Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows 7, CPU temperature huge leap when in idle


  • Please log in to reply
23 replies to this topic

#1 zirgonB

zirgonB

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:04:38 PM

Posted 31 January 2016 - 12:20 PM

Hey, I have a problem and I thought of this forums, should anyone have a bit spare time to give advice on this topic:

I run windows 7, and I have Intel Core i7 2600K processor. At normal use, temperature on CPU is around 40-50 celsius. The problem is when I leave my pc idle, and come back later; say hour or two, Speccy shows temperatures over 80, 90. Sometimes pc has even rebooted itself to avoid damage done to processor. It makes me think that there is some hidden process(malware, etc) that uses so much resources, when idle that it causes temps go high. What would be the best way to determine this? Which programs launch, activate itself during idle?

Or is it that some program chances the pc fanspeed/etc settings in power saving mode?
I have tried cleaning pc with various antivirus/malware programs with no success. I read about bitcoin miners that could cause this


Edited by hamluis, 31 January 2016 - 04:22 PM.
Moved from Win 7 to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 zirgonB

zirgonB
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:04:38 PM

Posted 31 January 2016 - 03:27 PM

Just an update, since I did not want to make another thread. I was scanning my pc with some antivirus, malware/rootkit removal programs, and came up with the following:

Log from GMER

 

GMER 2.1.19357 - http://www.gmer.net
Rootkit scan 2016-01-31 22:03:28
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-1 SAMSUNG_HD103SJ rev.1AJ10001 931,51GB
Running: e0x6phqn.exe; Driver: C:\Users\juissi\AppData\Local\Temp\fxliypoc.sys


---- User code sections - GMER 2.1 ----

.text   C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe[2280] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                                0000000075021401 2 bytes JMP 754eb233 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe[2280] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                                  0000000075021419 2 bytes JMP 754eb35e C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe[2280] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                                0000000075021431 2 bytes JMP 75569011 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe[2280] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                                000000007502144a 2 bytes CALL 754c48ad C:\Windows\syswow64\kernel32.dll
.text   ...                                                                                                                                                                                                * 9
.text   C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe[2280] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                                   00000000750214dd 2 bytes JMP 7556890a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe[2280] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                            00000000750214f5 2 bytes JMP 75568ae0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe[2280] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                                   000000007502150d 2 bytes JMP 75568800 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe[2280] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                            0000000075021525 2 bytes JMP 75568bca C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe[2280] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                                  000000007502153d 2 bytes JMP 754dfcc0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe[2280] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                       0000000075021555 2 bytes JMP 754e6907 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe[2280] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                                000000007502156d 2 bytes JMP 755690c9 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe[2280] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                                  0000000075021585 2 bytes JMP 75568c2a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe[2280] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                                     000000007502159d 2 bytes JMP 755687c4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe[2280] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                                  00000000750215b5 2 bytes JMP 754dfd59 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe[2280] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                                00000000750215cd 2 bytes JMP 754eb2f4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe[2280] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                            00000000750216b2 2 bytes JMP 75568f8c C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe[2280] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                            00000000750216bd 2 bytes JMP 75568759 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe[2320] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                                  0000000075021401 2 bytes JMP 754eb233 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe[2320] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                                    0000000075021419 2 bytes JMP 754eb35e C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe[2320] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                                  0000000075021431 2 bytes JMP 75569011 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe[2320] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                                  000000007502144a 2 bytes CALL 754c48ad C:\Windows\syswow64\kernel32.dll
.text   ...                                                                                                                                                                                                * 9
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe[2320] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                                     00000000750214dd 2 bytes JMP 7556890a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe[2320] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                              00000000750214f5 2 bytes JMP 75568ae0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe[2320] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                                     000000007502150d 2 bytes JMP 75568800 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe[2320] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                              0000000075021525 2 bytes JMP 75568bca C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe[2320] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                                    000000007502153d 2 bytes JMP 754dfcc0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe[2320] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                         0000000075021555 2 bytes JMP 754e6907 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe[2320] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                                  000000007502156d 2 bytes JMP 755690c9 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe[2320] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                                    0000000075021585 2 bytes JMP 75568c2a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe[2320] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                                       000000007502159d 2 bytes JMP 755687c4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe[2320] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                                    00000000750215b5 2 bytes JMP 754dfd59 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe[2320] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                                  00000000750215cd 2 bytes JMP 754eb2f4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe[2320] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                              00000000750216b2 2 bytes JMP 75568f8c C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe[2320] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                              00000000750216bd 2 bytes JMP 75568759 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\PSIA.exe[4844] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                                          0000000075021401 2 bytes JMP 754eb233 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\PSIA.exe[4844] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                                            0000000075021419 2 bytes JMP 754eb35e C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\PSIA.exe[4844] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                                          0000000075021431 2 bytes JMP 75569011 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\PSIA.exe[4844] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                                          000000007502144a 2 bytes CALL 754c48ad C:\Windows\syswow64\kernel32.dll
.text   ...                                                                                                                                                                                                * 9
.text   C:\Program Files (x86)\Secunia\PSI\PSIA.exe[4844] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                                             00000000750214dd 2 bytes JMP 7556890a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\PSIA.exe[4844] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                                      00000000750214f5 2 bytes JMP 75568ae0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\PSIA.exe[4844] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                                             000000007502150d 2 bytes JMP 75568800 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\PSIA.exe[4844] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                                      0000000075021525 2 bytes JMP 75568bca C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\PSIA.exe[4844] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                                            000000007502153d 2 bytes JMP 754dfcc0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\PSIA.exe[4844] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                                 0000000075021555 2 bytes JMP 754e6907 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\PSIA.exe[4844] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                                          000000007502156d 2 bytes JMP 755690c9 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\PSIA.exe[4844] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                                            0000000075021585 2 bytes JMP 75568c2a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\PSIA.exe[4844] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                                               000000007502159d 2 bytes JMP 755687c4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\PSIA.exe[4844] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                                            00000000750215b5 2 bytes JMP 754dfd59 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\PSIA.exe[4844] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                                          00000000750215cd 2 bytes JMP 754eb2f4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\PSIA.exe[4844] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                                      00000000750216b2 2 bytes JMP 75568f8c C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\PSIA.exe[4844] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                                      00000000750216bd 2 bytes JMP 75568759 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\Steam.exe[4532] C:\Windows\syswow64\psapi.dll!GetModuleFileNameExW + 17                                                                                               0000000075021401 2 bytes JMP 754eb233 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\Steam.exe[4532] C:\Windows\syswow64\psapi.dll!EnumProcessModules + 17                                                                                                 0000000075021419 2 bytes JMP 754eb35e C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\Steam.exe[4532] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 17                                                                                               0000000075021431 2 bytes JMP 75569011 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\Steam.exe[4532] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 42                                                                                               000000007502144a 2 bytes CALL 754c48ad C:\Windows\syswow64\kernel32.dll
.text   ...                                                                                                                                                                                                * 9
.text   C:\Program Files (x86)\Steam\Steam.exe[4532] C:\Windows\syswow64\psapi.dll!EnumDeviceDrivers + 17                                                                                                  00000000750214dd 2 bytes JMP 7556890a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\Steam.exe[4532] C:\Windows\syswow64\psapi.dll!GetDeviceDriverBaseNameA + 17                                                                                           00000000750214f5 2 bytes JMP 75568ae0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\Steam.exe[4532] C:\Windows\syswow64\psapi.dll!QueryWorkingSetEx + 17                                                                                                  000000007502150d 2 bytes JMP 75568800 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\Steam.exe[4532] C:\Windows\syswow64\psapi.dll!GetDeviceDriverBaseNameW + 17                                                                                           0000000075021525 2 bytes JMP 75568bca C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\Steam.exe[4532] C:\Windows\syswow64\psapi.dll!GetModuleBaseNameW + 17                                                                                                 000000007502153d 2 bytes JMP 754dfcc0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\Steam.exe[4532] C:\Windows\syswow64\psapi.dll!EnumProcesses + 17                                                                                                      0000000075021555 2 bytes JMP 754e6907 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\Steam.exe[4532] C:\Windows\syswow64\psapi.dll!GetProcessMemoryInfo + 17                                                                                               000000007502156d 2 bytes JMP 755690c9 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\Steam.exe[4532] C:\Windows\syswow64\psapi.dll!GetPerformanceInfo + 17                                                                                                 0000000075021585 2 bytes JMP 75568c2a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\Steam.exe[4532] C:\Windows\syswow64\psapi.dll!QueryWorkingSet + 17                                                                                                    000000007502159d 2 bytes JMP 755687c4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\Steam.exe[4532] C:\Windows\syswow64\psapi.dll!GetModuleBaseNameA + 17                                                                                                 00000000750215b5 2 bytes JMP 754dfd59 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\Steam.exe[4532] C:\Windows\syswow64\psapi.dll!GetModuleFileNameExA + 17                                                                                               00000000750215cd 2 bytes JMP 754eb2f4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\Steam.exe[4532] C:\Windows\syswow64\psapi.dll!GetProcessImageFileNameW + 20                                                                                           00000000750216b2 2 bytes JMP 75568f8c C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\Steam.exe[4532] C:\Windows\syswow64\psapi.dll!GetProcessImageFileNameW + 31                                                                                           00000000750216bd 2 bytes JMP 75568759 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Skype\Phone\Skype.exe[3244] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                                         0000000075021401 2 bytes JMP 754eb233 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Skype\Phone\Skype.exe[3244] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                                           0000000075021419 2 bytes JMP 754eb35e C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Skype\Phone\Skype.exe[3244] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                                         0000000075021431 2 bytes JMP 75569011 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Skype\Phone\Skype.exe[3244] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                                         000000007502144a 2 bytes CALL 754c48ad C:\Windows\syswow64\kernel32.dll
.text   ...                                                                                                                                                                                                * 9
.text   C:\Program Files (x86)\Skype\Phone\Skype.exe[3244] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                                            00000000750214dd 2 bytes JMP 7556890a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Skype\Phone\Skype.exe[3244] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                                     00000000750214f5 2 bytes JMP 75568ae0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Skype\Phone\Skype.exe[3244] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                                            000000007502150d 2 bytes JMP 75568800 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Skype\Phone\Skype.exe[3244] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                                     0000000075021525 2 bytes JMP 75568bca C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Skype\Phone\Skype.exe[3244] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                                           000000007502153d 2 bytes JMP 754dfcc0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Skype\Phone\Skype.exe[3244] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                                0000000075021555 2 bytes JMP 754e6907 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Skype\Phone\Skype.exe[3244] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                                         000000007502156d 2 bytes JMP 755690c9 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Skype\Phone\Skype.exe[3244] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                                           0000000075021585 2 bytes JMP 75568c2a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Skype\Phone\Skype.exe[3244] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                                              000000007502159d 2 bytes JMP 755687c4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Skype\Phone\Skype.exe[3244] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                                           00000000750215b5 2 bytes JMP 754dfd59 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Skype\Phone\Skype.exe[3244] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                                         00000000750215cd 2 bytes JMP 754eb2f4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Skype\Phone\Skype.exe[3244] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                                     00000000750216b2 2 bytes JMP 75568f8c C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Skype\Phone\Skype.exe[3244] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                                     00000000750216bd 2 bytes JMP 75568759 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\psi_tray.exe[4912] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                                      0000000075021401 2 bytes JMP 754eb233 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\psi_tray.exe[4912] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                                        0000000075021419 2 bytes JMP 754eb35e C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\psi_tray.exe[4912] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                                      0000000075021431 2 bytes JMP 75569011 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\psi_tray.exe[4912] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                                      000000007502144a 2 bytes CALL 754c48ad C:\Windows\syswow64\kernel32.dll
.text   ...                                                                                                                                                                                                * 9
.text   C:\Program Files (x86)\Secunia\PSI\psi_tray.exe[4912] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                                         00000000750214dd 2 bytes JMP 7556890a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\psi_tray.exe[4912] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                                  00000000750214f5 2 bytes JMP 75568ae0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\psi_tray.exe[4912] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                                         000000007502150d 2 bytes JMP 75568800 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\psi_tray.exe[4912] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                                  0000000075021525 2 bytes JMP 75568bca C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\psi_tray.exe[4912] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                                        000000007502153d 2 bytes JMP 754dfcc0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\psi_tray.exe[4912] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                             0000000075021555 2 bytes JMP 754e6907 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\psi_tray.exe[4912] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                                      000000007502156d 2 bytes JMP 755690c9 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\psi_tray.exe[4912] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                                        0000000075021585 2 bytes JMP 75568c2a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\psi_tray.exe[4912] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                                           000000007502159d 2 bytes JMP 755687c4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\psi_tray.exe[4912] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                                        00000000750215b5 2 bytes JMP 754dfd59 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\psi_tray.exe[4912] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                                      00000000750215cd 2 bytes JMP 754eb2f4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\psi_tray.exe[4912] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                                  00000000750216b2 2 bytes JMP 75568f8c C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Secunia\PSI\psi_tray.exe[4912] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                                  00000000750216bd 2 bytes JMP 75568759 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsscp.exe[4400] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                                  0000000075021401 2 bytes JMP 754eb233 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsscp.exe[4400] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                                    0000000075021419 2 bytes JMP 754eb35e C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsscp.exe[4400] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                                  0000000075021431 2 bytes JMP 75569011 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsscp.exe[4400] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                                  000000007502144a 2 bytes CALL 754c48ad C:\Windows\syswow64\kernel32.dll
.text   ...                                                                                                                                                                                                * 9
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsscp.exe[4400] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                                     00000000750214dd 2 bytes JMP 7556890a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsscp.exe[4400] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                              00000000750214f5 2 bytes JMP 75568ae0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsscp.exe[4400] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                                     000000007502150d 2 bytes JMP 75568800 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsscp.exe[4400] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                              0000000075021525 2 bytes JMP 75568bca C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsscp.exe[4400] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                                    000000007502153d 2 bytes JMP 754dfcc0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsscp.exe[4400] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                         0000000075021555 2 bytes JMP 754e6907 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsscp.exe[4400] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                                  000000007502156d 2 bytes JMP 755690c9 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsscp.exe[4400] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                                    0000000075021585 2 bytes JMP 75568c2a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsscp.exe[4400] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                                       000000007502159d 2 bytes JMP 755687c4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsscp.exe[4400] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                                    00000000750215b5 2 bytes JMP 754dfd59 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsscp.exe[4400] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                                  00000000750215cd 2 bytes JMP 754eb2f4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsscp.exe[4400] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                              00000000750216b2 2 bytes JMP 75568f8c C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Hotspot Shield\bin\hsscp.exe[4400] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                              00000000750216bd 2 bytes JMP 75568759 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe[5388] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                                 0000000075021401 2 bytes JMP 754eb233 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe[5388] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                                   0000000075021419 2 bytes JMP 754eb35e C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe[5388] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                                 0000000075021431 2 bytes JMP 75569011 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe[5388] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                                 000000007502144a 2 bytes CALL 754c48ad C:\Windows\syswow64\kernel32.dll
.text   ...                                                                                                                                                                                                * 9
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe[5388] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                                    00000000750214dd 2 bytes JMP 7556890a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe[5388] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                             00000000750214f5 2 bytes JMP 75568ae0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe[5388] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                                    000000007502150d 2 bytes JMP 75568800 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe[5388] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                             0000000075021525 2 bytes JMP 75568bca C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe[5388] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                                   000000007502153d 2 bytes JMP 754dfcc0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe[5388] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                        0000000075021555 2 bytes JMP 754e6907 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe[5388] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                                 000000007502156d 2 bytes JMP 755690c9 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe[5388] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                                   0000000075021585 2 bytes JMP 75568c2a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe[5388] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                                      000000007502159d 2 bytes JMP 755687c4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe[5388] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                                   00000000750215b5 2 bytes JMP 754dfd59 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe[5388] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                                 00000000750215cd 2 bytes JMP 754eb2f4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe[5388] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                             00000000750216b2 2 bytes JMP 75568f8c C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe[5388] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                             00000000750216bd 2 bytes JMP 75568759 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[1412] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                          0000000075021401 2 bytes JMP 754eb233 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[1412] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                            0000000075021419 2 bytes JMP 754eb35e C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[1412] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                          0000000075021431 2 bytes JMP 75569011 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[1412] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                          000000007502144a 2 bytes CALL 754c48ad C:\Windows\syswow64\kernel32.dll
.text   ...                                                                                                                                                                                                * 9
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[1412] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                             00000000750214dd 2 bytes JMP 7556890a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[1412] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                      00000000750214f5 2 bytes JMP 75568ae0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[1412] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                             000000007502150d 2 bytes JMP 75568800 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[1412] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                      0000000075021525 2 bytes JMP 75568bca C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[1412] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                            000000007502153d 2 bytes JMP 754dfcc0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[1412] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                 0000000075021555 2 bytes JMP 754e6907 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[1412] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                          000000007502156d 2 bytes JMP 755690c9 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[1412] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                            0000000075021585 2 bytes JMP 75568c2a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[1412] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                               000000007502159d 2 bytes JMP 755687c4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[1412] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                            00000000750215b5 2 bytes JMP 754dfd59 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[1412] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                          00000000750215cd 2 bytes JMP 754eb2f4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[1412] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                      00000000750216b2 2 bytes JMP 75568f8c C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[1412] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                      00000000750216bd 2 bytes JMP 75568759 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3936] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                          0000000075021401 2 bytes JMP 754eb233 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3936] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                            0000000075021419 2 bytes JMP 754eb35e C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3936] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                          0000000075021431 2 bytes JMP 75569011 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3936] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                          000000007502144a 2 bytes CALL 754c48ad C:\Windows\syswow64\kernel32.dll
.text   ...                                                                                                                                                                                                * 9
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3936] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                             00000000750214dd 2 bytes JMP 7556890a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3936] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                      00000000750214f5 2 bytes JMP 75568ae0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3936] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                             000000007502150d 2 bytes JMP 75568800 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3936] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                      0000000075021525 2 bytes JMP 75568bca C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3936] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                            000000007502153d 2 bytes JMP 754dfcc0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3936] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                 0000000075021555 2 bytes JMP 754e6907 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3936] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                          000000007502156d 2 bytes JMP 755690c9 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3936] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                            0000000075021585 2 bytes JMP 75568c2a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3936] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                               000000007502159d 2 bytes JMP 755687c4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3936] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                            00000000750215b5 2 bytes JMP 754dfd59 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3936] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                          00000000750215cd 2 bytes JMP 754eb2f4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3936] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                      00000000750216b2 2 bytes JMP 75568f8c C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3936] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                      00000000750216bd 2 bytes JMP 75568759 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3356] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                          0000000075021401 2 bytes JMP 754eb233 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3356] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                            0000000075021419 2 bytes JMP 754eb35e C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3356] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                          0000000075021431 2 bytes JMP 75569011 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3356] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                          000000007502144a 2 bytes CALL 754c48ad C:\Windows\syswow64\kernel32.dll
.text   ...                                                                                                                                                                                                * 9
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3356] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                             00000000750214dd 2 bytes JMP 7556890a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3356] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                      00000000750214f5 2 bytes JMP 75568ae0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3356] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                             000000007502150d 2 bytes JMP 75568800 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3356] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                      0000000075021525 2 bytes JMP 75568bca C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3356] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                            000000007502153d 2 bytes JMP 754dfcc0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3356] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                 0000000075021555 2 bytes JMP 754e6907 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3356] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                          000000007502156d 2 bytes JMP 755690c9 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3356] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                            0000000075021585 2 bytes JMP 75568c2a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3356] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                               000000007502159d 2 bytes JMP 755687c4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3356] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                            00000000750215b5 2 bytes JMP 754dfd59 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3356] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                          00000000750215cd 2 bytes JMP 754eb2f4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3356] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                      00000000750216b2 2 bytes JMP 75568f8c C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\GalaxyClient\GalaxyClient Helper.exe[3356] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                      00000000750216bd 2 bytes JMP 75568759 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[6592] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                                  0000000075021401 2 bytes JMP 754eb233 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[6592] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                                    0000000075021419 2 bytes JMP 754eb35e C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[6592] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                                  0000000075021431 2 bytes JMP 75569011 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[6592] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                                  000000007502144a 2 bytes CALL 754c48ad C:\Windows\syswow64\kernel32.dll
.text   ...                                                                                                                                                                                                * 9
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[6592] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                                     00000000750214dd 2 bytes JMP 7556890a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[6592] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                              00000000750214f5 2 bytes JMP 75568ae0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[6592] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                                     000000007502150d 2 bytes JMP 75568800 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[6592] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                              0000000075021525 2 bytes JMP 75568bca C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[6592] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                                    000000007502153d 2 bytes JMP 754dfcc0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[6592] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                         0000000075021555 2 bytes JMP 754e6907 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[6592] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                                  000000007502156d 2 bytes JMP 755690c9 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[6592] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                                    0000000075021585 2 bytes JMP 75568c2a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[6592] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                                       000000007502159d 2 bytes JMP 755687c4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[6592] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                                    00000000750215b5 2 bytes JMP 754dfd59 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[6592] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                                  00000000750215cd 2 bytes JMP 754eb2f4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[6592] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                              00000000750216b2 2 bytes JMP 75568f8c C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[6592] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                              00000000750216bd 2 bytes JMP 75568759 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Common Files\Steam\SteamService.exe[6620] C:\Windows\syswow64\psapi.dll!GetModuleFileNameExW + 17                                                                           0000000075021401 2 bytes JMP 754eb233 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Common Files\Steam\SteamService.exe[6620] C:\Windows\syswow64\psapi.dll!EnumProcessModules + 17                                                                             0000000075021419 2 bytes JMP 754eb35e C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Common Files\Steam\SteamService.exe[6620] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 17                                                                           0000000075021431 2 bytes JMP 75569011 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Common Files\Steam\SteamService.exe[6620] C:\Windows\syswow64\psapi.dll!GetModuleInformation + 42                                                                           000000007502144a 2 bytes CALL 754c48ad C:\Windows\syswow64\kernel32.dll
.text   ...                                                                                                                                                                                                * 9
.text   C:\Program Files (x86)\Common Files\Steam\SteamService.exe[6620] C:\Windows\syswow64\psapi.dll!EnumDeviceDrivers + 17                                                                              00000000750214dd 2 bytes JMP 7556890a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Common Files\Steam\SteamService.exe[6620] C:\Windows\syswow64\psapi.dll!GetDeviceDriverBaseNameA + 17                                                                       00000000750214f5 2 bytes JMP 75568ae0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Common Files\Steam\SteamService.exe[6620] C:\Windows\syswow64\psapi.dll!QueryWorkingSetEx + 17                                                                              000000007502150d 2 bytes JMP 75568800 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Common Files\Steam\SteamService.exe[6620] C:\Windows\syswow64\psapi.dll!GetDeviceDriverBaseNameW + 17                                                                       0000000075021525 2 bytes JMP 75568bca C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Common Files\Steam\SteamService.exe[6620] C:\Windows\syswow64\psapi.dll!GetModuleBaseNameW + 17                                                                             000000007502153d 2 bytes JMP 754dfcc0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Common Files\Steam\SteamService.exe[6620] C:\Windows\syswow64\psapi.dll!EnumProcesses + 17                                                                                  0000000075021555 2 bytes JMP 754e6907 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Common Files\Steam\SteamService.exe[6620] C:\Windows\syswow64\psapi.dll!GetProcessMemoryInfo + 17                                                                           000000007502156d 2 bytes JMP 755690c9 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Common Files\Steam\SteamService.exe[6620] C:\Windows\syswow64\psapi.dll!GetPerformanceInfo + 17                                                                             0000000075021585 2 bytes JMP 75568c2a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Common Files\Steam\SteamService.exe[6620] C:\Windows\syswow64\psapi.dll!QueryWorkingSet + 17                                                                                000000007502159d 2 bytes JMP 755687c4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Common Files\Steam\SteamService.exe[6620] C:\Windows\syswow64\psapi.dll!GetModuleBaseNameA + 17                                                                             00000000750215b5 2 bytes JMP 754dfd59 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Common Files\Steam\SteamService.exe[6620] C:\Windows\syswow64\psapi.dll!GetModuleFileNameExA + 17                                                                           00000000750215cd 2 bytes JMP 754eb2f4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Common Files\Steam\SteamService.exe[6620] C:\Windows\syswow64\psapi.dll!GetProcessImageFileNameW + 20                                                                       00000000750216b2 2 bytes JMP 75568f8c C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Common Files\Steam\SteamService.exe[6620] C:\Windows\syswow64\psapi.dll!GetProcessImageFileNameW + 31                                                                       00000000750216bd 2 bytes JMP 75568759 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\SysWOW64\ntdll.dll!NtSetInformationThread + 5                                                                                 000000007744f9f1 7 bytes {MOV EDX, 0xdb7ae8; JMP RDX}
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\SysWOW64\ntdll.dll!NtOpenKey + 5                                                                                              000000007744fa6d 7 bytes {MOV EDX, 0xdb79a8; JMP RDX}
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\SysWOW64\ntdll.dll!NtCreateKey + 5                                                                                            000000007744fb85 7 bytes {MOV EDX, 0xdb7968; JMP RDX}
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\SysWOW64\ntdll.dll!NtOpenThreadToken + 5                                                                                      000000007744fc35 7 bytes {MOV EDX, 0xdb7b28; JMP RDX}
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcess + 5                                                                                          000000007744fc65 7 bytes {MOV EDX, 0xdb7a68; JMP RDX}
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\SysWOW64\ntdll.dll!NtSetInformationFile + 5                                                                                   000000007744fc7d 7 bytes {MOV EDX, 0xdb7928; JMP RDX}
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\SysWOW64\ntdll.dll!NtMapViewOfSection + 5                                                                                     000000007744fc95 7 bytes {MOV EDX, 0xdb7be8; JMP RDX}
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\SysWOW64\ntdll.dll!NtUnmapViewOfSection + 5                                                                                   000000007744fcc5 7 bytes {MOV EDX, 0xdb7c28; JMP RDX}
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\SysWOW64\ntdll.dll!NtOpenThreadTokenEx + 5                                                                                    000000007744fd45 7 bytes {MOV EDX, 0xdb7ba8; JMP RDX}
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcessTokenEx + 5                                                                                   000000007744fd5d 7 bytes {MOV EDX, 0xdb7b68; JMP RDX}
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\SysWOW64\ntdll.dll!NtOpenFile + 5                                                                                             000000007744fda9 7 bytes {MOV EDX, 0xdb7868; JMP RDX}
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\SysWOW64\ntdll.dll!NtQueryAttributesFile + 5                                                                                  000000007744fea1 7 bytes {MOV EDX, 0xdb78a8; JMP RDX}
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\SysWOW64\ntdll.dll!NtCreateFile + 5                                                                                           00000000774500f9 7 bytes {MOV EDX, 0xdb7828; JMP RDX}
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\SysWOW64\ntdll.dll!NtOpenKeyEx + 5                                                                                            000000007745105d 7 bytes {MOV EDX, 0xdb79e8; JMP RDX}
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\SysWOW64\ntdll.dll!NtOpenProcessToken + 5                                                                                     0000000077451105 7 bytes {MOV EDX, 0xdb7aa8; JMP RDX}
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\SysWOW64\ntdll.dll!NtOpenThread + 5                                                                                           000000007745117d 7 bytes {MOV EDX, 0xdb7a28; JMP RDX}
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\SysWOW64\ntdll.dll!NtQueryFullAttributesFile + 5                                                                              0000000077451381 7 bytes {MOV EDX, 0xdb78e8; JMP RDX}
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExW + 17                                                                                  0000000075021401 2 bytes JMP 754eb233 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\syswow64\PSAPI.DLL!EnumProcessModules + 17                                                                                    0000000075021419 2 bytes JMP 754eb35e C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 17                                                                                  0000000075021431 2 bytes JMP 75569011 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 42                                                                                  000000007502144a 2 bytes CALL 754c48ad C:\Windows\syswow64\kernel32.dll
.text   ...                                                                                                                                                                                                * 9
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\syswow64\PSAPI.DLL!EnumDeviceDrivers + 17                                                                                     00000000750214dd 2 bytes JMP 7556890a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameA + 17                                                                              00000000750214f5 2 bytes JMP 75568ae0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSetEx + 17                                                                                     000000007502150d 2 bytes JMP 75568800 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\syswow64\PSAPI.DLL!GetDeviceDriverBaseNameW + 17                                                                              0000000075021525 2 bytes JMP 75568bca C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameW + 17                                                                                    000000007502153d 2 bytes JMP 754dfcc0 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\syswow64\PSAPI.DLL!EnumProcesses + 17                                                                                         0000000075021555 2 bytes JMP 754e6907 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\syswow64\PSAPI.DLL!GetProcessMemoryInfo + 17                                                                                  000000007502156d 2 bytes JMP 755690c9 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\syswow64\PSAPI.DLL!GetPerformanceInfo + 17                                                                                    0000000075021585 2 bytes JMP 75568c2a C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\syswow64\PSAPI.DLL!QueryWorkingSet + 17                                                                                       000000007502159d 2 bytes JMP 755687c4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\syswow64\PSAPI.DLL!GetModuleBaseNameA + 17                                                                                    00000000750215b5 2 bytes JMP 754dfd59 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\syswow64\PSAPI.DLL!GetModuleFileNameExA + 17                                                                                  00000000750215cd 2 bytes JMP 754eb2f4 C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 20                                                                              00000000750216b2 2 bytes JMP 75568f8c C:\Windows\syswow64\kernel32.dll
.text   C:\Program Files (x86)\Steam\bin\steamwebhelper.exe[2724] C:\Windows\syswow64\PSAPI.DLL!GetProcessImageFileNameW + 31                                                                              00000000750216bd 2 bytes JMP 75568759 C:\Windows\syswow64\kernel32.dll
 


Edited by zirgonB, 31 January 2016 - 03:29 PM.


#3 zirgonB

zirgonB
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:04:38 PM

Posted 31 January 2016 - 03:30 PM

--- User IAT/EAT - GMER 2.1 ----

IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\msiexec.exe[ADVAPI32.dll!RegCreateKeyExW]                                                                                              [7fef2beb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\msiexec.exe[ADVAPI32.dll!RegDeleteValueW]                                                                                              [7fef2bebbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\msiexec.exe[ADVAPI32.dll!RegOpenKeyExW]                                                                                                [7fef2beb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\msiexec.exe[ADVAPI32.dll!RegSetValueExW]                                                                                               [7fef2bebaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\msiexec.exe[KERNEL32.dll!GetProcAddress]                                                                                               [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!CopyFileW]                                                                                                   [7fef2bea184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!GetProcAddress]                                                                                              [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!CreateFileW]                                                                                                 [7fef2bea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\ADVAPI32.dll[KERNEL32.dll!DeleteFileW]                                                                                                 [7fef2bea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegOpenKeyExW]                                                                                                 [7fef2beb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegCreateKeyExW]                                                                                               [7fef2beb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!RegSetValueExW]                                                                                                [7fef2bebaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!GetProcAddress]                                                                                                [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\USER32.dll[KERNEL32.dll!CreateFileW]                                                                                                   [7fef2bea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!CopyFileW]                                                                                                      [7fef2bea184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!DeleteFileW]                                                                                                    [7fef2bea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!CreateFileW]                                                                                                    [7fef2bea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\GDI32.dll[KERNEL32.dll!GetProcAddress]                                                                                                 [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\msi.dll[ADVAPI32.dll!SetFileSecurityW]                                                                                                 [7fef2bebcb0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\msi.dll[ADVAPI32.dll!RegCreateKeyExW]                                                                                                  [7fef2beb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\msi.dll[ADVAPI32.dll!RegSetValueExA]                                                                                                   [7fef2beba0c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\msi.dll[ADVAPI32.dll!RegOpenKeyExW]                                                                                                    [7fef2beb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\msi.dll[ADVAPI32.dll!RegDeleteValueW]                                                                                                  [7fef2bebbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\msi.dll[ADVAPI32.dll!RegDeleteKeyW]                                                                                                    [7fef2bed12c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\msi.dll[ADVAPI32.dll!RegSetValueExW]                                                                                                   [7fef2bebaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\msi.dll[KERNEL32.dll!MoveFileExW]                                                                                                      [7fef2bea804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\msi.dll[KERNEL32.dll!SetFileAttributesW]                                                                                               [7fef2beabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\msi.dll[KERNEL32.dll!MoveFileW]                                                                                                        [7fef2bea6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\msi.dll[KERNEL32.dll!DeleteFileW]                                                                                                      [7fef2bea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\msi.dll[KERNEL32.dll!CreateFileW]                                                                                                      [7fef2bea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\msi.dll[KERNEL32.dll!GetProcAddress]                                                                                                   [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!CopyFileW]                                                                                                    [7fef2bea184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!MoveFileExW]                                                                                                  [7fef2bea804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\SHELL32.dll[KERNEL32.dll!MoveFileW]                                                                                                    [7fef2bea6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!DeleteFileW]                                                                                                  [7fef2bea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!CreateFileW]                                                                                                  [7fef2bea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!SetFileAttributesW]                                                                                           [7fef2beabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!SetFileAttributesA]                                                                                           [7fef2beab7c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!GetProcAddress]                                                                                               [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\SHLWAPI.dll[KERNEL32.dll!CreateFileA]                                                                                                  [7fef2bea2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!DeleteFileW]                                                                                                 [7fef2bea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!MoveFileExW]                                                                                                 [7fef2bea804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!SetFileAttributesW]                                                                                          [7fef2beabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!CopyFileW]                                                                                                   [7fef2bea184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!CreateFileW]                                                                                                 [7fef2bea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\WINSPOOL.DRV[KERNEL32.dll!GetProcAddress]                                                                                              [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\MPR.dll[KERNEL32.dll!GetProcAddress]                                                                                                   [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\sfc_os.DLL[KERNEL32.dll!GetProcAddress]                                                                                                [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\USERENV.dll[KERNEL32.dll!PrivCopyFileExW]                                                                                              [7fef2beab04] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\USERENV.dll[KERNEL32.dll!MoveFileExW]                                                                                                  [7fef2bea804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\dwmapi.dll[KERNEL32.dll!GetProcAddress]                                                                                                [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!OpenFile]                                                                                                       [7fef2bea890] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!CreateFileW]                                                                                                    [7fef2bea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\IMM32.DLL[KERNEL32.dll!GetProcAddress]                                                                                                 [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\MSCTF.dll[KERNEL32.dll!GetProcAddress]                                                                                                 [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757\COMCTL32.DLL[KERNEL32.dll!CreateFileW]     [7fef2bea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757\COMCTL32.DLL[KERNEL32.dll!GetProcAddress]  [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\CLBCatQ.DLL[ADVAPI32.dll!RegDeleteValueW]                                                                                              [7fef2bebbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\CLBCatQ.DLL[ADVAPI32.dll!RegCreateKeyExW]                                                                                              [7fef2beb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\CLBCatQ.DLL[ADVAPI32.dll!RegSetValueExW]                                                                                               [7fef2bebaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\CLBCatQ.DLL[ADVAPI32.dll!RegOpenKeyExW]                                                                                                [7fef2beb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\CLBCatQ.DLL[KERNEL32.dll!MoveFileExW]                                                                                                  [7fef2bea804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\CLBCatQ.DLL[KERNEL32.dll!CreateFileW]                                                                                                  [7fef2bea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\CLBCatQ.DLL[KERNEL32.dll!SetFileAttributesW]                                                                                           [7fef2beabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\CLBCatQ.DLL[KERNEL32.dll!MoveFileW]                                                                                                    [7fef2bea6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\CLBCatQ.DLL[KERNEL32.dll!DeleteFileW]                                                                                                  [7fef2bea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\CLBCatQ.DLL[KERNEL32.dll!GetProcAddress]                                                                                               [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!GetProcAddress]                                                                                              [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!_lwrite]                                                                                                     [7fef2beaa1c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!CreateFileW]                                                                                                 [7fef2bea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\OLEAUT32.dll[KERNEL32.dll!CreateFileA]                                                                                                 [7fef2bea2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\rsaenh.dll[KERNEL32.dll!DeleteFileW]                                                                                                   [7fef2bea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\rsaenh.dll[KERNEL32.dll!CreateFileW]                                                                                                   [7fef2bea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\rsaenh.dll[KERNEL32.dll!RegCreateKeyExA]                                                                                               [7fef2beb3dc] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\rsaenh.dll[KERNEL32.dll!GetProcAddress]                                                                                                [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\rsaenh.dll[KERNEL32.dll!MoveFileExW]                                                                                                   [7fef2bea804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\rsaenh.dll[KERNEL32.dll!RegSetValueExA]                                                                                                [7fef2beba0c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\srvcli.dll[KERNEL32.dll!GetProcAddress]                                                                                                [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\wkscli.dll[KERNEL32.dll!GetProcAddress]                                                                                                [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\WINTRUST.dll[KERNEL32.dll!SetFileAttributesW]                                                                                          [7fef2beabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\WINTRUST.dll[KERNEL32.dll!CreateFileW]                                                                                                 [7fef2bea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\WINTRUST.dll[KERNEL32.dll!GetProcAddress]                                                                                              [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!CreateFileA]                                                                                                  [7fef2bea2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!DeleteFileW]                                                                                                  [7fef2bea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!SetFileAttributesW]                                                                                           [7fef2beabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!CreateFileW]                                                                                                  [7fef2bea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\CRYPT32.dll[KERNEL32.dll!GetProcAddress]                                                                                               [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\ncrypt.dll[KERNEL32.dll!DeleteFileW]                                                                                                   [7fef2bea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\ncrypt.dll[KERNEL32.dll!CreateFileW]                                                                                                   [7fef2bea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\ncrypt.dll[KERNEL32.dll!MoveFileExW]                                                                                                   [7fef2bea804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\bcrypt.dll[KERNEL32.dll!GetProcAddress]                                                                                                [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\GPAPI.dll[KERNEL32.dll!MoveFileExW]                                                                                                    [7fef2bea804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\WINSTA.dll[KERNEL32.dll!GetProcAddress]                                                                                                [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\WINSTA.dll[KERNEL32.dll!RegOpenKeyExW]                                                                                                 [7fef2beb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\cryptnet.dll[KERNEL32.dll!SetFileAttributesW]                                                                                          [7fef2beabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\cryptnet.dll[KERNEL32.dll!DeleteFileW]                                                                                                 [7fef2bea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\cryptnet.dll[KERNEL32.dll!CreateFileW]                                                                                                 [7fef2bea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\cryptnet.dll[KERNEL32.dll!GetProcAddress]                                                                                              [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\WLDAP32.dll[KERNEL32.dll!GetProcAddress]                                                                                               [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\WINHTTP.dll[KERNEL32.dll!CreateFileW]                                                                                                  [7fef2bea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\WINHTTP.dll[KERNEL32.dll!GetProcAddress]                                                                                               [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\webio.dll[KERNEL32.dll!GetProcAddress]                                                                                                 [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\webio.dll[KERNEL32.dll!RegOpenKeyExW]                                                                                                  [7fef2beb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\credssp.dll[KERNEL32.dll!GetProcAddress]                                                                                               [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\CFGMGR32.dll[ADVAPI32.dll!RegCreateKeyExW]                                                                                             [7fef2beb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\CFGMGR32.dll[ADVAPI32.dll!RegOpenKeyExW]                                                                                               [7fef2beb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\CFGMGR32.dll[ADVAPI32.dll!RegSetValueExW]                                                                                              [7fef2bebaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\CFGMGR32.dll[ADVAPI32.dll!RegDeleteValueW]                                                                                             [7fef2bebbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\CFGMGR32.dll[KERNEL32.dll!GetProcAddress]                                                                                              [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!MoveFileExW]                                                                                                 [7fef2bea804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!CopyFileW]                                                                                                   [7fef2bea184] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!CreateFileA]                                                                                                 [7fef2bea2d8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!RegSetValueExW]                                                                                              [7fef2bebaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!RegDeleteValueW]                                                                                             [7fef2bebbc8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!RegCreateKeyExW]                                                                                             [7fef2beb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!RegOpenKeyExW]                                                                                               [7fef2beb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!GetProcAddress]                                                                                              [7fefcdf4230] C:\Windows\system32\apphelp.dll
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!MoveFileW]                                                                                                   [7fef2bea6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!DeleteFileW]                                                                                                 [7fef2bea5e4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!SetFileAttributesW]                                                                                          [7fef2beabe0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\SETUPAPI.dll[KERNEL32.dll!CreateFileW]                                                                                                 [7fef2bea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\DEVRTL.dll[KERNEL32.dll!MoveFileW]                                                                                                     [7fef2bea6e0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\DEVRTL.dll[KERNEL32.dll!MoveFileExW]                                                                                                   [7fef2bea804] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\ntmarta.dll[ADVAPI32.dll!RegSetValueExW]                                                                                               [7fef2bebaa8] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\ntmarta.dll[ADVAPI32.dll!RegCreateKeyExW]                                                                                              [7fef2beb4f4] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\ntmarta.dll[ADVAPI32.dll!RegOpenKeyExW]                                                                                                [7fef2beb6d0] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\ntmarta.dll[KERNEL32.dll!CreateFileW]                                                                                                  [7fef2bea42c] C:\Windows\AppPatch\AppPatch64\AcGenral.DLL
IAT     C:\Windows\system32\msiexec.exe[6872] @ C:\Windows\system32\ntmarta.dll[KERNEL32.dll!GetProcAddress]                                                                                               [7fefcdf4230] C:\Windows\system32\apphelp.dll

---- Threads - GMER 2.1 ----

Thread  C:\Windows\System32\svchost.exe [2628:4256]                                                                                                                                                        000007fef59e9688
Thread  C:\Program Files\Windows Media Player\wmpnetwk.exe [5008:3916]                                                                                                                                     000007fefb2c2af8

---- EOF - GMER 2.1 ----
 

 

<b>I need a little bit advice with this. Is it a false positive?</b>



#4 zirgonB

zirgonB
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:04:38 PM

Posted 13 February 2016 - 12:06 PM

Did I do something wrong; break the rules or such, since no one replies?

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:38 PM

Posted 22 February 2016 - 08:51 PM

Hi, not certain it's malware but lets look at these.....


3Al62Pm.pngMiniToolBox
  • Please download MiniToolBox, save it to your desktop and run it.
  • Checkmark the following checkboxes:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
SXvL3ZF.pngTDSSKiller
  • Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
zcMPezJ.pngAdwCleaner
  • Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
lv0mVRW.pngJunkware Removal Tool
  • Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
cvMlKv6.pngESET Online Scanner
  • Click here to download the installer for ESET Online Scanner and save it to your Desktop.
  • Disable all your antivirus and antimalware software - see how to do that here.
  • Right click on esetsmartinstaller_enu.exe and select Run as Administrator.
  • Place a checkmark in YES, I accept the Terms of Use, then click Start. Wait for ESET Online Scanner to load its components.
  • Select Enable detection of potentially unwanted applications.
  • Click Advanced Settings, then place a checkmark in the following:
    • Remove found threats
    • Scan archives
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • Click Start to begin scanning.
  • ESET Online Scanner will start downloading signatures and scan. Please be patient, as this scan can take quite some time.
  • When the scan is done, click List threats (only available if ESET Online Scanner found something).
  • Click Export, then save the file to your desktop.
  • Click Back, then Finish to exit ESET Online Scanner.
>>>

51a46ae42d560-malwarebytes_anti_malware.Malwarebytes Anti-Malware
  • Download MalwareBytes Anti-Malware to your desktop.
  • Double-click mbam-setup-2.0.exe to start the installation of Malwarebytes Anti-Malware.
  • Follow the instructions on your screen to complete the installation. You can find the complete installation procedure here.
  • Click the Scan Now button, a threat scan will start automatically.
  • MalwareBytes Anti-Malware will now check for the latest updates. Click Update Now if new updates are available.
  • Your computer is now being scanned, please do not use your computer during the scan.
    • If no threats were found, click View detailed log.
      • Click Export and save the log as a .txt file on your Desktop or another location.
    • If the scan detected any threats, click Apply Actions.
      • To complete any actions taken you will be prompted to restart your computer...click on Yes.
      • After reboot, start Malwarebytes Anti-Malware again and click the History Tab at the top and select Application Logs.
      • Check the box next to Scan Log. Choose the most current scan and click View.
      • Click Export and save the log as a .txt file on your Desktop or another location.
  • Providing the MalwareBytes' Anti-Malware log file
    • Attach the log file you just saved to your next reply for further review.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 zirgonB

zirgonB
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:04:38 PM

Posted 29 February 2016 - 12:07 AM

Minitoolbar

 

MiniToolBox by Farbar  Version: 07-02-2016 01
Ran by juissi (administrator) on 29-02-2016 at 06:58:55
Running from "C:\Users\juissi\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Model: DP67DE__ Manufacturer: INTEL_
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP-m��ritykset

DNS-tulkintatoiminnon v�limuistin tyhjent�minen onnistui.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
127.0.0.1       localhost
========================= IP Configuration: ================================

Intel® 82579V Gigabit Network Connection = Lähiverkkoyhteys (Connected)
TeamViewer VPN Adapter = Lähiverkkoyhteys 3 (Media disconnected)


# ----------------------------------
# IPv4-m„„ritys
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# IPv4-kokoonpanon loppu.



Windows IP-m„„ritykset

        Is„nt„nimi  . . . . . . . . . . . : swashili
        Ensisijainen DNS-liite  . . . . . :
        Solmutyyppi . . . . . . . . . . . : Hybridi
        IP-reititys k„yt”ss„  . . . . . . : Ei
        WINS-v„lityspalvelin k„yt”ss„ . . : Ei
        DNS-liitteiden etsint„luettelo  . : home

Ethernet-sovitin L„hiverkkoyhteys* 9:

        Yhteyskohtainen DNS-liite . . . . :
        Kuvaus  . . . . . . . . . . . . . : Anchorfree HSS VPN Adapter
        Fyysinen osoite . . . . . . . . . : 00-FF-63-82-44-D7
        DHCP k„yt”ss„ . . . . . . . . . . : Kyll„
        Automaattinen m„„ritys k„yt”ss„ . : Kyll„
   Linkin paikallinen IPv6-osoite. . : fe80::51c7:3ecf:de68:b846%18(Ensisijainen)
   IPv4-osoite . . . . . . . . . . . : 10.254.248.12(Ensisijainen)
        Aliverkon peite . . . . . . . . . : 255.255.248.0
        K„ytt”lupa my”nnetty  . . . . . . : 28. helmikuuta 2016 17:36:30
        K„ytt”lupa vanhenee . . . . . . : 27. helmikuuta 2017 17:36:30
        Oletusyhdysk„yt„v„. . . . . . . . :
        DHCP-palvelin . . . . . . . . . . : 10.254.255.254
   DHCPv6-IAID . . . . . . . . . . . : 302055267
   DHCPv6-asiakkaan DUID-tunnus  . . : 00-01-00-01-1C-B7-37-32-E0-69-95-2E-BE-14
        DNS-palvelimet  . . . . . . . . . : 8.8.8.8
        NetBIOS TCP/IP:n p„„ll„ . . . . . : Ei k„yt”ss„

Ethernet-sovitin L„hiverkkoyhteys 3:

        Laitteen tila . . . . . . . . . . : Ei kytketty
        Yhteyskohtainen DNS-liite . . . . :
        Kuvaus  . . . . . . . . . . . . . : TeamViewer VPN Adapter
        Fyysinen osoite . . . . . . . . . : 00-FF-EA-5C-4F-23
        DHCP k„yt”ss„ . . . . . . . . . . : Kyll„
        Automaattinen m„„ritys k„yt”ss„ . : Kyll„

Ethernet-sovitin L„hiverkkoyhteys:

        Yhteyskohtainen DNS-liite . . . . : home
        Kuvaus  . . . . . . . . . . . . . : Intel® 82579V Gigabit Network Connection
        Fyysinen osoite . . . . . . . . . : E0-69-95-2E-BE-14
        DHCP k„yt”ss„ . . . . . . . . . . : Kyll„
        Automaattinen m„„ritys k„yt”ss„ . : Kyll„
   Linkin paikallinen IPv6-osoite. . : fe80::31d7:6815:f76c:7c2%10(Ensisijainen)
   IPv4-osoite . . . . . . . . . . . : 192.168.10.53(Ensisijainen)
        Aliverkon peite . . . . . . . . . : 255.255.255.0
        K„ytt”lupa my”nnetty  . . . . . . : 28. helmikuuta 2016 17:34:18
        K„ytt”lupa vanhenee . . . . . . : 1. maaliskuuta 2016 5:34:19
        Oletusyhdysk„yt„v„. . . . . . . . : 192.168.10.1
        DHCP-palvelin . . . . . . . . . . : 192.168.10.1
   DHCPv6-IAID . . . . . . . . . . . : 249588117
   DHCPv6-asiakkaan DUID-tunnus  . . : 00-01-00-01-1C-B7-37-32-E0-69-95-2E-BE-14
        DNS-palvelimet  . . . . . . . . . : 192.168.10.1
   NetBIOS TCP/IP:n p„„ll„ . . . . . : K„yt”ss„

Tunnelisovitin isatap.{638244D7-3F22-4F5A-B650-8B1F5D7B0824}:

        Laitteen tila . . . . . . . . . . : Ei kytketty
        Yhteyskohtainen DNS-liite . . . . :
        Kuvaus  . . . . . . . . . . . . . : Microsoft ISATAP -sovitin
        Fyysinen osoite . . . . . . . . . : 00-00-00-00-00-00-00-E0
        DHCP k„yt”ss„ . . . . . . . . . . : Ei
        Automaattinen m„„ritys k„yt”ss„ . : Kyll„

Tunnelisovitin Teredo Tunneling Pseudo-Interface:

        Laitteen tila . . . . . . . . . . : Ei kytketty
        Yhteyskohtainen DNS-liite . . . . :
        Kuvaus  . . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
        Fyysinen osoite . . . . . . . . . : 00-00-00-00-00-00-00-E0
        DHCP k„yt”ss„ . . . . . . . . . . : Ei
        Automaattinen m„„ritys k„yt”ss„ . : Kyll„

Tunnelisovitin isatap.{EA5C4F23-1F0A-472B-9408-7997BDE9E645}:

        Laitteen tila . . . . . . . . . . : Ei kytketty
        Yhteyskohtainen DNS-liite . . . . :
        Kuvaus  . . . . . . . . . . . . . : Microsoft ISATAP -sovitin #2
        Fyysinen osoite . . . . . . . . . : 00-00-00-00-00-00-00-E0
        DHCP k„yt”ss„ . . . . . . . . . . : Ei
        Automaattinen m„„ritys k„yt”ss„ . : Kyll„

Tunnelisovitin isatap.home:

        Laitteen tila . . . . . . . . . . : Ei kytketty
        Yhteyskohtainen DNS-liite . . . . : home
        Kuvaus  . . . . . . . . . . . . . : Microsoft ISATAP -sovitin #3
        Fyysinen osoite . . . . . . . . . : 00-00-00-00-00-00-00-E0
        DHCP k„yt”ss„ . . . . . . . . . . : Ei
        Automaattinen m„„ritys k„yt”ss„ . : Kyll„
Palvelin:  google-public-dns-a.google.com
Address:  8.8.8.8

Nimi:    google.com
Address:  173.194.116.199


Ping-is„nt„: google.com [173.194.116.199] 32 tavua tietoja:
Vastaus is„nn„lt„ 173.194.116.199: tavuja=32 aika=64 ms TTL=57
Vastaus is„nn„lt„ 173.194.116.199: tavuja=32 aika=64 ms TTL=57

Ping-tilastot 173.194.116.199:
    Paketit: L„hetetty = 2, Vastaanotettu = 2, Kadonnut = 0
             (0% h„vikki),
Arvioitu kiertoaika millisekunteina:
    Pienin = 64 ms, Suurin = 64 ms, Keskiarvo = 64 ms
Palvelin:  google-public-dns-a.google.com
Address:  8.8.8.8

Nimi:    yahoo.com
Address:  98.139.183.24


Ping-is„nt„: yahoo.com [98.139.183.24] 32 tavua tietoja:
Vastaus is„nn„lt„ 98.139.183.24: tavuja=32 aika=160 ms TTL=53
Vastaus is„nn„lt„ 98.139.183.24: tavuja=32 aika=162 ms TTL=53

Ping-tilastot 98.139.183.24:
    Paketit: L„hetetty = 2, Vastaanotettu = 2, Kadonnut = 0
             (0% h„vikki),
Arvioitu kiertoaika millisekunteina:
    Pienin = 160 ms, Suurin = 162 ms, Keskiarvo = 161 ms

Ping-is„nt„: 127.0.0.1 32 tavua tietoja:
Vastaus is„nn„lt„ 127.0.0.1: tavuja=32 aika<1ms TTL=128
Vastaus is„nn„lt„ 127.0.0.1: tavuja=32 aika<1ms TTL=128

Ping-tilastot 127.0.0.1:
    Paketit: L„hetetty = 2, Vastaanotettu = 2, Kadonnut = 0
             (0% h„vikki),
Arvioitu kiertoaika millisekunteina:
    Pienin = 0 ms, Suurin = 0 ms, Keskiarvo = 0 ms
===========================================================================
Sovitinluettelo
 18...00 ff 63 82 44 d7 ......Anchorfree HSS VPN Adapter
 16...00 ff ea 5c 4f 23 ......TeamViewer VPN Adapter
 10...e0 69 95 2e be 14 ......Intel® 82579V Gigabit Network Connection
  1...........................Software Loopback Interface 1
 13...00 00 00 00 00 00 00 e0 Microsoft ISATAP -sovitin
 11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 15...00 00 00 00 00 00 00 e0 Microsoft ISATAP -sovitin #2
 17...00 00 00 00 00 00 00 e0 Microsoft ISATAP -sovitin #3
===========================================================================

IPv4 -reititystaulukko
===========================================================================
Active Routes:
Verkkokohde        Verkon peite          Yhdysk„yt„v„     Liittym„  Metric-arvo
          0.0.0.0          0.0.0.0     192.168.10.1    192.168.10.53     10
          0.0.0.0        128.0.0.0     10.254.248.1    10.254.248.12     30
     10.254.248.0    255.255.248.0   Linkin m„„ritt„m„     10.254.248.12    286
    10.254.248.12  255.255.255.255   Linkin m„„ritt„m„     10.254.248.12    286
   10.254.255.255  255.255.255.255   Linkin m„„ritt„m„     10.254.248.12    286
        127.0.0.0        255.0.0.0   Linkin m„„ritt„m„         127.0.0.1    306
        127.0.0.1  255.255.255.255   Linkin m„„ritt„m„         127.0.0.1    306
  127.255.255.255  255.255.255.255   Linkin m„„ritt„m„         127.0.0.1    306
        128.0.0.0        128.0.0.0     10.254.248.1    10.254.248.12     30
     192.168.10.0    255.255.255.0   Linkin m„„ritt„m„     192.168.10.53    266
    192.168.10.53  255.255.255.255   Linkin m„„ritt„m„     192.168.10.53    266
   192.168.10.255  255.255.255.255   Linkin m„„ritt„m„     192.168.10.53    266
    204.93.60.167  255.255.255.255     192.168.10.1    192.168.10.53     10
        224.0.0.0        240.0.0.0   Linkin m„„ritt„m„         127.0.0.1    306
        224.0.0.0        240.0.0.0   Linkin m„„ritt„m„     192.168.10.53    266
        224.0.0.0        240.0.0.0   Linkin m„„ritt„m„     10.254.248.12    286
  255.255.255.255  255.255.255.255   Linkin m„„ritt„m„         127.0.0.1    306
  255.255.255.255  255.255.255.255   Linkin m„„ritt„m„     192.168.10.53    266
  255.255.255.255  255.255.255.255   Linkin m„„ritt„m„     10.254.248.12    286
===========================================================================
Jatkuvat reitit:
  Ei mit„„n

IPv6 -reititystaulukko
===========================================================================
Active Routes:
 Jos verkkokohde on Metric-kohdeyhdysk„yt„v„
  1    306 ::1/128                  Linkin m„„ritt„m„
 10    266 fe80::/64                Linkin m„„ritt„m„
 18    286 fe80::/64                Linkin m„„ritt„m„
 10    266 fe80::31d7:6815:f76c:7c2/128
                                    Linkin m„„ritt„m„
 18    286 fe80::51c7:3ecf:de68:b846/128
                                    Linkin m„„ritt„m„
  1    306 ff00::/8                 Linkin m„„ritt„m„
 10    266 ff00::/8                 Linkin m„„ritt„m„
 18    286 ff00::/8                 Linkin m„„ritt„m„
===========================================================================
Jatkuvat reitit:
  Ei mit„„n
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/26/2016 10:17:45 PM) (Source: Application Error) (User: )
Description: Viallisen sovelluksen nimi: LolClient.exe, versio: 0.0.0.0, aikaleima: 0x515663e0
Viallisen moduulin nimi: Adobe AIR.dll, versio: 18.0.0.169, aikaleima: 0x557fc238
Poikkeuskoodi: 0xc0000005
Virhepoikkeama: 0x0006df0b
Viallisen prosessin tunnus: 0x1b24
Viallisen sovelluksen käynnistysaika: 0xLolClient.exe0
Viallisen sovelluksen polku: LolClient.exe1
Viallisen moduulin polku: LolClient.exe2
Raportin tunnus: LolClient.exe3

Error: (02/15/2016 12:31:51 PM) (Source: SideBySide) (User: )
Description: Aktivointikontekstin luonti kohteelle C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1 epäonnistui. Virhe luettelo- tai käytäntötiedoston C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2 rivillä C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Sovelluksen edellyttämä osaversio on ristiriidassa jo aktiivisena olevan osaversion kanssa.
Ristiriitaiset osat:
Osa 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Osa 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (02/15/2016 12:31:06 PM) (Source: SideBySide) (User: )
Description: Aktivointikontekstin luonti kohteelle C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1 epäonnistui. Virhe luettelo- tai käytäntötiedoston C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2 rivillä C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Sovelluksen edellyttämä osaversio on ristiriidassa jo aktiivisena olevan osaversion kanssa.
Ristiriitaiset osat:
Osa 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Osa 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (02/15/2016 12:31:01 PM) (Source: SideBySide) (User: )
Description: Aktivointikontekstin luonti kohteelle C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1 epäonnistui. Virhe luettelo- tai käytäntötiedoston C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2 rivillä C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Sovelluksen edellyttämä osaversio on ristiriidassa jo aktiivisena olevan osaversion kanssa.
Ristiriitaiset osat:
Osa 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Osa 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (02/15/2016 12:31:01 PM) (Source: SideBySide) (User: )
Description: Aktivointikontekstin luonti kohteelle C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1 epäonnistui. Virhe luettelo- tai käytäntötiedoston C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2 rivillä C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Sovelluksen edellyttämä osaversio on ristiriidassa jo aktiivisena olevan osaversion kanssa.
Ristiriitaiset osat:
Osa 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Osa 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (02/11/2016 12:43:07 AM) (Source: usbperf) (User: )
Description: First Counter -arvoa ei voi lukea kohdassa usbperf\Performance Key. Tilakoodit palautettiin tiedoissa.


System errors:
=============
Error: (02/28/2016 05:39:24 PM) (Source: Service Control Manager) (User: )
Description: Palvelu Windows Update lukkiutui käynnistyksessä.

Error: (02/28/2016 05:38:54 PM) (Source: DCOM) (User: )
Description: {E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error: (02/28/2016 05:37:09 PM) (Source: Disk) (User: )
Description: Ohjain havaitsi korttivirheen laitteella \Device\Harddisk1\DR1.

Error: (02/28/2016 05:37:09 PM) (Source: Disk) (User: )
Description: Ohjain havaitsi korttivirheen laitteella \Device\Harddisk1\DR1.

Error: (02/28/2016 05:37:08 PM) (Source: Disk) (User: )
Description: Ohjain havaitsi korttivirheen laitteella \Device\Harddisk1\DR1.

Error: (02/28/2016 05:37:08 PM) (Source: Disk) (User: )
Description: Ohjain havaitsi korttivirheen laitteella \Device\Harddisk1\DR1.

Error: (02/28/2016 05:35:03 PM) (Source: Disk) (User: )
Description: Ohjain havaitsi korttivirheen laitteella \Device\Harddisk1\DR1.

Error: (02/28/2016 05:35:03 PM) (Source: Disk) (User: )
Description: Ohjain havaitsi korttivirheen laitteella \Device\Harddisk1\DR1.

Error: (02/28/2016 05:34:14 PM) (Source: Disk) (User: )
Description: Ohjain havaitsi korttivirheen laitteella \Device\Harddisk1\DR1.

Error: (02/28/2016 05:34:14 PM) (Source: Disk) (User: )
Description: Ohjain havaitsi korttivirheen laitteella \Device\Harddisk1\DR1.


Microsoft Office Sessions:
=========================
Error: (02/26/2016 10:17:45 PM) (Source: Application Error)(User: )
Description: LolClient.exe0.0.0.0515663e0Adobe AIR.dll18.0.0.169557fc238c00000050006df0b1b2401d170a86e1f479bC:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.187\deploy\LolClient.exeC:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.187\deploy\Adobe AIR\Versions\1.0\Adobe AIR.dllfe9c9604-dcc5-11e5-b035-e069952ebe14

Error: (02/15/2016 12:31:51 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifestC:\Users\juissi\Downloads\esetsmartinstaller_enu.exe

Error: (02/15/2016 12:31:06 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifestC:\Users\juissi\Downloads\esetsmartinstaller_enu.exe

Error: (02/15/2016 12:31:01 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifestC:\Users\juissi\Downloads\esetsmartinstaller_enu.exe

Error: (02/15/2016 12:31:01 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifestC:\Users\juissi\Downloads\esetsmartinstaller_enu.exe

Error: (02/11/2016 12:43:07 AM) (Source: usbperf)(User: )
Description:


CodeIntegrity Errors:
===================================
  Date: 2016-01-09 05:09:11.257
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-09 05:09:11.227
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-07 22:53:51.630
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-07 22:53:51.583
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-07 22:53:51.552
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivad.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-07 22:53:51.521
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivad.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-06 19:33:25.287
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-06 19:33:25.256
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-06 19:33:25.209
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivad.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-06 19:33:25.178
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivad.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

7-Zip 15.04 alpha x64 (HKLM\...\7-Zip) (Version:  - )
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.306 - Adobe Systems Incorporated)
AnVir Task Manager Free (HKLM-x32\...\AnVir Task Manager Free) (Version:  - AnVir Software)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Applen ohjelmatuki (32-bittinen) (HKLM-x32\...\{C5815ACF-FD34-4553-8A22-C7411B7E662B}) (Version: 4.1.1 - Apple Inc.)
Applen ohjelmatuki (64-bittinen) (HKLM\...\{CBF12D2F-CF64-4CB7-858B-2C1F21068E5F}) (Version: 4.1.1 - Apple Inc.)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.15.141 - Avira Operations GmbH & Co. KG)
Avira Browser Safety (HKLM-x32\...\{9E10EA90-5E97-43B7-A246-FC7B4F5E9493}) (Version: 1.4.5.509 - Avira Operations GmbH & Co KG)
Avira Launcher (HKLM-x32\...\{A13A1408-E637-45D5-A5F3-DE0A14E0C7CE}) (Version: 1.1.54.24924 - Avira Operations GmbH & Co. KG) Hidden
Avira Launcher (HKLM-x32\...\{ccdc9cfe-8ba7-4c6c-ac5f-b2d6cfa49efc}) (Version: 1.1.54.24924 - Avira Operations GmbH & Co. KG)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Belarc Advisor 8.5c (HKLM-x32\...\Belarc Advisor) (Version: 8.5.3.0 - Belarc Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.13 - Piriform)
CIR Tool Kit (HKLM-x32\...\{2FAECEAF-0EBE-48FF-B60A-B4577C0EFDAB}) (Version: 2.2.2010.0714 - Nuvoton Technology Corp)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd)
Death Pirate (HKLM-x32\...\Steam App 359300) (Version:  - Singe Studio)
Defraggler (HKLM\...\Defraggler) (Version: 2.20 - Piriform)
D-Fend Reloaded 1.4.4 (deinstall) (HKLM-x32\...\D-Fend Reloaded) (Version: 1.4.4 - Alexander Herzog)
Don't Starve (HKLM-x32\...\Steam App 219740) (Version:  - Klei Entertainment)
GlassWire 1.1 (remove only) (HKLM-x32\...\GlassWire 1.1) (Version: 1.1.39 - SecureMix LLC)
Harvester (HKLM-x32\...\Steam App 287020) (Version:  - DigiFX Interactive)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Hotspot Shield 5.2.1 (HKLM-x32\...\HotspotShield) (Version: 5.2.1 - AnchorFree Inc.)
Hotspot Shield 5.2.1 Embedded (HKLM-x32\...\{AF599C42-A2E5-4251-B7EE-4925A147B323}) (Version: 5.2.1.0 - Buildbot) Hidden
Intel Driver Update Utility (HKLM-x32\...\{a699b395-cd93-4135-85ec-828113841355}) (Version: 2.2.0.6 - Intel)
Intel Processor Diagnostic Tool 64bit (HKLM\...\{F24BC99D-3FC1-4503-BEFA-5DDD16C6265A}) (Version: 2.20.0.0 - Intel Corporation)
Intel® Driver Update Utility 2.2.0.6 (HKLM-x32\...\{7B8CD972-B958-48BC-8727-7EE591A88AA5}) (Version: 2.2.0.1 - Intel) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1310 - Intel Corporation)
Intel® Network Connections 20.0.10.0 (HKLM\...\PROSetDX) (Version: 20.0.10.0 - Intel)
iTunes (HKLM\...\{0D44E3A4-6C3D-45D7-B443-079509E5BE5D}) (Version: 12.3.2.35 - Apple Inc.)
Java 8 Update 71 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418071F0}) (Version: 8.0.710.15 - Oracle Corporation)
Java 8 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218071F0}) (Version: 8.0.710.15 - Oracle Corporation)
League of Legends (HKLM-x32\...\{79BF4901-1EC4-4726-B3C2-A7859706C6E7}) (Version: 3.0.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
Magic 2014  (HKLM-x32\...\Steam App 213850) (Version:  - Stainless Games)
Magic Duels (HKLM-x32\...\Steam App 316010) (Version:  - Stainless Games Ltd.)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (suomi) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1035) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Might & Magic: Duel of Champions (HKLM-x32\...\Steam App 256410) (Version:  - BlueByte)
Mozilla Firefox 44.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 en-US)) (Version: 44.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2.5884 - Mozilla)
NVIDIA 3D Vision -ohjain 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation)
NVIDIA 3D Vision -ohjain 347.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.88 - NVIDIA Corporation)
NVIDIA Grafiikkaohjain 347.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.88 - NVIDIA Corporation)
NVIDIA HD-ääniohjain 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA PhysX-järjestelmäohjelmisto 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7240 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.28.1 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.28.1 - Renesas Electronics Corporation)
Secunia PSI (3.0.0.11003) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.11003 - Secunia)
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.4.1.21 - NVIDIA Corporation) Hidden
Skype™ 7.17 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.17.105 - Skype Technologies S.A.)
Speccy (HKLM\...\Speccy) (Version: 1.29 - Piriform)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.53254 - TeamViewer)
Tweaking.com - Technicians Toolbox (HKLM-x32\...\Tweaking.com - Technicians Toolbox) (Version: 1.0.1 - Tweaking.com)
Tweaking.com - Windows Repair (HKLM-x32\...\Tweaking.com - Windows Repair) (Version: 3.8.1 - Tweaking.com)
Unreal Tournament 2004 (HKLM-x32\...\Steam App 13230) (Version:  - Epic Games, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Xfire Codec (remove only) (HKLM-x32\...\XfireCodec) (Version:  - )
Zip Motion Block Video codec (Remove Only) (HKLM-x32\...\ZMBV) (Version:  - DOSBox Team)

========================= Memory info: ===================================

Percentage of memory in use: 44%
Total physical RAM: 8171.94 MB
Available physical RAM: 4511.89 MB
Total Virtual: 16342.09 MB
Available Virtual: 11820.21 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:489.03 GB) (Free:203.62 GB) NTFS
2 Drive d: () (Fixed) (Total:442.38 GB) (Free:255.76 GB) NTFS
3 Drive e: (GRMCHPXFREO_FI_DVD) (CDROM) (Total:2.9 GB) (Free:0 GB) UDF
4 Drive g: (FreeAgent GoFlex Drive) (Fixed) (Total:698.63 GB) (Free:20.63 GB) NTFS

========================= Users: ========================================

K„ytt„j„tilit \\SWASHILI

juissi                   J„rjestelm„nvalvoja      Vieras                   
Komento on suoritettu.


**** End of log ****
 


Minitoolbar

 

MiniToolBox by Farbar  Version: 07-02-2016 01
Ran by juissi (administrator) on 29-02-2016 at 06:58:55
Running from "C:\Users\juissi\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Model: DP67DE__ Manufacturer: INTEL_
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP-m��ritykset

DNS-tulkintatoiminnon v�limuistin tyhjent�minen onnistui.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
127.0.0.1       localhost
========================= IP Configuration: ================================

Intel® 82579V Gigabit Network Connection = Lähiverkkoyhteys (Connected)
TeamViewer VPN Adapter = Lähiverkkoyhteys 3 (Media disconnected)


# ----------------------------------
# IPv4-m„„ritys
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# IPv4-kokoonpanon loppu.



Windows IP-m„„ritykset

        Is„nt„nimi  . . . . . . . . . . . : swashili
        Ensisijainen DNS-liite  . . . . . :
        Solmutyyppi . . . . . . . . . . . : Hybridi
        IP-reititys k„yt”ss„  . . . . . . : Ei
        WINS-v„lityspalvelin k„yt”ss„ . . : Ei
        DNS-liitteiden etsint„luettelo  . : home

Ethernet-sovitin L„hiverkkoyhteys* 9:

        Yhteyskohtainen DNS-liite . . . . :
        Kuvaus  . . . . . . . . . . . . . : Anchorfree HSS VPN Adapter
        Fyysinen osoite . . . . . . . . . : 00-FF-63-82-44-D7
        DHCP k„yt”ss„ . . . . . . . . . . : Kyll„
        Automaattinen m„„ritys k„yt”ss„ . : Kyll„
   Linkin paikallinen IPv6-osoite. . : fe80::51c7:3ecf:de68:b846%18(Ensisijainen)
   IPv4-osoite . . . . . . . . . . . : 10.254.248.12(Ensisijainen)
        Aliverkon peite . . . . . . . . . : 255.255.248.0
        K„ytt”lupa my”nnetty  . . . . . . : 28. helmikuuta 2016 17:36:30
        K„ytt”lupa vanhenee . . . . . . : 27. helmikuuta 2017 17:36:30
        Oletusyhdysk„yt„v„. . . . . . . . :
        DHCP-palvelin . . . . . . . . . . : 10.254.255.254
   DHCPv6-IAID . . . . . . . . . . . : 302055267
   DHCPv6-asiakkaan DUID-tunnus  . . : 00-01-00-01-1C-B7-37-32-E0-69-95-2E-BE-14
        DNS-palvelimet  . . . . . . . . . : 8.8.8.8
        NetBIOS TCP/IP:n p„„ll„ . . . . . : Ei k„yt”ss„

Ethernet-sovitin L„hiverkkoyhteys 3:

        Laitteen tila . . . . . . . . . . : Ei kytketty
        Yhteyskohtainen DNS-liite . . . . :
        Kuvaus  . . . . . . . . . . . . . : TeamViewer VPN Adapter
        Fyysinen osoite . . . . . . . . . : 00-FF-EA-5C-4F-23
        DHCP k„yt”ss„ . . . . . . . . . . : Kyll„
        Automaattinen m„„ritys k„yt”ss„ . : Kyll„

Ethernet-sovitin L„hiverkkoyhteys:

        Yhteyskohtainen DNS-liite . . . . : home
        Kuvaus  . . . . . . . . . . . . . : Intel® 82579V Gigabit Network Connection
        Fyysinen osoite . . . . . . . . . : E0-69-95-2E-BE-14
        DHCP k„yt”ss„ . . . . . . . . . . : Kyll„
        Automaattinen m„„ritys k„yt”ss„ . : Kyll„
   Linkin paikallinen IPv6-osoite. . : fe80::31d7:6815:f76c:7c2%10(Ensisijainen)
   IPv4-osoite . . . . . . . . . . . : 192.168.10.53(Ensisijainen)
        Aliverkon peite . . . . . . . . . : 255.255.255.0
        K„ytt”lupa my”nnetty  . . . . . . : 28. helmikuuta 2016 17:34:18
        K„ytt”lupa vanhenee . . . . . . : 1. maaliskuuta 2016 5:34:19
        Oletusyhdysk„yt„v„. . . . . . . . : 192.168.10.1
        DHCP-palvelin . . . . . . . . . . : 192.168.10.1
   DHCPv6-IAID . . . . . . . . . . . : 249588117
   DHCPv6-asiakkaan DUID-tunnus  . . : 00-01-00-01-1C-B7-37-32-E0-69-95-2E-BE-14
        DNS-palvelimet  . . . . . . . . . : 192.168.10.1
   NetBIOS TCP/IP:n p„„ll„ . . . . . : K„yt”ss„

Tunnelisovitin isatap.{638244D7-3F22-4F5A-B650-8B1F5D7B0824}:

        Laitteen tila . . . . . . . . . . : Ei kytketty
        Yhteyskohtainen DNS-liite . . . . :
        Kuvaus  . . . . . . . . . . . . . : Microsoft ISATAP -sovitin
        Fyysinen osoite . . . . . . . . . : 00-00-00-00-00-00-00-E0
        DHCP k„yt”ss„ . . . . . . . . . . : Ei
        Automaattinen m„„ritys k„yt”ss„ . : Kyll„

Tunnelisovitin Teredo Tunneling Pseudo-Interface:

        Laitteen tila . . . . . . . . . . : Ei kytketty
        Yhteyskohtainen DNS-liite . . . . :
        Kuvaus  . . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
        Fyysinen osoite . . . . . . . . . : 00-00-00-00-00-00-00-E0
        DHCP k„yt”ss„ . . . . . . . . . . : Ei
        Automaattinen m„„ritys k„yt”ss„ . : Kyll„

Tunnelisovitin isatap.{EA5C4F23-1F0A-472B-9408-7997BDE9E645}:

        Laitteen tila . . . . . . . . . . : Ei kytketty
        Yhteyskohtainen DNS-liite . . . . :
        Kuvaus  . . . . . . . . . . . . . : Microsoft ISATAP -sovitin #2
        Fyysinen osoite . . . . . . . . . : 00-00-00-00-00-00-00-E0
        DHCP k„yt”ss„ . . . . . . . . . . : Ei
        Automaattinen m„„ritys k„yt”ss„ . : Kyll„

Tunnelisovitin isatap.home:

        Laitteen tila . . . . . . . . . . : Ei kytketty
        Yhteyskohtainen DNS-liite . . . . : home
        Kuvaus  . . . . . . . . . . . . . : Microsoft ISATAP -sovitin #3
        Fyysinen osoite . . . . . . . . . : 00-00-00-00-00-00-00-E0
        DHCP k„yt”ss„ . . . . . . . . . . : Ei
        Automaattinen m„„ritys k„yt”ss„ . : Kyll„
Palvelin:  google-public-dns-a.google.com
Address:  8.8.8.8

Nimi:    google.com
Address:  173.194.116.199


Ping-is„nt„: google.com [173.194.116.199] 32 tavua tietoja:
Vastaus is„nn„lt„ 173.194.116.199: tavuja=32 aika=64 ms TTL=57
Vastaus is„nn„lt„ 173.194.116.199: tavuja=32 aika=64 ms TTL=57

Ping-tilastot 173.194.116.199:
    Paketit: L„hetetty = 2, Vastaanotettu = 2, Kadonnut = 0
             (0% h„vikki),
Arvioitu kiertoaika millisekunteina:
    Pienin = 64 ms, Suurin = 64 ms, Keskiarvo = 64 ms
Palvelin:  google-public-dns-a.google.com
Address:  8.8.8.8

Nimi:    yahoo.com
Address:  98.139.183.24


Ping-is„nt„: yahoo.com [98.139.183.24] 32 tavua tietoja:
Vastaus is„nn„lt„ 98.139.183.24: tavuja=32 aika=160 ms TTL=53
Vastaus is„nn„lt„ 98.139.183.24: tavuja=32 aika=162 ms TTL=53

Ping-tilastot 98.139.183.24:
    Paketit: L„hetetty = 2, Vastaanotettu = 2, Kadonnut = 0
             (0% h„vikki),
Arvioitu kiertoaika millisekunteina:
    Pienin = 160 ms, Suurin = 162 ms, Keskiarvo = 161 ms

Ping-is„nt„: 127.0.0.1 32 tavua tietoja:
Vastaus is„nn„lt„ 127.0.0.1: tavuja=32 aika<1ms TTL=128
Vastaus is„nn„lt„ 127.0.0.1: tavuja=32 aika<1ms TTL=128

Ping-tilastot 127.0.0.1:
    Paketit: L„hetetty = 2, Vastaanotettu = 2, Kadonnut = 0
             (0% h„vikki),
Arvioitu kiertoaika millisekunteina:
    Pienin = 0 ms, Suurin = 0 ms, Keskiarvo = 0 ms
===========================================================================
Sovitinluettelo
 18...00 ff 63 82 44 d7 ......Anchorfree HSS VPN Adapter
 16...00 ff ea 5c 4f 23 ......TeamViewer VPN Adapter
 10...e0 69 95 2e be 14 ......Intel® 82579V Gigabit Network Connection
  1...........................Software Loopback Interface 1
 13...00 00 00 00 00 00 00 e0 Microsoft ISATAP -sovitin
 11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 15...00 00 00 00 00 00 00 e0 Microsoft ISATAP -sovitin #2
 17...00 00 00 00 00 00 00 e0 Microsoft ISATAP -sovitin #3
===========================================================================

IPv4 -reititystaulukko
===========================================================================
Active Routes:
Verkkokohde        Verkon peite          Yhdysk„yt„v„     Liittym„  Metric-arvo
          0.0.0.0          0.0.0.0     192.168.10.1    192.168.10.53     10
          0.0.0.0        128.0.0.0     10.254.248.1    10.254.248.12     30
     10.254.248.0    255.255.248.0   Linkin m„„ritt„m„     10.254.248.12    286
    10.254.248.12  255.255.255.255   Linkin m„„ritt„m„     10.254.248.12    286
   10.254.255.255  255.255.255.255   Linkin m„„ritt„m„     10.254.248.12    286
        127.0.0.0        255.0.0.0   Linkin m„„ritt„m„         127.0.0.1    306
        127.0.0.1  255.255.255.255   Linkin m„„ritt„m„         127.0.0.1    306
  127.255.255.255  255.255.255.255   Linkin m„„ritt„m„         127.0.0.1    306
        128.0.0.0        128.0.0.0     10.254.248.1    10.254.248.12     30
     192.168.10.0    255.255.255.0   Linkin m„„ritt„m„     192.168.10.53    266
    192.168.10.53  255.255.255.255   Linkin m„„ritt„m„     192.168.10.53    266
   192.168.10.255  255.255.255.255   Linkin m„„ritt„m„     192.168.10.53    266
    204.93.60.167  255.255.255.255     192.168.10.1    192.168.10.53     10
        224.0.0.0        240.0.0.0   Linkin m„„ritt„m„         127.0.0.1    306
        224.0.0.0        240.0.0.0   Linkin m„„ritt„m„     192.168.10.53    266
        224.0.0.0        240.0.0.0   Linkin m„„ritt„m„     10.254.248.12    286
  255.255.255.255  255.255.255.255   Linkin m„„ritt„m„         127.0.0.1    306
  255.255.255.255  255.255.255.255   Linkin m„„ritt„m„     192.168.10.53    266
  255.255.255.255  255.255.255.255   Linkin m„„ritt„m„     10.254.248.12    286
===========================================================================
Jatkuvat reitit:
  Ei mit„„n

IPv6 -reititystaulukko
===========================================================================
Active Routes:
 Jos verkkokohde on Metric-kohdeyhdysk„yt„v„
  1    306 ::1/128                  Linkin m„„ritt„m„
 10    266 fe80::/64                Linkin m„„ritt„m„
 18    286 fe80::/64                Linkin m„„ritt„m„
 10    266 fe80::31d7:6815:f76c:7c2/128
                                    Linkin m„„ritt„m„
 18    286 fe80::51c7:3ecf:de68:b846/128
                                    Linkin m„„ritt„m„
  1    306 ff00::/8                 Linkin m„„ritt„m„
 10    266 ff00::/8                 Linkin m„„ritt„m„
 18    286 ff00::/8                 Linkin m„„ritt„m„
===========================================================================
Jatkuvat reitit:
  Ei mit„„n
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (02/26/2016 10:17:45 PM) (Source: Application Error) (User: )
Description: Viallisen sovelluksen nimi: LolClient.exe, versio: 0.0.0.0, aikaleima: 0x515663e0
Viallisen moduulin nimi: Adobe AIR.dll, versio: 18.0.0.169, aikaleima: 0x557fc238
Poikkeuskoodi: 0xc0000005
Virhepoikkeama: 0x0006df0b
Viallisen prosessin tunnus: 0x1b24
Viallisen sovelluksen käynnistysaika: 0xLolClient.exe0
Viallisen sovelluksen polku: LolClient.exe1
Viallisen moduulin polku: LolClient.exe2
Raportin tunnus: LolClient.exe3

Error: (02/15/2016 12:31:51 PM) (Source: SideBySide) (User: )
Description: Aktivointikontekstin luonti kohteelle C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1 epäonnistui. Virhe luettelo- tai käytäntötiedoston C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2 rivillä C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Sovelluksen edellyttämä osaversio on ristiriidassa jo aktiivisena olevan osaversion kanssa.
Ristiriitaiset osat:
Osa 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Osa 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (02/15/2016 12:31:06 PM) (Source: SideBySide) (User: )
Description: Aktivointikontekstin luonti kohteelle C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1 epäonnistui. Virhe luettelo- tai käytäntötiedoston C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2 rivillä C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Sovelluksen edellyttämä osaversio on ristiriidassa jo aktiivisena olevan osaversion kanssa.
Ristiriitaiset osat:
Osa 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Osa 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (02/15/2016 12:31:01 PM) (Source: SideBySide) (User: )
Description: Aktivointikontekstin luonti kohteelle C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1 epäonnistui. Virhe luettelo- tai käytäntötiedoston C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2 rivillä C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Sovelluksen edellyttämä osaversio on ristiriidassa jo aktiivisena olevan osaversion kanssa.
Ristiriitaiset osat:
Osa 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Osa 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (02/15/2016 12:31:01 PM) (Source: SideBySide) (User: )
Description: Aktivointikontekstin luonti kohteelle C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1 epäonnistui. Virhe luettelo- tai käytäntötiedoston C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2 rivillä C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Sovelluksen edellyttämä osaversio on ristiriidassa jo aktiivisena olevan osaversion kanssa.
Ristiriitaiset osat:
Osa 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Osa 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (02/11/2016 12:43:07 AM) (Source: usbperf) (User: )
Description: First Counter -arvoa ei voi lukea kohdassa usbperf\Performance Key. Tilakoodit palautettiin tiedoissa.


System errors:
=============
Error: (02/28/2016 05:39:24 PM) (Source: Service Control Manager) (User: )
Description: Palvelu Windows Update lukkiutui käynnistyksessä.

Error: (02/28/2016 05:38:54 PM) (Source: DCOM) (User: )
Description: {E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error: (02/28/2016 05:37:09 PM) (Source: Disk) (User: )
Description: Ohjain havaitsi korttivirheen laitteella \Device\Harddisk1\DR1.

Error: (02/28/2016 05:37:09 PM) (Source: Disk) (User: )
Description: Ohjain havaitsi korttivirheen laitteella \Device\Harddisk1\DR1.

Error: (02/28/2016 05:37:08 PM) (Source: Disk) (User: )
Description: Ohjain havaitsi korttivirheen laitteella \Device\Harddisk1\DR1.

Error: (02/28/2016 05:37:08 PM) (Source: Disk) (User: )
Description: Ohjain havaitsi korttivirheen laitteella \Device\Harddisk1\DR1.

Error: (02/28/2016 05:35:03 PM) (Source: Disk) (User: )
Description: Ohjain havaitsi korttivirheen laitteella \Device\Harddisk1\DR1.

Error: (02/28/2016 05:35:03 PM) (Source: Disk) (User: )
Description: Ohjain havaitsi korttivirheen laitteella \Device\Harddisk1\DR1.

Error: (02/28/2016 05:34:14 PM) (Source: Disk) (User: )
Description: Ohjain havaitsi korttivirheen laitteella \Device\Harddisk1\DR1.

Error: (02/28/2016 05:34:14 PM) (Source: Disk) (User: )
Description: Ohjain havaitsi korttivirheen laitteella \Device\Harddisk1\DR1.


Microsoft Office Sessions:
=========================
Error: (02/26/2016 10:17:45 PM) (Source: Application Error)(User: )
Description: LolClient.exe0.0.0.0515663e0Adobe AIR.dll18.0.0.169557fc238c00000050006df0b1b2401d170a86e1f479bC:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.187\deploy\LolClient.exeC:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.187\deploy\Adobe AIR\Versions\1.0\Adobe AIR.dllfe9c9604-dcc5-11e5-b035-e069952ebe14

Error: (02/15/2016 12:31:51 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifestC:\Users\juissi\Downloads\esetsmartinstaller_enu.exe

Error: (02/15/2016 12:31:06 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifestC:\Users\juissi\Downloads\esetsmartinstaller_enu.exe

Error: (02/15/2016 12:31:01 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifestC:\Users\juissi\Downloads\esetsmartinstaller_enu.exe

Error: (02/15/2016 12:31:01 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifestC:\Users\juissi\Downloads\esetsmartinstaller_enu.exe

Error: (02/11/2016 12:43:07 AM) (Source: usbperf)(User: )
Description:


CodeIntegrity Errors:
===================================
  Date: 2016-01-09 05:09:11.257
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-09 05:09:11.227
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-07 22:53:51.630
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-07 22:53:51.583
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-07 22:53:51.552
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivad.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-07 22:53:51.521
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivad.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-06 19:33:25.287
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-06 19:33:25.256
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-06 19:33:25.209
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivad.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2016-01-06 19:33:25.178
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivad.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

7-Zip 15.04 alpha x64 (HKLM\...\7-Zip) (Version:  - )
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.306 - Adobe Systems Incorporated)
AnVir Task Manager Free (HKLM-x32\...\AnVir Task Manager Free) (Version:  - AnVir Software)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Applen ohjelmatuki (32-bittinen) (HKLM-x32\...\{C5815ACF-FD34-4553-8A22-C7411B7E662B}) (Version: 4.1.1 - Apple Inc.)
Applen ohjelmatuki (64-bittinen) (HKLM\...\{CBF12D2F-CF64-4CB7-858B-2C1F21068E5F}) (Version: 4.1.1 - Apple Inc.)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.15.141 - Avira Operations GmbH & Co. KG)
Avira Browser Safety (HKLM-x32\...\{9E10EA90-5E97-43B7-A246-FC7B4F5E9493}) (Version: 1.4.5.509 - Avira Operations GmbH & Co KG)
Avira Launcher (HKLM-x32\...\{A13A1408-E637-45D5-A5F3-DE0A14E0C7CE}) (Version: 1.1.54.24924 - Avira Operations GmbH & Co. KG) Hidden
Avira Launcher (HKLM-x32\...\{ccdc9cfe-8ba7-4c6c-ac5f-b2d6cfa49efc}) (Version: 1.1.54.24924 - Avira Operations GmbH & Co. KG)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Belarc Advisor 8.5c (HKLM-x32\...\Belarc Advisor) (Version: 8.5.3.0 - Belarc Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.13 - Piriform)
CIR Tool Kit (HKLM-x32\...\{2FAECEAF-0EBE-48FF-B60A-B4577C0EFDAB}) (Version: 2.2.2010.0714 - Nuvoton Technology Corp)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd)
Death Pirate (HKLM-x32\...\Steam App 359300) (Version:  - Singe Studio)
Defraggler (HKLM\...\Defraggler) (Version: 2.20 - Piriform)
D-Fend Reloaded 1.4.4 (deinstall) (HKLM-x32\...\D-Fend Reloaded) (Version: 1.4.4 - Alexander Herzog)
Don't Starve (HKLM-x32\...\Steam App 219740) (Version:  - Klei Entertainment)
GlassWire 1.1 (remove only) (HKLM-x32\...\GlassWire 1.1) (Version: 1.1.39 - SecureMix LLC)
Harvester (HKLM-x32\...\Steam App 287020) (Version:  - DigiFX Interactive)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Hotspot Shield 5.2.1 (HKLM-x32\...\HotspotShield) (Version: 5.2.1 - AnchorFree Inc.)
Hotspot Shield 5.2.1 Embedded (HKLM-x32\...\{AF599C42-A2E5-4251-B7EE-4925A147B323}) (Version: 5.2.1.0 - Buildbot) Hidden
Intel Driver Update Utility (HKLM-x32\...\{a699b395-cd93-4135-85ec-828113841355}) (Version: 2.2.0.6 - Intel)
Intel Processor Diagnostic Tool 64bit (HKLM\...\{F24BC99D-3FC1-4503-BEFA-5DDD16C6265A}) (Version: 2.20.0.0 - Intel Corporation)
Intel® Driver Update Utility 2.2.0.6 (HKLM-x32\...\{7B8CD972-B958-48BC-8727-7EE591A88AA5}) (Version: 2.2.0.1 - Intel) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1310 - Intel Corporation)
Intel® Network Connections 20.0.10.0 (HKLM\...\PROSetDX) (Version: 20.0.10.0 - Intel)
iTunes (HKLM\...\{0D44E3A4-6C3D-45D7-B443-079509E5BE5D}) (Version: 12.3.2.35 - Apple Inc.)
Java 8 Update 71 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418071F0}) (Version: 8.0.710.15 - Oracle Corporation)
Java 8 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218071F0}) (Version: 8.0.710.15 - Oracle Corporation)
League of Legends (HKLM-x32\...\{79BF4901-1EC4-4726-B3C2-A7859706C6E7}) (Version: 3.0.1 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
Magic 2014  (HKLM-x32\...\Steam App 213850) (Version:  - Stainless Games)
Magic Duels (HKLM-x32\...\Steam App 316010) (Version:  - Stainless Games Ltd.)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (suomi) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1035) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Might & Magic: Duel of Champions (HKLM-x32\...\Steam App 256410) (Version:  - BlueByte)
Mozilla Firefox 44.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 44.0.2 (x86 en-US)) (Version: 44.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 44.0.2.5884 - Mozilla)
NVIDIA 3D Vision -ohjain 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation)
NVIDIA 3D Vision -ohjain 347.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.88 - NVIDIA Corporation)
NVIDIA Grafiikkaohjain 347.88 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.88 - NVIDIA Corporation)
NVIDIA HD-ääniohjain 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA PhysX-järjestelmäohjelmisto 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7240 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.28.1 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.28.1 - Renesas Electronics Corporation)
Secunia PSI (3.0.0.11003) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.11003 - Secunia)
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.4.1.21 - NVIDIA Corporation) Hidden
Skype™ 7.17 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.17.105 - Skype Technologies S.A.)
Speccy (HKLM\...\Speccy) (Version: 1.29 - Piriform)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.53254 - TeamViewer)
Tweaking.com - Technicians Toolbox (HKLM-x32\...\Tweaking.com - Technicians Toolbox) (Version: 1.0.1 - Tweaking.com)
Tweaking.com - Windows Repair (HKLM-x32\...\Tweaking.com - Windows Repair) (Version: 3.8.1 - Tweaking.com)
Unreal Tournament 2004 (HKLM-x32\...\Steam App 13230) (Version:  - Epic Games, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Xfire Codec (remove only) (HKLM-x32\...\XfireCodec) (Version:  - )
Zip Motion Block Video codec (Remove Only) (HKLM-x32\...\ZMBV) (Version:  - DOSBox Team)

========================= Memory info: ===================================

Percentage of memory in use: 44%
Total physical RAM: 8171.94 MB
Available physical RAM: 4511.89 MB
Total Virtual: 16342.09 MB
Available Virtual: 11820.21 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:489.03 GB) (Free:203.62 GB) NTFS
2 Drive d: () (Fixed) (Total:442.38 GB) (Free:255.76 GB) NTFS
3 Drive e: (GRMCHPXFREO_FI_DVD) (CDROM) (Total:2.9 GB) (Free:0 GB) UDF
4 Drive g: (FreeAgent GoFlex Drive) (Fixed) (Total:698.63 GB) (Free:20.63 GB) NTFS

========================= Users: ========================================

K„ytt„j„tilit \\SWASHILI

juissi                   J„rjestelm„nvalvoja      Vieras                   
Komento on suoritettu.


**** End of log ****
 



#7 zirgonB

zirgonB
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:04:38 PM

Posted 29 February 2016 - 12:08 AM

How to change the results language, in notepad? It is in Finnish now



#8 zirgonB

zirgonB
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:04:38 PM

Posted 29 February 2016 - 12:16 AM

07:09:14.0632 0x11e0  TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
07:09:21.0933 0x11e0  ============================================================
07:09:21.0933 0x11e0  Current date / time: 2016/02/29 07:09:21.0933
07:09:21.0933 0x11e0  SystemInfo:
07:09:21.0933 0x11e0  
07:09:21.0933 0x11e0  OS Version: 6.1.7601 ServicePack: 1.0
07:09:21.0933 0x11e0  Product type: Workstation
07:09:21.0933 0x11e0  ComputerName: SWASHILI
07:09:21.0934 0x11e0  UserName: juissi
07:09:21.0934 0x11e0  Windows directory: C:\Windows
07:09:21.0934 0x11e0  System windows directory: C:\Windows
07:09:21.0934 0x11e0  Running under WOW64
07:09:21.0934 0x11e0  Processor architecture: Intel x64
07:09:21.0934 0x11e0  Number of processors: 8
07:09:21.0934 0x11e0  Page size: 0x1000
07:09:21.0934 0x11e0  Boot type: Normal boot
07:09:21.0934 0x11e0  ============================================================
07:09:23.0706 0x11e0  KLMD registered as C:\Windows\system32\drivers\06076202.sys
07:09:24.0010 0x11e0  System UUID: {B787CF8C-C6BD-7D3A-1D63-ED800F058C0C}
07:09:24.0379 0x11e0  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
07:09:24.0384 0x11e0  Drive \Device\Harddisk1\DR1 - Size: 0x0 ( 0.00 Gb ), SectorSize: 0x200, Cylinders: 0x0, SectorsPerTrack: 0x0, TracksPerCylinder: 0x0, Type 'W'
07:09:24.0384 0x11e0  Drive \Device\Harddisk2\DR2 - Size: 0xAEA8CDDE00 ( 698.64 Gb ), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
07:09:24.0702 0x11e0  ============================================================
07:09:24.0702 0x11e0  \Device\Harddisk0\DR0:
07:09:24.0702 0x11e0  MBR partitions:
07:09:24.0702 0x11e0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
07:09:24.0702 0x11e0  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3D210000
07:09:24.0702 0x11e0  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3D242800, BlocksNum 0x374C3800
07:09:24.0702 0x11e0  \Device\Harddisk2\DR2:
07:09:24.0708 0x11e0  MBR partitions:
07:09:24.0708 0x11e0  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x57545000
07:09:24.0708 0x11e0  ============================================================
07:09:24.0736 0x11e0  C: <-> \Device\Harddisk0\DR0\Partition2
07:09:24.0763 0x11e0  D: <-> \Device\Harddisk0\DR0\Partition3
07:09:24.0887 0x11e0  G: <-> \Device\Harddisk2\DR2\Partition1
07:09:24.0888 0x11e0  ============================================================
07:09:24.0888 0x11e0  Initialize success
07:09:24.0888 0x11e0  ============================================================
07:10:13.0782 0x1474  ============================================================
07:10:13.0782 0x1474  Scan started
07:10:13.0782 0x1474  Mode: Manual; SigCheck; TDLFS;
07:10:13.0782 0x1474  ============================================================
07:10:13.0782 0x1474  KSN ping started
07:10:13.0940 0x1474  KSN ping finished: true
07:10:16.0346 0x1474  ================ Scan system memory ========================
07:10:16.0346 0x1474  System memory - ok
07:10:16.0346 0x1474  ================ Scan services =============================
07:10:16.0494 0x1474  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
07:10:16.0585 0x1474  1394ohci - ok
07:10:16.0644 0x1474  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
07:10:16.0668 0x1474  ACPI - ok
07:10:16.0677 0x1474  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
07:10:16.0742 0x1474  AcpiPmi - ok
07:10:16.0841 0x1474  [ 785FD0E36CA75D90DD50042E2594BC63, 471A5ED43A3E18A5A69C28F7F351558E90F20416D9C532ADF50888808090AE89 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
07:10:16.0863 0x1474  AdobeFlashPlayerUpdateSvc - ok
07:10:16.0901 0x1474  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
07:10:16.0940 0x1474  adp94xx - ok
07:10:16.0948 0x1474  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
07:10:16.0967 0x1474  adpahci - ok
07:10:16.0973 0x1474  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
07:10:16.0988 0x1474  adpu320 - ok
07:10:17.0010 0x1474  [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
07:10:17.0054 0x1474  AeLookupSvc - ok
07:10:17.0096 0x1474  [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD             C:\Windows\system32\drivers\afd.sys
07:10:17.0151 0x1474  AFD - ok
07:10:17.0161 0x1474  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
07:10:17.0184 0x1474  agp440 - ok
07:10:17.0210 0x1474  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
07:10:17.0260 0x1474  ALG - ok
07:10:17.0281 0x1474  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
07:10:17.0296 0x1474  aliide - ok
07:10:17.0308 0x1474  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
07:10:17.0323 0x1474  amdide - ok
07:10:17.0334 0x1474  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
07:10:17.0381 0x1474  AmdK8 - ok
07:10:17.0394 0x1474  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
07:10:17.0425 0x1474  AmdPPM - ok
07:10:17.0446 0x1474  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
07:10:17.0471 0x1474  amdsata - ok
07:10:17.0484 0x1474  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
07:10:17.0502 0x1474  amdsbs - ok
07:10:17.0509 0x1474  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
07:10:17.0518 0x1474  amdxata - ok
07:10:17.0638 0x1474  [ 4258991B9E25540D35C7C8234D4FE1D8, CB4E100E30626A02FE59CA7CAEE187B6B03BA531931B1D132E88C0638BCE6B7A ] AntiVirMailService C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
07:10:17.0687 0x1474  AntiVirMailService - ok
07:10:17.0713 0x1474  [ B72014AB9465B84D82AD324DBC4A77EF, 905E922839BDE1FBA26DCC8F48361DC08BD51CC42BCF0904FAB99D2C34027239 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\Antivirus\sched.exe
07:10:17.0728 0x1474  AntiVirSchedulerService - ok
07:10:17.0758 0x1474  [ B72014AB9465B84D82AD324DBC4A77EF, 905E922839BDE1FBA26DCC8F48361DC08BD51CC42BCF0904FAB99D2C34027239 ] AntiVirService  C:\Program Files (x86)\Avira\Antivirus\avguard.exe
07:10:17.0772 0x1474  AntiVirService - ok
07:10:17.0813 0x1474  [ FD20E4FC7D4E7BEBA088387DCE991865, F9EE69774C92F71BDE1D40671EAE5630273CA632BA1E996B00758527D0D75F3D ] AntiVirWebService C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
07:10:17.0872 0x1474  AntiVirWebService - ok
07:10:17.0910 0x1474  [ 27DABFB4A6B0140C34DBEC713469592B, A355170D353AFBF0DE4EF53282F8404788FBBD0E2A1B7282B1B2925923E83141 ] AppID           C:\Windows\system32\drivers\appid.sys
07:10:17.0960 0x1474  AppID - ok
07:10:17.0994 0x1474  [ ABC373B9C6275D45F17DB559408FFD1B, 12B355393BEBE2D1D24D7A9DA5E69E03E334899407503BC1CADCF7BE39828223 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
07:10:18.0026 0x1474  AppIDSvc - ok
07:10:18.0068 0x1474  [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo         C:\Windows\System32\appinfo.dll
07:10:18.0108 0x1474  Appinfo - ok
07:10:18.0216 0x1474  [ 2D564BB1C4559A517B390A031955714D, 3048C187FD107C958D43DD8B954AB55FDD1BC538D3E0066CBFCB428C7A8A87E1 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
07:10:18.0229 0x1474  Apple Mobile Device Service - ok
07:10:18.0254 0x1474  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
07:10:18.0278 0x1474  arc - ok
07:10:18.0286 0x1474  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
07:10:18.0309 0x1474  arcsas - ok
07:10:18.0423 0x1474  [ 660D597B7A78256734D7F3230B21B355, CAA19E8EFAD63B8975A4CD8EFD5CE5F21E056856D36BC5A9E48517F1E574ABBA ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
07:10:18.0440 0x1474  aspnet_state - ok
07:10:18.0454 0x1474  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
07:10:18.0564 0x1474  AsyncMac - ok
07:10:18.0596 0x1474  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
07:10:18.0609 0x1474  atapi - ok
07:10:18.0662 0x1474  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
07:10:18.0713 0x1474  AudioEndpointBuilder - ok
07:10:18.0727 0x1474  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv        C:\Windows\System32\Audiosrv.dll
07:10:18.0745 0x1474  AudioSrv - ok
07:10:18.0773 0x1474  [ 29E019B4607E410BFE4DB778C3300BC5, 32D1A5A5836152BAAA168B4A06AC6F52DBC19150D339B5F87E8E3A1E1EE580C3 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
07:10:18.0784 0x1474  avgntflt - ok
07:10:18.0819 0x1474  [ 6BA8ADBDF2A492A75DA81868C32F67BD, 56CB3A0647DACA414D5A65D4701443604E573F41FEE79349D88D558C6336453A ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
07:10:18.0844 0x1474  avipbb - ok
07:10:18.0917 0x1474  [ DFF7C7E8DB2A8F520BF0550AAD17FF99, 350E4E41E3932B155C93A061B7209645969FD6EE597CF5BBF4BBF7AB0EBBB7FD ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
07:10:18.0936 0x1474  Avira.ServiceHost - ok
07:10:18.0946 0x1474  [ 390184FAD8FCC1B6DA25AEBAE928C3B6, 537B0E0FAE080B55D70E990BBA0F7F22903CA340F6A42039BAD617A8ECF59119 ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
07:10:18.0957 0x1474  avkmgr - ok
07:10:18.0985 0x1474  [ 99672CCD11058D6E2F627473B773F971, 4EF2BCDA4678F9ECE499F216AC0F8105F37D2AB0320064741A8DFB5C39E5048C ] avnetflt        C:\Windows\system32\DRIVERS\avnetflt.sys
07:10:18.0999 0x1474  avnetflt - ok
07:10:19.0029 0x1474  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
07:10:19.0100 0x1474  AxInstSV - ok
07:10:19.0156 0x1474  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
07:10:19.0225 0x1474  b06bdrv - ok
07:10:19.0254 0x1474  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
07:10:19.0297 0x1474  b57nd60a - ok
07:10:19.0331 0x1474  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
07:10:19.0368 0x1474  BDESVC - ok
07:10:19.0385 0x1474  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
07:10:19.0450 0x1474  Beep - ok
07:10:19.0515 0x1474  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
07:10:19.0573 0x1474  BFE - ok
07:10:19.0624 0x1474  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll
07:10:19.0685 0x1474  BITS - ok
07:10:19.0703 0x1474  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
07:10:19.0735 0x1474  blbdrive - ok
07:10:19.0779 0x1474  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
07:10:19.0819 0x1474  bowser - ok
07:10:19.0828 0x1474  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
07:10:19.0875 0x1474  BrFiltLo - ok
07:10:19.0880 0x1474  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
07:10:19.0917 0x1474  BrFiltUp - ok
07:10:19.0951 0x1474  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
07:10:20.0020 0x1474  BridgeMP - ok
07:10:20.0068 0x1474  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
07:10:20.0101 0x1474  Browser - ok
07:10:20.0114 0x1474  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
07:10:20.0166 0x1474  Brserid - ok
07:10:20.0184 0x1474  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
07:10:20.0209 0x1474  BrSerWdm - ok
07:10:20.0221 0x1474  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
07:10:20.0250 0x1474  BrUsbMdm - ok
07:10:20.0268 0x1474  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
07:10:20.0287 0x1474  BrUsbSer - ok
07:10:20.0299 0x1474  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
07:10:20.0338 0x1474  BTHMODEM - ok
07:10:20.0363 0x1474  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
07:10:20.0436 0x1474  bthserv - ok
07:10:20.0456 0x1474  catchme - ok
07:10:20.0463 0x1474  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
07:10:20.0517 0x1474  cdfs - ok
07:10:20.0546 0x1474  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
07:10:20.0571 0x1474  cdrom - ok
07:10:20.0603 0x1474  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
07:10:20.0665 0x1474  CertPropSvc - ok
07:10:20.0681 0x1474  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
07:10:20.0717 0x1474  circlass - ok
07:10:20.0754 0x1474  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\Windows\system32\CLFS.sys
07:10:20.0781 0x1474  CLFS - ok
07:10:20.0846 0x1474  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:10:20.0863 0x1474  clr_optimization_v2.0.50727_32 - ok
07:10:20.0902 0x1474  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
07:10:20.0919 0x1474  clr_optimization_v2.0.50727_64 - ok
07:10:21.0046 0x1474  [ AB4CD527BEFCC43EE441E6C50CCE54C8, 13B776AE63049FFBA7E35EA0A4C26EBB57B10D973E05C4CF1214249754DC46E4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
07:10:21.0079 0x1474  clr_optimization_v4.0.30319_32 - ok
07:10:21.0096 0x1474  [ 1400C75FF021D6CFACE46AC41B60770E, 3FCB8D7714A79522F2738037D559F1FFFB2F05C5406D2A038EF5DDB4629CA1CE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
07:10:21.0117 0x1474  clr_optimization_v4.0.30319_64 - ok
07:10:21.0121 0x1474  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
07:10:21.0141 0x1474  CmBatt - ok
07:10:21.0171 0x1474  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
07:10:21.0190 0x1474  cmdide - ok
07:10:21.0235 0x1474  [ EC0511BB85BAA42A9734011685A6732C, 10B52F0860CCB3AA0FC34DDA5C5538BFCF7B6D40738B7756297237FD2D9E01C1 ] CNG             C:\Windows\system32\Drivers\cng.sys
07:10:21.0282 0x1474  CNG - ok
07:10:21.0305 0x1474  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
07:10:21.0325 0x1474  Compbatt - ok
07:10:21.0346 0x1474  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
07:10:21.0373 0x1474  CompositeBus - ok
07:10:21.0382 0x1474  COMSysApp - ok
07:10:21.0388 0x1474  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
07:10:21.0407 0x1474  crcdisk - ok
07:10:21.0434 0x1474  [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
07:10:21.0485 0x1474  CryptSvc - ok
07:10:21.0532 0x1474  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
07:10:21.0585 0x1474  DcomLaunch - ok
07:10:21.0617 0x1474  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
07:10:21.0673 0x1474  defragsvc - ok
07:10:21.0710 0x1474  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
07:10:21.0763 0x1474  DfsC - ok
07:10:21.0797 0x1474  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
07:10:21.0835 0x1474  Dhcp - ok
07:10:21.0939 0x1474  [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack       C:\Windows\system32\diagtrack.dll
07:10:22.0016 0x1474  DiagTrack - ok
07:10:22.0118 0x1474  [ DEE4A1F675EC604E9641B1A03CF1816F, A0AC84713DDFD9A94B8558DFA26B278FB29833C5663451CC582ACA85B29CBFD8 ] DigitalWave.Update.Service C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
07:10:22.0156 0x1474  DigitalWave.Update.Service - ok
07:10:22.0250 0x1474  [ 91DF13EC831BDCFA36A7A12CD13D66B9, 5054281FE91D4BE0DB446F6F30E3D59E669185555F6C20B988DEC250713FFCED ] Disc Soft Lite Bus Service C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
07:10:22.0303 0x1474  Disc Soft Lite Bus Service - ok
07:10:22.0324 0x1474  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
07:10:22.0420 0x1474  discache - ok
07:10:22.0441 0x1474  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
07:10:22.0449 0x1474  Disk - ok
07:10:22.0485 0x1474  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
07:10:22.0530 0x1474  Dnscache - ok
07:10:22.0564 0x1474  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
07:10:22.0637 0x1474  dot3svc - ok
07:10:22.0662 0x1474  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
07:10:22.0722 0x1474  DPS - ok
07:10:22.0758 0x1474  [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
07:10:22.0801 0x1474  drmkaud - ok
07:10:22.0834 0x1474  [ 496C3C6BC3D930D0960C9E75AA30F4A7, 3FE0E86DA8C2C6A990BB2F1B92C22BD3483882B8D69FF8025BB68A199362C234 ] dtlitescsibus   C:\Windows\system32\DRIVERS\dtlitescsibus.sys
07:10:22.0854 0x1474  dtlitescsibus - ok
07:10:22.0916 0x1474  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
07:10:22.0961 0x1474  DXGKrnl - ok
07:10:22.0993 0x1474  [ 23B6F8081F5C7AF1343810641EE0DD58, 571EF6BC76C062AF0FC696213638831EBC90B056B353AD440B01CA17E0D5B1B7 ] e1cexpress      C:\Windows\system32\DRIVERS\e1c62x64.sys
07:10:23.0021 0x1474  e1cexpress - ok
07:10:23.0045 0x1474  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
07:10:23.0086 0x1474  EapHost - ok
07:10:23.0200 0x1474  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
07:10:23.0320 0x1474  ebdrv - ok
07:10:23.0358 0x1474  [ 5673794F254FE312AF62D9DA32805A2F, 76400BF26F87303924A4FA9DFE5DD13170D1E4A195CD12548DBAA0E6E8C11B1B ] EFS             C:\Windows\System32\lsass.exe
07:10:23.0401 0x1474  EFS - ok
07:10:23.0474 0x1474  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
07:10:23.0519 0x1474  ehRecvr - ok
07:10:23.0536 0x1474  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
07:10:23.0574 0x1474  ehSched - ok
07:10:23.0602 0x1474  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
07:10:23.0644 0x1474  elxstor - ok
07:10:23.0670 0x1474  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
07:10:23.0689 0x1474  ErrDev - ok
07:10:23.0735 0x1474  [ 60281B807AC3F5202D3008F5DA902842, 6E4E91507E29AB865F7DF5A9E667C0853698F55D9C9DBAEB39AA9CE0A9AE885C ] ESProtectionDriver C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys
07:10:23.0748 0x1474  ESProtectionDriver - ok
07:10:23.0771 0x1474  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
07:10:23.0835 0x1474  EventSystem - ok
07:10:23.0869 0x1474  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
07:10:23.0931 0x1474  exfat - ok
07:10:23.0952 0x1474  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
07:10:23.0997 0x1474  fastfat - ok
07:10:24.0062 0x1474  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
07:10:24.0123 0x1474  Fax - ok
07:10:24.0141 0x1474  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
07:10:24.0177 0x1474  fdc - ok
07:10:24.0209 0x1474  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
07:10:24.0269 0x1474  fdPHost - ok
07:10:24.0286 0x1474  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
07:10:24.0342 0x1474  FDResPub - ok
07:10:24.0347 0x1474  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
07:10:24.0354 0x1474  FileInfo - ok
07:10:24.0365 0x1474  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
07:10:24.0399 0x1474  Filetrace - ok
07:10:24.0410 0x1474  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
07:10:24.0443 0x1474  flpydisk - ok
07:10:24.0466 0x1474  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
07:10:24.0486 0x1474  FltMgr - ok
07:10:24.0556 0x1474  [ BCB16AE33AA58E0042F3EF34CFB6396A, E8ADA10DE60A94E4BABE9FCA6D0AA83B11520C092D49057E17F6C6059D35A323 ] FontCache       C:\Windows\system32\FntCache.dll
07:10:24.0614 0x1474  FontCache - ok
07:10:24.0651 0x1474  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
07:10:24.0665 0x1474  FontCache3.0.0.0 - ok
07:10:24.0682 0x1474  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
07:10:24.0704 0x1474  FsDepends - ok
07:10:24.0731 0x1474  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
07:10:24.0751 0x1474  Fs_Rec - ok
07:10:24.0786 0x1474  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
07:10:24.0813 0x1474  fvevol - ok
07:10:24.0832 0x1474  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
07:10:24.0846 0x1474  gagp30kx - ok
07:10:24.0945 0x1474  [ 6D18B1088696CF96CBEBD31B8A519BD4, 4B47EECD18C12749FBEFA9C20B466F1A501F238166BBAE5B1793C918305A3348 ] GalaxyClientService C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe
07:10:25.0019 0x1474  GalaxyClientService - ok
07:10:25.0251 0x1474  [ C6B53600271EA23A03D5C23316407013, A2B672134EC6415D689F5F1BDF0500B876CB3BA2BA022E4C7FF4C15215AF7BC2 ] GalaxyCommunication C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
07:10:25.0401 0x1474  GalaxyCommunication - ok
07:10:25.0492 0x1474  [ 28D0B60C58D1F734449E735E2C4FCE94, 8DF2706EB0F6383BA44961440FDAA93B3756E48994FBF4AB2B13CDA66A6F3C3F ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
07:10:25.0523 0x1474  GfExperienceService - ok
07:10:25.0750 0x1474  [ 5CDB9B835A0B68DBD49BAC91DCA3D1A6, F0148B49125BC2E40F42BD457F68E0D6959E64937B398D64E668F18FBE2A3B7D ] GlassWire       C:\Program Files (x86)\GlassWire\GWCtlSrv.exe
07:10:26.0008 0x1474  GlassWire - ok
07:10:26.0105 0x1474  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
07:10:26.0192 0x1474  gpsvc - ok
07:10:26.0239 0x1474  [ 3CF2C2F026B06D3F6B9A402DD50D5C9B, EEC63C73D54BC6F9AA53F6A248A041E3A0F1CE39386DA6243B42D1C14A322B2B ] gwdrv           C:\Windows\system32\DRIVERS\gwdrv.sys
07:10:26.0259 0x1474  gwdrv - ok
07:10:26.0288 0x1474  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
07:10:26.0334 0x1474  hcw85cir - ok
07:10:26.0376 0x1474  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
07:10:26.0429 0x1474  HdAudAddService - ok
07:10:26.0464 0x1474  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
07:10:26.0502 0x1474  HDAudBus - ok
07:10:26.0514 0x1474  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
07:10:26.0535 0x1474  HidBatt - ok
07:10:26.0550 0x1474  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
07:10:26.0594 0x1474  HidBth - ok
07:10:26.0619 0x1474  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
07:10:26.0656 0x1474  HidIr - ok
07:10:26.0679 0x1474  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
07:10:26.0733 0x1474  hidserv - ok
07:10:26.0787 0x1474  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
07:10:26.0813 0x1474  HidUsb - ok
07:10:26.0847 0x1474  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
07:10:26.0892 0x1474  hkmsvc - ok
07:10:26.0930 0x1474  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
07:10:26.0960 0x1474  HomeGroupListener - ok
07:10:26.0988 0x1474  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
07:10:27.0025 0x1474  HomeGroupProvider - ok
07:10:27.0057 0x1474  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
07:10:27.0081 0x1474  HpSAMD - ok
07:10:27.0245 0x1474  [ 8D18D6FCCBEA517524581A6F9E5AD675, C992FECF9FFB5AC7F2273781C33290E6F21AFA7F94055363E56EE883B3605AA4 ] hshld           C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
07:10:27.0308 0x1474  hshld - ok
07:10:27.0351 0x1474  [ B64DC8EEB3D73D5FAF0857E4A25416EB, DD7F222C1663636E824A5497CD54B7109226E2A00A54660B7D1807B1EB1BA468 ] HssTrayService  C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE
07:10:27.0378 0x1474  HssTrayService - ok
07:10:27.0433 0x1474  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
07:10:27.0483 0x1474  HTTP - ok
07:10:27.0550 0x1474  [ E5805896A55D4166C20F216249F40FA3, F426BF60D5B916E7A778EF24C49FE1FFE1B2977C2ABD2977FD5C38C6E6CB139F ] HWiNFO32        C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS
07:10:27.0570 0x1474  HWiNFO32 - ok
07:10:27.0612 0x1474  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
07:10:27.0625 0x1474  hwpolicy - ok
07:10:27.0637 0x1474  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
07:10:27.0663 0x1474  i8042prt - ok
07:10:27.0702 0x1474  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
07:10:27.0739 0x1474  iaStorV - ok
07:10:27.0803 0x1474  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
07:10:27.0850 0x1474  idsvc - ok
07:10:27.0855 0x1474  IEEtwCollectorService - ok
07:10:27.0861 0x1474  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
07:10:27.0872 0x1474  iirsp - ok
07:10:27.0919 0x1474  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
07:10:27.0969 0x1474  IKEEXT - ok
07:10:28.0103 0x1474  [ F94E2C3BA6D4B57C2E1DD03E950CBBC4, C0C4F779E1BA0A6C68937A2F6A0AEA5F49F0476A8520AC1323775536FA585A3C ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
07:10:28.0199 0x1474  IntcAzAudAddService - ok
07:10:28.0305 0x1474  [ C6128F2E3DC6156C6F8828F9F1B96010, 612C1191AFB8F69BA5634E8C52BDDE608F57D98FA4C76C5A337676A5F1E8191D ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
07:10:28.0336 0x1474  Intel® Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
07:10:28.0476 0x1474  Detect skipped due to KSN trusted
07:10:28.0477 0x1474  Intel® Capability Licensing Service Interface - ok
07:10:28.0550 0x1474  [ 729AB4F0608E95EFF8FDEF23596283E2, 62A2091FF440C65505AB3E38436A86D9B0978BCB9485960EFCE0C5CBC8E06201 ] Intel® Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
07:10:28.0601 0x1474  Intel® Capability Licensing Service TCP IP Interface - ok
07:10:28.0629 0x1474  [ 87DD7CC57949A67176C666602563776B, BE4FEE53C5C048EBED825AC6ADD65912744DD6EA954561D9A38A151FE669C252 ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
07:10:28.0649 0x1474  Intel® PROSet Monitoring Service - ok
07:10:28.0676 0x1474  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
07:10:28.0693 0x1474  intelide - ok
07:10:28.0719 0x1474  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
07:10:28.0748 0x1474  intelppm - ok
07:10:28.0786 0x1474  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
07:10:28.0848 0x1474  IPBusEnum - ok
07:10:28.0898 0x1474  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
07:10:28.0964 0x1474  IpFilterDriver - ok
07:10:29.0028 0x1474  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
07:10:29.0083 0x1474  iphlpsvc - ok
07:10:29.0116 0x1474  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
07:10:29.0157 0x1474  IPMIDRV - ok
07:10:29.0174 0x1474  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
07:10:29.0221 0x1474  IPNAT - ok
07:10:29.0276 0x1474  [ BD713ED20CFD71C32C4BE1928423AE9A, E0EE95FEA3930EA335D9B1FF74EEFAA61ECEC89AEBB1D0E43A1E1088F9990273 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
07:10:29.0301 0x1474  iPod Service - ok
07:10:29.0323 0x1474  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
07:10:29.0379 0x1474  IRENUM - ok
07:10:29.0394 0x1474  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
07:10:29.0413 0x1474  isapnp - ok
07:10:29.0448 0x1474  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
07:10:29.0481 0x1474  iScsiPrt - ok
07:10:29.0496 0x1474  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
07:10:29.0511 0x1474  kbdclass - ok
07:10:29.0532 0x1474  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
07:10:29.0562 0x1474  kbdhid - ok
07:10:29.0593 0x1474  [ 5673794F254FE312AF62D9DA32805A2F, 76400BF26F87303924A4FA9DFE5DD13170D1E4A195CD12548DBAA0E6E8C11B1B ] KeyIso          C:\Windows\system32\lsass.exe
07:10:29.0608 0x1474  KeyIso - ok
07:10:29.0714 0x1474  [ EBF07CF11ADD83DC05BFB63736129CF1, 8BB21FB5E232B619FB193EF4DAC20F393E7BEE3317F376C47466C1180BF32107 ] kinonivd        C:\Windows\system32\DRIVERS\kinonivd.sys
07:10:29.0842 0x1474  kinonivd - detected UnsignedFile.Multi.Generic ( 1 )
07:10:30.0053 0x1474  kinonivd ( UnsignedFile.Multi.Generic ) - warning
07:10:30.0188 0x1474  [ EE7072A46EF13BC48C9E5415D341A483, D47C6D51627814D5B4886B165AA17D22DF1E3CF72B0F35118B8A54361A71D431 ] KINONI_Wave     C:\Windows\system32\drivers\kinonivad.sys
07:10:30.0217 0x1474  KINONI_Wave - detected UnsignedFile.Multi.Generic ( 1 )
07:10:30.0376 0x1474  KINONI_Wave ( UnsignedFile.Multi.Generic ) - warning
07:10:30.0495 0x1474  [ 7BDDD24C5A148534D3737DBFA96B3E69, 06130316A21B1D67B5885AB7030603097EC96F7104F3766D67793ECFC1143158 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
07:10:30.0512 0x1474  KSecDD - ok
07:10:30.0530 0x1474  [ BA500732D160C61E889E8180EE53C86F, 2E9B9FEF4E2F86DBF6778AD0A581CE2F1CA0AC777440BA05AB36B031CE1E8781 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
07:10:30.0549 0x1474  KSecPkg - ok
07:10:30.0573 0x1474  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
07:10:30.0625 0x1474  ksthunk - ok
07:10:30.0656 0x1474  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
07:10:30.0692 0x1474  KtmRm - ok
07:10:30.0725 0x1474  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
07:10:30.0778 0x1474  LanmanServer - ok
07:10:30.0811 0x1474  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
07:10:30.0860 0x1474  LanmanWorkstation - ok
07:10:30.0904 0x1474  [ 17325C9B9ADB2BB99049936D0C9812C8, 70ADDC85FD5757BC9C4B97F382B25A19851FF8275021FFC04A81E208A604F83E ] LGBusEnum       C:\Windows\system32\drivers\LGBusEnum.sys
07:10:30.0934 0x1474  LGBusEnum - ok
07:10:30.0948 0x1474  [ C7AF05942E041D4B1F345ACF79993BB3, E8FAAE356C99A11F6CF17640FD9C67F87AFBFEFB70C458CB85178F2AD94DF848 ] LGJoyXlCore     C:\Windows\system32\drivers\LGJoyXlCore.sys
07:10:30.0978 0x1474  LGJoyXlCore - ok
07:10:31.0025 0x1474  [ 1DDB8DE3D6EEF31EDCF4977B2D2FAACC, 24291B522A596E2D9A1CDAC192DB1C7422D5DD0E87E5C8A5F5E2CAA90296BF23 ] LGVirHid        C:\Windows\system32\drivers\LGVirHid.sys
07:10:31.0069 0x1474  LGVirHid - ok
07:10:31.0099 0x1474  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
07:10:31.0157 0x1474  lltdio - ok
07:10:31.0179 0x1474  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
07:10:31.0223 0x1474  lltdsvc - ok
07:10:31.0248 0x1474  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
07:10:31.0300 0x1474  lmhosts - ok
07:10:31.0326 0x1474  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
07:10:31.0351 0x1474  LSI_FC - ok
07:10:31.0372 0x1474  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
07:10:31.0395 0x1474  LSI_SAS - ok
07:10:31.0409 0x1474  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
07:10:31.0431 0x1474  LSI_SAS2 - ok
07:10:31.0446 0x1474  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
07:10:31.0470 0x1474  LSI_SCSI - ok
07:10:31.0488 0x1474  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
07:10:31.0552 0x1474  luafv - ok
07:10:31.0631 0x1474  [ 6761C5500F6A54BF31BA91F409234426, 28098724C3F7FBA0FAF753353475F034525EF6505048BB4BA2A817E908CB5600 ] MbaeSvc         C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
07:10:31.0668 0x1474  MbaeSvc - ok
07:10:31.0697 0x1474  [ CFBC6C6D8A492697CABD1D353EE64933, DDAA844908324740C891EB8F08E2A8BB00457063B31C4A762745C1C2415FC12D ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
07:10:31.0710 0x1474  MBAMProtector - ok
07:10:31.0804 0x1474  [ 40C126CB15FAB7D6C66490DCA9C1AED2, B32CEE2D2409232C245427D5E9647FDF59AF1D8AB5E8A98EE2D1F1314599FD14 ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
07:10:31.0859 0x1474  MBAMService - ok
07:10:31.0886 0x1474  [ D61070CFAD43038DC56AEAD9BFE9CE2A, BD77AEF60E7FD2015CB14A464799304359547146C14A47F8D25274ACFA2E42D5 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
07:10:31.0907 0x1474  MBAMWebAccessControl - ok
07:10:31.0936 0x1474  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
07:10:31.0966 0x1474  Mcx2Svc - ok
07:10:31.0991 0x1474  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
07:10:32.0011 0x1474  megasas - ok
07:10:32.0029 0x1474  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
07:10:32.0060 0x1474  MegaSR - ok
07:10:32.0096 0x1474  [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
07:10:32.0120 0x1474  MEIx64 - ok
07:10:32.0156 0x1474  MFE_RR - ok
07:10:32.0172 0x1474  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
07:10:32.0232 0x1474  MMCSS - ok
07:10:32.0244 0x1474  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
07:10:32.0307 0x1474  Modem - ok
07:10:32.0332 0x1474  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
07:10:32.0352 0x1474  monitor - ok
07:10:32.0380 0x1474  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
07:10:32.0402 0x1474  mouclass - ok
07:10:32.0416 0x1474  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
07:10:32.0446 0x1474  mouhid - ok
07:10:32.0488 0x1474  [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
07:10:32.0504 0x1474  mountmgr - ok
07:10:32.0534 0x1474  [ 5961C5D8EDD2E2A3B99F1782AE1AC21F, C383A4724A335737C4C7C3211AFCFB82D373267EC634BC47EE078A1C66E1F62A ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
07:10:32.0551 0x1474  MozillaMaintenance - ok
07:10:32.0582 0x1474  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
07:10:32.0611 0x1474  mpio - ok
07:10:32.0627 0x1474  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
07:10:32.0674 0x1474  mpsdrv - ok
07:10:32.0738 0x1474  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
07:10:32.0811 0x1474  MpsSvc - ok
07:10:32.0845 0x1474  [ D7ADC2B83CA0B0381F75A98351F72CEE, 05476B7CA0486DF770AE492B5A90C85E3D3E7485152EB2FA30A19EC9BE44ED81 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
07:10:32.0881 0x1474  MRxDAV - ok
07:10:32.0916 0x1474  [ 355DF71D1DD1999E8AEDF986534B233C, 4F5B07A3E9F4C5EE259A72353835364BFEAEC792090C178C4EF91B517B1C49D0 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
07:10:32.0943 0x1474  mrxsmb - ok
07:10:32.0983 0x1474  [ A16FC9323A85CAEA5804D04646A91CF9, ABC9F1BE4B871EBB5FDED9FC248DABEC4004EBCCF53E6C4D1E54AF69653B00E0 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
07:10:33.0017 0x1474  mrxsmb10 - ok
07:10:33.0046 0x1474  [ 2539BE615440BA1EA4CF84A66B6C0AF9, 3369DE38EE49E5507A73036CDF3982AEF2331D61C7EC4F159004EAD14309A933 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
07:10:33.0076 0x1474  mrxsmb20 - ok
07:10:33.0098 0x1474  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
07:10:33.0110 0x1474  msahci - ok
07:10:33.0124 0x1474  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
07:10:33.0148 0x1474  msdsm - ok
07:10:33.0164 0x1474  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
07:10:33.0192 0x1474  MSDTC - ok
07:10:33.0212 0x1474  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
07:10:33.0267 0x1474  Msfs - ok
07:10:33.0271 0x1474  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
07:10:33.0322 0x1474  mshidkmdf - ok
07:10:33.0341 0x1474  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
07:10:33.0353 0x1474  msisadrv - ok
07:10:33.0392 0x1474  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
07:10:33.0446 0x1474  MSiSCSI - ok
07:10:33.0449 0x1474  msiserver - ok
07:10:33.0475 0x1474  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
07:10:33.0526 0x1474  MSKSSRV - ok
07:10:33.0538 0x1474  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
07:10:33.0577 0x1474  MSPCLOCK - ok
07:10:33.0591 0x1474  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
07:10:33.0615 0x1474  MSPQM - ok
07:10:33.0657 0x1474  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
07:10:33.0684 0x1474  MsRPC - ok
07:10:33.0715 0x1474  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
07:10:33.0730 0x1474  mssmbios - ok
07:10:33.0746 0x1474  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
07:10:33.0801 0x1474  MSTEE - ok
07:10:33.0815 0x1474  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
07:10:33.0840 0x1474  MTConfig - ok
07:10:33.0854 0x1474  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
07:10:33.0862 0x1474  Mup - ok
07:10:33.0897 0x1474  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
07:10:33.0932 0x1474  napagent - ok
07:10:33.0973 0x1474  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
07:10:34.0006 0x1474  NativeWifiP - ok
07:10:34.0074 0x1474  [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS            C:\Windows\system32\drivers\ndis.sys
07:10:34.0125 0x1474  NDIS - ok
07:10:34.0139 0x1474  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
07:10:34.0185 0x1474  NdisCap - ok
07:10:34.0199 0x1474  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
07:10:34.0225 0x1474  NdisTapi - ok
07:10:34.0247 0x1474  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
07:10:34.0293 0x1474  Ndisuio - ok
07:10:34.0323 0x1474  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
07:10:34.0363 0x1474  NdisWan - ok
07:10:34.0395 0x1474  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
07:10:34.0446 0x1474  NDProxy - ok
07:10:34.0457 0x1474  [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl         C:\Windows\system32\DRIVERS\netaapl64.sys
07:10:34.0499 0x1474  Netaapl - ok
07:10:34.0515 0x1474  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
07:10:34.0562 0x1474  NetBIOS - ok
07:10:34.0583 0x1474  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
07:10:34.0646 0x1474  NetBT - ok
07:10:34.0660 0x1474  [ 5673794F254FE312AF62D9DA32805A2F, 76400BF26F87303924A4FA9DFE5DD13170D1E4A195CD12548DBAA0E6E8C11B1B ] Netlogon        C:\Windows\system32\lsass.exe
07:10:34.0676 0x1474  Netlogon - ok
07:10:34.0709 0x1474  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
07:10:34.0758 0x1474  Netman - ok
07:10:34.0833 0x1474  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
07:10:34.0854 0x1474  NetMsmqActivator - ok
07:10:34.0862 0x1474  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
07:10:34.0881 0x1474  NetPipeActivator - ok
07:10:34.0906 0x1474  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
07:10:34.0968 0x1474  netprofm - ok
07:10:34.0972 0x1474  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
07:10:34.0982 0x1474  NetTcpActivator - ok
07:10:34.0986 0x1474  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
07:10:34.0995 0x1474  NetTcpPortSharing - ok
07:10:35.0017 0x1474  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
07:10:35.0032 0x1474  nfrd960 - ok
07:10:35.0071 0x1474  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
07:10:35.0123 0x1474  NlaSvc - ok
07:10:35.0141 0x1474  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
07:10:35.0182 0x1474  Npfs - ok
07:10:35.0203 0x1474  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
07:10:35.0245 0x1474  nsi - ok
07:10:35.0259 0x1474  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
07:10:35.0290 0x1474  nsiproxy - ok
07:10:35.0373 0x1474  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
07:10:35.0431 0x1474  Ntfs - ok
07:10:35.0445 0x1474  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
07:10:35.0469 0x1474  Null - ok
07:10:35.0495 0x1474  [ B227E75AD10A142DD326B4CC8D73A6D9, CA76D73381ADAB04E86D417788D4EDAAE8343B90DCC9690ED5FFB1C0B1F09057 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
07:10:35.0525 0x1474  nusb3hub - ok
07:10:35.0571 0x1474  [ 55959DB860E4E484681586824D09E52C, EEA42F7DF194A84F207A8DC3BA9BF9ACDBFFFA9C611DA9289528C7F64599563F ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
07:10:35.0606 0x1474  nusb3xhc - ok
07:10:35.0628 0x1474  [ 79B077FEE080787D6862CC81C874DE7B, D9D6237F58EDEDA7216F60C2DC66EBC1A3264F047496636D68930EA75147362B ] nuviocir        C:\Windows\system32\DRIVERS\nuviocir_win7_x64.sys
07:10:35.0668 0x1474  nuviocir - ok
07:10:35.0703 0x1474  [ 7E4355930B28C2798D9F09AB9F81151F, 941C730F3B75BDF99639E76350031EDD15F18D8D860F3B1282C28B62096E7717 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
07:10:35.0718 0x1474  NVHDA - ok
07:10:35.0999 0x1474  [ ECC732D5185408FCC323E56D30170848, 7A7A6C410B65DBB1D59653598D7E5414054588BB88505BE68BFFF0378FD555F3 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
07:10:36.0313 0x1474  nvlddmkm - ok
07:10:36.0360 0x1474  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
07:10:36.0386 0x1474  nvraid - ok
07:10:36.0416 0x1474  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
07:10:36.0443 0x1474  nvstor - ok
07:10:36.0512 0x1474  [ 2AF7D8BCD8912FC16AA15268CDCF2454, 3A2E5ADFC6213A6EA83F78026518EC7EE0DD4BBA7C210CB7A41007BB57DC0636 ] nvsvc           C:\Windows\system32\nvvsvc.exe
07:10:36.0561 0x1474  nvsvc - ok
07:10:36.0575 0x1474  [ 31B16657118E439B77B0A527F7EA66CB, 8C375D2AFF56125E08587DDDCE6AD31DE6D2DEEDC9AD95ADE95B7499F79A5B56 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
07:10:36.0595 0x1474  nvvad_WaveExtensible - ok
07:10:36.0635 0x1474  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
07:10:36.0660 0x1474  nv_agp - ok
07:10:36.0676 0x1474  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
07:10:36.0709 0x1474  ohci1394 - ok
07:10:36.0746 0x1474  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
07:10:36.0798 0x1474  p2pimsvc - ok
07:10:36.0824 0x1474  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
07:10:36.0869 0x1474  p2psvc - ok
07:10:36.0892 0x1474  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
07:10:36.0932 0x1474  Parport - ok
07:10:36.0960 0x1474  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
07:10:36.0976 0x1474  partmgr - ok
07:10:37.0003 0x1474  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc          C:\Windows\System32\pcasvc.dll
07:10:37.0051 0x1474  PcaSvc - ok
07:10:37.0072 0x1474  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
07:10:37.0092 0x1474  pci - ok
07:10:37.0122 0x1474  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
07:10:37.0138 0x1474  pciide - ok
07:10:37.0162 0x1474  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
07:10:37.0193 0x1474  pcmcia - ok
07:10:37.0208 0x1474  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
07:10:37.0223 0x1474  pcw - ok
07:10:37.0277 0x1474  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
07:10:37.0342 0x1474  PEAUTH - ok
07:10:37.0413 0x1474  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
07:10:37.0452 0x1474  PerfHost - ok
07:10:37.0533 0x1474  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
07:10:37.0606 0x1474  pla - ok
07:10:37.0634 0x1474  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
07:10:37.0674 0x1474  PlugPlay - ok
07:10:37.0684 0x1474  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
07:10:37.0722 0x1474  PNRPAutoReg - ok
07:10:37.0737 0x1474  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
07:10:37.0764 0x1474  PNRPsvc - ok
07:10:37.0796 0x1474  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
07:10:37.0885 0x1474  PolicyAgent - ok
07:10:37.0914 0x1474  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
07:10:37.0973 0x1474  Power - ok
07:10:38.0010 0x1474  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
07:10:38.0039 0x1474  PptpMiniport - ok
07:10:38.0052 0x1474  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
07:10:38.0088 0x1474  Processor - ok
07:10:38.0112 0x1474  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
07:10:38.0142 0x1474  ProfSvc - ok
07:10:38.0153 0x1474  [ 5673794F254FE312AF62D9DA32805A2F, 76400BF26F87303924A4FA9DFE5DD13170D1E4A195CD12548DBAA0E6E8C11B1B ] ProtectedStorage C:\Windows\system32\lsass.exe
07:10:38.0162 0x1474  ProtectedStorage - ok
07:10:38.0196 0x1474  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
07:10:38.0246 0x1474  Psched - ok
07:10:38.0298 0x1474  [ DD3FD48D69F5FBBB21D46D1514C1C2DB, 2B188E3AC4BD9B608D375DD550507717852C2AF7C0F99FFED90098999B9D4F01 ] PSI             C:\Windows\system32\DRIVERS\psi_mf_amd64.sys
07:10:38.0311 0x1474  PSI - ok
07:10:38.0386 0x1474  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
07:10:38.0433 0x1474  ql2300 - ok
07:10:38.0458 0x1474  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
07:10:38.0484 0x1474  ql40xx - ok
07:10:38.0510 0x1474  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
07:10:38.0552 0x1474  QWAVE - ok
07:10:38.0558 0x1474  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
07:10:38.0595 0x1474  QWAVEdrv - ok
07:10:38.0608 0x1474  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
07:10:38.0656 0x1474  RasAcd - ok
07:10:38.0676 0x1474  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
07:10:38.0741 0x1474  RasAgileVpn - ok
07:10:38.0758 0x1474  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
07:10:38.0817 0x1474  RasAuto - ok
07:10:38.0830 0x1474  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
07:10:38.0898 0x1474  Rasl2tp - ok
07:10:38.0938 0x1474  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
07:10:38.0975 0x1474  RasMan - ok
07:10:38.0981 0x1474  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
07:10:39.0020 0x1474  RasPppoe - ok
07:10:39.0039 0x1474  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
07:10:39.0090 0x1474  RasSstp - ok
07:10:39.0125 0x1474  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
07:10:39.0198 0x1474  rdbss - ok
07:10:39.0211 0x1474  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
07:10:39.0236 0x1474  rdpbus - ok
07:10:39.0255 0x1474  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
07:10:39.0277 0x1474  RDPCDD - ok
07:10:39.0284 0x1474  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
07:10:39.0323 0x1474  RDPENCDD - ok
07:10:39.0336 0x1474  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
07:10:39.0373 0x1474  RDPREFMP - ok
07:10:39.0408 0x1474  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
07:10:39.0447 0x1474  RDPWD - ok
07:10:39.0492 0x1474  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
07:10:39.0514 0x1474  rdyboost - ok
07:10:39.0533 0x1474  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
07:10:39.0588 0x1474  RemoteAccess - ok
07:10:39.0613 0x1474  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
07:10:39.0657 0x1474  RemoteRegistry - ok
07:10:39.0712 0x1474  [ 9C3AC71A9934B884FAC567A8807E9C4D, 0B6B2970098E3C21E1E54A25785544903E8CD415B527FCEF86ABC7B33BEC83E7 ] Revoflt         C:\Windows\system32\DRIVERS\revoflt.sys
07:10:39.0731 0x1474  Revoflt - ok
07:10:39.0756 0x1474  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
07:10:39.0821 0x1474  RpcEptMapper - ok
07:10:39.0847 0x1474  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
07:10:39.0874 0x1474  RpcLocator - ok
07:10:39.0913 0x1474  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
07:10:39.0963 0x1474  RpcSs - ok
07:10:39.0983 0x1474  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
07:10:40.0015 0x1474  rspndr - ok
07:10:40.0024 0x1474  [ 5673794F254FE312AF62D9DA32805A2F, 76400BF26F87303924A4FA9DFE5DD13170D1E4A195CD12548DBAA0E6E8C11B1B ] SamSs           C:\Windows\system32\lsass.exe
07:10:40.0034 0x1474  SamSs - ok
07:10:40.0061 0x1474  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
07:10:40.0084 0x1474  sbp2port - ok
07:10:40.0103 0x1474  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
07:10:40.0137 0x1474  SCardSvr - ok
07:10:40.0162 0x1474  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
07:10:40.0189 0x1474  scfilter - ok
07:10:40.0239 0x1474  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\Windows\system32\schedsvc.dll
07:10:40.0293 0x1474  Schedule - ok
07:10:40.0323 0x1474  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
07:10:40.0345 0x1474  SCPolicySvc - ok
07:10:40.0377 0x1474  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
07:10:40.0440 0x1474  SDRSVC - ok
07:10:40.0459 0x1474  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
07:10:40.0492 0x1474  secdrv - ok
07:10:40.0520 0x1474  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
07:10:40.0560 0x1474  seclogon - ok
07:10:40.0648 0x1474  [ B34033662EEE2ED42BD0B52A37EB0058, 90D25B376F3DED2595EF9C791A137A0D8243CEB57BFFB637BEA13E5ECAAA6EAF ] Secunia PSI Agent C:\Program Files (x86)\Secunia\PSI\PSIA.exe
07:10:40.0686 0x1474  Secunia PSI Agent - ok
07:10:40.0721 0x1474  [ A638907301678BEAB54EB47172AA1EB9, 46E48B89B9F968ED4136827D2362C293A6188978E0FF13A88305D30A0ED0EE67 ] Secunia Update Agent C:\Program Files (x86)\Secunia\PSI\sua.exe
07:10:40.0744 0x1474  Secunia Update Agent - ok
07:10:40.0762 0x1474  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
07:10:40.0799 0x1474  SENS - ok
07:10:40.0812 0x1474  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
07:10:40.0836 0x1474  SensrSvc - ok
07:10:40.0852 0x1474  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
07:10:40.0863 0x1474  Serenum - ok
07:10:40.0878 0x1474  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
07:10:40.0893 0x1474  Serial - ok
07:10:40.0921 0x1474  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
07:10:40.0943 0x1474  sermouse - ok
07:10:41.0017 0x1474  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
07:10:41.0065 0x1474  SessionEnv - ok
07:10:41.0086 0x1474  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
07:10:41.0108 0x1474  sffdisk - ok
07:10:41.0123 0x1474  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
07:10:41.0159 0x1474  sffp_mmc - ok
07:10:41.0175 0x1474  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
07:10:41.0198 0x1474  sffp_sd - ok
07:10:41.0207 0x1474  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
07:10:41.0239 0x1474  sfloppy - ok
07:10:41.0282 0x1474  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
07:10:41.0368 0x1474  SharedAccess - ok
07:10:41.0408 0x1474  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
07:10:41.0483 0x1474  ShellHWDetection - ok
07:10:41.0509 0x1474  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
07:10:41.0530 0x1474  SiSRaid2 - ok
07:10:41.0547 0x1474  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
07:10:41.0562 0x1474  SiSRaid4 - ok
07:10:41.0643 0x1474  [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
07:10:41.0670 0x1474  SkypeUpdate - ok
07:10:41.0695 0x1474  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
07:10:41.0752 0x1474  Smb - ok
07:10:41.0781 0x1474  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
07:10:41.0798 0x1474  SNMPTRAP - ok
07:10:41.0831 0x1474  [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan        C:\Windows\SysWOW64\speedfan.sys
07:10:41.0853 0x1474  speedfan - ok
07:10:41.0862 0x1474  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
07:10:41.0876 0x1474  spldr - ok
07:10:41.0926 0x1474  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
07:10:41.0961 0x1474  Spooler - ok
07:10:42.0091 0x1474  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
07:10:42.0230 0x1474  sppsvc - ok
07:10:42.0258 0x1474  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
07:10:42.0287 0x1474  sppuinotify - ok
07:10:42.0337 0x1474  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
07:10:42.0367 0x1474  srv - ok
07:10:42.0419 0x1474  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
07:10:42.0451 0x1474  srv2 - ok
07:10:42.0477 0x1474  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
07:10:42.0489 0x1474  srvnet - ok
07:10:42.0513 0x1474  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
07:10:42.0557 0x1474  SSDPSRV - ok
07:10:42.0567 0x1474  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
07:10:42.0602 0x1474  SstpSvc - ok
07:10:42.0675 0x1474  [ 591249EA969797C2A24629AF7C71A6F8, 61F28FB495657916514DE2A7FFD4AD833A1B2BBA5591616BE0C9CCD7DAFA40B7 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
07:10:42.0697 0x1474  Steam Client Service - ok
07:10:42.0735 0x1474  [ 6213F20854FB987119503F9F91C70B9F, E1683753D192B154DBFE1FD03625A2A56F8576CE2A7619B41159B1C718C73B88 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
07:10:42.0748 0x1474  Stereo Service - ok
07:10:42.0773 0x1474  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
07:10:42.0793 0x1474  stexstor - ok
07:10:42.0852 0x1474  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
07:10:42.0890 0x1474  stisvc - ok
07:10:42.0911 0x1474  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
07:10:42.0923 0x1474  swenum - ok
07:10:42.0950 0x1474  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
07:10:42.0989 0x1474  swprv - ok
07:10:43.0052 0x1474  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll
07:10:43.0120 0x1474  SysMain - ok
07:10:43.0150 0x1474  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
07:10:43.0185 0x1474  TabletInputService - ok
07:10:43.0218 0x1474  [ 20B71624C3E759A4F699A4E4607C2C01, 135557D4ED3D0C706EA09BB5F9457FC7378C210B52BC4F099B931F8F3E15FD6D ] taphss6         C:\Windows\system32\DRIVERS\taphss6.sys
07:10:43.0237 0x1474  taphss6 - ok
07:10:43.0276 0x1474  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
07:10:43.0293 0x19b8  Object required for P2P: [ DFF7C7E8DB2A8F520BF0550AAD17FF99 ] Avira.ServiceHost
07:10:43.0357 0x1474  TapiSrv - ok
07:10:43.0374 0x1474  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
07:10:43.0429 0x1474  TBS - ok
07:10:43.0492 0x1474  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
07:10:43.0495 0x19b8  Object send P2P result: true
07:10:43.0500 0x19b8  Object required for P2P: [ C6B53600271EA23A03D5C23316407013 ] GalaxyCommunication
07:10:43.0539 0x1474  Tcpip - ok
07:10:43.0617 0x1474  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
07:10:43.0643 0x19b8  Object send P2P result: true
07:10:43.0665 0x19b8  Object required for P2P: [ B34033662EEE2ED42BD0B52A37EB0058 ] Secunia PSI Agent
07:10:43.0682 0x1474  TCPIP6 - ok
07:10:43.0701 0x1474  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
07:10:43.0734 0x1474  tcpipreg - ok
07:10:43.0764 0x1474  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
07:10:43.0794 0x19b8  Object send P2P result: true
07:10:43.0795 0x19b8  Object required for P2P: [ A638907301678BEAB54EB47172AA1EB9 ] Secunia Update Agent
07:10:43.0815 0x1474  TDPIPE - ok
07:10:43.0846 0x1474  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
07:10:43.0877 0x1474  TDTCP - ok
07:10:43.0905 0x1474  [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
07:10:43.0940 0x19b8  Object send P2P result: true
07:10:43.0944 0x1474  tdx - ok
07:10:44.0211 0x1474  [ E72B44F86082DFE649CD991E3CD2F8B6, C5A1E53E41E48D3465A7D96886A1E5D1C3145C7E1A40FB74E3A05EDC2DA04F84 ] TeamViewer      C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
07:10:44.0355 0x1474  TeamViewer - ok
07:10:44.0385 0x1474  [ F5520DBB47C60EE83024B38720ABDA24, B8E555D92440BF93E3B55A66E27CEF936477EF7528F870D3B78BD3B294A05CC0 ] teamviewervpn   C:\Windows\system32\DRIVERS\teamviewervpn.sys
07:10:44.0395 0x1474  teamviewervpn - ok
07:10:44.0420 0x1474  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
07:10:44.0432 0x1474  TermDD - ok
07:10:44.0487 0x1474  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
07:10:44.0557 0x1474  TermService - ok
07:10:44.0575 0x1474  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
07:10:44.0610 0x1474  Themes - ok
07:10:44.0632 0x1474  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
07:10:44.0679 0x1474  THREADORDER - ok
07:10:44.0698 0x1474  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
07:10:44.0758 0x1474  TrkWks - ok
07:10:44.0807 0x1474  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
07:10:44.0869 0x1474  TrustedInstaller - ok
07:10:44.0895 0x1474  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
07:10:44.0924 0x1474  tssecsrv - ok
07:10:44.0959 0x1474  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
07:10:44.0994 0x1474  TsUsbFlt - ok
07:10:45.0033 0x1474  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
07:10:45.0088 0x1474  tunnel - ok
07:10:45.0104 0x1474  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
07:10:45.0127 0x1474  uagp35 - ok
07:10:45.0172 0x1474  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
07:10:45.0213 0x1474  udfs - ok
07:10:45.0227 0x1474  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
07:10:45.0238 0x1474  UI0Detect - ok
07:10:45.0260 0x1474  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
07:10:45.0282 0x1474  uliagpkx - ok
07:10:45.0323 0x1474  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
07:10:45.0354 0x1474  umbus - ok
07:10:45.0371 0x1474  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
07:10:45.0391 0x1474  UmPass - ok
07:10:45.0421 0x1474  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
07:10:45.0482 0x1474  upnphost - ok
07:10:45.0511 0x1474  [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
07:10:45.0555 0x1474  USBAAPL64 - ok
07:10:45.0582 0x1474  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
07:10:45.0621 0x1474  usbccgp - ok
07:10:45.0649 0x1474  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
07:10:45.0696 0x1474  usbcir - ok
07:10:45.0709 0x1474  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
07:10:45.0744 0x1474  usbehci - ok
07:10:45.0768 0x1474  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
07:10:45.0797 0x1474  usbhub - ok
07:10:45.0808 0x1474  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
07:10:45.0818 0x1474  usbohci - ok
07:10:45.0841 0x1474  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
07:10:45.0852 0x1474  usbprint - ok
07:10:45.0878 0x1474  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
07:10:45.0896 0x1474  USBSTOR - ok
07:10:45.0909 0x1474  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
07:10:45.0937 0x1474  usbuhci - ok
07:10:45.0954 0x1474  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
07:10:46.0017 0x1474  UxSms - ok
07:10:46.0060 0x1474  [ 5673794F254FE312AF62D9DA32805A2F, 76400BF26F87303924A4FA9DFE5DD13170D1E4A195CD12548DBAA0E6E8C11B1B ] VaultSvc        C:\Windows\system32\lsass.exe
07:10:46.0073 0x1474  VaultSvc - ok
07:10:46.0099 0x1474  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
07:10:46.0113 0x1474  vdrvroot - ok
07:10:46.0139 0x1474  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
07:10:46.0192 0x1474  vds - ok
07:10:46.0207 0x1474  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
07:10:46.0219 0x1474  vga - ok
07:10:46.0229 0x1474  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
07:10:46.0257 0x1474  VgaSave - ok
07:10:46.0276 0x1474  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
07:10:46.0296 0x1474  vhdmp - ok
07:10:46.0304 0x1474  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
07:10:46.0322 0x1474  viaide - ok
07:10:46.0338 0x1474  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
07:10:46.0353 0x1474  volmgr - ok
07:10:46.0388 0x1474  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
07:10:46.0415 0x1474  volmgrx - ok
07:10:46.0441 0x1474  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
07:10:46.0465 0x1474  volsnap - ok
07:10:46.0479 0x1474  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
07:10:46.0497 0x1474  vsmraid - ok
07:10:46.0578 0x1474  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
07:10:46.0647 0x1474  VSS - ok
07:10:46.0662 0x1474  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
07:10:46.0677 0x1474  vwifibus - ok
07:10:46.0707 0x1474  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
07:10:46.0767 0x1474  W32Time - ok
07:10:46.0786 0x1474  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
07:10:46.0814 0x1474  WacomPen - ok
07:10:46.0843 0x1474  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
07:10:46.0886 0x1474  WANARP - ok
07:10:46.0889 0x1474  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
07:10:46.0910 0x1474  Wanarpv6 - ok
07:10:46.0995 0x1474  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
07:10:47.0043 0x1474  WatAdminSvc - ok
07:10:47.0120 0x1474  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
07:10:47.0187 0x1474  wbengine - ok
07:10:47.0202 0x1474  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
07:10:47.0237 0x1474  WbioSrvc - ok
07:10:47.0272 0x1474  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
07:10:47.0319 0x1474  wcncsvc - ok
07:10:47.0332 0x1474  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
07:10:47.0373 0x1474  WcsPlugInService - ok
07:10:47.0386 0x1474  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
07:10:47.0406 0x1474  Wd - ok
07:10:47.0464 0x1474  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
07:10:47.0492 0x1474  Wdf01000 - ok
07:10:47.0519 0x1474  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
07:10:47.0554 0x1474  WdiServiceHost - ok
07:10:47.0557 0x1474  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
07:10:47.0566 0x1474  WdiSystemHost - ok
07:10:47.0602 0x1474  [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient       C:\Windows\System32\webclnt.dll
07:10:47.0641 0x1474  WebClient - ok
07:10:47.0656 0x1474  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
07:10:47.0711 0x1474  Wecsvc - ok
07:10:47.0725 0x1474  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
07:10:47.0767 0x1474  wercplsupport - ok
07:10:47.0787 0x1474  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
07:10:47.0823 0x1474  WerSvc - ok
07:10:47.0828 0x1474  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
07:10:47.0864 0x1474  WfpLwf - ok
07:10:47.0875 0x1474  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
07:10:47.0894 0x1474  WIMMount - ok
07:10:47.0907 0x1474  WinDefend - ok
07:10:47.0917 0x1474  WinHttpAutoProxySvc - ok
07:10:47.0973 0x1474  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
07:10:48.0021 0x1474  Winmgmt - ok
07:10:48.0112 0x1474  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
07:10:48.0245 0x1474  WinRM - ok
07:10:48.0292 0x1474  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
07:10:48.0327 0x1474  WinUsb - ok
07:10:48.0369 0x1474  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
07:10:48.0400 0x1474  Wlansvc - ok
07:10:48.0410 0x1474  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
07:10:48.0429 0x1474  WmiAcpi - ok
07:10:48.0447 0x1474  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
07:10:48.0478 0x1474  wmiApSrv - ok
07:10:48.0498 0x1474  WMPNetworkSvc - ok
07:10:48.0516 0x1474  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
07:10:48.0553 0x1474  WPCSvc - ok
07:10:48.0565 0x1474  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
07:10:48.0599 0x1474  WPDBusEnum - ok
07:10:48.0619 0x1474  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
07:10:48.0663 0x1474  ws2ifsl - ok
07:10:48.0687 0x1474  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
07:10:48.0704 0x1474  wscsvc - ok
07:10:48.0706 0x1474  WSearch - ok
07:10:48.0826 0x1474  [ 3D4032E6A5885C007AEF4BA816AB4032, 21EB2B5B5A64EED44B5B7743820842205175F52A6F5525BD0F95DCB2733F449C ] wuauserv        C:\Windows\system32\wuaueng.dll
07:10:48.0918 0x1474  wuauserv - ok
07:10:48.0946 0x1474  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
07:10:48.0974 0x1474  WudfPf - ok
07:10:48.0989 0x1474  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
07:10:49.0021 0x1474  WUDFRd - ok
07:10:49.0045 0x1474  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
07:10:49.0057 0x1474  wudfsvc - ok
07:10:49.0095 0x1474  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
07:10:49.0143 0x1474  WwanSvc - ok
07:10:49.0204 0x1474  [ F3D7F968E6A4A37F6BBC1F4B737E6C41, 92B39BEB51BC38EE19B8A3D8DBC67AEFA71EFF6642B6338FF0749053A939E4DB ] XFDriver64      C:\Program Files (x86)\Xfire2\XFDriver64.sys
07:10:49.0222 0x1474  XFDriver64 - ok
07:10:49.0238 0x1474  ================ Scan global ===============================
07:10:49.0269 0x1474  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
07:10:49.0310 0x1474  [ 96AEEE466EA56AF34AE4AD5E55DAD164, 467DA5C29E04E02520974163AEBF7FAA3DED8212A765616C0D877E4F36AD173C ] C:\Windows\system32\winsrv.dll
07:10:49.0328 0x1474  [ 96AEEE466EA56AF34AE4AD5E55DAD164, 467DA5C29E04E02520974163AEBF7FAA3DED8212A765616C0D877E4F36AD173C ] C:\Windows\system32\winsrv.dll
07:10:49.0358 0x1474  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
07:10:49.0404 0x1474  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
07:10:49.0416 0x1474  [ Global ] - ok
07:10:49.0417 0x1474  ================ Scan MBR ==================================
07:10:49.0427 0x1474  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
07:10:49.0630 0x1474  \Device\Harddisk0\DR0 - ok
07:10:49.0949 0x1474  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
07:10:50.0185 0x1474  \Device\Harddisk2\DR2 - ok
07:10:50.0185 0x1474  ================ Scan VBR ==================================
07:10:50.0187 0x1474  [ A6DD2B615FA04FE305B2531EA3C063EF ] \Device\Harddisk0\DR0\Partition1
07:10:50.0236 0x1474  \Device\Harddisk0\DR0\Partition1 - ok
07:10:50.0239 0x1474  [ 25E5CCECC100B087A6F81B65E4B0B303 ] \Device\Harddisk0\DR0\Partition2
07:10:50.0277 0x1474  \Device\Harddisk0\DR0\Partition2 - ok
07:10:50.0279 0x1474  [ F43C75454C49A41E8CE3FD9FBB2C39DA ] \Device\Harddisk0\DR0\Partition3
07:10:50.0281 0x1474  \Device\Harddisk0\DR0\Partition3 - ok
07:10:50.0283 0x1474  [ 5120C90EF84F22A299D8CD32CB8F14AD ] \Device\Harddisk2\DR2\Partition1
07:10:50.0341 0x1474  \Device\Harddisk2\DR2\Partition1 - ok
07:10:50.0342 0x1474  ================ Scan generic autorun ======================
07:10:50.0454 0x1474  [ 059E588FDF6B7E83227D45D026D21874, 211B5E85D84562E11F3A676686E7C716BB59912F7764A49D9164277EB3991AC3 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
07:10:50.0508 0x1474  NvBackend - ok
07:10:50.0875 0x1474  [ 7F9E5AD3AD1C0CCCF8094E28911B5068, 76D043B7DE0A175B8AA510F49F5983C9852FD4F38AE0FB023D9A339BB63AC269 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
07:10:51.0199 0x1474  RTHDVCPL - ok
07:10:51.0253 0x1474  [ C7F017C9B163E7DAB864649E8241F683, F007F107FCA0E3A12D7E900101EBF02C2453D4AA56BE18769E86B592C88C5106 ] C:\Program Files\iTunes\iTunesHelper.exe
07:10:51.0277 0x1474  iTunesHelper - ok
07:10:51.0340 0x1474  [ 8943465BEFA91044227D42E84ECB8280, 76D19CE3EB7E6C6573F250543CDC10B3601604535BFB756805AE246FA55AC265 ] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
07:10:51.0355 0x1474  NUSB3MON - ok
07:10:51.0414 0x1474  [ 0B867A6BAB305C186AD57B6CEA53D981, 226DD3DEA47BA402CBADDC5AD6EE65254599582C9A0BDD1D502D109740B6690B ] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
07:10:51.0438 0x1474  Avira SystrayStartTrigger - ok
07:10:51.0512 0x1474  [ E83C81F40E072A697816F7311B87F471, 26F76EE173BB7F1D57837F71A9D22287DB1381A8C69EEB3B3BA7EB9B166A7828 ] C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
07:10:51.0539 0x1474  avgnt - ok
07:10:51.0674 0x1474  [ 235B72AF442823FF17751417DC904D15, 834ACDCCDCA14320BB0AE6A483179DF594F9C2429CF4846E1415BE4EF2C10FB4 ] C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
07:10:51.0735 0x1474  Malwarebytes Anti-Exploit - ok
07:10:51.0881 0x1474  [ FF74D2A2E3A3615A765B5181DB18551D, C38F06705B4E3264ABA10317BF3DE6D022E9B9D5B3016B08121512E84880963C ] C:\Program Files (x86)\Steam\steam.exe
07:10:51.0942 0x1474  Steam - ok
07:10:52.0187 0x1474  [ CE1DEC053DA24927E89D9AA196D31281, 39DD431CFCD10AA4E176062E33A0262FEE5806E192B37037C97439B1CEF232C8 ] C:\Program Files\CCleaner\CCleaner64.exe
07:10:52.0419 0x1474  CCleaner Monitoring - ok
07:10:52.0659 0x1474  [ 7BA63593A873F96F3D0B2EEBF8C2F9CE, 3DA07C70CA0768619DC1D2C3B042AEBA110B3EEAC4A32FB696AE16AB7577AFD6 ] C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe
07:10:52.0881 0x1474  GalaxyClient - ok
07:10:53.0059 0x1474  [ 3D5D4137594D2EBA8868EAD504B89366, D5FEB5B8303B083A79A4617E59B2FB34FAD71BE72F3F8DD6E4B69B3D03FE658A ] C:\Program Files\DAEMON Tools Lite\DTAgent.exe
07:10:53.0147 0x1474  DAEMON Tools Lite Automount - ok
07:10:53.0208 0x1474  Skype - ok
07:10:53.0210 0x1474  Waiting for KSN requests completion. In queue: 100
07:10:53.0383 0x23bc  Object required for P2P: [ FF74D2A2E3A3615A765B5181DB18551D ] C:\Program Files (x86)\Steam\steam.exe
07:10:53.0534 0x23bc  Object send P2P result: true
07:10:54.0226 0x1474  AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\Antivirus\wsctool.exe ( 15.0.15.133 ), 0x41000 ( enabled : updated )
07:10:54.0230 0x1474  Win FW state via NFP2: enabled ( trusted )
07:10:54.0323 0x1474  ============================================================
07:10:54.0323 0x1474  Scan finished
07:10:54.0323 0x1474  ============================================================
07:10:54.0331 0x1d50  Detected object count: 2
07:10:54.0331 0x1d50  Actual detected object count: 2
07:11:27.0889 0x1d50  kinonivd ( UnsignedFile.Multi.Generic ) - skipped by user
07:11:27.0889 0x1d50  kinonivd ( UnsignedFile.Multi.Generic ) - User select action: Skip
07:11:27.0890 0x1d50  KINONI_Wave ( UnsignedFile.Multi.Generic ) - skipped by user
07:11:27.0890 0x1d50  KINONI_Wave ( UnsignedFile.Multi.Generic ) - User select action: Skip
07:11:36.0006 0x203c  ============================================================
07:11:36.0007 0x203c  Scan started
07:11:36.0007 0x203c  Mode: Manual; SigCheck; TDLFS;
07:11:36.0007 0x203c  ============================================================
07:11:36.0007 0x203c  KSN ping started
07:11:36.0107 0x203c  KSN ping finished: true
07:11:37.0313 0x203c  ================ Scan system memory ========================
07:11:37.0313 0x203c  System memory - ok
07:11:37.0313 0x203c  ================ Scan services =============================
07:11:37.0426 0x203c  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
07:11:37.0458 0x203c  1394ohci - ok
07:11:37.0500 0x203c  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
07:11:37.0521 0x203c  ACPI - ok
07:11:37.0551 0x203c  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
07:11:37.0566 0x203c  AcpiPmi - ok
07:11:37.0656 0x203c  [ 785FD0E36CA75D90DD50042E2594BC63, 471A5ED43A3E18A5A69C28F7F351558E90F20416D9C532ADF50888808090AE89 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
07:11:37.0676 0x203c  AdobeFlashPlayerUpdateSvc - ok
07:11:37.0706 0x203c  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
07:11:37.0728 0x203c  adp94xx - ok
07:11:37.0737 0x203c  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
07:11:37.0748 0x203c  adpahci - ok
07:11:37.0754 0x203c  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
07:11:37.0763 0x203c  adpu320 - ok
07:11:37.0785 0x203c  [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
07:11:37.0802 0x203c  AeLookupSvc - ok
07:11:37.0848 0x203c  [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD             C:\Windows\system32\drivers\afd.sys
07:11:37.0877 0x203c  AFD - ok
07:11:37.0893 0x203c  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
07:11:37.0900 0x203c  agp440 - ok
07:11:37.0926 0x203c  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
07:11:37.0939 0x203c  ALG - ok
07:11:37.0965 0x203c  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
07:11:37.0978 0x203c  aliide - ok
07:11:37.0991 0x203c  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
07:11:38.0003 0x203c  amdide - ok
07:11:38.0017 0x203c  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
07:11:38.0030 0x203c  AmdK8 - ok
07:11:38.0044 0x203c  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
07:11:38.0057 0x203c  AmdPPM - ok
07:11:38.0088 0x203c  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
07:11:38.0105 0x203c  amdsata - ok
07:11:38.0119 0x203c  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
07:11:38.0136 0x203c  amdsbs - ok
07:11:38.0151 0x203c  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
07:11:38.0163 0x203c  amdxata - ok
07:11:38.0273 0x203c  [ 4258991B9E25540D35C7C8234D4FE1D8, CB4E100E30626A02FE59CA7CAEE187B6B03BA531931B1D132E88C0638BCE6B7A ] AntiVirMailService C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
07:11:38.0312 0x203c  AntiVirMailService - ok
07:11:38.0333 0x203c  [ B72014AB9465B84D82AD324DBC4A77EF, 905E922839BDE1FBA26DCC8F48361DC08BD51CC42BCF0904FAB99D2C34027239 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\Antivirus\sched.exe
07:11:38.0352 0x203c  AntiVirSchedulerService - ok
07:11:38.0369 0x203c  [ B72014AB9465B84D82AD324DBC4A77EF, 905E922839BDE1FBA26DCC8F48361DC08BD51CC42BCF0904FAB99D2C34027239 ] AntiVirService  C:\Program Files (x86)\Avira\Antivirus\avguard.exe
07:11:38.0388 0x203c  AntiVirService - ok
07:11:38.0444 0x203c  [ FD20E4FC7D4E7BEBA088387DCE991865, F9EE69774C92F71BDE1D40671EAE5630273CA632BA1E996B00758527D0D75F3D ] AntiVirWebService C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
07:11:38.0475 0x203c  AntiVirWebService - ok
07:11:38.0501 0x203c  [ 27DABFB4A6B0140C34DBEC713469592B, A355170D353AFBF0DE4EF53282F8404788FBBD0E2A1B7282B1B2925923E83141 ] AppID           C:\Windows\system32\drivers\appid.sys
07:11:38.0516 0x203c  AppID - ok
07:11:38.0545 0x203c  [ ABC373B9C6275D45F17DB559408FFD1B, 12B355393BEBE2D1D24D7A9DA5E69E03E334899407503BC1CADCF7BE39828223 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
07:11:38.0560 0x203c  AppIDSvc - ok
07:11:38.0595 0x203c  [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo         C:\Windows\System32\appinfo.dll
07:11:38.0611 0x203c  Appinfo - ok
07:11:38.0684 0x203c  [ 2D564BB1C4559A517B390A031955714D, 3048C187FD107C958D43DD8B954AB55FDD1BC538D3E0066CBFCB428C7A8A87E1 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
07:11:38.0697 0x203c  Apple Mobile Device Service - ok
07:11:38.0715 0x203c  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
07:11:38.0731 0x203c  arc - ok
07:11:38.0738 0x203c  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
07:11:38.0750 0x203c  arcsas - ok
07:11:38.0834 0x203c  [ 660D597B7A78256734D7F3230B21B355, CAA19E8EFAD63B8975A4CD8EFD5CE5F21E056856D36BC5A9E48517F1E574ABBA ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
07:11:38.0851 0x203c  aspnet_state - ok
07:11:38.0865 0x203c  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
07:11:38.0910 0x203c  AsyncMac - ok
07:11:38.0916 0x203c  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
07:11:38.0929 0x203c  atapi - ok
07:11:38.0982 0x203c  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
07:11:39.0021 0x203c  AudioEndpointBuilder - ok
07:11:39.0042 0x203c  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv        C:\Windows\System32\Audiosrv.dll
07:11:39.0073 0x203c  AudioSrv - ok
07:11:39.0093 0x203c  [ 29E019B4607E410BFE4DB778C3300BC5, 32D1A5A5836152BAAA168B4A06AC6F52DBC19150D339B5F87E8E3A1E1EE580C3 ] avgntflt        C:\Windows\system32\DRIVERS\avgntflt.sys
07:11:39.0110 0x203c  avgntflt - ok
07:11:39.0139 0x203c  [ 6BA8ADBDF2A492A75DA81868C32F67BD, 56CB3A0647DACA414D5A65D4701443604E573F41FEE79349D88D558C6336453A ] avipbb          C:\Windows\system32\DRIVERS\avipbb.sys
07:11:39.0158 0x203c  avipbb - ok
07:11:39.0204 0x203c  [ DFF7C7E8DB2A8F520BF0550AAD17FF99, 350E4E41E3932B155C93A061B7209645969FD6EE597CF5BBF4BBF7AB0EBBB7FD ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
07:11:39.0226 0x203c  Avira.ServiceHost - ok
07:11:39.0226 0x203c  Object required for P2P: [ DFF7C7E8DB2A8F520BF0550AAD17FF99 ] Avira.ServiceHost
07:11:39.0368 0x203c  Object send P2P result: true
07:11:39.0382 0x203c  [ 390184FAD8FCC1B6DA25AEBAE928C3B6, 537B0E0FAE080B55D70E990BBA0F7F22903CA340F6A42039BAD617A8ECF59119 ] avkmgr          C:\Windows\system32\DRIVERS\avkmgr.sys
07:11:39.0395 0x203c  avkmgr - ok
07:11:39.0414 0x203c  [ 99672CCD11058D6E2F627473B773F971, 4EF2BCDA4678F9ECE499F216AC0F8105F37D2AB0320064741A8DFB5C39E5048C ] avnetflt        C:\Windows\system32\DRIVERS\avnetflt.sys
07:11:39.0430 0x203c  avnetflt - ok
07:11:39.0458 0x203c  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
07:11:39.0483 0x203c  AxInstSV - ok
07:11:39.0526 0x203c  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
07:11:39.0556 0x203c  b06bdrv - ok
07:11:39.0571 0x203c  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
07:11:39.0585 0x203c  b57nd60a - ok
07:11:39.0610 0x203c  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
07:11:39.0621 0x203c  BDESVC - ok
07:11:39.0631 0x203c  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
07:11:39.0657 0x203c  Beep - ok
07:11:39.0711 0x203c  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
07:11:39.0744 0x203c  BFE - ok
07:11:39.0786 0x203c  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll
07:11:39.0824 0x203c  BITS - ok
07:11:39.0833 0x203c  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
07:11:39.0841 0x203c  blbdrive - ok
07:11:39.0866 0x203c  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
07:11:39.0875 0x203c  bowser - ok
07:11:39.0883 0x203c  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
07:11:39.0893 0x203c  BrFiltLo - ok
07:11:39.0896 0x203c  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
07:11:39.0906 0x203c  BrFiltUp - ok
07:11:39.0915 0x203c  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
07:11:39.0940 0x203c  BridgeMP - ok
07:11:39.0972 0x203c  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
07:11:39.0984 0x203c  Browser - ok
07:11:39.0992 0x203c  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
07:11:40.0005 0x203c  Brserid - ok
07:11:40.0016 0x203c  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
07:11:40.0034 0x203c  BrSerWdm - ok
07:11:40.0044 0x203c  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
07:11:40.0062 0x203c  BrUsbMdm - ok
07:11:40.0074 0x203c  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
07:11:40.0089 0x203c  BrUsbSer - ok
07:11:40.0106 0x203c  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
07:11:40.0126 0x203c  BTHMODEM - ok
07:11:40.0145 0x203c  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
07:11:40.0192 0x203c  bthserv - ok
07:11:40.0195 0x203c  catchme - ok
07:11:40.0202 0x203c  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
07:11:40.0234 0x203c  cdfs - ok
07:11:40.0260 0x203c  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
07:11:40.0271 0x203c  cdrom - ok
07:11:40.0301 0x203c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
07:11:40.0343 0x203c  CertPropSvc - ok
07:11:40.0356 0x203c  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
07:11:40.0375 0x203c  circlass - ok
07:11:40.0412 0x203c  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\Windows\system32\CLFS.sys
07:11:40.0438 0x203c  CLFS - ok
07:11:40.0496 0x203c  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
07:11:40.0512 0x203c  clr_optimization_v2.0.50727_32 - ok
07:11:40.0552 0x203c  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
07:11:40.0568 0x203c  clr_optimization_v2.0.50727_64 - ok
07:11:40.0630 0x203c  [ AB4CD527BEFCC43EE441E6C50CCE54C8, 13B776AE63049FFBA7E35EA0A4C26EBB57B10D973E05C4CF1214249754DC46E4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
07:11:40.0649 0x203c  clr_optimization_v4.0.30319_32 - ok
07:11:40.0663 0x203c  [ 1400C75FF021D6CFACE46AC41B60770E, 3FCB8D7714A79522F2738037D559F1FFFB2F05C5406D2A038EF5DDB4629CA1CE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
07:11:40.0675 0x203c  clr_optimization_v4.0.30319_64 - ok
07:11:40.0678 0x203c  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
07:11:40.0687 0x203c  CmBatt - ok
07:11:40.0712 0x203c  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
07:11:40.0720 0x203c  cmdide - ok
07:11:40.0769 0x203c  [ EC0511BB85BAA42A9734011685A6732C, 10B52F0860CCB3AA0FC34DDA5C5538BFCF7B6D40738B7756297237FD2D9E01C1 ] CNG             C:\Windows\system32\Drivers\cng.sys
07:11:40.0807 0x203c  CNG - ok
07:11:40.0821 0x203c  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
07:11:40.0829 0x203c  Compbatt - ok
07:11:40.0838 0x203c  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
07:11:40.0852 0x203c  CompositeBus - ok
07:11:40.0856 0x203c  COMSysApp - ok
07:11:40.0869 0x203c  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
07:11:40.0882 0x203c  crcdisk - ok
07:11:40.0910 0x203c  [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
07:11:40.0932 0x203c  CryptSvc - ok
07:11:40.0976 0x203c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
07:11:41.0039 0x203c  DcomLaunch - ok
07:11:41.0088 0x203c  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
07:11:41.0144 0x203c  defragsvc - ok
07:11:41.0167 0x203c  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
07:11:41.0205 0x203c  DfsC - ok
07:11:41.0222 0x203c  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
07:11:41.0238 0x203c  Dhcp - ok
07:11:41.0319 0x203c  [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack       C:\Windows\system32\diagtrack.dll
07:11:41.0364 0x203c  DiagTrack - ok
07:11:41.0445 0x203c  [ DEE4A1F675EC604E9641B1A03CF1816F, A0AC84713DDFD9A94B8558DFA26B278FB29833C5663451CC582ACA85B29CBFD8 ] DigitalWave.Update.Service C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
07:11:41.0466 0x203c  DigitalWave.Update.Service - ok
07:11:41.0539 0x203c  [ 91DF13EC831BDCFA36A7A12CD13D66B9, 5054281FE91D4BE0DB446F6F30E3D59E669185555F6C20B988DEC250713FFCED ] Disc Soft Lite Bus Service C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
07:11:41.0567 0x203c  Disc Soft Lite Bus Service - ok
07:11:41.0576 0x203c  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
07:11:41.0598 0x203c  discache - ok
07:11:41.0611 0x203c  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
07:11:41.0618 0x203c  Disk - ok
07:11:41.0643 0x203c  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
07:11:41.0654 0x203c  Dnscache - ok
07:11:41.0692 0x203c  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
07:11:41.0744 0x203c  dot3svc - ok
07:11:41.0776 0x203c  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
07:11:41.0815 0x203c  DPS - ok
07:11:41.0845 0x203c  [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
07:11:41.0852 0x203c  drmkaud - ok
07:11:41.0871 0x203c  [ 496C3C6BC3D930D0960C9E75AA30F4A7, 3FE0E86DA8C2C6A990BB2F1B92C22BD3483882B8D69FF8025BB68A199362C234 ] dtlitescsibus   C:\Windows\system32\DRIVERS\dtlitescsibus.sys
07:11:41.0885 0x203c  dtlitescsibus - ok
07:11:41.0944 0x203c  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
07:11:41.0993 0x203c  DXGKrnl - ok
07:11:42.0027 0x203c  [ 23B6F8081F5C7AF1343810641EE0DD58, 571EF6BC76C062AF0FC696213638831EBC90B056B353AD440B01CA17E0D5B1B7 ] e1cexpress      C:\Windows\system32\DRIVERS\e1c62x64.sys
07:11:42.0051 0x203c  e1cexpress - ok
07:11:42.0074 0x203c  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
07:11:42.0113 0x203c  EapHost - ok
07:11:42.0218 0x203c  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
07:11:42.0280 0x203c  ebdrv - ok
 


07:11:42.0295 0x203c  [ 5673794F254FE312AF62D9DA32805A2F, 76400BF26F87303924A4FA9DFE5DD13170D1E4A195CD12548DBAA0E6E8C11B1B ] EFS             C:\Windows\System32\lsass.exe
07:11:42.0303 0x203c  EFS - ok
07:11:42.0379 0x203c  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
07:11:42.0418 0x203c  ehRecvr - ok
07:11:42.0443 0x203c  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
07:11:42.0462 0x203c  ehSched - ok
07:11:42.0494 0x203c  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
07:11:42.0525 0x203c  elxstor - ok
07:11:42.0550 0x203c  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
07:11:42.0565 0x203c  ErrDev - ok
07:11:42.0595 0x203c  [ 60281B807AC3F5202D3008F5DA902842, 6E4E91507E29AB865F7DF5A9E667C0853698F55D9C9DBAEB39AA9CE0A9AE885C ] ESProtectionDriver C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys
07:11:42.0610 0x203c  ESProtectionDriver - ok
07:11:42.0645 0x203c  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
07:11:42.0689 0x203c  EventSystem - ok
07:11:42.0713 0x203c  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
07:11:42.0737 0x203c  exfat - ok
07:11:42.0749 0x203c  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
07:11:42.0773 0x203c  fastfat - ok
07:11:42.0826 0x203c  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
07:11:42.0845 0x203c  Fax - ok
07:11:42.0855 0x203c  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
07:11:42.0863 0x203c  fdc - ok
07:11:42.0873 0x203c  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
07:11:42.0895 0x203c  fdPHost - ok
07:11:42.0900 0x203c  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
07:11:42.0921 0x203c  FDResPub - ok
07:11:42.0929 0x203c  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
07:11:42.0936 0x203c  FileInfo - ok
07:11:42.0947 0x203c  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
07:11:42.0967 0x203c  Filetrace - ok
07:11:42.0975 0x203c  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
07:11:42.0983 0x203c  flpydisk - ok
07:11:42.0994 0x203c  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
07:11:43.0005 0x203c  FltMgr - ok
07:11:43.0069 0x203c  [ BCB16AE33AA58E0042F3EF34CFB6396A, E8ADA10DE60A94E4BABE9FCA6D0AA83B11520C092D49057E17F6C6059D35A323 ] FontCache       C:\Windows\system32\FntCache.dll
07:11:43.0095 0x203c  FontCache - ok
07:11:43.0134 0x203c  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
07:11:43.0147 0x203c  FontCache3.0.0.0 - ok
07:11:43.0165 0x203c  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
07:11:43.0179 0x203c  FsDepends - ok
07:11:43.0206 0x203c  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
07:11:43.0218 0x203c  Fs_Rec - ok
07:11:43.0252 0x203c  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
07:11:43.0277 0x203c  fvevol - ok
07:11:43.0289 0x203c  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
07:11:43.0298 0x203c  gagp30kx - ok
07:11:43.0386 0x203c  [ 6D18B1088696CF96CBEBD31B8A519BD4, 4B47EECD18C12749FBEFA9C20B466F1A501F238166BBAE5B1793C918305A3348 ] GalaxyClientService C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe
07:11:43.0424 0x203c  GalaxyClientService - ok
07:11:43.0663 0x203c  [ C6B53600271EA23A03D5C23316407013, A2B672134EC6415D689F5F1BDF0500B876CB3BA2BA022E4C7FF4C15215AF7BC2 ] GalaxyCommunication C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
07:11:43.0788 0x203c  GalaxyCommunication - ok
07:11:43.0792 0x203c  Object required for P2P: [ C6B53600271EA23A03D5C23316407013 ] GalaxyCommunication
07:11:43.0937 0x203c  Object send P2P result: true
07:11:44.0027 0x203c  [ 28D0B60C58D1F734449E735E2C4FCE94, 8DF2706EB0F6383BA44961440FDAA93B3756E48994FBF4AB2B13CDA66A6F3C3F ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
07:11:44.0053 0x203c  GfExperienceService - ok
07:11:44.0283 0x203c  [ 5CDB9B835A0B68DBD49BAC91DCA3D1A6, F0148B49125BC2E40F42BD457F68E0D6959E64937B398D64E668F18FBE2A3B7D ] GlassWire       C:\Program Files (x86)\GlassWire\GWCtlSrv.exe
07:11:44.0493 0x203c  GlassWire - ok
07:11:44.0551 0x203c  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
07:11:44.0592 0x203c  gpsvc - ok
07:11:44.0621 0x203c  [ 3CF2C2F026B06D3F6B9A402DD50D5C9B, EEC63C73D54BC6F9AA53F6A248A041E3A0F1CE39386DA6243B42D1C14A322B2B ] gwdrv           C:\Windows\system32\DRIVERS\gwdrv.sys
07:11:44.0630 0x203c  gwdrv - ok
07:11:44.0646 0x203c  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
07:11:44.0660 0x203c  hcw85cir - ok
07:11:44.0701 0x203c  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
07:11:44.0725 0x203c  HdAudAddService - ok
07:11:44.0738 0x203c  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
07:11:44.0751 0x203c  HDAudBus - ok
07:11:44.0764 0x203c  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
07:11:44.0773 0x203c  HidBatt - ok
07:11:44.0783 0x203c  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
07:11:44.0795 0x203c  HidBth - ok
07:11:44.0802 0x203c  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
07:11:44.0812 0x203c  HidIr - ok
07:11:44.0829 0x203c  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
07:11:44.0852 0x203c  hidserv - ok
07:11:44.0880 0x203c  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
07:11:44.0887 0x203c  HidUsb - ok
07:11:44.0914 0x203c  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
07:11:44.0952 0x203c  hkmsvc - ok
07:11:44.0987 0x203c  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
07:11:45.0010 0x203c  HomeGroupListener - ok
07:11:45.0038 0x203c  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
07:11:45.0049 0x203c  HomeGroupProvider - ok
07:11:45.0067 0x203c  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
07:11:45.0075 0x203c  HpSAMD - ok
07:11:45.0231 0x203c  [ 8D18D6FCCBEA517524581A6F9E5AD675, C992FECF9FFB5AC7F2273781C33290E6F21AFA7F94055363E56EE883B3605AA4 ] hshld           C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
07:11:45.0330 0x203c  hshld - ok
07:11:45.0361 0x203c  [ B64DC8EEB3D73D5FAF0857E4A25416EB, DD7F222C1663636E824A5497CD54B7109226E2A00A54660B7D1807B1EB1BA468 ] HssTrayService  C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE
07:11:45.0370 0x203c  HssTrayService - ok
07:11:45.0419 0x203c  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
07:11:45.0459 0x203c  HTTP - ok
07:11:45.0519 0x203c  [ E5805896A55D4166C20F216249F40FA3, F426BF60D5B916E7A778EF24C49FE1FFE1B2977C2ABD2977FD5C38C6E6CB139F ] HWiNFO32        C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS
07:11:45.0532 0x203c  HWiNFO32 - ok
07:11:45.0556 0x203c  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
07:11:45.0569 0x203c  hwpolicy - ok
07:11:45.0606 0x203c  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
07:11:45.0624 0x203c  i8042prt - ok
07:11:45.0667 0x203c  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
07:11:45.0687 0x203c  iaStorV - ok
07:11:45.0752 0x203c  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
07:11:45.0780 0x203c  idsvc - ok
07:11:45.0783 0x203c  IEEtwCollectorService - ok
07:11:45.0797 0x203c  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
07:11:45.0804 0x203c  iirsp - ok
07:11:45.0856 0x203c  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
07:11:45.0895 0x203c  IKEEXT - ok
07:11:46.0033 0x203c  [ F94E2C3BA6D4B57C2E1DD03E950CBBC4, C0C4F779E1BA0A6C68937A2F6A0AEA5F49F0476A8520AC1323775536FA585A3C ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
07:11:46.0109 0x203c  IntcAzAudAddService - ok
07:11:46.0207 0x203c  [ C6128F2E3DC6156C6F8828F9F1B96010, 612C1191AFB8F69BA5634E8C52BDDE608F57D98FA4C76C5A337676A5F1E8191D ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
07:11:46.0239 0x203c  Intel® Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
07:11:46.0239 0x203c  Detect skipped due to KSN trusted
07:11:46.0239 0x203c  Intel® Capability Licensing Service Interface - ok
07:11:46.0296 0x203c  [ 729AB4F0608E95EFF8FDEF23596283E2, 62A2091FF440C65505AB3E38436A86D9B0978BCB9485960EFCE0C5CBC8E06201 ] Intel® Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
07:11:46.0320 0x203c  Intel® Capability Licensing Service TCP IP Interface - ok
07:11:46.0339 0x203c  [ 87DD7CC57949A67176C666602563776B, BE4FEE53C5C048EBED825AC6ADD65912744DD6EA954561D9A38A151FE669C252 ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
07:11:46.0352 0x203c  Intel® PROSet Monitoring Service - ok
07:11:46.0380 0x203c  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
07:11:46.0388 0x203c  intelide - ok
07:11:46.0406 0x203c  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
07:11:46.0416 0x203c  intelppm - ok
07:11:46.0438 0x203c  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
07:11:46.0466 0x203c  IPBusEnum - ok
07:11:46.0492 0x203c  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
07:11:46.0514 0x203c  IpFilterDriver - ok
07:11:46.0565 0x203c  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
07:11:46.0587 0x203c  iphlpsvc - ok
07:11:46.0619 0x203c  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
07:11:46.0628 0x203c  IPMIDRV - ok
07:11:46.0645 0x203c  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
07:11:46.0695 0x203c  IPNAT - ok
07:11:46.0741 0x203c  [ BD713ED20CFD71C32C4BE1928423AE9A, E0EE95FEA3930EA335D9B1FF74EEFAA61ECEC89AEBB1D0E43A1E1088F9990273 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
07:11:46.0774 0x203c  iPod Service - ok
07:11:46.0786 0x203c  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
07:11:46.0807 0x203c  IRENUM - ok
07:11:46.0815 0x203c  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
07:11:46.0828 0x203c  isapnp - ok
07:11:46.0853 0x203c  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
07:11:46.0875 0x203c  iScsiPrt - ok
07:11:46.0884 0x203c  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
07:11:46.0891 0x203c  kbdclass - ok
07:11:46.0895 0x203c  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
07:11:46.0903 0x203c  kbdhid - ok
07:11:46.0923 0x203c  [ 5673794F254FE312AF62D9DA32805A2F, 76400BF26F87303924A4FA9DFE5DD13170D1E4A195CD12548DBAA0E6E8C11B1B ] KeyIso          C:\Windows\system32\lsass.exe
07:11:46.0931 0x203c  KeyIso - ok
07:11:47.0057 0x203c  [ EBF07CF11ADD83DC05BFB63736129CF1, 8BB21FB5E232B619FB193EF4DAC20F393E7BEE3317F376C47466C1180BF32107 ] kinonivd        C:\Windows\system32\DRIVERS\kinonivd.sys
07:11:47.0122 0x203c  kinonivd - detected UnsignedFile.Multi.Generic ( 1 )
07:11:47.0123 0x203c  kinonivd ( UnsignedFile.Multi.Generic ) - warning
07:11:47.0123 0x203c  Force sending object to P2P due to detect: kinonivd
07:11:47.0274 0x203c  Object send P2P result: true
07:11:47.0370 0x203c  [ EE7072A46EF13BC48C9E5415D341A483, D47C6D51627814D5B4886B165AA17D22DF1E3CF72B0F35118B8A54361A71D431 ] KINONI_Wave     C:\Windows\system32\drivers\kinonivad.sys
07:11:47.0376 0x203c  KINONI_Wave - detected UnsignedFile.Multi.Generic ( 1 )
07:11:47.0376 0x203c  KINONI_Wave ( UnsignedFile.Multi.Generic ) - warning
07:11:47.0495 0x203c  [ 7BDDD24C5A148534D3737DBFA96B3E69, 06130316A21B1D67B5885AB7030603097EC96F7104F3766D67793ECFC1143158 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
07:11:47.0511 0x203c  KSecDD - ok
07:11:47.0529 0x203c  [ BA500732D160C61E889E8180EE53C86F, 2E9B9FEF4E2F86DBF6778AD0A581CE2F1CA0AC777440BA05AB36B031CE1E8781 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
07:11:47.0544 0x203c  KSecPkg - ok
07:11:47.0564 0x203c  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
07:11:47.0599 0x203c  ksthunk - ok
07:11:47.0622 0x203c  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
07:11:47.0677 0x203c  KtmRm - ok
07:11:47.0711 0x203c  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
07:11:47.0757 0x203c  LanmanServer - ok
07:11:47.0784 0x203c  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
07:11:47.0813 0x203c  LanmanWorkstation - ok
07:11:47.0845 0x203c  [ 17325C9B9ADB2BB99049936D0C9812C8, 70ADDC85FD5757BC9C4B97F382B25A19851FF8275021FFC04A81E208A604F83E ] LGBusEnum       C:\Windows\system32\drivers\LGBusEnum.sys
07:11:47.0859 0x203c  LGBusEnum - ok
07:11:47.0873 0x203c  [ C7AF05942E041D4B1F345ACF79993BB3, E8FAAE356C99A11F6CF17640FD9C67F87AFBFEFB70C458CB85178F2AD94DF848 ] LGJoyXlCore     C:\Windows\system32\drivers\LGJoyXlCore.sys
07:11:47.0895 0x203c  LGJoyXlCore - ok
07:11:47.0925 0x203c  [ 1DDB8DE3D6EEF31EDCF4977B2D2FAACC, 24291B522A596E2D9A1CDAC192DB1C7422D5DD0E87E5C8A5F5E2CAA90296BF23 ] LGVirHid        C:\Windows\system32\drivers\LGVirHid.sys
07:11:47.0944 0x203c  LGVirHid - ok
07:11:47.0950 0x203c  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
07:11:47.0976 0x203c  lltdio - ok
07:11:47.0997 0x203c  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
07:11:48.0034 0x203c  lltdsvc - ok
07:11:48.0049 0x203c  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
07:11:48.0085 0x203c  lmhosts - ok
07:11:48.0100 0x203c  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
07:11:48.0108 0x203c  LSI_FC - ok
07:11:48.0121 0x203c  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
07:11:48.0129 0x203c  LSI_SAS - ok
07:11:48.0143 0x203c  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
07:11:48.0158 0x203c  LSI_SAS2 - ok
07:11:48.0171 0x203c  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
07:11:48.0182 0x203c  LSI_SCSI - ok
07:11:48.0198 0x203c  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
07:11:48.0235 0x203c  luafv - ok
07:11:48.0288 0x203c  [ 6761C5500F6A54BF31BA91F409234426, 28098724C3F7FBA0FAF753353475F034525EF6505048BB4BA2A817E908CB5600 ] MbaeSvc         C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
07:11:48.0306 0x203c  MbaeSvc - ok
07:11:48.0323 0x203c  [ CFBC6C6D8A492697CABD1D353EE64933, DDAA844908324740C891EB8F08E2A8BB00457063B31C4A762745C1C2415FC12D ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
07:11:48.0330 0x203c  MBAMProtector - ok
07:11:48.0406 0x203c  [ 40C126CB15FAB7D6C66490DCA9C1AED2, B32CEE2D2409232C245427D5E9647FDF59AF1D8AB5E8A98EE2D1F1314599FD14 ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
07:11:48.0429 0x203c  MBAMService - ok
07:11:48.0446 0x203c  [ D61070CFAD43038DC56AEAD9BFE9CE2A, BD77AEF60E7FD2015CB14A464799304359547146C14A47F8D25274ACFA2E42D5 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
07:11:48.0454 0x203c  MBAMWebAccessControl - ok
07:11:48.0479 0x203c  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
07:11:48.0490 0x203c  Mcx2Svc - ok
07:11:48.0502 0x203c  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
07:11:48.0510 0x203c  megasas - ok
07:11:48.0528 0x203c  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
07:11:48.0541 0x203c  MegaSR - ok
07:11:48.0573 0x203c  [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
07:11:48.0583 0x203c  MEIx64 - ok
07:11:48.0622 0x203c  MFE_RR - ok
07:11:48.0641 0x203c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
07:11:48.0688 0x203c  MMCSS - ok
07:11:48.0705 0x203c  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
07:11:48.0751 0x203c  Modem - ok
07:11:48.0768 0x203c  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
07:11:48.0787 0x203c  monitor - ok
07:11:48.0816 0x203c  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
07:11:48.0831 0x203c  mouclass - ok
07:11:48.0844 0x203c  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
07:11:48.0858 0x203c  mouhid - ok
07:11:48.0891 0x203c  [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
07:11:48.0907 0x203c  mountmgr - ok
07:11:48.0937 0x203c  [ 5961C5D8EDD2E2A3B99F1782AE1AC21F, C383A4724A335737C4C7C3211AFCFB82D373267EC634BC47EE078A1C66E1F62A ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
07:11:48.0954 0x203c  MozillaMaintenance - ok
07:11:48.0985 0x203c  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
07:11:49.0003 0x203c  mpio - ok
07:11:49.0022 0x203c  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
07:11:49.0067 0x203c  mpsdrv - ok
07:11:49.0124 0x203c  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
07:11:49.0174 0x203c  MpsSvc - ok
07:11:49.0204 0x203c  [ D7ADC2B83CA0B0381F75A98351F72CEE, 05476B7CA0486DF770AE492B5A90C85E3D3E7485152EB2FA30A19EC9BE44ED81 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
07:11:49.0214 0x203c  MRxDAV - ok
07:11:49.0245 0x203c  [ 355DF71D1DD1999E8AEDF986534B233C, 4F5B07A3E9F4C5EE259A72353835364BFEAEC792090C178C4EF91B517B1C49D0 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
07:11:49.0264 0x203c  mrxsmb - ok
07:11:49.0304 0x203c  [ A16FC9323A85CAEA5804D04646A91CF9, ABC9F1BE4B871EBB5FDED9FC248DABEC4004EBCCF53E6C4D1E54AF69653B00E0 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
07:11:49.0329 0x203c  mrxsmb10 - ok
07:11:49.0366 0x203c  [ 2539BE615440BA1EA4CF84A66B6C0AF9, 3369DE38EE49E5507A73036CDF3982AEF2331D61C7EC4F159004EAD14309A933 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
07:11:49.0385 0x203c  mrxsmb20 - ok
07:11:49.0410 0x203c  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
07:11:49.0424 0x203c  msahci - ok
07:11:49.0445 0x203c  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
07:11:49.0463 0x203c  msdsm - ok
07:11:49.0477 0x203c  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
07:11:49.0498 0x203c  MSDTC - ok
07:11:49.0517 0x203c  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
07:11:49.0562 0x203c  Msfs - ok
07:11:49.0566 0x203c  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
07:11:49.0593 0x203c  mshidkmdf - ok
07:11:49.0620 0x203c  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
07:11:49.0627 0x203c  msisadrv - ok
07:11:49.0655 0x203c  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
07:11:49.0700 0x203c  MSiSCSI - ok
07:11:49.0702 0x203c  msiserver - ok
07:11:49.0712 0x203c  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
07:11:49.0734 0x203c  MSKSSRV - ok
07:11:49.0743 0x203c  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
07:11:49.0764 0x203c  MSPCLOCK - ok
07:11:49.0770 0x203c  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
07:11:49.0791 0x203c  MSPQM - ok
07:11:49.0823 0x203c  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
07:11:49.0835 0x203c  MsRPC - ok
07:11:49.0845 0x203c  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
07:11:49.0852 0x203c  mssmbios - ok
07:11:49.0859 0x203c  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
07:11:49.0880 0x203c  MSTEE - ok
07:11:49.0895 0x203c  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
07:11:49.0902 0x203c  MTConfig - ok
07:11:49.0918 0x203c  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
07:11:49.0926 0x203c  Mup - ok
07:11:49.0968 0x203c  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
07:11:50.0027 0x203c  napagent - ok
07:11:50.0040 0x203c  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
07:11:50.0055 0x203c  NativeWifiP - ok
07:11:50.0113 0x203c  [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS            C:\Windows\system32\drivers\ndis.sys
07:11:50.0136 0x203c  NDIS - ok
07:11:50.0144 0x203c  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
07:11:50.0166 0x203c  NdisCap - ok
07:11:50.0172 0x203c  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
07:11:50.0194 0x203c  NdisTapi - ok
07:11:50.0219 0x203c  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
07:11:50.0241 0x203c  Ndisuio - ok
07:11:50.0279 0x203c  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
07:11:50.0302 0x203c  NdisWan - ok
07:11:50.0326 0x203c  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
07:11:50.0371 0x203c  NDProxy - ok
07:11:50.0381 0x203c  [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl         C:\Windows\system32\DRIVERS\netaapl64.sys
07:11:50.0395 0x203c  Netaapl - ok
07:11:50.0405 0x203c  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
07:11:50.0436 0x203c  NetBIOS - ok
07:11:50.0452 0x203c  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
07:11:50.0477 0x203c  NetBT - ok
07:11:50.0483 0x203c  [ 5673794F254FE312AF62D9DA32805A2F, 76400BF26F87303924A4FA9DFE5DD13170D1E4A195CD12548DBAA0E6E8C11B1B ] Netlogon        C:\Windows\system32\lsass.exe
07:11:50.0491 0x203c  Netlogon - ok
07:11:50.0519 0x203c  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
07:11:50.0549 0x203c  Netman - ok
07:11:50.0615 0x203c  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
07:11:50.0632 0x203c  NetMsmqActivator - ok
07:11:50.0640 0x203c  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
07:11:50.0659 0x203c  NetPipeActivator - ok
07:11:50.0687 0x203c  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
07:11:50.0730 0x203c  netprofm - ok
07:11:50.0734 0x203c  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
07:11:50.0744 0x203c  NetTcpActivator - ok
07:11:50.0748 0x203c  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
07:11:50.0757 0x203c  NetTcpPortSharing - ok
07:11:50.0767 0x203c  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
07:11:50.0774 0x203c  nfrd960 - ok
07:11:50.0810 0x203c  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
07:11:50.0835 0x203c  NlaSvc - ok
07:11:50.0848 0x203c  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
07:11:50.0871 0x203c  Npfs - ok
07:11:50.0886 0x203c  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
07:11:50.0908 0x203c  nsi - ok
07:11:50.0917 0x203c  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
07:11:50.0938 0x203c  nsiproxy - ok
07:11:51.0127 0x203c  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
07:11:51.0163 0x203c  Ntfs - ok
07:11:51.0178 0x203c  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
07:11:51.0202 0x203c  Null - ok
07:11:51.0228 0x203c  [ B227E75AD10A142DD326B4CC8D73A6D9, CA76D73381ADAB04E86D417788D4EDAAE8343B90DCC9690ED5FFB1C0B1F09057 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
07:11:51.0236 0x203c  nusb3hub - ok
07:11:51.0267 0x203c  [ 55959DB860E4E484681586824D09E52C, EEA42F7DF194A84F207A8DC3BA9BF9ACDBFFFA9C611DA9289528C7F64599563F ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
07:11:51.0278 0x203c  nusb3xhc - ok
07:11:51.0294 0x203c  [ 79B077FEE080787D6862CC81C874DE7B, D9D6237F58EDEDA7216F60C2DC66EBC1A3264F047496636D68930EA75147362B ] nuviocir        C:\Windows\system32\DRIVERS\nuviocir_win7_x64.sys
07:11:51.0301 0x203c  nuviocir - ok
07:11:51.0331 0x203c  [ 7E4355930B28C2798D9F09AB9F81151F, 941C730F3B75BDF99639E76350031EDD15F18D8D860F3B1282C28B62096E7717 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
07:11:51.0347 0x203c  NVHDA - ok
07:11:51.0712 0x203c  [ ECC732D5185408FCC323E56D30170848, 7A7A6C410B65DBB1D59653598D7E5414054588BB88505BE68BFFF0378FD555F3 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
07:11:51.0932 0x203c  nvlddmkm - ok
07:11:51.0974 0x203c  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
07:11:51.0992 0x203c  nvraid - ok
07:11:52.0024 0x203c  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
07:11:52.0042 0x203c  nvstor - ok
07:11:52.0103 0x203c  [ 2AF7D8BCD8912FC16AA15268CDCF2454, 3A2E5ADFC6213A6EA83F78026518EC7EE0DD4BBA7C210CB7A41007BB57DC0636 ] nvsvc           C:\Windows\system32\nvvsvc.exe
07:11:52.0149 0x203c  nvsvc - ok
07:11:52.0158 0x203c  [ 31B16657118E439B77B0A527F7EA66CB, 8C375D2AFF56125E08587DDDCE6AD31DE6D2DEEDC9AD95ADE95B7499F79A5B56 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
07:11:52.0167 0x203c  nvvad_WaveExtensible - ok
07:11:52.0193 0x203c  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
07:11:52.0211 0x203c  nv_agp - ok
07:11:52.0242 0x203c  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
07:11:52.0257 0x203c  ohci1394 - ok
07:11:52.0288 0x203c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
07:11:52.0310 0x203c  p2pimsvc - ok
07:11:52.0327 0x203c  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
07:11:52.0341 0x203c  p2psvc - ok
07:11:52.0358 0x203c  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
07:11:52.0370 0x203c  Parport - ok
07:11:52.0402 0x203c  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
07:11:52.0418 0x203c  partmgr - ok
07:11:52.0443 0x203c  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc          C:\Windows\System32\pcasvc.dll
07:11:52.0454 0x203c  PcaSvc - ok
07:11:52.0463 0x203c  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
07:11:52.0475 0x203c  pci - ok
07:11:52.0498 0x203c  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
07:11:52.0507 0x203c  pciide - ok
07:11:52.0531 0x203c  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
07:11:52.0551 0x203c  pcmcia - ok
07:11:52.0568 0x203c  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
07:11:52.0583 0x203c  pcw - ok
07:11:52.0637 0x203c  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
07:11:52.0674 0x203c  PEAUTH - ok
07:11:52.0732 0x203c  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
07:11:52.0748 0x203c  PerfHost - ok
07:11:52.0823 0x203c  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
07:11:52.0906 0x203c  pla - ok
07:11:52.0936 0x203c  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
07:11:52.0966 0x203c  PlugPlay - ok
07:11:52.0978 0x203c  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
07:11:52.0994 0x203c  PNRPAutoReg - ok
07:11:53.0006 0x203c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
07:11:53.0027 0x203c  PNRPsvc - ok
07:11:53.0054 0x203c  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
07:11:53.0104 0x203c  PolicyAgent - ok
07:11:53.0133 0x203c  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
07:11:53.0175 0x203c  Power - ok
07:11:53.0205 0x203c  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
07:11:53.0244 0x203c  PptpMiniport - ok
07:11:53.0255 0x203c  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
07:11:53.0264 0x203c  Processor - ok
07:11:53.0287 0x203c  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
07:11:53.0299 0x203c  ProfSvc - ok
07:11:53.0306 0x203c  [ 5673794F254FE312AF62D9DA32805A2F, 76400BF26F87303924A4FA9DFE5DD13170D1E4A195CD12548DBAA0E6E8C11B1B ] ProtectedStorage C:\Windows\system32\lsass.exe
07:11:53.0315 0x203c  ProtectedStorage - ok
07:11:53.0341 0x203c  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
07:11:53.0376 0x203c  Psched - ok
07:11:53.0401 0x203c  [ DD3FD48D69F5FBBB21D46D1514C1C2DB, 2B188E3AC4BD9B608D375DD550507717852C2AF7C0F99FFED90098999B9D4F01 ] PSI             C:\Windows\system32\DRIVERS\psi_mf_amd64.sys
07:11:53.0409 0x203c  PSI - ok
07:11:53.0454 0x203c  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
07:11:53.0488 0x203c  ql2300 - ok
07:11:53.0501 0x203c  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
07:11:53.0510 0x203c  ql40xx - ok
07:11:53.0535 0x203c  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
07:11:53.0549 0x203c  QWAVE - ok
07:11:53.0552 0x203c  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
07:11:53.0562 0x203c  QWAVEdrv - ok
07:11:53.0571 0x203c  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
07:11:53.0592 0x203c  RasAcd - ok
07:11:53.0613 0x203c  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
07:11:53.0645 0x203c  RasAgileVpn - ok
07:11:53.0662 0x203c  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
07:11:53.0691 0x203c  RasAuto - ok
07:11:53.0727 0x203c  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
07:11:53.0774 0x203c  Rasl2tp - ok
07:11:53.0818 0x203c  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
07:11:53.0875 0x203c  RasMan - ok
07:11:53.0888 0x203c  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
07:11:53.0924 0x203c  RasPppoe - ok
07:11:53.0935 0x203c  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
07:11:53.0958 0x203c  RasSstp - ok
07:11:53.0976 0x203c  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
07:11:54.0001 0x203c  rdbss - ok
07:11:54.0025 0x203c  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
07:11:54.0034 0x203c  rdpbus - ok
07:11:54.0044 0x203c  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
07:11:54.0088 0x203c  RDPCDD - ok
07:11:54.0094 0x203c  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
07:11:54.0139 0x203c  RDPENCDD - ok
07:11:54.0149 0x203c  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
07:11:54.0194 0x203c  RDPREFMP - ok
07:11:54.0231 0x203c  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
07:11:54.0253 0x203c  RDPWD - ok
07:11:54.0281 0x203c  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
07:11:54.0302 0x203c  rdyboost - ok
07:11:54.0321 0x203c  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
07:11:54.0370 0x203c  RemoteAccess - ok
07:11:54.0387 0x203c  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
07:11:54.0439 0x203c  RemoteRegistry - ok
07:11:54.0468 0x203c  [ 9C3AC71A9934B884FAC567A8807E9C4D, 0B6B2970098E3C21E1E54A25785544903E8CD415B527FCEF86ABC7B33BEC83E7 ] Revoflt         C:\Windows\system32\DRIVERS\revoflt.sys
07:11:54.0481 0x203c  Revoflt - ok
07:11:54.0503 0x203c  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
07:11:54.0551 0x203c  RpcEptMapper - ok
07:11:54.0578 0x203c  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
07:11:54.0594 0x203c  RpcLocator - ok
07:11:54.0636 0x203c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
07:11:54.0690 0x203c  RpcSs - ok
07:11:54.0706 0x203c  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
07:11:54.0753 0x203c  rspndr - ok
07:11:54.0757 0x203c  [ 5673794F254FE312AF62D9DA32805A2F, 76400BF26F87303924A4FA9DFE5DD13170D1E4A195CD12548DBAA0E6E8C11B1B ] SamSs           C:\Windows\system32\lsass.exe
07:11:54.0773 0x203c  SamSs - ok
07:11:54.0802 0x203c  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
07:11:54.0818 0x203c  sbp2port - ok
07:11:54.0834 0x203c  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
07:11:54.0864 0x203c  SCardSvr - ok
07:11:54.0894 0x203c  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
07:11:54.0927 0x203c  scfilter - ok
07:11:54.0979 0x203c  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\Windows\system32\schedsvc.dll
07:11:55.0009 0x203c  Schedule - ok
07:11:55.0038 0x203c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
07:11:55.0063 0x203c  SCPolicySvc - ok
07:11:55.0089 0x203c  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
07:11:55.0100 0x203c  SDRSVC - ok
07:11:55.0115 0x203c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
07:11:55.0122 0x203c  secdrv - ok
07:11:55.0151 0x203c  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
07:11:55.0193 0x203c  seclogon - ok
07:11:55.0294 0x203c  [ B34033662EEE2ED42BD0B52A37EB0058, 90D25B376F3DED2595EF9C791A137A0D8243CEB57BFFB637BEA13E5ECAAA6EAF ] Secunia PSI Agent C:\Program Files (x86)\Secunia\PSI\PSIA.exe
07:11:55.0336 0x203c  Secunia PSI Agent - ok
07:11:55.0337 0x203c  Object required for P2P: [ B34033662EEE2ED42BD0B52A37EB0058 ] Secunia PSI Agent
07:11:55.0472 0x203c  Object send P2P result: true
07:11:55.0515 0x203c  [ A638907301678BEAB54EB47172AA1EB9, 46E48B89B9F968ED4136827D2362C293A6188978E0FF13A88305D30A0ED0EE67 ] Secunia Update Agent C:\Program Files (x86)\Secunia\PSI\sua.exe
07:11:55.0556 0x203c  Secunia Update Agent - ok
07:11:55.0557 0x203c  Object required for P2P: [ A638907301678BEAB54EB47172AA1EB9 ] Secunia Update Agent
07:11:55.0697 0x203c  Object send P2P result: true
07:11:55.0718 0x203c  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
07:11:55.0766 0x203c  SENS - ok
07:11:55.0771 0x203c  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
07:11:55.0787 0x203c  SensrSvc - ok
07:11:55.0798 0x203c  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
07:11:55.0813 0x203c  Serenum - ok
07:11:55.0824 0x203c  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
07:11:55.0832 0x203c  Serial - ok
07:11:55.0859 0x203c  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
07:11:55.0875 0x203c  sermouse - ok
07:11:55.0913 0x203c  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
07:11:55.0948 0x203c  SessionEnv - ok
07:11:55.0974 0x203c  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
07:11:55.0992 0x203c  sffdisk - ok
07:11:56.0003 0x203c  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
07:11:56.0022 0x203c  sffp_mmc - ok
07:11:56.0055 0x203c  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
07:11:56.0073 0x203c  sffp_sd - ok
07:11:56.0086 0x203c  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
07:11:56.0101 0x203c  sfloppy - ok
07:11:56.0137 0x203c  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
07:11:56.0176 0x203c  SharedAccess - ok
07:11:56.0223 0x203c  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
07:11:56.0276 0x203c  ShellHWDetection - ok
07:11:56.0290 0x203c  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
07:11:56.0303 0x203c  SiSRaid2 - ok
07:11:56.0313 0x203c  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
07:11:56.0327 0x203c  SiSRaid4 - ok
07:11:56.0382 0x203c  [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
07:11:56.0406 0x203c  SkypeUpdate - ok
07:11:56.0419 0x203c  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
07:11:56.0454 0x203c  Smb - ok
07:11:56.0471 0x203c  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
07:11:56.0479 0x203c  SNMPTRAP - ok
07:11:56.0505 0x203c  [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan        C:\Windows\SysWOW64\speedfan.sys
07:11:56.0522 0x203c  speedfan - ok
07:11:56.0536 0x203c  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
07:11:56.0545 0x203c  spldr - ok
07:11:56.0584 0x203c  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
07:11:56.0602 0x203c  Spooler - ok
07:11:56.0717 0x203c  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
07:11:56.0795 0x203c  sppsvc - ok
07:11:56.0808 0x203c  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
07:11:56.0831 0x203c  sppuinotify - ok
07:11:56.0878 0x203c  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
07:11:56.0902 0x203c  srv - ok
07:11:56.0937 0x203c  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
07:11:56.0951 0x203c  srv2 - ok
07:11:56.0977 0x203c  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
07:11:56.0987 0x203c  srvnet - ok
07:11:57.0005 0x203c  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
07:11:57.0032 0x203c  SSDPSRV - ok
07:11:57.0043 0x203c  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
07:11:57.0067 0x203c  SstpSvc - ok
07:11:57.0135 0x203c  [ 591249EA969797C2A24629AF7C71A6F8, 61F28FB495657916514DE2A7FFD4AD833A1B2BBA5591616BE0C9CCD7DAFA40B7 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
07:11:57.0155 0x203c  Steam Client Service - ok
07:11:57.0185 0x203c  [ 6213F20854FB987119503F9F91C70B9F, E1683753D192B154DBFE1FD03625A2A56F8576CE2A7619B41159B1C718C73B88 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
07:11:57.0201 0x203c  Stereo Service - ok
07:11:57.0232 0x203c  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
07:11:57.0245 0x203c  stexstor - ok
07:11:57.0288 0x203c  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
07:11:57.0323 0x203c  stisvc - ok
07:11:57.0337 0x203c  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
07:11:57.0347 0x203c  swenum - ok
07:11:57.0371 0x203c  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
07:11:57.0433 0x203c  swprv - ok
07:11:57.0528 0x203c  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll
07:11:57.0582 0x203c  SysMain - ok
07:11:57.0616 0x203c  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
07:11:57.0643 0x203c  TabletInputService - ok
07:11:57.0668 0x203c  [ 20B71624C3E759A4F699A4E4607C2C01, 135557D4ED3D0C706EA09BB5F9457FC7378C210B52BC4F099B931F8F3E15FD6D ] taphss6         C:\Windows\system32\DRIVERS\taphss6.sys
07:11:57.0676 0x203c  taphss6 - ok
07:11:57.0710 0x203c  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
07:11:57.0752 0x203c  TapiSrv - ok
07:11:57.0774 0x203c  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
07:11:57.0801 0x203c  TBS - ok
07:11:57.0897 0x203c  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
07:11:57.0961 0x203c  Tcpip - ok
07:11:57.0998 0x203c  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
07:11:58.0035 0x203c  TCPIP6 - ok
07:11:58.0061 0x203c  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
07:11:58.0071 0x203c  tcpipreg - ok
07:11:58.0099 0x203c  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
07:11:58.0114 0x203c  TDPIPE - ok
07:11:58.0139 0x203c  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
07:11:58.0151 0x203c  TDTCP - ok
07:11:58.0181 0x203c  [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
07:11:58.0195 0x203c  tdx - ok
07:11:58.0398 0x203c  [ E72B44F86082DFE649CD991E3CD2F8B6, C5A1E53E41E48D3465A7D96886A1E5D1C3145C7E1A40FB74E3A05EDC2DA04F84 ] TeamViewer      C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
07:11:58.0516 0x203c  TeamViewer - ok
07:11:58.0546 0x203c  [ F5520DBB47C60EE83024B38720ABDA24, B8E555D92440BF93E3B55A66E27CEF936477EF7528F870D3B78BD3B294A05CC0 ] teamviewervpn   C:\Windows\system32\DRIVERS\teamviewervpn.sys
07:11:58.0552 0x203c  teamviewervpn - ok
07:11:58.0573 0x203c  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
07:11:58.0580 0x203c  TermDD - ok
07:11:58.0622 0x203c  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
07:11:58.0642 0x203c  TermService - ok
07:11:58.0652 0x203c  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
07:11:58.0665 0x203c  Themes - ok
07:11:58.0684 0x203c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
07:11:58.0708 0x203c  THREADORDER - ok
07:11:58.0725 0x203c  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
07:11:58.0750 0x203c  TrkWks - ok
07:11:58.0794 0x203c  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
07:11:58.0829 0x203c  TrustedInstaller - ok
07:11:58.0857 0x203c  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
07:11:58.0872 0x203c  tssecsrv - ok
07:11:58.0896 0x203c  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
07:11:58.0912 0x203c  TsUsbFlt - ok
07:11:58.0937 0x203c  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
07:11:58.0977 0x203c  tunnel - ok
07:11:58.0999 0x203c  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
07:11:59.0008 0x203c  uagp35 - ok
07:11:59.0048 0x203c  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
07:11:59.0091 0x203c  udfs - ok
07:11:59.0106 0x203c  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
07:11:59.0115 0x203c  UI0Detect - ok
07:11:59.0130 0x203c  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
07:11:59.0137 0x203c  uliagpkx - ok
07:11:59.0160 0x203c  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
07:11:59.0168 0x203c  umbus - ok
07:11:59.0242 0x203c  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
07:11:59.0252 0x203c  UmPass - ok
07:11:59.0317 0x203c  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
07:11:59.0367 0x203c  upnphost - ok
07:11:59.0398 0x203c  [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
07:11:59.0412 0x203c  USBAAPL64 - ok
07:11:59.0436 0x203c  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
07:11:59.0449 0x203c  usbccgp - ok
07:11:59.0460 0x203c  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
07:11:59.0469 0x203c  usbcir - ok
07:11:59.0480 0x203c  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
07:11:59.0487 0x203c  usbehci - ok
07:11:59.0522 0x203c  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
07:11:59.0535 0x203c  usbhub - ok
07:11:59.0546 0x203c  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
07:11:59.0553 0x203c  usbohci - ok
07:11:59.0562 0x203c  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
07:11:59.0571 0x203c  usbprint - ok
07:11:59.0658 0x203c  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
07:11:59.0667 0x203c  USBSTOR - ok
07:11:59.0698 0x203c  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
07:11:59.0712 0x203c  usbuhci - ok
07:11:59.0726 0x203c  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
07:11:59.0755 0x203c  UxSms - ok
07:11:59.0765 0x203c  [ 5673794F254FE312AF62D9DA32805A2F, 76400BF26F87303924A4FA9DFE5DD13170D1E4A195CD12548DBAA0E6E8C11B1B ] VaultSvc        C:\Windows\system32\lsass.exe
07:11:59.0773 0x203c  VaultSvc - ok
07:11:59.0776 0x203c  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
07:11:59.0783 0x203c  vdrvroot - ok
07:11:59.0801 0x203c  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
07:11:59.0831 0x203c  vds - ok
07:11:59.0854 0x203c  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
07:11:59.0864 0x203c  vga - ok
07:11:59.0876 0x203c  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
07:11:59.0897 0x203c  VgaSave - ok
07:11:59.0913 0x203c  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
07:11:59.0923 0x203c  vhdmp - ok
07:11:59.0933 0x203c  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
07:11:59.0940 0x203c  viaide - ok
07:11:59.0950 0x203c  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
07:11:59.0957 0x203c  volmgr - ok
07:11:59.0988 0x203c  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
07:12:00.0000 0x203c  volmgrx - ok
07:12:00.0017 0x203c  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
07:12:00.0028 0x203c  volsnap - ok
07:12:00.0040 0x203c  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
07:12:00.0049 0x203c  vsmraid - ok
07:12:00.0286 0x203c  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
07:12:00.0334 0x203c  VSS - ok
07:12:00.0350 0x203c  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
07:12:00.0358 0x203c  vwifibus - ok
07:12:00.0428 0x203c  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
07:12:00.0488 0x203c  W32Time - ok
07:12:00.0495 0x203c  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
07:12:00.0503 0x203c  WacomPen - ok
07:12:00.0514 0x203c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
07:12:00.0536 0x203c  WANARP - ok
07:12:00.0539 0x203c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
07:12:00.0561 0x203c  Wanarpv6 - ok
07:12:00.0627 0x203c  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
07:12:00.0655 0x203c  WatAdminSvc - ok
07:12:00.0721 0x203c  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
07:12:00.0764 0x203c  wbengine - ok
07:12:00.0772 0x203c  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
07:12:00.0785 0x203c  WbioSrvc - ok
07:12:00.0816 0x203c  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
07:12:00.0836 0x203c  wcncsvc - ok
07:12:00.0839 0x203c  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
07:12:00.0849 0x203c  WcsPlugInService - ok
07:12:00.0858 0x203c  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
07:12:00.0865 0x203c  Wd - ok
07:12:00.0911 0x203c  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
07:12:00.0950 0x203c  Wdf01000 - ok
07:12:00.0985 0x203c  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
07:12:01.0004 0x203c  WdiServiceHost - ok
07:12:01.0028 0x203c  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
07:12:01.0046 0x203c  WdiSystemHost - ok
07:12:01.0099 0x203c  [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient       C:\Windows\System32\webclnt.dll
07:12:01.0124 0x203c  WebClient - ok
07:12:01.0148 0x203c  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
07:12:01.0202 0x203c  Wecsvc - ok
07:12:01.0215 0x203c  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
07:12:01.0238 0x203c  wercplsupport - ok
07:12:01.0251 0x203c  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
07:12:01.0275 0x203c  WerSvc - ok
07:12:01.0284 0x203c  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
07:12:01.0305 0x203c  WfpLwf - ok
07:12:01.0314 0x203c  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
07:12:01.0320 0x203c  WIMMount - ok
07:12:01.0338 0x203c  WinDefend - ok
07:12:01.0341 0x203c  WinHttpAutoProxySvc - ok
07:12:01.0375 0x203c  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
07:12:01.0401 0x203c  Winmgmt - ok
07:12:01.0463 0x203c  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
07:12:01.0504 0x203c  WinRM - ok
07:12:01.0532 0x203c  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
07:12:01.0541 0x203c  WinUsb - ok
07:12:01.0571 0x203c  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
07:12:01.0613 0x203c  Wlansvc - ok
07:12:01.0634 0x203c  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
07:12:01.0647 0x203c  WmiAcpi - ok
07:12:01.0673 0x203c  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
07:12:01.0696 0x203c  wmiApSrv - ok
07:12:01.0705 0x203c  WMPNetworkSvc - ok
07:12:01.0715 0x203c  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
07:12:01.0731 0x203c  WPCSvc - ok
07:12:01.0748 0x203c  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
07:12:01.0765 0x203c  WPDBusEnum - ok
07:12:01.0785 0x203c  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
07:12:01.0823 0x203c  ws2ifsl - ok
07:12:01.0837 0x203c  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
07:12:01.0850 0x203c  wscsvc - ok
07:12:01.0852 0x203c  WSearch - ok
07:12:01.0950 0x203c  [ 3D4032E6A5885C007AEF4BA816AB4032, 21EB2B5B5A64EED44B5B7743820842205175F52A6F5525BD0F95DCB2733F449C ] wuauserv        C:\Windows\system32\wuaueng.dll
07:12:02.0002 0x203c  wuauserv - ok
07:12:02.0029 0x203c  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
07:12:02.0037 0x203c  WudfPf - ok
07:12:02.0053 0x203c  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
07:12:02.0063 0x203c  WUDFRd - ok
07:12:02.0088 0x203c  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
07:12:02.0106 0x203c  wudfsvc - ok
07:12:02.0145 0x203c  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
07:12:02.0169 0x203c  WwanSvc - ok
07:12:02.0221 0x203c  [ F3D7F968E6A4A37F6BBC1F4B737E6C41, 92B39BEB51BC38EE19B8A3D8DBC67AEFA71EFF6642B6338FF0749053A939E4DB ] XFDriver64      C:\Program Files (x86)\Xfire2\XFDriver64.sys
07:12:02.0233 0x203c  XFDriver64 - ok
07:12:02.0243 0x203c  ================ Scan global ===============================
07:12:02.0269 0x203c  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
07:12:02.0311 0x203c  [ 96AEEE466EA56AF34AE4AD5E55DAD164, 467DA5C29E04E02520974163AEBF7FAA3DED8212A765616C0D877E4F36AD173C ] C:\Windows\system32\winsrv.dll
07:12:02.0327 0x203c  [ 96AEEE466EA56AF34AE4AD5E55DAD164, 467DA5C29E04E02520974163AEBF7FAA3DED8212A765616C0D877E4F36AD173C ] C:\Windows\system32\winsrv.dll
07:12:02.0350 0x203c  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
07:12:02.0384 0x203c  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
07:12:02.0394 0x203c  [ Global ] - ok
07:12:02.0394 0x203c  ================ Scan MBR ==================================
07:12:02.0402 0x203c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
07:12:02.0596 0x203c  \Device\Harddisk0\DR0 - ok
07:12:02.0890 0x203c  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
07:12:03.0086 0x203c  \Device\Harddisk2\DR2 - ok
07:12:03.0086 0x203c  ================ Scan VBR ==================================
07:12:03.0089 0x203c  [ A6DD2B615FA04FE305B2531EA3C063EF ] \Device\Harddisk0\DR0\Partition1
07:12:03.0112 0x203c  \Device\Harddisk0\DR0\Partition1 - ok
07:12:03.0115 0x203c  [ 25E5CCECC100B087A6F81B65E4B0B303 ] \Device\Harddisk0\DR0\Partition2
07:12:03.0146 0x203c  \Device\Harddisk0\DR0\Partition2 - ok
07:12:03.0149 0x203c  [ F43C75454C49A41E8CE3FD9FBB2C39DA ] \Device\Harddisk0\DR0\Partition3
07:12:03.0151 0x203c  \Device\Harddisk0\DR0\Partition3 - ok
07:12:03.0154 0x203c  [ 5120C90EF84F22A299D8CD32CB8F14AD ] \Device\Harddisk2\DR2\Partition1
07:12:03.0158 0x203c  \Device\Harddisk2\DR2\Partition1 - ok
07:12:03.0158 0x203c  ================ Scan generic autorun ======================
07:12:03.0274 0x203c  [ 059E588FDF6B7E83227D45D026D21874, 211B5E85D84562E11F3A676686E7C716BB59912F7764A49D9164277EB3991AC3 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
07:12:03.0360 0x203c  NvBackend - ok
07:12:03.0760 0x203c  [ 7F9E5AD3AD1C0CCCF8094E28911B5068, 76D043B7DE0A175B8AA510F49F5983C9852FD4F38AE0FB023D9A339BB63AC269 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
07:12:03.0982 0x203c  RTHDVCPL - ok
07:12:04.0041 0x203c  [ C7F017C9B163E7DAB864649E8241F683, F007F107FCA0E3A12D7E900101EBF02C2453D4AA56BE18769E86B592C88C5106 ] C:\Program Files\iTunes\iTunesHelper.exe
07:12:04.0056 0x203c  iTunesHelper - ok
07:12:04.0117 0x203c  [ 8943465BEFA91044227D42E84ECB8280, 76D19CE3EB7E6C6573F250543CDC10B3601604535BFB756805AE246FA55AC265 ] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
07:12:04.0133 0x203c  NUSB3MON - ok
07:12:04.0191 0x203c  [ 0B867A6BAB305C186AD57B6CEA53D981, 226DD3DEA47BA402CBADDC5AD6EE65254599582C9A0BDD1D502D109740B6690B ] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
07:12:04.0206 0x203c  Avira SystrayStartTrigger - ok
07:12:04.0281 0x203c  [ E83C81F40E072A697816F7311B87F471, 26F76EE173BB7F1D57837F71A9D22287DB1381A8C69EEB3B3BA7EB9B166A7828 ] C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
07:12:04.0315 0x203c  avgnt - ok
07:12:04.0437 0x203c  [ 235B72AF442823FF17751417DC904D15, 834ACDCCDCA14320BB0AE6A483179DF594F9C2429CF4846E1415BE4EF2C10FB4 ] C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
07:12:04.0484 0x203c  Malwarebytes Anti-Exploit - ok
07:12:04.0635 0x203c  [ FF74D2A2E3A3615A765B5181DB18551D, C38F06705B4E3264ABA10317BF3DE6D022E9B9D5B3016B08121512E84880963C ] C:\Program Files (x86)\Steam\steam.exe
07:12:04.0705 0x203c  Steam - ok
07:12:04.0708 0x203c  Object required for P2P: [ FF74D2A2E3A3615A765B5181DB18551D ] C:\Program Files (x86)\Steam\steam.exe
07:12:04.0849 0x203c  Object send P2P result: true
07:12:05.0127 0x203c  [ CE1DEC053DA24927E89D9AA196D31281, 39DD431CFCD10AA4E176062E33A0262FEE5806E192B37037C97439B1CEF232C8 ] C:\Program Files\CCleaner\CCleaner64.exe
07:12:05.0274 0x203c  CCleaner Monitoring - ok
07:12:05.0497 0x203c  [ 7BA63593A873F96F3D0B2EEBF8C2F9CE, 3DA07C70CA0768619DC1D2C3B042AEBA110B3EEAC4A32FB696AE16AB7577AFD6 ] C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe
07:12:05.0625 0x203c  GalaxyClient - ok
07:12:05.0783 0x203c  [ 3D5D4137594D2EBA8868EAD504B89366, D5FEB5B8303B083A79A4617E59B2FB34FAD71BE72F3F8DD6E4B69B3D03FE658A ] C:\Program Files\DAEMON Tools Lite\DTAgent.exe
07:12:05.0903 0x203c  DAEMON Tools Lite Automount - ok
07:12:05.0943 0x203c  Skype - ok
07:12:05.0948 0x203c  AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\Antivirus\wsctool.exe ( 15.0.15.133 ), 0x41000 ( enabled : updated )
07:12:05.0950 0x203c  Win FW state via NFP2: enabled ( trusted )
07:12:06.0027 0x203c  ============================================================
07:12:06.0027 0x203c  Scan finished
07:12:06.0027 0x203c  ============================================================
07:12:06.0033 0x2298  Detected object count: 2
07:12:06.0033 0x2298  Actual detected object count: 2
07:12:08.0681 0x2298  kinonivd ( UnsignedFile.Multi.Generic ) - skipped by user
07:12:08.0681 0x2298  kinonivd ( UnsignedFile.Multi.Generic ) - User select action: Skip
07:12:08.0682 0x2298  KINONI_Wave ( UnsignedFile.Multi.Generic ) - skipped by user
07:12:08.0682 0x2298  KINONI_Wave ( UnsignedFile.Multi.Generic ) - User select action: Skip



#9 zirgonB

zirgonB
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:04:38 PM

Posted 29 February 2016 - 12:22 AM

# AdwCleaner v5.028 - Logfile created 09/01/2016 at 03:37:51
# Updated 04/01/2016 by Xplode
# Database : 2016-01-04.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : juissi - JUISSI-PC
# Running from : C:\Users\juissi\Downloads\AdwCleaner.exe
# Option : Scan
# Support : http://toolslib.net/forum

***** [ Services ] *****

Service Found : swdumon

***** [ Folders ] *****

Folder Found : C:\Program Files\slimcleaner plus
Folder Found : C:\Program Files (x86)\jZip
Folder Found : C:\Program Files (x86)\DriverToolkit
Folder Found : C:\Users\juissi\AppData\Local\jZip
Folder Found : C:\Users\juissi\AppData\Local\DriverToolkit
Folder Found : C:\Users\juissi\AppData\Local\slimware utilities inc
Folder Found : C:\Users\juissi\AppData\Roaming\Mozilla\Firefox\Profiles\yh3wu9xy.default\Extensions\anttoolbar@ant.com
Folder Found : C:\Users\juissi\AppData\Roaming\Mozilla\Firefox\Profiles\yh3wu9xy.default\Extensions\staged\anttoolbar@ant.com
Folder Found : C:\Users\juissi\Documents\Smart Driver Updater

***** [ Files ] *****

File Found : C:\Users\juissi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\jZip.lnk
File Found : C:\Windows\SysNative\drivers\swdumon.sys

***** [ DLL ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****

Task Found : LaunchPreSignup

***** [ Registry ] *****

Key Found : HKLM\SOFTWARE\Classes\jZip.file
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppPath\jZip.exe
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3614D305-2DBB-4991-9297-750DD60FFC73}
Key Found : HKCU\Software\jZip
Key Found : HKCU\Software\DriverToolkit
Key Found : HKCU\Software\SlimWare Utilities Inc
Key Found : HKLM\SOFTWARE\jZip
Key Found : HKLM\SOFTWARE\SlimWare Utilities Inc
Key Found : HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\jZip

***** [ Web browsers ] *****


########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [2002 bytes] ##########
# AdwCleaner v5.037 - Logfile created 29/02/2016 at 07:17:44
# Updated 28/02/2016 by Xplode
# Database : 2016-02-28.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : juissi - SWASHILI
# Running from : C:\Users\juissi\Desktop\AdwCleaner.exe
# Option : Scan
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

Folder Found : C:\Users\juissi\AppData\Roaming\Mozilla\Firefox\Profiles\chux0knr.default\extensions\anttoolbar@ant.com

***** [ Files ] *****

File Found : C:\Users\juissi\AppData\Roaming\Mozilla\Firefox\Profiles\chux0knr.default\extensions\{b64d9b05-48e1-4ceb-bf58-e0643994e900}.xpi
File Found : C:\Users\juissi\AppData\Roaming\Mozilla\Firefox\Profiles\chux0knr.default\invalidprefs.js

***** [ DLL ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

Key Found : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

***** [ Web browsers ] *****

[C:\Users\juissi\AppData\Roaming\Mozilla\Firefox\Profiles\chux0knr.default\prefs.js] [Preference] Found : user_pref("extensions.Imagus.sieve", "{\"dereferers\":{\"link\":\"^[^/]{3,70}/\\\\??(hxxps?:[^?#]+\\\\.(?:jpe?g|a?png|gif|bmp|svgz?|web[pm]|og[gv])).*\",\"ci\":1,\"dc\":1,\"loop\":1,\"to\":\"$1\"},\"f[...]

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [2311 bytes] - [09/01/2016 03:41:56]
C:\AdwCleaner\AdwCleaner[S1].txt - [4200 bytes] - [09/01/2016 03:37:51]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [4273 bytes] ##########
 



#10 zirgonB

zirgonB
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:04:38 PM

Posted 29 February 2016 - 12:26 AM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.3 (02.09.2016)
Operating System: Windows 7 Home Premium x64
Ran by juissi (Administrator) on ma 29.02.2016 at  7:23:34,07
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 70

Failed to delete: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0QQ82Q51 (Temporary Internet Files Folder)
Successfully deleted: C:\ProgramData\productdata (Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\crashrpt (Folder)
Successfully deleted: C:\Users\juissi\AppData\Roaming\Mozilla\Firefox\Profiles\chux0knr.default\extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900}.xpi (File)
Successfully deleted: C:\Users\juissi\AppData\Roaming\Mozilla\Firefox\Profiles\chux0knr.default\extensions\anttoolbar@ant.com (Folder)
Successfully deleted: C:\Users\juissi\AppData\Roaming\Mozilla\Firefox\Profiles\chux0knr.default\Invalidprefs.js (File)
Successfully deleted: C:\Users\Public\Desktop\hotspot shield.lnk (Shortcut)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0I7P7XWG (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0Z3BRMS4 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3VBSTITZ (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4CFR1DC6 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4PMJP0VH (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\85LW9MSE (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9MGHWUW6 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9MJ5GXIN (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BM8N8YYV (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BNLY2AL0 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CPWCI1HG (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JAI5HY12 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K6Q1VJEM (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LPH1W5GH (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NE9P775D (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NLRIAQ58 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OUCB73NV (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PHA40L56 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PYBCOVW4 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R2EPP5U5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RLB2JVHH (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RM23HJS7 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TDKTMNWX (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TGFHLI0L (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UDHK8S46 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WC3RU7HF (Temporary Internet Files Folder)
Successfully deleted: C:\Users\juissi\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XQ8Y55C5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0I7P7XWG (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0QQ82Q51 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0Z3BRMS4 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3VBSTITZ (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4CFR1DC6 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4PMJP0VH (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\85LW9MSE (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9MGHWUW6 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\9MJ5GXIN (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BM8N8YYV (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BNLY2AL0 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CPWCI1HG (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JAI5HY12 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\K6Q1VJEM (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LPH1W5GH (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NE9P775D (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\NLRIAQ58 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OUCB73NV (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PHA40L56 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PYBCOVW4 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\R2EPP5U5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RLB2JVHH (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RM23HJS7 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TDKTMNWX (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\TGFHLI0L (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UDHK8S46 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WC3RU7HF (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XQ8Y55C5 (Temporary Internet Files Folder)



Registry: 2

Successfully deleted: HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ma 29.02.2016 at  7:25:49,76
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 



#11 zirgonB

zirgonB
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:04:38 PM

Posted 29 February 2016 - 07:17 AM

No threats identified with ESET or Malwarebytes Antimalware scanners!



#12 zirgonB

zirgonB
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:04:38 PM

Posted 29 February 2016 - 02:12 PM

I don't know if there is 1 problem with the LOLclient( League of Legends) Since I recently made a small purchase, but soon after that my bank statement had some unknown extra transfer(just small amount though) for Facebook( I called my bank and they said my card access had been removed due to fraud prevention!



#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:38 PM

Posted 29 February 2016 - 03:41 PM

OK, Let's remove what ADWCleaner found.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • The tool will start to update its database...please wait until complete.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Logfile button...a report (AdwCleaner[SX].txt) will open in Notepad (where the largest value of X represents the most recent report).
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[CX].txt) will open automatically (where the largest value of X represents the most recent report).
  • Copy and paste the contents of AdwCleaner[CX].txt in your next reply.
  • A copy of all logfiles are saved on the %systemdrive% (usually C:\).
You should remove this
Viallisen sovelluksen nimi: LolClient.exe
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 zirgonB

zirgonB
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:04:38 PM

Posted 01 March 2016 - 11:16 AM

# AdwCleaner v5.028 - Logfile created 09/01/2016 at 03:41:56
# Updated 04/01/2016 by Xplode
# Database : 2016-01-04.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : juissi - JUISSI-PC
# Running from : C:\Users\juissi\Downloads\AdwCleaner.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : swdumon

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files\slimcleaner plus
[-] Folder Deleted : C:\Program Files (x86)\jZip
[-] Folder Deleted : C:\Program Files (x86)\DriverToolkit
[-] Folder Deleted : C:\Users\juissi\AppData\Local\jZip
[-] Folder Deleted : C:\Users\juissi\AppData\Local\DriverToolkit
[-] Folder Deleted : C:\Users\juissi\AppData\Local\slimware utilities inc
[-] Folder Deleted : C:\Users\juissi\AppData\Roaming\Mozilla\Firefox\Profiles\yh3wu9xy.default\Extensions\anttoolbar@ant.com
[-] Folder Deleted : C:\Users\juissi\AppData\Roaming\Mozilla\Firefox\Profiles\yh3wu9xy.default\Extensions\staged\anttoolbar@ant.com
[-] Folder Deleted : C:\Users\juissi\Documents\Smart Driver Updater

***** [ Files ] *****

[-] File Deleted : C:\Users\juissi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\jZip.lnk
[-] File Deleted : C:\Windows\SysNative\drivers\swdumon.sys

***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****

[-] Task Deleted : LaunchPreSignup

***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\jZip.file
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppPath\jZip.exe
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3614D305-2DBB-4991-9297-750DD60FFC73}
[-] Key Deleted : HKCU\Software\jZip
[-] Key Deleted : HKCU\Software\DriverToolkit
[-] Key Deleted : HKCU\Software\SlimWare Utilities Inc
[-] Key Deleted : HKLM\SOFTWARE\jZip
[-] Key Deleted : HKLM\SOFTWARE\SlimWare Utilities Inc
[-] Key Deleted : HKLM\SOFTWARE\SLIMWARE UTILITIES, INC.
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\jZip

***** [ Web browsers ] *****


*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [2232 bytes] ##########
# AdwCleaner v5.037 - Logfile created 01/03/2016 at 18:04:23
# Updated 28/02/2016 by Xplode
# Database : 2016-02-28.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : juissi - SWASHILI
# Running from : C:\Users\juissi\Desktop\AdwCleaner.exe
# Option : Clean
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****


***** [ Files ] *****


***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

***** [ Web browsers ] *****

[-] [C:\Users\juissi\AppData\Roaming\Mozilla\Firefox\Profiles\chux0knr.default\prefs.js] [Preference] Deleted : user_pref("extensions.Imagus.sieve", "{\"dereferers\":{\"link\":\"^[^/]{3,70}/\\\\??(hxxps?:[^?#]+\\\\.(?:jpe?ga?pnggifbmpsvgz?web[pm]og[gv])).*\",\"ci\":1,\"dc\":1,\"loop\":1,\"to\":\"$1\"},\"f[...]

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [3985 bytes] - [09/01/2016 03:41:56]
C:\AdwCleaner\AdwCleaner[S1].txt - [4360 bytes] - [09/01/2016 03:37:51]
C:\AdwCleaner\AdwCleaner[S2].txt - [1855 bytes] - [01/03/2016 18:02:52]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [4204 bytes] ##########
 


It is still very slow, loading and programs crashing


It is still very slow, loading and programs crashing



#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:38 PM

Posted 01 March 2016 - 12:46 PM

Let's run this next.. Back up any important files.

Tweaking.com - Windows Repair All-In-One (Portable)

- Download Windows Repair All-In-One (Portable Version) from here.

- Extract tweaking.com_windows_repair_aio.zip to your Desktop.

- Disable all your antivirus and antimalware software - see how to do that here.
- Right click on QfBzvq1.png and select Run as Administrator (XP users just double click) to start Windows Repair All-In-One.
(Windows Vista/7/8 users: Accept UAC warning if it is enabled.)

- A window will appear. Click Step 2.
2f8o60N.png

- Click the Open Pre-Scan button, then click Start Scan. Wait for Windows Repair to finish scanning.

- Depending on which error Windows Repair found, click Repair Reparse Point or Repair Environment Variable accordingly. When the button changes to "Done!", click the close button to return to Windows Repair.

- Go to Step 3, then click Check in the See If Check Disk Is Needed.

- If Windows Repair stated that errors are found, click Open Check Disk At Next Boot. Choose (/R) Fixes errors on the disk also locate bad sectors and recovers readable information, then click Add To Next Boot. Reboot the computer to let Windows check the disk.
Ymy7crZ.png

- Go to Step 4, then click Do It.
zDtdN75.png

- Go to Step 5. Under System Restore click Create.
f7lEe1N.png

- Go to Repairs and click Open Repairs. Leave all checkmarks as they are, then click Start Repairs.
PGv2vtD.png

- By default Windows Repair All-In-One will create a "Logs" folder in its folder on the Desktop. Please post the contents of the log in your next reply.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users