Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Maleware affecting ability to run FRST program & other issues(see hijack log)


  • Please log in to reply
13 replies to this topic

#1 7sweetsevyn7

7sweetsevyn7

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:04 AM

Posted 10 November 2018 - 05:55 PM

Finally figured out how to run it and included both text files but know for sure something is wrong with my pc because i can't expand browser and if i minimize it i can not restore it i have to close it and reopen it and when i ran hijack this i had 46 lines that had the word 'root' in it or 'ROOT' or 'Root' and 27 O23 lines IDK what these 2 texts are going to say. There is only 2 accounts on my pc, mine(admin) and my moms(a standard). Also tabs keep dissapearing in browser & in general computer and phone are acting 'funny'. But my android is infected with the same thing and neither my antivirus nor malewarebytes is finding it, please help! and when i do expand my browser all the way my taskbar at the bottom on my desktop dissapears. and when i run even a quick scan on GMER i get a ton of entry's in rootkit\malware tab. this is scaring me, ive only had a rootkit one other time, it was called 'FoxRide Carney Virus' and it took Soph-us Anti-rootkit to get rid of it but Soph-us doesn't make an anti-rootkit anymore! added the results i got from gmer too, they are all in my registry. this is going to screw up my pc for good if somebody dosent help me soon. i might be paranoid too but i think its a targeted rootkit, targeted specifically to my pc to ruin it.

Attached Files


Edited by 7sweetsevyn7, 10 November 2018 - 08:31 PM.


BC AdBot (Login to Remove)

 


#2 nasdaq

nasdaq

  • Malware Response Team
  • 40,480 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:09:04 AM

Posted 12 November 2018 - 08:19 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.
 
If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===
 
Press the Windows key + r on your keyboard at the same time. This will open the RUN BOX.
Type Notepad and and click the OK key.
 
Please copy the entire contents of the code box below to a new file.
 

 
Start
 
CreateRestorePoint:
EmptyTemp:
CloseProcesses:
 
FF Homepage: Mozilla\Firefox\Profiles\80y4duqr.default -> hxxps://www.startpage.com/do/mypage.pl?prf=b7b29cd88be8546af448dec8314b8567
FF Extension: (StartPage.com — Private Search Engine) - C:\Users\zere0\AppData\Roaming\Mozilla\Firefox\Profiles\80y4duqr.default\Extensions\{20fc2e06-e3e4-4b2b-812b-ab431220cada}.xpi [2018-10-22]
U3 pwtcypow; \??\C:\Users\zere0\AppData\Local\Temp\pwtcypow.sys [X] <==== ATTENTION
 
cmd: ipconfig /flushdns
cmd: IPCONFIG /release
cmd: IPCONFIG /renew
 
Reboot:
 
End
Save the file as fixlist.txt in the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the Farbar log you have submitted.
 
Run FRST and click Fix only once and wait.
 
The tool will create a log (Fixlog.txt) please post it to your reply.
===
 
--RogueKiller--

  •  



  • Quit all programs that you may have started.


  • Please disconnect any USB or external drives from the computer before you run this scan!


  • For Vista or above, right-click the program file and select "Run as Administrator"


  • Accept the user agreements.


  • Execute the scan and wait until it has finished.


  • If a Windows opens to explain what [PUM's] are, read about it.


  • Click the RoguKiller icon on your taksbar to return to the report.


  • Click open the Report


  • Click Export TXT button


  • Save the file as ReportRogue.txt


  • Click the Remove button to delete the items in RED  


  • Click Finish and close the program.


  • Locate the ReportRogue.txt file on your Desktop and copy/paste the contents in your next.

 
=======
 
We will check your BIOS and Master boot record.
 
Read carefully and follow these steps.
TDSS

  •  



  • Doubleclick on TDSSKiller.exe to run the application.


  • Then click on Start Scan.


  • If a suspicious file is detected, the default action will be Skip, click on Continue.

 

  • If an infected file is detected, the default action will be Cure, click on Continue.


  • Important: Do NOT change the default action on your own unless instructed by a malware Helper! Doing so may render your computer unbootable.


  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.

 

  • If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.


  • If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

 
===
 
Download http://public.avast.com/~gmerek/aswMBR.exe (aswMBR.exe) to your desktop. Double click the aswMBR.exe to run it.

  •  


  • Click the "Scan" button to start scan.


  • Upon completion of the scan, click Save log, and save it to your desktop. (Note - do not select any Fix at this time) <- IMPORTANT


  • Please paste the contents of that log in your next reply.

 
There shall also be a file on your desktop named MBR.dat. Right click that file and select Send To>Compressed (zipped) folder. Please attach that zipped file in your next reply.
===
 
Please post the logs for my review.
 
p.s.
HijackThis is no longer supported and not ready for your Operating system.
I suggest your remove via the Control panel > Programs > Programs and Features.
Use the Farbar Recovery Scan Tool from now on to report problems.
<<<>>>
 

Also, FIREFOX SYNCING.
If Firefox still gives you problems and you are Syncing it with other Devices remove it.
 
When all is well you can re-sync your devices. Not now.
<<<>>>

Edited by nasdaq, 12 November 2018 - 08:21 AM.


#3 7sweetsevyn7

7sweetsevyn7
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:04 AM

Posted 14 November 2018 - 09:22 AM

i am completly lost

i found where to download FRST again as it dissapeared from my computer but do not understand what to do here. please help me!!!

I will run it again and post it again.

i mean does FRST have to be open when i save what is in the code box to it? i just ran it again should i save it to the text that FRST created? the 3rd line is(HP) C:\Windows\System32\hpservice.exe, is that where i need to save what is in the code box? i just copy it to a new text document right? I am afraid if i do not do this right i will really mess up my computer.

Attached Files



#4 7sweetsevyn7

7sweetsevyn7
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:04 AM

Posted 14 November 2018 - 09:40 AM

still stuck on very first step, on what to do with the contents of what is in the code box. i copy it and paste it where? a new text document? i can do that but where do i save it? the 3rd line of the FRST scan i just did is (HP) C:\Windows\System32\hpservice.exe do i save it there? and save the whole thing as what? does the FRST program need to be open?

Then run it again?

LOST


Edited by 7sweetsevyn7, 14 November 2018 - 09:43 AM.


#5 7sweetsevyn7

7sweetsevyn7
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:04 AM

Posted 14 November 2018 - 10:47 AM

stuck on the very first step. do not know what to do with what is in the 'code box' printer does not work but i know how to copy and paste to make a new text document and have done that but now what? the FRST program dissapeared from my pc along with both txt documents so i downloaded it again and attached the NEW txt documents with my new reply but do not know what to do now. the FRST pgm is still open on my pc because i do not know if it needs to be open to add what is the 'code box' to it? Basically am completely lost at that step but wrote down all the directions. is the info in the code box services i need to stop? or do i need to save it to the FRST document that was made from the FRST program running OR do i need to save it to the 3rd line in the txt document that the FRST pgm made when it ran? the 3rd line is: (HP) C:\Windows\System32\hpservice.exe and im afraid im going to ruin my pc if i do this wrong.

What i am getting is i need to copy and paste what is in the 'code box' you supplied above in the 3rd line((HP) C:\Windows\System32\hpservice.exe) of the txt document the FRST pgm made when i ran it and name it fixlist.txt and then run it again. all without closing the FRST program, am i right? THANK YOU for clearing this up for me. I understand all other directions just not the 1st one!



#6 nasdaq

nasdaq

  • Malware Response Team
  • 40,480 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:09:04 AM

Posted 14 November 2018 - 01:51 PM

Hi,
 
Your are running from C:\Users\zere0\Desktop
 
The farbar program should be there.
 
Download and copy the file fixlist.txt attached to the Desktop.
 
Run the Farbar program and click the Fix button
 
A file Fixlog.txt will be created on the Desktop. Post it on your next reply.
 
p.s.
The only change to your computer will be what is listed in the Fix. The HPService.exe will not be targetted as any other operating files.
 
Run the other programs as suggested.

Attached Files



#7 7sweetsevyn7

7sweetsevyn7
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:04 AM

Posted 14 November 2018 - 02:45 PM

there is no fixlist.txt on my desktop only a FRST.txt and a Addition.txt that are from my last run of the FRST pgm

and im completely confused as to what to do now. I literally need a very literall and extremly slow step by exact step to do this, even the littlest tiny thing you might think i might know, pease asume i do not know it and explain it to me in very literal steps, I suffer from a traumatic brain injury and even tho i know my way around a computer more that an average person, assume i do not and please explain EVERYTHING baby step by baby step because i am totally lost right now. thank you.


Edited by 7sweetsevyn7, 14 November 2018 - 02:50 PM.


#8 7sweetsevyn7

7sweetsevyn7
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:04 AM

Posted 14 November 2018 - 05:33 PM

FINALLY FIGURED IT ALL OUT AND FINISHED EVERYTHING AND WAS RUNNING 'ROGUEKILLER' AND WAS DOING A STANDARD SCAN, IT HAD FOUND 4 ITEMS AND SUDDENLY IT JUST SHUT DOWN ON ME, NO NOTICE, NOT TXT LOG, JUST COMPLETELY SHUT DOW ON ME!!! PLEASE TELL ME WHAT TO DO! RUNNING IT AGAIN.



#9 7sweetsevyn7

7sweetsevyn7
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:04 AM

Posted 14 November 2018 - 05:57 PM

I can not finish running 'Roguekiller, it keeps shutting off on me, what now?

here is fix list:

Fix result of Farbar Recovery Scan Tool (x64) Version: 14.11.2018
Ran by zere0 (14-11-2018 15:54:55) Run:1
Running from C:\Users\zere0\Desktop
Loaded Profiles: zere0 (Available Profiles: Ashley & zere0)
Boot Mode: Normal
==============================================

fixlist content:
*****************

Start
 
CreateRestorePoint:
EmptyTemp:
CloseProcesses:
 
FF Homepage: Mozilla\Firefox\Profiles\80y4duqr.default -> hxxps://www.startpage.com/do/mypage.pl?prf=b7b29cd88be8546af448dec8314b8567
FF Extension: (StartPage.com — Private Search Engine) - C:\Users\zere0\AppData\Roaming\Mozilla\Firefox\Profiles\80y4duqr.default\Extensions\{20fc2e06-e3e4-4b2b-812b-ab431220cada}.xpi [2018-10-22]
U3 pwtcypow; \??\C:\Users\zere0\AppData\Local\Temp\pwtcypow.sys [X] <==== ATTENTION
 
cmd: ipconfig /flushdns
cmd: IPCONFIG /release
cmd: IPCONFIG /renew
 
Reboot:
End

*****************

Restore point was successfully created.
Processes closed successfully.
"Firefox homepage" => removed successfully
C:\Users\zere0\AppData\Roaming\Mozilla\Firefox\Profiles\80y4duqr.default\Extensions\{20fc2e06-e3e4-4b2b-812b-ab431220cada}.xpi => moved successfully
pwtcypow => service not found.

========= ipconfig /flushdns =========


Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========= End of CMD: =========


========= IPCONFIG /release =========


Windows IP Configuration

No operation can be performed on Local Area Connection* 2 while it has its media disconnected.
No operation can be performed on Ethernet while it has its media disconnected.

Wireless LAN adapter Local Area Connection* 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Ethernet adapter Ethernet:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Wireless LAN adapter Wi-Fi:

   Connection-specific DNS Suffix  . :
   IPv6 Address. . . . . . . . . . . : 2605:6000:1a12:743::2
   IPv6 Address. . . . . . . . . . . : 2605:6000:1a12:743:10e9:5fba:4d77:2adc
   Temporary IPv6 Address. . . . . . : 2605:6000:1a12:743:e4b7:ee97:b924:7365
   Link-local IPv6 Address . . . . . : fe80::10e9:5fba:4d77:2adc%16
   Default Gateway . . . . . . . . . : fe80::faf5:32ff:fe81:85ba%16

Tunnel adapter isatap.RAC2V1A:

   Media State . . . . . . . . . . . : Media unoperational
   Connection-specific DNS Suffix  . :

Tunnel adapter Local Area Connection* 12:

   Connection-specific DNS Suffix  . :
   Link-local IPv6 Address . . . . . : fe80::ffff:ffff:fffe%18
   Default Gateway . . . . . . . . . :

========= End of CMD: =========


========= IPCONFIG /renew =========


Windows IP Configuration

No operation can be performed on Local Area Connection* 2 while it has its media disconnected.
No operation can be performed on Ethernet while it has its media disconnected.

Wireless LAN adapter Local Area Connection* 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Ethernet adapter Ethernet:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

Wireless LAN adapter Wi-Fi:

   Connection-specific DNS Suffix  . : RAC2V1A
   IPv6 Address. . . . . . . . . . . : 2605:6000:1a12:743::2
   IPv6 Address. . . . . . . . . . . : 2605:6000:1a12:743:10e9:5fba:4d77:2adc
   Temporary IPv6 Address. . . . . . : 2605:6000:1a12:743:e4b7:ee97:b924:7365
   Link-local IPv6 Address . . . . . : fe80::10e9:5fba:4d77:2adc%16
   IPv4 Address. . . . . . . . . . . : 192.168.1.6
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : fe80::faf5:32ff:fe81:85ba%16
                                       192.168.1.1

Tunnel adapter isatap.RAC2V1A:

   Connection-specific DNS Suffix  . : RAC2V1A
   Link-local IPv6 Address . . . . . : fe80::5efe:192.168.1.6%6
   Default Gateway . . . . . . . . . :

Tunnel adapter Local Area Connection* 12:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :

========= End of CMD: =========


=========== EmptyTemp: ==========

BITS transfer queue => 32768 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 108378044 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 167843637 B
Edge => 1259871 B
Chrome => 0 B
Firefox => 1077318087 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 74 B
systemprofile32 => 128 B
LocalService => 624326 B
NetworkService => 100308 B
a => 752544758 B
zere0 => 732014878 B

RecycleBin => 96001 B
EmptyTemp: => 2.6 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 16:00:13 ====

 

and TDSS:

16:58:32.0143 0x1acc  TDSS rootkit removing tool 3.1.0.17 Apr 20 2018 12:12:17
16:58:32.0143 0x1acc  UEFI system
16:58:39.0276 0x1acc  ============================================================
16:58:39.0276 0x1acc  Current date / time: 2018/11/14 16:58:39.0276
16:58:39.0276 0x1acc  SystemInfo:
16:58:39.0276 0x1acc  
16:58:39.0276 0x1acc  OS Version: 10.0.10586 ServicePack: 0.0
16:58:39.0276 0x1acc  Product type: Workstation
16:58:39.0276 0x1acc  ComputerName: ONLY1LOVE
16:58:39.0276 0x1acc  UserName: zere0
16:58:39.0276 0x1acc  Windows directory: C:\windows
16:58:39.0276 0x1acc  System windows directory: C:\windows
16:58:39.0276 0x1acc  Running under WOW64
16:58:39.0276 0x1acc  Processor architecture: Intel x64
16:58:39.0276 0x1acc  Number of processors: 4
16:58:39.0276 0x1acc  Page size: 0x1000
16:58:39.0276 0x1acc  Boot type: Normal boot
16:58:39.0276 0x1acc  CodeIntegrityOptions = 0x00000001
16:58:39.0276 0x1acc  ============================================================
16:58:39.0761 0x1acc  KLMD registered as C:\windows\system32\drivers\47836852.sys
16:58:39.0761 0x1acc  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 10586.1176, osProperties = 0x19
16:58:40.0077 0x1acc  System UUID: {30400E35-B196-A9B0-9F23-E3852068D30D}
16:58:40.0509 0x1acc  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:58:40.0530 0x1acc  ============================================================
16:58:40.0530 0x1acc  \Device\Harddisk0\DR0:
16:58:40.0530 0x1acc  GPT partitions:
16:58:40.0530 0x1acc  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {2DF5B7CB-247F-432A-A171-4E0BCBF8A554}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x82000
16:58:40.0530 0x1acc  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {71A0F9CA-1507-462F-BAB8-1D45A2A673F5}, Name: Microsoft reserved partition, StartLBA 0x82800, BlocksNum 0x8000
16:58:40.0530 0x1acc  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {CE741706-91F5-486B-8A73-5B4730F0C072}, Name: Basic data partition, StartLBA 0x8A800, BlocksNum 0x7286B800
16:58:40.0530 0x1acc  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {08F60054-4AF1-4B12-8D26-B398649E2498}, Name: Basic data partition, StartLBA 0x728F6000, BlocksNum 0x1EA000
16:58:40.0530 0x1acc  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {B7755521-D926-4B22-9B8E-20550DE3BA68}, Name: Basic data partition, StartLBA 0x72AE0000, BlocksNum 0x1C24000
16:58:40.0530 0x1acc  MBR partitions:
16:58:40.0530 0x1acc  ============================================================
16:58:40.0546 0x1acc  C: <-> \Device\Harddisk0\DR0\Partition3
16:58:40.0593 0x1acc  D: <-> \Device\Harddisk0\DR0\Partition5
16:58:40.0593 0x1acc  ============================================================
16:58:40.0593 0x1acc  Initialize success
16:58:40.0593 0x1acc  ============================================================
16:58:44.0551 0x1d90  ============================================================
16:58:44.0551 0x1d90  Scan started
16:58:44.0551 0x1d90  Mode: Manual;
16:58:44.0551 0x1d90  ============================================================
16:58:44.0551 0x1d90  KSN ping started
16:58:44.0751 0x1d90  KSN ping finished: true
16:58:47.0500 0x1d90  ================ Scan system memory ========================
16:58:47.0500 0x1d90  System memory - ok
16:58:47.0500 0x1d90  ================ Scan services =============================
16:58:47.0647 0x1d90  [ DF1C3D7E6C7929AD83BE22852B5B08CB, 9ECF6211CCD30273A23247E87C31B3A2ACDA623133CEF6E9B3243463C0609C5F ] 1394ohci        C:\windows\System32\drivers\1394ohci.sys
16:58:47.0667 0x1d90  1394ohci - ok
16:58:47.0669 0x1d90  [ 2C5B3035B86770ADD2FE9BFBAF5B35A4, 19E16F9144FE3E33B5FF248CF0040AB079ACAE22290B1369CC72AE4CB5FE3A90 ] 3ware           C:\windows\system32\drivers\3ware.sys
16:58:47.0684 0x1d90  3ware - ok
16:58:47.0700 0x1d90  [ 2ECD65755AD80AD0414B2E8459FBC86D, F7F9AC153B080DDAC051F180A0740ED034E18237867D0E7889C56D0F4047DAD6 ] Accelerometer   C:\windows\System32\drivers\Accelerometer.sys
16:58:47.0700 0x1d90  Accelerometer - ok
16:58:47.0731 0x1d90  [ 469441BAE3FF8A16826FC62C51EF5E18, E1204677B87F47222D05F670F8DF3DB65EA0881782A8DCFBE0103478ED71187C ] ACPI            C:\windows\system32\drivers\ACPI.sys
16:58:47.0747 0x1d90  ACPI - ok
16:58:47.0769 0x1d90  [ 7EADED8087C392876521F7EBCE846EF4, 99BF1BD948F97C1ECBC049C7F949B71D73D0B41FB505B2F75B208E655F7DC8A3 ] acpiex          C:\windows\system32\Drivers\acpiex.sys
16:58:47.0769 0x1d90  acpiex - ok
16:58:47.0769 0x1d90  [ C498887123327CDFD73A05E7A2780920, B45392C46254FCB8D79B6C3A82C8D894063199E6167D8E5F7EA7D60C75CD16EA ] acpipagr        C:\windows\System32\drivers\acpipagr.sys
16:58:47.0769 0x1d90  acpipagr - ok
16:58:47.0784 0x1d90  [ C8DBE6EFFCF014CAA010B9BDDAC833EC, 96FC29340C62A6B0910DCCBF8945F32089FC300F45B451A540B8854D53734298 ] AcpiPmi         C:\windows\System32\drivers\acpipmi.sys
16:58:47.0784 0x1d90  AcpiPmi - ok
16:58:47.0784 0x1d90  [ 17039DBEB3B7B9ADCDB4B4533AA9771F, A4D38B144639A20B8B31E4F35FB776A028DB502FAC849FC73EECEB3CCD91830B ] acpitime        C:\windows\System32\drivers\acpitime.sys
16:58:47.0784 0x1d90  acpitime - ok
16:58:47.0831 0x1d90  [ 0E3AE646C2A5657CA9E559AAD502B0B2, 44F3B9394E04C3C625ED8EA1E4F3A2A6447FC5C503A1B7A20ADFA2C92A6C404F ] AdaptiveSleepService c:\Program Files\ATI Technologies\ATI.ACE\A4\AdaptiveSleepService.exe
16:58:47.0831 0x1d90  AdaptiveSleepService - ok
16:58:47.0885 0x1d90  [ 696A8431DD22EDE385D7AB84E0EAF4C9, E5892B346904C7A392A0B1C8F4C9066BC535A2C70307123C8E1F2157353333F0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:58:47.0900 0x1d90  AdobeARMservice - ok
16:58:47.0947 0x1d90  [ F7D0CD345D2DA42E7042ABCD73662403, 03183F90A994D69066F15C3DFC1D7D7514AEAF46A5AAC059B1FB327F8C30A35C ] ADP80XX         C:\windows\system32\drivers\ADP80XX.SYS
16:58:47.0969 0x1d90  ADP80XX - ok
16:58:48.0016 0x1d90  [ 70148EFA9A562E7185B75BBE7D376BF7, 8200E3349A1AFA1040B3D956A17BAF3CDC784A1A3CA396125E7872B36C03D84A ] AFD             C:\windows\system32\drivers\afd.sys
16:58:48.0032 0x1d90  AFD - ok
16:58:48.0065 0x1d90  [ CAC023BFA2B7D9ADB24B1779B3ABB091, FC8DA96CB5DD7555B9B97B8241C51F4DCA9BEACF02DA76E5A6A807DC3C3F0FE8 ] aftap0901       C:\windows\System32\drivers\aftap0901.sys
16:58:48.0067 0x1d90  aftap0901 - ok
16:58:48.0085 0x1d90  [ 870F1A2C936F92B5D053DF7EC75B352F, D617524FD5886D6D3BC2EFBBB5EA310E906454CD7CA7257C3D7BDEA8C4F2DA71 ] agp440          C:\windows\system32\drivers\agp440.sys
16:58:48.0085 0x1d90  agp440 - ok
16:58:48.0101 0x1d90  [ 655491B1173E0F6322F6972A596B93F7, 9AF06B8B9881D535C47582F456A1BF448397B3A28CA33D3E14B4F0E077C7FE53 ] ahcache         C:\windows\system32\DRIVERS\ahcache.sys
16:58:48.0101 0x1d90  ahcache - ok
16:58:48.0132 0x1d90  [ 19707ECBCEA71080A85DB2336580DB39, A09AE69C9DE2F3765417F212453B6927C317A94801AE68FBA6A8E8A7CB16CED7 ] AJRouter        C:\windows\System32\AJRouter.dll
16:58:48.0132 0x1d90  AJRouter - ok
16:58:48.0148 0x1d90  [ AA91A5E156D0364ABA7B01658C2EB014, F61055D581745023939C741CAB3370074D1416BB5A0BE0BD47642D5A75669E12 ] ALG             C:\windows\System32\alg.exe
16:58:48.0166 0x1d90  ALG - ok
16:58:48.0186 0x1d90  [ 19E684720544FB8665CDE670FF8E17EC, 6012BB98A0CB94674FD829E7A9E11761FED4B8B7A718A1F8835238D1379B1551 ] AMD External Events Utility C:\windows\system32\atiesrxx.exe
16:58:48.0201 0x1d90  AMD External Events Utility - ok
16:58:48.0232 0x1d90  [ A6DC22C9B05AC94E322CFC333F6E2676, 9EDD668AD524307F6F299A5E0F51408FD9CB86587AF6A18A8F8717AFAD461203 ] amdacpksd       C:\windows\system32\drivers\amdacpksd.sys
16:58:48.0248 0x1d90  amdacpksd - ok
16:58:48.0286 0x1d90  [ 7AAD0C71FAB541A5826B5244ED4EEF2A, 84F0A73F58DA04260CF2A68E2B639ABA85F62DB0EBB987E3B1FFE23F5347781D ] amdacpusrsvc    C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
16:58:48.0332 0x1d90  amdacpusrsvc - ok
16:58:48.0348 0x1d90  [ 12FA3729C93B6E76BAB7C632755FE67B, 96F24158A7070D8A9707FAB67CC5CF780D01844BA4B7DC9A066BE78F88B4E9BB ] AmdAS4          C:\windows\System32\drivers\AmdAS4.sys
16:58:48.0364 0x1d90  AmdAS4 - ok
16:58:48.0386 0x1d90  [ 1D3264A7A423034C705DBD72BEDEA22E, 8C5F90CA7EEF5595B2CBABECA103D5F709AC65AF594F88F2788F958DE4A6505F ] AmdGpio2        C:\windows\System32\drivers\AmdGpio2.sys
16:58:48.0386 0x1d90  AmdGpio2 - ok
16:58:48.0402 0x1d90  [ 5ADE7A52C0F4CA66CEB43B068D301525, BBDC234B037D3E9D7A4901B48866382D83D444A531716321628B4168BB882E98 ] amdi2c          C:\windows\System32\drivers\amdi2c.sys
16:58:48.0402 0x1d90  amdi2c - ok
16:58:48.0417 0x1d90  [ B70F0F2F54B4A4DB6E9C830454752F5A, C882DEAC30812E5FA4479A8CB688603C6AF269EF08236688F4C5E7EBED1D4572 ] AmdK8           C:\windows\System32\drivers\amdk8.sys
16:58:48.0417 0x1d90  AmdK8 - ok
16:58:48.0449 0x1d90  [ CD5F86C0FC45658C3DC1D7DF87EC0B17, 1083E00D1EFB0AB504887BBB0546FA322D7E963709DB79968B537630B8B67D12 ] amdkmcsp        C:\windows\system32\DRIVERS\amdkmcsp.sys
16:58:48.0449 0x1d90  amdkmcsp - ok
16:58:48.0449 0x1d90  amdkmdag - ok
16:58:48.0502 0x1d90  [ 908F92CB548FE81C2F7BA05CF9DC3608, A54E7F5E0EE444112A9FFC8DC11A0781B0FD283561414E3400AB29268F984096 ] AMDKMDAP        C:\windows\system32\DRIVERS\atikmpag.sys
16:58:48.0517 0x1d90  AMDKMDAP - ok
16:58:48.0533 0x1d90  [ A7820769AF79FF16DBF52133C00FEA80, 7D8B0B3A270F819C6E30123111C068598633B0AA9E68893FF4D9ECC457334593 ] amdkmpfd        C:\windows\system32\drivers\amdkmpfd.sys
16:58:48.0548 0x1d90  amdkmpfd - ok
16:58:48.0571 0x1d90  [ 35E890482C9728DD5C552B85DA8A5AB2, 1E0EB7D902AB4C38E23CAFC0BEA250E7F6E180E8814385B4F29730BFC373A191 ] AmdPPM          C:\windows\System32\drivers\amdppm.sys
16:58:48.0571 0x1d90  AmdPPM - ok
16:58:48.0587 0x1d90  [ 4B7828DD01E4F9D638DFDF967EA6EC56, A6711940ECBE6308676C2CEC41EA2EF34694E15BEEA205A0C405FF97B9DA169C ] amdpsp          C:\windows\system32\DRIVERS\amdpsp.sys
16:58:48.0603 0x1d90  amdpsp - ok
16:58:48.0634 0x1d90  [ 5B30BCFE6E02E45D3EE268FF001BC5E0, 9901DB728885CE36911F79998629B2DD42D56AF9633B5277834F498CC59B0346 ] amdsata         C:\windows\system32\drivers\amdsata.sys
16:58:48.0634 0x1d90  amdsata - ok
16:58:48.0650 0x1d90  [ F20B30F35A5C7888441B4DCA001ECF8E, 695A5BC1F18B65992EB06A202AD3CBFA17228E76DDFD1AE6977FD315724F75C2 ] amdsbs          C:\windows\system32\drivers\amdsbs.sys
16:58:48.0668 0x1d90  amdsbs - ok
16:58:48.0687 0x1d90  [ 252BEEC5936CD48A2E098A96E05A499C, BCCA5629577D7B2FA9B2DEB610BC7E7F651D19208858A18E0372FD8BEE6CF11A ] amduart         C:\windows\System32\drivers\amduart.sys
16:58:48.0687 0x1d90  amduart - ok
16:58:48.0703 0x1d90  [ AFE838D7576C581D6483529621AB10CC, 14476A04CC64E7A0F1BBFDACCBD7A87F384BE1877C27656DBB973AF3975D4AE2 ] amdxata         C:\windows\system32\drivers\amdxata.sys
16:58:48.0703 0x1d90  amdxata - ok
16:58:48.0734 0x1d90  [ 062E02F50F382CB9358067CD6536CF18, A565C0C1B6321D959E2551A6AD0B6B1495FFD6002875209EAE3BAA99412B67DC ] AppID           C:\windows\system32\drivers\appid.sys
16:58:48.0734 0x1d90  AppID - ok
16:58:48.0750 0x1d90  [ 86C97B5E6B5ACCF3C984D4B3EDBB3D0A, 29FCC4125489C43D838CE1F9736F0443D6CFEF74562D8CB39E88773B8B219745 ] AppIDSvc        C:\windows\System32\appidsvc.dll
16:58:48.0750 0x1d90  AppIDSvc - ok
16:58:48.0772 0x1d90  [ 56E219DF92BE16F62308F884739BE022, FE189EE8A52BC5A0E6B76C632021F84F60307A182F2A67C0C0C7CAA72DEFC723 ] Appinfo         C:\windows\System32\appinfo.dll
16:58:48.0772 0x1d90  Appinfo - ok
16:58:48.0803 0x1d90  [ F04E307DFB6E4E802243F727F407BED4, 989062EF77B0AF7E9B4EC028FB8C69E652ECF26F7B97BD19CA9A30E484C8DEC1 ] AppReadiness    C:\windows\system32\AppReadiness.dll
16:58:48.0818 0x1d90  AppReadiness - ok
16:58:48.0903 0x1d90  [ 8224C3A16059B4FBAF8E5F79592E516C, 66699D06B34F1F3E930AD64749C11BA8204B6CE83096D7F5CFAEB6B5401FF743 ] AppXSvc         C:\windows\system32\appxdeploymentserver.dll
16:58:48.0934 0x1d90  AppXSvc - ok
16:58:48.0967 0x1d90  [ E3FE8F610B1CC12BC3B2E6BC43DC97E2, 0E18542CF2095A9ADA1759AB8F986E78B0A50A3C6B2AD4EACD80A23D832A2C6D ] arcsas          C:\windows\system32\drivers\arcsas.sys
16:58:48.0971 0x1d90  arcsas - ok
16:58:48.0987 0x1d90  [ 5E00748A1AD246CAECBBB7553BED36CC, DAD2C93F0894E7BB5E5D8D767D8286A909086B49172C504A01097C3A180998C6 ] AsyncMac        C:\windows\System32\drivers\asyncmac.sys
16:58:48.0987 0x1d90  AsyncMac - ok
16:58:49.0003 0x1d90  [ 492B99D2E3D5D7BFD5F0AE1BE7BD37DD, A3F6BFC4FDC1933FBF3145019B118689A414108B04F43E2563946B2673C89324 ] atapi           C:\windows\system32\drivers\atapi.sys
16:58:49.0003 0x1d90  atapi - ok
16:58:49.0034 0x1d90  [ 7FFB1E6F81C7BFD5B64D02A5B344B1D2, FE5BD7254C9AA926224F0184E7370ACD83CE565E4535BE48AA526504978D483B ] AtiHDAudioService C:\windows\system32\drivers\AtihdWT6.sys
16:58:49.0034 0x1d90  AtiHDAudioService - ok
16:58:49.0071 0x1d90  [ 42BF7FA295F453618104B5A50BEE105B, AB44BA2AD2FC5AF3B6BE4489C444C03FD1AB02C22109BF5F39BE459294C4CB18 ] AudioEndpointBuilder C:\windows\System32\AudioEndpointBuilder.dll
16:58:49.0072 0x1d90  AudioEndpointBuilder - ok
16:58:49.0119 0x1d90  [ B223E1247A3A29EC9E1CFE8EF18B3373, 666BD062B0B13A93756BE36072F4B117BD390F830A6640FC304E619A649E652C ] Audiosrv        C:\windows\System32\Audiosrv.dll
16:58:49.0135 0x1d90  Audiosrv - ok
16:58:49.0168 0x1d90  [ 7062CE507814D5306DCA5D6A15B7B6B6, 9D60506003A66C2E516B1FCB70CC5B26FB3A9948B95D97C828DD0328E76F2C91 ] AxInstSV        C:\windows\System32\AxInstSV.dll
16:58:49.0171 0x1d90  AxInstSV - ok
16:58:49.0188 0x1d90  [ 6447BA6FA709514B6C803D159B4C7D1E, 549DDCEAD93DF333F6BBD56A9258A867E4DA219741C00D48C68F8F230A87B11A ] b06bdrv         C:\windows\system32\drivers\bxvbda.sys
16:58:49.0204 0x1d90  b06bdrv - ok
16:58:49.0235 0x1d90  [ B4AC08B1D04D0CE085435E5CD0E663C5, 61E641388E5692B2EB351E44BA1DB86B5305DD105EE56865D59072CA9407C8AC ] BasicDisplay    C:\windows\System32\drivers\BasicDisplay.sys
16:58:49.0235 0x1d90  BasicDisplay - ok
16:58:49.0272 0x1d90  [ 85E8F2400A20CC114F53006F88D513CD, F9B10139CC7230207578227FE8F41C7D4BB8BD99EFF3645F6F85C958CC7F52CE ] BasicRender     C:\windows\System32\drivers\BasicRender.sys
16:58:49.0272 0x1d90  BasicRender - ok
16:58:49.0288 0x1d90  [ 3F5523DCEFE42B385659C5CB46A6B810, CA24A3DF002B19E7BDEDE9B5EB60623F299D0E78B2E4F58DCFC028D76DEFE52D ] bcmfn           C:\windows\System32\drivers\bcmfn.sys
16:58:49.0288 0x1d90  bcmfn - ok
16:58:49.0288 0x1d90  [ 0B750A6A6D847E73CA48ADD7A0F5A393, 6A43020F23846EFB1AFA3C070465B0059E9DF60DEB16899E09559462DF30939F ] bcmfn2          C:\windows\System32\drivers\bcmfn2.sys
16:58:49.0288 0x1d90  bcmfn2 - ok
16:58:49.0319 0x1d90  [ F374C27099807E99A156953F8416D34A, D267B8CD837290F9FC6B4FFD2DB8F54867D808FB155698FC7713BCAB3AE475B5 ] BDESVC          C:\windows\System32\bdesvc.dll
16:58:49.0319 0x1d90  BDESVC - ok
16:58:49.0335 0x1d90  [ 5A88834AEE15D97695FAE0837B73B3E4, 03035FB51DE218B8EDB15129A0376DDED0C7E7B6DA58DD95B12E4E5C8D852ED8 ] Beep            C:\windows\system32\drivers\Beep.sys
16:58:49.0335 0x1d90  Beep - ok
16:58:49.0372 0x1d90  [ 37F5E2385CB4D10AB42186974B9C241A, D38FA2B8CE19AC32056060F04B04D031F1621C07528DEDCCD5A8C01AB0A35995 ] BFE             C:\windows\System32\bfe.dll
16:58:49.0388 0x1d90  BFE - ok
16:58:49.0435 0x1d90  [ A149B12A1FB1772AD30D2BC66A120DA9, 63ADE1646A7EFC6DB99A2142359F4AEB48C08EDF5518B42BAE6C0306AB53889E ] BITS            C:\windows\System32\qmgr.dll
16:58:49.0468 0x1d90  BITS - ok
16:58:49.0504 0x1d90  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:58:49.0504 0x1d90  Bonjour Service - ok
16:58:49.0535 0x1d90  [ 00B634714E8B9F6AF9A7A6BCACA87305, DE9714A8E782D7EE8167FC69021E0880D82E3D17E568B23805D317587AAAF07B ] bowser          C:\windows\system32\DRIVERS\bowser.sys
16:58:49.0535 0x1d90  bowser - ok
16:58:49.0572 0x1d90  [ C59B5FC1E0575C5910C4585A2503FFFA, F336325D1519C9B5B2526EF8A88411C7678CC69AAAE95E129D21C7B06E11F777 ] BrokerInfrastructure C:\windows\System32\bisrv.dll
16:58:49.0588 0x1d90  BrokerInfrastructure - ok
16:58:49.0604 0x1d90  [ A617BE5E429A035A1CA8217C1B16F0BB, 197EE6C6EB22FF8A626540886F5A2163CC4CB177504C5423856F54BF01EB0FF1 ] Browser         C:\windows\System32\browser.dll
16:58:49.0619 0x1d90  Browser - ok
16:58:49.0667 0x1d90  [ 3D56615549C021393B168125298CB459, 15D0B4938BBAFFBD8CDD34B5B1F45FAB68E4410C5905B6A0987ABBF5F2D093BE ] BthAvrcpTg      C:\windows\System32\drivers\BthAvrcpTg.sys
16:58:49.0673 0x1d90  BthAvrcpTg - ok
16:58:49.0720 0x1d90  [ 72CC1F3397B4438C8B8830F004075038, FBB7F9E7E22F14D31E4BDEB0F32D7D59DEF86FA91117C030E318CDFE0E054EA5 ] BthEnum         C:\windows\System32\drivers\BthEnum.sys
16:58:49.0720 0x1d90  BthEnum - ok
16:58:49.0751 0x1d90  [ 5F2B4B32E986C058525D3BA2A475A16C, CEC5BB0B025DD9525CFBBEDF6EB6F63336534798495A4F95763CE112DF915088 ] BthHFEnum       C:\windows\System32\drivers\bthhfenum.sys
16:58:49.0768 0x1d90  BthHFEnum - ok
16:58:49.0773 0x1d90  [ 5406289E8AE2CB52FC408154E0A64BA7, 0A3795F2E6E2B51198452CF69A99159D8E11650E95F41DF0B575CB72F9C6C6B5 ] bthhfhid        C:\windows\System32\drivers\BthHFHid.sys
16:58:49.0773 0x1d90  bthhfhid - ok
16:58:49.0789 0x1d90  [ BAB101E7826BE287F79C4BA721621989, E6DD25C89267FE87253B8226292F2894F5E702075D3B23B09339D3B28744C060 ] BthHFSrv        C:\windows\System32\BthHFSrv.dll
16:58:49.0804 0x1d90  BthHFSrv - ok
16:58:49.0835 0x1d90  [ 3B3BF88BB54CB9A18DE1EF07292B5A3D, 7B9C1E7E07435B976E4AE89425F10541E1DEB153172A375CBC2D03A4D7B7F3D2 ] BthLEEnum       C:\windows\system32\DRIVERS\BthLEEnum.sys
16:58:49.0835 0x1d90  BthLEEnum - ok
16:58:49.0851 0x1d90  [ A76F20CCCA31895A1DA78A875E50F946, ECD4B3670DA5984AA24F4354457B4E45983938A89FF6DB03B556A633B4B37E3C ] BTHMODEM        C:\windows\System32\drivers\bthmodem.sys
16:58:49.0851 0x1d90  BTHMODEM - ok
16:58:49.0874 0x1d90  [ 951FDAEABF78FF394C90E28D3AAE2D7F, 566FB318CD5BCDD44348BAACBA6499A67F766EA3A8CC6AC16F4D7CD02CD48D1E ] BthPan          C:\windows\System32\drivers\bthpan.sys
16:58:49.0874 0x1d90  BthPan - ok
16:58:49.0921 0x1d90  [ 2442F8CED09E5E4A8F1AA04C5DB22771, C1D072502B0FE2A39BD0A2E724FD8955C1199F681C605ECB3F2558AE2EC1A450 ] BTHPORT         C:\windows\System32\drivers\BTHport.sys
16:58:49.0936 0x1d90  BTHPORT - ok
16:58:49.0974 0x1d90  [ CEEC73833A4C6B31E2F376A3FD4DA73E, F09FC6EAB8D9769DBAD0931CC7C7F5DFE1562D3EE09CE0EF086AA73D4B62E076 ] bthserv         C:\windows\system32\bthserv.dll
16:58:49.0975 0x1d90  bthserv - ok
16:58:49.0990 0x1d90  [ FA7EE4E3DCF4C1159D4E78147D8F1A7B, 27FA5245D0FDE880E6D5D450EF7F28C3EDC6AA03BB9EBA7F9B088A21D4CFBED0 ] BTHUSB          C:\windows\System32\drivers\BTHUSB.sys
16:58:50.0006 0x1d90  BTHUSB - ok
16:58:50.0006 0x1d90  [ BF89BDBA5D3A0B4256D3F6FC8D31880D, 940F3BF55B88261C9E9A951A092331559FC5B24FE3BA0F1E1AB3450D2CA364C1 ] buttonconverter C:\windows\System32\drivers\buttonconverter.sys
16:58:50.0006 0x1d90  buttonconverter - ok
16:58:50.0021 0x1d90  [ C24C27FDF93B85A4EFCF25F830253AA2, 35C87518BB59663B57C2361A13AD4E57E37392598F1EB9F07F86CA5A6321AF5A ] CapImg          C:\windows\System32\drivers\capimg.sys
16:58:50.0021 0x1d90  CapImg - ok
16:58:50.0037 0x1d90  [ 7F9C7226D743B232907ED2537B8A574F, 2211AFC30E8F8FA03020DB48EE14914CD31E50BB6A63FF20AC7C6FA481E72C18 ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
16:58:50.0037 0x1d90  cdfs - ok
16:58:50.0075 0x1d90  [ B3CDC8913717E20C1F724BC7A8F7EBC4, D47C4A7F1B3BA38ECC2D355B3A0EDE712811E118896696B416502B3C323503A5 ] CDPSvc          C:\windows\System32\CDPSvc.dll
16:58:50.0075 0x1d90  CDPSvc - ok
16:58:50.0106 0x1d90  [ 82D97776BF982AA143BDC7DFB5054EA8, 954F56728371E6B3514586DCEAF15C4727BAED6CAFBF788654C4E03BD702942C ] cdrom           C:\windows\System32\drivers\cdrom.sys
16:58:50.0121 0x1d90  cdrom - ok
16:58:50.0137 0x1d90  [ C45DF9513A8063054F4A1687127E7A2C, 2CD7F7FE7248BC784573418278F4DF6C7C57F57F3F529A5165054038FA70296C ] CertPropSvc     C:\windows\System32\certprop.dll
16:58:50.0137 0x1d90  CertPropSvc - ok
16:58:50.0153 0x1d90  [ 0505C1D991D0F9D47F3353BB98597C7E, 3B801CCF4980256327A4A9FBD98007DA1E3ACE9C94E5A4C23AB21303B46E8B5A ] circlass        C:\windows\System32\drivers\circlass.sys
16:58:50.0153 0x1d90  circlass - ok
16:58:50.0190 0x1d90  [ E349BEB004F985FB2BB8301EE1D037C7, 6317B6FF201E86FA55A530552177202C3E306E2C561D7AFAA1C9D7C00F37FEC2 ] CLFS            C:\windows\system32\drivers\CLFS.sys
16:58:50.0190 0x1d90  CLFS - ok
16:58:50.0509 0x1d90  [ A6B948D89A4338EA45BE265F510A11C4, 996544DD624AFFF0343F6333FCE9D5B0A6D49A10DC461D05C2392576C3390F4D ] ClickToRunSvc   C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
16:58:50.0678 0x1d90  ClickToRunSvc - ok
16:58:50.0741 0x1d90  [ 7AC24D3001999624F6ABEEB89D1401D2, 101CCCE60B704BD72A06A9E5D63F0089FD1013609A54BED8BE41507A95F25291 ] ClipSVC         C:\windows\System32\ClipSVC.dll
16:58:50.0756 0x1d90  ClipSVC - ok
16:58:50.0794 0x1d90  [ 95832B049E2833B9F5189823CDF946C7, 72773A42A89220B4A6AC72D1633B16F11191A44D876A44FAB5CEFB717CE3223D ] CmBatt          C:\windows\System32\drivers\CmBatt.sys
16:58:50.0810 0x1d90  CmBatt - ok
16:58:50.0841 0x1d90  [ 53F4E5306920BDC1DD931B3BA3C59913, FF744F0EE5D99DDCA51709171C0F11B754C89D94C06751D86571345B2BFF6A2D ] CNG             C:\windows\system32\Drivers\cng.sys
16:58:50.0857 0x1d90  CNG - ok
16:58:50.0877 0x1d90  [ 58D640BC2294C71BDE0953F12D4B432F, 0B3B7659FCB97791A2A1F895C8E6F9078F855C94C13EB47464492588C4B02B85 ] cnghwassist     C:\windows\system32\DRIVERS\cnghwassist.sys
16:58:50.0878 0x1d90  cnghwassist - ok
16:58:50.0957 0x1d90  [ 328644902D43B520AF45A4B9DAB5B9B1, E0DC261BA80C6AFE8B01047A94BCEFE33FB5BC9E2FDD4CB54007D71F44AD1775 ] CnxtHdAudService C:\windows\system32\drivers\CHDRT64.sys
16:58:50.0994 0x1d90  CnxtHdAudService - ok
16:58:51.0078 0x1d90  [ 14F9883588398A1BDE49C75098C75DE6, D9D82DE89FAFE60BC902683BC44C7555533A030150FD5E5A35A24542FACC5CAD ] CompositeBus    C:\windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys
16:58:51.0094 0x1d90  CompositeBus - ok
16:58:51.0094 0x1d90  COMSysApp - ok
16:58:51.0141 0x1d90  [ 02B8E49148DE5E0A2F6FDF28CE94A6AC, EEA405823F441CA604BEAA44EB71A1D20BC80E124FF7B27380D0201AAF2E0849 ] condrv          C:\windows\system32\drivers\condrv.sys
16:58:51.0141 0x1d90  condrv - ok
16:58:51.0194 0x1d90  [ 3869E7F4CDA055577767FE56BCDF8158, 344906A083494A997A6D12D48E371D5F9D1DEE8D35CD2FEE53906A59032D1EF0 ] CoreMessagingRegistrar C:\windows\system32\coremessaging.dll
16:58:51.0210 0x1d90  CoreMessagingRegistrar - ok
16:58:51.0241 0x1d90  [ 9E79A2208A9ED205A7383CBC92C28053, 2E6599DF30DF19BD7BE6FEF1B21FED7F349A3F2306CC5CFDB767ABA7283E8A55 ] CryptSvc        C:\windows\system32\cryptsvc.dll
16:58:51.0241 0x1d90  CryptSvc - ok
16:58:51.0279 0x1d90  [ E61D58DE5AADFE98EE47DCFAD63B50C6, 004170DF82EC1650C7FEEF181E9E7F587FB5DA90D54771EAC8C0958451B2F247 ] CxMonSvc        C:\windows\CxSvc\CxMonSvc.exe
16:58:51.0294 0x1d90  CxMonSvc - ok
16:58:51.0310 0x1d90  [ CEFC169946825C5F329545279FEC823B, 155848D7887E00863540542122A16BFD65DEEDC1B8B64F7E92D64D2C74CB5C1D ] CxUtilSvc       C:\windows\CxSvc\CxUtilSvc.exe
16:58:51.0310 0x1d90  CxUtilSvc - ok
16:58:51.0341 0x1d90  [ E8DD94A75EBAD6F1A33F055635D075D0, 005C1422723C45A7898703490E53D924EB59952AD9E8988BCB250DD99D65CC60 ] dam             C:\windows\system32\drivers\dam.sys
16:58:51.0341 0x1d90  dam - ok
16:58:51.0379 0x1d90  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate        C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
16:58:51.0379 0x1d90  dbupdate - ok
16:58:51.0395 0x1d90  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem       C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
16:58:51.0395 0x1d90  dbupdatem - ok
16:58:51.0426 0x1d90  [ A4700D1F78539C0ED32FA50E64F9C692, 5CB03B5F36307BA152245BAD29CB2AC703BBE8197ABC0338A7092ADEA1C3221A ] dc3d            C:\windows\System32\drivers\dc3d.sys
16:58:51.0426 0x1d90  dc3d - ok
16:58:51.0479 0x1d90  [ FA77AA7F756D2A8CAB5B35ACA0E98E5D, 86D3F02632CF6A96A09D576B8D0F6441D31EC41504835C942D150F9E3FCF7F37 ] DcomLaunch      C:\windows\system32\rpcss.dll
16:58:51.0495 0x1d90  DcomLaunch - ok
16:58:51.0526 0x1d90  [ 620921E77351FB651632322AD2C195C4, 5A98971995D7A2B5AE6BEA69344FCC6687B582FEF74BDA206D32FB2E6CEB0478 ] DcpSvc          C:\windows\system32\dcpsvc.dll
16:58:51.0541 0x1d90  DcpSvc - ok
16:58:51.0580 0x1d90  [ AEADFE9C3D3FBB3BE619AB369AE069B6, E7911628446C170375C70538192165F7DD9DF39B9098B4B2404E6521DBD191AE ] defragsvc       C:\windows\System32\defragsvc.dll
16:58:51.0580 0x1d90  defragsvc - ok
16:58:51.0627 0x1d90  [ 0CADF20D9CBB7EEB26ACA0B5FDF01FB1, 2556861FB94F9942B2CA29A7E33F28883CECED56A2A5973F29A94C5D85219579 ] DeviceAssociationService C:\windows\system32\das.dll
16:58:51.0627 0x1d90  DeviceAssociationService - ok
16:58:51.0658 0x1d90  [ 15BA68662CED4B0618010A54478E18E5, 1B913BFA7AA11F3A82D80E95FC4857B810D341F9E68545710F90EBE44DAC1DF8 ] DeviceInstall   C:\windows\system32\umpnpmgr.dll
16:58:51.0658 0x1d90  DeviceInstall - ok
16:58:51.0684 0x1d90  [ 5BF8BD9B19D665452494C8D56DF4B28D, E5FC649207EF42C04B6737D442FECD3383E82F8998B140319FF400773F1D0978 ] DevQueryBroker  C:\windows\system32\DevQueryBroker.dll
16:58:51.0684 0x1d90  DevQueryBroker - ok
16:58:51.0715 0x1d90  [ F69EB180AB7F8D324B6A7770959C6434, 403F7CB2CE26F45778E33F531B50EC3A422C7F3C92C43CD0C442A9ABACCA7DAC ] Dfsc            C:\windows\system32\Drivers\dfsc.sys
16:58:51.0715 0x1d90  Dfsc - ok
16:58:51.0731 0x1d90  [ 9593475FBC857A05D93BFF4FA7323C2B, D2A958AF5EFDC6136A6ABB7F8D5FE1F84C967E79BEA96C5BE3661A0145DEB907 ] dg_ssudbus      C:\windows\system32\DRIVERS\ssudbus.sys
16:58:51.0746 0x1d90  dg_ssudbus - ok
16:58:51.0784 0x1d90  [ D461D2BECEFA661291EB1B748A8D2CCB, 7275859FCDE58DE6C0C683AFDAD910EB4602336CC724EEE42495A8839213469D ] Dhcp            C:\windows\system32\dhcpcore.dll
16:58:51.0784 0x1d90  Dhcp - ok
16:58:51.0831 0x1d90  [ 9F5AC03F5A0000DD96FA29CD68A6605B, 6964E077635E65DA902CA6C69E704A9DCD5856D22BA75E1CF823E63E62266AF7 ] diagnosticshub.standardcollector.service C:\windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
16:58:51.0831 0x1d90  diagnosticshub.standardcollector.service - ok
16:58:51.0951 0x1d90  [ EEAF21BB953B8E1532D308854714E548, 0D8CD5221ACC2C185FE6E674CF21CEE8ACCD4F2153CD79A6C0B154D529FE3492 ] DiagTrack       C:\windows\system32\diagtrack.dll
16:58:51.0989 0x1d90  DiagTrack - ok
16:58:52.0036 0x1d90  [ 4904B152E4942BF700F2D73228B4D477, 0E5646DCA05A24C71F057C9F9F64AE992D338DA72DF3126175C2FA178854C30F ] disk            C:\windows\system32\drivers\disk.sys
16:58:52.0036 0x1d90  disk - ok
16:58:52.0085 0x1d90  [ 126FCA1567A012BAEA80FC4F8068A48F, 74907F56CC88AA0DD345E271DBB1F8B6EB1618F798B895CDF441123E582E9A16 ] DmEnrollmentSvc C:\windows\system32\Windows.Internal.Management.dll
16:58:52.0089 0x1d90  DmEnrollmentSvc - ok
16:58:52.0120 0x1d90  [ 0197AE4B9790A4E73751CACFAA480126, 86BBB398F1A93754B2C329271F13A88FD2F285F30225C38F068F565CCA14EB9F ] dmvsc           C:\windows\System32\drivers\dmvsc.sys
16:58:52.0120 0x1d90  dmvsc - ok
16:58:52.0152 0x1d90  [ 5EF8EC71A7A91F3DF7798BEFE6786B0E, A3A56B43C72926881C66B7A17C9EAA35C2D9603C8D3849438838536BCD3F4633 ] dmwappushservice C:\windows\system32\dmwappushsvc.dll
16:58:52.0167 0x1d90  dmwappushservice - ok
16:58:52.0189 0x1d90  [ DBA15B97827651A21461681CC47DBC9A, 606B56AF633F5E94F5BBDFD831012850747C0013CCA8E1BE06A2C17FE050ADA9 ] Dnscache        C:\windows\System32\dnsrslvr.dll
16:58:52.0189 0x1d90  Dnscache - ok
16:58:52.0220 0x1d90  [ 1B15297A3A2CAB6BD586676154F389D8, 623D5F5FC8622B7D9AEEEB1787E6846C1570F0EEF94341239440B616D09D672A ] dot3svc         C:\windows\System32\dot3svc.dll
16:58:52.0220 0x1d90  dot3svc - ok
16:58:52.0236 0x1d90  [ 316C2D8B8E3C0727969F1C3790EF7193, 631F8578FDB26578C8436E4B9C4DF21E1F58FCFE6DA66E5769AAC3739005D465 ] DPS             C:\windows\system32\dps.dll
16:58:52.0252 0x1d90  DPS - ok
16:58:52.0289 0x1d90  [ 25FA06D3B49D6ADF8E874FFCDCD76B50, 9AF09B96ED79D94EA36581ABE6CC73313A72891779774B15860D018BEA2BBA0F ] drmkaud         C:\windows\system32\DRIVERS\drmkaud.sys
16:58:52.0289 0x1d90  drmkaud - ok
16:58:52.0305 0x1d90  [ 16EE6701115BECF8C657D9D6E123F6A1, 16E115B5245C3C988F8B58B90D30F183021C7C7792D3D1C74BEC606E49672B2A ] DsmSvc          C:\windows\System32\DeviceSetupManager.dll
16:58:52.0320 0x1d90  DsmSvc - ok
16:58:52.0336 0x1d90  [ FBC8C56814642A7CA88ACBCA8DD1121F, 108690704A359991C3D6577477E232F5F2F46B36DF6B4B0738A893EF05D7D4EB ] DsSvc           C:\windows\System32\DsSvc.dll
16:58:52.0336 0x1d90  DsSvc - ok
16:58:52.0440 0x1d90  [ 9B7E6E1B02B625C01E9CEDC1BE81FFFD, 8CE7DF65C2292790ED572FDDC6B946B23DB7140E1E51FFFF608F8126D816142D ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
16:58:52.0492 0x1d90  DXGKrnl - ok
16:58:52.0507 0x1d90  [ 1FBC5FF75CE1B6DCC61DA0352E7C91AA, 4705B8DB74E73945066363F72B20B0942F1AB7EB56AA523817F5F9D477D84D99 ] Eaphost         C:\windows\System32\eapsvc.dll
16:58:52.0507 0x1d90  Eaphost - ok
16:58:52.0608 0x1d90  [ 491275B864B704B54EC08168344E0F38, B4849400C3F819CF7809A2001EA2ECB527022483F7DFE31C3930F951EAFE50CE ] ebdrv           C:\windows\system32\drivers\evbda.sys
16:58:52.0670 0x1d90  ebdrv - ok
16:58:52.0708 0x1d90  [ D44292C0CD22706CBD704B7555EB65B5, 2DFD70876ED10E6083552C94BBA3488F2BEEB851C47DA24B27319351BD6FEE5C ] EFS             C:\windows\System32\lsass.exe
16:58:52.0708 0x1d90  EFS - ok
16:58:52.0724 0x1d90  [ CEF108FCE06892CFA5F1B49527D4BF49, FA337584024B6E6EE4AF519F57FFA4C0FCA19EDC148FF309336C4CCA8F9C9CE8 ] EhStorClass     C:\windows\system32\drivers\EhStorClass.sys
16:58:52.0724 0x1d90  EhStorClass - ok
16:58:52.0755 0x1d90  [ 5B1EAAE3001A7A320C106FC3859F4111, 700BA2C7D4DFAFFEB78D3804B310A4EE5B4295C84600442665693FF661673951 ] EhStorTcgDrv    C:\windows\system32\drivers\EhStorTcgDrv.sys
16:58:52.0755 0x1d90  EhStorTcgDrv - ok
16:58:52.0792 0x1d90  [ E34DEFC09F2843C2C24C2248F1ABE6D8, 1FD67EB5820A1D2F4402DE9D95DE288DB69D421A8473074FF23491D7CA8B5ACE ] embeddedmode    C:\windows\System32\embeddedmodesvc.dll
16:58:52.0793 0x1d90  embeddedmode - ok
16:58:52.0824 0x1d90  [ 4BB47DE04510888267A48C8C9782CA11, CBC791F1A12FD1BF7FBCC450DEE9206ED9254C5BDD344F56EFEBD1B5C35A19C2 ] EntAppSvc       C:\windows\system32\EnterpriseAppMgmtSvc.dll
16:58:52.0839 0x1d90  EntAppSvc - ok
16:58:52.0839 0x1d90  [ 7A2705148A4BB3CA255F81624338B461, 68AC8F8D2DD8AA4E8F2224A0054DE2AF67EA199217E87CD3C7299B021048F14F ] ErrDev          C:\windows\System32\drivers\errdev.sys
16:58:52.0839 0x1d90  ErrDev - ok
16:58:52.0871 0x1d90  [ 17BE4A35829B37C742084DC02D48E5F0, 7FDA62B56DF585C3F2C6FFB10AC7C0D8F70FA921C4DEA47B2789745CFE2618CE ] EventSystem     C:\windows\system32\es.dll
16:58:52.0893 0x1d90  EventSystem - ok
16:58:52.0940 0x1d90  [ E254E4A24DFEAD22985124A9753125D5, 6B9889B8F11F4D5DCC1CE03BFF7C769C21FCACED9E27BFD5E9AD32521D51440F ] EvtEng          c:\Program Files\Intel\WiFi\bin\EvtEng.exe
16:58:52.0955 0x1d90  EvtEng - ok
16:58:52.0990 0x1d90  [ DFE8A33FBCF6F38182631A4D6097B92D, F9D06780830E74FD5309E6DC5C3EEDB9334A8AE284F381FA91EF2729297F8632 ] exfat           C:\windows\system32\drivers\exfat.sys
16:58:52.0993 0x1d90  exfat - ok
16:58:53.0024 0x1d90  [ C330883C06E2D4CE4F6982F048265D37, 26044DE176056B7F5BF2A50A659243CFD7F25CFEE035B3A3C3165B3699872926 ] fastfat         C:\windows\system32\drivers\fastfat.sys
16:58:53.0024 0x1d90  fastfat - ok
16:58:53.0071 0x1d90  [ 952F10D2116B91BA433842D07879AE7A, 9E1EC0C719877EF198AA4DDBE896E9DDEAD360AAC1FC6DF305E7C5C73C7A761D ] Fax             C:\windows\system32\fxssvc.exe
16:58:53.0071 0x1d90  Fax - ok
16:58:53.0109 0x1d90  [ 2C003DA244EDF9BC3FD058DCB3422798, 78F2A4143E1A0273DF4F778AE9E1C3CEC1F91501114367EE91DADB2D9A7CDC0D ] fcvsc           C:\windows\System32\drivers\fcvsc.sys
16:58:53.0109 0x1d90  fcvsc - ok
16:58:53.0140 0x1d90  [ 9D299AE86D671488926126A84DF77BFD, C076EEDD0524B7D88BC56C97089E0A836CC1AD725E1A544CC4F8DDBB6670C366 ] fdc             C:\windows\System32\drivers\fdc.sys
16:58:53.0140 0x1d90  fdc - ok
16:58:53.0156 0x1d90  [ 47D09B8C312658ACE433E46DDF51C3A5, E76948DA0F51C7DC6D69B7E36D63CE6E98FDE619FA30E91637F75B5084107D22 ] fdPHost         C:\windows\system32\fdPHost.dll
16:58:53.0156 0x1d90  fdPHost - ok
16:58:53.0172 0x1d90  [ 177AC945B20C81400A1525ED7B49A425, FD215A2E718EA38A95D985F53AB3DD44B50C2549AA67F44BA98C4709E492051F ] FDResPub        C:\windows\system32\fdrespub.dll
16:58:53.0172 0x1d90  FDResPub - ok
16:58:53.0193 0x1d90  [ 7B4F6B1006E43FCC768D348AA0E81B67, E63C407158CE9DBCE1264602879A702F83F6D28B59FB60E7A7064354936149CF ] fhsvc           C:\windows\system32\fhsvc.dll
16:58:53.0209 0x1d90  fhsvc - ok
16:58:53.0240 0x1d90  [ 8F2523C9D8F1448FF2156452AF60FA00, 1D39CA54F5F1E62385D9EC041F9445BDDCB63740859B9418AE904FDF3D8388ED ] FileCrypt       C:\windows\system32\drivers\filecrypt.sys
16:58:53.0240 0x1d90  FileCrypt - ok
16:58:53.0272 0x1d90  [ 92ECCFA58C8195B8EA33ED942469D4E6, 8DB12E8CF80ECA22182F9A1F4CA922336A430297F1F596F204ECF4D9D19F30D9 ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
16:58:53.0289 0x1d90  FileInfo - ok
16:58:53.0294 0x1d90  [ 87C51FDD50C17882BA93E28BBABB9847, 8987D80FB77D1D3F9E89B491B1287B027DA26FFC4E4BA7B01E07D4D4FC69E236 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
16:58:53.0294 0x1d90  Filetrace - ok
16:58:53.0310 0x1d90  [ E99261DD76D1C9E05AF575939CAE5AC5, A789724FD2E22AFB2F921836F5C19A21D17F4BBD604771E2908C2651BD31989C ] flpydisk        C:\windows\System32\drivers\flpydisk.sys
16:58:53.0310 0x1d90  flpydisk - ok
16:58:53.0341 0x1d90  [ 25D7A58625E1453E40D36825DE74E4F1, 74119803D35E3C3CC349B44C6CD9EDF6B797F88584B847F0BF9EED542719B86B ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
16:58:53.0357 0x1d90  FltMgr - ok
16:58:53.0410 0x1d90  [ B02001E6EE073EFBFD6BCB6DAB8D3457, 4E3B1B6A0C0393C1DCE74271F42FF4F8556C8D405C7FBEA759759EC8DBE5EA6A ] FontCache       C:\windows\system32\FntCache.dll
16:58:53.0441 0x1d90  FontCache - ok
16:58:53.0525 0x1d90  [ E79DAC43A5E191FC4DDB04197A704BFA, 2FA6C8B5B2DFE66C05828E3F55DFD6268A8210E9BD083F2D09367AD59AF1C6C1 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:58:53.0540 0x1d90  FontCache3.0.0.0 - ok
16:58:53.0556 0x1d90  [ B4175E8BE60B099686FF55CA7D692316, 3158FC5B4D1A2F1FC1346754392AE24AE58999B9061B1CE78A65E785BFFADD52 ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
16:58:53.0556 0x1d90  FsDepends - ok
16:58:53.0572 0x1d90  [ CC71372CEB811A72F1DC99089C5CBF53, BB9DDE74D60E534A6F8A51B63DDBB441245F06A00A0AFD37DBBE86255690946D ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
16:58:53.0587 0x1d90  Fs_Rec - ok
16:58:53.0641 0x1d90  [ 50DFE05C698E9B0A63D95E3D669A105C, 3A7D5AE4A01B90C2ECF22AD2783A84C2329EAB9BACFA5237A7DCC3DC5995A864 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
16:58:53.0657 0x1d90  fvevol - ok
16:58:53.0672 0x1d90  [ B9981A4CB9F728B3312A3885BFAA7204, 12FB2EB2E5D2A912769823DD9C1B33DB358CD0B7FBFC788529EF83DD584334F8 ] gagp30kx        C:\windows\system32\drivers\gagp30kx.sys
16:58:53.0672 0x1d90  gagp30kx - ok
16:58:53.0694 0x1d90  [ 77555B11B264991DDC26872FFCF1AB97, D5F230EEF74EB869F771F8A4AB19C1E6C845BB0EF4A1234882EBDA4FDC431E44 ] gencounter      C:\windows\System32\drivers\vmgencounter.sys
16:58:53.0694 0x1d90  gencounter - ok
16:58:53.0725 0x1d90  [ B0ADC8A97F3C9912F5A553F2088969FB, B850853FF29B1E5C0B951B4A0A69618E7711181B42403ECDB7ADF5036C269426 ] genericusbfn    C:\windows\System32\drivers\genericusbfn.sys
16:58:53.0725 0x1d90  genericusbfn - ok
16:58:53.0741 0x1d90  [ F802FBABF0C4DF1BAA733187B2E476F5, E2533284CEBBB872196B013DD1FBBCA794DB1CAAA37D64849BD9264ECDD2CEE6 ] GPIOClx0101     C:\windows\system32\Drivers\msgpioclx.sys
16:58:53.0756 0x1d90  GPIOClx0101 - ok
16:58:53.0810 0x1d90  [ B89C353AFC8F56D961D07FF1FE7B4BCD, C4491A1E33E0151AF3D7589769D4DCFABC68518A22393A7584FB573B47643B2F ] gpsvc           C:\windows\System32\gpsvc.dll
16:58:53.0826 0x1d90  gpsvc - ok
16:58:53.0857 0x1d90  [ D011B0ADB15F4815310CE1BF4780B33E, 3860630917F83A89FE7A6407CC544505FA4BD754619CF273DD630ABFBAAE42EE ] GpuEnergyDrv    C:\windows\system32\drivers\gpuenergydrv.sys
16:58:53.0857 0x1d90  GpuEnergyDrv - ok
16:58:53.0893 0x1d90  [ 21FB60109E7BCA618D9E068C57FD931D, EE9A6960767DDB194A14B60CD193586268B18CA41CE715724CA219C210E37D47 ] HDAudBus        C:\windows\System32\drivers\HDAudBus.sys
16:58:53.0894 0x1d90  HDAudBus - ok
16:58:53.0910 0x1d90  [ 6B8CB114B8E64C0636EB49F7B914D1FC, 1AD7A43CC5CD99DCEF60C61242B6843D4AD925CE93BA5D75CD8395C7125EF5A7 ] HidBatt         C:\windows\System32\drivers\HidBatt.sys
16:58:53.0910 0x1d90  HidBatt - ok
16:58:53.0926 0x1d90  [ D1AD197CCDAAC0CB4819DA1D6EB17BAE, C370F974D0A1F7B60F47EAFF57B6CCABE82913187F8BFEE169B8237AE91247B1 ] HidBth          C:\windows\System32\drivers\hidbth.sys
16:58:53.0926 0x1d90  HidBth - ok
16:58:53.0957 0x1d90  [ 64909DECCFCC6FB5D9A5BAFDCCB31FEE, E19C91FD8D5102A8C4F6C6FF70CA058BB272FEC1B6E9CBA3A473C49948E6AC7E ] hidi2c          C:\windows\System32\drivers\hidi2c.sys
16:58:53.0957 0x1d90  hidi2c - ok
16:58:53.0972 0x1d90  [ F510F7B7BF61DEAAC04E65C3B65E8D59, 11566086B06FB08B6A179E3068E022DA381C762DC8962D1E1D63DC646DD4D301 ] hidinterrupt    C:\windows\System32\drivers\hidinterrupt.sys
16:58:53.0972 0x1d90  hidinterrupt - ok
16:58:53.0972 0x1d90  [ 90F3ED42D423C942BA5EA54E2FFE7AC7, BF7DE0C8141CD20A6235657BA897A019ABEFF6A01AA3FB202C73C33433CDEAF8 ] HidIr           C:\windows\System32\drivers\hidir.sys
16:58:53.0988 0x1d90  HidIr - ok
16:58:54.0010 0x1d90  [ 46DE2EF6382DD9613CB506760648F262, 419555220794380134A64E1956B83B2FD1D1B6E403C5FC729A9107E14A12E968 ] hidserv         C:\windows\system32\hidserv.dll
16:58:54.0010 0x1d90  hidserv - ok
16:58:54.0057 0x1d90  [ 128DEDDD61915DBA4D451D91D21F0513, 961A0DDA02B0879989300C15E4FF9022882A4CD895D65335C263AC0DD1918314 ] HidUsb          C:\windows\System32\drivers\hidusb.sys
16:58:54.0057 0x1d90  HidUsb - ok
16:58:54.0110 0x1d90  [ 094594A8A6E6976C4C8616FF6F9E257C, 211858B4D5536201DE038D4F680F6BE8C92D7F4DBDF69960F6D784DFF623D403 ] hmpalert        C:\windows\system32\drivers\hmpalert.sys
16:58:54.0110 0x1d90  hmpalert - ok
16:58:54.0294 0x1d90  [ 100154235653C284E595AD56C11E556F, E9E7A040C8654C38853DB280CECBC86FD30348314CF455DD4086233909E846AD ] hmpalertsvc     C:\Program Files (x86)\HitmanPro.Alert\hmpalert.exe
16:58:54.0394 0x1d90  hmpalertsvc - ok
16:58:54.0410 0x1d90  hmpnet - ok
16:58:54.0426 0x1d90  [ 3DC73B1A1B386F64F6C7EA7B86756955, C65828815E1826212109693A4C843290DDBE1A78C1D8BFD217B7482AE42EC255 ] HomeGroupListener C:\windows\system32\ListSvc.dll
16:58:54.0442 0x1d90  HomeGroupListener - ok
16:58:54.0473 0x1d90  [ E2145534FB853921788F52701BED0CAB, DF71F842772FAC21DD8994C97F578A78AC43D06C5F26F752FB69B47DFE3BB112 ] HomeGroupProvider C:\windows\system32\provsvc.dll
16:58:54.0489 0x1d90  HomeGroupProvider - ok
16:58:54.0511 0x1d90  [ C05030AB188C21F23E615813401CE1AF, 924A6FA4AB380C48220D4F5012FB80280C7D33D03CA2B3C69785ECC10D32EDD5 ] hpdskflt        C:\windows\system32\drivers\hpdskflt.sys
16:58:54.0511 0x1d90  hpdskflt - ok
16:58:54.0573 0x1d90  [ 7B7DE6B3DC30F3246958F42C67A6F7BB, 4B66B90CFEC2231B905B21DECC4EC7C6500E546F080A452EF67E724EDF37ADD9 ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
16:58:54.0595 0x1d90  hpqwmiex - ok
16:58:54.0642 0x1d90  [ FF442DCDCE1F6E9FAA9C8AD0CD1D199B, A239414E97B310C9545995B0E723B5E792B08D71F651450EB006AD4D1765E4F7 ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
16:58:54.0642 0x1d90  HpSAMD - ok
16:58:54.0674 0x1d90  [ 5E5445D0A23626EF004479D4370DF13C, B7CE61FA3AA4929F549667FE7581721C039A7393E644C7530D0DFE73A5C32422 ] hpsrv           C:\windows\system32\Hpservice.exe
16:58:54.0674 0x1d90  hpsrv - ok
16:58:54.0727 0x1d90  [ 9B02BA9006BB416680443C6AD6024DE9, 26F1915BECF6253B92F0F4D6CD54A191BE263F9CAFC85811888F872E40B24374 ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
16:58:54.0742 0x1d90  HPSupportSolutionsFrameworkService - ok
16:58:54.0815 0x1d90  [ 7109608928D8AB470D60F47BAD5D153A, 6BB4BC1BC35EF506A65D711E39E26362ADDF95D7FAEFCA536D0F512B60F7E03C ] HPWMISVC        c:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe
16:58:54.0831 0x1d90  HPWMISVC - ok
16:58:54.0915 0x1d90  [ 3BECF0F0DD9942FD502A13ECAE1F4A3B, 1B357D272FB2E9463424E51FCE7C03183D11DEA7DC635A75B2C264940D674045 ] HTTP            C:\windows\system32\drivers\HTTP.sys
16:58:54.0947 0x1d90  HTTP - ok
16:58:54.0962 0x1d90  [ CBA5E88A0F0475B7F49653BB72150BEF, 0F03560D9C30E069D117A555AEE729C81E6BCAE443FA25172D0E9E6903695C67 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
16:58:54.0962 0x1d90  hwpolicy - ok
16:58:54.0994 0x1d90  [ D668FAB4B0397B426EE3D41683B9A1C0, 66F3E3B2ABC3C9B25A0DADBF09818547ED301230374AC5302B4794629A95DDF8 ] hyperkbd        C:\windows\System32\drivers\hyperkbd.sys
16:58:54.0996 0x1d90  hyperkbd - ok
16:58:55.0016 0x1d90  [ 53FDD9E69189E546DE4740F8C4D8AB2F, 45ED5B229ED5FD0CEE8BF52EFF88FD8B1889BF348ED7187926F290B3AD48A76D ] i8042prt        C:\windows\System32\drivers\i8042prt.sys
16:58:55.0016 0x1d90  i8042prt - ok
16:58:55.0016 0x1d90  [ 9A2A2F3C69B9A30B6E78536F6D258BAD, 5E28E132A7300E6F5E0C6439D6BA00F1AEF66D729FF671FDA91274A25A921463 ] iai2c           C:\windows\System32\drivers\iai2c.sys
16:58:55.0016 0x1d90  iai2c - ok
16:58:55.0047 0x1d90  [ 59A20F5AD9F4AE54098154359519408E, E27B7389C9D123CDDA4EC9CBDB06C4AA5000012391F940EE1492419B593608FE ] iaLPSS2i_I2C    C:\windows\System32\drivers\iaLPSS2i_I2C.sys
16:58:55.0063 0x1d90  iaLPSS2i_I2C - ok
16:58:55.0063 0x1d90  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\windows\System32\drivers\iaLPSSi_GPIO.sys
16:58:55.0063 0x1d90  iaLPSSi_GPIO - ok
16:58:55.0078 0x1d90  [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C     C:\windows\System32\drivers\iaLPSSi_I2C.sys
16:58:55.0078 0x1d90  iaLPSSi_I2C - ok
16:58:55.0100 0x1d90  [ 6B0029A0253098CCE28EACCFDB9E7208, E33AD69644E1683A971DA1169B704FBCFD9F715E9550816058E420BB5DE4D946 ] iaStorAV        C:\windows\system32\drivers\iaStorAV.sys
16:58:55.0116 0x1d90  iaStorAV - ok
16:58:55.0132 0x1d90  [ 9652E1E35A92D8C75710C17A63B15796, 72F8C4A49B874226DEE9B7C9704F0E0A98DAA2DF4EAE2F2258E8324ACBD242E4 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
16:58:55.0147 0x1d90  iaStorV - ok
16:58:55.0163 0x1d90  [ FFADF691F7BF727AF5C863454A372723, FCF5A5595E8C9C937BE9F1C3AB5D9BD0EFE82DE1298D12085E0CCD84A186D2F2 ] ibbus           C:\windows\System32\drivers\ibbus.sys
16:58:55.0163 0x1d90  ibbus - ok
16:58:55.0178 0x1d90  ibtsiva - ok
16:58:55.0201 0x1d90  [ 2487FC39CE375A6E906E21D91B919E74, 156D9EC2EC4964A1967D7048B2CF99D1CDF466572D63F17CE7A25436200BCD5F ] ibtusb          C:\windows\system32\DRIVERS\ibtusb.sys
16:58:55.0216 0x1d90  ibtusb - ok
16:58:55.0232 0x1d90  [ 57C88C15CEC97318F580D7F4327AAA46, FD3AD83576804DA819F48E3E198FE470420E730F6118AD0E719A91E67C80D3FE ] icssvc          C:\windows\System32\tetheringservice.dll
16:58:55.0248 0x1d90  icssvc - ok
16:58:55.0248 0x1d90  IEEtwCollectorService - ok
16:58:55.0301 0x1d90  [ A9D658F0A370F6239A5ABDCC86C11CBA, 22200BD0758E660BB2B369CDCE4D718F28F163D99DE4616B2E0631138B24D0AB ] IKEEXT          C:\windows\System32\ikeext.dll
16:58:55.0332 0x1d90  IKEEXT - ok
16:58:55.0348 0x1d90  [ ECDB27420D3A98424666904525A8562A, BDA98C3C95F2AD79945EF8213D5C65064052C09C82DD36F0D6724E1D21DCC30A ] intelide        C:\windows\system32\drivers\intelide.sys
16:58:55.0348 0x1d90  intelide - ok
16:58:55.0348 0x1d90  [ 8FF1978643EFD219C5BA49690191D701, 6FD78A8490107C80090D7125644B8C910855374BE1373D1D6B199307C79680BA ] intelpep        C:\windows\system32\drivers\intelpep.sys
16:58:55.0348 0x1d90  intelpep - ok
16:58:55.0363 0x1d90  [ B61B60F36E1C8022FA8166ABF0F66B07, 23161F1DA51D44D936329E62DF4C2DAEE3DDD4B3D62CC501A888C0E149788968 ] intelppm        C:\windows\System32\drivers\intelppm.sys
16:58:55.0363 0x1d90  intelppm - ok
16:58:55.0401 0x1d90  [ CA0D42029AFFC4514D295E1EF823D02D, F2A05CB2B2E8C843FD02DC37E86F23CF928A4B2F9044424A60DE4E82B87DF5C3 ] IoQos           C:\windows\system32\drivers\ioqos.sys
16:58:55.0401 0x1d90  IoQos - ok
16:58:55.0401 0x1d90  [ 6E3F9D95235DFC9417384080A216F310, 6F13D72661038A91CFABB360621F4B169D78955C3EAD64956A7C825ABAEC5121 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
16:58:55.0417 0x1d90  IpFilterDriver - ok
16:58:55.0448 0x1d90  [ 5AAB28A6AC2AAC9F66D4EAB6695D0474, BDAB1D04989788EA945C7FE0DE962F0FEC672D9703C271F8469822A91D7462B9 ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
16:58:55.0479 0x1d90  iphlpsvc - ok
16:58:55.0479 0x1d90  [ 4F527ECB5EAB47D8EAF34A469666C469, 8FFBEEF42515B6A7758BE579ED69E3911856CBF7710D9785011332C5E3DFE495 ] IPMIDRV         C:\windows\System32\drivers\IPMIDrv.sys
16:58:55.0479 0x1d90  IPMIDRV - ok
16:58:55.0502 0x1d90  [ 9E5E8F2A1996F23B7E9687846AA81B01, 29E59384A4F92B3B4F2974942C91A12380113C13D3800900B5F44E2355D05455 ] IPNAT           C:\windows\system32\drivers\ipnat.sys
16:58:55.0502 0x1d90  IPNAT - ok
16:58:55.0517 0x1d90  [ C317EB660138BC9CBFE37CCDE56351AE, F3AF6C573419D7F65C96A4841D4F056CA281CD5AFACDC7A5F586A390DC6E615B ] IRENUM          C:\windows\system32\drivers\irenum.sys
16:58:55.0517 0x1d90  IRENUM - ok
16:58:55.0533 0x1d90  [ 531994A6D9399D9B74BE12B5BB58A81E, 6D5CF540C777F4828E1D4C5FE58EE41E6C2F5F399C554DC85F19D1E52229B094 ] isapnp          C:\windows\system32\drivers\isapnp.sys
16:58:55.0533 0x1d90  isapnp - ok
16:58:55.0548 0x1d90  [ 68D5354A4A9692EEC24664C60F47D4A2, 92124E98B6E286B6127DC6D0BFACC9C6D293D58EAE2B47B45532714CE6A6D0CD ] iScsiPrt        C:\windows\System32\drivers\msiscsi.sys
16:58:55.0564 0x1d90  iScsiPrt - ok
16:58:55.0564 0x1d90  [ 701D7DB13B0815E7076EF4CB4CE981F8, 02585661656C0069AC318B82DE83DAC660451A0B970FDBCA0F7A8B4CBF7D93A9 ] kbdclass        C:\windows\System32\drivers\kbdclass.sys
16:58:55.0580 0x1d90  kbdclass - ok
16:58:55.0595 0x1d90  [ 884EBBDDBF5968003B40185BD96FF0E6, E3934D0FF0BEDDF5526AF529F7D15BA8BE479383894975B1AF1A1818C394A6E3 ] kbdhid          C:\windows\System32\drivers\kbdhid.sys
16:58:55.0598 0x1d90  kbdhid - ok
16:58:55.0618 0x1d90  [ 6B3A0C7902811E6372643447E41F7048, 30667B56A306CFD5D15BC46F8E7D9E167612E71B6C8F554406E706A6330F5B94 ] kdnic           C:\windows\System32\drivers\kdnic.sys
16:58:55.0618 0x1d90  kdnic - ok
16:58:55.0633 0x1d90  [ D44292C0CD22706CBD704B7555EB65B5, 2DFD70876ED10E6083552C94BBA3488F2BEEB851C47DA24B27319351BD6FEE5C ] KeyIso          C:\windows\system32\lsass.exe
16:58:55.0633 0x1d90  KeyIso - ok
16:58:55.0664 0x1d90  [ 0508FE21E3400F662E5E0E98354D9524, 40A304EF163EB3C9F52006EA0B4AE4C091BBBCB8A3A2FA932F4D36C1DE986EF4 ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
16:58:55.0664 0x1d90  KSecDD - ok
16:58:55.0697 0x1d90  [ 713775F471BDAE2FC942B3274A7A8642, D00516DB5C110546E9750F414A404BBABE980CDEF2C0D6CB8A7FC4820D9FD969 ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
16:58:55.0702 0x1d90  KSecPkg - ok
16:58:55.0702 0x1d90  [ E9BB0023D730701BB5D9839B44F5E6B5, 19D4BAC09424D331922472CFD2D0E32BEFA9188A6AF194C8D1F93FD77CE36691 ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
16:58:55.0702 0x1d90  ksthunk - ok
16:58:55.0733 0x1d90  [ 71DE1AD9B23661EEC4F2A6EAA5A7D33D, 3219AEF3D6AE5933AE669FD2ED9ED95A8780612E39F31DB3DB9ED6B6244C5F7B ] KtmRm           C:\windows\system32\msdtckrm.dll
16:58:55.0749 0x1d90  KtmRm - ok
16:58:55.0780 0x1d90  [ D0C1F75731BAC6F85C7BFB4ACE7B88B3, ED0AA7F389F521B6637BB3FE235162231AEAB2C6B452452D46D31C5D0E23DF00 ] LanmanServer    C:\windows\system32\srvsvc.dll
16:58:55.0780 0x1d90  LanmanServer - ok
16:58:55.0818 0x1d90  [ D8C01003D2E2E1B488D9BAEA11970B28, D6322027062935ADF4F50415D19257B202CF2B04EDF2B46DE110BBF758DAE006 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
16:58:55.0818 0x1d90  LanmanWorkstation - ok
16:58:55.0849 0x1d90  [ 02C54C5C7EBE371EC0C59795ED22213F, 712AFE0EDF40436124F3FD55ED9B5A3A33A8761A58F4D482BB65229741B1C270 ] lfsvc           C:\windows\System32\lfsvc.dll
16:58:55.0849 0x1d90  lfsvc - ok
16:58:55.0865 0x1d90  [ 01BF128CC327A2E53898F732AF52B3DB, D62ACDA69D9942F9CEF400874DBB6EAF9811D9657CBFEF89174F88D76BB8D8EA ] LicenseManager  C:\windows\system32\LicenseManagerSvc.dll
16:58:55.0865 0x1d90  LicenseManager - ok
16:58:55.0881 0x1d90  [ EC34EED89C34B27C292166B725AC7A7B, 58F1BA0CB7743314AC012A82F8CE4072CBDD05D9570C52BC18DC551882F5B1BA ] lltdio          C:\windows\system32\drivers\lltdio.sys
16:58:55.0881 0x1d90  lltdio - ok
16:58:55.0903 0x1d90  [ 2C23283A0815B048C06D8C0ED76AAD95, 4335546939C1A98CFE9A4403CC82D79CC713439E4DFD1F4760FDD867305151E0 ] lltdsvc         C:\windows\System32\lltdsvc.dll
16:58:55.0918 0x1d90  lltdsvc - ok
16:58:55.0934 0x1d90  [ CB6365E995F4DB856866500EDD8F61C1, 717ED387F245CAC68217B0F393D7B8AB3805721AB2C4D2D43430FE6E740F0856 ] lmhosts         C:\windows\System32\lmhsvc.dll
16:58:55.0934 0x1d90  lmhosts - ok
16:58:55.0965 0x1d90  [ 961F28D879D345BFA50AF51285C90F2E, F9931A436651F695B746BC0C07E833D9C9F64126746DF976E691E6CAE26DAC9B ] LSI_SAS         C:\windows\system32\drivers\lsi_sas.sys
16:58:55.0965 0x1d90  LSI_SAS - ok
16:58:55.0981 0x1d90  [ 6BFB8D1B3407518BE06B6F81F92FA0F5, DE0818DCC0D8D1D30A29AB167C65461A78100ABE2368637CEB9D0ED2B4E88D8E ] LSI_SAS2i       C:\windows\system32\drivers\lsi_sas2i.sys
16:58:55.0981 0x1d90  LSI_SAS2i - ok
16:58:56.0002 0x1d90  [ BE0E47988D78F731DEC2C0CB03E765CB, CA0015E87A3962611DBF714253FA618A6568346BAE640884432C1D44DE4C8684 ] LSI_SAS3i       C:\windows\system32\drivers\lsi_sas3i.sys
16:58:56.0003 0x1d90  LSI_SAS3i - ok
16:58:56.0019 0x1d90  [ F99BF02BE9219986817BF094981EEB18, 4303C772366065885C5D937B2E9AC0BF80C84BFB2737716055AD57BF6AADD673 ] LSI_SSS         C:\windows\system32\drivers\lsi_sss.sys
16:58:56.0019 0x1d90  LSI_SSS - ok
16:58:56.0050 0x1d90  [ FFAA37FBBDD161E8C200C83B40F7872E, 0637B3119FC220CB8E23EE6694A9F1F25CF8D61008B14F6E30FDC17DCF9E077E ] LSM             C:\windows\System32\lsm.dll
16:58:56.0065 0x1d90  LSM - ok
16:58:56.0081 0x1d90  [ 2FCF837196082864F66CFD9CAB256275, 8BE01C3BCBC1E6E5D1FD7F49E936482E61ACB805F397AB81B8D39C2F0F1083BD ] luafv           C:\windows\system32\drivers\luafv.sys
16:58:56.0081 0x1d90  luafv - ok
16:58:56.0119 0x1d90  [ 9388DED435C2B1810744727AAF6D0621, D3C686C73C754469514A31521262D407D98D10FBC97263CA147F577782D6B62E ] MapsBroker      C:\windows\System32\moshost.dll
16:58:56.0119 0x1d90  MapsBroker - ok
16:58:56.0324 0x1d90  [ ECB760B2391608BA4E0A7987ADA70CCF, 03B39EA56CD46666CFA8467AA246A63924C0F4AACD27E51FD5E1192000B4A577 ] MBAMService     C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
16:58:56.0424 0x1d90  MBAMService - ok
16:58:56.0471 0x1d90  [ CB258766E99AB3B57E6FDF32177804A2, 61833AF290A3E10B0ABF9773625C1DD89B337D8F65BC6650B5BBB7393B77652B ] MBAMSwissArmy   C:\windows\System32\Drivers\mbamswissarmy.sys
16:58:56.0487 0x1d90  MBAMSwissArmy - ok
16:58:56.0540 0x1d90  [ 39DEB9FBBB76E7136DCA301511CF1856, F5CF8B0518ED6F7B47959EED6EFFB3F6E2C7A1E1483E63CCAC3638F6DBBC941D ] McAfee Vpn Service C:\Program Files (x86)\McAfee Safe Connect\service\VpnService.exe
16:58:56.0556 0x1d90  McAfee Vpn Service - ok
16:58:56.0571 0x1d90  [ 2ED29B635F35E31A1C0D3DDB7DD2AD03, F70CC20B98C2DBCD13B0D509D92B3BC3828D1B88F3ACD60C860E163064844181 ] megasas         C:\windows\system32\drivers\megasas.sys
16:58:56.0571 0x1d90  megasas - ok
16:58:56.0608 0x1d90  [ 22E3CB85870879CBAE13C5095A8B12E3, 5FA5A8EFBA117089CFDBE09743A16BC3A7CC2042C96ABA1F57901747493106BF ] megasr          C:\windows\system32\drivers\megasr.sys
16:58:56.0609 0x1d90  megasr - ok
16:58:56.0656 0x1d90  [ D70476AD02D6FD75282B196D3B58831D, F93565261EC57F43445C082DBCE5CE0D4B121A5C34B818A09AB5B311457588FD ] MEMSWEEP2       C:\windows\system32\1B3F.tmp
16:58:56.0656 0x1d90  MEMSWEEP2 - ok
16:58:56.0707 0x1d90  [ F2C23E25636BCA3543E6AD7858E861B7, 0CAB0A037471B4858CE9477E49BF50A5E3E6685E05F8A4BD2D9238551D5073A6 ] MessagingService C:\windows\System32\MessagingService.dll
16:58:56.0709 0x1d90  MessagingService - ok
16:58:56.0924 0x1d90  [ D41920FBFFF2BBCBBC69A5B383AD022E, E66218A8303422EA10C19BA12343740B9A1A70B11B39E185E805B4F74CD2B75E ] mlx4_bus        C:\windows\System32\drivers\mlx4_bus.sys
16:58:56.0940 0x1d90  mlx4_bus - ok
16:58:56.0956 0x1d90  [ 64BD0C87064EA20C2D3DC4199F9C239C, ED69706277A58ED2C5F2B1B4E9A4A9C7C20173D46EB57FB31D8B63340BA23193 ] MMCSS           C:\windows\system32\drivers\mmcss.sys
16:58:56.0956 0x1d90  MMCSS - ok
16:58:56.0956 0x1d90  [ 8D4B46FA84A3A3702EDADD37FAC6EDBA, E3B9E12BD324FE637C365FDC5E490C41889047004D4FC8F7D78339484F2F717B ] Modem           C:\windows\system32\drivers\modem.sys
16:58:56.0971 0x1d90  Modem - ok
16:58:56.0987 0x1d90  [ 78FEC1BDB168370F131BFBFEA0A04E9D, E07B1BC429C2CFBD6162F89A6502C67A4BAD904ADC05D3505D87A0B2BCE1061B ] monitor         C:\windows\System32\drivers\monitor.sys
16:58:57.0003 0x1d90  monitor - ok
16:58:57.0009 0x1d90  [ D1CC0833CFBC4222A95CAA5D0C8C78FF, 54F04374C6D3EFF5C1B794C069870458F10757E5773AEE911957089EAF51EC8D ] mouclass        C:\windows\System32\drivers\mouclass.sys
16:58:57.0025 0x1d90  mouclass - ok
16:58:57.0040 0x1d90  [ C2E05EC6B80BCF5AE362DA873E1BCE64, 4ABE5CA2005A54E92259EDB52205A5C59BDB83026FC0CD7CBB1E3A003C2B535B ] mouhid          C:\windows\System32\drivers\mouhid.sys
16:58:57.0040 0x1d90  mouhid - ok
16:58:57.0072 0x1d90  [ D5B7668A8F6C67C51FA5C6C513396D6C, 35985AD89344A8464BD78B8DA6A772E4E60A2EB93072AC23673A86EFD0B2270A ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
16:58:57.0072 0x1d90  mountmgr - ok
16:58:57.0109 0x1d90  [ 07179E06D83B3C9B5BF628E72E5A4985, B3263A363A1D32215D7DCF7862FEE87172BBFD7F930C9C4CBD2C68A8E8CBEF03 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:58:57.0109 0x1d90  MozillaMaintenance - ok
16:58:57.0125 0x1d90  [ 5FBCB85D127BE21E3A9DAF11A13C00EA, D00AB99CC813E26B0BD2D39161D4138AB89A06B3E3A28712F2D5BCA60905BEC4 ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
16:58:57.0125 0x1d90  mpsdrv - ok
16:58:57.0172 0x1d90  [ 195C878E3F28E026D5AC4547E71B670B, 352BDE806D1CED8F0ED77B3F8A2E2E6F9A3F403AE8CDCD637C19E4C9ADD189F9 ] MpsSvc          C:\windows\system32\mpssvc.dll
16:58:57.0205 0x1d90  MpsSvc - ok
16:58:57.0225 0x1d90  [ 4B08308D8A2B21E96D77ABA478CB081E, 08373CEB7E538E08FD158DDF279CE3E99D083AB45C8FF028FC85786CC593163E ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
16:58:57.0225 0x1d90  MRxDAV - ok
16:58:57.0256 0x1d90  [ E899947F5A85901F75AB04C8E5BE60B1, F9CA0023FBB7F0E88E1C2268A6802BD9ED9C635AFABC2F02650E96AD463B2518 ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
16:58:57.0272 0x1d90  mrxsmb - ok
16:58:57.0306 0x1d90  [ 239C6786298089970A55E38D30A83CFD, 7C3049EDCA6EE5B23D643573FEFF3867D68A9BF9331D169CCED8869D385A0780 ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
16:58:57.0309 0x1d90  mrxsmb10 - ok
16:58:57.0340 0x1d90  [ A413DAC978C8F277C46B2A4071162D46, CED74BE70AF07814A434FAC2D75A27658D76B424220164B53B93C5C2E6F7356B ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
16:58:57.0340 0x1d90  mrxsmb20 - ok
16:58:57.0372 0x1d90  [ A4411C522D41707D5BCA817A5BB9E30B, EF7505BE475ECAB2B5E66A7419EDAF42A7E7A65BAD3BBE346A8CEE5DD69782CC ] MsBridge        C:\windows\system32\drivers\bridge.sys
16:58:57.0372 0x1d90  MsBridge - ok
16:58:57.0387 0x1d90  [ 807A6636828E5F43C10A01474B8907EE, F275645F4F0D0A796C33C03EA7FA563A0B890AB3A93E5F99C5EA166F91D249B1 ] MSDTC           C:\windows\System32\msdtc.exe
16:58:57.0405 0x1d90  MSDTC - ok
16:58:57.0425 0x1d90  [ D123343DDB02E372B02BF2C4293F835F, 8E02D9F7E5DA717B64538444B3FE1C55AA4B0F26F51DA20947E971D27EA09D12 ] Msfs            C:\windows\system32\drivers\Msfs.sys
16:58:57.0425 0x1d90  Msfs - ok
16:58:57.0456 0x1d90  [ B3358F380BA3F29F56BE0F7734C24D5F, 229D9E72C429AC51BF6E7C8306218620CB1AA50FE39BA6C11ED0F643E7AF90E5 ] msgpiowin32     C:\windows\System32\drivers\msgpiowin32.sys
16:58:57.0456 0x1d90  msgpiowin32 - ok
16:58:57.0487 0x1d90  [ B2044D5D125F249680508EC0B2AAEFAC, 9631FF42DA5A7CEE1F2607AA8972EF0A67616F0EEEBC95F97B1C8F5A577ED5C4 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
16:58:57.0487 0x1d90  mshidkmdf - ok
16:58:57.0509 0x1d90  [ 36ABE7FC80BED4FE44754AE5CFB51432, FB89DF3A50C52B69D4E831A370157D1901810093A0D7D7120A120FC5C6E14BF5 ] mshidumdf       C:\windows\System32\drivers\mshidumdf.sys
16:58:57.0509 0x1d90  mshidumdf - ok
16:58:57.0525 0x1d90  [ 59307FEAFC9E72EEEC56B7FD7D294F4C, 56576635870FC68980977FFA0E7F8E8D69A7981DECF5B52D0B2A82E3BA6685EA ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
16:58:57.0525 0x1d90  msisadrv - ok
16:58:57.0556 0x1d90  [ 236A38F5CB0A23BF0ACCD70ED0BD7F70, 8106B528458E6C8E4437D9064D58F10FF195E67CD308AEBBD5F860AD2D59DCC4 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
16:58:57.0556 0x1d90  MSiSCSI - ok
16:58:57.0572 0x1d90  msiserver - ok
16:58:57.0588 0x1d90  [ E9457EDFEBC774199F907395C6D09CA2, C3655CE83F4AD1258382722E9A99C33FDD3AA40B62CFEB8DFDD141E254E6DCE2 ] MSKSSRV         C:\windows\system32\DRIVERS\MSKSSRV.sys
16:58:57.0588 0x1d90  MSKSSRV - ok
16:58:57.0610 0x1d90  [ C85D79735641D27C5821C35ECDDC2334, C1BAFD98122B04665870171C143EC119181351D10777A83680A63BF305703FF3 ] MsLldp          C:\windows\system32\drivers\mslldp.sys
16:58:57.0610 0x1d90  MsLldp - ok
16:58:57.0626 0x1d90  [ EF75184B64356850D0F04D049C253526, 325476F53372BD70201347F044C8EFEC0DB939E1926454B6DCC0CF7864969650 ] MSPCLOCK        C:\windows\system32\DRIVERS\MSPCLOCK.sys
16:58:57.0626 0x1d90  MSPCLOCK - ok
16:58:57.0626 0x1d90  [ 543933D166C618E7588EA77707EC1683, 84A65D277E28FDD7CE2345188891093AC88B577E4C528AD39AB629E341199688 ] MSPQM           C:\windows\system32\DRIVERS\MSPQM.sys
16:58:57.0626 0x1d90  MSPQM - ok
16:58:57.0657 0x1d90  [ 182711E9DDF70121A20EBB61B2DFB9E8, 70606503F6280EA3175B9AEC8370A8F461575755DA86EF6E9C9D04EAD61481FA ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
16:58:57.0657 0x1d90  MsRPC - ok
16:58:57.0688 0x1d90  [ E887FFDD6734C496407E9219225CB6FF, 0EC9A79224BCE5D0A782E62CC38E3494E8FB65DFC07C66D25C5A1A351121C27D ] mssmbios        C:\windows\System32\drivers\mssmbios.sys
16:58:57.0688 0x1d90  mssmbios - ok
16:58:57.0706 0x1d90  [ 83A2AB75951000D681FABDB80C07AEFC, 3B2F582F097E3F934C4587B27CB05525350F36924B74CA6BCD364878FA8EC273 ] MSTEE           C:\windows\system32\DRIVERS\MSTEE.sys
16:58:57.0707 0x1d90  MSTEE - ok
16:58:57.0726 0x1d90  [ D65DB6F9285AF96151C937ABF027AEA8, 8BBB3DDB824C589663F81DED0C3D04EDAFFFDA64DBDF6F32217401523C9D51E5 ] MTConfig        C:\windows\System32\drivers\MTConfig.sys
16:58:57.0726 0x1d90  MTConfig - ok
16:58:57.0757 0x1d90  [ 74CADDF07A773FD9B5D840FD014A0430, 70FAB35A26FA4239E1F8095833C6F72B0DB7EE1B7742543FC70A000D52C7486E ] Mup             C:\windows\system32\Drivers\mup.sys
16:58:57.0757 0x1d90  Mup - ok
16:58:57.0757 0x1d90  [ 218705233D02776AE4D19CC37D985C1B, 3D92925867B6B8FFAF78E4080139DCB3D45E1E6E1D0AFB6A4FE248B002BD8471 ] mvumis          C:\windows\system32\drivers\mvumis.sys
16:58:57.0773 0x1d90  mvumis - ok
16:58:57.0807 0x1d90  [ 2DD0578385A2EEE7AE418BAB181F67C2, 2ED8C8B67B56457F2FC5B695195D15314923533E7F30D56CF8F3E04FFF27C523 ] MyWiFiDHCPDNS   c:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
16:58:57.0810 0x1d90  MyWiFiDHCPDNS - ok
16:58:57.0841 0x1d90  [ 3E512892A7727770660AEE2802869E72, DAA38FDB058FAD219033687D31EBD99F790F1AC7022AA79735D4C9746E3032FF ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
16:58:57.0857 0x1d90  NativeWifiP - ok
16:58:57.0872 0x1d90  [ A340A4B27CC7DEDDF953B7E2C9699747, 4C5AB23BD0C69B17E9BD29CAFEDC100A6EFC78BAB645B007FCAE4318C459D345 ] NcaSvc          C:\windows\System32\ncasvc.dll
16:58:57.0888 0x1d90  NcaSvc - ok
16:58:57.0909 0x1d90  [ 24146738C422814EEB2A98FF1FC5C6E1, 3C70C6768681CE63DED339822EFB36194037B987D92456B9E955061A3A3C63BC ] NcbService      C:\windows\System32\ncbservice.dll
16:58:57.0909 0x1d90  NcbService - ok
16:58:57.0941 0x1d90  [ A928C891C81649ECDC4A90ECF8EEA353, 5B9A6AC719C2AA9B9675709444F8A91669599148D5AD80292A6C4CFB87381074 ] NcdAutoSetup    C:\windows\System32\NcdAutoSetup.dll
16:58:57.0941 0x1d90  NcdAutoSetup - ok
16:58:57.0956 0x1d90  [ B57CE307DA101C739885B7CC0678077F, F7F45DB6D306060F0FE0E59F39C3B95F6A9B6173930F22C5C41B2003895D6642 ] ndfltr          C:\windows\System32\drivers\ndfltr.sys
16:58:57.0956 0x1d90  ndfltr - ok
16:58:58.0010 0x1d90  [ E582DA849A58524E645545FB68B6625D, B74E2CF078F6C575EFC4A2E4293D03FE6BA933307D656E0E57FFA17EF324948D ] NDIS            C:\windows\system32\drivers\ndis.sys
16:58:58.0041 0x1d90  NDIS - ok
16:58:58.0057 0x1d90  [ 202260E7CDD731A32AF62ABD1ABEE008, 0E019FAE09B2659CC3267756DB962CCD69172BA67E3288B491F7B455287A5392 ] NdisCap         C:\windows\system32\drivers\ndiscap.sys
16:58:58.0057 0x1d90  NdisCap - ok
16:58:58.0072 0x1d90  [ A1D473D0CF10561F29B58EA7C5412A92, 3DBFC1D769E03E30C87FF4F30A9B523A69A7E0CD4EB87F8A9ECE190FEB84C569 ] NdisImPlatform  C:\windows\system32\drivers\NdisImPlatform.sys
16:58:58.0088 0x1d90  NdisImPlatform - ok
16:58:58.0110 0x1d90  [ 1A0AE283B8DE6BB76412A0F8213D45AC, 91AFFDC7A9277EB59CD54021049BEA715078F90470B8A12F3E9F1386DF068D2D ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
16:58:58.0110 0x1d90  NdisTapi - ok
16:58:58.0126 0x1d90  [ A74EE2D2C0BFF5EC3A6185791868C4CA, A346320DEBEAE890575B4C6594FB3A3A9890A0E86881ADD8376E442282C88D38 ] Ndisuio         C:\windows\system32\drivers\ndisuio.sys
16:58:58.0126 0x1d90  Ndisuio - ok
16:58:58.0141 0x1d90  [ 32A9BD1342640D48AD85C8B3E812B984, B702B05A0180472139B35B105DD3B6B6F75AEDC9DD1EE342FB576259076455AE ] NdisVirtualBus  C:\windows\System32\drivers\NdisVirtualBus.sys
16:58:58.0141 0x1d90  NdisVirtualBus - ok
16:58:58.0173 0x1d90  [ C0D4E47FE99B415DC1C95E386E8A4D3A, 9C16639B9E7A29DE89BFC3E98D29C55FDAC475400EC09DC20666ACC47DC3EF92 ] NdisWan         C:\windows\System32\drivers\ndiswan.sys
16:58:58.0173 0x1d90  NdisWan - ok
16:58:58.0188 0x1d90  [ C0D4E47FE99B415DC1C95E386E8A4D3A, 9C16639B9E7A29DE89BFC3E98D29C55FDAC475400EC09DC20666ACC47DC3EF92 ] ndiswanlegacy   C:\windows\system32\DRIVERS\ndiswan.sys
16:58:58.0188 0x1d90  ndiswanlegacy - ok
16:58:58.0204 0x1d90  [ 50AEF8EF0064A91ABB08D858D039C9DE, 16F1CBE1EC3778D157CC054261068C8D7F8A72D85853CB70178F8DF81D238C8F ] ndproxy         C:\windows\system32\DRIVERS\NDProxy.sys
16:58:58.0207 0x1d90  ndproxy - ok
16:58:58.0226 0x1d90  [ 883A36E2FF7FA3E1281CB575579FE3AF, F1BE02B13C090E2E36BD211055FC980E79BD14F72042773A3619A5143AAEE485 ] Ndu             C:\windows\system32\drivers\Ndu.sys
16:58:58.0226 0x1d90  Ndu - ok
16:58:58.0242 0x1d90  [ 026618ECF6C4BEBDCB7885D42EC0DBE4, 8E7E13361DCF8748FA3AD518B3DE0A3DCE932316EE32E5529E75785BC5395AD1 ] NetBIOS         C:\windows\system32\drivers\netbios.sys
16:58:58.0242 0x1d90  NetBIOS - ok
16:58:58.0273 0x1d90  [ 4948D06A3FF3B94E1B92BE3A81735C14, 98B0E3E98D6975ABB25C16A8EC5829ECCBE18645BC90C8E561076A50BB0B00AD ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
16:58:58.0306 0x1d90  NetBT - ok
16:58:58.0326 0x1d90  [ D44292C0CD22706CBD704B7555EB65B5, 2DFD70876ED10E6083552C94BBA3488F2BEEB851C47DA24B27319351BD6FEE5C ] Netlogon        C:\windows\system32\lsass.exe
16:58:58.0326 0x1d90  Netlogon - ok
16:58:58.0342 0x1d90  [ 996B7517091FA36F4EAC01745F2D5497, 1F50F3839E47F9F917D2592593A30DE241D3151E7475D3C11091064FD9302D14 ] Netman          C:\windows\System32\netman.dll
16:58:58.0358 0x1d90  Netman - ok
16:58:58.0389 0x1d90  [ A059F75402710535A90A8D043674A514, E98536DF74A2B75FDBA6B866DC1909544292DFE5E14F984941470FBA6E8D810C ] netprofm        C:\windows\System32\netprofmsvc.dll
16:58:58.0411 0x1d90  netprofm - ok
16:58:58.0442 0x1d90  [ D8CAB1807EA429C2C647FBC33C30CC88, 8D7CD300A5345444ED39F7BD81B64DEDC4457AF66B5993E9F6A250AE6AD02130 ] NetSetupSvc     C:\windows\System32\NetSetupSvc.dll
16:58:58.0458 0x1d90  NetSetupSvc - ok
16:58:58.0489 0x1d90  [ 9E9BEB22644CE1DA521A1D7821BF891F, 5480D52AE1942205B513F916DBCBF5B5F2FFF92D927F4E598FBA618E75BBC2E9 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:58:58.0510 0x1d90  NetTcpPortSharing - ok
16:58:58.0727 0x1d90  [ 82774B923E5E30155BAEC23703FDA1F4, FBA77E86BC65EDFAA97C933D30CCAC1C0BD1B7DD44BCEB57DEB92B7DE0929936 ] Netwtw04        C:\windows\system32\DRIVERS\Netwtw04.sys
16:58:58.0889 0x1d90  Netwtw04 - ok
16:58:58.0942 0x1d90  [ 4968DA7A326538EE2524BDF5E4910FCD, 379A934C98DA846972B0F75D2BAD4220AEA44CAFF9542D336CA45A77136806FF ] NgcCtnrSvc      C:\windows\System32\NgcCtnrSvc.dll
16:58:58.0942 0x1d90  NgcCtnrSvc - ok
16:58:58.0974 0x1d90  [ 40582B054B00B56CB0D821C5EEF8F66D, 8E3269B29EE5EB633BC6D77BA01E24A180D631A0998B18DF9AF788E9CB25E3E6 ] NgcSvc          C:\windows\system32\ngcsvc.dll
16:58:58.0989 0x1d90  NgcSvc - ok
16:58:59.0027 0x1d90  [ 1B8F07B59F7DAE02264FB8A16088C467, 1795DA9F72C34A9F47D9AAF5E95D40C3296948EB89D9600679AB4660671A5C65 ] NlaSvc          C:\windows\System32\nlasvc.dll
16:58:59.0043 0x1d90  NlaSvc - ok
16:58:59.0058 0x1d90  [ 465DC580170CD844206D7E3EF1DBF2A1, 5A14001029BE154C708CCA34449B280905DB79978FC7F0BE0CF20B20E47752CF ] Npfs            C:\windows\system32\drivers\Npfs.sys
16:58:59.0058 0x1d90  Npfs - ok
16:58:59.0090 0x1d90  [ 29395C214D2CD4C81F73166AB988A797, 3631EB2EA17E455ECD151C0BC9A3DF6EC87C75B15DC9B607CFB68D7C463E04B7 ] npsvctrig       C:\windows\System32\drivers\npsvctrig.sys
16:58:59.0090 0x1d90  npsvctrig - ok
16:58:59.0127 0x1d90  [ 47D4A22453F2822AAD415989223B3A7C, 76D0C99A65AC57D9F3C28B1CD444E59249DA6AB3C503D12E8A336F249A1324DA ] nsi             C:\windows\system32\nsisvc.dll
16:58:59.0127 0x1d90  nsi - ok
16:58:59.0158 0x1d90  [ 04ECABAF6FEEAB1663FE7E5D96359417, 2A0B00BB3D43AF703BE394D7645C59592D2FCAABB6DBDA1B508E9396A5070754 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
16:58:59.0158 0x1d90  nsiproxy - ok
16:58:59.0242 0x1d90  [ A4B1DF1FF5783975C6D926340D0C79C9, F2E1E68951F88C9FF9B97409B52073018EEE35CB979F3CAF9FFD6C0EC115783E ] NTFS            C:\windows\system32\drivers\NTFS.sys
16:58:59.0274 0x1d90  NTFS - ok
16:58:59.0311 0x1d90  [ 6DBD703320484C37CEA9E4E2D266A8CE, 85D6F73C0E3FDE16829C9BC0D13DD89E64183EAE02F84607F6B8440CB7F366E6 ] Null            C:\windows\system32\drivers\Null.sys
16:58:59.0327 0x1d90  Null - ok
16:58:59.0343 0x1d90  [ 604D27CC38CC23493F218D0BB834B3FF, EF5E5759CCF16DD97271C82DAF47FB2086EBCA5DE7D05177B70CA1197B95F41E ] nvraid          C:\windows\system32\drivers\nvraid.sys
16:58:59.0343 0x1d90  nvraid - ok
16:58:59.0358 0x1d90  [ 8B50D897657AB4A15FD9E251BBF7D107, 36036130DD46D9BF105AC7176E219F3BE7D1168A660A0F8DFF76F61FBFA4B417 ] nvstor          C:\windows\system32\drivers\nvstor.sys
16:58:59.0358 0x1d90  nvstor - ok
16:58:59.0374 0x1d90  [ 31F990B2B6B91E9D7A667405CE12FCB1, 907E095D1E83CDAFF34BE789FC41CDD7BB4DEE23261E1D03C1CF0D4D030534AC ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
16:58:59.0374 0x1d90  nv_agp - ok
16:58:59.0411 0x1d90  [ CD4EB37EE330F53316D57A92391BEB2B, 3992BC21E7947759D4A7A9ACDE494D2F4324D26222B4B4F57E92AECE1D2F22F6 ] OneSyncSvc      C:\windows\System32\APHostService.dll
16:58:59.0411 0x1d90  OneSyncSvc - ok
16:58:59.0659 0x1d90  [ 052BB145D59D30D279B9E460A1C20E4D, 53FF38CE423DC46562DDAD22BC7E91AF524BEA54994EEA3BC3867207E729E152 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:58:59.0675 0x1d90  ose - ok
16:58:59.0708 0x1d90  [ 65E0500B39BA5D9F99DF63AFC261A90D, 2A7611C0C30D7092C3777BA49700C41A944677DF9E4F65F69E3E9CEC17EA4106 ] osrss           C:\windows\system32\osrss.dll
16:58:59.0711 0x1d90  osrss - ok
16:58:59.0743 0x1d90  [ 1BE31C40F49EF1B081075FD4658D7268, 75AA858C86E60C2C0F3EFF7358FE0A95A1FEF849996C3B5637E21BDC29692667 ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
16:58:59.0758 0x1d90  p2pimsvc - ok
16:58:59.0774 0x1d90  [ 4A5634915AF62C983E08425905D0C04C, 09BC3F7AD9F79C5FF59520933D06FE155AC21CD0ABAFE66B81C9F87D83A2339F ] p2psvc          C:\windows\system32\p2psvc.dll
16:58:59.0790 0x1d90  p2psvc - ok
16:58:59.0810 0x1d90  [ 7D0FC96264C0F8F2C1321E33E8EB646C, 82A06437B9B096BCCF5CE31BDF3539696E2E41DFA9870C358566EEE2F7D3B447 ] Parport         C:\windows\System32\drivers\parport.sys
16:58:59.0812 0x1d90  Parport - ok
16:58:59.0828 0x1d90  [ D330D74B5F99309B5CCA30AE41C57CDE, AE5186CB4B639A5241BF0D17FE8A73D6DAFA505C31E250EA225CD498C8A4A07E ] partmgr         C:\windows\system32\drivers\partmgr.sys
16:58:59.0828 0x1d90  partmgr - ok
16:58:59.0875 0x1d90  [ E099D3AE6C8EB284174E5B36AA5FB44C, 3B4EBB45870D853D62378228BDBC334FBFE401B0DAC49F6CD806402A7A5AAAD8 ] PcaSvc          C:\windows\System32\pcasvc.dll
16:58:59.0890 0x1d90  PcaSvc - ok
16:58:59.0912 0x1d90  [ 3F89E96BDA0A24A3D2DBB7CE1E625589, 63AAF83128B8AE279BC37331D2B27133EB9DE9C61392ADF18278A301697D0307 ] pci             C:\windows\system32\drivers\pci.sys
16:58:59.0928 0x1d90  pci - ok
16:58:59.0959 0x1d90  [ 2B4D98DF0CA57FB9536DBC80D2449D1F, AB34FA8585A20854369C0FAEB18BF5C7734D7E3C791F644B0576E40D609FCD09 ] pciide          C:\windows\system32\drivers\pciide.sys
16:58:59.0959 0x1d90  pciide - ok
16:58:59.0959 0x1d90  [ F4D5793BF2E58AF15C6CF2FEEF9E73EB, 9B5A40AF8838063F8F0A2B1480B39A2711AAE78BD972CDA60CCA0EB2BA211A87 ] pcmcia          C:\windows\system32\drivers\pcmcia.sys
16:58:59.0975 0x1d90  pcmcia - ok
16:58:59.0990 0x1d90  [ 22A53744CEEADFFFD33BA010FAD95229, 30B775EC9795105B8BF785BD63115C160955E7EFF74B995D3EC288138D1825A3 ] pcw             C:\windows\system32\drivers\pcw.sys
16:58:59.0990 0x1d90  pcw - ok
16:59:00.0012 0x1d90  [ 42C79F2966D56D6CB01BB2A9B2128474, A3F67560286CC6CC6F88E19250DE55B8755B61181DFD4CE4ADEEC59596E290FF ] pdc             C:\windows\system32\drivers\pdc.sys
16:59:00.0028 0x1d90  pdc - ok
16:59:00.0075 0x1d90  [ E2F8376F9731D12A009C522036C6073A, 5B8B68D3C013AAA8ED368C97042984C35E8D023542DBA404E7A03E89F2357E66 ] PEAUTH          C:\windows\system32\drivers\peauth.sys
16:59:00.0091 0x1d90  PEAUTH - ok
16:59:00.0112 0x1d90  [ 1398A85E59698067CBBE1D66A9C13ADF, E3609F183068BFAED756B2F9237181D60A6F6D78691248B8BF5B0AEB6A367E3D ] percsas2i       C:\windows\system32\drivers\percsas2i.sys
16:59:00.0112 0x1d90  percsas2i - ok
16:59:00.0112 0x1d90  [ 35F7C7AD709D909D618D9EDF987FC3ED, EE713E33688E74C5A2546CC58EBD8EA8F8116F25E42DCF8DA21DCBC7C7590E0E ] percsas3i       C:\windows\system32\drivers\percsas3i.sys
16:59:00.0112 0x1d90  percsas3i - ok
16:59:00.0175 0x1d90  [ 0DAF7B7D85F7AF38E29161460899C63F, F2609F2BD02C714857F5D5E6EF580643429C54E175AA72D38467F8F3A4E7F59F ] PerfHost        C:\windows\SysWow64\perfhost.exe
16:59:00.0175 0x1d90  PerfHost - ok
16:59:00.0243 0x1d90  [ 1F3D79283C6D60F3E601CA1E02EE8939, 3EE13AD015731B1784582A3B61DCC391F1070914C7CD0081DF3B248498A6E5C2 ] PhoneSvc        C:\windows\System32\PhoneService.dll
16:59:00.0243 0x1d90  PhoneSvc - ok
16:59:00.0290 0x1d90  [ 04F7878E7017105AB782353231561749, FB2811D98216720D4FDF0AC0EDF16C6CD33D7224B4CAFA752B4D2A839E6DD88A ] PimIndexMaintenanceSvc C:\windows\System32\PimIndexMaintenance.dll
16:59:00.0290 0x1d90  PimIndexMaintenanceSvc - ok
16:59:00.0576 0x1d90  [ 5D2DF0392FFD0BA4FF27F503999997C2, C4BD5145151AB08403E5B2B30894E6B95E7E4888EB3E89542FC039DD775A27C0 ] pla             C:\windows\system32\pla.dll
16:59:00.0609 0x1d90  pla - ok
16:59:00.0629 0x1d90  [ 15BA68662CED4B0618010A54478E18E5, 1B913BFA7AA11F3A82D80E95FC4857B810D341F9E68545710F90EBE44DAC1DF8 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
16:59:00.0645 0x1d90  PlugPlay - ok
16:59:00.0660 0x1d90  [ 6BF7093B27EA90FD9222845D19C1BE5F, CF8A6764BB6B369258F21FD303E4CAE08632195620A0BD66B62F62F5D7B762B8 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
16:59:00.0660 0x1d90  PNRPAutoReg - ok
16:59:00.0692 0x1d90  [ 1BE31C40F49EF1B081075FD4658D7268, 75AA858C86E60C2C0F3EFF7358FE0A95A1FEF849996C3B5637E21BDC29692667 ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
16:59:00.0692 0x1d90  PNRPsvc - ok
16:59:00.0745 0x1d90  [ D67052BD0DA9C17BCBBF8AB5B6D354EE, 7FE9B414C74CF69E531B27C506216F7F5CBE00B67E90305A4A4A2ECADAA4F349 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
16:59:00.0745 0x1d90  PolicyAgent - ok
16:59:00.0761 0x1d90  [ AE3B1056FC1795F18D990C4908A6ECBF, 1C41F7714EBF54DF358D9B19D6AFE7281D3EABE20038B568A12031B76E1D50D9 ] Power           C:\windows\system32\umpo.dll
16:59:00.0776 0x1d90  Power - ok
16:59:00.0792 0x1d90  [ 5BA6B9AD03B81546BA64E488C4EF9D17, C43442577685FA1A7C32094B2F14FC92BA6B511FD9FDBA6FD82473A1B165FC61 ] PptpMiniport    C:\windows\System32\drivers\raspptp.sys
16:59:00.0792 0x1d90  PptpMiniport - ok
16:59:00.0930 0x1d90  [ 12740944CE2AA1D6F7930621C758393B, 13350952A5E04AE126179FBDE575340435C8DBA3EB00DF90DFD8B4F155ED06F6 ] PrintNotify     C:\windows\system32\spool\drivers\x64\3\PrintConfig.dll
16:59:00.0992 0x1d90  PrintNotify - ok
16:59:01.0015 0x1d90  [ 21AECFF3EB5748CBE12538A2500EFDE5, A1679F21363E99E3698B9C6F7E7E3BB2877D47089BC381AF0C51B1DD8B24325B ] Processor       C:\windows\System32\drivers\processr.sys
16:59:01.0030 0x1d90  Processor - ok
16:59:01.0061 0x1d90  [ 7E0078F1EFEB6F8F47CF85C1D73C7EBC, 831BC3CE72F29AD259DEE7121D6F785CE0A8462CFB69DD7FB1F3BDAF16CDBF3E ] ProfSvc         C:\windows\system32\profsvc.dll
16:59:01.0077 0x1d90  ProfSvc - ok
16:59:01.0093 0x1d90  [ 596FB6C5A72F34B7566930985E543806, 870B43783DB4CF845FA72BC5E40CE76BE6DFC66FE9E9B4B0A52D6B7FE7EA65FC ] Psched          C:\windows\system32\drivers\pacer.sys
16:59:01.0093 0x1d90  Psched - ok
16:59:01.0117 0x1d90  [ 661D2A428BC67A950D0B9F66FD3B7F16, 5ABB89B8AB4626EF9E6CDB9DA24251F7FD05F01F0F0AF35C671FD28CD7E17EC4 ] QWAVE           C:\windows\system32\qwave.dll
16:59:01.0132 0x1d90  QWAVE - ok
16:59:01.0148 0x1d90  [ CFBA9C976CBF6796E5DC39EF59984021, A1C956AD828FC70ED92D702516E0F88A4BDAF8C93C571D7CA20F1695FD8E70C2 ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
16:59:01.0148 0x1d90  QWAVEdrv - ok
16:59:01.0148 0x1d90  [ 7B2AD8C55217B514C14281AB97B4E21D, A1E295897B864B9C0177FF1C502EB060084A1783C0E7E53636291F901C2E2AA8 ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
16:59:01.0148 0x1d90  RasAcd - ok
16:59:01.0179 0x1d90  [ E15A9CE1E2E7D1C8DF97A4FC1FFE6289, 44B53418D6BC51ACC567CF6917A0981889B44AE420489C9C03F5A30418B37267 ] RasAgileVpn     C:\windows\System32\drivers\AgileVpn.sys
16:59:01.0179 0x1d90  RasAgileVpn - ok
16:59:01.0213 0x1d90  [ D60BA4C76D194472D6602FF3D2D51ADE, 01272663897685C75FFBC3F1C0CFDB8D0E1A58182049E0B607D634536A8F6400 ] RasAuto         C:\windows\System32\rasauto.dll
16:59:01.0217 0x1d90  RasAuto - ok
16:59:01.0217 0x1d90  [ E3C82823B22463BC38AA4F8ADA852624, FF601B117F4003E2CC65B6143C2A270331EB257EE82B3BC020247D1AB1CD625F ] Rasl2tp         C:\windows\System32\drivers\rasl2tp.sys
16:59:01.0217 0x1d90  Rasl2tp - ok
16:59:01.0264 0x1d90  [ 3655D86C5E2982B131FC0935DE24F98F, 0386B31FECDDED77450609A807097B2307361CB59B236DEC41037BDC95897463 ] RasMan          C:\windows\System32\rasmans.dll
16:59:01.0280 0x1d90  RasMan - ok
16:59:01.0295 0x1d90  [ 3369023EB5790A75BA7DABA14B75D922, 36B63D5B74FDC932AAF1A876514024602D2F3EAF2CA33D1247CBA1E52FDB0418 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
16:59:01.0295 0x1d90  RasPppoe - ok
16:59:01.0317 0x1d90  [ 1E32A8CD65C4AD0A827CFEB13034DA29, 5D9A92E13020D994CCD39F701BACAFE2177A40A9CC89649441B91E3F3DECD911 ] RasSstp         C:\windows\System32\drivers\rassstp.sys
16:59:01.0317 0x1d90  RasSstp - ok
16:59:01.0349 0x1d90  [ D1ED724FAC4C1B2B6A871E4DA096FAA0, 44ABC3493C9F2BFA0B9BC20BC181A61A6D06805B7B2D05FB8355D2409952963E ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
16:59:01.0380 0x1d90  rdbss - ok
16:59:01.0413 0x1d90  [ D0221C13960E274CC539D72D5A842ED0, A5A961506B9D7429D97D0635FD69E74736C0E8405487E1D22BB5CD978A60044C ] rdpbus          C:\windows\System32\drivers\rdpbus.sys
16:59:01.0415 0x1d90  rdpbus - ok
16:59:01.0433 0x1d90  [ 1DC2CC74B51E4DC4CD5A20C1021E4010, 46B7D17EE27439F2191504D1C6F6C70B2540BD4F2261DBB1F4BE783BEA99B04C ] RDPDR           C:\windows\system32\drivers\rdpdr.sys
16:59:01.0433 0x1d90  RDPDR - ok
16:59:01.0449 0x1d90  [ 177DF954D0DEC0465A380C75F6E7F65F, 6B30C78223029BD5DBA586BF961968F85762209BA55CD031460A215B20F93AB2 ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
16:59:01.0449 0x1d90  RdpVideoMiniport - ok
16:59:01.0480 0x1d90  [ 5D1680871054D2B0B8A971BC8AB3B837, 9CAB0B2E3857829D34A82A78B120D07E292D4D5060168D964295EB23339B7DE7 ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
16:59:01.0518 0x1d90  rdyboost - ok
16:59:01.0565 0x1d90  [ 341E6830DA70F65730300DAB4CB0B490, 341EC8DB5E39963EF89E726F08730AFB2356C3BAD71CCE9EECCAB4D9B31C4863 ] ReFSv1          C:\windows\system32\drivers\ReFSv1.sys
16:59:01.0580 0x1d90  ReFSv1 - ok
16:59:01.0649 0x1d90  [ ED5F7369D60C8927FA24E0B3974424AE, CF835FD961FF25D0A9AA6FA03223C5597842649BBA04F79DD8AE23E96C412B16 ] RegSrvc         c:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
16:59:01.0649 0x1d90  RegSrvc - ok
16:59:01.0716 0x1d90  [ 23247F380832FB1BCF835587170B3E1F, 6F81F56381906CD4ED46E426EEA516FEF30EB1F4765AA4311116C9AB93A15892 ] RemoteAccess    C:\windows\System32\mprdim.dll
16:59:01.0734 0x1d90  RemoteAccess - ok
16:59:01.0781 0x1d90  [ FB82C1AE2D7C1F777FCF25B978858B9C, EFB4E07D4817D59299EFD84E7CFA13575E9666C464087792938D86F4F466F8D9 ] RemoteRegistry  C:\windows\system32\regsvc.dll
16:59:01.0781 0x1d90  RemoteRegistry - ok
16:59:01.0834 0x1d90  [ F9F177450ED0E21A70CD9265215ABC4D, 6353BF929DD327988DD630A2EA21B78367FB5AE754658AD7AB4C585DDD70839D ] RetailDemo      C:\windows\system32\RDXService.dll
16:59:01.0865 0x1d90  RetailDemo - ok
16:59:01.0896 0x1d90  [ 5DCB6746E9880DED87EC2A239ED64EB4, 45ED65A9C103C07B202BAC6EB66C45F619B84F61C1E38C71CBF4F3C94E67FA3D ] RFCOMM          C:\windows\System32\drivers\rfcomm.sys
16:59:01.0896 0x1d90  RFCOMM - ok
16:59:01.0950 0x1d90  [ 9E18DF158751CF968E7DF83256D70233, 89385DA5ABD283F289E37D7D9E33358B06216E9B3659B2E70F19FD5BA49C7F90 ] RichVideo64     C:\Program Files\CyberLink\Shared files\RichVideo64.exe
16:59:01.0965 0x1d90  RichVideo64 - ok
16:59:01.0997 0x1d90  [ 176D8470B15CD9080861594F9A33FA01, CFB66D7FEB9465985C2866D64EA03B7E7BE830DCF6C02B3FE2244D7F7E5343E2 ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
16:59:01.0997 0x1d90  RpcEptMapper - ok
16:59:02.0018 0x1d90  [ 1A563653DAEDFE4CA81936E0D2FD8B56, 308B0DFEBA63333D407093C449A08ABFECE118C9274100809356BDAF7FA32EB6 ] RpcLocator      C:\windows\system32\locator.exe
16:59:02.0018 0x1d90  RpcLocator - ok
16:59:02.0081 0x1d90  [ FA77AA7F756D2A8CAB5B35ACA0E98E5D, 86D3F02632CF6A96A09D576B8D0F6441D31EC41504835C942D150F9E3FCF7F37 ] RpcSs           C:\windows\system32\rpcss.dll
16:59:02.0097 0x1d90  RpcSs - ok
16:59:02.0119 0x1d90  [ C7AA333FD966286072EDA2F763229716, 8B65DCDE43A11E087EAA605BE640E36800349AF544018B4667865D339A7F43D1 ] RSP2STOR        C:\windows\system32\DRIVERS\RtsP2Stor.sys
16:59:02.0135 0x1d90  RSP2STOR - ok
16:59:02.0166 0x1d90  [ 0AC5FCDC29ED97ECDEF1276425EE2059, 8A12D1732D4AA18A9ED8416F4D4A49B81CE7C4C86ABCEE8FF28A16EA61993CFE ] rspndr          C:\windows\system32\drivers\rspndr.sys
16:59:02.0166 0x1d90  rspndr - ok
16:59:02.0182 0x1d90  [ 044890BB0D6CF1E23C1087234D320509, FA6C79D24BE4ACCFAC617D2850B922BFAA7C2766AE625C725F3ACF43C934EFAF ] s3cap           C:\windows\System32\drivers\vms3cap.sys
16:59:02.0197 0x1d90  s3cap - ok
16:59:02.0218 0x1d90  [ D44292C0CD22706CBD704B7555EB65B5, 2DFD70876ED10E6083552C94BBA3488F2BEEB851C47DA24B27319351BD6FEE5C ] SamSs           C:\windows\system32\lsass.exe
16:59:02.0219 0x1d90  SamSs - ok
16:59:02.0451 0x1d90  [ EB303B136CC26DEB73D8D9ADEFF6A0BD, C7D03BB1D0C71FC70049E6FD1E3CB763559599452FD1DE5A6B8926B25767AF62 ] SAVAdminService C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SAVAdminService.exe
16:59:02.0451 0x1d90  SAVAdminService - ok
16:59:02.0536 0x1d90  [ 290B7711E005F1361E011568C939CC81, 97A3FFB9A57A9DCB362229939CC6FC656127D28223DDF54BDF08170338005D2A ] SAVOnAccess     C:\windows\system32\DRIVERS\savonaccess.sys
16:59:02.0598 0x1d90  SAVOnAccess - ok
16:59:02.0624 0x1d90  [ 9D19870B8CF1405AE4E1971CC203CEF9, 84A053AC3C0DE234DCCFDECE88452524837AED50282CA1FC0F27AC4D48E9C697 ] SAVService      C:\Program Files (x86)\Sophos\Sophos Anti-Virus\SavService.exe
16:59:02.0640 0x1d90  SAVService - ok
16:59:02.0671 0x1d90  [ 530F797129776AA7E81994783A97E2AD, F131EF036702C6E741E5A6851AE07E81043CE8BAEED0768838C0F31CE14FEC1A ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
16:59:02.0671 0x1d90  sbp2port - ok
16:59:02.0725 0x1d90  [ F8B3A4447E22A0EE30370D1435ED3E78, 5695ECE3B1CD9FE0A7FA31804B8420243386A865919858A95CAF5488D9B339B2 ] SCardSvr        C:\windows\System32\SCardSvr.dll
16:59:02.0725 0x1d90  SCardSvr - ok
16:59:02.0757 0x1d90  [ 40110802D217FE1CB581D9A70B1FD16F, CCB920593CCC6663676039F3F731536DFEF535C3F715F6DB6F34D0D733BEF89B ] ScDeviceEnum    C:\windows\System32\ScDeviceEnum.dll
16:59:02.0757 0x1d90  ScDeviceEnum - ok
16:59:02.0826 0x1d90  [ CD236D4E1EC09C3BE4236A868788E16D, F913F979653D019EECE676B3C9029E485A702858D602F6E4E8E7EFF6F3AA02F5 ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
16:59:02.0826 0x1d90  scfilter - ok
16:59:02.0889 0x1d90  [ 0C77B1FD2877DD2CEBC1D39B18E0EB24, 46FD26FCB8DF9EEF811B581EB00D95EBC1991C5D572E62596548A6A63129FB9E ] Schedule        C:\windows\system32\schedsvc.dll
16:59:02.0904 0x1d90  Schedule - ok
16:59:02.0942 0x1d90  [ C45DF9513A8063054F4A1687127E7A2C, 2CD7F7FE7248BC784573418278F4DF6C7C57F57F3F529A5165054038FA70296C ] SCPolicySvc     C:\windows\System32\certprop.dll
16:59:02.0958 0x1d90  SCPolicySvc - ok
16:59:02.0989 0x1d90  [ B32F13993145E815D7280C6F55B9523B, A3269AA65F89F9F0BFD5C98F66DDEA3FB92D1C097FA11959593A2074E7460DE3 ] sdbus           C:\windows\System32\drivers\sdbus.sys
16:59:02.0989 0x1d90  sdbus - ok
16:59:03.0025 0x1d90  [ 75B98959013B22F8F40C08095B8AB73C, EF608EFBF72AF48EFC9352FCEDF0523BDBA6055612FFD22654E3B241AA9C8033 ] sdcfilter       C:\windows\system32\DRIVERS\sdcfilter.sys
16:59:03.0026 0x1d90  sdcfilter - ok
16:59:03.0058 0x1d90  [ 723C6C3DE056D3EB76F7520BEF5947B4, 49FFDAD56BBD652404A587F282867161BAE6D9E61BC2C819DDC75CE10A8E3C63 ] SDRSVC          C:\windows\System32\SDRSVC.dll
16:59:03.0058 0x1d90  SDRSVC - ok
16:59:03.0073 0x1d90  [ DE6D7DC78D956928F59F7415A0F41E13, C0F8EEED29BF63A0D8FB5A0286C1C768BFEF598EC52715D910B5BB1A76231805 ] sdstor          C:\windows\System32\drivers\sdstor.sys
16:59:03.0089 0x1d90  sdstor - ok
16:59:03.0104 0x1d90  [ EBD07BD20B5E0E92A398566EF8720F79, 8A88C861D4113B9938C32CBD28FD3D7F1C3133E700E23E17F5DFD7B26CCDA04A ] seclogon        C:\windows\system32\seclogon.dll
16:59:03.0104 0x1d90  seclogon - ok
16:59:03.0157 0x1d90  [ 49C64725D80F6D6B2577FB1E2C0351BB, 7000CD227D094D2E058F12B105754945E9CE6F7A74ED2475FC88E4F5EBAE4295 ] sedsvc          C:\Program Files\rempl\sedsvc.exe
16:59:03.0157 0x1d90  sedsvc - ok
16:59:03.0173 0x1d90  [ B7B9EEBCB7466338403A75D15AC120D7, B8F79DA71F8CD0F30983F7D92B625A431C212DD543DE2B3DC03EC5A68C41B00D ] SENS            C:\windows\System32\sens.dll
16:59:03.0189 0x1d90  SENS - ok
16:59:03.0242 0x1d90  [ 43CFFC1C9F6A315E35219BC48FBB1818, EA9B6DC2698E1F9FCF7C51BA93C89F65610B6B1D5203EA22B462060665A2E139 ] SensorDataService C:\windows\System32\SensorDataService.exe
16:59:03.0273 0x1d90  SensorDataService - ok
16:59:03.0305 0x1d90  [ AF455B50C9291963ACD11528C296FBFC, 03B95A1566AFB408C7BFDCE4DA3BFCE65D5F8890848CC7D2AB6D1F29798BC358 ] SensorService   C:\windows\system32\SensorService.dll
16:59:03.0321 0x1d90  SensorService - ok
16:59:03.0342 0x1d90  [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] SensorsHIDClassDriver C:\windows\system32\DRIVERS\WUDFRd.sys
16:59:03.0342 0x1d90  SensorsHIDClassDriver - ok
16:59:03.0374 0x1d90  [ 7363A65C738F5A5292D7BDBE55D8C3C2, C53C10A0AE58613DFCC91E62E004D9B188E4793C2A19B4BE871A705EEE77048E ] SensrSvc        C:\windows\system32\sensrsvc.dll
16:59:03.0374 0x1d90  SensrSvc - ok
16:59:03.0389 0x1d90  [ 67585C295FF2D221679E376B68893B35, 4B5E9A8DA8C6F7B1F7129F80A0603503D467E5650306FB4C309977D74037E46B ] SerCx           C:\windows\system32\drivers\SerCx.sys
16:59:03.0389 0x1d90  SerCx - ok
16:59:03.0405 0x1d90  [ B8C4852CBCAAC1374C08EC7445443824, DDE577A81B3E11B5B56096317BC47AA6E286573042407B96A9D29BE981F3FA4D ] SerCx2          C:\windows\system32\drivers\SerCx2.sys
16:59:03.0405 0x1d90  SerCx2 - ok
16:59:03.0427 0x1d90  [ D3A103944A8FCD78FD48B2B19092790C, 252DB8395DA8639E748658D3BE7863C1700E27AA5C41BB700CFCE193FE3F04E9 ] Serenum         C:\windows\System32\drivers\serenum.sys
16:59:03.0427 0x1d90  Serenum - ok
16:59:03.0443 0x1d90  [ 249A563C48DFD9E42A37587653E003BB, D022FAE2B7AC9D99B9F230A4DF0B045891588162587E1F468B5E05C8DA98AA9A ] Serial          C:\windows\System32\drivers\serial.sys
16:59:03.0443 0x1d90  Serial - ok
16:59:03.0458 0x1d90  [ 0F5B43074AE731D2C6F061241C9D84A6, 05CFEB30A4FC11441552D37687608C8C2FD6DC2F2266AE9D6526753E26283DE6 ] sermouse        C:\windows\System32\drivers\sermouse.sys
16:59:03.0458 0x1d90  sermouse - ok
16:59:03.0505 0x1d90  [ CD90E445F6458512A5BA884D561EFCF1, E792FAB8AFF4126C1977024060842D788A06475139782896AFD7B39C85FCDF3F ] SessionEnv      C:\windows\system32\sessenv.dll
16:59:03.0505 0x1d90  SessionEnv - ok
16:59:03.0527 0x1d90  [ D9FE59276BD56A9643C32D5FACE2F251, 591862D868A545F468496DE97DEE42C9DB3AFBFC0881CBA79EB6641A254AF033 ] sfloppy         C:\windows\System32\drivers\sfloppy.sys
16:59:03.0527 0x1d90  sfloppy - ok
16:59:03.0574 0x1d90  [ F8083C536BEDE61AFB4069D8A8C16DA7, 13AADAD7B5582911B8ABBE0CF7132CC517F7413A361CCF8ED502F803D061FFA3 ] SharedAccess    C:\windows\System32\ipnathlp.dll
16:59:03.0590 0x1d90  SharedAccess - ok
16:59:03.0628 0x1d90  [ AE6E4D3172FBF45B944668CB3998B8A8, E7D7F98CB464C236A17069987F7B678D7688D9D577334151EF09DF5C6F22AFFC ] ShellHWDetection C:\windows\System32\shsvcs.dll
16:59:03.0643 0x1d90  ShellHWDetection - ok
16:59:03.0675 0x1d90  [ ABBE803FE0BDAE0E5BE74DDEFBE62F23, 5009F489F7A6D66628C23A0FA3D7632399D0AD72BD11A1B70D7E768ED507377D ] SiSRaid2        C:\windows\system32\drivers\SiSRaid2.sys
16:59:03.0675 0x1d90  SiSRaid2 - ok
16:59:03.0690 0x1d90  [ 6043DF55CFE3C7ACF477645FA64DEA98, 0E18EF8EC589841BC319C17FBABA7383FD247C9441ABF64A0D830976F3E611AE ] SiSRaid4        C:\windows\system32\drivers\sisraid4.sys
16:59:03.0690 0x1d90  SiSRaid4 - ok
16:59:03.0728 0x1d90  [ EC1F172D220B3F4912CBCCCC0C0665A5, 1DE9077E9064E14332E7F1F2D8301408AAA08AFE3F344072B0F1ED40D4D9DB58 ] SmbDrv          C:\windows\System32\drivers\Smb_driver_AMDASF.sys
16:59:03.0728 0x1d90  SmbDrv - ok
16:59:03.0744 0x1d90  [ A4DB86E8C2EA8F82364F2DB4D3ED64F5, 6D3CA6DEC43E99044353E80CC9391AE5BBBA516D13DF1CE51C508BF219404CF7 ] SmbDrvI         C:\windows\System32\drivers\Smb_driver_Intel.sys
16:59:03.0744 0x1d90  SmbDrvI - ok
16:59:03.0759 0x1d90  [ B922D32039A3B5991E64429EC4EE52A9, 5EB7EB1F6D2C25F06044D8CA9F3BA0471FB40C8C96432BDC2C80CC36DC49BA0B ] smphost         C:\windows\System32\smphost.dll
16:59:03.0775 0x1d90  smphost - ok
16:59:03.0806 0x1d90  [ 01177453C9F498EABD49CCF1E50437C8, CF8886916A93AB35E164D3F92337A2F7EF0475673CAB533EC56CBF24FB7F5231 ] SmsRouter       C:\windows\system32\SmsRouterSvc.dll
16:59:03.0828 0x1d90  SmsRouter - ok
16:59:03.0860 0x1d90  [ 0B6BECB2651EF947249CDC3715E8B9CC, EB7281AF3529DE16FE8CD0C0C0C8877641865A5864D58628DBAB865B510B0D0B ] SNMPTRAP        C:\windows\System32\snmptrap.exe
16:59:03.0860 0x1d90  SNMPTRAP - ok
16:59:03.0891 0x1d90  [ C2D26667AA0E4EA62BFD236C0153A0CD, C4E3CCA508AB1DC4F81370C94AC675A4F53B02373A3D17FD763F21E50506FB67 ] sntp            C:\windows\system32\DRIVERS\sntp.sys
16:59:03.0906 0x1d90  sntp - ok
16:59:04.0023 0x1d90  [ 69531DCE0E1B0E875637487F07CB9F10, F7CBF29C7BC39837DEE92D665115C06154D01A21CAB4362080146FAC7D15AF42 ] SntpService     C:\Program Files\Sophos\Sophos Network Threat Protection\bin\SntpService.exe
16:59:04.0044 0x1d90  SntpService - ok
16:59:04.0144 0x1d90  [ B5099952CB8BA252E1F48BEEEA684972, 820BB0312B3D2EBEBFA8D09C5912B4FD1CE09FC7AE2EE7BBC4B0D745BA6F43D0 ] Sophos MCS Agent C:\Program Files (x86)\Sophos\Management Communications System\Endpoint\McsAgent.exe
16:59:04.0159 0x1d90  Sophos MCS Agent - ok
16:59:04.0229 0x1d90  [ 98125B19CE405A52388C7B8EC89747B4, 27E3ED69BE22031DF5CB5EE8121B2A5383DA60FA3C625F91033715E44C7FE5A9 ] Sophos MCS Client C:\Program Files (x86)\Sophos\Management Communications System\Endpoint\McsClient.exe
16:59:04.0260 0x1d90  Sophos MCS Client - ok
16:59:04.0345 0x1d90  [ 84CE2461E1D951C7201F5F2424929398, 9B437A5FBD176E40563AAE16D36000A1C1BCA268BD353FCEA48CBE8F2112757E ] Sophos Web Control Service C:\Program Files (x86)\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe
16:59:04.0360 0x1d90  Sophos Web Control Service - ok
16:59:04.0391 0x1d90  [ 2A09CD9F47480CE84C8B9C31F6A06057, 6FED9B03CFBDB941B668C1F1DC87933EBE6CFB016C469BA5A7C756761506C51C ] SophosBootDriver C:\windows\system32\DRIVERS\SophosBootDriver.sys
16:59:04.0391 0x1d90  SophosBootDriver - ok
16:59:04.0429 0x1d90  [ 410506D87F07AF40880BE50262C2D6C4, 7E8195A2028AD577C4E934AEDC1C296EAE06EDEB904EFA00A83B7E7D4D2F9361 ] SophosDataRecorderService C:\Program Files\Sophos\Sophos Data Recorder\SDRService.exe
16:59:04.0445 0x1d90  SophosDataRecorderService - ok
16:59:04.0629 0x1d90  [ C07BB5FFB85E64DF1AB67E17188DF22F, 322FD46C8694BA5DE88CCACFD8364F8A3397AA02C9FD5644333AE3D3BECA4ABB ] sophossps       C:\Program Files\Sophos\Sophos System Protection\ssp.exe
16:59:04.0730 0x1d90  sophossps - ok
16:59:04.0777 0x1d90  [ 1A6CB30F0EFC1632E6F1B852CA892583, 0E6BDCEE837AEC3D02C437478143C75550C94A50E36895DDB095F54A2FA18E2A ] spaceport       C:\windows\system32\drivers\spaceport.sys
16:59:04.0792 0x1d90  spaceport - ok
16:59:04.0808 0x1d90  [ E1C158F6C00359278727A2CEE5D2ED71, 1591F942C6DD99D3BA7FD4D72D957864117B2263F205468A15F1D1417C6F799D ] SpbCx           C:\windows\system32\drivers\SpbCx.sys
16:59:04.0808 0x1d90  SpbCx - ok
16:59:04.0861 0x1d90  [ 199C8C07241F1A14C5B0527647A6D2D7, 7A704F750BDEF21507230EAE437DAB565FDB0909177F05B8FC48DBF925E631A9 ] Spooler         C:\windows\System32\spoolsv.exe
16:59:04.0892 0x1d90  Spooler - ok
16:59:05.0092 0x1d90  [ AA9F7A00C0642631E876A8DE32A394ED, 8CFBDACCC112400226818E660B9F7A119A3AEAF9E754AED2ED561C3A507B4F3C ] sppsvc          C:\windows\system32\sppsvc.exe
16:59:05.0208 0x1d90  sppsvc - ok
16:59:05.0246 0x1d90  [ 3D24C04F53139B6B754B63B3B47184C7, 5F7E75D9A90E7AD39153320D27538ACCB61E83C5A8FE3213C9F825C67E46A900 ] srv             C:\windows\system32\DRIVERS\srv.sys
16:59:05.0262 0x1d90  srv - ok
16:59:05.0293 0x1d90  [ AB55F896A28E51101EAE2B1FF5556DFB, 95B0743701D5306236862102B051EDE7CC99ED29ACE27984F62F61D89AA6D433 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
16:59:05.0309 0x1d90  srv2 - ok
16:59:05.0346 0x1d90  [ 96B3846ED94714AC9B844C447042E4FC, 6E021E13D471384AAF3CEA17FF3AD32AC49FCC32C4FE0C118F63A1A3B86463B0 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
16:59:05.0362 0x1d90  srvnet - ok
16:59:05.0393 0x1d90  [ 8C1786C073A496B8C0C8A5450A4FFD5B, 13BF3B42A63CE6C461259D4CE767FB0DE1F10433512A11D2B2C033E36E652542 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
16:59:05.0409 0x1d90  SSDPSRV - ok
16:59:05.0424 0x1d90  [ 217A982201052EFC8C3C0C88D229791C, 11509E3446ED7B75C9A05CDC4A7AF18926CB463E0D98BAE1CD5DB43E88F94F90 ] SstpSvc         C:\windows\system32\sstpsvc.dll
16:59:05.0431 0x1d90  SstpSvc - ok
16:59:05.0478 0x1d90  [ 592FF34A2FD6C6351B8A3AA76B2C0A9E, 152B7472DE531AC45492F562DD470B2CE33F1EEF13BC78F26046AE5ABF54E32F ] ssudmdm         C:\windows\system32\DRIVERS\ssudmdm.sys
16:59:05.0478 0x1d90  ssudmdm - ok
16:59:05.0593 0x1d90  [ A443DC17F146CDC8A39CDAB989A49CC2, A4F4371FE536F2DB8A76B04544B7364C1E9663C323D4B33858C8B9B33573AEFC ] StateRepository C:\windows\system32\windows.staterepository.dll
16:59:05.0647 0x1d90  StateRepository - ok
16:59:05.0678 0x1d90  [ CCDA497C880AD16D87EDFAEFCFB2EDF5, 622599AA35ACFF0375DA252210BE42E7E90F30EDFEFF2F62FDB14AE6E45B5F88 ] stexstor        C:\windows\system32\drivers\stexstor.sys
16:59:05.0678 0x1d90  stexstor - ok
16:59:05.0709 0x1d90  [ 031E6ABABF940133B92613E7BDF3A169, E47F1FCAA399BB4D0BDC37A1D124E63B26B17C1333073A3FD2E680AE3B5A0068 ] stisvc          C:\windows\System32\wiaservc.dll
16:59:05.0731 0x1d90  stisvc - ok
16:59:05.0746 0x1d90  [ BF8EA6FC3358C2F69678E3E94F764F84, D274DAD7B5756DD49CA44277C73497F1EC465C8E365CC730CD194932C3825920 ] storahci        C:\windows\system32\drivers\storahci.sys
16:59:05.0746 0x1d90  storahci - ok
16:59:05.0762 0x1d90  [ 32FF460DA8C1F370F5C08B7654899B73, 0C9D5D38D033109BA672ABAFEF0F0CD295E9FFA108ACFCA9044429D9B2CA9057 ] storflt         C:\windows\system32\drivers\vmstorfl.sys
16:59:05.0762 0x1d90  storflt - ok
16:59:05.0778 0x1d90  [ CC21DB3EF619B9480FE31A4EFE92CBEB, 256EFCA2F231F41D34250E1460BF88894D943EAE83A0B153FCADE700AB4DE11E ] stornvme        C:\windows\system32\drivers\stornvme.sys
16:59:05.0778 0x1d90  stornvme - ok
16:59:05.0809 0x1d90  [ 390B8A75768E2689586539C224520895, D72F52E6D7AC5DC318FF9C1DF1F4E8A435D65B6BB59D7F1642222EC026BC54DB ] storqosflt      C:\windows\system32\drivers\storqosflt.sys
16:59:05.0809 0x1d90  storqosflt - ok
16:59:05.0847 0x1d90  [ 9FDB90436BFC99011386A06B2EC6741E, 818A257F2A098212A63EA9898AAB07E46897CC5846E9F4E7CB1C7146C7F4C448 ] StorSvc         C:\windows\system32\storsvc.dll
16:59:05.0862 0x1d90  StorSvc - ok
16:59:05.0894 0x1d90  [ 770A92D9D3A0BF61C97C3AFCB36847D9, 21A8CC3F8E63B971C4FF8DDED5C7032E093A7B0F16E2128A9BD2E890BA76A1D9 ] storufs         C:\windows\system32\drivers\storufs.sys
16:59:05.0894 0x1d90  storufs - ok
16:59:05.0909 0x1d90  [ 736A2418E3E7F3DB3CF6EB0A55D1D581, 2D3BBC4E0C7B51EDE7479A978E4BCD5F47A7257745179F01D2D9ECFD83CCCC82 ] storvsc         C:\windows\system32\drivers\storvsc.sys
16:59:05.0909 0x1d90  storvsc - ok
16:59:05.0931 0x1d90  [ FA8F6E3AD3F92B35D2673CC9FD20429C, 62F81CBACF7E16FEF9DE3BE95FA5C9BDB51BAE4667AE5AE71399864A390FF6D5 ] svsvc           C:\windows\system32\svsvc.dll
16:59:05.0931 0x1d90  svsvc - ok
16:59:05.0947 0x1d90  [ BD98B0225BCD49E8A62F4F8EE1D1F613, CDAD11969B2DA417079547724BECC3DB4FC4711B3C01590EB0D02774B69B6D90 ] swenum          C:\windows\System32\drivers\swenum.sys
16:59:05.0947 0x1d90  swenum - ok
16:59:05.0994 0x1d90  [ 2EAC7BF69DC104F9AC913D5E00550334, 0698A48B45EF23D39370797D567326596687A3A5FA5D757374DE5BB93E9E4ACC ] swprv           C:\windows\System32\swprv.dll
16:59:05.0994 0x1d90  swprv - ok
16:59:06.0032 0x1d90  [ CAE4B27B469C583131EA5AAE622F5D76, 3979006EB22489D1AAD2EC2E9F32C286EEDCDB83B37B97E58BA831263EC33B84 ] Synth3dVsc      C:\windows\System32\drivers\Synth3dVsc.sys
16:59:06.0032 0x1d90  Synth3dVsc - ok
16:59:06.0079 0x1d90  [ EA5C1537D4F320A0F69C3144628D2C58, 52471E6EF8BA086671BC1CF3AA680DC07D319B7A8A60A170A1CB28F5EEFE7DE6 ] SynTP           C:\windows\System32\drivers\SynTP.sys
16:59:06.0094 0x1d90  SynTP - ok
16:59:06.0132 0x1d90  [ EE36B286D7677E5FAEC66C76F09CC9BA, 5136FBBC54847A6D49256E2589DE5B35607F1627BBBBDD41D01ACC0ECE314478 ] SynTPEnhService C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
16:59:06.0163 0x1d90  SynTPEnhService - ok
16:59:06.0232 0x1d90  [ 34A3EB84B2A830E6F450B8F885AE4E6E, E61AC6D17B815CB71F26D71CA3CCAFD9E66A170E3ED2E64A4F20D097A0C683B5 ] SysMain         C:\windows\system32\sysmain.dll
16:59:06.0248 0x1d90  SysMain - ok
16:59:06.0295 0x1d90  [ FA8E0A9C648035CA1B47C9DA77EDB7EA, 4097AB89D2DB4741B138F3939AED4C5DB00BA124BF66E5DC2218ACF3A37513A3 ] SystemEventsBroker C:\windows\System32\SystemEventsBrokerServer.dll
16:59:06.0310 0x1d90  SystemEventsBroker - ok
16:59:06.0332 0x1d90  [ D5AD0EAAB8ACE6CC246B75315C5F4B23, 6F5B94E79907D935AE96B8BE2CEB5D83FBD4BF17D625DBD4426AA84D2CED91CE ] TabletInputService C:\windows\System32\TabSvc.dll
16:59:06.0348 0x1d90  TabletInputService - ok
16:59:06.0379 0x1d90  [ 86B62FC8CB89946446F9B24FE49A66FD, 7B095310D1C78B82E5ACAC4713E101DD1323A3CF6FB39218C2E78ABE2B0385B5 ] TapiSrv         C:\windows\System32\tapisrv.dll
16:59:06.0379 0x1d90  TapiSrv - ok
16:59:06.0448 0x1d90  [ 30260DEB5B57D58C71F55CA342F29DA4, C0E648505F7CB1672A61C6B3F4E8F302F09E4A100C140E71EC386E46AAE26A2A ] tbaseprovisioning C:\windows\SysWOW64\tbaseprovisioning.exe
16:59:06.0463 0x1d90  tbaseprovisioning - ok
16:59:06.0548 0x1d90  [ DD04E1DF5709F98B2487A011E708194D, 8B6EAA177DE4C6F8811EB93853CB3EF3229CA25F4D3B105EF2FDA4E76C01CC8A ] Tcpip           C:\windows\system32\drivers\tcpip.sys
16:59:06.0595 0x1d90  Tcpip - ok
16:59:06.0648 0x1d90  [ DD04E1DF5709F98B2487A011E708194D, 8B6EAA177DE4C6F8811EB93853CB3EF3229CA25F4D3B105EF2FDA4E76C01CC8A ] Tcpip6          C:\windows\system32\drivers\tcpip.sys
16:59:06.0695 0x1d90  Tcpip6 - ok
16:59:06.0731 0x1d90  [ 17F37EC9042D84561C550620643D9A85, B01620BA319A1383D403E6E50C7724879520F3267654556D975CAFFF91A82C78 ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
16:59:06.0733 0x1d90  tcpipreg - ok
16:59:06.0764 0x1d90  [ E40CD9A4ACC8C6D0F8307A4A4F38A3D1, F52AA6CB327106C0870B2ADEFC89B71C01F314956C749DC84210AF81A55C52DE ] tdx             C:\windows\system32\DRIVERS\tdx.sys
16:59:06.0764 0x1d90  tdx - ok
16:59:06.0795 0x1d90  [ E730D0EB1B84EBC98423FC8D285EDBC0, 442DD433F9D22304E64EC7ACFC4E04892D4D92D8AC545A3530FC932A2EEC4767 ] terminpt        C:\windows\System32\drivers\terminpt.sys
16:59:06.0795 0x1d90  terminpt - ok
16:59:06.0848 0x1d90  [ 410EC733547D7FE5709D108015088460, CA12E46D6DB2897223C2113AE01D805E3E6CDE9ACAE17A1749DFB40CDE7A8736 ] TermService     C:\windows\System32\termsrv.dll
16:59:06.0879 0x1d90  TermService - ok
16:59:06.0931 0x1d90  [ D009D1BC14FD5F2AC93D1878735F6C39, D8BCE505B66E05BC00075E46B38359CA4D0FA484EB7981A74221885E8A1FFB87 ] Themes          C:\windows\system32\themeservice.dll
16:59:06.0933 0x1d90  Themes - ok
16:59:06.0964 0x1d90  [ 5F27DE2082E16D4C1D6C627C8ECBD341, 08DA3EB3EF2B2006B6F9F2C8C149DF55DE6738975D556206A814096CAB5C1411 ] TieringEngineService C:\windows\system32\TieringEngineService.exe
16:59:06.0964 0x1d90  TieringEngineService - ok
16:59:07.0011 0x1d90  [ 004E2395FE15814BD8250430F5EEC523, 2649AA073FAF0F72835BD834465231C6A44BF5BB31DE0E18A3844BC967AE1C92 ] tiledatamodelsvc C:\windows\system32\tileobjserver.dll
16:59:07.0011 0x1d90  tiledatamodelsvc - ok
16:59:07.0049 0x1d90  [ 7E81E3E0D7F83BFE3C3975020B6C7F12, 316F9415646CC7A4E9A5F1E07310D433457E623B3E589543E4A6C73C4F77712C ] TimeBroker      C:\windows\System32\TimeBrokerServer.dll
16:59:07.0064 0x1d90  TimeBroker - ok
16:59:07.0111 0x1d90  [ 87B9ABB965F7AF987D52791F0DD1663D, 6E42F764D47ACAD644E5F547E503B7AEA8D700C335674D1B0EB5493914F747E7 ] TPM             C:\windows\System32\drivers\tpm.sys
16:59:07.0111 0x1d90  TPM - ok
16:59:07.0133 0x1d90  [ AA84AF93CE5AF1F05838B51D20295419, 85B3EE773C691EEDFA080CD9C59D31CB58A5BC577AEE91A929F5DFBE1368AB6D ] TrkWks          C:\windows\System32\trkwks.dll
16:59:07.0133 0x1d90  TrkWks - ok
16:59:07.0165 0x1d90  [ 0D5A09B08568760AE85A801FCBC0F83D, 347ACBA74FDCBEAC671521739F8A34EC0E378CAF716C31F55616F9F843E4D0D3 ] TrueSight       C:\Windows\System32\drivers\truesight.sys
16:59:07.0165 0x1d90  TrueSight - ok
16:59:07.0211 0x1d90  [ E50DD57F496CED8873FA3E7D38BCCD42, 36B95F6F2CF48078C6B19FB452C87BB07E95C8804A5C6B526D349AC6227CAB26 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
16:59:07.0228 0x1d90  TrustedInstaller - ok
16:59:07.0248 0x1d90  [ 48E828C66AB016E48F2CB4DD585315FD, 063809B610F6B177B65D62D12605FB94F108DB26A9FD3067E6D6C51F0D92E774 ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
16:59:07.0264 0x1d90  TsUsbFlt - ok
16:59:07.0264 0x1d90  [ 267C76EE60736EA5A1811A53FA02AABE, 28D4C4CB972534204B8336D0403B70E4EFE4F8369ABDE7401FFCCF7D4E3EA165 ] TsUsbGD         C:\windows\System32\drivers\TsUsbGD.sys
16:59:07.0264 0x1d90  TsUsbGD - ok
16:59:07.0295 0x1d90  [ 8CE72F094B822AD5EE9C3A3AFC0C16B6, 827CCD849544E1DA364B03DBC82A848D2F93AD32BA14ED52709C609BC70CE5CA ] tunnel          C:\windows\System32\drivers\tunnel.sys
16:59:07.0295 0x1d90  tunnel - ok
16:59:07.0311 0x1d90  [ 127925766866C52F147A2FFC0C0358A5, DCDF38A456E0BAAEE1E54FD67C3DEB4A036F116036FBD28073201B6C27C2C2DD ] tzautoupdate    C:\windows\system32\tzautoupdate.dll
16:59:07.0329 0x1d90  tzautoupdate - ok
16:59:07.0333 0x1d90  [ 42C546414F80BD6C0137FC3A106F8A69, 067FFCAF0059935851888BD984E848E4E1A6CC1941A8F4534067CCF0B2A3B2E6 ] uagp35          C:\windows\system32\drivers\uagp35.sys
16:59:07.0333 0x1d90  uagp35 - ok
16:59:07.0349 0x1d90  [ 1686DBC81748B096232B15F16C302985, 63D72D1838C42A95599AF3C0B19A069E310ADB091208011D7D6FBAC968D1A59A ] UASPStor        C:\windows\System32\drivers\uaspstor.sys
16:59:07.0349 0x1d90  UASPStor - ok
16:59:07.0380 0x1d90  [ 82D3B1F4D80057826AA649D78147DE36, 344A738F6866BFD3095BB802206DDB2F9E9AD89DC39CAA7DE96455F410683829 ] UcmCx0101       C:\windows\system32\Drivers\UcmCx.sys
16:59:07.0396 0x1d90  UcmCx0101 - ok
16:59:07.0396 0x1d90  [ 1C95F7CE37D9EFB90EBE987A9712356C, B9EE7743ADA50276F05D735C5C29E44039D630A7DC93766A0EAF400DA037E4AF ] UcmUcsi         C:\windows\System32\drivers\UcmUcsi.sys
16:59:07.0411 0x1d90  UcmUcsi - ok
16:59:07.0433 0x1d90  [ AED081772091C98173905E2DF28C223B, 08541CF3354EBB634BD590E0019128F70A6FCA9075B7E785A9E9BD82EC234DD3 ] Ucx01000        C:\windows\system32\drivers\ucx01000.sys
16:59:07.0433 0x1d90  Ucx01000 - ok
16:59:07.0449 0x1d90  [ DCA34A111C29E4578DF2B8CEA3C7CDBD, 86BCE4C8EC228724D5896067A85A4768B6069D10A482ECC51A8F828DBD3880C9 ] UdeCx           C:\windows\system32\drivers\udecx.sys
16:59:07.0449 0x1d90  UdeCx - ok
16:59:07.0480 0x1d90  [ 718A956AE00CE086F381044AB66CC29C, E4EED1600C72CECE1D4507827C329A93D356BBA027470FCF6C4B5C1651DED643 ] udfs            C:\windows\system32\DRIVERS\udfs.sys
16:59:07.0480 0x1d90  udfs - ok
16:59:07.0511 0x1d90  [ BA760F8E66428BA9FF1E8BFBC6248136, BE7DCBB293B12672CB3653E640C46F669BD738D320F34F4FA4A26F6B248561F0 ] UEFI            C:\windows\System32\drivers\UEFI.sys
16:59:07.0511 0x1d90  UEFI - ok
16:59:07.0534 0x1d90  [ 05DD22294A4F3F89E52351C7721E6D2C, 300A7D4BD5F26814CF73400E01DEB810CA3F91BD190B3D37B74ADF080F582829 ] Ufx01000        C:\windows\system32\drivers\ufx01000.sys
16:59:07.0534 0x1d90  Ufx01000 - ok
16:59:07.0565 0x1d90  [ 2B1DABA97DDF5365FC66EE7DEDD86A13, 2FF3355862938B37EE63FCA149415CE5032BF54747B07517BB21460733B65AD8 ] UfxChipidea     C:\windows\System32\drivers\UfxChipidea.sys
16:59:07.0565 0x1d90  UfxChipidea - ok
16:59:07.0596 0x1d90  [ 0B1013A5204A6B9EEB38F4EE1E430CE6, 9E04DB9BCAB951F87D1D142818BDDE1526BA9FEBD5C8C6351E47EC7F00BEE036 ] ufxsynopsys     C:\windows\System32\drivers\ufxsynopsys.sys
16:59:07.0596 0x1d90  ufxsynopsys - ok
16:59:07.0649 0x1d90  [ 63451BD694651307254B8DD37A3D79C7, C781E2D876AF42D5972CCDCF86B7A59F6AF8AF0C6350647F3FA1B209119B5EF9 ] UI0Detect       C:\windows\system32\UI0Detect.exe
16:59:07.0649 0x1d90  UI0Detect - ok
16:59:07.0665 0x1d90  [ 6DE78C04BF32ECA7AF3064F53687C9A5, 164D3BB24EBA3EAF613799928063FE75220A4E583D985F53A895017782C18600 ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
16:59:07.0665 0x1d90  uliagpkx - ok
16:59:07.0696 0x1d90  [ 67D1E0E6E4D5D33AF0AEF0E33B4DA0F4, BA2E6F16B6B3B54C943F1E7B9F79A6D1332A7ED228D754CC5AE70E3CD78B1F37 ] umbus           C:\windows\System32\drivers\umbus.sys
16:59:07.0696 0x1d90  umbus - ok
16:59:07.0712 0x1d90  [ 11680607944A719EF20E0E740785712A, 1567C2B3AAD702DCC2DC9C6B7B92EE5B681C06701A39DAC3AA7E2BE9E1E04F47 ] UmPass          C:\windows\System32\drivers\umpass.sys
16:59:07.0712 0x1d90  UmPass - ok
16:59:07.0734 0x1d90  [ FD949725D9EB52C0B87435CDE1134668, 96E2B3D3379E9AE225E5A4C5251207F1E7DA573901F4F026758EDE9FAEF4F2C5 ] UmRdpService    C:\windows\System32\umrdp.dll
16:59:07.0750 0x1d90  UmRdpService - ok
16:59:07.0796 0x1d90  [ CB902A15DD21B363FECA5DCCF34F5C57, 6A0836A12A410EBD5C667982852B58CA9E9EDB11EA666C413CC0F811E01A549D ] UnistoreSvc     C:\windows\System32\unistore.dll
16:59:07.0812 0x1d90  UnistoreSvc - ok
16:59:08.0112 0x1d90  [ ADF8DBE1212418207F6D5F6F4E8A9E07, 8999DA19B3C6BC5475AD1F55366DBA547B856FB2833552A708A223DF720CDC15 ] upnphost        C:\windows\System32\upnphost.dll
16:59:08.0129 0x1d90  upnphost - ok
16:59:08.0150 0x1d90  [ 2410A0C20D21A25E6C01979FA886BE90, DD3F92D8CF110D47B9E36BA0EB10EB34C0FDD28FE0D57E4B60F9326703388F75 ] UrsChipidea     C:\windows\System32\drivers\urschipidea.sys
16:59:08.0150 0x1d90  UrsChipidea - ok
16:59:08.0165 0x1d90  [ 6E59CE43B6BA5AA1ADCF36A4DBBB92BB, 647D66775A90F67D803043DE8C8AE8BC2F7A042A8DCF9C95BF5458C79609481B ] UrsCx01000      C:\windows\system32\drivers\urscx01000.sys
16:59:08.0165 0x1d90  UrsCx01000 - ok
16:59:08.0165 0x1d90  [ E8A59FA109A22FC07E44BDFCC9727DBD, 0DC5928C0FF7E5B38917660D6EFECCC22172DB0BB9B23216F33E750790529C16 ] UrsSynopsys     C:\windows\System32\drivers\urssynopsys.sys
16:59:08.0181 0x1d90  UrsSynopsys - ok
16:59:08.0196 0x1d90  [ D8A44550ECE102B6443F5D54DCE7DAB3, 97F5AE7B17DAC4A4F3186C77116BC8E49874FB0018C99D8E2CDA29D89E8B0912 ] usbccgp         C:\windows\System32\drivers\usbccgp.sys
16:59:08.0212 0x1d90  usbccgp - ok
16:59:08.0212 0x1d90  [ 66B3D22DAB5312FF238ABF5C6D9F8FAB, 4A644AFC1C27D692D352BEB8801398A00EA5B4055476063AF905A0A46DDBF8BB ] usbcir          C:\windows\System32\drivers\usbcir.sys
16:59:08.0231 0x1d90  usbcir - ok
16:59:08.0250 0x1d90  [ 3E4F20DB902D2E2914F3FF3DB9772200, F3D32BE06A26164B5F6E8DB67160D1DBBDC6D14666EEF84EA43C78CB7706E31C ] usbehci         C:\windows\System32\drivers\usbehci.sys
16:59:08.0250 0x1d90  usbehci - ok
16:59:08.0281 0x1d90  [ 41F7F00D76904416EF1F9EFA1A4C37A2, 7A4250EB2E2E0037B3AE1480C13B229ECFF5C575E68E4F934EE011DB1833B46A ] usbhub          C:\windows\System32\drivers\usbhub.sys
16:59:08.0297 0x1d90  usbhub - ok
16:59:08.0334 0x1d90  [ E7463CE8579A0418A98BE9BE42C647D7, 923CD51C82FCF9DC4E9EEA99E53634EE07EBF62FB5DFC337F01309D7D5C7622C ] USBHUB3         C:\windows\System32\drivers\UsbHub3.sys
16:59:08.0350 0x1d90  USBHUB3 - ok
16:59:08.0381 0x1d90  [ DAB35CCA86F5FBE77D870A40089BC4A1, 4A47D59D882D0F2B93F2EE7F10995E7D68B58009434E2CBD04C659E0D1F059D8 ] usbohci         C:\windows\System32\drivers\usbohci.sys
16:59:08.0381 0x1d90  usbohci - ok
16:59:08.0397 0x1d90  [ 21162F65C7756AAECAEBED9E67D0A5FE, DE3B43964171DB5B0464DA5E7A674A5D200A8695E6EF1AE2030681066ABA2688 ] usbprint        C:\windows\System32\drivers\usbprint.sys
16:59:08.0397 0x1d90  usbprint - ok
16:59:08.0432 0x1d90  [ 4AAD6547953D373A1EB5B2DF583D868B, 4E3DCEC9644550996C314FCC39F885DDE4AA7AD821B8596D96C5BEA5D60795F7 ] usbser          C:\windows\System32\drivers\usbser.sys
16:59:08.0434 0x1d90  usbser - ok
16:59:08.0450 0x1d90  [ 8949F77132A4F8F3BA17C6727099F002, 86AD4A2263B34983335180FDAE775D1744E042D2A11300D27DF546F15F285A25 ] USBSTOR         C:\windows\System32\drivers\USBSTOR.SYS
16:59:08.0450 0x1d90  USBSTOR - ok
16:59:08.0466 0x1d90  [ 8B3E458A8851F9A3B2109B1680EE1159, 753AC8F82F65564F00EA2F60B43E4B815FEAABE0DA35B6356210A5F4B1CA3EFC ] usbuhci         C:\windows\System32\drivers\usbuhci.sys
16:59:08.0466 0x1d90  usbuhci - ok
16:59:08.0513 0x1d90  [ 4B13B61CBB9CC3CB373C60B930D648F5, C79D10A1BF2B6BF141DD37A90BCCA0E1F2AF31B5028BB21537A8EE6EED630F5B ] usbvideo        C:\windows\System32\Drivers\usbvideo.sys
16:59:08.0513 0x1d90  usbvideo - ok
16:59:08.0534 0x1d90  [ 9E9D58F5E1702955B2F4D62996F80E8E, 6C21C250B9D98346D0D5CB7D6C11AB120A1D195C28313BDB0CE532663F0114E2 ] USBXHCI         C:\windows\System32\drivers\USBXHCI.SYS
16:59:08.0534 0x1d90  USBXHCI - ok
16:59:08.0597 0x1d90  [ A1A9E310941361D940DED2F12EE651A1, 8A10121D4D4B5552F8EC31C3ADA6B3F6C270F73796028AF831E9FEFCACC1B38D ] UserDataSvc     C:\windows\System32\userdataservice.dll
16:59:08.0634 0x1d90  UserDataSvc - ok
16:59:08.0934 0x1d90  [ 2419CCBB46AD2341AE79468E4E9A1FF4, 818B1E674F2BE4B87D54DCB9D0921C9AE42408CF06A9BF50197C03C38BC632AB ] UserManager     C:\windows\System32\usermgr.dll
16:59:08.0950 0x1d90  UserManager - ok
16:59:08.0997 0x1d90  [ 94147C730AA16DC4D50768B48453978E, DF43898E088A4CA0213DE4FBFCDEDD7C6696F80B78381E6EF56A1A7D42AF1F20 ] UsoSvc          C:\windows\system32\usocore.dll
16:59:08.0997 0x1d90  UsoSvc - ok
16:59:09.0034 0x1d90  [ D44292C0CD22706CBD704B7555EB65B5, 2DFD70876ED10E6083552C94BBA3488F2BEEB851C47DA24B27319351BD6FEE5C ] VaultSvc        C:\windows\system32\lsass.exe
16:59:09.0034 0x1d90  VaultSvc - ok
16:59:09.0050 0x1d90  [ E1BE37312785A71862516F66B3FD24CE, D248C513DBEACB192653C6E46809209F341771B146544BBF43B86369280B4F8B ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
16:59:09.0050 0x1d90  vdrvroot - ok
16:59:09.0097 0x1d90  [ EAD55A7EC50B0E93B73ABDA29E387548, E69625AA34F6A002C612376DDB756ACE161C23DEAC79A7811F862B1B8A670C78 ] vds             C:\windows\System32\vds.exe
16:59:09.0113 0x1d90  vds - ok
16:59:09.0135 0x1d90  [ E42C0F2850735FF9D908B9DB581E6314, E2204A56BF37FC57CD2ED96E3F908882D72B4BFF1BFB97C5172C851F1E4F9650 ] VerifierExt     C:\windows\system32\drivers\VerifierExt.sys
16:59:09.0135 0x1d90  VerifierExt - ok
16:59:09.0197 0x1d90  [ 5E6B235E7A64C3F7CBE456368E9B5368, DEDD57CA195D48FF6D755EC91115F22D12558430F0A610F10417D09A2F876B9F ] vhdmp           C:\windows\System32\drivers\vhdmp.sys
16:59:09.0197 0x1d90  vhdmp - ok
16:59:09.0234 0x1d90  [ D0C9632C350F46786643A069251BC249, CF65BA0D3F3D2B821C10E2D4F53F5B6BF6236CA9767419392A561CFA79254C3B ] vhf             C:\windows\System32\drivers\vhf.sys
16:59:09.0234 0x1d90  vhf - ok
16:59:09.0266 0x1d90  [ D0EB5D844EFB47E6BDCBF58D818C8436, DB801CEAD89BDD8861E785C4C4E713E1D193EE1415608CA2B1FEF65C57990AD3 ] VirtualButtons  C:\windows\System32\drivers\VirtualButtons.sys
16:59:09.0266 0x1d90  VirtualButtons - ok
16:59:09.0281 0x1d90  [ E886CB75DA2B6EB35469EF10135624C7, 3AFC59A0709B984F517A918D5BBEBEB1C80001BEC87C133447DCEAEDE00E516D ] vmbus           C:\windows\system32\drivers\vmbus.sys
16:59:09.0281 0x1d90  vmbus - ok
16:59:09.0297 0x1d90  [ 46D2EC27820EC0F798F85821E53C2942, D298A7D6AC16F76A069F843C8DD323ECB340D361733CB9B076BCDE8FC5F1FEFC ] VMBusHID        C:\windows\System32\drivers\VMBusHID.sys
16:59:09.0297 0x1d90  VMBusHID - ok
16:59:09.0335 0x1d90  [ 31EFC43DA99BB96A35CE091F2FCAE58A, 925E7B7F5DC72EFFD1D6EF530BA9F088AF7B6A56486FB79BFBEECD9E428230AE ] vmicguestinterface C:\windows\System32\ICSvc.dll
16:59:09.0350 0x1d90  vmicguestinterface - ok
16:59:09.0366 0x1d90  [ 31EFC43DA99BB96A35CE091F2FCAE58A, 925E7B7F5DC72EFFD1D6EF530BA9F088AF7B6A56486FB79BFBEECD9E428230AE ] vmicheartbeat   C:\windows\System32\ICSvc.dll
16:59:09.0381 0x1d90  vmicheartbeat - ok
16:59:09.0397 0x1d90  [ 31EFC43DA99BB96A35CE091F2FCAE58A, 925E7B7F5DC72EFFD1D6EF530BA9F088AF7B6A56486FB79BFBEECD9E428230AE ] vmickvpexchange C:\windows\System32\ICSvc.dll
16:59:09.0413 0x1d90  vmickvpexchange - ok
16:59:09.0435 0x1d90  [ 31EFC43DA99BB96A35CE091F2FCAE58A, 925E7B7F5DC72EFFD1D6EF530BA9F088AF7B6A56486FB79BFBEECD9E428230AE ] vmicrdv         C:\windows\System32\ICSvc.dll
16:59:09.0450 0x1d90  vmicrdv - ok
16:59:09.0466 0x1d90  [ 31EFC43DA99BB96A35CE091F2FCAE58A, 925E7B7F5DC72EFFD1D6EF530BA9F088AF7B6A56486FB79BFBEECD9E428230AE ] vmicshutdown    C:\windows\System32\ICSvc.dll
16:59:09.0466 0x1d90  vmicshutdown - ok
16:59:09.0497 0x1d90  [ 31EFC43DA99BB96A35CE091F2FCAE58A, 925E7B7F5DC72EFFD1D6EF530BA9F088AF7B6A56486FB79BFBEECD9E428230AE ] vmictimesync    C:\windows\System32\ICSvc.dll
16:59:09.0497 0x1d90  vmictimesync - ok
16:59:09.0513 0x1d90  [ 31EFC43DA99BB96A35CE091F2FCAE58A, 925E7B7F5DC72EFFD1D6EF530BA9F088AF7B6A56486FB79BFBEECD9E428230AE ] vmicvmsession   C:\windows\System32\ICSvc.dll
16:59:09.0535 0x1d90  vmicvmsession - ok
16:59:09.0551 0x1d90  [ 31EFC43DA99BB96A35CE091F2FCAE58A, 925E7B7F5DC72EFFD1D6EF530BA9F088AF7B6A56486FB79BFBEECD9E428230AE ] vmicvss         C:\windows\System32\ICSvc.dll
16:59:09.0551 0x1d90  vmicvss - ok
16:59:09.0613 0x1d90  [ B9265F47E7A354BAAA0AF5CBA3F8F7CE, F836E7BEDC7CAB1C01225164D171A0210D8F909F52992E4C0BF3C92B365BCD52 ] volmgr          C:\windows\system32\drivers\volmgr.sys
16:59:09.0613 0x1d90  volmgr - ok
16:59:09.0651 0x1d90  [ BEE9C8B72AB752B794F69C2B9B3678AA, 49A5093C26F3CDCD60577F7F2D7F936C7B2BD010B27F2C49A7B6AA41E42DF98D ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
16:59:09.0651 0x1d90  volmgrx - ok
16:59:09.0666 0x1d90  [ E1F91A727A04C9F8199D04FF3BBBF63C, 076CAEE621DBF7DE24ED92BA239C440879FDB674CF3213DF3E35AEC03D0D2031 ] volsnap         C:\windows\system32\drivers\volsnap.sys
16:59:09.0682 0x1d90  volsnap - ok
16:59:09.0713 0x1d90  [ F7B1B1101271E31F43CC76E890704F51, 2282D82B220C3D13FF980ED8E40443C83816D3DA9557EACEA137873F92BB9CF4 ] vpci            C:\windows\System32\drivers\vpci.sys
16:59:09.0713 0x1d90  vpci - ok
16:59:09.0736 0x1d90  [ D48ED0A08BD2FD25A833E6AC99623091, 6CA7580878D3893E14B4938023A00CDFC9BE215A0CE4ED59A94F95DFD9FDF4D8 ] vsmraid         C:\windows\system32\drivers\vsmraid.sys
16:59:09.0736 0x1d90  vsmraid - ok
16:59:09.0798 0x1d90  [ 47721869B78A3B2B347419541A87046C, C0B1BF63393F1B777D29AE589273A585713E0672B3FD1EF37021DDC727733E99 ] VSS             C:\windows\system32\vssvc.exe
16:59:09.0814 0x1d90  VSS - ok
16:59:09.0836 0x1d90  [ 6990D4AFDF545669D4E6C232F26DE1FB, 9B8F99A035188FD96BA79E935E8EF387BEA2223ECA0B74CF64AB993DABAA5722 ] VSTXRAID        C:\windows\system32\drivers\vstxraid.sys
16:59:09.0852 0x1d90  VSTXRAID - ok
16:59:09.0867 0x1d90  [ 1EE11F0508C58EF081F4176E66D6970B, 9069B3FC8850C7CF617909C6DBFC3753FEB59A9E708379CC57190F4097FB374E ] vwifibus        C:\windows\System32\drivers\vwifibus.sys
16:59:09.0867 0x1d90  vwifibus - ok
16:59:09.0883 0x1d90  [ 938E4EF58E42D252B742B0E243011B90, AC0C21FBAF15924CB271CA43ACB7A86287936C78B4852BCFC59EC7EC703E036C ] vwififlt        C:\windows\system32\drivers\vwififlt.sys
16:59:09.0883 0x1d90  vwififlt - ok
16:59:09.0899 0x1d90  [ 3BE5AAC930447FD18D4A8255A2FEC95C, A517357188FE4A5BD98A3CDB2165ACCE96CCE4BE2B90DDBEAF70B6DDF393F506 ] vwifimp         C:\windows\System32\drivers\vwifimp.sys
16:59:09.0899 0x1d90  vwifimp - ok
16:59:09.0936 0x1d90  [ 22CF3668BA7C3B037B3918678293B2BD, D24E33229EE86F5D371890C166F89FFCE1AA7DD3DE9F75101088A2A404AD485B ] W32Time         C:\windows\system32\w32time.dll
16:59:09.0952 0x1d90  W32Time - ok
16:59:09.0967 0x1d90  [ 00C27B64C758C111E5D78A70DE6CA2B6, C99761B9B671B3A1FF1C52796CCA3F4F825BF50D9657D13B551E849CDD82055D ] WacomPen        C:\windows\System32\drivers\wacompen.sys
16:59:09.0967 0x1d90  WacomPen - ok
16:59:10.0014 0x1d90  [ 46986CCBB5C9FCB02CC0E9DBD20A2F36, 387E989D4F6E35288B47C02CE9AD2E0B0467272903F2C0A1A9CEBF799452B2DA ] WalletService   C:\windows\system32\WalletService.dll
16:59:10.0030 0x1d90  WalletService - ok
16:59:10.0036 0x1d90  [ 8CB53620B2C2F0641DD7563EA0FDF491, D62FE75C908409A54949F0E3C39558DC7A8F11AF7496ED7B0872D80D08CB67A7 ] wanarp          C:\windows\system32\DRIVERS\wanarp.sys
16:59:10.0036 0x1d90  wanarp - ok
16:59:10.0052 0x1d90  [ 8CB53620B2C2F0641DD7563EA0FDF491, D62FE75C908409A54949F0E3C39558DC7A8F11AF7496ED7B0872D80D08CB67A7 ] wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
16:59:10.0052 0x1d90  wanarpv6 - ok
16:59:10.0130 0x1d90  [ 43742B3E4001AC88446B4808C04B5D94, A783E1644B453A4840F26653E37F881E8B9B1CD35EE4C959AA4FE03571A673BB ] wbengine        C:\windows\system32\wbengine.exe
16:59:10.0152 0x1d90  wbengine - ok
16:59:10.0199 0x1d90  [ 642EFABF900374FA85639D83B5533AFD, 292692D6AAC2A785D237ADFBC7CA3D379E8FC79FA366A8CE7D06F5CA5CE6866B ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
16:59:10.0215 0x1d90  WbioSrvc - ok
16:59:10.0252 0x1d90  [ 5323162AB7D42F77B8D5BBB43981699B, A5961A43BDCC24B9054621C1A48B4D8FEAE9FB9C833400C02F28DC966AC4FCE8 ] Wcmsvc          C:\windows\System32\wcmsvc.dll
16:59:10.0268 0x1d90  Wcmsvc - ok
16:59:10.0299 0x1d90  [ DD510082B0D2FBA111689EB8274BA336, EAD9824DA28EFB0440D0D4D5CF88F6AE802AD8BA7A915CED814161901C179998 ] wcncsvc         C:\windows\System32\wcncsvc.dll
16:59:10.0315 0x1d90  wcncsvc - ok
16:59:10.0337 0x1d90  [ 965B6197A659782B6A0F68411A180AAD, 5541AB78B71E4FA655BCBF2D80D574B2A3B4AA8871F65D26620BDE549FA5459A ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
16:59:10.0337 0x1d90  WcsPlugInService - ok
16:59:10.0368 0x1d90  [ 069D3D6E20AD753B34FCE856F0436869, CF8C12295DDAA56E7350019AADBA533D7857CFB3F20DEE14E557963645A9331B ] WdBoot          C:\windows\system32\drivers\WdBoot.sys
16:59:10.0384 0x1d90  WdBoot - ok
16:59:10.0415 0x1d90  [ 6CC727E94CD84E9720FDCDA8089CABCC, BCF66056B06DED6BC2D329E910FCD3E685D627BAD3B5D7F4B0E970B45CD9CEF4 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
16:59:10.0437 0x1d90  Wdf01000 - ok
16:59:10.0468 0x1d90  [ E3E97151A1D1E87BB2D5371F66C5F169, 0ED0B9852FE0533816F5EE2F06045B3964A00FD749A7011DB3C663AB6FA369E2 ] WdFilter        C:\windows\system32\drivers\WdFilter.sys
16:59:10.0468 0x1d90  WdFilter - ok
16:59:10.0484 0x1d90  [ 75DC67553051103547B693898CB32D08, 4FCF2C3DBBE85461364B1F3A3F3629B52C8664487D30142D15937A4C96EF6A8F ] WdiServiceHost  C:\windows\system32\wdi.dll
16:59:10.0484 0x1d90  WdiServiceHost - ok
16:59:10.0499 0x1d90  [ 75DC67553051103547B693898CB32D08, 4FCF2C3DBBE85461364B1F3A3F3629B52C8664487D30142D15937A4C96EF6A8F ] WdiSystemHost   C:\windows\system32\wdi.dll
16:59:10.0515 0x1d90  WdiSystemHost - ok
16:59:10.0553 0x1d90  [ 5BC95DA941A3CC43EE35A46D43830CE8, 8A457647BB321894AE93713A2240FEA88F6F507F9CCEDC6AE4B6291DFBC165E4 ] wdiwifi         C:\windows\system32\DRIVERS\wdiwifi.sys
16:59:10.0553 0x1d90  wdiwifi - ok
16:59:10.0584 0x1d90  [ 07B043160399AF4009054E2EA3464BF4, 8D652D7CD75F8FB2B5414155355F0C970015914E1AC6522DBB8387BB8662F542 ] WdNisDrv        C:\windows\system32\Drivers\WdNisDrv.sys
16:59:10.0584 0x1d90  WdNisDrv - ok
16:59:10.0615 0x1d90  WdNisSvc - ok
16:59:10.0652 0x1d90  [ 4C38FCAC3F7A43D77D59877F2AA656D7, 5F3CC3D3B284F959C3C08E882211E61DF4F9AAACDD16ED4E8D70EFA768E41E4C ] WebClient       C:\windows\System32\webclnt.dll
16:59:10.0668 0x1d90  WebClient - ok
16:59:10.0699 0x1d90  [ B6BF579761489720BCE787F723F596E5, 879B17F6A4F23F5E85A09126B7B407955DDCEB1BA4A8FFC0A418B7F47311C056 ] Wecsvc          C:\windows\system32\wecsvc.dll
16:59:10.0699 0x1d90  Wecsvc - ok
16:59:10.0737 0x1d90  [ 10C9CF8771A2A87F575F9FB56821474E, 15E3DFFE9CF6777F67E426ECF797D2DF743EA152DEE336DCC9C2F92A0E6EB9A3 ] WEPHOSTSVC      C:\windows\system32\wephostsvc.dll
16:59:10.0737 0x1d90  WEPHOSTSVC - ok
16:59:10.0768 0x1d90  [ 81BCE1F84984F639C456A44DC3310242, 509A6F489FFDB319D10075D3D2FED70E8DD8ED9FBCD6FF353F5191D7A5944CE7 ] wercplsupport   C:\windows\System32\wercplsupport.dll
16:59:10.0768 0x1d90  wercplsupport - ok
16:59:10.0784 0x1d90  [ A981E78F4E2955D23E9CC140A1064130, F9E6937CBA3A8A12B02463D7EC0DF086A2F5D83507C00F409775180C98BD4E9D ] WerSvc          C:\windows\System32\WerSvc.dll
16:59:10.0800 0x1d90  WerSvc - ok
16:59:10.0815 0x1d90  [ C11272713719922DE5711094333BD166, 61D4F07E02AECF04964FF51EEA31069A2B0EAA549AD2B29B5FD3E1E6BB543593 ] WFPLWFS         C:\windows\system32\drivers\wfplwfs.sys
16:59:10.0833 0x1d90  WFPLWFS - ok
16:59:10.0853 0x1d90  [ 71DAE1FD62444A54301EA132FF737564, 9646AEE1F0CE2DC9B04C4F612019C02C7A7143A898EE3A834986ECD8B0FB1F93 ] WiaRpc          C:\windows\System32\wiarpc.dll
16:59:10.0869 0x1d90  WiaRpc - ok
16:59:10.0884 0x1d90  [ EF536C54AB9281FDC4E83B07279FCFC4, 22E4F133170682EE14413CA8FDC2DBE73AB31960D6ACB728A6B398229FDDFD3B ] WIMMount        C:\windows\system32\drivers\wimmount.sys
16:59:10.0900 0x1d90  WIMMount - ok
16:59:10.0900 0x1d90  WinDefend - ok
16:59:10.0953 0x1d90  [ D8966A76408107224C6013993135DD78, 6159F69BC26FF817078E68C70E6DFC9075FEBF9EF9F4F046C7A65BC377544AE6 ] WindowsTrustedRT C:\windows\system32\drivers\WindowsTrustedRT.sys
16:59:10.0953 0x1d90  WindowsTrustedRT - ok
16:59:10.0969 0x1d90  [ 8B102A7B6CE326FD4208CC7C2D183343, E47C1D76CBFD2A382C3A7BB048D752FB6DD4616FADDEB1C3ADD5DDAE149742AF ] WindowsTrustedRTProxy C:\windows\system32\drivers\WindowsTrustedRTProxy.sys
16:59:10.0985 0x1d90  WindowsTrustedRTProxy - ok
16:59:11.0038 0x1d90  [ 84364A3CF657FB292E9176448FFE8C89, 00832FA073B447722114B3CBC5AC0D600E95796D541360FAA34FF50C07B27A7E ] WinHttpAutoProxySvc C:\windows\system32\winhttp.dll
16:59:11.0054 0x1d90  WinHttpAutoProxySvc - ok
16:59:11.0069 0x1d90  [ 4A53441C1C4D2878BEF27E381138BB2D, C221E74491E6FD2AF472B53876B46788D5CF62F4E645457F3B3816FD0ED2BAA1 ] WinMad          C:\windows\System32\drivers\winmad.sys
16:59:11.0069 0x1d90  WinMad - ok
16:59:11.0140 0x1d90  [ 1033C37122C7404C3B926ADF84874832, 163B3A7112F13AE7BB2655A28C6B19AF9B263F2AD2FF1B75314BE3E2B9118903 ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
16:59:11.0140 0x1d90  Winmgmt - ok
16:59:11.0239 0x1d90  [ DCB7DF983C2EDCB97427D3D04C3277F2, E34DA6FCC1E4F410CDC87116FAED6CE34FA77139124082E3EDAC9CDB74036D5D ] WinRM           C:\windows\system32\WsmSvc.dll
16:59:11.0287 0x1d90  WinRM - ok
16:59:11.0338 0x1d90  [ 260907CE034FE327AC99BDA4153AB22F, B96501F43248713C2E153B9D22B78D51412A3C6989A2FB5F53A406C6CDC98D30 ] WINUSB          C:\windows\System32\drivers\WinUSB.SYS
16:59:11.0339 0x1d90  WINUSB - ok
16:59:11.0339 0x1d90  [ 40A3E8D729F458B2C9A8BD9380FF83D5, CD42FFC138969EF8C9588FD113F0B9A98FBA282D46A5B6BCFA765F55ED6E97A1 ] WinVerbs        C:\windows\System32\drivers\winverbs.sys
16:59:11.0355 0x1d90  WinVerbs - ok
16:59:11.0402 0x1d90  [ 9ABB443957FF46631CD25A2CD5ACD4A1, 7540C01A4B1CF1A74548658D180F517B33A0B2D0CD1A9DBF796AB38F7C2D787A ] WirelessButtonDriver64 C:\windows\System32\drivers\WirelessButtonDriver64.sys
16:59:11.0402 0x1d90  WirelessButtonDriver64 - ok
16:59:11.0456 0x1d90  [ 3A627A24EAC6CEC3BA59548AA70BAD6E, C4B908CEB2D6F7F14C635AE02E20B16DAF795073975AE3967627D27E8ABAB015 ] WirelessKeyboardFilter C:\windows\System32\drivers\WirelessKeyboardFilter.sys
16:59:11.0456 0x1d90  WirelessKeyboardFilter - ok
16:59:11.0541 0x1d90  [ BFBEBBA9ABB53EF0C623BD064D1F5619, C50F485EB42CED701BBC53708A0B0D7192127B4A09DCEF3E58F6ADC8CE7F6BDF ] WlanSvc         C:\windows\System32\wlansvc.dll
16:59:11.0588 0x1d90  WlanSvc - ok
16:59:11.0672 0x1d90  [ 80D7BCEBC3D24531A452161552A47A7B, 5F4662EBCCB78B72B7EF2EB3123C74F455C5C2AEE18D48D7B23EE40EF55DDBA8 ] wlidsvc         C:\windows\system32\wlidsvc.dll
16:59:11.0703 0x1d90  wlidsvc - ok
16:59:11.0740 0x1d90  [ 8F010BF65238F3F822D22BA12831796E, 2CA830F259B742D2F5CDD0437960BF512D40FB4A4C2342E3BABB38D468F79694 ] WmiAcpi         C:\windows\System32\drivers\wmiacpi.sys
16:59:11.0740 0x1d90  WmiAcpi - ok
16:59:11.0772 0x1d90  [ 74ACA5A7880C1F0BB9D60E32E1705A70, A89817BCCBFF94D7394614DA81D1C6C4F53AF47A539E674EEF6DC3FC496BF702 ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
16:59:11.0772 0x1d90  wmiApSrv - ok
16:59:11.0803 0x1d90  WMPNetworkSvc - ok
16:59:11.0841 0x1d90  [ 2A9650FCC696DB28E45EA8B33B99B8E6, FBEBC6C05D50F578C6EEE0A7285EBE1DEADB08DD21FA3232630FD8D5A68FC3FB ] Wof             C:\windows\system32\drivers\Wof.sys
16:59:11.0841 0x1d90  Wof - ok
16:59:11.0919 0x1d90  [ 7EF584FB660826CFC28B9D0100C954A9, 7D9E8A03A5D4ECF7AC47DD4CA09FE8A112CDDDBA6A8CD1337004B118F05FB14E ] workfolderssvc  C:\windows\system32\workfolderssvc.dll
16:59:11.0957 0x1d90  workfolderssvc - ok
16:59:11.0972 0x1d90  [ 22C52D7EE7C7D0E02C8EFD8CAE8E3A71, 126605A12CEC9CC07DE3050F12E43CECABEAF0D00DF12300AF70F34700F7FE8E ] wpcfltr         C:\windows\system32\DRIVERS\wpcfltr.sys
16:59:11.0972 0x1d90  wpcfltr - ok
16:59:12.0004 0x1d90  [ 45FA01F8B7971ACB65202038E34D04A3, 9B2C2ABC7DB716295B0BD0AF04DA08E6B4200D7CF1C7DB59DD8FD8FEBD56D94C ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
16:59:12.0019 0x1d90  WPDBusEnum - ok
16:59:12.0038 0x1d90  [ 1C08E424CBDD5065BB7266F8C048C1B1, 0452C85EDA6CBAB75C2617886C5D8117ED25D91F1BE0F8377B08D55B6629B028 ] WpdUpFltr       C:\windows\system32\drivers\WpdUpFltr.sys
16:59:12.0040 0x1d90  WpdUpFltr - ok
16:59:12.0073 0x1d90  [ 2C6EEFFBB7FB1C51CCD3737C77AB9109, 8C2ED309FAF4312512E7BCCBBC51B1353603A3499077A1DE21991F0692AF1620 ] WpnService      C:\windows\system32\WpnService.dll
16:59:12.0073 0x1d90  WpnService - ok
16:59:12.0088 0x1d90  [ 638B43D39A3D0B47024555CF1095E6F1, C7EA0A6ED227A5256EB02CA76FEC538DF196B8DC38DA2A567757D2B221C9473E ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
16:59:12.0104 0x1d90  ws2ifsl - ok
16:59:12.0139 0x1d90  [ AFB9FCD14C44A582DE37AB3F308FEFF3, B849ADA3AFBACE2D84CBEEB4BF051097F41096482FE5ED95ABA1C08ED714B3FA ] wscsvc          C:\windows\System32\wscsvc.dll
16:59:12.0141 0x1d90  wscsvc - ok
16:59:12.0173 0x1d90  [ F517CB0182B1DA5C0E0FC6B548FF60CC, F09CA4172D611487F157973C808627F04B0CF0A71CE19D49280BFBEA4AE6027B ] WSDPrintDevice  C:\windows\System32\drivers\WSDPrint.sys
16:59:12.0173 0x1d90  WSDPrintDevice - ok
16:59:12.0188 0x1d90  [ 3A3294E2E5CBFC51999180C06051DDE9, 2EEE0A5BEBB366E4C12245E8175685CF2173E260B482A8EEB7F8255BA43C6CE3 ] WSDScan         C:\windows\system32\DRIVERS\WSDScan.sys
16:59:12.0188 0x1d90  WSDScan - ok
16:59:12.0204 0x1d90  WSearch - ok
16:59:12.0319 0x1d90  [ 138084A35FFF9482A3BC511057FF5900, A4B4C4D427084F241867ACBC316260F424FFCC1289E2E02614EC9CB80FD5852C ] WSService       C:\windows\System32\WSService.dll
16:59:12.0389 0x1d90  WSService - ok
16:59:12.0489 0x1d90  [ A647B1F600E0F9C85A81B75A737C4FBD, 592E8317D08A7B39D32354DFFA23BF4521C7CFD62E70F0BD729365609FD89C20 ] wuauserv        C:\windows\system32\wuaueng.dll
16:59:12.0520 0x1d90  wuauserv - ok
16:59:12.0558 0x1d90  [ A928F25CB62232F413EE655352856E10, 1D2B278A24DDDE8792ADE7649FF90A98E186B79F13AA296C30E4180293BE906A ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
16:59:12.0558 0x1d90  WudfPf - ok
16:59:12.0589 0x1d90  [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] WUDFRd          C:\windows\System32\drivers\WUDFRd.sys
16:59:12.0589 0x1d90  WUDFRd - ok
16:59:12.0620 0x1d90  [ 1336DA39FE006EAB2733CA4DE5B3560C, F0D6C71ADCB66D4D14EC6D09FD43F5521A3A8CA53F248DFD01696FB4F033BE77 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
16:59:12.0620 0x1d90  wudfsvc - ok
16:59:12.0641 0x1d90  [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] WUDFWpdFs       C:\windows\system32\DRIVERS\WUDFRd.sys
16:59:12.0642 0x1d90  WUDFWpdFs - ok
16:59:12.0658 0x1d90  [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] WUDFWpdMtp      C:\windows\system32\DRIVERS\WUDFRd.sys
16:59:12.0658 0x1d90  WUDFWpdMtp - ok
16:59:12.0705 0x1d90  [ 8F7379DEC852CB0B0F5F5E2A1ED8377D, F1D0AFD6803BA44BFC08E07189589DD6F1152CABD79DC0967D7FC34F9D420723 ] WwanSvc         C:\windows\System32\wwansvc.dll
16:59:12.0742 0x1d90  WwanSvc - ok
16:59:12.0805 0x1d90  [ 130AA463B4C1E0DAABF0A3A20E3ECE7C, 97CBD02ACE346308682230595E305BA7844C31550E6D8C2212418D6FA1CC67BE ] XblAuthManager  C:\windows\System32\XblAuthManager.dll
16:59:12.0821 0x1d90  XblAuthManager - ok
16:59:12.0873 0x1d90  [ 7118498F6E48758A2EF5A7D1982E2B62, 1FF75AE64CB6DB263E8B35515E092B325AA71A6B2210F8F2B0AD087B3BA33345 ] XblGameSave     C:\windows\System32\XblGameSave.dll
16:59:12.0905 0x1d90  XblGameSave - ok
16:59:12.0937 0x1d90  [ F279536122B83FD0D8E158AA753E1B7C, 6A542F28E24B30DBDC2EEE24DA33C2F4ADB3596AEDDD71DC1495DD40577CE4BB ] xboxgip         C:\windows\System32\drivers\xboxgip.sys
16:59:12.0942 0x1d90  xboxgip - ok
16:59:12.0989 0x1d90  [ 6284743AFD613A1DAF20FA5FE3FBF9BB, 0010DA848A470613C2F70B6815E608B23E1AEABCAE3FF966F0957890D8F20F8E ] XboxNetApiSvc   C:\windows\system32\XboxNetApiSvc.dll
16:59:13.0005 0x1d90  XboxNetApiSvc - ok
16:59:13.0040 0x1d90  [ DA0807D87A62D076C29C4E30F1E84F46, CA3079350038091AEE04D4DA7C06865E9DB3095120AE61AAB575AA77E86A6223 ] xinputhid       C:\windows\System32\drivers\xinputhid.sys
16:59:13.0043 0x1d90  xinputhid - ok
16:59:13.0205 0x1d90  [ 412C8F4230C6335EB0C4554C872D28AF, 452EC98582CD2BCECABE1F5400BF0E4C9F669B6C359B71A17B0DF975173B20A2 ] ZeroConfigService c:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
16:59:13.0274 0x1d90  ZeroConfigService - ok
16:59:13.0290 0x1d90  ================ Scan global ===============================
16:59:13.0321 0x1d90  [ 82E25186617BA6C15010F0D47C705705, 5BF9E38918E6EAE86448137E2D120B80318AA1143CDDF539A2BFBEE227646816 ] C:\windows\system32\basesrv.dll
16:59:13.0359 0x1d90  [ 129C03E5ECB32E7188A9FBBBD13E5572, 3DAEBE1FB09742108DAAC6D9D31261AA1947B697515B704CB7DEAEBC39EE82AE ] C:\windows\system32\winsrv.dll
16:59:13.0374 0x1d90  [ 09E92888FFF86F3334E59778724DCA6F, 2344763B52395EF565A9DE5F55BEDCA026AD2E8072FFD06F826BF366B3BA2AB4 ] C:\windows\system32\sxssrv.dll
16:59:13.0406 0x1d90  [ 6FF8248F3A9D69A095C7F3F42BC29CB2, 9077B1AA0AFB8DB329FDED0E51085DE1C51B22A986162F29037FCA404A80D512 ] C:\windows\system32\services.exe
16:59:13.0421 0x1d90  [ Global ] - ok
16:59:13.0421 0x1d90  ================ Scan MBR ==================================
16:59:13.0437 0x1d90  [ A78C646DB8D284B9C54ED366B2CA860E ] \Device\Harddisk0\DR0
16:59:13.0477 0x1d90  \Device\Harddisk0\DR0 - ok
16:59:13.0477 0x1d90  ================ Scan VBR ==================================
16:59:13.0493 0x1d90  [ 1CA22AE056024DFCD4F9D884765C6257 ] \Device\Harddisk0\DR0\Partition1
16:59:13.0493 0x1d90  \Device\Harddisk0\DR0\Partition1 - ok
16:59:13.0493 0x1d90  [ 7AD437E3BF870E1AA45AE67C72A83681 ] \Device\Harddisk0\DR0\Partition2
16:59:13.0493 0x1d90  \Device\Harddisk0\DR0\Partition2 - ok
16:59:13.0508 0x1d90  [ 121AFC920E7D24BF022E3D80D8617118 ] \Device\Harddisk0\DR0\Partition3
16:59:13.0508 0x1d90  \Device\Harddisk0\DR0\Partition3 - ok
16:59:13.0524 0x1d90  [ DB2310B4876926DF53527AC3B3C993F8 ] \Device\Harddisk0\DR0\Partition4
16:59:13.0541 0x1d90  \Device\Harddisk0\DR0\Partition4 - ok
16:59:13.0546 0x1d90  [ 739FAAC8F3D4E7FCE12D395B9B072E79 ] \Device\Harddisk0\DR0\Partition5
16:59:13.0546 0x1d90  \Device\Harddisk0\DR0\Partition5 - ok
16:59:13.0562 0x1d90  ================ Scan generic autorun ======================
16:59:13.0662 0x1d90  [ 6172205D06B420A62CBEFBACA394C0B2, 1286DA0D0796CF7A5D6D791A76F91059EF7245C0D85603B3ED69BB57404896C3 ] C:\Program Files\Conexant\SA3\HP-NB-AIO\SACpl.exe
16:59:13.0694 0x1d90  SmartAudio - ok
16:59:13.0847 0x1d90  [ 0C5CF5B97332588CE9BD8274E9485F9C, AFF77D6D4607DDB7983FBA8ADB55FF4C07386D6529AC50F7D6B79674F1BFF6F2 ] c:\Program Files\AMD\CNext\CNext\cnext.exe
16:59:13.0926 0x1d90  StartCN - ok
16:59:13.0979 0x1d90  [ F4BC46AD4FC1F2F3372EBF8505D00436, 94F752406AC4968A917691A2E2A09C2EBAAA24E549E3BC0F5F256A8233DF86D5 ] C:\Program Files (x86)\Hewlett-Packard\HP 3D DriveGuard\AccelerometerST.exe
16:59:13.0979 0x1d90  AccelerometerSysTrayApplet - ok
16:59:14.0046 0x1d90  [ 0834375437F84215117725DD7C803916, B3FFE5CD569A12BA8915DB1826CC4CA23077D35D859E1B5428A4985E3F680F61 ] C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe
16:59:14.0048 0x1d90  HPMessageService - ok
16:59:14.0095 0x1d90  [ 88767443524FCF8C5D3C97752FD9FCF7, FD39754012030058FCD03621577D64DCF08F3FD16C5934B11DF735455BAD5CD8 ] C:\Program Files (x86)\HP\HP Wireless Button Driver\HPRadioMgr64.exe
16:59:14.0095 0x1d90  HPRadioMgr - ok
16:59:14.0148 0x1d90  [ 235072D7F05B200475F959F08080F41B, 21C7ECBE8C1B075C59F111F8A4E5A45F2E23DF13FAE03082BF3D2B6D582BB629 ] C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe
16:59:14.0164 0x1d90  PowerDVD14Agent - ok
16:59:14.0195 0x1d90  [ BAFCF6CF19CE4882039C52DFA17BE35F, 26BE6A3F0296985BAD01EA8CB2D4446564FBD551043819EDD79D1F15E50B2C17 ] C:\Program Files (x86)\QuickTime\QTTask.exe
16:59:14.0211 0x1d90  QuickTime Task - ok
16:59:14.0249 0x1d90  [ E358A20B5008FE3AC3CC90B81024B817, 1F5FAE5BD358CBBFF79E4922BEBBA16984782B78FC50EF445027F9B6AA73EA5B ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
16:59:14.0249 0x1d90  SunJavaUpdateSched - ok
16:59:14.0513 0x1d90  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
16:59:14.0651 0x1d90  OneDriveSetup - ok
16:59:14.0818 0x1d90  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
16:59:14.0968 0x1d90  OneDriveSetup - ok
16:59:15.0118 0x1d90  [ 4DBF6B19F88792D89BD5E0DAD593F20C, 5497B08E317921F28756C114EB5534011FA2D44F24AEC4311FF6C802490372ED ] C:\Users\a\AppData\Local\Microsoft\OneDrive\OneDrive.exe
16:59:15.0134 0x1d90  OneDrive - ok
16:59:15.0203 0x1d90  [ 1489A4B7F2F1D72655FB34B24D8A3BEE, 75CBAD6D32F7644D0647E626EA43B00CF5C3CF92ECFF6EAFDF256CBD50386F64 ] C:\Program Files (x86)\McAfee Safe Connect\McAfee Safe Connect.exe
16:59:15.0218 0x1d90  McAfeeSafeConnect - ok
16:59:15.0350 0x1d90  [ 4DBF6B19F88792D89BD5E0DAD593F20C, 5497B08E317921F28756C114EB5534011FA2D44F24AEC4311FF6C802490372ED ] C:\Users\zere0\AppData\Local\Microsoft\OneDrive\OneDrive.exe
16:59:15.0371 0x1d90  OneDrive - ok
16:59:15.0371 0x1d90  Waiting for KSN requests completion. In queue: 244
16:59:16.0437 0x1d90  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.9.10586.672 ), 0x61100 ( enabled : updated )
16:59:16.0452 0x1d90  Win FW state via NFP2: enabled ( trusted )
16:59:16.0774 0x1d90  ============================================================
16:59:16.0774 0x1d90  Scan finished
16:59:16.0774 0x1d90  ============================================================
16:59:16.0775 0x103c  Detected object count: 0
16:59:16.0775 0x103c  Actual detected object count: 0
16:59:34.0225 0x04e4  Deinitialize success
 


Edited by 7sweetsevyn7, 14 November 2018 - 06:03 PM.


#10 7sweetsevyn7

7sweetsevyn7
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:04 AM

Posted 14 November 2018 - 06:05 PM

Rogue killer WAS finding items but can not finish the scan, it gets almost done and finds 4 items in red and then shuts completely off!!



#11 nasdaq

nasdaq

  • Malware Response Team
  • 40,480 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:09:04 AM

Posted Yesterday, 08:22 AM

Hi,
 
Disable Avast run run the RogueKiller.
If you can post the log.
 
If no joy, 
Do you have to time to note what RogueKiller is reporting?
If you can take a screen picture with you phone if possible.
Post the results.
 
===
 
Open Malwarebytes Anti-Malware and Sc;an for Rootkits.
 
On the Settings tab > Protection Scroll to and make sure the following are selected: Scroll to and make sure the following are selected:
Scan for Rootkits
Scan within Archives
 
Scroll further to Potential Threat Protection make sure the following are set as follows:
 
Potentially Unwanted Programs (PUP`s)         set as :- Always detect PUP`s (recommended)
Potentially Unwanted Modifications (PUM`s)  set as :- Always detect PUM`s (recommended)
 
Click on the Scan make sure Threat Scan is selected,
 
A Threat Scan will begin.
 
When the scan is complete if anything is found make sure that the first checkbox at the top is checked (that will automatically check all detected items), then click on the Quarantine Selected Tab
 
If asked to restart your computer to complete the removal, please do so
 
When complete click on Export Summary after deletion (bottom-left corner) and select Copy to Clipboard.
 
Wait for the prompt to restart the computer to appear, then click on Yes.
 
After the restart once you are back at your desktop, open MBAM once more to retrieve the log.
 
To get the log from Malwarebytes do the following:
 
Click on the Reports tab > from main interface.
Double click on the Scan log which shows the Date and time of the scan just performed.
Click Export > From export you have two options: > From export you have two options:
  Copy to Clipboard - if seleted right click to your reply and select "Paste" log will be pasted to your reply
  Text file (*.txt)        - if selected you will have to name the file and save to a place of choice, recommend "Desktop" then attach to reply
 
Use "Copy to Clipboard, then Right click to your reply > select "Paste" that will copy the log to your reply…


#12 7sweetsevyn7

7sweetsevyn7
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:04 AM

Posted Yesterday, 11:30 AM

yes everything is as it should be in malewarebytes, i do know a little about computers, forgot how to take a screenshot with my pc or phone but i do have scan for rootkits checked in malewarebytes and c heck for PUPS and treat them as male ware and IT DOES NOT DETECT ANY MALEWARE. it is important to know that after the trial period ends(it has ended on my pc)

that malewarebytes DOES NOT DETECT MALWARE! I am getting ready to REFORMAT my pc because every time I turn it on (i have sophus not avast anymore because it was not detecting any malware) soph us was detecting a NANO-TRANCEVIER mouse and asking me to 'ALLOW' or 'BLOCK' and of course i chose block every time, so i am backing up all my files i want to keep and reformatting my pc(again!)

I REALLY, REALLY APPRECIATE all the help everyone has given me here on bleeping computer and i am going to become a member AGAIN after i reformat my pc as i want to continue to read the forums and maybe help one day since I am studing viruses, maleware and the likes. Everybody has been so helpful here on this forum and i just do not have the patience to deal with my own problems on my pc and since i CAN back up my important stuff, I am and just going to refomat the whole damn thing to make for pos. it is gone for pos.

Thank you for all your help and thank you for taking the time to read my problems and being so eager to help me, I can say how much it means to know people out there(beeping computer esp. and particularly) were willing to help someone they do not even know. It makes me feel like there are still good people in the world! Thank You again, Meet you again after my reformat!



#13 7sweetsevyn7

7sweetsevyn7
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:08:04 AM

Posted Yesterday, 03:58 PM

tried to reformat my pc thru bios like i usually do and i CAN NOT! i am guessing i CAN NOT because of malware so please help again! the only system repair i have was made when i was already infected so i do not think it will be of any help but willing to try it, just need to know if that is what i need to do!?



#14 nasdaq

nasdaq

  • Malware Response Team
  • 40,480 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:09:04 AM

Posted Today, 08:28 AM

Hi,

What I remove with the fix is not malware/virus.

It was some PUP (Potentially Unwanted Programs) or some empte entries in the registry.

Your problem is deeper than that.

You said.

the FRST program dissapeared from my pc along with both txt documents


This could happen if your Hard drive is damaged.

Go to this page and follow the instructions

How to Fix Hard Drive Problems with Chkdsk in Windows 7, 8, and 10
https://www.howtogeek.com/howto/windows-vista/guide-to-using-check-disk-in-windows-vista/

If at any time you need advice before proceeding please ask.

===

When this is completed Check the integrity of the operating system files.
How to run sfc /Scannow
http://support.microsoft.com/kb/929833

When completed refer to the Microsoft article again and follow the instructions to view details of the System File Checker process

Post the contents of the sfcdetails.txt file for my review.

Let me know if the problem persists.
<<<>>>




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users