Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Post Virus Removal Pop-Up


  • This topic is locked This topic is locked
17 replies to this topic

#1 Micah Davis

Micah Davis

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:04:59 PM

Posted 24 April 2015 - 08:54 AM

I am getting a pop up when rebooting a system for a client, the pop-up (wish I could snag a screenshot right now) is a blank error box with an OK button. A virus was recently removed from the system and I ran OTL on the system and the logs are attached. Thanks in advance and happy friday!

 

Micah

Attached Files



BC AdBot (Login to Remove)

 


#2 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:11:59 PM

Posted 24 April 2015 - 11:23 AM

Hi & :welcome: to Bleeping Computer Forums!
My name is Jürgen and I will be assisting you with your Malware related problems. :warrior:

Before we move on, please read the following points carefully: :exclame:
  • My native language isn't English. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.
  • Please read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If I don't hear from you within 5 days from this initial or any subsequent post, then this thread will be closed.
  • If I don't reply within 24 hours please PM me!
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
Step 1

Please run a FRST scan. This will help us diagnose your problem.

frst.pngfrstscan.png
Please download Farbar Recovery Scan Tool and save it to your Desktop.
(If you are not sure which version (32-/64-bit) applies to your system, download and try to start both of them as just the right one will run.)
  • Start FRST with administator privileges.
  • Make sure the option Addition.txt is checked and press the Scan button.
  • When finished, FRST will produce two logs (FRST.txt and Addition.txt) in the same directory the tool was run from.
  • Please copy and paste these logs in your next reply.

regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#3 Micah Davis

Micah Davis
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:04:59 PM

Posted 27 April 2015 - 03:37 PM

Let me try and I will get back to you.



#4 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:11:59 PM

Posted 27 April 2015 - 03:59 PM

OK... :)
regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#5 Micah Davis

Micah Davis
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:04:59 PM

Posted 27 April 2015 - 04:49 PM

Here you go! Thanks

Attached Files



#6 Micah Davis

Micah Davis
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:04:59 PM

Posted 27 April 2015 - 04:53 PM

Here is the error message.

Attached Files



#7 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:11:59 PM

Posted 28 April 2015 - 10:29 AM

Hi there,
thank you for the screenshot! :)

Step 1

Please download combofix.pngCombofix (by sUBs) and save it to your Desktop.
  • Disable the realtime-protection of your antivirus and anti-malware programs because they might interfere with the scan.
  • Start Combofix.exe and follow its instructions.
  • Do not use the computer while the scan is running. This may cause the program to stall.
  • When finished, a log file will be displayed (that can also be found at C:\Combofix.txt).
    Please copy and paste the contents of this file into your next post.
Note: If you receive an error "Illegal operation attempted on a registry key that has been marked for deletion." after the scan, just restart the computer.
(You can find more detailed instructions in this guide on using Combofix.)
regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#8 Micah Davis

Micah Davis
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:04:59 PM

Posted 28 April 2015 - 12:17 PM

Here it is!

 

ComboFix 15-04-28.01 - dshin 04/28/2015  11:54:41.1.4 - x64
Microsoft Windows 7 Professional   6.1.7601.1.1252.1.1033.18.3835.2064 [GMT -5:00]
Running from: c:\users\dshin\Downloads\ComboFix.exe
AV: Trend Micro Security Agent *Enabled/Updated* {F2F88E6A-3C7A-545F-268A-5D0BDD38EE06}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Resident AV is active
.
.
.
(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\programdata\Roaming
.
.
(((((((((((((((((((((((((   Files Created from 2015-03-28 to 2015-04-28  )))))))))))))))))))))))))))))))
.
.
2015-04-28 17:03 . 2015-04-28 17:03 -------- d-----w- c:\users\Medcolocal\AppData\Local\temp
2015-04-28 17:03 . 2015-04-28 17:03 -------- d-----w- c:\users\medcoadmin\AppData\Local\temp
2015-04-28 17:03 . 2015-04-28 17:03 -------- d-----w- c:\users\medcoadmin.HVS\AppData\Local\temp
2015-04-28 17:03 . 2015-04-28 17:03 -------- d-----w- c:\users\mdavis\AppData\Local\temp
2015-04-28 17:03 . 2015-04-28 17:03 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-04-28 17:03 . 2015-04-28 17:03 -------- d-----w- c:\users\David Shin\AppData\Local\temp
2015-04-28 17:03 . 2015-04-28 17:03 -------- d-----w- c:\users\cyoung\AppData\Local\temp
2015-04-28 17:03 . 2015-04-28 17:03 -------- d-----w- c:\users\Administrator\AppData\Local\temp
2015-04-27 20:52 . 2015-04-27 20:54 -------- d-----w- C:\FRST
2015-04-22 13:05 . 2015-04-22 13:05 -------- d-----w- c:\program files (x86)\ScreenConnect Client (0fb7c4e009ca42f5)
2015-04-22 13:05 . 2015-04-22 13:05 -------- d-----w- c:\programdata\ScreenConnect Client (0fb7c4e009ca42f5)
2015-04-14 14:41 . 2012-10-31 09:54 29512 ----a-w- c:\windows\system32\drivers\FscGabi.sys
2015-04-14 14:41 . 2012-10-31 09:54 25416 ----a-w- c:\windows\system32\drivers\FscEfDmi.sys
2015-04-14 14:41 . 2015-04-14 14:42 -------- d-----w- c:\program files (x86)\Common Files\Fujitsu
2015-04-14 14:28 . 2015-04-14 14:28 -------- d-----w- c:\users\dshin\AppData\Roaming\Fujitsu
2015-04-07 15:30 . 2015-04-07 15:30 -------- d-s---w- c:\windows\system32\GWX
2015-04-07 15:30 . 2015-04-07 15:30 -------- d-s---w- c:\windows\SysWow64\GWX
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-04-14 18:54 . 2012-05-08 13:01 778416 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2015-04-14 18:54 . 2012-03-21 17:18 142512 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-04-14 18:54 . 2014-07-08 17:54 17593008 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe
2015-04-14 14:49 . 2014-05-27 14:18 240176 ----a-w- c:\windows\RegBootClean64.exe
2015-03-25 14:55 . 2014-08-22 13:06 98216 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2015-03-24 16:58 . 2015-03-24 16:58 194048 ----a-w- c:\windows\SysWow64\elshyph.dll
2015-03-24 16:58 . 2015-03-24 16:58 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2015-03-24 16:58 . 2015-03-24 16:58 645120 ----a-w- c:\windows\SysWow64\jsIntl.dll
2015-03-24 16:58 . 2015-03-24 16:58 235008 ----a-w- c:\windows\system32\elshyph.dll
2015-03-24 16:58 . 2015-03-24 16:58 1888256 ----a-w- c:\windows\SysWow64\wininet.dll
2015-03-24 16:58 . 2015-03-24 16:58 182272 ----a-w- c:\windows\SysWow64\msls31.dll
2015-03-24 16:58 . 2015-03-24 16:58 62464 ----a-w- c:\windows\SysWow64\tdc.ocx
2015-03-24 16:58 . 2015-03-24 16:58 62464 ----a-w- c:\windows\SysWow64\iesetup.dll
2015-03-24 16:58 . 2015-03-24 16:58 60416 ----a-w- c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2015-03-24 16:58 . 2015-03-24 16:58 337408 ----a-w- c:\windows\SysWow64\html.iec
2015-03-24 16:58 . 2015-03-24 16:58 24576 ----a-w- c:\windows\SysWow64\licmgr10.dll
2015-03-24 16:58 . 2015-03-24 16:58 2052608 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2015-03-24 16:58 . 2015-03-24 16:58 64000 ----a-w- c:\windows\SysWow64\MshtmlDac.dll
2015-03-24 16:58 . 2015-03-24 16:58 503296 ----a-w- c:\windows\SysWow64\vbscript.dll
2015-03-24 16:58 . 2015-03-24 16:58 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb
2015-03-24 16:58 . 2015-03-24 16:58 151552 ----a-w- c:\windows\SysWow64\iexpress.exe
2015-03-24 16:58 . 2015-03-24 16:58 139264 ----a-w- c:\windows\SysWow64\wextract.exe
2015-03-24 16:58 . 2015-03-24 16:58 13312 ----a-w- c:\windows\SysWow64\mshta.exe
2015-03-24 16:58 . 2015-03-24 16:58 115712 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2015-03-24 16:58 . 2015-03-24 16:58 1155072 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2015-03-24 16:58 . 2015-03-24 16:58 86016 ----a-w- c:\windows\SysWow64\iesysprep.dll
2015-03-24 16:58 . 2015-03-24 16:58 74240 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2015-03-24 16:58 . 2015-03-24 16:58 620032 ----a-w- c:\windows\SysWow64\jscript9diag.dll
2015-03-24 16:58 . 2015-03-24 16:58 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2015-03-24 16:58 . 2015-03-24 16:58 47616 ----a-w- c:\windows\SysWow64\ieetwproxystub.dll
2015-03-24 16:58 . 2015-03-24 16:58 4300288 ----a-w- c:\windows\SysWow64\jscript9.dll
2015-03-24 16:58 . 2015-03-24 16:58 36352 ----a-w- c:\windows\SysWow64\imgutil.dll
2015-03-24 16:58 . 2015-03-24 16:58 111616 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2015-03-24 16:58 . 2015-03-24 16:58 942592 ----a-w- c:\windows\system32\jsIntl.dll
2015-03-24 16:58 . 2015-03-24 16:58 86016 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2015-03-24 16:58 . 2015-03-24 16:58 54784 ----a-w- c:\windows\system32\jsproxy.dll
2015-03-24 16:58 . 2015-03-24 16:58 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2015-03-24 16:58 . 2015-03-24 16:58 2886144 ----a-w- c:\windows\system32\iertutil.dll
2015-03-24 16:58 . 2015-03-24 16:58 247808 ----a-w- c:\windows\system32\msls31.dll
2015-03-24 16:58 . 2015-03-24 16:58 2358784 ----a-w- c:\windows\system32\wininet.dll
2015-03-24 16:58 . 2015-03-24 16:58 199680 ----a-w- c:\windows\system32\msrating.dll
2015-03-24 16:58 . 2015-03-24 16:58 1548288 ----a-w- c:\windows\system32\urlmon.dll
2015-03-24 16:58 . 2015-03-24 16:58 90112 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2015-03-24 16:58 . 2015-03-24 16:58 814080 ----a-w- c:\windows\system32\jscript9diag.dll
2015-03-24 16:58 . 2015-03-24 16:58 77824 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2015-03-24 16:58 . 2015-03-24 16:58 77312 ----a-w- c:\windows\system32\tdc.ocx
2015-03-24 16:58 . 2015-03-24 16:58 633856 ----a-w- c:\windows\system32\ieui.dll
2015-03-24 16:58 . 2015-03-24 16:58 6035456 ----a-w- c:\windows\system32\jscript9.dll
2015-03-24 16:58 . 2015-03-24 16:58 48640 ----a-w- c:\windows\system32\mshtmler.dll
2015-03-24 16:58 . 2015-03-24 16:58 413696 ----a-w- c:\windows\system32\html.iec
2015-03-24 16:58 . 2015-03-24 16:58 14398976 ----a-w- c:\windows\system32\ieframe.dll
2015-03-24 16:58 . 2015-03-24 16:58 13312 ----a-w- c:\windows\system32\msfeedssync.exe
2015-03-24 16:58 . 2015-03-24 16:58 131072 ----a-w- c:\windows\system32\IEAdvpack.dll
2015-03-24 16:58 . 2015-03-24 16:58 105984 ----a-w- c:\windows\system32\iesysprep.dll
2015-03-24 16:58 . 2015-03-24 16:58 92160 ----a-w- c:\windows\system32\mshtmled.dll
2015-03-24 16:58 . 2015-03-24 16:58 81408 ----a-w- c:\windows\system32\icardie.dll
2015-03-24 16:58 . 2015-03-24 16:58 800768 ----a-w- c:\windows\system32\ieapfltr.dll
2015-03-24 16:58 . 2015-03-24 16:58 718848 ----a-w- c:\windows\system32\ie4uinit.exe
2015-03-24 16:58 . 2015-03-24 16:58 66560 ----a-w- c:\windows\system32\iesetup.dll
2015-03-24 16:58 . 2015-03-24 16:58 616104 ----a-w- c:\windows\system32\ieapfltr.dat
2015-03-24 16:58 . 2015-03-24 16:58 490496 ----a-w- c:\windows\system32\dxtmsft.dll
2015-03-24 16:58 . 2015-03-24 16:58 389800 ----a-w- c:\windows\system32\iedkcs32.dll
2015-03-24 16:58 . 2015-03-24 16:58 34304 ----a-w- c:\windows\system32\iernonce.dll
2015-03-24 16:58 . 2015-03-24 16:58 316928 ----a-w- c:\windows\system32\dxtrans.dll
2015-03-24 16:58 . 2015-03-24 16:58 30208 ----a-w- c:\windows\system32\licmgr10.dll
2015-03-24 16:58 . 2015-03-24 16:58 243200 ----a-w- c:\windows\system32\webcheck.dll
2015-03-24 16:58 . 2015-03-24 16:58 235520 ----a-w- c:\windows\system32\url.dll
2015-03-24 16:58 . 2015-03-24 16:58 2125824 ----a-w- c:\windows\system32\inetcpl.cpl
2015-03-24 16:58 . 2015-03-24 16:58 143872 ----a-w- c:\windows\system32\wextract.exe
2015-03-24 16:58 . 2015-03-24 16:58 1359360 ----a-w- c:\windows\system32\mshtmlmedia.dll
2015-03-24 16:58 . 2015-03-24 16:58 101376 ----a-w- c:\windows\system32\inseng.dll
2015-03-24 16:58 . 2015-03-24 16:58 88064 ----a-w- c:\windows\system32\MshtmlDac.dll
2015-03-24 16:58 . 2015-03-24 16:58 801280 ----a-w- c:\windows\system32\msfeeds.dll
2015-03-24 16:58 . 2015-03-24 16:58 774144 ----a-w- c:\windows\system32\jscript.dll
2015-03-24 16:58 . 2015-03-24 16:58 62464 ----a-w- c:\windows\system32\pngfilt.dll
2015-03-24 16:58 . 2015-03-24 16:58 584192 ----a-w- c:\windows\system32\vbscript.dll
2015-03-24 16:58 . 2015-03-24 16:58 48640 ----a-w- c:\windows\system32\ieetwproxystub.dll
2015-03-24 16:58 . 2015-03-24 16:58 48128 ----a-w- c:\windows\system32\imgutil.dll
2015-03-24 16:58 . 2015-03-24 16:58 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2015-03-24 16:58 . 2015-03-24 16:58 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2015-03-24 16:58 . 2015-03-24 16:58 25021440 ----a-w- c:\windows\system32\mshtml.dll
2015-03-24 16:58 . 2015-03-24 16:58 167424 ----a-w- c:\windows\system32\iexpress.exe
2015-03-24 16:58 . 2015-03-24 16:58 147968 ----a-w- c:\windows\system32\occache.dll
2015-03-24 16:58 . 2015-03-24 16:58 144384 ----a-w- c:\windows\system32\ieUnatt.exe
2015-03-24 16:58 . 2015-03-24 16:58 13824 ----a-w- c:\windows\system32\mshta.exe
2015-03-24 16:58 . 2015-03-24 16:58 135680 ----a-w- c:\windows\system32\iepeers.dll
2015-03-24 16:58 . 2015-03-24 16:58 114688 ----a-w- c:\windows\system32\ieetwcollector.exe
2015-03-21 15:13 . 2012-03-21 17:54 122905848 ----a-w- c:\windows\system32\MRT.exe
2015-03-06 05:56 . 2015-03-21 15:01 95680 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2015-03-06 05:56 . 2015-03-21 15:01 155576 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2015-03-06 05:42 . 2015-03-21 15:01 210944 ----a-w- c:\windows\system32\wdigest.dll
2015-03-06 05:42 . 2015-03-21 15:01 86528 ----a-w- c:\windows\system32\TSpkg.dll
2015-03-06 05:42 . 2015-03-21 15:01 29184 ----a-w- c:\windows\system32\sspisrv.dll
2015-03-06 05:42 . 2015-03-21 15:01 136192 ----a-w- c:\windows\system32\sspicli.dll
2015-03-06 05:42 . 2015-03-21 15:01 341504 ----a-w- c:\windows\system32\schannel.dll
2015-03-06 05:42 . 2015-03-21 15:01 28160 ----a-w- c:\windows\system32\secur32.dll
2015-03-06 05:42 . 2015-03-21 15:01 314880 ----a-w- c:\windows\system32\msv1_0.dll
2015-03-06 05:42 . 2015-03-21 15:01 309760 ----a-w- c:\windows\system32\ncrypt.dll
2015-03-06 05:42 . 2015-03-21 15:01 728064 ----a-w- c:\windows\system32\kerberos.dll
2015-03-06 05:42 . 2015-03-21 15:01 1461760 ----a-w- c:\windows\system32\lsasrv.dll
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IndicatorUtility"="c:\program files (x86)\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe" [2010-09-30 48752]
"StartFujitsuPointingDeviceUtility"="c:\program files (x86)\Fujitsu\PointingDeviceUtility\FJPDAutoSet.exe" [2011-02-02 85104]
"snp2uvc"="c:\windows\vsnp2uvc.exe" [2009-08-13 662016]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]
"UpdatePDRShortCut"="c:\program files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"RemoteControl9"="c:\program files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe" [2009-07-06 87336]
"ConnectionCenter"="c:\program files (x86)\Citrix\ICA Client\concentr.exe" [2013-10-02 395656]
"OfficeScanNT Monitor"="c:\program files (x86)\Trend Micro\Security Agent\pccntmon.exe" [2014-09-17 1800544]
"Redirector"="c:\program files (x86)\Citrix\ICA Client\redirector.exe" [2013-10-02 153992]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-10-15 1133856]
Network Monitoring Tray.lnk - c:\windows\LTSvc\LTTray.exe [2014-8-26 1172272]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"SoftwareSASGeneration"= 3 (0x3)
.
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\system]
"SoftwareSASGeneration"= 3 (0x3)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"HideSCAHealth"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\policies\microsoft\windows\windowsupdate\au]
"NoAutoUpdate"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\progra~2\Citrix\ICACLI~1\RSHook.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\group policy\state\S-1-5-21-3734196519-505927577-2532691815-1111\Scripts\Logon\0\0]
"Script"=DRIVEMAP.bat
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\group policy\state\S-1-5-21-3734196519-505927577-2532691815-1118\Scripts\Logon\0\0]
"Script"=DRIVEMAP.bat
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\group policy\state\S-1-5-21-3734196519-505927577-2532691815-1124\Scripts\Logon\0\0]
"Script"=DRIVEMAP.bat
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\group policy\state\S-1-5-21-3916004993-1223060592-94746205-1139\Scripts\Logon\0\0]
"Script"=CopyRestartIcons.bat
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\group policy\state\S-1-5-21-3916004993-1223060592-94746205-1139\Scripts\Logon\1\0]
"Script"=CopyMedCoHelp.bat
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\group policy\state\S-1-5-21-3916004993-1223060592-94746205-1139\Scripts\Logon\2\0]
"Script"=InstallPTAgent.bat
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\group policy\state\S-1-5-21-3916004993-1223060592-94746205-1139\Scripts\Logon\3\0]
"Script"=KIXlogon.bat
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\group policy\state\S-1-5-21-3916004993-1223060592-94746205-11630\Scripts\Logon\0\0]
"Script"=CopyMedCoHelp.bat
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\group policy\state\S-1-5-21-3916004993-1223060592-94746205-11630\Scripts\Logon\1\0]
"Script"=InstallPTAgent.bat
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\group policy\state\S-1-5-21-3916004993-1223060592-94746205-11630\Scripts\Logon\2\0]
"Script"=CopyMM.bat
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\group policy\state\S-1-5-21-3916004993-1223060592-94746205-11630\Scripts\Logon\3\0]
"Script"=bginfo.bat
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\group policy\state\S-1-5-21-3916004993-1223060592-94746205-11630\Scripts\Logon\4\0]
"Script"=logon.bat
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\group policy\state\S-1-5-21-3916004993-1223060592-94746205-11630\Scripts\Logon\5\0]
"Script"=KIXlogon.bat
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
@=""
.
R1 BAPIDRV;BAPIDRV;c:\windows\system32\DRIVERS\BAPIDRV64.sys;c:\windows\SYSNATIVE\DRIVERS\BAPIDRV64.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files (x86)\LogMeIn\x64\RaInfo.sys;c:\program files (x86)\LogMeIn\x64\RaInfo.sys [x]
R3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys;c:\windows\SYSNATIVE\DRIVERS\clwvd.sys [x]
R3 FscEfDmi;FscEfDmi;c:\windows\system32\DRIVERS\FscEfDmi.sys;c:\windows\SYSNATIVE\DRIVERS\FscEfDmi.sys [x]
R3 FscGabi;FscGabi;c:\windows\system32\DRIVERS\FscGabi.sys;c:\windows\SYSNATIVE\DRIVERS\FscGabi.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]
R3 O2MDFRDR;O2MDFRDR;c:\windows\system32\drivers\O2MDFw7x64.sys;c:\windows\SYSNATIVE\drivers\O2MDFw7x64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 swg3kflt03;Sierra Wireless USB Composite Device Filter Driver 03;c:\windows\system32\drivers\swg3kflt03.sys;c:\windows\SYSNATIVE\drivers\swg3kflt03.sys [x]
R3 swg3knmea03;Sierra Wireless QMI NMEA Communication - Fujitsu;c:\windows\system32\drivers\swg3knmea03.sys;c:\windows\SYSNATIVE\drivers\swg3knmea03.sys [x]
R3 swg3kser03;Sierra Wireless QMI USB Device for Legacy Serial Communication - Fujitsu;c:\windows\system32\drivers\swg3kser03.sys;c:\windows\SYSNATIVE\drivers\swg3kser03.sys [x]
R3 swibus03;Sierra Wireless Bus Enumerator 03;c:\windows\system32\drivers\swibus03.sys;c:\windows\SYSNATIVE\drivers\swibus03.sys [x]
R3 swibusflt03;Sierra Wireless Bus Enumerator Filter 03;c:\windows\system32\drivers\swibusflt03.sys;c:\windows\SYSNATIVE\drivers\swibusflt03.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 wacomhidfilter;Wacom HID Filter;c:\windows\system32\drivers\wacomhidfilter.sys;c:\windows\SYSNATIVE\drivers\wacomhidfilter.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 FBIOSDRV;Fujitsu BIOS Driver;c:\windows\System32\Drivers\FBIOSDRV.sys;c:\windows\SYSNATIVE\Drivers\FBIOSDRV.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S1 ctxusbm;Citrix USB Monitor Driver;c:\windows\system32\DRIVERS\ctxusbm.sys;c:\windows\SYSNATIVE\DRIVERS\ctxusbm.sys [x]
S2 ATService;AuthenTec Fingerprint Service;c:\program files\Fingerprint Sensor\ATService.exe;c:\program files\Fingerprint Sensor\ATService.exe [x]
S2 BcmBtRSupport;Bluetooth Driver Management Service;c:\windows\system32\BtwRSupportService.exe;c:\windows\SYSNATIVE\BtwRSupportService.exe [x]
S2 FUJ02E3Service;FUJ02E3Service;c:\program files\Fujitsu\FUJ02E3\FUJ02E3.exe;c:\program files\Fujitsu\FUJ02E3\FUJ02E3.exe [x]
S2 HPSIService;HP SI Service;c:\windows\system32\HPSIsvc.exe;c:\windows\SYSNATIVE\HPSIsvc.exe [x]
S2 labvnc;labvnc;c:\windows\LTsvc\labvnc.exe;c:\windows\LTsvc\labvnc.exe [x]
S2 LTService;ProActive Care Monitoring Service;c:\windows\LTSvc\LTSVC.exe;c:\windows\LTSvc\LTSVC.exe [x]
S2 LTSvcMon;ProActive Care Monitoring Service CheckUp Util;c:\windows\LTsvc\LTSvcMon.exe;c:\windows\LTsvc\LTSvcMon.exe [x]
S2 ScreenConnect Client (0fb7c4e009ca42f5);ScreenConnect Client (0fb7c4e009ca42f5);c:\program files (x86)\ScreenConnect Client (0fb7c4e009ca42f5)\Elsinore.ScreenConnect.ClientService.exe ?e=Access&y=Guest&h=remote.medcodata.com&p=8041&s=675d68e3-813f-4ea2-bc4a-f1954295dd94&k=BgIAAACkAABSU0ExAAgAAAEAAQBpzFSPYrrSj92s3os0xeBMqBVpxcX83HX9LoIBWiOcubbLie4WZ9PDiZeQDUgER72CwQOy0sZ2iqkGKYZ5hSCJmutW3dHFxliOsNQcJuhTzZ21jIndRnblRmMJL%2bBXYi5GCO0vIegzvYXpOUSh0IJMeZjXUbooifluqVc7ovtCkyGO5Kws7%2b%2fpGgtls%2fonZolRhoN3HJUHTqW%2f1TFJDnR8Pk%2fXSvrJEMfReS8tkBuuNDkW6UpXKz%2b6fzxta7dZriJXNOcuufPqy9QgKTrThZDLVYvnj3m3RUvixUVdr9k9pKrWygSGSF9saWQVZs6v9bcDmjGeDqGiEcpnenH2AImx;c:\program files (x86)\ScreenConnect Client (0fb7c4e009ca42f5)\Elsinore.ScreenConnect.ClientService.exe ?e=Access&y=Guest&h=remote.medcodata.com&p=8041&s=675d68e3-813f-4ea2-bc4a-f1954295dd94&k=BgIAAACkAABSU0ExAAgAAAEAAQBpzFSPYrrSj92s3os0xeBMqBVpxcX83HX9LoIBWiOcubbLie4WZ9PDiZeQDUgER72CwQOy0sZ2iqkGKYZ5hSCJmutW3dHFxliOsNQcJuhTzZ21jIndRnblRmMJL%2bBXYi5GCO0vIegzvYXpOUSh0IJMeZjXUbooifluqVc7ovtCkyGO5Kws7%2b%2fpGgtls%2fonZolRhoN3HJUHTqW%2f1TFJDnR8Pk%2fXSvrJEMfReS8tkBuuNDkW6UpXKz%2b6fzxta7dZriJXNOcuufPqy9QgKTrThZDLVYvnj3m3RUvixUVdr9k9pKrWygSGSF9saWQVZs6v9bcDmjGeDqGiEcpnenH2AImx [x]
S2 TabletServiceISD;TabletServiceISD;c:\program files\Tablet\ISD\ISD_Tablet.exe;c:\program files\Tablet\ISD\ISD_Tablet.exe [x]
S2 tmevtmgr;tmevtmgr;c:\windows\system32\DRIVERS\tmevtmgr.sys;c:\windows\SYSNATIVE\DRIVERS\tmevtmgr.sys [x]
S2 TmFilter;Trend Micro Filter;c:\program files (x86)\Trend Micro\Security Agent\TmXPFlt.sys;c:\program files (x86)\Trend Micro\Security Agent\TmXPFlt.sys [x]
S2 TmPreFilter;Trend Micro PreFilter;c:\program files (x86)\Trend Micro\Security Agent\TmPreFlt.sys;c:\program files (x86)\Trend Micro\Security Agent\TmPreFlt.sys [x]
S2 TouchServiceISD;Wacom ISD Touch Service;c:\program files\Tablet\ISD\ISD_TouchService.exe;c:\program files\Tablet\ISD\ISD_TouchService.exe [x]
S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]
S3 acpials;ALS Sensor Filter;c:\windows\system32\DRIVERS\acpials.sys;c:\windows\SYSNATIVE\DRIVERS\acpials.sys [x]
S3 ATSwpWDF;AuthenTec TruePrint USB Driver;c:\windows\system32\Drivers\ATSwpWDF.sys;c:\windows\SYSNATIVE\Drivers\ATSwpWDF.sys [x]
S3 bcbtums;Bluetooth USB LD Filter;c:\windows\system32\drivers\bcbtums.sys;c:\windows\SYSNATIVE\drivers\bcbtums.sys [x]
S3 BTWAMPFL;BTWAMPFL;c:\windows\system32\DRIVERS\btwampfl.sys;c:\windows\SYSNATIVE\DRIVERS\btwampfl.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
S3 cpuz137;cpuz137;c:\windows\TEMP\cpuz137\cpuz137_x64.sys;c:\windows\TEMP\cpuz137\cpuz137_x64.sys [x]
S3 Fjbtndrv;Fujitsu Button Driver;c:\windows\system32\drivers\FjBtnDrv.sys;c:\windows\SYSNATIVE\drivers\FjBtnDrv.sys [x]
S3 FUJ02E3;Fujitsu FUJ02E3 Device Driver;c:\windows\system32\drivers\FUJ02E3.sys;c:\windows\SYSNATIVE\drivers\FUJ02E3.sys [x]
S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 mvusbews;USB EWS Device;c:\windows\system32\Drivers\mvusbews.sys;c:\windows\SYSNATIVE\Drivers\mvusbews.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys;c:\windows\SYSNATIVE\drivers\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys;c:\windows\SYSNATIVE\drivers\nusb3xhc.sys [x]
S3 O2MDRRDR;O2MDRRDR;c:\windows\system32\drivers\O2MDRw7x64.sys;c:\windows\SYSNATIVE\drivers\O2MDRw7x64.sys [x]
S3 O2SDJRDR;O2SDJRDR;c:\windows\system32\drivers\o2sdjw7x64.sys;c:\windows\SYSNATIVE\drivers\o2sdjw7x64.sys [x]
S3 TmCCSF;Trend Micro Common Client Solution Framework;c:\program files (x86)\Trend Micro\Security Agent\CCSF\TmCCSF.exe;c:\program files (x86)\Trend Micro\Security Agent\CCSF\TmCCSF.exe [x]
S3 TmProxy;Trend Micro Security Agent NT Proxy Service;c:\program files (x86)\Trend Micro\Security Agent\TmProxy.exe;c:\program files (x86)\Trend Micro\Security Agent\TmProxy.exe [x]
S3 wacomvthid;Virtual Touch Driver;c:\windows\system32\drivers\WacomVTHid.sys;c:\windows\SYSNATIVE\drivers\WacomVTHid.sys [x]
S3 wdkmd;Intel WiDi KMD;c:\windows\system32\DRIVERS\WDKMD.sys;c:\windows\SYSNATIVE\DRIVERS\WDKMD.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-04-19 16:41 988488 ----a-w- c:\program files (x86)\Google\Chrome\Application\42.0.2311.90\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2015-04-28 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-08 18:54]
.
2015-04-28 c:\windows\Tasks\G2MUpdateTask-S-1-5-21-3734196519-505927577-2532691815-1111.job
- c:\program files (x86)\Citrix\GoToMeeting\2553\g2mupdate.exe [2015-04-13 14:16]
.
2015-04-28 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-02-14 13:24]
.
2015-04-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-02-14 13:24]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATSwpNav"="c:\program files\Fingerprint Sensor\ATSwpNav -run" [X]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-12-08 11663464]
"LoadFUJ02E3"="c:\program files\Fujitsu\FUJ02E3\FUJ02E3.exe" [2011-03-11 73840]
"FJBATAID2"="c:\program files\Fujitsu\BatteryAid2\BatteryDaemon.exe" [2010-10-29 124776]
"FjStrtAp"="c:\program files\Fujitsu\Utils\FjStrtAp.exe" [2010-12-09 19800]
"snp2uvc"="c:\windows\vsnp2uvc.exe" [2009-08-13 662016]
"SNUVCDSM"="c:\windows\snuvcdsm.exe" [2011-02-18 24576]
"IntelPAN"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-03-30 1935120]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-04-21 168216]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-04-21 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-04-21 416024]
"FDM7"="c:\program files\Fujitsu\FDM7\FdmDaemon.exe" [2009-10-19 164200]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://comcast.net/
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
Trusted Zone: comcast.net
Trusted Zone: hcsc.net\securemail
Trusted Zone: tmhs.org\tmhsapps
TCP: DhcpNameServer = 192.168.60.9
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKLM-Run-Adobe Reader Speed Launcher - c:\program files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe
Wow6432Node-HKLM-Run-CitrixReceiver - c:\programdata\Microsoft\Windows\Start Menu\Programs\Citrix\Receiver Updater.lnk
Toolbar-Locked - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
HKLM-Run-LogMeIn GUI - c:\program files (x86)\LogMeIn\x64\LogMeInSystray.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_17_0_0_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_17_0_0_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_17_0_0_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_17_0_0_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.17"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2015-04-28  12:07:02
ComboFix-quarantined-files.txt  2015-04-28 17:07
.
Pre-Run: 256,805,273,600 bytes free
Post-Run: 256,245,481,472 bytes free
.
- - End Of File - - 4F9B8449C62688E8B58CF9ED5180FA30
 


#9 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:11:59 PM

Posted 28 April 2015 - 12:20 PM

Running from: c:\users\dshin\Downloads\ComboFix.exe
* Resident AV is active

 
Please follow my instructions more carefully! :)

Step 1

Please download adwcleaner.png AdwCleaner (by Xplode) and save it to your Desktop.
  • Double click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select "Run As Administrator"
  • Click on the Scan button.
  • After the scan has finished, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • After rebooting, a log file (that is saved in C:\AdwCleaner[S#].txt) will open automatically.
    Copy and paste the contents of that logfile in your next reply.
Step 2

v21logo.PNG

Please download and install Malwarebytes Anti-Malware.(NEW VERSION)
  • Please open Malwarebytes Anti-Malware and update the database.
  • Click "Settings" [1] and go to "Detection and Protection" [2]
  • Make sure "Scan for Rootkits" is checked.
  • Click on Dashboard [3], then click on Scan Now [4] to start the scan.
    :exclame: If Malware or Potentially Unwanted Programs [PUPs] are found, you will receive a prompt:
    m21p.png
  • Click on "Remove Selected" [5].
  • Then click "Save Results" [6] and select
    m21p4.png
  • Return to our forum. Paste your log into your next reply and then click Finish [7].
mbamv21.gif

Step 3

frst.pngfrstscan.png

Start FRST with administator privileges.
  • Make sure the following option is checked: addition.png
  • Press the Scan button.
  • When finished, FRST will produce two logs (FRST.txt and Addition.txt) in the same directory the tool was run from.
    Please copy and paste these logs in your next reply.

Edited by deeprybka, 28 April 2015 - 12:21 PM.

regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#10 Micah Davis

Micah Davis
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:04:59 PM

Posted 28 April 2015 - 02:37 PM

# AdwCleaner v4.202 - Logfile created 28/04/2015 at 14:33:11
# Updated 23/04/2015 by Xplode
# Database : 2015-04-27.1 [Server]
# Operating system : Windows 7 Professional Service Pack 1 (x64)
# Username : dshin - HVSDR1
# Running from : C:\Users\dshin\Downloads\adwcleaner_4.202.exe
# Option : Cleaning
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\526d18dc00005281
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverRestore
Folder Deleted : C:\Program Files (x86)\AskPartnerNetwork
Folder Deleted : C:\Program Files (x86)\Spyware Clear
 
***** [ Scheduled tasks ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\1a2628d7-ae6d-6c65-c5a8-13f286b025a6
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40B7-AC73-056A5EBA4A7E}
Key Deleted : HKCU\Software\eSupport.com
Key Deleted : HKCU\Software\Super Optimizer
Key Deleted : HKCU\Software\Local AppWizard-Generated Applications
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKU\.DEFAULT\Software\AskPartnerNetwork
Key Deleted : [x64] HKLM\SOFTWARE\DriverRestore
Key Deleted : [x64] HKLM\SOFTWARE\Spyware Clear
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
 
***** [ Web browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17689
 
 
-\\ Google Chrome v42.0.2311.90
 
[C:\Users\Medcolocal\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?query={searchTerms}
[C:\Users\Medcolocal\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
 
*************************
 
AdwCleaner[R0].txt - [4159 bytes] - [28/04/2015 14:30:22]
AdwCleaner[S0].txt - [3701 bytes] - [28/04/2015 14:33:11]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3760  bytes] ##########


#11 Micah Davis

Micah Davis
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:04:59 PM

Posted 28 April 2015 - 03:12 PM

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 4/28/2015
Scan Time: 2:41:35 PM
Logfile: 
Administrator: Yes
 
Version: 2.00.4.1028
Malware Database: v2015.04.28.06
Rootkit Database: v2015.04.21.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: dshin
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 647712
Time Elapsed: 29 min, 58 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 1
PUM.Disabled.SecurityCenter, HKLM\SOFTWARE\MICROSOFT\SECURITY CENTER|UpdatesDisableNotify, 1, Good: (0), Bad: (1),Replaced,[8dad8fe05a3049ed862833d354b218e8]
 
Folders: 0
(No malicious items detected)
 
Files: 0
(No malicious items detected)
 
Physical Sectors: 1
Rootkit.Cidox.J.VBR, Physical Sector #624502784 on Drive #0, Replace-on-Reboot, [855d18ccf163046765041c6997fe4268], 
 
 
(end)


#12 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:11:59 PM

Posted 28 April 2015 - 03:18 PM

Hi there,

Step 1

Please download TDSStdsskiller.pngiller and save it to your Desktop.
  • Start tdsskiller.exe with administrator privileges.
  • Accept the EULA and the KSN Statement.
  • Click on Change parameters. (1)
  • Make sure that all available options (except "Loaded modules") are checked and click OK. (2)
  • Click on Start scan.
  • If any threats are found don't delete them but choose the Skip option for all of them.
  • Click on Report (3) to open the log file. (It is also saved at C:\TDSSKiller.<version_date_time>_log.txt).
    Copy and paste its contents in your next reply.
tdss.gif
regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#13 Micah Davis

Micah Davis
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:04:59 PM

Posted 29 April 2015 - 03:47 PM

15:44:29.0206 0x19f0  TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
15:44:33.0080 0x19f0  ============================================================
15:44:33.0080 0x19f0  Current date / time: 2015/04/29 15:44:33.0080
15:44:33.0080 0x19f0  SystemInfo:
15:44:33.0081 0x19f0  
15:44:33.0081 0x19f0  OS Version: 6.1.7601 ServicePack: 1.0
15:44:33.0081 0x19f0  Product type: Workstation
15:44:33.0081 0x19f0  ComputerName: HVSDR1
15:44:33.0081 0x19f0  UserName: dshin
15:44:33.0081 0x19f0  Windows directory: C:\Windows
15:44:33.0081 0x19f0  System windows directory: C:\Windows
15:44:33.0081 0x19f0  Running under WOW64
15:44:33.0081 0x19f0  Processor architecture: Intel x64
15:44:33.0081 0x19f0  Number of processors: 4
15:44:33.0081 0x19f0  Page size: 0x1000
15:44:33.0082 0x19f0  Boot type: Normal boot
15:44:33.0082 0x19f0  ============================================================
15:44:33.0822 0x19f0  KLMD registered as C:\Windows\system32\drivers\06214433.sys
15:44:34.0722 0x19f0  System UUID: {48A28758-DA67-AB5B-387A-31F773F3E2AE}
15:44:35.0515 0x19f0  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:44:35.0521 0x19f0  ============================================================
15:44:35.0521 0x19f0  \Device\Harddisk0\DR0:
15:44:35.0521 0x19f0  MBR partitions:
15:44:35.0521 0x19f0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x25392000
15:44:35.0521 0x19f0  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x25392800, BlocksNum 0x96000
15:44:35.0521 0x19f0  ============================================================
15:44:35.0551 0x19f0  C: <-> \Device\Harddisk0\DR0\Partition1
15:44:35.0551 0x19f0  ============================================================
15:44:35.0551 0x19f0  Initialize success
15:44:35.0551 0x19f0  ============================================================
15:44:52.0862 0x0668  ============================================================
15:44:52.0862 0x0668  Scan started
15:44:52.0862 0x0668  Mode: Manual; SigCheck; TDLFS; 
15:44:52.0862 0x0668  ============================================================
15:44:52.0862 0x0668  KSN ping started
15:44:55.0302 0x0668  KSN ping finished: true
15:44:56.0276 0x0668  ================ Scan system memory ========================
15:44:56.0276 0x0668  System memory - ok
15:44:56.0277 0x0668  ================ Scan services =============================
15:44:56.0519 0x0668  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
15:44:56.0711 0x0668  1394ohci - ok
15:44:56.0770 0x0668  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
15:44:56.0812 0x0668  ACPI - ok
15:44:56.0881 0x0668  [ 12C5274CD87449A2A37A607CDB321922, 50FA524E66A8FA04037DC954D3AB5383C633898F111A3B7488630B649B897370 ] acpials         C:\Windows\system32\DRIVERS\acpials.sys
15:44:56.0968 0x0668  acpials - ok
15:44:56.0998 0x0668  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
15:44:57.0061 0x0668  AcpiPmi - ok
15:44:57.0148 0x0668  [ FC5B75CA6A1DA31EDD4F8D53F5540B98, CDC445F2790ADFC4C5568C40D4DA8BB95CD71991665B38AEC3D84571C99C3520 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:44:57.0205 0x0668  AdobeARMservice - ok
15:44:57.0321 0x0668  [ B04A4810C6CC205F9DC72DC22E4AB236, 547321F5C28C80D4818372D65E2A33D4BAC593015DD6613B24586FE4B4A95D5D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:44:57.0381 0x0668  AdobeFlashPlayerUpdateSvc - ok
15:44:57.0437 0x0668  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
15:44:57.0481 0x0668  adp94xx - ok
15:44:57.0515 0x0668  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
15:44:57.0553 0x0668  adpahci - ok
15:44:57.0565 0x0668  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
15:44:57.0597 0x0668  adpu320 - ok
15:44:57.0625 0x0668  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
15:44:57.0729 0x0668  AeLookupSvc - ok
15:44:57.0797 0x0668  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
15:44:57.0881 0x0668  AFD - ok
15:44:57.0918 0x0668  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
15:44:57.0945 0x0668  agp440 - ok
15:44:57.0977 0x0668  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
15:44:58.0031 0x0668  ALG - ok
15:44:58.0067 0x0668  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
15:44:58.0085 0x0668  aliide - ok
15:44:58.0110 0x0668  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
15:44:58.0129 0x0668  amdide - ok
15:44:58.0165 0x0668  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
15:44:58.0225 0x0668  AmdK8 - ok
15:44:58.0238 0x0668  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
15:44:58.0279 0x0668  AmdPPM - ok
15:44:58.0310 0x0668  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
15:44:58.0336 0x0668  amdsata - ok
15:44:58.0348 0x0668  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
15:44:58.0379 0x0668  amdsbs - ok
15:44:58.0388 0x0668  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
15:44:58.0408 0x0668  amdxata - ok
15:44:58.0450 0x0668  [ 90C53BD47979FB8814F465A08B885102, 5EDFC1909FC1FF9133A534DFCC5408CF3A777AC41FB21FAD375436E3D86C02EC ] AppID           C:\Windows\system32\drivers\appid.sys
15:44:58.0503 0x0668  AppID - ok
15:44:58.0523 0x0668  [ 72D4757510FDA69D729169C00AFC211E, FB9686D0D94EE7C19A3994C29E8331A6EC3020B2980B2CC75F72F3AB25512C15 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
15:44:58.0556 0x0668  AppIDSvc - ok
15:44:58.0588 0x0668  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
15:44:58.0642 0x0668  Appinfo - ok
15:44:58.0731 0x0668  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
15:44:58.0807 0x0668  AppMgmt - ok
15:44:58.0845 0x0668  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
15:44:58.0889 0x0668  arc - ok
15:44:58.0903 0x0668  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
15:44:58.0933 0x0668  arcsas - ok
15:44:59.0039 0x0668  [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:44:59.0095 0x0668  aspnet_state - ok
15:44:59.0120 0x0668  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
15:44:59.0166 0x0668  AsyncMac - ok
15:44:59.0225 0x0668  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
15:44:59.0271 0x0668  atapi - ok
15:44:59.0440 0x0668  [ FA47E65AA0C1DBC6DFEB7E9C6F12A5EA, 26B3908845D2F325AF806B5564510CB93F39206BC20D2D784F4BE426B3250709 ] ATService       C:\Program Files\Fingerprint Sensor\ATService.exe
15:44:59.0556 0x0668  ATService - ok
15:44:59.0596 0x0668  [ 4131DABB573D70FDA332A55F206F6CFF, E6869CAC2B79502C84D8D2BB8566D90F7A24A95B9F44B461D61A00200C9F436B ] ATSwpWDF        C:\Windows\system32\Drivers\ATSwpWDF.sys
15:44:59.0681 0x0668  ATSwpWDF - ok
15:44:59.0731 0x0668  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:44:59.0793 0x0668  AudioEndpointBuilder - ok
15:44:59.0811 0x0668  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv        C:\Windows\System32\Audiosrv.dll
15:44:59.0835 0x0668  AudioSrv - ok
15:44:59.0882 0x0668  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
15:44:59.0992 0x0668  AxInstSV - ok
15:45:00.0046 0x0668  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
15:45:00.0112 0x0668  b06bdrv - ok
15:45:00.0143 0x0668  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
15:45:00.0199 0x0668  b57nd60a - ok
15:45:00.0232 0x0668  BAPIDRV - ok
15:45:00.0270 0x0668  [ F8FE7E12F8151E0A17C23CF840599F9A, 5D1AA3A5DAC08B521A7BE775F32434AFF1F5F19B69CD16D2D94B0D399E61C371 ] bcbtums         C:\Windows\system32\drivers\bcbtums.sys
15:45:00.0306 0x0668  bcbtums - ok
15:45:00.0401 0x0668  [ ACB44407FF63C3A5A22AB5782F209604, 86BE221F07EB49D2149710CCCE4F0C24677560FEFD41F093C6D2BA0C962CF5C3 ] BcmBtRSupport   C:\Windows\system32\BtwRSupportService.exe
15:45:00.0523 0x0668  BcmBtRSupport - ok
15:45:00.0553 0x0668  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
15:45:00.0607 0x0668  BDESVC - ok
15:45:00.0631 0x0668  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
15:45:00.0693 0x0668  Beep - ok
15:45:00.0773 0x0668  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
15:45:00.0865 0x0668  BFE - ok
15:45:00.0914 0x0668  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll
15:45:01.0099 0x0668  BITS - ok
15:45:01.0118 0x0668  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
15:45:01.0145 0x0668  blbdrive - ok
15:45:01.0173 0x0668  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
15:45:01.0230 0x0668  bowser - ok
15:45:01.0266 0x0668  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
15:45:01.0329 0x0668  BrFiltLo - ok
15:45:01.0345 0x0668  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
15:45:01.0367 0x0668  BrFiltUp - ok
15:45:01.0410 0x0668  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
15:45:01.0469 0x0668  BridgeMP - ok
15:45:01.0513 0x0668  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
15:45:01.0558 0x0668  Browser - ok
15:45:01.0590 0x0668  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
15:45:01.0660 0x0668  Brserid - ok
15:45:01.0674 0x0668  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
15:45:01.0716 0x0668  BrSerWdm - ok
15:45:01.0737 0x0668  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
15:45:01.0760 0x0668  BrUsbMdm - ok
15:45:01.0774 0x0668  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
15:45:01.0815 0x0668  BrUsbSer - ok
15:45:01.0868 0x0668  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
15:45:01.0921 0x0668  BthEnum - ok
15:45:01.0932 0x0668  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
15:45:01.0973 0x0668  BTHMODEM - ok
15:45:01.0999 0x0668  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
15:45:02.0037 0x0668  BthPan - ok
15:45:02.0072 0x0668  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
15:45:02.0149 0x0668  BTHPORT - ok
15:45:02.0182 0x0668  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
15:45:02.0228 0x0668  bthserv - ok
15:45:02.0258 0x0668  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
15:45:02.0293 0x0668  BTHUSB - ok
15:45:02.0328 0x0668  [ BC279FCEE9FC8CBF991D5DE539771AA9, 5DE007672BFBFA78C44CC08251F495420402AFF4AD01541AA84AD37BD4A58190 ] BTWAMPFL        C:\Windows\system32\DRIVERS\btwampfl.sys
15:45:02.0363 0x0668  BTWAMPFL - ok
15:45:02.0409 0x0668  [ F6135859A582A7294BA7A3336E08BAA1, DE30457F91C25950C2713CE3A2AE1F1EFFBB068DD3B0BCC87700E7CBAF73C818 ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
15:45:02.0436 0x0668  btwaudio - ok
15:45:02.0464 0x0668  [ 3DEF2370E414B4E299673558BA171A51, 5A0923D9F941ABD34EC9BEE0EB62A62F135CBF128061239CC6EA0E6752791636 ] btwavdt         C:\Windows\system32\drivers\btwavdt.sys
15:45:02.0492 0x0668  btwavdt - ok
15:45:02.0581 0x0668  [ 36E3016BEDC45274E00E2943B591AEEF, D569925A87D924AA8079DE89D6F8EF68B64D90997110999258F718714C5D926B ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
15:45:02.0646 0x0668  btwdins - ok
15:45:02.0662 0x0668  [ 07096D2BC22CCB6CEA5A532DF0BE8A75, A9B7F2EFFDF1E4EC0A5DC098F0ED2BE44E271844A4F1CBAD2FA1655DE1E03F6E ] btwl2cap        C:\Windows\system32\DRIVERS\btwl2cap.sys
15:45:02.0683 0x0668  btwl2cap - ok
15:45:02.0699 0x0668  [ 9937E0E4DFC0030560A6DFE9D3A94B39, 0B9CF1932D4534BD7B1F5D7B7BD5FBF9C8D156838D24ABBDE475E79EEF1150F1 ] btwrchid        C:\Windows\system32\DRIVERS\btwrchid.sys
15:45:02.0722 0x0668  btwrchid - ok
15:45:02.0751 0x0668  catchme - ok
15:45:02.0789 0x0668  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
15:45:02.0842 0x0668  cdfs - ok
15:45:02.0902 0x0668  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
15:45:02.0994 0x0668  cdrom - ok
15:45:03.0033 0x0668  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
15:45:03.0086 0x0668  CertPropSvc - ok
15:45:03.0110 0x0668  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
15:45:03.0148 0x0668  circlass - ok
15:45:03.0183 0x0668  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
15:45:03.0224 0x0668  CLFS - ok
15:45:03.0286 0x0668  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:45:03.0319 0x0668  clr_optimization_v2.0.50727_32 - ok
15:45:03.0345 0x0668  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:45:03.0375 0x0668  clr_optimization_v2.0.50727_64 - ok
15:45:03.0458 0x0668  [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:45:03.0586 0x0668  clr_optimization_v4.0.30319_32 - ok
15:45:03.0599 0x0668  [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:45:03.0633 0x0668  clr_optimization_v4.0.30319_64 - ok
15:45:03.0639 0x0668  clwvd - ok
15:45:03.0685 0x0668  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
15:45:03.0719 0x0668  CmBatt - ok
15:45:03.0741 0x0668  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
15:45:03.0759 0x0668  cmdide - ok
15:45:03.0816 0x0668  [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG             C:\Windows\system32\Drivers\cng.sys
15:45:03.0891 0x0668  CNG - ok
15:45:03.0917 0x0668  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
15:45:03.0941 0x0668  Compbatt - ok
15:45:03.0969 0x0668  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
15:45:04.0004 0x0668  CompositeBus - ok
15:45:04.0016 0x0668  COMSysApp - ok
15:45:04.0073 0x0668  cpuz137 - ok
15:45:04.0100 0x0668  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
15:45:04.0153 0x0668  crcdisk - ok
15:45:04.0207 0x0668  [ 1CD76A83B9E8E9A5A3519B39E28354D9, F9931743B99820FFBFB13136DFFD92F86802D543F9D8478648CDC554FB38899D ] CryptSvc        C:\Windows\system32\cryptsvc.dll
15:45:04.0269 0x0668  CryptSvc - ok
15:45:04.0326 0x0668  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
15:45:04.0412 0x0668  CSC - ok
15:45:04.0469 0x0668  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
15:45:04.0497 0x0668  CscService - ok
15:45:04.0540 0x0668  [ A193FAE9BF40D981C3094252B17DE601, 585E9F48676DA26DBD30398E4D0E33378D25CB726EFA973E48B69F31C96A6E4E ] ctxusbm         C:\Windows\system32\DRIVERS\ctxusbm.sys
15:45:04.0573 0x0668  ctxusbm - ok
15:45:04.0625 0x0668  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
15:45:04.0678 0x0668  DcomLaunch - ok
15:45:04.0715 0x0668  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
15:45:04.0784 0x0668  defragsvc - ok
15:45:04.0815 0x0668  [ CF1F6326AC44C42F4615D4BD53188AC5, 28DC32F1957918C3D5DE72415CC32A51C6885CAA38119FE475D2631269D3B9B3 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
15:45:04.0861 0x0668  DfsC - ok
15:45:04.0887 0x0668  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
15:45:04.0952 0x0668  Dhcp - ok
15:45:04.0980 0x0668  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
15:45:05.0045 0x0668  discache - ok
15:45:05.0072 0x0668  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
15:45:05.0097 0x0668  Disk - ok
15:45:05.0134 0x0668  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
15:45:05.0189 0x0668  Dnscache - ok
15:45:05.0234 0x0668  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
15:45:05.0340 0x0668  dot3svc - ok
15:45:05.0373 0x0668  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
15:45:05.0404 0x0668  DPS - ok
15:45:05.0444 0x0668  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
15:45:05.0506 0x0668  drmkaud - ok
15:45:05.0576 0x0668  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
15:45:05.0636 0x0668  DXGKrnl - ok
15:45:05.0681 0x0668  [ DC1776D086AA9733B1929A3D979D9FDD, C7EEF160C615948CCCDE3B56C43F8A1E348B4E1212E0DDDB8A9EC2EC14FF73EE ] e1cexpress      C:\Windows\system32\DRIVERS\e1c62x64.sys
15:45:05.0717 0x0668  e1cexpress - ok
15:45:05.0778 0x0668  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
15:45:05.0868 0x0668  EapHost - ok
15:45:05.0967 0x0668  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
15:45:06.0104 0x0668  ebdrv - ok
15:45:06.0131 0x0668  [ B6C7729936AAF8E0697F0A7DCA82CED8, 9706E5234364488DD18527AAC82760E5ECB6EC9EBFDD4D04D2708D3C9C576FE6 ] EFS             C:\Windows\System32\lsass.exe
15:45:06.0179 0x0668  EFS - ok
15:45:06.0239 0x0668  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
15:45:06.0325 0x0668  ehRecvr - ok
15:45:06.0381 0x0668  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
15:45:06.0479 0x0668  ehSched - ok
15:45:06.0535 0x0668  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
15:45:06.0584 0x0668  elxstor - ok
15:45:06.0603 0x0668  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
15:45:06.0639 0x0668  ErrDev - ok
15:45:06.0689 0x0668  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
15:45:06.0764 0x0668  EventSystem - ok
15:45:06.0855 0x0668  [ 7A526761229C10B0D8508B905F0FEE4C, D091DC3A2FD08AD6A58AA9C8F9FC567547EDEEAC6F7314F0AA8416C72E7807F6 ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
15:45:06.0930 0x0668  EvtEng - ok
15:45:06.0949 0x0668  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
15:45:07.0018 0x0668  exfat - ok
15:45:07.0051 0x0668  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
15:45:07.0121 0x0668  fastfat - ok
15:45:07.0179 0x0668  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
15:45:07.0255 0x0668  Fax - ok
15:45:07.0283 0x0668  [ 9955BF48FD2FA8D481848CD3024EDD0B, 327E290141625C3E810D741CA106651C5A8EEF5DFA6477ACC5843D9D80DFC6FA ] FBIOSDRV        C:\Windows\system32\Drivers\FBIOSDRV.sys
15:45:07.0309 0x0668  FBIOSDRV - ok
15:45:07.0328 0x0668  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
15:45:07.0378 0x0668  fdc - ok
15:45:07.0406 0x0668  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
15:45:07.0444 0x0668  fdPHost - ok
15:45:07.0462 0x0668  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
15:45:07.0503 0x0668  FDResPub - ok
15:45:07.0523 0x0668  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
15:45:07.0547 0x0668  FileInfo - ok
15:45:07.0561 0x0668  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
15:45:07.0617 0x0668  Filetrace - ok
15:45:07.0650 0x0668  [ 5E5203A036F5477B302EF15494D8A9D4, A70E8BAC9CC0DFAF3891F7A85AD24682B2654DE509A51C37FD480F0FD573B29D ] Fjbtndrv        C:\Windows\system32\drivers\FjBtnDrv.sys
15:45:07.0700 0x0668  Fjbtndrv - ok
15:45:07.0711 0x0668  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
15:45:07.0733 0x0668  flpydisk - ok
15:45:07.0760 0x0668  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
15:45:07.0774 0x0668  FltMgr - ok
15:45:07.0832 0x0668  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
15:45:07.0929 0x0668  FontCache - ok
15:45:07.0968 0x0668  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:45:07.0994 0x0668  FontCache3.0.0.0 - ok
15:45:08.0030 0x0668  [ B9E19421B9CA13C2929AAFFFF13324D1, 48FACDFCE10AE41DF92AA9BB070C96114672685BD50F6CF823A78E8224ABC4E5 ] FscEfDmi        C:\Windows\system32\DRIVERS\FscEfDmi.sys
15:45:08.0050 0x0668  FscEfDmi - ok
15:45:08.0068 0x0668  [ 54BD9A8DF2330E41EB7FC13A3894A161, 64587F11DE7FE503E264F45D51717CA229BA874A9DCD7A526A9625367FA96DE8 ] FscGabi         C:\Windows\system32\DRIVERS\FscGabi.sys
15:45:08.0089 0x0668  FscGabi - ok
15:45:08.0114 0x0668  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
15:45:08.0141 0x0668  FsDepends - ok
15:45:08.0167 0x0668  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
15:45:08.0190 0x0668  Fs_Rec - ok
15:45:08.0213 0x0668  [ BA0C1FFDA496D8BCBCAC63F8D98D20E3, 28D37F07A58D5AFA48A18BB4A780A36A3F8D49E94DE8CA5071071CCF16C0C090 ] FUJ02B1         C:\Windows\system32\drivers\FUJ02B1.sys
15:45:08.0259 0x0668  FUJ02B1 - ok
15:45:08.0280 0x0668  [ 7135030CBF87D724B6037BB023923730, 1F6D9A7D7033226507DEDD53CB686C0F3CDC15FD7E77DBC5263256E8EB541E4E ] FUJ02E3         C:\Windows\system32\drivers\FUJ02E3.sys
15:45:08.0321 0x0668  FUJ02E3 - ok
15:45:08.0391 0x0668  [ 002B60F7B8A6786FF708ED67423D963B, F8A5B8A840E62A1E7EB9D8A18BAF15090CFA2986B1F9DA4715692627366F942B ] FUJ02E3Service  C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
15:45:08.0415 0x0668  FUJ02E3Service - ok
15:45:08.0448 0x0668  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
15:45:08.0492 0x0668  fvevol - ok
15:45:08.0522 0x0668  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
15:45:08.0554 0x0668  gagp30kx - ok
15:45:08.0650 0x0668  [ FE91DC3D9A696CCDDB9F51C25ACBC53A, 4E1A7BB3AC57530A1DF8AB7E981087275E89E6AC629F881C98E40F13150ED532 ] gpsvc           C:\Windows\System32\gpsvc.dll
15:45:08.0688 0x0668  gpsvc - ok
15:45:08.0778 0x0668  [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:45:08.0797 0x0668  gupdate - ok
15:45:08.0810 0x0668  [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:45:08.0820 0x0668  gupdatem - ok
15:45:08.0833 0x0668  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
15:45:08.0895 0x0668  hcw85cir - ok
15:45:08.0949 0x0668  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:45:09.0006 0x0668  HdAudAddService - ok
15:45:09.0037 0x0668  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
15:45:09.0068 0x0668  HDAudBus - ok
15:45:09.0078 0x0668  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
15:45:09.0110 0x0668  HidBatt - ok
15:45:09.0130 0x0668  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
15:45:09.0181 0x0668  HidBth - ok
15:45:09.0203 0x0668  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
15:45:09.0240 0x0668  HidIr - ok
15:45:09.0268 0x0668  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
15:45:09.0337 0x0668  hidserv - ok
15:45:09.0397 0x0668  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
15:45:09.0466 0x0668  HidUsb - ok
15:45:09.0492 0x0668  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
15:45:09.0556 0x0668  hkmsvc - ok
15:45:09.0585 0x0668  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:45:09.0645 0x0668  HomeGroupListener - ok
15:45:09.0674 0x0668  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:45:09.0707 0x0668  HomeGroupProvider - ok
15:45:09.0740 0x0668  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
15:45:09.0766 0x0668  HpSAMD - ok
15:45:09.0807 0x0668  [ 5A539A3CBD6EC1609D5333B486D5F74C, C43B4F085C0F7938E0771140B7D02B087F4EA086FC3FF4B4F9F2D18BCE0BFD88 ] HPSIService     C:\Windows\system32\HPSIsvc.exe
15:45:09.0841 0x0668  HPSIService - ok
15:45:09.0886 0x0668  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
15:45:09.0974 0x0668  HTTP - ok
15:45:09.0999 0x0668  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
15:45:10.0018 0x0668  hwpolicy - ok
15:45:10.0057 0x0668  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
15:45:10.0118 0x0668  i8042prt - ok
15:45:10.0158 0x0668  [ D469B77687E12FE43E344806740B624D, DFDD486FD040813BF4E5DDB504CF9E0BFBF6D4E540DDDA4829F9B675ACF63E89 ] iaStor          C:\Windows\system32\drivers\iaStor.sys
15:45:10.0174 0x0668  iaStor - ok
15:45:10.0220 0x0668  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
15:45:10.0260 0x0668  iaStorV - ok
15:45:10.0312 0x0668  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
15:45:10.0659 0x0668  IDriverT - detected UnsignedFile.Multi.Generic ( 1 )
15:45:13.0268 0x0668  Detect skipped due to KSN trusted
15:45:13.0268 0x0668  IDriverT - ok
15:45:13.0349 0x0668  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:45:13.0408 0x0668  idsvc - ok
15:45:13.0439 0x0668  IEEtwCollectorService - ok
15:45:13.0864 0x0668  [ 6383899C5F964D71B0F96B81FBE59BB8, 780B2B5945CF266CD0807B6F91177A558EC1E568F9D7D850C172A137414394E6 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
15:45:14.0437 0x0668  igfx - ok
15:45:14.0486 0x0668  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
15:45:14.0508 0x0668  iirsp - ok
15:45:14.0578 0x0668  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
15:45:14.0654 0x0668  IKEEXT - ok
15:45:14.0748 0x0668  [ D492D3B5A8DDDE1D6621A8C53855EABF, 22505264F9645B07920B468FA58E7F0D27492CFD04C12FD26C14305D93020C6B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:45:14.0883 0x0668  IntcAzAudAddService - ok
15:45:14.0925 0x0668  [ FC727061C0F47C8059E88E05D5C8E381, C7A3782F5D86C7FDE57AA1F2EE81638C5FC3072ACC6E572BA2EC7B3CFF389800 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
15:45:14.0981 0x0668  IntcDAud - ok
15:45:15.0000 0x0668  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
15:45:15.0018 0x0668  intelide - ok
15:45:15.0049 0x0668  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
15:45:15.0073 0x0668  intelppm - ok
15:45:15.0103 0x0668  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
15:45:15.0165 0x0668  IPBusEnum - ok
15:45:15.0192 0x0668  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:45:15.0252 0x0668  IpFilterDriver - ok
15:45:15.0292 0x0668  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
15:45:15.0338 0x0668  iphlpsvc - ok
15:45:15.0368 0x0668  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
15:45:15.0414 0x0668  IPMIDRV - ok
15:45:15.0441 0x0668  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
15:45:15.0500 0x0668  IPNAT - ok
15:45:15.0530 0x0668  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
15:45:15.0630 0x0668  IRENUM - ok
15:45:15.0647 0x0668  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
15:45:15.0670 0x0668  isapnp - ok
15:45:15.0703 0x0668  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
15:45:15.0740 0x0668  iScsiPrt - ok
15:45:15.0776 0x0668  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
15:45:15.0799 0x0668  kbdclass - ok
15:45:15.0823 0x0668  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
15:45:15.0857 0x0668  kbdhid - ok
15:45:15.0875 0x0668  [ B6C7729936AAF8E0697F0A7DCA82CED8, 9706E5234364488DD18527AAC82760E5ECB6EC9EBFDD4D04D2708D3C9C576FE6 ] KeyIso          C:\Windows\system32\lsass.exe
15:45:15.0884 0x0668  KeyIso - ok
15:45:15.0915 0x0668  [ 56ED3EE5FED6BF2FC1305CF872042868, 44F77AE3CD83284800FF106156ABCB63047327855E2535EE278289AF6F05579C ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
15:45:15.0941 0x0668  KSecDD - ok
15:45:15.0955 0x0668  [ 8BA90F480705D7153AD0060CCA62222A, B3E610DFAB382368114D026947084A72AFC4F5BF9C28317F411D4ED91E0B3192 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
15:45:15.0991 0x0668  KSecPkg - ok
15:45:16.0015 0x0668  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
15:45:16.0066 0x0668  ksthunk - ok
15:45:16.0099 0x0668  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
15:45:16.0156 0x0668  KtmRm - ok
15:45:16.0273 0x0668  [ 30340EA4BB00F6CD5A92C75AECFD538C, 130347021D8D5CB06E975B3DB350892B2BD934DDA056935B6048C84C0CD860F6 ] labvnc          C:\Windows\LTsvc\labvnc.exe
15:45:16.0320 0x0668  labvnc - ok
15:45:16.0359 0x0668  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
15:45:16.0423 0x0668  LanmanServer - ok
15:45:16.0468 0x0668  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:45:16.0532 0x0668  LanmanWorkstation - ok
15:45:16.0563 0x0668  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
15:45:16.0614 0x0668  lltdio - ok
15:45:16.0652 0x0668  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
15:45:16.0716 0x0668  lltdsvc - ok
15:45:16.0731 0x0668  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
15:45:16.0771 0x0668  lmhosts - ok
15:45:16.0803 0x0668  LMIInfo - ok
15:45:16.0823 0x0668  [ 413ECDCFAD9A82804D3674C8D7EEC24E, C8A65ED0B079D16D1A4449E840B4A9475388FBE61B5A84DFEFC35F4FB3B9A9B1 ] lmimirr         C:\Windows\system32\DRIVERS\lmimirr.sys
15:45:16.0845 0x0668  lmimirr - ok
15:45:16.0869 0x0668  LMIRfsClientNP - ok
15:45:16.0900 0x0668  [ C57D3FAA50E6F395759FFB7C709BD944, 7B0B86F0E710934D57801E1F7BB048AD878F871147B2A16BBF81219A4022B499 ] LMIRfsDriver    C:\Windows\system32\drivers\LMIRfsDriver.sys
15:45:16.0946 0x0668  LMIRfsDriver - ok
15:45:16.0998 0x0668  [ A63B719F4F8657F3FCD84436D09378C8, 770B979204D8A34463880D53BD51CB93B9CC2B37A04B56D2098E879A4922D721 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
15:45:17.0011 0x0668  LMS - ok
15:45:17.0036 0x0668  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
15:45:17.0063 0x0668  LSI_FC - ok
15:45:17.0073 0x0668  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
15:45:17.0099 0x0668  LSI_SAS - ok
15:45:17.0117 0x0668  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
15:45:17.0140 0x0668  LSI_SAS2 - ok
15:45:17.0154 0x0668  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
15:45:17.0180 0x0668  LSI_SCSI - ok
15:45:17.0265 0x0668  [ 8B6411DA19A9798E11E203AFFEBAE2E7, 01D252FDF2FD638C9010B4552420C6F861F7573291AA45E77FB2ABC980B81A57 ] LTService       C:\Windows\LTSvc\LTSVC.exe
15:45:17.0310 0x0668  LTService - ok
15:45:17.0329 0x0668  [ 8843B93620046F00D1D4C14CD46B88B3, D01325E98789DA11B48B071AB830D90353F53491692DDB3514ADE2FA7ABAF33E ] LTSvcMon        C:\Windows\LTsvc\LTSvcMon.exe
15:45:17.0360 0x0668  LTSvcMon - ok
15:45:17.0394 0x0668  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
15:45:17.0457 0x0668  luafv - ok
15:45:17.0486 0x0668  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
15:45:17.0514 0x0668  Mcx2Svc - ok
15:45:17.0528 0x0668  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
15:45:17.0554 0x0668  megasas - ok
15:45:17.0588 0x0668  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
15:45:17.0624 0x0668  MegaSR - ok
15:45:17.0662 0x0668  [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64          C:\Windows\system32\drivers\HECIx64.sys
15:45:17.0686 0x0668  MEIx64 - ok
15:45:17.0724 0x0668  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
15:45:17.0801 0x0668  MMCSS - ok
15:45:17.0828 0x0668  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
15:45:17.0888 0x0668  Modem - ok
15:45:17.0917 0x0668  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
15:45:17.0941 0x0668  monitor - ok
15:45:17.0978 0x0668  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
15:45:18.0001 0x0668  mouclass - ok
15:45:18.0030 0x0668  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
15:45:18.0068 0x0668  mouhid - ok
15:45:18.0108 0x0668  [ 87BCD1034CBF33537D4D4C251D39BA26, CB9DD235B62B79383F99873D75E26EEA5EE7914CA89E4B75992207F83420437F ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
15:45:18.0141 0x0668  mountmgr - ok
15:45:18.0168 0x0668  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
15:45:18.0200 0x0668  mpio - ok
15:45:18.0237 0x0668  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
15:45:18.0283 0x0668  mpsdrv - ok
15:45:18.0324 0x0668  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
15:45:18.0372 0x0668  MpsSvc - ok
15:45:18.0398 0x0668  [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
15:45:18.0457 0x0668  MRxDAV - ok
15:45:18.0491 0x0668  [ 211FB7D41E50BCBFEFC3512290E0339E, 92019EA8669F2DEF49E286A84CA1A1CCB5732C26EB90BD78F8640CCE3E3CE16E ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
15:45:18.0524 0x0668  mrxsmb - ok
15:45:18.0541 0x0668  [ E94368D48ADF90F03AA65112461AD02B, 65F6123652D9898469F59EA5A123810DE797C0FC29BF0B355DC5A5A622A7AB83 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:45:18.0593 0x0668  mrxsmb10 - ok
15:45:18.0612 0x0668  [ 5162FAE8A13CF1F5B6DCD863D09173C7, CDE09D23152F485946927BBD74C10C2543EC10D435C344E910C6439B9F999710 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:45:18.0655 0x0668  mrxsmb20 - ok
15:45:18.0682 0x0668  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
15:45:18.0709 0x0668  msahci - ok
15:45:18.0736 0x0668  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
15:45:18.0764 0x0668  msdsm - ok
15:45:18.0793 0x0668  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
15:45:18.0860 0x0668  MSDTC - ok
15:45:18.0900 0x0668  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
15:45:18.0964 0x0668  Msfs - ok
15:45:18.0992 0x0668  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
15:45:19.0042 0x0668  mshidkmdf - ok
15:45:19.0062 0x0668  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
15:45:19.0080 0x0668  msisadrv - ok
15:45:19.0109 0x0668  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
15:45:19.0166 0x0668  MSiSCSI - ok
15:45:19.0169 0x0668  msiserver - ok
15:45:19.0208 0x0668  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
15:45:19.0253 0x0668  MSKSSRV - ok
15:45:19.0257 0x0668  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
15:45:19.0311 0x0668  MSPCLOCK - ok
15:45:19.0328 0x0668  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
15:45:19.0363 0x0668  MSPQM - ok
15:45:19.0392 0x0668  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
15:45:19.0430 0x0668  MsRPC - ok
15:45:19.0456 0x0668  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
15:45:19.0483 0x0668  mssmbios - ok
15:45:19.0493 0x0668  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
15:45:19.0540 0x0668  MSTEE - ok
15:45:19.0567 0x0668  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
15:45:19.0587 0x0668  MTConfig - ok
15:45:19.0617 0x0668  [ AA0C2BA3782E92BD85E2264BE418E67C, 8B0953926E83274DF16670F1EF6F4E302F7EE17418F486975C353A406850298C ] Mup             C:\Windows\system32\Drivers\mup.sys
15:45:19.0648 0x0668  Mup - ok
15:45:19.0674 0x0668  [ 705E9675014EB688BEDD967B1ABECF19, 7FA4B0A5120DD415C5D3F3BE56C69455647029332DC2E9B4E9874AF3C34F89AD ] mvusbews        C:\Windows\system32\Drivers\mvusbews.sys
15:45:19.0718 0x0668  mvusbews - ok
15:45:19.0751 0x0668  [ 95D193CAE3C4D575D88B6D93DDCD60D3, 4FC219124A4E76008B396AE34B3ECB52A281B8EF02E34D9183907FC96ADCBAF3 ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
15:45:19.0797 0x0668  MyWiFiDHCPDNS - ok
15:45:19.0835 0x0668  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
15:45:19.0882 0x0668  napagent - ok
15:45:19.0928 0x0668  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
15:45:19.0980 0x0668  NativeWifiP - ok
15:45:20.0026 0x0668  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
15:45:20.0062 0x0668  NDIS - ok
15:45:20.0084 0x0668  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
15:45:20.0127 0x0668  NdisCap - ok
15:45:20.0147 0x0668  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
15:45:20.0198 0x0668  NdisTapi - ok
15:45:20.0231 0x0668  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
15:45:20.0288 0x0668  Ndisuio - ok
15:45:20.0316 0x0668  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
15:45:20.0371 0x0668  NdisWan - ok
15:45:20.0386 0x0668  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
15:45:20.0440 0x0668  NDProxy - ok
15:45:20.0484 0x0668  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
15:45:20.0554 0x0668  NetBIOS - ok
15:45:20.0585 0x0668  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
15:45:20.0645 0x0668  NetBT - ok
15:45:20.0668 0x0668  [ B6C7729936AAF8E0697F0A7DCA82CED8, 9706E5234364488DD18527AAC82760E5ECB6EC9EBFDD4D04D2708D3C9C576FE6 ] Netlogon        C:\Windows\system32\lsass.exe
15:45:20.0679 0x0668  Netlogon - ok
15:45:20.0733 0x0668  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
15:45:20.0809 0x0668  Netman - ok
15:45:20.0868 0x0668  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:45:20.0907 0x0668  NetMsmqActivator - ok
15:45:20.0921 0x0668  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:45:20.0932 0x0668  NetPipeActivator - ok
15:45:20.0955 0x0668  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
15:45:21.0026 0x0668  netprofm - ok
15:45:21.0046 0x0668  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:45:21.0058 0x0668  NetTcpActivator - ok
15:45:21.0064 0x0668  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:45:21.0076 0x0668  NetTcpPortSharing - ok
15:45:21.0330 0x0668  [ 8ADAA4CC125EC1A1CB66E363DF531CC4, D41E973C915DE36BF0A01CD6AFB3D0761062DEB6A48E37BDC3D85A1AC4FDC82B ] NETwNs64        C:\Windows\system32\DRIVERS\NETwNs64.sys
15:45:21.0624 0x0668  NETwNs64 - ok
15:45:21.0690 0x0668  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
15:45:21.0717 0x0668  nfrd960 - ok
15:45:21.0754 0x0668  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
15:45:21.0816 0x0668  NlaSvc - ok
15:45:21.0830 0x0668  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
15:45:21.0887 0x0668  Npfs - ok
15:45:21.0915 0x0668  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
15:45:21.0967 0x0668  nsi - ok
15:45:21.0984 0x0668  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
15:45:22.0031 0x0668  nsiproxy - ok
15:45:22.0111 0x0668  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
15:45:22.0194 0x0668  Ntfs - ok
15:45:22.0394 0x0668  [ 02D36DDFAD17E335EF33383E482ABAD1, ACA52F41EDE4007C7A247CEE010233DC0A96923DEC8A4B27DB5385F5EB91DD66 ] ntrtscan        C:\Program Files (x86)\Trend Micro\Security Agent\ntrtscan.exe
15:45:22.0563 0x0668  ntrtscan - ok
15:45:22.0584 0x0668  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
15:45:22.0630 0x0668  Null - ok
15:45:22.0681 0x0668  [ 786DB821BFD57C0551DBBE4F75384A7D, F956D636F834F2BA5F019E187FDB9CC33940363C75A60E53CD81310A4DB6A6AB ] nusb3hub        C:\Windows\system32\drivers\nusb3hub.sys
15:45:22.0738 0x0668  nusb3hub - ok
15:45:22.0774 0x0668  [ DAA8005CAF745042BB427A1ED7433354, 3019002F174783B76D5D8AA47F7A465B7FEC7C14235B70E5C9277FE534839226 ] nusb3xhc        C:\Windows\system32\drivers\nusb3xhc.sys
15:45:22.0820 0x0668  nusb3xhc - ok
15:45:22.0836 0x0668  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
15:45:22.0868 0x0668  nvraid - ok
15:45:22.0895 0x0668  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
15:45:22.0925 0x0668  nvstor - ok
15:45:22.0950 0x0668  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
15:45:22.0982 0x0668  nv_agp - ok
15:45:23.0006 0x0668  [ 4E37455DB16AEC75862B1D0BC35B589E, F60FCE0C3E6C1559B0A8E0A032AFD30216E1DE2142E8E4C181C43DB6C4B5A443 ] O2FLASH         C:\Windows\system32\DRIVERS\o2flash.exe
15:45:23.0036 0x0668  O2FLASH - ok
15:45:23.0065 0x0668  [ 6172DB160FC566CF24307941C0E94D8E, 81040AEF4E9D56F3514EC46ACF97CCEE38EF2E17CA18DC4FAE4A20561BA3B23C ] O2MDFRDR        C:\Windows\system32\drivers\O2MDFw7x64.sys
15:45:23.0088 0x0668  O2MDFRDR - ok
15:45:23.0099 0x0668  [ 8ED738ABA394BBF6D7802698BE453112, E91E8C27FA111CC20CCB05F41CBF181C398F48A980B523A041CACE242990F77A ] O2MDRRDR        C:\Windows\system32\drivers\O2MDRw7x64.sys
15:45:23.0120 0x0668  O2MDRRDR - ok
15:45:23.0146 0x0668  [ F9C35982D4CFC7DAA739125476E8F139, 027EE07C78F4D7BD4291B308B4AE9F4A0D0FE2C503A2122084FBDBDAECA1ED99 ] O2SDJRDR        C:\Windows\system32\drivers\o2sdjw7x64.sys
15:45:23.0167 0x0668  O2SDJRDR - ok
15:45:23.0188 0x0668  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
15:45:23.0227 0x0668  ohci1394 - ok
15:45:23.0292 0x0668  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:45:23.0334 0x0668  ose - ok
15:45:23.0561 0x0668  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
15:45:23.0694 0x0668  osppsvc - ok
15:45:23.0743 0x0668  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
15:45:23.0785 0x0668  p2pimsvc - ok
15:45:23.0806 0x0668  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
15:45:23.0856 0x0668  p2psvc - ok
15:45:23.0881 0x0668  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
15:45:23.0915 0x0668  Parport - ok
15:45:23.0938 0x0668  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
15:45:23.0962 0x0668  partmgr - ok
15:45:23.0988 0x0668  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc          C:\Windows\System32\pcasvc.dll
15:45:24.0029 0x0668  PcaSvc - ok
15:45:24.0050 0x0668  [ B26E102E0F54773119B162F56C9DD994, B28724DF87E838CFF7AC0E70E66C5F8FFA21B66BAEF8AE9CA148A7B51EF316CF ] pci             C:\Windows\system32\drivers\pci.sys
15:45:24.0084 0x0668  pci - ok
15:45:24.0110 0x0668  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
15:45:24.0131 0x0668  pciide - ok
15:45:24.0152 0x0668  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
15:45:24.0188 0x0668  pcmcia - ok
15:45:24.0207 0x0668  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
15:45:24.0235 0x0668  pcw - ok
15:45:24.0268 0x0668  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
15:45:24.0331 0x0668  PEAUTH - ok
15:45:24.0434 0x0668  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
15:45:24.0503 0x0668  PeerDistSvc - ok
15:45:24.0574 0x0668  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
15:45:24.0623 0x0668  PerfHost - ok
15:45:24.0701 0x0668  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
15:45:24.0801 0x0668  pla - ok
15:45:24.0875 0x0668  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
15:45:24.0912 0x0668  PlugPlay - ok
15:45:24.0937 0x0668  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
15:45:25.0000 0x0668  PNRPAutoReg - ok
15:45:25.0025 0x0668  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
15:45:25.0043 0x0668  PNRPsvc - ok
15:45:25.0090 0x0668  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
15:45:25.0166 0x0668  PolicyAgent - ok
15:45:25.0191 0x0668  [ A2CCA4FB273E6050F17A0A416CFF2FCD, C42BA18DF0C8E3F7358669A784E51E4DC7A4112096345EA699EDC95F561E0255 ] Power           C:\Windows\system32\umpo.dll
15:45:25.0213 0x0668  Power - ok
15:45:25.0246 0x0668  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
15:45:25.0312 0x0668  PptpMiniport - ok
15:45:25.0339 0x0668  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
15:45:25.0382 0x0668  Processor - ok
15:45:25.0415 0x0668  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
15:45:25.0474 0x0668  ProfSvc - ok
15:45:25.0494 0x0668  [ B6C7729936AAF8E0697F0A7DCA82CED8, 9706E5234364488DD18527AAC82760E5ECB6EC9EBFDD4D04D2708D3C9C576FE6 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:45:25.0511 0x0668  ProtectedStorage - ok
15:45:25.0535 0x0668  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
15:45:25.0570 0x0668  Psched - ok
15:45:25.0598 0x0668  [ 87B04878A6D59D6C79251DC960C674C1, 3EB8DB0624E646F0A65D0381408D35CF9FDC5ABFC30DF6431F4070A8EB68447C ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
15:45:25.0622 0x0668  PxHlpa64 - ok
15:45:25.0683 0x0668  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
15:45:25.0761 0x0668  ql2300 - ok
15:45:25.0780 0x0668  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
15:45:25.0807 0x0668  ql40xx - ok
15:45:25.0840 0x0668  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
15:45:25.0886 0x0668  QWAVE - ok
15:45:25.0913 0x0668  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
15:45:25.0953 0x0668  QWAVEdrv - ok
15:45:25.0964 0x0668  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
15:45:26.0004 0x0668  RasAcd - ok
15:45:26.0040 0x0668  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
15:45:26.0097 0x0668  RasAgileVpn - ok
15:45:26.0117 0x0668  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
15:45:26.0180 0x0668  RasAuto - ok
15:45:26.0205 0x0668  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
15:45:26.0265 0x0668  Rasl2tp - ok
15:45:26.0307 0x0668  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
15:45:26.0373 0x0668  RasMan - ok
15:45:26.0413 0x0668  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
15:45:26.0493 0x0668  RasPppoe - ok
15:45:26.0506 0x0668  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
15:45:26.0551 0x0668  RasSstp - ok
15:45:26.0604 0x0668  [ 71B6F78D6444CCE6F77BC42917A4E8F7, 34927A2C1CA349D251A327ED1F30018B065A8E6B886D9B5080A8AE2F6A8C0914 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
15:45:26.0674 0x0668  rdbss - ok
15:45:26.0688 0x0668  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
15:45:26.0712 0x0668  rdpbus - ok
15:45:26.0719 0x0668  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
15:45:26.0772 0x0668  RDPCDD - ok
15:45:26.0810 0x0668  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
15:45:26.0869 0x0668  RDPDR - ok
15:45:26.0898 0x0668  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
15:45:26.0935 0x0668  RDPENCDD - ok
15:45:26.0942 0x0668  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
15:45:26.0991 0x0668  RDPREFMP - ok
15:45:27.0066 0x0668  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
15:45:27.0120 0x0668  RdpVideoMiniport - ok
15:45:27.0152 0x0668  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
15:45:27.0221 0x0668  RDPWD - ok
15:45:27.0275 0x0668  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
15:45:27.0334 0x0668  rdyboost - ok
15:45:27.0428 0x0668  [ 2EC95080FAD2621C5E3034DE4C39A2A3, CFBF3283C4FB8A2AEDFA1048DEA7FAFCCFE972271D0E85B6947DB384D697F468 ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
15:45:27.0490 0x0668  RegSrvc - ok
15:45:27.0517 0x0668  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
15:45:27.0562 0x0668  RemoteAccess - ok
15:45:27.0601 0x0668  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
15:45:27.0667 0x0668  RemoteRegistry - ok
15:45:27.0704 0x0668  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
15:45:27.0743 0x0668  RFCOMM - ok
15:45:27.0815 0x0668  [ 7CCAEBCAB6FC1ED0206C07E083E79207, 40BFA1BEDFF093652279494EDD397FC094794B76916C2681D0544D6793314DFE ] RichVideo       C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
15:45:28.0189 0x0668  RichVideo - ok
15:45:28.0203 0x0668  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
15:45:28.0262 0x0668  RpcEptMapper - ok
15:45:28.0292 0x0668  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
15:45:28.0350 0x0668  RpcLocator - ok
15:45:28.0391 0x0668  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\System32\rpcss.dll
15:45:28.0442 0x0668  RpcSs - ok
15:45:28.0480 0x0668  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
15:45:28.0569 0x0668  rspndr - ok
15:45:28.0608 0x0668  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
15:45:28.0688 0x0668  s3cap - ok
15:45:28.0706 0x0668  [ B6C7729936AAF8E0697F0A7DCA82CED8, 9706E5234364488DD18527AAC82760E5ECB6EC9EBFDD4D04D2708D3C9C576FE6 ] SamSs           C:\Windows\system32\lsass.exe
15:45:28.0717 0x0668  SamSs - ok
15:45:28.0733 0x0668  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
15:45:28.0760 0x0668  sbp2port - ok
15:45:28.0794 0x0668  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
15:45:28.0853 0x0668  SCardSvr - ok
15:45:28.0877 0x0668  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
15:45:28.0935 0x0668  scfilter - ok
15:45:28.0990 0x0668  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
15:45:29.0044 0x0668  Schedule - ok
15:45:29.0069 0x0668  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
15:45:29.0098 0x0668  SCPolicySvc - ok
15:45:29.0171 0x0668  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus           C:\Windows\system32\drivers\sdbus.sys
15:45:29.0244 0x0668  sdbus - ok
15:45:29.0269 0x0668  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
15:45:29.0333 0x0668  SDRSVC - ok
15:45:29.0365 0x0668  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
15:45:29.0420 0x0668  secdrv - ok
15:45:29.0449 0x0668  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
15:45:29.0487 0x0668  seclogon - ok
15:45:29.0521 0x0668  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
15:45:29.0570 0x0668  SENS - ok
15:45:29.0593 0x0668  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
15:45:29.0614 0x0668  SensrSvc - ok
15:45:29.0626 0x0668  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
15:45:29.0657 0x0668  Serenum - ok
15:45:29.0686 0x0668  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
15:45:29.0726 0x0668  Serial - ok
15:45:29.0770 0x0668  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
15:45:29.0797 0x0668  sermouse - ok
15:45:29.0837 0x0668  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
15:45:29.0898 0x0668  SessionEnv - ok
15:45:29.0913 0x0668  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
15:45:29.0950 0x0668  sffdisk - ok
15:45:29.0962 0x0668  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
15:45:29.0984 0x0668  sffp_mmc - ok
15:45:29.0991 0x0668  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
15:45:30.0014 0x0668  sffp_sd - ok
15:45:30.0032 0x0668  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
15:45:30.0062 0x0668  sfloppy - ok
15:45:30.0091 0x0668  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
15:45:30.0148 0x0668  SharedAccess - ok
15:45:30.0178 0x0668  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:45:30.0235 0x0668  ShellHWDetection - ok
15:45:30.0257 0x0668  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
15:45:30.0278 0x0668  SiSRaid2 - ok
15:45:30.0299 0x0668  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
15:45:30.0322 0x0668  SiSRaid4 - ok
15:45:30.0348 0x0668  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
15:45:30.0411 0x0668  Smb - ok
15:45:30.0451 0x0668  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
15:45:30.0482 0x0668  SNMPTRAP - ok
15:45:30.0563 0x0668  [ 9CD1C53490EB5601870A69A8E40F7B12, 0F7E471E31D5CA7EEEF1BDC5D38384EE3C90E6949174707432CD16B59AC59266 ] SNP2UVC         C:\Windows\system32\DRIVERS\snp2uvc.sys
15:45:30.0677 0x0668  SNP2UVC - ok
15:45:30.0698 0x0668  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
15:45:30.0720 0x0668  spldr - ok
15:45:30.0756 0x0668  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
15:45:30.0801 0x0668  Spooler - ok
15:45:30.0946 0x0668  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
15:45:31.0068 0x0668  sppsvc - ok
15:45:31.0094 0x0668  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
15:45:31.0139 0x0668  sppuinotify - ok
15:45:31.0191 0x0668  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
15:45:31.0264 0x0668  srv - ok
15:45:31.0284 0x0668  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
15:45:31.0353 0x0668  srv2 - ok
15:45:31.0375 0x0668  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
15:45:31.0408 0x0668  srvnet - ok
15:45:31.0452 0x0668  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
15:45:31.0524 0x0668  SSDPSRV - ok
15:45:31.0544 0x0668  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
15:45:31.0598 0x0668  SstpSvc - ok
15:45:31.0627 0x0668  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
15:45:31.0647 0x0668  stexstor - ok
15:45:31.0682 0x0668  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
15:45:31.0747 0x0668  stisvc - ok
15:45:31.0771 0x0668  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
15:45:31.0792 0x0668  storflt - ok
15:45:31.0824 0x0668  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
15:45:31.0886 0x0668  StorSvc - ok
15:45:31.0915 0x0668  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
15:45:31.0958 0x0668  storvsc - ok
15:45:31.0984 0x0668  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
15:45:32.0005 0x0668  swenum - ok
15:45:32.0035 0x0668  [ 27FA8EBC9A28B57658F6747473CB5C8E, C095EB064D4B999D7CE1E5D9B56F88AC0BE3CDD7FE08E7402C04C2B69D13B657 ] swg3kflt03      C:\Windows\system32\drivers\swg3kflt03.sys
15:45:32.0058 0x0668  swg3kflt03 - ok
15:45:32.0086 0x0668  [ 143B763E71DF2ED586C278541F89432D, 896C5B286195FB0089A7A1BD586A7426570202FBA97E61E2BD3AD3AF51E14BAA ] swg3knmea03     C:\Windows\system32\drivers\swg3knmea03.sys
15:45:32.0144 0x0668  swg3knmea03 - ok
15:45:32.0180 0x0668  [ 143B763E71DF2ED586C278541F89432D, 896C5B286195FB0089A7A1BD586A7426570202FBA97E61E2BD3AD3AF51E14BAA ] swg3kser03      C:\Windows\system32\drivers\swg3kser03.sys
15:45:32.0215 0x0668  swg3kser03 - ok
15:45:32.0234 0x0668  [ B49E9DB5401ECC28A104E64F5434A38E, 8BF061B2DE8C0A917F9BB6B087C8088C58B403951EEF6AE42AC9552879D33751 ] swibus03        C:\Windows\system32\drivers\swibus03.sys
15:45:32.0276 0x0668  swibus03 - ok
15:45:32.0295 0x0668  [ B49E9DB5401ECC28A104E64F5434A38E, 8BF061B2DE8C0A917F9BB6B087C8088C58B403951EEF6AE42AC9552879D33751 ] swibusflt03     C:\Windows\system32\drivers\swibusflt03.sys
15:45:32.0321 0x0668  swibusflt03 - ok
15:45:32.0369 0x0668  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
15:45:32.0431 0x0668  swprv - ok
15:45:32.0497 0x0668  [ F5B46DF59FEAA48A442AED7EEB754D4B, 8415FDD5E7B4D4819BB9B0937CDF254548C871045787958BCF708096204B1714 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
15:45:32.0555 0x0668  SynTP - ok
15:45:32.0630 0x0668  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
15:45:32.0700 0x0668  SysMain - ok
15:45:32.0736 0x0668  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:45:32.0781 0x0668  TabletInputService - ok
15:45:33.0008 0x0668  [ 765FD4777D284BCE6325C98B33814F24, 03AFED0C796EF999E3EABCC1DB66C5C97AF1FDE9621497CD5EEBA364A46705D4 ] TabletServiceISD C:\Program Files\Tablet\ISD\ISD_Tablet.exe
15:45:33.0220 0x0668  TabletServiceISD - ok
15:45:33.0268 0x0668  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
15:45:33.0323 0x0668  TapiSrv - ok
15:45:33.0342 0x0668  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
15:45:33.0386 0x0668  TBS - ok
15:45:33.0501 0x0668  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
15:45:33.0596 0x0668  Tcpip - ok
15:45:33.0645 0x0668  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
15:45:33.0693 0x0668  TCPIP6 - ok
15:45:33.0718 0x0668  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
15:45:33.0743 0x0668  tcpipreg - ok
15:45:33.0773 0x0668  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
15:45:33.0814 0x0668  TDPIPE - ok
15:45:33.0834 0x0668  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
15:45:33.0860 0x0668  TDTCP - ok
15:45:33.0901 0x0668  [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
15:45:33.0966 0x0668  tdx - ok
15:45:33.0992 0x0668  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
15:45:34.0024 0x0668  TermDD - ok
15:45:34.0067 0x0668  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
15:45:34.0156 0x0668  TermService - ok
15:45:34.0181 0x0668  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
15:45:34.0219 0x0668  Themes - ok
15:45:34.0247 0x0668  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
15:45:34.0278 0x0668  THREADORDER - ok
15:45:34.0318 0x0668  [ DC474DF467A8B5EBC5C21C934B53E4B7, 04A295042E0DDBFE3F4F44B67253B6023E2B42D9509E34A9E4E3CFCA5A27AA07 ] tmactmon        C:\Windows\system32\DRIVERS\tmactmon.sys
15:45:34.0370 0x0668  tmactmon - ok
15:45:34.0420 0x0668  [ 50D5DAF12920A7EAA6A264C87E9AF0F2, 629EE92384C948C18134E3870DDEA2227DC7CF613413835E1FA021D2ACBECBA1 ] TMBMServer      C:\Program Files (x86)\Trend Micro\BM\TMBMSRV.exe
15:45:34.0467 0x0668  TMBMServer - ok
15:45:34.0543 0x0668  [ 0928EBFEDCD70E96D34A7E8162F41E38, 9A9B269ACFBFD81E63741687D1CAE25FE438D8C8BA5D76F801AA05005EE809D5 ] TmCCSF          C:\Program Files (x86)\Trend Micro\Security Agent\CCSF\TmCCSF.exe
15:45:34.0586 0x0668  TmCCSF - ok
15:45:34.0607 0x0668  [ E344B6FF501C8AA67507448FC8FF2ABC, DAECF49BBE511E6982172243C740ED5B32A43A2C18648CE799D9D4B400DAF9A4 ] tmcomm          C:\Windows\system32\DRIVERS\tmcomm.sys
15:45:34.0640 0x0668  tmcomm - ok
15:45:34.0656 0x0668  [ 67AC18DBA04CBE64599E20D9E1093275, AD84241A8AA9E2D3F3C15C2498F8F691614997B1677800F3040C526C59D9B962 ] tmevtmgr        C:\Windows\system32\DRIVERS\tmevtmgr.sys
15:45:34.0677 0x0668  tmevtmgr - ok
15:45:34.0712 0x0668  [ BB34D510A5DA561BCA257B4F7D9C9495, FC5D7BC1257DEA69A1A8E04243BF9DB3F5B4104F76148DFF6236274E1AE6CF83 ] TmFilter        C:\Program Files (x86)\Trend Micro\Security Agent\TmXPFlt.sys
15:45:34.0753 0x0668  TmFilter - ok
15:45:34.0910 0x0668  [ 8755DC02F7F00DC3751D03BCED40141D, 12988DF047CAE735470F49BD3D8BB54655E3EC1490175D5B4CDCFB89310C03BF ] tmlisten        C:\Program Files (x86)\Trend Micro\Security Agent\tmlisten.exe
15:45:35.0010 0x0668  tmlisten - ok
15:45:35.0044 0x0668  [ EAA84E5D1897147CBB753CD8DAFCA34C, 0D9E21F39E75B54E4AC88A804BFC9BCF784E84AB8DE0DBECC8D4DB3CD79FA095 ] TmPreFilter     C:\Program Files (x86)\Trend Micro\Security Agent\TmPreFlt.sys
15:45:35.0065 0x0668  TmPreFilter - ok
15:45:35.0129 0x0668  [ 5D3A20600C433744DA3C046A659EC721, C2FFECCDDD1260EF26EFA0935C79AA599C5C229CD75022236FD700981E216DDB ] TmProxy         C:\Program Files (x86)\Trend Micro\Security Agent\TmProxy.exe
15:45:35.0179 0x0668  TmProxy - ok
15:45:35.0210 0x0668  [ A42E6780C52B248AF54C6010A9A93384, D6870FE2404DD59277C9AC945279A5A5042C239423547750EE08CDB9F19C041F ] tmtdi           C:\Windows\system32\DRIVERS\tmtdi.sys
15:45:35.0257 0x0668  tmtdi - ok
15:45:35.0292 0x0668  [ BCF185C3EDB87FB2A0FB71E3576B402E, BD3033A0091130A8C37531E9606DF0FBE7CE5632542E72C5F57828484F92F7D2 ] TouchServiceISD C:\Program Files\Tablet\ISD\ISD_TouchService.exe
15:45:35.0344 0x0668  TouchServiceISD - ok
15:45:35.0365 0x0668  [ DBCC20C02E8A3E43B03C304A4E40A84F, BF5F3ACCB0342304A6870E94D2576644B08DBF307C853C7DBA4B82B0C7309DA4 ] TPM             C:\Windows\system32\drivers\tpm.sys
15:45:35.0405 0x0668  TPM - ok
15:45:35.0435 0x0668  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
15:45:35.0494 0x0668  TrkWks - ok
15:45:35.0540 0x0668  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:45:35.0628 0x0668  TrustedInstaller - ok
15:45:35.0655 0x0668  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
15:45:35.0684 0x0668  tssecsrv - ok
15:45:35.0730 0x0668  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
15:45:35.0766 0x0668  TsUsbFlt - ok
15:45:35.0806 0x0668  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
15:45:35.0853 0x0668  tunnel - ok
15:45:35.0867 0x0668  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
15:45:35.0891 0x0668  uagp35 - ok
15:45:35.0922 0x0668  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
15:45:36.0004 0x0668  udfs - ok
15:45:36.0039 0x0668  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
15:45:36.0063 0x0668  UI0Detect - ok
15:45:36.0094 0x0668  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
15:45:36.0118 0x0668  uliagpkx - ok
15:45:36.0143 0x0668  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
15:45:36.0182 0x0668  umbus - ok
15:45:36.0212 0x0668  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
15:45:36.0232 0x0668  UmPass - ok
15:45:36.0285 0x0668  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
15:45:36.0329 0x0668  UmRdpService - ok
15:45:36.0506 0x0668  [ E419566C7918A4C8E9497AFBD502FB2A, 3A206F603A46E8B536032942E78D1026A22B64FC84FFD4677A387763354E3321 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
15:45:36.0578 0x0668  UNS - ok
15:45:36.0618 0x0668  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
15:45:36.0690 0x0668  upnphost - ok
15:45:36.0726 0x0668  [ 91D3C92A44FC682DD791147604E79152, AA0B6799BF9C26C2C1793C91295288A4989AA43EC5E070B650DA7F0A142817CE ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
15:45:36.0782 0x0668  usbccgp - ok
15:45:36.0821 0x0668  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
15:45:36.0862 0x0668  usbcir - ok
15:45:36.0878 0x0668  [ F7FFDF2A1D19A76A87759126B244C816, C91F09D77E22D976952A46F7B93F611B719EDAF694D538242FA8FAF1BA9BB2F0 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
15:45:36.0912 0x0668  usbehci - ok
15:45:36.0939 0x0668  [ 245FE7FC634D6A993E682E0A9EBA4ABB, F7A536D215EE3A63358EC8B5946D7BB3B56357BF91347B07013E00DAC98775B6 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
15:45:37.0005 0x0668  usbhub - ok
15:45:37.0042 0x0668  [ C1A8966E0D09BFB501045105B30D86F2, 5BB95FBA441B898E258A3BFE174FC1042A04C19E25C59DE1FD90594290B11DA9 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
15:45:37.0080 0x0668  usbohci - ok
15:45:37.0108 0x0668  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
15:45:37.0133 0x0668  usbprint - ok
15:45:37.0160 0x0668  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:45:37.0225 0x0668  USBSTOR - ok
15:45:37.0236 0x0668  [ 2E682DCE4319A90E02A327F8A427544A, 3528C5A4669BAD53041085C3E72C64388D308E42AD9D1FAC85B6F2FFD81610FB ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
15:45:37.0260 0x0668  usbuhci - ok
15:45:37.0301 0x0668  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
15:45:37.0345 0x0668  usbvideo - ok
15:45:37.0374 0x0668  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
15:45:37.0414 0x0668  UxSms - ok
15:45:37.0426 0x0668  [ B6C7729936AAF8E0697F0A7DCA82CED8, 9706E5234364488DD18527AAC82760E5ECB6EC9EBFDD4D04D2708D3C9C576FE6 ] VaultSvc        C:\Windows\system32\lsass.exe
15:45:37.0436 0x0668  VaultSvc - ok
15:45:37.0460 0x0668  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
15:45:37.0481 0x0668  vdrvroot - ok
15:45:37.0523 0x0668  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
15:45:37.0604 0x0668  vds - ok
15:45:37.0623 0x0668  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
15:45:37.0658 0x0668  vga - ok
15:45:37.0674 0x0668  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
15:45:37.0714 0x0668  VgaSave - ok
15:45:37.0740 0x0668  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
15:45:37.0776 0x0668  vhdmp - ok
15:45:37.0797 0x0668  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
15:45:37.0819 0x0668  viaide - ok
15:45:37.0864 0x0668  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
15:45:37.0902 0x0668  vmbus - ok
15:45:37.0920 0x0668  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
15:45:37.0952 0x0668  VMBusHID - ok
15:45:37.0982 0x0668  [ 071E1B172D49154EE1D23A2ACC472EFB, 2E75ECE68F911F1FB0E8BEEFD8C7B8F794164335E1A1F2CE5D14126C9445BB7C ] volmgr          C:\Windows\system32\drivers\volmgr.sys
15:45:38.0004 0x0668  volmgr - ok
15:45:38.0037 0x0668  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
15:45:38.0075 0x0668  volmgrx - ok
15:45:38.0112 0x0668  [ DF8126BD41180351A093A3AD2FC8903B, AEFF4AA89CDDAAAD43CDE17C6B6EB2A397A0AC1651CBD51B889161EC2BC6527A ] volsnap         C:\Windows\system32\drivers\volsnap.sys
15:45:38.0156 0x0668  volsnap - ok
15:45:38.0190 0x0668  [ B4A73CA4EF9A02B9738CEA9AD5FE5917, B6A8086189FE2F1C3FE5B3F484FBA3DB2E5E1836F3154D30090F136C27D16166 ] vpcbus          C:\Windows\system32\DRIVERS\vpchbus.sys
15:45:38.0222 0x0668  vpcbus - ok
15:45:38.0249 0x0668  [ E675FB2B48C54F09895482E2253B289C, 68BBFBF2356C849722E429CA753CC309A3CCE8CF00EBDBBD2695ECD292324DF2 ] vpcnfltr        C:\Windows\system32\DRIVERS\vpcnfltr.sys
15:45:38.0289 0x0668  vpcnfltr - ok
15:45:38.0321 0x0668  [ 5FB42082B0D19A0268705F1DD343DF20, 62F8EEE6A507CE6A8BD638020118D71B78332F79BA82654AB702AE46B04767D9 ] vpcusb          C:\Windows\system32\DRIVERS\vpcusb.sys
15:45:38.0359 0x0668  vpcusb - ok
15:45:38.0412 0x0668  [ 207B6539799CC1C112661A9B620DD233, 6B915CC7F77C867516D94865D7BF2E5C815402EF0A4488C3EB2FEF7CFA6C98F6 ] vpcvmm          C:\Windows\system32\drivers\vpcvmm.sys
15:45:38.0466 0x0668  vpcvmm - ok
15:45:38.0550 0x0668  [ BA255A3188F429F4B4A40D53734023F4, 940618BDACD95D4497A1F8F0DA1436177A899C2C780A3DB543E997FCB39E2CB1 ] VSApiNt         C:\Program Files (x86)\Trend Micro\Security Agent\VSApiNt.sys
15:45:38.0633 0x0668  VSApiNt - ok
15:45:38.0676 0x0668  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
15:45:38.0703 0x0668  vsmraid - ok
15:45:38.0776 0x0668  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
15:45:38.0880 0x0668  VSS - ok
15:45:38.0898 0x0668  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
15:45:38.0922 0x0668  vwifibus - ok
15:45:38.0930 0x0668  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
15:45:38.0975 0x0668  vwififlt - ok
15:45:38.0992 0x0668  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
15:45:39.0026 0x0668  vwifimp - ok
15:45:39.0066 0x0668  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
15:45:39.0130 0x0668  W32Time - ok
15:45:39.0174 0x0668  [ C4ADEFA3E5744079ED32A1ED3DED514B, 33A65C6A858349A2935BCAF62A7142880F6B3FAC0F160EE45939F36499CD6314 ] wacomhidfilter  C:\Windows\system32\drivers\wacomhidfilter.sys
15:45:39.0192 0x0668  wacomhidfilter - ok
15:45:39.0209 0x0668  [ E04D43C7D1641E95D35CAE6086C7E350, BF08ED680EC835D70C522B91560B8987F206793E8E2987117C1D7B77DEFF8556 ] wacommousefilter C:\Windows\system32\drivers\wacommousefilter.sys
15:45:39.0226 0x0668  wacommousefilter - ok
15:45:39.0248 0x0668  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
15:45:39.0282 0x0668  WacomPen - ok
15:45:39.0304 0x0668  [ EC1CEB237E365330C1FCFC4876AA0AC0, 9BFF9062AC5E4B9D0C6502D8DE7E59B887903ED29F26157A5F82966932F1EBD0 ] wacomvhid       C:\Windows\system32\drivers\wacomvhid.sys
15:45:39.0321 0x0668  wacomvhid - ok
15:45:39.0346 0x0668  [ EF4D5242C0E2F74BA8E74C31F57A11CB, 9E27E03A055FF8A073487CF5B26137A354A69050A4D01426E99148F826CEE453 ] wacomvthid      C:\Windows\system32\drivers\WacomVTHid.sys
15:45:39.0366 0x0668  wacomvthid - ok
15:45:39.0414 0x0668  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
15:45:39.0463 0x0668  WANARP - ok
15:45:39.0467 0x0668  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
15:45:39.0496 0x0668  Wanarpv6 - ok
15:45:39.0561 0x0668  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
15:45:39.0630 0x0668  WatAdminSvc - ok
15:45:39.0693 0x0668  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
15:45:39.0794 0x0668  wbengine - ok
15:45:39.0826 0x0668  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
15:45:39.0861 0x0668  WbioSrvc - ok
15:45:39.0890 0x0668  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
15:45:39.0946 0x0668  wcncsvc - ok
15:45:39.0962 0x0668  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:45:40.0006 0x0668  WcsPlugInService - ok
15:45:40.0026 0x0668  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
15:45:40.0046 0x0668  Wd - ok
15:45:40.0089 0x0668  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
15:45:40.0145 0x0668  Wdf01000 - ok
15:45:40.0186 0x0668  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
15:45:40.0272 0x0668  WdiServiceHost - ok
15:45:40.0281 0x0668  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
15:45:40.0304 0x0668  WdiSystemHost - ok
15:45:40.0382 0x0668  [ 94DC2BF6CBAAA95E369C3756D3115A76, 3DF44939ADBB4E30896993A85470BE5E16B1A3EDADFDD8F113D9615A6E431C12 ] wdkmd           C:\Windows\system32\DRIVERS\WDKMD.sys
15:45:40.0404 0x0668  wdkmd - ok
15:45:40.0442 0x0668  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
15:45:40.0499 0x0668  WebClient - ok
15:45:40.0538 0x0668  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
15:45:40.0616 0x0668  Wecsvc - ok
15:45:40.0649 0x0668  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
15:45:40.0679 0x0668  wercplsupport - ok
15:45:40.0721 0x0668  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
15:45:40.0790 0x0668  WerSvc - ok
15:45:40.0830 0x0668  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
15:45:40.0874 0x0668  WfpLwf - ok
15:45:40.0913 0x0668  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
15:45:40.0933 0x0668  WIMMount - ok
15:45:40.0989 0x0668  WinDefend - ok
15:45:41.0001 0x0668  WinHttpAutoProxySvc - ok
15:45:41.0061 0x0668  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
15:45:41.0152 0x0668  Winmgmt - ok
15:45:41.0265 0x0668  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
15:45:41.0390 0x0668  WinRM - ok
15:45:41.0436 0x0668  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
15:45:41.0474 0x0668  WinUsb - ok
15:45:41.0520 0x0668  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
15:45:41.0555 0x0668  Wlansvc - ok
15:45:41.0605 0x0668  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
15:45:41.0651 0x0668  wlcrasvc - ok
15:45:41.0764 0x0668  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:45:41.0866 0x0668  wlidsvc - ok
15:45:41.0892 0x0668  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
15:45:41.0924 0x0668  WmiAcpi - ok
15:45:41.0958 0x0668  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
15:45:41.0972 0x0668  wmiApSrv - ok
15:45:41.0995 0x0668  WMPNetworkSvc - ok
15:45:42.0016 0x0668  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
15:45:42.0053 0x0668  WPCSvc - ok
15:45:42.0085 0x0668  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
15:45:42.0130 0x0668  WPDBusEnum - ok
15:45:42.0150 0x0668  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
15:45:42.0189 0x0668  ws2ifsl - ok
15:45:42.0215 0x0668  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
15:45:42.0240 0x0668  wscsvc - ok
15:45:42.0243 0x0668  WSearch - ok
15:45:42.0387 0x0668  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
15:45:42.0453 0x0668  wuauserv - ok
15:45:42.0483 0x0668  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
15:45:42.0518 0x0668  WudfPf - ok
15:45:42.0540 0x0668  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
15:45:42.0576 0x0668  WUDFRd - ok
15:45:42.0602 0x0668  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
15:45:42.0647 0x0668  wudfsvc - ok
15:45:42.0702 0x0668  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
15:45:42.0761 0x0668  WwanSvc - ok
15:45:42.0795 0x0668  ================ Scan global ===============================
15:45:42.0818 0x0668  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
15:45:42.0862 0x0668  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
15:45:42.0892 0x0668  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
15:45:42.0920 0x0668  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
15:45:42.0966 0x0668  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
15:45:42.0973 0x0668  [ Global ] - ok
15:45:42.0976 0x0668  ================ Scan MBR ==================================
15:45:42.0982 0x0668  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:45:43.0948 0x0668  \Device\Harddisk0\DR0 - ok
15:45:43.0948 0x0668  ================ Scan VBR ==================================
15:45:43.0955 0x0668  [ 7F9B24A4DC53909110E6C913BD352673 ] \Device\Harddisk0\DR0\Partition1
15:45:43.0957 0x0668  \Device\Harddisk0\DR0\Partition1 - ok
15:45:43.0992 0x0668  [ 431A6FDF2CEEE0D90603D2EFA5F51B78 ] \Device\Harddisk0\DR0\Partition2
15:45:43.0993 0x0668  \Device\Harddisk0\DR0\Partition2 - detected Rootkit.Boot.Cidox.b ( 0 )
15:45:43.0993 0x0668  \Device\Harddisk0\DR0\Partition2 ( Rootkit.Boot.Cidox.b ) - infected
15:45:46.0464 0x0668  ================ Scan generic autorun ======================
15:45:46.0843 0x0668  [ B765660889FB730A1AC49AC7E5A5493D, 1C18A7C08196B484D46D1AABC4DE70B2DB889C538CF9506535A4A8D531C5F2F7 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
15:45:47.0283 0x0668  RtHDVCpl - ok
15:45:47.0342 0x0668  [ 002B60F7B8A6786FF708ED67423D963B, F8A5B8A840E62A1E7EB9D8A18BAF15090CFA2986B1F9DA4715692627366F942B ] C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
15:45:47.0353 0x0668  LoadFUJ02E3 - ok
15:45:47.0354 0x0668  SynTPEnh - ok
15:45:47.0411 0x0668  [ F920461576C6584E754624806549CA09, 6F87C10F487A2591957E4CA41049F0B0DBD6B23844A2C0399CA1F1A46E04CE99 ] C:\Program Files\Fujitsu\BatteryAid2\BatteryDaemon.exe
15:45:47.0443 0x0668  FJBATAID2 - ok
15:45:47.0455 0x0668  [ 0663DC78CDC8DD73EF00C2B6D7850803, 1EC7825877EC43F2F1B4356FD9BFCCCC7E41ED12EE8AA361372F9CA0B6DA32B0 ] C:\Program Files\Fujitsu\Utils\FjStrtAp.exe
15:45:47.0477 0x0668  FjStrtAp - ok
15:45:47.0514 0x0668  [ 0892837BF89C842D518AC3A323992B47, 5E314AD8FCB7837C415E18B7619B1220239DDF44431145800F11FA7DE4AEFB2A ] C:\windows\vsnp2uvc.exe
15:45:47.0615 0x0668  snp2uvc - ok
15:45:47.0629 0x0668  [ F01A0F1FE0D1ED2C2A5729E740150FD1, 4F35967DF0CC2A3FB5E7EA8D9F1EBA8285DC3094148466D177F81E12FB8EF98D ] C:\windows\snuvcdsm.exe
15:45:47.0776 0x0668  SNUVCDSM - ok
15:45:47.0854 0x0668  [ 5C39358B816C63D3B8EEE027AEA51995, 5311E686930293FF7D9BB2D309CB1E575DC8DF8C5E4E21F411750A97BF3C9365 ] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
15:45:47.0961 0x0668  IntelPAN - ok
15:45:47.0986 0x0668  ATSwpNav - ok
15:45:48.0007 0x0668  LogMeIn GUI - ok
15:45:48.0034 0x0668  [ 66724A618AE160D8C9B6D615FEC5FFBA, A5A178E838368D7ACF5BD36847F8613C1AE12BA21FE182EF212CC7046492B776 ] C:\Windows\system32\igfxtray.exe
15:45:48.0068 0x0668  IgfxTray - ok
15:45:48.0098 0x0668  [ 502BCD63B8C59C062EE4B2EC4EB0FD89, 1E55E9256C3FCF57B3CDF58C063427D1AC2D87D668AB91EF9EFE47E64592039F ] C:\Windows\system32\hkcmd.exe
15:45:48.0142 0x0668  HotKeysCmds - ok
15:45:48.0186 0x0668  [ 84B6743FF8C82CAA1B72AC0FF031D751, DAF55FD541EBB5BF885ED4AD694D9894CD12BB14FFBBCF347BD3DB37C846F1F0 ] C:\Windows\system32\igfxpers.exe
15:45:48.0238 0x0668  Persistence - ok
15:45:48.0278 0x0668  [ 15939A477158B9954543D3E13B61F080, 64E49374E4A796794A8E6C2F11A3299A423E91BBA27C72E7C86A12711903AB8C ] C:\Program Files\Fujitsu\FDM7\FdmDaemon.exe
15:45:48.0315 0x0668  FDM7 - ok
15:45:48.0362 0x0668  [ DEBF34BCF45FC4764CFF6F4CEBD1E03C, BD82FBC62B14181BD6714D797CA0869AD5E2D8F69D05EAEF295BB069730A9289 ] C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe
15:45:48.0384 0x0668  IndicatorUtility - ok
15:45:48.0400 0x0668  [ 7B89EF5A5A46D4B5924D392D74437CAA, F83E9BE96BCF55CD02CB0B50B345E24E6FD78ADA52EBF859E357E8DD81947B9C ] C:\Program Files (x86)\Fujitsu\PointingDeviceUtility\FJPDAutoSet.exe
15:45:48.0428 0x0668  StartFujitsuPointingDeviceUtility - ok
15:45:48.0454 0x0668  [ 0892837BF89C842D518AC3A323992B47, 5E314AD8FCB7837C415E18B7619B1220239DDF44431145800F11FA7DE4AEFB2A ] C:\windows\vsnp2uvc.exe
15:45:48.0480 0x0668  snp2uvc - ok
15:45:48.0512 0x0668  [ 9D51EA92A612B37E76E5E4621650C50A, 00BD61C8527A80C0F684882379A0AC2E5A54E8BBECC797087B960CDC8454C373 ] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
15:45:48.0552 0x0668  NUSB3MON - ok
15:45:48.0600 0x0668  [ 4EFCDF3DB1BBA69C09622991280C4ACB, A86D4694BCFFF3C0FAF07C56A410A8317A953FB581CDCDBED5CAF735A0E2AC0D ] C:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe
15:45:48.0643 0x0668  UpdatePDRShortCut - ok
15:45:48.0685 0x0668  [ F5FBA8724DE219E96D9ABAF4772D31A3, C36CF6E40F831E01BA029B571EFCB46C5EA5A11750D13FE979DDFAE8B916AFFB ] C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe
15:45:48.0714 0x0668  RemoteControl9 - ok
15:45:48.0806 0x0668  [ 2EBE05FD8ECBA5F230FC26E534E91A11, B8E85D51BD4E6C0D4D447DFA327EAA0AE4A33F04F42063A58122153933C1770E ] C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
15:45:48.0861 0x0668  ConnectionCenter - ok
15:45:48.0938 0x0668  [ 6CB69CDF202BE1DF62A07DFFFBB2C140, 76A5B4E8D5AEF6EED648301C0C638BE1CDDC313FFF48E2A07DDEF8B0AC7E9503 ] C:\Program Files (x86)\Trend Micro\Security Agent\pccntmon.exe
15:45:49.0010 0x0668  OfficeScanNT Monitor - ok
15:45:49.0045 0x0668  [ 17D9622BFE68386E8C647C4C7F8FEA3E, 50F943F2E47512DCE61A9EBB188361CB71CACC74D9397FA1367AB7112F2C7A09 ] C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
15:45:49.0078 0x0668  Redirector - ok
15:45:49.0093 0x0668  swg - ok
15:45:49.0120 0x0668  [ 0E8B8ABEA4E23DDC9A70614F3F651303, 66FC6B68E54B8840A38B4DE980CC22AED21009AFC1494A9CC68E892329F076A1 ] C:\Windows\system32\dpapimig.exe
15:45:49.0164 0x0668  DPAPIKeyMig - ok
15:45:49.0216 0x0668  [ EF162817C730DB9355F6C28F2445D206, 84AC974BF163A6EB540744435FD65ADC951ECF1BFF77DBA7D2B5D9F389E1DAD7 ] C:\Program Files (x86)\Windows Mail\wab.exe
15:45:49.0300 0x0668  WAB Migrate - ok
15:45:49.0301 0x0668  swg - ok
15:45:49.0303 0x0668  Waiting for KSN requests completion. In queue: 21
15:45:50.0301 0x0668  Waiting for KSN requests completion. In queue: 21
15:45:51.0300 0x0668  Waiting for KSN requests completion. In queue: 21
15:45:52.0510 0x0668  AV detected via SS2: Trend Micro Security Agent, C:\Program Files (x86)\Trend Micro\Security Agent\Pccntmon.exe ( 19.0.0.2166 ), 0x41000 ( enabled : updated )
15:45:52.0616 0x0668  Win FW state via NFP2: disabled
15:45:55.0059 0x0668  ============================================================
15:45:55.0059 0x0668  Scan finished
15:45:55.0059 0x0668  ============================================================
15:45:55.0066 0x1810  Detected object count: 1
15:45:55.0066 0x1810  Actual detected object count: 1
15:47:03.0922 0x1810  \Device\Harddisk0\DR0\Partition2 ( Rootkit.Boot.Cidox.b ) - skipped by user
15:47:03.0922 0x1810  \Device\Harddisk0\DR0\Partition2 ( Rootkit.Boot.Cidox.b ) - User select action: Skip 
 


#14 deeprybka

deeprybka

  • Malware Response Team
  • 5,198 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:11:59 PM

Posted 29 April 2015 - 04:13 PM

Hi,

warning.gif Malware Warning

If your computer was used for online banking, has credit card information or other sensitive data, using a non-infected computer/device you should immediately change all account information (including those used for banking, Email, eBay, Paypal, online forums, etc).

Step 1

Start TDSStdsskiller.pngiller.exe again with administrator privileges.

  • Set the parameters like in the first scan and click on Start scan.
  • This time select for the threat Rootkit.Boot.Cidox.b (and only for that!) the option Cure (or Delete).
  • Click on Continue and allow the reboot.
  • Copy and paste the log file (C:\TDSSKiller.<version_date_time>_log.txt) of this run in your next reply.

regards,
deeprybka
:busy:
Neminem laede, immo omnes, quantum potes, iuva. Arthur Schopenhauer
 
unite_blue.png
asap.png

#15 Micah Davis

Micah Davis
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:04:59 PM

Posted 29 April 2015 - 04:27 PM

16:19:32.0779 0x1f9c  TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
16:19:36.0496 0x1f9c  ============================================================
16:19:36.0496 0x1f9c  Current date / time: 2015/04/29 16:19:36.0496
16:19:36.0496 0x1f9c  SystemInfo:
16:19:36.0496 0x1f9c  
16:19:36.0496 0x1f9c  OS Version: 6.1.7601 ServicePack: 1.0
16:19:36.0496 0x1f9c  Product type: Workstation
16:19:36.0496 0x1f9c  ComputerName: HVSDR1
16:19:36.0496 0x1f9c  UserName: dshin
16:19:36.0496 0x1f9c  Windows directory: C:\Windows
16:19:36.0496 0x1f9c  System windows directory: C:\Windows
16:19:36.0496 0x1f9c  Running under WOW64
16:19:36.0496 0x1f9c  Processor architecture: Intel x64
16:19:36.0496 0x1f9c  Number of processors: 4
16:19:36.0496 0x1f9c  Page size: 0x1000
16:19:36.0496 0x1f9c  Boot type: Normal boot
16:19:36.0496 0x1f9c  ============================================================
16:19:36.0724 0x1f9c  KLMD registered as C:\Windows\system32\drivers\99381455.sys
16:19:37.0677 0x1f9c  System UUID: {48A28758-DA67-AB5B-387A-31F773F3E2AE}
16:19:38.0431 0x1f9c  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:19:38.0438 0x1f9c  ============================================================
16:19:38.0438 0x1f9c  \Device\Harddisk0\DR0:
16:19:38.0438 0x1f9c  MBR partitions:
16:19:38.0438 0x1f9c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x25392000
16:19:38.0438 0x1f9c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x25392800, BlocksNum 0x96000
16:19:38.0438 0x1f9c  ============================================================
16:19:38.0486 0x1f9c  C: <-> \Device\Harddisk0\DR0\Partition1
16:19:38.0486 0x1f9c  ============================================================
16:19:38.0486 0x1f9c  Initialize success
16:19:38.0487 0x1f9c  ============================================================
16:19:40.0265 0x1a38  ============================================================
16:19:40.0265 0x1a38  Scan started
16:19:40.0265 0x1a38  Mode: Manual; 
16:19:40.0265 0x1a38  ============================================================
16:19:40.0265 0x1a38  KSN ping started
16:19:43.0138 0x1a38  KSN ping finished: true
16:19:44.0592 0x1a38  ================ Scan system memory ========================
16:19:44.0592 0x1a38  System memory - ok
16:19:44.0592 0x1a38  ================ Scan services =============================
16:19:44.0776 0x1a38  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
16:19:44.0781 0x1a38  1394ohci - ok
16:19:44.0845 0x1a38  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
16:19:44.0854 0x1a38  ACPI - ok
16:19:44.0903 0x1a38  [ 12C5274CD87449A2A37A607CDB321922, 50FA524E66A8FA04037DC954D3AB5383C633898F111A3B7488630B649B897370 ] acpials         C:\Windows\system32\DRIVERS\acpials.sys
16:19:44.0904 0x1a38  acpials - ok
16:19:44.0929 0x1a38  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
16:19:44.0930 0x1a38  AcpiPmi - ok
16:19:45.0025 0x1a38  [ FC5B75CA6A1DA31EDD4F8D53F5540B98, CDC445F2790ADFC4C5568C40D4DA8BB95CD71991665B38AEC3D84571C99C3520 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:19:45.0028 0x1a38  AdobeARMservice - ok
16:19:45.0153 0x1a38  [ B04A4810C6CC205F9DC72DC22E4AB236, 547321F5C28C80D4818372D65E2A33D4BAC593015DD6613B24586FE4B4A95D5D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:19:45.0158 0x1a38  AdobeFlashPlayerUpdateSvc - ok
16:19:45.0236 0x1a38  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
16:19:45.0247 0x1a38  adp94xx - ok
16:19:45.0292 0x1a38  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
16:19:45.0298 0x1a38  adpahci - ok
16:19:45.0322 0x1a38  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
16:19:45.0327 0x1a38  adpu320 - ok
16:19:45.0357 0x1a38  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:19:45.0359 0x1a38  AeLookupSvc - ok
16:19:45.0425 0x1a38  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
16:19:45.0435 0x1a38  AFD - ok
16:19:45.0491 0x1a38  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
16:19:45.0493 0x1a38  agp440 - ok
16:19:45.0534 0x1a38  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
16:19:45.0537 0x1a38  ALG - ok
16:19:45.0574 0x1a38  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
16:19:45.0575 0x1a38  aliide - ok
16:19:45.0593 0x1a38  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
16:19:45.0593 0x1a38  amdide - ok
16:19:45.0631 0x1a38  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
16:19:45.0633 0x1a38  AmdK8 - ok
16:19:45.0653 0x1a38  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
16:19:45.0655 0x1a38  AmdPPM - ok
16:19:45.0685 0x1a38  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
16:19:45.0687 0x1a38  amdsata - ok
16:19:45.0717 0x1a38  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
16:19:45.0724 0x1a38  amdsbs - ok
16:19:45.0754 0x1a38  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
16:19:45.0755 0x1a38  amdxata - ok
16:19:45.0791 0x1a38  [ 90C53BD47979FB8814F465A08B885102, 5EDFC1909FC1FF9133A534DFCC5408CF3A777AC41FB21FAD375436E3D86C02EC ] AppID           C:\Windows\system32\drivers\appid.sys
16:19:45.0793 0x1a38  AppID - ok
16:19:45.0814 0x1a38  [ 72D4757510FDA69D729169C00AFC211E, FB9686D0D94EE7C19A3994C29E8331A6EC3020B2980B2CC75F72F3AB25512C15 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
16:19:45.0816 0x1a38  AppIDSvc - ok
16:19:45.0854 0x1a38  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
16:19:45.0856 0x1a38  Appinfo - ok
16:19:45.0919 0x1a38  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
16:19:45.0925 0x1a38  AppMgmt - ok
16:19:45.0987 0x1a38  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
16:19:45.0990 0x1a38  arc - ok
16:19:46.0011 0x1a38  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
16:19:46.0017 0x1a38  arcsas - ok
16:19:46.0146 0x1a38  [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:19:46.0148 0x1a38  aspnet_state - ok
16:19:46.0171 0x1a38  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
16:19:46.0172 0x1a38  AsyncMac - ok
16:19:46.0217 0x1a38  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
16:19:46.0218 0x1a38  atapi - ok
16:19:46.0382 0x1a38  [ FA47E65AA0C1DBC6DFEB7E9C6F12A5EA, 26B3908845D2F325AF806B5564510CB93F39206BC20D2D784F4BE426B3250709 ] ATService       C:\Program Files\Fingerprint Sensor\ATService.exe
16:19:46.0464 0x1a38  ATService - ok
16:19:46.0520 0x1a38  [ 4131DABB573D70FDA332A55F206F6CFF, E6869CAC2B79502C84D8D2BB8566D90F7A24A95B9F44B461D61A00200C9F436B ] ATSwpWDF        C:\Windows\system32\Drivers\ATSwpWDF.sys
16:19:46.0540 0x1a38  ATSwpWDF - ok
16:19:46.0591 0x1a38  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:19:46.0609 0x1a38  AudioEndpointBuilder - ok
16:19:46.0638 0x1a38  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv        C:\Windows\System32\Audiosrv.dll
16:19:46.0652 0x1a38  AudioSrv - ok
16:19:46.0697 0x1a38  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
16:19:46.0702 0x1a38  AxInstSV - ok
16:19:46.0755 0x1a38  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
16:19:46.0768 0x1a38  b06bdrv - ok
16:19:46.0804 0x1a38  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
16:19:46.0811 0x1a38  b57nd60a - ok
16:19:46.0843 0x1a38  BAPIDRV - ok
16:19:46.0897 0x1a38  [ F8FE7E12F8151E0A17C23CF840599F9A, 5D1AA3A5DAC08B521A7BE775F32434AFF1F5F19B69CD16D2D94B0D399E61C371 ] bcbtums         C:\Windows\system32\drivers\bcbtums.sys
16:19:46.0903 0x1a38  bcbtums - ok
16:19:47.0000 0x1a38  [ ACB44407FF63C3A5A22AB5782F209604, 86BE221F07EB49D2149710CCCE4F0C24677560FEFD41F093C6D2BA0C962CF5C3 ] BcmBtRSupport   C:\Windows\system32\BtwRSupportService.exe
16:19:47.0045 0x1a38  BcmBtRSupport - ok
16:19:47.0073 0x1a38  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
16:19:47.0076 0x1a38  BDESVC - ok
16:19:47.0100 0x1a38  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
16:19:47.0101 0x1a38  Beep - ok
16:19:47.0167 0x1a38  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
16:19:47.0182 0x1a38  BFE - ok
16:19:47.0217 0x1a38  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll
16:19:47.0239 0x1a38  BITS - ok
16:19:47.0272 0x1a38  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
16:19:47.0275 0x1a38  blbdrive - ok
16:19:47.0301 0x1a38  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
16:19:47.0304 0x1a38  bowser - ok
16:19:47.0336 0x1a38  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
16:19:47.0338 0x1a38  BrFiltLo - ok
16:19:47.0349 0x1a38  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
16:19:47.0350 0x1a38  BrFiltUp - ok
16:19:47.0389 0x1a38  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
16:19:47.0392 0x1a38  BridgeMP - ok
16:19:47.0432 0x1a38  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
16:19:47.0436 0x1a38  Browser - ok
16:19:47.0468 0x1a38  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
16:19:47.0476 0x1a38  Brserid - ok
16:19:47.0495 0x1a38  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
16:19:47.0497 0x1a38  BrSerWdm - ok
16:19:47.0508 0x1a38  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
16:19:47.0509 0x1a38  BrUsbMdm - ok
16:19:47.0536 0x1a38  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
16:19:47.0538 0x1a38  BrUsbSer - ok
16:19:47.0573 0x1a38  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
16:19:47.0576 0x1a38  BthEnum - ok
16:19:47.0595 0x1a38  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
16:19:47.0599 0x1a38  BTHMODEM - ok
16:19:47.0621 0x1a38  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
16:19:47.0624 0x1a38  BthPan - ok
16:19:47.0697 0x1a38  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
16:19:47.0710 0x1a38  BTHPORT - ok
16:19:47.0737 0x1a38  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
16:19:47.0740 0x1a38  bthserv - ok
16:19:47.0771 0x1a38  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
16:19:47.0773 0x1a38  BTHUSB - ok
16:19:47.0809 0x1a38  [ BC279FCEE9FC8CBF991D5DE539771AA9, 5DE007672BFBFA78C44CC08251F495420402AFF4AD01541AA84AD37BD4A58190 ] BTWAMPFL        C:\Windows\system32\DRIVERS\btwampfl.sys
16:19:47.0812 0x1a38  BTWAMPFL - ok
16:19:47.0855 0x1a38  [ F6135859A582A7294BA7A3336E08BAA1, DE30457F91C25950C2713CE3A2AE1F1EFFBB068DD3B0BCC87700E7CBAF73C818 ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
16:19:47.0858 0x1a38  btwaudio - ok
16:19:47.0886 0x1a38  [ 3DEF2370E414B4E299673558BA171A51, 5A0923D9F941ABD34EC9BEE0EB62A62F135CBF128061239CC6EA0E6752791636 ] btwavdt         C:\Windows\system32\drivers\btwavdt.sys
16:19:47.0890 0x1a38  btwavdt - ok
16:19:47.0963 0x1a38  [ 36E3016BEDC45274E00E2943B591AEEF, D569925A87D924AA8079DE89D6F8EF68B64D90997110999258F718714C5D926B ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
16:19:47.0988 0x1a38  btwdins - ok
16:19:48.0027 0x1a38  [ 07096D2BC22CCB6CEA5A532DF0BE8A75, A9B7F2EFFDF1E4EC0A5DC098F0ED2BE44E271844A4F1CBAD2FA1655DE1E03F6E ] btwl2cap        C:\Windows\system32\DRIVERS\btwl2cap.sys
16:19:48.0032 0x1a38  btwl2cap - ok
16:19:48.0055 0x1a38  [ 9937E0E4DFC0030560A6DFE9D3A94B39, 0B9CF1932D4534BD7B1F5D7B7BD5FBF9C8D156838D24ABBDE475E79EEF1150F1 ] btwrchid        C:\Windows\system32\DRIVERS\btwrchid.sys
16:19:48.0056 0x1a38  btwrchid - ok
16:19:48.0082 0x1a38  catchme - ok
16:19:48.0103 0x1a38  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
16:19:48.0106 0x1a38  cdfs - ok
16:19:48.0152 0x1a38  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
16:19:48.0156 0x1a38  cdrom - ok
16:19:48.0189 0x1a38  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
16:19:48.0191 0x1a38  CertPropSvc - ok
16:19:48.0217 0x1a38  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
16:19:48.0219 0x1a38  circlass - ok
16:19:48.0257 0x1a38  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
16:19:48.0267 0x1a38  CLFS - ok
16:19:48.0334 0x1a38  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:19:48.0337 0x1a38  clr_optimization_v2.0.50727_32 - ok
16:19:48.0368 0x1a38  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:19:48.0371 0x1a38  clr_optimization_v2.0.50727_64 - ok
16:19:48.0454 0x1a38  [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:19:48.0456 0x1a38  clr_optimization_v4.0.30319_32 - ok
16:19:48.0473 0x1a38  [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:19:48.0477 0x1a38  clr_optimization_v4.0.30319_64 - ok
16:19:48.0480 0x1a38  clwvd - ok
16:19:48.0525 0x1a38  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
16:19:48.0526 0x1a38  CmBatt - ok
16:19:48.0548 0x1a38  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
16:19:48.0549 0x1a38  cmdide - ok
16:19:48.0596 0x1a38  [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG             C:\Windows\system32\Drivers\cng.sys
16:19:48.0608 0x1a38  CNG - ok
16:19:48.0633 0x1a38  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
16:19:48.0634 0x1a38  Compbatt - ok
16:19:48.0668 0x1a38  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
16:19:48.0670 0x1a38  CompositeBus - ok
16:19:48.0691 0x1a38  COMSysApp - ok
16:19:48.0730 0x1a38  cpuz137 - ok
16:19:48.0757 0x1a38  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
16:19:48.0758 0x1a38  crcdisk - ok
16:19:48.0799 0x1a38  [ 1CD76A83B9E8E9A5A3519B39E28354D9, F9931743B99820FFBFB13136DFFD92F86802D543F9D8478648CDC554FB38899D ] CryptSvc        C:\Windows\system32\cryptsvc.dll
16:19:48.0806 0x1a38  CryptSvc - ok
16:19:48.0847 0x1a38  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
16:19:48.0863 0x1a38  CSC - ok
16:19:48.0912 0x1a38  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
16:19:48.0926 0x1a38  CscService - ok
16:19:48.0975 0x1a38  [ A193FAE9BF40D981C3094252B17DE601, 585E9F48676DA26DBD30398E4D0E33378D25CB726EFA973E48B69F31C96A6E4E ] ctxusbm         C:\Windows\system32\DRIVERS\ctxusbm.sys
16:19:48.0980 0x1a38  ctxusbm - ok
16:19:49.0027 0x1a38  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
16:19:49.0038 0x1a38  DcomLaunch - ok
16:19:49.0075 0x1a38  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
16:19:49.0085 0x1a38  defragsvc - ok
16:19:49.0115 0x1a38  [ CF1F6326AC44C42F4615D4BD53188AC5, 28DC32F1957918C3D5DE72415CC32A51C6885CAA38119FE475D2631269D3B9B3 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
16:19:49.0118 0x1a38  DfsC - ok
16:19:49.0157 0x1a38  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
16:19:49.0168 0x1a38  Dhcp - ok
16:19:49.0222 0x1a38  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
16:19:49.0223 0x1a38  discache - ok
16:19:49.0257 0x1a38  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
16:19:49.0260 0x1a38  Disk - ok
16:19:49.0327 0x1a38  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
16:19:49.0332 0x1a38  Dnscache - ok
16:19:49.0366 0x1a38  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
16:19:49.0376 0x1a38  dot3svc - ok
16:19:49.0409 0x1a38  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
16:19:49.0415 0x1a38  DPS - ok
16:19:49.0461 0x1a38  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
16:19:49.0463 0x1a38  drmkaud - ok
16:19:49.0525 0x1a38  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
16:19:49.0546 0x1a38  DXGKrnl - ok
16:19:49.0582 0x1a38  [ DC1776D086AA9733B1929A3D979D9FDD, C7EEF160C615948CCCDE3B56C43F8A1E348B4E1212E0DDDB8A9EC2EC14FF73EE ] e1cexpress      C:\Windows\system32\DRIVERS\e1c62x64.sys
16:19:49.0588 0x1a38  e1cexpress - ok
16:19:49.0624 0x1a38  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
16:19:49.0627 0x1a38  EapHost - ok
16:19:49.0731 0x1a38  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
16:19:49.0806 0x1a38  ebdrv - ok
16:19:49.0842 0x1a38  [ B6C7729936AAF8E0697F0A7DCA82CED8, 9706E5234364488DD18527AAC82760E5ECB6EC9EBFDD4D04D2708D3C9C576FE6 ] EFS             C:\Windows\System32\lsass.exe
16:19:49.0844 0x1a38  EFS - ok
16:19:49.0910 0x1a38  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
16:19:49.0928 0x1a38  ehRecvr - ok
16:19:49.0953 0x1a38  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
16:19:49.0958 0x1a38  ehSched - ok
16:19:50.0013 0x1a38  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
16:19:50.0029 0x1a38  elxstor - ok
16:19:50.0057 0x1a38  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
16:19:50.0059 0x1a38  ErrDev - ok
16:19:50.0110 0x1a38  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
16:19:50.0118 0x1a38  EventSystem - ok
16:19:50.0217 0x1a38  [ 7A526761229C10B0D8508B905F0FEE4C, D091DC3A2FD08AD6A58AA9C8F9FC567547EDEEAC6F7314F0AA8416C72E7807F6 ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
16:19:50.0250 0x1a38  EvtEng - ok
16:19:50.0270 0x1a38  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
16:19:50.0276 0x1a38  exfat - ok
16:19:50.0312 0x1a38  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
16:19:50.0318 0x1a38  fastfat - ok
16:19:50.0377 0x1a38  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
16:19:50.0397 0x1a38  Fax - ok
16:19:50.0420 0x1a38  [ 9955BF48FD2FA8D481848CD3024EDD0B, 327E290141625C3E810D741CA106651C5A8EEF5DFA6477ACC5843D9D80DFC6FA ] FBIOSDRV        C:\Windows\system32\Drivers\FBIOSDRV.sys
16:19:50.0421 0x1a38  FBIOSDRV - ok
16:19:50.0448 0x1a38  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
16:19:50.0449 0x1a38  fdc - ok
16:19:50.0485 0x1a38  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
16:19:50.0486 0x1a38  fdPHost - ok
16:19:50.0500 0x1a38  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
16:19:50.0502 0x1a38  FDResPub - ok
16:19:50.0519 0x1a38  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
16:19:50.0523 0x1a38  FileInfo - ok
16:19:50.0548 0x1a38  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
16:19:50.0550 0x1a38  Filetrace - ok
16:19:50.0605 0x1a38  [ 5E5203A036F5477B302EF15494D8A9D4, A70E8BAC9CC0DFAF3891F7A85AD24682B2654DE509A51C37FD480F0FD573B29D ] Fjbtndrv        C:\Windows\system32\drivers\FjBtnDrv.sys
16:19:50.0607 0x1a38  Fjbtndrv - ok
16:19:50.0623 0x1a38  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
16:19:50.0624 0x1a38  flpydisk - ok
16:19:50.0666 0x1a38  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
16:19:50.0674 0x1a38  FltMgr - ok
16:19:50.0746 0x1a38  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
16:19:50.0769 0x1a38  FontCache - ok
16:19:50.0806 0x1a38  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:19:50.0808 0x1a38  FontCache3.0.0.0 - ok
16:19:50.0842 0x1a38  [ B9E19421B9CA13C2929AAFFFF13324D1, 48FACDFCE10AE41DF92AA9BB070C96114672685BD50F6CF823A78E8224ABC4E5 ] FscEfDmi        C:\Windows\system32\DRIVERS\FscEfDmi.sys
16:19:50.0843 0x1a38  FscEfDmi - ok
16:19:50.0865 0x1a38  [ 54BD9A8DF2330E41EB7FC13A3894A161, 64587F11DE7FE503E264F45D51717CA229BA874A9DCD7A526A9625367FA96DE8 ] FscGabi         C:\Windows\system32\DRIVERS\FscGabi.sys
16:19:50.0867 0x1a38  FscGabi - ok
16:19:50.0886 0x1a38  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
16:19:50.0888 0x1a38  FsDepends - ok
16:19:50.0914 0x1a38  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
16:19:50.0915 0x1a38  Fs_Rec - ok
16:19:50.0935 0x1a38  [ BA0C1FFDA496D8BCBCAC63F8D98D20E3, 28D37F07A58D5AFA48A18BB4A780A36A3F8D49E94DE8CA5071071CCF16C0C090 ] FUJ02B1         C:\Windows\system32\drivers\FUJ02B1.sys
16:19:50.0935 0x1a38  FUJ02B1 - ok
16:19:50.0961 0x1a38  [ 7135030CBF87D724B6037BB023923730, 1F6D9A7D7033226507DEDD53CB686C0F3CDC15FD7E77DBC5263256E8EB541E4E ] FUJ02E3         C:\Windows\system32\drivers\FUJ02E3.sys
16:19:50.0962 0x1a38  FUJ02E3 - ok
16:19:51.0013 0x1a38  [ 002B60F7B8A6786FF708ED67423D963B, F8A5B8A840E62A1E7EB9D8A18BAF15090CFA2986B1F9DA4715692627366F942B ] FUJ02E3Service  C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
16:19:51.0015 0x1a38  FUJ02E3Service - ok
16:19:51.0055 0x1a38  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
16:19:51.0060 0x1a38  fvevol - ok
16:19:51.0094 0x1a38  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
16:19:51.0096 0x1a38  gagp30kx - ok
16:19:51.0160 0x1a38  [ FE91DC3D9A696CCDDB9F51C25ACBC53A, 4E1A7BB3AC57530A1DF8AB7E981087275E89E6AC629F881C98E40F13150ED532 ] gpsvc           C:\Windows\System32\gpsvc.dll
16:19:51.0175 0x1a38  gpsvc - ok
16:19:51.0267 0x1a38  [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:19:51.0270 0x1a38  gupdate - ok
16:19:51.0303 0x1a38  [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:19:51.0311 0x1a38  gupdatem - ok
16:19:51.0373 0x1a38  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
16:19:51.0376 0x1a38  hcw85cir - ok
16:19:51.0431 0x1a38  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:19:51.0438 0x1a38  HdAudAddService - ok
16:19:51.0503 0x1a38  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
16:19:51.0505 0x1a38  HDAudBus - ok
16:19:51.0535 0x1a38  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
16:19:51.0536 0x1a38  HidBatt - ok
16:19:51.0553 0x1a38  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
16:19:51.0556 0x1a38  HidBth - ok
16:19:51.0576 0x1a38  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
16:19:51.0578 0x1a38  HidIr - ok
16:19:51.0608 0x1a38  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
16:19:51.0611 0x1a38  hidserv - ok
16:19:51.0636 0x1a38  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
16:19:51.0639 0x1a38  HidUsb - ok
16:19:51.0684 0x1a38  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
16:19:51.0689 0x1a38  hkmsvc - ok
16:19:51.0728 0x1a38  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:19:51.0737 0x1a38  HomeGroupListener - ok
16:19:51.0766 0x1a38  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:19:51.0771 0x1a38  HomeGroupProvider - ok
16:19:51.0806 0x1a38  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
16:19:51.0809 0x1a38  HpSAMD - ok
16:19:51.0851 0x1a38  [ 5A539A3CBD6EC1609D5333B486D5F74C, C43B4F085C0F7938E0771140B7D02B087F4EA086FC3FF4B4F9F2D18BCE0BFD88 ] HPSIService     C:\Windows\system32\HPSIsvc.exe
16:19:51.0856 0x1a38  HPSIService - ok
16:19:51.0941 0x1a38  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
16:19:51.0961 0x1a38  HTTP - ok
16:19:51.0990 0x1a38  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
16:19:51.0991 0x1a38  hwpolicy - ok
16:19:52.0028 0x1a38  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
16:19:52.0033 0x1a38  i8042prt - ok
16:19:52.0073 0x1a38  [ D469B77687E12FE43E344806740B624D, DFDD486FD040813BF4E5DDB504CF9E0BFBF6D4E540DDDA4829F9B675ACF63E89 ] iaStor          C:\Windows\system32\drivers\iaStor.sys
16:19:52.0081 0x1a38  iaStor - ok
16:19:52.0128 0x1a38  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
16:19:52.0138 0x1a38  iaStorV - ok
16:19:52.0190 0x1a38  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
16:19:52.0197 0x1a38  IDriverT - ok
16:19:52.0278 0x1a38  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:19:52.0301 0x1a38  idsvc - ok
16:19:52.0341 0x1a38  IEEtwCollectorService - ok
16:19:52.0711 0x1a38  [ 6383899C5F964D71B0F96B81FBE59BB8, 780B2B5945CF266CD0807B6F91177A558EC1E568F9D7D850C172A137414394E6 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
16:19:53.0080 0x1a38  igfx - ok
16:19:53.0170 0x1a38  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
16:19:53.0176 0x1a38  iirsp - ok
16:19:53.0229 0x1a38  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
16:19:53.0248 0x1a38  IKEEXT - ok
16:19:53.0345 0x1a38  [ D492D3B5A8DDDE1D6621A8C53855EABF, 22505264F9645B07920B468FA58E7F0D27492CFD04C12FD26C14305D93020C6B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:19:53.0398 0x1a38  IntcAzAudAddService - ok
16:19:53.0439 0x1a38  [ FC727061C0F47C8059E88E05D5C8E381, C7A3782F5D86C7FDE57AA1F2EE81638C5FC3072ACC6E572BA2EC7B3CFF389800 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
16:19:53.0446 0x1a38  IntcDAud - ok
16:19:53.0473 0x1a38  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
16:19:53.0474 0x1a38  intelide - ok
16:19:53.0506 0x1a38  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
16:19:53.0508 0x1a38  intelppm - ok
16:19:53.0552 0x1a38  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
16:19:53.0555 0x1a38  IPBusEnum - ok
16:19:53.0583 0x1a38  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:19:53.0588 0x1a38  IpFilterDriver - ok
16:19:53.0625 0x1a38  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
16:19:53.0636 0x1a38  iphlpsvc - ok
16:19:53.0667 0x1a38  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
16:19:53.0670 0x1a38  IPMIDRV - ok
16:19:53.0682 0x1a38  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
16:19:53.0685 0x1a38  IPNAT - ok
16:19:53.0713 0x1a38  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
16:19:53.0715 0x1a38  IRENUM - ok
16:19:53.0729 0x1a38  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
16:19:53.0731 0x1a38  isapnp - ok
16:19:53.0760 0x1a38  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
16:19:53.0767 0x1a38  iScsiPrt - ok
16:19:53.0809 0x1a38  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
16:19:53.0811 0x1a38  kbdclass - ok
16:19:53.0839 0x1a38  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
16:19:53.0841 0x1a38  kbdhid - ok
16:19:53.0851 0x1a38  [ B6C7729936AAF8E0697F0A7DCA82CED8, 9706E5234364488DD18527AAC82760E5ECB6EC9EBFDD4D04D2708D3C9C576FE6 ] KeyIso          C:\Windows\system32\lsass.exe
16:19:53.0853 0x1a38  KeyIso - ok
16:19:53.0883 0x1a38  [ 56ED3EE5FED6BF2FC1305CF872042868, 44F77AE3CD83284800FF106156ABCB63047327855E2535EE278289AF6F05579C ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
16:19:53.0887 0x1a38  KSecDD - ok
16:19:53.0906 0x1a38  [ 8BA90F480705D7153AD0060CCA62222A, B3E610DFAB382368114D026947084A72AFC4F5BF9C28317F411D4ED91E0B3192 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
16:19:53.0911 0x1a38  KSecPkg - ok
16:19:53.0940 0x1a38  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
16:19:53.0941 0x1a38  ksthunk - ok
16:19:53.0982 0x1a38  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
16:19:53.0992 0x1a38  KtmRm - ok
16:19:54.0119 0x1a38  [ 30340EA4BB00F6CD5A92C75AECFD538C, 130347021D8D5CB06E975B3DB350892B2BD934DDA056935B6048C84C0CD860F6 ] labvnc          C:\Windows\LTsvc\labvnc.exe
16:19:54.0152 0x1a38  labvnc - ok
16:19:54.0201 0x1a38  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
16:19:54.0207 0x1a38  LanmanServer - ok
16:19:54.0231 0x1a38  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:19:54.0238 0x1a38  LanmanWorkstation - ok
16:19:54.0271 0x1a38  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
16:19:54.0274 0x1a38  lltdio - ok
16:19:54.0316 0x1a38  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
16:19:54.0334 0x1a38  lltdsvc - ok
16:19:54.0349 0x1a38  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
16:19:54.0351 0x1a38  lmhosts - ok
16:19:54.0388 0x1a38  LMIInfo - ok
16:19:54.0408 0x1a38  [ 413ECDCFAD9A82804D3674C8D7EEC24E, C8A65ED0B079D16D1A4449E840B4A9475388FBE61B5A84DFEFC35F4FB3B9A9B1 ] lmimirr         C:\Windows\system32\DRIVERS\lmimirr.sys
16:19:54.0410 0x1a38  lmimirr - ok
16:19:54.0429 0x1a38  LMIRfsClientNP - ok
16:19:54.0468 0x1a38  [ C57D3FAA50E6F395759FFB7C709BD944, 7B0B86F0E710934D57801E1F7BB048AD878F871147B2A16BBF81219A4022B499 ] LMIRfsDriver    C:\Windows\system32\drivers\LMIRfsDriver.sys
16:19:54.0474 0x1a38  LMIRfsDriver - ok
16:19:54.0541 0x1a38  [ A63B719F4F8657F3FCD84436D09378C8, 770B979204D8A34463880D53BD51CB93B9CC2B37A04B56D2098E879A4922D721 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
16:19:54.0549 0x1a38  LMS - ok
16:19:54.0587 0x1a38  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
16:19:54.0591 0x1a38  LSI_FC - ok
16:19:54.0600 0x1a38  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
16:19:54.0603 0x1a38  LSI_SAS - ok
16:19:54.0618 0x1a38  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
16:19:54.0620 0x1a38  LSI_SAS2 - ok
16:19:54.0630 0x1a38  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
16:19:54.0634 0x1a38  LSI_SCSI - ok
16:19:54.0714 0x1a38  [ 8B6411DA19A9798E11E203AFFEBAE2E7, 01D252FDF2FD638C9010B4552420C6F861F7573291AA45E77FB2ABC980B81A57 ] LTService       C:\Windows\LTSvc\LTSVC.exe
16:19:54.0745 0x1a38  LTService - ok
16:19:54.0765 0x1a38  [ 8843B93620046F00D1D4C14CD46B88B3, D01325E98789DA11B48B071AB830D90353F53491692DDB3514ADE2FA7ABAF33E ] LTSvcMon        C:\Windows\LTsvc\LTSvcMon.exe
16:19:54.0768 0x1a38  LTSvcMon - ok
16:19:54.0797 0x1a38  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
16:19:54.0801 0x1a38  luafv - ok
16:19:54.0830 0x1a38  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
16:19:54.0834 0x1a38  Mcx2Svc - ok
16:19:54.0848 0x1a38  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
16:19:54.0850 0x1a38  megasas - ok
16:19:54.0873 0x1a38  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
16:19:54.0881 0x1a38  MegaSR - ok
16:19:54.0912 0x1a38  [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64          C:\Windows\system32\drivers\HECIx64.sys
16:19:54.0914 0x1a38  MEIx64 - ok
16:19:54.0932 0x1a38  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
16:19:54.0934 0x1a38  MMCSS - ok
16:19:54.0946 0x1a38  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
16:19:54.0948 0x1a38  Modem - ok
16:19:54.0969 0x1a38  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
16:19:54.0971 0x1a38  monitor - ok
16:19:55.0014 0x1a38  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
16:19:55.0019 0x1a38  mouclass - ok
16:19:55.0058 0x1a38  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
16:19:55.0061 0x1a38  mouhid - ok
16:19:55.0096 0x1a38  [ 87BCD1034CBF33537D4D4C251D39BA26, CB9DD235B62B79383F99873D75E26EEA5EE7914CA89E4B75992207F83420437F ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
16:19:55.0100 0x1a38  mountmgr - ok
16:19:55.0133 0x1a38  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
16:19:55.0143 0x1a38  mpio - ok
16:19:55.0166 0x1a38  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
16:19:55.0168 0x1a38  mpsdrv - ok
16:19:55.0211 0x1a38  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
16:19:55.0228 0x1a38  MpsSvc - ok
16:19:55.0250 0x1a38  [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
16:19:55.0255 0x1a38  MRxDAV - ok
16:19:55.0295 0x1a38  [ 211FB7D41E50BCBFEFC3512290E0339E, 92019EA8669F2DEF49E286A84CA1A1CCB5732C26EB90BD78F8640CCE3E3CE16E ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
16:19:55.0300 0x1a38  mrxsmb - ok
16:19:55.0319 0x1a38  [ E94368D48ADF90F03AA65112461AD02B, 65F6123652D9898469F59EA5A123810DE797C0FC29BF0B355DC5A5A622A7AB83 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:19:55.0326 0x1a38  mrxsmb10 - ok
16:19:55.0340 0x1a38  [ 5162FAE8A13CF1F5B6DCD863D09173C7, CDE09D23152F485946927BBD74C10C2543EC10D435C344E910C6439B9F999710 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:19:55.0344 0x1a38  mrxsmb20 - ok
16:19:55.0369 0x1a38  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
16:19:55.0371 0x1a38  msahci - ok
16:19:55.0399 0x1a38  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
16:19:55.0403 0x1a38  msdsm - ok
16:19:55.0431 0x1a38  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
16:19:55.0436 0x1a38  MSDTC - ok
16:19:55.0479 0x1a38  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
16:19:55.0481 0x1a38  Msfs - ok
16:19:55.0513 0x1a38  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
16:19:55.0515 0x1a38  mshidkmdf - ok
16:19:55.0533 0x1a38  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
16:19:55.0535 0x1a38  msisadrv - ok
16:19:55.0564 0x1a38  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
16:19:55.0571 0x1a38  MSiSCSI - ok
16:19:55.0578 0x1a38  msiserver - ok
16:19:55.0595 0x1a38  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
16:19:55.0598 0x1a38  MSKSSRV - ok
16:19:55.0601 0x1a38  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
16:19:55.0603 0x1a38  MSPCLOCK - ok
16:19:55.0616 0x1a38  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
16:19:55.0617 0x1a38  MSPQM - ok
16:19:55.0647 0x1a38  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
16:19:55.0656 0x1a38  MsRPC - ok
16:19:55.0663 0x1a38  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
16:19:55.0665 0x1a38  mssmbios - ok
16:19:55.0690 0x1a38  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
16:19:55.0692 0x1a38  MSTEE - ok
16:19:55.0714 0x1a38  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
16:19:55.0715 0x1a38  MTConfig - ok
16:19:55.0760 0x1a38  [ AA0C2BA3782E92BD85E2264BE418E67C, 8B0953926E83274DF16670F1EF6F4E302F7EE17418F486975C353A406850298C ] Mup             C:\Windows\system32\Drivers\mup.sys
16:19:55.0769 0x1a38  Mup - ok
16:19:55.0796 0x1a38  [ 705E9675014EB688BEDD967B1ABECF19, 7FA4B0A5120DD415C5D3F3BE56C69455647029332DC2E9B4E9874AF3C34F89AD ] mvusbews        C:\Windows\system32\Drivers\mvusbews.sys
16:19:55.0798 0x1a38  mvusbews - ok
16:19:55.0835 0x1a38  [ 95D193CAE3C4D575D88B6D93DDCD60D3, 4FC219124A4E76008B396AE34B3ECB52A281B8EF02E34D9183907FC96ADCBAF3 ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
16:19:55.0846 0x1a38  MyWiFiDHCPDNS - ok
16:19:55.0878 0x1a38  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
16:19:55.0900 0x1a38  napagent - ok
16:19:55.0950 0x1a38  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
16:19:55.0958 0x1a38  NativeWifiP - ok
16:19:56.0038 0x1a38  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
16:19:56.0062 0x1a38  NDIS - ok
16:19:56.0081 0x1a38  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
16:19:56.0083 0x1a38  NdisCap - ok
16:19:56.0102 0x1a38  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
16:19:56.0104 0x1a38  NdisTapi - ok
16:19:56.0129 0x1a38  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
16:19:56.0131 0x1a38  Ndisuio - ok
16:19:56.0155 0x1a38  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
16:19:56.0162 0x1a38  NdisWan - ok
16:19:56.0177 0x1a38  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
16:19:56.0181 0x1a38  NDProxy - ok
16:19:56.0205 0x1a38  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
16:19:56.0207 0x1a38  NetBIOS - ok
16:19:56.0242 0x1a38  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
16:19:56.0249 0x1a38  NetBT - ok
16:19:56.0258 0x1a38  [ B6C7729936AAF8E0697F0A7DCA82CED8, 9706E5234364488DD18527AAC82760E5ECB6EC9EBFDD4D04D2708D3C9C576FE6 ] Netlogon        C:\Windows\system32\lsass.exe
16:19:56.0259 0x1a38  Netlogon - ok
16:19:56.0296 0x1a38  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
16:19:56.0304 0x1a38  Netman - ok
16:19:56.0363 0x1a38  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:19:56.0374 0x1a38  NetMsmqActivator - ok
16:19:56.0396 0x1a38  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:19:56.0402 0x1a38  NetPipeActivator - ok
16:19:56.0433 0x1a38  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
16:19:56.0449 0x1a38  netprofm - ok
16:19:56.0458 0x1a38  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:19:56.0463 0x1a38  NetTcpActivator - ok
16:19:56.0471 0x1a38  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:19:56.0474 0x1a38  NetTcpPortSharing - ok
16:19:56.0966 0x1a38  [ 8ADAA4CC125EC1A1CB66E363DF531CC4, D41E973C915DE36BF0A01CD6AFB3D0761062DEB6A48E37BDC3D85A1AC4FDC82B ] NETwNs64        C:\Windows\system32\DRIVERS\NETwNs64.sys
16:19:57.0129 0x1a38  NETwNs64 - ok
16:19:57.0191 0x1a38  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
16:19:57.0194 0x1a38  nfrd960 - ok
16:19:57.0229 0x1a38  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
16:19:57.0237 0x1a38  NlaSvc - ok
16:19:57.0247 0x1a38  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
16:19:57.0249 0x1a38  Npfs - ok
16:19:57.0274 0x1a38  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
16:19:57.0276 0x1a38  nsi - ok
16:19:57.0284 0x1a38  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
16:19:57.0286 0x1a38  nsiproxy - ok
16:19:57.0360 0x1a38  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
16:19:57.0396 0x1a38  Ntfs - ok
16:19:57.0574 0x1a38  [ 02D36DDFAD17E335EF33383E482ABAD1, ACA52F41EDE4007C7A247CEE010233DC0A96923DEC8A4B27DB5385F5EB91DD66 ] ntrtscan        C:\Program Files (x86)\Trend Micro\Security Agent\ntrtscan.exe
16:19:57.0648 0x1a38  ntrtscan - ok
16:19:57.0677 0x1a38  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
16:19:57.0678 0x1a38  Null - ok
16:19:57.0715 0x1a38  [ 786DB821BFD57C0551DBBE4F75384A7D, F956D636F834F2BA5F019E187FDB9CC33940363C75A60E53CD81310A4DB6A6AB ] nusb3hub        C:\Windows\system32\drivers\nusb3hub.sys
16:19:57.0718 0x1a38  nusb3hub - ok
16:19:57.0751 0x1a38  [ DAA8005CAF745042BB427A1ED7433354, 3019002F174783B76D5D8AA47F7A465B7FEC7C14235B70E5C9277FE534839226 ] nusb3xhc        C:\Windows\system32\drivers\nusb3xhc.sys
16:19:57.0759 0x1a38  nusb3xhc - ok
16:19:57.0787 0x1a38  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
16:19:57.0793 0x1a38  nvraid - ok
16:19:57.0822 0x1a38  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
16:19:57.0829 0x1a38  nvstor - ok
16:19:57.0852 0x1a38  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
16:19:57.0855 0x1a38  nv_agp - ok
16:19:57.0890 0x1a38  [ 4E37455DB16AEC75862B1D0BC35B589E, F60FCE0C3E6C1559B0A8E0A032AFD30216E1DE2142E8E4C181C43DB6C4B5A443 ] O2FLASH         C:\Windows\system32\DRIVERS\o2flash.exe
16:19:57.0892 0x1a38  O2FLASH - ok
16:19:57.0943 0x1a38  [ 6172DB160FC566CF24307941C0E94D8E, 81040AEF4E9D56F3514EC46ACF97CCEE38EF2E17CA18DC4FAE4A20561BA3B23C ] O2MDFRDR        C:\Windows\system32\drivers\O2MDFw7x64.sys
16:19:57.0945 0x1a38  O2MDFRDR - ok
16:19:57.0959 0x1a38  [ 8ED738ABA394BBF6D7802698BE453112, E91E8C27FA111CC20CCB05F41CBF181C398F48A980B523A041CACE242990F77A ] O2MDRRDR        C:\Windows\system32\drivers\O2MDRw7x64.sys
16:19:57.0961 0x1a38  O2MDRRDR - ok
16:19:58.0156 0x1a38  [ F9C35982D4CFC7DAA739125476E8F139, 027EE07C78F4D7BD4291B308B4AE9F4A0D0FE2C503A2122084FBDBDAECA1ED99 ] O2SDJRDR        C:\Windows\system32\drivers\o2sdjw7x64.sys
16:19:58.0160 0x1a38  O2SDJRDR - ok
16:19:58.0343 0x1a38  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
16:19:58.0359 0x1a38  ohci1394 - ok
16:19:58.0544 0x1a38  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:19:58.0551 0x1a38  ose - ok
16:19:58.0801 0x1a38  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:19:58.0906 0x1a38  osppsvc - ok
16:19:58.0963 0x1a38  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
16:19:58.0973 0x1a38  p2pimsvc - ok
16:19:59.0002 0x1a38  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
16:19:59.0015 0x1a38  p2psvc - ok
16:19:59.0051 0x1a38  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
16:19:59.0058 0x1a38  Parport - ok
16:19:59.0091 0x1a38  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
16:19:59.0094 0x1a38  partmgr - ok
16:19:59.0127 0x1a38  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc          C:\Windows\System32\pcasvc.dll
16:19:59.0132 0x1a38  PcaSvc - ok
16:19:59.0154 0x1a38  [ B26E102E0F54773119B162F56C9DD994, B28724DF87E838CFF7AC0E70E66C5F8FFA21B66BAEF8AE9CA148A7B51EF316CF ] pci             C:\Windows\system32\drivers\pci.sys
16:19:59.0159 0x1a38  pci - ok
16:19:59.0179 0x1a38  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
16:19:59.0181 0x1a38  pciide - ok
16:19:59.0205 0x1a38  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
16:19:59.0211 0x1a38  pcmcia - ok
16:19:59.0226 0x1a38  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
16:19:59.0228 0x1a38  pcw - ok
16:19:59.0272 0x1a38  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
16:19:59.0292 0x1a38  PEAUTH - ok
16:19:59.0381 0x1a38  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
16:19:59.0420 0x1a38  PeerDistSvc - ok
16:19:59.0494 0x1a38  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
16:19:59.0496 0x1a38  PerfHost - ok
16:19:59.0595 0x1a38  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
16:19:59.0630 0x1a38  pla - ok
16:19:59.0674 0x1a38  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
16:19:59.0688 0x1a38  PlugPlay - ok
16:19:59.0724 0x1a38  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
16:19:59.0726 0x1a38  PNRPAutoReg - ok
16:19:59.0747 0x1a38  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
16:19:59.0756 0x1a38  PNRPsvc - ok
16:19:59.0831 0x1a38  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
16:19:59.0847 0x1a38  PolicyAgent - ok
16:19:59.0879 0x1a38  [ A2CCA4FB273E6050F17A0A416CFF2FCD, C42BA18DF0C8E3F7358669A784E51E4DC7A4112096345EA699EDC95F561E0255 ] Power           C:\Windows\system32\umpo.dll
16:19:59.0886 0x1a38  Power - ok
16:19:59.0946 0x1a38  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
16:19:59.0953 0x1a38  PptpMiniport - ok
16:19:59.0979 0x1a38  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
16:19:59.0981 0x1a38  Processor - ok
16:20:00.0038 0x1a38  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
16:20:00.0044 0x1a38  ProfSvc - ok
16:20:00.0084 0x1a38  [ B6C7729936AAF8E0697F0A7DCA82CED8, 9706E5234364488DD18527AAC82760E5ECB6EC9EBFDD4D04D2708D3C9C576FE6 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:20:00.0087 0x1a38  ProtectedStorage - ok
16:20:00.0132 0x1a38  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
16:20:00.0136 0x1a38  Psched - ok
16:20:00.0178 0x1a38  [ 87B04878A6D59D6C79251DC960C674C1, 3EB8DB0624E646F0A65D0381408D35CF9FDC5ABFC30DF6431F4070A8EB68447C ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
16:20:00.0180 0x1a38  PxHlpa64 - ok
16:20:00.0246 0x1a38  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
16:20:00.0281 0x1a38  ql2300 - ok
16:20:00.0302 0x1a38  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
16:20:00.0306 0x1a38  ql40xx - ok
16:20:00.0336 0x1a38  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
16:20:00.0342 0x1a38  QWAVE - ok
16:20:00.0369 0x1a38  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
16:20:00.0370 0x1a38  QWAVEdrv - ok
16:20:00.0379 0x1a38  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
16:20:00.0380 0x1a38  RasAcd - ok
16:20:00.0413 0x1a38  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
16:20:00.0415 0x1a38  RasAgileVpn - ok
16:20:00.0432 0x1a38  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
16:20:00.0438 0x1a38  RasAuto - ok
16:20:00.0461 0x1a38  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
16:20:00.0465 0x1a38  Rasl2tp - ok
16:20:00.0508 0x1a38  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
16:20:00.0519 0x1a38  RasMan - ok
16:20:00.0534 0x1a38  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
16:20:00.0536 0x1a38  RasPppoe - ok
16:20:00.0562 0x1a38  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
16:20:00.0564 0x1a38  RasSstp - ok
16:20:00.0607 0x1a38  [ 71B6F78D6444CCE6F77BC42917A4E8F7, 34927A2C1CA349D251A327ED1F30018B065A8E6B886D9B5080A8AE2F6A8C0914 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
16:20:00.0615 0x1a38  rdbss - ok
16:20:00.0653 0x1a38  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
16:20:00.0654 0x1a38  rdpbus - ok
16:20:00.0668 0x1a38  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
16:20:00.0669 0x1a38  RDPCDD - ok
16:20:00.0709 0x1a38  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
16:20:00.0712 0x1a38  RDPDR - ok
16:20:00.0731 0x1a38  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
16:20:00.0734 0x1a38  RDPENCDD - ok
16:20:00.0749 0x1a38  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
16:20:00.0752 0x1a38  RDPREFMP - ok
16:20:00.0830 0x1a38  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:20:00.0832 0x1a38  RdpVideoMiniport - ok
16:20:00.0867 0x1a38  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
16:20:00.0874 0x1a38  RDPWD - ok
16:20:00.0923 0x1a38  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
16:20:00.0939 0x1a38  rdyboost - ok
16:20:01.0035 0x1a38  [ 2EC95080FAD2621C5E3034DE4C39A2A3, CFBF3283C4FB8A2AEDFA1048DEA7FAFCCFE972271D0E85B6947DB384D697F468 ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
16:20:01.0054 0x1a38  RegSrvc - ok
16:20:01.0075 0x1a38  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
16:20:01.0079 0x1a38  RemoteAccess - ok
16:20:01.0133 0x1a38  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
16:20:01.0147 0x1a38  RemoteRegistry - ok
16:20:01.0182 0x1a38  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
16:20:01.0190 0x1a38  RFCOMM - ok
16:20:01.0255 0x1a38  [ 7CCAEBCAB6FC1ED0206C07E083E79207, 40BFA1BEDFF093652279494EDD397FC094794B76916C2681D0544D6793314DFE ] RichVideo       C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
16:20:01.0260 0x1a38  RichVideo - ok
16:20:01.0271 0x1a38  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
16:20:01.0274 0x1a38  RpcEptMapper - ok
16:20:01.0301 0x1a38  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
16:20:01.0303 0x1a38  RpcLocator - ok
16:20:01.0341 0x1a38  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\System32\rpcss.dll
16:20:01.0351 0x1a38  RpcSs - ok
16:20:01.0378 0x1a38  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
16:20:01.0381 0x1a38  rspndr - ok
16:20:01.0418 0x1a38  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
16:20:01.0419 0x1a38  s3cap - ok
16:20:01.0442 0x1a38  [ B6C7729936AAF8E0697F0A7DCA82CED8, 9706E5234364488DD18527AAC82760E5ECB6EC9EBFDD4D04D2708D3C9C576FE6 ] SamSs           C:\Windows\system32\lsass.exe
16:20:01.0447 0x1a38  SamSs - ok
16:20:01.0462 0x1a38  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
16:20:01.0470 0x1a38  sbp2port - ok
16:20:01.0504 0x1a38  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
16:20:01.0511 0x1a38  SCardSvr - ok
16:20:01.0537 0x1a38  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
16:20:01.0539 0x1a38  scfilter - ok
16:20:01.0592 0x1a38  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
16:20:01.0613 0x1a38  Schedule - ok
16:20:01.0637 0x1a38  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
16:20:01.0640 0x1a38  SCPolicySvc - ok
16:20:01.0709 0x1a38  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus           C:\Windows\system32\drivers\sdbus.sys
16:20:01.0713 0x1a38  sdbus - ok
16:20:01.0730 0x1a38  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
16:20:01.0735 0x1a38  SDRSVC - ok
16:20:01.0767 0x1a38  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
16:20:01.0768 0x1a38  secdrv - ok
16:20:01.0794 0x1a38  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
16:20:01.0796 0x1a38  seclogon - ok
16:20:01.0824 0x1a38  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
16:20:01.0826 0x1a38  SENS - ok
16:20:01.0855 0x1a38  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
16:20:01.0857 0x1a38  SensrSvc - ok
16:20:01.0881 0x1a38  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
16:20:01.0885 0x1a38  Serenum - ok
16:20:01.0897 0x1a38  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
16:20:01.0900 0x1a38  Serial - ok
16:20:01.0923 0x1a38  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
16:20:01.0925 0x1a38  sermouse - ok
16:20:01.0965 0x1a38  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
16:20:01.0969 0x1a38  SessionEnv - ok
16:20:01.0991 0x1a38  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
16:20:01.0992 0x1a38  sffdisk - ok
16:20:02.0015 0x1a38  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
16:20:02.0016 0x1a38  sffp_mmc - ok
16:20:02.0027 0x1a38  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
16:20:02.0029 0x1a38  sffp_sd - ok
16:20:02.0060 0x1a38  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
16:20:02.0062 0x1a38  sfloppy - ok
16:20:02.0094 0x1a38  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
16:20:02.0103 0x1a38  SharedAccess - ok
16:20:02.0132 0x1a38  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:20:02.0139 0x1a38  ShellHWDetection - ok
16:20:02.0169 0x1a38  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
16:20:02.0171 0x1a38  SiSRaid2 - ok
16:20:02.0194 0x1a38  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
16:20:02.0197 0x1a38  SiSRaid4 - ok
16:20:02.0227 0x1a38  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
16:20:02.0232 0x1a38  Smb - ok
16:20:02.0271 0x1a38  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
16:20:02.0273 0x1a38  SNMPTRAP - ok
16:20:02.0350 0x1a38  [ 9CD1C53490EB5601870A69A8E40F7B12, 0F7E471E31D5CA7EEEF1BDC5D38384EE3C90E6949174707432CD16B59AC59266 ] SNP2UVC         C:\Windows\system32\DRIVERS\snp2uvc.sys
16:20:02.0386 0x1a38  SNP2UVC - ok
16:20:02.0402 0x1a38  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
16:20:02.0404 0x1a38  spldr - ok
16:20:02.0434 0x1a38  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
16:20:02.0446 0x1a38  Spooler - ok
16:20:02.0576 0x1a38  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
16:20:02.0646 0x1a38  sppsvc - ok
16:20:02.0674 0x1a38  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
16:20:02.0677 0x1a38  sppuinotify - ok
16:20:02.0738 0x1a38  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
16:20:02.0750 0x1a38  srv - ok
16:20:02.0772 0x1a38  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
16:20:02.0780 0x1a38  srv2 - ok
16:20:02.0797 0x1a38  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
16:20:02.0800 0x1a38  srvnet - ok
16:20:02.0814 0x1a38  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
16:20:02.0820 0x1a38  SSDPSRV - ok
16:20:02.0832 0x1a38  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
16:20:02.0835 0x1a38  SstpSvc - ok
16:20:02.0867 0x1a38  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
16:20:02.0881 0x1a38  stexstor - ok
16:20:02.0922 0x1a38  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
16:20:02.0934 0x1a38  stisvc - ok
16:20:02.0969 0x1a38  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
16:20:02.0971 0x1a38  storflt - ok
16:20:03.0005 0x1a38  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
16:20:03.0048 0x1a38  StorSvc - ok
16:20:03.0097 0x1a38  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
16:20:03.0101 0x1a38  storvsc - ok
16:20:03.0123 0x1a38  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
16:20:03.0126 0x1a38  swenum - ok
16:20:03.0168 0x1a38  [ 27FA8EBC9A28B57658F6747473CB5C8E, C095EB064D4B999D7CE1E5D9B56F88AC0BE3CDD7FE08E7402C04C2B69D13B657 ] swg3kflt03      C:\Windows\system32\drivers\swg3kflt03.sys
16:20:03.0173 0x1a38  swg3kflt03 - ok
16:20:03.0202 0x1a38  [ 143B763E71DF2ED586C278541F89432D, 896C5B286195FB0089A7A1BD586A7426570202FBA97E61E2BD3AD3AF51E14BAA ] swg3knmea03     C:\Windows\system32\drivers\swg3knmea03.sys
16:20:03.0210 0x1a38  swg3knmea03 - ok
16:20:03.0229 0x1a38  [ 143B763E71DF2ED586C278541F89432D, 896C5B286195FB0089A7A1BD586A7426570202FBA97E61E2BD3AD3AF51E14BAA ] swg3kser03      C:\Windows\system32\drivers\swg3kser03.sys
16:20:03.0236 0x1a38  swg3kser03 - ok
16:20:03.0257 0x1a38  [ B49E9DB5401ECC28A104E64F5434A38E, 8BF061B2DE8C0A917F9BB6B087C8088C58B403951EEF6AE42AC9552879D33751 ] swibus03        C:\Windows\system32\drivers\swibus03.sys
16:20:03.0261 0x1a38  swibus03 - ok
16:20:03.0277 0x1a38  [ B49E9DB5401ECC28A104E64F5434A38E, 8BF061B2DE8C0A917F9BB6B087C8088C58B403951EEF6AE42AC9552879D33751 ] swibusflt03     C:\Windows\system32\drivers\swibusflt03.sys
16:20:03.0280 0x1a38  swibusflt03 - ok
16:20:03.0309 0x1a38  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
16:20:03.0322 0x1a38  swprv - ok
16:20:03.0387 0x1a38  [ F5B46DF59FEAA48A442AED7EEB754D4B, 8415FDD5E7B4D4819BB9B0937CDF254548C871045787958BCF708096204B1714 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
16:20:03.0416 0x1a38  SynTP - ok
16:20:03.0484 0x1a38  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
16:20:03.0519 0x1a38  SysMain - ok
16:20:03.0551 0x1a38  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:20:03.0555 0x1a38  TabletInputService - ok
16:20:03.0775 0x1a38  [ 765FD4777D284BCE6325C98B33814F24, 03AFED0C796EF999E3EABCC1DB66C5C97AF1FDE9621497CD5EEBA364A46705D4 ] TabletServiceISD C:\Program Files\Tablet\ISD\ISD_Tablet.exe
16:20:03.0897 0x1a38  TabletServiceISD - ok
16:20:03.0926 0x1a38  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
16:20:03.0935 0x1a38  TapiSrv - ok
16:20:03.0959 0x1a38  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
16:20:03.0961 0x1a38  TBS - ok
16:20:04.0095 0x1a38  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
16:20:04.0139 0x1a38  Tcpip - ok
16:20:04.0193 0x1a38  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
16:20:04.0229 0x1a38  TCPIP6 - ok
16:20:04.0261 0x1a38  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
16:20:04.0262 0x1a38  tcpipreg - ok
16:20:04.0291 0x1a38  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
16:20:04.0292 0x1a38  TDPIPE - ok
16:20:04.0310 0x1a38  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
16:20:04.0314 0x1a38  TDTCP - ok
16:20:04.0357 0x1a38  [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
16:20:04.0364 0x1a38  tdx - ok
16:20:04.0393 0x1a38  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
16:20:04.0398 0x1a38  TermDD - ok
16:20:04.0446 0x1a38  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
16:20:04.0464 0x1a38  TermService - ok
16:20:04.0490 0x1a38  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
16:20:04.0492 0x1a38  Themes - ok
16:20:04.0515 0x1a38  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
16:20:04.0517 0x1a38  THREADORDER - ok
16:20:04.0541 0x1a38  [ DC474DF467A8B5EBC5C21C934B53E4B7, 04A295042E0DDBFE3F4F44B67253B6023E2B42D9509E34A9E4E3CFCA5A27AA07 ] tmactmon        C:\Windows\system32\DRIVERS\tmactmon.sys
16:20:04.0544 0x1a38  tmactmon - ok
16:20:04.0596 0x1a38  [ 50D5DAF12920A7EAA6A264C87E9AF0F2, 629EE92384C948C18134E3870DDEA2227DC7CF613413835E1FA021D2ACBECBA1 ] TMBMServer      C:\Program Files (x86)\Trend Micro\BM\TMBMSRV.exe
16:20:04.0607 0x1a38  TMBMServer - ok
16:20:04.0716 0x1a38  [ 0928EBFEDCD70E96D34A7E8162F41E38, 9A9B269ACFBFD81E63741687D1CAE25FE438D8C8BA5D76F801AA05005EE809D5 ] TmCCSF          C:\Program Files (x86)\Trend Micro\Security Agent\CCSF\TmCCSF.exe
16:20:04.0739 0x1a38  TmCCSF - ok
16:20:04.0767 0x1a38  [ E344B6FF501C8AA67507448FC8FF2ABC, DAECF49BBE511E6982172243C740ED5B32A43A2C18648CE799D9D4B400DAF9A4 ] tmcomm          C:\Windows\system32\DRIVERS\tmcomm.sys
16:20:04.0777 0x1a38  tmcomm - ok
16:20:04.0791 0x1a38  [ 67AC18DBA04CBE64599E20D9E1093275, AD84241A8AA9E2D3F3C15C2498F8F691614997B1677800F3040C526C59D9B962 ] tmevtmgr        C:\Windows\system32\DRIVERS\tmevtmgr.sys
16:20:04.0794 0x1a38  tmevtmgr - ok
16:20:04.0831 0x1a38  [ BB34D510A5DA561BCA257B4F7D9C9495, FC5D7BC1257DEA69A1A8E04243BF9DB3F5B4104F76148DFF6236274E1AE6CF83 ] TmFilter        C:\Program Files (x86)\Trend Micro\Security Agent\TmXPFlt.sys
16:20:04.0839 0x1a38  TmFilter - ok
16:20:05.0040 0x1a38  [ 8755DC02F7F00DC3751D03BCED40141D, 12988DF047CAE735470F49BD3D8BB54655E3EC1490175D5B4CDCFB89310C03BF ] tmlisten        C:\Program Files (x86)\Trend Micro\Security Agent\tmlisten.exe
16:20:05.0121 0x1a38  tmlisten - ok
16:20:05.0154 0x1a38  [ EAA84E5D1897147CBB753CD8DAFCA34C, 0D9E21F39E75B54E4AC88A804BFC9BCF784E84AB8DE0DBECC8D4DB3CD79FA095 ] TmPreFilter     C:\Program Files (x86)\Trend Micro\Security Agent\TmPreFlt.sys
16:20:05.0156 0x1a38  TmPreFilter - ok
16:20:05.0260 0x1a38  [ 5D3A20600C433744DA3C046A659EC721, C2FFECCDDD1260EF26EFA0935C79AA599C5C229CD75022236FD700981E216DDB ] TmProxy         C:\Program Files (x86)\Trend Micro\Security Agent\TmProxy.exe
16:20:05.0279 0x1a38  TmProxy - ok
16:20:05.0321 0x1a38  [ A42E6780C52B248AF54C6010A9A93384, D6870FE2404DD59277C9AC945279A5A5042C239423547750EE08CDB9F19C041F ] tmtdi           C:\Windows\system32\DRIVERS\tmtdi.sys
16:20:05.0325 0x1a38  tmtdi - ok
16:20:05.0360 0x1a38  [ BCF185C3EDB87FB2A0FB71E3576B402E, BD3033A0091130A8C37531E9606DF0FBE7CE5632542E72C5F57828484F92F7D2 ] TouchServiceISD C:\Program Files\Tablet\ISD\ISD_TouchService.exe
16:20:05.0368 0x1a38  TouchServiceISD - ok
16:20:05.0393 0x1a38  [ DBCC20C02E8A3E43B03C304A4E40A84F, BF5F3ACCB0342304A6870E94D2576644B08DBF307C853C7DBA4B82B0C7309DA4 ] TPM             C:\Windows\system32\drivers\tpm.sys
16:20:05.0395 0x1a38  TPM - ok
16:20:05.0421 0x1a38  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
16:20:05.0424 0x1a38  TrkWks - ok
16:20:05.0482 0x1a38  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:20:05.0492 0x1a38  TrustedInstaller - ok
16:20:05.0525 0x1a38  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
16:20:05.0527 0x1a38  tssecsrv - ok
16:20:05.0583 0x1a38  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
16:20:05.0585 0x1a38  TsUsbFlt - ok
16:20:05.0626 0x1a38  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
16:20:05.0628 0x1a38  tunnel - ok
16:20:05.0646 0x1a38  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
16:20:05.0648 0x1a38  uagp35 - ok
16:20:05.0667 0x1a38  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
16:20:05.0676 0x1a38  udfs - ok
16:20:05.0701 0x1a38  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
16:20:05.0704 0x1a38  UI0Detect - ok
16:20:05.0731 0x1a38  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
16:20:05.0734 0x1a38  uliagpkx - ok
16:20:05.0763 0x1a38  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
16:20:05.0766 0x1a38  umbus - ok
16:20:05.0791 0x1a38  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
16:20:05.0795 0x1a38  UmPass - ok
16:20:05.0848 0x1a38  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
16:20:05.0856 0x1a38  UmRdpService - ok
16:20:05.0977 0x1a38  [ E419566C7918A4C8E9497AFBD502FB2A, 3A206F603A46E8B536032942E78D1026A22B64FC84FFD4677A387763354E3321 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
16:20:06.0032 0x1a38  UNS - ok
16:20:06.0064 0x1a38  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
16:20:06.0074 0x1a38  upnphost - ok
16:20:06.0106 0x1a38  [ 91D3C92A44FC682DD791147604E79152, AA0B6799BF9C26C2C1793C91295288A4989AA43EC5E070B650DA7F0A142817CE ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
16:20:06.0109 0x1a38  usbccgp - ok
16:20:06.0134 0x1a38  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
16:20:06.0137 0x1a38  usbcir - ok
16:20:06.0149 0x1a38  [ F7FFDF2A1D19A76A87759126B244C816, C91F09D77E22D976952A46F7B93F611B719EDAF694D538242FA8FAF1BA9BB2F0 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
16:20:06.0151 0x1a38  usbehci - ok
16:20:06.0168 0x1a38  [ 245FE7FC634D6A993E682E0A9EBA4ABB, F7A536D215EE3A63358EC8B5946D7BB3B56357BF91347B07013E00DAC98775B6 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
16:20:06.0177 0x1a38  usbhub - ok
16:20:06.0188 0x1a38  [ C1A8966E0D09BFB501045105B30D86F2, 5BB95FBA441B898E258A3BFE174FC1042A04C19E25C59DE1FD90594290B11DA9 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
16:20:06.0190 0x1a38  usbohci - ok
16:20:06.0222 0x1a38  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
16:20:06.0224 0x1a38  usbprint - ok
16:20:06.0248 0x1a38  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:20:06.0250 0x1a38  USBSTOR - ok
16:20:06.0265 0x1a38  [ 2E682DCE4319A90E02A327F8A427544A, 3528C5A4669BAD53041085C3E72C64388D308E42AD9D1FAC85B6F2FFD81610FB ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
16:20:06.0267 0x1a38  usbuhci - ok
16:20:06.0290 0x1a38  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
16:20:06.0296 0x1a38  usbvideo - ok
16:20:06.0321 0x1a38  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
16:20:06.0324 0x1a38  UxSms - ok
16:20:06.0332 0x1a38  [ B6C7729936AAF8E0697F0A7DCA82CED8, 9706E5234364488DD18527AAC82760E5ECB6EC9EBFDD4D04D2708D3C9C576FE6 ] VaultSvc        C:\Windows\system32\lsass.exe
16:20:06.0334 0x1a38  VaultSvc - ok
16:20:06.0357 0x1a38  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
16:20:06.0359 0x1a38  vdrvroot - ok
16:20:06.0395 0x1a38  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
16:20:06.0408 0x1a38  vds - ok
16:20:06.0429 0x1a38  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
16:20:06.0430 0x1a38  vga - ok
16:20:06.0446 0x1a38  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
16:20:06.0448 0x1a38  VgaSave - ok
16:20:06.0479 0x1a38  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
16:20:06.0485 0x1a38  vhdmp - ok
16:20:06.0503 0x1a38  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
16:20:06.0505 0x1a38  viaide - ok
16:20:06.0544 0x1a38  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
16:20:06.0550 0x1a38  vmbus - ok
16:20:06.0568 0x1a38  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
16:20:06.0570 0x1a38  VMBusHID - ok
16:20:06.0597 0x1a38  [ 071E1B172D49154EE1D23A2ACC472EFB, 2E75ECE68F911F1FB0E8BEEFD8C7B8F794164335E1A1F2CE5D14126C9445BB7C ] volmgr          C:\Windows\system32\drivers\volmgr.sys
16:20:06.0600 0x1a38  volmgr - ok
16:20:06.0636 0x1a38  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
16:20:06.0644 0x1a38  volmgrx - ok
16:20:06.0685 0x1a38  [ DF8126BD41180351A093A3AD2FC8903B, AEFF4AA89CDDAAAD43CDE17C6B6EB2A397A0AC1651CBD51B889161EC2BC6527A ] volsnap         C:\Windows\system32\drivers\volsnap.sys
16:20:06.0693 0x1a38  volsnap - ok
16:20:06.0731 0x1a38  [ B4A73CA4EF9A02B9738CEA9AD5FE5917, B6A8086189FE2F1C3FE5B3F484FBA3DB2E5E1836F3154D30090F136C27D16166 ] vpcbus          C:\Windows\system32\DRIVERS\vpchbus.sys
16:20:06.0736 0x1a38  vpcbus - ok
16:20:06.0765 0x1a38  [ E675FB2B48C54F09895482E2253B289C, 68BBFBF2356C849722E429CA753CC309A3CCE8CF00EBDBBD2695ECD292324DF2 ] vpcnfltr        C:\Windows\system32\DRIVERS\vpcnfltr.sys
16:20:06.0767 0x1a38  vpcnfltr - ok
16:20:06.0795 0x1a38  [ 5FB42082B0D19A0268705F1DD343DF20, 62F8EEE6A507CE6A8BD638020118D71B78332F79BA82654AB702AE46B04767D9 ] vpcusb          C:\Windows\system32\DRIVERS\vpcusb.sys
16:20:06.0797 0x1a38  vpcusb - ok
16:20:06.0849 0x1a38  [ 207B6539799CC1C112661A9B620DD233, 6B915CC7F77C867516D94865D7BF2E5C815402EF0A4488C3EB2FEF7CFA6C98F6 ] vpcvmm          C:\Windows\system32\drivers\vpcvmm.sys
16:20:06.0856 0x1a38  vpcvmm - ok
16:20:06.0952 0x1a38  [ BA255A3188F429F4B4A40D53734023F4, 940618BDACD95D4497A1F8F0DA1436177A899C2C780A3DB543E997FCB39E2CB1 ] VSApiNt         C:\Program Files (x86)\Trend Micro\Security Agent\VSApiNt.sys
16:20:06.0995 0x1a38  VSApiNt - ok
16:20:07.0047 0x1a38  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
16:20:07.0060 0x1a38  vsmraid - ok
16:20:07.0143 0x1a38  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
16:20:07.0179 0x1a38  VSS - ok
16:20:07.0198 0x1a38  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
16:20:07.0200 0x1a38  vwifibus - ok
16:20:07.0213 0x1a38  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
16:20:07.0216 0x1a38  vwififlt - ok
16:20:07.0225 0x1a38  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
16:20:07.0226 0x1a38  vwifimp - ok
16:20:07.0266 0x1a38  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
16:20:07.0279 0x1a38  W32Time - ok
16:20:07.0323 0x1a38  [ C4ADEFA3E5744079ED32A1ED3DED514B, 33A65C6A858349A2935BCAF62A7142880F6B3FAC0F160EE45939F36499CD6314 ] wacomhidfilter  C:\Windows\system32\drivers\wacomhidfilter.sys
16:20:07.0325 0x1a38  wacomhidfilter - ok
16:20:07.0342 0x1a38  [ E04D43C7D1641E95D35CAE6086C7E350, BF08ED680EC835D70C522B91560B8987F206793E8E2987117C1D7B77DEFF8556 ] wacommousefilter C:\Windows\system32\drivers\wacommousefilter.sys
16:20:07.0343 0x1a38  wacommousefilter - ok
16:20:07.0373 0x1a38  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
16:20:07.0374 0x1a38  WacomPen - ok
16:20:07.0387 0x1a38  [ EC1CEB237E365330C1FCFC4876AA0AC0, 9BFF9062AC5E4B9D0C6502D8DE7E59B887903ED29F26157A5F82966932F1EBD0 ] wacomvhid       C:\Windows\system32\drivers\wacomvhid.sys
16:20:07.0389 0x1a38  wacomvhid - ok
16:20:07.0396 0x1a38  [ EF4D5242C0E2F74BA8E74C31F57A11CB, 9E27E03A055FF8A073487CF5B26137A354A69050A4D01426E99148F826CEE453 ] wacomvthid      C:\Windows\system32\drivers\WacomVTHid.sys
16:20:07.0397 0x1a38  wacomvthid - ok
16:20:07.0439 0x1a38  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
16:20:07.0442 0x1a38  WANARP - ok
16:20:07.0447 0x1a38  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
16:20:07.0450 0x1a38  Wanarpv6 - ok
16:20:07.0530 0x1a38  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
16:20:07.0563 0x1a38  WatAdminSvc - ok
16:20:07.0629 0x1a38  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
16:20:07.0663 0x1a38  wbengine - ok
16:20:07.0693 0x1a38  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
16:20:07.0699 0x1a38  WbioSrvc - ok
16:20:07.0732 0x1a38  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
16:20:07.0742 0x1a38  wcncsvc - ok
16:20:07.0754 0x1a38  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:20:07.0757 0x1a38  WcsPlugInService - ok
16:20:07.0777 0x1a38  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
16:20:07.0779 0x1a38  Wd - ok
16:20:07.0844 0x1a38  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
16:20:07.0864 0x1a38  Wdf01000 - ok
16:20:07.0905 0x1a38  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
16:20:07.0909 0x1a38  WdiServiceHost - ok
16:20:07.0914 0x1a38  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
16:20:07.0919 0x1a38  WdiSystemHost - ok
16:20:07.0958 0x1a38  [ 94DC2BF6CBAAA95E369C3756D3115A76, 3DF44939ADBB4E30896993A85470BE5E16B1A3EDADFDD8F113D9615A6E431C12 ] wdkmd           C:\Windows\system32\DRIVERS\WDKMD.sys
16:20:07.0962 0x1a38  wdkmd - ok
16:20:08.0008 0x1a38  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
16:20:08.0022 0x1a38  WebClient - ok
16:20:08.0047 0x1a38  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
16:20:08.0056 0x1a38  Wecsvc - ok
16:20:08.0076 0x1a38  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
16:20:08.0079 0x1a38  wercplsupport - ok
16:20:08.0106 0x1a38  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
16:20:08.0110 0x1a38  WerSvc - ok
16:20:08.0141 0x1a38  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
16:20:08.0142 0x1a38  WfpLwf - ok
16:20:08.0166 0x1a38  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
16:20:08.0169 0x1a38  WIMMount - ok
16:20:08.0191 0x1a38  WinDefend - ok
16:20:08.0197 0x1a38  WinHttpAutoProxySvc - ok
16:20:08.0237 0x1a38  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
16:20:08.0243 0x1a38  Winmgmt - ok
16:20:08.0349 0x1a38  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
16:20:08.0393 0x1a38  WinRM - ok
16:20:08.0439 0x1a38  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
16:20:08.0444 0x1a38  WinUsb - ok
16:20:08.0505 0x1a38  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
16:20:08.0526 0x1a38  Wlansvc - ok
16:20:08.0573 0x1a38  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
16:20:08.0575 0x1a38  wlcrasvc - ok
16:20:08.0681 0x1a38  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:20:08.0721 0x1a38  wlidsvc - ok
16:20:08.0754 0x1a38  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
16:20:08.0755 0x1a38  WmiAcpi - ok
16:20:08.0786 0x1a38  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
16:20:08.0790 0x1a38  wmiApSrv - ok
16:20:08.0815 0x1a38  WMPNetworkSvc - ok
16:20:08.0837 0x1a38  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
16:20:08.0842 0x1a38  WPCSvc - ok
16:20:08.0889 0x1a38  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
16:20:08.0894 0x1a38  WPDBusEnum - ok
16:20:08.0945 0x1a38  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
16:20:08.0946 0x1a38  ws2ifsl - ok
16:20:08.0969 0x1a38  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
16:20:08.0972 0x1a38  wscsvc - ok
16:20:08.0976 0x1a38  WSearch - ok
16:20:09.0069 0x1a38  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
16:20:09.0119 0x1a38  wuauserv - ok
16:20:09.0146 0x1a38  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:20:09.0150 0x1a38  WudfPf - ok
16:20:09.0170 0x1a38  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
16:20:09.0174 0x1a38  WUDFRd - ok
16:20:09.0198 0x1a38  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
16:20:09.0201 0x1a38  wudfsvc - ok
16:20:09.0232 0x1a38  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
16:20:09.0241 0x1a38  WwanSvc - ok
16:20:09.0276 0x1a38  ================ Scan global ===============================
16:20:09.0298 0x1a38  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
16:20:09.0333 0x1a38  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
16:20:09.0345 0x1a38  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
16:20:09.0375 0x1a38  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
16:20:09.0416 0x1a38  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
16:20:09.0434 0x1a38  [ Global ] - ok
16:20:09.0434 0x1a38  ================ Scan MBR ==================================
16:20:09.0446 0x1a38  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:20:09.0683 0x1a38  \Device\Harddisk0\DR0 - ok
16:20:09.0683 0x1a38  ================ Scan VBR ==================================
16:20:09.0686 0x1a38  [ 7F9B24A4DC53909110E6C913BD352673 ] \Device\Harddisk0\DR0\Partition1
16:20:09.0687 0x1a38  \Device\Harddisk0\DR0\Partition1 - ok
16:20:09.0691 0x1a38  [ 431A6FDF2CEEE0D90603D2EFA5F51B78 ] \Device\Harddisk0\DR0\Partition2
16:20:09.0693 0x1a38  \Device\Harddisk0\DR0\Partition2 - detected Rootkit.Boot.Cidox.b ( 0 )
16:20:09.0693 0x1a38  \Device\Harddisk0\DR0\Partition2 ( Rootkit.Boot.Cidox.b ) - infected
16:20:12.0187 0x1a38  ================ Scan generic autorun ======================
16:20:12.0627 0x1a38  [ B765660889FB730A1AC49AC7E5A5493D, 1C18A7C08196B484D46D1AABC4DE70B2DB889C538CF9506535A4A8D531C5F2F7 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
16:20:12.0974 0x1a38  RtHDVCpl - ok
16:20:13.0039 0x1a38  [ 002B60F7B8A6786FF708ED67423D963B, F8A5B8A840E62A1E7EB9D8A18BAF15090CFA2986B1F9DA4715692627366F942B ] C:\Program Files\Fujitsu\FUJ02E3\FUJ02E3.exe
16:20:13.0046 0x1a38  LoadFUJ02E3 - ok
16:20:13.0049 0x1a38  SynTPEnh - ok
16:20:13.0090 0x1a38  [ F920461576C6584E754624806549CA09, 6F87C10F487A2591957E4CA41049F0B0DBD6B23844A2C0399CA1F1A46E04CE99 ] C:\Program Files\Fujitsu\BatteryAid2\BatteryDaemon.exe
16:20:13.0092 0x1a38  FJBATAID2 - ok
16:20:13.0101 0x1a38  [ 0663DC78CDC8DD73EF00C2B6D7850803, 1EC7825877EC43F2F1B4356FD9BFCCCC7E41ED12EE8AA361372F9CA0B6DA32B0 ] C:\Program Files\Fujitsu\Utils\FjStrtAp.exe
16:20:13.0102 0x1a38  FjStrtAp - ok
16:20:13.0143 0x1a38  [ 0892837BF89C842D518AC3A323992B47, 5E314AD8FCB7837C415E18B7619B1220239DDF44431145800F11FA7DE4AEFB2A ] C:\windows\vsnp2uvc.exe
16:20:13.0155 0x1a38  snp2uvc - ok
16:20:13.0166 0x1a38  [ F01A0F1FE0D1ED2C2A5729E740150FD1, 4F35967DF0CC2A3FB5E7EA8D9F1EBA8285DC3094148466D177F81E12FB8EF98D ] C:\windows\snuvcdsm.exe
16:20:13.0167 0x1a38  SNUVCDSM - ok
16:20:13.0236 0x1a38  [ 5C39358B816C63D3B8EEE027AEA51995, 5311E686930293FF7D9BB2D309CB1E575DC8DF8C5E4E21F411750A97BF3C9365 ] C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
16:20:13.0270 0x1a38  IntelPAN - ok
16:20:13.0299 0x1a38  ATSwpNav - ok
16:20:13.0320 0x1a38  LogMeIn GUI - ok
16:20:13.0350 0x1a38  [ 66724A618AE160D8C9B6D615FEC5FFBA, A5A178E838368D7ACF5BD36847F8613C1AE12BA21FE182EF212CC7046492B776 ] C:\Windows\system32\igfxtray.exe
16:20:13.0360 0x1a38  IgfxTray - ok
16:20:13.0402 0x1a38  [ 502BCD63B8C59C062EE4B2EC4EB0FD89, 1E55E9256C3FCF57B3CDF58C063427D1AC2D87D668AB91EF9EFE47E64592039F ] C:\Windows\system32\hkcmd.exe
16:20:13.0419 0x1a38  HotKeysCmds - ok
16:20:13.0471 0x1a38  [ 84B6743FF8C82CAA1B72AC0FF031D751, DAF55FD541EBB5BF885ED4AD694D9894CD12BB14FFBBCF347BD3DB37C846F1F0 ] C:\Windows\system32\igfxpers.exe
16:20:13.0479 0x1a38  Persistence - ok
16:20:13.0508 0x1a38  [ 15939A477158B9954543D3E13B61F080, 64E49374E4A796794A8E6C2F11A3299A423E91BBA27C72E7C86A12711903AB8C ] C:\Program Files\Fujitsu\FDM7\FdmDaemon.exe
16:20:13.0512 0x1a38  FDM7 - ok
16:20:13.0550 0x1a38  [ DEBF34BCF45FC4764CFF6F4CEBD1E03C, BD82FBC62B14181BD6714D797CA0869AD5E2D8F69D05EAEF295BB069730A9289 ] C:\Program Files (x86)\Fujitsu\Fujitsu Hotkey Utility\IndicatorUty.exe
16:20:13.0551 0x1a38  IndicatorUtility - ok
16:20:13.0563 0x1a38  [ 7B89EF5A5A46D4B5924D392D74437CAA, F83E9BE96BCF55CD02CB0B50B345E24E6FD78ADA52EBF859E357E8DD81947B9C ] C:\Program Files (x86)\Fujitsu\PointingDeviceUtility\FJPDAutoSet.exe
16:20:13.0565 0x1a38  StartFujitsuPointingDeviceUtility - ok
16:20:13.0592 0x1a38  [ 0892837BF89C842D518AC3A323992B47, 5E314AD8FCB7837C415E18B7619B1220239DDF44431145800F11FA7DE4AEFB2A ] C:\windows\vsnp2uvc.exe
16:20:13.0604 0x1a38  snp2uvc - ok
16:20:13.0633 0x1a38  [ 9D51EA92A612B37E76E5E4621650C50A, 00BD61C8527A80C0F684882379A0AC2E5A54E8BBECC797087B960CDC8454C373 ] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
16:20:13.0635 0x1a38  NUSB3MON - ok
16:20:13.0688 0x1a38  [ 4EFCDF3DB1BBA69C09622991280C4ACB, A86D4694BCFFF3C0FAF07C56A410A8317A953FB581CDCDBED5CAF735A0E2AC0D ] C:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe
16:20:13.0694 0x1a38  UpdatePDRShortCut - ok
16:20:13.0743 0x1a38  [ F5FBA8724DE219E96D9ABAF4772D31A3, C36CF6E40F831E01BA029B571EFCB46C5EA5A11750D13FE979DDFAE8B916AFFB ] C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe
16:20:13.0750 0x1a38  RemoteControl9 - ok
16:20:13.0844 0x1a38  [ 2EBE05FD8ECBA5F230FC26E534E91A11, B8E85D51BD4E6C0D4D447DFA327EAA0AE4A33F04F42063A58122153933C1770E ] C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
16:20:13.0852 0x1a38  ConnectionCenter - ok
16:20:13.0935 0x1a38  [ 6CB69CDF202BE1DF62A07DFFFBB2C140, 76A5B4E8D5AEF6EED648301C0C638BE1CDDC313FFF48E2A07DDEF8B0AC7E9503 ] C:\Program Files (x86)\Trend Micro\Security Agent\pccntmon.exe
16:20:13.0967 0x1a38  OfficeScanNT Monitor - ok
16:20:14.0000 0x1a38  [ 17D9622BFE68386E8C647C4C7F8FEA3E, 50F943F2E47512DCE61A9EBB188361CB71CACC74D9397FA1367AB7112F2C7A09 ] C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
16:20:14.0004 0x1a38  Redirector - ok
16:20:14.0023 0x1a38  swg - ok
16:20:14.0050 0x1a38  [ 0E8B8ABEA4E23DDC9A70614F3F651303, 66FC6B68E54B8840A38B4DE980CC22AED21009AFC1494A9CC68E892329F076A1 ] C:\Windows\system32\dpapimig.exe
16:20:14.0053 0x1a38  DPAPIKeyMig - ok
16:20:14.0105 0x1a38  [ EF162817C730DB9355F6C28F2445D206, 84AC974BF163A6EB540744435FD65ADC951ECF1BFF77DBA7D2B5D9F389E1DAD7 ] C:\Program Files (x86)\Windows Mail\wab.exe
16:20:14.0116 0x1a38  WAB Migrate - ok
16:20:14.0118 0x1a38  swg - ok
16:20:14.0120 0x1a38  Waiting for KSN requests completion. In queue: 130
16:20:15.0120 0x1a38  Waiting for KSN requests completion. In queue: 130
16:20:16.0120 0x1a38  Waiting for KSN requests completion. In queue: 21
16:20:17.0192 0x1a38  AV detected via SS2: Trend Micro Security Agent, C:\Program Files (x86)\Trend Micro\Security Agent\Pccntmon.exe ( 19.0.0.2166 ), 0x41000 ( enabled : updated )
16:20:17.0209 0x1a38  Win FW state via NFP2: disabled
16:20:19.0664 0x1a38  ============================================================
16:20:19.0664 0x1a38  Scan finished
16:20:19.0664 0x1a38  ============================================================
16:20:19.0691 0x1e68  Detected object count: 1
16:20:19.0691 0x1e68  Actual detected object count: 1
16:21:52.0125 0x1e68  \Device\Harddisk0\DR0\Partition2 - copied to quarantine
16:21:52.0133 0x1e68  \Device\Harddisk0\DR0\Partition2 ( Rootkit.Boot.Cidox.b ) - will be cured on reboot
16:21:52.0135 0x1e68  \Device\Harddisk0\DR0\Partition2 - ok
16:21:52.0135 0x1e68  \Device\Harddisk0\DR0\Partition2 ( Rootkit.Boot.Cidox.b ) - User select action: Cure 
16:21:52.0300 0x1e68  KLMD registered as C:\Windows\system32\drivers\10112483.sys
16:21:56.0034 0x051c  Deinitialize success





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users