local\{62971C45-CEE4-413A-B261-96528E8BF770}

    2012-12-30 11:50:43 -------- d-----w- C:\Users\colinfoot\AppData\Local\{AEB60FC7-0CB9-4A28-8732-3937AE1FB305}

    2012-12-29 22:10:48 -------- d-----w- C:\Users\colinfoot\AppData\Local\{B5D2924B-0A63-4BC9-94BD-19D5310A8DA3}

    2012-12-29 06:47:03 -------- d-----w- C:\Users\colinfoot\AppData\Local\{557FD7DF-A145-4705-88DD-9C5DD11BE9BA}

    2012-12-28 06:59:35 -------- d-----w- C:\Users\colinfoot\AppData\Local\{07C077C2-2A7A-4BF0-B6D5-71FA65979598}

    2012-12-27 13:07:06 -------- d-----w- C:\Users\colinfoot\AppData\Local\{F0A91423-4A2B-4618-A43E-BC22E154B9E4}

    2012-12-26 12:32:38 -------- d-----w- C:\Users\colinfoot\AppData\Local\{2331B904-2351-48D0-AC9D-2C569031C644}

    2012-12-25 21:16:05 -------- d-----w- C:\Users\colinfoot\AppData\Local\{765C5505-96E6-4855-BF02-12AD991952B3}

    2012-12-25 06:38:40 -------- d-----w- C:\Users\colinfoot\AppData\Local\{5258AEF5-15D3-4F41-A2AA-89C069895C57}

    2012-12-24 19:18:12 -------- d-----w- C:\Users\colinfoot\AppData\Local\{80838728-678D-4389-AEDB-518C8FDF2705}

    2012-12-24 06:27:13 -------- d-----w- C:\Users\colinfoot\AppData\Local\{F41B8D14-1D36-4EB7-9B40-1A6B0E2108DA}

    2012-12-23 10:30:51 -------- d-----w- C:\Users\colinfoot\AppData\Local\{F6588CBE-7AAC-4F91-A159-DECC4FB8D7A2}

    2012-12-22 07:48:58 -------- d-----w- C:\Users\colinfoot\AppData\Local\{6DFDC068-B2BB-485D-882D-B17EFC476865}

    2012-12-21 12:44:07 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll

    2012-12-21 12:44:06 46080 ----a-w- C:\Windows\System32\atmlib.dll

    2012-12-21 12:44:06 367616 ----a-w- C:\Windows\System32\atmfd.dll

    2012-12-21 12:44:06 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll

    2012-12-21 11:45:18 -------- d-----w- C:\Users\colinfoot\AppData\Local\{DD69670F-8E16-450D-87C3-06BB9F3EF773}

    2012-12-20 18:51:46 -------- d-----w- C:\Users\colinfoot\AppData\Local\{9B202130-A177-4942-BD4C-1AA5A6D78631}

    2012-12-20 16:00:33 -------- d-----w- C:\Users\colinfoot\AppData\Local\{9EFF3074-46C3-403F-968E-8D96EA2D2365}

    2012-12-19 17:51:17 -------- d-----w- C:\Users\colinfoot\AppData\Local\{803051D2-B536-42AA-ACAF-79C074B02653}

    2012-12-19 05:45:49 -------- d-----w- C:\Users\colinfoot\AppData\Local\{1B508E28-D50C-4802-AC60-645E4CD521B4}

    2012-12-18 12:41:26 -------- d-----w- C:\Users\colinfoot\AppData\Local\{7D23B033-488D-463A-95D7-445AD9C8FC72}

    2012-12-17 21:22:14 -------- d-----w- C:\Users\colinfoot\AppData\Local\{6B5B75D8-9B0C-4540-A7BB-C3E412B56643}

    2012-12-17 05:48:17 -------- d-----w- C:\Users\colinfoot\AppData\Local\{D8B9A854-7A97-49BC-9177-F4F893EC8A8E}

    2012-12-16 10:59:22 -------- d-----w- C:\Users\colinfoot\AppData\Local\{E186B20D-40F3-4B0D-AA3F-C8491A6E8F37}

    2012-12-16 09:17:34 -------- d-----w- C:\Users\colinfoot\AppData\Local\{B8560197-A5C4-460B-B2F7-F403A8C51CBD}

    2012-12-15 09:52:46 -------- d-----w- C:\Users\colinfoot\AppData\Local\{A108E7CD-112D-4020-946D-63099A464FAB}

    2012-12-14 10:37:29 -------- d-----w- C:\Users\colinfoot\AppData\Local\{3A103120-27A8-40DD-8205-FD9169A2C191}

    2012-12-13 19:17:28 -------- d-----w- C:\Users\colinfoot\AppData\Local\{B1FA9967-56A9-49E0-AFDE-613CEE574FBE}

    2012-12-13 07:01:40 -------- d-----w- C:\Users\colinfoot\AppData\Local\{B37578B9-1D0D-40E8-803E-B187689CD608}

    2012-12-13 06:52:01 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb

    2012-12-13 06:52:01 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

    2012-12-13 06:52:00 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll

    2012-12-13 06:52:00 304640 ----a-w- C:\ProgramFiles\Internet Explorer\IEShims.dll

    2012-12-13 06:52:00 182816 ----a-w- C:\ProgramFiles\Internet Explorer\sqmapi.dll

    2012-12-13 06:52:00 149552 ----a-w- C:\ProgramFiles (x86)\Internet Explorer\sqmapi.dll

    2012-12-12 14:52:05 2048 ----a-w- C:\Windows\SysWow64\tzres.dll

    2012-12-12 14:52:05 2048 ----a-w- C:\Windows\System32\tzres.dll

    2012-12-12 14:52:00 3149824 ----a-w- C:\Windows\System32\win32k.sys

    2012-12-12 14:49:15 478208 ----a-w- C:\Windows\System32\dpnet.dll

    2012-12-12 14:49:15 376832 ----a-w- C:\Windows\SysWow64\dpnet.dll

    2012-12-12 10:23:28 -------- d-----w- C:\Users\colinfoot\AppData\Local\{108A4D00-C421-4E93-88D8-4DA1A0557CB6}

    2012-12-12 09:44:30 -------- d-----w- C:\Users\colinfoot\AppData\Local\{EC898779-79DD-4D5D-AB3F-AB79C5EF4AF3}

    2012-12-12 08:03:51 -------- d-----w- C:\Users\colinfoot\AppData\Local\{5928E0D9-5CC3-4732-98A7-D3F5F8869F89}

    2012-12-11 13:25:51 -------- d-----w- C:\Users\colinfoot\AppData\Local\{0F69DAD6-9EAE-4984-90BF-3148E48E722E}

    2012-12-10 22:21:21 -------- d-----w- C:\Users\colinfoot\AppData\Local\{52EE98A3-E6A2-4828-9A07-C72531179E3B}

    2012-12-10 09:19:03 -------- d-----w- C:\Users\colinfoot\AppData\Local\{1C143124-9470-493F-9A18-FA664D2D274C}

    2012-12-09 20:47:18 -------- d-----w- C:\Users\colinfoot\AppData\Local\{F2EF1F16-2992-4D54-BA54-91DB59D78E9B}

    .

    ==================== Find3M ====================

    .

    2012-12-12 23:15:19 73656 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

    2012-12-12 23:15:19 697272 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe

    2012-11-14 06:11:44 2312704 ----a-w- C:\Windows\System32\jscript9.dll

    2012-11-14 06:04:11 1392128 ----a-w- C:\Windows\System32\wininet.dll

    2012-11-14 06:02:49 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl

    2012-11-14 05:57:46 599040 ----a-w- C:\Windows\System32\vbscript.dll

    2012-11-14 05:57:35 173056 ----a-w- C:\Windows\System32\ieUnatt.exe

    2012-11-14 02:09:22 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll

    2012-11-14 01:58:15 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl

    2012-11-14 01:57:37 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll

    2012-11-14 01:49:25 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe

    2012-10-16 08:38:37 135168 ----a-w- C:\Windows\apppatch\AppPatch64\AcXtrnal.dll

    2012-10-16 08:38:34 350208 ----a-w- C:\Windows\apppatch\AppPatch64\AcLayers.dll

    2012-10-16 07:39:52 561664 ----a-w- C:\Windows\apppatch\AcLayers.dll

    .

    ============= FINISH: 10:34:26.28 ===============



    .

    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

    IF REQUESTED, ZIP IT UP & ATTACH IT

    .

    DDS (Ver_2012-11-20.01)

    .

    Microsoft Windows 7 Home Premium

    Boot Device: \Device\HarddiskVolume2

    Install Date: 03/08/2010 16:37:33

    System Uptime: 08/01/2013 09:58:09 (1 hours ago)

    .

    Motherboard: Dell Inc. | | 0TKV96

    Processor: Intel(R) Core(TM) i5 CPU M 430 @ 2.27GHz | U2E1 | 2267/133mhz

    .

    ==== Disk Partitions =========================

    .

    C: is FIXED (NTFS) - 59 GiB total, 7.531 GiB free.

    D: is FIXED (NTFS) - 397 GiB total, 349.353 GiB free.

    E: is CDROM ()

    .

    ==== Disabled Device Manager Items =============

    .

    Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}

    Description: Microsoft 6to4 Adapter

    Device ID: ROOT\*6TO4MP\0000

    Manufacturer: Microsoft

    Name: Microsoft 6to4 Adapter

    PNP Device ID: ROOT\*6TO4MP\0000

    Service: tunnel

    .

    Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}

    Description: Microsoft ISATAP Adapter

    Device ID: ROOT\*ISATAP\0000

    Manufacturer: Microsoft

    Name: Microsoft ISATAP Adapter

    PNP Device ID: ROOT\*ISATAP\0000

    Service: tunnel

    .

    Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}

    Description: Microsoft Teredo Tunneling Adapter

    Device ID: ROOT\*TEREDO\0000

    Manufacturer: Microsoft

    Name: Teredo Tunneling Pseudo-Interface

    PNP Device ID: ROOT\*TEREDO\0000

    Service: tunnel

    .

    ==== System Restore Points ===================

    .

    RP425: 07/01/2013 15:13:13 - Installed Java(TM) 6 Update 38

    .

    ==== Installed Programs ======================

    .

    Update for MicrosoftOffice 2007 (KB2508958)

    Adobe AIR

    Adobe Community Help

    Adobe Flash Player 11 ActiveX

    Adobe Media Player

    Adobe Photoshop Lightroom 3.2 64-bit

    Adobe Reader 9.5.2

    Advanced Audio FX Engine

    Cisco EAP-FAST Module

    Cisco LEAP Module

    Cisco PEAP Module

    Compatibility Pack for the 2007 Office system

    D3DX10

    Dell Dock

    Dell Edoc Viewer

    Dell Touchpad

    Dell Webcam Central

    Dell Wireless WLAN Card Utility

    Document Express DjVu Plug-in

    Family Tree Maker 2005

    FTMVistaUpdater

    Garmin Communicator Plugin

    Garmin Communicator Plugin x64

    Garmin Lifetime Updater

    Garmin USB Drivers

    Garmin WebUpdater

    Google Chrome

    Google Earth Plug-in

    Google Toolbar for Internet Explorer

    Google Update Helper

    Intel(R) Graphics Media Accelerator Driver

    Intel(R) Management Engine Components

    Intel(R) Turbo Boost Technology Monitor

    Java 7 Update 9

    Java Auto Updater

    Java(TM) 6 Update 17 (64-bit)

    Java(TM) 6 Update 38

    Junk Mail filter update

    Live! Cam Avatar Creator

    Microsoft .NET Framework 4 Client Profile

    Microsoft Application Error Reporting

    Microsoft Office 2007 Service Pack 3 (SP3)

    Microsoft Office Access MUI (English) 2007

    Microsoft Office Access Setup Metadata MUI (English) 2007

    Microsoft Office Excel MUI (English) 2007

    Microsoft Office File Validation Add-In

    Microsoft Office Home and Student 2007

    Microsoft Office Office 64-bit Components 2007

    Microsoft Office OneNote MUI (English) 2007

    Microsoft Office Outlook Connector

    Microsoft Office Outlook MUI (English) 2007

    Microsoft Office PowerPoint MUI (English) 2007

    Microsoft Office PowerPoint Viewer 2007 (English)

    Microsoft Office Professional 2007

    Microsoft Office Proof (English) 2007

    Microsoft Office Proof (French) 2007

    Microsoft Office Proof (Spanish) 2007

    Microsoft Office Proofing (English) 2007

    Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

    Microsoft Office Publisher MUI (English) 2007

    Microsoft Office Shared 64-bit MUI (English) 2007

    Microsoft Office Shared 64-bit Setup Metadata MUI (English)2007

    Microsoft Office Shared MUI (English) 2007

    Microsoft Office Shared Setup Metadata MUI (English) 2007

    Microsoft Office Suite Activation Assistant

    Microsoft Office Word MUI (English) 2007

    Microsoft Search Enhancement Pack

    Microsoft Security Client

    Microsoft Security Essentials

    Microsoft Silverlight

    Microsoft SQL Server 2005 Compact Edition [ENU]

    Microsoft Visual C++ 2005 ATL Update kb973923 - x648.0.50727.4053

    Microsoft Visual C++ 2005 ATL Update kb973923 - x868.0.50727.4053

    Microsoft Visual C++ 2005 Redistributable

    Microsoft Visual C++ 2005 Redistributable (x64)

    Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175

    Microsoft Visual C++ 2008 ATL Update kb973924 - x649.0.30729.4148

    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x649.0.30729.5570

    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x869.0.30729.5570

    Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17

    Microsoft Visual C++ 2008 Redistributable - x649.0.30729.6161

    Microsoft Visual C++ 2008 Redistributable - x869.0.30729.4148

    Microsoft Visual C++ 2008 Redistributable - x869.0.30729.6161

    Microsoft Works

    Microsoft_VC80_ATL_x86

    Microsoft_VC80_ATL_x86_x64

    Microsoft_VC80_CRT_x86

    Microsoft_VC80_CRT_x86_x64

    Microsoft_VC80_MFC_x86

    Microsoft_VC80_MFC_x86_x64

    Microsoft_VC80_MFCLOC_x86

    Microsoft_VC80_MFCLOC_x86_x64

    Microsoft_VC90_ATL_x86

    Microsoft_VC90_ATL_x86_x64

    Microsoft_VC90_CRT_x86

    Microsoft_VC90_CRT_x86_x64

    Microsoft_VC90_MFC_x86

    Microsoft_VC90_MFC_x86_x64

    MSVCRT

    MSVCRT_amd64

    PowerDVD DX

    Quickset64

    Realtek High Definition Audio Driver

    Roxio Burn

    Security Update for Microsoft .NET Framework 4 ClientProfile (KB2160841)

    Security Update for Microsoft .NET Framework 4 ClientProfile (KB2446708)

    Security Update for Microsoft .NET Framework 4 ClientProfile (KB2478663)

    Security Update for Microsoft .NET Framework 4 ClientProfile (KB2518870)

    Security Update for Microsoft .NET Framework 4 ClientProfile (KB2539636)

    Security Update for Microsoft .NET Framework 4 ClientProfile (KB2572078)

    Security Update for Microsoft .NET Framework 4 ClientProfile (KB2604121)

    Security Update for Microsoft .NET Framework 4 ClientProfile (KB2633870)

    Security Update for Microsoft .NET Framework 4 ClientProfile (KB2656351)

    Security Update for Microsoft .NET Framework 4 ClientProfile (KB2656368)

    Security Update for Microsoft .NET Framework 4 ClientProfile (KB2656368v2)

    Security Update for Microsoft .NET Framework 4 ClientProfile (KB2656405)

    Security Update for Microsoft .NET Framework 4 ClientProfile (KB2686827)

    Security Update for Microsoft .NET Framework 4 ClientProfile (KB2729449)

    Security Update for Microsoft .NET Framework 4 ClientProfile (KB2737019)

    Security Update for Microsoft Office 2007 suites (KB2596615)32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596672)32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596744)32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596754)32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596785)32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596792)32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596856)32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2596871)32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2597969)32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2687311)32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2687441)32-Bit Edition

    Security Update for Microsoft Office 2007 suites (KB2760416)32-Bit Edition

    Security Update for Microsoft Office Excel 2007 (KB2687307)32-Bit Edition

    Security Update for Microsoft Office InfoPath 2007(KB2687440) 32-Bit Edition

    Security Update for Microsoft Office PowerPoint 2007(KB2596764) 32-Bit Edition

    Security Update for Microsoft Office PowerPoint 2007(KB2596912) 32-Bit Edition

    Security Update for Microsoft Office Publisher 2007(KB2596705) 32-Bit Edition

    Security Update for Microsoft Office Word 2007 (KB2760421)32-Bit Edition

    Uniblue SpeedUpMyPC

    Update for 2007 Microsoft Office System (KB967642)

    Update for Microsoft .NET Framework 4 Client Profile(KB2468871)

    Update for Microsoft .NET Framework 4 Client Profile(KB2533523)

    Update for Microsoft .NET Framework 4 Client Profile(KB2600217)

    Update for Microsoft Office 2007 Help for Common Features(KB963673)

    Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition

    Update for Microsoft Office 2007 suites (KB2596848) 32-BitEdition

    Update for Microsoft Office Access 2007 Help (KB963663)

    Update for Microsoft Office Excel 2007 Help (KB963678)

    Update for Microsoft Office OneNote 2007 Help (KB963670)

    Update for Microsoft Office Outlook 2007 (KB2687404) 32-BitEdition

    Update for Microsoft Office Outlook 2007 Help (KB963677)

    Update for Microsoft Office Outlook 2007 Junk Email Filter(KB2760573) 32-Bit Edition

    Update for Microsoft Office Powerpoint 2007 Help (KB963669)

    Update for Microsoft Office Publisher 2007 Help (KB963667)

    Update for Microsoft Office Script Editor Help (KB963671)

    Update for Microsoft Office Word 2007 Help (KB963665)

    Visual C++ 8.0 Runtime Setup Package (x64)

    Visual Studio 2008 x64 Redistributables

    Windows Driver Package - Garmin (grmnusb) GARMINDevices (06/03/2009 2.3.0.0)

    Windows Live Communications Platform

    Windows Live Essentials

    Windows Live ID Sign-in Assistant

    Windows Live Installer

    Windows Live Language Selector

    Windows Live Mail

    Windows Live Messenger

    Windows Live MIME IFilter

    Windows Live Movie Maker

    Windows Live Photo Common

    Windows Live Photo Gallery

    Windows Live PIMT Platform

    Windows Live SOXE

    Windows Live SOXE Definitions

    Windows Live Sync

    Windows Live UX Platform

    Windows Live UX Platform Language Pack

    Windows Live Writer

    Windows Live Writer Resources

    .

    ==== Event Viewer Messages From Past Week ========

    .

    07/01/2013 15:02:08, Error: Microsoft Antimalware[2001] - Microsoft Antimalware hasencountered an error trying to update signatures. NewSignature Version: Previous Signature Version:1.141.3310.0 Update Source: Microsoft Malware Protection Center UpdateStage: Install Source Path:http://go.microsoft.com/fwlink/?Lin...0.0&prod=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094 SignatureType: AntiVirus Update Type: Full User: colinfoot-PC\Richard CurrentEngine Version: Previous Engine Version: 1.1.9002.0 Errorcode: 0x8050a003 Error description: This package does not containup-to-date definition files for this program. For more information, see Helpand Support.

    07/01/2013 15:02:08, Error: Microsoft Antimalware[2001] - Microsoft Antimalware hasencountered an error trying to update signatures. NewSignature Version: Previous Signature Version:1.141.3310.0 Update Source: Microsoft Malware Protection Center UpdateStage: Install Source Path:http://go.microsoft.com/fwlink/?Lin...0.0&prod=EDB4FA23-53B8-4AFA-8C5D-99752CCA7094 SignatureType: AntiSpyware Update Type: Full User:colinfoot-PC\Richard Current Engine Version: PreviousEngine Version: 1.1.9002.0 Error code: 0x8050a003 Errordescription: This package does not contain up-to-date definition files for thisprogram. For more information, see Help and Support.

    05/01/2013 17:29:27, Error: volsnap [36] - The shadow copies of volume C: were abortedbecause the shadow copy storage could not grow due to a user imposed limit.

    01/01/2013 11:04:31, Error: Service Control Manager[7009] - A timeout was reached (30000milliseconds) while waiting for the Windows Search service to connect.

    01/01/2013 11:04:31, Error: Service Control Manager[7000] - The Windows Search servicefailed to start due to the following error: The service did not respond to the start or control request in a timelyfashion.

    01/01/2013 11:04:31, Error: Microsoft-Windows-DistributedCOM[10005] - DCOM got error"1053" attempting to start the service WSearch with arguments"" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

    .

    ==== End Of File ===========================



    Then running GMER Iget the error message “GMER has foundsystem modification caused by ROOTKIT activity”

    But that screen is frozen even when nothing else is running




     
  5. dvk01

    dvk01 Moderator Malware Specialist

    Joined:
    Dec 14, 2002
    Messages:
    56,452
    First Name:
    Derek
    OK I can see the problems

    next step

    Run tdss killer from http://support.kaspersky.com/viruses/solutions?qid=208280684

    let it cure anything it fnds ( except SPTD.SYS or anything detected as UnsignedFile.Multi.Generic, which should be ignored) & then reboot

    post back with its log

    By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder.
    Logs have names like: UtilityName.Version_Date_Time_log.txt.
    E.g. C:\TDSSKiller.2.4.7_23.07.2010_15.31.43_log.txt
     
  6. pendle

    pendle Thread Starter

    Joined:
    Jan 7, 2013
    Messages:
    8
    Ran the TDS Killer but it said it found no threats having checked 413 objects.

    but here is the log
    12:58:18.0576 5004 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
    12:58:18.0717 5004 ============================================================
    12:58:18.0717 5004 Current date / time: 2013/01/08 12:58:18.0717
    12:58:18.0717 5004 SystemInfo:
    12:58:18.0717 5004
    12:58:18.0717 5004 OS Version: 6.1.7601 ServicePack: 1.0
    12:58:18.0717 5004 Product type: Workstation
    12:58:18.0717 5004 ComputerName: COLINFOOT-PC
    12:58:18.0717 5004 UserName: colinfoot
    12:58:18.0717 5004 Windows directory: C:\Windows
    12:58:18.0717 5004 System windows directory: C:\Windows
    12:58:18.0717 5004 Running under WOW64
    12:58:18.0717 5004 Processor architecture: Intel x64
    12:58:18.0717 5004 Number of processors: 4
    12:58:18.0717 5004 Page size: 0x1000
    12:58:18.0717 5004 Boot type: Normal boot
    12:58:18.0717 5004 ============================================================
    12:58:24.0021 5004 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
    12:58:24.0036 5004 ============================================================
    12:58:24.0036 5004 \Device\Harddisk0\DR0:
    12:58:24.0036 5004 MBR partitions:
    12:58:24.0036 5004 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1388000
    12:58:24.0036 5004 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x13BA800, BlocksNum 0x7530000
    12:58:24.0052 5004 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x88EB000, BlocksNum 0x31A9A800
    12:58:24.0052 5004 ============================================================
    12:58:24.0099 5004 C: <-> \Device\Harddisk0\DR0\Partition2
    12:58:24.0286 5004 D: <-> \Device\Harddisk0\DR0\Partition3
    12:58:24.0286 5004 ============================================================
    12:58:24.0286 5004 Initialize success
    12:58:24.0286 5004 ============================================================
    12:59:08.0016 2948 ============================================================
    12:59:08.0016 2948 Scan started
    12:59:08.0016 2948 Mode: Manual;
    12:59:08.0016 2948 ============================================================
    12:59:09.0326 2948 ================ Scan system memory ========================
    12:59:09.0326 2948 System memory - ok
    12:59:09.0326 2948 ================ Scan services =============================
    12:59:09.0466 2948 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
    12:59:09.0466 2948 1394ohci - ok
    12:59:09.0513 2948 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
    12:59:09.0513 2948 ACPI - ok
    12:59:09.0544 2948 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
    12:59:09.0544 2948 AcpiPmi - ok
    12:59:09.0669 2948 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    12:59:09.0685 2948 AdobeFlashPlayerUpdateSvc - ok
    12:59:09.0747 2948 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
    12:59:09.0747 2948 adp94xx - ok
    12:59:09.0778 2948 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
    12:59:09.0794 2948 adpahci - ok
    12:59:09.0810 2948 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
    12:59:09.0810 2948 adpu320 - ok
    12:59:09.0841 2948 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
    12:59:09.0841 2948 AeLookupSvc - ok
    12:59:09.0903 2948 [ 3AC22A3DFA8A050E35F0E3CD99D0CDF2 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
    12:59:09.0903 2948 AERTFilters - ok
    12:59:09.0950 2948 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
    12:59:09.0966 2948 AFD - ok
    12:59:10.0012 2948 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
    12:59:10.0012 2948 agp440 - ok
    12:59:10.0044 2948 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
    12:59:10.0044 2948 ALG - ok
    12:59:10.0059 2948 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
    12:59:10.0059 2948 aliide - ok
    12:59:10.0075 2948 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
    12:59:10.0075 2948 amdide - ok
    12:59:10.0122 2948 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
    12:59:10.0122 2948 AmdK8 - ok
    12:59:10.0137 2948 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
    12:59:10.0137 2948 AmdPPM - ok
    12:59:10.0153 2948 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
    12:59:10.0153 2948 amdsata - ok
    12:59:10.0184 2948 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
    12:59:10.0184 2948 amdsbs - ok
    12:59:10.0200 2948 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
    12:59:10.0200 2948 amdxata - ok
    12:59:10.0246 2948 [ 8B522286C8D6A20133D12225B7759596 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
    12:59:10.0262 2948 ApfiltrService - ok
    12:59:10.0293 2948 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
    12:59:10.0309 2948 AppID - ok
    12:59:10.0324 2948 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
    12:59:10.0324 2948 AppIDSvc - ok
    12:59:10.0356 2948 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
    12:59:10.0356 2948 Appinfo - ok
    12:59:10.0402 2948 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
    12:59:10.0402 2948 arc - ok
    12:59:10.0418 2948 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
    12:59:10.0418 2948 arcsas - ok
    12:59:10.0449 2948 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
    12:59:10.0449 2948 AsyncMac - ok
    12:59:10.0480 2948 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
    12:59:10.0480 2948 atapi - ok
    12:59:10.0543 2948 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
    12:59:10.0558 2948 AudioEndpointBuilder - ok
    12:59:10.0605 2948 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
    12:59:10.0605 2948 AudioSrv - ok
    12:59:10.0668 2948 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
    12:59:10.0668 2948 AxInstSV - ok
    12:59:10.0714 2948 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
    12:59:10.0714 2948 b06bdrv - ok
    12:59:10.0761 2948 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
    12:59:10.0761 2948 b57nd60a - ok
    12:59:10.0808 2948 [ E001DD475A7C27EBE5A0DB45C11BAD71 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
    12:59:10.0808 2948 BCM42RLY - ok
    12:59:10.0917 2948 [ F4CD5F52850BF2C978DE178F256BA372 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
    12:59:10.0917 2948 BCM43XX - ok
    12:59:10.0964 2948 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
    12:59:10.0964 2948 BDESVC - ok
    12:59:10.0995 2948 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
    12:59:10.0995 2948 Beep - ok
    12:59:11.0073 2948 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
    12:59:11.0089 2948 BFE - ok
    12:59:11.0120 2948 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
    12:59:11.0136 2948 BITS - ok
    12:59:11.0167 2948 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
    12:59:11.0167 2948 blbdrive - ok
    12:59:11.0214 2948 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
    12:59:11.0214 2948 bowser - ok
    12:59:11.0245 2948 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
    12:59:11.0245 2948 BrFiltLo - ok
    12:59:11.0260 2948 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
    12:59:11.0260 2948 BrFiltUp - ok
    12:59:11.0307 2948 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
    12:59:11.0307 2948 Browser - ok
    12:59:11.0323 2948 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
    12:59:11.0338 2948 Brserid - ok
    12:59:11.0354 2948 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
    12:59:11.0354 2948 BrSerWdm - ok
    12:59:11.0370 2948 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
    12:59:11.0370 2948 BrUsbMdm - ok
    12:59:11.0370 2948 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
    12:59:11.0385 2948 BrUsbSer - ok
    12:59:11.0385 2948 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
    12:59:11.0401 2948 BTHMODEM - ok
    12:59:11.0432 2948 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
    12:59:11.0432 2948 bthserv - ok
    12:59:11.0448 2948 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
    12:59:11.0463 2948 cdfs - ok
    12:59:11.0510 2948 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
    12:59:11.0510 2948 cdrom - ok
    12:59:11.0557 2948 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
    12:59:11.0557 2948 CertPropSvc - ok
    12:59:11.0588 2948 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
    12:59:11.0588 2948 circlass - ok
    12:59:11.0619 2948 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
    12:59:11.0619 2948 CLFS - ok
    12:59:11.0682 2948 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    12:59:11.0682 2948 clr_optimization_v2.0.50727_32 - ok
    12:59:11.0728 2948 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
    12:59:11.0728 2948 clr_optimization_v2.0.50727_64 - ok
    12:59:11.0822 2948 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    12:59:11.0884 2948 clr_optimization_v4.0.30319_32 - ok
    12:59:11.0931 2948 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
    12:59:11.0947 2948 clr_optimization_v4.0.30319_64 - ok
    12:59:11.0978 2948 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
    12:59:11.0978 2948 CmBatt - ok
    12:59:12.0009 2948 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
    12:59:12.0009 2948 cmdide - ok
    12:59:12.0072 2948 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
    12:59:12.0072 2948 CNG - ok
    12:59:12.0087 2948 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
    12:59:12.0087 2948 Compbatt - ok
    12:59:12.0134 2948 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
    12:59:12.0134 2948 CompositeBus - ok
    12:59:12.0150 2948 COMSysApp - ok
    12:59:12.0306 2948 cpuz132 - ok
    12:59:12.0352 2948 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
    12:59:12.0352 2948 crcdisk - ok
    12:59:12.0399 2948 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
    12:59:12.0399 2948 CryptSvc - ok
    12:59:12.0462 2948 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
    12:59:12.0462 2948 CtClsFlt - ok
    12:59:12.0508 2948 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
    12:59:12.0524 2948 DcomLaunch - ok
    12:59:12.0571 2948 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
    12:59:12.0571 2948 defragsvc - ok
    12:59:12.0618 2948 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
    12:59:12.0618 2948 DfsC - ok
    12:59:12.0649 2948 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
    12:59:12.0664 2948 Dhcp - ok
    12:59:12.0680 2948 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
    12:59:12.0696 2948 discache - ok
    12:59:12.0727 2948 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
    12:59:12.0727 2948 Disk - ok
    12:59:12.0805 2948 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
    12:59:12.0805 2948 Dnscache - ok
    12:59:12.0867 2948 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
    12:59:12.0883 2948 DockLoginService - ok
    12:59:12.0914 2948 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
    12:59:12.0930 2948 dot3svc - ok
    12:59:12.0945 2948 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
    12:59:12.0945 2948 DPS - ok
    12:59:12.0992 2948 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
    12:59:12.0992 2948 drmkaud - ok
    12:59:13.0039 2948 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
    12:59:13.0054 2948 DXGKrnl - ok
    12:59:13.0086 2948 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
    12:59:13.0101 2948 EapHost - ok
    12:59:13.0195 2948 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
    12:59:13.0288 2948 ebdrv - ok
    12:59:13.0351 2948 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
    12:59:13.0351 2948 EFS - ok
    12:59:13.0398 2948 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
    12:59:13.0429 2948 ehRecvr - ok
    12:59:13.0460 2948 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
    12:59:13.0460 2948 ehSched - ok
    12:59:13.0507 2948 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
    12:59:13.0522 2948 elxstor - ok
    12:59:13.0554 2948 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
    12:59:13.0569 2948 ErrDev - ok
    12:59:13.0600 2948 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
    12:59:13.0616 2948 EventSystem - ok
    12:59:13.0647 2948 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
    12:59:13.0647 2948 exfat - ok
    12:59:13.0678 2948 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
    12:59:13.0678 2948 fastfat - ok
    12:59:13.0725 2948 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
    12:59:13.0756 2948 Fax - ok
    12:59:13.0772 2948 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
    12:59:13.0772 2948 fdc - ok
    12:59:13.0803 2948 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
    12:59:13.0803 2948 fdPHost - ok
    12:59:13.0819 2948 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
    12:59:13.0819 2948 FDResPub - ok
    12:59:13.0819 2948 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
    12:59:13.0834 2948 FileInfo - ok
    12:59:13.0834 2948 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
    12:59:13.0850 2948 Filetrace - ok
    12:59:13.0850 2948 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
    12:59:13.0850 2948 flpydisk - ok
    12:59:13.0881 2948 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
    12:59:13.0881 2948 FltMgr - ok
    12:59:13.0944 2948 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
    12:59:13.0975 2948 FontCache - ok
    12:59:14.0037 2948 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    12:59:14.0037 2948 FontCache3.0.0.0 - ok
    12:59:14.0068 2948 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
    12:59:14.0068 2948 FsDepends - ok
    12:59:14.0115 2948 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
    12:59:14.0115 2948 Fs_Rec - ok
    12:59:14.0162 2948 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
    12:59:14.0162 2948 fvevol - ok
    12:59:14.0193 2948 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
    12:59:14.0193 2948 gagp30kx - ok
    12:59:14.0256 2948 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
    12:59:14.0287 2948 gpsvc - ok
    12:59:14.0396 2948 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    12:59:14.0396 2948 gupdate - ok
    12:59:14.0443 2948 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    12:59:14.0458 2948 gupdatem - ok
    12:59:14.0490 2948 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
    12:59:14.0490 2948 gusvc - ok
    12:59:14.0521 2948 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
    12:59:14.0521 2948 hcw85cir - ok
    12:59:14.0568 2948 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
    12:59:14.0568 2948 HDAudBus - ok
    12:59:14.0599 2948 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
    12:59:14.0599 2948 HECIx64 - ok
    12:59:14.0614 2948 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
    12:59:14.0614 2948 HidBatt - ok
    12:59:14.0630 2948 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
    12:59:14.0630 2948 HidBth - ok
    12:59:14.0661 2948 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
    12:59:14.0661 2948 HidIr - ok
    12:59:14.0692 2948 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
    12:59:14.0692 2948 hidserv - ok
    12:59:14.0755 2948 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
    12:59:14.0755 2948 HidUsb - ok
    12:59:14.0802 2948 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
    12:59:14.0802 2948 hkmsvc - ok
    12:59:14.0864 2948 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
    12:59:14.0864 2948 HomeGroupListener - ok
    12:59:14.0911 2948 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
    12:59:14.0911 2948 HomeGroupProvider - ok
    12:59:14.0958 2948 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
    12:59:14.0958 2948 HpSAMD - ok
    12:59:15.0004 2948 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
    12:59:15.0036 2948 HTTP - ok
    12:59:15.0067 2948 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
    12:59:15.0067 2948 hwpolicy - ok
    12:59:15.0098 2948 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
    12:59:15.0098 2948 i8042prt - ok
    12:59:15.0129 2948 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
    12:59:15.0145 2948 iaStorV - ok
    12:59:15.0207 2948 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
    12:59:15.0238 2948 idsvc - ok
    12:59:15.0426 2948 [ 0372C154226F7074CD150F475A4870A6 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
    12:59:15.0597 2948 igfx - ok
    12:59:15.0660 2948 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
    12:59:15.0660 2948 iirsp - ok
    12:59:15.0706 2948 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
    12:59:15.0738 2948 IKEEXT - ok
    12:59:15.0769 2948 [ 36FDF367A1DABFF903E2214023D71368 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
    12:59:15.0769 2948 Impcd - ok
    12:59:15.0847 2948 [ 2A7CF87BE453241FE0BAA1C8651E7AA4 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
    12:59:15.0862 2948 IntcAzAudAddService - ok
    12:59:15.0894 2948 [ 49072EDBC5C2F964917D1B585C90ED0A ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
    12:59:15.0894 2948 IntcDAud - ok
    12:59:15.0925 2948 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
    12:59:15.0925 2948 intelide - ok
    12:59:15.0956 2948 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
    12:59:15.0956 2948 intelppm - ok
    12:59:16.0003 2948 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
    12:59:16.0003 2948 IPBusEnum - ok
    12:59:16.0050 2948 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
    12:59:16.0050 2948 IpFilterDriver - ok
    12:59:16.0112 2948 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
    12:59:16.0112 2948 iphlpsvc - ok
    12:59:16.0159 2948 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
    12:59:16.0159 2948 IPMIDRV - ok
    12:59:16.0174 2948 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
    12:59:16.0190 2948 IPNAT - ok
    12:59:16.0206 2948 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
    12:59:16.0221 2948 IRENUM - ok
    12:59:16.0221 2948 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
    12:59:16.0221 2948 isapnp - ok
    12:59:16.0252 2948 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
    12:59:16.0268 2948 iScsiPrt - ok
    12:59:16.0284 2948 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
    12:59:16.0284 2948 kbdclass - ok
    12:59:16.0315 2948 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
    12:59:16.0315 2948 kbdhid - ok
    12:59:16.0346 2948 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
    12:59:16.0346 2948 KeyIso - ok
    12:59:16.0377 2948 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
    12:59:16.0393 2948 KSecDD - ok
    12:59:16.0408 2948 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
    12:59:16.0408 2948 KSecPkg - ok
    12:59:16.0440 2948 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
    12:59:16.0440 2948 ksthunk - ok
    12:59:16.0471 2948 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
    12:59:16.0471 2948 KtmRm - ok
    12:59:16.0533 2948 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
    12:59:16.0533 2948 LanmanServer - ok
    12:59:16.0580 2948 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
    12:59:16.0580 2948 LanmanWorkstation - ok
    12:59:16.0627 2948 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
    12:59:16.0627 2948 lltdio - ok
    12:59:16.0658 2948 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
    12:59:16.0658 2948 lltdsvc - ok
    12:59:16.0674 2948 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
    12:59:16.0674 2948 lmhosts - ok
    12:59:16.0736 2948 [ 7485FBCEF9136F530953575E2977859D ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    12:59:16.0752 2948 LMS - ok
    12:59:16.0783 2948 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
    12:59:16.0783 2948 LSI_FC - ok
    12:59:16.0798 2948 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
    12:59:16.0798 2948 LSI_SAS - ok
    12:59:16.0814 2948 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
    12:59:16.0830 2948 LSI_SAS2 - ok
    12:59:16.0845 2948 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
    12:59:16.0861 2948 LSI_SCSI - ok
    12:59:16.0876 2948 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
    12:59:16.0876 2948 luafv - ok
    12:59:16.0923 2948 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
    12:59:16.0923 2948 Mcx2Svc - ok
    12:59:16.0939 2948 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
    12:59:16.0939 2948 megasas - ok
    12:59:16.0970 2948 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
    12:59:16.0970 2948 MegaSR - ok
    12:59:17.0001 2948 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
    12:59:17.0001 2948 MMCSS - ok
    12:59:17.0017 2948 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
    12:59:17.0017 2948 Modem - ok
    12:59:17.0048 2948 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
    12:59:17.0048 2948 monitor - ok
    12:59:17.0079 2948 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
    12:59:17.0079 2948 mouclass - ok
    12:59:17.0095 2948 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
    12:59:17.0110 2948 mouhid - ok
    12:59:17.0142 2948 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
    12:59:17.0142 2948 mountmgr - ok
    12:59:17.0220 2948 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
    12:59:17.0220 2948 MpFilter - ok
    12:59:17.0266 2948 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
    12:59:17.0266 2948 mpio - ok
    12:59:17.0298 2948 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
    12:59:17.0298 2948 mpsdrv - ok
    12:59:17.0344 2948 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
    12:59:17.0376 2948 MpsSvc - ok
    12:59:17.0422 2948 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
    12:59:17.0422 2948 MRxDAV - ok
    12:59:17.0469 2948 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
    12:59:17.0469 2948 mrxsmb - ok
    12:59:17.0516 2948 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
    12:59:17.0516 2948 mrxsmb10 - ok
    12:59:17.0532 2948 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
    12:59:17.0532 2948 mrxsmb20 - ok
    12:59:17.0563 2948 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
    12:59:17.0563 2948 msahci - ok
    12:59:17.0594 2948 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
    12:59:17.0594 2948 msdsm - ok
    12:59:17.0625 2948 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
    12:59:17.0625 2948 MSDTC - ok
    12:59:17.0672 2948 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
    12:59:17.0672 2948 Msfs - ok
    12:59:17.0688 2948 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
    12:59:17.0703 2948 mshidkmdf - ok
    12:59:17.0750 2948 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
    12:59:17.0750 2948 msisadrv - ok
    12:59:17.0766 2948 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
    12:59:17.0766 2948 MSiSCSI - ok
    12:59:17.0781 2948 msiserver - ok
    12:59:17.0797 2948 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
    12:59:17.0812 2948 MSKSSRV - ok
    12:59:17.0906 2948 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
    12:59:17.0906 2948 MsMpSvc - ok
    12:59:17.0953 2948 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
    12:59:17.0953 2948 MSPCLOCK - ok
    12:59:17.0953 2948 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
    12:59:17.0953 2948 MSPQM - ok
    12:59:18.0000 2948 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
    12:59:18.0015 2948 MsRPC - ok
    12:59:18.0046 2948 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
    12:59:18.0046 2948 mssmbios - ok
    12:59:18.0062 2948 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
    12:59:18.0062 2948 MSTEE - ok
    12:59:18.0062 2948 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
    12:59:18.0078 2948 MTConfig - ok
    12:59:18.0093 2948 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
    12:59:18.0093 2948 Mup - ok
    12:59:18.0109 2948 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
    12:59:18.0124 2948 napagent - ok
    12:59:18.0171 2948 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
    12:59:18.0171 2948 NativeWifiP - ok
    12:59:18.0218 2948 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
    12:59:18.0249 2948 NDIS - ok
    12:59:18.0280 2948 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
    12:59:18.0280 2948 NdisCap - ok
    12:59:18.0327 2948 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
    12:59:18.0327 2948 NdisTapi - ok
    12:59:18.0358 2948 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
    12:59:18.0358 2948 Ndisuio - ok
    12:59:18.0390 2948 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
    12:59:18.0390 2948 NdisWan - ok
    12:59:18.0452 2948 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
    12:59:18.0452 2948 NDProxy - ok
    12:59:18.0468 2948 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
    12:59:18.0468 2948 NetBIOS - ok
    12:59:18.0499 2948 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
    12:59:18.0514 2948 NetBT - ok
    12:59:18.0530 2948 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
    12:59:18.0530 2948 Netlogon - ok
    12:59:18.0561 2948 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
    12:59:18.0577 2948 Netman - ok
    12:59:18.0592 2948 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
    12:59:18.0592 2948 netprofm - ok
    12:59:18.0624 2948 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
    12:59:18.0624 2948 NetTcpPortSharing - ok
    12:59:18.0670 2948 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
    12:59:18.0670 2948 nfrd960 - ok
    12:59:18.0748 2948 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
    12:59:18.0748 2948 NisDrv - ok
    12:59:18.0811 2948 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
    12:59:18.0811 2948 NisSrv - ok
    12:59:18.0873 2948 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
    12:59:18.0889 2948 NlaSvc - ok
    12:59:18.0904 2948 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
    12:59:18.0904 2948 Npfs - ok
    12:59:18.0936 2948 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
    12:59:18.0936 2948 nsi - ok
    12:59:18.0951 2948 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
    12:59:18.0951 2948 nsiproxy - ok
    12:59:19.0029 2948 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
    12:59:19.0076 2948 Ntfs - ok
    12:59:19.0092 2948 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
    12:59:19.0092 2948 Null - ok
    12:59:19.0138 2948 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
    12:59:19.0138 2948 nvraid - ok
    12:59:19.0154 2948 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
    12:59:19.0154 2948 nvstor - ok
    12:59:19.0201 2948 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
    12:59:19.0201 2948 nv_agp - ok
    12:59:19.0279 2948 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
    12:59:19.0279 2948 odserv - ok
    12:59:19.0310 2948 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
    12:59:19.0310 2948 ohci1394 - ok
    12:59:19.0341 2948 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    12:59:19.0341 2948 ose - ok
    12:59:19.0388 2948 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
    12:59:19.0388 2948 p2pimsvc - ok
    12:59:19.0419 2948 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
    12:59:19.0419 2948 p2psvc - ok
    12:59:19.0450 2948 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
    12:59:19.0450 2948 Parport - ok
    12:59:19.0482 2948 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
    12:59:19.0482 2948 partmgr - ok
    12:59:19.0497 2948 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
    12:59:19.0513 2948 PcaSvc - ok
    12:59:19.0528 2948 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
    12:59:19.0528 2948 pci - ok
    12:59:19.0560 2948 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
    12:59:19.0560 2948 pciide - ok
    12:59:19.0575 2948 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
    12:59:19.0575 2948 pcmcia - ok
    12:59:19.0606 2948 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
    12:59:19.0606 2948 pcw - ok
    12:59:19.0638 2948 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
    12:59:19.0653 2948 PEAUTH - ok
    12:59:19.0731 2948 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
    12:59:19.0731 2948 PerfHost - ok
    12:59:19.0794 2948 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
    12:59:19.0825 2948 pla - ok
    12:59:19.0887 2948 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
    12:59:19.0903 2948 PlugPlay - ok
    12:59:19.0934 2948 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
    12:59:19.0934 2948 PNRPAutoReg - ok
    12:59:19.0950 2948 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
    12:59:19.0965 2948 PNRPsvc - ok
    12:59:20.0012 2948 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
    12:59:20.0012 2948 PolicyAgent - ok
    12:59:20.0043 2948 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
    12:59:20.0059 2948 Power - ok
    12:59:20.0090 2948 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
    12:59:20.0090 2948 PptpMiniport - ok
    12:59:20.0106 2948 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
    12:59:20.0106 2948 Processor - ok
    12:59:20.0152 2948 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
    12:59:20.0152 2948 ProfSvc - ok
    12:59:20.0168 2948 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
    12:59:20.0168 2948 ProtectedStorage - ok
    12:59:20.0215 2948 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
    12:59:20.0215 2948 Psched - ok
    12:59:20.0246 2948 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
    12:59:20.0246 2948 PxHlpa64 - ok
    12:59:20.0308 2948 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
    12:59:20.0355 2948 ql2300 - ok
    12:59:20.0371 2948 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
    12:59:20.0371 2948 ql40xx - ok
    12:59:20.0402 2948 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
    12:59:20.0402 2948 QWAVE - ok
    12:59:20.0418 2948 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
    12:59:20.0418 2948 QWAVEdrv - ok
    12:59:20.0433 2948 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
    12:59:20.0433 2948 RasAcd - ok
    12:59:20.0480 2948 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
    12:59:20.0480 2948 RasAgileVpn - ok
    12:59:20.0496 2948 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
    12:59:20.0496 2948 RasAuto - ok
    12:59:20.0527 2948 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
    12:59:20.0542 2948 Rasl2tp - ok
    12:59:20.0558 2948 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
    12:59:20.0574 2948 RasMan - ok
    12:59:20.0589 2948 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
    12:59:20.0605 2948 RasPppoe - ok
    12:59:20.0620 2948 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
    12:59:20.0620 2948 RasSstp - ok
    12:59:20.0636 2948 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
    12:59:20.0652 2948 rdbss - ok
    12:59:20.0667 2948 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
    12:59:20.0667 2948 rdpbus - ok
    12:59:20.0683 2948 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
    12:59:20.0683 2948 RDPCDD - ok
    12:59:20.0714 2948 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
    12:59:20.0714 2948 RDPENCDD - ok
    12:59:20.0730 2948 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
    12:59:20.0730 2948 RDPREFMP - ok
    12:59:20.0761 2948 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
    12:59:20.0776 2948 RDPWD - ok
    12:59:20.0808 2948 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
    12:59:20.0823 2948 rdyboost - ok
    12:59:20.0854 2948 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
    12:59:20.0854 2948 RemoteAccess - ok
    12:59:20.0886 2948 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
    12:59:20.0886 2948 RemoteRegistry - ok
    12:59:20.0901 2948 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
    12:59:20.0901 2948 RpcEptMapper - ok
    12:59:20.0932 2948 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
    12:59:20.0932 2948 RpcLocator - ok
    12:59:20.0964 2948 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
    12:59:20.0964 2948 RpcSs - ok
    12:59:21.0010 2948 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
    12:59:21.0010 2948 rspndr - ok
    12:59:21.0042 2948 [ 502B316947EA887CDDD325D4745EB7D0 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
    12:59:21.0042 2948 RSUSBSTOR - ok
    12:59:21.0088 2948 [ 3B01789EE4EAEE97F5EB46B711387D5E ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
    12:59:21.0088 2948 RTL8167 - ok
    12:59:21.0104 2948 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
    12:59:21.0104 2948 SamSs - ok
    12:59:21.0135 2948 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
    12:59:21.0135 2948 sbp2port - ok
    12:59:21.0166 2948 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
    12:59:21.0182 2948 SCardSvr - ok
    12:59:21.0198 2948 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
    12:59:21.0198 2948 scfilter - ok
    12:59:21.0260 2948 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
    12:59:21.0291 2948 Schedule - ok
    12:59:21.0338 2948 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
    12:59:21.0338 2948 SCPolicySvc - ok
    12:59:21.0369 2948 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
    12:59:21.0369 2948 SDRSVC - ok
    12:59:21.0432 2948 [ 16A252022535B680046F6E34E136D378 ] SeaPort C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    12:59:21.0447 2948 SeaPort - ok
    12:59:21.0463 2948 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
    12:59:21.0463 2948 secdrv - ok
    12:59:21.0494 2948 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
    12:59:21.0494 2948 seclogon - ok
    12:59:21.0525 2948 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
    12:59:21.0525 2948 SENS - ok
    12:59:21.0556 2948 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
    12:59:21.0556 2948 SensrSvc - ok
    12:59:21.0572 2948 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
    12:59:21.0572 2948 Serenum - ok
    12:59:21.0603 2948 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
    12:59:21.0603 2948 Serial - ok
    12:59:21.0666 2948 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
    12:59:21.0666 2948 sermouse - ok
    12:59:21.0712 2948 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
    12:59:21.0712 2948 SessionEnv - ok
    12:59:21.0744 2948 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
    12:59:21.0759 2948 sffdisk - ok
    12:59:21.0775 2948 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
    12:59:21.0775 2948 sffp_mmc - ok
    12:59:21.0790 2948 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
    12:59:21.0806 2948 sffp_sd - ok
    12:59:21.0837 2948 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
    12:59:21.0853 2948 sfloppy - ok
    12:59:21.0884 2948 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
    12:59:21.0900 2948 SharedAccess - ok
    12:59:21.0946 2948 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
    12:59:21.0946 2948 ShellHWDetection - ok
    12:59:21.0978 2948 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
    12:59:21.0978 2948 SiSRaid2 - ok
    12:59:21.0993 2948 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
    12:59:21.0993 2948 SiSRaid4 - ok
    12:59:22.0024 2948 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
    12:59:22.0040 2948 Smb - ok
    12:59:22.0087 2948 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
    12:59:22.0087 2948 SNMPTRAP - ok
    12:59:22.0102 2948 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
    12:59:22.0102 2948 spldr - ok
    12:59:22.0134 2948 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
    12:59:22.0165 2948 Spooler - ok
    12:59:22.0274 2948 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
    12:59:22.0368 2948 sppsvc - ok
    12:59:22.0399 2948 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
    12:59:22.0414 2948 sppuinotify - ok
    12:59:22.0446 2948 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
    12:59:22.0461 2948 srv - ok
    12:59:22.0477 2948 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
    12:59:22.0492 2948 srv2 - ok
    12:59:22.0508 2948 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
    12:59:22.0508 2948 srvnet - ok
    12:59:22.0539 2948 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
    12:59:22.0539 2948 SSDPSRV - ok
    12:59:22.0555 2948 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
    12:59:22.0570 2948 SstpSvc - ok
    12:59:22.0586 2948 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
    12:59:22.0586 2948 stexstor - ok
    12:59:22.0633 2948 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
    12:59:22.0648 2948 stisvc - ok
    12:59:22.0680 2948 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
    12:59:22.0680 2948 swenum - ok
    12:59:22.0726 2948 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
    12:59:22.0726 2948 swprv - ok
    12:59:22.0804 2948 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
    12:59:22.0867 2948 SysMain - ok
    12:59:22.0898 2948 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
    12:59:22.0914 2948 TabletInputService - ok
    12:59:22.0929 2948 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
    12:59:22.0945 2948 TapiSrv - ok
    12:59:22.0976 2948 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
    12:59:22.0976 2948 TBS - ok
    12:59:23.0054 2948 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
    12:59:23.0132 2948 Tcpip - ok
    12:59:23.0194 2948 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
    12:59:23.0210 2948 TCPIP6 - ok
    12:59:23.0241 2948 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
    12:59:23.0257 2948 tcpipreg - ok
    12:59:23.0272 2948 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
    12:59:23.0272 2948 TDPIPE - ok
    12:59:23.0319 2948 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
    12:59:23.0319 2948 TDTCP - ok
    12:59:23.0350 2948 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
    12:59:23.0366 2948 tdx - ok
    12:59:23.0382 2948 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
    12:59:23.0382 2948 TermDD - ok
    12:59:23.0397 2948 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
    12:59:23.0428 2948 TermService - ok
    12:59:23.0460 2948 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
    12:59:23.0460 2948 Themes - ok
    12:59:23.0475 2948 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
    12:59:23.0475 2948 THREADORDER - ok
    12:59:23.0491 2948 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
    12:59:23.0491 2948 TrkWks - ok
    12:59:23.0569 2948 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
    12:59:23.0569 2948 TrustedInstaller - ok
    12:59:23.0600 2948 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
    12:59:23.0600 2948 tssecsrv - ok
    12:59:23.0662 2948 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
    12:59:23.0662 2948 TsUsbFlt - ok
    12:59:23.0709 2948 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
    12:59:23.0709 2948 tunnel - ok
    12:59:23.0740 2948 [ 825E7A1F48FB8BCFBA27C178AAB4E275 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
    12:59:23.0772 2948 TurboB - ok
    12:59:23.0787 2948 [ B206BE1174D5964D49A56BB6C4E0524A ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
    12:59:23.0803 2948 TurboBoost - ok
    12:59:23.0834 2948 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
    12:59:23.0834 2948 uagp35 - ok
    12:59:23.0865 2948 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
    12:59:23.0881 2948 udfs - ok
    12:59:23.0912 2948 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
    12:59:23.0912 2948 UI0Detect - ok
    12:59:23.0943 2948 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
    12:59:23.0943 2948 uliagpkx - ok
    12:59:23.0990 2948 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
    12:59:23.0990 2948 umbus - ok
    12:59:24.0021 2948 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
    12:59:24.0021 2948 UmPass - ok
    12:59:24.0130 2948 [ 765F2DD351BA064F657751D8D75E58C0 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    12:59:24.0193 2948 UNS - ok
    12:59:24.0240 2948 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
    12:59:24.0240 2948 upnphost - ok
    12:59:24.0286 2948 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
    12:59:24.0286 2948 usbccgp - ok
    12:59:24.0318 2948 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
    12:59:24.0318 2948 usbcir - ok
    12:59:24.0333 2948 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
    12:59:24.0333 2948 usbehci - ok
    12:59:24.0364 2948 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
    12:59:24.0380 2948 usbhub - ok
    12:59:24.0380 2948 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
    12:59:24.0396 2948 usbohci - ok
    12:59:24.0427 2948 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
    12:59:24.0427 2948 usbprint - ok
    12:59:24.0442 2948 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
    12:59:24.0458 2948 usbscan - ok
    12:59:24.0474 2948 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
    12:59:24.0474 2948 USBSTOR - ok
    12:59:24.0489 2948 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
    12:59:24.0489 2948 usbuhci - ok
    12:59:24.0520 2948 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
    12:59:24.0536 2948 usbvideo - ok
    12:59:24.0567 2948 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
    12:59:24.0567 2948 UxSms - ok
    12:59:24.0583 2948 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
    12:59:24.0583 2948 VaultSvc - ok
    12:59:24.0630 2948 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
    12:59:24.0630 2948 vdrvroot - ok
    12:59:24.0692 2948 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
    12:59:24.0708 2948 vds - ok
    12:59:24.0754 2948 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
    12:59:24.0754 2948 vga - ok
    12:59:24.0770 2948 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
    12:59:24.0770 2948 VgaSave - ok
    12:59:24.0817 2948 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
    12:59:24.0817 2948 vhdmp - ok
    12:59:24.0848 2948 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
    12:59:24.0848 2948 viaide - ok
    12:59:24.0864 2948 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
    12:59:24.0864 2948 volmgr - ok
    12:59:24.0910 2948 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
    12:59:24.0910 2948 volmgrx - ok
    12:59:24.0942 2948 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
    12:59:24.0942 2948 volsnap - ok
    12:59:24.0973 2948 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
    12:59:24.0973 2948 vsmraid - ok
    12:59:25.0035 2948 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
    12:59:25.0082 2948 VSS - ok
    12:59:25.0098 2948 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
    12:59:25.0098 2948 vwifibus - ok
    12:59:25.0113 2948 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
    12:59:25.0129 2948 vwififlt - ok
    12:59:25.0144 2948 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
    12:59:25.0144 2948 W32Time - ok
    12:59:25.0160 2948 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
    12:59:25.0160 2948 WacomPen - ok
    12:59:25.0207 2948 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
    12:59:25.0207 2948 WANARP - ok
    12:59:25.0222 2948 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
    12:59:25.0222 2948 Wanarpv6 - ok
    12:59:25.0285 2948 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
    12:59:25.0332 2948 WatAdminSvc - ok
    12:59:25.0394 2948 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
    12:59:25.0441 2948 wbengine - ok
    12:59:25.0472 2948 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
    12:59:25.0488 2948 WbioSrvc - ok
    12:59:25.0519 2948 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
    12:59:25.0519 2948 wcncsvc - ok
    12:59:25.0550 2948 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
    12:59:25.0550 2948 WcsPlugInService - ok
    12:59:25.0628 2948 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
    12:59:25.0644 2948 Wd - ok
    12:59:25.0690 2948 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
    12:59:25.0706 2948 Wdf01000 - ok
    12:59:25.0737 2948 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
    12:59:25.0753 2948 WdiServiceHost - ok
    12:59:25.0753 2948 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
    12:59:25.0753 2948 WdiSystemHost - ok
    12:59:25.0800 2948 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
    12:59:25.0800 2948 WebClient - ok
    12:59:25.0815 2948 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
    12:59:25.0831 2948 Wecsvc - ok
    12:59:25.0846 2948 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
    12:59:25.0846 2948 wercplsupport - ok
    12:59:25.0862 2948 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
    12:59:25.0862 2948 WerSvc - ok
    12:59:25.0909 2948 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
    12:59:25.0909 2948 WfpLwf - ok
    12:59:25.0924 2948 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
    12:59:25.0924 2948 WIMMount - ok
    12:59:25.0956 2948 WinDefend - ok
    12:59:25.0956 2948 WinHttpAutoProxySvc - ok
    12:59:26.0018 2948 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
    12:59:26.0018 2948 Winmgmt - ok
    12:59:26.0096 2948 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
    12:59:26.0158 2948 WinRM - ok
    12:59:26.0252 2948 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
    12:59:26.0252 2948 WinUsb - ok
    12:59:26.0299 2948 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
    12:59:26.0330 2948 Wlansvc - ok
    12:59:26.0486 2948 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    12:59:26.0533 2948 wlidsvc - ok
    12:59:26.0580 2948 [ 13B0A570E1AE451C92DA550085D72CF3 ] wltrysvc C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
    12:59:26.0611 2948 wltrysvc - ok
    12:59:26.0658 2948 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
    12:59:26.0658 2948 WmiAcpi - ok
    12:59:26.0689 2948 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
    12:59:26.0689 2948 wmiApSrv - ok
    12:59:26.0720 2948 WMPNetworkSvc - ok
    12:59:26.0751 2948 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
    12:59:26.0751 2948 WPCSvc - ok
    12:59:26.0782 2948 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
    12:59:26.0798 2948 WPDBusEnum - ok
    12:59:26.0814 2948 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
    12:59:26.0814 2948 ws2ifsl - ok
    12:59:26.0829 2948 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
    12:59:26.0845 2948 wscsvc - ok
    12:59:26.0845 2948 WSearch - ok
    12:59:26.0923 2948 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
    12:59:27.0001 2948 wuauserv - ok
    12:59:27.0032 2948 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
    12:59:27.0032 2948 WudfPf - ok
    12:59:27.0063 2948 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
    12:59:27.0079 2948 WUDFRd - ok
    12:59:27.0094 2948 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
    12:59:27.0094 2948 wudfsvc - ok
    12:59:27.0126 2948 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
    12:59:27.0126 2948 WwanSvc - ok
    12:59:27.0157 2948 ================ Scan global ===============================
    12:59:27.0172 2948 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
    12:59:27.0219 2948 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
    12:59:27.0219 2948 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
    12:59:27.0250 2948 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
    12:59:27.0266 2948 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
    12:59:27.0282 2948 [Global] - ok
    12:59:27.0282 2948 ================ Scan MBR ==================================
    12:59:27.0297 2948 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
    12:59:27.0609 2948 \Device\Harddisk0\DR0 - ok
    12:59:27.0609 2948 ================ Scan VBR ==================================
    12:59:27.0625 2948 [ D6882CAB9992BEB45569AAEF134498EB ] \Device\Harddisk0\DR0\Partition1
    12:59:27.0625 2948 \Device\Harddisk0\DR0\Partition1 - ok
    12:59:27.0640 2948 [ 648A5E096581CCEF30C7BBC0DE874E61 ] \Device\Harddisk0\DR0\Partition2
    12:59:27.0656 2948 \Device\Harddisk0\DR0\Partition2 - ok
    12:59:27.0672 2948 [ 612C1C3F603E31ED72F90C7D8005A7A6 ] \Device\Harddisk0\DR0\Partition3
    12:59:27.0672 2948 \Device\Harddisk0\DR0\Partition3 - ok
    12:59:27.0672 2948 ============================================================
    12:59:27.0672 2948 Scan finished
    12:59:27.0672 2948 ============================================================
    12:59:27.0687 3708 Detected object count: 0
    12:59:27.0687 3708 Actual detected object count: 0
    12:59:47.0577 0744 ============================================================
    12:59:47.0577 0744 Scan started
    12:59:47.0577 0744 Mode: Manual;
    12:59:47.0577 0744 ============================================================
    12:59:47.0858 0744 ================ Scan system memory ========================
    12:59:47.0858 0744 System memory - ok
    12:59:47.0874 0744 ================ Scan services =============================
    12:59:48.0154 0744 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
    12:59:48.0170 0744 1394ohci - ok
    12:59:48.0201 0744 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
    12:59:48.0217 0744 ACPI - ok
    12:59:48.0264 0744 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
    12:59:48.0264 0744 AcpiPmi - ok
    12:59:48.0373 0744 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    12:59:48.0373 0744 AdobeFlashPlayerUpdateSvc - ok
    12:59:48.0404 0744 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
    12:59:48.0404 0744 adp94xx - ok
    12:59:48.0420 0744 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
    12:59:48.0435 0744 adpahci - ok
    12:59:48.0451 0744 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
    12:59:48.0451 0744 adpu320 - ok
    12:59:48.0498 0744 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
    12:59:48.0498 0744 AeLookupSvc - ok
    12:59:48.0544 0744 [ 3AC22A3DFA8A050E35F0E3CD99D0CDF2 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
    12:59:48.0544 0744 AERTFilters - ok
    12:59:48.0591 0744 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
    12:59:48.0607 0744 AFD - ok
    12:59:48.0638 0744 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
    12:59:48.0638 0744 agp440 - ok
    12:59:48.0654 0744 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
    12:59:48.0654 0744 ALG - ok
    12:59:48.0669 0744 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
    12:59:48.0669 0744 aliide - ok
    12:59:48.0685 0744 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
    12:59:48.0685 0744 amdide - ok
    12:59:48.0716 0744 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
    12:59:48.0716 0744 AmdK8 - ok
    12:59:48.0732 0744 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
    12:59:48.0732 0744 AmdPPM - ok
    12:59:48.0747 0744 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
    12:59:48.0747 0744 amdsata - ok
    12:59:48.0763 0744 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
    12:59:48.0763 0744 amdsbs - ok
    12:59:48.0778 0744 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
    12:59:48.0778 0744 amdxata - ok
    12:59:48.0810 0744 [ 8B522286C8D6A20133D12225B7759596 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
    12:59:48.0810 0744 ApfiltrService - ok
    12:59:48.0841 0744 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
    12:59:48.0841 0744 AppID - ok
    12:59:48.0872 0744 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
    12:59:48.0872 0744 AppIDSvc - ok
    12:59:48.0903 0744 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
    12:59:48.0903 0744 Appinfo - ok
    12:59:48.0934 0744 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
    12:59:48.0934 0744 arc - ok
    12:59:48.0950 0744 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
    12:59:48.0950 0744 arcsas - ok
    12:59:48.0966 0744 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
    12:59:48.0966 0744 AsyncMac - ok
    12:59:48.0997 0744 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
    12:59:48.0997 0744 atapi - ok
    12:59:49.0059 0744 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
    12:59:49.0059 0744 AudioEndpointBuilder - ok
    12:59:49.0090 0744 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
    12:59:49.0090 0744 AudioSrv - ok
    12:59:49.0122 0744 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
    12:59:49.0122 0744 AxInstSV - ok
    12:59:49.0168 0744 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
    12:59:49.0168 0744 b06bdrv - ok
    12:59:49.0184 0744 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
    12:59:49.0200 0744 b57nd60a - ok
    12:59:49.0215 0744 [ E001DD475A7C27EBE5A0DB45C11BAD71 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
    12:59:49.0215 0744 BCM42RLY - ok
    12:59:49.0293 0744 [ F4CD5F52850BF2C978DE178F256BA372 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
    12:59:49.0324 0744 BCM43XX - ok
    12:59:49.0356 0744 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
    12:59:49.0356 0744 BDESVC - ok
    12:59:49.0387 0744 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
    12:59:49.0387 0744 Beep - ok
    12:59:49.0434 0744 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
    12:59:49.0434 0744 BFE - ok
    12:59:49.0496 0744 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
    12:59:49.0496 0744 BITS - ok
    12:59:49.0512 0744 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
    12:59:49.0512 0744 blbdrive - ok
    12:59:49.0558 0744 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
    12:59:49.0558 0744 bowser - ok
    12:59:49.0574 0744 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
    12:59:49.0574 0744 BrFiltLo - ok
    12:59:49.0590 0744 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
    12:59:49.0590 0744 BrFiltUp - ok
    12:59:49.0621 0744 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
    12:59:49.0621 0744 Browser - ok
    12:59:49.0652 0744 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
    12:59:49.0652 0744 Brserid - ok
    12:59:49.0668 0744 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
    12:59:49.0668 0744 BrSerWdm - ok
    12:59:49.0683 0744 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
    12:59:49.0683 0744 BrUsbMdm - ok
    12:59:49.0699 0744 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
    12:59:49.0699 0744 BrUsbSer - ok
    12:59:49.0714 0744 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
    12:59:49.0714 0744 BTHMODEM - ok
    12:59:49.0746 0744 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
    12:59:49.0746 0744 bthserv - ok
    12:59:49.0777 0744 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
    12:59:49.0777 0744 cdfs - ok
    12:59:49.0808 0744 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
    12:59:49.0808 0744 cdrom - ok
    12:59:49.0839 0744 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
    12:59:49.0855 0744 CertPropSvc - ok
    12:59:49.0870 0744 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
    12:59:49.0870 0744 circlass - ok
    12:59:49.0902 0744 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
    12:59:49.0902 0744 CLFS - ok
    12:59:49.0980 0744 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    12:59:49.0980 0744 clr_optimization_v2.0.50727_32 - ok
    12:59:50.0026 0744 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
    12:59:50.0026 0744 clr_optimization_v2.0.50727_64 - ok
    12:59:50.0073 0744 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    12:59:50.0073 0744 clr_optimization_v4.0.30319_32 - ok
    12:59:50.0120 0744 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
    12:59:50.0120 0744 clr_optimization_v4.0.30319_64 - ok
    12:59:50.0167 0744 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
    12:59:50.0167 0744 CmBatt - ok
    12:59:50.0167 0744 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
    12:59:50.0167 0744 cmdide - ok
    12:59:50.0214 0744 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
    12:59:50.0229 0744 CNG - ok
    12:59:50.0245 0744 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
    12:59:50.0245 0744 Compbatt - ok
    12:59:50.0276 0744 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
    12:59:50.0276 0744 CompositeBus - ok
    12:59:50.0276 0744 COMSysApp - ok
    12:59:50.0416 0744 cpuz132 - ok
    12:59:50.0463 0744 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
    12:59:50.0463 0744 crcdisk - ok
    12:59:50.0510 0744 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
    12:59:50.0510 0744 CryptSvc - ok
    12:59:50.0541 0744 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
    12:59:50.0541 0744 CtClsFlt - ok
    12:59:50.0588 0744 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
    12:59:50.0588 0744 DcomLaunch - ok
    12:59:50.0619 0744 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
    12:59:50.0619 0744 defragsvc - ok
    12:59:50.0650 0744 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
    12:59:50.0650 0744 DfsC - ok
    12:59:50.0666 0744 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
    12:59:50.0666 0744 Dhcp - ok
    12:59:50.0697 0744 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
    12:59:50.0697 0744 discache - ok
    12:59:50.0713 0744 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
    12:59:50.0728 0744 Disk - ok
    12:59:50.0760 0744 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
    12:59:50.0760 0744 Dnscache - ok
    12:59:50.0822 0744 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
    12:59:50.0822 0744 DockLoginService - ok
    12:59:50.0869 0744 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
    12:59:50.0869 0744 dot3svc - ok
    12:59:50.0884 0744 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
    12:59:50.0884 0744 DPS - ok
    12:59:50.0916 0744 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
    12:59:50.0916 0744 drmkaud - ok
    12:59:50.0994 0744 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
    12:59:51.0009 0744 DXGKrnl - ok
    12:59:51.0056 0744 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
    12:59:51.0056 0744 EapHost - ok
    12:59:51.0165 0744 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
    12:59:51.0181 0744 ebdrv - ok
    12:59:51.0212 0744 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
    12:59:51.0212 0744 EFS - ok
    12:59:51.0274 0744 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
    12:59:51.0290 0744 ehRecvr - ok
    12:59:51.0306 0744 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
    12:59:51.0306 0744 ehSched - ok
    12:59:51.0337 0744 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
    12:59:51.0337 0744 elxstor - ok
    12:59:51.0384 0744 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
    12:59:51.0384 0744 ErrDev - ok
    12:59:51.0430 0744 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
    12:59:51.0430 0744 EventSystem - ok
    12:59:51.0446 0744 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
    12:59:51.0446 0744 exfat - ok
    12:59:51.0477 0744 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
    12:59:51.0477 0744 fastfat - ok
    12:59:51.0524 0744 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
    12:59:51.0540 0744 Fax - ok
    12:59:51.0540 0744 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
    12:59:51.0540 0744 fdc - ok
    12:59:51.0571 0744 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
    12:59:51.0571 0744 fdPHost - ok
    12:59:51.0571 0744 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
    12:59:51.0571 0744 FDResPub - ok
    12:59:51.0602 0744 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
    12:59:51.0602 0744 FileInfo - ok
    12:59:51.0618 0744 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
    12:59:51.0618 0744 Filetrace - ok
    12:59:51.0633 0744 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
    12:59:51.0633 0744 flpydisk - ok
    12:59:51.0649 0744 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
    12:59:51.0664 0744 FltMgr - ok
    12:59:51.0711 0744 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
    12:59:51.0727 0744 FontCache - ok
    12:59:51.0805 0744 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    12:59:51.0805 0744 FontCache3.0.0.0 - ok
    12:59:51.0836 0744 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
    12:59:51.0836 0744 FsDepends - ok
    12:59:51.0883 0744 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
    12:59:51.0883 0744 Fs_Rec - ok
    12:59:51.0914 0744 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
    12:59:51.0914 0744 fvevol - ok
    12:59:51.0930 0744 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
    12:59:51.0930 0744 gagp30kx - ok
    12:59:51.0976 0744 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
    12:59:51.0992 0744 gpsvc - ok
    12:59:52.0070 0744 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    12:59:52.0070 0744 gupdate - ok
    12:59:52.0086 0744 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    12:59:52.0086 0744 gupdatem - ok
    12:59:52.0117 0744 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
    12:59:52.0117 0744 gusvc - ok
    12:59:52.0148 0744 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
    12:59:52.0148 0744 hcw85cir - ok
    12:59:52.0179 0744 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
    12:59:52.0179 0744 HDAudBus - ok
    12:59:52.0210 0744 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
    12:59:52.0210 0744 HECIx64 - ok
    12:59:52.0226 0744 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
    12:59:52.0242 0744 HidBatt - ok
    12:59:52.0257 0744 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
    12:59:52.0257 0744 HidBth - ok
    12:59:52.0273 0744 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
    12:59:52.0273 0744 HidIr - ok
    12:59:52.0304 0744 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
    12:59:52.0320 0744 hidserv - ok
    12:59:52.0335 0744 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
    12:59:52.0335 0744 HidUsb - ok
    12:59:52.0382 0744 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
    12:59:52.0382 0744 hkmsvc - ok
    12:59:52.0413 0744 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
    12:59:52.0413 0744 HomeGroupListener - ok
    12:59:52.0460 0744 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
    12:59:52.0460 0744 HomeGroupProvider - ok
    12:59:52.0491 0744 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
    12:59:52.0491 0744 HpSAMD - ok
    12:59:52.0522 0744 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
    12:59:52.0538 0744 HTTP - ok
    12:59:52.0569 0744 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
    12:59:52.0569 0744 hwpolicy - ok
    12:59:52.0585 0744 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
    12:59:52.0585 0744 i8042prt - ok
    12:59:52.0616 0744 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
    12:59:52.0632 0744 iaStorV - ok
    12:59:52.0678 0744 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
    12:59:52.0678 0744 idsvc - ok
    12:59:52.0866 0744 [ 0372C154226F7074CD150F475A4870A6 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
    12:59:52.0897 0744 igfx - ok
    12:59:52.0928 0744 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
    12:59:52.0928 0744 iirsp - ok
    12:59:52.0990 0744 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
    12:59:52.0990 0744 IKEEXT - ok
    12:59:53.0022 0744 [ 36FDF367A1DABFF903E2214023D71368 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
    12:59:53.0022 0744 Impcd - ok
    12:59:53.0100 0744 [ 2A7CF87BE453241FE0BAA1C8651E7AA4 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
    12:59:53.0100 0744 IntcAzAudAddService - ok
    12:59:53.0115 0744 [ 49072EDBC5C2F964917D1B585C90ED0A ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
    12:59:53.0131 0744 IntcDAud - ok
    12:59:53.0162 0744 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
    12:59:53.0162 0744 intelide - ok
    12:59:53.0178 0744 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
    12:59:53.0178 0744 intelppm - ok
    12:59:53.0209 0744 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
    12:59:53.0209 0744 IPBusEnum - ok
    12:59:53.0240 0744 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
    12:59:53.0240 0744 IpFilterDriver - ok
    12:59:53.0302 0744 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
    12:59:53.0302 0744 iphlpsvc - ok
    12:59:53.0334 0744 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
    12:59:53.0334 0744 IPMIDRV - ok
    12:59:53.0365 0744 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
    12:59:53.0365 0744 IPNAT - ok
    12:59:53.0380 0744 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
    12:59:53.0380 0744 IRENUM - ok
    12:59:53.0396 0744 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
    12:59:53.0396 0744 isapnp - ok
    12:59:53.0412 0744 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
    12:59:53.0412 0744 iScsiPrt - ok
    12:59:53.0427 0744 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
    12:59:53.0427 0744 kbdclass - ok
    12:59:53.0443 0744 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
    12:59:53.0443 0744 kbdhid - ok
    12:59:53.0458 0744 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
    12:59:53.0458 0744 KeyIso - ok
    12:59:53.0490 0744 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
    12:59:53.0490 0744 KSecDD - ok
    12:59:53.0536 0744 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
    12:59:53.0536 0744 KSecPkg - ok
    12:59:53.0568 0744 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
    12:59:53.0568 0744 ksthunk - ok
    12:59:53.0599 0744 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
    12:59:53.0614 0744 KtmRm - ok
    12:59:53.0646 0744 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
    12:59:53.0646 0744 LanmanServer - ok
    12:59:53.0692 0744 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
    12:59:53.0692 0744 LanmanWorkstation - ok
    12:59:53.0708 0744 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
    12:59:53.0708 0744 lltdio - ok
    12:59:53.0739 0744 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
    12:59:53.0739 0744 lltdsvc - ok
    12:59:53.0755 0744 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
    12:59:53.0755 0744 lmhosts - ok
    12:59:53.0802 0744 [ 7485FBCEF9136F530953575E2977859D ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    12:59:53.0817 0744 LMS - ok
    12:59:53.0833 0744 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
    12:59:53.0833 0744 LSI_FC - ok
    12:59:53.0864 0744 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
    12:59:53.0864 0744 LSI_SAS - ok
    12:59:53.0880 0744 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
    12:59:53.0880 0744 LSI_SAS2 - ok
    12:59:53.0880 0744 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
    12:59:53.0880 0744 LSI_SCSI - ok
    12:59:53.0911 0744 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
    12:59:53.0911 0744 luafv - ok
    12:59:53.0958 0744 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
    12:59:53.0958 0744 Mcx2Svc - ok
    12:59:53.0973 0744 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
    12:59:53.0973 0744 megasas - ok
    12:59:53.0989 0744 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
    12:59:54.0004 0744 MegaSR - ok
    12:59:54.0020 0744 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
    12:59:54.0020 0744 MMCSS - ok
    12:59:54.0036 0744 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
    12:59:54.0036 0744 Modem - ok
    12:59:54.0051 0744 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
    12:59:54.0051 0744 monitor - ok
    12:59:54.0098 0744 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
    12:59:54.0098 0744 mouclass - ok
    12:59:54.0114 0744 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
    12:59:54.0114 0744 mouhid - ok
    12:59:54.0160 0744 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
    12:59:54.0160 0744 mountmgr - ok
    12:59:54.0207 0744 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
    12:59:54.0207 0744 MpFilter - ok
    12:59:54.0238 0744 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
    12:59:54.0238 0744 mpio - ok
    12:59:54.0270 0744 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
    12:59:54.0270 0744 mpsdrv - ok
    12:59:54.0316 0744 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
    12:59:54.0332 0744 MpsSvc - ok
    12:59:54.0363 0744 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
    12:59:54.0363 0744 MRxDAV - ok
    12:59:54.0410 0744 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
    12:59:54.0410 0744 mrxsmb - ok
    12:59:54.0441 0744 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
    12:59:54.0457 0744 mrxsmb10 - ok
    12:59:54.0472 0744 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
    12:59:54.0472 0744 mrxsmb20 - ok
    12:59:54.0504 0744 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
    12:59:54.0504 0744 msahci - ok
    12:59:54.0519 0744 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
    12:59:54.0519 0744 msdsm - ok
    12:59:54.0550 0744 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
    12:59:54.0566 0744 MSDTC - ok
    12:59:54.0597 0744 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
    12:59:54.0597 0744 Msfs - ok
    12:59:54.0613 0744 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
    12:59:54.0613 0744 mshidkmdf - ok
    12:59:54.0660 0744 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
    12:59:54.0660 0744 msisadrv - ok
    12:59:54.0691 0744 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
    12:59:54.0691 0744 MSiSCSI - ok
    12:59:54.0691 0744 msiserver - ok
    12:59:54.0722 0744 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
    12:59:54.0722 0744 MSKSSRV - ok
    12:59:54.0784 0744 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
    12:59:54.0784 0744 MsMpSvc - ok
    12:59:54.0800 0744 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
    12:59:54.0800 0744 MSPCLOCK - ok
    12:59:54.0800 0744 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
    12:59:54.0800 0744 MSPQM - ok
    12:59:54.0847 0744 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
    12:59:54.0862 0744 MsRPC - ok
    12:59:54.0894 0744 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
    12:59:54.0894 0744 mssmbios - ok
    12:59:54.0909 0744 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
    12:59:54.0909 0744 MSTEE - ok
    12:59:54.0925 0744 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
    12:59:54.0925 0744 MTConfig - ok
    12:59:54.0956 0744 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
    12:59:54.0956 0744 Mup - ok
    12:59:54.0987 0744 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
    12:59:54.0987 0744 napagent - ok
    12:59:55.0018 0744 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
    12:59:55.0018 0744 NativeWifiP - ok
    12:59:55.0050 0744 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
    12:59:55.0065 0744 NDIS - ok
    12:59:55.0081 0744 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
    12:59:55.0081 0744 NdisCap - ok
    12:59:55.0096 0744 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
    12:59:55.0096 0744 NdisTapi - ok
    12:59:55.0128 0744 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
    12:59:55.0128 0744 Ndisuio - ok
    12:59:55.0159 0744 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
    12:59:55.0159 0744 NdisWan - ok
    12:59:55.0206 0744 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
    12:59:55.0206 0744 NDProxy - ok
    12:59:55.0237 0744 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
    12:59:55.0237 0744 NetBIOS - ok
    12:59:55.0268 0744 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
    12:59:55.0268 0744 NetBT - ok
    12:59:55.0284 0744 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
    12:59:55.0284 0744 Netlogon - ok
    12:59:55.0315 0744 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
    12:59:55.0315 0744 Netman - ok
    12:59:55.0346 0744 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
    12:59:55.0346 0744 netprofm - ok
    12:59:55.0377 0744 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
    12:59:55.0377 0744 NetTcpPortSharing - ok
    12:59:55.0408 0744 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
    12:59:55.0408 0744 nfrd960 - ok
    12:59:55.0440 0744 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
    12:59:55.0440 0744 NisDrv - ok
    12:59:55.0471 0744 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
    12:59:55.0471 0744 NisSrv - ok
    12:59:55.0518 0744 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
    12:59:55.0533 0744 NlaSvc - ok
    12:59:55.0549 0744 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
    12:59:55.0549 0744 Npfs - ok
    12:59:55.0564 0744 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
    12:59:55.0564 0744 nsi - ok
    12:59:55.0596 0744 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
    12:59:55.0596 0744 nsiproxy - ok
    12:59:55.0658 0744 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
    12:59:55.0674 0744 Ntfs - ok
    12:59:55.0720 0744 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
    12:59:55.0720 0744 Null - ok
    12:59:55.0767 0744 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
    12:59:55.0767 0744 nvraid - ok
    12:59:55.0783 0744 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
    12:59:55.0783 0744 nvstor - ok
    12:59:55.0798 0744 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
    12:59:55.0798 0744 nv_agp - ok
    12:59:55.0876 0744 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
    12:59:55.0876 0744 odserv - ok
    12:59:55.0892 0744 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
    12:59:55.0892 0744 ohci1394 - ok
    12:59:55.0923 0744 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    12:59:55.0923 0744 ose - ok
    12:59:55.0954 0744 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
    12:59:55.0954 0744 p2pimsvc - ok
    12:59:55.0986 0744 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
    12:59:55.0986 0744 p2psvc - ok
    12:59:56.0001 0744 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
    12:59:56.0001 0744 Parport - ok
    12:59:56.0032 0744 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
    12:59:56.0032 0744 partmgr - ok
    12:59:56.0048 0744 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
    12:59:56.0064 0744 PcaSvc - ok
    12:59:56.0079 0744 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
    12:59:56.0079 0744 pci - ok
    12:59:56.0110 0744 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
    12:59:56.0110 0744 pciide - ok
    12:59:56.0142 0744 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
    12:59:56.0142 0744 pcmcia - ok
    12:59:56.0157 0744 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
    12:59:56.0157 0744 pcw - ok
    12:59:56.0188 0744 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
    12:59:56.0188 0744 PEAUTH - ok
    12:59:56.0266 0744 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
    12:59:56.0266 0744 PerfHost - ok
    12:59:56.0329 0744 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
    12:59:56.0344 0744 pla - ok
    12:59:56.0391 0744 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
    12:59:56.0391 0744 PlugPlay - ok
    12:59:56.0422 0744 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
    12:59:56.0422 0744 PNRPAutoReg - ok
    12:59:56.0454 0744 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
    12:59:56.0454 0744 PNRPsvc - ok
    12:59:56.0500 0744 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
    12:59:56.0500 0744 PolicyAgent - ok
    12:59:56.0547 0744 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
    12:59:56.0547 0744 Power - ok
    12:59:56.0578 0744 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
    12:59:56.0578 0744 PptpMiniport - ok
    12:59:56.0594 0744 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
    12:59:56.0594 0744 Processor - ok
    12:59:56.0641 0744 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
    12:59:56.0641 0744 ProfSvc - ok
    12:59:56.0656 0744 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
    12:59:56.0656 0744 ProtectedStorage - ok
    12:59:56.0688 0744 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
    12:59:56.0703 0744 Psched - ok
    12:59:56.0734 0744 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
    12:59:56.0734 0744 PxHlpa64 - ok
    12:59:56.0781 0744 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
    12:59:56.0797 0744 ql2300 - ok
    12:59:56.0812 0744 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
    12:59:56.0812 0744 ql40xx - ok
    12:59:56.0844 0744 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
    12:59:56.0844 0744 QWAVE - ok
    12:59:56.0859 0744 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
    12:59:56.0859 0744 QWAVEdrv - ok
    12:59:56.0875 0744 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
    12:59:56.0875 0744 RasAcd - ok
    12:59:56.0890 0744 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
    12:59:56.0890 0744 RasAgileVpn - ok
    12:59:56.0906 0744 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
    12:59:56.0922 0744 RasAuto - ok
    12:59:56.0953 0744 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
    12:59:56.0953 0744 Rasl2tp - ok
    12:59:57.0000 0744 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
    12:59:57.0000 0744 RasMan - ok
    12:59:57.0031 0744 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
    12:59:57.0031 0744 RasPppoe - ok
    12:59:57.0046 0744 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
    12:59:57.0046 0744 RasSstp - ok
    12:59:57.0062 0744 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
    12:59:57.0062 0744 rdbss - ok
    12:59:57.0093 0744 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
    12:59:57.0093 0744 rdpbus - ok
    12:59:57.0109 0744 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
    12:59:57.0109 0744 RDPCDD - ok
    12:59:57.0109 0744 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
    12:59:57.0109 0744 RDPENCDD - ok
    12:59:57.0140 0744 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
    12:59:57.0140 0744 RDPREFMP - ok
    12:59:57.0187 0744 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
    12:59:57.0187 0744 RDPWD - ok
    12:59:57.0218 0744 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
    12:59:57.0218 0744 rdyboost - ok
    12:59:57.0249 0744 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
    12:59:57.0249 0744 RemoteAccess - ok
    12:59:57.0280 0744 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
    12:59:57.0280 0744 RemoteRegistry - ok
    12:59:57.0296 0744 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
    12:59:57.0296 0744 RpcEptMapper - ok
    12:59:57.0327 0744 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
    12:59:57.0327 0744 RpcLocator - ok
    12:59:57.0358 0744 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
    12:59:57.0374 0744 RpcSs - ok
    12:59:57.0390 0744 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
    12:59:57.0390 0744 rspndr - ok
    12:59:57.0421 0744 [ 502B316947EA887CDDD325D4745EB7D0 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
    12:59:57.0421 0744 RSUSBSTOR - ok
    12:59:57.0452 0744 [ 3B01789EE4EAEE97F5EB46B711387D5E ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
    12:59:57.0452 0744 RTL8167 - ok
    12:59:57.0468 0744 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
    12:59:57.0468 0744 SamSs - ok
    12:59:57.0499 0744 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
    12:59:57.0499 0744 sbp2port - ok
    12:59:57.0530 0744 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
    12:59:57.0530 0744 SCardSvr - ok
    12:59:57.0561 0744 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
    12:59:57.0561 0744 scfilter - ok
    12:59:57.0624 0744 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
    12:59:57.0639 0744 Schedule - ok
    12:59:57.0686 0744 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
    12:59:57.0686 0744 SCPolicySvc - ok
    12:59:57.0702 0744 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
    12:59:57.0717 0744 SDRSVC - ok
    12:59:57.0748 0744 [ 16A252022535B680046F6E34E136D378 ] SeaPort C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    12:59:57.0748 0744 SeaPort - ok
    12:59:57.0780 0744 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
    12:59:57.0780 0744 secdrv - ok
    12:59:57.0811 0744 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
    12:59:57.0811 0744 seclogon - ok
    12:59:57.0842 0744 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
    12:59:57.0842 0744 SENS - ok
    12:59:57.0858 0744 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
    12:59:57.0858 0744 SensrSvc - ok
    12:59:57.0873 0744 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
    12:59:57.0873 0744 Serenum - ok
    12:59:57.0904 0744 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
    12:59:57.0904 0744 Serial - ok
    12:59:57.0936 0744 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
    12:59:57.0936 0744 sermouse - ok
    12:59:57.0982 0744 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
    12:59:57.0982 0744 SessionEnv - ok
    12:59:57.0998 0744 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
    12:59:57.0998 0744 sffdisk - ok
    12:59:58.0029 0744 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
    12:59:58.0029 0744 sffp_mmc - ok
    12:59:58.0045 0744 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
    12:59:58.0045 0744 sffp_sd - ok
    12:59:58.0060 0744 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
    12:59:58.0060 0744 sfloppy - ok
    12:59:58.0092 0744 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
    12:59:58.0092 0744 SharedAccess - ok
    12:59:58.0138 0744 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
    12:59:58.0154 0744 ShellHWDetection - ok
    12:59:58.0170 0744 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
    12:59:58.0170 0744 SiSRaid2 - ok
    12:59:58.0185 0744 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
    12:59:58.0185 0744 SiSRaid4 - ok
    12:59:58.0201 0744 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
    12:59:58.0201 0744 Smb - ok
    12:59:58.0216 0744 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
    12:59:58.0216 0744 SNMPTRAP - ok
    12:59:58.0248 0744 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
    12:59:58.0248 0744 spldr - ok
    12:59:58.0279 0744 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
    12:59:58.0294 0744 Spooler - ok
    12:59:58.0388 0744 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
    12:59:58.0419 0744 sppsvc - ok
    12:59:58.0450 0744 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
    12:59:58.0450 0744 sppuinotify - ok
    12:59:58.0497 0744 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
    12:59:58.0513 0744 srv - ok
    12:59:58.0528 0744 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
    12:59:58.0544 0744 srv2 - ok
    12:59:58.0560 0744 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
    12:59:58.0560 0744 srvnet - ok
    12:59:58.0575 0744 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
    12:59:58.0575 0744 SSDPSRV - ok
    12:59:58.0591 0744 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
    12:59:58.0591 0744 SstpSvc - ok
    12:59:58.0622 0744 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
    12:59:58.0622 0744 stexstor - ok
    12:59:58.0669 0744 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
    12:59:58.0684 0744 stisvc - ok
    12:59:58.0716 0744 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
    12:59:58.0716 0744 swenum - ok
    12:59:58.0747 0744 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
    12:59:58.0762 0744 swprv - ok
    12:59:58.0825 0744 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
    12:59:58.0840 0744 SysMain - ok
    12:59:58.0872 0744 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
    12:59:58.0872 0744 TabletInputService - ok
    12:59:58.0887 0744 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
    12:59:58.0887 0744 TapiSrv - ok
    12:59:58.0903 0744 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
    12:59:58.0918 0744 TBS - ok
    12:59:58.0981 0744 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
    12:59:58.0996 0744 Tcpip - ok
    12:59:59.0074 0744 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
    12:59:59.0090 0744 TCPIP6 - ok
    12:59:59.0137 0744 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
    12:59:59.0137 0744 tcpipreg - ok
    12:59:59.0168 0744 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
    12:59:59.0168 0744 TDPIPE - ok
    12:59:59.0199 0744 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
    12:59:59.0199 0744 TDTCP - ok
    12:59:59.0230 0744 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
    12:59:59.0230 0744 tdx - ok
    12:59:59.0246 0744 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
    12:59:59.0246 0744 TermDD - ok
    12:59:59.0277 0744 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
    12:59:59.0277 0744 TermService - ok
    12:59:59.0308 0744 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
    12:59:59.0308 0744 Themes - ok
    12:59:59.0324 0744 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
    12:59:59.0324 0744 THREADORDER - ok
    12:59:59.0340 0744 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
    12:59:59.0340 0744 TrkWks - ok
    12:59:59.0418 0744 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
    12:59:59.0418 0744 TrustedInstaller - ok
    12:59:59.0449 0744 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
    12:59:59.0449 0744 tssecsrv - ok
    12:59:59.0480 0744 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
    12:59:59.0480 0744 TsUsbFlt - ok
    12:59:59.0511 0744 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
    12:59:59.0511 0744 tunnel - ok
    12:59:59.0542 0744 [ 825E7A1F48FB8BCFBA27C178AAB4E275 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
    12:59:59.0542 0744 TurboB - ok
    12:59:59.0558 0744 [ B206BE1174D5964D49A56BB6C4E0524A ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
    12:59:59.0558 0744 TurboBoost - ok
    12:59:59.0589 0744 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
    12:59:59.0589 0744 uagp35 - ok
    12:59:59.0620 0744 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
    12:59:59.0620 0744 udfs - ok
    12:59:59.0652 0744 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
    12:59:59.0652 0744 UI0Detect - ok
    12:59:59.0667 0744 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
    12:59:59.0667 0744 uliagpkx - ok
    12:59:59.0698 0744 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
    12:59:59.0714 0744 umbus - ok
    12:59:59.0730 0744 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
    12:59:59.0745 0744 UmPass - ok
    12:59:59.0823 0744 [ 765F2DD351BA064F657751D8D75E58C0 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    12:59:59.0854 0744 UNS - ok
    12:59:59.0886 0744 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
    12:59:59.0886 0744 upnphost - ok
    12:59:59.0932 0744 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
    12:59:59.0932 0744 usbccgp - ok
    12:59:59.0948 0744 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
    12:59:59.0948 0744 usbcir - ok
    12:59:59.0979 0744 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
    12:59:59.0979 0744 usbehci - ok
    12:59:59.0995 0744 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
    12:59:59.0995 0744 usbhub - ok
    13:00:00.0042 0744 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
    13:00:00.0042 0744 usbohci - ok
    13:00:00.0073 0744 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
    13:00:00.0073 0744 usbprint - ok
    13:00:00.0104 0744 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
    13:00:00.0104 0744 usbscan - ok
    13:00:00.0135 0744 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
    13:00:00.0135 0744 USBSTOR - ok
    13:00:00.0151 0744 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
    13:00:00.0166 0744 usbuhci - ok
    13:00:00.0182 0744 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
    13:00:00.0182 0744 usbvideo - ok
    13:00:00.0213 0744 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
    13:00:00.0213 0744 UxSms - ok
    13:00:00.0229 0744 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
    13:00:00.0229 0744 VaultSvc - ok
    13:00:00.0276 0744 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
    13:00:00.0276 0744 vdrvroot - ok
    13:00:00.0322 0744 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
    13:00:00.0322 0744 vds - ok
    13:00:00.0354 0744 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
    13:00:00.0354 0744 vga - ok
    13:00:00.0385 0744 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
    13:00:00.0385 0744 VgaSave - ok
    13:00:00.0416 0744 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
    13:00:00.0432 0744 vhdmp - ok
    13:00:00.0432 0744 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
    13:00:00.0432 0744 viaide - ok
    13:00:00.0463 0744 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
    13:00:00.0463 0744 volmgr - ok
    13:00:00.0510 0744 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
    13:00:00.0510 0744 volmgrx - ok
    13:00:00.0525 0744 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
    13:00:00.0541 0744 volsnap - ok
    13:00:00.0556 0744 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
    13:00:00.0556 0744 vsmraid - ok
    13:00:00.0619 0744 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
    13:00:00.0634 0744 VSS - ok
    13:00:00.0650 0744 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
    13:00:00.0666 0744 vwifibus - ok
    13:00:00.0666 0744 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
    13:00:00.0666 0744 vwififlt - ok
    13:00:00.0712 0744 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
    13:00:00.0712 0744 W32Time - ok
    13:00:00.0728 0744 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
    13:00:00.0728 0744 WacomPen - ok
    13:00:00.0759 0744 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
    13:00:00.0759 0744 WANARP - ok
    13:00:00.0775 0744 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
    13:00:00.0775 0744 Wanarpv6 - ok
    13:00:00.0837 0744 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
    13:00:00.0853 0744 WatAdminSvc - ok
    13:00:00.0915 0744 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
    13:00:00.0931 0744 wbengine - ok
    13:00:00.0962 0744 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
    13:00:00.0962 0744 WbioSrvc - ok
    13:00:00.0993 0744 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
    13:00:00.0993 0744 wcncsvc - ok
    13:00:01.0009 0744 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
    13:00:01.0009 0744 WcsPlugInService - ok
    13:00:01.0024 0744 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
    13:00:01.0024 0744 Wd - ok
    13:00:01.0071 0744 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
    13:00:01.0087 0744 Wdf01000 - ok
    13:00:01.0102 0744 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
    13:00:01.0102 0744 WdiServiceHost - ok
    13:00:01.0134 0744 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
    13:00:01.0134 0744 WdiSystemHost - ok
    13:00:01.0165 0744 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
    13:00:01.0165 0744 WebClient - ok
    13:00:01.0196 0744 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
    13:00:01.0196 0744 Wecsvc - ok
    13:00:01.0212 0744 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
    13:00:01.0212 0744 wercplsupport - ok
    13:00:01.0227 0744 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
    13:00:01.0243 0744 WerSvc - ok
    13:00:01.0274 0744 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
    13:00:01.0274 0744 WfpLwf - ok
    13:00:01.0290 0744 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
    13:00:01.0290 0744 WIMMount - ok
    13:00:01.0305 0744 WinDefend - ok
    13:00:01.0305 0744 WinHttpAutoProxySvc - ok
    13:00:01.0368 0744 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
    13:00:01.0368 0744 Winmgmt - ok
    13:00:01.0446 0744 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
    13:00:01.0461 0744 WinRM - ok
    13:00:01.0524 0744 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
    13:00:01.0524 0744 WinUsb - ok
    13:00:01.0570 0744 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
    13:00:01.0586 0744 Wlansvc - ok
    13:00:01.0726 0744 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    13:00:01.0742 0744 wlidsvc - ok
    13:00:01.0789 0744 [ 13B0A570E1AE451C92DA550085D72CF3 ] wltrysvc C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
    13:00:01.0789 0744 wltrysvc - ok
    13:00:01.0820 0744 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
    13:00:01.0820 0744 WmiAcpi - ok
    13:00:01.0851 0744 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
    13:00:01.0851 0744 wmiApSrv - ok
    13:00:01.0882 0744 WMPNetworkSvc - ok
    13:00:01.0898 0744 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
    13:00:01.0914 0744 WPCSvc - ok
    13:00:01.0945 0744 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
    13:00:01.0945 0744 WPDBusEnum - ok
    13:00:01.0960 0744 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
    13:00:01.0960 0744 ws2ifsl - ok
    13:00:01.0992 0744 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
    13:00:01.0992 0744 wscsvc - ok
    13:00:01.0992 0744 WSearch - ok
    13:00:02.0070 0744 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
    13:00:02.0085 0744 wuauserv - ok
    13:00:02.0132 0744 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
    13:00:02.0132 0744 WudfPf - ok
    13:00:02.0148 0744 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
    13:00:02.0148 0744 WUDFRd - ok
    13:00:02.0179 0744 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
    13:00:02.0179 0744 wudfsvc - ok
    13:00:02.0210 0744 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
    13:00:02.0226 0744 WwanSvc - ok
    13:00:02.0226 0744 ================ Scan global ===============================
    13:00:02.0257 0744 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
    13:00:02.0288 0744 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
    13:00:02.0304 0744 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
    13:00:02.0319 0744 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
    13:00:02.0350 0744 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
    13:00:02.0350 0744 [Global] - ok
    13:00:02.0350 0744 ================ Scan MBR ==================================
    13:00:02.0382 0744 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
    13:00:02.0725 0744 \Device\Harddisk0\DR0 - ok
    13:00:02.0725 0744 ================ Scan VBR ==================================
    13:00:02.0740 0744 [ D6882CAB9992BEB45569AAEF134498EB ] \Device\Harddisk0\DR0\Partition1
    13:00:02.0740 0744 \Device\Harddisk0\DR0\Partition1 - ok
    13:00:02.0756 0744 [ 648A5E096581CCEF30C7BBC0DE874E61 ] \Device\Harddisk0\DR0\Partition2
    13:00:02.0756 0744 \Device\Harddisk0\DR0\Partition2 - ok
    13:00:02.0772 0744 [ 612C1C3F603E31ED72F90C7D8005A7A6 ] \Device\Harddisk0\DR0\Partition3
    13:00:02.0772 0744 \Device\Harddisk0\DR0\Partition3 - ok
    13:00:02.0772 0744 ============================================================
    13:00:02.0772 0744 Scan finished
    13:00:02.0772 0744 ============================================================
    13:00:02.0772 2260 Detected object count: 0
    13:00:02.0787 2260 Actual detected object count: 0
    13:00:07.0748 5024 Deinitialize success

    Being more than a little ignorant in what I am doing I ran it again and got the following which is a little smaller in size

    13:03:14.0212 4812 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
    13:03:14.0368 4812 ============================================================
    13:03:14.0368 4812 Current date / time: 2013/01/08 13:03:14.0368
    13:03:14.0368 4812 SystemInfo:
    13:03:14.0368 4812
    13:03:14.0368 4812 OS Version: 6.1.7601 ServicePack: 1.0
    13:03:14.0368 4812 Product type: Workstation
    13:03:14.0368 4812 ComputerName: COLINFOOT-PC
    13:03:14.0368 4812 UserName: colinfoot
    13:03:14.0368 4812 Windows directory: C:\Windows
    13:03:14.0368 4812 System windows directory: C:\Windows
    13:03:14.0368 4812 Running under WOW64
    13:03:14.0368 4812 Processor architecture: Intel x64
    13:03:14.0368 4812 Number of processors: 4
    13:03:14.0368 4812 Page size: 0x1000
    13:03:14.0368 4812 Boot type: Normal boot
    13:03:14.0368 4812 ============================================================
    13:03:17.0441 4812 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
    13:03:17.0441 4812 ============================================================
    13:03:17.0441 4812 \Device\Harddisk0\DR0:
    13:03:17.0441 4812 MBR partitions:
    13:03:17.0441 4812 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1388000
    13:03:17.0441 4812 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x13BA800, BlocksNum 0x7530000
    13:03:17.0457 4812 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x88EB000, BlocksNum 0x31A9A800
    13:03:17.0457 4812 ============================================================
    13:03:17.0488 4812 C: <-> \Device\Harddisk0\DR0\Partition2
    13:03:17.0535 4812 D: <-> \Device\Harddisk0\DR0\Partition3
    13:03:17.0535 4812 ============================================================
    13:03:17.0535 4812 Initialize success
    13:03:17.0535 4812 ============================================================
    13:03:30.0327 2176 ============================================================
    13:03:30.0327 2176 Scan started
    13:03:30.0327 2176 Mode: Manual;
    13:03:30.0327 2176 ============================================================
    13:03:31.0809 2176 ================ Scan system memory ========================
    13:03:31.0809 2176 System memory - ok
    13:03:31.0809 2176 ================ Scan services =============================
    13:03:31.0996 2176 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
    13:03:31.0996 2176 1394ohci - ok
    13:03:32.0027 2176 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
    13:03:32.0027 2176 ACPI - ok
    13:03:32.0058 2176 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
    13:03:32.0058 2176 AcpiPmi - ok
    13:03:32.0277 2176 [ 95CE557D16A75606CCC2D7F3B0B0BCCB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    13:03:32.0277 2176 AdobeFlashPlayerUpdateSvc - ok
    13:03:32.0339 2176 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
    13:03:32.0355 2176 adp94xx - ok
    13:03:32.0370 2176 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
    13:03:32.0386 2176 adpahci - ok
    13:03:32.0401 2176 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
    13:03:32.0401 2176 adpu320 - ok
    13:03:32.0433 2176 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
    13:03:32.0433 2176 AeLookupSvc - ok
    13:03:32.0495 2176 [ 3AC22A3DFA8A050E35F0E3CD99D0CDF2 ] AERTFilters C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
    13:03:32.0495 2176 AERTFilters - ok
    13:03:32.0542 2176 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
    13:03:32.0557 2176 AFD - ok
    13:03:32.0604 2176 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
    13:03:32.0604 2176 agp440 - ok
    13:03:32.0635 2176 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
    13:03:32.0651 2176 ALG - ok
    13:03:32.0682 2176 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
    13:03:32.0682 2176 aliide - ok
    13:03:32.0698 2176 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
    13:03:32.0698 2176 amdide - ok
    13:03:32.0729 2176 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
    13:03:32.0729 2176 AmdK8 - ok
    13:03:32.0745 2176 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
    13:03:32.0745 2176 AmdPPM - ok
    13:03:32.0776 2176 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
    13:03:32.0791 2176 amdsata - ok
    13:03:32.0807 2176 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
    13:03:32.0807 2176 amdsbs - ok
    13:03:32.0823 2176 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
    13:03:32.0823 2176 amdxata - ok
    13:03:32.0885 2176 [ 8B522286C8D6A20133D12225B7759596 ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
    13:03:32.0885 2176 ApfiltrService - ok
    13:03:32.0963 2176 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
    13:03:32.0963 2176 AppID - ok
    13:03:32.0979 2176 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
    13:03:32.0979 2176 AppIDSvc - ok
    13:03:33.0010 2176 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll
    13:03:33.0010 2176 Appinfo - ok
    13:03:33.0057 2176 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys
    13:03:33.0057 2176 arc - ok
    13:03:33.0072 2176 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
    13:03:33.0072 2176 arcsas - ok
    13:03:33.0103 2176 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
    13:03:33.0103 2176 AsyncMac - ok
    13:03:33.0150 2176 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
    13:03:33.0150 2176 atapi - ok
    13:03:33.0228 2176 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
    13:03:33.0259 2176 AudioEndpointBuilder - ok
    13:03:33.0275 2176 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
    13:03:33.0275 2176 AudioSrv - ok
    13:03:33.0337 2176 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
    13:03:33.0337 2176 AxInstSV - ok
    13:03:33.0400 2176 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
    13:03:33.0415 2176 b06bdrv - ok
    13:03:33.0447 2176 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
    13:03:33.0462 2176 b57nd60a - ok
    13:03:33.0493 2176 [ E001DD475A7C27EBE5A0DB45C11BAD71 ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
    13:03:33.0493 2176 BCM42RLY - ok
    13:03:33.0618 2176 [ F4CD5F52850BF2C978DE178F256BA372 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
    13:03:33.0634 2176 BCM43XX - ok
    13:03:33.0712 2176 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
    13:03:33.0712 2176 BDESVC - ok
    13:03:33.0759 2176 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
    13:03:33.0759 2176 Beep - ok
    13:03:33.0852 2176 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
    13:03:33.0868 2176 BFE - ok
    13:03:33.0883 2176 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
    13:03:33.0930 2176 BITS - ok
    13:03:33.0961 2176 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
    13:03:33.0961 2176 blbdrive - ok
    13:03:34.0008 2176 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
    13:03:34.0024 2176 bowser - ok
    13:03:34.0039 2176 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
    13:03:34.0039 2176 BrFiltLo - ok
    13:03:34.0055 2176 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
    13:03:34.0055 2176 BrFiltUp - ok
    13:03:34.0117 2176 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
    13:03:34.0117 2176 Browser - ok
    13:03:34.0149 2176 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
    13:03:34.0149 2176 Brserid - ok
    13:03:34.0180 2176 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
    13:03:34.0180 2176 BrSerWdm - ok
    13:03:34.0195 2176 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
    13:03:34.0195 2176 BrUsbMdm - ok
    13:03:34.0211 2176 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
    13:03:34.0211 2176 BrUsbSer - ok
    13:03:34.0227 2176 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
    13:03:34.0227 2176 BTHMODEM - ok
    13:03:34.0273 2176 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
    13:03:34.0273 2176 bthserv - ok
    13:03:34.0289 2176 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
    13:03:34.0289 2176 cdfs - ok
    13:03:34.0336 2176 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys
    13:03:34.0336 2176 cdrom - ok
    13:03:34.0383 2176 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
    13:03:34.0383 2176 CertPropSvc - ok
    13:03:34.0398 2176 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
    13:03:34.0414 2176 circlass - ok
    13:03:34.0429 2176 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
    13:03:34.0445 2176 CLFS - ok
    13:03:34.0492 2176 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    13:03:34.0507 2176 clr_optimization_v2.0.50727_32 - ok
    13:03:34.0554 2176 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
    13:03:34.0554 2176 clr_optimization_v2.0.50727_64 - ok
    13:03:34.0648 2176 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    13:03:34.0710 2176 clr_optimization_v4.0.30319_32 - ok
    13:03:34.0757 2176 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
    13:03:34.0757 2176 clr_optimization_v4.0.30319_64 - ok
    13:03:34.0804 2176 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
    13:03:34.0804 2176 CmBatt - ok
    13:03:34.0835 2176 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
    13:03:34.0835 2176 cmdide - ok
    13:03:34.0882 2176 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
    13:03:34.0897 2176 CNG - ok
    13:03:34.0913 2176 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
    13:03:34.0913 2176 Compbatt - ok
    13:03:34.0960 2176 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
    13:03:34.0960 2176 CompositeBus - ok
    13:03:34.0975 2176 COMSysApp - ok
    13:03:35.0241 2176 cpuz132 - ok
    13:03:35.0319 2176 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
    13:03:35.0319 2176 crcdisk - ok
    13:03:35.0381 2176 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll
    13:03:35.0381 2176 CryptSvc - ok
    13:03:35.0443 2176 [ ED5CF92396A62F4C15110DCDB5E854D9 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
    13:03:35.0443 2176 CtClsFlt - ok
    13:03:35.0506 2176 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
    13:03:35.0506 2176 DcomLaunch - ok
    13:03:35.0568 2176 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
    13:03:35.0568 2176 defragsvc - ok
    13:03:35.0615 2176 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
    13:03:35.0615 2176 DfsC - ok
    13:03:35.0662 2176 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
    13:03:35.0662 2176 Dhcp - ok
    13:03:35.0693 2176 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
    13:03:35.0693 2176 discache - ok
    13:03:35.0724 2176 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys
    13:03:35.0724 2176 Disk - ok
    13:03:35.0787 2176 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
    13:03:35.0787 2176 Dnscache - ok
    13:03:35.0865 2176 [ 0840ABBBDF438691EE65A20040635CBE ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
    13:03:35.0865 2176 DockLoginService - ok
    13:03:35.0911 2176 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
    13:03:35.0911 2176 dot3svc - ok
    13:03:35.0927 2176 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
    13:03:35.0927 2176 DPS - ok
    13:03:35.0974 2176 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
    13:03:35.0989 2176 drmkaud - ok
    13:03:36.0052 2176 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
    13:03:36.0052 2176 DXGKrnl - ok
    13:03:36.0083 2176 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
    13:03:36.0099 2176 EapHost - ok
    13:03:36.0192 2176 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
    13:03:36.0301 2176 ebdrv - ok
    13:03:36.0333 2176 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
    13:03:36.0333 2176 EFS - ok
    13:03:36.0411 2176 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
    13:03:36.0426 2176 ehRecvr - ok
    13:03:36.0457 2176 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
    13:03:36.0457 2176 ehSched - ok
    13:03:36.0504 2176 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
    13:03:36.0520 2176 elxstor - ok
    13:03:36.0567 2176 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
    13:03:36.0567 2176 ErrDev - ok
    13:03:36.0629 2176 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
    13:03:36.0645 2176 EventSystem - ok
    13:03:36.0676 2176 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
    13:03:36.0691 2176 exfat - ok
    13:03:36.0723 2176 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
    13:03:36.0723 2176 fastfat - ok
    13:03:36.0769 2176 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
    13:03:36.0801 2176 Fax - ok
    13:03:36.0816 2176 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys
    13:03:36.0816 2176 fdc - ok
    13:03:36.0847 2176 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
    13:03:36.0847 2176 fdPHost - ok
    13:03:36.0863 2176 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
    13:03:36.0863 2176 FDResPub - ok
    13:03:36.0879 2176 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
    13:03:36.0879 2176 FileInfo - ok
    13:03:36.0894 2176 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
    13:03:36.0894 2176 Filetrace - ok
    13:03:36.0925 2176 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
    13:03:36.0925 2176 flpydisk - ok
    13:03:36.0972 2176 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
    13:03:36.0972 2176 FltMgr - ok
    13:03:37.0050 2176 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll
    13:03:37.0097 2176 FontCache - ok
    13:03:37.0222 2176 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    13:03:37.0222 2176 FontCache3.0.0.0 - ok
    13:03:37.0253 2176 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
    13:03:37.0253 2176 FsDepends - ok
    13:03:37.0347 2176 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
    13:03:37.0347 2176 Fs_Rec - ok
    13:03:37.0393 2176 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
    13:03:37.0393 2176 fvevol - ok
    13:03:37.0440 2176 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
    13:03:37.0440 2176 gagp30kx - ok
    13:03:37.0503 2176 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
    13:03:37.0534 2176 gpsvc - ok
    13:03:37.0643 2176 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    13:03:37.0643 2176 gupdate - ok
    13:03:37.0690 2176 [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    13:03:37.0690 2176 gupdatem - ok
    13:03:37.0721 2176 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
    13:03:37.0737 2176 gusvc - ok
    13:03:37.0752 2176 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
    13:03:37.0752 2176 hcw85cir - ok
    13:03:37.0799 2176 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
    13:03:37.0815 2176 HDAudBus - ok
    13:03:37.0846 2176 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
    13:03:37.0846 2176 HECIx64 - ok
    13:03:37.0861 2176 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
    13:03:37.0877 2176 HidBatt - ok
    13:03:37.0893 2176 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
    13:03:37.0893 2176 HidBth - ok
    13:03:37.0908 2176 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
    13:03:37.0908 2176 HidIr - ok
    13:03:37.0939 2176 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll
    13:03:37.0939 2176 hidserv - ok
    13:03:38.0002 2176 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\drivers\hidusb.sys
    13:03:38.0002 2176 HidUsb - ok
    13:03:38.0064 2176 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
    13:03:38.0080 2176 hkmsvc - ok
    13:03:38.0142 2176 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
    13:03:38.0142 2176 HomeGroupListener - ok
    13:03:38.0189 2176 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
    13:03:38.0189 2176 HomeGroupProvider - ok
    13:03:38.0236 2176 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
    13:03:38.0251 2176 HpSAMD - ok
    13:03:38.0314 2176 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
    13:03:38.0345 2176 HTTP - ok
    13:03:38.0376 2176 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
    13:03:38.0376 2176 hwpolicy - ok
    13:03:38.0392 2176 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
    13:03:38.0407 2176 i8042prt - ok
    13:03:38.0439 2176 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
    13:03:38.0454 2176 iaStorV - ok
    13:03:38.0532 2176 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
    13:03:38.0563 2176 idsvc - ok
    13:03:39.0016 2176 [ 0372C154226F7074CD150F475A4870A6 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
    13:03:39.0172 2176 igfx - ok
    13:03:39.0219 2176 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
    13:03:39.0219 2176 iirsp - ok
    13:03:39.0281 2176 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
    13:03:39.0297 2176 IKEEXT - ok
    13:03:39.0328 2176 [ 36FDF367A1DABFF903E2214023D71368 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
    13:03:39.0328 2176 Impcd - ok
    13:03:39.0484 2176 [ 2A7CF87BE453241FE0BAA1C8651E7AA4 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
    13:03:39.0484 2176 IntcAzAudAddService - ok
    13:03:39.0515 2176 [ 49072EDBC5C2F964917D1B585C90ED0A ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
    13:03:39.0515 2176 IntcDAud - ok
    13:03:39.0562 2176 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
    13:03:39.0562 2176 intelide - ok
    13:03:39.0593 2176 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
    13:03:39.0593 2176 intelppm - ok
    13:03:39.0624 2176 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
    13:03:39.0624 2176 IPBusEnum - ok
    13:03:39.0687 2176 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
    13:03:39.0687 2176 IpFilterDriver - ok
    13:03:39.0718 2176 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
    13:03:39.0733 2176 iphlpsvc - ok
    13:03:39.0765 2176 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
    13:03:39.0780 2176 IPMIDRV - ok
    13:03:39.0796 2176 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
    13:03:39.0796 2176 IPNAT - ok
    13:03:39.0827 2176 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
    13:03:39.0827 2176 IRENUM - ok
    13:03:39.0843 2176 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
    13:03:39.0843 2176 isapnp - ok
    13:03:39.0874 2176 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
    13:03:39.0874 2176 iScsiPrt - ok
    13:03:39.0905 2176 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
    13:03:39.0905 2176 kbdclass - ok
    13:03:39.0921 2176 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
    13:03:39.0921 2176 kbdhid - ok
    13:03:39.0952 2176 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
    13:03:39.0952 2176 KeyIso - ok
    13:03:39.0983 2176 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
    13:03:39.0983 2176 KSecDD - ok
    13:03:40.0030 2176 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
    13:03:40.0030 2176 KSecPkg - ok
    13:03:40.0061 2176 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
    13:03:40.0061 2176 ksthunk - ok
    13:03:40.0077 2176 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
    13:03:40.0092 2176 KtmRm - ok
    13:03:40.0217 2176 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\system32\srvsvc.dll
    13:03:40.0233 2176 LanmanServer - ok
    13:03:40.0264 2176 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
    13:03:40.0264 2176 LanmanWorkstation - ok
    13:03:40.0295 2176 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
    13:03:40.0311 2176 lltdio - ok
    13:03:40.0342 2176 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
    13:03:40.0342 2176 lltdsvc - ok
    13:03:40.0357 2176 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
    13:03:40.0373 2176 lmhosts - ok
    13:03:40.0435 2176 [ 7485FBCEF9136F530953575E2977859D ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    13:03:40.0435 2176 LMS - ok
    13:03:40.0482 2176 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
    13:03:40.0482 2176 LSI_FC - ok
    13:03:40.0498 2176 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
    13:03:40.0498 2176 LSI_SAS - ok
    13:03:40.0513 2176 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
    13:03:40.0513 2176 LSI_SAS2 - ok
    13:03:40.0529 2176 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
    13:03:40.0529 2176 LSI_SCSI - ok
    13:03:40.0545 2176 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
    13:03:40.0560 2176 luafv - ok
    13:03:40.0591 2176 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
    13:03:40.0591 2176 Mcx2Svc - ok
    13:03:40.0607 2176 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
    13:03:40.0623 2176 megasas - ok
    13:03:40.0638 2176 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
    13:03:40.0654 2176 MegaSR - ok
    13:03:40.0669 2176 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
    13:03:40.0669 2176 MMCSS - ok
    13:03:40.0685 2176 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
    13:03:40.0685 2176 Modem - ok
    13:03:40.0716 2176 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
    13:03:40.0716 2176 monitor - ok
    13:03:40.0747 2176 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\drivers\mouclass.sys
    13:03:40.0747 2176 mouclass - ok
    13:03:40.0779 2176 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
    13:03:40.0779 2176 mouhid - ok
    13:03:40.0841 2176 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
    13:03:40.0841 2176 mountmgr - ok
    13:03:40.0919 2176 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
    13:03:40.0919 2176 MpFilter - ok
    13:03:40.0950 2176 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
    13:03:40.0966 2176 mpio - ok
    13:03:40.0981 2176 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
    13:03:40.0997 2176 mpsdrv - ok
    13:03:41.0044 2176 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
    13:03:41.0075 2176 MpsSvc - ok
    13:03:41.0106 2176 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
    13:03:41.0122 2176 MRxDAV - ok
    13:03:41.0169 2176 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
    13:03:41.0169 2176 mrxsmb - ok
    13:03:41.0215 2176 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
    13:03:41.0231 2176 mrxsmb10 - ok
    13:03:41.0247 2176 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
    13:03:41.0247 2176 mrxsmb20 - ok
    13:03:41.0278 2176 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
    13:03:41.0278 2176 msahci - ok
    13:03:41.0309 2176 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
    13:03:41.0309 2176 msdsm - ok
    13:03:41.0340 2176 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
    13:03:41.0340 2176 MSDTC - ok
    13:03:41.0371 2176 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
    13:03:41.0371 2176 Msfs - ok
    13:03:41.0403 2176 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
    13:03:41.0403 2176 mshidkmdf - ok
    13:03:41.0434 2176 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
    13:03:41.0434 2176 msisadrv - ok
    13:03:41.0449 2176 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
    13:03:41.0465 2176 MSiSCSI - ok
    13:03:41.0465 2176 msiserver - ok
    13:03:41.0496 2176 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
    13:03:41.0496 2176 MSKSSRV - ok
    13:03:41.0621 2176 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
    13:03:41.0621 2176 MsMpSvc - ok
    13:03:41.0668 2176 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
    13:03:41.0668 2176 MSPCLOCK - ok
    13:03:41.0668 2176 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
    13:03:41.0668 2176 MSPQM - ok
    13:03:41.0715 2176 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
    13:03:41.0730 2176 MsRPC - ok
    13:03:41.0761 2176 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
    13:03:41.0777 2176 mssmbios - ok
    13:03:41.0793 2176 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
    13:03:41.0793 2176 MSTEE - ok
    13:03:41.0808 2176 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
    13:03:41.0808 2176 MTConfig - ok
    13:03:41.0824 2176 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
    13:03:41.0824 2176 Mup - ok
    13:03:41.0855 2176 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
    13:03:41.0855 2176 napagent - ok
    13:03:41.0902 2176 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
    13:03:41.0902 2176 NativeWifiP - ok
    13:03:41.0980 2176 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
    13:03:42.0011 2176 NDIS - ok
    13:03:42.0027 2176 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
    13:03:42.0042 2176 NdisCap - ok
    13:03:42.0089 2176 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
    13:03:42.0089 2176 NdisTapi - ok
    13:03:42.0120 2176 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
    13:03:42.0120 2176 Ndisuio - ok
    13:03:42.0151 2176 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
    13:03:42.0151 2176 NdisWan - ok
    13:03:42.0198 2176 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
    13:03:42.0214 2176 NDProxy - ok
    13:03:42.0229 2176 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
    13:03:42.0229 2176 NetBIOS - ok
    13:03:42.0276 2176 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
    13:03:42.0292 2176 NetBT - ok
    13:03:42.0307 2176 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
    13:03:42.0307 2176 Netlogon - ok
    13:03:42.0354 2176 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
    13:03:42.0370 2176 Netman - ok
    13:03:42.0385 2176 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
    13:03:42.0401 2176 netprofm - ok
    13:03:42.0417 2176 [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
    13:03:42.0432 2176 NetTcpPortSharing - ok
    13:03:42.0463 2176 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
    13:03:42.0479 2176 nfrd960 - ok
    13:03:42.0541 2176 [ 5FF89F20317309D28AC1EDEB0CD1BA72 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
    13:03:42.0541 2176 NisDrv - ok
    13:03:42.0619 2176 [ 79E80B10FE8F6662E0C9162A68C43444 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
    13:03:42.0619 2176 NisSrv - ok
    13:03:42.0666 2176 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
    13:03:42.0666 2176 NlaSvc - ok
    13:03:42.0697 2176 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
    13:03:42.0697 2176 Npfs - ok
    13:03:42.0729 2176 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
    13:03:42.0729 2176 nsi - ok
    13:03:42.0729 2176 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
    13:03:42.0729 2176 nsiproxy - ok
    13:03:42.0791 2176 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
    13:03:42.0838 2176 Ntfs - ok
    13:03:42.0853 2176 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
    13:03:42.0869 2176 Null - ok
    13:03:42.0916 2176 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
    13:03:42.0916 2176 nvraid - ok
    13:03:42.0947 2176 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
    13:03:42.0947 2176 nvstor - ok
    13:03:42.0994 2176 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
    13:03:42.0994 2176 nv_agp - ok
    13:03:43.0134 2176 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
    13:03:43.0150 2176 odserv - ok
    13:03:43.0181 2176 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
    13:03:43.0181 2176 ohci1394 - ok
    13:03:43.0228 2176 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    13:03:43.0228 2176 ose - ok
    13:03:43.0259 2176 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
    13:03:43.0275 2176 p2pimsvc - ok
    13:03:43.0290 2176 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
    13:03:43.0306 2176 p2psvc - ok
    13:03:43.0337 2176 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys
    13:03:43.0337 2176 Parport - ok
    13:03:43.0368 2176 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
    13:03:43.0368 2176 partmgr - ok
    13:03:43.0384 2176 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
    13:03:43.0384 2176 PcaSvc - ok
    13:03:43.0399 2176 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
    13:03:43.0415 2176 pci - ok
    13:03:43.0446 2176 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
    13:03:43.0446 2176 pciide - ok
    13:03:43.0477 2176 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
    13:03:43.0477 2176 pcmcia - ok
    13:03:43.0509 2176 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
    13:03:43.0509 2176 pcw - ok
    13:03:43.0524 2176 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
    13:03:43.0555 2176 PEAUTH - ok
    13:03:43.0649 2176 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
    13:03:43.0665 2176 PerfHost - ok
    13:03:43.0727 2176 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
    13:03:43.0758 2176 pla - ok
    13:03:43.0821 2176 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
    13:03:43.0821 2176 PlugPlay - ok
    13:03:43.0852 2176 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
    13:03:43.0852 2176 PNRPAutoReg - ok
    13:03:43.0883 2176 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
    13:03:43.0883 2176 PNRPsvc - ok
    13:03:43.0930 2176 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
    13:03:43.0945 2176 PolicyAgent - ok
    13:03:43.0977 2176 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
    13:03:43.0977 2176 Power - ok
    13:03:44.0023 2176 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
    13:03:44.0023 2176 PptpMiniport - ok
    13:03:44.0039 2176 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys
    13:03:44.0039 2176 Processor - ok
    13:03:44.0070 2176 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
    13:03:44.0086 2176 ProfSvc - ok
    13:03:44.0101 2176 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
    13:03:44.0101 2176 ProtectedStorage - ok
    13:03:44.0133 2176 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
    13:03:44.0133 2176 Psched - ok
    13:03:44.0164 2176 [ 4712CC14E720ECCCC0AA16949D18AAF1 ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys
    13:03:44.0164 2176 PxHlpa64 - ok
    13:03:44.0320 2176 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
    13:03:44.0367 2176 ql2300 - ok
    13:03:44.0382 2176 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
    13:03:44.0382 2176 ql40xx - ok
    13:03:44.0429 2176 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
    13:03:44.0429 2176 QWAVE - ok
    13:03:44.0445 2176 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
    13:03:44.0460 2176 QWAVEdrv - ok
    13:03:44.0476 2176 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
    13:03:44.0476 2176 RasAcd - ok
    13:03:44.0523 2176 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
    13:03:44.0523 2176 RasAgileVpn - ok
    13:03:44.0569 2176 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
    13:03:44.0569 2176 RasAuto - ok
    13:03:44.0616 2176 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
    13:03:44.0616 2176 Rasl2tp - ok
    13:03:44.0647 2176 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
    13:03:44.0647 2176 RasMan - ok
    13:03:44.0679 2176 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
    13:03:44.0679 2176 RasPppoe - ok
    13:03:44.0694 2176 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
    13:03:44.0694 2176 RasSstp - ok
    13:03:44.0725 2176 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
    13:03:44.0725 2176 rdbss - ok
    13:03:44.0757 2176 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
    13:03:44.0757 2176 rdpbus - ok
    13:03:44.0772 2176 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
    13:03:44.0772 2176 RDPCDD - ok
    13:03:44.0803 2176 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
    13:03:44.0803 2176 RDPENCDD - ok
    13:03:44.0819 2176 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
    13:03:44.0819 2176 RDPREFMP - ok
    13:03:44.0850 2176 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
    13:03:44.0866 2176 RDPWD - ok
    13:03:44.0897 2176 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
    13:03:44.0913 2176 rdyboost - ok
    13:03:44.0944 2176 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
    13:03:44.0944 2176 RemoteAccess - ok
    13:03:44.0959 2176 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
    13:03:44.0975 2176 RemoteRegistry - ok
    13:03:44.0991 2176 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
    13:03:44.0991 2176 RpcEptMapper - ok
    13:03:45.0006 2176 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
    13:03:45.0022 2176 RpcLocator - ok
    13:03:45.0053 2176 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
    13:03:45.0053 2176 RpcSs - ok
    13:03:45.0131 2176 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
    13:03:45.0147 2176 rspndr - ok
    13:03:45.0209 2176 [ 502B316947EA887CDDD325D4745EB7D0 ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
    13:03:45.0240 2176 RSUSBSTOR - ok
    13:03:45.0318 2176 [ 3B01789EE4EAEE97F5EB46B711387D5E ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
    13:03:45.0334 2176 RTL8167 - ok
    13:03:45.0349 2176 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
    13:03:45.0349 2176 SamSs - ok
    13:03:45.0381 2176 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
    13:03:45.0381 2176 sbp2port - ok
    13:03:45.0427 2176 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
    13:03:45.0443 2176 SCardSvr - ok
    13:03:45.0474 2176 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
    13:03:45.0474 2176 scfilter - ok
    13:03:45.0552 2176 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
    13:03:45.0583 2176 Schedule - ok
    13:03:45.0615 2176 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
    13:03:45.0615 2176 SCPolicySvc - ok
    13:03:45.0646 2176 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
    13:03:45.0646 2176 SDRSVC - ok
    13:03:45.0724 2176 [ 16A252022535B680046F6E34E136D378 ] SeaPort C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    13:03:45.0724 2176 SeaPort - ok
    13:03:45.0771 2176 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
    13:03:45.0771 2176 secdrv - ok
    13:03:45.0802 2176 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
    13:03:45.0802 2176 seclogon - ok
    13:03:45.0833 2176 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
    13:03:45.0833 2176 SENS - ok
    13:03:45.0849 2176 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
    13:03:45.0849 2176 SensrSvc - ok
    13:03:45.0864 2176 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
    13:03:45.0864 2176 Serenum - ok
    13:03:45.0880 2176 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys
    13:03:45.0895 2176 Serial - ok
    13:03:45.0927 2176 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
    13:03:45.0927 2176 sermouse - ok
    13:03:45.0973 2176 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
    13:03:45.0973 2176 SessionEnv - ok
    13:03:45.0989 2176 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
    13:03:45.0989 2176 sffdisk - ok
    13:03:46.0005 2176 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
    13:03:46.0005 2176 sffp_mmc - ok
    13:03:46.0020 2176 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
    13:03:46.0020 2176 sffp_sd - ok
    13:03:46.0036 2176 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
    13:03:46.0036 2176 sfloppy - ok
    13:03:46.0067 2176 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
    13:03:46.0083 2176 SharedAccess - ok
    13:03:46.0145 2176 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
    13:03:46.0161 2176 ShellHWDetection - ok
    13:03:46.0192 2176 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
    13:03:46.0192 2176 SiSRaid2 - ok
    13:03:46.0223 2176 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
    13:03:46.0223 2176 SiSRaid4 - ok
    13:03:46.0270 2176 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
    13:03:46.0270 2176 Smb - ok
    13:03:46.0317 2176 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
    13:03:46.0317 2176 SNMPTRAP - ok
    13:03:46.0332 2176 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
    13:03:46.0332 2176 spldr - ok
    13:03:46.0379 2176 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
    13:03:46.0410 2176 Spooler - ok
    13:03:46.0519 2176 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
    13:03:46.0597 2176 sppsvc - ok
    13:03:46.0629 2176 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
    13:03:46.0629 2176 sppuinotify - ok
    13:03:46.0675 2176 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
    13:03:46.0675 2176 srv - ok
    13:03:46.0691 2176 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
    13:03:46.0707 2176 srv2 - ok
    13:03:46.0722 2176 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
    13:03:46.0722 2176 srvnet - ok
    13:03:46.0753 2176 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
    13:03:46.0769 2176 SSDPSRV - ok
    13:03:46.0785 2176 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
    13:03:46.0785 2176 SstpSvc - ok
    13:03:46.0816 2176 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
    13:03:46.0816 2176 stexstor - ok
    13:03:46.0863 2176 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
    13:03:46.0894 2176 stisvc - ok
    13:03:46.0925 2176 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys
    13:03:46.0925 2176 swenum - ok
    13:03:47.0003 2176 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
    13:03:47.0019 2176 swprv - ok
    13:03:47.0097 2176 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
    13:03:47.0175 2176 SysMain - ok
    13:03:47.0206 2176 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
    13:03:47.0206 2176 TabletInputService - ok
    13:03:47.0237 2176 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
    13:03:47.0237 2176 TapiSrv - ok
    13:03:47.0268 2176 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
    13:03:47.0284 2176 TBS - ok
    13:03:47.0346 2176 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
    13:03:47.0409 2176 Tcpip - ok
    13:03:47.0471 2176 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
    13:03:47.0487 2176 TCPIP6 - ok
    13:03:47.0518 2176 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
    13:03:47.0518 2176 tcpipreg - ok
    13:03:47.0549 2176 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
    13:03:47.0549 2176 TDPIPE - ok
    13:03:47.0596 2176 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
    13:03:47.0596 2176 TDTCP - ok
    13:03:47.0643 2176 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
    13:03:47.0643 2176 tdx - ok
    13:03:47.0658 2176 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys
    13:03:47.0658 2176 TermDD - ok
    13:03:47.0689 2176 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
    13:03:47.0721 2176 TermService - ok
    13:03:47.0736 2176 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
    13:03:47.0752 2176 Themes - ok
    13:03:47.0752 2176 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
    13:03:47.0767 2176 THREADORDER - ok
    13:03:47.0783 2176 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
    13:03:47.0799 2176 TrkWks - ok
    13:03:47.0908 2176 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
    13:03:47.0908 2176 TrustedInstaller - ok
    13:03:47.0970 2176 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
    13:03:47.0970 2176 tssecsrv - ok
    13:03:48.0064 2176 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
    13:03:48.0064 2176 TsUsbFlt - ok
    13:03:48.0126 2176 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
    13:03:48.0126 2176 tunnel - ok
    13:03:48.0173 2176 [ 825E7A1F48FB8BCFBA27C178AAB4E275 ] TurboB C:\Windows\system32\DRIVERS\TurboB.sys
    13:03:48.0189 2176 TurboB - ok
    13:03:48.0235 2176 [ B206BE1174D5964D49A56BB6C4E0524A ] TurboBoost C:\Program Files\Intel\TurboBoost\TurboBoost.exe
    13:03:48.0282 2176 TurboBoost - ok
    13:03:48.0313 2176 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
    13:03:48.0329 2176 uagp35 - ok
    13:03:48.0438 2176 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
    13:03:48.0454 2176 udfs - ok
    13:03:48.0501 2176 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
    13:03:48.0501 2176 UI0Detect - ok
    13:03:48.0547 2176 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
    13:03:48.0547 2176 uliagpkx - ok
    13:03:48.0625 2176 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys
    13:03:48.0625 2176 umbus - ok
    13:03:48.0672 2176 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
    13:03:48.0672 2176 UmPass - ok
    13:03:48.0813 2176 [ 765F2DD351BA064F657751D8D75E58C0 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    13:03:48.0875 2176 UNS - ok
    13:03:48.0922 2176 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
    13:03:48.0922 2176 upnphost - ok
    13:03:48.0969 2176 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
    13:03:48.0969 2176 usbccgp - ok
    13:03:49.0000 2176 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
    13:03:49.0000 2176 usbcir - ok
    13:03:49.0015 2176 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
    13:03:49.0015 2176 usbehci - ok
    13:03:49.0047 2176 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
    13:03:49.0062 2176 usbhub - ok
    13:03:49.0078 2176 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
    13:03:49.0078 2176 usbohci - ok
    13:03:49.0109 2176 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
    13:03:49.0109 2176 usbprint - ok
    13:03:49.0140 2176 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
    13:03:49.0140 2176 usbscan - ok
    13:03:49.0156 2176 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
    13:03:49.0156 2176 USBSTOR - ok
    13:03:49.0171 2176 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
    13:03:49.0171 2176 usbuhci - ok
    13:03:49.0218 2176 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
    13:03:49.0218 2176 usbvideo - ok
    13:03:49.0249 2176 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
    13:03:49.0249 2176 UxSms - ok
    13:03:49.0265 2176 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
    13:03:49.0265 2176 VaultSvc - ok
    13:03:49.0296 2176 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
    13:03:49.0296 2176 vdrvroot - ok
    13:03:49.0343 2176 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
    13:03:49.0374 2176 vds - ok
    13:03:49.0405 2176 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
    13:03:49.0405 2176 vga - ok
    13:03:49.0421 2176 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
    13:03:49.0421 2176 VgaSave - ok
    13:03:49.0468 2176 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
    13:03:49.0468 2176 vhdmp - ok
    13:03:49.0483 2176 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
    13:03:49.0483 2176 viaide - ok
    13:03:49.0499 2176 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
    13:03:49.0515 2176 volmgr - ok
    13:03:49.0546 2176 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
    13:03:49.0546 2176 volmgrx - ok
    13:03:49.0577 2176 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
    13:03:49.0577 2176 volsnap - ok
    13:03:49.0608 2176 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
    13:03:49.0608 2176 vsmraid - ok
    13:03:49.0671 2176 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
    13:03:49.0717 2176 VSS - ok
    13:03:49.0733 2176 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
    13:03:49.0733 2176 vwifibus - ok
    13:03:49.0764 2176 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
    13:03:49.0764 2176 vwififlt - ok
    13:03:49.0811 2176 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
    13:03:49.0811 2176 W32Time - ok
    13:03:49.0827 2176 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
    13:03:49.0827 2176 WacomPen - ok
    13:03:49.0873 2176 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
    13:03:49.0873 2176 WANARP - ok
    13:03:49.0873 2176 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
    13:03:49.0873 2176 Wanarpv6 - ok
    13:03:49.0951 2176 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
    13:03:49.0983 2176 WatAdminSvc - ok
    13:03:50.0045 2176 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
    13:03:50.0092 2176 wbengine - ok
    13:03:50.0123 2176 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
    13:03:50.0123 2176 WbioSrvc - ok
    13:03:50.0170 2176 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
    13:03:50.0170 2176 wcncsvc - ok
    13:03:50.0201 2176 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
    13:03:50.0201 2176 WcsPlugInService - ok
    13:03:50.0217 2176 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys
    13:03:50.0217 2176 Wd - ok
    13:03:50.0263 2176 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
    13:03:50.0295 2176 Wdf01000 - ok
    13:03:50.0310 2176 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
    13:03:50.0310 2176 WdiServiceHost - ok
    13:03:50.0310 2176 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
    13:03:50.0310 2176 WdiSystemHost - ok
    13:03:50.0357 2176 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
    13:03:50.0357 2176 WebClient - ok
    13:03:50.0388 2176 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
    13:03:50.0388 2176 Wecsvc - ok
    13:03:50.0404 2176 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
    13:03:50.0404 2176 wercplsupport - ok
    13:03:50.0435 2176 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
    13:03:50.0435 2176 WerSvc - ok
    13:03:50.0482 2176 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
    13:03:50.0482 2176 WfpLwf - ok
    13:03:50.0497 2176 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
    13:03:50.0497 2176 WIMMount - ok
    13:03:50.0529 2176 WinDefend - ok
    13:03:50.0529 2176 WinHttpAutoProxySvc - ok
    13:03:50.0591 2176 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
    13:03:50.0591 2176 Winmgmt - ok
    13:03:50.0669 2176 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
    13:03:50.0747 2176 WinRM - ok
    13:03:50.0841 2176 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
    13:03:50.0841 2176 WinUsb - ok
    13:03:50.0887 2176 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
    13:03:50.0919 2176 Wlansvc - ok
    13:03:51.0075 2176 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    13:03:51.0137 2176 wlidsvc - ok
    13:03:51.0168 2176 [ 13B0A570E1AE451C92DA550085D72CF3 ] wltrysvc C:\Program Files\Dell\Dell Wireless WLAN Card\WLTRYSVC.EXE
    13:03:51.0215 2176 wltrysvc - ok
    13:03:51.0262 2176 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
    13:03:51.0262 2176 WmiAcpi - ok
    13:03:51.0293 2176 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
    13:03:51.0309 2176 wmiApSrv - ok
    13:03:51.0324 2176 WMPNetworkSvc - ok
    13:03:51.0355 2176 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
    13:03:51.0355 2176 WPCSvc - ok
    13:03:51.0402 2176 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
    13:03:51.0402 2176 WPDBusEnum - ok
    13:03:51.0418 2176 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
    13:03:51.0418 2176 ws2ifsl - ok
    13:03:51.0433 2176 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\System32\wscsvc.dll
    13:03:51.0449 2176 wscsvc - ok
    13:03:51.0449 2176 WSearch - ok
    13:03:51.0527 2176 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
    13:03:51.0605 2176 wuauserv - ok
    13:03:51.0652 2176 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
    13:03:51.0652 2176 WudfPf - ok
    13:03:51.0683 2176 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
    13:03:51.0699 2176 WUDFRd - ok
    13:03:51.0714 2176 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
    13:03:51.0714 2176 wudfsvc - ok
    13:03:51.0745 2176 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll
    13:03:51.0745 2176 WwanSvc - ok
    13:03:51.0777 2176 ================ Scan global ===============================
    13:03:51.0808 2176 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
    13:03:51.0839 2176 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
    13:03:51.0855 2176 [ 72CC564BBC70DE268784BCE91EB8A28F ] C:\Windows\system32\winsrv.dll
    13:03:51.0870 2176 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
    13:03:51.0901 2176 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
    13:03:51.0901 2176 [Global] - ok
    13:03:51.0917 2176 ================ Scan MBR ==================================
    13:03:51.0933 2176 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
    13:03:52.0245 2176 \Device\Harddisk0\DR0 - ok
    13:03:52.0245 2176 ================ Scan VBR ==================================
    13:03:52.0245 2176 [ D6882CAB9992BEB45569AAEF134498EB ] \Device\Harddisk0\DR0\Partition1
    13:03:52.0260 2176 \Device\Harddisk0\DR0\Partition1 - ok
    13:03:52.0276 2176 [ 648A5E096581CCEF30C7BBC0DE874E61 ] \Device\Harddisk0\DR0\Partition2
    13:03:52.0276 2176 \Device\Harddisk0\DR0\Partition2 - ok
    13:03:52.0291 2176 [ 612C1C3F603E31ED72F90C7D8005A7A6 ] \Device\Harddisk0\DR0\Partition3
    13:03:52.0307 2176 \Device\Harddisk0\DR0\Partition3 - ok
    13:03:52.0307 2176 ============================================================
    13:03:52.0307 2176 Scan finished
    13:03:52.0307 2176 ============================================================
    13:03:52.0323 2656 Detected object count: 0
    13:03:52.0323 2656 Actual detected object count: 0
     
  7. dvk01

    dvk01 Moderator Malware Specialist

    Joined:
    Dec 14, 2002
    Messages:
    56,452
    First Name:
    Derek
    I needed to check for a rootkit as well as the obvious things showing

    Delete any existing version of ComboFix you have sitting on your desktop
    Please read and follow all these instructions very carefully
    Do not edit or remove any information or user names etc, otherwise we cannot fix the problem. If you insist on editing out anything then I will close the topic & refuse to offer any help.

    Download ComboFix from Hereto your Desktop.

    **Note: It is important that it is saved directly to your desktop and run from the desktop and not any other folder on your computer**
    --------------------------------------------------------------------
    1. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

    • Very Important! Temporarily disable your anti-virus and anti-malware real-time protection and any script blocking components of them or your firewall before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results" or stop combofix running at all
    • Click on THIS LINK to see instructions on how to temporarily disable many security programs while running combofix. The list does not cover every program. If yours is not listed and you don't know how to disable it, please ask.
    • Remember to re enable the protection again after combofix has finished
    --------------------------------------------------------------------
    2. Close any open browsers and any other programs you might have running
    Double click on renamed combofix.exe & follow the prompts.​
    If you are using windows XP It might display a pop up saying that "Recovery console is not installed, do you want to install?"
    Please select yes & let it download the files it needs to do this. Once the recovery console is installed Combofix will then offer to scan for malware. Select continue or yes.
    When finished, it will produce a report for you.
    Please post the "C:\ComboFix.txt" for further review


    ****Note: Do not mouseclick combofix's window while it's running. That may cause it to stall or freeze ****

    Note: ComboFix may reset a number of Internet Explorer's settings, including making it the default browser.
    Note: Combofix prevents autorun of ALL CDs, floppies and USB devices to assist with malware removal & increase security.Read HERE why we disable autoruns

    Please do not install any new programs or update anything (always allow your antivirus/antispyware to update) unless told to do so while we are fixing your problem. If combofix alerts to a new version and offers to update, please let it. It is essential we always use the latest version.

    Please tell us if it has cured the problems or if there are any outstanding issues

    *EXTRA NOTES*
    • If Combofix detects any Rootkit/Bootkit activity on your system it will give a warning and prompt for a reboot, you must allow it to do so.
    • If Combofix reboot is due to a rootkit, the screen may stay black for several minutes on reboot, this is normal
    • If after running Combofix you receive any type of warning message about registry key's being listed for deletion when trying to open certain items, reboot the system and this will fix the issue (Those items will not be deleted)

    Post the log in next reply please...
     
  8. pendle

    pendle Thread Starter

    Joined:
    Jan 7, 2013
    Messages:
    8
    Thanks for all you are doing I really appreciate it. But I think I need a bit more advice before I run this program from my desktop.
    I disabled the firewall as instructed by the link for a Windows 7 application but still got a message that other parts of the WSE such as anti virus were enabled. I only have Windows Security Essentials and have checked the list of all programs installed to make sure I do not have anything else in there but I do not recognise anything that would interfere. Do I need to disable more than the firewall to run the latest recommended program and if so how please. Otherwise is it OK to ignore any further messages if the firewall is disabled?

    Thanks again
     
  9. pendle

    pendle Thread Starter

    Joined:
    Jan 7, 2013
    Messages:
    8
    Sorry I have checked the site for disabling again and found a bit more instruction so please ignore the last message and I will try again. Thanks
     
  10. pendle

    pendle Thread Starter

    Joined:
    Jan 7, 2013
    Messages:
    8
    By turning off MSE though the other user I have run Combofix and then reset MSE.

    Here is the log report as put into my C drive, there is another on the desk top that seems different , do you need to see that as well

    ComboFix 13-01-08.01 - colinfoot 08/01/2013 21:21:57.1.4 - x64
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.3893.2447 [GMT 0:00]
    Running from: c:\users\colinfoot\Desktop\ComboFix.exe
    AV: Microsoft Security Essentials *Disabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
    SP: Microsoft Security Essentials *Disabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
    SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\users\colinfoot\AppData\Roaming\mlangb.dll
    c:\windows\security\Database\tmp.edb
    c:\windows\SysWow64\system
    .
    .
    ((((((((((((((((((((((((( Files Created from 2012-12-08 to 2013-01-08 )))))))))))))))))))))))))))))))
    .
    .
    2013-01-08 21:30 . 2013-01-08 21:30 -------- d-----w- c:\users\Sue\AppData\Local\temp
    2013-01-08 21:30 . 2013-01-08 21:30 -------- d-----w- c:\users\Richard\AppData\Local\temp
    2013-01-08 21:30 . 2013-01-08 21:30 -------- d-----w- c:\users\Default\AppData\Local\temp
    2013-01-08 21:30 . 2013-01-08 21:30 -------- d-----w- c:\users\Helen\AppData\Local\temp
    2013-01-07 19:16 . 2013-01-07 20:43 -------- d-----w- c:\users\Richard\AppData\Local\PowerDVD DX
    2013-01-07 14:49 . 2013-01-07 14:49 -------- d-----w- c:\program files (x86)\Microsoft Security Client
    2013-01-07 14:49 . 2013-01-07 14:50 -------- d-----w- c:\program files\Microsoft Security Client
    2012-12-21 12:44 . 2012-12-16 14:13 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
    2012-12-21 12:44 . 2012-12-16 17:11 46080 ----a-w- c:\windows\system32\atmlib.dll
    2012-12-21 12:44 . 2012-12-16 14:45 367616 ----a-w- c:\windows\system32\atmfd.dll
    2012-12-21 12:44 . 2012-12-16 14:13 295424 ----a-w- c:\windows\SysWow64\atmfd.dll
    2012-12-13 06:52 . 2012-11-14 05:52 2382848 ----a-w- c:\windows\system32\mshtml.tlb
    2012-12-13 06:52 . 2012-11-14 01:44 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
    2012-12-13 06:52 . 2012-11-14 07:11 182816 ----a-w- c:\program files\Internet Explorer\sqmapi.dll
    2012-12-13 06:52 . 2012-11-14 06:00 304640 ----a-w- c:\program files\Internet Explorer\IEShims.dll
    2012-12-13 06:52 . 2012-11-14 05:53 96768 ----a-w- c:\windows\system32\mshtmled.dll
    2012-12-13 06:52 . 2012-11-14 02:56 149552 ----a-w- c:\program files (x86)\Internet Explorer\sqmapi.dll
    2012-12-13 06:52 . 2012-11-14 01:48 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
    2012-12-12 14:52 . 2012-11-09 05:45 2048 ----a-w- c:\windows\system32\tzres.dll
    2012-12-12 14:52 . 2012-11-09 04:42 2048 ----a-w- c:\windows\SysWow64\tzres.dll
    2012-12-12 14:52 . 2012-11-22 03:26 3149824 ----a-w- c:\windows\system32\win32k.sys
    2012-12-12 14:49 . 2012-11-02 05:59 478208 ----a-w- c:\windows\system32\dpnet.dll
    2012-12-12 14:49 . 2012-11-02 05:11 376832 ----a-w- c:\windows\SysWow64\dpnet.dll
    .
    .
    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2013-01-07 14:59 . 2013-01-07 14:59 972264 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{A99C8876-0BA2-4C91-9F89-E1378B774BB4}\gapaengine.dll
    2012-12-13 06:54 . 2010-08-11 07:02 67413224 ----a-w- c:\windows\system32\MRT.exe
    2012-12-12 23:15 . 2012-03-31 16:38 697272 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
    2012-12-12 23:15 . 2011-05-17 05:23 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
    2012-11-08 09:24 . 2013-01-08 15:50 9125352 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{95DBA1C9-5E09-4AC7-B16D-462552320FB1}\mpengine.dll
    2012-11-08 09:24 . 2013-01-07 14:59 9125352 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
    2012-10-16 08:38 . 2012-11-28 09:32 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
    2012-10-16 08:38 . 2012-11-28 09:32 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
    2012-10-16 07:39 . 2012-11-28 09:32 561664 ----a-w- c:\windows\apppatch\AcLayers.dll
    .
    .
    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* empty entries & legit default entries are not shown
    REGEDIT4
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-08-08 39408]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
    "PDVDDXSrv"="c:\program files (x86)\CyberLink\PowerDVD DX\PDVDDXSrv.exe" [2009-12-29 140520]
    "Dell Webcam Central"="c:\program files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" [2009-06-24 409744]
    "Desktop Disc Tool"="c:\program files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" [2009-12-15 498160]
    "Garmin Lifetime Updater"="c:\program files (x86)\Garmin\Lifetime Updater\GarminLifetime.exe" [2012-05-23 1466760]
    "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
    .
    c:\users\Helen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    Dell Dock.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-15 1324384]
    .
    c:\users\Richard\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    Dell Dock.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-15 1324384]
    Dropbox.lnk - c:\users\colinfoot\AppData\Roaming\Dropbox\bin\Dropbox.exe [N/A]
    .
    c:\users\Sue\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    Dell Dock.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-15 1324384]
    .
    c:\users\colinfoot\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    Dell Dock.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-15 1324384]
    .
    c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    Dell Dock First Run.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-15 1324384]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 5 (0x5)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableUIADesktopToggle"= 0 (0x0)
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
    "aux1"=wdmaud.drv
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
    @="Service"
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
    @="Driver"
    .
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
    R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2012-08-30 128456]
    R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe [2012-09-12 368896]
    R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-07-17 220672]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
    R3 TurboBoost;TurboBoost;c:\program files\Intel\TurboBoost\TurboBoost.exe [2009-11-02 126352]
    R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-08-04 1255736]
    S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]
    S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [2009-10-09 92160]
    S2 DockLoginService;Dock Login Service;c:\program files\Dell\DellDock\DockLogin.exe [2009-06-09 155648]
    S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [2009-11-02 13784]
    S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-09-30 2320920]
    S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys [2009-06-15 172704]
    S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
    S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [2009-10-26 151936]
    S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2009-09-26 233984]
    S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-08-20 239616]
    .
    .
    --- Other Services/Drivers In Memory ---
    .
    *NewlyCreated* - WS2IFSL
    .
    Contents of the 'Scheduled Tasks' folder
    .
    2013-01-08 c:\windows\Tasks\Adobe Flash Player Updater.job
    - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-31 23:15]
    .
    2013-01-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-08-08 09:01]
    .
    2013-01-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-08-08 09:01]
    .
    2013-01-08 c:\windows\Tasks\SpeedUpMyPC.job
    - c:\program files (x86)\Uniblue\SpeedUpMyPC\spmonitor.exe [2011-04-21 15:40]
    .
    .
    --------- X64 Entries -----------
    .
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
    @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
    2012-02-14 22:58 97792 ----a-w- c:\users\Richard\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
    @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
    2012-02-14 22:58 97792 ----a-w- c:\users\Richard\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
    @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
    2012-02-14 22:58 97792 ----a-w- c:\users\Richard\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
    @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
    2012-02-14 22:58 97792 ----a-w- c:\users\Richard\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Apoint"="c:\program files\DellTPad\Apoint.exe" [2009-09-16 357376]
    "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-10-09 8158240]
    "IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-11-04 166424]
    "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-11-04 390168]
    "Persistence"="c:\windows\system32\igfxpers.exe" [2009-11-04 408600]
    "Broadcom Wireless Manager UI"="c:\program files\Dell\Dell Wireless WLAN Card\WLTRAY.exe" [2009-07-17 4968960]
    "AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
    "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-09-12 1289704]
    .
    ------- Supplementary Scan -------
    .
    uLocal Page = c:\windows\system32\blank.htm
    uStart Page = hxxp://www.bbc.co.uk/news/
    mLocal Page = c:\windows\SysWOW64\blank.htm
    IE: E&xport to Microsoft Excel - c:\progra~2\MIF5BA~1\Office12\EXCEL.EXE/3000
    IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
    TCP: DhcpNameServer = 192.168.1.1
    .
    - - - - ORPHANS REMOVED - - - -
    .
    Toolbar-Locked - (no file)
    Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
    ShellIconOverlayIdentifiers-{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - (no file)
    ShellIconOverlayIdentifiers-{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - (no file)
    ShellIconOverlayIdentifiers-{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - (no file)
    Wow6432Node-HKCU-Run-Rzkconrx - c:\users\colinfoot\AppData\Roaming\mlangb.dll
    Wow6432Node-HKLM-Run-DellSupportCenter - c:\program files (x86)\Dell Support Center\bin\sprtcmd.exe
    SafeBoot-mcmscsvc
    SafeBoot-MCODS
    Toolbar-Locked - (no file)
    WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
    .
    .
    .
    --------------------- LOCKED REGISTRY KEYS ---------------------
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
    @Denied: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_135_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
    @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_135_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker5"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
    @Denied: (A 2) (Everyone)
    @="FlashBroker"
    "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_135_ActiveX.exe,-101"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
    "Enabled"=dword:00000001
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_135_ActiveX.exe"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Shockwave Flash Object"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
    @="0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
    @="ShockwaveFlash.ShockwaveFlash.11"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="ShockwaveFlash.ShockwaveFlash"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
    @Denied: (A 2) (Everyone)
    @="Macromedia Flash Factory Object"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx"
    "ThreadingModel"="Apartment"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
    @="FlashFactory.FlashFactory.1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
    @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_135.ocx, 1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
    @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
    @="1.0"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
    @="FlashFactory.FlashFactory"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
    @Denied: (A 2) (Everyone)
    @="IFlashBroker5"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
    @="{00020424-0000-0000-C000-000000000046}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
    @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
    "Version"="1.0"
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    ------------------------ Other Running Processes ------------------------
    .
    c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    .
    **************************************************************************
    .
    Completion time: 2013-01-08 21:46:40 - machine was rebooted
    ComboFix-quarantined-files.txt 2013-01-08 21:46
    .
    Pre-Run: 8,083,361,792 bytes free
    Post-Run: 8,253,181,952 bytes free
    .
    - - End Of File - - 5F3C075B3006B097E651CD7C58496B14

    Something good has happened already as MSE is now visible on my user page

    If we are near the end then thank you again and sorry for all the trouble
     
  11. dvk01

    dvk01 Moderator Malware Specialist

    Joined:
    Dec 14, 2002
    Messages:
    56,452
    First Name:
    Derek
    Looks like that cured it

    *Follow these steps to uninstall Combofix and the other tools it downloaded to remove the malware*
    * Click START then RUN
    * Now type Combofix /Uninstall in the runbox and click OK. Note the space between the X and the /U, it needs to be there.
    [​IMG]

    This will also purge the restore folder and clear any malware that has been put in there. Now Empty Recycle bin on desktop Then reboot.

    go here http://www.thespykiller.co.uk/index.php?page=3 for info on how to tighten your security settings and how to help prevent future attacks.

    and scan here http://secunia.com/vulnerability_scanning/personal for out of date & vulnerable common applications on your computer and update whatever it suggests. Download & use the PSI version ( not the OSI, in your browser java version) as I no longer recommend having Java installed on the computer at all, unless it is absolutely necessary, because of the too high risk of malware infiltration

    Then pay an urgent visit to windows update & make sure you are fully updated, that will help to plug the security holes that let these pests on in the first place. If windows update doesn't work, please come back & tell us
     
  12. pendle

    pendle Thread Starter

    Joined:
    Jan 7, 2013
    Messages:
    8
    Thanks I think we may be done. Have uninstalled the software, ditched Java (I await to see if anything I used really needed it) run the checks and updated everwhere suggested.

    So thanks again, I am mighty relieved :) and hope I do not catch that critter again

    Best wishes
     
  13. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Similar Threads - outrate redirect virus
  1. OncomingStorm
    Replies:
    11
    Views:
    725
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1084138

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice