Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Installed fake KMSPico


  • Please log in to reply
5 replies to this topic

#1 NoahF0920

NoahF0920

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:07:01 PM

Posted 13 October 2015 - 07:46 PM

Hello, about a month ago I needed MS Office for school, so I installed KMSPico to activate it. It was a fake one, so it installed a bunch of adware and other useless junk on my PC. After using both Malwarebytes and Bitdefender, I THOUGHT I removed all of it, but about 2 weeks ago more malicious programs and registry keys started coming up on the scans. After every scan there is at least one malicious program/registry key. Additionally, whenever I startup my PC, my RAM AND disk usage instantly jumps up to the 90/100% range and stays there even while idle with no programs running. This obviously slows my computer to essentially a standstill and I even have trouble using Chrome. I've tried everything to fix it and have failed to do so. I have a scan log from Malwarebytes from today if anyone needs to see it. Any advice on what to do would help tremendously as this is the only computer I have at the moment. P.S if it helps, I am running Windows 10 Pro. 

 

Thanks, - Noah


Edited by NoahF0920, 13 October 2015 - 08:02 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:01 PM

Posted 13 October 2015 - 08:30 PM

Hi Noah, lets see what these show us.

3Al62Pm.pngMiniToolBox
  • Please download MiniToolBox, save it to your desktop and run it.
  • Checkmark the following checkboxes:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
SXvL3ZF.pngTDSSKiller
  • Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
zcMPezJ.pngAdwCleaner
  • Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
lv0mVRW.pngJunkware Removal Tool
  • Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
cvMlKv6.pngESET Online Scanner
  • Click here to download the installer for ESET Online Scanner and save it to your Desktop.
  • Disable all your antivirus and antimalware software - see how to do that here.
  • Right click on esetsmartinstaller_enu.exe and select Run as Administrator.
  • Place a checkmark in YES, I accept the Terms of Use, then click Start. Wait for ESET Online Scanner to load its components.
  • Select Enable detection of potentially unwanted applications.
  • Click Advanced Settings, then place a checkmark in the following:
    • Remove found threats
    • Scan archives
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • Click Start to begin scanning.
  • ESET Online Scanner will start downloading signatures and scan. Please be patient, as this scan can take quite some time.
  • When the scan is done, click List threats (only available if ESET Online Scanner found something).
  • Click Export, then save the file to your desktop.
  • Click Back, then Finish to exit ESET Online Scanner.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 NoahF0920

NoahF0920
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:07:01 PM

Posted 13 October 2015 - 09:20 PM

Hi Noah, lets see what these show us.

3Al62Pm.pngMiniToolBox

  • Please download MiniToolBox, save it to your desktop and run it.
  • Checkmark the following checkboxes:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
SXvL3ZF.pngTDSSKiller
  • Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
zcMPezJ.pngAdwCleaner
  • Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
lv0mVRW.pngJunkware Removal Tool
  • Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
cvMlKv6.pngESET Online Scanner
  • Click here to download the installer for ESET Online Scanner and save it to your Desktop.
  • Disable all your antivirus and antimalware software - see how to do that here.
  • Right click on esetsmartinstaller_enu.exe and select Run as Administrator.
  • Place a checkmark in YES, I accept the Terms of Use, then click Start. Wait for ESET Online Scanner to load its components.
  • Select Enable detection of potentially unwanted applications.
  • Click Advanced Settings, then place a checkmark in the following:
    • Remove found threats
    • Scan archives
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • Click Start to begin scanning.
  • ESET Online Scanner will start downloading signatures and scan. Please be patient, as this scan can take quite some time.
  • When the scan is done, click List threats (only available if ESET Online Scanner found something).
  • Click Export, then save the file to your desktop.
  • Click Back, then Finish to exit ESET Online Scanner.

 

 

Almost done, thank you! 



#4 NoahF0920

NoahF0920
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:07:01 PM

Posted 14 October 2015 - 06:28 AM

-Snip-

 
Here are the logs:

 

MiniToolBox by Farbar  Version: 25-07-2015 01
Ran by Noah (administrator) on 13-10-2015 at 21:34:38
Running from "C:\Users\Noah\Desktop"
Microsoft Windows 10 Pro  (X64)
Model: HP Compaq 6005 Pro SFF PC Manufacturer: Hewlett-Packard
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
127.0.0.3                   www.anchorfree.net
127.0.0.2                   mefeedia.com
127.0.0.2                   mefeedia.com
 
127.0.0.1                   anchorfree.net
127.0.0.1                   rss2search.com
127.0.0.1                   techbrowsing.com
127.0.0.1                   box.anchorfree.net
127.0.0.1                   www.mefeedia.com
127.0.0.1                   anchorfree.us
127.0.0.1                   a433.com
127.0.0.1                   rpt.anchorfree.net
127.0.0.1                   delivery.anchorfree.us/land.php
127.0.0.1                   hsselite.com
127.0.0.1                   www.hsselite.com
127.0.0.1                   onhax.net
127.0.0.1                   www.onhax.net
127.0.0.1                   https://forum.onhax.net
127.0.0.1                   labs.onhax.net
127.0.0.1                   do2dear.net
127.0.0.1                   p30world.com
127.0.0.1                   brarstuff.com
127.0.0.1                   rsload.net
 
========================= IP Configuration: ================================
 
Broadcom NetXtreme Gigabit Ethernet = Local Area Connection (Disconnected)
Microsoft Network Adapter Multiplexor Driver = Network Bridge (Disconnected)
Linksys RangePlus Wireless USB Network Adapter = Wireless Network Connection (Connected)
TAP-Windows Adapter V9 = Ethernet (Media disconnected)
Anchorfree HSS VPN Adapter = Ethernet 2 (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Noah-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : home
 
Wireless LAN adapter Local Area Connection* 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 00-1E-E5-E7-55-FA
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Local Area Connection* 4:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Hosted Network Virtual Adapter
   Physical Address. . . . . . . . . : 00-1E-E5-E7-55-F9
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection:
 
   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Linksys RangePlus Wireless USB Network Adapter
   Physical Address. . . . . . . . . : 00-1E-E5-E7-55-F8
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::c56:98cb:3843:dab0%12(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.8(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Tuesday, October 13, 2015 5:52:11 PM
   Lease Expires . . . . . . . . . . : Wednesday, October 14, 2015 5:52:22 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 301997797
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-D0-A9-A4-D4-85-64-B3-E1-A7
   DNS Servers . . . . . . . . . . . : 192.168.1.1
                                       68.238.112.12
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Ethernet:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : TAP-Windows Adapter V9
   Physical Address. . . . . . . . . : 00-FF-B7-5F-13-2C
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Ethernet 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Anchorfree HSS VPN Adapter
   Physical Address. . . . . . . . . : 00-FF-14-8C-8D-DF
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Network Bridge:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Network Adapter Multiplexor Driver
   Physical Address. . . . . . . . . : D4-85-64-B3-E1-A7
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  192.168.1.1
 
Name:    google.com
Addresses:  2607:f8b0:4008:807::200e
 65.196.188.58
 65.196.188.53
 65.196.188.57
 65.196.188.56
 65.196.188.52
 65.196.188.55
 65.196.188.54
 65.196.188.59
 
 
Pinging google.com [65.196.188.57] with 32 bytes of data:
Reply from 65.196.188.57: bytes=32 time=21ms TTL=59
Reply from 65.196.188.57: bytes=32 time=11ms TTL=59
 
Ping statistics for 65.196.188.57:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 11ms, Maximum = 21ms, Average = 16ms
Server:  Wireless_Broadband_Router.home
Address:  192.168.1.1
 
Name:    yahoo.com
Addresses:  2001:4998:58:c02::a9
 2001:4998:c:a06::2:4008
 2001:4998:44:204::a7
 98.139.183.24
 98.138.253.109
 206.190.36.45
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=97ms TTL=53
Reply from 206.190.36.45: bytes=32 time=111ms TTL=53
 
Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 97ms, Maximum = 111ms, Average = 104ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  6...00 1e e5 e7 55 fa ......Microsoft Wi-Fi Direct Virtual Adapter
  5...00 1e e5 e7 55 f9 ......Microsoft Hosted Network Virtual Adapter
 12...00 1e e5 e7 55 f8 ......Linksys RangePlus Wireless USB Network Adapter
 23...00 ff b7 5f 13 2c ......TAP-Windows Adapter V9
  3...00 ff 14 8c 8d df ......Anchorfree HSS VPN Adapter
 22...d4 85 64 b3 e1 a7 ......Microsoft Network Adapter Multiplexor Driver
  1...........................Software Loopback Interface 1
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.8     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link       192.168.1.8    281
      192.168.1.8  255.255.255.255         On-link       192.168.1.8    281
    192.168.1.255  255.255.255.255         On-link       192.168.1.8    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.1.8    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.1.8    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 12    281 fe80::/64                On-link
 12    281 fe80::c56:98cb:3843:dab0/128
                                    On-link
  1    306 ff00::/8                 On-link
 12    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\WINDOWS\SysWOW64\NLAapi.dll [64000] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\napinsp.dll [54784] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [23552] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [306528] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [79872] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [67072] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [31744] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [364384] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (10/13/2015 09:31:09 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: NOAH-PC)
Description: Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2144927142 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (10/13/2015 09:28:49 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: NOAH-PC)
Description: Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2144927142 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (10/13/2015 07:54:31 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: NOAH-PC)
Description: Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2147023170 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (10/13/2015 07:54:15 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: NOAH-PC)
Description: App Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy+CortanaUI did not launch within its allotted time.
 
Error: (10/13/2015 06:16:57 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: NOAH-PC)
Description: Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: -2147023170 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (10/13/2015 06:16:46 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: NOAH-PC)
Description: App Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy+CortanaUI did not launch within its allotted time.
 
Error: (10/13/2015 06:16:24 PM) (Source: Application Hang) (User: )
Description: The program SearchUI.exe version 10.0.10240.16431 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
 
Process ID: 1b134
 
Start Time: 01d106043f13a9fe
 
Termination Time: 4294967295
 
Application Path: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
 
Report Id: 034fdfa8-71f8-11e5-9c10-d48564b3e1a7
 
Faulting package full name: Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy
 
Faulting package-relative application ID: CortanaUI
 
Error: (10/13/2015 06:16:10 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: NOAH-PC)
Description: Package Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy+CortanaUI was terminated because it took too long to suspend.
 
Error: (10/13/2015 06:12:24 PM) (Source: Application Hang) (User: )
Description: The program SearchUI.exe version 10.0.10240.16431 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
 
Process ID: 1d824
 
Start Time: 01d10603935527e4
 
Termination Time: 4294967295
 
Application Path: C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
 
Report Id: 78a49b43-71f7-11e5-9c10-d48564b3e1a7
 
Faulting package full name: Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy
 
Faulting package-relative application ID: CortanaUI
 
Error: (10/13/2015 06:12:19 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: NOAH-PC)
Description: Package Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy+CortanaUI was terminated because it took too long to suspend.
 
 
System errors:
=============
Error: (10/13/2015 09:31:07 PM) (Source: DCOM) (User: NOAH-PC)
Description: CortanaUI.AppXjxtspbn4351hrtx8tc95e89kaz3h2f1f.mca
 
Error: (10/13/2015 09:28:47 PM) (Source: DCOM) (User: NOAH-PC)
Description: CortanaUI.AppX66vvx0wsdb34y1dm8b872ypnaj4fqty0.mca
 
Error: (10/13/2015 07:29:19 PM) (Source: DCOM) (User: NOAH-PC)
Description: Cortana.ActionUris.ActionUri
 
Error: (10/13/2015 07:29:07 PM) (Source: DCOM) (User: NOAH-PC)
Description: Cortana.ActionUris.ActionUri
 
Error: (10/13/2015 06:09:39 PM) (Source: Service Control Manager) (User: )
Description: The RzSurroundVADStreamingService service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 5000 milliseconds: Restart the service.
 
Error: (10/13/2015 06:07:35 PM) (Source: DCOM) (User: NOAH-PC)
Description: App
 
Error: (10/12/2015 10:03:46 PM) (Source: Service Control Manager) (User: )
Description: The User Data Storage_Session11 service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
Error: (10/12/2015 10:03:46 PM) (Source: Service Control Manager) (User: )
Description: The Sync Host_Session11 service terminated unexpectedly.  It has done this 2 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
Error: (10/12/2015 10:03:43 PM) (Source: Service Control Manager) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the User Data Storage_Session11 service, but this action failed with the following error: 
%%1056
 
Error: (10/12/2015 10:03:33 PM) (Source: Service Control Manager) (User: )
Description: The User Data Access_Session11 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
 
Microsoft Office Sessions:
=========================
Error: (10/13/2015 09:35:22 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: NOAH-PC)
Description: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI-2144927142
 
Error: (10/13/2015 09:31:09 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: NOAH-PC)
Description: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI-2144927142
 
Error: (10/13/2015 09:28:49 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: NOAH-PC)
Description: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI-2144927142
 
Error: (10/13/2015 07:54:31 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: NOAH-PC)
Description: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI-2147023170
 
Error: (10/13/2015 07:54:15 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: NOAH-PC)
Description: Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy+CortanaUI
 
Error: (10/13/2015 06:16:57 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: NOAH-PC)
Description: Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI-2147023170
 
Error: (10/13/2015 06:16:46 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: NOAH-PC)
Description: Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy+CortanaUI
 
Error: (10/13/2015 06:16:24 PM) (Source: Application Hang)(User: )
Description: SearchUI.exe10.0.10240.164311b13401d106043f13a9fe4294967295C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe034fdfa8-71f8-11e5-9c10-d48564b3e1a7Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyCortanaUI
 
Error: (10/13/2015 06:16:10 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: NOAH-PC)
Description: Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewy+CortanaUI
 
Error: (10/13/2015 06:12:24 PM) (Source: Application Hang)(User: )
Description: SearchUI.exe10.0.10240.164311d82401d10603935527e44294967295C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe78a49b43-71f7-11e5-9c10-d48564b3e1a7Microsoft.Windows.Cortana_1.4.8.176_neutral_neutral_cw5n1h2txyewyCortanaUI
 
 
CodeIntegrity Errors:
===================================
  Date: 2015-10-06 17:53:20.246
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.stdformat.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2015-10-06 17:53:20.116
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\adodb.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2015-10-06 17:53:20.004
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\msdatasrc.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2015-10-06 17:53:19.731
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.stdformat.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2015-10-06 17:53:19.651
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\adodb.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2015-10-06 17:53:19.532
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\msdatasrc.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2015-10-06 17:53:16.109
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2015-10-06 17:53:15.252
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2015-09-11 12:45:54.349
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.stdformat.dll that did not meet the Microsoft signing level requirements.
 
  Date: 2015-09-11 12:45:54.210
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\adodb.dll that did not meet the Microsoft signing level requirements.
 
 
=========================== Installed Programs ============================
 
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.207 - Adobe Systems Incorporated)
Adobe Flash Player 19 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 19.0.0.207 - Adobe Systems Incorporated)
Audacity 2.0.6 (HKLM-x32\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
Bitdefender Total Security 2015 (HKLM\...\Bitdefender) (Version: 19.2.0.151 - Bitdefender)
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.9.30.9239 - BlueStack Systems, Inc.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd)
Five Nights at Freddy's (HKLM-x32\...\Steam App 319510) (Version:  - Scott Cawthon)
Five Nights at Freddy's 2 (HKLM-x32\...\Steam App 332800) (Version:  - Scott Cawthon)
Five Nights at Freddy's 3 (HKLM-x32\...\Steam App 354140) (Version:  - Scott Cawthon)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.71 - Google Inc.)
Gyazo 3.1.6 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version:  - Nota Inc.)
Hotspot Shield 4.15.3 (HKLM-x32\...\HotspotShield) (Version: 4.15.3 - AnchorFree Inc.)
ISScript (HKLM-x32\...\{80EE18E6-F16C-11D4-8BE8-006097C9A3ED}) (Version: 3.00.185 - InstallShield Software Corp.) Hidden
Klinn's ElectroSet Version 2 (HKLM-x32\...\Klinn's ElectroSet (RCT3)_is1) (Version:  - )
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.80 - Logitech Inc.)
Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
MEGAsync (HKLM-x32\...\MEGAsync) (Version:  - Mega Limited)
Microsoft Office 32-bit Components 2013 (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office Proofing Tools 2013 - English (HKLM\...\{90150000-001F-0409-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Office Proofing Tools 2013 - Español (HKLM\...\{90150000-001F-0C0A-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version:  - )
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Outils de vérification linguistique 2013 de Microsoft Office - Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 3.3 beta r2412 - )
Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK Service) (Version: 0.1.8 - Razer Inc)
Razer Core (HKLM-x32\...\Razer Core) (Version: 1.0.1.66 - Razer Inc)
Razer Surround (HKLM-x32\...\Razer Surround) (Version: 1.05.18 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 3.1.4 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.4 - VS Revo Group, Ltd.)
RollerCoaster Tycoon 3 Platinum (HKLM-x32\...\{907B4640-266B-4A21-92FB-CD1A86CD0F63}) (Version: 1.00.000 - Atari)
Sandboxie 4.12 (64-bit) (HKLM\...\Sandboxie) (Version: 4.12 - Sandboxie Holdings, LLC)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version:  - Microsoft)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0015-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0016-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0018-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0019-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001A-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-0409-1000-0000000FF1CE}_Office15.PROPLUS_{835E4BED-E265-4103-AE14-0B4C70CF3FE8}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}_Office15.PROPLUS_{1F7000D3-A917-4AD2-BA55-59E6FDAF062A}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-001F-0C0A-1000-0000000FF1CE}_Office15.PROPLUS_{4BF13B26-3A95-4E42-900A-DEB16FDA75A0}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-002C-0409-1000-0000000FF1CE}_Office15.PROPLUS_{C5D14A1B-6E3E-491A-96C6-ABDEEEC4E97D}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0044-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-006E-0409-1000-0000000FF1CE}_Office15.PROPLUS_{D7E879E6-B505-4DA2-BFEE-53A55E7C8E38}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0090-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00A1-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00BA-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{1931508C-C004-4983-81E3-70BE6252904B}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00C1-0409-1000-0000000FF1CE}_Office15.PROPLUS_{E4F470B2-3601-4E1C-B291-D6B580F53136}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00E1-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-00E2-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0115-0409-1000-0000000FF1CE}_Office15.PROPLUS_{D7E879E6-B505-4DA2-BFEE-53A55E7C8E38}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0117-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{6227D1A8-9E29-463F-8DE6-1CFA1FFF8ECE}) (Version:  - Microsoft) Hidden
Spotify (HKCU\...\Spotify) (Version: 0.9.17.6.ge7d46329 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - )
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.45862 - TeamViewer)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: 4.6.1f1 - Unity Technologies ApS)
Update for Skype for Business 2015 (KB2889853) 64-Bit Edition (HKLM\...\{90150000-012B-0409-1000-0000000FF1CE}_Office15.PROPLUS_{40930C8E-A677-414C-A72F-DFDEB10738FB}) (Version:  - Microsoft)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 97%
Total physical RAM: 3583.39 MB
Available physical RAM: 91.32 MB
Total Virtual: 7865.87 MB
Available Virtual: 2262.13 MB
 
========================= Partitions: =====================================
 
1 Drive c: (Windows) (Fixed) (Total:927.14 GB) (Free:832.81 GB) NTFS
3 Drive e: (KINGSTON) (Removable) (Total:14.53 GB) (Free:13.47 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\NOAH-PC
 
Administrator            DefaultAccount           Guest                    
Noah                     
 
 
**** End of log ****

21:41:03.0992 0x1df70  TDSS rootkit removing tool 3.1.0.5 Jul 24 2015 12:29:57
21:41:12.0372 0x1df70  ============================================================
21:41:12.0372 0x1df70  Current date / time: 2015/10/13 21:41:12.0372
21:41:12.0372 0x1df70  SystemInfo:
21:41:12.0372 0x1df70  
21:41:12.0372 0x1df70  OS Version: 10.0.10240 ServicePack: 0.0
21:41:12.0372 0x1df70  Product type: Workstation
21:41:12.0372 0x1df70  ComputerName: NOAH-PC
21:41:12.0372 0x1df70  UserName: Noah
21:41:12.0372 0x1df70  Windows directory: C:\WINDOWS
21:41:12.0372 0x1df70  System windows directory: C:\WINDOWS
21:41:12.0372 0x1df70  Running under WOW64
21:41:12.0372 0x1df70  Processor architecture: Intel x64
21:41:12.0372 0x1df70  Number of processors: 2
21:41:12.0372 0x1df70  Page size: 0x1000
21:41:12.0372 0x1df70  Boot type: Normal boot
21:41:12.0372 0x1df70  ============================================================
21:41:13.0780 0x1df70  KLMD registered as C:\WINDOWS\system32\drivers\60510060.sys
21:41:16.0013 0x1df70  System UUID: {0F6AD2DF-7A41-F545-59D9-862F00D5A568}
21:41:22.0139 0x1df70  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:41:22.0165 0x1df70  Drive \Device\Harddisk1\DR1 - Size: 0x3A2768000 ( 14.54 Gb ), SectorSize: 0x200, Cylinders: 0x769, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:41:22.0168 0x1df70  ============================================================
21:41:22.0168 0x1df70  \Device\Harddisk0\DR0:
21:41:22.0171 0x1df70  MBR partitions:
21:41:22.0171 0x1df70  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x7DF800, BlocksNum 0x73E45800
21:41:22.0171 0x1df70  \Device\Harddisk1\DR1:
21:41:22.0171 0x1df70  MBR partitions:
21:41:22.0171 0x1df70  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x1F80, BlocksNum 0x1D11BC0
21:41:22.0171 0x1df70  ============================================================
21:41:22.0210 0x1df70  C: <-> \Device\Harddisk0\DR0\Partition1
21:41:22.0210 0x1df70  ============================================================
21:41:22.0211 0x1df70  Initialize success
21:41:22.0211 0x1df70  ============================================================
21:41:37.0821 0x1ed38  ============================================================
21:41:37.0821 0x1ed38  Scan started
21:41:37.0821 0x1ed38  Mode: Manual; 
21:41:37.0821 0x1ed38  ============================================================
21:41:37.0821 0x1ed38  KSN ping started
21:41:40.0698 0x1ed38  KSN ping finished: true
21:41:50.0520 0x1ed38  ================ Scan system memory ========================
21:41:50.0520 0x1ed38  System memory - ok
21:41:50.0521 0x1ed38  ================ Scan services =============================
21:41:51.0755 0x1ed38  [ 22CE801AD25C51E2553F41A076BB0CB2, 0520216417F1619FB642734EC937C59D5E79A24306C1E9B793C82FAE077851E6 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
21:41:51.0795 0x1ed38  1394ohci - ok
21:41:52.0884 0x1ed38  [ 2C49A2441EBB24C6ACFB524C1459115F, 0ABACB6F21C41C0297994E61F1BFABB3905AF6B569D0446FE8E174EB9225B8EF ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
21:41:53.0392 0x1ed38  3ware - ok
21:41:53.0520 0x1ed38  [ B87D3D07FE6F15328C6860D542F0E2BD, 46CF069EDD7DBFB4DB800BABA3081DAB363DD2CFD724AFF5916D3419F62A3574 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
21:41:53.0572 0x1ed38  ACPI - ok
21:41:53.0590 0x1ed38  [ 1E3C4EDBB7F3F668B7205E351010BB79, A3CA12F72836C4F77B671264828B370B9EBA9CD71110E2C0514994760B6B12FF ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
21:41:53.0596 0x1ed38  acpiex - ok
21:41:53.0630 0x1ed38  [ 13B1C26AEDCB40082CDD97506F968129, 883442206B4C60AA493E84CC3037B6C1568441E1F43D2B1FCBFD8D87D135D511 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
21:41:53.0689 0x1ed38  acpipagr - ok
21:41:53.0719 0x1ed38  [ B3D64FF927D611721DA73A61BF3A18B3, 96B51AFDC3078B5088AAF66F0CF3E07D2FCBBC84A19D309A25DF0A5C6CECB958 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
21:41:53.0790 0x1ed38  AcpiPmi - ok
21:41:53.0825 0x1ed38  [ 19F793B2203D94AC1F8AEDB08B494E2E, DC98CCF9935E1F1C32FA88575A9A678B74916EFF48E39A64CF1FF92232F64A52 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
21:41:54.0010 0x1ed38  acpitime - ok
21:41:54.0253 0x1ed38  [ 013697369EAFFA675D0671607F036020, 65611C775AC4681E46A6565E5A7A4FF3363C66EBDC98C4C58AFB365D40BE23B6 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:41:54.0423 0x1ed38  AdobeARMservice - ok
21:41:54.0700 0x1ed38  [ 028E7CE9535FF6EAA7C34E640D079653, 488687EECF62BBD34D0E1BBB7E8929C07944CC9FFB3B25554EF48A5C3B8009AB ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:41:54.0753 0x1ed38  AdobeFlashPlayerUpdateSvc - ok
21:41:54.0891 0x1ed38  [ 2A24E10C1A1DE0E0035E353EED494A1C, CBBFA86578BE74CAADDCA923D65E3BFFC57BC17B887936ADE5C6952530546A22 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
21:41:55.0061 0x1ed38  ADP80XX - ok
21:41:55.0097 0x1ed38  [ 6C12C7E01A4F64E0AA9C88AF66955CC9, 81A413702909341F8694823EC83FBA0089523D7EC927B80E55E0779BB83AD263 ] AFD             C:\WINDOWS\system32\drivers\afd.sys
21:41:55.0114 0x1ed38  AFD - ok
21:41:55.0132 0x1ed38  [ EF09D07626820F7F89519514C17FE768, C3EC1DC163CD5946270ED876CD414889BBF2C586A8AF5DC7825FA5D77001E827 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
21:41:55.0137 0x1ed38  agp440 - ok
21:41:55.0159 0x1ed38  [ 8A289EF0721F95267BF2404BABEE146D, E263D258F03DF3BB405D49AE7230C37E7EB8F392FDEE48059C7C1E3709520D35 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
21:41:55.0165 0x1ed38  ahcache - ok
21:41:55.0196 0x1ed38  [ C301499987AF909258774AE9DC5778BB, 3ED539C999847116AE9DB9C8C5A34AB09703BAE3018E1EAF6DBC779BB6736F32 ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
21:41:55.0210 0x1ed38  AJRouter - ok
21:41:55.0235 0x1ed38  [ DD69535D379F9E40AD0D6002887AAA99, 579DD18CE2B264B4058C6069B8AEE6FD9FE6A882B7DA19E300DFE40B37A4E5BE ] ALG             C:\WINDOWS\System32\alg.exe
21:41:55.0264 0x1ed38  ALG - ok
21:41:55.0295 0x1ed38  [ 7FE59496114A48A64E98E3218664A3E6, 1C11EE3686CB7F57783A5A5F56CCED71F61A46B26B0F4C4D04B1B37E8AC5A7D1 ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
21:41:55.0317 0x1ed38  AMD External Events Utility - ok
21:41:55.0423 0x1ed38  AMD FUEL Service - ok
21:41:55.0438 0x1ed38  [ 6A2EEB0C4133B20773BB3DD0B7B377B4, E4CB35C6937C70A145A13E5AE5B34A271B49101DA623171ACBFDA8601E5A70EA ] amdiox64        C:\WINDOWS\System32\drivers\amdiox64.sys
21:41:55.0507 0x1ed38  amdiox64 - ok
21:41:55.0541 0x1ed38  [ 6763084E8322A4876D1613854640F914, 89EEEB47517A9964FA799821E5E45BDD6009EBDC628D6DADE6A7F03DE7CDA6CD ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
21:41:55.0586 0x1ed38  AmdK8 - ok
21:41:56.0822 0x1ed38  [ E66C25946B3D9268D8E10D3769CF4719, C273A59D3A29549E3C8BBF896015CA0E5D64A4ECCD6C2FF360927773DA736022 ] amdkmdag        C:\WINDOWS\system32\DRIVERS\atikmdag.sys
21:41:57.0261 0x1ed38  amdkmdag - ok
21:41:57.0328 0x1ed38  [ D1D66D1D42E53B53AFC7598058E71796, 12A1C8D895891F89745493091174D3FF5A9953F21427E7E1BE1120DA762E0CBD ] amdkmdap        C:\WINDOWS\system32\DRIVERS\atikmpag.sys
21:41:57.0371 0x1ed38  amdkmdap - ok
21:41:57.0390 0x1ed38  [ DE29D8AB57AD67D4940CAB4A48B3E230, 4E92AFCD9107573DAB8E65AC6318E4B8851DCCBE17E135DFF8CF5733210B52E6 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
21:41:58.0281 0x1ed38  AmdPPM - ok
21:41:58.0320 0x1ed38  [ 4C1F9BBAF5CCD76D4642F3B92B97B454, 514CCAA8B586B1019658BE101046386EB727AD48D7913AEF9A168763E91F0DE5 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
21:41:58.0427 0x1ed38  amdsata - ok
21:41:58.0582 0x1ed38  [ F8195C1A15955180DD663E7FF4C2F6DD, F3C0C6B38FB9478217EE25EBDBDF7A18F01B97655BC38373E70E71171705D5E9 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
21:41:59.0240 0x1ed38  amdsbs - ok
21:41:59.0320 0x1ed38  [ DD2F5BBCFAC4D8E48DB1A95A7EEBFF08, 619E3106072C6F785144D785C4AFB4C607CAF7ED29AAA4A1411BE262E62B7ADE ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
21:41:59.0404 0x1ed38  amdxata - ok
21:41:59.0758 0x1ed38  [ F312FAD7DBD49ED21A194AC71B497832, C11ADF298E03B13D7B36D8AF978E866B67C252745FCC5D3642DF9B5033D9C370 ] AODDriver4.01   c:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
21:41:59.0917 0x1ed38  AODDriver4.01 - ok
21:42:00.0016 0x1ed38  [ E4AFE476D9F758514A8A571DF6A24372, A37055A2CDB577CC8B76D4B020924A6C68D94166C1C9A64F7C0E9E16692709FC ] AppHostSvc      C:\WINDOWS\system32\inetsrv\apphostsvc.dll
21:42:00.0086 0x1ed38  AppHostSvc - ok
21:42:00.0144 0x1ed38  [ 46AAF119090573A80D603745582229ED, 8D7C4AED66DD32A104965DC23D17C0815CD1BE2E3D52375C1A63863664EE174F ] AppID           C:\WINDOWS\system32\drivers\appid.sys
21:42:00.0182 0x1ed38  AppID - ok
21:42:00.0208 0x1ed38  [ 24315B385F515D6D5476757EAFD62633, CE645397BF43CC54B864A0E4FCB86F76C10B9C2D2482E85DBBE15EF7BF045F17 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
21:42:00.0217 0x1ed38  AppIDSvc - ok
21:42:00.0239 0x1ed38  [ 2CE396457D5C18F034D243EC7E159010, DDF588A568DF5EAE058DF315535BD746760363E2242EF8C705F8DCBA2D5DA4A7 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
21:42:00.0289 0x1ed38  Appinfo - ok
21:42:00.0343 0x1ed38  [ 68AF553066C4DAE7D8698322526BDA86, 806A5228D204B18B3B9F88AB87B5918046BE96D1B3AEFEC9331CA7A483547486 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
21:42:00.0349 0x1ed38  AppMgmt - ok
21:42:00.0481 0x1ed38  [ A8AC0B8ED134888731D1A1BCEF930FA1, 917D2C99CB28C5F20BA386148B6A93541AEF900A9A99D310D732B501322945E5 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
21:42:00.0514 0x1ed38  AppReadiness - ok
21:42:01.0390 0x1ed38  [ 4F9CBB4B6FC2D9D0EAC8234343BAA29D, 5A01B55B3D63C3E1593C9E4B653C4D63CAEFBBEB2847D3EBAD4DB3BABA39DE50 ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
21:42:01.0619 0x1ed38  AppXSvc - ok
21:42:01.0646 0x1ed38  [ 0756EECAC010BE449D07502DF27E7701, 6A895CA80050D021DB5E130102F626027339A22673B7C15C51A375C0401F03D2 ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
21:42:01.0729 0x1ed38  arcsas - ok
21:42:02.0216 0x1ed38  [ BD63768F58666341BE007DAA21B3A063, 1D6112E97042E19E4D916AA22F8AEB7FCC2F36CA45F55049D77042DAF3B8847C ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:42:02.0378 0x1ed38  aspnet_state - ok
21:42:02.0413 0x1ed38  [ BA4B999D245287608A79C92CDAE6F3C1, 799CC0FB185FDF3438687184944E6F6AB6EE73B3B542542D3C13C0FF1A8C0276 ] aswHwid         C:\WINDOWS\system32\drivers\aswHwid.sys
21:42:02.0490 0x1ed38  aswHwid - ok
21:42:02.0541 0x1ed38  [ 543D8AD4621A685CECBBE44BD5B71FAE, 5E8A20B4848F2AEB7BE56BA8966B961FD135433A87EC36ACAB3B63646A1DDCA8 ] aswKbd          C:\WINDOWS\system32\drivers\aswKbd.sys
21:42:02.0585 0x1ed38  aswKbd - ok
21:42:02.0618 0x1ed38  [ 245D3A0670491E1F88759EC45C9F7314, 1FFBDDDC6FCD29770B439933EEB8BE1ABA9149193932B2481720E8E9F265A797 ] aswMonFlt       C:\WINDOWS\system32\drivers\aswMonFlt.sys
21:42:02.0682 0x1ed38  aswMonFlt - ok
21:42:02.0791 0x1ed38  [ 95AAB2D70A5B8F4BDB1FF131CD726232, 8C7267BAE92FB2F31BCA7818BAC43F7E542F0E8A7405422B730DF2805CCD7FB4 ] aswNdisFlt      C:\WINDOWS\system32\DRIVERS\aswNdisFlt.sys
21:42:03.0027 0x1ed38  aswNdisFlt - ok
21:42:03.0048 0x1ed38  [ BC18D5B42B19564BA09156410E1FB9BE, 0DA9636632462208AE4D360BFE5A8187644B036A0D43E981665D888A5363B953 ] aswRdr          C:\WINDOWS\system32\drivers\aswRdr2.sys
21:42:03.0069 0x1ed38  aswRdr - ok
21:42:03.0103 0x1ed38  [ 713AFFD4E38553AEF04617C985B4030B, A09FBE4D49390024E8CF93352EACEB5AC53BEE5A4E5A76F5BE0341F8A002C4DD ] aswRvrt         C:\WINDOWS\system32\drivers\aswRvrt.sys
21:42:03.0153 0x1ed38  aswRvrt - ok
21:42:03.0339 0x1ed38  [ 669F6B37965756E407B447272B5EE39F, FE2C0A8F96415191650485AED637A45B26E7B9A25A4BFB5D809844BD24FD6BA9 ] aswSnx          C:\WINDOWS\system32\drivers\aswSnx.sys
21:42:03.0481 0x1ed38  aswSnx - ok
21:42:03.0575 0x1ed38  [ 3A145C94A519E52FE7E99460DD0DF53C, 91E9544B1B72FCC32463BF34838DAA9F14DCABF3BE9FE9382087ACDB3B4FC598 ] aswSP           C:\WINDOWS\system32\drivers\aswSP.sys
21:42:03.0692 0x1ed38  aswSP - ok
21:42:03.0772 0x1ed38  [ 8CDA894FA86D03FB43063D5FD85EFCAE, 20D110ACC84300514557AB6E565CFA0101DA749559B52877A41A509E79314AF6 ] aswStm          C:\WINDOWS\system32\drivers\aswStm.sys
21:42:03.0894 0x1ed38  aswStm - ok
21:42:03.0949 0x1ed38  [ 11644D8399F4AC8BB12C2364DCB87CB4, 828C3A03AB9D5F0650C7B90B7479CCAAD586B22BB7AC6DB7C91E8D9D80427DFB ] aswVmm          C:\WINDOWS\system32\drivers\aswVmm.sys
21:42:04.0058 0x1ed38  aswVmm - ok
21:42:04.0069 0x1ed38  [ A5792F971EFE86B7F56EE7299ED1082B, 82DCD15E2C9D8A3EA663941C9CE73020FEEF2F91354D0BB51E8A142AA1E30217 ] AsyncMac        C:\WINDOWS\System32\drivers\asyncmac.sys
21:42:04.0095 0x1ed38  AsyncMac - ok
21:42:04.0120 0x1ed38  [ 8921DF6060DB5C7700AA48CB12E9EA08, 8F18841B454CDE4926C50B23F818D00ECE0AE884DB198E396445CB44CB39B2C4 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
21:42:04.0146 0x1ed38  atapi - ok
21:42:04.0227 0x1ed38  [ 240FF83DD79546B26F187FAB20F83864, C4DC0159016B4A4630357131E614814C068D07BEA94AAF6393E882A78C9FCA1E ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
21:42:04.0252 0x1ed38  AudioEndpointBuilder - ok
21:42:04.0455 0x1ed38  [ 5D6D5DA39A402AE7B05047781699ABDE, E3E4A7BA6E92190F9D9D6AD9AE084E293D2E271089CA78503AD72D7F39492459 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
21:42:04.0655 0x1ed38  Audiosrv - ok
21:42:04.0660 0x1ed38  avast! Antivirus - ok
21:42:04.0666 0x1ed38  avast! Firewall - ok
21:42:04.0920 0x1ed38  [ 9845EF176613C9E325A1CA4B40925F69, B37EDAA45B5767F45CEA128799570B6F2084BA84E672B6FCEAF920296FD3AED6 ] avc3            C:\WINDOWS\system32\DRIVERS\avc3.sys
21:42:05.0086 0x1ed38  avc3 - ok
21:42:05.0164 0x1ed38  [ A692B4E9773CD0BDCE99DEEB0AB5D3AC, 7DE2D61857E98D319D6BF66B12C6450E6C5F299EEB781AFA29473471E9ED504C ] avchv           C:\WINDOWS\system32\DRIVERS\avchv.sys
21:42:05.0246 0x1ed38  avchv - ok
21:42:05.0428 0x1ed38  [ 1B25E559C0AE349206641C9DED74D02F, 8E5210A98B2950C0B7086EF08E0E49D4F05933F5FB98F852614E5E5083731438 ] avckf           C:\WINDOWS\system32\DRIVERS\avckf.sys
21:42:05.0615 0x1ed38  avckf - ok
21:42:05.0658 0x1ed38  [ 2F7F80543129210CA75995D0DCA488E8, 353E598FF26FA363C02A2B44BA8D7D1ED97B8AC8C69F1B5C5D521BD0D5D5AB94 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
21:42:05.0680 0x1ed38  AxInstSV - ok
21:42:05.0847 0x1ed38  [ 00D64E82900E4EC9062805ED87C2D75A, 577110F9A7C6C2C4CF86FFF4F60E23F61623ED325FC950033900A5102754A677 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
21:42:05.0925 0x1ed38  b06bdrv - ok
21:42:06.0025 0x1ed38  [ 9233AB8C0EC650AA464BB53AF7130422, 8FE8E35A6D3DA251B3D57888A9714E8AD514EB0E6F1602A714F28B6230C69C35 ] b57nd60a        C:\WINDOWS\System32\drivers\b57nd60a.sys
21:42:06.0332 0x1ed38  b57nd60a - ok
21:42:06.0483 0x1ed38  [ 5164A66EC1565711A7B4CF2F143B4979, DA29F0FB63F3EB2BF92D51FEB4BB7D2B964553D2F634556325953927464CB3A5 ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
21:42:06.0661 0x1ed38  BasicDisplay - ok
21:42:06.0677 0x1ed38  [ F4C58BBF2972BD84C73F6A14CA35AC4E, B7A226EB861B63ACF4BF9B5A331ACA6FFC9B787DCCAA7697EEFC4F634508A6D5 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
21:42:06.0740 0x1ed38  BasicRender - ok
21:42:06.0758 0x1ed38  [ 25349D0B334E528667980948ED107D89, 70EF9D3B8DCAC6E9720C6F3EBC77392FADC182A6925F9024FE30A21321E0137F ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
21:42:06.0840 0x1ed38  bcmfn2 - ok
21:42:06.0990 0x1ed38  [ 04184C1844974D5E5EEB02BA415D045E, 7B2FB76A88745137A61C04A3CD0E9308A726C4B6C11CEF6335DC1AB43183ABD5 ] BdDesktopParental C:\Program Files\Bitdefender\Bitdefender 2015\bdparentalservice.exe
21:42:07.0097 0x1ed38  BdDesktopParental - ok
21:42:07.0201 0x1ed38  [ DF78B56EEE6004DEE8CE57763128075E, 5758CAF4B0182F3F2E2508B3BB58B0271F2689808D09675B2753FE373D1D77D2 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
21:42:07.0219 0x1ed38  BDESVC - ok
21:42:07.0318 0x1ed38  [ 3AB8C5FA9589B637930783165DD94E54, D74DF8EE20C13AA6A6C6D1ECCFD547174EF1AA8C9A69E51F79ABA3430F28ACC3 ] BdfNdisf        C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfndisf6.sys
21:42:07.0434 0x1ed38  BdfNdisf - ok
21:42:07.0466 0x1ed38  [ E2C24DBCCD01794E5C6BE19748DF2769, 0739C75F6630FA83609F5B2AB4DD22C5ECAC9E43F96FE9C730C9DF6899AACE66 ] bdfwfpf         C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys
21:42:07.0616 0x1ed38  bdfwfpf - ok
21:42:07.0648 0x1ed38  [ C0247341C1BCD7FF2742821D0AD7AFBC, EC2B246F3233302DB540394AC0F11F294CA16FB9E44110126CC9807BAC20EA35 ] bdfwfpf_pc      C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys
21:42:07.0749 0x1ed38  bdfwfpf_pc - ok
21:42:07.0816 0x1ed38  [ F7F20DFE87C425221D8FCE77C5ED46AC, 3AE738763DDC896E0C723C5D7D270B52CD20B52EEE81DABED2C0D311356C7F04 ] BDVEDISK        C:\WINDOWS\system32\DRIVERS\bdvedisk.sys
21:42:07.0864 0x1ed38  BDVEDISK - ok
21:42:07.0912 0x1ed38  [ 1E8A9267F8886803AAE02982FC1B5BC4, 655DF84E037BD6E582A6BA89737A4388956219171AF7253D126E54A23F16BE59 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
21:42:07.0941 0x1ed38  Beep - ok
21:42:08.0124 0x1ed38  [ 7FAFFFC4C59F5010D6E7CEA152076B92, 945FD6C04E109D4E5A4164BAA9A8120EC85AB809555AAD83E61B9F179F976FD7 ] BFE             C:\WINDOWS\System32\bfe.dll
21:42:08.0193 0x1ed38  BFE - ok
21:42:08.0476 0x1ed38  [ BD60F5633F6BD617D9ECCA3FFDC0D37E, 2F0DECAEB7096CD628387263381E123C883F483BD87F7F2BA6DEFBB5A184BAA3 ] BITS            C:\WINDOWS\System32\qmgr.dll
21:42:09.0059 0x1ed38  BITS - ok
21:42:09.0214 0x1ed38  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:42:09.0357 0x1ed38  Bonjour Service - ok
21:42:09.0371 0x1ed38  [ C9FD65687EF89715999C582D3E568812, 42BA59A78A47C510CB2AFDC6C6080B33F9F611F84FEE5262DFF16D7633C50EB1 ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
21:42:09.0384 0x1ed38  bowser - ok
21:42:09.0438 0x1ed38  [ EB4F4B88DF20C7B134F33A64EFD56BED, 7C32485FDDEEA23760DF24FC9576FBA11330C5BBA9053869FDAA9AD8A16B1610 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
21:42:09.0457 0x1ed38  BrokerInfrastructure - ok
21:42:09.0508 0x1ed38  [ 2AAD720B32904B97EDD8C3211344F79E, 41B1AEA5FAA48033B2581E18D68EFC986C3D65B383847E250C054CE3133A893C ] Browser         C:\WINDOWS\System32\browser.dll
21:42:09.0562 0x1ed38  Browser - ok
21:42:09.0834 0x1ed38  [ 910B5BF2353D5D982D2F6B8F6454A00A, E27A0E9EDF50A935E83F4D5BD86C9B9B297F1B8193AFB7C28313B28B5A4B27A5 ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
21:42:09.0981 0x1ed38  BstHdAndroidSvc - ok
21:42:09.0995 0x1ed38  [ 6A4D927BDEE8D9944FAA0012AF7AD232, F0B8642FB02628899CCE526A59A18E0A89456AA2385E82CD97B25CFC64C0E92E ] BstHdDrv        C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
21:42:10.0066 0x1ed38  BstHdDrv - ok
21:42:10.0140 0x1ed38  [ 95B960980034877821E7FB5BFE25136E, 64EA26E9E94767C9EBEEF26FEEAA3176BB7787785F5F20CB8BBB4C75F45AAAA1 ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
21:42:10.0159 0x1ed38  BstHdLogRotatorSvc - ok
21:42:10.0272 0x1ed38  [ 5EBFF8D302047F4709F3A4F1231236E9, 84010BB25C4C029C03C98853E8AC75F103D1F34922B0643ECD758CE21E7DE4A6 ] BstHdUpdaterSvc C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
21:42:10.0409 0x1ed38  BstHdUpdaterSvc - ok
21:42:10.0443 0x1ed38  [ F8DD3B0EAC1EF1D087AE47E5819540AC, 866C951B52E3202AC89552AEA72A45123367199335578F03815E2ED55DA2FDAE ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
21:42:10.0501 0x1ed38  BthAvrcpTg - ok
21:42:10.0564 0x1ed38  [ 647E2A425AD43637EAA01096A58B7089, 8F76D024FEBCBA1AC54363133DE1E0DD5B9D696E5E688EFEBC3B79F7F1B9C568 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
21:42:10.0625 0x1ed38  BthHFEnum - ok
21:42:10.0642 0x1ed38  [ B95040CAD3434D9EE003065363A0FAFF, D441E0676EA1AE1ABC305732024311CA59715E6763B3D7ADB728DEEFC403E182 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
21:42:10.0682 0x1ed38  bthhfhid - ok
21:42:10.0737 0x1ed38  [ F334BF7B0737CEB3B6822631EAD55A87, 4E5AEB1F8E109BA01A5D1CDE2E3C677FF07F2AFE8B195CB5F82AA28816D2060E ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
21:42:10.0777 0x1ed38  BthHFSrv - ok
21:42:10.0795 0x1ed38  [ 29AEE352AED4FCD2191436D263D75347, 3D21262EA26BF423BFA4A9146E53F8B036B2A1157DBE91A11C5603AF7A670B6F ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
21:42:10.0851 0x1ed38  BTHMODEM - ok
21:42:10.0892 0x1ed38  [ 26DD0127A05B333E36316E6EA9A6AAE2, A2DC4483FF5639EE8DD315AB2989865CA6A6992C578FD7F7D31698A015355941 ] bthserv         C:\WINDOWS\system32\bthserv.dll
21:42:10.0933 0x1ed38  bthserv - ok
21:42:10.0970 0x1ed38  [ F34AD5A9F944D91BD285D1C29EEECB2B, 2EDA8C481B7F7F49AC8399485AE7C2D182568EE2E62394DC78C9A821ADAEA5EC ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
21:42:10.0998 0x1ed38  buttonconverter - ok
21:42:11.0699 0x1ed38  [ FECA9F830A5C6BAB9978E6781A26AE2B, CA1681A2F4FA849815B8E823805E078DB9C050CEE86E9E394B2A37B57CC474A6 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
21:42:11.0903 0x1ed38  c2cautoupdatesvc - ok
21:42:12.0337 0x1ed38  [ 5B33709F7FE59BB625F113EED86AFC5C, 8D29FE242D55526FDEB2CB4009B5DE19C93972E872BE6328AD3305E360A3D44B ] c2cpnrsvc       C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
21:42:12.0991 0x1ed38  c2cpnrsvc - ok
21:42:13.0059 0x1ed38  [ A10A1E05A943B10ECE5D57D131B7404D, 71BB816B6841001A4305DF1814926B639265E91895CA5D06284B0970E40CE386 ] CapImg          C:\WINDOWS\System32\drivers\capimg.sys
21:42:13.0071 0x1ed38  CapImg - ok
21:42:13.0108 0x1ed38  [ F2829DC6D292DCAC5029893BB2E9FEE3, AF2A25722D3BE37BABD1F6668786AAF39E9D6CA18CE8E845E63266E218C64526 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
21:42:13.0181 0x1ed38  cdfs - ok
21:42:13.0314 0x1ed38  [ F3A9E38AE23AD4015764AF89E4AE3519, 57ED6AC834177E128720FEC5B5793F35C7C36474E2D787F182B6730933222CC9 ] CDPSvc          C:\WINDOWS\System32\CDPSvc.dll
21:42:13.0482 0x1ed38  CDPSvc - ok
21:42:13.0559 0x1ed38  [ CA160E02F35A61C6F5C681FB4669C519, E6BC66156EE226F16804C4FDC8A60EB15CE6212EAFB9FB841FAC899979E140E2 ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
21:42:13.0748 0x1ed38  cdrom - ok
21:42:13.0883 0x1ed38  [ 320E7A02D81A468E8C1FEEFDB856AFAE, E65127D3D6B628F9D19EA509FEBD9E4DC1BF20D0C62C3C9E1D7087DF972B2AA7 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
21:42:13.0995 0x1ed38  CertPropSvc - ok
21:42:14.0036 0x1ed38  [ 60D7D304DF75DFF6A46CF633F583B592, 4141D8D1C6FE829C02053DA91AC6B0628BDEB3322CAAD4AD958190F9D173340E ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
21:42:14.0187 0x1ed38  circlass - ok
21:42:14.0322 0x1ed38  [ FF9D4BCE19E5D36CB3A845A3286DA6C3, A0E2C38D629359EEC6F8EEC6F92A3E571AEF018BAF259F395DC497ED4827460B ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
21:42:14.0348 0x1ed38  CLFS - ok
21:42:14.0541 0x1ed38  [ 5C4648673693724C8D4A1A92E1AA06E6, 5D548241715687BFA52E40B867EF73CB45D01B7F9A9B7F00B92BF2B4C97BE1D0 ] ClipSVC         C:\WINDOWS\System32\ClipSVC.dll
21:42:14.0692 0x1ed38  ClipSVC - ok
21:42:14.0721 0x1ed38  [ 8EBA63416EC166EBA6EF6D34A505D8C8, 5EB0236ABEA2277B71D9F009DA71934C618606B20BBEC07B8595195E40C12A2B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
21:42:14.0763 0x1ed38  CmBatt - ok
21:42:14.0918 0x1ed38  [ 3B64DA873CEA5BEC42570BFF1054A014, 3649B25855CB9BE5BA3B3FEE4221575381FB2D488B8B050B5DD0088386AA0F7B ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
21:42:15.0149 0x1ed38  CNG - ok
21:42:15.0178 0x1ed38  [ 5EEA0856000F81B3D709BC81B3AA1EF2, C04E4E31D3FC38102BA410D312F58AF848920EE37004A5C306D79229C9B6079A ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
21:42:15.0245 0x1ed38  cnghwassist - ok
21:42:15.0299 0x1ed38  [ 81F2B52C47B8AD32CC4FF967FC8D73DA, 13D84B4096E0F9AB9D04F6CD9E9C0DE4B6DF6F11D63C797266D719FD2429A655 ] CompFilter64    C:\WINDOWS\System32\drivers\lvbflt64.sys
21:42:15.0478 0x1ed38  CompFilter64 - ok
21:42:16.0146 0x1ed38  [ 74CD3BF688E2B408227FE012A2F2D8ED, CC01AC79CEB9DC94FA5675D66F048928C9968B8944E34F5482A73C14B70EE8A8 ] CompositeBus    C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_98334ba6e76853ba\CompositeBus.sys
21:42:16.0250 0x1ed38  CompositeBus - ok
21:42:16.0255 0x1ed38  COMSysApp - ok
21:42:16.0317 0x1ed38  [ D38774D1D383A2CDB9A4F64B7206913B, 6CDDC46D1D431342F00CA537FC327B23B8AA4D513CEEEE61F3E19C77975DF9C8 ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
21:42:16.0335 0x1ed38  condrv - ok
21:42:16.0415 0x1ed38  [ 5C2C63BC5CE4A753C16CED512F91A04D, 4ACFA702B4CD7E30525D9595533E6B8EACBFF7F38EE7A05E8AC087BB229AD9D4 ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
21:42:16.0440 0x1ed38  CoreMessagingRegistrar - ok
21:42:16.0517 0x1ed38  [ 35DB06AACD8AD5999161DA71FF0E16F0, 22AD27811AAD14666ACEF4115447B0CFAA70D1E73923059FB2A9B4C3CBE500A6 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
21:42:16.0546 0x1ed38  CryptSvc - ok
21:42:16.0658 0x1ed38  [ 838755238B2BAE5A4802B038443B8A22, 1A89E413C6E5C3E8C2B64F8A1D41271D3FA39BC67291331FEC8DCFD4F8CCE994 ] CSC             C:\WINDOWS\system32\drivers\csc.sys
21:42:16.0675 0x1ed38  CSC - ok
21:42:16.0827 0x1ed38  [ 7D64B14DAFEBBC19A87EC9D5B862F6AA, BE7510E618566FEA013E2E77CE4C7C160BADE105C493424595A15D0A7F1615CF ] CscService      C:\WINDOWS\System32\cscsvc.dll
21:42:16.0878 0x1ed38  CscService - ok
21:42:16.0937 0x1ed38  [ F038EAF73AAB72A4A89185A5A7B9FD75, 8213A60B3BEAFC1C554C5D049DFE3C6E44CEFE639EDD6A335AC18A9DAEDA2D4B ] dam             C:\WINDOWS\system32\drivers\dam.sys
21:42:17.0077 0x1ed38  dam - ok
21:42:17.0495 0x1ed38  [ 5E57B9FBB4E9C43EE5B69BEE01A1819F, A1F8D1E52AF446CEA2EB50064E3A24B713B19197D61C3EAECB81B3CCD80558E7 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
21:42:17.0572 0x1ed38  DcomLaunch - ok
21:42:17.0689 0x1ed38  [ 0605AB12BF1856DF21AB708F28EA91CF, 3A6A7F8F84044DC1EA490A007E6DBC52203BA237ECF1B845961D9BB95E9BF8C8 ] DcpSvc          C:\WINDOWS\system32\dcpsvc.dll
21:42:17.0826 0x1ed38  DcpSvc - ok
21:42:18.0052 0x1ed38  [ BABB7BB5AD3CECFF466E6080F43CFC58, 1B8FF66557EC4C749156ED6DACC4D61D5DC4E25DD58F6DB3713C356214B80FDA ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
21:42:18.0214 0x1ed38  defragsvc - ok
21:42:18.0440 0x1ed38  [ 63C9464B165D31ACC46B6B089AB36B41, DE38DE4E6331D07630B63224F8014C27368C29791EDB58CC5DAE7CBACD37160A ] DeviceAssociationService C:\WINDOWS\system32\das.dll
21:42:18.0567 0x1ed38  DeviceAssociationService - ok
21:42:18.0676 0x1ed38  [ 7B3DA16FAA498838BB457E0B7E380EDF, B73DCFFA60886F10765E4B76A58CFF18C08CAFEE620700361FC8FEC7E80B5958 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
21:42:18.0890 0x1ed38  DeviceInstall - ok
21:42:18.0994 0x1ed38  [ CF3895DD260ADE05BC91D8FBE0A82907, D7D8A29E873BE5C3832C9264F0165F6CD50D42ED0E04B0FCF07F054793092334 ] DevQueryBroker  C:\WINDOWS\system32\DevQueryBroker.dll
21:42:19.0015 0x1ed38  DevQueryBroker - ok
21:42:19.0157 0x1ed38  [ 25435407D97419627F4B10653433BF2B, 5429B0DB7C5302E9A6AF92C046637183D4147D4A206963ABEA3A611214D6AB04 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
21:42:19.0178 0x1ed38  Dfsc - ok
21:42:19.0346 0x1ed38  [ E59C209F1F633C1AEAF151B2CA46BBAA, 6A4DA927418B56A228CC8D9DFA3351B2B53A9328F5C56C10F0C7B19974B2ED89 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
21:42:19.0409 0x1ed38  Dhcp - ok
21:42:19.0580 0x1ed38  [ 95AA7877FD4161BFBC8493F9279B1901, F6B7DF75D763A89901BD12454BEF92D161B392F721B8568505073929D9F419BD ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
21:42:19.0777 0x1ed38  diagnosticshub.standardcollector.service - ok
21:42:20.0398 0x1ed38  [ 58395E37ED838B93A56F1D089C2F53CF, 57D167B58DF5B33F7E2A98E1B8B33C8F076D34CA032D22F050AE6F83A48DC8E6 ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
21:42:20.0512 0x1ed38  DiagTrack - ok
21:42:21.0265 0x1ed38  [ 91DF13EC831BDCFA36A7A12CD13D66B9, 5054281FE91D4BE0DB446F6F30E3D59E669185555F6C20B988DEC250713FFCED ] Disc Soft Lite Bus Service C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
21:42:22.0238 0x1ed38  Disc Soft Lite Bus Service - ok
21:42:22.0282 0x1ed38  [ FDCD449AE9E75D7690593D16ADAF4DB4, 3366C4BDB031EB525F85850E903C46802A2AC762C0772C6F6E543DDA4AF1E9D5 ] disk            C:\WINDOWS\system32\drivers\disk.sys
21:42:22.0326 0x1ed38  disk - ok
21:42:22.0501 0x1ed38  [ 8E481EDF066552D551613EC9FE7D179F, 96E955CA82B4CDEC00ED08003FDC8DD61E685F421912EDBF7B0DA740048416F9 ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
21:42:22.0759 0x1ed38  DmEnrollmentSvc - ok
21:42:22.0862 0x1ed38  [ F10A8F6D036CEDD14A5471782C52F041, E0DA3C4F76DBBEAED549375E57819F8825B33A118F7674D417D294054863F648 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
21:42:22.0883 0x1ed38  dmvsc - ok
21:42:23.0012 0x1ed38  [ 7228733177F673B4D51BD1AA082D47C1, DBE155CDCFAA7C32407A207F637F252FA0CE30F1DE7E7DBEC42DB37FADB5BFA7 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
21:42:23.0138 0x1ed38  dmwappushservice - ok
21:42:23.0305 0x1ed38  [ 592E41B3C11CA12203D3708AD8FC3D37, 6C69D5D603FBF038C069EDDCE29F7C6A60CAAE58B985AB218E1497F2BA934D42 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
21:42:23.0411 0x1ed38  Dnscache - ok
21:42:23.0552 0x1ed38  [ 6184C7A2F12625C108AEFD3A43429967, 689153F319BB1013FF60F71317E8380A6945EEE8141EDBDD6B185A966E23BB93 ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
21:42:23.0693 0x1ed38  dot3svc - ok
21:42:23.0850 0x1ed38  [ A616D8297C1BEA690BBC796736A7A78D, 9365470F4609606410AD79D98E1E77D815DC7C5AA924FB639FCF713EE8EDEA76 ] DPS             C:\WINDOWS\system32\dps.dll
21:42:24.0010 0x1ed38  DPS - ok
21:42:24.0129 0x1ed38  [ 45771610FF181434073B5A0A00F20F8D, 6A17DB09AA6D021F000F7315317235E1FCF41FD58EA7DF81A7C9F5A6DE999984 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
21:42:24.0310 0x1ed38  drmkaud - ok
21:42:24.0511 0x1ed38  [ 00D9A948FB7344C62CEBED88E50EE39A, EF33FE7FB34DE571F3956C1F7AC8EFAA25BFD9F3AFA3ECD25DD34C5890873245 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
21:42:24.0555 0x1ed38  DsmSvc - ok
21:42:24.0750 0x1ed38  [ F2328181D289CE83E9979733EAB6742A, 73B1CDA6ED8C42B36126909F1335B72126A5DDC6FC7CE8BA2CA274A2B92E82FD ] DsSvc           C:\WINDOWS\System32\DsSvc.dll
21:42:24.0930 0x1ed38  DsSvc - ok
21:42:25.0184 0x1ed38  [ 496C3C6BC3D930D0960C9E75AA30F4A7, 3FE0E86DA8C2C6A990BB2F1B92C22BD3483882B8D69FF8025BB68A199362C234 ] dtlitescsibus   C:\WINDOWS\System32\drivers\dtlitescsibus.sys
21:42:25.0412 0x1ed38  dtlitescsibus - ok
21:42:26.0215 0x1ed38  [ 310334DAF2C455744703E2D582942DF3, C25C42B4C5BA3456DCB2C24546D7E38A9F5321992B81138A8BDCE021C4BE6D13 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
21:42:26.0318 0x1ed38  DXGKrnl - ok
21:42:26.0465 0x1ed38  [ 6E36BDBB46DF7F865D0DD30663AE3891, 98967B01EA450AD4D5FE8085F710359C022D783B839A51BD4A266718156B01EB ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
21:42:26.0520 0x1ed38  Eaphost - ok
21:42:27.0418 0x1ed38  [ 3070013B01EDA42C7EB67D731340C396, C083CA05650750876E70CB6AB51D5C047C06098C2ED86B083A74C97830247BFC ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
21:42:27.0606 0x1ed38  ebdrv - ok
21:42:27.0653 0x1ed38  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] EFS             C:\WINDOWS\System32\lsass.exe
21:42:27.0748 0x1ed38  EFS - ok
21:42:27.0810 0x1ed38  [ 59EE187E333EE9914DD9BEA5F4E0D85D, E34BB8075E38FC6AEC056323C6E3B5B4E7041EE6F4D51699B706DEEA18BDB911 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
21:42:27.0891 0x1ed38  EhStorClass - ok
21:42:27.0908 0x1ed38  [ 9297F1CC486F24BDFD2874156AC5430F, 1AF8689ADE4E658FC9418F7886B6C19F7D005EAB2AEF9B0E14FC81C61A74CECF ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
21:42:27.0921 0x1ed38  EhStorTcgDrv - ok
21:42:27.0963 0x1ed38  [ 9E8FF6B95FD420FA9E40BE548E5C8D92, 8825B81418335D03CFAADB792C1466023C459BE489ACACBD6686FFB544F22D30 ] embeddedmode    C:\WINDOWS\System32\embeddedmodesvc.dll
21:42:27.0975 0x1ed38  embeddedmode - ok
21:42:27.0998 0x1ed38  [ DC2F91EAE9A28FA8C6610A9B7701B70D, 480DB509BF944AAC3617594F1245B4603069DE39186BC1FA7EDB8E0536B05E79 ] EntAppSvc       C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
21:42:28.0067 0x1ed38  EntAppSvc - ok
21:42:28.0136 0x1ed38  [ F7FCCA6300485EF60CEA6D991D6C8C78, 24080D80CF1FD678DF4C9CAE70F65F8D9232F5F6A6F2B73A77B5E3C91E6505F3 ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
21:42:28.0702 0x1ed38  ErrDev - ok
21:42:28.0984 0x1ed38  [ 2093F65AA84478E28C8E9D05BC413845, 086D4E0D4B993F4041AA8A9DCBEEDB53BD05B88E2BEFB218837FB10FACDF4233 ] EventSystem     C:\WINDOWS\system32\es.dll
21:42:29.0127 0x1ed38  EventSystem - ok
21:42:29.0254 0x1ed38  [ DCCDC3F35F0618692117DF90800A4284, B636B2A39AE89A9C2CDE17EC52DA669DA8AA9E2B04CA5CA19926DA8009655244 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
21:42:29.0286 0x1ed38  exfat - ok
21:42:29.0305 0x1ed38  [ 435FC0D25ADFD1A2FBA8C98BD4D79E23, F89D02518923D5AAB4A63686F26EE6118584AA9641D2C0B5B1AE4A728D5C06A4 ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
21:42:29.0336 0x1ed38  fastfat - ok
21:42:29.0440 0x1ed38  [ 046FC9CF53A91E2FBA498CA7B0C3B028, BCFB06DF53065706DD6287E8C47BF5047F8A1E33981E1881E6ED7510337F5BC8 ] Fax             C:\WINDOWS\system32\fxssvc.exe
21:42:29.0485 0x1ed38  Fax - ok
21:42:29.0533 0x1ed38  [ 4E4B7D935DBF522B2F23D3573596181D, 9D0EC9F65920EE0FFFB2D49C58E4D5151C8CEEB7AA82543D226E4B84EEE4B3F0 ] fcvsc           C:\WINDOWS\System32\drivers\fcvsc.sys
21:42:29.0536 0x1ed38  fcvsc - ok
21:42:29.0551 0x1ed38  [ 583EB1C7690E361213BBD0472155128B, 5F5871490A6DAC4A824F4428941AC86FBFA9AA349B99B5D9544E5D62EB459FA8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
21:42:29.0567 0x1ed38  fdc - ok
21:42:29.0626 0x1ed38  [ 94B1A46EDD335F0C54C7BDAFC43348E6, 58073D58D0BE7389C2A4736AFE108835E5AE9C9950FF630644F585C99B964043 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
21:42:29.0673 0x1ed38  fdPHost - ok
21:42:29.0730 0x1ed38  [ BC855BB7DFE06F27F78E0EB2A8CCB70D, D16C3DAB99C16B077BA5DA5E9E0646B0B9237B00ABAE867D9F81A2D072D583B1 ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
21:42:29.0753 0x1ed38  FDResPub - ok
21:42:29.0793 0x1ed38  [ F1125F20D56F28DDCD1A6F3E81EB4F5F, A6620ECCB15FAA70E4A43ADA4CE82CF97D708B6FA07F3FAED276359E7F92FD0F ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
21:42:29.0895 0x1ed38  fhsvc - ok
21:42:29.0925 0x1ed38  [ CDFD81CACE0E11596A3BB61EC4CF6467, 569FA86A215B054131AA9AFEECFEE7FD7143DCFFE275B84196004AEA538B2476 ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
21:42:29.0960 0x1ed38  FileCrypt - ok
21:42:30.0002 0x1ed38  [ 3F02FEDAE894CBF4BAADDF8C8E1D53A8, DA32ABB1CDA867B8456C46F8581FA7F3A8D8B89D9F6E7422F51941D5FFA15B13 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
21:42:30.0019 0x1ed38  FileInfo - ok
21:42:30.0047 0x1ed38  [ 2824933386E30DE5BA089DF539CE19A3, 7B33E514576C68B444AE99CBA1360EBFAE8A46EEE5C01F4EE4CF471A712AB148 ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
21:42:30.0050 0x1ed38  Filetrace - ok
21:42:30.0059 0x1ed38  [ 6A598249640F8BEDD79EC73917E1664F, A675238EA19E6632CDEB4EEFF7CF509EAAEF76AD8DFD247664E5607555D9CEE1 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
21:42:30.0090 0x1ed38  flpydisk - ok
21:42:30.0175 0x1ed38  [ 44B6A6832134DF651E887E941478CA35, FCF4EB726D00F5A17DD66C81CFDA49427281C94CF9CA2008397D591AEA61AE05 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
21:42:30.0222 0x1ed38  FltMgr - ok
21:42:30.0603 0x1ed38  [ C197284A9D565A38497733AF2BDFA111, C6615AF0D366C2DD6D431B073901EED02D49AA3F252230735DBB52A90BCFA833 ] FontCache       C:\WINDOWS\system32\FntCache.dll
21:42:30.0707 0x1ed38  FontCache - ok
21:42:30.0960 0x1ed38  [ 109AACC7FB0170535F71491F673AFD38, 212B6761ABBAC29993DA0A47C3DDE8074EA9E5A8FFA8FF6EAB95AC69D8FDD5A0 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:42:31.0095 0x1ed38  FontCache3.0.0.0 - ok
21:42:31.0168 0x1ed38  [ 3F3B9E8CECD5604BC7746EF3A852EB67, 51AF62A9563379266C0C873E82F55427900032DFD7AC3EBDCDF77F8F8DE91A5D ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
21:42:31.0269 0x1ed38  FsDepends - ok
21:42:31.0295 0x1ed38  [ A60583221C7BB7CEC35C63285A297BE1, 3C842FBEAD1FA2BD8D37B2B0E8EDF77F4F50508C56FB25DFA81DE9679090D51D ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:42:31.0318 0x1ed38  Fs_Rec - ok
21:42:31.0525 0x1ed38  [ 58013A50225174EEF1410E37795D7908, F8E557CA4110ABB203192DEAF59D91A5FEF2A5EA394637276DAB7F4D2E7BFA39 ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
21:42:31.0584 0x1ed38  fvevol - ok
21:42:31.0624 0x1ed38  [ 0DAAE3EFCE00133AB3E383A36C47CDAF, 9145665F4F0575F951803AAFAA1A7DC0FAA35430CAE7D90E902074D60D6F4C62 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
21:42:31.0655 0x1ed38  gagp30kx - ok
21:42:31.0731 0x1ed38  [ F59155B95D01C08F9ED774B626B504A1, EF0FCF35AD9CD5E5D695F0C064244D2B327E7FB10FD7CBB0586253EC75562918 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
21:42:32.0250 0x1ed38  gencounter - ok
21:42:32.0302 0x1ed38  [ AE24452F55C6F1784CBD7489D0CDDB02, 4E13C51CBF30A8662B1180AC74E968CFC428B6EA7931F09357E7D120063D4823 ] genericusbfn    C:\WINDOWS\System32\drivers\genericusbfn.sys
21:42:32.0342 0x1ed38  genericusbfn - ok
21:42:32.0507 0x1ed38  [ 96F0D3A583A91B634EE2AC2507356EDC, 43D2575F33D28F61C13D2DCF358BFA9DCEAE276C83152DBE7AE2020A66929CD9 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
21:42:32.0819 0x1ed38  GPIOClx0101 - ok
21:42:32.0980 0x1ed38  [ E50CE978F571B900D9A7E2F1C5BCC070, EA14873A5F1B700D7CDBE55B9D214DC457262866A90D80B3E8325A8EB7932CE7 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
21:42:33.0038 0x1ed38  gpsvc - ok
21:42:33.0076 0x1ed38  [ BA2455D93BD57989A04FE4094AA6F941, B579FB367C063EA30C034381148410D49D38E183A5A4D51D2334A81DAEE95CEC ] GpuEnergyDrv    C:\WINDOWS\system32\drivers\gpuenergydrv.sys
21:42:33.0203 0x1ed38  GpuEnergyDrv - ok
21:42:33.0350 0x1ed38  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:42:33.0462 0x1ed38  gupdate - ok
21:42:33.0571 0x1ed38  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:42:33.0574 0x1ed38  gupdatem - ok
21:42:33.0713 0x1ed38  [ 06BFA49C4D999E93E214DB4E8044DE0B, 5E339A2A6858AA59F8B0879AB4CB87DBC6622322259CB612594552DDE831ACD0 ] gzflt           C:\WINDOWS\system32\DRIVERS\gzflt.sys
21:42:34.0798 0x1ed38  gzflt - ok
21:42:34.0873 0x1ed38  [ 1E6438D4EA6E1174A3B3B1EDC4DE660B, F9995CFEC7BBFE10B06EEE04CA6B49658275C43096E57747BFF9C2C31A0F9011 ] hamachi         C:\WINDOWS\system32\DRIVERS\hamachi.sys
21:42:35.0106 0x1ed38  hamachi - ok
21:42:35.0145 0x1ed38  [ C277A49F8A8295840DEBC9240B75A282, 8B2BA0E6A8300323765D95ECD843105B0FC4B80B85EE2220E677C4E9A760C9D8 ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
21:42:35.0242 0x1ed38  HDAudBus - ok
21:42:35.0338 0x1ed38  [ D5A57EF4822A0388352FFF9F5CD53495, 509F365386859157E9078821FAA56D2A3C0BA296CA129E0D42453428A14687A5 ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
21:42:35.0478 0x1ed38  HidBatt - ok
21:42:35.0623 0x1ed38  [ 39575B53EB80C77FF2A3F1449D00B7F5, 37E66B38BACE00AFEF7093F990A234399D8451A9D2C2C8CBECAB69C664E63EA6 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
21:42:35.0868 0x1ed38  HidBth - ok
21:42:35.0897 0x1ed38  [ 35C3B602664116E737FF729F9A7156AD, 7A3C5CAD716E819CC53405971F3ACD135BCF023EC2228C1095E2116BCC384E62 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
21:42:36.0001 0x1ed38  hidi2c - ok
21:42:36.0085 0x1ed38  [ C4ABE526BBF2A18E8AF70177FBAD9C6E, 4DA06B563A08AC15D949F4599F73F172B3BFCB5D23B34240D1E2114438A11929 ] hidinterrupt    C:\WINDOWS\System32\drivers\hidinterrupt.sys
21:42:36.0145 0x1ed38  hidinterrupt - ok
21:42:36.0231 0x1ed38  [ 348416C7D7EB05BC3099FE2F2B27985C, F30E8682E9DD731A1AD7328FB8A48A2BB7D6E52780AE1FDE839D26E84B4FA7B5 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
21:42:36.0418 0x1ed38  HidIr - ok
21:42:36.0591 0x1ed38  [ 5576DF399CF2D3B63608F7F282151249, 04939E79B8B8035547CE6FFE9001252CA810BAD46D8DB75FF5C13EB10EEB5C57 ] hidserv         C:\WINDOWS\system32\hidserv.dll
21:42:36.0972 0x1ed38  hidserv - ok
21:42:37.0109 0x1ed38  [ 01F732724AF6EFE69886DA95A4E51820, E048A480F9396418BDE9659596E7EDA5FF97D3CE029D186048609B47575BEAE1 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
21:42:37.0294 0x1ed38  HidUsb - ok
21:42:37.0504 0x1ed38  [ 7433A8D28EE11A661C7A45AF28BA7987, 8A73DB423924E84CD3629BF6C7298CD093D2437B73B3F4520D39330923DDA2D6 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
21:42:37.0696 0x1ed38  HomeGroupListener - ok
21:42:37.0974 0x1ed38  [ 3FDBFBE5AE639996EB8D482C16BA7EA9, 7E48304818AABB4C5B0CB7FD32D96D6F90F4180AB0F668A2FE653A7097A40673 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
21:42:38.0030 0x1ed38  HomeGroupProvider - ok
21:42:38.0775 0x1ed38  [ 7B7DE6B3DC30F3246958F42C67A6F7BB, 4B66B90CFEC2231B905B21DECC4EC7C6500E546F080A452EF67E724EDF37ADD9 ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
21:42:39.0868 0x1ed38  hpqwmiex - ok
21:42:39.0884 0x1ed38  [ 3844CE7DD23530CAD59D8CABA57CCB05, A44BB60686A0E98FF370D9DED5B32C3F34F0352ACFA3B3052BA4023922B53DB7 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
21:42:39.0911 0x1ed38  HpSAMD - ok
21:42:40.0025 0x1ed38  [ A0FFCF6391B5270B2A34E379DE446878, 8AFD522ED2488723D2B72B7BA214272E6ABFAC4F3AA589888FFB35A0A44660CE ] HPSupportSolutionsFrameworkService c:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
21:42:40.0479 0x1ed38  HPSupportSolutionsFrameworkService - ok
21:42:41.0066 0x1ed38  [ 0527D8DE2738B88966F90B5B8CC0708B, 3CAE40CD21CAE4E6E959B20D5B980E64C3108FAB8CD2E42176E0D1F12928A498 ] hshld           C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
21:42:43.0218 0x1ed38  hshld - ok
21:42:43.0289 0x1ed38  [ 73A2771CE44877BFE39366664C8B8131, 63CF80526FFBFF6F4FFFE8E4AD84E67468354807BB8A115154F9504622C8F969 ] HssDRV6         C:\WINDOWS\system32\DRIVERS\hssdrv6.sys
21:42:43.0994 0x1ed38  HssDRV6 - ok
21:42:44.0083 0x1ed38  [ 8A343814CB1B1DA2961C0573CCF0C39D, 4E08D3068131E0FDBA7F1398586D13D1DDA48FFEDFF0E238915D1FBC70C5BCCD ] HssTrayService  C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE
21:42:44.0637 0x1ed38  HssTrayService - ok
21:42:44.0883 0x1ed38  [ 292DF49003B7F412811E16EC5786253E, E8A9A364E3FBEC345EA8744E64928DFDA2DC9ACFC1F781A3390B22369F67FBA3 ] HssWd           C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
21:42:45.0660 0x1ed38  HssWd - ok
21:42:45.0989 0x1ed38  [ CA6EADBB8731CA27BDA4037BF290AC14, 31EC9397D55D4EEC416AD722134E2D6B5D14E46D2150CB94889C4BFDAACBF421 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
21:42:46.0055 0x1ed38  HTTP - ok
21:42:46.0136 0x1ed38  [ 8841D927EB1F7FFC8B1805BC0CF190ED, B063E686380EEF582CF736E33751812F0041C593C7F30EE97D13DEDC9B246AB5 ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
21:42:46.0256 0x1ed38  hwpolicy - ok
21:42:46.0350 0x1ed38  [ 53436C3835E80F4421652A67F44D6313, 8731091945A839713348DF3060A4C96033874E2B3DC7E099BEEC8C65B07F98CF ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
21:42:46.0552 0x1ed38  hyperkbd - ok
21:42:46.0593 0x1ed38  [ B2DC6C2F313EBB967B556B4E73A75451, B1816A0AE15705F0325F167EA76166779607D6086EC36A4A960E3BA47B4EBC4B ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
21:42:46.0781 0x1ed38  HyperVideo - ok
21:42:46.0857 0x1ed38  [ D4CDEE4A62BDFFF6E8558A9552148EA7, 55306786CB45082AE374937EBA256FF9CD640BB2E8C19DC6C704489D4743F5CC ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
21:42:46.0975 0x1ed38  i8042prt - ok
21:42:47.0031 0x1ed38  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
21:42:47.0089 0x1ed38  iaLPSSi_GPIO - ok
21:42:47.0141 0x1ed38  [ F1DF87463AC308047B089E9F0456B4C8, DFFF3C63D3124C2B879B888104042406FE326D4E7C8C1881A269BD4287B9CD33 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
21:42:47.0196 0x1ed38  iaLPSSi_I2C - ok
21:42:47.0374 0x1ed38  [ 9FDD4763A115D04F565C38183DE4646F, A8B0653E7C5F5B3CB2A1B642F502269FB1BB1E35DBB1CBABDBDADF92C9815727 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
21:42:47.0468 0x1ed38  iaStorAV - ok
21:42:47.0651 0x1ed38  [ 4E69EE8F8E5DA036535D433C544AF9E2, 2ADE9B97CE1C19FF984D8BB99CF31415872C2D9628864BD78C0E44D21CC94EE3 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
21:42:47.0681 0x1ed38  iaStorV - ok
21:42:47.0809 0x1ed38  [ 15C59DF20F74A0C2C764B991FED7F4A5, 6E9804775E815F32A4D73C346E627D64A3096525E78FAE3B6E43CFECAE270428 ] ibbus           C:\WINDOWS\System32\drivers\ibbus.sys
21:42:47.0894 0x1ed38  ibbus - ok
21:42:47.0970 0x1ed38  [ 501AEED29B30B32BB50416C1E04380E6, 5488B34F3FE5D3DFEF321C1EC2F1DC38831A06EA5FC0618FEF24367975ACB862 ] icssvc          C:\WINDOWS\System32\tetheringservice.dll
21:42:48.0164 0x1ed38  icssvc - ok
21:42:48.0365 0x1ed38  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
21:42:48.0870 0x1ed38  IDriverT - ok
21:42:48.0880 0x1ed38  IEEtwCollectorService - ok
21:42:49.0121 0x1ed38  [ 6F9C31435DD3E3D3BC247212EA144EBF, 05C4A0BD4BABD27783CEFEE6108C1A05911A212189233F09AF1A56BDC60F60F8 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
21:42:49.0215 0x1ed38  IKEEXT - ok
21:42:50.0475 0x1ed38  [ 622868E4BAE8FBCD22CB1A5901A2C824, C1A2264C0984DD16C83B663C9CE43E049E1356E32C5771C3ACE225F285699138 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
21:42:50.0966 0x1ed38  IntcAzAudAddService - ok
21:42:51.0011 0x1ed38  [ 498759139F71142888CF7EFA1ABE18C8, 9CD0CD748B143F947B4DEDE39344A8C284717CC8AC97E25827EB73CF10831419 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
21:42:51.0197 0x1ed38  intelide - ok
21:42:51.0227 0x1ed38  [ DC270DDCDDC2EF65D484A65CC5166222, A88BEAD819ABEFE28B6F9A10586ADCB0EE2A5ED9273F176E9313750609C7892F ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
21:42:51.0368 0x1ed38  intelpep - ok
21:42:51.0426 0x1ed38  [ B4D9C777762B1F7356958B9C0AA93BEB, F11B07FE939A107AB4EED4857854DF269C2D86A80C8507C8B1E95F7805975EDB ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
21:42:51.0471 0x1ed38  intelppm - ok
21:42:51.0534 0x1ed38  [ 22BD83268B80A8C89AAC0BDF46E4EB5D, E7DC0C2E4104B51EA545BA8D0CFF11FD6A15BFD8EE16E546E8FC220853402CB3 ] IoQos           C:\WINDOWS\system32\drivers\ioqos.sys
21:42:51.0557 0x1ed38  IoQos - ok
21:42:51.0588 0x1ed38  [ A49E47A6E1429123F46A7CA9C05AEFC1, FFD68CA46DFAA4954FD76145808E2C74BDC34FFD6979BB3FB6A3EE4DC33CDC78 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:42:51.0639 0x1ed38  IpFilterDriver - ok
21:42:51.0719 0x1ed38  [ 8FBA61B7CB44F136226BE3B346FC6D19, 2190A523AC948B18C2C7B6DC96ABB654DAB471AD5E5E13F79899416E91777AED ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
21:42:51.0788 0x1ed38  iphlpsvc - ok
21:42:51.0829 0x1ed38  [ E0C276985AF968CE295B8E09C121321F, 07B54165E80D4254C29A6CF00CC634E70F190EF0EB8EEF73EC14F38B841087A5 ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
21:42:51.0921 0x1ed38  IPMIDRV - ok
21:42:51.0951 0x1ed38  [ 5D3744E6FDEC1A6FB3FA9B1DD4AF0694, 209BE9FC25C8BF8CE058B7E993B6A902B881380DADC69F5208733077DA7F4382 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
21:42:52.0270 0x1ed38  IPNAT - ok
21:42:52.0372 0x1ed38  [ B18202D72C0EF4B53CEC6F59E3E1B955, 6DA244E6485372C16CF0B38838DC90B48079A85F5D22B0F2F197C8DA37F0A293 ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
21:42:52.0697 0x1ed38  IRENUM - ok
21:42:52.0763 0x1ed38  [ CD04CBCCCB4C0E4BB06B98E0F45C888A, 106B3E823C188BD14328F2BEA28559D2F637C270064B2FD214522FAC4E616F4C ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
21:42:52.0842 0x1ed38  isapnp - ok
21:42:54.0282 0x1ed38  [ 5D90E942C94B20E0F321015C0ABF3EEA, 4110551B172D4A5524DD857D7CB65FAF2594310BE7883D5641BC0DF5EF49C82C ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
21:42:54.0424 0x1ed38  iScsiPrt - ok
21:42:54.0469 0x1ed38  [ 4192DFE6CA143C0AD8AF42C51A82BECA, 31FB3A261D0D5241CC87EF7DFF8BFC1A1EACE8CEC42138918EC5958DAEE100CD ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
21:42:54.0572 0x1ed38  kbdclass - ok
21:42:54.0610 0x1ed38  [ B63C0DB341DCB46CF7AA259333A737DD, F1B43BA68707F3F99CD31AB2035F5E86CD967AE4E5393928C69861785E960872 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
21:42:54.0739 0x1ed38  kbdhid - ok
21:42:54.0763 0x1ed38  [ 53C79A7FABDAAFD11EAB31963FB2CED7, 357418645DDCEFA5546AE78EDCAE86D50928710CA7A3F65F01CF721AADA36623 ] kdnic           C:\WINDOWS\System32\drivers\kdnic.sys
21:42:54.0776 0x1ed38  kdnic - ok
21:42:54.0791 0x1ed38  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] KeyIso          C:\WINDOWS\system32\lsass.exe
21:42:54.0800 0x1ed38  KeyIso - ok
21:42:54.0876 0x1ed38  [ 1E99B26BDB9B9C9BC775ED4543558560, 890870A6737B4910735D1B23F714AA73FCCD1C131D135FACBA6909F06D31B3FF ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
21:42:54.0981 0x1ed38  KSecDD - ok
21:42:55.0050 0x1ed38  [ 6198A79011C67497B324798B3D4272CE, C587F7D86837550D07918F6AACF26BF65EBAF7FF57475DC9196B4D011E83AE47 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
21:42:55.0077 0x1ed38  KSecPkg - ok
21:42:55.0130 0x1ed38  [ 503597D9B72DBD9998F722F12A51ACFC, 9B3585282191163AA70243BAD921ED8725A98454E0D3879E0F671E0E4F56AB4F ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
21:42:55.0275 0x1ed38  ksthunk - ok
21:42:55.0503 0x1ed38  [ ED5AE20C27F27F293C6C61AEC9881054, 4D5BE394D129BD559B0A9D237F3F59CB3D24C15ABDD97AE2E64931D6B9D14FF1 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
21:42:55.0704 0x1ed38  KtmRm - ok
21:42:55.0889 0x1ed38  [ C529DA0AD5A21878E318801B024AF8E7, A14E8ADCA33C37B1D256CB4926A19F56D2D19B94EDF314A4ED34A8B5AB62CA5A ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
21:42:56.0352 0x1ed38  LanmanServer - ok
21:42:56.0556 0x1ed38  [ D6D9F4CAFD3F1A7E30AD02E508552CD2, F0D225E5951CFE1D8349F634CC91BDD5B3F9DCF6233CCB965E99BFEAFE642265 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
21:42:56.0612 0x1ed38  LanmanWorkstation - ok
21:42:56.0739 0x1ed38  [ 24881F16D2829764681F5FAE7B86D7D3, 290348CFAF3165847E4B53965D22E9D417EE20FFD23293B5C1855C57E6328599 ] lfsvc           C:\WINDOWS\System32\lfsvc.dll
21:42:56.0892 0x1ed38  lfsvc - ok
21:42:57.0042 0x1ed38  [ 6ED675774BDC3735AB6DA12D29F825CF, 4317C7CF491F4E806975E7A973CFF11CFEE9E94730DDABCC67C3D693691DDDE5 ] LicenseManager  C:\WINDOWS\system32\LicenseManagerSvc.dll
21:42:57.0204 0x1ed38  LicenseManager - ok
21:42:57.0222 0x1ed38  [ DB789F57CE94C827FBFF709CA5ABD29E, 4CA4DD079A63649C36F76A31C4081F11F5CF6574AC573B63EF930DB19B1D1C95 ] lltdio          C:\WINDOWS\system32\drivers\lltdio.sys
21:42:57.0253 0x1ed38  lltdio - ok
21:42:57.0437 0x1ed38  [ FECBC6C4981772E5D0F517B34A5496EE, 15DB097BFB221B91E580E5CD1DD6B34A9A2C78A1A6FCE4162A855BB4AFE673E9 ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
21:42:57.0470 0x1ed38  lltdsvc - ok
21:42:57.0553 0x1ed38  [ 24C87BDC66AB192FEB273BEE5FD5AA38, BFAAE1F2450DEBD1A14877C046C6EBA91014DB0B5D0FB95EC14CB714B773B3C0 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
21:42:57.0799 0x1ed38  lmhosts - ok
21:42:57.0873 0x1ed38  [ 3BB39166E446D456C277C17DFEA3DAC6, 1A08E1D017BBCE91E508D876835FA7AD2DA0859A8CFE8F8F31B4F12B48E2573D ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
21:42:57.0955 0x1ed38  LSI_SAS - ok
21:42:58.0024 0x1ed38  [ 25CF625E46307A5D6674C8DFA1A289AA, 1D00EB70B6B0157013A7C15EF194F51B8596612066EF31B337D8134D6BD0BBBE ] LSI_SAS2i       C:\WINDOWS\system32\drivers\lsi_sas2i.sys
21:42:58.0200 0x1ed38  LSI_SAS2i - ok
21:42:58.0255 0x1ed38  [ 722C52B12EA4C198D56994934C9DDAB6, 5F4AB818251C770821BAF41C19B1C483A31CCC28EB96F2084D4092E33EAF906B ] LSI_SAS3i       C:\WINDOWS\system32\drivers\lsi_sas3i.sys
21:42:58.0319 0x1ed38  LSI_SAS3i - ok
21:42:58.0353 0x1ed38  [ 3371FF1D5D745C3306C6A2C4E99C25A9, DD6F0099001501BAEDDF8411FBCD930BD6472662D209199249203CB2FDAA23FB ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
21:42:58.0416 0x1ed38  LSI_SSS - ok
21:42:58.0732 0x1ed38  [ E2EEF074F5260378F9AAFBCD592319A3, DC56674A08FA03FA7AF7DD8B3CC55D8324D1CB51546092A990A935FF9AB48A3C ] LSM             C:\WINDOWS\System32\lsm.dll
21:42:59.0035 0x1ed38  LSM - ok
21:42:59.0162 0x1ed38  [ C692B9C0352315417CF49FFA664957A3, C2D4F9A936B809889F7C51FE48214A1923175913A6C5D0B72D3BA469214B5174 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
21:42:59.0298 0x1ed38  luafv - ok
21:42:59.0606 0x1ed38  [ A0A527569856B9814E8920F52EBB67F5, 4347277C84B47E4CC048850BDEFB258CFB3B476AA99FD503FD71FBB70FFF5ACF ] LVRS64          C:\WINDOWS\system32\DRIVERS\lvrs64.sys
21:42:59.0962 0x1ed38  LVRS64 - ok
21:43:01.0523 0x1ed38  [ 415E344294D1C0D04627B29146F68481, B4A1A05BDF07E8F226A98E51F62BE18BE2C046A084C495BD8A95CABC79FD0614 ] LVUVC64         C:\WINDOWS\system32\DRIVERS\lvuvc64.sys
21:43:02.0459 0x1ed38  LVUVC64 - ok
21:43:02.0525 0x1ed38  [ 6A4C75FD28F60062FEA3DF3B15D956C0, 4FC58F3320D33BDACCF759A50C623A3E58E4320749E6691B397DF0C8EAAA8A6F ] MapsBroker      C:\WINDOWS\System32\moshost.dll
21:43:02.0699 0x1ed38  MapsBroker - ok
21:43:02.0728 0x1ed38  [ 54D70409DE6932E9EFA117779611E7A9, 4FF4328CEB222160664633D361D06EAEF4B27E2A5AE515CF7D425650A6A23136 ] mbamchameleon   C:\WINDOWS\system32\drivers\mbamchameleon.sys
21:43:02.0762 0x1ed38  mbamchameleon - ok
21:43:02.0778 0x1ed38  [ 1E9E32AEC3E1EB1B31B8169F33168B56, 39114585E1FDBBA31E1F781C6A627281907183F94626EB347B08D1F78992ED2A ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
21:43:03.0488 0x1ed38  MBAMProtector - ok
21:43:04.0817 0x1ed38  [ 516E29AD03BDF610CC36A95AE692FE42, 09F913B169AD775FF587AE59AEC5DD2A2D8646803F48BF616C74EEC0DE3BE7A2 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
21:43:05.0986 0x1ed38  MBAMScheduler - ok
21:43:06.0282 0x1ed38  [ 2B983F067AEE3F9EB4DF5E97F45D21D1, 0B9ED0E91FF01A5445927650113E320C3C0EA16F1401AA55A509DDBF704DF22F ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
21:43:07.0388 0x1ed38  MBAMService - ok
21:43:07.0479 0x1ed38  [ E9CD058C79EA15B4AA93E259FA713B07, 2B09F65188D8782F9C797545F2F791EC7EAB85D8914B2C0B30BD869C412E3980 ] MBAMSwissArmy   C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
21:43:07.0783 0x1ed38  MBAMSwissArmy - ok
21:43:07.0819 0x1ed38  [ F49FB3C88E263AE9A246593B0BB29294, FB53D6FA4A98B98334DCFF81E40712265256D31A9E9FF36022887BABD50F39EB ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
21:43:07.0966 0x1ed38  MBAMWebAccessControl - ok
21:43:08.0015 0x1ed38  [ B2ED9A7A5587A128A0EFD0DBE7662E95, 63070AAFD44E3CD2A4B262DF27222B103455A4D8C2E45914502BFA03D84D32C9 ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
21:43:08.0130 0x1ed38  megasas - ok
21:43:08.0237 0x1ed38  [ 083F71488E6780A67290273180256EA5, 5F43CE66F5A48850BABB70F4D219FDD002F9BC2B2F0E58E66FE2C492AA335E50 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
21:43:08.0265 0x1ed38  megasr - ok
21:43:08.0513 0x1ed38  [ 5907A10D46747A2B6DBFD6A198254DC2, 6C283E9DC75C7ABFD270D6FABBF4F54628A1786E7CE2F603BF664CBB9E4FE583 ] mlx4_bus        C:\WINDOWS\System32\drivers\mlx4_bus.sys
21:43:08.0595 0x1ed38  mlx4_bus - ok
21:43:08.0608 0x1ed38  [ 91ED6F0EDF4158D63C52194F17D4F42E, ACF543978E253650C167C6C370699AEA7340EBCECF7CAB904CBDD334D1BD6928 ] MMCSS           C:\WINDOWS\system32\drivers\mmcss.sys
21:43:08.0633 0x1ed38  MMCSS - ok
21:43:08.0696 0x1ed38  [ 2C4CC9F6ADBED5A6D131FDB97A78FF68, 04DC76E3F0959C0A9B00DF2133B075194FB7DCBD76832B9D25B0E37223D300DC ] Modem           C:\WINDOWS\system32\drivers\modem.sys
21:43:08.0835 0x1ed38  Modem - ok
21:43:08.0867 0x1ed38  [ D8DB13529C8AD6FBAF8E2F382024374F, 13025035C479E2EF76EDCB90D83BE65B4ADD9F7000AD31FEAD628D5DDFE69158 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
21:43:08.0990 0x1ed38  monitor - ok
21:43:09.0093 0x1ed38  [ 2DAAF1EE1C30F2FCF59851A64ADA0422, 08CD801E63E2862DE058CD732C3DB3D87B1A2898732365440E3F8919932E96FC ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
21:43:09.0187 0x1ed38  mouclass - ok
21:43:09.0230 0x1ed38  [ D30FE074503283829ED194BCAE6239C3, A3A127381ECC798417D01F6B8A1894EED7D71989047BC4D1D74D0E7C8394AD65 ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
21:43:09.0303 0x1ed38  mouhid - ok
21:43:09.0362 0x1ed38  [ D5EC9413527B286CFEEB0294C53ABB95, B094C611F5A7E33D2F8667B2A4D6260E1D57BD135867F984EE5B674C7EE72B95 ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
21:43:09.0463 0x1ed38  mountmgr - ok
21:43:09.0496 0x1ed38  [ 989A1BBD9C49B107B4A47D06E6827A69, 62D90B22AE13AC84324DFD5FEBA595813AD07469B7FEC41380CE223D93020CCA ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
21:43:09.0597 0x1ed38  mpsdrv - ok
21:43:09.0819 0x1ed38  [ 51D4584BC245AF1B679CAF01669ACE23, AA0BE0D216A00113F5C07DD95CBC15C4448BF2CBD4954CF16D1E9689455447DB ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
21:43:09.0951 0x1ed38  MpsSvc - ok
21:43:10.0012 0x1ed38  [ 5B37FDC07159FE9F5F52399F7D78F60B, A0C20EB9A7918395A13A5E21917887DDC9897C475D33091B518354163CAE108A ] MQAC            C:\WINDOWS\system32\drivers\mqac.sys
21:43:10.0337 0x1ed38  MQAC - ok
21:43:10.0421 0x1ed38  [ C1E74DD1D84861D8F12FF8BC0BA11975, 5912A0455C840F5C8AD6383823C9C7DE6FF8B5CAF1B72EA181864999891EAF30 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
21:43:10.0546 0x1ed38  MRxDAV - ok
21:43:10.0700 0x1ed38  [ 1DF2C5FD2710A13B07E663A12F0E0EEA, 8EBCA9269F52A5CF602F5DE2B0C2AB2BFD82F415465DBB74C73D43F321D9FD46 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:43:10.0947 0x1ed38  mrxsmb - ok
21:43:10.0986 0x1ed38  [ 185932B1149BD707F8A13174CDAB365B, BC26CB10DD6E81A94477564444E91F76D47E685E897BD77B9C1393F0D31AB718 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
21:43:10.0995 0x1ed38  mrxsmb10 - ok
21:43:11.0065 0x1ed38  [ 99E24D4DBACBC569833B9A67710D65E7, 93BC765E7B6E19E83AFF783DE8080A80A1D69A406B496F1E36C47AE6E86AFB76 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
21:43:11.0085 0x1ed38  mrxsmb20 - ok
21:43:11.0114 0x1ed38  [ 6F8BE4FB6262012E61BBADB5444628DC, E87489207AA48106C08E4BADDD8D66D14BC9DD6AD2A4CDD880BA655932CDDE60 ] MsBridge        C:\WINDOWS\system32\drivers\bridge.sys
21:43:11.0269 0x1ed38  MsBridge - ok
21:43:11.0389 0x1ed38  [ 283BDF3602F442336DAF242BDD07FB98, 185F046B6AA24FFD1567F00AA70357C82002FF627E329CEF9B926645A6DDB172 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
21:43:11.0578 0x1ed38  MSDTC - ok
21:43:11.0617 0x1ed38  [ 7C55F1751CAC199680D4489D1EE46544, 967EC8137D321F6139C3382D19A338FD97A3023EB654747AC57C2008BE4AF677 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
21:43:11.0677 0x1ed38  Msfs - ok
21:43:11.0743 0x1ed38  [ 988588C16A53C2581488C15FF18934BF, F021FD31163CB5C7012CF96EF642C5E551708C835039075268F4CBED002D441D ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
21:43:11.0864 0x1ed38  msgpiowin32 - ok
21:43:11.0881 0x1ed38  [ 09622DBC24D0178F15DB8461BB6970DF, C0B3F9B2219AAF87E417EE9FF54C64B8AD9944E101EA79B5DC81D99E8C2ECF30 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
21:43:11.0945 0x1ed38  mshidkmdf - ok
21:43:11.0960 0x1ed38  [ 34BB07495C0159BE4189841E16F3BC2F, 264B5735D9A68C85BEDE363D4C0AE1FCC381B39EA884B4BAEE185EB8A873184A ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
21:43:12.0173 0x1ed38  mshidumdf - ok
21:43:12.0183 0x1ed38  [ 7BF3F0DA362C053918F5F2EC43CE39E2, AA773FA3F83C0C572160D3D0286A697DC628FF4F3655EF21D01C6D1B7BE5DF1C ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
21:43:12.0421 0x1ed38  msisadrv - ok
21:43:12.0456 0x1ed38  [ 669DA2006C0B9D882D2014617E1E88F5, 090F558818806CAEF6C81D369F8BFFE4A8240295EF37CAA7102A18F4CD20D868 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
21:43:12.0696 0x1ed38  MSiSCSI - ok
21:43:12.0701 0x1ed38  msiserver - ok
21:43:12.0716 0x1ed38  [ B2D0FD21FE67D6434769CC6F7A7883CA, B2368BD72952C6EE6DAF1AA006DF575A3019E4721BEFB108D3DF1B9E07B2BC5D ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:43:12.0889 0x1ed38  MSKSSRV - ok
21:43:12.0936 0x1ed38  [ FB3801F176376286A3F8F20FFB8CDC53, EEF89081665B9BBA93AE9F5912C40C1698E8BA8DBBCCC3BBE0BAB5A86B7E05D4 ] MsLldp          C:\WINDOWS\system32\drivers\mslldp.sys
21:43:13.0021 0x1ed38  MsLldp - ok
21:43:13.0104 0x1ed38  [ 85EBF0A28B8B132B67C84C6CE5EBAC29, D0012CF4822A3D16F7BF61C94C5650DC1ED310A0DD1A3333465D28C73D40ECDB ] MSMQ            C:\WINDOWS\system32\mqsvc.exe
21:43:13.0421 0x1ed38  MSMQ - ok
21:43:13.0503 0x1ed38  [ 8CBDF0E7A6CD824352F37A682A33DF7E, 4567FF4C73648FF26EA68EAE2B524B767099789086C158875C97768C77B81359 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:43:13.0544 0x1ed38  MSPCLOCK - ok
21:43:13.0560 0x1ed38  [ 33E5B6261D69ACD4948A5C64B9D8F29F, 1D32340640312372E52E59AFB5DB872E6F9DFE3AC16B56F9D928AE230DA02B8A ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
21:43:13.0608 0x1ed38  MSPQM - ok
21:43:13.0681 0x1ed38  [ 557DF8C0DBBBF518AC395C6EB1B179AE, B294B5A7882C0C60D91FB853FC87505B6E7638D25E360FDAE002AEBB714ED471 ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
21:43:13.0785 0x1ed38  MsRPC - ok
21:43:13.0800 0x1ed38  [ 0A29AFA668F5DD50482A98ECE70C77A7, 4C1F23B062361D97B1C8D864AB227E5F398F774A99B5E60A1149A4F78D5BEC20 ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
21:43:13.0854 0x1ed38  mssmbios - ok
21:43:13.0869 0x1ed38  [ 30CE30877FD5BFADE74FA27D7829BF89, B5EA1F8C91E75722DB1E3E2172C8607FEDBF35BDC4141258A3E6D29D8B0E193B ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
21:43:13.0917 0x1ed38  MSTEE - ok
21:43:13.0934 0x1ed38  [ 13D88C0B8A2FA001CD72D454955A6974, 19DD5C8BBD07B64F355737436BF702FFC209D84A8855D2224D3377E233D4BB34 ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
21:43:14.0017 0x1ed38  MTConfig - ok
21:43:14.0070 0x1ed38  [ 00C7F0F06A0A48B9CDB6B3AC3BE288F0, BF469A2DDF495ACB9FEE9063C6680C95BCC8686682C9EDAE6D1893D4058E8AA6 ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
21:43:14.0125 0x1ed38  Mup - ok
21:43:14.0142 0x1ed38  [ 8E237527CA260C71D39ED4081BDF3419, CA52DD174C756A404B1FAD3F2A70E50085C2820BF12369259F61DA649101A179 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
21:43:14.0216 0x1ed38  mvumis - ok
21:43:14.0316 0x1ed38  [ 48D0587A8302FD3302CFE6F59F7345B0, 26D48AF3F7FF4867E179347CD635055DEA9A751C6C61CE2C391A7F74FC0DC1DE ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
21:43:14.0438 0x1ed38  NativeWifiP - ok
21:43:14.0540 0x1ed38  [ 11BE8117653C542D264788A700AC5BFE, 87EAAC2DF62BB26619DA72950F5EE41DCA1DBDF93F098647F9D200D588F14003 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
21:43:14.0610 0x1ed38  NcaSvc - ok
21:43:14.0757 0x1ed38  [ 286C6276B2BA86F29A0F687D05466277, AC8551536F37717A0ACE4A260F5696D1276F7AC62F669E8F12AA158DD86F71A5 ] NcbService      C:\WINDOWS\System32\ncbservice.dll
21:43:14.0800 0x1ed38  NcbService - ok
21:43:14.0822 0x1ed38  [ C55DA734ED2A831E0BACAAFA01CEB7FF, 9D989B03D07BBAD287B317D238691664B0694331D6A69B7A1AA3D8AB7D1323FC ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
21:43:14.0924 0x1ed38  NcdAutoSetup - ok
21:43:14.0975 0x1ed38  [ CF8296427834CF8BBB3EE1444C17362D, 6EFBE1F015DFFA0704C66DF5C88089DD5771E1542018E4AE98389CFF3D0B2309 ] ndfltr          C:\WINDOWS\System32\drivers\ndfltr.sys
21:43:15.0095 0x1ed38  ndfltr - ok
21:43:15.0294 0x1ed38  [ D43EAFF4887321A07D9F9A9DD7225E07, CF29073BBABE12D56744B041118F15C6C08CB89EF12413E359A6875C90FA383F ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
21:43:15.0342 0x1ed38  NDIS - ok
21:43:15.0387 0x1ed38  [ A0719D1EBA971DFC5DF5F7CC010385F8, A982487D3A74E66F3C29AAA5B46CE9A0969F07F267DDEFE58C58573573AB0024 ] NdisCap         C:\WINDOWS\system32\drivers\ndiscap.sys
21:43:15.0712 0x1ed38  NdisCap - ok
21:43:15.0746 0x1ed38  [ 0C557932CCCC65AEB37326DD36504527, C0AF3066DEE4BCC32DB30CCC16B7A91442A8383BB36C7C4E3CC0A5EFE0FAAA9B ] NdisImPlatform  C:\WINDOWS\system32\drivers\NdisImPlatform.sys
21:43:15.0855 0x1ed38  NdisImPlatform - ok
21:43:15.0890 0x1ed38  [ 0C557932CCCC65AEB37326DD36504527, C0AF3066DEE4BCC32DB30CCC16B7A91442A8383BB36C7C4E3CC0A5EFE0FAAA9B ] NdisImPlatformMp C:\WINDOWS\System32\drivers\NdisImPlatform.sys
21:43:15.0893 0x1ed38  NdisImPlatformMp - ok
21:43:15.0967 0x1ed38  [ 56F9345D1945826135FBAB7589592B1F, 6BC2A5900076B917823C7392C582A2648D0C8000F2F65D309D5B48E36D4FB4D6 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:43:16.0117 0x1ed38  NdisTapi - ok
21:43:16.0128 0x1ed38  [ AADFC340939D99E5D756E713E1D452EB, EFEFDBB2188DE82C2C5E67929861B269FD4C127D34D1DE6D0596ABC33E2C2B51 ] Ndisuio         C:\WINDOWS\system32\drivers\ndisuio.sys
21:43:16.0197 0x1ed38  Ndisuio - ok
21:43:16.0253 0x1ed38  [ 312DFD787D99D3BF1427B0388BC04F71, C082CA1F332AD57FF2100748518D3D7B3D0F1B042F69BD7401C44B77AFE97462 ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
21:43:16.0367 0x1ed38  NdisVirtualBus - ok
21:43:16.0444 0x1ed38  [ 2103F43E0A1ECFB14B7E1B889F5F24D7, 6A86E854C89E132DBC9183DE2B9464DC592E7492BE267BA02FE4DAFE6FA87528 ] NdisWan         C:\WINDOWS\System32\drivers\ndiswan.sys
21:43:16.0492 0x1ed38  NdisWan - ok
21:43:16.0522 0x1ed38  [ 2103F43E0A1ECFB14B7E1B889F5F24D7, 6A86E854C89E132DBC9183DE2B9464DC592E7492BE267BA02FE4DAFE6FA87528 ] ndiswanlegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:43:16.0527 0x1ed38  ndiswanlegacy - ok
21:43:16.0583 0x1ed38  [ 6E98F16983C4AE8703FF9F90AB4B31DD, BB8BD5DB4B5FB31F3A257747C27CBEFA4B7837EC5C0CF3D4F408E626E4003F4C ] ndproxy         C:\WINDOWS\system32\DRIVERS\NDProxy.sys
21:43:16.0671 0x1ed38  ndproxy - ok
21:43:16.0690 0x1ed38  [ F1B7CC77F412C8D45B2DDCF76EDA4F9D, 25F2AA76E675D9BCC0B1FD47AFEC6DF2D0B47E7B1C8AF6FB27C1ED2FB902961A ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
21:43:16.0789 0x1ed38  Ndu - ok
21:43:16.0799 0x1ed38  [ 824FDC990A3F79069BE468A132EB6888, D09F7A9EC04E37DA504CE54EEC25C312B407B6A8B214CBB074BEB50DE420F52A ] NetBIOS         C:\WINDOWS\system32\drivers\netbios.sys
21:43:16.0892 0x1ed38  NetBIOS - ok
21:43:16.0916 0x1ed38  [ F0D791348AD254360CC3C3E501CCB745, E4CAB4D3C2CD3169731283B00DEBFE26438BB66A3F0D78BDB68E876A14FC7070 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
21:43:16.0978 0x1ed38  NetBT - ok
21:43:16.0996 0x1ed38  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] Netlogon        C:\WINDOWS\system32\lsass.exe
21:43:17.0036 0x1ed38  Netlogon - ok
21:43:17.0076 0x1ed38  [ 7C8A7380CBE45DFD3DF118D8601499A7, C137280B7696F8CF4258BDC8B241C66BB3AA5708C5410D85255E46C7E8284826 ] Netman          C:\WINDOWS\System32\netman.dll
21:43:17.0176 0x1ed38  Netman - ok
21:43:17.0261 0x1ed38  [ FBF2ACE9B10DDE0B4108930D78370E86, 2A4910F071747B786EA49A638B3AAB698DCD0AD7FE702078BA83F85C533A227E ] NetMsmqActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:43:17.0452 0x1ed38  NetMsmqActivator - ok
21:43:17.0459 0x1ed38  [ FBF2ACE9B10DDE0B4108930D78370E86, 2A4910F071747B786EA49A638B3AAB698DCD0AD7FE702078BA83F85C533A227E ] NetPipeActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:43:17.0468 0x1ed38  NetPipeActivator - ok
21:43:17.0523 0x1ed38  [ BBE9D72EFC7BD66B28309C3607683DBA, FC372EFBC650CE0BDB117858D840A1FB361947B1C67D1DD16BABA95D0286856A ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
21:43:17.0548 0x1ed38  netprofm - ok
21:43:17.0644 0x1ed38  [ AC445EB5B35D4C49D651440BD35B652E, C76A5DE1C7FC576F1693A8B4B5BAC8B667A0CFE46AE99F23A0463ABE59DBED5E ] netr28ux        C:\WINDOWS\System32\drivers\netr28ux.sys
21:43:17.0777 0x1ed38  netr28ux - ok
21:43:17.0832 0x1ed38  [ 5D046D71B18BEFB2E4D164C3DEEDD672, 536834D020889973854830919B23DF22CC1B27236AFAEDEBDF42D432CE48FCDE ] NetSetupSvc     C:\WINDOWS\System32\NetSetupSvc.dll
21:43:17.0947 0x1ed38  NetSetupSvc - ok
21:43:18.0020 0x1ed38  [ FBF2ACE9B10DDE0B4108930D78370E86, 2A4910F071747B786EA49A638B3AAB698DCD0AD7FE702078BA83F85C533A227E ] NetTcpActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:43:18.0023 0x1ed38  NetTcpActivator - ok
21:43:18.0065 0x1ed38  [ FBF2ACE9B10DDE0B4108930D78370E86, 2A4910F071747B786EA49A638B3AAB698DCD0AD7FE702078BA83F85C533A227E ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:43:18.0069 0x1ed38  NetTcpPortSharing - ok
21:43:18.0107 0x1ed38  [ 46E862DA2CF8F351375EF537276B69B5, AC0FE0977E56380849DCE668AC0F5AF183AAB115ED84ADD964E390CC0BEDF6D3 ] netvsc          C:\WINDOWS\System32\drivers\netvsc.sys
21:43:18.0235 0x1ed38  netvsc - ok
21:43:18.0301 0x1ed38  [ 88CE4AC85F36B6347C1D820FA373B998, E10B5DF8883928A2062FC6180DE4CF0DE33C68622C2E3E4E1AFC56A0682F8E75 ] NgcCtnrSvc      C:\WINDOWS\System32\NgcCtnrSvc.dll
21:43:18.0340 0x1ed38  NgcCtnrSvc - ok
21:43:18.0363 0x1ed38  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] NgcSvc          C:\WINDOWS\system32\lsass.exe
21:43:18.0375 0x1ed38  NgcSvc - ok
21:43:18.0479 0x1ed38  [ D5B50FCE0B749FC82BD8FD3A79FF623E, DB5E21011E020C08A5BE2B250BDEF9ACEA9891D6B7022BB9AAA5C6B92A4C87F8 ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
21:43:18.0543 0x1ed38  NlaSvc - ok
21:43:18.0558 0x1ed38  [ 41557BE174E9EC6AC703A8A4ADBC6650, 8CF6DF3FDC3C7C44B32851538A67BF86A54AB6444A424D7A20B7A9A94B4158D8 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
21:43:18.0592 0x1ed38  Npfs - ok
21:43:18.0601 0x1ed38  [ AC3F70FCFBCE97AA2F12BA43EE13B86E, D0AC50FB022C0F3031531CEE210D47FC3244C6FB55FAAD4AAB04081F0A21DAE4 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
21:43:18.0775 0x1ed38  npsvctrig - ok
21:43:18.0796 0x1ed38  [ 0AF4872D3D6FD3A030E836DAC2B3EF2D, 03EE7B6FAFC0BB5C26793BC5FF8BD1019AC96B3104688009C1E062C3F4F34D6D ] nsi             C:\WINDOWS\system32\nsisvc.dll
21:43:18.0866 0x1ed38  nsi - ok
21:43:18.0901 0x1ed38  [ 66A98C407085B8920DF1E6D722F1ADB8, 3FE307E4A9E41B08E0453507E50D6D0C67FA6F4245A863D90181463C749C83B5 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
21:43:19.0022 0x1ed38  nsiproxy - ok
21:43:19.0144 0x1ed38  [ 466EC5659C02ED53DBD47DC1BC2B8086, 1F35DE75386F7D029C01D67B09D5E5157141C6892858885C11972CE73D6078AC ] NTFS            C:\WINDOWS\system32\drivers\NTFS.sys
21:43:19.0441 0x1ed38  NTFS - ok
21:43:19.0467 0x1ed38  [ 383E546EF4982262A0EF6CC2B6E9D525, 3C6C90B62E8EB094E6928C388E5081A3F73DF87B0F34F716B72EA7B6EF71FBB7 ] Null            C:\WINDOWS\system32\drivers\Null.sys
21:43:19.0628 0x1ed38  Null - ok
21:43:19.0700 0x1ed38  [ 466F875F1D4C6ABB46AF28007009237C, 26F5A5579737A7CF2267F79DDE5A551149C682D5FD24663B53FCEC5AA6B448CE ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
21:43:19.0875 0x1ed38  nvraid - ok
21:43:19.0931 0x1ed38  [ 76F19EAE7A52CBAF7B8EC428BE6E0DA0, CF1E55D92FA32744A20AB75D466A3E05E6FACF4694F9265C41F5C27C1E7243DC ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
21:43:20.0004 0x1ed38  nvstor - ok
21:43:20.0046 0x1ed38  [ 0D0CB77D74B38E0EC62341C19E469D8D, A05D3CC67FEEB2FD219BFAA34BF98CB3F3718042124AF28F0E9FDFB9F132DD76 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
21:43:20.0227 0x1ed38  nv_agp - ok
21:43:20.0335 0x1ed38  [ EA3FFE8617B9FCA1620AD9876E92F4F1, 68D5143CA71D10A2BB44E29B3C76580596669D0624076BCF6CCBA7AF3140538E ] OneSyncSvc      C:\WINDOWS\System32\APHostService.dll
21:43:20.0356 0x1ed38  OneSyncSvc - ok
21:43:20.0655 0x1ed38  [ 11E0B35479C895888BA3D7F619DCFFF3, 6ED82C19898101EC00BD64A9F90595C3D20AD2D2902AA8765B740FB3B9312DDF ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:43:20.0907 0x1ed38  ose64 - ok
21:43:21.0001 0x1ed38  [ CAFB5A95883158A0579DED2ED5CB0627, B23F7D19142DD3544F96ADB36F152F4EA7F6C524A1281EC26A2B95D7D044822C ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
21:43:21.0059 0x1ed38  p2pimsvc - ok
21:43:21.0123 0x1ed38  [ 3612CE3432E0A2BE0081E6B488ACF84C, F1A641735FD374CA293FB98FADA2C41E2033B17FECCA3B6D225D0E591AFFF413 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
21:43:21.0205 0x1ed38  p2psvc - ok
21:43:21.0258 0x1ed38  [ 38F1AE32339731F6E5A7281AE8042545, 308954518C45D29FC199525F0CC7FE4EA805322EC0B871DDDCBEEC15355514C8 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
21:43:21.0290 0x1ed38  Parport - ok
21:43:21.0337 0x1ed38  [ 707889D2F95AAE8C9DD254D8767AD908, BE7BD94728D7629F8B7567523FFB42B8979941CEA2EA03E11BFCD51CF119FC27 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
21:43:21.0420 0x1ed38  partmgr - ok
21:43:21.0526 0x1ed38  [ A09B0D8F9F0FC17EBCE6481AC9FD5CDF, 8E8D68992D98CF3DBC4B70C7902B3EC28A1E2DA8D4DB38F0AD9D52B1A5A1D40F ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
21:43:21.0589 0x1ed38  PcaSvc - ok
21:43:21.0624 0x1ed38  [ 2834089EA4E550FF3B96E61FB4AA34ED, D25DAB47F9778675E984E0738D2014024C2758D52D7E071167A12FF466B7898E ] pci             C:\WINDOWS\system32\drivers\pci.sys
21:43:21.0642 0x1ed38  pci - ok
21:43:21.0655 0x1ed38  [ 3D587E4295B11B8480F7ACB09A89D718, 8C3BD62B3451E1B2E7197EDAE381785406DF86C03BEEC486602C642FDD37DBC1 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
21:43:21.0770 0x1ed38  pciide - ok
21:43:21.0793 0x1ed38  [ B8F07002B5F1DA23CFF979C2806B09F3, AD5C589A02BB8185AA070420BF30E78BC8BE3C6F9B0F66319A8CA05B70A5ED32 ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
21:43:21.0883 0x1ed38  pcmcia - ok
21:43:21.0914 0x1ed38  [ FF588077D0C6AC2EA3FCBF1903CE08D0, 64BE1646FB6D8CC902B6F386255F7C0420E3C334E14DECD527DD541B43A1DCD6 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
21:43:21.0962 0x1ed38  pcw - ok
21:43:21.0979 0x1ed38  [ 5A4426450501534666F9E6157E258A0B, 2735EE7C5581D2FF5454662623BE94D08043C894580D540F0E5D3E21C7D7EC45 ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
21:43:22.0018 0x1ed38  pdc - ok
21:43:22.0164 0x1ed38  [ 688F47C342E1BBC87A48AB71D316233E, CE99AB67C7E7A11AC69C2F4513AEBDACA385BA7F8CC49BE6313CE04ED404A0E7 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
21:43:22.0247 0x1ed38  PEAUTH - ok
21:43:22.0397 0x1ed38  [ 303D2C90139ABFC1D12E279F0F101710, CE02E335A72011004395DC635EB819B3ED8D00041B9C59024DE246366AF00559 ] PeerDistSvc     C:\WINDOWS\system32\peerdistsvc.dll
21:43:22.0515 0x1ed38  PeerDistSvc - ok
21:43:22.0532 0x1ed38  [ 189265498945593D5256CFF7FEBB9665, 9CB88CC3C726BFE6EDCE8D9E4544306AACD3FB9E969E3A438D9FD533F25C1281 ] percsas2i       C:\WINDOWS\system32\drivers\percsas2i.sys
21:43:22.0574 0x1ed38  percsas2i - ok
21:43:22.0606 0x1ed38  [ 9B86965114F6831A5130EFE6657B17D9, 4C5B657DB9A9F96BFD3EAFA756ED60D911EB58857C439F5FA6E495A473ED1145 ] percsas3i       C:\WINDOWS\system32\drivers\percsas3i.sys
21:43:22.0665 0x1ed38  percsas3i - ok
21:43:22.0764 0x1ed38  [ 8A5A52C855FB5BFEF019AE9938AEA8AE, 77CB8A09B209DB5895319BA9D073A67148926E22C47836343050DFC178AFAEEE ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
21:43:23.0447 0x1ed38  PerfHost - ok
21:43:23.0547 0x1ed38  [ 42172DDE99D9F2AB3B0739506699A566, 6B0FAD656A24787E9429EA89F7DC03CC535D8E5D093378F93164ECADCEE5CFDF ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
21:43:23.0557 0x1ed38  PimIndexMaintenanceSvc - ok
21:43:23.0753 0x1ed38  [ 82FDEC2A262728F62F2111A84CC04B16, A1FCE38D4F55F10BB9B3BFB7D9E3EF7C27D499D9C8882218C8A9A73487798188 ] pla             C:\WINDOWS\system32\pla.dll
21:43:23.0831 0x1ed38  pla - ok
21:43:23.0885 0x1ed38  [ 7B3DA16FAA498838BB457E0B7E380EDF, B73DCFFA60886F10765E4B76A58CFF18C08CAFEE620700361FC8FEC7E80B5958 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
21:43:23.0906 0x1ed38  PlugPlay - ok
21:43:23.0922 0x1ed38  [ F1E9C35A8DFD4D64382CFB9019A950F9, 24E0381C6909F9876D6DC4697DC6405FE18DF91531891B2CCA6DB0191B9C6DF4 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
21:43:23.0946 0x1ed38  PNRPAutoReg - ok
21:43:23.0978 0x1ed38  [ CAFB5A95883158A0579DED2ED5CB0627, B23F7D19142DD3544F96ADB36F152F4EA7F6C524A1281EC26A2B95D7D044822C ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
21:43:23.0987 0x1ed38  PNRPsvc - ok
21:43:24.0074 0x1ed38  [ 62C0BD179961132EF2C5B952210C11F5, 2473FBB3619D0DDA229D4BEC30CEFE7497C27ED3844A5B7655F6F2D328FEAF61 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
21:43:24.0167 0x1ed38  PolicyAgent - ok
21:43:24.0226 0x1ed38  [ 6390391EDFC43DD11CE9E6AADCAC20EA, C8BC222FFBB9E47489D16BB5248E0E2E594011C46CFF71F5DBCC4D5CC6788098 ] Power           C:\WINDOWS\system32\umpo.dll
21:43:24.0264 0x1ed38  Power - ok
21:43:24.0346 0x1ed38  [ 1433EB7908E5E1E20FFD50E4126C3484, 34D81680C8F2F2C5892FC0E0A6DFCBB241AFF493267A1FE182ED28AE9F712456 ] PptpMiniport    C:\WINDOWS\System32\drivers\raspptp.sys
21:43:24.0456 0x1ed38  PptpMiniport - ok
21:43:25.0146 0x1ed38  [ 12E2582F69ACA40A6BAE91DA578CBF34, 648C6394763906AA4163976DA2C3308F8B706486D9D8F16258CB1D61C2929930 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
21:43:25.0468 0x1ed38  PrintNotify - ok
21:43:25.0524 0x1ed38  [ 22DE54C3974E4FD98F61D095C22C59B7, 64E78D6DEC4A28ABB0A23F2CF078459D81796EC79235AE45976ABB4F72B1D1E6 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
21:43:25.0673 0x1ed38  Processor - ok
21:43:25.0773 0x1ed38  [ 27D0B024BB356C6BEB1214B61E47DE02, 8CBDD62E243CC652F2197AE83DEDD21D91D2792558A6D7D1CC680B37607DEF4B ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
21:43:25.0786 0x1ed38  ProfSvc - ok
21:43:25.0828 0x1ed38  [ EDD52C352CBAAAD13FD7BD5DCEA309B3, EC7D294B23FD5C309E5C4C455896937B85DC615E1B36C9F8F3BDC90E75EBF9CF ] Psched          C:\WINDOWS\system32\drivers\pacer.sys
21:43:25.0854 0x1ed38  Psched - ok
21:43:25.0937 0x1ed38  [ DD3FF2053356D11C785999BBC633F3E0, E9A5B7C657F4523E5DEF7AEE7ECFCC94E911FC65F1D491BEF01239F357B8D8E0 ] QWAVE           C:\WINDOWS\system32\qwave.dll
21:43:25.0991 0x1ed38  QWAVE - ok
21:43:26.0046 0x1ed38  [ 51590F442C6E5D43244BA30DDB0CE79D, 9C7FD0A19753C13FD4A27EBFD60703A2414D5A2F6F451F0B32769C8D7C953980 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
21:43:26.0114 0x1ed38  QWAVEdrv - ok
21:43:26.0185 0x1ed38  [ E951E70019865B06126AF850BCCA2026, C590DE38C7603149AFA0271D57EEBAF956F18F50584FCF04BC2C8D8CEC5C5932 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:43:26.0252 0x1ed38  RasAcd - ok
21:43:26.0325 0x1ed38  [ 0BF8607133AE264BC3C41A5BAA5FFB7B, 9A4F6AC6013AB5C2A99BCFC2CCF161DD225DE8D85D61579655ADBF04A4383A61 ] RasAgileVpn     C:\WINDOWS\System32\drivers\AgileVpn.sys
21:43:26.0412 0x1ed38  RasAgileVpn - ok
21:43:26.0486 0x1ed38  [ FE0976379F9E7DB6F7945FCEB88C7E29, BA331CE55C02E86478714DA87FAC547B50D53BC7D02BCA5A64D484DED44BFAA5 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
21:43:26.0562 0x1ed38  RasAuto - ok
21:43:26.0577 0x1ed38  [ CA60F6C03611AF1710BC903ED9F566FB, B5C9E8BAC631738761E11168AB68EB1ECC5EC96BF9A8248B9127DCF744CA4691 ] Rasl2tp         C:\WINDOWS\System32\drivers\rasl2tp.sys
21:43:26.0644 0x1ed38  Rasl2tp - ok
21:43:26.0676 0x1ed38  [ 586A17C10D417D889F1FF7D8636E2F34, EEDA4EE8D2BC5C8C7756AB79F1F19AF8B1C4057996748FAE4E3F37844DB0EB33 ] RasMan          C:\WINDOWS\System32\rasmans.dll
21:43:26.0805 0x1ed38  RasMan - ok
21:43:26.0823 0x1ed38  [ E5FA41160F5A3D78D8F7765E5C5F6BB0, 31BA423FFFC3206717DC34B482149421EE28B27A4A3BA2DC78C3B3A9EE0C1365 ] RasPppoe        C:\WINDOWS\System32\drivers\raspppoe.sys
21:43:26.0848 0x1ed38  RasPppoe - ok
21:43:26.0862 0x1ed38  [ DF0834AE921E633E05D1FDC55C318957, 851A00961224DACBEF9DA427122F6B4B73BB99849D5ECB55DBBD311B2EA84C33 ] RasSstp         C:\WINDOWS\System32\drivers\rassstp.sys
21:43:26.0900 0x1ed38  RasSstp - ok
21:43:26.0959 0x1ed38  [ 62215641FFFF108EEBD3AE2F18BFB0BC, 55CD3459DFA39258657BA5D5DDF22061EE6C0876573A2F6A4437C0ABDA36C334 ] Razer Chroma SDK Service C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
21:43:27.0342 0x1ed38  Razer Chroma SDK Service - ok
21:43:27.0575 0x1ed38  [ 170C5DE900F60768C380ECD8A812512F, BFD085C32CF25E8261EF4BCFA5903A496785BCDA08037F4EB580BBDEDF42B656 ] Razer Game Scanner Service C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
21:43:27.0772 0x1ed38  Razer Game Scanner Service - ok
21:43:27.0928 0x1ed38  [ FC9B7AC6E2B837EF7CD6C64F7068D41D, 9B0DD842033E82BC7EE80416A62B084BF5200923EB7A6C80415BB28004E9B5E3 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:43:27.0965 0x1ed38  rdbss - ok
21:43:27.0993 0x1ed38  [ FB7375657F8A5932C35EAA45E9B4B416, 99594708BFD6DC9F8CECBF092058D4D0D4F1BC3204E86F9FDAD5207ED5ECF194 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
21:43:28.0068 0x1ed38  rdpbus - ok
21:43:28.0111 0x1ed38  [ A32AED8C644734B283A7C9D08D76064D, A12F67C57E43B6A2FE6449EA3822B1108FE70C66AF9911798777F85D760E384C ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
21:43:28.0156 0x1ed38  RDPDR - ok
21:43:28.0248 0x1ed38  [ 37CC7E41243EFBB4FBC0510E5CA32A02, 634E2F81D61F937F30E5ECE01FB581E090C6DA073EF7B1A3F6083ECAF363CB46 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
21:43:28.0264 0x1ed38  RdpVideoMiniport - ok
21:43:28.0349 0x1ed38  [ DAF957B25A35757E9D814611FAE8FE3B, 5244A427B2DEB5349B9F336A4A39A6834A6E8118A8EDA00738C6CE09F2452C24 ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
21:43:28.0510 0x1ed38  rdyboost - ok
21:43:28.0826 0x1ed38  [ 2C72E029C153D25325CA182A669E4ADE, 5CE0E04A6B53A1F11E8159DFD1E59F2AE6631E3B5BD27BAAEC4A35BC02A55722 ] ReFSv1          C:\WINDOWS\system32\drivers\ReFSv1.sys
21:43:28.0999 0x1ed38  ReFSv1 - ok
21:43:29.0166 0x1ed38  [ BABEE4A896D005BD0D205F1C932DA25E, 269FDF65BE3A226FA2A5CA25085366E32ADAD30A020484FE844962E8C61CB1D2 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
21:43:29.0257 0x1ed38  RemoteAccess - ok
21:43:29.0310 0x1ed38  [ 066062967A77867BDCF665960EFDAD32, 68143DBDFA7C68786C22F5CC4E80200255C663A844069C080E7816F423ABB1F4 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
21:43:29.0348 0x1ed38  RemoteRegistry - ok
21:43:29.0647 0x1ed38  [ 16018214C82C4AA1F58A037FC4601A04, DD9FCC06894879EB11841645C3F0325B61D57A7546811743BAE331E25605201A ] RetailDemo      C:\WINDOWS\system32\RDXService.dll
21:43:29.0696 0x1ed38  RetailDemo - ok
21:43:29.0727 0x1ed38  [ 9C3AC71A9934B884FAC567A8807E9C4D, 0B6B2970098E3C21E1E54A25785544903E8CD415B527FCEF86ABC7B33BEC83E7 ] Revoflt         C:\WINDOWS\system32\DRIVERS\revoflt.sys
21:43:29.0805 0x1ed38  Revoflt - ok
21:43:29.0893 0x1ed38  [ 60F5579B6B33F509C52200207F79B795, 1AB99528EF65799CBA7BCF43A654698ABE37A6DB8EB9BE2AC6ED7758AF795327 ] rjvfjyl         C:\WINDOWS\system32\drivers\kvca.sys
21:43:29.0931 0x1ed38  rjvfjyl - ok
21:43:29.0985 0x1ed38  [ 6451FE42C35FDE3862D99579444F4A8F, BD56A1120AACF6143E6EB739E12BEE86DF142F1159865608BDF1BBE54B66AFCE ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
21:43:30.0050 0x1ed38  RpcEptMapper - ok
21:43:30.0109 0x1ed38  [ F24131EAD1D0B73463052BB042A37B6C, 43B5772310B200DF1914C8E4D10401A0BCE9082BDEAC34736AFB2920B39D7956 ] RpcLocator      C:\WINDOWS\system32\locator.exe
21:43:30.0131 0x1ed38  RpcLocator - ok
21:43:30.0418 0x1ed38  [ 5E57B9FBB4E9C43EE5B69BEE01A1819F, A1F8D1E52AF446CEA2EB50064E3A24B713B19197D61C3EAECB81B3CCD80558E7 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
21:43:30.0477 0x1ed38  RpcSs - ok
21:43:30.0588 0x1ed38  [ DC66C1D262D64E30A30B68E9F21AC74B, A5ED3D31BCD68DBC00A956787517ACA167C86F5FFDAF7C9A85505FA2B705C6CB ] rspndr          C:\WINDOWS\system32\drivers\rspndr.sys
21:43:30.0672 0x1ed38  rspndr - ok
21:43:30.0916 0x1ed38  [ 347E3CE270009E4C71B26E71ACF98106, E20ACC50C2B4B3FDB28A8FA144EBA02E835873123315FDB5A2C87CBAD95218F6 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
21:43:31.0103 0x1ed38  RtkAudioService - ok
21:43:31.0198 0x1ed38  [ 652F9068C05A7FB83291DF616CDC8A8B, 13136DE67C31C5781B9E484C1AF806F43AF8EA0843D5A4018CBE7191ADD31A54 ] RzDxgk          C:\Windows\system32\drivers\RzDxgk.sys
21:43:31.0345 0x1ed38  RzDxgk - ok
21:43:31.0407 0x1ed38  [ 55FFB814690A7D8A9E592B3DE1E0F6B6, 860F42D44D8C811D657BAF404939AE3451D6E766BAFFD6FD4912E313683EA316 ] rzendpt         C:\WINDOWS\System32\drivers\rzendpt.sys
21:43:31.0676 0x1ed38  rzendpt - ok
21:43:31.0723 0x1ed38  [ 2ADA9F126235A56EDC9F90C888E4D142, 4CE692D045F6F8A7A1D309376648E81066F6EBAF94580F2ED0B0FFC1FE6FE44E ] RZMAELSTROMVADService C:\WINDOWS\system32\drivers\RzMaelstromVAD.sys
21:43:31.0764 0x1ed38  RZMAELSTROMVADService - ok
21:43:31.0771 0x1ed38  [ 21B6EA7F223FF574AA4C1A0635224E54, F4A8774A0CBD9887C9FD07E7C8A1A2D5BC3731140024E44821C60C2A507C6EC4 ] rzmpos          C:\WINDOWS\System32\drivers\rzmpos.sys
21:43:31.0809 0x1ed38  rzmpos - ok
21:43:31.0864 0x1ed38  [ 8F8C6EDB43BA9E60917ED76EA2E02CDE, AED12241690DFE6FAFF54D85FFD0926B84135BBEE1F9C9ED9850E11F4D5330EE ] RzOvlMon        C:\Program Files (x86)\Razer\Core\64bit\rzovlmon.exe
21:43:31.0905 0x1ed38  RzOvlMon - ok
21:43:31.0932 0x1ed38  [ 0C90E6CEA576095888E779E5BD9DD060, 8A13A92D5A8E577E2B919CC879FA8CFA1FAD0A6BFF0CF4FCC59B8E74AB22A673 ] rzpmgrk         C:\WINDOWS\system32\drivers\rzpmgrk.sys
21:43:31.0958 0x1ed38  rzpmgrk - ok
21:43:31.0985 0x1ed38  [ 288471F132C7249F598032D03575F083, 9E3430D5E0E93BC4A5DCCC985053912065E65722BFC2EAF431BC1DA91410434C ] rzpnk           C:\WINDOWS\system32\drivers\rzpnk.sys
21:43:32.0025 0x1ed38  rzpnk - ok
21:43:32.0055 0x1ed38  [ ED82FB8A5330D728193644D7F136B865, D5D3DFD1934B6EF373C20A346D130EEFFB6B493045B6A89EA2EBDF45B05F5372 ] RZSURROUNDVADService C:\WINDOWS\system32\drivers\RzSurroundVAD.sys
21:43:32.0152 0x1ed38  RZSURROUNDVADService - ok
21:43:33.0302 0x1ed38  [ B31066DAE502765D8F37F5C85DC1AF3D, 8FD105D51EC9D9FA04BAD0B12861B71F004C15453CC749E448B20EBA8C579632 ] RzSurroundVADStreamingService C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzSurroundVADStreamingService.exe
21:43:33.0613 0x1ed38  RzSurroundVADStreamingService - ok
21:43:33.0685 0x1ed38  [ 421497E425AFB40502013F362E4FA230, 20E2372BEE4BFB21138CA574C9806EC399DDA9D3439F3C391E34ABB2E518106D ] rzudd           C:\WINDOWS\System32\drivers\rzudd.sys
21:43:33.0848 0x1ed38  rzudd - ok
21:43:33.0931 0x1ed38  [ 88F7703F2A4677C828124AE2110D3EBC, 529F6A5815806F2EA2235802BD28AF8D7A40E7799356BD3EC337C9E71B6B53E6 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
21:43:33.0984 0x1ed38  s3cap - ok
21:43:34.0027 0x1ed38  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] SamSs           C:\WINDOWS\system32\lsass.exe
21:43:34.0031 0x1ed38  SamSs - ok
21:43:34.0183 0x1ed38  [ F22189298ABFC75F2A2D87BCCD3CA092, 8408FBC2C05A437F4382C3D9822E857E660C7656F2B10C4A5FC4802FE4721B2F ] SbieDrv         C:\Program Files\Sandboxie\SbieDrv.sys
21:43:34.0424 0x1ed38  SbieDrv - ok
21:43:34.0504 0x1ed38  [ 53A64997DEC2AA75C611B376E5A9D03F, 1BE87A3F148EBCBB7311D5BFD4C616E000C4CD4335C8A69966161EDA47FBE1C6 ] SbieSvc         C:\Program Files\Sandboxie\SbieSvc.exe
21:43:34.0575 0x1ed38  SbieSvc - ok
21:43:34.0601 0x1ed38  [ B467E932FE4E16E201DC7E56870CB559, 6FCE9A2DFC5D222BBEA4AA271A17B830FCF8EAE44B07BEE5FF34AE50CABCBB6A ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
21:43:34.0633 0x1ed38  sbp2port - ok
21:43:34.0730 0x1ed38  [ 3E115C63649402D321D396F8D606C9B0, F4BA7FE0E89D563A57B6865E4CF1334998987D11A0D70FF7491726A507B40DF4 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
21:43:34.0799 0x1ed38  SCardSvr - ok
21:43:34.0894 0x1ed38  [ 67EFFD3D1BB6D2B67DF7F8FDCB1A51FC, DE41539FAC730F5CFF6C8754ECFF1253AFDC1C86743AE71B61D716B7A84E85FD ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
21:43:34.0908 0x1ed38  ScDeviceEnum - ok
21:43:34.0936 0x1ed38  [ 31DDA0716EC265CA57DAF9D2295FD76F, E6F39C1B3CF81918277DB8C6E3DF9A82812E1C9063DEB1FB85FE433DC9A16CBA ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
21:43:34.0987 0x1ed38  scfilter - ok
21:43:35.0203 0x1ed38  [ 1BFAC03B6422E878EFCDA934BF4C4823, 0BA537A4B9E8020E6B709A44F1382DB3B41CEF631B847201F812152FEB303CD3 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
21:43:35.0279 0x1ed38  Schedule - ok
21:43:35.0389 0x1ed38  [ 320E7A02D81A468E8C1FEEFDB856AFAE, E65127D3D6B628F9D19EA509FEBD9E4DC1BF20D0C62C3C9E1D7087DF972B2AA7 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
21:43:35.0408 0x1ed38  SCPolicySvc - ok
21:43:35.0481 0x1ed38  [ CC41D16FB823F9BE167BE773F225CD1F, 97020D419CFC161A4EEF238F8580ADC2D026221217BF41728C54F52ACDBB9FCB ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
21:43:35.0506 0x1ed38  sdbus - ok
21:43:35.0558 0x1ed38  [ A906C527B838A4922611C63EBD250F91, 6BB0054A9C2408138BDF49D834FF99B5B9764E7747ABC15016F54FBA1D28394F ] SDRSVC          C:\WINDOWS\System32\SDRSVC.dll
21:43:35.0652 0x1ed38  SDRSVC - ok
21:43:35.0722 0x1ed38  [ F4BF50A7D16A97A887BFA0F193693C42, EEBF5AAC149C72F490BAC954B25BB6882B10FC38F93CA4F4829A06702B1ECEF9 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
21:43:35.0811 0x1ed38  sdstor - ok
21:43:35.0844 0x1ed38  [ 648A299839E8F48A946C41DE270D28F5, EEC9A5FCBE3FF78FB5E0452FF1932A8B0C7399688041E22555703CB1977A4428 ] seclogon        C:\WINDOWS\system32\seclogon.dll
21:43:35.0873 0x1ed38  seclogon - ok
21:43:35.0901 0x1ed38  [ 29452A9DA3E3482F0C2963312F979053, E1782D36C336C4B4C261AD665C1E9051905AA86020E08FC94069972AF4C4DB4B ] SENS            C:\WINDOWS\System32\sens.dll
21:43:35.0945 0x1ed38  SENS - ok
21:43:36.0113 0x1ed38  [ 919BA7E3054E4F1D61A3524ADCE6A970, 3C382673DF5AF2F38A5AE4A268F5856B0CC9E65D52213DE6D2C06E252753B73C ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
21:43:36.0358 0x1ed38  SensorDataService - ok
21:43:36.0502 0x1ed38  [ 01C2EEA7870FE26A4A6CCBA5421CC7E5, 9E643AB6BCBECE4F2A5FD4C96547A4E3F2BDFEFC5FE24B802467718EC69929F8 ] SensorService   C:\WINDOWS\system32\SensorService.dll
21:43:36.0605 0x1ed38  SensorService - ok
21:43:36.0709 0x1ed38  [ D2FEE824B4AA0BE377F1353E5F915BF4, 00D754C62F3482BBD0EA72C896139C39D15192B2D9FCC7B755D1FB9DF9FCFD9B ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
21:43:36.0735 0x1ed38  SensrSvc - ok
21:43:36.0751 0x1ed38  [ 9DB0BBE3ABE1F49651AE51EC5BCABE58, 0B46C1F231F41766AB73EE7E9834D3CDACA602D12E702D9277E28B47417D9CA4 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
21:43:36.0757 0x1ed38  SerCx - ok
21:43:36.0791 0x1ed38  [ C4AF79C37334D995D95C22C14FDBF7FD, 4D4985921261909F2123467A22EDB102B490710F60AB935624435E5BB808A0E9 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
21:43:36.0817 0x1ed38  SerCx2 - ok
21:43:36.0887 0x1ed38  [ FC541A272F47BE03E67A9FCB87FA8C3E, 730A3616FD67E9F2832442144B2655A8EF78B9AFCB204113E73E257256491354 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
21:43:36.0920 0x1ed38  Serenum - ok
21:43:36.0946 0x1ed38  [ 2A5F5F95FCA123DCBF53B5F603B64789, DE5C9E1D88B2C180B137DA7839F3EF6C936A171ABA49F89C10EE9C73A2226F3F ] Serial          C:\WINDOWS\System32\drivers\serial.sys
21:43:36.0967 0x1ed38  Serial - ok
21:43:36.0996 0x1ed38  [ C8738887228B7BFA3B1A906816A8BB12, 328283569201791891D5E9FB3028DB5B9FD93A7BEFC00C7DEBC2CC5731DE64D5 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
21:43:37.0043 0x1ed38  sermouse - ok
21:43:37.0105 0x1ed38  [ B1CB58853153397DFFA2D13A81451D09, CC9B3B064711E9B5CB38DC1C84DC410033939848BD31BB0D12F990E8154F357E ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
21:43:37.0120 0x1ed38  SessionEnv - ok
21:43:37.0145 0x1ed38  [ 67832B68752CDF7FDE56949E4A2E70BF, A72320EA8575A751DF86A1EE7969AD9D548D6185F2520197262E11B79FF8222B ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
21:43:37.0188 0x1ed38  sfloppy - ok
21:43:37.0365 0x1ed38  [ F10E5536E1C753E01CF19FA4F466CE90, C9897F22B176D84CA233F864078895E3DAD4DAD090FACBB01BD6E59EE337B47C ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
21:43:37.0658 0x1ed38  SharedAccess - ok
21:43:37.0884 0x1ed38  [ 4AC12D495B3CB4275F74C68A7A017561, DC53EBD606ECCD8BCF6D618C0EB58B03F5C20F09E0F0AEDE9B8082D6B208B19A ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:43:37.0946 0x1ed38  ShellHWDetection - ok
21:43:38.0009 0x1ed38  [ ED058030296CF9B79C8D48BF43724323, 01DC7C2590DF48116CD1A126F207FE5DE439A53286BAE3736E22EE3D1CA80BE3 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
21:43:38.0095 0x1ed38  SiSRaid2 - ok
21:43:38.0120 0x1ed38  [ 633D3D1581E9DCCD5A2D8F039104C9A5, C44B5097016C2AEC8B41F77425FE44413562F9DCF0C0C11CA69D8178970B4706 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
21:43:38.0192 0x1ed38  SiSRaid4 - ok
21:43:38.0421 0x1ed38  [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
21:43:38.0895 0x1ed38  SkypeUpdate - ok
21:43:38.0951 0x1ed38  [ 35B8FC714C2E7F07F7DC7C64452153F8, 6D45EB01B5F972ED0E5520E771F007FFEE892054FABDB3DD00D3E9915D3A0A31 ] smphost         C:\WINDOWS\System32\smphost.dll
21:43:38.0993 0x1ed38  smphost - ok
21:43:39.0175 0x1ed38  [ DE3A5C27EC842A113F68A2705FF63B00, B134EF63708A892B673B539F544F7980FF72838D822E8E4CCDDB359B22CB8805 ] SmsRouter       C:\WINDOWS\system32\SmsRouterSvc.dll
21:43:39.0325 0x1ed38  SmsRouter - ok
21:43:39.0414 0x1ed38  [ CD1056818A6FCEF4D32BD1D6E34070D5, F5BFB61ACB220A73B0DC4487B049F52E9F9FA2D4188C001E7A5838D47CEA6343 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
21:43:39.0513 0x1ed38  SNMPTRAP - ok
21:43:39.0590 0x1ed38  [ 187B4AD4446C59F8FCC4A10F473EE3D1, 0AAD961B3D7B3484DC89CB86F3EC96CEBFABB7224A5BFB48083DE8F1805EA7B4 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
21:43:39.0636 0x1ed38  spaceport - ok
21:43:39.0699 0x1ed38  [ 2799FCA215919FDC9A87C5FCAB530828, BDE968BF26693AA4D70AB669896BCA49C6F533EA226386B35B0EA589A55227B5 ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
21:43:39.0724 0x1ed38  SpbCx - ok
21:43:39.0880 0x1ed38  [ 58C17D92AD61EC7A98B05F4FAD0D205A, B881134A1BD9194145A9D18BDB34D57E2C167F06C2A9368459D0C33E6E0D6501 ] Spooler         C:\WINDOWS\System32\spoolsv.exe
21:43:39.0947 0x1ed38  Spooler - ok
21:43:41.0127 0x1ed38  [ 5C31E109943E67CFC801810C00AB63EE, 9A80D7CDA1135EBCE10E753986A59CFA3D8D49F9B0BE38FDF99880B1DD88C41D ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
21:43:41.0392 0x1ed38  sppsvc - ok
21:43:41.0531 0x1ed38  [ AA1F23501511EFE9CF9771F6B20E8D45, E786852D9877CCFD35444F8FC694467132F868D87A8C344FD1016FFDE74695A5 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
21:43:41.0554 0x1ed38  srv - ok
21:43:41.0798 0x1ed38  [ F5B169EDF9D5E3C7200D89D30E065D13, 12BAF3A3CB76F0900FA53681C9AD16F40308F493BA22C0F60E1E268D0D6AF825 ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
21:43:41.0825 0x1ed38  srv2 - ok
21:43:41.0902 0x1ed38  [ 2E142E027F0AA698BA4DCE49CBDB43CD, A21027BBBC75A55A8B302D028113A0683016E4C72790A8C561DDB1AE7FDB4289 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
21:43:41.0988 0x1ed38  srvnet - ok
21:43:42.0052 0x1ed38  [ BF71B3FB5B7557CB740CDB09C5FB50D9, D6F9E65FDC9C4ADAFE82D94F71A1F5960DB3BEEBF4FE5B2D087515C4FAA5F287 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
21:43:42.0085 0x1ed38  SSDPSRV - ok
21:43:42.0191 0x1ed38  [ EF1BC04215C201ADA3F7F5A2F034EA21, E1A7A0FA2032B9E7D3951100E74C04D93CD848C88D23D57FBA0BFA2816B29C61 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
21:43:42.0326 0x1ed38  SstpSvc - ok
21:43:42.0703 0x1ed38  [ C26E2C89EFB4BB39CD135B5DED804B78, 99288C6023DC6AC6554521EA671AB387ACE2AE2BCDE145C7012202842FF40841 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
21:43:42.0801 0x1ed38  StateRepository - ok
21:43:43.0073 0x1ed38  [ 7AE700179C4839F657D245319E234A06, 6EAEFE4A8CAF1A70F1BAD4DD457C6AEC080839542D4E5582376489800BE52E89 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
21:43:43.0260 0x1ed38  Steam Client Service - ok
21:43:43.0286 0x1ed38  [ DDE064A4298FD1FBF804D3ED691E7EDB, B0D117B1FC0DA2CB76F5F63699E2F108930B6C6721AC443111D48215ED624278 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
21:43:43.0313 0x1ed38  stexstor - ok
21:43:43.0457 0x1ed38  [ 60F04DF1AB55D6D4BDA02052DD20537E, 52996EDF2C06968DADC9BDF24E4039929B81643493C7193B8CC4A6BD1A3AE761 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
21:43:43.0543 0x1ed38  stisvc - ok
21:43:43.0590 0x1ed38  [ 32C95F44108C3E7DB58F773346E3C9D0, F852D8ECA06080EA6DE1A90509071965A750D9CFC9627F0D4DB8ECC57133B0B5 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
21:43:43.0613 0x1ed38  storahci - ok
21:43:43.0640 0x1ed38  [ 8883C8CE4942A99B84E1CC6EFA19738E, 60C1CDA4382F8EE70D810DBB1BCAF5F389433563FF23EEB84859612F396D8CE6 ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
21:43:43.0674 0x1ed38  storflt - ok
21:43:43.0751 0x1ed38  [ AE7B7E1E95BFB9340B1956C98CA52C81, 3E0214A0C486C1CD05D9BC57E58A998A3CEADDC1D24AE2A75098F56B37069160 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
21:43:43.0838 0x1ed38  stornvme - ok
21:43:43.0916 0x1ed38  [ 63513EF3121689B3A59BD217618A2E42, DE9B89732801DEC60BD116D58CFB427F7E37F093BE8A9F6E0CAC729B5346B314 ] storqosflt      C:\WINDOWS\system32\drivers\storqosflt.sys
21:43:43.0933 0x1ed38  storqosflt - ok
21:43:44.0081 0x1ed38  [ CC96FF061C772340F2ED89ABBA567ADC, 028CD44405B7FAFC7BF331DD729E44E0594A63386F48CF39D7725A58B3DE22D6 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
21:43:44.0112 0x1ed38  StorSvc - ok
21:43:44.0150 0x1ed38  [ 000F5CFCEF0F06DC8FD1D2F568E48AE4, C1FE485E57A1B912CE79556E0EFF03CC11362E7966D250E3AA4962DCCB8F8EE6 ] storufs         C:\WINDOWS\system32\drivers\storufs.sys
21:43:44.0179 0x1ed38  storufs - ok
21:43:44.0221 0x1ed38  [ 7415087F9006D6818F85F3CBD79B1A50, C768EBB2263375D285D689FEEF546147D42D7376977424A4D6FD655CC78EA7CD ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
21:43:44.0265 0x1ed38  storvsc - ok
21:43:44.0348 0x1ed38  [ E49858EA5865A015EB78B7F7C1C07DE2, 1ADBBAC2D2E2E3C40AB0BDDE068001E76A8DAB79C54F06479F7A4567DAD7A7A8 ] svsvc           C:\WINDOWS\system32\svsvc.dll
21:43:44.0387 0x1ed38  svsvc - ok
21:43:46.0140 0x1ed38  [ 802278EE4ACCE9EA1F1481DF20EB1667, E78F0DA2CA0B2C2DF3B7E3B2A22C03380FE649813EE6EB31067C5FB6727DB7BD ] swenum          C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_2a699e44676b7781\swenum.sys
21:43:46.0287 0x1ed38  swenum - ok
21:43:46.0603 0x1ed38  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
21:43:46.0766 0x1ed38  SwitchBoard - ok
21:43:46.0806 0x1ed38  [ 313D2C0DBA0B23A8302254FD317D2EC8, 20B98D6F33FEC7ACBCEED9757A3FEAD837FA7BA378BA25575A33EA45E076FC6B ] swprv           C:\WINDOWS\System32\swprv.dll
21:43:46.0856 0x1ed38  swprv - ok
21:43:46.0887 0x1ed38  [ 12D0CB1DCAE6725B6CA54CC2038C4C8C, 7D224298E440B8C5FDD99A52485A6245DE5109C9A02E65AD38F1EC6DBF4AEEF2 ] Synth3dVsc      C:\WINDOWS\System32\drivers\Synth3dVsc.sys
21:43:46.0918 0x1ed38  Synth3dVsc - ok
21:43:46.0974 0x1ed38  [ D5B31B2F14848015C211F1D674A82F3A, 58C18254C817693DB727090D1CC518032B3A67C5B3FC7F2F8CE4613A33790CFA ] SysMain         C:\WINDOWS\system32\sysmain.dll
21:43:47.0036 0x1ed38  SysMain - ok
21:43:47.0192 0x1ed38  [ 8863F06F520C1C76254B7DB45057BADA, EE8DA20185FBE37F64E8FE2A6FB477D602159AD6B63FFDD807981E6D28629888 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
21:43:47.0215 0x1ed38  SystemEventsBroker - ok
21:43:47.0305 0x1ed38  [ 95875059929EF91B55EA612D7967DD3D, 5F734209C8C9725376F7C146ED84999CC6D019C4C10B1795F53E72BE8853E2DD ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
21:43:47.0342 0x1ed38  TabletInputService - ok
21:43:47.0377 0x1ed38  [ 3C32FF010F869BC184DF71290477384E, 55CFCEC7F026C6E2E96A2FBE846AB513BB12BB0348735274FE1B71AF019C837B ] tap0901         C:\WINDOWS\System32\drivers\tap0901.sys
21:43:47.0452 0x1ed38  tap0901 - ok
21:43:47.0538 0x1ed38  [ B1ED71B842C6005A6ACC8D341C298F44, D7A3E71E860E89A92639A0B0DA4D14D72B4756B286CA7A2CC353121644D918B3 ] taphss6         C:\WINDOWS\System32\drivers\taphss6.sys
21:43:47.0586 0x1ed38  taphss6 - ok
21:43:47.0711 0x1ed38  [ FE33F417DFD9847CB571D3C7EE5FA7E3, B3C7BE7998B9B093DD969A2588EE8CEBD9771331A63D4B1D86A188317B5EE71C ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
21:43:47.0742 0x1ed38  TapiSrv - ok
21:43:48.0205 0x1ed38  [ BA8CDF0FC9469005A84453A128EEB6AE, 5E037452DAB8B9004BCB761FD2161477E1D22D6F398CE97665F95FD0D6DD26B5 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
21:43:48.0312 0x1ed38  Tcpip - ok
21:43:48.0587 0x1ed38  [ BA8CDF0FC9469005A84453A128EEB6AE, 5E037452DAB8B9004BCB761FD2161477E1D22D6F398CE97665F95FD0D6DD26B5 ] Tcpip6          C:\WINDOWS\system32\drivers\tcpip.sys
21:43:48.0634 0x1ed38  Tcpip6 - ok
21:43:48.0659 0x1ed38  [ D378A1AF58AFA84BB6AC753F2C1BE9F4, 8BBA623193D51E6A8DD0627FA08C93B918EF1BA2EEBA46CDBB86FE6A1007FDEE ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
21:43:48.0740 0x1ed38  tcpipreg - ok
21:43:48.0767 0x1ed38  [ 28E1E63A1AC65E17B3194238FA2CF3BF, 9A52D6DD14BEBB7B407B2703A111D1B302F1B84AA40A14D21FCA554F395E935D ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
21:43:48.0799 0x1ed38  tdx - ok
21:43:49.0592 0x1ed38  [ CFC9B7B465283378D374D5E380D5D244, 5E66A62C6A6272B65181F116031AA80E8DCEDA3B7E2C1130DD631347DF644D79 ] TeamViewer      C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
21:43:50.0931 0x1ed38  TeamViewer - ok
21:43:50.0969 0x1ed38  [ CCDBD2817C10A4F631280CBB3AE44FFB, A022DEF4D3CF75F41FA26275347F4BA38A513AD32FF18385C2E756DECB61D404 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
21:43:51.0025 0x1ed38  terminpt - ok
21:43:51.0306 0x1ed38  [ A0608264209A836821D6AB8C67B108AB, 7912C75F72BCAB7426A2E00C597C8D94C185B5DD31BD6C4BE5D56FECD5B0D9EA ] TermService     C:\WINDOWS\System32\termsrv.dll
21:43:51.0374 0x1ed38  TermService - ok
21:43:51.0472 0x1ed38  [ 261830B1E3650E4471E1F98850B929B7, D281B8A93315E64C7AF5002E5BFBE6AFF8B35FD6AA747AE07D7AA96F4AFAA613 ] Themes          C:\WINDOWS\system32\themeservice.dll
21:43:51.0492 0x1ed38  Themes - ok
21:43:51.0603 0x1ed38  [ 79431E9EEAE85C3E579D28265D2E3F21, 4C4A5CCCA8754D15737EC6E838E9F8A2B0D044F1FEB435B332EC70BB0CFA7DE1 ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
21:43:51.0624 0x1ed38  tiledatamodelsvc - ok
21:43:51.0669 0x1ed38  [ 354DAA630928CD4DA2BC84A0DA4ADA9D, AFAE4948EA4F899267DC52DF9A06450FC3E77083B563E541581DA90685C7E98C ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
21:43:51.0693 0x1ed38  TimeBroker - ok
21:43:51.0757 0x1ed38  [ F4AEDABC8F3A9D632F8206D0C7F8CA09, 6E76749CD4B857B4D930267E3CF448AF4D14FAC851873C5E71572E62CAD2FA36 ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
21:43:51.0772 0x1ed38  TPM - ok
21:43:51.0847 0x1ed38  [ 2D0338A3009075FCCB119CB7F3280F82, F42F3B8DA0F8B2C99892E66CDEF471A1CD30A30CF437ADFF464A2C786A6B87A6 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
21:43:51.0903 0x1ed38  TrkWks - ok
21:43:52.0022 0x1ed38  [ FE3D70DE933A481284FCE7D5DB5DCE50, A2A1C6AEED6417FCEE5990CD766B2A78D9037583B57617418242D98C031617F2 ] trufos          C:\WINDOWS\system32\DRIVERS\trufos.sys
21:43:52.0211 0x1ed38  trufos - ok
21:43:52.0334 0x1ed38  [ 62D6A900C5DFF2ECF131384E5A5C85AB, 1AF1FB868C59DFF452E3351EE5070B2C746DE606B9E2F1834CE2256F41ABE7A9 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
21:43:52.0481 0x1ed38  TrustedInstaller - ok
21:43:52.0522 0x1ed38  [ 676C801CAA61AADD0C918CC536A74B78, DB5DEC9445272E46D32DC2A9A99A9AE45729E424E61C679ECFD973AA88457BE6 ] TsUsbFlt        C:\WINDOWS\system32\drivers\TsUsbFlt.sys
21:43:52.0557 0x1ed38  TsUsbFlt - ok
21:43:52.0597 0x1ed38  [ 2BB6CC0DD1CEE86330743B56FA9FE91F, EE71E3DEECA7599947AB09E8967FE8066348D82B4C17D8CBE800FCDE9CF4989D ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
21:43:52.0643 0x1ed38  TsUsbGD - ok
21:43:52.0718 0x1ed38  [ 14B46248612DF1B1A695040FFFBCFAFC, 8C373A3C416FC9AB3872A187E64AC7A6E69FF605BD8784E8F2B1C28C293A0495 ] tunnel          C:\WINDOWS\System32\drivers\tunnel.sys
21:43:52.0864 0x1ed38  tunnel - ok
21:43:52.0891 0x1ed38  [ D0BE5EA1652D55029C9A898FB8ACFCE0, 80C4BC30B967C79B3457F43EB9B530CA2571C6158958879AC55E5A81F71CFF15 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
21:43:52.0960 0x1ed38  uagp35 - ok
21:43:52.0990 0x1ed38  [ 13C15E4B238895FE4731DB1D612EEB5F, 211E4B05AA09F7FBE2487C3241A98D1F970FEE5B9B1BAED2788B57233BFC4104 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
21:43:53.0006 0x1ed38  UASPStor - ok
21:43:53.0062 0x1ed38  [ BEBB8B55C5F99B69EEE39A9D7BADB21E, 08A094EA38AB58CC70108A3BDFDD3251897DC4B13FDDAD54C1B063137836EF34 ] UcmCx0101       C:\WINDOWS\system32\Drivers\UcmCx.sys
21:43:53.0108 0x1ed38  UcmCx0101 - ok
21:43:53.0157 0x1ed38  [ DE3EDAF609D00EA2E54986E6459796A6, 61A9AB51869F38300CC5CC5D302B962FB966F54CBB2E393954F36372B3A479FE ] UcmUcsi         C:\WINDOWS\System32\drivers\UcmUcsi.sys
21:43:53.0213 0x1ed38  UcmUcsi - ok
21:43:53.0304 0x1ed38  [ FB1C1D8B96A482F3581338D6752E1D6C, 0FFAEE3E088614B3483C459513BB9D78EB76B574696FD877A3CDF6A11378F46C ] Ucx01000        C:\WINDOWS\system32\drivers\ucx01000.sys
21:43:53.0338 0x1ed38  Ucx01000 - ok
21:43:53.0354 0x1ed38  [ 4E1543ACE2F6E2846713E5123D9D4159, 1A6AFC525A80D1F19B14CDAD38790DF7293911C4D0E8301161D92201B934C3D4 ] UdeCx           C:\WINDOWS\system32\drivers\udecx.sys
21:43:53.0395 0x1ed38  UdeCx - ok
21:43:53.0460 0x1ed38  [ CDCA9CC1D8293E75218D8FF85F2337A4, 173086C08DDC7625E026E425F1E2B5D6C795771BEAE9BFF6093E3592FBEBD323 ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
21:43:53.0472 0x1ed38  udfs - ok
21:43:53.0486 0x1ed38  [ BC683E19307C533C7161DB7A58051347, 5553BE3421986FDD9992EBFD883CDA151F7166C01BBFA3E9183A3C93E41D79B6 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
21:43:53.0529 0x1ed38  UEFI - ok
21:43:53.0571 0x1ed38  [ D14B42C26DE402F316D49667D15446F0, 61CC9FF03EF78631C800EFD8D587975CB94D53DB80E6F60BD13BA52EC5690D3D ] Ufx01000        C:\WINDOWS\system32\drivers\ufx01000.sys
21:43:53.0619 0x1ed38  Ufx01000 - ok
21:43:53.0648 0x1ed38  [ 192470BE4321791FBB25F379D0141D6F, AD120F8F98BD99014471CE60630B5FEE7555AB261C98B7D9819FE23C386655F7 ] UfxChipidea     C:\WINDOWS\System32\drivers\UfxChipidea.sys
21:43:53.0692 0x1ec58  Object required for P2P: [ B31066DAE502765D8F37F5C85DC1AF3D ] RzSurroundVADStreamingService
21:43:53.0712 0x1ed38  UfxChipidea - ok
21:43:53.0738 0x1ed38  [ F7BD838E84E6B286DBCE068EFB8C0800, A55188C8F8BDC739A7ED7D29CDCB2A17468BBB158E13D804963B31ED73449520 ] ufxsynopsys     C:\WINDOWS\System32\drivers\ufxsynopsys.sys
21:43:53.0808 0x1ed38  ufxsynopsys - ok
21:43:53.0852 0x1ed38  [ C844E39B900FFA46CA8DD2BBA670A077, 0CB6232BCE47C59821DF25D6ED33E85C3E32DDAB101AA8A2C22B5401E73F5D5B ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
21:43:53.0880 0x1ed38  UI0Detect - ok
21:43:53.0903 0x1ed38  [ A25842AC180F0E8B02380ECB8ADA1AF5, AF22E7559C5EF8DC22A2B9E27FFFFF075B1D1B68A8307266BD9473E0FAF36BEF ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
21:43:53.0921 0x1ed38  uliagpkx - ok
21:43:53.0962 0x1ed38  [ 21088F43172525C7E02D335A3327F46C, B04AD471A7DFE83AB557DB4540616B7DF4A1904F8BDDCB920D449FCEE6F36FD5 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
21:43:53.0990 0x1ed38  umbus - ok
21:43:54.0013 0x1ed38  [ 294A291B5D48FE8F38DD94B7272442C5, 66C9139636760C92C1E04FCF440C432FF6C5A94E1577CAFE1D61FCF2D30472ED ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
21:43:54.0072 0x1ed38  UmPass - ok
21:43:54.0152 0x1ed38  [ 3427889AECC3B6912A0A01D095E32B98, 322AE14B74295ACFC124719BBEF8809201150A184E262EC55E26D2B45787BF9D ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
21:43:54.0218 0x1ed38  UmRdpService - ok
21:43:54.0422 0x1ed38  [ A4A5FF89F65D8D1AA3A769654AD8DBC0, 9C792595F7E90C6074BC0FF5A63C9A19449E2F2E2780087BBF12A72658437EE0 ] UnistoreSvc     C:\WINDOWS\System32\unistore.dll
21:43:54.0631 0x1ed38  UnistoreSvc - ok
21:43:55.0213 0x1ed38  [ 358696C459C8FFC30770448977014F5A, A2D612E826AB65B7EDB3629C55875F67814E86ABD3B27C7BE1760D2103DF18FA ] UPDATESRV       C:\Program Files\Bitdefender\Bitdefender 2015\updatesrv.exe
21:43:55.0461 0x1ed38  UPDATESRV - ok
21:43:55.0592 0x1ed38  [ BD693208673F40BA21AA70B69F1D439C, E324947C2DD34386A83B09E73668F1CCED127AC91194B8BF7EC4C8E36CF8203E ] upnphost        C:\WINDOWS\System32\upnphost.dll
21:43:55.0650 0x1ed38  upnphost - ok
21:43:55.0681 0x1ed38  [ A7A52EDDC3FAF183D6AC4774690ADF13, 630A0331F2EFA2DC7EFDACD08D8DF5C85BFDA30FF1525050FF54E069AFA45F6C ] UrsChipidea     C:\WINDOWS\System32\drivers\urschipidea.sys
21:43:55.0738 0x1ed38  UrsChipidea - ok
21:43:55.0767 0x1ed38  [ 2EEA0897DD9E30E958B508D557F0B5E4, BE051A3AA5DFF56310FAB67AD19AC0443A3580542886EF3554EBE18F1323596F ] UrsCx01000      C:\WINDOWS\system32\drivers\urscx01000.sys
21:43:55.0777 0x1ed38  UrsCx01000 - ok
21:43:55.0797 0x1ed38  [ DC54D775A3A61E4CDE871B4E38A1459A, CC996A9D293201BBD285E7B629B12EE88574702B8AC7BB4149439D6A25A07F7E ] UrsSynopsys     C:\WINDOWS\System32\drivers\urssynopsys.sys
21:43:55.0819 0x1ed38  UrsSynopsys - ok
21:43:55.0848 0x1ed38  [ 1DC6166DB6C4FEFE87D9B9105044E5BE, D19B867C0E900B596B4180390A6E4F2ECCBDF8FBD49561C23DBA7D460B8F44A9 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
21:43:55.0874 0x1ed38  usbaudio - ok
21:43:55.0914 0x1ed38  [ 18B63A0980F4AA1E6D7879B253980E37, 05F96DBE0A3DE2A685DEEBA8B6838A47AEB7CE2EBE8EB6BAD67B36DCF7E73589 ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
21:43:55.0920 0x1ed38  usbccgp - ok
21:43:55.0951 0x1ed38  [ 1C60A1A3C8E1E819E16F12BAEB1C83F8, E255BD173DBF091C5EA07381862E23C1FD761489EC396E312974FBC124E1F33A ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
21:43:55.0990 0x1ed38  usbcir - ok
21:43:56.0086 0x1ed38  [ 9A3E39F85DC6E3B9F792F1095ACFF788, 66B8E137A5232E9F717907CFD49FE624AE101F4DE14E2960849DABF7A877E87A ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
21:43:56.0221 0x1ed38  usbehci - ok
21:43:56.0389 0x1ed38  [ 15FE07A404C8A0CD306661433027FFE4, 250C5B4624EF062C88F49DCFEA00BFF1771EFE8B095EC4F0B51C99BB3F80EC66 ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
21:43:56.0468 0x1ed38  usbhub - ok
21:43:56.0556 0x1ed38  [ 7E51F2AD1D729F5CDBB6BE21CB58FEB7, 4C9CBC7BE52EE80E3734ACF9AA6FC106FBAA9AE15FCDACB7E5100ED5CC041E80 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
21:43:56.0609 0x1ed38  USBHUB3 - ok
21:43:56.0626 0x1ed38  [ 72EA850B59F40C25A4FEDDA5FE84EFEB, FB4801AA1FB72FC1C41024916368823E88D53E338640E3BEA865B0F0E7B8EE91 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
21:43:56.0680 0x1ed38  usbohci - ok
21:43:56.0699 0x1ed38  [ 47B2B2DE152E25546944049CA1170BB1, DDA0A806D3108B2475AB13F584EA8CE6F0932C5E394C2C3FA691DFAB8A2BCAC0 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
21:43:56.0748 0x1ed38  usbprint - ok
21:43:56.0764 0x1ec58  Object send P2P result: true
21:43:56.0788 0x1ed38  [ 1F72E1A7E1858B7B3FF81522FCEBDE95, 4FAD243DA73C45CD5CA5E50F824F30EF0DC777D83957FD21FF43D8C89EC15AAC ] usbser          C:\WINDOWS\System32\drivers\usbser.sys
21:43:56.0852 0x1ed38  usbser - ok
21:43:56.0921 0x1ed38  [ CD35467670DF1E6FBF36DA308F0C872B, E1F4F9B1EBD476394CBD0C934842AEE2502B030D97351B0A1E751FF23B011B57 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
21:43:56.0993 0x1ed38  USBSTOR - ok
21:43:57.0012 0x1ed38  [ DFA92EA105DD1073B43FB210EEB03DD4, D940432458F0A04F5013B48197CEA0412C8A909C50605AA21DD08271C90E2FE3 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
21:43:57.0022 0x1ed38  usbuhci - ok
21:43:57.0116 0x1ed38  [ C67A03F54A1EA683F4880A481EE5FF6C, 346185B378577FF14EFAD01ECB7DFC9AFC0D50F16DF081C3BA99AEFF710A0EE9 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
21:43:57.0175 0x1ed38  USBXHCI - ok
21:43:57.0367 0x1ed38  [ FD38DDBCC1699BAB0446B93C1245FE17, 0AADBE137FE4372C3FFF2E98CAB4522CBC16CA1CE9564FB3C53A896A1B4E6EC2 ] UserDataSvc     C:\WINDOWS\System32\userdataservice.dll
21:43:57.0456 0x1ed38  UserDataSvc - ok
21:43:57.0682 0x1ed38  [ E9E2B5FFBEFC2CDF14A6E55DD94CC823, A10C011835A65601B8FE3A30F361C224C60084A78085842ADCDA248047530CD1 ] UserManager     C:\WINDOWS\System32\usermgr.dll
21:43:57.0703 0x1ed38  UserManager - ok
21:43:57.0777 0x1ed38  [ 0CFEA30C0217EE74FF853B2B0CC0BE6D, 1F0856D2D94F46D7B24B7EE18ED868C9EFAE972039D35D1FAA9058A12CF40493 ] UsoSvc          C:\WINDOWS\system32\usocore.dll
21:43:57.0849 0x1ed38  UsoSvc - ok
21:43:57.0900 0x1ed38  [ 9A83FA0EC9B0DCED2CBC49DD05901920, 14D2F241235E2693C68BCCF05D83F2A1C9A7BE185C83E7C6C63EF0F654892F95 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
21:43:57.0934 0x1ed38  VaultSvc - ok
21:43:58.0006 0x1ed38  [ 4006E66939B4D716C990256CF93D4BC1, 5E9366D8B684768B0188077C05B52B29D43B9A401A73D81045B9823458334223 ] VBAudioVACMME   C:\WINDOWS\system32\DRIVERS\vbaudio_cable64_win7.sys
21:43:58.0099 0x1ed38  VBAudioVACMME - ok
21:43:58.0141 0x1ed38  [ 0239B3849DE58C1D13F79D2B2BFA780F, FC31F00727D1AD603DE439236278CF7584CF3A783CAB4F938F3F3FD9005A2903 ] VBoxNetAdp      C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys
21:43:58.0224 0x1ed38  VBoxNetAdp - ok
21:43:58.0313 0x1ed38  [ 26223003DDFB347B5CF3EC0B56DB066B, 78848BE1334C05F28FA431B08225EAE8345B2C66E7D677F9936892FC941EA961 ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
21:43:58.0392 0x1ed38  vdrvroot - ok
21:43:58.0557 0x1ed38  [ 0C3F4E7684C1D72E85A98689E65A98A1, F7928D3EFC1A83125887ADA5F8E008022B58F0DBA8A711B4D60975D8CE82B595 ] vds             C:\WINDOWS\System32\vds.exe
21:43:58.0617 0x1ed38  vds - ok
21:43:58.0668 0x1ed38  [ A417284BC6B5C2EEF63F2C5154473530, 55146660CDDD829630C216038E6500CFAC906E67C82881047B665BFEEB286D10 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
21:43:58.0678 0x1ed38  VerifierExt - ok
21:43:58.0764 0x1ed38  [ 4C39C05A72EB14C0567501C7E087E564, D3DC122B7E4A5BD345517FE3A9E9E58CD3C78887F9F327AB782BADCAD0F8F2EB ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
21:43:58.0803 0x1ed38  vhdmp - ok
21:43:58.0876 0x1ed38  [ C42206A15078596FDE8E89BB629DE342, B95F9EC2413ADE658A7CE4A9BB57A0E125C29205C24BBB120153DACAF4CF9482 ] vhf             C:\WINDOWS\System32\drivers\vhf.sys
21:43:58.0934 0x1ed38  vhf - ok
21:43:58.0967 0x1ed38  [ 248D9F911A5C94CF8477125DD0C3A291, 418C7285184BCC9DE4E56175960585867A5DB21FEF761C49FF6F1AF1C07D8088 ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
21:43:58.0994 0x1ed38  vmbus - ok
21:43:59.0024 0x1ed38  [ 3E98DD4E0CBD6B4F9CBD0E9E0EDF541E, 2B5CF364F4D1D3359FBEA8BB2E72A1FCE1277E8D893977B751D9AC10A27DF018 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
21:43:59.0057 0x1ed38  VMBusHID - ok
21:43:59.0229 0x1ed38  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
21:43:59.0292 0x1ed38  vmicguestinterface - ok
21:43:59.0408 0x1ed38  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
21:43:59.0420 0x1ed38  vmicheartbeat - ok
21:43:59.0471 0x1ed38  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
21:43:59.0481 0x1ed38  vmickvpexchange - ok
21:43:59.0530 0x1ed38  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
21:43:59.0541 0x1ed38  vmicrdv - ok
21:43:59.0559 0x1ed38  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
21:43:59.0571 0x1ed38  vmicshutdown - ok
21:43:59.0649 0x1ed38  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
21:43:59.0660 0x1ed38  vmictimesync - ok
21:43:59.0679 0x1ed38  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicvmsession   C:\WINDOWS\System32\ICSvc.dll
21:43:59.0691 0x1ed38  vmicvmsession - ok
21:43:59.0775 0x1ed38  [ 977603C51C997435D59ECFE7E24E0653, 32AB9BBFFEB73F5282848748B46584238BD1B812A1435F7759180D36B33FE806 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
21:43:59.0786 0x1ed38  vmicvss - ok
21:43:59.0808 0x1ed38  [ 91F165C5D71D9DCB18D4661CF10D1084, 1D55C1FF0F5D860E6DB60EEFE303C0797C98BB0B053ECC255F9B316872288818 ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
21:43:59.0849 0x1ed38  volmgr - ok
21:43:59.0932 0x1ed38  [ 17042748AC05862A0283D32575220080, A85B480CB969CB7678545D2A9EE99CBD2ADFF210FA016A43E092D0711FBB633D ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
21:43:59.0953 0x1ed38  volmgrx - ok
21:44:00.0049 0x1ed38  [ 823A237D871CD652C6BFD47BECB6810A, 99310521451CB54C29A5DEA54C3A666F95E2A1FF0979D5F9792885A161E90C65 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
21:44:00.0075 0x1ed38  volsnap - ok
21:44:00.0105 0x1ed38  [ 78727FA284C2095EED660D71CD3C9AEF, 323F0BD5A624DF77973F28C7CF31EC6B3A525496EBF063666623A62B1DB0EA65 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
21:44:00.0135 0x1ed38  vpci - ok
21:44:00.0181 0x1ed38  [ 2415961D561E02F5E46B7C1C687A6788, 68A54B9595A0D15D410D5F1656B6EBE3B913A4BA5F71C658C9B99420E6ED327A ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
21:44:00.0229 0x1ed38  vsmraid - ok
21:44:00.0523 0x1ed38  [ 16419CBDB04DB9FF298169AA93413822, 743AD26F08AF5EFF5DD353E75C3D659B10C3FEC2FEDABB76387B87721B5B98F8 ] VSS             C:\WINDOWS\system32\vssvc.exe
21:44:00.0603 0x1ed38  VSS - ok
21:44:00.0986 0x1ed38  [ 2C2E4C771B9FECA5161DC75A1C12CEF1, E5246E0C002467E8FC46E2385851549299138BA3155CE3D453157551CB003D43 ] VSSERV          C:\Program Files\Bitdefender\Bitdefender 2015\vsserv.exe
21:44:01.0071 0x1ed38  VSSERV - ok
21:44:01.0179 0x1ed38  [ 6AE9A843AE979F2DCCA5A25C07C7A5F8, 3CEC26DE2EEC97929A0FBBD87FF75F8DC387C0988B2047074C8F069ACBEF2587 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
21:44:01.0194 0x1ed38  VSTXRAID - ok
21:44:01.0245 0x1ed38  [ BD232C761C59FA8D8EF626CA630E2D2E, E494EFDCE8F6343F49F33F1F03DCD5DEC9CB6F349B1AD302B4D3333B5F6BD8E5 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
21:44:01.0302 0x1ed38  vwifibus - ok
21:44:01.0316 0x1ed38  [ 3039687AB65CEE26CF478C1F42FFCD7D, 40E140C6F94B6203767A1493DF8CAE6BA1FB67FBD0C13789444F72410D0E6FF1 ] vwififlt        C:\WINDOWS\system32\drivers\vwififlt.sys
21:44:01.0324 0x1ed38  vwififlt - ok
21:44:01.0363 0x1ed38  [ 37C868DDE3103130B00AD1313DAB5ACB, BF9C30817A3502F5C0673FD462B18FE1BF37963B29DF09D84B66BDCBF8ECBA81 ] vwifimp         C:\WINDOWS\System32\drivers\vwifimp.sys
21:44:01.0375 0x1ed38  vwifimp - ok
21:44:01.0524 0x1ed38  [ EC9B6544C569E8D7FAB91772BD7D23F2, 06CC5F21E9A9DD35099CB3E44C3E2BF2F944CE5B71284E6A85E1B681F12BD31B ] W32Time         C:\WINDOWS\system32\w32time.dll
21:44:01.0616 0x1ed38  W32Time - ok
21:44:01.0707 0x1ed38  [ 9776E4816D92B766F461957FBDA84360, 048F6ADC97767AFAB50582D0AE1E67A15B038A1C02F7982A6AD30B61AC5C7369 ] w3logsvc        C:\WINDOWS\system32\inetsrv\w3logsvc.dll
21:44:01.0831 0x1ed38  w3logsvc - ok
21:44:01.0958 0x1ed38  [ F61FA0EDBE913DFCA0CF012FDD9E99EE, DE8685230D49F940640F400D2EC4F10E677AF6D57B3FAB0342AA98BEA779D6AD ] W3SVC           C:\WINDOWS\system32\inetsrv\iisw3adm.dll
21:44:02.0237 0x1ed38  W3SVC - ok
21:44:02.0286 0x1ed38  [ FC40A7527D39F06D032A6553D22E4BF6, F572FCB5EB3DE16FD6222A5B6A43C81E3A1F838890667D9F0453F82FFCA772FF ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
21:44:02.0314 0x1ed38  WacomPen - ok
21:44:02.0395 0x1ed38  [ 2CFE8CBE358CC4D5715E010E3B13559F, 54E9BFCE202FA123EB261C226094054950429AAFA304AA714F461B003E070BD9 ] WalletService   C:\WINDOWS\system32\WalletService.dll
21:44:02.0423 0x1ed38  WalletService - ok
21:44:02.0453 0x1ed38  [ E9E22E116F810DAC98C5EC207F24C916, C518DC57CECA5174E7695F5632555FA08571D5F3A7D6B0C295BA4221AEA67C04 ] wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:44:02.0471 0x1ed38  wanarp - ok
21:44:02.0477 0x1ed38  [ E9E22E116F810DAC98C5EC207F24C916, C518DC57CECA5174E7695F5632555FA08571D5F3A7D6B0C295BA4221AEA67C04 ] wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:44:02.0514 0x1ed38  wanarpv6 - ok
21:44:02.0546 0x1ed38  [ F61FA0EDBE913DFCA0CF012FDD9E99EE, DE8685230D49F940640F400D2EC4F10E677AF6D57B3FAB0342AA98BEA779D6AD ] WAS             C:\WINDOWS\system32\inetsrv\iisw3adm.dll
21:44:02.0576 0x1ed38  WAS - ok
21:44:02.0662 0x1ed38  [ CF9EF65FA66B0F4982FD1FACAB3009B6, 681C1CD5DCAF87EF436B907534E98B0AB4F66BD62E46B8977A7880B854766A27 ] wbengine        C:\WINDOWS\system32\wbengine.exe
21:44:02.0752 0x1ed38  wbengine - ok
21:44:02.0788 0x1ed38  [ 8F2B0ED6FCA72B34BEEA37E32D0EE106, A86C641A13FDF056B7BA13641551582199DDB08E9490003C74D999518B097C00 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
21:44:02.0834 0x1ed38  WbioSrvc - ok
21:44:02.0875 0x1ed38  [ BB87BF4D17EBB3C05236FDAA048EBE07, 45D3B0C2561E28EDA4460C23768F660AE0F56527F7BDD191ED0DE4F414983AE1 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
21:44:02.0911 0x1ed38  Wcmsvc - ok
21:44:03.0075 0x1ed38  [ 8E7FD07D2C82ACBCA52C4100C20F6542, FB2CD88557ABB5EBE6555CD4E41BF4BDC6FE6BCF26288338F2FB034B966FCBD3 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
21:44:03.0136 0x1ed38  wcncsvc - ok
21:44:03.0163 0x1ed38  [ 9C776ED423CD03F8ABD54C2557E34416, 282C1208977070EC0280D5ABA0E03A847AEAEE31F35CDAA3C7A02D8477614EB1 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
21:44:03.0189 0x1ed38  WcsPlugInService - ok
21:44:03.0229 0x1ed38  [ C8BA574B3BA6AE88741AC86B1FE3C1DC, B2422CDE3A6A27B52D270D24298FF69D91D389C68456EC1805BA30AA59BAB839 ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
21:44:03.0307 0x1ed38  WdBoot - ok
21:44:03.0442 0x1ed38  [ 796D1C95894BC15B3FEF090C107CBA31, 97917C543CBC13288F2194CB09C3A2759012B74F0D72DDB0896EF42C87348C6D ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
21:44:03.0491 0x1ed38  Wdf01000 - ok
21:44:03.0516 0x1ed38  [ C5BB7C612B4C852836BEA39593BA5F46, 1E2B123F34500C2A8E983AAAF7F14E409B88DC396A655F19F3E7F15D0C51A762 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
21:44:03.0554 0x1ed38  WdFilter - ok
21:44:03.0613 0x1ed38  [ 9E0442D3880438D006D95C6F63C27274, DB1ED2BCF9986495EFA8A0B3B0156119F2E4F77AE9BDC6377ADF3A6B53C658F6 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
21:44:03.0650 0x1ed38  WdiServiceHost - ok
21:44:03.0691 0x1ed38  [ 9E0442D3880438D006D95C6F63C27274, DB1ED2BCF9986495EFA8A0B3B0156119F2E4F77AE9BDC6377ADF3A6B53C658F6 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
21:44:03.0696 0x1ed38  WdiSystemHost - ok
21:44:03.0749 0x1ed38  [ 9B2039C5673EEBF1D4E34ABC0AFB88C7, BBC85546BD86B9027426DAF148194CFE992B80FF89311B28BE0BD82C88630E8C ] wdiwifi         C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
21:44:03.0884 0x1ed38  wdiwifi - ok
21:44:03.0924 0x1ed38  [ BD193A7BD34B2E829FAF56306FEE3B09, ADD746D198E21242CEFA01840952B792074EFC473113CD3E7F1ABBA6A4E26AF6 ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
21:44:03.0938 0x1ed38  WdNisDrv - ok
21:44:03.0986 0x1ed38  WdNisSvc - ok
21:44:04.0027 0x1ed38  [ 6A3B5013D5C7840E8CABD63DD021C112, 371CCEEAC7816CFE79ACA8A218CDA16469D9567CB63CC9D18C55FF047011EF25 ] WebClient       C:\WINDOWS\System32\webclnt.dll
21:44:04.0064 0x1ed38  WebClient - ok
21:44:04.0092 0x1ed38  [ EED4043BC3C2D00067411730EE118354, 5E268DA4DB78C06D8F181E9408B4769F8A12C38DA52C1E986EE0CEE1101E9485 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
21:44:04.0126 0x1ed38  Wecsvc - ok
21:44:04.0192 0x1ed38  [ 6ECD7A49AFC6533821BEEA1876CEB21D, 2E972245F56F589EF1AB9DABB9214B9DE6E290878735476323A3357D8CDFC71F ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
21:44:04.0211 0x1ed38  WEPHOSTSVC - ok
21:44:04.0230 0x1ed38  [ 09B434867028AF4895A87959EA668686, 26A7DB82E42DCBF3A77092D58AC6392754FD7C538B9EAAEFA88E9AF81DFE8E96 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
21:44:04.0268 0x1ed38  wercplsupport - ok
21:44:04.0316 0x1ed38  [ DE4E417B867841EE55114E588098B8D5, 878708C93FC1D919E2B9E1C5F94A0EAFC5F28BDAA58D3F29DEEDC8EC3F72D9ED ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
21:44:04.0338 0x1ed38  WerSvc - ok
21:44:04.0343 0x1ed38  wfpcapture - ok
21:44:04.0392 0x1ed38  [ DBF5255B759212E5217A2748567A0B5C, 5E81A9289EC39702179038B686A35FADF9974651E74222F3354B4CBE919887B0 ] WFPLWFS         C:\WINDOWS\system32\drivers\wfplwfs.sys
21:44:04.0398 0x1ed38  WFPLWFS - ok
21:44:04.0446 0x1ed38  [ 4CD8826BB8320741842A9E53E48AF2BC, 97B22D9DCD0FD31D3A801946173369B0E70B1850576682C8A8180874A61CAD1A ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
21:44:04.0475 0x1ed38  WiaRpc - ok
21:44:04.0510 0x1ed38  [ 4375BCBA419D19695CF566082CEF27D3, 6F86FA14B41A03F2BA51B8702F3D59B85FD488405601FA177495E4B7C576850D ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
21:44:04.0580 0x1ed38  WIMMount - ok
21:44:04.0584 0x1ed38  WinDefend - ok
21:44:04.0611 0x1ed38  [ 037BC6DE5F58D4A74A5BB0C12DCECDCA, 92921A2615A41C434BADEB33594DABC166FC9418FBD311A3B2022410B14BFDAC ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
21:44:04.0622 0x1ed38  WindowsTrustedRT - ok
21:44:04.0647 0x1ed38  [ 70BCD70BD53F2FE660ED94B025A043EB, B23B96DCAB30C62CB1651B3A2292155AEE8217CE3120574F5158D5E7DA09DE56 ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
21:44:04.0661 0x1ed38  WindowsTrustedRTProxy - ok
21:44:04.0799 0x1ed38  [ 8921ECEC2C7D1B1333D77325C60D3AEA, 67C6B6A92B34D99165B5591D0730322C31E967E599BA44924249BF5AD505C132 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
21:44:04.0870 0x1ed38  WinHttpAutoProxySvc - ok
21:44:04.0897 0x1ed38  [ 7792AE5403BF8975B6460DFC3428D129, D88F77E973D58C2CA629CC9249877A34ABF31CA1DC2A570666921A8A0DC8DEC7 ] WinMad          C:\WINDOWS\System32\drivers\winmad.sys
21:44:04.0946 0x1ed38  WinMad - ok
21:44:05.0137 0x1ed38  [ 73B5230F03DC7002A70F11EA1B0BAA37, DFE8BBE52B58589686E402ACED51021E298A491F907EBA5689DF9DAFC3002BA5 ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
21:44:05.0375 0x1ed38  Winmgmt - ok
21:44:05.0895 0x1ed38  [ 2FE85D6AFF90F56A78743CC93B9CA684, B515765C4EE64E7EC16BD6AF037C084CCA6E81180AEF59E18F260406ABE6DF58 ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
21:44:06.0047 0x1ed38  WinRM - ok
21:44:06.0219 0x1ed38  [ 811F30EB6EE8318C4171CB95AE30B9BD, 765F6BEA3D35D523B5D7ED7356EC0C97A48066A5C4D77C1E6EDAC6F220153385 ] WINUSB          C:\WINDOWS\System32\drivers\WinUsb.sys
21:44:06.0283 0x1ed38  WINUSB - ok
21:44:06.0344 0x1ed38  [ DF00381AB8665D48DE3FF794BC6760AB, 749AC7048601061A34BFF507B574AF028FC662C0A98692E7331E667D105EC09D ] WinVerbs        C:\WINDOWS\System32\drivers\winverbs.sys
21:44:06.0407 0x1ed38  WinVerbs - ok
21:44:06.0714 0x1ed38  [ 1D57DD1A716A1C2C71F0A53BD00B6AFD, 5374CFA453ECE8F70C1A7AC6CB1ABAF64C6BB4366BAD666533C495DD1BADC395 ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
21:44:07.0126 0x1ed38  WlanSvc - ok
21:44:07.0774 0x1ed38  [ 802E5A0B96C1E9FCC0CBFD75F04CE7DF, C689E22141B5FA69438205D824DFCB408429DE9B8612A424E3425717017E9DB3 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
21:44:07.0970 0x1ed38  wlidsvc - ok
21:44:07.0994 0x1ed38  [ 623ED8E10DFEEAB7AE2CD11A0451DB79, 7DDE15F22FD24556D4765F6CFD0F8E2F27370A89A962919646DE2613B33D43D6 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
21:44:08.0034 0x1ed38  WmiAcpi - ok
21:44:08.0103 0x1ed38  [ B2BB87531C4127ED4120E9BF5566827F, 1DDC0F00F215D77D3698F81B56D4488F384E9D017267840EDFA4846742B99B6A ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
21:44:08.0118 0x1ed38  wmiApSrv - ok
21:44:08.0165 0x1ed38  WMPNetworkSvc - ok
21:44:08.0267 0x1ed38  [ 78CA1FF6FE37EEFAFF99DD1C956AF60A, 883C7890C83BAB3B846A0C969D7B67031BD2EF65FA58A0620DD0CD1655C5B2C5 ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
21:44:08.0355 0x1ed38  Wof - ok
21:44:08.0530 0x1ed38  [ B2D8EDBBC339D903BF4073FF7A8D251E, 989F3B94F084720A094C89FD5AF02B5D5BCE5FB127F323E1ADA2890B6AAB3535 ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
21:44:08.0622 0x1ed38  workfolderssvc - ok
21:44:08.0676 0x1ed38  [ 388F2A3C771B8BEE76FD1AAF9614D08E, C064EC6136CC20C4EE19C86E91CA071974933BB52C9EF8521DF4AFD060FED4A2 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
21:44:08.0760 0x1ed38  wpcfltr - ok
21:44:08.0780 0x1ed38  [ A6FCFE1F691B4A4D266F5D487FADB9FE, 2135D0C13C1295A2F76885E380CD72CB71CEB8E0D9F1C183A35935B27737D423 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
21:44:08.0826 0x1ed38  WPDBusEnum - ok
21:44:08.0864 0x1ed38  [ 37DCE976B3935380F2F6E39ABB6BF40D, B14E875F6D6503DF0DB6D9D2363316073AEEF394D830EA2270A0DCDA56E1CEC4 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
21:44:08.0888 0x1ed38  WpdUpFltr - ok
21:44:08.0903 0x1ed38  [ 80F0154FD4293E562D54E97811E03499, EDE920F7F95EFBE542FE3CE066B6F7CDE3B9A37DDF3411DC86EACE9EEF294C1D ] WpnService      C:\WINDOWS\system32\WpnService.dll
21:44:08.0962 0x1ed38  WpnService - ok
21:44:09.0007 0x1ed38  [ 3CD22DD5A790CF7C24D65455E565EA83, 49DB06DF6F38940E7F8691C16586A78BB20E702FD48A34E50987C06B08BDF4DB ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
21:44:09.0062 0x1ed38  ws2ifsl - ok
21:44:09.0089 0x1ed38  [ EBA916109A176714E6A7BD152387F13C, 7B38B1708B83271ADA8D1CEC7F5F0A75C7F2572185C0961EFC749D5DF16A03F0 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
21:44:09.0120 0x1ed38  wscsvc - ok
21:44:09.0151 0x1ed38  [ E392DFAF6D0DEFC812ECC727A61F91C5, C28B6CC8AD034157CE92C7F098A9C12ADED2769E6AF954A9AAD10CC0E811DD2A ] WSDPrintDevice  C:\WINDOWS\System32\drivers\WSDPrint.sys
21:44:09.0179 0x1ed38  WSDPrintDevice - ok
21:44:09.0184 0x1ed38  WSearch - ok
21:44:09.0530 0x1ed38  [ 9EB85802AB625970E05879D15DE56335, B7DCE5E1924A5CEE76CC07FF3B8CEDBBD0DDBB4C4ED0A3BFB8D1ABCAD7C0AA23 ] WSService       C:\WINDOWS\System32\WSService.dll
21:44:09.0653 0x1ed38  WSService - ok
21:44:09.0934 0x1ed38  [ 994DB3BD0278B3136FD95F7E1C73A935, 4ECAD55E7ABF24DFB79882E842FE424157C383B0565FF1B222E74A085F05FC28 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
21:44:10.0015 0x1ed38  wuauserv - ok
21:44:10.0038 0x1ed38  [ 835F60262E7E310080EA05F6752BF248, 3010B731DF3D52B56EA16FD29B66F5D3AB9412E49CA4C547BAAECA3225C5DC40 ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
21:44:10.0043 0x1ed38  WudfPf - ok
21:44:10.0098 0x1ed38  [ 4E848DE29E4279C7F25EF5B34ED94FDD, FD7B0673F4CFA6EB66D7212288223419BFFA02EBF1F1D85F155B5397C6FB21E9 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
21:44:10.0126 0x1ed38  WUDFRd - ok
21:44:10.0170 0x1ed38  [ 44CF3130AEC8914705487C4AEF756A19, 30B09E32DEC02141F9B99ED012E441056C1663A72E4130EF4221ECC0ED87BF4B ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
21:44:10.0183 0x1ed38  wudfsvc - ok
21:44:10.0193 0x1ed38  [ 4E848DE29E4279C7F25EF5B34ED94FDD, FD7B0673F4CFA6EB66D7212288223419BFFA02EBF1F1D85F155B5397C6FB21E9 ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
21:44:10.0200 0x1ed38  WUDFWpdFs - ok
21:44:10.0211 0x1ed38  [ 4E848DE29E4279C7F25EF5B34ED94FDD, FD7B0673F4CFA6EB66D7212288223419BFFA02EBF1F1D85F155B5397C6FB21E9 ] WUDFWpdMtp      C:\WINDOWS\System32\drivers\WUDFRd.sys
21:44:10.0218 0x1ed38  WUDFWpdMtp - ok
21:44:10.0424 0x1ed38  [ 989EC133AD360CE71F85974B03143D97, 590145B7BD17A25A0848BD5C41AB967ED6C8DADE2BF91C6F4CA6D29CC3D1C79B ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
21:44:10.0673 0x1ed38  WwanSvc - ok
21:44:10.0766 0x1ed38  [ 9BDC2AFCEF4CF1C630D728DE1DBD495A, 5CE19974380CCEC46C181315B349E9A7CE757E19118EC5978A2293D63268BA66 ] XblAuthManager  C:\WINDOWS\System32\XblAuthManager.dll
21:44:11.0085 0x1ed38  XblAuthManager - ok
21:44:11.0476 0x1ed38  [ 3EDB6162310EA223890C2DF44C68358B, 12053291809CA9C38A30EA4B2DE7115F535531F0925220C63B0312979F9CC707 ] XblGameSave     C:\WINDOWS\System32\XblGameSave.dll
21:44:11.0550 0x1ed38  XblGameSave - ok
21:44:11.0602 0x1ed38  [ 30021D1E0407B71E8D5D4F8DAE4E656A, EE2E366A1CC033C068176C7E9F876FFA0EF86A15A482B6964E170DE863CFF542 ] xboxgip         C:\WINDOWS\System32\drivers\xboxgip.sys
21:44:11.0629 0x1ed38  xboxgip - ok
21:44:11.0717 0x1ed38  [ 729B70C81F207541BC6A4ABAE3A8D594, 31F9BC41169D28B397C0D988C367C32FA9A95289E68AB8F38061DA478752A765 ] XboxNetApiSvc   C:\WINDOWS\system32\XboxNetApiSvc.dll
21:44:11.0777 0x1ed38  XboxNetApiSvc - ok
21:44:11.0793 0x1ed38  [ 6851673B90D8CB332439E0339F81A6B6, 4E95F1A63E6DD58BB5BD6FC1D9784837D5E6F5BCF870C7ECC92DCA1AF20B6A4C ] xinputhid       C:\WINDOWS\System32\drivers\xinputhid.sys
21:44:11.0806 0x1ed38  xinputhid - ok
21:44:11.0839 0x1ed38  [ 60F5579B6B33F509C52200207F79B795, 1AB99528EF65799CBA7BCF43A654698ABE37A6DB8EB9BE2AC6ED7758AF795327 ] xyrg            C:\WINDOWS\system32\drivers\hlmhgak.sys
21:44:11.0934 0x1ed38  xyrg - ok
21:44:11.0935 0x1ed38  ================ Scan global ===============================
21:44:12.0073 0x1ed38  [ C6BC6E49A7F76AA2BBA58CD08196755F, D02B6B285899E966D19323566A4780D51303D00E66674D7FF4B61991430A69A6 ] C:\WINDOWS\system32\basesrv.dll
21:44:12.0171 0x1ed38  [ 70EC9717DC3A1CDF79C703A145E0E5B7, D5ABF42063DFF799FD4099D8A347256CC79B89582B987B3DEE240AFA5BA421BE ] C:\WINDOWS\system32\winsrv.dll
21:44:12.0196 0x1ed38  [ F435AFA375ACBAEE44324DD464EDCC11, 815DE470439AE5D96348BEBF971A14FBDCA1D36F31CA0D25F69E5F41817D43D5 ] C:\WINDOWS\system32\sxssrv.dll
21:44:12.0294 0x1ed38  [ BB3D8E1C108F7244613FF3993291A922, 1642AF23F200D46F54239C3BA743F1D5ADDC6A32D5F6481264D0C1D7F3E9D533 ] C:\WINDOWS\system32\services.exe
21:44:12.0311 0x1ed38  [ Global ] - ok
21:44:12.0311 0x1ed38  ================ Scan MBR ==================================
21:44:12.0320 0x1ed38  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:44:13.0343 0x1ed38  \Device\Harddisk0\DR0 - ok
21:44:13.0349 0x1ed38  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
21:44:13.0354 0x1ed38  \Device\Harddisk1\DR1 - ok
21:44:13.0355 0x1ed38  ================ Scan VBR ==================================
21:44:13.0364 0x1ed38  [ D8021DEFE72FEA95BF4314DAA02DC8E2 ] \Device\Harddisk0\DR0\Partition1
21:44:13.0501 0x1ed38  \Device\Harddisk0\DR0\Partition1 - ok
21:44:13.0505 0x1ed38  [ AF680A54C32054ED3EDD8E316C1FBB1E ] \Device\Harddisk1\DR1\Partition1
21:44:13.0512 0x1ed38  \Device\Harddisk1\DR1\Partition1 - ok
21:44:13.0513 0x1ed38  ================ Scan generic autorun ======================
21:44:15.0716 0x1ed38  [ 65E8545F1297CD83534C354A7BED1848, 19B3F3C17A335837454DC1851C6436D0BB2D8B1595AEB4DC71265FB20868B48F ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
21:44:16.0410 0x1ed38  RTHDVCPL - ok
21:44:16.0635 0x1ed38  [ F5A5DBADCD24BDF33BFDAA789E39C876, A0D931FA339CA1FB6198BF5DF327ECEB0881796FFF92BDE0F9FC2C233C46E83C ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
21:44:16.0911 0x1ed38  AdobeAAMUpdater-1.0 - ok
21:44:17.0010 0x1ed38  [ 22FF4604AA4EFA9C62B6004B4A7DE13E, 7C06EBE8229A5733DD2DF2D392F96DE0077F7C377D9F4873795A514B70842B76 ] C:\Program Files\Bitdefender\Bitdefender 2015\bdagent.exe
21:44:17.0060 0x1ed38  Bdagent - ok
21:44:17.0126 0x1ed38  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
21:44:17.0135 0x1ed38  SwitchBoard - ok
21:44:17.0223 0x1ed38  [ 8FE651ACBA3344E645CFEB6286FFF6B8, ECE4DFFEB7EB0B19B6790FD0F619A5C4B23CA0BA9CC3F25924925F8EA07264B6 ] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
21:44:17.0614 0x1ed38  AdobeCS6ServiceManager - ok
21:44:17.0763 0x1e1c4  Object required for P2P: [ 2C2E4C771B9FECA5161DC75A1C12CEF1 ] VSSERV
21:44:17.0780 0x1ed38  [ 8FFDB89A0FB7C8ABC3A8825E38047341, B9107FAA3A885CD9A08C20F78D31C3642FA76812E417F41C4F2ADF7D90CA8C72 ] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
21:44:17.0930 0x1ed38  LWS - ok
21:44:18.0178 0x1ed38  [ 5A5EC9616E92512704E008B93AE5FF8D, 6718865DF92713BF249432783C272154422330327A6330ADD4D1AFA402A02078 ] C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe
21:44:18.0316 0x1ed38  StartCCC - ok
21:44:18.0491 0x1ed38  [ D470EB94988531FE20A2A78766BB6858, 59F46FBC2267584422D7C4EC5BCC4071BB8DCF544C3AB44BEEBAE091EDCB9947 ] C:\Program Files (x86)\BlueStacks\HD-Agent.exe
21:44:18.0541 0x1ed38  BlueStacks Agent - ok
21:44:18.0727 0x1ed38  [ 9CD2CE59011503579C102E4BA12968BE, A52469C8E272A319F56654BB72719050AAEF3484A67B4E6F598EBF707BFF1C06 ] C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
21:44:18.0809 0x1ed38  Razer Synapse - ok
21:44:18.0893 0x1ed38  [ B83BD7A2C8C2C03D06859C9C46358DE7, AF98857469943E6DF8B47B079D72D41F3BE89C2444B25EE80EE4536A80058CD6 ] C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbamdor.exe
21:44:18.0955 0x1ed38  Malwarebytes Anti-Malware (cleanup) - ok
21:44:19.0847 0x1ed38  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
21:44:20.0413 0x1ed38  OneDriveSetup - ok
21:44:20.0767 0x1e1c4  Object send P2P result: true
21:44:20.0844 0x1ed38  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
21:44:21.0031 0x1ed38  OneDriveSetup - ok
21:44:21.0267 0x1ed38  [ 0DEEC48955C21BE596C5D9907A0707E7, 5F6E321B00DE7A56048B7E9389D314B59AB11DF47691F5C9734B084213E8BC20 ] C:\Program Files (x86)\Gyazo\GyStation.exe
21:44:22.0165 0x1ed38  Gyazo - ok
21:44:22.0548 0x1ed38  [ 36C632A8B799F8D1287B258B497F4795, 801A1B95863FAD10CD93B98C04EC756B9BDD6625A49B8D984767547EB8215B17 ] C:\Users\Noah\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
21:44:23.0464 0x1ed38  Spotify Web Helper - ok
21:44:23.0754 0x1ed38  [ C2D2FFD27F46815951C9562F0A2EC864, 892A5DC5C3D797E3FD36230710BA9AF43ADA5CDFD19A03268D20D5A9DA3CCB3A ] C:\Users\Noah\AppData\Local\Microsoft\OneDrive\OneDrive.exe
21:44:23.0914 0x1ed38  OneDrive - ok
21:44:24.0356 0x1ed38  [ 3D5D4137594D2EBA8868EAD504B89366, D5FEB5B8303B083A79A4617E59B2FB34FAD71BE72F3F8DD6E4B69B3D03FE658A ] C:\Program Files\DAEMON Tools Lite\DTAgent.exe
21:44:24.0482 0x1ed38  DAEMON Tools Lite Automount - ok
21:44:24.0798 0x1ed38  [ B3231AFD95A8051970D9B21BC8CC885E, 3715A30FBEC85DBE148EBF2F29BC362EED475C00DDC0ED2E6D717B8D3DE0E665 ] C:\Program Files\Bitdefender\Bitdefender 2015\bdwtxag.exe
21:44:24.0851 0x1ed38  Bitdefender Wallet Agent - ok
21:44:26.0802 0x1ed38  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
21:44:27.0059 0x1ed38  OneDriveSetup - ok
21:44:27.0226 0x1ed38  [ 9615F77B42907587DEBD6CA487317830, 71CB9484D079BCAD70C69D50C188A8BC07A3ED6D7EB90BE2749859E506FE696D ] C:\Program Files (x86)\Windows Mail\wab.exe
21:44:27.0477 0x1ed38  WAB Migrate - ok
21:44:28.0851 0x1ed38  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
21:44:29.0379 0x1ed38  OneDriveSetup - ok
21:44:29.0394 0x1ed38  Waiting for KSN requests completion. In queue: 19
21:44:30.0395 0x1ed38  Waiting for KSN requests completion. In queue: 1
21:44:31.0396 0x1ed38  Waiting for KSN requests completion. In queue: 1
21:44:35.0391 0x1ed38  AV detected via SS2: Bitdefender Antivirus, C:\Program Files\Bitdefender\Bitdefender 2015\wscfix.exe ( 19.1.0.117 ), 0x41000 ( enabled : updated )
21:44:36.0188 0x1ed38  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.10240.16384 ), 0x60100 ( disabled : updated )
21:44:36.0192 0x1ed38  FW detected via SS2: Bitdefender Firewall, C:\Program Files\Bitdefender\Bitdefender 2015\wscfix.exe ( 19.1.0.117 ), 0x41010 ( enabled )
21:44:39.0355 0x1ed38  ============================================================
21:44:39.0355 0x1ed38  Scan finished
21:44:39.0355 0x1ed38  ============================================================
21:44:39.0739 0x1ede8  Detected object count: 0
21:44:39.0739 0x1ede8  Actual detected object count: 0
21:46:31.0925 0x1ec28  Deinitialize success


#5 NoahF0920

NoahF0920
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:07:01 PM

Posted 14 October 2015 - 06:31 AM

# AdwCleaner v5.013 - Logfile created 13/10/2015 at 21:50:00
# Updated 09/10/2015 by Xplode
# Database : 2015-10-13.2 [Server]
# Operating system : Windows 10 Pro  (x64)
# Username : Noah - NOAH-PC
# Running from : C:\Users\Noah\Desktop\AdwCleaner.exe
# Option : Scan
 
***** [ Services ] *****
 
Service Found : hshld
 
***** [ Folders ] *****
 
Folder Found : C:\Program Files (x86)\app_setup
Folder Found : C:\Program Files (x86)\ConnectPC
Folder Found : C:\ProgramData\12db864551ae4c578eb17db1a9f5d3cf
Folder Found : C:\ProgramData\Service0561
Folder Found : C:\Users\Noah\AppData\Roaming\Store
Folder Found : C:\Users\Noah\AppData\Roaming\ASPackage
Folder Found : C:\Users\Noah\AppData\Roaming\SSN
 
***** [ Files ] *****
 
File Found : C:\END
 
***** [ DLLs ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Scheduled tasks ] *****
 
Task Found : ZIYBY
 
***** [ Registry ] *****
 
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho
Key Found : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\smu.exe
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtPending
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSynced
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSyncing
Key Found : HKLM\SOFTWARE\Classes\CLSID\{056D528D-CE28-4194-9BA3-BA2E9197FF8C}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{05B38830-F4E9-4329-978B-1DD28605D202}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{0596C850-7BDD-4C9D-AFDF-873BE6890637}
Value Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{79F768ED-0B12-42EF-8257-36751A0ECF3A}]
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{056D528D-CE28-4194-9BA3-BA2E9197FF8C}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{05B38830-F4E9-4329-978B-1DD28605D202}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{0596C850-7BDD-4C9D-AFDF-873BE6890637}
Key Found : HKCU\Software\powerpack
Key Found : HKCU\Software\Store
Key Found : HKCU\Software\DriverTuner_Init
Key Found : HKCU\Software\DriverTuner
Key Found : HKCU\Software\Probit Software
Key Found : HKLM\SOFTWARE\SearchModule
Key Found : HKLM\SOFTWARE\SmartDNS
Key Found : [x64] HKCU\Software\powerpack
Key Found : [x64] HKCU\Software\Store
Key Found : [x64] HKCU\Software\DriverTuner_Init
Key Found : [x64] HKCU\Software\DriverTuner
Key Found : [x64] HKCU\Software\Probit Software
Key Found : [x64] HKLM\SOFTWARE\SearchModule
 
***** [ Web browsers ] *****
 
[C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : aol.com
[C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Found : ask.com
 
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [2906 bytes] ##########

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.6.4 (09.28.2015:1)
OS: Windows 10 Pro x64
Ran by Noah on Tue 10/13/2015 at 22:08:55.87
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Tasks
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
Successfully deleted: [File] C:\ProgramData\1441579482.bdinstall.bin
Successfully deleted: [File] C:\Users\Noah\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\hotspot shield.lnk
Successfully deleted: [File] C:\Users\Public\Desktop\hotspot shield.lnk
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] C:\Program Files (x86)\app_setup
Successfully deleted: [Folder] C:\Program Files (x86)\connectpc
Successfully deleted: [Folder] C:\Users\Noah\Appdata\Local\crashrpt
Successfully deleted: [Folder] C:\Users\Noah\Appdata\Local\installer
Successfully deleted: [Folder] C:\Users\Noah\AppData\Roaming\aspackage
Successfully deleted: [Folder] C:\Users\Noah\AppData\Roaming\imminent
Successfully deleted: [Folder] C:\Users\Noah\AppData\Roaming\store
Successfully deleted: [Folder] C:\WINDOWS\SysWOW64\ai_recyclebin
Successfully deleted: [Folder] C:\ProgramData\12db864551ae4c578eb17db1a9f5d3cf
Successfully deleted: [Folder] C:\ProgramData\Service0561
 
 
 
~~~ Chrome
 
 
[C:\Users\Noah\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset
 
[C:\Users\Noah\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:
 
[C:\Users\Noah\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset
 
[C:\Users\Noah\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:
[]
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 10/13/2015 at 22:30:05.01
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

C:\Program Files\Bitdefender\Bitdefender 2015\support.exe Win32/RiskWare.HackAV.OQ application cleaned by deleting (after the next restart) - quarantined
C:\Program Files\Sandboxie\SB Crack (x64).exe a variant of Win32/HackTool.Patcher.T potentially unsafe application cleaned by deleting - quarantined
C:\Users\Noah\AppData\Roaming\C9BCE277-1430871960-11E0-BBD8-64B3E1A7D485\Uninstall.exe Win32/Adware.ConvertAd.YY application cleaned by deleting - quarantined
C:\Users\Noah\Desktop\Raiding and Random Notepads\Fix.exe BAT/Agent.OBI trojan cleaned by deleting - quarantined
C:\Users\Noah\Documents\MEGA\Fix.rar BAT/Agent.OBI trojan deleted - quarantined


#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:01 PM

Posted 14 October 2015 - 11:39 AM

Ok, good.. now remove what ADWcleaner found and see how it is.

Double click on AdwCleaner.exe to run the tool again. Vista/Windows 7/8 users right-click and select Run As Administrator[/i]
  • The tool will start to update the database, please wait a bit.
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
  • <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Cleaning button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[C#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users