CPU at 100% until task manager is opened

[RendedRere]

Recently I've been getting this problem where whenever I click on my Task Manager application there's a glimpse of my CPU at 100% but then lowering down to 5% during normal browsing. I have heard that this may be a bitcoin miner virus that got installed onto my computer. I've tried things like Malwarebytes scans multiple times but nothing has been detecting it. It'd be very nice to receive direct support to understand what has been ticking this CPU usage off and why it returns to normal once task manager is opened.

[nasdaq]

Hello, Welcome to Malwarebytes.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Download the Farbar Recovery Scan Tool (FRST).
Choose the 32 or 64 bit version for your system.
and save it to a folder on your computer's Desktop.
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

How to attach a file:
In the Reply section in the bottom of the topic Select Click the Choose a File.
Navigate to the location of the File.
Click the file. It will appear in section.
Click the Saving button.

Please post the logs for my review.

Wait for further instructions
====

[RendedRere]

Hello, thank you for the response. I believe this is what you wanted?

Addition.txt FRST.txt

[nasdaq]

Hi,

Your logs are clean of malware.

ATTENTION: System Restore is disabled (Total:117.94 GB) (Free:76.7 GB) (65%)

ATTENTION: System Restore is disabled
Turn System Restore ON for Drives in Windows 10 - Immediately.
https://www.tenforums.com/tutorials/4533-system-protection-turn-off-drives-windows-10-a.html
<<<>>>

Check the integrity of the operating system files.
Follow all the instructions on this page.
How to run sfc /Scannow
http://support.microsoft.com/kb/929833

When completed refer to the Microsoft article again and follow the instructions to view details of the System File Checker process

Post the contents of the sfcdetails.txt file for my review.

Let me know if the problem persists.
<<<>>>

[RendedRere]

I think I did what you told me right because the problem still persists even after I turned the security on. Not sure what's going on.

sfcdetails.txt

[nasdaq]

Hi,

Try this.

How to use Malwarebytes Anti-Rootkit to remove rootkits

Read the instructions on how to proceed on the link below.
Download the program using the link on the page.

http://www.malwareremovalguides.info/how-to-use-malwarebytes-anti-rootkit-to-remove-rootkits/
 
Run the application as suggested.
----

--RogueKiller--

• Download & SAVE to your Desktop Download RogueKiller
• Quit all programs that you may have started.
• Please disconnect any USB or external drives from the computer before you run this scan!
• For Vista or above, right-click the program file and select "Run as Administrator"
• Accept the user agreements.
• Execute the scan and wait until it has finished.
• If a Windows opens to explain what [PUM's] are, read about it.
• Click the RoguKiller icon on your taksbar to return to the report.
• Click open the Report
• Click Export TXT button
• Save the file as ReportRogue.txt
• Click the Remove button to delete the items in RED  
• Click Finish and close the program.
• Locate the ReportRogue.txt file on your Desktop and copy/paste the contents in your next.
  

=======

Please post the logs and let me know if the problem is solved.
 

[RendedRere]

Sorry for the late response, I've done as you said. I don't know why it's marking an extension that I think is good as a threat. 

ReportRogue.txt

[nasdaq]

Hi,

It's a security concern.
Read about it. It's your call if you want to keep it.

https://www.quora.com/Should-I-use-the-honey-extension-for-Chrome

Is your problem solved?

Edited December 24, 2019 by nasdaq

[RendedRere]

I removed it just incase but it still hasn't lifted the situation. Before I asked about this problem happening I factory reset my entire computer because most of it's data I didn't really care about in hopes that would work. Still no luck so I'm baffled on what to do next. Is really nothing detecting the problem right now?

[nasdaq]

Hi,

Read carefully and follow these steps.
TDSS

• Download TDSSKiller and save it to your Desktop.
• Doubleclick on TDSSKiller.exe to run the application.
• Then click on Start Scan.
• If a suspicious file is detected, the default action will be Skip, click on Continue.

• If an infected file is detected, the default action will be Cure, click on Continue.
  

• Important: Do NOT change the default action on your own unless instructed by a malware Helper! Doing so may render your computer unbootable.
  

• It may ask you to reboot the computer to complete the process. Click on Reboot Now.

• If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  

• If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.
  

===
 

[RendedRere]

Reboot was not required, no suspicious files were detected at all. Problem still persists, if you want proof I can get some proof of it.

 

 

 

 

 

 

16:38:01.0694 5252  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
16:38:01.0694 5252  UEFI system
16:38:01.0926 5252  ============================================================
16:38:01.0926 5252  Current date / time: 2019/12/24 16:38:01.0926
16:38:01.0926 5252  SystemInfo:
16:38:01.0926 5252  
16:38:01.0926 5252  OS Version: 6.2.9200 ServicePack: 0.0
16:38:01.0926 5252  Product type: Workstation
16:38:01.0926 5252  ComputerName: MSI
16:38:01.0926 5252  UserName: amirr
16:38:01.0926 5252  Windows directory: C:\Windows
16:38:01.0926 5252  System windows directory: C:\Windows
16:38:01.0926 5252  Running under WOW64
16:38:01.0926 5252  Processor architecture: Intel x64
16:38:01.0926 5252  Number of processors: 8
16:38:01.0926 5252  Page size: 0x1000
16:38:01.0926 5252  Boot type: Normal boot
16:38:01.0926 5252  ============================================================
16:38:02.0090 5252  Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 (119.24 Gb), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:38:02.0368 5252  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:38:02.0371 5252  ============================================================
16:38:02.0371 5252  \Device\Harddisk0\DR0:
16:38:02.0374 5252  GPT partitions:
16:38:02.0375 5252  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {A55D6947-51DC-46AF-BDB5-9CF53A0E9A90}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x96000
16:38:02.0375 5252  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {EE5024D8-B316-4DF6-BCBE-AF743A4FB8F2}, Name: Microsoft reserved partition, StartLBA 0x96800, BlocksNum 0x40000
16:38:02.0375 5252  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {5B6D33D4-4A81-478C-8E93-E2043AFD7714}, Name: Basic data partition, StartLBA 0xD6800, BlocksNum 0xEBE3800
16:38:02.0375 5252  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {D05525C9-D183-4804-8743-68C0DEC85B32}, Name: Basic data partition, StartLBA 0xECBA000, BlocksNum 0x1C2000
16:38:02.0375 5252  MBR partitions:
16:38:02.0375 5252  \Device\Harddisk1\DR1:
16:38:02.0375 5252  GPT partitions:
16:38:02.0376 5252  \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {D2312DEA-E87C-4AB2-BA7F-B8008FF1DFBE}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x724C3800
16:38:02.0376 5252  \Device\Harddisk1\DR1\Partition2: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {62802E51-9080-440E-A5CD-96F5EB59AAA6}, Name: Basic data partition, StartLBA 0x724C4000, BlocksNum 0x2242800
16:38:02.0376 5252  MBR partitions:
16:38:02.0376 5252  ============================================================
16:38:02.0376 5252 😄 <-> \Device\Harddisk0\DR0\Partition3
16:38:02.0392 5252 😧 <-> \Device\Harddisk1\DR1\Partition1
16:38:02.0392 5252  ============================================================
16:38:02.0392 5252  Initialize success
16:38:02.0392 5252  ============================================================
16:38:03.0351 13844  ============================================================
16:38:03.0351 13844  Scan started
16:38:03.0351 13844  Mode: Manual; 
16:38:03.0351 13844  ============================================================
16:38:03.0704 13844  ================ Scan system memory ========================
16:38:03.0704 13844  System memory - ok
16:38:03.0705 13844  ================ Scan services =============================
16:38:03.0761 13844  1394ohci - ok
16:38:03.0765 13844  3ware - ok
16:38:03.0768 13844  AarSvc - ok
16:38:03.0772 13844  ACPI - ok
16:38:03.0775 13844  AcpiDev - ok
16:38:03.0778 13844  acpiex - ok
16:38:03.0782 13844  acpipagr - ok
16:38:03.0786 13844  [ 48D460FAA6929BC81869CC7299A6B70A ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
16:38:03.0787 13844  AcpiPmi - ok
16:38:03.0790 13844  acpitime - ok
16:38:03.0793 13844  Acx01000 - ok
16:38:03.0797 13844  ADP80XX - ok
16:38:03.0802 13844  AFD - ok
16:38:03.0805 13844  [ 033DE3E43A9FC3F02B04E791148D0F11 ] afunix          C:\Windows\system32\drivers\afunix.sys
16:38:03.0806 13844  afunix - ok
16:38:03.0813 13844  [ 1772CB571F5CAB57E407CB1DCE570D4B ] ahcache         C:\Windows\system32\DRIVERS\ahcache.sys
16:38:03.0815 13844  ahcache - ok
16:38:03.0820 13844  [ 232B30ECEFBB1BEC07F2DF21D46DCDB6 ] AJRouter        C:\Windows\System32\AJRouter.dll
16:38:03.0821 13844  AJRouter - ok
16:38:03.0825 13844  [ FADF878C0D61D07170C91C891EBC72B2 ] ALG             C:\Windows\System32\alg.exe
16:38:03.0826 13844  ALG - ok
16:38:03.0830 13844  amdgpio2 - ok
16:38:03.0833 13844  amdi2c - ok
16:38:03.0837 13844  AmdK8 - ok
16:38:03.0840 13844  AmdPPM - ok
16:38:03.0843 13844  amdsata - ok
16:38:03.0847 13844  amdsbs - ok
16:38:03.0850 13844  amdxata - ok
16:38:03.0853 13844  AppID - ok
16:38:03.0857 13844  [ 34F6D0A9692590838D867A26FD83B257 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
16:38:03.0858 13844  AppIDSvc - ok
16:38:03.0861 13844  Appinfo - ok
16:38:03.0864 13844  applockerfltr - ok
16:38:03.0874 13844  [ 2D7826A4C6C3DE9668DEC67FA352ADBB ] AppReadiness    C:\Windows\system32\AppReadiness.dll
16:38:03.0878 13844  AppReadiness - ok
16:38:03.0882 13844  AppXSvc - ok
16:38:03.0886 13844  arcsas - ok
16:38:03.0890 13844  [ 3616CEE8DBBC5677F8E76EFC357AA9D9 ] asmthub3        C:\Windows\System32\drivers\asmthub3.sys
16:38:03.0890 13844  asmthub3 - ok
16:38:03.0897 13844  [ CB5C6A4562A1F9E96887739704A7AA9B ] asmtxhci        C:\Windows\System32\drivers\asmtxhci.sys
16:38:03.0902 13844  asmtxhci - ok
16:38:03.0904 13844  AsyncMac - ok
16:38:03.0907 13844  atapi - ok
16:38:03.0911 13844  AudioEndpointBuilder - ok
16:38:03.0914 13844  Audiosrv - ok
16:38:03.0918 13844  [ 23410CD6AD97FDF3FD465ACBB6C170E2 ] autotimesvc     C:\Windows\System32\autotimesvc.dll
16:38:03.0919 13844  autotimesvc - ok
16:38:03.0923 13844  AxInstSV - ok
16:38:03.0926 13844  b06bdrv - ok
16:38:03.0929 13844  [ 96ECA99B219CBB4F7C95176E492F53BF ] bam             C:\Windows\system32\drivers\bam.sys
16:38:03.0930 13844  bam - ok
16:38:03.0940 13844  BasicDisplay - ok
16:38:03.0944 13844  BasicRender - ok
16:38:03.0962 13844  [ FEEAA31D7AAC2119B4AE5C340490524B ] BcastDVRUserService C:\Windows\System32\BcastDVRUserService.dll
16:38:03.0971 13844  BcastDVRUserService - ok
16:38:03.0975 13844  [ 739D089777D2B66DBE7201E5EA4BA2D7 ] bcmfn2          C:\Windows\System32\drivers\bcmfn2.sys
16:38:03.0976 13844  bcmfn2 - ok
16:38:03.0980 13844  BDESVC - ok
16:38:03.0983 13844  [ A5D43CA19863A29D219C3C588D936FFC ] Beep            C:\Windows\system32\drivers\Beep.sys
16:38:03.0984 13844  Beep - ok
16:38:03.0988 13844  BFE - ok
16:38:03.0993 13844  [ 4C2A8A475355B067224C0B7550BB546F ] BfLwf           C:\Windows\system32\DRIVERS\bwcW10x64.sys
16:38:03.0994 13844  BfLwf - ok
16:38:03.0998 13844  bindflt - ok
16:38:04.0002 13844  BITS - ok
16:38:04.0006 13844  BluetoothUserService - ok
16:38:04.0009 13844  bowser - ok
16:38:04.0012 13844  BrokerInfrastructure - ok
16:38:04.0014 13844  Browser - ok
16:38:04.0018 13844  BTAGService - ok
16:38:04.0022 13844  BthA2dp - ok
16:38:04.0028 13844  [ 42C9AFF4636ACE3DCFB79FEF85345545 ] BthAvctpSvc     C:\Windows\System32\BthAvctpSvc.dll
16:38:04.0031 13844  BthAvctpSvc - ok
16:38:04.0036 13844  BthEnum - ok
16:38:04.0040 13844  [ 48AE897A64019A816D694241BF62E266 ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys
16:38:04.0042 13844  BthHFEnum - ok
16:38:04.0046 13844  [ 9E958ED983C0DD9C690248084219C2DE ] BthLEEnum       C:\Windows\System32\drivers\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
16:38:04.0048 13844  BthLEEnum - ok
16:38:04.0052 13844  BthMini - ok
16:38:04.0056 13844  [ 98C477D98674C799758B3C6E9950E11A ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
16:38:04.0058 13844  BTHMODEM - ok
16:38:04.0062 13844  [ BCD11BDC707A4A2563774476AF6FCCBB ] BthPan          C:\Windows\System32\drivers\bthpan.sys
16:38:04.0063 13844  BthPan - ok
16:38:04.0067 13844  BTHPORT - ok
16:38:04.0072 13844  [ E947884C5B5A5FDE7F13D0D16EEA45EE ] bthserv         C:\Windows\system32\bthserv.dll
16:38:04.0074 13844  bthserv - ok
16:38:04.0078 13844  BTHUSB - ok
16:38:04.0081 13844  bttflt - ok
16:38:04.0086 13844  buttonconverter - ok
16:38:04.0090 13844  [ D3FC817DA4694E586135A3221811B409 ] CAD             C:\Windows\System32\drivers\CAD.sys
16:38:04.0091 13844  CAD - ok
16:38:04.0095 13844  camsvc - ok
16:38:04.0100 13844  [ C240AF291AC69BF55C33DC9820338D66 ] CaptureService  C:\Windows\System32\CaptureService.dll
16:38:04.0102 13844  CaptureService - ok
16:38:04.0105 13844  cbdhsvc - ok
16:38:04.0109 13844  [ 5A1C7DBDDB001BC6F1D1720E655445E2 ] ccSet_NARA      C:\Windows\system32\drivers\NARAx64\0406000.00C\ccSetx64.sys
16:38:04.0111 13844  ccSet_NARA - ok
16:38:04.0115 13844  cdfs - ok
16:38:04.0118 13844  CDPSvc - ok
16:38:04.0121 13844  CDPUserSvc - ok
16:38:04.0125 13844  cdrom - ok
16:38:04.0129 13844  [ F738B75E685601069A0A3F8C30CF4F47 ] CertPropSvc     C:\Windows\System32\certprop.dll
16:38:04.0131 13844  CertPropSvc - ok
16:38:04.0135 13844  cht4iscsi - ok
16:38:04.0138 13844  cht4vbd - ok
16:38:04.0142 13844  [ B7FCEF757304710463D78C1155764BA7 ] circlass        C:\Windows\System32\drivers\circlass.sys
16:38:04.0143 13844  circlass - ok
16:38:04.0146 13844  CldFlt - ok
16:38:04.0150 13844  CLFS - ok
16:38:04.0229 13844  [ 9E87BDD72F7169FE7AFD99DD8905B4AC ] ClickToRunSvc   C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
16:38:04.0270 13844  ClickToRunSvc - ok
16:38:04.0275 13844  ClipSVC - ok
16:38:04.0285 13844  CmBatt - ok
16:38:04.0288 13844  CNG - ok
16:38:04.0292 13844  [ 6FD42010608BC1B77D60947175E0BFD9 ] cnghwassist     C:\Windows\system32\DRIVERS\cnghwassist.sys
16:38:04.0294 13844  cnghwassist - ok
16:38:04.0303 13844  CompositeBus - ok
16:38:04.0306 13844  COMSysApp - ok
16:38:04.0309 13844  condrv - ok
16:38:04.0314 13844  [ 31D59C0A7B2549F578FC82B5ED9661FD ] ConsentUxUserSvc C:\Windows\System32\ConsentUxClient.dll
16:38:04.0316 13844  ConsentUxUserSvc - ok
16:38:04.0327 13844  [ 64C146E79B02051548A3D2790071C96A ] CoreMessagingRegistrar C:\Windows\system32\coremessaging.dll
16:38:04.0333 13844  CoreMessagingRegistrar - ok
16:38:04.0344 13844  [ 2545F2EE80CAF899D10D887C61AD08E6 ] cphs            C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_24de78387e6208e4\IntelCpHeciSvc.exe
16:38:04.0367 13844  cphs - ok
16:38:04.0376 13844  [ BEBB0623C9839B9185E11D86178515F3 ] cplspcon        C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_24de78387e6208e4\IntelCpHDCPSvc.exe
16:38:04.0414 13844  cplspcon - ok
16:38:04.0422 13844  [ 868B7A47689F43A27D3BD5CBAD723055 ] CredentialEnrollmentManagerUserSvc C:\Windows\system32\CredentialEnrollmentManager.exe
16:38:04.0425 13844  CredentialEnrollmentManagerUserSvc - ok
16:38:04.0429 13844  CryptSvc - ok
16:38:04.0433 13844  [ D32047ED7F2718871AFC215FFF4760C2 ] dam             C:\Windows\system32\drivers\dam.sys
16:38:04.0434 13844  dam - ok
16:38:04.0438 13844  DcomLaunch - ok
16:38:04.0441 13844  defragsvc - ok
16:38:04.0447 13844  [ 1FFBA1554A8CA99C2D38AC678CF1E535 ] DeviceAssociationBrokerSvc C:\Windows\System32\deviceaccess.dll
16:38:04.0450 13844  DeviceAssociationBrokerSvc - ok
16:38:04.0457 13844  [ 8AB0C55A78B0C18991ACC62C13167DDD ] DeviceAssociationService C:\Windows\system32\das.dll
16:38:04.0461 13844  DeviceAssociationService - ok
16:38:04.0465 13844  DeviceInstall - ok
16:38:04.0473 13844  [ 6683A03C986D00273C67ADB1B249D7ED ] DevicePickerUserSvc C:\Windows\System32\Windows.Devices.Picker.dll
16:38:04.0484 13844  DevicePickerUserSvc - ok
16:38:04.0488 13844  DevicesFlowUserSvc - ok
16:38:04.0491 13844  DevQueryBroker - ok
16:38:04.0494 13844  Dfsc - ok
16:38:04.0498 13844  Dhcp - ok
16:38:04.0502 13844  diagnosticshub.standardcollector.service - ok
16:38:04.0506 13844  diagsvc - ok
16:38:04.0509 13844  DiagTrack - ok
16:38:04.0512 13844  disk - ok
16:38:04.0514 13844  DispBrokerDesktopSvc - ok
16:38:04.0518 13844  DisplayEnhancementService - ok
16:38:04.0521 13844  DmEnrollmentSvc - ok
16:38:04.0524 13844  dmvsc - ok
16:38:04.0529 13844  [ A4F5D5C81B9690B8ACB8798A5C711D31 ] dmwappushservice C:\Windows\system32\dmwappushsvc.dll
16:38:04.0531 13844  dmwappushservice - ok
16:38:04.0534 13844  Dnscache - ok
16:38:04.0538 13844  dot3svc - ok
16:38:04.0543 13844  [ 27069CFFF29B7F04F4B1BB10154BE52B ] dot4            C:\Windows\System32\drivers\Dot4.sys
16:38:04.0545 13844  dot4 - ok
16:38:04.0548 13844  [ B7D595F2F464F7B628AD53F06547792C ] dot4usb         C:\Windows\System32\drivers\dot4usb.sys
16:38:04.0549 13844  dot4usb - ok
16:38:04.0554 13844  [ FC37ABA7F9026FFB255CEC78AC2410E4 ] DPS             C:\Windows\system32\dps.dll
16:38:04.0556 13844  DPS - ok
16:38:04.0559 13844  drmkaud - ok
16:38:04.0565 13844  [ 5C438FD023BB99268C291E2A0F670AF9 ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
16:38:04.0568 13844  DsmSvc - ok
16:38:04.0571 13844  DsSvc - ok
16:38:04.0574 13844  [ 679FF716052109392D870F6A6C4A3535 ] dtlitescsibus   C:\Windows\System32\drivers\dtlitescsibus.sys
16:38:04.0575 13844  dtlitescsibus - ok
16:38:04.0579 13844  [ E23FDD696839A4790682CA66C48D3F2F ] dtliteusbbus    C:\Windows\System32\drivers\dtliteusbbus.sys
16:38:04.0580 13844  dtliteusbbus - ok
16:38:04.0586 13844  [ 6A34FC162F61E26010BD0BF0F211C4A2 ] DusmSvc         C:\Windows\System32\dusmsvc.dll
16:38:04.0590 13844  DusmSvc - ok
16:38:04.0594 13844  DXGKrnl - ok
16:38:04.0597 13844  Eaphost - ok
16:38:04.0601 13844  ebdrv - ok
16:38:04.0604 13844  EFS - ok
16:38:04.0607 13844  EhStorClass - ok
16:38:04.0610 13844  EhStorTcgDrv - ok
16:38:04.0615 13844  [ 910F199C081D8D7471173333265982E3 ] embeddedmode    C:\Windows\System32\embeddedmodesvc.dll
16:38:04.0618 13844  embeddedmode - ok
16:38:04.0626 13844  [ ADBA0456A915EFCD6B35F298D185A976 ] EntAppSvc       C:\Windows\system32\EnterpriseAppMgmtSvc.dll
16:38:04.0631 13844  EntAppSvc - ok
16:38:04.0634 13844  EraserSvc11910 - ok
16:38:04.0637 13844  EraserUtilDrv11910 - ok
16:38:04.0640 13844  ErrDev - ok
16:38:04.0645 13844  EventLog - ok
16:38:04.0651 13844  [ B35DF93E24892EE15363AFAA678AF78E ] EventSystem     C:\Windows\system32\es.dll
16:38:04.0655 13844  EventSystem - ok
16:38:04.0665 13844  [ 8828725F79A93611CB4AB80B65DEC4F9 ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
16:38:04.0692 13844  EvtEng - ok
16:38:04.0695 13844  exfat - ok
16:38:04.0698 13844  Fabs - ok
16:38:04.0702 13844  fastfat - ok
16:38:04.0710 13844  [ C6F56E6CF1822CFB9D8F85870453675E ] Fax             C:\Windows\system32\fxssvc.exe
16:38:04.0716 13844  Fax - ok
16:38:04.0719 13844  fdc - ok
16:38:04.0722 13844  [ 574937AAC16BC828BA35DA6639972660 ] fdPHost         C:\Windows\system32\fdPHost.dll
16:38:04.0725 13844  fdPHost - ok
16:38:04.0729 13844  [ 5414A54236322C5ED8691CEC1A38EF80 ] FDResPub        C:\Windows\system32\fdrespub.dll
16:38:04.0732 13844  FDResPub - ok
16:38:04.0737 13844  [ 9AC5E05D599A49DC91E2F438F93D719F ] fhsvc           C:\Windows\system32\fhsvc.dll
16:38:04.0739 13844  fhsvc - ok
16:38:04.0743 13844  [ 35E6FE3288B6147F844B1845564FF161 ] FileCrypt       C:\Windows\system32\drivers\filecrypt.sys
16:38:04.0744 13844  FileCrypt - ok
16:38:04.0748 13844  FileInfo - ok
16:38:04.0752 13844  Filetrace - ok
16:38:04.0776 13844  [ 5BD96D8C5411ACE71A7EAACAF0EF2903 ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
16:38:04.0810 13844  FirebirdServerMAGIXInstance - ok
16:38:04.0814 13844  flpydisk - ok
16:38:04.0817 13844  FltMgr - ok
16:38:04.0820 13844  FontCache - ok
16:38:04.0823 13844  FontCache3.0.0.0 - ok
16:38:04.0826 13844  FrameServer - ok
16:38:04.0830 13844  FsDepends - ok
16:38:04.0833 13844  Fs_Rec - ok
16:38:04.0837 13844  [ 13799CB7521A39724FFDEA2E5D9C8305 ] FTDIBUS         C:\Windows\system32\drivers\ftdibus.sys
16:38:04.0838 13844  FTDIBUS - ok
16:38:04.0842 13844  [ F1544BBC7E08BB5B9E9E97996C3FA04B ] FTSER2K         C:\Windows\system32\drivers\ftser2k.sys
16:38:04.0844 13844  FTSER2K - ok
16:38:04.0847 13844  fvevol - ok
16:38:04.0851 13844  [ EF8A6E4DDD8A6F5840B96C1C238B59EC ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
16:38:04.0853 13844  gencounter - ok
16:38:04.0862 13844  genericusbfn - ok
16:38:04.0875 13844  [ 171CCFEB86294AFAA3609DB3899A841E ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
16:38:04.0882 13844  GfExperienceService - ok
16:38:04.0895 13844  [ 88343381510C242E854C22C002349107 ] GoogleChromeElevationService C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.88\elevation_service.exe
16:38:04.0948 13844  GoogleChromeElevationService - ok
16:38:04.0952 13844  GPIOClx0101 - ok
16:38:04.0955 13844  gpsvc - ok
16:38:04.0958 13844  [ ECF72E76711455EEB362E2E175395F87 ] GpuEnergyDrv    C:\Windows\system32\drivers\gpuenergydrv.sys
16:38:04.0959 13844  GpuEnergyDrv - ok
16:38:04.0963 13844  [ 7A9DDF886942F5C791360BD76B06D874 ] GraphicsPerfSvc C:\Windows\System32\GraphicsPerfSvc.dll
16:38:04.0965 13844  GraphicsPerfSvc - ok
16:38:04.0969 13844  [ D815683853A11EB0DBEEC3941C11C75D ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:38:04.0971 13844  gupdate - ok
16:38:04.0973 13844  [ D815683853A11EB0DBEEC3941C11C75D ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:38:04.0974 13844  gupdatem - ok
16:38:04.0977 13844  HdAudAddService - ok
16:38:04.0980 13844  HDAudBus - ok
16:38:04.0983 13844  HidBatt - ok
16:38:04.0988 13844  [ 98DB60B4CC713C73E3BFCD8521210B26 ] HidBth          C:\Windows\System32\drivers\hidbth.sys
16:38:05.0133 13844  HidBth - ok
16:38:05.0139 13844  hidi2c - ok
16:38:05.0145 13844  hidinterrupt - ok
16:38:05.0151 13844  [ C789878B45C886DBD967826B491C9C19 ] HidIr           C:\Windows\System32\drivers\hidir.sys
16:38:05.0154 13844  HidIr - ok
16:38:05.0159 13844  hidserv - ok
16:38:05.0163 13844  hidspi - ok
16:38:05.0167 13844  HidUsb - ok
16:38:05.0172 13844  HpSAMD - ok
16:38:05.0175 13844  HTTP - ok
16:38:05.0179 13844  [ 6E7C4CAE43DA57A46DE9AC07D3400719 ] hvcrash         C:\Windows\System32\drivers\hvcrash.sys
16:38:05.0180 13844  hvcrash - ok
16:38:05.0183 13844  HvHost - ok
16:38:05.0187 13844  hvservice - ok
16:38:05.0190 13844  [ C1AE2929CAD05CD2AA1FA835B06023A0 ] HwNClx0101      C:\Windows\system32\Drivers\mshwnclx.sys
16:38:05.0191 13844  HwNClx0101 - ok
16:38:05.0194 13844  hwpolicy - ok
16:38:05.0197 13844  hyperkbd - ok
16:38:05.0201 13844  HyperVideo - ok
16:38:05.0204 13844  i8042prt - ok
16:38:05.0207 13844  iagpio - ok
16:38:05.0210 13844  iai2c - ok
16:38:05.0214 13844  iaLPSS2i_GPIO2 - ok
16:38:05.0217 13844  iaLPSS2i_GPIO2_BXT_P - ok
16:38:05.0220 13844  iaLPSS2i_GPIO2_CNL - ok
16:38:05.0223 13844  iaLPSS2i_GPIO2_GLK - ok
16:38:05.0227 13844  iaLPSS2i_I2C - ok
16:38:05.0229 13844  iaLPSS2i_I2C_BXT_P - ok
16:38:05.0233 13844  iaLPSS2i_I2C_CNL - ok
16:38:05.0236 13844  iaLPSS2i_I2C_GLK - ok
16:38:05.0240 13844  iaLPSSi_GPIO - ok
16:38:05.0243 13844  iaLPSSi_I2C - ok
16:38:05.0259 13844  [ 5F6CA62BE8ECC4D0E1F5D4D4A02B456B ] iaStorA         C:\Windows\system32\drivers\iaStorA.sys
16:38:05.0265 13844  iaStorA - ok
16:38:05.0270 13844  iaStorAVC - ok
16:38:05.0274 13844  [ D90885430767C6152AF908D57A5159AC ] IAStorDataMgrSvc C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
16:38:05.0274 13844  IAStorDataMgrSvc - ok
16:38:05.0278 13844  iaStorV - ok
16:38:05.0281 13844  ibbus - ok
16:38:05.0287 13844  ibtsiva - ok
16:38:05.0295 13844  [ 2C2E65FBFECEE75399AEFF206564E581 ] ibtusb          C:\Windows\system32\DRIVERS\ibtusb.sys
16:38:05.0298 13844  ibtusb - ok
16:38:05.0305 13844  icssvc - ok
16:38:05.0423 13844  [ 69F64029BDCA7913C7D623265D364109 ] igfx            C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_24de78387e6208e4\igdkmd64.sys
16:38:05.0543 13844  igfx - ok
16:38:05.0556 13844  [ 9028C7A1F018CE182FCD6B0E70D65FDD ] igfxCUIService2.0.0.0 C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_24de78387e6208e4\igfxCUIService.exe
16:38:05.0592 13844  igfxCUIService2.0.0.0 - ok
16:38:05.0732 13844  IKEEXT - ok
16:38:05.0742 13844  [ 7EDB7CCEDC86F03D3254274564DB0E99 ] IndirectKmd     C:\Windows\System32\drivers\IndirectKmd.sys
16:38:05.0744 13844  IndirectKmd - ok
16:38:05.0755 13844  InstallService - ok
16:38:05.0824 13844  [ 1CC1F48BE8749E55DAD38D58441FAD77 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:38:06.0039 13844  IntcAzAudAddService - ok
16:38:06.0050 13844  [ BBA6D8141919A0C6BDACF5C67EA8029E ] IntcDAud        C:\Windows\System32\DriverStore\FileRepository\intcdaud.inf_amd64_ad5691824a5386fe\IntcDAud.sys
16:38:06.0055 13844  IntcDAud - ok
16:38:06.0066 13844  [ B63CF22D1AD2ABDC39D85851B2BEAA6D ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
16:38:06.0360 13844  Intel(R) Capability Licensing Service TCP IP Interface - ok
16:38:06.0366 13844  [ 8213094EA736A9C575AB0E22AD09B0BA ] Intel(R) Security Assist C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe
16:38:06.0368 13844  Intel(R) Security Assist - ok
16:38:06.0371 13844  intelide - ok
16:38:06.0374 13844  intelpep - ok
16:38:06.0378 13844  [ 8D6ADFE99C1DC577C74B0148E70ED5BB ] intelpmax       C:\Windows\System32\drivers\intelpmax.sys
16:38:06.0379 13844  intelpmax - ok
16:38:06.0382 13844  intelppm - ok
16:38:06.0386 13844  [ A89BF4378628224DA411A76FF6913E95 ] iorate          C:\Windows\system32\drivers\iorate.sys
16:38:06.0387 13844  iorate - ok
16:38:06.0391 13844  [ 02A2D46896B4312F084D5095D00B6DE7 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:38:06.0392 13844  IpFilterDriver - ok
16:38:06.0395 13844  iphlpsvc - ok
16:38:06.0398 13844  IPMIDRV - ok
16:38:06.0404 13844  [ 5E05C0FEA671B910FEBC634E796C38B5 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
16:38:06.0407 13844  IPNAT - ok
16:38:06.0411 13844  [ 3BB90B22F0D8A58B261A1B1AE6B80EAD ] IPT             C:\Windows\System32\drivers\ipt.sys
16:38:06.0412 13844  IPT - ok
16:38:06.0416 13844  [ 5B4848FF9C6D605563BE8E21D4D2F70F ] IpxlatCfgSvc    C:\Windows\System32\IpxlatCfg.dll
16:38:06.0419 13844  IpxlatCfgSvc - ok
16:38:06.0421 13844  [ 1DFC3CCA51785254C5604238BB1A5467 ] isaHelperSvc    C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
16:38:06.0437 13844  isaHelperSvc - ok
16:38:06.0441 13844  isapnp - ok
16:38:06.0444 13844  iScsiPrt - ok
16:38:06.0448 13844  ItSas35i - ok
16:38:06.0452 13844  [ C6E0E37B6AC972400F29A4A5251D4AAA ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
16:38:06.0454 13844  jhi_service - ok
16:38:06.0458 13844  kbdclass - ok
16:38:06.0461 13844  kbdhid - ok
16:38:06.0465 13844  kdnic - ok
16:38:06.0469 13844  KeyIso - ok
16:38:06.0474 13844  [ B688372D8E59DD6CF61132E40677972D ] KfeCoSvc        C:\Windows\System32\drivers\RivetNetworks\Killer\KfeCo10X64.sys
16:38:06.0476 13844  KfeCoSvc - ok
16:38:06.0501 13844  [ 9A70D3DE3BF006821EACEC605A95C689 ] Killer Network Service C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe
16:38:06.0565 13844  Killer Network Service - ok
16:38:06.0572 13844  [ 8EDF16450B8CD03A0D62A257024743C8 ] Killer Service V2 C:\Program Files\Killer Networking\Network Manager\KillerService.exe
16:38:06.0594 13844  Killer Service V2 - ok
16:38:06.0598 13844  KillerEth - ok
16:38:06.0602 13844  KSecDD - ok
16:38:06.0605 13844  KSecPkg - ok
16:38:06.0608 13844  ksthunk - ok
16:38:06.0614 13844  [ 2A4F33C288355AF81387C4030C00FEBB ] KtmRm           C:\Windows\system32\msdtckrm.dll
16:38:06.0620 13844  KtmRm - ok
16:38:06.0623 13844  LanmanServer - ok
16:38:06.0626 13844  LanmanWorkstation - ok
16:38:06.0632 13844  [ C74D6825D4F8F587AFBFE4CFAFA6CCE2 ] lfsvc           C:\Windows\System32\lfsvc.dll
16:38:06.0635 13844  lfsvc - ok
16:38:06.0638 13844  [ A6F294B38F3DFB67D6B6E1D1E60A402A ] LGBusEnum       C:\Windows\system32\drivers\LGBusEnum.sys
16:38:06.0639 13844  LGBusEnum - ok
16:38:06.0643 13844  [ C582EBCB331D4D45F4956ACF3D82F674 ] LGJoyHidFilter  C:\Windows\system32\drivers\LGJoyHidFilter.sys
16:38:06.0644 13844  LGJoyHidFilter - ok
16:38:06.0647 13844  [ 4BBEB017EA54A3C211D18625DBB6EEE8 ] LGJoyHidLo      C:\Windows\system32\drivers\LGJoyHidLo.sys
16:38:06.0649 13844  LGJoyHidLo - ok
16:38:06.0653 13844  [ 2A9F60E6531F42B31874618743037719 ] LGJoyXlCore     C:\Windows\system32\drivers\LGJoyXlCore.sys
16:38:06.0654 13844  LGJoyXlCore - ok
16:38:06.0658 13844  [ 94AF1384A67B9FCF5651E70BC9D4C526 ] LGSHidFilt      C:\Windows\System32\drivers\LGSHidFilt.Sys
16:38:06.0659 13844  LGSHidFilt - ok
16:38:06.0663 13844  [ 8F4DA100274CF85D94FBA8CA76125255 ] LGSUsbFilt      C:\Windows\System32\drivers\LGSUsbFilt.Sys
16:38:06.0664 13844  LGSUsbFilt - ok
16:38:06.0667 13844  [ FA59A7421049F5852C1182345A4B8C4F ] LGVirHid        C:\Windows\system32\drivers\LGVirHid.sys
16:38:06.0668 13844  LGVirHid - ok
16:38:06.0672 13844  [ 1DDE097A358F533F58060B49A06B0AA4 ] LicenseManager  C:\Windows\system32\LicenseManagerSvc.dll
16:38:06.0675 13844  LicenseManager - ok
16:38:06.0679 13844  [ A0D1856F57DFCF58D8A9E23D8B205886 ] lltdio          C:\Windows\system32\drivers\lltdio.sys
16:38:06.0680 13844  lltdio - ok
16:38:06.0686 13844  [ 27DA2D87DA23C2AB3328AFBA945DFEF4 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
16:38:06.0690 13844  lltdsvc - ok
16:38:06.0694 13844  lmhosts - ok
16:38:06.0700 13844  [ 5AD9D814037E4B3171947140AFA35B36 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
16:38:06.0730 13844  LMS - ok
16:38:06.0736 13844  LSI_SAS - ok
16:38:06.0742 13844  LSI_SAS2i - ok
16:38:06.0746 13844  LSI_SAS3i - ok
16:38:06.0749 13844  LSI_SSS - ok
16:38:06.0753 13844  LSM - ok
16:38:06.0756 13844  luafv - ok
16:38:06.0763 13844  [ 41744BD2D3FBA7BD8C910913152A88C4 ] LxpSvc          C:\Windows\System32\LanguageOverlayServer.dll
16:38:06.0768 13844  LxpSvc - ok
16:38:06.0772 13844  [ 1294A83A7E61544E5C3678A40237F842 ] MapsBroker      C:\Windows\System32\moshost.dll
16:38:06.0776 13844  MapsBroker - ok
16:38:06.0780 13844  mausbhost - ok
16:38:06.0784 13844  mausbip - ok
16:38:06.0789 13844  [ 7B435D75A7BFDE549025C656BF58B753 ] MBAMChameleon   C:\Windows\System32\Drivers\MbamChameleon.sys
16:38:06.0791 13844  MBAMChameleon - ok
16:38:06.0794 13844  [ 31E4AC0C3D3BAC32082304BD43560760 ] MbamElam        C:\Windows\system32\DRIVERS\MbamElam.sys
16:38:06.0795 13844  MbamElam - ok
16:38:06.0849 13844  [ 3C6F0D0A69269D79EAAE6525C9802141 ] MBAMService     C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
16:38:06.0969 13844  MBAMService - ok
16:38:06.0980 13844  [ 62EC57D9D027BD14A782846B521C78F2 ] MBAMSwissArmy   C:\Windows\System32\Drivers\mbamswissarmy.sys
16:38:06.0982 13844  MBAMSwissArmy - ok
16:38:06.0986 13844  MbbCx - ok
16:38:06.0991 13844  megasas - ok
16:38:06.0995 13844  megasas2i - ok
16:38:07.0000 13844  megasas35i - ok
16:38:07.0004 13844  megasr - ok
16:38:07.0010 13844  [ FB4FD57CB9A6424C91D041844ADA059E ] MEIx64          C:\Windows\System32\drivers\TeeDriverW8x64.sys
16:38:07.0012 13844  MEIx64 - ok
16:38:07.0018 13844  [ F1DE8D5576D0200A808C3475FC6E90A5 ] MessagingService C:\Windows\System32\MessagingService.dll
16:38:07.0022 13844  MessagingService - ok
16:38:07.0026 13844  [ 71C6748EE8DE938532057EF10B4B7E44 ] Micro Star SCM  C:\Program Files (x86)\SCM\MSIService.exe
16:38:07.0062 13844  Micro Star SCM - ok
16:38:07.0067 13844  [ 41A35E2FFC5F68F2345CAFDBA29D59E3 ] Microsoft_Bluetooth_AvrcpTransport C:\Windows\System32\drivers\Microsoft.Bluetooth.AvrcpTransport.sys
16:38:07.0069 13844  Microsoft_Bluetooth_AvrcpTransport - ok
16:38:07.0072 13844  mlx4_bus - ok
16:38:07.0076 13844  MMCSS - ok
16:38:07.0080 13844  [ BD0744EA7533D420236F4958CDC88332 ] Modem           C:\Windows\system32\drivers\modem.sys
16:38:07.0082 13844  Modem - ok
16:38:07.0085 13844  monitor - ok
16:38:07.0089 13844  mouclass - ok
16:38:07.0092 13844  mouhid - ok
16:38:07.0095 13844  mountmgr - ok
16:38:07.0098 13844  mpsdrv - ok
16:38:07.0102 13844  mpssvc - ok
16:38:07.0106 13844  MRxDAV - ok
16:38:07.0109 13844  mrxsmb - ok
16:38:07.0112 13844  mrxsmb10 - ok
16:38:07.0116 13844  mrxsmb20 - ok
16:38:07.0120 13844  [ 90F0B61C3A11A7D2E718FC70EDF55942 ] MsBridge        C:\Windows\system32\drivers\bridge.sys
16:38:07.0121 13844  MsBridge - ok
16:38:07.0126 13844  [ DC59FE37CFF118B6DAC426FE9923B32C ] MSDTC           C:\Windows\System32\msdtc.exe
16:38:07.0130 13844  MSDTC - ok
16:38:07.0137 13844  Msfs - ok
16:38:07.0141 13844  [ 5CC4AE59BAC4DDE8C0ECB05A4A965D19 ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys
16:38:07.0143 13844  msgpiowin32 - ok
16:38:07.0146 13844  mshidkmdf - ok
16:38:07.0151 13844  [ ED11DC4C201FF6C06F171E18B379B589 ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys
16:38:07.0152 13844  mshidumdf - ok
16:38:07.0155 13844  msisadrv - ok
16:38:07.0158 13844  MSiSCSI - ok
16:38:07.0161 13844  msiserver - ok
16:38:07.0166 13844  [ D99C706A8420E7B4E1BD0C7EB5634ED9 ] MSITrueColorService C:\Program Files\Portrait Displays\MSI True Color\MsiTrueColorService.exe
16:38:07.0193 13844  MSITrueColorService - ok
16:38:07.0196 13844  MSKSSRV - ok
16:38:07.0200 13844  [ D65874265E85BEF4E54740FB69803430 ] MsLldp          C:\Windows\system32\drivers\mslldp.sys
16:38:07.0201 13844  MsLldp - ok
16:38:07.0205 13844  MSPCLOCK - ok
16:38:07.0208 13844  MSPQM - ok
16:38:07.0212 13844  MsRPC - ok
16:38:07.0217 13844  mssmbios - ok
16:38:07.0220 13844  MSTEE - ok
16:38:07.0223 13844  MTConfig - ok
16:38:07.0226 13844  Mup - ok
16:38:07.0230 13844  mvumis - ok
16:38:07.0236 13844  [ F41102EEE5B1D6001CD003CED1D63812 ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
16:38:07.0239 13844  MyWiFiDHCPDNS - ok
16:38:07.0243 13844  NativeWifiP - ok
16:38:07.0253 13844  [ 3509BB296C4E2F8D71089C17DFB6CEAF ] NaturalAuthentication C:\Windows\System32\NaturalAuth.dll
16:38:07.0261 13844  NaturalAuthentication - ok
16:38:07.0263 13844  NAVENG - ok
16:38:07.0265 13844  NAVEX15 - ok
16:38:07.0270 13844  NcaSvc - ok
16:38:07.0276 13844  [ DF5A8E0E5E3FE297FCBC0F9F7E7DF4AC ] NcbService      C:\Windows\System32\ncbservice.dll
16:38:07.0282 13844  NcbService - ok
16:38:07.0443 13844  [ 9EB402A3A00433B271C2DE5B904AA770 ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
16:38:07.0454 13844  NcdAutoSetup - ok
16:38:07.0471 13844  ndfltr - ok
16:38:07.0481 13844  NDIS - ok
16:38:07.0491 13844  [ FFB60317CFDA978621A5F8C54450AF01 ] NdisCap         C:\Windows\system32\drivers\ndiscap.sys
16:38:07.0493 13844  NdisCap - ok
16:38:07.0503 13844  [ 50CA50122E9DE4F82B71C9F09A929700 ] NdisImPlatform  C:\Windows\system32\drivers\NdisImPlatform.sys
16:38:07.0505 13844  NdisImPlatform - ok
16:38:07.0509 13844  NdisTapi - ok
16:38:07.0514 13844  Ndisuio - ok
16:38:07.0519 13844  NdisVirtualBus - ok
16:38:07.0523 13844  NdisWan - ok
16:38:07.0526 13844  ndiswanlegacy - ok
16:38:07.0531 13844  [ C91AE4E1A91B338F85D2F64667F0C6AA ] NDKPing         C:\Windows\system32\drivers\NDKPing.sys
16:38:07.0533 13844  NDKPing - ok
16:38:07.0555 13844  ndproxy - ok
16:38:07.0560 13844  [ 340AC1BF4E5727DC58E16E9F0806B36F ] Ndu             C:\Windows\system32\drivers\Ndu.sys
16:38:07.0562 13844  Ndu - ok
16:38:07.0567 13844  NetAdapterCx - ok
16:38:07.0571 13844  NetBIOS - ok
16:38:07.0578 13844  NetBT - ok
16:38:07.0581 13844  Netlogon - ok
16:38:07.0586 13844  Netman - ok
16:38:07.0590 13844  netprofm - ok
16:38:07.0595 13844  NetSetupSvc - ok
16:38:07.0603 13844  [ 4A06ABEBE138F4ACBE5AA5AF97711DAB ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:38:07.0608 13844  NetTcpPortSharing - ok
16:38:07.0613 13844  netvsc - ok
16:38:07.0666 13844  [ 5AB5C57F6DEFEB8584A3BAA09D803AC0 ] Netwtw04        C:\Windows\System32\drivers\Netwtw04.sys
16:38:07.0712 13844  Netwtw04 - ok
16:38:07.0717 13844  NgcCtnrSvc - ok
16:38:07.0720 13844  NgcSvc - ok
16:38:07.0724 13844  NlaSvc - ok
16:38:07.0757 13844  [ B13C5A66906C5C013C12A9E310B3F512 ] NOBU            C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
16:38:07.0785 13844  NOBU - ok
16:38:07.0789 13844  Npfs - ok
16:38:07.0793 13844  npsvctrig - ok
16:38:07.0797 13844  nsi - ok
16:38:07.0801 13844  nsiproxy - ok
16:38:07.0806 13844  Ntfs - ok
16:38:07.0810 13844  Null - ok
16:38:07.0814 13844  nvdimm - ok
16:38:07.0958 13844  [ 808A6515819309E2AD5C6DBA1D7B3F6A ] nvlddmkm        C:\Windows\System32\DriverStore\FileRepository\nvmii.inf_amd64_b1b29aeb81e3fd29\nvlddmkm.sys
16:38:08.0074 13844  nvlddmkm - ok
16:38:08.0232 13844  [ 4B1E6975B565883985FB43C3FD6C88C6 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
16:38:08.0243 13844  NvNetworkService - ok
16:38:08.0250 13844  nvraid - ok
16:38:08.0253 13844  nvstor - ok
16:38:08.0257 13844  [ DD8043B662B1F0CFC037976E38271975 ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
16:38:08.0258 13844  NvStreamKms - ok
16:38:08.0260 13844  NvStreamSvc - ok
16:38:08.0269 13844  [ C254F4938AE6C230F86FBC7FBF057387 ] NvStUSB         C:\Windows\System32\drivers\nvstusb.sys
16:38:08.0272 13844  NvStUSB - ok
16:38:08.0284 13844  [ 74F939134501168833C691D39C324884 ] nvsvc           C:\Windows\system32\nvvsvc.exe
16:38:08.0292 13844  nvsvc - ok
16:38:08.0296 13844  [ F12864A2CCC899FE8E87463C967A9916 ] NVSWCFilter     C:\Windows\System32\drivers\nvswcfilter.sys
16:38:08.0298 13844  NVSWCFilter - ok
16:38:08.0302 13844  [ 31A62118FFA56D758D3CA4D00EAEA430 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
16:38:08.0303 13844  nvvad_WaveExtensible - ok
16:38:08.0307 13844  [ 05524B29F19E0BB19FA0297880D788B0 ] nvvhci          C:\Windows\System32\drivers\nvvhci.sys
16:38:08.0309 13844  nvvhci - ok
16:38:08.0316 13844  [ 464C685801474077A3BA79529E6459E1 ] OneSyncSvc      C:\Windows\System32\APHostService.dll
16:38:08.0318 13844  OneSyncSvc - ok
16:38:08.0324 13844  [ B1AB5C90897216C472F97A4C2ED594E3 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:38:08.0357 13844  ose - ok
16:38:08.0362 13844  p2pimsvc - ok
16:38:08.0366 13844  p2psvc - ok
16:38:08.0369 13844  Parport - ok
16:38:08.0372 13844  partmgr - ok
16:38:08.0376 13844  PcaSvc - ok
16:38:08.0379 13844  pci - ok
16:38:08.0382 13844  pciide - ok
16:38:08.0386 13844  pcmcia - ok
16:38:08.0389 13844  pcw - ok
16:38:08.0393 13844  pdc - ok
16:38:08.0396 13844  PEAUTH - ok
16:38:08.0401 13844  [ 3EDF20F5B059DD88ED7DBAF40CF31CA7 ] perceptionsimulation C:\Windows\system32\PerceptionSimulation\PerceptionSimulationService.exe
16:38:08.0403 13844  perceptionsimulation - ok
16:38:08.0407 13844  percsas2i - ok
16:38:08.0410 13844  percsas3i - ok
16:38:08.0422 13844  [ 0EC027E95D4B022102940FA3CD930E46 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
16:38:08.0425 13844  PerfHost - ok
16:38:08.0455 13844  [ 0CB5CA2CF0539502E5019BED31A4DD3D ] PhoneSvc        C:\Windows\System32\PhoneService.dll
16:38:08.0464 13844  PhoneSvc - ok
16:38:08.0470 13844  [ D4AE23C2024C079A8B3F3A11229B19D2 ] PimIndexMaintenanceSvc C:\Windows\System32\PimIndexMaintenance.dll
16:38:08.0475 13844  PimIndexMaintenanceSvc - ok
16:38:08.0483 13844  [ 0E3A1170D5698CACE6B6A4E72B04A5D0 ] PktMon          C:\Windows\system32\drivers\PktMon.sys
16:38:08.0484 13844  PktMon - ok
16:38:08.0498 13844  [ 8059D6CF7FD1D34B61D1880A20F58B1C ] pla             C:\Windows\system32\pla.dll
16:38:08.0510 13844  pla - ok
16:38:08.0514 13844  PlugPlay - ok
16:38:08.0517 13844  pmem - ok
16:38:08.0522 13844  [ 4689DC2AEF21B8764CC4F4AD6712210A ] PNPMEM          C:\Windows\System32\drivers\pnpmem.sys
16:38:08.0523 13844  PNPMEM - ok
16:38:08.0528 13844  [ 65272396F9B8D1F01E020639E1AC5DC3 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
16:38:08.0535 13844  PNRPAutoReg - ok
16:38:08.0541 13844  PNRPsvc - ok
16:38:08.0551 13844  PolicyAgent - ok
16:38:08.0557 13844  portcfg - ok
16:38:08.0567 13844  Power - ok
16:38:08.0573 13844  PptpMiniport - ok
16:38:08.0606 13844  [ 6173803E45D401CB58BBD1BD34DFDA59 ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
16:38:08.0630 13844  PrintNotify - ok
16:38:08.0639 13844  [ 9CCFB9CA2C3CE919D1E47321D6188F6E ] PrintWorkflowUserSvc C:\Windows\System32\PrintWorkflowService.dll
16:38:08.0646 13844  PrintWorkflowUserSvc - ok
16:38:08.0651 13844  Processor - ok
16:38:08.0657 13844  ProfSvc - ok
16:38:08.0665 13844  [ C0EF1DA7CB74EB2E0B87686AB7AA7454 ] Psched          C:\Windows\system32\drivers\pacer.sys
16:38:08.0667 13844  Psched - ok
16:38:08.0676 13844  [ 34F064C964229611B694B5D01AAF4152 ] PushToInstall   C:\Windows\system32\PushToInstall.dll
16:38:08.0683 13844  PushToInstall - ok
16:38:08.0690 13844  [ E862021CE0B9DA301969D8843A6F6AD8 ] QWAVE           C:\Windows\system32\qwave.dll
16:38:08.0697 13844  QWAVE - ok
16:38:08.0702 13844  [ 00664026ACC782597B77AAAB5B65E715 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
16:38:08.0704 13844  QWAVEdrv - ok
16:38:08.0708 13844  Ramdisk - ok
16:38:08.0713 13844  RasAcd - ok
16:38:08.0718 13844  RasAgileVpn - ok
16:38:08.0723 13844  RasAuto - ok
16:38:08.0730 13844  Rasl2tp - ok
16:38:08.0737 13844  RasMan - ok
16:38:08.0744 13844  RasPppoe - ok
16:38:08.0751 13844  RasSstp - ok
16:38:08.0759 13844  rdbss - ok
16:38:08.0768 13844  [ D02EA52890750A5980EE970586942695 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
16:38:08.0770 13844  rdpbus - ok
16:38:08.0775 13844  RDPDR - ok
16:38:08.0789 13844  RdpVideoMiniport - ok
16:38:08.0798 13844  [ CD3A6A87C682363E227F065B8E59D94C ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
16:38:08.0801 13844  rdyboost - ok
16:38:08.0805 13844  ReFS - ok
16:38:08.0810 13844  ReFSv1 - ok
16:38:08.0817 13844  [ 0060A50F5E3A397E1F84B0C8F5F9898B ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
16:38:08.0841 13844  RegSrvc - ok
16:38:08.0851 13844  [ 656E36EF61C55C51B0D66BCFC1C310EA ] RemoteAccess    C:\Windows\System32\mprdim.dll
16:38:08.0858 13844  RemoteAccess - ok
16:38:08.0865 13844  [ 15D9B88C7258263375BA462B96E61860 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
16:38:08.0873 13844  RemoteRegistry - ok
16:38:08.0878 13844  RetailDemo - ok
16:38:08.0886 13844  [ FF46B8795B06BAB591F082FBEF17DC91 ] RFCOMM          C:\Windows\System32\drivers\rfcomm.sys
16:38:08.0890 13844  RFCOMM - ok
16:38:08.0898 13844  [ E3DE6D17049E592A710284B4C811E7BF ] rhproxy         C:\Windows\System32\drivers\rhproxy.sys
16:38:08.0901 13844  rhproxy - ok
16:38:09.0025 13844  [ F3A39C8694B1A81FD895EBAD95B8893A ] rkrtservice     C:\Program Files\RogueKiller\RogueKillerSvc.exe
16:38:09.0165 13844  rkrtservice - ok
16:38:09.0174 13844  RmSvc - ok
16:38:09.0179 13844  RpcEptMapper - ok
16:38:09.0184 13844  [ A089120B99842F0A3CE8AE586A31BD56 ] RpcLocator      C:\Windows\system32\locator.exe
16:38:09.0187 13844  RpcLocator - ok
16:38:09.0191 13844  RpcSs - ok
16:38:09.0196 13844  [ CCF4A5CEC8FA38035007AB19EB0EBE2E ] rspndr          C:\Windows\system32\drivers\rspndr.sys
16:38:09.0198 13844  rspndr - ok
16:38:09.0205 13844  [ 02CB159500B40705BE8644F3B42C3992 ] RTSUER          C:\Windows\system32\Drivers\RtsUer.sys
16:38:09.0209 13844  RTSUER - ok
16:38:09.0213 13844  [ 40CD5DB1671197EFBD5C3AB16B9B037C ] s3cap           C:\Windows\System32\drivers\vms3cap.sys
16:38:09.0215 13844  s3cap - ok
16:38:09.0220 13844  SamSs - ok
16:38:09.0224 13844  sbp2port - ok
16:38:09.0231 13844  [ 6F1E358F693B1D389D7C12B271157D69 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
16:38:09.0236 13844  SCardSvr - ok
16:38:09.0244 13844  [ 057C49628A9E9945CA5676F52464D931 ] ScDeviceEnum    C:\Windows\System32\ScDeviceEnum.dll
16:38:09.0250 13844  ScDeviceEnum - ok
16:38:09.0254 13844  [ E0891042C6FBF9FB1ED5133D745AD647 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
16:38:09.0256 13844  scfilter - ok
16:38:09.0260 13844  Schedule - ok
16:38:09.0267 13844  scmbus - ok
16:38:09.0273 13844  [ F738B75E685601069A0A3F8C30CF4F47 ] SCPolicySvc     C:\Windows\System32\certprop.dll
16:38:09.0274 13844  SCPolicySvc - ok
16:38:09.0279 13844  sdbus - ok
16:38:09.0283 13844  [ 801D9B80964AC7240F82C452709E28F8 ] SDFRd           C:\Windows\System32\drivers\SDFRd.sys
16:38:09.0285 13844  SDFRd - ok
16:38:09.0290 13844  [ 12991E3B5C124E394DBA0D48D1B8E96E ] SDRSVC          C:\Windows\System32\SDRSVC.dll
16:38:09.0295 13844  SDRSVC - ok
16:38:09.0301 13844  sdstor - ok
16:38:09.0305 13844  [ 512FD6039A256324A745DF4FA01D5D02 ] seclogon        C:\Windows\system32\seclogon.dll
16:38:09.0310 13844  seclogon - ok
16:38:09.0314 13844  SecurityHealthService - ok
16:38:09.0330 13844  [ 4F88B110B25531EC1CC84D621B2C74EC ] SEMgrSvc        C:\Windows\system32\SEMgrSvc.dll
16:38:09.0342 13844  SEMgrSvc - ok
16:38:09.0346 13844  [ 84F8DAF82B643F63D5D6EF93F8F5BB95 ] SENS            C:\Windows\System32\sens.dll
16:38:09.0351 13844  SENS - ok
16:38:09.0363 13844  [ EA7F202EE760B3F949191FDF86E553EA ] SensorDataService C:\Windows\System32\SensorDataService.exe
16:38:09.0375 13844  SensorDataService - ok
16:38:09.0383 13844  [ D83530B2386434C004C0E4E41DD61843 ] SensorService   C:\Windows\system32\SensorService.dll
16:38:09.0391 13844  SensorService - ok
16:38:09.0397 13844  [ 706087D7D9D2A5347F6B327B353E9E08 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
16:38:09.0403 13844  SensrSvc - ok
16:38:09.0407 13844  SerCx - ok
16:38:09.0410 13844  SerCx2 - ok
16:38:09.0413 13844  Serenum - ok
16:38:09.0418 13844  Serial - ok
16:38:09.0422 13844  sermouse - ok
16:38:09.0431 13844  SessionEnv - ok
16:38:09.0435 13844  sfloppy - ok
16:38:09.0580 13844  [ C0F588AB65EE3869C38C1BD10A0AEF85 ] SgrmAgent       C:\Windows\system32\drivers\SgrmAgent.sys
16:38:09.0584 13844  SgrmAgent - ok
16:38:09.0600 13844  [ C51AA0BB954EA45E85572E6CC29BA6F4 ] SgrmBroker      C:\Windows\system32\SgrmBroker.exe
16:38:09.0611 13844  SgrmBroker - ok
16:38:09.0627 13844  [ 4F1EE4017B159974EC76EE0F3033C524 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
16:38:09.0637 13844  SharedAccess - ok
16:38:09.0645 13844  SharedRealitySvc - ok
16:38:09.0656 13844  [ 66E6C9C7AEB812EF3F7ED69143E8E287 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:38:09.0665 13844  ShellHWDetection - ok
16:38:09.0671 13844  [ B2E022EFC0BB678D37D4595BEC535BF5 ] shpamsvc        C:\Windows\system32\Windows.SharedPC.AccountManager.dll
16:38:09.0679 13844  shpamsvc - ok
16:38:09.0683 13844  [ 8C61B219882C9C9ECA09BEDB82B0DDB1 ] silabenm        C:\Windows\System32\drivers\silabenm.sys
16:38:09.0685 13844  silabenm - ok
16:38:09.0690 13844  [ 2641655FAD6C1EA0F3677978E2BF28C1 ] silabser        C:\Windows\System32\drivers\silabser.sys
16:38:09.0691 13844  silabser - ok
16:38:09.0695 13844  SiSRaid2 - ok
16:38:09.0701 13844  SiSRaid4 - ok
16:38:09.0707 13844  SmartSAMD - ok
16:38:09.0711 13844  [ 186C5D3622107B2D43234686A776769D ] SmbDrv          C:\Windows\System32\drivers\Smb_driver_AMDASF.sys
16:38:09.0713 13844  SmbDrv - ok
16:38:09.0717 13844  [ 8E67E1EEE991636172E63239549AE2FD ] SmbDrvI         C:\Windows\System32\drivers\Smb_driver_Intel.sys
16:38:09.0718 13844  SmbDrvI - ok
16:38:09.0722 13844  smphost - ok
16:38:09.0726 13844  SmsRouter - ok
16:38:09.0737 13844  [ 78172782B1E1E26933D67A9DA912158C ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
16:38:09.0742 13844  SNMPTRAP - ok
16:38:09.0746 13844  spaceport - ok
16:38:09.0751 13844  [ B0FC1C59BC63170BE57D66837FB6BEED ] SpatialGraphFilter C:\Windows\system32\drivers\SpatialGraphFilter.sys
16:38:09.0753 13844  SpatialGraphFilter - ok
16:38:09.0756 13844  SpbCx - ok
16:38:09.0760 13844  spectrum - ok
16:38:09.0764 13844  Spooler - ok
16:38:09.0768 13844  sppsvc - ok
16:38:09.0772 13844  srv2 - ok
16:38:09.0776 13844  srvnet - ok
16:38:09.0780 13844  [ 0BDD998FD39F5FAD9124F80032B3C0A6 ] ssbthid         C:\Windows\System32\drivers\ssbthid.sys
16:38:09.0782 13844  ssbthid - ok
16:38:09.0786 13844  [ C6B300B6383A663A71697AFD246F6BE6 ] ssdevfactory    C:\Windows\System32\drivers\ssdevfactory.sys
16:38:09.0788 13844  ssdevfactory - ok
16:38:09.0791 13844  SSDPSRV - ok
16:38:09.0799 13844  [ 9FFECD197D09FF33B00D5E5B78A48146 ] ssh-agent       C:\Windows\System32\OpenSSH\ssh-agent.exe
16:38:09.0802 13844  ssh-agent - ok
16:38:09.0806 13844  [ 96BA18D5C74ED6764F4032EC29E7720B ] sshid           C:\Windows\System32\drivers\sshid.sys
16:38:09.0808 13844  sshid - ok
16:38:09.0812 13844  [ 33D57BC1F1B3A71AB1D605FB3C17BE35 ] ssps2           C:\Windows\System32\drivers\ssps2.sys
16:38:09.0814 13844  ssps2 - ok
16:38:09.0818 13844  SstpSvc - ok
16:38:09.0862 13844  [ 7B95F9C1FC5CFADC7F922E76DA711A9C ] StateRepository C:\Windows\system32\windows.staterepository.dll
16:38:09.0904 13844  StateRepository - ok
16:38:09.0923 13844  [ C3131D2405CD8C1F0152CCEC4930D09F ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
16:38:09.0933 13844  Steam Client Service - ok
16:38:09.0938 13844  stexstor - ok
16:38:09.0948 13844  [ 093FD1EA9E8863E77ACA35F9C794ACBD ] stisvc          C:\Windows\System32\wiaservc.dll
16:38:09.0957 13844  stisvc - ok
16:38:09.0960 13844  storahci - ok
16:38:09.0964 13844  storflt - ok
16:38:09.0968 13844  stornvme - ok
16:38:09.0972 13844  storqosflt - ok
16:38:09.0976 13844  StorSvc - ok
16:38:09.0979 13844  storufs - ok
16:38:09.0984 13844  storvsc - ok
16:38:09.0988 13844  [ 58B352DA569D4119660A36049C84C4F5 ] STTub30         C:\Windows\System32\Drivers\STTub30.sys
16:38:09.0990 13844  STTub30 - ok
16:38:09.0994 13844  svsvc - ok
16:38:10.0003 13844  swenum - ok
16:38:10.0007 13844  swprv - ok
16:38:10.0011 13844  [ D2C18148D3C16CCED6E176C646C13EFD ] Synth3dVsc      C:\Windows\System32\drivers\Synth3dVsc.sys
16:38:10.0013 13844  Synth3dVsc - ok
16:38:10.0024 13844  [ A2043C9E2DE5E701F0DEC13A3F120CA1 ] SynTP           C:\Windows\System32\drivers\SynTP.sys
16:38:10.0031 13844  SynTP - ok
16:38:10.0039 13844  [ 97A9837631906F7C1C5A5264C81A7192 ] SynTPEnhService C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
16:38:10.0047 13844  SynTPEnhService - ok
16:38:10.0051 13844  SysMain - ok
16:38:10.0055 13844  SystemEventsBroker - ok
16:38:10.0061 13844  [ D79C8F7F04616ADF654FBDA9847CF3EB ] TabletInputService C:\Windows\System32\TabSvc.dll
16:38:10.0067 13844  TabletInputService - ok
16:38:10.0074 13844  [ 65AE63EC8F388BB53CBD3D9751464E04 ] TapiSrv         C:\Windows\System32\tapisrv.dll
16:38:10.0080 13844  TapiSrv - ok
16:38:10.0084 13844  Tcpip - ok
16:38:10.0088 13844  Tcpip6 - ok
16:38:10.0094 13844  [ 6A6D4EE00469704BC0091AF5AC73C6DD ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
16:38:10.0095 13844  tcpipreg - ok
16:38:10.0102 13844  tdx - ok
16:38:10.0106 13844  [ BACB822DEC72FECEFC809449FD3C7CD3 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
16:38:10.0107 13844  terminpt - ok
16:38:10.0112 13844  TermService - ok
16:38:10.0117 13844  [ 3B09BAB568BD4ED4B7A1998D47ECCF0C ] Themes          C:\Windows\system32\themeservice.dll
16:38:10.0122 13844  Themes - ok
16:38:10.0129 13844  [ 00E0C9BF4808162AE2FC9E6C8BA50701 ] TieringEngineService C:\Windows\system32\TieringEngineService.exe
16:38:10.0135 13844  TieringEngineService - ok
16:38:10.0140 13844  TimeBrokerSvc - ok
16:38:10.0143 13844  TokenBroker - ok
16:38:10.0147 13844  TPM - ok
16:38:10.0153 13844  [ F47972C77B03F421BE57CFEEE384D98B ] TrkWks          C:\Windows\System32\trkwks.dll
16:38:10.0158 13844  TrkWks - ok
16:38:10.0165 13844  [ 0ABBA689E78D931613ADB942C43B2CF1 ] TroubleshootingSvc C:\Windows\system32\MitigationClient.dll
16:38:10.0171 13844  TroubleshootingSvc - ok
16:38:10.0175 13844  [ 0D5A09B08568760AE85A801FCBC0F83D ] TrueSight       C:\Windows\System32\drivers\truesight.sys
16:38:10.0176 13844  TrueSight - ok
16:38:10.0180 13844  TrustedInstaller - ok
16:38:10.0188 13844  [ 4D66CADB97981EE7390E95C5D59319F1 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
16:38:10.0189 13844  TsUsbFlt - ok
16:38:10.0194 13844  [ C26F638642EF8203EC7113464A0CCA55 ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys
16:38:10.0196 13844  TsUsbGD - ok
16:38:10.0200 13844  tunnel - ok
16:38:10.0204 13844  tzautoupdate - ok
16:38:10.0207 13844  UASPStor - ok
16:38:10.0214 13844  [ 4CFC014F7268E18414D115D2915E7636 ] UcmCx0101       C:\Windows\system32\Drivers\UcmCx.sys
16:38:10.0216 13844  UcmCx0101 - ok
16:38:10.0222 13844  [ C6ABD73AA3C86F3252E476FD34FC4D66 ] UcmTcpciCx0101  C:\Windows\system32\Drivers\UcmTcpciCx.sys
16:38:10.0224 13844  UcmTcpciCx0101 - ok
16:38:10.0229 13844  [ A10EF89D243B4A011E4A7618319B5D57 ] UcmUcsiAcpiClient C:\Windows\System32\drivers\UcmUcsiAcpiClient.sys
16:38:10.0230 13844  UcmUcsiAcpiClient - ok
16:38:10.0235 13844  [ 777028ECD134FD8A094F4613475F099B ] UcmUcsiCx0101   C:\Windows\system32\Drivers\UcmUcsiCx.sys
16:38:10.0237 13844  UcmUcsiCx0101 - ok
16:38:10.0241 13844  Ucx01000 - ok
16:38:10.0245 13844  UdeCx - ok
16:38:10.0249 13844  udfs - ok
16:38:10.0258 13844  UEFI - ok
16:38:10.0264 13844  [ 87D5D59B6AAC3ACCB6875D9666825C8E ] Ufx01000        C:\Windows\system32\drivers\ufx01000.sys
16:38:10.0267 13844  Ufx01000 - ok
16:38:10.0272 13844  UfxChipidea - ok
16:38:10.0276 13844  ufxsynopsys - ok
16:38:10.0284 13844  umbus - ok
16:38:10.0288 13844  UmPass - ok
16:38:10.0296 13844  [ 79C0194B9F2FF312F1E2927D42E52105 ] UmRdpService    C:\Windows\System32\umrdp.dll
16:38:10.0303 13844  UmRdpService - ok
16:38:10.0307 13844  UnistoreSvc - ok
16:38:10.0311 13844  upnphost - ok
16:38:10.0316 13844  UrsChipidea - ok
16:38:10.0321 13844  [ A7BE0A24B7F11060394A3BFAE21C783F ] UrsCx01000      C:\Windows\system32\drivers\urscx01000.sys
16:38:10.0323 13844  UrsCx01000 - ok
16:38:10.0327 13844  UrsSynopsys - ok
16:38:10.0332 13844  [ F957092C63CD71D85903CA0D8370F473 ] USBAAPL64       C:\Windows\System32\Drivers\usbaapl64.sys
16:38:10.0334 13844  USBAAPL64 - ok
16:38:10.0338 13844  usbaudio - ok
16:38:10.0342 13844  usbaudio2 - ok
16:38:10.0345 13844  usbccgp - ok
16:38:10.0351 13844  [ 4A2A90FC52DD031BD5135BF2B6F95CDD ] usbcir          C:\Windows\System32\drivers\usbcir.sys
16:38:10.0353 13844  usbcir - ok
16:38:10.0357 13844  usbehci - ok
16:38:10.0361 13844  usbhub - ok
16:38:10.0365 13844  USBHUB3 - ok
16:38:10.0369 13844  usbohci - ok
16:38:10.0373 13844  [ 11724C8F4354F87EC7F96CBCBD18A612 ] usbprint        C:\Windows\System32\drivers\usbprint.sys
16:38:10.0375 13844  usbprint - ok
16:38:10.0379 13844  [ 321D0CBE2D36D3443668D81C066DE92D ] usbscan         C:\Windows\System32\drivers\usbscan.sys
16:38:10.0381 13844  usbscan - ok
16:38:10.0385 13844  usbser - ok
16:38:10.0389 13844  USBSTOR - ok
16:38:10.0394 13844  usbuhci - ok
16:38:10.0401 13844  [ 9C30C80855C05CA6DA0458AE9D67405F ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
16:38:10.0405 13844  usbvideo - ok
16:38:10.0408 13844  USBXHCI - ok
16:38:10.0424 13844  [ 4AB290C4D42C77D1A395D44BF428E126 ] UserDataSvc     C:\Windows\System32\userdataservice.dll
16:38:10.0438 13844  UserDataSvc - ok
16:38:10.0442 13844  UserManager - ok
16:38:10.0446 13844  UsoSvc - ok
16:38:10.0454 13844  [ DA482A04D8A194EF5041F0090A774A17 ] VacSvc          C:\Windows\System32\vac.dll
16:38:10.0462 13844  VacSvc - ok
16:38:10.0467 13844  VaultSvc - ok
16:38:10.0471 13844  vdrvroot - ok
16:38:10.0475 13844  vds - ok
16:38:10.0479 13844  VerifierExt - ok
16:38:10.0483 13844  vhdmp - ok
16:38:10.0487 13844  vhf - ok
16:38:10.0491 13844  Vid - ok
16:38:10.0495 13844  vmbus - ok
16:38:10.0499 13844  VMBusHID - ok
16:38:10.0503 13844  [ 32480E0760E0C3D21964CE3992001D5F ] vmgid           C:\Windows\System32\drivers\vmgid.sys
16:38:10.0505 13844  vmgid - ok
16:38:10.0512 13844  [ C6F988A12AE96C5A553E69A19921D2B3 ] vmicguestinterface C:\Windows\System32\icsvc.dll
16:38:10.0516 13844  vmicguestinterface - ok
16:38:10.0521 13844  [ C6F988A12AE96C5A553E69A19921D2B3 ] vmicheartbeat   C:\Windows\System32\icsvc.dll
16:38:10.0524 13844  vmicheartbeat - ok
16:38:10.0529 13844  [ C6F988A12AE96C5A553E69A19921D2B3 ] vmickvpexchange C:\Windows\System32\icsvc.dll
16:38:10.0532 13844  vmickvpexchange - ok
16:38:10.0539 13844  [ E8D33D1EA66CF460A204007DFF2CC1D8 ] vmicrdv         C:\Windows\System32\icsvcext.dll
16:38:10.0543 13844  vmicrdv - ok
16:38:10.0549 13844  [ C6F988A12AE96C5A553E69A19921D2B3 ] vmicshutdown    C:\Windows\System32\icsvc.dll
16:38:10.0552 13844  vmicshutdown - ok
16:38:10.0557 13844  [ C6F988A12AE96C5A553E69A19921D2B3 ] vmictimesync    C:\Windows\System32\icsvc.dll
16:38:10.0560 13844  vmictimesync - ok
16:38:10.0565 13844  [ C6F988A12AE96C5A553E69A19921D2B3 ] vmicvmsession   C:\Windows\System32\icsvc.dll
16:38:10.0568 13844  vmicvmsession - ok
16:38:10.0575 13844  [ E8D33D1EA66CF460A204007DFF2CC1D8 ] vmicvss         C:\Windows\System32\icsvcext.dll
16:38:10.0578 13844  vmicvss - ok
16:38:10.0583 13844  volmgr - ok
16:38:10.0587 13844  volmgrx - ok
16:38:10.0591 13844  volsnap - ok
16:38:10.0595 13844  volume - ok
16:38:10.0600 13844  [ CF1C674D2149ECCDF3C93EECA1EA2F61 ] vpci            C:\Windows\System32\drivers\vpci.sys
16:38:10.0602 13844  vpci - ok
16:38:10.0606 13844  vsmraid - ok
16:38:10.0611 13844  VSS - ok
16:38:10.0616 13844  VSTXRAID - ok
16:38:10.0620 13844  vwifibus - ok
16:38:10.0624 13844  vwififlt - ok
16:38:10.0628 13844  vwifimp - ok
16:38:10.0632 13844  W32Time - ok
16:38:10.0636 13844  WaaSMedicSvc - ok
16:38:10.0642 13844  [ 9349F02F5F74F430F09D4135BF6A2C5B ] WacHidRouterPro C:\Windows\System32\drivers\wachidrouter.sys
16:38:10.0664 13844  WacHidRouterPro - ok
16:38:10.0669 13844  WacomPen - ok
16:38:10.0673 13844  [ 99D1AA0F939ED5C9BE6249E0A81DA516 ] wacomrouterfilter C:\Windows\System32\drivers\wacomrouterfilter.sys
16:38:10.0675 13844  wacomrouterfilter - ok
16:38:10.0683 13844  [ 0DC4909F3D4E5272CB0A5B2BB7CA06BB ] WalletService   C:\Windows\system32\WalletService.dll
16:38:10.0691 13844  WalletService - ok
16:38:10.0695 13844  wanarp - ok
16:38:10.0699 13844  wanarpv6 - ok
16:38:10.0704 13844  [ FA45D9FF48626207024305DADAD40AAB ] WarpJITSvc      C:\Windows\System32\Windows.WARP.JITService.dll
16:38:10.0710 13844  WarpJITSvc - ok
16:38:10.0715 13844  wbengine - ok
16:38:10.0726 13844  [ A49E17680E06B392CC6ECB47F01A6E64 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
16:38:10.0738 13844  WbioSrvc - ok
16:38:10.0744 13844  wcifs - ok
16:38:10.0748 13844  Wcmsvc - ok
16:38:10.0752 13844  wcncsvc - ok
16:38:10.0757 13844  [ B6F93B8B921662E81F9BA6A2AD014F86 ] wcnfs           C:\Windows\system32\drivers\wcnfs.sys
16:38:10.0759 13844  wcnfs - ok
16:38:10.0763 13844  WdBoot - ok
16:38:10.0767 13844  Wdf01000 - ok
16:38:10.0771 13844  WdFilter - ok
16:38:10.0776 13844  [ AA843CF3C016B79340C6FDACDA20D75D ] WdiServiceHost  C:\Windows\system32\wdi.dll
16:38:10.0782 13844  WdiServiceHost - ok
16:38:10.0786 13844  [ AA843CF3C016B79340C6FDACDA20D75D ] WdiSystemHost   C:\Windows\system32\wdi.dll
16:38:10.0791 13844  WdiSystemHost - ok
16:38:10.0795 13844  wdiwifi - ok
16:38:10.0943 13844  [ 35ED849BBAD731509E4E8D3A015CE5FA ] WdmCompanionFilter C:\Windows\system32\drivers\WdmCompanionFilter.sys
16:38:10.0946 13844  WdmCompanionFilter - ok
16:38:10.0954 13844  WdNisDrv - ok
16:38:10.0966 13844  WdNisSvc - ok
16:38:10.0982 13844  [ 96F813A401A00A1C0477C0738DE64E3A ] WebClient       C:\Windows\System32\webclnt.dll
16:38:10.0991 13844  WebClient - ok
16:38:10.0999 13844  [ D2432132ABE0F620939B667D4894A36F ] Wecsvc          C:\Windows\system32\wecsvc.dll
16:38:11.0007 13844  Wecsvc - ok
16:38:11.0013 13844  [ FAF9800B056767E9F525C143C90F4F9E ] WEPHOSTSVC      C:\Windows\system32\wephostsvc.dll
16:38:11.0018 13844  WEPHOSTSVC - ok
16:38:11.0022 13844  wercplsupport - ok
16:38:11.0026 13844  WerSvc - ok
16:38:11.0037 13844  [ 5FB0717636A54C5C37082E79A6605902 ] WFDSConMgrSvc   C:\Windows\System32\wfdsconmgrsvc.dll
16:38:11.0046 13844  WFDSConMgrSvc - ok
16:38:11.0052 13844  WFPLWFS - ok
16:38:11.0057 13844  [ 4D14BAB695C17DFFC1AAF7A23FFB59F1 ] WiaRpc          C:\Windows\System32\wiarpc.dll
16:38:11.0062 13844  WiaRpc - ok
16:38:11.0066 13844  WIMMount - ok
16:38:11.0069 13844  WinDefend - ok
16:38:11.0079 13844  [ 9FCCEAAF76F60F712C2DCEE6FC0B07A2 ] WindowsTrustedRT C:\Windows\system32\drivers\WindowsTrustedRT.sys
16:38:11.0081 13844  WindowsTrustedRT - ok
16:38:11.0085 13844  [ C696815C9B8DD3F40454A949E30ECA0B ] WindowsTrustedRTProxy C:\Windows\system32\drivers\WindowsTrustedRTProxy.sys
16:38:11.0086 13844  WindowsTrustedRTProxy - ok
16:38:11.0091 13844  WinHttpAutoProxySvc - ok
16:38:11.0096 13844  [ E815503BDE35026051EB701ACA72B296 ] WINIO           C:\Program Files (x86)\MSI\Dragon Gaming Center\winio64.sys
16:38:11.0096 13844  WINIO - ok
16:38:11.0101 13844  WinMad - ok
16:38:11.0106 13844  Winmgmt - ok
16:38:11.0110 13844  WinNat - ok
16:38:11.0115 13844  WinQuic - ok
16:38:11.0142 13844  [ 74E4D3C8A6EF62362187D0C6FC0DC49B ] WinRM           C:\Windows\system32\WsmSvc.dll
16:38:11.0164 13844  WinRM - ok
16:38:11.0174 13844  [ 7C8733775E291E3211F918A30B425742 ] WINUSB          C:\Windows\System32\drivers\WinUSB.sys
16:38:11.0176 13844  WINUSB - ok
16:38:11.0180 13844  WinVerbs - ok
16:38:11.0185 13844  wisvc - ok
16:38:11.0189 13844  WlanSvc - ok
16:38:11.0210 13844  [ A60DCC4F1CE38740F86B95E57B526545 ] wlidsvc         C:\Windows\system32\wlidsvc.dll
16:38:11.0228 13844  wlidsvc - ok
16:38:11.0244 13844  [ 06122A4C8860167431FB9D66CCC93D18 ] wlpasvc         C:\Windows\System32\lpasvc.dll
16:38:11.0254 13844  wlpasvc - ok
16:38:11.0260 13844  WManSvc - ok
16:38:11.0264 13844  WmiAcpi - ok
16:38:11.0271 13844  wmiApSrv - ok
16:38:11.0275 13844  WMPNetworkSvc - ok
16:38:11.0279 13844  Wof - ok
16:38:11.0286 13844  workfolderssvc - ok
16:38:11.0292 13844  WpcMonSvc - ok
16:38:11.0297 13844  WPDBusEnum - ok
16:38:11.0301 13844  [ 58CD56BD6647BCAD784D9EB172D3132B ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
16:38:11.0303 13844  WpdUpFltr - ok
16:38:11.0307 13844  WpnService - ok
16:38:11.0312 13844  [ B10C7C8714D4D279F56072EBAC17F6DD ] WpnUserService  C:\Windows\System32\WpnUserService.dll
16:38:11.0319 13844  WpnUserService - ok
16:38:11.0323 13844  ws2ifsl - ok
16:38:11.0327 13844  wscsvc - ok
16:38:11.0332 13844  WSearch - ok
16:38:11.0339 13844  wuauserv - ok
16:38:11.0344 13844  [ 28F033782B14D59DDBCA1E2FAE674B8A ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:38:11.0347 13844  WudfPf - ok
16:38:11.0354 13844  [ C339B551B1233A139AFD73C9DD8B50EC ] WUDFRd          C:\Windows\System32\drivers\WUDFRd.sys
16:38:11.0357 13844  WUDFRd - ok
16:38:11.0362 13844  WwanSvc - ok
16:38:11.0375 13844  [ 5A185AD39FBA3409D7AD7DDCDA29DBA0 ] XblAuthManager  C:\Windows\System32\XblAuthManager.dll
16:38:11.0386 13844  XblAuthManager - ok
16:38:11.0400 13844  [ 2F19D8B17B932AF9A5FAC588D6437773 ] XblGameSave     C:\Windows\System32\XblGameSave.dll
16:38:11.0413 13844  XblGameSave - ok
16:38:11.0419 13844  xboxgip - ok
16:38:11.0423 13844  [ C7135FB498E924FD4F93A35B206D1256 ] XboxGipSvc      C:\Windows\System32\XboxGipSvc.dll
16:38:11.0430 13844  XboxGipSvc - ok
16:38:11.0443 13844  [ 5A495E793B14CCD532182BFEF1D06207 ] XboxNetApiSvc   C:\Windows\system32\XboxNetApiSvc.dll
16:38:11.0456 13844  XboxNetApiSvc - ok
16:38:11.0461 13844  [ 4F6C56E15EDAD3E3CD7D839972F61BE0 ] xinputhid       C:\Windows\System32\drivers\xinputhid.sys
16:38:11.0463 13844  xinputhid - ok
16:38:11.0471 13844  [ BD73BFB1C20F7CD5D888D4286384BB7F ] xTendSoftAPService C:\Windows\System32\drivers\RivetNetworks\Killer\xTendSoftAPService.exe
16:38:11.0472 13844  xTendSoftAPService - ok
16:38:11.0476 13844  [ D984E860BFDD9E0A3C33A83D84CB89E4 ] xTendUtilityService C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe
16:38:11.0477 13844  xTendUtilityService - ok
16:38:11.0507 13844  [ 8BA550098E9A09FA934C05F0CF9D5857 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
16:38:11.0572 13844  ZeroConfigService - ok
16:38:11.0573 13844  ================ Scan global ===============================
16:38:11.0589 13844  [Global] - ok
16:38:11.0589 13844  ================ Scan MBR ==================================
16:38:11.0591 13844  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
16:38:11.0595 13844  \Device\Harddisk0\DR0 - ok
16:38:11.0597 13844  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
16:38:11.0599 13844  \Device\Harddisk1\DR1 - ok
16:38:11.0600 13844  ================ Scan VBR ==================================
16:38:11.0601 13844  [ 7344ADBCEACAEDD709FC6AA8110804F9 ] \Device\Harddisk0\DR0\Partition1
16:38:11.0602 13844  \Device\Harddisk0\DR0\Partition1 - ok
16:38:11.0604 13844  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition2
16:38:11.0604 13844  \Device\Harddisk0\DR0\Partition2 - ok
16:38:11.0607 13844  [ 7F22091A382B3B4DC4D74EF788991097 ] \Device\Harddisk0\DR0\Partition3
16:38:11.0607 13844  \Device\Harddisk0\DR0\Partition3 - ok
16:38:11.0609 13844  [ 03312FC92D1FF3ADF442A30D6EBC84D8 ] \Device\Harddisk0\DR0\Partition4
16:38:11.0610 13844  \Device\Harddisk0\DR0\Partition4 - ok
16:38:11.0614 13844  [ 3A22AD2E6743BF40F3E00763D2FFE362 ] \Device\Harddisk1\DR1\Partition1
16:38:11.0615 13844  \Device\Harddisk1\DR1\Partition1 - ok
16:38:11.0651 13844  [ 2BE24E754C6A7BC64D28CA468A762472 ] \Device\Harddisk1\DR1\Partition2
16:38:11.0652 13844  \Device\Harddisk1\DR1\Partition2 - ok
16:38:11.0652 13844  ============================================================
16:38:11.0652 13844  Scan finished
16:38:11.0652 13844  ============================================================
16:38:11.0661 1708  Detected object count: 0
16:38:11.0661 1708  Actual detected object count: 0
 

[RendedRere]

Is it okay if the post above gets deleted shortly after you look at it? May contain some info that I would rather not have public.

[nasdaq]

Hi,

I believe you.

This is a long shot. Try it.
Malwarebytes for Windows antivirus exclusions list
https://support.malwarebytes.com/docs/DOC-1123

p.s.
I cannot edit your posts. Sorry.

[RendedRere]

I've added both folder types to the exclusion, still nothing. Honestly, it's not much of a problem as long as it's confirmed not a virus because then I'd be fine with task manager running at all times in the background. I feel like this would be too much of a hassle to deal with since nothing seems to be working. Would that work as a solution?

[nasdaq]

Hi,

Check for new Windows 10 drivers.

Follow the directives on this page.

https://support.microsoft.com/en-ca/help/4028443/windows-10-update-drivers

[AdvancedSetup]

Due to the lack of feedback, this topic is closed to prevent others from posting here.

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this topic with your request.

This applies only to the originator of this topic. Other members who need assistance please start your own topic in a new thread.

Thanks