Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Proxy Tunnel Trojan


  • This topic is locked This topic is locked
4 replies to this topic

#1 hugemutha

hugemutha

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:06:54 PM

Posted 09 July 2014 - 12:26 AM

I have an infected computer which appears to be used as a proxy tunnel by external computers.  The symptom is the computer gets slower and slower then eventually crashes with the 
 
BSOD.  On investigation, Task Manager shown multiple instances of explorer.exe which consume more and more system memory until the computer crashes.  While this is happening, my 
 
proxy server logs shows a constant stream of web accesses from that computer.  If I kill the explorer.exe processes, the access stream halts but on re-starting explorer.exe a 
 
second instance will start within a few minutes and if I monitor the proxy access log I see the following:
 
1404880441.316      0 192.168.0.240 TCP_DENIED/403 3760 POST http://juice-from.com/b/opt/D6EF61C2C7308E967C3D4CF7 - HIER_NONE/- text/html
1404880443.733    162 192.168.0.240 TCP_MISS/302 689 GET http://www.google.com/ - HIER_DIRECT/74.125.237.112 text/html
1404880444.115    381 192.168.0.240 TCP_MISS/302 775 GET http://www.google.com.au/? - HIER_DIRECT/74.125.237.111 text/html
1404880444.458      0 192.168.0.240 TCP_DENIED/403 3763 POST http://vision-vaper.su/b/opt/D6EF61C2C7308E967C3D4CF7 - HIER_NONE/- text/html
1404880449.626    164 192.168.0.240 TCP_MISS/302 689 GET http://www.google.com/ - HIER_DIRECT/74.125.237.112 text/html
1404880449.929    301 192.168.0.240 TCP_MISS/302 775 GET http://www.google.com.au/? - HIER_DIRECT/74.125.237.111 text/html
1404880450.273      0 192.168.0.240 TCP_DENIED/403 3760 POST http://grade-well.com/b/opt/D6EF61C2C7308E967C3D4CF7 - HIER_NONE/- text/html
1404880459.261    164 192.168.0.240 TCP_MISS/302 689 GET http://www.google.com/ - HIER_DIRECT/74.125.237.112 text/html
1404880459.299    301 192.168.0.240 TCP_MISS/302 775 GET http://www.google.com.au/? - HIER_DIRECT/74.125.237.111 text/html
 
As you can see, I've blocked the juice-from.com, vision-vaper.su & grade-well.com sites at proxy level and this seems to disable the subsequent access stream.
 
It appears the computer contacts an upstream host to initiate a proxy tunnel which is then utilised by anonymous browsers.
 
I have scanned the computer with all available off-line products to no avail and I have tried several on-line scans as well - I simply cannot find the host process.
 
A little help please?
 


BC AdBot (Login to Remove)

 


#2 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:54 PM

Posted 09 July 2014 - 07:03 AM

Hi there,

let's do some scans on the affected computer to find the malware:


Step 1

Please download TDSSKiller and save it to your Desktop.
  • Start tdsskiller.exe with administrator privileges.
  • Accept the EULA and the KSN Statement.
  • Click on Change parameters.
  • Make sure that all available options (except "Loaded modules") are checked and click OK.
  • Click on Start scan.
  • If any threats are found don't delete them but choose the Skip option for all of them.
  • Click on Report to open the log file. (It is also saved at C:\TDSSKiller.<version_date_time>_log.txt).
    Copy and paste its contents in your next reply.


Step 2

Please download Farbar Recovery Scan Tool and save it to your Desktop.
(If you are not sure which version (32-/64-bit) applies to your system, download and try to start both of them as just the right one will run.)
  • Start FRST with administator privileges.
  • Make sure the option Addition.txt is checked and press the Scan button.
  • When finished, FRST will produce two logs (FRST.txt and Addition.txt) in the same directory the tool was run from.
  • Please copy and paste these logs in your next reply.


#3 hugemutha

hugemutha
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:06:54 PM

Posted 10 July 2014 - 08:59 PM

Hi 

 

Thanks for your assistance, TDS SKiller found a rootkit:

 

09:50:23.0818 0x1cd0  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
09:50:30.0456 0x1cd0  ============================================================
09:50:30.0456 0x1cd0  Current date / time: 2014/07/11 09:50:30.0456
09:50:30.0456 0x1cd0  SystemInfo:
09:50:30.0456 0x1cd0  
09:50:30.0456 0x1cd0  OS Version: 6.1.7601 ServicePack: 1.0
09:50:30.0456 0x1cd0  Product type: Workstation
09:50:30.0457 0x1cd0  ComputerName: ACCOUNTS1
09:50:30.0457 0x1cd0  UserName: Lindag
09:50:30.0457 0x1cd0  Windows directory: C:\Windows
09:50:30.0457 0x1cd0  System windows directory: C:\Windows
09:50:30.0457 0x1cd0  Running under WOW64
09:50:30.0457 0x1cd0  Processor architecture: Intel x64
09:50:30.0457 0x1cd0  Number of processors: 8
09:50:30.0457 0x1cd0  Page size: 0x1000
09:50:30.0457 0x1cd0  Boot type: Normal boot
09:50:30.0457 0x1cd0  ============================================================
09:50:30.0694 0x1cd0  KLMD registered as C:\Windows\system32\drivers\40897768.sys
09:50:31.0121 0x1cd0  System UUID: {3A9184DB-DEE0-69BE-6D31-624DC77FEE45}
09:50:31.0487 0x1cd0  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:50:31.0512 0x1cd0  ============================================================
09:50:31.0513 0x1cd0  \Device\Harddisk0\DR0:
09:50:31.0513 0x1cd0  MBR partitions:
09:50:31.0513 0x1cd0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1E4E000
09:50:31.0513 0x1cd0  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1E62000, BlocksNum 0x38522000
09:50:31.0513 0x1cd0  ============================================================
09:50:31.0539 0x1cd0  C: <-> \Device\Harddisk0\DR0\Partition2
09:50:31.0539 0x1cd0  ============================================================
09:50:31.0539 0x1cd0  Initialize success
09:50:31.0539 0x1cd0  ============================================================
09:50:48.0651 0x1dc4  ============================================================
09:50:48.0651 0x1dc4  Scan started
09:50:48.0651 0x1dc4  Mode: Manual; SigCheck; TDLFS; 
09:50:48.0651 0x1dc4  ============================================================
09:50:48.0651 0x1dc4  KSN ping started
09:50:51.0263 0x1dc4  KSN ping finished: true
09:50:51.0671 0x1dc4  ================ Scan system memory ========================
09:50:51.0671 0x1dc4  System memory - ok
09:50:51.0671 0x1dc4  ================ Scan services =============================
09:50:51.0781 0x1dc4  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
09:50:51.0838 0x1dc4  1394ohci - ok
09:50:51.0877 0x1dc4  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
09:50:51.0891 0x1dc4  ACPI - ok
09:50:51.0902 0x1dc4  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
09:50:51.0910 0x1dc4  AcpiPmi - ok
09:50:51.0996 0x1dc4  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
09:50:52.0009 0x1dc4  AdobeARMservice - ok
09:50:52.0043 0x1dc4  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
09:50:52.0067 0x1dc4  adp94xx - ok
09:50:52.0107 0x1dc4  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
09:50:52.0127 0x1dc4  adpahci - ok
09:50:52.0158 0x1dc4  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
09:50:52.0174 0x1dc4  adpu320 - ok
09:50:52.0189 0x1dc4  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
09:50:52.0209 0x1dc4  AeLookupSvc - ok
09:50:52.0261 0x1dc4  [ D1E343BC00136CE03C4D403194D06A80, 94F2543164A2CEA179EDE53E1294EE24391A59CAEFF83BA5CE9385E8E686E89C ] AERTFilters     C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
09:50:52.0273 0x1dc4  AERTFilters - ok
09:50:52.0324 0x1dc4  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
09:50:52.0346 0x1dc4  AFD - ok
09:50:52.0368 0x1dc4  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
09:50:52.0375 0x1dc4  agp440 - ok
09:50:52.0392 0x1dc4  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
09:50:52.0400 0x1dc4  ALG - ok
09:50:52.0420 0x1dc4  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
09:50:52.0425 0x1dc4  aliide - ok
09:50:52.0449 0x1dc4  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
09:50:52.0454 0x1dc4  amdide - ok
09:50:52.0474 0x1dc4  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
09:50:52.0490 0x1dc4  AmdK8 - ok
09:50:52.0503 0x1dc4  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
09:50:52.0514 0x1dc4  AmdPPM - ok
09:50:52.0528 0x1dc4  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
09:50:52.0539 0x1dc4  amdsata - ok
09:50:52.0554 0x1dc4  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
09:50:52.0566 0x1dc4  amdsbs - ok
09:50:52.0577 0x1dc4  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
09:50:52.0582 0x1dc4  amdxata - ok
09:50:52.0644 0x1dc4  [ 25E9C505A8DB1B5EFE631E43718FDB22, F7CDAD0B712FC929BFDE644FBFB77CB203C3FAC88237B04E99149C09A7DB344A ] Amsp            C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
09:50:52.0668 0x1dc4  Amsp - ok
09:50:52.0690 0x1dc4  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
09:50:52.0727 0x1dc4  AppID - ok
09:50:52.0742 0x1dc4  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
09:50:52.0762 0x1dc4  AppIDSvc - ok
09:50:52.0803 0x1dc4  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
09:50:52.0819 0x1dc4  Appinfo - ok
09:50:52.0868 0x1dc4  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
09:50:52.0895 0x1dc4  AppMgmt - ok
09:50:52.0909 0x1dc4  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
09:50:52.0922 0x1dc4  arc - ok
09:50:52.0958 0x1dc4  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
09:50:52.0970 0x1dc4  arcsas - ok
09:50:53.0040 0x1dc4  [ 9217D874131AE6FF8F642F124F00A555, BE2923D5AA7748FDAAED73AF567D015517B36F1C739C6E5637DD15112EFDF495 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
09:50:53.0052 0x1dc4  aspnet_state - ok
09:50:53.0070 0x1dc4  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
09:50:53.0098 0x1dc4  AsyncMac - ok
09:50:53.0145 0x1dc4  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
09:50:53.0154 0x1dc4  atapi - ok
09:50:53.0185 0x1dc4  [ D0B119D6F52BDCA8D204F79D27690209, C36F600A8525A61A7C948B7A93CFD501F1F222A3929446DA58D4D35619E44EB0 ] AthBTPort       C:\Windows\system32\DRIVERS\btath_flt.sys
09:50:53.0200 0x1dc4  AthBTPort - ok
09:50:53.0252 0x1dc4  [ D24159FA178DCCE3B41226640D5E9C8D, 20F14DEABCEF7218928BD4FEC3F51FB0859313753E8E82E77660BF144B99F6F0 ] AtherosSvc      C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe
09:50:53.0263 0x1dc4  AtherosSvc - detected UnsignedFile.Multi.Generic ( 1 )
09:50:53.0611 0x1dc4  Detect skipped due to KSN trusted
09:50:53.0611 0x1dc4  AtherosSvc - ok
09:50:53.0698 0x1dc4  [ 3D68A1EEF77307142636AF5127990BCB, 30926B2E1371287FF39C69C363BE4FAC67C558867D903C555A12316D303A43E8 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
09:50:53.0775 0x1dc4  athr - ok
09:50:53.0815 0x1dc4  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
09:50:53.0855 0x1dc4  AudioEndpointBuilder - ok
09:50:53.0867 0x1dc4  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
09:50:53.0894 0x1dc4  AudioSrv - ok
09:50:53.0930 0x1dc4  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
09:50:53.0953 0x1dc4  AxInstSV - ok
09:50:53.0984 0x1dc4  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
09:50:54.0018 0x1dc4  b06bdrv - ok
09:50:54.0033 0x1dc4  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
09:50:54.0044 0x1dc4  b57nd60a - ok
09:50:54.0052 0x1dc4  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
09:50:54.0068 0x1dc4  BDESVC - ok
09:50:54.0072 0x1dc4  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
09:50:54.0091 0x1dc4  Beep - ok
09:50:54.0124 0x1dc4  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
09:50:54.0144 0x1dc4  BFE - ok
09:50:54.0189 0x1dc4  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
09:50:54.0224 0x1dc4  BITS - ok
09:50:54.0259 0x1dc4  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
09:50:54.0275 0x1dc4  blbdrive - ok
09:50:54.0305 0x1dc4  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
09:50:54.0316 0x1dc4  bowser - ok
09:50:54.0328 0x1dc4  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
09:50:54.0345 0x1dc4  BrFiltLo - ok
09:50:54.0356 0x1dc4  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
09:50:54.0364 0x1dc4  BrFiltUp - ok
09:50:54.0399 0x1dc4  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
09:50:54.0425 0x1dc4  Browser - ok
09:50:54.0441 0x1dc4  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
09:50:54.0461 0x1dc4  Brserid - ok
09:50:54.0471 0x1dc4  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
09:50:54.0480 0x1dc4  BrSerWdm - ok
09:50:54.0482 0x1dc4  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
09:50:54.0490 0x1dc4  BrUsbMdm - ok
09:50:54.0492 0x1dc4  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
09:50:54.0498 0x1dc4  BrUsbSer - ok
09:50:54.0525 0x1dc4  [ 50D912C86B924C397DEAE7C813E25B78, 1313BDF18CCCFFEAED78FB70EC5F26E99AA80C0CA4D458E98A32DB0498C14F3F ] BTATH_A2DP      C:\Windows\system32\drivers\btath_a2dp.sys
09:50:54.0558 0x1dc4  BTATH_A2DP - ok
09:50:54.0573 0x1dc4  [ 486362291E8C2AABC3698FCB0052D042, 3A0920F6B0BD3DA6B15F8D8614A9B9C3FF7D2ADC6EBF860E1543A3ED1DB8A534 ] btath_avdt      C:\Windows\system32\drivers\btath_avdt.sys
09:50:54.0582 0x1dc4  btath_avdt - ok
09:50:54.0616 0x1dc4  [ E6B734A37ADE36FE1A77035F4E484C8C, 7F3AB1E0CF9F348633B3B325F5F365CCD4C7FF7E4564BDE02C2DA27A499D0234 ] BTATH_BUS       C:\Windows\system32\DRIVERS\btath_bus.sys
09:50:54.0633 0x1dc4  BTATH_BUS - ok
09:50:54.0649 0x1dc4  [ FB3833E63FF602B69C2FF085846DCF43, 468BC9580341AD4C65F0BBB3A11F3E39C1DD0F9694D098AB3647A181C03E4E11 ] BTATH_HCRP      C:\Windows\system32\DRIVERS\btath_hcrp.sys
09:50:54.0678 0x1dc4  BTATH_HCRP - ok
09:50:54.0683 0x1dc4  [ 371A11C1333BA526263A987A93ACDE3D, 80E15B815F2B6F4AFBDDB115C4F54126F5D2796F6ACB387DEA9C4A1C061EB7EB ] BTATH_LWFLT     C:\Windows\system32\DRIVERS\btath_lwflt.sys
09:50:54.0699 0x1dc4  BTATH_LWFLT - ok
09:50:54.0714 0x1dc4  [ ABCD3C16CA850A7594CEB9AD5D966810, DB0EAF000BB6F12F2AA550B66F5C61E08F2C6E58A18DA40BE69DD2B662D1EC60 ] BTATH_RCP       C:\Windows\system32\DRIVERS\btath_rcp.sys
09:50:54.0733 0x1dc4  BTATH_RCP - ok
09:50:54.0780 0x1dc4  [ E2BC720E66DA3E51E41D47C12FE353F1, 7E58E94B9E7C9DEB0652F82737C5A93DC71D44600AE6ED45BC0B1E64CA75266E ] BtFilter        C:\Windows\system32\DRIVERS\btfilter.sys
09:50:54.0813 0x1dc4  BtFilter - ok
09:50:54.0846 0x1dc4  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
09:50:54.0867 0x1dc4  BthEnum - ok
09:50:54.0891 0x1dc4  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
09:50:54.0910 0x1dc4  BTHMODEM - ok
09:50:54.0938 0x1dc4  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
09:50:54.0949 0x1dc4  BthPan - ok
09:50:54.0969 0x1dc4  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
09:50:54.0987 0x1dc4  BTHPORT - ok
09:50:55.0015 0x1dc4  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
09:50:55.0035 0x1dc4  bthserv - ok
09:50:55.0046 0x1dc4  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
09:50:55.0054 0x1dc4  BTHUSB - ok
09:50:55.0075 0x1dc4  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
09:50:55.0115 0x1dc4  cdfs - ok
09:50:55.0137 0x1dc4  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
09:50:55.0146 0x1dc4  cdrom - ok
09:50:55.0163 0x1dc4  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
09:50:55.0264 0x1dc4  CertPropSvc - ok
09:50:55.0280 0x1dc4  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
09:50:55.0289 0x1dc4  circlass - ok
09:50:55.0307 0x1dc4  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
09:50:55.0319 0x1dc4  CLFS - ok
09:50:55.0371 0x1dc4  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:50:55.0376 0x1dc4  clr_optimization_v2.0.50727_32 - ok
09:50:55.0407 0x1dc4  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
09:50:55.0425 0x1dc4  clr_optimization_v2.0.50727_64 - ok
09:50:55.0463 0x1dc4  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:50:55.0478 0x1dc4  clr_optimization_v4.0.30319_32 - ok
09:50:55.0489 0x1dc4  [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
09:50:55.0495 0x1dc4  clr_optimization_v4.0.30319_64 - ok
09:50:55.0527 0x1dc4  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
09:50:55.0541 0x1dc4  CmBatt - ok
09:50:55.0551 0x1dc4  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
09:50:55.0562 0x1dc4  cmdide - ok
09:50:55.0618 0x1dc4  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
09:50:55.0643 0x1dc4  CNG - ok
09:50:55.0652 0x1dc4  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
09:50:55.0657 0x1dc4  Compbatt - ok
09:50:55.0677 0x1dc4  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
09:50:55.0695 0x1dc4  CompositeBus - ok
09:50:55.0705 0x1dc4  COMSysApp - ok
09:50:55.0708 0x1dc4  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
09:50:55.0713 0x1dc4  crcdisk - ok
09:50:55.0750 0x1dc4  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
09:50:55.0774 0x1dc4  CryptSvc - ok
09:50:55.0806 0x1dc4  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
09:50:55.0827 0x1dc4  CSC - ok
09:50:55.0854 0x1dc4  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
09:50:55.0871 0x1dc4  CscService - ok
09:50:55.0921 0x1dc4  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
09:50:55.0955 0x1dc4  DcomLaunch - ok
09:50:55.0981 0x1dc4  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
09:50:56.0005 0x1dc4  defragsvc - ok
09:50:56.0046 0x1dc4  [ A97BD43C2628D7274C88A3B4CE785EFB, F85B074A291BC3D63DFD81EC39FBDB1EECDF86A33A1AB7580624EEAF6337DE63 ] DellDigitalDelivery c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
09:50:56.0056 0x1dc4  DellDigitalDelivery - detected UnsignedFile.Multi.Generic ( 1 )
09:50:56.0404 0x1dc4  Detect skipped due to KSN trusted
09:50:56.0404 0x1dc4  DellDigitalDelivery - ok
09:50:56.0424 0x1dc4  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
09:50:56.0456 0x1dc4  DfsC - ok
09:50:56.0471 0x1dc4  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
09:50:56.0492 0x1dc4  Dhcp - ok
09:50:56.0511 0x1dc4  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
09:50:56.0544 0x1dc4  discache - ok
09:50:56.0564 0x1dc4  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
09:50:56.0571 0x1dc4  Disk - ok
09:50:56.0587 0x1dc4  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
09:50:56.0597 0x1dc4  dmvsc - ok
09:50:56.0614 0x1dc4  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
09:50:56.0637 0x1dc4  Dnscache - ok
09:50:56.0664 0x1dc4  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
09:50:56.0699 0x1dc4  dot3svc - ok
09:50:56.0712 0x1dc4  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
09:50:56.0731 0x1dc4  DPS - ok
09:50:56.0756 0x1dc4  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
09:50:56.0764 0x1dc4  drmkaud - ok
09:50:56.0823 0x1dc4  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
09:50:56.0850 0x1dc4  DXGKrnl - ok
09:50:56.0884 0x1dc4  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
09:50:56.0904 0x1dc4  EapHost - ok
09:50:57.0007 0x1dc4  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
09:50:57.0094 0x1dc4  ebdrv - ok
09:50:57.0126 0x1dc4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\Windows\System32\lsass.exe
09:50:57.0139 0x1dc4  EFS - ok
09:50:57.0186 0x1dc4  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
09:50:57.0216 0x1dc4  ehRecvr - ok
09:50:57.0223 0x1dc4  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
09:50:57.0232 0x1dc4  ehSched - ok
09:50:57.0277 0x1dc4  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
09:50:57.0295 0x1dc4  elxstor - ok
09:50:57.0305 0x1dc4  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
09:50:57.0312 0x1dc4  ErrDev - ok
09:50:57.0356 0x1dc4  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
09:50:57.0391 0x1dc4  EventSystem - ok
09:50:57.0407 0x1dc4  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
09:50:57.0429 0x1dc4  exfat - ok
09:50:57.0437 0x1dc4  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
09:50:57.0459 0x1dc4  fastfat - ok
09:50:57.0481 0x1dc4  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
09:50:57.0508 0x1dc4  Fax - ok
09:50:57.0519 0x1dc4  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
09:50:57.0526 0x1dc4  fdc - ok
09:50:57.0535 0x1dc4  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
09:50:57.0555 0x1dc4  fdPHost - ok
09:50:57.0560 0x1dc4  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
09:50:57.0580 0x1dc4  FDResPub - ok
09:50:57.0613 0x1dc4  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
09:50:57.0624 0x1dc4  FileInfo - ok
09:50:57.0638 0x1dc4  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
09:50:57.0661 0x1dc4  Filetrace - ok
09:50:57.0670 0x1dc4  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
09:50:57.0677 0x1dc4  flpydisk - ok
09:50:57.0687 0x1dc4  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
09:50:57.0697 0x1dc4  FltMgr - ok
09:50:57.0766 0x1dc4  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
09:50:57.0798 0x1dc4  FontCache - ok
09:50:57.0842 0x1dc4  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:50:57.0852 0x1dc4  FontCache3.0.0.0 - ok
09:50:57.0875 0x1dc4  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
09:50:57.0888 0x1dc4  FsDepends - ok
09:50:57.0914 0x1dc4  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
09:50:57.0927 0x1dc4  Fs_Rec - ok
09:50:57.0969 0x1dc4  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
09:50:57.0991 0x1dc4  fvevol - ok
09:50:58.0006 0x1dc4  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
09:50:58.0011 0x1dc4  gagp30kx - ok
09:50:58.0060 0x1dc4  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
09:50:58.0094 0x1dc4  gpsvc - ok
09:50:58.0154 0x1dc4  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
09:50:58.0168 0x1dc4  gupdate - ok
09:50:58.0174 0x1dc4  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
09:50:58.0186 0x1dc4  gupdatem - ok
09:50:58.0209 0x1dc4  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
09:50:58.0217 0x1dc4  hcw85cir - ok
09:50:58.0241 0x1dc4  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
09:50:58.0261 0x1dc4  HDAudBus - ok
09:50:58.0269 0x1dc4  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
09:50:58.0279 0x1dc4  HidBatt - ok
09:50:58.0294 0x1dc4  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
09:50:58.0304 0x1dc4  HidBth - ok
09:50:58.0322 0x1dc4  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
09:50:58.0331 0x1dc4  HidIr - ok
09:50:58.0355 0x1dc4  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
09:50:58.0374 0x1dc4  hidserv - ok
09:50:58.0412 0x1dc4  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
09:50:58.0433 0x1dc4  HidUsb - ok
09:50:58.0444 0x1dc4  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
09:50:58.0470 0x1dc4  hkmsvc - ok
09:50:58.0482 0x1dc4  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
09:50:58.0495 0x1dc4  HomeGroupListener - ok
09:50:58.0540 0x1dc4  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
09:50:58.0570 0x1dc4  HomeGroupProvider - ok
09:50:58.0600 0x1dc4  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
09:50:58.0609 0x1dc4  HpSAMD - ok
09:50:58.0648 0x1dc4  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
09:50:58.0688 0x1dc4  HTTP - ok
09:50:58.0698 0x1dc4  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
09:50:58.0703 0x1dc4  hwpolicy - ok
09:50:58.0724 0x1dc4  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
09:50:58.0732 0x1dc4  i8042prt - ok
09:50:58.0772 0x1dc4  [ D1753C06EE17E29352B065EACF3F10D0, 4DD4C991FAA3CCF99DF8DC9F8F5DEEDEECD55977F0C3AA8C404DEFD21E32A62B ] iaStor          C:\Windows\system32\drivers\iaStor.sys
09:50:58.0792 0x1dc4  iaStor - ok
09:50:58.0854 0x1dc4  [ 545462D0DBE24AF379BA869B7C185CCD, 056F9D0D5FD4FEF37665A35A4029722FF60D02A69854E952DC361CC0E5CD26F9 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
09:50:58.0863 0x1dc4  IAStorDataMgrSvc - ok
09:50:58.0892 0x1dc4  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
09:50:58.0911 0x1dc4  iaStorV - ok
09:50:58.0956 0x1dc4  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
09:50:58.0978 0x1dc4  idsvc - ok
09:50:58.0999 0x1dc4  IEEtwCollectorService - ok
09:50:59.0005 0x1dc4  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
09:50:59.0011 0x1dc4  iirsp - ok
09:50:59.0059 0x1dc4  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
09:50:59.0090 0x1dc4  IKEEXT - ok
09:50:59.0199 0x1dc4  [ 40FB2F6CEB3FC935EC18D656D2758CD4, B21CA15932BA5858EC0578F01B2625B40878D9C2B06B5E20A6D84FCFCCD66C91 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
09:50:59.0320 0x1dc4  IntcAzAudAddService - ok
09:50:59.0347 0x1dc4  [ 6C9FFFECA9FED31347D211C5D1FFBD2D, 36CF8B847FAED0D978B3169ED550CC958025902CAC1D7D304E2684B2483E72B8 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
09:50:59.0366 0x1dc4  IntcDAud - ok
09:50:59.0432 0x1dc4  [ 7C76466F4E0F76CE259C6005D161E9E8, 19F3CCC3A86B68DB70B7608F9ED33746518F5B2450E5BAF9581127CE7A9AA5D2 ] Intel® Capability Licensing Service Interface c:\Program Files\Intel\iCLS Client\HeciServer.exe
09:50:59.0453 0x1dc4  Intel® Capability Licensing Service Interface - ok
09:50:59.0490 0x1dc4  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
09:50:59.0501 0x1dc4  intelide - ok
09:50:59.0535 0x1dc4  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
09:50:59.0551 0x1dc4  intelppm - ok
09:50:59.0578 0x1dc4  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
09:50:59.0598 0x1dc4  IPBusEnum - ok
09:50:59.0607 0x1dc4  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:50:59.0627 0x1dc4  IpFilterDriver - ok
09:50:59.0681 0x1dc4  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
09:50:59.0699 0x1dc4  iphlpsvc - ok
09:50:59.0713 0x1dc4  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
09:50:59.0721 0x1dc4  IPMIDRV - ok
09:50:59.0733 0x1dc4  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
09:50:59.0754 0x1dc4  IPNAT - ok
09:50:59.0765 0x1dc4  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
09:50:59.0774 0x1dc4  IRENUM - ok
09:50:59.0788 0x1dc4  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
09:50:59.0793 0x1dc4  isapnp - ok
09:50:59.0805 0x1dc4  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
09:50:59.0815 0x1dc4  iScsiPrt - ok
09:50:59.0846 0x1dc4  [ 6BCEF45131C8B8E1C558BE540B190B3C, DFFED7FD9DCC15808184E65065DE6138FE010AC01217E5016B2D20A5B89AC570 ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
09:50:59.0851 0x1dc4  iusb3hcs - ok
09:50:59.0880 0x1dc4  [ F080EADA8715F811B58BD35BB774F2F9, 06D5A70CBA89561A71B9CB64D7A298767F098395411A7022F414C7D0AC89A44D ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
09:50:59.0898 0x1dc4  iusb3hub - ok
09:50:59.0916 0x1dc4  [ 0F1756D9396740F053221FA6260FCE66, 0B722BF6BCF66BBD49DE0E92555742976AB33319CF504461A50181BF7A77E886 ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
09:50:59.0933 0x1dc4  iusb3xhc - ok
09:50:59.0939 0x1dc4  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
09:50:59.0945 0x1dc4  kbdclass - ok
09:50:59.0963 0x1dc4  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
09:50:59.0971 0x1dc4  kbdhid - ok
09:50:59.0982 0x1dc4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\Windows\system32\lsass.exe
09:50:59.0989 0x1dc4  KeyIso - ok
09:51:00.0015 0x1dc4  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
09:51:00.0029 0x1dc4  KSecDD - ok
09:51:00.0043 0x1dc4  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
09:51:00.0052 0x1dc4  KSecPkg - ok
09:51:00.0057 0x1dc4  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
09:51:00.0075 0x1dc4  ksthunk - ok
09:51:00.0112 0x1dc4  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
09:51:00.0149 0x1dc4  KtmRm - ok
09:51:00.0191 0x1dc4  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
09:51:00.0230 0x1dc4  LanmanServer - ok
09:51:00.0239 0x1dc4  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
09:51:00.0260 0x1dc4  LanmanWorkstation - ok
09:51:00.0285 0x1dc4  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
09:51:00.0321 0x1dc4  lltdio - ok
09:51:00.0342 0x1dc4  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
09:51:00.0367 0x1dc4  lltdsvc - ok
09:51:00.0385 0x1dc4  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
09:51:00.0404 0x1dc4  lmhosts - ok
09:51:00.0450 0x1dc4  [ 5C08357C65F658E29B5DDC2EF18D575C, 80802787D7CD07BFB4F2EEE463837FB0CBB3626A2D5451B32794DB66A3CC3D98 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
09:51:00.0470 0x1dc4  LMS - ok
09:51:00.0505 0x1dc4  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
09:51:00.0520 0x1dc4  LSI_FC - ok
09:51:00.0542 0x1dc4  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
09:51:00.0549 0x1dc4  LSI_SAS - ok
09:51:00.0558 0x1dc4  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
09:51:00.0572 0x1dc4  LSI_SAS2 - ok
09:51:00.0586 0x1dc4  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
09:51:00.0593 0x1dc4  LSI_SCSI - ok
09:51:00.0604 0x1dc4  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
09:51:00.0625 0x1dc4  luafv - ok
09:51:00.0657 0x1dc4  [ F92B0E478C0FAA6D6661E6E977247E60, 8B26B57C2C60C98CD6273ACA126B2CD0356ADB13A59FEC12882357A6B973123C ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
09:51:00.0662 0x1dc4  MBAMProtector - ok
09:51:00.0747 0x1dc4  [ D84AEA3F3329D622DFC1297DDDF6163B, 316FE56CC30ED1473A917253F46B79EAA12F4ABD5B4B1ADB03929DFEE940F577 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
09:51:00.0797 0x1dc4  MBAMScheduler - ok
09:51:00.0826 0x1dc4  [ 4F45ED469906494F9BF754E476390DBD, D8FF6AFD73D8C191F5732DF9737E6F83B2B52B06A3A6CD4CC6EAC9464CBB2772 ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
09:51:00.0844 0x1dc4  MBAMService - ok
09:51:00.0884 0x1dc4  [ 8A50D5304E6AE48664CF5838EC32F647, C76943FABEE1B5E1B641AA610668CCD4227E2C4B191DD30B79D3AB31A9E8B5BE ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
09:51:00.0896 0x1dc4  MBAMSwissArmy - ok
09:51:00.0913 0x1dc4  [ 15E8ABC06843672955CE26A009533BAD, E7221B7DE9DB45447C68E79C6BFD064713C5974F7E79925BD7DEEF71F73F3E83 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
09:51:00.0920 0x1dc4  MBAMWebAccessControl - ok
09:51:00.0942 0x1dc4  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
09:51:00.0950 0x1dc4  Mcx2Svc - ok
09:51:00.0973 0x1dc4  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
09:51:00.0982 0x1dc4  megasas - ok
09:51:01.0013 0x1dc4  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
09:51:01.0033 0x1dc4  MegaSR - ok
09:51:01.0059 0x1dc4  [ 6B01B7414A105B9E51652089A03027CF, 9B113DC22F7D0D0B376E577C6D7083F9EDC09BBFE47726393E16D4FDAAAE21FE ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
09:51:01.0065 0x1dc4  MEIx64 - ok
09:51:01.0090 0x1dc4  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
09:51:01.0122 0x1dc4  MMCSS - ok
09:51:01.0128 0x1dc4  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
09:51:01.0147 0x1dc4  Modem - ok
09:51:01.0163 0x1dc4  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
09:51:01.0171 0x1dc4  monitor - ok
09:51:01.0191 0x1dc4  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
09:51:01.0197 0x1dc4  mouclass - ok
09:51:01.0211 0x1dc4  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
09:51:01.0218 0x1dc4  mouhid - ok
09:51:01.0241 0x1dc4  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
09:51:01.0248 0x1dc4  mountmgr - ok
09:51:01.0257 0x1dc4  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
09:51:01.0265 0x1dc4  mpio - ok
09:51:01.0276 0x1dc4  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
09:51:01.0297 0x1dc4  mpsdrv - ok
09:51:01.0327 0x1dc4  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
09:51:01.0359 0x1dc4  MpsSvc - ok
09:51:01.0385 0x1dc4  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
09:51:01.0403 0x1dc4  MRxDAV - ok
09:51:01.0432 0x1dc4  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
09:51:01.0457 0x1dc4  mrxsmb - ok
09:51:01.0474 0x1dc4  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:51:01.0486 0x1dc4  mrxsmb10 - ok
09:51:01.0494 0x1dc4  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:51:01.0503 0x1dc4  mrxsmb20 - ok
09:51:01.0529 0x1dc4  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
09:51:01.0535 0x1dc4  msahci - ok
09:51:01.0560 0x1dc4  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
09:51:01.0576 0x1dc4  msdsm - ok
09:51:01.0596 0x1dc4  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
09:51:01.0606 0x1dc4  MSDTC - ok
09:51:01.0629 0x1dc4  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
09:51:01.0648 0x1dc4  Msfs - ok
09:51:01.0659 0x1dc4  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
09:51:01.0679 0x1dc4  mshidkmdf - ok
09:51:01.0695 0x1dc4  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
09:51:01.0701 0x1dc4  msisadrv - ok
09:51:01.0710 0x1dc4  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
09:51:01.0732 0x1dc4  MSiSCSI - ok
09:51:01.0734 0x1dc4  msiserver - ok
09:51:01.0751 0x1dc4  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
09:51:01.0770 0x1dc4  MSKSSRV - ok
09:51:01.0775 0x1dc4  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
09:51:01.0793 0x1dc4  MSPCLOCK - ok
09:51:01.0800 0x1dc4  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
09:51:01.0819 0x1dc4  MSPQM - ok
09:51:01.0835 0x1dc4  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
09:51:01.0846 0x1dc4  MsRPC - ok
09:51:01.0858 0x1dc4  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
09:51:01.0863 0x1dc4  mssmbios - ok
09:51:01.0865 0x1dc4  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
09:51:01.0883 0x1dc4  MSTEE - ok
09:51:01.0891 0x1dc4  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
09:51:01.0897 0x1dc4  MTConfig - ok
09:51:01.0906 0x1dc4  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
09:51:01.0912 0x1dc4  Mup - ok
09:51:01.0949 0x1dc4  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
09:51:01.0984 0x1dc4  napagent - ok
09:51:02.0005 0x1dc4  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
09:51:02.0019 0x1dc4  NativeWifiP - ok
09:51:02.0033 0x1dc4  [ 62D48CCC1C765ED587F17A67DED6B5DC, 7C333142420685EA091EBA557240FAC379245556D92EC907E1984DF22D4BD136 ] NCFilter        C:\Windows\system32\DRIVERS\NCFilter.sys
09:51:02.0040 0x1dc4  NCFilter - ok
09:51:02.0065 0x1dc4  [ 308E481D3DC7BCD6B74FBE4F0D7D3A52, 56AB74BF59D2286DDB3D9BB9C8119CC7A009901CEDFBA0C22934421FC4BF958E ] NCFSD           C:\Program Files\Novell\Client\XTier\Drivers\ncfsd.sys
09:51:02.0077 0x1dc4  NCFSD - ok
09:51:02.0083 0x1dc4  [ 9604C4E217DF00ADDC10BC43EBCAB850, EF5208D433B9099E5BEA93094E21A9C6265FEFE3AF4CD4C5D63553FC14013BFA ] NCIOCTL         C:\Program Files\Novell\Client\XTier\Drivers\ncioctl.sys
09:51:02.0090 0x1dc4  NCIOCTL - ok
09:51:02.0097 0x1dc4  [ B059AE16FFA91A49168553509EAC32DA, 7ACE099BEB334FA7B808A426EFA401B666ECEFF261E75DB728C1608A1A94552A ] NCRecognizer    C:\Windows\system32\DRIVERS\NCRecognizer.sys
09:51:02.0104 0x1dc4  NCRecognizer - ok
09:51:02.0116 0x1dc4  [ 05CFBDA67E6402C7AFD33B3907B9F878, F3C0D48C3734DDB1BA78A4BAF8386FB2636DAA45F241F1D1616044CA2B10AAF0 ] NCUncFilter     C:\Windows\system32\DRIVERS\NCUncFilter.sys
09:51:02.0120 0x1dc4  NCUncFilter - ok
09:51:02.0179 0x1dc4  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
09:51:02.0197 0x1dc4  NDIS - ok
09:51:02.0212 0x1dc4  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
09:51:02.0231 0x1dc4  NdisCap - ok
09:51:02.0251 0x1dc4  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
09:51:02.0270 0x1dc4  NdisTapi - ok
09:51:02.0283 0x1dc4  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
09:51:02.0302 0x1dc4  Ndisuio - ok
09:51:02.0315 0x1dc4  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
09:51:02.0336 0x1dc4  NdisWan - ok
09:51:02.0346 0x1dc4  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
09:51:02.0365 0x1dc4  NDProxy - ok
09:51:02.0373 0x1dc4  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
09:51:02.0393 0x1dc4  NetBIOS - ok
09:51:02.0402 0x1dc4  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
09:51:02.0424 0x1dc4  NetBT - ok
09:51:02.0430 0x1dc4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\Windows\system32\lsass.exe
09:51:02.0437 0x1dc4  Netlogon - ok
09:51:02.0464 0x1dc4  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
09:51:02.0489 0x1dc4  Netman - ok
09:51:02.0522 0x1dc4  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:51:02.0542 0x1dc4  NetMsmqActivator - ok
09:51:02.0548 0x1dc4  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:51:02.0561 0x1dc4  NetPipeActivator - ok
09:51:02.0581 0x1dc4  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
09:51:02.0609 0x1dc4  netprofm - ok
09:51:02.0613 0x1dc4  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:51:02.0618 0x1dc4  NetTcpActivator - ok
09:51:02.0621 0x1dc4  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:51:02.0627 0x1dc4  NetTcpPortSharing - ok
09:51:02.0667 0x1dc4  [ 73CE12B8BDD747B0063CB0A7EF44CEA7, F570BB52BE460DBA6203698CC96FFD9674E1903D0E0F5C49375BE3F8D8E89582 ] netvsc          C:\Windows\system32\DRIVERS\netvsc60.sys
09:51:02.0686 0x1dc4  netvsc - ok
09:51:02.0714 0x1dc4  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
09:51:02.0724 0x1dc4  nfrd960 - ok
09:51:02.0744 0x1dc4  [ E1EDBFC64616636C515D570365E48BD3, 95C4B8AB28F2194D9511CEA362F9A1D22A77445F56013E6667333E7255E80BD2 ] NICM            C:\Program Files\Novell\Client\XTier\Drivers\nicm.sys
09:51:02.0753 0x1dc4  NICM - ok
09:51:02.0771 0x1dc4  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
09:51:02.0786 0x1dc4  NlaSvc - ok
09:51:02.0883 0x1dc4  [ B9B72FAAAA41D59B73B88FE3DD737ED1, 050E741FB5313523340B19C9C168611222C4AE9A6084FE3E2F908A49EA909A29 ] NOBU            C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
09:51:02.0954 0x1dc4  NOBU - ok
09:51:02.0967 0x1dc4  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
09:51:02.0987 0x1dc4  Npfs - ok
09:51:03.0004 0x1dc4  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
09:51:03.0024 0x1dc4  nsi - ok
09:51:03.0032 0x1dc4  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
09:51:03.0051 0x1dc4  nsiproxy - ok
09:51:03.0114 0x1dc4  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
09:51:03.0160 0x1dc4  Ntfs - ok
09:51:03.0168 0x1dc4  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
09:51:03.0186 0x1dc4  Null - ok
09:51:03.0215 0x1dc4  [ A4247F976E40B5C23273631153D97D58, B12A899C624D05701A68EE89458E0C953AA8488C3C0533C7702BB3DE8C383519 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
09:51:03.0223 0x1dc4  NVHDA - ok
09:51:03.0505 0x1dc4  [ 6DEEDC8E5E80EE2DD25F6082A3F53365, 262DEF4B34FCFF9F5FB4D01349D53D2A2FDA341F399AF477B2E76A138EAE928C ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
09:51:03.0810 0x1dc4  nvlddmkm - ok
09:51:03.0829 0x1dc4  [ 85CF189D64D2C334969684DD78FD5A53, 254F2053A3A0E950CAE031ECE31C0B6474B5FD3843A5BC1C80F70F6DC4B14281 ] nvpciflt        C:\Windows\system32\DRIVERS\nvpciflt.sys
09:51:03.0834 0x1dc4  nvpciflt - ok
09:51:03.0857 0x1dc4  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
09:51:03.0872 0x1dc4  nvraid - ok
09:51:03.0895 0x1dc4  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
09:51:03.0903 0x1dc4  nvstor - ok
09:51:03.0936 0x1dc4  [ 6E41E4F9E9FCEFDB7EC0202AC08DFAF1, FE01AE6987DC826B77DEEDBC3B73F26F61B966330FB159E54960189DBFBF3F3F ] NvStUSB         C:\Windows\system32\drivers\nvstusb.sys
09:51:03.0950 0x1dc4  NvStUSB - ok
09:51:03.0979 0x1dc4  [ EA6172BA53AF4FBB34ABFCD87CFC06C0, 95B48E75F0F5455AC4B64E001BBB88D852E5CAA5FA48B49BF9CBF3EC17978FA5 ] nvsvc           C:\Windows\system32\nvvsvc.exe
09:51:03.0996 0x1dc4  nvsvc - ok
09:51:04.0078 0x1dc4  [ EF5AB63F855A5EB65C25E8BA4C3F6E02, 0B10895741626674EF5D4E3E8F4EFC2148E9FA42CC0595EF763AA19665E35A92 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
09:51:04.0139 0x1dc4  nvUpdatusService - ok
09:51:04.0155 0x1dc4  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
09:51:04.0163 0x1dc4  nv_agp - ok
09:51:04.0180 0x1dc4  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
09:51:04.0188 0x1dc4  ohci1394 - ok
09:51:04.0217 0x1dc4  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:51:04.0231 0x1dc4  ose - ok
09:51:04.0368 0x1dc4  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
09:51:04.0512 0x1dc4  osppsvc - ok
09:51:04.0547 0x1dc4  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
09:51:04.0581 0x1dc4  p2pimsvc - ok
09:51:04.0595 0x1dc4  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
09:51:04.0611 0x1dc4  p2psvc - ok
09:51:04.0627 0x1dc4  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
09:51:04.0635 0x1dc4  Parport - ok
09:51:04.0657 0x1dc4  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
09:51:04.0664 0x1dc4  partmgr - ok
09:51:04.0677 0x1dc4  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
09:51:04.0700 0x1dc4  PcaSvc - ok
09:51:04.0717 0x1dc4  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
09:51:04.0725 0x1dc4  pci - ok
09:51:04.0759 0x1dc4  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
09:51:04.0771 0x1dc4  pciide - ok
09:51:04.0786 0x1dc4  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
09:51:04.0794 0x1dc4  pcmcia - ok
09:51:04.0804 0x1dc4  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
09:51:04.0811 0x1dc4  pcw - ok
09:51:04.0828 0x1dc4  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
09:51:04.0858 0x1dc4  PEAUTH - ok
09:51:04.0896 0x1dc4  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
09:51:04.0954 0x1dc4  PeerDistSvc - ok
09:51:05.0006 0x1dc4  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
09:51:05.0022 0x1dc4  PerfHost - ok
09:51:05.0089 0x1dc4  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
09:51:05.0148 0x1dc4  pla - ok
09:51:05.0192 0x1dc4  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
09:51:05.0218 0x1dc4  PlugPlay - ok
09:51:05.0226 0x1dc4  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
09:51:05.0234 0x1dc4  PNRPAutoReg - ok
09:51:05.0246 0x1dc4  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
09:51:05.0257 0x1dc4  PNRPsvc - ok
09:51:05.0300 0x1dc4  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
09:51:05.0340 0x1dc4  PolicyAgent - ok
09:51:05.0360 0x1dc4  [ A2CCA4FB273E6050F17A0A416CFF2FCD, C42BA18DF0C8E3F7358669A784E51E4DC7A4112096345EA699EDC95F561E0255 ] Power           C:\Windows\system32\umpo.dll
09:51:05.0376 0x1dc4  Power - ok
09:51:05.0405 0x1dc4  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
09:51:05.0425 0x1dc4  PptpMiniport - ok
09:51:05.0435 0x1dc4  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
09:51:05.0444 0x1dc4  Processor - ok
09:51:05.0464 0x1dc4  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
09:51:05.0487 0x1dc4  ProfSvc - ok
09:51:05.0494 0x1dc4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
09:51:05.0508 0x1dc4  ProtectedStorage - ok
09:51:05.0535 0x1dc4  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
09:51:05.0572 0x1dc4  Psched - ok
09:51:05.0631 0x1dc4  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
09:51:05.0676 0x1dc4  ql2300 - ok
09:51:05.0686 0x1dc4  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
09:51:05.0693 0x1dc4  ql40xx - ok
09:51:05.0714 0x1dc4  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
09:51:05.0729 0x1dc4  QWAVE - ok
09:51:05.0736 0x1dc4  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
09:51:05.0746 0x1dc4  QWAVEdrv - ok
09:51:05.0755 0x1dc4  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
09:51:05.0774 0x1dc4  RasAcd - ok
09:51:05.0808 0x1dc4  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
09:51:05.0843 0x1dc4  RasAgileVpn - ok
09:51:05.0850 0x1dc4  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
09:51:05.0871 0x1dc4  RasAuto - ok
09:51:05.0879 0x1dc4  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
09:51:05.0900 0x1dc4  Rasl2tp - ok
09:51:05.0917 0x1dc4  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
09:51:05.0941 0x1dc4  RasMan - ok
09:51:05.0951 0x1dc4  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
09:51:05.0971 0x1dc4  RasPppoe - ok
09:51:05.0983 0x1dc4  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
09:51:06.0003 0x1dc4  RasSstp - ok
09:51:06.0014 0x1dc4  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
09:51:06.0037 0x1dc4  rdbss - ok
09:51:06.0043 0x1dc4  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
09:51:06.0051 0x1dc4  rdpbus - ok
09:51:06.0068 0x1dc4  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
09:51:06.0085 0x1dc4  RDPCDD - ok
09:51:06.0104 0x1dc4  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
09:51:06.0113 0x1dc4  RDPDR - ok
09:51:06.0125 0x1dc4  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
09:51:06.0143 0x1dc4  RDPENCDD - ok
09:51:06.0159 0x1dc4  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
09:51:06.0177 0x1dc4  RDPREFMP - ok
09:51:06.0194 0x1dc4  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
09:51:06.0206 0x1dc4  RDPWD - ok
09:51:06.0227 0x1dc4  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
09:51:06.0236 0x1dc4  rdyboost - ok
09:51:06.0258 0x1dc4  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
09:51:06.0279 0x1dc4  RemoteAccess - ok
09:51:06.0326 0x1dc4  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
09:51:06.0359 0x1dc4  RemoteRegistry - ok
09:51:06.0382 0x1dc4  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
09:51:06.0393 0x1dc4  RFCOMM - ok
09:51:06.0403 0x1dc4  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
09:51:06.0423 0x1dc4  RpcEptMapper - ok
09:51:06.0434 0x1dc4  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
09:51:06.0442 0x1dc4  RpcLocator - ok
09:51:06.0463 0x1dc4  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
09:51:06.0488 0x1dc4  RpcSs - ok
09:51:06.0517 0x1dc4  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
09:51:06.0538 0x1dc4  rspndr - ok
09:51:06.0580 0x1dc4  [ 6CF9DB101A75360E98659F823852E540, A7D48DF41A831EEF9978B51786EF80DB9CC40602BE66D46CA11BE1548BC2D10C ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
09:51:06.0594 0x1dc4  RTL8167 - ok
09:51:06.0617 0x1dc4  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
09:51:06.0623 0x1dc4  s3cap - ok
09:51:06.0635 0x1dc4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\Windows\system32\lsass.exe
09:51:06.0641 0x1dc4  SamSs - ok
09:51:06.0649 0x1dc4  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
09:51:06.0656 0x1dc4  sbp2port - ok
09:51:06.0689 0x1dc4  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
09:51:06.0720 0x1dc4  SCardSvr - ok
09:51:06.0741 0x1dc4  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
09:51:06.0760 0x1dc4  scfilter - ok
09:51:06.0786 0x1dc4  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
09:51:06.0821 0x1dc4  Schedule - ok
09:51:06.0835 0x1dc4  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
09:51:06.0853 0x1dc4  SCPolicySvc - ok
09:51:06.0862 0x1dc4  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
09:51:06.0882 0x1dc4  SDRSVC - ok
09:51:06.0897 0x1dc4  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
09:51:06.0916 0x1dc4  secdrv - ok
09:51:06.0926 0x1dc4  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
09:51:06.0946 0x1dc4  seclogon - ok
09:51:06.0954 0x1dc4  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
09:51:06.0975 0x1dc4  SENS - ok
09:51:06.0980 0x1dc4  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
09:51:06.0991 0x1dc4  SensrSvc - ok
09:51:07.0020 0x1dc4  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
09:51:07.0035 0x1dc4  Serenum - ok
09:51:07.0050 0x1dc4  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
09:51:07.0067 0x1dc4  Serial - ok
09:51:07.0092 0x1dc4  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
09:51:07.0104 0x1dc4  sermouse - ok
09:51:07.0126 0x1dc4  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
09:51:07.0147 0x1dc4  SessionEnv - ok
09:51:07.0158 0x1dc4  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
09:51:07.0167 0x1dc4  sffdisk - ok
09:51:07.0169 0x1dc4  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
09:51:07.0176 0x1dc4  sffp_mmc - ok
09:51:07.0179 0x1dc4  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
09:51:07.0187 0x1dc4  sffp_sd - ok
09:51:07.0198 0x1dc4  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
09:51:07.0205 0x1dc4  sfloppy - ok
09:51:07.0279 0x1dc4  [ 4215C271D6E6898C3F4DABAB4F387DC9, 10D845466AC239E18A381FA3BCF1DA1CDCF7CC4363D3A6B4695D6562B3EF7541 ] SftService      C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
09:51:07.0325 0x1dc4  SftService - ok
09:51:07.0350 0x1dc4  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
09:51:07.0375 0x1dc4  SharedAccess - ok
09:51:07.0401 0x1dc4  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
09:51:07.0426 0x1dc4  ShellHWDetection - ok
09:51:07.0445 0x1dc4  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
09:51:07.0451 0x1dc4  SiSRaid2 - ok
09:51:07.0459 0x1dc4  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
09:51:07.0473 0x1dc4  SiSRaid4 - ok
09:51:07.0495 0x1dc4  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
09:51:07.0515 0x1dc4  Smb - ok
09:51:07.0530 0x1dc4  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
09:51:07.0539 0x1dc4  SNMPTRAP - ok
09:51:07.0545 0x1dc4  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
09:51:07.0551 0x1dc4  spldr - ok
09:51:07.0598 0x1dc4  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
09:51:07.0629 0x1dc4  Spooler - ok
09:51:07.0719 0x1dc4  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
09:51:07.0819 0x1dc4  sppsvc - ok
09:51:07.0829 0x1dc4  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
09:51:07.0849 0x1dc4  sppuinotify - ok
09:51:07.0877 0x1dc4  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
09:51:07.0895 0x1dc4  srv - ok
09:51:07.0914 0x1dc4  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
09:51:07.0928 0x1dc4  srv2 - ok
09:51:07.0937 0x1dc4  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
09:51:07.0947 0x1dc4  srvnet - ok
09:51:07.0960 0x1dc4  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
09:51:07.0983 0x1dc4  SSDPSRV - ok
09:51:07.0990 0x1dc4  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
09:51:08.0010 0x1dc4  SstpSvc - ok
09:51:08.0057 0x1dc4  [ 8BDF333F141C75740F4B0EAC151EB535, 460A52860FA27584EC80793A82924B2001986B2FEA5355F39F15BFE4A80B8F86 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
09:51:08.0080 0x1dc4  Stereo Service - ok
09:51:08.0101 0x1dc4  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
09:51:08.0107 0x1dc4  stexstor - ok
09:51:08.0148 0x1dc4  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
09:51:08.0176 0x1dc4  stisvc - ok
09:51:08.0191 0x1dc4  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
09:51:08.0203 0x1dc4  StorSvc - ok
09:51:08.0214 0x1dc4  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
09:51:08.0226 0x1dc4  storvsc - ok
09:51:08.0238 0x1dc4  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
09:51:08.0250 0x1dc4  swenum - ok
09:51:08.0271 0x1dc4  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
09:51:08.0298 0x1dc4  swprv - ok
09:51:08.0304 0x1dc4  [ 4CDD7DF58730D23BA9CB5829A6E2ECEA, 89A2A1604C2BF985894000F51D9D376B32F1327197866850B5BF8640272DE828 ] SynthVid        C:\Windows\system32\DRIVERS\VMBusVideoM.sys
09:51:08.0310 0x1dc4  SynthVid - ok
09:51:08.0349 0x1dc4  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
09:51:08.0413 0x1dc4  SysMain - ok
09:51:08.0428 0x1dc4  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
09:51:08.0440 0x1dc4  TabletInputService - ok
09:51:08.0455 0x1dc4  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
09:51:08.0480 0x1dc4  TapiSrv - ok
09:51:08.0492 0x1dc4  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
09:51:08.0512 0x1dc4  TBS - ok
09:51:08.0588 0x1dc4  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
09:51:08.0633 0x1dc4  Tcpip - ok
09:51:08.0682 0x1dc4  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
09:51:08.0711 0x1dc4  TCPIP6 - ok
09:51:08.0746 0x1dc4  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
09:51:08.0761 0x1dc4  tcpipreg - ok
09:51:08.0783 0x1dc4  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
09:51:08.0800 0x1dc4  TDPIPE - ok
09:51:08.0829 0x1dc4  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
09:51:08.0841 0x1dc4  TDTCP - ok
09:51:08.0868 0x1dc4  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
09:51:08.0904 0x1dc4  tdx - ok
09:51:08.0917 0x1dc4  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
09:51:08.0923 0x1dc4  TermDD - ok
09:51:08.0953 0x1dc4  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
09:51:08.0982 0x1dc4  TermService - ok
09:51:08.0996 0x1dc4  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
09:51:09.0007 0x1dc4  Themes - ok
09:51:09.0032 0x1dc4  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
09:51:09.0051 0x1dc4  THREADORDER - ok
09:51:09.0089 0x1dc4  [ BA4030F56AACECD0E6D413565B4AED75, A9B0A672F9EAF5D23A200CE1D5249A30DBF8C9529BA82139D2B52B0C83521F30 ] tmactmon        C:\Windows\system32\DRIVERS\tmactmon.sys
09:51:09.0102 0x1dc4  tmactmon - ok
09:51:09.0130 0x1dc4  [ ED866799CA62626341632DA9EDECFD04, 079FCEA16F887943F873955805BAB078CE014D13839BAD4B732D8D7F9F7AF828 ] tmcomm          C:\Windows\system32\DRIVERS\tmcomm.sys
09:51:09.0143 0x1dc4  tmcomm - ok
09:51:09.0152 0x1dc4  [ 84FB4B5C8DCD78163C440431FEF3E096, 9D564EC35426E05A4159988C2688CB52221617B36491BB3152AC334336A45AA2 ] tmevtmgr        C:\Windows\system32\DRIVERS\tmevtmgr.sys
09:51:09.0162 0x1dc4  tmevtmgr - ok
09:51:09.0229 0x1dc4  [ 14AAD1604C9386899485758C05A1757E, D69437D6CB6985F85826D1536E9F70C07C786CBEBCA62A94DCF1F0CDAC1FF990 ] TmListen        C:\Program Files\Trend Micro\Security Agent\tmlisten.exe
09:51:09.0249 0x1dc4  TmListen - ok
09:51:09.0275 0x1dc4  [ 77B9BEBB0769F45EF770297196EF3506, 29B6DC561B5E1DE9072300A6B94A0B78336161F043DB53DC87C4B0AAA555EF7B ] tmtdi           C:\Windows\system32\DRIVERS\tmtdi.sys
09:51:09.0282 0x1dc4  tmtdi - ok
09:51:09.0316 0x1dc4  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
09:51:09.0354 0x1dc4  TrkWks - ok
09:51:09.0393 0x1dc4  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
09:51:09.0421 0x1dc4  TrustedInstaller - ok
09:51:09.0451 0x1dc4  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
09:51:09.0474 0x1dc4  tssecsrv - ok
09:51:09.0500 0x1dc4  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
09:51:09.0524 0x1dc4  TsUsbFlt - ok
09:51:09.0537 0x1dc4  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
09:51:09.0544 0x1dc4  TsUsbGD - ok
09:51:09.0576 0x1dc4  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
09:51:09.0613 0x1dc4  tunnel - ok
09:51:09.0622 0x1dc4  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
09:51:09.0629 0x1dc4  uagp35 - ok
09:51:09.0641 0x1dc4  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
09:51:09.0665 0x1dc4  udfs - ok
09:51:09.0685 0x1dc4  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
09:51:09.0693 0x1dc4  UI0Detect - ok
09:51:09.0711 0x1dc4  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
09:51:09.0725 0x1dc4  uliagpkx - ok
09:51:09.0736 0x1dc4  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
09:51:09.0745 0x1dc4  umbus - ok
09:51:09.0756 0x1dc4  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
09:51:09.0763 0x1dc4  UmPass - ok
09:51:09.0784 0x1dc4  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
09:51:09.0795 0x1dc4  UmRdpService - ok
09:51:09.0847 0x1dc4  [ 0DFC9713D117B349E41A2A477448107A, 0C7B2162C2FA0BA46C2D3D9986CB542926C1802532E0785A49AC9B18284267AC ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
09:51:09.0862 0x1dc4  UNS - ok
09:51:09.0888 0x1dc4  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
09:51:09.0928 0x1dc4  upnphost - ok
09:51:09.0946 0x1dc4  [ 19AD7990C0B67E48DAC5B26F99628223, 2225A887A4723D2FF306ED9FF1249DA7177699EBE84A89FF040A35D3DB6382E4 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
09:51:09.0963 0x1dc4  usbccgp - ok
09:51:09.0997 0x1dc4  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
09:51:10.0017 0x1dc4  usbcir - ok
09:51:10.0035 0x1dc4  [ C025055FE7B87701EB042095DF1A2D7B, D7B34B6C2C5BD3C8141895AC21BB637EA5E3C4F7A85EEF4C4C36E6BB2045A3D9 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
09:51:10.0049 0x1dc4  usbehci - ok
09:51:10.0093 0x1dc4  [ 8B892002D7B79312821169A14317AB86, CE722F48254152961E69FF83FBC25ED0E3AC73ECBA1625CA3E81E7B52817389B ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
09:51:10.0118 0x1dc4  usbhub - ok
09:51:10.0127 0x1dc4  [ 9840FC418B4CBD632D3D0A667A725C31, 776D86A032DCA2842EF7AADB35473193CA80547223EFAA7F110F296C377077B0 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
09:51:10.0134 0x1dc4  usbohci - ok
09:51:10.0157 0x1dc4  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
09:51:10.0175 0x1dc4  usbprint - ok
09:51:10.0197 0x1dc4  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\drivers\usbscan.sys
09:51:10.0212 0x1dc4  usbscan - ok
09:51:10.0239 0x1dc4  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:51:10.0259 0x1dc4  USBSTOR - ok
09:51:10.0271 0x1dc4  [ 62069A34518BCF9C1FD9E74B3F6DB7CD, C58E21424718729324B285BEE1C96551540FCC3FD650B2D10895EBA48D981E25 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
09:51:10.0281 0x1dc4  usbuhci - ok
09:51:10.0294 0x1dc4  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
09:51:10.0314 0x1dc4  UxSms - ok
09:51:10.0340 0x1dc4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\Windows\system32\lsass.exe
09:51:10.0354 0x1dc4  VaultSvc - ok
09:51:10.0374 0x1dc4  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
09:51:10.0381 0x1dc4  vdrvroot - ok
09:51:10.0409 0x1dc4  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
09:51:10.0446 0x1dc4  vds - ok
09:51:10.0467 0x1dc4  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
09:51:10.0475 0x1dc4  vga - ok
09:51:10.0481 0x1dc4  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
09:51:10.0500 0x1dc4  VgaSave - ok
09:51:10.0514 0x1dc4  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
09:51:10.0523 0x1dc4  vhdmp - ok
09:51:10.0544 0x1dc4  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
09:51:10.0550 0x1dc4  viaide - ok
09:51:10.0565 0x1dc4  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
09:51:10.0572 0x1dc4  VMBusHID - ok
09:51:10.0578 0x1dc4  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
09:51:10.0585 0x1dc4  volmgr - ok
09:51:10.0598 0x1dc4  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
09:51:10.0609 0x1dc4  volmgrx - ok
09:51:10.0623 0x1dc4  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
09:51:10.0633 0x1dc4  volsnap - ok
09:51:10.0659 0x1dc4  [ B4A73CA4EF9A02B9738CEA9AD5FE5917, B6A8086189FE2F1C3FE5B3F484FBA3DB2E5E1836F3154D30090F136C27D16166 ] vpcbus          C:\Windows\system32\DRIVERS\vpchbus.sys
09:51:10.0669 0x1dc4  vpcbus - ok
09:51:10.0699 0x1dc4  [ E675FB2B48C54F09895482E2253B289C, 68BBFBF2356C849722E429CA753CC309A3CCE8CF00EBDBBD2695ECD292324DF2 ] vpcnfltr        C:\Windows\system32\DRIVERS\vpcnfltr.sys
09:51:10.0715 0x1dc4  vpcnfltr - ok
09:51:10.0742 0x1dc4  [ 5FB42082B0D19A0268705F1DD343DF20, 62F8EEE6A507CE6A8BD638020118D71B78332F79BA82654AB702AE46B04767D9 ] vpcusb          C:\Windows\system32\DRIVERS\vpcusb.sys
09:51:10.0751 0x1dc4  vpcusb - ok
09:51:10.0782 0x1dc4  [ 30D4243726A15A14F5C5E45898D14394, 0EED69CACCDEC1260C79B187370E420C12654F0F5F777A1FF27F5C5FF3BAE2E1 ] vpcvmm          C:\Windows\system32\drivers\vpcvmm.sys
09:51:10.0800 0x1dc4  vpcvmm - ok
09:51:10.0825 0x1dc4  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
09:51:10.0838 0x1dc4  vsmraid - ok
09:51:10.0877 0x1dc4  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
09:51:10.0920 0x1dc4  VSS - ok
09:51:10.0937 0x1dc4  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
09:51:10.0945 0x1dc4  vwifibus - ok
09:51:10.0952 0x1dc4  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
09:51:10.0962 0x1dc4  vwififlt - ok
09:51:10.0979 0x1dc4  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
09:51:11.0005 0x1dc4  W32Time - ok
09:51:11.0018 0x1dc4  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
09:51:11.0026 0x1dc4  WacomPen - ok
09:51:11.0050 0x1dc4  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
09:51:11.0087 0x1dc4  WANARP - ok
09:51:11.0090 0x1dc4  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
09:51:11.0108 0x1dc4  Wanarpv6 - ok
09:51:11.0194 0x1dc4  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
09:51:11.0230 0x1dc4  WatAdminSvc - ok
09:51:11.0292 0x1dc4  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
09:51:11.0349 0x1dc4  wbengine - ok
09:51:11.0364 0x1dc4  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
09:51:11.0377 0x1dc4  WbioSrvc - ok
09:51:11.0396 0x1dc4  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
09:51:11.0413 0x1dc4  wcncsvc - ok
09:51:11.0418 0x1dc4  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
09:51:11.0435 0x1dc4  WcsPlugInService - ok
09:51:11.0459 0x1dc4  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
09:51:11.0471 0x1dc4  Wd - ok
09:51:11.0523 0x1dc4  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
09:51:11.0547 0x1dc4  Wdf01000 - ok
09:51:11.0569 0x1dc4  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
09:51:11.0595 0x1dc4  WdiServiceHost - ok
09:51:11.0598 0x1dc4  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
09:51:11.0608 0x1dc4  WdiSystemHost - ok
09:51:11.0636 0x1dc4  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
09:51:11.0648 0x1dc4  WebClient - ok
09:51:11.0661 0x1dc4  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
09:51:11.0684 0x1dc4  Wecsvc - ok
09:51:11.0690 0x1dc4  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
09:51:11.0711 0x1dc4  wercplsupport - ok
09:51:11.0728 0x1dc4  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
09:51:11.0749 0x1dc4  WerSvc - ok
09:51:11.0779 0x1dc4  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
09:51:11.0812 0x1dc4  WfpLwf - ok
09:51:11.0842 0x1dc4  [ B14EF15BD757FA488F9C970EEE9C0D35, F27DF2D47E7076786AE7C396583D7A1C56B93E766711066C900964FC7313E794 ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
09:51:11.0858 0x1dc4  WimFltr - ok
09:51:11.0867 0x1dc4  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
09:51:11.0873 0x1dc4  WIMMount - ok
09:51:11.0883 0x1dc4  WinDefend - ok
09:51:11.0895 0x1dc4  WinHttpAutoProxySvc - ok
09:51:11.0939 0x1dc4  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
09:51:11.0971 0x1dc4  Winmgmt - ok
09:51:12.0020 0x1dc4  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
09:51:12.0088 0x1dc4  WinRM - ok
09:51:12.0137 0x1dc4  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
09:51:12.0160 0x1dc4  Wlansvc - ok
09:51:12.0184 0x1dc4  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
09:51:12.0189 0x1dc4  wlcrasvc - ok
09:51:12.0266 0x1dc4  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
09:51:12.0316 0x1dc4  wlidsvc - ok
09:51:12.0340 0x1dc4  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
09:51:12.0349 0x1dc4  WmiAcpi - ok
09:51:12.0370 0x1dc4  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
09:51:12.0384 0x1dc4  wmiApSrv - ok
09:51:12.0394 0x1dc4  WMPNetworkSvc - ok
09:51:12.0434 0x1dc4  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
09:51:12.0457 0x1dc4  WPCSvc - ok
09:51:12.0467 0x1dc4  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
09:51:12.0477 0x1dc4  WPDBusEnum - ok
09:51:12.0498 0x1dc4  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
09:51:12.0517 0x1dc4  ws2ifsl - ok
09:51:12.0530 0x1dc4  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
09:51:12.0542 0x1dc4  wscsvc - ok
09:51:12.0543 0x1dc4  WSearch - ok
09:51:12.0631 0x1dc4  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
09:51:12.0686 0x1dc4  wuauserv - ok
09:51:12.0722 0x1dc4  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
09:51:12.0738 0x1dc4  WudfPf - ok
09:51:12.0760 0x1dc4  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
09:51:12.0780 0x1dc4  WUDFRd - ok
09:51:12.0803 0x1dc4  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
09:51:12.0822 0x1dc4  wudfsvc - ok
09:51:12.0863 0x1dc4  [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc         C:\Windows\System32\wwansvc.dll
09:51:12.0889 0x1dc4  WwanSvc - ok
09:51:12.0899 0x1dc4  XTSvcMgr - ok
09:51:12.0942 0x1dc4  [ D83C2FF7EA53E66B8EA7901D710494EA, 5B2D3866C8D00FBDB3D9C5A03FA2C711633DF3C1D3FCB864E9A53C851E17FD18 ] ZAtheros Bt&Wlan Coex Agent C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Ath_CoexAgent.exe
09:51:12.0955 0x1dc4  ZAtheros Bt&Wlan Coex Agent - detected UnsignedFile.Multi.Generic ( 1 )
09:51:13.0301 0x1dc4  Detect skipped due to KSN trusted
09:51:13.0301 0x1dc4  ZAtheros Bt&Wlan Coex Agent - ok
09:51:13.0319 0x1dc4  [ A3E1CEB2AFA02268DDD6522BA24B8F0E, F74DD54A6C9D80D4F91F1BFCD320DF30DEA7D47CD13E559250CE768186A63FA1 ] ZAtheros Wlan Agent C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe
09:51:13.0329 0x1dc4  ZAtheros Wlan Agent - detected UnsignedFile.Multi.Generic ( 1 )
09:51:13.0676 0x1dc4  Detect skipped due to KSN trusted
09:51:13.0676 0x1dc4  ZAtheros Wlan Agent - ok
09:51:13.0688 0x1dc4  ================ Scan global ===============================
09:51:13.0709 0x1dc4  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
09:51:13.0744 0x1dc4  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
09:51:13.0757 0x1dc4  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
09:51:13.0777 0x1dc4  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
09:51:13.0803 0x1dc4  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
09:51:13.0813 0x1dc4  [ Global ] - ok
09:51:13.0814 0x1dc4  ================ Scan MBR ==================================
09:51:13.0822 0x1dc4  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
09:51:14.0076 0x1dc4  \Device\Harddisk0\DR0 - ok
09:51:14.0077 0x1dc4  ================ Scan VBR ==================================
09:51:14.0079 0x1dc4  [ A600B056185821F2BACAB5C0F235837E ] \Device\Harddisk0\DR0\Partition1
09:51:14.0081 0x1dc4  \Device\Harddisk0\DR0\Partition1 - detected Rootkit.Boot.Cidox.b ( 0 )
09:51:14.0081 0x1dc4  \Device\Harddisk0\DR0\Partition1 ( Rootkit.Boot.Cidox.b ) - infected
09:51:16.0966 0x1dc4  [ 8F7AA5FEC9E80D0F30F65C9042AADBA0 ] \Device\Harddisk0\DR0\Partition2
09:51:16.0968 0x1dc4  \Device\Harddisk0\DR0\Partition2 - ok
09:51:16.0968 0x1dc4  ================ Scan generic autorun ======================
09:51:17.0163 0x1dc4  [ 9D42569C2CF76166C4B7B8C5F16F08D3, 55B175520DED28055AEF3A6A294A7B64A6EBCDDE0B672EE1242ABDB321D44688 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
09:51:17.0311 0x1dc4  RTHDVCPL - ok
09:51:17.0341 0x1dc4  [ 350AE710634AF327DDC90B897BBBA23A, E4F0C0D50894A9CA63311AC48EA22F7B9BCA35AE3AC71AD6259C0FAC6FA134B9 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
09:51:17.0373 0x1dc4  RtHDVBg - ok
09:51:17.0409 0x1dc4  [ 9E34930AFF0A57ECB5018B6520644FF2, 6298807670FA7AFF1AD6720B29FFF2852AA04ACD7B924040CA646575DEFADBC8 ] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
09:51:17.0438 0x1dc4  AtherosBtStack - detected UnsignedFile.Multi.Generic ( 1 )
09:51:17.0785 0x1dc4  Detect skipped due to KSN trusted
09:51:17.0785 0x1dc4  AtherosBtStack - ok
09:51:17.0821 0x1dc4  [ A18018B01D3C1B00D0464DBEF66C61C3, D12902023D24A9BF331C76CCE77D7A37EFA3AE43FA5F1900F4E8EBC5565D6AA1 ] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe
09:51:17.0856 0x1dc4  AthBtTray - detected UnsignedFile.Multi.Generic ( 1 )
09:51:18.0204 0x1dc4  Detect skipped due to KSN trusted
09:51:18.0204 0x1dc4  AthBtTray - ok
09:51:18.0222 0x1dc4  [ E79C75043EED808058ADFF660F81B64D, 940D05CF929225B2903AE826C234F9A4D7B64AD12A2B61BA9F2FA1E51E4E0E25 ] C:\Windows\system32\NWTRAY.EXE
09:51:18.0234 0x1dc4  NWTRAY - ok
09:51:18.0236 0x1dc4  OfficeScanNT Monitor - ok
09:51:18.0279 0x1dc4  [ 3F69F51DB6C621B4D56B6D48B4D1BB54, AA58316ECB48E16B2615FC1A0B81581CAD3607EC4949D049DB98343516A10D29 ] C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe
09:51:18.0295 0x1dc4  Trend Micro Client Framework - ok
09:51:18.0326 0x1dc4  [ 5514B64F7F2D25E09E2FDAF5D62B688C, 43263715ADC49250762A01E41DB2832C6A8B63CE4F66CDD8FC0B51DCA031DF27 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe
09:51:18.0338 0x1dc4  IAStorIcon - ok
09:51:18.0386 0x1dc4  [ 2A510D5500FD4C50A9E38DF85478F862, 88F3B45169CE181F6F5BF923ACDB27D19D5FE8553DEE8E9DD0090E69D721BC5D ] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
09:51:18.0404 0x1dc4  USB3MON - ok
09:51:18.0495 0x1dc4  [ 3B78ACCCAA5132638E7CF419F4A965C7, C91DD62901778FEB6BDBABD6F736D59FD85361AE53867AD232C90D22ECB7B49F ] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
09:51:18.0523 0x1dc4  CanonSolutionMenuEx - ok
09:51:18.0576 0x1dc4  [ 47811D50390A86A17102D7496E6EABB9, 9DA5A899B9D55E1D43718EC0AD6368F9E9EF0242A4E88CD5DDB2CC6D7BFA5FB3 ] C:\Users\Lindag\Downloads\HijackThis.exe
09:51:18.0602 0x1dc4  HijackThis startup scan - detected UnsignedFile.Multi.Generic ( 1 )
09:51:18.0950 0x1dc4  Detect skipped due to KSN trusted
09:51:18.0950 0x1dc4  HijackThis startup scan - ok
09:51:18.0951 0x1dc4  Waiting for KSN requests completion. In queue: 7
09:51:19.0987 0x1dc4  AV detected via SS2: Trend Micro Security Agent, C:\Program Files\Trend Micro\Security Agent\WscHandler.exe ( 1.0.0.1638 ), 0x41000 ( enabled : updated )
09:51:19.0993 0x1dc4  Win FW state via NFP2: enabled
09:51:20.0451 0x1dc4  ============================================================
09:51:20.0451 0x1dc4  Scan finished
09:51:20.0451 0x1dc4  ============================================================
09:51:20.0458 0x1dbc  Detected object count: 1
09:51:20.0458 0x1dbc  Actual detected object count: 1
09:51:38.0847 0x1dbc  \Device\Harddisk0\DR0\Partition1 ( Rootkit.Boot.Cidox.b ) - skipped by user
09:51:38.0847 0x1dbc  \Device\Harddisk0\DR0\Partition1 ( Rootkit.Boot.Cidox.b ) - User select action: Skip 
 
I've attached the logs generated by FRST (I ran this yesterday)
 
Attached File  Addition.txt   39.15KB   1 downloads
 
Attached File  FRST.txt   59.06KB   4 downloads
 
What do you suggest as my next move?
 

Hi 

 

Thanks for your assistance, TDS SKiller found a rootkit:

 

09:50:23.0818 0x1cd0  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
09:50:30.0456 0x1cd0  ============================================================
09:50:30.0456 0x1cd0  Current date / time: 2014/07/11 09:50:30.0456
09:50:30.0456 0x1cd0  SystemInfo:
09:50:30.0456 0x1cd0  
09:50:30.0456 0x1cd0  OS Version: 6.1.7601 ServicePack: 1.0
09:50:30.0456 0x1cd0  Product type: Workstation
09:50:30.0457 0x1cd0  ComputerName: ACCOUNTS1
09:50:30.0457 0x1cd0  UserName: Lindag
09:50:30.0457 0x1cd0  Windows directory: C:\Windows
09:50:30.0457 0x1cd0  System windows directory: C:\Windows
09:50:30.0457 0x1cd0  Running under WOW64
09:50:30.0457 0x1cd0  Processor architecture: Intel x64
09:50:30.0457 0x1cd0  Number of processors: 8
09:50:30.0457 0x1cd0  Page size: 0x1000
09:50:30.0457 0x1cd0  Boot type: Normal boot
09:50:30.0457 0x1cd0  ============================================================
09:50:30.0694 0x1cd0  KLMD registered as C:\Windows\system32\drivers\40897768.sys
09:50:31.0121 0x1cd0  System UUID: {3A9184DB-DEE0-69BE-6D31-624DC77FEE45}
09:50:31.0487 0x1cd0  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:50:31.0512 0x1cd0  ============================================================
09:50:31.0513 0x1cd0  \Device\Harddisk0\DR0:
09:50:31.0513 0x1cd0  MBR partitions:
09:50:31.0513 0x1cd0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1E4E000
09:50:31.0513 0x1cd0  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1E62000, BlocksNum 0x38522000
09:50:31.0513 0x1cd0  ============================================================
09:50:31.0539 0x1cd0  C: <-> \Device\Harddisk0\DR0\Partition2
09:50:31.0539 0x1cd0  ============================================================
09:50:31.0539 0x1cd0  Initialize success
09:50:31.0539 0x1cd0  ============================================================
09:50:48.0651 0x1dc4  ============================================================
09:50:48.0651 0x1dc4  Scan started
09:50:48.0651 0x1dc4  Mode: Manual; SigCheck; TDLFS; 
09:50:48.0651 0x1dc4  ============================================================
09:50:48.0651 0x1dc4  KSN ping started
09:50:51.0263 0x1dc4  KSN ping finished: true
09:50:51.0671 0x1dc4  ================ Scan system memory ========================
09:50:51.0671 0x1dc4  System memory - ok
09:50:51.0671 0x1dc4  ================ Scan services =============================
09:50:51.0781 0x1dc4  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
09:50:51.0838 0x1dc4  1394ohci - ok
09:50:51.0877 0x1dc4  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
09:50:51.0891 0x1dc4  ACPI - ok
09:50:51.0902 0x1dc4  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
09:50:51.0910 0x1dc4  AcpiPmi - ok
09:50:51.0996 0x1dc4  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
09:50:52.0009 0x1dc4  AdobeARMservice - ok
09:50:52.0043 0x1dc4  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
09:50:52.0067 0x1dc4  adp94xx - ok
09:50:52.0107 0x1dc4  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
09:50:52.0127 0x1dc4  adpahci - ok
09:50:52.0158 0x1dc4  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
09:50:52.0174 0x1dc4  adpu320 - ok
09:50:52.0189 0x1dc4  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
09:50:52.0209 0x1dc4  AeLookupSvc - ok
09:50:52.0261 0x1dc4  [ D1E343BC00136CE03C4D403194D06A80, 94F2543164A2CEA179EDE53E1294EE24391A59CAEFF83BA5CE9385E8E686E89C ] AERTFilters     C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
09:50:52.0273 0x1dc4  AERTFilters - ok
09:50:52.0324 0x1dc4  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
09:50:52.0346 0x1dc4  AFD - ok
09:50:52.0368 0x1dc4  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
09:50:52.0375 0x1dc4  agp440 - ok
09:50:52.0392 0x1dc4  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
09:50:52.0400 0x1dc4  ALG - ok
09:50:52.0420 0x1dc4  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
09:50:52.0425 0x1dc4  aliide - ok
09:50:52.0449 0x1dc4  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
09:50:52.0454 0x1dc4  amdide - ok
09:50:52.0474 0x1dc4  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
09:50:52.0490 0x1dc4  AmdK8 - ok
09:50:52.0503 0x1dc4  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
09:50:52.0514 0x1dc4  AmdPPM - ok
09:50:52.0528 0x1dc4  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
09:50:52.0539 0x1dc4  amdsata - ok
09:50:52.0554 0x1dc4  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
09:50:52.0566 0x1dc4  amdsbs - ok
09:50:52.0577 0x1dc4  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
09:50:52.0582 0x1dc4  amdxata - ok
09:50:52.0644 0x1dc4  [ 25E9C505A8DB1B5EFE631E43718FDB22, F7CDAD0B712FC929BFDE644FBFB77CB203C3FAC88237B04E99149C09A7DB344A ] Amsp            C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
09:50:52.0668 0x1dc4  Amsp - ok
09:50:52.0690 0x1dc4  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
09:50:52.0727 0x1dc4  AppID - ok
09:50:52.0742 0x1dc4  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
09:50:52.0762 0x1dc4  AppIDSvc - ok
09:50:52.0803 0x1dc4  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
09:50:52.0819 0x1dc4  Appinfo - ok
09:50:52.0868 0x1dc4  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
09:50:52.0895 0x1dc4  AppMgmt - ok
09:50:52.0909 0x1dc4  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
09:50:52.0922 0x1dc4  arc - ok
09:50:52.0958 0x1dc4  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
09:50:52.0970 0x1dc4  arcsas - ok
09:50:53.0040 0x1dc4  [ 9217D874131AE6FF8F642F124F00A555, BE2923D5AA7748FDAAED73AF567D015517B36F1C739C6E5637DD15112EFDF495 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
09:50:53.0052 0x1dc4  aspnet_state - ok
09:50:53.0070 0x1dc4  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
09:50:53.0098 0x1dc4  AsyncMac - ok
09:50:53.0145 0x1dc4  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
09:50:53.0154 0x1dc4  atapi - ok
09:50:53.0185 0x1dc4  [ D0B119D6F52BDCA8D204F79D27690209, C36F600A8525A61A7C948B7A93CFD501F1F222A3929446DA58D4D35619E44EB0 ] AthBTPort       C:\Windows\system32\DRIVERS\btath_flt.sys
09:50:53.0200 0x1dc4  AthBTPort - ok
09:50:53.0252 0x1dc4  [ D24159FA178DCCE3B41226640D5E9C8D, 20F14DEABCEF7218928BD4FEC3F51FB0859313753E8E82E77660BF144B99F6F0 ] AtherosSvc      C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe
09:50:53.0263 0x1dc4  AtherosSvc - detected UnsignedFile.Multi.Generic ( 1 )
09:50:53.0611 0x1dc4  Detect skipped due to KSN trusted
09:50:53.0611 0x1dc4  AtherosSvc - ok
09:50:53.0698 0x1dc4  [ 3D68A1EEF77307142636AF5127990BCB, 30926B2E1371287FF39C69C363BE4FAC67C558867D903C555A12316D303A43E8 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
09:50:53.0775 0x1dc4  athr - ok
09:50:53.0815 0x1dc4  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
09:50:53.0855 0x1dc4  AudioEndpointBuilder - ok
09:50:53.0867 0x1dc4  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
09:50:53.0894 0x1dc4  AudioSrv - ok
09:50:53.0930 0x1dc4  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
09:50:53.0953 0x1dc4  AxInstSV - ok
09:50:53.0984 0x1dc4  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
09:50:54.0018 0x1dc4  b06bdrv - ok
09:50:54.0033 0x1dc4  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
09:50:54.0044 0x1dc4  b57nd60a - ok
09:50:54.0052 0x1dc4  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
09:50:54.0068 0x1dc4  BDESVC - ok
09:50:54.0072 0x1dc4  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
09:50:54.0091 0x1dc4  Beep - ok
09:50:54.0124 0x1dc4  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
09:50:54.0144 0x1dc4  BFE - ok
09:50:54.0189 0x1dc4  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
09:50:54.0224 0x1dc4  BITS - ok
09:50:54.0259 0x1dc4  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
09:50:54.0275 0x1dc4  blbdrive - ok
09:50:54.0305 0x1dc4  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
09:50:54.0316 0x1dc4  bowser - ok
09:50:54.0328 0x1dc4  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
09:50:54.0345 0x1dc4  BrFiltLo - ok
09:50:54.0356 0x1dc4  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
09:50:54.0364 0x1dc4  BrFiltUp - ok
09:50:54.0399 0x1dc4  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
09:50:54.0425 0x1dc4  Browser - ok
09:50:54.0441 0x1dc4  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
09:50:54.0461 0x1dc4  Brserid - ok
09:50:54.0471 0x1dc4  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
09:50:54.0480 0x1dc4  BrSerWdm - ok
09:50:54.0482 0x1dc4  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
09:50:54.0490 0x1dc4  BrUsbMdm - ok
09:50:54.0492 0x1dc4  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
09:50:54.0498 0x1dc4  BrUsbSer - ok
09:50:54.0525 0x1dc4  [ 50D912C86B924C397DEAE7C813E25B78, 1313BDF18CCCFFEAED78FB70EC5F26E99AA80C0CA4D458E98A32DB0498C14F3F ] BTATH_A2DP      C:\Windows\system32\drivers\btath_a2dp.sys
09:50:54.0558 0x1dc4  BTATH_A2DP - ok
09:50:54.0573 0x1dc4  [ 486362291E8C2AABC3698FCB0052D042, 3A0920F6B0BD3DA6B15F8D8614A9B9C3FF7D2ADC6EBF860E1543A3ED1DB8A534 ] btath_avdt      C:\Windows\system32\drivers\btath_avdt.sys
09:50:54.0582 0x1dc4  btath_avdt - ok
09:50:54.0616 0x1dc4  [ E6B734A37ADE36FE1A77035F4E484C8C, 7F3AB1E0CF9F348633B3B325F5F365CCD4C7FF7E4564BDE02C2DA27A499D0234 ] BTATH_BUS       C:\Windows\system32\DRIVERS\btath_bus.sys
09:50:54.0633 0x1dc4  BTATH_BUS - ok
09:50:54.0649 0x1dc4  [ FB3833E63FF602B69C2FF085846DCF43, 468BC9580341AD4C65F0BBB3A11F3E39C1DD0F9694D098AB3647A181C03E4E11 ] BTATH_HCRP      C:\Windows\system32\DRIVERS\btath_hcrp.sys
09:50:54.0678 0x1dc4  BTATH_HCRP - ok
09:50:54.0683 0x1dc4  [ 371A11C1333BA526263A987A93ACDE3D, 80E15B815F2B6F4AFBDDB115C4F54126F5D2796F6ACB387DEA9C4A1C061EB7EB ] BTATH_LWFLT     C:\Windows\system32\DRIVERS\btath_lwflt.sys
09:50:54.0699 0x1dc4  BTATH_LWFLT - ok
09:50:54.0714 0x1dc4  [ ABCD3C16CA850A7594CEB9AD5D966810, DB0EAF000BB6F12F2AA550B66F5C61E08F2C6E58A18DA40BE69DD2B662D1EC60 ] BTATH_RCP       C:\Windows\system32\DRIVERS\btath_rcp.sys
09:50:54.0733 0x1dc4  BTATH_RCP - ok
09:50:54.0780 0x1dc4  [ E2BC720E66DA3E51E41D47C12FE353F1, 7E58E94B9E7C9DEB0652F82737C5A93DC71D44600AE6ED45BC0B1E64CA75266E ] BtFilter        C:\Windows\system32\DRIVERS\btfilter.sys
09:50:54.0813 0x1dc4  BtFilter - ok
09:50:54.0846 0x1dc4  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
09:50:54.0867 0x1dc4  BthEnum - ok
09:50:54.0891 0x1dc4  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
09:50:54.0910 0x1dc4  BTHMODEM - ok
09:50:54.0938 0x1dc4  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
09:50:54.0949 0x1dc4  BthPan - ok
09:50:54.0969 0x1dc4  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
09:50:54.0987 0x1dc4  BTHPORT - ok
09:50:55.0015 0x1dc4  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
09:50:55.0035 0x1dc4  bthserv - ok
09:50:55.0046 0x1dc4  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
09:50:55.0054 0x1dc4  BTHUSB - ok
09:50:55.0075 0x1dc4  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
09:50:55.0115 0x1dc4  cdfs - ok
09:50:55.0137 0x1dc4  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
09:50:55.0146 0x1dc4  cdrom - ok
09:50:55.0163 0x1dc4  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
09:50:55.0264 0x1dc4  CertPropSvc - ok
09:50:55.0280 0x1dc4  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
09:50:55.0289 0x1dc4  circlass - ok
09:50:55.0307 0x1dc4  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
09:50:55.0319 0x1dc4  CLFS - ok
09:50:55.0371 0x1dc4  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:50:55.0376 0x1dc4  clr_optimization_v2.0.50727_32 - ok
09:50:55.0407 0x1dc4  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
09:50:55.0425 0x1dc4  clr_optimization_v2.0.50727_64 - ok
09:50:55.0463 0x1dc4  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:50:55.0478 0x1dc4  clr_optimization_v4.0.30319_32 - ok
09:50:55.0489 0x1dc4  [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
09:50:55.0495 0x1dc4  clr_optimization_v4.0.30319_64 - ok
09:50:55.0527 0x1dc4  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
09:50:55.0541 0x1dc4  CmBatt - ok
09:50:55.0551 0x1dc4  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
09:50:55.0562 0x1dc4  cmdide - ok
09:50:55.0618 0x1dc4  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
09:50:55.0643 0x1dc4  CNG - ok
09:50:55.0652 0x1dc4  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
09:50:55.0657 0x1dc4  Compbatt - ok
09:50:55.0677 0x1dc4  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
09:50:55.0695 0x1dc4  CompositeBus - ok
09:50:55.0705 0x1dc4  COMSysApp - ok
09:50:55.0708 0x1dc4  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
09:50:55.0713 0x1dc4  crcdisk - ok
09:50:55.0750 0x1dc4  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
09:50:55.0774 0x1dc4  CryptSvc - ok
09:50:55.0806 0x1dc4  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
09:50:55.0827 0x1dc4  CSC - ok
09:50:55.0854 0x1dc4  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
09:50:55.0871 0x1dc4  CscService - ok
09:50:55.0921 0x1dc4  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
09:50:55.0955 0x1dc4  DcomLaunch - ok
09:50:55.0981 0x1dc4  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
09:50:56.0005 0x1dc4  defragsvc - ok
09:50:56.0046 0x1dc4  [ A97BD43C2628D7274C88A3B4CE785EFB, F85B074A291BC3D63DFD81EC39FBDB1EECDF86A33A1AB7580624EEAF6337DE63 ] DellDigitalDelivery c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
09:50:56.0056 0x1dc4  DellDigitalDelivery - detected UnsignedFile.Multi.Generic ( 1 )
09:50:56.0404 0x1dc4  Detect skipped due to KSN trusted
09:50:56.0404 0x1dc4  DellDigitalDelivery - ok
09:50:56.0424 0x1dc4  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
09:50:56.0456 0x1dc4  DfsC - ok
09:50:56.0471 0x1dc4  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
09:50:56.0492 0x1dc4  Dhcp - ok
09:50:56.0511 0x1dc4  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
09:50:56.0544 0x1dc4  discache - ok
09:50:56.0564 0x1dc4  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
09:50:56.0571 0x1dc4  Disk - ok
09:50:56.0587 0x1dc4  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
09:50:56.0597 0x1dc4  dmvsc - ok
09:50:56.0614 0x1dc4  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
09:50:56.0637 0x1dc4  Dnscache - ok
09:50:56.0664 0x1dc4  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
09:50:56.0699 0x1dc4  dot3svc - ok
09:50:56.0712 0x1dc4  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
09:50:56.0731 0x1dc4  DPS - ok
09:50:56.0756 0x1dc4  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
09:50:56.0764 0x1dc4  drmkaud - ok
09:50:56.0823 0x1dc4  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
09:50:56.0850 0x1dc4  DXGKrnl - ok
09:50:56.0884 0x1dc4  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
09:50:56.0904 0x1dc4  EapHost - ok
09:50:57.0007 0x1dc4  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
09:50:57.0094 0x1dc4  ebdrv - ok
09:50:57.0126 0x1dc4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\Windows\System32\lsass.exe
09:50:57.0139 0x1dc4  EFS - ok
09:50:57.0186 0x1dc4  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
09:50:57.0216 0x1dc4  ehRecvr - ok
09:50:57.0223 0x1dc4  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
09:50:57.0232 0x1dc4  ehSched - ok
09:50:57.0277 0x1dc4  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
09:50:57.0295 0x1dc4  elxstor - ok
09:50:57.0305 0x1dc4  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
09:50:57.0312 0x1dc4  ErrDev - ok
09:50:57.0356 0x1dc4  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
09:50:57.0391 0x1dc4  EventSystem - ok
09:50:57.0407 0x1dc4  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
09:50:57.0429 0x1dc4  exfat - ok
09:50:57.0437 0x1dc4  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
09:50:57.0459 0x1dc4  fastfat - ok
09:50:57.0481 0x1dc4  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
09:50:57.0508 0x1dc4  Fax - ok
09:50:57.0519 0x1dc4  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
09:50:57.0526 0x1dc4  fdc - ok
09:50:57.0535 0x1dc4  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
09:50:57.0555 0x1dc4  fdPHost - ok
09:50:57.0560 0x1dc4  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
09:50:57.0580 0x1dc4  FDResPub - ok
09:50:57.0613 0x1dc4  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
09:50:57.0624 0x1dc4  FileInfo - ok
09:50:57.0638 0x1dc4  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
09:50:57.0661 0x1dc4  Filetrace - ok
09:50:57.0670 0x1dc4  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
09:50:57.0677 0x1dc4  flpydisk - ok
09:50:57.0687 0x1dc4  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
09:50:57.0697 0x1dc4  FltMgr - ok
09:50:57.0766 0x1dc4  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
09:50:57.0798 0x1dc4  FontCache - ok
09:50:57.0842 0x1dc4  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:50:57.0852 0x1dc4  FontCache3.0.0.0 - ok
09:50:57.0875 0x1dc4  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
09:50:57.0888 0x1dc4  FsDepends - ok
09:50:57.0914 0x1dc4  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
09:50:57.0927 0x1dc4  Fs_Rec - ok
09:50:57.0969 0x1dc4  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
09:50:57.0991 0x1dc4  fvevol - ok
09:50:58.0006 0x1dc4  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
09:50:58.0011 0x1dc4  gagp30kx - ok
09:50:58.0060 0x1dc4  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
09:50:58.0094 0x1dc4  gpsvc - ok
09:50:58.0154 0x1dc4  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
09:50:58.0168 0x1dc4  gupdate - ok
09:50:58.0174 0x1dc4  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
09:50:58.0186 0x1dc4  gupdatem - ok
09:50:58.0209 0x1dc4  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
09:50:58.0217 0x1dc4  hcw85cir - ok
09:50:58.0241 0x1dc4  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
09:50:58.0261 0x1dc4  HDAudBus - ok
09:50:58.0269 0x1dc4  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
09:50:58.0279 0x1dc4  HidBatt - ok
09:50:58.0294 0x1dc4  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
09:50:58.0304 0x1dc4  HidBth - ok
09:50:58.0322 0x1dc4  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
09:50:58.0331 0x1dc4  HidIr - ok
09:50:58.0355 0x1dc4  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
09:50:58.0374 0x1dc4  hidserv - ok
09:50:58.0412 0x1dc4  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
09:50:58.0433 0x1dc4  HidUsb - ok
09:50:58.0444 0x1dc4  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
09:50:58.0470 0x1dc4  hkmsvc - ok
09:50:58.0482 0x1dc4  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
09:50:58.0495 0x1dc4  HomeGroupListener - ok
09:50:58.0540 0x1dc4  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
09:50:58.0570 0x1dc4  HomeGroupProvider - ok
09:50:58.0600 0x1dc4  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
09:50:58.0609 0x1dc4  HpSAMD - ok
09:50:58.0648 0x1dc4  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
09:50:58.0688 0x1dc4  HTTP - ok
09:50:58.0698 0x1dc4  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
09:50:58.0703 0x1dc4  hwpolicy - ok
09:50:58.0724 0x1dc4  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
09:50:58.0732 0x1dc4  i8042prt - ok
09:50:58.0772 0x1dc4  [ D1753C06EE17E29352B065EACF3F10D0, 4DD4C991FAA3CCF99DF8DC9F8F5DEEDEECD55977F0C3AA8C404DEFD21E32A62B ] iaStor          C:\Windows\system32\drivers\iaStor.sys
09:50:58.0792 0x1dc4  iaStor - ok
09:50:58.0854 0x1dc4  [ 545462D0DBE24AF379BA869B7C185CCD, 056F9D0D5FD4FEF37665A35A4029722FF60D02A69854E952DC361CC0E5CD26F9 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
09:50:58.0863 0x1dc4  IAStorDataMgrSvc - ok
09:50:58.0892 0x1dc4  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
09:50:58.0911 0x1dc4  iaStorV - ok
09:50:58.0956 0x1dc4  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
09:50:58.0978 0x1dc4  idsvc - ok
09:50:58.0999 0x1dc4  IEEtwCollectorService - ok
09:50:59.0005 0x1dc4  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
09:50:59.0011 0x1dc4  iirsp - ok
09:50:59.0059 0x1dc4  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
09:50:59.0090 0x1dc4  IKEEXT - ok
09:50:59.0199 0x1dc4  [ 40FB2F6CEB3FC935EC18D656D2758CD4, B21CA15932BA5858EC0578F01B2625B40878D9C2B06B5E20A6D84FCFCCD66C91 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
09:50:59.0320 0x1dc4  IntcAzAudAddService - ok
09:50:59.0347 0x1dc4  [ 6C9FFFECA9FED31347D211C5D1FFBD2D, 36CF8B847FAED0D978B3169ED550CC958025902CAC1D7D304E2684B2483E72B8 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
09:50:59.0366 0x1dc4  IntcDAud - ok
09:50:59.0432 0x1dc4  [ 7C76466F4E0F76CE259C6005D161E9E8, 19F3CCC3A86B68DB70B7608F9ED33746518F5B2450E5BAF9581127CE7A9AA5D2 ] Intel® Capability Licensing Service Interface c:\Program Files\Intel\iCLS Client\HeciServer.exe
09:50:59.0453 0x1dc4  Intel® Capability Licensing Service Interface - ok
09:50:59.0490 0x1dc4  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
09:50:59.0501 0x1dc4  intelide - ok
09:50:59.0535 0x1dc4  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
09:50:59.0551 0x1dc4  intelppm - ok
09:50:59.0578 0x1dc4  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
09:50:59.0598 0x1dc4  IPBusEnum - ok
09:50:59.0607 0x1dc4  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:50:59.0627 0x1dc4  IpFilterDriver - ok
09:50:59.0681 0x1dc4  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
09:50:59.0699 0x1dc4  iphlpsvc - ok
09:50:59.0713 0x1dc4  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
09:50:59.0721 0x1dc4  IPMIDRV - ok
09:50:59.0733 0x1dc4  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
09:50:59.0754 0x1dc4  IPNAT - ok
09:50:59.0765 0x1dc4  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
09:50:59.0774 0x1dc4  IRENUM - ok
09:50:59.0788 0x1dc4  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
09:50:59.0793 0x1dc4  isapnp - ok
09:50:59.0805 0x1dc4  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
09:50:59.0815 0x1dc4  iScsiPrt - ok
09:50:59.0846 0x1dc4  [ 6BCEF45131C8B8E1C558BE540B190B3C, DFFED7FD9DCC15808184E65065DE6138FE010AC01217E5016B2D20A5B89AC570 ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
09:50:59.0851 0x1dc4  iusb3hcs - ok
09:50:59.0880 0x1dc4  [ F080EADA8715F811B58BD35BB774F2F9, 06D5A70CBA89561A71B9CB64D7A298767F098395411A7022F414C7D0AC89A44D ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
09:50:59.0898 0x1dc4  iusb3hub - ok
09:50:59.0916 0x1dc4  [ 0F1756D9396740F053221FA6260FCE66, 0B722BF6BCF66BBD49DE0E92555742976AB33319CF504461A50181BF7A77E886 ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
09:50:59.0933 0x1dc4  iusb3xhc - ok
09:50:59.0939 0x1dc4  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
09:50:59.0945 0x1dc4  kbdclass - ok
09:50:59.0963 0x1dc4  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
09:50:59.0971 0x1dc4  kbdhid - ok
09:50:59.0982 0x1dc4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\Windows\system32\lsass.exe
09:50:59.0989 0x1dc4  KeyIso - ok
09:51:00.0015 0x1dc4  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
09:51:00.0029 0x1dc4  KSecDD - ok
09:51:00.0043 0x1dc4  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
09:51:00.0052 0x1dc4  KSecPkg - ok
09:51:00.0057 0x1dc4  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
09:51:00.0075 0x1dc4  ksthunk - ok
09:51:00.0112 0x1dc4  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
09:51:00.0149 0x1dc4  KtmRm - ok
09:51:00.0191 0x1dc4  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
09:51:00.0230 0x1dc4  LanmanServer - ok
09:51:00.0239 0x1dc4  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
09:51:00.0260 0x1dc4  LanmanWorkstation - ok
09:51:00.0285 0x1dc4  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
09:51:00.0321 0x1dc4  lltdio - ok
09:51:00.0342 0x1dc4  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
09:51:00.0367 0x1dc4  lltdsvc - ok
09:51:00.0385 0x1dc4  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
09:51:00.0404 0x1dc4  lmhosts - ok
09:51:00.0450 0x1dc4  [ 5C08357C65F658E29B5DDC2EF18D575C, 80802787D7CD07BFB4F2EEE463837FB0CBB3626A2D5451B32794DB66A3CC3D98 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
09:51:00.0470 0x1dc4  LMS - ok
09:51:00.0505 0x1dc4  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
09:51:00.0520 0x1dc4  LSI_FC - ok
09:51:00.0542 0x1dc4  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
09:51:00.0549 0x1dc4  LSI_SAS - ok
09:51:00.0558 0x1dc4  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
09:51:00.0572 0x1dc4  LSI_SAS2 - ok
09:51:00.0586 0x1dc4  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
09:51:00.0593 0x1dc4  LSI_SCSI - ok
09:51:00.0604 0x1dc4  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
09:51:00.0625 0x1dc4  luafv - ok
09:51:00.0657 0x1dc4  [ F92B0E478C0FAA6D6661E6E977247E60, 8B26B57C2C60C98CD6273ACA126B2CD0356ADB13A59FEC12882357A6B973123C ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
09:51:00.0662 0x1dc4  MBAMProtector - ok
09:51:00.0747 0x1dc4  [ D84AEA3F3329D622DFC1297DDDF6163B, 316FE56CC30ED1473A917253F46B79EAA12F4ABD5B4B1ADB03929DFEE940F577 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
09:51:00.0797 0x1dc4  MBAMScheduler - ok
09:51:00.0826 0x1dc4  [ 4F45ED469906494F9BF754E476390DBD, D8FF6AFD73D8C191F5732DF9737E6F83B2B52B06A3A6CD4CC6EAC9464CBB2772 ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
09:51:00.0844 0x1dc4  MBAMService - ok
09:51:00.0884 0x1dc4  [ 8A50D5304E6AE48664CF5838EC32F647, C76943FABEE1B5E1B641AA610668CCD4227E2C4B191DD30B79D3AB31A9E8B5BE ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
09:51:00.0896 0x1dc4  MBAMSwissArmy - ok
09:51:00.0913 0x1dc4  [ 15E8ABC06843672955CE26A009533BAD, E7221B7DE9DB45447C68E79C6BFD064713C5974F7E79925BD7DEEF71F73F3E83 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
09:51:00.0920 0x1dc4  MBAMWebAccessControl - ok
09:51:00.0942 0x1dc4  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
09:51:00.0950 0x1dc4  Mcx2Svc - ok
09:51:00.0973 0x1dc4  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
09:51:00.0982 0x1dc4  megasas - ok
09:51:01.0013 0x1dc4  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
09:51:01.0033 0x1dc4  MegaSR - ok
09:51:01.0059 0x1dc4  [ 6B01B7414A105B9E51652089A03027CF, 9B113DC22F7D0D0B376E577C6D7083F9EDC09BBFE47726393E16D4FDAAAE21FE ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
09:51:01.0065 0x1dc4  MEIx64 - ok
09:51:01.0090 0x1dc4  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
09:51:01.0122 0x1dc4  MMCSS - ok
09:51:01.0128 0x1dc4  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
09:51:01.0147 0x1dc4  Modem - ok
09:51:01.0163 0x1dc4  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
09:51:01.0171 0x1dc4  monitor - ok
09:51:01.0191 0x1dc4  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
09:51:01.0197 0x1dc4  mouclass - ok
09:51:01.0211 0x1dc4  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
09:51:01.0218 0x1dc4  mouhid - ok
09:51:01.0241 0x1dc4  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
09:51:01.0248 0x1dc4  mountmgr - ok
09:51:01.0257 0x1dc4  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
09:51:01.0265 0x1dc4  mpio - ok
09:51:01.0276 0x1dc4  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
09:51:01.0297 0x1dc4  mpsdrv - ok
09:51:01.0327 0x1dc4  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
09:51:01.0359 0x1dc4  MpsSvc - ok
09:51:01.0385 0x1dc4  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
09:51:01.0403 0x1dc4  MRxDAV - ok
09:51:01.0432 0x1dc4  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
09:51:01.0457 0x1dc4  mrxsmb - ok
09:51:01.0474 0x1dc4  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:51:01.0486 0x1dc4  mrxsmb10 - ok
09:51:01.0494 0x1dc4  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:51:01.0503 0x1dc4  mrxsmb20 - ok
09:51:01.0529 0x1dc4  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
09:51:01.0535 0x1dc4  msahci - ok
09:51:01.0560 0x1dc4  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
09:51:01.0576 0x1dc4  msdsm - ok
09:51:01.0596 0x1dc4  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
09:51:01.0606 0x1dc4  MSDTC - ok
09:51:01.0629 0x1dc4  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
09:51:01.0648 0x1dc4  Msfs - ok
09:51:01.0659 0x1dc4  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
09:51:01.0679 0x1dc4  mshidkmdf - ok
09:51:01.0695 0x1dc4  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
09:51:01.0701 0x1dc4  msisadrv - ok
09:51:01.0710 0x1dc4  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
09:51:01.0732 0x1dc4  MSiSCSI - ok
09:51:01.0734 0x1dc4  msiserver - ok
09:51:01.0751 0x1dc4  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
09:51:01.0770 0x1dc4  MSKSSRV - ok
09:51:01.0775 0x1dc4  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
09:51:01.0793 0x1dc4  MSPCLOCK - ok
09:51:01.0800 0x1dc4  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
09:51:01.0819 0x1dc4  MSPQM - ok
09:51:01.0835 0x1dc4  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
09:51:01.0846 0x1dc4  MsRPC - ok
09:51:01.0858 0x1dc4  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
09:51:01.0863 0x1dc4  mssmbios - ok
09:51:01.0865 0x1dc4  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
09:51:01.0883 0x1dc4  MSTEE - ok
09:51:01.0891 0x1dc4  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
09:51:01.0897 0x1dc4  MTConfig - ok
09:51:01.0906 0x1dc4  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
09:51:01.0912 0x1dc4  Mup - ok
09:51:01.0949 0x1dc4  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
09:51:01.0984 0x1dc4  napagent - ok
09:51:02.0005 0x1dc4  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
09:51:02.0019 0x1dc4  NativeWifiP - ok
09:51:02.0033 0x1dc4  [ 62D48CCC1C765ED587F17A67DED6B5DC, 7C333142420685EA091EBA557240FAC379245556D92EC907E1984DF22D4BD136 ] NCFilter        C:\Windows\system32\DRIVERS\NCFilter.sys
09:51:02.0040 0x1dc4  NCFilter - ok
09:51:02.0065 0x1dc4  [ 308E481D3DC7BCD6B74FBE4F0D7D3A52, 56AB74BF59D2286DDB3D9BB9C8119CC7A009901CEDFBA0C22934421FC4BF958E ] NCFSD           C:\Program Files\Novell\Client\XTier\Drivers\ncfsd.sys
09:51:02.0077 0x1dc4  NCFSD - ok
09:51:02.0083 0x1dc4  [ 9604C4E217DF00ADDC10BC43EBCAB850, EF5208D433B9099E5BEA93094E21A9C6265FEFE3AF4CD4C5D63553FC14013BFA ] NCIOCTL         C:\Program Files\Novell\Client\XTier\Drivers\ncioctl.sys
09:51:02.0090 0x1dc4  NCIOCTL - ok
09:51:02.0097 0x1dc4  [ B059AE16FFA91A49168553509EAC32DA, 7ACE099BEB334FA7B808A426EFA401B666ECEFF261E75DB728C1608A1A94552A ] NCRecognizer    C:\Windows\system32\DRIVERS\NCRecognizer.sys
09:51:02.0104 0x1dc4  NCRecognizer - ok
09:51:02.0116 0x1dc4  [ 05CFBDA67E6402C7AFD33B3907B9F878, F3C0D48C3734DDB1BA78A4BAF8386FB2636DAA45F241F1D1616044CA2B10AAF0 ] NCUncFilter     C:\Windows\system32\DRIVERS\NCUncFilter.sys
09:51:02.0120 0x1dc4  NCUncFilter - ok
09:51:02.0179 0x1dc4  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
09:51:02.0197 0x1dc4  NDIS - ok
09:51:02.0212 0x1dc4  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
09:51:02.0231 0x1dc4  NdisCap - ok
09:51:02.0251 0x1dc4  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
09:51:02.0270 0x1dc4  NdisTapi - ok
09:51:02.0283 0x1dc4  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
09:51:02.0302 0x1dc4  Ndisuio - ok
09:51:02.0315 0x1dc4  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
09:51:02.0336 0x1dc4  NdisWan - ok
09:51:02.0346 0x1dc4  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
09:51:02.0365 0x1dc4  NDProxy - ok
09:51:02.0373 0x1dc4  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
09:51:02.0393 0x1dc4  NetBIOS - ok
09:51:02.0402 0x1dc4  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
09:51:02.0424 0x1dc4  NetBT - ok
09:51:02.0430 0x1dc4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\Windows\system32\lsass.exe
09:51:02.0437 0x1dc4  Netlogon - ok
09:51:02.0464 0x1dc4  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
09:51:02.0489 0x1dc4  Netman - ok
09:51:02.0522 0x1dc4  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:51:02.0542 0x1dc4  NetMsmqActivator - ok
09:51:02.0548 0x1dc4  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:51:02.0561 0x1dc4  NetPipeActivator - ok
09:51:02.0581 0x1dc4  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
09:51:02.0609 0x1dc4  netprofm - ok
09:51:02.0613 0x1dc4  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:51:02.0618 0x1dc4  NetTcpActivator - ok
09:51:02.0621 0x1dc4  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:51:02.0627 0x1dc4  NetTcpPortSharing - ok
09:51:02.0667 0x1dc4  [ 73CE12B8BDD747B0063CB0A7EF44CEA7, F570BB52BE460DBA6203698CC96FFD9674E1903D0E0F5C49375BE3F8D8E89582 ] netvsc          C:\Windows\system32\DRIVERS\netvsc60.sys
09:51:02.0686 0x1dc4  netvsc - ok
09:51:02.0714 0x1dc4  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
09:51:02.0724 0x1dc4  nfrd960 - ok
09:51:02.0744 0x1dc4  [ E1EDBFC64616636C515D570365E48BD3, 95C4B8AB28F2194D9511CEA362F9A1D22A77445F56013E6667333E7255E80BD2 ] NICM            C:\Program Files\Novell\Client\XTier\Drivers\nicm.sys
09:51:02.0753 0x1dc4  NICM - ok
09:51:02.0771 0x1dc4  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
09:51:02.0786 0x1dc4  NlaSvc - ok
09:51:02.0883 0x1dc4  [ B9B72FAAAA41D59B73B88FE3DD737ED1, 050E741FB5313523340B19C9C168611222C4AE9A6084FE3E2F908A49EA909A29 ] NOBU            C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
09:51:02.0954 0x1dc4  NOBU - ok
09:51:02.0967 0x1dc4  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
09:51:02.0987 0x1dc4  Npfs - ok
09:51:03.0004 0x1dc4  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
09:51:03.0024 0x1dc4  nsi - ok
09:51:03.0032 0x1dc4  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
09:51:03.0051 0x1dc4  nsiproxy - ok
09:51:03.0114 0x1dc4  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
09:51:03.0160 0x1dc4  Ntfs - ok
09:51:03.0168 0x1dc4  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
09:51:03.0186 0x1dc4  Null - ok
09:51:03.0215 0x1dc4  [ A4247F976E40B5C23273631153D97D58, B12A899C624D05701A68EE89458E0C953AA8488C3C0533C7702BB3DE8C383519 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
09:51:03.0223 0x1dc4  NVHDA - ok
09:51:03.0505 0x1dc4  [ 6DEEDC8E5E80EE2DD25F6082A3F53365, 262DEF4B34FCFF9F5FB4D01349D53D2A2FDA341F399AF477B2E76A138EAE928C ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
09:51:03.0810 0x1dc4  nvlddmkm - ok
09:51:03.0829 0x1dc4  [ 85CF189D64D2C334969684DD78FD5A53, 254F2053A3A0E950CAE031ECE31C0B6474B5FD3843A5BC1C80F70F6DC4B14281 ] nvpciflt        C:\Windows\system32\DRIVERS\nvpciflt.sys
09:51:03.0834 0x1dc4  nvpciflt - ok
09:51:03.0857 0x1dc4  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
09:51:03.0872 0x1dc4  nvraid - ok
09:51:03.0895 0x1dc4  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
09:51:03.0903 0x1dc4  nvstor - ok
09:51:03.0936 0x1dc4  [ 6E41E4F9E9FCEFDB7EC0202AC08DFAF1, FE01AE6987DC826B77DEEDBC3B73F26F61B966330FB159E54960189DBFBF3F3F ] NvStUSB         C:\Windows\system32\drivers\nvstusb.sys
09:51:03.0950 0x1dc4  NvStUSB - ok
09:51:03.0979 0x1dc4  [ EA6172BA53AF4FBB34ABFCD87CFC06C0, 95B48E75F0F5455AC4B64E001BBB88D852E5CAA5FA48B49BF9CBF3EC17978FA5 ] nvsvc           C:\Windows\system32\nvvsvc.exe
09:51:03.0996 0x1dc4  nvsvc - ok
09:51:04.0078 0x1dc4  [ EF5AB63F855A5EB65C25E8BA4C3F6E02, 0B10895741626674EF5D4E3E8F4EFC2148E9FA42CC0595EF763AA19665E35A92 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
09:51:04.0139 0x1dc4  nvUpdatusService - ok
09:51:04.0155 0x1dc4  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
09:51:04.0163 0x1dc4  nv_agp - ok
09:51:04.0180 0x1dc4  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
09:51:04.0188 0x1dc4  ohci1394 - ok
09:51:04.0217 0x1dc4  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:51:04.0231 0x1dc4  ose - ok
09:51:04.0368 0x1dc4  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
09:51:04.0512 0x1dc4  osppsvc - ok
09:51:04.0547 0x1dc4  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
09:51:04.0581 0x1dc4  p2pimsvc - ok
09:51:04.0595 0x1dc4  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
09:51:04.0611 0x1dc4  p2psvc - ok
09:51:04.0627 0x1dc4  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
09:51:04.0635 0x1dc4  Parport - ok
09:51:04.0657 0x1dc4  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
09:51:04.0664 0x1dc4  partmgr - ok
09:51:04.0677 0x1dc4  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
09:51:04.0700 0x1dc4  PcaSvc - ok
09:51:04.0717 0x1dc4  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
09:51:04.0725 0x1dc4  pci - ok
09:51:04.0759 0x1dc4  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
09:51:04.0771 0x1dc4  pciide - ok
09:51:04.0786 0x1dc4  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
09:51:04.0794 0x1dc4  pcmcia - ok
09:51:04.0804 0x1dc4  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
09:51:04.0811 0x1dc4  pcw - ok
09:51:04.0828 0x1dc4  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
09:51:04.0858 0x1dc4  PEAUTH - ok
09:51:04.0896 0x1dc4  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
09:51:04.0954 0x1dc4  PeerDistSvc - ok
09:51:05.0006 0x1dc4  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
09:51:05.0022 0x1dc4  PerfHost - ok
09:51:05.0089 0x1dc4  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
09:51:05.0148 0x1dc4  pla - ok
09:51:05.0192 0x1dc4  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
09:51:05.0218 0x1dc4  PlugPlay - ok
09:51:05.0226 0x1dc4  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
09:51:05.0234 0x1dc4  PNRPAutoReg - ok
09:51:05.0246 0x1dc4  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
09:51:05.0257 0x1dc4  PNRPsvc - ok
09:51:05.0300 0x1dc4  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
09:51:05.0340 0x1dc4  PolicyAgent - ok
09:51:05.0360 0x1dc4  [ A2CCA4FB273E6050F17A0A416CFF2FCD, C42BA18DF0C8E3F7358669A784E51E4DC7A4112096345EA699EDC95F561E0255 ] Power           C:\Windows\system32\umpo.dll
09:51:05.0376 0x1dc4  Power - ok
09:51:05.0405 0x1dc4  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
09:51:05.0425 0x1dc4  PptpMiniport - ok
09:51:05.0435 0x1dc4  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
09:51:05.0444 0x1dc4  Processor - ok
09:51:05.0464 0x1dc4  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
09:51:05.0487 0x1dc4  ProfSvc - ok
09:51:05.0494 0x1dc4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
09:51:05.0508 0x1dc4  ProtectedStorage - ok
09:51:05.0535 0x1dc4  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
09:51:05.0572 0x1dc4  Psched - ok
09:51:05.0631 0x1dc4  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
09:51:05.0676 0x1dc4  ql2300 - ok
09:51:05.0686 0x1dc4  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
09:51:05.0693 0x1dc4  ql40xx - ok
09:51:05.0714 0x1dc4  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
09:51:05.0729 0x1dc4  QWAVE - ok
09:51:05.0736 0x1dc4  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
09:51:05.0746 0x1dc4  QWAVEdrv - ok
09:51:05.0755 0x1dc4  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
09:51:05.0774 0x1dc4  RasAcd - ok
09:51:05.0808 0x1dc4  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
09:51:05.0843 0x1dc4  RasAgileVpn - ok
09:51:05.0850 0x1dc4  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
09:51:05.0871 0x1dc4  RasAuto - ok
09:51:05.0879 0x1dc4  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
09:51:05.0900 0x1dc4  Rasl2tp - ok
09:51:05.0917 0x1dc4  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
09:51:05.0941 0x1dc4  RasMan - ok
09:51:05.0951 0x1dc4  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
09:51:05.0971 0x1dc4  RasPppoe - ok
09:51:05.0983 0x1dc4  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
09:51:06.0003 0x1dc4  RasSstp - ok
09:51:06.0014 0x1dc4  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
09:51:06.0037 0x1dc4  rdbss - ok
09:51:06.0043 0x1dc4  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
09:51:06.0051 0x1dc4  rdpbus - ok
09:51:06.0068 0x1dc4  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
09:51:06.0085 0x1dc4  RDPCDD - ok
09:51:06.0104 0x1dc4  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
09:51:06.0113 0x1dc4  RDPDR - ok
09:51:06.0125 0x1dc4  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
09:51:06.0143 0x1dc4  RDPENCDD - ok
09:51:06.0159 0x1dc4  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
09:51:06.0177 0x1dc4  RDPREFMP - ok
09:51:06.0194 0x1dc4  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
09:51:06.0206 0x1dc4  RDPWD - ok
09:51:06.0227 0x1dc4  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
09:51:06.0236 0x1dc4  rdyboost - ok
09:51:06.0258 0x1dc4  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
09:51:06.0279 0x1dc4  RemoteAccess - ok
09:51:06.0326 0x1dc4  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
09:51:06.0359 0x1dc4  RemoteRegistry - ok
09:51:06.0382 0x1dc4  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
09:51:06.0393 0x1dc4  RFCOMM - ok
09:51:06.0403 0x1dc4  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
09:51:06.0423 0x1dc4  RpcEptMapper - ok
09:51:06.0434 0x1dc4  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
09:51:06.0442 0x1dc4  RpcLocator - ok
09:51:06.0463 0x1dc4  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
09:51:06.0488 0x1dc4  RpcSs - ok
09:51:06.0517 0x1dc4  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
09:51:06.0538 0x1dc4  rspndr - ok
09:51:06.0580 0x1dc4  [ 6CF9DB101A75360E98659F823852E540, A7D48DF41A831EEF9978B51786EF80DB9CC40602BE66D46CA11BE1548BC2D10C ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
09:51:06.0594 0x1dc4  RTL8167 - ok
09:51:06.0617 0x1dc4  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
09:51:06.0623 0x1dc4  s3cap - ok
09:51:06.0635 0x1dc4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\Windows\system32\lsass.exe
09:51:06.0641 0x1dc4  SamSs - ok
09:51:06.0649 0x1dc4  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
09:51:06.0656 0x1dc4  sbp2port - ok
09:51:06.0689 0x1dc4  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
09:51:06.0720 0x1dc4  SCardSvr - ok
09:51:06.0741 0x1dc4  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
09:51:06.0760 0x1dc4  scfilter - ok
09:51:06.0786 0x1dc4  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
09:51:06.0821 0x1dc4  Schedule - ok
09:51:06.0835 0x1dc4  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
09:51:06.0853 0x1dc4  SCPolicySvc - ok
09:51:06.0862 0x1dc4  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
09:51:06.0882 0x1dc4  SDRSVC - ok
09:51:06.0897 0x1dc4  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
09:51:06.0916 0x1dc4  secdrv - ok
09:51:06.0926 0x1dc4  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
09:51:06.0946 0x1dc4  seclogon - ok
09:51:06.0954 0x1dc4  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
09:51:06.0975 0x1dc4  SENS - ok
09:51:06.0980 0x1dc4  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
09:51:06.0991 0x1dc4  SensrSvc - ok
09:51:07.0020 0x1dc4  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
09:51:07.0035 0x1dc4  Serenum - ok
09:51:07.0050 0x1dc4  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
09:51:07.0067 0x1dc4  Serial - ok
09:51:07.0092 0x1dc4  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
09:51:07.0104 0x1dc4  sermouse - ok
09:51:07.0126 0x1dc4  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
09:51:07.0147 0x1dc4  SessionEnv - ok
09:51:07.0158 0x1dc4  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
09:51:07.0167 0x1dc4  sffdisk - ok
09:51:07.0169 0x1dc4  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
09:51:07.0176 0x1dc4  sffp_mmc - ok
09:51:07.0179 0x1dc4  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
09:51:07.0187 0x1dc4  sffp_sd - ok
09:51:07.0198 0x1dc4  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
09:51:07.0205 0x1dc4  sfloppy - ok
09:51:07.0279 0x1dc4  [ 4215C271D6E6898C3F4DABAB4F387DC9, 10D845466AC239E18A381FA3BCF1DA1CDCF7CC4363D3A6B4695D6562B3EF7541 ] SftService      C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
09:51:07.0325 0x1dc4  SftService - ok
09:51:07.0350 0x1dc4  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
09:51:07.0375 0x1dc4  SharedAccess - ok
09:51:07.0401 0x1dc4  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
09:51:07.0426 0x1dc4  ShellHWDetection - ok
09:51:07.0445 0x1dc4  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
09:51:07.0451 0x1dc4  SiSRaid2 - ok
09:51:07.0459 0x1dc4  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
09:51:07.0473 0x1dc4  SiSRaid4 - ok
09:51:07.0495 0x1dc4  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
09:51:07.0515 0x1dc4  Smb - ok
09:51:07.0530 0x1dc4  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
09:51:07.0539 0x1dc4  SNMPTRAP - ok
09:51:07.0545 0x1dc4  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
09:51:07.0551 0x1dc4  spldr - ok
09:51:07.0598 0x1dc4  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
09:51:07.0629 0x1dc4  Spooler - ok
09:51:07.0719 0x1dc4  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
09:51:07.0819 0x1dc4  sppsvc - ok
09:51:07.0829 0x1dc4  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
09:51:07.0849 0x1dc4  sppuinotify - ok
09:51:07.0877 0x1dc4  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
09:51:07.0895 0x1dc4  srv - ok
09:51:07.0914 0x1dc4  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
09:51:07.0928 0x1dc4  srv2 - ok
09:51:07.0937 0x1dc4  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
09:51:07.0947 0x1dc4  srvnet - ok
09:51:07.0960 0x1dc4  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
09:51:07.0983 0x1dc4  SSDPSRV - ok
09:51:07.0990 0x1dc4  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
09:51:08.0010 0x1dc4  SstpSvc - ok
09:51:08.0057 0x1dc4  [ 8BDF333F141C75740F4B0EAC151EB535, 460A52860FA27584EC80793A82924B2001986B2FEA5355F39F15BFE4A80B8F86 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
09:51:08.0080 0x1dc4  Stereo Service - ok
09:51:08.0101 0x1dc4  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
09:51:08.0107 0x1dc4  stexstor - ok
09:51:08.0148 0x1dc4  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
09:51:08.0176 0x1dc4  stisvc - ok
09:51:08.0191 0x1dc4  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
09:51:08.0203 0x1dc4  StorSvc - ok
09:51:08.0214 0x1dc4  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
09:51:08.0226 0x1dc4  storvsc - ok
09:51:08.0238 0x1dc4  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
09:51:08.0250 0x1dc4  swenum - ok
09:51:08.0271 0x1dc4  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
09:51:08.0298 0x1dc4  swprv - ok
09:51:08.0304 0x1dc4  [ 4CDD7DF58730D23BA9CB5829A6E2ECEA, 89A2A1604C2BF985894000F51D9D376B32F1327197866850B5BF8640272DE828 ] SynthVid        C:\Windows\system32\DRIVERS\VMBusVideoM.sys
09:51:08.0310 0x1dc4  SynthVid - ok
09:51:08.0349 0x1dc4  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
09:51:08.0413 0x1dc4  SysMain - ok
09:51:08.0428 0x1dc4  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
09:51:08.0440 0x1dc4  TabletInputService - ok
09:51:08.0455 0x1dc4  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
09:51:08.0480 0x1dc4  TapiSrv - ok
09:51:08.0492 0x1dc4  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
09:51:08.0512 0x1dc4  TBS - ok
09:51:08.0588 0x1dc4  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
09:51:08.0633 0x1dc4  Tcpip - ok
09:51:08.0682 0x1dc4  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
09:51:08.0711 0x1dc4  TCPIP6 - ok
09:51:08.0746 0x1dc4  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
09:51:08.0761 0x1dc4  tcpipreg - ok
09:51:08.0783 0x1dc4  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
09:51:08.0800 0x1dc4  TDPIPE - ok
09:51:08.0829 0x1dc4  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
09:51:08.0841 0x1dc4  TDTCP - ok
09:51:08.0868 0x1dc4  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
09:51:08.0904 0x1dc4  tdx - ok
09:51:08.0917 0x1dc4  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
09:51:08.0923 0x1dc4  TermDD - ok
09:51:08.0953 0x1dc4  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
09:51:08.0982 0x1dc4  TermService - ok
09:51:08.0996 0x1dc4  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
09:51:09.0007 0x1dc4  Themes - ok
09:51:09.0032 0x1dc4  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
09:51:09.0051 0x1dc4  THREADORDER - ok
09:51:09.0089 0x1dc4  [ BA4030F56AACECD0E6D413565B4AED75, A9B0A672F9EAF5D23A200CE1D5249A30DBF8C9529BA82139D2B52B0C83521F30 ] tmactmon        C:\Windows\system32\DRIVERS\tmactmon.sys
09:51:09.0102 0x1dc4  tmactmon - ok
09:51:09.0130 0x1dc4  [ ED866799CA62626341632DA9EDECFD04, 079FCEA16F887943F873955805BAB078CE014D13839BAD4B732D8D7F9F7AF828 ] tmcomm          C:\Windows\system32\DRIVERS\tmcomm.sys
09:51:09.0143 0x1dc4  tmcomm - ok
09:51:09.0152 0x1dc4  [ 84FB4B5C8DCD78163C440431FEF3E096, 9D564EC35426E05A4159988C2688CB52221617B36491BB3152AC334336A45AA2 ] tmevtmgr        C:\Windows\system32\DRIVERS\tmevtmgr.sys
09:51:09.0162 0x1dc4  tmevtmgr - ok
09:51:09.0229 0x1dc4  [ 14AAD1604C9386899485758C05A1757E, D69437D6CB6985F85826D1536E9F70C07C786CBEBCA62A94DCF1F0CDAC1FF990 ] TmListen        C:\Program Files\Trend Micro\Security Agent\tmlisten.exe
09:51:09.0249 0x1dc4  TmListen - ok
09:51:09.0275 0x1dc4  [ 77B9BEBB0769F45EF770297196EF3506, 29B6DC561B5E1DE9072300A6B94A0B78336161F043DB53DC87C4B0AAA555EF7B ] tmtdi           C:\Windows\system32\DRIVERS\tmtdi.sys
09:51:09.0282 0x1dc4  tmtdi - ok
09:51:09.0316 0x1dc4  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
09:51:09.0354 0x1dc4  TrkWks - ok
09:51:09.0393 0x1dc4  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
09:51:09.0421 0x1dc4  TrustedInstaller - ok
09:51:09.0451 0x1dc4  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
09:51:09.0474 0x1dc4  tssecsrv - ok
09:51:09.0500 0x1dc4  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
09:51:09.0524 0x1dc4  TsUsbFlt - ok
09:51:09.0537 0x1dc4  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
09:51:09.0544 0x1dc4  TsUsbGD - ok
09:51:09.0576 0x1dc4  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
09:51:09.0613 0x1dc4  tunnel - ok
09:51:09.0622 0x1dc4  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
09:51:09.0629 0x1dc4  uagp35 - ok
09:51:09.0641 0x1dc4  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
09:51:09.0665 0x1dc4  udfs - ok
09:51:09.0685 0x1dc4  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
09:51:09.0693 0x1dc4  UI0Detect - ok
09:51:09.0711 0x1dc4  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
09:51:09.0725 0x1dc4  uliagpkx - ok
09:51:09.0736 0x1dc4  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
09:51:09.0745 0x1dc4  umbus - ok
09:51:09.0756 0x1dc4  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
09:51:09.0763 0x1dc4  UmPass - ok
09:51:09.0784 0x1dc4  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
09:51:09.0795 0x1dc4  UmRdpService - ok
09:51:09.0847 0x1dc4  [ 0DFC9713D117B349E41A2A477448107A, 0C7B2162C2FA0BA46C2D3D9986CB542926C1802532E0785A49AC9B18284267AC ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
09:51:09.0862 0x1dc4  UNS - ok
09:51:09.0888 0x1dc4  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
09:51:09.0928 0x1dc4  upnphost - ok
09:51:09.0946 0x1dc4  [ 19AD7990C0B67E48DAC5B26F99628223, 2225A887A4723D2FF306ED9FF1249DA7177699EBE84A89FF040A35D3DB6382E4 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
09:51:09.0963 0x1dc4  usbccgp - ok
09:51:09.0997 0x1dc4  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
09:51:10.0017 0x1dc4  usbcir - ok
09:51:10.0035 0x1dc4  [ C025055FE7B87701EB042095DF1A2D7B, D7B34B6C2C5BD3C8141895AC21BB637EA5E3C4F7A85EEF4C4C36E6BB2045A3D9 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
09:51:10.0049 0x1dc4  usbehci - ok
09:51:10.0093 0x1dc4  [ 8B892002D7B79312821169A14317AB86, CE722F48254152961E69FF83FBC25ED0E3AC73ECBA1625CA3E81E7B52817389B ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
09:51:10.0118 0x1dc4  usbhub - ok
09:51:10.0127 0x1dc4  [ 9840FC418B4CBD632D3D0A667A725C31, 776D86A032DCA2842EF7AADB35473193CA80547223EFAA7F110F296C377077B0 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
09:51:10.0134 0x1dc4  usbohci - ok
09:51:10.0157 0x1dc4  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
09:51:10.0175 0x1dc4  usbprint - ok
09:51:10.0197 0x1dc4  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\drivers\usbscan.sys
09:51:10.0212 0x1dc4  usbscan - ok
09:51:10.0239 0x1dc4  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:51:10.0259 0x1dc4  USBSTOR - ok
09:51:10.0271 0x1dc4  [ 62069A34518BCF9C1FD9E74B3F6DB7CD, C58E21424718729324B285BEE1C96551540FCC3FD650B2D10895EBA48D981E25 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
09:51:10.0281 0x1dc4  usbuhci - ok
09:51:10.0294 0x1dc4  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
09:51:10.0314 0x1dc4  UxSms - ok
09:51:10.0340 0x1dc4  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\Windows\system32\lsass.exe
09:51:10.0354 0x1dc4  VaultSvc - ok
09:51:10.0374 0x1dc4  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
09:51:10.0381 0x1dc4  vdrvroot - ok
09:51:10.0409 0x1dc4  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
09:51:10.0446 0x1dc4  vds - ok
09:51:10.0467 0x1dc4  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
09:51:10.0475 0x1dc4  vga - ok
09:51:10.0481 0x1dc4  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
09:51:10.0500 0x1dc4  VgaSave - ok
09:51:10.0514 0x1dc4  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
09:51:10.0523 0x1dc4  vhdmp - ok
09:51:10.0544 0x1dc4  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
09:51:10.0550 0x1dc4  viaide - ok
09:51:10.0565 0x1dc4  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
09:51:10.0572 0x1dc4  VMBusHID - ok
09:51:10.0578 0x1dc4  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
09:51:10.0585 0x1dc4  volmgr - ok
09:51:10.0598 0x1dc4  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
09:51:10.0609 0x1dc4  volmgrx - ok
09:51:10.0623 0x1dc4  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
09:51:10.0633 0x1dc4  volsnap - ok
09:51:10.0659 0x1dc4  [ B4A73CA4EF9A02B9738CEA9AD5FE5917, B6A8086189FE2F1C3FE5B3F484FBA3DB2E5E1836F3154D30090F136C27D16166 ] vpcbus          C:\Windows\system32\DRIVERS\vpchbus.sys
09:51:10.0669 0x1dc4  vpcbus - ok
09:51:10.0699 0x1dc4  [ E675FB2B48C54F09895482E2253B289C, 68BBFBF2356C849722E429CA753CC309A3CCE8CF00EBDBBD2695ECD292324DF2 ] vpcnfltr        C:\Windows\system32\DRIVERS\vpcnfltr.sys
09:51:10.0715 0x1dc4  vpcnfltr - ok
09:51:10.0742 0x1dc4  [ 5FB42082B0D19A0268705F1DD343DF20, 62F8EEE6A507CE6A8BD638020118D71B78332F79BA82654AB702AE46B04767D9 ] vpcusb          C:\Windows\system32\DRIVERS\vpcusb.sys
09:51:10.0751 0x1dc4  vpcusb - ok
09:51:10.0782 0x1dc4  [ 30D4243726A15A14F5C5E45898D14394, 0EED69CACCDEC1260C79B187370E420C12654F0F5F777A1FF27F5C5FF3BAE2E1 ] vpcvmm          C:\Windows\system32\drivers\vpcvmm.sys
09:51:10.0800 0x1dc4  vpcvmm - ok
09:51:10.0825 0x1dc4  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
09:51:10.0838 0x1dc4  vsmraid - ok
09:51:10.0877 0x1dc4  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
09:51:10.0920 0x1dc4  VSS - ok
09:51:10.0937 0x1dc4  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
09:51:10.0945 0x1dc4  vwifibus - ok
09:51:10.0952 0x1dc4  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
09:51:10.0962 0x1dc4  vwififlt - ok
09:51:10.0979 0x1dc4  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
09:51:11.0005 0x1dc4  W32Time - ok
09:51:11.0018 0x1dc4  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
09:51:11.0026 0x1dc4  WacomPen - ok
09:51:11.0050 0x1dc4  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
09:51:11.0087 0x1dc4  WANARP - ok
09:51:11.0090 0x1dc4  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
09:51:11.0108 0x1dc4  Wanarpv6 - ok
09:51:11.0194 0x1dc4  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
09:51:11.0230 0x1dc4  WatAdminSvc - ok
09:51:11.0292 0x1dc4  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
09:51:11.0349 0x1dc4  wbengine - ok
09:51:11.0364 0x1dc4  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
09:51:11.0377 0x1dc4  WbioSrvc - ok
09:51:11.0396 0x1dc4  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
09:51:11.0413 0x1dc4  wcncsvc - ok
09:51:11.0418 0x1dc4  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
09:51:11.0435 0x1dc4  WcsPlugInService - ok
09:51:11.0459 0x1dc4  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
09:51:11.0471 0x1dc4  Wd - ok
09:51:11.0523 0x1dc4  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
09:51:11.0547 0x1dc4  Wdf01000 - ok
09:51:11.0569 0x1dc4  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
09:51:11.0595 0x1dc4  WdiServiceHost - ok
09:51:11.0598 0x1dc4  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
09:51:11.0608 0x1dc4  WdiSystemHost - ok
09:51:11.0636 0x1dc4  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
09:51:11.0648 0x1dc4  WebClient - ok
09:51:11.0661 0x1dc4  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
09:51:11.0684 0x1dc4  Wecsvc - ok
09:51:11.0690 0x1dc4  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
09:51:11.0711 0x1dc4  wercplsupport - ok
09:51:11.0728 0x1dc4  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
09:51:11.0749 0x1dc4  WerSvc - ok
09:51:11.0779 0x1dc4  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
09:51:11.0812 0x1dc4  WfpLwf - ok
09:51:11.0842 0x1dc4  [ B14EF15BD757FA488F9C970EEE9C0D35, F27DF2D47E7076786AE7C396583D7A1C56B93E766711066C900964FC7313E794 ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
09:51:11.0858 0x1dc4  WimFltr - ok
09:51:11.0867 0x1dc4  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
09:51:11.0873 0x1dc4  WIMMount - ok
09:51:11.0883 0x1dc4  WinDefend - ok
09:51:11.0895 0x1dc4  WinHttpAutoProxySvc - ok
09:51:11.0939 0x1dc4  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
09:51:11.0971 0x1dc4  Winmgmt - ok
09:51:12.0020 0x1dc4  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
09:51:12.0088 0x1dc4  WinRM - ok
09:51:12.0137 0x1dc4  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
09:51:12.0160 0x1dc4  Wlansvc - ok
09:51:12.0184 0x1dc4  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
09:51:12.0189 0x1dc4  wlcrasvc - ok
09:51:12.0266 0x1dc4  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
09:51:12.0316 0x1dc4  wlidsvc - ok
09:51:12.0340 0x1dc4  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
09:51:12.0349 0x1dc4  WmiAcpi - ok
09:51:12.0370 0x1dc4  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
09:51:12.0384 0x1dc4  wmiApSrv - ok
09:51:12.0394 0x1dc4  WMPNetworkSvc - ok
09:51:12.0434 0x1dc4  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
09:51:12.0457 0x1dc4  WPCSvc - ok
09:51:12.0467 0x1dc4  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
09:51:12.0477 0x1dc4  WPDBusEnum - ok
09:51:12.0498 0x1dc4  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
09:51:12.0517 0x1dc4  ws2ifsl - ok
09:51:12.0530 0x1dc4  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
09:51:12.0542 0x1dc4  wscsvc - ok
09:51:12.0543 0x1dc4  WSearch - ok
09:51:12.0631 0x1dc4  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
09:51:12.0686 0x1dc4  wuauserv - ok
09:51:12.0722 0x1dc4  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
09:51:12.0738 0x1dc4  WudfPf - ok
09:51:12.0760 0x1dc4  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
09:51:12.0780 0x1dc4  WUDFRd - ok
09:51:12.0803 0x1dc4  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
09:51:12.0822 0x1dc4  wudfsvc - ok
09:51:12.0863 0x1dc4  [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc         C:\Windows\System32\wwansvc.dll
09:51:12.0889 0x1dc4  WwanSvc - ok
09:51:12.0899 0x1dc4  XTSvcMgr - ok
09:51:12.0942 0x1dc4  [ D83C2FF7EA53E66B8EA7901D710494EA, 5B2D3866C8D00FBDB3D9C5A03FA2C711633DF3C1D3FCB864E9A53C851E17FD18 ] ZAtheros Bt&Wlan Coex Agent C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\Ath_CoexAgent.exe
09:51:12.0955 0x1dc4  ZAtheros Bt&Wlan Coex Agent - detected UnsignedFile.Multi.Generic ( 1 )
09:51:13.0301 0x1dc4  Detect skipped due to KSN trusted
09:51:13.0301 0x1dc4  ZAtheros Bt&Wlan Coex Agent - ok
09:51:13.0319 0x1dc4  [ A3E1CEB2AFA02268DDD6522BA24B8F0E, F74DD54A6C9D80D4F91F1BFCD320DF30DEA7D47CD13E559250CE768186A63FA1 ] ZAtheros Wlan Agent C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe
09:51:13.0329 0x1dc4  ZAtheros Wlan Agent - detected UnsignedFile.Multi.Generic ( 1 )
09:51:13.0676 0x1dc4  Detect skipped due to KSN trusted
09:51:13.0676 0x1dc4  ZAtheros Wlan Agent - ok
09:51:13.0688 0x1dc4  ================ Scan global ===============================
09:51:13.0709 0x1dc4  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
09:51:13.0744 0x1dc4  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
09:51:13.0757 0x1dc4  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
09:51:13.0777 0x1dc4  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
09:51:13.0803 0x1dc4  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
09:51:13.0813 0x1dc4  [ Global ] - ok
09:51:13.0814 0x1dc4  ================ Scan MBR ==================================
09:51:13.0822 0x1dc4  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
09:51:14.0076 0x1dc4  \Device\Harddisk0\DR0 - ok
09:51:14.0077 0x1dc4  ================ Scan VBR ==================================
09:51:14.0079 0x1dc4  [ A600B056185821F2BACAB5C0F235837E ] \Device\Harddisk0\DR0\Partition1
09:51:14.0081 0x1dc4  \Device\Harddisk0\DR0\Partition1 - detected Rootkit.Boot.Cidox.b ( 0 )
09:51:14.0081 0x1dc4  \Device\Harddisk0\DR0\Partition1 ( Rootkit.Boot.Cidox.b ) - infected
09:51:16.0966 0x1dc4  [ 8F7AA5FEC9E80D0F30F65C9042AADBA0 ] \Device\Harddisk0\DR0\Partition2
09:51:16.0968 0x1dc4  \Device\Harddisk0\DR0\Partition2 - ok
09:51:16.0968 0x1dc4  ================ Scan generic autorun ======================
09:51:17.0163 0x1dc4  [ 9D42569C2CF76166C4B7B8C5F16F08D3, 55B175520DED28055AEF3A6A294A7B64A6EBCDDE0B672EE1242ABDB321D44688 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
09:51:17.0311 0x1dc4  RTHDVCPL - ok
09:51:17.0341 0x1dc4  [ 350AE710634AF327DDC90B897BBBA23A, E4F0C0D50894A9CA63311AC48EA22F7B9BCA35AE3AC71AD6259C0FAC6FA134B9 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
09:51:17.0373 0x1dc4  RtHDVBg - ok
09:51:17.0409 0x1dc4  [ 9E34930AFF0A57ECB5018B6520644FF2, 6298807670FA7AFF1AD6720B29FFF2852AA04ACD7B924040CA646575DEFADBC8 ] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\BtvStack.exe
09:51:17.0438 0x1dc4  AtherosBtStack - detected UnsignedFile.Multi.Generic ( 1 )
09:51:17.0785 0x1dc4  Detect skipped due to KSN trusted
09:51:17.0785 0x1dc4  AtherosBtStack - ok
09:51:17.0821 0x1dc4  [ A18018B01D3C1B00D0464DBEF66C61C3, D12902023D24A9BF331C76CCE77D7A37EFA3AE43FA5F1900F4E8EBC5565D6AA1 ] C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AthBtTray.exe
09:51:17.0856 0x1dc4  AthBtTray - detected UnsignedFile.Multi.Generic ( 1 )
09:51:18.0204 0x1dc4  Detect skipped due to KSN trusted
09:51:18.0204 0x1dc4  AthBtTray - ok
09:51:18.0222 0x1dc4  [ E79C75043EED808058ADFF660F81B64D, 940D05CF929225B2903AE826C234F9A4D7B64AD12A2B61BA9F2FA1E51E4E0E25 ] C:\Windows\system32\NWTRAY.EXE
09:51:18.0234 0x1dc4  NWTRAY - ok
09:51:18.0236 0x1dc4  OfficeScanNT Monitor - ok
09:51:18.0279 0x1dc4  [ 3F69F51DB6C621B4D56B6D48B4D1BB54, AA58316ECB48E16B2615FC1A0B81581CAD3607EC4949D049DB98343516A10D29 ] C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe
09:51:18.0295 0x1dc4  Trend Micro Client Framework - ok
09:51:18.0326 0x1dc4  [ 5514B64F7F2D25E09E2FDAF5D62B688C, 43263715ADC49250762A01E41DB2832C6A8B63CE4F66CDD8FC0B51DCA031DF27 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe
09:51:18.0338 0x1dc4  IAStorIcon - ok
09:51:18.0386 0x1dc4  [ 2A510D5500FD4C50A9E38DF85478F862, 88F3B45169CE181F6F5BF923ACDB27D19D5FE8553DEE8E9DD0090E69D721BC5D ] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
09:51:18.0404 0x1dc4  USB3MON - ok
09:51:18.0495 0x1dc4  [ 3B78ACCCAA5132638E7CF419F4A965C7, C91DD62901778FEB6BDBABD6F736D59FD85361AE53867AD232C90D22ECB7B49F ] C:\Program Files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE
09:51:18.0523 0x1dc4  CanonSolutionMenuEx - ok
09:51:18.0576 0x1dc4  [ 47811D50390A86A17102D7496E6EABB9, 9DA5A899B9D55E1D43718EC0AD6368F9E9EF0242A4E88CD5DDB2CC6D7BFA5FB3 ] C:\Users\Lindag\Downloads\HijackThis.exe
09:51:18.0602 0x1dc4  HijackThis startup scan - detected UnsignedFile.Multi.Generic ( 1 )
09:51:18.0950 0x1dc4  Detect skipped due to KSN trusted
09:51:18.0950 0x1dc4  HijackThis startup scan - ok
09:51:18.0951 0x1dc4  Waiting for KSN requests completion. In queue: 7
09:51:19.0987 0x1dc4  AV detected via SS2: Trend Micro Security Agent, C:\Program Files\Trend Micro\Security Agent\WscHandler.exe ( 1.0.0.1638 ), 0x41000 ( enabled : updated )
09:51:19.0993 0x1dc4  Win FW state via NFP2: enabled
09:51:20.0451 0x1dc4  ============================================================
09:51:20.0451 0x1dc4  Scan finished
09:51:20.0451 0x1dc4  ============================================================
09:51:20.0458 0x1dbc  Detected object count: 1
09:51:20.0458 0x1dbc  Actual detected object count: 1
09:51:38.0847 0x1dbc  \Device\Harddisk0\DR0\Partition1 ( Rootkit.Boot.Cidox.b ) - skipped by user
09:51:38.0847 0x1dbc  \Device\Harddisk0\DR0\Partition1 ( Rootkit.Boot.Cidox.b ) - User select action: Skip 
 
I've attached the logs generated by FRST (I ran this yesterday)
 
Attached File  Addition.txt   39.15KB   1 downloads
 
Attached File  FRST.txt   59.06KB   4 downloads
 
What do you suggest as my next move?
 


#4 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:54 PM

Posted 11 July 2014 - 04:21 AM

Hi,

there is Rovnix/Cidox sitting in the volume boot record as I suspected from your description. Let's get rid of it:


Start TDSSKiller.exe again with administrator privileges.
  • Set the parameters like in the first scan and click on Start scan.
  • This time select for the threat Rootkit.Boot.Cidox.b (and only for that) the option Cure (or Delete).
  • Click on Continue and allow the reboot.
  • Copy and paste the log file (C:\TDSSKiller.<version_date_time>_log.txt) of this run in your next reply.


#5 aharonov

aharonov

  • Malware Response Team
  • 2,441 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:54 PM

Posted 03 September 2014 - 06:55 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users