15:49:59.0112 0x33d8 TDSS rootkit removing tool 3.1.0.

12 Nov 7 2016 07:10:01

15:50:02.0390 0x33d8 ============================================================
15:50:02.0391 0x33d8 Current date / time: 2017/03/21 15:50:02.0390
15:50:02.0391 0x33d8 SystemInfo:
15:50:02.0396 0x33d8
15:50:02.0396 0x33d8 OS Version: 10.0.14393 ServicePack: 0.0
15:50:02.0396 0x33d8 Product type: Workstation
15:50:02.0396 0x33d8 ComputerName: LUAN
15:50:02.0396 0x33d8 UserName: X-Ray2302
15:50:02.0396 0x33d8 Windows directory: C:\WINDOWS
15:50:02.0396 0x33d8 System windows directory: C:\WINDOWS
15:50:02.0396 0x33d8 Running under WOW64
15:50:02.0396 0x33d8 Processor architecture: Intel x64
15:50:02.0396 0x33d8 Number of processors: 4
15:50:02.0396 0x33d8 Page size: 0x1000
15:50:02.0396 0x33d8 Boot type: Normal boot
15:50:02.0396 0x33d8 CodeIntegrityOptions = 0x00000001
15:50:02.0396 0x33d8 ============================================================
15:50:04.0108 0x33d8 KLMD registered as C:\WINDOWS\system32\drivers\76700781.sys
15:50:04.0108 0x33d8 KLMD ARK init status: drvProperties = 0xFFF00, osBuild =
14393.953, osProperties = 0x19
15:50:04.0809 0x33d8 System UUID: {AB3DD362-FE05-B1B0-8BBC-6C0ED4FAE008}
15:50:05.0502 0x33d8 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51
Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F,
TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:50:05.0532 0x33d8 ============================================================
15:50:05.0532 0x33d8 \Device\Harddisk0\DR0:
15:50:05.0532 0x33d8 MBR partitions:
15:50:05.0532 0x33d8 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA
0x800, BlocksNum 0xAF000
15:50:05.0532 0x33d8 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA
0xAF800, BlocksNum 0x74575800
15:50:05.0532 0x33d8 ============================================================
15:50:05.0641 0x33d8 C: <-> \Device\Harddisk0\DR0\Partition2
15:50:05.0641 0x33d8 ============================================================
15:50:05.0641 0x33d8 Initialize success
15:50:05.0641 0x33d8 ============================================================
15:50:37.0274 0x30d4 ============================================================
15:50:37.0274 0x30d4 Scan started
15:50:37.0274 0x30d4 Mode: Manual; TDLFS;
15:50:37.0274 0x30d4 ============================================================
15:50:37.0274 0x30d4 KSN ping started
15:50:40.0078 0x30d4 KSN ping finished: true
15:50:46.0523 0x30d4 ================ Scan system memory ========================
15:50:46.0523 0x30d4 System memory - ok
15:50:46.0523 0x30d4 ================ Scan services =============================
15:50:47.0080 0x30d4 1394ohci - ok
15:50:47.0083 0x30d4 3ware - ok
15:50:47.0128 0x30d4 ACPI - ok
15:50:47.0139 0x30d4 AcpiDev - ok
15:50:47.0142 0x30d4 acpiex - ok
15:50:47.0145 0x30d4 acpipagr - ok
15:50:47.0179 0x30d4 AcpiPmi - ok
15:50:47.0195 0x30d4 acpitime - ok
15:50:47.0485 0x30d4 [ B932E0EE190778D840F1442DFC0F9612,
8780963F14D57279FDD585BE945ED40F24590D32676C7A9EF94002D38B8BA643 ] AdobeARMservice
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:50:47.0487 0x30d4 AdobeARMservice - ok
15:50:47.0495 0x30d4 ADP80XX - ok
15:50:47.0515 0x30d4 AFD - ok
15:50:47.0550 0x30d4 ahcache - ok
15:50:47.0583 0x30d4 AJRouter - ok
15:50:47.0625 0x30d4 ALG - ok
15:50:47.0663 0x30d4 AmdK8 - ok
15:50:47.0666 0x30d4 AmdPPM - ok
15:50:47.0683 0x30d4 amdsata - ok
15:50:47.0686 0x30d4 amdsbs - ok
15:50:47.0703 0x30d4 amdxata - ok
15:50:47.0713 0x30d4 AppID - ok
15:50:47.0731 0x30d4 AppIDSvc - ok
15:50:47.0767 0x30d4 Appinfo - ok
15:50:47.0786 0x30d4 applockerfltr - ok
15:50:47.0807 0x30d4 AppReadiness - ok
15:50:47.0868 0x30d4 AppXSvc - ok
15:50:47.0871 0x30d4 arcsas - ok
15:50:47.0874 0x30d4 AsyncMac - ok
15:50:47.0915 0x30d4 atapi - ok
15:50:47.0956 0x30d4 AudioEndpointBuilder - ok
15:50:47.0986 0x30d4 Audiosrv - ok
15:50:48.0017 0x30d4 AxInstSV - ok
15:50:48.0020 0x30d4 b06bdrv - ok
15:50:48.0023 0x30d4 BasicDisplay - ok
15:50:48.0026 0x30d4 BasicRender - ok
15:50:48.0030 0x30d4 bcmfn - ok
15:50:48.0032 0x30d4 bcmfn2 - ok
15:50:48.0042 0x30d4 BDESVC - ok
15:50:48.0070 0x30d4 Beep - ok
15:50:48.0224 0x30d4 [ 5B413BEADC23C9D182F7EC09C10441FA,
E16E06848492331107C6D682D93D35C5D1A0DC8CAD3816B42203A4BF05932C7E ] BEService
C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
15:50:48.0481 0x30d4 BEService - ok
15:50:48.0519 0x30d4 BFE - ok
15:50:48.0529 0x30d4 BITS - ok
15:50:48.0542 0x30d4 bowser - ok
15:50:48.0560 0x30d4 BrokerInfrastructure - ok
15:50:48.0574 0x30d4 Browser - ok
15:50:48.0687 0x30d4 [ 18C6186E04F25515C1F7DA31B08B5B2D,
A46B16942C0CD8204AF760974980A6664C10A38B9FAEDE1FF6A66F6DDF3B4243 ] BrYNSvc
C:\Program Files (x86)\Browny02\BrYNSvc.exe
15:50:48.0766 0x30d4 BrYNSvc - ok
15:50:48.0812 0x30d4 BthAvrcpTg - ok
15:50:48.0825 0x30d4 BthHFEnum - ok
15:50:48.0834 0x30d4 bthhfhid - ok
15:50:48.0866 0x30d4 BthHFSrv - ok
15:50:48.0888 0x30d4 BTHMODEM - ok
15:50:48.0908 0x30d4 bthserv - ok
15:50:48.0937 0x30d4 buttonconverter - ok
15:50:48.0967 0x30d4 CapImg - ok
15:50:48.0971 0x30d4 cdfs - ok
15:50:48.0989 0x30d4 CDPSvc - ok
15:50:48.0997 0x30d4 CDPUserSvc - ok
15:50:49.0067 0x30d4 cdrom - ok
15:50:49.0101 0x30d4 CertPropSvc - ok
15:50:49.0126 0x30d4 cht4iscsi - ok
15:50:49.0150 0x30d4 cht4vbd - ok
15:50:49.0201 0x30d4 circlass - ok
15:50:49.0239 0x30d4 CLFS - ok
15:50:49.0251 0x30d4 ClipSVC - ok
15:50:49.0259 0x30d4 clreg - ok
15:50:49.0284 0x30d4 CmBatt - ok
15:50:49.0323 0x30d4 CNG - ok
15:50:49.0326 0x30d4 cnghwassist - ok
15:50:49.0442 0x30d4 CompositeBus - ok
15:50:49.0445 0x30d4 COMSysApp - ok
15:50:49.0449 0x30d4 condrv - ok
15:50:49.0485 0x30d4 CoreMessagingRegistrar - ok
15:50:49.0865 0x30d4 [ 75C568E62A2BD89A869C34119A66D19B,
2954F25E511947728FE50AA76ACECE0B6952D1984301027F499E2F3DAAEB65D3 ] cphs
C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
15:50:51.0218 0x30d4 cphs - ok
15:50:51.0242 0x30d4 CryptSvc - ok
15:50:51.0286 0x30d4 dam - ok
15:50:51.0312 0x30d4 dc1-controller - ok
15:50:51.0350 0x30d4 DcomLaunch - ok
15:50:51.0366 0x30d4 DcpSvc - ok
15:50:51.0401 0x30d4 defragsvc - ok
15:50:51.0408 0x30d4 DeviceAssociationService - ok
15:50:51.0440 0x30d4 DeviceInstall - ok
15:50:51.0481 0x30d4 DevQueryBroker - ok
15:50:51.0507 0x30d4 Dfsc - ok
15:50:51.0562 0x30d4 [ 9593475FBC857A05D93BFF4FA7323C2B,
D2A958AF5EFDC6136A6ABB7F8D5FE1F84C967E79BEA96C5BE3661A0145DEB907 ] dg_ssudbus
C:\WINDOWS\system32\DRIVERS\ssudbus.sys
15:50:51.0845 0x30d4 dg_ssudbus - ok
15:50:51.0897 0x30d4 Dhcp - ok
15:50:52.0011 0x30d4 diagnosticshub.standardcollector.service - ok
15:50:52.0057 0x30d4 DiagTrack - ok
15:50:52.0109 0x30d4 disk - ok
15:50:52.0178 0x30d4 DmEnrollmentSvc - ok
15:50:52.0199 0x30d4 dmvsc - ok
15:50:52.0202 0x30d4 dmwappushservice - ok
15:50:52.0231 0x30d4 Dnscache - ok
15:50:52.0252 0x30d4 dot3svc - ok
15:50:52.0256 0x30d4 DPS - ok
15:50:52.0269 0x30d4 drmkaud - ok
15:50:52.0272 0x30d4 DsmSvc - ok
15:50:52.0274 0x30d4 DsSvc - ok
15:50:52.0277 0x30d4 DXGKrnl - ok
15:50:52.0299 0x30d4 e1iexpress - ok
15:50:52.0520 0x30d4 EapHost - ok
15:50:52.0547 0x30d4 ebdrv - ok
15:50:52.0593 0x30d4 EFS - ok
15:50:52.0621 0x30d4 EhStorClass - ok
15:50:52.0679 0x30d4 EhStorTcgDrv - ok
15:50:52.0712 0x30d4 embeddedmode - ok
15:50:52.0729 0x30d4 EntAppSvc - ok
15:50:52.0739 0x30d4 ErrDev - ok
15:50:52.0836 0x30d4 [ 3B32CAA07D672F8A2E0DF5CB3A873F45,
09687E30FA5779C3593769D66CAEBED95C932746EDD6E83DABE3DCFD126AB5EC ] EsgScanner
C:\WINDOWS\system32\DRIVERS\EsgScanner.sys
15:50:52.0847 0x30d4 EsgScanner - ok
15:50:52.0864 0x30d4 EventSystem - ok
15:50:52.0868 0x30d4 exfat - ok
15:50:52.0908 0x30d4 fastfat - ok
15:50:52.0941 0x30d4 Fax - ok
15:50:52.0974 0x30d4 fdc - ok
15:50:52.0998 0x30d4 fdPHost - ok
15:50:53.0010 0x30d4 FDResPub - ok
15:50:53.0055 0x30d4 fhsvc - ok
15:50:53.0111 0x30d4 FileCrypt - ok
15:50:53.0114 0x30d4 FileInfo - ok
15:50:53.0127 0x30d4 Filetrace - ok
15:50:53.0130 0x30d4 flpydisk - ok
15:50:53.0133 0x30d4 FltMgr - ok
15:50:53.0178 0x30d4 FontCache - ok
15:50:53.0386 0x30d4 FontCache3.0.0.0 - ok
15:50:53.0409 0x30d4 FrameServer - ok
15:50:53.0431 0x30d4 FsDepends - ok
15:50:53.0434 0x30d4 Fs_Rec - ok
15:50:53.0475 0x30d4 fvevol - ok
15:50:53.0577 0x30d4 [ 13198A7037AA4D68ADBE91EF7EE8EE4E,
16CF67CC71095FF7BDC397919ABE711E0B4E88BDF41CDA04B021BEAEEBF7601B ]
GalaxyClientService C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe
15:50:53.0602 0x30d4 GalaxyClientService - ok
15:50:54.0160 0x30d4 [ 786B4A03D9FCF26775392FD68E2DB69B,
52A6C0C47B50478D7A9890F398BE29308EC53F384BE8CBE2DDCF6A053AF00129 ]
GalaxyCommunication C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
15:50:54.0612 0x30d4 GalaxyCommunication - ok
15:50:54.0646 0x30d4 gencounter - ok
15:50:54.0649 0x30d4 genericusbfn - ok
15:50:54.0683 0x30d4 GPIOClx0101 - ok
15:50:54.0689 0x30d4 gpsvc - ok
15:50:54.0691 0x30d4 GpuEnergyDrv - ok
15:50:54.0820 0x30d4 [ DD7423ABBE2913E70D50E9318AD57EE4,
74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:50:54.0823 0x30d4 gupdate - ok
15:50:54.0827 0x30d4 [ DD7423ABBE2913E70D50E9318AD57EE4,
74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:50:54.0830 0x30d4 gupdatem - ok
15:50:54.0833 0x30d4 HDAudBus - ok
15:50:54.0837 0x30d4 HidBatt - ok
15:50:54.0859 0x30d4 HidBth - ok
15:50:54.0907 0x30d4 hidi2c - ok
15:50:54.0911 0x30d4 hidinterrupt - ok
15:50:54.0914 0x30d4 HidIr - ok
15:50:54.0943 0x30d4 hidserv - ok
15:50:54.0978 0x30d4 HidUsb - ok
15:50:54.0986 0x30d4 HomeGroupListener - ok
15:50:55.0023 0x30d4 HomeGroupProvider - ok
15:50:55.0046 0x30d4 HpSAMD - ok
15:50:55.0067 0x30d4 HTTP - ok
15:50:55.0131 0x30d4 HvHost - ok
15:50:55.0180 0x30d4 hvservice - ok
15:50:55.0194 0x30d4 hwpolicy - ok
15:50:55.0209 0x30d4 hyperkbd - ok
15:50:55.0246 0x30d4 i8042prt - ok
15:50:55.0257 0x30d4 iagpio - ok
15:50:55.0260 0x30d4 iai2c - ok
15:50:55.0262 0x30d4 iaLPSS2i_GPIO2 - ok
15:50:55.0265 0x30d4 iaLPSS2i_I2C - ok
15:50:55.0268 0x30d4 iaLPSSi_GPIO - ok
15:50:55.0270 0x30d4 iaLPSSi_I2C - ok
15:50:55.0364 0x30d4 [ 6655615C7E4E29E6481F75A93ED99954,
C7387D85DEC6BEF74DAD3B36398D1DA8914E9CF6F460D36E30088E3F6754E972 ] iaStorA
C:\WINDOWS\system32\drivers\iaStorA.sys
15:50:55.0374 0x30d4 iaStorA - ok
15:50:55.0380 0x30d4 iaStorAV - ok
15:50:55.0587 0x30d4 [ F35FBCEB1B71BC20BBAFA526E203D6A1,
F389B689B5DF0D204E3EA21B7201A89D29DE518716781BB390AC6E5CED64C790 ] IAStorDataMgrSvc
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
15:50:55.0588 0x30d4 IAStorDataMgrSvc - ok
15:50:55.0591 0x30d4 iaStorV - ok
15:50:55.0601 0x30d4 ibbus - ok
15:50:55.0619 0x30d4 icssvc - ok
15:50:56.0610 0x30d4 [ 658287D76E8D77C08AE98989F99B8948,
DBA67B5772E1FE43ABDB3908A1CF86D76F2774BABC20359D2511F06A2A8CAC57 ] igfx
C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
15:50:56.0874 0x30d4 igfx - ok
15:50:56.0939 0x30d4 [ A105AD05696D55E6E4F078ED850F6305,
8121A4226D2941EDD4809D516E7684E5C7164ADCF5AA4C8BC6620110625D3E8D ]
igfxCUIService2.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
15:50:56.0982 0x30d4 igfxCUIService2.0.0.0 - ok
15:50:57.0021 0x30d4 IKEEXT - ok
15:50:57.0034 0x30d4 IndirectKmd - ok
15:50:57.0091 0x30d4 [ FC7C456AF9B9811499EDBD10616832EE,
CA2D8B0E672D3AE449C2FF0B9E142D74E8C72FD877D11162A9F7CC51AF58220F ]
intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
15:50:57.0095 0x30d4 intaud_WaveExtensible - ok
15:50:57.0519 0x30d4 [ 622868E4BAE8FBCD22CB1A5901A2C824,
C1A2264C0984DD16C83B663C9CE43E049E1356E32C5771C3ACE225F285699138 ]
IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
15:50:57.0626 0x30d4 IntcAzAudAddService - ok
15:50:57.0734 0x30d4 [ E300D1E37B737ED14F7A08CD5604E5D9,
5C1135081E29D7F4A97D5CAA2C8FBE1DD04EC7A3D8E648E69F2AA9EBDD88EBBB ] IntcDAud
C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
15:50:57.0742 0x30d4 IntcDAud - ok
15:50:57.0889 0x30d4 [ 4C17F57E43645E75800E9E84787E34E5,
6A1531D97462BA3B3DBDAD472AF15B717C958AA8C5CE2373DE0B2A41C35BE33E ] Intel(R)
Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS
Client\SocketHeciServer.exe
15:50:58.0412 0x30d4 Intel(R) Capability Licensing Service TCP IP Interface - ok
15:50:58.0454 0x30d4 [ FA6094444A7DC90449800F964E0A8668,
A6DCF395649FA185596D55713888922BA2A61D96AD0D5E7860FD47EE30B7E4CF ] Intel(R) PROSet
Monitoring Service C:\Windows\system32\IProsetMonitor.exe
15:50:58.0464 0x30d4 Intel(R) PROSet Monitoring Service - ok
15:50:58.0519 0x30d4 intelide - ok
15:50:58.0521 0x30d4 intelpep - ok
15:50:58.0548 0x30d4 intelppm - ok
15:50:58.0591 0x30d4 iorate - ok
15:50:58.0603 0x30d4 IpFilterDriver - ok
15:50:58.0633 0x30d4 iphlpsvc - ok
15:50:58.0641 0x30d4 IPMIDRV - ok
15:50:58.0643 0x30d4 IPNAT - ok
15:50:58.0646 0x30d4 irda - ok
15:50:58.0649 0x30d4 IRENUM - ok
15:50:58.0656 0x30d4 irmon - ok
15:50:58.0692 0x30d4 isapnp - ok
15:50:58.0704 0x30d4 iScsiPrt - ok
15:50:58.0761 0x30d4 [ A90C843F4FDD7A07129BA73C6BE13976,
A76DEA9F09E3B2F18D3B646A0DD39E2773EC62E2F3C55421BA61C12190D78C1C ] iwdbus
C:\WINDOWS\System32\drivers\iwdbus.sys
15:50:58.0763 0x30d4 iwdbus - ok
15:50:58.0969 0x30d4 [ 0B93A01F786F37A4B1EDE84E639FFF10,
8747109A2FA2B80C8C5F5B6D2372C1B0DA4F4BF9DC1D551195ADF0715C260223 ] jhi_service
C:\Program Files (x86)\Intel\Intel(R) Management Engine
Components\DAL\jhi_service.exe
15:50:59.0004 0x30d4 jhi_service - ok
15:50:59.0057 0x30d4 kbdclass - ok
15:50:59.0089 0x30d4 kbdhid - ok
15:50:59.0130 0x30d4 kdnic - ok
15:50:59.0132 0x30d4 KeyIso - ok
15:50:59.0136 0x30d4 KSecDD - ok
15:50:59.0148 0x30d4 KSecPkg - ok
15:50:59.0162 0x30d4 ksthunk - ok
15:50:59.0180 0x30d4 KtmRm - ok
15:50:59.0218 0x30d4 LanmanServer - ok
15:50:59.0220 0x30d4 LanmanWorkstation - ok
15:50:59.0259 0x30d4 lfsvc - ok
15:50:59.0267 0x30d4 LicenseManager - ok
15:50:59.0270 0x30d4 lltdio - ok
15:50:59.0281 0x30d4 lltdsvc - ok
15:50:59.0300 0x30d4 lmhosts - ok
15:50:59.0390 0x30d4 [ C31139E0907170E2A3FA8D19DCC23D35,
C504E93D2018E9E487A428483C646C67B4ECE122560CF0FA49A1626E1509EEAE ] LMS
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
15:50:59.0396 0x30d4 LMS - ok
15:50:59.0402 0x30d4 LSI_SAS - ok
15:50:59.0405 0x30d4 LSI_SAS2i - ok
15:50:59.0407 0x30d4 LSI_SAS3i - ok
15:50:59.0410 0x30d4 LSI_SSS - ok
15:50:59.0441 0x30d4 LSM - ok
15:50:59.0444 0x30d4 luafv - ok
15:50:59.0454 0x30d4 MapsBroker - ok
15:51:00.0069 0x30d4 [ 804E3246E3E73D4A936F2F4BCDC53A2D,
BF1F9B4AC292238FA6EE541E325B220F311977F9D87D5BC7F90AD058FBF0B35A ] MBAMService
C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
15:51:00.0125 0x30d4 MBAMService - ok
15:51:00.0160 0x30d4 megasas - ok
15:51:00.0174 0x30d4 megasas2i - ok
15:51:00.0176 0x30d4 megasr - ok
15:51:00.0192 0x30d4 [ 6D1671CB2E5402F01D2F13ECF764CAA1,
4778630F602FE8F9B9112DC5BB7A179632000D10D80C28E93711404108FCC6E0 ] MEIx64
C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys
15:51:00.0196 0x30d4 MEIx64 - ok
15:51:00.0227 0x30d4 MessagingService - ok
15:51:00.0287 0x30d4 mlx4_bus - ok
15:51:00.0307 0x30d4 MMCSS - ok
15:51:00.0327 0x30d4 Modem - ok
15:51:00.0334 0x30d4 monitor - ok
15:51:00.0337 0x30d4 mouclass - ok
15:51:00.0393 0x30d4 mouhid - ok
15:51:00.0396 0x30d4 mountmgr - ok
15:51:00.0399 0x30d4 mpsdrv - ok
15:51:00.0433 0x30d4 MpsSvc - ok
15:51:00.0468 0x30d4 MRxDAV - ok
15:51:00.0474 0x30d4 mrxsmb - ok
15:51:00.0497 0x30d4 mrxsmb10 - ok
15:51:00.0500 0x30d4 mrxsmb20 - ok
15:51:00.0510 0x30d4 MsBridge - ok
15:51:00.0531 0x30d4 MSDTC - ok
15:51:00.0548 0x30d4 Msfs - ok
15:51:00.0562 0x30d4 msgpiowin32 - ok
15:51:00.0576 0x30d4 mshidkmdf - ok
15:51:00.0579 0x30d4 mshidumdf - ok
15:51:00.0581 0x30d4 msisadrv - ok
15:51:00.0634 0x30d4 MSiSCSI - ok
15:51:00.0637 0x30d4 msiserver - ok
15:51:00.0671 0x30d4 MSKSSRV - ok
15:51:00.0673 0x30d4 MsLldp - ok
15:51:00.0727 0x30d4 MSPCLOCK - ok
15:51:00.0730 0x30d4 MSPQM - ok
15:51:00.0732 0x30d4 MsRPC - ok
15:51:00.0750 0x30d4 mssmbios - ok
15:51:00.0753 0x30d4 MSTEE - ok
15:51:00.0771 0x30d4 MTConfig - ok
15:51:00.0781 0x30d4 Mup - ok
15:51:00.0792 0x30d4 mvumis - ok
15:51:00.0821 0x30d4 NativeWifiP - ok
15:51:00.0839 0x30d4 NcaSvc - ok
15:51:00.0850 0x30d4 NcbService - ok
15:51:00.0868 0x30d4 NcdAutoSetup - ok
15:51:00.0875 0x30d4 ndfltr - ok
15:51:00.0886 0x30d4 NDIS - ok
15:51:00.0890 0x30d4 NdisCap - ok
15:51:00.0903 0x30d4 NdisImPlatform - ok
15:51:00.0905 0x30d4 NdisTapi - ok
15:51:00.0908 0x30d4 Ndisuio - ok
15:51:00.0910 0x30d4 NdisVirtualBus - ok
15:51:00.0914 0x30d4 NdisWan - ok
15:51:00.0917 0x30d4 ndiswanlegacy - ok
15:51:00.0920 0x30d4 ndproxy - ok
15:51:00.0922 0x30d4 Ndu - ok
15:51:00.0948 0x30d4 NetAdapterCx - ok
15:51:00.0951 0x30d4 NetBIOS - ok
15:51:00.0954 0x30d4 NetBT - ok
15:51:00.0989 0x30d4 Netlogon - ok
15:51:01.0034 0x30d4 Netman - ok
15:51:01.0073 0x30d4 netprofm - ok
15:51:01.0084 0x30d4 NetSetupSvc - ok
15:51:01.0200 0x30d4 NetTcpPortSharing - ok
15:51:01.0223 0x30d4 NgcCtnrSvc - ok
15:51:01.0265 0x30d4 NgcSvc - ok
15:51:01.0278 0x30d4 NlaSvc - ok
15:51:01.0289 0x30d4 Npfs - ok
15:51:01.0291 0x30d4 npggsvc - ok
15:51:01.0307 0x30d4 npsvctrig - ok
15:51:01.0315 0x30d4 nsi - ok
15:51:01.0318 0x30d4 nsiproxy - ok
15:51:01.0361 0x30d4 NTFS - ok
15:51:01.0373 0x30d4 Null - ok
15:51:01.0500 0x30d4 [ 62D705A1C4F8FBDD2941CCD2E9DEC206,
2E1F6127737D764AE6A35655C54ADE554333C3156CAA322C0FE5704A693A1BD7 ]
NvContainerLocalSystem C:\Program Files\NVIDIA
Corporation\NvContainer\nvcontainer.exe
15:51:01.0506 0x30d4 NvContainerLocalSystem - ok
15:51:01.0556 0x30d4 [ 62D705A1C4F8FBDD2941CCD2E9DEC206,
2E1F6127737D764AE6A35655C54ADE554333C3156CAA322C0FE5704A693A1BD7 ]
NvContainerNetworkService C:\Program Files\NVIDIA
Corporation\NvContainer\nvcontainer.exe
15:51:01.0562 0x30d4 NvContainerNetworkService - ok
15:51:01.0613 0x30d4 [ 207A78939B7BBA0EFE8BFA947A35E71C,
BB7DDFED575F81CAB958DDC7CFF2D798EB14DAE633F49FA2229D98BDC489C0EE ] NVHDA
C:\WINDOWS\system32\drivers\nvhda64v.sys
15:51:01.0617 0x30d4 NVHDA - ok
15:51:01.0637 0x30d4 NVIDIA Wireless Controller Service - ok
15:51:03.0228 0x30d4 [ 9337A5F17702A0FFE1E6C6978619B872,
8D4505BA62977BFE8C01F1ABD027AFBAEAA0D3EA6336865E46C28818471B196E ] nvlddmkm
C:\WINDOWS\System32\DriverStore\FileRepository\nv_desktop_ref4i.inf_amd64_e4be2de41
ed84e49\nvlddmkm.sys
15:51:03.0416 0x30d4 nvlddmkm - ok
15:51:03.0460 0x30d4 nvraid - ok
15:51:03.0494 0x30d4 nvstor - ok
15:51:03.0548 0x30d4 [ 6C672A80B4FBF160E2814EAE0AB3020B,
FD5BDE067D29AA9FC20D7C571607D3AC351BFD65EF6E0C75374A2D9C0B17FED3 ] NvStreamKms
C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
15:51:03.0549 0x30d4 NvStreamKms - ok
15:51:03.0804 0x30d4 [ 282423AA3B0648082647103A5C42B66C,
5C8DBE5A95C1232E7D0F84E6A8749550C0026F2139D136E94347C2FB2E772950 ]
NvTelemetryContainer C:\Program Files (x86)\NVIDIA
Corporation\NvTelemetry\NvTelemetryContainer.exe
15:51:03.0811 0x30d4 NvTelemetryContainer - ok
15:51:03.0843 0x30d4 [ 47E9348591CAACC64E41C9FD88D17A5B,
5B7AECFD5D35F55BDA8E6137D80B72166EA7AA0DF075BF4615D8EE50656CDDAF ]
nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
15:51:03.0845 0x30d4 nvvad_WaveExtensible - ok
15:51:03.0863 0x30d4 [ 61BD2E2560FD1C5E0A8B8738816A0B93,
1057A6C4F7D04E81BFFD5B806295B3A5D12DE4D13F66E8542426D83D97E68C97 ] nvvhci
C:\WINDOWS\System32\drivers\nvvhci.sys
15:51:03.0864 0x30d4 nvvhci - ok
15:51:03.0903 0x30d4 OneSyncSvc - ok
15:51:04.0081 0x30d4 [ 7D331DD034C85FB18DDF028F744FA37B,
BF6ADD7AF05732340831CA7DE766B5C93323A190107F7570E2130398846F4430 ] Origin Client
Service C:\Program Files (x86)\Origin\OriginClientService.exe
15:51:04.0109 0x30d4 Origin Client Service - ok
15:51:04.0264 0x30d4 [ 2B099DEBCFCBE33036406739F94C529C,
DBBACA632F39530F81D3AC28A350CAE49972156149835197053B8D61E00D8CEA ] Origin Web
Helper Service C:\Program Files (x86)\Origin\OriginWebHelperService.exe
15:51:04.0292 0x30d4 Origin Web Helper Service - ok
15:51:04.0321 0x30d4 p2pimsvc - ok
15:51:04.0331 0x30d4 p2psvc - ok
15:51:04.0350 0x30d4 Parport - ok
15:51:04.0379 0x30d4 partmgr - ok
15:51:04.0391 0x30d4 PcaSvc - ok
15:51:04.0400 0x30d4 pci - ok
15:51:04.0456 0x30d4 pciide - ok
15:51:04.0474 0x30d4 pcmcia - ok
15:51:04.0477 0x30d4 pcw - ok
15:51:04.0509 0x30d4 pdc - ok
15:51:04.0537 0x30d4 PEAUTH - ok
15:51:04.0556 0x30d4 percsas2i - ok
15:51:04.0558 0x30d4 percsas3i - ok
15:51:04.0743 0x30d4 PerfHost - ok
15:51:04.0758 0x30d4 PhoneSvc - ok
15:51:04.0787 0x30d4 PimIndexMaintenanceSvc - ok
15:51:04.0809 0x30d4 pla - ok
15:51:04.0851 0x30d4 PlugPlay - ok
15:51:04.0892 0x30d4 [ CD421DDB5C6E5458CE52EDC36DE7DC5B,
7B9C0A8B2B86BBF5D7E02F2620B0015A2530CBBC99724BE20313DE53EB31D62E ] PnkBstrA
C:\WINDOWS\system32\PnkBstrA.exe
15:51:04.0915 0x30d4 PnkBstrA - ok
15:51:04.0919 0x30d4 PNRPAutoReg - ok
15:51:04.0921 0x30d4 PNRPsvc - ok
15:51:04.0954 0x30d4 PolicyAgent - ok
15:51:04.0958 0x30d4 Power - ok
15:51:04.0963 0x30d4 PptpMiniport - ok
15:51:05.0704 0x30d4 [ 77ABF70C71922873BC160933571B3F83,
7FCFBB4B42E7A92FCF11388CD5B600EA79A7C134F13A8A88CF8DCD3DB96C3F5A ] PrintNotify
C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
15:51:05.0864 0x30d4 PrintNotify - ok
15:51:05.0975 0x30d4 Processor - ok
15:51:06.0030 0x30d4 ProfSvc - ok
15:51:06.0104 0x30d4 Psched - ok
15:51:06.0146 0x30d4 QWAVE - ok
15:51:06.0194 0x30d4 QWAVEdrv - ok
15:51:06.0238 0x30d4 RasAcd - ok
15:51:06.0436 0x30d4 RasAgileVpn - ok
15:51:06.0494 0x30d4 RasAuto - ok
15:51:06.0496 0x30d4 Rasl2tp - ok
15:51:06.0530 0x30d4 RasMan - ok
15:51:06.0532 0x30d4 RasPppoe - ok
15:51:06.0534 0x30d4 RasSstp - ok
15:51:06.0840 0x30d4 [ 5753CD9159718444F6D9E1634B984BF5,
A4D6FB6583724F3DDDBA768D7786EB7E3AB1C8074F66DA9462BBB159CDFA2868 ] Razer Game
Scanner Service C:\Program Files (x86)\Razer\Razer
Services\GSS\GameScannerService.exe
15:51:06.0864 0x30d4 Razer Game Scanner Service - ok
15:51:06.0885 0x30d4 rdbss - ok
15:51:06.0920 0x30d4 rdpbus - ok
15:51:06.0945 0x30d4 RDPDR - ok
15:51:06.0992 0x30d4 RdpVideoMiniport - ok
15:51:06.0994 0x30d4 rdyboost - ok
15:51:07.0013 0x30d4 ReFSv1 - ok
15:51:07.0029 0x30d4 RemoteAccess - ok
15:51:07.0058 0x30d4 RemoteRegistry - ok
15:51:07.0111 0x30d4 RetailDemo - ok
15:51:07.0135 0x30d4 RmSvc - ok
15:51:07.0161 0x30d4 RpcEptMapper - ok
15:51:07.0197 0x30d4 RpcLocator - ok
15:51:07.0261 0x30d4 RpcSs - ok
15:51:07.0278 0x30d4 rspndr - ok
15:51:07.0308 0x30d4 RtlWlanu - ok
15:51:07.0364 0x30d4 [ 30A186D6A2A2853EEFAD7011E212E41B,
367B8FCCF29470C9237FC1F0EAEB59AE51E33778BC9914A2730AC7DDBC84942B ] rzpmgrk
C:\WINDOWS\system32\drivers\rzpmgrk.sys
15:51:07.0366 0x30d4 rzpmgrk - ok
15:51:07.0424 0x30d4 [ F8A13D4413A93DD005FAD116CBD6B6F7,
8ED0C00920CE76E832701D45117ED00B12E20588CB6FE8039FBCCDFEF9841047 ] rzpnk
C:\WINDOWS\system32\drivers\rzpnk.sys
15:51:07.0427 0x30d4 rzpnk - ok
15:51:07.0462 0x30d4 [ 9B07BB39BE7B684492EDDF4AA7CB3149,
E9643182380BA2C02B6119B4A4E385C3C7E49B9C7F0B6A990E9E279F3D2BD648 ]
RZSURROUNDVADService C:\WINDOWS\system32\drivers\RzSurroundVAD.sys
15:51:07.0491 0x30d4 RZSURROUNDVADService - ok
15:51:08.0539 0x30d4 [ BE5ACB5C994335037E5780F8BF1B2E42,
80755FF3E34F08AD3701AACE0A813C53DFF15C7CA128501F683F5340AB4CDB8B ]
RzSurroundVADStreamingService C:\ProgramData\Razer\Synapse\Devices\Razer
Surround\Driver\RzSurroundVADStreamingService.exe
15:51:08.0685 0x30d4 RzSurroundVADStreamingService - ok
15:51:08.0724 0x30d4 s3cap - ok
15:51:08.0806 0x30d4 [ 08C0A0851713D2F6E768CBCCBE6C3762,
79AB6FCD9A9AC9778546C2029F5F32588A0CA12AA3D1C23C4B4D59A08E4DFA0C ] SaiMini
C:\WINDOWS\System32\drivers\SaiMini.sys
15:51:08.0817 0x30d4 SaiMini - ok
15:51:08.0882 0x30d4 [ B8E77D19061ADDE83C12C18E861FC00A,
E4E7E63570143A5096EDADD6931F10A046FDA9EC889FC92FDB47AE5BDDD93472 ] SaiNtBus
C:\WINDOWS\system32\drivers\SaiBus.sys
15:51:08.0894 0x30d4 SaiNtBus - ok
15:51:08.0926 0x30d4 SamSs - ok
15:51:09.0016 0x30d4 sbp2port - ok
15:51:09.0090 0x30d4 SCardSvr - ok
15:51:09.0156 0x30d4 ScDeviceEnum - ok
15:51:09.0223 0x30d4 scfilter - ok
15:51:09.0236 0x30d4 Schedule - ok
15:51:09.0263 0x30d4 scmbus - ok
15:51:09.0266 0x30d4 scmdisk0101 - ok
15:51:09.0334 0x30d4 SCPolicySvc - ok
15:51:09.0356 0x30d4 sdbus - ok
15:51:09.0407 0x30d4 SDRSVC - ok
15:51:09.0465 0x30d4 sdstor - ok
15:51:09.0480 0x30d4 seclogon - ok
15:51:09.0489 0x30d4 SENS - ok
15:51:09.0521 0x30d4 SensorDataService - ok
15:51:09.0565 0x30d4 SensorService - ok
15:51:09.0604 0x30d4 SensrSvc - ok
15:51:09.0607 0x30d4 SerCx - ok
15:51:09.0622 0x30d4 SerCx2 - ok
15:51:09.0634 0x30d4 Serenum - ok
15:51:09.0637 0x30d4 Serial - ok
15:51:09.0651 0x30d4 sermouse - ok
15:51:09.0681 0x30d4 SessionEnv - ok
15:51:09.0704 0x30d4 sfloppy - ok
15:51:09.0776 0x30d4 SharedAccess - ok
15:51:09.0816 0x30d4 ShellHWDetection - ok
15:51:09.0827 0x30d4 shpamsvc - ok
15:51:09.0830 0x30d4 SiSRaid2 - ok
15:51:09.0833 0x30d4 SiSRaid4 - ok
15:51:09.0868 0x30d4 smphost - ok
15:51:09.0926 0x30d4 SmsRouter - ok
15:51:09.0940 0x30d4 SNMPTRAP - ok
15:51:09.0983 0x30d4 spaceport - ok
15:51:09.0989 0x30d4 SpbCx - ok
15:51:10.0021 0x30d4 Spooler - ok
15:51:10.0047 0x30d4 sppsvc - ok
15:51:10.0062 0x30d4 srv - ok
15:51:10.0102 0x30d4 srv2 - ok
15:51:10.0105 0x30d4 srvnet - ok
15:51:10.0185 0x30d4 SSDPSRV - ok
15:51:10.0240 0x30d4 SstpSvc - ok
15:51:10.0329 0x30d4 [ 592FF34A2FD6C6351B8A3AA76B2C0A9E,
152B7472DE531AC45492F562DD470B2CE33F1EEF13BC78F26046AE5ABF54E32F ] ssudmdm
C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
15:51:10.0382 0x30d4 ssudmdm - ok
15:51:10.0419 0x30d4 StateRepository - ok
15:51:10.0691 0x30d4 [ 5CBCEB3FF7C232ACC8891C8197BF3353,
B1FE57C61E62B1FEC81B219551DAD68DC5DF17FC1603CDC0CBA097A3E687A027 ] Steam Client
Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
15:51:10.0713 0x30d4 Steam Client Service - ok
15:51:10.0742 0x30d4 stexstor - ok
15:51:10.0746 0x30d4 stisvc - ok
15:51:10.0808 0x30d4 storahci - ok
15:51:10.0828 0x30d4 storflt - ok
15:51:10.0847 0x30d4 stornvme - ok
15:51:10.0891 0x30d4 storqosflt - ok
15:51:10.0896 0x30d4 StorSvc - ok
15:51:10.0898 0x30d4 storufs - ok
15:51:10.0914 0x30d4 storvsc - ok
15:51:10.0953 0x30d4 svsvc - ok
15:51:10.0955 0x30d4 swenum - ok
15:51:10.0959 0x30d4 swprv - ok
15:51:10.0990 0x30d4 Synth3dVsc - ok
15:51:11.0030 0x30d4 SysMain - ok
15:51:11.0076 0x30d4 SystemEventsBroker - ok
15:51:11.0115 0x30d4 TabletInputService - ok
15:51:11.0160 0x30d4 [ 876F4A55F3F5319132E3AC8DC7E75EF8,
2A347F168D406700E83F8BE39BB74E656ADD487018A73F0F4316348CD03C9F36 ] tap0901t
C:\WINDOWS\System32\drivers\tap0901t.sys
15:51:11.0168 0x30d4 tap0901t - ok
15:51:11.0179 0x30d4 TapiSrv - ok
15:51:11.0244 0x30d4 Tcpip - ok
15:51:11.0248 0x30d4 Tcpip6 - ok
15:51:11.0275 0x30d4 tcpipreg - ok
15:51:11.0279 0x30d4 tdx - ok
15:51:11.0315 0x30d4 terminpt - ok
15:51:11.0322 0x30d4 TermService - ok
15:51:11.0363 0x30d4 Themes - ok
15:51:11.0401 0x30d4 TieringEngineService - ok
15:51:11.0427 0x30d4 tiledatamodelsvc - ok
15:51:11.0445 0x30d4 TimeBrokerSvc - ok
15:51:11.0448 0x30d4 TPM - ok
15:51:11.0483 0x30d4 TrkWks - ok
15:51:11.0568 0x30d4 TrustedInstaller - ok
15:51:11.0587 0x30d4 tsusbflt - ok
15:51:11.0609 0x30d4 TsUsbGD - ok
15:51:11.0612 0x30d4 tunnel - ok
15:51:11.0870 0x30d4 [ DA600BA3B6627C34982BCD201DE67DD0,
42DD43EFB03FE55EADC8488087F99C719A346C88D381F4BF3046A8A786CD0A61 ] TunngleService
C:\Program Files (x86)\Tunngle\TnglCtrl.exe
15:51:11.0883 0x30d4 TunngleService - ok
15:51:11.0899 0x30d4 tzautoupdate - ok
15:51:11.0903 0x30d4 UASPStor - ok
15:51:11.0906 0x30d4 UcmCx0101 - ok
15:51:11.0910 0x30d4 UcmTcpciCx0101 - ok
15:51:11.0913 0x30d4 UcmUcsi - ok
15:51:11.0936 0x30d4 Ucx01000 - ok
15:51:11.0939 0x30d4 UdeCx - ok
15:51:11.0943 0x30d4 udfs - ok
15:51:11.0961 0x30d4 UEFI - ok
15:51:11.0964 0x30d4 Ufx01000 - ok
15:51:11.0972 0x30d4 UfxChipidea - ok
15:51:11.0975 0x30d4 ufxsynopsys - ok
15:51:11.0995 0x30d4 UI0Detect - ok
15:51:11.0998 0x30d4 umbus - ok
15:51:12.0002 0x30d4 UmPass - ok
15:51:12.0017 0x30d4 UmRdpService - ok
15:51:12.0020 0x30d4 UnistoreSvc - ok
15:51:12.0024 0x30d4 upnphost - ok
15:51:12.0027 0x30d4 UrsChipidea - ok
15:51:12.0030 0x30d4 UrsCx01000 - ok
15:51:12.0034 0x30d4 UrsSynopsys - ok
15:51:12.0037 0x30d4 usbccgp - ok
15:51:12.0040 0x30d4 usbcir - ok
15:51:12.0043 0x30d4 usbehci - ok
15:51:12.0046 0x30d4 usbhub - ok
15:51:12.0081 0x30d4 USBHUB3 - ok
15:51:12.0083 0x30d4 usbohci - ok
15:51:12.0092 0x30d4 usbprint - ok
15:51:12.0095 0x30d4 usbser - ok
15:51:12.0098 0x30d4 USBSTOR - ok
15:51:12.0101 0x30d4 usbuhci - ok
15:51:12.0105 0x30d4 USBXHCI - ok
15:51:12.0130 0x30d4 UserDataSvc - ok
15:51:12.0135 0x30d4 UserManager - ok
15:51:12.0138 0x30d4 UsoSvc - ok
15:51:12.0141 0x30d4 VaultSvc - ok
15:51:12.0144 0x30d4 vdrvroot - ok
15:51:12.0187 0x30d4 vds - ok
15:51:12.0306 0x30d4 VerifierExt - ok
15:51:12.0308 0x30d4 vhdmp - ok
15:51:12.0311 0x30d4 vhf - ok
15:51:12.0360 0x30d4 vmbus - ok
15:51:12.0363 0x30d4 VMBusHID - ok
15:51:12.0365 0x30d4 vmgid - ok
15:51:12.0393 0x30d4 vmicguestinterface - ok
15:51:12.0396 0x30d4 vmicheartbeat - ok
15:51:12.0398 0x30d4 vmickvpexchange - ok
15:51:12.0490 0x30d4 vmicrdv - ok
15:51:12.0493 0x30d4 vmicshutdown - ok
15:51:12.0495 0x30d4 vmictimesync - ok
15:51:12.0498 0x30d4 vmicvmsession - ok
15:51:12.0501 0x30d4 vmicvss - ok
15:51:12.0504 0x30d4 volmgr - ok
15:51:12.0507 0x30d4 volmgrx - ok
15:51:12.0516 0x30d4 volsnap - ok
15:51:12.0532 0x30d4 volume - ok
15:51:12.0567 0x30d4 vpci - ok
15:51:12.0661 0x30d4 vsmraid - ok
15:51:12.0701 0x30d4 VSS - ok
15:51:12.0704 0x30d4 VSTXRAID - ok
15:51:12.0738 0x30d4 vwifibus - ok
15:51:12.0760 0x30d4 vwififlt - ok
15:51:12.0763 0x30d4 vwifimp - ok
15:51:12.0769 0x30d4 W32Time - ok
15:51:12.0782 0x30d4 WacomPen - ok
15:51:12.0867 0x30d4 WalletService - ok
15:51:13.0358 0x30d4 Wallpaper Engine Service - ok
15:51:13.0361 0x30d4 wanarp - ok
15:51:13.0364 0x30d4 wanarpv6 - ok
15:51:13.0417 0x30d4 wbengine - ok
15:51:13.0496 0x30d4 WbioSrvc - ok
15:51:13.0499 0x30d4 wcifs - ok
15:51:13.0573 0x30d4 Wcmsvc - ok
15:51:13.0642 0x30d4 wcncsvc - ok
15:51:13.0645 0x30d4 wcnfs - ok
15:51:13.0701 0x30d4 WdBoot - ok
15:51:13.0703 0x30d4 Wdf01000 - ok
15:51:13.0706 0x30d4 WdFilter - ok
15:51:13.0710 0x30d4 WdiServiceHost - ok
15:51:13.0714 0x30d4 WdiSystemHost - ok
15:51:13.0766 0x30d4 wdiwifi - ok
15:51:13.0820 0x30d4 WdNisDrv - ok
15:51:13.0920 0x30d4 WdNisSvc - ok
15:51:13.0938 0x30d4 WebClient - ok
15:51:13.0941 0x30d4 Wecsvc - ok
15:51:13.0989 0x30d4 WEPHOSTSVC - ok
15:51:14.0025 0x30d4 wercplsupport - ok
15:51:14.0028 0x30d4 WerSvc - ok
15:51:14.0031 0x30d4 WFPLWFS - ok
15:51:14.0035 0x30d4 WiaRpc - ok
15:51:14.0038 0x30d4 WIMMount - ok
15:51:14.0040 0x30d4 WinDefend - ok
15:51:14.0079 0x30d4 WindowsTrustedRT - ok
15:51:14.0082 0x30d4 WindowsTrustedRTProxy - ok
15:51:14.0100 0x30d4 WinHttpAutoProxySvc - ok
15:51:14.0150 0x30d4 WinMad - ok
15:51:14.0330 0x30d4 Winmgmt - ok
15:51:14.0347 0x30d4 WinRM - ok
15:51:14.0353 0x30d4 WINUSB - ok
15:51:14.0357 0x30d4 WinVerbs - ok
15:51:14.0408 0x30d4 wisvc - ok
15:51:14.0430 0x30d4 WlanSvc - ok
15:51:14.0451 0x30d4 wlidsvc - ok
15:51:14.0455 0x30d4 WmiAcpi - ok
15:51:14.0466 0x30d4 wmiApSrv - ok
15:51:14.0469 0x30d4 WMPNetworkSvc - ok
15:51:14.0479 0x30d4 Wof - ok
15:51:14.0517 0x30d4 workfolderssvc - ok
15:51:14.0564 0x30d4 WPDBusEnum - ok
15:51:14.0568 0x30d4 WpdUpFltr - ok
15:51:14.0571 0x30d4 WpnService - ok
15:51:14.0575 0x30d4 WpnUserService - ok
15:51:14.0597 0x30d4 ws2ifsl - ok
15:51:14.0601 0x30d4 wscsvc - ok
15:51:14.0605 0x30d4 WSearch - ok
15:51:14.0674 0x30d4 wuauserv - ok
15:51:14.0677 0x30d4 WudfPf - ok
15:51:14.0687 0x30d4 WUDFRd - ok
15:51:14.0741 0x30d4 wudfsvc - ok
15:51:14.0744 0x30d4 WUDFWpdMtp - ok
15:51:14.0789 0x30d4 WwanSvc - ok
15:51:14.0846 0x30d4 XblAuthManager - ok
15:51:14.0863 0x30d4 XblGameSave - ok
15:51:14.0882 0x30d4 xboxgip - ok
15:51:14.0906 0x30d4 XboxNetApiSvc - ok
15:51:14.0978 0x30d4 xinputhid - ok
15:51:15.0003 0x30d4 [ 377F3E3467A8BFA3CDC921AD6425D513,
699271DA1D63E90FE1F9FE8AF3A8789CA588A0B7A2AFF5899EBA443361E041A5 ] XSplit_Dummy
C:\WINDOWS\system32\drivers\xspltspk.sys
15:51:15.0005 0x30d4 XSplit_Dummy - ok
15:51:15.0052 0x30d4 [ 5AA532BBAC7E34186EDFF24F72BCD61B,
623D18A2FC365ABB915D2B60F10CB85ACD4E6540050D0EC1CDBA54B6568436EA ] xusb21
C:\WINDOWS\system32\DRIVERS\xusb21.sys
15:51:15.0055 0x30d4 xusb21 - ok
15:51:15.0138 0x30d4 [ 398F51714E06FF2DFCD2EFE26F0FC59C,
4B2205612038A48E9FD96FC40110D2370429892FFFFD46801CC51523F7261CDD ] _hid_0738_1703
C:\WINDOWS\system32\DRIVERS\_hid_0738_1703.sys
15:51:15.0179 0x30d4 _hid_0738_1703 - ok
15:51:15.0203 0x30d4 [ 5E1CAEF1D35801AC61AD154DF33B91AF,
6E45D68DF4680EDB0085D372D9C69C5A00C988D08F341857334023F9A5938FE9 ] _usb_0738_1703
C:\WINDOWS\System32\drivers\_usb_0738_1703.sys
15:51:15.0242 0x30d4 _usb_0738_1703 - ok
15:51:15.0242 0x30d4 ================ Scan global ===============================
15:51:15.0354 0x30d4 [ Global ] - ok
15:51:15.0355 0x30d4 ================ Scan MBR ==================================
15:51:15.0379 0x30d4 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:51:16.0617 0x30d4 \Device\Harddisk0\DR0 - ok
15:51:16.0617 0x30d4 ================ Scan VBR ==================================
15:51:16.0619 0x30d4 [ 83384ED1BB5F612982C875D09ADB4902 ]
\Device\Harddisk0\DR0\Partition1
15:51:16.0620 0x30d4 \Device\Harddisk0\DR0\Partition1 - ok
15:51:16.0622 0x30d4 [ 9B96BCB93D1DB612A41F1330228A9DE7 ]
\Device\Harddisk0\DR0\Partition2
15:51:16.0623 0x30d4 \Device\Harddisk0\DR0\Partition2 - ok
15:51:16.0623 0x30d4 ================ Scan generic autorun ======================
15:51:17.0404 0x30d4 [ 22EBD5AE3B3220D713E544D1D3AB3FEE,
9EF058B096DAA5C6242FBEB3DF509108180B1EB1EA252E63C437CF6C1B743BE0 ] C:\Program
Files\Realtek\Audio\HDA\RtkNGUI64.exe
15:51:17.0513 0x30d4 RTHDVCPL - ok
15:51:17.0709 0x30d4 [ C9900177A954E22C84A696075A40A173,
33E32173FF811DF1B687916CB3CADAE2907DAF5AC4B80F559039D3B61553C48F ] C:\Program
Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
15:51:17.0709 0x30d4 IAStorIcon - ok
15:51:17.0870 0x30d4 [ ED43758BF94B8A5221D69F1B7F63F13D,
F6E7418823E45085F4D4F50DD25A55ED517C0A335C6C2F69A1139B30677D3DA9 ] C:\Program
Files\Microsoft Xbox 360 Accessories\XboxStat.exe
15:51:17.0881 0x30d4 XboxStat - ok
15:51:17.0976 0x30d4 ShadowPlay - ok
15:51:17.0977 0x30d4 WindowsDefender - ok
15:51:18.0710 0x30d4 [ A6A21A7D544675E98C040DA18904CF50,
AACB578C297C7AC9FEBDAB4AD20235E5CFF6E3F260E76E6AE18D43DC57D69672 ] C:\PROGRAM
FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe
15:51:18.0746 0x30d4 Malwarebytes TrayApp - ok
15:51:19.0291 0x30d4 [ D0B1DA5382433AFBF52DE8815298EB0C,
A326D01783359CCA1054210D82F17533638A9769A7A08C2BD0621DE016909359 ] C:\Program Files
(x86)\ROCCAT\Isku Keyboard\IskuMonitor.EXE
15:51:19.0297 0x30d4 RoccatIsku - ok
15:51:20.0926 0x30d4 OneDriveSetup - ok
15:51:20.0928 0x30d4 OneDriveSetup - ok
15:51:21.0586 0x30d4 [ FC85A7D1697C254FB554901E0F6ED169,
CE09FE338C7C04FB04FBCA7E68A86DA7B4CCC73DA8847A4654BDEF3EB1D93682 ] C:\Program Files
(x86)\Thunder Master\THPanel.exe
15:51:21.0613 0x30d4 THPanel - ok
15:51:22.0414 0x30d4 [ BF8D7240B300E3D9916788ADEEC383BD,
07CCE47A43BCFA9A0D3A7B5D03EA11FD05CFC593BE8AA1EAB6B4A51ADA8F59DA ] C:\Program Files
(x86)\Steam\steam.exe
15:51:22.0452 0x30d4 Steam - ok
15:51:22.0969 0x30d4 [ FE3548DF7A35F24567DBD12D13F75CE5,
07B00468A4F14CED37DC3BEFED85B5E3DBCF98AD61110A58305C303DF12EC77C ] C:\Program Files
(x86)\GalaxyClient\GalaxyClient.exe
15:51:23.0078 0x30d4 GalaxyClient - ok
15:51:23.0803 0x30d4 [ AAE92457F50F4DD74E2D502ADB9549EE,
70C8FBE410FE388D6B85334215EBE3393C16E8F8B19F5A8BA50DB6DF23196D50 ] C:\Users\X-
Ray2302\AppData\Local\Microsoft\OneDrive\OneDrive.exe
15:51:23.0848 0x30d4 OneDrive - ok
15:51:24.0731 0x30d4 [ 45231AB2B2E4B5ACC02FEC0F9B73820C,
96B1840759F0BFF4A657F69AF69DE28CB25CDADDDBBC16C02984E27E8DC1C7E7 ] C:\Program Files
(x86)\Razer\Comms\RazerComms.exe
15:51:24.0947 0x30d4 Razer Comms - ok
15:51:25.0334 0x30d4 [ AA7DDCE2175C6D58E83966DEF236F732,
2EA65CDD5096A0A88FAB788CEE29A6B0161856061C9C625D27A58BA987E1E38E ]
C:\Games\World_of_Tanks\WargamingGameUpdater.exe
15:51:25.0382 0x30d4 World of Tanks - ok
15:51:26.0013 0x30d4 [ BBC048995985EB7CA9B2E8EFF196E3BB,
FF10C2247A036DD6579D2AF76EF2DA4F98D8F4BA69167EF4B5D2E0EDB00F2DF9 ]
C:\Games\World_of_Warships\WargamingGameUpdater.exe
15:51:26.0074 0x30d4 World of Warships - ok
15:51:26.0192 0x30d4 Discord - ok
15:51:27.0021 0x30d4 [ 10DF21BBF04806E18C60E59C56419639,
2F319DA9FAF46872A17207C57C66ECA1B843B3AB88063A2D672CD66D806DA8B8 ] C:\Program Files
(x86)\Gyazo\GyStation.exe
15:51:27.0082 0x30d4 Gyazo - ok
15:51:27.0119 0x30d4 Gaijin.Net Agent - ok
15:51:27.0371 0x30d4 [ 38372AA4CC9FBD0EB7A26FC7B5F24562,
C70B8CBB2AC962B343535454E4F2BCB3E48D83A04792C64BC768D59B3C1BF403 ] C:\Program Files
(x86)\Google\Chrome\Application\chrome.exe
15:51:27.0383 0x30d4 GoogleChromeAutoLaunch_04E65FC0B51E889B8264C5882ED1EC96 - ok
15:51:27.0385 0x30d4 Waiting for KSN requests completion. In queue: 9
15:51:28.0621 0x30d4 AV detected via SS2: Windows Defender, C:\Program
Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x61100 ( enabled :
updated )
15:51:28.0623 0x30d4 Win FW state via NFP2: enabled ( trusted )
15:51:28.0706 0x30d4 ============================================================
15:51:28.0706 0x30d4 Scan finished
15:51:28.0706 0x30d4 ============================================================
15:51:28.0716 0x10ac Detected object count: 0
15:51:28.0716 0x10ac Actual detected object count: 0