Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

private info being sent to email [Solved]


  • Please log in to reply

#1
Pearlcatdesign

Pearlcatdesign

    Member

  • Member
  • PipPip
  • 49 posts

Hi,

 

not sure quite how to post this; I am suddenly getting my online bank statements and credit card statements to an email that I never had attached to these accounts. I called the C/C company and bank and they have no answers. On their end they claim it says they sent out my monthly statements to the email address I had attached to the accounts, however they didn't show up at that email address, they arrived in an email account that I've never had attached to them.  I am concerned about a security breach with my wifi. The bank and C/C company have of course reset things from their end but how could this have happened? Should I be concerned about someone having gotten into my computer via my wifi connection? I live in a apt. building with shared wifi.

 

Thanks,

Pearl   


  • 0

Advertisements


#2
Jr0x

Jr0x

    Malware removal team

  • Malware Removal
  • 1,825 posts

Hi Pearlcatdesign,

Welcome to :welcome:. My name is Jr0x and I'll be helping you with your problem.

Before we get started, there are a few things I need you to take note of.

  • Please read through the instructions before attempting to follow those procedures. I would recommend printing them out as some of the instructions would requires you to be in safe mode / offline.
  • If there is anything you are unclear of, please ask before you start the fix.
  • Do not run any scripts / tools on your own, unsupervised usage may cause more harm than good.
  • Please stay with me on this thread, do not start another thread in here (Geeks To Go) or any other forum until I've declared you clean and good to go.
  • There may be delayed response to you as we may live in different timezone.
  • Inform me of anything that happens unexpectedly during the fix at any point of time.
  • As much as we like to make this a easy process for you. Malware removal is a complex multi-step process, and things may happen such as data loss or render your machine unbootable. I would recommend that you backup your personal data before we proceed.
  • Posts that are not replied to in four (4) days will result in the topic being closed. We have not forgotten you; this is just an effort to keep the boards organized and flowing. To continue on your closed topic, please PM me or any Moderator to have the topic reactivated. If, at any time during our working together, I have not responded to you in 2 days (48 hours), then please PM me.
  • Please do not attach any log files to your replies unless I specifically ask you. Instead please copy and paste so as to include the log in your reply. You can do this in separate posts if it's easier for you.
  • As we go along please tell me how the computer is running now. Please be as descriptive as possible e.g. I'm still getting web redirects, I am unable to access the internet etc.

Let's get started.

Firstly, how do you know that those bank statements have been sent to the other email account? Is that other email account belong to you?

I can't answer why this happens especially since I don't have the details, but what I can help you is to ensure that your machine is clean from malwares.

And yes, it is possible that someone accessed your information through the shared wifi connection.

 

Now, let's see what we are dealing with.

FRST.gif Scan with Farbar's Recovery Scan Tool (FRST)

Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.

  • 0

#3
Pearlcatdesign

Pearlcatdesign

    Member

  • Topic Starter
  • Member
  • PipPip
  • 49 posts

Hello,

 

 Okay I did as you said and I'm pasting the two screens here, and to answer your question about the email address. I have 3 email accounts; one for garbage and trial memberships which is with tutanotamail.com and one for money private things like the bank account, c/c paypal etc. which is with protonmail.com and one that's for friends and trusted memberships which is with yandexmail.com. I have never used ANY email address for my private things except protonmail.com and then all of the sudden I received my bank statement in my tutanotamail and that's my trash account. I contacted the bank and c/c people and I received the letter I'm pasting under here. I realize that in the c/c letter that they seem to feel it is from a place online, however I just feel in my gut I'm being invaded by someone in this apt. building. The timing of a new tenant and when things first started going wrong continue to coincide .Here's the letter from my c/c co. This letter/email came AFTER I contacted them about my statements going to the wrong email address and asked them how they could've even had the tutanota one and they said that their end didn't show that email anywhere, just the one I had given them originally with proton. 

 

Dear Ms. xxxxxx

 

We recently detected suspicious activity related to your Capital One® online credentials.

As you may have seen in the news, fraudsters have stolen usernames and passwords from popular company websites in hopes that those passwords will work elsewhere, like online access to your bank account.



Based on one of our regular reviews of your account(s) for fraud, we suspect that someone successfully logged in to your account(s) using your username and password, which we believe was stolen from one of these websites. So far, we have not found any evidence of unauthorized transactions on your Capital One account(s) but wanted to let you know about this situation as soon as possible.

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-02-2017 02
Ran by Pearl (administrator) on DESKTOP-D2759O6 (15-02-2017 19:52:34)
Running from C:\Users\Pearl\Desktop
Loaded Profiles: Pearl (Available Profiles: defaultuser0 & Pearl)
Platform: Windows 10 Home Version 1607 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Microsoft Corporation) C:\Windows\System32\wscript.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Windows ® Win 7 DDK provider) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AdminService.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.9.0.68\ns.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.9.0.68\ns.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(CyberLink) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMLSvc_P2G8.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\nacl64.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.9.0.68\conathst.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\nacl64.exe
(Dell Inc.) C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
(Dell) C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
() C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
(Dell) C:\Program Files\Dell\Dell Product Registration\PRSvc.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Dell Inc.) C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.197.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Dell) C:\Program Files\Dell\Dell Foundation Services\DFS.Common.Agent.exe
() C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe
(Opera Software) C:\Program Files (x86)\Opera\43.0.2442.806\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\43.0.2442.806\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\43.0.2442.806\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\43.0.2442.806\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\43.0.2442.806\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\43.0.2442.806\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\43.0.2442.806\opera.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
 
==================== Registry (Whitelisted) ====================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [3877936 2015-06-12] (Dell Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8725248 2015-11-06] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407744 2015-11-06] (Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [717744 2015-11-02] (Waves Audio Ltd.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3946600 2015-10-15] (Synaptics Incorporated)
HKLM-x32\...\Run: [isa] => C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe [330240 2015-02-26] ()
HKU\S-1-5-21-3221040054-2150784680-2399622922-1001\...\Run: [GoogleChromeAutoLaunch_E3ABC10D9B11EEE29EE2F375EE0074E1] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [945496 2017-02-01] (Google Inc.)
ShellIconOverlayIdentifiers: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security\Engine\22.9.0.68\buShell.dll [2017-02-07] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security\Engine\22.9.0.68\buShell.dll [2017-02-07] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security\Engine\22.9.0.68\buShell.dll [2017-02-07] (Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security\Engine32\22.9.0.68\buShell.dll [2017-02-07] (Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security\Engine32\22.9.0.68\buShell.dll [2017-02-07] (Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security\Engine32\22.9.0.68\buShell.dll [2017-02-07] (Symantec Corporation)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 209.18.47.62 209.18.47.61
Tcpip\..\Interfaces\{3bbe7913-7c05-4be7-b2da-86c6105c2f9d}: [DhcpNameServer] 209.18.47.62 209.18.47.61
Tcpip\..\Interfaces\{f26c5f74-9d55-4b5c-b12c-9f31b69acffa}: [DhcpNameServer] 0.0.0.0
 
Internet Explorer:
==================
HKU\S-1-5-21-3221040054-2150784680-2399622922-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell17win10.msn.com/?pc=DCTE
HKU\S-1-5-21-3221040054-2150784680-2399622922-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell17win10.msn.com/?pc=DCTE
SearchScopes: HKU\S-1-5-21-3221040054-2150784680-2399622922-1001 -> DefaultScope {F3471F5E-4A9E-4D8B-9715-977EF7BD11AA} URL = 
SearchScopes: HKU\S-1-5-21-3221040054-2150784680-2399622922-1001 -> {F3471F5E-4A9E-4D8B-9715-977EF7BD11AA} URL = 
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-10-23] (Microsoft Corporation)
BHO: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine\22.9.0.68\coIEPlg.dll [2017-02-07] (Symantec Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-10-23] (Microsoft Corporation)
BHO-x32: Norton Identity Safety -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine32\22.9.0.68\coIEPlg.dll [2017-02-07] (Symantec Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.9.0.68\coIEPlg.dll [2017-02-07] (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine32\22.9.0.68\coIEPlg.dll [2017-02-07] (Symantec Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-23] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-23] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-23] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-23] (Microsoft Corporation)
 
FireFox:
========
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.8.0.50\coFFAddon
FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.8.0.50\coFFAddon [2017-02-10]
FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.8.0.50\coFFAddon
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\TXE Components\IPT\npIntelWebAPIIPT.dll [2014-07-02] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\TXE Components\IPT\npIntelWebAPIUpdater.dll [2014-07-02] (Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-10-23] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
 
Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11908
CHR DefaultSearchKeyword: Default -> NortonSafe
CHR DefaultSuggestURL: Default -> hxxps://ss-sym.search.ask.com/ss?q={searchTerms}&li=ff
CHR Profile: C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default [2017-02-15]
CHR Extension: (Google Translate) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2017-01-16]
CHR Extension: (Google Drive) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-17]
CHR Extension: (YouTube) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-17]
CHR Extension: (Norton Security Toolbar) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2017-02-10]
CHR Extension: (Norton Home Page for Chrome) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfoabcdjalmeenbjjngidappmppchblc [2017-01-05]
CHR Extension: (Google Docs Offline) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-01-01]
CHR Extension: (Pinterest Save Button) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\gpdjojdkbbmdfjfahjcgigfpmkopogic [2017-01-16]
CHR Extension: (Norton Safe) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbmobhkkblcgdifigjglcjneplefbkmh [2017-01-05]
CHR Extension: (Castletown, Ireland) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\iclklloikllmhpmmikpjnaaajkocdccm [2017-01-16]
CHR Extension: (Norton Identity Safe) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2017-01-01]
CHR Extension: (Grammarly for Chrome) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2017-02-02]
CHR Extension: (eBay for Chrome) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\khhckppjhonfmcpegdjdibmngahahhck [2017-01-16]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-20]
CHR Extension: (Hover Zoom) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\nonjdcjchghhkdoolnlbekcfllmednbl [2017-01-31]
CHR Extension: (My Chrome Theme) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\oehpjpccmlcalbenfhnacjeocbjdonic [2017-01-16]
CHR Extension: (Gmail) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-17]
CHR Extension: (Chrome Media Router) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-10]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.9.0.68\Exts\Chrome.crx [2017-02-10]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.9.0.68\Exts\Chrome.crx [2017-02-10]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
 
Opera: 
=======
OPR Extension: (Shareaholic for Pinterest) - C:\Users\Pearl\AppData\Roaming\Opera Software\Opera Stable\Extensions\cfhohmfogghhjmmhnmfgdiinicebggjm [2016-11-11]
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [323152 2015-06-07] (Windows ® Win 7 DDK provider)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3064520 2016-10-08] (Microsoft Corporation)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [41576 2016-10-24] (Dropbox, Inc.)
R2 Dell Customer Connect; C:\Program Files (x86)\Dell Customer Connect\DCCService.exe [130936 2016-12-21] (Dell Inc.)
R2 Dell Foundation Services; C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe [97616 2017-01-11] (Dell)
R2 Dell Help & Support; C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe [87888 2016-05-19] ()
R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2572024 2016-06-23] (Dell Inc.)
R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [202488 2016-06-23] (Dell Inc.)
R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [229376 2016-05-02] (Dell Inc.)
R2 esifsvc; C:\Windows\SysWoW64\esif_uf.exe [1385640 2015-09-04] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [350312 2015-09-09] (Intel Corporation)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [881152 2015-05-22] (Intel® Corporation)
R3 Intel® Security Assist; C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe [330240 2015-02-26] () [File not signed]
S2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe [7680 2015-02-26] () [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe [174368 2015-04-21] (Intel Corporation)
R2 NS; C:\Program Files (x86)\Norton Security\Engine\22.9.0.68\NS.exe [326160 2017-02-06] (Symantec Corporation)
S3 ose; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [200240 2016-05-25] (Microsoft Corporation) [File not signed]
R2 Product Registration; C:\Program Files\Dell\Dell Product Registration\PRSvc.exe [80208 2016-09-22] (Dell)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2015-09-02] (CyberLink)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [307456 2015-11-06] (Realtek Semiconductor)
R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [31704 2016-09-09] (Dell Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246376 2015-10-15] (Synaptics Incorporated)
R2 WavesSysSvc; C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe [578480 2015-09-25] (Waves Audio Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
S2 0175551477755638mcinstcleanup; C:\Users\Pearl\AppData\Local\Temp\017555~1.EXE -cleanup -nolog [X] <==== ATTENTION
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 athr; C:\Windows\System32\drivers\athw10x.sys [4325808 2016-07-28] (Qualcomm Atheros Communications, Inc.)
R1 BHDrvx64; C:\Program Files (x86)\Norton Security\NortonData\22.8.0.50\Definitions\BASHDefs\20170213.004\BHDrvx64.sys [1874136 2017-02-13] (Symantec Corporation)
R1 ccSet_NS; C:\Windows\system32\drivers\NSx64\1609000.044\ccSetx64.sys [174240 2017-02-07] (Symantec Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
R3 DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [32464 2016-06-23] (Dell Computer Corporation)
R3 DellProf; C:\Windows\system32\drivers\DellProf.sys [24240 2016-06-23] (Dell Computer Corporation)
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [19440 2015-05-08] (OSR Open Systems Resources, Inc.)
R2 DpmLiteDrv; c:\Program Files\Dell\QuickSet\DpmLiteDrv64.sys [15080 2014-10-15] (Wistron Corp.)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [53752 2015-09-04] (Intel Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [497312 2017-01-25] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [156824 2017-01-25] (Symantec Corporation)
R3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [261624 2015-09-04] (Intel Corporation)
R3 iagpioe; C:\Windows\System32\drivers\iagpioe.sys [41984 2015-06-03] (Intel® Corporation)
R3 iai2ce; C:\Windows\System32\drivers\iai2ce.sys [89592 2015-06-03] (Intel® Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Security\NortonData\22.8.0.50\Definitions\IPSDefs\20170214.001\IDSvia64.sys [1038024 2017-02-10] (Symantec Corporation)
R3 igfxLP; C:\Windows\system32\DRIVERS\igdkmd64lp.sys [5864888 2015-09-09] (Intel Corporation)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
S3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [411712 2015-05-19] (Realsil Semiconductor Corporation)
S3 rtux64w10; C:\Windows\System32\drivers\rtux64w10.sys [333824 2016-07-16] (Realtek                                                                )
R3 SRTSP; C:\Windows\System32\Drivers\NSx64\1609000.044\SRTSP64.SYS [760992 2017-02-07] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NSx64\1609000.044\SRTSPX64.SYS [49312 2017-02-07] (Symantec Corporation)
R0 SymEFASI; C:\Windows\System32\drivers\NSx64\1609000.044\SYMEFASI64.SYS [1716896 2017-02-07] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\NSx64\1609000.044\SymELAM.sys [24616 2017-02-07] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [102608 2017-02-10] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NSx64\1609000.044\Ironx64.SYS [291480 2017-02-07] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NSx64\1609000.044\SYMNETS.SYS [567512 2017-02-07] (Symantec Corporation)
R3 SynRMIHID; C:\Windows\system32\DRIVERS\SynRMIHID.sys [56936 2015-10-15] (Synaptics Incorporated)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [146232 2015-06-26] (Intel Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 NAVENG; \??\C:\Program Files (x86)\Norton Security\NortonData\22.8.0.50\Definitions\SDSDefs\20161025.009\ENG64.SYS [X]
S3 NAVEX15; \??\C:\Program Files (x86)\Norton Security\NortonData\22.8.0.50\Definitions\SDSDefs\20161025.009\EX64.SYS [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2017-02-15 19:52 - 2017-02-15 19:53 - 00023213 _____ C:\Users\Pearl\Desktop\FRST.txt
2017-02-15 19:51 - 2017-02-15 19:52 - 00000000 ____D C:\FRST
2017-02-15 19:45 - 2017-02-15 19:48 - 01764352 _____ (Farbar) C:\Users\Pearl\Desktop\FRST.exe
2017-02-15 19:42 - 2017-02-15 19:50 - 02422272 _____ (Farbar) C:\Users\Pearl\Desktop\FRST64.exe
2017-02-10 20:06 - 2017-02-15 19:36 - 00023386 _____ C:\Users\Pearl\Documents\vbv.odt
2017-02-10 20:06 - 2017-02-10 20:06 - 00027525 _____ C:\Users\Pearl\Documents\fhrt.odt
2017-02-10 13:08 - 2017-02-15 11:15 - 00000000 ____D C:\Windows\System32\Tasks\Norton Security
2017-02-10 13:03 - 2017-02-10 13:03 - 00003386 _____ C:\Windows\System32\Tasks\Norton WSC Integration
2017-01-28 11:03 - 2017-02-09 11:05 - 00001122 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2017-01-26 12:11 - 2017-01-26 12:11 - 00012384 _____ C:\Users\Pearl\Documents\Margaret Walker.odt
2017-01-24 12:35 - 2017-02-15 11:13 - 00000000 ____D C:\Program Files (x86)\Dell Customer Connect
2017-01-24 12:35 - 2017-01-24 12:35 - 00000000 ____D C:\Windows\SysWOW64\Dell
2017-01-23 00:55 - 2017-01-23 00:55 - 00025705 _____ C:\Users\Pearl\Documents\Untitled 1.odt
2017-01-21 23:07 - 2017-01-23 00:55 - 00029942 _____ C:\Users\Pearl\Documents\From fortune teller to pedophile..odt
2017-01-20 18:33 - 2017-01-20 18:33 - 00000000 ____D C:\ProgramData\edd823e3-bc31-45ff-b59f-4af4ad3883e1
2017-01-16 15:47 - 2017-02-15 16:28 - 00004168 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{7994AAD5-8584-4831-A1A6-A14D3A05CC66}
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2017-02-15 19:35 - 2016-10-11 14:32 - 00000000 ____D C:\Windows\system32\SleepStudy
2017-02-15 11:59 - 2016-10-23 15:54 - 00000000 ____D C:\Windows\System32\Tasks\Remediation
2017-02-15 11:13 - 2016-10-11 14:53 - 00000000 ____D C:\Program Files (x86)\Dell Update
2017-02-14 21:58 - 2016-12-17 21:53 - 00003982 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-02-14 21:58 - 2016-12-17 21:53 - 00000892 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2017-02-14 21:58 - 2016-12-17 21:53 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-02-14 21:57 - 2016-07-16 07:47 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-02-14 21:57 - 2016-07-16 07:47 - 00000000 ____D C:\Windows\system32\Macromed
2017-02-11 11:16 - 2016-10-11 14:45 - 01440366 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-11 11:16 - 2016-07-16 07:47 - 00000000 ____D C:\Windows\AppReadiness
2017-02-11 11:10 - 2016-10-21 16:14 - 00000000 __SHD C:\Users\Pearl\IntelGraphicsProfiles
2017-02-11 11:10 - 2016-10-21 16:09 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-02-11 11:09 - 2016-10-11 14:32 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-02-11 11:09 - 2016-07-16 07:47 - 00000000 ___HD C:\Windows\ELAMBKUP
2017-02-11 11:06 - 2016-07-16 02:04 - 01048576 _____ C:\Windows\system32\config\BBI
2017-02-10 13:29 - 2016-10-11 14:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2017-02-10 13:29 - 2016-10-11 14:42 - 00000000 ____D C:\Program Files\Dell
2017-02-10 13:28 - 2016-10-29 22:08 - 00000000 ____D C:\Program Files\Common Files\AV
2017-02-10 13:03 - 2016-10-23 13:31 - 00002371 _____ C:\Users\Public\Desktop\Norton Security.lnk
2017-02-10 13:03 - 2016-10-23 13:30 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2017-02-10 13:03 - 2016-10-23 13:30 - 00000000 ____D C:\Windows\system32\Drivers\NSx64
2017-02-10 13:03 - 2016-10-23 13:30 - 00000000 ____D C:\Program Files (x86)\Norton Security
2017-02-10 13:03 - 2016-07-16 02:04 - 00032768 _____ C:\Windows\system32\config\ELAM
2017-02-10 10:50 - 2016-10-23 13:31 - 00102608 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2017-02-10 10:50 - 2016-10-23 13:31 - 00008298 _____ C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2017-02-09 11:05 - 2016-10-21 15:38 - 00003970 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1477078704
2017-02-09 11:05 - 2016-10-21 15:38 - 00000000 ____D C:\Program Files (x86)\Opera
2017-02-04 22:24 - 2016-07-16 07:47 - 00000000 ____D C:\Windows\system32\NDF
2017-02-02 15:49 - 2016-12-17 21:53 - 00002274 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-02 15:49 - 2016-12-17 21:53 - 00002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-02-02 15:23 - 2016-12-27 22:41 - 00000000 ____D C:\Users\Pearl\AppData\Local\ElevatedDiagnostics
2017-01-29 19:47 - 2016-10-29 21:58 - 00000000 ____D C:\Users\Pearl\AppData\Local\CrashDumps
2017-01-21 14:47 - 2016-10-26 19:23 - 00001204 _____ C:\Users\Pearl\Desktop\OpenOffice 4.1.3.lnk
2017-01-20 18:41 - 2016-12-15 20:58 - 00003290 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task v2
2017-01-20 18:41 - 2016-10-21 16:22 - 00002369 _____ C:\Users\Pearl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-01-20 18:41 - 2016-10-21 16:22 - 00000000 ___RD C:\Users\Pearl\OneDrive
2017-01-20 18:41 - 2016-10-11 15:08 - 00000000 ____D C:\ProgramData\Dell
 
==================== Files in the root of some directories =======
 
2016-10-11 14:46 - 2016-10-11 14:46 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-10-11 14:56 - 2016-10-11 14:57 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2016-10-11 15:04 - 2016-10-11 15:04 - 0000105 _____ () C:\ProgramData\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}.log
2016-10-11 15:01 - 2016-10-11 15:01 - 0000100 _____ () C:\ProgramData\{6BADCD73-E925-46F7-A295-FF2448632728}.log
2016-10-11 15:04 - 2016-10-11 15:04 - 0000098 _____ () C:\ProgramData\{CEF5334F-B91A-4327-ACAE-AA50DCE3F995}.log
 
==================== Bamital & volsnap ======================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
 
LastRegBack: 2017-02-15 17:50
 
==================== End of FRST.txt ============================
 
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-02-2017 02
Ran by Pearl (15-02-2017 19:54:31)
Running from C:\Users\Pearl\Desktop
Windows 10 Home Version 1607 (X64) (2016-10-21 20:07:41)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-3221040054-2150784680-2399622922-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3221040054-2150784680-2399622922-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-3221040054-2150784680-2399622922-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-3221040054-2150784680-2399622922-501 - Limited - Disabled)
Pearl (S-1-5-21-3221040054-2150784680-2399622922-1001 - Administrator - Enabled) => C:\Users\Pearl
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Norton Security (Enabled - Up to date) {30744133-1E94-7B35-F4A3-82A5AEF1CBAA}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Security (Enabled - Up to date) {8B15A0D7-38AE-74BB-CE13-B9D7D5768117}
FW: Norton Security (Enabled) {084FC016-54FB-7A6D-DFFC-2B9050228CD1}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
Adobe Flash Player 24 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 24.0.0.221 - Adobe Systems Incorporated)
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 12 - CyberLink Corp.)
Dell Customer Connect (HKLM-x32\...\{4FA72FF9-DD64-43A8-8704-6380A11F11D5}) (Version: 1.4.15.0 - Dell Inc.)
Dell Data Vault (Version: 4.3.9.0 - Dell Inc.) Hidden
Dell Digital Delivery (HKLM-x32\...\{AB7F2792-2ED1-4C5C-9F28-680E5110BF72}) (Version: 3.1.1018.0 - Dell Products, LP)
Dell Foundation Services (HKLM\...\{BDB50421-E961-42F3-B803-6DAC6F173834}) (Version: 3.4.16100.0 - Dell Inc.)
Dell Help & Support (HKLM-x32\...\InstallShield_{2B27A8F6-B7D5-4FAF-9C8A-71E9EECA3E9C}) (Version: 2.2.21.0 - Dell Inc.)
Dell Help & Support (Version: 2.2.21.0 - Dell Inc.) Hidden
Dell Product Registration (HKLM-x32\...\InstallShield_{85B14AE3-1624-45BE-942B-A528DF6F1CCE}) (Version: 3.0.123.0 - Dell Inc.)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.3.6855.61 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{27130E51-9555-408B-8134-7BFF54EDE27B}) (Version: 1.3.0.72 - Dell)
Dell System Detect (HKU\S-1-5-21-3221040054-2150784680-2399622922-1001\...\58d94f3ce2c27db0) (Version: 7.11.0.6 - Dell)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 19.0.15.15 - Synaptics Incorporated)
Dell Update - SupportAssist Update Plugin (HKLM\...\{92F651D9-4431-469E-9B11-299D007AF656}) (Version: 2.0.2.1835 - Dell Inc.)
Dell Update (HKLM-x32\...\{FB198E80-F1AB-4A6F-B3E3-F7442FC91FD2}) (Version: 1.9.4.0 - Dell Inc.)
Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Intel® Chipset Device Software (x32 Version: 10.1.1.7 - Intel® Corporation) Hidden
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4256 - Intel Corporation)
Intel® Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 2.0.0.1067 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{84DB01CB-7EB7-4261-9249-99A32768D991}) (Version: 1.0.0.523 - Intel Corporation)
Maxx Audio Installer (x64) (Version: 2.6.6570.2 - Waves Audio Ltd.) Hidden
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.7369.2038 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3221040054-2150784680-2399622922-1001\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
Norton Security (HKLM-x32\...\NS) (Version: 22.9.0.68 - Symantec Corporation)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.6925.1016 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.6925.1016 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.6925.1016 - Microsoft Corporation) Hidden
OpenOffice 4.1.3 (HKLM-x32\...\{EEA30AEB-8BA7-465B-85D4-098BB99733E7}) (Version: 4.13.9783 - Apache Software Foundation)
Opera Stable 43.0.2442.806 (HKLM-x32\...\Opera 43.0.2442.806) (Version: 43.0.2442.806 - Opera Software)
proDAD Adorage 3.0 (HKLM-x32\...\proDAD-Adorage-3.0) (Version: 3.0.114.1 - proDAD GmbH)
Product Registration (Version: 3.0.123.0 - Dell Inc.) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.0 - Qualcomm Atheros)
QuickSet64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.1.31 - Dell Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.31213 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7654 - Realtek Semiconductor Corp.)
Realtek USB Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{04201224-2B34-4EE7-862B-B7BBF89DB3AB}) (Version: 10.1.506.2015 - Realtek)
Speccy (HKLM\...\Speccy) (Version: 1.29 - Piriform)
Windows Driver Package - Intel Corporation (iagpioe) System  (05/21/2015 604.10120.2652.361) (HKLM\...\AF9226384B030787C4D0F761A23F48F7649D6D17) (Version: 05/21/2015 604.10120.2652.361 - Intel Corporation)
Windows Driver Package - Intel Corporation (iai2ce) System  (05/21/2015 604.10120.2654.367) (HKLM\...\B37036F6A0766DAC3E418F6CAE67005C5F3A8C40) (Version: 05/21/2015 604.10120.2654.367 - Intel Corporation)
Windows Driver Package - Intel Corporation (iauarte) System  (05/21/2015 604.10120.2653.391) (HKLM\...\1D4FF76A05A14FF5BA3636A41E0AB237F3A55E14) (Version: 05/21/2015 604.10120.2653.391 - Intel Corporation)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-3221040054-2150784680-2399622922-1001_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-3221040054-2150784680-2399622922-1001_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-3221040054-2150784680-2399622922-1001_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-3221040054-2150784680-2399622922-1001_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-3221040054-2150784680-2399622922-1001_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-3221040054-2150784680-2399622922-1001_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {1B3461A2-E74A-43C6-8BC8-EEC24E47659B} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2016-09-13] (PC-Doctor, Inc.)
Task: {1D9AD21B-39CE-458D-A3C3-DCACBD35F065} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-08] (Microsoft Corporation)
Task: {26379819-23B4-43A2-882C-346BCA91DABA} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMLSvc_P2G8.exe [2016-04-27] (CyberLink)
Task: {2797DA72-62BE-4D73-B0D8-BB054DA57ECC} - System32\Tasks\Norton Security\Norton Security Autofix => C:\Program Files (x86)\Norton Security\Engine\22.9.0.68\SymErr.exe [2017-02-07] (Symantec Corporation)
Task: {3FD07BD9-2BF9-40B2-B002-113CC51D7428} - System32\Tasks\Opera scheduled Autoupdate 1477078704 => C:\Program Files (x86)\Opera\launcher.exe [2017-02-06] (Opera Software)
Task: {40306EE9-E371-48F0-98DE-5222BEEBFA6D} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLVDLauncher.exe [2015-01-28] (CyberLink Corp.)
Task: {53190CC9-855B-4FA3-8FE0-805E8A1D8DA5} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2016-09-09] (Dell Inc.)
Task: {5AD34B13-9E54-4FC1-9617-B7D34B3AA871} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe 
Task: {66D05118-F086-44E1-AE8A-43C7CA091C6F} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-11-06] (Realtek Semiconductor)
Task: {79A88BAF-A7CA-43F0-A0D0-FF13B07D74B6} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe 
Task: {7FE7D215-90B7-4B92-92BE-9E5FF55B6B2C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-02-14] (Adobe Systems Incorporated)
Task: {8C154AE7-75A6-4E76-A368-995205356E4C} - System32\Tasks\Dell Cleanup => c:\windows\system32\oem\startmenufix.vbs [2016-09-14] ()
Task: {97D47646-8CC8-404B-B8A0-7FDB33C9668A} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [2017-02-07] (Symantec Corporation)
Task: {BB5B0767-0B51-450A-A959-766C38AE6102} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWoW64\Macromed\Flash\FlashUtil32_24_0_0_221_pepper.exe [2017-02-14] (Adobe Systems Incorporated)
Task: {BFBFAA25-6DE9-4961-B25F-B63313E2A544} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-17] (Google Inc.)
Task: {C0F06A64-5444-4C32-941A-60C8F57D8458} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files (x86)\Norton Security\Engine\22.9.0.68\SymErr.exe [2017-02-07] (Symantec Corporation)
Task: {D6F8254D-2BBF-437F-BD88-129A006E96C4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-17] (Google Inc.)
Task: {DE291F77-A714-49F7-9CDF-AF617A96B2C7} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2016-09-13] (PC-Doctor, Inc.)
Task: {E15073FB-DCA0-4A1A-B280-E481D1C292A1} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-08] (Microsoft Corporation)
Task: {EB3D8885-B8F9-439C-AD83-EA0A5F9782AA} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Security\Engine\22.9.0.68\WSCStub.exe [2017-02-07] (Symantec Corporation)
Task: {F89C6113-C536-40B5-B16E-7C892CA7B74E} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files (x86)\Norton Security\Engine\22.9.0.68\SymErr.exe [2017-02-07] (Symantec Corporation)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWoW64\Macromed\Flash\FlashUtil32_24_0_0_221_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
 
==================== Shortcuts =============================
 
(The entries could be listed to be restored or removed.)
 
==================== Loaded Modules (Whitelisted) ==============
 
2016-07-16 07:42 - 2016-07-16 07:42 - 00231424 _____ () C:\Windows\SYSTEM32\ism32k.dll
2016-10-23 17:24 - 2016-09-15 13:25 - 02681200 _____ () C:\Windows\system32\CoreUIComponents.dll
2016-10-23 17:24 - 2016-09-15 13:25 - 02681200 _____ () C:\Windows\SYSTEM32\CoreUIComponents.dll
2016-10-11 15:32 - 2016-10-23 13:12 - 08923840 _____ () C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\1033\GrooveIntlResource.dll
2016-10-11 15:10 - 2015-09-09 17:25 - 00395880 _____ () C:\Windows\system32\igfxTray.exe
2016-10-23 17:23 - 2016-09-07 00:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-10-23 17:19 - 2016-10-05 05:35 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-11-02 11:49 - 2016-10-14 23:41 - 09760256 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-02 11:49 - 2016-10-14 23:34 - 01401344 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-02 11:49 - 2016-10-14 23:34 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-02 11:49 - 2016-10-14 23:34 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-11-02 11:49 - 2016-10-14 23:34 - 02424832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-02 11:49 - 2016-10-14 23:38 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-02-26 13:12 - 2015-02-26 13:12 - 00330240 _____ () C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe
2016-05-19 16:43 - 2016-05-19 16:43 - 00087888 _____ () C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe
2016-10-23 13:43 - 2016-10-23 13:46 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.197.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-10-23 13:43 - 2016-10-23 13:46 - 00178176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.197.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-10-23 13:43 - 2016-10-23 13:46 - 35253760 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.197.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2017-02-02 15:49 - 2017-02-01 05:01 - 01870168 _____ () C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\libglesv2.dll
2017-02-02 15:49 - 2017-02-01 05:01 - 00085848 _____ () C:\Program Files (x86)\Google\Chrome\Application\56.0.2924.87\libegl.dll
2016-10-11 14:57 - 2014-12-08 03:28 - 00627672 _____ () C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMediaLibrary.dll
2014-12-08 18:28 - 2014-12-08 18:28 - 00016856 _____ () C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMLSvcPS.dll
2016-12-21 10:24 - 2016-12-21 10:24 - 00134008 _____ () C:\Program Files (x86)\Dell Customer Connect\ServiceTagPlusPlus.dll
2016-05-02 17:52 - 2016-05-02 17:52 - 00134144 _____ () C:\Program Files (x86)\Dell Update\ServiceTagPlusPlus.dll
2017-02-09 11:05 - 2017-02-06 03:41 - 39820376 _____ () C:\Program Files (x86)\Opera\43.0.2442.806\opera_browser.dll
2017-02-09 11:05 - 2017-02-06 03:41 - 45837912 _____ () C:\Program Files (x86)\Opera\43.0.2442.806\opera_child.dll
2017-02-09 11:05 - 2017-02-09 11:04 - 01930328 _____ () C:\Program Files (x86)\Opera\43.0.2442.806\libglesv2.dll
2017-02-09 11:05 - 2017-02-09 11:04 - 00087640 _____ () C:\Program Files (x86)\Opera\43.0.2442.806\libegl.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2ce.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
 
==================== Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2016-07-16 07:47 - 2016-07-16 07:45 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-3221040054-2150784680-2399622922-1001\Control Panel\Desktop\\Wallpaper -> c:\users\pearl\appdata\local\packages\microsoft.windows.photos_8wekyb3d8bbwe\localstate\photosappbackground\{afb45150-92a7-4a13-b785-4cd9a1c137ce}.jpg
DNS Servers: 209.18.47.62 - 209.18.47.61
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{7D6A9677-3099-459C-9061-92E55B7EC5F3}] => (Allow) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\PowerDirector14\PDR10.EXE
FirewallRules: [{2742825D-6606-47A4-B096-7CFB6F9AEBFE}] => (Allow) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\PowerDVD14\PowerDVD.exe
FirewallRules: [{98527E30-8B2E-4014-8AFD-240C2FF47147}] => (Allow) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\PowerDVD14\Kernel\DMS\CLMSServerPDVD14.exe
FirewallRules: [{B121EFEB-ED6C-4610-B811-BE39E189205F}] => (Allow) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\PowerDVD14\PowerDVD14Agent.exe
FirewallRules: [{D0C1861B-3CA0-4C34-A9C0-7AEDFD678426}] => (Allow) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\PowerDVD14\Movie\PowerDVDMovie.exe
FirewallRules: [{F00C36C2-B443-4C8F-BEBA-1E3B5E7568E8}] => (Allow) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe
FirewallRules: [{09532446-5C49-4A46-97BD-32CAB6D078C2}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{F8D8BF19-4CBE-486E-9BD9-0E224EBA8227}] => (Allow) C:\Program Files (x86)\Opera\42.0.2393.517\opera.exe
FirewallRules: [{C40E354C-8AC3-4F1B-BEDA-DD1B7ACE36F1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{303E0D94-66BB-4643-AFFD-E215A877535C}] => (Allow) C:\Program Files (x86)\Opera\43.0.2442.806\opera.exe
 
==================== Restore Points =========================
 
22-01-2017 16:24:50 Scheduled Checkpoint
31-01-2017 12:20:18 Scheduled Checkpoint
10-02-2017 18:45:39 Scheduled Checkpoint
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (02/14/2017 11:48:19 AM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [22] ERROR- DoUpdateCheck manifestsSuccessful is invalid, stop updating! #StackInfo#
 
Error: (02/11/2017 11:32:56 AM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [5] ERROR- FindPartObjects() Lable not matched! Target:WINRETOOLS, Current:Image, Partition:PartitionPos {disk:0, part:5}, curGptTypeStr:{de94bba4-06d1-4d40-a16a-bfd50179d6ac} #StackInfo#
 
Error: (02/11/2017 11:32:56 AM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [5] ERROR- Exception on mounting SOS: mk_dellsupport_lnk can't find DSP! errno=0 #StackInfo#
 
Error: (02/11/2017 11:32:56 AM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [5] ERROR- mk_dellsupport_lnk() can't find DSP! Threw exception! #StackInfo#
 
Error: (02/11/2017 11:32:56 AM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [5] ERROR- FindPartObjects() Lable not matched! Target:DELLSUPPORT, Current:Image, Partition:PartitionPos {disk:0, part:5}, curGptTypeStr:{de94bba4-06d1-4d40-a16a-bfd50179d6ac} #StackInfo#
 
Error: (02/11/2017 11:32:56 AM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [5] ERROR- FindPartObjects() Lable not matched! Target:DELLSUPPORT, Current:WINRETOOLS, Partition:PartitionPos {disk:0, part:4}, curGptTypeStr:{de94bba4-06d1-4d40-a16a-bfd50179d6ac} #StackInfo#
 
Error: (02/11/2017 11:32:55 AM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [5] ERROR- [SOSINSTALLER] TRYMOUNT-DELLSUPPORT: mk_dellsupport_lnk can't find DSP! errno=0
   at utilities.SymlnkBroker.mk_dellsupport_lnk(String mountpoint, String targetFileRelativePath, Boolean isDirectory, List`1 targetKeyFiles)
   at utilities.PartitionHelper.DellSupportFinder.find()
   at DellUpdate.sosinstaller.try_mount_dellsupport() #StackInfo#
 
Error: (02/11/2017 11:32:55 AM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [5] ERROR- mk_dellsupport_lnk() can't find DSP! Threw exception! #StackInfo#
 
Error: (02/11/2017 11:14:06 AM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [14] ERROR- IsValidPartition Mount partition SOS failed #StackInfo#
 
Error: (02/11/2017 11:14:06 AM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [14] ERROR- Exception on mounting SOS: mk_dellsupport_lnk can't find DSP! errno=0 #StackInfo#
 
 
System errors:
=============
Error: (02/15/2017 07:24:26 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (02/15/2017 02:10:08 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (02/15/2017 12:26:57 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (02/15/2017 11:23:42 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (02/14/2017 11:46:59 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (02/14/2017 11:45:06 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 4003) (User: NT AUTHORITY)
Description: WLAN AutoConfig detected limit connectivity, performing Reset/Recover.adapter.
 
 Code: 8 0x0 0x0
 
Error: (02/14/2017 11:45:02 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 4003) (User: NT AUTHORITY)
Description: WLAN AutoConfig detected limit connectivity, performing Reset/Recover.adapter.
 
 Code: 2 0xdeaddeed 0xeeec
 
Error: (02/14/2017 11:45:02 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 4003) (User: NT AUTHORITY)
Description: WLAN AutoConfig detected limit connectivity, performing Reset/Recover.adapter.
 
 Code: 1 0xc 0x4
 
Error: (02/14/2017 02:07:36 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (02/14/2017 08:29:52 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Celeron® CPU N3050 @ 1.60GHz
Percentage of memory in use: 59%
Total physical RAM: 4007.56 MB
Available physical RAM: 1608.75 MB
Total Virtual: 6951.56 MB
Available Virtual: 3739.98 MB
 
==================== Drives ================================
 
Drive c: (OS) (Fixed) (Total:453.04 GB) (Free:415.68 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 6CB7AD03)
 
Partition: GPT.
 
==================== End of Addition.txt ============================
 
 
Thanks, Pearl

  • 0

#4
Jr0x

Jr0x

    Malware removal team

  • Malware Removal
  • 1,825 posts

Hi Pearlcatdesign,
 

Okay I did as you said and I'm pasting the two screens here, and to answer your question about the email address. I have 3 email accounts; one for garbage and trial memberships which is with tutanotamail.com and one for money private things like the bank account, c/c paypal etc. which is with protonmail.com and one that's for friends and trusted memberships which is with yandexmail.com. I have never used ANY email address for my private things except protonmail.com and then all of the sudden I received my bank statement in my tutanotamail and that's my trash account. I contacted the bank and c/c people and I received the letter I'm pasting under here. I realize that in the c/c letter that they seem to feel it is from a place online, however I just feel in my gut I'm being invaded by someone in this apt. building. The timing of a new tenant and when things first started going wrong continue to coincide .Here's the letter from my c/c co. This letter/email came AFTER I contacted them about my statements going to the wrong email address and asked them how they could've even had the tutanota one and they said that their end didn't show that email anywhere, just the one I had given them originally with proton.


With that, and along with the email, please change all your password immediately to all your account (including email and bank account) using a clean machine that you trust.

If you have online banking account with your bank, please subscribe to the 2FA service if you haven't.



FRST.gifFix with FRST

  • Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below. To do this highlight the contents of the box, right click on it and select copy.
  • Right-click in the open notepad and select Paste.
  • Save it on the desktop as fixlist.txt

NOTE. It's important that both files, FRST/FRST64 and fixlist.txt are in the same location or the fix will not work.

Start
CreateRestorePoint:
CloseProcesses:

SearchScopes: HKU\S-1-5-21-3221040054-2150784680-2399622922-1001 -> DefaultScope {F3471F5E-4A9E-4D8B-9715-977EF7BD11AA} URL = 
SearchScopes: HKU\S-1-5-21-3221040054-2150784680-2399622922-1001 -> {F3471F5E-4A9E-4D8B-9715-977EF7BD11AA} URL = 
CHR DefaultSearchURL: Default -> hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11908
CHR DefaultSuggestURL: Default -> hxxps://ss-sym.search.ask.com/ss?q={searchTerms}&li=ff
S2 0175551477755638mcinstcleanup; C:\Users\Pearl\AppData\Local\Temp\017555~1.EXE -cleanup -nolog [X] <==== ATTENTION
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 NAVENG; \??\C:\Program Files (x86)\Norton Security\NortonData\22.8.0.50\Definitions\SDSDefs\20161025.009\ENG64.SYS [X]
S3 NAVEX15; \??\C:\Program Files (x86)\Norton Security\NortonData\22.8.0.50\Definitions\SDSDefs\20161025.009\EX64.SYS [X]

C:\Windows\System32\DRIVERS\dbx.sys

Emptytemp:
Hosts:
End

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system.

Run FRST and press the Fix button just once and wait. The tool will make a log on the desktop (Fixlog.txt) please post it in your next reply.

Note: Your machine will reboot after the fix.


TDSSKiller_Kaspersky.pngScan with TDSSKiller

Please download TDSSKiller by Kaspersky and save it to your desktop.
Alternate download is here.

Select the executable(.EXE) package as the download.

  • Right-click on TDSSKiller_Kaspersky.png icon and select RunAsAdmin.jpg Run as Administrator to start the tool. If it won't run please right click on tdskiller.exe and rename it to winlogon.exe and see if that allows you to run it.
  • When the main GUI (graphical user interface) window opens, click on Change Parameters.
  • Put a checkmark beside Loaded modules. A reboot will be needed to apply the changes, allow it to do so.
  • TDSSKiller will run automatically after reboot. Click on Change parameters.
  • Make sure that Verify driver digital signatures & Detect TDLFS File System are checked and click OK.
  • Click the Start Scan button and wait patiently.

If anything will be found follow this guidelines:

  • If a suspicious object is detected, the default action will be Skip, click on Continue.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    > Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    > If Cure is not available, please choose Skip instead.
  • Do not choose Delete unless instructed!

A report will be created in your root directory, (usually C:\ drive) in the form of TDSSKiller.[Version]_[Date]_[Time]_log.txt. Please include the contents of that file in your next post.

 

 

In your next reply, please include the following:

  • FRST fixlog
  • TDSSKiller log

  • 0

#5
Pearlcatdesign

Pearlcatdesign

    Member

  • Topic Starter
  • Member
  • PipPip
  • 49 posts
Okay here's the FRST:
 
Fix result of Farbar Recovery Scan Tool (x64) Version: 15-02-2017 02
Ran by Pearl (17-02-2017 11:06:21) Run:1
Running from C:\Users\Pearl\Desktop
Loaded Profiles: Pearl (Available Profiles: defaultuser0 & Pearl)
Boot Mode: Normal
==============================================
 
fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
 
SearchScopes: HKU\S-1-5-21-3221040054-2150784680-2399622922-1001 -> DefaultScope {F3471F5E-4A9E-4D8B-9715-977EF7BD11AA} URL = 
SearchScopes: HKU\S-1-5-21-3221040054-2150784680-2399622922-1001 -> {F3471F5E-4A9E-4D8B-9715-977EF7BD11AA} URL = 
CHR DefaultSearchURL: Default -> hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11908
CHR DefaultSuggestURL: Default -> hxxps://ss-sym.search.ask.com/ss?q={searchTerms}&li=ff
S2 0175551477755638mcinstcleanup; C:\Users\Pearl\AppData\Local\Temp\017555~1.EXE -cleanup -nolog [X] <==== ATTENTION
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 NAVENG; \??\C:\Program Files (x86)\Norton Security\NortonData\22.8.0.50\Definitions\SDSDefs\20161025.009\ENG64.SYS [X]
S3 NAVEX15; \??\C:\Program Files (x86)\Norton Security\NortonData\22.8.0.50\Definitions\SDSDefs\20161025.009\EX64.SYS [X]
 
C:\Windows\System32\DRIVERS\dbx.sys
 
Emptytemp:
Hosts:
End
*****************
 
Restore point was successfully created.
Processes closed successfully.
HKU\S-1-5-21-3221040054-2150784680-2399622922-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-21-3221040054-2150784680-2399622922-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{F3471F5E-4A9E-4D8B-9715-977EF7BD11AA} => key removed successfully
HKCR\CLSID\{F3471F5E-4A9E-4D8B-9715-977EF7BD11AA} => key not found. 
Chrome DefaultSearchURL => removed successfully
Chrome DefaultSuggestURL => removed successfully
HKLM\System\CurrentControlSet\Services\0175551477755638mcinstcleanup => key removed successfully
0175551477755638mcinstcleanup => service removed successfully
HKLM\System\CurrentControlSet\Services\dbx => key removed successfully
dbx => service removed successfully
HKLM\System\CurrentControlSet\Services\NAVENG => could not remove key. Access Denied.
HKLM\System\CurrentControlSet\Services\NAVEX15 => could not remove key. Access Denied.
"C:\Windows\System32\DRIVERS\dbx.sys" => not found.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
 
=========== EmptyTemp: ==========
 
BITS transfer queue => 3628854 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 420827131 B
Java, Flash, Steam htmlcache => 506 B
Windows/system/drivers => 19492764 B
Edge => 97300827 B
Chrome => 263002579 B
Firefox => 0 B
Opera => 533524884 B
 
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 185 B
systemprofile32 => 128 B
LocalService => 21244 B
NetworkService => 28894 B
defaultuser0 => 7296 B
Pearl => 539433167 B
 
RecycleBin => 1764444 B
EmptyTemp: => 1.7 GB temporary data Removed.
 
================================
 
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 17-02-2017 11:16:45)
 
 
Result of scheduled keys to remove after reboot:
 
HKLM\System\CurrentControlSet\Services\NAVENG => could not remove key. Access Denied.
HKLM\System\CurrentControlSet\Services\NAVEX15 => could not remove key. Access Denied.
 
==== End of Fixlog 11:16:46 ====

  • 0

#6
Jr0x

Jr0x

    Malware removal team

  • Malware Removal
  • 1,825 posts

Hi, I will be away for a day, back on Sunday. Hence, might be late on my reply. 


  • 0

#7
Pearlcatdesign

Pearlcatdesign

    Member

  • Topic Starter
  • Member
  • PipPip
  • 49 posts
11:29:36.0511 0x226c  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
11:29:36.0511 0x226c  UEFI system
11:29:45.0189 0x226c  ============================================================
11:29:45.0189 0x226c  Current date / time: 2017/02/17 11:29:45.0189
11:29:45.0205 0x226c  SystemInfo:
11:29:45.0205 0x226c  
11:29:45.0205 0x226c  OS Version: 10.0.14393 ServicePack: 0.0
11:29:45.0221 0x226c  Product type: Workstation
11:29:45.0221 0x226c  ComputerName: DESKTOP-D2759O6
11:29:45.0221 0x226c  UserName: Pearl
11:29:45.0221 0x226c  Windows directory: C:\Windows
11:29:45.0221 0x226c  System windows directory: C:\Windows
11:29:45.0221 0x226c  Running under WOW64
11:29:45.0221 0x226c  Processor architecture: Intel x64
11:29:45.0221 0x226c  Number of processors: 2
11:29:45.0221 0x226c  Page size: 0x1000
11:29:45.0221 0x226c  Boot type: Normal boot
11:29:45.0221 0x226c  CodeIntegrityOptions = 0x0000C001
11:29:45.0221 0x226c  ============================================================
11:29:47.0393 0x226c  KLMD registered as C:\Windows\system32\drivers\73995251.sys
11:29:47.0393 0x226c  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.351, osProperties = 0x19
11:29:54.0909 0x226c  System UUID: {E67A748A-8BBE-FBBF-963A-6813E07657B6}
11:30:02.0060 0x226c  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:30:02.0106 0x226c  ============================================================
11:30:02.0106 0x226c  \Device\Harddisk0\DR0:
11:30:02.0106 0x226c  GPT partitions:
11:30:02.0106 0x226c  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {9CD0F499-7A91-4057-9033-D877FD479F55}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0xFA000
11:30:02.0106 0x226c  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {AC46A05D-46CF-4ADD-B70B-23B0657582B3}, Name: Microsoft reserved partition, StartLBA 0xFA800, BlocksNum 0x40000
11:30:02.0106 0x226c  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {0FADB1D5-6EE3-4ABF-9CF4-5CDD521C7EED}, Name: Basic data partition, StartLBA 0x13A800, BlocksNum 0x38A16000
11:30:02.0106 0x226c  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {D87590F0-7D93-4F1B-8AF0-98D534C20F5B}, Name: , StartLBA 0x38B50800, BlocksNum 0xE1000
11:30:02.0106 0x226c  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {7732EED1-3CDF-4857-B10D-99AA8DBDF3B7}, Name: , StartLBA 0x38C31800, BlocksNum 0x1754800
11:30:02.0106 0x226c  MBR partitions:
11:30:02.0106 0x226c  ============================================================
11:30:02.0138 0x226c  C: <-> \Device\Harddisk0\DR0\Partition3
11:30:02.0138 0x226c  ============================================================
11:30:02.0138 0x226c  Initialize success
11:30:02.0138 0x226c  ============================================================
11:30:15.0387 0x1198  ============================================================
11:30:15.0387 0x1198  Scan started
11:30:15.0387 0x1198  Mode: Manual; 
11:30:15.0387 0x1198  ============================================================
11:30:15.0387 0x1198  KSN ping started
11:30:15.0575 0x1198  KSN ping finished: true
11:30:21.0195 0x1198  ================ Scan system memory ========================
11:30:21.0195 0x1198  System memory - ok
11:30:21.0195 0x1198  ================ Scan services =============================
11:30:21.0491 0x1198  [ A7901875F89D011C38CF52C98ACF5B29, 782141AB1DD7ACDE6EA08B5BAFDE8BADD05B81D38C18E097D6D9C46102056EB1 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
11:30:21.0491 0x1198  1394ohci - ok
11:30:21.0570 0x1198  [ EE1CCC54F75C24727A218F98FC5349DA, 0B0D26640BFA0F551B7087027E572D0BF2C5EAF50A4187C5A7D839180B7FF589 ] 3ware           C:\Windows\system32\drivers\3ware.sys
11:30:21.0585 0x1198  3ware - ok
11:30:21.0695 0x1198  [ 73C73E1AA0D4D727A04AAAB120B7F56A, 5D311F11022994410DF5C67914D38B1F0D813EFD181EA234750286A272D67A1A ] ACPI            C:\Windows\system32\drivers\ACPI.sys
11:30:21.0726 0x1198  ACPI - ok
11:30:21.0741 0x1198  [ 0935496EF9624B46B935CB35ECE1F205, A22A2A29195505A65E8626D60B00C86C23E0CABC1EB8345EA5ED523516CC21C0 ] AcpiDev         C:\Windows\System32\drivers\AcpiDev.sys
11:30:21.0741 0x1198  AcpiDev - ok
11:30:21.0757 0x1198  [ D6794C31F4077B71433988787BAA926E, F16365C2F195AAE94D4740E6C3DF4C0CECEC6393CAD65425DCCD28CDBA6EC51A ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
11:30:21.0757 0x1198  acpiex - ok
11:30:21.0773 0x1198  [ FE5F656D6B35089DA39112E74EC6A85A, 5D81EE63998232A5B36DE47FE15B9D04D5BD02234CA133A2462AECA8C60A22ED ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
11:30:21.0773 0x1198  acpipagr - ok
11:30:21.0788 0x1198  [ 2F242941E4DFF69B883D77A16F039557, 45C388365317C720654A659A9326B2BC0E9D84929C704654985597D5D620101C ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
11:30:21.0788 0x1198  AcpiPmi - ok
11:30:21.0804 0x1198  [ C247E35A21682DA8D0DC3AF9F025FCC5, 455415EE3166B3043AD8A4DD50B688DB74242267FB555642441251EFA823E971 ] acpitime        C:\Windows\System32\drivers\acpitime.sys
11:30:21.0804 0x1198  acpitime - ok
11:30:21.0913 0x1198  [ 874B1D3B016BB6051EED24E6F94DA18B, 7E5898F2A54CC014693BAC86BCCE5861E70A8FAA07D837589BE3CB47458665BB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:30:21.0929 0x1198  AdobeFlashPlayerUpdateSvc - ok
11:30:22.0057 0x1198  [ 49B9DB97AFC85DCCBDACDAB2E90085B7, 2A6C2A09F74EA15044F442CCFB54A0F24F105ADB915E5C78F02F59652DC29152 ] ADP80XX         C:\Windows\system32\drivers\ADP80XX.SYS
11:30:22.0081 0x1198  ADP80XX - ok
11:30:22.0175 0x1198  [ 323AA1953ED9C01E23F740FA891FE064, 4CED6E3D61749316CDE28965C913E7ED462539DAAD637A29484F62AF47AD650D ] AFD             C:\Windows\system32\drivers\afd.sys
11:30:22.0206 0x1198  AFD - ok
11:30:22.0269 0x1198  [ 23522E5D581F7722B1B5B86737CAE39C, FB81ABD304376A1E87B65F5E1B34477B628CEDB2091C5D754DE97464B6050C5B ] ahcache         C:\Windows\system32\DRIVERS\ahcache.sys
11:30:22.0285 0x1198  ahcache - ok
11:30:22.0331 0x1198  [ D0905D4A945D01D4B28DB9E1BD5985F7, CF389CBCD3B99D1BAE34A42F723F1005C32213A394F691978076D3DF1727715C ] AJRouter        C:\Windows\System32\AJRouter.dll
11:30:22.0347 0x1198  AJRouter - ok
11:30:22.0394 0x1198  [ 8FD51B3B35707A66080D7C8CB05E792D, FE52F3DC280D208FDDC75F6E3294B8D601E0D86F9BD3DB1ACC8FC296AC74C23B ] ALG             C:\Windows\System32\alg.exe
11:30:22.0425 0x1198  ALG - ok
11:30:22.0488 0x1198  [ DF21E05E41E5AC3F13F304D91457649A, 7F48F2AD1DBE89A261113C76D7C23AD7D87D5599BCC31F8A558A8A10B81BF521 ] AmdK8           C:\Windows\System32\drivers\amdk8.sys
11:30:22.0503 0x1198  AmdK8 - ok
11:30:22.0535 0x1198  [ 45D0AA4BB90B821DF92E8F19ABED0C5E, EA87A6E98DB3C5A88A844C04C6934E870B7004E783AA5211722115382A211B90 ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
11:30:22.0550 0x1198  AmdPPM - ok
11:30:22.0581 0x1198  [ 74FFBC43B4B899C9A8CA06A892F2CE73, 8D599363C7F3D373F1859BAA4D06DD0F40BE78B56BE52B74DE6EA6EF99452004 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
11:30:22.0597 0x1198  amdsata - ok
11:30:22.0644 0x1198  [ AAB0F1D8D7E54761ABAB13AF161F1680, CF847990EFFA2828F5B1DB1A68F08A6C2C918E9612EDFFCF95C36BCABBBEA272 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
11:30:22.0675 0x1198  amdsbs - ok
11:30:22.0706 0x1198  [ F91BAAC4237C40352A807000F3B716F9, F7EFA08E5067C3D419C9D21EDB880BA08883A80DDF35F8B42EC3AB293FE5E03E ] amdxata         C:\Windows\system32\drivers\amdxata.sys
11:30:22.0706 0x1198  amdxata - ok
11:30:22.0753 0x1198  [ BC121C099C6C659126AD2102AFDFF8CF, 42B5EE293BDD7ADCE48173A01B30D8452564B9DA225EAF25E9292FE77C0FCF3E ] AppID           C:\Windows\system32\drivers\appid.sys
11:30:22.0753 0x1198  AppID - ok
11:30:22.0800 0x1198  [ 74A24CF946279111D7F203B36569EC02, FD67D36804744B4FE3E20BA891852575E6C2DA6515643B2F4B4210118B0FCCDA ] AppIDSvc        C:\Windows\System32\appidsvc.dll
11:30:22.0847 0x1198  AppIDSvc - ok
11:30:22.0910 0x1198  [ 73FAA5517CCD1332F00192A303CF2026, 75636222BFF381A3EECA010752DF7DC1603A395B91FF7FBF92127B5CA8EFFEE5 ] Appinfo         C:\Windows\System32\appinfo.dll
11:30:22.0925 0x1198  Appinfo - ok
11:30:22.0956 0x1198  [ 68190E2BADF23BD782344970E5B5DE9E, 95D30EC12C7FDF5822CED8BC2F17669A6687A2FB262B4F0D15C8DCFF4E9AB33D ] applockerfltr   C:\Windows\system32\drivers\applockerfltr.sys
11:30:22.0956 0x1198  applockerfltr - ok
11:30:23.0066 0x1198  [ 21DC11DA29484AE026E536F2EA7E79E5, 6E17B679494CB293DE13DFA18F79A9DFAFEEBAAE41943F95B5E1AE0720A5CA26 ] AppReadiness    C:\Windows\system32\AppReadiness.dll
11:30:23.0144 0x1198  AppReadiness - ok
11:30:23.0394 0x1198  [ 8FF9C45D01C50D6C1F2A9D149624E240, 1F1998D76E2F0B49820498ECF2B17F43590828B621545AF311487D03542DFEED ] AppXSvc         C:\Windows\system32\appxdeploymentserver.dll
11:30:23.0550 0x1198  AppXSvc - ok
11:30:23.0629 0x1198  [ E6AB1F0B4C3D4E0D2A88332D76FECD03, 0D3003EB979DA4546DCDD055011E24F13E34F683F02C9801CAC564D1809F11D2 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
11:30:23.0644 0x1198  arcsas - ok
11:30:23.0675 0x1198  [ 61C5A480C43E7E8E49C42869F49D0D3E, E610F0E4315ABA1D90AD4A1D7A68ABA2ACBB7FCA89E9D1798470365D52592D55 ] AsyncMac        C:\Windows\System32\drivers\asyncmac.sys
11:30:23.0675 0x1198  AsyncMac - ok
11:30:23.0722 0x1198  [ A10F989A812B57B9695F6C305907C9C6, E2B292610079AA1A10696138DE8130905A8A834B75A8DED7EBF8B6732B77A0F4 ] atapi           C:\Windows\system32\drivers\atapi.sys
11:30:23.0722 0x1198  atapi - ok
11:30:23.0824 0x1198  [ 924CFBC423AEC4175BF016155B8909B1, 3047FBA2FD2817BD56A5F9EB1228E15D2108C2B4C39A2A2FA4C9B867DD7C2D26 ] AtherosSvc      C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe
11:30:23.0839 0x1198  AtherosSvc - ok
11:30:24.0120 0x1198  [ 06244D174788F4415BA0CF28973E010A, 72C6E3CCB8A0644192D003C72B75E03D1C0AA1A072342A44268D49FD72859331 ] athr            C:\Windows\System32\drivers\athw10x.sys
11:30:24.0261 0x1198  athr - ok
11:30:24.0339 0x1198  [ 30A8C6FAA572A020F373DA089AD9A603, 7828AE582FF5D99A94663AFB5A163BAD49611EE680ED63C548288F684906EDD8 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
11:30:24.0355 0x1198  AudioEndpointBuilder - ok
11:30:24.0433 0x1198  [ 59E69B38FBB892BED6F373AE428FB256, 1E729C19686A1785FCDD260661953E0BBF095D0D746C580581E536CD2642C2F3 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
11:30:24.0511 0x1198  Audiosrv - ok
11:30:24.0558 0x1198  [ 6D90FDA2DC364B8EA1420F2F81585CC3, 10E6F23A213CFE49BE04BB7D366ADD4028D61D7114FEC67C30B5467DF6B36D4F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
11:30:24.0589 0x1198  AxInstSV - ok
11:30:24.0667 0x1198  [ 61BAC67048CA5C1D08C48FCC8012B613, 71B2A466FC38DA1029B471FBD2541D8FE359751A7B212AE0F420DB3645916450 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
11:30:24.0683 0x1198  b06bdrv - ok
11:30:24.0714 0x1198  [ 68F72B05EBC6D1779C0D60A147C7CA0B, AA1C857BEE34865C6B901157FC22570D4CF45D950708BAD7AA333F120F2B474C ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
11:30:24.0714 0x1198  BasicDisplay - ok
11:30:24.0730 0x1198  [ 23156E7EDAF613D839E2839746B168D3, CAEF8F9C7D3A338BD747AC9D5BFBE730D77B911E87BCF532EBB75E1F80916AFA ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys
11:30:24.0730 0x1198  BasicRender - ok
11:30:24.0777 0x1198  [ 3F5523DCEFE42B385659C5CB46A6B810, CA24A3DF002B19E7BDEDE9B5EB60623F299D0E78B2E4F58DCFC028D76DEFE52D ] bcmfn           C:\Windows\System32\drivers\bcmfn.sys
11:30:24.0777 0x1198  bcmfn - ok
11:30:24.0777 0x1198  [ 0B750A6A6D847E73CA48ADD7A0F5A393, 6A43020F23846EFB1AFA3C070465B0059E9DF60DEB16899E09559462DF30939F ] bcmfn2          C:\Windows\System32\drivers\bcmfn2.sys
11:30:24.0777 0x1198  bcmfn2 - ok
11:30:24.0839 0x1198  [ 2B4D3AEAAD02954F8C191BC2D67949AD, 8237C9AD556CFAF7442FF60F78608104BC17CE3134C89D986D49C38CC60B1518 ] BDESVC          C:\Windows\System32\bdesvc.dll
11:30:24.0886 0x1198  BDESVC - ok
11:30:24.0902 0x1198  [ 0A508274355745EEF01C6BE3198D02C4, E2DB08AEE2368FA95FDB357BB31EA4EBF31679C3E72E109DB3D7CD1B5F7B828E ] Beep            C:\Windows\system32\drivers\Beep.sys
11:30:24.0917 0x1198  Beep - ok
11:30:25.0042 0x1198  [ 5125CBB61AC81168366BEB290399CB8E, B2A3095D45E2114DE2BD0E5A3AE20B3CE95EE517A35B9E1EAD05E231F38DBDCF ] BFE             C:\Windows\System32\bfe.dll
11:30:25.0089 0x1198  BFE - ok
11:30:25.0339 0x1198  [ CE27F2268497E57A94A48F8D1B47A1B6, 459A2A5C7E1CA27E720AFA95B342CDFD52224467DC4FC54AF870BA5781643F88 ] BHDrvx64        C:\Program Files (x86)\Norton Security\NortonData\22.8.0.50\Definitions\BASHDefs\20170215.002\BHDrvx64.sys
11:30:25.0402 0x1198  BHDrvx64 - ok
11:30:25.0558 0x1198  [ D876C567AB767258036F05E4766189FD, DE8BA67325CB64495BD454B8F9DDCAE82636253844FC68B360C7E1CF5D51DD0E ] BITS            C:\Windows\System32\qmgr.dll
11:30:25.0620 0x1198  BITS - ok
11:30:25.0652 0x1198  [ EEBFAEB4702E1049ECD44B10485E6C0C, 8F4D31E36717101B6172D7346E86EBC77B9CDAA5CC14AA1379661C16A7FF05E2 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
11:30:25.0667 0x1198  bowser - ok
11:30:25.0839 0x1198  [ BD33624B1F5C35F519E87B53DBC30B34, 3EFE680D7E9FCD89492DCF4E53980D01FC92DC1F63935DF16429B66DCA2AA865 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
11:30:25.0902 0x1198  BrokerInfrastructure - ok
11:30:25.0949 0x1198  [ B3F32C630DD3F2F6A6091B89CFF13641, 7A9C53EF9AB9FF1DC392FD711B194A101DB36CA5BC799E817BEB446741089B76 ] Browser         C:\Windows\System32\browser.dll
11:30:25.0949 0x1198  Browser - ok
11:30:26.0027 0x1198  [ 6E38CA51DBAC007317632FDA07A51222, CA028429F75F56008A386202D47A9534DDF78C50A51D12671B2CCA7E64A9E02D ] BtFilter        C:\Windows\system32\DRIVERS\btfilter.sys
11:30:26.0042 0x1198  BtFilter - ok
11:30:26.0074 0x1198  [ 722036C26D2C4E50EC2A2EC5FD678846, 999468038AE01F0FF6881F4B2A2CB67BC636641188E95F10729E08ADBC3CB3DE ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys
11:30:26.0074 0x1198  BthAvrcpTg - ok
11:30:26.0136 0x1198  [ 77630A51FAF6A07922FEE835F4DED8F6, E096A9DC12885FD19575346A9693A66D0DDFF96C3155AD2040F2BF4249D1D609 ] BthEnum         C:\Windows\System32\drivers\BthEnum.sys
11:30:26.0152 0x1198  BthEnum - ok
11:30:26.0183 0x1198  [ C2E31BE025D46D189E38DD1EDF07837A, 656528DCAAAF485EC57EE5C3021E96736634DE3B9C39CBCD2728E055ABD4C0A5 ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys
11:30:26.0183 0x1198  BthHFEnum - ok
11:30:26.0199 0x1198  [ F7CD605FC0B0B22F3F6F247595E3A655, 1CD9140DE5415DDBEACD8667E63E5C95FD64D693B56302A0474E693E578BEAB0 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys
11:30:26.0214 0x1198  bthhfhid - ok
11:30:26.0277 0x1198  [ B157D72BDA6A6DD6E9DC6BF338CD0CF8, B2AC26AE214151E5AD93DED78256BC0295DBF0133C854E7DEE4CD776D9C9A349 ] BthHFSrv        C:\Windows\System32\BthHFSrv.dll
11:30:26.0339 0x1198  BthHFSrv - ok
11:30:26.0417 0x1198  [ 0AB691736D4D4029444AF62DE59CFD37, C1C22EFBF67331B87AB261BBF9813009257437BA02F728EC2DFA1A49ECC5FABF ] BthLEEnum       C:\Windows\System32\drivers\BthLEEnum.sys
11:30:26.0433 0x1198  BthLEEnum - ok
11:30:26.0480 0x1198  [ 535DC41A33630AE4C262406F9E981C03, 599332589AA28D04189E19B87A4AE6FEEB60B40A7BC6E3B11240DA363A981C29 ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
11:30:26.0480 0x1198  BTHMODEM - ok
11:30:26.0542 0x1198  [ 224BA1CB1F3C702F0D001D2AFC9793B1, F139F6F78C716E1167E16530AE31E4A26C2A69467BCB08A9A52A101B31DF7771 ] BthPan          C:\Windows\System32\drivers\bthpan.sys
11:30:26.0558 0x1198  BthPan - ok
11:30:26.0714 0x1198  [ E6D5762958A839B119C041256149AAD6, 8FB489F6771C392347E333935E00024309A19F1D3143F365A039A9D2DE0A639C ] BTHPORT         C:\Windows\System32\drivers\BTHport.sys
11:30:26.0777 0x1198  BTHPORT - ok
11:30:26.0824 0x1198  [ 96932F631F5CB9F5D1C8F99A71568EF3, 5E4C8955A2EE9DC76B4EBC383653EB753D76D6B017E1A5DD553AC16094D7F12A ] bthserv         C:\Windows\system32\bthserv.dll
11:30:26.0824 0x1198  bthserv - ok
11:30:26.0855 0x1198  [ DC5955E589C55E2313D69B64E1A183F3, 06D703246D0813DE53D62885C8B7381135783673FF4BDDD5CC38FEB54901BB76 ] BTHUSB          C:\Windows\System32\drivers\BTHUSB.sys
11:30:26.0855 0x1198  BTHUSB - ok
11:30:26.0902 0x1198  [ 23F9EF739F685E07482116425E7879AA, 0EBDF96A49A319C0BCF6F51FB6C8C392C017E1738B950C19C91FF43E14D73143 ] buttonconverter C:\Windows\System32\drivers\buttonconverter.sys
11:30:26.0902 0x1198  buttonconverter - ok
11:30:26.0964 0x1198  [ 60EB6A4CE3E21887D302350631C16F26, 4270EFA22285C1A9336CF1220761E416950D2DA9C6A40D1D8452686CD5040DAB ] CapImg          C:\Windows\System32\drivers\capimg.sys
11:30:26.0964 0x1198  CapImg - ok
11:30:27.0058 0x1198  [ FC246917662E3DC1F5BA768FF22FFD3B, 3268ADE1F17F020ED715BA8C3A37B94D555B122B665FA70D73E229462CF5974F ] ccSet_NS        C:\Windows\system32\drivers\NSx64\1609000.044\ccSetx64.sys
11:30:27.0074 0x1198  ccSet_NS - ok
11:30:27.0121 0x1198  [ F8FB51B9EF6372610E9B31A1D86B62FC, 7461584A8B39AC549AD7BAFFA509D4CD81EEE542808BC8EFC285863A0AE6432D ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
11:30:27.0136 0x1198  cdfs - ok
11:30:27.0214 0x1198  [ B737F6FB33A6F79BCBC293A5B32C1C4E, B2EAF621052A4CBEE78208ECF1AC9286BD1EB431019372254E442319308112F8 ] CDPSvc          C:\Windows\System32\CDPSvc.dll
11:30:27.0245 0x1198  CDPSvc - ok
11:30:27.0292 0x1198  [ 2531EF3423A9FE1692005A41907E3BE3, 4E7D3E216937305B73CBCC5031F513CEC38F4FEFE3F2291DED5F37641221CCA0 ] CDPUserSvc      C:\Windows\System32\CDPUserSvc.dll
11:30:27.0308 0x1198  CDPUserSvc - ok
11:30:27.0402 0x1198  [ 613D0137C269187FA298A157E3D14A18, 84BC268525F14BB27202CE242BF94D9E83BC91B50A0335908574F31B29A2F04D ] cdrom           C:\Windows\System32\drivers\cdrom.sys
11:30:27.0417 0x1198  cdrom - ok
11:30:27.0480 0x1198  [ 9450FA11E9DE6715FCB71A519A8FF90B, B7E341C6E4CE967FCDD0D17A497C07E8A1C6B0AACE8A6E8E5D6C21EF73F13E16 ] CertPropSvc     C:\Windows\System32\certprop.dll
11:30:27.0511 0x1198  CertPropSvc - ok
11:30:27.0558 0x1198  [ 0AED948DA8D5F08B3D6F12E4E2089736, 95E538E81DDBC83492C5F3820C82C78F050B4D74ACF12D7970EC84F93581AE29 ] cht4iscsi       C:\Windows\system32\drivers\cht4sx64.sys
11:30:27.0574 0x1198  cht4iscsi - ok
11:30:27.0758 0x1198  [ 0002A0FDE087C1657AB31CE73077539C, 4DD6210B67E9633AB3240371590869DC833A4C986C74FC12A5D4FFFFD361848A ] cht4vbd         C:\Windows\System32\drivers\cht4vx64.sys
11:30:27.0821 0x1198  cht4vbd - ok
11:30:27.0852 0x1198  [ 6B4F90A287D75CCD78694F6790C911B2, 73D7C31E9F475FA3FD568FCA9A953F968729AA114F63C06F38BF5198DAD67BD8 ] circlass        C:\Windows\System32\drivers\circlass.sys
11:30:27.0852 0x1198  circlass - ok
11:30:27.0883 0x1198  [ 09D0B94D3A06EFD1EB70189EC4B26DF7, 47E73C536C63F4C21E4ADBB122A152D3A291CF4EDD4CB4D07D09D14E1A9961F1 ] CLFS            C:\Windows\system32\drivers\CLFS.sys
11:30:27.0899 0x1198  CLFS - ok
11:30:28.0164 0x1198  [ 6594CC3A25DD830E2DFE16C19A74D03A, 43A4FFEB5A9A6522D9AFC97CB9F34D0DC1B64C43D7FC048929F333BA8E3DBAFB ] ClickToRunSvc   C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
11:30:28.0305 0x1198  ClickToRunSvc - ok
11:30:28.0383 0x1198  [ E133CFCBFABB3CB517BE9F42FEA5887C, DA699CDD5F3CC427354540C907BD24CCA7BAC3112C53918EB611CB4EEC7611DA ] ClipSVC         C:\Windows\System32\ClipSVC.dll
11:30:28.0446 0x1198  ClipSVC - ok
11:30:28.0493 0x1198  [ EEC3A4A98AE1A337E3CD1483AD6F2E15, 764DA329984A95E092F5C15116DA34FA7FC27216C0862365D4BF10ADC97EC5C5 ] clreg           C:\Windows\System32\drivers\registry.sys
11:30:28.0493 0x1198  clreg - ok
11:30:28.0602 0x1198  [ 5C646CAC91E086F7FF53C7F2E857F263, 67AF6FBF88B7EE530A9BA53833EAFCC78BF8362E82BF81180858F1D17DFC73E6 ] CLVirtualDrive  C:\Windows\system32\DRIVERS\CLVirtualDrive.sys
11:30:28.0602 0x1198  CLVirtualDrive - ok
11:30:28.0633 0x1198  [ 429623E266EF067A44E8CF148E9DFB9B, A48AA85ACC52C7AD73DB2D6148B3F9FB5EAC33C8F8C5BB6D7D0A9D84B7C08E11 ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
11:30:28.0649 0x1198  CmBatt - ok
11:30:28.0743 0x1198  [ 3E502EB1701CF54CF237B6250FBE38EA, E63F6F45D3990ACBCA96003F67C83697BA5B74B89F972C5E9CC45F90D05519FF ] CNG             C:\Windows\system32\Drivers\cng.sys
11:30:28.0790 0x1198  CNG - ok
11:30:28.0805 0x1198  [ 3DB10C59405931E2C72EFB82C1AF97D1, 100B5450A70988DB1C1F8A5FDBB3553AF1A0D47B42A5AC71460DB92E26010CE6 ] cnghwassist     C:\Windows\system32\DRIVERS\cnghwassist.sys
11:30:28.0805 0x1198  cnghwassist - ok
11:30:28.0946 0x1198  [ 34C935AF2A414572B412B3556586D783, 912981B88B0796576ECCD5EBE0C4728EC02D5D6A96B039447DCBA59B2583F25E ] CompositeBus    C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys
11:30:28.0946 0x1198  CompositeBus - ok
11:30:28.0961 0x1198  COMSysApp - ok
11:30:28.0993 0x1198  [ 44EEEB2382F566999287E13F2067693C, 53A4A0C85EAD38030FF2078C67465E3710ECD03A08FF34E1E67B2E3E1CC70043 ] condrv          C:\Windows\system32\drivers\condrv.sys
11:30:28.0993 0x1198  condrv - ok
11:30:29.0118 0x1198  [ 03DCC01047713690E312B013C60881AE, B98174222DDFDA2A31BAC4795D99FA07D1D03107ABDB27BF5069FAFBBF00D278 ] CoreMessagingRegistrar C:\Windows\system32\coremessaging.dll
11:30:29.0196 0x1198  CoreMessagingRegistrar - ok
11:30:29.0321 0x1198  [ F67D7739243C50D775BF8B848DB92EA5, 066A618F9F8B9E00C065320E2D32DBCCF6D74BB47BDFDDFA78637B6EDC9A13EC ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe
11:30:29.0368 0x1198  cphs - ok
11:30:29.0430 0x1198  [ 5F06CAC4B09250CDDDD0180A08162924, A2EB0A57225E65FC264CFC9FAD858D8B54A015CDAE3DC904B1C4E9AAB40B1F06 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
11:30:29.0430 0x1198  CryptSvc - ok
11:30:29.0493 0x1198  [ 039B5A8CBD5C75D1C46DF15F7C74D136, A5C8A41F2D406D37E147939F2058373ED091BFCC00CA7E829F887638CD3A2F64 ] dam             C:\Windows\system32\drivers\dam.sys
11:30:29.0508 0x1198  dam - ok
11:30:29.0540 0x1198  [ 566BD6ED419F7FBC88EDD579044AD5C9, EC66C10DAC23ED149545305EA25F60888C5D3675BD850C7C12275B8666D18FEF ] DbxSvc          C:\Windows\system32\DbxSvc.exe
11:30:29.0555 0x1198  DbxSvc - ok
11:30:29.0649 0x1198  [ 7BD259FC59CF9C2AE1B979564B374CC6, 299832FCE304A85080C80ABFE820A6093AC15A7C1E7C89D8C946708E955A2909 ] DcomLaunch      C:\Windows\system32\rpcss.dll
11:30:29.0711 0x1198  DcomLaunch - ok
11:30:29.0743 0x1198  [ AE9F09F87755C18904656CB4F59F351D, B352A43B3B68B497D87B49C302AF3F37F36D56D49878AE3785C3D43597E5DC57 ] DcpSvc          C:\Windows\system32\dcpsvc.dll
11:30:29.0758 0x1198  DcpSvc - ok
11:30:29.0790 0x1198  [ 3802CBF4BDDE6F99974B27EE1782E5F9, 51562209E16A1C0247D73D7BFC8827AE4A2E57AF11350379A8FBA1EC44E56E54 ] DDDriver        C:\Windows\system32\drivers\DDDriver64Dcsa.sys
11:30:29.0790 0x1198  DDDriver - ok
11:30:29.0852 0x1198  [ ABBD3EE724117242E28D31F19FBCFF03, 68EA91A969DD80A5DE28B0A8EAEB308837183713559C2C2FAEF991858C971393 ] defragsvc       C:\Windows\System32\defragsvc.dll
11:30:29.0915 0x1198  defragsvc - ok
11:30:29.0961 0x1198  [ 04D91223860DB9B4169909A01CD66819, 0B598306E99BF9AF036908C9333D34A81F7A9FF292213A9EB583F3F4C8FE2CB1 ] Dell Customer Connect C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
11:30:29.0977 0x1198  Dell Customer Connect - ok
11:30:30.0102 0x1198  [ 802FC4E1B3E24185C731C81CD629F41D, FDA38B16E3D8CB1C6D7621AAD25663B954B7015F21F84524DAE2BB04923A996F ] Dell Foundation Services C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
11:30:30.0102 0x1198  Dell Foundation Services - ok
11:30:30.0196 0x1198  [ 94B0818BDC1DDFC66E94069950507B35, 489019AEE9D1AA94FC66E74FF22A98702C1A142460BBAE928706CB76C5F937F2 ] Dell Help & Support C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe
11:30:30.0196 0x1198  Dell Help & Support - ok
11:30:30.0430 0x1198  [ 19C5F4EBA0B9670A923EEDCD97526B3A, 6D02BC69FD8D2099098255C7776E90FD98CAB343473D92238CB5F7DE9B080A89 ] DellDataVault   C:\Program Files\Dell\DellDataVault\DellDataVault.exe
11:30:30.0586 0x1198  DellDataVault - ok
11:30:30.0618 0x1198  [ 5F57C0E23FB5FC5F3DDE5ACAF5D299D7, 381EB4B54B77CA061AFA484F5BF98B2518D3C7FD54406631C6C7F43E3132C4A3 ] DellDataVaultWiz C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
11:30:30.0618 0x1198  DellDataVaultWiz - ok
11:30:30.0696 0x1198  [ 58F416B0E25755C3EE1FC754A5EDE1FC, DD5658C3AA4F019A30A76C2EEFA4DF9DDCE2A9425CC93D8EC870521D17D172EA ] DellDigitalDelivery c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
11:30:30.0712 0x1198  DellDigitalDelivery - ok
11:30:30.0727 0x1198  [ DC3BD578642252FD9569B9CD75CEF81E, 63F44BC19389C19BA9F9E974BF2E5236AF7F66D9076943B9CF46775264BBE413 ] DellProf        C:\Windows\system32\drivers\DellProf.sys
11:30:30.0727 0x1198  DellProf - ok
11:30:30.0758 0x1198  [ 2F5EB7375FC3D9DBB81BDFFE2BCCB9D0, 6D2C01CB29EA220C265D6B24C791D97482D05F1C9FF4C9816FAA3F3E05B42882 ] DellRbtn        C:\Windows\System32\drivers\DellRbtn.sys
11:30:30.0774 0x1198  DellRbtn - ok
11:30:30.0836 0x1198  [ C0B101B96780FFF06ADD32538A036BA8, 8B456C56D7FADA55FF9F45EB2AF4BBEC611D9D50035019D84EF0F2147E9F1170 ] DellUpdate      C:\Program Files (x86)\Dell Update\DellUpService.exe
11:30:30.0868 0x1198  DellUpdate - ok
11:30:30.0931 0x1198  [ DD74F18227ACC837D9856E24282D446D, 6A760E44CD897952538CDFA8895FE11263D51AAA79CFF24C01F3862E919DA478 ] DeviceAssociationService C:\Windows\system32\das.dll
11:30:30.0962 0x1198  DeviceAssociationService - ok
11:30:30.0993 0x1198  [ FEA494AC3A1BAE63C1F2AF267D49F1DB, 0722FEA2481740B53EF26B1CA59166C63C157A5C708AC93DF3FBB74A27266C9C ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll
11:30:31.0009 0x1198  DeviceInstall - ok
11:30:31.0040 0x1198  [ CDF1B1B5C5951111791C236B2696C7F8, BF6C4BA545C8827B40DB69890DB4D2B2F9C583C5E3CFBDFD370B05891141458D ] DevQueryBroker  C:\Windows\system32\DevQueryBroker.dll
11:30:31.0055 0x1198  DevQueryBroker - ok
11:30:31.0102 0x1198  [ 0D1D392ED2597F295956D058D33BD7C3, 2F7FE5A06D880F9E2A46C9803DD249DC40C2898C04E946D14E7EECCCC9F2B24F ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
11:30:31.0118 0x1198  Dfsc - ok
11:30:31.0180 0x1198  [ F0D4400BA0F08610D9A551B15BF10B76, 83EB8FB272FC2DD2CC0659C2FB90AD0DAE88A88AB3951E03BCD933A25B601E10 ] Dhcp            C:\Windows\system32\dhcpcore.dll
11:30:31.0227 0x1198  Dhcp - ok
11:30:31.0305 0x1198  [ CA7FEDDFCF61EF15A09C54DA2C07C49F, 346EF7709BA9E6BD48592B86FA46F9D956C847EF91F4980EEAD98269D0F0EF67 ] diagnosticshub.standardcollector.service C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
11:30:31.0337 0x1198  diagnosticshub.standardcollector.service - ok
11:30:31.0524 0x1198  [ CAD14E0AD1F03397E9B1C8733D76BEF4, 0035EF35F6520B1DF0E599C8A06D4163C52576BCE0976BF729B44DECDC506627 ] DiagTrack       C:\Windows\system32\diagtrack.dll
11:30:31.0618 0x1198  DiagTrack - ok
11:30:31.0665 0x1198  [ 35B9D46560339A5A7F0CAC6ED702C817, F70480B01533B7029F90E2DE297E9E829660300DDE7A7D009B0AC2684E7691A7 ] disk            C:\Windows\system32\drivers\disk.sys
11:30:31.0665 0x1198  disk - ok
11:30:31.0737 0x1198  [ 44A5CAF4E736BCD4360015BB3B841179, 8CD74620C3E163FF998CA8C09A999FED5C9EFDC88D07493192A57032D18CA973 ] DmEnrollmentSvc C:\Windows\system32\Windows.Internal.Management.dll
11:30:31.0784 0x1198  DmEnrollmentSvc - ok
11:30:31.0800 0x1198  [ 815F45161A4571C2C44491564F3D5968, 32E7AE8414A178CE429C0CDFCF718E3C11C705FB3155EA5CA0EAD48AAE507B01 ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys
11:30:31.0815 0x1198  dmvsc - ok
11:30:31.0847 0x1198  [ 6E5EE6E420FECD64DE463C5F01CBFE71, F173C56895E80AA03D70CD78B3AB659C2EEAACFF43BE3B6EF3939D6F4AD4F62D ] dmwappushservice C:\Windows\system32\dmwappushsvc.dll
11:30:31.0894 0x1198  dmwappushservice - ok
11:30:31.0956 0x1198  [ 7F8A3ABF7750326E18CE953CCE262670, 5DBD159E8A455A42764FC73CF7DCAC849B5896848C5589B00BD36697804C0A3B ] Dnscache        C:\Windows\System32\dnsrslvr.dll
11:30:31.0988 0x1198  Dnscache - ok
11:30:32.0066 0x1198  [ 8F46B4C3F9BA19C26A26D0A11137B20B, BA0A66DBA98D77FD85A7CD2D4593F2B2A1A3B4D32BBECBCFFBEB5A54DCB0D8ED ] dot3svc         C:\Windows\System32\dot3svc.dll
11:30:32.0097 0x1198  dot3svc - ok
11:30:32.0144 0x1198  [ 204A3E7B9EBE96E8E17D52A7B025AFB6, 79BD62164D924AE8B471C9EA8D09B1F0CD428E94472A80B4F1656C3C8627C715 ] DpmLiteDrv      c:\Program Files\Dell\QuickSet\DpmLiteDrv64.sys
11:30:32.0144 0x1198  DpmLiteDrv - ok
11:30:32.0191 0x1198  [ CA09EAEE92C6FDDC6B05057F11A0372D, 14DB5C186B69644AA93C445BF31CC9670204F95A47B77B6EACB19B4A316378AD ] DPS             C:\Windows\system32\dps.dll
11:30:32.0222 0x1198  DPS - ok
11:30:32.0238 0x1198  [ C1283B0BEE35F9AF3511E0EBA71F311C, 542D560B654EA4E4708837231A4A967FB4DF5CDB190B7D763E92B1F6FCB255B4 ] dptf_cpu        C:\Windows\System32\drivers\dptf_cpu.sys
11:30:32.0238 0x1198  dptf_cpu - ok
11:30:32.0284 0x1198  [ AE6BD4C879A8C849E53947C92DF3B3A0, 8C29774CB2D30D901C54AAC0C8ACE709351EE40E5C8FB9951B2A18B4A03F28B7 ] drmkaud         C:\Windows\system32\DRIVERS\drmkaud.sys
11:30:32.0284 0x1198  drmkaud - ok
11:30:32.0331 0x1198  [ 7433474BE77F065D2FA628671FE31A3E, 063ADDC68F48036749E6EC7B2F66284DB29F90F62E9468D16B4EF5A0FDC45E35 ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
11:30:32.0347 0x1198  DsmSvc - ok
11:30:32.0378 0x1198  [ 5FCA45C24501DA7390065D3706A9FC3F, 093FD840F1502ECC6F05B9723CA523B3F15CF39A5D2B9106E1267739B3F2C52C ] DsSvc           C:\Windows\System32\DsSvc.dll
11:30:32.0394 0x1198  DsSvc - ok
11:30:32.0550 0x1198  [ 125C83C44EEE61E2ED5893F23AEF0FC9, D6599AFFA1A554124AEF6862C69027F9FF9B343362091439866641A1CFB0E76A ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
11:30:32.0628 0x1198  DXGKrnl - ok
11:30:32.0659 0x1198  [ 9FCE4EF7D5E274F862D9A2526B5F4779, 81D42D5475C2801C8E0C233A0BA827569D8A70590017C91C665C8B232D9BFAA9 ] EapHost         C:\Windows\System32\eapsvc.dll
11:30:32.0691 0x1198  EapHost - ok
11:30:32.0925 0x1198  [ 7EC6FC0266D74BD47ABB130A328B70EC, 3856790AF967AB03B1A89F97328DC4D5A6854ACDA6169681A9AFB03D7CF791F9 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
11:30:33.0034 0x1198  ebdrv - ok
11:30:33.0222 0x1198  [ 6266BAEDF00023684B10E101E9FBB89B, 720B66721BD9BAE476A0CA9037C5452FB1CC645DC00E6205051C7AF84550051C ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
11:30:33.0253 0x1198  eeCtrl - ok
11:30:33.0300 0x1198  [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] EFS             C:\Windows\System32\lsass.exe
11:30:33.0300 0x1198  EFS - ok
11:30:33.0331 0x1198  [ 8D74B8B5D6F7C5BC4C525BAF2B083FF1, DA5656F745B3911F96871887FDFDC40F4D9C820622A0AA27EFE4BA93662833CA ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys
11:30:33.0347 0x1198  EhStorClass - ok
11:30:33.0378 0x1198  [ 2A9817B5A9260D8F60D52E36BEF10443, AC1A0203221AFAF584C71317FA07AA1B6E61BE619E918B3B1E4AD57CCED1CF03 ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
11:30:33.0394 0x1198  EhStorTcgDrv - ok
11:30:33.0441 0x1198  [ 80A7999DE02CE678B865832E1CE78CD6, 2576EBB6E4D630A906DE724F125099E52A962B5B68B9F9BCA849A7B29D8C8689 ] embeddedmode    C:\Windows\System32\embeddedmodesvc.dll
11:30:33.0503 0x1198  embeddedmode - ok
11:30:33.0550 0x1198  [ B4264DEF962801CDB83C008DE30758D1, 57886688102BE727450BA45932044A5A389B5822A0C1C08C2AFFBA380F70C3F3 ] EntAppSvc       C:\Windows\system32\EnterpriseAppMgmtSvc.dll
11:30:33.0597 0x1198  EntAppSvc - ok
11:30:33.0659 0x1198  [ 3180E3A3EFDA196DE5B9980291CFE685, 31B735F04AC80D3BDA3872C77BC361D7E02DF081E31A3581A6C1A5B542EACF4F ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
11:30:33.0675 0x1198  EraserUtilRebootDrv - ok
11:30:33.0722 0x1198  [ 77B60DEC7DCB4233E4A69D3F52E5DB24, 3A5C905E37A93899051497C90E5BA8E1D003B56C6906CADFD2F1CDF52052D248 ] ErrDev          C:\Windows\System32\drivers\errdev.sys
11:30:33.0722 0x1198  ErrDev - ok
11:30:33.0972 0x1198  [ 8A00CC653B8F02503C250FC1B9475807, 496517DD9E0BFFE03701E813EB7732578482ABA808771BE7889A27E1E2FEB647 ] esifsvc         C:\Windows\SysWoW64\esif_uf.exe
11:30:34.0003 0x1198  esifsvc - ok
11:30:34.0050 0x1198  [ 99984B5D3378F8236F3A85E51ACEDD16, 73EE5B93C27C09F15BBAEADC8A293CB14FDD1E3DC65DDC0C665549D71F307D33 ] esif_lf         C:\Windows\system32\DRIVERS\esif_lf.sys
11:30:34.0066 0x1198  esif_lf - ok
11:30:34.0128 0x1198  [ F89083AB8B9F51C0031C1CBD0A9A7E35, 9EE973A25134960E62D1A6A1E34AD9B3F7690E71C1AD31A23FA2081A73438754 ] EventSystem     C:\Windows\system32\es.dll
11:30:34.0159 0x1198  EventSystem - ok
11:30:34.0191 0x1198  [ FCD2C63754C2E739A8EEAD9BC63F9DDC, C57A72ABA4C0BD71F914B9C8FF965DCFF585A205498F19A4584A4BAF7674839D ] exfat           C:\Windows\system32\drivers\exfat.sys
11:30:34.0237 0x1198  exfat - ok
11:30:34.0269 0x1198  [ C077AA74EDDAF69985EB27597BCB342A, 8CE48D37E39A6DFA3C8E959CA92A49029100446DC40044EE009D55FB9CDE378A ] fastfat         C:\Windows\system32\drivers\fastfat.sys
11:30:34.0284 0x1198  fastfat - ok
11:30:34.0331 0x1198  [ 77CE56471AF984800F318F3734D768C7, 72D540072374A56C2C497F0532A50705D3F0637F2C0C96B1D715F2EDFCA3AA2D ] Fax             C:\Windows\system32\fxssvc.exe
11:30:34.0409 0x1198  Fax - ok
11:30:34.0456 0x1198  [ 99598ECA5E41996E005D5B9D9FF1EFA2, 91345CD50EF02431B69093505C1C5F5DC6A1AA6BF192EE9392ED4D5626B60462 ] fdc             C:\Windows\System32\drivers\fdc.sys
11:30:34.0456 0x1198  fdc - ok
11:30:34.0503 0x1198  [ EF0DD43A4CBAB367BCA1AFBDC9971E4F, 73E161C45D63FDDE71EE2438137913724DC513860539D1E7F6BD861F5D1B33F3 ] fdPHost         C:\Windows\system32\fdPHost.dll
11:30:34.0550 0x1198  fdPHost - ok
11:30:34.0581 0x1198  [ 34DAC585994CD3B4E910DE11C584EF3D, A6C6A4CB5413EA61F1A54E2D3AD71A311CEA2C26218544D2D2D4A5CFEC52DE8C ] FDResPub        C:\Windows\system32\fdrespub.dll
11:30:34.0612 0x1198  FDResPub - ok
11:30:34.0660 0x1198  [ B68DA1FE3CA2311AFD38DD6905CA7F71, 4B395DFB1B47D2507CA4D9DC996A70D0A3BDB1A245CD6DA6C42B2A299AFCCF37 ] fhsvc           C:\Windows\system32\fhsvc.dll
11:30:34.0691 0x1198  fhsvc - ok
11:30:34.0722 0x1198  [ F44F666B0EACC3181544FFCF8CA0FFC7, 83F771CF9DAE1C504B30731EEC55355EA1253174252DA2192ADF1D228B3735C3 ] FileCrypt       C:\Windows\system32\drivers\filecrypt.sys
11:30:34.0737 0x1198  FileCrypt - ok
11:30:34.0769 0x1198  [ 78A210DDFDF2C9EC884631D2DAA573F0, 5D39C6EF4AC690A9749EEDBE2478FFF15A22877A2861EDA103C7BF1607B0C1BD ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
11:30:34.0769 0x1198  FileInfo - ok
11:30:34.0800 0x1198  [ 1A97DB5E701A186989F3795223C3BE39, F7982220D4DF7E104955E63CACE352394E2577DEF49506EA126127F820EB62DF ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
11:30:34.0800 0x1198  Filetrace - ok
11:30:34.0831 0x1198  [ 46626665F0E5906E45619B4EFD6186B8, 37FDD3B8AD49FD29E54DA5567EA77F28A53498AE56348F7A2628E5E5549D638B ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
11:30:34.0847 0x1198  flpydisk - ok
11:30:34.0909 0x1198  [ FDA72ACA14D516D18C33AFCD0FD9260F, 6509612DEC82EA74614B5C9A7B432305A1A468C97B88BED9E141DF2929B621B1 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
11:30:34.0925 0x1198  FltMgr - ok
11:30:35.0081 0x1198  [ 49BF5C8182C3D2D6CD9F7EEDF1CFDB66, 0977EBE86B57FC370D27CA69D58122397D5D5369AF0C8DBCC492AE7AD55CBA2B ] FontCache       C:\Windows\system32\FntCache.dll
11:30:35.0159 0x1198  FontCache - ok
11:30:35.0238 0x1198  [ 59241194DBDF30A2B4029E402F377900, 47A92E9CD8494C403B377799D395670A393766647E24CD83B15338CE2AA50266 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:30:35.0253 0x1198  FontCache3.0.0.0 - ok
11:30:35.0363 0x1198  [ 4816E166BD2C0E637DB183D24765684F, 69580B82DA9A5F4E54EE9604C6B717D0307A345F8FFB42515669F086CC4A88D1 ] FrameServer     C:\Windows\system32\FrameServer.dll
11:30:35.0456 0x1198  FrameServer - ok
11:30:35.0488 0x1198  [ D152CCBFC8251670BF0AAFE00D6BC782, 9DE82D8FC4E1DAF8FF23EE08C0B7CB5051A9224E64544D262CFA4996A41B04E1 ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
11:30:35.0488 0x1198  FsDepends - ok
11:30:35.0503 0x1198  [ 6D6BB5C7363CD35FA715E826F3D029EE, C214F791EB39E8B25CE57ED9D6C1D56EE1AF6021BCB380980BD42A6338A6C9F7 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
11:30:35.0519 0x1198  Fs_Rec - ok
11:30:35.0613 0x1198  [ 8EEC4925C03E375C4EC496E45C44139A, 06C5C7BCC28D3E435675F0759A09CAB726E971DF4BFC1DC3DCF503EABCDCCCC6 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
11:30:35.0644 0x1198  fvevol - ok
11:30:35.0675 0x1198  [ EF78034773CE506323655A868C949144, DF195BEEE6704FBCC6D2D9E1BF6723E52ED502A1459F495B7D18481E6A79B5BC ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
11:30:35.0685 0x1198  gencounter - ok
11:30:35.0701 0x1198  [ B55FEBC6A00DAA1FE074F020B6907516, 67071FBAC2ABA47AB71358A5F08E92E034A55343878F00137E90B3B1F7362976 ] genericusbfn    C:\Windows\System32\drivers\genericusbfn.sys
11:30:35.0701 0x1198  genericusbfn - ok
11:30:35.0732 0x1198  [ DDD8A8CDDC7F13EF57D1DAAE71865936, 9D472A8689F72F24D40D5B94849690F53C67849FDF6162A94EF4FB330A3DA566 ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys
11:30:35.0748 0x1198  GPIOClx0101 - ok
11:30:35.0983 0x1198  [ 713A176494CEC107E663CAD6C2B27F77, 76871D8CFBA8FCD8CFF96208AE84C658EBEC60270D978898B90EE9451AA1BCE1 ] gpsvc           C:\Windows\System32\gpsvc.dll
11:30:36.0029 0x1198  gpsvc - ok
11:30:36.0061 0x1198  [ 7ACD8F69B5D6EC97E6D2C006E19BED88, FC69214C9308EA64B88EF4C3C95800586DDBB44C8540846B79A161BAD8203B6E ] GpuEnergyDrv    C:\Windows\system32\drivers\gpuenergydrv.sys
11:30:36.0061 0x1198  GpuEnergyDrv - ok
11:30:36.0139 0x1198  [ 50FCC5C822A6B4FC6F377EE9F9F37C7B, 57BD4032367D91EF19931E927127AA1D54DA6118B36C219B0FFD95326A2FFCA0 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:30:36.0155 0x1198  gupdate - ok
11:30:36.0201 0x1198  [ 50FCC5C822A6B4FC6F377EE9F9F37C7B, 57BD4032367D91EF19931E927127AA1D54DA6118B36C219B0FFD95326A2FFCA0 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:30:36.0217 0x1198  gupdatem - ok
11:30:36.0295 0x1198  [ 217230B984AB2954E2FA5E36578D7B08, BB7B79EA7501A28EB2A0303FDF66FB9D59D567994C25A1523CD6D2081C403AF6 ] HdAudAddService C:\Windows\system32\DRIVERS\HdAudio.sys
11:30:36.0311 0x1198  HdAudAddService - ok
11:30:36.0358 0x1198  [ 10E3515FE5DBA6656FA62C29342EC4A1, 2051F10F74ED712B1766EB61E87FADE25AB3D0970BABFD320600D1B0D6377F26 ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
11:30:36.0373 0x1198  HDAudBus - ok
11:30:36.0404 0x1198  [ B90D284B97CD4CA9DE7430AAAD887A56, 2F14F985C39B7801ED64590979CF2114924E9547F5B11D2B37A74DBFFDD9E7C5 ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys
11:30:36.0404 0x1198  HidBatt - ok
11:30:36.0451 0x1198  [ B2FE11643CC6ACDEE6C247DD36018FDB, 5796613C7DBF8B2A9E860E006FF1A245B6BE7D10E3F6685AD142B48E5C237B8C ] HidBth          C:\Windows\System32\drivers\hidbth.sys
11:30:36.0451 0x1198  HidBth - ok
11:30:36.0482 0x1198  [ D24355488A2D4D2323518EC1AC7A6D9E, ED2176A2093726087EDDA25B86E9CDD4BA35F4E748E3A6DE0B15C4C97646B5C7 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
11:30:36.0482 0x1198  hidi2c - ok
11:30:36.0498 0x1198  [ 0AF9ABBA4F3F55C6C803890D64BC3C29, D3DE6FA308F8E7CD4F16387F46AE4B2F7EC9BBA07BF87652B660A0D645710571 ] hidinterrupt    C:\Windows\System32\drivers\hidinterrupt.sys
11:30:36.0498 0x1198  hidinterrupt - ok
11:30:36.0514 0x1198  [ CDBCF8E9AB06D88A1E1191D32F320C5D, F76963AB7CF2BAB3A220013879AECD3976BFD851CFB66B5A69A9EA2541048861 ] HidIr           C:\Windows\System32\drivers\hidir.sys
11:30:36.0514 0x1198  HidIr - ok
11:30:36.0545 0x1198  [ C900FE0DD6A1E2220084B8F1C427790C, 802194EBEDA1A50EDA300078B0888AAC1F17A42E67147B7B3B9C50AD8D4E5C89 ] hidserv         C:\Windows\system32\hidserv.dll
11:30:36.0545 0x1198  hidserv - ok
11:30:36.0607 0x1198  [ D8536CB438CC4CCDAE047B768EED22B2, 4F666BFA3554F9ACA6B9D436BFA64474D5F30FB3E78F4E66068CCDF283D9867F ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
11:30:36.0607 0x1198  HidUsb - ok
11:30:36.0701 0x1198  [ B3F963EBD55AEBA106342F5CBBCFEF5F, 316F6D94421EEF31CA87A6C54B819E9AA06994011244A3A75EB5DD09A6B79ECB ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:30:36.0748 0x1198  HomeGroupListener - ok
11:30:36.0842 0x1198  [ 86161A89F16851728802590EC7C92608, 3A3B05BB4E115410D27063B30C0EF3F18295F542050F329F1E466C81A9E23A46 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:30:36.0857 0x1198  HomeGroupProvider - ok
11:30:36.0904 0x1198  [ F5CA18197B4646E04DB9EB2D6642CC4D, 5BA3342DDF1BCB67E4156169FE9A33E7BC2641C729E9F1A80C0E80953C6AB114 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
11:30:36.0904 0x1198  HpSAMD - ok
11:30:36.0998 0x1198  [ A10C7C1E69FC90620C7BF2E51302A01F, D725AEAE38255CED73F4922A10F226215528706580B06D01C228488F93AC0397 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
11:30:37.0030 0x1198  HTTP - ok
11:30:37.0061 0x1198  [ 0C84C250F80EAEC2C9768464CC1A9626, 212E1003B78F9B98FEB084FD1FDB59B26A9DE4C9120F24D4361FBBF0F3C035E7 ] HvHost          C:\Windows\System32\hvhostsvc.dll
11:30:37.0076 0x1198  HvHost - ok
11:30:37.0125 0x1198  [ 74FC79C52395B10FFD0B55CF22CF88FC, 94D977DA2092EE8C2A598AC48758A84BB22CB6378BD114C2D3B4172A07A9CACC ] hvservice       C:\Windows\system32\drivers\hvservice.sys
11:30:37.0125 0x1198  hvservice - ok
11:30:37.0156 0x1198  [ 771EDDA9830A3079F996F34D681FB6E5, F452AD656872A1C8B2D6DCE232CE01EBD456C46F4934A7601E78470F2A2CBF38 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
11:30:37.0171 0x1198  hwpolicy - ok
11:30:37.0202 0x1198  [ 3B9F315E7FA72CC25228EB097DD9C694, B26F1E494428EF197A0C97645C05BB3CA093827A005D35C987F1D6778BC4E52C ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
11:30:37.0218 0x1198  hyperkbd - ok
11:30:37.0265 0x1198  [ B54B30992620C97230013A74461C8517, CAF09BDCDD6DE2A39CB8AE2C65E6F8FE12D8E93D84BBEF6C6A98F872BF54A4E3 ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
11:30:37.0281 0x1198  i8042prt - ok
11:30:37.0312 0x1198  [ C6B8743B213F06AA60943D8366FE968F, 758954F70B810063914B243115B2C753B2BCE40190F95C30ACBA0BF04EBD5B33 ] iagpio          C:\Windows\System32\drivers\iagpio.sys
11:30:37.0328 0x1198  iagpio - ok
11:30:37.0359 0x1198  [ 45BC5C74016A9F8B4CDFB974CFA2DFD0, FBF72E3CB3829E2A648117A6B09765BA670C8884D2AB1E2D15C7CAC9C131C6D1 ] iagpioe         C:\Windows\System32\drivers\iagpioe.sys
11:30:37.0375 0x1198  iagpioe - ok
11:30:37.0406 0x1198  [ 9A2A2F3C69B9A30B6E78536F6D258BAD, 5E28E132A7300E6F5E0C6439D6BA00F1AEF66D729FF671FDA91274A25A921463 ] iai2c           C:\Windows\System32\drivers\iai2c.sys
11:30:37.0406 0x1198  iai2c - ok
11:30:37.0453 0x1198  [ 810CE0871C5566A8761093F83A78AC28, F98063BD5C657A1C4C5C444E6954FFF6FB3419B53C3273D879FEBD541CFBA766 ] iai2ce          C:\Windows\System32\drivers\iai2ce.sys
11:30:37.0468 0x1198  iai2ce - ok
11:30:37.0531 0x1198  [ 5A0E850F8CD17791A3E6A3CF81D0CA28, 10A965A49D53360DD250E0758B6BB142872298A21C732EB026ACB93492C5C6CF ] iaLPSS2i_GPIO2  C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys
11:30:37.0546 0x1198  iaLPSS2i_GPIO2 - ok
11:30:37.0593 0x1198  [ 7508F1096803385D6376BFD0BD473AC4, 1F32EC23CDC94DCB9710E6663B5C3BD83568545DDC2C741CFC13550A4E4DD2BE ] iaLPSS2i_I2C    C:\Windows\System32\drivers\iaLPSS2i_I2C.sys
11:30:37.0609 0x1198  iaLPSS2i_I2C - ok
11:30:37.0640 0x1198  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\Windows\System32\drivers\iaLPSSi_GPIO.sys
11:30:37.0640 0x1198  iaLPSSi_GPIO - ok
11:30:37.0656 0x1198  [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C     C:\Windows\System32\drivers\iaLPSSi_I2C.sys
11:30:37.0671 0x1198  iaLPSSi_I2C - ok
11:30:37.0718 0x1198  [ 97E553D03219D3D51705C7235D9EAEBD, 5D4578C8804AF32D1DC0868E34D6538138DC15F9568CA7E21051B1C82C0D8D55 ] iaStorAV        C:\Windows\system32\drivers\iaStorAV.sys
11:30:37.0749 0x1198  iaStorAV - ok
11:30:37.0781 0x1198  [ 8350FE3BCDE3428BC040877BB7E9EAEB, 77F9456351CA640C6B7862907C0580627E761EC807B551976A95657EB4D6CC20 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
11:30:37.0796 0x1198  iaStorV - ok
11:30:37.0843 0x1198  [ 3BA03F7C7700DDF4C383DDE9252F5817, 3E90F69D0010E7764349D9AE865D577E431FEBC67DA554B400BC808DD286E203 ] ibbus           C:\Windows\System32\drivers\ibbus.sys
11:30:37.0859 0x1198  ibbus - ok
11:30:37.0890 0x1198  [ 937AC47F7356554DA05D9722C356EB55, 9EABC9F19B4E1193B669D2674967F5C6F03FAD348EDF0615E3F78554FF9A83CC ] icssvc          C:\Windows\System32\tetheringservice.dll
11:30:37.0937 0x1198  icssvc - ok
11:30:38.0158 0x1198  [ C30DB515D52B027A5D68D5B617F04C47, E2FBA5C736CF79C6052C28C703F99AB895DB8D3E5E7006425CEB7558AA8B0B83 ] IDSVia64        C:\Program Files (x86)\Norton Security\NortonData\22.8.0.50\Definitions\IPSDefs\20170216.002\IDSvia64.sys
11:30:38.0189 0x1198  IDSVia64 - ok
11:30:38.0236 0x1198  [ 71BFC89F69C68EB3B169618A16D42B36, A4AC5760B460413AFF898C2B1B054805800F71970D3B83C26458A70CD3413A1B ] igfxCUIService2.0.0.0 C:\Windows\system32\igfxCUIService.exe
11:30:38.0252 0x1198  igfxCUIService2.0.0.0 - ok
11:30:38.0580 0x1198  [ 4FDB8F27E18CEDC8ADA7B7EDE8CA6F40, BAB7AAE5F385D11C6C74897E4CC620C15EBC6341BC18F367AA699E22FB586C07 ] igfxLP          C:\Windows\system32\DRIVERS\igdkmd64lp.sys
11:30:38.0861 0x1198  igfxLP - ok
11:30:39.0002 0x1198  [ F2934208C0E50C0B971A7981AB90BED2, B936BFBBD71E731CC2CDB8B47D262F2EF09726FF921C2DA0841910CA2401423D ] IKEEXT          C:\Windows\System32\ikeext.dll
11:30:39.0080 0x1198  IKEEXT - ok
11:30:39.0111 0x1198  [ 2A01C96DF5802D3434634E55C91232D8, A3ABEF36E2FD2CF5C371ADBF92566A09669A1D990ABE4677370F57F2EEAF8121 ] IndirectKmd     C:\Windows\System32\drivers\IndirectKmd.sys
11:30:39.0111 0x1198  IndirectKmd - ok
11:30:39.0408 0x1198  [ 704122C4358B5B7AAC58F9EC11852805, 4FBE07EC9BE6B4E33E6188EDF3FF99A15CD015D4CB1303FFE0B27673D6087A54 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
11:30:39.0680 0x1198  IntcAzAudAddService - ok
11:30:39.0774 0x1198  [ FA06FD050994E9A42FEDFDC96992C842, 5863D218AB27032C71D5CE1315A5E7D8355316CC1D0B7BB0705E8DE00A8F0DD3 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
11:30:39.0790 0x1198  IntcDAud - ok
11:30:39.0899 0x1198  [ B63CF22D1AD2ABDC39D85851B2BEAA6D, 37E9043BABB5895BFD2B59AFB60C438B992C6EAA1B5FDE5B3445314343F4C406 ] Intel® Capability Licensing Service TCP IP Interface C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
11:30:39.0946 0x1198  Intel® Capability Licensing Service TCP IP Interface - ok
11:30:40.0024 0x1198  [ DF8DBBD8F5342C7BA598C606602B6352, FAF603820007A97898A56E62423B137E743A8A9CED0099532514E2F15BAAE334 ] Intel® Security Assist C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe
11:30:40.0056 0x1198  Intel® Security Assist - ok
11:30:40.0118 0x1198  [ 9F7E87F6595D065A8A200A291043045E, 6944F72F73EADC6C9B7691F2C1C6DF1898F22C88EFA78EC0BA8CB5FFD9CE057B ] intelide        C:\Windows\system32\drivers\intelide.sys
11:30:40.0118 0x1198  intelide - ok
11:30:40.0149 0x1198  [ A6BD2E20AE1BC5CB2776C87C28E4F4CA, BD8BE67CED9A4982D785CE9ECBEFE868C3A2E37DF7F9592B9F9049B807A1554B ] intelpep        C:\Windows\system32\drivers\intelpep.sys
11:30:40.0165 0x1198  intelpep - ok
11:30:40.0196 0x1198  [ 2A48DA39542636DB0FA3BA915385D1B3, 6CA0916F5F4B1E81AE6A6233276320599BFA7C129267177703E3BB6468FB4683 ] intelppm        C:\Windows\System32\drivers\intelppm.sys
11:30:40.0212 0x1198  intelppm - ok
11:30:40.0243 0x1198  [ 4A922CAB4AB5F29F1BECC9D95B4B7F05, 7C1006799E26A0B4DF49373A4D0509748C602588CFB3C1CBB409E335F5DF9593 ] iorate          C:\Windows\system32\drivers\iorate.sys
11:30:40.0243 0x1198  iorate - ok
11:30:40.0274 0x1198  [ FE85D0A86CA7A5A99CF8CD04DE7F80AE, 544C01FC01EE728EB5667158207E5F4418FE77A88BA318192A834722DB766F4E ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:30:40.0290 0x1198  IpFilterDriver - ok
11:30:40.0399 0x1198  [ EF1BB0EF8A12C32DD88C409706B8145E, 7AEDE717C258C29592CC8AEC40F61617E5382646E5141E1C0941882ACE5C5758 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
11:30:40.0446 0x1198  iphlpsvc - ok
11:30:40.0478 0x1198  [ 450DBDD716C7911F83E05F78EE18BFA2, 43C0DA172F632131898F315A53DEDD1AE99FB0620AB32B3A5B99FEC498C9AAE5 ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys
11:30:40.0478 0x1198  IPMIDRV - ok
11:30:40.0524 0x1198  [ F1DAECC3B3D6399875D4F10529D6A77C, 6533D2F858816BE6570C998510919FCA2904EC6EF806F61C1FD325E88133111B ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
11:30:40.0542 0x1198  IPNAT - ok
11:30:40.0557 0x1198  [ 7475A2903BB704B446AA6309E34D3362, C94643A1626A9716015EBA7041A1224098501EB7DAA704CBFCAD3DC6F3CFC6AF ] irda            C:\Windows\system32\drivers\irda.sys
11:30:40.0573 0x1198  irda - ok
11:30:40.0589 0x1198  [ 9725E7F0C64CE9916A5CDABE8D6E13C3, 04AF9E48FEF208A2850DF28352E8FDCBF4018982C72C0F67EE12C048C4070116 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
11:30:40.0589 0x1198  IRENUM - ok
11:30:40.0620 0x1198  [ 8C604213A2E73088BFFE6CD2E6F1AE53, B4C4FEE4D398A29F72EC27D5668071D7E68CD943FFFC38624DD5DF5BEBDF46D3 ] irmon           C:\Windows\System32\irmon.dll
11:30:40.0620 0x1198  irmon - ok
11:30:40.0651 0x1198  [ D5FE3C0671B4A73F928FBA3F76559DD8, 0F32C522F97866A0BC2C24D951E58B4F78C90598498AE262896EB1DD441BCCD0 ] isaHelperSvc    C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe
11:30:40.0651 0x1198  isaHelperSvc - ok
11:30:40.0682 0x1198  [ 58040898883A96160D41739C80328BBF, 7F85C91C905811416E266A263DDEFCDCB0B45376AAE51B551AB636C16577DB9F ] isapnp          C:\Windows\system32\drivers\isapnp.sys
11:30:40.0682 0x1198  isapnp - ok
11:30:40.0745 0x1198  [ C9FD02D62E09337B67B0C61EC8CA38CC, DC77E935ECC8474BE9018F0937CB11C137073582B20A0EE107CE247FD9E1F9C1 ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
11:30:40.0776 0x1198  iScsiPrt - ok
11:30:40.0807 0x1198  [ DCEABCDB2EAF57CEDEF5FD5D017ABE1D, 49F3B46BB5F2C5626D07F8F83CF8A9409F473398EB6ED2D11A894C6D6D395A74 ] jhi_service     C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
11:30:40.0823 0x1198  jhi_service - ok
11:30:40.0854 0x1198  [ 210808437570BDDEE71A43535E3A2D30, EF5DE6EE4FF58F44CDE4D4E7F298ABBC9086EC05CC3AE4903060DA878115AC1E ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
11:30:40.0870 0x1198  kbdclass - ok
11:30:40.0901 0x1198  [ 0B779E9FC426CA2268D28181FA6C222F, 83292023A688C3044D096F22242EB954B7F7511BE8341D45FF0AFBD9CB9BCB4E ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
11:30:40.0917 0x1198  kbdhid - ok
11:30:40.0948 0x1198  [ 813BA3EB2CE038F2A5382DDD75CAD60B, 99FA444027CAC247B54317730D54AB0C4C000AE076B97E47470FDA9834594312 ] kdnic           C:\Windows\System32\drivers\kdnic.sys
11:30:40.0948 0x1198  kdnic - ok
11:30:40.0979 0x1198  [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] KeyIso          C:\Windows\system32\lsass.exe
11:30:40.0979 0x1198  KeyIso - ok
11:30:41.0011 0x1198  [ 705C0F8BCCEF6E7CB704CCB454192D7E, FC608C708E2C3BF7A66E57B95E19E71E5F5C87EF359D8BC1A817500B45DF9338 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
11:30:41.0026 0x1198  KSecDD - ok
11:30:41.0073 0x1198  [ 55AD13E2BAFC5AB53A10F8C271F5D242, 058BEF14DCB95574BCAB985F04737BA89483937E8D8A74F7B4CEAFB7400C2397 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
11:30:41.0089 0x1198  KSecPkg - ok
11:30:41.0151 0x1198  [ 4ED115CD1A1099705F56B5E0FFF97CC6, 9CC49DF2CD6AAAE405BA661D13EFC1E05111D1DE3D1E50C39C425AF1F075610B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
11:30:41.0151 0x1198  ksthunk - ok
11:30:41.0229 0x1198  [ 8125BDF7ADC261F75EF0CAD92456E350, 184797AA1D58C4FF743BA60D48590B88B781EE7779205E45E0679DEC79F3E185 ] KtmRm           C:\Windows\system32\msdtckrm.dll
11:30:41.0276 0x1198  KtmRm - ok
11:30:41.0339 0x1198  [ 8CCAB08815B50AD78B823DB3F96C8604, 265E6D582EB7207B5CC577D61CB7BC3646F613047F168CD69BB776C37780EBF5 ] LanmanServer    C:\Windows\system32\srvsvc.dll
11:30:41.0370 0x1198  LanmanServer - ok
11:30:41.0433 0x1198  [ B581907FD94F1FF148BF695331F67612, 05D1FFA456557A291566D788B8DE2485552E361EC3C0F63EA1A710BE940A5398 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:30:41.0464 0x1198  LanmanWorkstation - ok
11:30:41.0526 0x1198  [ F8EBAA1FE6D3BF84752931DE1BFA0E2A, 2F3C512712BA709BBBBD779D9E792DBE324876C402CDCEF0345B8B7ABE1D232A ] lfsvc           C:\Windows\System32\lfsvc.dll
11:30:41.0558 0x1198  lfsvc - ok
11:30:41.0573 0x1198  [ 5A23E4BE0CCF49663C4CF7EB74C20278, 9DF91014B13B7CED1C3D409F90858FD03EFC5C4347C98901B4DF0AFF2B77845D ] LicenseManager  C:\Windows\system32\LicenseManagerSvc.dll
11:30:41.0589 0x1198  LicenseManager - ok
11:30:41.0604 0x1198  [ 5933A6673F00D8255C52957E40C2D601, 0AA1281F8B3F97E360592D1B35EE7D3D614F1AB46007F9884CFFB1C5E647575E ] lltdio          C:\Windows\system32\drivers\lltdio.sys
11:30:41.0620 0x1198  lltdio - ok
11:30:41.0651 0x1198  [ 88A3C935725FA6EA1A228DCC26CF9C6F, 9B1F70644EEFA1EE7CE151A8A970430087339B7A6345F2E0252370929D4AFAC6 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
11:30:41.0714 0x1198  lltdsvc - ok
11:30:41.0761 0x1198  [ 3F858E28AEE6545FA1B64134DFD5C2CE, FFD7B4FB0A7B61BC6B76A172134673842F2CF00E96FA3ED4A8273DC525B6BB92 ] lmhosts         C:\Windows\System32\lmhsvc.dll
11:30:41.0761 0x1198  lmhosts - ok
11:30:41.0823 0x1198  [ 8E1B0946948CCC0BC1FA3CB70374A795, 0B894C129A35E223FF9594725AC90916CBD597FAD2211A18FC2AE03EA8679597 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
11:30:41.0839 0x1198  LSI_SAS - ok
11:30:41.0886 0x1198  [ 4F68163FC04C973500DC4DA0946917B0, DF060C29109EB3978CEDFE781999B0C4C1E8C0FDB133428058D8400C53315EEC ] LSI_SAS2i       C:\Windows\system32\drivers\lsi_sas2i.sys
11:30:41.0901 0x1198  LSI_SAS2i - ok
11:30:41.0948 0x1198  [ E5AC5F2815938651CDCC27F425474673, 3AF0598982153C36A766506FA088F7B84333CC96FEBB050402547AFC613AF9F7 ] LSI_SAS3i       C:\Windows\system32\drivers\lsi_sas3i.sys
11:30:41.0948 0x1198  LSI_SAS3i - ok
11:30:41.0979 0x1198  [ CCF6EC9FB9B8F18E05B4253E81013E48, EBE8D77FEE8B99BD8C29702404774D554673C96DF3FDF3DCEA9C99E22C2709FC ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys
11:30:41.0979 0x1198  LSI_SSS - ok
11:30:42.0089 0x1198  [ 06276381A0797FD417E7068C1210FA06, 204144E9792216F952CED869ECB6B26FB466BF730B8A73FA4799B1EBC1A630AB ] LSM             C:\Windows\System32\lsm.dll
11:30:42.0167 0x1198  LSM - ok
11:30:42.0229 0x1198  [ C9579D32219E5B936AC3A48D470117EC, E61A77191B6BA25D29B1221FEBBE826BBC11F825C0E35A72B4CEFFF8B7FE59A8 ] luafv           C:\Windows\system32\drivers\luafv.sys
11:30:42.0229 0x1198  luafv - ok
11:30:42.0276 0x1198  [ ED5B42D75F3DEE93040B3930DA9F3009, E919DA20E46FE1C81CB76090B799DD858DD4771DB0EBDE4545DB4681A0AFFE8E ] MapsBroker      C:\Windows\System32\moshost.dll
11:30:42.0292 0x1198  MapsBroker - ok
11:30:42.0323 0x1198  [ C3CDCCF07486BD2616A7B82946E07AC0, 1EF95DAB2DA856BC7D7573B2EB2D9006DF337F827F0B56A161D0C97F45DB755E ] megasas         C:\Windows\system32\drivers\megasas.sys
11:30:42.0323 0x1198  megasas - ok
11:30:42.0354 0x1198  [ 2CF0CB2A0ED68C5455371E84C16F9627, 1C9166B52140145F1968E83E52BFF041250811B23C770FE181A18A4BA060CA81 ] megasas2i       C:\Windows\system32\drivers\MegaSas2i.sys
11:30:42.0370 0x1198  megasas2i - ok
11:30:42.0448 0x1198  [ FADB2FE017E69EECE0E1BA78661C2E8C, BE99B49031D8B4B670B6F6B6E829E54406779CF6F1D8AFE8AB79A73E6764AB2F ] megasr          C:\Windows\system32\drivers\megasr.sys
11:30:42.0479 0x1198  megasr - ok
11:30:42.0511 0x1198  [ 55A417C3E41F2A98666CF929EC19108E, A38C262B2863C87E4151525BF26D6AC16E7982D370E2C6998EB15C88C4BC8254 ] MessagingService C:\Windows\System32\MessagingService.dll
11:30:42.0526 0x1198  MessagingService - ok
11:30:42.0620 0x1198  [ FD60818B66B2E8A5415EA840E99A9D8F, 5D2F22909354534B821D958FBEF6A40EB4F642F53C7B509D00949096EF716F36 ] mlx4_bus        C:\Windows\System32\drivers\mlx4_bus.sys
11:30:42.0698 0x1198  mlx4_bus - ok
11:30:42.0730 0x1198  [ 68F6977F1CFBAAC770D940A8C0326FA1, 90EE1E7DAC680EAA5AD50E9B0B9FD8FCE8DD6A02D5EF941B5AA5084CBD40BB80 ] MMCSS           C:\Windows\system32\drivers\mmcss.sys
11:30:42.0730 0x1198  MMCSS - ok
11:30:42.0745 0x1198  [ D842ADDB5911945D51F61A0B1C8F36E3, 5EB93A1FD2D2D9FAB6121356E1AB18F2ADE9550D3033274AF7CA8F7FD51E59ED ] Modem           C:\Windows\system32\drivers\modem.sys
11:30:42.0761 0x1198  Modem - ok
11:30:42.0776 0x1198  [ 9CCCB7FC3EDADEBA461D78615A6011A6, C120B58F25E8CCFD971EB78645C0682F367AD56DC15F2D8C1980CE75B04719DF ] monitor         C:\Windows\System32\drivers\monitor.sys
11:30:42.0792 0x1198  monitor - ok
11:30:42.0823 0x1198  [ 27A07B2FB2E3057DA8DAEA4F25D843C7, 09D2B39E6B9AAEC879E5871DD6BCFF2AEF0B894F3B44649665A685F8B3CA6F27 ] mouclass        C:\Windows\System32\drivers\mouclass.sys
11:30:42.0823 0x1198  mouclass - ok
11:30:42.0854 0x1198  [ 7BD6E7F7C9001AB21B8362CFFEE80B25, C470C3363EEF3A60409A5934988BFB9B72AE7C2BB63CC2C2D006D7EB1C797F6A ] mouhid          C:\Windows\System32\drivers\mouhid.sys
11:30:42.0854 0x1198  mouhid - ok
11:30:42.0886 0x1198  [ F5BDAEE4B7D369D4C74668DCFBA3FF10, 100F39288E56AFE0D39D1CC235BDC9F3727C873CD3114E092DA7A08810BD3EB2 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
11:30:42.0901 0x1198  mountmgr - ok
11:30:42.0933 0x1198  [ 30844BD376F9D01E62C820BEF446F1F8, 910D672EDB544A20AEB4450B4D89830F46EDD28CE0021156176315C5D068A1B4 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
11:30:42.0948 0x1198  mpsdrv - ok
11:30:43.0042 0x1198  [ 779CFDB17EA07A6D26FEBBAC95B65772, 74D9542E8DCCD07396A45A45D2F500AA6F9DCC1DB785A6153EB3067E42F576A4 ] MpsSvc          C:\Windows\system32\mpssvc.dll
11:30:43.0089 0x1198  MpsSvc - ok
11:30:43.0151 0x1198  [ 25D32BE04FE0A23FDF57FD5382757672, 64E39E3E21D9173FB1116B989D80C244C49DA827698A05AF5CC5CD1C6AE155DE ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
11:30:43.0167 0x1198  MRxDAV - ok
11:30:43.0261 0x1198  [ E671EDAB0726E05ECEF4058B4CD73C4D, 9F4C50E635CE2204E3291C8D3D7F658A969E80722B8B6F0304228D9B434C20EA ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
11:30:43.0292 0x1198  mrxsmb - ok
11:30:43.0323 0x1198  [ 200E4A385F5F370D8866BAE25B0D9D32, 114AD45000A0C74EAE26C3075BBFEF80B9386C69D58CE4436CAFCF13613EAEFA ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:30:43.0323 0x1198  mrxsmb10 - ok
11:30:43.0370 0x1198  [ F7C22604CD8AFB9AF1C1E3CE39A5A09F, 3F7B39336F8A72525C667D45C9300CA6D017BDE17A6E23EF794BA59D2F3C78F3 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:30:43.0370 0x1198  mrxsmb20 - ok
11:30:43.0402 0x1198  [ 74C9D21523DAE0C18F413C196DF0058A, 3DB4B8CA368D9DD82FAE2C2BC828A21142C8D29780A7C8667188C447519FF702 ] MsBridge        C:\Windows\system32\drivers\bridge.sys
11:30:43.0417 0x1198  MsBridge - ok
11:30:43.0464 0x1198  [ 308F08347923DEEDE7BC03EC7D485841, 72DB45CA11FE635DF9F8273C38CBEFB8DF5362ADA0CBF6D2B1E570365DC700C0 ] MSDTC           C:\Windows\System32\msdtc.exe
11:30:43.0527 0x1198  MSDTC - ok
11:30:43.0573 0x1198  [ F01B849D9D4A8CEAF32D4FDBD0B83C92, D2473AC4C6E6C03DEF13EA73EC78FB878BDC95C047651BF79A16C9DEA82AD046 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
11:30:43.0573 0x1198  Msfs - ok
11:30:43.0620 0x1198  [ 22ECD8F5D1DFADF2011BBB1700CB871D, 8F9EFF51137394EFA5471B8A29C541710063B65806B075B4925A84D5B6BC3BBB ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys
11:30:43.0620 0x1198  msgpiowin32 - ok
11:30:43.0650 0x1198  [ FD870F6968A145E4D2BA8A8842686B03, 34B8F601F3B5E42B4D0A41E2AF7DB4EB4E5B627DA8DA9A2A2D46B153AF23AEB1 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
11:30:43.0650 0x1198  mshidkmdf - ok
11:30:43.0681 0x1198  [ 30364757963A028CE5DF0FBAAC270173, C72588A6A52FF8E418A15D2C407A4DB7EA768585423720145F8253D5CA519DC2 ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys
11:30:43.0681 0x1198  mshidumdf - ok
11:30:43.0712 0x1198  [ 6BB0FEDDAE7135FA37FFAFF4D9E0E876, B41A3C0FFDFC493D6325ED493445AFCED04EC9DFF2B38125616FC5419AD1ACC4 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
11:30:43.0712 0x1198  msisadrv - ok
11:30:43.0775 0x1198  [ 07E3E54734B14F43A4A95A849C0A0DE2, 314AA02EA84D267B32DBAEBEA6C1AC1A266DED1E8D35A17B41D1D2AC75E8049E ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
11:30:43.0790 0x1198  MSiSCSI - ok
11:30:43.0822 0x1198  msiserver - ok
11:30:43.0853 0x1198  [ 13D614E6B51ECF36746C48CE829FA7F6, CAD63C0A4F7110093F84C58252C5803F14E3FC46584B79DA17EC86D49FEAEA64 ] MSKSSRV         C:\Windows\system32\DRIVERS\MSKSSRV.sys
11:30:43.0868 0x1198  MSKSSRV - ok
11:30:43.0884 0x1198  [ 642CDE46351D5D2D90311E77072AB46D, B2D3033E607BA2F6E6B9CFB1CBF154CD0CE910EA473C56343EC81B9B94044CCA ] MsLldp          C:\Windows\system32\drivers\mslldp.sys
11:30:43.0900 0x1198  MsLldp - ok
11:30:43.0915 0x1198  [ F2302A5CE63CA7673200FAFCEEEDB6AF, B8C44FC2DC0332183DE325CDBF511101F3307225295EDD428CE575A8DE15C223 ] MSPCLOCK        C:\Windows\system32\DRIVERS\MSPCLOCK.sys
11:30:43.0915 0x1198  MSPCLOCK - ok
11:30:43.0931 0x1198  [ 6114512EA26E835BA522C63635429DB5, 0F91CE41B4555316A79AEF3047C152D538CC9C7C329987C9FD0E3D961AFC87C8 ] MSPQM           C:\Windows\system32\DRIVERS\MSPQM.sys
11:30:43.0931 0x1198  MSPQM - ok
11:30:43.0978 0x1198  [ AA538E16E644D00E3BA5349BBA9598EC, 64A68B06883FE7ED34E04AB119BA819753F1222923EDD4E802C35D402B89D075 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
11:30:43.0993 0x1198  MsRPC - ok
11:30:44.0009 0x1198  [ 0543BEFD41EC4D25C7F7CF36409CEC7D, 631622CFEC49952C0470531B23FFFFF483DC0EFFEF7A97B1179A600392C05DDD ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
11:30:44.0009 0x1198  mssmbios - ok
11:30:44.0025 0x1198  [ C1569E4DB8EFE3617847BF041A3C842F, 99ADE5E7F50E04CAEC737F7F90741CCA8EE628996BA5EB6C6BC62184884429B6 ] MSTEE           C:\Windows\system32\DRIVERS\MSTEE.sys
11:30:44.0040 0x1198  MSTEE - ok
11:30:44.0040 0x1198  [ 130B16970154BA9876B09E5C4BAC63BE, BE3AF8FC5A26AB9C9DBA9C015C2E1FD3C4CD9CB423A2BBDABA91428BF8620553 ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
11:30:44.0040 0x1198  MTConfig - ok
11:30:44.0072 0x1198  [ 15D987C8F6CCD4AC94E070C5986762CB, 452FB0C48B86C7F8F53794CC2DDBF2B900B03A0383B2DE8F6A830F8CB0AFBAD8 ] Mup             C:\Windows\system32\Drivers\mup.sys
11:30:44.0087 0x1198  Mup - ok
11:30:44.0103 0x1198  [ 3D2C5B4995CA0751D32DEA0DE9FDFE44, A26958785FD9E05E2CA97078C9BB277CD44222BF5F7D9E8DC2F3F6AAAFFC6483 ] mvumis          C:\Windows\system32\drivers\mvumis.sys
11:30:44.0103 0x1198  mvumis - ok
11:30:44.0150 0x1198  [ DB31EBB04C871F422C36A0962DA7D38B, B1BC2344744F537FB2C7D07B415F860195B7795E185253F05C0817A3764FEC10 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
11:30:44.0197 0x1198  NativeWifiP - ok
11:30:44.0212 0x1198  NAVENG - ok
11:30:44.0228 0x1198  NAVEX15 - ok
11:30:44.0275 0x1198  [ C3D9870E680D9D843B18F4626C3858FE, 43596CAC9FB488F810FBA954C52BC4D13F7D32028C40ACFE33DFD7EE36A65C17 ] NcaSvc          C:\Windows\System32\ncasvc.dll
11:30:44.0275 0x1198  NcaSvc - ok
11:30:44.0322 0x1198  [ 04CE2C0F0759EACD886BA4B658B60D5D, E34D0976FC5936C8629800D826DB127072D1DFC3D350EFACA3AA1B8119551762 ] NcbService      C:\Windows\System32\ncbservice.dll
11:30:44.0337 0x1198  NcbService - ok
11:30:44.0353 0x1198  [ E6094065008FE423377294050E7CEA2D, 86E200227256407530E2C28243DEFBC3CB6E9497644404D9AD79DA242286DF7B ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
11:30:44.0368 0x1198  NcdAutoSetup - ok
11:30:44.0384 0x1198  [ 629CB21AC49C8867E0F29DF1C16DB7B4, 20663E68C69D0A1A2FE99A0C2A9DEFABF49786A1DC8F7F4E1699458AF57D7E79 ] ndfltr          C:\Windows\System32\drivers\ndfltr.sys
11:30:44.0384 0x1198  ndfltr - ok
11:30:44.0494 0x1198  [ D5564FC81350458ED570528C4E3B1CCF, DD3C5012492EF9BCE3BE635BBB3AA40B3C5F5FDBD795A76B327D9C994102AC2B ] NDIS            C:\Windows\system32\drivers\ndis.sys
11:30:44.0556 0x1198  NDIS - ok
11:30:44.0572 0x1198  [ 6DD605338FAAF6BA17662AA874E0D162, 636607829F5D7C3B7A4683C0A2DD594360D72F2AA3F8710153BE32575AE34A15 ] NdisCap         C:\Windows\system32\drivers\ndiscap.sys
11:30:44.0572 0x1198  NdisCap - ok
11:30:44.0603 0x1198  [ E34196F285F8B8879E1FF36C31F7179E, 77A4F24F995D4C0689C43F9956E08DCEC62517E4F8B1B9EAA1852B5293DB5B9A ] NdisImPlatform  C:\Windows\system32\drivers\NdisImPlatform.sys
11:30:44.0619 0x1198  NdisImPlatform - ok
11:30:44.0634 0x1198  [ 1FAD2398673F30CEC616B89C46B7DCBA, 70302049E6AE2BC6B3A7A9DE54D3F940AD6A9771CC2EBCCEC65994E67A25ECB5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
11:30:44.0634 0x1198  NdisTapi - ok
11:30:44.0650 0x1198  [ AEB8ECBE66CC46854066CB1F5623E179, 2F650A85A9DAE38887610C0B876621035616CEDB65D4BBBD7F1405616D218AAF ] Ndisuio         C:\Windows\system32\drivers\ndisuio.sys
11:30:44.0666 0x1198  Ndisuio - ok
11:30:44.0681 0x1198  [ 7340104C2BF2F126714F7CDE85E63610, 45B64EC6F3A4C43F7D74806789067658C6EF0D44D36B841F4D26E1EBC95AF66C ] NdisVirtualBus  C:\Windows\System32\drivers\NdisVirtualBus.sys
11:30:44.0681 0x1198  NdisVirtualBus - ok
11:30:44.0728 0x1198  [ 07ADC1F8DCBEB8104D75129B11584B8C, CB51A294D9FD4E210DBEEF05A1E60A96CE52D6D138EF62A54E1F608F90FED300 ] NdisWan         C:\Windows\System32\drivers\ndiswan.sys
11:30:44.0744 0x1198  NdisWan - ok
11:30:44.0759 0x1198  [ 07ADC1F8DCBEB8104D75129B11584B8C, CB51A294D9FD4E210DBEEF05A1E60A96CE52D6D138EF62A54E1F608F90FED300 ] ndiswanlegacy   C:\Windows\system32\DRIVERS\ndiswan.sys
11:30:44.0775 0x1198  ndiswanlegacy - ok
11:30:44.0806 0x1198  [ 78A12E3DF035B5D054986949B19BE43C, AD9B34F89B9F27D473BD5FCE6694A40FCCB808B61ABEDD6F70F1AF6C7E73ABF8 ] ndproxy         C:\Windows\system32\DRIVERS\NDProxy.sys
11:30:44.0822 0x1198  ndproxy - ok
11:30:44.0853 0x1198  [ 04C8859355C1DC9C0FA198D1894D71C2, E7C67E73009341B5D402470C686781B3C7BBE2531CE26665E08E711B990B1A77 ] Ndu             C:\Windows\system32\drivers\Ndu.sys
11:30:44.0853 0x1198  Ndu - ok
11:30:44.0884 0x1198  [ 6C76780A01FC2B885BD6E957B5C36B02, DB7834F03A765F65C773E772D8051AFADB22CA4B5074180AA397857A0C47A068 ] NetAdapterCx    C:\Windows\system32\drivers\NetAdapterCx.sys
11:30:44.0900 0x1198  NetAdapterCx - ok
11:30:44.0931 0x1198  [ 5D1513BD6430307C9DB86C6E351372ED, D2AB709CF7CFA5B857B084AFC821914A975B7DDDCE154229981F19448973BD6D ] NetBIOS         C:\Windows\system32\drivers\netbios.sys
11:30:44.0947 0x1198  NetBIOS - ok
11:30:45.0009 0x1198  [ 6FEBB0A847FFD5F057B9AC8889F1B9A7, 558BCC64C59079E6569F61CCE1219A124B3313FC4E6CB5CBCC94124D202FF19D ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
11:30:45.0040 0x1198  NetBT - ok
11:30:45.0072 0x1198  [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] Netlogon        C:\Windows\system32\lsass.exe
11:30:45.0087 0x1198  Netlogon - ok
11:30:45.0119 0x1198  [ D3BF2DA9216A4CF22A97820A50A67EFF, D00CBE0A7ECFB449D9B48967A01EE56141404EBE229893D5A1710781AD5F2551 ] Netman          C:\Windows\System32\netman.dll
11:30:45.0134 0x1198  Netman - ok
11:30:45.0197 0x1198  [ F2645D51DD8AABC8BC72358409410437, 8CB97628923D6CEA6EFAD7E666BE92C154060BD108C28D46287A520A14B18ADA ] netprofm        C:\Windows\System32\netprofmsvc.dll
11:30:45.0212 0x1198  netprofm - ok
11:30:45.0244 0x1198  [ 724EA060EF56BAB4DED8F731FA56279B, E07FFE11D7B5C94D6B56940C6423ACB85910F6E8789E788EC91EEEE1C02B247F ] NetSetupSvc     C:\Windows\System32\NetSetupSvc.dll
11:30:45.0259 0x1198  NetSetupSvc - ok
11:30:45.0337 0x1198  [ EFA857E2B0CC7C9DFEF48A2187B910F7, 424475568CD70237F056838388A5F7BDCD1B09349085498644C75940B12E8EAF ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:30:45.0415 0x1198  NetTcpPortSharing - ok
11:30:45.0509 0x1198  [ B996DE26A2E16053C9485F5905B05320, 30EB2CEB466A4F05A44F7CBFCDFD8CC3C27B5FCF1269C1B9410C48AB362D2A75 ] NgcCtnrSvc      C:\Windows\System32\NgcCtnrSvc.dll
11:30:45.0540 0x1198  NgcCtnrSvc - ok
11:30:45.0619 0x1198  [ 54C31C2B815E2E26BB8158022F837C9C, CED660D1A58F635C6452F82FCB2EF8ACEEB7785E31617B2ADFD9EE69A2BDF2B8 ] NgcSvc          C:\Windows\system32\ngcsvc.dll
11:30:45.0665 0x1198  NgcSvc - ok
11:30:45.0712 0x1198  [ 9B9F520C72EE33EAEC857124BB800243, DFA9386B272F4D86F3E4BE861A2FC4617261E1AA40576DDA610FC24AB4961A63 ] NlaSvc          C:\Windows\System32\nlasvc.dll
11:30:45.0728 0x1198  NlaSvc - ok
11:30:45.0759 0x1198  [ 001CBD7A2CD45C4EB39C01C3C677EF73, F4AAF4D60DB1232921C7811A62287B55C7C098B7A1FF9A40D88AF58A5ABECBA2 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
11:30:45.0759 0x1198  Npfs - ok
11:30:45.0790 0x1198  [ 90F5DC9802AAA00CD0B6E2AD9E7FFADC, 71C0777829299DECA6ACD42F38802DBE3C29A42CFBD8A396F39DFA44D1F55B6C ] npsvctrig       C:\Windows\System32\drivers\npsvctrig.sys
11:30:45.0806 0x1198  npsvctrig - ok
11:30:45.0947 0x1198  [ 426B54D7CF26856D0AFEDA8604C71874, 9F07CADF43865B352A546B1C70788E8D906514B6918D2490D535B1883BE7B6A5 ] NS              C:\Program Files (x86)\Norton Security\Engine\22.9.0.68\NS.exe
11:30:45.0978 0x1198  NS - ok
11:30:46.0009 0x1198  [ 1993C85962692EF7024501E7FE92D466, F5BCAA8308495EBF8BB061C2015E07C202A779668D171364D7E312975BC18B10 ] nsi             C:\Windows\system32\nsisvc.dll
11:30:46.0009 0x1198  nsi - ok
11:30:46.0040 0x1198  [ 0C6218321A09A7B51BA7FFAFBA4CCB21, 330B3FA793A78410B28DFC8250BBF24442E3BB80434A7938BB96F02337614E0D ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
11:30:46.0056 0x1198  nsiproxy - ok
11:30:46.0228 0x1198  [ 5DD8CB01C0394F8D052763D2E3C6E684, BF58C1586A2402576B91D7F862861974F7BDB38704E88F4974FF3F1D1B481386 ] NTFS            C:\Windows\system32\drivers\NTFS.sys
11:30:46.0353 0x1198  NTFS - ok
11:30:46.0384 0x1198  [ 6E6DD6F9DD2A034CF85E94047DBDB992, 63D0A0756F551B7668D1CBAB24B29FD462C706E8A81690BC248D6C92061FE215 ] Null            C:\Windows\system32\drivers\Null.sys
11:30:46.0384 0x1198  Null - ok
11:30:46.0415 0x1198  [ D261DF41F0840F734856A2B4F5E072C7, 2E703556D0C919375D0B7770513456844B13362190643D5524663EC8546E0FF5 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
11:30:46.0415 0x1198  nvraid - ok
11:30:46.0431 0x1198  [ 23B702B555EB0436B9DAA0BC63DA65CE, D454F80D9657CFEC852F022C12D7B2C1A2D7D247ECC591EDB07B9369DFD8C99E ] nvstor          C:\Windows\system32\drivers\nvstor.sys
11:30:46.0447 0x1198  nvstor - ok
11:30:46.0478 0x1198  [ 17997DC2441F7E29CDFC6458E0392764, 636CCE2DA1EF8195B33F8D6D5C8CC151D58EBF08DC9AD8ACCCE7ABD41A69639F ] OneSyncSvc      C:\Windows\System32\APHostService.dll
11:30:46.0509 0x1198  OneSyncSvc - ok
11:30:46.0619 0x1198  [ 0CC20BD62B5A34C2A6C537F3BE74A026, 0C79DE467BEF17D520C7DBC00DB75394EBB6D4CF272A02A72CD5947F37D73867 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:30:46.0634 0x1198  ose - ok
11:30:46.0728 0x1198  [ 4578ECA1FCEF4E7C787D84F78625143B, F5FE84D6D7412A4C037772593C434253D590E476B0B7498987A1697BED86A510 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
11:30:46.0759 0x1198  p2pimsvc - ok
11:30:46.0838 0x1198  [ 2BBCED66D7AFC968BDBB0E4D8524DF0A, 762D916390F9DE69B3EA1D31244224F910645F8E5CEF4C505B76B215BFDFCD9A ] p2psvc          C:\Windows\system32\p2psvc.dll
11:30:46.0869 0x1198  p2psvc - ok
11:30:46.0884 0x1198  [ 6B81BF7853D161DB8AC62CD8B9C2DE6B, B2DC06D135FD2501217DDA7349556EB873309E02188D4C3901807BA24FAB30C7 ] Parport         C:\Windows\System32\drivers\parport.sys
11:30:46.0900 0x1198  Parport - ok
11:30:46.0947 0x1198  [ 9DB326B54C03EF2892E7551D8B354036, 64CD77E8A4425E80CFB61DEE33C1A677A4044C6FC0614D74B20BDDD7C5D5334D ] partmgr         C:\Windows\system32\drivers\partmgr.sys
11:30:46.0963 0x1198  partmgr - ok
11:30:47.0041 0x1198  [ CDD8EDF4C35BE6D6137112F5CC7A70DA, 80EECA6BC2E668E5652A5CA9B119CCCE2A2E421F0EED1FD0EAC20C42E77C02ED ] PcaSvc          C:\Windows\System32\pcasvc.dll
11:30:47.0072 0x1198  PcaSvc - ok
11:30:47.0134 0x1198  [ 101CC1FD8D48ED1EF71F0840158D0E6D, A944D70DE230E3FBD8B371EF3BED1FCD12AAFD56945A8F5C44994AF13283FCCD ] pci             C:\Windows\system32\drivers\pci.sys
11:30:47.0150 0x1198  pci - ok
11:30:47.0197 0x1198  [ 214DCC87E3898F738075D1341252A552, E721FBBC3510DDB848A8CAEA3B6031EE988F42252DBC3BF7BDB6ABD9A0D9FABD ] pciide          C:\Windows\system32\drivers\pciide.sys
11:30:47.0197 0x1198  pciide - ok
11:30:47.0228 0x1198  [ AED76A3333B3A31536E430020E0226FC, EC255B79B0908E3C142D92E35B79D90A3F2594BA012CA2B1B04A6A8745153430 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
11:30:47.0228 0x1198  pcmcia - ok
11:30:47.0259 0x1198  [ E63FB38B6E75B39467492FBAD2CD512A, DB406C92BA2460C833A49B98EB5BD58348E868F643A0123B0C9B5315FFC6A124 ] pcw             C:\Windows\system32\drivers\pcw.sys
11:30:47.0259 0x1198  pcw - ok
11:30:47.0306 0x1198  [ 9EA203A07EFA6D74F07F32EF0DAB5CA6, D851F1CC748B4CD0E263931668FFF2FE20D5778267F4FF2237D565CFC171B5AF ] pdc             C:\Windows\system32\drivers\pdc.sys
11:30:47.0322 0x1198  pdc - ok
11:30:47.0400 0x1198  [ 1509A77F840AA9E72CF8247D0CF2FBDE, 2D47AD4D8F5C2D871E603FB6D72D25EFD0E63FA3A542DAADAB9D82ED074C0E0B ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
11:30:47.0431 0x1198  PEAUTH - ok
11:30:47.0541 0x1198  [ 540116170E2135FCD5DDE77702166B67, CBEC51C2D47532F1781B3255040F303263420B204C2F8BB2B5D1EC342F57B285 ] percsas2i       C:\Windows\system32\drivers\percsas2i.sys
11:30:47.0541 0x1198  percsas2i - ok
11:30:47.0572 0x1198  [ 8356F87553BF49C703CF382033815898, 245EB941566D848F134629690BF271B1CBEAB6440771D3D8D7AED3756835354E ] percsas3i       C:\Windows\system32\drivers\percsas3i.sys
11:30:47.0587 0x1198  percsas3i - ok
11:30:47.0717 0x1198  [ CB5343FF52A702A9ACFAAE6BE972FE09, EAA5362D91D05D382DF4EBBAA3FD575456F23CAD531CC6F1270F8254892DBF02 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
11:30:47.0733 0x1198  PerfHost - ok
11:30:47.0842 0x1198  [ D0D57322ABC7473E54472D8374169CC5, BD14A13D6908C8669E56EF9401FD8A3D7C618E8B6556B36E634864E733BCA4B2 ] PhoneSvc        C:\Windows\System32\PhoneService.dll
11:30:47.0873 0x1198  PhoneSvc - ok
11:30:47.0920 0x1198  [ B4AB2C0177715FFAED88A1223212043A, 1920792ADC78DD51EF98B6A9634D686EAED0848FB7EF74A0DCD3AEBA5AF41EC6 ] PimIndexMaintenanceSvc C:\Windows\System32\PimIndexMaintenance.dll
11:30:47.0936 0x1198  PimIndexMaintenanceSvc - ok
11:30:48.0076 0x1198  [ F931F21E4287FE3ECCF09B54A232BBA2, CEB7AB3236E5F30214027092B7B695ED35F7A1E007DF4046797D1E4DFEF49EC8 ] pla             C:\Windows\system32\pla.dll
11:30:48.0233 0x1198  pla - ok
11:30:48.0279 0x1198  [ FEA494AC3A1BAE63C1F2AF267D49F1DB, 0722FEA2481740B53EF26B1CA59166C63C157A5C708AC93DF3FBB74A27266C9C ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
11:30:48.0295 0x1198  PlugPlay - ok
11:30:48.0311 0x1198  [ 56D7A89423325121C4A9BD5C326414F3, 649048C23D1973C3504E26B35362AC99DFE9BF31FFE73F45B43306A212AEA34C ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
11:30:48.0342 0x1198  PNRPAutoReg - ok
11:30:48.0389 0x1198  [ 4578ECA1FCEF4E7C787D84F78625143B, F5FE84D6D7412A4C037772593C434253D590E476B0B7498987A1697BED86A510 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
11:30:48.0420 0x1198  PNRPsvc - ok
11:30:48.0483 0x1198  [ F70CAC34B455D05EAA04B2F8FB58E1CB, 295BFFB3DA03C5CE5462C11D3240024B68AC06E8DEA9062A739BE2CCEE19EB5D ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
11:30:48.0514 0x1198  PolicyAgent - ok
11:30:48.0545 0x1198  [ 60C8376B48BA96F07AEA536527433D44, EB988C119C3E71169B91ED2A744C71933DD35447DC4A8249E80EC24E9E7077D4 ] Power           C:\Windows\system32\umpo.dll
11:30:48.0545 0x1198  Power - ok
11:30:48.0576 0x1198  [ 5645B9D9788CCA2C88B9534996ED2D6D, 4988942DF163DB5B9B1A08CE6B628D2C47C2E2EAA30AEAE4EFE21C8CF4C8DC5D ] PptpMiniport    C:\Windows\System32\drivers\raspptp.sys
11:30:48.0576 0x1198  PptpMiniport - ok
11:30:48.0873 0x1198  [ 7196D3C2E2E3129814C8DAB91F9A7D1E, 6763E4BF8E846B597E78778E520F5BADC95608BAA4EA0AC84971384B5D976DD7 ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
11:30:49.0092 0x1198  PrintNotify - ok
11:30:49.0123 0x1198  [ 372913E12677A8CBBBABDD8311894F9D, A5233D95A0D22D2A9DB214E7CB79A99D389B67189FF6A87D0AD4610A333A637F ] Processor       C:\Windows\System32\drivers\processr.sys
11:30:49.0139 0x1198  Processor - ok
11:30:49.0201 0x1198  [ AAA31951B1D669EF912E42744095D6AD, 71F39A1582A23761DE64E1E9B400AC2B17582CD0681446EE442C755F6C7B4784 ] Product Registration C:\Program Files\Dell\Dell Product Registration\PRSvc.exe
11:30:49.0217 0x1198  Product Registration - ok
11:30:49.0295 0x1198  [ 1F115AF75EFBAC28479B4F94A3F8D4A3, BE8D8C50D985F6AF9DDC0F13BDBE2D55D600E1F5E344982536538B14EC484AA6 ] ProfSvc         C:\Windows\system32\profsvc.dll
11:30:49.0327 0x1198  ProfSvc - ok
11:30:49.0358 0x1198  [ FC98407B85A31161851FDE245517574F, 2CCD706CF243934FCDA32B24CE0C385EA2E67F206E0306FA584496F583A20CD1 ] Psched          C:\Windows\system32\drivers\pacer.sys
11:30:49.0373 0x1198  Psched - ok
11:30:49.0451 0x1198  [ 7A68710BAC9B6809314B86C0CB1CBC4A, C02D97993D1F6FE6EFBA5B1366B3A4FE8CE1136A95F3A2DA07BA59554C163501 ] QWAVE           C:\Windows\system32\qwave.dll
11:30:49.0498 0x1198  QWAVE - ok
11:30:49.0530 0x1198  [ 819602BBBFDB0BD46DEA3715BF0DD452, D4007FF1E5296316B53436CA3598D6B1CF4F60AB77D5B02F3E595081EDD5D879 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
11:30:49.0530 0x1198  QWAVEdrv - ok
11:30:49.0561 0x1198  [ CDF47037A0939F56D11F699629C276AD, A63F2A3FE80FB8084E3870E907505694B79EE1D9E56E292C01D481FEFD2534B0 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
11:30:49.0561 0x1198  RasAcd - ok
11:30:49.0592 0x1198  [ 28C2EA278070EE12701D0EDF8CB0EC36, F10288C1C6835840026DB30285345EF892DE989F43C948E7F4760B8895FF675F ] RasAgileVpn     C:\Windows\System32\drivers\AgileVpn.sys
11:30:49.0592 0x1198  RasAgileVpn - ok
11:30:49.0623 0x1198  [ 7B82197BF35CC3BE59AEF8B706AB8A16, AB0216164A548A48CD21F5F035E57E867584A96890B9887EC08F8DABDD89F990 ] RasAuto         C:\Windows\System32\rasauto.dll
11:30:49.0623 0x1198  RasAuto - ok
11:30:49.0639 0x1198  [ 17E565710172ED71B8531D8822E1C5D1, 0CA39ABD9E544DDAD9D9D7D1FC50444274C31E18F9BF73069051D9F62833698F ] Rasl2tp         C:\Windows\System32\drivers\rasl2tp.sys
11:30:49.0655 0x1198  Rasl2tp - ok
11:30:49.0717 0x1198  [ 3C0A10FFC3CB95D249CA64D62BC912EF, 8A75398EF3FF4BBE822031B3D1C63BFC75ABE11AB35BC0451DFF3B1D56477D97 ] RasMan          C:\Windows\System32\rasmans.dll
11:30:49.0764 0x1198  RasMan - ok
11:30:49.0795 0x1198  [ 9387DF155233D45D4E010F4F2FB52A57, CABC25DA4E512809AED0085767BDD94BF3C1DA792BFF8A009B5465D9110E7060 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
11:30:49.0795 0x1198  RasPppoe - ok
11:30:49.0811 0x1198  [ F0F4EEDEEBEE7A4244FAFB96A16B5712, F64717E601BD5EB674003009507B8CDD6F69F00E8670D6895EC64786166A0E8D ] RasSstp         C:\Windows\System32\drivers\rassstp.sys
11:30:49.0811 0x1198  RasSstp - ok
11:30:49.0858 0x1198  [ EDAF0E161BE98CCC4FC9671481600745, 50DB73C341086E346F6EF57E40A7C3A8F6279E5EBB53A67F9B71B7877EB75734 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
11:30:49.0873 0x1198  rdbss - ok
11:30:49.0905 0x1198  [ 79A415E6FA915EFC00297DAB16EC2635, 47BB49F6D756214193D38A4AB182B541AAC180381C3111FF7F9B0AD4C44D8733 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
11:30:49.0905 0x1198  rdpbus - ok
11:30:49.0936 0x1198  [ 7135785C21CA79D270D11037C43D3F19, 654A3C65CF891ED8C82A740D10CF607FC7D709185E664DE03288CEB5B25F03A6 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
11:30:49.0951 0x1198  RDPDR - ok
11:30:49.0998 0x1198  [ 97A61A3CB2B5CB4FC32B3224EF333448, E4F2E8BCEE3639BE57BBC8A8E67FDE42C3A5158F1204684B0ECD216F4AA044A3 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
11:30:49.0998 0x1198  RdpVideoMiniport - ok
11:30:50.0061 0x1198  [ 69BB204AE07EE84ECFAB1BF13C4BD04B, 1CA832CBF4AE4821EEA2A19F9519C2D1D00406B8CCE2A86FE3B33A5F293DB218 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
11:30:50.0076 0x1198  rdyboost - ok
11:30:50.0170 0x1198  [ 940D6F5A2B0A61EE4170DF84F6C95C20, F8EE846DC8015EDFE7CB5BEEDC977EAA9C586BAC2216DE69D8ECCBDBC7408649 ] ReFSv1          C:\Windows\system32\drivers\ReFSv1.sys
11:30:50.0264 0x1198  ReFSv1 - ok
11:30:50.0342 0x1198  [ 13F6B64235C60167052364BF7D99E4CA, BC12EE00775F7456FB922FBD684BF3F0CFABA5BEBB6E162C23B41DED5C20A978 ] RemoteAccess    C:\Windows\System32\mprdim.dll
11:30:50.0374 0x1198  RemoteAccess - ok
11:30:50.0405 0x1198  [ 3183B161B1F05333F6C325577FEF3596, D6A89B2A021377B6F371E5B9EFC36FF018822B28F0ED41F8CD2F00C5C8605707 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
11:30:50.0421 0x1198  RemoteRegistry - ok
11:30:50.0545 0x1198  [ FA62C4E1D753B489832DD0A7033665EE, BB0B59ABC79CEFA949632179239D711944C29E93EBCE60E629DE75AF2C3268B2 ] RetailDemo      C:\Windows\system32\RDXService.dll
11:30:50.0623 0x1198  RetailDemo - ok
11:30:50.0686 0x1198  [ E82F3B1918C6A5FE6EB761CDF1E772AF, 0C993FCB7BFD6E01B70A1821E0DEAFA2CB241AF8C2E6D4CC120F59C1B5F6FF5F ] RFCOMM          C:\Windows\System32\drivers\rfcomm.sys
11:30:50.0701 0x1198  RFCOMM - ok
11:30:50.0780 0x1198  [ 0758FD515EDC3EC67FD38A0049A3768E, 9A9D8EE7E5CEF88F59A5BDF4DFD0CBCBECBAD2681C977D5C65D1275A28F3C3D7 ] RichVideo       C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
11:30:50.0811 0x1198  RichVideo - ok
11:30:50.0858 0x1198  [ 5DAA644F17780FC4E3F4820A46D38FEC, 32C27FFA0A4608B164F4E709CD0D998AB73CA9713BE3E47F9DBC7B3D1B6C7453 ] RmSvc           C:\Windows\System32\RMapi.dll
11:30:50.0905 0x1198  RmSvc - ok
11:30:50.0936 0x1198  [ 672724C8B21B7DC56646045DE4D5B860, 79986E80A92C949C543959F1E35647A9788DAB2892AC20B6DEA5C0BBC0CEDE9E ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
11:30:50.0952 0x1198  RpcEptMapper - ok
11:30:50.0983 0x1198  [ 109C1D609951E886D3643B15C1EDD1C2, 347D8E7C50EC7F96217C7421D9BC8A42C9DF50B94169CB58DCF857A63C33C2EA ] RpcLocator      C:\Windows\system32\locator.exe
11:30:50.0999 0x1198  RpcLocator - ok
11:30:51.0108 0x1198  [ 7BD259FC59CF9C2AE1B979564B374CC6, 299832FCE304A85080C80ABFE820A6093AC15A7C1E7C89D8C946708E955A2909 ] RpcSs           C:\Windows\system32\rpcss.dll
11:30:51.0155 0x1198  RpcSs - ok
11:30:51.0202 0x1198  [ 5FF28F097C9699097B473F8FC7C1AA7D, 695560F1DBD85073F3D6CB1FF16F16504CA044EA62E940E463A16BBA8B86E2FA ] rspndr          C:\Windows\system32\drivers\rspndr.sys
11:30:51.0202 0x1198  rspndr - ok
11:30:51.0295 0x1198  [ E737CB52365F114DCFF3A51C856E76BB, 8B6973DA777BDC125E677E6C18D9802C162F645C4BE4C9B51F3E83A5FEA45658 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
11:30:51.0311 0x1198  RtkAudioService - ok
11:30:51.0358 0x1198  [ 02CB159500B40705BE8644F3B42C3992, B4F6238BF2D9E53DE3C43FC4A247700C94B9F0BEFA8D3F0AE043B1F3405A1D70 ] RTSUER          C:\Windows\system32\Drivers\RtsUer.sys
11:30:51.0389 0x1198  RTSUER - ok
11:30:51.0436 0x1198  [ 4A07DC7B29703A49F1DB1DC01657654B, EEC23038EFE0AAB4FF91AC6B348919A5075C288B420B95505B58B7B82E37C581 ] rtux64w10       C:\Windows\System32\drivers\rtux64w10.sys
11:30:51.0451 0x1198  rtux64w10 - ok
11:30:51.0483 0x1198  [ B5DAEE69BACA64D2BB004568E22D8756, C0072CF6B438ED756435A182D55AC55F3AD356ACBD483DE06A94893D3CA8CCC5 ] s3cap           C:\Windows\System32\drivers\vms3cap.sys
11:30:51.0483 0x1198  s3cap - ok
11:30:51.0514 0x1198  [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] SamSs           C:\Windows\system32\lsass.exe
11:30:51.0530 0x1198  SamSs - ok
11:30:51.0576 0x1198  [ 5E73FB63E2DBC75FE0C17DEB0010CE0E, 9DAC47486262397D03BC01F7438CAB62CF33BD7B5283F5B9548C770A3D6D0ADC ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
11:30:51.0603 0x1198  sbp2port - ok
11:30:51.0681 0x1198  [ 3CD0130FFDEAEACF0905B482F3934EA3, 1EC355B63135FD2563093EBB206741C0C4CCE0551A662F6DC86C875146A88B06 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
11:30:51.0712 0x1198  SCardSvr - ok
11:30:51.0774 0x1198  [ 9EE060D6560FFBFBDB2ED5D6ED192294, 14387B69CD26D12BE31A23251B6AA8EDFC4D6CDE4FA558F0950DE91D2DD03946 ] ScDeviceEnum    C:\Windows\System32\ScDeviceEnum.dll
11:30:51.0790 0x1198  ScDeviceEnum - ok
11:30:51.0821 0x1198  [ 3D9A82B03C92D1FEC42CB171D6F57778, DC027F02F5EB5F1D10DB6F405FB0C15D4D5C922445F5F3C916624113278AF072 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
11:30:51.0837 0x1198  scfilter - ok
11:30:51.0978 0x1198  [ D4DB6B318A0A0C74A90260725A228C0B, 57BA2EF9D880488C785C806ABF9EE753A48E589129442D72F815CD6EFFA07B22 ] Schedule        C:\Windows\system32\schedsvc.dll
11:30:52.0056 0x1198  Schedule - ok
11:30:52.0071 0x1198  [ 9055ADDFBA4C8B914C914CE693B55C0A, DB213AC36E14D856B81D2AFE46815402537A2ABEEA15032A9FF436F953129441 ] scmbus          C:\Windows\system32\drivers\scmbus.sys
11:30:52.0087 0x1198  scmbus - ok
11:30:52.0103 0x1198  [ B6F2363584E62960846F7C3F00124A4F, 252189FF9D623CF69BF415FF7C7FE74B0BBF756B632420578BFAFF6595616CF7 ] scmdisk0101     C:\Windows\System32\drivers\scmdisk0101.sys
11:30:52.0103 0x1198  scmdisk0101 - ok
11:30:52.0151 0x1198  [ 9450FA11E9DE6715FCB71A519A8FF90B, B7E341C6E4CE967FCDD0D17A497C07E8A1C6B0AACE8A6E8E5D6C21EF73F13E16 ] SCPolicySvc     C:\Windows\System32\certprop.dll
11:30:52.0159 0x1198  SCPolicySvc - ok
11:30:52.0206 0x1198  [ 7C3D10BEC8B0DBA00A78C78EB10B3AE2, A671C9CB97977613576D70607E106C7A29B9EA9E875C7C5AF293EE5903D7AD0A ] sdbus           C:\Windows\System32\drivers\sdbus.sys
11:30:52.0221 0x1198  sdbus - ok
11:30:52.0253 0x1198  [ F3714DBAA42C15F78FFCDFE4273214EB, 2D018970B92C5F0744FAE10A2FC298F3DCEA5C2EDEB760F4F0651337B9878ABF ] SDRSVC          C:\Windows\System32\SDRSVC.dll
11:30:52.0284 0x1198  SDRSVC - ok
11:30:52.0331 0x1198  [ 120DFCB71D6C502613A9E2D50E16850C, 2C294010AD1C9C380CD5221A37720544178B7358C8C8553AF44055E4CEE5DAF5 ] sdstor          C:\Windows\System32\drivers\sdstor.sys
11:30:52.0331 0x1198  sdstor - ok
11:30:52.0378 0x1198  [ EFD644DD091E1D94555FC3BBC95EA66D, FBDDA6680BEC378CCF12A32D9186020E884DA15A1E789D1531B1E687FC7B54B1 ] seclogon        C:\Windows\system32\seclogon.dll
11:30:52.0393 0x1198  seclogon - ok
11:30:52.0440 0x1198  [ F48535714BED7DD784853889B4594B26, 9B4AB7E7293E79A8F6CC46C84F23E62AD3BD6E958FCE078CDBB125A69FAC7E50 ] SENS            C:\Windows\System32\sens.dll
11:30:52.0456 0x1198  SENS - ok
11:30:52.0597 0x1198  [ 2B4E090D06C60853C5C00CF255F9E02A, 4D4DBA7B04519622612BD4A4F28318CA2F5646C84CAFF8C5ACC9BF4C6031894E ] SensorDataService C:\Windows\System32\SensorDataService.exe
11:30:52.0659 0x1198  SensorDataService - ok
11:30:52.0737 0x1198  [ C09A42163878A082C3F0D0A3DFE95714, 8033DC38D0EDED3758DA6BF8C1955BE5FFE48863C079C589660B37D0E461300F ] SensorService   C:\Windows\system32\SensorService.dll
11:30:52.0784 0x1198  SensorService - ok
11:30:52.0831 0x1198  [ E6F00415DADCEEC860E7AB42BFD19A65, 274CAF22F93D43B6DB6953730E3DF8DA94776B24EEE74B80AB4CD780BC1366A9 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
11:30:52.0862 0x1198  SensrSvc - ok
11:30:52.0894 0x1198  [ 401D706DDC0A7AF18C3DD228ADF74551, 27C0B38D7C2E3F6FF06201124E63483931F6071954B2B99EC0143C464238C0B7 ] SerCx           C:\Windows\system32\drivers\SerCx.sys
11:30:52.0894 0x1198  SerCx - ok
11:30:52.0956 0x1198  [ 7084D11083F0CDCA8B5C76F9846ABF5D, F639920882B0E784D8CFAF0D4C0F0C411937B6831E5DD99B0ABFBFE06BA4742F ] SerCx2          C:\Windows\system32\drivers\SerCx2.sys
11:30:52.0972 0x1198  SerCx2 - ok
11:30:52.0987 0x1198  [ 3FF478A8ED32A83C36581425F6282B6C, 787646A17098EA7CF36064D0A950C1D470D4A280C8C5AC40023D566E53860EAE ] Serenum         C:\Windows\System32\drivers\serenum.sys
11:30:53.0003 0x1198  Serenum - ok
11:30:53.0018 0x1198  [ 92509187AA171A80521528B36F753E1D, FE0DA272B8A155ECC161E99586C4AE7EE17B1C84BC330DA1566C83B8E03FA825 ] Serial          C:\Windows\System32\drivers\serial.sys
11:30:53.0018 0x1198  Serial - ok
11:30:53.0034 0x1198  [ 433D38FF6D08B993847EA2A10EB8CB52, 29BA75DB6D1AC761BBDFB5AC8874FC7D763E1CD10D290E369063B34CE951270F ] sermouse        C:\Windows\System32\drivers\sermouse.sys
11:30:53.0034 0x1198  sermouse - ok
11:30:53.0128 0x1198  [ 82CF273F0E8F243789683DEB40757569, 5433D93A41C4BF04494E6158931C6AC3154888F7CD3A417253EC02FF7EA6D00E ] SessionEnv      C:\Windows\system32\sessenv.dll
11:30:53.0175 0x1198  SessionEnv - ok
11:30:53.0190 0x1198  [ 697D3EE0740AEAB62B66ABCA1C83D13B, FCF54A0071ED04AD3FC8551C67FE5FD49089DC0510F753052CAC5972A65C9E3D ] sfloppy         C:\Windows\System32\drivers\sfloppy.sys
11:30:53.0206 0x1198  sfloppy - ok
11:30:53.0268 0x1198  [ 3D0069B8F0C2FB1B0F13DBDB57593DAD, 4CEC91BC45A51C4E445D2DD8A13AC97719D5AAC1DBA8EA9166D2A354E7857378 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
11:30:53.0300 0x1198  SharedAccess - ok
11:30:53.0394 0x1198  [ 482E6BE8A07832E824080D352075ACA1, 4123A76C8E805AF4FE229C53E9C174095C0937913BA81A63FE9B45C44AA5B15F ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:30:53.0425 0x1198  ShellHWDetection - ok
11:30:53.0472 0x1198  [ CF3BDF9EAD8D3EF671E9339B44B185BA, C17EC6D5B00F49D9C8B5B6C262A85F34ED71C58450659F006B3632AA84F68E23 ] shpamsvc        C:\Windows\system32\Windows.SharedPC.AccountManager.dll
11:30:53.0472 0x1198  shpamsvc - ok
11:30:53.0503 0x1198  [ A34CE1830E45DA98932295FDE4B7908A, FC553ECF4D64B4B10B7FDE5352707785517A18D487A80665BAFC7261E3F35CDC ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
11:30:53.0518 0x1198  SiSRaid2 - ok
11:30:53.0534 0x1198  [ A7B5C670770E908DA5FEF5BF1136E933, 8D3BB6FF65E631C34BE8EA766481B2FDB2E1E916A4FD67F86705A8975A136E6C ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
11:30:53.0534 0x1198  SiSRaid4 - ok
11:30:53.0581 0x1198  [ D233EAE2A9D48485321816486ED635EF, 03AB49BE9CF15EB7EDC50C400E673B4DF0E5BFDA9A7811E157F2AF2F3CF38D49 ] smphost         C:\Windows\System32\smphost.dll
11:30:53.0597 0x1198  smphost - ok
11:30:53.0659 0x1198  [ 0B217141AC1283655402CDB356577735, 6EFA4CA46CFC8B7156CE7E5CA89B7F7073E16D66C2FC13F4DB95FEB78CCF698F ] SmsRouter       C:\Windows\system32\SmsRouterSvc.dll
11:30:53.0722 0x1198  SmsRouter - ok
11:30:53.0769 0x1198  [ 6F4CE07D420FB657B5936F71101ABD41, CEC52984C56E578E0FFE12BE1B8148335F788B7D1751F2D0E79B944A41113C20 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
11:30:53.0784 0x1198  SNMPTRAP - ok
11:30:53.0878 0x1198  [ C994DF90427103CCB80F893FFD2B1CE8, 7E4B08095C77E68D337A3425EEA38F8FEC4D103CA7661E34FD96BF518DFB4BCB ] spaceport       C:\Windows\system32\drivers\spaceport.sys
11:30:53.0925 0x1198  spaceport - ok
11:30:53.0940 0x1198  [ E03264C4C25B568F92ED1656AD541E64, D42942BFFBC7213D204FAF84F4FE015FC23A6ACB29B5E752834EDBC17A3AC20D ] SpbCx           C:\Windows\system32\drivers\SpbCx.sys
11:30:53.0940 0x1198  SpbCx - ok
11:30:54.0034 0x1198  [ 79DCE27E8C4CF6701BFE49EC2446BBF6, F51CBB7A45C3C878F41653FD5FBDC93CC302712B7725DAAB4D3475A1F4771E3D ] Spooler         C:\Windows\System32\spoolsv.exe
11:30:54.0081 0x1198  Spooler - ok
11:30:54.0472 0x1198  [ 23529A00195CE71252FEBF647E56E27D, 8ADF7A1C96DAE005E9A974D90BE8954F88D49B6848252B88513C49E0A3BD9774 ] sppsvc          C:\Windows\system32\sppsvc.exe
11:30:54.0784 0x1198  sppsvc - ok
11:30:54.0940 0x1198  [ D584182DA13EA48D9025C1D61FB72FFB, C0DED207C6860F9080522CF748AE6CE933C05431256B95C6747AB8661AE50A2A ] SRTSP           C:\Windows\System32\Drivers\NSx64\1609000.044\SRTSP64.SYS
11:30:55.0050 0x1198  SRTSP - ok
11:30:55.0097 0x1198  [ 36794962FAB0081D73D61E364EFD05DD, 5E3BE7EEDD57D2F1E6F130F0A6E011323145A715C2FBDF5AD29E7C945ABC0CC2 ] SRTSPX          C:\Windows\system32\drivers\NSx64\1609000.044\SRTSPX64.SYS
11:30:55.0112 0x1198  SRTSPX - ok
11:30:55.0191 0x1198  [ E83830BB74AE8CBECEA0ECD94DE436F9, 4A34569A34260324EBD629039E1BF45A3527FC75B22D9A3DB6360A6EB365483A ] srv             C:\Windows\system32\DRIVERS\srv.sys
11:30:55.0222 0x1198  srv - ok
11:30:55.0300 0x1198  [ 1312896CAE6AF0D4557DB7B37283C116, 9E3701DBBF0F45368A217549A7DFDA2543C4AB3AC9CCF65A73E1FE27CC4A278E ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
11:30:55.0347 0x1198  srv2 - ok
11:30:55.0409 0x1198  [ F13EE0DB1FB1D6946AC3228D7EFCFC8F, 109A809F0338FAB0F4045FA5EE33C6F0A994A9F586B2FBD8920A6AABA0E0EF66 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
11:30:55.0425 0x1198  srvnet - ok
11:30:55.0487 0x1198  [ 44758105AB3EA34E815D4B6CA1153311, 7F223A20D2538C123BAC6F75BE0E126876A116F09502FD980C05B8916E26E1B7 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
11:30:55.0518 0x1198  SSDPSRV - ok
11:30:55.0583 0x1198  [ B97C7EC07218A8002323718202BF5E77, 39D3254383E3F49FD3E2DFF8212F4B5744D8D5E0A6BB320516C5EE525AD211EB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
11:30:55.0614 0x1198  SstpSvc - ok
11:30:55.0896 0x1198  [ FD881B87C853EB2F0B8B7B5CC71D6FE3, 780038C203C9277C366794302D90BC0AE75568863F1FB7044197BA20D798E4BA ] StateRepository C:\Windows\system32\windows.staterepository.dll
11:30:56.0114 0x1198  StateRepository - ok
11:30:56.0161 0x1198  [ 29D26E1347AE1BBD4201014E19880B2C, 9E2153AD96CE4F189EEE43BB02515532C619FB1CA02D8F6DEF517AC3347AAA14 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
11:30:56.0161 0x1198  stexstor - ok
11:30:56.0271 0x1198  [ 91CB95B35481155BFE29C217CD237F27, CA66957DF1441D991453BEF02D768D44E5D9A484BC23C8874E8A7AC20904CB06 ] stisvc          C:\Windows\System32\wiaservc.dll
11:30:56.0349 0x1198  stisvc - ok
11:30:56.0412 0x1198  [ 53EB8CE34B55A1EE63424C8DB7388BFC, 5AB59117BA8A2844EB8693CCC19B217AE039B28C87519F96E1C845FE9BF456C2 ] storahci        C:\Windows\system32\drivers\storahci.sys
11:30:56.0427 0x1198  storahci - ok
11:30:56.0458 0x1198  [ C5E0ACE4771F5575D9D5B457ABF3AD03, 365880BC5AC313F25C313EFB7758301F98D9B2BF4C5FC9499F98C2B7F8407D96 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
11:30:56.0458 0x1198  storflt - ok
11:30:56.0489 0x1198  [ B66D8C75C9BC59D637177AB3B1C569A6, 76252A631F03EEBF5FDC7693F6B0A5E73838CDBE3157114CC96B8BBE88B476BF ] stornvme        C:\Windows\system32\drivers\stornvme.sys
11:30:56.0489 0x1198  stornvme - ok
11:30:56.0521 0x1198  [ BEBF85EB4D90E6996047DA027D0ED26E, DF109CF0F07CDD1B9B702C2A076D4DD5366DAAD971CC9359AF0358E79981706F ] storqosflt      C:\Windows\system32\drivers\storqosflt.sys
11:30:56.0521 0x1198  storqosflt - ok
11:30:56.0567 0x1198  [ 6C982BC7E4DB161530A0D831718D7113, B0FAEACC91023031E53A161ECEFCF62764C96B8705E9089B4A7B4F7A2F3B6BAA ] StorSvc         C:\Windows\system32\storsvc.dll
11:30:56.0583 0x1198  StorSvc - ok
11:30:56.0614 0x1198  [ 8E73037A6F8938475692FFCC26EBF385, F78C5CD1A3CD17AA831EEC82426B14006B4DDBC9085A4814E04E8C37FD6B05F7 ] storufs         C:\Windows\system32\drivers\storufs.sys
11:30:56.0614 0x1198  storufs - ok
11:30:56.0661 0x1198  [ 9D9DED47DA10E845EFF2DD57C94C809B, 520D0CE7A867051B80C8141E351FE5A5BCE3C99776093F234DB77D3407B1F104 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
11:30:56.0661 0x1198  storvsc - ok
11:30:56.0724 0x1198  [ 4BBD324372664F7EC73E93553A92CD2C, 43DE2A7C3A8B64535E104E4FB8AB32AD93EFC10F2EAE3BF287A06A89C5998124 ] SupportAssistAgent C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
11:30:56.0724 0x1198  SupportAssistAgent - ok
11:30:56.0771 0x1198  [ 224C92E442B1B8C20C274332F1ACF00D, CDE5DCFB7A21089464A6E2ABB29BBE08B184C3433C218756AA5902A8F67C0B2C ] svsvc           C:\Windows\system32\svsvc.dll
11:30:56.0771 0x1198  svsvc - ok
11:30:56.0802 0x1198  [ 505E0C40B5D0ADDCBB414640F59BD2E0, DF4B5E65FE6FF2224F298A2A2FAC9B648C082DFF8463148633647580A9FAD34D ] swenum          C:\Windows\System32\drivers\swenum.sys
11:30:56.0817 0x1198  swenum - ok
11:30:56.0896 0x1198  [ 2EE27411B5904C63D723BEA391819F58, C88C11D460E90398E16011B8A2CED5EE5626084F24790EA6115532F8F70060C6 ] swprv           C:\Windows\System32\swprv.dll
11:30:56.0927 0x1198  swprv - ok
11:30:57.0036 0x1198  [ 524DA42A8CE7D57319569042DEDE790F, 64AAC565651787930D9367BFA8147C1BBDD08CDA7D7F1580B49DE5ABA8298C44 ] SymEFASI        C:\Windows\system32\drivers\NSx64\1609000.044\SYMEFASI64.SYS
11:30:57.0130 0x1198  SymEFASI - ok
11:30:57.0161 0x1198  [ 8EB1D78B7FB4F8632E4777636FECE3D9, 2663373C3582D72DF28563B575E55A907BC1FCA9672BFEA7083A240A9857FAF3 ] SymELAM         C:\Windows\system32\drivers\NSx64\1609000.044\SymELAM.sys
11:30:57.0161 0x1198  SymELAM - ok
11:30:57.0208 0x1198  [ 795F3D7EADA700EA18DF8DE490925C7E, F3B464B306744F32CD66D6A4365032BDDA490D1BDEB61F1B4E25A17D53AEA9C1 ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
11:30:57.0224 0x1198  SymEvent - ok
11:30:57.0286 0x1198  [ D1FDDADC2656601FF4E65D1B2653ED50, 4B499BB681765E2A28CB98716FCCA842C2568D4DC275943E00BC2EF2DECC03CB ] SymIRON         C:\Windows\system32\drivers\NSx64\1609000.044\Ironx64.SYS
11:30:57.0302 0x1198  SymIRON - ok
11:30:57.0380 0x1198  [ A0F063F986EA89A0E5B2C95795E8D91A, AF439E312B4828D32F193E4EFD3A59E2C046876FD7E1BB62F6CF58E4A2F44615 ] SymNetS         C:\Windows\System32\Drivers\NSx64\1609000.044\SYMNETS.SYS
11:30:57.0427 0x1198  SymNetS - ok
11:30:57.0474 0x1198  [ 1B5A61A29F1CCE408647226E25337AF3, 6EB5BB199C6A49FDC121DE9E261ECF6149D01363551DA5CA49075D3A4FE2D150 ] SynRMIHID       C:\Windows\system32\DRIVERS\SynRMIHID.sys
11:30:57.0490 0x1198  SynRMIHID - ok
11:30:57.0521 0x1198  [ 32F46FB0F290D16DAA452B289C985795, 73F88AAAA6026DB4C27F1D054145216DCC3F1960946FB2A7A90518DD1D5737CB ] Synth3dVsc      C:\Windows\System32\drivers\Synth3dVsc.sys
11:30:57.0536 0x1198  Synth3dVsc - ok
11:30:57.0630 0x1198  [ E12C2C97DD962D8A761F3F586B0D536F, C9E07F3276D07FF21E2F12916F1A8EAF26EE797E75683C0F95430C81174B41D5 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
11:30:57.0692 0x1198  SynTP - ok
11:30:57.0724 0x1198  [ EC71BAD5F29269AE9AB18833D3DFF5BC, 8FE409C65BDAEA88F767196AB0D446FC652F9DD7324B2B65483991367F50945F ] SynTPEnhService C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
11:30:57.0739 0x1198  SynTPEnhService - ok
11:30:57.0833 0x1198  [ FED48B19D6F55D7A3AB498D85729D1BA, FA5E0E02BC2E2DE108C55991E3B063CC947072228B53539F42F922661510DE7C ] SysMain         C:\Windows\system32\sysmain.dll
11:30:57.0896 0x1198  SysMain - ok
11:30:57.0927 0x1198  [ D9FEA79BF6AF136F8E656AE045C2FEC8, E6F08A93348E035185F0F1C6B6277E636F4F25D1136E3ACCA63488DAEEC7114B ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
11:30:57.0943 0x1198  SystemEventsBroker - ok
11:30:57.0958 0x1198  [ 86E7FD5C8DBEC1EB51C4368561402B75, 86EE61414CD5854E39E33F67BF5DA4377B569B3ED4D18882C470BC6784891DA1 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:30:57.0989 0x1198  TabletInputService - ok
11:30:58.0036 0x1198  [ 3929C8FC134AC672C4F3F85160956257, CD3195CA58BA6F55EA0DDA2BE6AB58280AD1CA488D7AAA1539DD05FB99374F36 ] TapiSrv         C:\Windows\System32\tapisrv.dll
11:30:58.0083 0x1198  TapiSrv - ok
11:30:58.0286 0x1198  [ 4F25E481124059CC593B4C68BC485640, 2814D2BA4E83D3B0F7569E6C6EE0C763D9801BC505D8ED84675D19C8573834DB ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
11:30:58.0411 0x1198  Tcpip - ok
11:30:58.0536 0x1198  [ 4F25E481124059CC593B4C68BC485640, 2814D2BA4E83D3B0F7569E6C6EE0C763D9801BC505D8ED84675D19C8573834DB ] Tcpip6          C:\Windows\system32\drivers\tcpip.sys
11:30:58.0630 0x1198  Tcpip6 - ok
11:30:58.0693 0x1198  [ 8DBB1BE20C36E6D19BCC89EEA00B953C, 8B97A7E53E1D77363AFF6A5AAEAD89EBAE28DCB8D82753C804FD7CD5646500AF ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
11:30:58.0693 0x1198  tcpipreg - ok
11:30:58.0740 0x1198  [ 9D2DD64A0B51C56285512DC9454340F6, ABB90CE6A55269F71AFB08E04969CF9A4EFD93F7A7189AF920EEE3E005214DDD ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
11:30:58.0740 0x1198  tdx - ok
11:30:58.0771 0x1198  [ 06130AFFECEB94525FC2352936576B70, 10EBE2C8FDC087D29E2FFB328F0F7905A5374AB8CC9FAE8699E7676DBC8CBF91 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
11:30:58.0771 0x1198  terminpt - ok
11:30:58.0911 0x1198  [ FB68E5F02316C42BE7282DA492351C6F, AC31D841FEA58B776127E138DB20F8D48E26FD8C00CE2FA9695EA14EBF159A0A ] TermService     C:\Windows\System32\termsrv.dll
11:30:58.0974 0x1198  TermService - ok
11:30:59.0005 0x1198  [ 2AF438EC0D361A7BBB70E604A686602C, 4BE6A0461EB2CB94288614434A1CEC81C2ED46241721FD5BBD8ABE0680F7C804 ] Themes          C:\Windows\system32\themeservice.dll
11:30:59.0005 0x1198  Themes - ok
11:30:59.0052 0x1198  [ 1482B8ED5CACA87992A882B853B83CEE, 613247F0E362A109090E8563D977DECC50C64D45D6962905FA84A2D59329045C ] TieringEngineService C:\Windows\system32\TieringEngineService.exe
11:30:59.0083 0x1198  TieringEngineService - ok
11:30:59.0146 0x1198  [ 3B3C607C3C62DFBEF61938DA2CAB94DF, E5EEA7F45A7BBFDF6F0003CD77E39958C451DD1B4B401876B5619A3C20F5C370 ] tiledatamodelsvc C:\Windows\system32\tileobjserver.dll
11:30:59.0177 0x1198  tiledatamodelsvc - ok
11:30:59.0193 0x1198  [ C1F8CBE2D4843E0CCC3EFEA2EC60D4AB, 9D07527D982066922318C77AECE99280DE55034C375ACE145E827A6BEB5C3B70 ] TimeBrokerSvc   C:\Windows\System32\TimeBrokerServer.dll
11:30:59.0208 0x1198  TimeBrokerSvc - ok
11:30:59.0271 0x1198  [ 3D04046C468AD2868A093925B5E2AA0A, 44696259BEF49AC200DEE146DE0E4375B0CD09F9356CCFA22BD7AD8B53E48658 ] TPM             C:\Windows\System32\drivers\tpm.sys
11:30:59.0286 0x1198  TPM - ok
11:30:59.0333 0x1198  [ 3B91F35089240F6187AD681A5EC28BDE, 3D035CB73BC8E7831DCD0FB7D9DAD91CE51D3D0F9D9C8B866A0009BD508B6702 ] TrkWks          C:\Windows\System32\trkwks.dll
11:30:59.0349 0x1198  TrkWks - ok
11:30:59.0427 0x1198  [ AF343840E793BE63A9C646760BE8F2CD, 483FE55873A01DB7ACEC99B6823DAACC9EA7C67D36C6F12698113B31A7D5B8BE ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:30:59.0458 0x1198  TrustedInstaller - ok
11:30:59.0521 0x1198  [ A6F4025664C9D4BC2A9EDAB4092706D7, 89808A1679C0E716F86F06EE7701DCC289200894F0FA1F120DA2AC3A45FDB312 ] tsusbflt        C:\Windows\system32\drivers\TsUsbFlt.sys
11:30:59.0521 0x1198  tsusbflt - ok
11:30:59.0536 0x1198  [ 37A96AD493E110C0BF1EE0AC0F9E7DBD, F2A6894A4AEE18DF2B92222CDB0801A13AEEB7212071F0431430788339B30E23 ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys
11:30:59.0552 0x1198  TsUsbGD - ok
11:30:59.0590 0x1198  [ 79E264287F17D56D768440B0270466DE, ABF9DC95C5E939B30BFD9BF9EDFDB3BD78A9DFCB055B945965303B6A60E6D7A7 ] tunnel          C:\Windows\System32\drivers\tunnel.sys
11:30:59.0590 0x1198  tunnel - ok
11:30:59.0621 0x1198  [ 6A606227DE13B850DCD28AD0F4112506, 6E65A79635BFD0F739479ED1C9C44075F774F9B4C9B98750A99E6FC780EE1000 ] TXEIx64         C:\Windows\System32\drivers\TXEIx64.sys
11:30:59.0637 0x1198  TXEIx64 - ok
11:30:59.0684 0x1198  [ F723552F65D44FE693DB1A383825B3A8, EF8C343C4EB5EEA4EC830378EF576CCD6CD4EEDEDD486C0F29697044E8C71F45 ] tzautoupdate    C:\Windows\system32\tzautoupdate.dll
11:30:59.0699 0x1198  tzautoupdate - ok
11:30:59.0715 0x1198  [ AA65954F512BA097DD190790876DD991, C1BB2B8F54F064D01190327B5E7949EBBDA21D6FC6F94D9FCD20F685C2F855FA ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
11:30:59.0715 0x1198  UASPStor - ok
11:30:59.0746 0x1198  [ AB6268022C3A5B529075A39C33904DA6, 2717F1704640201F2681711543EA39A74C3E89C7DB232EC5DD89FD8AA6F07846 ] UcmCx0101       C:\Windows\system32\Drivers\UcmCx.sys
11:30:59.0746 0x1198  UcmCx0101 - ok
11:30:59.0762 0x1198  [ 7ED2EDA43D21C7A5F589A7960E265C52, 7DB8A595236FBB8A264D7AB155201357212855050ABB5B1036EF32F1223FDCC2 ] UcmTcpciCx0101  C:\Windows\system32\Drivers\UcmTcpciCx.sys
11:30:59.0762 0x1198  UcmTcpciCx0101 - ok
11:30:59.0777 0x1198  [ 169351463039B45F5CDED9768879F712, 990C8C4AEF9ED7FF6BCEAE67F7BDAA037777B142B8D96A74F8715C941A5C63C6 ] UcmUcsi         C:\Windows\System32\drivers\UcmUcsi.sys
11:30:59.0793 0x1198  UcmUcsi - ok
11:30:59.0824 0x1198  [ 08A9E3AD29B215484FBB68CDC175DF3A, 3EFFF99C3BC4A1454E3D2B5177AE587ED3041AB4CE2A95BA7E28A2124E38E1E5 ] Ucx01000        C:\Windows\system32\drivers\ucx01000.sys
11:30:59.0824 0x1198  Ucx01000 - ok
11:30:59.0856 0x1198  [ DA70AEE267491AA56BC63AA0C0C96CA2, 0A0AADB27607F9292BB3CE000CFDDB19BD4CA09EAAD926C4925CB43B17817AD9 ] UdeCx           C:\Windows\system32\drivers\udecx.sys
11:30:59.0856 0x1198  UdeCx - ok
11:30:59.0887 0x1198  [ FBC5ECF6D5A868D0B116C2DBB02B8168, 945AA76C60ABAD6075B5C8F9172C018F75BCF393A1CB8B329F5E68E664627775 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
11:30:59.0902 0x1198  udfs - ok
11:30:59.0918 0x1198  [ B918E40FAA9CD118CCA4AD388B748C98, 4B539B7B656F02C5E5BAEE52A677757B05CC11C5500D619850A564C28FAB8115 ] UEFI            C:\Windows\System32\drivers\UEFI.sys
11:30:59.0918 0x1198  UEFI - ok
11:30:59.0949 0x1198  [ 0FD75222C1AD2687AB365BEBEA400DD4, AD10DBCA59EB7D34FD8F963CE267F36774A9BC613F8D637903B12AC88C328E8A ] Ufx01000        C:\Windows\system32\drivers\ufx01000.sys
11:30:59.0965 0x1198  Ufx01000 - ok
11:30:59.0996 0x1198  [ C1A78C53E01C641AE41BFA65797819F5, 0B9FE1BD724B3315199A1B1DA2F03255E4FE744DA3CE6CD0F77699A8E42E9359 ] UfxChipidea     C:\Windows\System32\drivers\UfxChipidea.sys
11:30:59.0996 0x1198  UfxChipidea - ok
11:31:00.0027 0x1198  [ 767307212110EBEFB93EC9A5BE9E85B9, 368797400FE54802CE74F34B773CE2AF09EB8DEA6C035B55419A52F0B5A6FAD0 ] ufxsynopsys     C:\Windows\System32\drivers\ufxsynopsys.sys
11:31:00.0043 0x1198  ufxsynopsys - ok
11:31:00.0106 0x1198  [ 8578F83EC5175920F2D8586FFF9DCE47, 049A16AC87F93E761150C8286633FFCA62EE85F5645DDE77D36BD0EB6481FF83 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
11:31:00.0106 0x1198  UI0Detect - ok
11:31:00.0121 0x1198  [ DC460AAA18CA2342FBBFB2DF9B044472, 14D45E059C596AE97506D26705F248CA1C2269160B31A60341060E8A93146CBD ] umbus           C:\Windows\System32\drivers\umbus.sys
11:31:00.0137 0x1198  umbus - ok
11:31:00.0152 0x1198  [ C3CF0377917ECE6D65D7623E1E61568F, 4909695E04CBC86BFCFFBC15F332C367521054B7B4D3C141C7CA6B2E40E090B9 ] UmPass          C:\Windows\System32\drivers\umpass.sys
11:31:00.0152 0x1198  UmPass - ok
11:31:00.0184 0x1198  [ 640CF093C1CF16D5FD317616CA348F31, BEC34D1AACA83BF5A84CE01F6A668E3CA5A33C56A446DC42EFFF7C43D22E1AE6 ] UmRdpService    C:\Windows\System32\umrdp.dll
11:31:00.0199 0x1198  UmRdpService - ok
11:31:00.0293 0x1198  [ B8272BB8D4982C496FDC704809C38E02, F93855D932FB1DBBCC86E82C0FE0DC9ECF93BBD629D2CA9D0BE7E075E114B7FF ] UnistoreSvc     C:\Windows\System32\unistore.dll
11:31:00.0387 0x1198  UnistoreSvc - ok
11:31:00.0434 0x1198  [ 6CDA3536F6BAB7896A57EAB7DC07F379, 8FBE6457ECD1ABB518D9800EBA8A017774FFAA8EABD2EDC0825181A12FE9AEF6 ] upnphost        C:\Windows\System32\upnphost.dll
11:31:00.0465 0x1198  upnphost - ok
11:31:00.0512 0x1198  [ 6B46FC140C9AF68E6E7697D66D59CB4D, F018B4784D65F1A8140A6EA69C35D6A7ECE01738694052FD54AFD2B81A8F2FF8 ] UrsChipidea     C:\Windows\System32\drivers\urschipidea.sys
11:31:00.0512 0x1198  UrsChipidea - ok
11:31:00.0527 0x1198  [ B4402E7F0923F660270442CE76877ABE, 1C2DD26EAB71F75EA576E8DAABAF71FD7DC3DF807CF025617C774CEF33C0B718 ] UrsCx01000      C:\Windows\system32\drivers\urscx01000.sys
11:31:00.0543 0x1198  UrsCx01000 - ok
11:31:00.0606 0x1198  [ 9DD431F1B94789CFB527E5D19261F124, 8F5A249A97C5B14B282E3147DD21951D2AD34B651E762814C12F4C26D74EC70C ] UrsSynopsys     C:\Windows\System32\drivers\urssynopsys.sys
11:31:00.0652 0x1198  UrsSynopsys - ok
11:31:00.0746 0x1198  [ C87E32B90F085970D9637FBAD45EF6FE, C180EACD2EE479277DA5DBF39E43B428BD7945141B2451CB3946B0C1E495E76F ] usbccgp         C:\Windows\System32\drivers\usbccgp.sys
11:31:00.0793 0x1198  usbccgp - ok
11:31:00.0824 0x1198  [ 0B663856474AC41924D9E9112203858F, 9E09F2A6279B48CAC09F8C7AA1F1BE02864D540C2ED1460CBA9FABCF0A546A1E ] usbcir          C:\Windows\System32\drivers\usbcir.sys
11:31:00.0824 0x1198  usbcir - ok
11:31:00.0856 0x1198  [ F83D2250256203AC5DA5E8601C1AFDD7, AC0D90E2DB3051798B9D287CF3D0E92FED4000822E65A82775A29CF896B76F04 ] usbehci         C:\Windows\System32\drivers\usbehci.sys
11:31:00.0871 0x1198  usbehci - ok
11:31:00.0934 0x1198  [ 7FFD26742321919590ED77FCA556D65F, F7FAB63C36F8519F5A7B9091C507F3CB580C390322FAF9155CCE7F66C965B968 ] usbhub          C:\Windows\System32\drivers\usbhub.sys
11:31:01.0027 0x1198  usbhub - ok
11:31:01.0090 0x1198  [ 7A749B2863B5561BE34B39E8E249AD8F, E5B67DFAF5407007FD0CC408D6B4BA19DF59584819FC715E9F9E0FBF3EA00AAB ] USBHUB3         C:\Windows\System32\drivers\UsbHub3.sys
11:31:01.0137 0x1198  USBHUB3 - ok
11:31:01.0153 0x1198  [ D2109F1F4FEBF1DAC415CDC5DE876479, C8A871EBD0E5EF004BA622A73DAC36C03608CD317FDCD0A6A98608DF4CC10D55 ] usbohci         C:\Windows\System32\drivers\usbohci.sys
11:31:01.0199 0x1198  usbohci - ok
11:31:01.0262 0x1198  [ 29C9572F2D061CFC3C0BD48A3163E343, 2527DCC9E6D421F5DC40051C787A5270EB077746785465C9AA2A2AEEF47307D5 ] usbprint        C:\Windows\System32\drivers\usbprint.sys
11:31:01.0294 0x1198  usbprint - ok
11:31:01.0325 0x1198  [ 429477D6DEF3321FF7D3EF23CAAADA00, BB7D2AFE99736AAFFA8B0B2DABF7D6A6D5CB9563B1DE6A7E86CE7DC9D27F31C0 ] usbser          C:\Windows\System32\drivers\usbser.sys
11:31:01.0340 0x1198  usbser - ok
11:31:01.0371 0x1198  [ 0CC16F7B91C57AE9A4E44425A295FDAA, 7CEE11955E5742DA390601F565412C14A7481B8747C495CCD246696C56B426DC ] USBSTOR         C:\Windows\System32\drivers\USBSTOR.SYS
11:31:01.0387 0x1198  USBSTOR - ok
11:31:01.0419 0x1198  [ C917D09064CDBD18F75ADC9B2C48F847, A7F6223346CCD7E84186CD0C0715014F8E3A4398298925A43290224678620D23 ] usbuhci         C:\Windows\System32\drivers\usbuhci.sys
11:31:01.0466 0x1198  usbuhci - ok
11:31:01.0590 0x1198  [ B4F448F2424492F99F83D3676A453553, 42F1396616EA93BF91EA847B185C321B189F1A5138CA19D22397E8DB6D576973 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
11:31:01.0622 0x1198  usbvideo - ok
11:31:01.0747 0x1198  [ 95BCCEFBC40D06484CF16144FE79B8A5, 8ABA73C5FFEDD319FB96B807AD08716698E557522478DF1A2C5D662675636AE0 ] USBXHCI         C:\Windows\System32\drivers\USBXHCI.SYS
11:31:01.0825 0x1198  USBXHCI - ok
11:31:02.0106 0x1198  [ 4CC81AB9D380A6264FF4C0C1512CF965, 76C33053D1C9155B0F3F8392FF982AD4EABEE2BBBEE89EA41DBFE8E436973EB0 ] UserDataSvc     C:\Windows\System32\userdataservice.dll
11:31:02.0184 0x1198  UserDataSvc - ok
11:31:02.0512 0x1198  [ AA24C61D88E36BA1144072227922173D, 2EBBC827E740F72EA2E75745E585378189BC0DEE91CACD7FA31BDBC5EFCF8733 ] UserManager     C:\Windows\System32\usermgr.dll
11:31:02.0684 0x1198  UserManager - ok
11:31:02.0887 0x1198  [ C75B1B48BCAADEB0275C1EBE2EAE742D, 19875B87BDB23E5B60D6D3173FDF7A7634E81E43501529A56FFCCEE21B7E3B71 ] UsoSvc          C:\Windows\system32\usocore.dll
11:31:02.0934 0x1198  UsoSvc - ok
11:31:02.0965 0x1198  [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] VaultSvc        C:\Windows\system32\lsass.exe
11:31:02.0981 0x1198  VaultSvc - ok
11:31:02.0997 0x1198  [ 0CBDE344FB48E42D78E29469F202ADBC, A1C3FBA5409DD3BBEAF1D3CE2583D6C8A621C0E4F534155EC540AFD67BC9E8CA ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
11:31:03.0012 0x1198  vdrvroot - ok
11:31:03.0137 0x1198  [ 0783EDE1FA94649ED7F3CEF6A734041A, 1A13A613EF6B67459031C7994FFC6F32F73E02E0F123A171618E4F011C635684 ] vds             C:\Windows\System32\vds.exe
11:31:03.0231 0x1198  vds - ok
11:31:03.0278 0x1198  [ 723195568C8755CAD57F7933C5F2C5C2, 5C403799F67223605F825BC16D217C1EF5E1A0DDF00AC6380FE8976339B67D9B ] VerifierExt     C:\Windows\system32\drivers\VerifierExt.sys
11:31:03.0278 0x1198  VerifierExt - ok
11:31:03.0387 0x1198  [ C12B4859FC255AA6B3021CF8BB14A11F, E95922351825D23ABCADD173E9256FC9AFFF28555DD1971CFF5666A2055958C5 ] vhdmp           C:\Windows\System32\drivers\vhdmp.sys
11:31:03.0418 0x1198  vhdmp - ok
11:31:03.0465 0x1198  [ 7929228F0E8B0C2FA0495A17A4FC27F6, 1F1667B10A96B1D85ED165F62A5C0EF28C37F828B8280EA08BFCC1BAC03F2C90 ] vhf             C:\Windows\System32\drivers\vhf.sys
11:31:03.0465 0x1198  vhf - ok
11:31:03.0497 0x1198  [ AEE432ED868831B1F068E373598F6D93, BAE91F47B0CB94B826CA010B490AD924D7B715911DF3FCE62F9165F3B571105C ] vmbus           C:\Windows\system32\drivers\vmbus.sys
11:31:03.0512 0x1198  vmbus - ok
11:31:03.0541 0x1198  [ 9444B23FC694B5F90F21B0FC7F10D8DD, 86F92856F5C985DD8E5993B51E85E1F47EF8C9B2FB37468998C94266963BB4BD ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
11:31:03.0541 0x1198  VMBusHID - ok
11:31:03.0556 0x1198  [ 4D0287F566B36536DD812A54C015FC4A, 01D6508CA59CF04A47902B1F7C202FD14A81240E0B447588D919DD1072B040CF ] vmgid           C:\Windows\System32\drivers\vmgid.sys
11:31:03.0556 0x1198  vmgid - ok
11:31:03.0650 0x1198  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicguestinterface C:\Windows\System32\icsvc.dll
11:31:03.0666 0x1198  vmicguestinterface - ok
11:31:03.0697 0x1198  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicheartbeat   C:\Windows\System32\icsvc.dll
11:31:03.0712 0x1198  vmicheartbeat - ok
11:31:03.0728 0x1198  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmickvpexchange C:\Windows\System32\icsvc.dll
11:31:03.0744 0x1198  vmickvpexchange - ok
11:31:03.0806 0x1198  [ 0F621B52259D88A719AA20C6D04E3D72, 80B0528CCDE6E1B6F092787E1C0769C649698B196602859A5855134F0ECCBAE5 ] vmicrdv         C:\Windows\System32\icsvcext.dll
11:31:03.0837 0x1198  vmicrdv - ok
11:31:03.0900 0x1198  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicshutdown    C:\Windows\System32\icsvc.dll
11:31:03.0916 0x1198  vmicshutdown - ok
11:31:03.0931 0x1198  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmictimesync    C:\Windows\System32\icsvc.dll
11:31:03.0947 0x1198  vmictimesync - ok
11:31:03.0978 0x1198  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicvmsession   C:\Windows\System32\icsvc.dll
11:31:03.0978 0x1198  vmicvmsession - ok
11:31:04.0009 0x1198  [ 0F621B52259D88A719AA20C6D04E3D72, 80B0528CCDE6E1B6F092787E1C0769C649698B196602859A5855134F0ECCBAE5 ] vmicvss         C:\Windows\System32\icsvcext.dll
11:31:04.0025 0x1198  vmicvss - ok
11:31:04.0041 0x1198  [ 29075915F9BDC3437F8BED71C067D399, 2C7718080C11DFDD4C9A2085537F78F5633369B4A27D9C64168F0249594A4AA2 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
11:31:04.0041 0x1198  volmgr - ok
11:31:04.0119 0x1198  [ 6BDB6CE6D2D9E3D3F28F1C97E12B62E2, 5E77D7AF858D7B90FF395F39B86D6F96413D1DDEA28BC9FB40C5524A4DF6DAD0 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
11:31:04.0134 0x1198  volmgrx - ok
11:31:04.0197 0x1198  [ BF2546583BB75F01DDA60A7921DFB230, 579BD0BC55F4F03CD8D1FCDAC3975A1649C688820F2F7FC1AD354132D9E3BEE9 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
11:31:04.0212 0x1198  volsnap - ok
11:31:04.0244 0x1198  [ AC2E20A74D09D24485BE8396CE04F07B, 23FCE8BEE01B89E5CDCA536D75DBA6DCE3E92E13178A66836CEB7829310A89D1 ] volume          C:\Windows\system32\drivers\volume.sys
11:31:04.0244 0x1198  volume - ok
11:31:04.0306 0x1198  [ 92F6E3E6D3F1795263EB34B37F74AEF7, 33AB1ECCA1216AF1995E1DB4F11E48156FF62391D7C176C8A4CC1037B9CB3A27 ] vpci            C:\Windows\System32\drivers\vpci.sys
11:31:04.0369 0x1198  vpci - ok
11:31:04.0447 0x1198  [ FD9BCB8920973CEAD4D49DC7A6D8A618, 34AB4A485FB40DF737600006D8323BE927FB0BDA2BC170F4C123BE775EAE7CC8 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
11:31:04.0478 0x1198  vsmraid - ok
11:31:04.0791 0x1198  [ 01FFD5AF533F2CFDF26DDDC9313731C1, BFF0F2E57CD2358AC8F519F6F5692A46D97EC4E9B763D47101CEF31712FD4738 ] VSS             C:\Windows\system32\vssvc.exe
11:31:04.0869 0x1198  VSS - ok
11:31:04.0947 0x1198  [ 0C111F220798CCE80484026E06822379, B98A5E44D3ABA67E6DE99E18BF3C2C606923E6269E262665C721F672ACBBED2A ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
11:31:04.0963 0x1198  VSTXRAID - ok
11:31:04.0994 0x1198  [ 607639716E9DB1CEF4E18B5B229293B4, 1D997177093F907EFE8A04AD10443BB9C355C0D7657DBD449E7EE7FCABC3ECBC ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
11:31:05.0009 0x1198  vwifibus - ok
11:31:05.0041 0x1198  [ B1ED64E628763148BF84FBE23F2AD711, 6182A39675E6049BC3DD353694720795A8E3D0331509AA8ABA4883D5C569AD5E ] vwififlt        C:\Windows\system32\drivers\vwififlt.sys
11:31:05.0181 0x1198  vwififlt - ok
11:31:05.0213 0x1198  [ 59920894C38A827091A06AF559834E47, 8B40FE0B1BA3B2A79BFF70803D039DB921F85C978724722E5E5AFF188FA75471 ] vwifimp         C:\Windows\System32\drivers\vwifimp.sys
11:31:05.0213 0x1198  vwifimp - ok
11:31:05.0353 0x1198  [ 76C1CC611352499326001F25A3ED15F8, 228BFA8A01BB1B3868576D509A2EA6F3D37FEDC8F12D4DC4E0A84CE926C6D1B1 ] W32Time         C:\Windows\system32\w32time.dll
11:31:05.0400 0x1198  W32Time - ok
11:31:05.0431 0x1198  [ 55D00B785A7587F4263D125817871283, B92400B229099C1E243F2B149881A1423A2E9C8CA2D77D868B9B923BFDEC7FF2 ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
11:31:05.0431 0x1198  WacomPen - ok
11:31:05.0509 0x1198  [ 1483BE4D0135C378CB61D3CD73AB3E03, B7309C9E4F370860C507BF52D17234CDF4A7FAE95D2D822714E07EF5DEC0249B ] WalletService   C:\Windows\system32\WalletService.dll
11:31:05.0525 0x1198  WalletService - ok
11:31:05.0572 0x1198  [ CEF3D306C09BEC1A800E9B4A06F859F6, 75D21F97E9F94FA97024F945AF512FEC94F88DD8073F3FAD92A6E0A9FDC586DB ] wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
11:31:05.0588 0x1198  wanarp - ok
11:31:05.0588 0x1198  [ CEF3D306C09BEC1A800E9B4A06F859F6, 75D21F97E9F94FA97024F945AF512FEC94F88DD8073F3FAD92A6E0A9FDC586DB ] wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
11:31:05.0588 0x1198  wanarpv6 - ok
11:31:05.0697 0x1198  [ DEAF4B5FF5BE695E0639176B00F03B5B, ACE48140A3D0FEF534ED5ADBFBA6532E5AEDD6CD0A5CAC699FC761DEB449FCEC ] WavesSysSvc     C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
11:31:05.0728 0x1198  WavesSysSvc - ok
11:31:05.0978 0x1198  [ 30B8286F8FE1AE90A583100D45E02247, 3C86A4A5E21F9A1267EA231B20914E0A162BA4C25FE8917AD3AB6D504DA5BE0C ] wbengine        C:\Windows\system32\wbengine.exe
11:31:06.0056 0x1198  wbengine - ok
11:31:06.0119 0x1198  [ 7C4FAE7A8D55C897E5AE681B245A005F, 7E1E6299579BF02E89C5B828A1C19A43FF4E1F43D46D058F8DC0A8E6421C86A7 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
11:31:06.0197 0x1198  WbioSrvc - ok
11:31:06.0259 0x1198  [ E330144B97D493AA886000DCAAA8DAF5, ED86F46F5A76FD8F06CA98BD61B174ADB9AD4B065394356872708DF8B614E4F9 ] wcifs           C:\Windows\system32\drivers\wcifs.sys
11:31:06.0275 0x1198  wcifs - ok
11:31:06.0353 0x1198  [ 32960EA9CF836D7DD77767DCB68CE230, 679446A4FAB0331C181D2716CAEA225267C6164BB9867E360C5B3D6AB1083195 ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
11:31:06.0416 0x1198  Wcmsvc - ok
11:31:06.0447 0x1198  [ D50645235A507B0546B1B5CF7D0B8849, 19F5FE10C953B8EE8EEDA9A9F7F2E97AA193BB085E7FC364066686089ADD1C9F ] wcncsvc         C:\Windows\System32\wcncsvc.dll
11:31:06.0478 0x1198  wcncsvc - ok
11:31:06.0494 0x1198  [ AEA1093B751339267D8C8C1EF3D669CF, 8F3325E7FB16BD856A0593C36F2E3E018909038C52CD5F92E116E0C1366F31CB ] wcnfs           C:\Windows\system32\drivers\wcnfs.sys
11:31:06.0494 0x1198  wcnfs - ok
11:31:06.0541 0x1198  [ D520B1B849B6D4D707AB31722B952C2D, 149BABB7BD63C1F212ADD9306C84FFB2A5CE6DC435BD3213EAB787E9B222C61F ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
11:31:06.0541 0x1198  WdBoot - ok
11:31:06.0728 0x1198  [ 5030C76047D756263093A47B82970868, E772F15973F6DE36851DD230F1F4190746CD81CA1E7284DC074711C4BF45CAF0 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
11:31:06.0759 0x1198  Wdf01000 - ok
11:31:06.0806 0x1198  [ 29FF9199EDEB4F5470BB134D1A2563D2, 94713F98A6EA6042203D5DD0DE6758F5F0F331F7D4BB05E91EF20CEEEBD6780F ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
11:31:06.0822 0x1198  WdFilter - ok
11:31:06.0853 0x1198  [ E7A7E8803E66B7CCED95D327A4DBC135, 401ECD953D4014A95C9022822D9ACEC1A68C917281DBA2365503A473FC6D9507 ] WdiServiceHost  C:\Windows\system32\wdi.dll
11:31:06.0853 0x1198  WdiServiceHost - ok
11:31:06.0869 0x1198  [ E7A7E8803E66B7CCED95D327A4DBC135, 401ECD953D4014A95C9022822D9ACEC1A68C917281DBA2365503A473FC6D9507 ] WdiSystemHost   C:\Windows\system32\wdi.dll
11:31:06.0884 0x1198  WdiSystemHost - ok
11:31:06.0994 0x1198  [ 8CB606A3057355FD5A9DBDD1A0AC94EF, 6DD0B4A2270633086EBB569A00B87430EE6EF173525E341404B15845B57BE86D ] wdiwifi         C:\Windows\system32\DRIVERS\wdiwifi.sys
11:31:07.0041 0x1198  wdiwifi - ok
11:31:07.0088 0x1198  [ 17CF416CFF408190F5A4CBD79AB12E55, E376C8865C7EA633AE20D2CF940E4C7584AC783BAAF7941780FB6C4C84802F33 ] WdNisDrv        C:\Windows\system32\Drivers\WdNisDrv.sys
11:31:07.0103 0x1198  WdNisDrv - ok
11:31:07.0150 0x1198  WdNisSvc - ok
11:31:07.0197 0x1198  [ 3570C4E14F85CE0B537D126727ACA91C, A474C9E6B6E4E5945C63367C1D3D24D4782C4A4FEB00FAE15DFED099D8283078 ] WebClient       C:\Windows\System32\webclnt.dll
11:31:07.0228 0x1198  WebClient - ok
11:31:07.0265 0x1198  [ 1785F9C96A0BDEC1F6E0C79EF412F342, D6D4EDA69457BEDDA69C2F60FC4C2FAC97D46CD8E9C1804CCD68F169383583E3 ] Wecsvc          C:\Windows\system32\wecsvc.dll
11:31:07.0281 0x1198  Wecsvc - ok
11:31:07.0312 0x1198  [ B9175D63527B05131F2FA504CF0265F2, 1E43A17788F1B6A29E2889C81E0BE100D64BD3A9DEE7C154D9581F01D2D7D05F ] WEPHOSTSVC      C:\Windows\system32\wephostsvc.dll
11:31:07.0327 0x1198  WEPHOSTSVC - ok
11:31:07.0406 0x1198  [ 5C58EC0C9D4DE04DCDE56F6DCEA62080, 8ED386EDF4C39C339CE0BB2AC7E199C38705E5A6B3F56A4987B9A8ABD19BB59F ] wercplsupport   C:\Windows\System32\wercplsupport.dll
11:31:07.0437 0x1198  wercplsupport - ok
11:31:07.0468 0x1198  [ F899B355CC95AF26AB36E84E8A0DD685, C400F2F80FFF6473FEF066943C4A2AFF0FFE988A4F755757A2E5005C2A10DAD8 ] WerSvc          C:\Windows\System32\WerSvc.dll
11:31:07.0484 0x1198  WerSvc - ok
11:31:07.0535 0x1198  [ E1785942AC51FEE6826CDF02075C5AA9, 56FE7017684086F4F9C3A2C0D3AC00369BA0938BA3987EEBEE9A75B8E3CA0AE1 ] WFPLWFS         C:\Windows\system32\drivers\wfplwfs.sys
11:31:07.0551 0x1198  WFPLWFS - ok
11:31:07.0597 0x1198  [ B154618505A6A9026EFA6AB8C4123BF1, 713648D71AA027B4472E7E75B942630DBE7383687984B02A5E99C9E4192C95EB ] WiaRpc          C:\Windows\System32\wiarpc.dll
11:31:07.0613 0x1198  WiaRpc - ok
11:31:07.0644 0x1198  [ 0CF79A0EACFFBB75A50A469A27696D02, E112BF7B5A8D0B0AD2EA0E7B9FD4E8CFEC9371C8E94A60248292D688AFE715C4 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
11:31:07.0644 0x1198  WIMMount - ok
11:31:07.0660 0x1198  WinDefend - ok
11:31:07.0723 0x1198  [ 0DE131733317EB4BE67028366B0CAAC6, AC7DADBF03A3752B4D33CA19F03DBCEDD6F56893C2DA25C98B0AB07063D990E3 ] WindowsTrustedRT C:\Windows\system32\drivers\WindowsTrustedRT.sys
11:31:07.0723 0x1198  WindowsTrustedRT - ok
11:31:07.0738 0x1198  [ 92EB5D38BDF10C790450F3E46BF93A0E, 0FC027398DBD43EDC1F7D703C0B6DB20294DF34E67C9288442039B1A5663CE1B ] WindowsTrustedRTProxy C:\Windows\system32\drivers\WindowsTrustedRTProxy.sys
11:31:07.0754 0x1198  WindowsTrustedRTProxy - ok
11:31:07.0863 0x1198  [ C2A3B07F0118D61086C99BDCBAB6A6A3, 04D646BEF1C6F427503C594F0ECBB33140C3991A3A7AFB66B2C9581E358F9FD2 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
11:31:07.0910 0x1198  WinHttpAutoProxySvc - ok
11:31:07.0941 0x1198  [ F95DE20312ACCA7761446DE152BD1F7C, F6C5ACA500C2182437F4A7402BD81C3A2B77C0BBD78BA31FB574DC1997FCBFE6 ] WinMad          C:\Windows\System32\drivers\winmad.sys
11:31:07.0957 0x1198  WinMad - ok
11:31:08.0035 0x1198  [ CD49CA8E3280ACEEC5ECF431A59F5EFD, 75F48EFC6DEE9E06B490703EE47602AFDEA51505285B02D2CF884601E71857CC ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
11:31:08.0066 0x1198  Winmgmt - ok
11:31:08.0285 0x1198  [ A26570B4A21AD6F4D597148D3C22274E, 594BD3B9B9B4027E5A7025CAB715378FB565FC5E00A0315A2EC3A6EFBC9CC72E ] WinRM           C:\Windows\system32\WsmSvc.dll
11:31:08.0441 0x1198  WinRM - ok
11:31:08.0504 0x1198  [ 4EFB346BFDAEEB29316AA52BBB9852B1, 4BC5554F44BD9549D0A929D77BD410FA3EB502A7D0170303D369268672505494 ] WINUSB          C:\Windows\System32\drivers\WinUSB.SYS
11:31:08.0504 0x1198  WINUSB - ok
11:31:08.0519 0x1198  [ 8B9AFF5F08E66A6F1F1063DEC9457FB6, 98F2AF6988D125521FD34CAA48B9652922F0C8ECFAE9B0C1DF4B3CE6B9CF500F ] WinVerbs        C:\Windows\System32\drivers\winverbs.sys
11:31:08.0519 0x1198  WinVerbs - ok
11:31:08.0629 0x1198  [ 239B9AB452DE728ABCB5E957FAE2699D, CDA8293358CCA0AC247950A2F104E3554DEEEDC6C57CAC8350606D5612B8CA62 ] wisvc           C:\Windows\system32\flightsettings.dll
11:31:08.0676 0x1198  wisvc - ok
11:31:08.0834 0x1198  [ 7671078AEF4C0203B053A9642C401FF7, BBFADA89CD31F20ADDBFAFAD2E492C72D82BF2F8B823BB6773F04D229B62534C ] WlanSvc         C:\Windows\System32\wlansvc.dll
11:31:08.0950 0x1198  WlanSvc - ok
11:31:09.0090 0x1198  [ 7A98AF088E0B1A5EB98863B14F493716, 8B2F8D02AC0637C72859AF29C05C01D7D1C81C6A15CBE2D579F27F3254E66076 ] wlidsvc         C:\Windows\system32\wlidsvc.dll
11:31:09.0200 0x1198  wlidsvc - ok
11:31:09.0215 0x1198  [ 6F4F4F5A007D1710BD76FB311DA97C07, FC0FEA4364F6BA4E31DBC82735D09D429CA3BE9AFCFF5D5E1263D8B27FC2CE3E ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
11:31:09.0231 0x1198  WmiAcpi - ok
11:31:09.0278 0x1198  [ 3CDDFF6CAD962C5EF1C52FD667C358B6, F6F09145E9461EB17172988D26749FCF36920A1A683459334D04A6D072B31A92 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
11:31:09.0293 0x1198  wmiApSrv - ok
11:31:09.0340 0x1198  WMPNetworkSvc - ok
11:31:09.0403 0x1198  [ 43C8D087B31C592163B33A4BDA540E40, 3A6C4E5E56931B29321DCC723585F2F0E804EF4DCDEAB2A8687F30FC3AE70E43 ] Wof             C:\Windows\system32\drivers\Wof.sys
11:31:09.0418 0x1198  Wof - ok
11:31:09.0575 0x1198  [ 909CB4BBF7B08E78C363000E09E79A6F, 217205D1B5EE03274AFF9405AED6D2A5665CBA4C3876E84B53DA44920CDF9CB1 ] workfolderssvc  C:\Windows\system32\workfolderssvc.dll
11:31:09.0700 0x1198  workfolderssvc - ok
11:31:09.0731 0x1198  [ F02930EB91596042F2221397D60AFCE5, 10E2AB0993B67CBAA9E11C68280608965064EC9F7E0C570F5B453FACADB8AB5D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
11:31:09.0746 0x1198  WPDBusEnum - ok
11:31:09.0778 0x1198  [ 75A9284F01FE7CB1A7D5EAE5C1EB4F33, 390EF23AEA06D8711555F7979FF8BE0620B53C1A551638C4EC6FB7C6678965B3 ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
11:31:09.0778 0x1198  WpdUpFltr - ok
11:31:09.0809 0x1198  [ 60E2EB3E7B7F15C25E02462159F90707, D8344B529EEC0D4922CAC3E6897CC9F191ACF1376017BE38ED6BF6019F1ED181 ] WpnService      C:\Windows\system32\WpnService.dll
11:31:09.0840 0x1198  WpnService - ok
11:31:09.0872 0x1198  [ C7C91FB86A3C6CD7619725A88ED1884C, 132C43C518F37BF303D768BD5FB0AB835F693C43FE693937D804A34E940D770F ] WpnUserService  C:\Windows\System32\WpnUserService.dll
11:31:09.0903 0x1198  WpnUserService - ok
11:31:09.0934 0x1198  [ 36D7B73ADC3E10607ED6EC874AFB5D1E, 1737B3E4D2CA76BB27903BF460E4960E6A0BC32D35069AC7C5E4B07F625F3282 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
11:31:09.0950 0x1198  ws2ifsl - ok
11:31:10.0012 0x1198  [ FF190115CBA067F58C981F0A9F43ABDF, C90353C748C02DB38B561C250682E12C82985A6F7ED7D497AF5DE10EC243FCBA ] wscsvc          C:\Windows\System32\wscsvc.dll
11:31:10.0028 0x1198  wscsvc - ok
11:31:10.0043 0x1198  [ 696EC2EAA2A42A137CCBB9A84D6917C0, 424089F4F373962AF8357C5D4D43F35948989BE3F58EAD3690F565F4C1BBC66F ] WSDPrintDevice  C:\Windows\System32\drivers\WSDPrint.sys
11:31:10.0059 0x1198  WSDPrintDevice - ok
11:31:10.0090 0x1198  [ 46E4A69825A7554A5DB784A55F8AD203, 7F347054FCDD5DEF93083D420E56EBE5EEBBAE2BD2FED9B2E75E85149DE52780 ] WSDScan         C:\Windows\system32\DRIVERS\WSDScan.sys
11:31:10.0090 0x1198  WSDScan - ok
11:31:10.0106 0x1198  WSearch - ok
11:31:10.0246 0x1198  [ 6BA66FE47BFAF223AEE6C98F28EB4D8E, 3B380329594DAD5BB50301F5A8A912BF6121788F395133C70C893879F68450FB ] wuauserv        C:\Windows\system32\wuaueng.dll
11:31:10.0387 0x1198  wuauserv - ok
11:31:10.0434 0x1198  [ AED7FE551E8672B824A56324076183EB, FFE543AAEFDEFFE6B20C244DB141A9425BDA88ED36F4870F0B70FEC433BDF0C1 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
11:31:10.0434 0x1198  WudfPf - ok
11:31:10.0465 0x1198  [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
11:31:10.0481 0x1198  WUDFRd - ok
11:31:10.0512 0x1198  [ 47F6450F28BAA32B2AB0D6BE00996249, C8A47D6ADF89AD613AB685C6224B9099DCEFDCD8ABCF703542AFDC356404116E ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
11:31:10.0543 0x1198  wudfsvc - ok
11:31:10.0575 0x1198  [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] WUDFWpdFs       C:\Windows\system32\DRIVERS\WUDFRd.sys
11:31:10.0606 0x1198  WUDFWpdFs - ok
11:31:10.0746 0x1198  [ D4F2FFCF5D199152DD01026D3AA38138, 4F90FE9BFC6CC2ABB2A163A36A000458A96AB64071861582F17B74C95CAEFB32 ] WwanSvc         C:\Windows\System32\wwansvc.dll
11:31:10.0965 0x1198  WwanSvc - ok
11:31:11.0090 0x1198  [ F39D6915451D9226AC9A5E7AE70E2ABA, E05D678DC0423A4D0EB8B3BB5A942721BB4F3B0BED22748252DBD6053FE956F1 ] XblAuthManager  C:\Windows\System32\XblAuthManager.dll
11:31:11.0169 0x1198  XblAuthManager - ok
11:31:11.0289 0x1198  [ 765FF96467A26C4C03281ECA426EC2D9, 2526B03C518D72F429C29BA4D4F11707AF277BF71520A1A92238A932950AE161 ] XblGameSave     C:\Windows\System32\XblGameSave.dll
11:31:11.0430 0x1198  XblGameSave - ok
11:31:11.0477 0x1198  [ C1E85B4FB08B4CCF16841B165910148B, AB33A6630BFC0E230BA464F721DD4ABB7DF79DF2D81C9C7366CC0BA2251F09F3 ] xboxgip         C:\Windows\System32\drivers\xboxgip.sys
11:31:11.0493 0x1198  xboxgip - ok
11:31:11.0602 0x1198  [ 335E6F2BE58523B295945C840C185B00, 94ED7E2CB212A3D55B8A2CB90CD1D02A6AF92DC0DDD487CB5B7CAC9883343460 ] XboxNetApiSvc   C:\Windows\system32\XboxNetApiSvc.dll
11:31:11.0664 0x1198  XboxNetApiSvc - ok
11:31:11.0696 0x1198  [ 63088A3361D9A308F328F11E9099DD87, E03FDB932FC57F199C8F8A8EADA338BDF7D2F9C6CB8FAB679A92B48B1E5AFE8A ] xinputhid       C:\Windows\System32\drivers\xinputhid.sys
11:31:11.0711 0x1198  xinputhid - ok
11:31:11.0711 0x1198  ================ Scan global ===============================
11:31:11.0758 0x1198  [ 0C710DB449712EE13ACE733695DB7780, BBC7875B38D318CE4E88979D083AC72E8993254A466A8A6882DDE9E0C3B687A3 ] C:\Windows\system32\basesrv.dll
11:31:11.0821 0x1198  [ C509CCD23B086DFC9EAF86E280043672, BF431DC1C618BAF0CB67976C5A8BCCDC3F3CB266F83C614D605BA559BA8EDFD8 ] C:\Windows\system32\winsrv.dll
11:31:11.0883 0x1198  [ 1EE06E957B0B2CA52D26DA7861E160EF, 4B743A1C7010138F5F6684BBCF7CAD6FD05F49920BDD3FDB776347AA6B44AB94 ] C:\Windows\system32\sxssrv.dll
11:31:11.0946 0x1198  [ 133390D061D94917125DC666DA67ECD0, 69D6FFF3E0A0C4D77A62B4D71E1E3A8D10D93C46782A1B05F0EC4B8919C384B9 ] C:\Windows\system32\services.exe
11:31:11.0977 0x1198  [ Global ] - ok
11:31:11.0977 0x1198  ================ Scan MBR ==================================
11:31:12.0008 0x1198  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
11:31:12.0024 0x1198  \Device\Harddisk0\DR0 - ok
11:31:12.0024 0x1198  ================ Scan VBR ==================================
11:31:12.0039 0x1198  [ 5B641980E7D8A2A33CB35C8C860E19C6 ] \Device\Harddisk0\DR0\Partition1
11:31:12.0039 0x1198  \Device\Harddisk0\DR0\Partition1 - ok
11:31:12.0055 0x1198  [ 2D524F05766D084E9BC1747B63390F77 ] \Device\Harddisk0\DR0\Partition2
11:31:12.0055 0x1198  \Device\Harddisk0\DR0\Partition2 - ok
11:31:12.0086 0x1198  [ D81049482750A37AD6A9840BE49F2F61 ] \Device\Harddisk0\DR0\Partition3
11:31:12.0086 0x1198  \Device\Harddisk0\DR0\Partition3 - ok
11:31:12.0118 0x1198  [ 2BF141B7CF64CD7FE354B3BFFC6E808D ] \Device\Harddisk0\DR0\Partition4
11:31:12.0133 0x1198  \Device\Harddisk0\DR0\Partition4 - ok
11:31:12.0149 0x1198  [ E7CED422B0E45D33110D6A90A1F41994 ] \Device\Harddisk0\DR0\Partition5
11:31:12.0149 0x1198  \Device\Harddisk0\DR0\Partition5 - ok
11:31:12.0149 0x1198  ================ Scan generic autorun ======================
11:31:12.0446 0x1198  [ 6AAE6A6C5DABC6A772B8F74FC38AEC3C, 15AA6C807EADAFA11BC191FE048D692D634F9EE68361111E33039A645E7E40C2 ] c:\Program Files\Dell\QuickSet\QuickSet.exe
11:31:12.0664 0x1198  QuickSet - ok
11:31:13.0180 0x1198  [ F3CF399554A38AC9032D1D80D0EFAD1F, 98B16D47B5572B1C4C3ADF1BE3CF1A8EBBFD50C1424212C162FFAED3AFC1E1E1 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
11:31:13.0602 0x1198  RTHDVCPL - ok
11:31:13.0743 0x1198  [ 14B1DB0E2E45772326B9594B390C4683, 25FA59D0953895205E154D283222096E6C55F71383FB7C4179AA95BC02E795AA ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
11:31:13.0821 0x1198  RtHDVBg_MAXX6 - ok
11:31:13.0883 0x1198  [ 5AC01F2DAD6D219934AAA15D2C81F3DB, 31C35CEDD16ACB91E4433BC0B0441EEB2D26CC7BD91C68400AFD36E50C16F2FD ] C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
11:31:13.0915 0x1198  WavesSvc - ok
11:31:13.0915 0x1198  SynTPEnh - ok
11:31:13.0993 0x1198  [ DF8DBBD8F5342C7BA598C606602B6352, FAF603820007A97898A56E62423B137E743A8A9CED0099532514E2F15BAAE334 ] C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe
11:31:14.0024 0x1198  isa - ok
11:31:14.0586 0x1198  [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\SysWOW64\OneDriveSetup.exe
11:31:15.0071 0x1198  OneDriveSetup - ok
11:31:15.0570 0x1198  [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\SysWOW64\OneDriveSetup.exe
11:31:15.0852 0x1198  OneDriveSetup - ok
11:31:16.0352 0x1198  [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\SysWOW64\OneDriveSetup.exe
11:31:16.0633 0x1198  OneDriveSetup - ok
11:31:16.0914 0x1198  [ CD7DC286D2FDFACB965C3E10967B2199, 30FFB133E70D694BE6968E86E999C797EE7349DCC4E9ACFB338412C039374388 ] C:\Users\Pearl\AppData\Local\Microsoft\OneDrive\OneDrive.exe
11:31:17.0008 0x1198  OneDrive - ok
11:31:17.0195 0x1198  [ 38372AA4CC9FBD0EB7A26FC7B5F24562, C70B8CBB2AC962B343535454E4F2BCB3E48D83A04792C64BC768D59B3C1BF403 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
11:31:17.0242 0x1198  GoogleChromeAutoLaunch_E3ABC10D9B11EEE29EE2F375EE0074E1 - ok
11:31:17.0258 0x1198  Waiting for KSN requests completion. In queue: 246
11:31:18.0336 0x1198  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x60100 ( disabled : updated )
11:31:18.0336 0x1198  AV detected via SS2: Norton Security, C:\Program Files (x86)\Norton Security\Engine\22.9.0.68\WSCStub.exe ( 22.9.0.0 ), 0x51000 ( enabled : updated )
11:31:18.0352 0x1198  FW detected via SS2: Norton Security, C:\Program Files (x86)\Norton Security\Engine\22.9.0.68\WSCStub.exe ( 22.9.0.0 ), 0x51010 ( enabled )
11:31:18.0649 0x1198  ============================================================
11:31:18.0649 0x1198  Scan finished
11:31:18.0649 0x1198  ============================================================
11:31:18.0695 0x127c  Detected object count: 0
11:31:18.0695 0x127c  Actual detected object count: 0
11:31:39.0460 0x1a94  Deinitialize success

  • 0

#8
Pearlcatdesign

Pearlcatdesign

    Member

  • Topic Starter
  • Member
  • PipPip
  • 49 posts
11:29:36.0511 0x226c  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
11:29:36.0511 0x226c  UEFI system
11:29:45.0189 0x226c  ============================================================
11:29:45.0189 0x226c  Current date / time: 2017/02/17 11:29:45.0189
11:29:45.0205 0x226c  SystemInfo:
11:29:45.0205 0x226c  
11:29:45.0205 0x226c  OS Version: 10.0.14393 ServicePack: 0.0
11:29:45.0221 0x226c  Product type: Workstation
11:29:45.0221 0x226c  ComputerName: DESKTOP-D2759O6
11:29:45.0221 0x226c  UserName: Pearl
11:29:45.0221 0x226c  Windows directory: C:\Windows
11:29:45.0221 0x226c  System windows directory: C:\Windows
11:29:45.0221 0x226c  Running under WOW64
11:29:45.0221 0x226c  Processor architecture: Intel x64
11:29:45.0221 0x226c  Number of processors: 2
11:29:45.0221 0x226c  Page size: 0x1000
11:29:45.0221 0x226c  Boot type: Normal boot
11:29:45.0221 0x226c  CodeIntegrityOptions = 0x0000C001
11:29:45.0221 0x226c  ============================================================
11:29:47.0393 0x226c  KLMD registered as C:\Windows\system32\drivers\73995251.sys
11:29:47.0393 0x226c  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.351, osProperties = 0x19
11:29:54.0909 0x226c  System UUID: {E67A748A-8BBE-FBBF-963A-6813E07657B6}
11:30:02.0060 0x226c  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:30:02.0106 0x226c  ============================================================
11:30:02.0106 0x226c  \Device\Harddisk0\DR0:
11:30:02.0106 0x226c  GPT partitions:
11:30:02.0106 0x226c  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {9CD0F499-7A91-4057-9033-D877FD479F55}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0xFA000
11:30:02.0106 0x226c  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {AC46A05D-46CF-4ADD-B70B-23B0657582B3}, Name: Microsoft reserved partition, StartLBA 0xFA800, BlocksNum 0x40000
11:30:02.0106 0x226c  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {0FADB1D5-6EE3-4ABF-9CF4-5CDD521C7EED}, Name: Basic data partition, StartLBA 0x13A800, BlocksNum 0x38A16000
11:30:02.0106 0x226c  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {D87590F0-7D93-4F1B-8AF0-98D534C20F5B}, Name: , StartLBA 0x38B50800, BlocksNum 0xE1000
11:30:02.0106 0x226c  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {7732EED1-3CDF-4857-B10D-99AA8DBDF3B7}, Name: , StartLBA 0x38C31800, BlocksNum 0x1754800
11:30:02.0106 0x226c  MBR partitions:
11:30:02.0106 0x226c  ============================================================
11:30:02.0138 0x226c  C: <-> \Device\Harddisk0\DR0\Partition3
11:30:02.0138 0x226c  ============================================================
11:30:02.0138 0x226c  Initialize success
11:30:02.0138 0x226c  ============================================================
11:30:15.0387 0x1198  ============================================================
11:30:15.0387 0x1198  Scan started
11:30:15.0387 0x1198  Mode: Manual; 
11:30:15.0387 0x1198  ============================================================
11:30:15.0387 0x1198  KSN ping started
11:30:15.0575 0x1198  KSN ping finished: true
11:30:21.0195 0x1198  ================ Scan system memory ========================
11:30:21.0195 0x1198  System memory - ok
11:30:21.0195 0x1198  ================ Scan services =============================
11:30:21.0491 0x1198  [ A7901875F89D011C38CF52C98ACF5B29, 782141AB1DD7ACDE6EA08B5BAFDE8BADD05B81D38C18E097D6D9C46102056EB1 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
11:30:21.0491 0x1198  1394ohci - ok
11:30:21.0570 0x1198  [ EE1CCC54F75C24727A218F98FC5349DA, 0B0D26640BFA0F551B7087027E572D0BF2C5EAF50A4187C5A7D839180B7FF589 ] 3ware           C:\Windows\system32\drivers\3ware.sys
11:30:21.0585 0x1198  3ware - ok
11:30:21.0695 0x1198  [ 73C73E1AA0D4D727A04AAAB120B7F56A, 5D311F11022994410DF5C67914D38B1F0D813EFD181EA234750286A272D67A1A ] ACPI            C:\Windows\system32\drivers\ACPI.sys
11:30:21.0726 0x1198  ACPI - ok
11:30:21.0741 0x1198  [ 0935496EF9624B46B935CB35ECE1F205, A22A2A29195505A65E8626D60B00C86C23E0CABC1EB8345EA5ED523516CC21C0 ] AcpiDev         C:\Windows\System32\drivers\AcpiDev.sys
11:30:21.0741 0x1198  AcpiDev - ok
11:30:21.0757 0x1198  [ D6794C31F4077B71433988787BAA926E, F16365C2F195AAE94D4740E6C3DF4C0CECEC6393CAD65425DCCD28CDBA6EC51A ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
11:30:21.0757 0x1198  acpiex - ok
11:30:21.0773 0x1198  [ FE5F656D6B35089DA39112E74EC6A85A, 5D81EE63998232A5B36DE47FE15B9D04D5BD02234CA133A2462AECA8C60A22ED ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
11:30:21.0773 0x1198  acpipagr - ok
11:30:21.0788 0x1198  [ 2F242941E4DFF69B883D77A16F039557, 45C388365317C720654A659A9326B2BC0E9D84929C704654985597D5D620101C ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
11:30:21.0788 0x1198  AcpiPmi - ok
11:30:21.0804 0x1198  [ C247E35A21682DA8D0DC3AF9F025FCC5, 455415EE3166B3043AD8A4DD50B688DB74242267FB555642441251EFA823E971 ] acpitime        C:\Windows\System32\drivers\acpitime.sys
11:30:21.0804 0x1198  acpitime - ok
11:30:21.0913 0x1198  [ 874B1D3B016BB6051EED24E6F94DA18B, 7E5898F2A54CC014693BAC86BCCE5861E70A8FAA07D837589BE3CB47458665BB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:30:21.0929 0x1198  AdobeFlashPlayerUpdateSvc - ok
11:30:22.0057 0x1198  [ 49B9DB97AFC85DCCBDACDAB2E90085B7, 2A6C2A09F74EA15044F442CCFB54A0F24F105ADB915E5C78F02F59652DC29152 ] ADP80XX         C:\Windows\system32\drivers\ADP80XX.SYS
11:30:22.0081 0x1198  ADP80XX - ok
11:30:22.0175 0x1198  [ 323AA1953ED9C01E23F740FA891FE064, 4CED6E3D61749316CDE28965C913E7ED462539DAAD637A29484F62AF47AD650D ] AFD             C:\Windows\system32\drivers\afd.sys
11:30:22.0206 0x1198  AFD - ok
11:30:22.0269 0x1198  [ 23522E5D581F7722B1B5B86737CAE39C, FB81ABD304376A1E87B65F5E1B34477B628CEDB2091C5D754DE97464B6050C5B ] ahcache         C:\Windows\system32\DRIVERS\ahcache.sys
11:30:22.0285 0x1198  ahcache - ok
11:30:22.0331 0x1198  [ D0905D4A945D01D4B28DB9E1BD5985F7, CF389CBCD3B99D1BAE34A42F723F1005C32213A394F691978076D3DF1727715C ] AJRouter        C:\Windows\System32\AJRouter.dll
11:30:22.0347 0x1198  AJRouter - ok
11:30:22.0394 0x1198  [ 8FD51B3B35707A66080D7C8CB05E792D, FE52F3DC280D208FDDC75F6E3294B8D601E0D86F9BD3DB1ACC8FC296AC74C23B ] ALG             C:\Windows\System32\alg.exe
11:30:22.0425 0x1198  ALG - ok
11:30:22.0488 0x1198  [ DF21E05E41E5AC3F13F304D91457649A, 7F48F2AD1DBE89A261113C76D7C23AD7D87D5599BCC31F8A558A8A10B81BF521 ] AmdK8           C:\Windows\System32\drivers\amdk8.sys
11:30:22.0503 0x1198  AmdK8 - ok
11:30:22.0535 0x1198  [ 45D0AA4BB90B821DF92E8F19ABED0C5E, EA87A6E98DB3C5A88A844C04C6934E870B7004E783AA5211722115382A211B90 ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
11:30:22.0550 0x1198  AmdPPM - ok
11:30:22.0581 0x1198  [ 74FFBC43B4B899C9A8CA06A892F2CE73, 8D599363C7F3D373F1859BAA4D06DD0F40BE78B56BE52B74DE6EA6EF99452004 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
11:30:22.0597 0x1198  amdsata - ok
11:30:22.0644 0x1198  [ AAB0F1D8D7E54761ABAB13AF161F1680, CF847990EFFA2828F5B1DB1A68F08A6C2C918E9612EDFFCF95C36BCABBBEA272 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
11:30:22.0675 0x1198  amdsbs - ok
11:30:22.0706 0x1198  [ F91BAAC4237C40352A807000F3B716F9, F7EFA08E5067C3D419C9D21EDB880BA08883A80DDF35F8B42EC3AB293FE5E03E ] amdxata         C:\Windows\system32\drivers\amdxata.sys
11:30:22.0706 0x1198  amdxata - ok
11:30:22.0753 0x1198  [ BC121C099C6C659126AD2102AFDFF8CF, 42B5EE293BDD7ADCE48173A01B30D8452564B9DA225EAF25E9292FE77C0FCF3E ] AppID           C:\Windows\system32\drivers\appid.sys
11:30:22.0753 0x1198  AppID - ok
11:30:22.0800 0x1198  [ 74A24CF946279111D7F203B36569EC02, FD67D36804744B4FE3E20BA891852575E6C2DA6515643B2F4B4210118B0FCCDA ] AppIDSvc        C:\Windows\System32\appidsvc.dll
11:30:22.0847 0x1198  AppIDSvc - ok
11:30:22.0910 0x1198  [ 73FAA5517CCD1332F00192A303CF2026, 75636222BFF381A3EECA010752DF7DC1603A395B91FF7FBF92127B5CA8EFFEE5 ] Appinfo         C:\Windows\System32\appinfo.dll
11:30:22.0925 0x1198  Appinfo - ok
11:30:22.0956 0x1198  [ 68190E2BADF23BD782344970E5B5DE9E, 95D30EC12C7FDF5822CED8BC2F17669A6687A2FB262B4F0D15C8DCFF4E9AB33D ] applockerfltr   C:\Windows\system32\drivers\applockerfltr.sys
11:30:22.0956 0x1198  applockerfltr - ok
11:30:23.0066 0x1198  [ 21DC11DA29484AE026E536F2EA7E79E5, 6E17B679494CB293DE13DFA18F79A9DFAFEEBAAE41943F95B5E1AE0720A5CA26 ] AppReadiness    C:\Windows\system32\AppReadiness.dll
11:30:23.0144 0x1198  AppReadiness - ok
11:30:23.0394 0x1198  [ 8FF9C45D01C50D6C1F2A9D149624E240, 1F1998D76E2F0B49820498ECF2B17F43590828B621545AF311487D03542DFEED ] AppXSvc         C:\Windows\system32\appxdeploymentserver.dll
11:30:23.0550 0x1198  AppXSvc - ok
11:30:23.0629 0x1198  [ E6AB1F0B4C3D4E0D2A88332D76FECD03, 0D3003EB979DA4546DCDD055011E24F13E34F683F02C9801CAC564D1809F11D2 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
11:30:23.0644 0x1198  arcsas - ok
11:30:23.0675 0x1198  [ 61C5A480C43E7E8E49C42869F49D0D3E, E610F0E4315ABA1D90AD4A1D7A68ABA2ACBB7FCA89E9D1798470365D52592D55 ] AsyncMac        C:\Windows\System32\drivers\asyncmac.sys
11:30:23.0675 0x1198  AsyncMac - ok
11:30:23.0722 0x1198  [ A10F989A812B57B9695F6C305907C9C6, E2B292610079AA1A10696138DE8130905A8A834B75A8DED7EBF8B6732B77A0F4 ] atapi           C:\Windows\system32\drivers\atapi.sys
11:30:23.0722 0x1198  atapi - ok
11:30:23.0824 0x1198  [ 924CFBC423AEC4175BF016155B8909B1, 3047FBA2FD2817BD56A5F9EB1228E15D2108C2B4C39A2A2FA4C9B867DD7C2D26 ] AtherosSvc      C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe
11:30:23.0839 0x1198  AtherosSvc - ok
11:30:24.0120 0x1198  [ 06244D174788F4415BA0CF28973E010A, 72C6E3CCB8A0644192D003C72B75E03D1C0AA1A072342A44268D49FD72859331 ] athr            C:\Windows\System32\drivers\athw10x.sys
11:30:24.0261 0x1198  athr - ok
11:30:24.0339 0x1198  [ 30A8C6FAA572A020F373DA089AD9A603, 7828AE582FF5D99A94663AFB5A163BAD49611EE680ED63C548288F684906EDD8 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
11:30:24.0355 0x1198  AudioEndpointBuilder - ok
11:30:24.0433 0x1198  [ 59E69B38FBB892BED6F373AE428FB256, 1E729C19686A1785FCDD260661953E0BBF095D0D746C580581E536CD2642C2F3 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
11:30:24.0511 0x1198  Audiosrv - ok
11:30:24.0558 0x1198  [ 6D90FDA2DC364B8EA1420F2F81585CC3, 10E6F23A213CFE49BE04BB7D366ADD4028D61D7114FEC67C30B5467DF6B36D4F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
11:30:24.0589 0x1198  AxInstSV - ok
11:30:24.0667 0x1198  [ 61BAC67048CA5C1D08C48FCC8012B613, 71B2A466FC38DA1029B471FBD2541D8FE359751A7B212AE0F420DB3645916450 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
11:30:24.0683 0x1198  b06bdrv - ok
11:30:24.0714 0x1198  [ 68F72B05EBC6D1779C0D60A147C7CA0B, AA1C857BEE34865C6B901157FC22570D4CF45D950708BAD7AA333F120F2B474C ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
11:30:24.0714 0x1198  BasicDisplay - ok
11:30:24.0730 0x1198  [ 23156E7EDAF613D839E2839746B168D3, CAEF8F9C7D3A338BD747AC9D5BFBE730D77B911E87BCF532EBB75E1F80916AFA ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys
11:30:24.0730 0x1198  BasicRender - ok
11:30:24.0777 0x1198  [ 3F5523DCEFE42B385659C5CB46A6B810, CA24A3DF002B19E7BDEDE9B5EB60623F299D0E78B2E4F58DCFC028D76DEFE52D ] bcmfn           C:\Windows\System32\drivers\bcmfn.sys
11:30:24.0777 0x1198  bcmfn - ok
11:30:24.0777 0x1198  [ 0B750A6A6D847E73CA48ADD7A0F5A393, 6A43020F23846EFB1AFA3C070465B0059E9DF60DEB16899E09559462DF30939F ] bcmfn2          C:\Windows\System32\drivers\bcmfn2.sys
11:30:24.0777 0x1198  bcmfn2 - ok
11:30:24.0839 0x1198  [ 2B4D3AEAAD02954F8C191BC2D67949AD, 8237C9AD556CFAF7442FF60F78608104BC17CE3134C89D986D49C38CC60B1518 ] BDESVC          C:\Windows\System32\bdesvc.dll
11:30:24.0886 0x1198  BDESVC - ok
11:30:24.0902 0x1198  [ 0A508274355745EEF01C6BE3198D02C4, E2DB08AEE2368FA95FDB357BB31EA4EBF31679C3E72E109DB3D7CD1B5F7B828E ] Beep            C:\Windows\system32\drivers\Beep.sys
11:30:24.0917 0x1198  Beep - ok
11:30:25.0042 0x1198  [ 5125CBB61AC81168366BEB290399CB8E, B2A3095D45E2114DE2BD0E5A3AE20B3CE95EE517A35B9E1EAD05E231F38DBDCF ] BFE             C:\Windows\System32\bfe.dll
11:30:25.0089 0x1198  BFE - ok
11:30:25.0339 0x1198  [ CE27F2268497E57A94A48F8D1B47A1B6, 459A2A5C7E1CA27E720AFA95B342CDFD52224467DC4FC54AF870BA5781643F88 ] BHDrvx64        C:\Program Files (x86)\Norton Security\NortonData\22.8.0.50\Definitions\BASHDefs\20170215.002\BHDrvx64.sys
11:30:25.0402 0x1198  BHDrvx64 - ok
11:30:25.0558 0x1198  [ D876C567AB767258036F05E4766189FD, DE8BA67325CB64495BD454B8F9DDCAE82636253844FC68B360C7E1CF5D51DD0E ] BITS            C:\Windows\System32\qmgr.dll
11:30:25.0620 0x1198  BITS - ok
11:30:25.0652 0x1198  [ EEBFAEB4702E1049ECD44B10485E6C0C, 8F4D31E36717101B6172D7346E86EBC77B9CDAA5CC14AA1379661C16A7FF05E2 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
11:30:25.0667 0x1198  bowser - ok
11:30:25.0839 0x1198  [ BD33624B1F5C35F519E87B53DBC30B34, 3EFE680D7E9FCD89492DCF4E53980D01FC92DC1F63935DF16429B66DCA2AA865 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
11:30:25.0902 0x1198  BrokerInfrastructure - ok
11:30:25.0949 0x1198  [ B3F32C630DD3F2F6A6091B89CFF13641, 7A9C53EF9AB9FF1DC392FD711B194A101DB36CA5BC799E817BEB446741089B76 ] Browser         C:\Windows\System32\browser.dll
11:30:25.0949 0x1198  Browser - ok
11:30:26.0027 0x1198  [ 6E38CA51DBAC007317632FDA07A51222, CA028429F75F56008A386202D47A9534DDF78C50A51D12671B2CCA7E64A9E02D ] BtFilter        C:\Windows\system32\DRIVERS\btfilter.sys
11:30:26.0042 0x1198  BtFilter - ok
11:30:26.0074 0x1198  [ 722036C26D2C4E50EC2A2EC5FD678846, 999468038AE01F0FF6881F4B2A2CB67BC636641188E95F10729E08ADBC3CB3DE ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys
11:30:26.0074 0x1198  BthAvrcpTg - ok
11:30:26.0136 0x1198  [ 77630A51FAF6A07922FEE835F4DED8F6, E096A9DC12885FD19575346A9693A66D0DDFF96C3155AD2040F2BF4249D1D609 ] BthEnum         C:\Windows\System32\drivers\BthEnum.sys
11:30:26.0152 0x1198  BthEnum - ok
11:30:26.0183 0x1198  [ C2E31BE025D46D189E38DD1EDF07837A, 656528DCAAAF485EC57EE5C3021E96736634DE3B9C39CBCD2728E055ABD4C0A5 ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys
11:30:26.0183 0x1198  BthHFEnum - ok
11:30:26.0199 0x1198  [ F7CD605FC0B0B22F3F6F247595E3A655, 1CD9140DE5415DDBEACD8667E63E5C95FD64D693B56302A0474E693E578BEAB0 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys
11:30:26.0214 0x1198  bthhfhid - ok
11:30:26.0277 0x1198  [ B157D72BDA6A6DD6E9DC6BF338CD0CF8, B2AC26AE214151E5AD93DED78256BC0295DBF0133C854E7DEE4CD776D9C9A349 ] BthHFSrv        C:\Windows\System32\BthHFSrv.dll
11:30:26.0339 0x1198  BthHFSrv - ok
11:30:26.0417 0x1198  [ 0AB691736D4D4029444AF62DE59CFD37, C1C22EFBF67331B87AB261BBF9813009257437BA02F728EC2DFA1A49ECC5FABF ] BthLEEnum       C:\Windows\System32\drivers\BthLEEnum.sys
11:30:26.0433 0x1198  BthLEEnum - ok
11:30:26.0480 0x1198  [ 535DC41A33630AE4C262406F9E981C03, 599332589AA28D04189E19B87A4AE6FEEB60B40A7BC6E3B11240DA363A981C29 ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
11:30:26.0480 0x1198  BTHMODEM - ok
11:30:26.0542 0x1198  [ 224BA1CB1F3C702F0D001D2AFC9793B1, F139F6F78C716E1167E16530AE31E4A26C2A69467BCB08A9A52A101B31DF7771 ] BthPan          C:\Windows\System32\drivers\bthpan.sys
11:30:26.0558 0x1198  BthPan - ok
11:30:26.0714 0x1198  [ E6D5762958A839B119C041256149AAD6, 8FB489F6771C392347E333935E00024309A19F1D3143F365A039A9D2DE0A639C ] BTHPORT         C:\Windows\System32\drivers\BTHport.sys
11:30:26.0777 0x1198  BTHPORT - ok
11:30:26.0824 0x1198  [ 96932F631F5CB9F5D1C8F99A71568EF3, 5E4C8955A2EE9DC76B4EBC383653EB753D76D6B017E1A5DD553AC16094D7F12A ] bthserv         C:\Windows\system32\bthserv.dll
11:30:26.0824 0x1198  bthserv - ok
11:30:26.0855 0x1198  [ DC5955E589C55E2313D69B64E1A183F3, 06D703246D0813DE53D62885C8B7381135783673FF4BDDD5CC38FEB54901BB76 ] BTHUSB          C:\Windows\System32\drivers\BTHUSB.sys
11:30:26.0855 0x1198  BTHUSB - ok
11:30:26.0902 0x1198  [ 23F9EF739F685E07482116425E7879AA, 0EBDF96A49A319C0BCF6F51FB6C8C392C017E1738B950C19C91FF43E14D73143 ] buttonconverter C:\Windows\System32\drivers\buttonconverter.sys
11:30:26.0902 0x1198  buttonconverter - ok
11:30:26.0964 0x1198  [ 60EB6A4CE3E21887D302350631C16F26, 4270EFA22285C1A9336CF1220761E416950D2DA9C6A40D1D8452686CD5040DAB ] CapImg          C:\Windows\System32\drivers\capimg.sys
11:30:26.0964 0x1198  CapImg - ok
11:30:27.0058 0x1198  [ FC246917662E3DC1F5BA768FF22FFD3B, 3268ADE1F17F020ED715BA8C3A37B94D555B122B665FA70D73E229462CF5974F ] ccSet_NS        C:\Windows\system32\drivers\NSx64\1609000.044\ccSetx64.sys
11:30:27.0074 0x1198  ccSet_NS - ok
11:30:27.0121 0x1198  [ F8FB51B9EF6372610E9B31A1D86B62FC, 7461584A8B39AC549AD7BAFFA509D4CD81EEE542808BC8EFC285863A0AE6432D ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
11:30:27.0136 0x1198  cdfs - ok
11:30:27.0214 0x1198  [ B737F6FB33A6F79BCBC293A5B32C1C4E, B2EAF621052A4CBEE78208ECF1AC9286BD1EB431019372254E442319308112F8 ] CDPSvc          C:\Windows\System32\CDPSvc.dll
11:30:27.0245 0x1198  CDPSvc - ok
11:30:27.0292 0x1198  [ 2531EF3423A9FE1692005A41907E3BE3, 4E7D3E216937305B73CBCC5031F513CEC38F4FEFE3F2291DED5F37641221CCA0 ] CDPUserSvc      C:\Windows\System32\CDPUserSvc.dll
11:30:27.0308 0x1198  CDPUserSvc - ok
11:30:27.0402 0x1198  [ 613D0137C269187FA298A157E3D14A18, 84BC268525F14BB27202CE242BF94D9E83BC91B50A0335908574F31B29A2F04D ] cdrom           C:\Windows\System32\drivers\cdrom.sys
11:30:27.0417 0x1198  cdrom - ok
11:30:27.0480 0x1198  [ 9450FA11E9DE6715FCB71A519A8FF90B, B7E341C6E4CE967FCDD0D17A497C07E8A1C6B0AACE8A6E8E5D6C21EF73F13E16 ] CertPropSvc     C:\Windows\System32\certprop.dll
11:30:27.0511 0x1198  CertPropSvc - ok
11:30:27.0558 0x1198  [ 0AED948DA8D5F08B3D6F12E4E2089736, 95E538E81DDBC83492C5F3820C82C78F050B4D74ACF12D7970EC84F93581AE29 ] cht4iscsi       C:\Windows\system32\drivers\cht4sx64.sys
11:30:27.0574 0x1198  cht4iscsi - ok
11:30:27.0758 0x1198  [ 0002A0FDE087C1657AB31CE73077539C, 4DD6210B67E9633AB3240371590869DC833A4C986C74FC12A5D4FFFFD361848A ] cht4vbd         C:\Windows\System32\drivers\cht4vx64.sys
11:30:27.0821 0x1198  cht4vbd - ok
11:30:27.0852 0x1198  [ 6B4F90A287D75CCD78694F6790C911B2, 73D7C31E9F475FA3FD568FCA9A953F968729AA114F63C06F38BF5198DAD67BD8 ] circlass        C:\Windows\System32\drivers\circlass.sys
11:30:27.0852 0x1198  circlass - ok
11:30:27.0883 0x1198  [ 09D0B94D3A06EFD1EB70189EC4B26DF7, 47E73C536C63F4C21E4ADBB122A152D3A291CF4EDD4CB4D07D09D14E1A9961F1 ] CLFS            C:\Windows\system32\drivers\CLFS.sys
11:30:27.0899 0x1198  CLFS - ok
11:30:28.0164 0x1198  [ 6594CC3A25DD830E2DFE16C19A74D03A, 43A4FFEB5A9A6522D9AFC97CB9F34D0DC1B64C43D7FC048929F333BA8E3DBAFB ] ClickToRunSvc   C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
11:30:28.0305 0x1198  ClickToRunSvc - ok
11:30:28.0383 0x1198  [ E133CFCBFABB3CB517BE9F42FEA5887C, DA699CDD5F3CC427354540C907BD24CCA7BAC3112C53918EB611CB4EEC7611DA ] ClipSVC         C:\Windows\System32\ClipSVC.dll
11:30:28.0446 0x1198  ClipSVC - ok
11:30:28.0493 0x1198  [ EEC3A4A98AE1A337E3CD1483AD6F2E15, 764DA329984A95E092F5C15116DA34FA7FC27216C0862365D4BF10ADC97EC5C5 ] clreg           C:\Windows\System32\drivers\registry.sys
11:30:28.0493 0x1198  clreg - ok
11:30:28.0602 0x1198  [ 5C646CAC91E086F7FF53C7F2E857F263, 67AF6FBF88B7EE530A9BA53833EAFCC78BF8362E82BF81180858F1D17DFC73E6 ] CLVirtualDrive  C:\Windows\system32\DRIVERS\CLVirtualDrive.sys
11:30:28.0602 0x1198  CLVirtualDrive - ok
11:30:28.0633 0x1198  [ 429623E266EF067A44E8CF148E9DFB9B, A48AA85ACC52C7AD73DB2D6148B3F9FB5EAC33C8F8C5BB6D7D0A9D84B7C08E11 ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
11:30:28.0649 0x1198  CmBatt - ok
11:30:28.0743 0x1198  [ 3E502EB1701CF54CF237B6250FBE38EA, E63F6F45D3990ACBCA96003F67C83697BA5B74B89F972C5E9CC45F90D05519FF ] CNG             C:\Windows\system32\Drivers\cng.sys
11:30:28.0790 0x1198  CNG - ok
11:30:28.0805 0x1198  [ 3DB10C59405931E2C72EFB82C1AF97D1, 100B5450A70988DB1C1F8A5FDBB3553AF1A0D47B42A5AC71460DB92E26010CE6 ] cnghwassist     C:\Windows\system32\DRIVERS\cnghwassist.sys
11:30:28.0805 0x1198  cnghwassist - ok
11:30:28.0946 0x1198  [ 34C935AF2A414572B412B3556586D783, 912981B88B0796576ECCD5EBE0C4728EC02D5D6A96B039447DCBA59B2583F25E ] CompositeBus    C:\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_a140581a8f8b58b7\CompositeBus.sys
11:30:28.0946 0x1198  CompositeBus - ok
11:30:28.0961 0x1198  COMSysApp - ok
11:30:28.0993 0x1198  [ 44EEEB2382F566999287E13F2067693C, 53A4A0C85EAD38030FF2078C67465E3710ECD03A08FF34E1E67B2E3E1CC70043 ] condrv          C:\Windows\system32\drivers\condrv.sys
11:30:28.0993 0x1198  condrv - ok
11:30:29.0118 0x1198  [ 03DCC01047713690E312B013C60881AE, B98174222DDFDA2A31BAC4795D99FA07D1D03107ABDB27BF5069FAFBBF00D278 ] CoreMessagingRegistrar C:\Windows\system32\coremessaging.dll
11:30:29.0196 0x1198  CoreMessagingRegistrar - ok
11:30:29.0321 0x1198  [ F67D7739243C50D775BF8B848DB92EA5, 066A618F9F8B9E00C065320E2D32DBCCF6D74BB47BDFDDFA78637B6EDC9A13EC ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe
11:30:29.0368 0x1198  cphs - ok
11:30:29.0430 0x1198  [ 5F06CAC4B09250CDDDD0180A08162924, A2EB0A57225E65FC264CFC9FAD858D8B54A015CDAE3DC904B1C4E9AAB40B1F06 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
11:30:29.0430 0x1198  CryptSvc - ok
11:30:29.0493 0x1198  [ 039B5A8CBD5C75D1C46DF15F7C74D136, A5C8A41F2D406D37E147939F2058373ED091BFCC00CA7E829F887638CD3A2F64 ] dam             C:\Windows\system32\drivers\dam.sys
11:30:29.0508 0x1198  dam - ok
11:30:29.0540 0x1198  [ 566BD6ED419F7FBC88EDD579044AD5C9, EC66C10DAC23ED149545305EA25F60888C5D3675BD850C7C12275B8666D18FEF ] DbxSvc          C:\Windows\system32\DbxSvc.exe
11:30:29.0555 0x1198  DbxSvc - ok
11:30:29.0649 0x1198  [ 7BD259FC59CF9C2AE1B979564B374CC6, 299832FCE304A85080C80ABFE820A6093AC15A7C1E7C89D8C946708E955A2909 ] DcomLaunch      C:\Windows\system32\rpcss.dll
11:30:29.0711 0x1198  DcomLaunch - ok
11:30:29.0743 0x1198  [ AE9F09F87755C18904656CB4F59F351D, B352A43B3B68B497D87B49C302AF3F37F36D56D49878AE3785C3D43597E5DC57 ] DcpSvc          C:\Windows\system32\dcpsvc.dll
11:30:29.0758 0x1198  DcpSvc - ok
11:30:29.0790 0x1198  [ 3802CBF4BDDE6F99974B27EE1782E5F9, 51562209E16A1C0247D73D7BFC8827AE4A2E57AF11350379A8FBA1EC44E56E54 ] DDDriver        C:\Windows\system32\drivers\DDDriver64Dcsa.sys
11:30:29.0790 0x1198  DDDriver - ok
11:30:29.0852 0x1198  [ ABBD3EE724117242E28D31F19FBCFF03, 68EA91A969DD80A5DE28B0A8EAEB308837183713559C2C2FAEF991858C971393 ] defragsvc       C:\Windows\System32\defragsvc.dll
11:30:29.0915 0x1198  defragsvc - ok
11:30:29.0961 0x1198  [ 04D91223860DB9B4169909A01CD66819, 0B598306E99BF9AF036908C9333D34A81F7A9FF292213A9EB583F3F4C8FE2CB1 ] Dell Customer Connect C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
11:30:29.0977 0x1198  Dell Customer Connect - ok
11:30:30.0102 0x1198  [ 802FC4E1B3E24185C731C81CD629F41D, FDA38B16E3D8CB1C6D7621AAD25663B954B7015F21F84524DAE2BB04923A996F ] Dell Foundation Services C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
11:30:30.0102 0x1198  Dell Foundation Services - ok
11:30:30.0196 0x1198  [ 94B0818BDC1DDFC66E94069950507B35, 489019AEE9D1AA94FC66E74FF22A98702C1A142460BBAE928706CB76C5F937F2 ] Dell Help & Support C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe
11:30:30.0196 0x1198  Dell Help & Support - ok
11:30:30.0430 0x1198  [ 19C5F4EBA0B9670A923EEDCD97526B3A, 6D02BC69FD8D2099098255C7776E90FD98CAB343473D92238CB5F7DE9B080A89 ] DellDataVault   C:\Program Files\Dell\DellDataVault\DellDataVault.exe
11:30:30.0586 0x1198  DellDataVault - ok
11:30:30.0618 0x1198  [ 5F57C0E23FB5FC5F3DDE5ACAF5D299D7, 381EB4B54B77CA061AFA484F5BF98B2518D3C7FD54406631C6C7F43E3132C4A3 ] DellDataVaultWiz C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
11:30:30.0618 0x1198  DellDataVaultWiz - ok
11:30:30.0696 0x1198  [ 58F416B0E25755C3EE1FC754A5EDE1FC, DD5658C3AA4F019A30A76C2EEFA4DF9DDCE2A9425CC93D8EC870521D17D172EA ] DellDigitalDelivery c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
11:30:30.0712 0x1198  DellDigitalDelivery - ok
11:30:30.0727 0x1198  [ DC3BD578642252FD9569B9CD75CEF81E, 63F44BC19389C19BA9F9E974BF2E5236AF7F66D9076943B9CF46775264BBE413 ] DellProf        C:\Windows\system32\drivers\DellProf.sys
11:30:30.0727 0x1198  DellProf - ok
11:30:30.0758 0x1198  [ 2F5EB7375FC3D9DBB81BDFFE2BCCB9D0, 6D2C01CB29EA220C265D6B24C791D97482D05F1C9FF4C9816FAA3F3E05B42882 ] DellRbtn        C:\Windows\System32\drivers\DellRbtn.sys
11:30:30.0774 0x1198  DellRbtn - ok
11:30:30.0836 0x1198  [ C0B101B96780FFF06ADD32538A036BA8, 8B456C56D7FADA55FF9F45EB2AF4BBEC611D9D50035019D84EF0F2147E9F1170 ] DellUpdate      C:\Program Files (x86)\Dell Update\DellUpService.exe
11:30:30.0868 0x1198  DellUpdate - ok
11:30:30.0931 0x1198  [ DD74F18227ACC837D9856E24282D446D, 6A760E44CD897952538CDFA8895FE11263D51AAA79CFF24C01F3862E919DA478 ] DeviceAssociationService C:\Windows\system32\das.dll
11:30:30.0962 0x1198  DeviceAssociationService - ok
11:30:30.0993 0x1198  [ FEA494AC3A1BAE63C1F2AF267D49F1DB, 0722FEA2481740B53EF26B1CA59166C63C157A5C708AC93DF3FBB74A27266C9C ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll
11:30:31.0009 0x1198  DeviceInstall - ok
11:30:31.0040 0x1198  [ CDF1B1B5C5951111791C236B2696C7F8, BF6C4BA545C8827B40DB69890DB4D2B2F9C583C5E3CFBDFD370B05891141458D ] DevQueryBroker  C:\Windows\system32\DevQueryBroker.dll
11:30:31.0055 0x1198  DevQueryBroker - ok
11:30:31.0102 0x1198  [ 0D1D392ED2597F295956D058D33BD7C3, 2F7FE5A06D880F9E2A46C9803DD249DC40C2898C04E946D14E7EECCCC9F2B24F ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
11:30:31.0118 0x1198  Dfsc - ok
11:30:31.0180 0x1198  [ F0D4400BA0F08610D9A551B15BF10B76, 83EB8FB272FC2DD2CC0659C2FB90AD0DAE88A88AB3951E03BCD933A25B601E10 ] Dhcp            C:\Windows\system32\dhcpcore.dll
11:30:31.0227 0x1198  Dhcp - ok
11:30:31.0305 0x1198  [ CA7FEDDFCF61EF15A09C54DA2C07C49F, 346EF7709BA9E6BD48592B86FA46F9D956C847EF91F4980EEAD98269D0F0EF67 ] diagnosticshub.standardcollector.service C:\Windows\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
11:30:31.0337 0x1198  diagnosticshub.standardcollector.service - ok
11:30:31.0524 0x1198  [ CAD14E0AD1F03397E9B1C8733D76BEF4, 0035EF35F6520B1DF0E599C8A06D4163C52576BCE0976BF729B44DECDC506627 ] DiagTrack       C:\Windows\system32\diagtrack.dll
11:30:31.0618 0x1198  DiagTrack - ok
11:30:31.0665 0x1198  [ 35B9D46560339A5A7F0CAC6ED702C817, F70480B01533B7029F90E2DE297E9E829660300DDE7A7D009B0AC2684E7691A7 ] disk            C:\Windows\system32\drivers\disk.sys
11:30:31.0665 0x1198  disk - ok
11:30:31.0737 0x1198  [ 44A5CAF4E736BCD4360015BB3B841179, 8CD74620C3E163FF998CA8C09A999FED5C9EFDC88D07493192A57032D18CA973 ] DmEnrollmentSvc C:\Windows\system32\Windows.Internal.Management.dll
11:30:31.0784 0x1198  DmEnrollmentSvc - ok
11:30:31.0800 0x1198  [ 815F45161A4571C2C44491564F3D5968, 32E7AE8414A178CE429C0CDFCF718E3C11C705FB3155EA5CA0EAD48AAE507B01 ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys
11:30:31.0815 0x1198  dmvsc - ok
11:30:31.0847 0x1198  [ 6E5EE6E420FECD64DE463C5F01CBFE71, F173C56895E80AA03D70CD78B3AB659C2EEAACFF43BE3B6EF3939D6F4AD4F62D ] dmwappushservice C:\Windows\system32\dmwappushsvc.dll
11:30:31.0894 0x1198  dmwappushservice - ok
11:30:31.0956 0x1198  [ 7F8A3ABF7750326E18CE953CCE262670, 5DBD159E8A455A42764FC73CF7DCAC849B5896848C5589B00BD36697804C0A3B ] Dnscache        C:\Windows\System32\dnsrslvr.dll
11:30:31.0988 0x1198  Dnscache - ok
11:30:32.0066 0x1198  [ 8F46B4C3F9BA19C26A26D0A11137B20B, BA0A66DBA98D77FD85A7CD2D4593F2B2A1A3B4D32BBECBCFFBEB5A54DCB0D8ED ] dot3svc         C:\Windows\System32\dot3svc.dll
11:30:32.0097 0x1198  dot3svc - ok
11:30:32.0144 0x1198  [ 204A3E7B9EBE96E8E17D52A7B025AFB6, 79BD62164D924AE8B471C9EA8D09B1F0CD428E94472A80B4F1656C3C8627C715 ] DpmLiteDrv      c:\Program Files\Dell\QuickSet\DpmLiteDrv64.sys
11:30:32.0144 0x1198  DpmLiteDrv - ok
11:30:32.0191 0x1198  [ CA09EAEE92C6FDDC6B05057F11A0372D, 14DB5C186B69644AA93C445BF31CC9670204F95A47B77B6EACB19B4A316378AD ] DPS             C:\Windows\system32\dps.dll
11:30:32.0222 0x1198  DPS - ok
11:30:32.0238 0x1198  [ C1283B0BEE35F9AF3511E0EBA71F311C, 542D560B654EA4E4708837231A4A967FB4DF5CDB190B7D763E92B1F6FCB255B4 ] dptf_cpu        C:\Windows\System32\drivers\dptf_cpu.sys
11:30:32.0238 0x1198  dptf_cpu - ok
11:30:32.0284 0x1198  [ AE6BD4C879A8C849E53947C92DF3B3A0, 8C29774CB2D30D901C54AAC0C8ACE709351EE40E5C8FB9951B2A18B4A03F28B7 ] drmkaud         C:\Windows\system32\DRIVERS\drmkaud.sys
11:30:32.0284 0x1198  drmkaud - ok
11:30:32.0331 0x1198  [ 7433474BE77F065D2FA628671FE31A3E, 063ADDC68F48036749E6EC7B2F66284DB29F90F62E9468D16B4EF5A0FDC45E35 ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
11:30:32.0347 0x1198  DsmSvc - ok
11:30:32.0378 0x1198  [ 5FCA45C24501DA7390065D3706A9FC3F, 093FD840F1502ECC6F05B9723CA523B3F15CF39A5D2B9106E1267739B3F2C52C ] DsSvc           C:\Windows\System32\DsSvc.dll
11:30:32.0394 0x1198  DsSvc - ok
11:30:32.0550 0x1198  [ 125C83C44EEE61E2ED5893F23AEF0FC9, D6599AFFA1A554124AEF6862C69027F9FF9B343362091439866641A1CFB0E76A ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
11:30:32.0628 0x1198  DXGKrnl - ok
11:30:32.0659 0x1198  [ 9FCE4EF7D5E274F862D9A2526B5F4779, 81D42D5475C2801C8E0C233A0BA827569D8A70590017C91C665C8B232D9BFAA9 ] EapHost         C:\Windows\System32\eapsvc.dll
11:30:32.0691 0x1198  EapHost - ok
11:30:32.0925 0x1198  [ 7EC6FC0266D74BD47ABB130A328B70EC, 3856790AF967AB03B1A89F97328DC4D5A6854ACDA6169681A9AFB03D7CF791F9 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
11:30:33.0034 0x1198  ebdrv - ok
11:30:33.0222 0x1198  [ 6266BAEDF00023684B10E101E9FBB89B, 720B66721BD9BAE476A0CA9037C5452FB1CC645DC00E6205051C7AF84550051C ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
11:30:33.0253 0x1198  eeCtrl - ok
11:30:33.0300 0x1198  [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] EFS             C:\Windows\System32\lsass.exe
11:30:33.0300 0x1198  EFS - ok
11:30:33.0331 0x1198  [ 8D74B8B5D6F7C5BC4C525BAF2B083FF1, DA5656F745B3911F96871887FDFDC40F4D9C820622A0AA27EFE4BA93662833CA ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys
11:30:33.0347 0x1198  EhStorClass - ok
11:30:33.0378 0x1198  [ 2A9817B5A9260D8F60D52E36BEF10443, AC1A0203221AFAF584C71317FA07AA1B6E61BE619E918B3B1E4AD57CCED1CF03 ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
11:30:33.0394 0x1198  EhStorTcgDrv - ok
11:30:33.0441 0x1198  [ 80A7999DE02CE678B865832E1CE78CD6, 2576EBB6E4D630A906DE724F125099E52A962B5B68B9F9BCA849A7B29D8C8689 ] embeddedmode    C:\Windows\System32\embeddedmodesvc.dll
11:30:33.0503 0x1198  embeddedmode - ok
11:30:33.0550 0x1198  [ B4264DEF962801CDB83C008DE30758D1, 57886688102BE727450BA45932044A5A389B5822A0C1C08C2AFFBA380F70C3F3 ] EntAppSvc       C:\Windows\system32\EnterpriseAppMgmtSvc.dll
11:30:33.0597 0x1198  EntAppSvc - ok
11:30:33.0659 0x1198  [ 3180E3A3EFDA196DE5B9980291CFE685, 31B735F04AC80D3BDA3872C77BC361D7E02DF081E31A3581A6C1A5B542EACF4F ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
11:30:33.0675 0x1198  EraserUtilRebootDrv - ok
11:30:33.0722 0x1198  [ 77B60DEC7DCB4233E4A69D3F52E5DB24, 3A5C905E37A93899051497C90E5BA8E1D003B56C6906CADFD2F1CDF52052D248 ] ErrDev          C:\Windows\System32\drivers\errdev.sys
11:30:33.0722 0x1198  ErrDev - ok
11:30:33.0972 0x1198  [ 8A00CC653B8F02503C250FC1B9475807, 496517DD9E0BFFE03701E813EB7732578482ABA808771BE7889A27E1E2FEB647 ] esifsvc         C:\Windows\SysWoW64\esif_uf.exe
11:30:34.0003 0x1198  esifsvc - ok
11:30:34.0050 0x1198  [ 99984B5D3378F8236F3A85E51ACEDD16, 73EE5B93C27C09F15BBAEADC8A293CB14FDD1E3DC65DDC0C665549D71F307D33 ] esif_lf         C:\Windows\system32\DRIVERS\esif_lf.sys
11:30:34.0066 0x1198  esif_lf - ok
11:30:34.0128 0x1198  [ F89083AB8B9F51C0031C1CBD0A9A7E35, 9EE973A25134960E62D1A6A1E34AD9B3F7690E71C1AD31A23FA2081A73438754 ] EventSystem     C:\Windows\system32\es.dll
11:30:34.0159 0x1198  EventSystem - ok
11:30:34.0191 0x1198  [ FCD2C63754C2E739A8EEAD9BC63F9DDC, C57A72ABA4C0BD71F914B9C8FF965DCFF585A205498F19A4584A4BAF7674839D ] exfat           C:\Windows\system32\drivers\exfat.sys
11:30:34.0237 0x1198  exfat - ok
11:30:34.0269 0x1198  [ C077AA74EDDAF69985EB27597BCB342A, 8CE48D37E39A6DFA3C8E959CA92A49029100446DC40044EE009D55FB9CDE378A ] fastfat         C:\Windows\system32\drivers\fastfat.sys
11:30:34.0284 0x1198  fastfat - ok
11:30:34.0331 0x1198  [ 77CE56471AF984800F318F3734D768C7, 72D540072374A56C2C497F0532A50705D3F0637F2C0C96B1D715F2EDFCA3AA2D ] Fax             C:\Windows\system32\fxssvc.exe
11:30:34.0409 0x1198  Fax - ok
11:30:34.0456 0x1198  [ 99598ECA5E41996E005D5B9D9FF1EFA2, 91345CD50EF02431B69093505C1C5F5DC6A1AA6BF192EE9392ED4D5626B60462 ] fdc             C:\Windows\System32\drivers\fdc.sys
11:30:34.0456 0x1198  fdc - ok
11:30:34.0503 0x1198  [ EF0DD43A4CBAB367BCA1AFBDC9971E4F, 73E161C45D63FDDE71EE2438137913724DC513860539D1E7F6BD861F5D1B33F3 ] fdPHost         C:\Windows\system32\fdPHost.dll
11:30:34.0550 0x1198  fdPHost - ok
11:30:34.0581 0x1198  [ 34DAC585994CD3B4E910DE11C584EF3D, A6C6A4CB5413EA61F1A54E2D3AD71A311CEA2C26218544D2D2D4A5CFEC52DE8C ] FDResPub        C:\Windows\system32\fdrespub.dll
11:30:34.0612 0x1198  FDResPub - ok
11:30:34.0660 0x1198  [ B68DA1FE3CA2311AFD38DD6905CA7F71, 4B395DFB1B47D2507CA4D9DC996A70D0A3BDB1A245CD6DA6C42B2A299AFCCF37 ] fhsvc           C:\Windows\system32\fhsvc.dll
11:30:34.0691 0x1198  fhsvc - ok
11:30:34.0722 0x1198  [ F44F666B0EACC3181544FFCF8CA0FFC7, 83F771CF9DAE1C504B30731EEC55355EA1253174252DA2192ADF1D228B3735C3 ] FileCrypt       C:\Windows\system32\drivers\filecrypt.sys
11:30:34.0737 0x1198  FileCrypt - ok
11:30:34.0769 0x1198  [ 78A210DDFDF2C9EC884631D2DAA573F0, 5D39C6EF4AC690A9749EEDBE2478FFF15A22877A2861EDA103C7BF1607B0C1BD ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
11:30:34.0769 0x1198  FileInfo - ok
11:30:34.0800 0x1198  [ 1A97DB5E701A186989F3795223C3BE39, F7982220D4DF7E104955E63CACE352394E2577DEF49506EA126127F820EB62DF ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
11:30:34.0800 0x1198  Filetrace - ok
11:30:34.0831 0x1198  [ 46626665F0E5906E45619B4EFD6186B8, 37FDD3B8AD49FD29E54DA5567EA77F28A53498AE56348F7A2628E5E5549D638B ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
11:30:34.0847 0x1198  flpydisk - ok
11:30:34.0909 0x1198  [ FDA72ACA14D516D18C33AFCD0FD9260F, 6509612DEC82EA74614B5C9A7B432305A1A468C97B88BED9E141DF2929B621B1 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
11:30:34.0925 0x1198  FltMgr - ok
11:30:35.0081 0x1198  [ 49BF5C8182C3D2D6CD9F7EEDF1CFDB66, 0977EBE86B57FC370D27CA69D58122397D5D5369AF0C8DBCC492AE7AD55CBA2B ] FontCache       C:\Windows\system32\FntCache.dll
11:30:35.0159 0x1198  FontCache - ok
11:30:35.0238 0x1198  [ 59241194DBDF30A2B4029E402F377900, 47A92E9CD8494C403B377799D395670A393766647E24CD83B15338CE2AA50266 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:30:35.0253 0x1198  FontCache3.0.0.0 - ok
11:30:35.0363 0x1198  [ 4816E166BD2C0E637DB183D24765684F, 69580B82DA9A5F4E54EE9604C6B717D0307A345F8FFB42515669F086CC4A88D1 ] FrameServer     C:\Windows\system32\FrameServer.dll
11:30:35.0456 0x1198  FrameServer - ok
11:30:35.0488 0x1198  [ D152CCBFC8251670BF0AAFE00D6BC782, 9DE82D8FC4E1DAF8FF23EE08C0B7CB5051A9224E64544D262CFA4996A41B04E1 ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
11:30:35.0488 0x1198  FsDepends - ok
11:30:35.0503 0x1198  [ 6D6BB5C7363CD35FA715E826F3D029EE, C214F791EB39E8B25CE57ED9D6C1D56EE1AF6021BCB380980BD42A6338A6C9F7 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
11:30:35.0519 0x1198  Fs_Rec - ok
11:30:35.0613 0x1198  [ 8EEC4925C03E375C4EC496E45C44139A, 06C5C7BCC28D3E435675F0759A09CAB726E971DF4BFC1DC3DCF503EABCDCCCC6 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
11:30:35.0644 0x1198  fvevol - ok
11:30:35.0675 0x1198  [ EF78034773CE506323655A868C949144, DF195BEEE6704FBCC6D2D9E1BF6723E52ED502A1459F495B7D18481E6A79B5BC ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
11:30:35.0685 0x1198  gencounter - ok
11:30:35.0701 0x1198  [ B55FEBC6A00DAA1FE074F020B6907516, 67071FBAC2ABA47AB71358A5F08E92E034A55343878F00137E90B3B1F7362976 ] genericusbfn    C:\Windows\System32\drivers\genericusbfn.sys
11:30:35.0701 0x1198  genericusbfn - ok
11:30:35.0732 0x1198  [ DDD8A8CDDC7F13EF57D1DAAE71865936, 9D472A8689F72F24D40D5B94849690F53C67849FDF6162A94EF4FB330A3DA566 ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys
11:30:35.0748 0x1198  GPIOClx0101 - ok
11:30:35.0983 0x1198  [ 713A176494CEC107E663CAD6C2B27F77, 76871D8CFBA8FCD8CFF96208AE84C658EBEC60270D978898B90EE9451AA1BCE1 ] gpsvc           C:\Windows\System32\gpsvc.dll
11:30:36.0029 0x1198  gpsvc - ok
11:30:36.0061 0x1198  [ 7ACD8F69B5D6EC97E6D2C006E19BED88, FC69214C9308EA64B88EF4C3C95800586DDBB44C8540846B79A161BAD8203B6E ] GpuEnergyDrv    C:\Windows\system32\drivers\gpuenergydrv.sys
11:30:36.0061 0x1198  GpuEnergyDrv - ok
11:30:36.0139 0x1198  [ 50FCC5C822A6B4FC6F377EE9F9F37C7B, 57BD4032367D91EF19931E927127AA1D54DA6118B36C219B0FFD95326A2FFCA0 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:30:36.0155 0x1198  gupdate - ok
11:30:36.0201 0x1198  [ 50FCC5C822A6B4FC6F377EE9F9F37C7B, 57BD4032367D91EF19931E927127AA1D54DA6118B36C219B0FFD95326A2FFCA0 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
11:30:36.0217 0x1198  gupdatem - ok
11:30:36.0295 0x1198  [ 217230B984AB2954E2FA5E36578D7B08, BB7B79EA7501A28EB2A0303FDF66FB9D59D567994C25A1523CD6D2081C403AF6 ] HdAudAddService C:\Windows\system32\DRIVERS\HdAudio.sys
11:30:36.0311 0x1198  HdAudAddService - ok
11:30:36.0358 0x1198  [ 10E3515FE5DBA6656FA62C29342EC4A1, 2051F10F74ED712B1766EB61E87FADE25AB3D0970BABFD320600D1B0D6377F26 ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
11:30:36.0373 0x1198  HDAudBus - ok
11:30:36.0404 0x1198  [ B90D284B97CD4CA9DE7430AAAD887A56, 2F14F985C39B7801ED64590979CF2114924E9547F5B11D2B37A74DBFFDD9E7C5 ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys
11:30:36.0404 0x1198  HidBatt - ok
11:30:36.0451 0x1198  [ B2FE11643CC6ACDEE6C247DD36018FDB, 5796613C7DBF8B2A9E860E006FF1A245B6BE7D10E3F6685AD142B48E5C237B8C ] HidBth          C:\Windows\System32\drivers\hidbth.sys
11:30:36.0451 0x1198  HidBth - ok
11:30:36.0482 0x1198  [ D24355488A2D4D2323518EC1AC7A6D9E, ED2176A2093726087EDDA25B86E9CDD4BA35F4E748E3A6DE0B15C4C97646B5C7 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
11:30:36.0482 0x1198  hidi2c - ok
11:30:36.0498 0x1198  [ 0AF9ABBA4F3F55C6C803890D64BC3C29, D3DE6FA308F8E7CD4F16387F46AE4B2F7EC9BBA07BF87652B660A0D645710571 ] hidinterrupt    C:\Windows\System32\drivers\hidinterrupt.sys
11:30:36.0498 0x1198  hidinterrupt - ok
11:30:36.0514 0x1198  [ CDBCF8E9AB06D88A1E1191D32F320C5D, F76963AB7CF2BAB3A220013879AECD3976BFD851CFB66B5A69A9EA2541048861 ] HidIr           C:\Windows\System32\drivers\hidir.sys
11:30:36.0514 0x1198  HidIr - ok
11:30:36.0545 0x1198  [ C900FE0DD6A1E2220084B8F1C427790C, 802194EBEDA1A50EDA300078B0888AAC1F17A42E67147B7B3B9C50AD8D4E5C89 ] hidserv         C:\Windows\system32\hidserv.dll
11:30:36.0545 0x1198  hidserv - ok
11:30:36.0607 0x1198  [ D8536CB438CC4CCDAE047B768EED22B2, 4F666BFA3554F9ACA6B9D436BFA64474D5F30FB3E78F4E66068CCDF283D9867F ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
11:30:36.0607 0x1198  HidUsb - ok
11:30:36.0701 0x1198  [ B3F963EBD55AEBA106342F5CBBCFEF5F, 316F6D94421EEF31CA87A6C54B819E9AA06994011244A3A75EB5DD09A6B79ECB ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:30:36.0748 0x1198  HomeGroupListener - ok
11:30:36.0842 0x1198  [ 86161A89F16851728802590EC7C92608, 3A3B05BB4E115410D27063B30C0EF3F18295F542050F329F1E466C81A9E23A46 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:30:36.0857 0x1198  HomeGroupProvider - ok
11:30:36.0904 0x1198  [ F5CA18197B4646E04DB9EB2D6642CC4D, 5BA3342DDF1BCB67E4156169FE9A33E7BC2641C729E9F1A80C0E80953C6AB114 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
11:30:36.0904 0x1198  HpSAMD - ok
11:30:36.0998 0x1198  [ A10C7C1E69FC90620C7BF2E51302A01F, D725AEAE38255CED73F4922A10F226215528706580B06D01C228488F93AC0397 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
11:30:37.0030 0x1198  HTTP - ok
11:30:37.0061 0x1198  [ 0C84C250F80EAEC2C9768464CC1A9626, 212E1003B78F9B98FEB084FD1FDB59B26A9DE4C9120F24D4361FBBF0F3C035E7 ] HvHost          C:\Windows\System32\hvhostsvc.dll
11:30:37.0076 0x1198  HvHost - ok
11:30:37.0125 0x1198  [ 74FC79C52395B10FFD0B55CF22CF88FC, 94D977DA2092EE8C2A598AC48758A84BB22CB6378BD114C2D3B4172A07A9CACC ] hvservice       C:\Windows\system32\drivers\hvservice.sys
11:30:37.0125 0x1198  hvservice - ok
11:30:37.0156 0x1198  [ 771EDDA9830A3079F996F34D681FB6E5, F452AD656872A1C8B2D6DCE232CE01EBD456C46F4934A7601E78470F2A2CBF38 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
11:30:37.0171 0x1198  hwpolicy - ok
11:30:37.0202 0x1198  [ 3B9F315E7FA72CC25228EB097DD9C694, B26F1E494428EF197A0C97645C05BB3CA093827A005D35C987F1D6778BC4E52C ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
11:30:37.0218 0x1198  hyperkbd - ok
11:30:37.0265 0x1198  [ B54B30992620C97230013A74461C8517, CAF09BDCDD6DE2A39CB8AE2C65E6F8FE12D8E93D84BBEF6C6A98F872BF54A4E3 ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
11:30:37.0281 0x1198  i8042prt - ok
11:30:37.0312 0x1198  [ C6B8743B213F06AA60943D8366FE968F, 758954F70B810063914B243115B2C753B2BCE40190F95C30ACBA0BF04EBD5B33 ] iagpio          C:\Windows\System32\drivers\iagpio.sys
11:30:37.0328 0x1198  iagpio - ok
11:30:37.0359 0x1198  [ 45BC5C74016A9F8B4CDFB974CFA2DFD0, FBF72E3CB3829E2A648117A6B09765BA670C8884D2AB1E2D15C7CAC9C131C6D1 ] iagpioe         C:\Windows\System32\drivers\iagpioe.sys
11:30:37.0375 0x1198  iagpioe - ok
11:30:37.0406 0x1198  [ 9A2A2F3C69B9A30B6E78536F6D258BAD, 5E28E132A7300E6F5E0C6439D6BA00F1AEF66D729FF671FDA91274A25A921463 ] iai2c           C:\Windows\System32\drivers\iai2c.sys
11:30:37.0406 0x1198  iai2c - ok
11:30:37.0453 0x1198  [ 810CE0871C5566A8761093F83A78AC28, F98063BD5C657A1C4C5C444E6954FFF6FB3419B53C3273D879FEBD541CFBA766 ] iai2ce          C:\Windows\System32\drivers\iai2ce.sys
11:30:37.0468 0x1198  iai2ce - ok
11:30:37.0531 0x1198  [ 5A0E850F8CD17791A3E6A3CF81D0CA28, 10A965A49D53360DD250E0758B6BB142872298A21C732EB026ACB93492C5C6CF ] iaLPSS2i_GPIO2  C:\Windows\System32\drivers\iaLPSS2i_GPIO2.sys
11:30:37.0546 0x1198  iaLPSS2i_GPIO2 - ok
11:30:37.0593 0x1198  [ 7508F1096803385D6376BFD0BD473AC4, 1F32EC23CDC94DCB9710E6663B5C3BD83568545DDC2C741CFC13550A4E4DD2BE ] iaLPSS2i_I2C    C:\Windows\System32\drivers\iaLPSS2i_I2C.sys
11:30:37.0609 0x1198  iaLPSS2i_I2C - ok
11:30:37.0640 0x1198  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\Windows\System32\drivers\iaLPSSi_GPIO.sys
11:30:37.0640 0x1198  iaLPSSi_GPIO - ok
11:30:37.0656 0x1198  [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C     C:\Windows\System32\drivers\iaLPSSi_I2C.sys
11:30:37.0671 0x1198  iaLPSSi_I2C - ok
11:30:37.0718 0x1198  [ 97E553D03219D3D51705C7235D9EAEBD, 5D4578C8804AF32D1DC0868E34D6538138DC15F9568CA7E21051B1C82C0D8D55 ] iaStorAV        C:\Windows\system32\drivers\iaStorAV.sys
11:30:37.0749 0x1198  iaStorAV - ok
11:30:37.0781 0x1198  [ 8350FE3BCDE3428BC040877BB7E9EAEB, 77F9456351CA640C6B7862907C0580627E761EC807B551976A95657EB4D6CC20 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
11:30:37.0796 0x1198  iaStorV - ok
11:30:37.0843 0x1198  [ 3BA03F7C7700DDF4C383DDE9252F5817, 3E90F69D0010E7764349D9AE865D577E431FEBC67DA554B400BC808DD286E203 ] ibbus           C:\Windows\System32\drivers\ibbus.sys
11:30:37.0859 0x1198  ibbus - ok
11:30:37.0890 0x1198  [ 937AC47F7356554DA05D9722C356EB55, 9EABC9F19B4E1193B669D2674967F5C6F03FAD348EDF0615E3F78554FF9A83CC ] icssvc          C:\Windows\System32\tetheringservice.dll
11:30:37.0937 0x1198  icssvc - ok
11:30:38.0158 0x1198  [ C30DB515D52B027A5D68D5B617F04C47, E2FBA5C736CF79C6052C28C703F99AB895DB8D3E5E7006425CEB7558AA8B0B83 ] IDSVia64        C:\Program Files (x86)\Norton Security\NortonData\22.8.0.50\Definitions\IPSDefs\20170216.002\IDSvia64.sys
11:30:38.0189 0x1198  IDSVia64 - ok
11:30:38.0236 0x1198  [ 71BFC89F69C68EB3B169618A16D42B36, A4AC5760B460413AFF898C2B1B054805800F71970D3B83C26458A70CD3413A1B ] igfxCUIService2.0.0.0 C:\Windows\system32\igfxCUIService.exe
11:30:38.0252 0x1198  igfxCUIService2.0.0.0 - ok
11:30:38.0580 0x1198  [ 4FDB8F27E18CEDC8ADA7B7EDE8CA6F40, BAB7AAE5F385D11C6C74897E4CC620C15EBC6341BC18F367AA699E22FB586C07 ] igfxLP          C:\Windows\system32\DRIVERS\igdkmd64lp.sys
11:30:38.0861 0x1198  igfxLP - ok
11:30:39.0002 0x1198  [ F2934208C0E50C0B971A7981AB90BED2, B936BFBBD71E731CC2CDB8B47D262F2EF09726FF921C2DA0841910CA2401423D ] IKEEXT          C:\Windows\System32\ikeext.dll
11:30:39.0080 0x1198  IKEEXT - ok
11:30:39.0111 0x1198  [ 2A01C96DF5802D3434634E55C91232D8, A3ABEF36E2FD2CF5C371ADBF92566A09669A1D990ABE4677370F57F2EEAF8121 ] IndirectKmd     C:\Windows\System32\drivers\IndirectKmd.sys
11:30:39.0111 0x1198  IndirectKmd - ok
11:30:39.0408 0x1198  [ 704122C4358B5B7AAC58F9EC11852805, 4FBE07EC9BE6B4E33E6188EDF3FF99A15CD015D4CB1303FFE0B27673D6087A54 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
11:30:39.0680 0x1198  IntcAzAudAddService - ok
11:30:39.0774 0x1198  [ FA06FD050994E9A42FEDFDC96992C842, 5863D218AB27032C71D5CE1315A5E7D8355316CC1D0B7BB0705E8DE00A8F0DD3 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
11:30:39.0790 0x1198  IntcDAud - ok
11:30:39.0899 0x1198  [ B63CF22D1AD2ABDC39D85851B2BEAA6D, 37E9043BABB5895BFD2B59AFB60C438B992C6EAA1B5FDE5B3445314343F4C406 ] Intel® Capability Licensing Service TCP IP Interface C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
11:30:39.0946 0x1198  Intel® Capability Licensing Service TCP IP Interface - ok
11:30:40.0024 0x1198  [ DF8DBBD8F5342C7BA598C606602B6352, FAF603820007A97898A56E62423B137E743A8A9CED0099532514E2F15BAAE334 ] Intel® Security Assist C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe
11:30:40.0056 0x1198  Intel® Security Assist - ok
11:30:40.0118 0x1198  [ 9F7E87F6595D065A8A200A291043045E, 6944F72F73EADC6C9B7691F2C1C6DF1898F22C88EFA78EC0BA8CB5FFD9CE057B ] intelide        C:\Windows\system32\drivers\intelide.sys
11:30:40.0118 0x1198  intelide - ok
11:30:40.0149 0x1198  [ A6BD2E20AE1BC5CB2776C87C28E4F4CA, BD8BE67CED9A4982D785CE9ECBEFE868C3A2E37DF7F9592B9F9049B807A1554B ] intelpep        C:\Windows\system32\drivers\intelpep.sys
11:30:40.0165 0x1198  intelpep - ok
11:30:40.0196 0x1198  [ 2A48DA39542636DB0FA3BA915385D1B3, 6CA0916F5F4B1E81AE6A6233276320599BFA7C129267177703E3BB6468FB4683 ] intelppm        C:\Windows\System32\drivers\intelppm.sys
11:30:40.0212 0x1198  intelppm - ok
11:30:40.0243 0x1198  [ 4A922CAB4AB5F29F1BECC9D95B4B7F05, 7C1006799E26A0B4DF49373A4D0509748C602588CFB3C1CBB409E335F5DF9593 ] iorate          C:\Windows\system32\drivers\iorate.sys
11:30:40.0243 0x1198  iorate - ok
11:30:40.0274 0x1198  [ FE85D0A86CA7A5A99CF8CD04DE7F80AE, 544C01FC01EE728EB5667158207E5F4418FE77A88BA318192A834722DB766F4E ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:30:40.0290 0x1198  IpFilterDriver - ok
11:30:40.0399 0x1198  [ EF1BB0EF8A12C32DD88C409706B8145E, 7AEDE717C258C29592CC8AEC40F61617E5382646E5141E1C0941882ACE5C5758 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
11:30:40.0446 0x1198  iphlpsvc - ok
11:30:40.0478 0x1198  [ 450DBDD716C7911F83E05F78EE18BFA2, 43C0DA172F632131898F315A53DEDD1AE99FB0620AB32B3A5B99FEC498C9AAE5 ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys
11:30:40.0478 0x1198  IPMIDRV - ok
11:30:40.0524 0x1198  [ F1DAECC3B3D6399875D4F10529D6A77C, 6533D2F858816BE6570C998510919FCA2904EC6EF806F61C1FD325E88133111B ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
11:30:40.0542 0x1198  IPNAT - ok
11:30:40.0557 0x1198  [ 7475A2903BB704B446AA6309E34D3362, C94643A1626A9716015EBA7041A1224098501EB7DAA704CBFCAD3DC6F3CFC6AF ] irda            C:\Windows\system32\drivers\irda.sys
11:30:40.0573 0x1198  irda - ok
11:30:40.0589 0x1198  [ 9725E7F0C64CE9916A5CDABE8D6E13C3, 04AF9E48FEF208A2850DF28352E8FDCBF4018982C72C0F67EE12C048C4070116 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
11:30:40.0589 0x1198  IRENUM - ok
11:30:40.0620 0x1198  [ 8C604213A2E73088BFFE6CD2E6F1AE53, B4C4FEE4D398A29F72EC27D5668071D7E68CD943FFFC38624DD5DF5BEBDF46D3 ] irmon           C:\Windows\System32\irmon.dll
11:30:40.0620 0x1198  irmon - ok
11:30:40.0651 0x1198  [ D5FE3C0671B4A73F928FBA3F76559DD8, 0F32C522F97866A0BC2C24D951E58B4F78C90598498AE262896EB1DD441BCCD0 ] isaHelperSvc    C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe
11:30:40.0651 0x1198  isaHelperSvc - ok
11:30:40.0682 0x1198  [ 58040898883A96160D41739C80328BBF, 7F85C91C905811416E266A263DDEFCDCB0B45376AAE51B551AB636C16577DB9F ] isapnp          C:\Windows\system32\drivers\isapnp.sys
11:30:40.0682 0x1198  isapnp - ok
11:30:40.0745 0x1198  [ C9FD02D62E09337B67B0C61EC8CA38CC, DC77E935ECC8474BE9018F0937CB11C137073582B20A0EE107CE247FD9E1F9C1 ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
11:30:40.0776 0x1198  iScsiPrt - ok
11:30:40.0807 0x1198  [ DCEABCDB2EAF57CEDEF5FD5D017ABE1D, 49F3B46BB5F2C5626D07F8F83CF8A9409F473398EB6ED2D11A894C6D6D395A74 ] jhi_service     C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
11:30:40.0823 0x1198  jhi_service - ok
11:30:40.0854 0x1198  [ 210808437570BDDEE71A43535E3A2D30, EF5DE6EE4FF58F44CDE4D4E7F298ABBC9086EC05CC3AE4903060DA878115AC1E ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
11:30:40.0870 0x1198  kbdclass - ok
11:30:40.0901 0x1198  [ 0B779E9FC426CA2268D28181FA6C222F, 83292023A688C3044D096F22242EB954B7F7511BE8341D45FF0AFBD9CB9BCB4E ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
11:30:40.0917 0x1198  kbdhid - ok
11:30:40.0948 0x1198  [ 813BA3EB2CE038F2A5382DDD75CAD60B, 99FA444027CAC247B54317730D54AB0C4C000AE076B97E47470FDA9834594312 ] kdnic           C:\Windows\System32\drivers\kdnic.sys
11:30:40.0948 0x1198  kdnic - ok
11:30:40.0979 0x1198  [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] KeyIso          C:\Windows\system32\lsass.exe
11:30:40.0979 0x1198  KeyIso - ok
11:30:41.0011 0x1198  [ 705C0F8BCCEF6E7CB704CCB454192D7E, FC608C708E2C3BF7A66E57B95E19E71E5F5C87EF359D8BC1A817500B45DF9338 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
11:30:41.0026 0x1198  KSecDD - ok
11:30:41.0073 0x1198  [ 55AD13E2BAFC5AB53A10F8C271F5D242, 058BEF14DCB95574BCAB985F04737BA89483937E8D8A74F7B4CEAFB7400C2397 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
11:30:41.0089 0x1198  KSecPkg - ok
11:30:41.0151 0x1198  [ 4ED115CD1A1099705F56B5E0FFF97CC6, 9CC49DF2CD6AAAE405BA661D13EFC1E05111D1DE3D1E50C39C425AF1F075610B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
11:30:41.0151 0x1198  ksthunk - ok
11:30:41.0229 0x1198  [ 8125BDF7ADC261F75EF0CAD92456E350, 184797AA1D58C4FF743BA60D48590B88B781EE7779205E45E0679DEC79F3E185 ] KtmRm           C:\Windows\system32\msdtckrm.dll
11:30:41.0276 0x1198  KtmRm - ok
11:30:41.0339 0x1198  [ 8CCAB08815B50AD78B823DB3F96C8604, 265E6D582EB7207B5CC577D61CB7BC3646F613047F168CD69BB776C37780EBF5 ] LanmanServer    C:\Windows\system32\srvsvc.dll
11:30:41.0370 0x1198  LanmanServer - ok
11:30:41.0433 0x1198  [ B581907FD94F1FF148BF695331F67612, 05D1FFA456557A291566D788B8DE2485552E361EC3C0F63EA1A710BE940A5398 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:30:41.0464 0x1198  LanmanWorkstation - ok
11:30:41.0526 0x1198  [ F8EBAA1FE6D3BF84752931DE1BFA0E2A, 2F3C512712BA709BBBBD779D9E792DBE324876C402CDCEF0345B8B7ABE1D232A ] lfsvc           C:\Windows\System32\lfsvc.dll
11:30:41.0558 0x1198  lfsvc - ok
11:30:41.0573 0x1198  [ 5A23E4BE0CCF49663C4CF7EB74C20278, 9DF91014B13B7CED1C3D409F90858FD03EFC5C4347C98901B4DF0AFF2B77845D ] LicenseManager  C:\Windows\system32\LicenseManagerSvc.dll
11:30:41.0589 0x1198  LicenseManager - ok
11:30:41.0604 0x1198  [ 5933A6673F00D8255C52957E40C2D601, 0AA1281F8B3F97E360592D1B35EE7D3D614F1AB46007F9884CFFB1C5E647575E ] lltdio          C:\Windows\system32\drivers\lltdio.sys
11:30:41.0620 0x1198  lltdio - ok
11:30:41.0651 0x1198  [ 88A3C935725FA6EA1A228DCC26CF9C6F, 9B1F70644EEFA1EE7CE151A8A970430087339B7A6345F2E0252370929D4AFAC6 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
11:30:41.0714 0x1198  lltdsvc - ok
11:30:41.0761 0x1198  [ 3F858E28AEE6545FA1B64134DFD5C2CE, FFD7B4FB0A7B61BC6B76A172134673842F2CF00E96FA3ED4A8273DC525B6BB92 ] lmhosts         C:\Windows\System32\lmhsvc.dll
11:30:41.0761 0x1198  lmhosts - ok
11:30:41.0823 0x1198  [ 8E1B0946948CCC0BC1FA3CB70374A795, 0B894C129A35E223FF9594725AC90916CBD597FAD2211A18FC2AE03EA8679597 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
11:30:41.0839 0x1198  LSI_SAS - ok
11:30:41.0886 0x1198  [ 4F68163FC04C973500DC4DA0946917B0, DF060C29109EB3978CEDFE781999B0C4C1E8C0FDB133428058D8400C53315EEC ] LSI_SAS2i       C:\Windows\system32\drivers\lsi_sas2i.sys
11:30:41.0901 0x1198  LSI_SAS2i - ok
11:30:41.0948 0x1198  [ E5AC5F2815938651CDCC27F425474673, 3AF0598982153C36A766506FA088F7B84333CC96FEBB050402547AFC613AF9F7 ] LSI_SAS3i       C:\Windows\system32\drivers\lsi_sas3i.sys
11:30:41.0948 0x1198  LSI_SAS3i - ok
11:30:41.0979 0x1198  [ CCF6EC9FB9B8F18E05B4253E81013E48, EBE8D77FEE8B99BD8C29702404774D554673C96DF3FDF3DCEA9C99E22C2709FC ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys
11:30:41.0979 0x1198  LSI_SSS - ok
11:30:42.0089 0x1198  [ 06276381A0797FD417E7068C1210FA06, 204144E9792216F952CED869ECB6B26FB466BF730B8A73FA4799B1EBC1A630AB ] LSM             C:\Windows\System32\lsm.dll
11:30:42.0167 0x1198  LSM - ok
11:30:42.0229 0x1198  [ C9579D32219E5B936AC3A48D470117EC, E61A77191B6BA25D29B1221FEBBE826BBC11F825C0E35A72B4CEFFF8B7FE59A8 ] luafv           C:\Windows\system32\drivers\luafv.sys
11:30:42.0229 0x1198  luafv - ok
11:30:42.0276 0x1198  [ ED5B42D75F3DEE93040B3930DA9F3009, E919DA20E46FE1C81CB76090B799DD858DD4771DB0EBDE4545DB4681A0AFFE8E ] MapsBroker      C:\Windows\System32\moshost.dll
11:30:42.0292 0x1198  MapsBroker - ok
11:30:42.0323 0x1198  [ C3CDCCF07486BD2616A7B82946E07AC0, 1EF95DAB2DA856BC7D7573B2EB2D9006DF337F827F0B56A161D0C97F45DB755E ] megasas         C:\Windows\system32\drivers\megasas.sys
11:30:42.0323 0x1198  megasas - ok
11:30:42.0354 0x1198  [ 2CF0CB2A0ED68C5455371E84C16F9627, 1C9166B52140145F1968E83E52BFF041250811B23C770FE181A18A4BA060CA81 ] megasas2i       C:\Windows\system32\drivers\MegaSas2i.sys
11:30:42.0370 0x1198  megasas2i - ok
11:30:42.0448 0x1198  [ FADB2FE017E69EECE0E1BA78661C2E8C, BE99B49031D8B4B670B6F6B6E829E54406779CF6F1D8AFE8AB79A73E6764AB2F ] megasr          C:\Windows\system32\drivers\megasr.sys
11:30:42.0479 0x1198  megasr - ok
11:30:42.0511 0x1198  [ 55A417C3E41F2A98666CF929EC19108E, A38C262B2863C87E4151525BF26D6AC16E7982D370E2C6998EB15C88C4BC8254 ] MessagingService C:\Windows\System32\MessagingService.dll
11:30:42.0526 0x1198  MessagingService - ok
11:30:42.0620 0x1198  [ FD60818B66B2E8A5415EA840E99A9D8F, 5D2F22909354534B821D958FBEF6A40EB4F642F53C7B509D00949096EF716F36 ] mlx4_bus        C:\Windows\System32\drivers\mlx4_bus.sys
11:30:42.0698 0x1198  mlx4_bus - ok
11:30:42.0730 0x1198  [ 68F6977F1CFBAAC770D940A8C0326FA1, 90EE1E7DAC680EAA5AD50E9B0B9FD8FCE8DD6A02D5EF941B5AA5084CBD40BB80 ] MMCSS           C:\Windows\system32\drivers\mmcss.sys
11:30:42.0730 0x1198  MMCSS - ok
11:30:42.0745 0x1198  [ D842ADDB5911945D51F61A0B1C8F36E3, 5EB93A1FD2D2D9FAB6121356E1AB18F2ADE9550D3033274AF7CA8F7FD51E59ED ] Modem           C:\Windows\system32\drivers\modem.sys
11:30:42.0761 0x1198  Modem - ok
11:30:42.0776 0x1198  [ 9CCCB7FC3EDADEBA461D78615A6011A6, C120B58F25E8CCFD971EB78645C0682F367AD56DC15F2D8C1980CE75B04719DF ] monitor         C:\Windows\System32\drivers\monitor.sys
11:30:42.0792 0x1198  monitor - ok
11:30:42.0823 0x1198  [ 27A07B2FB2E3057DA8DAEA4F25D843C7, 09D2B39E6B9AAEC879E5871DD6BCFF2AEF0B894F3B44649665A685F8B3CA6F27 ] mouclass        C:\Windows\System32\drivers\mouclass.sys
11:30:42.0823 0x1198  mouclass - ok
11:30:42.0854 0x1198  [ 7BD6E7F7C9001AB21B8362CFFEE80B25, C470C3363EEF3A60409A5934988BFB9B72AE7C2BB63CC2C2D006D7EB1C797F6A ] mouhid          C:\Windows\System32\drivers\mouhid.sys
11:30:42.0854 0x1198  mouhid - ok
11:30:42.0886 0x1198  [ F5BDAEE4B7D369D4C74668DCFBA3FF10, 100F39288E56AFE0D39D1CC235BDC9F3727C873CD3114E092DA7A08810BD3EB2 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
11:30:42.0901 0x1198  mountmgr - ok
11:30:42.0933 0x1198  [ 30844BD376F9D01E62C820BEF446F1F8, 910D672EDB544A20AEB4450B4D89830F46EDD28CE0021156176315C5D068A1B4 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
11:30:42.0948 0x1198  mpsdrv - ok
11:30:43.0042 0x1198  [ 779CFDB17EA07A6D26FEBBAC95B65772, 74D9542E8DCCD07396A45A45D2F500AA6F9DCC1DB785A6153EB3067E42F576A4 ] MpsSvc          C:\Windows\system32\mpssvc.dll
11:30:43.0089 0x1198  MpsSvc - ok
11:30:43.0151 0x1198  [ 25D32BE04FE0A23FDF57FD5382757672, 64E39E3E21D9173FB1116B989D80C244C49DA827698A05AF5CC5CD1C6AE155DE ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
11:30:43.0167 0x1198  MRxDAV - ok
11:30:43.0261 0x1198  [ E671EDAB0726E05ECEF4058B4CD73C4D, 9F4C50E635CE2204E3291C8D3D7F658A969E80722B8B6F0304228D9B434C20EA ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
11:30:43.0292 0x1198  mrxsmb - ok
11:30:43.0323 0x1198  [ 200E4A385F5F370D8866BAE25B0D9D32, 114AD45000A0C74EAE26C3075BBFEF80B9386C69D58CE4436CAFCF13613EAEFA ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:30:43.0323 0x1198  mrxsmb10 - ok
11:30:43.0370 0x1198  [ F7C22604CD8AFB9AF1C1E3CE39A5A09F, 3F7B39336F8A72525C667D45C9300CA6D017BDE17A6E23EF794BA59D2F3C78F3 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:30:43.0370 0x1198  mrxsmb20 - ok
11:30:43.0402 0x1198  [ 74C9D21523DAE0C18F413C196DF0058A, 3DB4B8CA368D9DD82FAE2C2BC828A21142C8D29780A7C8667188C447519FF702 ] MsBridge        C:\Windows\system32\drivers\bridge.sys
11:30:43.0417 0x1198  MsBridge - ok
11:30:43.0464 0x1198  [ 308F08347923DEEDE7BC03EC7D485841, 72DB45CA11FE635DF9F8273C38CBEFB8DF5362ADA0CBF6D2B1E570365DC700C0 ] MSDTC           C:\Windows\System32\msdtc.exe
11:30:43.0527 0x1198  MSDTC - ok
11:30:43.0573 0x1198  [ F01B849D9D4A8CEAF32D4FDBD0B83C92, D2473AC4C6E6C03DEF13EA73EC78FB878BDC95C047651BF79A16C9DEA82AD046 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
11:30:43.0573 0x1198  Msfs - ok
11:30:43.0620 0x1198  [ 22ECD8F5D1DFADF2011BBB1700CB871D, 8F9EFF51137394EFA5471B8A29C541710063B65806B075B4925A84D5B6BC3BBB ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys
11:30:43.0620 0x1198  msgpiowin32 - ok
11:30:43.0650 0x1198  [ FD870F6968A145E4D2BA8A8842686B03, 34B8F601F3B5E42B4D0A41E2AF7DB4EB4E5B627DA8DA9A2A2D46B153AF23AEB1 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
11:30:43.0650 0x1198  mshidkmdf - ok
11:30:43.0681 0x1198  [ 30364757963A028CE5DF0FBAAC270173, C72588A6A52FF8E418A15D2C407A4DB7EA768585423720145F8253D5CA519DC2 ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys
11:30:43.0681 0x1198  mshidumdf - ok
11:30:43.0712 0x1198  [ 6BB0FEDDAE7135FA37FFAFF4D9E0E876, B41A3C0FFDFC493D6325ED493445AFCED04EC9DFF2B38125616FC5419AD1ACC4 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
11:30:43.0712 0x1198  msisadrv - ok
11:30:43.0775 0x1198  [ 07E3E54734B14F43A4A95A849C0A0DE2, 314AA02EA84D267B32DBAEBEA6C1AC1A266DED1E8D35A17B41D1D2AC75E8049E ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
11:30:43.0790 0x1198  MSiSCSI - ok
11:30:43.0822 0x1198  msiserver - ok
11:30:43.0853 0x1198  [ 13D614E6B51ECF36746C48CE829FA7F6, CAD63C0A4F7110093F84C58252C5803F14E3FC46584B79DA17EC86D49FEAEA64 ] MSKSSRV         C:\Windows\system32\DRIVERS\MSKSSRV.sys
11:30:43.0868 0x1198  MSKSSRV - ok
11:30:43.0884 0x1198  [ 642CDE46351D5D2D90311E77072AB46D, B2D3033E607BA2F6E6B9CFB1CBF154CD0CE910EA473C56343EC81B9B94044CCA ] MsLldp          C:\Windows\system32\drivers\mslldp.sys
11:30:43.0900 0x1198  MsLldp - ok
11:30:43.0915 0x1198  [ F2302A5CE63CA7673200FAFCEEEDB6AF, B8C44FC2DC0332183DE325CDBF511101F3307225295EDD428CE575A8DE15C223 ] MSPCLOCK        C:\Windows\system32\DRIVERS\MSPCLOCK.sys
11:30:43.0915 0x1198  MSPCLOCK - ok
11:30:43.0931 0x1198  [ 6114512EA26E835BA522C63635429DB5, 0F91CE41B4555316A79AEF3047C152D538CC9C7C329987C9FD0E3D961AFC87C8 ] MSPQM           C:\Windows\system32\DRIVERS\MSPQM.sys
11:30:43.0931 0x1198  MSPQM - ok
11:30:43.0978 0x1198  [ AA538E16E644D00E3BA5349BBA9598EC, 64A68B06883FE7ED34E04AB119BA819753F1222923EDD4E802C35D402B89D075 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
11:30:43.0993 0x1198  MsRPC - ok
11:30:44.0009 0x1198  [ 0543BEFD41EC4D25C7F7CF36409CEC7D, 631622CFEC49952C0470531B23FFFFF483DC0EFFEF7A97B1179A600392C05DDD ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
11:30:44.0009 0x1198  mssmbios - ok
11:30:44.0025 0x1198  [ C1569E4DB8EFE3617847BF041A3C842F, 99ADE5E7F50E04CAEC737F7F90741CCA8EE628996BA5EB6C6BC62184884429B6 ] MSTEE           C:\Windows\system32\DRIVERS\MSTEE.sys
11:30:44.0040 0x1198  MSTEE - ok
11:30:44.0040 0x1198  [ 130B16970154BA9876B09E5C4BAC63BE, BE3AF8FC5A26AB9C9DBA9C015C2E1FD3C4CD9CB423A2BBDABA91428BF8620553 ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
11:30:44.0040 0x1198  MTConfig - ok
11:30:44.0072 0x1198  [ 15D987C8F6CCD4AC94E070C5986762CB, 452FB0C48B86C7F8F53794CC2DDBF2B900B03A0383B2DE8F6A830F8CB0AFBAD8 ] Mup             C:\Windows\system32\Drivers\mup.sys
11:30:44.0087 0x1198  Mup - ok
11:30:44.0103 0x1198  [ 3D2C5B4995CA0751D32DEA0DE9FDFE44, A26958785FD9E05E2CA97078C9BB277CD44222BF5F7D9E8DC2F3F6AAAFFC6483 ] mvumis          C:\Windows\system32\drivers\mvumis.sys
11:30:44.0103 0x1198  mvumis - ok
11:30:44.0150 0x1198  [ DB31EBB04C871F422C36A0962DA7D38B, B1BC2344744F537FB2C7D07B415F860195B7795E185253F05C0817A3764FEC10 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
11:30:44.0197 0x1198  NativeWifiP - ok
11:30:44.0212 0x1198  NAVENG - ok
11:30:44.0228 0x1198  NAVEX15 - ok
11:30:44.0275 0x1198  [ C3D9870E680D9D843B18F4626C3858FE, 43596CAC9FB488F810FBA954C52BC4D13F7D32028C40ACFE33DFD7EE36A65C17 ] NcaSvc          C:\Windows\System32\ncasvc.dll
11:30:44.0275 0x1198  NcaSvc - ok
11:30:44.0322 0x1198  [ 04CE2C0F0759EACD886BA4B658B60D5D, E34D0976FC5936C8629800D826DB127072D1DFC3D350EFACA3AA1B8119551762 ] NcbService      C:\Windows\System32\ncbservice.dll
11:30:44.0337 0x1198  NcbService - ok
11:30:44.0353 0x1198  [ E6094065008FE423377294050E7CEA2D, 86E200227256407530E2C28243DEFBC3CB6E9497644404D9AD79DA242286DF7B ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
11:30:44.0368 0x1198  NcdAutoSetup - ok
11:30:44.0384 0x1198  [ 629CB21AC49C8867E0F29DF1C16DB7B4, 20663E68C69D0A1A2FE99A0C2A9DEFABF49786A1DC8F7F4E1699458AF57D7E79 ] ndfltr          C:\Windows\System32\drivers\ndfltr.sys
11:30:44.0384 0x1198  ndfltr - ok
11:30:44.0494 0x1198  [ D5564FC81350458ED570528C4E3B1CCF, DD3C5012492EF9BCE3BE635BBB3AA40B3C5F5FDBD795A76B327D9C994102AC2B ] NDIS            C:\Windows\system32\drivers\ndis.sys
11:30:44.0556 0x1198  NDIS - ok
11:30:44.0572 0x1198  [ 6DD605338FAAF6BA17662AA874E0D162, 636607829F5D7C3B7A4683C0A2DD594360D72F2AA3F8710153BE32575AE34A15 ] NdisCap         C:\Windows\system32\drivers\ndiscap.sys
11:30:44.0572 0x1198  NdisCap - ok
11:30:44.0603 0x1198  [ E34196F285F8B8879E1FF36C31F7179E, 77A4F24F995D4C0689C43F9956E08DCEC62517E4F8B1B9EAA1852B5293DB5B9A ] NdisImPlatform  C:\Windows\system32\drivers\NdisImPlatform.sys
11:30:44.0619 0x1198  NdisImPlatform - ok
11:30:44.0634 0x1198  [ 1FAD2398673F30CEC616B89C46B7DCBA, 70302049E6AE2BC6B3A7A9DE54D3F940AD6A9771CC2EBCCEC65994E67A25ECB5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
11:30:44.0634 0x1198  NdisTapi - ok
11:30:44.0650 0x1198  [ AEB8ECBE66CC46854066CB1F5623E179, 2F650A85A9DAE38887610C0B876621035616CEDB65D4BBBD7F1405616D218AAF ] Ndisuio         C:\Windows\system32\drivers\ndisuio.sys
11:30:44.0666 0x1198  Ndisuio - ok
11:30:44.0681 0x1198  [ 7340104C2BF2F126714F7CDE85E63610, 45B64EC6F3A4C43F7D74806789067658C6EF0D44D36B841F4D26E1EBC95AF66C ] NdisVirtualBus  C:\Windows\System32\drivers\NdisVirtualBus.sys
11:30:44.0681 0x1198  NdisVirtualBus - ok
11:30:44.0728 0x1198  [ 07ADC1F8DCBEB8104D75129B11584B8C, CB51A294D9FD4E210DBEEF05A1E60A96CE52D6D138EF62A54E1F608F90FED300 ] NdisWan         C:\Windows\System32\drivers\ndiswan.sys
11:30:44.0744 0x1198  NdisWan - ok
11:30:44.0759 0x1198  [ 07ADC1F8DCBEB8104D75129B11584B8C, CB51A294D9FD4E210DBEEF05A1E60A96CE52D6D138EF62A54E1F608F90FED300 ] ndiswanlegacy   C:\Windows\system32\DRIVERS\ndiswan.sys
11:30:44.0775 0x1198  ndiswanlegacy - ok
11:30:44.0806 0x1198  [ 78A12E3DF035B5D054986949B19BE43C, AD9B34F89B9F27D473BD5FCE6694A40FCCB808B61ABEDD6F70F1AF6C7E73ABF8 ] ndproxy         C:\Windows\system32\DRIVERS\NDProxy.sys
11:30:44.0822 0x1198  ndproxy - ok
11:30:44.0853 0x1198  [ 04C8859355C1DC9C0FA198D1894D71C2, E7C67E73009341B5D402470C686781B3C7BBE2531CE26665E08E711B990B1A77 ] Ndu             C:\Windows\system32\drivers\Ndu.sys
11:30:44.0853 0x1198  Ndu - ok
11:30:44.0884 0x1198  [ 6C76780A01FC2B885BD6E957B5C36B02, DB7834F03A765F65C773E772D8051AFADB22CA4B5074180AA397857A0C47A068 ] NetAdapterCx    C:\Windows\system32\drivers\NetAdapterCx.sys
11:30:44.0900 0x1198  NetAdapterCx - ok
11:30:44.0931 0x1198  [ 5D1513BD6430307C9DB86C6E351372ED, D2AB709CF7CFA5B857B084AFC821914A975B7DDDCE154229981F19448973BD6D ] NetBIOS         C:\Windows\system32\drivers\netbios.sys
11:30:44.0947 0x1198  NetBIOS - ok
11:30:45.0009 0x1198  [ 6FEBB0A847FFD5F057B9AC8889F1B9A7, 558BCC64C59079E6569F61CCE1219A124B3313FC4E6CB5CBCC94124D202FF19D ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
11:30:45.0040 0x1198  NetBT - ok
11:30:45.0072 0x1198  [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] Netlogon        C:\Windows\system32\lsass.exe
11:30:45.0087 0x1198  Netlogon - ok
11:30:45.0119 0x1198  [ D3BF2DA9216A4CF22A97820A50A67EFF, D00CBE0A7ECFB449D9B48967A01EE56141404EBE229893D5A1710781AD5F2551 ] Netman          C:\Windows\System32\netman.dll
11:30:45.0134 0x1198  Netman - ok
11:30:45.0197 0x1198  [ F2645D51DD8AABC8BC72358409410437, 8CB97628923D6CEA6EFAD7E666BE92C154060BD108C28D46287A520A14B18ADA ] netprofm        C:\Windows\System32\netprofmsvc.dll
11:30:45.0212 0x1198  netprofm - ok
11:30:45.0244 0x1198  [ 724EA060EF56BAB4DED8F731FA56279B, E07FFE11D7B5C94D6B56940C6423ACB85910F6E8789E788EC91EEEE1C02B247F ] NetSetupSvc     C:\Windows\System32\NetSetupSvc.dll
11:30:45.0259 0x1198  NetSetupSvc - ok
11:30:45.0337 0x1198  [ EFA857E2B0CC7C9DFEF48A2187B910F7, 424475568CD70237F056838388A5F7BDCD1B09349085498644C75940B12E8EAF ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:30:45.0415 0x1198  NetTcpPortSharing - ok
11:30:45.0509 0x1198  [ B996DE26A2E16053C9485F5905B05320, 30EB2CEB466A4F05A44F7CBFCDFD8CC3C27B5FCF1269C1B9410C48AB362D2A75 ] NgcCtnrSvc      C:\Windows\System32\NgcCtnrSvc.dll
11:30:45.0540 0x1198  NgcCtnrSvc - ok
11:30:45.0619 0x1198  [ 54C31C2B815E2E26BB8158022F837C9C, CED660D1A58F635C6452F82FCB2EF8ACEEB7785E31617B2ADFD9EE69A2BDF2B8 ] NgcSvc          C:\Windows\system32\ngcsvc.dll
11:30:45.0665 0x1198  NgcSvc - ok
11:30:45.0712 0x1198  [ 9B9F520C72EE33EAEC857124BB800243, DFA9386B272F4D86F3E4BE861A2FC4617261E1AA40576DDA610FC24AB4961A63 ] NlaSvc          C:\Windows\System32\nlasvc.dll
11:30:45.0728 0x1198  NlaSvc - ok
11:30:45.0759 0x1198  [ 001CBD7A2CD45C4EB39C01C3C677EF73, F4AAF4D60DB1232921C7811A62287B55C7C098B7A1FF9A40D88AF58A5ABECBA2 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
11:30:45.0759 0x1198  Npfs - ok
11:30:45.0790 0x1198  [ 90F5DC9802AAA00CD0B6E2AD9E7FFADC, 71C0777829299DECA6ACD42F38802DBE3C29A42CFBD8A396F39DFA44D1F55B6C ] npsvctrig       C:\Windows\System32\drivers\npsvctrig.sys
11:30:45.0806 0x1198  npsvctrig - ok
11:30:45.0947 0x1198  [ 426B54D7CF26856D0AFEDA8604C71874, 9F07CADF43865B352A546B1C70788E8D906514B6918D2490D535B1883BE7B6A5 ] NS              C:\Program Files (x86)\Norton Security\Engine\22.9.0.68\NS.exe
11:30:45.0978 0x1198  NS - ok
11:30:46.0009 0x1198  [ 1993C85962692EF7024501E7FE92D466, F5BCAA8308495EBF8BB061C2015E07C202A779668D171364D7E312975BC18B10 ] nsi             C:\Windows\system32\nsisvc.dll
11:30:46.0009 0x1198  nsi - ok
11:30:46.0040 0x1198  [ 0C6218321A09A7B51BA7FFAFBA4CCB21, 330B3FA793A78410B28DFC8250BBF24442E3BB80434A7938BB96F02337614E0D ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
11:30:46.0056 0x1198  nsiproxy - ok
11:30:46.0228 0x1198  [ 5DD8CB01C0394F8D052763D2E3C6E684, BF58C1586A2402576B91D7F862861974F7BDB38704E88F4974FF3F1D1B481386 ] NTFS            C:\Windows\system32\drivers\NTFS.sys
11:30:46.0353 0x1198  NTFS - ok
11:30:46.0384 0x1198  [ 6E6DD6F9DD2A034CF85E94047DBDB992, 63D0A0756F551B7668D1CBAB24B29FD462C706E8A81690BC248D6C92061FE215 ] Null            C:\Windows\system32\drivers\Null.sys
11:30:46.0384 0x1198  Null - ok
11:30:46.0415 0x1198  [ D261DF41F0840F734856A2B4F5E072C7, 2E703556D0C919375D0B7770513456844B13362190643D5524663EC8546E0FF5 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
11:30:46.0415 0x1198  nvraid - ok
11:30:46.0431 0x1198  [ 23B702B555EB0436B9DAA0BC63DA65CE, D454F80D9657CFEC852F022C12D7B2C1A2D7D247ECC591EDB07B9369DFD8C99E ] nvstor          C:\Windows\system32\drivers\nvstor.sys
11:30:46.0447 0x1198  nvstor - ok
11:30:46.0478 0x1198  [ 17997DC2441F7E29CDFC6458E0392764, 636CCE2DA1EF8195B33F8D6D5C8CC151D58EBF08DC9AD8ACCCE7ABD41A69639F ] OneSyncSvc      C:\Windows\System32\APHostService.dll
11:30:46.0509 0x1198  OneSyncSvc - ok
11:30:46.0619 0x1198  [ 0CC20BD62B5A34C2A6C537F3BE74A026, 0C79DE467BEF17D520C7DBC00DB75394EBB6D4CF272A02A72CD5947F37D73867 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:30:46.0634 0x1198  ose - ok
11:30:46.0728 0x1198  [ 4578ECA1FCEF4E7C787D84F78625143B, F5FE84D6D7412A4C037772593C434253D590E476B0B7498987A1697BED86A510 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
11:30:46.0759 0x1198  p2pimsvc - ok
11:30:46.0838 0x1198  [ 2BBCED66D7AFC968BDBB0E4D8524DF0A, 762D916390F9DE69B3EA1D31244224F910645F8E5CEF4C505B76B215BFDFCD9A ] p2psvc          C:\Windows\system32\p2psvc.dll
11:30:46.0869 0x1198  p2psvc - ok
11:30:46.0884 0x1198  [ 6B81BF7853D161DB8AC62CD8B9C2DE6B, B2DC06D135FD2501217DDA7349556EB873309E02188D4C3901807BA24FAB30C7 ] Parport         C:\Windows\System32\drivers\parport.sys
11:30:46.0900 0x1198  Parport - ok
11:30:46.0947 0x1198  [ 9DB326B54C03EF2892E7551D8B354036, 64CD77E8A4425E80CFB61DEE33C1A677A4044C6FC0614D74B20BDDD7C5D5334D ] partmgr         C:\Windows\system32\drivers\partmgr.sys
11:30:46.0963 0x1198  partmgr - ok
11:30:47.0041 0x1198  [ CDD8EDF4C35BE6D6137112F5CC7A70DA, 80EECA6BC2E668E5652A5CA9B119CCCE2A2E421F0EED1FD0EAC20C42E77C02ED ] PcaSvc          C:\Windows\System32\pcasvc.dll
11:30:47.0072 0x1198  PcaSvc - ok
11:30:47.0134 0x1198  [ 101CC1FD8D48ED1EF71F0840158D0E6D, A944D70DE230E3FBD8B371EF3BED1FCD12AAFD56945A8F5C44994AF13283FCCD ] pci             C:\Windows\system32\drivers\pci.sys
11:30:47.0150 0x1198  pci - ok
11:30:47.0197 0x1198  [ 214DCC87E3898F738075D1341252A552, E721FBBC3510DDB848A8CAEA3B6031EE988F42252DBC3BF7BDB6ABD9A0D9FABD ] pciide          C:\Windows\system32\drivers\pciide.sys
11:30:47.0197 0x1198  pciide - ok
11:30:47.0228 0x1198  [ AED76A3333B3A31536E430020E0226FC, EC255B79B0908E3C142D92E35B79D90A3F2594BA012CA2B1B04A6A8745153430 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
11:30:47.0228 0x1198  pcmcia - ok
11:30:47.0259 0x1198  [ E63FB38B6E75B39467492FBAD2CD512A, DB406C92BA2460C833A49B98EB5BD58348E868F643A0123B0C9B5315FFC6A124 ] pcw             C:\Windows\system32\drivers\pcw.sys
11:30:47.0259 0x1198  pcw - ok
11:30:47.0306 0x1198  [ 9EA203A07EFA6D74F07F32EF0DAB5CA6, D851F1CC748B4CD0E263931668FFF2FE20D5778267F4FF2237D565CFC171B5AF ] pdc             C:\Windows\system32\drivers\pdc.sys
11:30:47.0322 0x1198  pdc - ok
11:30:47.0400 0x1198  [ 1509A77F840AA9E72CF8247D0CF2FBDE, 2D47AD4D8F5C2D871E603FB6D72D25EFD0E63FA3A542DAADAB9D82ED074C0E0B ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
11:30:47.0431 0x1198  PEAUTH - ok
11:30:47.0541 0x1198  [ 540116170E2135FCD5DDE77702166B67, CBEC51C2D47532F1781B3255040F303263420B204C2F8BB2B5D1EC342F57B285 ] percsas2i       C:\Windows\system32\drivers\percsas2i.sys
11:30:47.0541 0x1198  percsas2i - ok
11:30:47.0572 0x1198  [ 8356F87553BF49C703CF382033815898, 245EB941566D848F134629690BF271B1CBEAB6440771D3D8D7AED3756835354E ] percsas3i       C:\Windows\system32\drivers\percsas3i.sys
11:30:47.0587 0x1198  percsas3i - ok
11:30:47.0717 0x1198  [ CB5343FF52A702A9ACFAAE6BE972FE09, EAA5362D91D05D382DF4EBBAA3FD575456F23CAD531CC6F1270F8254892DBF02 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
11:30:47.0733 0x1198  PerfHost - ok
11:30:47.0842 0x1198  [ D0D57322ABC7473E54472D8374169CC5, BD14A13D6908C8669E56EF9401FD8A3D7C618E8B6556B36E634864E733BCA4B2 ] PhoneSvc        C:\Windows\System32\PhoneService.dll
11:30:47.0873 0x1198  PhoneSvc - ok
11:30:47.0920 0x1198  [ B4AB2C0177715FFAED88A1223212043A, 1920792ADC78DD51EF98B6A9634D686EAED0848FB7EF74A0DCD3AEBA5AF41EC6 ] PimIndexMaintenanceSvc C:\Windows\System32\PimIndexMaintenance.dll
11:30:47.0936 0x1198  PimIndexMaintenanceSvc - ok
11:30:48.0076 0x1198  [ F931F21E4287FE3ECCF09B54A232BBA2, CEB7AB3236E5F30214027092B7B695ED35F7A1E007DF4046797D1E4DFEF49EC8 ] pla             C:\Windows\system32\pla.dll
11:30:48.0233 0x1198  pla - ok
11:30:48.0279 0x1198  [ FEA494AC3A1BAE63C1F2AF267D49F1DB, 0722FEA2481740B53EF26B1CA59166C63C157A5C708AC93DF3FBB74A27266C9C ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
11:30:48.0295 0x1198  PlugPlay - ok
11:30:48.0311 0x1198  [ 56D7A89423325121C4A9BD5C326414F3, 649048C23D1973C3504E26B35362AC99DFE9BF31FFE73F45B43306A212AEA34C ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
11:30:48.0342 0x1198  PNRPAutoReg - ok
11:30:48.0389 0x1198  [ 4578ECA1FCEF4E7C787D84F78625143B, F5FE84D6D7412A4C037772593C434253D590E476B0B7498987A1697BED86A510 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
11:30:48.0420 0x1198  PNRPsvc - ok
11:30:48.0483 0x1198  [ F70CAC34B455D05EAA04B2F8FB58E1CB, 295BFFB3DA03C5CE5462C11D3240024B68AC06E8DEA9062A739BE2CCEE19EB5D ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
11:30:48.0514 0x1198  PolicyAgent - ok
11:30:48.0545 0x1198  [ 60C8376B48BA96F07AEA536527433D44, EB988C119C3E71169B91ED2A744C71933DD35447DC4A8249E80EC24E9E7077D4 ] Power           C:\Windows\system32\umpo.dll
11:30:48.0545 0x1198  Power - ok
11:30:48.0576 0x1198  [ 5645B9D9788CCA2C88B9534996ED2D6D, 4988942DF163DB5B9B1A08CE6B628D2C47C2E2EAA30AEAE4EFE21C8CF4C8DC5D ] PptpMiniport    C:\Windows\System32\drivers\raspptp.sys
11:30:48.0576 0x1198  PptpMiniport - ok
11:30:48.0873 0x1198  [ 7196D3C2E2E3129814C8DAB91F9A7D1E, 6763E4BF8E846B597E78778E520F5BADC95608BAA4EA0AC84971384B5D976DD7 ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
11:30:49.0092 0x1198  PrintNotify - ok
11:30:49.0123 0x1198  [ 372913E12677A8CBBBABDD8311894F9D, A5233D95A0D22D2A9DB214E7CB79A99D389B67189FF6A87D0AD4610A333A637F ] Processor       C:\Windows\System32\drivers\processr.sys
11:30:49.0139 0x1198  Processor - ok
11:30:49.0201 0x1198  [ AAA31951B1D669EF912E42744095D6AD, 71F39A1582A23761DE64E1E9B400AC2B17582CD0681446EE442C755F6C7B4784 ] Product Registration C:\Program Files\Dell\Dell Product Registration\PRSvc.exe
11:30:49.0217 0x1198  Product Registration - ok
11:30:49.0295 0x1198  [ 1F115AF75EFBAC28479B4F94A3F8D4A3, BE8D8C50D985F6AF9DDC0F13BDBE2D55D600E1F5E344982536538B14EC484AA6 ] ProfSvc         C:\Windows\system32\profsvc.dll
11:30:49.0327 0x1198  ProfSvc - ok
11:30:49.0358 0x1198  [ FC98407B85A31161851FDE245517574F, 2CCD706CF243934FCDA32B24CE0C385EA2E67F206E0306FA584496F583A20CD1 ] Psched          C:\Windows\system32\drivers\pacer.sys
11:30:49.0373 0x1198  Psched - ok
11:30:49.0451 0x1198  [ 7A68710BAC9B6809314B86C0CB1CBC4A, C02D97993D1F6FE6EFBA5B1366B3A4FE8CE1136A95F3A2DA07BA59554C163501 ] QWAVE           C:\Windows\system32\qwave.dll
11:30:49.0498 0x1198  QWAVE - ok
11:30:49.0530 0x1198  [ 819602BBBFDB0BD46DEA3715BF0DD452, D4007FF1E5296316B53436CA3598D6B1CF4F60AB77D5B02F3E595081EDD5D879 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
11:30:49.0530 0x1198  QWAVEdrv - ok
11:30:49.0561 0x1198  [ CDF47037A0939F56D11F699629C276AD, A63F2A3FE80FB8084E3870E907505694B79EE1D9E56E292C01D481FEFD2534B0 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
11:30:49.0561 0x1198  RasAcd - ok
11:30:49.0592 0x1198  [ 28C2EA278070EE12701D0EDF8CB0EC36, F10288C1C6835840026DB30285345EF892DE989F43C948E7F4760B8895FF675F ] RasAgileVpn     C:\Windows\System32\drivers\AgileVpn.sys
11:30:49.0592 0x1198  RasAgileVpn - ok
11:30:49.0623 0x1198  [ 7B82197BF35CC3BE59AEF8B706AB8A16, AB0216164A548A48CD21F5F035E57E867584A96890B9887EC08F8DABDD89F990 ] RasAuto         C:\Windows\System32\rasauto.dll
11:30:49.0623 0x1198  RasAuto - ok
11:30:49.0639 0x1198  [ 17E565710172ED71B8531D8822E1C5D1, 0CA39ABD9E544DDAD9D9D7D1FC50444274C31E18F9BF73069051D9F62833698F ] Rasl2tp         C:\Windows\System32\drivers\rasl2tp.sys
11:30:49.0655 0x1198  Rasl2tp - ok
11:30:49.0717 0x1198  [ 3C0A10FFC3CB95D249CA64D62BC912EF, 8A75398EF3FF4BBE822031B3D1C63BFC75ABE11AB35BC0451DFF3B1D56477D97 ] RasMan          C:\Windows\System32\rasmans.dll
11:30:49.0764 0x1198  RasMan - ok
11:30:49.0795 0x1198  [ 9387DF155233D45D4E010F4F2FB52A57, CABC25DA4E512809AED0085767BDD94BF3C1DA792BFF8A009B5465D9110E7060 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
11:30:49.0795 0x1198  RasPppoe - ok
11:30:49.0811 0x1198  [ F0F4EEDEEBEE7A4244FAFB96A16B5712, F64717E601BD5EB674003009507B8CDD6F69F00E8670D6895EC64786166A0E8D ] RasSstp         C:\Windows\System32\drivers\rassstp.sys
11:30:49.0811 0x1198  RasSstp - ok
11:30:49.0858 0x1198  [ EDAF0E161BE98CCC4FC9671481600745, 50DB73C341086E346F6EF57E40A7C3A8F6279E5EBB53A67F9B71B7877EB75734 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
11:30:49.0873 0x1198  rdbss - ok
11:30:49.0905 0x1198  [ 79A415E6FA915EFC00297DAB16EC2635, 47BB49F6D756214193D38A4AB182B541AAC180381C3111FF7F9B0AD4C44D8733 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
11:30:49.0905 0x1198  rdpbus - ok
11:30:49.0936 0x1198  [ 7135785C21CA79D270D11037C43D3F19, 654A3C65CF891ED8C82A740D10CF607FC7D709185E664DE03288CEB5B25F03A6 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
11:30:49.0951 0x1198  RDPDR - ok
11:30:49.0998 0x1198  [ 97A61A3CB2B5CB4FC32B3224EF333448, E4F2E8BCEE3639BE57BBC8A8E67FDE42C3A5158F1204684B0ECD216F4AA044A3 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
11:30:49.0998 0x1198  RdpVideoMiniport - ok
11:30:50.0061 0x1198  [ 69BB204AE07EE84ECFAB1BF13C4BD04B, 1CA832CBF4AE4821EEA2A19F9519C2D1D00406B8CCE2A86FE3B33A5F293DB218 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
11:30:50.0076 0x1198  rdyboost - ok
11:30:50.0170 0x1198  [ 940D6F5A2B0A61EE4170DF84F6C95C20, F8EE846DC8015EDFE7CB5BEEDC977EAA9C586BAC2216DE69D8ECCBDBC7408649 ] ReFSv1          C:\Windows\system32\drivers\ReFSv1.sys
11:30:50.0264 0x1198  ReFSv1 - ok
11:30:50.0342 0x1198  [ 13F6B64235C60167052364BF7D99E4CA, BC12EE00775F7456FB922FBD684BF3F0CFABA5BEBB6E162C23B41DED5C20A978 ] RemoteAccess    C:\Windows\System32\mprdim.dll
11:30:50.0374 0x1198  RemoteAccess - ok
11:30:50.0405 0x1198  [ 3183B161B1F05333F6C325577FEF3596, D6A89B2A021377B6F371E5B9EFC36FF018822B28F0ED41F8CD2F00C5C8605707 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
11:30:50.0421 0x1198  RemoteRegistry - ok
11:30:50.0545 0x1198  [ FA62C4E1D753B489832DD0A7033665EE, BB0B59ABC79CEFA949632179239D711944C29E93EBCE60E629DE75AF2C3268B2 ] RetailDemo      C:\Windows\system32\RDXService.dll
11:30:50.0623 0x1198  RetailDemo - ok
11:30:50.0686 0x1198  [ E82F3B1918C6A5FE6EB761CDF1E772AF, 0C993FCB7BFD6E01B70A1821E0DEAFA2CB241AF8C2E6D4CC120F59C1B5F6FF5F ] RFCOMM          C:\Windows\System32\drivers\rfcomm.sys
11:30:50.0701 0x1198  RFCOMM - ok
11:30:50.0780 0x1198  [ 0758FD515EDC3EC67FD38A0049A3768E, 9A9D8EE7E5CEF88F59A5BDF4DFD0CBCBECBAD2681C977D5C65D1275A28F3C3D7 ] RichVideo       C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
11:30:50.0811 0x1198  RichVideo - ok
11:30:50.0858 0x1198  [ 5DAA644F17780FC4E3F4820A46D38FEC, 32C27FFA0A4608B164F4E709CD0D998AB73CA9713BE3E47F9DBC7B3D1B6C7453 ] RmSvc           C:\Windows\System32\RMapi.dll
11:30:50.0905 0x1198  RmSvc - ok
11:30:50.0936 0x1198  [ 672724C8B21B7DC56646045DE4D5B860, 79986E80A92C949C543959F1E35647A9788DAB2892AC20B6DEA5C0BBC0CEDE9E ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
11:30:50.0952 0x1198  RpcEptMapper - ok
11:30:50.0983 0x1198  [ 109C1D609951E886D3643B15C1EDD1C2, 347D8E7C50EC7F96217C7421D9BC8A42C9DF50B94169CB58DCF857A63C33C2EA ] RpcLocator      C:\Windows\system32\locator.exe
11:30:50.0999 0x1198  RpcLocator - ok
11:30:51.0108 0x1198  [ 7BD259FC59CF9C2AE1B979564B374CC6, 299832FCE304A85080C80ABFE820A6093AC15A7C1E7C89D8C946708E955A2909 ] RpcSs           C:\Windows\system32\rpcss.dll
11:30:51.0155 0x1198  RpcSs - ok
11:30:51.0202 0x1198  [ 5FF28F097C9699097B473F8FC7C1AA7D, 695560F1DBD85073F3D6CB1FF16F16504CA044EA62E940E463A16BBA8B86E2FA ] rspndr          C:\Windows\system32\drivers\rspndr.sys
11:30:51.0202 0x1198  rspndr - ok
11:30:51.0295 0x1198  [ E737CB52365F114DCFF3A51C856E76BB, 8B6973DA777BDC125E677E6C18D9802C162F645C4BE4C9B51F3E83A5FEA45658 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
11:30:51.0311 0x1198  RtkAudioService - ok
11:30:51.0358 0x1198  [ 02CB159500B40705BE8644F3B42C3992, B4F6238BF2D9E53DE3C43FC4A247700C94B9F0BEFA8D3F0AE043B1F3405A1D70 ] RTSUER          C:\Windows\system32\Drivers\RtsUer.sys
11:30:51.0389 0x1198  RTSUER - ok
11:30:51.0436 0x1198  [ 4A07DC7B29703A49F1DB1DC01657654B, EEC23038EFE0AAB4FF91AC6B348919A5075C288B420B95505B58B7B82E37C581 ] rtux64w10       C:\Windows\System32\drivers\rtux64w10.sys
11:30:51.0451 0x1198  rtux64w10 - ok
11:30:51.0483 0x1198  [ B5DAEE69BACA64D2BB004568E22D8756, C0072CF6B438ED756435A182D55AC55F3AD356ACBD483DE06A94893D3CA8CCC5 ] s3cap           C:\Windows\System32\drivers\vms3cap.sys
11:30:51.0483 0x1198  s3cap - ok
11:30:51.0514 0x1198  [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] SamSs           C:\Windows\system32\lsass.exe
11:30:51.0530 0x1198  SamSs - ok
11:30:51.0576 0x1198  [ 5E73FB63E2DBC75FE0C17DEB0010CE0E, 9DAC47486262397D03BC01F7438CAB62CF33BD7B5283F5B9548C770A3D6D0ADC ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
11:30:51.0603 0x1198  sbp2port - ok
11:30:51.0681 0x1198  [ 3CD0130FFDEAEACF0905B482F3934EA3, 1EC355B63135FD2563093EBB206741C0C4CCE0551A662F6DC86C875146A88B06 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
11:30:51.0712 0x1198  SCardSvr - ok
11:30:51.0774 0x1198  [ 9EE060D6560FFBFBDB2ED5D6ED192294, 14387B69CD26D12BE31A23251B6AA8EDFC4D6CDE4FA558F0950DE91D2DD03946 ] ScDeviceEnum    C:\Windows\System32\ScDeviceEnum.dll
11:30:51.0790 0x1198  ScDeviceEnum - ok
11:30:51.0821 0x1198  [ 3D9A82B03C92D1FEC42CB171D6F57778, DC027F02F5EB5F1D10DB6F405FB0C15D4D5C922445F5F3C916624113278AF072 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
11:30:51.0837 0x1198  scfilter - ok
11:30:51.0978 0x1198  [ D4DB6B318A0A0C74A90260725A228C0B, 57BA2EF9D880488C785C806ABF9EE753A48E589129442D72F815CD6EFFA07B22 ] Schedule        C:\Windows\system32\schedsvc.dll
11:30:52.0056 0x1198  Schedule - ok
11:30:52.0071 0x1198  [ 9055ADDFBA4C8B914C914CE693B55C0A, DB213AC36E14D856B81D2AFE46815402537A2ABEEA15032A9FF436F953129441 ] scmbus          C:\Windows\system32\drivers\scmbus.sys
11:30:52.0087 0x1198  scmbus - ok
11:30:52.0103 0x1198  [ B6F2363584E62960846F7C3F00124A4F, 252189FF9D623CF69BF415FF7C7FE74B0BBF756B632420578BFAFF6595616CF7 ] scmdisk0101     C:\Windows\System32\drivers\scmdisk0101.sys
11:30:52.0103 0x1198  scmdisk0101 - ok
11:30:52.0151 0x1198  [ 9450FA11E9DE6715FCB71A519A8FF90B, B7E341C6E4CE967FCDD0D17A497C07E8A1C6B0AACE8A6E8E5D6C21EF73F13E16 ] SCPolicySvc     C:\Windows\System32\certprop.dll
11:30:52.0159 0x1198  SCPolicySvc - ok
11:30:52.0206 0x1198  [ 7C3D10BEC8B0DBA00A78C78EB10B3AE2, A671C9CB97977613576D70607E106C7A29B9EA9E875C7C5AF293EE5903D7AD0A ] sdbus           C:\Windows\System32\drivers\sdbus.sys
11:30:52.0221 0x1198  sdbus - ok
11:30:52.0253 0x1198  [ F3714DBAA42C15F78FFCDFE4273214EB, 2D018970B92C5F0744FAE10A2FC298F3DCEA5C2EDEB760F4F0651337B9878ABF ] SDRSVC          C:\Windows\System32\SDRSVC.dll
11:30:52.0284 0x1198  SDRSVC - ok
11:30:52.0331 0x1198  [ 120DFCB71D6C502613A9E2D50E16850C, 2C294010AD1C9C380CD5221A37720544178B7358C8C8553AF44055E4CEE5DAF5 ] sdstor          C:\Windows\System32\drivers\sdstor.sys
11:30:52.0331 0x1198  sdstor - ok
11:30:52.0378 0x1198  [ EFD644DD091E1D94555FC3BBC95EA66D, FBDDA6680BEC378CCF12A32D9186020E884DA15A1E789D1531B1E687FC7B54B1 ] seclogon        C:\Windows\system32\seclogon.dll
11:30:52.0393 0x1198  seclogon - ok
11:30:52.0440 0x1198  [ F48535714BED7DD784853889B4594B26, 9B4AB7E7293E79A8F6CC46C84F23E62AD3BD6E958FCE078CDBB125A69FAC7E50 ] SENS            C:\Windows\System32\sens.dll
11:30:52.0456 0x1198  SENS - ok
11:30:52.0597 0x1198  [ 2B4E090D06C60853C5C00CF255F9E02A, 4D4DBA7B04519622612BD4A4F28318CA2F5646C84CAFF8C5ACC9BF4C6031894E ] SensorDataService C:\Windows\System32\SensorDataService.exe
11:30:52.0659 0x1198  SensorDataService - ok
11:30:52.0737 0x1198  [ C09A42163878A082C3F0D0A3DFE95714, 8033DC38D0EDED3758DA6BF8C1955BE5FFE48863C079C589660B37D0E461300F ] SensorService   C:\Windows\system32\SensorService.dll
11:30:52.0784 0x1198  SensorService - ok
11:30:52.0831 0x1198  [ E6F00415DADCEEC860E7AB42BFD19A65, 274CAF22F93D43B6DB6953730E3DF8DA94776B24EEE74B80AB4CD780BC1366A9 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
11:30:52.0862 0x1198  SensrSvc - ok
11:30:52.0894 0x1198  [ 401D706DDC0A7AF18C3DD228ADF74551, 27C0B38D7C2E3F6FF06201124E63483931F6071954B2B99EC0143C464238C0B7 ] SerCx           C:\Windows\system32\drivers\SerCx.sys
11:30:52.0894 0x1198  SerCx - ok
11:30:52.0956 0x1198  [ 7084D11083F0CDCA8B5C76F9846ABF5D, F639920882B0E784D8CFAF0D4C0F0C411937B6831E5DD99B0ABFBFE06BA4742F ] SerCx2          C:\Windows\system32\drivers\SerCx2.sys
11:30:52.0972 0x1198  SerCx2 - ok
11:30:52.0987 0x1198  [ 3FF478A8ED32A83C36581425F6282B6C, 787646A17098EA7CF36064D0A950C1D470D4A280C8C5AC40023D566E53860EAE ] Serenum         C:\Windows\System32\drivers\serenum.sys
11:30:53.0003 0x1198  Serenum - ok
11:30:53.0018 0x1198  [ 92509187AA171A80521528B36F753E1D, FE0DA272B8A155ECC161E99586C4AE7EE17B1C84BC330DA1566C83B8E03FA825 ] Serial          C:\Windows\System32\drivers\serial.sys
11:30:53.0018 0x1198  Serial - ok
11:30:53.0034 0x1198  [ 433D38FF6D08B993847EA2A10EB8CB52, 29BA75DB6D1AC761BBDFB5AC8874FC7D763E1CD10D290E369063B34CE951270F ] sermouse        C:\Windows\System32\drivers\sermouse.sys
11:30:53.0034 0x1198  sermouse - ok
11:30:53.0128 0x1198  [ 82CF273F0E8F243789683DEB40757569, 5433D93A41C4BF04494E6158931C6AC3154888F7CD3A417253EC02FF7EA6D00E ] SessionEnv      C:\Windows\system32\sessenv.dll
11:30:53.0175 0x1198  SessionEnv - ok
11:30:53.0190 0x1198  [ 697D3EE0740AEAB62B66ABCA1C83D13B, FCF54A0071ED04AD3FC8551C67FE5FD49089DC0510F753052CAC5972A65C9E3D ] sfloppy         C:\Windows\System32\drivers\sfloppy.sys
11:30:53.0206 0x1198  sfloppy - ok
11:30:53.0268 0x1198  [ 3D0069B8F0C2FB1B0F13DBDB57593DAD, 4CEC91BC45A51C4E445D2DD8A13AC97719D5AAC1DBA8EA9166D2A354E7857378 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
11:30:53.0300 0x1198  SharedAccess - ok
11:30:53.0394 0x1198  [ 482E6BE8A07832E824080D352075ACA1, 4123A76C8E805AF4FE229C53E9C174095C0937913BA81A63FE9B45C44AA5B15F ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:30:53.0425 0x1198  ShellHWDetection - ok
11:30:53.0472 0x1198  [ CF3BDF9EAD8D3EF671E9339B44B185BA, C17EC6D5B00F49D9C8B5B6C262A85F34ED71C58450659F006B3632AA84F68E23 ] shpamsvc        C:\Windows\system32\Windows.SharedPC.AccountManager.dll
11:30:53.0472 0x1198  shpamsvc - ok
11:30:53.0503 0x1198  [ A34CE1830E45DA98932295FDE4B7908A, FC553ECF4D64B4B10B7FDE5352707785517A18D487A80665BAFC7261E3F35CDC ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
11:30:53.0518 0x1198  SiSRaid2 - ok
11:30:53.0534 0x1198  [ A7B5C670770E908DA5FEF5BF1136E933, 8D3BB6FF65E631C34BE8EA766481B2FDB2E1E916A4FD67F86705A8975A136E6C ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
11:30:53.0534 0x1198  SiSRaid4 - ok
11:30:53.0581 0x1198  [ D233EAE2A9D48485321816486ED635EF, 03AB49BE9CF15EB7EDC50C400E673B4DF0E5BFDA9A7811E157F2AF2F3CF38D49 ] smphost         C:\Windows\System32\smphost.dll
11:30:53.0597 0x1198  smphost - ok
11:30:53.0659 0x1198  [ 0B217141AC1283655402CDB356577735, 6EFA4CA46CFC8B7156CE7E5CA89B7F7073E16D66C2FC13F4DB95FEB78CCF698F ] SmsRouter       C:\Windows\system32\SmsRouterSvc.dll
11:30:53.0722 0x1198  SmsRouter - ok
11:30:53.0769 0x1198  [ 6F4CE07D420FB657B5936F71101ABD41, CEC52984C56E578E0FFE12BE1B8148335F788B7D1751F2D0E79B944A41113C20 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
11:30:53.0784 0x1198  SNMPTRAP - ok
11:30:53.0878 0x1198  [ C994DF90427103CCB80F893FFD2B1CE8, 7E4B08095C77E68D337A3425EEA38F8FEC4D103CA7661E34FD96BF518DFB4BCB ] spaceport       C:\Windows\system32\drivers\spaceport.sys
11:30:53.0925 0x1198  spaceport - ok
11:30:53.0940 0x1198  [ E03264C4C25B568F92ED1656AD541E64, D42942BFFBC7213D204FAF84F4FE015FC23A6ACB29B5E752834EDBC17A3AC20D ] SpbCx           C:\Windows\system32\drivers\SpbCx.sys
11:30:53.0940 0x1198  SpbCx - ok
11:30:54.0034 0x1198  [ 79DCE27E8C4CF6701BFE49EC2446BBF6, F51CBB7A45C3C878F41653FD5FBDC93CC302712B7725DAAB4D3475A1F4771E3D ] Spooler         C:\Windows\System32\spoolsv.exe
11:30:54.0081 0x1198  Spooler - ok
11:30:54.0472 0x1198  [ 23529A00195CE71252FEBF647E56E27D, 8ADF7A1C96DAE005E9A974D90BE8954F88D49B6848252B88513C49E0A3BD9774 ] sppsvc          C:\Windows\system32\sppsvc.exe
11:30:54.0784 0x1198  sppsvc - ok
11:30:54.0940 0x1198  [ D584182DA13EA48D9025C1D61FB72FFB, C0DED207C6860F9080522CF748AE6CE933C05431256B95C6747AB8661AE50A2A ] SRTSP           C:\Windows\System32\Drivers\NSx64\1609000.044\SRTSP64.SYS
11:30:55.0050 0x1198  SRTSP - ok
11:30:55.0097 0x1198  [ 36794962FAB0081D73D61E364EFD05DD, 5E3BE7EEDD57D2F1E6F130F0A6E011323145A715C2FBDF5AD29E7C945ABC0CC2 ] SRTSPX          C:\Windows\system32\drivers\NSx64\1609000.044\SRTSPX64.SYS
11:30:55.0112 0x1198  SRTSPX - ok
11:30:55.0191 0x1198  [ E83830BB74AE8CBECEA0ECD94DE436F9, 4A34569A34260324EBD629039E1BF45A3527FC75B22D9A3DB6360A6EB365483A ] srv             C:\Windows\system32\DRIVERS\srv.sys
11:30:55.0222 0x1198  srv - ok
11:30:55.0300 0x1198  [ 1312896CAE6AF0D4557DB7B37283C116, 9E3701DBBF0F45368A217549A7DFDA2543C4AB3AC9CCF65A73E1FE27CC4A278E ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
11:30:55.0347 0x1198  srv2 - ok
11:30:55.0409 0x1198  [ F13EE0DB1FB1D6946AC3228D7EFCFC8F, 109A809F0338FAB0F4045FA5EE33C6F0A994A9F586B2FBD8920A6AABA0E0EF66 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
11:30:55.0425 0x1198  srvnet - ok
11:30:55.0487 0x1198  [ 44758105AB3EA34E815D4B6CA1153311, 7F223A20D2538C123BAC6F75BE0E126876A116F09502FD980C05B8916E26E1B7 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
11:30:55.0518 0x1198  SSDPSRV - ok
11:30:55.0583 0x1198  [ B97C7EC07218A8002323718202BF5E77, 39D3254383E3F49FD3E2DFF8212F4B5744D8D5E0A6BB320516C5EE525AD211EB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
11:30:55.0614 0x1198  SstpSvc - ok
11:30:55.0896 0x1198  [ FD881B87C853EB2F0B8B7B5CC71D6FE3, 780038C203C9277C366794302D90BC0AE75568863F1FB7044197BA20D798E4BA ] StateRepository C:\Windows\system32\windows.staterepository.dll
11:30:56.0114 0x1198  StateRepository - ok
11:30:56.0161 0x1198  [ 29D26E1347AE1BBD4201014E19880B2C, 9E2153AD96CE4F189EEE43BB02515532C619FB1CA02D8F6DEF517AC3347AAA14 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
11:30:56.0161 0x1198  stexstor - ok
11:30:56.0271 0x1198  [ 91CB95B35481155BFE29C217CD237F27, CA66957DF1441D991453BEF02D768D44E5D9A484BC23C8874E8A7AC20904CB06 ] stisvc          C:\Windows\System32\wiaservc.dll
11:30:56.0349 0x1198  stisvc - ok
11:30:56.0412 0x1198  [ 53EB8CE34B55A1EE63424C8DB7388BFC, 5AB59117BA8A2844EB8693CCC19B217AE039B28C87519F96E1C845FE9BF456C2 ] storahci        C:\Windows\system32\drivers\storahci.sys
11:30:56.0427 0x1198  storahci - ok
11:30:56.0458 0x1198  [ C5E0ACE4771F5575D9D5B457ABF3AD03, 365880BC5AC313F25C313EFB7758301F98D9B2BF4C5FC9499F98C2B7F8407D96 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
11:30:56.0458 0x1198  storflt - ok
11:30:56.0489 0x1198  [ B66D8C75C9BC59D637177AB3B1C569A6, 76252A631F03EEBF5FDC7693F6B0A5E73838CDBE3157114CC96B8BBE88B476BF ] stornvme        C:\Windows\system32\drivers\stornvme.sys
11:30:56.0489 0x1198  stornvme - ok
11:30:56.0521 0x1198  [ BEBF85EB4D90E6996047DA027D0ED26E, DF109CF0F07CDD1B9B702C2A076D4DD5366DAAD971CC9359AF0358E79981706F ] storqosflt      C:\Windows\system32\drivers\storqosflt.sys
11:30:56.0521 0x1198  storqosflt - ok
11:30:56.0567 0x1198  [ 6C982BC7E4DB161530A0D831718D7113, B0FAEACC91023031E53A161ECEFCF62764C96B8705E9089B4A7B4F7A2F3B6BAA ] StorSvc         C:\Windows\system32\storsvc.dll
11:30:56.0583 0x1198  StorSvc - ok
11:30:56.0614 0x1198  [ 8E73037A6F8938475692FFCC26EBF385, F78C5CD1A3CD17AA831EEC82426B14006B4DDBC9085A4814E04E8C37FD6B05F7 ] storufs         C:\Windows\system32\drivers\storufs.sys
11:30:56.0614 0x1198  storufs - ok
11:30:56.0661 0x1198  [ 9D9DED47DA10E845EFF2DD57C94C809B, 520D0CE7A867051B80C8141E351FE5A5BCE3C99776093F234DB77D3407B1F104 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
11:30:56.0661 0x1198  storvsc - ok
11:30:56.0724 0x1198  [ 4BBD324372664F7EC73E93553A92CD2C, 43DE2A7C3A8B64535E104E4FB8AB32AD93EFC10F2EAE3BF287A06A89C5998124 ] SupportAssistAgent C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
11:30:56.0724 0x1198  SupportAssistAgent - ok
11:30:56.0771 0x1198  [ 224C92E442B1B8C20C274332F1ACF00D, CDE5DCFB7A21089464A6E2ABB29BBE08B184C3433C218756AA5902A8F67C0B2C ] svsvc           C:\Windows\system32\svsvc.dll
11:30:56.0771 0x1198  svsvc - ok
11:30:56.0802 0x1198  [ 505E0C40B5D0ADDCBB414640F59BD2E0, DF4B5E65FE6FF2224F298A2A2FAC9B648C082DFF8463148633647580A9FAD34D ] swenum          C:\Windows\System32\drivers\swenum.sys
11:30:56.0817 0x1198  swenum - ok
11:30:56.0896 0x1198  [ 2EE27411B5904C63D723BEA391819F58, C88C11D460E90398E16011B8A2CED5EE5626084F24790EA6115532F8F70060C6 ] swprv           C:\Windows\System32\swprv.dll
11:30:56.0927 0x1198  swprv - ok
11:30:57.0036 0x1198  [ 524DA42A8CE7D57319569042DEDE790F, 64AAC565651787930D9367BFA8147C1BBDD08CDA7D7F1580B49DE5ABA8298C44 ] SymEFASI        C:\Windows\system32\drivers\NSx64\1609000.044\SYMEFASI64.SYS
11:30:57.0130 0x1198  SymEFASI - ok
11:30:57.0161 0x1198  [ 8EB1D78B7FB4F8632E4777636FECE3D9, 2663373C3582D72DF28563B575E55A907BC1FCA9672BFEA7083A240A9857FAF3 ] SymELAM         C:\Windows\system32\drivers\NSx64\1609000.044\SymELAM.sys
11:30:57.0161 0x1198  SymELAM - ok
11:30:57.0208 0x1198  [ 795F3D7EADA700EA18DF8DE490925C7E, F3B464B306744F32CD66D6A4365032BDDA490D1BDEB61F1B4E25A17D53AEA9C1 ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
11:30:57.0224 0x1198  SymEvent - ok
11:30:57.0286 0x1198  [ D1FDDADC2656601FF4E65D1B2653ED50, 4B499BB681765E2A28CB98716FCCA842C2568D4DC275943E00BC2EF2DECC03CB ] SymIRON         C:\Windows\system32\drivers\NSx64\1609000.044\Ironx64.SYS
11:30:57.0302 0x1198  SymIRON - ok
11:30:57.0380 0x1198  [ A0F063F986EA89A0E5B2C95795E8D91A, AF439E312B4828D32F193E4EFD3A59E2C046876FD7E1BB62F6CF58E4A2F44615 ] SymNetS         C:\Windows\System32\Drivers\NSx64\1609000.044\SYMNETS.SYS
11:30:57.0427 0x1198  SymNetS - ok
11:30:57.0474 0x1198  [ 1B5A61A29F1CCE408647226E25337AF3, 6EB5BB199C6A49FDC121DE9E261ECF6149D01363551DA5CA49075D3A4FE2D150 ] SynRMIHID       C:\Windows\system32\DRIVERS\SynRMIHID.sys
11:30:57.0490 0x1198  SynRMIHID - ok
11:30:57.0521 0x1198  [ 32F46FB0F290D16DAA452B289C985795, 73F88AAAA6026DB4C27F1D054145216DCC3F1960946FB2A7A90518DD1D5737CB ] Synth3dVsc      C:\Windows\System32\drivers\Synth3dVsc.sys
11:30:57.0536 0x1198  Synth3dVsc - ok
11:30:57.0630 0x1198  [ E12C2C97DD962D8A761F3F586B0D536F, C9E07F3276D07FF21E2F12916F1A8EAF26EE797E75683C0F95430C81174B41D5 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
11:30:57.0692 0x1198  SynTP - ok
11:30:57.0724 0x1198  [ EC71BAD5F29269AE9AB18833D3DFF5BC, 8FE409C65BDAEA88F767196AB0D446FC652F9DD7324B2B65483991367F50945F ] SynTPEnhService C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
11:30:57.0739 0x1198  SynTPEnhService - ok
11:30:57.0833 0x1198  [ FED48B19D6F55D7A3AB498D85729D1BA, FA5E0E02BC2E2DE108C55991E3B063CC947072228B53539F42F922661510DE7C ] SysMain         C:\Windows\system32\sysmain.dll
11:30:57.0896 0x1198  SysMain - ok
11:30:57.0927 0x1198  [ D9FEA79BF6AF136F8E656AE045C2FEC8, E6F08A93348E035185F0F1C6B6277E636F4F25D1136E3ACCA63488DAEEC7114B ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
11:30:57.0943 0x1198  SystemEventsBroker - ok
11:30:57.0958 0x1198  [ 86E7FD5C8DBEC1EB51C4368561402B75, 86EE61414CD5854E39E33F67BF5DA4377B569B3ED4D18882C470BC6784891DA1 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:30:57.0989 0x1198  TabletInputService - ok
11:30:58.0036 0x1198  [ 3929C8FC134AC672C4F3F85160956257, CD3195CA58BA6F55EA0DDA2BE6AB58280AD1CA488D7AAA1539DD05FB99374F36 ] TapiSrv         C:\Windows\System32\tapisrv.dll
11:30:58.0083 0x1198  TapiSrv - ok
11:30:58.0286 0x1198  [ 4F25E481124059CC593B4C68BC485640, 2814D2BA4E83D3B0F7569E6C6EE0C763D9801BC505D8ED84675D19C8573834DB ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
11:30:58.0411 0x1198  Tcpip - ok
11:30:58.0536 0x1198  [ 4F25E481124059CC593B4C68BC485640, 2814D2BA4E83D3B0F7569E6C6EE0C763D9801BC505D8ED84675D19C8573834DB ] Tcpip6          C:\Windows\system32\drivers\tcpip.sys
11:30:58.0630 0x1198  Tcpip6 - ok
11:30:58.0693 0x1198  [ 8DBB1BE20C36E6D19BCC89EEA00B953C, 8B97A7E53E1D77363AFF6A5AAEAD89EBAE28DCB8D82753C804FD7CD5646500AF ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
11:30:58.0693 0x1198  tcpipreg - ok
11:30:58.0740 0x1198  [ 9D2DD64A0B51C56285512DC9454340F6, ABB90CE6A55269F71AFB08E04969CF9A4EFD93F7A7189AF920EEE3E005214DDD ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
11:30:58.0740 0x1198  tdx - ok
11:30:58.0771 0x1198  [ 06130AFFECEB94525FC2352936576B70, 10EBE2C8FDC087D29E2FFB328F0F7905A5374AB8CC9FAE8699E7676DBC8CBF91 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
11:30:58.0771 0x1198  terminpt - ok
11:30:58.0911 0x1198  [ FB68E5F02316C42BE7282DA492351C6F, AC31D841FEA58B776127E138DB20F8D48E26FD8C00CE2FA9695EA14EBF159A0A ] TermService     C:\Windows\System32\termsrv.dll
11:30:58.0974 0x1198  TermService - ok
11:30:59.0005 0x1198  [ 2AF438EC0D361A7BBB70E604A686602C, 4BE6A0461EB2CB94288614434A1CEC81C2ED46241721FD5BBD8ABE0680F7C804 ] Themes          C:\Windows\system32\themeservice.dll
11:30:59.0005 0x1198  Themes - ok
11:30:59.0052 0x1198  [ 1482B8ED5CACA87992A882B853B83CEE, 613247F0E362A109090E8563D977DECC50C64D45D6962905FA84A2D59329045C ] TieringEngineService C:\Windows\system32\TieringEngineService.exe
11:30:59.0083 0x1198  TieringEngineService - ok
11:30:59.0146 0x1198  [ 3B3C607C3C62DFBEF61938DA2CAB94DF, E5EEA7F45A7BBFDF6F0003CD77E39958C451DD1B4B401876B5619A3C20F5C370 ] tiledatamodelsvc C:\Windows\system32\tileobjserver.dll
11:30:59.0177 0x1198  tiledatamodelsvc - ok
11:30:59.0193 0x1198  [ C1F8CBE2D4843E0CCC3EFEA2EC60D4AB, 9D07527D982066922318C77AECE99280DE55034C375ACE145E827A6BEB5C3B70 ] TimeBrokerSvc   C:\Windows\System32\TimeBrokerServer.dll
11:30:59.0208 0x1198  TimeBrokerSvc - ok
11:30:59.0271 0x1198  [ 3D04046C468AD2868A093925B5E2AA0A, 44696259BEF49AC200DEE146DE0E4375B0CD09F9356CCFA22BD7AD8B53E48658 ] TPM             C:\Windows\System32\drivers\tpm.sys
11:30:59.0286 0x1198  TPM - ok
11:30:59.0333 0x1198  [ 3B91F35089240F6187AD681A5EC28BDE, 3D035CB73BC8E7831DCD0FB7D9DAD91CE51D3D0F9D9C8B866A0009BD508B6702 ] TrkWks          C:\Windows\System32\trkwks.dll
11:30:59.0349 0x1198  TrkWks - ok
11:30:59.0427 0x1198  [ AF343840E793BE63A9C646760BE8F2CD, 483FE55873A01DB7ACEC99B6823DAACC9EA7C67D36C6F12698113B31A7D5B8BE ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:30:59.0458 0x1198  TrustedInstaller - ok
11:30:59.0521 0x1198  [ A6F4025664C9D4BC2A9EDAB4092706D7, 89808A1679C0E716F86F06EE7701DCC289200894F0FA1F120DA2AC3A45FDB312 ] tsusbflt        C:\Windows\system32\drivers\TsUsbFlt.sys
11:30:59.0521 0x1198  tsusbflt - ok
11:30:59.0536 0x1198  [ 37A96AD493E110C0BF1EE0AC0F9E7DBD, F2A6894A4AEE18DF2B92222CDB0801A13AEEB7212071F0431430788339B30E23 ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys
11:30:59.0552 0x1198  TsUsbGD - ok
11:30:59.0590 0x1198  [ 79E264287F17D56D768440B0270466DE, ABF9DC95C5E939B30BFD9BF9EDFDB3BD78A9DFCB055B945965303B6A60E6D7A7 ] tunnel          C:\Windows\System32\drivers\tunnel.sys
11:30:59.0590 0x1198  tunnel - ok
11:30:59.0621 0x1198  [ 6A606227DE13B850DCD28AD0F4112506, 6E65A79635BFD0F739479ED1C9C44075F774F9B4C9B98750A99E6FC780EE1000 ] TXEIx64         C:\Windows\System32\drivers\TXEIx64.sys
11:30:59.0637 0x1198  TXEIx64 - ok
11:30:59.0684 0x1198  [ F723552F65D44FE693DB1A383825B3A8, EF8C343C4EB5EEA4EC830378EF576CCD6CD4EEDEDD486C0F29697044E8C71F45 ] tzautoupdate    C:\Windows\system32\tzautoupdate.dll
11:30:59.0699 0x1198  tzautoupdate - ok
11:30:59.0715 0x1198  [ AA65954F512BA097DD190790876DD991, C1BB2B8F54F064D01190327B5E7949EBBDA21D6FC6F94D9FCD20F685C2F855FA ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
11:30:59.0715 0x1198  UASPStor - ok
11:30:59.0746 0x1198  [ AB6268022C3A5B529075A39C33904DA6, 2717F1704640201F2681711543EA39A74C3E89C7DB232EC5DD89FD8AA6F07846 ] UcmCx0101       C:\Windows\system32\Drivers\UcmCx.sys
11:30:59.0746 0x1198  UcmCx0101 - ok
11:30:59.0762 0x1198  [ 7ED2EDA43D21C7A5F589A7960E265C52, 7DB8A595236FBB8A264D7AB155201357212855050ABB5B1036EF32F1223FDCC2 ] UcmTcpciCx0101  C:\Windows\system32\Drivers\UcmTcpciCx.sys
11:30:59.0762 0x1198  UcmTcpciCx0101 - ok
11:30:59.0777 0x1198  [ 169351463039B45F5CDED9768879F712, 990C8C4AEF9ED7FF6BCEAE67F7BDAA037777B142B8D96A74F8715C941A5C63C6 ] UcmUcsi         C:\Windows\System32\drivers\UcmUcsi.sys
11:30:59.0793 0x1198  UcmUcsi - ok
11:30:59.0824 0x1198  [ 08A9E3AD29B215484FBB68CDC175DF3A, 3EFFF99C3BC4A1454E3D2B5177AE587ED3041AB4CE2A95BA7E28A2124E38E1E5 ] Ucx01000        C:\Windows\system32\drivers\ucx01000.sys
11:30:59.0824 0x1198  Ucx01000 - ok
11:30:59.0856 0x1198  [ DA70AEE267491AA56BC63AA0C0C96CA2, 0A0AADB27607F9292BB3CE000CFDDB19BD4CA09EAAD926C4925CB43B17817AD9 ] UdeCx           C:\Windows\system32\drivers\udecx.sys
11:30:59.0856 0x1198  UdeCx - ok
11:30:59.0887 0x1198  [ FBC5ECF6D5A868D0B116C2DBB02B8168, 945AA76C60ABAD6075B5C8F9172C018F75BCF393A1CB8B329F5E68E664627775 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
11:30:59.0902 0x1198  udfs - ok
11:30:59.0918 0x1198  [ B918E40FAA9CD118CCA4AD388B748C98, 4B539B7B656F02C5E5BAEE52A677757B05CC11C5500D619850A564C28FAB8115 ] UEFI            C:\Windows\System32\drivers\UEFI.sys
11:30:59.0918 0x1198  UEFI - ok
11:30:59.0949 0x1198  [ 0FD75222C1AD2687AB365BEBEA400DD4, AD10DBCA59EB7D34FD8F963CE267F36774A9BC613F8D637903B12AC88C328E8A ] Ufx01000        C:\Windows\system32\drivers\ufx01000.sys
11:30:59.0965 0x1198  Ufx01000 - ok
11:30:59.0996 0x1198  [ C1A78C53E01C641AE41BFA65797819F5, 0B9FE1BD724B3315199A1B1DA2F03255E4FE744DA3CE6CD0F77699A8E42E9359 ] UfxChipidea     C:\Windows\System32\drivers\UfxChipidea.sys
11:30:59.0996 0x1198  UfxChipidea - ok
11:31:00.0027 0x1198  [ 767307212110EBEFB93EC9A5BE9E85B9, 368797400FE54802CE74F34B773CE2AF09EB8DEA6C035B55419A52F0B5A6FAD0 ] ufxsynopsys     C:\Windows\System32\drivers\ufxsynopsys.sys
11:31:00.0043 0x1198  ufxsynopsys - ok
11:31:00.0106 0x1198  [ 8578F83EC5175920F2D8586FFF9DCE47, 049A16AC87F93E761150C8286633FFCA62EE85F5645DDE77D36BD0EB6481FF83 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
11:31:00.0106 0x1198  UI0Detect - ok
11:31:00.0121 0x1198  [ DC460AAA18CA2342FBBFB2DF9B044472, 14D45E059C596AE97506D26705F248CA1C2269160B31A60341060E8A93146CBD ] umbus           C:\Windows\System32\drivers\umbus.sys
11:31:00.0137 0x1198  umbus - ok
11:31:00.0152 0x1198  [ C3CF0377917ECE6D65D7623E1E61568F, 4909695E04CBC86BFCFFBC15F332C367521054B7B4D3C141C7CA6B2E40E090B9 ] UmPass          C:\Windows\System32\drivers\umpass.sys
11:31:00.0152 0x1198  UmPass - ok
11:31:00.0184 0x1198  [ 640CF093C1CF16D5FD317616CA348F31, BEC34D1AACA83BF5A84CE01F6A668E3CA5A33C56A446DC42EFFF7C43D22E1AE6 ] UmRdpService    C:\Windows\System32\umrdp.dll
11:31:00.0199 0x1198  UmRdpService - ok
11:31:00.0293 0x1198  [ B8272BB8D4982C496FDC704809C38E02, F93855D932FB1DBBCC86E82C0FE0DC9ECF93BBD629D2CA9D0BE7E075E114B7FF ] UnistoreSvc     C:\Windows\System32\unistore.dll
11:31:00.0387 0x1198  UnistoreSvc - ok
11:31:00.0434 0x1198  [ 6CDA3536F6BAB7896A57EAB7DC07F379, 8FBE6457ECD1ABB518D9800EBA8A017774FFAA8EABD2EDC0825181A12FE9AEF6 ] upnphost        C:\Windows\System32\upnphost.dll
11:31:00.0465 0x1198  upnphost - ok
11:31:00.0512 0x1198  [ 6B46FC140C9AF68E6E7697D66D59CB4D, F018B4784D65F1A8140A6EA69C35D6A7ECE01738694052FD54AFD2B81A8F2FF8 ] UrsChipidea     C:\Windows\System32\drivers\urschipidea.sys
11:31:00.0512 0x1198  UrsChipidea - ok
11:31:00.0527 0x1198  [ B4402E7F0923F660270442CE76877ABE, 1C2DD26EAB71F75EA576E8DAABAF71FD7DC3DF807CF025617C774CEF33C0B718 ] UrsCx01000      C:\Windows\system32\drivers\urscx01000.sys
11:31:00.0543 0x1198  UrsCx01000 - ok
11:31:00.0606 0x1198  [ 9DD431F1B94789CFB527E5D19261F124, 8F5A249A97C5B14B282E3147DD21951D2AD34B651E762814C12F4C26D74EC70C ] UrsSynopsys     C:\Windows\System32\drivers\urssynopsys.sys
11:31:00.0652 0x1198  UrsSynopsys - ok
11:31:00.0746 0x1198  [ C87E32B90F085970D9637FBAD45EF6FE, C180EACD2EE479277DA5DBF39E43B428BD7945141B2451CB3946B0C1E495E76F ] usbccgp         C:\Windows\System32\drivers\usbccgp.sys
11:31:00.0793 0x1198  usbccgp - ok
11:31:00.0824 0x1198  [ 0B663856474AC41924D9E9112203858F, 9E09F2A6279B48CAC09F8C7AA1F1BE02864D540C2ED1460CBA9FABCF0A546A1E ] usbcir          C:\Windows\System32\drivers\usbcir.sys
11:31:00.0824 0x1198  usbcir - ok
11:31:00.0856 0x1198  [ F83D2250256203AC5DA5E8601C1AFDD7, AC0D90E2DB3051798B9D287CF3D0E92FED4000822E65A82775A29CF896B76F04 ] usbehci         C:\Windows\System32\drivers\usbehci.sys
11:31:00.0871 0x1198  usbehci - ok
11:31:00.0934 0x1198  [ 7FFD26742321919590ED77FCA556D65F, F7FAB63C36F8519F5A7B9091C507F3CB580C390322FAF9155CCE7F66C965B968 ] usbhub          C:\Windows\System32\drivers\usbhub.sys
11:31:01.0027 0x1198  usbhub - ok
11:31:01.0090 0x1198  [ 7A749B2863B5561BE34B39E8E249AD8F, E5B67DFAF5407007FD0CC408D6B4BA19DF59584819FC715E9F9E0FBF3EA00AAB ] USBHUB3         C:\Windows\System32\drivers\UsbHub3.sys
11:31:01.0137 0x1198  USBHUB3 - ok
11:31:01.0153 0x1198  [ D2109F1F4FEBF1DAC415CDC5DE876479, C8A871EBD0E5EF004BA622A73DAC36C03608CD317FDCD0A6A98608DF4CC10D55 ] usbohci         C:\Windows\System32\drivers\usbohci.sys
11:31:01.0199 0x1198  usbohci - ok
11:31:01.0262 0x1198  [ 29C9572F2D061CFC3C0BD48A3163E343, 2527DCC9E6D421F5DC40051C787A5270EB077746785465C9AA2A2AEEF47307D5 ] usbprint        C:\Windows\System32\drivers\usbprint.sys
11:31:01.0294 0x1198  usbprint - ok
11:31:01.0325 0x1198  [ 429477D6DEF3321FF7D3EF23CAAADA00, BB7D2AFE99736AAFFA8B0B2DABF7D6A6D5CB9563B1DE6A7E86CE7DC9D27F31C0 ] usbser          C:\Windows\System32\drivers\usbser.sys
11:31:01.0340 0x1198  usbser - ok
11:31:01.0371 0x1198  [ 0CC16F7B91C57AE9A4E44425A295FDAA, 7CEE11955E5742DA390601F565412C14A7481B8747C495CCD246696C56B426DC ] USBSTOR         C:\Windows\System32\drivers\USBSTOR.SYS
11:31:01.0387 0x1198  USBSTOR - ok
11:31:01.0419 0x1198  [ C917D09064CDBD18F75ADC9B2C48F847, A7F6223346CCD7E84186CD0C0715014F8E3A4398298925A43290224678620D23 ] usbuhci         C:\Windows\System32\drivers\usbuhci.sys
11:31:01.0466 0x1198  usbuhci - ok
11:31:01.0590 0x1198  [ B4F448F2424492F99F83D3676A453553, 42F1396616EA93BF91EA847B185C321B189F1A5138CA19D22397E8DB6D576973 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
11:31:01.0622 0x1198  usbvideo - ok
11:31:01.0747 0x1198  [ 95BCCEFBC40D06484CF16144FE79B8A5, 8ABA73C5FFEDD319FB96B807AD08716698E557522478DF1A2C5D662675636AE0 ] USBXHCI         C:\Windows\System32\drivers\USBXHCI.SYS
11:31:01.0825 0x1198  USBXHCI - ok
11:31:02.0106 0x1198  [ 4CC81AB9D380A6264FF4C0C1512CF965, 76C33053D1C9155B0F3F8392FF982AD4EABEE2BBBEE89EA41DBFE8E436973EB0 ] UserDataSvc     C:\Windows\System32\userdataservice.dll
11:31:02.0184 0x1198  UserDataSvc - ok
11:31:02.0512 0x1198  [ AA24C61D88E36BA1144072227922173D, 2EBBC827E740F72EA2E75745E585378189BC0DEE91CACD7FA31BDBC5EFCF8733 ] UserManager     C:\Windows\System32\usermgr.dll
11:31:02.0684 0x1198  UserManager - ok
11:31:02.0887 0x1198  [ C75B1B48BCAADEB0275C1EBE2EAE742D, 19875B87BDB23E5B60D6D3173FDF7A7634E81E43501529A56FFCCEE21B7E3B71 ] UsoSvc          C:\Windows\system32\usocore.dll
11:31:02.0934 0x1198  UsoSvc - ok
11:31:02.0965 0x1198  [ 6F8E95716C1A27FF2FE96D30B147F1C1, 9403E9FE8B13EE294CFBBD96649BBD54CF723CF5872E3E03DA4380379D677983 ] VaultSvc        C:\Windows\system32\lsass.exe
11:31:02.0981 0x1198  VaultSvc - ok
11:31:02.0997 0x1198  [ 0CBDE344FB48E42D78E29469F202ADBC, A1C3FBA5409DD3BBEAF1D3CE2583D6C8A621C0E4F534155EC540AFD67BC9E8CA ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
11:31:03.0012 0x1198  vdrvroot - ok
11:31:03.0137 0x1198  [ 0783EDE1FA94649ED7F3CEF6A734041A, 1A13A613EF6B67459031C7994FFC6F32F73E02E0F123A171618E4F011C635684 ] vds             C:\Windows\System32\vds.exe
11:31:03.0231 0x1198  vds - ok
11:31:03.0278 0x1198  [ 723195568C8755CAD57F7933C5F2C5C2, 5C403799F67223605F825BC16D217C1EF5E1A0DDF00AC6380FE8976339B67D9B ] VerifierExt     C:\Windows\system32\drivers\VerifierExt.sys
11:31:03.0278 0x1198  VerifierExt - ok
11:31:03.0387 0x1198  [ C12B4859FC255AA6B3021CF8BB14A11F, E95922351825D23ABCADD173E9256FC9AFFF28555DD1971CFF5666A2055958C5 ] vhdmp           C:\Windows\System32\drivers\vhdmp.sys
11:31:03.0418 0x1198  vhdmp - ok
11:31:03.0465 0x1198  [ 7929228F0E8B0C2FA0495A17A4FC27F6, 1F1667B10A96B1D85ED165F62A5C0EF28C37F828B8280EA08BFCC1BAC03F2C90 ] vhf             C:\Windows\System32\drivers\vhf.sys
11:31:03.0465 0x1198  vhf - ok
11:31:03.0497 0x1198  [ AEE432ED868831B1F068E373598F6D93, BAE91F47B0CB94B826CA010B490AD924D7B715911DF3FCE62F9165F3B571105C ] vmbus           C:\Windows\system32\drivers\vmbus.sys
11:31:03.0512 0x1198  vmbus - ok
11:31:03.0541 0x1198  [ 9444B23FC694B5F90F21B0FC7F10D8DD, 86F92856F5C985DD8E5993B51E85E1F47EF8C9B2FB37468998C94266963BB4BD ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
11:31:03.0541 0x1198  VMBusHID - ok
11:31:03.0556 0x1198  [ 4D0287F566B36536DD812A54C015FC4A, 01D6508CA59CF04A47902B1F7C202FD14A81240E0B447588D919DD1072B040CF ] vmgid           C:\Windows\System32\drivers\vmgid.sys
11:31:03.0556 0x1198  vmgid - ok
11:31:03.0650 0x1198  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicguestinterface C:\Windows\System32\icsvc.dll
11:31:03.0666 0x1198  vmicguestinterface - ok
11:31:03.0697 0x1198  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicheartbeat   C:\Windows\System32\icsvc.dll
11:31:03.0712 0x1198  vmicheartbeat - ok
11:31:03.0728 0x1198  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmickvpexchange C:\Windows\System32\icsvc.dll
11:31:03.0744 0x1198  vmickvpexchange - ok
11:31:03.0806 0x1198  [ 0F621B52259D88A719AA20C6D04E3D72, 80B0528CCDE6E1B6F092787E1C0769C649698B196602859A5855134F0ECCBAE5 ] vmicrdv         C:\Windows\System32\icsvcext.dll
11:31:03.0837 0x1198  vmicrdv - ok
11:31:03.0900 0x1198  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicshutdown    C:\Windows\System32\icsvc.dll
11:31:03.0916 0x1198  vmicshutdown - ok
11:31:03.0931 0x1198  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmictimesync    C:\Windows\System32\icsvc.dll
11:31:03.0947 0x1198  vmictimesync - ok
11:31:03.0978 0x1198  [ 704609D80666FCB1DAE91260CF2CBB20, 0764DA123DA3FE8543B9205DDF17B0621E6A0F0DF95E8C3D177FD3FAED516119 ] vmicvmsession   C:\Windows\System32\icsvc.dll
11:31:03.0978 0x1198  vmicvmsession - ok
11:31:04.0009 0x1198  [ 0F621B52259D88A719AA20C6D04E3D72, 80B0528CCDE6E1B6F092787E1C0769C649698B196602859A5855134F0ECCBAE5 ] vmicvss         C:\Windows\System32\icsvcext.dll
11:31:04.0025 0x1198  vmicvss - ok
11:31:04.0041 0x1198  [ 29075915F9BDC3437F8BED71C067D399, 2C7718080C11DFDD4C9A2085537F78F5633369B4A27D9C64168F0249594A4AA2 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
11:31:04.0041 0x1198  volmgr - ok
11:31:04.0119 0x1198  [ 6BDB6CE6D2D9E3D3F28F1C97E12B62E2, 5E77D7AF858D7B90FF395F39B86D6F96413D1DDEA28BC9FB40C5524A4DF6DAD0 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
11:31:04.0134 0x1198  volmgrx - ok
11:31:04.0197 0x1198  [ BF2546583BB75F01DDA60A7921DFB230, 579BD0BC55F4F03CD8D1FCDAC3975A1649C688820F2F7FC1AD354132D9E3BEE9 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
11:31:04.0212 0x1198  volsnap - ok
11:31:04.0244 0x1198  [ AC2E20A74D09D24485BE8396CE04F07B, 23FCE8BEE01B89E5CDCA536D75DBA6DCE3E92E13178A66836CEB7829310A89D1 ] volume          C:\Windows\system32\drivers\volume.sys
11:31:04.0244 0x1198  volume - ok
11:31:04.0306 0x1198  [ 92F6E3E6D3F1795263EB34B37F74AEF7, 33AB1ECCA1216AF1995E1DB4F11E48156FF62391D7C176C8A4CC1037B9CB3A27 ] vpci            C:\Windows\System32\drivers\vpci.sys
11:31:04.0369 0x1198  vpci - ok
11:31:04.0447 0x1198  [ FD9BCB8920973CEAD4D49DC7A6D8A618, 34AB4A485FB40DF737600006D8323BE927FB0BDA2BC170F4C123BE775EAE7CC8 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
11:31:04.0478 0x1198  vsmraid - ok
11:31:04.0791 0x1198  [ 01FFD5AF533F2CFDF26DDDC9313731C1, BFF0F2E57CD2358AC8F519F6F5692A46D97EC4E9B763D47101CEF31712FD4738 ] VSS             C:\Windows\system32\vssvc.exe
11:31:04.0869 0x1198  VSS - ok
11:31:04.0947 0x1198  [ 0C111F220798CCE80484026E06822379, B98A5E44D3ABA67E6DE99E18BF3C2C606923E6269E262665C721F672ACBBED2A ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
11:31:04.0963 0x1198  VSTXRAID - ok
11:31:04.0994 0x1198  [ 607639716E9DB1CEF4E18B5B229293B4, 1D997177093F907EFE8A04AD10443BB9C355C0D7657DBD449E7EE7FCABC3ECBC ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
11:31:05.0009 0x1198  vwifibus - ok
11:31:05.0041 0x1198  [ B1ED64E628763148BF84FBE23F2AD711, 6182A39675E6049BC3DD353694720795A8E3D0331509AA8ABA4883D5C569AD5E ] vwififlt        C:\Windows\system32\drivers\vwififlt.sys
11:31:05.0181 0x1198  vwififlt - ok
11:31:05.0213 0x1198  [ 59920894C38A827091A06AF559834E47, 8B40FE0B1BA3B2A79BFF70803D039DB921F85C978724722E5E5AFF188FA75471 ] vwifimp         C:\Windows\System32\drivers\vwifimp.sys
11:31:05.0213 0x1198  vwifimp - ok
11:31:05.0353 0x1198  [ 76C1CC611352499326001F25A3ED15F8, 228BFA8A01BB1B3868576D509A2EA6F3D37FEDC8F12D4DC4E0A84CE926C6D1B1 ] W32Time         C:\Windows\system32\w32time.dll
11:31:05.0400 0x1198  W32Time - ok
11:31:05.0431 0x1198  [ 55D00B785A7587F4263D125817871283, B92400B229099C1E243F2B149881A1423A2E9C8CA2D77D868B9B923BFDEC7FF2 ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
11:31:05.0431 0x1198  WacomPen - ok
11:31:05.0509 0x1198  [ 1483BE4D0135C378CB61D3CD73AB3E03, B7309C9E4F370860C507BF52D17234CDF4A7FAE95D2D822714E07EF5DEC0249B ] WalletService   C:\Windows\system32\WalletService.dll
11:31:05.0525 0x1198  WalletService - ok
11:31:05.0572 0x1198  [ CEF3D306C09BEC1A800E9B4A06F859F6, 75D21F97E9F94FA97024F945AF512FEC94F88DD8073F3FAD92A6E0A9FDC586DB ] wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
11:31:05.0588 0x1198  wanarp - ok
11:31:05.0588 0x1198  [ CEF3D306C09BEC1A800E9B4A06F859F6, 75D21F97E9F94FA97024F945AF512FEC94F88DD8073F3FAD92A6E0A9FDC586DB ] wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
11:31:05.0588 0x1198  wanarpv6 - ok
11:31:05.0697 0x1198  [ DEAF4B5FF5BE695E0639176B00F03B5B, ACE48140A3D0FEF534ED5ADBFBA6532E5AEDD6CD0A5CAC699FC761DEB449FCEC ] WavesSysSvc     C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
11:31:05.0728 0x1198  WavesSysSvc - ok
11:31:05.0978 0x1198  [ 30B8286F8FE1AE90A583100D45E02247, 3C86A4A5E21F9A1267EA231B20914E0A162BA4C25FE8917AD3AB6D504DA5BE0C ] wbengine        C:\Windows\system32\wbengine.exe
11:31:06.0056 0x1198  wbengine - ok
11:31:06.0119 0x1198  [ 7C4FAE7A8D55C897E5AE681B245A005F, 7E1E6299579BF02E89C5B828A1C19A43FF4E1F43D46D058F8DC0A8E6421C86A7 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
11:31:06.0197 0x1198  WbioSrvc - ok
11:31:06.0259 0x1198  [ E330144B97D493AA886000DCAAA8DAF5, ED86F46F5A76FD8F06CA98BD61B174ADB9AD4B065394356872708DF8B614E4F9 ] wcifs           C:\Windows\system32\drivers\wcifs.sys
11:31:06.0275 0x1198  wcifs - ok
11:31:06.0353 0x1198  [ 32960EA9CF836D7DD77767DCB68CE230, 679446A4FAB0331C181D2716CAEA225267C6164BB9867E360C5B3D6AB1083195 ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
11:31:06.0416 0x1198  Wcmsvc - ok
11:31:06.0447 0x1198  [ D50645235A507B0546B1B5CF7D0B8849, 19F5FE10C953B8EE8EEDA9A9F7F2E97AA193BB085E7FC364066686089ADD1C9F ] wcncsvc         C:\Windows\System32\wcncsvc.dll
11:31:06.0478 0x1198  wcncsvc - ok
11:31:06.0494 0x1198  [ AEA1093B751339267D8C8C1EF3D669CF, 8F3325E7FB16BD856A0593C36F2E3E018909038C52CD5F92E116E0C1366F31CB ] wcnfs           C:\Windows\system32\drivers\wcnfs.sys
11:31:06.0494 0x1198  wcnfs - ok
11:31:06.0541 0x1198  [ D520B1B849B6D4D707AB31722B952C2D, 149BABB7BD63C1F212ADD9306C84FFB2A5CE6DC435BD3213EAB787E9B222C61F ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
11:31:06.0541 0x1198  WdBoot - ok
11:31:06.0728 0x1198  [ 5030C76047D756263093A47B82970868, E772F15973F6DE36851DD230F1F4190746CD81CA1E7284DC074711C4BF45CAF0 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
11:31:06.0759 0x1198  Wdf01000 - ok
11:31:06.0806 0x1198  [ 29FF9199EDEB4F5470BB134D1A2563D2, 94713F98A6EA6042203D5DD0DE6758F5F0F331F7D4BB05E91EF20CEEEBD6780F ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
11:31:06.0822 0x1198  WdFilter - ok
11:31:06.0853 0x1198  [ E7A7E8803E66B7CCED95D327A4DBC135, 401ECD953D4014A95C9022822D9ACEC1A68C917281DBA2365503A473FC6D9507 ] WdiServiceHost  C:\Windows\system32\wdi.dll
11:31:06.0853 0x1198  WdiServiceHost - ok
11:31:06.0869 0x1198  [ E7A7E8803E66B7CCED95D327A4DBC135, 401ECD953D4014A95C9022822D9ACEC1A68C917281DBA2365503A473FC6D9507 ] WdiSystemHost   C:\Windows\system32\wdi.dll
11:31:06.0884 0x1198  WdiSystemHost - ok
11:31:06.0994 0x1198  [ 8CB606A3057355FD5A9DBDD1A0AC94EF, 6DD0B4A2270633086EBB569A00B87430EE6EF173525E341404B15845B57BE86D ] wdiwifi         C:\Windows\system32\DRIVERS\wdiwifi.sys
11:31:07.0041 0x1198  wdiwifi - ok
11:31:07.0088 0x1198  [ 17CF416CFF408190F5A4CBD79AB12E55, E376C8865C7EA633AE20D2CF940E4C7584AC783BAAF7941780FB6C4C84802F33 ] WdNisDrv        C:\Windows\system32\Drivers\WdNisDrv.sys
11:31:07.0103 0x1198  WdNisDrv - ok
11:31:07.0150 0x1198  WdNisSvc - ok
11:31:07.0197 0x1198  [ 3570C4E14F85CE0B537D126727ACA91C, A474C9E6B6E4E5945C63367C1D3D24D4782C4A4FEB00FAE15DFED099D8283078 ] WebClient       C:\Windows\System32\webclnt.dll
11:31:07.0228 0x1198  WebClient - ok
11:31:07.0265 0x1198  [ 1785F9C96A0BDEC1F6E0C79EF412F342, D6D4EDA69457BEDDA69C2F60FC4C2FAC97D46CD8E9C1804CCD68F169383583E3 ] Wecsvc          C:\Windows\system32\wecsvc.dll
11:31:07.0281 0x1198  Wecsvc - ok
11:31:07.0312 0x1198  [ B9175D63527B05131F2FA504CF0265F2, 1E43A17788F1B6A29E2889C81E0BE100D64BD3A9DEE7C154D9581F01D2D7D05F ] WEPHOSTSVC      C:\Windows\system32\wephostsvc.dll
11:31:07.0327 0x1198  WEPHOSTSVC - ok
11:31:07.0406 0x1198  [ 5C58EC0C9D4DE04DCDE56F6DCEA62080, 8ED386EDF4C39C339CE0BB2AC7E199C38705E5A6B3F56A4987B9A8ABD19BB59F ] wercplsupport   C:\Windows\System32\wercplsupport.dll
11:31:07.0437 0x1198  wercplsupport - ok
11:31:07.0468 0x1198  [ F899B355CC95AF26AB36E84E8A0DD685, C400F2F80FFF6473FEF066943C4A2AFF0FFE988A4F755757A2E5005C2A10DAD8 ] WerSvc          C:\Windows\System32\WerSvc.dll
11:31:07.0484 0x1198  WerSvc - ok
11:31:07.0535 0x1198  [ E1785942AC51FEE6826CDF02075C5AA9, 56FE7017684086F4F9C3A2C0D3AC00369BA0938BA3987EEBEE9A75B8E3CA0AE1 ] WFPLWFS         C:\Windows\system32\drivers\wfplwfs.sys
11:31:07.0551 0x1198  WFPLWFS - ok
11:31:07.0597 0x1198  [ B154618505A6A9026EFA6AB8C4123BF1, 713648D71AA027B4472E7E75B942630DBE7383687984B02A5E99C9E4192C95EB ] WiaRpc          C:\Windows\System32\wiarpc.dll
11:31:07.0613 0x1198  WiaRpc - ok
11:31:07.0644 0x1198  [ 0CF79A0EACFFBB75A50A469A27696D02, E112BF7B5A8D0B0AD2EA0E7B9FD4E8CFEC9371C8E94A60248292D688AFE715C4 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
11:31:07.0644 0x1198  WIMMount - ok
11:31:07.0660 0x1198  WinDefend - ok
11:31:07.0723 0x1198  [ 0DE131733317EB4BE67028366B0CAAC6, AC7DADBF03A3752B4D33CA19F03DBCEDD6F56893C2DA25C98B0AB07063D990E3 ] WindowsTrustedRT C:\Windows\system32\drivers\WindowsTrustedRT.sys
11:31:07.0723 0x1198  WindowsTrustedRT - ok
11:31:07.0738 0x1198  [ 92EB5D38BDF10C790450F3E46BF93A0E, 0FC027398DBD43EDC1F7D703C0B6DB20294DF34E67C9288442039B1A5663CE1B ] WindowsTrustedRTProxy C:\Windows\system32\drivers\WindowsTrustedRTProxy.sys
11:31:07.0754 0x1198  WindowsTrustedRTProxy - ok
11:31:07.0863 0x1198  [ C2A3B07F0118D61086C99BDCBAB6A6A3, 04D646BEF1C6F427503C594F0ECBB33140C3991A3A7AFB66B2C9581E358F9FD2 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
11:31:07.0910 0x1198  WinHttpAutoProxySvc - ok
11:31:07.0941 0x1198  [ F95DE20312ACCA7761446DE152BD1F7C, F6C5ACA500C2182437F4A7402BD81C3A2B77C0BBD78BA31FB574DC1997FCBFE6 ] WinMad          C:\Windows\System32\drivers\winmad.sys
11:31:07.0957 0x1198  WinMad - ok
11:31:08.0035 0x1198  [ CD49CA8E3280ACEEC5ECF431A59F5EFD, 75F48EFC6DEE9E06B490703EE47602AFDEA51505285B02D2CF884601E71857CC ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
11:31:08.0066 0x1198  Winmgmt - ok
11:31:08.0285 0x1198  [ A26570B4A21AD6F4D597148D3C22274E, 594BD3B9B9B4027E5A7025CAB715378FB565FC5E00A0315A2EC3A6EFBC9CC72E ] WinRM           C:\Windows\system32\WsmSvc.dll
11:31:08.0441 0x1198  WinRM - ok
11:31:08.0504 0x1198  [ 4EFB346BFDAEEB29316AA52BBB9852B1, 4BC5554F44BD9549D0A929D77BD410FA3EB502A7D0170303D369268672505494 ] WINUSB          C:\Windows\System32\drivers\WinUSB.SYS
11:31:08.0504 0x1198  WINUSB - ok
11:31:08.0519 0x1198  [ 8B9AFF5F08E66A6F1F1063DEC9457FB6, 98F2AF6988D125521FD34CAA48B9652922F0C8ECFAE9B0C1DF4B3CE6B9CF500F ] WinVerbs        C:\Windows\System32\drivers\winverbs.sys
11:31:08.0519 0x1198  WinVerbs - ok
11:31:08.0629 0x1198  [ 239B9AB452DE728ABCB5E957FAE2699D, CDA8293358CCA0AC247950A2F104E3554DEEEDC6C57CAC8350606D5612B8CA62 ] wisvc           C:\Windows\system32\flightsettings.dll
11:31:08.0676 0x1198  wisvc - ok
11:31:08.0834 0x1198  [ 7671078AEF4C0203B053A9642C401FF7, BBFADA89CD31F20ADDBFAFAD2E492C72D82BF2F8B823BB6773F04D229B62534C ] WlanSvc         C:\Windows\System32\wlansvc.dll
11:31:08.0950 0x1198  WlanSvc - ok
11:31:09.0090 0x1198  [ 7A98AF088E0B1A5EB98863B14F493716, 8B2F8D02AC0637C72859AF29C05C01D7D1C81C6A15CBE2D579F27F3254E66076 ] wlidsvc         C:\Windows\system32\wlidsvc.dll
11:31:09.0200 0x1198  wlidsvc - ok
11:31:09.0215 0x1198  [ 6F4F4F5A007D1710BD76FB311DA97C07, FC0FEA4364F6BA4E31DBC82735D09D429CA3BE9AFCFF5D5E1263D8B27FC2CE3E ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
11:31:09.0231 0x1198  WmiAcpi - ok
11:31:09.0278 0x1198  [ 3CDDFF6CAD962C5EF1C52FD667C358B6, F6F09145E9461EB17172988D26749FCF36920A1A683459334D04A6D072B31A92 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
11:31:09.0293 0x1198  wmiApSrv - ok
11:31:09.0340 0x1198  WMPNetworkSvc - ok
11:31:09.0403 0x1198  [ 43C8D087B31C592163B33A4BDA540E40, 3A6C4E5E56931B29321DCC723585F2F0E804EF4DCDEAB2A8687F30FC3AE70E43 ] Wof             C:\Windows\system32\drivers\Wof.sys
11:31:09.0418 0x1198  Wof - ok
11:31:09.0575 0x1198  [ 909CB4BBF7B08E78C363000E09E79A6F, 217205D1B5EE03274AFF9405AED6D2A5665CBA4C3876E84B53DA44920CDF9CB1 ] workfolderssvc  C:\Windows\system32\workfolderssvc.dll
11:31:09.0700 0x1198  workfolderssvc - ok
11:31:09.0731 0x1198  [ F02930EB91596042F2221397D60AFCE5, 10E2AB0993B67CBAA9E11C68280608965064EC9F7E0C570F5B453FACADB8AB5D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
11:31:09.0746 0x1198  WPDBusEnum - ok
11:31:09.0778 0x1198  [ 75A9284F01FE7CB1A7D5EAE5C1EB4F33, 390EF23AEA06D8711555F7979FF8BE0620B53C1A551638C4EC6FB7C6678965B3 ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
11:31:09.0778 0x1198  WpdUpFltr - ok
11:31:09.0809 0x1198  [ 60E2EB3E7B7F15C25E02462159F90707, D8344B529EEC0D4922CAC3E6897CC9F191ACF1376017BE38ED6BF6019F1ED181 ] WpnService      C:\Windows\system32\WpnService.dll
11:31:09.0840 0x1198  WpnService - ok
11:31:09.0872 0x1198  [ C7C91FB86A3C6CD7619725A88ED1884C, 132C43C518F37BF303D768BD5FB0AB835F693C43FE693937D804A34E940D770F ] WpnUserService  C:\Windows\System32\WpnUserService.dll
11:31:09.0903 0x1198  WpnUserService - ok
11:31:09.0934 0x1198  [ 36D7B73ADC3E10607ED6EC874AFB5D1E, 1737B3E4D2CA76BB27903BF460E4960E6A0BC32D35069AC7C5E4B07F625F3282 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
11:31:09.0950 0x1198  ws2ifsl - ok
11:31:10.0012 0x1198  [ FF190115CBA067F58C981F0A9F43ABDF, C90353C748C02DB38B561C250682E12C82985A6F7ED7D497AF5DE10EC243FCBA ] wscsvc          C:\Windows\System32\wscsvc.dll
11:31:10.0028 0x1198  wscsvc - ok
11:31:10.0043 0x1198  [ 696EC2EAA2A42A137CCBB9A84D6917C0, 424089F4F373962AF8357C5D4D43F35948989BE3F58EAD3690F565F4C1BBC66F ] WSDPrintDevice  C:\Windows\System32\drivers\WSDPrint.sys
11:31:10.0059 0x1198  WSDPrintDevice - ok
11:31:10.0090 0x1198  [ 46E4A69825A7554A5DB784A55F8AD203, 7F347054FCDD5DEF93083D420E56EBE5EEBBAE2BD2FED9B2E75E85149DE52780 ] WSDScan         C:\Windows\system32\DRIVERS\WSDScan.sys
11:31:10.0090 0x1198  WSDScan - ok
11:31:10.0106 0x1198  WSearch - ok
11:31:10.0246 0x1198  [ 6BA66FE47BFAF223AEE6C98F28EB4D8E, 3B380329594DAD5BB50301F5A8A912BF6121788F395133C70C893879F68450FB ] wuauserv        C:\Windows\system32\wuaueng.dll
11:31:10.0387 0x1198  wuauserv - ok
11:31:10.0434 0x1198  [ AED7FE551E8672B824A56324076183EB, FFE543AAEFDEFFE6B20C244DB141A9425BDA88ED36F4870F0B70FEC433BDF0C1 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
11:31:10.0434 0x1198  WudfPf - ok
11:31:10.0465 0x1198  [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
11:31:10.0481 0x1198  WUDFRd - ok
11:31:10.0512 0x1198  [ 47F6450F28BAA32B2AB0D6BE00996249, C8A47D6ADF89AD613AB685C6224B9099DCEFDCD8ABCF703542AFDC356404116E ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
11:31:10.0543 0x1198  wudfsvc - ok
11:31:10.0575 0x1198  [ CEFAB17FD7DFCFA515626C306262E89D, 9D2B728DDD478580987E2DB7AA4DA81D77F3362F536AC1CADED20EB6ECEBB55D ] WUDFWpdFs       C:\Windows\system32\DRIVERS\WUDFRd.sys
11:31:10.0606 0x1198  WUDFWpdFs - ok
11:31:10.0746 0x1198  [ D4F2FFCF5D199152DD01026D3AA38138, 4F90FE9BFC6CC2ABB2A163A36A000458A96AB64071861582F17B74C95CAEFB32 ] WwanSvc         C:\Windows\System32\wwansvc.dll
11:31:10.0965 0x1198  WwanSvc - ok
11:31:11.0090 0x1198  [ F39D6915451D9226AC9A5E7AE70E2ABA, E05D678DC0423A4D0EB8B3BB5A942721BB4F3B0BED22748252DBD6053FE956F1 ] XblAuthManager  C:\Windows\System32\XblAuthManager.dll
11:31:11.0169 0x1198  XblAuthManager - ok
11:31:11.0289 0x1198  [ 765FF96467A26C4C03281ECA426EC2D9, 2526B03C518D72F429C29BA4D4F11707AF277BF71520A1A92238A932950AE161 ] XblGameSave     C:\Windows\System32\XblGameSave.dll
11:31:11.0430 0x1198  XblGameSave - ok
11:31:11.0477 0x1198  [ C1E85B4FB08B4CCF16841B165910148B, AB33A6630BFC0E230BA464F721DD4ABB7DF79DF2D81C9C7366CC0BA2251F09F3 ] xboxgip         C:\Windows\System32\drivers\xboxgip.sys
11:31:11.0493 0x1198  xboxgip - ok
11:31:11.0602 0x1198  [ 335E6F2BE58523B295945C840C185B00, 94ED7E2CB212A3D55B8A2CB90CD1D02A6AF92DC0DDD487CB5B7CAC9883343460 ] XboxNetApiSvc   C:\Windows\system32\XboxNetApiSvc.dll
11:31:11.0664 0x1198  XboxNetApiSvc - ok
11:31:11.0696 0x1198  [ 63088A3361D9A308F328F11E9099DD87, E03FDB932FC57F199C8F8A8EADA338BDF7D2F9C6CB8FAB679A92B48B1E5AFE8A ] xinputhid       C:\Windows\System32\drivers\xinputhid.sys
11:31:11.0711 0x1198  xinputhid - ok
11:31:11.0711 0x1198  ================ Scan global ===============================
11:31:11.0758 0x1198  [ 0C710DB449712EE13ACE733695DB7780, BBC7875B38D318CE4E88979D083AC72E8993254A466A8A6882DDE9E0C3B687A3 ] C:\Windows\system32\basesrv.dll
11:31:11.0821 0x1198  [ C509CCD23B086DFC9EAF86E280043672, BF431DC1C618BAF0CB67976C5A8BCCDC3F3CB266F83C614D605BA559BA8EDFD8 ] C:\Windows\system32\winsrv.dll
11:31:11.0883 0x1198  [ 1EE06E957B0B2CA52D26DA7861E160EF, 4B743A1C7010138F5F6684BBCF7CAD6FD05F49920BDD3FDB776347AA6B44AB94 ] C:\Windows\system32\sxssrv.dll
11:31:11.0946 0x1198  [ 133390D061D94917125DC666DA67ECD0, 69D6FFF3E0A0C4D77A62B4D71E1E3A8D10D93C46782A1B05F0EC4B8919C384B9 ] C:\Windows\system32\services.exe
11:31:11.0977 0x1198  [ Global ] - ok
11:31:11.0977 0x1198  ================ Scan MBR ==================================
11:31:12.0008 0x1198  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
11:31:12.0024 0x1198  \Device\Harddisk0\DR0 - ok
11:31:12.0024 0x1198  ================ Scan VBR ==================================
11:31:12.0039 0x1198  [ 5B641980E7D8A2A33CB35C8C860E19C6 ] \Device\Harddisk0\DR0\Partition1
11:31:12.0039 0x1198  \Device\Harddisk0\DR0\Partition1 - ok
11:31:12.0055 0x1198  [ 2D524F05766D084E9BC1747B63390F77 ] \Device\Harddisk0\DR0\Partition2
11:31:12.0055 0x1198  \Device\Harddisk0\DR0\Partition2 - ok
11:31:12.0086 0x1198  [ D81049482750A37AD6A9840BE49F2F61 ] \Device\Harddisk0\DR0\Partition3
11:31:12.0086 0x1198  \Device\Harddisk0\DR0\Partition3 - ok
11:31:12.0118 0x1198  [ 2BF141B7CF64CD7FE354B3BFFC6E808D ] \Device\Harddisk0\DR0\Partition4
11:31:12.0133 0x1198  \Device\Harddisk0\DR0\Partition4 - ok
11:31:12.0149 0x1198  [ E7CED422B0E45D33110D6A90A1F41994 ] \Device\Harddisk0\DR0\Partition5
11:31:12.0149 0x1198  \Device\Harddisk0\DR0\Partition5 - ok
11:31:12.0149 0x1198  ================ Scan generic autorun ======================
11:31:12.0446 0x1198  [ 6AAE6A6C5DABC6A772B8F74FC38AEC3C, 15AA6C807EADAFA11BC191FE048D692D634F9EE68361111E33039A645E7E40C2 ] c:\Program Files\Dell\QuickSet\QuickSet.exe
11:31:12.0664 0x1198  QuickSet - ok
11:31:13.0180 0x1198  [ F3CF399554A38AC9032D1D80D0EFAD1F, 98B16D47B5572B1C4C3ADF1BE3CF1A8EBBFD50C1424212C162FFAED3AFC1E1E1 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
11:31:13.0602 0x1198  RTHDVCPL - ok
11:31:13.0743 0x1198  [ 14B1DB0E2E45772326B9594B390C4683, 25FA59D0953895205E154D283222096E6C55F71383FB7C4179AA95BC02E795AA ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
11:31:13.0821 0x1198  RtHDVBg_MAXX6 - ok
11:31:13.0883 0x1198  [ 5AC01F2DAD6D219934AAA15D2C81F3DB, 31C35CEDD16ACB91E4433BC0B0441EEB2D26CC7BD91C68400AFD36E50C16F2FD ] C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
11:31:13.0915 0x1198  WavesSvc - ok
11:31:13.0915 0x1198  SynTPEnh - ok
11:31:13.0993 0x1198  [ DF8DBBD8F5342C7BA598C606602B6352, FAF603820007A97898A56E62423B137E743A8A9CED0099532514E2F15BAAE334 ] C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe
11:31:14.0024 0x1198  isa - ok
11:31:14.0586 0x1198  [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\SysWOW64\OneDriveSetup.exe
11:31:15.0071 0x1198  OneDriveSetup - ok
11:31:15.0570 0x1198  [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\SysWOW64\OneDriveSetup.exe
11:31:15.0852 0x1198  OneDriveSetup - ok
11:31:16.0352 0x1198  [ 1496120E3867FD75AE5D4EAD6E618E7A, 8D8A2FD43D33A3F7A177783921BB7E50FECBAEF1E09CD42BCDC851375F3294D1 ] C:\Windows\SysWOW64\OneDriveSetup.exe
11:31:16.0633 0x1198  OneDriveSetup - ok
11:31:16.0914 0x1198  [ CD7DC286D2FDFACB965C3E10967B2199, 30FFB133E70D694BE6968E86E999C797EE7349DCC4E9ACFB338412C039374388 ] C:\Users\Pearl\AppData\Local\Microsoft\OneDrive\OneDrive.exe
11:31:17.0008 0x1198  OneDrive - ok
11:31:17.0195 0x1198  [ 38372AA4CC9FBD0EB7A26FC7B5F24562, C70B8CBB2AC962B343535454E4F2BCB3E48D83A04792C64BC768D59B3C1BF403 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
11:31:17.0242 0x1198  GoogleChromeAutoLaunch_E3ABC10D9B11EEE29EE2F375EE0074E1 - ok
11:31:17.0258 0x1198  Waiting for KSN requests completion. In queue: 246
11:31:18.0336 0x1198  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x60100 ( disabled : updated )
11:31:18.0336 0x1198  AV detected via SS2: Norton Security, C:\Program Files (x86)\Norton Security\Engine\22.9.0.68\WSCStub.exe ( 22.9.0.0 ), 0x51000 ( enabled : updated )
11:31:18.0352 0x1198  FW detected via SS2: Norton Security, C:\Program Files (x86)\Norton Security\Engine\22.9.0.68\WSCStub.exe ( 22.9.0.0 ), 0x51010 ( enabled )
11:31:18.0649 0x1198  ============================================================
11:31:18.0649 0x1198  Scan finished
11:31:18.0649 0x1198  ============================================================
11:31:18.0695 0x127c  Detected object count: 0
11:31:18.0695 0x127c  Actual detected object count: 0
11:31:39.0460 0x1a94  Deinitialize success

  • 0

#9
Jr0x

Jr0x

    Malware removal team

  • Malware Removal
  • 1,825 posts

Hi Pearlcatdesign,

JRTbythisisu.png Fix with Junkware Removal Tool

Please download JRT by Thisisu and save the file to your desktop.
Temporary disable your AntiVirus and AntiSpyware protection - instructions here.

  • Right-click on JRTbythisisu.png icon and select RunAsAdmin.jpg Run as Administrator to start the tool.
  • Follow the prompts and let this process run uninterrupted.
  • This scan can take a while, depending on your System specs.
  • Upon completion, a log (JRT.txt) will open on your desktop.

Please include the contents of that file in your reply.

Do not forget to re-enable your previously switched off protection software!
Please also manually reboot your machine after this procedure.


adwcleaner_new.png Fix with AdwCleaner

Please download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the scan to finish.
  • Everything left checked will be deleted.
  • Now click the Cleaning button.
  • Once done it will ask to reboot, allow this.
  • On reboot a log will be produced please copy / paste that in your next reply. This report is also saved to C:\AdwCleaner\AdwCleaner[C*].txt

 

FRST.gif Re-Scan with Farbar's Recovery Scan Tool (FRST)

  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File).
  • Please ensure you place a check mark in the Addition.txt check box at the bottom of the form before running.
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • Because you selected the Addition.txt check box this log will be created as well. Please also paste that along with the FRST.txt into your reply.

 

In your next reply, please include the following:

  • JRT log
  • AdwCleaner clean log
  • FRST log
  • FRST Addition log

  • 0

#10
Pearlcatdesign

Pearlcatdesign

    Member

  • Topic Starter
  • Member
  • PipPip
  • 49 posts

I hope I didn't do something wrong, terribly sorry if I have. There was no icon like you show when I went to the JRT site. I downloaded it and I'm pasting it. Hope this is right. Thank you so much for your help.

 

 pearl

 

 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.0 (12.05.2016)
Operating System: Windows 10 Home x64 
Ran by Pearl (Administrator) on Mon 02/20/2017 at 19:15:17.74
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
File System: 2 
 
Successfully deleted: C:\Windows\system32\Tasks\PCDEventLauncherTask (Task)
Successfully deleted: C:\Windows\system32\Tasks\PCDoctorBackgroundMonitorTask (Task)
 
 
 
Registry: 2 
 
Successfully deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\GoogleChromeAutoLaunch_E3ABC10D9B11EEE29EE2F375EE0074E1 (Registry Value) 
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4} (Registry Key)
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 02/20/2017 at 19:23:01.42
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
Okay I'm going to the ADWcleaner now.

  • 0

Advertisements


#11
Pearlcatdesign

Pearlcatdesign

    Member

  • Topic Starter
  • Member
  • PipPip
  • 49 posts

Okay, here are the rest. 

 

# AdwCleaner v6.043 - Logfile created 20/02/2017 at 20:08:56
# Updated on 27/01/2017 by Malwarebytes
# Database : 2017-02-20.3 [Server]
# Operating System : Windows 10 Home  (X64)
# Username : Pearl - DESKTOP-D2759O6
# Running from : C:\Users\Pearl\AppData\Local\Temp\scoped_dir3140_2593\AdwCleaner.exe
# Mode: Scan
 
 
 
***** [ Services ] *****
 
No malicious services found.
 
 
***** [ Folders ] *****
 
Folder Found:  C:\ProgramData\b5e13a2e-6793-475a-8c66-179807664bb0
Folder Found:  C:\ProgramData\edd823e3-bc31-45ff-b59f-4af4ad3883e1
 
 
***** [ Files ] *****
 
No malicious files found.
 
 
***** [ DLL ] *****
 
No malicious DLLs found.
 
 
***** [ WMI ] *****
 
No malicious keys found.
 
 
***** [ Shortcuts ] *****
 
No infected shortcut found.
 
 
***** [ Scheduled Tasks ] *****
 
No malicious task found.
 
 
***** [ Registry ] *****
 
No malicious registry entries found.
 
 
***** [ Web browsers ] *****
 
No malicious Firefox based browser items found.
Chrome pref Found:  [C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Web data] - aol.com
Chrome pref Found:  [C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Web data] - ask.com
 
*************************
 
C:\AdwCleaner\AdwCleaner[S0].txt - [1285 Bytes] - [20/02/2017 20:08:56]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1358 Bytes] ##########
 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 19-02-2017
Ran by Pearl (administrator) on DESKTOP-D2759O6 (20-02-2017 20:21:51)
Running from C:\Users\Pearl\Desktop
Loaded Profiles: Pearl (Available Profiles: defaultuser0 & Pearl)
Platform: Windows 10 Home Version 1607 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\wscript.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Windows ® Win 7 DDK provider) C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\AdminService.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe
() C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.8.1.14\NS.exe
(Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Windows\System32\igfxTray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.8.1.14\NS.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(CyberLink) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMLSvc_P2G8.exe
() C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe
(Opera Software) C:\Program Files (x86)\Opera\43.0.2442.806\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\43.0.2442.806\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\43.0.2442.806\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\43.0.2442.806\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\43.0.2442.806\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\43.0.2442.806\opera.exe
(Dell Inc.) C:\Program Files (x86)\Dell Customer Connect\DCCService.exe
(Dell) C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
() C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe
(Dell) C:\Program Files\Dell\Dell Product Registration\PRSvc.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Dell Inc.) C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.197.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe
(Opera Software) C:\Program Files (x86)\Opera\43.0.2442.806\opera.exe
(Dell) C:\Program Files\Dell\Dell Foundation Services\DFS.Common.Agent.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Intel Corporation) C:\Windows\Temp\DPTF\esif_assist_64.exe
 
==================== Registry (Whitelisted) ====================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [QuickSet] => c:\Program Files\Dell\QuickSet\QuickSet.exe [3877936 2015-06-12] (Dell Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8725248 2015-11-06] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1407744 2015-11-06] (Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [717744 2015-11-02] (Waves Audio Ltd.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3946600 2015-10-15] (Synaptics Incorporated)
HKLM-x32\...\Run: [isa] => C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe [330240 2015-02-26] ()
ShellIconOverlayIdentifiers: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security\Engine64\22.8.1.14\buShell.dll [2016-11-11] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security\Engine64\22.8.1.14\buShell.dll [2016-11-11] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security\Engine64\22.8.1.14\buShell.dll [2016-11-11] (Symantec Corporation)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 209.18.47.62 209.18.47.61
Tcpip\..\Interfaces\{3bbe7913-7c05-4be7-b2da-86c6105c2f9d}: [DhcpNameServer] 209.18.47.62 209.18.47.61
Tcpip\..\Interfaces\{f26c5f74-9d55-4b5c-b12c-9f31b69acffa}: [DhcpNameServer] 0.0.0.0
 
Internet Explorer:
==================
HKU\S-1-5-21-3221040054-2150784680-2399622922-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dell17win10.msn.com/?pc=DCTE
HKU\S-1-5-21-3221040054-2150784680-2399622922-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell17win10.msn.com/?pc=DCTE
SearchScopes: HKU\S-1-5-21-3221040054-2150784680-2399622922-1001 -> DefaultScope {F3471F5E-4A9E-4D8B-9715-977EF7BD11AA} URL = 
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2016-10-23] (Microsoft Corporation)
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine64\22.8.1.14\coIEPlg.dll [2016-11-11] (Symantec Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2016-10-23] (Microsoft Corporation)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security\Engine\22.8.1.14\coIEPlg.dll [2016-11-11] (Symantec Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine64\22.8.1.14\coIEPlg.dll [2016-11-11] (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security\Engine\22.8.1.14\coIEPlg.dll [2016-11-11] (Symantec Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-23] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-23] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-23] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2016-10-23] (Microsoft Corporation)
 
FireFox:
========
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.8.1.14\coFFAddon
FF Extension: (Norton Security Toolbar) - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.8.1.14\coFFAddon [2017-02-20]
FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NS_22.8.1.14\coFFAddon
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\TXE Components\IPT\npIntelWebAPIIPT.dll [2014-07-02] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\TXE Components\IPT\npIntelWebAPIUpdater.dll [2014-07-02] (Intel Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-10-23] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
 
Chrome: 
=======
CHR DefaultSearchURL: Default -> hxxps://nortonsafe.search.ask.com/web?q={searchTerms}&o=APN11908
CHR DefaultSearchKeyword: Default -> NortonSafe
CHR DefaultSuggestURL: Default -> hxxps://ss-sym.search.ask.com/ss?q={searchTerms}&li=ff
CHR Profile: C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default [2017-02-20]
CHR Extension: (Norton Security Toolbar) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2017-02-20]
CHR Extension: (Norton Home Page for Chrome) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfoabcdjalmeenbjjngidappmppchblc [2017-02-20]
CHR Extension: (Norton Safe) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbmobhkkblcgdifigjglcjneplefbkmh [2017-02-20]
CHR Extension: (Castletown, Ireland) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\iclklloikllmhpmmikpjnaaajkocdccm [2017-01-16]
CHR Extension: (Norton Identity Safe) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2017-02-19]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-19]
CHR Extension: (Chrome Media Router) - C:\Users\Pearl\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-19]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.8.1.14\Exts\Chrome.crx [2017-02-20]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security\Engine\22.8.1.14\Exts\Chrome.crx [2017-02-20]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
 
Opera: 
=======
OPR Extension: (Shareaholic for Pinterest) - C:\Users\Pearl\AppData\Roaming\Opera Software\Opera Stable\Extensions\cfhohmfogghhjmmhnmfgdiinicebggjm [2016-11-11]
 
==================== Services (Whitelisted) ====================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AtherosSvc; C:\Program Files (x86)\Dell Wireless\Bluetooth Suite\adminservice.exe [323152 2015-06-07] (Windows ® Win 7 DDK provider)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3064520 2016-10-08] (Microsoft Corporation)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [41576 2016-10-24] (Dropbox, Inc.)
R2 Dell Customer Connect; C:\Program Files (x86)\Dell Customer Connect\DCCService.exe [130936 2016-12-21] (Dell Inc.)
R2 Dell Foundation Services; C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe [97616 2017-01-11] (Dell)
R2 Dell Help & Support; C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe [87888 2016-05-19] ()
R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2572024 2016-06-23] (Dell Inc.)
R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [202488 2016-06-23] (Dell Inc.)
R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [229376 2016-05-02] (Dell Inc.)
R2 esifsvc; C:\Windows\SysWoW64\esif_uf.exe [1385640 2015-09-04] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [350312 2015-09-09] (Intel Corporation)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [881152 2015-05-22] (Intel® Corporation)
S3 Intel® Security Assist; C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe [330240 2015-02-26] () [File not signed]
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe [7680 2015-02-26] () [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\TXE Components\DAL\jhi_service.exe [174368 2015-04-21] (Intel Corporation)
R2 NS; C:\Program Files (x86)\Norton Security\Engine\22.8.1.14\NS.exe [289080 2016-11-12] (Symantec Corporation)
S3 ose; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [200240 2016-05-25] (Microsoft Corporation) [File not signed]
R2 Product Registration; C:\Program Files\Dell\Dell Product Registration\PRSvc.exe [80208 2016-09-22] (Dell)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [253776 2015-09-02] (CyberLink)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [307456 2015-11-06] (Realtek Semiconductor)
R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [31704 2016-09-09] (Dell Inc.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246376 2015-10-15] (Synaptics Incorporated)
R2 WavesSysSvc; C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe [578480 2015-09-25] (Waves Audio Ltd.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ======================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 athr; C:\Windows\System32\drivers\athw10x.sys [4325808 2016-07-28] (Qualcomm Atheros Communications, Inc.)
R1 BHDrvx64; C:\Program Files (x86)\Norton Security\NortonData\22.8.1.14\Definitions\BASHDefs\20161005.001\BHDrvx64.sys [1854712 2016-11-11] (Symantec Corporation)
R1 ccSet_NS; C:\Windows\system32\drivers\NSx64\1608010.00E\ccSetx64.sys [174328 2016-11-11] (Symantec Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91912 2013-11-12] (CyberLink)
R3 DDDriver; C:\Windows\system32\drivers\DDDriver64Dcsa.sys [32464 2016-06-23] (Dell Computer Corporation)
R3 DellProf; C:\Windows\system32\drivers\DellProf.sys [24240 2016-06-23] (Dell Computer Corporation)
R3 DellRbtn; C:\Windows\System32\drivers\DellRbtn.sys [19440 2015-05-08] (OSR Open Systems Resources, Inc.)
R2 DpmLiteDrv; c:\Program Files\Dell\QuickSet\DpmLiteDrv64.sys [15080 2014-10-15] (Wistron Corp.)
R3 dptf_cpu; C:\Windows\System32\drivers\dptf_cpu.sys [53752 2015-09-04] (Intel Corporation)
S3 esif_lf; C:\Windows\system32\DRIVERS\esif_lf.sys [261624 2015-09-04] (Intel Corporation)
R3 iagpioe; C:\Windows\System32\drivers\iagpioe.sys [41984 2015-06-03] (Intel® Corporation)
R3 iai2ce; C:\Windows\System32\drivers\iai2ce.sys [89592 2015-06-03] (Intel® Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Security\NortonData\22.8.1.14\Definitions\IPSDefs\20161104.100\IDSVia64.sys [1012952 2016-11-11] (Symantec Corporation)
R3 igfxLP; C:\Windows\system32\DRIVERS\igdkmd64lp.sys [5864888 2015-09-09] (Intel Corporation)
S3 NetAdapterCx; C:\Windows\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
S3 RTSUER; C:\Windows\system32\Drivers\RtsUer.sys [411712 2015-05-19] (Realsil Semiconductor Corporation)
S3 rtux64w10; C:\Windows\System32\drivers\rtux64w10.sys [333824 2016-07-16] (Realtek                                                                )
R3 SRTSP; C:\Windows\system32\drivers\NSx64\1608010.00E\SRTSP64.SYS [784624 2016-11-11] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NSx64\1608010.00E\SRTSPX64.SYS [49400 2016-11-11] (Symantec Corporation)
R0 SymEFASI; C:\Windows\System32\drivers\NSx64\1608010.00E\SYMEFASI64.SYS [1628888 2016-11-11] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\NSx64\1608010.00E\SymELAM.sys [24192 2016-11-11] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [100592 2017-02-20] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NSx64\1608010.00E\Ironx64.SYS [289520 2016-11-11] (Symantec Corporation)
R1 SymNetS; C:\Windows\system32\drivers\NSx64\1608010.00E\SYMNETS.SYS [567512 2016-11-11] (Symantec Corporation)
R3 SynRMIHID; C:\Windows\system32\DRIVERS\SynRMIHID.sys [56936 2015-10-15] (Synaptics Incorporated)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [146232 2015-06-26] (Intel Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2017-02-20 20:21 - 2017-02-20 20:21 - 00000000 ____D C:\Users\Pearl\Desktop\FRST-OlderVersion
2017-02-20 20:05 - 2017-02-20 20:12 - 00000000 ____D C:\AdwCleaner
2017-02-20 20:04 - 2017-02-20 20:04 - 04015056 _____ C:\Users\Pearl\Desktop\AdwCleaner.exe
2017-02-20 19:54 - 2017-02-20 20:16 - 00000000 ____D C:\Windows\System32\Tasks\Norton Security
2017-02-20 19:51 - 2017-02-20 19:51 - 00100592 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2017-02-20 19:51 - 2017-02-20 19:51 - 00008319 _____ C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2017-02-20 19:50 - 2017-02-20 19:50 - 00002459 _____ C:\Users\Public\Desktop\Norton Security.lnk
2017-02-20 19:48 - 2017-02-20 19:50 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Security
2017-02-20 19:48 - 2017-02-20 19:48 - 00000000 ____D C:\Program Files (x86)\NortonInstaller
2017-02-20 19:48 - 2017-02-20 19:48 - 00000000 ____D C:\Program Files (x86)\Norton Security
2017-02-20 19:43 - 2017-02-20 19:55 - 00000000 ____D C:\Windows\System32\Tasks\Norton Remove and Reinstall
2017-02-20 19:40 - 2017-02-20 19:40 - 00000000 ____D C:\ProgramData\PCSettings
2017-02-20 19:37 - 2017-02-20 19:38 - 14417536 _____ (Symantec Corporation) C:\Users\Pearl\Downloads\NRnR.exe
2017-02-20 19:23 - 2017-02-20 19:23 - 00000999 _____ C:\Users\Pearl\Desktop\JRT.txt
2017-02-20 19:11 - 2017-02-20 19:11 - 01663040 _____ (Malwarebytes) C:\Users\Pearl\Desktop\JRT.exe
2017-02-20 16:31 - 2017-02-20 16:31 - 00000000 ____D C:\Windows\System32\Tasks\Remediation
2017-02-20 13:29 - 2017-02-20 13:38 - 164634056 _____ (Symantec Corporation) C:\Users\Pearl\Downloads\NS-ESD-Def-22.8.1.14-EN.exe
2017-02-20 13:18 - 2017-02-20 13:18 - 00900296 _____ C:\Users\Pearl\Downloads\Norton_Removal_Tool.exe
2017-02-20 13:09 - 2017-02-20 14:18 - 00000000 ____D C:\Users\Pearl\AppData\Local\LogMeIn Rescue Applet
2017-02-20 12:57 - 2017-02-20 13:00 - 05686240 _____ (Symantec Corporation) C:\Users\Pearl\Downloads\NortonSymHelp.exe
2017-02-20 12:57 - 2017-02-20 12:57 - 01851432 _____ (LogMeIn, Inc.) C:\Users\Pearl\Downloads\Support-LogMeInRescue.exe
2017-02-17 22:05 - 2017-02-17 22:05 - 00000000 ____D C:\Program Files\NortonInstaller
2017-02-17 19:14 - 2017-02-17 19:13 - 00218189 _____ C:\Users\Pearl\Documents\new friend.odm
2017-02-17 12:04 - 2017-02-17 12:04 - 00000562 _____ C:\TDSSKiller.3.1.0.12_17.02.2017_12.04.52_log.txt
2017-02-17 11:55 - 2017-02-17 12:03 - 02455156 _____ C:\TDSSKiller.3.1.0.12_17.02.2017_11.55.00_log.txt
2017-02-17 11:54 - 2017-02-17 11:54 - 00000562 _____ C:\TDSSKiller.3.1.0.12_17.02.2017_11.54.00_log.txt
2017-02-17 11:50 - 2017-02-17 11:50 - 00000017 _____ C:\Users\Pearl\AppData\Local\resmon.resmoncfg
2017-02-17 11:39 - 2017-02-17 11:46 - 01129168 _____ C:\TDSSKiller.3.1.0.12_17.02.2017_11.39.40_log.txt
2017-02-17 11:36 - 2017-02-17 11:37 - 00006600 _____ C:\TDSSKiller.3.1.0.12_17.02.2017_11.36.00_log.txt
2017-02-17 11:29 - 2017-02-17 11:31 - 00269174 _____ C:\TDSSKiller.3.1.0.12_17.02.2017_11.29.36_log.txt
2017-02-17 11:26 - 2017-02-17 11:29 - 04747704 _____ (AO Kaspersky Lab) C:\Users\Pearl\Desktop\tdsskiller.exe
2017-02-17 11:06 - 2017-02-17 11:16 - 00003473 _____ C:\Users\Pearl\Desktop\Fixlog.txt
2017-02-17 10:59 - 2017-02-17 10:59 - 00000882 _____ C:\Users\Pearl\Desktop\frst64 - Shortcut.lnk
2017-02-17 10:42 - 2017-02-20 20:21 - 02422784 _____ (Farbar) C:\Users\Pearl\Desktop\FRST64.exe
2017-02-17 10:40 - 2017-02-17 10:40 - 00000902 _____ C:\Users\Pearl\Desktop\Addition - Shortcut.lnk
2017-02-17 10:40 - 2017-02-17 10:40 - 00000862 _____ C:\Users\Pearl\Desktop\FRST - Shortcut.lnk
2017-02-15 19:54 - 2017-02-15 19:56 - 00029778 _____ C:\Users\Pearl\Desktop\Addition.txt
2017-02-15 19:52 - 2017-02-20 20:22 - 00018707 _____ C:\Users\Pearl\Desktop\FRST.txt
2017-02-15 19:51 - 2017-02-20 20:21 - 00000000 ____D C:\FRST
2017-02-10 20:06 - 2017-02-15 20:59 - 00023027 _____ C:\Users\Pearl\Documents\vbv.odt
2017-02-10 20:06 - 2017-02-10 20:06 - 00027525 _____ C:\Users\Pearl\Documents\fhrt.odt
2017-02-10 13:03 - 2017-02-20 19:51 - 00003386 _____ C:\Windows\System32\Tasks\Norton WSC Integration
2017-01-28 11:03 - 2017-02-09 11:05 - 00001122 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2017-01-26 12:11 - 2017-01-26 12:11 - 00012384 _____ C:\Users\Pearl\Documents\Margaret Walker.odt
2017-01-24 12:35 - 2017-02-20 13:54 - 00000000 ____D C:\Program Files (x86)\Dell Customer Connect
2017-01-24 12:35 - 2017-01-24 12:35 - 00000000 ____D C:\Windows\SysWOW64\Dell
2017-01-23 00:55 - 2017-01-23 00:55 - 00025705 _____ C:\Users\Pearl\Documents\Untitled 1.odt
2017-01-21 23:07 - 2017-01-23 00:55 - 00029942 _____ C:\Users\Pearl\Documents\From fortune teller to pedophile..odt
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2017-02-20 20:11 - 2016-10-21 16:14 - 00000000 __SHD C:\Users\Pearl\IntelGraphicsProfiles
2017-02-20 20:11 - 2016-10-21 16:09 - 00000180 _____ C:\Windows\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-02-20 20:11 - 2016-10-11 14:32 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-02-20 20:10 - 2016-07-16 07:47 - 00000000 ___HD C:\Windows\ELAMBKUP
2017-02-20 20:10 - 2016-07-16 02:04 - 01048576 _____ C:\Windows\system32\config\BBI
2017-02-20 19:56 - 2016-10-23 13:28 - 00001318 _____ C:\Users\Pearl\Desktop\Norton Installation Files.lnk
2017-02-20 19:56 - 2016-10-23 13:27 - 00000000 ____D C:\ProgramData\Norton
2017-02-20 19:51 - 2016-10-23 13:31 - 00000000 ____D C:\Program Files\Common Files\Symantec Shared
2017-02-20 19:40 - 2016-10-23 13:29 - 00000000 ____D C:\ProgramData\NortonInstaller
2017-02-20 19:03 - 2016-10-11 14:32 - 00000000 ____D C:\Windows\system32\SleepStudy
2017-02-20 17:28 - 2017-01-16 15:47 - 00004168 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{7994AAD5-8584-4831-A1A6-A14D3A05CC66}
2017-02-20 14:08 - 2016-10-23 13:30 - 00000000 ____D C:\Windows\system32\Drivers\NSx64
2017-02-20 13:54 - 2016-10-23 13:28 - 00000000 ____D C:\Users\Public\Downloads\Norton
2017-02-20 13:54 - 2016-10-11 14:53 - 00000000 ____D C:\Program Files (x86)\Dell Update
2017-02-20 13:43 - 2016-07-16 02:04 - 00032768 _____ C:\Windows\system32\config\ELAM
2017-02-20 13:29 - 2016-10-11 14:45 - 01505004 _____ C:\Windows\system32\PerfStringBackup.INI
2017-02-17 11:55 - 2016-10-29 21:58 - 00000000 ____D C:\Users\Pearl\AppData\Local\CrashDumps
2017-02-17 11:15 - 2016-12-17 21:53 - 00000892 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2017-02-17 11:15 - 2016-12-17 21:53 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-02-16 15:43 - 2016-07-16 07:47 - 00000000 ____D C:\Windows\AppReadiness
2017-02-14 21:58 - 2016-12-17 21:53 - 00003982 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-02-14 21:57 - 2016-07-16 07:47 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-02-14 21:57 - 2016-07-16 07:47 - 00000000 ____D C:\Windows\system32\Macromed
2017-02-10 13:29 - 2016-10-11 14:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2017-02-10 13:29 - 2016-10-11 14:42 - 00000000 ____D C:\Program Files\Dell
2017-02-10 13:28 - 2016-10-29 22:08 - 00000000 ____D C:\Program Files\Common Files\AV
2017-02-09 11:05 - 2016-10-21 15:38 - 00003970 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1477078704
2017-02-09 11:05 - 2016-10-21 15:38 - 00000000 ____D C:\Program Files (x86)\Opera
2017-02-04 22:24 - 2016-07-16 07:47 - 00000000 ____D C:\Windows\system32\NDF
2017-02-02 15:49 - 2016-12-17 21:53 - 00002274 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-02-02 15:49 - 2016-12-17 21:53 - 00002262 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-02-02 15:23 - 2016-12-27 22:41 - 00000000 ____D C:\Users\Pearl\AppData\Local\ElevatedDiagnostics
2017-01-21 14:47 - 2016-10-26 19:23 - 00001204 _____ C:\Users\Pearl\Desktop\OpenOffice 4.1.3.lnk
 
==================== Files in the root of some directories =======
 
2017-02-17 11:50 - 2017-02-17 11:50 - 0000017 _____ () C:\Users\Pearl\AppData\Local\resmon.resmoncfg
2016-10-11 14:46 - 2016-10-11 14:46 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-10-11 14:56 - 2016-10-11 14:57 - 0000106 _____ () C:\ProgramData\{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}.log
2016-10-11 15:04 - 2016-10-11 15:04 - 0000105 _____ () C:\ProgramData\{32C8E300-BDB4-4398-92C2-E9B7D8A233DB}.log
2016-10-11 15:01 - 2016-10-11 15:01 - 0000100 _____ () C:\ProgramData\{6BADCD73-E925-46F7-A295-FF2448632728}.log
2016-10-11 15:04 - 2016-10-11 15:04 - 0000098 _____ () C:\ProgramData\{CEF5334F-B91A-4327-ACAE-AA50DCE3F995}.log
 
Some files in TEMP:
====================
2017-02-20 13:09 - 2017-02-20 13:09 - 1851432 _____ (LogMeIn, Inc.) C:\Users\Pearl\AppData\Local\Temp\launchlmi.exe
 
==================== Bamital & volsnap ======================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
 
LastRegBack: 2017-02-15 17:50
 
==================== End of FRST.txt ============================
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-02-2017
Ran by Pearl (20-02-2017 20:23:55)
Running from C:\Users\Pearl\Desktop
Windows 10 Home Version 1607 (X64) (2016-10-21 20:07:41)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-3221040054-2150784680-2399622922-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3221040054-2150784680-2399622922-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-3221040054-2150784680-2399622922-1000 - Limited - Disabled) => C:\Users\defaultuser0
Guest (S-1-5-21-3221040054-2150784680-2399622922-501 - Limited - Disabled)
Pearl (S-1-5-21-3221040054-2150784680-2399622922-1001 - Administrator - Enabled) => C:\Users\Pearl
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Norton Security (Enabled - Up to date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Security (Enabled - Up to date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
FW: Norton Security (Enabled) {6BFC5632-188D-B806-D13E-C607121B42A0}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
Adobe Flash Player 24 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 24.0.0.221 - Adobe Systems Incorporated)
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 12 - CyberLink Corp.)
Dell Customer Connect (HKLM-x32\...\{4FA72FF9-DD64-43A8-8704-6380A11F11D5}) (Version: 1.4.15.0 - Dell Inc.)
Dell Data Vault (Version: 4.3.9.0 - Dell Inc.) Hidden
Dell Digital Delivery (HKLM-x32\...\{AB7F2792-2ED1-4C5C-9F28-680E5110BF72}) (Version: 3.1.1018.0 - Dell Products, LP)
Dell Foundation Services (HKLM\...\{BDB50421-E961-42F3-B803-6DAC6F173834}) (Version: 3.4.16100.0 - Dell Inc.)
Dell Help & Support (HKLM-x32\...\InstallShield_{2B27A8F6-B7D5-4FAF-9C8A-71E9EECA3E9C}) (Version: 2.2.21.0 - Dell Inc.)
Dell Help & Support (Version: 2.2.21.0 - Dell Inc.) Hidden
Dell Product Registration (HKLM-x32\...\InstallShield_{85B14AE3-1624-45BE-942B-A528DF6F1CCE}) (Version: 3.0.123.0 - Dell Inc.)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.3.6855.61 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{27130E51-9555-408B-8134-7BFF54EDE27B}) (Version: 1.3.0.72 - Dell)
Dell System Detect (HKU\S-1-5-21-3221040054-2150784680-2399622922-1001\...\58d94f3ce2c27db0) (Version: 7.11.0.6 - Dell)
Dell Touchpad (HKLM\...\SynTPDeinstKey) (Version: 19.0.15.15 - Synaptics Incorporated)
Dell Update - SupportAssist Update Plugin (HKLM\...\{92F651D9-4431-469E-9B11-299D007AF656}) (Version: 2.0.2.1835 - Dell Inc.)
Dell Update (HKLM-x32\...\{FB198E80-F1AB-4A6F-B3E3-F7442FC91FD2}) (Version: 1.9.4.0 - Dell Inc.)
Dell WLAN and Bluetooth Client Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Dell Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Intel® Chipset Device Software (x32 Version: 10.1.1.7 - Intel® Corporation) Hidden
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4256 - Intel Corporation)
Intel® Trusted Execution Engine (HKLM\...\{176E2755-0A17-42C6-88E2-192AB2131278}) (Version: 2.0.0.1067 - Intel Corporation)
Intel® Security Assist (HKLM-x32\...\{84DB01CB-7EB7-4261-9249-99A32768D991}) (Version: 1.0.0.523 - Intel Corporation)
Maxx Audio Installer (x64) (Version: 2.6.6570.2 - Waves Audio Ltd.) Hidden
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.7369.2038 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3221040054-2150784680-2399622922-1001\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{2DFD8316-9EF1-3210-908C-4CB61961C1AC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{527BBE2F-1FED-3D8B-91CB-4DB0F838E69E}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
NewBlue Video Essentials for Windows (HKLM-x32\...\NewBlue Video Essentials for Windows) (Version: 3.0 - NewBlue)
Norton Security (HKLM-x32\...\NS) (Version: 22.8.1.14 - Symantec Corporation)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.6925.1016 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.6925.1016 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.6925.1016 - Microsoft Corporation) Hidden
OpenOffice 4.1.3 (HKLM-x32\...\{EEA30AEB-8BA7-465B-85D4-098BB99733E7}) (Version: 4.13.9783 - Apache Software Foundation)
Opera Stable 43.0.2442.806 (HKLM-x32\...\Opera 43.0.2442.806) (Version: 43.0.2442.806 - Opera Software)
proDAD Adorage 3.0 (HKLM-x32\...\proDAD-Adorage-3.0) (Version: 3.0.114.1 - proDAD GmbH)
Product Registration (Version: 3.0.123.0 - Dell Inc.) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 10.0.1.0 - Qualcomm Atheros)
QuickSet64 (HKLM\...\{87CF757E-C1F1-4D22-865C-00C6950B5258}) (Version: 11.1.31 - Dell Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.9600.31213 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7654 - Realtek Semiconductor Corp.)
Realtek USB Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{04201224-2B34-4EE7-862B-B7BBF89DB3AB}) (Version: 10.1.506.2015 - Realtek)
Speccy (HKLM\...\Speccy) (Version: 1.29 - Piriform)
Windows Driver Package - Intel Corporation (iagpioe) System  (05/21/2015 604.10120.2652.361) (HKLM\...\AF9226384B030787C4D0F761A23F48F7649D6D17) (Version: 05/21/2015 604.10120.2652.361 - Intel Corporation)
Windows Driver Package - Intel Corporation (iai2ce) System  (05/21/2015 604.10120.2654.367) (HKLM\...\B37036F6A0766DAC3E418F6CAE67005C5F3A8C40) (Version: 05/21/2015 604.10120.2654.367 - Intel Corporation)
Windows Driver Package - Intel Corporation (iauarte) System  (05/21/2015 604.10120.2653.391) (HKLM\...\1D4FF76A05A14FF5BA3636A41E0AB237F3A55E14) (Version: 05/21/2015 604.10120.2653.391 - Intel Corporation)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
CustomCLSID: HKU\S-1-5-21-3221040054-2150784680-2399622922-1001_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-3221040054-2150784680-2399622922-1001_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-3221040054-2150784680-2399622922-1001_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-3221040054-2150784680-2399622922-1001_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-3221040054-2150784680-2399622922-1001_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-3221040054-2150784680-2399622922-1001_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {1D9AD21B-39CE-458D-A3C3-DCACBD35F065} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-08] (Microsoft Corporation)
Task: {1E2AB1B0-389D-4FD5-8B18-5FE009B98AFA} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [2016-09-23] (Symantec Corporation)
Task: {26379819-23B4-43A2-882C-346BCA91DABA} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMLSvc_P2G8.exe [2016-04-27] (CyberLink)
Task: {3FD07BD9-2BF9-40B2-B002-113CC51D7428} - System32\Tasks\Opera scheduled Autoupdate 1477078704 => C:\Program Files (x86)\Opera\launcher.exe [2017-02-06] (Opera Software)
Task: {40306EE9-E371-48F0-98DE-5222BEEBFA6D} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLVDLauncher.exe [2015-01-28] (CyberLink Corp.)
Task: {53190CC9-855B-4FA3-8FE0-805E8A1D8DA5} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2016-09-09] (Dell Inc.)
Task: {5AD34B13-9E54-4FC1-9617-B7D34B3AA871} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe 
Task: {5C0339D9-DA47-425A-B133-FD0C19FC0EB3} - System32\Tasks\Norton Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Security\Engine\22.8.1.14\SymErr.exe [2016-11-11] (Symantec Corporation)
Task: {66D05118-F086-44E1-AE8A-43C7CA091C6F} - System32\Tasks\RtHDVBg_PushButton => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-11-06] (Realtek Semiconductor)
Task: {79A88BAF-A7CA-43F0-A0D0-FF13B07D74B6} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe 
Task: {7FE7D215-90B7-4B92-92BE-9E5FF55B6B2C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-02-14] (Adobe Systems Incorporated)
Task: {8C154AE7-75A6-4E76-A368-995205356E4C} - System32\Tasks\Dell Cleanup => c:\windows\system32\oem\startmenufix.vbs [2016-09-14] ()
Task: {BB5B0767-0B51-450A-A959-766C38AE6102} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWoW64\Macromed\Flash\FlashUtil32_24_0_0_221_pepper.exe [2017-02-14] (Adobe Systems Incorporated)
Task: {BFBFAA25-6DE9-4961-B25F-B63313E2A544} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-17] (Google Inc.)
Task: {CA8B5F37-C3AF-44F3-8D7E-1E81B6092F3E} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Security\Engine\22.8.1.14\WSCStub.exe [2016-11-11] (Symantec Corporation)
Task: {D4F80AE7-A1CC-40CA-AE38-A778F20D6E68} - System32\Tasks\Norton Security\Norton Error Processor => C:\Program Files (x86)\Norton Security\Engine\22.8.1.14\SymErr.exe [2016-11-11] (Symantec Corporation)
Task: {D6F8254D-2BBF-437F-BD88-129A006E96C4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-12-17] (Google Inc.)
Task: {DBC9D5ED-4C30-4CA4-A73B-37948FA9909E} - System32\Tasks\Norton Security\Norton Autofix => C:\Program Files (x86)\Norton Security\Engine\22.8.1.14\SymErr.exe [2016-11-11] (Symantec Corporation)
Task: {E15073FB-DCA0-4A1A-B280-E481D1C292A1} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-10-08] (Microsoft Corporation)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\SysWoW64\Macromed\Flash\FlashUtil32_24_0_0_221_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWoW64\Macromed\Flash\FlashPlayerUpdateService.exe
 
==================== Shortcuts =============================
 
(The entries could be listed to be restored or removed.)
 
==================== Loaded Modules (Whitelisted) ==============
 
2016-07-16 07:42 - 2016-07-16 07:42 - 00231424 _____ () C:\Windows\SYSTEM32\ism32k.dll
2016-10-23 17:24 - 2016-09-15 13:25 - 02681200 _____ () C:\Windows\system32\CoreUIComponents.dll
2015-02-26 13:12 - 2015-02-26 13:12 - 00007680 _____ () C:\Program Files (x86)\Intel\Intel® Security Assist\isaHelperService.exe
2016-10-11 15:10 - 2015-09-09 17:25 - 00395880 _____ () C:\Windows\system32\igfxTray.exe
2016-10-23 17:24 - 2016-09-15 13:25 - 02681200 _____ () C:\Windows\SYSTEM32\CoreUIComponents.dll
2016-10-11 15:32 - 2016-10-23 13:12 - 08923840 _____ () C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\1033\GrooveIntlResource.dll
2016-10-23 17:23 - 2016-09-07 00:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-10-23 17:19 - 2016-10-05 05:35 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-11-02 11:49 - 2016-10-14 23:41 - 09760256 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-02 11:49 - 2016-10-14 23:34 - 01401344 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-02 11:49 - 2016-10-14 23:34 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-02 11:49 - 2016-10-14 23:34 - 01033216 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
2016-11-02 11:49 - 2016-10-14 23:34 - 02424832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-02 11:49 - 2016-10-14 23:38 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-02-26 13:12 - 2015-02-26 13:12 - 00330240 _____ () C:\Program Files (x86)\Intel\Intel® Security Assist\isa.exe
2016-05-19 16:43 - 2016-05-19 16:43 - 00087888 _____ () C:\Program Files\Dell\Dell Help & Support\MDLCSvc.exe
2016-10-23 13:43 - 2016-10-23 13:46 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.197.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2016-10-23 13:43 - 2016-10-23 13:46 - 00178176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.197.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-10-23 13:43 - 2016-10-23 13:46 - 35253760 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.8.197.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-10-11 14:57 - 2014-12-08 03:28 - 00627672 _____ () C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMediaLibrary.dll
2014-12-08 18:28 - 2014-12-08 18:28 - 00016856 _____ () C:\Program Files (x86)\CyberLink\CyberLink Media Suite\Power2Go8\CLMLSvcPS.dll
2017-02-09 11:05 - 2017-02-06 03:41 - 39820376 _____ () C:\Program Files (x86)\Opera\43.0.2442.806\opera_browser.dll
2017-02-09 11:05 - 2017-02-06 03:41 - 45837912 _____ () C:\Program Files (x86)\Opera\43.0.2442.806\opera_child.dll
2017-02-09 11:05 - 2017-02-09 11:04 - 01930328 _____ () C:\Program Files (x86)\Opera\43.0.2442.806\libglesv2.dll
2017-02-09 11:05 - 2017-02-09 11:04 - 00087640 _____ () C:\Program Files (x86)\Opera\43.0.2442.806\libegl.dll
2016-12-21 10:24 - 2016-12-21 10:24 - 00134008 _____ () C:\Program Files (x86)\Dell Customer Connect\ServiceTagPlusPlus.dll
2016-05-02 17:52 - 2016-05-02 17:52 - 00134144 _____ () C:\Program Files (x86)\Dell Update\ServiceTagPlusPlus.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\02574880.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2ce.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\02574880.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
 
==================== Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2016-07-16 07:47 - 2017-02-17 11:07 - 00000027 ____N C:\Windows\system32\Drivers\etc\hosts
 
127.0.0.1       localhost
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-3221040054-2150784680-2399622922-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Pearl\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\{afb45150-92a7-4a13-b785-4cd9a1c137ce}.jpg
DNS Servers: 209.18.47.62 - 209.18.47.61
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{7D6A9677-3099-459C-9061-92E55B7EC5F3}] => (Allow) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\PowerDirector14\PDR10.EXE
FirewallRules: [{2742825D-6606-47A4-B096-7CFB6F9AEBFE}] => (Allow) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\PowerDVD14\PowerDVD.exe
FirewallRules: [{98527E30-8B2E-4014-8AFD-240C2FF47147}] => (Allow) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\PowerDVD14\Kernel\DMS\CLMSServerPDVD14.exe
FirewallRules: [{B121EFEB-ED6C-4610-B811-BE39E189205F}] => (Allow) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\PowerDVD14\PowerDVD14Agent.exe
FirewallRules: [{D0C1861B-3CA0-4C34-A9C0-7AEDFD678426}] => (Allow) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\PowerDVD14\Movie\PowerDVDMovie.exe
FirewallRules: [{F00C36C2-B443-4C8F-BEBA-1E3B5E7568E8}] => (Allow) C:\Program Files (x86)\CyberLink\CyberLink Media Suite\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe
FirewallRules: [{09532446-5C49-4A46-97BD-32CAB6D078C2}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{F8D8BF19-4CBE-486E-9BD9-0E224EBA8227}] => (Allow) C:\Program Files (x86)\Opera\42.0.2393.517\opera.exe
FirewallRules: [{C40E354C-8AC3-4F1B-BEDA-DD1B7ACE36F1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{303E0D94-66BB-4643-AFFD-E215A877535C}] => (Allow) C:\Program Files (x86)\Opera\43.0.2442.806\opera.exe
FirewallRules: [{6FCD216E-D84D-4D8E-B928-A490F4349BC7}] => (Allow) C:\Users\Pearl\AppData\Local\Temp\7zS1C4D.tmp\SymNRT.exe
FirewallRules: [{9047EF13-9754-4C6F-B10B-BB118FE670A0}] => (Allow) C:\Users\Pearl\AppData\Local\Temp\7zS1C4D.tmp\SymNRT.exe
 
==================== Restore Points =========================
 
31-01-2017 12:20:18 Scheduled Checkpoint
10-02-2017 18:45:39 Scheduled Checkpoint
19-02-2017 10:34:41 Scheduled Checkpoint
20-02-2017 19:12:21 JRT Pre-Junkware Removal
20-02-2017 19:15:18 JRT Pre-Junkware Removal
 
==================== Faulty Device Manager Devices =============
 
Name: Intel® Dynamic Platform and Thermal Framework Manager
Description: Intel® Dynamic Platform and Thermal Framework Manager
Class Guid: {c3077fcd-9c3c-482f-9317-460712f23efd}
Manufacturer: Intel
Service: esif_lf
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (02/20/2017 08:14:41 PM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [13] ERROR- DoUpdateCheck manifestsSuccessful is invalid, stop updating! #StackInfo#
 
Error: (02/20/2017 08:11:07 PM) (Source: DbxSvc) (EventID: 320) (User: )
Description: Failed to connect to the driver: (-2147024894) The system cannot find the file specified.
 
Error: (02/20/2017 08:07:56 PM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [5] ERROR- Exception on mounting SOS: mk_dellsupport_lnk can't find DSP! errno=0 #StackInfo#
 
Error: (02/20/2017 08:07:56 PM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [5] ERROR- mk_dellsupport_lnk() can't find DSP! Threw exception! #StackInfo#
 
Error: (02/20/2017 08:07:56 PM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [5] ERROR- FindPartObjects() Lable not matched! Target:DELLSUPPORT, Current:Image, Partition:PartitionPos {disk:0, part:5}, curGptTypeStr:{de94bba4-06d1-4d40-a16a-bfd50179d6ac} #StackInfo#
 
Error: (02/20/2017 08:07:56 PM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [5] ERROR- FindPartObjects() Lable not matched! Target:DELLSUPPORT, Current:WINRETOOLS, Partition:PartitionPos {disk:0, part:4}, curGptTypeStr:{de94bba4-06d1-4d40-a16a-bfd50179d6ac} #StackInfo#
 
Error: (02/20/2017 08:07:56 PM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [5] ERROR- [SOSINSTALLER] TRYMOUNT-DELLSUPPORT: mk_dellsupport_lnk can't find DSP! errno=0
   at utilities.SymlnkBroker.mk_dellsupport_lnk(String mountpoint, String targetFileRelativePath, Boolean isDirectory, List`1 targetKeyFiles)
   at utilities.PartitionHelper.DellSupportFinder.find()
   at DellUpdate.sosinstaller.try_mount_dellsupport() #StackInfo#
 
Error: (02/20/2017 08:07:56 PM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [5] ERROR- mk_dellsupport_lnk() can't find DSP! Threw exception! #StackInfo#
 
Error: (02/20/2017 07:53:00 PM) (Source: DPTF) (EventID: 256) (User: )
Description: Intel® Dynamic Platform and Thermal Framework : ESIF(8.1.10603.192) TYPE: ERROR FUNC: rsrc_app_start_app_in_active_user_session FILE: rsrc_app.c LINE: 328 TIME: 492494 ms
 
Unable to start capture program. Error = 5
 
Error: (02/20/2017 07:49:04 PM) (Source: DellUpService.exe) (EventID: 0) (User: )
Description: [11] ERROR- DoUpdateCheck manifestsSuccessful is invalid, stop updating! #StackInfo#
 
 
System errors:
=============
Error: (02/20/2017 08:11:24 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 and APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (02/20/2017 08:11:24 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 and APPID 
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (02/20/2017 08:11:21 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
 and APPID 
{F72671A9-012C-4725-9D2F-2A4D32D65169}
 to the user NT AUTHORITY\SYSTEM SID (S-1-5-18) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.
 
Error: (02/20/2017 08:09:48 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Search service, but this action failed with the following error: 
An instance of the service is already running.
 
Error: (02/20/2017 08:09:21 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The WMI Performance Adapter service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.
 
Error: (02/20/2017 08:09:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Dell Data Vault service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (02/20/2017 08:09:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Cyberlink RichVideo Service(CRVS) service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (02/20/2017 08:09:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Intel® Dynamic Application Loader Host Interface service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (02/20/2017 08:09:18 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Dell Update Service service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (02/20/2017 08:09:18 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Dell Data Vault Wizard service terminated unexpectedly.  It has done this 1 time(s).
 
 
==================== Memory info =========================== 
 
Processor: Intel® Celeron® CPU N3050 @ 1.60GHz
Percentage of memory in use: 52%
Total physical RAM: 4007.56 MB
Available physical RAM: 1916.52 MB
Total Virtual: 5479.56 MB
Available Virtual: 3170.33 MB
 
==================== Drives ================================
 
Drive c: (OS) (Fixed) (Total:453.04 GB) (Free:416.87 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 6CB7AD03)
 
Partition: GPT.
 
==================== End of Addition.txt ============================

  • 0

#12
Jr0x

Jr0x

    Malware removal team

  • Malware Removal
  • 1,825 posts
Hi Pearlcatdesign,

That's alright, and you did well! Apologies for the icon.

favicon-32x32.png Malwarebytes Anti-Malware

Please download Malwarebytes to your desktop.

Double-click mb3-setup-consumer-{version}.exe and follow the prompts to install the program.

Once the program has fully updated, Proceed with the Scan options and select "Threat Scan".

The Scan Pane is the introduction to scan-related options in the program. When you click Scan in the Menu Pane, you will see the screen shown below.

10a.png

After a scan has been executed, scan results are displayed as shown below. In this scan, three threats were detected.

13a.png

Put a checkmark on all detected and click on "Quarantine Selected"

18a.png

Selected reports may be viewed on screen, or exported to a text file for later viewing. Please note that only manual (on demand) scans are available for users of the free version of Malwarebytes.

19a.png

Please note that an Export button is shown at the bottom left corner of this screen. This allows you to make a copy of the log for use by other programs. You may export to your clipboard or to a text (TXT) file. Export to a .txt file and post its contents.


Scan with ESET Online Scanner

Temporary disable your AntiVirus and AntiSpyware protection - instructions here.
Please visit ESET Online Scanner website.
Click Scan Now.
  • Download esetonlinescanner_enu.exe that you'll be given link to.
  • Double click esetonlinescanner_enu.exe.
  • Accept the Terms of Use
To perform the scan:
  • Make sure that Enable detection of potentially unwanted applications is selected.
  • In the Advanced Settings dropdown menu:
    • Enable detection of potentially unsafe applications are checked.
    • Enable detection of suspicious applications are checked.
    • Enable Anti-Stealth technology are checked.
    • Scan archives is checked.
    • Make sure that Clean threats automatically is unchecked.
    • Use custom proxy settings is unchecked.
  • Click Scan
  • The program will begin to download it's virus database. The speed may vary depending on your Internet connection.
  • When completed, the program will begin to scan. This may take several hours. Please, be patient.
  • Do not do anything on your machine as it may interrupt the scan.
  • When the scan is done results will be displayed. Click the Copy to clipboard.
  • When completed it'll show a list of "Threats found", click beneath it on Save to text file.... and save it as ESET log.txt on your Desktop.
  • Then click Do not clean. Place a checkmark at Delete application's data on close, click Finish and close the program.
Please include this logfile in your next reply.
Don't forget to re-enable previously switched-off protection software!
 
 
In your next reply, please include the following:
  • MalwareBytes log
  • ESET log
  • How is your machine running now?

  • 0

#13
Pearlcatdesign

Pearlcatdesign

    Member

  • Topic Starter
  • Member
  • PipPip
  • 49 posts

Here's the info you asked for and I also just wanted to ad that I still feel like one of the tenants in the building (we all share the same wifi account for the whole building with the same password) Landlord won't change it. When I am clicking on blank boxes for name, address etc. the other tenants name shows up too and I then have to click on my info. Is this okay? 

 

Thank you very much for your time and all the work you've done,

Pearl

 

Malwarebytes
www.malwarebytes.com
 
-Log Details-
Scan Date: 2/21/17
Scan Time: 10:12 PM
Logfile: malwaretxt.txt
Administrator: Yes
 
-Software Information-
Version: 3.0.6.1469
Components Version: 1.0.50
Update Package Version: 1.0.1321
License: Trial
 
-System Information-
OS: Windows 10
CPU: x64
File System: NTFS
User: DESKTOP-D2759O6\Pearl
 
-Scan Summary-
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 405235
Time Elapsed: 10 min, 21 sec
 
-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
-Scan Details-
Process: 0
(No malicious items detected)
 
Module: 0
(No malicious items detected)
 
Registry Key: 0
(No malicious items detected)
 
Registry Value: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Data Stream: 0
(No malicious items detected)
 
Folder: 0
(No malicious items detected)
 
File: 0
(No malicious items detected)
 
Physical Sector: 0
(No malicious items detected)
 
 
(end)
 
 
I lost the eset log somehow? When I went to paste it wasn't there. I went back and couldn't find it, but I have no threats found, so hopefully that will be okay. My computer seems to be running fine. Do I need to keep all these malware and anti-virus protection sites I've downloaded?  

  • 0

#14
Jr0x

Jr0x

    Malware removal team

  • Malware Removal
  • 1,825 posts
Hi Pearlcatdesign,
 

When I am clicking on blank boxes for name, address etc. the other tenants name shows up too and I then have to click on my info. Is this okay?

That is due to browser setting. You can clear browser data, cache and so on which will reset the data if you want.
 

so hopefully that will be okay

Yup, that's fine. I'll take your word for it.
 

Do I need to keep all these malware and anti-virus protection sites I've downloaded?

See below.



OK! Well done. :thumbsup: Here is the best part of the process! The mullygrubs are gone! That's a technical term for your log(s) appear to be clean! If you have no further issues with your computer, please complete the housekeeping procedures outlined below.
The first thing we need to do is to remove all the tools that we have used. This is so that should you ever be re-infected, you will download updated versions.

Tools CleanUp with DelFix

Download Delfix and save it to the Desktop.
  • Right click the 34079650-4cb0ca87s.jpg and click Run as Administrator.
  • Ensure ALL boxes are checked.
    delfix.JPG
  • Click the Run button.
  • The program will run for a few moments and then notepad will open with a log. Please paste the log in your next reply.
Delete the following Files and Folders (If Present):

Delete any other .bat, .log, .reg, .txt, and any other files created or downloaded during this process, and left on the desktop and empty the Recycle Bin.

Keeping your software updated

Windows Updates
  • Please go to Start Menu -> Control Panel
  • Under View by: select Large Icons, then tap or click Windows Update.
  • Click on Change Settings

    CheckForUpdates.JPG[/b]
  • Select "Install updates automatically (recommended)" from the Important updates drop-down.

    WUChangeSettings.JPG
  • Choose a day and a time when you know the computer will be on and connected to the internet. The default is 3:00AM every day.
  • Ensure that all of the other check boxes are checked.
  • Click OK.
Malwarebytes Anti-Malware

I recommend keeping Malwarebytes Anti-Malware installed. Make sure to update it and run it at least once a week. If it finds things such as PUP's (Potentially Unwanted Programs) you can delete those with no worries. However, if it finds something like a trojan, come see us.

Keep Java Updated

Java has become the #1 program exploited by thieves and hackers as of today. It's gotten so bad, the Department of Homeland Security recently recommended that users disable Java on their machines.

For more information regarding this, see the two articles below:

Forbes: US Department of Homeland Security Calls on user do disable Java

US warns on Java software

Unless you have software on your machine that absolutely requires Java, I highly recommend you completely remove it from your system.
If you do have software that requires it, then disable it until such time as it's needed by those programs.
Please click the link below for instructions to disable and uninstall Java.

How to Disable Java in your Web Browser

How to Completely Remove and Uninstall Java From Windows PC

Filehippo Updatechecker

Another weapon against malicious programs and viruses is to keeping other programs updated. There are several programs out there that can check for out of date programs on your computer. One is Filehippo. You can run this on a weekly or monthly basis to check your programs for updates and then it will provide a link for you to download them.

Download Filehippo Updatechecker

Tips, Information, and Optional Installation

Watch what you open in your emails. If you get an email from an unknown source with any attached files, do not open it.

Be careful of the websites you visit.

When installing new programs, don't be "click happy" and click through the screens. Many programs come with adware in them and are set to install them by default. Several programs require that you uncheck or select no to prevent the installation. Take you time and read each screen as you go.

To help protect yourself while on the web, I recommend you read Answers to common security questions - Best Practices

Installation of Unchecky (Optional)

This is a very good little program that will automatically uncheck any boxes during a software installation. This helps prevent the software from installing any malware that is by default checked while the program is being installed.

Click here to be taken to Unchecky.com

Click the very large Download button.

Click Save

Once downloaded, double click the program (Vista, Win 7, and 8, right click and Run as Administrator)

Once open, click the Install button.

eF6qWPr.jpg

Then click Finish

1YmbKwi.jpg

Unchecky is now installed and will help you keep unwanted check boxes unchecked.

Installation of CryptoPrevent (Optional)

CryptoPrevent is a free program that prevents CryptoLocker / ransomware from infecting your PC by locking down the OS so the malware can not get a grip on your system. You may read more about this here.

To download and install:
  • Click CryptoPrevent
  • Under the Free Edition column, click on Download button to request for a download link and download to your Desktop
  • Extract the content of the zip file to your Desktop and right-click and select Run as Administrator
  • Accept all the defaults during the install. The last screen of the install has a checkmark in "Launch CryptoPrevent". This is good and will launch the program once you click Finish.
  • You will get a prompt asking if you purchased a Product Key for Automatic Updates. You can answer No.
  • You will then be prompted to learn more about automatic updates or if you want to purchase a key. This is up to you but you don't have to.
  • You will be prompted to click OK to continue and select your protection level. Go ahead and click OK.
  • Click the Apply button to set Default protection.
  • You may get a message stating that Windows Sidebar and Desktop Gadgets are a major security vulnerability and asking you if you want to disable them. If you don't use these features, answer Yes.
  • That's it. The protection is in place.
Note: The free version doesn't provide automatic updates. Periodically, you should open up the program (there is a shortcut on your desktop now) and select the Updates! menu....and select Check for Updates to see if there are any as this infection has serious consequences.

If you have any other questions, please feel free to ask me.
  • 0

#15
Pearlcatdesign

Pearlcatdesign

    Member

  • Topic Starter
  • Member
  • PipPip
  • 49 posts

You're awesome!!! Thank you so much! Have a great day :) Pearl


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP