Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I got a weird popup in Chrome. Possible Malware?


  • Please log in to reply
10 replies to this topic

#1 retrad

retrad

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:06:03 PM

Posted 30 April 2017 - 07:03 PM

So I left the house today, with my PC on, and came back and it was frozen. I rebooted it, BIOS popped up, and I exited.


I got to reopen Chrome and when I do I get this weird pop-up that says it's from "Microsoft" and when I tried to click out it had this man's voice telling me I possibly have a virus. On the page it listed a number for me to call, stating that the virus possibly has my CC numbers, and passwords to emails, facebook, etc...It wouldn't let me close the window, so I terminated the process  via task manager. When I reopened Chrome, I had no issue. Malwarebytes did not detect a threat.


Obviously it's bullbleep. But I'm wondering if I have some malware? It's the popup talked about in this Youtube video

I haven't clicked on any suspect links or been to any shady websites, so no idea how I would have gotten it if there is one. I mean, I had an issue maybe a month ago but we resolved that already...


Edited by retrad, 30 April 2017 - 07:24 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,040 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:03 PM

Posted 30 April 2017 - 09:04 PM

Hello. Lets scan it.

[{img=]http://i.imgur.com/3Al62Pm.png]MiniToolBox
  • Please download MiniToolBox, save it to your desktop and run it.
  • Checkmark the following checkboxes:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP conf[iguration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
SXvL3ZF.pngTDSSKiller
  • Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
zcMPezJ.pngAdwCleaner
  • Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
lv0mVRW.pngJunkware Removal Tool
  • Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
cvMlKv6.pngESET Online Scanner
  • Click here to download the installer for ESET Online Scanner and save it to your Desktop.
  • Disable all your antivirus and antimalware software - see how to do that here.
  • Right click on esetsmartinstaller_enu.exe and select Run as Administrator.
  • Place a checkmark in YES, I accept the Terms of Use, then click Start. Wait for ESET Online Scanner to load its components.
  • Select Enable detection of potentially unwanted applications.
  • Click Advanced Settings, then place a checkmark in the following:
    • Remove found threats
    • Scan archives
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • Click Start to begin scanning.
  • ESET Online Scanner will start downloading signatures and scan. Please be patient, as this scan can take quite some time.
  • When the scan is done, click List threats (only available if ESET Online Scanner found something).
  • Click Export, then save the file to your desktop.
  • Click Back, then Finish to exit ESET Online Scanner.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 retrad

retrad
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:06:03 PM

Posted 02 May 2017 - 06:09 AM

MiniToolBox by Farbar  Version: 17-06-2016
Ran by Owner (administrator) on 02-05-2017 at 06:09:03
Running from "E:\Overwatch Projects\OW Downloads"
Microsoft Windows 10 Home  (X64)
Model: To Be Filled By O.E.M. Manufacturer: To Be Filled By O.E.M.
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
========================= IP Configuration: ================================
 
Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Connected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Owner-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : tds
 
Ethernet adapter Local Area Connection:
 
   Connection-specific DNS Suffix  . : tds
   Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
   Physical Address. . . . . . . . . : BC-5F-F4-3B-B8-DA
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::a472:6f06:a8aa:53c%13(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.0.3(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Sunday, April 30, 2017 6:54:29 PM
   Lease Expires . . . . . . . . . . : Tuesday, May 02, 2017 6:59:20 PM
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 247226356
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-EE-39-D7-BC-5F-F4-3B-B8-DA
   DNS Servers . . . . . . . . . . . : 192.168.0.1
                                       216.170.153.146
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.tds:
 
   Connection-specific DNS Suffix  . : tds
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::5efe:192.168.0.3%15(Preferred) 
   Default Gateway . . . . . . . . . : 
   DHCPv6 IAID . . . . . . . . . . . : 100663296
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-EE-39-D7-BC-5F-F4-3B-B8-DA
   DNS Servers . . . . . . . . . . . : 192.168.0.1
                                       216.170.153.146
   NetBIOS over Tcpip. . . . . . . . : Disabled
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:244d:3514:3f57:fffc(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::244d:3514:3f57:fffc%2(Preferred) 
   Default Gateway . . . . . . . . . : ::
   DHCPv6 IAID . . . . . . . . . . . : 134217728
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-EE-39-D7-BC-5F-F4-3B-B8-DA
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  UnKnown
Address:  192.168.0.1
 
Name:    google.com
Addresses:  2607:f8b0:4002:c06::8a
 74.125.21.138
 74.125.21.102
 74.125.21.101
 74.125.21.100
 74.125.21.113
 74.125.21.139
 
 
Pinging google.com [74.125.21.102] with 32 bytes of data:
Reply from 74.125.21.102: bytes=32 time=13ms TTL=49
Reply from 74.125.21.102: bytes=32 time=13ms TTL=49
 
Ping statistics for 74.125.21.102:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 13ms, Maximum = 13ms, Average = 13ms
Server:  UnKnown
Address:  192.168.0.1
 
Name:    yahoo.com
Addresses:  2001:4998:c:a06::2:4008
 2001:4998:58:c02::a9
 2001:4998:44:204::a7
 98.138.253.109
 98.139.183.24
 206.190.36.45
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=68ms TTL=50
Reply from 206.190.36.45: bytes=32 time=69ms TTL=50
 
Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 68ms, Maximum = 69ms, Average = 68ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 13...bc 5f f4 3b b8 da ......Broadcom NetLink ™ Gigabit Ethernet
 15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
  1...........................Software Loopback Interface 1
  2...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1      192.168.0.3     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    331
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    331
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    331
      192.168.0.0    255.255.255.0         On-link       192.168.0.3    281
      192.168.0.3  255.255.255.255         On-link       192.168.0.3    281
    192.168.0.255  255.255.255.255         On-link       192.168.0.3    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    331
        224.0.0.0        240.0.0.0         On-link       192.168.0.3    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    331
  255.255.255.255  255.255.255.255         On-link       192.168.0.3    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  2    331 ::/0                     On-link
  1    331 ::1/128                  On-link
  2    331 2001::/32                On-link
  2    331 2001:0:4137:9e76:244d:3514:3f57:fffc/128
                                    On-link
 13    281 fe80::/64                On-link
  2    331 fe80::/64                On-link
 15    281 fe80::5efe:192.168.0.3/128
                                    On-link
  2    331 fe80::244d:3514:3f57:fffc/128
                                    On-link
 13    281 fe80::a472:6f06:a8aa:53c/128
                                    On-link
  1    331 ff00::/8                 On-link
 13    281 ff00::/8                 On-link
  2    331 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\WINDOWS\SysWOW64\NLAapi.dll [65024] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\napinsp.dll [55808] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [24064] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\SysWOW64\mswsock.dll [306016] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [80896] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [67584] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [31744] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 12 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (05/02/2017 06:08:18 AM) (Source: Application Error) (User: )
Description: Faulting application name: firefox.exe, version: 53.0.0.6312, time stamp: 0x58f0428a
Faulting module name: xul.dll, version: 53.0.0.6312, time stamp: 0x58f046bd
Exception code: 0x80000003
Fault offset: 0x00886df8
Faulting process id: 0x1aa8
Faulting application start time: 0xfirefox.exe0
Faulting application path: firefox.exe1
Faulting module path: firefox.exe2
Report Id: firefox.exe3
Faulting package full name: firefox.exe4
Faulting package-relative application ID: firefox.exe5
 
Error: (05/02/2017 06:08:18 AM) (Source: Application Hang) (User: )
Description: The program firefox.exe version 53.0.0.6312 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
 
Process ID: 2a14
 
Start Time: 01d2c20d4c2ecde5
 
Termination Time: 4294967295
 
Application Path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe
 
Report Id: a43376a6-2f27-11e7-9c4f-bc5ff43bb8da
 
Faulting package full name: 
 
Faulting package-relative application ID:
 
Error: (05/02/2017 04:54:21 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifest2" on line C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b.manifest.
 
Error: (05/01/2017 03:57:24 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifest2" on line C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b.manifest.
 
Error: (04/30/2017 10:57:44 PM) (Source: Application Error) (User: )
Description: Faulting application name: amddvr.exe, version: 10.1.1.1682, time stamp: 0x58ebbb5b
Faulting module name: amddvr.exe, version: 10.1.1.1682, time stamp: 0x58ebbb5b
Exception code: 0xc0000409
Fault offset: 0x0000000000096848
Faulting process id: 0x2394
Faulting application start time: 0xamddvr.exe0
Faulting application path: amddvr.exe1
Faulting module path: amddvr.exe2
Report Id: amddvr.exe3
Faulting package full name: amddvr.exe4
Faulting package-relative application ID: amddvr.exe5
 
Error: (04/30/2017 09:02:14 PM) (Source: Application Error) (User: )
Description: Faulting application name: amddvr.exe, version: 10.1.1.1682, time stamp: 0x58ebbb5b
Faulting module name: amddvr.exe, version: 10.1.1.1682, time stamp: 0x58ebbb5b
Exception code: 0xc0000409
Fault offset: 0x0000000000096848
Faulting process id: 0x3040
Faulting application start time: 0xamddvr.exe0
Faulting application path: amddvr.exe1
Faulting module path: amddvr.exe2
Report Id: amddvr.exe3
Faulting package full name: amddvr.exe4
Faulting package-relative application ID: amddvr.exe5
 
Error: (04/30/2017 08:49:48 PM) (Source: Application Error) (User: )
Description: Faulting application name: amddvr.exe, version: 10.1.1.1682, time stamp: 0x58ebbb5b
Faulting module name: amddvr.exe, version: 10.1.1.1682, time stamp: 0x58ebbb5b
Exception code: 0xc0000409
Fault offset: 0x0000000000096848
Faulting process id: 0x277c
Faulting application start time: 0xamddvr.exe0
Faulting application path: amddvr.exe1
Faulting module path: amddvr.exe2
Report Id: amddvr.exe3
Faulting package full name: amddvr.exe4
Faulting package-relative application ID: amddvr.exe5
 
Error: (04/30/2017 07:42:16 PM) (Source: Application Error) (User: )
Description: Faulting application name: amddvr.exe, version: 10.1.1.1682, time stamp: 0x58ebbb5b
Faulting module name: amddvr.exe, version: 10.1.1.1682, time stamp: 0x58ebbb5b
Exception code: 0xc0000409
Fault offset: 0x0000000000096848
Faulting process id: 0x2100
Faulting application start time: 0xamddvr.exe0
Faulting application path: amddvr.exe1
Faulting module path: amddvr.exe2
Report Id: amddvr.exe3
Faulting package full name: amddvr.exe4
Faulting package-relative application ID: amddvr.exe5
 
Error: (04/30/2017 06:55:49 PM) (Source: Application Hang) (User: )
Description: The program chrome.exe version 58.0.3029.81 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
 
Process ID: 1cac
 
Start Time: 01d2c20d260c0b93
 
Termination Time: 4294967295
 
Application Path: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
Report Id: 8860d1f6-2e00-11e7-9c4f-bc5ff43bb8da
 
Faulting package full name: 
 
Faulting package-relative application ID:
 
Error: (04/30/2017 04:41:31 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifest2" on line C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b.manifest.
 
 
System errors:
=============
Error: (05/02/2017 01:39:14 AM) (Source: DCOM) (User: OWNER-PC)
Description: {37998346-3765-45B1-8C66-AA88CA6B20B8}
 
Error: (05/02/2017 01:37:14 AM) (Source: Service Control Manager) (User: )
Description: The Connected Devices Platform Service service terminated with the following error: 
%%2147500037 = Unspecified error
 
 
Error: (05/01/2017 04:22:53 AM) (Source: DCOM) (User: OWNER-PC)
Description: {37998346-3765-45B1-8C66-AA88CA6B20B8}
 
Error: (05/01/2017 04:20:53 AM) (Source: Service Control Manager) (User: )
Description: The Connected Devices Platform Service service terminated with the following error: 
%%2147500037 = Unspecified error
 
 
Error: (04/30/2017 07:32:18 PM) (Source: Service Control Manager) (User: )
Description: The Steam Client Service service failed to start due to the following error: 
%%1053 = The service did not respond to the start or control request in a timely fashion.
 
 
Error: (04/30/2017 07:32:18 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.
 
Error: (04/30/2017 06:56:17 PM) (Source: Service Control Manager) (User: )
Description: The Connected Devices Platform Service service terminated with the following error: 
%%2147500037 = Unspecified error
 
 
Error: (04/30/2017 06:54:40 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalActivation{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}{F72671A9-012C-4725-9D2F-2A4D32D65169}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)UnavailableUnavailable
 
Error: (04/30/2017 06:54:15 PM) (Source: Service Control Manager) (User: )
Description: The NetTcpActivator service depends on the NetTcpPortSharing service which failed to start because of the following error: 
%%1058 = The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
 
 
Error: (04/30/2017 06:54:13 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 6:52:04 PM on ‎4/‎30/‎2017 was unexpected.
 
 
Microsoft Office Sessions:
=========================
Error: (05/02/2017 06:08:18 AM) (Source: Application Error)(User: )
Description: firefox.exe53.0.0.631258f0428axul.dll53.0.0.631258f046bd8000000300886df81aa801d2c20d4fcb43a8C:\Program Files (x86)\Mozilla Firefox\firefox.exeC:\Program Files (x86)\Mozilla Firefox\xul.dll79cbc4f7-860b-49b2-8ea5-d6cf857c99e9
 
Error: (05/02/2017 06:08:18 AM) (Source: Application Hang)(User: )
Description: firefox.exe53.0.0.63122a1401d2c20d4c2ecde54294967295C:\Program Files (x86)\Mozilla Firefox\firefox.exea43376a6-2f27-11e7-9c4f-bc5ff43bb8da
 
Error: (05/02/2017 04:54:21 AM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifestC:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b.manifeste:\program files (x86)\steamlibrary\steamapps\common\grim dawn\CrashReporter.exe
 
Error: (05/01/2017 03:57:24 AM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifestC:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b.manifeste:\program files (x86)\steamlibrary\steamapps\common\grim dawn\CrashReporter.exe
 
Error: (04/30/2017 10:57:44 PM) (Source: Application Error)(User: )
Description: amddvr.exe10.1.1.168258ebbb5bamddvr.exe10.1.1.168258ebbb5bc00004090000000000096848239401d2c21ef5c2eb23C:\Program Files\AMD\CNext\CNext\amddvr.exeC:\Program Files\AMD\CNext\CNext\amddvr.exe7c9f97f2-4286-483c-850e-f37ccb22df6a
 
Error: (04/30/2017 09:02:14 PM) (Source: Application Error)(User: )
Description: amddvr.exe10.1.1.168258ebbb5bamddvr.exe10.1.1.168258ebbb5bc00004090000000000096848304001d2c21d38af9a9dC:\Program Files\AMD\CNext\CNext\amddvr.exeC:\Program Files\AMD\CNext\CNext\amddvr.exe967b3862-3fbb-4932-a8b0-115dde4139be
 
Error: (04/30/2017 08:49:48 PM) (Source: Application Error)(User: )
Description: amddvr.exe10.1.1.168258ebbb5bamddvr.exe10.1.1.168258ebbb5bc00004090000000000096848277c01d2c213c8e598bbC:\Program Files\AMD\CNext\CNext\amddvr.exeC:\Program Files\AMD\CNext\CNext\amddvr.exeec395648-2c35-4927-8a94-d17ce97341d3
 
Error: (04/30/2017 07:42:16 PM) (Source: Application Error)(User: )
Description: amddvr.exe10.1.1.168258ebbb5bamddvr.exe10.1.1.168258ebbb5bc00004090000000000096848210001d2c20d2adc6a88C:\Program Files\AMD\CNext\CNext\amddvr.exeC:\Program Files\AMD\CNext\CNext\amddvr.exedd25a963-940b-43e2-9569-f8f09fba84b8
 
Error: (04/30/2017 06:55:49 PM) (Source: Application Hang)(User: )
Description: chrome.exe58.0.3029.811cac01d2c20d260c0b934294967295C:\Program Files (x86)\Google\Chrome\Application\chrome.exe8860d1f6-2e00-11e7-9c4f-bc5ff43bb8da
 
Error: (04/30/2017 04:41:31 AM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_89c2555adb023171.manifestC:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.14393.953_none_42151e83c686086b.manifeste:\program files (x86)\steamlibrary\steamapps\common\grim dawn\CrashReporter.exe
 
 
CodeIntegrity Errors:
===================================
  Date: 2017-04-29 05:46:59.450
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.
 
  Date: 2017-04-23 18:14:54.075
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.
 
  Date: 2017-04-19 01:30:10.739
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.
 
  Date: 2017-04-10 21:37:01.514
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.
 
  Date: 2017-04-08 22:48:21.986
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.
 
  Date: 2017-04-08 06:56:15.038
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.
 
  Date: 2017-04-08 06:55:49.605
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.
 
  Date: 2017-04-08 06:55:34.118
  Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\amdihk64.dll that did not meet the Store signing level requirements.
 
 
=========================== Installed Programs ============================
 
µTorrent (HKCU\...\uTorrent) (Version: 3.4.3.40760 - BitTorrent Inc.)
ABBYY FineReader 9.0 Sprint (HKLM-x32\...\{F9000000-0018-0000-0000-074957833700}) (Version: 9.01.513.58212 - ABBYY) Hidden
ABBYY FineReader 9.0 Sprint (HKLM-x32\...\ABBYY FineReader 9.0 Sprint) (Version: 9.01.513.58212 - ABBYY)
Acrobat.com (HKLM-x32\...\{77DCDCE3-2DED-62F3-8154-05E745472D07}) (Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Acrobat.com (HKLM-x32\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1.377 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 20.0.0.260 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.5.353 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.5 - Adobe Systems Incorporated)
Adobe Flash Player 25 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 25.0.0.148 - Adobe Systems Incorporated)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.9 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2017 (HKLM-x32\...\AME_11_0_2) (Version: 11.0.2 - Adobe Systems Incorporated)
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_0_1) (Version: 18.0.1 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2017 (HKLM-x32\...\PPRO_11_0_2) (Version: 11.0.2 - Adobe Systems Incorporated)
Adobe Reader 9.5.5 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A95000000001}) (Version: 9.5.5 - Adobe Systems Incorporated)
Adobe SVG Viewer 3.0 (HKLM-x32\...\Adobe SVG Viewer) (Version:  3.0 - Adobe Systems, Inc.)
AMD APP SDK 2.9 (HKLM\...\{B192EDAC-25C7-408D-99A0-A23455F50E27}) (Version: 2.9.233.167 - Advanced Micro Devices, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.8 - Advanced Micro Devices, Inc.)
AMD System Monitor (HKLM-x32\...\{6EFD0C42-4CC1-4716-A0CA-21C1A062CF34}) (Version: 1.0.9 - Advanced Micro Devices, Inc.)
Archeage Beta (HKLM-x32\...\Glyph Archeage Beta) (Version:  - Trion Worlds, Inc.)
ARK: Survival Evolved (HKLM\...\Steam App 346110) (Version:  - Studio Wildcard)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.10.1.0 - Asmedia Technology)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 1.3.1.000 - Asmedia Technology)
ASRock App Charger v1.0.5 (HKLM\...\ASRock App Charger_is1) (Version:  - ASRock Inc.)
ASRock eXtreme Tuner v0.1.181 (HKLM-x32\...\ASRock eXtreme Tuner_is1) (Version:  - )
ASRock InstantBoot v1.29 (HKLM-x32\...\ASRock InstantBoot_is1) (Version:  - )
ASRock SmartConnect v1.0.6 (HKLM\...\ASRock SmartConnect_is1) (Version:  - ASRock Inc.)
ASRock XFast RAM v2.0.9 (HKLM\...\ASRock XFast RAM_is1) (Version:  - ASRock Inc.)
ASTRONEER (HKLM\...\Steam App 361420) (Version:  - System Era Softworks)
Asura (HKLM\...\Steam App 524640) (Version:  - Ogre Head Studio)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battleborn (HKLM\...\Steam App 394230) (Version:  - Gearbox Software)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.7.2.45672 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.7.1 - EA Digital Illusions CE AB)
Bethesda.net Launcher (HKLM-x32\...\{3448917E-E4FE-4E30-9502-9FD52EABB6F5}_is1) (Version: 1.17.1 - Bethesda Softworks)
BitRaider Web Client (HKLM-x32\...\BitRaider Web Client) (Version: 1.1.1.3 - BitRaider, LLC)
Black Desert Online (HKLM-x32\...\{C1F96C92-7B8C-485F-A9CD-37A0708A2A60}) (Version: 1.0.0.5 - Daum Games EU)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom NetLink Controller (HKLM\...\{C91DCB72-F5BB-410D-A91A-314F5D1B4284}) (Version: 14.8.5.1 - Broadcom Corporation)
Catalyst Control Center Next Localization BR (HKLM\...\{2B4D4A54-27CD-ADED-F5E7-CCD374A68770}) (Version: 2017.0410.1312.21926 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{E194A8D0-8545-C587-67FB-8BF17CCADF03}) (Version: 2017.0410.1312.21926 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{B64923B3-EDF7-380F-3EBC-2F6A7E3D5E87}) (Version: 2017.0410.1312.21926 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{29F35063-F14F-D4A8-5825-0F74240F25C3}) (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{475A4387-3F3D-1715-ED19-824F719D90DD}) (Version: 2017.0410.1312.21926 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{51E9360E-0B90-EE7F-D840-28458BD048DA}) (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{D058B795-4274-F96C-389F-CA07D4BA7A03}) (Version: 2017.0410.1312.21926 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{33FF313C-78A1-35CE-2E12-93EC013CD42D}) (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{50B1E954-1D62-3498-E0E3-B9ED8B9B3763}) (Version: 2017.0410.1312.21926 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{8F4F9CAC-37A7-E424-2DBC-B9293E772F60}) (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{C773C108-8674-D32D-D3AD-40D6A868B287}) (Version: 2017.0410.1312.21926 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{155190A9-10BB-7072-894C-6ABFF2358FC5}) (Version: 2017.0410.1312.21926 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{B709D228-78E5-4D06-6BD9-7C49CAF0F3A2}) (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{5066336E-513F-CBB9-9BB0-C89A3933C10F}) (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{B09ADB72-2248-8E35-EDE4-EE7DDB31F6BD}) (Version: 2017.0410.1312.21926 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{AED89989-7DBE-543C-19A4-BE5A855DD2FB}) (Version: 2016.0321.1015.16463 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{CEA9CB90-2DD4-CB83-F2C4-6BB0841BFFA6}) (Version: 2017.0410.1312.21926 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{07F29FA8-3C1C-23FB-83BD-A2C84AE3F939}) (Version: 2017.0410.1312.21926 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{6EE720CF-577F-5AE6-B2B1-8AED1479E29B}) (Version: 2017.0410.1312.21926 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{73C14D01-420D-4806-1BF7-A10B2E7505F1}) (Version: 2017.0410.1312.21926 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{C70525D3-B447-74B5-CDAB-5566D4777743}) (Version: 2017.0410.1312.21926 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{8E36DDAA-6751-AB58-0CD3-DE7004ED4CD8}) (Version: 2017.0410.1312.21926 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{E1B43D42-4E65-AAF6-CD16-633A2AA75DF6}) (Version: 2017.0410.1312.21926 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{3398C8E5-48DC-99D6-5B50-6AD312CF3756}) (Version: 2017.0410.1312.21926 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{A728E928-73FA-5291-33E8-D3A1AF895D6C}) (Version: 2017.0410.1312.21926 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{B2524444-E827-10D9-789D-91087707666A}) (Version: 2017.0410.1312.21926 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{85733995-9FAB-3516-B552-80A9D651B682}) (Version: 2017.0410.1312.21926 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{C5B64E80-0E6F-02F7-CF5D-7A3D90572BB8}) (Version: 2017.0410.1312.21926 - Advanced Micro Devices, Inc.) Hidden
Cities: Skylines (HKLM\...\Steam App 255710) (Version:  - Colossal Order Ltd.)
Citrix Receiver 4.6 (HKLM-x32\...\CitrixOnlinePluginPackWeb) (Version: 14.6.0.12010 - Citrix Systems, Inc.)
CloudContactUtil (HKLM-x32\...\{6E2746D0-2671-42DD-AD8F-22E1008398D4}) (Version: 2.3.233.10480 - British Telecommunications Plc.)
C-Media PCI Audio Device (HKLM\...\C-Media PCI Audio Driver) (Version:  - )
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version:  - Valve)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Deformers Open Beta (HKLM\...\Steam App 533200) (Version:  - Ready At Dawn)
Deluge 1.3.12 (HKLM-x32\...\Deluge) (Version:  - )
Diablo II (HKLM-x32\...\Diablo II) (Version:  - Blizzard Entertainment)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Diablo III Public Test (HKLM-x32\...\Diablo III Public Test) (Version:  - Blizzard Entertainment)
Diluvion (HKLM\...\Steam App 446790) (Version:  - Arachnid Games)
Discord (HKCU\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Dogecoin (HKCU\...\Dogecoin) (Version: 1.6.0.0 - Dogecoin)
Dogecoin Core (64-bit) (HKCU\...\Dogecoin Core (64-bit)) (Version: 1.8.0 - Dogecoin project)
Dota 2 (HKLM\...\Steam App 570) (Version:  - Valve)
Download Navigator (HKLM-x32\...\{E728441A-7820-4B1C-87C9-DE7BE37B2953}) (Version: 1.1.0 - SEIKO EPSON CORPORATION)
Dragon Age™: Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.12 - Electronic Arts)
Duelyst (HKLM\...\Steam App 291410) (Version:  - Counterplay Games Inc.)
Epic Games Launcher (HKLM-x32\...\{A1C97AE7-FB6B-425F-B75B-7A16E1E5639D}) (Version: 1.1.52.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EPSON Connect version 1.0 (HKLM-x32\...\EPSON Connect_is1) (Version: 1.0 - Epson America Inc.)
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.4.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{44F72193-F59C-4303-BAE8-E3E4BC1C122C}) (Version: 3.01.0003 - Seiko Epson Corporation)
Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.30.00 - SEIKO EPSON CORPORATION)
Epson PC-FAX Driver (HKLM-x32\...\EPSON PC-FAX Driver 2) (Version:  - )
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON WF-2540 Series Printer Uninstall (HKLM\...\EPSON WF-2540 Series) (Version:  - SEIKO EPSON Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.5.00 - SEIKO EPSON CORPORATION)
Free to Play (HKLM-x32\...\Steam App 245550) (Version:  - Valve)
Glyph (HKLM-x32\...\Glyph) (Version:  - Trion Worlds, Inc.)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.81 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GPU Temp version 1.0 (HKLM-x32\...\{8C8711FD-0FC8-4801-B33E-ED19BB0350B1}_is1) (Version: 1.0 - gputemp.com)
Guild Wars 2 (HKLM-x32\...\Guild Wars 2) (Version:  - NCsoft Corporation, Ltd.)
Gwent (0.8.72.1) (HKLM-x32\...\1971477531_is1) (Version: 0.1.1.318 - GOG.com)
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Hero Siege (HKLM\...\Steam App 269210) (Version:  - Elias Viglione)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
HEX (HKLM-x32\...\{E31B651A-B48C-423C-8D0D-855756C8B7E8}_is1) (Version:  - HEX Entertainment)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel® Driver Update Utility 2.5 (HKLM-x32\...\{8EF465B2-1D08-4CA2-8ACC-1911B573725D}) (Version: 2.5.0.22 - Intel) Hidden
Intel® Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35342 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.2.1410 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4425 - Intel Corporation)
Intel® Product Improvement Program (HKLM-x32\...\{5859045D-9DED-4776-9930-C9461AB2FF12}) (Version: 2.1.27.3 - Intel) Hidden
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.3.214 - Intel Corporation)
Intel® Driver Update Utility (HKLM-x32\...\{aa1dec3b-dc4b-4db0-8c18-9157457eff1f}) (Version: 2.5.0.22 - Intel)
Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)
Japanese Fonts Support For Adobe Reader 9 (HKLM-x32\...\{AC76BA86-7AD7-5760-0000-900000000003}) (Version: 9.0.0 - Adobe Systems Incorporated)
Java 7 Update 80 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417080FF}) (Version: 7.0.800 - Oracle)
Java 7 Update 80 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217080FF}) (Version: 7.0.800 - Oracle)
Java SE Development Kit 7 Update 21 (HKLM-x32\...\{32A3A4F4-B792-11D6-A78A-00B0D0170210}) (Version: 1.7.0.210 - Oracle)
Kingdoms of Amalur: Reckoning (HKLM-x32\...\{6A9D1594-7791-48f5-9CAA-DE9BCB968320}) (Version: 1.0.0.0 - Electronic Arts)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LawBreakers (HKLM\...\Steam App 350280) (Version:  - Boss Key Productions)
League of Legends (HKLM-x32\...\{92606477-9366-4D3B-8AE3-6BE4B29727AB}) (Version: 1.3 - Riot Games)
League of Legends (HKLM-x32\...\{E80C09B5-A296-47E9-BD4B-BCCF2FDCA13E}) (Version: 4.1.2 - Riot Games) Hidden
League of Legends (HKLM-x32\...\League of Legends 4.1.2) (Version: 4.1.2 - Riot Games)
Linksys Connect (HKLM-x32\...\Linksys Connect) (Version: 1.5.13225.3 - Linksys LLC)
Logitech Gaming Software 8.84 (HKLM\...\Logitech Gaming Software) (Version: 8.84.15 - Logitech Inc.)
Magic The Gathering Online  (HKCU\...\01641bea2c75c522) (Version: 3.4.91.601 - Wizards of the Coast, LLC)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Marvel Heroes 2016 (HKLM\...\Steam App 226320) (Version:  - Gazillion Entertainment)
Microsoft Mathematics (64-bit) (HKLM\...\{E57B7E0A-8BE5-42E2-BE60-C07ED680A063}) (Version: 4.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.2.173.0 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs (HKLM-x32\...\{90120000-00B2-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 RC Redistributable (x64) - 14.0.22816 (HKLM-x32\...\{e2495eb6-cca8-47aa-91ea-3410ca44d7b7}) (Version: 14.0.22816.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Middle-earth: Shadow of Mordor (HKLM-x32\...\Steam App 241930) (Version:  - Monolith Productions, Inc.)
Movie Maker (HKLM-x32\...\{38F03569-A636-4CF3-BDDE-032C8C251304}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 53.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 53.0 (x86 en-US)) (Version: 53.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 53.0.0.6312 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MU LEGEND GLOBAL CBT (HKLM-x32\...\{MU2GB92C-VH2O-Z2AQ-N26J-M2VJEWJEUE52}_is1) (Version: 1.0.0.0 - Webzen)
Mumble 1.2.8 (HKLM-x32\...\{A9DBD31A-A09F-4C7E-86D1-3B21C59000D1}) (Version: 1.2.8 - Thorvald Natvig)
My.com Game Center (HKCU\...\MyComGames) (Version: 3.196 - My.com B.V.)
No Man's Sky (HKLM\...\Steam App 275850) (Version:  - Hello Games)
NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 18.0.1 - OBS Project)
Online Plug-in (HKLM-x32\...\{9E362141-4BE9-47C3-BD36-638B77AC87AA}) (Version: 14.6.0.12010 - Citrix Systems, Inc.) Hidden
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
Origin (HKLM-x32\...\Origin) (Version: 10.4.2.12697 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
Overwatch Test (HKLM-x32\...\Overwatch Test) (Version:  - Blizzard Entertainment)
Paladins (HKLM\...\Steam App 444090) (Version:  - Hi-Rez Studios)
Path of Exile (HKLM\...\Steam App 238960) (Version:  - Grinding Gear Games)
PLAYERUNKNOWN'S BATTLEGROUNDS (HKLM\...\Steam App 578080) (Version:  - Bluehole, Inc.)
PlaysTV (HKLM-x32\...\PlaysTV) (Version: 1.10.0-r112342-release - Plays.tv, LLC)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.994 - Even Balance, Inc.)
Quake Champions (HKLM-x32\...\Quake Champions) (Version:  - Bethesda Softworks)
Raptr (HKLM-x32\...\Raptr) (Version: 5.2.8-r120085-release - Raptr, Inc)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7560 - Realtek Semiconductor Corp.)
Revelation Online (HKCU\...\Revelation Online) (Version: 1.26 - My.com B.V.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.4 - Rockstar Games)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.5.1 - Samsung Electronics)
Sapphire TRIXX (HKLM-x32\...\Sapphire TRIXX) (Version:  - )
Self-service Plug-in (HKLM-x32\...\{27B93352-3746-4329-9D16-CE20A1E400C5}) (Version: 4.6.0.14932 - Citrix Systems, Inc.) Hidden
SKIPCHASER (HKLM\...\Steam App 508410) (Version:  - Ponywolf)
Skype™ 7.31 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.31.104 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Streets of Rogue (HKLM\...\Steam App 512900) (Version:  - Matt Dabrowski)
Sublime Text 2.0.2 (HKLM\...\Sublime Text 2_is1) (Version:  - )
TeamSpeak 3 Client (HKCU\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
The Elder Scrolls Legends (HKLM-x32\...\The Elder Scrolls Legends) (Version:  - Bethesda Softworks)
The Lord of the Rings Online™ (HKLM\...\Steam App 212500) (Version:  - Standing Stone Games, LLC)
THX TruStudio (HKLM-x32\...\{AFB907F5-C0E6-4753-8284-DE955EF86AC2}) (Version: 1.00.01 - Creative Technology Limited)
Titanfall™ 2 (HKLM-x32\...\{4BD80373-FEE7-45B6-8249-6E8E98717405}) (Version: 1.0.0.3 - Electronic Arts, Inc.)
Torchlight II (HKLM-x32\...\Steam App 200710) (Version:  - Runic Games)
Total War: WARHAMMER (HKLM\...\Steam App 364360) (Version:  - Creative Assembly)
Unexplored (HKLM\...\Steam App 506870) (Version:  - Ludomotion)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Uplay (HKLM-x32\...\Uplay) (Version: 15.0 - Ubisoft)
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
Ventrilo Client for Windows x64 (HKLM\...\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}) (Version: 3.0.8.0 - Flagship Industries, Inc.)
Video Win Movie Maker 2016 (HKLM-x32\...\{3CC29C1A-B5FE-457B-8F22-32A2videowin}}_is1) (Version:  - videowinsoft.com)
Vikings - Wolves of Midgard (HKLM\...\Steam App 404590) (Version:  - Games Farm)
VIPRE Internet Security (HKLM-x32\...\{6C00A86A-E405-4AF8-9581-78F6E620602C}) (Version: 9.3.4.3 - ThreatTrack Security, Inc.) Hidden
VIPRE Internet Security (HKLM-x32\...\{C1D1FC57-3EB9-4B21-BCA3-F1C927508200}) (Version: 9.3.4.3 - ThreatTrack Security Inc.)
Vulkan Run Time Libraries 1.0.11.0 (HKLM\...\VulkanRT1.0.11.0) (Version: 1.0.11.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.17.0 (HKLM\...\VulkanRT1.0.17.0) (Version: 1.0.17.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.17.0 (HKLM\...\VulkanRT1.0.17.0-2) (Version: 1.0.17.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0-2) (Version: 1.0.26.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0-3) (Version: 1.0.26.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.3.1 (HKLM\...\VulkanRT1.0.3.1) (Version: 1.0.3.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0) (Version: 1.0.37.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.37.0 (HKLM\...\VulkanRT1.0.37.0-2) (Version: 1.0.37.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1) (Version: 1.0.39.1 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.39.1 (HKLM\...\VulkanRT1.0.39.1-2) (Version: 1.0.39.1 - LunarG, Inc.)
Warframe (HKLM-x32\...\Steam App 230410) (Version:  - )
WinDirStat 1.1.2 (HKCU\...\WinDirStat) (Version:  - )
Windows 10 Update and Privacy Settings (HKLM\...\{293F2009-0145-450B-B4AA-063D43FB368C}) (Version: 1.0.13.0 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinPcap 4.1.3 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2980 - Riverbed Technology, Inc.)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Wireshark 2.0.3 (64-bit) (HKLM-x32\...\Wireshark) (Version: 2.0.3 - The Wireshark developer community, https://www.wireshark.org)
Wolcen: Lords of Mayhem (HKLM\...\Steam App 424370) (Version:  - WOLCEN Studio)
Wondershare Helper Compact 2.5.2 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
XFast LAN v6.61 (HKLM\...\XFast LAN) (Version: 6.61 - cFos Software GmbH, Bonn)
XFastUSB (HKLM-x32\...\XFastUSB) (Version: 3.02.28 - ASRock Inc.)
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 52%
Total physical RAM: 8086 MB
Available physical RAM: 3814.18 MB
Total Virtual: 16278 MB
Available Virtual: 8982.23 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:119.14 GB) (Free:4.92 GB) NTFS
2 Drive d: (October 27, 2015) (CDROM) (Total:0.69 GB) (Free:0.62 GB) UDF
3 Drive e: (New Volume) (Fixed) (Total:1397.26 GB) (Free:258.78 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\OWNER-PC
 
Administrator            DefaultAccount           Guest                    
Lala                     Owner                    
 
 
**** End of log ****


#4 retrad

retrad
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:06:03 PM

Posted 02 May 2017 - 06:12 AM

06:11:21.0640 0x09d8  TDSS rootkit removing tool 3.1.0.15 Apr 18 2017 11:34:02
06:11:25.0703 0x09d8  ============================================================
06:11:25.0703 0x09d8  Current date / time: 2017/05/02 06:11:25.0703
06:11:25.0703 0x09d8  SystemInfo:
06:11:25.0703 0x09d8  
06:11:25.0703 0x09d8  OS Version: 10.0.14393 ServicePack: 0.0
06:11:25.0703 0x09d8  Product type: Workstation
06:11:25.0703 0x09d8  ComputerName: OWNER-PC
06:11:25.0703 0x09d8  UserName: Owner
06:11:25.0703 0x09d8  Windows directory: C:\WINDOWS
06:11:25.0703 0x09d8  System windows directory: C:\WINDOWS
06:11:25.0703 0x09d8  Running under WOW64
06:11:25.0703 0x09d8  Processor architecture: Intel x64
06:11:25.0703 0x09d8  Number of processors: 4
06:11:25.0703 0x09d8  Page size: 0x1000
06:11:25.0703 0x09d8  Boot type: Normal boot
06:11:25.0703 0x09d8  CodeIntegrityOptions = 0x00000001
06:11:25.0703 0x09d8  ============================================================
06:11:25.0778 0x09d8  KLMD registered as C:\WINDOWS\system32\drivers\31531817.sys
06:11:25.0778 0x09d8  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.1066, osProperties = 0x19
06:11:25.0815 0x09d8  System UUID: {BBFA4CDF-9E5D-91BB-0E25-7DA2DE1C695A}
06:11:26.0071 0x09d8  Drive \Device\Harddisk1\DR1 - Size: 0x15D50F66000 ( 1397.27 Gb ), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
06:11:26.0072 0x09d8  Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 ( 119.24 Gb ), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
06:11:26.0078 0x09d8  ============================================================
06:11:26.0078 0x09d8  \Device\Harddisk1\DR1:
06:11:26.0078 0x09d8  MBR partitions:
06:11:26.0078 0x09d8  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xAEA86800
06:11:26.0078 0x09d8  \Device\Harddisk0\DR0:
06:11:26.0078 0x09d8  MBR partitions:
06:11:26.0078 0x09d8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
06:11:26.0078 0x09d8  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xEE49000
06:11:26.0078 0x09d8  ============================================================
06:11:26.0080 0x09d8  C: <-> \Device\Harddisk0\DR0\Partition2
06:11:26.0108 0x09d8  E: <-> \Device\Harddisk1\DR1\Partition1
06:11:26.0109 0x09d8  ============================================================
06:11:26.0109 0x09d8  Initialize success
06:11:26.0109 0x09d8  ============================================================
06:11:33.0871 0x3258  ============================================================
06:11:33.0871 0x3258  Scan started
06:11:33.0871 0x3258  Mode: Manual; 
06:11:33.0871 0x3258  ============================================================
06:11:33.0871 0x3258  KSN ping started
06:11:33.0930 0x3258  KSN ping finished: true
06:11:36.0251 0x3258  ================ Scan system memory ========================
06:11:36.0251 0x3258  System memory - ok
06:11:36.0252 0x3258  ================ Scan services =============================
06:11:36.0290 0x3258  1394ohci - ok
06:11:36.0293 0x3258  3ware - ok
06:11:36.0311 0x3258  [ B33CF4DE909A5B30F526D82053A63C8E, ABF5BB962C038E545C18B96E686E072D780C907096C7BB341297AF31D3703ABD ] ABBYY.Licensing.FineReader.Sprint.9.0 C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
06:11:36.0321 0x3258  ABBYY.Licensing.FineReader.Sprint.9.0 - ok
06:11:36.0330 0x3258  ACPI - ok
06:11:36.0333 0x3258  AcpiDev - ok
06:11:36.0335 0x3258  acpiex - ok
06:11:36.0338 0x3258  acpipagr - ok
06:11:36.0341 0x3258  AcpiPmi - ok
06:11:36.0344 0x3258  acpitime - ok
06:11:36.0369 0x3258  [ BE62B286791F715E430FB022C1707BBA, 7EDFF71EFB65AA895270BD83B16F390F53D98C438ADA23E780CE6200CA0449F1 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
06:11:36.0375 0x3258  AdobeFlashPlayerUpdateSvc - ok
06:11:36.0392 0x3258  [ 5B4D60ACCEA6918DBBB8C9FD4ADBDD29, FE3A768A76B673DCD09716F600D52B53A6EABEC6AA65E0DE89144F322E8571B8 ] AdobeUpdateService C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
06:11:36.0402 0x3258  AdobeUpdateService - ok
06:11:36.0407 0x3258  ADP80XX - ok
06:11:36.0410 0x3258  AFD - ok
06:11:36.0449 0x3258  [ A32EA26C90A47B2BC93D7B0B94994B11, 1CF8DB09CA27EAC5741489EDFDFC04D69485B51C726F539BFCDC3C78E8E09EBE ] AGSService      C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
06:11:36.0478 0x3258  AGSService - ok
06:11:36.0483 0x3258  ahcache - ok
06:11:36.0486 0x3258  AJRouter - ok
06:11:36.0488 0x3258  ALG - ok
06:11:36.0500 0x3258  [ 890B88BD4C280ADA516D442FD939B73B, 7EE2DF453003E5D3B9D6257D6F75969FF4B5896E3247DCE6258936D38A0B62EF ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
06:11:36.0519 0x3258  AMD External Events Utility - ok
06:11:36.0523 0x3258  AmdK8 - ok
06:11:36.0527 0x3258  [ 275B6F698CBEC36C42D3ABD7EE049BA1, C6CE3514947F67410B34E8973C87996A14FF485A2E5C7E5BA4FE276FB893D51C ] amdkmafd        C:\WINDOWS\system32\drivers\amdkmafd.sys
06:11:36.0532 0x3258  amdkmafd - ok
06:11:36.0549 0x3258  amdkmdag - ok
06:11:36.0561 0x3258  [ F2F5C6ADB4DCA558B9627CD9EED800A2, 9AAE8AE709FFCD52B54C27D016BEA84F57A0F040912BEFD700D836883B2582F7 ] amdkmdap        C:\WINDOWS\System32\DriverStore\FileRepository\c0313248.inf_amd64_aad49543f8f714a1\atikmpag.sys
06:11:36.0580 0x3258  amdkmdap - ok
06:11:36.0584 0x3258  AmdPPM - ok
06:11:36.0588 0x3258  amdsata - ok
06:11:36.0591 0x3258  amdsbs - ok
06:11:36.0594 0x3258  amdxata - ok
06:11:36.0598 0x3258  AppHostSvc - ok
06:11:36.0600 0x3258  AppID - ok
06:11:36.0603 0x3258  AppIDSvc - ok
06:11:36.0605 0x3258  Appinfo - ok
06:11:36.0608 0x3258  applockerfltr - ok
06:11:36.0611 0x3258  AppReadiness - ok
06:11:36.0614 0x3258  AppXSvc - ok
06:11:36.0617 0x3258  arcsas - ok
06:11:36.0621 0x3258  [ 4DFF4312661F54EE87DC9A13CAEE60E0, 8821D2CA4036E764EFF71108735148FF54D3275DDCE1860EC7D67B2355E8DF82 ] asahci64        C:\WINDOWS\system32\drivers\asahci64.sys
06:11:36.0626 0x3258  asahci64 - ok
06:11:36.0639 0x3258  aspnet_state - ok
06:11:36.0642 0x3258  [ E1AFEE1584C74050DE0DD16DE2A54BF3, 77C8D98159D8BCDC7917B04977949823D50C49D0D13587310E060A4B8893AE42 ] AsrAppCharger   C:\WINDOWS\system32\DRIVERS\AsrAppCharger.sys
06:11:36.0644 0x3258  AsrAppCharger - ok
06:11:36.0647 0x3258  [ 0C3F9E39C0B10D351026D580D9FF6F86, 0A19F09FD2EF200BED07CDBC4AAF41261A0C0468F680A5AAEBCD26B371676D53 ] AsrRamDisk      C:\WINDOWS\system32\drivers\AsrRamDisk.sys
06:11:36.0649 0x3258  AsrRamDisk - ok
06:11:36.0652 0x3258  AsyncMac - ok
06:11:36.0654 0x3258  atapi - ok
06:11:36.0659 0x3258  [ 482D2BAB840034F65046D0F2F42E2BEB, 3365F78C05D26BFA6375712C4DC0FA548F876B9A52F25AE360F7437E3183B973 ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdWT6.sys
06:11:36.0662 0x3258  AtiHDAudioService - ok
06:11:36.0665 0x3258  AudioEndpointBuilder - ok
06:11:36.0668 0x3258  Audiosrv - ok
06:11:36.0671 0x3258  AxInstSV - ok
06:11:36.0673 0x3258  b06bdrv - ok
06:11:36.0676 0x3258  BasicDisplay - ok
06:11:36.0679 0x3258  BasicRender - ok
06:11:36.0683 0x3258  bcmfn - ok
06:11:36.0686 0x3258  bcmfn2 - ok
06:11:36.0688 0x3258  BDESVC - ok
06:11:36.0691 0x3258  Beep - ok
06:11:36.0717 0x3258  [ 5EC0D7E4DBEB0D8CA45F01A3277D8D9B, 385E950F03B79A4F3DD171360323CAC3420FE3D800BB1698478395C5151E3565 ] BEService       C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
06:11:36.0738 0x3258  BEService - ok
06:11:36.0742 0x3258  BFE - ok
06:11:36.0745 0x3258  BITS - ok
06:11:36.0755 0x3258  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
06:11:36.0761 0x3258  Bonjour Service - ok
06:11:36.0765 0x3258  bowser - ok
06:11:36.0770 0x3258  [ 641D69FB7F57963E7A5BD3E7BFA5E78B, 2637DEE5249954FBC222F6F9D871935CBD8E1E6CBE945B5DCF9B8221D2F26DAF ] BRDriver64      C:\programdata\bitraider\BRDriver64.sys
06:11:36.0772 0x3258  BRDriver64 - ok
06:11:36.0775 0x3258  BrokerInfrastructure - ok
06:11:36.0778 0x3258  Browser - ok
06:11:36.0794 0x3258  [ 2B0B52BC483C3C52E42B1C930962890D, 4240E4138A480E3496DC1D2FFBAED2408A482C091038A08E6C84F5B32984CA85 ] BRSptSvc        C:\programdata\bitraider\BRSptSvc.exe
06:11:36.0810 0x3258  BRSptSvc - ok
06:11:36.0813 0x3258  BthAvrcpTg - ok
06:11:36.0816 0x3258  BthHFEnum - ok
06:11:36.0818 0x3258  bthhfhid - ok
06:11:36.0821 0x3258  BthHFSrv - ok
06:11:36.0824 0x3258  BTHMODEM - ok
06:11:36.0828 0x3258  bthserv - ok
06:11:36.0831 0x3258  buttonconverter - ok
06:11:36.0833 0x3258  CapImg - ok
06:11:36.0835 0x3258  cdfs - ok
06:11:36.0838 0x3258  CDPSvc - ok
06:11:36.0841 0x3258  CDPUserSvc - ok
06:11:36.0845 0x3258  cdrom - ok
06:11:36.0848 0x3258  CertPropSvc - ok
06:11:36.0875 0x3258  [ 33B82CF69E41B38A2EC0C3CABDE80D6E, E7331B38232001A4055CE1F6D74AED0F108385DDBD5211006DA8EA932D3B1575 ] cfosspeed       C:\WINDOWS\system32\DRIVERS\cfosspeed6.sys
06:11:36.0900 0x3258  cfosspeed - ok
06:11:36.0911 0x3258  [ A469854CD303A39162931FA770EA45A2, 45CB65C6079B023A808EA76B96C4FE0D6A588E4A6747B337CC24FDDD35B5D356 ] cFosSpeedS      C:\Program Files\ASRock\XFast LAN\spd.exe
06:11:36.0916 0x3258  cFosSpeedS - ok
06:11:36.0919 0x3258  cht4iscsi - ok
06:11:36.0922 0x3258  cht4vbd - ok
06:11:36.0925 0x3258  circlass - ok
06:11:36.0928 0x3258  CLFS - ok
06:11:36.0930 0x3258  ClipSVC - ok
06:11:36.0933 0x3258  clreg - ok
06:11:36.0941 0x3258  CmBatt - ok
06:11:36.0943 0x3258  CNG - ok
06:11:36.0946 0x3258  cnghwassist - ok
06:11:36.0961 0x3258  CompositeBus - ok
06:11:36.0964 0x3258  COMSysApp - ok
06:11:36.0966 0x3258  condrv - ok
06:11:36.0969 0x3258  CoreMessagingRegistrar - ok
06:11:36.0993 0x3258  [ 84BDA86BEE6B2D2A9B719D6467E33E98, 94C216AE192C092950C708161D3433370EA9F43EDF0F37A14F2EFF1A9033171A ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
06:11:37.0134 0x3258  cphs - ok
06:11:37.0139 0x3258  CryptSvc - ok
06:11:37.0144 0x3258  [ 6C9CF7CB91048B306341346924CC2E08, C8D681EF93E89710FFEFD230D7710A874AED38DB8C578F56EA0D412878578FDC ] ctxusbm         C:\WINDOWS\system32\DRIVERS\ctxusbm.sys
06:11:37.0152 0x3258  ctxusbm - ok
06:11:37.0155 0x3258  dam - ok
06:11:37.0158 0x3258  DcomLaunch - ok
06:11:37.0161 0x3258  DcpSvc - ok
06:11:37.0164 0x3258  debugregsvc - ok
06:11:37.0167 0x3258  defragsvc - ok
06:11:37.0170 0x3258  DeveloperToolsService - ok
06:11:37.0172 0x3258  DeviceAssociationService - ok
06:11:37.0175 0x3258  DeviceInstall - ok
06:11:37.0177 0x3258  DevQueryBroker - ok
06:11:37.0180 0x3258  Dfsc - ok
06:11:37.0188 0x3258  [ 9593475FBC857A05D93BFF4FA7323C2B, D2A958AF5EFDC6136A6ABB7F8D5FE1F84C967E79BEA96C5BE3661A0145DEB907 ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
06:11:37.0211 0x3258  dg_ssudbus - ok
06:11:37.0214 0x3258  Dhcp - ok
06:11:37.0217 0x3258  diagnosticshub.standardcollector.service - ok
06:11:37.0220 0x3258  DiagTrack - ok
06:11:37.0223 0x3258  disk - ok
06:11:37.0225 0x3258  DmEnrollmentSvc - ok
06:11:37.0228 0x3258  dmvsc - ok
06:11:37.0232 0x3258  dmwappushservice - ok
06:11:37.0235 0x3258  Dnscache - ok
06:11:37.0239 0x3258  dot3svc - ok
06:11:37.0242 0x3258  DPS - ok
06:11:37.0244 0x3258  drmkaud - ok
06:11:37.0247 0x3258  DsmSvc - ok
06:11:37.0249 0x3258  DsSvc - ok
06:11:37.0251 0x3258  DXGKrnl - ok
06:11:37.0255 0x3258  EapHost - ok
06:11:37.0257 0x3258  EasyAntiCheat - ok
06:11:37.0262 0x3258  ebdrv - ok
06:11:37.0265 0x3258  EFS - ok
06:11:37.0269 0x3258  EhStorClass - ok
06:11:37.0271 0x3258  EhStorTcgDrv - ok
06:11:37.0274 0x3258  embeddedmode - ok
06:11:37.0277 0x3258  EntAppSvc - ok
06:11:37.0290 0x3258  [ 1E0764A8A8F39BAAEB271DA597422584, 0FEC21BF69925496E11DCDBB3409F63C0F7970FF2B68391CD6E3EF6F566FD2A3 ] EpsonCustomerParticipation C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
06:11:37.0298 0x3258  EpsonCustomerParticipation - ok
06:11:37.0303 0x3258  [ 20ECD0A490A121CB34F553FAD1DBBD39, 17C9DA33E78FBC7582B0AA53C611929B80FBBE1343B84A179D515B51C964D218 ] EpsonScanSvc    C:\Windows\system32\EscSvc64.exe
06:11:37.0352 0x3258  EpsonScanSvc - ok
06:11:37.0355 0x3258  ErrDev - ok
06:11:37.0360 0x3258  EventSystem - ok
06:11:37.0363 0x3258  exfat - ok
06:11:37.0366 0x3258  fastfat - ok
06:11:37.0369 0x3258  Fax - ok
06:11:37.0371 0x3258  fdc - ok
06:11:37.0374 0x3258  fdPHost - ok
06:11:37.0376 0x3258  FDResPub - ok
06:11:37.0380 0x3258  fhsvc - ok
06:11:37.0382 0x3258  FileCrypt - ok
06:11:37.0385 0x3258  FileInfo - ok
06:11:37.0388 0x3258  Filetrace - ok
06:11:37.0391 0x3258  flpydisk - ok
06:11:37.0394 0x3258  FltMgr - ok
06:11:37.0398 0x3258  [ 7C3C4B4C951EC1BDFD4F769D05E2CC68, 7B9DA195D3CF0E7BE6BB532CC5D058BC6658B7538B5C5CF09B1A4ABEF1ECACB4 ] FNETURPX        C:\WINDOWS\system32\drivers\FNETURPX.SYS
06:11:37.0399 0x3258  FNETURPX - ok
06:11:37.0402 0x3258  FontCache - ok
06:11:37.0406 0x3258  FontCache3.0.0.0 - ok
06:11:37.0409 0x3258  FrameServer - ok
06:11:37.0411 0x3258  FsDepends - ok
06:11:37.0413 0x3258  Fs_Rec - ok
06:11:37.0416 0x3258  fvevol - ok
06:11:37.0519 0x3258  [ D34C4F5E8EA369EC12C61995A2704E85, 892B502BB36904C52245740D0EE6468EFB983B09ECCAFBA4F32F5214C1A93834 ] GalaxyClientService E:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe
06:11:37.0528 0x3258  GalaxyClientService - ok
06:11:37.0646 0x3258  [ A8F76E305F25A83F4606B7DCE96C0A8F, 1DA2BF7F215412EBA9AF92179C385650885D983D142D55E200BF19369833B655 ] GalaxyCommunication C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
06:11:37.0754 0x3258  GalaxyCommunication - ok
06:11:37.0763 0x3258  gencounter - ok
06:11:37.0766 0x3258  genericusbfn - ok
06:11:37.0769 0x3258  [ CF0B4FD1C219AD2F9A610866A94B2A4B, A0D3569B58D45DE7A05A15E7125BD86FCC4E87B81D8383E3621090B7F0CC8B3A ] gfiark          C:\WINDOWS\system32\drivers\gfiark.sys
06:11:37.0771 0x3258  gfiark - ok
06:11:37.0775 0x3258  [ 8A93EF289B0F9355E513C4AC08EBF8ED, D14804F08A53F185F7DDDBB5ACFB63CBEB90787090ED3F55B7D40001C4E4394E ] gfiutil         C:\WINDOWS\system32\drivers\gfiutil.sys
06:11:37.0777 0x3258  gfiutil - ok
06:11:37.0779 0x3258  GPIOClx0101 - ok
06:11:37.0782 0x3258  gpsvc - ok
06:11:37.0784 0x3258  GpuEnergyDrv - ok
06:11:37.0791 0x3258  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
06:11:37.0793 0x3258  gupdate - ok
06:11:37.0797 0x3258  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
06:11:37.0800 0x3258  gupdatem - ok
06:11:37.0803 0x3258  HDAudBus - ok
06:11:37.0806 0x3258  HidBatt - ok
06:11:37.0808 0x3258  HidBth - ok
06:11:37.0811 0x3258  hidi2c - ok
06:11:37.0813 0x3258  hidinterrupt - ok
06:11:37.0816 0x3258  HidIr - ok
06:11:37.0819 0x3258  hidserv - ok
06:11:37.0821 0x3258  HidUsb - ok
06:11:37.0872 0x3258  [ 651F11A06820ABA8CB966ACD271CD18D, 96DEFAB9C43C14C6F584AF7E985D965C4340E2976EACD6C96D901FB27C88D484 ] HiPatchService  E:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
06:11:37.0872 0x3258  HiPatchService - ok
06:11:37.0875 0x3258  HomeGroupListener - ok
06:11:37.0877 0x3258  HomeGroupProvider - ok
06:11:37.0881 0x3258  HpSAMD - ok
06:11:37.0884 0x3258  HTTP - ok
06:11:37.0887 0x3258  HvHost - ok
06:11:37.0890 0x3258  hvservice - ok
06:11:37.0893 0x3258  hwpolicy - ok
06:11:37.0898 0x3258  hyperkbd - ok
06:11:37.0901 0x3258  HyperVideo - ok
06:11:37.0904 0x3258  i8042prt - ok
06:11:37.0906 0x3258  iagpio - ok
06:11:37.0909 0x3258  iai2c - ok
06:11:37.0911 0x3258  iaLPSS2i_GPIO2 - ok
06:11:37.0913 0x3258  iaLPSS2i_I2C - ok
06:11:37.0916 0x3258  iaLPSSi_GPIO - ok
06:11:37.0918 0x3258  iaLPSSi_I2C - ok
06:11:37.0921 0x3258  iaStorAV - ok
06:11:37.0924 0x3258  iaStorV - ok
06:11:37.0926 0x3258  ibbus - ok
06:11:37.0933 0x3258  [ 83FF82FE209E7997067B375DAD6CF23D, E312DD068E51DBF96A8232D7D1C9F158652FDA23649655F1102928B320795091 ] ICCS            C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe
06:11:37.0936 0x3258  ICCS - ok
06:11:37.0939 0x3258  icssvc - ok
06:11:37.0997 0x3258  [ 6AD680D27A4EB39FE2839310FDC7F86D, 40DAA3A6B479FF2A24C6A8B78FC65F7D1E8E44072204AFF64A70CEA0E55CB813 ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
06:11:38.0051 0x3258  igfx - ok
06:11:38.0063 0x3258  [ 3A790F0B274320FF8F5ED5FF0AF1EEC0, C8CAAC8DA510B1EC3111EA7229589DEA3186772D836EB5398B7C3B6184B0F562 ] igfxCUIService1.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
06:11:38.0096 0x3258  igfxCUIService1.0.0.0 - ok
06:11:38.0099 0x3258  [ 67999A9D34A0B2479381E7A61AFC37AB, 7A1F72B2AD859345E1F092CE80C269767E4EF9931146B7F01E891EC12CCA684F ] ikbevent        C:\WINDOWS\system32\DRIVERS\ikbevent.sys
06:11:38.0101 0x3258  ikbevent - ok
06:11:38.0104 0x3258  IKEEXT - ok
06:11:38.0106 0x3258  [ DDAE90DD5BDAC53C8C5CD5B82FC1F1B4, A7019D2335CB46DCD9ABDB896622254E58AB265EC3D72A92B1C4890D45DEE85F ] imsevent        C:\WINDOWS\system32\DRIVERS\imsevent.sys
06:11:38.0109 0x3258  imsevent - ok
06:11:38.0111 0x3258  IndirectKmd - ok
06:11:38.0117 0x3258  [ 41CD73C13FCAEA4942F0CF7608B7530F, 835BF370E6624975E3CB7106D4835488D6F527C545E7B0ECD26A161D36CABABB ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
06:11:38.0119 0x3258  intaud_WaveExtensible - ok
06:11:38.0187 0x3258  [ 7F08B78B1516626869FB44A61EFDF566, C585902D4F6E36A44097C192CCF19F1947F99C86A7BB77E83C0BE475F0151161 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
06:11:38.0251 0x3258  IntcAzAudAddService - ok
06:11:38.0265 0x3258  [ 8AEEE0F4D210B61F917CFEA9653973C4, F09389C2A3E1DED402C08BF1A30BD79A342B0E55AD4996CF2E5189A004E6E62F ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
06:11:38.0272 0x3258  IntcDAud - ok
06:11:38.0286 0x3258  [ 832CE330DD987227B7DEA8C03F22AEFA, 3DE64D9519D9D865D4C1AA7483D846F0154392B6685BDC451DEC7DA5EA0E2B2E ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
06:11:38.0295 0x3258  Intel® Capability Licensing Service Interface - ok
06:11:38.0300 0x3258  [ 709C8623721A1F1EF388EA75A07EC33B, 8F3046F1699E7B560827A965C66F3FCACDE24CD451829D4D2218038830344867 ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
06:11:38.0302 0x3258  Intel® ME Service - ok
06:11:38.0305 0x3258  intelide - ok
06:11:38.0307 0x3258  intelpep - ok
06:11:38.0310 0x3258  intelppm - ok
06:11:38.0313 0x3258  iorate - ok
06:11:38.0315 0x3258  IpFilterDriver - ok
06:11:38.0319 0x3258  iphlpsvc - ok
06:11:38.0321 0x3258  IPMIDRV - ok
06:11:38.0323 0x3258  IPNAT - ok
06:11:38.0326 0x3258  irda - ok
06:11:38.0328 0x3258  IRENUM - ok
06:11:38.0331 0x3258  irmon - ok
06:11:38.0333 0x3258  isapnp - ok
06:11:38.0336 0x3258  iScsiPrt - ok
06:11:38.0340 0x3258  [ 1ECC1A421B0AEBF9A6934451FBFD7848, 1A8DDEC42831C12760CF27FA02EDD06D5CCE25A606E2DECB7D8487B5961B11AC ] ISCT            C:\WINDOWS\System32\drivers\ISCTD64.sys
06:11:38.0342 0x3258  ISCT - ok
06:11:38.0345 0x3258  [ 6BCEF45131C8B8E1C558BE540B190B3C, DFFED7FD9DCC15808184E65065DE6138FE010AC01217E5016B2D20A5B89AC570 ] iusb3hcs        C:\WINDOWS\system32\drivers\iusb3hcs.sys
06:11:38.0347 0x3258  iusb3hcs - ok
06:11:38.0351 0x3258  [ 48B904D31F2369D7B0122617038D3F5B, 8A43CB37667929CCCC37B6E79E82509BBCA6C8884B44059DC87BCA7C21BE7FE1 ] iwdbus          C:\WINDOWS\System32\drivers\iwdbus.sys
06:11:38.0352 0x3258  iwdbus - ok
06:11:38.0357 0x3258  [ C44B44E24B929631D9D7368F5B2B40CF, A7F11A5A970FA30CC358B9A0FE8163B686208E424C6682AEA45C06B1E7E11963 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
06:11:38.0360 0x3258  jhi_service - ok
06:11:38.0363 0x3258  k57nd60a - ok
06:11:38.0366 0x3258  kbdclass - ok
06:11:38.0368 0x3258  kbdhid - ok
06:11:38.0371 0x3258  kdnic - ok
06:11:38.0373 0x3258  KeyIso - ok
06:11:38.0376 0x3258  KSecDD - ok
06:11:38.0378 0x3258  KSecPkg - ok
06:11:38.0382 0x3258  ksthunk - ok
06:11:38.0384 0x3258  KtmRm - ok
06:11:38.0387 0x3258  LanmanServer - ok
06:11:38.0390 0x3258  LanmanWorkstation - ok
06:11:38.0394 0x3258  lfsvc - ok
06:11:38.0398 0x3258  [ 5E7641AECAC4CFC7B4B442B461A25C83, 1F6AF4ED863C17A1A326A4CB0D289EAABFAD748A6B0A7CE40CF842694572FDB7 ] LGBusEnum       C:\WINDOWS\system32\drivers\LGBusEnum.sys
06:11:38.0400 0x3258  LGBusEnum - ok
06:11:38.0403 0x3258  [ 2D7F1C02B94D6F0F3E10107E5EA8E141, 93B266F38C3C3EAAB475D81597ABBD7CC07943035068BB6FD670DBBE15DE0131 ] LGCoreTemp      C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys
06:11:38.0405 0x3258  LGCoreTemp - ok
06:11:38.0409 0x3258  [ 7D24DEBE7BC0C01A30A9A65806B61453, 342E758AD6F88E3FA83B69F26836A9F54D1A3BE344D1D2F9C6394E085E5FCA92 ] LGJoyXlCore     C:\WINDOWS\system32\drivers\LGJoyXlCore.sys
06:11:38.0412 0x3258  LGJoyXlCore - ok
06:11:38.0416 0x3258  [ DBEAB45BA2B47C057F3BAE5AD0654173, 9660B803F4AD4BD3427F1A24D09B2712E4DC0E25A18942984AF01750D77C118C ] LGVirHid        C:\WINDOWS\system32\drivers\LGVirHid.sys
06:11:38.0418 0x3258  LGVirHid - ok
06:11:38.0421 0x3258  LicenseManager - ok
06:11:38.0424 0x3258  lltdio - ok
06:11:38.0426 0x3258  lltdsvc - ok
06:11:38.0429 0x3258  lmhosts - ok
06:11:38.0435 0x3258  [ 75F29D77B0540FCF47EE3BE000BBABDA, 3FFDDC42D51FABAA7F3BFD088F008DE39F3479B25214260D98336F00B6336BFA ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
06:11:38.0439 0x3258  LMS - ok
06:11:38.0445 0x3258  [ 7159380FEF0F34EEBFEACF261F25EB76, 78E7AE140C80A6C3BBF93F87DFB0BD3D9456A4C8F386758ED2A2FD544A10D494 ] LogiRegistryService C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
06:11:38.0447 0x3258  LogiRegistryService - ok
06:11:38.0451 0x3258  LSI_SAS - ok
06:11:38.0454 0x3258  LSI_SAS2i - ok
06:11:38.0457 0x3258  LSI_SAS3i - ok
06:11:38.0459 0x3258  LSI_SSS - ok
06:11:38.0462 0x3258  LSM - ok
06:11:38.0464 0x3258  luafv - ok
06:11:38.0467 0x3258  MapsBroker - ok
06:11:38.0470 0x3258  megasas - ok
06:11:38.0472 0x3258  megasas2i - ok
06:11:38.0475 0x3258  megasr - ok
06:11:38.0479 0x3258  [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
06:11:38.0480 0x3258  MEIx64 - ok
06:11:38.0484 0x3258  MessagingService - ok
06:11:38.0489 0x3258  mlx4_bus - ok
06:11:38.0492 0x3258  MMCSS - ok
06:11:38.0494 0x3258  Modem - ok
06:11:38.0497 0x3258  monitor - ok
06:11:38.0499 0x3258  mouclass - ok
06:11:38.0501 0x3258  mouhid - ok
06:11:38.0504 0x3258  mountmgr - ok
06:11:38.0510 0x3258  [ 4235B16E8C2E277EECB9BFD4579C428E, BCACE6E4D61E5C8A3BA417A361121A5B2F2B3D6E103B005C3F5738D4915B5FF4 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
06:11:38.0513 0x3258  MozillaMaintenance - ok
06:11:38.0516 0x3258  mpsdrv - ok
06:11:38.0519 0x3258  MpsSvc - ok
06:11:38.0522 0x3258  MQAC - ok
06:11:38.0525 0x3258  MRxDAV - ok
06:11:38.0528 0x3258  mrxsmb - ok
06:11:38.0530 0x3258  mrxsmb10 - ok
06:11:38.0533 0x3258  mrxsmb20 - ok
06:11:38.0536 0x3258  MsBridge - ok
06:11:38.0539 0x3258  MSDTC - ok
06:11:38.0543 0x3258  Msfs - ok
06:11:38.0546 0x3258  msgpiowin32 - ok
06:11:38.0549 0x3258  mshidkmdf - ok
06:11:38.0551 0x3258  mshidumdf - ok
06:11:38.0554 0x3258  msisadrv - ok
06:11:38.0557 0x3258  MSiSCSI - ok
06:11:38.0560 0x3258  msiserver - ok
06:11:38.0563 0x3258  MSKSSRV - ok
06:11:38.0565 0x3258  MsLldp - ok
06:11:38.0568 0x3258  MSMQ - ok
06:11:38.0571 0x3258  MSPCLOCK - ok
06:11:38.0573 0x3258  MSPQM - ok
06:11:38.0575 0x3258  MsRPC - ok
06:11:38.0579 0x3258  mssmbios - ok
06:11:38.0582 0x3258  MSTEE - ok
06:11:38.0584 0x3258  MTConfig - ok
06:11:38.0587 0x3258  Mup - ok
06:11:38.0590 0x3258  mvumis - ok
06:11:38.0593 0x3258  NativeWifiP - ok
06:11:38.0596 0x3258  NcaSvc - ok
06:11:38.0598 0x3258  NcbService - ok
06:11:38.0601 0x3258  NcdAutoSetup - ok
06:11:38.0603 0x3258  ndfltr - ok
06:11:38.0606 0x3258  NDIS - ok
06:11:38.0608 0x3258  NdisCap - ok
06:11:38.0611 0x3258  NdisImPlatform - ok
06:11:38.0613 0x3258  NdisTapi - ok
06:11:38.0616 0x3258  Ndisuio - ok
06:11:38.0618 0x3258  NdisVirtualBus - ok
06:11:38.0620 0x3258  NdisWan - ok
06:11:38.0623 0x3258  ndiswanlegacy - ok
06:11:38.0625 0x3258  ndproxy - ok
06:11:38.0628 0x3258  Ndu - ok
06:11:38.0630 0x3258  NetAdapterCx - ok
06:11:38.0633 0x3258  NetBIOS - ok
06:11:38.0636 0x3258  NetBT - ok
06:11:38.0639 0x3258  Netlogon - ok
06:11:38.0641 0x3258  Netman - ok
06:11:38.0649 0x3258  NetMsmqActivator - ok
06:11:38.0650 0x3258  NetPipeActivator - ok
06:11:38.0654 0x3258  netprofm - ok
06:11:38.0657 0x3258  NetSetupSvc - ok
06:11:38.0658 0x3258  NetTcpActivator - ok
06:11:38.0660 0x3258  NetTcpPortSharing - ok
06:11:38.0664 0x3258  netvsc - ok
06:11:38.0668 0x3258  NgcCtnrSvc - ok
06:11:38.0670 0x3258  NgcSvc - ok
06:11:38.0672 0x3258  NlaSvc - ok
06:11:38.0676 0x3258  [ DE7FCC77F4A503AF4CA6A47D49B3713D, 4BFAA99393F635CD05D91A64DE73EDB5639412C129E049F0FE34F88517A10FC6 ] NPF             C:\WINDOWS\system32\drivers\npf.sys
06:11:38.0678 0x3258  NPF - ok
06:11:38.0682 0x3258  Npfs - ok
06:11:38.0684 0x3258  npggsvc - ok
06:11:38.0687 0x3258  npsvctrig - ok
06:11:38.0689 0x3258  nsi - ok
06:11:38.0692 0x3258  nsiproxy - ok
06:11:38.0695 0x3258  NTFS - ok
06:11:38.0698 0x3258  Null - ok
06:11:38.0701 0x3258  nvraid - ok
06:11:38.0703 0x3258  nvstor - ok
06:11:38.0706 0x3258  OneSyncSvc - ok
06:11:38.0793 0x3258  [ 7E39C76DD4A21D7F81910EC36B8B8734, 52471C9C18F3866CB8D46FD2BDCFDE202140B0F1271D02A0EC96F5025BC26166 ] Origin Client Service E:\Program Files (x86)\Origin\OriginClientService.exe
06:11:38.0857 0x3258  Origin Client Service - ok
06:11:38.0941 0x3258  [ FF0ABC191051923E62BEC38F039A48F4, 8138F032F131E5F81F3FB26E2985D5ACA0CD5801D04698BFB3B73DB2DA593B88 ] Origin Web Helper Service E:\Program Files (x86)\Origin\OriginWebHelperService.exe
06:11:38.0990 0x3258  Origin Web Helper Service - ok
06:11:38.0997 0x3258  [ 7A56CF3E3F12E8AF599963B16F50FB6A, 882C82BAE96D263138D4C0D6C425458B770B7B9C8E9C1D28AC918BF6BE94A5C2 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
06:11:38.0999 0x3258  ose - ok
06:11:39.0003 0x3258  p2pimsvc - ok
06:11:39.0006 0x3258  p2psvc - ok
06:11:39.0008 0x3258  Parport - ok
06:11:39.0011 0x3258  partmgr - ok
06:11:39.0013 0x3258  PcaSvc - ok
06:11:39.0016 0x3258  pci - ok
06:11:39.0019 0x3258  pciide - ok
06:11:39.0021 0x3258  pcmcia - ok
06:11:39.0024 0x3258  pcw - ok
06:11:39.0027 0x3258  pdc - ok
06:11:39.0029 0x3258  PEAUTH - ok
06:11:39.0031 0x3258  percsas2i - ok
06:11:39.0034 0x3258  percsas3i - ok
06:11:39.0053 0x3258  PerfHost - ok
06:11:39.0059 0x3258  PhoneSvc - ok
06:11:39.0062 0x3258  PimIndexMaintenanceSvc - ok
06:11:39.0065 0x3258  pla - ok
06:11:39.0069 0x3258  PlugPlay - ok
06:11:39.0072 0x3258  [ CD421DDB5C6E5458CE52EDC36DE7DC5B, 7B9C0A8B2B86BBF5D7E02F2620B0015A2530CBBC99724BE20313DE53EB31D62E ] PnkBstrA        C:\Windows\system32\PnkBstrA.exe
06:11:39.0176 0x3258  PnkBstrA - ok
06:11:39.0179 0x3258  PNRPAutoReg - ok
06:11:39.0182 0x3258  PNRPsvc - ok
06:11:39.0184 0x3258  PolicyAgent - ok
06:11:39.0188 0x3258  Power - ok
06:11:39.0190 0x3258  PptpMiniport - ok
06:11:39.0259 0x3258  [ 12ECCDB0C865A8CB805BABAD5A54EF41, B6E709C692EDDC2308A6944DE1ABA13155FC52905DC572C0008BCC97B3889771 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
06:11:39.0308 0x3258  PrintNotify - ok
06:11:39.0314 0x3258  Processor - ok
06:11:39.0317 0x3258  ProfSvc - ok
06:11:39.0319 0x3258  Psched - ok
06:11:39.0322 0x3258  QWAVE - ok
06:11:39.0325 0x3258  QWAVEdrv - ok
06:11:39.0327 0x3258  RasAcd - ok
06:11:39.0330 0x3258  RasAgileVpn - ok
06:11:39.0332 0x3258  RasAuto - ok
06:11:39.0334 0x3258  Rasl2tp - ok
06:11:39.0338 0x3258  RasMan - ok
06:11:39.0340 0x3258  RasPppoe - ok
06:11:39.0342 0x3258  RasSstp - ok
06:11:39.0345 0x3258  rdbss - ok
06:11:39.0349 0x3258  rdpbus - ok
06:11:39.0351 0x3258  RDPDR - ok
06:11:39.0356 0x3258  RdpVideoMiniport - ok
06:11:39.0359 0x3258  rdyboost - ok
06:11:39.0362 0x3258  ReFSv1 - ok
06:11:39.0365 0x3258  RemoteAccess - ok
06:11:39.0368 0x3258  RemoteRegistry - ok
06:11:39.0370 0x3258  RetailDemo - ok
06:11:39.0373 0x3258  RmSvc - ok
06:11:39.0379 0x3258  [ 83A6C2CAFE236652D1559640594A0EA8, 52360F17C9C70C9CEA3316560B40C4D89FD705ED7E6B6088C99FC54D4CC35EB5 ] rpcapd          C:\Program Files (x86)\WinPcap\rpcapd.exe
06:11:39.0382 0x3258  rpcapd - ok
06:11:39.0385 0x3258  RpcEptMapper - ok
06:11:39.0388 0x3258  RpcLocator - ok
06:11:39.0390 0x3258  RpcSs - ok
06:11:39.0394 0x3258  rspndr - ok
06:11:39.0396 0x3258  s3cap - ok
06:11:39.0399 0x3258  SamSs - ok
06:11:39.0496 0x3258  [ EBACFAE8FD88871890503D3FBAA2DD02, 0C6C2EBD6C724B30AE744D00E4C4A7E1FEBC7F354C86AFBB3972F62E91B98E06 ] SBAMSvc         C:\Program Files (x86)\VIPRE\SBAMSvc.exe
06:11:39.0589 0x3258  SBAMSvc - ok
06:11:39.0599 0x3258  [ 924BE0DE73D16BC9706FDA5C7491CD4C, E523F31CBBF7B1E1707F475ED19BB55EA66CF2781DC4697D53785512C1042F78 ] sbapifs         C:\WINDOWS\system32\DRIVERS\sbapifs.sys
06:11:39.0602 0x3258  sbapifs - ok
06:11:39.0606 0x3258  [ CDB7E06B43189D5904314889416189FB, E40415C803EE535D72957366144ADF8B084365A596C9E3AD699B737D786C49F7 ] sbhips          C:\WINDOWS\system32\drivers\sbhips.sys
06:11:39.0608 0x3258  sbhips - ok
06:11:39.0611 0x3258  sbp2port - ok
06:11:39.0623 0x3258  [ 47BCA750462F8F3E70FD380C51B905C3, 830D0DC65E360DDBD69F49CC93D7394BA672296E3265A3F270A064E9D5B17C21 ] SBPIMSvc        C:\Program Files (x86)\VIPRE\SBPIMSvc.exe
06:11:39.0627 0x3258  SBPIMSvc - ok
06:11:39.0641 0x3258  [ 8693367BC7491C3575E148091718EB4F, 6AAEC1794EB8697CD41A42CCF688A8FF58897E6F44457D642B1CEB738FE10443 ] sbwfw           C:\WINDOWS\system32\DRIVERS\sbwfw.sys
06:11:39.0647 0x3258  sbwfw - ok
06:11:39.0653 0x3258  [ 62BD702DA5C16A71E992FF75EC981A3C, 594ABFCF48868C6814D76754EC7EFE6A57976A65E5027FEABCE03F4E6EC9535F ] sbwtis          C:\WINDOWS\system32\DRIVERS\sbwtis.sys
06:11:39.0656 0x3258  sbwtis - ok
06:11:39.0662 0x3258  SCardSvr - ok
06:11:39.0665 0x3258  ScDeviceEnum - ok
06:11:39.0670 0x3258  scfilter - ok
06:11:39.0673 0x3258  Schedule - ok
06:11:39.0675 0x3258  scmbus - ok
06:11:39.0678 0x3258  scmdisk0101 - ok
06:11:39.0681 0x3258  SCPolicySvc - ok
06:11:39.0683 0x3258  sdbus - ok
06:11:39.0686 0x3258  SDRSVC - ok
06:11:39.0689 0x3258  sdstor - ok
06:11:39.0692 0x3258  seclogon - ok
06:11:39.0698 0x3258  [ 07F83829E7429E60298440CD1E601A6A, 9F1229CD8DD9092C27A01F5D56E3C0D59C2BB9F0139ABF042E56F343637FDA33 ] semav6msr64     C:\WINDOWS\system32\drivers\semav6msr64.sys
06:11:39.0700 0x3258  semav6msr64 - ok
06:11:39.0703 0x3258  SENS - ok
06:11:39.0706 0x3258  SensorDataService - ok
06:11:39.0708 0x3258  SensorService - ok
06:11:39.0711 0x3258  SensrSvc - ok
06:11:39.0714 0x3258  SerCx - ok
06:11:39.0717 0x3258  SerCx2 - ok
06:11:39.0720 0x3258  Serenum - ok
06:11:39.0722 0x3258  Serial - ok
06:11:39.0724 0x3258  sermouse - ok
06:11:39.0731 0x3258  SessionEnv - ok
06:11:39.0736 0x3258  sfloppy - ok
06:11:39.0739 0x3258  SharedAccess - ok
06:11:39.0742 0x3258  ShellHWDetection - ok
06:11:39.0744 0x3258  shpamsvc - ok
06:11:39.0747 0x3258  SiSRaid2 - ok
06:11:39.0749 0x3258  SiSRaid4 - ok
06:11:39.0757 0x3258  [ F3AAB7DF6408431C762D8721B68F46E4, 56ED764AA660955B8B06322703D086B3A52106625A83CCAF195B08BCBDEDA88F ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
06:11:39.0761 0x3258  SkypeUpdate - ok
06:11:39.0765 0x3258  smphost - ok
06:11:39.0768 0x3258  SmsRouter - ok
06:11:39.0774 0x3258  SNMPTRAP - ok
06:11:39.0777 0x3258  spaceport - ok
06:11:39.0779 0x3258  SpbCx - ok
06:11:39.0782 0x3258  Spooler - ok
06:11:39.0785 0x3258  sppsvc - ok
06:11:39.0788 0x3258  srv - ok
06:11:39.0791 0x3258  srv2 - ok
06:11:39.0793 0x3258  srvnet - ok
06:11:39.0796 0x3258  SSDPSRV - ok
06:11:39.0799 0x3258  SshBroker - ok
06:11:39.0802 0x3258  SshProxy - ok
06:11:39.0804 0x3258  SstpSvc - ok
06:11:39.0811 0x3258  [ 36C3697CA09B23C77BDF95A6B0B57310, DAEF9CFBDE444A80FB41DA0BC5C3C4E1E4B535497A5EDA43EC8768A6EC42E4EA ] ssudmdm         C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
06:11:39.0815 0x3258  ssudmdm - ok
06:11:39.0819 0x3258  StateRepository - ok
06:11:39.0846 0x3258  [ C8DC0C34715627ABF7A265ED27D1F75A, 5B8B9AC65D7458A8C6C868107E0BE3F9B1A1A5117FC69FDC260BAA9F1BDD0008 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
06:11:39.0868 0x3258  Steam Client Service - ok
06:11:39.0872 0x3258  stexstor - ok
06:11:39.0874 0x3258  stisvc - ok
06:11:39.0877 0x3258  storahci - ok
06:11:39.0880 0x3258  storflt - ok
06:11:39.0882 0x3258  stornvme - ok
06:11:39.0885 0x3258  storqosflt - ok
06:11:39.0888 0x3258  StorSvc - ok
06:11:39.0890 0x3258  storufs - ok
06:11:39.0893 0x3258  storvsc - ok
06:11:39.0896 0x3258  svsvc - ok
06:11:39.0899 0x3258  swenum - ok
06:11:39.0901 0x3258  swprv - ok
06:11:39.0904 0x3258  Synth3dVsc - ok
06:11:39.0907 0x3258  SysMain - ok
06:11:39.0909 0x3258  SystemEventsBroker - ok
06:11:39.0913 0x3258  [ 328E65035DE1D2C1206B4F94AAFC1DB7, EB7EF4CD7641C96C1050AD6139C22DE35EABEDF2DAFA5CD9D8F0C129BE02891F ] SystemUsageReportSvc_WILLAMETTE C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
06:11:39.0915 0x3258  SystemUsageReportSvc_WILLAMETTE - ok
06:11:39.0918 0x3258  TabletInputService - ok
06:11:39.0921 0x3258  TapiSrv - ok
06:11:39.0923 0x3258  Tcpip - ok
06:11:39.0926 0x3258  Tcpip6 - ok
06:11:39.0930 0x3258  tcpipreg - ok
06:11:39.0933 0x3258  tdx - ok
06:11:39.0936 0x3258  terminpt - ok
06:11:39.0938 0x3258  TermService - ok
06:11:39.0941 0x3258  Themes - ok
06:11:39.0944 0x3258  TieringEngineService - ok
06:11:39.0947 0x3258  tiledatamodelsvc - ok
06:11:39.0950 0x3258  TimeBrokerSvc - ok
06:11:39.0952 0x3258  TPM - ok
06:11:39.0955 0x3258  TrkWks - ok
06:11:39.0957 0x3258  TrustedInstaller - ok
06:11:39.0961 0x3258  tsusbflt - ok
06:11:39.0964 0x3258  TsUsbGD - ok
06:11:39.0966 0x3258  tunnel - ok
06:11:39.0970 0x3258  tzautoupdate - ok
06:11:39.0972 0x3258  UASPStor - ok
06:11:39.0975 0x3258  UcmCx0101 - ok
06:11:39.0979 0x3258  UcmTcpciCx0101 - ok
06:11:39.0982 0x3258  UcmUcsi - ok
06:11:39.0984 0x3258  Ucx01000 - ok
06:11:39.0987 0x3258  UdeCx - ok
06:11:39.0990 0x3258  udfs - ok
06:11:39.0993 0x3258  UEFI - ok
06:11:39.0996 0x3258  Ufx01000 - ok
06:11:39.0999 0x3258  UfxChipidea - ok
06:11:40.0002 0x3258  ufxsynopsys - ok
06:11:40.0007 0x3258  UI0Detect - ok
06:11:40.0010 0x3258  umbus - ok
06:11:40.0012 0x3258  UmPass - ok
06:11:40.0015 0x3258  UmRdpService - ok
06:11:40.0018 0x3258  UnistoreSvc - ok
06:11:40.0029 0x3258  [ 193AD338F2A64D17300AD640ADFA5D0A, DABFFFE66CE7335F477C14C1D95AB9DB3C2EA3155ACBE41049FE217532E731C0 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
06:11:40.0033 0x3258  UNS - ok
06:11:40.0037 0x3258  upnphost - ok
06:11:40.0040 0x3258  UrsChipidea - ok
06:11:40.0043 0x3258  UrsCx01000 - ok
06:11:40.0045 0x3258  UrsSynopsys - ok
06:11:40.0048 0x3258  usbaudio - ok
06:11:40.0050 0x3258  usbccgp - ok
06:11:40.0053 0x3258  usbcir - ok
06:11:40.0056 0x3258  usbehci - ok
06:11:40.0059 0x3258  usbhub - ok
06:11:40.0062 0x3258  USBHUB3 - ok
06:11:40.0064 0x3258  usbohci - ok
06:11:40.0068 0x3258  usbprint - ok
06:11:40.0070 0x3258  usbser - ok
06:11:40.0073 0x3258  USBSTOR - ok
06:11:40.0075 0x3258  usbuhci - ok
06:11:40.0078 0x3258  USBXHCI - ok
06:11:40.0081 0x3258  UserDataSvc - ok
06:11:40.0085 0x3258  UserManager - ok
06:11:40.0097 0x3258  [ 52C696180AC8371163B268D648DCBDA5, B75925B1B8722F174862AF7554587F81C9A57EF661253F230B4EDA5E2C2AA4A6 ] USER_ESRV_SVC_WILLAMETTE C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
06:11:40.0102 0x3258  USER_ESRV_SVC_WILLAMETTE - ok
06:11:40.0106 0x3258  UsoSvc - ok
06:11:40.0108 0x3258  VaultSvc - ok
06:11:40.0111 0x3258  VBAudioVACMME - ok
06:11:40.0113 0x3258  VBAudioVMVAIOMME - ok
06:11:40.0119 0x3258  [ 8CD776EB77695524CCE594AAC3A71569, AEF6F9B0E5F67E87819EB0E9FA5220EEF247A160A2BF8511CEDC8D12A9D4D941 ] VBoxNetAdp      C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys
06:11:40.0127 0x3258  VBoxNetAdp - ok
06:11:40.0130 0x3258  vdrvroot - ok
06:11:40.0133 0x3258  vds - ok
06:11:40.0136 0x3258  VerifierExt - ok
06:11:40.0139 0x3258  vhdmp - ok
06:11:40.0141 0x3258  vhf - ok
06:11:40.0239 0x3258  [ 281BDFE02F491925C2FF6DCC62AB8C3F, DF66F96159147B285B913FF39452435B863EE60567FEE008E76E427C0F4EA79B ] VipreEdgeProtection C:\Program Files (x86)\VIPRE\VipreEdgeProtection.exe
06:11:40.0331 0x3258  VipreEdgeProtection - ok
06:11:40.0339 0x3258  vmbus - ok
06:11:40.0341 0x3258  VMBusHID - ok
06:11:40.0344 0x3258  vmgid - ok
06:11:40.0347 0x3258  vmicguestinterface - ok
06:11:40.0349 0x3258  vmicheartbeat - ok
06:11:40.0352 0x3258  vmickvpexchange - ok
06:11:40.0355 0x3258  vmicrdv - ok
06:11:40.0358 0x3258  vmicshutdown - ok
06:11:40.0360 0x3258  vmictimesync - ok
06:11:40.0363 0x3258  vmicvmsession - ok
06:11:40.0367 0x3258  vmicvss - ok
06:11:40.0369 0x3258  volmgr - ok
06:11:40.0372 0x3258  volmgrx - ok
06:11:40.0375 0x3258  volsnap - ok
06:11:40.0378 0x3258  volume - ok
06:11:40.0381 0x3258  vpci - ok
06:11:40.0384 0x3258  vsmraid - ok
06:11:40.0387 0x3258  VSS - ok
06:11:40.0390 0x3258  VSTXRAID - ok
06:11:40.0392 0x3258  vwifibus - ok
06:11:40.0395 0x3258  vwififlt - ok
06:11:40.0398 0x3258  W32Time - ok
06:11:40.0402 0x3258  w3logsvc - ok
06:11:40.0405 0x3258  W3SVC - ok
06:11:40.0407 0x3258  WacomPen - ok
06:11:40.0410 0x3258  WalletService - ok
06:11:40.0413 0x3258  wanarp - ok
06:11:40.0416 0x3258  wanarpv6 - ok
06:11:40.0419 0x3258  WAS - ok
06:11:40.0422 0x3258  wbengine - ok
06:11:40.0426 0x3258  WbioSrvc - ok
06:11:40.0429 0x3258  wcifs - ok
06:11:40.0432 0x3258  Wcmsvc - ok
06:11:40.0435 0x3258  wcncsvc - ok
06:11:40.0438 0x3258  wcnfs - ok
06:11:40.0441 0x3258  WdBoot - ok
06:11:40.0444 0x3258  Wdf01000 - ok
06:11:40.0446 0x3258  WdFilter - ok
06:11:40.0449 0x3258  WdiServiceHost - ok
06:11:40.0452 0x3258  WdiSystemHost - ok
06:11:40.0455 0x3258  wdiwifi - ok
06:11:40.0457 0x3258  WdNisDrv - ok
06:11:40.0460 0x3258  WdNisSvc - ok
06:11:40.0463 0x3258  WebClient - ok
06:11:40.0467 0x3258  [ 95CA811154E87D0945C9D076683E786C, F9AD1F3F260175AF762110FA13B77837712F13E338A32BA3B1BD09F8D2EA8767 ] WebExaminer     C:\WINDOWS\system32\Drivers\WebExaminer64.sys
06:11:40.0472 0x3258  WebExaminer - ok
06:11:40.0475 0x3258  WebManagement - ok
06:11:40.0478 0x3258  Wecsvc - ok
06:11:40.0481 0x3258  WEPHOSTSVC - ok
06:11:40.0484 0x3258  wercplsupport - ok
06:11:40.0487 0x3258  WerSvc - ok
06:11:40.0490 0x3258  WFPLWFS - ok
06:11:40.0493 0x3258  WiaRpc - ok
06:11:40.0496 0x3258  WIMMount - ok
06:11:40.0498 0x3258  WinDefend - ok
06:11:40.0504 0x3258  WindowsTrustedRT - ok
06:11:40.0507 0x3258  WindowsTrustedRTProxy - ok
06:11:40.0509 0x3258  WinHttpAutoProxySvc - ok
06:11:40.0512 0x3258  WinMad - ok
06:11:40.0519 0x3258  Winmgmt - ok
06:11:40.0522 0x3258  WinRM - ok
06:11:40.0527 0x3258  WINUSB - ok
06:11:40.0530 0x3258  WinVerbs - ok
06:11:40.0533 0x3258  wisvc - ok
06:11:40.0535 0x3258  WlanSvc - ok
06:11:40.0539 0x3258  wlidsvc - ok
06:11:40.0541 0x3258  WmiAcpi - ok
06:11:40.0546 0x3258  wmiApSrv - ok
06:11:40.0548 0x3258  WMPNetworkSvc - ok
06:11:40.0554 0x3258  [ 43C8D087B31C592163B33A4BDA540E40, 3A6C4E5E56931B29321DCC723585F2F0E804EF4DCDEAB2A8687F30FC3AE70E43 ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
06:11:40.0560 0x3258  Wof - ok
06:11:40.0565 0x3258  workfolderssvc - ok
06:11:40.0568 0x3258  WPDBusEnum - ok
06:11:40.0571 0x3258  WpdUpFltr - ok
06:11:40.0574 0x3258  WpnService - ok
06:11:40.0577 0x3258  WpnUserService - ok
06:11:40.0581 0x3258  ws2ifsl - ok
06:11:40.0584 0x3258  wscsvc - ok
06:11:40.0588 0x3258  WSearch - ok
06:11:40.0593 0x3258  wuauserv - ok
06:11:40.0595 0x3258  WudfPf - ok
06:11:40.0598 0x3258  WUDFRd - ok
06:11:40.0601 0x3258  wudfsvc - ok
06:11:40.0604 0x3258  WUDFWpdFs - ok
06:11:40.0607 0x3258  WUDFWpdMtp - ok
06:11:40.0610 0x3258  WwanSvc - ok
06:11:40.0613 0x3258  XblAuthManager - ok
06:11:40.0616 0x3258  XblGameSave - ok
06:11:40.0619 0x3258  xboxgip - ok
06:11:40.0623 0x3258  XboxNetApiSvc - ok
06:11:40.0626 0x3258  [ 51D45870A9886F8EEDDD1173CB605086, 7138EF9F039DDC823E95077279936FD4553C1465D6821DABDBC56CF9B6D4C008 ] xhunter1        C:\WINDOWS\xhunter1.sys
06:11:40.0628 0x3258  xhunter1 - ok
06:11:40.0631 0x3258  xinputhid - ok
06:11:40.0636 0x3258  [ 377F3E3467A8BFA3CDC921AD6425D513, 699271DA1D63E90FE1F9FE8AF3A8789CA588A0B7A2AFF5899EBA443361E041A5 ] XSplit_Dummy    C:\WINDOWS\system32\drivers\xspltspk.sys
06:11:40.0638 0x3258  XSplit_Dummy - ok
06:11:40.0639 0x3258  ================ Scan global ===============================
06:11:40.0648 0x3258  [ Global ] - ok
06:11:40.0649 0x3258  ================ Scan MBR ==================================
06:11:40.0669 0x3258  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
06:11:40.0680 0x3258  \Device\Harddisk1\DR1 - ok
06:11:40.0683 0x3258  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
06:11:40.0760 0x3258  \Device\Harddisk0\DR0 - ok
06:11:40.0760 0x3258  ================ Scan VBR ==================================
06:11:40.0767 0x3258  [ 3EC688C82AF1200C4CBB99281ABDE575 ] \Device\Harddisk1\DR1\Partition1
06:11:40.0770 0x3258  \Device\Harddisk1\DR1\Partition1 - ok
06:11:40.0772 0x3258  [ 4195C33F60170C3C31EEE00F64824F71 ] \Device\Harddisk0\DR0\Partition1
06:11:40.0773 0x3258  \Device\Harddisk0\DR0\Partition1 - ok
06:11:40.0775 0x3258  [ AFB885310246CC59BE58A251CD49564B ] \Device\Harddisk0\DR0\Partition2
06:11:40.0775 0x3258  \Device\Harddisk0\DR0\Partition2 - ok
06:11:40.0776 0x3258  ================ Scan generic autorun ======================
06:11:40.0971 0x3258  [ 4878D4D36D683EBE2F1E5F83C6A3BDB3, 82DA7BFED5F61DF4B679B06339E4065CCE0DA0D6741287F93A2EF1BCC85AB1E1 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
06:11:41.0151 0x3258  RTHDVCPL - ok
06:11:41.0184 0x3258  [ 669072AD8B65B2B55CA29E58A68AEF35, 1A272EF904607268E2EDAE2F1C8F8FA3C407F617905BB0865E9868E9564A3687 ] C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe
06:11:41.0203 0x3258  XFast LAN - ok
06:11:41.0207 0x3258  THXCfg64 - ok
06:11:41.0225 0x3258  CmPCIaudio - ok
06:11:41.0232 0x3258  [ B589CB12BC5CD70F870D3F3C81934CB7, 0BA62518CAEB52D0D2C5F13CA0694C6AB33C0373426DB2C1F66CD569D9815CAD ] C:\Program Files (x86)\VIPRE\SBRC.exe
06:11:41.0235 0x3258  SBRegRebootCleaner - ok
06:11:41.0249 0x3258  [ 48515EEA1608ECD83FE26C7490460F59, C7C552D13ED12B4165FDE45F69E170D4F18B746D84B3B08E7254AAF8D9671D0C ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
06:11:41.0255 0x3258  AdobeAAMUpdater-1.0 - ok
06:11:41.0670 0x3258  [ 5D36AEE2E912402F4ABAB2C55182E3E1, 791D2562776C8E9F309990F1DDA96D51FA9E562EBC1158930C1B9D190EE54FEB ] C:\Program Files\Logitech Gaming Software\LCore.exe
06:11:41.0873 0x3258  Launch LCore - ok
06:11:41.0885 0x3258  Wondershare Helper Compact.exe - ok
06:11:41.0892 0x3258  [ 4D241A6A8F6BA9FA32FF836551FFDCEA, DEE87DFB6A8E87D40E3653435223B54AF2AB232DDC02D22468C126C54096F006 ] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
06:11:41.0895 0x3258  USB3MON - ok
06:11:41.0969 0x3258  [ 3F564861B1CBDD24BD10669918A235BD, EDEF936A71113DB4765C97AE6A06F352AAEEC04DF28DBC905BA0B37B1C188B0E ] C:\Program Files (x86)\XFastUSB\XFastUsb.exe
06:11:42.0032 0x3258  XFastUSB - ok
06:11:42.0052 0x3258  [ D29C3F2BEA792CC2196AF7B2BEB9E899, EC787FC79C01444BAEA4866146FCF810B664D4C176D3F3E9C58C436531EE4266 ] C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe
06:11:42.0064 0x3258  THX TruStudio NB Settings - ok
06:11:42.0068 0x3258  [ C419DF63E0121D72411285780C2FC6CC, F47F854D327C589D174D3BB5B55D5C05F5ACA73DF52A6BEF47596B9010190291 ] C:\Windows\UpdReg.EXE
06:11:42.0070 0x3258  UpdReg - ok
06:11:42.0074 0x3258  [ F4F7C86191A981C804326E2EF6F3604F, 1ECE05E643AFFB27A148A8B86615F6C167875EF29D6FF7E2FD15B8DCBE6B8A16 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
06:11:42.0075 0x3258  Adobe Reader Speed Launcher - ok
06:11:42.0092 0x3258  [ 48BE298F7FD1BEF4D8FBACB04D8D95C4, D375B3F6E850E4B0EC81BAA0E554C356BE2248AA77C6C56F5267CA05460FE4EB ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
06:11:42.0103 0x3258  Adobe ARM - ok
06:11:42.0123 0x3258  [ 86F33213C450FED3C7E32F9473415E7E, 75F3B3739DD12D8B7F93BEA912B864BF8BAEFA061720A87CF1F55030334C2558 ] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
06:11:42.0136 0x3258  EEventManager - ok
06:11:42.0148 0x3258  [ 0B0E075EF0AE1CD8526D6D851E684224, 349E8ACF6E570A51C265AC19C4971C7BECA96820A8298D559E2DB6199C03C5A6 ] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe
06:11:42.0154 0x3258  FUFAXRCV - ok
06:11:42.0172 0x3258  [ 55436C4848E1EB25644C70EF78D53FF9, A8951914E7BDA419CA9A4EBF7285767DC7CEBAD498FADBD017B21F8329C1D131 ] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe
06:11:42.0182 0x3258  FUFAXSTM - ok
06:11:42.0216 0x3258  [ C6BDF0F7C7354CE2073BAB2C8B1BE845, AF2B54FBFEC942E8B76DF194E97A4EEE2F8CEAA17FBA7A924C6C01728CCE8F8A ] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
06:11:42.0240 0x3258  Wondershare Helper Compact.exe - ok
06:11:42.0288 0x3258  [ F8E3493BF7C7BB37DA9043563A63A245, C6DE78E5B917F2292608A98050F79BDAEC2DBC9CAAAADBDD376D782781EBB1FF ] C:\Program Files (x86)\VIPRE\SBAMTray.exe
06:11:42.0327 0x3258  SBAMTray - ok
06:11:42.0335 0x3258  [ 210792CDFEC88F194EA4AAC3E9E2EDC0, 5ECEE307E1E3DBCDD97F80A249C7963321BCFE4A030C46C7DF2FDE32402DBCC1 ] C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe
06:11:42.0338 0x3258  PlaysTV - ok
06:11:42.0343 0x3258  [ 3FC72550D7A0CF39F6356CB8B8F456C8, 661FB7ACDF4464E77FEBAF1CEFC78A15317E9407BD144A0FB7E0D44B732C62B9 ] C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe
06:11:42.0346 0x3258  Raptr - ok
06:11:42.0386 0x3258  [ 6302798F2560E25EB980992B1C4C5F81, E5029149F326C3CD0E418D87234B656A47E4ADFA1E8BC186F0F80B763224BD02 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
06:11:42.0416 0x3258  Adobe Creative Cloud - ok
06:11:42.0431 0x3258  [ 48766D7EE1DD77573D0559B26F1B6141, D2ECF40ED2E1075881060CBF7B73A02758BF1B04B977C19C68AF518E2D4A9381 ] C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
06:11:42.0437 0x3258  ConnectionCenter - ok
06:11:42.0444 0x3258  [ D495BB4726F421EB74167A6D287BD531, 9FE8A7E9CA1DC2A1280763F21B5F83032875B555B9833B263FBED356DBE7F515 ] C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
06:11:42.0447 0x3258  Redirector - ok
06:11:42.0469 0x3258  [ EA4F9B19B3614349C79CC97DCA4C23A8, EC330F2E4F002FE450CDC1FC84AC0122C21C7912A483A99143450822004795E3 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
06:11:42.0478 0x3258  StartCCC - ok
06:11:42.0570 0x3258  [ EFD6500382989DB49A29E5F019D2E5F7, 1129DF694D3A62113BF9AA0C5D82E81A096167548346E3F934FC143DCB4A1A85 ] E:\Programs\DivX\DivX Media Server\DivXMediaServer.exe
06:11:42.0583 0x3258  DivXMediaServer - ok
06:11:42.0586 0x3258  OneDriveSetup - ok
06:11:42.0588 0x3258  OneDriveSetup - ok
06:11:42.0709 0x3258  [ 3F218819210022E0D585957FB155D4A3, A2F27FCB349BAE82B4A4475F3C26E5D57D0EC07C22228F35CFFE3ABBFBA2EEF8 ] E:\Program Files (x86)\Steam\steam.exe
06:11:42.0783 0x3258  Steam - ok
06:11:42.0803 0x3258  [ FD9A7F99A09DB266D0C1361B0ACCBD7E, 579160BDACDFE39AE5DDD7B5C2964453E89BA8D933F3FB16C6E3897EA3BDED29 ] C:\Users\Owner\AppData\Local\Microsoft\OneDrive\OneDrive.exe
06:11:42.0811 0x3258  OneDrive - ok
06:11:42.0814 0x3258  Discord - ok
06:11:42.0839 0x3258  RESTART_STICKY_NOTES - ok
06:11:42.0960 0x3258  [ CE38FADA564D4D4CD3D9C6562C151C35, 8ED6A47F4F730B96BFF4553E07192081F5647F1CA162A73F0FD5FA3AF552B084 ] E:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe
06:11:43.0144 0x3258  GalaxyClient - ok
06:11:43.0225 0x3258  [ 3E37679CA1AB41998A6C533606ACEF34, 32558C93B6DAA610266EE8A543EE28AC73FCACE1C29DF267D4CAF9AF114A67EE ] C:\Users\Owner\AppData\Local\MyComGames\MyComGames.exe
06:11:43.0294 0x3258  MyComGames - ok
06:11:43.0324 0x3258  [ FE00B2DD3CDE9ED93D215906BF171B91, E1A4D991DA19CA579760DF9AE44BFBA983B5A57030197E23D145004244DDE42E ] C:\Program Files\AMD\CNext\CNext\amddvr.exe
06:11:43.0342 0x3258  AMDDVR - ok
06:11:43.0345 0x3258  OneDriveSetup - ok
06:11:43.0348 0x3258  WAB Migrate - ok
06:11:43.0349 0x3258  OneDriveSetup - ok
06:11:43.0350 0x3258  WAB Migrate - ok
06:11:43.0351 0x3258  Waiting for KSN requests completion. In queue: 79
06:11:44.0364 0x3258  AV detected via SS2: ThreatTrack Security VIPRE, C:\Program Files (x86)\VIPRE\SBAMWSC.EXE ( 9.3.4.3 ), 0x41000 ( enabled : updated )
06:11:44.0368 0x3258  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.1066 ), 0x60100 ( disabled : updated )
06:11:44.0370 0x3258  FW detected via SS2: ThreatTrack Security VIPRE, C:\Program Files (x86)\VIPRE\SBAMWSC.EXE ( 9.3.4.3 ), 0x40010 ( disabled )
06:11:44.0372 0x3258  Win FW state via NFP2: enabled ( trusted )
06:11:44.0542 0x3258  ============================================================
06:11:44.0542 0x3258  Scan finished
06:11:44.0542 0x3258  ============================================================
06:11:44.0548 0x0678  Detected object count: 0
06:11:44.0548 0x0678  Actual detected object count: 006:11:21.0640 0x09d8  TDSS rootkit removing tool 3.1.0.15 Apr 18 2017 11:34:02
06:11:25.0703 0x09d8  ============================================================
06:11:25.0703 0x09d8  Current date / time: 2017/05/02 06:11:25.0703
06:11:25.0703 0x09d8  SystemInfo:
06:11:25.0703 0x09d8  
06:11:25.0703 0x09d8  OS Version: 10.0.14393 ServicePack: 0.0
06:11:25.0703 0x09d8  Product type: Workstation
06:11:25.0703 0x09d8  ComputerName: OWNER-PC
06:11:25.0703 0x09d8  UserName: Owner
06:11:25.0703 0x09d8  Windows directory: C:\WINDOWS
06:11:25.0703 0x09d8  System windows directory: C:\WINDOWS
06:11:25.0703 0x09d8  Running under WOW64
06:11:25.0703 0x09d8  Processor architecture: Intel x64
06:11:25.0703 0x09d8  Number of processors: 4
06:11:25.0703 0x09d8  Page size: 0x1000
06:11:25.0703 0x09d8  Boot type: Normal boot
06:11:25.0703 0x09d8  CodeIntegrityOptions = 0x00000001
06:11:25.0703 0x09d8  ============================================================
06:11:25.0778 0x09d8  KLMD registered as C:\WINDOWS\system32\drivers\31531817.sys
06:11:25.0778 0x09d8  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.1066, osProperties = 0x19
06:11:25.0815 0x09d8  System UUID: {BBFA4CDF-9E5D-91BB-0E25-7DA2DE1C695A}
06:11:26.0071 0x09d8  Drive \Device\Harddisk1\DR1 - Size: 0x15D50F66000 ( 1397.27 Gb ), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
06:11:26.0072 0x09d8  Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 ( 119.24 Gb ), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
06:11:26.0078 0x09d8  ============================================================
06:11:26.0078 0x09d8  \Device\Harddisk1\DR1:
06:11:26.0078 0x09d8  MBR partitions:
06:11:26.0078 0x09d8  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xAEA86800
06:11:26.0078 0x09d8  \Device\Harddisk0\DR0:
06:11:26.0078 0x09d8  MBR partitions:
06:11:26.0078 0x09d8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
06:11:26.0078 0x09d8  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xEE49000
06:11:26.0078 0x09d8  ============================================================
06:11:26.0080 0x09d8  C: <-> \Device\Harddisk0\DR0\Partition2
06:11:26.0108 0x09d8  E: <-> \Device\Harddisk1\DR1\Partition1
06:11:26.0109 0x09d8  ============================================================
06:11:26.0109 0x09d8  Initialize success
06:11:26.0109 0x09d8  ============================================================
06:11:33.0871 0x3258  ============================================================
06:11:33.0871 0x3258  Scan started
06:11:33.0871 0x3258  Mode: Manual; 
06:11:33.0871 0x3258  ============================================================
06:11:33.0871 0x3258  KSN ping started
06:11:33.0930 0x3258  KSN ping finished: true
06:11:36.0251 0x3258  ================ Scan system memory ========================
06:11:36.0251 0x3258  System memory - ok
06:11:36.0252 0x3258  ================ Scan services =============================
06:11:36.0290 0x3258  1394ohci - ok
06:11:36.0293 0x3258  3ware - ok
06:11:36.0311 0x3258  [ B33CF4DE909A5B30F526D82053A63C8E, ABF5BB962C038E545C18B96E686E072D780C907096C7BB341297AF31D3703ABD ] ABBYY.Licensing.FineReader.Sprint.9.0 C:\Program Files (x86)\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe
06:11:36.0321 0x3258  ABBYY.Licensing.FineReader.Sprint.9.0 - ok
06:11:36.0330 0x3258  ACPI - ok
06:11:36.0333 0x3258  AcpiDev - ok
06:11:36.0335 0x3258  acpiex - ok
06:11:36.0338 0x3258  acpipagr - ok
06:11:36.0341 0x3258  AcpiPmi - ok
06:11:36.0344 0x3258  acpitime - ok
06:11:36.0369 0x3258  [ BE62B286791F715E430FB022C1707BBA, 7EDFF71EFB65AA895270BD83B16F390F53D98C438ADA23E780CE6200CA0449F1 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
06:11:36.0375 0x3258  AdobeFlashPlayerUpdateSvc - ok
06:11:36.0392 0x3258  [ 5B4D60ACCEA6918DBBB8C9FD4ADBDD29, FE3A768A76B673DCD09716F600D52B53A6EABEC6AA65E0DE89144F322E8571B8 ] AdobeUpdateService C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
06:11:36.0402 0x3258  AdobeUpdateService - ok
06:11:36.0407 0x3258  ADP80XX - ok
06:11:36.0410 0x3258  AFD - ok
06:11:36.0449 0x3258  [ A32EA26C90A47B2BC93D7B0B94994B11, 1CF8DB09CA27EAC5741489EDFDFC04D69485B51C726F539BFCDC3C78E8E09EBE ] AGSService      C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
06:11:36.0478 0x3258  AGSService - ok
06:11:36.0483 0x3258  ahcache - ok
06:11:36.0486 0x3258  AJRouter - ok
06:11:36.0488 0x3258  ALG - ok
06:11:36.0500 0x3258  [ 890B88BD4C280ADA516D442FD939B73B, 7EE2DF453003E5D3B9D6257D6F75969FF4B5896E3247DCE6258936D38A0B62EF ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
06:11:36.0519 0x3258  AMD External Events Utility - ok
06:11:36.0523 0x3258  AmdK8 - ok
06:11:36.0527 0x3258  [ 275B6F698CBEC36C42D3ABD7EE049BA1, C6CE3514947F67410B34E8973C87996A14FF485A2E5C7E5BA4FE276FB893D51C ] amdkmafd        C:\WINDOWS\system32\drivers\amdkmafd.sys
06:11:36.0532 0x3258  amdkmafd - ok
06:11:36.0549 0x3258  amdkmdag - ok
06:11:36.0561 0x3258  [ F2F5C6ADB4DCA558B9627CD9EED800A2, 9AAE8AE709FFCD52B54C27D016BEA84F57A0F040912BEFD700D836883B2582F7 ] amdkmdap        C:\WINDOWS\System32\DriverStore\FileRepository\c0313248.inf_amd64_aad49543f8f714a1\atikmpag.sys
06:11:36.0580 0x3258  amdkmdap - ok
06:11:36.0584 0x3258  AmdPPM - ok
06:11:36.0588 0x3258  amdsata - ok
06:11:36.0591 0x3258  amdsbs - ok
06:11:36.0594 0x3258  amdxata - ok
06:11:36.0598 0x3258  AppHostSvc - ok
06:11:36.0600 0x3258  AppID - ok
06:11:36.0603 0x3258  AppIDSvc - ok
06:11:36.0605 0x3258  Appinfo - ok
06:11:36.0608 0x3258  applockerfltr - ok
06:11:36.0611 0x3258  AppReadiness - ok
06:11:36.0614 0x3258  AppXSvc - ok
06:11:36.0617 0x3258  arcsas - ok
06:11:36.0621 0x3258  [ 4DFF4312661F54EE87DC9A13CAEE60E0, 8821D2CA4036E764EFF71108735148FF54D3275DDCE1860EC7D67B2355E8DF82 ] asahci64        C:\WINDOWS\system32\drivers\asahci64.sys
06:11:36.0626 0x3258  asahci64 - ok
06:11:36.0639 0x3258  aspnet_state - ok
06:11:36.0642 0x3258  [ E1AFEE1584C74050DE0DD16DE2A54BF3, 77C8D98159D8BCDC7917B04977949823D50C49D0D13587310E060A4B8893AE42 ] AsrAppCharger   C:\WINDOWS\system32\DRIVERS\AsrAppCharger.sys
06:11:36.0644 0x3258  AsrAppCharger - ok
06:11:36.0647 0x3258  [ 0C3F9E39C0B10D351026D580D9FF6F86, 0A19F09FD2EF200BED07CDBC4AAF41261A0C0468F680A5AAEBCD26B371676D53 ] AsrRamDisk      C:\WINDOWS\system32\drivers\AsrRamDisk.sys
06:11:36.0649 0x3258  AsrRamDisk - ok
06:11:36.0652 0x3258  AsyncMac - ok
06:11:36.0654 0x3258  atapi - ok
06:11:36.0659 0x3258  [ 482D2BAB840034F65046D0F2F42E2BEB, 3365F78C05D26BFA6375712C4DC0FA548F876B9A52F25AE360F7437E3183B973 ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdWT6.sys
06:11:36.0662 0x3258  AtiHDAudioService - ok
06:11:36.0665 0x3258  AudioEndpointBuilder - ok
06:11:36.0668 0x3258  Audiosrv - ok
06:11:36.0671 0x3258  AxInstSV - ok
06:11:36.0673 0x3258  b06bdrv - ok
06:11:36.0676 0x3258  BasicDisplay - ok
06:11:36.0679 0x3258  BasicRender - ok
06:11:36.0683 0x3258  bcmfn - ok
06:11:36.0686 0x3258  bcmfn2 - ok
06:11:36.0688 0x3258  BDESVC - ok
06:11:36.0691 0x3258  Beep - ok
06:11:36.0717 0x3258  [ 5EC0D7E4DBEB0D8CA45F01A3277D8D9B, 385E950F03B79A4F3DD171360323CAC3420FE3D800BB1698478395C5151E3565 ] BEService       C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
06:11:36.0738 0x3258  BEService - ok
06:11:36.0742 0x3258  BFE - ok
06:11:36.0745 0x3258  BITS - ok
06:11:36.0755 0x3258  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
06:11:36.0761 0x3258  Bonjour Service - ok
06:11:36.0765 0x3258  bowser - ok
06:11:36.0770 0x3258  [ 641D69FB7F57963E7A5BD3E7BFA5E78B, 2637DEE5249954FBC222F6F9D871935CBD8E1E6CBE945B5DCF9B8221D2F26DAF ] BRDriver64      C:\programdata\bitraider\BRDriver64.sys
06:11:36.0772 0x3258  BRDriver64 - ok
06:11:36.0775 0x3258  BrokerInfrastructure - ok
06:11:36.0778 0x3258  Browser - ok
06:11:36.0794 0x3258  [ 2B0B52BC483C3C52E42B1C930962890D, 4240E4138A480E3496DC1D2FFBAED2408A482C091038A08E6C84F5B32984CA85 ] BRSptSvc        C:\programdata\bitraider\BRSptSvc.exe
06:11:36.0810 0x3258  BRSptSvc - ok
06:11:36.0813 0x3258  BthAvrcpTg - ok
06:11:36.0816 0x3258  BthHFEnum - ok
06:11:36.0818 0x3258  bthhfhid - ok
06:11:36.0821 0x3258  BthHFSrv - ok
06:11:36.0824 0x3258  BTHMODEM - ok
06:11:36.0828 0x3258  bthserv - ok
06:11:36.0831 0x3258  buttonconverter - ok
06:11:36.0833 0x3258  CapImg - ok
06:11:36.0835 0x3258  cdfs - ok
06:11:36.0838 0x3258  CDPSvc - ok
06:11:36.0841 0x3258  CDPUserSvc - ok
06:11:36.0845 0x3258  cdrom - ok
06:11:36.0848 0x3258  CertPropSvc - ok
06:11:36.0875 0x3258  [ 33B82CF69E41B38A2EC0C3CABDE80D6E, E7331B38232001A4055CE1F6D74AED0F108385DDBD5211006DA8EA932D3B1575 ] cfosspeed       C:\WINDOWS\system32\DRIVERS\cfosspeed6.sys
06:11:36.0900 0x3258  cfosspeed - ok
06:11:36.0911 0x3258  [ A469854CD303A39162931FA770EA45A2, 45CB65C6079B023A808EA76B96C4FE0D6A588E4A6747B337CC24FDDD35B5D356 ] cFosSpeedS      C:\Program Files\ASRock\XFast LAN\spd.exe
06:11:36.0916 0x3258  cFosSpeedS - ok
06:11:36.0919 0x3258  cht4iscsi - ok
06:11:36.0922 0x3258  cht4vbd - ok
06:11:36.0925 0x3258  circlass - ok
06:11:36.0928 0x3258  CLFS - ok
06:11:36.0930 0x3258  ClipSVC - ok
06:11:36.0933 0x3258  clreg - ok
06:11:36.0941 0x3258  CmBatt - ok
06:11:36.0943 0x3258  CNG - ok
06:11:36.0946 0x3258  cnghwassist - ok
06:11:36.0961 0x3258  CompositeBus - ok
06:11:36.0964 0x3258  COMSysApp - ok
06:11:36.0966 0x3258  condrv - ok
06:11:36.0969 0x3258  CoreMessagingRegistrar - ok
06:11:36.0993 0x3258  [ 84BDA86BEE6B2D2A9B719D6467E33E98, 94C216AE192C092950C708161D3433370EA9F43EDF0F37A14F2EFF1A9033171A ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
06:11:37.0134 0x3258  cphs - ok
06:11:37.0139 0x3258  CryptSvc - ok
06:11:37.0144 0x3258  [ 6C9CF7CB91048B306341346924CC2E08, C8D681EF93E89710FFEFD230D7710A874AED38DB8C578F56EA0D412878578FDC ] ctxusbm         C:\WINDOWS\system32\DRIVERS\ctxusbm.sys
06:11:37.0152 0x3258  ctxusbm - ok
06:11:37.0155 0x3258  dam - ok
06:11:37.0158 0x3258  DcomLaunch - ok
06:11:37.0161 0x3258  DcpSvc - ok
06:11:37.0164 0x3258  debugregsvc - ok
06:11:37.0167 0x3258  defragsvc - ok
06:11:37.0170 0x3258  DeveloperToolsService - ok
06:11:37.0172 0x3258  DeviceAssociationService - ok
06:11:37.0175 0x3258  DeviceInstall - ok
06:11:37.0177 0x3258  DevQueryBroker - ok
06:11:37.0180 0x3258  Dfsc - ok
06:11:37.0188 0x3258  [ 9593475FBC857A05D93BFF4FA7323C2B, D2A958AF5EFDC6136A6ABB7F8D5FE1F84C967E79BEA96C5BE3661A0145DEB907 ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
06:11:37.0211 0x3258  dg_ssudbus - ok
06:11:37.0214 0x3258  Dhcp - ok
06:11:37.0217 0x3258  diagnosticshub.standardcollector.service - ok
06:11:37.0220 0x3258  DiagTrack - ok
06:11:37.0223 0x3258  disk - ok
06:11:37.0225 0x3258  DmEnrollmentSvc - ok
06:11:37.0228 0x3258  dmvsc - ok
06:11:37.0232 0x3258  dmwappushservice - ok
06:11:37.0235 0x3258  Dnscache - ok
06:11:37.0239 0x3258  dot3svc - ok
06:11:37.0242 0x3258  DPS - ok
06:11:37.0244 0x3258  drmkaud - ok
06:11:37.0247 0x3258  DsmSvc - ok
06:11:37.0249 0x3258  DsSvc - ok
06:11:37.0251 0x3258  DXGKrnl - ok
06:11:37.0255 0x3258  EapHost - ok
06:11:37.0257 0x3258  EasyAntiCheat - ok
06:11:37.0262 0x3258  ebdrv - ok
06:11:37.0265 0x3258  EFS - ok
06:11:37.0269 0x3258  EhStorClass - ok
06:11:37.0271 0x3258  EhStorTcgDrv - ok
06:11:37.0274 0x3258  embeddedmode - ok
06:11:37.0277 0x3258  EntAppSvc - ok
06:11:37.0290 0x3258  [ 1E0764A8A8F39BAAEB271DA597422584, 0FEC21BF69925496E11DCDBB3409F63C0F7970FF2B68391CD6E3EF6F566FD2A3 ] EpsonCustomerParticipation C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
06:11:37.0298 0x3258  EpsonCustomerParticipation - ok
06:11:37.0303 0x3258  [ 20ECD0A490A121CB34F553FAD1DBBD39, 17C9DA33E78FBC7582B0AA53C611929B80FBBE1343B84A179D515B51C964D218 ] EpsonScanSvc    C:\Windows\system32\EscSvc64.exe
06:11:37.0352 0x3258  EpsonScanSvc - ok
06:11:37.0355 0x3258  ErrDev - ok
06:11:37.0360 0x3258  EventSystem - ok
06:11:37.0363 0x3258  exfat - ok
06:11:37.0366 0x3258  fastfat - ok
06:11:37.0369 0x3258  Fax - ok
06:11:37.0371 0x3258  fdc - ok
06:11:37.0374 0x3258  fdPHost - ok
06:11:37.0376 0x3258  FDResPub - ok
06:11:37.0380 0x3258  fhsvc - ok
06:11:37.0382 0x3258  FileCrypt - ok
06:11:37.0385 0x3258  FileInfo - ok
06:11:37.0388 0x3258  Filetrace - ok
06:11:37.0391 0x3258  flpydisk - ok
06:11:37.0394 0x3258  FltMgr - ok
06:11:37.0398 0x3258  [ 7C3C4B4C951EC1BDFD4F769D05E2CC68, 7B9DA195D3CF0E7BE6BB532CC5D058BC6658B7538B5C5CF09B1A4ABEF1ECACB4 ] FNETURPX        C:\WINDOWS\system32\drivers\FNETURPX.SYS
06:11:37.0399 0x3258  FNETURPX - ok
06:11:37.0402 0x3258  FontCache - ok
06:11:37.0406 0x3258  FontCache3.0.0.0 - ok
06:11:37.0409 0x3258  FrameServer - ok
06:11:37.0411 0x3258  FsDepends - ok
06:11:37.0413 0x3258  Fs_Rec - ok
06:11:37.0416 0x3258  fvevol - ok
06:11:37.0519 0x3258  [ D34C4F5E8EA369EC12C61995A2704E85, 892B502BB36904C52245740D0EE6468EFB983B09ECCAFBA4F32F5214C1A93834 ] GalaxyClientService E:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe
06:11:37.0528 0x3258  GalaxyClientService - ok
06:11:37.0646 0x3258  [ A8F76E305F25A83F4606B7DCE96C0A8F, 1DA2BF7F215412EBA9AF92179C385650885D983D142D55E200BF19369833B655 ] GalaxyCommunication C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
06:11:37.0754 0x3258  GalaxyCommunication - ok
06:11:37.0763 0x3258  gencounter - ok
06:11:37.0766 0x3258  genericusbfn - ok
06:11:37.0769 0x3258  [ CF0B4FD1C219AD2F9A610866A94B2A4B, A0D3569B58D45DE7A05A15E7125BD86FCC4E87B81D8383E3621090B7F0CC8B3A ] gfiark          C:\WINDOWS\system32\drivers\gfiark.sys
06:11:37.0771 0x3258  gfiark - ok
06:11:37.0775 0x3258  [ 8A93EF289B0F9355E513C4AC08EBF8ED, D14804F08A53F185F7DDDBB5ACFB63CBEB90787090ED3F55B7D40001C4E4394E ] gfiutil         C:\WINDOWS\system32\drivers\gfiutil.sys
06:11:37.0777 0x3258  gfiutil - ok
06:11:37.0779 0x3258  GPIOClx0101 - ok
06:11:37.0782 0x3258  gpsvc - ok
06:11:37.0784 0x3258  GpuEnergyDrv - ok
06:11:37.0791 0x3258  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
06:11:37.0793 0x3258  gupdate - ok
06:11:37.0797 0x3258  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
06:11:37.0800 0x3258  gupdatem - ok
06:11:37.0803 0x3258  HDAudBus - ok
06:11:37.0806 0x3258  HidBatt - ok
06:11:37.0808 0x3258  HidBth - ok
06:11:37.0811 0x3258  hidi2c - ok
06:11:37.0813 0x3258  hidinterrupt - ok
06:11:37.0816 0x3258  HidIr - ok
06:11:37.0819 0x3258  hidserv - ok
06:11:37.0821 0x3258  HidUsb - ok
06:11:37.0872 0x3258  [ 651F11A06820ABA8CB966ACD271CD18D, 96DEFAB9C43C14C6F584AF7E985D965C4340E2976EACD6C96D901FB27C88D484 ] HiPatchService  E:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
06:11:37.0872 0x3258  HiPatchService - ok
06:11:37.0875 0x3258  HomeGroupListener - ok
06:11:37.0877 0x3258  HomeGroupProvider - ok
06:11:37.0881 0x3258  HpSAMD - ok
06:11:37.0884 0x3258  HTTP - ok
06:11:37.0887 0x3258  HvHost - ok
06:11:37.0890 0x3258  hvservice - ok
06:11:37.0893 0x3258  hwpolicy - ok
06:11:37.0898 0x3258  hyperkbd - ok
06:11:37.0901 0x3258  HyperVideo - ok
06:11:37.0904 0x3258  i8042prt - ok
06:11:37.0906 0x3258  iagpio - ok
06:11:37.0909 0x3258  iai2c - ok
06:11:37.0911 0x3258  iaLPSS2i_GPIO2 - ok
06:11:37.0913 0x3258  iaLPSS2i_I2C - ok
06:11:37.0916 0x3258  iaLPSSi_GPIO - ok
06:11:37.0918 0x3258  iaLPSSi_I2C - ok
06:11:37.0921 0x3258  iaStorAV - ok
06:11:37.0924 0x3258  iaStorV - ok
06:11:37.0926 0x3258  ibbus - ok
06:11:37.0933 0x3258  [ 83FF82FE209E7997067B375DAD6CF23D, E312DD068E51DBF96A8232D7D1C9F158652FDA23649655F1102928B320795091 ] ICCS            C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe
06:11:37.0936 0x3258  ICCS - ok
06:11:37.0939 0x3258  icssvc - ok
06:11:37.0997 0x3258  [ 6AD680D27A4EB39FE2839310FDC7F86D, 40DAA3A6B479FF2A24C6A8B78FC65F7D1E8E44072204AFF64A70CEA0E55CB813 ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
06:11:38.0051 0x3258  igfx - ok
06:11:38.0063 0x3258  [ 3A790F0B274320FF8F5ED5FF0AF1EEC0, C8CAAC8DA510B1EC3111EA7229589DEA3186772D836EB5398B7C3B6184B0F562 ] igfxCUIService1.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
06:11:38.0096 0x3258  igfxCUIService1.0.0.0 - ok
06:11:38.0099 0x3258  [ 67999A9D34A0B2479381E7A61AFC37AB, 7A1F72B2AD859345E1F092CE80C269767E4EF9931146B7F01E891EC12CCA684F ] ikbevent        C:\WINDOWS\system32\DRIVERS\ikbevent.sys
06:11:38.0101 0x3258  ikbevent - ok
06:11:38.0104 0x3258  IKEEXT - ok
06:11:38.0106 0x3258  [ DDAE90DD5BDAC53C8C5CD5B82FC1F1B4, A7019D2335CB46DCD9ABDB896622254E58AB265EC3D72A92B1C4890D45DEE85F ] imsevent        C:\WINDOWS\system32\DRIVERS\imsevent.sys
06:11:38.0109 0x3258  imsevent - ok
06:11:38.0111 0x3258  IndirectKmd - ok
06:11:38.0117 0x3258  [ 41CD73C13FCAEA4942F0CF7608B7530F, 835BF370E6624975E3CB7106D4835488D6F527C545E7B0ECD26A161D36CABABB ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
06:11:38.0119 0x3258  intaud_WaveExtensible - ok
06:11:38.0187 0x3258  [ 7F08B78B1516626869FB44A61EFDF566, C585902D4F6E36A44097C192CCF19F1947F99C86A7BB77E83C0BE475F0151161 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
06:11:38.0251 0x3258  IntcAzAudAddService - ok
06:11:38.0265 0x3258  [ 8AEEE0F4D210B61F917CFEA9653973C4, F09389C2A3E1DED402C08BF1A30BD79A342B0E55AD4996CF2E5189A004E6E62F ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
06:11:38.0272 0x3258  IntcDAud - ok
06:11:38.0286 0x3258  [ 832CE330DD987227B7DEA8C03F22AEFA, 3DE64D9519D9D865D4C1AA7483D846F0154392B6685BDC451DEC7DA5EA0E2B2E ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
06:11:38.0295 0x3258  Intel® Capability Licensing Service Interface - ok
06:11:38.0300 0x3258  [ 709C8623721A1F1EF388EA75A07EC33B, 8F3046F1699E7B560827A965C66F3FCACDE24CD451829D4D2218038830344867 ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
06:11:38.0302 0x3258  Intel® ME Service - ok
06:11:38.0305 0x3258  intelide - ok
06:11:38.0307 0x3258  intelpep - ok
06:11:38.0310 0x3258  intelppm - ok
06:11:38.0313 0x3258  iorate - ok
06:11:38.0315 0x3258  IpFilterDriver - ok
06:11:38.0319 0x3258  iphlpsvc - ok
06:11:38.0321 0x3258  IPMIDRV - ok
06:11:38.0323 0x3258  IPNAT - ok
06:11:38.0326 0x3258  irda - ok
06:11:38.0328 0x3258  IRENUM - ok
06:11:38.0331 0x3258  irmon - ok
06:11:38.0333 0x3258  isapnp - ok
06:11:38.0336 0x3258  iScsiPrt - ok
06:11:38.0340 0x3258  [ 1ECC1A421B0AEBF9A6934451FBFD7848, 1A8DDEC42831C12760CF27FA02EDD06D5CCE25A606E2DECB7D8487B5961B11AC ] ISCT            C:\WINDOWS\System32\drivers\ISCTD64.sys
06:11:38.0342 0x3258  ISCT - ok
06:11:38.0345 0x3258  [ 6BCEF45131C8B8E1C558BE540B190B3C, DFFED7FD9DCC15808184E65065DE6138FE010AC01217E5016B2D20A5B89AC570 ] iusb3hcs        C:\WINDOWS\system32\drivers\iusb3hcs.sys
06:11:38.0347 0x3258  iusb3hcs - ok
06:11:38.0351 0x3258  [ 48B904D31F2369D7B0122617038D3F5B, 8A43CB37667929CCCC37B6E79E82509BBCA6C8884B44059DC87BCA7C21BE7FE1 ] iwdbus          C:\WINDOWS\System32\drivers\iwdbus.sys
06:11:38.0352 0x3258  iwdbus - ok
06:11:38.0357 0x3258  [ C44B44E24B929631D9D7368F5B2B40CF, A7F11A5A970FA30CC358B9A0FE8163B686208E424C6682AEA45C06B1E7E11963 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
06:11:38.0360 0x3258  jhi_service - ok
06:11:38.0363 0x3258  k57nd60a - ok
06:11:38.0366 0x3258  kbdclass - ok
06:11:38.0368 0x3258  kbdhid - ok
06:11:38.0371 0x3258  kdnic - ok
06:11:38.0373 0x3258  KeyIso - ok
06:11:38.0376 0x3258  KSecDD - ok
06:11:38.0378 0x3258  KSecPkg - ok
06:11:38.0382 0x3258  ksthunk - ok
06:11:38.0384 0x3258  KtmRm - ok
06:11:38.0387 0x3258  LanmanServer - ok
06:11:38.0390 0x3258  LanmanWorkstation - ok
06:11:38.0394 0x3258  lfsvc - ok
06:11:38.0398 0x3258  [ 5E7641AECAC4CFC7B4B442B461A25C83, 1F6AF4ED863C17A1A326A4CB0D289EAABFAD748A6B0A7CE40CF842694572FDB7 ] LGBusEnum       C:\WINDOWS\system32\drivers\LGBusEnum.sys
06:11:38.0400 0x3258  LGBusEnum - ok
06:11:38.0403 0x3258  [ 2D7F1C02B94D6F0F3E10107E5EA8E141, 93B266F38C3C3EAAB475D81597ABBD7CC07943035068BB6FD670DBBE15DE0131 ] LGCoreTemp      C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys
06:11:38.0405 0x3258  LGCoreTemp - ok
06:11:38.0409 0x3258  [ 7D24DEBE7BC0C01A30A9A65806B61453, 342E758AD6F88E3FA83B69F26836A9F54D1A3BE344D1D2F9C6394E085E5FCA92 ] LGJoyXlCore     C:\WINDOWS\system32\drivers\LGJoyXlCore.sys
06:11:38.0412 0x3258  LGJoyXlCore - ok
06:11:38.0416 0x3258  [ DBEAB45BA2B47C057F3BAE5AD0654173, 9660B803F4AD4BD3427F1A24D09B2712E4DC0E25A18942984AF01750D77C118C ] LGVirHid        C:\WINDOWS\system32\drivers\LGVirHid.sys
06:11:38.0418 0x3258  LGVirHid - ok
06:11:38.0421 0x3258  LicenseManager - ok
06:11:38.0424 0x3258  lltdio - ok
06:11:38.0426 0x3258  lltdsvc - ok
06:11:38.0429 0x3258  lmhosts - ok
06:11:38.0435 0x3258  [ 75F29D77B0540FCF47EE3BE000BBABDA, 3FFDDC42D51FABAA7F3BFD088F008DE39F3479B25214260D98336F00B6336BFA ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
06:11:38.0439 0x3258  LMS - ok
06:11:38.0445 0x3258  [ 7159380FEF0F34EEBFEACF261F25EB76, 78E7AE140C80A6C3BBF93F87DFB0BD3D9456A4C8F386758ED2A2FD544A10D494 ] LogiRegistryService C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
06:11:38.0447 0x3258  LogiRegistryService - ok
06:11:38.0451 0x3258  LSI_SAS - ok
06:11:38.0454 0x3258  LSI_SAS2i - ok
06:11:38.0457 0x3258  LSI_SAS3i - ok
06:11:38.0459 0x3258  LSI_SSS - ok
06:11:38.0462 0x3258  LSM - ok
06:11:38.0464 0x3258  luafv - ok
06:11:38.0467 0x3258  MapsBroker - ok
06:11:38.0470 0x3258  megasas - ok
06:11:38.0472 0x3258  megasas2i - ok
06:11:38.0475 0x3258  megasr - ok
06:11:38.0479 0x3258  [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
06:11:38.0480 0x3258  MEIx64 - ok
06:11:38.0484 0x3258  MessagingService - ok
06:11:38.0489 0x3258  mlx4_bus - ok
06:11:38.0492 0x3258  MMCSS - ok
06:11:38.0494 0x3258  Modem - ok
06:11:38.0497 0x3258  monitor - ok
06:11:38.0499 0x3258  mouclass - ok
06:11:38.0501 0x3258  mouhid - ok
06:11:38.0504 0x3258  mountmgr - ok
06:11:38.0510 0x3258  [ 4235B16E8C2E277EECB9BFD4579C428E, BCACE6E4D61E5C8A3BA417A361121A5B2F2B3D6E103B005C3F5738D4915B5FF4 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
06:11:38.0513 0x3258  MozillaMaintenance - ok
06:11:38.0516 0x3258  mpsdrv - ok
06:11:38.0519 0x3258  MpsSvc - ok
06:11:38.0522 0x3258  MQAC - ok
06:11:38.0525 0x3258  MRxDAV - ok
06:11:38.0528 0x3258  mrxsmb - ok
06:11:38.0530 0x3258  mrxsmb10 - ok
06:11:38.0533 0x3258  mrxsmb20 - ok
06:11:38.0536 0x3258  MsBridge - ok
06:11:38.0539 0x3258  MSDTC - ok
06:11:38.0543 0x3258  Msfs - ok
06:11:38.0546 0x3258  msgpiowin32 - ok
06:11:38.0549 0x3258  mshidkmdf - ok
06:11:38.0551 0x3258  mshidumdf - ok
06:11:38.0554 0x3258  msisadrv - ok
06:11:38.0557 0x3258  MSiSCSI - ok
06:11:38.0560 0x3258  msiserver - ok
06:11:38.0563 0x3258  MSKSSRV - ok
06:11:38.0565 0x3258  MsLldp - ok
06:11:38.0568 0x3258  MSMQ - ok
06:11:38.0571 0x3258  MSPCLOCK - ok
06:11:38.0573 0x3258  MSPQM - ok
06:11:38.0575 0x3258  MsRPC - ok
06:11:38.0579 0x3258  mssmbios - ok
06:11:38.0582 0x3258  MSTEE - ok
06:11:38.0584 0x3258  MTConfig - ok
06:11:38.0587 0x3258  Mup - ok
06:11:38.0590 0x3258  mvumis - ok
06:11:38.0593 0x3258  NativeWifiP - ok
06:11:38.0596 0x3258  NcaSvc - ok
06:11:38.0598 0x3258  NcbService - ok
06:11:38.0601 0x3258  NcdAutoSetup - ok
06:11:38.0603 0x3258  ndfltr - ok
06:11:38.0606 0x3258  NDIS - ok
06:11:38.0608 0x3258  NdisCap - ok
06:11:38.0611 0x3258  NdisImPlatform - ok
06:11:38.0613 0x3258  NdisTapi - ok
06:11:38.0616 0x3258  Ndisuio - ok
06:11:38.0618 0x3258  NdisVirtualBus - ok
06:11:38.0620 0x3258  NdisWan - ok
06:11:38.0623 0x3258  ndiswanlegacy - ok
06:11:38.0625 0x3258  ndproxy - ok
06:11:38.0628 0x3258  Ndu - ok
06:11:38.0630 0x3258  NetAdapterCx - ok
06:11:38.0633 0x3258  NetBIOS - ok
06:11:38.0636 0x3258  NetBT - ok
06:11:38.0639 0x3258  Netlogon - ok
06:11:38.0641 0x3258  Netman - ok
06:11:38.0649 0x3258  NetMsmqActivator - ok
06:11:38.0650 0x3258  NetPipeActivator - ok
06:11:38.0654 0x3258  netprofm - ok
06:11:38.0657 0x3258  NetSetupSvc - ok
06:11:38.0658 0x3258  NetTcpActivator - ok
06:11:38.0660 0x3258  NetTcpPortSharing - ok
06:11:38.0664 0x3258  netvsc - ok
06:11:38.0668 0x3258  NgcCtnrSvc - ok
06:11:38.0670 0x3258  NgcSvc - ok
06:11:38.0672 0x3258  NlaSvc - ok
06:11:38.0676 0x3258  [ DE7FCC77F4A503AF4CA6A47D49B3713D, 4BFAA99393F635CD05D91A64DE73EDB5639412C129E049F0FE34F88517A10FC6 ] NPF             C:\WINDOWS\system32\drivers\npf.sys
06:11:38.0678 0x3258  NPF - ok
06:11:38.0682 0x3258  Npfs - ok
06:11:38.0684 0x3258  npggsvc - ok
06:11:38.0687 0x3258  npsvctrig - ok
06:11:38.0689 0x3258  nsi - ok
06:11:38.0692 0x3258  nsiproxy - ok
06:11:38.0695 0x3258  NTFS - ok
06:11:38.0698 0x3258  Null - ok
06:11:38.0701 0x3258  nvraid - ok
06:11:38.0703 0x3258  nvstor - ok
06:11:38.0706 0x3258  OneSyncSvc - ok
06:11:38.0793 0x3258  [ 7E39C76DD4A21D7F81910EC36B8B8734, 52471C9C18F3866CB8D46FD2BDCFDE202140B0F1271D02A0EC96F5025BC26166 ] Origin Client Service E:\Program Files (x86)\Origin\OriginClientService.exe
06:11:38.0857 0x3258  Origin Client Service - ok
06:11:38.0941 0x3258  [ FF0ABC191051923E62BEC38F039A48F4, 8138F032F131E5F81F3FB26E2985D5ACA0CD5801D04698BFB3B73DB2DA593B88 ] Origin Web Helper Service E:\Program Files (x86)\Origin\OriginWebHelperService.exe
06:11:38.0990 0x3258  Origin Web Helper Service - ok
06:11:38.0997 0x3258  [ 7A56CF3E3F12E8AF599963B16F50FB6A, 882C82BAE96D263138D4C0D6C425458B770B7B9C8E9C1D28AC918BF6BE94A5C2 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
06:11:38.0999 0x3258  ose - ok
06:11:39.0003 0x3258  p2pimsvc - ok
06:11:39.0006 0x3258  p2psvc - ok
06:11:39.0008 0x3258  Parport - ok
06:11:39.0011 0x3258  partmgr - ok
06:11:39.0013 0x3258  PcaSvc - ok
06:11:39.0016 0x3258  pci - ok
06:11:39.0019 0x3258  pciide - ok
06:11:39.0021 0x3258  pcmcia - ok
06:11:39.0024 0x3258  pcw - ok
06:11:39.0027 0x3258  pdc - ok
06:11:39.0029 0x3258  PEAUTH - ok
06:11:39.0031 0x3258  percsas2i - ok
06:11:39.0034 0x3258  percsas3i - ok
06:11:39.0053 0x3258  PerfHost - ok
06:11:39.0059 0x3258  PhoneSvc - ok
06:11:39.0062 0x3258  PimIndexMaintenanceSvc - ok
06:11:39.0065 0x3258  pla - ok
06:11:39.0069 0x3258  PlugPlay - ok
06:11:39.0072 0x3258  [ CD421DDB5C6E5458CE52EDC36DE7DC5B, 7B9C0A8B2B86BBF5D7E02F2620B0015A2530CBBC99724BE20313DE53EB31D62E ] PnkBstrA        C:\Windows\system32\PnkBstrA.exe
06:11:39.0176 0x3258  PnkBstrA - ok
06:11:39.0179 0x3258  PNRPAutoReg - ok
06:11:39.0182 0x3258  PNRPsvc - ok
06:11:39.0184 0x3258  PolicyAgent - ok
06:11:39.0188 0x3258  Power - ok
06:11:39.0190 0x3258  PptpMiniport - ok
06:11:39.0259 0x3258  [ 12ECCDB0C865A8CB805BABAD5A54EF41, B6E709C692EDDC2308A6944DE1ABA13155FC52905DC572C0008BCC97B3889771 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
06:11:39.0308 0x3258  PrintNotify - ok
06:11:39.0314 0x3258  Processor - ok
06:11:39.0317 0x3258  ProfSvc - ok
06:11:39.0319 0x3258  Psched - ok
06:11:39.0322 0x3258  QWAVE - ok
06:11:39.0325 0x3258  QWAVEdrv - ok
06:11:39.0327 0x3258  RasAcd - ok
06:11:39.0330 0x3258  RasAgileVpn - ok
06:11:39.0332 0x3258  RasAuto - ok
06:11:39.0334 0x3258  Rasl2tp - ok
06:11:39.0338 0x3258  RasMan - ok
06:11:39.0340 0x3258  RasPppoe - ok
06:11:39.0342 0x3258  RasSstp - ok
06:11:39.0345 0x3258  rdbss - ok
06:11:39.0349 0x3258  rdpbus - ok
06:11:39.0351 0x3258  RDPDR - ok
06:11:39.0356 0x3258  RdpVideoMiniport - ok
06:11:39.0359 0x3258  rdyboost - ok
06:11:39.0362 0x3258  ReFSv1 - ok
06:11:39.0365 0x3258  RemoteAccess - ok
06:11:39.0368 0x3258  RemoteRegistry - ok
06:11:39.0370 0x3258  RetailDemo - ok
06:11:39.0373 0x3258  RmSvc - ok
06:11:39.0379 0x3258  [ 83A6C2CAFE236652D1559640594A0EA8, 52360F17C9C70C9CEA3316560B40C4D89FD705ED7E6B6088C99FC54D4CC35EB5 ] rpcapd          C:\Program Files (x86)\WinPcap\rpcapd.exe
06:11:39.0382 0x3258  rpcapd - ok
06:11:39.0385 0x3258  RpcEptMapper - ok
06:11:39.0388 0x3258  RpcLocator - ok
06:11:39.0390 0x3258  RpcSs - ok
06:11:39.0394 0x3258  rspndr - ok
06:11:39.0396 0x3258  s3cap - ok
06:11:39.0399 0x3258  SamSs - ok
06:11:39.0496 0x3258  [ EBACFAE8FD88871890503D3FBAA2DD02, 0C6C2EBD6C724B30AE744D00E4C4A7E1FEBC7F354C86AFBB3972F62E91B98E06 ] SBAMSvc         C:\Program Files (x86)\VIPRE\SBAMSvc.exe
06:11:39.0589 0x3258  SBAMSvc - ok
06:11:39.0599 0x3258  [ 924BE0DE73D16BC9706FDA5C7491CD4C, E523F31CBBF7B1E1707F475ED19BB55EA66CF2781DC4697D53785512C1042F78 ] sbapifs         C:\WINDOWS\system32\DRIVERS\sbapifs.sys
06:11:39.0602 0x3258  sbapifs - ok
06:11:39.0606 0x3258  [ CDB7E06B43189D5904314889416189FB, E40415C803EE535D72957366144ADF8B084365A596C9E3AD699B737D786C49F7 ] sbhips          C:\WINDOWS\system32\drivers\sbhips.sys
06:11:39.0608 0x3258  sbhips - ok
06:11:39.0611 0x3258  sbp2port - ok
06:11:39.0623 0x3258  [ 47BCA750462F8F3E70FD380C51B905C3, 830D0DC65E360DDBD69F49CC93D7394BA672296E3265A3F270A064E9D5B17C21 ] SBPIMSvc        C:\Program Files (x86)\VIPRE\SBPIMSvc.exe
06:11:39.0627 0x3258  SBPIMSvc - ok
06:11:39.0641 0x3258  [ 8693367BC7491C3575E148091718EB4F, 6AAEC1794EB8697CD41A42CCF688A8FF58897E6F44457D642B1CEB738FE10443 ] sbwfw           C:\WINDOWS\system32\DRIVERS\sbwfw.sys
06:11:39.0647 0x3258  sbwfw - ok
06:11:39.0653 0x3258  [ 62BD702DA5C16A71E992FF75EC981A3C, 594ABFCF48868C6814D76754EC7EFE6A57976A65E5027FEABCE03F4E6EC9535F ] sbwtis          C:\WINDOWS\system32\DRIVERS\sbwtis.sys
06:11:39.0656 0x3258  sbwtis - ok
06:11:39.0662 0x3258  SCardSvr - ok
06:11:39.0665 0x3258  ScDeviceEnum - ok
06:11:39.0670 0x3258  scfilter - ok
06:11:39.0673 0x3258  Schedule - ok
06:11:39.0675 0x3258  scmbus - ok
06:11:39.0678 0x3258  scmdisk0101 - ok
06:11:39.0681 0x3258  SCPolicySvc - ok
06:11:39.0683 0x3258  sdbus - ok
06:11:39.0686 0x3258  SDRSVC - ok
06:11:39.0689 0x3258  sdstor - ok
06:11:39.0692 0x3258  seclogon - ok
06:11:39.0698 0x3258  [ 07F83829E7429E60298440CD1E601A6A, 9F1229CD8DD9092C27A01F5D56E3C0D59C2BB9F0139ABF042E56F343637FDA33 ] semav6msr64     C:\WINDOWS\system32\drivers\semav6msr64.sys
06:11:39.0700 0x3258  semav6msr64 - ok
06:11:39.0703 0x3258  SENS - ok
06:11:39.0706 0x3258  SensorDataService - ok
06:11:39.0708 0x3258  SensorService - ok
06:11:39.0711 0x3258  SensrSvc - ok
06:11:39.0714 0x3258  SerCx - ok
06:11:39.0717 0x3258  SerCx2 - ok
06:11:39.0720 0x3258  Serenum - ok
06:11:39.0722 0x3258  Serial - ok
06:11:39.0724 0x3258  sermouse - ok
06:11:39.0731 0x3258  SessionEnv - ok
06:11:39.0736 0x3258  sfloppy - ok
06:11:39.0739 0x3258  SharedAccess - ok
06:11:39.0742 0x3258  ShellHWDetection - ok
06:11:39.0744 0x3258  shpamsvc - ok
06:11:39.0747 0x3258  SiSRaid2 - ok
06:11:39.0749 0x3258  SiSRaid4 - ok
06:11:39.0757 0x3258  [ F3AAB7DF6408431C762D8721B68F46E4, 56ED764AA660955B8B06322703D086B3A52106625A83CCAF195B08BCBDEDA88F ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
06:11:39.0761 0x3258  SkypeUpdate - ok
06:11:39.0765 0x3258  smphost - ok
06:11:39.0768 0x3258  SmsRouter - ok
06:11:39.0774 0x3258  SNMPTRAP - ok
06:11:39.0777 0x3258  spaceport - ok
06:11:39.0779 0x3258  SpbCx - ok
06:11:39.0782 0x3258  Spooler - ok
06:11:39.0785 0x3258  sppsvc - ok
06:11:39.0788 0x3258  srv - ok
06:11:39.0791 0x3258  srv2 - ok
06:11:39.0793 0x3258  srvnet - ok
06:11:39.0796 0x3258  SSDPSRV - ok
06:11:39.0799 0x3258  SshBroker - ok
06:11:39.0802 0x3258  SshProxy - ok
06:11:39.0804 0x3258  SstpSvc - ok
06:11:39.0811 0x3258  [ 36C3697CA09B23C77BDF95A6B0B57310, DAEF9CFBDE444A80FB41DA0BC5C3C4E1E4B535497A5EDA43EC8768A6EC42E4EA ] ssudmdm         C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
06:11:39.0815 0x3258  ssudmdm - ok
06:11:39.0819 0x3258  StateRepository - ok
06:11:39.0846 0x3258  [ C8DC0C34715627ABF7A265ED27D1F75A, 5B8B9AC65D7458A8C6C868107E0BE3F9B1A1A5117FC69FDC260BAA9F1BDD0008 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
06:11:39.0868 0x3258  Steam Client Service - ok
06:11:39.0872 0x3258  stexstor - ok
06:11:39.0874 0x3258  stisvc - ok
06:11:39.0877 0x3258  storahci - ok
06:11:39.0880 0x3258  storflt - ok
06:11:39.0882 0x3258  stornvme - ok
06:11:39.0885 0x3258  storqosflt - ok
06:11:39.0888 0x3258  StorSvc - ok
06:11:39.0890 0x3258  storufs - ok
06:11:39.0893 0x3258  storvsc - ok
06:11:39.0896 0x3258  svsvc - ok
06:11:39.0899 0x3258  swenum - ok
06:11:39.0901 0x3258  swprv - ok
06:11:39.0904 0x3258  Synth3dVsc - ok
06:11:39.0907 0x3258  SysMain - ok
06:11:39.0909 0x3258  SystemEventsBroker - ok
06:11:39.0913 0x3258  [ 328E65035DE1D2C1206B4F94AAFC1DB7, EB7EF4CD7641C96C1050AD6139C22DE35EABEDF2DAFA5CD9D8F0C129BE02891F ] SystemUsageReportSvc_WILLAMETTE C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
06:11:39.0915 0x3258  SystemUsageReportSvc_WILLAMETTE - ok
06:11:39.0918 0x3258  TabletInputService - ok
06:11:39.0921 0x3258  TapiSrv - ok
06:11:39.0923 0x3258  Tcpip - ok
06:11:39.0926 0x3258  Tcpip6 - ok
06:11:39.0930 0x3258  tcpipreg - ok
06:11:39.0933 0x3258  tdx - ok
06:11:39.0936 0x3258  terminpt - ok
06:11:39.0938 0x3258  TermService - ok
06:11:39.0941 0x3258  Themes - ok
06:11:39.0944 0x3258  TieringEngineService - ok
06:11:39.0947 0x3258  tiledatamodelsvc - ok
06:11:39.0950 0x3258  TimeBrokerSvc - ok
06:11:39.0952 0x3258  TPM - ok
06:11:39.0955 0x3258  TrkWks - ok
06:11:39.0957 0x3258  TrustedInstaller - ok
06:11:39.0961 0x3258  tsusbflt - ok
06:11:39.0964 0x3258  TsUsbGD - ok
06:11:39.0966 0x3258  tunnel - ok
06:11:39.0970 0x3258  tzautoupdate - ok
06:11:39.0972 0x3258  UASPStor - ok
06:11:39.0975 0x3258  UcmCx0101 - ok
06:11:39.0979 0x3258  UcmTcpciCx0101 - ok
06:11:39.0982 0x3258  UcmUcsi - ok
06:11:39.0984 0x3258  Ucx01000 - ok
06:11:39.0987 0x3258  UdeCx - ok
06:11:39.0990 0x3258  udfs - ok
06:11:39.0993 0x3258  UEFI - ok
06:11:39.0996 0x3258  Ufx01000 - ok
06:11:39.0999 0x3258  UfxChipidea - ok
06:11:40.0002 0x3258  ufxsynopsys - ok
06:11:40.0007 0x3258  UI0Detect - ok
06:11:40.0010 0x3258  umbus - ok
06:11:40.0012 0x3258  UmPass - ok
06:11:40.0015 0x3258  UmRdpService - ok
06:11:40.0018 0x3258  UnistoreSvc - ok
06:11:40.0029 0x3258  [ 193AD338F2A64D17300AD640ADFA5D0A, DABFFFE66CE7335F477C14C1D95AB9DB3C2EA3155ACBE41049FE217532E731C0 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
06:11:40.0033 0x3258  UNS - ok
06:11:40.0037 0x3258  upnphost - ok
06:11:40.0040 0x3258  UrsChipidea - ok
06:11:40.0043 0x3258  UrsCx01000 - ok
06:11:40.0045 0x3258  UrsSynopsys - ok
06:11:40.0048 0x3258  usbaudio - ok
06:11:40.0050 0x3258  usbccgp - ok
06:11:40.0053 0x3258  usbcir - ok
06:11:40.0056 0x3258  usbehci - ok
06:11:40.0059 0x3258  usbhub - ok
06:11:40.0062 0x3258  USBHUB3 - ok
06:11:40.0064 0x3258  usbohci - ok
06:11:40.0068 0x3258  usbprint - ok
06:11:40.0070 0x3258  usbser - ok
06:11:40.0073 0x3258  USBSTOR - ok
06:11:40.0075 0x3258  usbuhci - ok
06:11:40.0078 0x3258  USBXHCI - ok
06:11:40.0081 0x3258  UserDataSvc - ok
06:11:40.0085 0x3258  UserManager - ok
06:11:40.0097 0x3258  [ 52C696180AC8371163B268D648DCBDA5, B75925B1B8722F174862AF7554587F81C9A57EF661253F230B4EDA5E2C2AA4A6 ] USER_ESRV_SVC_WILLAMETTE C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
06:11:40.0102 0x3258  USER_ESRV_SVC_WILLAMETTE - ok
06:11:40.0106 0x3258  UsoSvc - ok
06:11:40.0108 0x3258  VaultSvc - ok
06:11:40.0111 0x3258  VBAudioVACMME - ok
06:11:40.0113 0x3258  VBAudioVMVAIOMME - ok
06:11:40.0119 0x3258  [ 8CD776EB77695524CCE594AAC3A71569, AEF6F9B0E5F67E87819EB0E9FA5220EEF247A160A2BF8511CEDC8D12A9D4D941 ] VBoxNetAdp      C:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys
06:11:40.0127 0x3258  VBoxNetAdp - ok
06:11:40.0130 0x3258  vdrvroot - ok
06:11:40.0133 0x3258  vds - ok
06:11:40.0136 0x3258  VerifierExt - ok
06:11:40.0139 0x3258  vhdmp - ok
06:11:40.0141 0x3258  vhf - ok
06:11:40.0239 0x3258  [ 281BDFE02F491925C2FF6DCC62AB8C3F, DF66F96159147B285B913FF39452435B863EE60567FEE008E76E427C0F4EA79B ] VipreEdgeProtection C:\Program Files (x86)\VIPRE\VipreEdgeProtection.exe
06:11:40.0331 0x3258  VipreEdgeProtection - ok
06:11:40.0339 0x3258  vmbus - ok
06:11:40.0341 0x3258  VMBusHID - ok
06:11:40.0344 0x3258  vmgid - ok
06:11:40.0347 0x3258  vmicguestinterface - ok
06:11:40.0349 0x3258  vmicheartbeat - ok
06:11:40.0352 0x3258  vmickvpexchange - ok
06:11:40.0355 0x3258  vmicrdv - ok
06:11:40.0358 0x3258  vmicshutdown - ok
06:11:40.0360 0x3258  vmictimesync - ok
06:11:40.0363 0x3258  vmicvmsession - ok
06:11:40.0367 0x3258  vmicvss - ok
06:11:40.0369 0x3258  volmgr - ok
06:11:40.0372 0x3258  volmgrx - ok
06:11:40.0375 0x3258  volsnap - ok
06:11:40.0378 0x3258  volume - ok
06:11:40.0381 0x3258  vpci - ok
06:11:40.0384 0x3258  vsmraid - ok
06:11:40.0387 0x3258  VSS - ok
06:11:40.0390 0x3258  VSTXRAID - ok
06:11:40.0392 0x3258  vwifibus - ok
06:11:40.0395 0x3258  vwififlt - ok
06:11:40.0398 0x3258  W32Time - ok
06:11:40.0402 0x3258  w3logsvc - ok
06:11:40.0405 0x3258  W3SVC - ok
06:11:40.0407 0x3258  WacomPen - ok
06:11:40.0410 0x3258  WalletService - ok
06:11:40.0413 0x3258  wanarp - ok
06:11:40.0416 0x3258  wanarpv6 - ok
06:11:40.0419 0x3258  WAS - ok
06:11:40.0422 0x3258  wbengine - ok
06:11:40.0426 0x3258  WbioSrvc - ok
06:11:40.0429 0x3258  wcifs - ok
06:11:40.0432 0x3258  Wcmsvc - ok
06:11:40.0435 0x3258  wcncsvc - ok
06:11:40.0438 0x3258  wcnfs - ok
06:11:40.0441 0x3258  WdBoot - ok
06:11:40.0444 0x3258  Wdf01000 - ok
06:11:40.0446 0x3258  WdFilter - ok
06:11:40.0449 0x3258  WdiServiceHost - ok
06:11:40.0452 0x3258  WdiSystemHost - ok
06:11:40.0455 0x3258  wdiwifi - ok
06:11:40.0457 0x3258  WdNisDrv - ok
06:11:40.0460 0x3258  WdNisSvc - ok
06:11:40.0463 0x3258  WebClient - ok
06:11:40.0467 0x3258  [ 95CA811154E87D0945C9D076683E786C, F9AD1F3F260175AF762110FA13B77837712F13E338A32BA3B1BD09F8D2EA8767 ] WebExaminer     C:\WINDOWS\system32\Drivers\WebExaminer64.sys
06:11:40.0472 0x3258  WebExaminer - ok
06:11:40.0475 0x3258  WebManagement - ok
06:11:40.0478 0x3258  Wecsvc - ok
06:11:40.0481 0x3258  WEPHOSTSVC - ok
06:11:40.0484 0x3258  wercplsupport - ok
06:11:40.0487 0x3258  WerSvc - ok
06:11:40.0490 0x3258  WFPLWFS - ok
06:11:40.0493 0x3258  WiaRpc - ok
06:11:40.0496 0x3258  WIMMount - ok
06:11:40.0498 0x3258  WinDefend - ok
06:11:40.0504 0x3258  WindowsTrustedRT - ok
06:11:40.0507 0x3258  WindowsTrustedRTProxy - ok
06:11:40.0509 0x3258  WinHttpAutoProxySvc - ok
06:11:40.0512 0x3258  WinMad - ok
06:11:40.0519 0x3258  Winmgmt - ok
06:11:40.0522 0x3258  WinRM - ok
06:11:40.0527 0x3258  WINUSB - ok
06:11:40.0530 0x3258  WinVerbs - ok
06:11:40.0533 0x3258  wisvc - ok
06:11:40.0535 0x3258  WlanSvc - ok
06:11:40.0539 0x3258  wlidsvc - ok
06:11:40.0541 0x3258  WmiAcpi - ok
06:11:40.0546 0x3258  wmiApSrv - ok
06:11:40.0548 0x3258  WMPNetworkSvc - ok
06:11:40.0554 0x3258  [ 43C8D087B31C592163B33A4BDA540E40, 3A6C4E5E56931B29321DCC723585F2F0E804EF4DCDEAB2A8687F30FC3AE70E43 ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
06:11:40.0560 0x3258  Wof - ok
06:11:40.0565 0x3258  workfolderssvc - ok
06:11:40.0568 0x3258  WPDBusEnum - ok
06:11:40.0571 0x3258  WpdUpFltr - ok
06:11:40.0574 0x3258  WpnService - ok
06:11:40.0577 0x3258  WpnUserService - ok
06:11:40.0581 0x3258  ws2ifsl - ok
06:11:40.0584 0x3258  wscsvc - ok
06:11:40.0588 0x3258  WSearch - ok
06:11:40.0593 0x3258  wuauserv - ok
06:11:40.0595 0x3258  WudfPf - ok
06:11:40.0598 0x3258  WUDFRd - ok
06:11:40.0601 0x3258  wudfsvc - ok
06:11:40.0604 0x3258  WUDFWpdFs - ok
06:11:40.0607 0x3258  WUDFWpdMtp - ok
06:11:40.0610 0x3258  WwanSvc - ok
06:11:40.0613 0x3258  XblAuthManager - ok
06:11:40.0616 0x3258  XblGameSave - ok
06:11:40.0619 0x3258  xboxgip - ok
06:11:40.0623 0x3258  XboxNetApiSvc - ok
06:11:40.0626 0x3258  [ 51D45870A9886F8EEDDD1173CB605086, 7138EF9F039DDC823E95077279936FD4553C1465D6821DABDBC56CF9B6D4C008 ] xhunter1        C:\WINDOWS\xhunter1.sys
06:11:40.0628 0x3258  xhunter1 - ok
06:11:40.0631 0x3258  xinputhid - ok
06:11:40.0636 0x3258  [ 377F3E3467A8BFA3CDC921AD6425D513, 699271DA1D63E90FE1F9FE8AF3A8789CA588A0B7A2AFF5899EBA443361E041A5 ] XSplit_Dummy    C:\WINDOWS\system32\drivers\xspltspk.sys
06:11:40.0638 0x3258  XSplit_Dummy - ok
06:11:40.0639 0x3258  ================ Scan global ===============================
06:11:40.0648 0x3258  [ Global ] - ok
06:11:40.0649 0x3258  ================ Scan MBR ==================================
06:11:40.0669 0x3258  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
06:11:40.0680 0x3258  \Device\Harddisk1\DR1 - ok
06:11:40.0683 0x3258  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
06:11:40.0760 0x3258  \Device\Harddisk0\DR0 - ok
06:11:40.0760 0x3258  ================ Scan VBR ==================================
06:11:40.0767 0x3258  [ 3EC688C82AF1200C4CBB99281ABDE575 ] \Device\Harddisk1\DR1\Partition1
06:11:40.0770 0x3258  \Device\Harddisk1\DR1\Partition1 - ok
06:11:40.0772 0x3258  [ 4195C33F60170C3C31EEE00F64824F71 ] \Device\Harddisk0\DR0\Partition1
06:11:40.0773 0x3258  \Device\Harddisk0\DR0\Partition1 - ok
06:11:40.0775 0x3258  [ AFB885310246CC59BE58A251CD49564B ] \Device\Harddisk0\DR0\Partition2
06:11:40.0775 0x3258  \Device\Harddisk0\DR0\Partition2 - ok
06:11:40.0776 0x3258  ================ Scan generic autorun ======================
06:11:40.0971 0x3258  [ 4878D4D36D683EBE2F1E5F83C6A3BDB3, 82DA7BFED5F61DF4B679B06339E4065CCE0DA0D6741287F93A2EF1BCC85AB1E1 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
06:11:41.0151 0x3258  RTHDVCPL - ok
06:11:41.0184 0x3258  [ 669072AD8B65B2B55CA29E58A68AEF35, 1A272EF904607268E2EDAE2F1C8F8FA3C407F617905BB0865E9868E9564A3687 ] C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe
06:11:41.0203 0x3258  XFast LAN - ok
06:11:41.0207 0x3258  THXCfg64 - ok
06:11:41.0225 0x3258  CmPCIaudio - ok
06:11:41.0232 0x3258  [ B589CB12BC5CD70F870D3F3C81934CB7, 0BA62518CAEB52D0D2C5F13CA0694C6AB33C0373426DB2C1F66CD569D9815CAD ] C:\Program Files (x86)\VIPRE\SBRC.exe
06:11:41.0235 0x3258  SBRegRebootCleaner - ok
06:11:41.0249 0x3258  [ 48515EEA1608ECD83FE26C7490460F59, C7C552D13ED12B4165FDE45F69E170D4F18B746D84B3B08E7254AAF8D9671D0C ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
06:11:41.0255 0x3258  AdobeAAMUpdater-1.0 - ok
06:11:41.0670 0x3258  [ 5D36AEE2E912402F4ABAB2C55182E3E1, 791D2562776C8E9F309990F1DDA96D51FA9E562EBC1158930C1B9D190EE54FEB ] C:\Program Files\Logitech Gaming Software\LCore.exe
06:11:41.0873 0x3258  Launch LCore - ok
06:11:41.0885 0x3258  Wondershare Helper Compact.exe - ok
06:11:41.0892 0x3258  [ 4D241A6A8F6BA9FA32FF836551FFDCEA, DEE87DFB6A8E87D40E3653435223B54AF2AB232DDC02D22468C126C54096F006 ] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
06:11:41.0895 0x3258  USB3MON - ok
06:11:41.0969 0x3258  [ 3F564861B1CBDD24BD10669918A235BD, EDEF936A71113DB4765C97AE6A06F352AAEEC04DF28DBC905BA0B37B1C188B0E ] C:\Program Files (x86)\XFastUSB\XFastUsb.exe
06:11:42.0032 0x3258  XFastUSB - ok
06:11:42.0052 0x3258  [ D29C3F2BEA792CC2196AF7B2BEB9E899, EC787FC79C01444BAEA4866146FCF810B664D4C176D3F3E9C58C436531EE4266 ] C:\Program Files (x86)\Creative\THX TruStudio\THXNBSet\THXAudNB.exe
06:11:42.0064 0x3258  THX TruStudio NB Settings - ok
06:11:42.0068 0x3258  [ C419DF63E0121D72411285780C2FC6CC, F47F854D327C589D174D3BB5B55D5C05F5ACA73DF52A6BEF47596B9010190291 ] C:\Windows\UpdReg.EXE
06:11:42.0070 0x3258  UpdReg - ok
06:11:42.0074 0x3258  [ F4F7C86191A981C804326E2EF6F3604F, 1ECE05E643AFFB27A148A8B86615F6C167875EF29D6FF7E2FD15B8DCBE6B8A16 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
06:11:42.0075 0x3258  Adobe Reader Speed Launcher - ok
06:11:42.0092 0x3258  [ 48BE298F7FD1BEF4D8FBACB04D8D95C4, D375B3F6E850E4B0EC81BAA0E554C356BE2248AA77C6C56F5267CA05460FE4EB ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
06:11:42.0103 0x3258  Adobe ARM - ok
06:11:42.0123 0x3258  [ 86F33213C450FED3C7E32F9473415E7E, 75F3B3739DD12D8B7F93BEA912B864BF8BAEFA061720A87CF1F55030334C2558 ] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
06:11:42.0136 0x3258  EEventManager - ok
06:11:42.0148 0x3258  [ 0B0E075EF0AE1CD8526D6D851E684224, 349E8ACF6E570A51C265AC19C4971C7BECA96820A8298D559E2DB6199C03C5A6 ] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe
06:11:42.0154 0x3258  FUFAXRCV - ok
06:11:42.0172 0x3258  [ 55436C4848E1EB25644C70EF78D53FF9, A8951914E7BDA419CA9A4EBF7285767DC7CEBAD498FADBD017B21F8329C1D131 ] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe
06:11:42.0182 0x3258  FUFAXSTM - ok
06:11:42.0216 0x3258  [ C6BDF0F7C7354CE2073BAB2C8B1BE845, AF2B54FBFEC942E8B76DF194E97A4EEE2F8CEAA17FBA7A924C6C01728CCE8F8A ] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
06:11:42.0240 0x3258  Wondershare Helper Compact.exe - ok
06:11:42.0288 0x3258  [ F8E3493BF7C7BB37DA9043563A63A245, C6DE78E5B917F2292608A98050F79BDAEC2DBC9CAAAADBDD376D782781EBB1FF ] C:\Program Files (x86)\VIPRE\SBAMTray.exe
06:11:42.0327 0x3258  SBAMTray - ok
06:11:42.0335 0x3258  [ 210792CDFEC88F194EA4AAC3E9E2EDC0, 5ECEE307E1E3DBCDD97F80A249C7963321BCFE4A030C46C7DF2FDE32402DBCC1 ] C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe
06:11:42.0338 0x3258  PlaysTV - ok
06:11:42.0343 0x3258  [ 3FC72550D7A0CF39F6356CB8B8F456C8, 661FB7ACDF4464E77FEBAF1CEFC78A15317E9407BD144A0FB7E0D44B732C62B9 ] C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe
06:11:42.0346 0x3258  Raptr - ok
06:11:42.0386 0x3258  [ 6302798F2560E25EB980992B1C4C5F81, E5029149F326C3CD0E418D87234B656A47E4ADFA1E8BC186F0F80B763224BD02 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
06:11:42.0416 0x3258  Adobe Creative Cloud - ok
06:11:42.0431 0x3258  [ 48766D7EE1DD77573D0559B26F1B6141, D2ECF40ED2E1075881060CBF7B73A02758BF1B04B977C19C68AF518E2D4A9381 ] C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
06:11:42.0437 0x3258  ConnectionCenter - ok
06:11:42.0444 0x3258  [ D495BB4726F421EB74167A6D287BD531, 9FE8A7E9CA1DC2A1280763F21B5F83032875B555B9833B263FBED356DBE7F515 ] C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
06:11:42.0447 0x3258  Redirector - ok
06:11:42.0469 0x3258  [ EA4F9B19B3614349C79CC97DCA4C23A8, EC330F2E4F002FE450CDC1FC84AC0122C21C7912A483A99143450822004795E3 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
06:11:42.0478 0x3258  StartCCC - ok
06:11:42.0570 0x3258  [ EFD6500382989DB49A29E5F019D2E5F7, 1129DF694D3A62113BF9AA0C5D82E81A096167548346E3F934FC143DCB4A1A85 ] E:\Programs\DivX\DivX Media Server\DivXMediaServer.exe
06:11:42.0583 0x3258  DivXMediaServer - ok
06:11:42.0586 0x3258  OneDriveSetup - ok
06:11:42.0588 0x3258  OneDriveSetup - ok
06:11:42.0709 0x3258  [ 3F218819210022E0D585957FB155D4A3, A2F27FCB349BAE82B4A4475F3C26E5D57D0EC07C22228F35CFFE3ABBFBA2EEF8 ] E:\Program Files (x86)\Steam\steam.exe
06:11:42.0783 0x3258  Steam - ok
06:11:42.0803 0x3258  [ FD9A7F99A09DB266D0C1361B0ACCBD7E, 579160BDACDFE39AE5DDD7B5C2964453E89BA8D933F3FB16C6E3897EA3BDED29 ] C:\Users\Owner\AppData\Local\Microsoft\OneDrive\OneDrive.exe
06:11:42.0811 0x3258  OneDrive - ok
06:11:42.0814 0x3258  Discord - ok
06:11:42.0839 0x3258  RESTART_STICKY_NOTES - ok
06:11:42.0960 0x3258  [ CE38FADA564D4D4CD3D9C6562C151C35, 8ED6A47F4F730B96BFF4553E07192081F5647F1CA162A73F0FD5FA3AF552B084 ] E:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe
06:11:43.0144 0x3258  GalaxyClient - ok
06:11:43.0225 0x3258  [ 3E37679CA1AB41998A6C533606ACEF34, 32558C93B6DAA610266EE8A543EE28AC73FCACE1C29DF267D4CAF9AF114A67EE ] C:\Users\Owner\AppData\Local\MyComGames\MyComGames.exe
06:11:43.0294 0x3258  MyComGames - ok
06:11:43.0324 0x3258  [ FE00B2DD3CDE9ED93D215906BF171B91, E1A4D991DA19CA579760DF9AE44BFBA983B5A57030197E23D145004244DDE42E ] C:\Program Files\AMD\CNext\CNext\amddvr.exe
06:11:43.0342 0x3258  AMDDVR - ok
06:11:43.0345 0x3258  OneDriveSetup - ok
06:11:43.0348 0x3258  WAB Migrate - ok
06:11:43.0349 0x3258  OneDriveSetup - ok
06:11:43.0350 0x3258  WAB Migrate - ok
06:11:43.0351 0x3258  Waiting for KSN requests completion. In queue: 79
06:11:44.0364 0x3258  AV detected via SS2: ThreatTrack Security VIPRE, C:\Program Files (x86)\VIPRE\SBAMWSC.EXE ( 9.3.4.3 ), 0x41000 ( enabled : updated )
06:11:44.0368 0x3258  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.1066 ), 0x60100 ( disabled : updated )
06:11:44.0370 0x3258  FW detected via SS2: ThreatTrack Security VIPRE, C:\Program Files (x86)\VIPRE\SBAMWSC.EXE ( 9.3.4.3 ), 0x40010 ( disabled )
06:11:44.0372 0x3258  Win FW state via NFP2: enabled ( trusted )
06:11:44.0542 0x3258  ============================================================
06:11:44.0542 0x3258  Scan finished
06:11:44.0542 0x3258  ============================================================
06:11:44.0548 0x0678  Detected object count: 0
06:11:44.0548 0x0678  Actual detected object count: 0


#5 retrad

retrad
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:06:03 PM

Posted 02 May 2017 - 06:19 AM

# AdwCleaner v6.045 - Logfile created 02/05/2017 at 06:17:56
# Updated on 28/03/2017 by Malwarebytes
# Database : 2017-05-01.2 [Server]
# Operating System : Windows 10 Home  (X64)
# Username : Owner - OWNER-PC
# Running from : C:\Users\Owner\Desktop\AdwCleaner.exe
# Mode: Clean
 
 
 
***** [ Services ] *****
 
 
 
***** [ Folders ] *****
 
[-] Folder deleted: C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\poohjpljfecljomfhhimjhddddlidhdd
 
 
***** [ Files ] *****
 
 
 
***** [ DLL ] *****
 
 
 
***** [ WMI ] *****
 
 
 
***** [ Shortcuts ] *****
 
 
 
***** [ Scheduled Tasks ] *****
 
 
 
***** [ Registry ] *****
 
 
 
***** [ Web browsers ] *****
 
[-] [C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default] [extension] Deleted: poohjpljfecljomfhhimjhddddlidhdd
 
 
*************************
 
:: "Tracing" keys deleted
:: Winsock settings cleared
 
*************************
 
C:\AdwCleaner\AdwCleaner[C0].txt - [992 Bytes] - [02/05/2017 06:17:56]
C:\AdwCleaner\AdwCleaner[S0].txt - [1317 Bytes] - [02/05/2017 06:17:17]
 
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1137 Bytes] ##########


#6 retrad

retrad
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:06:03 PM

Posted 02 May 2017 - 06:23 AM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.3 (04.10.2017)
Operating System: Windows 10 Home x64 
Ran by Owner (Administrator) on Tue 05/02/2017 at  6:20:49.15
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
File System: 0 
 
 
 
 
Registry: 0 
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 05/02/2017 at  6:22:54.25
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,040 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:03 PM

Posted 02 May 2017 - 10:32 AM

Did you run ESET yet?

Disable your Chrome Plug ins


Disable Individual Plug-ins in Google Chrome

Edited by boopme, 02 May 2017 - 10:33 AM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 retrad

retrad
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:06:03 PM

Posted 02 May 2017 - 11:39 PM

ESET Found 4 threats. Do you want me to post the log here?


Did you run ESET yet?

Disable your Chrome Plug ins


Disable Individual Plug-ins in Google Chrome

I had already ran it before disabling Chrome Plugins...should I run it again?

They appear to be my bitcoin miner, my wife's photos she put on here from her phone, and then uTorrent....which I had thought I uninstalled years ago...


Edited by retrad, 02 May 2017 - 11:41 PM.


#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,040 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:03 PM

Posted 03 May 2017 - 01:30 PM

No, as long as they were removed.. All good now?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 retrad

retrad
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:06:03 PM

Posted 03 May 2017 - 10:43 PM

Yeah everything is good.



#11 ComFlandre

ComFlandre

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:03 PM

Posted 05 May 2017 - 02:44 PM

On Google Chrome, if you look to the right of your extensions, you will see a 3 dot thing. Click it, hover your mouse over "more tools," click "extensions," and see if you have any shady extensions installed. If you think it got into your PC, click the start button, go to Control Panel, click "Programs," then go to "Programs and Features," and if you see shady software that you guarantee never installed, uninstall it and you should be safe. And maybe do another scan.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users