Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Malware creating temp files (xpack gen5)


  • Please log in to reply
6 replies to this topic

#1 po6pwn

po6pwn

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:29 PM

Posted 28 September 2016 - 01:22 PM

Hello guys, 
My anti-virus has been alerting me that malware has been found on my system and I've been deleting it. However, it keeps replicating itself under different names in the temp folders in windows. I have tried Hitman, Malwarebytes, etc and all have found nothing. 
This has been getting me kicked off VAC secured games (CS:GO and Dota 2). Please help, I am extremely confused and frustrated.

https://postimg.org/image/psecreug5/

 



BC AdBot (Login to Remove)

 


#2 The_Codesee

The_Codesee

  • Members
  • 337 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:England, UK
  • Local time:02:59 PM

Posted 28 September 2016 - 01:31 PM

Hello! My name is The Codesee, nice to meet you  :)
 
Please follow the steps below:
 
:step1: Please download MiniToolBox to your desktop

  • Double click MiniToolBox
  • Select the items below and press go
  • Post the log in your next reply
    • List Installed Programs
    • List Restore Points
    • List last 10 Event Viewer log
    • Flush DNS

:step2: Please download Security Check to your desktop

  • Double click SecurityCheck and follow the on-screen instructions.
  • A log should open called checkup.txt.
  • Post the log in your next reply

:step3: Please download TFC (Temp File Cleaner) to your desktop

  • Close all open applications
  • Double click TFC
  • Click the start button and the program will run
  • When done, press OK to restart your computer

Logs I expect in your next reply:

  • MiniToolBox Log
  • Security Check Log


#3 po6pwn

po6pwn
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:29 PM

Posted 29 September 2016 - 04:06 AM

MiniToolBox Log

 

MiniToolBox by Farbar  Version: 17-06-2016
Ran by Armaan (administrator) on 29-09-2016 at 14:32:15
Running from "d:\Users\Armaan\Desktop"
Microsoft Windows 7 Professional  Service Pack 1 (X64)
Model: H97M-D3H Manufacturer: Gigabyte Technology Co., Ltd.
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (09/29/2016 12:17:19 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/28/2016 10:39:03 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/28/2016 06:29:15 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/28/2016 06:28:47 PM) (Source: Windows Search Service) (User: )
Description: The index cannot be initialized.
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (09/28/2016 06:28:47 PM) (Source: Windows Search Service) (User: )
Description: The application cannot be initialized.
 
Context: Windows Application
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (09/28/2016 06:28:47 PM) (Source: Windows Search Service) (User: )
Description: The gatherer object cannot be initialized.
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (09/28/2016 06:28:47 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.TripoliIndexer> cannot be initialized.
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
Element not found.  (HRESULT : 0x80070490) (0x80070490)
 
Error: (09/28/2016 06:28:45 PM) (Source: Windows Search Service) (User: )
Description: The plug-in in <Search.JetPropStore> cannot be initialized.
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (09/28/2016 06:28:45 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service cannot load the property store information.
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)
 
Error: (09/28/2016 06:28:45 PM) (Source: Windows Search Service) (User: )
Description: The Windows Search Service is being stopped because there is a problem with the indexer: The catalog is corrupt.
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
 
System errors:
=============
Error: (09/28/2016 11:23:20 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Stereoscopic 3D Driver Service service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (09/28/2016 06:42:32 PM) (Source: Service Control Manager) (User: )
Description: The 360 Total Security service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (09/28/2016 06:31:40 PM) (Source: Service Control Manager) (User: )
Description: The Steam Client Service service failed to start due to the following error: 
%%1053 = The service did not respond to the start or control request in a timely fashion.
 
 
Error: (09/28/2016 06:31:40 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.
 
Error: (09/28/2016 06:28:50 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service failed to start due to the following error: 
%%1053 = The service did not respond to the start or control request in a timely fashion.
 
 
Error: (09/28/2016 06:28:50 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Windows Search service to connect.
 
Error: (09/28/2016 06:28:51 PM) (Source: DCOM) (User: )
Description: 1053WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
 
Error: (09/28/2016 06:28:47 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.
 
Error: (09/28/2016 06:28:47 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated with service-specific error %%-1073473535.
 
Error: (09/28/2016 05:52:36 PM) (Source: Service Control Manager) (User: )
Description: The HitmanPro 3.7 Crusader (Boot) service terminated with service-specific error %%0 = The operation completed successfully.
.
 
 
Microsoft Office Sessions:
=========================
Error: (09/29/2016 12:17:19 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/28/2016 10:39:03 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/28/2016 06:29:15 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/28/2016 06:28:47 PM) (Source: Windows Search Service)(User: )
Description: 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (09/28/2016 06:28:47 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (09/28/2016 06:28:47 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (09/28/2016 06:28:47 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
Element not found.  (HRESULT : 0x80070490) (0x80070490)
Search.TripoliIndexer
 
Error: (09/28/2016 06:28:45 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
Search.JetPropStore
 
Error: (09/28/2016 06:28:45 PM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)
 
Error: (09/28/2016 06:28:45 PM) (Source: Windows Search Service)(User: )
Description: 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
The catalog is corrupt
 
 
CodeIntegrity Errors:
===================================
  Date: 2016-07-26 03:37:06.928
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-07-26 03:37:06.883
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivd.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-07-26 03:36:45.307
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivad.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-07-26 03:36:45.266
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\kinonivad.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-08-27 15:55:35.637
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Armaan\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-08-27 15:55:35.615
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Users\Armaan\AppData\Local\Temp\EverestDriver.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-08-27 15:55:35.391
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2015-08-27 15:55:35.380
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\EVEREST Home Edition\kerneld.amd64 because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 
=========================== Installed Programs ============================
 
µTorrent (HKCU\...\uTorrent) (Version: 3.4.8.42576 - BitTorrent Inc.)
360 Total Security (HKLM-x32\...\360TotalSecurity) (Version: 8.8.0.1080 - 360 Security Center)
Adobe After Effects CS6 (HKLM-x32\...\{4817D846-700B-474E-A31B-80892B3E92E3}) (Version: 11 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.270 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Apple Application Support (32-bit) (HKLM-x32\...\{29DB9165-5FC1-48F0-9188-26123F526848}) (Version: 5.0.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{5905C8CF-1C88-4478-A48E-4E458AD1BC7E}) (Version: 5.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{D4D86CB2-2370-4691-8272-3869EDED6C64}) (Version: 10.0.0.18 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Assassin's Creed Syndicate (HKLM-x32\...\Uplay Install 1875) (Version: 1.50 - Ubisoft)
ASUS_ROG_THEME (HKLM-x32\...\ASUS_ROG_THEME) (Version: 1.00.14 - ASUSTeK Computer Inc.)
AviSynth (HKLM-x32\...\AviSynth) (Version: 2.6.0 MT - )
Bamboo Dock (HKLM-x32\...\{90DFD61B-8224-00C6-3D69-A983B60A394E}) (Version: 4.1.0 - Wacom Europe GmbH) Hidden
Bamboo Dock (HKLM-x32\...\Bamboo Dock) (Version: 4.1 - Wacom Co., Ltd.)
Bamboo Dock (HKLM-x32\...\wacomid-desktop-launcher.DCFD4B89A63EE70BC162777F06D4B93B6397AEC7.1) (Version: 4.1.0 - Wacom Europe GmbH) Hidden
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
Blacklight: Retribution (HKLM-x32\...\Steam App 209870) (Version:  - Hardsuit Labs)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Break Into Zatwor (HKLM\...\Steam App 395980) (Version:  - Zonitron Productions)
Call of Duty: Advanced Warfare - Multiplayer (HKLM\...\Steam App 209660) (Version:  - Sledgehammer Games)
CCleaner (HKLM\...\CCleaner) (Version: 5.22 - Piriform)
Counter-Strike (HKLM\...\Steam App 10) (Version:  - Valve)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version:  - Valve)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Discord (HKCU\...\Discord) (Version: 0.0.296 - Hammer & Chisel, Inc.)
DisplayFusion 7.3.4 (HKLM-x32\...\B076073A-5527-4f4f-B46B-B10692277DA2_is1) (Version: 7.3.4.0 - Binary Fortress Software)
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Dropbox (HKLM-x32\...\Dropbox) (Version: 5.4.24 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.27.35 - Dropbox, Inc.) Hidden
Epic Games Launcher (HKLM-x32\...\{BD7E17B3-FEB2-4761-980D-50C4FA169EF9}) (Version: 1.1.74.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FormatFactory 3.6.0.0 (HKLM-x32\...\FormatFactory) (Version: 3.6.0.0 - Format Factory)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 52.0.2743.82 - Google Inc.)
Google Drive (HKLM-x32\...\{895D0391-459F-4D45-B8DD-13F0DE70C66E}) (Version: 1.28.1549.1322 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.29.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.115 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Grand Theft Auto: Vice City (HKLM\...\Steam App 12110) (Version:  - Rockstar Games)
Hola™ 1.15.577 - Better Internet (HKLM\...\Hola) (Version: 1.15.577 - Hola Networks Ltd.)
Hotspot Shield 5.4.11 (HKLM-x32\...\HotspotShield) (Version: 5.4.11 - AnchorFree Inc.)
Hotspot Shield 5.4.11 Embedded (HKLM-x32\...\{AF599C42-A2E5-4251-B7EE-4925A167594F}) (Version: 5.4.11.9772 - Buildbot) Hidden
HP Deskjet 1050 J410 series Basic Device Software (HKLM\...\{F294770E-F869-400F-81C3-614B5F13CA54}) (Version: 28.0.1313.0 - Hewlett-Packard Co.)
HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company)
Intel® Chipset Device Software (HKLM-x32\...\{d370215a-d003-43ae-a3b6-1028af64d5a1}) (Version: 10.0.20 - Intel® Corporation) Hidden
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3540 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.3.1001 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation)
Iron Snout (HKLM\...\Steam App 424280) (Version:  - SnoutUp)
iTunes (HKLM\...\{9946A4F7-E0FD-4A33-82D1-06CBFFBBB9F9}) (Version: 12.5.1.21 - Apple Inc.)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Just Cause 3 (HKLM-x32\...\Steam App 225540) (Version:  - Avalanche Studios)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech Gaming Software 8.76 (HKLM\...\Logitech Gaming Software) (Version: 8.76.155 - Logitech Inc.)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{2af972c7-13b0-4978-92a8-fee26a4fb4e9}) (Version: 12.0.21005.1 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Need For Speed Most Wanted Black Edition version 1.3.0.0 (HKLM-x32\...\Need For Speed Most Wanted Black Edition_is1) (Version: 1.3.0.0 - Mr DJ)
NVIDIA 3D Vision Controller Driver 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 368.22 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.11.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.3.5 - NVIDIA Corporation)
NVIDIA Graphics Driver 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.22 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.14 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.15.4 - OBS Project)
OpenIV (HKCU\...\OpenIV) (Version: 2.8.703 - .black/OpenIV Team)
OSDownloader (HKLM-x32\...\{C02C8C82-197C-46C1-AD18-EB0F5BF49F8A}_is1) (Version: 1.1 - OpenSubtitles.org)
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Popcorn-Time (HKCU\...\Popcorn-Time) (Version: 0.3.9 - Popcorn Time)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 1.7.2 - Razer Inc.)
Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 6.4.6.10930 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.20.15.29263 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.88.617.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7256 - Realtek Semiconductor Corp.)
RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version:  - Punk Software)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.9.6 - Rockstar Games)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Setup - Far Cry 4 © Ubisoft ... (HKLM-x32\...\Setup - Far Cry 4 © Ubisoft ...) (Version: ... - Ubisoft Entertainment)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 2.11.3.5 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 8.0.0.9103 - Microsoft Corporation)
Skype™ 7.27 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.27.101 - Skype Technologies S.A.)
Smartflix (HKCU\...\smartflix) (Version: 1.3.1 - Smartflix)
Sniper Elite 3 (HKLM-x32\...\U25pcGVyRWxpdGUz_is1) (Version: 1 - )
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
SteamVR Performance Test (HKLM\...\Steam App 323910) (Version:  - Valve)
Street Fighter V (HKLM\...\c3RyZWV0ZmlnaHRlcnY_is1) (Version: 1 - )
Surfing Protection (HKLM-x32\...\IObit Surfing Protection_is1) (Version: 1.2 - IObit)
System Requirements Lab Detection (HKLM-x32\...\{C63406F5-3419-4762-9C6A-0E6DB7FF5F83}) (Version: 6.1.5.0 - Husdawg, LLC)
Team Fortress 2 (HKLM\...\Steam App 440) (Version:  - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.55321 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
The Witcher 3 - Wild Hunt (HKLM-x32\...\The Witcher 3 - Wild Hunt_is1) (Version:  - )
The Witcher 3: Wild Hunt - Blood and Wine (HKLM-x32\...\Blood and Wine_is1) (Version: 1.21.0.0 - GOG.com)
Tomb Raider (HKLM\...\Steam App 203160) (Version:  - Crystal Dynamics)
TuneUp Utilities 2014 (en-US) (HKLM-x32\...\{14C8CE46-C68C-461B-BCA9-E276A85851C6}) (Version: 14.0.1000.145 - TuneUp Software) Hidden
TuneUp Utilities 2014 (HKLM-x32\...\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}) (Version: 14.0.1000.145 - TuneUp Software) Hidden
TuneUp Utilities 2014 (HKLM-x32\...\TuneUp Utilities) (Version: 14.0.1000.145 - TuneUp Software)
Uplay (HKLM-x32\...\Uplay) (Version: 2.0 - Ubisoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Wacom (HKLM\...\Pen Tablet Driver) (Version: 5.3.3-3 - Wacom Technology Corp.)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.3 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.3 - Wacom Technology Corp.)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinISO (HKLM-x32\...\WinISO) (Version: 6.4.1.5976 - WinISO Computing Inc.)
WinRAR 5.01 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WWE 2K15 DLC Pack Addon (HKLM-x32\...\V1dFMksxNQ==_is1) (Version: 1 - )
========================= Restore Points ==================================
 
24-09-2016 20:14:55 Installed Autodesk SketchBook Pro 6.0.1
28-09-2016 11:06:59 Installed DirectX
28-09-2016 11:14:16 Restore Operation
28-09-2016 11:32:31 Windows Update
28-09-2016 12:20:05 Checkpoint by HitmanPro
28-09-2016 12:20:41 Checkpoint by HitmanPro
28-09-2016 12:48:38 Restore Operation
 
**** End of log ****
 

Security Check Log

 

 Results of screen317's Security Check version 1.014 --- 12/23/15  

 Windows 7 Service Pack 1 x64   
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:`````````````` 
 Windows Firewall Enabled!  
360 Total Security   
 WMI entry may not exist for antivirus; attempting automatic update. 
`````````Anti-malware/Other Utilities Check:````````` 
 TuneUp Utilities 2014   
 TuneUp Utilities 2014 (en-US)  
 TuneUp Utilities 2014   
 Java version 32-bit out of Date! 
 Adobe Flash Player 20.0.0.267  
 Adobe Reader XI  
 Google Chrome (49.0.2623.108) 
 Google Chrome (52.0.2743.82) 
 Google Chrome (SetupMetrics...) 
````````Process Check: objlist.exe by Laurent````````  
`````````````````System Health check````````````````` 
 Total Fragmentation on Drive C: 0% 
````````````````````End of Log`````````````````````` 
 


#4 The_Codesee

The_Codesee

  • Members
  • 337 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:England, UK
  • Local time:02:59 PM

Posted 29 September 2016 - 10:51 AM

Good afternoon (or evening for you) :)
 

The content index database is corrupt.  (HRESULT : 0xc0041800) (0xc0041800)

 
I noticed a lot of them errors in the log you posted - please try rebuilding the Search Index
 
Peer to Peer (P2P) Warning
 
You currently have µTorrent installed - this can be a huge contributor to infecting computers. Ransomware is also known to be spread through P2P file transfers. I highly recommend you remove µTorrent or at-least until your computer is clean.
 
:step1: Please uninstall some programs
 
There's currently some programs on your PC that we need to remove. Press the Windows + R key on your keyboard and type in appwiz.cpl and press enter. Navigate to each of the following below one-by-one and click uninstall:

  • TuneUp Utilities 2014

:step2: Please download Kaspersky TDSSKiller to your desktop

  • Double click tdsskiller.exe and follow the on-screen instructions.
  • Press the 'Start Scan' button
  • If malware is detected after the scan has finished, click on 'continue'
  • A log will be saved and your computer will restart
  • Navigate to TDSSKiller.x_x_x_log.txt in your root directory (usually C:/) and open it
  • Paste the contents of the log in your next reply

:step3: Please download Malwarebytes Anti-Malware to your desktop

  • Double click mbam-setup-x.x.x.xxxx and follow the on-screen instructions.
  • On the dashboard, click update now.
  • After that, click scan now - the scan will now begin.
  • When the scan's completed, select apply actions - make sure the action is quarantine.
  • Restart your computer.

How to get the log:

  • On the Malwarebytes Anti-Malware dashboard, select the history tab and click application logs.
  • Select the log which has the time and date of when you did the scan.
  • Click copy to clipboard and paste it into your reply.

:step4: Please download AdwCleaner to your desktop

  • Double click adwcleaner_x.xxx.exe.
  • If prompted, click I agree.
  • Click scan. When it's finished, select clean.
  • Allow AdwCleaner to restart your computer.
  • Once your computer's restarted, a log should appear.
  • Please post this in your next reply.

:step5: Please download Junkware Removal Tool to your desktop

  • Double click JRT.exe. (Win 7, 8 and Vista users, right-click and select run as admin)
  • Press any key and the scan will begin.
  • At the end, a log will open. Please post this in your next reply.

:step5: Please update Java from the URL below
 
https://java.com/en/download/
 
Logs I expect in your next reply:

  • TDSSKiller Log
  • Malwarebytes Log
  • AdwCleaner Log
  • Junkware Removal Tool (JRT) Log

Please also update me on the status of the computer


Edited by The_Codesee, 29 September 2016 - 10:53 AM.


#5 po6pwn

po6pwn
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:29 PM

Posted 30 September 2016 - 06:31 AM

Hello, 
Thank you for all your help!
I've uninstalled TuneUp Utilities and uTorrent.
Java did not update before running these programs but I tried again after and it completed the update. The system seems to be running fine, with the exception of the boot time being a little longer. My Anti Virus has not detected any more malicious files or malware recently. I've attached the logs as instructed, please let me know if there is anything further I can do to keep my computer healthy, Also, which P2P client do you recommend I use?
 
TDSSKiller Log
 
15:31:37.0933 0x0870  TDSS rootkit removing tool 3.1.0.11 Aug  5 2016 12:13:31
15:31:42.0547 0x0870  ============================================================
15:31:42.0547 0x0870  Current date / time: 2016/09/30 15:31:42.0547
15:31:42.0547 0x0870  SystemInfo:
15:31:42.0547 0x0870  
15:31:42.0547 0x0870  OS Version: 6.1.7601 ServicePack: 1.0
15:31:42.0547 0x0870  Product type: Workstation
15:31:42.0547 0x0870  ComputerName: ARMAAN-PC
15:31:42.0547 0x0870  UserName: Armaan
15:31:42.0547 0x0870  Windows directory: C:\Windows
15:31:42.0547 0x0870  System windows directory: C:\Windows
15:31:42.0547 0x0870  Running under WOW64
15:31:42.0547 0x0870  Processor architecture: Intel x64
15:31:42.0547 0x0870  Number of processors: 4
15:31:42.0547 0x0870  Page size: 0x1000
15:31:42.0547 0x0870  Boot type: Normal boot
15:31:42.0547 0x0870  CodeIntegrityOptions = 0x00000001
15:31:42.0547 0x0870  ============================================================
15:31:45.0030 0x0870  KLMD registered as C:\Windows\system32\drivers\81671460.sys
15:31:45.0030 0x0870  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23539, osProperties = 0x1
15:31:45.0326 0x0870  System UUID: {2ECC5CCC-490C-6790-C074-63A656B91FB4}
15:31:46.0231 0x0870  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:31:46.0262 0x0870  ============================================================
15:31:46.0262 0x0870  \Device\Harddisk0\DR0:
15:31:46.0262 0x0870  MBR partitions:
15:31:46.0262 0x0870  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
15:31:46.0262 0x0870  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3D05E000
15:31:46.0262 0x0870  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3D090800, BlocksNum 0x37675800
15:31:46.0262 0x0870  ============================================================
15:31:46.0294 0x0870  C: <-> \Device\Harddisk0\DR0\Partition2
15:31:46.0372 0x0870  D: <-> \Device\Harddisk0\DR0\Partition3
15:31:46.0372 0x0870  ============================================================
15:31:46.0372 0x0870  Initialize success
15:31:46.0372 0x0870  ============================================================
15:31:48.0665 0x161c  ============================================================
15:31:48.0665 0x161c  Scan started
15:31:48.0665 0x161c  Mode: Manual; 
15:31:48.0665 0x161c  ============================================================
15:31:48.0665 0x161c  KSN ping started
15:31:48.0915 0x161c  KSN ping finished: true
15:31:52.0779 0x161c  ================ Scan system memory ========================
15:31:52.0779 0x161c  System memory - ok
15:31:52.0779 0x161c  ================ Scan services =============================
15:31:52.0873 0x161c  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
15:31:52.0873 0x161c  1394ohci - ok
15:31:52.0904 0x161c  [ 9CC33FFF3AA4725CC3EE1ABDBDAA4CBC, 3251C8F78BA649E2A6D64422FDC9A0BC865406C36A2823BDCB453EFE86D2196B ] 360AntiHacker   C:\Windows\system32\Drivers\360AntiHacker64.sys
15:31:52.0904 0x161c  360AntiHacker - ok
15:31:52.0935 0x161c  [ 06DC8E24D1846A26FFE978A51B73BBA0, 0E85F557649FEBEAD33FD49F2DA2917C694A40A5290A09EBE1C71D24C9572AD0 ] 360AvFlt        C:\Windows\system32\DRIVERS\360AvFlt.sys
15:31:52.0935 0x161c  360AvFlt - ok
15:31:52.0951 0x161c  [ 03882DAC88F6C1CAD9101A9FC426B3EF, CF05279183D2510BE9D10673AE40177706F2A67B7C9F5E2A3105F920BE09AA6E ] 360Box64        C:\Windows\system32\DRIVERS\360Box64.sys
15:31:52.0951 0x161c  360Box64 - ok
15:31:52.0966 0x161c  [ D31541708A595BCA380105D44C2C2AD5, 730351AAB90D627BDA6E73035869AE314508933160035DDE38F1CB4665B81498 ] 360Camera       C:\Windows\system32\Drivers\360Camera64.sys
15:31:52.0966 0x161c  360Camera - ok
15:31:52.0998 0x161c  [ A83EC46BA2414BC4150D3151DFCF7955, 3E6EBC1B60F82991A0A4D5563FDEB35D1B2D80F7BB7C613366BBDC0D91987096 ] 360FsFlt        C:\Windows\system32\DRIVERS\360FsFlt.sys
15:31:52.0998 0x161c  360FsFlt - ok
15:31:53.0029 0x161c  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
15:31:53.0029 0x161c  ACPI - ok
15:31:53.0060 0x161c  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
15:31:53.0060 0x161c  AcpiPmi - ok
15:31:53.0122 0x161c  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:31:53.0122 0x161c  AdobeARMservice - ok
15:31:53.0232 0x161c  [ 84DB0A40692CF8A58D1E3710FA5D121F, 0C29C59CAF056C79F56957DB06A8CF480D5BD7BDF6A4F0E9A72653806CF154D0 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:31:53.0232 0x161c  AdobeFlashPlayerUpdateSvc - ok
15:31:53.0247 0x161c  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
15:31:53.0263 0x161c  adp94xx - ok
15:31:53.0278 0x161c  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
15:31:53.0278 0x161c  adpahci - ok
15:31:53.0294 0x161c  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
15:31:53.0310 0x161c  adpu320 - ok
15:31:53.0341 0x161c  [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
15:31:53.0341 0x161c  AeLookupSvc - ok
15:31:53.0356 0x161c  [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD             C:\Windows\system32\drivers\afd.sys
15:31:53.0372 0x161c  AFD - ok
15:31:53.0466 0x161c  [ 4707CDF90F59293F6B2A9824475C7EA6, 37C4721BC18889F9BE95B7973A44197D4EBA6991E6E761208D64F1186016659A ] AFTrafMgr1.1    C:\Program Files (x86)\Hotspot Shield\bin\TrafMgr_1_1_64.sys
15:31:53.0466 0x161c  AFTrafMgr1.1 - ok
15:31:53.0481 0x161c  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
15:31:53.0481 0x161c  agp440 - ok
15:31:53.0497 0x161c  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
15:31:53.0512 0x161c  ALG - ok
15:31:53.0544 0x161c  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
15:31:53.0544 0x161c  aliide - ok
15:31:53.0544 0x161c  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
15:31:53.0544 0x161c  amdide - ok
15:31:53.0559 0x161c  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
15:31:53.0559 0x161c  AmdK8 - ok
15:31:53.0575 0x161c  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
15:31:53.0590 0x161c  AmdPPM - ok
15:31:53.0606 0x161c  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
15:31:53.0606 0x161c  amdsata - ok
15:31:53.0622 0x161c  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
15:31:53.0622 0x161c  amdsbs - ok
15:31:53.0637 0x161c  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
15:31:53.0637 0x161c  amdxata - ok
15:31:53.0684 0x161c  [ 52F8C264D3BF90D2726FDE6642A381D4, 3780CCB0E4B89CAD818C887D65677EAB30F5ACC91FC1E6D0818F792A8D731137 ] AppID           C:\Windows\system32\drivers\appid.sys
15:31:53.0684 0x161c  AppID - ok
15:31:53.0700 0x161c  [ 2C49C5C911D1BE2A815BC183C0B2FED1, DDF299E05626E40417C135571F7ED78FB8BC4DD78907980316A6A277D0096074 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
15:31:53.0700 0x161c  AppIDSvc - ok
15:31:53.0700 0x161c  [ B46099A534B7989D80330EA82D9092D6, 0CAC09732FAFAE805E55428B6BE001DCC39EBC599539FADE7AA68571A8A554E5 ] Appinfo         C:\Windows\System32\appinfo.dll
15:31:53.0700 0x161c  Appinfo - ok
15:31:53.0762 0x161c  [ 1399314E38F9CF0E97ACB9352F5951EE, 13B12BAD514428028D7CAC12328EC1813E00510B44BC3388AA5E68C6056B7F4C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDevice.exe
15:31:53.0762 0x161c  Apple Mobile Device - ok
15:31:53.0809 0x161c  [ 885888F8AAD89108A5EE2D0174690220, 9B148C117EBE400F40BF7F32B66B20AA4628BA9E233D707DFA2EB4A8A65E7C52 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:31:53.0809 0x161c  Apple Mobile Device Service - ok
15:31:53.0840 0x161c  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
15:31:53.0840 0x161c  AppMgmt - ok
15:31:53.0856 0x161c  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
15:31:53.0856 0x161c  arc - ok
15:31:53.0871 0x161c  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
15:31:53.0871 0x161c  arcsas - ok
15:31:53.0965 0x161c  [ 660D597B7A78256734D7F3230B21B355, CAA19E8EFAD63B8975A4CD8EFD5CE5F21E056856D36BC5A9E48517F1E574ABBA ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:31:53.0965 0x161c  aspnet_state - ok
15:31:53.0980 0x161c  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
15:31:53.0980 0x161c  AsyncMac - ok
15:31:53.0980 0x161c  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
15:31:53.0980 0x161c  atapi - ok
15:31:54.0043 0x161c  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:31:54.0043 0x161c  AudioEndpointBuilder - ok
15:31:54.0058 0x161c  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv        C:\Windows\System32\Audiosrv.dll
15:31:54.0074 0x161c  AudioSrv - ok
15:31:54.0090 0x161c  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
15:31:54.0090 0x161c  AxInstSV - ok
15:31:54.0105 0x161c  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
15:31:54.0121 0x161c  b06bdrv - ok
15:31:54.0136 0x161c  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
15:31:54.0136 0x161c  b57nd60a - ok
15:31:54.0168 0x161c  [ 2E21AD1D7B64A7A040181A61E61A1F39, EE3795A5D417E94759A627824BF3B491448D9F39C3A2F642FC4A745991036E1A ] BAPIDRV         C:\Windows\system32\DRIVERS\BAPIDRV64.sys
15:31:54.0168 0x161c  BAPIDRV - ok
15:31:54.0183 0x161c  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
15:31:54.0183 0x161c  BDESVC - ok
15:31:54.0199 0x161c  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
15:31:54.0199 0x161c  Beep - ok
15:31:54.0214 0x161c  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
15:31:54.0230 0x161c  BFE - ok
15:31:54.0355 0x161c  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
15:31:54.0370 0x161c  BITS - ok
15:31:54.0402 0x161c  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
15:31:54.0402 0x161c  blbdrive - ok
15:31:54.0448 0x161c  [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:31:54.0464 0x161c  Bonjour Service - ok
15:31:54.0495 0x161c  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
15:31:54.0495 0x161c  bowser - ok
15:31:54.0511 0x161c  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
15:31:54.0511 0x161c  BrFiltLo - ok
15:31:54.0526 0x161c  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
15:31:54.0526 0x161c  BrFiltUp - ok
15:31:54.0558 0x161c  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
15:31:54.0573 0x161c  Browser - ok
15:31:54.0589 0x161c  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
15:31:54.0589 0x161c  Brserid - ok
15:31:54.0604 0x161c  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
15:31:54.0604 0x161c  BrSerWdm - ok
15:31:54.0604 0x161c  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
15:31:54.0604 0x161c  BrUsbMdm - ok
15:31:54.0620 0x161c  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
15:31:54.0620 0x161c  BrUsbSer - ok
15:31:54.0620 0x161c  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
15:31:54.0636 0x161c  BTHMODEM - ok
15:31:54.0636 0x161c  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
15:31:54.0651 0x161c  bthserv - ok
15:31:54.0776 0x161c  [ 52AE2CDD37AB735FBDA52263EFD524AA, 844103913E6079CC1C49B05FFB1CDC9A68692A8EE5A05C9C28FD272DFE534913 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
15:31:54.0823 0x161c  c2cautoupdatesvc - ok
15:31:54.0870 0x161c  [ C35B91B6777E7C6DB67B8583D2AA66A7, CE3A004B560EB750442150FEEFEE074A11A17E66B3F2A489E8EF1DBCF8FE8390 ] c2cpnrsvc       C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
15:31:54.0948 0x161c  c2cpnrsvc - ok
15:31:54.0979 0x161c  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
15:31:54.0979 0x161c  cdfs - ok
15:31:54.0994 0x161c  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
15:31:54.0994 0x161c  cdrom - ok
15:31:55.0010 0x161c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
15:31:55.0010 0x161c  CertPropSvc - ok
15:31:55.0010 0x161c  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
15:31:55.0026 0x161c  circlass - ok
15:31:55.0041 0x161c  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\Windows\system32\CLFS.sys
15:31:55.0041 0x161c  CLFS - ok
15:31:55.0104 0x161c  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:31:55.0104 0x161c  clr_optimization_v2.0.50727_32 - ok
15:31:55.0166 0x161c  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:31:55.0166 0x161c  clr_optimization_v2.0.50727_64 - ok
15:31:55.0213 0x161c  [ AB4CD527BEFCC43EE441E6C50CCE54C8, 13B776AE63049FFBA7E35EA0A4C26EBB57B10D973E05C4CF1214249754DC46E4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:31:55.0213 0x161c  clr_optimization_v4.0.30319_32 - ok
15:31:55.0228 0x161c  [ 1400C75FF021D6CFACE46AC41B60770E, 3FCB8D7714A79522F2738037D559F1FFFB2F05C5406D2A038EF5DDB4629CA1CE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:31:55.0228 0x161c  clr_optimization_v4.0.30319_64 - ok
15:31:55.0244 0x161c  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
15:31:55.0244 0x161c  CmBatt - ok
15:31:55.0291 0x161c  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
15:31:55.0291 0x161c  cmdide - ok
15:31:55.0338 0x161c  [ 3323F76352B0AF14B2CDC4DFBF3E980A, F8E3C3508C37E647497B6889F26819B1DB30275F48A994D1BBFBAA9454E5FD70 ] CNG             C:\Windows\system32\Drivers\cng.sys
15:31:55.0353 0x161c  CNG - ok
15:31:55.0353 0x161c  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
15:31:55.0369 0x161c  Compbatt - ok
15:31:55.0369 0x161c  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
15:31:55.0369 0x161c  CompositeBus - ok
15:31:55.0384 0x161c  COMSysApp - ok
15:31:55.0431 0x161c  [ 8492FA3B8E6C23805A61032A2C66FD54, 13248B60A1D119694DBAC464CCF0D534CD8ADC24329394F0E31D856746791DF5 ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe
15:31:55.0431 0x161c  cphs - ok
15:31:55.0447 0x161c  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
15:31:55.0447 0x161c  crcdisk - ok
15:31:55.0494 0x161c  [ B1962E21F74697AB442FA4432B970E85, DADE4C90624EC928699246785E3DF73D795B5C68834FCD99D3063AD647423D12 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
15:31:55.0494 0x161c  CryptSvc - ok
15:31:55.0509 0x161c  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
15:31:55.0525 0x161c  CSC - ok
15:31:55.0540 0x161c  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
15:31:55.0556 0x161c  CscService - ok
15:31:55.0790 0x161c  dbupdate - ok
15:31:55.0790 0x161c  dbupdatem - ok
15:31:55.0868 0x161c  [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] DcomLaunch      C:\Windows\system32\rpcss.dll
15:31:55.0884 0x161c  DcomLaunch - ok
15:31:55.0915 0x161c  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
15:31:55.0915 0x161c  defragsvc - ok
15:31:55.0930 0x161c  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
15:31:55.0930 0x161c  DfsC - ok
15:31:55.0946 0x161c  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
15:31:55.0946 0x161c  Dhcp - ok
15:31:56.0008 0x161c  [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack       C:\Windows\system32\diagtrack.dll
15:31:56.0024 0x161c  DiagTrack - ok
15:31:56.0040 0x161c  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
15:31:56.0040 0x161c  discache - ok
15:31:56.0057 0x161c  [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk            C:\Windows\system32\drivers\disk.sys
15:31:56.0057 0x161c  Disk - ok
15:31:56.0230 0x161c  [ 8710E813C182E3822605F05597AA46AD, 8241304A9EB480EDDDE1BD650E8ED6065D9375CEAD1797B8B9D3D7EF4161A98A ] DisplayFusionService C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe
15:31:56.0292 0x161c  DisplayFusionService - ok
15:31:56.0323 0x161c  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
15:31:56.0323 0x161c  dmvsc - ok
15:31:56.0370 0x161c  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
15:31:56.0370 0x161c  Dnscache - ok
15:31:56.0401 0x161c  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
15:31:56.0401 0x161c  dot3svc - ok
15:31:56.0417 0x161c  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
15:31:56.0417 0x161c  DPS - ok
15:31:56.0448 0x161c  [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
15:31:56.0448 0x161c  drmkaud - ok
15:31:56.0511 0x161c  [ 3A9D7D464BDB3B70D7ECF689ADABBD4D, B4F5B23705EA1BA453FE30791CA245E1A5F7FBEABAD026E4A8A15A9FC44E8C9C ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
15:31:56.0526 0x161c  DXGKrnl - ok
15:31:56.0557 0x161c  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
15:31:56.0557 0x161c  EapHost - ok
15:31:56.0651 0x161c  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
15:31:56.0729 0x161c  ebdrv - ok
15:31:56.0760 0x161c  [ 07932D7BA536B0BB58306A156A9AFC31, 315AA4503A9C69E476D796C8DC6D4800A623B942C8707A15A94A892E94D123D9 ] EFS             C:\Windows\System32\lsass.exe
15:31:56.0760 0x161c  EFS - ok
15:31:56.0838 0x161c  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
15:31:56.0854 0x161c  ehRecvr - ok
15:31:56.0869 0x161c  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
15:31:56.0869 0x161c  ehSched - ok
15:31:56.0885 0x161c  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
15:31:56.0901 0x161c  elxstor - ok
15:31:56.0916 0x161c  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
15:31:56.0916 0x161c  ErrDev - ok
15:31:56.0932 0x161c  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
15:31:56.0947 0x161c  EventSystem - ok
15:31:56.0963 0x161c  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
15:31:56.0963 0x161c  exfat - ok
15:31:56.0979 0x161c  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
15:31:56.0979 0x161c  fastfat - ok
15:31:57.0010 0x161c  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
15:31:57.0010 0x161c  Fax - ok
15:31:57.0025 0x161c  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
15:31:57.0025 0x161c  fdc - ok
15:31:57.0041 0x161c  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
15:31:57.0041 0x161c  fdPHost - ok
15:31:57.0041 0x161c  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
15:31:57.0041 0x161c  FDResPub - ok
15:31:57.0057 0x161c  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
15:31:57.0057 0x161c  FileInfo - ok
15:31:57.0057 0x161c  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
15:31:57.0057 0x161c  Filetrace - ok
15:31:57.0072 0x161c  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
15:31:57.0072 0x161c  flpydisk - ok
15:31:57.0072 0x161c  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
15:31:57.0088 0x161c  FltMgr - ok
15:31:57.0150 0x161c  [ BCB16AE33AA58E0042F3EF34CFB6396A, E8ADA10DE60A94E4BABE9FCA6D0AA83B11520C092D49057E17F6C6059D35A323 ] FontCache       C:\Windows\system32\FntCache.dll
15:31:57.0166 0x161c  FontCache - ok
15:31:57.0197 0x161c  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:31:57.0197 0x161c  FontCache3.0.0.0 - ok
15:31:57.0213 0x161c  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
15:31:57.0213 0x161c  FsDepends - ok
15:31:57.0244 0x161c  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
15:31:57.0244 0x161c  Fs_Rec - ok
15:31:57.0291 0x161c  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
15:31:57.0291 0x161c  fvevol - ok
15:31:57.0306 0x161c  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
15:31:57.0306 0x161c  gagp30kx - ok
15:31:57.0306 0x161c  gdrv - ok
15:31:57.0337 0x161c  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:31:57.0337 0x161c  GEARAspiWDM - ok
15:31:57.0573 0x161c  [ 4CEDC66C726F7BE116BE7694B3CD22CD, C55DDC432F640C215E57C5AC9B7D801F7B2DA21E50BFA9ABC209AADC3070C744 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
15:31:57.0605 0x161c  GfExperienceService - ok
15:31:57.0683 0x161c  [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc           C:\Windows\System32\gpsvc.dll
15:31:57.0683 0x161c  gpsvc - ok
15:31:57.0807 0x161c  GPU-Z - ok
15:31:57.0854 0x161c  [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:31:57.0870 0x161c  gupdate - ok
15:31:57.0870 0x161c  [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:31:57.0870 0x161c  gupdatem - ok
15:31:57.0902 0x161c  [ 3899411067CB5BB68ACC855025C14A4E, DC1F185CF076366AEADAC7735149C43348CB482F9B4AB11EC87F8AE0FDC1E235 ] hamachi         C:\Windows\system32\DRIVERS\hamachi.sys
15:31:57.0902 0x161c  hamachi - ok
15:31:57.0918 0x161c  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
15:31:57.0918 0x161c  hcw85cir - ok
15:31:57.0964 0x161c  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:31:57.0964 0x161c  HdAudAddService - ok
15:31:57.0980 0x161c  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
15:31:57.0980 0x161c  HDAudBus - ok
15:31:57.0996 0x161c  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
15:31:57.0996 0x161c  HidBatt - ok
15:31:58.0011 0x161c  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
15:31:58.0011 0x161c  HidBth - ok
15:31:58.0027 0x161c  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
15:31:58.0027 0x161c  HidIr - ok
15:31:58.0058 0x161c  [ 943B20F119F05BCAB4D2593E2D3D4278, 7056691C0EFF0AA236195BD254E452C026EEDFB2E257330F92A072D4CEC3B712 ] hidkmdf         C:\Windows\system32\DRIVERS\hidkmdf.sys
15:31:58.0058 0x161c  hidkmdf - ok
15:31:58.0074 0x161c  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
15:31:58.0074 0x161c  hidserv - ok
15:31:58.0089 0x161c  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
15:31:58.0089 0x161c  HidUsb - ok
15:31:58.0152 0x161c  [ E7EF785213EB121023E670B4D28BC745, F1CFD528DC52F00FE738FDADFD285F4241702F41CE58A45F5A86A98AE066A19D ] hitmanpro37     C:\Windows\system32\drivers\hitmanpro37.sys
15:31:58.0152 0x161c  hitmanpro37 - ok
15:31:58.0167 0x161c  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
15:31:58.0167 0x161c  hkmsvc - ok
15:31:58.0339 0x161c  [ 5DEEF2B7CCCD58EBAE72B26EDA5671B4, 29AA6A42EF0981BE6D3E2F40D68B0DC71D2C5BA4CB9D966A4D2C938AA920A491 ] hola_svc        C:\Program Files\Hola\app\hola_svc.exe
15:31:58.0401 0x161c  hola_svc - ok
15:31:58.0542 0x161c  [ CB2EB3AE2E6292A4FBB21A55849FF95B, 92CC9FCC31383B159915EF829481806A481CF05B73DC898B30DC06440D22F8F3 ] hola_updater    C:\Program Files\Hola\app\hola_updater.exe
15:31:58.0604 0x161c  hola_updater - ok
15:31:58.0620 0x161c  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:31:58.0620 0x161c  HomeGroupListener - ok
15:31:58.0635 0x161c  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:31:58.0635 0x161c  HomeGroupProvider - ok
15:31:58.0651 0x161c  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
15:31:58.0666 0x161c  HpSAMD - ok
15:31:58.0698 0x161c  [ 1878A79551F2EDAE7EBD110AAE6D33AD, 1F409360B44AEB3A6023E953EAB350FFB3EB8322F589E2422AB312288B33A2DA ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
15:31:58.0698 0x161c  HPSupportSolutionsFrameworkService - ok
15:31:58.0885 0x161c  [ 5127365EFFD245C4525999725E5CF185, 9F218346DF9F9AD1B88C4C7EE392C0921B681FE4EBC73ADF4DBC2119261503E7 ] hshld           C:\Program Files (x86)\Hotspot Shield\bin\cmw_srv.exe
15:31:58.0916 0x161c  hshld - ok
15:31:58.0947 0x161c  [ E87FEB74393469E15A552B5BA63ACE55, 34690691F650D92B0EA0536D2809CD84654AF28B7CE730C2B2F1EF5782159E14 ] HssTrayService  C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE
15:31:58.0963 0x161c  HssTrayService - ok
15:31:59.0010 0x161c  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
15:31:59.0025 0x161c  HTTP - ok
15:31:59.0056 0x161c  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
15:31:59.0056 0x161c  hwpolicy - ok
15:31:59.0072 0x161c  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
15:31:59.0072 0x161c  i8042prt - ok
15:31:59.0103 0x161c  [ 6655615C7E4E29E6481F75A93ED99954, C7387D85DEC6BEF74DAD3B36398D1DA8914E9CF6F460D36E30088E3F6754E972 ] iaStorA         C:\Windows\system32\DRIVERS\iaStorA.sys
15:31:59.0119 0x161c  iaStorA - ok
15:31:59.0166 0x161c  [ F35FBCEB1B71BC20BBAFA526E203D6A1, F389B689B5DF0D204E3EA21B7201A89D29DE518716781BB390AC6E5CED64C790 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
15:31:59.0166 0x161c  IAStorDataMgrSvc - ok
15:31:59.0181 0x161c  [ ABE52EF9AF37C8D4FC67FDB9BE368142, 75B2787A0E45ED4801530D13381E596D1DB635D0A9C3FDFAB3951063048A5ECF ] iaStorF         C:\Windows\system32\DRIVERS\iaStorF.sys
15:31:59.0181 0x161c  iaStorF - ok
15:31:59.0228 0x161c  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
15:31:59.0228 0x161c  iaStorV - ok
15:31:59.0306 0x161c  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
15:31:59.0306 0x161c  IDriverT - ok
15:31:59.0368 0x161c  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:31:59.0384 0x161c  idsvc - ok
15:31:59.0384 0x161c  IEEtwCollectorService - ok
15:31:59.0478 0x161c  [ B12F7F8180BCD99B29AE2A6534857EA1, D095DF08A4F3510B96DE55A69ACCDEA0AACC7244447A858041D4C511835BA066 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
15:31:59.0524 0x161c  igfx - ok
15:31:59.0571 0x161c  [ 181722D8E78521191B9B83109AA011CA, 42255FD631D269283686DE964F512345C2C3A257E988A950A12EE9A7F815234E ] igfxCUIService1.0.0.0 C:\Windows\system32\igfxCUIService.exe
15:31:59.0571 0x161c  igfxCUIService1.0.0.0 - ok
15:31:59.0587 0x161c  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
15:31:59.0587 0x161c  iirsp - ok
15:31:59.0634 0x161c  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
15:31:59.0649 0x161c  IKEEXT - ok
15:31:59.0774 0x161c  [ 1747CAA9AB414DEC0FF38CDEBD3A7418, 0B647EF6FFF1E02DAD8B4C764A4A00430898BD089304D52BC05E0D99E80F1236 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:31:59.0821 0x161c  IntcAzAudAddService - ok
15:31:59.0836 0x161c  [ 890144FA6AB42F2B54EE633BF96A019A, 8741904C66170BA11C78D31681E3759537C0BF2338538678BC64234DB8FDE93F ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
15:31:59.0836 0x161c  IntcDAud - ok
15:31:59.0852 0x161c  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
15:31:59.0852 0x161c  intelide - ok
15:31:59.0868 0x161c  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
15:31:59.0868 0x161c  intelppm - ok
15:31:59.0883 0x161c  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
15:31:59.0883 0x161c  IPBusEnum - ok
15:31:59.0899 0x161c  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:31:59.0914 0x161c  IpFilterDriver - ok
15:31:59.0946 0x161c  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
15:31:59.0961 0x161c  iphlpsvc - ok
15:31:59.0977 0x161c  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
15:31:59.0977 0x161c  IPMIDRV - ok
15:31:59.0992 0x161c  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
15:31:59.0992 0x161c  IPNAT - ok
15:32:00.0024 0x161c  [ 16A6D49E7698FC6F1730D3FF9F5561A8, 860D2601BA3A71C81A6B21F4D92A5E9C47772C9DE0F047D49000FA4A484D7932 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
15:32:00.0039 0x161c  iPod Service - ok
15:32:00.0055 0x161c  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
15:32:00.0055 0x161c  IRENUM - ok
15:32:00.0055 0x161c  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
15:32:00.0070 0x161c  isapnp - ok
15:32:00.0086 0x161c  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
15:32:00.0086 0x161c  iScsiPrt - ok
15:32:00.0102 0x161c  [ 45392E76EE30DC9C8F0181C785F0BA48, 7FB522E1AA9B877B9FB1A29C2ADC42EA794E8864AD2411AD275F00F00547F8F3 ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
15:32:00.0102 0x161c  iusb3hcs - ok
15:32:00.0133 0x161c  [ C6E8FB7FF41877378CCB30DE6E9941DF, CA808A00C0CC21C1C7BE54F0D1E5D3F24C0032BE821C064E0A63901F20F3C6BC ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
15:32:00.0133 0x161c  iusb3hub - ok
15:32:00.0148 0x161c  [ 6FBA980433B2B21604CE990FBF542D3F, ACB35A5558DD9EF9A339C9D061207AF5527D3AEFC9AC99AB6CFBA1CE92F8B62D ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
15:32:00.0164 0x161c  iusb3xhc - ok
15:32:00.0180 0x161c  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
15:32:00.0180 0x161c  kbdclass - ok
15:32:00.0226 0x161c  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
15:32:00.0226 0x161c  kbdhid - ok
15:32:00.0226 0x161c  [ 07932D7BA536B0BB58306A156A9AFC31, 315AA4503A9C69E476D796C8DC6D4800A623B942C8707A15A94A892E94D123D9 ] KeyIso          C:\Windows\system32\lsass.exe
15:32:00.0226 0x161c  KeyIso - ok
15:32:00.0336 0x161c  [ 9040B2FC13E0D0C9B1CCF0E5889FD16C, 020AB79841A4A9BB5AAF9EB9464039062A53F1ADAC7D44C2B90940C6BE242332 ] kinonivd        C:\Windows\system32\DRIVERS\kinonivd.sys
15:32:00.0398 0x161c  kinonivd - ok
15:32:00.0429 0x161c  [ 00542DAB7A3F7446791886A0F777B318, F38354A83E16FB6E7DC59942217B0CAA747B70AAE6A6CB3C63C42ED0A8035AEB ] KINONI_Wave     C:\Windows\system32\drivers\kinonivad.sys
15:32:00.0429 0x161c  KINONI_Wave - ok
15:32:00.0429 0x161c  KMService - ok
15:32:00.0445 0x161c  [ EB7BB4F58971F4FE099B3CE127346563, 6CE7BF43B5775ABF954508B4B02E441C169990FDFDF35FFE3137C85C1231695B ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
15:32:00.0445 0x161c  KSecDD - ok
15:32:00.0460 0x161c  [ 6EBBA531A455E8F1092FD530A8682A97, 658F9ACADD422A2F1D48120FB4FCBB2E8F0CF245C07D439A2611878E82C61A01 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
15:32:00.0460 0x161c  KSecPkg - ok
15:32:00.0476 0x161c  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
15:32:00.0476 0x161c  ksthunk - ok
15:32:00.0523 0x161c  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
15:32:00.0523 0x161c  KtmRm - ok
15:32:00.0570 0x161c  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
15:32:00.0570 0x161c  LanmanServer - ok
15:32:00.0570 0x161c  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:32:00.0585 0x161c  LanmanWorkstation - ok
15:32:00.0632 0x161c  [ 17325C9B9ADB2BB99049936D0C9812C8, 70ADDC85FD5757BC9C4B97F382B25A19851FF8275021FFC04A81E208A604F83E ] LGBusEnum       C:\Windows\system32\drivers\LGBusEnum.sys
15:32:00.0648 0x161c  LGBusEnum - ok
15:32:00.0726 0x161c  [ 2D7F1C02B94D6F0F3E10107E5EA8E141, 93B266F38C3C3EAAB475D81597ABBD7CC07943035068BB6FD670DBBE15DE0131 ] LGCoreTemp      C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys
15:32:00.0726 0x161c  LGCoreTemp - ok
15:32:00.0772 0x161c  [ C7AF05942E041D4B1F345ACF79993BB3, E8FAAE356C99A11F6CF17640FD9C67F87AFBFEFB70C458CB85178F2AD94DF848 ] LGJoyXlCore     C:\Windows\system32\drivers\LGJoyXlCore.sys
15:32:00.0772 0x161c  LGJoyXlCore - ok
15:32:00.0804 0x161c  [ 1DDB8DE3D6EEF31EDCF4977B2D2FAACC, 24291B522A596E2D9A1CDAC192DB1C7422D5DD0E87E5C8A5F5E2CAA90296BF23 ] LGVirHid        C:\Windows\system32\drivers\LGVirHid.sys
15:32:00.0819 0x161c  LGVirHid - ok
15:32:01.0006 0x161c  [ B35E747D66D0F483457DFDD2DEB8D6FD, 7111605854FECFCF1CBA99DC8AC85AF61FF690CB0A1F56C218DAC22D447F1919 ] LiveUpdateSvc   C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
15:32:01.0038 0x161c  LiveUpdateSvc - ok
15:32:01.0084 0x161c  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
15:32:01.0084 0x161c  lltdio - ok
15:32:01.0116 0x161c  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
15:32:01.0116 0x161c  lltdsvc - ok
15:32:01.0116 0x161c  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
15:32:01.0116 0x161c  lmhosts - ok
15:32:01.0131 0x161c  [ F22EC985B9BE0788B5DB4F0162131CCF, 015A5E0396240373ED9EC5026C53CD5E03AE31688A984C47E071704B0FE8D552 ] LogiRegistryService C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
15:32:01.0131 0x161c  LogiRegistryService - ok
15:32:01.0147 0x161c  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
15:32:01.0147 0x161c  LSI_FC - ok
15:32:01.0162 0x161c  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
15:32:01.0162 0x161c  LSI_SAS - ok
15:32:01.0194 0x161c  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
15:32:01.0194 0x161c  LSI_SAS2 - ok
15:32:01.0194 0x161c  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
15:32:01.0194 0x161c  LSI_SCSI - ok
15:32:01.0225 0x161c  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
15:32:01.0225 0x161c  luafv - ok
15:32:01.0272 0x161c  [ 78488AF2AB2111D67B3C4044707A519B, 7AA71B9C4C7949A1A21F60EF7CCEDE0079794990696B60557B5DC86F4D47223A ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
15:32:01.0272 0x161c  MBAMSwissArmy - ok
15:32:01.0303 0x161c  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
15:32:01.0303 0x161c  Mcx2Svc - ok
15:32:01.0318 0x161c  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
15:32:01.0318 0x161c  megasas - ok
15:32:01.0350 0x161c  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
15:32:01.0350 0x161c  MegaSR - ok
15:32:01.0365 0x161c  [ 8751062F2F7EC78DE92D778A08099DDE, F10BE771FF9E02A51CF3A167BB967167DE4F66647D7F1508CB27D8FDD8623700 ] MEIx64          C:\Windows\system32\DRIVERS\TeeDriverx64.sys
15:32:01.0365 0x161c  MEIx64 - ok
15:32:01.0412 0x161c  Microsoft SharePoint Workspace Audit Service - ok
15:32:01.0443 0x161c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
15:32:01.0443 0x161c  MMCSS - ok
15:32:01.0474 0x161c  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
15:32:01.0474 0x161c  Modem - ok
15:32:01.0506 0x161c  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
15:32:01.0506 0x161c  monitor - ok
15:32:01.0521 0x161c  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
15:32:01.0521 0x161c  mouclass - ok
15:32:01.0521 0x161c  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
15:32:01.0521 0x161c  mouhid - ok
15:32:01.0552 0x161c  [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
15:32:01.0568 0x161c  mountmgr - ok
15:32:01.0584 0x161c  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
15:32:01.0584 0x161c  mpio - ok
15:32:01.0599 0x161c  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
15:32:01.0599 0x161c  mpsdrv - ok
15:32:01.0630 0x161c  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
15:32:01.0630 0x161c  MpsSvc - ok
15:32:01.0693 0x161c  [ D7ADC2B83CA0B0381F75A98351F72CEE, 05476B7CA0486DF770AE492B5A90C85E3D3E7485152EB2FA30A19EC9BE44ED81 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
15:32:01.0693 0x161c  MRxDAV - ok
15:32:01.0724 0x161c  [ 341C65D6D4E9AB705258AC83511F7ADD, EE3F0874DA79C95DE5E5CEC94B1545C049DE21D8F05F63184F9F5DE9553C96A0 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
15:32:01.0724 0x161c  mrxsmb - ok
15:32:01.0755 0x161c  [ F93EDDF0B69760456C6E0D73405AC078, 9EE64BAA6449A053C152783AD102DE88C3DBC79F8BEF25E5914DC736D495E9F3 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:32:01.0755 0x161c  mrxsmb10 - ok
15:32:01.0755 0x161c  [ A558D659B722FE5FB8C6E1BF288F7316, 3E57FF595E9EA9D53881955E7652793888A4E55743190D653A9239FF07653D7B ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:32:01.0771 0x161c  mrxsmb20 - ok
15:32:01.0802 0x161c  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
15:32:01.0802 0x161c  msahci - ok
15:32:01.0833 0x161c  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
15:32:01.0833 0x161c  msdsm - ok
15:32:01.0849 0x161c  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
15:32:01.0849 0x161c  MSDTC - ok
15:32:01.0864 0x161c  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
15:32:01.0864 0x161c  Msfs - ok
15:32:01.0880 0x161c  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
15:32:01.0880 0x161c  mshidkmdf - ok
15:32:01.0880 0x161c  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
15:32:01.0880 0x161c  msisadrv - ok
15:32:01.0896 0x161c  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
15:32:01.0911 0x161c  MSiSCSI - ok
15:32:01.0911 0x161c  msiserver - ok
15:32:01.0911 0x161c  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
15:32:01.0911 0x161c  MSKSSRV - ok
15:32:01.0927 0x161c  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
15:32:01.0927 0x161c  MSPCLOCK - ok
15:32:01.0927 0x161c  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
15:32:01.0927 0x161c  MSPQM - ok
15:32:01.0958 0x161c  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
15:32:01.0958 0x161c  MsRPC - ok
15:32:01.0974 0x161c  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
15:32:01.0974 0x161c  mssmbios - ok
15:32:01.0974 0x161c  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
15:32:01.0974 0x161c  MSTEE - ok
15:32:01.0989 0x161c  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
15:32:02.0005 0x161c  MTConfig - ok
15:32:02.0005 0x161c  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
15:32:02.0005 0x161c  Mup - ok
15:32:02.0036 0x161c  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
15:32:02.0036 0x161c  napagent - ok
15:32:02.0067 0x161c  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
15:32:02.0067 0x161c  NativeWifiP - ok
15:32:02.0145 0x161c  [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS            C:\Windows\system32\drivers\ndis.sys
15:32:02.0161 0x161c  NDIS - ok
15:32:02.0176 0x161c  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
15:32:02.0176 0x161c  NdisCap - ok
15:32:02.0192 0x161c  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
15:32:02.0192 0x161c  NdisTapi - ok
15:32:02.0208 0x161c  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
15:32:02.0208 0x161c  Ndisuio - ok
15:32:02.0223 0x161c  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
15:32:02.0223 0x161c  NdisWan - ok
15:32:02.0239 0x161c  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
15:32:02.0239 0x161c  NDProxy - ok
15:32:02.0254 0x161c  [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl         C:\Windows\system32\DRIVERS\netaapl64.sys
15:32:02.0254 0x161c  Netaapl - ok
15:32:02.0270 0x161c  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
15:32:02.0270 0x161c  NetBIOS - ok
15:32:02.0286 0x161c  [ E47D571FEC2C76E867935109AB2A770C, F349D25890B6F476B106FD75BFB081DB737CA9B224D95E44927942FFF2DF82CD ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
15:32:02.0286 0x161c  NetBT - ok
15:32:02.0317 0x161c  [ 07932D7BA536B0BB58306A156A9AFC31, 315AA4503A9C69E476D796C8DC6D4800A623B942C8707A15A94A892E94D123D9 ] Netlogon        C:\Windows\system32\lsass.exe
15:32:02.0317 0x161c  Netlogon - ok
15:32:02.0332 0x161c  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
15:32:02.0348 0x161c  Netman - ok
15:32:02.0395 0x161c  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:32:02.0395 0x161c  NetMsmqActivator - ok
15:32:02.0395 0x161c  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:32:02.0410 0x161c  NetPipeActivator - ok
15:32:02.0426 0x161c  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
15:32:02.0442 0x161c  netprofm - ok
15:32:02.0442 0x161c  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:32:02.0442 0x161c  NetTcpActivator - ok
15:32:02.0442 0x161c  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:32:02.0457 0x161c  NetTcpPortSharing - ok
15:32:02.0473 0x161c  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
15:32:02.0473 0x161c  nfrd960 - ok
15:32:02.0504 0x161c  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
15:32:02.0520 0x161c  NlaSvc - ok
15:32:02.0535 0x161c  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
15:32:02.0535 0x161c  Npfs - ok
15:32:02.0535 0x161c  npggsvc - ok
15:32:02.0535 0x161c  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
15:32:02.0535 0x161c  nsi - ok
15:32:02.0551 0x161c  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
15:32:02.0551 0x161c  nsiproxy - ok
15:32:02.0629 0x161c  [ 47B2D0B31BDC3EBE6090228E2BA3764D, 984A4B38300954164BCBF57EC1A09C18B53779E60A26E9618B50E26016735787 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
15:32:02.0676 0x161c  Ntfs - ok
15:32:02.0676 0x161c  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
15:32:02.0676 0x161c  Null - ok
15:32:02.0722 0x161c  [ 1F99AD85DC4F9E322CDE2363378CD374, 5E80D10FF0BC46ECF6F1F2294F35A0A7FD76E6F0B4534FD45C9AA8C57AE97F68 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
15:32:02.0722 0x161c  NVHDA - ok
15:32:03.0415 0x161c  [ B67A5ECFA7043F3CE21CBA39B2682976, 24CC4F146B21B2DB432B68E0E3D58F6D9C6FEF79F6714894B3C96EE2AEF56571 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:32:03.0565 0x161c  nvlddmkm - ok
15:32:03.0643 0x161c  [ FA9BC0048ED46C5FB5C93EAFFC97F63D, 2014C08B55940E055F6243E81F0227861272F2B6353D05BFEF364ED4F11EA9B0 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
15:32:03.0674 0x161c  NvNetworkService - ok
15:32:03.0705 0x161c  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
15:32:03.0705 0x161c  nvraid - ok
15:32:03.0705 0x161c  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
15:32:03.0721 0x161c  nvstor - ok
15:32:03.0752 0x161c  [ DEF76B479C3525952D0BD71E881E07B0, DC4B13AA97F61542F55F92769F9C8C5EB253BD6EB165EF064107D11158CD412F ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
15:32:03.0768 0x161c  NvStreamKms - ok
15:32:03.0846 0x161c  [ AF5BE3694A76365874B8967331049F2C, F704A0403B63E856EE9ECCE7C913650F5FF928F0872035EE73E1AE1CD54BC046 ] NvStreamNetworkSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
15:32:03.0924 0x161c  NvStreamNetworkSvc - ok
15:32:03.0971 0x161c  [ 77BE9E1AFCE995652A1C4FF4C8A0F839, 4AD981BCC349D413B3CCDC06DC8D6D2C2648D049726D6825E35A9A91D4C072FF ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
15:32:04.0033 0x161c  NvStreamSvc - ok
15:32:04.0095 0x161c  [ A63CAFB74A09F6D32A80B2B2C883F77B, 73197C3CC7FB4EB0993491714D4DA93D5C24DAC4FF2A941181DEC3EC74D3CA32 ] nvsvc           C:\Windows\system32\nvvsvc.exe
15:32:04.0111 0x161c  nvsvc - ok
15:32:04.0127 0x161c  [ F37FE6B15A987AEEC08EEF531F2FAED7, CC768E7DE80C7A8CB2392F9BC528212B8A3A35A30A222ED0B0B959051E6F8065 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
15:32:04.0127 0x161c  nvvad_WaveExtensible - ok
15:32:04.0158 0x161c  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
15:32:04.0158 0x161c  nv_agp - ok
15:32:04.0158 0x161c  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
15:32:04.0158 0x161c  ohci1394 - ok
15:32:04.0205 0x161c  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:32:04.0205 0x161c  ose - ok
15:32:04.0329 0x161c  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
15:32:04.0439 0x161c  osppsvc - ok
15:32:04.0470 0x161c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
15:32:04.0470 0x161c  p2pimsvc - ok
15:32:04.0485 0x161c  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
15:32:04.0485 0x161c  p2psvc - ok
15:32:04.0501 0x161c  PAExec - ok
15:32:04.0517 0x161c  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
15:32:04.0517 0x161c  Parport - ok
15:32:04.0563 0x161c  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
15:32:04.0563 0x161c  partmgr - ok
15:32:04.0610 0x161c  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc          C:\Windows\System32\pcasvc.dll
15:32:04.0610 0x161c  PcaSvc - ok
15:32:04.0610 0x161c  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
15:32:04.0626 0x161c  pci - ok
15:32:04.0657 0x161c  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
15:32:04.0657 0x161c  pciide - ok
15:32:04.0673 0x161c  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
15:32:04.0688 0x161c  pcmcia - ok
15:32:04.0704 0x161c  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
15:32:04.0704 0x161c  pcw - ok
15:32:04.0719 0x161c  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
15:32:04.0735 0x161c  PEAUTH - ok
15:32:04.0782 0x161c  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
15:32:04.0829 0x161c  PeerDistSvc - ok
15:32:04.0860 0x161c  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
15:32:04.0860 0x161c  PerfHost - ok
15:32:04.0891 0x161c  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
15:32:04.0938 0x161c  pla - ok
15:32:04.0985 0x161c  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
15:32:04.0985 0x161c  PlugPlay - ok
15:32:04.0985 0x161c  PnkBstrA - ok
15:32:05.0000 0x161c  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
15:32:05.0000 0x161c  PNRPAutoReg - ok
15:32:05.0016 0x161c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
15:32:05.0016 0x161c  PNRPsvc - ok
15:32:05.0063 0x161c  [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
15:32:05.0063 0x161c  PolicyAgent - ok
15:32:05.0125 0x161c  [ C1AA2E82F0FFF040FE9A1B7F0D91A577, 06A3E7C25278D4D9A924486637685DD1551F638309DD31D11ACF2C9F51AAAF29 ] PornTime Updater C:\Users\Armaan\AppData\Roaming\PT\updater.exe
15:32:05.0141 0x161c  PornTime Updater - ok
15:32:05.0156 0x161c  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
15:32:05.0156 0x161c  Power - ok
15:32:05.0172 0x161c  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
15:32:05.0172 0x161c  PptpMiniport - ok
15:32:05.0187 0x161c  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
15:32:05.0187 0x161c  Processor - ok
15:32:05.0234 0x161c  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
15:32:05.0234 0x161c  ProfSvc - ok
15:32:05.0250 0x161c  [ 07932D7BA536B0BB58306A156A9AFC31, 315AA4503A9C69E476D796C8DC6D4800A623B942C8707A15A94A892E94D123D9 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:32:05.0250 0x161c  ProtectedStorage - ok
15:32:05.0250 0x161c  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
15:32:05.0250 0x161c  Psched - ok
15:32:05.0328 0x161c  [ E3750B5BAD515EF543D87B0D50DF0782, F24DE54074C544ED6E87E4D2E6E2B875EEBA066D5B925763550B5FB3990BBFB8 ] QHActiveDefense C:\Program Files (x86)\360\Total Security\safemon\QHActiveDefense.exe
15:32:05.0343 0x161c  QHActiveDefense - ok
15:32:05.0406 0x161c  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
15:32:05.0437 0x161c  ql2300 - ok
15:32:05.0453 0x161c  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
15:32:05.0453 0x161c  ql40xx - ok
15:32:05.0468 0x161c  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
15:32:05.0468 0x161c  QWAVE - ok
15:32:05.0484 0x161c  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
15:32:05.0484 0x161c  QWAVEdrv - ok
15:32:05.0499 0x161c  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
15:32:05.0499 0x161c  RasAcd - ok
15:32:05.0515 0x161c  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
15:32:05.0515 0x161c  RasAgileVpn - ok
15:32:05.0531 0x161c  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
15:32:05.0531 0x161c  RasAuto - ok
15:32:05.0546 0x161c  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
15:32:05.0546 0x161c  Rasl2tp - ok
15:32:05.0562 0x161c  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
15:32:05.0562 0x161c  RasMan - ok
15:32:05.0577 0x161c  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
15:32:05.0577 0x161c  RasPppoe - ok
15:32:05.0593 0x161c  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
15:32:05.0655 0x161c  RasSstp - ok
15:32:05.0858 0x161c  [ 0BB633F751E7AB31514B033ED920EAF7, 7B80BB63DFBBFCA4F98A57726395CD8F9D571E22CBE3A69221C4A0261CDBD677 ] Razer Chroma SDK Service C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
15:32:05.0858 0x161c  Razer Chroma SDK Service - ok
15:32:05.0905 0x161c  [ 5332223C0D4CEC95787607906B53E861, EA1FB6373EFA303D0A69DB49D4B05BA489D1FB428E9AF948FA4FAFB94264AE4E ] Razer Game Scanner Service C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
15:32:05.0905 0x161c  Razer Game Scanner Service - ok
15:32:05.0921 0x161c  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
15:32:05.0936 0x161c  rdbss - ok
15:32:05.0936 0x161c  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
15:32:05.0936 0x161c  rdpbus - ok
15:32:05.0952 0x161c  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
15:32:05.0952 0x161c  RDPCDD - ok
15:32:05.0983 0x161c  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
15:32:05.0983 0x161c  RDPDR - ok
15:32:05.0999 0x161c  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
15:32:05.0999 0x161c  RDPENCDD - ok
15:32:06.0014 0x161c  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
15:32:06.0014 0x161c  RDPREFMP - ok
15:32:06.0061 0x161c  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
15:32:06.0061 0x161c  RDPWD - ok
15:32:06.0077 0x161c  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
15:32:06.0092 0x161c  rdyboost - ok
15:32:06.0123 0x161c  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
15:32:06.0123 0x161c  RemoteAccess - ok
15:32:06.0139 0x161c  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
15:32:06.0139 0x161c  RemoteRegistry - ok
15:32:06.0155 0x161c  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
15:32:06.0155 0x161c  RpcEptMapper - ok
15:32:06.0170 0x161c  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
15:32:06.0186 0x161c  RpcLocator - ok
15:32:06.0217 0x161c  [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] RpcSs           C:\Windows\system32\rpcss.dll
15:32:06.0233 0x161c  RpcSs - ok
15:32:06.0233 0x161c  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
15:32:06.0248 0x161c  rspndr - ok
15:32:06.0279 0x161c  [ 439F755B450CF66B139742CA32AACF9F, DB047454CE026E71F7F5A0B4158D667D7E439A2B5A4F3CC008649FCDBA22A727 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
15:32:06.0295 0x161c  RTL8167 - ok
15:32:06.0311 0x161c  [ C780531A3929B27933DF647F7FAD227C, 824484C843ED2981471C023C2CC037EA0228227BCB0B9959B2B9AC550A76B934 ] rzdaendpt       C:\Windows\system32\DRIVERS\rzdaendpt.sys
15:32:06.0311 0x161c  rzdaendpt - ok
15:32:06.0357 0x161c  [ EAF3FD708E67D45D397610E9C476AEE8, 8C1144A833C93761EAAEB78356922A3DB6B08C078847DFC4010BE26A73F695DA ] rzjstk          C:\Windows\system32\DRIVERS\rzjstk.sys
15:32:06.0357 0x161c  rzjstk - ok
15:32:06.0420 0x161c  [ 87CCED5B8235426BAE7F6120DBCB5291, 322840CF149B6A4E5C824913B490ACD18BF08A50FCD5BF92AE547131DA96D6A8 ] rzkeypadendpt   C:\Windows\system32\DRIVERS\rzkeypadendpt.sys
15:32:06.0420 0x161c  rzkeypadendpt - ok
15:32:06.0560 0x161c  [ 9FE061CEBE2478FABC37BBA9557C6DAA, 8D995FD75DDCC14C7C63661314F0061CD827D89CE23116842082ACF528664E37 ] RzKLService     C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
15:32:06.0560 0x161c  RzKLService - ok
15:32:06.0607 0x161c  [ 434A22267365AEF88B3AD451B65988AE, 75EFCFF52501E7E3E7B50C4D793DD55F085E378DA1C78772244AB27708409900 ] rzpmgrk         C:\Windows\system32\drivers\rzpmgrk.sys
15:32:06.0607 0x161c  rzpmgrk - ok
15:32:06.0669 0x161c  [ F8A13D4413A93DD005FAD116CBD6B6F7, 8ED0C00920CE76E832701D45117ED00B12E20588CB6FE8039FBCCDFEF9841047 ] rzpnk           C:\Windows\system32\drivers\rzpnk.sys
15:32:06.0669 0x161c  rzpnk - ok
15:32:06.0716 0x161c  [ E7E36EA112048AC5AC8AA15B6EC35109, 75AC0FF6E939FFCA1DB3E12E1CA2725AF9527867A25B3938AC5DF20620352F22 ] rzudd           C:\Windows\system32\DRIVERS\rzudd.sys
15:32:06.0716 0x161c  rzudd - ok
15:32:06.0763 0x161c  [ 6988F8A7C8ACF1B9642428CC896DA646, E393B4DCF8B7A11594FC7AF28E92CD7A6E897BD3D53BFE3C00B9E366AF45ECBC ] rzvkeyboard     C:\Windows\system32\DRIVERS\rzvkeyboard.sys
15:32:06.0763 0x161c  rzvkeyboard - ok
15:32:06.0779 0x161c  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
15:32:06.0779 0x161c  s3cap - ok
15:32:06.0810 0x161c  [ 07932D7BA536B0BB58306A156A9AFC31, 315AA4503A9C69E476D796C8DC6D4800A623B942C8707A15A94A892E94D123D9 ] SamSs           C:\Windows\system32\lsass.exe
15:32:06.0825 0x161c  SamSs - ok
15:32:06.0997 0x161c  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
15:32:06.0997 0x161c  sbp2port - ok
15:32:07.0059 0x161c  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
15:32:07.0106 0x161c  SCardSvr - ok
15:32:07.0184 0x161c  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
15:32:07.0184 0x161c  scfilter - ok
15:32:07.0293 0x161c  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\Windows\system32\schedsvc.dll
15:32:07.0309 0x161c  Schedule - ok
15:32:07.0340 0x161c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
15:32:07.0340 0x161c  SCPolicySvc - ok
15:32:07.0387 0x161c  [ 0447065A6E10774EFCECFDD0EB970A79, 384A9AC72E756F96D43EE4B144A466564476AFD8778092C979116BB29A514433 ] ScpVBus         C:\Windows\system32\DRIVERS\ScpVBus.sys
15:32:07.0387 0x161c  ScpVBus - ok
15:32:07.0403 0x161c  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
15:32:07.0403 0x161c  SDRSVC - ok
15:32:07.0418 0x161c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
15:32:07.0418 0x161c  secdrv - ok
15:32:07.0465 0x161c  [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon        C:\Windows\system32\seclogon.dll
15:32:07.0481 0x161c  seclogon - ok
15:32:07.0496 0x161c  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
15:32:07.0496 0x161c  SENS - ok
15:32:07.0496 0x161c  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
15:32:07.0512 0x161c  SensrSvc - ok
15:32:07.0512 0x161c  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
15:32:07.0527 0x161c  Serenum - ok
15:32:07.0543 0x161c  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
15:32:07.0543 0x161c  Serial - ok
15:32:07.0559 0x161c  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
15:32:07.0559 0x161c  sermouse - ok
15:32:07.0590 0x161c  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
15:32:07.0590 0x161c  SessionEnv - ok
15:32:07.0621 0x161c  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
15:32:07.0621 0x161c  sffdisk - ok
15:32:07.0652 0x161c  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
15:32:07.0652 0x161c  sffp_mmc - ok
15:32:07.0652 0x161c  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
15:32:07.0668 0x161c  sffp_sd - ok
15:32:07.0683 0x161c  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
15:32:07.0683 0x161c  sfloppy - ok
15:32:07.0777 0x161c  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
15:32:07.0793 0x161c  SharedAccess - ok
15:32:07.0824 0x161c  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:32:07.0824 0x161c  ShellHWDetection - ok
15:32:07.0839 0x161c  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
15:32:07.0839 0x161c  SiSRaid2 - ok
15:32:07.0855 0x161c  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
15:32:07.0855 0x161c  SiSRaid4 - ok
15:32:07.0902 0x161c  [ 4E6FAEE3F259DAC82213D935785991FB, ADA019AD261BBEAE78495B508B4D375BEC1005DF119F20897D29C3C613A0CA46 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
15:32:07.0917 0x161c  SkypeUpdate - ok
15:32:07.0917 0x161c  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
15:32:07.0917 0x161c  Smb - ok
15:32:07.0933 0x161c  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
15:32:07.0933 0x161c  SNMPTRAP - ok
15:32:07.0949 0x161c  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
15:32:07.0949 0x161c  spldr - ok
15:32:07.0995 0x161c  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
15:32:08.0011 0x161c  Spooler - ok
15:32:08.0089 0x161c  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
15:32:08.0136 0x161c  sppsvc - ok
15:32:08.0151 0x161c  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
15:32:08.0151 0x161c  sppuinotify - ok
15:32:08.0276 0x161c  [ EC666682FE8344CF7E6ED69E74FA9F4F, DCD2A1C046425630689E2C9A6A6E356FE5A2A6664D12C20CFE236FCB32240DF9 ] srv             C:\Windows\system32\DRIVERS\srv.sys
15:32:08.0323 0x161c  srv - ok
15:32:08.0432 0x161c  [ E450C0318DCE8ED28ED272C8806B8495, D2FD459F8C5E42103EF2F71421FA175A4F0821F8C2A3763093122D433D1C50FB ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
15:32:08.0448 0x161c  srv2 - ok
15:32:08.0526 0x161c  [ 9C12C78AD36C23D925711A4640228225, FF72C23F2A08EDF0C41BAF1EB0245AB44FF91365C5466F09C47A8F0928D20994 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
15:32:08.0526 0x161c  srvnet - ok
15:32:08.0541 0x161c  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
15:32:08.0541 0x161c  SSDPSRV - ok
15:32:08.0557 0x161c  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
15:32:08.0557 0x161c  SstpSvc - ok
15:32:08.0697 0x161c  [ 04F9B53224689BB3638CC2D3DA721E5C, D073C8D5CEFD59CC3D4834A6B92EA8FE113A73C400C27BB6B3D215522FAE17C3 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
15:32:08.0729 0x161c  Steam Client Service - ok
15:32:08.0822 0x161c  [ 215AC49E16A2E5E31CEA79C6E20B0860, 1637989DA983462C13D7578FA8FDE22561F0F8A1DF69CAFFE34E230DDBBF5825 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
15:32:08.0838 0x161c  Stereo Service - ok
15:32:08.0853 0x161c  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
15:32:08.0853 0x161c  stexstor - ok
15:32:08.0869 0x161c  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
15:32:08.0885 0x161c  stisvc - ok
15:32:08.0900 0x161c  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
15:32:08.0900 0x161c  storflt - ok
15:32:08.0931 0x161c  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
15:32:08.0931 0x161c  StorSvc - ok
15:32:08.0931 0x161c  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
15:32:08.0947 0x161c  storvsc - ok
15:32:08.0963 0x161c  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
15:32:08.0963 0x161c  swenum - ok
15:32:09.0072 0x161c  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
15:32:09.0072 0x161c  SwitchBoard - ok
15:32:09.0103 0x161c  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
15:32:09.0119 0x161c  swprv - ok
15:32:09.0197 0x161c  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll
15:32:09.0212 0x161c  SysMain - ok
15:32:09.0228 0x161c  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:32:09.0228 0x161c  TabletInputService - ok
15:32:09.0275 0x161c  [ B7D10C680D4C9D2224525B10E64DE6F1, 036263FEA76478B35099C2EF854B4AB8785EA40C3053FC7B2533ADC907E5A324 ] taphss6         C:\Windows\system32\DRIVERS\taphss6.sys
15:32:09.0275 0x161c  taphss6 - ok
15:32:09.0290 0x161c  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
15:32:09.0306 0x161c  TapiSrv - ok
15:32:09.0384 0x161c  [ B2875D7ABB82867DC3AA03D991940201, F954C33FBA912A517B59330F6438C1953F9F1D8F4D8FD25945EB836A1DB07ABB ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
15:32:09.0431 0x161c  Tcpip - ok
15:32:09.0477 0x161c  [ B2875D7ABB82867DC3AA03D991940201, F954C33FBA912A517B59330F6438C1953F9F1D8F4D8FD25945EB836A1DB07ABB ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
15:32:09.0493 0x161c  TCPIP6 - ok
15:32:09.0540 0x161c  [ 7FE5586314EE7D6AA8483264A089E5AF, 4E3EA68713A45C22F1B9A1AA125E15D06D0C5E637B815537431ADFB6D7563879 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
15:32:09.0540 0x161c  tcpipreg - ok
15:32:09.0540 0x161c  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
15:32:09.0540 0x161c  TDPIPE - ok
15:32:09.0587 0x161c  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
15:32:09.0587 0x161c  TDTCP - ok
15:32:09.0618 0x161c  [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
15:32:09.0618 0x161c  tdx - ok
15:32:09.0867 0x161c  [ 2E7EFE9F59DA5EF7AAAE5712324FAAFD, 960130B0559F59AF3FF6DA1E6D11CAF663CEA2BCDAC3263699D67D20C1360318 ] TeamViewer      D:\Program Files\TeamViewer\TeamViewer_Service.exe
15:32:10.0055 0x161c  TeamViewer - ok
15:32:10.0070 0x161c  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
15:32:10.0070 0x161c  TermDD - ok
15:32:10.0148 0x161c  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
15:32:10.0164 0x161c  TermService - ok
15:32:10.0164 0x161c  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
15:32:10.0179 0x161c  Themes - ok
15:32:10.0195 0x161c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
15:32:10.0195 0x161c  THREADORDER - ok
15:32:10.0226 0x161c  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
15:32:10.0226 0x161c  TrkWks - ok
15:32:10.0273 0x161c  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:32:10.0273 0x161c  TrustedInstaller - ok
15:32:10.0320 0x161c  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
15:32:10.0320 0x161c  tssecsrv - ok
15:32:10.0335 0x161c  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
15:32:10.0335 0x161c  TsUsbFlt - ok
15:32:10.0351 0x161c  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
15:32:10.0367 0x161c  TsUsbGD - ok
15:32:10.0382 0x161c  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
15:32:10.0382 0x161c  tunnel - ok
15:32:10.0413 0x161c  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
15:32:10.0413 0x161c  uagp35 - ok
15:32:10.0445 0x161c  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
15:32:10.0445 0x161c  udfs - ok
15:32:10.0460 0x161c  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
15:32:10.0460 0x161c  UI0Detect - ok
15:32:10.0476 0x161c  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
15:32:10.0476 0x161c  uliagpkx - ok
15:32:10.0491 0x161c  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
15:32:10.0491 0x161c  umbus - ok
15:32:10.0491 0x161c  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
15:32:10.0507 0x161c  UmPass - ok
15:32:10.0523 0x161c  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
15:32:10.0523 0x161c  UmRdpService - ok
15:32:10.0538 0x161c  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
15:32:10.0554 0x161c  upnphost - ok
15:32:10.0585 0x161c  [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
15:32:10.0585 0x161c  USBAAPL64 - ok
15:32:10.0616 0x161c  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
15:32:10.0803 0x161c  usbccgp - ok
15:32:10.0928 0x161c  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
15:32:10.0928 0x161c  usbcir - ok
15:32:11.0069 0x161c  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
15:32:11.0084 0x161c  usbehci - ok
15:32:11.0084 0x161c  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
15:32:11.0100 0x161c  usbhub - ok
15:32:11.0115 0x161c  [ 58E546BBAF87664FC57E0F6081E4F609, 1DD99D57369A0069654432AB5325AFD8F7D422D531E053EA05FF664BA6BDAEF9 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
15:32:11.0115 0x161c  usbohci - ok
15:32:11.0131 0x161c  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
15:32:11.0131 0x161c  usbprint - ok
15:32:11.0162 0x161c  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
15:32:11.0162 0x161c  usbscan - ok
15:32:11.0193 0x161c  [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:32:11.0209 0x161c  USBSTOR - ok
15:32:11.0225 0x161c  [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
15:32:11.0225 0x161c  usbuhci - ok
15:32:11.0225 0x161c  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
15:32:11.0225 0x161c  UxSms - ok
15:32:11.0271 0x161c  [ 4A02FD1E93E127CCEC5C6B74B9DFC72E, 57A8F341559E218D4E0D84388F46B322174CC2A31A82771863B846E3AC632C2D ] UxTuneUp        C:\Windows\System32\uxtuneup.dll
15:32:11.0271 0x161c  UxTuneUp - ok
15:32:11.0271 0x161c  [ 07932D7BA536B0BB58306A156A9AFC31, 315AA4503A9C69E476D796C8DC6D4800A623B942C8707A15A94A892E94D123D9 ] VaultSvc        C:\Windows\system32\lsass.exe
15:32:11.0271 0x161c  VaultSvc - ok
15:32:11.0287 0x161c  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
15:32:11.0287 0x161c  vdrvroot - ok
15:32:11.0303 0x161c  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
15:32:11.0318 0x161c  vds - ok
15:32:11.0334 0x161c  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
15:32:11.0334 0x161c  vga - ok
15:32:11.0334 0x161c  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
15:32:11.0334 0x161c  VgaSave - ok
15:32:11.0365 0x161c  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
15:32:11.0365 0x161c  vhdmp - ok
15:32:11.0381 0x161c  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
15:32:11.0381 0x161c  viaide - ok
15:32:11.0412 0x161c  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
15:32:11.0412 0x161c  vmbus - ok
15:32:11.0427 0x161c  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
15:32:11.0427 0x161c  VMBusHID - ok
15:32:11.0443 0x161c  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
15:32:11.0443 0x161c  volmgr - ok
15:32:11.0459 0x161c  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
15:32:11.0459 0x161c  volmgrx - ok
15:32:11.0474 0x161c  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
15:32:11.0474 0x161c  volsnap - ok
15:32:11.0490 0x161c  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
15:32:11.0490 0x161c  vsmraid - ok
15:32:11.0552 0x161c  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
15:32:11.0583 0x161c  VSS - ok
15:32:11.0630 0x161c  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
15:32:11.0630 0x161c  vwifibus - ok
15:32:11.0661 0x161c  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
15:32:11.0661 0x161c  W32Time - ok
15:32:11.0693 0x161c  [ 0D67B715AE6729D0B518D20B7A7BAD1C, 05B044CB816CBF54DCB634AC765A5937C76B471722C6D6E1A9C27E7EBAB68913 ] WacHidRouter    C:\Windows\system32\DRIVERS\wachidrouter.sys
15:32:11.0693 0x161c  WacHidRouter - ok
15:32:11.0724 0x161c  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
15:32:11.0724 0x161c  WacomPen - ok
15:32:11.0771 0x161c  [ 1042B08B4336EF3CE34E09435BB33A4A, A42B447B4A9B364BAE329F75D36A906999E8CB754F1B10DE322B6611FF9764F7 ] wacomrouterfilter C:\Windows\system32\DRIVERS\wacomrouterfilter.sys
15:32:11.0771 0x161c  wacomrouterfilter - ok
15:32:11.0802 0x161c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
15:32:11.0802 0x161c  WANARP - ok
15:32:11.0817 0x161c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
15:32:11.0833 0x161c  Wanarpv6 - ok
15:32:11.0895 0x161c  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
15:32:11.0927 0x161c  WatAdminSvc - ok
15:32:11.0958 0x161c  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
15:32:12.0005 0x161c  wbengine - ok
15:32:12.0036 0x161c  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
15:32:12.0036 0x161c  WbioSrvc - ok
15:32:12.0051 0x161c  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
15:32:12.0051 0x161c  wcncsvc - ok
15:32:12.0067 0x161c  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:32:12.0067 0x161c  WcsPlugInService - ok
15:32:12.0083 0x161c  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
15:32:12.0083 0x161c  Wd - ok
15:32:12.0161 0x161c  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
15:32:12.0176 0x161c  Wdf01000 - ok
15:32:12.0207 0x161c  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
15:32:12.0207 0x161c  WdiServiceHost - ok
15:32:12.0223 0x161c  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
15:32:12.0223 0x161c  WdiSystemHost - ok
15:32:12.0239 0x161c  [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient       C:\Windows\System32\webclnt.dll
15:32:12.0254 0x161c  WebClient - ok
15:32:12.0254 0x161c  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
15:32:12.0270 0x161c  Wecsvc - ok
15:32:12.0270 0x161c  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
15:32:12.0270 0x161c  wercplsupport - ok
15:32:12.0285 0x161c  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
15:32:12.0285 0x161c  WerSvc - ok
15:32:12.0301 0x161c  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
15:32:12.0301 0x161c  WfpLwf - ok
15:32:12.0317 0x161c  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
15:32:12.0317 0x161c  WIMMount - ok
15:32:12.0332 0x161c  WinDefend - ok
15:32:12.0332 0x161c  WinHttpAutoProxySvc - ok
15:32:12.0395 0x161c  [ BC67C1E4B36063968E54C3B2E4DB8978, FF4725171C6D4BDE6B258FD19949C7D624F1F8693A26AB1E2E04103FC46484CB ] WinisoCDBus     C:\Windows\system32\drivers\WinisoCDBus.sys
15:32:12.0395 0x161c  WinisoCDBus - ok
15:32:12.0441 0x161c  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
15:32:12.0441 0x161c  Winmgmt - ok
15:32:12.0488 0x161c  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
15:32:12.0551 0x161c  WinRM - ok
15:32:12.0582 0x161c  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
15:32:12.0582 0x161c  WinUsb - ok
15:32:12.0613 0x161c  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
15:32:12.0629 0x161c  Wlansvc - ok
15:32:12.0738 0x161c  [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:32:12.0769 0x161c  wlidsvc - ok
15:32:12.0769 0x161c  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
15:32:12.0785 0x161c  WmiAcpi - ok
15:32:12.0800 0x161c  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
15:32:12.0800 0x161c  wmiApSrv - ok
15:32:12.0800 0x161c  WMPNetworkSvc - ok
15:32:12.0816 0x161c  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
15:32:12.0816 0x161c  WPCSvc - ok
15:32:12.0816 0x161c  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
15:32:12.0831 0x161c  WPDBusEnum - ok
15:32:12.0831 0x161c  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
15:32:12.0847 0x161c  ws2ifsl - ok
15:32:12.0863 0x161c  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
15:32:12.0863 0x161c  wscsvc - ok
15:32:12.0863 0x161c  WSearch - ok
15:32:12.0956 0x161c  [ CD16EB55F78AB1C92A0711F92B04B570, 387FCC84DD142AF66E15871F9D9EF67096EDFBECC6DEB9A8FB75A09168737723 ] WTabletServiceCon C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
15:32:12.0956 0x161c  WTabletServiceCon - ok
15:32:13.0050 0x161c  [ 31F32E0C1A8BA9A37EEC23DE5F27F847, 0180832BC6172C9A4C32B5B222BB3F91EA615A5EBDA98DB79ED4FED258C2D257 ] wuauserv        C:\Windows\system32\wuaueng.dll
15:32:13.0081 0x161c  wuauserv - ok
15:32:13.0128 0x161c  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
15:32:13.0128 0x161c  WudfPf - ok
15:32:13.0143 0x161c  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
15:32:13.0143 0x161c  WUDFRd - ok
15:32:13.0175 0x161c  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
15:32:13.0190 0x161c  wudfsvc - ok
15:32:13.0237 0x161c  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
15:32:13.0237 0x161c  WwanSvc - ok
15:32:13.0268 0x161c  [ 2C6BC21B2D5B58D8B1D638C1704CB494, 0AABCEB627E274E338DDD9BA664BAA128D7C00AF04C95C776C2AFFA6BB17F680 ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
15:32:13.0284 0x161c  xusb21 - ok
15:32:13.0299 0x161c  ================ Scan global ===============================
15:32:13.0346 0x161c  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
15:32:13.0362 0x161c  [ B96D67F1BF78F1005B9D77EA7889F2B8, CD4A75C306E5B2A0898849DC8700548AE2771F6D3618ACB2E8A1A1DB04224B49 ] C:\Windows\system32\winsrv.dll
15:32:13.0455 0x161c  [ B96D67F1BF78F1005B9D77EA7889F2B8, CD4A75C306E5B2A0898849DC8700548AE2771F6D3618ACB2E8A1A1DB04224B49 ] C:\Windows\system32\winsrv.dll
15:32:13.0533 0x161c  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
15:32:13.0596 0x161c  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
15:32:13.0596 0x161c  [ Global ] - ok
15:32:13.0596 0x161c  ================ Scan MBR ==================================
15:32:13.0611 0x161c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:32:13.0783 0x161c  \Device\Harddisk0\DR0 - ok
15:32:13.0783 0x161c  ================ Scan VBR ==================================
15:32:13.0783 0x161c  [ 7D2DFC18A5E9CF9177544BA4DF6DA707 ] \Device\Harddisk0\DR0\Partition1
15:32:13.0783 0x161c  \Device\Harddisk0\DR0\Partition1 - ok
15:32:13.0783 0x161c  [ 6EBEE96E5AA513F6A04AB05FECA17889 ] \Device\Harddisk0\DR0\Partition2
15:32:13.0783 0x161c  \Device\Harddisk0\DR0\Partition2 - ok
15:32:13.0783 0x161c  [ 95021BFF90DF451B47B160B731F8BF5B ] \Device\Harddisk0\DR0\Partition3
15:32:13.0783 0x161c  \Device\Harddisk0\DR0\Partition3 - ok
15:32:13.0783 0x161c  ================ Scan generic autorun ======================
15:32:13.0861 0x161c  [ C8AC55CCB8AB33713522B4CAAFAC0F59, CCEA638F90395F5C1C9DA892227FF4F3A7BC7567DEF8A7B63AFE2A487DADA88A ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
15:32:13.0877 0x161c  NvBackend - ok
15:32:13.0955 0x161c  [ 3FA8EEC7FFE0E8AC5099247EE4345DF7, 32A481F1E38AEA81628E9A9C13481231FA9DD660F143F5331A4A869EB484FADA ] C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
15:32:13.0986 0x161c  QHSafeTray - ok
15:32:14.0048 0x161c  [ E4E7B29D050F5480071984FE6543C311, 9A4D8D1702AE74AB4FE4367EAF4AD6500F59D4F25B3CCACE3EF07613B7B5853C ] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
15:32:14.0064 0x161c  USB3MON - ok
15:32:14.0095 0x161c  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
15:32:14.0126 0x161c  Sidebar - ok
15:32:14.0157 0x161c  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
15:32:14.0157 0x161c  mctadmin - ok
15:32:14.0204 0x161c  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
15:32:14.0204 0x161c  Sidebar - ok
15:32:14.0220 0x161c  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
15:32:14.0220 0x161c  mctadmin - ok
15:32:14.0267 0x161c  [ 7DFCCC67990B6DE7F30F553A4E4612A4, 9FF98D6FD2539CEFC9F42103A7F72388BED6EE590400559B92BC7430228DA36A ] C:\Program Files (x86)\RocketDock\RocketDock.exe
15:32:14.0282 0x161c  RocketDock - ok
15:32:14.0485 0x161c  [ 9E9CF86FC29CB85DA4099433A4DE5263, CB652D4372A85D9A7A226AF44BBF77D00955F8754BD0FE4918DDED65D82883E2 ] C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe
15:32:14.0579 0x161c  DisplayFusion - ok
15:32:14.0688 0x161c  [ 6F4E4E5B2C2B9922ED022CBA4266B375, 6B646D7ED0E14F21DC52FB6701837A8C1553AE4F4BD89682F21BB8B23161BB03 ] D:\Program Files\Steam\steam.exe
15:32:14.0719 0x161c  Steam - ok
15:32:14.0719 0x161c  Waiting for KSN requests completion. In queue: 143
15:32:15.0720 0x161c  Waiting for KSN requests completion. In queue: 143
15:32:16.0735 0x161c  Waiting for KSN requests completion. In queue: 143
15:32:17.0749 0x161c  Waiting for KSN requests completion. In queue: 143
15:32:18.0763 0x161c  AV detected via SS2: 360 Total Security, C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe ( 8.8.0.1012 ), 0x51000 ( enabled : updated )
15:32:18.0763 0x161c  Win FW state via NFP2: enabled ( trusted )
15:32:19.0091 0x161c  ============================================================
15:32:19.0091 0x161c  Scan finished
15:32:19.0091 0x161c  ============================================================
15:32:19.0091 0x18cc  Detected object count: 0
15:32:19.0091 0x18cc  Actual detected object count: 0
15:33:06.0017 0x1a9c  Deinitialize success
 
Malwarebytes Log
 
Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 30-Sep-16
Scan Time: 3:37 PM
Logfile: 
Administrator: Yes
 
Version: 2.2.1.1043
Malware Database: v2016.09.30.06
Rootkit Database: v2016.09.26.02
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
 
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Armaan
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 434602
Time Elapsed: 35 min, 34 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 2
RiskWare.GameHack, C:\Program Files (x86)\Sniper Elite 3\steam_api.dll, Quarantined, [2d21ee8a4852280e6e4ddec9fe06d52b], 
RiskWare.GameHack, C:\Program Files (x86)\Sniper Elite 3\steam_api64.dll, Quarantined, [cb83c7b1613977bfeccff6b1f70dd828], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
 
 
Protection, 30-Sep-16 3:33 PM, SYSTEM, ARMAAN-PC, Protection, Malware Protection, Starting, 
Protection, 30-Sep-16 3:33 PM, SYSTEM, ARMAAN-PC, Protection, Malware Protection, Started, 
Protection, 30-Sep-16 3:33 PM, SYSTEM, ARMAAN-PC, Protection, Malicious Website Protection, Starting, 
Protection, 30-Sep-16 3:33 PM, SYSTEM, ARMAAN-PC, Protection, Malicious Website Protection, Started, 
Update, 30-Sep-16 3:36 PM, SYSTEM, ARMAAN-PC, Manual, Remediation Database, 2016.2.12.1, 2016.9.21.1, 
Update, 30-Sep-16 3:36 PM, SYSTEM, ARMAAN-PC, Manual, IP Database, 2016.2.8.1, 2016.9.28.1, 
Update, 30-Sep-16 3:36 PM, SYSTEM, ARMAAN-PC, Manual, Rootkit Database, 2016.2.8.1, 2016.9.26.2, 
Update, 30-Sep-16 3:36 PM, SYSTEM, ARMAAN-PC, Manual, Domain Database, 2016.2.16.8, 2016.9.30.2, 
Update, 30-Sep-16 3:37 PM, SYSTEM, ARMAAN-PC, Manual, Malware Database, 2016.2.16.6, 2016.9.30.6, 
Protection, 30-Sep-16 3:37 PM, SYSTEM, ARMAAN-PC, Protection, Refresh, Starting, 
Protection, 30-Sep-16 3:37 PM, SYSTEM, ARMAAN-PC, Protection, Malicious Website Protection, Stopping, 
Protection, 30-Sep-16 3:37 PM, SYSTEM, ARMAAN-PC, Protection, Malicious Website Protection, Stopped, 
Protection, 30-Sep-16 3:37 PM, SYSTEM, ARMAAN-PC, Protection, Refresh, Success, 
Protection, 30-Sep-16 3:37 PM, SYSTEM, ARMAAN-PC, Protection, Malicious Website Protection, Starting, 
Protection, 30-Sep-16 3:37 PM, SYSTEM, ARMAAN-PC, Protection, Malicious Website Protection, Started, 
Scan, 30-Sep-16 4:12 PM, SYSTEM, ARMAAN-PC, Context, Start:30-Sep-16 3:37 PM, Duration:35 min 34 sec, Threat Scan, Completed, 2 Malware Detections, 0 Non-Malware Detections, 
Protection, 30-Sep-16 4:14 PM, SYSTEM, ARMAAN-PC, Protection, Malware Protection, Starting, 
Protection, 30-Sep-16 4:14 PM, SYSTEM, ARMAAN-PC, Protection, Malware Protection, Started, 
Protection, 30-Sep-16 4:14 PM, SYSTEM, ARMAAN-PC, Protection, Malicious Website Protection, Starting, 
Protection, 30-Sep-16 4:14 PM, SYSTEM, ARMAAN-PC, Protection, Malicious Website Protection, Started, 
Protection, 30-Sep-16 4:18 PM, SYSTEM, ARMAAN-PC, Protection, Malware Protection, Starting, 
Protection, 30-Sep-16 4:18 PM, SYSTEM, ARMAAN-PC, Protection, Malware Protection, Started, 
Protection, 30-Sep-16 4:18 PM, SYSTEM, ARMAAN-PC, Protection, Malicious Website Protection, Starting, 
Protection, 30-Sep-16 4:18 PM, SYSTEM, ARMAAN-PC, Protection, Malicious Website Protection, Started, 
Protection, 30-Sep-16 4:25 PM, SYSTEM, ARMAAN-PC, Protection, Malware Protection, Starting, 
Protection, 30-Sep-16 4:25 PM, SYSTEM, ARMAAN-PC, Protection, Malware Protection, Started, 
Protection, 30-Sep-16 4:25 PM, SYSTEM, ARMAAN-PC, Protection, Malicious Website Protection, Starting, 
Protection, 30-Sep-16 4:25 PM, SYSTEM, ARMAAN-PC, Protection, Malicious Website Protection, Started, 
 
(end)
 
AdwCleaner Log
 
# AdwCleaner v6.020 - Logfile created 30/09/2016 at 16:22:27
# Updated on 14/09/2016 by ToolsLib
# Database : 2016-09-28.1 [Server]
# Operating System : Windows 7 Professional Service Pack 1 (X64)
# Username : Armaan - ARMAAN-PC
# Running from : d:\Users\Armaan\Desktop\adwcleaner_6.020.exe
# Mode: Clean
 
 
 
***** [ Services ] *****
 
[-] Service deleted: hola_svc
[-] Service deleted: hola_updater
 
 
***** [ Folders ] *****
 
[-] Folder deleted: C:\Users\Armaan\AppData\Local\DriverToolkit
[-] Folder deleted: C:\Users\Armaan\AppData\Roaming\Hola
[-] Folder deleted: C:\Program Files\Hola
[-] Folder deleted: C:\Users\Armaan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ipebkipbeggmmkjjljenoblnfaenambp
 
 
***** [ Files ] *****
 
 
 
***** [ DLL ] *****
 
 
 
***** [ WMI ] *****
 
 
 
***** [ Shortcuts ] *****
 
 
 
***** [ Scheduled Tasks ] *****
 
 
 
***** [ Registry ] *****
 
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
[-] Key deleted: HKU\.DEFAULT\Software\Hola
[-] Key deleted: HKU\S-1-5-21-1351149785-2601683063-1537726602-1000\Software\DriverToolkit
[#] Key deleted on reboot: HKU\S-1-5-18\Software\Hola
[#] Key deleted on reboot: HKCU\Software\DriverToolkit
[#] Key deleted on reboot: [x64] HKCU\Software\DriverToolkit
[-] Key deleted: [x64] HKLM\SOFTWARE\Hola
[-] Key deleted: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Hola
 
 
***** [ Web browsers ] *****
 
[-] [C:\Users\Armaan\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: aol.com
[-] [C:\Users\Armaan\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: ask.com
[-] [C:\Users\Armaan\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: mysearchdial.com
[-] [C:\Users\Armaan\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: shadow-keylogger.en.softonic.com
[-] [C:\Users\Armaan\AppData\Local\Google\Chrome\User Data\Default] [extension] Deleted: ipebkipbeggmmkjjljenoblnfaenambp
[-] [C:\Users\Armaan\AppData\Local\Google\Chrome\User Data\Default] [homepage] Deleted: hxxp://start.mysearchdial.com/?f=1&a=dsites_14_14_ch&cd=2XzuyEtN2Y1L1QzuyB0AyBzytCzyzy0CzztD0A0CtCyByDyCtN0D0Tzu0SzztBtBtN1L2XzutBtFtCzztFzztFtDtN1L1CzutCyEtDtAtDyD1V1TtN1L1G1B1V1N2Y1L1Qzu2SyDyDyD0AtByC0ByDtGtCzz0DtCtG0D0ByDzztGyDtB0EtAtGtB0DtAtDzz0E0AtAtDtCtA0E2QtN1M1F1B2Z1V1N2Y1L1Qzu2StC0A0B0F0DtDtDyCtGyE0AyByDtG0FtDtDyCtGyEtAyE0BtGtD0FyEyD0B0DyCyE0A0AyDzz2Q&cr=806343554&ir=
 
 
*************************
 
:: "Tracing" keys deleted
:: Winsock settings cleared
 
*************************
 
C:\AdwCleaner\AdwCleaner[C0].txt - [2879 Bytes] - [30/09/2016 16:22:27]
C:\AdwCleaner\AdwCleaner[S0].txt - [2520 Bytes] - [30/09/2016 16:00:35]
C:\AdwCleaner\AdwCleaner[S1].txt - [2834 Bytes] - [30/09/2016 16:20:37]
 
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [3098 Bytes] ##########
 
JRT Log
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.8 (09.20.2016)
Operating System: Windows 7 Professional x64 
Ran by Armaan (Administrator) on 30-Sep-16 at 16:45:36.05
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
File System: 2 
 
Successfully deleted: C:\Users\Armaan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio (Folder) 
Successfully deleted: C:\Users\Armaan\AppData\Local\Google\Chrome\User Data\Default\Extensions\klbibkeccnjlkjkiokjodocebajanakg (Folder) 
 
 
 
Registry: 0 
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 30-Sep-16 at 16:52:42.51
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


#6 The_Codesee

The_Codesee

  • Members
  • 337 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:England, UK
  • Local time:02:59 PM

Posted 30 September 2016 - 09:18 AM

Also, which P2P client do you recommend I use?

 
None, if possible. By using P2P programs, you're almost guaranteeing your computer to be infected.
 
For one last final step, please download Delfix from here and save it to your desktop. Right-click it and select run as administrator. Select the following and press run:

  • Remove disinfection tools
  • Purge system restore

The Codesee :)



#7 po6pwn

po6pwn
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:29 PM

Posted 30 September 2016 - 10:36 AM

Thank you!






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users