Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

exe files, error unable to start correctly (0xc000005)


  • Please log in to reply
5 replies to this topic

#1 Avalon60

Avalon60

  • Members
  • 83 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Leeds UK
  • Local time:06:32 AM

Posted 12 June 2017 - 05:16 AM

My windows 10 machine has suddenly developed this problem as it was fine 2 days ago. Now when I try to load a web browser it fails with the above message.

I rebooted into safe mode with networking and there is no problem in that a web browser loads up fine.

When I then go to normal load of windows 10 there are a number of popups where exe files failed to start correctly, and again no web browsing nor email program  will load up.

 

The list of exe file popups is as follows:

TurboVhelp.exe

TLVBackend.exe

OneDrive.exe

reader_sl.exe

APSDaemon.exe

AISuite.exe

XLInside.exe

Jusched.exe

netctrltray.exe

Nesvchelp.exe

 

Also when I try to load an anti malware or anti virus program, they won't load up either.

 

Some of the above files are self explanatory by name, while others are not.

 

I have googled this problem but not found a cure for my problem.


Edited by Avalon60, 12 June 2017 - 05:18 AM.


BC AdBot (Login to Remove)

 


#2 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,756 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:10:32 PM

Posted 12 June 2017 - 08:32 AM

One of the possible causes of this problem could be that the computer is infected.  If this is the case it should be addressed before doing anything further.  For this reason I'm going to suggest that you run the scans below. 
 
These scans can not be run in the Windows forum, so I will request that this topic be moved to the Am I Infected forum.  If no malware is found or there are lingering problems after cleaning up malware you can request a Moderator to move the topic back to its original forum.
 

Please download and run RKill

RKill attempts to terminate known malware processes so that your normal security software can then run and clean your computer of infections.  RKill will not remove malware, the scans you run after setting up RKill will find and remove those infections.

These settings will remain until the computer is rebooted, for this reason you must run your security applications before the computer is rebooted.  

Please download RKill from the Bleeping Computer option and install it.
                              
Attention:  While running RKill you may see a message stating that the program could not be run because it is a virus or is infected.  This is the malware trying to protect itself.  Two methods that you can try to get past this and allow RKill to run are:

1)  Rename Rkill so that it has a .com extension.

2)  Download a version that is already renamed as files that are commonly white-listed by malware. The main Rkill download page contains individual links to renamed versions.  

When RKill is run it will display a console screen similar to the one below:

RKill_zps2e34d4b8.png

When RKill has finished running a log will be displayed showing all of the processes that were terminated by RKill.

AttentionAt this time you need to run your security applications listed below.  Do not restart the computer until all of the requested scans have been run and the logs posted in your topic.

After the security scan have been run successfully you should reboot the computer to restore the processes and Windows Registry entries.

 

 

Please download Malwarebytes Anti-Malware 2.2.

1)  Double-click on mbam-setup.exe, then click on Run to install the application, follow the prompts through the installation.

2)  Malwarebytes will automatically open.  You will see an image like the one below, click on Update Now.  

mbam1_zps98e7fba9.png

3)  Click on Settings, you will see a image like the one below.

malware%20settings_zpsixkea5sd.png

When Settings opens click on Detection and Protection, then under Non-Malware Protection, click on the down arrow for PUP (Potentially Unwanted Programs) detections and select Treat detections as malware.  Under Detection Options place a check in the box for Scan for rootkits

4)  Click on Scan (next to Settings), then click on Scan Now.  The scan will automatically run now.

5)  When the scan is complete the results will be displayed.  Click on Delete All.

malwarenew_zps34b58fdc.png

6)  Please post the Malwarebytes log.

To find the Malwarebytes log do the following.  Copy and paste the log in your topic.

*Open Malwarebytes Anti-Malware.
*Click the Scan Tab at the top.
*Click the View detailed log link on the right.
*Click Copy to Clipboard at the bottom...come back to this thread, click Add Reply, then right-click and choose Paste.
*Alternatively, you can click Export and save the log as a .txt file on yout Desktop or another location.
*Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.


Please download TDSSKiller from here and save it to your Desktop.

The log for the TDSSKiller can be very long.  If you go to the bottom of the log to where you find Scan finished you will see the results of the scan.  If it shows Detected object count: 0 and Actual detected object count: 0, this means that nothing malicious was found and you will not need to post the log.
 
1.  Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
 
tdss1_zps90132559.png
 
2.  Check Loaded Modules, Verify Driver Digital Signature, and Detect TDLFS file system.
 
If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now.
 
tdsskillermultiple_zps472c18eb.png
 
3.  Click Start Scan and allow the scan process to run.
 
tdss4_zps6792a13c.png
 
4.  If threats are detected select Cure (if available) for all of them unless otherwise instructed.
 
***Do NOT select Delete!

Click on Continue.
 
tdss5_zps98fc5887.png
 
5.  Click on Reboot computer.
 
Please copy the TDSSKiller.[Version]_[Date]_[Time]_log.txt file found in your root directory (typically c:\) and paste it into your next reply.

Note:  The log may be very long.  You may need to break it into parts to post the whole log.

Post this in your topic.


Please run the ESET OnlineScan

This scan takes quite a long time to run, so be prepared to allow this to run
till it is completed.

***Please note. If you run this scan using Internet Explorer you won't need
to download the Eset Smartinstaller.***

ESET Online Scanner

  • Click here to download the installer for ESET Online Scanner and save it to your Desktop.
  • Disable all your antivirus and antimalware software - see how to do that
    here
    .
  • Right click on esetsmartinstaller_enu.exe and select Run as Administrator.
  • Place a checkmark in YES, I accept the Terms of Use, then click Start. Wait for ESET Online Scanner to load its components.
  • Select Enable detection of potentially unwanted applications.
  • Click Advanced Settings, then place a checkmark in the following:
    • Remove found threats
    • Scan archives
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • Click Start to begin scanning.
  • ESET Online Scanner will start downloading signatures and scan. Please be patient, as this scan can take quite some time.
  • If threats are found click on Save to text file in Documents.
  • Open Documents, find the report, copy and paste it in your topic.

Edited by dc3, 12 June 2017 - 08:36 AM.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#3 Avalon60

Avalon60
  • Topic Starter

  • Members
  • 83 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Leeds UK
  • Local time:06:32 AM

Posted 12 June 2017 - 10:27 AM

Hi and thanks for getting back toi me about this problem, and yes I did think that the machine was infected as well.

 

I ran RKill and it must have found something amiss as per the log file:

 

Rkill 2.8.4 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2017 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 06/12/2017 03:09:35 PM in x64 mode. (Safe Mode)
Windows Version: Windows 10 Pro

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * No malware processes found to kill.

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * Windows Defender Disabled

   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

 * COM+ Event System (EventSystem) is not Running.
   Startup Type set to: Automatic

 * Security Center (wscsvc) is not Running.
   Startup Type set to: Automatic (Delayed Start)

 * gagp30kx [Missing Service]
 * IEEtwCollectorService [Missing Service]
 * IoQos [Missing Service]
 * nv_agp [Missing Service]
 * TimeBroker [Missing Service]
 * uagp35 [Missing Service]
 * uliagpkx [Missing Service]
 * WcsPlugInService [Missing Service]
 * wpcfltr [Missing Service]
 * WSService [Missing Service]

 * agp440 [Missing ImagePath]

 * AJRouter => %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted [Incorrect ImagePath]
 * WpnService => %systemroot%\system32\svchost.exe -k netsvcs [Incorrect ImagePath]

 * vmicrdv => %SystemRoot%\System32\icsvcext.dll [Incorrect ServiceDLL]
 * vmicvss => %SystemRoot%\System32\icsvcext.dll [Incorrect ServiceDLL]

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * HOSTS file entries found:

  192.168.0.16    Windows8 machine
  192.168.0.14    RobLaptop
  192.168.0.22    FreeNAS Server
 

  0.0.0.1    mssplus.mcafee.com

Program finished at: 06/12/2017 03:09:54 PM
Execution time: 0 hours(s), 0 minute(s), and 19 seconds(s)
 

 

Then I ran Malware Bytes Anti Malware program, and log file is below:

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 12/06/2017
Scan Time: 15:15
Logfile: mam_log.txt
Administrator: Yes

Version: 2.2.1.1043
Malware Database: v2017.06.12.02
Rootkit Database: v2017.05.27.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 10
CPU: x64
File System: NTFS
User: Cath

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 331406
Time Elapsed: 4 min, 37 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Warn
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 6
PUP.Optional.TweakBit.Generic, C:\Users\Cath\AppData\Local\Temp\_Del_2AC02BED-480E-4564-9122-78206DF1326C_pcrepairkit_setup\AxComponentsRTL.bpl, Quarantined, [df734fef3c6dda5c0783db9c827e8b75],
PUP.Optional.TweakBit.Generic, C:\Users\Cath\AppData\Local\Temp\_Del_2AC02BED-480E-4564-9122-78206DF1326C_pcrepairkit_setup\GASender.exe, Quarantined, [ca88d965cddcbe78dbaf106713ed07f9],
PUP.Optional.TweakBit.Generic, C:\Users\Cath\AppData\Local\Temp\_Del_2AC02BED-480E-4564-9122-78206DF1326C_pcrepairkit_setup\GoogleAnalyticsHelper.dll, Quarantined, [fc561727c9e0bf7708822f486a9649b7],
PUP.Optional.TweakBit.Generic, C:\Users\Cath\AppData\Local\Temp\_Del__iu14D2N\AxComponentsRTL.bpl, Quarantined, [183a95a9e2c767cf7b0fb5c224dc4fb1],
PUP.Optional.TweakBit.Generic, C:\Users\Cath\AppData\Local\Temp\_Del__iu14D2N\GASender.exe, Quarantined, [322057e71d8c8caaeb9f2c4bdd232cd4],
PUP.Optional.TweakBit.Generic, C:\Users\Cath\AppData\Local\Temp\_Del__iu14D2N\GoogleAnalyticsHelper.dll, Quarantined, [2c261826e0c9082ee3a71463946cbc44],

Physical Sectors: 0
(No malicious items detected)


(end)

 

Next , I ran TDSSkiller, and log file is below.

 

15:31:12.0502 0x1318  TDSS rootkit removing tool 3.1.0.15 Apr 18 2017 11:34:02
15:31:16.0108 0x1318  ============================================================
15:31:16.0108 0x1318  Current date / time: 2017/06/12 15:31:16.0108
15:31:16.0108 0x1318  SystemInfo:
15:31:16.0108 0x1318  
15:31:16.0108 0x1318  OS Version: 10.0.14393 ServicePack: 0.0
15:31:16.0108 0x1318  Product type: Workstation
15:31:16.0108 0x1318  ComputerName: CATH-PC
15:31:16.0108 0x1318  UserName: Cath
15:31:16.0108 0x1318  Windows directory: C:\WINDOWS
15:31:16.0108 0x1318  System windows directory: C:\WINDOWS
15:31:16.0108 0x1318  Running under WOW64
15:31:16.0108 0x1318  Processor architecture: Intel x64
15:31:16.0108 0x1318  Number of processors: 4
15:31:16.0108 0x1318  Page size: 0x1000
15:31:16.0108 0x1318  Boot type: Normal boot
15:31:16.0108 0x1318  CodeIntegrityOptions = 0x00000001
15:31:16.0108 0x1318  ============================================================
15:31:16.0238 0x1318  KLMD registered as C:\WINDOWS\system32\drivers\28948440.sys
15:31:16.0238 0x1318  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.1198, osProperties = 0x19
15:31:16.0396 0x1318  System UUID: {3A0E2A60-6CCE-1495-2A33-800E1E5BF78B}
15:31:16.0654 0x1318  Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 ( 111.79 Gb ), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:31:16.0952 0x1318  Drive \Device\Harddisk1\DR1 - Size: 0x12A1F16000 ( 74.53 Gb ), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:31:16.0953 0x1318  Drive \Device\Harddisk2\DR2 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:31:16.0960 0x1318  Drive \Device\Harddisk3\DR3 - Size: 0x1DD180000 ( 7.45 Gb ), SectorSize: 0x200, Cylinders: 0x3CD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:31:16.0961 0x1318  ============================================================
15:31:16.0961 0x1318  \Device\Harddisk0\DR0:
15:31:16.0961 0x1318  MBR partitions:
15:31:16.0962 0x1318  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xC8567C1
15:31:16.0962 0x1318  \Device\Harddisk1\DR1:
15:31:16.0969 0x1318  MBR partitions:
15:31:16.0969 0x1318  \Device\Harddisk2\DR2:
15:31:16.0969 0x1318  MBR partitions:
15:31:16.0969 0x1318  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x3F00, BlocksNum 0x3A380D41
15:31:16.0969 0x1318  \Device\Harddisk3\DR3:
15:31:16.0970 0x1318  MBR partitions:
15:31:16.0970 0x1318  \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xEE8400
15:31:16.0970 0x1318  ============================================================
15:31:16.0971 0x1318  C: <-> \Device\Harddisk0\DR0\Partition1
15:31:16.0989 0x1318  D: <-> \Device\Harddisk2\DR2\Partition1
15:31:16.0989 0x1318  ============================================================
15:31:16.0989 0x1318  Initialize success
15:31:16.0989 0x1318  ============================================================
15:32:00.0592 0x22d4  ============================================================
15:32:00.0592 0x22d4  Scan started
15:32:00.0592 0x22d4  Mode: Manual; SigCheck; TDLFS;
15:32:00.0592 0x22d4  ============================================================
15:32:00.0592 0x22d4  KSN ping started
15:32:00.0707 0x22d4  KSN ping finished: true
15:32:01.0517 0x22d4  ================ Scan system memory ========================
15:32:01.0517 0x22d4  System memory - ok
15:32:01.0517 0x22d4  ================ Scan services =============================
15:32:01.0563 0x22d4  1394ohci - ok
15:32:01.0566 0x22d4  3ware - ok
15:32:01.0710 0x22d4  [ 78F0179B6C4C93119432C3A2C511EB44, 746A48F8D9C4004E7FB8BD72DA40DBBD207A882ED33B4A844F2F017521403D85 ] a2AntiMalware   C:\Program Files\Emsisoft Anti-Malware\a2service.exe
15:32:01.0884 0x22d4  a2AntiMalware - ok
15:32:01.0888 0x22d4  ACPI - ok
15:32:01.0891 0x22d4  AcpiDev - ok
15:32:01.0893 0x22d4  acpiex - ok
15:32:01.0896 0x22d4  acpipagr - ok
15:32:01.0898 0x22d4  AcpiPmi - ok
15:32:01.0901 0x22d4  acpitime - ok
15:32:01.0931 0x22d4  [ E6A1D864EC90F4397DF5AB2633B34DD4, 05F1B7291EBDD9CA1D74649C0DAFCBE5F2CF93E92C5CA16A8AC10B6DF83101A0 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:32:01.0942 0x22d4  AdobeFlashPlayerUpdateSvc - ok
15:32:01.0946 0x22d4  ADP80XX - ok
15:32:01.0950 0x22d4  AFD - ok
15:32:01.0953 0x22d4  ahcache - ok
15:32:01.0959 0x22d4  AJRouter - ok
15:32:01.0961 0x22d4  ALG - ok
15:32:01.0964 0x22d4  AmdK8 - ok
15:32:01.0966 0x22d4  AmdPPM - ok
15:32:01.0969 0x22d4  amdsata - ok
15:32:01.0971 0x22d4  amdsbs - ok
15:32:01.0976 0x22d4  amdxata - ok
15:32:01.0979 0x22d4  AppHostSvc - ok
15:32:01.0981 0x22d4  AppID - ok
15:32:01.0984 0x22d4  AppIDSvc - ok
15:32:01.0986 0x22d4  Appinfo - ok
15:32:01.0994 0x22d4  [ 7D811EA7A2AAA49B0446D42CBC1CD338, AFECE5E44E48F756C7EB81D95C9237552AF8A9C02CBE756E0F3D3C6524DE49AD ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:32:02.0003 0x22d4  Apple Mobile Device Service - ok
15:32:02.0006 0x22d4  applockerfltr - ok
15:32:02.0010 0x22d4  AppMgmt - ok
15:32:02.0012 0x22d4  AppReadiness - ok
15:32:02.0015 0x22d4  AppVClient - ok
15:32:02.0017 0x22d4  AppvStrm - ok
15:32:02.0019 0x22d4  AppvVemgr - ok
15:32:02.0022 0x22d4  AppvVfs - ok
15:32:02.0027 0x22d4  AppXSvc - ok
15:32:02.0030 0x22d4  arcsas - ok
15:32:02.0048 0x22d4  [ F7692E60147E56A1CEEE144974F41830, C6FFD77A5BCB1FDD4814FAC599ADDA91CA8C92AD26BDD21930B6BC20FB5F6DE4 ] asComSvc        C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe
15:32:02.0084 0x22d4  asComSvc - detected UnsignedFile.Multi.Generic ( 1 )
15:32:02.0128 0x22d4  asComSvc ( UnsignedFile.Multi.Generic ) - warning
15:32:02.0128 0x22d4  Force sending object to P2P due to detect: asComSvc
15:32:02.0347 0x22d4  Object send P2P result: true
15:32:02.0494 0x22d4  [ 0466B91EE5767A769E9F8EDB8EF94DDB, 04A529E57D6F617688B072B3BD281538B6B02BB985EE0AE2E355E685E52BE0C8 ] asHmComSvc      C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
15:32:02.0512 0x22d4  asHmComSvc - ok
15:32:02.0516 0x22d4  [ FEF9DD9EA587F8886ADE43C1BEFBDAFE, DDE6F28B3F7F2ABBEE59D4864435108791631E9CB4CDFB1F178E5AA9859956D8 ] AsIO            C:\WINDOWS\syswow64\drivers\AsIO.sys
15:32:02.0521 0x22d4  AsIO - ok
15:32:02.0535 0x22d4  aspnet_state - ok
15:32:02.0539 0x22d4  [ AD8947D621FDCA48F1F39F4624B60AA1, D685CD1A378FA411EA11C18615A1EC5D66CEC2F990DB0D4181EE3140B9DF3E8B ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
15:32:02.0546 0x22d4  AsSysCtrlService - ok
15:32:02.0549 0x22d4  [ 1392B92179B07B672720763D9B1028A5, B4D47EA790920A4531E3DF5A4B4B0721B7FEA6B49A35679F0652F1E590422602 ] AsUpIO          C:\WINDOWS\syswow64\drivers\AsUpIO.sys
15:32:02.0554 0x22d4  AsUpIO - ok
15:32:02.0579 0x22d4  [ B4F550250E33C02E6E71955621F7A0A6, FFBBE5BF9D363EAA9E9559D22AE0F1BCF42CE201F7DE362DCF260C2EA38AC648 ] AsusFanControlService C:\Program Files (x86)\ASUS\AsusFanControlService\1.00.21\AsusFanControlService.exe
15:32:02.0604 0x22d4  AsusFanControlService - ok
15:32:02.0608 0x22d4  [ A5E4CDB420540095D1293C874B5F89AA, EBC082FF94872537649F00D91AF22E0AFB4D538ACDB4731C9A95D209C7B144FD ] ASUSFILTER      C:\WINDOWS\syswow64\drivers\ASUSFILTER.sys
15:32:02.0614 0x22d4  ASUSFILTER - ok
15:32:02.0616 0x22d4  AsyncMac - ok
15:32:02.0619 0x22d4  atapi - ok
15:32:02.0622 0x22d4  AudioEndpointBuilder - ok
15:32:02.0628 0x22d4  Audiosrv - ok
15:32:02.0640 0x22d4  [ 8183B715BD56561C27BEBB68B1192B7A, 19C65D0684D24956CDB3A3369AFFF4ECAC3FB7D2AA38ED41AD75AF3DDDFE882B ] avckf           C:\WINDOWS\system32\DRIVERS\avckf.sys
15:32:02.0655 0x22d4  avckf - ok
15:32:02.0658 0x22d4  AxInstSV - ok
15:32:02.0661 0x22d4  b06bdrv - ok
15:32:02.0663 0x22d4  BasicDisplay - ok
15:32:02.0666 0x22d4  BasicRender - ok
15:32:02.0670 0x22d4  bcmfn - ok
15:32:02.0672 0x22d4  bcmfn2 - ok
15:32:02.0678 0x22d4  BDESVC - ok
15:32:02.0685 0x22d4  [ C0247341C1BCD7FF2742821D0AD7AFBC, EC2B246F3233302DB540394AC0F11F294CA16FB9E44110126CC9807BAC20EA35 ] bdfwfpf         C:\Program Files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys
15:32:02.0692 0x22d4  bdfwfpf - ok
15:32:02.0695 0x22d4  Beep - ok
15:32:02.0697 0x22d4  BFE - ok
15:32:02.0700 0x22d4  BITS - ok
15:32:02.0709 0x22d4  [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:32:02.0721 0x22d4  Bonjour Service - ok
15:32:02.0724 0x22d4  bowser - ok
15:32:02.0727 0x22d4  BrokerInfrastructure - ok
15:32:02.0730 0x22d4  Browser - ok
15:32:02.0732 0x22d4  BthAvrcpTg - ok
15:32:02.0735 0x22d4  BthHFEnum - ok
15:32:02.0737 0x22d4  bthhfhid - ok
15:32:02.0740 0x22d4  BthHFSrv - ok
15:32:02.0745 0x22d4  BTHMODEM - ok
15:32:02.0749 0x22d4  bthserv - ok
15:32:02.0752 0x22d4  buttonconverter - ok
15:32:02.0755 0x22d4  CapImg - ok
15:32:02.0757 0x22d4  cdfs - ok
15:32:02.0763 0x22d4  CDPSvc - ok
15:32:02.0765 0x22d4  CDPUserSvc - ok
15:32:02.0770 0x22d4  cdrom - ok
15:32:02.0772 0x22d4  CertPropSvc - ok
15:32:02.0778 0x22d4  cht4iscsi - ok
15:32:02.0780 0x22d4  cht4vbd - ok
15:32:02.0783 0x22d4  circlass - ok
15:32:02.0785 0x22d4  CLFS - ok
15:32:02.0788 0x22d4  ClipSVC - ok
15:32:02.0790 0x22d4  clreg - ok
15:32:02.0801 0x22d4  CmBatt - ok
15:32:02.0804 0x22d4  CNG - ok
15:32:02.0806 0x22d4  cnghwassist - ok
15:32:02.0827 0x22d4  CompositeBus - ok
15:32:02.0830 0x22d4  COMSysApp - ok
15:32:02.0832 0x22d4  condrv - ok
15:32:02.0835 0x22d4  CoreMessagingRegistrar - ok
15:32:02.0839 0x22d4  [ 262969A3FAB32B9E17E63E2D17A57744, 1EE59EB28688E73D10838C66E0D8E011C8DF45B6B43A4AC5D0B75795CA3EB512 ] cpuz135         C:\Windows\system32\drivers\cpuz135_x64.sys
15:32:02.0845 0x22d4  cpuz135 - ok
15:32:02.0849 0x22d4  CryptSvc - ok
15:32:02.0851 0x22d4  CSC - ok
15:32:02.0853 0x22d4  CscService - ok
15:32:02.0856 0x22d4  dam - ok
15:32:02.0859 0x22d4  DcomLaunch - ok
15:32:02.0862 0x22d4  DcpSvc - ok
15:32:02.0864 0x22d4  defragsvc - ok
15:32:02.0867 0x22d4  DeviceAssociationService - ok
15:32:02.0869 0x22d4  DeviceInstall - ok
15:32:02.0871 0x22d4  DevQueryBroker - ok
15:32:02.0874 0x22d4  Dfsc - ok
15:32:02.0876 0x22d4  Dhcp - ok
15:32:02.0879 0x22d4  diagnosticshub.standardcollector.service - ok
15:32:02.0882 0x22d4  DiagTrack - ok
15:32:02.0884 0x22d4  disk - ok
15:32:02.0886 0x22d4  DmEnrollmentSvc - ok
15:32:02.0889 0x22d4  dmvsc - ok
15:32:02.0891 0x22d4  dmwappushservice - ok
15:32:02.0894 0x22d4  Dnscache - ok
15:32:02.0897 0x22d4  dot3svc - ok
15:32:02.0899 0x22d4  DPS - ok
15:32:02.0902 0x22d4  drmkaud - ok
15:32:02.0904 0x22d4  DsmSvc - ok
15:32:02.0907 0x22d4  DsSvc - ok
15:32:02.0909 0x22d4  DXGKrnl - ok
15:32:02.0911 0x22d4  EapHost - ok
15:32:02.0913 0x22d4  ebdrv - ok
15:32:02.0916 0x22d4  EFS - ok
15:32:02.0918 0x22d4  EhStorClass - ok
15:32:02.0921 0x22d4  EhStorTcgDrv - ok
15:32:02.0923 0x22d4  embeddedmode - ok
15:32:02.0929 0x22d4  [ 9ED8ED9D96F8A34E0BB5ABBFEEA9C6F4, AF186EAD2CFD4050E13945E90C8ED162143F57358034C5A7E30AF1E894DDB1C1 ] Emby            C:\Users\Cath\AppData\Roaming\Emby-Server\system\MediaBrowser.ServerApplication.exe
15:32:02.0939 0x22d4  Emby - ok
15:32:02.0942 0x22d4  EntAppSvc - ok
15:32:02.0947 0x22d4  [ 0E840AA66CAB02CBA9730C772BBE305B, 8862583E653D13D1D10A1A4A33704E4F70576E80370943AAFD1EAED6657A0104 ] epp             C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\epp.sys
15:32:02.0955 0x22d4  epp - ok
15:32:02.0958 0x22d4  ErrDev - ok
15:32:02.0963 0x22d4  EventSystem - ok
15:32:02.0965 0x22d4  exfat - ok
15:32:02.0967 0x22d4  fastfat - ok
15:32:02.0969 0x22d4  Fax - ok
15:32:02.0972 0x22d4  fdc - ok
15:32:02.0974 0x22d4  fdPHost - ok
15:32:02.0977 0x22d4  FDResPub - ok
15:32:02.0979 0x22d4  fhsvc - ok
15:32:02.0982 0x22d4  FileCrypt - ok
15:32:02.0984 0x22d4  FileInfo - ok
15:32:02.0986 0x22d4  Filetrace - ok
15:32:02.0989 0x22d4  flpydisk - ok
15:32:02.0991 0x22d4  FltMgr - ok
15:32:02.0993 0x22d4  FontCache - ok
15:32:02.0996 0x22d4  FontCache3.0.0.0 - ok
15:32:02.0999 0x22d4  FrameServer - ok
15:32:03.0001 0x22d4  FsDepends - ok
15:32:03.0003 0x22d4  Fs_Rec - ok
15:32:03.0005 0x22d4  fvevol - ok
15:32:03.0008 0x22d4  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
15:32:03.0014 0x22d4  GEARAspiWDM - ok
15:32:03.0017 0x22d4  gencounter - ok
15:32:03.0020 0x22d4  genericusbfn - ok
15:32:03.0022 0x22d4  GPIOClx0101 - ok
15:32:03.0025 0x22d4  gpsvc - ok
15:32:03.0027 0x22d4  GpuEnergyDrv - ok
15:32:03.0033 0x22d4  [ 0545A3EB959CFA4790D267BFB8C1ACA4, 69061E33ACB7587D773D05000390F9101F71DFD6EED7973B551594EAF3F04193 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:32:03.0041 0x22d4  gupdate - ok
15:32:03.0045 0x22d4  [ 0545A3EB959CFA4790D267BFB8C1ACA4, 69061E33ACB7587D773D05000390F9101F71DFD6EED7973B551594EAF3F04193 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:32:03.0114 0x22d4  gupdatem - ok
15:32:03.0119 0x22d4  [ 408B664926675C270D911160F1631D6B, 6BF7E613B708E2E81916DE6C83256F969797B9D039C16A20003541D698055BC7 ] gzflt           C:\WINDOWS\system32\DRIVERS\gzflt.sys
15:32:03.0127 0x22d4  gzflt - ok
15:32:03.0134 0x22d4  [ 995688E8FE683E2DA66D7C83A67C1E5C, D463365F4FA505019621FB45BB01C52FE27B1C80F8D51CBCAFC3D22EC4DDE565 ] gzserv          C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe
15:32:03.0141 0x22d4  gzserv - ok
15:32:03.0144 0x22d4  HDAudBus - ok
15:32:03.0147 0x22d4  HidBatt - ok
15:32:03.0149 0x22d4  HidBth - ok
15:32:03.0152 0x22d4  hidi2c - ok
15:32:03.0154 0x22d4  hidinterrupt - ok
15:32:03.0157 0x22d4  HidIr - ok
15:32:03.0159 0x22d4  hidserv - ok
15:32:03.0162 0x22d4  HidUsb - ok
15:32:03.0164 0x22d4  HomeGroupListener - ok
15:32:03.0167 0x22d4  HomeGroupProvider - ok
15:32:03.0169 0x22d4  HpSAMD - ok
15:32:03.0171 0x22d4  HTTP - ok
15:32:03.0174 0x22d4  HvHost - ok
15:32:03.0176 0x22d4  hvservice - ok
15:32:03.0178 0x22d4  hwpolicy - ok
15:32:03.0181 0x22d4  hyperkbd - ok
15:32:03.0183 0x22d4  i8042prt - ok
15:32:03.0185 0x22d4  iagpio - ok
15:32:03.0188 0x22d4  iai2c - ok
15:32:03.0190 0x22d4  iaLPSS2i_GPIO2 - ok
15:32:03.0193 0x22d4  iaLPSS2i_I2C - ok
15:32:03.0195 0x22d4  iaLPSSi_GPIO - ok
15:32:03.0197 0x22d4  iaLPSSi_I2C - ok
15:32:03.0199 0x22d4  iaStorAV - ok
15:32:03.0202 0x22d4  iaStorV - ok
15:32:03.0204 0x22d4  ibbus - ok
15:32:03.0208 0x22d4  [ 90D95B25F8413F937A2E155F196D892C, 5D08EE7BFEB000F2A06FA2F37729C29C2A71760A4BD6241330E6FF257CB8D8EE ] ICCS            C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe
15:32:03.0216 0x22d4  ICCS - detected UnsignedFile.Multi.Generic ( 1 )
15:32:03.0216 0x22d4  ICCS ( UnsignedFile.Multi.Generic ) - warning
15:32:03.0344 0x22d4  [ C1010ADD3DDAE1196ED21057AF7B2AAE, 68196851855AD395008D7F29FCEB28BA4BEB1F062B1844A60813E7DD102ACB1C ] ICCWDT          C:\WINDOWS\System32\drivers\ICCWDT.sys
15:32:03.0350 0x22d4  ICCWDT - ok
15:32:03.0352 0x22d4  icssvc - ok
15:32:03.0355 0x22d4  IKEEXT - ok
15:32:03.0358 0x22d4  IndirectKmd - ok
15:32:03.0436 0x22d4  [ 622868E4BAE8FBCD22CB1A5901A2C824, C1A2264C0984DD16C83B663C9CE43E049E1356E32C5771C3ACE225F285699138 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
15:32:03.0505 0x22d4  IntcAzAudAddService - ok
15:32:03.0509 0x22d4  intelide - ok
15:32:03.0511 0x22d4  intelpep - ok
15:32:03.0513 0x22d4  intelppm - ok
15:32:03.0515 0x22d4  iorate - ok
15:32:03.0517 0x22d4  IpFilterDriver - ok
15:32:03.0520 0x22d4  iphlpsvc - ok
15:32:03.0522 0x22d4  IPMIDRV - ok
15:32:03.0524 0x22d4  IPNAT - ok
15:32:03.0536 0x22d4  [ C37FAF1F0CE458D124A326FC8A7FF08D, 0147897CDF6DC2AB7113672D2B62CB258303FB0482B084C23C2E7EFCDE0065B4 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
15:32:03.0550 0x22d4  iPod Service - ok
15:32:03.0553 0x22d4  irda - ok
15:32:03.0555 0x22d4  IRENUM - ok
15:32:03.0557 0x22d4  irmon - ok
15:32:03.0560 0x22d4  isapnp - ok
15:32:03.0562 0x22d4  iScsiPrt - ok
15:32:03.0565 0x22d4  [ 6BCEF45131C8B8E1C558BE540B190B3C, DFFED7FD9DCC15808184E65065DE6138FE010AC01217E5016B2D20A5B89AC570 ] iusb3hcs        C:\WINDOWS\system32\drivers\iusb3hcs.sys
15:32:03.0571 0x22d4  iusb3hcs - ok
15:32:03.0573 0x22d4  kbdclass - ok
15:32:03.0576 0x22d4  kbdhid - ok
15:32:03.0578 0x22d4  kdnic - ok
15:32:03.0580 0x22d4  KeyIso - ok
15:32:03.0583 0x22d4  KSecDD - ok
15:32:03.0585 0x22d4  KSecPkg - ok
15:32:03.0587 0x22d4  ksthunk - ok
15:32:03.0590 0x22d4  KtmRm - ok
15:32:03.0592 0x22d4  LanmanServer - ok
15:32:03.0595 0x22d4  LanmanWorkstation - ok
15:32:03.0598 0x22d4  lfsvc - ok
15:32:03.0600 0x22d4  LicenseManager - ok
15:32:03.0602 0x22d4  lltdio - ok
15:32:03.0605 0x22d4  lltdsvc - ok
15:32:03.0607 0x22d4  lmhosts - ok
15:32:03.0615 0x22d4  [ 75F29D77B0540FCF47EE3BE000BBABDA, 3FFDDC42D51FABAA7F3BFD088F008DE39F3479B25214260D98336F00B6336BFA ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
15:32:03.0623 0x22d4  LMS - ok
15:32:03.0628 0x22d4  LSI_SAS - ok
15:32:03.0631 0x22d4  LSI_SAS2i - ok
15:32:03.0633 0x22d4  LSI_SAS3i - ok
15:32:03.0636 0x22d4  LSI_SSS - ok
15:32:03.0638 0x22d4  LSM - ok
15:32:03.0640 0x22d4  luafv - ok
15:32:03.0643 0x22d4  MapsBroker - ok
15:32:03.0652 0x22d4  [ 0353B02AAB907E82042C6EA3BDE19471, 0377CABDCFDED30D8431D9A606043213BCBDF22FAB75610A9F70F67FE9436713 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.11.569\McCHSvc.exe
15:32:03.0664 0x22d4  McComponentHostService - ok
15:32:03.0667 0x22d4  megasas - ok
15:32:03.0669 0x22d4  megasas2i - ok
15:32:03.0672 0x22d4  megasr - ok
15:32:03.0675 0x22d4  [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
15:32:03.0681 0x22d4  MEIx64 - ok
15:32:03.0684 0x22d4  MessagingService - ok
15:32:03.0695 0x22d4  mlx4_bus - ok
15:32:03.0698 0x22d4  MMCSS - ok
15:32:03.0701 0x22d4  Modem - ok
15:32:03.0703 0x22d4  monitor - ok
15:32:03.0705 0x22d4  mouclass - ok
15:32:03.0707 0x22d4  mouhid - ok
15:32:03.0709 0x22d4  mountmgr - ok
15:32:03.0713 0x22d4  [ 1EB0251DD31BC9C594D2D87EDE8F8EF4, C9B03461F894A681545994AF9C0555ED92D32617EED344360C1784EE6E2AAC9D ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:32:03.0722 0x22d4  MozillaMaintenance - ok
15:32:03.0725 0x22d4  mpsdrv - ok
15:32:03.0728 0x22d4  MpsSvc - ok
15:32:03.0730 0x22d4  MQAC - ok
15:32:03.0732 0x22d4  MRxDAV - ok
15:32:03.0735 0x22d4  mrxsmb - ok
15:32:03.0737 0x22d4  mrxsmb10 - ok
15:32:03.0739 0x22d4  mrxsmb20 - ok
15:32:03.0742 0x22d4  MsBridge - ok
15:32:03.0745 0x22d4  MSDTC - ok
15:32:03.0749 0x22d4  Msfs - ok
15:32:03.0751 0x22d4  msgpiowin32 - ok
15:32:03.0753 0x22d4  mshidkmdf - ok
15:32:03.0755 0x22d4  mshidumdf - ok
15:32:03.0758 0x22d4  msisadrv - ok
15:32:03.0760 0x22d4  MSiSCSI - ok
15:32:03.0762 0x22d4  msiserver - ok
15:32:03.0764 0x22d4  MSKSSRV - ok
15:32:03.0766 0x22d4  MsLldp - ok
15:32:03.0769 0x22d4  MSMQ - ok
15:32:03.0771 0x22d4  MSPCLOCK - ok
15:32:03.0773 0x22d4  MSPQM - ok
15:32:03.0776 0x22d4  MsRPC - ok
15:32:03.0779 0x22d4  MsSecFlt - ok
15:32:03.0782 0x22d4  mssmbios - ok
15:32:03.0784 0x22d4  MSTEE - ok
15:32:03.0786 0x22d4  MTConfig - ok
15:32:03.0788 0x22d4  Mup - ok
15:32:03.0791 0x22d4  mvumis - ok
15:32:03.0795 0x22d4  NativeWifiP - ok
15:32:03.0797 0x22d4  NcaSvc - ok
15:32:03.0800 0x22d4  NcbService - ok
15:32:03.0802 0x22d4  NcdAutoSetup - ok
15:32:03.0804 0x22d4  ndfltr - ok
15:32:03.0807 0x22d4  NDIS - ok
15:32:03.0809 0x22d4  NdisCap - ok
15:32:03.0812 0x22d4  NdisImPlatform - ok
15:32:03.0814 0x22d4  [ DE4CEF317628F50B576673964A8C712B, A3A36EC755A63255E6505F22BBEA4C5AB6C76190D4F60645CF5FA26742FD6D5B ] ndisrd          C:\WINDOWS\system32\DRIVERS\ndisrd.sys
15:32:03.0821 0x22d4  ndisrd - ok
15:32:03.0823 0x22d4  NdisTapi - ok
15:32:03.0825 0x22d4  Ndisuio - ok
15:32:03.0828 0x22d4  NdisVirtualBus - ok
15:32:03.0830 0x22d4  NdisWan - ok
15:32:03.0833 0x22d4  ndiswanlegacy - ok
15:32:03.0835 0x22d4  ndproxy - ok
15:32:03.0837 0x22d4  Ndu - ok
15:32:03.0840 0x22d4  NetAdapterCx - ok
15:32:03.0842 0x22d4  NetBIOS - ok
15:32:03.0846 0x22d4  NetBT - ok
15:32:03.0848 0x22d4  Netlogon - ok
15:32:03.0851 0x22d4  Netman - ok
15:32:03.0858 0x22d4  NetMsmqActivator - ok
15:32:03.0859 0x22d4  NetPipeActivator - ok
15:32:03.0863 0x22d4  netprofm - ok
15:32:03.0866 0x22d4  NetSetupSvc - ok
15:32:03.0868 0x22d4  NetTcpActivator - ok
15:32:03.0870 0x22d4  NetTcpPortSharing - ok
15:32:03.0874 0x22d4  NgcCtnrSvc - ok
15:32:03.0877 0x22d4  NgcSvc - ok
15:32:03.0879 0x22d4  NlaSvc - ok
15:32:03.0882 0x22d4  Npfs - ok
15:32:03.0884 0x22d4  npsvctrig - ok
15:32:03.0887 0x22d4  nsi - ok
15:32:03.0889 0x22d4  nsiproxy - ok
15:32:03.0893 0x22d4  NTFS - ok
15:32:03.0896 0x22d4  Null - ok
15:32:03.0902 0x22d4  [ 9FA7207F728651F98A6B3C6D3AA79AD2, 040E3E30B6CA1C7FCEAB3760DE2332EF0F73086B832F970B58BE5FFC4238C497 ] NVHDA           C:\WINDOWS\system32\drivers\nvhda64v.sys
15:32:03.0911 0x22d4  NVHDA - ok
15:32:04.0088 0x22d4  [ 6764192883EA0CD324CC4305046D3B6B, 00DEB8AB69E9679EE60A628AD228C092AB1ED45D57A40A9301C2007B0A07D893 ] nvlddmkm        C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
15:32:04.0274 0x22d4  nvlddmkm - ok
15:32:04.0278 0x22d4  nvraid - ok
15:32:04.0283 0x22d4  [ 5266D03C0628FAE9C35F40EEC078FC88, 9B179825F526B0C8E8F6AC62D6FAFEA6DCCE26A80980197A4881E82250EB6BCA ] nvrd64          C:\WINDOWS\system32\DRIVERS\nvrd64.sys
15:32:04.0291 0x22d4  nvrd64 - ok
15:32:04.0294 0x22d4  [ E58D81FB8616D0CB55C1E36AA0B213C9, D83F78615889A466ADE2BFEF7AB357C0D31B7FA9A1A52668DED32A51FEFA87B5 ] nvsmu           C:\WINDOWS\system32\DRIVERS\nvsmu.sys
15:32:04.0299 0x22d4  nvsmu - ok
15:32:04.0302 0x22d4  nvstor - ok
15:32:04.0309 0x22d4  [ 2A718473EDE7032A508A8F44C633657F, DEDE4721A77917A9B51B0E13E359575F0A2A976F90B88A5BBDD06A7882E03F50 ] nvstor64        C:\WINDOWS\system32\DRIVERS\nvstor64.sys
15:32:04.0317 0x22d4  nvstor64 - ok
15:32:04.0334 0x22d4  [ FFADB2E34CE378F059F57161AD555DBF, 442C79D96012ABD76CB8A4FE1490AEB7D8CC9068170AB85DB7F8115FA807ADB0 ] nvsvc           C:\WINDOWS\system32\nvvsvc.exe
15:32:04.0360 0x22d4  nvsvc - ok
15:32:04.0372 0x22d4  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:32:04.0384 0x22d4  odserv - ok
15:32:04.0387 0x22d4  OneSyncSvc - ok
15:32:04.0425 0x22d4  [ 49A344136F729659C075D67ADFB88FBA, 5EF65E7FAC02FE5C3039C510634F257A02D77A449A8A4B749666712F90E59A8B ] OS Selector     C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
15:32:04.0459 0x22d4  OS Selector - ok
15:32:04.0464 0x22d4  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:32:04.0471 0x22d4  ose - ok
15:32:04.0474 0x22d4  p2pimsvc - ok
15:32:04.0476 0x22d4  p2psvc - ok
15:32:04.0478 0x22d4  Parport - ok
15:32:04.0481 0x22d4  partmgr - ok
15:32:04.0483 0x22d4  PcaSvc - ok
15:32:04.0485 0x22d4  pci - ok
15:32:04.0488 0x22d4  pciide - ok
15:32:04.0491 0x22d4  pcmcia - ok
15:32:04.0493 0x22d4  pcw - ok
15:32:04.0495 0x22d4  pdc - ok
15:32:04.0498 0x22d4  PEAUTH - ok
15:32:04.0500 0x22d4  PeerDistSvc - ok
15:32:04.0502 0x22d4  percsas2i - ok
15:32:04.0505 0x22d4  percsas3i - ok
15:32:04.0532 0x22d4  PerfHost - ok
15:32:04.0538 0x22d4  PhoneSvc - ok
15:32:04.0541 0x22d4  PimIndexMaintenanceSvc - ok
15:32:04.0544 0x22d4  pla - ok
15:32:04.0547 0x22d4  PlugPlay - ok
15:32:04.0549 0x22d4  PNRPAutoReg - ok
15:32:04.0551 0x22d4  PNRPsvc - ok
15:32:04.0554 0x22d4  PolicyAgent - ok
15:32:04.0557 0x22d4  Power - ok
15:32:04.0559 0x22d4  PptpMiniport - ok
15:32:04.0616 0x22d4  [ 30AA256A85C1A7B17A590B1C5244D28E, 2C1FB30DEF53C37CA0D0CA54B65CB8572C53DDFB430DE57F964253F1082ACEA0 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
15:32:04.0697 0x22d4  PrintNotify - ok
15:32:04.0701 0x22d4  Processor - ok
15:32:04.0703 0x22d4  ProfSvc - ok
15:32:04.0705 0x22d4  Psched - ok
15:32:04.0708 0x22d4  QWAVE - ok
15:32:04.0710 0x22d4  QWAVEdrv - ok
15:32:04.0713 0x22d4  RasAcd - ok
15:32:04.0716 0x22d4  RasAgileVpn - ok
15:32:04.0718 0x22d4  RasAuto - ok
15:32:04.0720 0x22d4  Rasl2tp - ok
15:32:04.0723 0x22d4  RasMan - ok
15:32:04.0725 0x22d4  RasPppoe - ok
15:32:04.0727 0x22d4  RasSstp - ok
15:32:04.0730 0x22d4  rdbss - ok
15:32:04.0733 0x22d4  rdpbus - ok
15:32:04.0736 0x22d4  RDPDR - ok
15:32:04.0740 0x22d4  RdpVideoMiniport - ok
15:32:04.0743 0x22d4  rdyboost - ok
15:32:04.0803 0x22d4  [ F1D9E7B84A123F8861F63A2AE1E9F144, 7A56188DE148525B23617F8DA4AD49A88FA1BFC48641ED5065896C4408DA44ED ] ReflectService.exe C:\Program Files\Macrium\Reflect\ReflectService.exe
15:32:04.0856 0x22d4  ReflectService.exe - ok
15:32:04.0860 0x22d4  ReFSv1 - ok
15:32:04.0863 0x22d4  RemoteAccess - ok
15:32:04.0866 0x22d4  RemoteRegistry - ok
15:32:04.0869 0x22d4  RetailDemo - ok
15:32:04.0871 0x22d4  RmSvc - ok
15:32:04.0873 0x22d4  RpcEptMapper - ok
15:32:04.0876 0x22d4  RpcLocator - ok
15:32:04.0878 0x22d4  RpcSs - ok
15:32:04.0881 0x22d4  rspndr - ok
15:32:04.0883 0x22d4  rt640x64 - ok
15:32:04.0886 0x22d4  s3cap - ok
15:32:04.0889 0x22d4  SamSs - ok
15:32:04.0891 0x22d4  sbp2port - ok
15:32:04.0894 0x22d4  SCardSvr - ok
15:32:04.0897 0x22d4  ScDeviceEnum - ok
15:32:04.0899 0x22d4  scfilter - ok
15:32:04.0902 0x22d4  Schedule - ok
15:32:04.0904 0x22d4  scmbus - ok
15:32:04.0907 0x22d4  scmdisk0101 - ok
15:32:04.0909 0x22d4  SCPolicySvc - ok
15:32:04.0912 0x22d4  sdbus - ok
15:32:04.0914 0x22d4  SDRSVC - ok
15:32:04.0917 0x22d4  sdstor - ok
15:32:04.0920 0x22d4  seclogon - ok
15:32:04.0922 0x22d4  SENS - ok
15:32:04.0925 0x22d4  Sense - ok
15:32:04.0928 0x22d4  SensorDataService - ok
15:32:04.0931 0x22d4  SensorService - ok
15:32:04.0933 0x22d4  SensrSvc - ok
15:32:04.0936 0x22d4  SerCx - ok
15:32:04.0938 0x22d4  SerCx2 - ok
15:32:04.0941 0x22d4  Serenum - ok
15:32:04.0943 0x22d4  Serial - ok
15:32:04.0946 0x22d4  sermouse - ok
15:32:04.0955 0x22d4  [ B9D750EEB8A571C5E1D9E4E41DED72D8, 6200CE0679CE577044404C4595607913C6A2A8950E8B25A85CA8728CA51E6764 ] SESMPWD         C:\Program Files\EPSON_P2\Status Monitor\SEPWDN.EXE
15:32:04.0963 0x22d4  SESMPWD - ok
15:32:04.0971 0x22d4  [ 090FDDBEB3908EAA7AEE72FC05550F62, EFD038659DCF623317656D3E3C1F4A8F164FD92B024431FC83441CE745EF9D9C ] SESMSDB         C:\Program Files\EPSON_P2\Status Monitor\SESDBN.EXE
15:32:04.0980 0x22d4  SESMSDB - ok
15:32:04.0983 0x22d4  SessionEnv - ok
15:32:04.0988 0x22d4  sfloppy - ok
15:32:04.0991 0x22d4  SharedAccess - ok
15:32:04.0993 0x22d4  ShellHWDetection - ok
15:32:04.0996 0x22d4  shpamsvc - ok
15:32:04.0998 0x22d4  SiSRaid2 - ok
15:32:05.0001 0x22d4  SiSRaid4 - ok
15:32:05.0004 0x22d4  smphost - ok
15:32:05.0006 0x22d4  SmsRouter - ok
15:32:05.0015 0x22d4  [ B2AA7562BA5858633FCDCD246E8D6730, 761A581358048B47EBAE15433B2A70E9B35D37831E8513FD22E12DD2D96D639F ] snapman         C:\WINDOWS\system32\DRIVERS\snapman.sys
15:32:05.0024 0x22d4  snapman - ok
15:32:05.0028 0x22d4  SNMPTRAP - ok
15:32:05.0031 0x22d4  spaceport - ok
15:32:05.0033 0x22d4  SpbCx - ok
15:32:05.0036 0x22d4  Spooler - ok
15:32:05.0038 0x22d4  sppsvc - ok
15:32:05.0041 0x22d4  srv - ok
15:32:05.0043 0x22d4  srv2 - ok
15:32:05.0046 0x22d4  srvnet - ok
15:32:05.0049 0x22d4  SSDPSRV - ok
15:32:05.0051 0x22d4  SstpSvc - ok
15:32:05.0054 0x22d4  StateRepository - ok
15:32:05.0063 0x22d4  [ 843F16D234D03756B9EB6054B5C62FAA, 529E1F8C6EB4AA881C9FDE9DA6CAFA34F5770E87059E867B8F88B40FE879743D ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
15:32:05.0076 0x22d4  Stereo Service - ok
15:32:05.0079 0x22d4  stexstor - ok
15:32:05.0082 0x22d4  stisvc - ok
15:32:05.0085 0x22d4  storahci - ok
15:32:05.0088 0x22d4  storflt - ok
15:32:05.0090 0x22d4  stornvme - ok
15:32:05.0093 0x22d4  storqosflt - ok
15:32:05.0096 0x22d4  StorSvc - ok
15:32:05.0098 0x22d4  storufs - ok
15:32:05.0101 0x22d4  storvsc - ok
15:32:05.0104 0x22d4  svsvc - ok
15:32:05.0106 0x22d4  swenum - ok
15:32:05.0109 0x22d4  swprv - ok
15:32:05.0111 0x22d4  Synth3dVsc - ok
15:32:05.0114 0x22d4  SysMain - ok
15:32:05.0117 0x22d4  SystemEventsBroker - ok
15:32:05.0119 0x22d4  TabletInputService - ok
15:32:05.0122 0x22d4  [ F309ED839E7F8FB1A86A91D92A7142E2, D78EB4969B549A78DCC45D31233C34F7DFD06363CD429E8EFD1E963010113472 ] tap0901         C:\WINDOWS\System32\drivers\tap0901.sys
15:32:05.0130 0x22d4  tap0901 - ok
15:32:05.0132 0x22d4  TapiSrv - ok
15:32:05.0135 0x22d4  Tcpip - ok
15:32:05.0138 0x22d4  Tcpip6 - ok
15:32:05.0142 0x22d4  tcpipreg - ok
15:32:05.0145 0x22d4  tdx - ok
15:32:05.0148 0x22d4  terminpt - ok
15:32:05.0151 0x22d4  TermService - ok
15:32:05.0154 0x22d4  Themes - ok
15:32:05.0156 0x22d4  TieringEngineService - ok
15:32:05.0159 0x22d4  tiledatamodelsvc - ok
15:32:05.0162 0x22d4  TimeBrokerSvc - ok
15:32:05.0164 0x22d4  TPM - ok
15:32:05.0167 0x22d4  TrkWks - ok
15:32:05.0175 0x22d4  [ 132C0E39AF0312E6B9611E2E1B344D41, 8B26EB55C5E0721498FF28A2865697FF761D237626A920608B5A80360BBD1285 ] trufos          C:\WINDOWS\system32\DRIVERS\trufos.sys
15:32:05.0187 0x22d4  trufos - ok
15:32:05.0190 0x22d4  TrustedInstaller - ok
15:32:05.0193 0x22d4  tsusbflt - ok
15:32:05.0196 0x22d4  TsUsbGD - ok
15:32:05.0198 0x22d4  tsusbhub - ok
15:32:05.0201 0x22d4  tunnel - ok
15:32:05.0204 0x22d4  tzautoupdate - ok
15:32:05.0206 0x22d4  UASPStor - ok
15:32:05.0209 0x22d4  UcmCx0101 - ok
15:32:05.0212 0x22d4  UcmTcpciCx0101 - ok
15:32:05.0214 0x22d4  UcmUcsi - ok
15:32:05.0217 0x22d4  Ucx01000 - ok
15:32:05.0220 0x22d4  UdeCx - ok
15:32:05.0222 0x22d4  udfs - ok
15:32:05.0225 0x22d4  UEFI - ok
15:32:05.0227 0x22d4  UevAgentDriver - ok
15:32:05.0230 0x22d4  UevAgentService - ok
15:32:05.0233 0x22d4  Ufx01000 - ok
15:32:05.0235 0x22d4  UfxChipidea - ok
15:32:05.0238 0x22d4  ufxsynopsys - ok
15:32:05.0243 0x22d4  UI0Detect - ok
15:32:05.0245 0x22d4  umbus - ok
15:32:05.0248 0x22d4  UmPass - ok
15:32:05.0251 0x22d4  UmRdpService - ok
15:32:05.0254 0x22d4  UnistoreSvc - ok
15:32:05.0258 0x22d4  upnphost - ok
15:32:05.0261 0x22d4  UrsChipidea - ok
15:32:05.0264 0x22d4  UrsCx01000 - ok
15:32:05.0266 0x22d4  UrsSynopsys - ok
15:32:05.0269 0x22d4  usbccgp - ok
15:32:05.0272 0x22d4  usbcir - ok
15:32:05.0274 0x22d4  usbehci - ok
15:32:05.0277 0x22d4  usbhub - ok
15:32:05.0279 0x22d4  USBHUB3 - ok
15:32:05.0282 0x22d4  usbohci - ok
15:32:05.0285 0x22d4  usbprint - ok
15:32:05.0287 0x22d4  usbser - ok
15:32:05.0290 0x22d4  USBSTOR - ok
15:32:05.0292 0x22d4  usbuhci - ok
15:32:05.0295 0x22d4  USBXHCI - ok
15:32:05.0298 0x22d4  UserDataSvc - ok
15:32:05.0302 0x22d4  UserManager - ok
15:32:05.0305 0x22d4  UsoSvc - ok
15:32:05.0308 0x22d4  VaultSvc - ok
15:32:05.0310 0x22d4  vdrvroot - ok
15:32:05.0313 0x22d4  vds - ok
15:32:05.0316 0x22d4  VerifierExt - ok
15:32:05.0319 0x22d4  vhdmp - ok
15:32:05.0321 0x22d4  vhf - ok
15:32:05.0324 0x22d4  vmbus - ok
15:32:05.0326 0x22d4  VMBusHID - ok
15:32:05.0329 0x22d4  vmgid - ok
15:32:05.0332 0x22d4  vmicguestinterface - ok
15:32:05.0334 0x22d4  vmicheartbeat - ok
15:32:05.0337 0x22d4  vmickvpexchange - ok
15:32:05.0340 0x22d4  vmicrdv - ok
15:32:05.0342 0x22d4  vmicshutdown - ok
15:32:05.0345 0x22d4  vmictimesync - ok
15:32:05.0348 0x22d4  vmicvmsession - ok
15:32:05.0350 0x22d4  vmicvss - ok
15:32:05.0353 0x22d4  volmgr - ok
15:32:05.0356 0x22d4  volmgrx - ok
15:32:05.0358 0x22d4  volsnap - ok
15:32:05.0361 0x22d4  volume - ok
15:32:05.0364 0x22d4  vpci - ok
15:32:05.0367 0x22d4  vsmraid - ok
15:32:05.0370 0x22d4  VSS - ok
15:32:05.0372 0x22d4  VSTXRAID - ok
15:32:05.0375 0x22d4  vwifibus - ok
15:32:05.0379 0x22d4  vwififlt - ok
15:32:05.0381 0x22d4  W32Time - ok
15:32:05.0385 0x22d4  w3logsvc - ok
15:32:05.0388 0x22d4  W3SVC - ok
15:32:05.0390 0x22d4  WacomPen - ok
15:32:05.0394 0x22d4  WalletService - ok
15:32:05.0396 0x22d4  wanarp - ok
15:32:05.0399 0x22d4  wanarpv6 - ok
15:32:05.0402 0x22d4  WAS - ok
15:32:05.0405 0x22d4  wbengine - ok
15:32:05.0408 0x22d4  WbioSrvc - ok
15:32:05.0411 0x22d4  wcifs - ok
15:32:05.0414 0x22d4  Wcmsvc - ok
15:32:05.0417 0x22d4  wcncsvc - ok
15:32:05.0419 0x22d4  wcnfs - ok
15:32:05.0422 0x22d4  WdBoot - ok
15:32:05.0425 0x22d4  Wdf01000 - ok
15:32:05.0428 0x22d4  WdFilter - ok
15:32:05.0431 0x22d4  WdiServiceHost - ok
15:32:05.0433 0x22d4  WdiSystemHost - ok
15:32:05.0436 0x22d4  wdiwifi - ok
15:32:05.0439 0x22d4  WdNisDrv - ok
15:32:05.0441 0x22d4  WdNisSvc - ok
15:32:05.0444 0x22d4  WebClient - ok
15:32:05.0447 0x22d4  Wecsvc - ok
15:32:05.0450 0x22d4  WEPHOSTSVC - ok
15:32:05.0453 0x22d4  wercplsupport - ok
15:32:05.0456 0x22d4  WerSvc - ok
15:32:05.0459 0x22d4  WFPLWFS - ok
15:32:05.0462 0x22d4  WiaRpc - ok
15:32:05.0465 0x22d4  WIMMount - ok
15:32:05.0467 0x22d4  WinDefend - ok
15:32:05.0473 0x22d4  WindowsTrustedRT - ok
15:32:05.0476 0x22d4  WindowsTrustedRTProxy - ok
15:32:05.0479 0x22d4  WinHttpAutoProxySvc - ok
15:32:05.0482 0x22d4  WinMad - ok
15:32:05.0489 0x22d4  Winmgmt - ok
15:32:05.0493 0x22d4  WinRM - ok
15:32:05.0498 0x22d4  WINUSB - ok
15:32:05.0501 0x22d4  WinVerbs - ok
15:32:05.0504 0x22d4  wisvc - ok
15:32:05.0507 0x22d4  WlanSvc - ok
15:32:05.0510 0x22d4  wlidsvc - ok
15:32:05.0512 0x22d4  WmiAcpi - ok
15:32:05.0517 0x22d4  wmiApSrv - ok
15:32:05.0519 0x22d4  WMPNetworkSvc - ok
15:32:05.0522 0x22d4  Wof - ok
15:32:05.0527 0x22d4  workfolderssvc - ok
15:32:05.0530 0x22d4  WPDBusEnum - ok
15:32:05.0533 0x22d4  WpdUpFltr - ok
15:32:05.0536 0x22d4  WpnService - ok
15:32:05.0539 0x22d4  WpnUserService - ok
15:32:05.0543 0x22d4  ws2ifsl - ok
15:32:05.0546 0x22d4  wscsvc - ok
15:32:05.0549 0x22d4  WSDPrintDevice - ok
15:32:05.0552 0x22d4  WSDScan - ok
15:32:05.0555 0x22d4  WSearch - ok
15:32:05.0559 0x22d4  wuauserv - ok
15:32:05.0562 0x22d4  WudfPf - ok
15:32:05.0565 0x22d4  WUDFRd - ok
15:32:05.0568 0x22d4  wudfsvc - ok
15:32:05.0571 0x22d4  WUDFWpdFs - ok
15:32:05.0574 0x22d4  WUDFWpdMtp - ok
15:32:05.0577 0x22d4  WwanSvc - ok
15:32:05.0580 0x22d4  XblAuthManager - ok
15:32:05.0583 0x22d4  XblGameSave - ok
15:32:05.0586 0x22d4  xboxgip - ok
15:32:05.0589 0x22d4  XboxNetApiSvc - ok
15:32:05.0592 0x22d4  xinputhid - ok
15:32:05.0606 0x22d4  ================ Scan global ===============================
15:32:05.0617 0x22d4  [ Global ] - ok
15:32:05.0617 0x22d4  ================ Scan MBR ==================================
15:32:05.0619 0x22d4  [ B1F7D7F6E4FBE98E578562A22A94D02C ] \Device\Harddisk0\DR0
15:32:05.0689 0x22d4  \Device\Harddisk0\DR0 - ok
15:32:05.0690 0x22d4  [ 017E003AB27B155B3A606EB18257FC5D ] \Device\Harddisk1\DR1
15:32:06.0030 0x22d4  \Device\Harddisk1\DR1 - ok
15:32:06.0032 0x22d4  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
15:32:06.0071 0x22d4  \Device\Harddisk2\DR2 - ok
15:32:06.0074 0x22d4  [ EF1D8B517E0BEA9CE5EAAC546B249695 ] \Device\Harddisk3\DR3
15:32:06.0202 0x22d4  \Device\Harddisk3\DR3 - ok
15:32:06.0202 0x22d4  ================ Scan VBR ==================================
15:32:06.0203 0x22d4  [ 1585EE94E85916ECC5538A89462BD13C ] \Device\Harddisk0\DR0\Partition1
15:32:06.0205 0x22d4  \Device\Harddisk0\DR0\Partition1 - ok
15:32:06.0206 0x22d4  [ B497E7C6E6DFC5B04BB65780924EF31E ] \Device\Harddisk2\DR2\Partition1
15:32:06.0221 0x22d4  \Device\Harddisk2\DR2\Partition1 - ok
15:32:06.0224 0x22d4  [ 548205C2D7699A49C8DD4C78F67CD2DB ] \Device\Harddisk3\DR3\Partition1
15:32:06.0227 0x22d4  \Device\Harddisk3\DR3\Partition1 - ok
15:32:06.0228 0x22d4  ================ Scan generic autorun ======================
15:32:06.0350 0x22d4  [ 22EBD5AE3B3220D713E544D1D3AB3FEE, 9EF058B096DAA5C6242FBEB3DF509108180B1EB1EA252E63C437CF6C1B743BE0 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
15:32:06.0469 0x22d4  RTHDVCPL - ok
15:32:06.0496 0x22d4  [ 4F46EA70C7579052F764D0F9B81D23C2, EABE443ABC39AFDA49762A78711FAB4C7367680BE4F0B79F3144362D4A272238 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
15:32:06.0526 0x22d4  NvBackend - ok
15:32:06.0544 0x22d4  [ D14038B78417AC2D1DE8C5B89FF1BDE3, 01E5D1F440E50DC73CF395C3747E5668A1AFF543FB5A8CC7BF052B9C4435FA12 ] C:\Program Files\EPSON_P2\Printer Software\SEQLUZ.EXE
15:32:06.0561 0x22d4  SEQLU - ok
15:32:06.0571 0x22d4  [ 2EA5857E47250C57C69F426054B884DC, 4803FD8374D4FF87DE25B432D73FAAF0C2FBE2477BE43C4887BFD4454F4E9D73 ] C:\Program Files\EPSON_P2\Status Monitor\SEPSPZ.EXE
15:32:06.0582 0x22d4  SESMPSP - ok
15:32:06.0586 0x22d4  [ 5677C8C60F4659E8626AC9036EEF38DF, 1C7D3EC3BCB3E34900DD9556A3EBAF449C68585DC8E07682E680790497105B8B ] C:\Program Files\Classic Shell\ClassicStartMenu.exe
15:32:06.0595 0x22d4  Classic Start Menu - ok
15:32:06.0600 0x22d4  [ D91AB5CCE502F95726AC1E035C867BC6, A27B2AAB26C844454A0CEA97F861623C518A837B9DF41778AC7F4E9184E6BC8C ] C:\Program Files\iTunes\iTunesHelper.exe
15:32:06.0608 0x22d4  iTunesHelper - ok
15:32:06.0610 0x22d4  [ 452FA961163EF4AEE4815796A13AB2CF, 14DC422082F96F5C21C41A5E5F6E8445547CC4B02B18F0A86A34669CA2CE18A7 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
15:32:06.0615 0x22d4  Adobe Reader Speed Launcher - ok
15:32:06.0618 0x22d4  [ AF905BC023A0018F7325FD4B0019B5C0, 9F65DE0C3D8B90295B70528ADD2411CC1771AC089B70ABEC426D6F2D5D7A104A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
15:32:06.0626 0x22d4  APSDaemon - ok
15:32:06.0666 0x22d4  [ 671C9F2F8C51B2675D0CFF3D0FD703F7, 8DF5E3F33A644DD3C420C56E38CE67DAD29037AEA7930676CCE6C02DC3114C44 ] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
15:32:06.0726 0x22d4  HDAudDeck - detected UnsignedFile.Multi.Generic ( 1 )
15:32:06.0726 0x22d4  HDAudDeck ( UnsignedFile.Multi.Generic ) - warning
15:32:06.0846 0x22d4  [ DB4E2D9C09A5762CB2551222B5E443B2, 318AD09D1821E38B7D7ACC0A06965057B494A752C9E34FD1CA41247DC703F985 ] C:\Windows\RaidTool\xInsIDE.exe
15:32:06.0852 0x22d4  JMB36X IDE Setup - detected UnsignedFile.Multi.Generic ( 1 )
15:32:06.0852 0x22d4  JMB36X IDE Setup ( UnsignedFile.Multi.Generic ) - warning
15:32:06.0992 0x22d4  [ 1040F1B137BC8E513AB4EF8698C50AEE, FA657D604D36BA99162E0466164A3D48E00A15094911B4E9642CCD0A162CFE3D ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
15:32:07.0005 0x22d4  SunJavaUpdateSched - ok
15:32:07.0030 0x22d4  OneDriveSetup - ok
15:32:07.0032 0x22d4  OneDriveSetup - ok
15:32:07.0057 0x22d4  [ 642102CCB9EF737E188D136B93AB9A1F, 9BF47F3B3DAD7938C804C951FC81AC5C1EA8BDD94AB29630D5080CE797F3CC0F ] C:\Users\Cath\AppData\Local\Microsoft\OneDrive\OneDrive.exe
15:32:07.0086 0x22d4  OneDrive - ok
15:32:07.0086 0x22d4  TweakBit\PCRepairKit\Start PCRepairKit оn logon - ok
15:32:07.0229 0x22d4  [ 4A4FF358B1ECCAEDBBDAEF293613CEC5, 0697FCBC726F2BC2573495CD878F9309235DB7289DD76FB9406233D01D546272 ] C:\Program Files\CCleaner\CCleaner64.exe
15:32:07.0365 0x22d4  CCleaner Monitoring - ok
15:32:07.0367 0x22d4  OneDriveSetup - ok
15:32:07.0368 0x22d4  WAB Migrate - ok
15:32:07.0378 0x22d4  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.1198 ), 0x60100 ( disabled : updated )
15:32:07.0378 0x22d4  AV detected via SS2: Emsisoft Anti-Malware, C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\a2start.exe ( 2017.1.1.7166 ), 0x340010 ( disabled : outofdate )
15:32:07.0378 0x22d4  AV detected via SS2: Bitdefender Antivirus Free Edition, C:\Program Files\Bitdefender\Antivirus Free Edition\gziface.exe ( 1.0.21.1109 ), 0x41000 ( enabled : updated )
15:32:07.0381 0x22d4  Win FW state via NFP2: enabled ( trusted )
15:32:07.0502 0x22d4  ============================================================
15:32:07.0502 0x22d4  Scan finished
15:32:07.0502 0x22d4  ============================================================
15:32:07.0507 0x21b8  Detected object count: 4
15:32:07.0507 0x21b8  Actual detected object count: 4
15:32:50.0856 0x21b8  asComSvc ( UnsignedFile.Multi.Generic ) - skipped by user
15:32:50.0856 0x21b8  asComSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:32:50.0856 0x21b8  ICCS ( UnsignedFile.Multi.Generic ) - skipped by user
15:32:50.0857 0x21b8  ICCS ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:32:50.0858 0x21b8  HDAudDeck ( UnsignedFile.Multi.Generic ) - skipped by user
15:32:50.0858 0x21b8  HDAudDeck ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:32:50.0860 0x21b8  JMB36X IDE Setup ( UnsignedFile.Multi.Generic ) - skipped by user
15:32:50.0860 0x21b8  JMB36X IDE Setup ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:33:15.0886 0x0b98  ============================================================
15:33:15.0886 0x0b98  Scan started
15:33:15.0886 0x0b98  Mode: Manual; SigCheck; TDLFS;
15:33:15.0886 0x0b98  ============================================================
15:33:15.0886 0x0b98  KSN ping started
15:33:15.0982 0x0b98  KSN ping finished: true
15:33:16.0606 0x0b98  ================ Scan system memory ========================
15:33:16.0606 0x0b98  System memory - ok
15:33:16.0606 0x0b98  ================ Scan services =============================
15:33:16.0652 0x0b98  1394ohci - ok
15:33:16.0654 0x0b98  3ware - ok
15:33:16.0795 0x0b98  [ 78F0179B6C4C93119432C3A2C511EB44, 746A48F8D9C4004E7FB8BD72DA40DBBD207A882ED33B4A844F2F017521403D85 ] a2AntiMalware   C:\Program Files\Emsisoft Anti-Malware\a2service.exe
15:33:16.0939 0x0b98  a2AntiMalware - ok
15:33:16.0943 0x0b98  ACPI - ok
15:33:16.0945 0x0b98  AcpiDev - ok
15:33:16.0948 0x0b98  acpiex - ok
15:33:16.0950 0x0b98  acpipagr - ok
15:33:16.0953 0x0b98  AcpiPmi - ok
15:33:16.0958 0x0b98  acpitime - ok
15:33:16.0989 0x0b98  [ E6A1D864EC90F4397DF5AB2633B34DD4, 05F1B7291EBDD9CA1D74649C0DAFCBE5F2CF93E92C5CA16A8AC10B6DF83101A0 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:33:17.0000 0x0b98  AdobeFlashPlayerUpdateSvc - ok
15:33:17.0004 0x0b98  ADP80XX - ok
15:33:17.0007 0x0b98  AFD - ok
15:33:17.0011 0x0b98  ahcache - ok
15:33:17.0013 0x0b98  AJRouter - ok
15:33:17.0016 0x0b98  ALG - ok
15:33:17.0018 0x0b98  AmdK8 - ok
15:33:17.0021 0x0b98  AmdPPM - ok
15:33:17.0026 0x0b98  amdsata - ok
15:33:17.0028 0x0b98  amdsbs - ok
15:33:17.0030 0x0b98  amdxata - ok
15:33:17.0033 0x0b98  AppHostSvc - ok
15:33:17.0035 0x0b98  AppID - ok
15:33:17.0041 0x0b98  AppIDSvc - ok
15:33:17.0043 0x0b98  Appinfo - ok
15:33:17.0048 0x0b98  [ 7D811EA7A2AAA49B0446D42CBC1CD338, AFECE5E44E48F756C7EB81D95C9237552AF8A9C02CBE756E0F3D3C6524DE49AD ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:33:17.0055 0x0b98  Apple Mobile Device Service - ok
15:33:17.0058 0x0b98  applockerfltr - ok
15:33:17.0060 0x0b98  AppMgmt - ok
15:33:17.0063 0x0b98  AppReadiness - ok
15:33:17.0065 0x0b98  AppVClient - ok
15:33:17.0067 0x0b98  AppvStrm - ok
15:33:17.0070 0x0b98  AppvVemgr - ok
15:33:17.0075 0x0b98  AppvVfs - ok
15:33:17.0078 0x0b98  AppXSvc - ok
15:33:17.0080 0x0b98  arcsas - ok
15:33:17.0096 0x0b98  [ F7692E60147E56A1CEEE144974F41830, C6FFD77A5BCB1FDD4814FAC599ADDA91CA8C92AD26BDD21930B6BC20FB5F6DE4 ] asComSvc        C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe
15:33:17.0124 0x0b98  asComSvc - detected UnsignedFile.Multi.Generic ( 1 )
15:33:17.0124 0x0b98  asComSvc ( UnsignedFile.Multi.Generic ) - warning
15:33:17.0262 0x0b98  [ 0466B91EE5767A769E9F8EDB8EF94DDB, 04A529E57D6F617688B072B3BD281538B6B02BB985EE0AE2E355E685E52BE0C8 ] asHmComSvc      C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
15:33:17.0280 0x0b98  asHmComSvc - ok
15:33:17.0283 0x0b98  [ FEF9DD9EA587F8886ADE43C1BEFBDAFE, DDE6F28B3F7F2ABBEE59D4864435108791631E9CB4CDFB1F178E5AA9859956D8 ] AsIO            C:\WINDOWS\syswow64\drivers\AsIO.sys
15:33:17.0288 0x0b98  AsIO - ok
15:33:17.0301 0x0b98  aspnet_state - ok
15:33:17.0305 0x0b98  [ AD8947D621FDCA48F1F39F4624B60AA1, D685CD1A378FA411EA11C18615A1EC5D66CEC2F990DB0D4181EE3140B9DF3E8B ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
15:33:17.0311 0x0b98  AsSysCtrlService - ok
15:33:17.0314 0x0b98  [ 1392B92179B07B672720763D9B1028A5, B4D47EA790920A4531E3DF5A4B4B0721B7FEA6B49A35679F0652F1E590422602 ] AsUpIO          C:\WINDOWS\syswow64\drivers\AsUpIO.sys
15:33:17.0318 0x0b98  AsUpIO - ok
15:33:17.0342 0x0b98  [ B4F550250E33C02E6E71955621F7A0A6, FFBBE5BF9D363EAA9E9559D22AE0F1BCF42CE201F7DE362DCF260C2EA38AC648 ] AsusFanControlService C:\Program Files (x86)\ASUS\AsusFanControlService\1.00.21\AsusFanControlService.exe
15:33:17.0366 0x0b98  AsusFanControlService - ok
15:33:17.0370 0x0b98  [ A5E4CDB420540095D1293C874B5F89AA, EBC082FF94872537649F00D91AF22E0AFB4D538ACDB4731C9A95D209C7B144FD ] ASUSFILTER      C:\WINDOWS\syswow64\drivers\ASUSFILTER.sys
15:33:17.0375 0x0b98  ASUSFILTER - ok
15:33:17.0377 0x0b98  AsyncMac - ok
15:33:17.0380 0x0b98  atapi - ok
15:33:17.0383 0x0b98  AudioEndpointBuilder - ok
15:33:17.0385 0x0b98  Audiosrv - ok
15:33:17.0397 0x0b98  [ 8183B715BD56561C27BEBB68B1192B7A, 19C65D0684D24956CDB3A3369AFFF4ECAC3FB7D2AA38ED41AD75AF3DDDFE882B ] avckf           C:\WINDOWS\system32\DRIVERS\avckf.sys
15:33:17.0411 0x0b98  avckf - ok
15:33:17.0413 0x0b98  AxInstSV - ok
15:33:17.0416 0x0b98  b06bdrv - ok
15:33:17.0419 0x0b98  BasicDisplay - ok
15:33:17.0421 0x0b98  BasicRender - ok
15:33:17.0428 0x0b98  bcmfn - ok
15:33:17.0430 0x0b98  bcmfn2 - ok
15:33:17.0432 0x0b98  BDESVC - ok
15:33:17.0440 0x0b98  [ C0247341C1BCD7FF2742821D0AD7AFBC, EC2B246F3233302DB540394AC0F11F294CA16FB9E44110126CC9807BAC20EA35 ] bdfwfpf         C:\Program Files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys
15:33:17.0447 0x0b98  bdfwfpf - ok
15:33:17.0449 0x0b98  Beep - ok
15:33:17.0452 0x0b98  BFE - ok
15:33:17.0455 0x0b98  BITS - ok
15:33:17.0467 0x0b98  [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:33:17.0478 0x0b98  Bonjour Service - ok
15:33:17.0481 0x0b98  bowser - ok
15:33:17.0484 0x0b98  BrokerInfrastructure - ok
15:33:17.0486 0x0b98  Browser - ok
15:33:17.0489 0x0b98  BthAvrcpTg - ok
15:33:17.0494 0x0b98  BthHFEnum - ok
15:33:17.0496 0x0b98  bthhfhid - ok
15:33:17.0499 0x0b98  BthHFSrv - ok
15:33:17.0501 0x0b98  BTHMODEM - ok
15:33:17.0505 0x0b98  bthserv - ok
15:33:17.0510 0x0b98  buttonconverter - ok
15:33:17.0512 0x0b98  CapImg - ok
15:33:17.0515 0x0b98  cdfs - ok
15:33:17.0517 0x0b98  CDPSvc - ok
15:33:17.0520 0x0b98  CDPUserSvc - ok
15:33:17.0526 0x0b98  cdrom - ok
15:33:17.0529 0x0b98  CertPropSvc - ok
15:33:17.0531 0x0b98  cht4iscsi - ok
15:33:17.0534 0x0b98  cht4vbd - ok
15:33:17.0536 0x0b98  circlass - ok
15:33:17.0538 0x0b98  CLFS - ok
15:33:17.0544 0x0b98  ClipSVC - ok
15:33:17.0546 0x0b98  clreg - ok
15:33:17.0553 0x0b98  CmBatt - ok
15:33:17.0555 0x0b98  CNG - ok
15:33:17.0560 0x0b98  cnghwassist - ok
15:33:17.0582 0x0b98  CompositeBus - ok
15:33:17.0584 0x0b98  COMSysApp - ok
15:33:17.0587 0x0b98  condrv - ok
15:33:17.0593 0x0b98  CoreMessagingRegistrar - ok
15:33:17.0597 0x0b98  [ 262969A3FAB32B9E17E63E2D17A57744, 1EE59EB28688E73D10838C66E0D8E011C8DF45B6B43A4AC5D0B75795CA3EB512 ] cpuz135         C:\Windows\system32\drivers\cpuz135_x64.sys
15:33:17.0602 0x0b98  cpuz135 - ok
15:33:17.0605 0x0b98  CryptSvc - ok
15:33:17.0607 0x0b98  CSC - ok
15:33:17.0609 0x0b98  CscService - ok
15:33:17.0611 0x0b98  dam - ok
15:33:17.0614 0x0b98  DcomLaunch - ok
15:33:17.0616 0x0b98  DcpSvc - ok
15:33:17.0618 0x0b98  defragsvc - ok
15:33:17.0621 0x0b98  DeviceAssociationService - ok
15:33:17.0623 0x0b98  DeviceInstall - ok
15:33:17.0626 0x0b98  DevQueryBroker - ok
15:33:17.0628 0x0b98  Dfsc - ok
15:33:17.0630 0x0b98  Dhcp - ok
15:33:17.0633 0x0b98  diagnosticshub.standardcollector.service - ok
15:33:17.0635 0x0b98  DiagTrack - ok
15:33:17.0638 0x0b98  disk - ok
15:33:17.0640 0x0b98  DmEnrollmentSvc - ok
15:33:17.0642 0x0b98  dmvsc - ok
15:33:17.0645 0x0b98  dmwappushservice - ok
15:33:17.0647 0x0b98  Dnscache - ok
15:33:17.0650 0x0b98  dot3svc - ok
15:33:17.0653 0x0b98  DPS - ok
15:33:17.0655 0x0b98  drmkaud - ok
15:33:17.0658 0x0b98  DsmSvc - ok
15:33:17.0660 0x0b98  DsSvc - ok
15:33:17.0662 0x0b98  DXGKrnl - ok
15:33:17.0664 0x0b98  EapHost - ok
15:33:17.0666 0x0b98  ebdrv - ok
15:33:17.0668 0x0b98  EFS - ok
15:33:17.0670 0x0b98  EhStorClass - ok
15:33:17.0673 0x0b98  EhStorTcgDrv - ok
15:33:17.0675 0x0b98  embeddedmode - ok
15:33:17.0682 0x0b98  [ 9ED8ED9D96F8A34E0BB5ABBFEEA9C6F4, AF186EAD2CFD4050E13945E90C8ED162143F57358034C5A7E30AF1E894DDB1C1 ] Emby            C:\Users\Cath\AppData\Roaming\Emby-Server\system\MediaBrowser.ServerApplication.exe
15:33:17.0690 0x0b98  Emby - ok
15:33:17.0693 0x0b98  EntAppSvc - ok
15:33:17.0698 0x0b98  [ 0E840AA66CAB02CBA9730C772BBE305B, 8862583E653D13D1D10A1A4A33704E4F70576E80370943AAFD1EAED6657A0104 ] epp             C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\epp.sys
15:33:17.0706 0x0b98  epp - ok
15:33:17.0709 0x0b98  ErrDev - ok
15:33:17.0713 0x0b98  EventSystem - ok
15:33:17.0715 0x0b98  exfat - ok
15:33:17.0717 0x0b98  fastfat - ok
15:33:17.0719 0x0b98  Fax - ok
15:33:17.0721 0x0b98  fdc - ok
15:33:17.0724 0x0b98  fdPHost - ok
15:33:17.0726 0x0b98  FDResPub - ok
15:33:17.0728 0x0b98  fhsvc - ok
15:33:17.0730 0x0b98  FileCrypt - ok
15:33:17.0732 0x0b98  FileInfo - ok
15:33:17.0735 0x0b98  Filetrace - ok
15:33:17.0737 0x0b98  flpydisk - ok
15:33:17.0739 0x0b98  FltMgr - ok
15:33:17.0742 0x0b98  FontCache - ok
15:33:17.0745 0x0b98  FontCache3.0.0.0 - ok
15:33:17.0747 0x0b98  FrameServer - ok
15:33:17.0749 0x0b98  FsDepends - ok
15:33:17.0751 0x0b98  Fs_Rec - ok
15:33:17.0753 0x0b98  fvevol - ok
15:33:17.0756 0x0b98  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
15:33:17.0761 0x0b98  GEARAspiWDM - ok
15:33:17.0764 0x0b98  gencounter - ok
15:33:17.0766 0x0b98  genericusbfn - ok
15:33:17.0768 0x0b98  GPIOClx0101 - ok
15:33:17.0772 0x0b98  gpsvc - ok
15:33:17.0774 0x0b98  GpuEnergyDrv - ok
15:33:17.0780 0x0b98  [ 0545A3EB959CFA4790D267BFB8C1ACA4, 69061E33ACB7587D773D05000390F9101F71DFD6EED7973B551594EAF3F04193 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:33:17.0788 0x0b98  gupdate - ok
15:33:17.0791 0x0b98  [ 0545A3EB959CFA4790D267BFB8C1ACA4, 69061E33ACB7587D773D05000390F9101F71DFD6EED7973B551594EAF3F04193 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:33:17.0798 0x0b98  gupdatem - ok
15:33:17.0803 0x0b98  [ 408B664926675C270D911160F1631D6B, 6BF7E613B708E2E81916DE6C83256F969797B9D039C16A20003541D698055BC7 ] gzflt           C:\WINDOWS\system32\DRIVERS\gzflt.sys
15:33:17.0811 0x0b98  gzflt - ok
15:33:17.0817 0x0b98  [ 995688E8FE683E2DA66D7C83A67C1E5C, D463365F4FA505019621FB45BB01C52FE27B1C80F8D51CBCAFC3D22EC4DDE565 ] gzserv          C:\Program Files\Bitdefender\Antivirus Free Edition\gzserv.exe
15:33:17.0824 0x0b98  gzserv - ok
15:33:17.0826 0x0b98  HDAudBus - ok
15:33:17.0829 0x0b98  HidBatt - ok
15:33:17.0831 0x0b98  HidBth - ok
15:33:17.0833 0x0b98  hidi2c - ok
15:33:17.0835 0x0b98  hidinterrupt - ok
15:33:17.0838 0x0b98  HidIr - ok
15:33:17.0840 0x0b98  hidserv - ok
15:33:17.0843 0x0b98  HidUsb - ok
15:33:17.0845 0x0b98  HomeGroupListener - ok
15:33:17.0847 0x0b98  HomeGroupProvider - ok
15:33:17.0850 0x0b98  HpSAMD - ok
15:33:17.0852 0x0b98  HTTP - ok
15:33:17.0854 0x0b98  HvHost - ok
15:33:17.0857 0x0b98  hvservice - ok
15:33:17.0859 0x0b98  hwpolicy - ok
15:33:17.0861 0x0b98  hyperkbd - ok
15:33:17.0864 0x0b98  i8042prt - ok
15:33:17.0866 0x0b98  iagpio - ok
15:33:17.0868 0x0b98  iai2c - ok
15:33:17.0870 0x0b98  iaLPSS2i_GPIO2 - ok
15:33:17.0873 0x0b98  iaLPSS2i_I2C - ok
15:33:17.0875 0x0b98  iaLPSSi_GPIO - ok
15:33:17.0877 0x0b98  iaLPSSi_I2C - ok
15:33:17.0879 0x0b98  iaStorAV - ok
15:33:17.0881 0x0b98  iaStorV - ok
15:33:17.0884 0x0b98  ibbus - ok
15:33:17.0888 0x0b98  [ 90D95B25F8413F937A2E155F196D892C, 5D08EE7BFEB000F2A06FA2F37729C29C2A71760A4BD6241330E6FF257CB8D8EE ] ICCS            C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe
15:33:17.0896 0x0b98  ICCS - detected UnsignedFile.Multi.Generic ( 1 )
15:33:17.0896 0x0b98  ICCS ( UnsignedFile.Multi.Generic ) - warning
15:33:18.0030 0x0b98  [ C1010ADD3DDAE1196ED21057AF7B2AAE, 68196851855AD395008D7F29FCEB28BA4BEB1F062B1844A60813E7DD102ACB1C ] ICCWDT          C:\WINDOWS\System32\drivers\ICCWDT.sys
15:33:18.0035 0x0b98  ICCWDT - ok
15:33:18.0038 0x0b98  icssvc - ok
15:33:18.0041 0x0b98  IKEEXT - ok
15:33:18.0043 0x0b98  IndirectKmd - ok
15:33:18.0121 0x0b98  [ 622868E4BAE8FBCD22CB1A5901A2C824, C1A2264C0984DD16C83B663C9CE43E049E1356E32C5771C3ACE225F285699138 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
15:33:18.0190 0x0b98  IntcAzAudAddService - ok
15:33:18.0193 0x0b98  intelide - ok
15:33:18.0196 0x0b98  intelpep - ok
15:33:18.0198 0x0b98  intelppm - ok
15:33:18.0200 0x0b98  iorate - ok
15:33:18.0202 0x0b98  IpFilterDriver - ok
15:33:18.0204 0x0b98  iphlpsvc - ok
15:33:18.0207 0x0b98  IPMIDRV - ok
15:33:18.0209 0x0b98  IPNAT - ok
15:33:18.0220 0x0b98  [ C37FAF1F0CE458D124A326FC8A7FF08D, 0147897CDF6DC2AB7113672D2B62CB258303FB0482B084C23C2E7EFCDE0065B4 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
15:33:18.0235 0x0b98  iPod Service - ok
15:33:18.0237 0x0b98  irda - ok
15:33:18.0239 0x0b98  IRENUM - ok
15:33:18.0241 0x0b98  irmon - ok
15:33:18.0244 0x0b98  isapnp - ok
15:33:18.0246 0x0b98  iScsiPrt - ok
15:33:18.0248 0x0b98  [ 6BCEF45131C8B8E1C558BE540B190B3C, DFFED7FD9DCC15808184E65065DE6138FE010AC01217E5016B2D20A5B89AC570 ] iusb3hcs        C:\WINDOWS\system32\drivers\iusb3hcs.sys
15:33:18.0254 0x0b98  iusb3hcs - ok
15:33:18.0257 0x0b98  kbdclass - ok
15:33:18.0259 0x0b98  kbdhid - ok
15:33:18.0262 0x0b98  kdnic - ok
15:33:18.0264 0x0b98  KeyIso - ok
15:33:18.0266 0x0b98  KSecDD - ok
15:33:18.0268 0x0b98  KSecPkg - ok
15:33:18.0270 0x0b98  ksthunk - ok
15:33:18.0272 0x0b98  KtmRm - ok
15:33:18.0274 0x0b98  LanmanServer - ok
15:33:18.0276 0x0b98  LanmanWorkstation - ok
15:33:18.0279 0x0b98  lfsvc - ok
15:33:18.0282 0x0b98  LicenseManager - ok
15:33:18.0284 0x0b98  lltdio - ok
15:33:18.0286 0x0b98  lltdsvc - ok
15:33:18.0288 0x0b98  lmhosts - ok
15:33:18.0294 0x0b98  [ 75F29D77B0540FCF47EE3BE000BBABDA, 3FFDDC42D51FABAA7F3BFD088F008DE39F3479B25214260D98336F00B6336BFA ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
15:33:18.0303 0x0b98  LMS - ok
15:33:18.0306 0x0b98  LSI_SAS - ok
15:33:18.0309 0x0b98  LSI_SAS2i - ok
15:33:18.0311 0x0b98  LSI_SAS3i - ok
15:33:18.0313 0x0b98  LSI_SSS - ok
15:33:18.0315 0x0b98  LSM - ok
15:33:18.0317 0x0b98  luafv - ok
15:33:18.0320 0x0b98  MapsBroker - ok
15:33:18.0328 0x0b98  [ 0353B02AAB907E82042C6EA3BDE19471, 0377CABDCFDED30D8431D9A606043213BCBDF22FAB75610A9F70F67FE9436713 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.11.569\McCHSvc.exe
15:33:18.0340 0x0b98  McComponentHostService - ok
15:33:18.0343 0x0b98  megasas - ok
15:33:18.0345 0x0b98  megasas2i - ok
15:33:18.0347 0x0b98  megasr - ok
15:33:18.0350 0x0b98  [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
15:33:18.0356 0x0b98  MEIx64 - ok
15:33:18.0358 0x0b98  MessagingService - ok
15:33:18.0363 0x0b98  mlx4_bus - ok
15:33:18.0365 0x0b98  MMCSS - ok
15:33:18.0367 0x0b98  Modem - ok
15:33:18.0369 0x0b98  monitor - ok
15:33:18.0371 0x0b98  mouclass - ok
15:33:18.0374 0x0b98  mouhid - ok
15:33:18.0376 0x0b98  mountmgr - ok
15:33:18.0380 0x0b98  [ 1EB0251DD31BC9C594D2D87EDE8F8EF4, C9B03461F894A681545994AF9C0555ED92D32617EED344360C1784EE6E2AAC9D ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:33:18.0388 0x0b98  MozillaMaintenance - ok
15:33:18.0391 0x0b98  mpsdrv - ok
15:33:18.0393 0x0b98  MpsSvc - ok
15:33:18.0396 0x0b98  MQAC - ok
15:33:18.0398 0x0b98  MRxDAV - ok
15:33:18.0400 0x0b98  mrxsmb - ok
15:33:18.0403 0x0b98  mrxsmb10 - ok
15:33:18.0405 0x0b98  mrxsmb20 - ok
15:33:18.0408 0x0b98  MsBridge - ok
15:33:18.0410 0x0b98  MSDTC - ok
15:33:18.0414 0x0b98  Msfs - ok
15:33:18.0417 0x0b98  msgpiowin32 - ok
15:33:18.0420 0x0b98  mshidkmdf - ok
15:33:18.0422 0x0b98  mshidumdf - ok
15:33:18.0424 0x0b98  msisadrv - ok
15:33:18.0428 0x0b98  MSiSCSI - ok
15:33:18.0430 0x0b98  msiserver - ok
15:33:18.0432 0x0b98  MSKSSRV - ok
15:33:18.0435 0x0b98  MsLldp - ok
15:33:18.0437 0x0b98  MSMQ - ok
15:33:18.0439 0x0b98  MSPCLOCK - ok
15:33:18.0442 0x0b98  MSPQM - ok
15:33:18.0444 0x0b98  MsRPC - ok
15:33:18.0447 0x0b98  MsSecFlt - ok
15:33:18.0450 0x0b98  mssmbios - ok
15:33:18.0453 0x0b98  MSTEE - ok
15:33:18.0455 0x0b98  MTConfig - ok
15:33:18.0457 0x0b98  Mup - ok
15:33:18.0459 0x0b98  mvumis - ok
15:33:18.0462 0x0b98  NativeWifiP - ok
15:33:18.0464 0x0b98  NcaSvc - ok
15:33:18.0466 0x0b98  NcbService - ok
15:33:18.0468 0x0b98  NcdAutoSetup - ok
15:33:18.0470 0x0b98  ndfltr - ok
15:33:18.0473 0x0b98  NDIS - ok
15:33:18.0475 0x0b98  NdisCap - ok
15:33:18.0477 0x0b98  NdisImPlatform - ok
15:33:18.0480 0x0b98  [ DE4CEF317628F50B576673964A8C712B, A3A36EC755A63255E6505F22BBEA4C5AB6C76190D4F60645CF5FA26742FD6D5B ] ndisrd          C:\WINDOWS\system32\DRIVERS\ndisrd.sys
15:33:18.0485 0x0b98  ndisrd - ok
15:33:18.0487 0x0b98  NdisTapi - ok
15:33:18.0489 0x0b98  Ndisuio - ok
15:33:18.0491 0x0b98  NdisVirtualBus - ok
15:33:18.0493 0x0b98  NdisWan - ok
15:33:18.0495 0x0b98  ndiswanlegacy - ok
15:33:18.0497 0x0b98  ndproxy - ok
15:33:18.0500 0x0b98  Ndu - ok
15:33:18.0502 0x0b98  NetAdapterCx - ok
15:33:18.0504 0x0b98  NetBIOS - ok
15:33:18.0507 0x0b98  NetBT - ok
15:33:18.0509 0x0b98  Netlogon - ok
15:33:18.0511 0x0b98  Netman - ok
15:33:18.0517 0x0b98  NetMsmqActivator - ok
15:33:18.0518 0x0b98  NetPipeActivator - ok
15:33:18.0521 0x0b98  netprofm - ok
15:33:18.0523 0x0b98  NetSetupSvc - ok
15:33:18.0525 0x0b98  NetTcpActivator - ok
15:33:18.0527 0x0b98  NetTcpPortSharing - ok
15:33:18.0531 0x0b98  NgcCtnrSvc - ok
15:33:18.0533 0x0b98  NgcSvc - ok
15:33:18.0535 0x0b98  NlaSvc - ok
15:33:18.0538 0x0b98  Npfs - ok
15:33:18.0540 0x0b98  npsvctrig - ok
15:33:18.0542 0x0b98  nsi - ok
15:33:18.0544 0x0b98  nsiproxy - ok
15:33:18.0547 0x0b98  NTFS - ok
15:33:18.0550 0x0b98  Null - ok
15:33:18.0555 0x0b98  [ 9FA7207F728651F98A6B3C6D3AA79AD2, 040E3E30B6CA1C7FCEAB3760DE2332EF0F73086B832F970B58BE5FFC4238C497 ] NVHDA           C:\WINDOWS\system32\drivers\nvhda64v.sys
15:33:18.0564 0x0b98  NVHDA - ok
15:33:18.0741 0x0b98  [ 6764192883EA0CD324CC4305046D3B6B, 00DEB8AB69E9679EE60A628AD228C092AB1ED45D57A40A9301C2007B0A07D893 ] nvlddmkm        C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
15:33:18.0924 0x0b98  nvlddmkm - ok
15:33:18.0929 0x0b98  nvraid - ok
15:33:18.0934 0x0b98  [ 5266D03C0628FAE9C35F40EEC078FC88, 9B179825F526B0C8E8F6AC62D6FAFEA6DCCE26A80980197A4881E82250EB6BCA ] nvrd64          C:\WINDOWS\system32\DRIVERS\nvrd64.sys
15:33:18.0941 0x0b98  nvrd64 - ok
15:33:18.0944 0x0b98  [ E58D81FB8616D0CB55C1E36AA0B213C9, D83F78615889A466ADE2BFEF7AB357C0D31B7FA9A1A52668DED32A51FEFA87B5 ] nvsmu           C:\WINDOWS\system32\DRIVERS\nvsmu.sys
15:33:18.0949 0x0b98  nvsmu - ok
15:33:18.0952 0x0b98  nvstor - ok
15:33:18.0959 0x0b98  [ 2A718473EDE7032A508A8F44C633657F, DEDE4721A77917A9B51B0E13E359575F0A2A976F90B88A5BBDD06A7882E03F50 ] nvstor64        C:\WINDOWS\system32\DRIVERS\nvstor64.sys
15:33:18.0968 0x0b98  nvstor64 - ok
15:33:18.0984 0x0b98  [ FFADB2E34CE378F059F57161AD555DBF, 442C79D96012ABD76CB8A4FE1490AEB7D8CC9068170AB85DB7F8115FA807ADB0 ] nvsvc           C:\WINDOWS\system32\nvvsvc.exe
15:33:19.0008 0x0b98  nvsvc - ok
15:33:19.0019 0x0b98  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
15:33:19.0030 0x0b98  odserv - ok
15:33:19.0033 0x0b98  OneSyncSvc - ok
15:33:19.0070 0x0b98  [ 49A344136F729659C075D67ADFB88FBA, 5EF65E7FAC02FE5C3039C510634F257A02D77A449A8A4B749666712F90E59A8B ] OS Selector     C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
15:33:19.0103 0x0b98  OS Selector - ok
15:33:19.0108 0x0b98  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:33:19.0115 0x0b98  ose - ok
15:33:19.0118 0x0b98  p2pimsvc - ok
15:33:19.0120 0x0b98  p2psvc - ok
15:33:19.0123 0x0b98  Parport - ok
15:33:19.0125 0x0b98  partmgr - ok
15:33:19.0128 0x0b98  PcaSvc - ok
15:33:19.0130 0x0b98  pci - ok
15:33:19.0132 0x0b98  pciide - ok
15:33:19.0135 0x0b98  pcmcia - ok
15:33:19.0137 0x0b98  pcw - ok
15:33:19.0139 0x0b98  pdc - ok
15:33:19.0142 0x0b98  PEAUTH - ok
15:33:19.0144 0x0b98  PeerDistSvc - ok
15:33:19.0146 0x0b98  percsas2i - ok
15:33:19.0148 0x0b98  percsas3i - ok
15:33:19.0176 0x0b98  PerfHost - ok
15:33:19.0181 0x0b98  PhoneSvc - ok
15:33:19.0184 0x0b98  PimIndexMaintenanceSvc - ok
15:33:19.0187 0x0b98  pla - ok
15:33:19.0189 0x0b98  PlugPlay - ok
15:33:19.0192 0x0b98  PNRPAutoReg - ok
15:33:19.0194 0x0b98  PNRPsvc - ok
15:33:19.0196 0x0b98  PolicyAgent - ok
15:33:19.0199 0x0b98  Power - ok
15:33:19.0201 0x0b98  PptpMiniport - ok
15:33:19.0258 0x0b98  [ 30AA256A85C1A7B17A590B1C5244D28E, 2C1FB30DEF53C37CA0D0CA54B65CB8572C53DDFB430DE57F964253F1082ACEA0 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
15:33:19.0339 0x0b98  PrintNotify - ok
15:33:19.0342 0x0b98  Processor - ok
15:33:19.0345 0x0b98  ProfSvc - ok
15:33:19.0347 0x0b98  Psched - ok
15:33:19.0349 0x0b98  QWAVE - ok
15:33:19.0351 0x0b98  QWAVEdrv - ok
15:33:19.0353 0x0b98  RasAcd - ok
15:33:19.0356 0x0b98  RasAgileVpn - ok
15:33:19.0358 0x0b98  RasAuto - ok
15:33:19.0361 0x0b98  Rasl2tp - ok
15:33:19.0363 0x0b98  RasMan - ok
15:33:19.0366 0x0b98  RasPppoe - ok
15:33:19.0368 0x0b98  RasSstp - ok
15:33:19.0370 0x0b98  rdbss - ok
15:33:19.0373 0x0b98  rdpbus - ok
15:33:19.0375 0x0b98  RDPDR - ok
15:33:19.0380 0x0b98  RdpVideoMiniport - ok
15:33:19.0383 0x0b98  rdyboost - ok
15:33:19.0443 0x0b98  [ F1D9E7B84A123F8861F63A2AE1E9F144, 7A56188DE148525B23617F8DA4AD49A88FA1BFC48641ED5065896C4408DA44ED ] ReflectService.exe C:\Program Files\Macrium\Reflect\ReflectService.exe
15:33:19.0495 0x0b98  ReflectService.exe - ok
15:33:19.0498 0x0b98  ReFSv1 - ok
15:33:19.0502 0x0b98  RemoteAccess - ok
15:33:19.0505 0x0b98  RemoteRegistry - ok
15:33:19.0507 0x0b98  RetailDemo - ok
15:33:19.0510 0x0b98  RmSvc - ok
15:33:19.0512 0x0b98  RpcEptMapper - ok
15:33:19.0514 0x0b98  RpcLocator - ok
15:33:19.0517 0x0b98  RpcSs - ok
15:33:19.0519 0x0b98  rspndr - ok
15:33:19.0522 0x0b98  rt640x64 - ok
15:33:19.0524 0x0b98  s3cap - ok
15:33:19.0527 0x0b98  SamSs - ok
15:33:19.0529 0x0b98  sbp2port - ok
15:33:19.0532 0x0b98  SCardSvr - ok
15:33:19.0534 0x0b98  ScDeviceEnum - ok
15:33:19.0537 0x0b98  scfilter - ok
15:33:19.0539 0x0b98  Schedule - ok
15:33:19.0541 0x0b98  scmbus - ok
15:33:19.0544 0x0b98  scmdisk0101 - ok
15:33:19.0546 0x0b98  SCPolicySvc - ok
15:33:19.0549 0x0b98  sdbus - ok
15:33:19.0551 0x0b98  SDRSVC - ok
15:33:19.0554 0x0b98  sdstor - ok
15:33:19.0556 0x0b98  seclogon - ok
15:33:19.0558 0x0b98  SENS - ok
15:33:19.0561 0x0b98  Sense - ok
15:33:19.0564 0x0b98  SensorDataService - ok
15:33:19.0566 0x0b98  SensorService - ok
15:33:19.0569 0x0b98  SensrSvc - ok
15:33:19.0571 0x0b98  SerCx - ok
15:33:19.0573 0x0b98  SerCx2 - ok
15:33:19.0576 0x0b98  Serenum - ok
15:33:19.0578 0x0b98  Serial - ok
15:33:19.0580 0x0b98  sermouse - ok
15:33:19.0589 0x0b98  [ B9D750EEB8A571C5E1D9E4E41DED72D8, 6200CE0679CE577044404C4595607913C6A2A8950E8B25A85CA8728CA51E6764 ] SESMPWD         C:\Program Files\EPSON_P2\Status Monitor\SEPWDN.EXE
15:33:19.0596 0x0b98  SESMPWD - ok
15:33:19.0604 0x0b98  [ 090FDDBEB3908EAA7AEE72FC05550F62, EFD038659DCF623317656D3E3C1F4A8F164FD92B024431FC83441CE745EF9D9C ] SESMSDB         C:\Program Files\EPSON_P2\Status Monitor\SESDBN.EXE
15:33:19.0614 0x0b98  SESMSDB - ok
15:33:19.0616 0x0b98  SessionEnv - ok
15:33:19.0621 0x0b98  sfloppy - ok
15:33:19.0623 0x0b98  SharedAccess - ok
15:33:19.0626 0x0b98  ShellHWDetection - ok
15:33:19.0628 0x0b98  shpamsvc - ok
15:33:19.0631 0x0b98  SiSRaid2 - ok
15:33:19.0633 0x0b98  SiSRaid4 - ok
15:33:19.0636 0x0b98  smphost - ok
15:33:19.0638 0x0b98  SmsRouter - ok
15:33:19.0646 0x0b98  [ B2AA7562BA5858633FCDCD246E8D6730, 761A581358048B47EBAE15433B2A70E9B35D37831E8513FD22E12DD2D96D639F ] snapman         C:\WINDOWS\system32\DRIVERS\snapman.sys
15:33:19.0655 0x0b98  snapman - ok
15:33:19.0658 0x0b98  SNMPTRAP - ok
15:33:19.0661 0x0b98  spaceport - ok
15:33:19.0663 0x0b98  SpbCx - ok
15:33:19.0666 0x0b98  Spooler - ok
15:33:19.0668 0x0b98  sppsvc - ok
15:33:19.0671 0x0b98  srv - ok
15:33:19.0673 0x0b98  srv2 - ok
15:33:19.0675 0x0b98  srvnet - ok
15:33:19.0678 0x0b98  SSDPSRV - ok
15:33:19.0680 0x0b98  SstpSvc - ok
15:33:19.0683 0x0b98  StateRepository - ok
15:33:19.0692 0x0b98  [ 843F16D234D03756B9EB6054B5C62FAA, 529E1F8C6EB4AA881C9FDE9DA6CAFA34F5770E87059E867B8F88B40FE879743D ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
15:33:19.0703 0x0b98  Stereo Service - ok
15:33:19.0706 0x0b98  stexstor - ok
15:33:19.0709 0x0b98  stisvc - ok
15:33:19.0711 0x0b98  storahci - ok
15:33:19.0714 0x0b98  storflt - ok
15:33:19.0716 0x0b98  stornvme - ok
15:33:19.0718 0x0b98  storqosflt - ok
15:33:19.0721 0x0b98  StorSvc - ok
15:33:19.0723 0x0b98  storufs - ok
15:33:19.0726 0x0b98  storvsc - ok
15:33:19.0729 0x0b98  svsvc - ok
15:33:19.0731 0x0b98  swenum - ok
15:33:19.0733 0x0b98  swprv - ok
15:33:19.0736 0x0b98  Synth3dVsc - ok
15:33:19.0738 0x0b98  SysMain - ok
15:33:19.0741 0x0b98  SystemEventsBroker - ok
15:33:19.0744 0x0b98  TabletInputService - ok
15:33:19.0747 0x0b98  [ F309ED839E7F8FB1A86A91D92A7142E2, D78EB4969B549A78DCC45D31233C34F7DFD06363CD429E8EFD1E963010113472 ] tap0901         C:\WINDOWS\System32\drivers\tap0901.sys
15:33:19.0754 0x0b98  tap0901 - ok
15:33:19.0756 0x0b98  TapiSrv - ok
15:33:19.0759 0x0b98  Tcpip - ok
15:33:19.0761 0x0b98  Tcpip6 - ok
15:33:19.0765 0x0b98  tcpipreg - ok
15:33:19.0768 0x0b98  tdx - ok
15:33:19.0771 0x0b98  terminpt - ok
15:33:19.0773 0x0b98  TermService - ok
15:33:19.0776 0x0b98  Themes - ok
15:33:19.0779 0x0b98  TieringEngineService - ok
15:33:19.0781 0x0b98  tiledatamodelsvc - ok
15:33:19.0784 0x0b98  TimeBrokerSvc - ok
15:33:19.0786 0x0b98  TPM - ok
15:33:19.0789 0x0b98  TrkWks - ok
15:33:19.0797 0x0b98  [ 132C0E39AF0312E6B9611E2E1B344D41, 8B26EB55C5E0721498FF28A2865697FF761D237626A920608B5A80360BBD1285 ] trufos          C:\WINDOWS\system32\DRIVERS\trufos.sys
15:33:19.0808 0x0b98  trufos - ok
15:33:19.0810 0x0b98  TrustedInstaller - ok
15:33:19.0814 0x0b98  tsusbflt - ok
15:33:19.0816 0x0b98  TsUsbGD - ok
15:33:19.0819 0x0b98  tsusbhub - ok
15:33:19.0821 0x0b98  tunnel - ok
15:33:19.0824 0x0b98  tzautoupdate - ok
15:33:19.0827 0x0b98  UASPStor - ok
15:33:19.0829 0x0b98  UcmCx0101 - ok
15:33:19.0831 0x0b98  UcmTcpciCx0101 - ok
15:33:19.0834 0x0b98  UcmUcsi - ok
15:33:19.0837 0x0b98  Ucx01000 - ok
15:33:19.0839 0x0b98  UdeCx - ok
15:33:19.0841 0x0b98  udfs - ok
15:33:19.0844 0x0b98  UEFI - ok
15:33:19.0846 0x0b98  UevAgentDriver - ok
15:33:19.0849 0x0b98  UevAgentService - ok
15:33:19.0851 0x0b98  Ufx01000 - ok
15:33:19.0854 0x0b98  UfxChipidea - ok
15:33:19.0856 0x0b98  ufxsynopsys - ok
15:33:19.0861 0x0b98  UI0Detect - ok
15:33:19.0863 0x0b98  umbus - ok
15:33:19.0866 0x0b98  UmPass - ok
15:33:19.0868 0x0b98  UmRdpService - ok
15:33:19.0871 0x0b98  UnistoreSvc - ok
15:33:19.0875 0x0b98  upnphost - ok
15:33:19.0877 0x0b98  UrsChipidea - ok
15:33:19.0880 0x0b98  UrsCx01000 - ok
15:33:19.0882 0x0b98  UrsSynopsys - ok
15:33:19.0885 0x0b98  usbccgp - ok
15:33:19.0888 0x0b98  usbcir - ok
15:33:19.0890 0x0b98  usbehci - ok
15:33:19.0893 0x0b98  usbhub - ok
15:33:19.0895 0x0b98  USBHUB3 - ok
15:33:19.0898 0x0b98  usbohci - ok
15:33:19.0900 0x0b98  usbprint - ok
15:33:19.0903 0x0b98  usbser - ok
15:33:19.0905 0x0b98  USBSTOR - ok
15:33:19.0907 0x0b98  usbuhci - ok
15:33:19.0910 0x0b98  USBXHCI - ok
15:33:19.0913 0x0b98  UserDataSvc - ok
15:33:19.0917 0x0b98  UserManager - ok
15:33:19.0919 0x0b98  UsoSvc - ok
15:33:19.0921 0x0b98  VaultSvc - ok
15:33:19.0924 0x0b98  vdrvroot - ok
15:33:19.0926 0x0b98  vds - ok
15:33:19.0929 0x0b98  VerifierExt - ok
15:33:19.0931 0x0b98  vhdmp - ok
15:33:19.0934 0x0b98  vhf - ok
15:33:19.0936 0x0b98  vmbus - ok
15:33:19.0939 0x0b98  VMBusHID - ok
15:33:19.0942 0x0b98  vmgid - ok
15:33:19.0944 0x0b98  vmicguestinterface - ok
15:33:19.0946 0x0b98  vmicheartbeat - ok
15:33:19.0949 0x0b98  vmickvpexchange - ok
15:33:19.0952 0x0b98  vmicrdv - ok
15:33:19.0954 0x0b98  vmicshutdown - ok
15:33:19.0956 0x0b98  vmictimesync - ok
15:33:19.0959 0x0b98  vmicvmsession - ok
15:33:19.0961 0x0b98  vmicvss - ok
15:33:19.0964 0x0b98  volmgr - ok
15:33:19.0966 0x0b98  volmgrx - ok
15:33:19.0969 0x0b98  volsnap - ok
15:33:19.0972 0x0b98  volume - ok
15:33:19.0974 0x0b98  vpci - ok
15:33:19.0977 0x0b98  vsmraid - ok
15:33:19.0979 0x0b98  VSS - ok
15:33:19.0982 0x0b98  VSTXRAID - ok
15:33:19.0984 0x0b98  vwifibus - ok
15:33:19.0987 0x0b98  vwififlt - ok
15:33:19.0990 0x0b98  W32Time - ok
15:33:19.0993 0x0b98  w3logsvc - ok
15:33:19.0995 0x0b98  W3SVC - ok
15:33:19.0998 0x0b98  WacomPen - ok
15:33:20.0000 0x0b98  WalletService - ok
15:33:20.0003 0x0b98  wanarp - ok
15:33:20.0005 0x0b98  wanarpv6 - ok
15:33:20.0008 0x0b98  WAS - ok
15:33:20.0011 0x0b98  wbengine - ok
15:33:20.0013 0x0b98  WbioSrvc - ok
15:33:20.0016 0x0b98  wcifs - ok
15:33:20.0019 0x0b98  Wcmsvc - ok
15:33:20.0021 0x0b98  wcncsvc - ok
15:33:20.0024 0x0b98  wcnfs - ok
15:33:20.0026 0x0b98  WdBoot - ok
15:33:20.0029 0x0b98  Wdf01000 - ok
15:33:20.0031 0x0b98  WdFilter - ok
15:33:20.0034 0x0b98  WdiServiceHost - ok
15:33:20.0037 0x0b98  WdiSystemHost - ok
15:33:20.0039 0x0b98  wdiwifi - ok
15:33:20.0042 0x0b98  WdNisDrv - ok
15:33:20.0044 0x0b98  WdNisSvc - ok
15:33:20.0047 0x0b98  WebClient - ok
15:33:20.0049 0x0b98  Wecsvc - ok
15:33:20.0052 0x0b98  WEPHOSTSVC - ok
15:33:20.0055 0x0b98  wercplsupport - ok
15:33:20.0057 0x0b98  WerSvc - ok
15:33:20.0060 0x0b98  WFPLWFS - ok
15:33:20.0063 0x0b98  WiaRpc - ok
15:33:20.0066 0x0b98  WIMMount - ok
15:33:20.0068 0x0b98  WinDefend - ok
15:33:20.0073 0x0b98  WindowsTrustedRT - ok
15:33:20.0076 0x0b98  WindowsTrustedRTProxy - ok
15:33:20.0078 0x0b98  WinHttpAutoProxySvc - ok
15:33:20.0081 0x0b98  WinMad - ok
15:33:20.0088 0x0b98  Winmgmt - ok
15:33:20.0091 0x0b98  WinRM - ok
15:33:20.0096 0x0b98  WINUSB - ok
15:33:20.0099 0x0b98  WinVerbs - ok
15:33:20.0102 0x0b98  wisvc - ok
15:33:20.0104 0x0b98  WlanSvc - ok
15:33:20.0107 0x0b98  wlidsvc - ok
15:33:20.0110 0x0b98  WmiAcpi - ok
15:33:20.0114 0x0b98  wmiApSrv - ok
15:33:20.0116 0x0b98  WMPNetworkSvc - ok
15:33:20.0119 0x0b98  Wof - ok
15:33:20.0123 0x0b98  workfolderssvc - ok
15:33:20.0126 0x0b98  WPDBusEnum - ok
15:33:20.0128 0x0b98  WpdUpFltr - ok
15:33:20.0131 0x0b98  WpnService - ok
15:33:20.0134 0x0b98  WpnUserService - ok
15:33:20.0138 0x0b98  ws2ifsl - ok
15:33:20.0141 0x0b98  wscsvc - ok
15:33:20.0143 0x0b98  WSDPrintDevice - ok
15:33:20.0146 0x0b98  WSDScan - ok
15:33:20.0149 0x0b98  WSearch - ok
15:33:20.0153 0x0b98  wuauserv - ok
15:33:20.0155 0x0b98  WudfPf - ok
15:33:20.0158 0x0b98  WUDFRd - ok
15:33:20.0161 0x0b98  wudfsvc - ok
15:33:20.0163 0x0b98  WUDFWpdFs - ok
15:33:20.0166 0x0b98  WUDFWpdMtp - ok
15:33:20.0169 0x0b98  WwanSvc - ok
15:33:20.0171 0x0b98  XblAuthManager - ok
15:33:20.0175 0x0b98  XblGameSave - ok
15:33:20.0177 0x0b98  xboxgip - ok
15:33:20.0180 0x0b98  XboxNetApiSvc - ok
15:33:20.0183 0x0b98  xinputhid - ok
15:33:20.0195 0x0b98  ================ Scan global ===============================
15:33:20.0204 0x0b98  [ Global ] - ok
15:33:20.0204 0x0b98  ================ Scan MBR ==================================
15:33:20.0205 0x0b98  [ B1F7D7F6E4FBE98E578562A22A94D02C ] \Device\Harddisk0\DR0
15:33:20.0274 0x0b98  \Device\Harddisk0\DR0 - ok
15:33:20.0275 0x0b98  [ 017E003AB27B155B3A606EB18257FC5D ] \Device\Harddisk1\DR1
15:33:20.0297 0x0b98  \Device\Harddisk1\DR1 - ok
15:33:20.0298 0x0b98  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
15:33:20.0321 0x0b98  \Device\Harddisk2\DR2 - ok
15:33:20.0324 0x0b98  [ EF1D8B517E0BEA9CE5EAAC546B249695 ] \Device\Harddisk3\DR3
15:33:20.0452 0x0b98  \Device\Harddisk3\DR3 - ok
15:33:20.0452 0x0b98  ================ Scan VBR ==================================
15:33:20.0454 0x0b98  [ 1585EE94E85916ECC5538A89462BD13C ] \Device\Harddisk0\DR0\Partition1
15:33:20.0455 0x0b98  \Device\Harddisk0\DR0\Partition1 - ok
15:33:20.0456 0x0b98  [ B497E7C6E6DFC5B04BB65780924EF31E ] \Device\Harddisk2\DR2\Partition1
15:33:20.0457 0x0b98  \Device\Harddisk2\DR2\Partition1 - ok
15:33:20.0460 0x0b98  [ 548205C2D7699A49C8DD4C78F67CD2DB ] \Device\Harddisk3\DR3\Partition1
15:33:20.0463 0x0b98  \Device\Harddisk3\DR3\Partition1 - ok
15:33:20.0464 0x0b98  ================ Scan generic autorun ======================
15:33:20.0583 0x0b98  [ 22EBD5AE3B3220D713E544D1D3AB3FEE, 9EF058B096DAA5C6242FBEB3DF509108180B1EB1EA252E63C437CF6C1B743BE0 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
15:33:20.0702 0x0b98  RTHDVCPL - ok
15:33:20.0731 0x0b98  [ 4F46EA70C7579052F764D0F9B81D23C2, EABE443ABC39AFDA49762A78711FAB4C7367680BE4F0B79F3144362D4A272238 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
15:33:20.0760 0x0b98  NvBackend - ok
15:33:20.0777 0x0b98  [ D14038B78417AC2D1DE8C5B89FF1BDE3, 01E5D1F440E50DC73CF395C3747E5668A1AFF543FB5A8CC7BF052B9C4435FA12 ] C:\Program Files\EPSON_P2\Printer Software\SEQLUZ.EXE
15:33:20.0795 0x0b98  SEQLU - ok
15:33:20.0804 0x0b98  [ 2EA5857E47250C57C69F426054B884DC, 4803FD8374D4FF87DE25B432D73FAAF0C2FBE2477BE43C4887BFD4454F4E9D73 ] C:\Program Files\EPSON_P2\Status Monitor\SEPSPZ.EXE
15:33:20.0815 0x0b98  SESMPSP - ok
15:33:20.0819 0x0b98  [ 5677C8C60F4659E8626AC9036EEF38DF, 1C7D3EC3BCB3E34900DD9556A3EBAF449C68585DC8E07682E680790497105B8B ] C:\Program Files\Classic Shell\ClassicStartMenu.exe
15:33:20.0827 0x0b98  Classic Start Menu - ok
15:33:20.0832 0x0b98  [ D91AB5CCE502F95726AC1E035C867BC6, A27B2AAB26C844454A0CEA97F861623C518A837B9DF41778AC7F4E9184E6BC8C ] C:\Program Files\iTunes\iTunesHelper.exe
15:33:20.0840 0x0b98  iTunesHelper - ok
15:33:20.0842 0x0b98  [ 452FA961163EF4AEE4815796A13AB2CF, 14DC422082F96F5C21C41A5E5F6E8445547CC4B02B18F0A86A34669CA2CE18A7 ] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe
15:33:20.0847 0x0b98  Adobe Reader Speed Launcher - ok
15:33:20.0851 0x0b98  [ AF905BC023A0018F7325FD4B0019B5C0, 9F65DE0C3D8B90295B70528ADD2411CC1771AC089B70ABEC426D6F2D5D7A104A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
15:33:20.0857 0x0b98  APSDaemon - ok
15:33:20.0896 0x0b98  [ 671C9F2F8C51B2675D0CFF3D0FD703F7, 8DF5E3F33A644DD3C420C56E38CE67DAD29037AEA7930676CCE6C02DC3114C44 ] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
15:33:20.0956 0x0b98  HDAudDeck - detected UnsignedFile.Multi.Generic ( 1 )
15:33:20.0956 0x0b98  HDAudDeck ( UnsignedFile.Multi.Generic ) - warning
15:33:21.0087 0x0b98  [ DB4E2D9C09A5762CB2551222B5E443B2, 318AD09D1821E38B7D7ACC0A06965057B494A752C9E34FD1CA41247DC703F985 ] C:\Windows\RaidTool\xInsIDE.exe
15:33:21.0093 0x0b98  JMB36X IDE Setup - detected UnsignedFile.Multi.Generic ( 1 )
15:33:21.0093 0x0b98  JMB36X IDE Setup ( UnsignedFile.Multi.Generic ) - warning
15:33:21.0229 0x0b98  [ 1040F1B137BC8E513AB4EF8698C50AEE, FA657D604D36BA99162E0466164A3D48E00A15094911B4E9642CCD0A162CFE3D ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
15:33:21.0242 0x0b98  SunJavaUpdateSched - ok
15:33:21.0268 0x0b98  OneDriveSetup - ok
15:33:21.0269 0x0b98  OneDriveSetup - ok
15:33:21.0293 0x0b98  [ 642102CCB9EF737E188D136B93AB9A1F, 9BF47F3B3DAD7938C804C951FC81AC5C1EA8BDD94AB29630D5080CE797F3CC0F ] C:\Users\Cath\AppData\Local\Microsoft\OneDrive\OneDrive.exe
15:33:21.0322 0x0b98  OneDrive - ok
15:33:21.0322 0x0b98  TweakBit\PCRepairKit\Start PCRepairKit оn logon - ok
15:33:21.0466 0x0b98  [ 4A4FF358B1ECCAEDBBDAEF293613CEC5, 0697FCBC726F2BC2573495CD878F9309235DB7289DD76FB9406233D01D546272 ] C:\Program Files\CCleaner\CCleaner64.exe
15:33:21.0601 0x0b98  CCleaner Monitoring - ok
15:33:21.0603 0x0b98  OneDriveSetup - ok
15:33:21.0604 0x0b98  WAB Migrate - ok
15:33:21.0607 0x0b98  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.1198 ), 0x60100 ( disabled : updated )
15:33:21.0608 0x0b98  AV detected via SS2: Emsisoft Anti-Malware, C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\a2start.exe ( 2017.1.1.7166 ), 0x340010 ( disabled : outofdate )
15:33:21.0608 0x0b98  AV detected via SS2: Bitdefender Antivirus Free Edition, C:\Program Files\Bitdefender\Antivirus Free Edition\gziface.exe ( 1.0.21.1109 ), 0x41000 ( enabled : updated )
15:33:21.0609 0x0b98  Win FW state via NFP2: enabled ( trusted )
15:33:21.0735 0x0b98  ============================================================
15:33:21.0735 0x0b98  Scan finished
15:33:21.0735 0x0b98  ============================================================
15:33:21.0738 0x2aac  Detected object count: 4
15:33:21.0738 0x2aac  Actual detected object count: 4
15:34:59.0054 0x2aac  C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe - copied to quarantine
15:34:59.0058 0x2aac  HKLM\SYSTEM\ControlSet001\services\asComSvc - will be deleted on reboot
15:34:59.0069 0x2aac  C:\Program Files (x86)\ASUS\AXSP\1.00.18\atkexComSvc.exe - will be deleted on reboot
15:34:59.0069 0x2aac  asComSvc ( UnsignedFile.Multi.Generic ) - User select action: Delete
15:34:59.0079 0x2aac  C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe - copied to quarantine
15:34:59.0082 0x2aac  HKLM\SYSTEM\ControlSet001\services\ICCS - will be deleted on reboot
15:34:59.0086 0x2aac  C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe - will be deleted on reboot
15:34:59.0086 0x2aac  ICCS ( UnsignedFile.Multi.Generic ) - User select action: Delete
15:34:59.0156 0x2aac  C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe - copied to quarantine
15:34:59.0159 0x2aac  HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run:HDAudDeck - will be deleted on reboot
15:34:59.0159 0x2aac  C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe - will be deleted on reboot
15:34:59.0159 0x2aac  HDAudDeck ( UnsignedFile.Multi.Generic ) - User select action: Delete
15:34:59.0166 0x2aac  C:\Windows\RaidTool\xInsIDE.exe - copied to quarantine
15:34:59.0168 0x2aac  HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run:JMB36X IDE Setup - will be deleted on reboot
15:34:59.0169 0x2aac  C:\Windows\RaidTool\xInsIDE.exe - will be deleted on reboot
15:34:59.0169 0x2aac  JMB36X IDE Setup ( UnsignedFile.Multi.Generic ) - User select action: Delete
15:34:59.0223 0x2aac  KLMD registered as C:\WINDOWS\system32\drivers\82869177.sys
15:35:02.0449 0x2bc4  Deinitialize success


Next I ran the ESET online Scanner, and it found 6 instances of threats, but I could not see the option to save to text file. All 6 instances were deleted by ESET.

 

And after doinbg all of the above, the machine now runs as it should do in normal mode.

 

Thank you for the help.


Edited by Avalon60, 12 June 2017 - 10:32 AM.


#4 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,756 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:10:32 PM

Posted 12 June 2017 - 02:55 PM

If you have not done so yet, you need to restart the computer for certain quarantined items to be deleted.  Do this asap

 

Let me know afterward if this has resolved your problem.


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#5 Avalon60

Avalon60
  • Topic Starter

  • Members
  • 83 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Leeds UK
  • Local time:06:32 AM

Posted 12 June 2017 - 03:01 PM

Yes the computer has been restarted and the problems have now been resolved.

 

Thanks



#6 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,756 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:10:32 PM

Posted 13 June 2017 - 08:27 AM

Cool. :thumbup2:


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users