Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Browsers are running slow and pop up with scam virus screen


  • Please log in to reply
10 replies to this topic

#1 zzyzxgal

zzyzxgal

  • Members
  • 98 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:18 PM

Posted 23 January 2018 - 02:03 PM

No matter which browser I use (Chrome, Firefox, or IE) eventually the fake virus screen will pop up. Now my browsers don't function at all. (I'm using a different computer for this.)

 

I ran Malwarebytes and Sophos virus scan and neither one found anything.



BC AdBot (Login to Remove)

 


#2 mikey11

mikey11

  • Members
  • 1,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Psychiatric Ward @ Beelitz-Heilstatten Hospital, Beelitz, Germany
  • Local time:02:18 AM

Posted 23 January 2018 - 02:40 PM

run ADWCleaner



#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:18 PM

Posted 23 January 2018 - 05:05 PM

Try running RKill before the scans.

Download to a Flashdrive and run from there if needed.

Please download Rkill by Grinler and save it to your desktop.
  • Link 1
  • Link 2
    • Double-click on the Rkill desktop icon to run the tool.
    • If using Vista/Windows7, right-click on it and Run As Administrator.
    • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
    • If not, delete the file, then download and use the one provided in Link 2.
    • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
    • If the tool does not run from any of the links provided, please let me know.
  • Do not reboot the computer, you will need to run the application again.

Edited by boopme, 23 January 2018 - 05:05 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 zzyzxgal

zzyzxgal
  • Topic Starter

  • Members
  • 98 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:18 PM

Posted 24 January 2018 - 12:01 PM

Thanks both of you for these suggestions. I've done them but still nothing was found by the scans. So, now I'm reinstalling a few of my browsers and we'll see what that does.



#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:18 PM

Posted 24 January 2018 - 01:54 PM

Also run these...

MiniToolBox
  • Please download MiniToolBox, save it to your desktop and run it.
  • Checkmark the following checkboxes:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP conf[iguration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
SXvL3ZF.pngTDSSKiller
  • Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
zcMPezJ.pngAdwCleaner
  • Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
And finally I'd like us to scan your machine with ESET OnlineScan:
  • It is recommended to turn off your antivirus program. Click on the E5rfZI9.png button to see which antivirus is currently enabled:
c4VVzVO.png
  • Turn off your antivirus program. See here how to do this.
  • Check the option beside: Enable detection of potentially unwanted applications.
  • Now click on Advanced Settings and make sure that the option Clean threats automatically is NOT checked, and select the following:
Enable detection of potentially unsafe applications
Enable detection of suspicious applications
Scan archives
Enable Anti-Stealth Technology
  • Click on the Change button and select only Operating memory, Autostart locations and drive C:\ to be scanned.
yKulboi.jpg
  • Push the dtoGjAL.png button.
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
8L8IBHJ.png
  • When the scan completes a list of found threats will open automatically (if any malicious files are found).
imxEgHt.png
  • Push thecRhRYZ8.png button and save the file to your desktop using a unique name, such as ESETScan.txt. Include the contents of this report in your next reply.
  • Push the 9IjfdXq.png button.
  • Check the box beside RHzfZB1.png to uninstall the application when closed.
  • Push Vc3btaC.png and the close the application clicking the X in upper right corner.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 zzyzxgal

zzyzxgal
  • Topic Starter

  • Members
  • 98 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:18 PM

Posted 29 January 2018 - 09:48 AM

09:30:28.0674 0x269c  TDSS rootkit removing tool 3.1.0.16 Jan 24 2018 17:27:43
09:31:10.0216 0x269c  ============================================================
09:31:10.0216 0x269c  Current date / time: 2018/01/26 09:31:10.0216
09:31:10.0216 0x269c  SystemInfo:
09:31:10.0217 0x269c  
09:31:10.0217 0x269c  OS Version: 10.0.16299 ServicePack: 0.0
09:31:10.0217 0x269c  Product type: Workstation
09:31:10.0217 0x269c  ComputerName: DPHZHH1
09:31:10.0217 0x269c  UserName: mboerger
09:31:10.0217 0x269c  Windows directory: C:\WINDOWS
09:31:10.0217 0x269c  System windows directory: C:\WINDOWS
09:31:10.0217 0x269c  Running under WOW64
09:31:10.0217 0x269c  Processor architecture: Intel x64
09:31:10.0217 0x269c  Number of processors: 2
09:31:10.0217 0x269c  Page size: 0x1000
09:31:10.0217 0x269c  Boot type: Normal boot
09:31:10.0217 0x269c  CodeIntegrityOptions = 0x00000001
09:31:10.0217 0x269c  ============================================================
09:31:10.0686 0x269c  KLMD registered as C:\WINDOWS\system32\drivers\55853233.sys
09:31:10.0686 0x269c  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 16299.15, osProperties = 0x19
09:31:11.0326 0x269c  System UUID: {BE1C0272-8613-AF52-1CF3-4095D9AF5BE4}
09:31:12.0504 0x269c  Drive \Device\Harddisk0\DR0 - Size: 0x2540BE4000 ( 149.01 Gb ), SectorSize: 0x200, Cylinders: 0x4BFC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:31:12.0626 0x269c  ============================================================
09:31:12.0626 0x269c  \Device\Harddisk0\DR0:
09:31:12.0626 0x269c  MBR partitions:
09:31:12.0626 0x269c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3EC10, BlocksNum 0x1281C66F
09:31:12.0626 0x269c  ============================================================
09:31:12.0675 0x269c  C: <-> \Device\Harddisk0\DR0\Partition1
09:31:12.0675 0x269c  ============================================================
09:31:12.0675 0x269c  Initialize success
09:31:12.0675 0x269c  ============================================================
09:31:35.0748 0x25c8  ============================================================
09:31:35.0748 0x25c8  Scan started
09:31:35.0748 0x25c8  Mode: Manual;
09:31:35.0748 0x25c8  ============================================================
09:31:35.0748 0x25c8  KSN ping started
09:31:36.0214 0x25c8  KSN ping finished: true
09:31:43.0956 0x25c8  ================ Scan system memory ========================
09:31:43.0957 0x25c8  System memory - ok
09:31:43.0958 0x25c8  ================ Scan services =============================
09:31:44.0209 0x25c8  [ 08312DEEF0D3F8647AA53AD90A69094E, E32620323E7EDD3CAB5B04B9E37DDE7CA87B45C2CB17520D69D03C17E1D5F65A ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
09:31:44.0220 0x25c8  1394ohci - ok
09:31:44.0280 0x25c8  [ 645009E711BBF117CCEE917A03FB0CDD, B531951443D961C08428CB0F77F57D9F33C37C0637F919A9DA9DB5DA18479F70 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
09:31:44.0284 0x25c8  3ware - ok
09:31:44.0618 0x25c8  [ 69481E5474C7E61CDB3FE6A8A0F3B1B4, 415807534C08B7B8D878B9C9475E98C947A6A19B9952C1087A22B4D4901F57DB ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
09:31:44.0639 0x25c8  ACPI - ok
09:31:44.0690 0x25c8  [ 44EA35A4B397898A83BF1B9B4B8DAE35, 023E3BC5CE47518269A812F156EFF1BD4CB14F1F5DD3FCC317DE046A519E20CE ] AcpiDev         C:\WINDOWS\System32\drivers\AcpiDev.sys
09:31:44.0692 0x25c8  AcpiDev - ok
09:31:44.0731 0x25c8  [ 91D113A1532B8AB1E25B7DE5AB3C2F83, 43134DB92D522FCF537FFA8E829021F43BDD90006D7F096BA483DA1DAD3D1CC3 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
09:31:44.0735 0x25c8  acpiex - ok
09:31:44.0769 0x25c8  [ 620BB2682BA625DF037072D89F44F6EE, A1A72F663C75DC65B1BA278CD7F43FAE6D1BDAE2F3F1D8269F508DECB555FFF9 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
09:31:44.0771 0x25c8  acpipagr - ok
09:31:44.0841 0x25c8  [ B9805A3C479390CEAEA5AEF5E4A90A2E, D9256734BC46EA43133873BDDE56B9A3597F74CFE82500FFB374A8EE6293ADD3 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
09:31:44.0845 0x25c8  AcpiPmi - ok
09:31:44.0855 0x25c8  [ ABD4EB55C661143B015BD0B9B47B235C, 5F109BA04010E634D547E86AF67659EA06BD05FCF78A493DB190790C4D7E13EA ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
09:31:44.0858 0x25c8  acpitime - ok
09:31:45.0036 0x25c8  [ 38622FFE9369D3EC01C0097235BD9279, 021BC514F61B3874892809981572AF9A29DE7445E56CF8BC09EBC7C6C68E5AB2 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
09:31:45.0041 0x25c8  AdobeARMservice - ok
09:31:45.0208 0x25c8  [ 036908ABB922605F247FF93FB1854EF2, 16C36DE7C48FC362F5F9DE05B288A1058C6823EAC1E9DD616556E3AD883728B8 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
09:31:45.0221 0x25c8  AdobeFlashPlayerUpdateSvc - ok
09:31:45.0303 0x25c8  [ 8C58BD711FAD5F11E8CFDBC5CED973A5, 340FCD2C492009D5D7732FBF94198C4767125A77E0C71BB20E5CB2BDA5AB57CF ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
09:31:45.0331 0x25c8  ADP80XX - ok
09:31:45.0408 0x25c8  [ 7AE4EBDC221235BF9E1008B515C0B8DB, 662D354042AB164F4E4113E36E558CC081791B1A826B58A59F34D4560809556A ] AFD             C:\WINDOWS\system32\drivers\afd.sys
09:31:45.0424 0x25c8  AFD - ok
09:31:45.0470 0x25c8  [ 56166D110D3ECFFC595E5FA02D9BA491, E8B08A07C06C7A3FA1996A0B027F316ACBDD2A21933DAD5CFFA9872C209DB79B ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
09:31:45.0477 0x25c8  ahcache - ok
09:31:45.0509 0x25c8  [ 84FFB4AC2BA923364DF13F73751E05D1, EBD054282D93F290408A2343C0CBF98CEF7619A8252DC04E15322E51505D45AF ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
09:31:45.0511 0x25c8  AJRouter - ok
09:31:45.0548 0x25c8  [ 084101AB03969D8ED00D5FFBE5F4C3DF, 6425FA16F0CBF5F3008780095364830EBF1F073BD5109764FE9E88245AFB9367 ] ALG             C:\WINDOWS\System32\alg.exe
09:31:45.0552 0x25c8  ALG - ok
09:31:45.0594 0x25c8  [ 7FE59496114A48A64E98E3218664A3E6, 1C11EE3686CB7F57783A5A5F56CCED71F61A46B26B0F4C4D04B1B37E8AC5A7D1 ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
09:31:45.0601 0x25c8  AMD External Events Utility - ok
09:31:45.0632 0x25c8  [ 62619E31AFF88F906A7E793AC4A9FF51, 2532FAD310036CC3A5A7C8276EDABA6F0705EEE46B61288856CEC0DF6CBA50C6 ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
09:31:45.0637 0x25c8  AmdK8 - ok
09:31:46.0055 0x25c8  [ E66C25946B3D9268D8E10D3769CF4719, C273A59D3A29549E3C8BBF896015CA0E5D64A4ECCD6C2FF360927773DA736022 ] amdkmdag        C:\WINDOWS\system32\DRIVERS\atikmdag.sys
09:31:46.0473 0x25c8  amdkmdag - ok
09:31:46.0559 0x25c8  [ D1D66D1D42E53B53AFC7598058E71796, 12A1C8D895891F89745493091174D3FF5A9953F21427E7E1BE1120DA762E0CBD ] amdkmdap        C:\WINDOWS\system32\DRIVERS\atikmpag.sys
09:31:46.0569 0x25c8  amdkmdap - ok
09:31:46.0607 0x25c8  [ 735142DD039BEB35632765C41FC6E397, 915373D15B9CCCFBC3DC46582C8EA1251E268DA8E535F2CC407546FE10662341 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
09:31:46.0613 0x25c8  AmdPPM - ok
09:31:46.0640 0x25c8  [ F1C16AABA27E9E153AEC7BD2AB853F30, 7CFDBD218E6C161747A21BBACC78BF1061F2427ED1247F1AE0879BE155C504E7 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
09:31:46.0644 0x25c8  amdsata - ok
09:31:46.0679 0x25c8  [ C834D0F1ECB8473E9E6D18EE1BCEECB2, C9B7B9279F96DE4DA1EE096B6463591B3A718F87CD75E544C5A07C3639D1F188 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
09:31:46.0687 0x25c8  amdsbs - ok
09:31:46.0716 0x25c8  [ 49203D2FFE30CBB36BE66A0E70F3D954, E5B5A3B3B4A8FF03B5C902642C776CECD554CA1DB25419111EDA83602986CCCE ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
09:31:46.0718 0x25c8  amdxata - ok
09:31:46.0815 0x25c8  [ 4EB4D11F563FBEBDE8DE4E74B8851715, 0F6FF3C5C999990501277AAC5A33DF8194CEE6975347C2D1D2319BB86D54867C ] AppHostSvc      C:\WINDOWS\system32\inetsrv\apphostsvc.dll
09:31:46.0837 0x25c8  AppHostSvc - ok
09:31:46.0891 0x25c8  [ 3692C75C47285D388C886D162F54C430, C38263F070F6F9CC5BBE458460BD3715CAC6E0C5E53AF2486289396CE5557673 ] AppID           C:\WINDOWS\system32\drivers\appid.sys
09:31:46.0901 0x25c8  AppID - ok
09:31:46.0943 0x25c8  [ A78F24AF599EA536C6028D80E4037664, 0FE73CAFAE336D8831225BDCC0158BEEEED2E9E6086109974BE7F1982A79C9CA ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
09:31:46.0951 0x25c8  AppIDSvc - ok
09:31:47.0012 0x25c8  [ 083C727CCAFEDE51D27E21B7D36F62C3, E5DD91F81E014686E10E085E20681B62B3C3458713F0C7DE4114EAAB03FB779A ] Appinfo         C:\WINDOWS\System32\appinfo.dll
09:31:47.0021 0x25c8  Appinfo - ok
09:31:47.0041 0x25c8  [ 1E085E2302D568F0CE041732B3E887B0, 0D2A3675FDD04C800B302C84A43F233F0217EB4B1AD44B11AADDB0D5D8FA0DB2 ] applockerfltr   C:\WINDOWS\system32\drivers\applockerfltr.sys
09:31:47.0043 0x25c8  applockerfltr - ok
09:31:47.0092 0x25c8  [ 043786FF3A1B6A066613E0B166F28F07, CB248FA46D3798487A543344095F8EC5ACD8A4A5B9FCC7C374CAFE9DB04C6281 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
09:31:47.0099 0x25c8  AppMgmt - ok
09:31:47.0171 0x25c8  [ 1D123729F547EEDFBE3F510346848C38, B170860348FBAC054203A7B858866A12944D7046C01BA3A14AC0860D8C288770 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
09:31:47.0187 0x25c8  AppReadiness - ok
09:31:47.0247 0x25c8  [ F317E643231F1E30A6577C7E06410B79, 82C5912CE0AD2F29D818776C049A02F76DDBD0ACB520B634DC16DC8460E0D59F ] AppVClient      C:\WINDOWS\system32\AppVClient.exe
09:31:47.0269 0x25c8  AppVClient - ok
09:31:47.0310 0x25c8  [ 05B19AD776D80FF0FADB44608896C16F, B7DDDF06C0E525774DA3AE3EA718E0CCC2D6C27F7430103B578859FAAAF2941F ] AppvStrm        C:\WINDOWS\system32\drivers\AppvStrm.sys
09:31:47.0315 0x25c8  AppvStrm - ok
09:31:47.0350 0x25c8  [ 3EA678F2C70083FB1588772FE7FAFFE1, 8B236563E285352DE9DC056DC87872412D3A756E82DA9D0191931A19714B4078 ] AppvVemgr       C:\WINDOWS\system32\drivers\AppvVemgr.sys
09:31:47.0355 0x25c8  AppvVemgr - ok
09:31:47.0393 0x25c8  [ ADD72B1FFE20B37A13A5A861724ECA05, D48515E1CF9B6317031B1151AEB8C7042D5FD63ABAD755749FE4660979F4E20B ] AppvVfs         C:\WINDOWS\system32\drivers\AppvVfs.sys
09:31:47.0399 0x25c8  AppvVfs - ok
09:31:47.0547 0x25c8  [ 27CDB04AB2E416987DF8947F423B1F25, A2B27EDD6815B610CCC4CD047051075A8F8DAC287C3565A8CE5D67378AF3199D ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
09:31:47.0625 0x25c8  AppXSvc - ok
09:31:47.0674 0x25c8  [ B42C83DE28776B80DBA1310C56DD4F74, 8E017B73D5AD644EC1D46BC1DC2CAF465A6793E2AD6DC35A2E3AB907E7719C40 ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
09:31:47.0679 0x25c8  arcsas - ok
09:31:47.0802 0x25c8  [ 9CDC69DDFDC91DC628F7515809329798, 2D202B3992A834A04C81834B0AC39E8B953410A24B929CB97D81F9CB546296D4 ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
09:31:47.0855 0x25c8  aspnet_state - ok
09:31:47.0915 0x25c8  [ 0D51FFDAE7C906C308369EAB87358304, 684E0405D82C67285FA1586426EA6792BBE796524C10DD24C2AF48FEF4E3D92E ] AssignedAccessManagerSvc C:\WINDOWS\System32\assignedaccessmanagersvc.dll
09:31:47.0932 0x25c8  AssignedAccessManagerSvc - ok
09:31:47.0989 0x25c8  [ C2151380227CD1F7DDA2401C1F151367, 0E76DCD69CAB960DC65942269081436A9DDA255E908E71A29E72DFCFC5CDCC7C ] AsyncMac        C:\WINDOWS\System32\drivers\asyncmac.sys
09:31:47.0991 0x25c8  AsyncMac - ok
09:31:48.0055 0x25c8  [ 6191B9B2EE0E8CB957C683B9B341CC86, E60ACC6E9C6E90F2E1DA0DE220C890B50887FD97E7884F8F4301FF2C9A2F408A ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
09:31:48.0058 0x25c8  atapi - ok
09:31:48.0146 0x25c8  [ 9D4F04649F6DE37B9AA5C31645E6CA04, 35E3BF5D8345FED6EB9371D2F29724D9946B03CA9D82974138B9FFA1FD20FECE ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
09:31:48.0163 0x25c8  AudioEndpointBuilder - ok
09:31:48.0270 0x25c8  [ 9F64921F3ADA44394DD51D917BB7EA46, 9BB036073FD72FC441686632B46855E5756B2BAFEA48F0C48C597D2DBB11F942 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
09:31:48.0307 0x25c8  Audiosrv - ok
09:31:48.0352 0x25c8  [ 947FF5992E26AFD4CAA34506678B70BC, 0B125EDBD6E740375E45AAA465DC83740F5CD43A55CDA404F7A81F37EE3BC57C ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
09:31:48.0356 0x25c8  AxInstSV - ok
09:31:48.0430 0x25c8  [ A921805C1ED3253DF48FCA4D724173EB, 7DB6A13228812550F066C76273ECA6B3FC12E7CC98C245D16B5A13FBCF6A509D ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
09:31:48.0444 0x25c8  b06bdrv - ok
09:31:48.0490 0x25c8  [ 763CF81762483E244BAEB83DEFFC53F3, 7445168B30A892871019583534F59EFDA4BC997B3C605EA724DBD1732F320812 ] bam             C:\WINDOWS\system32\drivers\bam.sys
09:31:48.0493 0x25c8  bam - ok
09:31:48.0567 0x25c8  [ 2A7267AA15E508F6D05A5B562F1FD1CE, 7070123619A3F08864844FF89C9DEA1D4ED48D05D2B93E305774BE715583DD51 ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
09:31:48.0571 0x25c8  BasicDisplay - ok
09:31:48.0621 0x25c8  [ 2E1EE0F10FAF1250D1AC05BFB0E6BD3D, 036821D6EE71AFF59B9DCA28F7F9678E68FD246CB1C4368B11B4447B389D394F ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
09:31:48.0624 0x25c8  BasicRender - ok
09:31:48.0671 0x25c8  [ 739D089777D2B66DBE7201E5EA4BA2D7, 9AD12E18A042C5B8EFB19297BC2E7BD1FEF75A138FEFB64C6BF0261FD3E53AB1 ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
09:31:48.0674 0x25c8  bcmfn2 - ok
09:31:48.0731 0x25c8  [ 72963E0676003016B431306A6F4951BF, 3442A7C1AC1EE8E68F15C78CEBAC237D7535F834AA13F8BB602645DD183A73D3 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
09:31:48.0749 0x25c8  BDESVC - ok
09:31:48.0791 0x25c8  [ EDDAA3A563E7EB71C991FE91249C7D81, C095F7DDFB06C73AE28359A9DF2AFF69E715A8890864610EAE07750BE5AF48CA ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
09:31:48.0793 0x25c8  Beep - ok
09:31:48.0863 0x25c8  [ 86CAB4060251D418B6449D6CBCC852A6, BF4FB8B1DC542CED79AE30A26071F1DA0D1029284150F99A7C4D2CB9DE732861 ] BFE             C:\WINDOWS\System32\bfe.dll
09:31:48.0887 0x25c8  BFE - ok
09:31:48.0987 0x25c8  [ E223918B4E0B28CF7BE132C30D1E161A, 6F7A88CE04B56C6EE1C8BE1675645B1D730CA2B069A8D521768542AC4EBF2E77 ] BITS            C:\WINDOWS\System32\qmgr.dll
09:31:49.0054 0x25c8  BITS - ok
09:31:49.0083 0x25c8  [ D030A1203680D66716F4E74053468627, C227F266AB7630D03E8ED19695E074B5182E4112E4931FB9552257EE2BE82848 ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
09:31:49.0087 0x25c8  bowser - ok
09:31:49.0158 0x25c8  [ 7A637BFC163E24FD1E30D18048B57FD5, 4766AE5EB85F3801A794E8526B550D8F4B892CBC9F4DCB33739929027681872B ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
09:31:49.0179 0x25c8  BrokerInfrastructure - ok
09:31:49.0237 0x25c8  [ 2BA1BED8E8168C301522AC7CFBFA2141, 07000BEF5ABCF7795B474B69B1113F7EE5C22CF0F8CAF4A3D5D872B0D452CDD0 ] Browser         C:\WINDOWS\System32\browser.dll
09:31:49.0242 0x25c8  Browser - ok
09:31:49.0299 0x25c8  [ A4863B7B1F0DB513D6E34547BACC211A, 41E74A60721CCBE0A4D487B3EE01BAC3108D9BA819BF58A64E963478C43828E9 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
09:31:49.0302 0x25c8  BthAvrcpTg - ok
09:31:49.0339 0x25c8  [ 9C9EE272C11252C651C5DE6A1AC1EDAA, DED378E894FA07B75F2E93490075879A50879CACACCF09F3F9EF37EDFA159233 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
09:31:49.0343 0x25c8  BthHFEnum - ok
09:31:49.0376 0x25c8  [ 69734E386826ED857C889330F35B4D9C, F0804D41D4BA6C9022B70D5092C4F14128D33F66C5D85DE10115A37C36927B70 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
09:31:49.0379 0x25c8  bthhfhid - ok
09:31:49.0435 0x25c8  [ BC58294295CBAD6637A526470305B5EA, FAA1A1C85D418B063D8A6E93558BA74D766081268354D63E28D372BD55D523DD ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
09:31:49.0457 0x25c8  BthHFSrv - ok
09:31:49.0510 0x25c8  [ A94AFAEA86F5F792BB4ECA095B231464, 588256D53CD50B8299FCABF624E8EF29761B16DE1999896DC647FBF8E2BAEA68 ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
09:31:49.0515 0x25c8  BTHMODEM - ok
09:31:49.0553 0x25c8  [ 572BCA61B7E026E057AF7DF456AC7E0B, CA35DCC02BFE2D34C40449E47F0C8BA4AD709F01A952B9354332560CE72A1E4F ] bthserv         C:\WINDOWS\system32\bthserv.dll
09:31:49.0559 0x25c8  bthserv - ok
09:31:49.0607 0x25c8  [ 39E7437FC59CDD7A303ABD514E462E8B, 9DCACFC12090BA03E3DD8E0EFE02382E3D42B528BDF6DD77318CAFACBA9EBA09 ] bttflt          C:\WINDOWS\system32\drivers\bttflt.sys
09:31:49.0611 0x25c8  bttflt - ok
09:31:49.0634 0x25c8  [ 522888590B0C19BC8128119060AE7901, 9C979FD442E7B189FD156BD5E5E4A3D10FDABB3C38094B9C67A702103D39B00F ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
09:31:49.0638 0x25c8  buttonconverter - ok
09:31:49.0710 0x25c8  [ 2AB01CE5E233A6FBA3E91BD57772AA4B, DC241810B774BCE651B525885480F05D15AE0E623D53E4CB02562A8424C067E2 ] CAD             C:\WINDOWS\System32\drivers\CAD.sys
09:31:49.0715 0x25c8  CAD - ok
09:31:49.0803 0x25c8  [ E2C8EE32C053892E685A989071AAE333, 842228C315BBD5FA802A81833BB0158774969FED4C5A706F9B904F7C70DB80A3 ] camsvc          C:\WINDOWS\system32\CapabilityAccessManager.dll
09:31:49.0815 0x25c8  camsvc - ok
09:31:49.0852 0x25c8  [ F6F97879F53AD57194C6BC8272FD73EA, C11CB040CC64ABC0A6EAD6D6985659896FBB5911D2E10B6584E0F90FE6813C57 ] CapImg          C:\WINDOWS\System32\drivers\capimg.sys
09:31:49.0859 0x25c8  CapImg - ok
09:31:49.0890 0x25c8  [ 9E82A95D77AC78C84BA75FF896B060BF, 87905E55724ADE5149D3BBC2DB76A7275580DE204BB561B8E1FCD631DEF3D9F9 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
09:31:49.0894 0x25c8  cdfs - ok
09:31:49.0966 0x25c8  [ 147CEBE0C5F7A80135C54715521AD9E1, 99ACF25165C0C17822B0FC06F662848CA0DFAD51B3E3B440005C2E033BFE4840 ] CDPSvc          C:\WINDOWS\System32\CDPSvc.dll
09:31:49.0984 0x25c8  CDPSvc - ok
09:31:50.0054 0x25c8  [ C2F158F11391F21C7D3FEB572D11C2D2, 5F5E7A1A4E9A8C6AB0C4735BCE9175AE92870410ACFB2376F950DACE22E075D7 ] CDPUserSvc      C:\WINDOWS\System32\CDPUserSvc.dll
09:31:50.0076 0x25c8  CDPUserSvc - ok
09:31:50.0175 0x25c8  [ 6D83565C1652E80447EDEA6947FA89D7, A84A3EA45304A9E3F53DA9F4CB9F2D9FF8A2AD69A36AEA366D35A2F5C9FDF851 ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
09:31:50.0183 0x25c8  cdrom - ok
09:31:50.0238 0x25c8  [ 200A5398C0E7E78DBDF6C0D9E811F366, 91BED3876FCA06AF551939720C0088BD195AF64C11C6EAD8970EDE8E037A71AA ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
09:31:50.0248 0x25c8  CertPropSvc - ok
09:31:50.0281 0x25c8  [ D81954CE5E016FD716EDDB2B2FD9BA58, C47FF6D6527605238EF46E9BDF4544E2B2F4F9C5BCE13881F569F996541D7FF7 ] cht4iscsi       C:\WINDOWS\system32\drivers\cht4sx64.sys
09:31:50.0290 0x25c8  cht4iscsi - ok
09:31:50.0368 0x25c8  [ F9A8570805807FFD66488F0A858E1308, 5D8363C5EEB7B92CFA219C466D04D8C625CACAFBDEA5857C5C9FA0C391AC2FEB ] cht4vbd         C:\WINDOWS\System32\drivers\cht4vx64.sys
09:31:50.0410 0x25c8  cht4vbd - ok
09:31:50.0452 0x25c8  [ 9798D58461706930190F1F2F6BF21D80, BD7552297A636E19F5D544BDBF3490DA544E76002F62B227FA5BDA7A11760040 ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
09:31:50.0455 0x25c8  circlass - ok
09:31:50.0505 0x25c8  [ 3B5973C9D50DE90CEB6D7DC85216AA86, 26B9090A0494CAFBB2EFD94D4C4241C69983A50033B81B83D594A2C99774B708 ] CldFlt          C:\WINDOWS\system32\drivers\cldflt.sys
09:31:50.0516 0x25c8  CldFlt - ok
09:31:50.0567 0x25c8  [ 59D46CE57A49353A733D162DBA65A4FA, 9701D96B077126AE65370EE64B859B37476200C98D065581DB955947103277DF ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
09:31:50.0577 0x25c8  CLFS - ok
09:31:50.0638 0x25c8  [ BE9FA79096DD2CB43E7066897AB52E50, FB7AEE5996BF5115EF1DCEF315A37226A31454073EF60564061A2DB0A4FAD9F1 ] ClipSVC         C:\WINDOWS\System32\ClipSVC.dll
09:31:50.0659 0x25c8  ClipSVC - ok
09:31:50.0736 0x25c8  [ 2BA3BA38B5A6A667B0EAEC477276707B, 80AD05C5C7E0398EB7320A82878700C6588B7411F3DEA02E5784CA599CB548C2 ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
09:31:50.0739 0x25c8  CmBatt - ok
09:31:50.0906 0x25c8  [ B3CC988A9D8B8EC66ED2B7B7B3413652, 31727820AB17DE2B835E6445A3D7B2869B66B5673D4648EE8D9C05EC03E5686A ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
09:31:50.0933 0x25c8  CNG - ok
09:31:50.0980 0x25c8  [ C65AF00EF12A1755E7CA370B0C71935D, C03315A5B999EB9AA5B5F1F000BD8A1C68DFC151B23AA2F29F69F7129407AA11 ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
09:31:50.0983 0x25c8  cnghwassist - ok
09:31:51.0116 0x25c8  [ A50300498D56B2448F3593D25478D508, 841D66D4AB9749EE64802611157A9AAED1117B6B2C411B3DA272CE439E69AE45 ] CompositeBus    C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_9c1fb8f4db31c348\CompositeBus.sys
09:31:51.0120 0x25c8  CompositeBus - ok
09:31:51.0130 0x25c8  COMSysApp - ok
09:31:51.0163 0x25c8  [ 65602B0DB49199647FECB2D1212147BE, DC25D2DED7C31B4691B61FC69BB12E50CA5EDA9705339CCC82BE145EFD6D47C5 ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
09:31:51.0166 0x25c8  condrv - ok
09:31:51.0234 0x25c8  [ CBA59790FE62C6896A7020DE0ADE2006, DDBACEFB25D55E4AFB24E7BC58349C5D11E0EC66CD7D7C2FD5BA17BD8994DC7C ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
09:31:51.0252 0x25c8  CoreMessagingRegistrar - ok
09:31:51.0325 0x25c8  [ D64EF74FC6DA47EC2E460076F299E77D, 1F77E9F777FA6996222DE45B3AB2C01CD94C80A4A7F5CA092DDF1F18D74F93AA ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
09:31:51.0330 0x25c8  CryptSvc - ok
09:31:51.0391 0x25c8  [ 0AAC6E3138AB83C466281642D1A48F15, 31AEBAE422BFDC9EBE0B8CBAEE5ABAA27E8EA47387D4A24C91A3CE92EF7E0C92 ] CSC             C:\WINDOWS\system32\drivers\csc.sys
09:31:51.0412 0x25c8  CSC - ok
09:31:51.0469 0x25c8  [ 9D4FA712339A09110809A4CC270AF4F0, 6403633EB0061CE3E4665E7A757EB697FD47DEE540EEDEC035CC13184FC62947 ] CscService      C:\WINDOWS\System32\cscsvc.dll
09:31:51.0488 0x25c8  CscService - ok
09:31:51.0540 0x25c8  [ 72BE43ABD786E86AAE7EA2193201E100, A013CF10AA4158082B5D0D7F885969C5C92710A6084E57E9DDBDA84420D97367 ] dam             C:\WINDOWS\system32\drivers\dam.sys
09:31:51.0544 0x25c8  dam - ok
09:31:51.0636 0x25c8  [ 79BDBB684629A526CCD958F06B9D6FAD, 489A85A5F63E5F012740B538878D6DAEBBB474D64F27A6847D3E387A704E5297 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
09:31:51.0666 0x25c8  DcomLaunch - ok
09:31:51.0730 0x25c8  [ F7FB921F438C3566CEC55657EA4E7D9C, 17FA956E3B89F9B6C154975E7E1AAFB204F5EDEACC14A8424827DE13440A9299 ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
09:31:51.0746 0x25c8  defragsvc - ok
09:31:51.0790 0x25c8  [ B5F9123D6537856EA698386ABA27A232, C60DD499254B4A3741ECE71AF1685763BD6A6F828F879D54E175A6198C89ABF0 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
09:31:51.0802 0x25c8  DeviceAssociationService - ok
09:31:51.0846 0x25c8  [ 64A80A746FC460126FA4124AA2D93848, 851ECA69489FF9A834B6A5ACF9D51283FD3796E21316D8A22E57DED2F415782C ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
09:31:51.0897 0x25c8  DeviceInstall - ok
09:31:51.0971 0x25c8  [ A19F51A044B62C994144ED87A7A5A887, 91ECE0E067E138817CD46A876B2D28CB47A2CCBE9C924EA91A1966FDF69AF7DF ] DevicesFlowUserSvc C:\WINDOWS\System32\DevicesFlowBroker.dll
09:31:51.0991 0x25c8  DevicesFlowUserSvc - ok
09:31:52.0081 0x25c8  [ 0D2A4CA81D1F7B5E5FBFE1E4F60246B8, EF425C2FB1191720F9B53EB26EC904F53851D296B222E20B0733615575D4B7E5 ] DevQueryBroker  C:\WINDOWS\system32\DevQueryBroker.dll
09:31:52.0084 0x25c8  DevQueryBroker - ok
09:31:52.0127 0x25c8  [ 9910E9CFF5ECDCB225F82E72CE9DE459, BF38E53FC993C4F8170341C7798E2FC18BDB540E7543979581ABCA9E24B4494E ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
09:31:52.0132 0x25c8  Dfsc - ok
09:31:52.0204 0x25c8  [ 5F78930AAB3900102EA8ACDD38F97324, 49CAE29CC7B1B846BDE603B1A411833162ACC1A9D1608BFDF67C2EA3A0EE0F85 ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
09:31:52.0209 0x25c8  dg_ssudbus - ok
09:31:52.0282 0x25c8  [ 309F4FBA6AC2CA70663C99690AE900C2, D38E3A5AD818DBB165C8C141236AE0C684E67FA1ACCD2914EEA1E6A771B06C33 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
09:31:52.0293 0x25c8  Dhcp - ok
09:31:52.0366 0x25c8  [ 8C46ADC4354DDE94CA459CB4BA822073, 8B0597866B6BAD22641B70836B29FC01433A00AFDABF31E5672DD5DF6ADCC3BB ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
09:31:52.0370 0x25c8  diagnosticshub.standardcollector.service - ok
09:31:52.0410 0x25c8  [ E2BF09B816393AF73EDCB8ECF9BBDB2D, DBDFFC2450E4EC684DD59383799ACF1D207B0882C301B8D562FB76307AFCC553 ] diagsvc         C:\WINDOWS\system32\DiagSvc.dll
09:31:52.0417 0x25c8  diagsvc - ok
09:31:52.0560 0x25c8  [ 363519B5143688A7779A51859CFDB863, D7F9D6524872926F69CE4E84D93B47034E0B1995431F13250C0917EF122F2AC3 ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
09:31:52.0624 0x25c8  DiagTrack - ok
09:31:52.0697 0x25c8  [ 811173C821171BB910219E53C7FD97AD, F915F90A39F99F6E38082B8077874791BBF21FF271351A4976494C6708C43E56 ] Disk            C:\WINDOWS\system32\drivers\disk.sys
09:31:52.0700 0x25c8  Disk - ok
09:31:52.0774 0x25c8  [ 133E5277C2A50770EADFAC4AF2232D69, E24933DD2440BA8DBDFD3A583301A9BE56A4ED699134242DB52E1AB5721C53D4 ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
09:31:52.0795 0x25c8  DmEnrollmentSvc - ok
09:31:52.0826 0x25c8  [ 569FE16775E15A49DC904DE20BF8CAA0, 18C1734AC5D6C4FE1944916B710450F18FAA7F3594E4EFB8CCEA140FC03A78BE ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
09:31:52.0829 0x25c8  dmvsc - ok
09:31:52.0872 0x25c8  [ 10E72E3315305461D3F0C7560AE98CA5, 702B5C056DB6B4E337231BBEA48E106FA95F26B48CDE91857305E4C6E4EE6A12 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
09:31:52.0876 0x25c8  dmwappushservice - ok
09:31:52.0960 0x25c8  [ 4ACA3CE75B4C2243299C24A715E9B3CE, 043610E57C6D87F12D98C1A663B5CA415F64742D30434863073BD902BAE2EAC0 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
09:31:52.0972 0x25c8  Dnscache - ok
09:31:53.0018 0x25c8  [ 24F0CF56DF2725291937B32597BA8D51, 810D4B43A4FB4B1738BFDAE51A49FD1725483BA686C6A3FA1DC1341D08AC743A ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
09:31:53.0026 0x25c8  dot3svc - ok
09:31:53.0069 0x25c8  [ 6D8971C942FEE43A0AB6B3192534AFB4, 44D437DD32E1FDD7922B352CA6C19C83C1ADD825FB704B8E07BEF01E866E2B99 ] DPS             C:\WINDOWS\system32\dps.dll
09:31:53.0075 0x25c8  DPS - ok
09:31:53.0120 0x25c8  [ F4800922F4ABA619585CE320A72E6389, CA83BCAA8B37F303E89598F8C93B201A3F000A09F4A9963E370D7E59BD79D448 ] drmkaud         C:\WINDOWS\System32\drivers\drmkaud.sys
09:31:53.0122 0x25c8  drmkaud - ok
09:31:53.0169 0x25c8  [ BB73FD1329739982C2915AB827A01362, 70E69942AE14D5012D9A8B1C799B5B4B4FCC2E456D8940CB4C104D6AB7C4997B ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
09:31:53.0176 0x25c8  DsmSvc - ok
09:31:53.0218 0x25c8  [ C7DC50CC0C6B0948A0C040622FCD70EA, F9C6B8F27E3DED8F7A681D0F652CCB6B1AE6D5E6CA8654E33EFDCF32A2D294EB ] DsSvc           C:\WINDOWS\System32\DsSvc.dll
09:31:53.0223 0x25c8  DsSvc - ok
09:31:53.0273 0x25c8  [ A92C554CC7B6814841D118356B40975B, 20ECA52235D75325B5EF971B14BD6B2B0B5AC13116DFF324655332A297B56D5D ] DusmSvc         C:\WINDOWS\System32\dusmsvc.dll
09:31:53.0284 0x25c8  DusmSvc - ok
09:31:53.0415 0x25c8  [ 0DF6B436F579E1DD23C8EBD61EE749E8, 1ED1DF424F0C162CEF6852F4D7DC1D26D6243A0E87088C993578CB391C0BC9A0 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
09:31:53.0476 0x25c8  DXGKrnl - ok
09:31:53.0552 0x25c8  [ A056A53FBE98EDC934008DB28D3184B4, 1872134ADE262953128BF8FC07E41A5BE9AEBB58BD859D152991C1EACB9ADB41 ] e1express       C:\WINDOWS\System32\drivers\e1e6032e.sys
09:31:53.0560 0x25c8  e1express - ok
09:31:53.0601 0x25c8  [ FA94398748930D840FE35A44F1D225A7, E2D48460413904AAFB50E18A24471157D2A235F5CCDF89EE49BB139D1CA3B9F6 ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
09:31:53.0606 0x25c8  Eaphost - ok
09:31:53.0796 0x25c8  [ C99D40C97841E0A7F0F90B8629593A97, 2DE7FB6E3CD7B06079C2B05D8C10AD0EDF187684ED1DE5BEE98FAB9A4B331824 ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
09:31:53.0882 0x25c8  ebdrv - ok
09:31:53.0920 0x25c8  [ 94E06D509D50807774F35BEE3163E806, ADADFA0D533944579BA0E5FE31A68D4D1395E7B9DB75E58D47E0ADC0DA5AD16C ] EFS             C:\WINDOWS\System32\lsass.exe
09:31:53.0925 0x25c8  EFS - ok
09:31:53.0965 0x25c8  [ 260BBD6B1ED06298E509B452354EDB91, CF794D5AC62C6DBF356BC717910FD2B106A8BD90C3C03BA43859FD876F8820BC ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
09:31:53.0969 0x25c8  EhStorClass - ok
09:31:54.0003 0x25c8  [ F3BEBDC1B9DBA32F183079EAE6244837, 5DE0DA8D2A13BFA852355619C6DE5AC2FDFAB314A619A4F209842581E4D82DE1 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
09:31:54.0007 0x25c8  EhStorTcgDrv - ok
09:31:54.0050 0x25c8  [ A75880A9192B9DA69F46867B06276746, 53856262A5BD4BE93CB45D1F43B87F45CB01C02B7D94231CF05346B9BDF1F18D ] embeddedmode    C:\WINDOWS\System32\embeddedmodesvc.dll
09:31:54.0057 0x25c8  embeddedmode - ok
09:31:54.0111 0x25c8  [ 9E6CB1D3F6AD67AA7A2C831FB9B7E496, EB9AEC7E780B6FDA8B6082D8F4F88C9393B4E6BB49ACE324C882DFB9AF8D0C78 ] EntAppSvc       C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
09:31:54.0121 0x25c8  EntAppSvc - ok
09:31:54.0141 0x25c8  [ 1B63CA857FD03FD0A5A1379F2996784F, 9EE5205DCFADAFC62D36528087FA4E023F7E48FF0D2A8333D8A6111AE09D21B8 ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
09:31:54.0143 0x25c8  ErrDev - ok
09:31:54.0216 0x25c8  [ 680AF1647150CF9B061FF40E71C7396A, 978EC44EFA0D582054A6F0B8283BB5C2634004DC39301A31D13987317293964A ] ESProtectionDriver C:\WINDOWS\system32\drivers\mbae64.sys
09:31:54.0220 0x25c8  ESProtectionDriver - ok
09:31:54.0289 0x25c8  [ 6A5FA501A2D96001391FF3CBA32935AB, 018DB01ADE957A1A1FF5B168A2EC0EFEF8BFBE036079791FDF0C6AA6C12295BA ] EventSystem     C:\WINDOWS\system32\es.dll
09:31:54.0310 0x25c8  EventSystem - ok
09:31:54.0352 0x25c8  [ F1ACA42D448E3986565EA54275EEEA65, C85101D6E7A2204FD73AAACD972F610B6A4BCF7EB7512412FD34660DCB5E8C5C ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
09:31:54.0362 0x25c8  exfat - ok
09:31:54.0398 0x25c8  [ 0AF4B36754A6EAE794EE4398E219A9E1, A818763D7AE6E7F4BC57294BB4D80FE9E04387BB3EBE8A6088D2AF746FF548A6 ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
09:31:54.0408 0x25c8  fastfat - ok
09:31:54.0468 0x25c8  [ B1A38C0D977D8738779CA3EFEBDFCA8C, EDD852EF89AFBDDBBBE002E6675EAFCC46742B6136EB22428C84D737C6229FEA ] Fax             C:\WINDOWS\system32\fxssvc.exe
09:31:54.0486 0x25c8  Fax - ok
09:31:54.0539 0x25c8  [ 7CD8426A33F06EB72BFEC51F7C264AF8, 4FDD5F6A8BDF25D965CE52132DD0EA77D335C1C5F77A7758F3F6E22DFC12BDF5 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
09:31:54.0541 0x25c8  fdc - ok
09:31:54.0582 0x25c8  [ 21EB16C5DDFBC19DEBE9EEC10EA423FB, 514327DA987793AFE1DFB4F2C0F033C349432E6F1F6AACBAE23E24E63EFA51B9 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
09:31:54.0585 0x25c8  fdPHost - ok
09:31:54.0621 0x25c8  [ 57F98EFE6CB82AE5400BA99C705AF45C, 7AB83C7AF4CA49BFC2976FB707B251C181279B7E16EBDD43AD0E1A4AB8C4DFC9 ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
09:31:54.0626 0x25c8  FDResPub - ok
09:31:54.0756 0x25c8  [ 29D10CF6732A835C71DE2B86C0489226, 465E636101D9842BD896167BE46D691BEDB1E10B5B209CDB6C466698D8F5A59B ] FedExAdminService C:\Program Files (x86)\FedEx\ShipManager\BIN\AdminService.exe
09:31:54.0805 0x25c8  FedExAdminService - ok
09:31:54.0809 0x25c8  [ A0008463C600BEAB96A4ACDC6581B196, 7BD67E1573C03E1A52D182DAF327A29548372316922DBA9697A4BA1651F73700 ] FedExLoggingService C:\Program Files (x86)\FedEx\ShipManager\BIN\FedEx.Gsm.Common.LoggingService.exe
09:31:54.0835 0x25c8  FedExLoggingService - ok
09:31:54.0839 0x25c8  [ 57ADC9CB4F07EDE0EA4D4C93CACF3B13, 90570A6B82F3ECB77A9A520CFD236BB0539EF366B74FA4FB778D94E10707EC3A ] FedExTransactionService C:\Program Files (x86)\FedEx\ShipManager\BIN\TransEngineService.exe
09:31:54.0866 0x25c8  FedExTransactionService - ok
09:31:54.0929 0x25c8  [ 02F93E4B9EC2821B6670208044FF5332, 2D947C8AE51E749029B3180751E4486E27A19471A7A98087076103D307B5CE64 ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
09:31:54.0937 0x25c8  fhsvc - ok
09:31:54.0985 0x25c8  [ DE51BBBCF358188F9736F031546F9908, E2B80DF63C039663085FA9D63F3F30736EC20C49BC678CBD7D7C7231107C3635 ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
09:31:54.0988 0x25c8  FileCrypt - ok
09:31:55.0008 0x25c8  [ 822F664952B0F8D11BB6BD2F11779602, B7E9908A305942194E64E834819186CBBF9DD4469B300DCC8D31E1E5674D6600 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
09:31:55.0011 0x25c8  FileInfo - ok
09:31:55.0046 0x25c8  [ 5A4935682A0D47A4EAC4BE3C2ACF74D6, 0DCF2E7928D11F49EBF906233894E81CFFE938ADFCA802CE0207CA58B4A02AAD ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
09:31:55.0049 0x25c8  Filetrace - ok
09:31:55.0056 0x25c8  [ 60641F22D1D38EAD197C25F0339C9712, 110ACEADAE92C384C80356C9DE88E3A94141881E8544DB65736875FFA2716F68 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
09:31:55.0058 0x25c8  flpydisk - ok
09:31:55.0108 0x25c8  [ 56F9EAA7099159759B2F6C523007A13F, E29B3CB052FD9776E818B9CE3E805E89A37DD925FE64518F768238AB706C24B9 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
09:31:55.0119 0x25c8  FltMgr - ok
09:31:55.0219 0x25c8  [ 9DCB91239DE1FE05F870AE3471E70559, 1EA360023B926F4024B602010AFD168A6C615632B05900427D765CD228280EEF ] FontCache       C:\WINDOWS\system32\FntCache.dll
09:31:55.0267 0x25c8  FontCache - ok
09:31:55.0376 0x25c8  [ A7C6894FFF261C0FEFDCB41BE83CF430, C3DB55140E4848873BC0004030933402CD396112C14F432258D875DB1608700E ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:31:55.0410 0x25c8  FontCache3.0.0.0 - ok
09:31:55.0489 0x25c8  [ 6793F7AE8442C487C55352C78739E77A, EA9FE762B8A339183DB3523CD8E8736B6BEF8489EC11380EF7F1530D10631500 ] FrameServer     C:\WINDOWS\system32\FrameServer.dll
09:31:55.0508 0x25c8  FrameServer - ok
09:31:55.0553 0x25c8  [ 5D8A0E58E3F82583697E3F07052435AA, 7E1BF49657905950DD24BAF2B270976D7D9D33AEBC24E0DC0A5B16AC944DB9AD ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
09:31:55.0556 0x25c8  FsDepends - ok
09:31:55.0598 0x25c8  [ BB82CC2F51F7C3D5DCD13FA3B040D8F8, 24B9735D8E4BC0416AFDEEE534118D98AF363CFE8AEFE8AB23827DC67FC4239B ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
09:31:55.0600 0x25c8  Fs_Rec - ok
09:31:55.0660 0x25c8  [ 69C669540A850553AF9589DB05A2A7D0, CF5468B7851509400FED4161AB766CE58CC50056B561A950D849E0F8BCDF4D3C ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
09:31:55.0678 0x25c8  fvevol - ok
09:31:55.0734 0x25c8  [ 3B5DDF1061930A0A891FA63DB0CB878B, BB48865CFAD8299E96AFBC2993A34FB47B52466C897FF0875836BD48A14B78C7 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
09:31:55.0737 0x25c8  gencounter - ok
09:31:55.0761 0x25c8  [ 8B34E3F794F652082D7E8AF112F71681, C6CFA239BDF46827BFC89DC9A9BF45B0EBCE3EF1BB7DCA33980A632E549B37F5 ] genericusbfn    C:\WINDOWS\System32\drivers\genericusbfn.sys
09:31:55.0763 0x25c8  genericusbfn - ok
09:31:55.0805 0x25c8  [ 127C23F4720C8902A3AB0FEE12205317, E3BF55D81B04572D11B41CDA2DB4509FD252561EB29ED22CC6F616E856E3D86E ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
09:31:55.0810 0x25c8  GPIOClx0101 - ok
09:31:55.0918 0x25c8  [ A7A85B505944F99CB55C8669E4F7FC0F, AE2B11A0309907949D4BACF32BA487C9A7732D647F00ED428102C380F53465A8 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
09:31:55.0950 0x25c8  gpsvc - ok
09:31:56.0011 0x25c8  [ C7DEA3458E50B691E69EFF0B47CBCCDB, E33330473BDA2025503B2E65DA03C83C884F56B9E684F90695D4AF1AFB922832 ] GpuEnergyDrv    C:\WINDOWS\system32\drivers\gpuenergydrv.sys
09:31:56.0013 0x25c8  GpuEnergyDrv - ok
09:31:56.0064 0x25c8  [ 141904F0581468B39B579EA33CA57549, 1D947A6079CED7840B0FF4720C36D873F5A69EA6C94E4C15ADF1A7C0CD0CD0EA ] GraphicsPerfSvc C:\WINDOWS\System32\GraphicsPerfSvc.dll
09:31:56.0069 0x25c8  GraphicsPerfSvc - ok
09:31:56.0108 0x25c8  [ 39E2AEC083B4682C1AC2D7EFD81EEACC, 3443E2D601F9A8188CDBFE85DAF88C1EF683EDFF9466CAC254175117A4A5D6AA ] hcmon           C:\WINDOWS\system32\drivers\hcmon.sys
09:31:56.0111 0x25c8  hcmon - ok
09:31:56.0144 0x25c8  [ 6B76F5915654F647B06EDBE63BCB5116, D7949564AD369DD9134C26927252B657C4F87161AE958F784AE1515C1DBC6226 ] HdAudAddService C:\WINDOWS\system32\DRIVERS\HdAudio.sys
09:31:56.0155 0x25c8  HdAudAddService - ok
09:31:56.0167 0x25c8  [ 99A34FD1F6431A10D8C3BB50E170D0F2, 14BFF99BBF9ED53D3A157B096CDE0394824260021BA96E1F2C7B1CFB598DD850 ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
09:31:56.0171 0x25c8  HDAudBus - ok
09:31:56.0209 0x25c8  [ 2443FC6EEB9CF092B62127D867901B02, ABD5E907FF066B95C5697C4E470B4EA19976DEC90C8159B963A82EDA218AB114 ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
09:31:56.0213 0x25c8  HidBatt - ok
09:31:56.0264 0x25c8  [ 205043CDC16ADE85E252DD54AE925161, F377F046EFEE53C7786AF15C0BB5BADE36511427575A712B0098A883F3715DB3 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
09:31:56.0268 0x25c8  HidBth - ok
09:31:56.0296 0x25c8  [ B521DDDC9038C066B1B957BF063A531A, C5FE68FB22C28C4D06A0792FD5AC9A1F0EC01EF26E1D37B9DF05F22D8B7DFF8C ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
09:31:56.0299 0x25c8  hidi2c - ok
09:31:56.0313 0x25c8  [ 5AC0EBFA76E93273A806176D3178E986, 679BFEFF9F4172EBB14A6C2E8381F54FBDC9E8705E8B0F306723DDF48B6E5143 ] hidinterrupt    C:\WINDOWS\System32\drivers\hidinterrupt.sys
09:31:56.0316 0x25c8  hidinterrupt - ok
09:31:56.0348 0x25c8  [ 366AC0E05EBF5D5C375F65CD8BC7F0DF, A6B751864E33EBB5DE2E09403A8C26E72DD5510F3A380FA502393FC11A14A433 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
09:31:56.0351 0x25c8  HidIr - ok
09:31:56.0373 0x25c8  [ 75F4CCB7FF03603E91DD0C7FF83DAABF, 10508A6C36163C9D40C16A47AB4CA8C03C89BB7795690818E5C562E3FF828D5B ] hidserv         C:\WINDOWS\system32\hidserv.dll
09:31:56.0377 0x25c8  hidserv - ok
09:31:56.0400 0x25c8  [ 7CB54D02746024648FCE184FC3F941FF, 6C7B8E6AD3C05D66868D0268C9C8183021AB241E576184FAD0BD50ED4E18E9ED ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
09:31:56.0403 0x25c8  HidUsb - ok
09:31:56.0461 0x25c8  [ B5E3F4730F2471C76946E04645203690, D31C45C2BC7554A8B865620A5C7C4E0FF4D31E609D92D760B762955AC7FDB0BF ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
09:31:56.0472 0x25c8  HomeGroupListener - ok
09:31:56.0532 0x25c8  [ 24C900B7296AA9867FB761A5801AFBD1, 4A765E905D0F7C4B450A28FB85F413F4EAD2B53240E804FA531626ABB0518381 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
09:31:56.0550 0x25c8  HomeGroupProvider - ok
09:31:56.0578 0x25c8  [ 835FB95D85D362057A72D21A48C2C7F8, 06A57F9E459E52DAA7B27F232DBC1E0ED0E04759D34AF3E15A645D11DFDD6A58 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
09:31:56.0582 0x25c8  HpSAMD - ok
09:31:56.0663 0x25c8  [ 717D6E92D0143BCC4C36976BFFD94753, B98659198145470F83621491B7FE173BF8300BB9B7C35031B49487F30388C386 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
09:31:56.0691 0x25c8  HTTP - ok
09:31:56.0738 0x25c8  [ AD930879F319969EB09449C015A32104, 3C33CFA1D3452EAB689178D09311DFF84C4A2D5854837DA75B1D7CC57CE6FB5F ] HvHost          C:\WINDOWS\System32\hvhostsvc.dll
09:31:56.0742 0x25c8  HvHost - ok
09:31:56.0787 0x25c8  [ 9F2CFC90306532866C62BDCDFD2532AA, F27B1087B1E3E06FB49092BBF2DD8CF5B6ADD4CE061FE10C3ED44C58B92BE007 ] hvservice       C:\WINDOWS\system32\drivers\hvservice.sys
09:31:56.0791 0x25c8  hvservice - ok
09:31:56.0830 0x25c8  [ 3737FE486929AFC48F1D10677B698E52, 9E8792F3A494AE3E7CDA65E93B561B6FFFB9C781606F5863D524DDD24CFEB9C3 ] HwNClx0101      C:\WINDOWS\system32\Drivers\mshwnclx.sys
09:31:56.0833 0x25c8  HwNClx0101 - ok
09:31:56.0870 0x25c8  [ 3C65EBF7F1BFD98426C355D66876ECEE, CA1DC462C4D96176C81EF3448238B76B4CDA3C521533973B281359D7F436B8A5 ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
09:31:56.0873 0x25c8  hwpolicy - ok
09:31:56.0915 0x25c8  [ 7E00234C67A322988AFEA717D5609C9E, 9210E400200B1313426792A67C27ECA4DBA9872111DC3C217195FC5DEAC4614D ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
09:31:56.0917 0x25c8  hyperkbd - ok
09:31:56.0960 0x25c8  [ FBF5BB641DE99AE1DF4835E88D4F8993, 55250C1FCCDA74249D5EE15B2502A68DB1EB60C7AC24500B9FB2DF2E3319CDAB ] HyperVideo      C:\WINDOWS\System32\drivers\HyperVideo.sys
09:31:56.0964 0x25c8  HyperVideo - ok
09:31:57.0003 0x25c8  [ 56FF074E50F9042FD2856AB3418F4B18, 239C9BF23DE2E36FD7112C425CDF18F29B751D75EF3551AEFB048FAD2B0A55E2 ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
09:31:57.0016 0x25c8  i8042prt - ok
09:31:57.0073 0x25c8  [ B5EC43755E62591197DE5CBBDAA9FEB7, 1B4E0EAB677B09A050925879ECDA311404270DCF020AAD390692427198C73C9F ] iagpio          C:\WINDOWS\System32\drivers\iagpio.sys
09:31:57.0076 0x25c8  iagpio - ok
09:31:57.0112 0x25c8  [ D8CA23F9C5FEF44296FDE1E005C06EC0, 0D7B03EF9E19B9B2A28C3318560488B3F9573CF364A533A9B4A2CD0A7FFA4F84 ] iai2c           C:\WINDOWS\System32\drivers\iai2c.sys
09:31:57.0118 0x25c8  iai2c - ok
09:31:57.0150 0x25c8  [ 7B769C9D19C013F94874C4B15D59A005, 53A15F0480AEC43B5A01CFB17360188885B6ECBFFF6E566D27E5B6D4C7737243 ] iaLPSS2i_GPIO2  C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys
09:31:57.0153 0x25c8  iaLPSS2i_GPIO2 - ok
09:31:57.0180 0x25c8  [ E0F1B3A2A70FABE3BE1C9140BB55E607, 34E5B055619F3A26B7BB6054EA49D40B7D6DAFE234F57F358FE7C8EE83E10618 ] iaLPSS2i_GPIO2_BXT_P C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys
09:31:57.0184 0x25c8  iaLPSS2i_GPIO2_BXT_P - ok
09:31:57.0221 0x25c8  [ 89A869BCC0588A3009ECB875B09ECD39, 5ECC2C6E661B326511682D8EA1C82F942C63835890687285FEF455C5C9DC2476 ] iaLPSS2i_I2C    C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys
09:31:57.0226 0x25c8  iaLPSS2i_I2C - ok
09:31:57.0250 0x25c8  [ 2E693DF3C02A0859DB8DE25772751100, 3EFFDA44B247E04258429ADC85E88E23F926FD487A3A85BF879E6E5802197B3F ] iaLPSS2i_I2C_BXT_P C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys
09:31:57.0256 0x25c8  iaLPSS2i_I2C_BXT_P - ok
09:31:57.0287 0x25c8  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
09:31:57.0290 0x25c8  iaLPSSi_GPIO - ok
09:31:57.0323 0x25c8  [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
09:31:57.0327 0x25c8  iaLPSSi_I2C - ok
09:31:57.0390 0x25c8  [ 435883A27A376B125BD4DF888417C85F, 091F9285FCF1D5605D03CB68C062A2DE6FF2D705FF43E983A8A7B5DFA0872A96 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
09:31:57.0407 0x25c8  iaStorAV - ok
09:31:57.0490 0x25c8  [ 7118E4390C4ACDE61E280CE52BCAF44E, 11123C1555344A191283187BF1F4A8D731E29EE27C7A7A7916873E8D2E95D978 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
09:31:57.0505 0x25c8  iaStorV - ok
09:31:57.0545 0x25c8  [ 9DBE8C359ABACE1BE1BBAB687D114506, D2E5CB2BFC42627C1BB38A68F925DD534AEFFF9354AFD184005EC338E8E6B232 ] ibbus           C:\WINDOWS\System32\drivers\ibbus.sys
09:31:57.0573 0x25c8  ibbus - ok
09:31:57.0637 0x25c8  [ 113F3C05CE9B41144E6BF5FEDA4F09B7, 8A0610558DAEEAD81D32456FF8E03463F430ADB84457ED12C34CB76AC3EA407A ] icssvc          C:\WINDOWS\System32\tetheringservice.dll
09:31:57.0646 0x25c8  icssvc - ok
09:31:57.0721 0x25c8  [ 72AB18B50053FA57B08FD4065C11B16B, 4D0CDAEF3C168539BEE22F28CBFEA380535FD78863965EAC6421B9E26048D1F5 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
09:31:57.0747 0x25c8  IKEEXT - ok
09:31:57.0788 0x25c8  [ 42CAF6216A6E516DC56BA319ACC7EEC5, DF60FF41F06D1101E4A81F7416DB5A34D7BA885CBA874BC15AD43FB4080F2958 ] IndirectKmd     C:\WINDOWS\System32\drivers\IndirectKmd.sys
09:31:57.0790 0x25c8  IndirectKmd - ok
09:31:57.0890 0x25c8  [ 1D4D8FEEDEFEB5B92ECB19A648DDCDB2, 5A8A7254EF6466B9ED53DDDC74CF1330421101B0E88C25169A73B560A13986F0 ] InstallService  C:\WINDOWS\system32\InstallService.dll
09:31:57.0924 0x25c8  InstallService - ok
09:31:57.0970 0x25c8  [ 40943C1CD031ACE06A8374AD56B9E5EA, 05E5AD4330F272C421A8726E9E6555115D8717DC5AFDE3CC1DB53A3D7518BF62 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
09:31:57.0972 0x25c8  intelide - ok
09:31:58.0021 0x25c8  [ 327D9CCF5492543AEF3979F9EEAD02BE, 1C6CD9ECB785D022A38DF683FACCA737469BF72E42365CD6DB8C2675F2ED1F1C ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
09:31:58.0026 0x25c8  intelpep - ok
09:31:58.0075 0x25c8  [ 10F2757836F41BFAEA2AE19F6FE869B2, 487863EEAEDDC80E39A04030D69950BB58A8BF81EEFBC667398F9F4C238DE007 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
09:31:58.0081 0x25c8  intelppm - ok
09:31:58.0114 0x25c8  [ 8387E90B551B9B7F32EDC69909591E9E, 7086B6F2B728D7C46F0A1E7E4F81B3D33C25BD5F8A2A4ECEBA55F8C68F164500 ] invdimm         C:\WINDOWS\System32\drivers\invdimm.sys
09:31:58.0117 0x25c8  invdimm - ok
09:31:58.0167 0x25c8  [ E207078E0E1BB3524277DB9077E4148E, 309320950095AF83DCBE08BFDD4BFE4EBADBF48CA255871A6B37BAAA7B4A5B38 ] iorate          C:\WINDOWS\system32\drivers\iorate.sys
09:31:58.0172 0x25c8  iorate - ok
09:31:58.0225 0x25c8  [ FD8F64B7B345E539F2EA7F72846F83B4, 95F232BC2454D68F1A154C9BD8FCCF60D36F5424B798661D6F1DD8E052ED0D04 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
09:31:58.0232 0x25c8  IpFilterDriver - ok
09:31:58.0302 0x25c8  [ 0076CE11539416052A7A79B2DCC53E6D, 0FBBC0948B096922333B54E4DB98BD716CF95340CF699BD3D4EC31B0BA7897CB ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
09:31:58.0325 0x25c8  iphlpsvc - ok
09:31:58.0349 0x25c8  [ 8AAB863E72A4F9C578FED2EE3541545B, B3278B790DF9F77F8FDDBECAD22E0D2E080D74B8E61EFF112055478B3B0B2329 ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
09:31:58.0353 0x25c8  IPMIDRV - ok
09:31:58.0383 0x25c8  [ 7BEC2AF23F586EFF0DB4DBF4331B0C70, D02506CAB19AD1D3ABBB35FCC569ED613EB9D6828E9BC0389EC8A8DFC548334B ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
09:31:58.0390 0x25c8  IPNAT - ok
09:31:58.0429 0x25c8  [ 35A54F19E703D4FE5919F812F6CC5D0A, B0AC1C97D115F57390BD2B4F9114429CF1729EB8D658B3EAEC8ECF28A24369F7 ] IPT             C:\WINDOWS\System32\drivers\ipt.sys
09:31:58.0432 0x25c8  IPT - ok
09:31:58.0465 0x25c8  [ F6C47021C41F721B628161B64D7DECB9, 625227F18518098C00AF2C6F4EE5D96711D26080459AD2C9F7CF2A5778DEF191 ] IpxlatCfgSvc    C:\WINDOWS\System32\IpxlatCfg.dll
09:31:58.0470 0x25c8  IpxlatCfgSvc - ok
09:31:58.0511 0x25c8  [ 359CDDBC825959DA28FA886B3C271B53, 27758898F6297E768706CA408E5D0310291D74FE312580E68F8E8A0C2F52B0F3 ] irda            C:\WINDOWS\system32\drivers\irda.sys
09:31:58.0515 0x25c8  irda - ok
09:31:58.0553 0x25c8  [ F88664A2A82DDA456180FFF95A771765, 004BBC715FE6EC0D4D2CAE978EA64C6CEA130EE10C356B7FACF0C98B51E8AECB ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
09:31:58.0556 0x25c8  IRENUM - ok
09:31:58.0601 0x25c8  [ 4F500A0171606B0E37964694140FCA16, 6E29A7348395EE3EB85E2BA97E581FBF605CE1BA4651F5848976AD293CC797E3 ] irmon           C:\WINDOWS\System32\irmon.dll
09:31:58.0605 0x25c8  irmon - ok
09:31:58.0619 0x25c8  [ 2296B158C43C306B0AC5B4D57EA9F0E1, 7B256FFF111F42EB0BE39B9C6CC5B215F80F8105E64A2DBC2F228F38AC79DBB5 ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
09:31:58.0621 0x25c8  isapnp - ok
09:31:58.0670 0x25c8  [ 2DC0765992CFECE3B13F3BFD20E69DCC, B872E6D77768D89D921D856D28EFDF8205F8407087AB01826DAD99303460A84F ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
09:31:58.0679 0x25c8  iScsiPrt - ok
09:31:58.0707 0x25c8  [ E320F986BBE0CD9324EA0A193EBF29B1, 9B4C7F1493377CE532361F88A0C88798F24E7EFB093DA2F0A6CB1575B9E3535C ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
09:31:58.0710 0x25c8  kbdclass - ok
09:31:58.0725 0x25c8  [ AFF5DDCC1A79217C9526FF5E01A69E89, 2BCD49DD8DD977B97521465B981332CA8FA8D16AB45B45993C87647FA3E9DAF0 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
09:31:58.0727 0x25c8  kbdhid - ok
09:31:58.0741 0x25c8  [ 916E62AF3386F7A74603E5C545F6FF2D, C5CA784F60B8CA3DE0672A816DCE14F1AD6B6783A5E6B556ED7C91337F65144F ] kdnic           C:\WINDOWS\System32\drivers\kdnic.sys
09:31:58.0744 0x25c8  kdnic - ok
09:31:58.0758 0x25c8  [ 94E06D509D50807774F35BEE3163E806, ADADFA0D533944579BA0E5FE31A68D4D1395E7B9DB75E58D47E0ADC0DA5AD16C ] KeyIso          C:\WINDOWS\system32\lsass.exe
09:31:58.0761 0x25c8  KeyIso - ok
09:31:58.0782 0x25c8  [ 69FA8BEBADF807089FEFCD3F59CFAC1E, C8F648618C758E062F9C7043F69E264F1796D91A6B723C4B35BA0607C659BD5F ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
09:31:58.0787 0x25c8  KSecDD - ok
09:31:58.0805 0x25c8  [ C1081E2B36F77781167FD9401119B98E, 8D653A39BB03A4CEAAB564A27BFEC853E9B85020D511C7A814BCE52AB3D127F3 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
09:31:58.0811 0x25c8  KSecPkg - ok
09:31:58.0824 0x25c8  [ DD8C4726127CFE313233372D70787C37, 2420616FEEFC08A3F47420193A3A592D4AC5D2C817D27E5B7E4FD64153751AFB ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
09:31:58.0826 0x25c8  ksthunk - ok
09:31:58.0903 0x25c8  [ 6EAF246BC12DB548AC65A4CEFB14B547, F1487051FE459DB5A751DA2A6FF1E552F92226933AF8C037FA7D660B049896A3 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
09:31:58.0915 0x25c8  KtmRm - ok
09:31:58.0961 0x25c8  [ E154D11E1EDAD53DF6A2204F3A604F28, 303106836E2A442264D9F415528F75D1FDEE5C1757513FC050A68DF5A26AD3D6 ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
09:31:58.0971 0x25c8  LanmanServer - ok
09:31:59.0043 0x25c8  [ DBB81AAC130C4CAAB87E519467846A06, A74A3383757A1C117AE56650119C9A5F87B2B399FF936E3AD11FDFBBE18D1457 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
09:31:59.0054 0x25c8  LanmanWorkstation - ok
09:31:59.0090 0x25c8  [ D81931EF9914A135F9ECF409DC826266, 8BA15C12B374DE555CB7D3CDFDDC42FE583625A9C29BCCDDEB432223E4DEEB2D ] lfsvc           C:\WINDOWS\System32\lfsvc.dll
09:31:59.0094 0x25c8  lfsvc - ok
09:31:59.0130 0x25c8  [ F180F46B88044C6F6D3C313A799E5857, 4EBF8B5F5B5C90E6E5811A044ABDA83F1AE2FFAEA112EBD5F0F83C8FE91D8004 ] LicenseManager  C:\WINDOWS\system32\LicenseManagerSvc.dll
09:31:59.0134 0x25c8  LicenseManager - ok
09:31:59.0166 0x25c8  [ CB5A6E117502156794F0DA9E61506006, 4FE96BC006BCB289C5D2F3549638C115441B484F264600CFB13EC94B4EE800D4 ] lltdio          C:\WINDOWS\system32\drivers\lltdio.sys
09:31:59.0169 0x25c8  lltdio - ok
09:31:59.0224 0x25c8  [ 48199253D7F6119F88294F8845F0808D, 85C014250C14425BEFF2D8B2CCF6A29D9A5DA329ECD00F1E6D4F8DB809194FAC ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
09:31:59.0233 0x25c8  lltdsvc - ok
09:31:59.0274 0x25c8  [ DCF6F1AA7A51CC08FED089363F83316E, C80FB26A6172510F3AD5E4D636AA49AD5D931FB47BECD9E8507F781D88917710 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
09:31:59.0280 0x25c8  lmhosts - ok
09:31:59.0342 0x25c8  [ 20048BEE892138A745B1C23EBB0E069F, B526035CE839BADA6ABC0A0CBFFDFA5267F4EB668AE201871E61E0011518843E ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
09:31:59.0346 0x25c8  LSI_SAS - ok
09:31:59.0381 0x25c8  [ 9EAB16572B576979D585DDEDB12417CD, 97C37DFEA309E27E4AC50D1F4C7C3D1FB9661E0DEBB442D620D8E460F9FC9966 ] LSI_SAS2i       C:\WINDOWS\system32\drivers\lsi_sas2i.sys
09:31:59.0386 0x25c8  LSI_SAS2i - ok
09:31:59.0414 0x25c8  [ 3B7B359C0870317106DF3438D4FF491D, 5EDF767D79EF49210DD3BCC00D7629600DD522B29A2B9A9D7805076ECDCBFD1D ] LSI_SAS3i       C:\WINDOWS\system32\drivers\lsi_sas3i.sys
09:31:59.0418 0x25c8  LSI_SAS3i - ok
09:31:59.0436 0x25c8  [ 2DE03BA338A4B0ACDB416A30F1C7D56F, CF2218EA8C67CC13893B286B0904F28FBFE5AA818CC3AD1C77120B7B6E80031F ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
09:31:59.0440 0x25c8  LSI_SSS - ok
09:31:59.0485 0x25c8  [ CB538B44AC849D6D3A7D73B32A821DD9, AADC3E2C3BEBB7FCEE604AF7628FFD47ECADF6F2DEC2155F3E3E6066201A0BA2 ] LSM             C:\WINDOWS\System32\lsm.dll
09:31:59.0504 0x25c8  LSM - ok
09:31:59.0561 0x25c8  LTService - ok
09:31:59.0566 0x25c8  LTSvcMon - ok
09:31:59.0611 0x25c8  [ 9A497169E145FCE2D8AA7DBC67377F64, 3FA4CE7455ACBB32DECA8BC7EAD0EC1A0E123CBCBF8781FBB16453455AB9F0FE ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
09:31:59.0615 0x25c8  luafv - ok
09:31:59.0652 0x25c8  [ 3520DE00ABC5EFF0DBAFD41129AD970F, 821F9D9AAA6D8B08BEBFB76DAE5A8CCFB598789510A93D3DD4F149A39EE5D6B5 ] MapsBroker      C:\WINDOWS\System32\moshost.dll
09:31:59.0658 0x25c8  MapsBroker - ok
09:31:59.0701 0x25c8  [ BF56CB9D02DEE8CA9CBA50220BE16F15, C6380ED59AD7B9CC9451A24808E193454CF15D90A2C1DAF22FBD3380B150F96F ] mausbhost       C:\WINDOWS\System32\drivers\mausbhost.sys
09:31:59.0715 0x25c8  mausbhost - ok
09:31:59.0742 0x25c8  [ 01BDEE1FFF6D2216797DFEE4ABD937D9, ED247E6F87ECA39A7D479CA7E386D85CE8B2978164E4E9876196176F393E1235 ] mausbip         C:\WINDOWS\System32\drivers\mausbip.sys
09:31:59.0745 0x25c8  mausbip - ok
09:31:59.0790 0x25c8  [ 5C3083CDE45F25797F6B4310BF916394, 1708A71C6435BB249B0E7BE651CAB09361F5215838546023B2A1CD810777AD9F ] MBAMChameleon   C:\WINDOWS\System32\Drivers\MbamChameleon.sys
09:31:59.0796 0x25c8  MBAMChameleon - ok
09:31:59.0844 0x25c8  [ 20046A5DB1466EBD0DCAEB84D00C5432, AC1E264C2D8348FF543193890BE328A8AC4C9BB32A2BBB14FD36644B930C384F ] MBAMFarflt      C:\WINDOWS\system32\DRIVERS\farflt.sys
09:31:59.0848 0x25c8  MBAMFarflt - ok
09:31:59.0891 0x25c8  [ 29BD0BB2CD7E37B8C248CFA933FBD1F4, E645641CF002F2804976DB761C2B514065957AB64A25EC478025B8D00BE808E7 ] MBAMProtection  C:\WINDOWS\system32\DRIVERS\mbam.sys
09:31:59.0894 0x25c8  MBAMProtection - ok
09:32:00.0559 0x25c8  [ 734B435E1693386213EEFD4D17A70DEB, EC6288CB37BD420DA071E800FBEF25BCCF22F2A40F98DB22F1C86D87157EF1AA ] MBAMService     C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
09:32:00.0792 0x25c8  MBAMService - ok
09:32:00.0911 0x25c8  [ B047B9CE5A0D800E6D713B43D0405221, 9A560D6D313476F478629CFCED3DB92F3818EF9CE5E226124D02CB496549D9E1 ] MBAMSwissArmy   C:\WINDOWS\System32\Drivers\mbamswissarmy.sys
09:32:00.0919 0x25c8  MBAMSwissArmy - ok
09:32:01.0031 0x25c8  [ 482F6D603BDCC825768D86D8228BD65F, BE1977FD2D5AEEE3262BF1AC45368B1CD2049516DD1E4123B772F9244097A49D ] MBAMWebProtection C:\WINDOWS\system32\DRIVERS\mwac.sys
09:32:01.0068 0x25c8  MBAMWebProtection - ok
09:32:01.0107 0x25c8  [ C7B8B5053D646CBD30BE1BA6B487D396, E3864D4CE619D67E284C64A4EAA8843FB49BC2B8CC8659F4C4B89DB6701468CB ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
09:32:01.0122 0x25c8  megasas - ok
09:32:01.0174 0x25c8  [ EB8ED3204499DDB2D3BA094A4563EE3E, A5D0095D575B241CA66CAD86280170803E7042F51D3654FCB03D7EA2347E261B ] megasas2i       C:\WINDOWS\system32\drivers\MegaSas2i.sys
09:32:01.0243 0x25c8  megasas2i - ok
09:32:01.0445 0x25c8  [ F1C1D4E752DE1D58295040E5BE8813AF, 4DE17C5FCE63AFD545B16FA16A38F7395F29155FE165E7B21BC028CCD2A4B18E ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
09:32:01.0490 0x25c8  megasr - ok
09:32:01.0559 0x25c8  [ 4965456A1B4B3039E4B9AB233F5E9B1E, 3C303FE2BF9B38D73D005EA673C9500731125D793F4C77130F9BA8D745579591 ] MessagingService C:\WINDOWS\System32\MessagingService.dll
09:32:01.0585 0x25c8  MessagingService - ok
09:32:01.0687 0x25c8  [ 16B078D1089FEA98710C9D07C152DCEE, A42C28E12F1BB21E907C1308447AD63DDF8FA5B2734A199A6EBE3824F3D1235C ] mlx4_bus        C:\WINDOWS\System32\drivers\mlx4_bus.sys
09:32:01.0720 0x25c8  mlx4_bus - ok
09:32:01.0796 0x25c8  [ 20C57CE47B1A877C48A4B68E9A4E21FA, 35F98286F0665C5E06914F04F174476FBB41823564EDC55E351FCE211E2C765F ] MMCSS           C:\WINDOWS\system32\drivers\mmcss.sys
09:32:01.0799 0x25c8  MMCSS - ok
09:32:01.0889 0x25c8  [ A4467A5C080318F0CCCF5ED463821F8B, C8ECD63245B19807BAA92C3F3F87643A2F6B178395ABB15BD54D9DE68CC1A09B ] Modem           C:\WINDOWS\system32\drivers\modem.sys
09:32:01.0893 0x25c8  Modem - ok
09:32:01.0966 0x25c8  [ 78BE85C1F1C7F3AF6C87BCE127007D5A, 5D5229FBCDC855BFF9BA3247BF4EF8E22764CFC1EC974FD5AB2D9E6293EF15A1 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
09:32:01.0976 0x25c8  monitor - ok
09:32:02.0045 0x25c8  [ 8E262B34A8BD184B4B3025AA8C396B00, B48AB637A92894318DC0A33CE55519D8FBD7B31177FA3C4CA33D8609D4FC0058 ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
09:32:02.0049 0x25c8  mouclass - ok
09:32:02.0092 0x25c8  [ C094A555F148495EA130D3BBC5232D5E, 32E823C20FED94DB23F72F67DF1A2C043CA6179A543F3BD24FCB5500BA00A37C ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
09:32:02.0096 0x25c8  mouhid - ok
09:32:02.0141 0x25c8  [ 6434BC884502E95EEA2379C92DD22B60, FCE43DC4C891A1C0346EA9A1EFC09E2B4744191BD164BC850200BA05160FB991 ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
09:32:02.0145 0x25c8  mountmgr - ok
09:32:02.0213 0x25c8  [ F36E4074C66DD31855A8D79EF0AE8066, 01C01B3EAEFADBCDACA5BE7CB2AA199667786C1AD637CF6792BF715242BEFEAD ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
09:32:02.0218 0x25c8  mpsdrv - ok
09:32:02.0347 0x25c8  [ E7CA9FE86A488786979F46DC3CE2DA6E, 82019E37CEC7718C06F5C1524B95E6908E6404D4FBB5460AA0C0729108834853 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
09:32:02.0375 0x25c8  MpsSvc - ok
09:32:02.0578 0x25c8  [ 7BA88A7F7B5E5711837B01FAED792E39, 56FC9E7031F6B0382643FFC54ACA0CACCAF3CF72C120940A9859FCACB8B454EF ] MQAC            C:\WINDOWS\system32\drivers\mqac.sys
09:32:02.0587 0x25c8  MQAC - ok
09:32:02.0633 0x25c8  [ 215D672CB71987CD98EB2298EFB84DDC, 7E23C36DBB7C80556560E1DECE5E8F5D3D422F3D1FFE9CEA511A0BCD9D69D304 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
09:32:02.0639 0x25c8  MRxDAV - ok
09:32:02.0698 0x25c8  [ 34898F29BF0E9A84E183046318D17814, 4EA77775079D7A8EF2635863A7D9C789636AA19C8AC91A409950C49858FB2552 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
09:32:02.0710 0x25c8  mrxsmb - ok
09:32:02.0776 0x25c8  [ 6537678DEEA2A5B079052D75E21E46DA, A509481D509597A8A58C536C689A23086ECB2C15B4BE1AA80DBBF82B73673A2A ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
09:32:02.0789 0x25c8  mrxsmb10 - ok
09:32:02.0819 0x25c8  [ 87FF93E7420C9068C0D5B2F3109809F4, E07BF924C0D57EDA6193D8FD149EBD8FD8CB0C9375AC7998517AD0804FBBCA23 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
09:32:02.0826 0x25c8  mrxsmb20 - ok
09:32:02.0863 0x25c8  [ 167408B38458ECAE545C57527BC99024, CB699B6C6F5B6DCDE85F8F0E40DD31B8066600A0833E5CD99ADE31DEC516B34F ] MsBridge        C:\WINDOWS\system32\drivers\bridge.sys
09:32:02.0867 0x25c8  MsBridge - ok
09:32:02.0923 0x25c8  [ D5778559A0F34EE0BF0457293C6B5F4F, 73C0829F641F62CBFC0523ED54D94121E3A694ECCF148DBF4A5743631BADB714 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
09:32:02.0929 0x25c8  MSDTC - ok
09:32:02.0973 0x25c8  [ AE111778CA6AC08862B3C713F0413333, 99B0F4C92E4897D44FB307730486CAC95B8EE6734C025033C4436B92C5A2DF20 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
09:32:02.0975 0x25c8  Msfs - ok
09:32:03.0011 0x25c8  [ 6DDDFCAB646BBBCFC583135C4430E10F, 5EFD3F4F84EBEEC58914D5CC89622D69F2DBDFB7EB9AD8D9A0868127187FD673 ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
09:32:03.0015 0x25c8  msgpiowin32 - ok
09:32:03.0045 0x25c8  [ 01C6A86BEA8279E557A5056148F068BF, 42983A61654F51515AC6DD64A68D319883FD02B3EC575F7EA7A907576866F0AF ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
09:32:03.0047 0x25c8  mshidkmdf - ok
09:32:03.0081 0x25c8  [ F65ABC7DE945047147F17330F79732CB, 050C64D7284D767C951E94EFBA579D0E066C36CA1899A2C64CEA41A34B8E9EF2 ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
09:32:03.0084 0x25c8  mshidumdf - ok
09:32:03.0105 0x25c8  [ 05B23012427801E710BDD12720B9020B, 48FB22CFDF61AAE4221B3B23E539C08083289FB0CB5ABF249700DDF968C7250A ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
09:32:03.0108 0x25c8  msisadrv - ok
09:32:03.0148 0x25c8  [ 21B88DF67507BD4DFF8A5487074BB31F, 5F2E1FB6227873DCA97D1BE6271E900AFA6BCE54D765C9BDBA07B74FC87B147B ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
09:32:03.0155 0x25c8  MSiSCSI - ok
09:32:03.0162 0x25c8  msiserver - ok
09:32:03.0194 0x25c8  [ B25B2CD3E052D68075A3814AAA0C6421, 7297C03D31D54725B4F2A6888F8DCBEBDA3DF37630E15EBFA38AE5F973F66DAB ] MSKSSRV         C:\WINDOWS\System32\drivers\MSKSSRV.sys
09:32:03.0213 0x25c8  MSKSSRV - ok
09:32:03.0272 0x25c8  [ C3F5EA6B9041A30B4F11BE2E7863E487, 07324A9D81D30A173D3F369AA1A304AD7713C7CCF9909C6427718F0F90CE49C9 ] MsLldp          C:\WINDOWS\system32\drivers\mslldp.sys
09:32:03.0276 0x25c8  MsLldp - ok
09:32:03.0322 0x25c8  [ 6F1422468DF5B12D87EF1B7956429721, 8533FFF07ED28A31376A4AEB83597F22D11D99D19A75053D1F64548D6379087E ] MSMQ            C:\WINDOWS\system32\mqsvc.exe
09:32:03.0326 0x25c8  MSMQ - ok
09:32:03.0364 0x25c8  [ 601D666820F0408B896791D19BE6D258, DD6BA3962A6D387D9F06B6D7006DBB2BF46D84A8FA91C628DA9D96117F14F4F0 ] MSPCLOCK        C:\WINDOWS\System32\drivers\MSPCLOCK.sys
09:32:03.0366 0x25c8  MSPCLOCK - ok
09:32:03.0373 0x25c8  [ 46E61FBA0097E48E5628C74A3F72233A, 21BD64041781085A7873ADA34C3648FBBBED386A071C69F21D98F2A0C3120DC6 ] MSPQM           C:\WINDOWS\System32\drivers\MSPQM.sys
09:32:03.0375 0x25c8  MSPQM - ok
09:32:03.0451 0x25c8  [ 4EB9B77179BDEE89C496E60D4BF85CC1, 4CF2915381DFDF8DAB37B63DCE98CD5BEB22D6D174329F650ACBE1A4915AC7FE ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
09:32:03.0469 0x25c8  MsRPC - ok
09:32:03.0543 0x25c8  [ 29DC5DFDF305E73A40AB13D102736EEA, 3F17F1841E5BD266962D106342CE811497E46C3EBCD9A6CDF5B4FB4B8D64DE21 ] MsSecFlt        C:\WINDOWS\system32\drivers\mssecflt.sys
09:32:03.0557 0x25c8  MsSecFlt - ok
09:32:03.0593 0x25c8  [ CBD56E0B55FB3672BA80382EC2F8835C, 1956E9B20A363B715C2111138D2085AA28FEDA7A82228CB4D8CE7ACC578E4DDB ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
09:32:03.0596 0x25c8  mssmbios - ok
09:32:03.0662 0x25c8  MSSQL$KAV_CS_ADMIN_KIT - ok
09:32:03.0736 0x25c8  [ 8E8E74C953EB0C4F8828D99D6F27FD6F, 94AFB1B09A6E92302D29B3C563B1744CECC5F5487418962BE537B7C57717CA42 ] MSSQLServerADHelper100 c:\Program Files (x86)\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
09:32:03.0740 0x25c8  MSSQLServerADHelper100 - ok
09:32:03.0781 0x25c8  [ 5734B2A36D3BB13A638E5305EEEC582D, 613D559ED892EC4ABDF80F2435892895677F97902E699BE30283C150ABA49877 ] MSTEE           C:\WINDOWS\System32\drivers\MSTEE.sys
09:32:03.0784 0x25c8  MSTEE - ok
09:32:03.0851 0x25c8  [ 85270E0DC6907C6B99F72A36F17AED34, 58C0BBF9CC9E42266C8AF9AB9FEC77442F96C7C6D0DFCFAAB763DAD30B1B7939 ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
09:32:03.0854 0x25c8  MTConfig - ok
09:32:03.0893 0x25c8  [ DB5B1539F5EBB3DD3A7ED25ADBC4D6D9, 4E40FE2A1A498913E7D37F1B5D6D7B0E67370B833FC69636BA7E807C21225999 ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
09:32:03.0898 0x25c8  Mup - ok
09:32:03.0927 0x25c8  [ 3C57FF3BCF496D24C39C2198158864BB, 8671DF39AE5DD83033EC70BF8A502ED027B33B90FFC28AC2C79EC8F2F9128C14 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
09:32:03.0931 0x25c8  mvumis - ok
09:32:03.0975 0x25c8  MySQL - ok
09:32:04.0060 0x25c8  [ 8A9CD53B0FBE679116638120CCBB201E, 844F4DA63FFA59B7E1B2A646C274D7B5C7E5C354F250DBAEA1CD1E6ED09B8C44 ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
09:32:04.0076 0x25c8  NativeWifiP - ok
09:32:04.0163 0x25c8  [ 4C2C3D884BDE7A4EBC0D838ABACC4C86, 2472512484C63F53BCFD41F1C66B9AA9693BEB08463CAFF6024F012AE2976EA5 ] NaturalAuthentication C:\WINDOWS\System32\NaturalAuth.dll
09:32:04.0185 0x25c8  NaturalAuthentication - ok
09:32:04.0215 0x25c8  [ FBA9F5B9F59A665F248F70B905EDCE14, D2C1795192809F6413E080A9ADC949A4D99D0FC6BE668870127161474FF40596 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
09:32:04.0222 0x25c8  NcaSvc - ok
09:32:04.0266 0x25c8  [ 1A75CBB2C8161676CEA17E6FFE441FE7, 7F4F0CBA5BAF34AD8AD50AB0E9C36B17D2C875EF38774F9F1139F7EA3DD44C8E ] NcbService      C:\WINDOWS\System32\ncbservice.dll
09:32:04.0277 0x25c8  NcbService - ok
09:32:04.0318 0x25c8  [ 3C7E074AE41D8DFB41A9E65904D8BF43, 34890591FDCEC035D3BB021DB035A4728C415A70F55D88F21E39073040C912AB ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
09:32:04.0326 0x25c8  NcdAutoSetup - ok
09:32:04.0347 0x25c8  [ 77B047B109CE758A017F58FAE5038D0D, 8E9E4ED5128C506B696FD5F0E8AD0D11FF53B5DD2F88860FF8F60307A7E08DEA ] ndfltr          C:\WINDOWS\System32\drivers\ndfltr.sys
09:32:04.0351 0x25c8  ndfltr - ok
09:32:04.0422 0x25c8  [ 7FF306C78B0DC31192657B47539D5688, 1529180FDFB05AE6AD7A5D83A6354A07EA9826B3538CC35F9D37F0EFAE88C60C ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
09:32:04.0453 0x25c8  NDIS - ok
09:32:04.0500 0x25c8  [ 067AE5BA349CC35AF8975D22DC483DDF, FEC185ECDA27041506DF74528AA65B32FEBB06E32A55C8F7BA161A755C6659CF ] NdisCap         C:\WINDOWS\system32\drivers\ndiscap.sys
09:32:04.0503 0x25c8  NdisCap - ok
09:32:04.0551 0x25c8  [ 6FC4D7EB5D38CFB7966405036116F065, B3E9083ABE7AD797FA54FB1308AA57D49C9B7BA662B09607666B23777F6167C8 ] NdisImPlatform  C:\WINDOWS\system32\drivers\NdisImPlatform.sys
09:32:04.0558 0x25c8  NdisImPlatform - ok
09:32:04.0632 0x25c8  [ ED7CC4E16B76B2603C9F827188EA63B4, A6E739D219F50866051A08867844BDA878D6FEA33E91DEAC1948A55CDC5BEB9F ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
09:32:04.0635 0x25c8  NdisTapi - ok
09:32:04.0670 0x25c8  [ 8D977AFC195A3F4B15B05D02B2BD0292, 676C0CF326E0D76EC3BBE55FBE5F845A2DFF28E2EEBCCDE15913116BB81977CC ] Ndisuio         C:\WINDOWS\system32\drivers\ndisuio.sys
09:32:04.0673 0x25c8  Ndisuio - ok
09:32:04.0700 0x25c8  [ DC1D26D62F40B7552BCF49D92774F0C5, 3DD7CE2AD578101EFF8C1448800A1317F01893AF6E559C4DCCD9F6ACE4B027E4 ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
09:32:04.0702 0x25c8  NdisVirtualBus - ok
09:32:04.0734 0x25c8  [ 66F56AC744101DB870934D0EB31C2426, 932013EE8542E6770657A904B09E2BD2052E8C04216289EB5F011770A46CA6F9 ] NdisWan         C:\WINDOWS\System32\drivers\ndiswan.sys
09:32:04.0740 0x25c8  NdisWan - ok
09:32:04.0753 0x25c8  [ 66F56AC744101DB870934D0EB31C2426, 932013EE8542E6770657A904B09E2BD2052E8C04216289EB5F011770A46CA6F9 ] ndiswanlegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
09:32:04.0758 0x25c8  ndiswanlegacy - ok
09:32:04.0783 0x25c8  [ 8ABF5B8D5839F8DAE2E0D3165AE732F6, CD382FFF8A71FD85B92EEE76647481AC45BD2A5815C012520A89A18EEE6E01AC ] ndproxy         C:\WINDOWS\system32\DRIVERS\NDProxy.sys
09:32:04.0787 0x25c8  ndproxy - ok
09:32:04.0822 0x25c8  [ A791792DC412CCD83DA0AF6871682552, FE1A30A6D1501463CF8AAC3AD8CE114ACFEDD38CF9BD6B2247B84E41D74A9E6B ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
09:32:04.0827 0x25c8  Ndu - ok
09:32:04.0868 0x25c8  [ 96B4C0CE935F934C86662820294F7533, 118987F8A2EC912E1FF9060E9EF512C571343E66D356B09622F60044142345FC ] Net Driver HPZ12 C:\Windows\System32\HPZinw12.dll
09:32:04.0871 0x25c8  Net Driver HPZ12 - ok
09:32:04.0889 0x25c8  [ BE79982A50AC88BC0765F3AFECFCB596, 1E7CACB1095C3F1D10766E15B31DEE195C1E6954D4E7ADA141CA4C15EE3DA445 ] NetAdapterCx    C:\WINDOWS\system32\drivers\NetAdapterCx.sys
09:32:04.0894 0x25c8  NetAdapterCx - ok
09:32:04.0929 0x25c8  [ E899D26A0C2555AC30ACDD526056E51F, E83168F2E22C7F62145AAD94549B3F834DCEE3F169969AAD1986C2F60FB67DC5 ] NetBIOS         C:\WINDOWS\system32\drivers\netbios.sys
09:32:04.0932 0x25c8  NetBIOS - ok
09:32:05.0002 0x25c8  [ 7FC54F2AF5EC52C7AC05AD90FFC757E6, F2DC492188F5D0B0634995730EEDFAFB50C46202474F90B0C871189AC3E6AD66 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
09:32:05.0011 0x25c8  NetBT - ok
09:32:05.0042 0x25c8  [ 94E06D509D50807774F35BEE3163E806, ADADFA0D533944579BA0E5FE31A68D4D1395E7B9DB75E58D47E0ADC0DA5AD16C ] Netlogon        C:\WINDOWS\system32\lsass.exe
09:32:05.0046 0x25c8  Netlogon - ok
09:32:05.0089 0x25c8  [ 94BC40F88309B0B7DFE68B2C2BB15EB6, 7E485F6A3F0B1C34C59D1F36EDE05ED9724E23FF63EA273910A02D8177905D9B ] Netman          C:\WINDOWS\System32\netman.dll
09:32:05.0098 0x25c8  Netman - ok
09:32:05.0175 0x25c8  [ 97FF2186BBAA215727300404862D297B, 1D4F3475252C2315EF51B7B76206776BFF4462C0B31328E266BF5F4ACC2475D1 ] NetMsmqActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:32:05.0326 0x25c8  NetMsmqActivator - ok
09:32:05.0335 0x25c8  [ 97FF2186BBAA215727300404862D297B, 1D4F3475252C2315EF51B7B76206776BFF4462C0B31328E266BF5F4ACC2475D1 ] NetPipeActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:32:05.0338 0x25c8  NetPipeActivator - ok
09:32:05.0389 0x25c8  [ 79ED54CA41486399361778D533E55A99, 17467C0C0D4D099DC7BF2BDE46086AF4AFC28895C62A35AA6A3906C19418AA32 ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
09:32:05.0405 0x25c8  netprofm - ok
09:32:05.0445 0x25c8  [ 2D63501E7273F5B730958B5061E609D4, 1A92B65E9B833ED77626BA61A3ED0CA298DD944BA0C83137C643B86A08586979 ] NetSetupSvc     C:\WINDOWS\System32\NetSetupSvc.dll
09:32:05.0456 0x25c8  NetSetupSvc - ok
09:32:05.0467 0x25c8  [ 97FF2186BBAA215727300404862D297B, 1D4F3475252C2315EF51B7B76206776BFF4462C0B31328E266BF5F4ACC2475D1 ] NetTcpActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:32:05.0470 0x25c8  NetTcpActivator - ok
09:32:05.0478 0x25c8  [ 97FF2186BBAA215727300404862D297B, 1D4F3475252C2315EF51B7B76206776BFF4462C0B31328E266BF5F4ACC2475D1 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:32:05.0482 0x25c8  NetTcpPortSharing - ok
09:32:05.0502 0x25c8  [ 680EB4AEA08EAC80C384E90E430DF16D, B02C340DC995265775883D930FA092C19F3BEDF0308BBAC470AF67B08F720EA5 ] netvsc          C:\WINDOWS\System32\drivers\netvsc.sys
09:32:05.0508 0x25c8  netvsc - ok
09:32:05.0570 0x25c8  [ E27ACE78CA1BDF4FBBF3323D6E9AFCDB, 7930C172AD493E39712A0F4B1AF4ADFB4ABD499B00FEEA2E1D5C9E5A26105EFC ] NgcCtnrSvc      C:\WINDOWS\System32\NgcCtnrSvc.dll
09:32:05.0587 0x25c8  NgcCtnrSvc - ok
09:32:05.0676 0x25c8  [ A557C92583E81CA97D2C0F2467E7C2F9, F78B07DB33253142C6CB2DE1BFA1C54EB7CB5D64C94C9B73182C7D49314061EF ] NgcSvc          C:\WINDOWS\system32\ngcsvc.dll
09:32:05.0705 0x25c8  NgcSvc - ok
09:32:05.0762 0x25c8  [ F06C86A70E81A1E771D5A95576719EE8, FE699C956B37334B47C0B3512FB879183E84549A0F0702C8DA3F88ACF4184469 ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
09:32:05.0781 0x25c8  NlaSvc - ok
09:32:05.0818 0x25c8  [ 84EB8F01B140618518AFF30B9951F132, 3710F2DF7433174D0393702DDFFD06F9544456F8E92A6FF6A2075215CA2D1001 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
09:32:05.0821 0x25c8  Npfs - ok
09:32:05.0863 0x25c8  [ 5CB8082E51DE7D19042F0FF8C517CB0D, C0C5389E097D520018C346ECBF8AF9928FB44D9AD7B0EFD2D44E910214580A1A ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
09:32:05.0865 0x25c8  npsvctrig - ok
09:32:05.0909 0x25c8  [ 3BA4E9585E9D7D7E6E68A18184DDDBF2, 51E70A9DE501DA3783298B17C4B3B074FA7A3CBAB32D1E8E6BDC2A594FBBC3A4 ] nsi             C:\WINDOWS\system32\nsisvc.dll
09:32:05.0914 0x25c8  nsi - ok
09:32:05.0926 0x25c8  [ 958921BB7AE2671983743FDA0DD587C4, 20CBEFB4A49F65AB7F0EFC79E8A4F6C9F2D2CE4930092FB037BF24CD00187ABD ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
09:32:05.0929 0x25c8  nsiproxy - ok
09:32:06.0047 0x25c8  [ E20EC8E25969ABD9F5FED6EDEA57EC0C, 3172F21D071B9BFE0BC842884E64947F60FA48E51E9D9B96A56D0C6B2BA02E40 ] NTFS            C:\WINDOWS\system32\drivers\NTFS.sys
09:32:06.0107 0x25c8  NTFS - ok
09:32:06.0137 0x25c8  [ 0D1E03A5F87F4DE04D97622C686910A2, 21E09FFE6797251E7E372F708D52C0D4762A3E0E2D61B55C00BB326785083D40 ] Null            C:\WINDOWS\system32\drivers\Null.sys
09:32:06.0139 0x25c8  Null - ok
09:32:06.0175 0x25c8  [ 532F27A2B62D70C327E763F035AED6C1, 9FB6C8040D48384BC72A2021EAD7D48B5E876731849FBA68338EC3562E7CB659 ] nvdimmn         C:\WINDOWS\System32\drivers\nvdimmn.sys
09:32:06.0179 0x25c8  nvdimmn - ok
09:32:06.0206 0x25c8  [ 7E04652EB1A476BC0A72ECDC613AF0C5, F356C5F7B1C30253F4F8A3E45AAA8C82940DBE1F208D81043D7D89EE54355890 ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
09:32:06.0212 0x25c8  nvraid - ok
09:32:06.0244 0x25c8  [ 880B3E874914DAEF97119876543AE117, E41A633F5C2519438FCA0A85F134061224C39AB82EE61F3B80043E21985A80D7 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
09:32:06.0250 0x25c8  nvstor - ok
09:32:06.0355 0x25c8  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
09:32:06.0375 0x25c8  odserv - ok
09:32:06.0419 0x25c8  [ 63FF50596D26ACA44886BF7A23994CD2, 78725152FF3703A26AFBF86AB059C9EAA78BADC7C22D6DBFD0682D922F639951 ] OneSyncSvc      C:\WINDOWS\System32\APHostService.dll
09:32:06.0429 0x25c8  OneSyncSvc - ok
09:32:06.0476 0x25c8  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:32:06.0481 0x25c8  ose - ok
09:32:06.0531 0x25c8  [ D1D1BEE82B816D6EB2F630969499BAF6, 121607E472586E29F23C78D0CF048685CBF8038FB75DE5F812D4B609E5DBCF33 ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
09:32:06.0542 0x25c8  p2pimsvc - ok
09:32:06.0603 0x25c8  [ 54161685F8B37EA1E91F9BAAFFC4422C, 8192420C01056221F88CFDFE7F1B6FDEE6BD087F31A02B96AC2AA928678F4E49 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
09:32:06.0616 0x25c8  p2psvc - ok
09:32:06.0657 0x25c8  [ 2E07EC2C1622F5E7B535D62DCD61F3AB, 5FECA3CD9AF531E59B1A0FE04AE8BA22F3C929EB6AA5B2171C88A788AFAA8115 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
09:32:06.0660 0x25c8  Parport - ok
09:32:06.0702 0x25c8  [ 023DDF9DE429B2E6F0BADA72AA98EF8B, 6DEBF2AE2E48B663FCE3EBA366D4046755D65194EBFFD5317860C183AEDF1BD6 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
09:32:06.0707 0x25c8  partmgr - ok
09:32:06.0739 0x25c8  [ 4610F878507ECDFAC4C85914E802E6C8, D474B53FD1D3604AC75F63A2747EC7ED78C6B50B0CC78709029168A518C7C6CC ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
09:32:06.0753 0x25c8  PcaSvc - ok
09:32:06.0788 0x25c8  [ 9BF965EE361849567DB1664BEDFA9569, EA9F3854CA0BAA6A5ABBF062261322A005CCE794C4E892FC91DA22647924A123 ] pci             C:\WINDOWS\system32\drivers\pci.sys
09:32:06.0797 0x25c8  pci - ok
09:32:06.0832 0x25c8  [ E5AF806815ED797086629741F29E4156, 1AD39A8DD564807EE11775C1C69129184A28B7AC4ED66E47CBE657C9215986C4 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
09:32:06.0835 0x25c8  pciide - ok
09:32:06.0867 0x25c8  [ 2A631D447B988AFBE847CBAA8E5CC298, 65D52E0E7F16EFFF8926E4FF97B42ABB2C5F1125FB13F521143712E3F9028FE7 ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
09:32:06.0872 0x25c8  pcmcia - ok
09:32:06.0902 0x25c8  [ ACD510CF2B631A2D36B2CFB7D31E22FD, C46363B543CADC560004EB01D62B277BFE63974C34382576A0C62A8A0BED31A4 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
09:32:06.0906 0x25c8  pcw - ok
09:32:06.0917 0x25c8  [ 1796112EB89559910BC18865A29C8894, 3EDACF3FDFB4164C1F07BAE7ABCA4E8DC5DBADE11C73F18546E5FE2A10CCDEA8 ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
09:32:06.0922 0x25c8  pdc - ok
09:32:06.0976 0x25c8  [ F21127EDE5D72090A1B029AFF4AFFD17, 2EDB862E23DCBD11DD695C6B161B578F5FB8863848CF912D44AE42E4D8C0BD44 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
09:32:06.0994 0x25c8  PEAUTH - ok
09:32:07.0088 0x25c8  [ 68654987BAEFA25B1697D9B0954ACD75, 92CABF2287EF0A3FFFFB8A7AA8CD7D3ED69C2F1E1CB410F0388FA7D8DB3B1441 ] PeerDistSvc     C:\WINDOWS\system32\peerdistsvc.dll
09:32:07.0139 0x25c8  PeerDistSvc - ok
09:32:07.0169 0x25c8  [ 35FD028E4323018202C0B7D115FD3AEF, CA0CA9EF7A6496EBD35C775D0BD9CC814B07391B69C83938C90926D316A336FD ] percsas2i       C:\WINDOWS\system32\drivers\percsas2i.sys
09:32:07.0172 0x25c8  percsas2i - ok
09:32:07.0191 0x25c8  [ F9F3D8BE9BC9241CC726197261362AC4, 0AF0EBD551B3C079C7A5EA568A171B43F822C4AD0177A8135FBF315813108535 ] percsas3i       C:\WINDOWS\system32\drivers\percsas3i.sys
09:32:07.0194 0x25c8  percsas3i - ok
09:32:07.0290 0x25c8  [ EA780FAE0D6796D56D0CAF39360BF7C0, C4C0184CED9F9CBEFFC896D35E927BA0C6AB3C5937EE3DEF9816DFB8A5F2C473 ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
09:32:07.0303 0x25c8  PerfHost - ok
09:32:07.0364 0x25c8  [ D21A31B2BC191432269FFDD6D3753061, 20F481D17DF158A10D973C4C61E483949EF67A8EB6F18AF83BCC20371B721619 ] PhoneSvc        C:\WINDOWS\System32\PhoneService.dll
09:32:07.0402 0x25c8  PhoneSvc - ok
09:32:07.0460 0x25c8  [ D59CD92CE3784678C09B8DF518A8E1A6, 7D5B05D50EA66BAB6B8436A5989F5CA17DC35DB02E445CDEFDADEE0BEB3DE2C8 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
09:32:07.0468 0x25c8  PimIndexMaintenanceSvc - ok
09:32:07.0574 0x25c8  [ 73B5A132EBF3A8075A7C68DFBB4DE719, 847FC2A2B4C1C65BFEFBBF90C2EB99378E2FDE469425F141BC75D1874F94658C ] pla             C:\WINDOWS\system32\pla.dll
09:32:07.0626 0x25c8  pla - ok
09:32:07.0672 0x25c8  [ 64A80A746FC460126FA4124AA2D93848, 851ECA69489FF9A834B6A5ACF9D51283FD3796E21316D8A22E57DED2F415782C ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
09:32:07.0678 0x25c8  PlugPlay - ok
09:32:07.0713 0x25c8  [ 36D43EA5517F3F4AAAC8EE061C957EF1, 970CBE8F689C26C384B8F4E6D0C68BB07434C4776B497E310A603A896AED05E0 ] pmem            C:\WINDOWS\System32\drivers\pmem.sys
09:32:07.0717 0x25c8  pmem - ok
09:32:07.0762 0x25c8  [ 028E6651E11162AE4F4D0283D78A2EC4, EE34CB8BF5BE95E1841A14111D55170BEEEC8C19B6396763A474CC96E5889D9F ] Pml Driver HPZ12 C:\Windows\System32\HPZipm12.dll
09:32:07.0769 0x25c8  Pml Driver HPZ12 - ok
09:32:07.0811 0x25c8  [ 59048555B59FD69287CFAB6022B5CC86, 733D3F1DBF75D6A5A015E6F849216E1954813F86E5D3B05B4AF0E9FD523FC646 ] PNPMEM          C:\WINDOWS\System32\drivers\pnpmem.sys
09:32:07.0813 0x25c8  PNPMEM - ok
09:32:07.0851 0x25c8  [ 7815D5EEE3624640150B1365EB2E98C5, 2E45B211F40510554E5BDA876E53497FA4A8465A152F77CF38CAD38CC6F47C8A ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
09:32:07.0856 0x25c8  PNRPAutoReg - ok
09:32:07.0886 0x25c8  [ D1D1BEE82B816D6EB2F630969499BAF6, 121607E472586E29F23C78D0CF048685CBF8038FB75DE5F812D4B609E5DBCF33 ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
09:32:07.0896 0x25c8  PNRPsvc - ok
09:32:07.0946 0x25c8  [ E1BCA08929D806A087D90BC11C6020E8, F9FE2E761F0F00C4A0C221D25069348185C75CA350DDD1407A6401220227A9F6 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
09:32:07.0959 0x25c8  PolicyAgent - ok
09:32:08.0013 0x25c8  [ A3CCFB8A5BD48F56EF2ACB4A427A1AC7, 03A6F53C44A90D2FAE1F0C212606C484AE0DFBFDF6675497FF0FBAB46D17B268 ] Power           C:\WINDOWS\system32\umpo.dll
09:32:08.0021 0x25c8  Power - ok
09:32:08.0053 0x25c8  [ AACA74DEF7BE3DED322411787494878B, 86BAF7E855077A03F4B8C0778304CFDB9D0CF245F82B87CD60CAB666D1D17D9D ] PptpMiniport    C:\WINDOWS\System32\drivers\raspptp.sys
09:32:08.0058 0x25c8  PptpMiniport - ok
09:32:08.0633 0x25c8  [ 7CD1D9EE59F49FBD3E72876F19038BE0, F156AC0D2089C1CD7025054E1E546379128CC42D8190420C536E01ECA27402D3 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
09:32:08.0844 0x25c8  PrintNotify - ok
09:32:08.0893 0x25c8  [ 8803D4F36F1CB2E2203F5EB59571E89C, 0C83A8706CDB7400CCAB145211793B8C6153D30CA50843A5E3980536F2A38C11 ] PrintWorkflowUserSvc C:\WINDOWS\System32\PrintWorkflowService.dll
09:32:08.0900 0x25c8  PrintWorkflowUserSvc - ok
09:32:08.0940 0x25c8  [ B1111C47F128C946BDC87A18E44007EB, 5AB7CE4F7B05BC189B477BC892D7DC9B3129A6EB4E9618060CB68C3A1A48826B ] Processor       C:\WINDOWS\System32\drivers\processr.sys
09:32:08.0945 0x25c8  Processor - ok
09:32:09.0004 0x25c8  [ A2CA8830BF77FAB39D6E5C45A404FB78, F78511C80FFE1B2BB8A3B51811AFB22CEE4038D4D23AEBFD7768C32E61CEB77D ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
09:32:09.0022 0x25c8  ProfSvc - ok
09:32:09.0090 0x25c8  [ 5818FE76C3C6AE0CA723EBE483BF447F, 613E1FE02FA52A6EF4B1E5C56F0108D493B1E97F799CF409A6697A5D5112C8B3 ] Psched          C:\WINDOWS\system32\drivers\pacer.sys
09:32:09.0098 0x25c8  Psched - ok
09:32:09.0153 0x25c8  [ FC1CEF0CC00E2C405ABFEF07B8CD1375, 259E366C87DC8BB4AA3562CF3E731EC5938D3936CA12D4120A9E85183BDF990C ] PushToInstall   C:\WINDOWS\system32\PushToInstall.dll
09:32:09.0162 0x25c8  PushToInstall - ok
09:32:09.0212 0x25c8  [ 034BA34ADFA10F9D7E4989273DDABA33, 8763D28817A64F0D82B61EBA1FA54D7E0C97E66FA3F359C1A681740E1AF680C2 ] QWAVE           C:\WINDOWS\system32\qwave.dll
09:32:09.0222 0x25c8  QWAVE - ok
09:32:09.0258 0x25c8  [ 16F9A6B593B52EB18F7ECB9D251BDF7A, 5DD26B91DF51A07097A893F3537F94FE2CD1F9D132B0994451E922CE1359516B ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
09:32:09.0261 0x25c8  QWAVEdrv - ok
09:32:09.0282 0x25c8  [ 13600C467512147E99052806F2C1307A, 705257F42FA3502113958A295E0E0FED9C6A35DB6214099360606E792F69B1C6 ] Ramdisk         C:\WINDOWS\system32\DRIVERS\ramdisk.sys
09:32:09.0285 0x25c8  Ramdisk - ok
09:32:09.0303 0x25c8  [ F57D1DE0C9522BCD590A69D044641B5A, 6476AA1B7BBE390D4ABDD0DFC1BFD243663D48D0B425CE53193A3448B965222A ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
09:32:09.0305 0x25c8  RasAcd - ok
09:32:09.0340 0x25c8  [ ED0EE10911C16AD8B21B9003C90E968F, CFB280D14F629E87BBBDA83841E4B3DD8866FB8382FF17D3E807BBFBBC3BAC1A ] RasAgileVpn     C:\WINDOWS\System32\drivers\AgileVpn.sys
09:32:09.0344 0x25c8  RasAgileVpn - ok
09:32:09.0379 0x25c8  [ 54D8A771A5C32C293288E64ABE07FE50, 073F65F1F910C4887C7F60992F5C50629EEA5F4AA8182206D73F2FECE56AB6BC ] RasAuto         C:\WINDOWS\System32\rasauto.dll
09:32:09.0385 0x25c8  RasAuto - ok
09:32:09.0406 0x25c8  [ E0220BB6580D34001D4D1D133052DAA4, F350A34E7592673B7B77F907E7D7ACFC50C6099A4874C1D870BD0E089D8EF668 ] Rasl2tp         C:\WINDOWS\System32\drivers\rasl2tp.sys
09:32:09.0410 0x25c8  Rasl2tp - ok
09:32:09.0499 0x25c8  [ 0F8FB189206C1A53FB73FCF8F335A412, 4BF5C1EB3F083F42EF450024DD5C6FB781BF4685DE4FD7EB528C4B31C422C8D7 ] RasMan          C:\WINDOWS\System32\rasmans.dll
09:32:09.0524 0x25c8  RasMan - ok
09:32:09.0552 0x25c8  [ 12EE1D92F4E5FAE4B6F65195A2016CE5, C62E9EBD4FE642248C36BB2C9BD7B1C1C09E8A33D4B4AA39DD32F9FD1FE86081 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
09:32:09.0556 0x25c8  RasPppoe - ok
09:32:09.0589 0x25c8  [ 91CE469015979E5B3C3DBC2C41A476E8, 45D7EA66311126E370B4E082F7E8507399AC594AB6F7CD5A45C9F09658FD7E19 ] RasSstp         C:\WINDOWS\System32\drivers\rassstp.sys
09:32:09.0592 0x25c8  RasSstp - ok
09:32:09.0650 0x25c8  [ 4525664EFB5EB71D4B155405F78D93DB, D5EF83FFF93AA9BCE3CF91861220155B8AAE0D459FDB569EE7FEFDC715726C6D ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
09:32:09.0661 0x25c8  rdbss - ok
09:32:09.0731 0x25c8  [ 8A5285B38A203D15110E142DE68406DD, 9C6E48AB7F10555347FB2372D2B44AA70FAD0D2CB9B95E55A4844584EF696141 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
09:32:09.0733 0x25c8  rdpbus - ok
09:32:09.0783 0x25c8  [ DF83769C92527DB50653F8FB57D001FF, 06FF7DE7ECEE92F874230A1F396B7BA050953F741C3BB090A0DE19E53A6031A4 ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
09:32:09.0793 0x25c8  RDPDR - ok
09:32:09.0861 0x25c8  [ 4D1A63ACEC42A88E52AFC4E84A8CE9EE, 37789428D78273EB09F3613BC72DF5D5E9210D4650CC4D9F9DD413DB4A20B6F2 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
09:32:09.0863 0x25c8  RdpVideoMiniport - ok
09:32:09.0907 0x25c8  [ 12AF835862F2B6B2FB9DEA8BA2288587, 1315D03892B88A67C5D93D1AAB1170008035DA0F0AC018E72DEC3A0FA4AD2839 ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
09:32:09.0916 0x25c8  rdyboost - ok
09:32:10.0002 0x25c8  [ FB0577F6BC9E07549CEACF5224327499, 7AD01A641C3A8735C05C7EFDF3730D7A385A241306E3AD01B088D7329FF319E0 ] ReFS            C:\WINDOWS\system32\drivers\ReFS.sys
09:32:10.0047 0x25c8  ReFS - ok
09:32:10.0110 0x25c8  [ 4136BCA61BCDCC79DCE145F9CB639CD6, 58D49C41532A31F6F2112317BB60D80D34A4D29CAABBF11BAD9C45FD8B812F93 ] ReFSv1          C:\WINDOWS\system32\drivers\ReFSv1.sys
09:32:10.0133 0x25c8  ReFSv1 - ok
09:32:10.0211 0x25c8  [ 16884710EB4898CB49B18609EEE34C6C, CEC4850825D81969BE269A4DC23DF54F6E2346AADE40D95E91B512412D4BD358 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
09:32:10.0242 0x25c8  RemoteAccess - ok
09:32:10.0274 0x25c8  [ 9D82CD53B622A85A10B4DA8F4724A8E4, 0D4DDDF7C8D90CB19A86EA531205BAF19BA2335DBD10CD9F006C969CE9735223 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
09:32:10.0282 0x25c8  RemoteRegistry - ok
09:32:10.0329 0x25c8  [ 24C716C6A5AA3BEC3180BB15050C75C5, 15BC70E932C4AB0609231098F8C3EC56840BB20099C74C008EF23DBFC556A43E ] RetailDemo      C:\WINDOWS\system32\RDXService.dll
09:32:10.0348 0x25c8  RetailDemo - ok
09:32:10.0395 0x25c8  [ BBC228CA2F96B784B01FE7F1C5E3CFBB, AF24D0B4093F9CCE88C5BCB94944BCD6D36B890AD8544AF0CD7814B8D4F73A7A ] rhproxy         C:\WINDOWS\System32\drivers\rhproxy.sys
09:32:10.0400 0x25c8  rhproxy - ok
09:32:10.0439 0x25c8  [ 665A51DE515A2E8B0BDB3D6917D47DD9, F5BF28900F55CB17016E64775B9A5B64D16E2A5898F4D5A7ABE26639932B2C63 ] RmSvc           C:\WINDOWS\System32\RMapi.dll
09:32:10.0446 0x25c8  RmSvc - ok
09:32:10.0483 0x25c8  [ D0F6698E56F0157EA72F2D754C6FD555, A93DEECB1D84E5AC2C1E2D3D54BA118774E6F77996BEC7BCB6C758B6D04D1920 ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
09:32:10.0488 0x25c8  RpcEptMapper - ok
09:32:10.0524 0x25c8  [ EB65907BD63871669C54D5E5BAE4DD34, 9A429C4B416913D65728A40890FC3C69465C4C77C2D313007BDF24EA5F4E1400 ] RpcLocator      C:\WINDOWS\system32\locator.exe
09:32:10.0527 0x25c8  RpcLocator - ok
09:32:10.0596 0x25c8  [ 79BDBB684629A526CCD958F06B9D6FAD, 489A85A5F63E5F012740B538878D6DAEBBB474D64F27A6847D3E387A704E5297 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
09:32:10.0620 0x25c8  RpcSs - ok
09:32:10.0675 0x25c8  [ 27B80E5766B114621980F82FB78E912A, D7986FB32AFA2F376FBAA5EFAC18F5E699BAF97AD0C92A0B787E1CAF77465CFD ] rspndr          C:\WINDOWS\system32\drivers\rspndr.sys
09:32:10.0681 0x25c8  rspndr - ok
09:32:10.0738 0x25c8  [ F0FA6B67B16EEFDEF8E8AFAD47A4F9B8, 27D9ADFA2D86DD598E9F20D95261744F47A1E0D57700071ED16C87A5897C4293 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
09:32:10.0741 0x25c8  s3cap - ok
09:32:10.0794 0x25c8  [ 94E06D509D50807774F35BEE3163E806, ADADFA0D533944579BA0E5FE31A68D4D1395E7B9DB75E58D47E0ADC0DA5AD16C ] SamSs           C:\WINDOWS\system32\lsass.exe
09:32:10.0798 0x25c8  SamSs - ok
09:32:10.0945 0x25c8  [ 726E5F752F07CA52770547254E694D9B, 47356B3B72D935B2F11BE9F8208BDB433930230D2CF9E0DF6B40CBBB82D7583B ] SAVAdminService C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe
09:32:10.0955 0x25c8  SAVAdminService - ok
09:32:11.0000 0x25c8  [ 290B7711E005F1361E011568C939CC81, 97A3FFB9A57A9DCB362229939CC6FC656127D28223DDF54BDF08170338005D2A ] SAVOnAccess     C:\WINDOWS\system32\DRIVERS\savonaccess.sys
09:32:11.0006 0x25c8  SAVOnAccess - ok
09:32:11.0043 0x25c8  [ EE3F195A8895A508A746F7C69A90A1AC, 3CC711782C02093C4DE684872056ECEC52411DE56D5FF7C913ECAE7A7B6FAB20 ] SAVService      C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe
09:32:11.0049 0x25c8  SAVService - ok
09:32:11.0090 0x25c8  [ 324FA3C337EB54B43448F7B08444DC8D, 6AC6E84EBE169400D5CE140C7DC7F527D1A8F5B642593870AD7D1B193C21C7A3 ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
09:32:11.0094 0x25c8  sbp2port - ok
09:32:11.0140 0x25c8  [ 93B12AC7CEAF6BA742DC13AEA349217A, BFDFF3779827B1FF39C5834D9248FFF162B9362F2F7FD8EF8750FD83F35E23D3 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
09:32:11.0150 0x25c8  SCardSvr - ok
09:32:11.0189 0x25c8  [ 5CB8816960FE5C608F75607F34530BBB, 583DDD2BF4AB701A51C70C91FF1FAB1A0E428D9B38E5F062076B13F1F9D68404 ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
09:32:11.0197 0x25c8  ScDeviceEnum - ok
09:32:11.0242 0x25c8  [ 62A33CE69DB508BCEC63F4D3BFF400CE, 914FF18959025C71923558898F95B8113EE49930144A0B19FC06C5C043A171B4 ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
09:32:11.0244 0x25c8  scfilter - ok
09:32:11.0326 0x25c8  [ 76848A868A61D84F7CA3A06D5EF5E0AC, 1F0FBE6DD0649B75FA92D8BCB8CDCEF271BE39C226E15FF58486832D70B5EBE9 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
09:32:11.0350 0x25c8  Schedule - ok
09:32:11.0387 0x25c8  [ 7B057373146CC4E5A1F1DA665EA55DC7, 48F1C276F99D4E135A261DDEFE2D813430DEFF6BA30FCBFFB102EA40EAD9434A ] scmbus          C:\WINDOWS\system32\drivers\scmbus.sys
09:32:11.0391 0x25c8  scmbus - ok
09:32:11.0438 0x25c8  [ 200A5398C0E7E78DBDF6C0D9E811F366, 91BED3876FCA06AF551939720C0088BD195AF64C11C6EAD8970EDE8E037A71AA ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
09:32:11.0443 0x25c8  SCPolicySvc - ok
09:32:11.0519 0x25c8  [ 0FB6CCFA52FE5AD0B8D86E8AB370EF34, 02B93892F795F7D11F4F555B35CBE9C76E862809922B83CE32BDA40DA6C62D7C ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
09:32:11.0533 0x25c8  sdbus - ok
09:32:11.0578 0x25c8  [ 6D3853838864886B4F10B074282772E0, 50855299C5D7FBE0E45EE6288EA1B824215D3E3693F24F1AD2BB2F2E27F6150D ] SDFRd           C:\WINDOWS\System32\drivers\SDFRd.sys
09:32:11.0581 0x25c8  SDFRd - ok
09:32:11.0621 0x25c8  [ 368180051766E4289E3D47AF21F2668C, AD1E675A990684F131F09E61988525102CDEDA0817A20F188FE9D2A428216BC2 ] SDRSVC          C:\WINDOWS\System32\SDRSVC.dll
09:32:11.0629 0x25c8  SDRSVC - ok
09:32:11.0657 0x25c8  [ C289832A3174DC9D393C7603C511DF79, 1F63FD2C903E446E468814E4F7525433C3C9E46E5972CEF535D4508B4B21F46A ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
09:32:11.0662 0x25c8  sdstor - ok
09:32:11.0709 0x25c8  [ 0356C85312D78F4C7F33C74B6000BB93, 378018A0ABDF65506B471F091DEF6A8E1D2E719BEBA843595C550E3151C9E6D6 ] seclogon        C:\WINDOWS\system32\seclogon.dll
09:32:11.0714 0x25c8  seclogon - ok
09:32:11.0780 0x25c8  [ C91256173EBE0E45BD75C44B9B0FAF25, CA91271F9213E0ABFAD089C3BD1BDE7E77A1A116D74AF5357E7088B170831FCE ] SecurityHealthService C:\WINDOWS\system32\SecurityHealthService.exe
09:32:11.0795 0x25c8  SecurityHealthService - ok
09:32:11.0866 0x25c8  [ FE3E7B59BBEDDDC449C86B693BE63542, B89DBE228F3478F5908464B821711844CFB4DFAB8EB6268B6857C4B85C8D9D64 ] SEMgrSvc        C:\WINDOWS\system32\SEMgrSvc.dll
09:32:11.0899 0x25c8  SEMgrSvc - ok
09:32:11.0938 0x25c8  [ 62EDAD383010E037C4D3846C7C021A00, CF2C5D97B4B8C472242A1DCC1CB97A081BFDA41F5708CA78DC9B5041C9B747D9 ] SENS            C:\WINDOWS\System32\sens.dll
09:32:11.0944 0x25c8  SENS - ok
09:32:11.0950 0x25c8  Sense - ok
09:32:12.0024 0x25c8  [ DDBBE9A08C79D3BB50D6053507F7777D, CA67D6FFCF63F38AAA320276F0AB96F87F6431907D2BC138E7EEE4530BE88AF1 ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
09:32:12.0064 0x25c8  SensorDataService - ok
09:32:12.0122 0x25c8  [ F5FF526CCA513387A919B04BAB53E1E9, A40E112EC98C9F7ECB5E16B065BA9784DC2BFDF072055D0132013B4566E97469 ] SensorService   C:\WINDOWS\system32\SensorService.dll
09:32:12.0139 0x25c8  SensorService - ok
09:32:12.0178 0x25c8  [ 25B028799D43FE6324CC9E79B31E6ACD, DF7718E2C0D908A5623DABBC043A880F5B634DA0DF33F3697F1BB4A5C3CBCD5C ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
09:32:12.0186 0x25c8  SensrSvc - ok
09:32:12.0214 0x25c8  [ 75A27472AFD009255DBDE52038E3BDB5, 95C31B86D77D73B340901D3BD9798A9E3171D4D3F3D4632FBE3F6AE2B49A17C7 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
09:32:12.0218 0x25c8  SerCx - ok
09:32:12.0254 0x25c8  [ 84005F54308109A022413D628E966412, 6828A10DF28053C159E93BDD7A62A5517E7037DC302D0EEED55BF07B48E0A202 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
09:32:12.0260 0x25c8  SerCx2 - ok
09:32:12.0301 0x25c8  [ 40384793F74CFFA45BCC38DF65E978EC, FA68F18573CA92703A3442BB4BC5135C42520BA7D2C3E4B872115C02EE0A719E ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
09:32:12.0303 0x25c8  Serenum - ok
09:32:12.0319 0x25c8  [ 699470AD24D67908991A777716A352FD, 6155D9785DF9A9346B715798A2C4A0F9B90D2AF725E710F127E06155272B406E ] Serial          C:\WINDOWS\System32\drivers\serial.sys
09:32:12.0322 0x25c8  Serial - ok
09:32:12.0350 0x25c8  [ 92453F065F52A8EF0328A926B2C9502F, 11CF98993B00B4850C30528F0922BF392B8DE085AD84D17721964D543A41D64D ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
09:32:12.0352 0x25c8  sermouse - ok
09:32:12.0412 0x25c8  [ 8958262EA3A871D45B14B7BA00F795C1, 5A84AE513609DE793FF739A7875898D2A2AA1C618B8C5F66096CBC048840663E ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
09:32:12.0425 0x25c8  SessionEnv - ok
09:32:12.0458 0x25c8  [ 1D8920C40F19B5FBA5F4897779840AD1, 9B1DAFD92963118ACEA411224AA65C841D57D29F6F1EB69A58AB32BC5FEB1592 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
09:32:12.0460 0x25c8  sfloppy - ok
09:32:12.0516 0x25c8  [ 87D46F368297864CFCE1552568331F01, 9296E2238FAA2CF30171ED48AAFC2098C4913D5B886E7DAA08E6977BF9A4287E ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
09:32:12.0532 0x25c8  SharedAccess - ok
09:32:12.0580 0x25c8  [ 63377493508564288721EF5421A216F5, 8D8F2CAD3608AE47AFEAA60C51E288EA622EC85B1CAA330CD226CA7A49F0F8E3 ] SharedRealitySvc C:\WINDOWS\System32\SharedRealitySvc.dll
09:32:12.0594 0x25c8  SharedRealitySvc - ok
09:32:12.0672 0x25c8  [ 887458A234108B5B69038299BE7FAD88, B25780E36FCA373141EC129EC878AC0C2D560DFF62FEE3DFE332256C1FCDF579 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
09:32:12.0692 0x25c8  ShellHWDetection - ok
09:32:12.0740 0x25c8  [ 5ED18BE9FE76540A0596BB41C91719C6, 54B52E6EC059F48D2A4FEDC9D2B7B391A605F63CFC29C46A9FC5BA936EF3A72D ] shpamsvc        C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
09:32:12.0755 0x25c8  shpamsvc - ok
09:32:12.0802 0x25c8  [ A871F9CC9CF388DC7193D22EF8D8C8DF, D9E915F85E4FD993B04162B7D30BE6F230DD5464BBD75AE173255E59BA777067 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
09:32:12.0805 0x25c8  SiSRaid2 - ok
09:32:12.0835 0x25c8  [ D30FC341550CC364880950152AE8B1C5, BCCEB920C8DBCE061A62B0B7C91DA2981312DE9A8EC2D7398AE6009148603C77 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
09:32:12.0838 0x25c8  SiSRaid4 - ok
09:32:12.0872 0x25c8  [ 9CA6E573757C76A515EFD6DD795A3A1E, E7F87EF70545ABA33171A5783439E6E7874A2CAEE0C7ECF384023FBDCD967743 ] smphost         C:\WINDOWS\System32\smphost.dll
09:32:12.0876 0x25c8  smphost - ok
09:32:12.0940 0x25c8  [ 1A1AB4F96BEFC19FBF00B527A76490E0, E8BA2623BE6EC265C81BE164217764B52949F5B03BC8DC883A5095BBBF67E5BA ] SmsRouter       C:\WINDOWS\system32\SmsRouterSvc.dll
09:32:12.0958 0x25c8  SmsRouter - ok
09:32:13.0022 0x25c8  [ FDADDEC855034107E5FAD708B4E2424D, 1E3A07E0F67E23F32E046F516608D78299BA66BC647F6A6A240C77245FE3A7FF ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
09:32:13.0026 0x25c8  SNMPTRAP - ok
09:32:13.0069 0x25c8  [ C2D26667AA0E4EA62BFD236C0153A0CD, C4E3CCA508AB1DC4F81370C94AC675A4F53B02373A3D17FD763F21E50506FB67 ] sntp            C:\WINDOWS\system32\DRIVERS\sntp.sys
09:32:13.0074 0x25c8  sntp - ok
09:32:13.0221 0x25c8  [ 69531DCE0E1B0E875637487F07CB9F10, F7CBF29C7BC39837DEE92D665115C06154D01A21CAB4362080146FAC7D15AF42 ] SntpService     C:\Program Files\Sophos\Sophos Network Threat Protection\bin\SntpService.exe
09:32:13.0243 0x25c8  SntpService - ok
09:32:13.0300 0x25c8  [ 45B2CDCE8036F6699D546C2761B287DA, F843833EC2B9467E81A06A7BAB4C23D5958893A430A5C401A26C6BF7268A625B ] Sophos Device Control Service C:\Program Files (x86)\Sophos\Sophos Anti-Virus\sdcservice.exe
09:32:13.0310 0x25c8  Sophos Device Control Service - ok
09:32:13.0354 0x25c8  [ AB84F5D53F2E542D5747B940FD0245B6, 715E06EEF95E6ABCF2220099FB0906E8718A9E5433AE183135C1CB1CF42CAEB9 ] Sophos Endpoint Defense C:\WINDOWS\system32\DRIVERS\SophosED.sys
09:32:13.0360 0x25c8  Sophos Endpoint Defense - ok
09:32:13.0447 0x25c8  [ D1F3B0FA83146E566254D74E538D7B8E, CF98D1919BA8B5A1D43EC75EE347C04971E96EC4A9FCC97A5EB7C071B67B1C6E ] Sophos Health Service C:\Program Files (x86)\Sophos\Health\Health.exe
09:32:13.0495 0x25c8  Sophos Health Service - ok
09:32:13.0661 0x25c8  [ 3BE4D7FDF3313223BC1A12881344A1B2, ABEF81D485A8CB57195969DC44EEC1DA39FC10C1927E40095D14B482B604004A ] Sophos Heartbeat C:\Program Files (x86)\Sophos\Heartbeat\Heartbeat.exe
09:32:13.0719 0x25c8  Sophos Heartbeat - ok
09:32:13.0847 0x25c8  [ B5099952CB8BA252E1F48BEEEA684972, 820BB0312B3D2EBEBFA8D09C5912B4FD1CE09FC7AE2EE7BBC4B0D745BA6F43D0 ] Sophos MCS Agent C:\Program Files (x86)\Sophos\Management Communications System\Endpoint\McsAgent.exe
09:32:13.0879 0x25c8  Sophos MCS Agent - ok
09:32:13.0978 0x25c8  [ 98125B19CE405A52388C7B8EC89747B4, 27E3ED69BE22031DF5CB5EE8121B2A5383DA60FA3C625F91033715E44C7FE5A9 ] Sophos MCS Client C:\Program Files (x86)\Sophos\Management Communications System\Endpoint\McsClient.exe
09:32:14.0020 0x25c8  Sophos MCS Client - ok
09:32:14.0086 0x25c8  [ 04FE5343837CD644044324002A8F12F4, 1E3AF4F331848E2D11E678A21EECCA628DD141F6B2B5DC2AAF1A93CB4B0BDBE7 ] Sophos Web Control Service C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe
09:32:14.0094 0x25c8  Sophos Web Control Service - ok
09:32:14.0115 0x25c8  [ 2A09CD9F47480CE84C8B9C31F6A06057, 6FED9B03CFBDB941B668C1F1DC87933EBE6CFB016C469BA5A7C756761506C51C ] SophosBootDriver C:\WINDOWS\system32\DRIVERS\SophosBootDriver.sys
09:32:14.0118 0x25c8  SophosBootDriver - ok
09:32:14.0185 0x25c8  [ 410506D87F07AF40880BE50262C2D6C4, 7E8195A2028AD577C4E934AEDC1C296EAE06EDEB904EFA00A83B7E7D4D2F9361 ] SophosDataRecorderService C:\Program Files\Sophos\Sophos Data Recorder\SDRService.exe
09:32:14.0209 0x25c8  SophosDataRecorderService - ok
09:32:14.0416 0x25c8  [ C07BB5FFB85E64DF1AB67E17188DF22F, 322FD46C8694BA5DE88CCACFD8364F8A3397AA02C9FD5644333AE3D3BECA4ABB ] sophossps       C:\Program Files\Sophos\Sophos System Protection\ssp.exe
09:32:14.0559 0x25c8  sophossps - ok
09:32:14.0628 0x25c8  [ B2ABF0F8A49752B5CD9DEE2EADF7416A, 344E22F3D4A50E4C136B6DF88250872305598DE771A0251B411507504046CCD2 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
09:32:14.0643 0x25c8  spaceport - ok
09:32:14.0681 0x25c8  [ CCECE7E96B4F7B0E9F0FC82F6DADA917, 4C20D74971C7A822C51429BE960F85016B03166E05D43B29F5D290F413006C18 ] SpatialGraphFilter C:\WINDOWS\system32\drivers\SpatialGraphFilter.sys
09:32:14.0685 0x25c8  SpatialGraphFilter - ok
09:32:14.0734 0x25c8  [ 545507AF670BC88B89200A118513ED9A, 1450D29E678F26B317D55BBF41E603296C5FBA54F956801D3E796808FFDCC0AD ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
09:32:14.0738 0x25c8  SpbCx - ok
09:32:14.0807 0x25c8  [ D9D1757C092D2944DB8701414286503E, 5CE4B686C0C49A9D795B847F8A3A0581EE3C0A856219FD324645E95A48B8B8A2 ] spectrum        C:\WINDOWS\system32\spectrum.exe
09:32:14.0832 0x25c8  spectrum - ok
09:32:14.0885 0x25c8  [ 2FB3D1A674C3A2A389EBCAFC26213DDC, D303890948677E01F02368F72A142C5F7734BFE90837064C1D3A79A1A1F31732 ] Spooler         C:\WINDOWS\System32\spoolsv.exe
09:32:14.0906 0x25c8  Spooler - ok
09:32:15.0105 0x25c8  [ 57C9484D415A6549EAE96FA163BE912E, A32329EB89D642BB8F627DAE8F3BEBA71004439899844C29349519EE939D42CD ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
09:32:15.0214 0x25c8  sppsvc - ok
09:32:15.0344 0x25c8  [ C04D8EFB3906A8B1718ABD7FD21B2918, 870E248B77C034D4FAB5E3572B5AEFCE34D696C2F927FA8D0A507A096AAD0DA3 ] SQLAgent$KAV_CS_ADMIN_KIT c:\Program Files (x86)\Microsoft SQL Server\MSSQL10_50.KAV_CS_ADMIN_KIT\MSSQL\Binn\SQLAGENT.EXE
09:32:15.0362 0x25c8  SQLAgent$KAV_CS_ADMIN_KIT - ok
09:32:15.0430 0x25c8  [ 7F37589E64A7C35AB67D0D8C8F53652B, D389FDF5CF7F4926BFDE966E2E92FAE3AFE5C0ACBDAB40E74A1B5D9F3525101E ] SQLBrowser      c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
09:32:15.0442 0x25c8  SQLBrowser - ok
09:32:15.0472 0x25c8  [ F98DDFBFE0EE66D4C4B00693512B9527, 322FF75D1CA460368FD72ADCD93273F1D5AA5CF2C4DF65A94BF9ABAA2E695150 ] SQLWriter       c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
09:32:15.0477 0x25c8  SQLWriter - ok
09:32:15.0529 0x25c8  [ 485BABF47A46EB298AB11E447B0D800C, D001D1A3194DCFCE22D593DA451FF0E9ED59F78EC930CF7AE8D058B7AA1B0FCB ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
09:32:15.0540 0x25c8  srv - ok
09:32:15.0597 0x25c8  [ 41181D890542EB0E8D9822F73F9FD5D7, 74F40468387FACDD728220C8BA05023503A1EFDD17CA072B21B5BE0F8B78A5F1 ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
09:32:15.0616 0x25c8  srv2 - ok
09:32:15.0662 0x25c8  [ 43480B3EE4D23F5AA8EE7C6D83B09487, BDBF48060ECAE1CD5AB40DFF41C8E2499185BA690A19BCB87AE1D2A0613E33FD ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
09:32:15.0669 0x25c8  srvnet - ok
09:32:15.0734 0x25c8  [ 5319E85C030CDB3E779D774FEEFF4842, E234016CF0C6D7F6EDBDCF2BF58B9456C84C509B10BC86677000DF3021997B0B ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
09:32:15.0749 0x25c8  SSDPSRV - ok
09:32:15.0797 0x25c8  [ 3BEF5FAC7F3DA3E25B80CC41B5060616, CAAB3CAF150F564964471F494F583014E5EF842BC4761A64B708842C4425753B ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
09:32:15.0806 0x25c8  SstpSvc - ok
09:32:15.0849 0x25c8  [ F0B59ADCD06BCEB9D47311B7041CA2C9, 6299AB514CBE153C875F083ED789F6205C1781C0178759521F5A6D8007F5257C ] ssudmdm         C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
09:32:15.0855 0x25c8  ssudmdm - ok
09:32:16.0058 0x25c8  [ 22FC1054C424DA55323F3704F8C78CD2, 08F48548008F1E0D2C957101237F029F82301F9498AC628A7E1CDF2C8E82DCD0 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
09:32:16.0166 0x25c8  StateRepository - ok
09:32:16.0230 0x25c8  [ 162A805E13B3C0DD06AE8B6FC1900156, 43782D9136596365B87E7DF2046CC28C2AF9EC014308E1458E0315F7F6463B44 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
09:32:16.0234 0x25c8  stexstor - ok
09:32:16.0309 0x25c8  [ 3B3F5D6BB8A6A6F3630194A471989069, 0A5D586A1866113B94F5F11571506E133F64640DB38BEEDBE5489ED10314FA31 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
09:32:16.0330 0x25c8  stisvc - ok
09:32:16.0381 0x25c8  [ DD1F00B80DDD12252B7B228ABCE181A9, 64F14588C404C7F3B9F6D4525D06916BC7B04FC68B2046D382EA4919D9CB5623 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
09:32:16.0385 0x25c8  storahci - ok
09:32:16.0434 0x25c8  [ A12CFAAA0F113A25D8CEFE58B1CBB207, 317FA1BA85429EDB5CEC477898EF02FC1A143FBF713B98742E6426F3A1B2837B ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
09:32:16.0455 0x25c8  storflt - ok
09:32:16.0497 0x25c8  [ B6F8D1FA73F6E102AEA60D2BBD1DDF78, FC3CF65B7D87F72EB6773F0DB9DED828FACEEE0C1782D742C3348F631B801777 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
09:32:16.0501 0x25c8  stornvme - ok
09:32:16.0536 0x25c8  [ 57377953F5688158054BC8CB5A243115, A7757BC5A58D68853C23A8EF3708FB9AFF5861191C70A7E6010CF28176C34809 ] storqosflt      C:\WINDOWS\system32\drivers\storqosflt.sys
09:32:16.0539 0x25c8  storqosflt - ok
09:32:16.0608 0x25c8  [ 17A3BBC869153E9CA3742F6DBEFBD46D, F23030784FC7A36CF6E0FAC7F3F622016281E99009EB4FD92B474A0B70D1208B ] StorSvc         C:\WINDOWS\system32\storsvc.dll
09:32:16.0634 0x25c8  StorSvc - ok
09:32:16.0668 0x25c8  [ B59D29E535AF7E82717C2AD2C57EEC67, FF3944C7A90457209D83E3EBF5327DBF4E1D7F868E4E9055B3F98075A6DEBDE2 ] storufs         C:\WINDOWS\system32\drivers\storufs.sys
09:32:16.0671 0x25c8  storufs - ok
09:32:16.0715 0x25c8  [ 9B431079624306B5659B3B7208A71C75, 7F7684745215479C545AA91F6D99716CE2AA8AC8C2C99537FCB6E9D5AE8D093D ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
09:32:16.0718 0x25c8  storvsc - ok
09:32:16.0748 0x25c8  [ 587854AF01CABE83A62D81FFEEBCD6AA, 99103FCCFE18DA0EA0121A10BCB7DEB833DE2A5C4CB8BD70E4983C2274D469E6 ] svsvc           C:\WINDOWS\system32\svsvc.dll
09:32:16.0753 0x25c8  svsvc - ok
09:32:16.0782 0x25c8  [ 027B27E4B9DB3931D64159B81BD915A0, B30BD828748205642529B6E528D12B16F86CA4F06F60C2C2E89AD7A97EB06B49 ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
09:32:16.0784 0x25c8  swenum - ok
09:32:16.0818 0x25c8  [ C60F83AC3A812324892B4E740F8C6E68, 5E54B92CE641458F649E8EB29752C38760CB2BAE7FBFBE921403CD31D81F9CDB ] swi_callout     C:\WINDOWS\system32\DRIVERS\swi_callout.sys
09:32:16.0821 0x25c8  swi_callout - ok
09:32:16.0888 0x25c8  [ DF222A37B5A783B7E9F4B75885DAB6E2, 3C162FA54489A1DEDE5EDCD806E7D97EABC44AF7E6E809C33187D2696758DE20 ] swi_filter      C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_filter.exe
09:32:16.0900 0x25c8  swi_filter - ok
09:32:17.0030 0x25c8  [ B223BB9ABAF79096FB052A19F081CC6D, 27D89C54C0F674CF880708F7F254F6696E794FFB7D7758253A0A953E8C8B4527 ] swi_service     C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
09:32:17.0125 0x25c8  swi_service - ok
09:32:17.0197 0x25c8  [ E0915F9B3C154FEF700C34A8E613B945, 172205D9DF0ABCC1F2B9484BA75A637BC0899CB42BFA5F0352B9C8E0CD6DDDA3 ] swprv           C:\WINDOWS\System32\swprv.dll
09:32:17.0212 0x25c8  swprv - ok
09:32:17.0267 0x25c8  [ AB15F9FDCD11D5283891BC956E8C5C95, 3B3085B6B2890063EFED64A143F847B30B00170107A9AFC61ECA9C570ABC989B ] Synth3dVsc      C:\WINDOWS\System32\drivers\Synth3dVsc.sys
09:32:17.0270 0x25c8  Synth3dVsc - ok
09:32:17.0339 0x25c8  [ 53104F65EE07B654D59724C616BCE1E3, F9054E31B3751F3A0CC8DEC6E4B31887AEDA76170875A2690694D7912EFB1CD7 ] SysMain         C:\WINDOWS\system32\sysmain.dll
09:32:17.0365 0x25c8  SysMain - ok
09:32:17.0409 0x25c8  [ 0839E5F9192B050F3B220562FF2C10AF, 215E409F2F9219265BBC795F96B6080FA77BB6701EC35FD9E7317265808A9796 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
09:32:17.0419 0x25c8  SystemEventsBroker - ok
09:32:17.0457 0x25c8  [ 73F6476EE9F5448838B2883E0B710CD7, 0C2362C92A5CF8EBE428FC7C0399A8B6812CA42DD11D8669CB23FB10AC7B52AA ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
09:32:17.0466 0x25c8  TabletInputService - ok
09:32:17.0508 0x25c8  [ AC1AA61B04116E540C5AFD18F11F2697, D5ACC296853911E2C9A5E7B0B6F36AC4FA6B49417CB456D153427BCFD944C195 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
09:32:17.0519 0x25c8  TapiSrv - ok
09:32:17.0696 0x25c8  [ 9900BD38D592CF4EE6F2EAE3847A24D8, 2D787BC94A0F148D9E7B32BEED09F7EB94D8918B95CB5A091643C1E4F34F1CF3 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
09:32:17.0762 0x25c8  Tcpip - ok
09:32:17.0846 0x25c8  [ 9900BD38D592CF4EE6F2EAE3847A24D8, 2D787BC94A0F148D9E7B32BEED09F7EB94D8918B95CB5A091643C1E4F34F1CF3 ] Tcpip6          C:\WINDOWS\system32\drivers\tcpip.sys
09:32:17.0900 0x25c8  Tcpip6 - ok
09:32:17.0961 0x25c8  [ 74A1BF4093FA7B7D6C9366A39911A78E, E60694303A608EBFEAA5C581B312A212BC7081A4D67234F003917FA6E6A05F84 ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
09:32:17.0964 0x25c8  tcpipreg - ok
09:32:18.0017 0x25c8  [ 571D82ABAC428D902ACA0CF60373C039, 87DF0AB722B426ACC9A8608DAA6443F59D7167815EBF921B3FDC4BEC2D323B7B ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
09:32:18.0022 0x25c8  tdx - ok
09:32:18.0066 0x25c8  [ B4B68E1DB59456419D9E49645729502A, A741EDEBCF5E8141BCC8867D5A62024425656432B6E6B0A0131B1B4AB878744E ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
09:32:18.0069 0x25c8  terminpt - ok
09:32:18.0142 0x25c8  [ 96037700AEE1B4D5A6FFC62861E4FF8C, E2E4D23525389C13126401215541F5625258DA18372CB5C98D0B95123A86ACFB ] TermService     C:\WINDOWS\System32\termsrv.dll
09:32:18.0170 0x25c8  TermService - ok
09:32:18.0193 0x25c8  [ E0F78207F33D6C10CBFB23E873837C87, 55D4411A4070AFE81E576989D67DC411BAE39D9B90697E7646F07716EABE8EC1 ] Themes          C:\WINDOWS\system32\themeservice.dll
09:32:18.0199 0x25c8  Themes - ok
 


09:32:18.0242 0x25c8  [ B52BA61AB8E4BAA83EA86BAB312EE6ED, D9A9D17FD222A67CA1906A422055718269929F0B33C7417F7D1F9447FD424683 ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
09:32:18.0253 0x25c8  TieringEngineService - ok
09:32:18.0309 0x25c8  [ BC834B233125DBB321B809972F2E270E, 7085FAF5BC5E37E81E30345E984887E2D3F7657F87A23C0C1C0A4DFCD558BA55 ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
09:32:18.0325 0x25c8  tiledatamodelsvc - ok
09:32:18.0369 0x25c8  [ 9B3AA589825CF90E187DF432D806A316, 47DF7637A4D41FF6C0C2AE8A502C339A05CE54493FE94FD76727EC3A25553B0E ] TimeBrokerSvc   C:\WINDOWS\System32\TimeBrokerServer.dll
09:32:18.0377 0x25c8  TimeBrokerSvc - ok
09:32:18.0487 0x25c8  [ 203A86C865A536548A4B17C65EA9EB22, 0B269A0CE2C58B3D11AB94F216EDCE680BCC06D4F947EFEC4289D9661AB5C798 ] TokenBroker     C:\WINDOWS\System32\TokenBroker.dll
09:32:18.0521 0x25c8  TokenBroker - ok
09:32:18.0589 0x25c8  [ 1658D060057C85DEC82BFCB018C4C22F, 4428F0C462FC9FA19B2649ED700B95E038B99795BA5D4327C395EAFD647545C8 ] TPM             C:\WINDOWS\System32\drivers\tpm.sys
09:32:18.0596 0x25c8  TPM - ok
09:32:18.0646 0x25c8  [ 39187852984778424A0EFD6B01FAB272, 2E7F7AEE8BAB1C6D8B880C28222EFFB721CFDA3B39215BB065088E396581ADA9 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
09:32:18.0653 0x25c8  TrkWks - ok
09:32:18.0725 0x25c8  [ 6E39B63A16B33827B861C56F0E58E021, 6A6C4387CB213FBD2BF2952BE5175F98116C671FB0046426ACA293BD5EBB59A0 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
09:32:18.0730 0x25c8  TrustedInstaller - ok
09:32:18.0807 0x25c8  [ 8D811209E34358EAD3FD8E40F657E59C, 1A40ED03C03C4FD87EBD166C0D87356F5036F04FBC1F9A600E92E2125B117DFE ] tsusbflt        C:\WINDOWS\system32\drivers\TsUsbFlt.sys
09:32:18.0811 0x25c8  tsusbflt - ok
09:32:18.0886 0x25c8  [ 68DE1735FB020AE8948BD7B60F2EBD3B, 198EFA09C3FB57CD7C11F1AB91491E8FB8093F12DACE1B1AF1BDE50EBCD8EB43 ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
09:32:18.0914 0x25c8  TsUsbGD - ok
09:32:18.0971 0x25c8  [ 32230D3F06B0874DFB727028CA4F6348, 8F50B556C38F736AAB8160912F0A3917BCA6396555D0DCB7A65B7FF0A8225416 ] tsusbhub        C:\WINDOWS\system32\drivers\tsusbhub.sys
09:32:18.0993 0x25c8  tsusbhub - ok
09:32:19.0066 0x25c8  [ ACD39B0E5CFDA7B1AB7DF33FC5CC0E46, 89FE50DE5037770D568BA025A7EB06B5FAEA39A1EB97910319B942B02EFD14E5 ] tunnel          C:\WINDOWS\System32\drivers\tunnel.sys
09:32:19.0092 0x25c8  tunnel - ok
09:32:20.0876 0x25c8  [ 30340EA4BB00F6CD5A92C75AECFD538C, 130347021D8D5CB06E975B3DB350892B2BD934DDA056935B6048C84C0CD860F6 ] tvnserver       C:\WINDOWS\LTSvc\labvnc.exe
09:32:20.0908 0x25c8  tvnserver - ok
09:32:20.0980 0x25c8  [ D5E68FCEDE15214BDB5D986D5B50E0BF, D2FA040B4BF4424928ABFB0B8CCA768C8DC9BE3DA86A3C61B1CEE1A2C543FADC ] tzautoupdate    C:\WINDOWS\system32\tzautoupdate.dll
09:32:21.0005 0x25c8  tzautoupdate - ok
09:32:21.0085 0x25c8  [ 04FC2C7F73AE58BF0DD674164E28A6DF, 513E98D6838008B6F97E895BCD639679276AD6A7F7E789A6F3D4E9F9781CA78A ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
09:32:21.0120 0x25c8  UASPStor - ok
09:32:21.0205 0x25c8  [ E437FC4B1833F6B745184F78C4921FB8, 171605C7BF95FE1F342B314A969ECBE0B0D04E67D1306F470B3424AB6DE1478D ] UcmCx0101       C:\WINDOWS\system32\Drivers\UcmCx.sys
09:32:21.0222 0x25c8  UcmCx0101 - ok
09:32:21.0302 0x25c8  [ 950A3E42167904CAB9AA64863C31CEB5, FC31C3177EDA9FFD2CE51EB2B1E696E50FFB378973C3C001EE29265FED249353 ] UcmTcpciCx0101  C:\WINDOWS\system32\Drivers\UcmTcpciCx.sys
09:32:21.0339 0x25c8  UcmTcpciCx0101 - ok
09:32:21.0392 0x25c8  [ 149CBBB74DFC3E52F242029A27B0F8EB, 8FF33A7011EC33FDF825749A985049B58FAC9CA640A813D462715E22F8EEB70D ] UcmUcsi         C:\WINDOWS\System32\drivers\UcmUcsi.sys
09:32:21.0408 0x25c8  UcmUcsi - ok
09:32:21.0448 0x25c8  [ E6E91B3980A495D2A9D28A09580EA993, B4987D875A8AA176818C115844388EE64054411689B014ADEAC18164D02F6AE8 ] Ucx01000        C:\WINDOWS\system32\drivers\ucx01000.sys
09:32:21.0471 0x25c8  Ucx01000 - ok
09:32:21.0493 0x25c8  [ DACA289DFFA7658C04FEF6DCFA2AA9CE, 7BD32B5F395A8675D4B2BDCA75530F2FFA64ED87B2B67FDA08EF709A4EA15553 ] UdeCx           C:\WINDOWS\system32\drivers\udecx.sys
09:32:21.0497 0x25c8  UdeCx - ok
09:32:21.0588 0x25c8  [ 12383D410AEF99AD6979A8EFD3D61888, 376929794A2A8B05DDB2EE93E58A3C3DA19855F5CBC8B29E208E28BF95970355 ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
09:32:21.0608 0x25c8  udfs - ok
09:32:21.0653 0x25c8  [ AB7FE51D818B6059C2F56FA62268CCAC, D8412F13BFE0B96E0A9CCB5E25A567A66AE24983564D76954AA76DAF0A52726E ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
09:32:21.0657 0x25c8  UEFI - ok
09:32:21.0697 0x25c8  [ A6134CA92B545353EEB0420F36D39F1C, 2F100FC25ACF16948C9B95A7FAA5336B7C8E3CB571196B04D5DB8308D8C6C491 ] UevAgentDriver  C:\WINDOWS\system32\drivers\UevAgentDriver.sys
09:32:21.0729 0x25c8  UevAgentDriver - ok
09:32:22.0096 0x25c8  [ 8899E490269C7634368B4FE6E77CFE8D, ADDA7FD2DE1C94F9F91DA9C248DEF1D253B807FB07549EF14774C5D0001C5B3D ] UevAgentService C:\WINDOWS\system32\AgentService.exe
09:32:22.0126 0x25c8  UevAgentService - ok
09:32:22.0237 0x25c8  [ 58447F28E697A93521DD20530A8D50ED, BC166B829BA28DAEB8B113D5575D6A11BF81716B38797396496F4D2C2E537F23 ] Ufx01000        C:\WINDOWS\system32\drivers\ufx01000.sys
09:32:22.0250 0x25c8  Ufx01000 - ok
09:32:22.0275 0x25c8  [ 69ED2D00A7787D9D84E6C90CE0B02B2D, 55B137766D72BF5FFF645E8E76248FD15367DFDF7FFDABB9A9ECC27FD7555DD3 ] UfxChipidea     C:\WINDOWS\System32\drivers\UfxChipidea.sys
09:32:22.0291 0x25c8  UfxChipidea - ok
09:32:22.0318 0x25c8  [ F061EC57330FBC597A4E7298BE667780, 0C32162782BAE9912373CA40A67567BAEF185173E033579C4833A91C11D83E2E ] ufxsynopsys     C:\WINDOWS\System32\drivers\ufxsynopsys.sys
09:32:22.0323 0x25c8  ufxsynopsys - ok
09:32:22.0389 0x25c8  [ B26729B378282F72241859C13326E3E8, 859398D02E301B8C79078DB43E3BF9691EBA52DD0717868E27D2D6EF918098DD ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
09:32:22.0421 0x25c8  UI0Detect - ok
09:32:22.0457 0x25c8  [ D40BCED160D332005AF612E1228825E6, 72B7B89A3ED1D6846D004D9BDCAAF8F1D488C21A93A926FE158217B529B55157 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
09:32:22.0477 0x25c8  umbus - ok
09:32:22.0529 0x25c8  [ 64CF24D7B1FA4975C52A31BF4C82EB73, 2F803884A417F2DD39A155D20EAA4D61D494E41B0F98760810EC5193B84DD425 ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
09:32:22.0541 0x25c8  UmPass - ok
09:32:22.0600 0x25c8  [ E6B6BDA0412D3C56275E662A5A1937FD, CB971073A34CF3FA184B8E41308A14CFD5E22F48B01109E7531DF013EB5E05E7 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
09:32:22.0628 0x25c8  UmRdpService - ok
09:32:23.0001 0x25c8  [ 46718991BA67AAF624B6B609E0BCACA7, D48831ED64D7314A2FE989375687C47575A4563C2F70D6BBF4FBDD1866E553B1 ] UnistoreSvc     C:\WINDOWS\System32\unistore.dll
09:32:23.0039 0x25c8  UnistoreSvc - ok
09:32:23.0227 0x25c8  [ D2931E3F67A990328DE5CE7E43F4467C, 06BA872FB07CFDD14813963A06E01F225EFDF58A63D6B0A5AEF7872C7126DF54 ] upnphost        C:\WINDOWS\System32\upnphost.dll
09:32:23.0255 0x25c8  upnphost - ok
09:32:23.0289 0x25c8  [ ACE4C3B4C7D17B154FFC5BBE5F7A9835, C330123EE9BF90518CCB7DA923ED32C0CFA9319C886D9ECA65E3B84E743CB145 ] UrsChipidea     C:\WINDOWS\System32\drivers\urschipidea.sys
09:32:23.0304 0x25c8  UrsChipidea - ok
09:32:23.0324 0x25c8  [ ECE40EB976A5ACB366808AECF6B235BA, FA00D0A8EF1BCA0349DCA961F4093DF790E5031F91586050372029AA9A7726C5 ] UrsCx01000      C:\WINDOWS\system32\drivers\urscx01000.sys
09:32:23.0333 0x25c8  UrsCx01000 - ok
09:32:23.0365 0x25c8  [ EB738F830D3E7EA62A218F101EF91FD4, 35B05845497448C0721377F0EDD7624A4043D0C6E91C5C1CB96853F2D3B16457 ] UrsSynopsys     C:\WINDOWS\System32\drivers\urssynopsys.sys
09:32:23.0390 0x25c8  UrsSynopsys - ok
09:32:23.0425 0x25c8  [ B43E28E5CF868517EEC0923AB2BC366B, 01817474AFBC2199387F30F708DDD9458FB156EA4AECC8C3E2EBBCBF7A2BA857 ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
09:32:23.0446 0x25c8  usbccgp - ok
09:32:23.0483 0x25c8  [ 1080D80B5F6D249F23BAE1C0C36233A4, 8EB810282DACCE101D4B5F70FEB450204359537098215DED1DBFF9E14B6F86D0 ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
09:32:23.0503 0x25c8  usbcir - ok
09:32:23.0550 0x25c8  [ EE162DA2C92026A5B96ED89737975AA8, A26E58C7BEE9B6F0F692A2649F258384E55523A64889E3B7D8EFD6D77753E243 ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
09:32:23.0554 0x25c8  usbehci - ok
09:32:23.0736 0x25c8  [ C27FEE9758E3BEDE4D48B5EDBE1122CF, 64F7215ADCA3DC1E2D8EF3E6C3579529605DF8F7A2161FB04B19182C828E54D6 ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
09:32:23.0764 0x25c8  usbhub - ok
09:32:23.0977 0x25c8  [ 4FA9C956E569D0D380C2859542361780, 974D094F89BF26881649747C1CB576C1E6448EF6C34110A08672EC8CEA2EE751 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
09:32:23.0998 0x25c8  USBHUB3 - ok
09:32:24.0052 0x25c8  [ 44B954306BB2B311E070EDA276FECAB1, 8F3C1FC07E2B8059E41AF3BD1CC03C67770B4FB403D79171CA075874721BBCAB ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
09:32:24.0074 0x25c8  usbohci - ok
09:32:24.0127 0x25c8  [ EEF26F9034F0608B93D4D239534BB0BA, 6B047603D4F86C12CF0B22F4260E8BC6A6FF0BEEC50C74E31CA3A4E86567F90D ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
09:32:24.0152 0x25c8  usbprint - ok
09:32:24.0173 0x25c8  [ 913CFF365DB1803525DBD2AA8B8188B4, 271EB892F3C38E4B7B872C1EF6E76C8354CF84E7BC9FC185AC09EADF7EFDF73A ] usbser          C:\WINDOWS\System32\drivers\usbser.sys
09:32:24.0190 0x25c8  usbser - ok
09:32:24.0226 0x25c8  [ 441CAE778B6A1FF6E618E37814A7A52A, 61DF48D662421F2149FA63187B2C8556A991BDA47EA75798BA86C572C432C1EB ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
09:32:24.0257 0x25c8  USBSTOR - ok
09:32:24.0288 0x25c8  [ 2D6BB2157B37B2D9DABF8C218F2A805B, 5FCA03DCAE81F6B7A6EB63F13A361ED915D82635697DAA085A31D447C21C1B65 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
09:32:24.0314 0x25c8  usbuhci - ok
09:32:24.0397 0x25c8  [ 41E5A6188180DC72BCECA999ED2532D4, EB2F4BDD5868767A624B0BC7322E93D5081CCD4B60389C2CD307334E7C90B612 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
09:32:24.0409 0x25c8  USBXHCI - ok
09:32:24.0838 0x25c8  [ 4C691D958453AF5E849813C56679B2D4, 8AFD3375163056F1F8329559AFD4F63290649C920DF83E78C880D8C871B28651 ] UserDataSvc     C:\WINDOWS\System32\userdataservice.dll
09:32:24.0897 0x25c8  UserDataSvc - ok
09:32:25.0177 0x25c8  [ 654051CFF31F12D3048D3E9B9B9BB9C7, C5464054E42AF8C5D0D06F2527B594CB5872DCED9AF8F0F4A107C18CCF1345C5 ] UserManager     C:\WINDOWS\System32\usermgr.dll
09:32:25.0205 0x25c8  UserManager - ok
09:32:25.0585 0x25c8  [ 0DA0636E077688F4CBF740F0A62263E1, C68567A1C4180E77DCF80BD776080920B47564CFFEF130759E56191E15172F0A ] UsoSvc          C:\WINDOWS\system32\usocore.dll
09:32:25.0638 0x25c8  UsoSvc - ok
09:32:25.0665 0x25c8  [ 94E06D509D50807774F35BEE3163E806, ADADFA0D533944579BA0E5FE31A68D4D1395E7B9DB75E58D47E0ADC0DA5AD16C ] VaultSvc        C:\WINDOWS\system32\lsass.exe
09:32:25.0668 0x25c8  VaultSvc - ok
09:32:25.0712 0x25c8  [ C77C537077822D8EA529AD4EBFD971D6, B6753C6BE9814B98B1B1A309F5258132A0471160C1F6489CCE33E243C0D159FC ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
09:32:25.0741 0x25c8  vdrvroot - ok
09:32:25.0880 0x25c8  [ 07C192BEEA76B1BD9D0310ED20551D54, 0E8A90B2A228CEE94DBD193E7C6775A64C8BBEF70E318F2ECE935B6ED5B26638 ] vds             C:\WINDOWS\System32\vds.exe
09:32:25.0980 0x25c8  vds - ok
09:32:26.0047 0x25c8  [ 9D4EEE333603F3675685F644053499D5, 545A21F86C8CD64B556DE688B31DDB157863766D53E52DE443B881D267223578 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
09:32:26.0075 0x25c8  VerifierExt - ok
09:32:26.0136 0x25c8  [ 9240C24121E3A581F8BC198413AEA06E, 2EB975F212E1169159C4C8BD6222C645DA3C7070C02A670A04BB50546177484F ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
09:32:26.0154 0x25c8  vhdmp - ok
09:32:26.0201 0x25c8  [ E10FEBB566E1F0A3936AB304F338637E, 01B344061F2A8802EE88F584CF583DCECA478823A0D37C41D90340E4E2FBC43F ] vhf             C:\WINDOWS\System32\drivers\vhf.sys
09:32:26.0220 0x25c8  vhf - ok
09:32:26.0264 0x25c8  [ 079B4378614A40A308F9C721A50C7B87, 1B291D23388BD5FC354C5AAADDC77F19F5A52568AC7499A2503D9D8C89212491 ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
09:32:26.0285 0x25c8  vmbus - ok
09:32:26.0336 0x25c8  [ DC9E0600B356258E31403789119C78A9, 2746FD5B32EE19F0E310372DBE26DFB35BC521479B3B1D3FF94CFA5CD2147D56 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
09:32:26.0353 0x25c8  VMBusHID - ok
09:32:26.0408 0x25c8  [ B24F74B2710B66F647419697BDB9E163, C04F7F26DA0F0916CF4E60302A36C843F462038E0E8B0A6B8543B1259934B3D2 ] vmgid           C:\WINDOWS\System32\drivers\vmgid.sys
09:32:26.0410 0x25c8  vmgid - ok
09:32:26.0531 0x25c8  [ CE70937143DBDB2B4BF3A0310EB9E189, 57465BEB5DFCD9BD8497B3D771D9F8F14F8BD44C939E4EEBAF23E83443B50733 ] vmicguestinterface C:\WINDOWS\System32\icsvc.dll
09:32:26.0563 0x25c8  vmicguestinterface - ok
09:32:26.0582 0x25c8  [ CE70937143DBDB2B4BF3A0310EB9E189, 57465BEB5DFCD9BD8497B3D771D9F8F14F8BD44C939E4EEBAF23E83443B50733 ] vmicheartbeat   C:\WINDOWS\System32\icsvc.dll
09:32:26.0591 0x25c8  vmicheartbeat - ok
09:32:26.0607 0x25c8  [ CE70937143DBDB2B4BF3A0310EB9E189, 57465BEB5DFCD9BD8497B3D771D9F8F14F8BD44C939E4EEBAF23E83443B50733 ] vmickvpexchange C:\WINDOWS\System32\icsvc.dll
09:32:26.0615 0x25c8  vmickvpexchange - ok
09:32:26.0694 0x25c8  [ FD73A74D26F5BEC303763FD9CDD2DFB2, 7DA4CC00FBADAB50BD635EB825900CD917CBD130C617AE58B6404F8897776D64 ] vmicrdv         C:\WINDOWS\System32\icsvcext.dll
09:32:26.0719 0x25c8  vmicrdv - ok
09:32:26.0736 0x25c8  [ CE70937143DBDB2B4BF3A0310EB9E189, 57465BEB5DFCD9BD8497B3D771D9F8F14F8BD44C939E4EEBAF23E83443B50733 ] vmicshutdown    C:\WINDOWS\System32\icsvc.dll
09:32:26.0743 0x25c8  vmicshutdown - ok
09:32:26.0788 0x25c8  [ CE70937143DBDB2B4BF3A0310EB9E189, 57465BEB5DFCD9BD8497B3D771D9F8F14F8BD44C939E4EEBAF23E83443B50733 ] vmictimesync    C:\WINDOWS\System32\icsvc.dll
09:32:26.0795 0x25c8  vmictimesync - ok
09:32:26.0817 0x25c8  [ CE70937143DBDB2B4BF3A0310EB9E189, 57465BEB5DFCD9BD8497B3D771D9F8F14F8BD44C939E4EEBAF23E83443B50733 ] vmicvmsession   C:\WINDOWS\System32\icsvc.dll
09:32:26.0825 0x25c8  vmicvmsession - ok
09:32:26.0844 0x25c8  [ FD73A74D26F5BEC303763FD9CDD2DFB2, 7DA4CC00FBADAB50BD635EB825900CD917CBD130C617AE58B6404F8897776D64 ] vmicvss         C:\WINDOWS\System32\icsvcext.dll
09:32:26.0852 0x25c8  vmicvss - ok
09:32:26.0997 0x25c8  [ 69E6D6A05B7153BAA88268439747F76C, FE8920EA2A043B010BBC63CF6F6495533F434A433249A12E1A9BDF6A35720E8F ] VMUSBArbService C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator64.exe
09:32:27.0046 0x25c8  VMUSBArbService - ok
09:32:27.0090 0x25c8  [ D81F6B790519A60F3D1788B45D04B749, 7607DBA77412127C4968D3B6C4FD25F8C286A22DDDD9C78BDC54DF3A4C98AA8E ] vnvdimm         C:\WINDOWS\System32\drivers\vnvdimm.sys
09:32:27.0093 0x25c8  vnvdimm - ok
09:32:27.0131 0x25c8  [ C9052650BBF2124CD525A26D5C2A6671, E78FB475FCDBFFEADCFB6C9311A8145887CF9B09C29E187A871A1B50EF85DACF ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
09:32:27.0135 0x25c8  volmgr - ok
09:32:27.0192 0x25c8  [ 6D6CACED512C1EF1FEAC215E37E3A9BC, 11B26DA5AB0C3736E2B8ADF3E06BFF3FD7853F9D6A948EA15ADC8B7D230062D4 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
09:32:27.0202 0x25c8  volmgrx - ok
09:32:27.0261 0x25c8  [ 5B27846CF4B1C21AFB3A35A8336BA02F, 0481F605776B638CCE855525DF605288AB4ECA87FCB4B6E668B60E3DFD120EF2 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
09:32:27.0272 0x25c8  volsnap - ok
09:32:27.0308 0x25c8  [ 72A95A844D6BAF2924A4C15BEDFD6BCA, AB9F8C77A077C9E95061D562F516793E547BC276926E1895A186A39317F21BA1 ] volume          C:\WINDOWS\system32\drivers\volume.sys
09:32:27.0314 0x25c8  volume - ok
09:32:27.0359 0x25c8  [ 702273C7C1BE9D366BAF1305D382F03C, 21239CE5857E00E28785D9C32E8F3E47850BBA66C05BA7D33FECDB8A17754449 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
09:32:27.0363 0x25c8  vpci - ok
09:32:27.0397 0x25c8  [ 075CE3C9E77D2666AFA888951E5F07A9, 264EDD6301851A41FB2233DC9BFC357EE5B60BEC1A04578FD7A576BA145E2A31 ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
09:32:27.0403 0x25c8  vsmraid - ok
09:32:27.0507 0x25c8  [ 16144D396BFFEFDB0B8A2C964CBAD35D, 76EC29F534AC4EF211B7914AEB7D0B6FC0088378F1C0D67BFCAAC19B104E580F ] VSS             C:\WINDOWS\system32\vssvc.exe
09:32:27.0548 0x25c8  VSS - ok
09:32:27.0587 0x25c8  [ 26D00E85BE4726B114335250FCDEDA89, BA1E3EC92786A17B99BF6544FD76F0458DAC2810D2A3B0785AC2B066079D5B09 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
09:32:27.0595 0x25c8  VSTXRAID - ok
09:32:27.0614 0x25c8  [ 3DFDB573E4D49EA8F416B573525B7A86, 9951D34FF0B98CA562EC0D81E23DA81BF5E5E6B4F5C274BC8E258BAE5E69DF8D ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
09:32:27.0617 0x25c8  vwifibus - ok
09:32:27.0647 0x25c8  [ A40FA64655AB5B8773A96A821616C5FC, 221063771A70CD6238D5DD816EC99BFFE31418EDA08E2270D864554234271087 ] vwififlt        C:\WINDOWS\system32\drivers\vwififlt.sys
09:32:27.0650 0x25c8  vwififlt - ok
09:32:27.0759 0x25c8  [ A17A4F2823C5424C9B8B990644817DC0, D8CE6FC8B6B5BB89968D83AC3DC054C35BD16880D0B321B64799DA1830C2B626 ] W32Time         C:\WINDOWS\system32\w32time.dll
09:32:27.0776 0x25c8  W32Time - ok
09:32:27.0870 0x25c8  [ AD72CFDA8E47BC32ED46DE4FD2434062, 0CFD5BFC6D19980E78382493167858CEE2A82977B5CD6646796270288315B3DA ] w3logsvc        C:\WINDOWS\system32\inetsrv\w3logsvc.dll
09:32:27.0874 0x25c8  w3logsvc - ok
09:32:27.0952 0x25c8  [ A76A55BF0B22D1075434F1D723B9D1AC, 5522AD5CFCAC65D07CB80C810236590482FC4581451333AF37D99B54EBC176BE ] W3SVC           C:\WINDOWS\system32\inetsrv\iisw3adm.dll
09:32:27.0978 0x25c8  W3SVC - ok
09:32:28.0017 0x25c8  [ 5B5430522E0BDF2A753D758710BE7C5E, 1476C664EFCE7A2FEE738BB767D3E2EABBEF19F1037D383140BC01F92E154039 ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
09:32:28.0033 0x25c8  WacomPen - ok
09:32:28.0100 0x25c8  [ 451D40C28E7D1CF51A980B83FDEFF498, E6CEEB222A1C0D97E53DCFC2E22084FD4547A8CE3C16A54DD49622F524BF48CE ] WalletService   C:\WINDOWS\system32\WalletService.dll
09:32:28.0115 0x25c8  WalletService - ok
09:32:28.0160 0x25c8  [ 1FC3A8FB032B62A88283BC8113FDF1C5, FDDF0A694908CEFC7C58B2468A90DB4CC54E521808D58D258F15F351517586C5 ] wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
09:32:28.0164 0x25c8  wanarp - ok
09:32:28.0173 0x25c8  [ 1FC3A8FB032B62A88283BC8113FDF1C5, FDDF0A694908CEFC7C58B2468A90DB4CC54E521808D58D258F15F351517586C5 ] wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
09:32:28.0176 0x25c8  wanarpv6 - ok
09:32:28.0207 0x25c8  [ E3B4C37F1F3D8078AA2AFBEE7F5468CF, E620DC9F5AAAE9652E3B742BBF4D671F04D623F657959C98F2230CEF26086CDE ] WarpJITSvc      C:\WINDOWS\System32\Windows.WARP.JITService.dll
09:32:28.0212 0x25c8  WarpJITSvc - ok
09:32:28.0243 0x25c8  [ A76A55BF0B22D1075434F1D723B9D1AC, 5522AD5CFCAC65D07CB80C810236590482FC4581451333AF37D99B54EBC176BE ] WAS             C:\WINDOWS\system32\inetsrv\iisw3adm.dll
09:32:28.0256 0x25c8  WAS - ok
09:32:28.0353 0x25c8  [ 1C1EB9C4DAF428B3BFDD58572768182C, 99F429EB8C2DEC185124B8811AF96D30E963E2F71CC7184AF8650805818B52E4 ] wbengine        C:\WINDOWS\system32\wbengine.exe
09:32:28.0395 0x25c8  wbengine - ok
09:32:28.0480 0x25c8  [ D38ACBA3FE7B12C30D13A68B35FAB71A, 302AFB338F44E9A33617F073E8894127C151332FCFE98AEAD23986CB613EBE71 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
09:32:28.0509 0x25c8  WbioSrvc - ok
09:32:28.0560 0x25c8  [ 520E4FD6B5BF5349DD1499F2AEFB7C50, 10D33EE99DDE1BBC283D603F96E1E1DDAE8E3998AA6110A7041040611B11D0DA ] wcifs           C:\WINDOWS\system32\drivers\wcifs.sys
09:32:28.0565 0x25c8  wcifs - ok
09:32:28.0633 0x25c8  [ EB1B7609CC9BFA19D81BC0A43CEE067B, 1D59CD94F8AFD9D2E098231A02DA21D5BFA97FD4E22ECF407F007D2B4C890D89 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
09:32:28.0665 0x25c8  Wcmsvc - ok
09:32:28.0711 0x25c8  [ F92970EBB734867AE1D2FA01865E404C, 570849BB39BB3090BCF1B8964CC934D72BE90B209B19CBEAB231CBEAC4ED1670 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
09:32:28.0727 0x25c8  wcncsvc - ok
09:32:28.0772 0x25c8  [ 9DE3FDFF295F2534DF0A8B6FC4F06355, 385D10468B3B703D3F544FF68DCDBE217BB2207374B1F4BF6EA18437192682D1 ] wcnfs           C:\WINDOWS\system32\drivers\wcnfs.sys
09:32:28.0776 0x25c8  wcnfs - ok
09:32:28.0862 0x25c8  [ 16D3F1C6CB3D6BBFDF4893C7A14D6F12, EF46CFA4446E590641716422E8A04914D2C3AC7CAE898185CCF2D2D43FC7D33B ] WdBoot          C:\WINDOWS\system32\drivers\wd\WdBoot.sys
09:32:28.0865 0x25c8  WdBoot - ok
09:32:29.0030 0x25c8  [ FCC960498E3CD899F0A429F7CF9E77AD, 91FB3B6AF1522754E6ECF5D0CD146B1D06F657D06E6D9D917F55A3789A92D8EB ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
09:32:29.0053 0x25c8  Wdf01000 - ok
09:32:29.0094 0x25c8  [ 64EB43131121ADD90A061A75C8ADE9E6, 9AAADCDD608B408A2EF5353A084744697D33783EB0A980DE454868BFAEFB0447 ] WdFilter        C:\WINDOWS\system32\drivers\wd\WdFilter.sys
09:32:29.0102 0x25c8  WdFilter - ok
09:32:29.0139 0x25c8  [ AB406F30BE98CDB7AA7171336EF031BA, 912137DE2DF4BE3B9D777E6F19B99FC233D0CE2CCE97B98AF885CC728AC78721 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
09:32:29.0158 0x25c8  WdiServiceHost - ok
09:32:29.0167 0x25c8  [ AB406F30BE98CDB7AA7171336EF031BA, 912137DE2DF4BE3B9D777E6F19B99FC233D0CE2CCE97B98AF885CC728AC78721 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
09:32:29.0173 0x25c8  WdiSystemHost - ok
09:32:29.0249 0x25c8  [ 2D50C46EFE924BC24F63A45D2DB1AA3A, 5EDC99F859CA85BD4F489A0AE50FF7139A5930337FF053111B7159F5F90E5E38 ] wdiwifi         C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
09:32:29.0268 0x25c8  wdiwifi - ok
09:32:29.0314 0x25c8  [ BE3C9DF77543C78004C400B1CAFCAB49, CEA858A00149199ED3444217BF764AB6ACBD830EEC44670BFCD816D736A54621 ] WdNisDrv        C:\WINDOWS\system32\drivers\wd\WdNisDrv.sys
09:32:29.0319 0x25c8  WdNisDrv - ok
09:32:29.0476 0x25c8  [ 3F52178796F4E467D6A32C157F898EAD, 1A6C31F6CFAE5564B30FEE34901DA377F22DDE3174BB4BE0CE0C678FAF77D610 ] WdNisSvc        C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-1\NisSrv.exe
09:32:29.0486 0x25c8  WdNisSvc - ok
09:32:29.0524 0x25c8  [ DF58AA71FBA55E15F572C93447696DEC, F20C93140A44C1E61B5544FC8B3A1145E9ED57B2F09881719F4B2853B4900891 ] wdnsfltr        C:\WINDOWS\system32\drivers\wdnsfltr.sys
09:32:29.0526 0x25c8  wdnsfltr - ok
09:32:29.0576 0x25c8  [ A339FDE695599D96C4F78CC22A993AFB, 7697F527EB0588C4CA75A822526B88FA512003752410BDD9FA2993FB73B8FE8C ] WebClient       C:\WINDOWS\System32\webclnt.dll
09:32:29.0586 0x25c8  WebClient - ok
09:32:29.0651 0x25c8  [ 7997BC2386A9976C0645A28FA8A6E7EA, ABE47A6132B7651EA2055F97E7BD9D596906086BCD726147449D4378C7E4F9B9 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
09:32:29.0661 0x25c8  Wecsvc - ok
09:32:29.0721 0x25c8  [ CEA146E0D096A491B265CD2340C2E31D, 285BA0D58E6E93FEB0D8F33738C6A223D7269378B3E77A7760D7131E43DEBE7C ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
09:32:29.0727 0x25c8  WEPHOSTSVC - ok
09:32:29.0772 0x25c8  [ 40610BA98D5830FB14C3695B3BCA647A, 6E047D04DDD9DCB142572CEAB5E73585062205BABE510C5B0D63800B2A9D251A ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
09:32:29.0790 0x25c8  wercplsupport - ok
09:32:29.0834 0x25c8  [ AA2B3154D12ABE34640C866AC3472E33, 32EBA0B999FDA77E6828274FE49A7619B97471BF828B18BF55BDAE19FB10DC6A ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
09:32:29.0843 0x25c8  WerSvc - ok
09:32:29.0904 0x25c8  [ 86B816E9D24625287BDE9784953A5E86, BCA73B320100D7C1052751D7FA42990579B6BA5908E31B2212BFE75681B32D3F ] WFDSConMgrSvc   C:\WINDOWS\System32\wfdsconmgrsvc.dll
09:32:29.0923 0x25c8  WFDSConMgrSvc - ok
09:32:29.0949 0x25c8  [ 8E101DF42D36E04EC610581BA478B38F, BAD5292A0F22B0EBE7B4F294D4DE8EBE19D21785493CB3599816D40BC6D39802 ] WFPLWFS         C:\WINDOWS\system32\drivers\wfplwfs.sys
09:32:29.0955 0x25c8  WFPLWFS - ok
09:32:30.0043 0x25c8  [ F78A2731EC972312C4C998174A9BB325, 72CCA57EB6383F65683C276337F53AB38BC398CEA69E53D6E2867D5EE8B4B007 ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
09:32:30.0066 0x25c8  WiaRpc - ok
09:32:30.0127 0x25c8  [ C8D3FC38426E990E2787771678B19C6D, FB6CA9A5BF3935793CD8B2F288FAC0C675B333D4F7393FA02244E3BCC2E25625 ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
09:32:30.0146 0x25c8  WIMMount - ok
09:32:30.0197 0x25c8  [ 4D8668B32E5319A5E8852B1564184801, 641BCD04D2EC651A4612FC37E2487CB93ED1998BAAAC2A14031515EE292C893E ] WinDefend       C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-1\MsMpEng.exe
09:32:30.0201 0x25c8  WinDefend - ok
09:32:30.0258 0x25c8  [ 0484B0D01EA6F7017519EBDDBADE759D, CA8D44F226DA67A45A8B71D1C04C06FD5267996B445E32C6EEC695626030CA69 ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
09:32:30.0261 0x25c8  WindowsTrustedRT - ok
09:32:30.0325 0x25c8  [ 813EE0F4D4B8D599DB1968682D080732, A3EF1BBB866F5A7C1B5303BBF6E805B35739602CA7F244C076A8BF90F1CB2952 ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
09:32:30.0328 0x25c8  WindowsTrustedRTProxy - ok
09:32:30.0568 0x25c8  [ 777D4CE2169B9E014CF912FEE9C40681, 85AF085051DB35CAFB1BEB8826CA55B4549ACC38616ECFAED5709CC771E64670 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
09:32:30.0624 0x25c8  WinHttpAutoProxySvc - ok
09:32:30.0650 0x25c8  [ E23475E9150E6A50B12DB176EA5CDD56, 25699796948D4679D0C1633C726C3CDF052F877AAA18CD7D069F95A88701CB73 ] WinMad          C:\WINDOWS\System32\drivers\winmad.sys
09:32:30.0667 0x25c8  WinMad - ok
09:32:30.0864 0x25c8  [ 0FBD5D358094E254A1508832D4042FF7, 4EC4DB3B03BE1518BB38D4F3BF79A77D1BCA5A2DE9BA5F9C9312606E4E2A14E9 ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
09:32:30.0890 0x25c8  Winmgmt - ok
09:32:31.0010 0x25c8  [ EABEF39BBEEDB3845C36893931DADCD1, 7C2DBA26CDED046E9B307D09155CE664406A10C728A13110D3EEAD2CDABA4E6A ] WinNat          C:\WINDOWS\system32\drivers\winnat.sys
09:32:31.0033 0x25c8  WinNat - ok
09:32:31.0513 0x25c8  [ C2A88E382CD48E4772A5570D66BF1A90, F1BFB1873FB1E37DAADE923FC30265C72018CF2003B0A5E0E5896167D1680D01 ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
09:32:31.0684 0x25c8  WinRM - ok
09:32:31.0756 0x25c8  [ E92F3539C4758F6A9F4B80CBAC75B3E6, 9CF9069B9A738E86181FB02904720B2A88353574F35BDC298A2EB697D22B7723 ] WINUSB          C:\WINDOWS\System32\drivers\WinUSB.SYS
09:32:31.0760 0x25c8  WINUSB - ok
09:32:31.0790 0x25c8  [ 59126AFCC64270747B5CC9B44A4A48F4, C0C1E6B248E725FE02B58151838AAC8841FB70B673A2B6EFB49EEA96E7F1C1DA ] WinVerbs        C:\WINDOWS\System32\drivers\winverbs.sys
09:32:31.0813 0x25c8  WinVerbs - ok
09:32:32.0082 0x25c8  [ 0A3ADAA0EFAFA26CA8570E24A13CE484, 2B7FA1ADD904962F296111F555F4BB45A3BA77B6961DABC502B6DDC4E9324CEB ] wisvc           C:\WINDOWS\system32\flightsettings.dll
09:32:32.0105 0x25c8  wisvc - ok
09:32:32.0224 0x25c8  [ 6E9FE5A15FFD7680529999D6FBD81F59, 79FE8FEBDD638A987ECD03F00C1F5DBB8EFF0ED753DD220AF4965B34DF1626D6 ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
09:32:32.0300 0x25c8  WlanSvc - ok
09:32:32.0855 0x25c8  [ 345056CEAC49D289098F7A33A2C7CA2B, 77839C3130D9742E8C3F79AA66AE0ADC59E0FC925B1E3C0331F8E27A2C834243 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
09:32:32.0921 0x25c8  wlidsvc - ok
09:32:33.0360 0x25c8  [ 56E1A46DD1C5D28B10F02E21D077EBF6, CC9AADBBBA03E162948EE39CCAAFD0A43253C86F5B875765748B73A084DC4B25 ] wlpasvc         C:\WINDOWS\System32\lpasvc.dll
09:32:33.0417 0x25c8  wlpasvc - ok
09:32:33.0478 0x25c8  [ E8C793ED028E132771988760819E3754, 7BC02774EEDF4B884181854BEADF2DCAC615BA3ED7F1551C0863B79E009E3043 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
09:32:33.0530 0x25c8  WmiAcpi - ok
09:32:33.0771 0x25c8  [ 7112092A3C6F41EDBE83636791C774D9, D7697F75EB9CAA5924CF7227A46BC5A0F1BDD3FA14D384ED5B669C1FB512B31D ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
09:32:33.0910 0x25c8  wmiApSrv - ok
09:32:34.0029 0x25c8  WMPNetworkSvc - ok
09:32:34.0190 0x25c8  [ 8D6E6F6C233AF450C50FA615530B44D2, 1BF6CD93B97920500F5FD0E9D8395ACCAAA2D126FD9C256148797B292D5F9A6C ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
09:32:34.0233 0x25c8  Wof - ok
09:32:34.0954 0x25c8  [ 1431D184691F7FA9AAC2064EB0EC6C96, 6185E5AB281327563DC4E87526B37792A9B4B86C65D5BADDBB1DBA6A50FC9134 ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
09:32:35.0017 0x25c8  workfolderssvc - ok
09:32:35.0100 0x25c8  [ AE9793230B219113DE1163138645E5AE, 9CBC10269D847E4EFCF8B412D34B9551594396390BF5BFDEED03DBFB84D7174F ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
09:32:35.0142 0x25c8  WPDBusEnum - ok
09:32:35.0185 0x25c8  [ 9EAE1EF282864674355B4B81DF6AE935, 781CED5AE95D365BB59769517FA9462EFC6472ED4EB08C98EC66CE3E17C66D69 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
09:32:35.0220 0x25c8  WpdUpFltr - ok
09:32:35.0360 0x25c8  [ C75B59E441206A572CC64BBB60EE54B3, C43A3109EAB89B6A23E033C127F1B5586651A1A3A1C4D45ECFBF0ABE472FEBA1 ] WpnService      C:\WINDOWS\system32\WpnService.dll
09:32:35.0380 0x25c8  WpnService - ok
09:32:35.0439 0x25c8  [ 07F4AF1730D55567EACE7ADDEA28FE48, 256671C52C350E42662DC590AE36BAFD06E9507551C39575BCD894D8FD040129 ] WpnUserService  C:\WINDOWS\System32\WpnUserService.dll
09:32:35.0467 0x25c8  WpnUserService - ok
09:32:35.0548 0x25c8  [ 367B3ED0C688AFE28C376B0230814567, 1E7419254852A70AEAA30DF0F85C4E489591E5A0E90256C40676F712D45960CA ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
09:32:35.0587 0x25c8  ws2ifsl - ok
09:32:35.0684 0x25c8  [ 39DA352FAD220E83CE64DE8DCCB9736B, 813D35DB7E4A7085DF0B1B8D8F16874E3BCE75DF72B5DB8E41E062B1F5B45D39 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
09:32:35.0724 0x25c8  wscsvc - ok
09:32:35.0821 0x25c8  [ 7B44553610A89F2011CF69BEA9AFD4CB, A7DE907114570F8CC248F4996045D33C0FB0159B8E6F0A4127F1C205183DDF35 ] WSDPrintDevice  C:\WINDOWS\System32\drivers\WSDPrint.sys
09:32:35.0836 0x25c8  WSDPrintDevice - ok
09:32:35.0852 0x25c8  WSearch - ok
09:32:37.0241 0x25c8  [ DD6C52E2B4D0EC26FDA19F88515B5311, D925E78D392C528EA779FBEBFAA5734C09331590A33BB7F28F1F1E7CECB1903F ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
09:32:37.0404 0x25c8  wuauserv - ok
09:32:37.0473 0x25c8  [ BD5E68B369DF3453A0A87663C6C5476D, 17B766ADB299D247EF9D4554F86015B38A89AE5C0310A36E1FCB0AC28462CE96 ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
09:32:37.0522 0x25c8  WudfPf - ok
09:32:37.0620 0x25c8  [ A86A249314FD0A780214028B0C31A386, 71D0A346DA228EFD44F2D63765A01B59B305EC753C172730096F143F3A4D62F0 ] WUDFRd          C:\WINDOWS\system32\drivers\WudfRd.sys
09:32:37.0634 0x25c8  WUDFRd - ok
09:32:37.0654 0x25c8  [ A86A249314FD0A780214028B0C31A386, 71D0A346DA228EFD44F2D63765A01B59B305EC753C172730096F143F3A4D62F0 ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
09:32:37.0660 0x25c8  WUDFWpdFs - ok
09:32:37.0695 0x25c8  [ A86A249314FD0A780214028B0C31A386, 71D0A346DA228EFD44F2D63765A01B59B305EC753C172730096F143F3A4D62F0 ] WUDFWpdMtp      C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
09:32:37.0702 0x25c8  WUDFWpdMtp - ok
09:32:38.0250 0x25c8  [ 9C1EB9F1BC42AA13667FDF8CEF336236, 9B79C278A95261042A2D956D4CF6FC68F6EC6366D35271DA4FB2F78CBEFE3088 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
09:32:38.0290 0x25c8  WwanSvc - ok
09:32:38.0398 0x25c8  [ 42C738ED1552FE168F6EE1BAE8ACFCAC, 01E9CD1FA7935DD442A2EBFC93E4BDDF204F995379FCAFFEADAF0BF6638AB925 ] xbgm            C:\WINDOWS\system32\xbgmsvc.exe
09:32:38.0455 0x25c8  xbgm - ok
09:32:38.0902 0x25c8  [ A03C4D4D71304087820A0EF18FCF7582, F92737321A5082A72F20491810A09D249F0676F0F12478A2C81ADF9B2F79BAB0 ] XblAuthManager  C:\WINDOWS\System32\XblAuthManager.dll
09:32:38.0973 0x25c8  XblAuthManager - ok
09:32:39.0491 0x25c8  [ 77ADC2F5DBE303EF8B8D2D08AEE3F3DB, 65128FB8561EF1BE4E3CAA3B0D873FEA3A218E3CF90527068C43F6E549ECB188 ] XblGameSave     C:\WINDOWS\System32\XblGameSave.dll
09:32:39.0530 0x25c8  XblGameSave - ok
09:32:39.0649 0x25c8  [ 2244A4CEFE8F9C74091369ACE2E9EBC6, 48F59F36EBA0434BED00B53321107C0BDFF20131683D5E6BC7A9F5DA0B8B6929 ] xboxgip         C:\WINDOWS\System32\drivers\xboxgip.sys
09:32:39.0677 0x25c8  xboxgip - ok
09:32:39.0700 0x25c8  [ 1A9550D746B8604D37A90436EF686777, 3DBF305C228D28A3C4FC48F65CC38BDBFEE6B7995CEE8319E680E073978CA58B ] XboxGipSvc      C:\WINDOWS\System32\XboxGipSvc.dll
09:32:39.0713 0x25c8  XboxGipSvc - ok
09:32:40.0117 0x25c8  [ 4951DD543AA2710760D90A58261ED665, 37D08FA58147A6606E69DB39405898D82BC40420F8FFB0BD097694A53E60AD1D ] XboxNetApiSvc   C:\WINDOWS\system32\XboxNetApiSvc.dll
09:32:40.0195 0x25c8  XboxNetApiSvc - ok
09:32:40.0271 0x25c8  [ 4A91B49C6B1E41151D47CB919ADF013A, 4DA1E3F50B2D63AFD2F7A014E3C0420C1E7DEDE96A48EEC33C53023D88F9AAFF ] xinputhid       C:\WINDOWS\System32\drivers\xinputhid.sys
09:32:40.0315 0x25c8  xinputhid - ok
09:32:40.0322 0x25c8  ================ Scan global ===============================
09:32:40.0453 0x25c8  [ EB45383BE9D7ECB36D55B262E0D8EB46, DC975066C426B5FBBFA3A4254D1D97DBF889B6BFD062D9FF1892F66C0CFF2DE3 ] C:\WINDOWS\system32\basesrv.dll
09:32:40.0577 0x25c8  [ 79DA21044C98FD6CD01EA9E488DF82C5, 0E5A7D4F4D22661F34F21FCA548C381A0D6EF65C49110D9C55A5B1FF50BE6700 ] C:\WINDOWS\system32\winsrv.dll
09:32:40.0669 0x25c8  [ 9451BA31B1DC19CED2608D82863C6486, 888F8676086DD8338445C35A64106E01122881FD08858D3996470EBF0DF30648 ] C:\WINDOWS\system32\sxssrv.dll
09:32:40.0914 0x25c8  [ AB75687641C9ADBE22336EC3C496909C, 5ACB7665BFF5024E3B244EC733F612FA257B886BC84ADD6F61246B5F6BC37B9E ] C:\WINDOWS\system32\services.exe
09:32:40.0928 0x25c8  [ Global ] - ok
09:32:40.0929 0x25c8  ================ Scan MBR ==================================
09:32:40.0969 0x25c8  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
09:32:42.0411 0x25c8  \Device\Harddisk0\DR0 - ok
09:32:42.0412 0x25c8  ================ Scan VBR ==================================
09:32:42.0441 0x25c8  [ 521C3A791E30D71FA960BDFE1C2B206C ] \Device\Harddisk0\DR0\Partition1
09:32:42.0473 0x25c8  \Device\Harddisk0\DR0\Partition1 - ok
09:32:42.0474 0x25c8  ================ Scan generic autorun ======================
09:32:42.0637 0x25c8  SecurityHealth - ok
09:32:43.0787 0x25c8  [ D997B3B5C0A19E45D46317A36F2834B9, D9A05E9549F1D10AB1213C2FFA203524D69999C1BCEFC1117554EB2BCE87095A ] C:\Program Files\Sophos\Sophos UI\Sophos UI.exe
09:32:43.0908 0x25c8  Sophos UI.exe - ok
09:32:44.0250 0x25c8  [ E719CFFBEC257DBCB2212A56A298DD33, 46D426C5C94971B7BD6D1EA2754E0BD4B8686DC655E82E579B345F6C617B61D4 ] C:\UPS\WSTD\UPSNA1Msgr.exe
09:32:45.0322 0x25c8  NA1Messenger - ok
09:32:49.0981 0x25c8  [ 450FDD861FD582026BDCE55FCB2162C4, 91166DBAEE6A0D97ABA5EED352D06078870A265E736ED491C666CB6A8559BEB2 ] C:\Windows\SysWOW64\OneDriveSetup.exe
09:32:50.0767 0x25c8  OneDriveSetup - ok
09:32:54.0225 0x25c8  [ 450FDD861FD582026BDCE55FCB2162C4, 91166DBAEE6A0D97ABA5EED352D06078870A265E736ED491C666CB6A8559BEB2 ] C:\Windows\SysWOW64\OneDriveSetup.exe
09:32:54.0590 0x25c8  OneDriveSetup - ok
09:32:55.0990 0x25c8  [ 450FDD861FD582026BDCE55FCB2162C4, 91166DBAEE6A0D97ABA5EED352D06078870A265E736ED491C666CB6A8559BEB2 ] C:\Windows\SysWOW64\OneDriveSetup.exe
09:32:56.0352 0x25c8  OneDriveSetup - ok
09:32:57.0135 0x25c8  [ 450FDD861FD582026BDCE55FCB2162C4, 91166DBAEE6A0D97ABA5EED352D06078870A265E736ED491C666CB6A8559BEB2 ] C:\Windows\SysWOW64\OneDriveSetup.exe
09:32:57.0497 0x25c8  OneDriveSetup - ok
09:32:57.0613 0x25c8  [ 93690F7205E1A337E94682E612F8AD22, F1B3798A2A1E5B9D616F743E5FBA9FA23A9FFCED40F35A7FCF0BD2D99E022CB8 ] C:\Program Files (x86)\Windows Mail\wab.exe
09:32:57.0626 0x25c8  WAB Migrate - ok
09:32:58.0387 0x25c8  [ 450FDD861FD582026BDCE55FCB2162C4, 91166DBAEE6A0D97ABA5EED352D06078870A265E736ED491C666CB6A8559BEB2 ] C:\Windows\SysWOW64\OneDriveSetup.exe
09:32:58.0749 0x25c8  OneDriveSetup - ok
09:32:58.0868 0x25c8  [ 93690F7205E1A337E94682E612F8AD22, F1B3798A2A1E5B9D616F743E5FBA9FA23A9FFCED40F35A7FCF0BD2D99E022CB8 ] C:\Program Files (x86)\Windows Mail\wab.exe
09:32:58.0878 0x25c8  WAB Migrate - ok
09:32:59.0642 0x25c8  [ 450FDD861FD582026BDCE55FCB2162C4, 91166DBAEE6A0D97ABA5EED352D06078870A265E736ED491C666CB6A8559BEB2 ] C:\Windows\SysWOW64\OneDriveSetup.exe
09:33:00.0040 0x25c8  OneDriveSetup - ok
09:33:00.0157 0x25c8  [ 93690F7205E1A337E94682E612F8AD22, F1B3798A2A1E5B9D616F743E5FBA9FA23A9FFCED40F35A7FCF0BD2D99E022CB8 ] C:\Program Files (x86)\Windows Mail\wab.exe
09:33:00.0167 0x25c8  WAB Migrate - ok
09:33:00.0942 0x25c8  [ 450FDD861FD582026BDCE55FCB2162C4, 91166DBAEE6A0D97ABA5EED352D06078870A265E736ED491C666CB6A8559BEB2 ] C:\Windows\SysWOW64\OneDriveSetup.exe
09:33:01.0309 0x25c8  OneDriveSetup - ok
09:33:01.0411 0x25c8  [ 93690F7205E1A337E94682E612F8AD22, F1B3798A2A1E5B9D616F743E5FBA9FA23A9FFCED40F35A7FCF0BD2D99E022CB8 ] C:\Program Files (x86)\Windows Mail\wab.exe
09:33:01.0422 0x25c8  WAB Migrate - ok
09:33:01.0662 0x25c8  AV detected via SS2: Sophos Anti-Virus, C:\Program Files (x86)\Sophos\Sophos Anti-Virus\WSCClient.exe ( 10.7.6.0 ), 0x51000 ( enabled : updated )
09:33:01.0704 0x25c8  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.12.16299.15 ), 0x60100 ( disabled : updated )
09:33:01.0731 0x25c8  AV detected via SS2: Malwarebytes, C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe ( 3.0.0.143 ), 0x61000 ( enabled : updated )
09:33:01.0783 0x25c8  Win FW state via NFP2: enabled ( trusted )
09:33:02.0573 0x25c8  ============================================================
09:33:02.0573 0x25c8  Scan finished
09:33:02.0573 0x25c8  ============================================================
09:33:02.0594 0x1f40  Detected object count: 0
09:33:02.0594 0x1f40  Actual detected object count: 0
 

# AdwCleaner 7.0.7.0 - Logfile created on Fri Jan 26 14:42:06 2018
# Updated on 2018/18/01 by Malwarebytes
# Database: 01-25-2018.1
# Running on Windows 10 Pro (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\d16fk4ms6rqz1v.cloudfront.net
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\d22j4fzzszoii2.cloudfront.net


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries.

*************************



########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########

 

MiniToolBox by Farbar  Version: 17-06-2016
Ran by mboerger (administrator) on 26-01-2018 at 09:26:56
Running from "C:\Users\mboerger\Desktop"
Microsoft Windows 10 Pro  (X64)
Model: OptiPlex 755 Manufacturer: Dell Inc.
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
========================= IP Configuration: ================================

Intel® 82566DM-2 Gigabit Network Connection = Local Area Connection (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global
set interface interface="Loopback Pseudo-Interface 1" forwarding=enabled advertise=enabled mtu=1500 nud=enabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="loopback_3" forwarding=enabled advertise=enabled mtu=1500 nud=enabled
set subinterface interface=?? subinterface=loopback_3 mtu=1500
set subinterface interface=?? subinterface=loopback_4 mtu=1500


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : DPHZHH1
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel® 82566DM-2 Gigabit Network Connection
   Physical Address. . . . . . . . . : 00-21-9B-60-A3-C6
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::50f6:8f89:28a7:26b0%4(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.27.132(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Thursday, January 25, 2018 7:16:24 PM
   Lease Expires . . . . . . . . . . : Friday, January 26, 2018 3:17:25 PM
   Default Gateway . . . . . . . . . : 192.168.27.1
   DHCP Server . . . . . . . . . . . : 192.168.27.155
   DHCPv6 IAID . . . . . . . . . . . : 234889627
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-1C-08-84-00-21-9B-60-A3-C6
   DNS Servers . . . . . . . . . . . : 208.67.222.222
                                       208.67.220.220
   Primary WINS Server . . . . . . . : 192.168.27.150
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:3c0d:19c:3f57:e47b(Preferred)
   Link-local IPv6 Address . . . . . : fe80::3c0d:19c:3f57:e47b%3(Preferred)
   Default Gateway . . . . . . . . . : ::
   DHCPv6 IAID . . . . . . . . . . . : 117440512
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-1C-08-84-00-21-9B-60-A3-C6
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  resolver1.opendns.com
Address:  208.67.222.222

Name:    google.com
Addresses:  2607:f8b0:4002:810::200e
      172.217.11.142


Pinging google.com [74.125.21.100] with 32 bytes of data:
Reply from 74.125.21.100: bytes=32 time=14ms TTL=46
Reply from 74.125.21.100: bytes=32 time=14ms TTL=46

Ping statistics for 74.125.21.100:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 14ms, Maximum = 14ms, Average = 14ms
Server:  resolver1.opendns.com
Address:  208.67.222.222

Name:    yahoo.com
Addresses:  2001:4998:58:2201::73
      2001:4998:44:204::100d
      2001:4998:c:e33::53
      98.139.180.180
      98.138.252.38
      206.190.39.42


Pinging yahoo.com [206.190.39.42] with 32 bytes of data:
Reply from 206.190.39.42: bytes=32 time=68ms TTL=52
Reply from 206.190.39.42: bytes=32 time=67ms TTL=52

Ping statistics for 206.190.39.42:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 67ms, Maximum = 68ms, Average = 67ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  4...00 21 9b 60 a3 c6 ......Intel® 82566DM-2 Gigabit Network Connection
  1...........................Software Loopback Interface 1
  3...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0     192.168.27.1   192.168.27.132     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    331
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    331
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    331
     192.168.27.0    255.255.255.0         On-link    192.168.27.132    281
   192.168.27.132  255.255.255.255         On-link    192.168.27.132    281
   192.168.27.255  255.255.255.255         On-link    192.168.27.132    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    331
        224.0.0.0        240.0.0.0         On-link    192.168.27.132    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    331
  255.255.255.255  255.255.255.255         On-link    192.168.27.132    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  3    331 ::/0                     On-link
  1    331 ::1/128                  On-link
  3    331 2001::/32                On-link
  3    331 2001:0:4137:9e76:3c0d:19c:3f57:e47b/128
                                    On-link
  4    281 fe80::/64                On-link
  3    331 fe80::/64                On-link
  3    331 fe80::3c0d:19c:3f57:e47b/128
                                    On-link
  4    281 fe80::50f6:8f89:28a7:26b0/128
                                    On-link
  1    331 ff00::/8                 On-link
  4    281 ff00::/8                 On-link
  3    331 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [54784] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [63488] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [334744] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [24064] (Microsoft Corporation)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [334744] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [334744] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [334744] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [334744] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [334744] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [334744] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [334744] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [334744] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [334744] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [334744] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [334744] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\SysWOW64\mswsock.dll [334744] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67072] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [84992] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [84992] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [79872] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [402992] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [31232] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [402992] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [402992] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [402992] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [402992] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [402992] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [402992] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [402992] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [402992] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [402992] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [402992] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [402992] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [402992] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/25/2018 05:36:25 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.


Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (01/25/2018 01:03:56 AM) (Source: Perflib) (User: )
Description: SQLAgent$KAV_CS_ADMIN_KIT8

Error: (01/25/2018 01:03:55 AM) (Source: Perflib) (User: )
Description: MSSQL$KAV_CS_ADMIN_KIT8

Error: (01/25/2018 01:03:55 AM) (Source: Perflib) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (01/24/2018 05:27:15 PM) (Source: Microsoft-Windows-WMI) (User: NT AUTHORITY)
Description: Event provider SQLServerEventProvider attempted to register query "select * from XQUERY_STATIC_TYPE" whose target class "XQUERY_STATIC_TYPE" in //./ROOT/Microsoft/SqlServer/ServerEvents/KAV_CS_ADMIN_KIT namespace does not exist. The query will be ignored.

Error: (01/24/2018 05:27:15 PM) (Source: Microsoft-Windows-WMI) (User: NT AUTHORITY)
Description: Event provider SQLServerEventProvider attempted to register query "select * from USER_ERROR_MESSAGE" whose target class "USER_ERROR_MESSAGE" in //./ROOT/Microsoft/SqlServer/ServerEvents/KAV_CS_ADMIN_KIT namespace does not exist. The query will be ignored.

Error: (01/24/2018 05:27:15 PM) (Source: Microsoft-Windows-WMI) (User: NT AUTHORITY)
Description: Event provider SQLServerEventProvider attempted to register query "select * from USERCONFIGURABLE_9" whose target class "USERCONFIGURABLE_9" in //./ROOT/Microsoft/SqlServer/ServerEvents/KAV_CS_ADMIN_KIT namespace does not exist. The query will be ignored.

Error: (01/24/2018 05:27:15 PM) (Source: Microsoft-Windows-WMI) (User: NT AUTHORITY)
Description: Event provider SQLServerEventProvider attempted to register query "select * from USERCONFIGURABLE_8" whose target class "USERCONFIGURABLE_8" in //./ROOT/Microsoft/SqlServer/ServerEvents/KAV_CS_ADMIN_KIT namespace does not exist. The query will be ignored.

Error: (01/24/2018 05:27:15 PM) (Source: Microsoft-Windows-WMI) (User: NT AUTHORITY)
Description: Event provider SQLServerEventProvider attempted to register query "select * from USERCONFIGURABLE_7" whose target class "USERCONFIGURABLE_7" in //./ROOT/Microsoft/SqlServer/ServerEvents/KAV_CS_ADMIN_KIT namespace does not exist. The query will be ignored.

Error: (01/24/2018 05:27:15 PM) (Source: Microsoft-Windows-WMI) (User: NT AUTHORITY)
Description: Event provider SQLServerEventProvider attempted to register query "select * from USERCONFIGURABLE_6" whose target class "USERCONFIGURABLE_6" in //./ROOT/Microsoft/SqlServer/ServerEvents/KAV_CS_ADMIN_KIT namespace does not exist. The query will be ignored.


System errors:
=============
Error: (01/26/2018 09:25:20 AM) (Source: SAVOnAccess) (User: )
Description: The on-access driver could not check device control for volume \Device\Harddisk1\DR1.

Error: (01/26/2018 09:24:20 AM) (Source: SAVOnAccess) (User: )
Description: The on-access driver could not check device control for volume \Device\Harddisk1\DR1.

Error: (01/26/2018 09:23:20 AM) (Source: SAVOnAccess) (User: )
Description: The on-access driver could not check device control for volume \Device\Harddisk1\DR1.

Error: (01/26/2018 09:01:06 AM) (Source: DCOM) (User: DPHZHH1)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}DPHZHH1mboergerS-1-5-21-3592428257-1181396216-3208516930-1000LocalHost (Using LRPC)UnavailableUnavailable

Error: (01/26/2018 08:58:47 AM) (Source: SAVOnAccess) (User: )
Description: The on-access driver was unable to create an impersonation token for file \Device\HarddiskVolume2\WINDOWS\System32\shell32.dll.

Error: (01/26/2018 08:54:23 AM) (Source: DCOM) (User: DPHZHH1)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}DPHZHH1mboergerS-1-5-21-3592428257-1181396216-3208516930-1000LocalHost (Using LRPC)UnavailableUnavailable

Error: (01/26/2018 08:53:51 AM) (Source: SAVOnAccess) (User: )
Description: The on-access driver was unable to create an impersonation token for file \Device\HarddiskVolume2\Program Files (x86)\Mozilla Firefox\AccessibleHandler.dll.

Error: (01/26/2018 08:53:51 AM) (Source: SAVOnAccess) (User: )
Description: The on-access driver was unable to create an impersonation token for file \Device\HarddiskVolume2\Program Files (x86)\Mozilla Firefox\AccessibleHandler.dll.

Error: (01/26/2018 08:47:11 AM) (Source: DCOM) (User: DPHZHH1)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}DPHZHH1mboergerS-1-5-21-3592428257-1181396216-3208516930-1000LocalHost (Using LRPC)UnavailableUnavailable

Error: (01/26/2018 08:46:33 AM) (Source: DCOM) (User: DPHZHH1)
Description: application-specificLocalActivation{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}DPHZHH1mboergerS-1-5-21-3592428257-1181396216-3208516930-1000LocalHost (Using LRPC)UnavailableUnavailable


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2018-01-26 08:59:11.861
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2018-01-26 08:57:49.095
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2018-01-26 08:57:42.428
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2018-01-26 08:57:33.707
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2018-01-26 08:57:18.878
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2018-01-26 08:57:18.170
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2018-01-26 08:57:07.169
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2018-01-26 08:57:06.275
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2018-01-26 08:57:05.921
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.

  Date: 2018-01-26 08:57:04.190
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume2\Program Files\Malwarebytes\Anti-Malware\mbae64.dll that did not meet the Store signing level requirements.


=========================== Installed Programs ============================

64 Bit HP CIO Components Installer (HKLM\...\{F8F948EA-5AEA-4158-8821-A2F788ECE936}) (Version: 16.2.1 - Hewlett-Packard) Hidden
Adobe Flash Player 28 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 28.0.0.137 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.23) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
AlignmentUtility (HKLM-x32\...\{4C5E314A-31CA-4223-9A90-CE0C4D5800A4}) (Version: 18.00.0000 - UPS) Hidden
Anzio Lite 12.4 (HKLM-x32\...\{7B6EF738-B27C-404A-A209-CDAA2562A9BA}) (Version:  - )
CCC (HKLM-x32\...\{95749C5B-BC37-41E3-8D39-EEF4C21A2825}) (Version: 18.00.0000 - United Parcel Service, Inc.) Hidden
Citrix Online Launcher (HKLM-x32\...\{1EFF9E6C-76E1-43F9-81FB-BC8C037B0902}) (Version: 1.0.258 - Citrix)
FedEx Ship Manager Network Client (HKLM-x32\...\{5D7DBB36-2568-4567-B66A-F5F2D7913349}) (Version: 28.06.3249 - FedEx Corporation)
FormsComponent (HKLM-x32\...\{91032FF2-836F-4CCA-A1A3-55B966E82907}) (Version: 18.00.0000 - UPS) Hidden
FOSS (HKLM-x32\...\{267FC070-5271-4768-B33A-33E4EA0E3A74}) (Version: 18.00.0000 - UPS) Hidden
GDR 4033 for SQL Server 2008 R2 (KB2977320) (HKLM-x32\...\KB2977320) (Version: 10.52.4033.0 - Microsoft Corporation)
GDR 4042 for SQL Server 2008 R2 (KB3045313) (HKLM-x32\...\KB3045313) (Version: 10.52.4042.0 - Microsoft Corporation)
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
ICCHelp (HKLM-x32\...\{A5763105-D1D5-4862-A3FE-EC058F9AA73E}) (Version: 18.00.0000 - UPS)
LabTech® Software Remote Agent (HKLM-x32\...\{3547795b-e7a4-40e0-a475-198d3ff64129}) (Version: 11.0.418 - LabTech® Software, LLC) Hidden
LabTech® Software Remote Agent (HKLM-x32\...\{3f460d4c-d217-46b4-80b6-b5ed50bd7cf5}) (Version: 11.0.418 - LabTech® Software, LLC) Hidden
Malwarebytes version 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 (HKLM-x32\...\Microsoft SQL Server 2008 R2) (Version:  - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Native Client (HKLM\...\{49860BCD-24D6-44C1-922E-AC12FE32234E}) (Version: 10.52.4042.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Setup (English) (HKLM-x32\...\{EFECC55D-7B0A-4D05-8487-CC2FD7C618A3}) (Version: 10.52.4042.0 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files  (HKLM-x32\...\{D441BD04-E548-4F8E-97A4-1B66135BAAA8}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server Browser (HKLM-x32\...\{BF9BF038-FE03-429D-9B26-2FA0FD756052}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft SQL Server Native Client (HKLM\...\{79BF7CB8-1E09-489F-9547-DB3EE8EA3F16}) (Version: 9.00.4035.00 - Microsoft Corporation)
Microsoft SQL Server VSS Writer (HKLM\...\{288D79EE-A2D1-42AF-9597-B0ADCC23A8ED}) (Version: 10.52.4000.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE (x64)) (Version:  - Microsoft Corporation)
MSIChecker (HKLM-x32\...\{C9D43B38-34AD-4EC2-B696-46F42D49D174}) (Version: 18.00.0000 - UPS) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
MySQL Server 5.0 (HKLM-x32\...\{67E75DFE-806E-4C2D-92AB-17799D7CD2BB}) (Version: 5.0.96 - Oracle Corporation)
NA1Messenger (HKLM-x32\...\{D44E7219-947E-4F1B-830E-66EF11ACC543}) (Version: 18.00.0000 - Your Company Name) Hidden
NRF (HKLM-x32\...\{99A0F94F-9F09-4F09-B8D9-E8F1BBBEF212}) (Version: 18.00.0000 - UPS) Hidden
PolicyManager (HKLM-x32\...\{2329553C-D499-4476-A20F-9C7E82ED122B}) (Version: 18.00.0000 - UPS) Hidden
Reconciler (HKLM-x32\...\{98C4DE92-27C8-482C-8431-514828756E80}) (Version: 18.00.0000 - UPS) Hidden
ReportServer (HKLM-x32\...\{C81D8576-F1B1-4E3A-9DC3-DF1B664962F0}) (Version: 18.00.0000 - Your Company Name) Hidden
ScreenConnect Client (77672afb8e0d46c8) (HKLM-x32\...\{19890899-F320-40A6-86BB-4F6AFECD7C64}) (Version: 6.4.15787.6556 - ScreenConnect Software)
Service Pack 2 for SQL Server 2008 R2 (KB2630458) (HKLM-x32\...\KB2630458) (Version: 10.52.4000.0 - Microsoft Corporation)
Sophos Anti-Virus (HKLM-x32\...\{2519A41E-5D7C-429B-B2DB-1E943927CB3D}) (Version: 10.7.6.117 - Sophos Limited) Hidden
Sophos AutoUpdate XG (HKLM-x32\...\{E82DD0A8-0E5C-4D72-8DDE-41BB0FC06B3E}) (Version: 5.8.411 - Sophos Limited) Hidden
Sophos Diagnostic Utility (HKLM-x32\...\{4627F5A1-E85A-4394-9DB3-875DF83AF6C2}) (Version: 1.20.0.4 - Sophos Limited) Hidden
Sophos Endpoint (HKLM\...\{D29542AE-287C-42E4-AB28-3858E13C1A3E}) (Version: 1.2.22 - Sophos Limited) Hidden
Sophos Endpoint Agent (HKLM\...\Sophos Endpoint Agent) (Version: 11.5.11 - Sophos Ltd)
Sophos Endpoint Defense (HKLM\...\Sophos Endpoint Defense) (Version: 1.0.4.16 - Sophos Limited) Hidden
Sophos Endpoint Firewall (HKLM\...\{2831282D-8519-4910-B339-2302840ABEF3}) (Version: 1.0.0.564 - Sophos Limited) Hidden
Sophos Endpoint Self Help (HKLM\...\{BB36D9C2-6AE5-4AB2-BC91-ECD247092BD8}) (Version: 2.0.103 - Sophos Limited) Hidden
Sophos Health (HKLM-x32\...\{E44AF5E6-7D11-4BDF-BEA8-AA7AE5FE6745}) (Version: 2.0.4.198 - Sophos Limited) Hidden
Sophos Heartbeat (HKLM-x32\...\{DFFA9361-3625-4219-82C2-9EF011E433B1}) (Version: 4.3.60 - Sophos Limited) Hidden
Sophos Management Communications System (HKLM-x32\...\{2C14E1A2-C4EB-466E-8374-81286D723D3A}) (Version: 4.7.15 - Sophos Limited) Hidden
Sophos Network Threat Protection (HKLM\...\{66967E5F-43E8-4402-87A4-04685EE5C2CB}) (Version: 1.3.2.40 - Sophos Limited) Hidden
Sophos System Protection (HKLM\...\{934BEF80-B9D1-4A86-8B42-D8A6716A8D27}) (Version: 2.6.0.71 - Sophos Limited) Hidden
SQL Server 2008 R2 SP2 Common Files (HKLM-x32\...\{CACEA8C8-3D38-4F51-953D-1E6FC3346FEF}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Common Files (HKLM-x32\...\{FC835376-FF3B-4CAA-83E0-2148B3FB7C98}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Services (HKLM-x32\...\{58721EC3-8D4E-4B79-BC51-1054E2DDCD10}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Services (HKLM-x32\...\{B5153233-9AEE-4CD4-9D2C-4FAAC870DBE2}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Shared (HKLM-x32\...\{4C9D82EB-9001-4E59-8F64-0BEEE5F4A30A}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
SQL Server 2008 R2 SP2 Database Engine Shared (HKLM-x32\...\{F021CC0C-21C3-4038-AA4A-6E3CBC669CE8}) (Version: 10.52.4000.0 - Microsoft Corporation) Hidden
Sql Server Customer Experience Improvement Program (HKLM-x32\...\{93998800-1608-403F-9A51-420A77D23C25}) (Version: 10.50.1600.1 - Microsoft Corporation) Hidden
SupportUtility (HKLM-x32\...\{31AF8802-BF43-4C43-984B-EC597CF51505}) (Version: 18.00.0000 - UPS) Hidden
System (HKLM-x32\...\{DB2C58E0-6284-4B48-97F2-22A980B6360B}) (Version: 18.00.0000 - UPS) Hidden
UnifiedPrinting (HKLM-x32\...\{CF2962CB-E3E7-4AA5-B6CE-EE59A600ECBE}) (Version: 18.00.0000 - UPS) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{EC5A6438-850E-4AD1-9169-DD071C8EFFEF}) (Version: 2.10.0.0 - Microsoft Corporation)
UPS WorldShip (HKLM-x32\...\UPS WorldShip) (Version: 18.0 - UPS)
UPSICC (HKLM-x32\...\{390160B4-D276-4A04-8002-8D3101A0D367}) (Version: 18.00.0000 - UPS) Hidden
UPSlinkHTTP (HKLM-x32\...\{E358CC1E-4953-4E27-ADEB-8B27D8BBC20E}) (Version: 18.00.0000 - UPS) Hidden
UPSVC2008MM (HKLM-x32\...\{95BFC573-7D09-46C9-B458-A75BA947FFCB}) (Version: 1.00.0000 - UPS) Hidden
UPSVCMM (HKLM-x32\...\{C23415D8-FE94-4F52-B5C4-0FFA2202C6D9}) (Version: 12.00.0000 - UPS) Hidden
VMware Remote Console (HKLM-x32\...\{29F1F968-F61F-4C33-96C7-2DDB8461F0C6}) (Version: 9.0.0 - VMware, Inc.)
VMware vSphere Client 6.0 (HKLM-x32\...\{593390AC-CACE-4278-AA77-350012BF10B1}) (Version: 6.0.0.6649 - VMware, Inc.)
WebHelp (HKLM-x32\...\{8C5BD501-AD5D-4A75-9321-076509B438FC}) (Version: 18.00.0000 - UPS)
WorldShip (HKLM-x32\...\{05221EA8-BC66-483B-8036-5CAF7B813C10}) (Version: 18.00.0000 - UPS) Hidden
WSShared (HKLM-x32\...\{4D8761F6-BB0D-48B9-81F3-58EC0CDA2090}) (Version: 18.00.0000 - UPS) Hidden

========================= Devices: ================================

Name: PCI Serial Port
Description: PCI Serial Port
Class Guid:
Manufacturer:
Service:
Device ID: PCI\VEN_8086&DEV_29B7&SUBSYS_02111028&REV_02\3&172E68DD&0&1B
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: PCI Simple Communications Controller
Description: PCI Simple Communications Controller
Class Guid:
Manufacturer:
Service:
Device ID: PCI\VEN_8086&DEV_29B4&SUBSYS_02111028&REV_02\3&172E68DD&0&18
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: TSSTcorp DVD+-RW TS-H653F
Description: CD-ROM Drive
Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard CD-ROM drives)
Service: cdrom
Device ID: SCSI\CDROM&VEN_TSSTCORP&PROD_DVD+-RW_TS-H653F\4&3286F775&0&010000
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


========================= Memory info: ===================================

Percentage of memory in use: 64%
Total physical RAM: 3037.61 MB
Available physical RAM: 1080.35 MB
Total Virtual: 6109.61 MB
Available Virtual: 3597.18 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:148.06 GB) (Free:62.11 GB) NTFS

========================= Users: ========================================

User accounts for \\DPHZHH1

Administrator            DefaultAccount           Guest                    
KL-AK-0B4E54C7B590B0     KL-AK-312BA1343C14E9     mboerger                 
SophosSAUDPHZHH10        WDAGUtilityAccount       


**** End of log ****



#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:18 PM

Posted 29 January 2018 - 10:35 AM

Ok remove what Adwcleaner found..

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8/10 users right-click and select Run As Administrator
  • The tool will start to update the database if one is required.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Logfile button.
  • A window will open which lists the logs of your scans.
  • Click on the Scan tab.
  • Double-click the most recent scan which will be at the top of the list....the log will appear.
  • Review the results...see note below
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[CX].txt) will open automatically (where the largest value of X represents the most recent report).
  • To open a Cleaning log, launch AdwCleaner, click on the Logfile button, click on the Cleaning tab and double-click the log at the top of the list.
  • Copy and paste the contents of AdwCleaner[CX].txt in your next reply.
  • A copy of all logfiles are saved to C:\AdwCleaner.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name or entry that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on and uncheck any items you want to keep.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 zzyzxgal

zzyzxgal
  • Topic Starter

  • Members
  • 98 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:18 PM

Posted 29 January 2018 - 05:01 PM

# AdwCleaner 7.0.7.0 - Logfile created on Mon Jan 29 21:43:32 2018
# Updated on 2018/18/01 by Malwarebytes
# Running on Windows 10 Pro (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

No malicious folders deleted.

***** [ Files ] *****

No malicious files deleted.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

No malicious registry entries deleted.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries deleted.

*************************

::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0



*************************

C:/AdwCleaner/AdwCleaner[C0].txt - [1318 B] - [2018/1/26 14:44:32]
C:/AdwCleaner/AdwCleaner[S0].txt - [1158 B] - [2018/1/26 14:42:6]
C:/AdwCleaner/AdwCleaner[S1].txt - [1079 B] - [2018/1/29 21:38:4]


########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt ##########



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:18 PM

Posted 30 January 2018 - 10:53 AM

Any better??
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 zzyzxgal

zzyzxgal
  • Topic Starter

  • Members
  • 98 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:18 PM

Posted 30 January 2018 - 12:42 PM

Sorry, I didn't get back with you. It is working now! 

 

Thank you!!



#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,026 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:18 PM

Posted 30 January 2018 - 12:48 PM

Great1!
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users