Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Possible Rootkit and TDSS infection, Google redirecting


  • This topic is locked This topic is locked
24 replies to this topic

#1 JamAli

JamAli

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:09:37 AM

Posted 22 June 2014 - 09:01 PM

Good day,

 

   Tech level: amateur (I apologize in advance for any incorrect term usage)

 

   Problem: For approximately 2 or 3 months, sometimes, when I click on a link inside an email or on a legitimate website I get carried to somewhere I have no intention of going.

 

  Tab title: 'Special' then changes to 'canadaalltax'. This is recently. Previously it used to be some ads, and occasionally on attempting to close a box would pop up asking if I was sure.

 

I never click on anything on these pages. If I press back page (if it's an option) I go back to the non-offending website. 

 

  Tried: I couldn't understand the google help pages, and went to another website which said to try 'Malware bytes anti malware' and 'Adblock Plus'. I used both. ABP only caused the 'Special' page to come up blank - but I was still being redirected. Malware bytes seemed to work for a while - 2 days - but the problem started again.  I update to latest google chrome - no help there. I then tried TDSSkiller.exe which said I had nothing wrong.

 

  Blunder: I went to another website that suggested Combofix and I was in the middle when I read the part that said - only if a helper has told you to use it. So, I already have the Combofix log. I'm sorry about that. I haven't done anything else after that except to sign up here to get the help the proper way I should have in the first place.

 

  Specs: Windows 7.  SP1.  Processor: Intel® Core™ i7 CPU     930 @ 2.80GHz  2.80GHz    Installed memory: 9.00GB    System type: 64-bit Operating system

 

Thanks,

 

 

  DDS log:

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 11.0.9600.17126  BrowserJavaVersion: 10.21.2
Run by Aleiyia at 20:31:29 on 2014-06-22
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.9207.6622 [GMT -5:00]
.
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\atieclxx.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
C:\Windows\System32\svchost.exe -k HPZ12
C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\PDF Architect\HelperService.exe
C:\Program Files (x86)\PDF Architect\ConversionService.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files\MozyHome\mozybackup.exe
C:\Program Files\MozyHome\mozybackup.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\explorer.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com
mStart Page = hxxp://www.google.com
uProxyOverride = localhost;*.local
BHO: HP Print Enhancer: {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
BHO: McAfee Phishing Filter: {27B4851A-3207-45A2-B947-BE8AFE6163AB} - 
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll
BHO: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
BHO: PDF Architect Helper: {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL
BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\office15\GROOVEEX.DLL
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: HP Smart BHO Class: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
TB: PDF Architect Toolbar: {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
uRun: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
uRun: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
uRun: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [THX Audio Control Panel] "C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe" /r
mRun: [UpdReg] C:\Windows\UpdReg.EXE
mRun: [BDRegion] c:\Program Files (x86)\Cyberlink\Shared Files\brs.exe
mRun: [RoxWatchTray] "C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe"
mRun: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [AccuWeatherWidget] "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj" --startup
mRun: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
mRun: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BLOGGI~1.LNK - C:\Program Files (x86)\Sony\Bloggie Software\BGVolumeWatcher.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\HPDIGI~1.LNK - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MOZYHO~1.LNK - C:\Program Files\MozyHome\mozystat.exe
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dll
IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
TCP: NameServer = 65.183.0.76 65.183.0.86
TCP: Interfaces\{17783525-DBA8-4F56-8DCC-63786A6B0E17} : DHCPNameServer = 65.183.0.76 65.183.0.86
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: McAfee Phishing Filter: {27B4851A-3207-45A2-B947-BE8AFE6163AB} - 
x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll
x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL
x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
x64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - LocalServer32 - <no file>
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [RunDLLEntry_THXCfg] C:\Windows\System32\RunDLL32.exe C:\Windows\System32\THXCfg64.dll,RunDLLEntry THXCfg64
x64-Run: [RunDLLEntry_EptMon] C:\Windows\System32\RunDLL32.exe C:\Windows\System32\EptMon64.dll,RunDLLEntry EptMon64
x64-Run: [Logitech Download Assistant] C:\Windows\System32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
x64-Run: [DellStage] "C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj" --startup
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll
x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
x64-DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
x64-DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - <orphaned>
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: GoToAssist - C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Aleiyia\AppData\Roaming\Mozilla\Firefox\Profiles\87y7diox.default\
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Musicnotes\npmusicn.dll
FF - plugin: C:\Program Files (x86)\Musicnotes\NPSibelius.dll
FF - plugin: c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll
FF - plugin: C:\Program Files (x86)\Sony\Bloggie Software\npsome.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL
FF - plugin: C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll
FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
FF - plugin: C:\Users\Aleiyia\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
FF - ExtSQL: !HIDDEN! 2011-11-16 18:18; smartwebprinting@hp.com; C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2013-3-19 65776]
R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2013-3-19 208416]
R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2011-2-22 55856]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswsnx.sys [2013-2-11 1039096]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswsp.sys [2013-2-11 423240]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2013-10-8 239616]
R2 aswHwid;avast! HardwareID;C:\Windows\System32\drivers\aswHwid.sys [2014-5-14 29208]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2013-2-11 79184]
R2 aswStm;aswStm;C:\Windows\System32\drivers\aswstm.sys [2014-1-8 85328]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-5-14 50344]
R2 ClickToRunSvc;Microsoft Office ClickToRun Service;C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe [2014-3-7 2279608]
R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-2-22 13336]
R2 NOBU;Dell DataSafe Online;C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe [2010-8-25 2823000]
R2 PDF Architect Helper Service;PDF Architect Helper Service;C:\Program Files (x86)\PDF Architect\HelperService.exe [2013-4-8 1320496]
R2 PDF Architect Service;PDF Architect Service;C:\Program Files (x86)\PDF Architect\ConversionService.exe [2013-4-8 799280]
R2 SftService;SoftThinks Agent Service;C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe [2011-2-22 1692480]
R2 TeamViewer6;TeamViewer 6;C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-11-6 2358656]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2013-2-14 96768]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\RtsUStor.sys [2011-2-22 242720]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2011-2-22 295424]
S2 CLKMSVC10_9EC60124;CyberLink Product - 2011/02/22 16:18:01;C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [2010-4-26 232944]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe --> C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [?]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S2 RoxWatch12;Roxio Hard Drive Watcher 12;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-9-4 219632]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 dgderdrv;dgderdrv;C:\Windows\System32\drivers\dgderdrv.sys [2010-5-25 20568]
S3 FsUsbExDisk;FsUsbExDisk;C:\Windows\SysWOW64\FsUsbExDisk.Sys [2013-12-30 37344]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-6-10 111616]
S3 RoxMediaDB12OEM;RoxMediaDB12OEM;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-9-4 1116656]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);C:\Windows\System32\drivers\ssadbus.sys [2013-12-30 169288]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);C:\Windows\System32\drivers\ssadmdfl.sys [2013-12-30 21320]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;C:\Windows\System32\drivers\ssadmdm.sys [2013-12-30 188232]
S3 TFsExDisk;TFsExDisk;C:\Windows\System32\drivers\TFsExDisk.sys [2011-11-29 16392]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2011-11-12 59392]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-11-8 1255736]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2014-06-23 01:07:33 -------- d-----w- C:\$RECYCLE.BIN
2014-06-23 00:49:59 98816 ----a-w- C:\Windows\sed.exe
2014-06-23 00:49:59 256000 ----a-w- C:\Windows\PEV.exe
2014-06-23 00:49:59 208896 ----a-w- C:\Windows\MBR.exe
2014-06-23 00:49:55 -------- d-----w- C:\ComboFix
2014-06-20 15:49:23 10779000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A5F942D1-9DB8-45F7-9CD3-78CD104833AB}\mpengine.dll
2014-06-16 22:16:50 -------- d-sh--w- C:\Users\Aleiyia\AppData\Local\EmieUserList
2014-06-16 22:16:50 -------- d-sh--w- C:\Users\Aleiyia\AppData\Local\EmieSiteList
2014-06-11 03:40:10 801280 ----a-w- C:\Windows\System32\usp10.dll
2014-06-11 03:40:10 626688 ----a-w- C:\Windows\SysWow64\usp10.dll
2014-06-11 03:40:02 2048 ----a-w- C:\Windows\SysWow64\msxml6r.dll
2014-06-11 03:40:02 2048 ----a-w- C:\Windows\System32\msxml6r.dll
2014-06-11 03:40:02 2002432 ----a-w- C:\Windows\System32\msxml6.dll
2014-06-11 03:40:02 1882112 ----a-w- C:\Windows\System32\msxml3.dll
2014-06-11 03:40:02 1389056 ----a-w- C:\Windows\SysWow64\msxml6.dll
2014-06-11 03:40:02 1237504 ----a-w- C:\Windows\SysWow64\msxml3.dll
2014-06-11 03:40:01 288192 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
2014-06-11 03:40:01 2048 ----a-w- C:\Windows\SysWow64\msxml3r.dll
2014-06-11 03:40:01 2048 ----a-w- C:\Windows\System32\msxml3r.dll
2014-06-11 03:40:01 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys
.
==================== Find3M  ====================
.
2014-06-08 09:13:05 506368 ----a-w- C:\Windows\System32\aepdu.dll
2014-06-08 09:08:04 424448 ----a-w- C:\Windows\System32\aeinv.dll
2014-05-30 10:02:37 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
2014-05-30 10:02:09 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
2014-05-30 09:39:43 548352 ----a-w- C:\Windows\System32\vbscript.dll
2014-05-30 09:39:23 66048 ----a-w- C:\Windows\System32\iesetup.dll
2014-05-30 09:38:29 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
2014-05-30 09:21:23 139264 ----a-w- C:\Windows\System32\ieUnatt.exe
2014-05-30 09:21:05 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe
2014-05-30 09:20:36 752640 ----a-w- C:\Windows\System32\jscript9diag.dll
2014-05-30 09:11:24 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2014-05-30 09:08:22 5782528 ----a-w- C:\Windows\System32\jscript9.dll
2014-05-30 09:02:39 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2014-05-30 08:55:36 38400 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll
2014-05-30 08:44:28 455168 ----a-w- C:\Windows\SysWow64\vbscript.dll
2014-05-30 08:43:06 61952 ----a-w- C:\Windows\SysWow64\iesetup.dll
2014-05-30 08:42:16 51200 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
2014-05-30 08:28:33 112128 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2014-05-30 08:27:56 592896 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
2014-05-30 08:24:19 1249280 ----a-w- C:\Windows\System32\mshtmlmedia.dll
2014-05-30 08:23:22 2040832 ----a-w- C:\Windows\System32\inetcpl.cpl
2014-05-30 08:10:46 32256 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2014-05-30 07:56:56 2266112 ----a-w- C:\Windows\System32\wininet.dll
2014-05-30 07:56:50 4244992 ----a-w- C:\Windows\SysWow64\jscript9.dll
2014-05-30 07:50:09 1068032 ----a-w- C:\Windows\SysWow64\mshtmlmedia.dll
2014-05-30 07:49:38 1964544 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2014-05-30 07:21:10 1790976 ----a-w- C:\Windows\SysWow64\wininet.dll
2014-05-28 23:03:59 119512 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-05-15 10:21:30 1039096 ----a-w- C:\Windows\System32\drivers\aswsnx.sys
2014-05-15 10:21:29 85328 ----a-w- C:\Windows\System32\drivers\aswstm.sys
2014-05-14 10:26:51 79184 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2014-05-14 10:26:51 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
2014-05-14 10:26:51 208416 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
2014-05-14 10:26:50 93568 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2014-05-14 10:26:50 29208 ----a-w- C:\Windows\System32\drivers\aswHwid.sys
2014-05-14 10:26:47 43152 ----a-w- C:\Windows\avastSS.scr
2014-05-14 00:05:15 70832 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-05-14 00:05:15 692400 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-04-12 02:22:05 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2014-04-12 02:22:05 155072 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2014-04-12 02:19:38 29184 ----a-w- C:\Windows\System32\sspisrv.dll
2014-04-12 02:19:38 136192 ----a-w- C:\Windows\System32\sspicli.dll
2014-04-12 02:19:37 28160 ----a-w- C:\Windows\System32\secur32.dll
2014-04-12 02:19:32 1460736 ----a-w- C:\Windows\System32\lsasrv.dll
2014-04-12 02:19:05 31232 ----a-w- C:\Windows\System32\lsass.exe
2014-04-12 02:12:06 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2014-04-12 02:10:56 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2014-04-03 14:51:16 63192 ----a-w- C:\Windows\System32\drivers\mwac.sys
2014-04-03 14:51:04 88280 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-04-03 14:50:58 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-03-31 14:35:08 270496 ------w- C:\Windows\System32\MpSigStub.exe
2011-11-16 22:56:16 380301136 ----a-w- C:\Program Files\AIO_CDB_NonNet_Full_Win_WW_130_141.exe
2011-11-16 22:20:55 1912272 ----a-w- C:\Program Files (x86)\HPPIW.EXE
2011-11-10 01:28:45 14578248 ----a-w- C:\Program Files (x86)\Firefox Setup 8.0.exe
.
============= FINISH: 20:31:43.83 ===============
 

Attached Files



BC AdBot (Login to Remove)

 


m

#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,549 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:37 AM

Posted 27 June 2014 - 09:05 PM

Please disregard.


Edited by JSntgRvr, 03 July 2014 - 08:18 PM.


#3 JamAli

JamAli
  • Topic Starter

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:09:37 AM

Posted 27 June 2014 - 09:57 PM

Good day,

 Help: Still required

 

 Problem: Please see original post except I should have written: Tab says 'Special' and web address redirects to 'canadaalltax'

 

 DDS(new): [pasted]

 

 Original Windows CD/DVD: not available

 

 Thanks,

 

 DDS (new) Log:

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 11.0.9600.17126  BrowserJavaVersion: 10.21.2
Run by Aleiyia at 21:45:45 on 2014-06-27
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.9207.6264 [GMT -5:00]
.
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\atieclxx.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
C:\Windows\System32\svchost.exe -k HPZ12
C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\PDF Architect\HelperService.exe
C:\Program Files (x86)\PDF Architect\ConversionService.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Windows\System32\rundll32.exe
C:\Windows\System32\rundll32.exe
C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files (x86)\Samsung\Kies\Kies.exe
C:\Windows\System32\StikyNot.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Sony\Bloggie Software\BGVolumeWatcher.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\CyberLink\Shared files\brs.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\MozyHome\mozystat.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files (x86)\Dell Stage\Dell Stage\stage_secondary.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\Common Files\Steam\SteamService.exe
C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
C:\Program Files\MozyHome\mozybackup.exe
C:\Program Files\MozyHome\mozybackup.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\My Dell\uaclauncher.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com
mStart Page = hxxp://www.google.com
uProxyOverride = localhost;*.local
BHO: HP Print Enhancer: {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
BHO: McAfee Phishing Filter: {27B4851A-3207-45A2-B947-BE8AFE6163AB} - 
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll
BHO: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
BHO: PDF Architect Helper: {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\office15\URLREDIR.DLL
BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\office15\GROOVEEX.DLL
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: HP Smart BHO Class: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
TB: PDF Architect Toolbar: {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
uRun: [Steam] "C:\Program Files (x86)\Steam\Steam.exe" -silent
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
uRun: [KiesPDLR] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
uRun: [KiesPreload] C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
uRun: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [THX Audio Control Panel] "C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe" /r
mRun: [UpdReg] C:\Windows\UpdReg.EXE
mRun: [BDRegion] c:\Program Files (x86)\Cyberlink\Shared Files\brs.exe
mRun: [RoxWatchTray] "C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe"
mRun: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [AccuWeatherWidget] "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\start.umj" --startup
mRun: [DivXMediaServer] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
mRun: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BLOGGI~1.LNK - C:\Program Files (x86)\Sony\Bloggie Software\BGVolumeWatcher.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\HPDIGI~1.LNK - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\MOZYHO~1.LNK - C:\Program Files\MozyHome\mozystat.exe
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIE.dll
IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\office15\OCHelper.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\office15\ONBttnIELinkedNotes.dll
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
TCP: NameServer = 65.183.0.76 65.183.0.86
TCP: Interfaces\{17783525-DBA8-4F56-8DCC-63786A6B0E17} : DHCPNameServer = 65.183.0.76 65.183.0.86
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\office15\MSOSB.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: McAfee Phishing Filter: {27B4851A-3207-45A2-B947-BE8AFE6163AB} - 
x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll
x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL
x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
x64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - LocalServer32 - <no file>
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
x64-Run: [RunDLLEntry_THXCfg] C:\Windows\System32\RunDLL32.exe C:\Windows\System32\THXCfg64.dll,RunDLLEntry THXCfg64
x64-Run: [RunDLLEntry_EptMon] C:\Windows\System32\RunDLL32.exe C:\Windows\System32\EptMon64.dll,RunDLLEntry EptMon64
x64-Run: [Logitech Download Assistant] C:\Windows\System32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
x64-Run: [DellStage] "C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe" "C:\Program Files (x86)\Dell Stage\Dell Stage\start.umj" --startup
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIE.dll
x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
x64-DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
x64-DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - <orphaned>
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-Notify: GoToAssist - C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Aleiyia\AppData\Roaming\Mozilla\Firefox\Profiles\87y7diox.default\
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Musicnotes\npmusicn.dll
FF - plugin: C:\Program Files (x86)\Musicnotes\NPSibelius.dll
FF - plugin: c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll
FF - plugin: C:\Program Files (x86)\Sony\Bloggie Software\npsome.dll
FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL
FF - plugin: C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll
FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
FF - plugin: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
FF - plugin: C:\Users\Aleiyia\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll
FF - ExtSQL: !HIDDEN! 2011-11-16 18:18; smartwebprinting@hp.com; C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2013-3-19 65776]
R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2013-3-19 208416]
R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2011-2-22 55856]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswsnx.sys [2013-2-11 1039096]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswsp.sys [2013-2-11 423240]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2013-10-8 239616]
R2 aswHwid;avast! HardwareID;C:\Windows\System32\drivers\aswHwid.sys [2014-5-14 29208]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2013-2-11 79184]
R2 aswStm;aswStm;C:\Windows\System32\drivers\aswstm.sys [2014-1-8 85328]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-5-14 50344]
R2 ClickToRunSvc;Microsoft Office ClickToRun Service;C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe [2014-3-7 2279608]
R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-2-22 13336]
R2 NOBU;Dell DataSafe Online;C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe [2010-8-25 2823000]
R2 PDF Architect Helper Service;PDF Architect Helper Service;C:\Program Files (x86)\PDF Architect\HelperService.exe [2013-4-8 1320496]
R2 PDF Architect Service;PDF Architect Service;C:\Program Files (x86)\PDF Architect\ConversionService.exe [2013-4-8 799280]
R2 SftService;SoftThinks Agent Service;C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe [2011-2-22 1692480]
R2 TeamViewer6;TeamViewer 6;C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-11-6 2358656]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2013-2-14 96768]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\RtsUStor.sys [2011-2-22 242720]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2011-2-22 295424]
S2 CLKMSVC10_9EC60124;CyberLink Product - 2011/02/22 16:18:01;C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [2010-4-26 232944]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe --> C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [?]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S2 RoxWatch12;Roxio Hard Drive Watcher 12;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe [2010-9-4 219632]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 dgderdrv;dgderdrv;C:\Windows\System32\drivers\dgderdrv.sys [2010-5-25 20568]
S3 FsUsbExDisk;FsUsbExDisk;C:\Windows\SysWOW64\FsUsbExDisk.Sys [2013-12-30 37344]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-6-10 111616]
S3 RoxMediaDB12OEM;RoxMediaDB12OEM;C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe [2010-9-4 1116656]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);C:\Windows\System32\drivers\ssadbus.sys [2013-12-30 169288]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);C:\Windows\System32\drivers\ssadmdfl.sys [2013-12-30 21320]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;C:\Windows\System32\drivers\ssadmdm.sys [2013-12-30 188232]
S3 TFsExDisk;TFsExDisk;C:\Windows\System32\drivers\TFsExDisk.sys [2011-11-29 16392]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2011-11-12 59392]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2011-11-8 1255736]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]
.
=============== Created Last 30 ================
.
2014-06-28 01:56:20 10779000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{A104F7CB-4C7B-4E25-8009-08CEFE97AEF2}\mpengine.dll
2014-06-24 02:50:05 -------- d-----w- C:\Users\Aleiyia\AppData\Roaming\Rainbow
2014-06-24 01:53:14 -------- d-----w- C:\Users\Aleiyia\AppData\Roaming\island_tribe_4_realore_bfg_en
2014-06-24 00:52:00 -------- d-----w- C:\Users\Aleiyia\AppData\Roaming\GameInvest
2014-06-23 23:51:36 -------- d-----w- C:\Users\Aleiyia\AppData\Roaming\Artifex Mundi
2014-06-23 23:06:54 -------- d-----w- C:\Users\Aleiyia\AppData\Roaming\VisualShape
2014-06-23 23:06:54 -------- d-----w- C:\ProgramData\VisualShape
2014-06-23 22:13:28 -------- d-----w- C:\Program Files (x86)\Royal Envoy 3
2014-06-23 22:11:28 -------- d-----w- C:\Program Files (x86)\Youda Camper
2014-06-23 22:10:34 -------- d-----w- C:\Program Files (x86)\Grim Legends - The Forsaken Bride
2014-06-23 22:05:25 -------- d-----w- C:\Program Files (x86)\Hospital Hustle
2014-06-23 22:01:15 -------- d-----w- C:\Program Files (x86)\The Beardless Wizard
2014-06-23 21:56:28 -------- d-----w- C:\Program Files (x86)\Farm to Fork
2014-06-23 21:54:39 -------- d-----w- C:\Program Files (x86)\My Kingdom for the Princess IV
2014-06-23 01:07:33 -------- d-----w- C:\$RECYCLE.BIN
2014-06-23 00:49:59 98816 ----a-w- C:\Windows\sed.exe
2014-06-23 00:49:59 256000 ----a-w- C:\Windows\PEV.exe
2014-06-23 00:49:59 208896 ----a-w- C:\Windows\MBR.exe
2014-06-23 00:49:55 -------- d-----w- C:\ComboFix
2014-06-16 22:16:50 -------- d-sh--w- C:\Users\Aleiyia\AppData\Local\EmieUserList
2014-06-16 22:16:50 -------- d-sh--w- C:\Users\Aleiyia\AppData\Local\EmieSiteList
2014-06-11 03:40:10 801280 ----a-w- C:\Windows\System32\usp10.dll
2014-06-11 03:40:10 626688 ----a-w- C:\Windows\SysWow64\usp10.dll
2014-06-11 03:40:02 2048 ----a-w- C:\Windows\SysWow64\msxml6r.dll
2014-06-11 03:40:02 2048 ----a-w- C:\Windows\System32\msxml6r.dll
2014-06-11 03:40:02 2002432 ----a-w- C:\Windows\System32\msxml6.dll
2014-06-11 03:40:02 1882112 ----a-w- C:\Windows\System32\msxml3.dll
2014-06-11 03:40:02 1389056 ----a-w- C:\Windows\SysWow64\msxml6.dll
2014-06-11 03:40:02 1237504 ----a-w- C:\Windows\SysWow64\msxml3.dll
2014-06-11 03:40:01 288192 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
2014-06-11 03:40:01 2048 ----a-w- C:\Windows\SysWow64\msxml3r.dll
2014-06-11 03:40:01 2048 ----a-w- C:\Windows\System32\msxml3r.dll
2014-06-11 03:40:01 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys
.
==================== Find3M  ====================
.
2014-06-27 02:28:31 119512 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-06-26 11:00:50 71344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-06-26 11:00:50 699056 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-06-08 09:13:05 506368 ----a-w- C:\Windows\System32\aepdu.dll
2014-06-08 09:08:04 424448 ----a-w- C:\Windows\System32\aeinv.dll
2014-05-30 10:02:37 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
2014-05-30 10:02:09 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
2014-05-30 09:39:43 548352 ----a-w- C:\Windows\System32\vbscript.dll
2014-05-30 09:39:23 66048 ----a-w- C:\Windows\System32\iesetup.dll
2014-05-30 09:38:29 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
2014-05-30 09:21:23 139264 ----a-w- C:\Windows\System32\ieUnatt.exe
2014-05-30 09:21:05 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe
2014-05-30 09:20:36 752640 ----a-w- C:\Windows\System32\jscript9diag.dll
2014-05-30 09:11:24 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2014-05-30 09:08:22 5782528 ----a-w- C:\Windows\System32\jscript9.dll
2014-05-30 09:02:39 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2014-05-30 08:55:36 38400 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll
2014-05-30 08:44:28 455168 ----a-w- C:\Windows\SysWow64\vbscript.dll
2014-05-30 08:43:06 61952 ----a-w- C:\Windows\SysWow64\iesetup.dll
2014-05-30 08:42:16 51200 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
2014-05-30 08:28:33 112128 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2014-05-30 08:27:56 592896 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
2014-05-30 08:24:19 1249280 ----a-w- C:\Windows\System32\mshtmlmedia.dll
2014-05-30 08:23:22 2040832 ----a-w- C:\Windows\System32\inetcpl.cpl
2014-05-30 08:10:46 32256 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2014-05-30 07:56:56 2266112 ----a-w- C:\Windows\System32\wininet.dll
2014-05-30 07:56:50 4244992 ----a-w- C:\Windows\SysWow64\jscript9.dll
2014-05-30 07:50:09 1068032 ----a-w- C:\Windows\SysWow64\mshtmlmedia.dll
2014-05-30 07:49:38 1964544 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2014-05-30 07:21:10 1790976 ----a-w- C:\Windows\SysWow64\wininet.dll
2014-05-15 10:21:30 1039096 ----a-w- C:\Windows\System32\drivers\aswsnx.sys
2014-05-15 10:21:29 85328 ----a-w- C:\Windows\System32\drivers\aswstm.sys
2014-05-14 10:26:51 79184 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2014-05-14 10:26:51 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
2014-05-14 10:26:51 208416 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
2014-05-14 10:26:50 93568 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2014-05-14 10:26:50 29208 ----a-w- C:\Windows\System32\drivers\aswHwid.sys
2014-05-14 10:26:47 43152 ----a-w- C:\Windows\avastSS.scr
2014-04-12 02:22:05 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2014-04-12 02:22:05 155072 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2014-04-12 02:19:38 29184 ----a-w- C:\Windows\System32\sspisrv.dll
2014-04-12 02:19:38 136192 ----a-w- C:\Windows\System32\sspicli.dll
2014-04-12 02:19:37 28160 ----a-w- C:\Windows\System32\secur32.dll
2014-04-12 02:19:32 1460736 ----a-w- C:\Windows\System32\lsasrv.dll
2014-04-12 02:19:05 31232 ----a-w- C:\Windows\System32\lsass.exe
2014-04-12 02:12:06 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2014-04-12 02:10:56 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2014-04-03 14:51:16 63192 ----a-w- C:\Windows\System32\drivers\mwac.sys
2014-04-03 14:51:04 88280 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-04-03 14:50:58 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-03-31 14:35:08 270496 ------w- C:\Windows\System32\MpSigStub.exe
2011-11-16 22:56:16 380301136 ----a-w- C:\Program Files\AIO_CDB_NonNet_Full_Win_WW_130_141.exe
2011-11-16 22:20:55 1912272 ----a-w- C:\Program Files (x86)\HPPIW.EXE
2011-11-10 01:28:45 14578248 ----a-w- C:\Program Files (x86)\Firefox Setup 8.0.exe
.
============= FINISH: 21:46:25.28 ===============


#4 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,549 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:37 AM

Posted 02 July 2014 - 09:10 PM

Please disregard


Edited by JSntgRvr, 03 July 2014 - 08:18 PM.
Reopened per PM request - Hamluis.


#5 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 10,822 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:10:37 AM

Posted 03 July 2014 - 08:19 PM

:welcome:

 

Please download Farbar Recovery Scan Tool and save it to your desktop.
 
Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Make sure that under Optional Scans, there is a checkmark on Addition.txt and Shortcut.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it makes also another two logs (Addition.txt and Shortcut.txt). Please attach these to your reply.

  • No request for help throughout private messaging will be attended.

    If I have helped you, consider making a donation to help me continue the fight against Malware!
    btn_donate_SM.gif


    #6 JamAli

    JamAli
    • Topic Starter

    • Members
    • 50 posts
    • OFFLINE
    •  
    • Gender:Female
    • Local time:09:37 AM

    Posted 03 July 2014 - 09:23 PM

    Good day JSntgRvr,

        Thanks for the reply.

     

    Please see below and attached.

     

    Thanks,

    JamAli

     

    FRST.txt log

     

    Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 03-07-2014
    Ran by Aleiyia (administrator) on ALEIYA-PC on 03-07-2014 21:10:07
    Running from C:\Users\Aleiyia\Downloads
    Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
    Internet Explorer Version 11
    Boot Mode: Normal
     
    The only official download link for FRST:
    Download link from any site other than Bleeping Computer is unpermitted or outdated.
     
    ==================== Processes (Whitelisted) =================
     
    (AMD) C:\Windows\System32\atiesrxx.exe
    (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    (AMD) C:\Windows\System32\atieclxx.exe
    (Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
    (Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
    (SEIKO EPSON CORPORATION) C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
    (SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
    (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
    (Dell, Inc.) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
    (pdfforge GmbH) C:\Program Files (x86)\PDF Architect\HelperService.exe
    (pdfforge GmbH) C:\Program Files (x86)\PDF Architect\ConversionService.exe
    () C:\Windows\SysWOW64\PnkBstrA.exe
    (SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
    (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    (SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
    (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    (Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
    () C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
    () C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe
    (SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
    (Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
    (Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
    (Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
    (Samsung) C:\Program Files (x86)\Samsung\Kies\Kies.exe
    (Microsoft Corporation) C:\Windows\System32\StikyNot.exe
    (SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIJHE.EXE
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
    (Sony Corporation) C:\Program Files (x86)\Sony\Bloggie Software\BGVolumeWatcher.exe
    (Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
    (Mozy, Inc.) C:\Program Files\MozyHome\mozystat.exe
    (Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    (cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe
    (Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
    () C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
    (Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    () C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
    (Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
    (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
    (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
    (SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
    () C:\Program Files (x86)\Dell Stage\Dell Stage\stage_secondary.exe
    (SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXRCV.exe
    (SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXSTM.exe
    (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
    (ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    (Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
    (Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
    (Mozy, Inc.) C:\Program Files\MozyHome\mozybackup.exe
    (Mozy, Inc.) C:\Program Files\MozyHome\mozybackup.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
     
     
    ==================== Registry (Whitelisted) ==================
     
    HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10081312 2010-02-22] (Realtek Semiconductor)
    HKLM\...\Run: [RunDLLEntry_THXCfg] => C:\Windows\system32\THXCfg64.dll [17920 2009-10-15] (Creative Technology Ltd.)
    HKLM\...\Run: [RunDLLEntry_EptMon] => C:\Windows\system32\EptMon64.dll [21504 2009-10-15] (Creative Technology Ltd.)
    HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [1832760 2012-09-20] (Logitech, Inc.)
    HKLM\...\Run: [DellStage] => C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe [2195824 2012-02-01] ()
    HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284696 2010-03-03] (Intel Corporation)
    HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642656 2013-03-28] (Advanced Micro Devices, Inc.)
    HKLM-x32\...\Run: [THX Audio Control Panel] => C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe [963584 2009-12-01] (Creative Technology Ltd)
    HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
    HKLM-x32\...\Run: [BDRegion] => c:\Program Files (x86)\Cyberlink\Shared Files\brs.exe [75048 2010-04-26] (cyberlink)
    HKLM-x32\...\Run: [RoxWatchTray] => C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe [240112 2010-09-04] (Sonic Solutions)
    HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
    HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
    HKLM-x32\...\Run: [AccuWeatherWidget] => C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe [968048 2012-02-01] ()
    HKLM-x32\...\Run: [DivXMediaServer] => C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe [450560 2013-05-19] (DivX, LLC)
    HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
    HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
    HKLM-x32\...\Run: [DivXUpdate] => C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [1263952 2013-02-12] ()
    HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
    HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-05-31] (Apple Inc.)
    HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3890208 2014-06-06] (AVAST Software)
    HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [1686528 2012-03-27] (Wondershare)
    HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1058400 2012-01-26] (SEIKO EPSON CORPORATION)
    HKLM-x32\...\Run: [FUFAXRCV] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe [502912 2012-02-29] (SEIKO EPSON CORPORATION)
    HKLM-x32\...\Run: [FUFAXSTM] => C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe [863360 2012-02-29] (SEIKO EPSON CORPORATION)
    HKLM-x32\...\Run: [LTCM Client] => C:\Program Files (x86)\LTCM Client\ltcmClient.exe [2756864 2011-04-07] (Leader Technologies Inc.)
    Winlogon\Notify\GoToAssist: C:\Program Files (x86)\Citrix\GoToAssist\514\G2AWinLogon_x64.dll [X]
    HKU\S-1-5-21-3594856153-808119270-3144755082-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [1753280 2014-06-30] (Valve Corporation)
    HKU\S-1-5-21-3594856153-808119270-3144755082-1001\...\Run: [KiesPDLR] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [845168 2013-12-11] (Samsung)
    HKU\S-1-5-21-3594856153-808119270-3144755082-1001\...\Run: [KiesPreload] => C:\Program Files (x86)\Samsung\Kies\Kies.exe [1564528 2013-12-11] (Samsung)
    HKU\S-1-5-21-3594856153-808119270-3144755082-1001\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-13] (Microsoft Corporation)
    HKU\S-1-5-21-3594856153-808119270-3144755082-1001\...\Run: [EPLTarget\P0000000000000001] => C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIJHE.EXE [283232 2012-02-28] (SEIKO EPSON CORPORATION)
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bloggie Watcher Utility.lnk
    ShortcutTarget: Bloggie Watcher Utility.lnk -> C:\Program Files (x86)\Sony\Bloggie Software\BGVolumeWatcher.exe (Sony Corporation)
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
    ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
    Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MozyHome Status.lnk
    ShortcutTarget: MozyHome Status.lnk -> C:\Program Files\MozyHome\mozystat.exe (Mozy, Inc.)
    ShellIconOverlayIdentifiers:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
    ShellIconOverlayIdentifiers:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
    ShellIconOverlayIdentifiers:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
    ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
    ShellIconOverlayIdentifiers: mozy -> {b32a6748-f273-4546-b60a-3c5adc239de5} => C:\Program Files\MozyHome\mozyshell.dll (Mozy, Inc.)
    ShellIconOverlayIdentifiers: mozy2 -> {747E722C-CB46-4a9d-BDFE-192AAD5099B1} => C:\Program Files\MozyHome\mozyshell.dll (Mozy, Inc.)
    ShellIconOverlayIdentifiers: mozy3 -> {EE6F5A00-7898-40f7-AB77-51FF9D6DEB20} => C:\Program Files\MozyHome\mozyshell.dll (Mozy, Inc.)
    ShellIconOverlayIdentifiers-x32:  SkyDrivePro1 (ErrorConflict) -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
    ShellIconOverlayIdentifiers-x32:  SkyDrivePro2 (SyncInProgress) -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
    ShellIconOverlayIdentifiers-x32:  SkyDrivePro3 (InSync) -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
     
    ==================== Internet (Whitelisted) ====================
     
    HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
    SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
    SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
    SearchScopes: HKCU - {69CAFB99-553D-4F2D-902F-443565A9A911} URL = 
    BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\MSKAPB~1.DLL No File
    BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
    BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
    BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
    BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
    BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
    BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
    BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
    BHO-x32: E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll (SEIKO EPSON CORPORATION)
    BHO-x32: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\mskapbho.dll No File
    BHO-x32: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
    BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll (Microsoft Corporation)
    BHO-x32: DivX Plus Web Player HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
    BHO-x32: PDF Architect Helper - {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll (pdfforge GmbH)
    BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
    BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
    BHO-x32: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
    BHO-x32: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
    BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL (Microsoft Corporation)
    BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL (Microsoft Corporation)
    BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
    BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll (Hewlett-Packard Co.)
    Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
    Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
    Toolbar: HKLM-x32 - PDF Architect Toolbar - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll (pdfforge GmbH)
    Toolbar: HKLM-x32 - E-Web Print - {201CF130-E29C-4E5C-A73F-CD197DEFA6AE} - C:\Program Files (x86)\Epson Software\E-Web Print\ewps_tb.dll (SEIKO EPSON CORPORATION)
    Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL (Microsoft Corporation)
    Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
    Tcpip\Parameters: [DhcpNameServer] 65.183.0.76 65.183.0.86
     
    FireFox:
    ========
    FF ProfilePath: C:\Users\Aleiyia\AppData\Roaming\Mozilla\Firefox\Profiles\87y7diox.default
    FF SearchEngineOrder.1: WebSearch
    FF SearchEngineOrder.user_pref("browser.search.order.1,S", "WebSearch");: user_pref("browser.search.order.1,S", "WebSearch");
    FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll ()
    FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
    FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
    FF Plugin: @microsoft.com/GENUINE - disabled No File
    FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
    FF Plugin: @Musicnotes.com/Musicnotes Viewer - C:\Program Files\Musicnotes\npmusicn64.dll (Musicnotes, Inc.)
    FF Plugin: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll No File
    FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
    FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
    FF Plugin-x32: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
    FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
    FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
    FF Plugin-x32: @java.com/JavaPlugin,version=10.21.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
    FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
    FF Plugin-x32: @microsoft.com/Lync,version=15.0 - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
    FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL (Microsoft Corporation)
    FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
    FF Plugin-x32: @Musicnotes.com/Musicnotes Viewer - C:\Program Files (x86)\Musicnotes\npmusicn.dll (Musicnotes, Inc.)
    FF Plugin-x32: @real.com/nppl3260;version=15.0.4.53 - c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
    FF Plugin-x32: @real.com/nprjplug;version=15.0.4.53 - c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
    FF Plugin-x32: @real.com/nprpchromebrowserrecordext;version=15.0.2.72 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
    FF Plugin-x32: @real.com/nprphtml5videoshim;version=15.0.4.53 - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
    FF Plugin-x32: @real.com/nprpplugin;version=15.0.4.53 - c:\program files (x86)\real\realplayer\Netscape6\nprpplugin.dll (RealPlayer)
    FF Plugin-x32: @Sibelius.com/Scorch Plugin - C:\Program Files (x86)\Musicnotes\npsibelius.dll ()
    FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
    FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
    FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
    FF Plugin HKCU: @sony.com/Some - C:\Program Files (x86)\Sony\Bloggie Software\npsome.dll (Sony)
    FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 - C:\Users\Aleiyia\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
    FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
    FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
    FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
    FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
    FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
    FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
    FF Extension: YoutubeAdblocker - C:\Users\Aleiyia\AppData\Roaming\Mozilla\Firefox\Profiles\87y7diox.default\Extensions\oueer0126vr5i@aotcjaelz.com [2014-04-22]
    FF Extension: SNT - C:\Users\Aleiyia\AppData\Roaming\Mozilla\Firefox\Profiles\87y7diox.default\Extensions\tmgkgvh@mcd-.co.uk [2014-04-22]
    FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
    FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011-11-16]
    FF HKLM-x32\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
    FF Extension: RealPlayer Browser Record Plugin - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012-03-19]
    FF HKLM-x32\...\Firefox\Extensions: [{97E22097-9A2F-45b1-8DAF-36AD648C7EF4}] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
    FF Extension: RealPlayer Browser Record Plugin - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012-03-19]
    FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
    FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-02-11]
    FF HKLM-x32\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5
    FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files (x86)\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013-05-16]
    FF HKLM-x32\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt
    FF Extension: PDF Architect Converter For Firefox - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt [2013-12-14]
    FF HKLM-x32\...\Firefox\Extensions: [e-webprint@epson.com] - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on
    FF Extension: E-Web Print - C:\Program Files (x86)\Epson Software\E-Web Print\Firefox Add-on [2014-06-30]
    FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
    FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
    FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011-11-16]
     
    Chrome: 
    =======
    CHR DefaultNewTabURL: 
    CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\Aleiyia\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-06-16]
    CHR Extension: (Adblock Plus) - C:\Users\Aleiyia\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-05-13]
    CHR Extension: (YoutubeAdblocker) - C:\Users\Aleiyia\AppData\Local\Google\Chrome\User Data\Default\Extensions\efnfonplgfafionfnjialfobmeonclje [2014-04-18]
    CHR Extension: (Grammarly Lite  Smart Spellchecker) - C:\Users\Aleiyia\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbfnbcaeplbcioakkpcpgfkobkghlhen [2014-04-18]
    CHR Extension: (Google Wallet) - C:\Users\Aleiyia\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-22]
    CHR HKLM-x32\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx [2012-03-19]
    CHR HKLM-x32\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files (x86)\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2013-05-06]
    CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
     
    ==================== Services (Whitelisted) =================
     
    S2 AcronisOSSReinstallSvc; C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe [2217416 2007-02-22] ()
    R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-05-14] (AVAST Software)
    R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2279608 2014-05-21] (Microsoft Corporation)
    S2 CLKMSVC10_9EC60124; c:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [232944 2010-04-26] (CyberLink)
    R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation)
    R3 hpqcxs08; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll [249344 2009-09-20] (Hewlett-Packard Co.) [File not signed]
    R2 hpqddsvc; C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll [133120 2009-09-20] (Hewlett-Packard Co.) [File not signed]
    R2 mozybackup; C:\Program Files\MozyHome\mozybackup.exe [54040 2011-09-29] (Mozy, Inc.)
    R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
    R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH)
    R2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH)
    R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
    R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2012-05-05] ()
    S2 clr_optimization_v4.0.30319_32; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [X]
     
    ==================== Drivers (Whitelisted) ====================
     
    U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-13] (Microsoft Corporation)
    R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-05-14] ()
    R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-05-14] (AVAST Software)
    R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-05-14] (AVAST Software)
    R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-05-14] ()
    R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-05-15] (AVAST Software)
    R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-05-15] (AVAST Software)
    R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [85328 2014-05-15] (AVAST Software)
    R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208416 2014-05-14] ()
    S3 dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [20568 2010-05-25] (Devguru Co., Ltd)
    S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-10-29] () [File not signed]
    R1 mozyFilter; C:\Windows\System32\DRIVERS\mozy.sys [67808 2013-05-21] (Mozy, Inc.)
    S3 catchme; \??\C:\ComboFix\catchme.sys [X]
     
    ==================== NetSvcs (Whitelisted) ===================
     
     
    ==================== One Month Created Files and Folders ========
     
    2014-07-03 21:10 - 2014-07-03 21:10 - 00029207 _____ () C:\Users\Aleiyia\Downloads\FRST.txt
    2014-07-03 21:09 - 2014-07-03 21:10 - 00000000 ____D () C:\FRST
    2014-07-03 21:09 - 2014-07-03 21:09 - 02083840 _____ (Farbar) C:\Users\Aleiyia\Downloads\FRST64.exe
    2014-07-03 19:58 - 2014-07-03 19:58 - 00237568 _____ (Big Fish Games) C:\Users\Aleiyia\Downloads\my-exotic-farm-2014_s1_l1_gF7901T1L1_d2327931108.exe
    2014-06-29 21:43 - 2014-06-29 21:43 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Acer
    2014-06-29 10:22 - 2014-06-29 10:22 - 02478536 _____ (Leader Technologies Inc ) C:\Users\Aleiyia\Downloads\installltcmepsn0120.exe
    2014-06-29 10:21 - 2014-06-29 10:21 - 00000000 ____D () C:\Windows\System32\Tasks\Leader Technologies
    2014-06-29 10:20 - 2014-06-29 10:20 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Leader Technologies
    2014-06-28 13:28 - 2014-06-28 13:28 - 00000045 _____ () C:\Windows\WF-3540.ini
    2014-06-28 13:28 - 2014-06-28 13:28 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Leadertech
    2014-06-28 13:17 - 2014-06-28 13:17 - 00000000 ____D () C:\Program Files\Common Files\EPSON
    2014-06-28 13:11 - 2014-06-30 19:30 - 00000000 ____D () C:\ProgramData\ABBYY
    2014-06-28 13:11 - 2014-06-29 21:43 - 00002741 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LTCM Client.lnk
    2014-06-28 13:11 - 2014-06-29 21:43 - 00000000 ____D () C:\Program Files (x86)\LTCM Client
    2014-06-28 13:11 - 2014-06-28 13:11 - 00000000 ____D () C:\Users\Aleiyia\AppData\Local\ABBYY
    2014-06-28 13:09 - 2014-06-30 19:16 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Epson
    2014-06-28 13:09 - 2014-06-28 13:09 - 00002029 _____ () C:\Users\Public\Desktop\EPSON WF-3540 User's Guide.lnk
    2014-06-28 13:08 - 2014-06-30 19:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software
    2014-06-28 13:07 - 2014-06-28 13:07 - 00000932 _____ () C:\Users\Public\Desktop\EPSON Scan.lnk
    2014-06-28 13:07 - 2012-07-24 00:00 - 00466432 _____ (Seiko Epson Corporation) C:\Windows\system32\esxw2ud.dll
    2014-06-28 13:07 - 2011-12-12 00:00 - 00135824 _____ (Seiko Epson Corporation) C:\Windows\system32\escsvc64.exe
    2014-06-28 13:06 - 2014-06-28 13:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
    2014-06-28 13:06 - 2014-06-28 13:09 - 00000000 ____D () C:\Program Files (x86)\EPSON
    2014-06-28 13:06 - 2014-06-28 13:06 - 00000000 ____D () C:\Program Files\EpsonNet
    2014-06-28 13:06 - 2014-06-28 13:06 - 00000000 ____D () C:\Program Files\EPSON
    2014-06-28 13:06 - 2011-08-30 13:40 - 00535040 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\ensppui.dll
    2014-06-28 13:06 - 2011-08-30 13:40 - 00535040 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enppui.dll
    2014-06-28 13:06 - 2011-08-30 13:38 - 00558080 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\ensppmon.dll
    2014-06-28 13:06 - 2011-08-30 13:38 - 00558080 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enppmon.dll
    2014-06-28 13:06 - 2011-08-01 18:24 - 00250880 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enspres.dll
    2014-06-28 13:06 - 2011-08-01 18:24 - 00250880 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\enpres.dll
    2014-06-28 13:05 - 2014-06-30 19:16 - 00000000 ____D () C:\ProgramData\EPSON
    2014-06-28 13:05 - 2014-06-30 19:16 - 00000000 ____D () C:\Program Files (x86)\EPSON Software
    2014-06-28 13:05 - 2011-04-18 22:03 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_YLMJHE.DLL
    2014-06-28 13:05 - 2011-03-13 22:03 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\Windows\system32\E_YD4BJHE.DLL
    2014-06-28 13:05 - 2007-04-09 20:06 - 00010752 _____ (SEIKO EPSON CORP.) C:\Windows\system32\E_GCINST.DLL
    2014-06-27 21:55 - 2014-06-27 21:55 - 00009505 _____ () C:\Users\Aleiyia\Desktop\Attach(2).txt
    2014-06-27 21:48 - 2014-06-27 21:48 - 00027601 _____ () C:\Users\Aleiyia\Desktop\DDS(2).txt
    2014-06-23 21:50 - 2014-06-23 21:50 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Rainbow
    2014-06-23 20:53 - 2014-06-23 20:53 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\island_tribe_4_realore_bfg_en
    2014-06-23 19:52 - 2014-06-23 19:52 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\GameInvest
    2014-06-23 18:51 - 2014-06-23 18:51 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Artifex Mundi
    2014-06-23 18:06 - 2014-06-23 18:06 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\VisualShape
    2014-06-23 18:06 - 2014-06-23 18:06 - 00000000 ____D () C:\ProgramData\VisualShape
    2014-06-23 17:13 - 2014-06-23 17:13 - 00001912 _____ () C:\Users\Public\Desktop\Play Royal Envoy 3.lnk
    2014-06-23 17:13 - 2014-06-23 17:13 - 00001256 _____ () C:\Users\Public\Desktop\More Great Games.lnk
    2014-06-23 17:13 - 2014-06-23 17:13 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Royal Envoy 3
    2014-06-23 17:13 - 2014-06-23 17:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Royal Envoy 3
    2014-06-23 17:13 - 2014-06-23 17:13 - 00000000 ____D () C:\Program Files (x86)\Royal Envoy 3
    2014-06-23 17:11 - 2014-06-23 17:11 - 00002122 _____ () C:\Users\Public\Desktop\Play Grim Legends - The Forsaken Bride.lnk
    2014-06-23 17:11 - 2014-06-23 17:11 - 00001917 _____ () C:\Users\Public\Desktop\Play Youda Camper.lnk
    2014-06-23 17:11 - 2014-06-23 17:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Youda Camper
    2014-06-23 17:11 - 2014-06-23 17:11 - 00000000 ____D () C:\Program Files (x86)\Youda Camper
    2014-06-23 17:10 - 2014-06-23 17:11 - 00000000 ____D () C:\Program Files (x86)\Grim Legends - The Forsaken Bride
    2014-06-23 17:10 - 2014-06-23 17:10 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Grim Legends - The Forsaken Bride
    2014-06-23 17:10 - 2014-06-23 17:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grim Legends - The Forsaken Bride
    2014-06-23 17:05 - 2014-06-23 17:05 - 00001934 _____ () C:\Users\Public\Desktop\Play Hospital Hustle.lnk
    2014-06-23 17:05 - 2014-06-23 17:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hospital Hustle
    2014-06-23 17:05 - 2014-06-23 17:05 - 00000000 ____D () C:\Program Files (x86)\Hospital Hustle
    2014-06-23 17:03 - 2014-06-23 17:03 - 00237568 _____ (Big Fish Games) C:\Users\Aleiyia\Downloads\bigfishgames_p214665000_s1_l1.exe
    2014-06-23 17:03 - 2014-06-23 17:03 - 00237568 _____ (Big Fish Games) C:\Users\Aleiyia\Downloads\bigfishgames_p109865504_s1_l1.exe
    2014-06-23 17:02 - 2014-06-23 17:02 - 00001985 _____ () C:\Users\Public\Desktop\Play The Beardless Wizard.lnk
    2014-06-23 17:01 - 2014-06-23 17:02 - 00000000 ____D () C:\Program Files (x86)\The Beardless Wizard
    2014-06-23 17:01 - 2014-06-23 17:01 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Beardless Wizard
    2014-06-23 17:01 - 2014-06-23 17:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Beardless Wizard
    2014-06-23 16:56 - 2014-06-23 16:56 - 00001897 _____ () C:\Users\Public\Desktop\Play Farm to Fork.lnk
    2014-06-23 16:56 - 2014-06-23 16:56 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Farm to Fork
    2014-06-23 16:56 - 2014-06-23 16:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Farm to Fork
    2014-06-23 16:56 - 2014-06-23 16:56 - 00000000 ____D () C:\Program Files (x86)\Farm to Fork
    2014-06-23 16:55 - 2014-06-23 16:55 - 00002057 _____ () C:\Users\Public\Desktop\Play My Kingdom for the Princess IV.lnk
    2014-06-23 16:54 - 2014-06-23 16:55 - 00000000 ____D () C:\Program Files (x86)\My Kingdom for the Princess IV
    2014-06-23 16:54 - 2014-06-23 16:54 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My Kingdom for the Princess IV
    2014-06-23 16:54 - 2014-06-23 16:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\My Kingdom for the Princess IV
    2014-06-23 00:29 - 2014-06-23 00:29 - 00003234 _____ () C:\Windows\System32\Tasks\SidebarExecute
    2014-06-22 20:32 - 2014-06-27 21:46 - 00027601 _____ () C:\Users\Aleiyia\Desktop\dds.txt
    2014-06-22 20:32 - 2014-06-27 21:46 - 00009505 _____ () C:\Users\Aleiyia\Desktop\attach.txt
    2014-06-22 20:30 - 2014-06-22 20:30 - 00688992 ____R (Swearware) C:\Users\Aleiyia\Desktop\dds.com
    2014-06-22 20:14 - 2014-06-22 20:14 - 00033625 _____ () C:\ComboFix.txt
    2014-06-22 19:49 - 2014-06-22 20:14 - 00000000 ____D () C:\ComboFix
    2014-06-22 19:49 - 2011-06-26 01:45 - 00256000 _____ () C:\Windows\PEV.exe
    2014-06-22 19:49 - 2010-11-07 12:20 - 00208896 _____ () C:\Windows\MBR.exe
    2014-06-22 19:49 - 2009-04-19 23:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
    2014-06-22 19:49 - 2000-08-30 19:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
    2014-06-22 19:49 - 2000-08-30 19:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
    2014-06-22 19:49 - 2000-08-30 19:00 - 00098816 _____ () C:\Windows\sed.exe
    2014-06-22 19:49 - 2000-08-30 19:00 - 00080412 _____ () C:\Windows\grep.exe
    2014-06-22 19:49 - 2000-08-30 19:00 - 00068096 _____ () C:\Windows\zip.exe
    2014-06-22 19:48 - 2014-06-22 20:14 - 00000000 ____D () C:\Qoobox
    2014-06-22 19:48 - 2014-06-22 20:12 - 00000000 ____D () C:\Windows\erdnt
    2014-06-22 19:41 - 2014-06-22 19:41 - 00001143 _____ () C:\Users\Aleiyia\Downloads\ComboFix - Shortcut.lnk
    2014-06-22 19:38 - 2014-06-22 19:38 - 05209566 ____R (Swearware) C:\Users\Aleiyia\Desktop\ComboFix.exe
    2014-06-22 19:25 - 2014-06-22 19:25 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Aleiyia\Downloads\tdsskiller.exe
    2014-06-20 10:51 - 2014-06-20 10:51 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
    2014-06-16 18:08 - 2014-06-16 18:08 - 00895120 _____ (Google Inc.) C:\Users\Aleiyia\Downloads\ChromeSetup (1).exe
    2014-06-16 18:00 - 2014-06-16 18:00 - 00262232 _____ () C:\Users\Aleiyia\Downloads\GoogleUpdate.adm
    2014-06-16 17:20 - 2014-06-16 17:20 - 00492032 _____ () C:\Users\Aleiyia\Downloads\Office Space Plan (2).vsd
    2014-06-16 17:18 - 2014-06-16 17:18 - 00666624 _____ () C:\Users\Aleiyia\Downloads\Office Space Plan (1).vsd
    2014-06-16 17:16 - 2014-06-16 17:16 - 00492032 _____ () C:\Users\Aleiyia\Downloads\Office Space Plan.vsd
    2014-06-16 17:16 - 2014-06-16 17:16 - 00000000 __SHD () C:\Users\Aleiyia\AppData\Local\EmieUserList
    2014-06-16 17:16 - 2014-06-16 17:16 - 00000000 __SHD () C:\Users\Aleiyia\AppData\Local\EmieSiteList
    2014-06-10 22:40 - 2014-04-24 21:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
    2014-06-10 22:40 - 2014-04-24 21:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
    2014-06-10 22:40 - 2014-04-04 21:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
    2014-06-10 22:40 - 2014-04-04 21:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
    2014-06-10 22:40 - 2014-03-26 09:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
    2014-06-10 22:40 - 2014-03-26 09:44 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
    2014-06-10 22:40 - 2014-03-26 09:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
    2014-06-10 22:40 - 2014-03-26 09:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
    2014-06-10 22:40 - 2014-03-26 09:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
    2014-06-10 22:40 - 2014-03-26 09:27 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
    2014-06-10 22:40 - 2014-03-26 09:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
    2014-06-10 22:40 - 2014-03-26 09:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
    2014-06-10 22:39 - 2014-06-08 04:13 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
    2014-06-10 22:39 - 2014-06-08 04:08 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
    2014-06-10 22:39 - 2014-05-30 05:21 - 23414784 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
    2014-06-10 22:39 - 2014-05-30 05:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
    2014-06-10 22:39 - 2014-05-30 05:02 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
    2014-06-10 22:39 - 2014-05-30 04:45 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
    2014-06-10 22:39 - 2014-05-30 04:39 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
    2014-06-10 22:39 - 2014-05-30 04:39 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
    2014-06-10 22:39 - 2014-05-30 04:38 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
    2014-06-10 22:39 - 2014-05-30 04:28 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
    2014-06-10 22:39 - 2014-05-30 04:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
    2014-06-10 22:39 - 2014-05-30 04:24 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
    2014-06-10 22:39 - 2014-05-30 04:21 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
    2014-06-10 22:39 - 2014-05-30 04:21 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
    2014-06-10 22:39 - 2014-05-30 04:20 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
    2014-06-10 22:39 - 2014-05-30 04:18 - 17271296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
    2014-06-10 22:39 - 2014-05-30 04:11 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
    2014-06-10 22:39 - 2014-05-30 04:08 - 05782528 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
    2014-06-10 22:39 - 2014-05-30 04:06 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
    2014-06-10 22:39 - 2014-05-30 04:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
    2014-06-10 22:39 - 2014-05-30 03:55 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
    2014-06-10 22:39 - 2014-05-30 03:49 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
    2014-06-10 22:39 - 2014-05-30 03:46 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
    2014-06-10 22:39 - 2014-05-30 03:44 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
    2014-06-10 22:39 - 2014-05-30 03:44 - 00295424 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
    2014-06-10 22:39 - 2014-05-30 03:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
    2014-06-10 22:39 - 2014-05-30 03:42 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
    2014-06-10 22:39 - 2014-05-30 03:38 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
    2014-06-10 22:39 - 2014-05-30 03:35 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
    2014-06-10 22:39 - 2014-05-30 03:34 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
    2014-06-10 22:39 - 2014-05-30 03:33 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
    2014-06-10 22:39 - 2014-05-30 03:30 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
    2014-06-10 22:39 - 2014-05-30 03:29 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
    2014-06-10 22:39 - 2014-05-30 03:28 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
    2014-06-10 22:39 - 2014-05-30 03:27 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
    2014-06-10 22:39 - 2014-05-30 03:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
    2014-06-10 22:39 - 2014-05-30 03:23 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
    2014-06-10 22:39 - 2014-05-30 03:16 - 00368128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
    2014-06-10 22:39 - 2014-05-30 03:10 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
    2014-06-10 22:39 - 2014-05-30 03:06 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
    2014-06-10 22:39 - 2014-05-30 03:04 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
    2014-06-10 22:39 - 2014-05-30 03:02 - 00242688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
    2014-06-10 22:39 - 2014-05-30 02:56 - 04244992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
    2014-06-10 22:39 - 2014-05-30 02:56 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
    2014-06-10 22:39 - 2014-05-30 02:54 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
    2014-06-10 22:39 - 2014-05-30 02:50 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
    2014-06-10 22:39 - 2014-05-30 02:49 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
    2014-06-10 22:39 - 2014-05-30 02:43 - 13522944 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
    2014-06-10 22:39 - 2014-05-30 02:40 - 11725312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
    2014-06-10 22:39 - 2014-05-30 02:30 - 01398272 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
    2014-06-10 22:39 - 2014-05-30 02:21 - 01790976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
    2014-06-10 22:39 - 2014-05-30 02:15 - 01143296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
    2014-06-10 22:39 - 2014-05-30 02:13 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
    2014-06-10 22:39 - 2014-05-30 02:13 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
     
    ==================== One Month Modified Files and Folders =======
     
    2014-07-03 21:10 - 2014-07-03 21:10 - 00029207 _____ () C:\Users\Aleiyia\Downloads\FRST.txt
    2014-07-03 21:10 - 2014-07-03 21:09 - 00000000 ____D () C:\FRST
    2014-07-03 21:09 - 2014-07-03 21:09 - 02083840 _____ (Farbar) C:\Users\Aleiyia\Downloads\FRST64.exe
    2014-07-03 21:05 - 2012-04-06 09:23 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
    2014-07-03 20:53 - 2009-07-14 00:10 - 01144402 _____ () C:\Windows\WindowsUpdate.log
    2014-07-03 20:51 - 2011-09-29 09:50 - 00005992 _____ () C:\Windows\mozy.flt
    2014-07-03 20:51 - 2011-09-29 09:50 - 00004130 _____ () C:\Windows\mozy.blk
    2014-07-03 20:13 - 2011-12-28 18:33 - 00000900 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
    2014-07-03 19:58 - 2014-07-03 19:58 - 00237568 _____ (Big Fish Games) C:\Users\Aleiyia\Downloads\my-exotic-farm-2014_s1_l1_gF7901T1L1_d2327931108.exe
    2014-07-03 19:03 - 2013-05-22 18:57 - 00003440 _____ () C:\Windows\System32\Tasks\PCDEventLauncherTask
    2014-07-03 19:03 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\tracing
    2014-07-03 18:39 - 2009-07-13 23:45 - 00014240 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
    2014-07-03 18:39 - 2009-07-13 23:45 - 00014240 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
    2014-07-03 18:31 - 2013-02-11 16:51 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
    2014-07-03 18:30 - 2012-02-07 18:43 - 00000000 ____D () C:\Program Files (x86)\Steam
    2014-07-03 18:30 - 2011-02-22 17:35 - 00000000 ____D () C:\Users\Default\AppData\Local\SoftThinks
    2014-07-03 18:30 - 2011-02-22 17:35 - 00000000 ____D () C:\Users\Default User\AppData\Local\SoftThinks
    2014-07-03 18:30 - 2011-02-22 17:13 - 00000000 ____D () C:\Program Files (x86)\Dell DataSafe Local Backup
    2014-07-03 18:29 - 2013-02-19 19:27 - 00065536 _____ () C:\Windows\system32\Ikeext.etl
    2014-07-03 18:29 - 2011-12-28 18:33 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
    2014-07-03 18:29 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
    2014-07-03 18:29 - 2009-07-13 23:51 - 00116552 _____ () C:\Windows\setupact.log
    2014-06-30 19:30 - 2014-06-28 13:11 - 00000000 ____D () C:\ProgramData\ABBYY
    2014-06-30 19:16 - 2014-06-28 13:09 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Epson
    2014-06-30 19:16 - 2014-06-28 13:05 - 00000000 ____D () C:\ProgramData\EPSON
    2014-06-30 19:16 - 2014-06-28 13:05 - 00000000 ____D () C:\Program Files (x86)\EPSON Software
    2014-06-30 19:13 - 2014-06-28 13:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Epson Software
    2014-06-30 17:05 - 2011-02-22 17:16 - 00000000 ____D () C:\ProgramData\Temp
    2014-06-29 21:43 - 2014-06-29 21:43 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Acer
    2014-06-29 21:43 - 2014-06-28 13:11 - 00002741 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LTCM Client.lnk
    2014-06-29 21:43 - 2014-06-28 13:11 - 00000000 ____D () C:\Program Files (x86)\LTCM Client
    2014-06-29 10:22 - 2014-06-29 10:22 - 02478536 _____ (Leader Technologies Inc ) C:\Users\Aleiyia\Downloads\installltcmepsn0120.exe
    2014-06-29 10:21 - 2014-06-29 10:21 - 00000000 ____D () C:\Windows\System32\Tasks\Leader Technologies
    2014-06-29 10:20 - 2014-06-29 10:20 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Leader Technologies
    2014-06-28 13:35 - 2009-07-14 00:32 - 00000000 ____D () C:\Windows\system32\FxsTmp
    2014-06-28 13:28 - 2014-06-28 13:28 - 00000045 _____ () C:\Windows\WF-3540.ini
    2014-06-28 13:28 - 2014-06-28 13:28 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Leadertech
    2014-06-28 13:20 - 2009-07-14 00:13 - 00782510 _____ () C:\Windows\system32\PerfStringBackup.INI
    2014-06-28 13:17 - 2014-06-28 13:17 - 00000000 ____D () C:\Program Files\Common Files\EPSON
    2014-06-28 13:17 - 2014-06-28 13:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
    2014-06-28 13:11 - 2014-06-28 13:11 - 00000000 ____D () C:\Users\Aleiyia\AppData\Local\ABBYY
    2014-06-28 13:09 - 2014-06-28 13:09 - 00002029 _____ () C:\Users\Public\Desktop\EPSON WF-3540 User's Guide.lnk
    2014-06-28 13:09 - 2014-06-28 13:06 - 00000000 ____D () C:\Program Files (x86)\EPSON
    2014-06-28 13:08 - 2011-02-22 17:05 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
    2014-06-28 13:07 - 2014-06-28 13:07 - 00000932 _____ () C:\Users\Public\Desktop\EPSON Scan.lnk
    2014-06-28 13:06 - 2014-06-28 13:06 - 00000000 ____D () C:\Program Files\EpsonNet
    2014-06-28 13:06 - 2014-06-28 13:06 - 00000000 ____D () C:\Program Files\EPSON
    2014-06-27 21:55 - 2014-06-27 21:55 - 00009505 _____ () C:\Users\Aleiyia\Desktop\Attach(2).txt
    2014-06-27 21:48 - 2014-06-27 21:48 - 00027601 _____ () C:\Users\Aleiyia\Desktop\DDS(2).txt
    2014-06-27 21:46 - 2014-06-22 20:32 - 00027601 _____ () C:\Users\Aleiyia\Desktop\dds.txt
    2014-06-27 21:46 - 2014-06-22 20:32 - 00009505 _____ () C:\Users\Aleiyia\Desktop\attach.txt
    2014-06-26 21:28 - 2014-05-13 18:11 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
    2014-06-26 20:39 - 2011-11-06 19:59 - 00000000 ___SD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MozyHome
    2014-06-26 20:39 - 2011-11-06 19:59 - 00000000 ____D () C:\Program Files\MozyHome
    2014-06-26 06:00 - 2012-04-06 09:23 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
    2014-06-26 06:00 - 2012-04-06 09:23 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
    2014-06-26 06:00 - 2011-11-13 10:29 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
    2014-06-24 19:23 - 2011-02-22 18:58 - 00364894 _____ () C:\Windows\PFRO.log
    2014-06-23 21:50 - 2014-06-23 21:50 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Rainbow
    2014-06-23 21:25 - 2013-08-18 12:01 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\AlawarEntertainment
    2014-06-23 21:00 - 2009-07-14 00:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
    2014-06-23 20:53 - 2014-06-23 20:53 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\island_tribe_4_realore_bfg_en
    2014-06-23 19:52 - 2014-06-23 19:52 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\GameInvest
    2014-06-23 19:51 - 2013-07-08 22:24 - 00000000 ____D () C:\BigFishCache
    2014-06-23 18:51 - 2014-06-23 18:51 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Artifex Mundi
    2014-06-23 18:06 - 2014-06-23 18:06 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\VisualShape
    2014-06-23 18:06 - 2014-06-23 18:06 - 00000000 ____D () C:\ProgramData\VisualShape
    2014-06-23 17:13 - 2014-06-23 17:13 - 00001912 _____ () C:\Users\Public\Desktop\Play Royal Envoy 3.lnk
    2014-06-23 17:13 - 2014-06-23 17:13 - 00001256 _____ () C:\Users\Public\Desktop\More Great Games.lnk
    2014-06-23 17:13 - 2014-06-23 17:13 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Royal Envoy 3
    2014-06-23 17:13 - 2014-06-23 17:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Royal Envoy 3
    2014-06-23 17:13 - 2014-06-23 17:13 - 00000000 ____D () C:\Program Files (x86)\Royal Envoy 3
    2014-06-23 17:11 - 2014-06-23 17:11 - 00002122 _____ () C:\Users\Public\Desktop\Play Grim Legends - The Forsaken Bride.lnk
    2014-06-23 17:11 - 2014-06-23 17:11 - 00001917 _____ () C:\Users\Public\Desktop\Play Youda Camper.lnk
    2014-06-23 17:11 - 2014-06-23 17:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Youda Camper
    2014-06-23 17:11 - 2014-06-23 17:11 - 00000000 ____D () C:\Program Files (x86)\Youda Camper
    2014-06-23 17:11 - 2014-06-23 17:10 - 00000000 ____D () C:\Program Files (x86)\Grim Legends - The Forsaken Bride
    2014-06-23 17:10 - 2014-06-23 17:10 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Grim Legends - The Forsaken Bride
    2014-06-23 17:10 - 2014-06-23 17:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grim Legends - The Forsaken Bride
    2014-06-23 17:07 - 2013-12-06 23:27 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Building the Great Wall of China
    2014-06-23 17:05 - 2014-06-23 17:05 - 00001934 _____ () C:\Users\Public\Desktop\Play Hospital Hustle.lnk
    2014-06-23 17:05 - 2014-06-23 17:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hospital Hustle
    2014-06-23 17:05 - 2014-06-23 17:05 - 00000000 ____D () C:\Program Files (x86)\Hospital Hustle
    2014-06-23 17:03 - 2014-06-23 17:03 - 00237568 _____ (Big Fish Games) C:\Users\Aleiyia\Downloads\bigfishgames_p214665000_s1_l1.exe
    2014-06-23 17:03 - 2014-06-23 17:03 - 00237568 _____ (Big Fish Games) C:\Users\Aleiyia\Downloads\bigfishgames_p109865504_s1_l1.exe
    2014-06-23 17:02 - 2014-06-23 17:02 - 00001985 _____ () C:\Users\Public\Desktop\Play The Beardless Wizard.lnk
    2014-06-23 17:02 - 2014-06-23 17:01 - 00000000 ____D () C:\Program Files (x86)\The Beardless Wizard
    2014-06-23 17:01 - 2014-06-23 17:01 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The Beardless Wizard
    2014-06-23 17:01 - 2014-06-23 17:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Beardless Wizard
    2014-06-23 16:56 - 2014-06-23 16:56 - 00001897 _____ () C:\Users\Public\Desktop\Play Farm to Fork.lnk
    2014-06-23 16:56 - 2014-06-23 16:56 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Farm to Fork
    2014-06-23 16:56 - 2014-06-23 16:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Farm to Fork
    2014-06-23 16:56 - 2014-06-23 16:56 - 00000000 ____D () C:\Program Files (x86)\Farm to Fork
    2014-06-23 16:55 - 2014-06-23 16:55 - 00002057 _____ () C:\Users\Public\Desktop\Play My Kingdom for the Princess IV.lnk
    2014-06-23 16:55 - 2014-06-23 16:54 - 00000000 ____D () C:\Program Files (x86)\My Kingdom for the Princess IV
    2014-06-23 16:54 - 2014-06-23 16:54 - 00000000 ____D () C:\Users\Aleiyia\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My Kingdom for the Princess IV
    2014-06-23 16:54 - 2014-06-23 16:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\My Kingdom for the Princess IV
    2014-06-23 16:51 - 2013-08-12 21:04 - 00000000 ____D () C:\ProgramData\Big Fish
    2014-06-23 16:51 - 2011-11-17 13:03 - 00001889 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Manager.lnk
    2014-06-23 16:51 - 2011-11-17 13:03 - 00001248 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\More Great Games.lnk
    2014-06-23 16:51 - 2011-11-17 13:03 - 00000000 ____D () C:\Program Files (x86)\bfgclient
    2014-06-23 00:29 - 2014-06-23 00:29 - 00003234 _____ () C:\Windows\System32\Tasks\SidebarExecute
    2014-06-22 20:30 - 2014-06-22 20:30 - 00688992 ____R (Swearware) C:\Users\Aleiyia\Desktop\dds.com
    2014-06-22 20:14 - 2014-06-22 20:14 - 00033625 _____ () C:\ComboFix.txt
    2014-06-22 20:14 - 2014-06-22 19:49 - 00000000 ____D () C:\ComboFix
    2014-06-22 20:14 - 2014-06-22 19:48 - 00000000 ____D () C:\Qoobox
    2014-06-22 20:14 - 2011-11-06 18:22 - 00000000 ____D () C:\Users\Aleiyia\AppData\Local\Apps\2.0
    2014-06-22 20:14 - 2009-07-13 22:20 - 00000000 __RHD () C:\Users\Default
    2014-06-22 20:12 - 2014-06-22 19:48 - 00000000 ____D () C:\Windows\erdnt
    2014-06-22 20:07 - 2009-07-13 21:34 - 00000215 _____ () C:\Windows\system.ini
    2014-06-22 20:03 - 2009-07-13 21:34 - 98566144 _____ () C:\Windows\system32\config\software.bak
    2014-06-22 20:03 - 2009-07-13 21:34 - 23855104 _____ () C:\Windows\system32\config\system.bak
    2014-06-22 20:03 - 2009-07-13 21:34 - 00786432 _____ () C:\Windows\system32\config\default.bak
    2014-06-22 20:03 - 2009-07-13 21:34 - 00262144 _____ () C:\Windows\system32\config\security.bak
    2014-06-22 20:03 - 2009-07-13 21:34 - 00262144 _____ () C:\Windows\system32\config\sam.bak
    2014-06-22 20:02 - 2011-11-06 18:16 - 00000000 ____D () C:\Users\Aleiyia
    2014-06-22 19:41 - 2014-06-22 19:41 - 00001143 _____ () C:\Users\Aleiyia\Downloads\ComboFix - Shortcut.lnk
    2014-06-22 19:38 - 2014-06-22 19:38 - 05209566 ____R (Swearware) C:\Users\Aleiyia\Desktop\ComboFix.exe
    2014-06-22 19:25 - 2014-06-22 19:25 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\Aleiyia\Downloads\tdsskiller.exe
    2014-06-21 17:08 - 2012-11-03 10:25 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
    2014-06-20 10:51 - 2014-06-20 10:51 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
    2014-06-16 18:08 - 2014-06-16 18:08 - 00895120 _____ (Google Inc.) C:\Users\Aleiyia\Downloads\ChromeSetup (1).exe
    2014-06-16 18:08 - 2011-12-28 18:33 - 00003896 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
    2014-06-16 18:08 - 2011-12-28 18:33 - 00003644 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
    2014-06-16 18:00 - 2014-06-16 18:00 - 00262232 _____ () C:\Users\Aleiyia\Downloads\GoogleUpdate.adm
    2014-06-16 17:20 - 2014-06-16 17:20 - 00492032 _____ () C:\Users\Aleiyia\Downloads\Office Space Plan (2).vsd
    2014-06-16 17:18 - 2014-06-16 17:18 - 00666624 _____ () C:\Users\Aleiyia\Downloads\Office Space Plan (1).vsd
    2014-06-16 17:16 - 2014-06-16 17:16 - 00492032 _____ () C:\Users\Aleiyia\Downloads\Office Space Plan.vsd
    2014-06-16 17:16 - 2014-06-16 17:16 - 00000000 __SHD () C:\Users\Aleiyia\AppData\Local\EmieUserList
    2014-06-16 17:16 - 2014-06-16 17:16 - 00000000 __SHD () C:\Users\Aleiyia\AppData\Local\EmieSiteList
    2014-06-16 15:52 - 2012-02-18 23:09 - 00000000 ____D () C:\Windows\System32\Tasks\Games
    2014-06-15 19:04 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache
    2014-06-10 23:52 - 2014-05-07 00:20 - 00000000 ___SD () C:\Windows\system32\CompatTel
    2014-06-10 22:46 - 2014-03-07 19:01 - 00000000 ____D () C:\Program Files\Microsoft Office 15
    2014-06-09 05:10 - 2014-04-18 18:19 - 00000000 ____D () C:\Program Files (x86)\SW-Booster
    2014-06-08 04:13 - 2014-06-10 22:39 - 00506368 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
    2014-06-08 04:08 - 2014-06-10 22:39 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
     
    Some content of TEMP:
    ====================
    C:\Users\Aleiyia\AppData\Local\Temp\bfguni.exe
     
     
    ==================== Bamital & volsnap Check =================
     
    C:\Windows\System32\winlogon.exe => File is digitally signed
    C:\Windows\System32\wininit.exe => File is digitally signed
    C:\Windows\SysWOW64\wininit.exe => File is digitally signed
    C:\Windows\explorer.exe => File is digitally signed
    C:\Windows\SysWOW64\explorer.exe => File is digitally signed
    C:\Windows\System32\svchost.exe => File is digitally signed
    C:\Windows\SysWOW64\svchost.exe => File is digitally signed
    C:\Windows\System32\services.exe => File is digitally signed
    C:\Windows\System32\User32.dll => File is digitally signed
    C:\Windows\SysWOW64\User32.dll => File is digitally signed
    C:\Windows\System32\userinit.exe => File is digitally signed
    C:\Windows\SysWOW64\userinit.exe => File is digitally signed
    C:\Windows\System32\rpcss.dll => File is digitally signed
    C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
     
     
    LastRegBack: 2014-06-28 12:50
     
    ==================== End Of Log ============================

    Attached Files



    #7 JSntgRvr

    JSntgRvr

      Master Surgeon General


    • Malware Response Team
    • 10,822 posts
    • ONLINE
    •  
    • Gender:Male
    • Location:Puerto Rico
    • Local time:10:37 AM

    Posted 04 July 2014 - 02:15 PM

    Please download the latest version of TDSSKiller from here and save it to your Desktop.

    • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.

    5350-113-187993.png

    • Then click on Change parameters in TDSSKiller.
    • Another window will appear.
    • Check all boxes then click OK.
    • Click the Start Scan button.

    19695967.jpg

    • The scan should take no longer than 2 minutes.
    • If a suspicious object is detected, the default action will be Skip, click on Continue.

    67776163.jpg

    • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.

    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    62117367.jpg
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.

    • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

    No request for help throughout private messaging will be attended.

    If I have helped you, consider making a donation to help me continue the fight against Malware!
    btn_donate_SM.gif


    #8 JamAli

    JamAli
    • Topic Starter

    • Members
    • 50 posts
    • OFFLINE
    •  
    • Gender:Female
    • Local time:09:37 AM

    Posted 05 July 2014 - 11:57 PM

    Having problems posting a reply



    #9 JamAli

    JamAli
    • Topic Starter

    • Members
    • 50 posts
    • OFFLINE
    •  
    • Gender:Female
    • Local time:09:37 AM

    Posted 06 July 2014 - 12:07 AM

    Good day,

             Thanks for the reply. The report will not paste (probably too big.) It will not attach (size: 918KB). I cannot transfer to word and attach(system won't accept). I am going to break it up into smaller segments and see if that will work.

     

     

    JamAli

     

    21:33:14.0815 0x10fc  TDSS rootkit removing tool 3.0.0.39 Jun  5 2014 20:35:54
    21:33:15.0611 0x10fc  ============================================================
    21:33:15.0611 0x10fc  Current date / time: 2014/07/04 21:33:15.0611
    21:33:15.0611 0x10fc  SystemInfo:
    21:33:15.0611 0x10fc  
    21:33:15.0611 0x10fc  OS Version: 6.1.7601 ServicePack: 1.0
    21:33:15.0611 0x10fc  Product type: Workstation
    21:33:15.0611 0x10fc  ComputerName: ALEIYA-PC
    21:33:15.0611 0x10fc  UserName: Aleiyia
    21:33:15.0611 0x10fc  Windows directory: C:\Windows
    21:33:15.0611 0x10fc  System windows directory: C:\Windows
    21:33:15.0611 0x10fc  Running under WOW64
    21:33:15.0611 0x10fc  Processor architecture: Intel x64
    21:33:15.0611 0x10fc  Number of processors: 8
    21:33:15.0611 0x10fc  Page size: 0x1000
    21:33:15.0611 0x10fc  Boot type: Normal boot
    21:33:15.0611 0x10fc  ============================================================
    21:33:15.0611 0x10fc  BG loaded
    21:33:22.0909 0x10fc  System UUID: {FDE41691-37BE-2A32-B318-7B8B4BB461B4}
    21:33:26.0060 0x10fc  Drive \Device\Harddisk0\DR0 - Size: 0x15D50F66000 ( 1397.27 Gb ), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
    21:33:26.0153 0x10fc  ============================================================
    21:33:26.0153 0x10fc  \Device\Harddisk0\DR0:
    21:33:26.0169 0x10fc  MBR partitions:
    21:33:26.0169 0x10fc  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x187F000
    21:33:26.0169 0x10fc  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1893000, BlocksNum 0xAD1F4000
    21:33:26.0169 0x10fc  ============================================================
    21:33:26.0497 0x10fc  C: <-> \Device\Harddisk0\DR0\Partition2
    21:33:26.0497 0x10fc  ============================================================
    21:33:26.0497 0x10fc  Initialize success
    21:33:26.0497 0x10fc  ============================================================
    21:35:04.0676 0x12d0  ============================================================
    21:35:04.0676 0x12d0  Scan started
    21:35:04.0676 0x12d0  Mode: Manual; SigCheck; TDLFS; 
    21:35:04.0676 0x12d0  ============================================================
    21:35:04.0676 0x12d0  KSN ping started
    21:35:07.0060 0x12d0  KSN ping finished: true
    21:35:10.0385 0x12d0  ================ Scan system memory ========================
    21:35:10.0385 0x12d0  System memory - ok
    21:35:10.0386 0x12d0  ================ Scan services =============================
    21:35:11.0229 0x12d0  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
    21:35:11.0325 0x12d0  1394ohci - ok
    21:35:11.0370 0x12d0  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
    21:35:11.0400 0x12d0  ACPI - ok
    21:35:11.0426 0x12d0  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
    21:35:11.0480 0x12d0  AcpiPmi - ok
    21:35:11.0756 0x12d0  [ E2769E2699AF88CA3C57289A8A32ED19, B89142CDF2DC4B35E15791B83092E4D6173E11D6A0D98149D7528AD9236972E1 ] AcronisOSSReinstallSvc C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe
    21:35:11.0807 0x12d0  AcronisOSSReinstallSvc - ok
    21:35:11.0932 0x12d0  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    21:35:11.0953 0x12d0  AdobeARMservice - ok
    21:35:12.0193 0x12d0  [ B5D8DE922237CEDDC7992297654A4BE4, 88EF0B5EBFB383C9069A29AEA8D76EDBE1E70DD6F7C18970EE01ECAE9F408B38 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    21:35:12.0215 0x12d0  AdobeFlashPlayerUpdateSvc - ok
    21:35:12.0257 0x12d0  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
    21:35:12.0280 0x12d0  adp94xx - ok
    21:35:12.0316 0x12d0  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
    21:35:12.0335 0x12d0  adpahci - ok
    21:35:12.0361 0x12d0  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
    21:35:12.0377 0x12d0  adpu320 - ok
    21:35:12.0422 0x12d0  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
    21:35:12.0453 0x12d0  AeLookupSvc - ok
    21:35:12.0501 0x12d0  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
    21:35:12.0547 0x12d0  AFD - ok
    21:35:12.0576 0x12d0  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
    21:35:12.0590 0x12d0  agp440 - ok
    21:35:12.0600 0x12d0  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
    21:35:12.0634 0x12d0  ALG - ok
    21:35:12.0662 0x12d0  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
    21:35:12.0674 0x12d0  aliide - ok
    21:35:12.0737 0x12d0  [ 68B2C801CDB2B3838E9C27C3C6F66C73, D2E7A062973CB4D1C33A299D5AEFCE943EB59934EBA427F3C99D03A56EFF7A96 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
    21:35:12.0787 0x12d0  AMD External Events Utility - ok
    21:35:12.0818 0x12d0  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
    21:35:12.0831 0x12d0  amdide - ok
    21:35:12.0847 0x12d0  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
    21:35:12.0886 0x12d0  AmdK8 - ok
    21:35:13.0267 0x12d0  [ 784C941B5A19D69814F9514CFB733906, 496E78FE91B1D6E146EEB79297C4A131D50875A8385438C376CA58A245D4A77E ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
    21:35:13.0586 0x12d0  amdkmdag - ok
    21:35:13.0636 0x12d0  [ 954759EAE7FB2591A5E7206AB0093AE7, A47FFCE75767CFE79A1CD2B42DC1FEEC8C65C0E503289DC70B751FECDD9CE9FF ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
    21:35:13.0675 0x12d0  amdkmdap - ok
    21:35:13.0713 0x12d0  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
    21:35:13.0739 0x12d0  AmdPPM - ok
    21:35:13.0765 0x12d0  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
    21:35:13.0779 0x12d0  amdsata - ok
    21:35:13.0811 0x12d0  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
    21:35:13.0827 0x12d0  amdsbs - ok
    21:35:13.0844 0x12d0  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
    21:35:13.0857 0x12d0  amdxata - ok
    21:35:13.0898 0x12d0  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
    21:35:13.0946 0x12d0  AppID - ok
    21:35:13.0975 0x12d0  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
    21:35:14.0029 0x12d0  AppIDSvc - ok
    21:35:14.0073 0x12d0  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
    21:35:14.0088 0x12d0  Appinfo - ok
    21:35:14.0147 0x12d0  [ 4FE5C6D40664AE07BE5105874357D2ED, 70DD05EE80B77EB2F781E0919885D1BBB1119EA1A8955935AF5AECD05E30F14A ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    21:35:14.0170 0x12d0  Apple Mobile Device - ok
    21:35:14.0216 0x12d0  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
    21:35:14.0241 0x12d0  arc - ok
    21:35:14.0262 0x12d0  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
    21:35:14.0276 0x12d0  arcsas - ok
    21:35:14.0418 0x12d0  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
    21:35:14.0474 0x12d0  aspnet_state - ok
    21:35:14.0546 0x12d0  [ 340B0467E98A8C92697D73034DB4BCB7, 342572B566747A05DA5391CFC027A6703AECCE29C3D288428884D8641A35D0F5 ] aswHwid         C:\Windows\system32\drivers\aswHwid.sys
    21:35:14.0562 0x12d0  aswHwid - ok
    21:35:14.0603 0x12d0  [ ED5B09937D559FFA53FC988D20031E98, EC9E50C9BC2184AE93944EA3115A25BADF5FFB91D11776498EBC9A0D60029A84 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
    21:35:14.0622 0x12d0  aswMonFlt - ok
    21:35:14.0655 0x12d0  [ 33C77DCB0AEC76E26BD6352A1A5281BB, CEA7BB3407C1F900DE5CB09F42AF7734811F86B7DE0085FADC7AAE8178D59665 ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
    21:35:14.0672 0x12d0  aswRdr - ok
    21:35:14.0726 0x12d0  [ BF5B9E9E97CED45208E498D9FA73688F, BCB2CC516EAD040573D80599C2306ECB26FCCB16A97B940327CD3A3CE9077877 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
    21:35:14.0748 0x12d0  aswRvrt - ok
    21:35:14.0896 0x12d0  [ F88CE00A7736C349ED1414D7ECDC9BED, 8C0783CE32968874065C2F46088B34F9C872F26C98AB8E8BA895D84CCB25E534 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
    21:35:14.0932 0x12d0  aswSnx - ok
    21:35:14.0989 0x12d0  [ 3AE912B08E2A1ABB2B63F3C56BED95C2, BE99BA3A74427444FEE5D47D70BDBA631DBBF50D80B0483C0675F87119926765 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
    21:35:15.0008 0x12d0  aswSP - ok
    21:35:15.0040 0x12d0  [ A7115ED31675BB823CFA9FE571C25676, DEEBB3920934DCDDD488DCFCB1E6F4C7EFDD3C79F31E41D59E292C3CF9400E95 ] aswStm          C:\Windows\system32\drivers\aswStm.sys
    21:35:15.0054 0x12d0  aswStm - ok
    21:35:15.0083 0x12d0  [ 47CBD3F64E412FFAFD93404580A3C7B9, F9B02E232416BAFC21BCBCDC0A3D9E5E855BFAF11F29ED2C4C469692E6688278 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
    21:35:15.0108 0x12d0  aswVmm - ok
    21:35:15.0154 0x12d0  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
    21:35:15.0213 0x12d0  AsyncMac - ok
    21:35:15.0287 0x12d0  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
    21:35:15.0309 0x12d0  atapi - ok
    21:35:15.0364 0x12d0  [ ED3A041014FBBFDC23D6C04F9C7A5D79, A039D8F4C0EA2101898A253E13DFED5FA8500C412ACC47835415E27C9BD068FF ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
    21:35:15.0396 0x12d0  AtiHDAudioService - ok
    21:35:15.0414 0x12d0  [ 637E0753BD6DEB8EA5314A5C357EC1A0, 2B479DBBF72A2AFB3DC65A3FDA30B628BC9FB21160EBD7E1BE44404C671B1D08 ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
    21:35:15.0429 0x12d0  AtiHdmiService - ok
    21:35:15.0490 0x12d0  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
    21:35:15.0571 0x12d0  AudioEndpointBuilder - ok
    21:35:15.0590 0x12d0  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
    21:35:15.0632 0x12d0  AudioSrv - ok
    21:35:15.0812 0x12d0  [ 37D17AE2936867F88EB3C4CBCBC6B8A1, E1F4D288CE1E5482A5594C8F9EEDE1E8134466F5E0C7DA32D88985497CD8588B ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    21:35:15.0825 0x12d0  avast! Antivirus - ok
    21:35:15.0898 0x12d0  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
    21:35:15.0982 0x12d0  AxInstSV - ok
    21:35:16.0021 0x12d0  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
    21:35:16.0057 0x12d0  b06bdrv - ok
    21:35:16.0093 0x12d0  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
    21:35:16.0128 0x12d0  b57nd60a - ok
    21:35:16.0145 0x12d0  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
    21:35:16.0178 0x12d0  BDESVC - ok
    21:35:16.0197 0x12d0  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
    21:35:16.0252 0x12d0  Beep - ok
    21:35:16.0314 0x12d0  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
    21:35:16.0342 0x12d0  BFE - ok
    21:35:16.0470 0x12d0  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll
    21:35:16.0563 0x12d0  BITS - ok
    21:35:16.0579 0x12d0  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
    21:35:16.0607 0x12d0  blbdrive - ok
    21:35:16.0688 0x12d0  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
    21:35:16.0713 0x12d0  Bonjour Service - ok
    21:35:16.0729 0x12d0  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
    21:35:16.0759 0x12d0  bowser - ok
    21:35:16.0773 0x12d0  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
    21:35:16.0800 0x12d0  BrFiltLo - ok
    21:35:16.0817 0x12d0  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
    21:35:16.0833 0x12d0  BrFiltUp - ok
    21:35:16.0857 0x12d0  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
    21:35:16.0901 0x12d0  BridgeMP - ok
    21:35:16.0923 0x12d0  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
    21:35:16.0941 0x12d0  Browser - ok
    21:35:16.0965 0x12d0  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
    21:35:16.0999 0x12d0  Brserid - ok
    21:35:17.0019 0x12d0  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
    21:35:17.0049 0x12d0  BrSerWdm - ok
    21:35:17.0063 0x12d0  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
    21:35:17.0092 0x12d0  BrUsbMdm - ok
    21:35:17.0125 0x12d0  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
    21:35:17.0139 0x12d0  BrUsbSer - ok
    21:35:17.0174 0x12d0  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
    21:35:17.0211 0x12d0  BTHMODEM - ok
    21:35:17.0247 0x12d0  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
    21:35:17.0292 0x12d0  bthserv - ok
    21:35:17.0334 0x12d0  catchme - ok
    21:35:17.0375 0x12d0  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
    21:35:17.0435 0x12d0  cdfs - ok
    21:35:17.0479 0x12d0  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\drivers\cdrom.sys
    21:35:17.0509 0x12d0  cdrom - ok
    21:35:17.0546 0x12d0  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
    21:35:17.0590 0x12d0  CertPropSvc - ok
    21:35:17.0611 0x12d0  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
    21:35:17.0642 0x12d0  circlass - ok
    21:35:17.0682 0x12d0  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
    21:35:17.0707 0x12d0  CLFS - ok
    21:35:17.0839 0x12d0  [ 6FBAED1D15BF7FE648CE0888F8DA034D, B593937DF1A00306816D19D4CBE8F253D6C24E22FF0AE1B88784CB7CC9AA6AB7 ] ClickToRunSvc   C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
    21:35:17.0893 0x12d0  ClickToRunSvc - ok
    21:35:17.0970 0x12d0  [ FDFF50AF8A708A23B7DE1D69C285A2AE, D3DD5553711FD5290FF0DFF7C2069D68E12EDCA3A3732A237C52602B59AA27AD ] CLKMSVC10_9EC60124 c:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe
    21:35:17.0993 0x12d0  CLKMSVC10_9EC60124 - ok
    21:35:18.0164 0x12d0  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    21:35:18.0176 0x12d0  clr_optimization_v2.0.50727_32 - ok
    21:35:18.0224 0x12d0  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
    21:35:18.0244 0x12d0  clr_optimization_v2.0.50727_64 - ok
    21:35:18.0298 0x12d0  clr_optimization_v4.0.30319_32 - ok
    21:35:18.0333 0x12d0  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
    21:35:18.0421 0x12d0  clr_optimization_v4.0.30319_64 - ok
    21:35:18.0476 0x12d0  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
    21:35:18.0514 0x12d0  CmBatt - ok
    21:35:18.0533 0x12d0  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
    21:35:18.0555 0x12d0  cmdide - ok
    21:35:18.0613 0x12d0  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
    21:35:18.0646 0x12d0  CNG - ok
    21:35:18.0655 0x12d0  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
    21:35:18.0668 0x12d0  Compbatt - ok
    21:35:18.0682 0x12d0  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
    21:35:18.0716 0x12d0  CompositeBus - ok
    21:35:18.0719 0x12d0  COMSysApp - ok
    21:35:18.0733 0x12d0  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
    21:35:18.0746 0x12d0  crcdisk - ok
    21:35:18.0780 0x12d0  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
    21:35:18.0817 0x12d0  CryptSvc - ok
    21:35:18.0855 0x12d0  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
    21:35:18.0913 0x12d0  DcomLaunch - ok
    21:35:18.0949 0x12d0  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
    21:35:18.0984 0x12d0  defragsvc - ok
    21:35:18.0999 0x12d0  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
    21:35:19.0038 0x12d0  DfsC - ok
    21:35:19.0062 0x12d0  [ 867FA8B9E9E3078F68C4089904BBF4B0, 323BDA5AE0952A61B863C22B86E5C70272E9AFD478DA61904F4998809B89F2B3 ] dgderdrv        C:\Windows\system32\drivers\dgderdrv.sys
    21:35:19.0073 0x12d0  dgderdrv - ok
    21:35:19.0090 0x12d0  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
    21:35:19.0129 0x12d0  Dhcp - ok
    21:35:19.0145 0x12d0  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
    21:35:19.0175 0x12d0  discache - ok
    21:35:19.0205 0x12d0  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
    21:35:19.0221 0x12d0  Disk - ok
    21:35:19.0270 0x12d0  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
    21:35:19.0294 0x12d0  Dnscache - ok
    21:35:19.0320 0x12d0  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
    21:35:19.0358 0x12d0  dot3svc - ok
    21:35:19.0405 0x12d0  [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
    21:35:19.0442 0x12d0  Dot4 - ok
    21:35:19.0457 0x12d0  [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print       C:\Windows\system32\drivers\Dot4Prt.sys
    21:35:19.0487 0x12d0  Dot4Print - ok
    21:35:19.0514 0x12d0  [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
    21:35:19.0550 0x12d0  dot4usb - ok
    21:35:19.0570 0x12d0  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
    21:35:19.0606 0x12d0  DPS - ok
    21:35:19.0648 0x12d0  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
    21:35:19.0682 0x12d0  drmkaud - ok
    21:35:19.0741 0x12d0  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
    21:35:19.0770 0x12d0  DXGKrnl - ok
    21:35:19.0820 0x12d0  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
    21:35:19.0866 0x12d0  EapHost - ok
    21:35:20.0037 0x12d0  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
    21:35:20.0184 0x12d0  ebdrv - ok
    21:35:20.0225 0x12d0  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
    21:35:20.0275 0x12d0  EFS - ok
    21:35:20.0365 0x12d0  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
    21:35:20.0398 0x12d0  ehRecvr - ok
    21:35:20.0412 0x12d0  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
    21:35:20.0444 0x12d0  ehSched - ok
    21:35:20.0502 0x12d0  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
    21:35:20.0531 0x12d0  elxstor - ok
    21:35:20.0609 0x12d0  [ 1E0764A8A8F39BAAEB271DA597422584, 0FEC21BF69925496E11DCDBB3409F63C0F7970FF2B68391CD6E3EF6F566FD2A3 ] EpsonCustomerParticipation C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
    21:35:20.0641 0x12d0  EpsonCustomerParticipation - ok
    21:35:20.0692 0x12d0  [ 20ECD0A490A121CB34F553FAD1DBBD39, 17C9DA33E78FBC7582B0AA53C611929B80FBBE1343B84A179D515B51C964D218 ] EpsonScanSvc    C:\Windows\system32\EscSvc64.exe
    21:35:20.0712 0x12d0  EpsonScanSvc - ok
    21:35:20.0816 0x12d0  [ A7E8186E04F38E836C19AC147F8B2ED0, 329639595F02060C215A6334FCE1651FB9B9B5679BA9052A487B57265608D162 ] EPSON_PM_RPCV4_05 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
    21:35:20.0835 0x12d0  EPSON_PM_RPCV4_05 - ok
    21:35:20.0856 0x12d0  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
    21:35:20.0905 0x12d0  ErrDev - ok
    21:35:20.0962 0x12d0  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
    21:35:21.0014 0x12d0  EventSystem - ok
    21:35:21.0031 0x12d0  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
    21:35:21.0066 0x12d0  exfat - ok
    21:35:21.0089 0x12d0  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
    21:35:21.0120 0x12d0  fastfat - ok
    21:35:21.0150 0x12d0  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
    21:35:21.0176 0x12d0  Fax - ok
    21:35:21.0200 0x12d0  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
    21:35:21.0236 0x12d0  fdc - ok
    21:35:21.0253 0x12d0  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
    21:35:21.0297 0x12d0  fdPHost - ok
    21:35:21.0345 0x12d0  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
    21:35:21.0388 0x12d0  FDResPub - ok
    21:35:21.0426 0x12d0  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
    21:35:21.0439 0x12d0  FileInfo - ok
    21:35:21.0452 0x12d0  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
    21:35:21.0513 0x12d0  Filetrace - ok
    21:35:21.0624 0x12d0  [ 8669BE94F63944E4F899C3950B520241, 9991E57B3C366D59BD186CEAA78D4590EDB2BC127250CF4D1522CBE413453E72 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    21:35:21.0695 0x12d0  FLEXnet Licensing Service - ok
    21:35:21.0712 0x12d0  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
    21:35:21.0728 0x12d0  flpydisk - ok
    21:35:21.0748 0x12d0  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
    21:35:21.0763 0x12d0  FltMgr - ok
    21:35:21.0871 0x12d0  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
    21:35:21.0909 0x12d0  FontCache - ok
    21:35:21.0958 0x12d0  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    21:35:21.0979 0x12d0  FontCache3.0.0.0 - ok
    21:35:21.0997 0x12d0  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
    21:35:22.0011 0x12d0  FsDepends - ok
    21:35:22.0131 0x12d0  [ DDEE99DC54EFA20BD5A442CD733C4462, 941D6C5D91F6419198F1A53BF7D33AA2D9118CEAC028B6ED8E5308751810B9B5 ] FsUsbExDisk     C:\Windows\SysWOW64\FsUsbExDisk.SYS
    21:35:22.0165 0x12d0  FsUsbExDisk - detected UnsignedFile.Multi.Generic ( 1 )
    21:35:24.0853 0x12d0  Detect skipped due to KSN trusted
    21:35:24.0853 0x12d0  FsUsbExDisk - ok
    21:35:24.0936 0x12d0  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
    21:35:24.0958 0x12d0  Fs_Rec - ok
    21:35:25.0018 0x12d0  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
    21:35:25.0054 0x12d0  fvevol - ok
    21:35:25.0115 0x12d0  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
    21:35:25.0143 0x12d0  gagp30kx - ok
    21:35:25.0193 0x12d0  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
    21:35:25.0209 0x12d0  GEARAspiWDM - ok
    21:35:25.0286 0x12d0  [ D3316F6E3C011435F36E3D6E49B3196C, 941DF52BA26603A146ED6B65A696DB87153868ED0469EF9C2EB09AC7E63525B7 ] GoToAssist      C:\Program Files (x86)\Citrix\GoToAssist\514\g2aservice.exe
    21:35:25.0306 0x12d0  GoToAssist - ok
    21:35:25.0370 0x12d0  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
    21:35:25.0436 0x12d0  gpsvc - ok
    21:35:25.0534 0x12d0  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    21:35:25.0554 0x12d0  gupdate - ok
    21:35:25.0579 0x12d0  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    21:35:25.0590 0x12d0  gupdatem - ok
    21:35:25.0598 0x12d0  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
    21:35:25.0627 0x12d0  hcw85cir - ok
    21:35:25.0644 0x12d0  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
    21:35:25.0675 0x12d0  HDAudBus - ok
    21:35:25.0694 0x12d0  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
    21:35:25.0742 0x12d0  HidBatt - ok
    21:35:25.0776 0x12d0  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
    21:35:25.0802 0x12d0  HidBth - ok
    21:35:25.0826 0x12d0  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
    21:35:25.0854 0x12d0  HidIr - ok
    21:35:25.0872 0x12d0  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
    21:35:25.0928 0x12d0  hidserv - ok
    21:35:25.0954 0x12d0  [ B3BF6B5B50006DEF50B66306D99FCF6F, D39A1DEBE7C464922919826D15199ED25E263BF58633593DD412D78F98921417 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
    21:35:25.0986 0x12d0  HidUsb - ok
    21:35:26.0019 0x12d0  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
    21:35:26.0095 0x12d0  hkmsvc - ok
    21:35:26.0123 0x12d0  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
    21:35:26.0162 0x12d0  HomeGroupListener - ok
    21:35:26.0195 0x12d0  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
    21:35:26.0228 0x12d0  HomeGroupProvider - ok
    21:35:26.0332 0x12d0  [ 1DAE5C46D42B02A6D5862E1482EFB390, 90B14E0A8376AE51872D89C141E88AE144B742805F94B4F7948E295322C78B9D ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
    21:35:26.0364 0x12d0  hpqcxs08 - detected UnsignedFile.Multi.Generic ( 1 )
    21:35:32.0233 0x12d0  Detect skipped due to KSN trusted
    21:35:32.0233 0x12d0  hpqcxs08 - ok
    21:35:32.0275 0x12d0  [ 99E8EEF42FE2F4AF29B08C3355DD7685, D57BC2148653DA5596FB49F1086D165B11C9F6C644608202C08305D3C8499CFE ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
    21:35:32.0290 0x12d0  hpqddsvc - detected UnsignedFile.Multi.Generic ( 1 )
    21:35:34.0972 0x12d0  Detect skipped due to KSN trusted
    21:35:34.0972 0x12d0  hpqddsvc - ok
    21:35:35.0009 0x12d0  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
    21:35:35.0032 0x12d0  HpSAMD - ok
    21:35:35.0104 0x12d0  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
    21:35:35.0179 0x12d0  HTTP - ok
    21:35:35.0193 0x12d0  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
    21:35:35.0206 0x12d0  hwpolicy - ok
    21:35:35.0253 0x12d0  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
    21:35:35.0279 0x12d0  i8042prt - ok
    21:35:35.0328 0x12d0  [ ABBF174CB394F5C437410A788B7E404A, 95554F675329E7062F0936E4E902FEFF2456CAD95D6C9B60DCC213EF6E4C62D8 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
    21:35:35.0352 0x12d0  iaStor - ok
    21:35:35.0404 0x12d0  [ 31A0E93CDF29007D6C6FFFB632F375ED, CA464928E9868B9A09C324DBBC8DA41A01C5C486B43578FC695250D523DE555B ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
    21:35:35.0421 0x12d0  IAStorDataMgrSvc - ok
    21:35:35.0448 0x12d0  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
    21:35:35.0469 0x12d0  iaStorV - ok
    21:35:35.0544 0x12d0  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
    21:35:35.0576 0x12d0  idsvc - ok
    21:35:35.0594 0x12d0  IEEtwCollectorService - ok
    21:35:35.0604 0x12d0  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
    21:35:35.0624 0x12d0  iirsp - ok
    21:35:35.0699 0x12d0  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
    21:35:35.0744 0x12d0  IKEEXT - ok
    21:35:35.0836 0x12d0  [ A0EAB13A78CC5FB960EC76E3D6408DA3, F536B151EB1F284E8F352A7D8C9C0EBBC2E852E5EB6F0F6C6C313F272CE617FE ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
    21:35:35.0896 0x12d0  IntcAzAudAddService - ok
    21:35:35.0933 0x12d0  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
    21:35:35.0963 0x12d0  intelide - ok
    21:35:35.0984 0x12d0  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
    21:35:36.0016 0x12d0  intelppm - ok
    21:35:36.0053 0x12d0  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
    21:35:36.0131 0x12d0  IPBusEnum - ok
    21:35:36.0147 0x12d0  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
    21:35:36.0221 0x12d0  IpFilterDriver - ok
    21:35:36.0283 0x12d0  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
    21:35:36.0332 0x12d0  iphlpsvc - ok
    21:35:36.0349 0x12d0  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
    21:35:36.0409 0x12d0  IPMIDRV - ok
    21:35:36.0454 0x12d0  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
    21:35:36.0540 0x12d0  IPNAT - ok
    21:35:36.0628 0x12d0  [ 0FF335D687C85097725A53458160E81E, BF8BB3C8AF1822BEB5FF5F8008614B982F277D862B16B6516CA91F73D336E9D4 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
    21:35:36.0649 0x12d0  iPod Service - ok
    21:35:36.0689 0x12d0  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
    21:35:36.0706 0x12d0  IRENUM - ok
    21:35:36.0720 0x12d0  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
    21:35:36.0732 0x12d0  isapnp - ok
    21:35:36.0796 0x12d0  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
    21:35:36.0819 0x12d0  iScsiPrt - ok
    21:35:36.0832 0x12d0  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
    21:35:36.0845 0x12d0  kbdclass - ok
    21:35:36.0864 0x12d0  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
    21:35:36.0878 0x12d0  kbdhid - ok
    21:35:36.0914 0x12d0  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
    21:35:36.0929 0x12d0  KeyIso - ok
    21:35:36.0944 0x12d0  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
    21:35:36.0957 0x12d0  KSecDD - ok
    21:35:37.0010 0x12d0  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
    21:35:37.0036 0x12d0  KSecPkg - ok
    21:35:37.0062 0x12d0  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
    21:35:37.0117 0x12d0  ksthunk - ok
    21:35:37.0154 0x12d0  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
    21:35:37.0201 0x12d0  KtmRm - ok
    21:35:37.0237 0x12d0  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
    21:35:37.0296 0x12d0  LanmanServer - ok
    21:35:37.0315 0x12d0  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
    21:35:37.0359 0x12d0  LanmanWorkstation - ok
    21:35:37.0391 0x12d0  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
    21:35:37.0444 0x12d0  lltdio - ok
    21:35:37.0476 0x12d0  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
    21:35:37.0516 0x12d0  lltdsvc - ok
    21:35:37.0529 0x12d0  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
    21:35:37.0559 0x12d0  lmhosts - ok
    21:35:37.0577 0x12d0  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
    21:35:37.0597 0x12d0  LSI_FC - ok
    21:35:37.0632 0x12d0  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
    21:35:37.0652 0x12d0  LSI_SAS - ok
    21:35:37.0696 0x12d0  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
    21:35:37.0716 0x12d0  LSI_SAS2 - ok
    21:35:37.0751 0x12d0  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
    21:35:37.0770 0x12d0  LSI_SCSI - ok
    21:35:37.0799 0x12d0  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
    21:35:37.0856 0x12d0  luafv - ok
    21:35:37.0893 0x12d0  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
    21:35:37.0919 0x12d0  Mcx2Svc - ok
    21:35:37.0939 0x12d0  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
    21:35:37.0954 0x12d0  megasas - ok
    21:35:38.0002 0x12d0  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
    21:35:38.0028 0x12d0  MegaSR - ok
    21:35:38.0072 0x12d0  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
    21:35:38.0135 0x12d0  MMCSS - ok
    21:35:38.0147 0x12d0  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
    21:35:38.0196 0x12d0  Modem - ok
    21:35:38.0226 0x12d0  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
    21:35:38.0261 0x12d0  monitor - ok
    21:35:38.0278 0x12d0  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
    21:35:38.0291 0x12d0  mouclass - ok
    21:35:38.0297 0x12d0  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
    21:35:38.0322 0x12d0  mouhid - ok
    21:35:38.0338 0x12d0  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
    21:35:38.0353 0x12d0  mountmgr - ok
    21:35:38.0470 0x12d0  [ 26EA1DAD601EE3ACAC301D66F07BA219, C9594BB15D53D4AC2156CCCD2DB65B2C20620F1F60DA85F48D1586FC10028096 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
    21:35:38.0492 0x12d0  MozillaMaintenance - ok
    21:35:38.0542 0x12d0  [ 9FA705BE049065E8179925CFDDAE0B1C, C8105BC2AE757E92F8419149456C02718F247CD24DB2863B1B69AC2CA789910E ] mozybackup      C:\Program Files\MozyHome\mozybackup.exe
    21:35:38.0558 0x12d0  mozybackup - ok
    21:35:38.0585 0x12d0  [ E7C9CCAA210D23096118184CF583C952, 58E075ED163A4F78E0C55F4EEC4CBFCBDF6C208E4E72C6134596105342A017E4 ] mozyFilter      C:\Windows\system32\DRIVERS\mozy.sys
    21:35:38.0604 0x12d0  mozyFilter - ok
    21:35:38.0624 0x12d0  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
    21:35:38.0639 0x12d0  mpio - ok
    21:35:38.0657 0x12d0  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
    21:35:38.0689 0x12d0  mpsdrv - ok
    21:35:38.0760 0x12d0  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
    21:35:38.0816 0x12d0  MpsSvc - ok
    21:35:38.0857 0x12d0  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
    21:35:38.0897 0x12d0  MRxDAV - ok
    21:35:38.0914 0x12d0  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
    21:35:38.0943 0x12d0  mrxsmb - ok
    21:35:38.0973 0x12d0  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
    21:35:39.0017 0x12d0  mrxsmb10 - ok
    21:35:39.0036 0x12d0  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
    21:35:39.0059 0x12d0  mrxsmb20 - ok
    21:35:39.0092 0x12d0  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
    21:35:39.0114 0x12d0  msahci - ok
    21:35:39.0159 0x12d0  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
    21:35:39.0180 0x12d0  msdsm - ok
    21:35:39.0197 0x12d0  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
    21:35:39.0227 0x12d0  MSDTC - ok
    21:35:39.0260 0x12d0  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
    21:35:39.0304 0x12d0  Msfs - ok
    21:35:39.0322 0x12d0  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
    21:35:39.0372 0x12d0  mshidkmdf - ok
    21:35:39.0389 0x12d0  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
    21:35:39.0403 0x12d0  msisadrv - ok
    21:35:39.0460 0x12d0  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
    21:35:39.0501 0x12d0  MSiSCSI - ok
    21:35:39.0503 0x12d0  msiserver - ok
    21:35:39.0525 0x12d0  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
    21:35:39.0605 0x12d0  MSKSSRV - ok
    21:35:39.0624 0x12d0  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
    21:35:39.0709 0x12d0  MSPCLOCK - ok
    21:35:39.0728 0x12d0  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
    21:35:39.0812 0x12d0  MSPQM - ok
    21:35:39.0838 0x12d0  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
    21:35:39.0859 0x12d0  MsRPC - ok
    21:35:39.0874 0x12d0  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
    21:35:39.0886 0x12d0  mssmbios - ok
    21:35:39.0903 0x12d0  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
    21:35:39.0982 0x12d0  MSTEE - ok
    21:35:39.0993 0x12d0  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
    21:35:40.0043 0x12d0  MTConfig - ok
    21:35:40.0056 0x12d0  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
    21:35:40.0078 0x12d0  Mup - ok
    21:35:40.0134 0x12d0  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
    21:35:40.0195 0x12d0  napagent - ok
    21:35:40.0222 0x12d0  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
    21:35:40.0273 0x12d0  NativeWifiP - ok
    21:35:40.0337 0x12d0  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
    21:35:40.0372 0x12d0  NDIS - ok
    21:35:40.0394 0x12d0  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
    21:35:40.0474 0x12d0  NdisCap - ok
    21:35:40.0505 0x12d0  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
    21:35:40.0561 0x12d0  NdisTapi - ok
    21:35:40.0589 0x12d0  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
    21:35:40.0659 0x12d0  Ndisuio - ok
    21:35:40.0677 0x12d0  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
    21:35:40.0719 0x12d0  NdisWan - ok
    21:35:40.0735 0x12d0  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
    21:35:40.0808 0x12d0  NDProxy - ok
    21:35:40.0871 0x12d0  [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
    21:35:40.0883 0x12d0  Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
    21:35:43.0487 0x12d0  Detect skipped due to KSN trusted
    21:35:43.0487 0x12d0  Net Driver HPZ12 - ok
    21:35:43.0530 0x12d0  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
    21:35:43.0594 0x12d0  NetBIOS - ok
    21:35:43.0628 0x12d0  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
    21:35:43.0677 0x12d0  NetBT - ok
    21:35:43.0710 0x12d0  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
    21:35:43.0733 0x12d0  Netlogon - ok
    21:35:43.0788 0x12d0  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
    21:35:43.0841 0x12d0  Netman - ok
    21:35:43.0925 0x12d0  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
    21:35:43.0950 0x12d0  NetMsmqActivator - ok
    21:35:43.0956 0x12d0  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
    21:35:43.0972 0x12d0  NetPipeActivator - ok
    21:35:43.0992 0x12d0  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
    21:35:44.0045 0x12d0  netprofm - ok
    21:35:44.0050 0x12d0  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
    21:35:44.0066 0x12d0  NetTcpActivator - ok
    21:35:44.0071 0x12d0  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
    21:35:44.0086 0x12d0  NetTcpPortSharing - ok
    21:35:44.0122 0x12d0  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
    21:35:44.0143 0x12d0  nfrd960 - ok
    21:35:44.0200 0x12d0  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
    21:35:44.0242 0x12d0  NlaSvc - ok
    21:35:44.0393 0x12d0  [ B9B72FAAAA41D59B73B88FE3DD737ED1, 050E741FB5313523340B19C9C168611222C4AE9A6084FE3E2F908A49EA909A29 ] NOBU            C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
    21:35:44.0454 0x12d0  NOBU - ok
    21:35:44.0492 0x12d0  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
    21:35:44.0520 0x12d0  Npfs - ok
    21:35:44.0560 0x12d0  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
    21:35:44.0617 0x12d0  nsi - ok
    21:35:44.0632 0x12d0  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
    21:35:44.0676 0x12d0  nsiproxy - ok
    21:35:44.0772 0x12d0  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
    21:35:44.0830 0x12d0  Ntfs - ok
    21:35:44.0845 0x12d0  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
    21:35:44.0874 0x12d0  Null - ok
    21:35:44.0893 0x12d0  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
    21:35:44.0909 0x12d0  nvraid - ok
    21:35:44.0936 0x12d0  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
    21:35:44.0961 0x12d0  nvstor - ok
    21:35:44.0980 0x12d0  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
    21:35:44.0995 0x12d0  nv_agp - ok
    21:35:45.0024 0x12d0  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
    21:35:45.0051 0x12d0  ohci1394 - ok
    21:35:45.0114 0x12d0  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    21:35:45.0141 0x12d0  ose - ok
    21:35:45.0368 0x12d0  [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
    21:35:45.0536 0x12d0  osppsvc - ok
    21:35:45.0581 0x12d0  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
    21:35:45.0614 0x12d0  p2pimsvc - ok
    21:35:45.0680 0x12d0  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
    21:35:45.0714 0x12d0  p2psvc - ok
    21:35:45.0752 0x12d0  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
    21:35:45.0778 0x12d0  Parport - ok
    21:35:45.0814 0x12d0  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
    21:35:45.0836 0x12d0  partmgr - ok
    21:35:45.0891 0x12d0  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
    21:35:45.0926 0x12d0  PcaSvc - ok
    21:35:45.0946 0x12d0  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
    21:35:45.0962 0x12d0  pci - ok
    21:35:46.0001 0x12d0  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
    21:35:46.0016 0x12d0  pciide - ok
    21:35:46.0098 0x12d0  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
    21:35:46.0124 0x12d0  pcmcia - ok
    21:35:46.0138 0x12d0  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
    21:35:46.0152 0x12d0  pcw - ok
    21:35:46.0266 0x12d0  [ 20372BE109FEE1C37E2D5216680DB9EB, 2C3737FB3C6BCF81D0A7293667412DDEA649A8AEA40B7ADCFCB9893E8B3C4AF3 ] PDF Architect Helper Service C:\Program Files (x86)\PDF Architect\HelperService.exe
    21:35:46.0299 0x12d0  PDF Architect Helper Service - ok
    21:35:46.0400 0x12d0  [ B90A279073A815A4AA2C45A09EE004FA, 9EA27630C47F5FF99CBBE513C113F3ED01FABA0D59B9D9637764027BCC6EA24A ] PDF Architect Service C:\Program Files (x86)\PDF Architect\ConversionService.exe
    21:35:46.0426 0x12d0  PDF Architect Service - ok
    21:35:46.0468 0x12d0  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
    21:35:46.0520 0x12d0  PEAUTH - ok
    21:35:46.0591 0x12d0  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
    21:35:46.0648 0x12d0  PerfHost - ok
    21:35:46.0719 0x12d0  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
    21:35:46.0794 0x12d0  pla - ok
    21:35:46.0858 0x12d0  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
    21:35:46.0893 0x12d0  PlugPlay - ok
    21:35:46.0935 0x12d0  [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
    21:35:46.0955 0x12d0  Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
    21:35:49.0629 0x12d0  Detect skipped due to KSN trusted
    21:35:49.0629 0x12d0  Pml Driver HPZ12 - ok
    21:35:49.0646 0x12d0  PnkBstrA - ok
    21:35:49.0696 0x12d0  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
    21:35:49.0722 0x12d0  PNRPAutoReg - ok
    21:35:49.0745 0x12d0  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
    21:35:49.0766 0x12d0  PNRPsvc - ok
    21:35:49.0821 0x12d0  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
    21:35:49.0887 0x12d0  PolicyAgent - ok
    21:35:49.0924 0x12d0  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
    21:35:49.0976 0x12d0  Power - ok
    21:35:50.0033 0x12d0  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
    21:35:50.0084 0x12d0  PptpMiniport - ok
    21:35:50.0101 0x12d0  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
    21:35:50.0131 0x12d0  Processor - ok
    21:35:50.0171 0x12d0  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
    21:35:50.0197 0x12d0  ProfSvc - ok
    21:35:50.0206 0x12d0  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
    21:35:50.0219 0x12d0  ProtectedStorage - ok
    21:35:50.0230 0x12d0  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
    21:35:50.0276 0x12d0  Psched - ok
    21:35:50.0302 0x12d0  [ 87B04878A6D59D6C79251DC960C674C1, 3EB8DB0624E646F0A65D0381408D35CF9FDC5ABFC30DF6431F4070A8EB68447C ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
    21:35:50.0316 0x12d0  PxHlpa64 - ok
    21:35:50.0374 0x12d0  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
    21:35:50.0430 0x12d0  ql2300 - ok
    21:35:50.0453 0x12d0  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
    21:35:50.0476 0x12d0  ql40xx - ok
    21:35:50.0494 0x12d0  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
    21:35:50.0518 0x12d0  QWAVE - ok
    21:35:50.0529 0x12d0  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
    21:35:50.0559 0x12d0  QWAVEdrv - ok
    21:35:50.0572 0x12d0  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
    21:35:50.0603 0x12d0  RasAcd - ok
    21:35:50.0644 0x12d0  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
    21:35:50.0683 0x12d0  RasAgileVpn - ok
    21:35:50.0699 0x12d0  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
    21:35:50.0733 0x12d0  RasAuto - ok
    21:35:50.0751 0x12d0  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
    21:35:50.0800 0x12d0  Rasl2tp - ok
    21:35:50.0822 0x12d0  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
    21:35:50.0859 0x12d0  RasMan - ok
    21:35:50.0874 0x12d0  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
    21:35:50.0918 0x12d0  RasPppoe - ok
    21:35:50.0934 0x12d0  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
    21:35:50.0965 0x12d0  RasSstp - ok
    21:35:50.0977 0x12d0  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
    21:35:51.0022 0x12d0  rdbss - ok
    21:35:51.0040 0x12d0  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
    21:35:51.0055 0x12d0  rdpbus - ok
    21:35:51.0080 0x12d0  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
    21:35:51.0124 0x12d0  RDPCDD - ok
    21:35:51.0137 0x12d0  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
    21:35:51.0178 0x12d0  RDPENCDD - ok
    21:35:51.0197 0x12d0  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
    21:35:51.0229 0x12d0  RDPREFMP - ok
    21:35:51.0245 0x12d0  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
    21:35:51.0265 0x12d0  RDPWD - ok
    21:35:51.0284 0x12d0  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
    21:35:51.0302 0x12d0  rdyboost - ok
    21:35:51.0332 0x12d0  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
    21:35:51.0386 0x12d0  RemoteAccess - ok
    21:35:51.0424 0x12d0  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
    21:35:51.0475 0x12d0  RemoteRegistry - ok
    21:35:51.0572 0x12d0  [ BDDC447AB46625A54619808575D5CB46, 5321343BFB972A111D27DED7A3F3A3520E0C77104E6139ADC7765C76A459ED9C ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
    21:35:51.0602 0x12d0  RoxMediaDB12OEM - ok
    21:35:51.0634 0x12d0  [ CE203243ADF512540249DF9C264F12DD, 7BC0A6E9A422D832DDF046F28EA0F80A879A007B7116C4B830D6A39DCDD09EF5 ] RoxWatch12      C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
    21:35:51.0657 0x12d0  RoxWatch12 - ok
    21:35:51.0690 0x12d0  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
    21:35:51.0753 0x12d0  RpcEptMapper - ok
    21:35:51.0769 0x12d0  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
    21:35:51.0786 0x12d0  RpcLocator - ok
    21:35:51.0829 0x12d0  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
    21:35:51.0871 0x12d0  RpcSs - ok
    21:35:51.0881 0x12d0  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
    21:35:51.0928 0x12d0  rspndr - ok
    21:35:51.0982 0x12d0  [ 5AAB4808E8CCAE8C2ECDA5B791260616, EFA49ADD657D209AFE73CE0E9184E319D5F7A8A0C6B60BEFA0AAB172B2D397BA ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
    21:35:51.0995 0x12d0  RSUSBSTOR - ok
    21:35:52.0024 0x12d0  [ 777FC2C418465404E3D8A290DC247D24, D053ABB41B0F859762E4BE724EF4EB9F39B83215BC1C7C02B3BE8F02B2A4B094 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
    21:35:52.0050 0x12d0  RTL8167 - ok
    21:35:52.0071 0x12d0  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
    21:35:52.0084 0x12d0  SamSs - ok
    21:35:52.0099 0x12d0  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
    21:35:52.0113 0x12d0  sbp2port - ok
    21:35:52.0128 0x12d0  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
    21:35:52.0163 0x12d0  SCardSvr - ok
    21:35:52.0175 0x12d0  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
    21:35:52.0204 0x12d0  scfilter - ok
    21:35:52.0240 0x12d0  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
    21:35:52.0291 0x12d0  Schedule - ok
    21:35:52.0324 0x12d0  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
    21:35:52.0363 0x12d0  SCPolicySvc - ok
    21:35:52.0376 0x12d0  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
    21:35:52.0405 0x12d0  SDRSVC - ok
    21:35:52.0432 0x12d0  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
    21:35:52.0475 0x12d0  secdrv - ok
    21:35:52.0482 0x12d0  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
    21:35:52.0527 0x12d0  seclogon - ok
    21:35:52.0543 0x12d0  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
    21:35:52.0586 0x12d0  SENS - ok
    21:35:52.0611 0x12d0  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
    21:35:52.0628 0x12d0  SensrSvc - ok
    21:35:52.0651 0x12d0  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
    21:35:52.0680 0x12d0  Serenum - ok
    21:35:52.0699 0x12d0  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
    21:35:52.0735 0x12d0  Serial - ok
    21:35:52.0759 0x12d0  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
    21:35:52.0797 0x12d0  sermouse - ok
    21:35:52.0820 0x12d0  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
    21:35:52.0891 0x12d0  SessionEnv - ok
    21:35:52.0911 0x12d0  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
    21:35:52.0940 0x12d0  sffdisk - ok
    21:35:52.0953 0x12d0  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
    21:35:52.0970 0x12d0  sffp_mmc - ok
    21:35:52.0981 0x12d0  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
    21:35:53.0014 0x12d0  sffp_sd - ok
    21:35:53.0035 0x12d0  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
    21:35:53.0069 0x12d0  sfloppy - ok
    21:35:53.0172 0x12d0  [ 74EC60E20516AAA573BE74F31175270F, 35A68231368DEE46FEF2A4E30BFAAC38F093FC5A362A7491ED38BDE11F0FC356 ] SftService      C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE
    21:35:53.0212 0x12d0  SftService - ok
    21:35:53.0274 0x12d0  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
    21:35:53.0342 0x12d0  SharedAccess - ok
    21:35:53.0398 0x12d0  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
    21:35:53.0449 0x12d0  ShellHWDetection - ok
    21:35:53.0463 0x12d0  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
    21:35:53.0478 0x12d0  SiSRaid2 - ok
    21:35:53.0489 0x12d0  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
    21:35:53.0504 0x12d0  SiSRaid4 - ok
    21:35:53.0602 0x12d0  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
    21:35:53.0630 0x12d0  SkypeUpdate - ok
    21:35:53.0653 0x12d0  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
    21:35:53.0686 0x12d0  Smb - ok
    21:35:53.0702 0x12d0  [ B84440E7554FC85E900EEF0A7AABA228, AB98ABB028133785E40176C0662DA2B23226938FCA0091AE23D89532E85BBA15 ] snapman         C:\Windows\system32\DRIVERS\snapman.sys
    21:35:53.0716 0x12d0  snapman - ok
    21:35:53.0729 0x12d0  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
    21:35:53.0757 0x12d0  SNMPTRAP - ok
    21:35:53.0775 0x12d0  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
    21:35:53.0788 0x12d0  spldr - ok
    21:35:53.0812 0x12d0  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
    21:35:53.0839 0x12d0  Spooler - ok
    21:35:53.0964 0x12d0  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
    21:35:54.0067 0x12d0  sppsvc - ok
    21:35:54.0101 0x12d0  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
    21:35:54.0159 0x12d0  sppuinotify - ok
    21:35:54.0190 0x12d0  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
    21:35:54.0224 0x12d0  srv - ok
    21:35:54.0251 0x12d0  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
    21:35:54.0272 0x12d0  srv2 - ok
    21:35:54.0282 0x12d0  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
    21:35:54.0313 0x12d0  srvnet - ok
    21:35:54.0346 0x12d0  [ 52D6F40B50ECFC051979FEC68E74F0F8, 9C8C65AC69BA5C9885CF2A4BD72B869754948377AA3FED2680E7BF8C5639F2A2 ] ssadbus         C:\Windows\system32\DRIVERS\ssadbus.sys
    21:35:54.0363 0x12d0  ssadbus - ok
    21:35:54.0394 0x12d0  [ D6CFD3B2EABCF9327DE39C62BABFA1E3, C748AF55B07FCB9C5A3E3E0CB783CE6387A2C5D646BCA6B5F5FFF37ACCE82AD3 ] ssadmdfl        C:\Windows\system32\DRIVERS\ssadmdfl.sys
    21:35:54.0414 0x12d0  ssadmdfl - ok
    21:35:54.0464 0x12d0  [ 5EB01E6148742C3EC2185AC92F6D16FD, 5BD22C745D9BD47C60929F9C556E4B262F9415866EFE9F9263EAD916D74ECAE0 ] ssadmdm         C:\Windows\system32\DRIVERS\ssadmdm.sys
    21:35:54.0488 0x12d0  ssadmdm - ok
    21:35:54.0545 0x12d0  [ DF11D259C10C9D0DFCCBA1093C5DB1BD, A9AEF5D88DDDCE27A4640FE82CED92A4957C42F8E9EEDFC52DC128A66E0B43ED ] sscdbus         C:\Windows\system32\DRIVERS\sscdbus.sys
    21:35:54.0568 0x12d0  sscdbus - ok
    21:35:54.0591 0x12d0  [ 3EF9386DC95BF2AE60D08367E5E4E785, BC75B656EC8D9497F2A10A5A7B226CB06F1664C044BAF2C10AB0AD884A0E364A ] sscdmdfl        C:\Windows\system32\DRIVERS\sscdmdfl.sys
    21:35:54.0609 0x12d0  sscdmdfl - ok
    21:35:54.0628 0x12d0  [ 00D2AA893C662A9EB9B779F6CA2B0DFB, D9DF6D5C7006A417F629C89FB94F735F807FB781242B5C7B1D82D08828FA2BA9 ] sscdmdm         C:\Windows\system32\DRIVERS\sscdmdm.sys
    21:35:54.0647 0x12d0  sscdmdm - ok
    21:35:54.0669 0x12d0  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
    21:35:54.0722 0x12d0  SSDPSRV - ok
    21:35:54.0737 0x12d0  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
    21:35:54.0770 0x12d0  SstpSvc - ok
    21:35:54.0837 0x12d0  [ 54BF0E8619D58271851670649764AA92, A5BFBEE4CF37C43755B7727616FD2E2FEEF8F2DF59D80A5C2B15745B0B92A652 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
    21:35:54.0868 0x12d0  Steam Client Service - ok
    21:35:54.0884 0x12d0  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
    21:35:54.0898 0x12d0  stexstor - ok
    21:35:54.0961 0x12d0  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
    21:35:55.0004 0x12d0  stisvc - ok
    21:35:55.0062 0x12d0  [ 9E182DD94496550A22A392CC1A8E0F52, 6F630982F7AFDF409F24BB0D9815592000FC8A47200F4FEC4A5C5ED241810244 ] stllssvr        C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
    21:35:55.0083 0x12d0  stllssvr - ok
    21:35:55.0093 0x12d0  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
    21:35:55.0109 0x12d0  swenum - ok
    21:35:55.0128 0x12d0  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
    21:35:55.0185 0x12d0  swprv - ok
    21:35:55.0238 0x12d0  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
    21:35:55.0305 0x12d0  SysMain - ok
    21:35:55.0333 0x12d0  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
    21:35:55.0356 0x12d0  TabletInputService - ok
    21:35:55.0378 0x12d0  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
    21:35:55.0426 0x12d0  TapiSrv - ok
    21:35:55.0443 0x12d0  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
    21:35:55.0474 0x12d0  TBS - ok
    21:35:55.0546 0x12d0  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
    21:35:55.0613 0x12d0  Tcpip - ok
    21:35:55.0685 0x12d0  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
    21:35:55.0731 0x12d0  TCPIP6 - ok
    21:35:55.0744 0x12d0  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
    21:35:55.0780 0x12d0  tcpipreg - ok
    21:35:55.0814 0x12d0  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
    21:35:55.0852 0x12d0  TDPIPE - ok
    21:35:55.0873 0x12d0  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
    21:35:55.0897 0x12d0  TDTCP - ok
    21:35:55.0915 0x12d0  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
    21:35:55.0959 0x12d0  tdx - ok
    21:35:56.0074 0x12d0  [ 01A402D34732CA3DA91786ADCC765069, 863AB0336B092CDF0A5256707D2EAFC0DE3A894C40944AD45A8CD54E725F3FBD ] TeamViewer6     C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
    21:35:56.0126 0x12d0  TeamViewer6 - ok
    21:35:56.0139 0x12d0  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
    21:35:56.0152 0x12d0  TermDD - ok
    21:35:56.0184 0x12d0  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
    21:35:56.0243 0x12d0  TermService - ok
    21:35:56.0274 0x12d0  [ CE4B6956E4E12492715A53076E58761F, 0D12934B8F7D18F5785A3EAEDEC2CBD1C3627F7D73C73E9329C73A3B99990D36 ] TFsExDisk       C:\Windows\System32\Drivers\TFsExDisk.sys
    21:35:56.0292 0x12d0  TFsExDisk - ok
    21:35:56.0307 0x12d0  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
    21:35:56.0337 0x12d0  Themes - ok
    21:35:56.0369 0x12d0  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
    21:35:56.0411 0x12d0  THREADORDER - ok
    21:35:56.0447 0x12d0  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
    21:35:56.0494 0x12d0  TrkWks - ok
    21:35:56.0542 0x12d0  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
    21:35:56.0596 0x12d0  TrustedInstaller - ok
    21:35:56.0631 0x12d0  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
    21:35:56.0671 0x12d0  tssecsrv - ok
    21:35:56.0697 0x12d0  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
    21:35:56.0734 0x12d0  TsUsbFlt - ok
    21:35:56.0777 0x12d0  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
    21:35:56.0845 0x12d0  tunnel - ok
    21:35:56.0860 0x12d0  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
    21:35:56.0875 0x12d0  uagp35 - ok
    21:35:56.0895 0x12d0  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
    21:35:56.0944 0x12d0  udfs - ok
    21:35:56.0981 0x12d0  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
    21:35:57.0000 0x12d0  UI0Detect - ok
    21:35:57.0017 0x12d0  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
    21:35:57.0033 0x12d0  uliagpkx - ok
    21:35:57.0056 0x12d0  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
    21:35:57.0089 0x12d0  umbus - ok
    21:35:57.0106 0x12d0  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
    21:35:57.0133 0x12d0  UmPass - ok
    21:35:57.0163 0x12d0  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
    21:35:57.0203 0x12d0  upnphost - ok
    21:35:57.0235 0x12d0  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
    21:35:57.0259 0x12d0  USBAAPL64 - ok
    21:35:57.0311 0x12d0  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
    21:35:57.0352 0x12d0  usbaudio - ok
    21:35:57.0369 0x12d0  [ 945BFBA692C0F3CDF5A9D824972188F6, B8310C73B1FA2B938940BB9DBD774E712F0C4B95144FEAEDD0B94453E5BECF88 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
    21:35:57.0406 0x12d0  usbccgp - ok
    21:35:57.0457 0x12d0  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
    21:35:57.0479 0x12d0  usbcir - ok
    21:35:57.0514 0x12d0  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
    21:35:57.0537 0x12d0  usbehci - ok
    21:35:57.0558 0x12d0  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
    21:35:57.0586 0x12d0  usbhub - ok
    21:35:57.0606 0x12d0  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
    21:35:57.0623 0x12d0  usbohci - ok
    21:35:57.0648 0x12d0  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
    21:35:57.0686 0x12d0  usbprint - ok
    21:35:57.0734 0x12d0  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
    21:35:57.0758 0x12d0  usbscan - ok
    21:35:57.0773 0x12d0  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
    21:35:57.0797 0x12d0  USBSTOR - ok
    21:35:57.0822 0x12d0  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
    21:35:57.0834 0x12d0  usbuhci - ok
    21:35:57.0870 0x12d0  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
    21:35:57.0935 0x12d0  UxSms - ok
    21:35:57.0948 0x12d0  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
    21:35:57.0962 0x12d0  VaultSvc - ok
    21:35:57.0970 0x12d0  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
    21:35:57.0984 0x12d0  vdrvroot - ok
    21:35:58.0010 0x12d0  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
    21:35:58.0054 0x12d0  vds - ok
    21:35:58.0072 0x12d0  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
    21:35:58.0089 0x12d0  vga - ok
    21:35:58.0102 0x12d0  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
    21:35:58.0130 0x12d0  VgaSave - ok
    21:35:58.0147 0x12d0  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
    21:35:58.0164 0x12d0  vhdmp - ok
    21:35:58.0198 0x12d0  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
    21:35:58.0219 0x12d0  viaide - ok
    21:35:58.0234 0x12d0  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
    21:35:58.0248 0x12d0  volmgr - ok
    21:35:58.0266 0x12d0  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
    21:35:58.0285 0x12d0  volmgrx - ok
    21:35:58.0306 0x12d0  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
    21:35:58.0325 0x12d0  volsnap - ok
    21:35:58.0344 0x12d0  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
    21:35:58.0360 0x12d0  vsmraid - ok
    21:35:58.0446 0x12d0  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
    21:35:58.0545 0x12d0  VSS - ok
    21:35:58.0566 0x12d0  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
    21:35:58.0607 0x12d0  vwifibus - ok
    21:35:58.0644 0x12d0  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
    21:35:58.0700 0x12d0  W32Time - ok
    21:35:58.0716 0x12d0  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
    21:35:58.0731 0x12d0  WacomPen - ok
    21:35:58.0749 0x12d0  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
    21:35:58.0803 0x12d0  WANARP - ok
    21:35:58.0807 0x12d0  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
    21:35:58.0837 0x12d0  Wanarpv6 - ok
    21:35:58.0918 0x12d0  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
    21:35:58.0984 0x12d0  WatAdminSvc - ok
    21:35:59.0027 0x12d0  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
    21:35:59.0116 0x12d0  wbengine - ok
    21:35:59.0135 0x12d0  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
    21:35:59.0159 0x12d0  WbioSrvc - ok
    21:35:59.0198 0x12d0  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
    21:35:59.0255 0x12d0  wcncsvc - ok
    21:35:59.0269 0x12d0  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
    21:35:59.0289 0x12d0  WcsPlugInService - ok
    21:35:59.0324 0x12d0  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
    21:35:59.0344 0x12d0  Wd - ok
    21:35:59.0405 0x12d0  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
    21:35:59.0443 0x12d0  Wdf01000 - ok
    21:35:59.0483 0x12d0  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
    21:35:59.0516 0x12d0  WdiServiceHost - ok
    21:35:59.0520 0x12d0  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
    21:35:59.0541 0x12d0  WdiSystemHost - ok
    21:35:59.0583 0x12d0  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
    21:35:59.0613 0x12d0  WebClient - ok
    21:35:59.0630 0x12d0  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
    21:35:59.0675 0x12d0  Wecsvc - ok
    21:35:59.0689 0x12d0  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
    21:35:59.0720 0x12d0  wercplsupport - ok
    21:35:59.0745 0x12d0  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
    21:35:59.0799 0x12d0  WerSvc - ok
    21:35:59.0824 0x12d0  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
    21:35:59.0855 0x12d0  WfpLwf - ok
    21:35:59.0880 0x12d0  [ B14EF15BD757FA488F9C970EEE9C0D35, F27DF2D47E7076786AE7C396583D7A1C56B93E766711066C900964FC7313E794 ] WimFltr         C:\Windows\system32\DRIVERS\wimfltr.sys
    21:35:59.0896 0x12d0  WimFltr - ok
    21:35:59.0911 0x12d0  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
    21:35:59.0925 0x12d0  WIMMount - ok
    21:35:59.0949 0x12d0  WinDefend - ok
    21:35:59.0958 0x12d0  WinHttpAutoProxySvc - ok
    21:35:59.0992 0x12d0  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
    21:36:00.0058 0x12d0  Winmgmt - ok
    21:36:00.0130 0x12d0  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
    21:36:00.0233 0x12d0  WinRM - ok
    21:36:00.0267 0x12d0  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
    21:36:00.0310 0x12d0  WinUsb - ok
    21:36:00.0345 0x12d0  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
    21:36:00.0398 0x12d0  Wlansvc - ok
    21:36:00.0486 0x12d0  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
    21:36:00.0504 0x12d0  wlcrasvc - ok
    21:36:00.0604 0x12d0  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    21:36:00.0655 0x12d0  wlidsvc - ok
    21:36:00.0670 0x12d0  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
    21:36:00.0686 0x12d0  WmiAcpi - ok
    21:36:00.0724 0x12d0  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
    21:36:00.0763 0x12d0  wmiApSrv - ok
    21:36:00.0766 0x12d0  WMPNetworkSvc - ok
    21:36:00.0786 0x12d0  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
    21:36:00.0803 0x12d0  WPCSvc - ok
    21:36:00.0842 0x12d0  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
    21:36:00.0900 0x12d0  ws2ifsl - ok
    21:36:00.0927 0x12d0  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
    21:36:00.0970 0x12d0  wscsvc - ok
    21:36:00.0973 0x12d0  WSearch - ok
    21:36:01.0067 0x12d0  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
    21:36:01.0124 0x12d0  wuauserv - ok
    21:36:01.0138 0x12d0  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
    21:36:01.0153 0x12d0  WudfPf - ok
    21:36:01.0179 0x12d0  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
    21:36:01.0207 0x12d0  WUDFRd - ok
    21:36:01.0225 0x12d0  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
    21:36:01.0258 0x12d0  wudfsvc - ok
    21:36:01.0298 0x12d0  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
    21:36:01.0338 0x12d0  WwanSvc - ok


    #10 JamAli

    JamAli
    • Topic Starter

    • Members
    • 50 posts
    • OFFLINE
    •  
    • Gender:Female
    • Local time:09:37 AM

    Posted 06 July 2014 - 12:09 AM

    Part 2:

     

    21:36:01.0352 0x12d0  ================ Scan global ===============================
    21:36:01.0369 0x12d0  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
    21:36:01.0407 0x12d0  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
    21:36:01.0428 0x12d0  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
    21:36:01.0459 0x12d0  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
    21:36:01.0505 0x12d0  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
    21:36:01.0518 0x12d0  [ Global ] - ok
    21:36:01.0518 0x12d0  ================ Scan MBR ==================================
    21:36:01.0533 0x12d0  [ CDB4DE4BBD714F152979DA2DCBEF57EB ] \Device\Harddisk0\DR0
    21:36:01.0819 0x12d0  \Device\Harddisk0\DR0 - ok
    21:36:01.0819 0x12d0  ================ Scan VBR ==================================
    21:36:01.0822 0x12d0  [ 18C4B9193157FC2CC4FF0B3889FA9E6B ] \Device\Harddisk0\DR0\Partition1
    21:36:01.0891 0x12d0  \Device\Harddisk0\DR0\Partition1 - ok
    21:36:01.0895 0x12d0  [ 20CFCFFDB3007A9FEEEF96BCDCB68E40 ] \Device\Harddisk0\DR0\Partition2
    21:36:01.0952 0x12d0  \Device\Harddisk0\DR0\Partition2 - ok
    21:36:01.0952 0x12d0  ================ Scan active images ========================
    21:36:01.0954 0x12d0  [ 3E588B60EC061686BA05D33574A344C6, 19D2D863F95CCC4493A2328B6BEB04248B6A80F957532E58C1D1D868C19FDCCB ] C:\Windows\System32\drivers\crashdmp.sys
    21:36:01.0954 0x12d0  C:\Windows\System32\drivers\crashdmp.sys - ok
    21:36:01.0959 0x12d0  [ ABBF174CB394F5C437410A788B7E404A, 95554F675329E7062F0936E4E902FEFF2456CAD95D6C9B60DCC213EF6E4C62D8 ] C:\Windows\System32\drivers\iaStor.sys
    21:36:01.0959 0x12d0  C:\Windows\System32\drivers\iaStor.sys - ok
    21:36:01.0963 0x12d0  [ 814DB88F2641691575A455CF25354098, 79C50F0CD72612733217A0316BEFEA0B6D819C3159D9452EAB89AC26A18A0F89 ] C:\Windows\System32\drivers\dumpfve.sys
    21:36:01.0963 0x12d0  C:\Windows\System32\drivers\dumpfve.sys - ok
    21:36:01.0967 0x12d0  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] C:\Windows\System32\drivers\cdrom.sys
    21:36:01.0967 0x12d0  C:\Windows\System32\drivers\cdrom.sys - ok
    21:36:01.0971 0x12d0  [ F88CE00A7736C349ED1414D7ECDC9BED, 8C0783CE32968874065C2F46088B34F9C872F26C98AB8E8BA895D84CCB25E534 ] C:\Windows\System32\drivers\aswsnx.sys
    21:36:01.0971 0x12d0  C:\Windows\System32\drivers\aswsnx.sys - ok
    21:36:01.0976 0x12d0  [ E7C9CCAA210D23096118184CF583C952, 58E075ED163A4F78E0C55F4EEC4CBFCBDF6C208E4E72C6134596105342A017E4 ] C:\Windows\System32\drivers\mozy.sys
    21:36:01.0976 0x12d0  C:\Windows\System32\drivers\mozy.sys - ok
    21:36:01.0978 0x12d0  [ 3AE912B08E2A1ABB2B63F3C56BED95C2, BE99BA3A74427444FEE5D47D70BDBA631DBBF50D80B0483C0675F87119926765 ] C:\Windows\System32\drivers\aswsp.sys
    21:36:01.0978 0x12d0  C:\Windows\System32\drivers\aswsp.sys - ok
    21:36:01.0981 0x12d0  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] C:\Windows\System32\drivers\beep.sys
    21:36:01.0981 0x12d0  C:\Windows\System32\drivers\beep.sys - ok
    21:36:01.0983 0x12d0  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] C:\Windows\System32\drivers\null.sys
    21:36:01.0983 0x12d0  C:\Windows\System32\drivers\null.sys - ok
    21:36:01.0985 0x12d0  [ FC438D1430B28618E2D0C7C332A710AD, 873957B202E454E2C8F625E5799F278CAC16EC5EEAEE2C33E2FE5D1FF0408CB2 ] C:\Windows\System32\drivers\watchdog.sys
    21:36:01.0985 0x12d0  C:\Windows\System32\drivers\watchdog.sys - ok
    21:36:01.0988 0x12d0  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] C:\Windows\System32\drivers\msfs.sys
    21:36:01.0988 0x12d0  C:\Windows\System32\drivers\msfs.sys - ok
    21:36:01.0990 0x12d0  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] C:\Windows\System32\drivers\npfs.sys
    21:36:01.0990 0x12d0  C:\Windows\System32\drivers\npfs.sys - ok
    21:36:01.0993 0x12d0  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] C:\Windows\System32\drivers\RDPCDD.sys
    21:36:01.0993 0x12d0  C:\Windows\System32\drivers\RDPCDD.sys - ok
    21:36:01.0995 0x12d0  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] C:\Windows\System32\drivers\RDPENCDD.sys
    21:36:01.0995 0x12d0  C:\Windows\System32\drivers\RDPENCDD.sys - ok
    21:36:01.0998 0x12d0  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] C:\Windows\System32\drivers\RDPREFMP.sys
    21:36:01.0998 0x12d0  C:\Windows\System32\drivers\RDPREFMP.sys - ok
    21:36:02.0000 0x12d0  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] C:\Windows\System32\drivers\vga.sys
    21:36:02.0000 0x12d0  C:\Windows\System32\drivers\vga.sys - ok
    21:36:02.0003 0x12d0  [ E7353D59C9842BC7299FAEB7E7E09340, C37ED1025E07BAC2F535DCFED6C6C509515D95722EADE5AF94F1FC5D8B1DC783 ] C:\Windows\System32\drivers\videoprt.sys
    21:36:02.0003 0x12d0  C:\Windows\System32\drivers\videoprt.sys - ok
    21:36:02.0005 0x12d0  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] C:\Windows\System32\drivers\netbt.sys
    21:36:02.0005 0x12d0  C:\Windows\System32\drivers\netbt.sys - ok
    21:36:02.0008 0x12d0  [ 6F020A220388ECA0AB6062DC27BD16B6, 48655230E482DEB7B4B50EF05818EBB29CA61E780AEFCD9D31B02DE4DF9D9540 ] C:\Windows\System32\drivers\tdi.sys
    21:36:02.0008 0x12d0  C:\Windows\System32\drivers\tdi.sys - ok
    21:36:02.0010 0x12d0  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] C:\Windows\System32\drivers\tdx.sys
    21:36:02.0010 0x12d0  C:\Windows\System32\drivers\tdx.sys - ok
    21:36:02.0013 0x12d0  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] C:\Windows\System32\drivers\afd.sys
    21:36:02.0013 0x12d0  C:\Windows\System32\drivers\afd.sys - ok
    21:36:02.0015 0x12d0  [ 33C77DCB0AEC76E26BD6352A1A5281BB, CEA7BB3407C1F900DE5CB09F42AF7734811F86B7DE0085FADC7AAE8178D59665 ] C:\Windows\System32\drivers\aswRdr2.sys
    21:36:02.0015 0x12d0  C:\Windows\System32\drivers\aswRdr2.sys - ok
    21:36:02.0018 0x12d0  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] C:\Windows\System32\drivers\netbios.sys
    21:36:02.0018 0x12d0  C:\Windows\System32\drivers\netbios.sys - ok
    21:36:02.0020 0x12d0  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] C:\Windows\System32\drivers\pacer.sys
    21:36:02.0020 0x12d0  C:\Windows\System32\drivers\pacer.sys - ok
    21:36:02.0023 0x12d0  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] C:\Windows\System32\drivers\rdbss.sys
    21:36:02.0023 0x12d0  C:\Windows\System32\drivers\rdbss.sys - ok
    21:36:02.0026 0x12d0  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] C:\Windows\System32\drivers\termdd.sys
    21:36:02.0026 0x12d0  C:\Windows\System32\drivers\termdd.sys - ok
    21:36:02.0028 0x12d0  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] C:\Windows\System32\drivers\wanarp.sys
    21:36:02.0028 0x12d0  C:\Windows\System32\drivers\wanarp.sys - ok
    21:36:02.0031 0x12d0  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] C:\Windows\System32\drivers\wfplwf.sys
    21:36:02.0031 0x12d0  C:\Windows\System32\drivers\wfplwf.sys - ok
    21:36:02.0033 0x12d0  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] C:\Windows\System32\drivers\ws2ifsl.sys
    21:36:02.0033 0x12d0  C:\Windows\System32\drivers\ws2ifsl.sys - ok
    21:36:02.0036 0x12d0  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] C:\Windows\System32\drivers\blbdrive.sys
    21:36:02.0036 0x12d0  C:\Windows\System32\drivers\blbdrive.sys - ok
    21:36:02.0038 0x12d0  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] C:\Windows\System32\drivers\dfsc.sys
    21:36:02.0038 0x12d0  C:\Windows\System32\drivers\dfsc.sys - ok
    21:36:02.0041 0x12d0  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] C:\Windows\System32\drivers\discache.sys
    21:36:02.0041 0x12d0  C:\Windows\System32\drivers\discache.sys - ok
    21:36:02.0043 0x12d0  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] C:\Windows\System32\drivers\mssmbios.sys
    21:36:02.0043 0x12d0  C:\Windows\System32\drivers\mssmbios.sys - ok
    21:36:02.0045 0x12d0  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] C:\Windows\System32\drivers\nsiproxy.sys
    21:36:02.0045 0x12d0  C:\Windows\System32\drivers\nsiproxy.sys - ok
    21:36:02.0048 0x12d0  [ 954759EAE7FB2591A5E7206AB0093AE7, A47FFCE75767CFE79A1CD2B42DC1FEEC8C65C0E503289DC70B751FECDD9CE9FF ] C:\Windows\System32\drivers\atikmpag.sys
    21:36:02.0048 0x12d0  C:\Windows\System32\drivers\atikmpag.sys - ok
    21:36:02.0050 0x12d0  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] C:\Windows\System32\drivers\intelppm.sys
    21:36:02.0050 0x12d0  C:\Windows\System32\drivers\intelppm.sys - ok
    21:36:02.0053 0x12d0  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] C:\Windows\System32\drivers\tunnel.sys
    21:36:02.0053 0x12d0  C:\Windows\System32\drivers\tunnel.sys - ok
    21:36:02.0055 0x12d0  [ CAAAC014C5C56A69F710B5F1B836DE22, DA98EF2EBF9A7F180344A88CC2C74F69101E17BBAB58B1C46176FD6EE7AA2E6A ] C:\Windows\System32\ntdll.dll
    21:36:02.0055 0x12d0  C:\Windows\System32\ntdll.dll - ok
    21:36:02.0057 0x12d0  [ F0970A4BC8395659C22BF53D0FADF16F, 23BE3066D89A5ACBF8130899640D377476E78B6C3D19E2D13C32238464A83E21 ] C:\Windows\System32\smss.exe
    21:36:02.0057 0x12d0  C:\Windows\System32\smss.exe - ok
    21:36:02.0060 0x12d0  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93, 7BC847CE6C2D29C334F0D1600BBBDE3933FF45F6BEE5186F442E6270A3F9EC4E ] C:\Windows\System32\autochk.exe
    21:36:02.0060 0x12d0  C:\Windows\System32\autochk.exe - ok
    21:36:02.0062 0x12d0  [ 784C941B5A19D69814F9514CFB733906, 496E78FE91B1D6E146EEB79297C4A131D50875A8385438C376CA58A245D4A77E ] C:\Windows\System32\drivers\atikmdag.sys
    21:36:02.0062 0x12d0  C:\Windows\System32\drivers\atikmdag.sys - ok
    21:36:02.0065 0x12d0  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] C:\Windows\System32\drivers\dxgkrnl.sys
    21:36:02.0065 0x12d0  C:\Windows\System32\drivers\dxgkrnl.sys - ok
    21:36:02.0067 0x12d0  [ 1F04CFB79DD5FB7694468CE3FB3DCC31, A40C0BF6D1EC6C4281611A830EA7B22FEF523A3E197E5A8F59332D64E90376B6 ] C:\Windows\System32\drivers\dxgmms1.sys
    21:36:02.0067 0x12d0  C:\Windows\System32\drivers\dxgmms1.sys - ok
    21:36:02.0070 0x12d0  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] C:\Windows\System32\drivers\hdaudbus.sys
    21:36:02.0070 0x12d0  C:\Windows\System32\drivers\hdaudbus.sys - ok
    21:36:02.0072 0x12d0  [ 12FEB33791920678F8433701C822BCFD, 7D1AD944CF0532D5AF951ACCE064EA9288F068964603674854CD7658D2B96039 ] C:\Windows\System32\drivers\usbport.sys
    21:36:02.0072 0x12d0  C:\Windows\System32\drivers\usbport.sys - ok
    21:36:02.0075 0x12d0  [ 777FC2C418465404E3D8A290DC247D24, D053ABB41B0F859762E4BE724EF4EB9F39B83215BC1C7C02B3BE8F02B2A4B094 ] C:\Windows\System32\drivers\Rt64win7.sys
    21:36:02.0075 0x12d0  C:\Windows\System32\drivers\Rt64win7.sys - ok
    21:36:02.0077 0x12d0  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] C:\Windows\System32\drivers\usbehci.sys
    21:36:02.0077 0x12d0  C:\Windows\System32\drivers\usbehci.sys - ok
    21:36:02.0080 0x12d0  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] C:\Windows\System32\drivers\usbuhci.sys
    21:36:02.0080 0x12d0  C:\Windows\System32\drivers\usbuhci.sys - ok
    21:36:02.0082 0x12d0  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] C:\Windows\System32\drivers\1394ohci.sys
    21:36:02.0082 0x12d0  C:\Windows\System32\drivers\1394ohci.sys - ok
    21:36:02.0085 0x12d0  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] C:\Windows\System32\drivers\agilevpn.sys
    21:36:02.0085 0x12d0  C:\Windows\System32\drivers\agilevpn.sys - ok
    21:36:02.0087 0x12d0  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] C:\Windows\System32\drivers\CompositeBus.sys
    21:36:02.0087 0x12d0  C:\Windows\System32\drivers\CompositeBus.sys - ok
    21:36:02.0090 0x12d0  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] C:\Windows\System32\drivers\GEARAspiWDM.sys
    21:36:02.0090 0x12d0  C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
    21:36:02.0092 0x12d0  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] C:\Windows\System32\drivers\ndistapi.sys
    21:36:02.0092 0x12d0  C:\Windows\System32\drivers\ndistapi.sys - ok
    21:36:02.0095 0x12d0  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] C:\Windows\System32\drivers\ndiswan.sys
    21:36:02.0095 0x12d0  C:\Windows\System32\drivers\ndiswan.sys - ok
    21:36:02.0097 0x12d0  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] C:\Windows\System32\drivers\rasl2tp.sys
    21:36:02.0097 0x12d0  C:\Windows\System32\drivers\rasl2tp.sys - ok
    21:36:02.0100 0x12d0  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] C:\Windows\System32\drivers\raspppoe.sys
    21:36:02.0100 0x12d0  C:\Windows\System32\drivers\raspppoe.sys - ok
    21:36:02.0102 0x12d0  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] C:\Windows\System32\drivers\raspptp.sys
    21:36:02.0102 0x12d0  C:\Windows\System32\drivers\raspptp.sys - ok
    21:36:02.0105 0x12d0  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] C:\Windows\System32\drivers\kbdclass.sys
    21:36:02.0105 0x12d0  C:\Windows\System32\drivers\kbdclass.sys - ok
    21:36:02.0107 0x12d0  [ 24FBF5CC5C04150073C315A7C83521EE, 581BD5F15B5E57B3BAA762E421FFD859FDA46DDB8515C2A7AAFF208D784E906C ] C:\Windows\System32\drivers\ks.sys
    21:36:02.0107 0x12d0  C:\Windows\System32\drivers\ks.sys - ok
    21:36:02.0110 0x12d0  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] C:\Windows\System32\drivers\mouclass.sys
    21:36:02.0110 0x12d0  C:\Windows\System32\drivers\mouclass.sys - ok
    21:36:02.0112 0x12d0  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] C:\Windows\System32\drivers\rassstp.sys
    21:36:02.0112 0x12d0  C:\Windows\System32\drivers\rassstp.sys - ok
    21:36:02.0115 0x12d0  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] C:\Windows\System32\drivers\circlass.sys
    21:36:02.0115 0x12d0  C:\Windows\System32\drivers\circlass.sys - ok
    21:36:02.0117 0x12d0  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] C:\Windows\System32\drivers\swenum.sys
    21:36:02.0117 0x12d0  C:\Windows\System32\drivers\swenum.sys - ok
    21:36:02.0120 0x12d0  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] C:\Windows\System32\drivers\umbus.sys
    21:36:02.0120 0x12d0  C:\Windows\System32\drivers\umbus.sys - ok
    21:36:02.0122 0x12d0  [ 063EF4239479F52DAF9F4849B0B304F1, 5D406C819CE5F382717BF0D70F4AF980E3951A2315776E4DE1A4F4A127209EAD ] C:\Windows\System32\iertutil.dll
    21:36:02.0122 0x12d0  C:\Windows\System32\iertutil.dll - ok
    21:36:02.0125 0x12d0  [ F7CE0C81C545364020ED8203CF0A633E, 24B47A7492B7048096AF87E26786E8108455ADBD1A374B6A0466DE008505B8A9 ] C:\Windows\System32\difxapi.dll
    21:36:02.0125 0x12d0  C:\Windows\System32\difxapi.dll - ok
    21:36:02.0127 0x12d0  [ 25983DE69B57142039AC8D95E71CD9C9, A677DA7EBCBCB6073D27E8A38809F51E971E83ED379BC599AAAD6EF4216348DA ] C:\Windows\System32\clbcatq.dll
    21:36:02.0127 0x12d0  C:\Windows\System32\clbcatq.dll - ok
    21:36:02.0129 0x12d0  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] C:\Windows\System32\drivers\usbhub.sys
    21:36:02.0129 0x12d0  C:\Windows\System32\drivers\usbhub.sys - ok
    21:36:02.0132 0x12d0  [ 4BBFA57F594F7E8A8EDC8F377184C3F0, 9F3AC5DEA5A6250C3DBB97AF79C81C0A48429486521F807355A1D7D3D861B75F ] C:\Windows\System32\ws2_32.dll
    21:36:02.0132 0x12d0  C:\Windows\System32\ws2_32.dll - ok
    21:36:02.0134 0x12d0  [ 63A580C88CFAF72A92550940054569EF, A66C89123D1833446ACC31D5CF536B0D0EC24D2F805C022A637596CF98429D9F ] C:\Windows\System32\advapi32.dll
    21:36:02.0134 0x12d0  C:\Windows\System32\advapi32.dll - ok
    21:36:02.0137 0x12d0  [ D87E1E59C73C1F98D5DED5B3850C40F5, 536419BFF9F877D4314B5D0C045D9A6E729489C389863FADF07E382050BC84FD ] C:\Windows\System32\psapi.dll
    21:36:02.0137 0x12d0  C:\Windows\System32\psapi.dll - ok
    21:36:02.0139 0x12d0  [ 26036E228D2467DE6975AD819C22C043, B4A30EC7ABAEFFF55DE662F4A17415F2BD737BD563215638C86C580B8F3EA907 ] C:\Windows\System32\rpcrt4.dll
    21:36:02.0139 0x12d0  C:\Windows\System32\rpcrt4.dll - ok
    21:36:02.0142 0x12d0  [ C391FC68282A000CDF953F8B6B55D2EF, 1CB0DAB84545D9FDEA5A7865A1E7132CEAC91DECF8B100285B63098D7B09E584 ] C:\Windows\System32\msvcrt.dll
    21:36:02.0142 0x12d0  C:\Windows\System32\msvcrt.dll - ok
    21:36:02.0144 0x12d0  [ 4E4FFB09D895AA000DD56D1404F69A7E, D999E04BB35780088480EAB322176570591A21E311D204BDCAB010A63B34D24C ] C:\Windows\System32\Wldap32.dll
    21:36:02.0144 0x12d0  C:\Windows\System32\Wldap32.dll - ok
    21:36:02.0146 0x12d0  [ C431EAF5CAA1C82CAC2534A2EAB348A3, ADDF850128DC675E67FABA9A3D0D27E684F01F733962CA22927BB94503549E44 ] C:\Windows\System32\msctf.dll
    21:36:02.0146 0x12d0  C:\Windows\System32\msctf.dll - ok
    21:36:02.0149 0x12d0  [ FE70103391A64039A921DBFFF9C7AB1B, F7D219D75037BC98F6C69143B00AB6000A31F8B5E211E0AF514F4F4B681522A0 ] C:\Windows\System32\user32.dll
    21:36:02.0149 0x12d0  C:\Windows\System32\user32.dll - ok
    21:36:02.0151 0x12d0  [ B4F29F65AD3114051F01E9403346047F, 7EB58545211C51E95B3F45C47C1F7CCE05B707D168E7C20F46D36E19EE3D8DFC ] C:\Windows\System32\imagehlp.dll
    21:36:02.0151 0x12d0  C:\Windows\System32\imagehlp.dll - ok
    21:36:02.0154 0x12d0  [ C06B32165E23A72A898B7A89679AD754, 721405158F6E9F1A7FE7BB33EF642D91332726629D0D3B07DF3CF3152A91C85D ] C:\Windows\System32\oleaut32.dll
    21:36:02.0154 0x12d0  C:\Windows\System32\oleaut32.dll - ok
    21:36:02.0156 0x12d0  [ 6C60B5ACA7442EFB794082CDACFC001C, FC1D9124856A70FF232EF3057D66BEE803295847624CE23B4D0217F23AF52C75 ] C:\Windows\System32\ole32.dll
    21:36:02.0156 0x12d0  C:\Windows\System32\ole32.dll - ok
    21:36:02.0158 0x12d0  [ 28C0B5024F5C5A438E78B188CFC81B7F, AB81FB63F2908CE316B45609077ACBD85F4B2AAD1606B1E9030F06DB82EDDFAD ] C:\Windows\System32\normaliz.dll
    21:36:02.0158 0x12d0  C:\Windows\System32\normaliz.dll - ok
    21:36:02.0161 0x12d0  [ 044FE45FFD6AD40E3BBBE60B7F41BABE, A1688A5E6E0F7037C850699462C2655006A7D873C97F9AB406C59D81749B6F09 ] C:\Windows\System32\nsi.dll
    21:36:02.0161 0x12d0  C:\Windows\System32\nsi.dll - ok
    21:36:02.0163 0x12d0  [ 83404DCBCE4925B6A5A77C5170F46D86, D669614D0B4461DB244AD99FBE1BA92CEB9B4ED5EC8E987E23764E77D9AC7074 ] C:\Windows\System32\sechost.dll
    21:36:02.0163 0x12d0  C:\Windows\System32\sechost.dll - ok
    21:36:02.0166 0x12d0  [ 40BFD9D6EC8E174145F012246CA73CCD, 69A6BAE01582C5B84D0F8F33B8408AFDA32A3FA49FF3AC915CFB89FD897DD5B8 ] C:\Windows\System32\wininet.dll
    21:36:02.0166 0x12d0  C:\Windows\System32\wininet.dll - ok
    21:36:02.0168 0x12d0  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] C:\Windows\System32\drivers\ndproxy.sys
    21:36:02.0168 0x12d0  C:\Windows\System32\drivers\ndproxy.sys - ok
    21:36:02.0170 0x12d0  [ ED3A041014FBBFDC23D6C04F9C7A5D79, A039D8F4C0EA2101898A253E13DFED5FA8500C412ACC47835415E27C9BD068FF ] C:\Windows\System32\drivers\AtihdW76.sys
    21:36:02.0171 0x12d0  C:\Windows\System32\drivers\AtihdW76.sys - ok
    21:36:02.0173 0x12d0  [ E0D3CD5841E5C7BE7B94BA946AF1E498, 4EAE1B226255623DA41A047633994D6902F6D4CA5757BF5D85E227378336227F ] C:\Windows\System32\drivers\drmk.sys
    21:36:02.0173 0x12d0  C:\Windows\System32\drivers\drmk.sys - ok
    21:36:02.0176 0x12d0  [ 1E0B4CBBA91C6B041A14ECC2186F7E24, 63039A317F906454A0652704DA2D646658A148B9B55BFB5D2F4B27997F357DF9 ] C:\Windows\System32\drivers\portcls.sys
    21:36:02.0176 0x12d0  C:\Windows\System32\drivers\portcls.sys - ok
    21:36:02.0178 0x12d0  [ 3A1AB9DE852F2BC1ECE6403BDD01B9F0, 3BABD4429E405CDC2D2D7E9F64F018FEEC9EF4CE87BAA69F827AF85B07CBF2DF ] C:\Windows\System32\urlmon.dll
    21:36:02.0178 0x12d0  C:\Windows\System32\urlmon.dll - ok
    21:36:02.0180 0x12d0  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] C:\Windows\System32\drivers\ksthunk.sys
    21:36:02.0181 0x12d0  C:\Windows\System32\drivers\ksthunk.sys - ok
    21:36:02.0183 0x12d0  [ A0EAB13A78CC5FB960EC76E3D6408DA3, F536B151EB1F284E8F352A7D8C9C0EBBC2E852E5EB6F0F6C6C313F272CE617FE ] C:\Windows\System32\drivers\RTKVHD64.sys
    21:36:02.0183 0x12d0  C:\Windows\System32\drivers\RTKVHD64.sys - ok
    21:36:02.0185 0x12d0  [ D2A513EE880D71BDE7F0257F38B9D019, 7BDBFEA312061C0498E4C09EF5E4B3AAA23309E7448028F67EAA6F8F7188E871 ] C:\Windows\System32\kernel32.dll
    21:36:02.0185 0x12d0  C:\Windows\System32\kernel32.dll - ok
    21:36:02.0188 0x12d0  [ 088CF6AFCD5CDD44E40C0ACDE3C1A5E0, AC6AFCAE3A58AAABC972B3D6A1ED383A59910C689F38D9D4A059A0A535BA1039 ] C:\Windows\System32\usp10.dll
    21:36:02.0188 0x12d0  C:\Windows\System32\usp10.dll - ok
    21:36:02.0189 0x12d0  [ 427015D56DF17241F634611557146C57, BCDC51FE0D88AA8FB3815B401A682D38F24BE7D9CAC8B9F9588295A66D036DDB ] C:\Windows\System32\shell32.dll
    21:36:02.0189 0x12d0  C:\Windows\System32\shell32.dll - ok
    21:36:02.0192 0x12d0  [ EAF32CB8C1F810E4715B4DFBE785C7FF, DB6AD07FDED42433E669508AB73FAFF6DAFF04575D6F1D016FE3EB6ECEC4DD5D ] C:\Windows\System32\shlwapi.dll
    21:36:02.0192 0x12d0  C:\Windows\System32\shlwapi.dll - ok
    21:36:02.0194 0x12d0  [ 9835E63E09F824D22B689D2BB789BAB9, 5BCFFAFB894D69FBCDDB91E64D30A356F4BD57098E8B4C51B98AFAF6581BDB63 ] C:\Windows\System32\comdlg32.dll
    21:36:02.0194 0x12d0  C:\Windows\System32\comdlg32.dll - ok
    21:36:02.0196 0x12d0  [ AA2C08CE85653B1A0D2E4AB407FA176C, 83DFD0C119B20AEDB07114C9D1CF9CE2DFA938D0F1070256B0591A9E2C3997FA ] C:\Windows\System32\imm32.dll
    21:36:02.0196 0x12d0  C:\Windows\System32\imm32.dll - ok
    21:36:02.0199 0x12d0  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5, 12130837D7F89A2C7E9D25747A8E5B9001E0A38D545178B49B450C23AE62664A ] C:\Windows\System32\setupapi.dll
    21:36:02.0199 0x12d0  C:\Windows\System32\setupapi.dll - ok
    21:36:02.0201 0x12d0  [ 56325BB1FF19F2A5AC8713756AC41140, B2124E57783312EE37D2621E689D8FB4C43A04BDBD4F481225C21038605A28CE ] C:\Windows\System32\gdi32.dll
    21:36:02.0201 0x12d0  C:\Windows\System32\gdi32.dll - ok
    21:36:02.0204 0x12d0  [ 796B47A4B82EF1C39F13435B88834C48, AFC3E89476BAAD8A71663F0DB8D15E00FF9D131F1306A2F69D728E3AD1184602 ] C:\Windows\System32\lpk.dll
    21:36:02.0204 0x12d0  C:\Windows\System32\lpk.dll - ok
    21:36:02.0206 0x12d0  [ 2477A28081BDAEE622CF045ACF8EE124, 00A09CAF9129E84FEEA98FA03CE9012C9F961B64FEE15C4F268822C0F82ACC3C ] C:\Windows\System32\cfgmgr32.dll
    21:36:02.0206 0x12d0  C:\Windows\System32\cfgmgr32.dll - ok
    21:36:02.0209 0x12d0  [ 0E6FBF19D9DFBB77316C23DF91F8A101, 680F88E1BC55EA3342AACE6F2E3511BF877AC8F03276D028FEE84EEFE8B5611A ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
    21:36:02.0209 0x12d0  C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
    21:36:02.0211 0x12d0  [ 06FEC9E8117103BB1141A560E98077DA, C5E61B11DDBBBBBA3D9488970524F0975EA5FBDF16E2FA31F579F8BFA48353B1 ] C:\Windows\System32\devobj.dll
    21:36:02.0211 0x12d0  C:\Windows\System32\devobj.dll - ok
    21:36:02.0213 0x12d0  [ 9028D1621C43DF8DFBD1C76860412A11, A1D48D9B33180BDE50D2FA9BB07E9520B7B7788C39B3AABB4A06AE4B1AACA755 ] C:\Windows\System32\comctl32.dll
    21:36:02.0214 0x12d0  C:\Windows\System32\comctl32.dll - ok
    21:36:02.0216 0x12d0  [ 959041D7014C97133D859B45BCA0FC58, 282D34828DA7404470949483CB9789A8B4861D188093F0FBD07138A37F60B94B ] C:\Windows\System32\wintrust.dll
    21:36:02.0216 0x12d0  C:\Windows\System32\wintrust.dll - ok
    21:36:02.0218 0x12d0  [ 780F6ECC4F55D76C9730E6B6C9B31913, 1AEA642AFA210A672A92AAA49CFDE52D9E48ED41248F7644FAADE760E8A0E72E ] C:\Windows\System32\crypt32.dll
    21:36:02.0218 0x12d0  C:\Windows\System32\crypt32.dll - ok
    21:36:02.0221 0x12d0  [ F49E92B50CED5C9F1725D3C0329FD933, 6155FA4D8242F07FC578FF746890C2EE19FC3D6A20ED8AE4C6F021DB2DAC184F ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
    21:36:02.0221 0x12d0  C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
    21:36:02.0224 0x12d0  [ 72723D3E4781BADC62C3180C137E7B23, 0BDA5292928578C5DA79C761E15B8A892B9D4A3DA26D3635E714797C653CF492 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
    21:36:02.0224 0x12d0  C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
    21:36:02.0226 0x12d0  [ 9094039A00485F71C4DE64BF51F64C46, 4ACFEF4C747ADF806A4FDEDDFD9CC48168DFB05075306C77D3F3927749DD7484 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
    21:36:02.0226 0x12d0  C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
    21:36:02.0229 0x12d0  [ 7A17485DC7D8A7AC81321A42CD034519, 88D8705FA901793FC8C1CFD0175E49A6502BF0FC94A066BA573D2FD13AA5F04A ] C:\Windows\System32\userenv.dll
    21:36:02.0229 0x12d0  C:\Windows\System32\userenv.dll - ok
    21:36:02.0231 0x12d0  [ 64A4AB126E24FD3F58EBE64852773DB5, ED425BBC91EB8BEF54C363036A770C551C97EF324F1AE31049CA750D0E2D6776 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
    21:36:02.0231 0x12d0  C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
    21:36:02.0234 0x12d0  [ 851BB346CD59D9B3BC8854384C7DD5C3, 0CA1BCBDA6CB8CAC1186B3BE13C3937EDF46264FDFFCEBDF94C7EB10DE957DC6 ] C:\Windows\System32\KernelBase.dll
    21:36:02.0234 0x12d0  C:\Windows\System32\KernelBase.dll - ok
    21:36:02.0236 0x12d0  [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A, 445C2857398252756FD25BB94DAFCCEFF573DE55F1F8BF9094C191F409FE6437 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
    21:36:02.0236 0x12d0  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
    21:36:02.0239 0x12d0  [ 884415BD4269C02EAF8E2613BF85500D, EFE771709EC942694FD206AC8D0A48ED7DCD35036F074268E4AECD68AC982CEA ] C:\Windows\System32\msasn1.dll
    21:36:02.0239 0x12d0  C:\Windows\System32\msasn1.dll - ok
    21:36:02.0241 0x12d0  [ 2C942733A5983DD4502219FF37C7EBC7, 34B20B6B0D7274E4B5B783F1D2345BC3DD9888964D5C2C65712F041A00CF5B45 ] C:\Windows\System32\profapi.dll
    21:36:02.0241 0x12d0  C:\Windows\System32\profapi.dll - ok
    21:36:02.0244 0x12d0  [ 945BFBA692C0F3CDF5A9D824972188F6, B8310C73B1FA2B938940BB9DBD774E712F0C4B95144FEAEDD0B94453E5BECF88 ] C:\Windows\System32\drivers\usbccgp.sys
    21:36:02.0244 0x12d0  C:\Windows\System32\drivers\usbccgp.sys - ok
    21:36:02.0246 0x12d0  [ FFA06EF43987ED0DD42AD59B260C0C78, 260518D5E077E55E0F2099037DBEFA93016FD4D4655456DDB3147AF9CBE7BF6B ] C:\Windows\System32\drivers\usbd.sys
    21:36:02.0246 0x12d0  C:\Windows\System32\drivers\usbd.sys - ok
    21:36:02.0248 0x12d0  [ 5AAB4808E8CCAE8C2ECDA5B791260616, EFA49ADD657D209AFE73CE0E9184E319D5F7A8A0C6B60BEFA0AAB172B2D397BA ] C:\Windows\System32\drivers\RtsUStor.sys
    21:36:02.0248 0x12d0  C:\Windows\System32\drivers\RtsUStor.sys - ok
    21:36:02.0251 0x12d0  [ 49EE2E52E6CD03947DAD72F65367BE06, 933097B903B13767DD49192E7BF8EAABC5BADFDAF8B31B806AA65C533F24B686 ] C:\Windows\System32\drivers\hidparse.sys
    21:36:02.0251 0x12d0  C:\Windows\System32\drivers\hidparse.sys - ok
    21:36:02.0254 0x12d0  [ BA87EA54B8D41A019BB1F45B94892D87, 55E84CFB6EE610FCD3680880D1B20484AEA4AD5BB2CF901D57739D038FC76B18 ] C:\Windows\System32\drivers\hidclass.sys
    21:36:02.0254 0x12d0  C:\Windows\System32\drivers\hidclass.sys - ok
    21:36:02.0256 0x12d0  [ B3BF6B5B50006DEF50B66306D99FCF6F, D39A1DEBE7C464922919826D15199ED25E263BF58633593DD412D78F98921417 ] C:\Windows\System32\drivers\hidusb.sys
    21:36:02.0256 0x12d0  C:\Windows\System32\drivers\hidusb.sys - ok
    21:36:02.0259 0x12d0  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] C:\Windows\System32\drivers\kbdhid.sys
    21:36:02.0259 0x12d0  C:\Windows\System32\drivers\kbdhid.sys - ok
    21:36:02.0261 0x12d0  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] C:\Windows\System32\drivers\mouhid.sys
    21:36:02.0261 0x12d0  C:\Windows\System32\drivers\mouhid.sys - ok
    21:36:02.0264 0x12d0  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] C:\Windows\System32\drivers\usbcir.sys
    21:36:02.0264 0x12d0  C:\Windows\System32\drivers\usbcir.sys - ok
    21:36:02.0266 0x12d0  [ 9C278785347BCC991F8EA2999D90F58D, EA680C3642A6ABF627415AEE019956FAC702DC6A8F4B4D0FC8A4FB21EADD3896 ] C:\Windows\SysWOW64\normaliz.dll
    21:36:02.0266 0x12d0  C:\Windows\SysWOW64\normaliz.dll - ok
    21:36:02.0269 0x12d0  [ BF24D6F2ED97FE830BFD52B246F98E67, 6BBF4C4221A245462EF653798F6B416EEB12594AD1CB4E8BC8908A8CB2F53384 ] C:\Windows\System32\drivers\dxapi.sys
    21:36:02.0269 0x12d0  C:\Windows\System32\drivers\dxapi.sys - ok
    21:36:02.0271 0x12d0  [ E918C0DE5CF2AE6BEDBF387C09627D93, B45B0CE2BDD41CD46DE2AC76CF7753DF38C29435DCF833B5CFF1DB9329559F3C ] C:\Windows\System32\win32k.sys
    21:36:02.0271 0x12d0  C:\Windows\System32\win32k.sys - ok
    21:36:02.0273 0x12d0  [ 216BABD555BC550952320EEA89C25DDF, 1BBB92415280032CD18F361382A69D0D91266AAD56FC88A99C804B0053743D72 ] C:\Windows\System32\csrsrv.dll
    21:36:02.0273 0x12d0  C:\Windows\System32\csrsrv.dll - ok
    21:36:02.0276 0x12d0  [ 60C2862B4BF0FD9F582EF344C2B1EC72, CB1C6018FC5C15483AC5BB96E5C2E2E115BB0C0E1314837D77201BAB37E8C03A ] C:\Windows\System32\csrss.exe
    21:36:02.0276 0x12d0  C:\Windows\System32\csrss.exe - ok
    21:36:02.0278 0x12d0  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\System32\basesrv.dll
    21:36:02.0278 0x12d0  C:\Windows\System32\basesrv.dll - ok
    21:36:02.0281 0x12d0  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\System32\winsrv.dll
    21:36:02.0281 0x12d0  C:\Windows\System32\winsrv.dll - ok
    21:36:02.0283 0x12d0  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] C:\Windows\System32\drivers\monitor.sys
    21:36:02.0283 0x12d0  C:\Windows\System32\drivers\monitor.sys - ok
    21:36:02.0286 0x12d0  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] C:\Windows\System32\drivers\hidbatt.sys
    21:36:02.0286 0x12d0  C:\Windows\System32\drivers\hidbatt.sys - ok
    21:36:02.0288 0x12d0  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] C:\Windows\System32\drivers\hidir.sys
    21:36:02.0288 0x12d0  C:\Windows\System32\drivers\hidir.sys - ok
    21:36:02.0291 0x12d0  [ F29FE765E1448EF371CFE05BFAC74ADB, F251581222D78543272FD4B14A6A59F4B0E0CC44A5FCBCF56DE4CA5783F78A75 ] C:\Windows\System32\tsddd.dll
    21:36:02.0291 0x12d0  C:\Windows\System32\tsddd.dll - ok
    21:36:02.0293 0x12d0  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\System32\sxssrv.dll
    21:36:02.0293 0x12d0  C:\Windows\System32\sxssrv.dll - ok
    21:36:02.0296 0x12d0  [ 94355C28C1970635A31B3FE52EB7CEBA, C4E98F07170CEC69CACDD5CEDB8927E48A2A299CB1B8CDA87526E768AF6174F0 ] C:\Windows\System32\wininit.exe
    21:36:02.0296 0x12d0  C:\Windows\System32\wininit.exe - ok
    21:36:02.0298 0x12d0  [ 943F527DF79E6B400104341AA7023C75, 53C7B9426181D3D172E6B1A07E6DF8A0CB8FCA27D3A03CE5F544D3209B5F4651 ] C:\Windows\System32\cdd.dll
    21:36:02.0298 0x12d0  C:\Windows\System32\cdd.dll - ok
    21:36:02.0300 0x12d0  [ 78523A26F5604C0568FE9D1CE86E36F4, 534A7228BF69719106F581616A32EAEF0B770DDB36DCE94F84E7D52FDB1382B5 ] C:\Windows\System32\KBDUS.DLL
    21:36:02.0300 0x12d0  C:\Windows\System32\KBDUS.DLL - ok
    21:36:02.0303 0x12d0  [ C2A8CB1275ECB85D246A9ECC02A728E3, 3603FADCA0060BD201148F9D59E4E2627F024609A6463AB525B5D1AD17BDCD10 ] C:\Windows\System32\RpcRtRemote.dll
    21:36:02.0303 0x12d0  C:\Windows\System32\RpcRtRemote.dll - ok
    21:36:02.0305 0x12d0  [ B26B1801356760841C3BC69F9F91537F, 83B9DF333E36C09E81D44E12AE5BE14650126FDA0CF4A0EA853BF40C5780EF81 ] C:\Windows\System32\WlS0WndH.dll
    21:36:02.0305 0x12d0  C:\Windows\System32\WlS0WndH.dll - ok
    21:36:02.0308 0x12d0  [ 9CEAD32E79A62150FE9F8557E58E008B, AFE4C1725EE94D7DE0749AE1495A4E5CC33C369F29B2A589DA66FFE27FF9777E ] C:\Windows\System32\sxs.dll
    21:36:02.0308 0x12d0  C:\Windows\System32\sxs.dll - ok
    21:36:02.0310 0x12d0  [ 784FA3DF338E2E8F5F0389D6FAC428AF, 9C8AA0CFDEB9E38AAF8EB08626070E0F0364F4F8A793CFE3532EC6C007980C34 ] C:\Windows\System32\cryptbase.dll
    21:36:02.0310 0x12d0  C:\Windows\System32\cryptbase.dll - ok
    21:36:02.0312 0x12d0  [ 90499F3163A9F815CF196A205EA3CD5D, 29B4ED3795CEC1177EB367132914CE21C194CDEC5DB9DC923FD928C85E94D821 ] C:\Windows\System32\apphelp.dll
    21:36:02.0312 0x12d0  C:\Windows\System32\apphelp.dll - ok
    21:36:02.0315 0x12d0  [ 9358149234A4F3FE00CF5C2096DC1652, 14A9C7102BBF4E4E706BAE13C04F59FAFB2ED5E1D90984C64815310B538F6649 ] C:\Windows\System32\lsasrv.dll
    21:36:02.0315 0x12d0  C:\Windows\System32\lsasrv.dll - ok
    21:36:02.0317 0x12d0  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] C:\Windows\System32\lsass.exe
    21:36:02.0317 0x12d0  C:\Windows\System32\lsass.exe - ok
    21:36:02.0320 0x12d0  [ 9662EE182644511439F1C53745DC1C88, D205B2C163E78AB42A5D67D7664EF6B75EA0374FF0924467D624F9DB0611F0AD ] C:\Windows\System32\lsm.exe
    21:36:02.0320 0x12d0  C:\Windows\System32\lsm.exe - ok
    21:36:02.0322 0x12d0  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\System32\services.exe
    21:36:02.0322 0x12d0  C:\Windows\System32\services.exe - ok
    21:36:02.0324 0x12d0  [ 8098627D0AA1706D69C5AF3F74332ABB, 9582F6162A8405DC568FFBEA08A9090FE92FE2C9DB640077BD7F23AC4FABF700 ] C:\Windows\System32\sspisrv.dll
    21:36:02.0324 0x12d0  C:\Windows\System32\sspisrv.dll - ok
    21:36:02.0327 0x12d0  [ C072064F95579C0D6D86AF5B3DC53192, CF4A088DF97F4D4963BEAB9CBDBF69FEA2D4773159054A0AF8B8DFFDF83E18DA ] C:\Windows\System32\sspicli.dll
    21:36:02.0327 0x12d0  C:\Windows\System32\sspicli.dll - ok
    21:36:02.0329 0x12d0  [ BBCDF350817BA86416C0F06B6981BE8D, D064438F97852B9BD6015C8B19377C61C671E0969E09506B8359FE7B1F373A61 ] C:\Windows\System32\scesrv.dll
    21:36:02.0329 0x12d0  C:\Windows\System32\scesrv.dll - ok
    21:36:02.0332 0x12d0  [ E914A50A151DFFE63D3935226DB5E2C1, 7DCCE4060344E1C771679F1C20378A0BEB3C1F06DB684072F07B98921A62A299 ] C:\Windows\System32\scext.dll
    21:36:02.0332 0x12d0  C:\Windows\System32\scext.dll - ok
    21:36:02.0334 0x12d0  [ 39312B37C5FE5138F99680A49ACD3AEA, B9566B4117FBBECF77A0D3F49E9DF302088B9D483F817720B22E4F9C5754264A ] C:\Windows\System32\secur32.dll
    21:36:02.0334 0x12d0  C:\Windows\System32\secur32.dll - ok
    21:36:02.0336 0x12d0  [ 68083118797CAF30FB2EA3E71494D67E, 5F1BCDFCB00A20CD60CBC70A2FD97405EF0F7173DD0E404BBA7B06D39DB37364 ] C:\Windows\System32\sysntfy.dll
    21:36:02.0336 0x12d0  C:\Windows\System32\sysntfy.dll - ok
    21:36:02.0339 0x12d0  [ DEE7267C5D232A3B816866872CE199E6, A1994FD37667C52E7CBF873514C190DA61A3D1349786D187BFAE0006F61799AE ] C:\Windows\System32\wmsgapi.dll
    21:36:02.0339 0x12d0  C:\Windows\System32\wmsgapi.dll - ok
    21:36:02.0341 0x12d0  [ A744BA6E04C8AA4592818178DBF89521, 9E7C85D842DF16F9B8FED7B06AF309B5ECCBFD465F5552347D4C3F1FEFDC6F7A ] C:\Windows\System32\samsrv.dll
    21:36:02.0341 0x12d0  C:\Windows\System32\samsrv.dll - ok
    21:36:02.0344 0x12d0  [ 3A9C9BAF610B0DD4967086040B3B62A9, E8E9A0F42B1EE7806EDCEED08AA024D037215D06CA317E3678BD5364AD513D23 ] C:\Windows\System32\srvcli.dll
    21:36:02.0344 0x12d0  C:\Windows\System32\srvcli.dll - ok
    21:36:02.0346 0x12d0  [ 3A061472B38233BAFF9CFEFF2E49C46B, DF29B14C8D22A8A16AA336A09A6152E2C7FCA6CAF4E76F0C5DCB55BEF9D00515 ] C:\Windows\System32\cryptdll.dll
    21:36:02.0346 0x12d0  C:\Windows\System32\cryptdll.dll - ok
    21:36:02.0348 0x12d0  [ 88AB9B72B4BF3963A0DE0820B4B0B06C, 29EFEADCB26E408CD41492FCEC6D411A018099D6FF5ECA9526ED59564975F3E6 ] C:\Windows\System32\winlogon.exe
    21:36:02.0348 0x12d0  C:\Windows\System32\winlogon.exe - ok
    21:36:02.0351 0x12d0  [ 3C073B0C596A0AF84933E7406766B040, 4698BBA678F553E15AD4B07AD7FB236281F872DEFEE97BFD637114476C8F97B3 ] C:\Windows\System32\wevtapi.dll
    21:36:02.0351 0x12d0  C:\Windows\System32\wevtapi.dll - ok
    21:36:02.0353 0x12d0  [ 0D9764D58C5EFD672B7184854B152E5E, 9827B43DABBEC39AB2E2294408D9C5304EF27A684903C5234C6070387723D49E ] C:\Windows\System32\winsta.dll
    21:36:02.0353 0x12d0  C:\Windows\System32\winsta.dll - ok
    21:36:02.0355 0x12d0  [ 7FBEBD2229EA5FD48D41B199EC2D541C, A465975D445A8D50CAF3EF29BD33354B320D11173C127BE30D5EBBFF7008CDCE ] C:\Windows\System32\authz.dll
    21:36:02.0355 0x12d0  C:\Windows\System32\authz.dll - ok
    21:36:02.0358 0x12d0  [ 86FE1B1F8FD42CD0DB641AB1CDB13093, 8C4BB4415105CE82FFFE658879EAE9D259A24C0F6DFC7D25507352DC99241BE2 ] C:\Windows\System32\cngaudit.dll
    21:36:02.0358 0x12d0  C:\Windows\System32\cngaudit.dll - ok
    21:36:02.0360 0x12d0  [ 747B9BA5412422F27934CB21131F0A3E, 2441F925C3B46A15141A0A1E1AA9DFCCA2891D823D55C6E6DA0E30C2DE3A7341 ] C:\Windows\System32\ncrypt.dll
    21:36:02.0360 0x12d0  C:\Windows\System32\ncrypt.dll - ok
    21:36:02.0363 0x12d0  [ B9A95365E52F421A20E1501935FADDA5, DDB4CB575139233EFAF2C59B7E9B04AF36BBCCC63190181F3B2A7E6BFC86E77E ] C:\Windows\System32\bcrypt.dll
    21:36:02.0363 0x12d0  C:\Windows\System32\bcrypt.dll - ok
    21:36:02.0365 0x12d0  [ 02B64609F865A39365FF88580DF11738, 2F676B93898E1B6131AF6227BB7AB731EB9C29477F9BD4C2C60F0FC1E35CD968 ] C:\Windows\System32\msprivs.dll
    21:36:02.0365 0x12d0  C:\Windows\System32\msprivs.dll - ok
    21:36:02.0368 0x12d0  [ C6505DE3561537BA1004D638C2F93F2F, 3E4FDF374B1A9E43A8F61FD2D79E0515390ECABFDAF72C4BD44A7B6429039AF6 ] C:\Windows\System32\netjoin.dll
    21:36:02.0368 0x12d0  C:\Windows\System32\netjoin.dll - ok
    21:36:02.0370 0x12d0  [ B19C8390A1D641B9AC4490D4828A7B5E, 23F376D3BC09C95D7FE4729EDD907F06A96E4AD296D33588839382224361C0FC ] C:\Windows\System32\kerberos.dll
    21:36:02.0370 0x12d0  C:\Windows\System32\kerberos.dll - ok
    21:36:02.0373 0x12d0  [ 50532FCD7ECF02DD169CE5C485F02534, 8EE5D9D0EA53DC72BCC300692E521ACADD56AB09BFA3E78149D8B5A90648512C ] C:\Windows\System32\negoexts.dll
    21:36:02.0373 0x12d0  C:\Windows\System32\negoexts.dll - ok
    21:36:02.0375 0x12d0  [ E1BB958681BE311E7CFF06CFEC5F1F2B, C2FDFC6C7350788A07DCB99A6A54FB9A96A6A578013DF46D0E5094A3CBF6E862 ] C:\Windows\System32\atmfd.dll
    21:36:02.0375 0x12d0  C:\Windows\System32\atmfd.dll - ok
    21:36:02.0377 0x12d0  [ D0C2FBB6D97416B0166478FC7AE2B212, 7EAB6C37F0A845E645CA44CC060AC6C56E386C7EF7A64716C6786C9602AD8C9D ] C:\Windows\System32\cryptsp.dll
    21:36:02.0378 0x12d0  C:\Windows\System32\cryptsp.dll - ok
    21:36:02.0380 0x12d0  [ 94E026870A55AAEAFF7853C1754091E9, B2F5D5629D12BDFA98DBED3898368F37D9009C7531B6909C7285A2C11C9A0F93 ] C:\Windows\System32\version.dll
    21:36:02.0380 0x12d0  C:\Windows\System32\version.dll - ok
    21:36:02.0382 0x12d0  [ E2A483E796D5FC7E447725FD01D98FA0, 78F7F253CE8391A9BD073AC507A55A29B562AFBB0154C2DA8F5E837CA8DE8B79 ] C:\Windows\System32\msv1_0.dll
    21:36:02.0382 0x12d0  C:\Windows\System32\msv1_0.dll - ok
    21:36:02.0385 0x12d0  [ 9A9F9F1A77D6A80EE28B57664F00013E, 0D441638E086EF1342FCDC43E826BF9E9CC6B2E8AE100D89BFC70163F987DE91 ] C:\Windows\System32\mswsock.dll
    21:36:02.0385 0x12d0  C:\Windows\System32\mswsock.dll - ok
    21:36:02.0387 0x12d0  [ EC7CBFF96B05ECF3D366355B3C64ADCF, F69ED45EBEDCA9CF000AC03281F0EC2C351F98513FBA90E63394E4E561D6C7A2 ] C:\Windows\System32\wship6.dll
    21:36:02.0387 0x12d0  C:\Windows\System32\wship6.dll - ok
    21:36:02.0389 0x12d0  [ AA339DD8BB128EF66660DFBBB59043D3, 76D9F849AFDDA38E04549EB67B4163478776F1B6EF46434168278F84FEB8FC5C ] C:\Windows\System32\netlogon.dll
    21:36:02.0389 0x12d0  C:\Windows\System32\netlogon.dll - ok
    21:36:02.0392 0x12d0  [ 492D07D79E7024CA310867B526D9636D, F2FE647AB85C6C3C1AA3DF4BCE6E4D42B9676C9D837E11388C235AE8DB20044F ] C:\Windows\System32\dnsapi.dll
    21:36:02.0392 0x12d0  C:\Windows\System32\dnsapi.dll - ok
    21:36:02.0394 0x12d0  [ 8FFE297B8449386E7B6851458B6E474E, E149B37E11091D69D926242517E5655596594A6F01FEF06EB65D6BA5B354E326 ] C:\Windows\System32\logoncli.dll
    21:36:02.0394 0x12d0  C:\Windows\System32\logoncli.dll - ok
    21:36:02.0397 0x12d0  [ 481F70241D4EA038BB02590A30F15A23, 794418F8538BE8B90531C99C876D40625FC7C39FDCFCA9114843F44F9FE6D85C ] C:\Windows\System32\schannel.dll
    21:36:02.0397 0x12d0  C:\Windows\System32\schannel.dll - ok
    21:36:02.0399 0x12d0  [ 5D8874A8C11DDDDE29E12DE0E2013493, 3E9A57137BF622AF83E3E4D58971E2C0200559CCA7545D16CF263AA03EE9C7D2 ] C:\Windows\System32\rsaenh.dll
    21:36:02.0399 0x12d0  C:\Windows\System32\rsaenh.dll - ok
    21:36:02.0401 0x12d0  [ 26AF184300C0868D854D5A3092234E24, 46FFF8B9212F2AE99D494A7BD1CDD5C95F451593B46CECAF25CE897931374250 ] C:\Windows\System32\wdigest.dll
    21:36:02.0401 0x12d0  C:\Windows\System32\wdigest.dll - ok
    21:36:02.0404 0x12d0  [ E08088A97F95345E181C3DFCE2C615EF, DEF3B087DF5E10E4F8418029DB6E82546E62FEFA39694B7BD6A48CE8AAFD1B96 ] C:\Windows\System32\pku2u.dll
    21:36:02.0404 0x12d0  C:\Windows\System32\pku2u.dll - ok
    21:36:02.0406 0x12d0  [ B6D8C1202DACA028AD94BDA2795CBBE9, 967DA60ED456F6DC0D1D5F793DB947E81427811FA98BEF215A55F0171C204A12 ] C:\Windows\System32\TSpkg.dll
    21:36:02.0406 0x12d0  C:\Windows\System32\TSpkg.dll - ok
    21:36:02.0408 0x12d0  [ 55C892560C1B42BC57FB61AEFCED2F22, 9A15D6559B4FD2FE3A5C5CE13F3C1AD01D9576F6023BDBD12336A1654D33EC63 ] C:\Windows\System32\LIVESSP.DLL
    21:36:02.0408 0x12d0  C:\Windows\System32\LIVESSP.DLL - ok
    21:36:02.0411 0x12d0  [ D6C7780A364C6BBACFA796BAB9F1B374, 3B5ED1A030BFD0BB73D4FFCD67A6A0B8501EF70293F223EFAA12F430ADF270F9 ] C:\Windows\System32\bcryptprimitives.dll
    21:36:02.0411 0x12d0  C:\Windows\System32\bcryptprimitives.dll - ok
    21:36:02.0413 0x12d0  [ 82A72E99AA1CF0B04D3B9843CBA3AEC1, 0CB811379A40A993544013FA36A9B49532A9954CD8CD0D376E3B740F028C90C4 ] C:\Windows\System32\credssp.dll
    21:36:02.0413 0x12d0  C:\Windows\System32\credssp.dll - ok
    21:36:02.0416 0x12d0  [ 90BDEFC5DF334E5100EAA781D798DE1A, F48B650D811B6D57D2252E326C0C9CC74534BE9D510E7D3403F91D1C5C36281E ] C:\Windows\System32\efslsaext.dll
    21:36:02.0416 0x12d0  C:\Windows\System32\efslsaext.dll - ok
    21:36:02.0418 0x12d0  [ ED78427259134C63ED69804D2132B86C, F6F51B8B35881ABCA5580ED111AAC80E466E6474ABAE31EC8BE46C23EDCA77B2 ] C:\Windows\System32\scecli.dll
    21:36:02.0418 0x12d0  C:\Windows\System32\scecli.dll - ok
    21:36:02.0420 0x12d0  [ 7CC7DF5B654DA579613F811D8C637E29, 70EAC059C1ED814810C75DBB9F4D188428CB942FFD8869D692158D384EB6BB35 ] C:\Windows\System32\ubpm.dll
    21:36:02.0420 0x12d0  C:\Windows\System32\ubpm.dll - ok
    21:36:02.0423 0x12d0  [ C78655BC80301D76ED4FEF1C1EA40A7D, 93B2ED4004ED5F7F3039DD7ECBD22C7E4E24B6373B4D9EF8D6E45A179B13A5E8 ] C:\Windows\System32\svchost.exe
    21:36:02.0423 0x12d0  C:\Windows\System32\svchost.exe - ok
    21:36:02.0425 0x12d0  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] C:\Windows\System32\umpnpmgr.dll
    21:36:02.0426 0x12d0  C:\Windows\System32\umpnpmgr.dll - ok
    21:36:02.0428 0x12d0  [ E6EB44ABAAF1F330119F854856C53EBE, 77279972FFBFA984578DD4F17EB615F5D2D93590AF3A9FEFEFDB9128206C9887 ] C:\Windows\System32\SPInf.dll
    21:36:02.0428 0x12d0  C:\Windows\System32\SPInf.dll - ok
    21:36:02.0430 0x12d0  [ CD1B5AD07E5F7FEF30E055DCC9E96180, 63C58551F32B0B09377F64A6AE1FA81AF93B8A707A57A8C18722086906AD3046 ] C:\Windows\System32\devrtl.dll
    21:36:02.0430 0x12d0  C:\Windows\System32\devrtl.dll - ok
    21:36:02.0433 0x12d0  [ 9C9307C95671AC962F3D6EB3A4A89BAE, D1433791C9B8BCEEAD8937EC18D33E89E4E2012B5975228A8500FD141BC30078 ] C:\Windows\System32\gpapi.dll
    21:36:02.0433 0x12d0  C:\Windows\System32\gpapi.dll - ok
    21:36:02.0435 0x12d0  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] C:\Windows\System32\umpo.dll
    21:36:02.0435 0x12d0  C:\Windows\System32\umpo.dll - ok
    21:36:02.0437 0x12d0  [ F6C011B46FAEEF33536B2E80F48B5CBE, BDD149D3D6F9F6C8F6F34C311219BE5618CEEFBC7D35E37473A47F1D5D015067 ] C:\Windows\System32\pcwum.dll
    21:36:02.0437 0x12d0  C:\Windows\System32\pcwum.dll - ok
    21:36:02.0439 0x12d0  [ 716175021BDA290504CE434273F666BC, FA18CA2D8A5F4335E051E2933147D3C1E7308F7D446E2AEB6596CDEF6E2AFC88 ] C:\Windows\System32\powrprof.dll
    21:36:02.0439 0x12d0  C:\Windows\System32\powrprof.dll - ok
    21:36:02.0441 0x12d0  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] C:\Windows\System32\drivers\luafv.sys
    21:36:02.0441 0x12d0  C:\Windows\System32\drivers\luafv.sys - ok
    21:36:02.0444 0x12d0  [ ED5B09937D559FFA53FC988D20031E98, EC9E50C9BC2184AE93944EA3115A25BADF5FFB91D11776498EBC9A0D60029A84 ] C:\Windows\System32\drivers\aswMonFlt.sys
    21:36:02.0444 0x12d0  C:\Windows\System32\drivers\aswMonFlt.sys - ok
    21:36:02.0446 0x12d0  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] C:\Windows\System32\rpcss.dll
    21:36:02.0446 0x12d0  C:\Windows\System32\rpcss.dll - ok
    21:36:02.0449 0x12d0  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] C:\Windows\System32\RpcEpMap.dll
    21:36:02.0449 0x12d0  C:\Windows\System32\RpcEpMap.dll - ok
    21:36:02.0451 0x12d0  [ 16E964ABF6D1E0F0CC7822FCA9BA754D, 0E461387ACFD641DA22EE542A3C68AF5F7D3A7F967D974E3B198143D461ABE39 ] C:\Windows\System32\wshqos.dll
    21:36:02.0451 0x12d0  C:\Windows\System32\wshqos.dll - ok
    21:36:02.0453 0x12d0  [ 31559F3244C6BC00A52030CAA83B6B91, B2025742B5F0025ACE9821D5722DE3F997EEEAB21D2F381C9E307882DF422579 ] C:\Windows\System32\WSHTCPIP.DLL
    21:36:02.0453 0x12d0  C:\Windows\System32\WSHTCPIP.DLL - ok
    21:36:02.0456 0x12d0  [ 68B2C801CDB2B3838E9C27C3C6F66C73, D2E7A062973CB4D1C33A299D5AEFCE943EB59934EBA427F3C99D03A56EFF7A96 ] C:\Windows\System32\atiesrxx.exe
    21:36:02.0456 0x12d0  C:\Windows\System32\atiesrxx.exe - ok
    21:36:02.0458 0x12d0  [ 9AD9E06F8656F296D91FAE8EE5B95A27, 53384747D5864D699BCC4F48E0A5E656430EDAA65DCDAB4B11EA68FC7106459E ] C:\Windows\System32\FirewallAPI.dll
    21:36:02.0458 0x12d0  C:\Windows\System32\FirewallAPI.dll - ok
    21:36:02.0461 0x12d0  [ BD3674BE7FC9D8D3732C83E8499576ED, E6716A5895D629263A4D21959F48840429AB6F4B55A5FA2663EE5E86C9CA2BF1 ] C:\Windows\System32\wtsapi32.dll
    21:36:02.0461 0x12d0  C:\Windows\System32\wtsapi32.dll - ok
    21:36:02.0463 0x12d0  [ 6011714C8C5C55CBFFAD24D61E879FBD, 75D615082A1C71C6ED3ABB49EDAF660EE538D112CF79B9C8AF0A583D1CE1BBB0 ] C:\Windows\System32\wevtsvc.dll
    21:36:02.0463 0x12d0  C:\Windows\System32\wevtsvc.dll - ok
    21:36:02.0466 0x12d0  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] C:\Windows\System32\audiosrv.dll
    21:36:02.0466 0x12d0  C:\Windows\System32\audiosrv.dll - ok
    21:36:02.0468 0x12d0  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] C:\Windows\System32\FntCache.dll
    21:36:02.0468 0x12d0  C:\Windows\System32\FntCache.dll - ok
    21:36:02.0471 0x12d0  [ 78A1E65207484B7F8D3217507745F47C, 35F413ADB9D157F3666DD15DD58104D629CD9143198A1AB914B73A4A3C9903DD ] C:\Windows\System32\avrt.dll
    21:36:02.0471 0x12d0  C:\Windows\System32\avrt.dll - ok
    21:36:02.0473 0x12d0  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] C:\Windows\System32\mmcss.dll
    21:36:02.0473 0x12d0  C:\Windows\System32\mmcss.dll - ok
    21:36:02.0476 0x12d0  [ 227E2C382A1E02F8D4965E664D3BBE43, 1CFF20A8BF87ACE4FA4935EBEED72BFB1A1FE902A754899E2F50798D67DF5642 ] C:\Windows\System32\MMDevAPI.dll
    21:36:02.0476 0x12d0  C:\Windows\System32\MMDevAPI.dll - ok
    21:36:02.0478 0x12d0  [ F06BB4E336EA57511FDBAFAFCC47DE62, BE43EC62548E9FF89A9495A1722E22DBB76EEC3764F86E64057B636F27D15765 ] C:\Windows\System32\propsys.dll
    21:36:02.0478 0x12d0  C:\Windows\System32\propsys.dll - ok
    21:36:02.0481 0x12d0  [ 715F03B4C7223349768013EA95D9E5B7, 09AB0535A54C2E2962F0FD06988D99060F8CECA39B07AC00A63204C773B95893 ] C:\Windows\System32\LogonUI.exe
    21:36:02.0481 0x12d0  C:\Windows\System32\LogonUI.exe - ok
    21:36:02.0483 0x12d0  [ 34152997FB906895290E0199AC94B85F, 6AEEB989FA6E4354F96F70D0169CC6CAAA56EEE3056F1CD20F5FE846EAC058C1 ] C:\Windows\System32\authui.dll
    21:36:02.0483 0x12d0  C:\Windows\System32\authui.dll - ok
    21:36:02.0485 0x12d0  [ B3BFBD758506ECB50C5804AAA76318F9, 34E079A6AB2D41D1E0B3887B6AE31C43941061B7176FFF2801C3F465C2C89578 ] C:\Windows\System32\cryptui.dll
    21:36:02.0485 0x12d0  C:\Windows\System32\cryptui.dll - ok
    21:36:02.0488 0x12d0  [ 7FA8FDC2C2A27817FD0F624E78D3B50C, 7B63F6AA2CD6D4D07EA3C595B868B1A0749BB11620027A2BD9B935E3055481E4 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
    21:36:02.0488 0x12d0  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
    21:36:02.0490 0x12d0  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] C:\Windows\System32\profsvc.dll
    21:36:02.0490 0x12d0  C:\Windows\System32\profsvc.dll - ok
    21:36:02.0493 0x12d0  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67, E957E4463D318A44BA5109EE3428624DE901C5FF2BA358986DF6C6F059DDBCC2 ] C:\Windows\System32\adtschema.dll
    21:36:02.0493 0x12d0  C:\Windows\System32\adtschema.dll - ok
    21:36:02.0495 0x12d0  [ FE05D03B73000CFF476E1D29109F3A84, 7880B025413338A7B114BECB5DC67605FC7A97142C26FD12F765A64A21805842 ] C:\Program Files\Windows Defender\MpEvMsg.dll
    21:36:02.0495 0x12d0  C:\Program Files\Windows Defender\MpEvMsg.dll - ok
    21:36:02.0498 0x12d0  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] C:\Windows\System32\netprofm.dll
    21:36:02.0498 0x12d0  C:\Windows\System32\netprofm.dll - ok
    21:36:02.0500 0x12d0  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] C:\Windows\System32\MPSSVC.dll
    21:36:02.0500 0x12d0  C:\Windows\System32\MPSSVC.dll - ok
    21:36:02.0503 0x12d0  [ A3DB3C17EE6CAE65D53602B4E80BCCBC, D802A7C6161F937DC42A6E45FE1BB2C8272819F92C294C180EBCDF8FF72CBFDC ] C:\Windows\System32\PSHED.DLL
    21:36:02.0503 0x12d0  C:\Windows\System32\PSHED.DLL - ok
    21:36:02.0505 0x12d0  [ 50544D04AD845C43130B70212EC05CCD, B2E6B558DE7D273512226685FF53ED17C9B4BF81B739FBCA5D3FC82DF8D2BCF7 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
    21:36:02.0505 0x12d0  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
    21:36:02.0508 0x12d0  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] C:\Windows\System32\drivers\fltMgr.sys
    21:36:02.0508 0x12d0  C:\Windows\System32\drivers\fltMgr.sys - ok
    21:36:02.0510 0x12d0  [ B0945E538CF906BBDDC5A11C8EE868CC, 5F3459F6512918835F7C9400905EC7C1FAEAA7114E0D28C522040C359E3B93F7 ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
    21:36:02.0510 0x12d0  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
    21:36:02.0513 0x12d0  [ 4E9C2DB10F7E6AE91BF761139D4B745B, 8F63F78294F5585D599A114AF449DCC447CCB239D0F0B490BFE6B34A2146E730 ] C:\Windows\System32\shacct.dll
    21:36:02.0513 0x12d0  C:\Windows\System32\shacct.dll - ok
    21:36:02.0515 0x12d0  [ 5B3EBFC3DA142324B388DDCC4465E1FF, 5D58642305311F9BC9B779C9598BFC4E7433B3EA58404BF1FF9466838A2328C7 ] C:\Windows\System32\samlib.dll
    21:36:02.0515 0x12d0  C:\Windows\System32\samlib.dll - ok
    21:36:02.0518 0x12d0  [ D5CCA1453B98A5801E6D5FF0FF89DC6C, 85F2C2480AAC31B6092187B431A562D79D4CFB1324F925C85055ABAB2483264B ] C:\Windows\System32\audiodg.exe
    21:36:02.0518 0x12d0  C:\Windows\System32\audiodg.exe - ok
    21:36:02.0520 0x12d0  [ 1F4492FE41767CDB8B89D17655847CDD, 184547FAC0C3D7148FAA3F601929A7089DE393BD19929A137DAD743331DD3F77 ] C:\Windows\System32\ntmarta.dll
    21:36:02.0520 0x12d0  C:\Windows\System32\ntmarta.dll - ok
    21:36:02.0522 0x12d0  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] C:\Windows\System32\gpsvc.dll
    21:36:02.0522 0x12d0  C:\Windows\System32\gpsvc.dll - ok
    21:36:02.0525 0x12d0  [ 58775492FFD419248B08325E583C527F, DBB013971F5894F25C222C2D4D50A29DB6DF3C413792EE9CCC1A9E6D85469093 ] C:\Windows\System32\atl.dll
    21:36:02.0525 0x12d0  C:\Windows\System32\atl.dll - ok
    21:36:02.0527 0x12d0  [ A77BE7CB3222B4FB0AC6C71D1C2698D4, 73566223914BF670DF6B5931FA213E546713531B10391ED65B5256BBD7ABDE7F ] C:\Windows\System32\dsrole.dll
    21:36:02.0527 0x12d0  C:\Windows\System32\dsrole.dll - ok
    21:36:02.0529 0x12d0  [ 46BB91A169B9B31FF44EB04C48EC1D41, 8115B533D3A5BE07633FA54FA8847E3DEC00C5BEB193CF2FBE88428D23E2B3D6 ] C:\Windows\System32\nlaapi.dll
    21:36:02.0529 0x12d0  C:\Windows\System32\nlaapi.dll - ok
    21:36:02.0532 0x12d0  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] C:\Windows\System32\themeservice.dll
    21:36:02.0532 0x12d0  C:\Windows\System32\themeservice.dll - ok
    21:36:02.0534 0x12d0  [ BE097F5BB10F9079FCEB2DC4E7E20F02, 90A88986C8C5F30FB153EC803FEDA6572B2C2630A6C9578FCC017800692694D5 ] C:\Windows\System32\slc.dll
    21:36:02.0534 0x12d0  C:\Windows\System32\slc.dll - ok
    21:36:02.0536 0x12d0  [ D29E998E8277666982B4F0303BF4E7AF, 4F19AB5DC173E278EBE45832F6CEAA40E2DF6A2EDDC81B2828122442FE5D376C ] C:\Windows\System32\uxtheme.dll
    21:36:02.0536 0x12d0  C:\Windows\System32\uxtheme.dll - ok
    21:36:02.0539 0x12d0  [ 1473768973453DE50DC738C2955FC4DD, 14BC5DA2442CB726ACC1F277DDBECCF5D61E3A0A3E083A55A0BB610191E35220 ] C:\Windows\System32\wdmaud.drv
    21:36:02.0539 0x12d0  C:\Windows\System32\wdmaud.drv - ok
    21:36:02.0541 0x12d0  [ EF2AE43BCD46ABB13FC3E5B2B1935C73, 81FC06F306F620845D7DD8D06E706309E70BC89B589C81F3478302A3F5F73431 ] C:\Windows\System32\winmm.dll
    21:36:02.0541 0x12d0  C:\Windows\System32\winmm.dll - ok
    21:36:02.0543 0x12d0  [ 8560FFFC8EB3A806DCD4F82252CFC8C6, CC27BC092369A89D6147B16568FEDEB68B584D5738CD686C31F7FAE22ED17B3B ] C:\Windows\System32\ksuser.dll
    21:36:02.0543 0x12d0  C:\Windows\System32\ksuser.dll - ok
    21:36:02.0546 0x12d0  [ DC220AE6F64819099F7EBD6F137E32E7, B8FE13B859FA83500DD95637FA6D4A5B8392C2A363E41D014D3B5374F636E1DE ] C:\Windows\System32\AudioSes.dll
    21:36:02.0546 0x12d0  C:\Windows\System32\AudioSes.dll - ok
    21:36:02.0548 0x12d0  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A, 72288C0A88916D3C3828DBD948DBDB0928F26106319F8E60102D6C9004514D60 ] C:\Windows\System32\msacm32.dll
    21:36:02.0548 0x12d0  C:\Windows\System32\msacm32.dll - ok
    21:36:02.0551 0x12d0  [ 1B7C3A37362C7B2890168C5FC61C8D9B, 03727930E5BB5F9D91BAB901FC9A2E3B795D68E2AEE6A2CC3477F356C45A9C54 ] C:\Windows\System32\msacm32.drv
    21:36:02.0551 0x12d0  C:\Windows\System32\msacm32.drv - ok
    21:36:02.0553 0x12d0  [ 5EDBB34736DD7AC1A73CF8792A835E10, 15E87C449AAF2095273341DD9355D8DF2690340D1DEFAF0DFF034F1CDF4316F8 ] C:\Windows\System32\AudioEng.dll
    21:36:02.0553 0x12d0  C:\Windows\System32\AudioEng.dll - ok
    21:36:02.0555 0x12d0  [ CA2A0750ED830678997695FF61B04C30, E84860CD97AA3C4565ABB2D5D406A5C42B1AD2D8BA1B8CF81FE564D91F15F976 ] C:\Windows\System32\midimap.dll
    21:36:02.0555 0x12d0  C:\Windows\System32\midimap.dll - ok
    21:36:02.0558 0x12d0  [ C1395286B822E306B4FE1568A8A77813, 0642B6C793BE0EED5E7D1D2533FC5A01417C50040FC60A8E89BD97CE4A119388 ] C:\Windows\System32\AUDIOKSE.dll
    21:36:02.0558 0x12d0  C:\Windows\System32\AUDIOKSE.dll - ok
    21:36:02.0561 0x12d0  [ 04CFE870C30640C9A369E0FE8C654B98, 24A3E4C03E456EBEAF49CF84F478E4D3FE05F966C4E1602D65616BD744430B3E ] C:\Windows\System32\MBWrp64.dll
    21:36:02.0561 0x12d0  C:\Windows\System32\MBWrp64.dll - ok
    21:36:02.0563 0x12d0  [ 4398FC24DCF85FD2B6BA3D042B41C136, B7FC0BF136EAFA0493B16681206379250988CACCCAE7C998BC21157F014DC444 ] C:\Windows\System32\MBTHX64.dll
    21:36:02.0563 0x12d0  C:\Windows\System32\MBTHX64.dll - ok
    21:36:02.0566 0x12d0  [ 2B81776DA02017A37FE26C662827470E, A656353C50EE08422145D00DB9CFD9F6D3E664753B3C454B171E2A56A8AA94DC ] C:\Windows\System32\IPHLPAPI.DLL
    21:36:02.0566 0x12d0  C:\Windows\System32\IPHLPAPI.DLL - ok
    21:36:02.0568 0x12d0  [ F568F7C08458D69E4FCD8675BBB107E4, A5FA25ECF248999A68CCECFBB508BFA1ADD18A23E20A9A9081A87C41CAAA36C0 ] C:\Windows\System32\dhcpcsvc.dll
    21:36:02.0568 0x12d0  C:\Windows\System32\dhcpcsvc.dll - ok
    21:36:02.0570 0x12d0  [ 4C9210E8F4E052F6A4EB87716DA0C24C, 460F7990BDADB7D58D6DC95B094D30A2EFDC4CEED444B18A2F36E8D9076FB8B9 ] C:\Windows\System32\winnsi.dll
    21:36:02.0570 0x12d0  C:\Windows\System32\winnsi.dll - ok
    21:36:02.0573 0x12d0  [ 25D74864274539330DCC4234140D11AF, 392AB94B5C0D9EBDC85844F906EF51894B23D01FEE0081C44A729E1FD8AB42CD ] C:\Windows\System32\MBAPO64.dll
    21:36:02.0573 0x12d0  C:\Windows\System32\MBAPO64.dll - ok
    21:36:02.0575 0x12d0  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] C:\Windows\System32\es.dll
    21:36:02.0575 0x12d0  C:\Windows\System32\es.dll - ok
    21:36:02.0577 0x12d0  [ A7115ED31675BB823CFA9FE571C25676, DEEBB3920934DCDDD488DCFCB1E6F4C7EFDD3C79F31E41D59E292C3CF9400E95 ] C:\Windows\System32\drivers\aswstm.sys
    21:36:02.0577 0x12d0  C:\Windows\System32\drivers\aswstm.sys - ok
    21:36:02.0580 0x12d0  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] C:\Windows\System32\drivers\lltdio.sys
    21:36:02.0580 0x12d0  C:\Windows\System32\drivers\lltdio.sys - ok
    21:36:02.0583 0x12d0  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] C:\Windows\System32\Sens.dll
    21:36:02.0583 0x12d0  C:\Windows\System32\Sens.dll - ok
    21:36:02.0585 0x12d0  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] C:\Windows\System32\uxsms.dll
    21:36:02.0585 0x12d0  C:\Windows\System32\uxsms.dll - ok
    21:36:02.0588 0x12d0  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] C:\Windows\System32\dhcpcore.dll
    21:36:02.0588 0x12d0  C:\Windows\System32\dhcpcore.dll - ok
    21:36:02.0590 0x12d0  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] C:\Windows\System32\drivers\rspndr.sys
    21:36:02.0590 0x12d0  C:\Windows\System32\drivers\rspndr.sys - ok
    21:36:02.0592 0x12d0  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] C:\Windows\System32\lmhsvc.dll
    21:36:02.0592 0x12d0  C:\Windows\System32\lmhsvc.dll - ok
    21:36:02.0595 0x12d0  [ B73A6E4B319AFFE64582AC5C1801BB3F, 274EEA0743DC659180E691654CBB17136E9E9D83B07E302B47EA5B103EA57710 ] C:\Windows\System32\nrpsrv.dll
    21:36:02.0595 0x12d0  C:\Windows\System32\nrpsrv.dll - ok
    21:36:02.0597 0x12d0  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] C:\Windows\System32\nsisvc.dll
    21:36:02.0597 0x12d0  C:\Windows\System32\nsisvc.dll - ok
    21:36:02.0599 0x12d0  [ 3CC16A849E6092E43909F48EF0E60306, 610B576654A69415E4F2FEDB6BA384C77715944E4F89BD2821B311968CA8D810 ] C:\Windows\System32\dhcpcore6.dll
    21:36:02.0599 0x12d0  C:\Windows\System32\dhcpcore6.dll - ok
    21:36:02.0602 0x12d0  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] C:\Windows\System32\dnsrslvr.dll
    21:36:02.0602 0x12d0  C:\Windows\System32\dnsrslvr.dll - ok
    21:36:02.0605 0x12d0  [ D07EB640618F96490DB88C3CE58DB608, 0C553971259632031E6856A94EEB937D571627FC7CF061CCFC040F4BF0CFF259 ] C:\Windows\System32\FWPUCLNT.DLL
    21:36:02.0605 0x12d0  C:\Windows\System32\FWPUCLNT.DLL - ok
    21:36:02.0607 0x12d0  [ 3C06D5A929B798D0B13F6481242A0FD2, CE6127A31AB09E21A912CA16E4BDF663E9D05C254CCF9090A8B5A9A2E055EFF3 ] C:\Windows\System32\dhcpcsvc6.dll
    21:36:02.0607 0x12d0  C:\Windows\System32\dhcpcsvc6.dll - ok
    21:36:02.0611 0x12d0  [ 885D0942E0F28DB90919BE3129ECF279, 5A10D90EE656ECE3DCA174D6F924641509819FC20CB6EF46B5E1723E52DE85BE ] C:\Windows\System32\dnsext.dll
    21:36:02.0611 0x12d0  C:\Windows\System32\dnsext.dll - ok
    21:36:02.0614 0x12d0  [ 1A47D52E303B7543E4E6026595B95422, C577CD3837546A7CED5D2E8E97FA2EDACA133B4A8595770EF96CAE519BFE280F ] C:\Windows\System32\comres.dll
    21:36:02.0614 0x12d0  C:\Windows\System32\comres.dll - ok
    21:36:02.0616 0x12d0  [ 6171D669F73EB69A96DFFDA11EBD00E5, F56E0B9DFED922720BF388EA0EEF96626B3027343F4A527B823D6E6CEB6D080B ] C:\Windows\System32\RtkAPO64.dll
    21:36:02.0616 0x12d0  C:\Windows\System32\RtkAPO64.dll - ok
    21:36:02.0619 0x12d0  [ 6F3C559B82F2912354BE5B098744CC8C, EB64E5C02C81588921A65194E1256E80699A1317E7D9A57395CD38C2639C8B08 ] C:\Windows\System32\WMALFXGFXDSP.dll
    21:36:02.0619 0x12d0  C:\Windows\System32\WMALFXGFXDSP.dll - ok
    21:36:02.0621 0x12d0  [ 54B5DCD55B223BC5DF50B82E1E9E86B1, 025294DD69A421FE4EACAA463F8CB797610D8F3A7A3C61656AE83D0CEE07A9BF ] C:\Windows\System32\mfplat.dll
    21:36:02.0621 0x12d0  C:\Windows\System32\mfplat.dll - ok
    21:36:02.0624 0x12d0  [ A9A87481B1A6589898C1DAB37C03E4AB, 803DB46E9FEE4E45B63A13A8CE3E589D7498532B8A7D8C3424E210E6A9AAC61F ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_2b283fd671e9bf4d\GdiPlus.dll
    21:36:02.0624 0x12d0  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_2b283fd671e9bf4d\GdiPlus.dll - ok
    21:36:02.0626 0x12d0  [ 3CB6A7286422C72C34DAB54A5DFF1A34, 98D21EFFF511E407336A226420701E82554DA01FA05661303836B6860D63749D ] C:\Windows\System32\dui70.dll
    21:36:02.0626 0x12d0  C:\Windows\System32\dui70.dll - ok
    21:36:02.0628 0x12d0  [ 8CCDE014A4CDF84564E03ACE064CA753, DD663029B2EB7B12FDB00FCE403D8326141E540E3B9CE84CD5871473D3E2E2CF ] C:\Windows\System32\duser.dll
    21:36:02.0628 0x12d0  C:\Windows\System32\duser.dll - ok
    21:36:02.0631 0x12d0  [ D7F1EF374A90709B31591823B002F918, 05FD2837C9B03D14BB2A969C1AD77CAEF047D93DC5D0F6C2ACBF0888E8F7B359 ] C:\Windows\System32\SndVolSSO.dll
    21:36:02.0631 0x12d0  C:\Windows\System32\SndVolSSO.dll - ok
    21:36:02.0633 0x12d0  [ 37D17AE2936867F88EB3C4CBCBC6B8A1, E1F4D288CE1E5482A5594C8F9EEDE1E8134466F5E0C7DA32D88985497CD8588B ] C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    21:36:02.0633 0x12d0  C:\Program Files\AVAST Software\Avast\AvastSvc.exe - ok
    21:36:02.0636 0x12d0  [ DA1B7075260F3872585BFCDD668C648B, 3E10EF6E1A5C341B478322CB78A0AB7BFC70AD8023779B8B4542A7CB4CA756AB ] C:\Windows\System32\dwmapi.dll
    21:36:02.0636 0x12d0  C:\Windows\System32\dwmapi.dll - ok
    21:36:02.0638 0x12d0  [ 896F15A6434D93EDB42519D5E18E6B50, 9263F0CEC58D45EBE3FB9C3061FB9392C55A7933B84B4592E6EE13CFC86D5A50 ] C:\Windows\System32\hid.dll
    21:36:02.0638 0x12d0  C:\Windows\System32\hid.dll - ok
    21:36:02.0640 0x12d0  [ 6F8B48F3D343E4B186AB6A9E302B7E16, 54DB52FC56509E61DF68BD251B3286E6CBE1A91D9BC4D950940A61FE2DA04DF8 ] C:\Windows\System32\xmllite.dll
    21:36:02.0640 0x12d0  C:\Windows\System32\xmllite.dll - ok
    21:36:02.0643 0x12d0  [ AFCA5C1ECEAF948FC815178BC077680E, D052C18EF455E1A272332F2E11FD4F36DA071FAB3B81CA312FB75BF8702ED72D ] C:\Windows\System32\WindowsCodecs.dll
    21:36:02.0643 0x12d0  C:\Windows\System32\WindowsCodecs.dll - ok
    21:36:02.0645 0x12d0  [ A2B0924D50F4435FD389499047CE553A, 8D16D5CAAD71AAAAA1479F8477D2928B66581C79932A49A21EDF93DB2803AB9C ] C:\Windows\SysWOW64\ntdll.dll
    21:36:02.0645 0x12d0  C:\Windows\SysWOW64\ntdll.dll - ok
    21:36:02.0647 0x12d0  [ 2A107B611C91CD256466C58C0D776E9D, 58EA4F6E0FE7EFB8D3024AE71EE16848C2A00BA5224C8054C80134F99D9A72AB ] C:\Windows\System32\wow64.dll
    21:36:02.0647 0x12d0  C:\Windows\System32\wow64.dll - ok
    21:36:02.0650 0x12d0  [ 7434E01FBCA3CB86539C39412A31D5E1, E40D5AEBB3A5D8F53C76E3FBF0C07B9C0227914C869F57622EA44A212383EE6D ] C:\Windows\System32\wow64win.dll
    21:36:02.0650 0x12d0  C:\Windows\System32\wow64win.dll - ok
    21:36:02.0652 0x12d0  [ 0F090A77E664CB0F70AB8D3B230B760C, A08EA0409B3BF88AB12792F721FA3A692BBE640DF2A06641E142843A7044EC5E ] C:\Windows\System32\wow64cpu.dll
    21:36:02.0652 0x12d0  C:\Windows\System32\wow64cpu.dll - ok
    21:36:02.0655 0x12d0  [ 76161B9D78A275F8F28DD67436013110, E4AE9648BDED9035D39DF20C3A6F453F67D49D7899038B21D88FFD4EFFCC4C08 ] C:\Windows\SysWOW64\kernel32.dll
    21:36:02.0655 0x12d0  C:\Windows\SysWOW64\kernel32.dll - ok
    21:36:02.0657 0x12d0  [ 461B713DE7F353C6447B744F1A049930, 3551C57128DAFA009C9DB3EE0D798D94B269D1605F74897566D7E79E5FDD437B ] C:\Windows\SysWOW64\KernelBase.dll
    21:36:02.0657 0x12d0  C:\Windows\SysWOW64\KernelBase.dll - ok
    21:36:02.0660 0x12d0  [ D67472125471784DE7147946EDA25FEB, F41960118F412B6CA5E80AE5E8DB9AECDD043A7DB34388FF57C6F9C5A0056F91 ] C:\Windows\SysWOW64\advapi32.dll
    21:36:02.0660 0x12d0  C:\Windows\SysWOW64\advapi32.dll - ok
    21:36:02.0662 0x12d0  [ 9DC80A8AAAAAC397BDAB3C67165A824E, 051636BFDFF7AB0E4191354E846BD0DACCA1A01FCC13C1AFED91D8DBFE17127A ] C:\Windows\SysWOW64\msvcrt.dll
    21:36:02.0662 0x12d0  C:\Windows\SysWOW64\msvcrt.dll - ok
    21:36:02.0664 0x12d0  [ 4DC999CED9429939D75682EBD7D48901, 4E2DB6E4C500980488010AF1125A73D0F958889379F05DB304A220B4BB2D1834 ] C:\Windows\SysWOW64\rpcrt4.dll
    21:36:02.0664 0x12d0  C:\Windows\SysWOW64\rpcrt4.dll - ok
    21:36:02.0667 0x12d0  [ CFC97F07904067A1E5FAE195D534DA3A, EB4D2D127312EB09E2ACCA3276779E80F90FAF77322684BABF72B8EC6E1F906C ] C:\Windows\SysWOW64\sechost.dll
    21:36:02.0667 0x12d0  C:\Windows\SysWOW64\sechost.dll - ok
    21:36:02.0669 0x12d0  [ 75878492F2B33405EEF900F8C16C6D08, E38B3B58C3C6895F9CBA28E8BD4C6497D07342FD9CA4BBAE6AFC48D40DC11FA1 ] C:\Windows\SysWOW64\sspicli.dll
    21:36:02.0669 0x12d0  C:\Windows\SysWOW64\sspicli.dll - ok
    21:36:02.0672 0x12d0  [ DC347956DDF005392FCBF7A426BF7A9E, 48CEE8B4AD6608023BF6C3DD5FE589794A7C3AD1588FDDC24B50548A3CA42103 ] C:\Program Files\AVAST Software\Avast\ashBase.dll
    21:36:02.0672 0x12d0  C:\Program Files\AVAST Software\Avast\ashBase.dll - ok
    21:36:02.0674 0x12d0  [ F08F6FCD09F9BE94C37ACC1B344685FF, DE48D766258B46EFEAB16579421C4BD97ACC6883F782D00E9857F4A0CE7E8A34 ] C:\Windows\SysWOW64\cryptbase.dll
    21:36:02.0674 0x12d0  C:\Windows\SysWOW64\cryptbase.dll - ok
    21:36:02.0677 0x12d0  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D, 19959D18601712901F03B83150D15E34EBCAB355BB4692C9A28511A72F57FC66 ] C:\Windows\System32\winbrand.dll
    21:36:02.0677 0x12d0  C:\Windows\System32\winbrand.dll - ok
    21:36:02.0679 0x12d0  [ 7FF15A4F092CD4A96055BA69F903E3E9, 1B594E6D057C632ABB3A8CF838157369024BD6B9F515CA8E774B22FE71A11627 ] C:\Windows\SysWOW64\ws2_32.dll
    21:36:02.0679 0x12d0  C:\Windows\SysWOW64\ws2_32.dll - ok
    21:36:02.0681 0x12d0  [ DF13A51A5C591887D2EC6AE64CEED0FA, DFD503AEBCAA056B2B0E669ACA52F6D26F4E6892F2DCFCCD902752C23A621653 ] C:\Windows\SysWOW64\wsock32.dll
    21:36:02.0681 0x12d0  C:\Windows\SysWOW64\wsock32.dll - ok
    21:36:02.0683 0x12d0  [ 6377051C63D5552A311935C67E9FDFDC, 3FB82988AAB66813567E8DB951D4EE87F156201070F005FDBF52EF998A323E65 ] C:\Windows\SysWOW64\nsi.dll
    21:36:02.0683 0x12d0  C:\Windows\SysWOW64\nsi.dll - ok
    21:36:02.0686 0x12d0  [ CC09E0C9A2D89C6E71D093DC8BD121B7, 5F92457E27D817541EBA92FED984D2E6C1E35AD4E4E4CAE0F0778B795C260FAA ] C:\Windows\SysWOW64\crypt32.dll
    21:36:02.0686 0x12d0  C:\Windows\SysWOW64\crypt32.dll - ok
    21:36:02.0688 0x12d0  [ A543AC1F7138376D778D630A35FCBC4C, 2D824C66A97FC8C39DAFA397CC47495B712D175EEF393486946DA8936BDD466A ] C:\Windows\SysWOW64\psapi.dll
    21:36:02.0688 0x12d0  C:\Windows\SysWOW64\psapi.dll - ok
    21:36:02.0690 0x12d0  [ 702254574E7E52052DE39408457B7149, 645CA9E88DA21C63710A04A0F54421018DF415A3D612112C71A255C49325C082 ] C:\Windows\SysWOW64\version.dll
    21:36:02.0690 0x12d0  C:\Windows\SysWOW64\version.dll - ok
    21:36:02.0693 0x12d0  [ C2762A57DF0EE85E63CE4893C5215313, DDE22212D78353633CEDE27D7210469DE674563991105563CF64CCCE2D0743BD ] C:\Windows\System32\VaultCredProvider.dll
    21:36:02.0693 0x12d0  C:\Windows\System32\VaultCredProvider.dll - ok
    21:36:02.0695 0x12d0  [ 8563BA40DF4F1E93A61B70E2C8B60CF8, E5CAA520CBE61FAF3EAA784A51ED30E0CB2FD78EFD8AE1D5C6B0FE43A1009F39 ] C:\Windows\System32\SmartcardCredentialProvider.dll
    21:36:02.0695 0x12d0  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
    21:36:02.0698 0x12d0  [ 938F39B50BAFE13D6F58C7790682C010, 902000EE51EFEABAF6A4B30F880AA37083D2232C6FC622CA513C4A823390FEDA ] C:\Windows\SysWOW64\msasn1.dll
    21:36:02.0698 0x12d0  C:\Windows\SysWOW64\msasn1.dll - ok
    21:36:02.0700 0x12d0  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3, 01EB95FA3943CF3C6B1A21E473A5C3CB9FCBCE46913B15C96CAC14E4F04075B4 ] C:\Windows\SysWOW64\user32.dll
    21:36:02.0700 0x12d0  C:\Windows\SysWOW64\user32.dll - ok
    21:36:02.0702 0x12d0  [ BF352E73615F5461AA6884472435A544, 4B059E79325C5F08CD6FBBE6352E17ADB64B9608CC9EDB36A2DF4D148060C309 ] C:\Windows\System32\BioCredProv.dll
    21:36:02.0702 0x12d0  C:\Windows\System32\BioCredProv.dll - ok
    21:36:02.0705 0x12d0  [ 56E3313690866F99CD17AA1342F64AE1, 4AD4E105C1A6E9BAB9568CA21B15A38C59702EF605AA9058490C56DA070CF846 ] C:\Windows\SysWOW64\gdi32.dll
    21:36:02.0705 0x12d0  C:\Windows\SysWOW64\gdi32.dll - ok
    21:36:02.0707 0x12d0  [ 796B8123A7859AFD3A4AE10514DBAEB5, E76F69FAFEC3D66263ED95F3FA9EE309BDDACB287E30583A147DC97F6EEB8844 ] C:\Windows\System32\winbio.dll
    21:36:02.0707 0x12d0  C:\Windows\System32\winbio.dll - ok
    21:36:02.0709 0x12d0  [ CC23295DA8F7B5C53F93804D2F5D30EB, B290D96C40FBA934DE6CFF82D9BBA6780922CC5012C61599BD5006DAEDC82DDB ] C:\Windows\SysWOW64\lpk.dll
    21:36:02.0710 0x12d0  C:\Windows\SysWOW64\lpk.dll - ok
    21:36:02.0712 0x12d0  [ A5F833506BF6A1B5D693E1499DEE2444, 045874B7D37F49216E37D551076FF440E29DB5196564E714207DF753DF7FDDEE ] C:\Windows\SysWOW64\usp10.dll
    21:36:02.0712 0x12d0  C:\Windows\SysWOW64\usp10.dll - ok
    21:36:02.0714 0x12d0  [ 4403D5ECE7D8323CAF1207D1AA38FA01, BD0B34DCF658D3CB91C1B55E9E730C5F7C571AFC2BFA09270C377B72B6830D48 ] C:\Windows\System32\credui.dll
    21:36:02.0714 0x12d0  C:\Windows\System32\credui.dll - ok
    21:36:02.0717 0x12d0  [ 44B9C66177651F3F53C87B665D58D17A, 3FC426115FF87570889DB28D71970B82B525D2A4B9A00EDD273BF083B77A05CE ] C:\Windows\System32\vaultcli.dll
    21:36:02.0717 0x12d0  C:\Windows\System32\vaultcli.dll - ok
    21:36:02.0719 0x12d0  [ EEEA40F0EDB0A6E5359E539E15D0BC77, BFCBF777239C29C6AC4BC5B59591308571647B7C7FDB5571903F7403DD241E8E ] C:\Windows\System32\netapi32.dll
    21:36:02.0719 0x12d0  C:\Windows\System32\netapi32.dll - ok
    21:36:02.0722 0x12d0  [ 6CECA4C6A489C9B2E6073AFDAAE3F607, 127506D1DB38275614CBEB047C133718EF9D03266BA9C98BE55EC7847CFC9C3D ] C:\Windows\System32\netutils.dll
    21:36:02.0722 0x12d0  C:\Windows\System32\netutils.dll - ok
    21:36:02.0724 0x12d0  [ 3C91392D448F6E5D525A85B7550D8BA9, 6FD0DC73DBE7519E2C643554C2A7F8FBE4F9A678C4241BB54B3C6E65D2ABCF3A ] C:\Windows\System32\wkscli.dll
    21:36:02.0724 0x12d0  C:\Windows\System32\wkscli.dll - ok
    21:36:02.0726 0x12d0  [ FC51229C7D4AFA0D6F186133728B95AB, 37E58C8E1C8437D1981725A5DCDACA7316CEFBB570370CEFC8D122F523B96AC0 ] C:\Windows\System32\samcli.dll
    21:36:02.0726 0x12d0  C:\Windows\System32\samcli.dll - ok
    21:36:02.0729 0x12d0  [ 10FB16B50AFFDA6D44588F3C445DC273, 6CDA17DA9B44D11E69F7C6682FA633EA75731623BB21B429A0FE2086ED4495A7 ] C:\Windows\SysWOW64\setupapi.dll
    21:36:02.0729 0x12d0  C:\Windows\SysWOW64\setupapi.dll - ok
    21:36:02.0731 0x12d0  [ 972C3301DB3DA91AE06A95F6B4160B1B, 678B533A06C306295FE97DC26CE9BAFFC8EAF1FB7405ACB040719099717744D5 ] C:\Windows\System32\certCredProvider.dll
    21:36:02.0731 0x12d0  C:\Windows\System32\certCredProvider.dll - ok
    21:36:02.0734 0x12d0  [ 7097425051CE67B450EBF2B1390AE492, 45354BA04E383B65D13A073F63EA5EA185D8B0C1E208B6671ED8EBC64711D109 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
    21:36:02.0734 0x12d0  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
    21:36:02.0736 0x12d0  [ 87FA0C48C3B2E9FEE518818FE26B15B5, DA4042DE9897397AEDCEFF9F69746726237305DDE64464309B6DCC45E05E42F4 ] C:\Windows\System32\rasplap.dll
    21:36:02.0736 0x12d0  C:\Windows\System32\rasplap.dll - ok
    21:36:02.0739 0x12d0  [ 019CD868461B646E09BDF04474C19341, 01837EFACB02E52BC6E90C90C4CB01B11D56E449A37EA4FC2695507FF85EA9FE ] C:\Windows\System32\rasapi32.dll
    21:36:02.0739 0x12d0  C:\Windows\System32\rasapi32.dll - ok
    21:36:02.0741 0x12d0  [ B28DEEC597C8DEB70C744C7CF9210E3E, E777F192D822990CA6301B3FEA2AEA213FA7901438EB3328914ADF02B6C39DB9 ] C:\Windows\System32\rasman.dll
    21:36:02.0741 0x12d0  C:\Windows\System32\rasman.dll - ok
    21:36:02.0744 0x12d0  [ B53C4B69B695EDA1B7E41D35CA4244E2, 3D98E9B263CADA576E4057E059AFC867F6E3F1001F3B73C8BCF9066763A45D9D ] C:\Windows\System32\rtutils.dll
    21:36:02.0744 0x12d0  C:\Windows\System32\rtutils.dll - ok
    21:36:02.0746 0x12d0  [ F436E847FA799ECD75AD8C313673F450, 3C8BF3F0C08C7FA8DE5CD9C60AD9D00B742E84EB1FEBEEBA0F7159844BAAA471 ] C:\Windows\SysWOW64\cfgmgr32.dll
    21:36:02.0746 0x12d0  C:\Windows\SysWOW64\cfgmgr32.dll - ok
    21:36:02.0748 0x12d0  [ 6C765E82B57F2E66CE9C54AC238471D9, 97F410023F5C08B4BC5DBF89A642200E76F4025ADD9707C24FD89D673675BB43 ] C:\Windows\SysWOW64\oleaut32.dll
    21:36:02.0749 0x12d0  C:\Windows\SysWOW64\oleaut32.dll - ok
    21:36:02.0751 0x12d0  [ 928CF7268086631F54C3D8E17238C6DD, F058FAFB04E7EBD5CADE9B48195B7AA7C3508F332A89F5E6E5F3F071E8CADD4A ] C:\Windows\SysWOW64\ole32.dll
    21:36:02.0751 0x12d0  C:\Windows\SysWOW64\ole32.dll - ok
    21:36:02.0753 0x12d0  [ 6BEFB8B4B3A3C2FF7DEADA170F2D35C5, 6961FA60B11E5CA4E45C01A1E2E0B85EE0E35A0CD92243667EBCE3602941D98B ] C:\Program Files\AVAST Software\Avast\aswCmnBS.dll
    21:36:02.0753 0x12d0  C:\Program Files\AVAST Software\Avast\aswCmnBS.dll - ok
    21:36:02.0756 0x12d0  [ 2EEFF4502F5E13B1BED4A04CCAD64C08, 209FF1B6D46D1AC99518FCF54F2F726143B2DBF2C5FDA90212FBEF7526F7CBF5 ] C:\Windows\SysWOW64\devobj.dll
    21:36:02.0756 0x12d0  C:\Windows\SysWOW64\devobj.dll - ok
    21:36:02.0758 0x12d0  [ 4B1EAD9E163DE8721FA5544049C81FE0, CE9B656334F7301ACADBF68C08B1AE15BC50875084DD22BB6DB64275DE4EBDDE ] C:\Program Files\AVAST Software\Avast\aswCmnIS.dll
    21:36:02.0758 0x12d0  C:\Program Files\AVAST Software\Avast\aswCmnIS.dll - ok
    21:36:02.0761 0x12d0  [ 4BA25D2CBE1587A841DCFB8C8C4A6EA6, B30160E759115E24425B9BCDF606EF6EBCE4657487525EDE7F1AC40B90FF7E49 ] C:\Windows\winsxs\x86_avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_1d37a43bbfe1dc9c\msvcr110.dll
    21:36:02.0761 0x12d0  C:\Windows\winsxs\x86_avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_1d37a43bbfe1dc9c\msvcr110.dll - ok
    21:36:02.0764 0x12d0  [ CF75F1D0043ED691E823E9138955290E, 85CAFDE8E8663CD6B8D36DBDFF72412A734CF72CB1D30C64D4797083E5D7038A ] C:\Program Files\AVAST Software\Avast\aswCmnOS.dll
    21:36:02.0764 0x12d0  C:\Program Files\AVAST Software\Avast\aswCmnOS.dll - ok
    21:36:02.0766 0x12d0  [ 3E29914113EC4B968BA5EB1F6D194A0A, C8D5572CA8D7624871188F0ACABC3AE60D4C5A4F6782D952B9038DE3BC28B39A ] C:\Windows\winsxs\x86_avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_1d37a43bbfe1dc9c\msvcp110.dll
    21:36:02.0766 0x12d0  C:\Windows\winsxs\x86_avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_1d37a43bbfe1dc9c\msvcp110.dll - ok
    21:36:02.0769 0x12d0  [ 9588CD77E04D259AE2315CDBCEDB2BAA, D16D8DED89D6A40D886F57B345BFA310EB585EE201601BB97B1FE3E99A416F63 ] C:\Program Files\AVAST Software\Avast\avastIP.dll
    21:36:02.0769 0x12d0  C:\Program Files\AVAST Software\Avast\avastIP.dll - ok
    21:36:02.0771 0x12d0  [ 48F0E9F2729E59D90356A17B6FAE980B, B8F3D0116B8C00BDA6360B597D814F50D55477F40993C375C274F3FF5AA6F230 ] C:\Program Files\AVAST Software\Avast\aswCommChannel.dll
    21:36:02.0771 0x12d0  C:\Program Files\AVAST Software\Avast\aswCommChannel.dll - ok
    21:36:02.0774 0x12d0  [ A90DC9ABD65DB1A8902F361103029952, 26798758976CE53251AC342B966BE0363AE1794BD965C452F5DEBC33E18969F0 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
    21:36:02.0774 0x12d0  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
    21:36:02.0776 0x12d0  [ CFF35B879D1618D42C86644C717BA947, 1837275202628D3320867A3BF8CFDA15491730C4B74215F7C0D7E140BF01AC3C ] C:\Windows\SysWOW64\winnsi.dll
    21:36:02.0776 0x12d0  C:\Windows\SysWOW64\winnsi.dll - ok
    21:36:02.0778 0x12d0  [ CA9F7888B524D8100B977C81F44C3234, 57F3353F89724147D8AC8B69B12C1303DF26978309776F5F8CCF074526A915D3 ] C:\Windows\SysWOW64\winhttp.dll
    21:36:02.0778 0x12d0  C:\Windows\SysWOW64\winhttp.dll - ok
    21:36:02.0781 0x12d0  [ FB19FC5951A88F3C523E35C2C98D23C0, FF0DB8BF0C68DA0D09272E8181D2B5409C8850BB2F31AEA3AC4CD14C5A420A59 ] C:\Windows\SysWOW64\webio.dll
    21:36:02.0781 0x12d0  C:\Windows\SysWOW64\webio.dll - ok
    21:36:02.0783 0x12d0  [ 771CDBC3D62437D6DB070820BB1EDCCF, 4A894C1ED6AC16B2BD85A964ABE2BE952F8DE2C3D2F8BBBE3D40918D2CD64A7A ] C:\Windows\SysWOW64\wininet.dll
    21:36:02.0783 0x12d0  C:\Windows\SysWOW64\wininet.dll - ok
    21:36:02.0786 0x12d0  [ 6951562DC4625EEFC6EACD52AD165866, 44A0B3EA0232D613A5B4115492DF2A7CEF25B35300E6A3E3E50C9544C5D1049E ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
    21:36:02.0786 0x12d0  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
    21:36:02.0788 0x12d0  [ 589CBC4989F750E1DA35625AB481CF43, B93E1B8C3775F9C995FD5451C685A06DEFD24AE1DF0DD99D19D5E4B9AC0010F9 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
    21:36:02.0788 0x12d0  C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
    21:36:02.0791 0x12d0  [ 8CC3C111D653E96F3EA1590891491D71, 1D326D7D116D76876EE2B14A5BFB7B4328E21DB9B5AAAB9CB67F8EFB93924230 ] C:\Windows\SysWOW64\shlwapi.dll
    21:36:02.0791 0x12d0  C:\Windows\SysWOW64\shlwapi.dll - ok
    21:36:02.0793 0x12d0  [ 2E33DFD10F28F86C3FC40EE123CC3904, 57C65671A04EFCA437A69E8E97B2FCA17897EE4608C7DB69F77D44FBD3490B50 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
    21:36:02.0793 0x12d0  C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
    21:36:02.0796 0x12d0  [ 3BE0D923AA45A4DBE091C2D84F0B4FE7, 603EEC55D6F646150FC3F0F2C939CFE434C02FC7A7AB23B1FEC8B5C77E4C8381 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
    21:36:02.0796 0x12d0  C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
    21:36:02.0798 0x12d0  [ 9EAAB4305536829D6B7D9C3A47E92861, 803AAA890148F818B9E1390E2B0FAAA48050A300474F932D56DF11E1A6D0D9AD ] C:\Windows\SysWOW64\iertutil.dll
    21:36:02.0798 0x12d0  C:\Windows\SysWOW64\iertutil.dll - ok
    21:36:02.0801 0x12d0  [ 6A13B4F3B3F575F1E24B877B9359AABA, 676AD5F8F709D4A9DCE9938D82DEEE329C9A385A6969C169B3DF37AA75F1E4C7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
    21:36:02.0801 0x12d0  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
    21:36:02.0804 0x12d0  [ D15618A0FF8DBC2C5BF3726BACC75A0B, ADD81EA1D208907D67802F0E96EC0327BA89021F870BA22B9C7E3A19013A6AE7 ] C:\Windows\SysWOW64\userenv.dll
    21:36:02.0804 0x12d0  C:\Windows\SysWOW64\userenv.dll - ok
    21:36:02.0806 0x12d0  [ B40420876B9288E0A1C8CCA8A84E5DC9, 0D3C73B45BC708D7B1E26DFB6D4F64031A998548FEA0FB5CE198ED716F7DC9A0 ] C:\Windows\SysWOW64\dnsapi.dll
    21:36:02.0806 0x12d0  C:\Windows\SysWOW64\dnsapi.dll - ok
    21:36:02.0808 0x12d0  [ C733D233B623B7FFCE5031E4B756EE26, 33CC8B140B0E4A9B702E3468BE2646AEE4273F20C6EA5BAC6C3D8FC8EDEF0881 ] C:\Windows\SysWOW64\profapi.dll
    21:36:02.0808 0x12d0  C:\Windows\SysWOW64\profapi.dll - ok
    21:36:02.0811 0x12d0  [ A8BB45F9ECAD993461E0FEF8E2A99152, ACB756EA54E71F124D928829666B5B439785593877FF7C0C76ADCF954F4E6C94 ] C:\Windows\SysWOW64\Wldap32.dll
    21:36:02.0811 0x12d0  C:\Windows\SysWOW64\Wldap32.dll - ok
    21:36:02.0813 0x12d0  [ 5FE90D598E29EBDA946192C84149D80F, 0DFBC76C7E3D667FA1E0A294C64AE0A4E30EA36C6A6938976D3B3C60DCFECFD5 ] C:\Program Files\AVAST Software\Avast\aswEngLdr.dll
    21:36:02.0813 0x12d0  C:\Program Files\AVAST Software\Avast\aswEngLdr.dll - ok
    21:36:02.0816 0x12d0  [ A6F09E5669D9A19035F6D942CAA15882, 68C8AF0CC1923E3A7245392F2480EE665D265DF300A609D2540BF7C6D9C1A1BE ] C:\Windows\SysWOW64\imm32.dll
    21:36:02.0816 0x12d0  C:\Windows\SysWOW64\imm32.dll - ok
    21:36:02.0818 0x12d0  [ C9618BC9B2B0FD7C1138D8774795A79B, 0AC170669C2626519FA7A745C56BFBA6B83B8537488F5B9EB7BA72448E5E7A43 ] C:\Windows\SysWOW64\msctf.dll
    21:36:02.0818 0x12d0  C:\Windows\SysWOW64\msctf.dll - ok
    21:36:02.0820 0x12d0  [ 863F793D15B4026B1A5FDECA873D4D84, AF7ABD95BB5467551562F129F03C7AC9D52A021F7E547609F40A80E66932C942 ] C:\Windows\SysWOW64\apphelp.dll
    21:36:02.0820 0x12d0  C:\Windows\SysWOW64\apphelp.dll - ok
    21:36:02.0823 0x12d0  [ EDFB8A128D0C686415223E38C0291C8F, 8CEE7E64082F492ACCACB64B025E80EF7F91F35259A71E5B7BAC1D8EAA33C5FB ] C:\Program Files\AVAST Software\Avast\avBugReport.exe
    21:36:02.0823 0x12d0  C:\Program Files\AVAST Software\Avast\avBugReport.exe - ok
    21:36:02.0826 0x12d0  [ 5C5E3AFD499E5146FEF1DA5EF8A23205, 9A26FFAFFB26FA6549C6DA75F76238A903CA723F9DAD356FBA8D91067FE312FD ] C:\Program Files\AVAST Software\Avast\dbghelp.dll
    21:36:02.0826 0x12d0  C:\Program Files\AVAST Software\Avast\dbghelp.dll - ok
    21:36:02.0828 0x12d0  [ 2D07B70AB3FDB7F108937ACB79BE81AB, 0E038D696BA24692666625CA1AB790248AB41EBB1EDA4C9ED9592029C1124FD9 ] C:\Program Files\AVAST Software\Avast\1033\Base.dll
    21:36:02.0828 0x12d0  C:\Program Files\AVAST Software\Avast\1033\Base.dll - ok
    21:36:02.0831 0x12d0  [ BF95EA5809E3BBF55370F7CB309FEBD0, 62ADBA6E1A7DDDEFA971580161F30896DFFC27EB4EB82E3CC72062D57DA66500 ] C:\Windows\System32\conhost.exe
    21:36:02.0831 0x12d0  C:\Windows\System32\conhost.exe - ok
    21:36:02.0833 0x12d0  [ 965697444067214C7A3174F6F716843D, 011996D990B9006EB9668309DDDB27DBCB7A20DA1315CE56DA717AD3EFADAA31 ] C:\Program Files\AVAST Software\Avast\ssleay32.dll
    21:36:02.0833 0x12d0  C:\Program Files\AVAST Software\Avast\ssleay32.dll - ok
    21:36:02.0836 0x12d0  [ 93EEB7AA39EBDB13049C81B16F8E54A8, 3A3F29A4342B8BB4998D118231EA44BEFB836C481012F961787E9CB47D851D48 ] C:\Program Files\AVAST Software\Avast\libeay32.dll
    21:36:02.0836 0x12d0  C:\Program Files\AVAST Software\Avast\libeay32.dll - ok
    21:36:02.0838 0x12d0  [ 2FCA0D2C59A855C54BAFA22AA329DF0F, ED9D26F539065D62FCCEDEEC8E509B30F4D15F8DA586C1F657ACEFE9DABAACD0 ] C:\Windows\SysWOW64\netapi32.dll
    21:36:02.0838 0x12d0  C:\Windows\SysWOW64\netapi32.dll - ok
    21:36:02.0841 0x12d0  [ E9D88493FBDB36D4B65C6F2F7F122C95, 226B05B57C1F509A48C7EC22B71E60202AC34995ECA50075EE16B87EAC366BF5 ] C:\Windows\SysWOW64\shell32.dll
    21:36:02.0841 0x12d0  C:\Windows\SysWOW64\shell32.dll - ok
    21:36:02.0843 0x12d0  [ 7321F18D1F820612ED0E9F2D4B578A7E, 612BD7DE1DFBD100BD6ACB37A38565D88C39842D990D296B9B8E1FB75C3A94E7 ] C:\Windows\SysWOW64\cryptsp.dll
    21:36:02.0843 0x12d0  C:\Windows\SysWOW64\cryptsp.dll - ok
    21:36:02.0846 0x12d0  [ 20B3934DB73EABA2B49B7177873CB81F, 492EAC5C51472B43DE11825358AEC4B9E3A081DACFD7513C696D6FE40F302EE5 ] C:\Windows\SysWOW64\netutils.dll
    21:36:02.0846 0x12d0  C:\Windows\SysWOW64\netutils.dll - ok
    21:36:02.0848 0x12d0  [ 5CCDCD40E732D54E0F7451AC66AC1C87, 66F4DA105BD72E41250CD59E2B3CD931B47AC9FDB6C784B9E33C5EE1AC29841F ] C:\Windows\SysWOW64\srvcli.dll
    21:36:02.0848 0x12d0  C:\Windows\SysWOW64\srvcli.dll - ok
    21:36:02.0850 0x12d0  [ E5A4A1326A02F8E7B59E6C3270CE7202, DCB76016F9AC47E631540874DA208A089F9D529DA9628705A2869B954526BFE0 ] C:\Windows\SysWOW64\wkscli.dll
    21:36:02.0851 0x12d0  C:\Windows\SysWOW64\wkscli.dll - ok
    21:36:02.0853 0x12d0  [ ED8EC63F7522DF4852147C84EC62C36A, 75633011CD28DCBD4834211A9D415F17DE15BFCD80FB9FF6CE25CBBD4E9899AF ] C:\Windows\SysWOW64\rsaenh.dll
    21:36:02.0853 0x12d0  C:\Windows\SysWOW64\rsaenh.dll - ok
    21:36:02.0855 0x12d0  [ 9BC8610C32C96A2983A65DC21CAFA921, 2A4195F663C9D55939E3D8FEAA208090FDB0B8801A60164A7325B53104797CBC ] C:\Windows\System32\UXInit.dll
    21:36:02.0855 0x12d0  C:\Windows\System32\UXInit.dll - ok
    21:36:02.0858 0x12d0  [ 3D59457A85B965B8DF887EEC26E098A8, 926937A32E6CF57878C1AC3E244BAC618A925DB468820AA652C03BEE3DEFF708 ] C:\Windows\System32\atieclxx.exe
    21:36:02.0858 0x12d0  C:\Windows\System32\atieclxx.exe - ok
    21:36:02.0860 0x12d0  [ 0DE8D23D2B9A84D24737A447D33F66B4, 29CAF114737A0F063460797710112A558DFBB00C43D52C3C5F1F231738015B93 ] C:\Windows\System32\atiadlxx.dll
    21:36:02.0860 0x12d0  C:\Windows\System32\atiadlxx.dll - ok
    21:36:02.0863 0x12d0  [ CC7E17208F38F2DE473BE957F2ADFA13, 777250C5D3CFCCFA8217D5ABC4C3288D62A9AEC9EF8E4F9CE4BEFDE270E2B31F ] C:\Program Files\AVAST Software\Avast\ashServ.dll
    21:36:02.0863 0x12d0  C:\Program Files\AVAST Software\Avast\ashServ.dll - ok
    21:36:02.0865 0x12d0  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] C:\Windows\System32\shsvcs.dll
    21:36:02.0865 0x12d0  C:\Windows\System32\shsvcs.dll - ok
    21:36:02.0868 0x12d0  [ 839F96DBAAFD3353E0B248A5E0BD2A51, 11DA5AD3EA5FF4766C12B99FB520B3CBE08581ECAF1A2FD1DC5AC835CA78FAC2 ] C:\Windows\SysWOW64\rasapi32.dll
    21:36:02.0868 0x12d0  C:\Windows\SysWOW64\rasapi32.dll - ok
    21:36:02.0870 0x12d0  [ E8863D1224EB7C985E842347C804CB63, 7F6A606AF781900BB1B4522691C553A39EC61D86FCF750C72DCAC3A99C78AD11 ] C:\Program Files\AVAST Software\Avast\aswProperty.dll
    21:36:02.0870 0x12d0  C:\Program Files\AVAST Software\Avast\aswProperty.dll - ok
    21:36:02.0873 0x12d0  [ FFA7172354B9256DBB2CDD75F16F33FE, 85B2F014C67C2E52540F17D561793C6633C9E98F12639CCD3854EB1EC34DD035 ] C:\Windows\SysWOW64\rasman.dll
    21:36:02.0873 0x12d0  C:\Windows\SysWOW64\rasman.dll - ok
    21:36:02.0875 0x12d0  [ EDF6A8A0DE464B5C19546A5903D21B35, CBCD70560562AC4F8EC2A65493C0F8FC07946E17CF97ACC5BA09C3A66C7C05A6 ] C:\Program Files\AVAST Software\Avast\ashTask.dll
    21:36:02.0875 0x12d0  C:\Program Files\AVAST Software\Avast\ashTask.dll - ok
    21:36:02.0878 0x12d0  [ 170EDEA4E43FBD4D5943F2800398FF69, DE8CB93175E7745F39E499995E3CAD8463B80E2B0392EC204FA43340A9A7AF5E ] C:\Program Files\AVAST Software\Avast\aswAux.dll
    21:36:02.0878 0x12d0  C:\Program Files\AVAST Software\Avast\aswAux.dll - ok
    21:36:02.0880 0x12d0  [ 8E8861FBABB0C69DA5B79B5C9630ABAB, 9ACB0FE7B2D555A2C16CAD9BAD038F7545D01E9285224EFD2CEE003DA6000D00 ] C:\Program Files\AVAST Software\Avast\aavm4h.dll
    21:36:02.0880 0x12d0  C:\Program Files\AVAST Software\Avast\aavm4h.dll - ok
    21:36:02.0883 0x12d0  [ FBDD7781A51199D2CC7774B20F3C761B, BF2FD7F20D495BE36E768FCD7CBD0A43C6C5426791578299812BAC8B2B881163 ] C:\Program Files\AVAST Software\Avast\AavmRpch.dll
    21:36:02.0883 0x12d0  C:\Program Files\AVAST Software\Avast\AavmRpch.dll - ok
    21:36:02.0885 0x12d0  [ 945E54F23C72D37B8CD1987AF0DB63BF, C2B217C94DBCA0A31ED834B9D492B53B25B235DDD02B1D1200E76609D32772EA ] C:\Windows\System32\fveapi.dll
    21:36:02.0885 0x12d0  C:\Windows\System32\fveapi.dll - ok
    21:36:02.0888 0x12d0  [ 81BDCAFAE79F8D673FC911B6BA86937D, 771EEB22A9D760FCD7223C6F89F4A9B08ED6BA767CEF03C04033410E74AF5111 ] C:\Program Files\AVAST Software\Avast\aswLog.dll
    21:36:02.0888 0x12d0  C:\Program Files\AVAST Software\Avast\aswLog.dll - ok
    21:36:02.0890 0x12d0  [ 891ECFD08E2C538B7948CBC45106D697, 628D0D618FF3A70E9FBE3B2C7206C9365ED2297784A5F10FFA05BD2C56657013 ] C:\Windows\System32\fvecerts.dll
    21:36:02.0890 0x12d0  C:\Windows\System32\fvecerts.dll - ok
    21:36:02.0893 0x12d0  [ 694865362F0965779F92BCFE97712323, 825EB75E37AFE9B738869FB5D95020D4F44AD419C2F6C5A658F82A5242FDEF6C ] C:\Windows\System32\tbs.dll
    21:36:02.0893 0x12d0  C:\Windows\System32\tbs.dll - ok
    21:36:02.0895 0x12d0  [ F010CCBCE7962BA0A74E4F3849988A11, 72CF081E2BE43AD1F90BF3E8AF0F0A157FC5D1F0F0C8D92C4A0548A9EDAD8049 ] C:\Program Files\AVAST Software\Avast\aswSqLt.dll
    21:36:02.0895 0x12d0  C:\Program Files\AVAST Software\Avast\aswSqLt.dll - ok
    21:36:02.0898 0x12d0  [ 8269210DAF3B12BC8300631B28A2A442, EABEB792C2EA8D4A1A7B13281CF557C194D5667AE0BA2A2D5664908D8269113D ] C:\Windows\System32\wiarpc.dll
    21:36:02.0898 0x12d0  C:\Windows\System32\wiarpc.dll - ok
    21:36:02.0900 0x12d0  [ F61270BB94C7F077E2B04A89E20537FB, AB3517ED8478BF415B7909D6DDEB0F564A453314FCD014DC0F492C3906A029A9 ] C:\Program Files\AVAST Software\Avast\ashTaskEx.dll
    21:36:02.0900 0x12d0  C:\Program Files\AVAST Software\Avast\ashTaskEx.dll - ok
    21:36:02.0903 0x12d0  [ 2591C207FDDB59F76867FB9757895820, D9609BAA703D2BAA87F3E46757DFBA332CB077104B923B83ED564852AB120C99 ] C:\Program Files\AVAST Software\Avast\aswstrm.dll
    21:36:02.0903 0x12d0  C:\Program Files\AVAST Software\Avast\aswstrm.dll - ok
    21:36:02.0905 0x12d0  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] C:\Windows\System32\schedsvc.dll
    21:36:02.0905 0x12d0  C:\Windows\System32\schedsvc.dll - ok
    21:36:02.0908 0x12d0  [ 5997D769CDB108390DCFAEBF442BF816, 0E25CA984C0EEB629184423FAA9BC6D4356DF9A93F281E06DC83B4AC638AEC4A ] C:\Windows\SysWOW64\RpcRtRemote.dll
    21:36:02.0908 0x12d0  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
    21:36:02.0910 0x12d0  [ BC414631876B2F28B8DAB08E849C12C5, 5973654AA3E90E6B699B0A43F645B893D95BAA803129B6967D746C8239AB26E3 ] C:\Windows\System32\ktmw32.dll
    21:36:02.0910 0x12d0  C:\Windows\System32\ktmw32.dll - ok
    21:36:02.0913 0x12d0  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7, 4BC5A1279885EEFBEB27333AF719622A5FCDD9606697692C1978E434CE264D80 ] C:\Windows\System32\taskcomp.dll
    21:36:02.0913 0x12d0  C:\Windows\System32\taskcomp.dll - ok
    21:36:02.0915 0x12d0  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] C:\Windows\System32\drivers\http.sys
    21:36:02.0915 0x12d0  C:\Windows\System32\drivers\http.sys - ok
    21:36:02.0918 0x12d0  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] C:\Windows\System32\spoolsv.exe
    21:36:02.0918 0x12d0  C:\Windows\System32\spoolsv.exe - ok
    21:36:02.0920 0x12d0  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] C:\Windows\System32\BFE.DLL
    21:36:02.0920 0x12d0  C:\Windows\System32\BFE.DLL - ok
    21:36:02.0923 0x12d0  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] C:\Windows\System32\drivers\bowser.sys
    21:36:02.0923 0x12d0  C:\Windows\System32\drivers\bowser.sys - ok
    21:36:02.0925 0x12d0  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] C:\Windows\System32\drivers\mpsdrv.sys
    21:36:02.0925 0x12d0  C:\Windows\System32\drivers\mpsdrv.sys - ok
    21:36:02.0927 0x12d0  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] C:\Windows\System32\drivers\mrxsmb.sys
    21:36:02.0927 0x12d0  C:\Windows\System32\drivers\mrxsmb.sys - ok
    21:36:02.0930 0x12d0  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] C:\Windows\System32\drivers\mrxsmb10.sys
    21:36:02.0930 0x12d0  C:\Windows\System32\drivers\mrxsmb10.sys - ok
    21:36:02.0932 0x12d0  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] C:\Windows\System32\drivers\mrxsmb20.sys
    21:36:02.0932 0x12d0  C:\Windows\System32\drivers\mrxsmb20.sys - ok
    21:36:02.0935 0x12d0  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] C:\Windows\System32\wkssvc.dll
    21:36:02.0935 0x12d0  C:\Windows\System32\wkssvc.dll - ok
    21:36:02.0937 0x12d0  [ C67F8A962B2534224D5908D16D2AD3CE, CAC1821F5E867285638AEE7AE33CE574BCCF16277AC5AD805650B48F7759B4B4 ] C:\Windows\System32\wfapigp.dll
    21:36:02.0937 0x12d0  C:\Windows\System32\wfapigp.dll - ok
    21:36:02.0940 0x12d0  [ E2769E2699AF88CA3C57289A8A32ED19, B89142CDF2DC4B35E15791B83092E4D6173E11D6A0D98149D7528AD9236972E1 ] C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe
    21:36:02.0940 0x12d0  C:\Program Files (x86)\Common Files\Acronis\Acronis Disk Director\oss_reinstall_svc.exe - ok
    21:36:02.0942 0x12d0  [ 5AA945234E9D4CCE4F715276B9AA712C, 65165BD131056816F009D987FC78AC86FFE0C3C38A27E73F873586B7FF4D59CF ] C:\Windows\System32\imageres.dll
    21:36:02.0942 0x12d0  C:\Windows\System32\imageres.dll - ok
    21:36:02.0944 0x12d0  [ 1834B31C749B86DAC233BBBA1C03BC48, 27FCA9196842C0BB53CCAD895870A0EB10D2F8ED67E5486A4437067BD4BC4448 ] C:\Windows\System32\mscms.dll
    21:36:02.0944 0x12d0  C:\Windows\System32\mscms.dll - ok
    21:36:02.0947 0x12d0  [ B9A8CBCFCD3EC9D2EA4740AF347BF108, 97FA304E3880BC863D999F441AE47CB8ADF00D2DEC2A52ACD8FBD02CC096786A ] C:\Windows\SysWOW64\mpr.dll
    21:36:02.0947 0x12d0  C:\Windows\SysWOW64\mpr.dll - ok
    21:36:02.0949 0x12d0  [ F18281F8039883C8E64E60BC12EB8748, 314039F6C43BD1EF02ABC55019487DE8A0652A8F0A1F388D75474A5F5D3F226D ] C:\Windows\SysWOW64\snapapi.dll
    21:36:02.0949 0x12d0  C:\Windows\SysWOW64\snapapi.dll - ok
    21:36:02.0951 0x12d0  [ D1DE1EAFDE97BE41CF6585027FF3E732, 76F17D4DF440D6734DC8157092D94EB18C2A73A0A49BEEA289E7B3EDE30E86A2 ] C:\Windows\SysWOW64\comdlg32.dll
    21:36:02.0951 0x12d0  C:\Windows\SysWOW64\comdlg32.dll - ok
    21:36:02.0954 0x12d0  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] C:\Windows\System32\pcasvc.dll
    21:36:02.0954 0x12d0  C:\Windows\System32\pcasvc.dll - ok
    21:36:02.0956 0x12d0  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] C:\Windows\System32\snmptrap.exe
    21:36:02.0956 0x12d0  C:\Windows\System32\snmptrap.exe - ok
    21:36:02.0959 0x12d0  [ 10EAB90C1AE8271B5FE5A8930987EE5C, 53E72964AA75526B161F859A509CB046809AE47C65DC998F0E49AC8AED9066EA ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
    21:36:02.0959 0x12d0  C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
    21:36:02.0962 0x12d0  [ 352B3DC62A0D259A82A052238425C872, 393B24E0D6007C74AEE2FB2EE2C18623D37DF64E279B6767952DCFEE0EACBB10 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
    21:36:02.0962 0x12d0  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
    21:36:02.0964 0x12d0  [ 4004299B7AF4CBFF6540F1798899A11F, 5DD3AE149B7228A769F2FE95355795AC98ACD8CDFB78954A423A357F717203C3 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
    21:36:02.0964 0x12d0  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
    21:36:02.0967 0x12d0  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] C:\Windows\System32\provsvc.dll
    21:36:02.0967 0x12d0  C:\Windows\System32\provsvc.dll - ok
    21:36:02.0969 0x12d0  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] C:\Windows\System32\sstpsvc.dll
    21:36:02.0969 0x12d0  C:\Windows\System32\sstpsvc.dll - ok
    21:36:02.0971 0x12d0  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] C:\Windows\System32\drivers\fastfat.sys
    21:36:02.0971 0x12d0  C:\Windows\System32\drivers\fastfat.sys - ok
    21:36:02.0974 0x12d0  [ 8258362DDB18B644A82D8B5061AD9426, 87CA586B2B1B0089BFF6A259A0743D184AE383B3B12C4BC5986D72ADFFBE9EDA ] C:\Windows\SysWOW64\wscisvif.dll
    21:36:02.0974 0x12d0  C:\Windows\SysWOW64\wscisvif.dll - ok
    21:36:02.0976 0x12d0  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    21:36:02.0976 0x12d0  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
    21:36:02.0978 0x12d0  [ A8CDF3768604FF95B54669E20053D569, 2DB85B86C839341F2A879A6D25F787D17EE665D425C1BAC3E1F82BAC61F89F94 ] C:\Windows\SysWOW64\wscapi.dll
    21:36:02.0978 0x12d0  C:\Windows\SysWOW64\wscapi.dll - ok
    21:36:02.0981 0x12d0  [ 68EAAEDF0365168B804E8728368FA946, 1FA25087E8B247B099B729F780DBF24F77FD34F58186A1C94329261CF3D18B8E ] C:\Windows\SysWOW64\wintrust.dll
    21:36:02.0981 0x12d0  C:\Windows\SysWOW64\wintrust.dll - ok
    21:36:02.0983 0x12d0  [ CDBE9690CF2B8409FACAD94FAC9479C9, 8E7FE1A1F3550C479FFD86A77BC9D10686D47F8727025BB891D8F4F0259354C8 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
    21:36:02.0983 0x12d0  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
    21:36:02.0986 0x12d0  [ 4FE5C6D40664AE07BE5105874357D2ED, 70DD05EE80B77EB2F781E0919885D1BBB1119EA1A8955935AF5AECD05E30F14A ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    21:36:02.0986 0x12d0  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
    21:36:02.0989 0x12d0  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC, 372AF797353F9335915CD06D4076BAB8410775DCAF2DAC0593197D7C41BBFFB2 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
    21:36:02.0989 0x12d0  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
    21:36:02.0992 0x12d0  [ C9564CF4976E7E96B4052737AA2492B4, C3AC989C8489A23BB96400B1856F5325FFC67E844F04651EA5D61BC20A991C6D ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
    21:36:02.0992 0x12d0  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
    21:36:02.0995 0x12d0  [ 68830DB22F858B7CE99AF9644C542E23, F91F7C4174A55E37D5C502FA398418422BBA3E8D2900F992A22B8C6E1780382B ] C:\Program Files\AVAST Software\Avast\defs\14070401\aswEngin.dll
    21:36:02.0995 0x12d0  C:\Program Files\AVAST Software\Avast\defs\14070401\aswEngin.dll - ok
    21:36:02.0997 0x12d0  [ 92DA9EDE07390B4352B29DD82079E398, 8140FF0CD2BB08CA92C0303B2439F4FCEFD59C7F4A772F1277B29FE0B77F5A67 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
    21:36:02.0997 0x12d0  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
    21:36:03.0000 0x12d0  [ 6D41F6AA35220E7A54543075B27E8F83, 3350373F3443954B4DABE39955FD9B3C7FC223B73CC1429793A920ED17FB8A06 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
    21:36:03.0000 0x12d0  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
    21:36:03.0003 0x12d0  [ EF8CD3C64EE9C08980D6D06CCCE46C68, 7DC061E0552BE776DC79662364DA1D90A4FF6D795002865DD1B1C3DEB77E4B98 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
    21:36:03.0003 0x12d0  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
    21:36:03.0006 0x12d0  [ E5584546A9CBA7D9B9CCC9F20FC603B3, 59AF46153FD9AE10D94C6D3C63005A82A35ED3EAFFE1D67E52F65D7520AFC00D ] C:\Program Files\AVAST Software\Avast\defs\14070401\aswCmnIS.dll
    21:36:03.0006 0x12d0  C:\Program Files\AVAST Software\Avast\defs\14070401\aswCmnIS.dll - ok
    21:36:03.0008 0x12d0  [ 638C7596B493F5F77DB9EF6BAD8FE46C, 98077E0E65D89D5DEBC02F12BA00D00B355D4EEA5FEC36E69D39312019E3DD1E ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
    21:36:03.0008 0x12d0  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
    21:36:03.0011 0x12d0  [ DB6BA64197E2C16916C32A16F379872B, F1700835E4797F7D46BDA9428A6911E98D0F4B105252D521BC113286C7FEC5E4 ] C:\Program Files\AVAST Software\Avast\defs\14070401\aswCmnOS.dll
    21:36:03.0011 0x12d0  C:\Program Files\AVAST Software\Avast\defs\14070401\aswCmnOS.dll - ok
    21:36:03.0013 0x12d0  [ 78865ABC5F5D13190F8B35BD9044714A, A16E0158129AE76AE459D9424D246C01ECECCC87A27C40D8DB0232330D2F5458 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
    21:36:03.0013 0x12d0  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
    21:36:03.0016 0x12d0  [ FF9831030678C7B6D70BAC00F68F8976, BFA9DA98F93910B8FE09EA06F917AB1F5435FCE9F786EABDF1970E19B2C63FDC ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
    21:36:03.0022 0x12d0  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
    21:36:03.0024 0x12d0  [ F7075ED9BDDEA0939A22EF992D6B196D, E938C72BFEAEB37D26B37868608DDA91BC470B9F54879E4E5E3A42706FF5649F ] C:\Program Files\AVAST Software\Avast\defs\14070401\aswCmnBS.dll
    21:36:03.0024 0x12d0  C:\Program Files\AVAST Software\Avast\defs\14070401\aswCmnBS.dll - ok
    21:36:03.0026 0x12d0  [ D5AEFAD57C08349A4393D987DF7C715D, C36A45BC2448DF30CD17BD2F8A17FC196FAFB685612CACCEB22DC7B58515C201 ] C:\Windows\SysWOW64\winmm.dll
    21:36:03.0026 0x12d0  C:\Windows\SysWOW64\winmm.dll - ok
    21:36:03.0029 0x12d0  [ 5A963C340DE1A01BA6E24945CE05D16A, 0CC79B72D03621D6FA4E7A8F3B10125A531C1D19098189671FBE3687E3E70E33 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
    21:36:03.0029 0x12d0  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
    21:36:03.0031 0x12d0  [ 0928382FD5D6F0A8B2625986A0E305DA, 565308AB8BAC1FBD86B6514A985E942F602191C943F56AA408A9B16FF0298071 ] C:\Program Files\AVAST Software\Avast\defs\14070401\aswScan.dll
    21:36:03.0031 0x12d0  C:\Program Files\AVAST Software\Avast\defs\14070401\aswScan.dll - ok
    21:36:03.0034 0x12d0  [ 56E6735F29BE7EA5512268A4E4E310FC, 8C5FA47DBFD2714E20FDBE650717BE467C103012D928C2FD65AC213F82B61A01 ] C:\Program Files\AVAST Software\Avast\defs\14070401\aswRep.dll
    21:36:03.0034 0x12d0  C:\Program Files\AVAST Software\Avast\defs\14070401\aswRep.dll - ok
    21:36:03.0037 0x12d0  [ 5E32E7C5542D95E04E8ABE8B3F676D11, E1B5958ABE040C581A3B580F26372C7AC58A610877BB0C1D33A03D7C754AF172 ] C:\Program Files\AVAST Software\Avast\defs\14070401\aswFiDb.dll
    21:36:03.0037 0x12d0  C:\Program Files\AVAST Software\Avast\defs\14070401\aswFiDb.dll - ok
    21:36:03.0039 0x12d0  [ F4BC62990E7E5C29799A895B80FC3177, 57772AB986BA00B3C2730184D94A76E932CA94000119D0E63407F3DF9867238A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
    21:36:03.0039 0x12d0  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
    21:36:03.0042 0x12d0  [ 149D74E1128A86DC9CFB2851FBEA11EB, 95E2FF3379DEE729089CF85140C4D4C202B7FEFE239024D48DFFD5CB1E7415BC ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll
    21:36:03.0042 0x12d0  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt46.dll - ok
    21:36:03.0045 0x12d0  [ E50072916D828F4D83BD37CE30C2AE7A, FDD0836FDFF63061810BE8A4CC52D4709D267DFE30F3026125C29C2709B96EED ] C:\Program Files\AVAST Software\Avast\defs\14070401\algo.dll
    21:36:03.0045 0x12d0  C:\Program Files\AVAST Software\Avast\defs\14070401\algo.dll - ok
    21:36:03.0047 0x12d0  [ F6FD367C9EAAEDF90CD7A7952AE0B336, 65DF0688F18EC3DEC27E725DC3A2F0D656F321832BDFA45253C0933620214AAF ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
    21:36:03.0047 0x12d0  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
    21:36:03.0051 0x12d0  [ 4327CF9A9D0864CA0FFC97FCDA97315A, 90C9B0120998719F8C8B084658C326E1A06BEE9E836A8BDBED17C0FD498DCCE1 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
    21:36:03.0051 0x12d0  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
    21:36:03.0053 0x12d0  [ 062373995EAE5F0EAC9EAA9192136BFB, 0392D5656BD677C4C5CB74C96E7B85B0867F2535A37950AEC7F5C4A1A70D19AE ] C:\Windows\SysWOW64\dnssd.dll
    21:36:03.0054 0x12d0  C:\Windows\SysWOW64\dnssd.dll - ok
    21:36:03.0056 0x12d0  [ 6A6B2EE4565A178035BE2A4FF6F2C968, E2E231F1C2E2CE19583483ACC53318651FA7CA2DE46BCB89B4CBF97CA0525122 ] C:\Windows\SysWOW64\wtsapi32.dll
    21:36:03.0056 0x12d0  C:\Windows\SysWOW64\wtsapi32.dll - ok
    21:36:03.0058 0x12d0  [ 3FD15B4611D9BDA3F8013548C0ECAECA, B47A8D9985D9B71EB870816A0AB2B6403D394CCBDF7DE5378D5721D58D68D28D ] C:\Windows\SysWOW64\ntmarta.dll
    21:36:03.0058 0x12d0  C:\Windows\SysWOW64\ntmarta.dll - ok
    21:36:03.0060 0x12d0  [ 340B0467E98A8C92697D73034DB4BCB7, 342572B566747A05DA5391CFC027A6703AECCE29C3D288428884D8641A35D0F5 ] C:\Windows\System32\drivers\aswHwid.sys
    21:36:03.0060 0x12d0  C:\Windows\System32\drivers\aswHwid.sys - ok
    21:36:03.0063 0x12d0  [ E94C583CDE2348950155F2AF2876F34D, D00C7E0D665E467B712C68A446CC5BE14FDA743A2301878B3CEB72CDD0A8B8E7 ] C:\Windows\SysWOW64\mswsock.dll
    21:36:03.0063 0x12d0  C:\Windows\SysWOW64\mswsock.dll - ok
    21:36:03.0066 0x12d0  [ 24665B221424FFD7B71F0D2C398F2F4F, DFA6264E489CF53B4CACDF0F06BDF2537EFDA252C6DE66EB5E2B9BFC7F17ECD7 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
    21:36:03.0066 0x12d0  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
    21:36:03.0068 0x12d0  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] C:\Program Files\Bonjour\mDNSResponder.exe
    21:36:03.0068 0x12d0  C:\Program Files\Bonjour\mDNSResponder.exe - ok
    21:36:03.0071 0x12d0  [ EE5C8E27C37B79CB54A2FCEEED2DC262, 0A5E200FD65A491756B951A4A0ED39B88B7B313E97C2BBF3C91AC4C290772BB7 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
    21:36:03.0071 0x12d0  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
    21:36:03.0074 0x12d0  [ 2E14406E05789F91C9282AE7CFCA3A07, BDB403FC7EDDF5B3F24F1E8232C6EEFE888C5D72A819567EEA73D0AF7D511095 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
    21:36:03.0074 0x12d0  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
    21:36:03.0076 0x12d0  [ A7DDDDE163F16AB49DF3DE9EEC715495, 00F83712F55C4B54F5B54595CDA2BCCDFCB72F0B31EED8274F87232106995EA6 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
    21:36:03.0076 0x12d0  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
    21:36:03.0079 0x12d0  [ 8BA9851E671E8B5E49E303748FFD530C, A2CBF71C3449BA71739E9E805D2EB9F9242AD9D839AF5B4C4F7ADC00C239FB38 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
    21:36:03.0079 0x12d0  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
    21:36:03.0082 0x12d0  [ 73862FF693168369A90F046E7F227B83, 938D71674C8856A0F7FE5A096F92D71977F5ABA62374287F49394F25B67713BA ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
    21:36:03.0082 0x12d0  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
    21:36:03.0084 0x12d0  [ C94CE65AE7701E9FDBA889045543E27C, E6D75322BE3076EB3AB4622C29A0765C05465BE355C9AA3A9DE7431F020BC176 ] C:\Windows\SysWOW64\secur32.dll
    21:36:03.0084 0x12d0  C:\Windows\SysWOW64\secur32.dll - ok
    21:36:03.0087 0x12d0  [ 6FBAED1D15BF7FE648CE0888F8DA034D, B593937DF1A00306816D19D4CBE8F253D6C24E22FF0AE1B88784CB7CC9AA6AB7 ] C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
    21:36:03.0087 0x12d0  C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe - ok
    21:36:03.0089 0x12d0  [ DF3CA8D16BDED6A54977B30E66864D33, 1D1A1AE540BA132F998D60D3622F0297B6E86AE399332C3B47462D7C0F560A36 ] C:\Program Files\Microsoft Office 15\ClientX64\msvcr100.dll
    21:36:03.0089 0x12d0  C:\Program Files\Microsoft Office 15\ClientX64\msvcr100.dll - ok
    21:36:03.0092 0x12d0  [ 4F096D96285E06CD51AEF7D2D3DE04DA, 5BB420FBE28315F2117376052BB8488CE84A3398DDA65005B8AE1F792017E9A8 ] C:\Program Files\Microsoft Office 15\ClientX64\msvcp100.dll
    21:36:03.0092 0x12d0  C:\Program Files\Microsoft Office 15\ClientX64\msvcp100.dll - ok
    21:36:03.0094 0x12d0  [ 0B7E85364CB878E2AD531DB7B601A9E5, F5AD3018427F1CD68450EE5CB55AA9572546322580E0FB1E7888702A291C2380 ] C:\Windows\SysWOW64\NapiNSP.dll
    21:36:03.0094 0x12d0  C:\Windows\SysWOW64\NapiNSP.dll - ok
    21:36:03.0097 0x12d0  [ 0BA65122FFA7E37564EE86422DBF7AE8, 3A37FC503D3228D021473AECA285427382518CC36C197E4C9912745BDF3AB757 ] C:\Windows\SysWOW64\nlaapi.dll
    21:36:03.0097 0x12d0  C:\Windows\SysWOW64\nlaapi.dll - ok
    21:36:03.0099 0x12d0  [ 5CF640EDDB1E40A5AB1BB743BCDEC610, 0313AA3F713C9F5B84DBB0B4DE78A96B173E9F7B4CF61C10FDC7DAE952DB04E5 ] C:\Windows\SysWOW64\pnrpnsp.dll
    21:36:03.0099 0x12d0  C:\Windows\SysWOW64\pnrpnsp.dll - ok
    21:36:03.0102 0x12d0  [ 9D4A1690AF93F233E15380398BEC7431, 8CC99491880DBC444651EB7D245EEE46FE77F4FA74FECFCD29E734AA21AF9D75 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
    21:36:03.0102 0x12d0  C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
    21:36:03.0104 0x12d0  [ 40947436A70E0034E41123DF5A0A7702, 5D40FD92DA5CA59C1BADB58AD509DB6A6D613F18660A9A270A53ECA85D34C3A9 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
    21:36:03.0104 0x12d0  C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
    21:36:03.0107 0x12d0  [ 5DF5D8CFD9B9573FA3B2C89D9061A240, 990EA273B640DF2D7E800C0CFF18550259C605A4951CD82CD9F1E7B6FF0C9533 ] C:\Windows\SysWOW64\winrnr.dll
    21:36:03.0107 0x12d0  C:\Windows\SysWOW64\winrnr.dll - ok
    21:36:03.0109 0x12d0  [ F0D0E883EBBDC7615DC9EDEA0FFB2817, 58F1395445018CB16ED4D3710443FB5B0E087043F6A69F7B10D72D0455958954 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
    21:36:03.0109 0x12d0  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
    21:36:03.0112 0x12d0  [ ED6EE83D61EBC683C2CD8E899EA6FEBE, F82592908D038C44D9F2E5C5B7BC663A2D370FC565F40420E1138A9E55F0E7EB ] C:\Windows\SysWOW64\rasadhlp.dll
    21:36:03.0112 0x12d0  C:\Windows\SysWOW64\rasadhlp.dll - ok
    21:36:03.0114 0x12d0  [ 73E8667A19FEEDD856DF2695E9E511D4, 68D66C36D1F293D10ADCC6A33C870F989A29743537592CF172F02E794BEAFD1C ] C:\Windows\SysWOW64\wship6.dll
    21:36:03.0114 0x12d0  C:\Windows\SysWOW64\wship6.dll - ok
    21:36:03.0117 0x12d0  [ 1EBE9524683C7C4EED8B8BC93FB6FBCC, 78AF098E270EDE62466557091F14B2D37BDAB488F02E7CC769251FD17C02BA4A ] C:\Windows\SysWOW64\fltLib.dll
    21:36:03.0117 0x12d0  C:\Windows\SysWOW64\fltLib.dll - ok
    21:36:03.0119 0x12d0  [ 418E881201583A3039D81F43E39E6C78, C96AAC161E09BE12815A4E931E65F66DB1A456C03253EF1111AE66F44B1515FF ] C:\Windows\SysWOW64\winsta.dll
    21:36:03.0119 0x12d0  C:\Windows\SysWOW64\winsta.dll - ok
    21:36:03.0121 0x12d0  [ 4E85D16A00156143D05E646E56BDAEA0, 10CB0690C2B0E4518F7FB1B444F74B6E3CA9BFD8035218F7F4CBB7CA466A696A ] C:\Program Files\AVAST Software\Avast\AhResMai.dll
    21:36:03.0121 0x12d0  C:\Program Files\AVAST Software\Avast\AhResMai.dll - ok
    21:36:03.0124 0x12d0  [ E50F145CD3C703ECCE8A9C060F7DC90C, C57DABBD7F81E927532F48875E75461771F31C06E6A8B16EE3A416E2E245C52D ] C:\Program Files\AVAST Software\Avast\AhResStd.dll
    21:36:03.0124 0x12d0  C:\Program Files\AVAST Software\Avast\AhResStd.dll - ok
    21:36:03.0126 0x12d0  [ 24B59279162176FDBBA1E8E6A4CAA3EB, D3503D3D9FF23D77E5668BDD0B4486827E2541145E96F7D40E8F9733575EF1FE ] C:\Program Files\AVAST Software\Avast\AhResWS.dll
    21:36:03.0126 0x12d0  C:\Program Files\AVAST Software\Avast\AhResWS.dll - ok
    21:36:03.0129 0x12d0  [ 452CA1047AB9423AA2CA2063E7EDF91C, A0C6AADF70EE5C52CCF1FCDDEA9360A935A2129A9E3D6449D6F54EE76F1002E4 ] C:\Program Files\AVAST Software\Avast\AhResWS2.dll
    21:36:03.0129 0x12d0  C:\Program Files\AVAST Software\Avast\AhResWS2.dll - ok
    21:36:03.0131 0x12d0  [ 2CA87A494BF9D76905503DF0609E967C, FAA9E41C699FCB248A62CB61B7A3DDFD2AB7DD3DEFBFD52CA145E28CF9223B73 ] C:\Program Files\AVAST Software\Avast\ashMaiSv.dll
    21:36:03.0131 0x12d0  C:\Program Files\AVAST Software\Avast\ashMaiSv.dll - ok
    21:36:03.0134 0x12d0  [ 90EB173A54E28CA09B89D4AFDEBC2F1A, 3657D6E7BB40DAB75C2F06AA13C1EFB87EC1B9777792D821987162F30A1AA6AB ] C:\Program Files\AVAST Software\Avast\defs\14070401\exts.dll
    21:36:03.0134 0x12d0  C:\Program Files\AVAST Software\Avast\defs\14070401\exts.dll - ok
    21:36:03.0136 0x12d0  [ 340E602487C9ED0BFD7FBAB926B2E231, 6F9B6B2DC76B213018EFAD481CE0D37D21DA0B82A656A367079831FFC800B0AF ] C:\Program Files\AVAST Software\Avast\aswstreamfilter.dll
    21:36:03.0136 0x12d0  C:\Program Files\AVAST Software\Avast\aswstreamfilter.dll - ok
    21:36:03.0139 0x12d0  [ A352113489E1330E1670BF052BC7620A, 4D09327E6E118F4BF632C1BF772291CDADA16F672BF426D506C11955810EA96D ] C:\Program Files\AVAST Software\Avast\defs\14070401\aswAR.dll
    21:36:03.0139 0x12d0  C:\Program Files\AVAST Software\Avast\defs\14070401\aswAR.dll - ok
    21:36:03.0141 0x12d0  [ 81D5C2D6232FCDBC7916AF659B12C8B7, F70F355E75AE0F1674BC31F743BD6D6B11DF90D37B5F6E19032ADCAD88FF6AE5 ] C:\Program Files\AVAST Software\Avast\defs\14070401\aswRawFS.dll
    21:36:03.0141 0x12d0  C:\Program Files\AVAST Software\Avast\defs\14070401\aswRawFS.dll - ok
    21:36:03.0144 0x12d0  [ F0189C731CBF3AA23DC2144CC8C64759, 6662E3F946C513A19E8A24D34588D7F76F2E11812F7B38553F9F4969FDC2004A ] C:\Program Files\Microsoft Office 15\ClientX64\c2rui.dll
    21:36:03.0144 0x12d0  C:\Program Files\Microsoft Office 15\ClientX64\c2rui.dll - ok
    21:36:03.0146 0x12d0  [ A8EDB86FC2A4D6D1285E4C70384AC35A, 61B8955CE0A2AA9D0719920B30216717B349B6FBE11C697C31CFA84F859CC1AE ] C:\Windows\System32\dllhost.exe
    21:36:03.0146 0x12d0  C:\Windows\System32\dllhost.exe - ok
    21:36:03.0149 0x12d0  [ 9028D1621C43DF8DFBD1C76860412A11, A1D48D9B33180BDE50D2FA9BB07E9520B7B7788C39B3AABB4A06AE4B1AACA755 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll
    21:36:03.0149 0x12d0  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll - ok
    21:36:03.0152 0x12d0  [ A0A2C1D812C231C9BFE119FDC68E341B, F94446594EE17505956A715DFB28B51D09F00A7A65E56950661B889A57DE8FA8 ] C:\Windows\System32\IDStore.dll
    21:36:03.0152 0x12d0  C:\Windows\System32\IDStore.dll - ok
    21:36:03.0154 0x12d0  [ 1A83FACA2135AF076E8EA73A30B3B26C, AB6CE8022785715DB294186F9456B52F1C5BF197BC9F9467203BDE029DB99BDD ] C:\Windows\System32\KBDUK.DLL
    21:36:03.0154 0x12d0  C:\Windows\System32\KBDUK.DLL - ok
    21:36:03.0157 0x12d0  [ 639774C9ACD063F028F6084ABF5593AD, 9DFD80610CBBC9188F6C6BC85C87016B0AE42254FC289C2B578E85282BDD9C23 ] C:\Windows\System32\taskhost.exe
    21:36:03.0157 0x12d0  C:\Windows\System32\taskhost.exe - ok
    21:36:03.0159 0x12d0  [ 28AD5E311996A34025CFB07E131058DD, 89C8B29105DE5917A33A7682C8A62CB543609F1227A4890D7130646A0F54D946 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
    21:36:03.0159 0x12d0  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
    21:36:03.0162 0x12d0  [ 23566F9723771108D2E6CD768AC27407, FAC0293DD1061B151E779BF4B245E6652C951FEDEBC602A166156DFBD38B5D67 ] C:\Windows\System32\AtBroker.exe
    21:36:03.0162 0x12d0  C:\Windows\System32\AtBroker.exe - ok
    21:36:03.0164 0x12d0  [ 9BB99503D6A4DD62569EDE9E5E2672A5, 6F4EA5BC50B1F929735246485263078BEF1B3BEB33F78CB1F483F13AA226C27E ] C:\Windows\System32\HotStartUserAgent.dll
    21:36:03.0164 0x12d0  C:\Windows\System32\HotStartUserAgent.dll - ok
    21:36:03.0166 0x12d0  [ 65EA57712340C09B1B0C427B4848AE05, 5FDCF73191BFF9DBB03886755FFCF0BC15849F0E216884A5A8B9BB375FA7C1A5 ] C:\Windows\System32\taskeng.exe
    21:36:03.0166 0x12d0  C:\Windows\System32\taskeng.exe - ok
    21:36:03.0169 0x12d0  [ 5F639198C4137075DA50E61C23963C11, 3D03B3BF62B3469069AD6BE2AAEE152CB6722D36C001B8197FEBC2F3EB9ADBE0 ] C:\Windows\System32\drprov.dll
    21:36:03.0169 0x12d0  C:\Windows\System32\drprov.dll - ok
    21:36:03.0171 0x12d0  [ 6CEF7856A3EFAC59470F6208F0F585CE, 0F7A80DB821FDE6580E9481B6DA44844F717DDB4983B0E3D562BE43726153951 ] C:\Windows\System32\mpr.dll
    21:36:03.0171 0x12d0  C:\Windows\System32\mpr.dll - ok
    21:36:03.0174 0x12d0  [ BC566D17914B07ABAAB3A5A385CC3300, DCE0A1D26312AA6441FB7122C6EED980AE350D58B2B4B166CB62F983306268E9 ] C:\Windows\System32\ntlanman.dll
    21:36:03.0174 0x12d0  C:\Windows\System32\ntlanman.dll - ok
    21:36:03.0176 0x12d0  [ B32AB94A432289AC2DF77A3DCAD32EED, B1021C78F940E6FA7A8992B2733B593B89DA57325A0A0D13D2767F193A78D90F ] C:\Windows\System32\davclnt.dll
    21:36:03.0176 0x12d0  C:\Windows\System32\davclnt.dll - ok
    21:36:03.0179 0x12d0  [ 45B24A357C801CE62052FE0CDC8BD4D2, 00602E41B78473825253F6B2557A5C43FBDDCCF713D806929AE7C039FF8F185C ] C:\Windows\System32\davhlpr.dll
    21:36:03.0179 0x12d0  C:\Windows\System32\davhlpr.dll - ok
    21:36:03.0181 0x12d0  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA, 8A6ACEFAB95E5275CBFBE6CCB5A6C3A6A471260B279B9063E86B9C7765E18656 ] C:\Windows\System32\MsCtfMonitor.dll
    21:36:03.0181 0x12d0  C:\Windows\System32\MsCtfMonitor.dll - ok
    21:36:03.0183 0x12d0  [ F09A9A1AD21FE618C4C8B0A0D830C886, 29831DDAB2AB105358FBC067CDF96428220B6743CD6019F6FE74BAC7AF325E7E ] C:\Windows\System32\msutb.dll
    21:36:03.0183 0x12d0  C:\Windows\System32\msutb.dll - ok
    21:36:03.0186 0x12d0  [ 805A52C5AE26C28E88FDD9BCCFE6F312, 4FF28D3658C31722B7DD036DED9D544B14841C0E0B94D31A8EC5AB92128DA020 ] C:\Windows\System32\TSChannel.dll
    21:36:03.0186 0x12d0  C:\Windows\System32\TSChannel.dll - ok
    21:36:03.0188 0x12d0  [ 94EEAC26F57811BD1AEFC164412F7FCE, 7390BCD7709D48DE75D7D6E06AA7356D1C58EE63F3CC2E07ABCD2E2FF6CC81CF ] C:\Windows\System32\PlaySndSrv.dll
    21:36:03.0188 0x12d0  C:\Windows\System32\PlaySndSrv.dll - ok
    21:36:03.0191 0x12d0  [ F5CEF064C7E6D95DA86B9D064A56A969, F118CD4364690F37A07AE458E043E8CFBA98F332DC9E7228C83409CF26F6EF6D ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
    21:36:03.0191 0x12d0  C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
    21:36:03.0192 0x12d0  [ 522B0466ED967A0762E9AF5B37D8F40A, B14C62D059BC7CF430E1B0F6E18E31EFD1959EFB3025A2B0EBB11751F38DD6D4 ] C:\Windows\System32\esent.dll
    21:36:03.0192 0x12d0  C:\Windows\System32\esent.dll - ok
    21:36:03.0195 0x12d0  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    21:36:03.0195 0x12d0  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
    21:36:03.0197 0x12d0  [ 77E585EDD4C7EB7AB2ACC36BC1DC32A5, 57BF4D683CA66AAC2A4B7FEDF9F7FB254860BE77E1F4A6DD2C40410783B5C113 ] C:\Program Files (x86)\Google\Update\1.3.24.15\goopdate.dll
    21:36:03.0197 0x12d0  C:\Program Files (x86)\Google\Update\1.3.24.15\goopdate.dll - ok
    21:36:03.0200 0x12d0  [ A6C29DB53ECA94FA8591C5388D604B82, F25E95BA669422286A8FA3A68E0C639A2F06319B6DC8FA641C965CFB27A50BD6 ] C:\Windows\SysWOW64\msi.dll
    21:36:03.0200 0x12d0  C:\Windows\SysWOW64\msi.dll - ok
    21:36:03.0202 0x12d0  [ 18AB2E5A40064ED5F7791AC5946A90F3, B7536CE56702C23B1CEC3E1B6C78866E0A76808B85A92AF3733D9ED9429E004C ] C:\Windows\SysWOW64\msimg32.dll
    21:36:03.0202 0x12d0  C:\Windows\SysWOW64\msimg32.dll - ok
    21:36:03.0204 0x12d0  [ 43964FA89CCF97BA6BE34D69455AC65F, 10E3B89A5470E1BB6F73382135DD2352F5073C1EE8485D7476CFB5122D4AAA2F ] C:\Windows\SysWOW64\uxtheme.dll
    21:36:03.0204 0x12d0  C:\Windows\SysWOW64\uxtheme.dll - ok
    21:36:03.0207 0x12d0  [ 465BEA35F7ED4A4A57686DEA7EA10F47, 7F1B3CA09AB045F805DA5765BE7DD270F5DDACE3073017F7386FF1E2FA82D6FB ] C:\Windows\SysWOW64\cscapi.dll
    21:36:03.0207 0x12d0  C:\Windows\SysWOW64\cscapi.dll - ok
    21:36:03.0209 0x12d0  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8, B07A12E3ECD5E418A3F99F00C56E7F482F68CADE330E7C079DCCDFFAD2E21299 ] C:\Windows\SysWOW64\dbghelp.dll
    21:36:03.0209 0x12d0  C:\Windows\SysWOW64\dbghelp.dll - ok
    21:36:03.0212 0x12d0  [ 397D14958D6C9C2B365469A857B2AC4E, 1465D7DC50A27A2C75FFC477E8A453B0884D1E298F804233483B63A47634B7EA ] C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
    21:36:03.0212 0x12d0  C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe - ok
    21:36:03.0215 0x12d0  [ AA0E4F73727BFC8BA404884B1C1DB719, 0DEB88BBBC3DD37824B484FA38487280CB6A049D235519584DA562C3C91F18A7 ] C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
    21:36:03.0215 0x12d0  C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe - ok
    21:36:03.0217 0x12d0  [ FF5688D309347F2720911D8796912834, 3B0D73C50D40A6F42629B7750F99F656BF5C1C50237D5F98B6C0F2CE5E2DA359 ] C:\Windows\SysWOW64\clbcatq.dll
    21:36:03.0217 0x12d0  C:\Windows\SysWOW64\clbcatq.dll - ok
    21:36:03.0219 0x12d0  [ F9D908DE6B166DAC9B89BF62FA291CE8, D0A918AD60221623BB0278EA94CD6938744617FDBB2054968AFAFC2940648F02 ] C:\Program Files\Bonjour\mdnsNSP.dll
    21:36:03.0219 0x12d0  C:\Program Files\Bonjour\mdnsNSP.dll - ok
    21:36:03.0222 0x12d0  [ 88351B29B622B30962D2FEB6CA8D860B, A16CAD7D94C1C9807083BB36E9B4C3C14E6482C4CA2BDFACBCC86E737DDCE42E ] C:\Windows\System32\rasadhlp.dll
    21:36:03.0222 0x12d0  C:\Windows\System32\rasadhlp.dll - ok
    21:36:03.0224 0x12d0  [ 9FCA3A84338ADEF2AFF67CDA46EF8539, 087DF72096852AE98C56990EE6E68835BE95E7E49ECDDE8B54DAC11C9E07FE94 ] C:\Windows\System32\umb.dll
    21:36:03.0224 0x12d0  C:\Windows\System32\umb.dll - ok
    21:36:03.0226 0x12d0  [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051, 8EFD0A6DE6F4E335D342782190008FB5AC84A6ADE49170B310DEC9AC48E623E8 ] C:\Windows\System32\localspl.dll
    21:36:03.0226 0x12d0  C:\Windows\System32\localspl.dll - ok
    21:36:03.0229 0x12d0  [ 78D1DFE903224ECA05C517E9AAC9D063, A93BD65EE2EA68599FC8AD2791A2F98DCDF16D6B89A1FA57314E290CAAC70C44 ] C:\Program Files\AVAST Software\Avast\Setup\instup.exe
    21:36:03.0229 0x12d0  C:\Program Files\AVAST Software\Avast\Setup\instup.exe - ok
    21:36:03.0231 0x12d0  [ 3285481F5C12305CA104A6C493CA5A0B, ADB39B15D26A954B0F347C7BAFCC76DE5E3CF3CF05736E8987E0832AA7F8563C ] C:\Windows\System32\spoolss.dll
    21:36:03.0231 0x12d0  C:\Windows\System32\spoolss.dll - ok
    21:36:03.0234 0x12d0  [ 0015ACFBBDD164A8A730009908868CA7, E1FF243AD2CF959FAB81EFE701592414991C03416FF296ADC93906E76B707C4D ] C:\Windows\System32\winspool.drv
    21:36:03.0234 0x12d0  C:\Windows\System32\winspool.drv - ok
    21:36:03.0236 0x12d0  [ 4727F73D9BB3EE114244CF9696A10C16, 88772E12FA4F5CFD08AA3D06850BB6A5E9D281C74DC6CFA1DC0D5B63B165234E ] C:\Program Files\AVAST Software\Avast\Setup\instup.dll
    21:36:03.0236 0x12d0  C:\Program Files\AVAST Software\Avast\Setup\instup.dll - ok
    21:36:03.0239 0x12d0  [ C5AC93CF3BA30D367FB49148A2B673B9, 07B556039BBA841BC9F28979C3AD5D238B55391F921C9C805F3AFC9EFB437766 ] C:\Windows\System32\PrintIsolationProxy.dll
    21:36:03.0239 0x12d0  C:\Windows\System32\PrintIsolationProxy.dll - ok
    21:36:03.0241 0x12d0  [ 936F728E04ACCF3F38801CFFCF1E3F40, 59CA86096F4B928E364B6A3C0408615F068BB8BC02DCFC5EAF4873EC6D6E0797 ] C:\Windows\SysWOW64\oledlg.dll
    21:36:03.0241 0x12d0  C:\Windows\SysWOW64\oledlg.dll - ok
    21:36:03.0244 0x12d0  [ 8E01332CC4B68BC6B5B7EFFE374442AA, A4AD1D2FD3EC2F26949DBBC388F9FFF3713AD7EB4E9220AF817EBB5223E467C6 ] C:\Windows\SysWOW64\oleacc.dll
    21:36:03.0244 0x12d0  C:\Windows\SysWOW64\oleacc.dll - ok
    21:36:03.0246 0x12d0  [ 08DFDBD2FD4EA951DC46B1C7661ED35A, D926530C659DDAF80770663F46F1EFD94FFB4AAB475C4E3367CB531AF4A734E1 ] C:\Windows\SysWOW64\powrprof.dll
    21:36:03.0246 0x12d0  C:\Windows\SysWOW64\powrprof.dll - ok
    21:36:03.0249 0x12d0  [ EE19C85CA685A275BE346EC41F1870F9, F071D88C38C62E9D88DDE29F451B2B581499758A7E60BDA6DED3376280C5A635 ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_72d576ad8665e853\GdiPlus.dll
    21:36:03.0249 0x12d0  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_72d576ad8665e853\GdiPlus.dll - ok
    21:36:03.0251 0x12d0  [ 1BF0CB861A48FEB1638228760750F3CB, 37C781A8C546EAD8B4D28BD7D730B9AC78EB799599AD69DAD9054B6F9F1DD6BD ] C:\Windows\System32\cscapi.dll
    21:36:03.0251 0x12d0  C:\Windows\System32\cscapi.dll - ok
    21:36:03.0254 0x12d0  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] C:\Windows\System32\nlasvc.dll
    21:36:03.0254 0x12d0  C:\Windows\System32\nlasvc.dll - ok
    21:36:03.0256 0x12d0  [ 58A0CDABEA255616827B1C22C9994466, 4FE1140AA8D3995579DE8CDF4ECAD1978804D05351EABB4079A63B303EF1B451 ] C:\Windows\System32\NapiNSP.dll
    21:36:03.0256 0x12d0  C:\Windows\System32\NapiNSP.dll - ok
    21:36:03.0258 0x12d0  [ A7A8CA53D9C9FD90C07AB0EB38E5316B, B98722E76601A98F038F40703C4B8BD21B5EC3B65DC1B07B7C367C06448F8A0E ] C:\Windows\System32\dbghelp.dll
    21:36:03.0258 0x12d0  C:\Windows\System32\dbghelp.dll - ok
    21:36:03.0261 0x12d0  [ 613C8CE10A5FDE582BA5FA64C4D56AAA, 30507B6BA79E1A271B07BBA58B4FF463678BE0960266A1D5E88031E932D768B6 ] C:\Windows\System32\pnrpnsp.dll
    21:36:03.0261 0x12d0  C:\Windows\System32\pnrpnsp.dll - ok
    21:36:03.0263 0x12d0  [ EC03B2D63A9A3AB25A7062CC9036F453, 2635C250F5B254A2032C71D12CA23227AB4D3F0A054A38222F36A2287A1BF1B6 ] C:\Windows\System32\E_YLMJHE.DLL
    21:36:03.0263 0x12d0  C:\Windows\System32\E_YLMJHE.DLL - ok
    21:36:03.0266 0x12d0  [ A7D4E2C269301BEA243676ED56F8B4FF, 1A86FEAA2DA6FCF8F0011A4B4A5DCB722BFF03F3B29C9FC4D25A2B0F621E9416 ] C:\Windows\System32\RstrtMgr.dll
    21:36:03.0266 0x12d0  C:\Windows\System32\RstrtMgr.dll - ok
    21:36:03.0268 0x12d0  [ 81F6C1AE23B1C493D9E996C3103915D7, E22408B4D2EDE2F89E686A4FDCD4057BE27B86D050E9CB489F0FFB39C72AEC1D ] C:\Windows\SysWOW64\dhcpcsvc6.dll
    21:36:03.0268 0x12d0  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
    21:36:03.0271 0x12d0  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3, 2A610BEB16610FE2F2E9A50477A62A05481E8A5843A814955A0EDFF45D0304B3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
    21:36:03.0271 0x12d0  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
    21:36:03.0273 0x12d0  [ E7B9D5FF20FFDD4AAE2EF1D1B8C27A37, 689D126B1B42140D5049015E3E324268E6542D4BC6CC14E31D8B89A25B94BAA5 ] C:\Windows\SysWOW64\imagehlp.dll
    21:36:03.0273 0x12d0  C:\Windows\SysWOW64\imagehlp.dll - ok
    21:36:03.0275 0x12d0  [ CE71B9119A258EDD0A05B37D7B0F92E3, D9310C5BBFE089B8C81E259C462EC1E6D7A7A87FA59FC1F174ED5C58D409AE7A ] C:\Windows\SysWOW64\bcrypt.dll
    21:36:03.0275 0x12d0  C:\Windows\SysWOW64\bcrypt.dll - ok
    21:36:03.0278 0x12d0  [ AD7FB087A238883D1618F29F7BBBD584, D9541CA4D2AADFEEEC195863133B16C2EC94CA63F842F5646F7834F2D0E85FF3 ] C:\Windows\SysWOW64\ncrypt.dll
    21:36:03.0278 0x12d0  C:\Windows\SysWOW64\ncrypt.dll - ok
    21:36:03.0280 0x12d0  [ E8449FE262D7406BCB2AC2A45C53EC5F, 6C118C9FB26404D1943824CF3990F36E12986547FFACB7CC0DF975A913065D78 ] C:\Windows\SysWOW64\bcryptprimitives.dll
    21:36:03.0280 0x12d0  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
    21:36:03.0283 0x12d0  [ 1097F3035BAF46CED8B332B3564C5108, C69781683CA963A1335780DABBBC60E2C3CEF0888738D3425D358D12E8D0AF58 ] C:\Windows\SysWOW64\gpapi.dll
    21:36:03.0283 0x12d0  C:\Windows\SysWOW64\gpapi.dll - ok
    21:36:03.0285 0x12d0  [ 7B851A8018B1EA00A69707A390004884, DAE654713EF1DC66C8C2D27752B659081794063A7D522D1F680AA9A6E7FBA9FD ] C:\Windows\SysWOW64\cryptnet.dll
    21:36:03.0285 0x12d0  C:\Windows\SysWOW64\cryptnet.dll - ok
    21:36:03.0288 0x12d0  [ 2A86C18CE6869C77FCEB62F3B47D4D5B, 6E282C56A208E26C8921CC396F4AF9D1681D26E3B22126FAEF3640400864B29F ] C:\Windows\SysWOW64\credssp.dll
    21:36:03.0288 0x12d0  C:\Windows\SysWOW64\credssp.dll - ok
    21:36:03.0290 0x12d0  [ 6F8E3B7B70E1BBA871212940C1FBDF60, 3F9D4EE64E4210340C6FEE0DE81BFE3C613DDBE608EC09D63817D24CE24BFC5E ] C:\Windows\SysWOW64\SensApi.dll
    21:36:03.0290 0x12d0  C:\Windows\SysWOW64\SensApi.dll - ok
    21:36:03.0292 0x12d0  [ B010CF886420EE29C2C276646721D255, CBCD032D679ADE3A9942A1D116648D6A9ECC71F66F8630629E724E5EE23F9F73 ] C:\Windows\SysWOW64\wlanapi.dll
    21:36:03.0292 0x12d0  C:\Windows\SysWOW64\wlanapi.dll - ok
    21:36:03.0295 0x12d0  [ 1D6A771D1D702AE07919DB52C889A249, E5F3378AC40AEE6114EEAF3BF11DC1059466891CAE353E80C08622A60485C954 ] C:\Windows\SysWOW64\wlanutil.dll
    21:36:03.0295 0x12d0  C:\Windows\SysWOW64\wlanutil.dll - ok
    21:36:03.0297 0x12d0  [ 118B9F89B94CB05BF58C90880099D103, 79EAADFE97D4BAEDC7BE0095B8380D1639C19CC50B607ECC323689BBDF0F0ABE ] C:\Program Files\AVAST Software\Avast\aswJSScan.dll
    21:36:03.0297 0x12d0  C:\Program Files\AVAST Software\Avast\aswJSScan.dll - ok
    21:36:03.0300 0x12d0  [ 08B80C6B8412D7172AAEEFE2A4898475, 02650187C725F161D4C8B26ABA26A57130079BA972E3B6D3184333D9BC774C01 ] C:\Program Files\AVAST Software\Avast\aswPatchMgt.dll
    21:36:03.0300 0x12d0  C:\Program Files\AVAST Software\Avast\aswPatchMgt.dll - ok
    21:36:03.0302 0x12d0  [ 68ECCA523ED760AAFC03C5D587569859, CDD734279C8F9F24EA2538BAD8E91EB8C3DD74C33032DB6B2D85C19576B42707 ] C:\Windows\SysWOW64\samcli.dll
    21:36:03.0302 0x12d0  C:\Windows\SysWOW64\samcli.dll - ok
    21:36:03.0305 0x12d0  [ 997C9110D0D9F739D75B75AFF596C4EC, 2A9FE5E30F1BD60C2254367DD7C696EB803DAE328BD7F341AD86C44B09C969CF ] C:\Program Files\AVAST Software\Avast\defs\14070401\swhealthex.dll
    21:36:03.0305 0x12d0  C:\Program Files\AVAST Software\Avast\defs\14070401\swhealthex.dll - ok
    21:36:03.0307 0x12d0  [ D412AC27FE3C9F8BC19741DAC0E0329D, 3B8047806295DA5C3FD89E36FE49B19E82C9945EE1298B5872F43BE118950CF4 ] C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe
    21:36:03.0307 0x12d0  C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe - ok
    21:36:03.0310 0x12d0  [ C5A99A4C0DC9F0F5A95BA0C83D30A549, F99CCCE303F0FC07D82D3BBA223E8CCE41FB7FA8FB5C2A9214C161826537C7C9 ] C:\Windows\SysWOW64\mstask.dll
    21:36:03.0310 0x12d0  C:\Windows\SysWOW64\mstask.dll - ok
    21:36:03.0312 0x12d0  [ C8E5975C1EC98961829CD03D615D2FE4, 8F1E1BDC3C0CB761BD2D5A4B5068C5B86C91D331E34766407681B75829DF641E ] C:\Program Files (x86)\Google\Update\1.3.24.15\goopdateres_en.dll
    21:36:03.0312 0x12d0  C:\Program Files (x86)\Google\Update\1.3.24.15\goopdateres_en.dll - ok
    21:36:03.0315 0x12d0  [ 12517C9BB249B072A3179C786A0DD32F, 1A05C7791C5B15EEF278711B8296989DA707D661C9975AC80735BAB762FA03E6 ] C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll
    21:36:03.0315 0x12d0  C:\Program Files (x86)\Real\RealUpgrade\Common\hxmedpltfm.dll - ok
    21:36:03.0318 0x12d0  [ D1690C013B8F6B5A7955B589D7644B3E, C635FFE20EF50627CDEE357E2AC45A6382EAB83A53D562DCA96A510338A6B38A ] C:\Windows\System32\enppmon.dll
    21:36:03.0318 0x12d0  C:\Windows\System32\enppmon.dll - ok
    21:36:03.0320 0x12d0  [ 828185688FDAAE6C7959B884ABED1766, 98A1F5DFDD517CDC7C20F0F64137D2A796E6E25EB82F7128F01B5DBCFF4C6587 ] C:\Windows\SysWOW64\schannel.dll
    21:36:03.0320 0x12d0  C:\Windows\SysWOW64\schannel.dll - ok
    21:36:03.0322 0x12d0  [ F11A57E91FDAECFB41A5CB21EB1EBC8E, 904DA963F2274ADF521660E3131DAC781E59C6FAEB393E57802A3B5638C09283 ] C:\Windows\System32\dssenh.dll
    21:36:03.0322 0x12d0  C:\Windows\System32\dssenh.dll - ok
    21:36:03.0325 0x12d0  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8, B1A9B2EF000917214C0198958CBD239D1D91B1720EC40DF041262A34D302AD74 ] C:\Windows\SysWOW64\winspool.drv
    21:36:03.0325 0x12d0  C:\Windows\SysWOW64\winspool.drv - ok
    21:36:03.0327 0x12d0  [ 6BCE0135F33741B9C8DCF7E47BAA8AE9, 7D2E944A54CED2D81AD87435A29F554E37C9982F0340F4D8A4A883421178D093 ] C:\Program Files\Microsoft Office 15\ClientX64\apiclient.dll
    21:36:03.0327 0x12d0  C:\Program Files\Microsoft Office 15\ClientX64\apiclient.dll - ok
    21:36:03.0330 0x12d0  [ 2E2072EB48238FCA8FBB7A9F5FABAC45, AC70B9FC24847EEC2E18008F2894DCDAC19A9C90D5D88729326E493CA524F5C3 ] C:\Windows\System32\winrnr.dll
    21:36:03.0330 0x12d0  C:\Windows\System32\winrnr.dll - ok
    21:36:03.0332 0x12d0  [ 4C39358EBDD2FFCD9132A30E1EC31E16, 06918CF99AD26CD6CF106881C0D5BDB212DC0BAC4549805C9F5906E3D03D152C ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
    21:36:03.0332 0x12d0  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
    21:36:03.0335 0x12d0  [ 1658E808E4D4889C66DE47EC87F1DED1, 53A97CEC6391444A4C8C5A057C6238C20AE29669F21A27EBF1E66DA5918A4979 ] C:\Windows\System32\msvcp60.dll
    21:36:03.0335 0x12d0  C:\Windows\System32\msvcp60.dll - ok
    21:36:03.0338 0x12d0  [ BAFE84E637BF7388C96EF48D4D3FDD53, 11C194D9ADCE90027272C627D7FBF3BA5025FF0F7B26A8333F764E11E1382CF9 ] C:\Windows\System32\userinit.exe
    21:36:03.0338 0x12d0  C:\Windows\System32\userinit.exe - ok
    21:36:03.0340 0x12d0  [ F162D5F5E845B9DC352DD1BAD8CEF1BC, 8A7B7528DB30AB123B060D8E41954D95913C07BB40CDAE32E97F9EDB0BAF79C7 ] C:\Windows\System32\dwm.exe
    21:36:03.0340 0x12d0  C:\Windows\System32\dwm.exe - ok
    21:36:03.0342 0x12d0  [ FCFCD1101C5DA23B4B95F93D02B2C169, 040A086875B6C5475490A2F8B0CF4FF20DDB4FEDFE5FCABBA49692AA05F40527 ] C:\Windows\System32\dwmredir.dll
    21:36:03.0342 0x12d0  C:\Windows\System32\dwmredir.dll - ok
    21:36:03.0345 0x12d0  [ 4BA77A5EF71C14C764B0ED4701683E3E, 066A064CDBE09BF8BE1DF5B259F30FF6C124A1C3D637800D3E19E8E25EDB950E ] C:\Windows\System32\dwmcore.dll
    21:36:03.0345 0x12d0  C:\Windows\System32\dwmcore.dll - ok
    21:36:03.0347 0x12d0  [ 332FEAB1435662FC6C672E25BEB37BE3, 6BED1A3A956A859EF4420FEB2466C040800EAF01EF53214EF9DAB53AEFF1CFF0 ] C:\Windows\explorer.exe
    21:36:03.0347 0x12d0  C:\Windows\explorer.exe - ok
    21:36:03.0349 0x12d0  [ 9AE80F6A66B30E3ED8CDF858CF28B11B, A93E470DC54E3C74C10979D49CABB9A34893F9E847F88491F935DB44EEC3541A ] C:\Windows\System32\d3d10_1.dll
    21:36:03.0349 0x12d0  C:\Windows\System32\d3d10_1.dll - ok
    21:36:03.0352 0x12d0  [ 63F72417CA38D8FC8F53709649B589E3, 39AE8AFFCFB8A9E345FC4C6F11926F25552C464380F88CDECD299FD27AF7866B ] C:\Windows\System32\d3d10_1core.dll
    21:36:03.0352 0x12d0  C:\Windows\System32\d3d10_1core.dll - ok
    21:36:03.0354 0x12d0  [ 8DFB5752FCE145A6B295093C0A8BE131, F38029C8B36EFD46B1F6CCA0089FF4EFB0AB246497E38EDFF6A67FAC804D4A97 ] C:\Windows\System32\dxgi.dll
    21:36:03.0354 0x12d0  C:\Windows\System32\dxgi.dll - ok
    21:36:03.0357 0x12d0  [ 4C92EB7535CAA1681A77D928FBF9771F, 7D02B2357CA02393CA711C3C499AAD86B792EEFFDC67F2CE52F7F7BB8A28DE79 ] C:\Windows\System32\d3d11.dll
    21:36:03.0357 0x12d0  C:\Windows\System32\d3d11.dll - ok
    21:36:03.0359 0x12d0  [ EED05D42D91835064703E2318552ED25, E9EE1E2253445B207B76F5D3073C612ED979A982522C1515E0FE8FA9641AE568 ] C:\Windows\System32\ExplorerFrame.dll
    21:36:03.0359 0x12d0  C:\Windows\System32\ExplorerFrame.dll - ok
    21:36:03.0362 0x12d0  [ 6108152CC1DA0B026CE7DC8189449E6B, EFD946F5DF864354EE38BCA0A2C04F0ED7A4F5D4977064F635ECB3F4DF6E58A6 ] C:\Windows\System32\aticfx64.dll
    21:36:03.0362 0x12d0  C:\Windows\System32\aticfx64.dll - ok
    21:36:03.0364 0x12d0  [ DB935840200D98B337562FB33AF08800, 8BA8ACE592C640B9B2229DFCA9E80515315F13391E9231ADCD49FE277E558A52 ] C:\Windows\System32\atiuxp64.dll
    21:36:03.0364 0x12d0  C:\Windows\System32\atiuxp64.dll - ok
    21:36:03.0366 0x12d0  [ D1CDB6862B85B610D9275DE21CDCFB3D, 87B5DFF5BFF66D07D2A459A2EF22B66D983495232B29416ED70F1C5D8BBC779B ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL
    21:36:03.0366 0x12d0  C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL - ok
    21:36:03.0369 0x12d0  [ C241BD6064014F20DFBEBBE06490A1C0, 4D57C8CD7E27FCD757F0AA1A3A80D25A9249AC1797AE6FBFA7B65DCA1F94592B ] C:\Windows\System32\atidxx64.dll
    21:36:03.0369 0x12d0  C:\Windows\System32\atidxx64.dll - ok
    21:36:03.0371 0x12d0  [ 49E5753D923F1AC63B22D3DCB0B47E00, 14CEC0BF5F625FF839A8D79B4A6B7C4AC0CBB705FD197C6B7FF8617C6C3E34FE ] C:\Windows\System32\uDWM.dll
    21:36:03.0371 0x12d0  C:\Windows\System32\uDWM.dll - ok
    21:36:03.0374 0x12d0  [ DF3CA8D16BDED6A54977B30E66864D33, 1D1A1AE540BA132F998D60D3622F0297B6E86AE399332C3B47462D7C0F560A36 ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\msvcr100.dll
    21:36:03.0374 0x12d0  C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\msvcr100.dll - ok
    21:36:03.0377 0x12d0  [ 4F096D96285E06CD51AEF7D2D3DE04DA, 5BB420FBE28315F2117376052BB8488CE84A3398DDA65005B8AE1F792017E9A8 ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\msvcp100.dll
    21:36:03.0377 0x12d0  C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\msvcp100.dll - ok
    21:36:03.0380 0x12d0  [ 5A55E3E6F53592F8170623DEFA2B7954, B524543192E78A2C97D3EC9AA0CFCBBAA308439D3A33F9A1F4EDFBD3181D7919 ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\atl100.dll
    21:36:03.0380 0x12d0  C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\atl100.dll - ok
    21:36:03.0382 0x12d0  [ 5EB6E9C8BE1ACC5830780E0F9A846255, AC5EDC6DBC9CA204584E35878E18F6524DE002CE3D90657C37599790A5DDD1F1 ] C:\Windows\System32\msi.dll
    21:36:03.0382 0x12d0  C:\Windows\System32\msi.dll - ok
    21:36:03.0385 0x12d0  [ FA43D418BC945D27D0625B697B8442B5, 035DE0FEA440D2E3AD255EE84B388DDA538E778877033FDB54B8A61BB0AADE56 ] C:\Windows\System32\cabinet.dll
    21:36:03.0385 0x12d0  C:\Windows\System32\cabinet.dll - ok
    21:36:03.0387 0x12d0  [ C57C7B08FD86FBC6A77EE32604D7DAA1, C206A6C6357AC69325AE139BE2A54B6F44E82830C47C6E0E99096B28AB310994 ] C:\Program Files\Microsoft Office 15\ClientX64\streamserver.dll
    21:36:03.0387 0x12d0  C:\Program Files\Microsoft Office 15\ClientX64\streamserver.dll - ok
    21:36:03.0390 0x12d0  [ A627F04CF1B67A3F0C1542C3C82994BE, 4E1EA66E0D16AAFC045C25A32BBB5DDAA8CAE0A5E71B0308D6765EEC5491A2FF ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\Cultures\OFFICE.ODF
    21:36:03.0390 0x12d0  C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE15\Cultures\OFFICE.ODF - ok
    21:36:03.0393 0x12d0  [ D9A5B279A8D2F8775FA254927F33DA6D, 9B57D563AD6535ADF6A83DA33B3391BB80AC3266F5663077CFF0CEE43700EF47 ] C:\Windows\System32\msdelta.dll
    21:36:03.0393 0x12d0  C:\Windows\System32\msdelta.dll - ok
    21:36:03.0395 0x12d0  [ 9BD433A6A3E422B8B8CF948B2B394D62, D1F2EDC9304755698AB71A3E78F578042672F98D4AD5C7527AF7603A9D62D2B4 ] C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvApi.dll
    21:36:03.0395 0x12d0  C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvApi.dll - ok
    21:36:03.0398 0x12d0  [ FDFF50AF8A708A23B7DE1D69C285A2AE, D3DD5553711FD5290FF0DFF7C2069D68E12EDCA3A3732A237C52602B59AA27AD ] C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe
    21:36:03.0398 0x12d0  C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe - ok
    21:36:03.0401 0x12d0  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] C:\Windows\System32\cryptsvc.dll
    21:36:03.0401 0x12d0  C:\Windows\System32\cryptsvc.dll - ok
    21:36:03.0403 0x12d0  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] C:\Windows\System32\dps.dll
    21:36:03.0403 0x12d0  C:\Windows\System32\dps.dll - ok
    21:36:03.0406 0x12d0  [ A6B726DCA228F7878E38368A1BDC68BE, 30E8300B09B876E3D4B2A9215C9CC070EADF915E1268F425B6F8E0596A0D3539 ] C:\Windows\System32\cryptnet.dll
    21:36:03.0406 0x12d0  C:\Windows\System32\cryptnet.dll - ok
    21:36:03.0408 0x12d0  [ 6B2F901892687D7E31865D4A35C5A34E, 3A57B6696C969B450B773011E7FB8369D23AAA4829BE103143447892BBD65443 ] C:\Windows\System32\drivers\rikvm_9EC60124.sys
    21:36:03.0408 0x12d0  C:\Windows\System32\drivers\rikvm_9EC60124.sys - ok
    21:36:03.0411 0x12d0  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567, 426FB40A065FEF61980C803EF72D0D326C623340C3AE99CA8AFFDEFB81E8D49D ] C:\Windows\System32\vssapi.dll
    21:36:03.0411 0x12d0  C:\Windows\System32\vssapi.dll - ok
    21:36:03.0413 0x12d0  [ BEC6424855779064551A7F15472F8DAF, 0C6C35AF8F41ADBD2BDAFF35869025EF9098553D8263D49AE8B37B2AA3CCDDAD ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
    21:36:03.0413 0x12d0  C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll - ok
    21:36:03.0416 0x12d0  [ 287923557447D7E4BDD7E65B1F0F5428, 14D85A0F036F28D77AA9723C3D7E8C4DA9BDFF8A1AD9BEA6FE5756DBF5D00F08 ] C:\Windows\System32\vsstrace.dll
    21:36:03.0416 0x12d0  C:\Windows\System32\vsstrace.dll - ok
    21:36:03.0419 0x12d0  [ 1E0764A8A8F39BAAEB271DA597422584, 0FEC21BF69925496E11DCDBB3409F63C0F7970FF2B68391CD6E3EF6F566FD2A3 ] C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
    21:36:03.0419 0x12d0  C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe - ok
    21:36:03.0422 0x12d0  [ 7E91E4F5A9DB3C8B6371A726D8B1D81A, A4DDD53F1A720F36EA64D829254C71E3D057E2E7DB8F17773EF4AA662043FC1B ] C:\Program Files\AVAST Software\Avast\ashShA64.dll
    21:36:03.0422 0x12d0  C:\Program Files\AVAST Software\Avast\ashShA64.dll - ok
    21:36:03.0424 0x12d0  [ 024352FEEC9042260BB4CFB4D79A206B, 60CB39086E10C5B66EBC15E4DF219620B344B4358D2918AB6BB3448A0AC8BE36 ] C:\Windows\System32\EhStorShell.dll
    21:36:03.0424 0x12d0  C:\Windows\System32\EhStorShell.dll - ok
    21:36:03.0427 0x12d0  [ B63BA5BF3F0EE9042BBD80D41E701505, 6495A4C222A758943FE0373D9F2FCE76340AE5EFCF41C63C847CB9DB0345C87A ] C:\Program Files\MozyHome\mozyshell.dll
    21:36:03.0427 0x12d0  C:\Program Files\MozyHome\mozyshell.dll - ok
    21:36:03.0429 0x12d0  [ 241AF87821FDA0F5792037B779F49BE0, B3F4FDA27430ACC6D6BC1C3CBD518B9CAE5BA0F22AB8917578A7F16270F94C8B ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
    21:36:03.0429 0x12d0  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
    21:36:03.0432 0x12d0  [ D233C7FEAE3FAA25F93A9E6B46815ADC, 5330682AE9C08E5F2E30C5E256B91028389BBBDDAA8C38950DF76616FCA854FF ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
    21:36:03.0432 0x12d0  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
    21:36:03.0435 0x12d0  [ B7D8ED350D1D5140724D9C429D6473DD, 8C2D65B1FC95A1BA617CF3F0BD3002B8820DF17E9F44CB7F2D238B233A74E0A5 ] C:\Program Files\Microsoft Office 15\ClientX64\AppVPolicy.dll
    21:36:03.0435 0x12d0  C:\Program Files\Microsoft Office 15\ClientX64\AppVPolicy.dll - ok
    21:36:03.0437 0x12d0  [ 81D38F895C26BD9EE13C230AA67F2F94, FA3C815CDC69CB1EA16AD2F4FE2565D912C5B1984280E0B54FFA052D273CBAD1 ] C:\Windows\System32\enpres.dll
    21:36:03.0437 0x12d0  C:\Windows\System32\enpres.dll - ok
    21:36:03.0440 0x12d0  [ E2B08D19F5F3BDD73A6F046E2B371A41, 4858C2C5666CD233BCD572F6EF13345BB34389452D36AB065F440FC7318C8E09 ] C:\Windows\System32\HPZLLWN7.DLL
    21:36:03.0440 0x12d0  C:\Windows\System32\HPZLLWN7.DLL - ok
    21:36:03.0441 0x12d0  [ 19E41CCCEE697CC9465396B370929792, A9FC4C33C71C3677FE57779380E55FDE2AC0B0C70A9DBCBA0D0B6FA92C709A7F ] C:\Windows\System32\FXSMON.dll
    21:36:03.0441 0x12d0  C:\Windows\System32\FXSMON.dll - ok


    #11 JamAli

    JamAli
    • Topic Starter

    • Members
    • 50 posts
    • OFFLINE
    •  
    • Gender:Female
    • Local time:09:37 AM

    Posted 06 July 2014 - 12:13 AM

    Part 3:

      

     

    21:36:03.0444 0x12d0  [ C89B88BCA6D6B72A470D8BF5730254C6, CD0A128E84D4318B1CC3D417FCB6BEAE87D0D7D6660337F67B1CD9C1EB10F7A3 ] C:\Windows\System32\pdfcmon.dll
    21:36:03.0444 0x12d0  C:\Windows\System32\pdfcmon.dll - ok
    21:36:03.0446 0x12d0  [ 32A3C8600AF124CBAAD845F13CFAE3CB, F36FE9E57D5C509FEECE890F9F8717F9CC6F762E32AE0B7DB7E0153370CE0B9D ] C:\Windows\System32\tcpmon.dll
    21:36:03.0446 0x12d0  C:\Windows\System32\tcpmon.dll - ok
    21:36:03.0448 0x12d0  [ 93518C6EDE0B61BCBD02BDB02BD05FEE, 3637F5E5F15093AFB501EE910368CF900B422AC22669391FFA4198BBAE6F8FCB ] C:\Windows\System32\snmpapi.dll
    21:36:03.0448 0x12d0  C:\Windows\System32\snmpapi.dll - ok
    21:36:03.0451 0x12d0  [ FFF9D00CF16397C64317F213484F94BD, 94D0584E14BDB27F61F59A7BCEA529A1594261BE0CE74502C13E8865843BA414 ] C:\Windows\System32\wsnmp32.dll
    21:36:03.0451 0x12d0  C:\Windows\System32\wsnmp32.dll - ok
    21:36:03.0453 0x12d0  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB, 018CB95A43CEA2063EA24691C71D51EF60D522C21502ABA8AD93876363D4B857 ] C:\Windows\System32\taskschd.dll
    21:36:03.0453 0x12d0  C:\Windows\System32\taskschd.dll - ok
    21:36:03.0456 0x12d0  [ 0E3A7EC2B9590EA7767BBB1823630DEA, 6858B7050465DB8505CF9E932868B123B925376C05363EA5A9198B2AE15CF728 ] C:\Windows\System32\msxml6.dll
    21:36:03.0456 0x12d0  C:\Windows\System32\msxml6.dll - ok
    21:36:03.0458 0x12d0  [ DF72A9936D0C3F517083119648814B09, 6BA4DCAC2F55A393A266ED0B2AF92B38141654D1666E3E143D85BBAF21663E1E ] C:\Windows\System32\usbmon.dll
    21:36:03.0458 0x12d0  C:\Windows\System32\usbmon.dll - ok
    21:36:03.0461 0x12d0  [ A1D7E3ADCDB07DDB6F423862DCB1A52B, 6191C33D2AE090F6F055D6AE211096CE8F003EC5518A5333EE1E376052176BAB ] C:\Windows\System32\WSDMon.dll
    21:36:03.0461 0x12d0  C:\Windows\System32\WSDMon.dll - ok
    21:36:03.0463 0x12d0  [ 06A754FE28A06F780A099703CFCAAA22, FCADF16C88EEC651258149616202CC29D649FE8CBBBA481BEA9A67C2ED82844B ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll
    21:36:03.0463 0x12d0  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll - ok
    21:36:03.0466 0x12d0  [ 58F4493BF748A3A89689997B7BD00E95, EC5DEEC73E357C7C87B001275C4E635011A9CF39419F2B86E2C2B8D7E388C551 ] C:\Windows\System32\winhttp.dll
    21:36:03.0466 0x12d0  C:\Windows\System32\winhttp.dll - ok
    21:36:03.0468 0x12d0  [ F1B205F932F62F94506A5F332C895DAF, F02F01F20F655DD919C71AE814E4C3DD43330AAD1425FC5B1497F1613917CCDE ] C:\Windows\System32\WSDApi.dll
    21:36:03.0468 0x12d0  C:\Windows\System32\WSDApi.dll - ok
    21:36:03.0471 0x12d0  [ 7D5A8BD7548FB8EE039F3F3B45B1FCC8, 964C90A86FAADE33F978D3EEEA0E42457A86D42DB376E1352CAA4354D4F3E963 ] C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll
    21:36:03.0471 0x12d0  C:\Program Files (x86)\Real\RealUpgrade\Plugins\upgrade.dll - ok
    21:36:03.0473 0x12d0  [ C55516D98DD5D8F0153C2A9B4227DA86, DBC62B776CF06D0873A4C7CFCDF5B6F5C6E6C41917C326C090BCE58DC66EE09C ] C:\Windows\System32\webservices.dll
    21:36:03.0473 0x12d0  C:\Windows\System32\webservices.dll - ok
    21:36:03.0476 0x12d0  [ B5055B51BAA0FD0A736A88653DA3C1C0, A3BD057C7E8C926930BA7E9D11427D26FB37267026A0B72AB4021101EE424F74 ] C:\Windows\System32\fundisc.dll
    21:36:03.0476 0x12d0  C:\Windows\System32\fundisc.dll - ok
    21:36:03.0478 0x12d0  [ 4581716B4BF76ACFD8E167EB0B26D82A, 39D822527114EEED68044CCE4D542767F53978D9E0A7F72638F1CA9A016DE13B ] C:\Windows\System32\fdPnp.dll
    21:36:03.0478 0x12d0  C:\Windows\System32\fdPnp.dll - ok
    21:36:03.0481 0x12d0  [ 1D626FE2E13C1CE49CA0136CFF214E93, 4F02DD92045CF244979FFD074B2BDE6925A909227A474C60DCABE4384D916218 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
    21:36:03.0481 0x12d0  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
    21:36:03.0483 0x12d0  [ 8F1C949FD695C83C4E30C3BFC004C81F, A93499FF8A7A060653C07FD2B25973EEC51F1D265B876E8A636BCAC4195A01A2 ] C:\Windows\System32\spool\prtprocs\x64\HPZPPWN7.DLL
    21:36:03.0483 0x12d0  C:\Windows\System32\spool\prtprocs\x64\HPZPPWN7.DLL - ok
    21:36:03.0486 0x12d0  [ 67CF11E00D026A5C0C88EA5F84D501E5, 5081A87466116232CF07F58229967B6C0CD3738B64A56EFC6BB3EBDA62E378F6 ] C:\Windows\System32\win32spl.dll
    21:36:03.0486 0x12d0  C:\Windows\System32\win32spl.dll - ok
    21:36:03.0488 0x12d0  [ 507D5567A0A4EE86C4B0CE2CE1777025, 408770B00CED498BF7782054F17A5CB361CF65429B0C816403D70E416E0EEF23 ] C:\Windows\System32\inetpp.dll
    21:36:03.0488 0x12d0  C:\Windows\System32\inetpp.dll - ok
    21:36:03.0490 0x12d0  [ 603EBD34E216C5654A2D774EAC98D278, ACE0171BB780DB2C1B1A8BF6FA8CF51C529D7E09141FA504C7199AF764FD9A36 ] C:\Windows\System32\webio.dll
    21:36:03.0490 0x12d0  C:\Windows\System32\webio.dll - ok
    21:36:03.0493 0x12d0  [ 037A719DAD50603202C978CD802623E4, BD4C222913D32D7CF5FE0201FEBE7BD67FC39DF47A7A672C2D6C228A6E13B5DE ] C:\Windows\System32\ntshrui.dll
    21:36:03.0493 0x12d0  C:\Windows\System32\ntshrui.dll - ok
    21:36:03.0495 0x12d0  [ 1D63F4366288B8A7595397E27010FD44, 99EA4DDD88D9C4A4CC9B238F533CB4D2C062D46239173997E8594D8A75811A01 ] C:\Windows\System32\IconCodecService.dll
    21:36:03.0496 0x12d0  C:\Windows\System32\IconCodecService.dll - ok
    21:36:03.0498 0x12d0  [ D583E0321E16E22B8DA7226186685CF4, AF54F2190686BBA231C196CA9D894FF5A01B0D01E370825555FC511BC7B68803 ] C:\Program Files\Microsoft Office 15\ClientX64\AppVOrchestration.dll
    21:36:03.0498 0x12d0  C:\Program Files\Microsoft Office 15\ClientX64\AppVOrchestration.dll - ok
    21:36:03.0501 0x12d0  [ 35E4E154620498F9A68319E01A7D2865, 3E96F907740D42D878CA5D1C80370345D7B6DD50A96966CA77C77600BF9849FA ] C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvStreamingManager.dll
    21:36:03.0501 0x12d0  C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvStreamingManager.dll - ok
    21:36:03.0504 0x12d0  [ 63AAEB874E58781D31D675EBCF30D433, A78E5DE8386ABD117C9565318077D152EFD269F90C5D0E578C93CDF1775B9D3C ] C:\Program Files\Microsoft Office 15\ClientX64\AppVManifest.dll
    21:36:03.0504 0x12d0  C:\Program Files\Microsoft Office 15\ClientX64\AppVManifest.dll - ok
    21:36:03.0506 0x12d0  [ 4FA8540972959B1882733C5974EBDA95, C53178528AE9578B4B3314BD62CA812BA175E6CEA11CAF38A5E5168C1077B22A ] C:\Program Files\Microsoft Office 15\ClientX64\AppVCatalog.dll
    21:36:03.0506 0x12d0  C:\Program Files\Microsoft Office 15\ClientX64\AppVCatalog.dll - ok
    21:36:03.0509 0x12d0  [ 6DBB52F29523C006C38766FD2B2294C3, D499C331317A4DA5026DF9305271649F3D9FEE2E3368F184AC9B2C66E6856359 ] C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvVirtualization.dll
    21:36:03.0509 0x12d0  C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvVirtualization.dll - ok
    21:36:03.0512 0x12d0  [ 22D78D29A440C29051CE4F9695D7AD41, 8299920F15B2E5E74205D813BFEB6FB0BDB7637EF403C9434A30C89E510164A2 ] C:\Program Files\Microsoft Office 15\ClientX64\AppVIntegration.dll
    21:36:03.0512 0x12d0  C:\Program Files\Microsoft Office 15\ClientX64\AppVIntegration.dll - ok
    21:36:03.0515 0x12d0  [ 2C8AB62186F47F916E965DB9E4809E14, 8C05BF19D68AAD4868CB2B4DC1BB241627A5276E3F0B6FDC3CE7570D320CDC9B ] C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvSubsystemController.dll
    21:36:03.0515 0x12d0  C:\Program Files\Microsoft Office 15\ClientX64\AppVIsvSubsystemController.dll - ok
    21:36:03.0517 0x12d0  [ 2C64925F8569860EEA8D087533E533B6, E2F6DB25A065654560F68C1733DD52AB5B4124C2B806CE918402436BA53131B0 ] C:\Program Files\Microsoft Office 15\ClientX64\AppVFileSystemMetadata.dll
    21:36:03.0517 0x12d0  C:\Program Files\Microsoft Office 15\ClientX64\AppVFileSystemMetadata.dll - ok
    21:36:03.0521 0x12d0  [ 29D8A3F28222C72606901852ACD20D73, DE73FF8F8475C4DA8625A6610AAA31F7E53763B01D39757B7FAE13AE287C7657 ] C:\Windows\System32\spool\drivers\x64\3\E_YMAIJHE.DLL
    21:36:03.0521 0x12d0  C:\Windows\System32\spool\drivers\x64\3\E_YMAIJHE.DLL - ok
    21:36:03.0523 0x12d0  [ A7E8186E04F38E836C19AC147F8B2ED0, 329639595F02060C215A6334FCE1651FB9B9B5679BA9052A487B57265608D162 ] C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
    21:36:03.0523 0x12d0  C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE - ok
    21:36:03.0526 0x12d0  [ D222579C912E5871100838F5A4FCCA77, 0246BB799425BA548EB5DCC006E9D87732EFC84DD2FD4E01F5E2F3D85E891582 ] C:\Windows\System32\RpcNs4.dll
    21:36:03.0526 0x12d0  C:\Windows\System32\RpcNs4.dll - ok
    21:36:03.0528 0x12d0  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] C:\Windows\System32\FDResPub.dll
    21:36:03.0528 0x12d0  C:\Windows\System32\FDResPub.dll - ok
    21:36:03.0530 0x12d0  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] C:\Windows\System32\IKEEXT.DLL
    21:36:03.0530 0x12d0  C:\Windows\System32\IKEEXT.DLL - ok
    21:36:03.0533 0x12d0  [ 54A47F6B5E09A77E61649109C6A08866, 121118A0F5E0E8C933EFD28C9901E54E42792619A8A3A6D11E1F0025A7324BC2 ] C:\Windows\SysWOW64\svchost.exe
    21:36:03.0533 0x12d0  C:\Windows\SysWOW64\svchost.exe - ok
    21:36:03.0535 0x12d0  [ D4FAC263861BAE06971C7F7D0A8EBF15, D494DEF0024288B9CC56EC6B500FF5828144BE9B8E7033340509EC5E68F8DED0 ] C:\Windows\System32\ncsi.dll
    21:36:03.0535 0x12d0  C:\Windows\System32\ncsi.dll - ok
    21:36:03.0538 0x12d0  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] C:\Windows\System32\netman.dll
    21:36:03.0538 0x12d0  C:\Windows\System32\netman.dll - ok
    21:36:03.0540 0x12d0  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE, 4EFA41765E46E90C6CBDB0DC1E0CD375D7AB3307C477171EBAA6A16AC32E5211 ] C:\Windows\System32\ssdpapi.dll
    21:36:03.0540 0x12d0  C:\Windows\System32\ssdpapi.dll - ok
    21:36:03.0543 0x12d0  [ 77B5035BC6EDF4D1B6265391AECEE4C0, FE69B715F04446BD42AF1B672E6AC54E954CFE0C847BFD2056CB11CF017B1844 ] C:\Windows\System32\vpnikeapi.dll
    21:36:03.0543 0x12d0  C:\Windows\System32\vpnikeapi.dll - ok
    21:36:03.0545 0x12d0  [ BCEA9AB347E53BC03B2E36BE0B8BA0EF, 868DEFB78767E91694E83F931725257DF3FF79A4BFED3B914D27F3493EB7A8D0 ] C:\Windows\System32\httpapi.dll
    21:36:03.0545 0x12d0  C:\Windows\System32\httpapi.dll - ok
    21:36:03.0548 0x12d0  [ 99E8EEF42FE2F4AF29B08C3355DD7685, D57BC2148653DA5596FB49F1086D165B11C9F6C644608202C08305D3C8499CFE ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
    21:36:03.0548 0x12d0  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll - ok
    21:36:03.0550 0x12d0  [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] C:\Windows\System32\HPZinw12.dll
    21:36:03.0550 0x12d0  C:\Windows\System32\HPZinw12.dll - ok
    21:36:03.0553 0x12d0  [ E36112A8A6C7F840169A7E92C12F4203, 52795B2E6ECCE751EEF5074AF52FDE376A382D0A1C43B90DD4F77A397C00FBC5 ] C:\Windows\System32\wsock32.dll
    21:36:03.0553 0x12d0  C:\Windows\System32\wsock32.dll - ok
    21:36:03.0555 0x12d0  [ 4909501F53DA2EB6603848944C45F524, B362D95F6F78C22D28AAC0ABAAAB6B6D4B295D130EDA231AAFD7033422564983 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddcmn.dll
    21:36:03.0555 0x12d0  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddcmn.dll - ok
    21:36:03.0558 0x12d0  [ D87CCB226760B2642FDC1FE95E976F58, 9394284881FB2C15474FD58C00758DAEA43A617515B22932B22AA15D315CDEFA ] C:\Windows\System32\spool\drivers\x64\3\E_YUICJHE.DLL
    21:36:03.0558 0x12d0  C:\Windows\System32\spool\drivers\x64\3\E_YUICJHE.DLL - ok
    21:36:03.0560 0x12d0  [ 6E3754AFF0B2DC3208D53E306EF6FD45, AB20591CEACD0F10A20399D3E1AFAB527F79789B851E1B79A18DFEBA5D09BF50 ] C:\Windows\System32\spool\drivers\x64\3\E_YAUDJHE.DLL
    21:36:03.0560 0x12d0  C:\Windows\System32\spool\drivers\x64\3\E_YAUDJHE.DLL - ok
    21:36:03.0563 0x12d0  [ FDC385A0F7D7DD880C4622D1DF08ABE9, D9596264D98B09A5C44DD63B69B7253377B5FF237B6F2C4F97258E86FFAD055A ] C:\Windows\System32\ntprint.dll
    21:36:03.0563 0x12d0  C:\Windows\System32\ntprint.dll - ok
    21:36:03.0565 0x12d0  [ 20D6830A18E4892C06BF3DA5D66FF52E, A85C17F543A726ED8F4704310828DC00D644B2A70390BFD2E11479A3E7F8702E ] C:\Windows\System32\spool\drivers\x64\3\E_YASKJHE.DLL
    21:36:03.0565 0x12d0  C:\Windows\System32\spool\drivers\x64\3\E_YASKJHE.DLL - ok
    21:36:03.0568 0x12d0  [ 585515DFBBA950F12AB540FF050728AE, D408C167293250836B2E78BD32AAA90DF8A72A841E37EC11BC36163F507FAC0C ] C:\Windows\System32\spool\drivers\x64\3\E_YAPRJHE.DLL
    21:36:03.0568 0x12d0  C:\Windows\System32\spool\drivers\x64\3\E_YAPRJHE.DLL - ok
    21:36:03.0571 0x12d0  [ B9B72FAAAA41D59B73B88FE3DD737ED1, 050E741FB5313523340B19C9C168611222C4AE9A6084FE3E2F908A49EA909A29 ] C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
    21:36:03.0571 0x12d0  C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe - ok
    21:36:03.0573 0x12d0  [ 5672C775FAB584EB5BABBB79C74C530E, 832C6D0FDFCB388CDFD1A75EA22E807B13DE7C68D246FFFA7C2E117921B29006 ] C:\Program Files (x86)\Dell\Dell Datasafe Online\BuEng.dll
    21:36:03.0573 0x12d0  C:\Program Files (x86)\Dell\Dell Datasafe Online\BuEng.dll - ok
    21:36:03.0576 0x12d0  [ 1727B2A2F379A32B864C096FA794AADC, 87B77A5DF95F3A1C5ED6DEF820C7E384BEFCBAA2FE1BB4781AC6F777A081E5CC ] C:\Windows\System32\aepic.dll
    21:36:03.0576 0x12d0  C:\Windows\System32\aepic.dll - ok
    21:36:03.0578 0x12d0  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] C:\Windows\System32\pnrpsvc.dll
    21:36:03.0578 0x12d0  C:\Windows\System32\pnrpsvc.dll - ok
    21:36:03.0581 0x12d0  [ C6DCD1D11ED6827F05C00773C3E7053C, EA23BE261C9C04F44215D254D7A80FD0AEE84C6F192D0FEE49A7CF74ED3CB1A6 ] C:\Windows\System32\sfc.dll
    21:36:03.0581 0x12d0  C:\Windows\System32\sfc.dll - ok
    21:36:03.0583 0x12d0  [ 895C9AB0A855547445C4181195230757, 89BDA385D8CCB75C3D7B1BDFA567AC441A931F4E499C0835FEE9D010343FABB6 ] C:\Windows\System32\sfc_os.dll
    21:36:03.0583 0x12d0  C:\Windows\System32\sfc_os.dll - ok
    21:36:03.0586 0x12d0  [ 20372BE109FEE1C37E2D5216680DB9EB, 2C3737FB3C6BCF81D0A7293667412DDEA649A8AEA40B7ADCFCB9893E8B3C4AF3 ] C:\Program Files (x86)\PDF Architect\HelperService.exe
    21:36:03.0586 0x12d0  C:\Program Files (x86)\PDF Architect\HelperService.exe - ok
    21:36:03.0588 0x12d0  [ 50771B093AB06C6C44C9732CB777A219, 42DAA8B74CFDC60F1891F446EA53DC41D21C18611DDBB847FEDF227160E7590F ] C:\Program Files (x86)\PDF Architect\libcurl.dll
    21:36:03.0588 0x12d0  C:\Program Files (x86)\PDF Architect\libcurl.dll - ok
    21:36:03.0591 0x12d0  [ 065687F74C1F79CD31B82A3E48BF7F78, 259DCE0AFBFCD3EDBB5CE40CF4BB19E6D8C49C008DC59B49E4867FB6F5B1C16F ] C:\Program Files (x86)\PDF Architect\libeay32.dll
    21:36:03.0591 0x12d0  C:\Program Files (x86)\PDF Architect\libeay32.dll - ok
    21:36:03.0593 0x12d0  [ A40645BD5D25A0202DC9232C2BD018B3, EC92F3F913747C86F8E92FA4C55906FB042DE7EAFE9D500D20E3848EDCB05517 ] C:\Program Files (x86)\PDF Architect\ssleay32.dll
    21:36:03.0593 0x12d0  C:\Program Files (x86)\PDF Architect\ssleay32.dll - ok
    21:36:03.0596 0x12d0  [ BCD1990A767513CFC5EAE516450BBE89, 9860B11BBE7BBA95A4841A99261E717F894CAB09F19096223E810FE5EAAC474C ] C:\Windows\System32\spool\drivers\x64\3\E_YABRJHE.DLL
    21:36:03.0596 0x12d0  C:\Windows\System32\spool\drivers\x64\3\E_YABRJHE.DLL - ok
    21:36:03.0598 0x12d0  [ 4C5F631BE4BA554D482FFE85133C0EC5, ECA37CA392BF387404A83E21634BAEA7D0A61D99947C10ABE01D336FB65652BC ] C:\Windows\System32\spool\drivers\x64\3\E_YBA7JHE.DLL
    21:36:03.0598 0x12d0  C:\Windows\System32\spool\drivers\x64\3\E_YBA7JHE.DLL - ok
    21:36:03.0601 0x12d0  [ B90A279073A815A4AA2C45A09EE004FA, 9EA27630C47F5FF99CBBE513C113F3ED01FABA0D59B9D9637764027BCC6EA24A ] C:\Program Files (x86)\PDF Architect\ConversionService.exe
    21:36:03.0601 0x12d0  C:\Program Files (x86)\PDF Architect\ConversionService.exe - ok
    21:36:03.0604 0x12d0  [ 9FA56171C452530E2F51E3238B52140B, 354CC4439429FEB625A7D786E6DBBFAD48D93094516CD2EAC426781692D46E1E ] C:\Windows\System32\bidispl.dll
    21:36:03.0604 0x12d0  C:\Windows\System32\bidispl.dll - ok
    21:36:03.0606 0x12d0  [ B3E76A119F522F981D672DD93ED74081, B00B08C496E092D4B5F75B032D3CE79AE3DAA58F939AB3385D71CE4F27323C90 ] C:\Windows\System32\spool\drivers\x64\3\E_YBL6JHE.DLL
    21:36:03.0606 0x12d0  C:\Windows\System32\spool\drivers\x64\3\E_YBL6JHE.DLL - ok
    21:36:03.0609 0x12d0  [ 05ED7941B21C09A585F4D6A1841CE448, B10A381C01FCCFFAF1E2BEE00A12EAF537C0B362BCD0BF2F8014BA307A312ABB ] C:\Windows\System32\spool\drivers\x64\3\E_YBEWJHE.DLL
    21:36:03.0609 0x12d0  C:\Windows\System32\spool\drivers\x64\3\E_YBEWJHE.DLL - ok
    21:36:03.0611 0x12d0  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] C:\Windows\System32\drivers\PEAuth.sys
    21:36:03.0611 0x12d0  C:\Windows\System32\drivers\PEAuth.sys - ok
    21:36:03.0614 0x12d0  [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] C:\Windows\System32\HPZipm12.dll
    21:36:03.0614 0x12d0  C:\Windows\System32\HPZipm12.dll - ok
    21:36:03.0616 0x12d0  [ 7D16196C58287F15272DD885F8DA7F0E, FF04B4C78491F607700B2A1D67A140A6547D212438716DFA17D916892B3BBBA0 ] C:\Windows\System32\spool\drivers\x64\3\E_YERSJHE.DLL
    21:36:03.0616 0x12d0  C:\Windows\System32\spool\drivers\x64\3\E_YERSJHE.DLL - ok
    21:36:03.0619 0x12d0  [ 831883B107684301F48ACE752C963984, EAF383C4ACC17DBB060BB8398225222175E028E1E332E2CE0548C97DAED3620E ] C:\Windows\SysWOW64\PnkBstrA.exe
    21:36:03.0619 0x12d0  C:\Windows\SysWOW64\PnkBstrA.exe - ok
    21:36:03.0621 0x12d0  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] C:\Windows\System32\drivers\secdrv.sys
    21:36:03.0621 0x12d0  C:\Windows\System32\drivers\secdrv.sys - ok
    21:36:03.0623 0x12d0  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] C:\Windows\System32\seclogon.dll
    21:36:03.0623 0x12d0  C:\Windows\System32\seclogon.dll - ok
    21:36:03.0626 0x12d0  [ 27B9E163740A226B65E4B9E186117911, 17411C6A6C1E699BC4B0C04D782FD9AA09CF577DBA41E743F7588904D489CB9F ] C:\Windows\System32\sqmapi.dll
    21:36:03.0626 0x12d0  C:\Windows\System32\sqmapi.dll - ok
    21:36:03.0628 0x12d0  [ 210FCACAF902B2CD47CF9FD17D846146, 3F77AC721E084864C5966FF5337A90185F62203DC19C685328675500D629CB87 ] C:\Windows\System32\aeevts.dll
    21:36:03.0628 0x12d0  C:\Windows\System32\aeevts.dll - ok
    21:36:03.0631 0x12d0  [ 74EC60E20516AAA573BE74F31175270F, 35A68231368DEE46FEF2A4E30BFAAC38F093FC5A362A7491ED38BDE11F0FC356 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
    21:36:03.0631 0x12d0  C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe - ok
    21:36:03.0633 0x12d0  [ E14EC69620F1924A3318C3D7CA9A02B6, DBC7A44BFF3A9A8CCD4ECCED5DF0C2447A4869553A2FB6585AC8595E9072E7E0 ] C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll
    21:36:03.0633 0x12d0  C:\Program Files (x86)\Dell DataSafe Local Backup\SDSSmartRepairTools.dll - ok
    21:36:03.0636 0x12d0  [ 704314FD398C81D5F342CAA5DF7B7F21, CDA660E1E8AAE0789780B6B9604B138E67B2BDD1404A5E4C2354B35879D43085 ] C:\Windows\SysWOW64\wbemcomn.dll
    21:36:03.0636 0x12d0  C:\Windows\SysWOW64\wbemcomn.dll - ok
    21:36:03.0639 0x12d0  [ C5B0324DB461559ADD070E632A6919FA, AB09CACB5B7DD372B27921A5E01220552A611CECA27EF87961001FA467FDED45 ] C:\Windows\SysWOW64\wbem\wbemprox.dll
    21:36:03.0639 0x12d0  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
    21:36:03.0641 0x12d0  [ 8B8D1CEF498678CAB9DF17145D34BC64, B833545CC592BBF77F4F3E6BA9961D10673AA3F4E2CF6369F6A3BDAF1BC02026 ] C:\Windows\SysWOW64\msxml3.dll
    21:36:03.0641 0x12d0  C:\Windows\SysWOW64\msxml3.dll - ok
    21:36:03.0643 0x12d0  [ C8E8B8239FCF17BEA10E751BE5854631, CB869195E78AB613CEF50AE3B247F0E4E42F233A7AAF5B2BFC5ADEA2C45C5F8D ] C:\Windows\System32\FXSRESM.dll
    21:36:03.0643 0x12d0  C:\Windows\System32\FXSRESM.dll - ok
    21:36:03.0646 0x12d0  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] C:\Program Files (x86)\Skype\Updater\Updater.exe
    21:36:03.0646 0x12d0  C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
    21:36:03.0648 0x12d0  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] C:\Windows\System32\drivers\srvnet.sys
    21:36:03.0648 0x12d0  C:\Windows\System32\drivers\srvnet.sys - ok
    21:36:03.0651 0x12d0  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] C:\Windows\System32\wiaservc.dll
    21:36:03.0651 0x12d0  C:\Windows\System32\wiaservc.dll - ok
    21:36:03.0653 0x12d0  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] C:\Windows\System32\drivers\tcpipreg.sys
    21:36:03.0653 0x12d0  C:\Windows\System32\drivers\tcpipreg.sys - ok
    21:36:03.0655 0x12d0  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] C:\Windows\System32\sysmain.dll
    21:36:03.0655 0x12d0  C:\Windows\System32\sysmain.dll - ok
    21:36:03.0658 0x12d0  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] C:\Windows\System32\tapisrv.dll
    21:36:03.0658 0x12d0  C:\Windows\System32\tapisrv.dll - ok
    21:36:03.0660 0x12d0  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5, BDA403E6CACC249C467671FB1FAF7B77FB019326BC18F9F6CF377104520E2654 ] C:\Windows\System32\wiatrace.dll
    21:36:03.0660 0x12d0  C:\Windows\System32\wiatrace.dll - ok
    21:36:03.0663 0x12d0  [ 01A402D34732CA3DA91786ADCC765069, 863AB0336B092CDF0A5256707D2EAFC0DE3A894C40944AD45A8CD54E725F3FBD ] C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
    21:36:03.0663 0x12d0  C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe - ok
    21:36:03.0665 0x12d0  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    21:36:03.0665 0x12d0  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
    21:36:03.0668 0x12d0  [ 7CBB1D4D13DC62D7F529D87151FD3CD3, DA75C5E64777F6ACE6F77A72D3362A40F8BE59DF3E6BC83550A81D9E20730401 ] C:\Program Files\Windows Defender\MpSvc.dll
    21:36:03.0668 0x12d0  C:\Program Files\Windows Defender\MpSvc.dll - ok
    21:36:03.0671 0x12d0  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] C:\Windows\System32\trkwks.dll
    21:36:03.0671 0x12d0  C:\Windows\System32\trkwks.dll - ok
    21:36:03.0673 0x12d0  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] C:\Windows\System32\wbem\WMIsvc.dll
    21:36:03.0673 0x12d0  C:\Windows\System32\wbem\WMIsvc.dll - ok
    21:36:03.0675 0x12d0  [ 72910F1DEB838E6E08A9017BFB7D4F0B, A2EAE06069778605765ECB4734760BA296707ED6E166F85F31603F5D79ACC125 ] C:\Windows\SysWOW64\browcli.dll
    21:36:03.0675 0x12d0  C:\Windows\SysWOW64\browcli.dll - ok
    21:36:03.0678 0x12d0  [ 39C5F32747B3414D1BB216FDB1DEFC58, 6FAE64CB9748304090113903A5AE9E7154BE16BA2EEA7AB3EF04AB9D79B81380 ] C:\Windows\SysWOW64\dwmapi.dll
    21:36:03.0678 0x12d0  C:\Windows\SysWOW64\dwmapi.dll - ok
    21:36:03.0680 0x12d0  [ E0EA58834CD19FDFCD1BC37B22E1D3D8, F8082A45CFFB86B51BA84797451F90C5533E5B0CD9E6B5162F205147F2030A5A ] C:\Windows\SysWOW64\jsproxy.dll
    21:36:03.0680 0x12d0  C:\Windows\SysWOW64\jsproxy.dll - ok
    21:36:03.0683 0x12d0  [ 539C49CEBB3C50957AC8A09D95ECD880, 49E75CDB556FBCE72C44648F8930CF2209C1360F9311C5B4CEB19E13B11E6B75 ] C:\Windows\SysWOW64\shfolder.dll
    21:36:03.0683 0x12d0  C:\Windows\SysWOW64\shfolder.dll - ok
    21:36:03.0685 0x12d0  [ 7DB5AA22A8A8E5C2D335F44853C1F6DE, A734A20357026C42950394682A52CBC3AF956D09F1949E1B4E95467E999BC428 ] C:\Windows\System32\wbemcomn.dll
    21:36:03.0685 0x12d0  C:\Windows\System32\wbemcomn.dll - ok
    21:36:03.0688 0x12d0  [ 662BA98309818AF2C17D4E48BF4021C4, 57B3FFAECE3DF5E22B6764A95D2B8523AA02CCCB4BD0779025C11D02EEBF4B1E ] C:\Program Files\Windows Defender\MpClient.dll
    21:36:03.0688 0x12d0  C:\Program Files\Windows Defender\MpClient.dll - ok
    21:36:03.0690 0x12d0  [ 93812FDC01AA864195816CD814445F95, E5CB2576DA2905177AFD342DBE63E17CF626F93F430DEBC55155C18C60166BEE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
    21:36:03.0690 0x12d0  C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
    21:36:03.0692 0x12d0  [ B837D1528CE2E3CB79F09496BC08DDC6, ACD54CE61CFE94F23DC283537AD8FFBEB3D6041BD30317B60BA7A10FCB240A27 ] C:\Windows\System32\SensApi.dll
    21:36:03.0692 0x12d0  C:\Windows\System32\SensApi.dll - ok
    21:36:03.0695 0x12d0  [ 1075AB2C077B415760C0E948856B5126, D67804B4A038FC06BD84CBF9C047DD4C13073622027F825371DB98867EF4E9B9 ] C:\Windows\System32\wer.dll
    21:36:03.0695 0x12d0  C:\Windows\System32\wer.dll - ok
    21:36:03.0697 0x12d0  [ 7D5645EE0EA77D539828433D9B95F5EB, EEF81E9B2205FC456DB6095AD0AEAB38BB131D3BCD090EA6CD91D5568ACAFB7F ] C:\Windows\System32\WinSCard.dll
    21:36:03.0697 0x12d0  C:\Windows\System32\WinSCard.dll - ok
    21:36:03.0700 0x12d0  [ B3DC2359FA6E58C753ABE9D6F13B3608, B21984C2C1111698B9C1067EEBCAFAD6F78BAEF5D9487550BB814B3A5257555C ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe
    21:36:03.0700 0x12d0  C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe - ok
    21:36:03.0702 0x12d0  [ 0255C22D99602534F15CBB8D9B6F152F, 43CD89D6CA56E0B633142F7C86DA9E072EE0723B5EBC4CE8CCBCA58C396ECF54 ] C:\Windows\System32\wbem\WinMgmtR.dll
    21:36:03.0702 0x12d0  C:\Windows\System32\wbem\WinMgmtR.dll - ok
    21:36:03.0705 0x12d0  [ 0C52762C606BCF6A377D5E4688191A6B, C58C9A73AD07E3B93AB186D0D47C5F1CB7197771DBEE40646C3B801645BB388F ] C:\Windows\System32\wbem\WmiDcPrv.dll
    21:36:03.0705 0x12d0  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
    21:36:03.0707 0x12d0  [ 12C45E3CB6D65F73209549E2D02ECA7A, 9DFD9C58B90257C34D52B7156C1D2566BE32EE7BD4699DDE164A5F190EC4D44A ] C:\Windows\SysWOW64\propsys.dll
    21:36:03.0707 0x12d0  C:\Windows\SysWOW64\propsys.dll - ok
    21:36:03.0710 0x12d0  [ A3F5E8EC1316C3E2562B82694A251C9E, F3DC6AA6A9D3B5BBC730668FC52C1D4BB5D515D404578BDDD3D4869A7ED58822 ] C:\Windows\System32\wbem\fastprox.dll
    21:36:03.0710 0x12d0  C:\Windows\System32\wbem\fastprox.dll - ok
    21:36:03.0712 0x12d0  [ 5EB55F661DEBF156E126160BCD4D89F8, 948D1F627AA55D55FB3B558BA61B8366C5481A6041820631F24408F75EA5D2CC ] C:\Windows\System32\wbem\wbemcore.dll
    21:36:03.0712 0x12d0  C:\Windows\System32\wbem\wbemcore.dll - ok
    21:36:03.0715 0x12d0  [ DC1BBA01FFB5745B8862931E7DE7304A, BE128A621B074FEB0EFEFD5642314E911C4D1EB07B175A502006CC9F53BB1CB4 ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
    21:36:03.0715 0x12d0  C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
    21:36:03.0717 0x12d0  [ 688227D38A6FF6403B293D0C50B454B9, B0947C0707007FE5BDD0B6BF2FCB3AFB99712519ED82A7475204DB37E69CF08A ] C:\Windows\SysWOW64\ieframe.dll
    21:36:03.0717 0x12d0  C:\Windows\SysWOW64\ieframe.dll - ok
    21:36:03.0720 0x12d0  [ EE26D130808D16C0E417BBBED0451B34, 4886DCE4FAEF146A40BABD492A8000A2022FEA542A6135A9BAFD4CD09297B4E5 ] C:\Windows\System32\ntdsapi.dll
    21:36:03.0720 0x12d0  C:\Windows\System32\ntdsapi.dll - ok
    21:36:03.0722 0x12d0  [ 087D8668C71634A3A3761135ABF16EEE, B7348A63299CFF4FFBF375E645A4850AE0F108D48D13AB25434CFAE7CF3D61FD ] C:\Windows\System32\wbem\esscli.dll
    21:36:03.0722 0x12d0  C:\Windows\System32\wbem\esscli.dll - ok
    21:36:03.0724 0x12d0  [ 666A60F6F5E719856FF6254E0966EFF7, 58C072E7E215991E19C1CA062C476081982F7B9F039714539AE7FEB4981C200F ] C:\Windows\System32\wbem\wbemprox.dll
    21:36:03.0724 0x12d0  C:\Windows\System32\wbem\wbemprox.dll - ok
    21:36:03.0727 0x12d0  [ 718B6F51AB7F6FE2988A36868F9AD3AB, 76141B4E94C2766E2C34CEF523092948771A7893212EFADBE88D2171B85FF012 ] C:\Windows\System32\wbem\wbemsvc.dll
    21:36:03.0727 0x12d0  C:\Windows\System32\wbem\wbemsvc.dll - ok
    21:36:03.0729 0x12d0  [ 0143DB80DACFB7C2B5B7009ED9063353, 252885CF7C1BAB89B86908373546E5F5D674BEF7AACBDDCF321AD877CB9150A9 ] C:\Windows\System32\wbem\wmiutils.dll
    21:36:03.0729 0x12d0  C:\Windows\System32\wbem\wmiutils.dll - ok
    21:36:03.0732 0x12d0  [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A, 61B4D669C692775EF361445293163E84FAD8636AC49C8047BE806DB4E4093291 ] C:\Windows\SysWOW64\wbem\fastprox.dll
    21:36:03.0732 0x12d0  C:\Windows\SysWOW64\wbem\fastprox.dll - ok
    21:36:03.0735 0x12d0  [ 776AE0564F8B1C282E331FD95A1BDC5F, 601CFCA3922FFEA46A54AD323845A76A12FC6AF9FF64E9B0AE294FBB1AFCF4CB ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
    21:36:03.0735 0x12d0  C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
    21:36:03.0737 0x12d0  [ 0AB34456654C283DAA13B8D2BA21439B, 4B70FC5195DE39564E951C8542020BA3D4257E3D4488F69825F67A6099CB7549 ] C:\Windows\System32\wbem\repdrvfs.dll
    21:36:03.0737 0x12d0  C:\Windows\System32\wbem\repdrvfs.dll - ok
    21:36:03.0739 0x12d0  [ 20ECD0A490A121CB34F553FAD1DBBD39, 17C9DA33E78FBC7582B0AA53C611929B80FBBE1343B84A179D515B51C964D218 ] C:\Windows\System32\escsvc64.exe
    21:36:03.0739 0x12d0  C:\Windows\System32\escsvc64.exe - ok
    21:36:03.0742 0x12d0  [ EBDD3032297EF6832A1D6D3AA6DC3537, 9B637CFF4C3E0B4621C911F57E17024BD47FC96F26F320FED72694414EB145F7 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
    21:36:03.0742 0x12d0  C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe - ok
    21:36:03.0745 0x12d0  [ E3E811471DE781900FF21C1FD84E941E, 2A47FF52D1D6480AAD1919382E783EA184BF926311F8C7E466FEBE9F6FB88FD6 ] C:\Windows\SysWOW64\ntdsapi.dll
    21:36:03.0745 0x12d0  C:\Windows\SysWOW64\ntdsapi.dll - ok
    21:36:03.0747 0x12d0  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] C:\Windows\System32\drivers\srv2.sys
    21:36:03.0747 0x12d0  C:\Windows\System32\drivers\srv2.sys - ok
    21:36:03.0750 0x12d0  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] C:\Windows\System32\iphlpsvc.dll
    21:36:03.0750 0x12d0  C:\Windows\System32\iphlpsvc.dll - ok
    21:36:03.0753 0x12d0  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] C:\Windows\System32\drivers\srv.sys
    21:36:03.0753 0x12d0  C:\Windows\System32\drivers\srv.sys - ok
    21:36:03.0756 0x12d0  [ 7B38D7916A7CD058C16A0A6CA5077901, 3F6DD990E2DA5D3BD6D65A72CBFB0FE79EB30B118A8AD71B6C9BB5581A622DCE ] C:\Windows\System32\wdscore.dll
    21:36:03.0756 0x12d0  C:\Windows\System32\wdscore.dll - ok
    21:36:03.0758 0x12d0  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] C:\Windows\System32\rasmans.dll
    21:36:03.0758 0x12d0  C:\Windows\System32\rasmans.dll - ok
    21:36:03.0761 0x12d0  [ 65522E77A1360DBC8D199DA3BF5EFFE4, E9D748070FA478A3D37F15049F998D340885C0DC5FCE03BFCE5D521C9EBA7350 ] C:\Windows\System32\eappprxy.dll
    21:36:03.0761 0x12d0  C:\Windows\System32\eappprxy.dll - ok
    21:36:03.0763 0x12d0  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] C:\Windows\System32\srvsvc.dll
    21:36:03.0763 0x12d0  C:\Windows\System32\srvsvc.dll - ok
    21:36:03.0765 0x12d0  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] C:\Windows\System32\browser.dll
    21:36:03.0765 0x12d0  C:\Windows\System32\browser.dll - ok
    21:36:03.0768 0x12d0  [ 81749E073AC5857B044A686B406E5244, 3884EE705CA34235B29942FEDA8FEA654A21139B8C2A1D5E009C7D07D6E6ADF1 ] C:\Windows\System32\clusapi.dll
    21:36:03.0768 0x12d0  C:\Windows\System32\clusapi.dll - ok
    21:36:03.0770 0x12d0  [ CFEFA40DDE34659BE5211966EAD86437, AC0A3AD8AA47012C40785013E2273FC571F416BC9C9FFDA418FE72B3123C1FB0 ] C:\Windows\System32\netmsg.dll
    21:36:03.0770 0x12d0  C:\Windows\System32\netmsg.dll - ok
    21:36:03.0772 0x12d0  [ FF80CAD87555E8E4D2CFD7B9058343F8, 07653773FBEC1996408B8507B08E0E1E812830063F932F897F4B39EE63DDCDC4 ] C:\Windows\System32\sscore.dll
    21:36:03.0772 0x12d0  C:\Windows\System32\sscore.dll - ok
    21:36:03.0775 0x12d0  [ 344FCC9850C3A8A3B4D3C65151AF8E4C, C38853454E153B1AB4AEAE1AAFB7CB4B2E6234208CF24C09F3B2AFE25E271C5C ] C:\Windows\System32\resutils.dll
    21:36:03.0775 0x12d0  C:\Windows\System32\resutils.dll - ok
    21:36:03.0777 0x12d0  [ 44C96B48112EB24AE7764EBF1C527000, 6691D008C834686906B4841EF27604B0F0E70E668C09CEE19369426BF168AF44 ] C:\Windows\System32\rastapi.dll
    21:36:03.0777 0x12d0  C:\Windows\System32\rastapi.dll - ok
    21:36:03.0780 0x12d0  [ FAFAE01E889DC9C05A6CA2138CFC220B, 192CFDE3593ED0A9B397461D912074C0F062015C23E6F6658571C7C2864D9A51 ] C:\Windows\System32\tapi32.dll
    21:36:03.0780 0x12d0  C:\Windows\System32\tapi32.dll - ok
    21:36:03.0782 0x12d0  [ 03706015DB44368375AEBE6339490E66, 02EB28B5156E320C1EBABC03D37E94EB770A721B99E1DD276F8DC2A50D76C381 ] C:\Windows\System32\netcfgx.dll
    21:36:03.0782 0x12d0  C:\Windows\System32\netcfgx.dll - ok
    21:36:03.0785 0x12d0  [ 9839C4217EBD9A6B84B60FF2FBD9B1A5, C1299764B7284F7B6490A51FB6BDE515E3F380D7B3BA9343E7100D9EBB776177 ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe
    21:36:03.0785 0x12d0  C:\Program Files (x86)\Dell DataSafe Local Backup\RPLauncher.exe - ok
    21:36:03.0787 0x12d0  [ 3B367397320C26DBA890B260F80D1B1B, 50BBE71B4380B5E86E197AF86F5C08266DD6B12344BA4ABDEA604B8C774C4147 ] C:\Windows\System32\hnetcfg.dll
    21:36:03.0787 0x12d0  C:\Windows\System32\hnetcfg.dll - ok
    21:36:03.0790 0x12d0  [ FEB91B4DA0D540865260A33838654FA3, 8636B008BA329D3E6CC235D08BA4C914EFF45DBFCB9297C893CCDA8D907BA946 ] C:\Windows\System32\nci.dll
    21:36:03.0790 0x12d0  C:\Windows\System32\nci.dll - ok
    21:36:03.0792 0x12d0  [ D2A0FFA75AB181B19B5EB93BB29C7686, AC282D5EFFB191492F14638EB80F18E53C4A3D26C94A00A949366B3564D6C3E2 ] C:\Windows\System32\unimdm.tsp
    21:36:03.0792 0x12d0  C:\Windows\System32\unimdm.tsp - ok
    21:36:03.0795 0x12d0  [ D83947A58613E9091B4C9CC0F1546A8D, C71DF6E18E2099FC462717B8658D39C607A62C7E7A1E5CD0E258C17434535AD0 ] C:\Windows\SysWOW64\mscoree.dll
    21:36:03.0795 0x12d0  C:\Windows\SysWOW64\mscoree.dll - ok
    21:36:03.0797 0x12d0  [ 75F5E1FE8D55CF8E577E0EC5F2290D3F, F4E2C81F0834018052A481AE8D7DF4780302A6844160CCDC09F7D82D3B992BDE ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll
    21:36:03.0797 0x12d0  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll - ok
    21:36:03.0800 0x12d0  [ 5E3C0E5FFDA48C5DA35BBFB8EFFF8066, E2BBCC111DB1CE6072CB796F21677E4529029CE66DDC471EC793278F81F1FCF6 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
    21:36:03.0800 0x12d0  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
    21:36:03.0803 0x12d0  [ 94B7DF336815B47236724019FAB24B7C, 43549F1FB89D0585A0E0333BB8E1DDED2EBD0F3C0EC3EA93B238EA037188AA41 ] C:\Windows\System32\uniplat.dll
    21:36:03.0803 0x12d0  C:\Windows\System32\uniplat.dll - ok
    21:36:03.0805 0x12d0  [ 41326DD08ACC0CDC5F8177AF96C066E8, 9C21BB553EEDD28272E865396C9EF94655EC1CF216290A56581AEF7908B7AFDD ] C:\Windows\System32\kmddsp.tsp
    21:36:03.0805 0x12d0  C:\Windows\System32\kmddsp.tsp - ok
    21:36:03.0808 0x12d0  [ CE38536E05E23FE796C11AFFAB6FA842, C513ECE5B70D433C7D97009307C3CCFDD0E5ED77423AD57319EC8390DAEFD0BC ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
    21:36:03.0808 0x12d0  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
    21:36:03.0810 0x12d0  [ 1D6BC2769DA66C1145F4DA5A65F52E61, B38EFF16652E751BF3B3BD85DA6EA33AB9B7F4228C59F741074E33085DB66ED0 ] C:\Windows\System32\ndptsp.tsp
    21:36:03.0810 0x12d0  C:\Windows\System32\ndptsp.tsp - ok
    21:36:03.0813 0x12d0  [ 96C70BD48D49B87475F4572DEDC62EB9, DA841CEBDFF2C5821D4D3396BD9299940A4A2927C161554B66AB8F58CBF04467 ] C:\Windows\AppPatch\AcLayers.dll
    21:36:03.0813 0x12d0  C:\Windows\AppPatch\AcLayers.dll - ok
    21:36:03.0815 0x12d0  [ 7C1BAE7D23D4874FEE256A2B9C00E019, 4EE87C2F0CACE557AA159349133474A5857B6667DDB976BA5A18489A3333F798 ] C:\Windows\System32\hidphone.tsp
    21:36:03.0815 0x12d0  C:\Windows\System32\hidphone.tsp - ok
    21:36:03.0817 0x12d0  [ A717A35120DBAB5AB707AB40662AF9DD, DE117E70D0AC7FC26BBCEAAB45A0270A1065B36CC8B062B4128B561F2AAA9E04 ] C:\Windows\System32\rasppp.dll
    21:36:03.0817 0x12d0  C:\Windows\System32\rasppp.dll - ok
    21:36:03.0820 0x12d0  [ 0D753307D274F3688BD21C377B616700, 5DD08E77A11F2561FB96BA212FDDFE21D4394C69C34C3EB88F7F5CD068EE55BF ] C:\Windows\System32\eappcfg.dll
    21:36:03.0820 0x12d0  C:\Windows\System32\eappcfg.dll - ok
    21:36:03.0822 0x12d0  [ 0FE5CD5F9C9248F42D1EF56E495B182E, 1EBD40C119A3D3251A19A8D15669D9DCB5D3CFBC3AFCF1CD00101C31320243E1 ] C:\Windows\System32\vpnike.dll
    21:36:03.0822 0x12d0  C:\Windows\System32\vpnike.dll - ok
    21:36:03.0825 0x12d0  [ 60F4AEFA103D421EA4A40E31409B4756, 037A8605CA504A4FF43E9D4DE9017CEA1E26D3556C975872C747E24D8B0835EF ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
    21:36:03.0825 0x12d0  C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
    21:36:03.0827 0x12d0  [ 6A84E68B538B8B04608BF2F0D426CE6F, 59CE1C06364D1BBEE853DA4AEC1E8B678D6E181723ACCF6DB9F9776CAD47BBDA ] C:\Windows\System32\raschap.dll
    21:36:03.0827 0x12d0  C:\Windows\System32\raschap.dll - ok
    21:36:03.0830 0x12d0  [ CD4F7B90CB09831BCDEDE0A206CCDB35, 938FCE84B91950D557CD9381210D282FDEB30F2E9A73BCDEF170CC5A59F47E8C ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
    21:36:03.0830 0x12d0  C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe - ok
    21:36:03.0833 0x12d0  [ BF85366B209DFC11BAB31380C7C47E31, FCF733B04994664B17CD988B430D5C01AD9A02DF645342D0B8E387D49970D7FB ] C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe
    21:36:03.0833 0x12d0  C:\Program Files (x86)\Dell DataSafe Local Backup\RPLaunch.exe - ok
    21:36:03.0835 0x12d0  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] C:\Windows\System32\ipnathlp.dll
    21:36:03.0835 0x12d0  C:\Windows\System32\ipnathlp.dll - ok
    21:36:03.0838 0x12d0  [ 2DF29664ED261F0FC448E58F338F0671, 4EFE79C383D0AF126FC4EE668D822563F8F037B1E61D73747A35FE11AAFDB8CE ] C:\Windows\System32\mprapi.dll
    21:36:03.0838 0x12d0  C:\Windows\System32\mprapi.dll - ok
    21:36:03.0840 0x12d0  [ A42F2C1EB3B66C54FB3C7B79D30C1A6D, A63836DB3B01835DC1311526A95198D6EBCCB1DC9DDAFBC38EC36C128CDB98B9 ] C:\Windows\System32\netshell.dll
    21:36:03.0840 0x12d0  C:\Windows\System32\netshell.dll - ok
    21:36:03.0843 0x12d0  [ 0AFCE8EEF3751810FE2101FD608FB8B3, B015D780C38BB282DBA7B16325D03B0869D68B93DFBED3D40D97AB3F774C587A ] C:\Windows\SysWOW64\urlmon.dll
    21:36:03.0843 0x12d0  C:\Windows\SysWOW64\urlmon.dll - ok
    21:36:03.0845 0x12d0  [ 2E483EC51216B52C711C7EC642798BB7, 98DFAAEA25FE4A450FEA18F36E0B0AA6143A0D1C89CB406857BEE5154D5931BB ] C:\Windows\System32\sti.dll
    21:36:03.0845 0x12d0  C:\Windows\System32\sti.dll - ok
    21:36:03.0848 0x12d0  [ 1C60E09CA1C3A045BC4D367F67C915B7, DF1ED88CB57DA1AB1A4245AE0D5B42AFA3396EBF67B99411FFFB0DD06DE1AEAF ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
    21:36:03.0848 0x12d0  C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
    21:36:03.0850 0x12d0  [ 49ACA548B2423F1C67898E6AC719A9A6, 23D84137EAB9AFDD31CBB6776B6B25AD135A120AF7F7885EB5BBF9E0A2CCC4C1 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
    21:36:03.0850 0x12d0  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
    21:36:03.0853 0x12d0  [ 09890A2F032B138A74B5DF2C1233FB1D, 41444DE5D883F252E343E0B980F1D0C6AAF43C4EBC146E8C1A6E87F3A173E526 ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
    21:36:03.0853 0x12d0  C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe - ok
    21:36:03.0856 0x12d0  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9, E18D66455D00A6D2A2D7CC0833C233FE8A6DD910B59D6B5B5F82EF91450858DF ] C:\Windows\SysWOW64\sfc.dll
    21:36:03.0856 0x12d0  C:\Windows\SysWOW64\sfc.dll - ok
    21:36:03.0858 0x12d0  [ 84799328D87B3091A3BDD251E1AD31F9, F85521215924388830DBB13580688DB70B46AF4C7D82D549D09086438F8D237B ] C:\Windows\SysWOW64\sfc_os.dll
    21:36:03.0858 0x12d0  C:\Windows\SysWOW64\sfc_os.dll - ok
    21:36:03.0860 0x12d0  [ 162D247E995EAEBF3EF4289069E1111C, 19E858E9902E2D570FFD24AE2CB4165273F5BAB1FF7B04758B11AB5CD41FD752 ] C:\Windows\SysWOW64\devrtl.dll
    21:36:03.0860 0x12d0  C:\Windows\SysWOW64\devrtl.dll - ok
    21:36:03.0863 0x12d0  [ 42EBC2ECBB81A0FFE720601500760C7E, 29960175ECB7459AB8EE9E238B66CF592255F333A63E9B6653C32091D73A830D ] C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe
    21:36:03.0863 0x12d0  C:\Program Files (x86)\Dell DataSafe Local Backup\SetMUILanguage.exe - ok
    21:36:03.0865 0x12d0  [ 93C2D166F5C3C14B32B15184254049C3, 397879F4974CD03FBEE3DC3EA859F1BE3B9E3269603F053CE17DCBC384B83B34 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\ede2c6c842840e009f01bcc74fa4c457\mscorlib.ni.dll
    21:36:03.0865 0x12d0  C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\ede2c6c842840e009f01bcc74fa4c457\mscorlib.ni.dll - ok
    21:36:03.0868 0x12d0  [ ECA6AC33BD9E441F7B47D173D715D268, 5B9017F80BD8C7823CFE1AB4C21D91388E1B31BF0D77058A98791D2FACA11EB6 ] C:\Windows\System32\msxml3.dll
    21:36:03.0868 0x12d0  C:\Windows\System32\msxml3.dll - ok
    21:36:03.0870 0x12d0  [ DDD0357A92FA843EFF8915ED17253D6C, 0C78B1D41F0A7821186ADF653504F2BFF067CB512CB0E932047C301378BBADB6 ] C:\Windows\System32\wbem\WmiPrvSD.dll
    21:36:03.0870 0x12d0  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
    21:36:03.0873 0x12d0  [ 6E9E439517D89EDC9A6CB1E94489620A, 2E56936B6780C7377DDF468EA5F4115BBBFE7B43E5813710621003F401E1F7ED ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll
    21:36:03.0873 0x12d0  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsec.dll - ok
    21:36:03.0875 0x12d0  [ 102CF6879887BBE846A00C459E6D4ABC, A4C51C79CF95D5C79DCEFB02946A09A987FEAF83CE2EE1BA7677EBA90869AC80 ] C:\Windows\SysWOW64\riched20.dll
    21:36:03.0875 0x12d0  C:\Windows\SysWOW64\riched20.dll - ok
    21:36:03.0878 0x12d0  [ D41FEBD098234F02485A4EA98D4730A4, 462DC8168C444F35B43BA3B8F7D77734665D84F1C6D25CAD7391C0145961628F ] C:\Windows\System32\ncobjapi.dll
    21:36:03.0878 0x12d0  C:\Windows\System32\ncobjapi.dll - ok
    21:36:03.0880 0x12d0  [ 70A176BF2ED362862944C371838262F8, 7F54164AB73160826991B565D1B1804BA9F6223830503B5A4F84B7E8AEFAF6A1 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
    21:36:03.0880 0x12d0  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
    21:36:03.0883 0x12d0  [ 6F40D6FB05E0C1E5402812B426971AF0, E41F138F0F2DB057F8DBB1587237C6FA8A2059B3D64EC894D1DC492A18DBBDED ] C:\Windows\System32\wbem\wbemess.dll
    21:36:03.0883 0x12d0  C:\Windows\System32\wbem\wbemess.dll - ok
    21:36:03.0886 0x12d0  [ 1DAE5C46D42B02A6D5862E1482EFB390, 90B14E0A8376AE51872D89C141E88AE144B742805F94B4F7948E295322C78B9D ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
    21:36:03.0886 0x12d0  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll - ok
    21:36:03.0888 0x12d0  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] C:\Windows\System32\hidserv.dll
    21:36:03.0888 0x12d0  C:\Windows\System32\hidserv.dll - ok
    21:36:03.0890 0x12d0  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] C:\Windows\System32\qmgr.dll
    21:36:03.0891 0x12d0  C:\Windows\System32\qmgr.dll - ok
    21:36:03.0893 0x12d0  [ 619A67C9F617B7E69315BB28ECD5E1DF, F34F231D117CCDFEBB9CB35C8D6FDFA7051DA27FDC1204FCCFF361FC0B13A0FF ] C:\Windows\System32\wbem\WmiPrvSE.exe
    21:36:03.0893 0x12d0  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
    21:36:03.0895 0x12d0  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] C:\Windows\System32\wdi.dll
    21:36:03.0895 0x12d0  C:\Windows\System32\wdi.dll - ok
    21:36:03.0898 0x12d0  [ 919001D2BB17DF06CA3F8AC16AD039F6, 5169ACFBE9E9D4C4012773ECDD28231C952675EF0C272A40F226E7B5D671B18B ] C:\Windows\SysWOW64\sxs.dll
    21:36:03.0898 0x12d0  C:\Windows\SysWOW64\sxs.dll - ok
    21:36:03.0900 0x12d0  [ E1B22739C933BE33F53DB58C5393ADD3, 26EE0DD091D2E00DECC774DC1EEDFFDE69AF74B0C769CCBE091AFC32C66E4207 ] C:\Windows\System32\Apphlpdm.dll
    21:36:03.0900 0x12d0  C:\Windows\System32\Apphlpdm.dll - ok
    21:36:03.0902 0x12d0  [ F7073C962C4FB7C415565DDE109DE49F, 781E7088DCEFBC34A808C3E7DA41A56112B3F23ABE9F54B5EF4D5CD9CD016B1D ] C:\Windows\System32\npmproxy.dll
    21:36:03.0902 0x12d0  C:\Windows\System32\npmproxy.dll - ok
    21:36:03.0905 0x12d0  [ A3FCC4F97551087D65F8FEE879FEF736, 000EA00FD2644531F38D215972C22FE2BCE5B01CF483071398053099A342BF74 ] C:\Windows\System32\tdh.dll
    21:36:03.0905 0x12d0  C:\Windows\System32\tdh.dll - ok
    21:36:03.0907 0x12d0  [ 1FB646943586EA75ACB7F93CA0CF57C8, 1E10A03EA618AC02575F3E9A3BF82BC39CD8D298B23D3212A9AC861583FDC2AA ] C:\Windows\System32\whealogr.dll
    21:36:03.0907 0x12d0  C:\Windows\System32\whealogr.dll - ok
    21:36:03.0910 0x12d0  [ E629F1A051C82795DDFFD3E8D4855811, 6E4DFFEAB2795C98EA6DCAF10EA6D97413D0F8CA0C04869CB20B74FF4D6FE679 ] C:\Windows\System32\dimsjob.dll
    21:36:03.0910 0x12d0  C:\Windows\System32\dimsjob.dll - ok
    21:36:03.0912 0x12d0  [ 29409ED7400CA5BCCC30C0EE5147A60D, FCC41E4308A1648CE810105AACED08295C53E25178D6C40C9DF61E9397C579D6 ] C:\Windows\System32\bitsperf.dll
    21:36:03.0912 0x12d0  C:\Windows\System32\bitsperf.dll - ok
    21:36:03.0914 0x12d0  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] C:\Windows\System32\appinfo.dll
    21:36:03.0914 0x12d0  C:\Windows\System32\appinfo.dll - ok
    21:36:03.0917 0x12d0  [ 94DFBB481BF51158B216E23C5C1C9D6E, 0199086A70B9B63E48A7A15C8AE5442E9C6BC0173BD80A104DE1BE6A6C25F202 ] C:\Windows\System32\certcli.dll
    21:36:03.0917 0x12d0  C:\Windows\System32\certcli.dll - ok
    21:36:03.0919 0x12d0  [ 35CB97CBC3EDC463418ED4997AAB29B6, EE60EABE2D87CEDD68FB8985B6C5D70930015FB2B8DB9FDCB4044587BC6ECA4C ] C:\Windows\System32\pautoenr.dll
    21:36:03.0919 0x12d0  C:\Windows\System32\pautoenr.dll - ok
    21:36:03.0922 0x12d0  [ D9431DCF90B0253773F51FDEFE7FD42F, E53C40CC0EC603CF67305F0AA81389124CF6E709A22DABF13563CBAD15897422 ] C:\Windows\System32\bitsigd.dll
    21:36:03.0922 0x12d0  C:\Windows\System32\bitsigd.dll - ok
    21:36:03.0924 0x12d0  [ 96DB78C9C50CEED9DA5050EFFEE272A2, 51CF3E1F96555A4E4B5BC0DE2598CE5A0199F495644A91C2105F25A5A4CF10E3 ] C:\Windows\System32\upnp.dll
    21:36:03.0924 0x12d0  C:\Windows\System32\upnp.dll - ok
    21:36:03.0927 0x12d0  [ 4449D23E8F197862F1B16F1E6C89C36C, 93AF52BF8E870C0381F027D3BB8F6829E449242074472F1593EB8172D7EB6559 ] C:\Windows\System32\diagperf.dll
    21:36:03.0927 0x12d0  C:\Windows\System32\diagperf.dll - ok
    21:36:03.0929 0x12d0  [ BF4AC709BE5BF64F331F5D67773A0C82, 96E5A2A12D386B8A7976FEC76FD350E6A3EEBDF5763F4BBF4AB18880E9F269E0 ] C:\Windows\System32\perftrack.dll
    21:36:03.0929 0x12d0  C:\Windows\System32\perftrack.dll - ok
    21:36:03.0932 0x12d0  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] C:\Windows\System32\ssdpsrv.dll
    21:36:03.0932 0x12d0  C:\Windows\System32\ssdpsrv.dll - ok
    21:36:03.0934 0x12d0  [ 47AC56BC5FA5D41F73940A02686627CB, D703882213C0B2972AA4A0D3608C4632477D4797961395158141FE8F6CF6EF2A ] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STSCheduler.dll
    21:36:03.0934 0x12d0  C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STSCheduler.dll - ok
    21:36:03.0937 0x12d0  [ 263B26106606A010CF877472B535E4BB, 43ECE89E428D2BB34244894BEBA1B946B0767649D15B1C715223E4E471A9E504 ] C:\Windows\System32\CertEnroll.dll
    21:36:03.0937 0x12d0  C:\Windows\System32\CertEnroll.dll - ok
    21:36:03.0940 0x12d0  [ 6607C2182C6A53ED983813AFE2F85768, FC9E718ABC4E0FBC7B0DD145F9C377A1800A7776AD832AB645796E13B1E15A1F ] C:\Windows\System32\wbem\cimwin32.dll
    21:36:03.0940 0x12d0  C:\Windows\System32\wbem\cimwin32.dll - ok
    21:36:03.0942 0x12d0  [ 0A473BEFD39B78EDD82C2BDA84529ADA, C356134E36CC05FD835CE14CD1406D057DBA87C0765E31E3FB610C6F7925A2DA ] C:\Windows\System32\wbem\Win32_EncryptableVolume.dll
    21:36:03.0942 0x12d0  C:\Windows\System32\wbem\Win32_EncryptableVolume.dll - ok
    21:36:03.0944 0x12d0  [ 025E7DBDB98866ED3CB2D4DDA70B364D, 78962F23F066E362AF1A4B98FA7D5E30AF30C561307438503031D30C944B6A6E ] C:\Windows\System32\runonce.exe
    21:36:03.0944 0x12d0  C:\Windows\System32\runonce.exe - ok
    21:36:03.0947 0x12d0  [ D44741F65A1D71F65814A12CF6E2400A, C6721F830675ADC7E7FDE2B5E822E56F6A063146F5066F1E25EBFE86F0A87136 ] C:\Windows\SysWOW64\runonce.exe
    21:36:03.0947 0x12d0  C:\Windows\SysWOW64\runonce.exe - ok
    21:36:03.0949 0x12d0  [ 9719E3D834F5C8C43F56A93DFA497023, 4D78D4BD4835C0A237821967156C19DF4B90384A6BCB1F48CEAF35D003A0099A ] C:\Windows\System32\pnpts.dll
    21:36:03.0949 0x12d0  C:\Windows\System32\pnpts.dll - ok
    21:36:03.0951 0x12d0  [ 1484B9EBF567346582DE571B0E164AE0, 9862BF22B2E32DABE7A82ACEE5B4EA1F0A93BDC3C71B20A6A4E568CCCD76A7A6 ] C:\Windows\System32\framedynos.dll
    21:36:03.0951 0x12d0  C:\Windows\System32\framedynos.dll - ok
    21:36:03.0954 0x12d0  [ C00DB14550E4BD49737F311C644E45FF, 7085C47DADEED82B6F98ED3903197D76B648E9D6CC67D40C789E236264D9A0DC ] C:\Windows\System32\wmi.dll
    21:36:03.0954 0x12d0  C:\Windows\System32\wmi.dll - ok
    21:36:03.0956 0x12d0  [ 780836BB63852990382DF27DE7FEFD20, 3BBBF787D5B383146AFDA55514A28764AE0CCD42C7F1298C94F0804DAE61D377 ] C:\Windows\System32\bcdedit.exe
    21:36:03.0956 0x12d0  C:\Windows\System32\bcdedit.exe - ok
    21:36:03.0959 0x12d0  [ 46863C4CC5B68EB09EA2D5EEF0F1193A, 9B5593E1F484AC8F96F89A5995FB1FE9C51CB2F0F545607F6850751191150CFE ] C:\Windows\System32\radardt.dll
    21:36:03.0959 0x12d0  C:\Windows\System32\radardt.dll - ok
    21:36:03.0961 0x12d0  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] C:\Windows\System32\IPSECSVC.DLL
    21:36:03.0961 0x12d0  C:\Windows\System32\IPSECSVC.DLL - ok
    21:36:03.0964 0x12d0  [ E811F8510B133E70CF6E509FB809824F, 82541F2B15748250462B67B6C77530D4F7C45A1482237EC49B28F9FA5A414108 ] C:\Windows\System32\wdiasqmmodule.dll
    21:36:03.0964 0x12d0  C:\Windows\System32\wdiasqmmodule.dll - ok
    21:36:03.0966 0x12d0  [ AC5DF873913B00E554D8F553459BC431, 86FC6E15BD67AEB714E44C088EDA1C17BAC25A1EC67A518A05878D594F293394 ] C:\Windows\System32\qmgrprxy.dll
    21:36:03.0966 0x12d0  C:\Windows\System32\qmgrprxy.dll - ok
    21:36:03.0968 0x12d0  [ 85B45B4B285B159ACDB355FC8C1E8925, EBB4A5472306A284D3A845347E2A79B13EFCCBA86705E1D49DE8AC44D8D06112 ] C:\Windows\SysWOW64\qmgrprxy.dll
    21:36:03.0968 0x12d0  C:\Windows\SysWOW64\qmgrprxy.dll - ok
    21:36:03.0971 0x12d0  [ 88D3F73B4125328C4E79FE89F5068CC1, 31ACB1E902361FD1A592EE5C5DC90CBDE7857876709FFACD6D4F4E19CF46C740 ] C:\Program Files (x86)\iTunes\iTunes.exe
    21:36:03.0971 0x12d0  C:\Program Files (x86)\iTunes\iTunes.exe - ok
    21:36:03.0973 0x12d0  [ 9BC93C9ACFA34DB5A41B89357B31E4ED, C3B9DDCB31970F91F8CAF85D2431903DB1738872775EEFD6712B7646BDE1250C ] C:\Windows\System32\FwRemoteSvr.dll
    21:36:03.0973 0x12d0  C:\Windows\System32\FwRemoteSvr.dll - ok
    21:36:03.0976 0x12d0  [ 12FA963ACE9A6E23487AFD06FDD4A519, 5C6F1EC2A3E7D744F950F2C53B04DEA5AFDB8C4ECE2BE19940944E6F9A7326FC ] C:\Program Files (x86)\7-Zip\7zFM.exe
    21:36:03.0976 0x12d0  C:\Program Files (x86)\7-Zip\7zFM.exe - ok
    21:36:03.0978 0x12d0  [ AD7B9C14083B52BC532FBA5948342B98, 17F746D82695FA9B35493B41859D39D786D32B23A9D2E00F4011DEC7A02402AE ] C:\Windows\SysWOW64\cmd.exe
    21:36:03.0978 0x12d0  C:\Windows\SysWOW64\cmd.exe - ok
    21:36:03.0981 0x12d0  [ A5FCD42334CCC682DA1882A54338686C, 74C8B614672D1A7F0889243056EA4B3E03B5F66DFDFEFF5DD6CC17DBE088D18F ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
    21:36:03.0981 0x12d0  C:\Program Files (x86)\Google\Chrome\Application\chrome.exe - ok
    21:36:03.0983 0x12d0  [ 326C7F76A29897A892AA7726E91C1C67, 64305346B06EC14976130B0B80F14B4D5AB63E5B2A6A7B872EC9CE2BF8FADCD2 ] C:\Windows\SysWOW64\winbrand.dll
    21:36:03.0983 0x12d0  C:\Windows\SysWOW64\winbrand.dll - ok
    21:36:03.0986 0x12d0  [ 60F88F6CA6303E8273AF7AAA9AAFECAC, 59A69621A4218F62246FAA6FEA9469A83D6998D80FF48EA358C6E4BBEEF5FF5E ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
    21:36:03.0986 0x12d0  C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
    21:36:03.0989 0x12d0  [ 2C4A87CA8C00E98EFDCFA2E8EC9A3503, DA59CE662E98E56D89E2894D2AC8B9F324C16DA23C860640EDC2C82E0AD06097 ] C:\Windows\SysWOW64\shdocvw.dll
    21:36:03.0989 0x12d0  C:\Windows\SysWOW64\shdocvw.dll - ok
    21:36:03.0992 0x12d0  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] C:\Windows\System32\aelupsvc.dll
    21:36:03.0992 0x12d0  C:\Windows\System32\aelupsvc.dll - ok
    21:36:03.0994 0x12d0  [ 94E3A2D6251A35ED69DB3221329E8584, EE55890F58C13E5A2540196ECFC0789EE027FCD4819B2040162D76F7AE2C6A68 ] C:\Users\Aleiyia\AppData\Local\Temp\{5D5388A4-A3F6-4921-A3E1-89D8D21FFB75}.exe
    21:36:03.0994 0x12d0  C:\Users\Aleiyia\AppData\Local\Temp\{5D5388A4-A3F6-4921-A3E1-89D8D21FFB75}.exe - ok
    21:36:03.0997 0x12d0  [ 09A116FB06C5E362EF8938D29CDAB27B, 887B39388C39FF262FBBE3047FA1F5F47EB649AF3D760865AFE614DE64160D33 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
    21:36:03.0997 0x12d0  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
    21:36:03.0999 0x12d0  [ 0F42F3605AB5C3679765FF1081275EF3, 50BD23EC2590C1083EA33E3D1E3448244A3D8995672DFB4DBC409E20FA9BF2FF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b3a78269847005365001c33870cd121f\System.ni.dll
    21:36:03.0999 0x12d0  C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b3a78269847005365001c33870cd121f\System.ni.dll - ok
    21:36:04.0002 0x12d0  [ E083ADCF3E6233473C122B9AA5ADBAA0, 812053B4EB9C5D62C600E82DAFD882D6B71422EF498EBCD789CFC4E5954B860D ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.dll
    21:36:04.0002 0x12d0  C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.dll - ok
    21:36:04.0005 0x12d0  [ 5124AC96B931C2ACEE9CC843635EAA79, BA0C69C8356EDF194EAED7A8ADB7F436FC199F14D4E19DBA05341BDBC0179B5B ] C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll
    21:36:04.0005 0x12d0  C:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll - ok
    21:36:04.0007 0x12d0  [ 8F443F9726349802839C7C0D1C8C904F, 37CED2B541B5D9F76FA1669A699ACADD82B61E6557B6EFB22FE6140D7B4205D4 ] C:\Program Files\Java\jre6\bin\java.exe
    21:36:04.0007 0x12d0  C:\Program Files\Java\jre6\bin\java.exe - ok
    21:36:04.0010 0x12d0  [ 091C84FE9C2A2C4AE1F30AC7C6A4BDD1, CDA114E5B99B866163EF2FD3CE131E6D4B6FF35FDFADA2B88BFEE6314240FB1E ] C:\Program Files (x86)\Java\jre7\bin\java.exe
    21:36:04.0010 0x12d0  C:\Program Files (x86)\Java\jre7\bin\java.exe - ok
    21:36:04.0012 0x12d0  [ 8CC33F757E817C7C03C6A5F7FDF85F09, C120CA09A37CAD9DD39B59B9C99476B38E666B32A907D68495F9E568DA5CE694 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\1d696b2d3de530f7ee971070263667ff\WindowsBase.ni.dll
    21:36:04.0013 0x12d0  C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\1d696b2d3de530f7ee971070263667ff\WindowsBase.ni.dll - ok
    21:36:04.0015 0x12d0  [ 3D232BA8915FEA0694B07E535FC8D03A, 7995028113425BC802A77F5529D49E9EBC3012117585AE079F694D969AA05EEF ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\217ece46920546d718414291d463bb1c\System.Xml.ni.dll
    21:36:04.0015 0x12d0  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\217ece46920546d718414291d463bb1c\System.Xml.ni.dll - ok
    21:36:04.0018 0x12d0  [ 0EF6ADCF0AEC1EB8B758A72FBA757A95, D374559A2F0CA85AD5CC2562A4EA9F2FAF7B29185E817E8AF0B671B7D0939D3B ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\5b6ddf934128d538cd5cd77bf4209b93\System.Configuration.ni.dll
    21:36:04.0018 0x12d0  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\5b6ddf934128d538cd5cd77bf4209b93\System.Configuration.ni.dll - ok
    21:36:04.0021 0x12d0  [ A0617B5753E31126AD29C03154F4F329, 3BC10C0A54D1D60B0C670D901944D3F115E2EBB406C989409145E7151AA55EFE ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
    21:36:04.0021 0x12d0  C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok
    21:36:04.0024 0x12d0  [ 3D7D2E825C63FF501E896CF008C70D75, 037FC52B8FC6089338EB456F2B45638ED36C42A4DCA7ACE391D166B2329838A1 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
    21:36:04.0024 0x12d0  C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
    21:36:04.0026 0x12d0  [ C1B5307377C98F87E0152C44E9FF8DEE, E4B8CACDD50A9A6457708E3D15DDFA3CF23B444582FD37BA50444B53802FF0C7 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
    21:36:04.0026 0x12d0  C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
    21:36:04.0029 0x12d0  [ 739AFF76CF8D1280EB3E10DD02748DDF, 6917FDD9C3CB48F550550A1BC4670C919FCD05D55AB91DE8A4BB025BFCAB918C ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\660ac5d6da77df8e86fb26f05c6a9816\PresentationCore.ni.dll
    21:36:04.0029 0x12d0  C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\660ac5d6da77df8e86fb26f05c6a9816\PresentationCore.ni.dll - ok
    21:36:04.0031 0x12d0  [ 24FCC3CDAE327F632CB8696E1E40F772, 1EA38207DE7DCBB6199708E5043A7D2DB290933BF963910206E2576566442003 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
    21:36:04.0032 0x12d0  C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
    21:36:04.0034 0x12d0  [ E955300DF949977878C705EC8681009A, 8DF0532317D5A00DF1A1CED769D1944EA5C29FED35C1038C5C9E5486EDA6CCBC ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
    21:36:04.0034 0x12d0  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
    21:36:04.0037 0x12d0  [ ED797D8DC2C92401985D162E42FFA450, B746362010A101CB5931BC066F0F4D3FC740C02A68C1F37FC3C8E6C87FD7CB1E ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
    21:36:04.0037 0x12d0  C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
    21:36:04.0039 0x12d0  [ B6D3C63C07085941446AA90BD77AC07F, F4E1144DFC8A6A5F81F7326BA3E6E1A6A6CE419C3FAA9513835FB17BFEE73842 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\f703846404bb66a4ae03ef8133755007\PresentationFramework.ni.dll
    21:36:04.0039 0x12d0  C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\f703846404bb66a4ae03ef8133755007\PresentationFramework.ni.dll - ok
    21:36:04.0042 0x12d0  [ 8DFB5078508924FA725C203CE179B10C, A26A42B331C75D455074B597B982D4CB734B57F1F527C7B2EDBCD0746C38CD52 ] C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
    21:36:04.0042 0x12d0  C:\Windows\assembly\GAC_32\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
    21:36:04.0045 0x12d0  [ E0E5BB58A4C43F7DBB83352785F32DEF, 03000DF8B9C6D1E13F85730643797413EEE8221653A761FFBECB0AE64457F9E4 ] C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll
    21:36:04.0045 0x12d0  C:\Windows\Microsoft.NET\Framework\v3.0\WPF\wpfgfx_v0300.dll - ok
    21:36:04.0048 0x12d0  [ 4FDFA3F219692D17011BF1B428857C1E, 0422101F9D47633DFF47DF022031C4221B9D395F3E23C0C6E0A54CE55D76565D ] C:\Program Files\Windows Defender\MpRTP.dll
    21:36:04.0048 0x12d0  C:\Program Files\Windows Defender\MpRTP.dll - ok
    21:36:04.0051 0x12d0  [ FE6F93A0E5167074C4823516F519480E, 767436B5D1435CD423B06D555FE0E2E4344204148CE182BC42DB950A3C699713 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{054C2B89-4BB2-4BD8-9469-479227E9ED60}\mpengine.dll
    21:36:04.0051 0x12d0  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{054C2B89-4BB2-4BD8-9469-479227E9ED60}\mpengine.dll - ok
    21:36:04.0053 0x12d0  [ 8C8DCDA6E7834FC9268E6364F64DA167, 2495BC0B5D2BE574EC261DF4224321E569E45B207B7206D6077B12B1CC2A76E1 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{054C2B89-4BB2-4BD8-9469-479227E9ED60}\mpasbase.vdm
    21:36:04.0053 0x12d0  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{054C2B89-4BB2-4BD8-9469-479227E9ED60}\mpasbase.vdm - ok
    21:36:04.0056 0x12d0  [ DD6F9A0B7E9C2172A9388050684524C9, 09C08C5332FE51497558CC6779D93BB0936F2EBE62C797B5DF74D191541347DC ] C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll
    21:36:04.0056 0x12d0  C:\Program Files (x86)\Dell DataSafe Local Backup\SftBRCC.dll - ok
    21:36:04.0059 0x12d0  [ 69FED612062D75DB753A2B8D92952C51, 5B1C682DA231198857736CE3C45894274B43D9F8095A131ECBC6D2CB7EA6F014 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{054C2B89-4BB2-4BD8-9469-479227E9ED60}\mpasdlta.vdm
    21:36:04.0059 0x12d0  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{054C2B89-4BB2-4BD8-9469-479227E9ED60}\mpasdlta.vdm - ok
    21:36:04.0062 0x12d0  [ F705A150AC0E691FA866FD0947229CB5, 0CCC940BFF034AF369C86239E39A2E78E287F78A0FF50627F1F3EA0DF02DD237 ] C:\Program Files (x86)\Dell DataSafe Local Backup\DsProtectionIndex.dll
    21:36:04.0062 0x12d0  C:\Program Files (x86)\Dell DataSafe Local Backup\DsProtectionIndex.dll - ok
    21:36:04.0064 0x12d0  [ 6EF5F3F18413C367195F06E503AB86A6, 6F8B87FB4D67F9E76A51EF759B58A95D903C4AAC9C789A65A3FA1FC4F253D978 ] C:\Windows\SysWOW64\d3d9.dll
    21:36:04.0064 0x12d0  C:\Windows\SysWOW64\d3d9.dll - ok
    21:36:04.0066 0x12d0  [ 77B1471A490B53B24EFE136F09F76550, A650C3A244306F8E605BDA8E74BFE438356BA4403B0CB61E980D3183E3F0A7C7 ] C:\Windows\SysWOW64\d3d8thk.dll
    21:36:04.0067 0x12d0  C:\Windows\SysWOW64\d3d8thk.dll - ok
    21:36:04.0069 0x12d0  [ EB3BCBEC859615F6D9A90CF31420A09D, DA4DA6466EDE12158B6233995AEF46D1CE5B2420B415DCD2D75C3E8D46DCE817 ] C:\Windows\SysWOW64\aticfx32.dll
    21:36:04.0069 0x12d0  C:\Windows\SysWOW64\aticfx32.dll - ok
    21:36:04.0071 0x12d0  [ 9AEB111802754663D31EC960362BDF65, C7DA041A454E6F198AA12F7D4FF5F240CC8B57E0887329FB1D570A22411A2C4D ] C:\Windows\SysWOW64\atiu9pag.dll
    21:36:04.0071 0x12d0  C:\Windows\SysWOW64\atiu9pag.dll - ok
    21:36:04.0074 0x12d0  [ 7C3B367AFEECC64C21D103F7B000B6FE, C6DB34233C4938FFFD4020A28FFB77305FFA13087E6FA21916716B44DC63B801 ] C:\Windows\SysWOW64\atiumdag.dll
    21:36:04.0074 0x12d0  C:\Windows\SysWOW64\atiumdag.dll - ok
    21:36:04.0076 0x12d0  [ 417BF04E628492AF649F8285D51117E3, C13905794D5B148814D62E9AD1BF92AB37E57D053B4E07D82C03F067A950CF55 ] C:\Windows\SysWOW64\atiumdva.dll
    21:36:04.0076 0x12d0  C:\Windows\SysWOW64\atiumdva.dll - ok
    21:36:04.0079 0x12d0  [ 12DDA8027618DE959EB6FD0A4FAB2DE8, 9566E57D0DC73E2B5F4432EC96196DCEE8B392DFBB2C529B1192CCCD4F1DAA1D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5c24d3b0041ebf4f48a93615b9fa3de9\System.Drawing.ni.dll
    21:36:04.0079 0x12d0  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\5c24d3b0041ebf4f48a93615b9fa3de9\System.Drawing.ni.dll - ok
    21:36:04.0081 0x12d0  [ BF49381D79D5257BF7579AF367E1719F, 4C01ECC13D25798179ED06FC82A2A659A687A4E4DA5867F9899FAE72767E07A8 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\8bc548587e91ecf0552a40e47bbf99cc\System.Windows.Forms.ni.dll
    21:36:04.0081 0x12d0  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\8bc548587e91ecf0552a40e47bbf99cc\System.Windows.Forms.ni.dll - ok
    21:36:04.0084 0x12d0  [ C277FAB73175C5D37D35DE0DEB05D213, AB0DE2DCCA2133C2AF8C7F1154B4A7DE5FE3E20B3088084205CE1FA24777CD97 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\72284863df9bea3f081ae98996400619\PresentationFramework.Aero.ni.dll
    21:36:04.0084 0x12d0  C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\72284863df9bea3f081ae98996400619\PresentationFramework.Aero.ni.dll - ok
    21:36:04.0087 0x12d0  [ 93BB66044FA76734E882C6F3E8EE1900, E00FE1028C999FFED3F8335F9D760929CB3A11B6EEF8D8D2F2CA4A32DEC56B26 ] C:\Program Files\Windows Defender\MsMpLics.dll
    21:36:04.0087 0x12d0  C:\Program Files\Windows Defender\MsMpLics.dll - ok
    21:36:04.0089 0x12d0  [ 218A400108F280428FA22282D3268BBC, 7712687ABAEF6616E90AE5A321044C102E79EC23F4A1EAFB4278C93724873CB3 ] C:\Windows\System32\wscapi.dll
    21:36:04.0089 0x12d0  C:\Windows\System32\wscapi.dll - ok
    21:36:04.0092 0x12d0  [ B84E2D174DC84916A536572BB8F691A8, 94E3D68F102439D3A585D2D796F3F3FC27CB41C640058DDC14AF99A723B2CD99 ] C:\Windows\System32\wscisvif.dll
    21:36:04.0092 0x12d0  C:\Windows\System32\wscisvif.dll - ok
    21:36:04.0094 0x12d0  [ 6C1E3C43B35268C17833244C8ED96430, 9C571AA762E71177B6FF486D1DB500E3530E13CAFD87316AD2C64F5A55EB4A93 ] C:\Windows\System32\wscproxystub.dll
    21:36:04.0094 0x12d0  C:\Windows\System32\wscproxystub.dll - ok
    21:36:04.0097 0x12d0  [ A054EA8FBE16D4D34F06D81A4F0088E2, 1CD4EECFDA374C8A7B8AD4E664DC057B9C75813AF776A616DC6D845905567CBD ] C:\Windows\SysWOW64\WindowsCodecs.dll
    21:36:04.0097 0x12d0  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
    21:36:04.0099 0x12d0  [ 5E5BAFFB6E2ECEC1BE96ACFAA099F42F, 76CAEBE0BCC49AED4D44CE333EA1DB31E1AD302EB7E09CD4F6F623DCBAC68C14 ] C:\Program Files (x86)\Dell DataSafe Local Backup\STUICore.dll
    21:36:04.0099 0x12d0  C:\Program Files (x86)\Dell DataSafe Local Backup\STUICore.dll - ok
    21:36:04.0102 0x12d0  [ EF503FAB69A027B4B6DBD31D241EF2BD, 025E1527DA1E5A2B2631A326749D63343D583FE14F46B369EBCB075CE40C55FD ] C:\Program Files\Microsoft Office 15\root\office15\GROOVEEX.DLL
    21:36:04.0102 0x12d0  C:\Program Files\Microsoft Office 15\root\office15\GROOVEEX.DLL - ok
    21:36:04.0105 0x12d0  [ BF38660A9125935658CFA3E53FDC7D65, 60C06E0FA4449314DA3A0A87C1A9D9577DF99226F943637E06F61188E5862EFA ] C:\Program Files\Microsoft Office 15\root\office15\msvcr100.dll
    21:36:04.0105 0x12d0  C:\Program Files\Microsoft Office 15\root\office15\msvcr100.dll - ok
    21:36:04.0107 0x12d0  [ E3C817F7FE44CC870ECDBCBC3EA36132, D769FAFA2B3232DE9FA7153212BA287F68E745257F1C00FAFB511E7A02DE7ADF ] C:\Program Files\Microsoft Office 15\root\office15\msvcp100.dll
    21:36:04.0107 0x12d0  C:\Program Files\Microsoft Office 15\root\office15\msvcp100.dll - ok
    21:36:04.0110 0x12d0  [ 00D2C06A552F782C1F16ACF77DB765A5, F54FE6535538174C139B1B0CB2AC0753B2E34412153A443482CCAE53FFBC4DC6 ] C:\Program Files\Microsoft Office 15\root\office15\atl100.dll
    21:36:04.0110 0x12d0  C:\Program Files\Microsoft Office 15\root\office15\atl100.dll - ok
    21:36:04.0113 0x12d0  [ 513F6774B3B6AAA4ADC12D56CE7E2942, 5BC8E677FE27E7A889701DCF8C63B759A731A850C021F731C65280AD6B04BD83 ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\Cultures\OFFICE.ODF
    21:36:04.0113 0x12d0  C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\Cultures\OFFICE.ODF - ok
    21:36:04.0116 0x12d0  [ E7650E8FE96B6E386F491290AF2BE071, 359A91444E8DE863C83FA4BAD8B164BCE8ED3426F069253C42A4A4F275B306C9 ] C:\Program Files\Microsoft Office 15\root\office15\1033\GrooveIntlResource.dll
    21:36:04.0116 0x12d0  C:\Program Files\Microsoft Office 15\root\office15\1033\GrooveIntlResource.dll - ok
    21:36:04.0118 0x12d0  [ 846D0E4DB261CFAF363902E41498E961, D7E5591B7604FD583AF7FDA19E30928B24A6145318A3944E7D207F0CCEEB30D0 ] C:\Windows\SysWOW64\EhStorShell.dll
    21:36:04.0118 0x12d0  C:\Windows\SysWOW64\EhStorShell.dll - ok
    21:36:04.0121 0x12d0  [ 03F3B770DFBED6131653CEDA8CA780F0, 77373919DCA647F09851E7E460AE78FBD89F21516B961F84AC4446304E51E09C ] C:\Windows\SysWOW64\ntshrui.dll
    21:36:04.0121 0x12d0  C:\Windows\SysWOW64\ntshrui.dll - ok
    21:36:04.0123 0x12d0  [ 8B74CEC6980D4816B0037AE9A27E538F, 8721EDB4C51BF6020002FA5DDB1987C68590F9F433A2F18D9756B2DAC7542CB6 ] C:\Windows\SysWOW64\slc.dll
    21:36:04.0123 0x12d0  C:\Windows\SysWOW64\slc.dll - ok
    21:36:04.0125 0x12d0  [ 827CB0D6C3F8057EA037FF271F8E9795, 82760DBDDD38D2A31CAAF51D065DF4E7E1D0F0C22733A0AF653776EBF7B79470 ] C:\Windows\SysWOW64\imageres.dll
    21:36:04.0125 0x12d0  C:\Windows\SysWOW64\imageres.dll - ok
    21:36:04.0128 0x12d0  [ 4647D64626D110E4CDF2C0343E855784, 1C5BA92D207422D963793E091F2DBC358FD8F54D4CA22A65D178F53D3721C086 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\868ad9d8acc0bf80a973c0e4e9cae4fa\System.Core.ni.dll
    21:36:04.0128 0x12d0  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Core\868ad9d8acc0bf80a973c0e4e9cae4fa\System.Core.ni.dll - ok
    21:36:04.0130 0x12d0  [ FB10715E4099AF9FA389C71873245226, 6A4CB43880B822A0C4714D6E52EB3EB2CE1E69C3AA9CA65EAAD6B131AE43F274 ] C:\Windows\System32\timedate.cpl
    21:36:04.0130 0x12d0  C:\Windows\System32\timedate.cpl - ok
    21:36:04.0133 0x12d0  [ E6F0F82788E8BD0F7A616350EFA0761C, 13091DCB3E3F4F52C3FF210E93AAF1DCE142CFC09F671AEAC5B922393B23E67B ] C:\Windows\System32\actxprxy.dll
    21:36:04.0133 0x12d0  C:\Windows\System32\actxprxy.dll - ok
    21:36:04.0135 0x12d0  [ 23B001185B7C3CB1F4BDEB143E6B45B7, AB3A5AB346F6353B43B06FBE20B7785DA988975E2C8B73A6588F107FFAAACC47 ] C:\Windows\System32\shdocvw.dll
    21:36:04.0135 0x12d0  C:\Windows\System32\shdocvw.dll - ok
    21:36:04.0138 0x12d0  [ A0A65D306A5490D2EB8E7DE66898ECFD, CE5DA408F4EDD5E81CE0925867F03C9A35172CF1571FE4C4C052E45AB69822BB ] C:\Windows\System32\linkinfo.dll
    21:36:04.0138 0x12d0  C:\Windows\System32\linkinfo.dll - ok
    21:36:04.0142 0x12d0  [ 98B6F9204610EC0B7D2ADFF3E6F058A8, 3D39A14BA5A37042D692189C8F0A593900A58BA162CECD683BCF8E5F93BE53E6 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
    21:36:04.0142 0x12d0  C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
    21:36:04.0144 0x12d0  [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86, E15ED4FEFC3010C213694331DDFDC03767682325C898D773AB243E2DC8B08461 ] C:\Windows\System32\msftedit.dll
    21:36:04.0144 0x12d0  C:\Windows\System32\msftedit.dll - ok
    21:36:04.0147 0x12d0  [ 2EBD0C5B090125AECF017C57344C45AB, 4FF8F2460115C60AD164EE0DC2079E1601B8AA21A1BA8033B7B731FAF85411B6 ] C:\Windows\System32\msls31.dll
    21:36:04.0147 0x12d0  C:\Windows\System32\msls31.dll - ok
    21:36:04.0149 0x12d0  [ 7DBA84667DC18877AEF693E3543DFAD7, 499306CE72EB8B873C547C600FD1093B7A79122D656407E69879041690AE588F ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
    21:36:04.0149 0x12d0  C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
    21:36:04.0151 0x12d0  [ 2BCBA6052374959A30BD7948444DBB79, 46224A2B729026FEEBC3C6A09E69919D477097848DB2CA0C2F5B166CDF379660 ] C:\Windows\System32\gameux.dll
    21:36:04.0151 0x12d0  C:\Windows\System32\gameux.dll - ok
    21:36:04.0154 0x12d0  [ 027675ED9B34EE1B91505C3B8752649F, 78EF98AFB0EE1B680EC8B7BE40ABD87979F09534A49CDA576258BDB4CB4E29C0 ] C:\Windows\System32\Wpc.dll
    21:36:04.0154 0x12d0  C:\Windows\System32\Wpc.dll - ok
    21:36:04.0156 0x12d0  [ 4C2C4640BF23AAFCF90519E0F34436CE, 8ACCDA77C2DC5BE2DAED05134310122AFECC872A8D118612E55DD229BFE4D844 ] C:\Windows\System32\DeviceCenter.dll
    21:36:04.0156 0x12d0  C:\Windows\System32\DeviceCenter.dll - ok
    21:36:04.0159 0x12d0  [ 405F4D32D2185F1F1BD753D8EEAFFB3A, CAC42C3E09C43BE96592B670D70821386014DB22D8239A9CFB9E33E54FB5C3D5 ] C:\Windows\System32\networkexplorer.dll
    21:36:04.0159 0x12d0  C:\Windows\System32\networkexplorer.dll - ok
    21:36:04.0161 0x12d0  [ 69754747274B76E7FAF287239333D7E6, A0BAEC1E56E4B1A17C0D41B317526AF5BB11E7E488C7016067A6229346A23B16 ] C:\Windows\System32\msiltcfg.dll
    21:36:04.0161 0x12d0  C:\Windows\System32\msiltcfg.dll - ok
    21:36:04.0163 0x12d0  [ 24F4B480F335A6C724AF352253C5D98B, 011413B236CAD7B78CE0A0EEC3E3085D48C7576A3205D025BA6EBFDF590538E4 ] C:\Windows\System32\thumbcache.dll
    21:36:04.0164 0x12d0  C:\Windows\System32\thumbcache.dll - ok
    21:36:04.0166 0x12d0  [ 73E7DAFAA77FC23F8139F87BA96D7FC5, 6C6A1D81A87D475819901E213753E84DE0E5C5AB37DE5FF200A0C753015E091B ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    21:36:04.0166 0x12d0  C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
    21:36:04.0168 0x12d0  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\System32\rundll32.exe
    21:36:04.0168 0x12d0  C:\Windows\System32\rundll32.exe - ok
    21:36:04.0171 0x12d0  [ 044EEC41BB39C3F8FC6175DAEAADDB35, 55A14ECE46A26D5D539D7EB6F673E71F1DDDAA707933BF686A910A803D590DF0 ] C:\Windows\System32\EptMon64.dll
    21:36:04.0171 0x12d0  C:\Windows\System32\EptMon64.dll - ok
    21:36:04.0173 0x12d0  [ 76B59C460C95503032E35F00BE125F7D, 3D2C7FE9FD77070D268A83C82DF2D3990CD151508DC9CD9A493D2D927248DB66 ] C:\Windows\System32\THXCfg64.dll
    21:36:04.0173 0x12d0  C:\Windows\System32\THXCfg64.dll - ok
    21:36:04.0176 0x12d0  [ AC012AD7539A8F9FFD31CF80BAA06CC7, 330A52D02ECBC4808D87B6758B34A0B4C2DBAA2965E9F1474D1706BD8945195E ] C:\Windows\System32\LogiLDA.DLL
    21:36:04.0176 0x12d0  C:\Windows\System32\LogiLDA.DLL - ok
    21:36:04.0178 0x12d0  [ E424B3EF666B184CEE0B6871AAA8C9F6, D182D9B3A813C75F88CA16A9C236AB6167DF5861D155B5DC016B90918C4BD579 ] C:\Windows\System32\msimg32.dll
    21:36:04.0178 0x12d0  C:\Windows\System32\msimg32.dll - ok
    21:36:04.0180 0x12d0  [ 263E9A047D17CD50BAA9D3C02910D18D, F526648358AD121001D2776E0ACC333EC4AC168CA07B40A3D3C06C5CE6A361C3 ] C:\Windows\System32\oledlg.dll
    21:36:04.0180 0x12d0  C:\Windows\System32\oledlg.dll - ok
    21:36:04.0183 0x12d0  [ 9110FFAD124283F37D38771BB60556AF, BB495FDF86B7C3DD7878C496090A624CE8FE68F61166C91A4C99EF1140F0AD23 ] C:\Windows\System32\dsound.dll
    21:36:04.0183 0x12d0  C:\Windows\System32\dsound.dll - ok
    21:36:04.0185 0x12d0  [ 585FED4CDB8034B8B58AEB8008255817, 13D1055929D79598C04A4AB66EF3DBAADD265F9D1C3F43E84531238D2526A1AE ] C:\Windows\System32\opengl32.dll
    21:36:04.0185 0x12d0  C:\Windows\System32\opengl32.dll - ok
    21:36:04.0187 0x12d0  [ F2967C0A97C0EA67D79D7F557213950D, 65516C83DCB3F952CD4454636B61CC2F153AF6BEEBC352463791D92F7F500F52 ] C:\Windows\System32\glu32.dll
    21:36:04.0187 0x12d0  C:\Windows\System32\glu32.dll - ok
    21:36:04.0190 0x12d0  [ A6C09924C6730DE8DEED9890A12AA691, 46EACBC27D15FD43431812D6CA770982178C07246AF3A1C2E0D40D745A1D5758 ] C:\Windows\System32\ddraw.dll
    21:36:04.0190 0x12d0  C:\Windows\System32\ddraw.dll - ok
    21:36:04.0192 0x12d0  [ A5ED9421B8D09ED4F57CDA386307713E, EC2EE043E94A53302A9721220AA42D29BE72AF3448B7AA01F7EB911ECF7DC6AE ] C:\Windows\System32\dciman32.dll
    21:36:04.0192 0x12d0  C:\Windows\System32\dciman32.dll - ok
    21:36:04.0194 0x12d0  [ 812DD9FBA5EF2136AEF738CAA499D47C, 239BF6A71916512FD3979DB334491C4FF399F5E95BE02F25A1DF81C171D17C42 ] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe
    21:36:04.0194 0x12d0  C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe - ok
    21:36:04.0196 0x12d0  [ A3EF9305DDF21BA151B650C419A46EDA, 30DA49E44905F2E411EA72FD8B3F7754C49D8AFB62A50E449464556616989F9F ] C:\Windows\System32\RtkCfg64.dll
    21:36:04.0196 0x12d0  C:\Windows\System32\RtkCfg64.dll - ok
    21:36:04.0199 0x12d0  [ C0B3668DBC1B93243648C0067AEA2675, 0F5315E3B87B7FD00313D085FFC16CA81AB0078604C1E20E4EF5909C1C5D55D9 ] C:\Program Files (x86)\Steam\Steam.exe
    21:36:04.0199 0x12d0  C:\Program Files (x86)\Steam\Steam.exe - ok
    21:36:04.0201 0x12d0  [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
    21:36:04.0201 0x12d0  C:\Program Files\Windows Sidebar\sidebar.exe - ok
    21:36:04.0204 0x12d0  [ FCDE60F22FF7B5BEB55770208565B199, 841ED4610B6EF9968CFCFFCF252674297B661DF012BABB0D22938F9445B5AFF5 ] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
    21:36:04.0204 0x12d0  C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe - ok
    21:36:04.0207 0x12d0  [ 149A5839161F273BD255EC02F164541E, 8D48D7A76D55E236BC49F5FC39EB8E4A673FAE92A47618A7D894F10C76A41A9A ] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\AgentDialogs.dll
    21:36:04.0207 0x12d0  C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\AgentDialogs.dll - ok
    21:36:04.0209 0x12d0  [ 4C1BE00166701F7787DCF91D30A42657, E123127B6DC9909DAF9A17BB58BF82D0E5931D7E1F16ED3535BA39AA6739DA41 ] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\AgentModels.dll
    21:36:04.0209 0x12d0  C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\AgentModels.dll - ok
    21:36:04.0212 0x12d0  [ D69D32DD5AAEABA5FCFE3D0E187AD981, CFEA647071EFFA667418E92457F86858A4297E10031D337689824442005F4D76 ] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\GlobalUtil.dll
    21:36:04.0212 0x12d0  C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\GlobalUtil.dll - ok
    21:36:04.0215 0x12d0  [ CA6ADE4F7761BB15B3325356DC3B82BB, 0EA4CD410DA764916EA201C0C1E16752E0D3DC9D8571510782AF4AAE62509AF7 ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll
    21:36:04.0215 0x12d0  C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90u.dll - ok
    21:36:04.0218 0x12d0  [ DD502A2E7B85EA7A3814C1034E6C23D3, 551D6C28DA6116DC65111BFA21E23BA8AE77193BEAF3DF505C343E6DC3CD5304 ] C:\Windows\AppPatch\AcGenral.dll
    21:36:04.0218 0x12d0  C:\Windows\AppPatch\AcGenral.dll - ok
    21:36:04.0220 0x12d0  [ DF552350CDC2AA39C01CE40612DF82A8, 17B90AFC0837712EBC781FAC912B288125A900370B09B32320EB874704CACCE2 ] C:\Program Files (x86)\Samsung\Kies\Kies.exe
    21:36:04.0220 0x12d0  C:\Program Files (x86)\Samsung\Kies\Kies.exe - ok
    21:36:04.0223 0x12d0  [ B22CB67919EBAD88B0E8BB9CDA446010, 2F744FEAC48EDE7D6B6D2727F7DDFA80B26D9E3B0009741B00992B19AD85E128 ] C:\Windows\System32\StikyNot.exe
    21:36:04.0223 0x12d0  C:\Windows\System32\StikyNot.exe - ok
    21:36:04.0225 0x12d0  [ 8E2242BB3CB7A632A8CF22BDE2A41AE1, FB068D1EED054DB6935A5DE19DEA6AFCCE8C3F0F665973FDFB97431078207D91 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
    21:36:04.0225 0x12d0  C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll - ok
    21:36:04.0228 0x12d0  [ FB4045578F5180BDB1963AB352B78548, 8E645A63436EE6CDDB78E6064AEB04ECE39208F760A3EF13A3F49FDF41505E21 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
    21:36:04.0228 0x12d0  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
    21:36:04.0230 0x12d0  [ 6ECE746BB283927604DA192CA0D1403D, 327E1E908B6DB1C8414B31DB277EF5EABA340B2EE7FEE19349860B3C8F7778FE ] C:\Windows\System32\spool\drivers\x64\3\E_YATIJHE.EXE
    21:36:04.0230 0x12d0  C:\Windows\System32\spool\drivers\x64\3\E_YATIJHE.EXE - ok
    21:36:04.0232 0x12d0  [ 8494E126F0B10180F3293AF861CE1F7A, 538B1F30423DB2398E611BC46C80150C090698E633BABF7362F7060DBF0C3064 ] C:\Windows\System32\mlang.dll
    21:36:04.0232 0x12d0  C:\Windows\System32\mlang.dll - ok
    21:36:04.0235 0x12d0  [ 25107F58D1B8F60D67D1EE95798C0DE8, C3B5205E8818576EBF33E3B9FD8664A498714B823D9128FC1CA0A64F81499263 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
    21:36:04.0235 0x12d0  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe - ok
    21:36:04.0237 0x12d0  [ 56803B20D168C1B740D12CE0BE4588F5, E41664384998E4A6E30D38AD349B958F10D0FB86C650354C0F26F333F221DE8E ] C:\Windows\System32\mshtml.dll
    21:36:04.0237 0x12d0  C:\Windows\System32\mshtml.dll - ok
    21:36:04.0240 0x12d0  [ 9989169651234D5B9BF3C8FF0FC38974, E24ED46BACD28298077DE3EEAC8B7522F9559E150EB25A0728282FE3FA9C2DE0 ] C:\Windows\System32\spool\drivers\x64\3\E_YLMWJHE.DLL
    21:36:04.0240 0x12d0  C:\Windows\System32\spool\drivers\x64\3\E_YLMWJHE.DLL - ok
    21:36:04.0242 0x12d0  [ 3CCE7C726B88918915A1EF712B9D5F58, D2BDF5D6C350F903A618B6E6412BFE73507CC997743BC93167B48BEE6EC62932 ] C:\Windows\AppPatch\AcXtrnal.dll
    21:36:04.0242 0x12d0  C:\Windows\AppPatch\AcXtrnal.dll - ok
    21:36:04.0245 0x12d0  [ 85683DF1F917E4D7F6BE1A04986BF1C8, D68D9F525D31C1843B6EC8FA950166FA1F34DB71222716E7B22DD33981C152B6 ] C:\Windows\SysWOW64\msacm32.dll
    21:36:04.0245 0x12d0  C:\Windows\SysWOW64\msacm32.dll - ok
    21:36:04.0247 0x12d0  [ AB1E08620FE9A11857806DA1AC74C53B, 4094C3F89DD949A3183206A869539946C9814C132347B061CC4B9F31F4571B36 ] C:\Windows\System32\spool\drivers\x64\3\E_YASRJHE.DLL
    21:36:04.0247 0x12d0  C:\Windows\System32\spool\drivers\x64\3\E_YASRJHE.DLL - ok
    21:36:04.0250 0x12d0  [ 0A8E209F3C1D1FB6889465D1019CC5BF, B194C5204E5B476AD6E3D29CA6F57209245D9B9526000240771F77091C982B57 ] C:\Windows\SysWOW64\shunimpl.dll
    21:36:04.0250 0x12d0  C:\Windows\SysWOW64\shunimpl.dll - ok
    21:36:04.0252 0x12d0  [ 8C0854D2BBAE8E1B5F447B94CDD878F1, C6109B9DDD0FACC90CF316D344847C9B74FD213DCD64F398982161FF0F267308 ] C:\Windows\SysWOW64\SortWindows6Compat.dll
    21:36:04.0252 0x12d0  C:\Windows\SysWOW64\SortWindows6Compat.dll - ok
    21:36:04.0255 0x12d0  [ 2C68D1CEAA96FE39E44B4979ACD6D9B3, C0594E386299B0363D680B7F2E5E855D577A8CDD3FEC3FD9E5A098EE609FE469 ] C:\Program Files (x86)\Dell Stage\Dell Stage\libumajin.dll
    21:36:04.0255 0x12d0  C:\Program Files (x86)\Dell Stage\Dell Stage\libumajin.dll - ok
    21:36:04.0257 0x12d0  [ AFAFD74780A0BB4EBE76CDE10C9CCE43, 2496060BC3ACCBB9F469821C78C2AE40617E97CB479CEB14441B7A81C1C250E9 ] C:\Program Files\Common Files\Microsoft Shared\ink\InkObj.dll
    21:36:04.0257 0x12d0  C:\Program Files\Common Files\Microsoft Shared\ink\InkObj.dll - ok
    21:36:04.0260 0x12d0  [ 86258554DF6D13D7936D62C8796A73AF, CDBDFC71BBFCD8BEA4BA9C5F0E7B0905320AEA27EC4CD9893ABC8CA41044602C ] C:\Program Files (x86)\Steam\crashhandler.dll
    21:36:04.0260 0x12d0  C:\Program Files (x86)\Steam\crashhandler.dll - ok
    21:36:04.0263 0x12d0  [ 7C73B5C50CAEDB1771A049142026906B, A4992339D71A9297963C70616C4124BD701E46AEE439E09C392C2B2EBAE624E6 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
    21:36:04.0263 0x12d0  C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe - ok
    21:36:04.0265 0x12d0  [ BDC0A3E4446D2105F9BE0C7384F0B096, 4DE8457242F628B0036DCDBA2B4A1CECADC3199EC3B99959303B4B4473D6D198 ] C:\Windows\SysWOW64\atiadlxy.dll
    21:36:04.0265 0x12d0  C:\Windows\SysWOW64\atiadlxy.dll - ok
    21:36:04.0268 0x12d0  [ 885A88C268C23618AFB937F1ECE56A20, E3586A9107E4F7F8B7C763FF3025E9B85537E285FF95A87AD98DC9CB046A5E88 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll
    21:36:04.0268 0x12d0  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll - ok
    21:36:04.0271 0x12d0  [ 12D6182B185C047F1CE4FA046E9641AA, B168D7D461BC45D6B16EE4DD3EE37AA9C6A904BE5B266B68400982CEC5D05353 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\c818fc9b032eea61c31b6a9526e16d50\IAStorUtil.ni.dll
    21:36:04.0271 0x12d0  C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\c818fc9b032eea61c31b6a9526e16d50\IAStorUtil.ni.dll - ok
    21:36:04.0273 0x12d0  [ 776639DA9650B9907D62EE4860B0EE74, 5445D27AB9A6242F5FD67BE23A357D2AD12815519C6789F4BE179D0076A33F0D ] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\CommonModule.dll
    21:36:04.0273 0x12d0  C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\CommonModule.dll - ok
    21:36:04.0276 0x12d0  [ 242713213B95368F9A3C1563272C0028, F9B20E1E73391D340E813A0A5DAF8647C376CE8F8F13DB0401B909323AC98274 ] C:\Windows\System32\spool\drivers\x64\3\E_YASOJHE.DLL
    21:36:04.0276 0x12d0  C:\Windows\System32\spool\drivers\x64\3\E_YASOJHE.DLL - ok
    21:36:04.0279 0x12d0  [ AC6EE4B07B9A78B155DEE7529ACCE355, 2A09A60B38DC714396C7E606B33D974A0727365BC7B0BB5FCB88413DAD51B0BF ] C:\Program Files (x86)\Dell Stage\Dell Stage\libmmd.dll
    21:36:04.0279 0x12d0  C:\Program Files (x86)\Dell Stage\Dell Stage\libmmd.dll - ok
    21:36:04.0281 0x12d0  [ 560E66C10DC9CD77DA3F3416CCEE00E6, FA9BD1550230E4C07F448C49458D1E0458F3C794F1FE4B432E3A12F84567B9ED ] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\AgentModule.dll
    21:36:04.0281 0x12d0  C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\AgentModule.dll - ok
    21:36:04.0284 0x12d0  [ 2A5E8DBC310C2FB7511B9AB8E7CFB297, F9522B42BAA4A3B5D325385C8AB7BBDE549AB6420D0F430925A22C61C09FE5B2 ] C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe
    21:36:04.0284 0x12d0  C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe - ok
    21:36:04.0287 0x12d0  [ 362F5E72D66A47F80826BBBD7B775338, 8D5B429A501E1363AB14DA0BC3DD59AFCAC9E5640827DE47360DFE93B920D085 ] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\BaseUI.dll
    21:36:04.0287 0x12d0  C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\BaseUI.dll - ok
    21:36:04.0289 0x12d0  [ 97A8968A66F15FD3B2F09C6F56B2170D, 9D4916B1DD22C3F901E3A39CBE9D9A71046511051CAB079A6F4B4AE881F95436 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll
    21:36:04.0289 0x12d0  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll - ok
    21:36:04.0292 0x12d0  [ 23D32016364A0226FD0E551E47CE2999, BA8729BC277B74DDD59A601AAF28EB7CB6748F8000DC51359ADA7DFF8003D9F0 ] C:\Program Files (x86)\Steam\steamerrorreporter.exe
    21:36:04.0292 0x12d0  C:\Program Files (x86)\Steam\steamerrorreporter.exe - ok
    21:36:04.0294 0x12d0  [ 1E09DFA4048196C9D3CC40C485A39422, BD27CF59078BD01CECE12CF14D9E10DAB902D50B0A9E61ABF0A9C045A8FE8845 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
    21:36:04.0294 0x12d0  C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe - ok
    21:36:04.0298 0x12d0  [ 34D0B292BB5728DB165D922AD2E51F7F, 356C2F2D77A53146E5B2198ACDF41D7FA20D59CA7A0EB681E1ECDE82D144AF85 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\359e693030a92977455667e67fb74267\Microsoft.VisualBasic.ni.dll
    21:36:04.0298 0x12d0  C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\359e693030a92977455667e67fb74267\Microsoft.VisualBasic.ni.dll - ok
    21:36:04.0301 0x12d0  [ E0B340996A41C9A75DFA3B99BBA9C500, D029AD8ABBD2267B1E44DF5172B93C3F832B4C21F930F5512C24E800F5CE4F8B ] C:\Windows\System32\SearchIndexer.exe
    21:36:04.0301 0x12d0  C:\Windows\System32\SearchIndexer.exe - ok
    21:36:04.0303 0x12d0  [ 9B7A68DE96763F0D6FA9104E665CCC4E, F20B5B22C48B41904A3707AEDA0C951A0DD323CAD84BC1967B422C72E09B45FF ] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\ToolkitPro1331vc90U.dll
    21:36:04.0303 0x12d0  C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\ToolkitPro1331vc90U.dll - ok
    21:36:04.0306 0x12d0  [ 44CB59BDC8576B78CC79C927CDEE215A, BEE1E8B6A3A27326D3C2B87C947FBCB9C0E211341D938E0511308EA238B41915 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\98c91b8d3f1d54c41ada5f37e0935303\System.Runtime.Remoting.ni.dll
    21:36:04.0306 0x12d0  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\98c91b8d3f1d54c41ada5f37e0935303\System.Runtime.Remoting.ni.dll - ok
    21:36:04.0308 0x12d0  [ FBFCA1A574D47EE575448B719CBBF2E4, B7CAB2D0D95679B05EFC8E1303BAA65C9B3B80527C3FD3AECDC0D2E59919D36E ] C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL
    21:36:04.0308 0x12d0  C:\Windows\winsxs\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_49768ef57548175e\MFC90ENU.DLL - ok
    21:36:04.0311 0x12d0  [ A76039C10D91EFF5C9A9F08692D333C2, 68A6F9B50C2BC908D06512235DAB740DAF851DE7ED5E88E4054D4033C82C621F ] C:\Program Files (x86)\Sony\Bloggie Software\BGVolumeWatcher.exe
    21:36:04.0311 0x12d0  C:\Program Files (x86)\Sony\Bloggie Software\BGVolumeWatcher.exe - ok
    21:36:04.0314 0x12d0  [ 68B7487491E6FF798068E48AB3270D3A, 59B72DD85B242A38929657AD7DCA8C33674A4692ADEA7F770DB9ACBD495A1210 ] C:\Program Files (x86)\Sony\Bloggie Software\BGVolumeWatcherLOC.dll
    21:36:04.0314 0x12d0  C:\Program Files (x86)\Sony\Bloggie Software\BGVolumeWatcherLOC.dll - ok
    21:36:04.0316 0x12d0  [ C419DF63E0121D72411285780C2FC6CC, F47F854D327C589D174D3BB5B55D5C05F5ACA73DF52A6BEF47596B9010190291 ] C:\Windows\Updreg.EXE
    21:36:04.0316 0x12d0  C:\Windows\Updreg.EXE - ok
    21:36:04.0318 0x12d0  [ D5A787E18D3C67894CDAC0A81D617DB4, D33377311A7AA9C6BB8A8B116E0152C1C86F8C6BCC2407E2BF436F0CAAD73266 ] C:\Program Files (x86)\Dell Stage\Dell Stage\QtGui4.dll
    21:36:04.0318 0x12d0  C:\Program Files (x86)\Dell Stage\Dell Stage\QtGui4.dll - ok
    21:36:04.0321 0x12d0  [ 0DCA5F8AF83975061D9D8340DC471B5C, 71C8549419F46ABB4826B1847BF325374FA5C237CE14DB8B1DD8BB6FDABF6138 ] C:\Windows\SysWOW64\msvcr110_clr0400.dll
    21:36:04.0321 0x12d0  C:\Windows\SysWOW64\msvcr110_clr0400.dll - ok
    21:36:04.0323 0x12d0  [ 58AE394DF1E07E561C2C567B38A5B68D, 30EFF740915A66C5B7BFBC34261BF68CFA48898A92EA3F27E768A6D69DCDEAD4 ] C:\Program Files (x86)\Steam\tier0_s.dll
    21:36:04.0323 0x12d0  C:\Program Files (x86)\Steam\tier0_s.dll - ok
    21:36:04.0326 0x12d0  [ ABF9479CAC7FF37591AF723490A753AD, C683EB53ABCC03F7552AE1D09E43E4CFB1201CDE241B432BFBE7BE30CFF62AF6 ] C:\Program Files\Internet Explorer\sqmapi.dll
    21:36:04.0326 0x12d0  C:\Program Files\Internet Explorer\sqmapi.dll - ok
    21:36:04.0329 0x12d0  [ 8D53E878454E9FCE41C0493E21825008, 1350D084BD129146613530824DC92A6922792AA2F10FA1ACF1F8180714B4ACEA ] C:\Program Files (x86)\Steam\vstdlib_s.dll
    21:36:04.0329 0x12d0  C:\Program Files (x86)\Steam\vstdlib_s.dll - ok
    21:36:04.0331 0x12d0  [ 2ECD9D9087DC15E7AAD130883E665219, 16D27EFFA74C8E12B28CDFA90BF708B5314E65C45F07E1BCF3CBF4D7DF8B22EF ] C:\Program Files (x86)\Dell Stage\Dell Stage\QtCore4.dll
    21:36:04.0331 0x12d0  C:\Program Files (x86)\Dell Stage\Dell Stage\QtCore4.dll - ok
    21:36:04.0334 0x12d0  [ 68F07A4750EEC27B4F6E85015798F26E, D7C93116FEAAB2C67655C2548BEF80ED90633C9BC1DBA5F4F12C5E6D6D6016E6 ] C:\Windows\System32\spool\drivers\x64\3\E_YLGRJHE.DLL
    21:36:04.0334 0x12d0  C:\Windows\System32\spool\drivers\x64\3\E_YLGRJHE.DLL - ok
    21:36:04.0336 0x12d0  [ D1BBE227367ED791D5FCF08E132D2956, 34349B7FB46BB89D59CC9CC6CD3F790870AB96642254C0374D97AFAC6121B945 ] C:\Windows\SysWOW64\opengl32.dll
    21:36:04.0336 0x12d0  C:\Windows\SysWOW64\opengl32.dll - ok
    21:36:04.0338 0x12d0  [ B54921381A950C8215FB363B485C432B, 3663600284B2077470E8FBC90D1FF37ADCF12155E28917A6410F4622760C43DF ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
    21:36:04.0338 0x12d0  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe - ok
    21:36:04.0341 0x12d0  [ AC9B4D950943A3C173F8657BD08BF325, D3F32CACCA4FE559B0B3E735A534F09B06F6FFACF3B47E8965863494E5D7F185 ] C:\Program Files (x86)\CyberLink\Shared files\brs.exe
    21:36:04.0341 0x12d0  C:\Program Files (x86)\CyberLink\Shared files\brs.exe - ok
    21:36:04.0344 0x12d0  [ 220159496484D34009DE71CA1A68E0D4, 94BD3DEB4E84F95D80BE5775E5A612EFF181ECB212FB668674C67AD19194DE69 ] C:\Windows\System32\wbem\NCProv.dll
    21:36:04.0344 0x12d0  C:\Windows\System32\wbem\NCProv.dll - ok
    21:36:04.0346 0x12d0  [ C1F1E53851FAA7E029CFA07DAF9A5E81, 5FED0DC48651735AEBF53D5B7C16D13A9F7205B9EBEFE829022FC9281A940718 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\ce5f61c5754789df97be8dc991c47d07\mscorlib.ni.dll
    21:36:04.0346 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\ce5f61c5754789df97be8dc991c47d07\mscorlib.ni.dll - ok
    21:36:04.0349 0x12d0  [ A08C010D859F8EB42BDD7E1D55B8CA27, F86EAFBF7AA41D8425156C07398EDC3BD42F1690BD3E15D27AEF2EDA86549F15 ] C:\Windows\System32\mscoree.dll
    21:36:04.0349 0x12d0  C:\Windows\System32\mscoree.dll - ok
    21:36:04.0351 0x12d0  [ 7B46A076184B73AEDC1A66A71D9131E8, A3D5BD5C25F38510A7A09124A1876B2C1FA628D890217F015FF99CAEED64DC3B ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
    21:36:04.0351 0x12d0  C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll - ok
    21:36:04.0354 0x12d0  [ D44067027714CC58B8AB0AC38FDA1A0B, 56E96A58B5A53A68485F8D2F7BA286F2B174AB910BD45145258D48251F489F02 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
    21:36:04.0354 0x12d0  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
    21:36:04.0357 0x12d0  [ 198552AEFECA69D646867EC8D792DE95, 6978D5205387391748EE7E9FACF1AE607C37FBFD83B77CB632DD772F8D71A165 ] C:\Windows\SysWOW64\ddraw.dll
    21:36:04.0357 0x12d0  C:\Windows\SysWOW64\ddraw.dll - ok
    21:36:04.0360 0x12d0  [ DE3897365B04C4DA1CF8FF725577C082, 44703E2D6C7219714C929D8ED096C8E044A3EDCA73198870A5CC4EF5CE16C397 ] C:\Windows\SysWOW64\glu32.dll
    21:36:04.0360 0x12d0  C:\Windows\SysWOW64\glu32.dll - ok
    21:36:04.0362 0x12d0  [ ECF207CD20FB05CEF8F3C7A101ED812C, 394F0A0864BECD920647D4766B358ED00DE0D4F83BC8F990AEC9455E266E0B3A ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe
    21:36:04.0362 0x12d0  C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe - ok
    21:36:04.0365 0x12d0  [ CE5C9977DA751DDC30952AC4DCBCA788, 295172C4681E9AC27121122CDD2BA6F2A62435917A083CC8490D584CA0164BE6 ] C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
    21:36:04.0365 0x12d0  C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe - ok
    21:36:04.0368 0x12d0  [ 61E4289E91E88C90478D7F4BEB10DCF7, 1D0F4034E0111CF5758F470C15A22A0A28EB8269CB5BF07222C9C0FB07A15C55 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
    21:36:04.0368 0x12d0  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
    21:36:04.0370 0x12d0  [ 5098A5D0F433048AF91D556330678B52, D66B4DBD096A0BD2A06631DCEB4515E41EB2B25DAD94FF98A8F28428C767A264 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System\ff26cc03e6d57d8abd13b990332e67c6\System.ni.dll
    21:36:04.0370 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_32\System\ff26cc03e6d57d8abd13b990332e67c6\System.ni.dll - ok
    21:36:04.0373 0x12d0  [ 1020C0C4BAC624DAF56712EA6D5865CE, AC83D5DD362FA46D120897E0A104EC7DCF91DD1564978DE2B0BC29943DEE44C7 ] C:\Windows\SysWOW64\msvcr71.dll
    21:36:04.0373 0x12d0  C:\Windows\SysWOW64\msvcr71.dll - ok
    21:36:04.0376 0x12d0  [ 15B7225BBA691E4CF8A3D06238D46AE6, D9D10F3B6FF960373ECA79EA06383E9CAAEED5986C706967BF0A7B0714DE4FF2 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll
    21:36:04.0376 0x12d0  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll - ok
    21:36:04.0378 0x12d0  [ 2342EC9254F4C60CA98441BD65C89E12, 7FDCAEB5D021E291A1C9B94DD4D49913CE363BF94D37518E466DB3DD72C41D05 ] C:\Windows\SysWOW64\dciman32.dll
    21:36:04.0378 0x12d0  C:\Windows\SysWOW64\dciman32.dll - ok
    21:36:04.0380 0x12d0  [ 561FA2ABB31DFA8FAB762145F81667C2, DF96156F6A548FD6FE5672918DE5AE4509D3C810A57BFFD2A91DE45A3ED5B23B ] C:\Windows\SysWOW64\msvcp71.dll
    21:36:04.0380 0x12d0  C:\Windows\SysWOW64\msvcp71.dll - ok
    21:36:04.0383 0x12d0  [ 8B57BA74C6F5782BB4FD5FDBE6691A31, DC7E7CC076A95E48135AE292A7BE39084C3D6BEEC32CC05FEFB2070325524226 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\LayoutDLL12OEM.dll
    21:36:04.0383 0x12d0  C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\LayoutDLL12OEM.dll - ok
    21:36:04.0386 0x12d0  [ 11AE198CEB747D3FFFE94C3DA538E325, 9E444A441889FE68DEDD416FD62623508C4612DD875ED8985EEB1B71404FD66F ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\CPSCommonTools12OEM.dll
    21:36:04.0386 0x12d0  C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\CPSCommonTools12OEM.dll - ok
    21:36:04.0389 0x12d0  [ 13820B972D74B3DE4F6552A57AC799A7, B85C6840A98E93BE928A61E46F8C712874B10D942BB9A8377045623AC877F8E4 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
    21:36:04.0389 0x12d0  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
    21:36:04.0391 0x12d0  [ E7F7FBF6A16B5F67C508F40A7E9B008B, 7AFB56AF9BD8888485D080EAC5F2F6A9A75DE79F260B5F374715BAEB171A121E ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\roxippEMC12.dll
    21:36:04.0391 0x12d0  C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\DLLShared\roxippEMC12.dll - ok
    21:36:04.0394 0x12d0  [ F1278B3514EA6FA9BC39B20D26139AAC, 7FA1B8CCBB4771F3105EEACE2C13F949FA65C7F53817C783BDF9770F94FF12B5 ] C:\Windows\SysWOW64\msiltcfg.dll
    21:36:04.0394 0x12d0  C:\Windows\SysWOW64\msiltcfg.dll - ok
    21:36:04.0397 0x12d0  [ 8504944851DF6175CC489A8F3328459E, DDC2F6DBA537E188DE53EBFDC5CC943F1468EAFC9FB3000929CE75072454BF9E ] C:\Windows\SysWOW64\d3d10.dll
    21:36:04.0397 0x12d0  C:\Windows\SysWOW64\d3d10.dll - ok
    21:36:04.0399 0x12d0  [ 53EDBE9C1D6B0CEC11A573852B5B6DAD, E4A6B00AA93F2E8BBA7149601A37D7388E0A5EC48CD95A0BD94939FD96726811 ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
    21:36:04.0399 0x12d0  C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe - ok
    21:36:04.0402 0x12d0  [ 06CC2A3D9026022D4E1ED798092BF5D5, 867506B31C88FD11888415FAA8B64EB60B23FC377ED3D4819FDBEE6B19D8DF65 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\homepermitsconfig12OEM.dll
    21:36:04.0402 0x12d0  C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\homepermitsconfig12OEM.dll - ok
    21:36:04.0405 0x12d0  [ 2E96A2FCD4EEF09E6A5BD4EA9D01532B, F0F587A716B1705C356737F18D0E6A07BA3E69A09AF89DF27126E9EDA6C87BFB ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rsl.dll
    21:36:04.0405 0x12d0  C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rsl.dll - ok
    21:36:04.0408 0x12d0  [ 4E2BFC88C6E482EA9483E6FBAC3EB52E, 9EE7BA3D5AB80EFED09F6837B113AFF815163B2EF11CC03CDFD55BE8467EBF16 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpquio08.dll
    21:36:04.0408 0x12d0  C:\Program Files (x86)\HP\Digital Imaging\bin\hpquio08.dll - ok
    21:36:04.0410 0x12d0  [ 1220595CABA75AB91A6B3FA3B89483CC, 313DFE385336D00DAFBC8DF30F001859C77DEB214BB3F874CE42F22734FFAE4E ] C:\Windows\SysWOW64\snmpapi.dll
    21:36:04.0410 0x12d0  C:\Windows\SysWOW64\snmpapi.dll - ok

    Part 4:

     

    21:36:04.0413 0x12d0  [ E0A46FED61F22D34375B2EF282A7F587, 8C2A791C17BF0F07092F5A26035ABBFDE86DABDBC3CF56E9F13DA598E1E1B0DF ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SQLite352.dll
    21:36:04.0413 0x12d0  C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SQLite352.dll - ok
    21:36:04.0415 0x12d0  [ 0CAF25ACC9C2E8C5A5682EBDCFD01708, 9FC60436A235405D1FAF1B4645CC2B49FAF19D8BA295A0731406D1263FA03F4F ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.rsc
    21:36:04.0416 0x12d0  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.rsc - ok
    21:36:04.0418 0x12d0  [ FB3F036EF6A467F7AF46C821FF5D198D, 1291C3E5CCDE87C813DD8AEF8703667BE0DDD9FF485148CC43B23CA328984D3D ] C:\Windows\SysWOW64\d3d10core.dll
    21:36:04.0418 0x12d0  C:\Windows\SysWOW64\d3d10core.dll - ok
    21:36:04.0421 0x12d0  [ 5B4886DAEB7565C06108DCB4FD4E3FCF, F21938C4E538E9B8F7E3CA96AFC715867CD6CE72C3D2166FED7C3020BDFA2382 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rcsl.dll
    21:36:04.0421 0x12d0  C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\rcsl.dll - ok
    21:36:04.0423 0x12d0  [ 5BE41AA95AD5ECA6DCCC50C589A30372, E95EA582A341D5A14544A3967236157BD4953AED23DC098B2F8A7C581F5F46B2 ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicHTTPClient12OEM.dll
    21:36:04.0423 0x12d0  C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicHTTPClient12OEM.dll - ok
    21:36:04.0426 0x12d0  [ C23C087CEBABB8B5CD6EB8DBA08EB7F7, A760D2D004268369DCBE2C6FFCFEAC4B892080981FBDD2ACA20DD565B52A3521 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtao08.dll
    21:36:04.0426 0x12d0  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtao08.dll - ok
    21:36:04.0429 0x12d0  [ 378B0CAFC4A0FA3C53287DAA84DC2464, 31D837D6C46110162AB1157E291E941EA2D2C32349AA61864905EF899F5D0110 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\acf97bfe2a931d4a47253b26b7218991\WindowsBase.ni.dll
    21:36:04.0429 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\acf97bfe2a931d4a47253b26b7218991\WindowsBase.ni.dll - ok
    21:36:04.0431 0x12d0  [ 589DF683A6C81424A6CECE52ABF98A50, 8CE0D07B2FC1F1BF8C07434FAFCDC63FDD3B75007C3B2EED130DB69D2D16E90A ] C:\Windows\System32\tquery.dll
    21:36:04.0431 0x12d0  C:\Windows\System32\tquery.dll - ok
    21:36:04.0434 0x12d0  [ D4F264FE23F8953D840904418220C15E, 72EAF30265A0CC88DEC0FCA7869734D8C93572457C61A2BF1BDFFB20C061DBCD ] C:\Windows\SysWOW64\dxgi.dll
    21:36:04.0434 0x12d0  C:\Windows\SysWOW64\dxgi.dll - ok
    21:36:04.0437 0x12d0  [ 6DE66FE7C526637E74CD066461C7C871, 7E8980A3751762180D795EAC38458303BEAF8D1F85AB5F2D10D9CE7013090CBE ] C:\Windows\SysWOW64\d3d11.dll
    21:36:04.0437 0x12d0  C:\Windows\SysWOW64\d3d11.dll - ok
    21:36:04.0439 0x12d0  [ 1B22422DC7EAA39E86820387C5AA1CB4, 365F4E690EDCF1FB86D88858456997E8433D6FDBEC384853D866EEA91F3ACE77 ] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
    21:36:04.0439 0x12d0  C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe - ok
    21:36:04.0442 0x12d0  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
    21:36:04.0442 0x12d0  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
    21:36:04.0443 0x12d0  [ 2C68D1CEAA96FE39E44B4979ACD6D9B3, C0594E386299B0363D680B7F2E5E855D577A8CDD3FEC3FD9E5A098EE609FE469 ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\libumajin.dll
    21:36:04.0443 0x12d0  C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\libumajin.dll - ok
    21:36:04.0447 0x12d0  [ D63797E8E7781EE1500A810CB6194FA6, 5C96DA00B98F0776E6174EBB7D4D6DB634838E130D8581E11811831D2C57B119 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    21:36:04.0447 0x12d0  C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
    21:36:04.0449 0x12d0  [ 04518E7E6C1026C35572361C1D0BE0F7, C454D94A07DCF70F60439F645D02636FA64FA7C69569B26D3FF0917FFFF3CE3B ] C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicLicenseManager12OEM.dll
    21:36:04.0449 0x12d0  C:\Program Files (x86)\Common Files\Roxio Shared\DLLShared\SonicLicenseManager12OEM.dll - ok
    21:36:04.0452 0x12d0  [ 277A14058F356070809E279652877055, 02478CBC51A3049F491DD2772B82D343663BC6FADFB17197CCD5B617BF6EE09A ] C:\Windows\SysWOW64\atiuxpag.dll
    21:36:04.0452 0x12d0  C:\Windows\SysWOW64\atiuxpag.dll - ok
    21:36:04.0454 0x12d0  [ 1B8A42779178DF8F7277D8D1AD70C919, 6D836C5CC71B442FEE6137876099C8162432BA219A42662A25EF22B7E5F2C0AF ] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.dll
    21:36:04.0455 0x12d0  C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.dll - ok
    21:36:04.0457 0x12d0  [ F2CE8E6CEDCC89ADD5C6646D8AD4EE68, 80A7E23510480AE9B40DB87F89CB821E9EDE3705ED07D3CEACE4A86561C9A7A1 ] C:\Program Files\MozyHome\mozystat.exe
    21:36:04.0457 0x12d0  C:\Program Files\MozyHome\mozystat.exe - ok
    21:36:04.0460 0x12d0  [ 7568CC720ACE4D03B84AF97817E745EF, 7155144CB0B260B969C398A36BC277C97BEADB5DB137D19A4F7E5AF61C3E24D4 ] C:\Windows\System32\mssrch.dll
    21:36:04.0460 0x12d0  C:\Windows\System32\mssrch.dll - ok
    21:36:04.0462 0x12d0  [ 04CB7C8FDC6D9640DD82A527208F72C4, 0F8A327B0234A29EAB1F03D9102A3DF7DB4515BF580163198C5A8C174C98DE4F ] C:\Windows\System32\UIAnimation.dll
    21:36:04.0462 0x12d0  C:\Windows\System32\UIAnimation.dll - ok
    21:36:04.0464 0x12d0  [ 187044FCB8C4FDAF2D96ACDED19290C3, A6A825975234D075CFE6DE739459E2125D29BA3B98CCC362EA93C802AE4F2825 ] C:\Program Files\MozyHome\libeay32.dll
    21:36:04.0464 0x12d0  C:\Program Files\MozyHome\libeay32.dll - ok
    21:36:04.0467 0x12d0  [ 81800928E0F713DF31F3393CC26F4013, 0ABCC70297C83C01BCCAF03083BE67EB7A50A28557B2F9578EDB73B382F54182 ] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
    21:36:04.0467 0x12d0  C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe - ok
    21:36:04.0469 0x12d0  [ 3C7D9B5730DF1E61AEDB1782193F8E3B, 40FCDBF87D5626081618E73B22C17D69A8A3EC2363ACE824D15A65AB329D8362 ] C:\Program Files\MozyHome\ssleay32.dll
    21:36:04.0469 0x12d0  C:\Program Files\MozyHome\ssleay32.dll - ok
    21:36:04.0472 0x12d0  [ EA87F150E722E4AB866AD0A13382FA02, D28BE0D1210D9DFEBF313A93227DDF5BFFE6B6EE9980FAD238503CA135FBDA10 ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
    21:36:04.0472 0x12d0  C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe - ok
    21:36:04.0475 0x12d0  [ 7CD104D7791EC5DC4EE6FA1AE57325D4, 6F8E63C3C73B30CA1B0ED98AD0957796EDA7B1430088BFE9DB303C15DFB5BE78 ] C:\Program Files (x86)\Common Files\DivX Shared\Qt4.8\QtCore4.dll
    21:36:04.0475 0x12d0  C:\Program Files (x86)\Common Files\DivX Shared\Qt4.8\QtCore4.dll - ok
    21:36:04.0477 0x12d0  [ C3761661C17C2248A9379A8FB89E3DE1, CE3477FA2B4058EB80739E0161FE957545F13CF86D313F6422732901D35F75F2 ] C:\Windows\System32\stobject.dll
    21:36:04.0477 0x12d0  C:\Windows\System32\stobject.dll - ok
    21:36:04.0480 0x12d0  [ 3121A79D13A61562BE9CC902CD46B542, 00A5833A48338A4A9A5530844924AF4F1FAB618DA46D7EBBC6E2165C32ED376C ] C:\Windows\System32\msidle.dll
    21:36:04.0480 0x12d0  C:\Windows\System32\msidle.dll - ok
    21:36:04.0482 0x12d0  [ 9ACCBC5891BA51B5B29C1A88F80D4CE3, 4EA3D9CB239874232AE0D7F824AF8CC7AD9BB4657CB9978B41067B4447FBE71B ] C:\Program Files (x86)\QuickTime\QTTask.exe
    21:36:04.0482 0x12d0  C:\Program Files (x86)\QuickTime\QTTask.exe - ok
    21:36:04.0485 0x12d0  [ ACE1BB07E0377E37A2C514CD2EC119B1, A9AFA4774DFA875496764D6E541A6333A3ACD3C5D2BBEF753C2D80BA83B4AC15 ] C:\Windows\System32\mssprxy.dll
    21:36:04.0485 0x12d0  C:\Windows\System32\mssprxy.dll - ok
    21:36:04.0487 0x12d0  [ 241B3663318F87156DA3DC5540B0CF9E, A5EB2F4B4735CF5C3A5D12FB362BBC18933AD4DD223144CDB3A4C186286FC1CC ] C:\Windows\SysWOW64\atidxx32.dll
    21:36:04.0487 0x12d0  C:\Windows\SysWOW64\atidxx32.dll - ok
    21:36:04.0490 0x12d0  [ AC6EE4B07B9A78B155DEE7529ACCE355, 2A09A60B38DC714396C7E606B33D974A0727365BC7B0BB5FCB88413DAD51B0BF ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\libmmd.dll
    21:36:04.0490 0x12d0  C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\libmmd.dll - ok
    21:36:04.0492 0x12d0  [ B3CE0951E3C1EA3C733573C472EE85F9, F7D81435BA1B85A6B105480B8BF484255CB74B2E31CEA927D8F3546DB6549293 ] C:\Windows\System32\msimtf.dll
    21:36:04.0492 0x12d0  C:\Windows\System32\msimtf.dll - ok
    21:36:04.0495 0x12d0  [ AB3FA3D9B1F1D0571CBC43D1487CCD6F, AA3A661F8C907D430E9D430852B1608AFEEA848607A428C58CE1BF0C871E0453 ] C:\Windows\System32\jscript9.dll
    21:36:04.0495 0x12d0  C:\Windows\System32\jscript9.dll - ok
    21:36:04.0497 0x12d0  [ A9F9D081518AC03A51C1195986076F42, 7549CA4530470D9C8A0078E0002E3650133051AA4A1D2F3B7CF0BCA4C4A65595 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
    21:36:04.0497 0x12d0  C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
    21:36:04.0500 0x12d0  [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\Aleiyia\AppData\Local\Temp\{25120905-3D00-44F9-8855-D7F49FF8D03E}\{68DEF8BC-8E72-43AA-9967-504CA10A0FD1}.tmp
    21:36:04.0500 0x12d0  C:\Users\Aleiyia\AppData\Local\Temp\{25120905-3D00-44F9-8855-D7F49FF8D03E}\{68DEF8BC-8E72-43AA-9967-504CA10A0FD1}.tmp - ok
    21:36:04.0503 0x12d0  [ DA4AB78D11EEC83CEC4552443AEE7DA8, 68BC309AEED670BB807B3F0EC9F7B5F5B0295BE8DB60D31943A7AF33A3DAB17F ] C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\a74542efbeb46445949a39026c501132\PresentationCore.ni.dll
    21:36:04.0503 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\a74542efbeb46445949a39026c501132\PresentationCore.ni.dll - ok
    21:36:04.0505 0x12d0  [ F832EEEA97CDDA1AF577E721F652A0D1, EBBB7CA199BA4DF231123922BD310D43DE0104C6185B70FE0281B938D5336F2E ] C:\Windows\System32\batmeter.dll
    21:36:04.0506 0x12d0  C:\Windows\System32\batmeter.dll - ok
    21:36:04.0508 0x12d0  [ 81FB155132AE12BA18119D5B36A85476, B135C87752B20C98CD5D4B9BE47316F785EC41FD5E391D8609F06EDA29B05BBF ] C:\Windows\System32\msvcr110_clr0400.dll
    21:36:04.0508 0x12d0  C:\Windows\System32\msvcr110_clr0400.dll - ok
    21:36:04.0511 0x12d0  [ 885DD74E72356844795772EC76FC40E1, A8CEDFCEF18ED0094CE5A2F4FF126F46455B47E61FB81D11921261F15F419D3A ] C:\Program Files (x86)\Java\jre7\bin\jpishare.dll
    21:36:04.0511 0x12d0  C:\Program Files (x86)\Java\jre7\bin\jpishare.dll - ok
    21:36:04.0513 0x12d0  [ 7A6986DD659B96398A11AF5173892715, FB7818952B9015F433418E7DC656A2C20CD682056AB981A55C1722020142D578 ] C:\Windows\SysWOW64\cabinet.dll
    21:36:04.0513 0x12d0  C:\Windows\SysWOW64\cabinet.dll - ok
    21:36:04.0516 0x12d0  [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\Aleiyia\AppData\Local\Temp\{25120905-3D00-44F9-8855-D7F49FF8D03E}\{2DF52D58-D1BA-40DE-B631-3ACB1B91122C}.tmp
    21:36:04.0516 0x12d0  C:\Users\Aleiyia\AppData\Local\Temp\{25120905-3D00-44F9-8855-D7F49FF8D03E}\{2DF52D58-D1BA-40DE-B631-3ACB1B91122C}.tmp - ok
    21:36:04.0518 0x12d0  [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\Users\Aleiyia\AppData\Local\Temp\{25120905-3D00-44F9-8855-D7F49FF8D03E}\{3D3FBCFE-5D69-4C34-B1CD-D04A1BBE1583}.tmp
    21:36:04.0518 0x12d0  C:\Users\Aleiyia\AppData\Local\Temp\{25120905-3D00-44F9-8855-D7F49FF8D03E}\{3D3FBCFE-5D69-4C34-B1CD-D04A1BBE1583}.tmp - ok
    21:36:04.0521 0x12d0  [ 007863E45F25AA47A4C30D0930BBFD85, 60F2ABA40D520FCA2C57FA2DB72E111C14F21821DA17F662837506B80C269634 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
    21:36:04.0521 0x12d0  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
    21:36:04.0523 0x12d0  [ F70A554333BCFAF67D20F1EC4D6A44B6, ECC865D67AC6F34E53C9B74D98AB255F1B97DDA2FCD25436C9CAC6EE6723053A ] C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll
    21:36:04.0523 0x12d0  C:\Program Files (x86)\DivX\DivX Update\DivXUpdateCheck.dll - ok
    21:36:04.0526 0x12d0  [ D5A787E18D3C67894CDAC0A81D617DB4, D33377311A7AA9C6BB8A8B116E0152C1C86F8C6BCC2407E2BF436F0CAAD73266 ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtGui4.dll
    21:36:04.0526 0x12d0  C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtGui4.dll - ok
    21:36:04.0529 0x12d0  [ 3F7CD7873FA942C38F9831F286698414, 5D7F7D7E999BD5A4DD0D31D5DFFC325E53F52496B14D2DA179192FDB149DCF0A ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe
    21:36:04.0529 0x12d0  C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe - ok
    21:36:04.0532 0x12d0  [ C9FB9038B15036CA28CF0B4BE2BED9BD, 0F56384E798B3F725FFEFC6E31A980DA31F620DB847F601273EF19E8CE74A226 ] C:\Windows\System32\en-US\tquery.dll.mui
    21:36:04.0532 0x12d0  C:\Windows\System32\en-US\tquery.dll.mui - ok
    21:36:04.0534 0x12d0  [ 2A4318112B14E4D015C0B6975153859B, 25B7CAC881FA87B80E7F07D0F882B52E3294BBE6FDF43BFAC98C7D491BA0509F ] C:\Program Files (x86)\Java\jre7\bin\java.dll
    21:36:04.0534 0x12d0  C:\Program Files (x86)\Java\jre7\bin\java.dll - ok
    21:36:04.0536 0x12d0  [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122, E7EA375A3BDE8FC764CB09524344370B9EE25F98AD6C83E6F37A569EB8D277D6 ] C:\Windows\System32\prnfldr.dll
    21:36:04.0536 0x12d0  C:\Windows\System32\prnfldr.dll - ok
    21:36:04.0539 0x12d0  [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\Aleiyia\AppData\Local\Temp\{25120905-3D00-44F9-8855-D7F49FF8D03E}\{A42A4511-06FD-46F9-B78D-43452A73A45B}.tmp
    21:36:04.0539 0x12d0  C:\Users\Aleiyia\AppData\Local\Temp\{25120905-3D00-44F9-8855-D7F49FF8D03E}\{A42A4511-06FD-46F9-B78D-43452A73A45B}.tmp - ok
    21:36:04.0542 0x12d0  [ 2A436796758BF2555A26C770FE8A6FEE, 9E42AF3A3CB05E323CBB7F93FE7C454CD251672C5D9F5E94909131A5D8F9204A ] C:\Windows\System32\fdProxy.dll
    21:36:04.0542 0x12d0  C:\Windows\System32\fdProxy.dll - ok
    21:36:04.0544 0x12d0  [ 966D8AC2491FF009B6BB3F335F6EF8A5, 53CCEF4E11C1B635049425CB1E383893C93F0F64EBE26D1C367978CB2D41EC51 ] C:\Program Files (x86)\Common Files\DivX Shared\Qt4.8\QtGui4.dll
    21:36:04.0544 0x12d0  C:\Program Files (x86)\Common Files\DivX Shared\Qt4.8\QtGui4.dll - ok
    21:36:04.0547 0x12d0  [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\Aleiyia\AppData\Local\Temp\{25120905-3D00-44F9-8855-D7F49FF8D03E}\{7B24E59F-23B5-4FAD-BB32-44D7A1F245CE}.tmp
    21:36:04.0547 0x12d0  C:\Users\Aleiyia\AppData\Local\Temp\{25120905-3D00-44F9-8855-D7F49FF8D03E}\{7B24E59F-23B5-4FAD-BB32-44D7A1F245CE}.tmp - ok
    21:36:04.0550 0x12d0  [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\Aleiyia\AppData\Local\Temp\{25120905-3D00-44F9-8855-D7F49FF8D03E}\{1C826BC1-5C9D-4576-A150-9FB3C3D11FA7}.tmp
    21:36:04.0550 0x12d0  C:\Users\Aleiyia\AppData\Local\Temp\{25120905-3D00-44F9-8855-D7F49FF8D03E}\{1C826BC1-5C9D-4576-A150-9FB3C3D11FA7}.tmp - ok
    21:36:04.0552 0x12d0  [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\Aleiyia\AppData\Local\Temp\{25120905-3D00-44F9-8855-D7F49FF8D03E}\{3C53F514-D981-474E-A093-B9B7263012B4}.tmp
    21:36:04.0552 0x12d0  C:\Users\Aleiyia\AppData\Local\Temp\{25120905-3D00-44F9-8855-D7F49FF8D03E}\{3C53F514-D981-474E-A093-B9B7263012B4}.tmp - ok
    21:36:04.0555 0x12d0  [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\Aleiyia\AppData\Local\Temp\{25120905-3D00-44F9-8855-D7F49FF8D03E}\{8D32FEF6-7B54-4EC4-B8A5-BC5CD0EC013F}.tmp
    21:36:04.0555 0x12d0  C:\Users\Aleiyia\AppData\Local\Temp\{25120905-3D00-44F9-8855-D7F49FF8D03E}\{8D32FEF6-7B54-4EC4-B8A5-BC5CD0EC013F}.tmp - ok
    21:36:04.0558 0x12d0  [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\Aleiyia\AppData\Local\Temp\{25120905-3D00-44F9-8855-D7F49FF8D03E}\{FCA15CB6-2B80-4B95-A770-D8E8E270CDE8}.tmp
    21:36:04.0558 0x12d0  C:\Users\Aleiyia\AppData\Local\Temp\{25120905-3D00-44F9-8855-D7F49FF8D03E}\{FCA15CB6-2B80-4B95-A770-D8E8E270CDE8}.tmp - ok
    21:36:04.0560 0x12d0  [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\Aleiyia\AppData\Local\Temp\{25120905-3D00-44F9-8855-D7F49FF8D03E}\{578BC2CD-F45B-4FC9-9996-160DE6B477E4}.tmp
    21:36:04.0560 0x12d0  C:\Users\Aleiyia\AppData\Local\Temp\{25120905-3D00-44F9-8855-D7F49FF8D03E}\{578BC2CD-F45B-4FC9-9996-160DE6B477E4}.tmp - ok
    21:36:04.0563 0x12d0  [ 42A9CB6906D9A8BEDC83B57163E62924, E18522D3137653140757829EFBFCE624A5BAA5842E2BBA10B9E5AB6C84BE49E1 ] C:\Windows\System32\DXP.dll
    21:36:04.0563 0x12d0  C:\Windows\System32\DXP.dll - ok
    21:36:04.0566 0x12d0  [ 2ECD9D9087DC15E7AAD130883E665219, 16D27EFFA74C8E12B28CDFA90BF708B5314E65C45F07E1BCF3CBF4D7DF8B22EF ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtCore4.dll
    21:36:04.0566 0x12d0  C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtCore4.dll - ok
    21:36:04.0568 0x12d0  [ 81F08948A0F1475894C99D4D19A158A8, 93334DA369BF976E498265E432CAF63D898D378C6B32947DF355366ABE2A0FAC ] C:\Windows\SysWOW64\wshqos.dll
    21:36:04.0568 0x12d0  C:\Windows\SysWOW64\wshqos.dll - ok
    21:36:04.0570 0x12d0  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891, 0A82A475301202791A7C10F978F952EAB7DB146A702D4EA67E24E2C98BC19638 ] C:\Windows\System32\Syncreg.dll
    21:36:04.0570 0x12d0  C:\Windows\System32\Syncreg.dll - ok
    21:36:04.0573 0x12d0  [ BC83108B18756547013ED443B8CDB31B, B2AD109C15EAA92079582787B7772BA0A2F034F7D075907FF87028DF0EAEA671 ] C:\Windows\SysWOW64\msvcp100.dll
    21:36:04.0573 0x12d0  C:\Windows\SysWOW64\msvcp100.dll - ok
    21:36:04.0575 0x12d0  [ 22E04A8AE1ABA831026F8F3328F85995, FAA86924E412A49351EE9E63E117665F8E31EFF25ABE6A556D6BD138D4732FAD ] C:\Program Files (x86)\Common Files\DivX Shared\Qt4.8\QtNetwork4.dll
    21:36:04.0575 0x12d0  C:\Program Files (x86)\Common Files\DivX Shared\Qt4.8\QtNetwork4.dll - ok
    21:36:04.0578 0x12d0  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB, CF9082360E32A7C3E13A67AC2C6192F4A76870D43DA9FF2936993A637F712761 ] C:\Windows\System32\AltTab.dll
    21:36:04.0578 0x12d0  C:\Windows\System32\AltTab.dll - ok
    21:36:04.0581 0x12d0  [ 523CF74A52C9A1762DA8B83AEE734498, 5A739182B916738B611E1BBA9098F8BCC8C4E2CC2CFEFD1BC5CE7941D11CEDFD ] C:\Windows\SysWOW64\IconCodecService.dll
    21:36:04.0581 0x12d0  C:\Windows\SysWOW64\IconCodecService.dll - ok
    21:36:04.0583 0x12d0  [ C653D7F4BDC08A06A187BF48050FE23C, 7815F0D9CC2D62916A6FC5072C1B1DC3B293204F690EB81D9D35BD370C0B848E ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
    21:36:04.0583 0x12d0  C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
    21:36:04.0585 0x12d0  [ C836175870E00ACC546066632E15BD10, 4347F3319C26DA1C38F395C74DBD67AF886149C8F29EDE765DD96C8480A3054A ] C:\Windows\ehome\ehSSO.dll
    21:36:04.0585 0x12d0  C:\Windows\ehome\ehSSO.dll - ok
    21:36:04.0588 0x12d0  [ C83470111578D3039DB619529AF40720, 7C5805B0B977B899A76283C780E8124E02D05659F102C0F3C769D278F6FF9EDA ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
    21:36:04.0588 0x12d0  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
    21:36:04.0591 0x12d0  [ 5E21285DA720664CEC9B57664D4D2407, 264CB35896B07D1711DFC97B29A2E9962FDDF5A07FA4927476C7E2DD0BF18465 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
    21:36:04.0591 0x12d0  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
    21:36:04.0594 0x12d0  [ ADE3384FBF2314072424F01F45E17067, FE8D672EE5E053996FF8A79CF5B3098788E8AC1654BB4EE2996A3C1AE91E4199 ] C:\Program Files (x86)\Common Files\DivX Shared\Qt4.8\QtXml4.dll
    21:36:04.0594 0x12d0  C:\Program Files (x86)\Common Files\DivX Shared\Qt4.8\QtXml4.dll - ok
    21:36:04.0597 0x12d0  [ 0E37FBFA79D349D672456923EC5FBBE3, 8793353461826FBD48F25EA8B835BE204B758CE7510DB2AF631B28850355BD18 ] C:\Windows\SysWOW64\msvcr100.dll
    21:36:04.0597 0x12d0  C:\Windows\SysWOW64\msvcr100.dll - ok
    21:36:04.0599 0x12d0  [ 5DD2D09A0804CF1A9443F5A3D6FE01B0, 8BBE204B781368A134E0F44822E17B14FF04E5E3C3AD91E04184C9E014F762CC ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpotra08.dll
    21:36:04.0599 0x12d0  C:\Program Files (x86)\HP\Digital Imaging\bin\hpotra08.dll - ok
    21:36:04.0602 0x12d0  [ 1DD09EFF6D5D12C6F0B84BAEDF2D5C3C, 2C244C367CF9B34BB415BE37D749E54149B56AC3089BE148C3EB2E092BEB0B16 ] C:\Program Files (x86)\DivX\DivX Media Server\mc_net_tools.dll
    21:36:04.0602 0x12d0  C:\Program Files (x86)\DivX\DivX Media Server\mc_net_tools.dll - ok
    21:36:04.0604 0x12d0  [ D9225DB92D870038F1CB95B26408BBC7, E93727551819315B82D434055DCA12DE88C6E712275FA15636FEE044E49FAAA3 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpotra08.rsc
    21:36:04.0604 0x12d0  C:\Program Files (x86)\HP\Digital Imaging\bin\hpotra08.rsc - ok
    21:36:04.0607 0x12d0  [ 384EAA703F243B6D51798BA921B799EA, A6B07F1AEA49C732A484E7AB57B6092F93F41E3793D6BEBD0F1C071F41F0467B ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpotradd.dll
    21:36:04.0607 0x12d0  C:\Program Files (x86)\HP\Digital Imaging\bin\hpotradd.dll - ok
    21:36:04.0610 0x12d0  [ A1107B8676E04958C793AAEB45101570, E3FA00EA374DA454D597B950CF4BE73E6A4F2D9B49BB6DB3655574541240ADCA ] C:\Program Files (x86)\DivX\DivX Media Server\mc_upnp_dlna_stack.dll
    21:36:04.0610 0x12d0  C:\Program Files (x86)\DivX\DivX Media Server\mc_upnp_dlna_stack.dll - ok
    21:36:04.0612 0x12d0  [ 2218928CF528D7BC295B1B4C69E9846C, FCC23BF7FACFC911CD7090B8E12E6ECC7716514FD7CA1D73B2CA351AA41499BD ] C:\Program Files\AVAST Software\Avast\avastui.exe
    21:36:04.0612 0x12d0  C:\Program Files\AVAST Software\Avast\avastui.exe - ok
    21:36:04.0615 0x12d0  [ 10F815BE90A66AAFC6C713D1BD626064, 01139FC04BC53594296F6A0E16B8D20B940F64BC8119FE7705C03C4947958F39 ] C:\Windows\System32\pnidui.dll
    21:36:04.0615 0x12d0  C:\Windows\System32\pnidui.dll - ok
    21:36:04.0617 0x12d0  [ 67EC459E42D3081DD8FD34356F7CAFC1, 1221A09484964A6F38AF5E34EE292B9AFEFCCB3DC6E55435FD3AAF7C235D9067 ] C:\Program Files (x86)\Java\jre7\bin\msvcr100.dll
    21:36:04.0617 0x12d0  C:\Program Files (x86)\Java\jre7\bin\msvcr100.dll - ok
    21:36:04.0620 0x12d0  [ 7896EFFDEE215C172BE724A64931EF1C, 10F9D73B85853FD6D7B54DCB9BC0FA5EC9FAECFB01E3AD4DAE4CC2FE2E68EE6D ] C:\Program Files (x86)\Common Files\microsoft shared\ink\tiptsf.dll
    21:36:04.0620 0x12d0  C:\Program Files (x86)\Common Files\microsoft shared\ink\tiptsf.dll - ok
    21:36:04.0622 0x12d0  [ C676E5EA388AF7C4C031F56F9B42E362, 7686AF56DF7D8A333C7F741DEA06D0577E88B69F648CEC94C1D6BEFAAE6B4135 ] C:\Windows\System32\d2d1.dll
    21:36:04.0622 0x12d0  C:\Windows\System32\d2d1.dll - ok
    21:36:04.0625 0x12d0  [ 012787CEB35505EB78DF82E0A0072888, FE082EF9F8462589F8C8BEEFB1D10AB06E1E3D6F4494CABF34097328C109C03E ] C:\Windows\System32\browcli.dll
    21:36:04.0625 0x12d0  C:\Windows\System32\browcli.dll - ok
    21:36:04.0628 0x12d0  [ B81737A402CA1BCEC7CDD33261E0D820, 60CDD7E71F3ED2B7933E0544B12EFB06D023895125DBCBF54053DE385F52E473 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\abf62e6545d2802fc60286678a67e6bf\mscorlib.ni.dll
    21:36:04.0628 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\abf62e6545d2802fc60286678a67e6bf\mscorlib.ni.dll - ok
    21:36:04.0630 0x12d0  [ 5ACA5926F501C300046FAE5944B3A19B, 6AE6C9CB3828C6DBFA58589E525C88D9667A8260CDCEAE2B4A44D1D5F303CECE ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\a4b45c44490c75bc2fb22780e7ef087d\PresentationFramework.ni.dll
    21:36:04.0630 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\a4b45c44490c75bc2fb22780e7ef087d\PresentationFramework.ni.dll - ok
    21:36:04.0633 0x12d0  [ 37CF3324F46CEB3A4F2686C617CBB35C, 9BFF457BDBAFD28E7D341DCBE15D4CD405D08B9826536B0B63B3F97270B5AAFA ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
    21:36:04.0633 0x12d0  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
    21:36:04.0636 0x12d0  [ F168869067FDF08BC6291988173B5025, A06F2E27F6F3402D5272F0B30428AC165EB6D22EB0EA7D6D71CACCC9C67046A8 ] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_secondary.exe
    21:36:04.0636 0x12d0  C:\Program Files (x86)\Dell Stage\Dell Stage\stage_secondary.exe - ok
    21:36:04.0638 0x12d0  [ C4BFE4B61086416B0529212F92BCE081, A5EE6FB81229885C7A4A4EF0A9C3E9EE9E7F85C1EDE9BEEE236EB0503093D8F3 ] C:\Windows\System32\schedcli.dll
    21:36:04.0638 0x12d0  C:\Windows\System32\schedcli.dll - ok
    21:36:04.0641 0x12d0  [ DD85F00EC31F77315AE992B7B0411D65, 54C7A699252AAC3210BD1B8047292F5BE004FA72B8B5338D9772EF800C7EAED0 ] C:\Windows\System32\DWrite.dll
    21:36:04.0641 0x12d0  C:\Windows\System32\DWrite.dll - ok
    21:36:04.0643 0x12d0  [ 36E652727134278104147DB2014BF878, 6E5B0BE29102E695EA2FA2D304B3B1FC5984D77A6D493096BADC2E3C668BD12D ] C:\Program Files (x86)\Java\jre7\bin\client\jvm.dll
    21:36:04.0643 0x12d0  C:\Program Files (x86)\Java\jre7\bin\client\jvm.dll - ok
    21:36:04.0646 0x12d0  [ 3BDA50E1839E245BD83534F8DEAF9DFD, E9A01754DE05441A40BDD8E4AB3D7FE08FD050059021225205FC969FE2614449 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll
    21:36:04.0646 0x12d0  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll - ok
    21:36:04.0648 0x12d0  [ B9F0A4020AA98B7A20287BF7FE99A1FD, 21138F161EEEA46198890C7A2D073F2C82829E15676131BDAD9F237EDC7477CD ] C:\Windows\System32\QUTIL.DLL
    21:36:04.0648 0x12d0  C:\Windows\System32\QUTIL.DLL - ok
    21:36:04.0651 0x12d0  [ 92DBF0A4C9239169010FC6E07859C82E, 00FB2CF4420F0FFEF519AFE732A708CF249640121E2A891CAA164313ABD7F804 ] C:\Windows\System32\ActionCenter.dll
    21:36:04.0651 0x12d0  C:\Windows\System32\ActionCenter.dll - ok
    21:36:04.0653 0x12d0  [ E8710B5DDA963E6BA198DF5FB209E72A, 87C8E2467C42BB4AAF53481DD3D27D4B3E06A738630DDA140AC359F0839B907F ] C:\Windows\System32\d3d10warp.dll
    21:36:04.0653 0x12d0  C:\Windows\System32\d3d10warp.dll - ok
    21:36:04.0655 0x12d0  [ C8FDF0FA9E97E2FAAF3F814716AAA881, DD24A1CAB44D943B0E1A795A347AD25D9305FC7F012A2566A6A14BD47221831F ] C:\Windows\System32\WPDShServiceObj.dll
    21:36:04.0655 0x12d0  C:\Windows\System32\WPDShServiceObj.dll - ok
    21:36:04.0658 0x12d0  [ B1868F9E2B5224E57CE55570AF4FBC99, A4279BE54CA66029BA208049162DC0C9E9EA3BB7830B7E310CA8868614564F34 ] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
    21:36:04.0658 0x12d0  C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe - ok
    21:36:04.0661 0x12d0  [ 3C69CE161C7007E9AD53A325492D446A, 4837BE44E0C2492FF5D4F9F84B7627BD7A93BF4FEBF7AF9578650404F2241848 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqrif08.dll
    21:36:04.0661 0x12d0  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqrif08.dll - ok
    21:36:04.0664 0x12d0  [ 7EF5923CBD35BDF49A14082ABC0D4C75, A13F8BBE4A045E3F02CFC3A53A4E137DA77CF6B476B2EE95FC51D9433226E078 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\3fe705796c6a41d4889d9001d1c56af8\System.Xaml.ni.dll
    21:36:04.0664 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\3fe705796c6a41d4889d9001d1c56af8\System.Xaml.ni.dll - ok
    21:36:04.0666 0x12d0  [ 6D961EE2903CA42C673D72F3CC331B11, 673E42F8466499B3CEE8F0AA531D3876C5FE7A81B942BC537BF002F1E3C7A345 ] C:\Program Files\AVAST Software\Avast\libcef.dll
    21:36:04.0666 0x12d0  C:\Program Files\AVAST Software\Avast\libcef.dll - ok
    21:36:04.0669 0x12d0  [ B0A41262968DD6FCE3933527892D4A24, 1B7EEADB1C437E9779D9DE81A3FDA320661DE95D4BCAAB525D717BC887B5E640 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqmif08.dll
    21:36:04.0669 0x12d0  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqmif08.dll - ok
    21:36:04.0672 0x12d0  [ C746F3BF98E92FB137B5BD2B8B5925BD, 67A8990F3D491D149E65C90042909259793C65E671DC953FDA1F7590FAC23D9E ] C:\Windows\System32\FXSST.dll
    21:36:04.0672 0x12d0  C:\Windows\System32\FXSST.dll - ok
    21:36:04.0674 0x12d0  [ AF7038413C6506180FAE58B0194A2F23, B1B492BCB70A8BB5C4A79DA221EDC3FCAD88FB92823A297A844E5EEF4892F462 ] C:\Program Files (x86)\HP\Digital Imaging\bin\HpqCPTA.dll
    21:36:04.0674 0x12d0  C:\Program Files (x86)\HP\Digital Imaging\bin\HpqCPTA.dll - ok
    21:36:04.0677 0x12d0  [ E2A17BCC08D92F42E08AF6BA2F93ABA7, 5FC9D47BF4B1094BECC0C0DDCD5CD4318DD3E4495D982F8785331616D5B82599 ] C:\Windows\SysWOW64\ExplorerFrame.dll
    21:36:04.0677 0x12d0  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
    21:36:04.0679 0x12d0  [ 1CBF15FDB0310345A68972EB5C5B948F, E1EDCE6216B24037B243AC68CEEBD510646B2EFD70BC118E68303F9ED85D1973 ] C:\Windows\SysWOW64\mssprxy.dll
    21:36:04.0679 0x12d0  C:\Windows\SysWOW64\mssprxy.dll - ok
    21:36:04.0681 0x12d0  [ 807B6562009E5858C93E1C0F435C0382, 7E523EC452BEDBDA6164B28F43B6210E07F32EC5A8663609B59FD75B8529BABB ] C:\Windows\SysWOW64\netbios.dll
    21:36:04.0681 0x12d0  C:\Windows\SysWOW64\netbios.dll - ok
    21:36:04.0684 0x12d0  [ B78DBA0BD5F9EE605BF42F6324182728, F680E6D80552351AAE82B4AE895599CA45FD38D497922AB8B5C10F8930C863BA ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\LeResourceLoader.dll
    21:36:04.0684 0x12d0  C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\LeResourceLoader.dll - ok
    21:36:04.0687 0x12d0  [ 00E86A80CA56510D2C9F09E8C6CC25C6, D648DF7EE7A6CD4766FCD5030F21D0E6A9B9971B79DAA199F13469EFE31B44E3 ] C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRTA.dll
    21:36:04.0687 0x12d0  C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRTA.dll - ok
    21:36:04.0689 0x12d0  [ 650CAEA856943E29F25A25D31E004B18, DCA63D2AF4C6F14B27EA006F200E58A5C13AC940A51947A40F668908A446CC4E ] C:\Windows\System32\FXSAPI.dll
    21:36:04.0689 0x12d0  C:\Windows\System32\FXSAPI.dll - ok
    21:36:04.0692 0x12d0  [ 81353C4568E2771E091615B0FE612229, CEB9B3E75C2D6204846159645ECD3F7C1F3C94A05D8AE2A9A42F41C5A6D1FF34 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSFileLoader.dll
    21:36:04.0692 0x12d0  C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSFileLoader.dll - ok
    21:36:04.0693 0x12d0  [ 36732C0A7013FD15BC803282671DE00C, 8CDD5C2B99EAB9EB5FB6BCC813F3A7B826D972E7F76DF38F38995E1E215051C2 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSCommonObjects.dll
    21:36:04.0693 0x12d0  C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSCommonObjects.dll - ok
    21:36:04.0696 0x12d0  [ E5E697AB8431EE8144030F81F66D9853, 091350CB2E2A921898AD7B4123A22352FB551B94915D637F02711625FEA3DE3A ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqxml2.dll
    21:36:04.0696 0x12d0  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqxml2.dll - ok
    21:36:04.0699 0x12d0  [ 2DBB9127794BC30BC31D26FA088F8BAB, E65D9EC796048046CA786C772A7766AA62B21C704D3B3554E328FFCF947070D0 ] C:\Windows\System32\ieframe.dll
    21:36:04.0699 0x12d0  C:\Windows\System32\ieframe.dll - ok
    21:36:04.0702 0x12d0  [ 3A09CB35E44055D35411B829E53B412F, FE75A45FCBEAC371827F334ABAE0EB48CB8A72E41CCB581BCFBA2859640D5882 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSCommonEnglish.dll
    21:36:04.0702 0x12d0  C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\CPSCommonEnglish.dll - ok
    21:36:04.0704 0x12d0  [ 4676E92357233BD5A097BE3F7D6DB00A, 4234625E7C4AAFAB8CE6EDB4183D235DDDB396FB35B8D39D37B3FEAEE855AA58 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\dce99d8de14d8a015313db98c72552ee\System.Core.ni.dll
    21:36:04.0704 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\dce99d8de14d8a015313db98c72552ee\System.Core.ni.dll - ok
    21:36:04.0707 0x12d0  [ 6E1F8165C365D35C8E3C045AF0CDD481, B861360D0A014265A0BEB4CC2FE31EA05AE95120E8B07820C13A044D64C00E2B ] C:\Windows\SysWOW64\duser.dll
    21:36:04.0707 0x12d0  C:\Windows\SysWOW64\duser.dll - ok
    21:36:04.0709 0x12d0  [ 0FF335D687C85097725A53458160E81E, BF8BB3C8AF1822BEB5FF5F8008614B982F277D862B16B6516CA91F73D336E9D4 ] C:\Program Files\iPod\bin\iPodService.exe
    21:36:04.0709 0x12d0  C:\Program Files\iPod\bin\iPodService.exe - ok
    21:36:04.0712 0x12d0  [ 1C0E369575F387460E2A5F28269B2CC4, 96F26EF7483F9EB7B79DFCF50BB0261B981322BF8FB9F239D617FEACCEC466C8 ] C:\Windows\SysWOW64\DWrite.dll
    21:36:04.0712 0x12d0  C:\Windows\SysWOW64\DWrite.dll - ok
    21:36:04.0714 0x12d0  [ 4F3CD1C59EA71401E155C432BCECE180, 6D4118A627CAE509E43D0CC0062EECAA0990C955BB15AE24834460551B2F51A2 ] C:\Windows\System32\PortableDeviceTypes.dll
    21:36:04.0714 0x12d0  C:\Windows\System32\PortableDeviceTypes.dll - ok
    21:36:04.0717 0x12d0  [ F2A24E4AEC0F8D5DBAB10CB87A8EFED2, 1E2084BB76072596AB2E846DB45318453E1C82C1141385B7D73A1AD5EB30E8BD ] C:\Windows\SysWOW64\sti.dll
    21:36:04.0717 0x12d0  C:\Windows\SysWOW64\sti.dll - ok
    21:36:04.0719 0x12d0  [ EE06B85BC69F18826302348A2AD089E0, 417205797CC9F6C986A863A61179784D9ADCAF1961EF8A4D9042D73C5A86509A ] C:\Windows\SysWOW64\dui70.dll
    21:36:04.0719 0x12d0  C:\Windows\SysWOW64\dui70.dll - ok
    21:36:04.0722 0x12d0  [ 76C2A3B47FE220E027697CDEF63A72C9, 6C2ECAD3DEB1410E3AEE506EF23562DBCFBE4C3BB3CD5C3CE3A660FA24262F91 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll
    21:36:04.0722 0x12d0  C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll - ok
    21:36:04.0724 0x12d0  [ B087F2B901570F6EF62F6C2E01A480F3, 9303CB715184D161F3BD8E9EE8799009375B17FA1BD5D7EF661D7CD7555AA251 ] C:\Windows\SysWOW64\wiatrace.dll
    21:36:04.0724 0x12d0  C:\Windows\SysWOW64\wiatrace.dll - ok
    21:36:04.0727 0x12d0  [ 86F33213C450FED3C7E32F9473415E7E, 75F3B3739DD12D8B7F93BEA912B864BF8BAEFA061720A87CF1F55030334C2558 ] C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
    21:36:04.0727 0x12d0  C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe - ok
    21:36:04.0730 0x12d0  [ FE085839DF8AF76F958F0184E5C173B6, DAC508DEEB68961679AC370B9F45F939ADACADA20C8DFE231F720517C8FD8151 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System\4d4a15d5d7968df7dedd4cf853848d90\System.ni.dll
    21:36:04.0730 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_64\System\4d4a15d5d7968df7dedd4cf853848d90\System.ni.dll - ok
    21:36:04.0733 0x12d0  [ E64D9EC8018C55873B40FDEE9DBEF5B3, 2DB11E7C631A9887CB75AFEAD2C79EC65F82C51F5F073CEFC8CDDF664EFF29C1 ] C:\Windows\System32\PortableDeviceApi.dll
    21:36:04.0733 0x12d0  C:\Windows\System32\PortableDeviceApi.dll - ok
    21:36:04.0735 0x12d0  [ D043C883E81BF37D94940557D0363D25, 5A50CB3183CAECF300572014B0188A4D4DD5C2EBCFC67986B76E7709C8218AE5 ] C:\Program Files (x86)\DivX\DivX Codec\DivXDec.ax
    21:36:04.0735 0x12d0  C:\Program Files (x86)\DivX\DivX Codec\DivXDec.ax - ok
    21:36:04.0738 0x12d0  [ F7A256EC899C72B4ECDD2C02CB592EFD, 9C1AA9322E83CABB94AEA4375EAEB0C44700E1F33B8BE98649BA1DF4DDFAD326 ] C:\Windows\System32\bthprops.cpl
    21:36:04.0738 0x12d0  C:\Windows\System32\bthprops.cpl - ok
    21:36:04.0740 0x12d0  [ AE839020FEE052598F096942C8002C73, 9F0520B75EE30E2AD6BFA46C7D52782A8A9515AA6D14579DEF2F9D222EC57083 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll
    21:36:04.0740 0x12d0  C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll - ok
    21:36:04.0743 0x12d0  [ 8569E35D00F45972E506502EEE622BA4, 01FE851C03DB88C8373099C279F995A559D962B08932E193032FA3EAD522FB01 ] C:\Windows\System32\srchadmin.dll
    21:36:04.0743 0x12d0  C:\Windows\System32\srchadmin.dll - ok
    21:36:04.0745 0x12d0  [ F2F7EED54D0970CACE9A579A562AFA7A, 0E4E2C139FEC9A65695C7A68DC26E110E2E47D899B7A011850AC94D9068802EB ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Drawing\7926c26400ff262c7fc48b729377085b\System.Drawing.ni.dll
    21:36:04.0745 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Drawing\7926c26400ff262c7fc48b729377085b\System.Drawing.ni.dll - ok
    21:36:04.0749 0x12d0  [ 0B0E075EF0AE1CD8526D6D851E684224, 349E8ACF6E570A51C265AC19C4971C7BECA96820A8298D559E2DB6199C03C5A6 ] C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXRCV.exe
    21:36:04.0749 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXRCV.exe - ok
    21:36:04.0751 0x12d0  [ F0315917BC1EAFCF85CF1D8ACFB5518B, 031BB04EA8565DB50DF35B04793B082D69B206194A9CE8C41F981DF9366E9C26 ] C:\Program Files (x86)\DivX\DivX Plus DirectShow Filters\DivXDecH264.ax
    21:36:04.0751 0x12d0  C:\Program Files (x86)\DivX\DivX Plus DirectShow Filters\DivXDecH264.ax - ok
    21:36:04.0754 0x12d0  [ 3AD3602258590F5A3C45DC7A029D0140, 7428C3747AA6EFB48C596041B5EB76ABB2AF6A28BE105775852D2305C067ADE0 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
    21:36:04.0754 0x12d0  C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll - ok
    21:36:04.0757 0x12d0  [ A2CB714DCF8F0E134F2429AF673C7C08, B39E957F1BF6312DD84678FC7D767157C0E997B41904EC6BE8DF15F7A15BC016 ] C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
    21:36:04.0757 0x12d0  C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe - ok
    21:36:04.0760 0x12d0  [ 44E45BD9327ABC0540593E809B32F3CA, 9808F05F0DA3775F07A88FD614F038E6F4AC5FF680C73D5FD40116A5A247A53D ] C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires 3\msxml\msxml4.dll
    21:36:04.0760 0x12d0  C:\Program Files (x86)\Steam\steamapps\common\Age Of Empires 3\msxml\msxml4.dll - ok
    21:36:04.0762 0x12d0  [ 55436C4848E1EB25644C70EF78D53FF9, A8951914E7BDA419CA9A4EBF7285767DC7CEBAD498FADBD017B21F8329C1D131 ] C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXSTM.exe
    21:36:04.0762 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXSTM.exe - ok
    21:36:04.0765 0x12d0  [ F82260D9323B549B02042B105A9DE201, F4AC3714095330A004785C658BF8004AC30367F9747C6BE72835E3AF51911C2C ] C:\Program Files (x86)\Samsung\Kies\Common\Kies.Common.Util.dll
    21:36:04.0765 0x12d0  C:\Program Files (x86)\Samsung\Kies\Common\Kies.Common.Util.dll - ok
    21:36:04.0767 0x12d0  [ E948D1D42DC68923ABD75EEB5BCCD1D3, 74218AE72B6B9940315F17D297E97F9F5CE4962C956AF8049367E14769D6EDD5 ] C:\Windows\System32\consent.exe
    21:36:04.0768 0x12d0  C:\Windows\System32\consent.exe - ok
    21:36:04.0770 0x12d0  [ 8BBE61F7852CEBB81DA4AD18E7C7668F, 3A3A5E79FAED53CDFB10A01CD2C832A80F9CD591CDEC1BC03371DACF76846388 ] C:\Program Files (x86)\Samsung\Kies\Locale\Kies.Locale.dll
    21:36:04.0770 0x12d0  C:\Program Files (x86)\Samsung\Kies\Locale\Kies.Locale.dll - ok
    21:36:04.0773 0x12d0  [ B64B27F93EE12D85F80F6F1E21975A09, 9B83FDD588DD3BB929BB812547C21B929307B4C0DB9409D7F729E269FE0AEC90 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Windows.Forms\4764e3995ebd7b6b438eef937cde1332\System.Windows.Forms.ni.dll
    21:36:04.0773 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Windows.Forms\4764e3995ebd7b6b438eef937cde1332\System.Windows.Forms.ni.dll - ok
    21:36:04.0775 0x12d0  [ 22F7DE8F3E33AA52A80855B590464DFA, D11C0D0AB367D1E1EA7369A68A0FD5D1495017CE369548FE76B03D3A2A4ACE08 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\nlssorting.dll
    21:36:04.0775 0x12d0  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\nlssorting.dll - ok
    21:36:04.0778 0x12d0  [ 815089457E1216E2C2BF8E9BF9675AA3, 736E8DB46CA19DA41D45B727E9E88C8893D8240BBEB2CDAA9E647609DC1E412A ] C:\Program Files (x86)\Samsung\Kies\Common\Kies.Common.DeviceServiceLib.Interface.dll
    21:36:04.0778 0x12d0  C:\Program Files (x86)\Samsung\Kies\Common\Kies.Common.DeviceServiceLib.Interface.dll - ok
    21:36:04.0781 0x12d0  [ 28CA821606669BB9215CE010767720FA, C8A1F0D6704F8F37CF8AADDFAD511FF27E56E8BCFFD4AC948DFA0329DB1F3A1E ] C:\Windows\SysWOW64\cryptui.dll
    21:36:04.0781 0x12d0  C:\Windows\SysWOW64\cryptui.dll - ok
    21:36:04.0783 0x12d0  [ 71ECC01F9928873A5DEB5B475C0F2429, 608B7D5EFB980CBCC519A039C85EF86E4DD12CCFCA6884675615BBE6DAAF6582 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll
    21:36:04.0783 0x12d0  C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll - ok
    21:36:04.0786 0x12d0  [ 672D7C5080ACB003343006405DA2E621, 5F28C83A20ECB1F20894B60725477BEF0D672817DFDB9822FB345A3270A0C095 ] C:\Windows\SysWOW64\thumbcache.dll
    21:36:04.0786 0x12d0  C:\Windows\SysWOW64\thumbcache.dll - ok
    21:36:04.0788 0x12d0  [ 75EAA6150FD1D7B0C042A1A48AEF1752, 365D1E8F0C719FF6F48BBABABBC34AB4BF0C4C1FC616E6BC5668D2C7DA53E638 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
    21:36:04.0788 0x12d0  C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
    21:36:04.0791 0x12d0  [ F1C48535CD981B0E024D139C21529E7F, 85AAC65271E1D2914604E3EBBEEEBCD3181D85B4418D4AF9FD4DDB706703087E ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
    21:36:04.0791 0x12d0  C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
    21:36:04.0794 0x12d0  [ 9108540E866F75C7AF2B91DD921A8091, 7208C8E05E818781D7F2703B86848FC90651E0D8BE10362863250F2283CEC511 ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
    21:36:04.0794 0x12d0  C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
    21:36:04.0797 0x12d0  [ 9AB16E665D109F2B72A13B3C3EBA4860, 7BBEA46004125D05E2C4742C7915EB5CD938DCA09B469F18D29D4FC99BD80D08 ] C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXLDB.dll
    21:36:04.0797 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXLDB.dll - ok
    21:36:04.0799 0x12d0  [ D995CBBC28A615659A8A0CE6A9C9856D, EBD5D3D9790F04B4DF70766B102013FB4FAA758E044AD75EA83D090A506FC038 ] C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXCFG.dll
    21:36:04.0799 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXCFG.dll - ok
    21:36:04.0802 0x12d0  [ 08A93FF78AAE443D5F386E8787E5DABC, 9290EAAFEBAEBA25BA074CBD020B271A231B166195CE6C151475573AC29696EB ] C:\Program Files\AVAST Software\Avast\aswUtil.dll
    21:36:04.0802 0x12d0  C:\Program Files\AVAST Software\Avast\aswUtil.dll - ok
    21:36:04.0805 0x12d0  [ BDDC447AB46625A54619808575D5CB46, 5321343BFB972A111D27DED7A3F3A3520E0C77104E6139ADC7765C76A459ED9C ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
    21:36:04.0805 0x12d0  C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe - ok
    21:36:04.0807 0x12d0  [ 2C9A49F4A54FD09DF13F1847EA2AEDAD, FD4FBCD00A2F42B183825370E9C11FB43B01145BC0E5A1323C4CEE8E6AC39302 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddusr.dll
    21:36:04.0807 0x12d0  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddusr.dll - ok
    21:36:04.0810 0x12d0  [ 18BC58E7F9C49C2979642118B64A16EC, 064979523D031A0658F9A0C9EF3A24D8B7794023C0D18537BC55896D7CECAA26 ] C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXCSR.dll
    21:36:04.0810 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\FUFAXCSR.dll - ok
    21:36:04.0813 0x12d0  [ 50F9394F53CF8015C703EBD2EF3BABC6, 3B57FB98D7FAE4FF1450729425343A81CF37C9C5A8D0C1AFC279D62495833C4F ] C:\Windows\System32\LocationApi.dll
    21:36:04.0813 0x12d0  C:\Windows\System32\LocationApi.dll - ok
    21:36:04.0815 0x12d0  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] C:\Windows\System32\FXSSVC.exe
    21:36:04.0815 0x12d0  C:\Windows\System32\FXSSVC.exe - ok
    21:36:04.0817 0x12d0  [ 2031DCC0083A134AF9451CD1402FFCE3, 4E2646A5607C543648F9324A5B59FB389E683F6B652004A736B8FFAC7E0112CD ] C:\Program Files (x86)\EPSON Software\Event Manager\LcMgr.dll
    21:36:04.0817 0x12d0  C:\Program Files (x86)\EPSON Software\Event Manager\LcMgr.dll - ok
    21:36:04.0820 0x12d0  [ 9111354A308612483F8DA995A1DD1835, C5933496302BFF9E323F024747705397C70CE5728DED0BB55E257E5D5EF78C8C ] C:\Windows\System32\SensorsApi.dll
    21:36:04.0820 0x12d0  C:\Windows\System32\SensorsApi.dll - ok
    21:36:04.0822 0x12d0  [ 51A34398C23DD48AA9614C2C7BFE222A, DDBF20EA77DEB5703F91D8185C7C6F9325231558ED07213A27D410D108D368D2 ] C:\Program Files (x86)\EPSON Software\Event Manager\ScanEngine30.dll
    21:36:04.0822 0x12d0  C:\Program Files (x86)\EPSON Software\Event Manager\ScanEngine30.dll - ok
    21:36:04.0825 0x12d0  [ 1A1CEF512F488D45BB624C148E53356D, 8768AD452B2C6E8FA16CAC763C806F0F70860DC46F7923E28D232312FB7EBEA9 ] C:\Program Files (x86)\EPSON Software\Event Manager\ScnMgr10.dll
    21:36:04.0825 0x12d0  C:\Program Files (x86)\EPSON Software\Event Manager\ScnMgr10.dll - ok
    21:36:04.0828 0x12d0  [ B8DE851298E99A005BFD34AA906B3FE8, 33F631C0B561199B5FEB9020FAA99E50EFA9F421D7484FFA640C5561494726DA ] C:\Windows\winsxs\x86_avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_1d37a43bbfe1dc9c\mfc110u.dll
    21:36:04.0828 0x12d0  C:\Windows\winsxs\x86_avast.vc110.crt_2036b14a11e83e4a_11.0.60610.1_none_1d37a43bbfe1dc9c\mfc110u.dll - ok
    21:36:04.0831 0x12d0  [ D2155709E336C3BC15729EB87FEC6064, 682A84C0F2D892E7A6CEE4E5937B4799E352AAE3B71E7037F2A343373467443C ] C:\Windows\System32\rasdlg.dll
    21:36:04.0831 0x12d0  C:\Windows\System32\rasdlg.dll - ok
    21:36:04.0833 0x12d0  [ 5FD67F205773EC80674DBBD609DB5315, 59F2F01B8ACFD4D6217C277C739C833FB54EF7DDAD66D977A474073F2862DFE6 ] C:\Windows\System32\tzres.dll
    21:36:04.0833 0x12d0  C:\Windows\System32\tzres.dll - ok
    21:36:04.0835 0x12d0  [ 930C61F63FB900CEE15D4EEB98BD5238, C2649C39BEDA5A578A9CD1B0EC54CD8262C0D02A0B1594C25C2E8565129B3A21 ] C:\Program Files (x86)\EPSON Software\Event Manager\ScnCom10.dll
    21:36:04.0835 0x12d0  C:\Program Files (x86)\EPSON Software\Event Manager\ScnCom10.dll - ok
    21:36:04.0838 0x12d0  [ 69ED0472B72915137E632B570A917AC9, 11179B33391223A0439FDBF7C0C77483C0DDD25C1BB53BD6F6872B95A06A9C3E ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runt73a1fc9d#\261f548d4850ad60de7baa61023fe697\System.Runtime.Remoting.ni.dll
    21:36:04.0838 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runt73a1fc9d#\261f548d4850ad60de7baa61023fe697\System.Runtime.Remoting.ni.dll - ok
    21:36:04.0841 0x12d0  [ 903E85BA90D0A9D32368B200634B2B67, 234FD348EA123CE07B3A30D89F439DAEEEE43DB7AC999B4872F216DCE5E823E6 ] C:\Program Files (x86)\EPSON Software\Event Manager\ScnEps25.dll
    21:36:04.0841 0x12d0  C:\Program Files (x86)\EPSON Software\Event Manager\ScnEps25.dll - ok
    21:36:04.0843 0x12d0  [ 2F474D40626B0C694400589F3FBB9AA9, 4A0E47E6BECB9BA3A52F415CCBA03C3FD1091ACB0F731C82D08FCABBFB3F74B7 ] C:\Windows\System32\vbscript.dll
    21:36:04.0843 0x12d0  C:\Windows\System32\vbscript.dll - ok
    21:36:04.0846 0x12d0  [ 163A95975E1D8819E653AA3E961371CA, 05B13500741861E5384773D234D26CEFB52B115CCFBAE9F030881289EE4F3C58 ] C:\Windows\twain_32.dll
    21:36:04.0846 0x12d0  C:\Windows\twain_32.dll - ok
    21:36:04.0848 0x12d0  [ B0B59E13EEC2FA1584DE87B72B56E370, 3C6D08711EF0CB004D8879BA356987DFE3157524548B2B82F300F3851F7701F7 ] C:\Program Files (x86)\EPSON Software\FAX Utility\Resource\FUCMNMSG.dll
    21:36:04.0848 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\Resource\FUCMNMSG.dll - ok
    21:36:04.0851 0x12d0  [ A88110E864EEB5B2334F645D00591AC3, 87A090E02AD3BDCFFDB26EA71F9C70C2D60B67D857450916D8A7A663356037AA ] C:\Program Files (x86)\EPSON Software\FAX Utility\Resource\FUFAXRCV.dll
    21:36:04.0851 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\Resource\FUFAXRCV.dll - ok
    21:36:04.0854 0x12d0  [ D36FD2B40C3A3C67ACA6E49D705BFB90, BA3781B34278DE4CF4CC647FE1E6592ABE76128F95D9287F04F98BBB3C859248 ] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll
    21:36:04.0854 0x12d0  C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll - ok
    21:36:04.0856 0x12d0  [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2, E8ACB693B1A78FAEF292111BE3F9B10BA95C76833C06C931A08EAAAE39A21334 ] C:\Windows\System32\dot3api.dll
    21:36:04.0856 0x12d0  C:\Windows\System32\dot3api.dll - ok
    21:36:04.0859 0x12d0  [ 703FFD301AB900B047337C5D40FD6F96, C09909B89183B89BA87CAC8C5BEBD0E995C5CB08CC9B9D1E88352103EE958857 ] C:\Windows\SysWOW64\olepro32.dll
    21:36:04.0859 0x12d0  C:\Windows\SysWOW64\olepro32.dll - ok
    21:36:04.0861 0x12d0  [ 20F4C672A75F86E670EE8B965C6F0BBA, E4308FB225AD363CB7034E45D09A8865C7A8C894E41382579616ECF4BE52F1BE ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuration\13bb14bb88e6c577c79001039d678bbd\System.Configuration.ni.dll
    21:36:04.0861 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuration\13bb14bb88e6c577c79001039d678bbd\System.Configuration.ni.dll - ok
    21:36:04.0864 0x12d0  [ 9076AB590F112D7230694B570498B410, BC1DC3056EBA68DFF62B6658B3F6C11C58A549AF82D8B471B249C7A248B00871 ] C:\Program Files (x86)\EPSON Software\FAX Utility\FUIMGCDC.dll
    21:36:04.0864 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\FUIMGCDC.dll - ok
    21:36:04.0867 0x12d0  [ E4FCA0F99A41E460C84016DEFD31E6EF, 8EB14AF2025EADC7C86280E8417D8F286E8271B4F88B31696E33DFD72B3A0EF2 ] C:\Windows\System32\wlanhlp.dll
    21:36:04.0867 0x12d0  C:\Windows\System32\wlanhlp.dll - ok
    21:36:04.0870 0x12d0  [ D7623880851662CA53DABFBEA70D918D, 7FB55C37152C985FA5E99CA360C4A2423B1A27F9F7BAAFC5AB504804ABA0705B ] C:\Windows\System32\spool\drivers\x64\3\EFXGI09A.DLL
    21:36:04.0870 0x12d0  C:\Windows\System32\spool\drivers\x64\3\EFXGI09A.DLL - ok
    21:36:04.0872 0x12d0  [ 357BE883C5236BFC7341CB9E82308908, 4DDB697FD9B7C516CF99D73C8799EA35BB97E2431216CD7C1045F17B06109FBF ] C:\Windows\System32\wlanapi.dll
    21:36:04.0872 0x12d0  C:\Windows\System32\wlanapi.dll - ok
    21:36:04.0875 0x12d0  [ 7F1B4C6FF3B85F9ADF74055187B8A22C, CC95DA5662638AACBE9643DCB236464C2C2095A8D5CDC8A747045870BE9D0E7D ] C:\Windows\System32\wlanutil.dll
    21:36:04.0875 0x12d0  C:\Windows\System32\wlanutil.dll - ok
    21:36:04.0877 0x12d0  [ 73FCB7919DEE80EE556F2E498594EBAE, D0F7A0AD3BC33263E9C2CF9787DD326436F9E0C9F5031D769F8A43C64C08A762 ] C:\Windows\System32\onex.dll
    21:36:04.0877 0x12d0  C:\Windows\System32\onex.dll - ok
    21:36:04.0880 0x12d0  [ C1070A91B14A4E12D90B1A421C72F88D, 8C46903163C8AFBD8FDFCEE957939B705C55E4789A2FC750D5697EE77B4B7707 ] C:\Program Files (x86)\EPSON Software\FAX Utility\FUSVCCLT.dll
    21:36:04.0880 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\FUSVCCLT.dll - ok
    21:36:04.0882 0x12d0  [ FF2AA9A817482AEC14980F07C94E26D0, E2FA7C099C7B3D5ED88351FF6205521706F685CBAFFAF3844F008A8A7AE93893 ] C:\Program Files (x86)\EPSON Software\FAX Utility\EbpD4Fax.dll
    21:36:04.0882 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\EbpD4Fax.dll - ok
    21:36:04.0885 0x12d0  [ 7A6F66796DF720708FF522421F115C40, A4E6B71824D21DBDC5A991EA5C8D6356A03F3EFEE59FB0BB20B401D2DF0837C2 ] C:\Program Files (x86)\EPSON Software\FAX Utility\Library\FUDRVUTL.dll
    21:36:04.0885 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\Library\FUDRVUTL.dll - ok
    21:36:04.0888 0x12d0  [ B846321446376F84C1065AAFF1D7BDB2, 8FE10A61C374FC5FBBC4D02F958902D4CAE27E66E483D1BDAE11287708A8FA2E ] C:\Program Files (x86)\EPSON Software\FAX Utility\FUADRFIL.dll
    21:36:04.0888 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\FUADRFIL.dll - ok
    21:36:04.0891 0x12d0  [ 8815A00387ADE03CD685405E7ADB2552, 5A4196274AF883AC11A50E0881A7506FC6A47D73CBC728AEE1A9F9F8379034EB ] C:\Program Files (x86)\EPSON Software\FAX Utility\FULEPP.dll
    21:36:04.0891 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\FULEPP.dll - ok
    21:36:04.0893 0x12d0  [ 8002143CF9031F2FC92888164E22DBEB, FB51F9B1C7B6C9866686DE3247AABBC5E92953894343D3A2494E66FA8E212EFE ] C:\Program Files (x86)\EPSON Software\FAX Utility\Resource\FULEPPRes.dll
    21:36:04.0893 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\Resource\FULEPPRes.dll - ok
    21:36:04.0896 0x12d0  [ D44F2C31FF586D41B549DA2A9A157A1B, 07701606F23AEAE3174CBE5AD8BE94911159D96B23885AEA2A79DE082D8BB9D6 ] C:\Program Files\AVAST Software\Avast\htmlayout.dll
    21:36:04.0896 0x12d0  C:\Program Files\AVAST Software\Avast\htmlayout.dll - ok
    21:36:04.0899 0x12d0  [ 0385325946BF0B630EDF2CC6AD71C2BE, F2DECDAEA1A91A832571A9C6A9BE928AE2D0B21085ADB40F537DDDFEE279703A ] C:\Program Files (x86)\EPSON Software\FAX Utility\Library\FUPRBDEV.dll
    21:36:04.0899 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\Library\FUPRBDEV.dll - ok
    21:36:04.0901 0x12d0  [ 3B809816F75EB7235ACF1C3B584B1F31, 1D5A4735193CC6699F078B5050CDD57197BE2BA853135634E1C33E46CF7825BF ] C:\Windows\System32\spool\drivers\x64\3\EFXMI09A.DLL
    21:36:04.0901 0x12d0  C:\Windows\System32\spool\drivers\x64\3\EFXMI09A.DLL - ok
    21:36:04.0904 0x12d0  [ B1381B756D83248D21DF23887C9B2AA0, 716BEBB735737DD421464EAB6D71F47B53214786FECE018A6A6BC0B90AD6CFEF ] C:\Program Files (x86)\LTCM Client\ltcmClient.exe
    21:36:04.0904 0x12d0  C:\Program Files (x86)\LTCM Client\ltcmClient.exe - ok
    21:36:04.0907 0x12d0  [ 9E22608ED14099113117515E8D31B224, 10A11C8F5B5039162A7473B5A6FB36A3445B384D010EB877C4E8C27EB8B50FED ] C:\Windows\System32\spool\drivers\x64\3\EFXUI09A.DLL
    21:36:04.0907 0x12d0  C:\Windows\System32\spool\drivers\x64\3\EFXUI09A.DLL - ok
    21:36:04.0909 0x12d0  [ 1207A51D603E98758013EFCB3E7FA742, 51F9E1C0F704AE45349373D57497C233BD60AD3AAC9AD9B652EA7292CF0ABA51 ] C:\Program Files (x86)\EPSON Software\FAX Utility\Library\ENCM.dll
    21:36:04.0909 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\Library\ENCM.dll - ok
    21:36:04.0912 0x12d0  [ 41DF2F6873FE6B8C0629EAC34B011A62, 826911D11FD781DEAD43A6CBCDE2BE06E9094449D73D10AC14145FFA5C28501E ] C:\Windows\System32\atiu9p64.dll
    21:36:04.0912 0x12d0  C:\Windows\System32\atiu9p64.dll - ok
    21:36:04.0915 0x12d0  [ D3AF5CFA390814ACA3965B34CA2DDC5B, F5D2210E97AF1333FFF91A3E35CCC3B7D724FB756171761CB1D81F48080520B5 ] C:\Program Files (x86)\EPSON Software\FAX Utility\Library\ENUTIL.dll
    21:36:04.0915 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\Library\ENUTIL.dll - ok
    21:36:04.0917 0x12d0  [ E01A6CF39DF4929633302E9B47C71968, 6CD97695AB0822B09C973F1D1FF96B94E03F8AC97747EA7CB56E50B57CF5D0B0 ] C:\Program Files (x86)\EPSON Software\FAX Utility\FUSTMMSG.dll
    21:36:04.0917 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\FUSTMMSG.dll - ok
    21:36:04.0920 0x12d0  [ D5ECBB3BFDC73A59440D9CA79AB3A342, 62EAD6C33C4F2D000932837FCF977FC14901627F0971CF261D41A45565262D5C ] C:\Windows\SysWOW64\mshtml.dll
    21:36:04.0920 0x12d0  C:\Windows\SysWOW64\mshtml.dll - ok
    21:36:04.0923 0x12d0  [ 803E0619BCC2996C6DE695B13877B899, 56837D4552C4791BD57A35B65D47ECEF2324D80B8E4D6247C3B31BD59B9EF142 ] C:\Program Files (x86)\EPSON Software\FAX Utility\FUVERDLG.dll
    21:36:04.0923 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\FUVERDLG.dll - ok
    21:36:04.0925 0x12d0  [ A6D7A403246862BF7D2C90219C5F5664, 0AF39D36BB06D27D2BA9FB88441294EFA33615CE58E175A2D3B28195F2910882 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\fa4b9cda7a89969191429507a934c352\System.Xml.ni.dll
    21:36:04.0925 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\fa4b9cda7a89969191429507a934c352\System.Xml.ni.dll - ok
    21:36:04.0928 0x12d0  [ 6699A112A3BDC9B52338512894EBA9D6, 10888BB9C3799E1E8B010C0F9088CED376AAD63A509FCE1727C457B022CDC717 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
    21:36:04.0928 0x12d0  C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
    21:36:04.0931 0x12d0  [ 4B2881EBDA51722006827806AA229B04, 70AA163961FDB74F3632B151C468D5F7B0A2EA7831B9E455313FF6B2DD7E914A ] C:\Program Files\AVAST Software\Avast\aswAra.dll
    21:36:04.0931 0x12d0  C:\Program Files\AVAST Software\Avast\aswAra.dll - ok
    21:36:04.0933 0x12d0  [ E79A397561EDED918DAF43563CD28372, 4F65107C0869F1E2FE2339EFD078401AC2D1AEC3CD07BC98B959FC15FD008336 ] C:\Program Files (x86)\EPSON Software\FAX Utility\Library\ENNW.dll
    21:36:04.0933 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\Library\ENNW.dll - ok
    21:36:04.0936 0x12d0  [ AF58E8CC1DAB877BFF3328108777D4B3, 487727F373CB1EE124B23B054F1CCF1FF0D6311087CB077BECAE5125EB3D9251 ] C:\Program Files (x86)\EPSON Software\FAX Utility\Library\FUDEVCOM.dll
    21:36:04.0936 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\Library\FUDEVCOM.dll - ok
    21:36:04.0939 0x12d0  [ C7494C67A6BF6FE914808E42F8265FEF, 3A3871983F2D9A57739C70365DC3F417D9BF02F5C0C4CC3272EA9F3D380EF962 ] C:\Program Files\Windows Media Player\wmpnssci.dll
    21:36:04.0939 0x12d0  C:\Program Files\Windows Media Player\wmpnssci.dll - ok
    21:36:04.0941 0x12d0  [ 5DA219F57A9076FB6FBD3C9C3713A672, 274FE616625B336D81841FDC752C8053D4CD6926565B899760D298D145CBA1A3 ] C:\Windows\System32\WWanAPI.dll
    21:36:04.0941 0x12d0  C:\Windows\System32\WWanAPI.dll - ok
    21:36:04.0943 0x12d0  [ A9F3BFC9345F49614D5859EC95B9E994, 306467D280E99D0616E839278A4DB5BED684F002AE284C3678CABB5251459CB3 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
    21:36:04.0943 0x12d0  C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
    21:36:04.0945 0x12d0  [ 62C7AACC746C9723468A8F2169ED3E85, 40E901F3EAFE52DF11D6BC4EF0E79F666EBDACE0B3C090CAD2358076E893EA47 ] C:\Windows\System32\wwapi.dll
    21:36:04.0945 0x12d0  C:\Windows\System32\wwapi.dll - ok
    21:36:04.0947 0x12d0  [ 6B851E682A36453E1B1EE297FFB6E2AB, A641D3FD9463C4788B45B8B5584EA4489C1F63A71B4B595AE85FF3482CD5EDA6 ] C:\Windows\System32\QAGENT.DLL
    21:36:04.0947 0x12d0  C:\Windows\System32\QAGENT.DLL - ok
    21:36:04.0950 0x12d0  [ A9A8FED9CCEE587A956879F35394562C, 2F2503E64ADFEEE4A38A784A9BB8CBA3406D446481C4CB55188B6326E4DC7A56 ] C:\Program Files (x86)\EPSON Software\FAX Utility\Library\FUSNMPUT.dll
    21:36:04.0950 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\Library\FUSNMPUT.dll - ok
    21:36:04.0953 0x12d0  [ 6357E2B68753A1F5CF4A68A25C4FD14A, F56BFEEACBB9DAE084F4C275DF0086091F5B83DE7183FA33F4445CD31FBB44E3 ] C:\Windows\SysWOW64\wsnmp32.dll
    21:36:04.0953 0x12d0  C:\Windows\SysWOW64\wsnmp32.dll - ok
    21:36:04.0955 0x12d0  [ C8F8E4B315BFCADE4BFDACA4EEFA59E3, 1CEB02DEA18AB2E9E06DB1F94F70CBE1BAA8A3E2649676B4C247494DD7AAA7D3 ] C:\Windows\System32\atiumd64.dll
    21:36:04.0955 0x12d0  C:\Windows\System32\atiumd64.dll - ok
    21:36:04.0958 0x12d0  [ 971559CD4D3FB291320A8EE2AABE3876, CEB45A7734394AB7B36606368423C5A443713D76F41FCB0D1A33478D07E0F793 ] C:\Program Files (x86)\EPSON Software\FAX Utility\FUUSBHLP.dll
    21:36:04.0958 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\FUUSBHLP.dll - ok
    21:36:04.0960 0x12d0  [ 423982DD851406A52B6399DDB196C606, 5FFBA6D1E9398E7C5D18553EE1C485F59174013622332F7BD8D461F707F1EC93 ] C:\Windows\System32\wmdrmdev.dll
    21:36:04.0960 0x12d0  C:\Windows\System32\wmdrmdev.dll - ok
    21:36:04.0963 0x12d0  [ 2C1055E2C6D42753241FB2A129136994, A8E858B4CB8E1E13C7574330C703E0060AEE8B7B19B682F9AE5B4A02BDC659E2 ] C:\Windows\System32\drmv2clt.dll
    21:36:04.0963 0x12d0  C:\Windows\System32\drmv2clt.dll - ok
    21:36:04.0965 0x12d0  [ 5D3B3BA5050EED0C75013DD9804335B9, 91288E2D49E5933815147BCC5D8255F9DFA768EA1AA278F1DC512FFCD08C563F ] C:\Program Files (x86)\EPSON Software\FAX Utility\Resource\FUFAXCFGRes.dll
    21:36:04.0965 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\Resource\FUFAXCFGRes.dll - ok
    21:36:04.0968 0x12d0  [ 9F0DD3CB715986BA9811F6E98CF08EF4, 391F58BBC2C6C632DEE2FAFC2674CA47CB5DB6BE8A32A8EE5D073D5BEA9F7C26 ] C:\Program Files (x86)\EPSON Software\FAX Utility\Resource\FUPRBDEVRes.dll
    21:36:04.0968 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\Resource\FUPRBDEVRes.dll - ok
    21:36:04.0971 0x12d0  [ 74CDE657245C114B98816E89B8D4CCD1, E293559EA2E2208AB2A7BDD2F3462933F525F682B55496E5F730915FD543ECD2 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
    21:36:04.0971 0x12d0  C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe - ok
    21:36:04.0973 0x12d0  [ E095177B82914686A7870A9223B5FA54, 6E7B9B7CF1BAA60B08B193B556C07E1327A50794D4575061FBC62488A10B6970 ] C:\Program Files (x86)\Samsung\Kies\Theme\Kies.Theme.dll
    21:36:04.0973 0x12d0  C:\Program Files (x86)\Samsung\Kies\Theme\Kies.Theme.dll - ok
    21:36:04.0976 0x12d0  [ 8CBBB27369F9F07BC5E874E750EAF9D0, 4C4BEA5AD454692E0A56ACFC83C495CA44B7BB2393388A5582CE3EBE5D81E2E1 ] C:\Windows\System32\wmp.dll
    21:36:04.0976 0x12d0  C:\Windows\System32\wmp.dll - ok
    21:36:04.0978 0x12d0  [ E544B0BB96398852238DA57E27089424, 7D5A3A34D218A363752BE8B67CDAF824AFBCA7569CB8A85D73BDC2B09E228F2E ] C:\Program Files (x86)\EPSON Software\FAX Utility\Library\FUPRNSYS.dll
    21:36:04.0978 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\Library\FUPRNSYS.dll - ok
    21:36:04.0981 0x12d0  [ A7934B26A096F39B15960E0A56C1C8C4, 8FCA0C5801B2D94A5125BE1A72076B2554585F98BAD7C3A98BB751D2E0CF081F ] C:\Windows\SysWOW64\bidispl.dll
    21:36:04.0981 0x12d0  C:\Windows\SysWOW64\bidispl.dll - ok
    21:36:04.0984 0x12d0  [ B4FEBBAC47297242F04EF7F14FE6DF99, 89BD6D2870B1F0DD59675E8CF7F5C8A1FB8D0C6CE7EA288C5EAAAFC714CF2573 ] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusg.dll
    21:36:04.0984 0x12d0  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusg.dll - ok
    21:36:04.0986 0x12d0  [ 806956668EA7BD5298AD52C899AA22C4, C479D7E00FC3EAF98793145D14669A4861E412A9927CBDFD7D7C329CFDD03375 ] C:\Windows\System32\atiumd6a.dll
    21:36:04.0986 0x12d0  C:\Windows\System32\atiumd6a.dll - ok
    21:36:04.0989 0x12d0  [ 2E76FF14C5987BE45AB65A91332E3C58, 46B0DF6685993D8B4D33D2CBC7757F560C424925129E07EE98781D58C2008E04 ] C:\Program Files\Windows Sidebar\wlsrvc.dll
    21:36:04.0989 0x12d0  C:\Program Files\Windows Sidebar\wlsrvc.dll - ok
    21:36:04.0991 0x12d0  [ 58A14C45A5CD2528F10A889E7B0C3FC2, 81521B27F6DE4F2451C5441DFA93781B6687EE8F9AE62A8FE76D61DE7965E6EF ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll
    21:36:04.0991 0x12d0  C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.6161_none_51cd0a7abbe4e19b\ATL90.dll - ok
    21:36:04.0994 0x12d0  [ 90444850B11F7515BAE08E241E3395F6, 9C30FF75DD53E65D6396D24BA97D4E526E276F9D0D16893706C2B3C3799DB9B4 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\1d513cb1b284a419e8b3df381ce7f270\System.Core.ni.dll
    21:36:04.0994 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\1d513cb1b284a419e8b3df381ce7f270\System.Core.ni.dll - ok
    21:36:04.0997 0x12d0  [ 5DD9F33B754196CFB8CE8773ACC609EF, BE57870A5A8F9F06A22B5051570E3223BA2FB989F2B65D424791E40D846C6ACF ] C:\Program Files (x86)\EPSON Software\FAX Utility\fufaxtif.dll
    21:36:04.0997 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\fufaxtif.dll - ok
    21:36:04.0999 0x12d0  [ CB8A91074AE1B5051E240B50A328DCF5, F1E1A1FCC2B5CB44D94F31C92D832D7DAF7B12B8C2B33398E5C6C65C2BB3A119 ] C:\Windows\System32\dxtrans.dll
    21:36:04.0999 0x12d0  C:\Windows\System32\dxtrans.dll - ok
    21:36:05.0002 0x12d0  [ 4938A4350327E1A5DEB0CD134AC1AAA3, 2F248CD60508EF43040F952CB1FF5AAB91AE3235760997379B71ACC28E8B698E ] C:\Windows\System32\ddrawex.dll
    21:36:05.0002 0x12d0  C:\Windows\System32\ddrawex.dll - ok
    21:36:05.0004 0x12d0  [ 8EE6BDE1D572677AA35707C52C585F75, 588A08C0FC3881186CD673F749E46A154F58BE39CA7AE8A2E1F25539B2299752 ] C:\Windows\SysWOW64\mlang.dll
    21:36:05.0004 0x12d0  C:\Windows\SysWOW64\mlang.dll - ok
    21:36:05.0006 0x12d0  [ 12BA419E27DBC5DBF9262C8A885FA361, 6946A3AFA702E315E30A11375E202658D66FB246525B44D76DC4967F0867E30D ] C:\Windows\System32\dxtmsft.dll
    21:36:05.0006 0x12d0  C:\Windows\System32\dxtmsft.dll - ok
    21:36:05.0009 0x12d0  [ 97A891E2BF7FDA830BCFC6269DA3F5E9, 7C8D68F0B0A7E4FF93820CC37D666FBA5400F8689860CFEB215E4A204F2C216B ] C:\Windows\System32\blackbox.dll
    21:36:05.0009 0x12d0  C:\Windows\System32\blackbox.dll - ok
    21:36:05.0011 0x12d0  [ AB272BBFB05A8585C3405EFA9F605774, 2E019FB20769BDBAAC5C55B0055602A5AAEC4F93494F4B2A686756ADA3B3D4E2 ] C:\Windows\System32\wmploc.DLL
    21:36:05.0011 0x12d0  C:\Windows\System32\wmploc.DLL - ok
    21:36:05.0014 0x12d0  [ 089F2453FAE2527B81269CE4FEC7893E, A5058D458BF649E24D4A34C1B163729251D9F52D4BAFF4E4ACC49CE60717FEF0 ] C:\Program Files (x86)\Samsung\Kies\Common\Kies.UI.dll
    21:36:05.0014 0x12d0  C:\Program Files (x86)\Samsung\Kies\Common\Kies.UI.dll - ok
    21:36:05.0017 0x12d0  [ 4697A5E9C67FCDC53D42C8A669F5DC78, A3A09650A3C1790C388BECCAEC439B32FBA8ACFF85E7291AD7E7763D896ABD91 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Web\e742916dda2f08fcc53500b2eb1e5d8f\System.Web.ni.dll
    21:36:05.0017 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Web\e742916dda2f08fcc53500b2eb1e5d8f\System.Web.ni.dll - ok
    21:36:05.0020 0x12d0  [ A42A752F8F1CDF100DAB372755754BBD, 6BCBD4DB1E7A1A10FC70182C95799D9DBBF65619F34387FC40EF197A0BF33FF4 ] C:\Program Files (x86)\Samsung\Kies\MVVM\Kies.MVVM.dll
    21:36:05.0020 0x12d0  C:\Program Files (x86)\Samsung\Kies\MVVM\Kies.MVVM.dll - ok
    21:36:05.0023 0x12d0  [ A96BDE1533DDBA00676F54026E20358B, 71E703202CF852573C5B91F77DB409E249FD0A5A37F8A75CC8D6F949BC093032 ] C:\Program Files (x86)\Samsung\Kies\Common\Kies.Interface.dll
    21:36:05.0023 0x12d0  C:\Program Files (x86)\Samsung\Kies\Common\Kies.Interface.dll - ok
    21:36:05.0025 0x12d0  [ 0302B9F7322651E8E21FE0326A7CA37B, C536BB9A295BE56E01CCB47CC92BA4A78626CC1CCF05B46838BA268C1022E5E4 ] C:\Program Files (x86)\EPSON Software\FAX Utility\Resource\FUFAXSTM.dll
    21:36:05.0025 0x12d0  C:\Program Files (x86)\EPSON Software\FAX Utility\Resource\FUFAXSTM.dll - ok
    21:36:05.0028 0x12d0  [ 3EBB0F84E6FB23D9F1B405DCF5CBAC3C, FAEF51EC4C165D9C574BD0049DEBB6206071670835C8AB6AF920E410DBDB0CA9 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt73a1fc9d#\04824fdbd5dce32530ba44ae012e4fb9\System.Runtime.Remoting.ni.dll
    21:36:05.0028 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt73a1fc9d#\04824fdbd5dce32530ba44ae012e4fb9\System.Runtime.Remoting.ni.dll - ok
    21:36:05.0031 0x12d0  [ DEC1426BF15A07E4B26DC7F479EDAA60, DFF130EABDE57DD362772FA67280C75958E8FCB8241553D7599CBB4C3F6E9FE6 ] C:\Program Files (x86)\Common Files\System\ado\msado15.dll
    21:36:05.0031 0x12d0  C:\Program Files (x86)\Common Files\System\ado\msado15.dll - ok
    21:36:05.0034 0x12d0  [ 30EFD90C995E57399F3AB10E6685C60B, AB3CAE90EC9B9B8502A98397CBAFCE12B6A86F043AB9A51184A313980E1E56F8 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\bbc48ec4245e502ae19b0601d3799c9e\System.Configuration.ni.dll
    21:36:05.0034 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\bbc48ec4245e502ae19b0601d3799c9e\System.Configuration.ni.dll - ok
    21:36:05.0036 0x12d0  [ A99C4D1B5E7E794EC5779CF14F431932, A1D43FDD572D026A4E6C6C50DAB39D4446F8F0D54004F077CD566B466E9BBD36 ] C:\Windows\SysWOW64\msdart.dll
    21:36:05.0036 0x12d0  C:\Windows\SysWOW64\msdart.dll - ok
    21:36:05.0039 0x12d0  [ E2095C5CBE19CB17F8C6B07A5805B784, F7D60D4B08506F92EFB85804B446E3834815E90834830D1D2D841A2422BD329E ] C:\Program Files (x86)\Common Files\System\Ole DB\oledb32.dll
    21:36:05.0039 0x12d0  C:\Program Files (x86)\Common Files\System\Ole DB\oledb32.dll - ok
    21:36:05.0041 0x12d0  [ ADA8BEE0D3B2852683563FD9A19F270B, E3A9357F4BEE181EFAC472E68BAA03F553E2675C58823F7F6CB4740A5A593F53 ] C:\Program Files\AVAST Software\Avast\aswData.dll
    21:36:05.0041 0x12d0  C:\Program Files\AVAST Software\Avast\aswData.dll - ok
    21:36:05.0044 0x12d0  [ 2E7D051495EFBE01E590D42303967183, 872B52C92A4FB4AF400F51DC96D881D9B2D6AA3C2ED71D8B6879B730BE57313B ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\bada32953bb6b16a53d653eae23d78dc\System.Xml.ni.dll
    21:36:05.0044 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\bada32953bb6b16a53d653eae23d78dc\System.Xml.ni.dll - ok
    21:36:05.0047 0x12d0  [ 8859C0357D3C1499BEF65C7D5BBF7A40, 319F7CAFFD23178B084331A983CFACAC18914D1284B0190769ED2E9D1427E29E ] C:\Program Files (x86)\Common Files\System\Ole DB\oledb32r.dll
    21:36:05.0047 0x12d0  C:\Program Files (x86)\Common Files\System\Ole DB\oledb32r.dll - ok
    21:36:05.0050 0x12d0  [ CBA7A1622DEF904E46C45ED9E52DD155, 7E6C3D7DED7C5CE4979443C5A16B7D4EDFA1911BF7286842A56ABB5BB6062D30 ] C:\Program Files (x86)\Samsung\Kies\Common\Kies.Common.Multimedia.dll
    21:36:05.0050 0x12d0  C:\Program Files (x86)\Samsung\Kies\Common\Kies.Common.Multimedia.dll - ok
    21:36:05.0052 0x12d0  [ ED12110CD5BFE686F645E145A7DD28C5, CA33FC7B49C6881FA6DA64E069BFA670363519937C315FA14FA8905B603D32A0 ] C:\Windows\SysWOW64\comsvcs.dll
    21:36:05.0052 0x12d0  C:\Windows\SysWOW64\comsvcs.dll - ok
    21:36:05.0054 0x12d0  [ 9E76CDD50C3DDDB739150D778EEC0B93, 79572BE68C57333744A48557E45F99F6FF6171273E63456A6B0C741EC58F52A1 ] C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
    21:36:05.0055 0x12d0  C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe - ok
    21:36:05.0057 0x12d0  [ 637847DA8D2AD592E4075F5E666E4179, 884B7871AD4E0B0F68C013010A820444FFE6C5675F94B0714C5E27F9585555E1 ] C:\Program Files\Internet Explorer\ieproxy.dll
    21:36:05.0057 0x12d0  C:\Program Files\Internet Explorer\ieproxy.dll - ok
    21:36:05.0059 0x12d0  [ 7D10CE2B09843E4B4ED5F4E17406B253, 40CA611476DA465819D01371E0591D721F07755FEBE18B32B3B5135A1C9F2329 ] C:\Program Files (x86)\Samsung\Kies\Common\Kies.Common.AllShare.dll
    21:36:05.0059 0x12d0  C:\Program Files (x86)\Samsung\Kies\Common\Kies.Common.AllShare.dll - ok
    21:36:05.0062 0x12d0  [ E9067797A1034BF10E8B725E1A276B7D, 7A84ED16B48BBD0E675ADDB2D4F773903E84D8512E9218D915F8A595EA89EDFB ] C:\Program Files (x86)\Samsung\Kies\External\MACSSDK.dll
    21:36:05.0062 0x12d0  C:\Program Files (x86)\Samsung\Kies\External\MACSSDK.dll - ok
    21:36:05.0065 0x12d0  [ 012D2506D504151F70C2829A8A6A95FF, 9504EFE39E55D50922BF16BA61727211380572397C7033166DAB997B2618906B ] C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll
    21:36:05.0065 0x12d0  C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll - ok
    21:36:05.0067 0x12d0  [ EFD7FD6CA8ABCBF19544E87E65C895D7, 1764B0BD12A1075A45253E4F4B9BD03AF3E3F840C1865E5B57C5FA59796C1A57 ] C:\Program Files\AVAST Software\Avast\CommonRes.dll
    21:36:05.0067 0x12d0  C:\Program Files\AVAST Software\Avast\CommonRes.dll - ok
    21:36:05.0070 0x12d0  [ 066EEB52A3FE535BD89D4D76AA68777B, 11C9080591C5E109BD0757D1662CA4C00F33B591CC3293428875518E299C280E ] C:\Program Files (x86)\Samsung\Kies\External\MediaModules\ASF_cSharpAPI.dll
    21:36:05.0070 0x12d0  C:\Program Files (x86)\Samsung\Kies\External\MediaModules\ASF_cSharpAPI.dll - ok
    21:36:05.0072 0x12d0  [ F10E5311E5093FA3C00FF88C54C32FCA, B557F5B00D77F030850D9AAC0FFEFC4C2A759EC4081C8459C9DEAE51BAAACC65 ] C:\Windows\SysWOW64\atl.dll
    21:36:05.0072 0x12d0  C:\Windows\SysWOW64\atl.dll - ok
    21:36:05.0075 0x12d0  [ 5A72F87F75A5EA7B46DC3AD87302FE00, 2DAE6FA1F162FE1F7235BAE89B05E59CD6003E30385980C0513431D262DBB4E9 ] C:\Windows\SysWOW64\msjetoledb40.dll
    21:36:05.0075 0x12d0  C:\Windows\SysWOW64\msjetoledb40.dll - ok
    21:36:05.0078 0x12d0  [ 544EFF88AC6C85DF5A4D6F18DFE08CFC, D688381F42062FD5D868E7770857C5951C41BA20A1B6E6F60B5D9536C02CD293 ] C:\Windows\SysWOW64\taskschd.dll
    21:36:05.0078 0x12d0  C:\Windows\SysWOW64\taskschd.dll - ok
    21:36:05.0080 0x12d0  [ 7C414E1CCE3695B7A1BF0EB8E44ED428, 7CDC9BD6AFE231C412AF7D27F5048A6B86AA217A2C8D92277153B7F9E706B1E0 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Serv759bfb78#\f4354d6580fbb745c0c8acba382a7b84\System.ServiceProcess.ni.dll
    21:36:05.0080 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Serv759bfb78#\f4354d6580fbb745c0c8acba382a7b84\System.ServiceProcess.ni.dll - ok
    21:36:05.0083 0x12d0  [ EDF2A5E96BEC469DA3F64E9BDD386111, 63C91BBDFA2E087293B010A4E45625FBD1BFCAF655BFADE2F8B1C36CF804B118 ] C:\Windows\SysWOW64\xmllite.dll
    21:36:05.0083 0x12d0  C:\Windows\SysWOW64\xmllite.dll - ok
    21:36:05.0085 0x12d0  [ C9380B96A0D51B8109D19D13467ADA0B, F0A9A7499E8E998E92E18813381F1DE5192AC01CBA9302A16BE1C58E14EB186E ] C:\Windows\SysWOW64\msjet40.dll
    21:36:05.0085 0x12d0  C:\Windows\SysWOW64\msjet40.dll - ok
    21:36:05.0089 0x12d0  [ 355A138ABDFD43FBABCAE3A1B06AB93D, 26015CE72D27E2F7FA7322203CDF236896A079F8325F1B24975CA12C57FD4B7B ] C:\Windows\System32\wmpps.dll
    21:36:05.0089 0x12d0  C:\Windows\System32\wmpps.dll - ok
    21:36:05.0091 0x12d0  [ E4133869739DAED94DFDEF982318CED8, AE3316530E1E9F637486060FE4063ACEAA57DC73BA4D7821CD0D602D8AA10DF9 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Serv759bfb78#\99f3ab10177d29e82e0d8122a7005ba9\System.ServiceProcess.ni.dll
    21:36:05.0091 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Serv759bfb78#\99f3ab10177d29e82e0d8122a7005ba9\System.ServiceProcess.ni.dll - ok
    21:36:05.0094 0x12d0  [ 6B3A268B762389142D6822391F3A1029, C1030E03709AE76B203AE054DBAF50989B1EE36F7B08ADED9D7588A96E8F6EF9 ] C:\Program Files\AVAST Software\Avast\aswResourceLib.dll
    21:36:05.0094 0x12d0  C:\Program Files\AVAST Software\Avast\aswResourceLib.dll - ok
    21:36:05.0097 0x12d0  [ F149E8CAE538DBF7059B00326673F602, 8B576A68AE43B506D0C7E91C63E8EF1DB9E73F0E87E48CF57086BCE51E5F8C36 ] C:\Windows\System32\wmpmde.dll
    21:36:05.0097 0x12d0  C:\Windows\System32\wmpmde.dll - ok
    21:36:05.0099 0x12d0  [ 1835BFCDB1F35F0A72B8E7204FBAAEA5, D3F24B8025DADD99B83057B9F060210090423BA00AE7A5BD346ED88DC02CF3BA ] C:\Program Files\AVAST Software\Avast\aswRemoteCache.dll
    21:36:05.0099 0x12d0  C:\Program Files\AVAST Software\Avast\aswRemoteCache.dll - ok
    21:36:05.0102 0x12d0  [ 021287C2050FD5DB4A8B084E2C38139C, EA27C640FE0F1E8BAE70BEF98E663E68A35336BB6D52D56B2367297D22C50648 ] C:\Windows\System32\WinSATAPI.dll
    21:36:05.0102 0x12d0  C:\Windows\System32\WinSATAPI.dll - ok
    21:36:05.0104 0x12d0  [ 28A7D7C7E2FDD1D55F12F750CD6331EC, 0CC0159D3F5682307439D8F3651A080430C7EAB8EFA25BA246AADF4665297E8D ] C:\Windows\System32\MSMPEG2ENC.DLL
    21:36:05.0104 0x12d0  C:\Windows\System32\MSMPEG2ENC.DLL - ok
    21:36:05.0107 0x12d0  [ 1F55C7C1E338047DC5E329011A781FB3, 1FD4A2C44DDDCE33DEC60E13CE3B7315782F310955CC13D7416EB10865A00229 ] C:\Windows\SysWOW64\mswstr10.dll
    21:36:05.0107 0x12d0  C:\Windows\SysWOW64\mswstr10.dll - ok
    21:36:05.0110 0x12d0  [ 870285A6C2429CFC47FF95DA49313664, B75CA41468E601C9219A9AB76AFAF2AC682F18C4D5DB923CFA121CB7B54DC46C ] C:\Windows\SysWOW64\msjter40.dll
    21:36:05.0110 0x12d0  C:\Windows\SysWOW64\msjter40.dll - ok
    21:36:05.0112 0x12d0  [ 46767946E7B559D981C1DC04EC0AB36F, 69137AA9AEF9727FFD1B65AA4D658C6E8AAD3A062717B447260502B4D7DB90C6 ] C:\Windows\System32\devenum.dll
    21:36:05.0113 0x12d0  C:\Windows\System32\devenum.dll - ok
    21:36:05.0115 0x12d0  [ 0219B6F2329F4C1BC24580C83D0F3645, 873FE9786740B8946A5D77FC45794812D73EF024013411E7823782E6C9145567 ] C:\Windows\SysWOW64\msjint40.dll
    21:36:05.0115 0x12d0  C:\Windows\SysWOW64\msjint40.dll - ok
    21:36:05.0117 0x12d0  [ 558C42D165DB5799B4072DC0A9C27C0B, 2385E16ACF07252D5567EC091C1B39D39BB8199F60854D5A91EDC948C57B3A3F ] C:\Windows\System32\msdmo.dll
    21:36:05.0117 0x12d0  C:\Windows\System32\msdmo.dll - ok
    21:36:05.0120 0x12d0  [ F374C71979F8FF1E42D1D4A11723A25E, 0D557E16C50C056C438C02C58A77E9DA4B21C7B7078ECD214EA5CDD55082118D ] C:\Program Files\AVAST Software\Avast\aswRvrt.dll
    21:36:05.0120 0x12d0  C:\Program Files\AVAST Software\Avast\aswRvrt.dll - ok
    21:36:05.0122 0x12d0  [ FC877611E178FA17E23F99D9694590A0, A09132479BF9D6EC78448688986984C66973434FA0C92DC7406C0FBCBF522F33 ] C:\Program Files (x86)\Common Files\microsoft shared\DAO\dao360.dll
    21:36:05.0122 0x12d0  C:\Program Files (x86)\Common Files\microsoft shared\DAO\dao360.dll - ok
    21:36:05.0125 0x12d0  [ 5BE1CD443E2D6495E22CBB40D532E1F0, 4C7CE9A5C2FC18EE5A58F88EBEA209138DFBB9721BE91611FB5C613AA64CABAE ] C:\Program Files\AVAST Software\Avast\icudt.dll
    21:36:05.0125 0x12d0  C:\Program Files\AVAST Software\Avast\icudt.dll - ok
    21:36:05.0127 0x12d0  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] C:\Windows\System32\upnphost.dll
    21:36:05.0127 0x12d0  C:\Windows\System32\upnphost.dll - ok
    21:36:05.0130 0x12d0  [ FB2BE4175BF06D592F2C95E5863CA198, 0A66D80114A25F8AF24401CFDD6E86BE46062820D31BC7A4AE777CA47E880109 ] C:\Windows\twain_32\escndv\wf3520.ds
    21:36:05.0130 0x12d0  C:\Windows\twain_32\escndv\wf3520.ds - ok
    21:36:05.0132 0x12d0  [ 4CB173F3A848153D9A1A056CFCC752DC, B247330BDCEBA3D34027D67356A8169877A220F915605330EB84AC7BFB686112 ] C:\Windows\twain_32\hpsj_0000\hpsj_0000.ds
    21:36:05.0132 0x12d0  C:\Windows\twain_32\hpsj_0000\hpsj_0000.ds - ok
    21:36:05.0135 0x12d0  [ 73D1680C94C1B57F6D8E49B2AE8122ED, 3BFE15FA803B2D519DA577657B2281C423A53D39B24D6F7EDBE3476F317A62ED ] C:\Windows\SysWOW64\vbajet32.dll
    21:36:05.0135 0x12d0  C:\Windows\SysWOW64\vbajet32.dll - ok
    21:36:05.0138 0x12d0  [ EFF10B20A6F094BC75385791C526546D, 64BE512F81BCA10D10FCCDCC66FEF42D8771A419881742DD7B99A644D39191AD ] C:\Windows\SysWOW64\expsrv.dll
    21:36:05.0138 0x12d0  C:\Windows\SysWOW64\expsrv.dll - ok
    21:36:05.0140 0x12d0  [ 07AD88DF9EF73215458867EFC1BFFE9E, 8C659B6F31111C09448B68889623886658C96467E7E5C95C1714E18AD3924463 ] C:\Windows\System32\wbem\wmiprov.dll
    21:36:05.0140 0x12d0  C:\Windows\System32\wbem\wmiprov.dll - ok
    21:36:05.0143 0x12d0  [ F774DB03213C2014363DE8D22DD6BBEF, CC3DB0208AA086F6A504FE852BAC2D940BA1520B6B88FC782A42562A819E7501 ] C:\Windows\SysWOW64\msjtes40.dll
    21:36:05.0143 0x12d0  C:\Windows\SysWOW64\msjtes40.dll - ok
    21:36:05.0145 0x12d0  [ 17AD6A5E8A3E68D3F77894B02B88BF92, 2C5CAAF033C7EBAEF12ED12C193F47AAD31007FB922B0BB1CF84B496CED1DEF8 ] C:\Program Files (x86)\Common Files\System\ado\msadrh15.dll
    21:36:05.0145 0x12d0  C:\Program Files (x86)\Common Files\System\ado\msadrh15.dll - ok
    21:36:05.0148 0x12d0  [ 36AC61A25AFD4929DB8C1675A036C62A, 2B15AA04C8694DDC8793CFBFDF773B0CAC351DA6E5FB4C3DE7126FE41571A44A ] C:\Windows\assembly\NativeImages_v4.0.30319_64\WindowsBase\8be42454b4d7db7686ea494691d18b16\WindowsBase.ni.dll
    21:36:05.0148 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_64\WindowsBase\8be42454b4d7db7686ea494691d18b16\WindowsBase.ni.dll - ok
    21:36:05.0151 0x12d0  [ 5963633010616B25503EE126F55E8DE4, A1A6F3E18B097AB046E8771A01F8B727A44348B28B82B5BEB15EE311AD27CDD6 ] C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90.dll
    21:36:05.0151 0x12d0  C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.6161_none_4bf7e3e2bf9ada4c\mfc90.dll - ok
    21:36:05.0153 0x12d0  [ 71E68F2443A80BD4DA89181889C457EA, 8665D3DDF92B05EF287FB6EC43782512C23A1437764CF6F4DE0B00547F3C696B ] C:\Windows\System32\udhisapi.dll
    21:36:05.0153 0x12d0  C:\Windows\System32\udhisapi.dll - ok
    21:36:05.0156 0x12d0  [ 0503D60AFCED7CB601C7CA70C08E8CAC, 546B41843CB34CBF414D531DBEB05B1312B6676E0CABA986271B24BEEFE86F12 ] C:\Windows\twain_32\wiatwain.ds
    21:36:05.0156 0x12d0  C:\Windows\twain_32\wiatwain.ds - ok
    21:36:05.0158 0x12d0  [ 80279007CAB3549A5999348BD0C23732, DACAEC11F7A3E8DCED98A4440B389839DAA95DCC81C01265673B1C4F3B87B56A ] C:\Windows\SysWOW64\wiadss.dll
    21:36:05.0158 0x12d0  C:\Windows\SysWOW64\wiadss.dll - ok
    21:36:05.0161 0x12d0  [ BAD20F3207CE3BE87053B23B5A68879E, 2616B5E08F39996DF4120A4F03AACEF6BAAF7FBC0FB4A42D4D5DF0CDF1746D59 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\PresentationCore\bb1efedf0f2aa2ebbf9f0bf640c9721d\PresentationCore.ni.dll
    21:36:05.0161 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_64\PresentationCore\bb1efedf0f2aa2ebbf9f0bf640c9721d\PresentationCore.ni.dll - ok
    21:36:05.0163 0x12d0  [ 1C9B45E87528B8BB8CFA884EA0099A85, 2F23182EC6F4889397AC4BF03D62536136C5BDBA825C7D2C4EF08C827F3A8A1C ] C:\Windows\SysWOW64\D3DCompiler_43.dll
    21:36:05.0163 0x12d0  C:\Windows\SysWOW64\D3DCompiler_43.dll - ok
    21:36:05.0166 0x12d0  [ 3B65DE77A896E55A2705B9C14254484C, D0468AFD5FDEB40CB1423171EBE1AF139C106F0F4D3276953B16A6219BF38B5B ] C:\Program Files (x86)\EPSON Software\Event Manager\EPNSM.dll
    21:36:05.0166 0x12d0  C:\Program Files (x86)\EPSON Software\Event Manager\EPNSM.dll - ok
    21:36:05.0168 0x12d0  [ 637124CDBFF5819CB8A8478838A33048, 7B6F46A73308E26E8AB22B01C7F6A7A94032AB0469B55ACF83ACE7EB0D612699 ] C:\Program Files (x86)\EPSON Software\Event Manager\ESPSUTL.dll
    21:36:05.0168 0x12d0  C:\Program Files (x86)\EPSON Software\Event Manager\ESPSUTL.dll - ok
    21:36:05.0171 0x12d0  [ 521202AA6F2B74FCCC6BC7E162109D71, 3B2F41EFDA68C82D9D50AF329AC9B403C806CBE74F87917CDB350E542ADDA017 ] C:\Windows\System32\wbem\unsecapp.exe
    21:36:05.0171 0x12d0  C:\Windows\System32\wbem\unsecapp.exe - ok
    21:36:05.0174 0x12d0  [ 22E2CEC16E2E7E1C435641048D42FADE, 8839869A46882B5683AE0AB9CAE4B1BC8B3F5B7B5A456101FB82A659FC08B0BC ] C:\Program Files\AVAST Software\Avast\Setup\aswOfferTool.exe
    21:36:05.0174 0x12d0  C:\Program Files\AVAST Software\Avast\Setup\aswOfferTool.exe - ok
    21:36:05.0176 0x12d0  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] C:\Windows\SysWOW64\netprofm.dll
    21:36:05.0176 0x12d0  C:\Windows\SysWOW64\netprofm.dll - ok
    21:36:05.0179 0x12d0  [ 15E298B5EC5B89C5994A59863969D9FF, 8D38B2E023462D0804F72E907D11FF72CE84540EA3B8D83F411C602C3F6A1177 ] C:\Windows\SysWOW64\npmproxy.dll
    21:36:05.0179 0x12d0  C:\Windows\SysWOW64\npmproxy.dll - ok
    21:36:05.0181 0x12d0  [ 4D339C075EA6E3B65EE90246929E05CE, CA1655D20669F2FF3A92BF8C3DDE5493296E088108ABE29633444FC8E7D2C4EC ] C:\Windows\assembly\NativeImages_v4.0.30319_64\Presentatio5ae0f00f#\91b87b18c4453c04c9cebdeea2952826\PresentationFramework.ni.dll
    21:36:05.0181 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_64\Presentatio5ae0f00f#\91b87b18c4453c04c9cebdeea2952826\PresentationFramework.ni.dll - ok
    21:36:05.0184 0x12d0  [ 3630722DCAA17C8B40C226C202D8D682, F51429F170E4292985CA11C7CA8E02BFD0E3BCA21666634FBB516A5542C79C20 ] C:\Program Files\AVAST Software\Avast\Setup\gcapi_14045276396192.dll
    21:36:05.0184 0x12d0  C:\Program Files\AVAST Software\Avast\Setup\gcapi_14045276396192.dll - ok
    21:36:05.0187 0x12d0  [ CDA62C2B64FDEB9A566CAC42BB40CF02, 8E3550F002879403D5B16B103E29D8B917E2C039BA8F9DA2B047F97FBB6EE6C8 ] C:\Windows\SysWOW64\Macromed\Flash\Flash32_13_0_0_214.ocx
    21:36:05.0187 0x12d0  C:\Windows\SysWOW64\Macromed\Flash\Flash32_13_0_0_214.ocx - ok
    21:36:05.0189 0x12d0  [ 33B4BBFDB017D48CFDFE77BF88A53A99, 98D3D82239AC27C6685D8FC2DB205B386CBC2F5EF50B8644040077EAEE1EBE97 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xaml\e3882692d8f0e323f93b4d95c204b7b7\System.Xaml.ni.dll
    21:36:05.0190 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xaml\e3882692d8f0e323f93b4d95c204b7b7\System.Xaml.ni.dll - ok
    21:36:05.0192 0x12d0  [ 3CF6F418BF0BDB5450058030277D34AE, 8B05989FC6EF8C002DF2DDCCACEAABB85387BFE6743541994D73AC9D10F565CB ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\wpfgfx_v0400.dll
    21:36:05.0192 0x12d0  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\wpfgfx_v0400.dll - ok
    21:36:05.0195 0x12d0  [ BDE8ABC23E3C970058B4DC9E260B45F0, 6268CF3FAFCD3EA2074191686C6EAD7412672EF9ADAB683E627FE29AAB448EED ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\PresentationNative_v0400.dll
    21:36:05.0195 0x12d0  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\PresentationNative_v0400.dll - ok
    21:36:05.0197 0x12d0  [ 0E85C11F8850D524B02181C6E02BA9AE, 8703566931067CCF949E9779E4D328DD21210329DD687459300C83DDD06390A8 ] C:\Windows\SysWOW64\dsound.dll
    21:36:05.0197 0x12d0  C:\Windows\SysWOW64\dsound.dll - ok
    21:36:05.0199 0x12d0  [ 5E08AC958BE05247FF1539E0D1CE7905, C6E7419EA72D1703F72292743A999F4A6CF0C6734BA1EE92C6AF18BA8B1A3A23 ] C:\Windows\SysWOW64\dinput8.dll
    21:36:05.0199 0x12d0  C:\Windows\SysWOW64\dinput8.dll - ok
    21:36:05.0202 0x12d0  [ 7F8678C59F188528D60104E697C2361E, 9B4D262B10CB09543ACA9A78482F4EDD905791D2C8C518B574EBA440A71A85B7 ] C:\Windows\SysWOW64\mscms.dll
    21:36:05.0202 0x12d0  C:\Windows\SysWOW64\mscms.dll - ok
    21:36:05.0204 0x12d0  [ F00AE7B953ABEF1B53FBBA187DFC8238, 6FFA160FB6821A725A7D81E1BECE1DE89E3E022B33E56A7468E2E0B4C8B2AE31 ] C:\Windows\System32\webcheck.dll
    21:36:05.0204 0x12d0  C:\Windows\System32\webcheck.dll - ok
    21:36:05.0207 0x12d0  [ 101797BA603D227946B4B5109867EB19, EBF2B48D1A4FE148F455EA32023ABC0D479215D48C7CE76E765F199CD3C80AF8 ] C:\Windows\System32\SyncCenter.dll
    21:36:05.0207 0x12d0  C:\Windows\System32\SyncCenter.dll - ok
    21:36:05.0209 0x12d0  [ A295C39086962B7184552760367034A3, BD3FA1C27761C7413F92EFBAE1811ABD6341D3F1550CB46C22E3106C30C3E2DB ] C:\Program Files\AVAST Software\Avast\defs\14070401\uiext.dll
    21:36:05.0209 0x12d0  C:\Program Files\AVAST Software\Avast\defs\14070401\uiext.dll - ok
    21:36:05.0212 0x12d0  [ 521B748A7F9923302CA18B7E6AA2EEAE, 6243D4F29B28242E308359624B5E68AC8A57D811521193487973794EDCE55787 ] C:\Windows\SysWOW64\activeds.dll
    21:36:05.0212 0x12d0  C:\Windows\SysWOW64\activeds.dll - ok
    21:36:05.0215 0x12d0  [ 51F5CC1E7DA3D9C664C2D0D61F315E06, 0A50A35863C9679E8DFC0783D5F1F6411010873738C6B1D90B7E993D2C6CFB06 ] C:\Windows\SysWOW64\adsldpc.dll
    21:36:05.0215 0x12d0  C:\Windows\SysWOW64\adsldpc.dll - ok
    21:36:05.0217 0x12d0  [ 3E709F7BFA217CD3B6FC338780465E20, 16A9E500285CEF2C1CCFA71DDFCC1F3B0E6E03711780F5B3764FF855FC8250AF ] C:\Windows\SysWOW64\adsldp.dll
    21:36:05.0217 0x12d0  C:\Windows\SysWOW64\adsldp.dll - ok
    21:36:05.0220 0x12d0  [ 8EA53101FF2B15BDFF934B62A8FB326D, E28536A4AC6764C2480EF047AF2312AE2600819899C3E33B486CFE19F25AC464 ] C:\Windows\SysWOW64\logoncli.dll
    21:36:05.0220 0x12d0  C:\Windows\SysWOW64\logoncli.dll - ok
    21:36:05.0222 0x12d0  [ 8130391F82D52D36C0441F714136957F, 1FD4FEE7CAF63E450F27729E07EA2A2F09288629FD872DBB6E8710B16D8DBD5D ] C:\Windows\System32\imapi2.dll
    21:36:05.0222 0x12d0  C:\Windows\System32\imapi2.dll - ok
    21:36:05.0225 0x12d0  [ D9E21CBF9E6A87847AFFD39EA3FA28EE, B2AE0BBF907D4108DE3485E6059DF8D10C39707CD508A55A2D9627A66D01AE78 ] C:\Windows\System32\SearchProtocolHost.exe
    21:36:05.0225 0x12d0  C:\Windows\System32\SearchProtocolHost.exe - ok
    21:36:05.0227 0x12d0  [ 6A5C1A8AC0B572679361026D0E900420, B5E693B48B462E97738A3D4E58B60846159649EB15F4D11074B4BC107CC88562 ] C:\Windows\System32\hgcpl.dll
    21:36:05.0227 0x12d0  C:\Windows\System32\hgcpl.dll - ok
    21:36:05.0229 0x12d0  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] C:\Windows\System32\fdPHost.dll
    21:36:05.0229 0x12d0  C:\Windows\System32\fdPHost.dll - ok
    21:36:05.0232 0x12d0  [ 171D7DB433314A868507C4326E8209DC, 254E0D9F99CE47104CF21D8E968D89D6A09B9CE47168E760BAB28AD5A1E9E6A3 ] C:\Windows\System32\fdWSD.dll
    21:36:05.0232 0x12d0  C:\Windows\System32\fdWSD.dll - ok
    21:36:05.0234 0x12d0  [ D2A5B2B09F2AF5ED13BF494508B09788, 3FA04E84EC5A575E7804E44BA3BF1C4143E53C4ACF6C823CD029711529B0BE2C ] C:\Windows\System32\msshooks.dll
    21:36:05.0235 0x12d0  C:\Windows\System32\msshooks.dll - ok
    21:36:05.0237 0x12d0  [ 49A3AD5CE578CD77F445F3D244AEAB2D, 1D200547C6277C4A878A9ADD94045F7ACCC583609985C592AAE9B9B9CA7B812A ] C:\Windows\System32\SearchFilterHost.exe
    21:36:05.0237 0x12d0  C:\Windows\System32\SearchFilterHost.exe - ok
    21:36:05.0239 0x12d0  [ A2E5B2D20954210DCE1A75A1FC8CC36D, 1EA240AC37ECA4EC3E542F9E6DF72753EBA1DF76CBA8691EC61ABCC51EE6FCB2 ] C:\Windows\System32\fdSSDP.dll
    21:36:05.0239 0x12d0  C:\Windows\System32\fdSSDP.dll - ok
    21:36:05.0242 0x12d0  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] C:\Windows\System32\ListSvc.dll
    21:36:05.0242 0x12d0  C:\Windows\System32\ListSvc.dll - ok
    21:36:05.0244 0x12d0  [ B6411CED931AFD059E48C52DBFBA95B4, 4E275A691E6A1C07D72DC8DA16B58B6634286A5058C3F4AC0ABD92B9A57FB5D5 ] C:\Windows\System32\P2P.dll
    21:36:05.0244 0x12d0  C:\Windows\System32\P2P.dll - ok
    21:36:05.0246 0x12d0  [ 48041BAEB60CE5F34F13CC2A1361E49C, AF82355A4C0D872F1F45261381C23C1510C2C77DD5F040B706FD7A3D63D4BAA4 ] C:\Windows\System32\mssph.dll
    21:36:05.0246 0x12d0  C:\Windows\System32\mssph.dll - ok
    21:36:05.0249 0x12d0  [ 4A82EA2807B16FF577AEAF8ADB8779FF, C7F9A45FF80DFDE804D81BEE23C748A465AEB729DF2C9E327374CDD94E300547 ] C:\Windows\System32\IdListen.dll
    21:36:05.0249 0x12d0  C:\Windows\System32\IdListen.dll - ok
    21:36:05.0251 0x12d0  [ 8F4BB0CFECED925D440ABC2481278360, 0A87E7E1B38300E211F2ECA10BFB9831CF79B128DEB9D7AB0AA6A715197FF2DD ] C:\Windows\System32\mapi32.dll
    21:36:05.0251 0x12d0  C:\Windows\System32\mapi32.dll - ok
    21:36:05.0254 0x12d0  [ 92E0508D924512F63FFEEFE498CBD11F, 1158011E4A1298DEC79133B40888AA87B06F5B64BA2AB461B58C22F5F9211D0C ] C:\Windows\System32\p2pcollab.dll
    21:36:05.0254 0x12d0  C:\Windows\System32\p2pcollab.dll - ok
    21:36:05.0256 0x12d0  [ A0524499F4C63CADA7E1529FC77F5DC1, DCAF3C89B7363139EB128C6240CA2B301090BF18C57688B0990FC2BBF680752F ] C:\Windows\System32\hgprint.dll
    21:36:05.0256 0x12d0  C:\Windows\System32\hgprint.dll - ok
    21:36:05.0259 0x12d0  [ FCE23E27F62989AD0BB88E256E847A41, 80F7C8747EF15F2637BDB428E2AB6E80D3F591D2EFC9D40D444F156EF036BF51 ] C:\Windows\System32\CertPolEng.dll
    21:36:05.0259 0x12d0  C:\Windows\System32\CertPolEng.dll - ok
    21:36:05.0261 0x12d0  [ B0F69B9DE0AEBFD7E4CEADE6758DF627, 60235E6D0614ED72CDF05E9A62B2B264614CAB29C47246ED408B85BEBE602CCD ] C:\Windows\System32\SearchFolder.dll
    21:36:05.0261 0x12d0  C:\Windows\System32\SearchFolder.dll - ok
    21:36:05.0264 0x12d0  [ B197E5B1B3F18A012F29931484E6DD7F, 84C7E29D820C1F09A561AB740E0C63FB7A71B7C315A95B7C7F996389BD9E9305 ] C:\Program Files\AVAST Software\Avast\snxhk.dll
    21:36:05.0264 0x12d0  C:\Program Files\AVAST Software\Avast\snxhk.dll - ok
    21:36:05.0267 0x12d0  [ 0AB40899395F14D74E83410068359D38, 2468E10BD0F4449987D05BF57AB744BB323AF11A32256CE86F6D6524E516FEAC ] C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\chrome_elf.dll
    21:36:05.0267 0x12d0  C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\chrome_elf.dll - ok
    21:36:05.0269 0x12d0  [ 2DB442F2A4C58C1157B7452C183EAD80, FD34D96FDC30315C867066AFB341C892651E273158DDFB34D7681D8E6C66269C ] C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\chrome.dll
    21:36:05.0269 0x12d0  C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\chrome.dll - ok
    21:36:05.0272 0x12d0  [ E9BB0CD09DA17C71FD1B9954D75AEEF7, FF5E2F04F1FD56FDD19368150B5750275F0A44E9EA9820C8087E84ECBBF45286 ] C:\Windows\SysWOW64\credui.dll
    21:36:05.0272 0x12d0  C:\Windows\SysWOW64\credui.dll - ok
    21:36:05.0274 0x12d0  [ 63DF770DF74ACB370EF5A16727069AAF, B8F96336BF87F1153C245D19606CBD10FBE7CF2795BCC762F2A1B57CB7C39116 ] C:\Windows\SysWOW64\hid.dll
    21:36:05.0274 0x12d0  C:\Windows\SysWOW64\hid.dll - ok
    21:36:05.0277 0x12d0  [ FDBDEB187DC193602286FC9B13D77C9F, 1589117D3B7E697300FA71FE5D3B2178E9AD4B17A8287D199F9F2D594AA4432D ] C:\Program Files\AVAST Software\Avast\aswJsFlt.dll
    21:36:05.0277 0x12d0  C:\Program Files\AVAST Software\Avast\aswJsFlt.dll - ok
    21:36:05.0279 0x12d0  [ A9035C4CA57ACB80419ED878FE1EB161, 634A26D7AE17C3759F870E7FF15737E929AC5BB652FF0FA42289565DE6CE6D49 ] C:\Windows\System32\offfilt.dll
    21:36:05.0279 0x12d0  C:\Windows\System32\offfilt.dll - ok
    21:36:05.0281 0x12d0  [ 71C4F42DC8DB668E826DA79462EA741E, 69452DBC1CD4E09B27A42A535827B359FA9A2762A106E91653DDB7BF00A9C029 ] C:\Windows\SysWOW64\KBDUS.DLL
    21:36:05.0281 0x12d0  C:\Windows\SysWOW64\KBDUS.DLL - ok
    21:36:05.0284 0x12d0  [ C940F2F5C60B3727C5F18840735B229C, EFC3F465FD6C570505C214A92644357ACD01B1843ED25B5FCCCE10533403485C ] C:\Windows\SysWOW64\AudioSes.dll
    21:36:05.0284 0x12d0  C:\Windows\SysWOW64\AudioSes.dll - ok
    21:36:05.0286 0x12d0  [ 243974EC02F7AE49E4179C54624143AB, 755FA67F7BF10E3C6336788D297FBAA70F28F630852A43A78D3F7D7E3A7ECED0 ] C:\Windows\SysWOW64\MMDevAPI.dll
    21:36:05.0286 0x12d0  C:\Windows\SysWOW64\MMDevAPI.dll - ok
    21:36:05.0289 0x12d0  [ 43C9CF6825CEA58F1815B7C3DBBB385C, C79DB405D588C77E4ACAE3BC26080213BEEB604C0A109AFDF88031FC46B4CBC0 ] C:\Windows\SysWOW64\Wpc.dll
    21:36:05.0289 0x12d0  C:\Windows\SysWOW64\Wpc.dll - ok
    21:36:05.0291 0x12d0  [ 82C089EA2A3EEFADF3588EA71E8BDADA, 2F3BB32EE2C0673058A74DEEB2D405E5E79F833F33C4D289A93EB3C618A86E75 ] C:\Windows\SysWOW64\wevtapi.dll
    21:36:05.0291 0x12d0  C:\Windows\SysWOW64\wevtapi.dll - ok
    21:36:05.0294 0x12d0  [ C30A3E5DEEEBA22E782AC54C5AF5F352, 80939A7B5354032256706C6CA0C3CCC7E67CD1C1C81EAEA2CBC74997C0863662 ] C:\Windows\SysWOW64\samlib.dll
    21:36:05.0294 0x12d0  C:\Windows\SysWOW64\samlib.dll - ok
    21:36:05.0296 0x12d0  [ 85218926133BDF518AE9766F7B871689, 7AC1E98C97E7A11DFF618BF202F98C1EF2971001215D3F651A98CD73ADE10DFB ] C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\chrome_child.dll
    21:36:05.0296 0x12d0  C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\chrome_child.dll - ok
    21:36:05.0299 0x12d0  [ BA096BEFC1DA5EF9175CD2FDCAD77B6F, AFC1FB410FC370752EDF2D28C3D433B9D9CE4BBFF69C1313B52443482D7159DB ] C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\pdf.dll
    21:36:05.0299 0x12d0  C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\pdf.dll - ok
    21:36:05.0302 0x12d0  [ 5BF8E37FA1E25227480F9CD2ACA21FB6, 58D9A00888AF693B2A5222FE74CFDED32CE83E74F85B474F1CBE5987217B5A9D ] C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\d3dcompiler_46.dll
    21:36:05.0302 0x12d0  C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\d3dcompiler_46.dll - ok
    21:36:05.0305 0x12d0  [ 8781D409B30108F6ABA35B7F69A9498D, 86C1A2A6186183DE98D8B457D32D4BD974ADCB15B3DFB679A20FA5F1F5B50EAF ] C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libglesv2.dll
    21:36:05.0305 0x12d0  C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libglesv2.dll - ok
    21:36:05.0308 0x12d0  [ 60A105742BD5EAC6E8A62A40A388FC8C, 95099E6E7DBEFBEED760042A6C7C74FDA1224B707AA8F9244DCA38BC23BAE084 ] C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libegl.dll
    21:36:05.0308 0x12d0  C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libegl.dll - ok
    21:36:05.0310 0x12d0  [ F79F1BA00213CB93EABDAD4E80D4D456, 31FDE7C36B10F93E31A795D75D44DF1BBFAF4C9A6A2B934F81EF64D654697A95 ] C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ppgooglenaclpluginchrome.dll
    21:36:05.0310 0x12d0  C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ppgooglenaclpluginchrome.dll - ok
    21:36:05.0313 0x12d0  [ EFEF0D30E8766B7ACAEFE0C63D9FC381, 2A50926FC8F702859B4E4121D70465071FF6F0A96B3851C2C2BB56A4FCE7EACE ] C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libpeerconnection.dll
    21:36:05.0313 0x12d0  C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\libpeerconnection.dll - ok
    21:36:05.0316 0x12d0  [ 172715C84E0B754333A3215E494F2B20, 205B7697C8F210D50F5CEEE0349924002ACE7DE8817E294189DEF77F50C996F0 ] C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ffmpegsumo.dll
    21:36:05.0316 0x12d0  C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\ffmpegsumo.dll - ok
    21:36:05.0318 0x12d0  [ 816B681CC308FAA128EDCB90643DCED7, C2C6295F59F00F4D47673C361F1965BA62F9ADF6897A6A0BE224509628A27D7E ] C:\Windows\SysWOW64\icm32.dll
    21:36:05.0318 0x12d0  C:\Windows\SysWOW64\icm32.dll - ok
    21:36:05.0321 0x12d0  [ 14365399E83D7BC15760E8676E890C87, DBEB3125933F853E8A20A55EFF3348D4446EF8B180B98F0DA8142654C8153773 ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
    21:36:05.0321 0x12d0  C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll - ok
    21:36:05.0323 0x12d0  [ 14365399E83D7BC15760E8676E890C87, DBEB3125933F853E8A20A55EFF3348D4446EF8B180B98F0DA8142654C8153773 ] C:\Program Files (x86)\Mozilla Firefox\plugins\nppdf32.dll
    21:36:05.0323 0x12d0  C:\Program Files (x86)\Mozilla Firefox\plugins\nppdf32.dll - ok
    21:36:05.0326 0x12d0  [ E50A1DB5DE70D656287511297B42F9F2, 0B75E5755B2EAC0CC03083E38F4EE56D4D5EB64C8C27662A4E80525B8C463849 ] C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll
    21:36:05.0326 0x12d0  C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll - ok
    21:36:05.0328 0x12d0  [ 9E4F520270BF7301CC24E8FA67791C22, 7548AE6ECC24D3EECCDCC751D2046A0D822BCB81C61EC4AC5B1873C6CF3DC969 ] C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll
    21:36:05.0329 0x12d0  C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll - ok
    21:36:05.0331 0x12d0  [ 1153F58FACBC9731AF6CDF313F76DF29, FD885F9561B82F624A5BA3EBF54807878FDA3B80DBCB21DA023B5FFB4B8AC371 ] C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll
    21:36:05.0331 0x12d0  C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll - ok
    21:36:05.0334 0x12d0  [ BADFB0DCCD9B7E9F2F6EB7954D24EED1, A0433306C0CD296891504983647D62C81C6EEDE92E33E7272B4830FEE8C769DD ] C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll
    21:36:05.0334 0x12d0  C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll - ok
    21:36:05.0336 0x12d0  [ EEEB86077BB4682B3FCFEDA5AED3E396, 90348B3138A2CDD06C9469851B00C91B58C60F37C626EE97111A2912FB76B553 ] C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll
    21:36:05.0336 0x12d0  C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll - ok
    21:36:05.0339 0x12d0  [ E50A1DB5DE70D656287511297B42F9F2, 0B75E5755B2EAC0CC03083E38F4EE56D4D5EB64C8C27662A4E80525B8C463849 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin.dll
    21:36:05.0339 0x12d0  C:\Program Files (x86)\QuickTime\Plugins\npqtplugin.dll - ok
    21:36:05.0342 0x12d0  [ 9E4F520270BF7301CC24E8FA67791C22, 7548AE6ECC24D3EECCDCC751D2046A0D822BCB81C61EC4AC5B1873C6CF3DC969 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin2.dll
    21:36:05.0342 0x12d0  C:\Program Files (x86)\QuickTime\Plugins\npqtplugin2.dll - ok
    21:36:05.0345 0x12d0  [ 7E8FD5F6E2CBEBF1F5FD53060A67ED15, 09A5D34AC1748ADF914BA8C4E01FD3585FC573F4BBFACDD6C37D7A404BD53924 ] C:\Program Files (x86)\Steam\SteamUI.dll
    21:36:05.0345 0x12d0  C:\Program Files (x86)\Steam\SteamUI.dll - ok
    21:36:05.0347 0x12d0  [ 1153F58FACBC9731AF6CDF313F76DF29, FD885F9561B82F624A5BA3EBF54807878FDA3B80DBCB21DA023B5FFB4B8AC371 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin3.dll
    21:36:05.0347 0x12d0  C:\Program Files (x86)\QuickTime\Plugins\npqtplugin3.dll - ok
    21:36:05.0350 0x12d0  [ 65B0AFC3680DE7CCFAA4281CF64D1E0C, 177F4AB46399282145260BD55A9F22AC3DDCA1B114364B02BDB04EEAD1FCD08C ] C:\Program Files (x86)\Steam\libavcodec-55.dll
    21:36:05.0350 0x12d0  C:\Program Files (x86)\Steam\libavcodec-55.dll - ok
    21:36:05.0352 0x12d0  [ 186F1E3D4D938757712273081A62275D, 07AE45B38228F70079ADB6F35C6E2B81DE49ECB326F6FA69B65E26E2713D1D28 ] C:\Program Files (x86)\Steam\libavutil-53.dll
    21:36:05.0352 0x12d0  C:\Program Files (x86)\Steam\libavutil-53.dll - ok
    21:36:05.0357 0x12d0  [ 9AC5B551DFE46325338C0ECA38D6EA23, 8B4F23D394B48FE81225C087ED37E354DA0E4B80EA4D12E6F3F000CE88DBE945 ] C:\Program Files (x86)\Steam\libavformat-55.dll
    21:36:05.0357 0x12d0  C:\Program Files (x86)\Steam\libavformat-55.dll - ok
    21:36:05.0359 0x12d0  [ 4F7A89878B6761E26BF6CC8FFAA6E046, FC7EEE85EC8BABF20BDA72AEBD9B9B1D388D0E97E2DDB70CD05878D7A7692476 ] C:\Program Files (x86)\Steam\libavresample-1.dll
    21:36:05.0359 0x12d0  C:\Program Files (x86)\Steam\libavresample-1.dll - ok
    21:36:05.0361 0x12d0  [ 07BD29949A72F6BA0C34382694584D45, B81EC83F3202284BAE5466AE079E8B506966B305456620CE4B7F0B8C4E82C502 ] C:\Program Files (x86)\Steam\SDL2.dll
    21:36:05.0361 0x12d0  C:\Program Files (x86)\Steam\SDL2.dll - ok
    21:36:05.0364 0x12d0  [ C7EB499FFA78A57C9C939F4CA498CE56, 18D0AD9878F6273A70AF52BBEDCC32C974036368FCC98F1D3F7EE84F4F9F3C70 ] C:\Program Files (x86)\Steam\video.dll
    21:36:05.0364 0x12d0  C:\Program Files (x86)\Steam\video.dll - ok
    21:36:05.0366 0x12d0  [ FBA45E993CE862D7C1BC459B66B3F2FC, 2BD037F728AD4F4DC7DD43DD75CAA1252FF742E2AA8BCC5C7D757C42A3C461CE ] C:\Program Files (x86)\Steam\libswscale-2.dll
    21:36:05.0366 0x12d0  C:\Program Files (x86)\Steam\libswscale-2.dll - ok
    21:36:05.0369 0x12d0  [ BADFB0DCCD9B7E9F2F6EB7954D24EED1, A0433306C0CD296891504983647D62C81C6EEDE92E33E7272B4830FEE8C769DD ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin4.dll
    21:36:05.0369 0x12d0  C:\Program Files (x86)\QuickTime\Plugins\npqtplugin4.dll - ok
    21:36:05.0371 0x12d0  [ EEEB86077BB4682B3FCFEDA5AED3E396, 90348B3138A2CDD06C9469851B00C91B58C60F37C626EE97111A2912FB76B553 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin5.dll
    21:36:05.0371 0x12d0  C:\Program Files (x86)\QuickTime\Plugins\npqtplugin5.dll - ok
    21:36:05.0374 0x12d0  [ 28339A36C50C568948A9C6B04CF79C25, 145F6BCBF2BCB1A21F35228A39D39DF0BAD967895E08A2AE61FB25BC4FCBCD4F ] C:\Program Files (x86)\Steam\bin\filesystem_stdio.dll
    21:36:05.0374 0x12d0  C:\Program Files (x86)\Steam\bin\filesystem_stdio.dll - ok
    21:36:05.0376 0x12d0  [ 14365399E83D7BC15760E8676E890C87, DBEB3125933F853E8A20A55EFF3348D4446EF8B180B98F0DA8142654C8153773 ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
    21:36:05.0376 0x12d0  C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll - ok
    21:36:05.0379 0x12d0  [ 033ED6053E42FD4ECAA03C2B1978390B, 1BEFC26D76FE085198A3F8F1C025D18822B13A4510CA18F50BCCA30A15E53470 ] C:\Program Files (x86)\Steam\bin\vgui2_s.dll
    21:36:05.0379 0x12d0  C:\Program Files (x86)\Steam\bin\vgui2_s.dll - ok
    21:36:05.0381 0x12d0  [ AE561D227279571DF51BCBC0AC4815EA, 59D41D5770C7291D4AFF5F7EFB95CB723C94D76E5870D2C46E082334880F244B ] C:\Program Files (x86)\Steam\bin\chromehtml.dll
    21:36:05.0381 0x12d0  C:\Program Files (x86)\Steam\bin\chromehtml.dll - ok
    21:36:05.0384 0x12d0  [ B938C1AE3ADCE166190895685B0BEB0D, 6A7D4F3FD74D82C8C45A39BF648CF28B7FFF38D00A22F64987F63487973FB80D ] C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
    21:36:05.0384 0x12d0  C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll - ok
    21:36:05.0386 0x12d0  [ BB7BE95C5A225C682D92A4603EE7D055, 7FB6C019F1835EDFC5379518C721904150A3093CDBC22DE99FB1E0A514A78617 ] C:\Program Files (x86)\Steam\bin\libcef.dll
    21:36:05.0387 0x12d0  C:\Program Files (x86)\Steam\bin\libcef.dll - ok
    21:36:05.0389 0x12d0  [ 55F213A61B82B6174B02881562FE20A0, 6A86F1D8C2B696FAB1734657BBAED095984C38AC7F4B839AA1F53D852DF15B62 ] C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
    21:36:05.0389 0x12d0  C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll - ok
    21:36:05.0392 0x12d0  [ 045D0F4F41CA53D4CB22BDC814A22B64, A20010E097E5A4AE7F7065DA7B290CB535D1EF98A6A7CC299A343E26D688AA5D ] C:\Program Files (x86)\Steam\bin\icudt.dll
    21:36:05.0392 0x12d0  C:\Program Files (x86)\Steam\bin\icudt.dll - ok
    21:36:05.0394 0x12d0  [ 5B92CB0A3EEE50F6B9AE036B4F9B0F0C, C848F44F93312BA890115EC44FCF00FAC0BF4A970AB03FCC36836C1ED7D0D67C ] C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
    21:36:05.0394 0x12d0  C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll - ok
    21:36:05.0397 0x12d0  [ FB5621842FDABF9F8359775573498FBC, 77E49C2F15562DACC27A9D3512D27C74DB031813FD28A8C99A87A8F2E72016B4 ] C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll
    21:36:05.0397 0x12d0  C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll - ok
    21:36:05.0399 0x12d0  [ BBA1FE328CEA501FCCE1E5DF16276439, F5522D2C936DE8D53F97A6EC439D8F8391CB50A0BC6008A399F9454C00929D35 ] C:\Program Files (x86)\Steam\bin\avcodec-53.dll
    21:36:05.0399 0x12d0  C:\Program Files (x86)\Steam\bin\avcodec-53.dll - ok
    21:36:05.0402 0x12d0  [ 2A8B8A15A58EDF3B443083EC29894E54, 84E6875F1869B8CFD73525F0C04F1BF2CF0D0D08B1226F62CFD44FF14FE0345D ] C:\Program Files (x86)\Steam\bin\avutil-51.dll
    21:36:05.0402 0x12d0  C:\Program Files (x86)\Steam\bin\avutil-51.dll - ok
    21:36:05.0404 0x12d0  [ C5CCB86CD745746B9908031A54315F90, AC1F83180E07AC2B3D1E6F80F94AEE0B2591BE13E8A1FE63998CF7F0A9F18F1E ] C:\Program Files (x86)\Steam\bin\avformat-53.dll
    21:36:05.0404 0x12d0  C:\Program Files (x86)\Steam\bin\avformat-53.dll - ok
    21:36:05.0407 0x12d0  [ 8F24103AB984847AA2939F58F19CCC98, 7F5B768F678FD8D7DFC537A283BABB0924280CFBC67BFB9BCE8C1EE64982F747 ] C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
    21:36:05.0407 0x12d0  C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll - ok
    21:36:05.0409 0x12d0  [ 4C3DAEE652B005B483F16B8E9131C99D, 188DFF96F3B18A610C52775C8F95C99ABF27FF2E1D52B50EDF9F80FE337239CD ] C:\Windows\System32\d3d9.dll
    21:36:05.0409 0x12d0  C:\Windows\System32\d3d9.dll - ok
    21:36:05.0412 0x12d0  [ 5987EA8A82C53359BCD2C29D6588583E, 59E2DF91F8DA9E33DE65FA67A6A49A7C3F524618A87EAEFC8A28C5304E7FAB85 ] C:\Windows\SysWOW64\linkinfo.dll
    21:36:05.0412 0x12d0  C:\Windows\SysWOW64\linkinfo.dll - ok
    21:36:05.0414 0x12d0  [ E984DE76A7CE4DD9468B9AF6E3AAB96E, 39B31024137E59A80993BD0D9FB3C5AC8CE5D17A23CF67F8FF2C856A5622756C ] C:\Program Files (x86)\Musicnotes\npmusicn.dll
    21:36:05.0414 0x12d0  C:\Program Files (x86)\Musicnotes\npmusicn.dll - ok
    21:36:05.0417 0x12d0  [ 288B2AE6741C5910978E5EFC274B2EE1, 38697D8A2F3EE0DD91D09B74B1FC66B591BE8A16E5407A1CF13802703A86DE04 ] C:\Program Files (x86)\Musicnotes\NPSibelius.dll
    21:36:05.0417 0x12d0  C:\Program Files (x86)\Musicnotes\NPSibelius.dll - ok
    21:36:05.0419 0x12d0  [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65, D99A8C10CC4E5C778D063E56A131DB549F01CA7F9605F6596406606BB12C0269 ] C:\Windows\System32\d3d8thk.dll
    21:36:05.0420 0x12d0  C:\Windows\System32\d3d8thk.dll - ok
    21:36:05.0422 0x12d0  [ F84ED7A8922A1FA1D66516CE6AA440F3, 59ECEAAEAF252D656132392AEFEF31D2E0D9D6AB269D8AD263754ED5CB095882 ] C:\Program Files (x86)\Steam\steamclient.dll
    21:36:05.0422 0x12d0  C:\Program Files (x86)\Steam\steamclient.dll - ok
    21:36:05.0425 0x12d0  [ 58370BC7DAD40271B0A39845C26F7469, 67316735BDD2576C03FB41D3FCBFF6B9DB11A49DEB61CD49A7F185945F38F874 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\Presentatio1c9175f8#\9a5f2133b9d4738948dfcf7ebcb82e3e\PresentationFramework.Aero.ni.dll
    21:36:05.0425 0x12d0  C:\Windows\assembly\NativeImages_v4.0.30319_64\Presentatio1c9175f8#\9a5f2133b9d4738948dfcf7ebcb82e3e\PresentationFramework.Aero.ni.dll - ok
    21:36:05.0427 0x12d0  [ F1C19F0AA151B90A7416FA1D50DDB582, A4AE6B056BF65A12CE5BEDFC3ADE156F088AEAC7196EB5741C9573C64552A7C0 ] C:\Windows\System32\WindowsCodecsExt.dll
    21:36:05.0427 0x12d0  C:\Windows\System32\WindowsCodecsExt.dll - ok
    21:36:05.0430 0x12d0  [ 1D296F090ED401967B30BD2B970DC306, 9D83B54050E7BD6D807E437CFD22FF803D450194ABA4FD0EDEBF27BEC90521AC ] C:\Windows\System32\icm32.dll
    21:36:05.0430 0x12d0  C:\Windows\System32\icm32.dll - ok
    21:36:05.0432 0x12d0  [ 54BF0E8619D58271851670649764AA92, A5BFBEE4CF37C43755B7727616FD2E2FEEF8F2DF59D80A5C2B15745B0B92A652 ] C:\Program Files (x86)\Common Files\Steam\SteamService.exe
    21:36:05.0432 0x12d0  C:\Program Files (x86)\Common Files\Steam\SteamService.exe - ok
    21:36:05.0435 0x12d0  [ 5B1476EF215E744363C25660B3620A6C, FA62140722C57ABBDEEE16030C8B13FA456E2CFAEF9D27DEF47B14C49035FFA8 ] C:\Program Files (x86)\Sony\Bloggie Software\npsome.dll
    21:36:05.0435 0x12d0  C:\Program Files (x86)\Sony\Bloggie Software\npsome.dll - ok
    21:36:05.0437 0x12d0  [ 3F50200237961034FACE602373838980, F97D72CC75D921CF8F8E0544614407358AEFF97A8F48E4A89F82689EE8F2FC86 ] C:\Windows\SysWOW64\FirewallAPI.dll
    21:36:05.0438 0x12d0  C:\Windows\SysWOW64\FirewallAPI.dll - ok
    21:36:05.0440 0x12d0  [ CF46E0E1398B382CE0CE738C67A38DD1, D13EE3C421BEFA1769DC51BD40D3B2435E792FA08BB8ACE3BD3F435A37A0EEC9 ] C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
    21:36:05.0440 0x12d0  C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll - ok
    21:36:05.0443 0x12d0  [ 270EE43CC00609B9937AAF94E1E970D4, D991A9F0FAB99870B4E431277720C901F5B343344976DE0960A91C7D38DAD802 ] C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
    21:36:05.0443 0x12d0  C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll - ok
    21:36:05.0445 0x12d0  [ D205C24A9D069049FE2DF2A1B38726A7, B98F420B57A34FDA24F9A655319245EEF86EF4A952014FFA018070A01D5CBC4C ] C:\Windows\SysWOW64\wdmaud.drv
    21:36:05.0445 0x12d0  C:\Windows\SysWOW64\wdmaud.drv - ok
    21:36:05.0447 0x12d0  [ 9C67F6BBDA3881CFD02095160CF91576, 6CE97C6F0AD8BE183DE935A7AAB7D46821E8DE9E55A4BFF54ACB49D056826A94 ] C:\Windows\SysWOW64\ksuser.dll
    21:36:05.0447 0x12d0  C:\Windows\SysWOW64\ksuser.dll - ok
    21:36:05.0449 0x12d0  [ 139D3AB6AA920C34C50CBFFB9EB7D222, 5A5D205E16E6AFDCC965E4144FE6E104157DE7541D31727520363F2670513940 ] C:\Windows\SysWOW64\avrt.dll
    21:36:05.0449 0x12d0  C:\Windows\SysWOW64\avrt.dll - ok
    21:36:05.0452 0x12d0  [ 18CF51689186AEB9D1D149AEB0E92D03, A06E4E54FADE67C789015CB726487E11E4796C4863EFA9AB432A14D1DD4CB697 ] C:\Program Files\Microsoft Office 15\root\office15\NPSPWRAP.DLL
    21:36:05.0452 0x12d0  C:\Program Files\Microsoft Office 15\root\office15\NPSPWRAP.DLL - ok
    21:36:05.0454 0x12d0  [ 07393A09C46083588E751B63B03C8301, 36E2351CF5FA05FEAAEB340B5E04B107B53C8174F8333559D8AEA40BEB94F678 ] C:\Windows\SysWOW64\msacm32.drv
    21:36:05.0454 0x12d0  C:\Windows\SysWOW64\msacm32.drv - ok
    21:36:05.0457 0x12d0  [ 5A12C364AD1D4FCC0AD0E56DBBC34462, 5FDF434BE4E15311AC83754CF85B5451F5A219D768A5DE3DC4FD9AE0B57B0AD9 ] C:\Windows\SysWOW64\midimap.dll
    21:36:05.0457 0x12d0  C:\Windows\SysWOW64\midimap.dll - ok
    21:36:05.0460 0x12d0  [ D6ED6EB98E759460AD8C66DE23070132, 5F5BF89729F940E8C21627A3DE8BC525A0D4AAF8CD23D9E3E2B9E1367F949006 ] C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX86\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll
    21:36:05.0460 0x12d0  C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesX86\Mozilla Firefox\plugins\npMeetingJoinPluginOC.dll - ok
    21:36:05.0462 0x12d0  [ 10737B44923217BC0E67D26A9FC1F0AA, 5B027ECFAB550FE55BF384786C93A4DCD188FD4F2BD96CBA54A9E3A7788C0FDB ] C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
    21:36:05.0462 0x12d0  C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll - ok
    21:36:05.0465 0x12d0  [ 2645990C521342DCD08963D2DF6CD0D2, BA9AFDD1C136D74BF0066A841C72F29A4B747549CFFF323513FB071C84CE0FF4 ] C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
    21:36:05.0465 0x12d0  C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll - ok
    21:36:05.0468 0x12d0  [ CD375F6297DFD24BAA250C7E62FA1216, 92E17D3500308A43A1EBCD8C28565774FBB327627D5FFAF0D127B8CE4B19DE9C ] C:\Users\Aleiyia\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
    21:36:05.0468 0x12d0  C:\Users\Aleiyia\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - ok
    21:36:05.0470 0x12d0  [ 738C29EAC995029E13333034C1402F56, 71EAFD7200D944A8FF2086ECD6D549E37D99DFC5092ED72B62B6A435EB430142 ] C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll
    21:36:05.0470 0x12d0  C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll - ok
    21:36:05.0473 0x12d0  [ 01D93217A9EE48DD37072B671378CC9C, 8A684D9DB072E1A276F182138265CAB1DC330BD19820E3BD4373AC8E1746347A ] C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll
    21:36:05.0473 0x12d0  C:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll - ok
    21:36:05.0476 0x12d0  [ 4D96A92905BE968000B6470996E670A7, D9ECA720B943DD9B8537A59754AEAE2707358B67CC5AEBED034679FB2DD24DF6 ] C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll
    21:36:05.0476 0x12d0  C:\Program Files (x86)\Real\RealPlayer\Netscape6\nppl3260.dll - ok
    21:36:05.0478 0x12d0  [ 90492E00EE4C916123BEC5D267894E8C, 4C0395DA788F812CC512539505804F2B5E1D8905CF027EF87540F429CCD21021 ] C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll
    21:36:05.0478 0x12d0  C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprjplug.dll - ok
    21:36:05.0481 0x12d0  [ 1291BEEBB50451C80BF7719612196508, 9B6BC83169E29590485A2EE24EE9179DA0190BA6DEF2E9C51753E914B2A10E53 ] C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll
    21:36:05.0481 0x12d0  C:\Program Files (x86)\Real\RealPlayer\Netscape6\nprpplugin.dll - ok
    21:36:05.0484 0x12d0  [ 5E549173E80829D2B6E2C74BC63420CD, 64574B4188EAB0A1B6C99292618108D8E538D85484326720425158597A5A7A85 ] C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\PepperFlash\pepflashplayer.dll
    21:36:05.0484 0x12d0  C:\Program Files (x86)\Google\Chrome\Application\35.0.1916.153\PepperFlash\pepflashplayer.dll - ok
    21:36:05.0486 0x12d0  [ 1F27643C4C626457FCE8F047AE1CD7E1, 68E2367B9AA21C1BDE7FEA566D5F0DBDF1E246CB53E949622F8EDC810AA95956 ] C:\Windows\SysWOW64\dxva2.dll
    21:36:05.0486 0x12d0  C:\Windows\SysWOW64\dxva2.dll - ok
    21:36:05.0489 0x12d0  [ 5BB8C06EB5EA4BA22EE8A678F2D79B25, 019E9274DE2F5BAB16B4632B8A2E93DFC8DF0C08EC4EEA947B337FD29EB2E0CC ] C:\Windows\SysWOW64\devenum.dll
    21:36:05.0489 0x12d0  C:\Windows\SysWOW64\devenum.dll - ok
    21:36:05.0491 0x12d0  [ 7069AAB8536F29ED7323140973A2894B, 04B7FB6C64BFA3B80549F35CEF36D5DAE5D19A40E42444B3665B6BEFDF98EB5F ] C:\Windows\SysWOW64\msdmo.dll
    21:36:05.0491 0x12d0  C:\Windows\SysWOW64\msdmo.dll - ok
    21:36:05.0494 0x12d0  [ E24FE90E9DE8D8AE70E59F7B01675DEF, DDB0691488DB424CC203505E27364B24E4410E599A972CF2C1AFF4E2F3E3C04F ] C:\Windows\SysWOW64\avicap32.dll
    21:36:05.0494 0x12d0  C:\Windows\SysWOW64\avicap32.dll - ok
    21:36:05.0496 0x12d0  [ C335EC1182AC10B188705554E0BC1186, 963CD11CEF7A79559361134FDF9C07B8EA829A40D3996D77E95C291DD17AAD2B ] C:\Windows\SysWOW64\msvfw32.dll
    21:36:05.0496 0x12d0  C:\Windows\SysWOW64\msvfw32.dll - ok
    21:36:05.0499 0x12d0  [ 386235B81E84607C04B1979DA4F04896, 1C1D6D53190B6F4D6F1518ADFCEF14C259C1999E77BF5042EC3146BC7503357D ] C:\Program Files (x86)\Steam\bin\steamservice.dll
    21:36:05.0499 0x12d0  C:\Program Files (x86)\Steam\bin\steamservice.dll - ok
    21:36:05.0501 0x12d0  [ A7532E66EA2F168A0970E829D8986423, 908B92E80C41D2782C6806C2B05F2FBB4C34A9F95D603C16C188384A9E4EF989 ] C:\Program Files (x86)\Steam\dbghelp.dll
    21:36:05.0501 0x12d0  C:\Program Files (x86)\Steam\dbghelp.dll - ok
    21:36:05.0504 0x12d0  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
    21:36:05.0504 0x12d0  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
    21:36:05.0506 0x12d0  [ 64E211E0FDFCE4D186DF58BB7D0503BC, 6B9E12979119BAD721D493A9CEFDC7B4150121D5590222069FD1B8D80F9AC5C0 ] C:\Windows\SysWOW64\gameux.dll
    21:36:05.0506 0x12d0  C:\Windows\SysWOW64\gameux.dll - ok
    21:36:05.0509 0x12d0  [ 31A0E93CDF29007D6C6FFFB632F375ED, CA464928E9868B9A09C324DBBC8DA41A01C5C486B43578FC695250D523DE555B ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
    21:36:05.0509 0x12d0  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe - ok
    21:36:05.0511 0x12d0  [ 4F8CCD3E7D9F17A7C60FA0AE2466CACF, 77849DD78145EA879E63A42AE1481C0DEA3E16D89BB067229203317E9EDD340D ] C:\Windows\SysWOW64\wer.dll
    21:36:05.0511 0x12d0  C:\Windows\SysWOW64\wer.dll - ok
    21:36:05.0514 0x12d0  [ 45589E89343FDF8171E3DB802EEDFD37, 5112498DCB864EF652E4810FA3D72BDCB56361297873667DBDB6570F5AC38133 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgr.dll
    21:36:05.0514 0x12d0  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgr.dll - ok
    21:36:05.0516 0x12d0  [ E227B810296AA27E6C69307A7B6456E5, 0FBF1C90362EA0D12B4B0E18A2FB3E3AC90E116C30BE4CBE95F12EB4882FB985 ] C:\Windows\SysWOW64\msxml6.dll
    21:36:05.0516 0x12d0  C:\Windows\SysWOW64\msxml6.dll - ok
    21:36:05.0519 0x12d0  [ 86F431912A816BDB8B47B4A21260C76A, 2967CB634F2F7C543CA0FDECCA97588231D5AB56EA79E3ED062F4D1641B74E6A ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgrSvc\6ca3f3765c182d61ec999afe5b0ec147\IAStorDataMgrSvc.ni.exe
    21:36:05.0519 0x12d0  C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgrSvc\6ca3f3765c182d61ec999afe5b0ec147\IAStorDataMgrSvc.ni.exe - ok
    21:36:05.0521 0x12d0  [ C7928C9283C7D39D601926DC28736441, 32782CC8DCCBBFC0A166485B2B7ECAC4DF827206550B828A121C37B0E84E9DEB ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\b34b348a9935338b1282fd0c9309eb1f\System.ServiceProcess.ni.dll
    21:36:05.0521 0x12d0  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\b34b348a9935338b1282fd0c9309eb1f\System.ServiceProcess.ni.dll - ok
    21:36:05.0524 0x12d0  [ 760C39AB75B456B86C926B04DEDA9D80, BE273940CE49BA6B91CDE051BFF82D1EDA1AE7FD3DE1359804416F36FAECCC64 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
    21:36:05.0524 0x12d0  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll - ok
    21:36:05.0527 0x12d0  [ 8E88DB0D7C3D5FC61F6086492522B4FB, AC277494C0C5D76798C26C5718D301CD436BCF90460CD19BB59D6E1FEAB9655E ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\c1182ce8cfc3615f1caebb5542e7a231\IAStorDataMgr.ni.dll
    21:36:05.0527 0x12d0  C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorDataMgr\c1182ce8cfc3615f1caebb5542e7a231\IAStorDataMgr.ni.dll - ok
    21:36:05.0529 0x12d0  [ AD260D063058EE890444927E1241A904, 7A433765585594190EBF41A00195348E16C7D0810CED1C5D3DBB71A2B291336E ] C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\bfd5296be62268bc7a31a424f0d1ad5f\IsdiInterop.ni.dll
    21:36:05.0529 0x12d0  C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\bfd5296be62268bc7a31a424f0d1ad5f\IsdiInterop.ni.dll - ok
    21:36:05.0532 0x12d0  [ A093ED015173A0952817B05ADE79E5C0, 070D71AD0EE16695009925D27A5D4E2DEEBEEB0C7B4B4D9BD64249300E3FA2D3 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\ISDI.dll
    21:36:05.0532 0x12d0  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\ISDI.dll - ok
    21:36:05.0535 0x12d0  [ D34A527493F39AF4491B3E909DC697CA, 7A74DA389FBD10A710C294C2E914DC6F18E05F028F07958A2FA53AC44F0E4B90 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
    21:36:05.0535 0x12d0  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll - ok
    21:36:05.0537 0x12d0  [ 9FA705BE049065E8179925CFDDAE0B1C, C8105BC2AE757E92F8419149456C02718F247CD24DB2863B1B69AC2CA789910E ] C:\Program Files\MozyHome\mozybackup.exe
    21:36:05.0537 0x12d0  C:\Program Files\MozyHome\mozybackup.exe - ok
    21:36:05.0540 0x12d0  [ 9D7F64703E37F976A205A6636F36B2A4, F4F6CCC04491E24DBC3E8B6256CF94C24C971F5EEE969789ADE30C00BAC11A85 ] C:\Program Files\MozyHome\backup.dll
    21:36:05.0540 0x12d0  C:\Program Files\MozyHome\backup.dll - ok
    21:36:05.0542 0x12d0  [ CF6850A72BEB4845A3BFFB3F5E8014B2, ABB2907DB16929D4A12E0551C01DD731762B1A4CFEF36B734734F3ECDD630A38 ] C:\Windows\System32\pdh.dll
    21:36:05.0542 0x12d0  C:\Windows\System32\pdh.dll - ok
    21:36:05.0545 0x12d0  [ 5EA9A0950F322BFA382AF277801C0307, A2C00A3E22A484A00620FF801E0B6EB475C9593C80AF321564E5A0DD2B1C38B7 ] C:\Windows\System32\wbem\wmipcima.dll
    21:36:05.0545 0x12d0  C:\Windows\System32\wbem\wmipcima.dll - ok
    21:36:05.0547 0x12d0  [ CE203243ADF512540249DF9C264F12DD, 7BC0A6E9A422D832DDF046F28EA0F80A879A007B7116C4B830D6A39DCDD09EF5 ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
    21:36:05.0547 0x12d0  C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe - ok
    21:36:05.0550 0x12d0  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] C:\Windows\System32\sppsvc.exe
    21:36:05.0550 0x12d0  C:\Windows\System32\sppsvc.exe - ok
    21:36:05.0552 0x12d0  [ E601860AA04CE2198DBC6AC2AF80AFF7, B9D2BAEF2F6F8EA687414E73DFC5207F11A406D53C3444FCDAFD9CE1B4940053 ] C:\Windows\System32\perfos.dll
    21:36:05.0552 0x12d0  C:\Windows\System32\perfos.dll - ok
    21:36:05.0554 0x12d0  [ FFF95479C7AB1550F0750A5D01744211, FF67F892AABCE1C2B695FF4C0816339566F5745C1498D48FAC050E5196C1CE09 ] C:\Windows\System32\drivers\spsys.sys
    21:36:05.0555 0x12d0  C:\Windows\System32\drivers\spsys.sys - ok
    21:36:05.0557 0x12d0  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] C:\Windows\System32\wscsvc.dll
    21:36:05.0557 0x12d0  C:\Windows\System32\wscsvc.dll - ok
    21:36:05.0559 0x12d0  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] C:\Windows\System32\wuaueng.dll
    21:36:05.0559 0x12d0  C:\Windows\System32\wuaueng.dll - ok
    21:36:05.0562 0x12d0  [ 6D3EB49D7D1EB9D1FD62BB2A81AA7A83, EC2BF261A62827096A17C30181EE616AD4841C827F1E979A837771254D3F62C5 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\70dbdd46969daf2bea2443c75b7629d4\System.Web.ni.dll
    21:36:05.0562 0x12d0  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\70dbdd46969daf2bea2443c75b7629d4\System.Web.ni.dll - ok
    21:36:05.0564 0x12d0  [ 7DF186D86CF8C571A12AAB788C777F84, A2C1064BFDEF2A85CB12A11E55728BCC09933C115C278403F07B27DB2C36C710 ] C:\Windows\SysWOW64\wscproxystub.dll
    21:36:05.0564 0x12d0  C:\Windows\SysWOW64\wscproxystub.dll - ok
    21:36:05.0567 0x12d0  [ C38560EE68D0D5272F850ABC983A77C1, 5823800BA1B064542A5C796811C8298BCB597B410DD255EA24A20814FE8AD5EF ] C:\Program Files (x86)\Steam\bin\friendsui.dll
    21:36:05.0567 0x12d0  C:\Program Files (x86)\Steam\bin\friendsui.dll - ok
    21:36:05.0569 0x12d0  [ 560132366E5FAF43ACEDBA996BCC28E5, A95F0D8CB52757296105DF0DC0BB2D2C152F89103AFDF33F94E65652FE6404BA ] C:\Program Files (x86)\Steam\bin\serverbrowser.dll
    21:36:05.0569 0x12d0  C:\Program Files (x86)\Steam\bin\serverbrowser.dll - ok
    21:36:05.0572 0x12d0  [ BBEE9BBFD1F3C339059D96C4C42B455F, ACABB80C5BF16784C57921C842D6916D58634BADC64242929E4A28D0A9A13062 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUIHelper.dll
    21:36:05.0572 0x12d0  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUIHelper.dll - ok
    21:36:05.0574 0x12d0  [ 617F6EC0AC677C685479C1D0D1E76C6F, 77B22C0817558CE70EF7D3BBE04A275FFA35ED2E4AFB17DBDF353DF9932DC693 ] C:\Windows\System32\mspatcha.dll
    21:36:05.0575 0x12d0  C:\Windows\System32\mspatcha.dll - ok
    21:36:05.0577 0x12d0  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] C:\Windows\System32\QAGENTRT.DLL
    21:36:05.0577 0x12d0  C:\Windows\System32\QAGENTRT.DLL - ok
    21:36:05.0579 0x12d0  [ 506A83A3BEEE9FCA09F0170DE9FC7D1B, 2DFBD792B68F3EBEF0843183CAE5D52B6FA04163808AFACF6C0D738455898C36 ] C:\Windows\System32\fveui.dll
    21:36:05.0579 0x12d0  C:\Windows\System32\fveui.dll - ok
    21:36:05.0582 0x12d0  [ C47F35CC6FA4F1BDBEF8F87AC1A46537, 82EC7041317666D5370690BD2176CF00F5957036C29429319F45045BFFAE9EC2 ] C:\Windows\System32\wuapi.dll
    21:36:05.0582 0x12d0  C:\Windows\System32\wuapi.dll - ok
    21:36:05.0584 0x12d0  [ E746ED90132C6B6313CE9179F56BD31D, CCE0367148E54AA1413C52CCE752CC75EA9E3A8232ECFC263C62A634B8CAEF5F ] C:\Windows\System32\wups.dll
    21:36:05.0584 0x12d0  C:\Windows\System32\wups.dll - ok
    21:36:05.0586 0x12d0  [ 77F595DEE5FFACEA72B135B1FCE1312E, 8D540D484EA41E374FD0107D55D253F87DED4CE780D515D8FD59BBE8C98970A7 ] C:\Windows\SysWOW64\xinput1_3.dll
    21:36:05.0586 0x12d0  C:\Windows\SysWOW64\xinput1_3.dll - ok
    21:36:05.0589 0x12d0  [ F6F22291024906E43D135A4B1705FEAC, C1B66012799D247033E8AB8386B51BC86A4E2255E6D0B163AC000B215C51B42A ] C:\Windows\System32\sppwinob.dll
    21:36:05.0589 0x12d0  C:\Windows\System32\sppwinob.dll - ok
    21:36:05.0591 0x12d0  [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A, 7F67FE1E0453CCCFA5097BFC9087BA5F4B213CCA8AC17FC05D7ED02A52112E05 ] C:\Windows\System32\wups2.dll
    21:36:05.0591 0x12d0  C:\Windows\System32\wups2.dll - ok
    21:36:05.0594 0x12d0  [ 2B373B5F7E36B5ED5DA176D4400EF091, A7E220CC3661429D786693B277A7F39D5D9E24284B1D9E55DB6295AF7D97D104 ] C:\Windows\System32\sppobjs.dll
    21:36:05.0594 0x12d0  C:\Windows\System32\sppobjs.dll - ok
    21:36:05.0595 0x12d0  ================ Scan generic autorun ======================
    21:36:05.0884 0x12d0  [ 73E7DAFAA77FC23F8139F87BA96D7FC5, 6C6A1D81A87D475819901E213753E84DE0E5C5AB37DE5FF200A0C753015E091B ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    21:36:06.0072 0x12d0  RtHDVCpl - ok
    21:36:06.0115 0x12d0  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\RunDLL32.exe
    21:36:06.0146 0x12d0  RunDLLEntry_THXCfg - ok
    21:36:06.0150 0x12d0  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\RunDLL32.exe
    21:36:06.0166 0x12d0  RunDLLEntry_EptMon - ok
    21:36:06.0169 0x12d0  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
    21:36:06.0183 0x12d0  Logitech Download Assistant - ok
    21:36:06.0311 0x12d0  [ 812DD9FBA5EF2136AEF738CAA499D47C, 239BF6A71916512FD3979DB334491C4FF399F5E95BE02F25A1DF81C171D17C42 ] C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe
    21:36:06.0360 0x12d0  DellStage - ok
    21:36:06.0430 0x12d0  [ 25107F58D1B8F60D67D1EE95798C0DE8, C3B5205E8818576EBF33E3B9FD8664A498714B823D9128FC1CA0A64F81499263 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
    21:36:06.0452 0x12d0  IAStorIcon - ok
    21:36:06.0533 0x12d0  [ 7C73B5C50CAEDB1771A049142026906B, A4992339D71A9297963C70616C4124BD701E46AEE439E09C392C2B2EBAE624E6 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
    21:36:06.0691 0x12d0  StartCCC - ok
    21:36:06.0781 0x12d0  [ 2A5E8DBC310C2FB7511B9AB8E7CFB297, F9522B42BAA4A3B5D325385C8AB7BBDE549AB6420D0F430925A22C61C09FE5B2 ] C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe
    21:36:06.0808 0x12d0  THX Audio Control Panel - detected UnsignedFile.Multi.Generic ( 1 )
    21:36:12.0693 0x12d0  Detect skipped due to KSN trusted
    21:36:12.0693 0x12d0  THX Audio Control Panel - ok
    21:36:12.0734 0x12d0  [ C419DF63E0121D72411285780C2FC6CC, F47F854D327C589D174D3BB5B55D5C05F5ACA73DF52A6BEF47596B9010190291 ] C:\Windows\UpdReg.EXE
    21:36:12.0758 0x12d0  UpdReg - detected UnsignedFile.Multi.Generic ( 1 )
    21:36:15.0434 0x12d0  Detect skipped due to KSN trusted
    21:36:15.0434 0x12d0  UpdReg - ok
    21:36:15.0479 0x12d0  [ AC9B4D950943A3C173F8657BD08BF325, D3F32CACCA4FE559B0B3E735A534F09B06F6FFACF3B47E8965863494E5D7F185 ] c:\Program Files (x86)\Cyberlink\Shared Files\brs.exe
    21:36:15.0496 0x12d0  BDRegion - ok
    21:36:15.0530 0x12d0  [ ECF207CD20FB05CEF8F3C7A101ED812C, 394F0A0864BECD920647D4766B358ED00DE0D4F83BC8F990AEC9455E266E0B3A ] C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe
    21:36:15.0546 0x12d0  RoxWatchTray - ok
    21:36:15.0613 0x12d0  [ CE5C9977DA751DDC30952AC4DCBCA788, 295172C4681E9AC27121122CDD2BA6F2A62435917A083CC8490D584CA0164BE6 ] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
    21:36:15.0629 0x12d0  HP Software Update - ok
    21:36:15.0694 0x12d0  [ 61E4289E91E88C90478D7F4BEB10DCF7, 1D0F4034E0111CF5758F470C15A22A0A28EB8269CB5BF07222C9C0FB07A15C55 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
    21:36:15.0711 0x12d0  APSDaemon - ok
    21:36:15.0787 0x12d0  [ 53EDBE9C1D6B0CEC11A573852B5B6DAD, E4A6B00AA93F2E8BBA7149601A37D7388E0A5EC48CD95A0BD94939FD96726811 ] C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
    21:36:15.0821 0x12d0  AccuWeatherWidget - ok
    21:36:15.0908 0x12d0  [ 1B22422DC7EAA39E86820387C5AA1CB4, 365F4E690EDCF1FB86D88858456997E8433D6FDBEC384853D866EEA91F3ACE77 ] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
    21:36:15.0946 0x12d0  DivXMediaServer - detected UnsignedFile.Multi.Generic ( 1 )
    21:36:18.0558 0x12d0  Detect skipped due to KSN trusted
    21:36:18.0558 0x12d0  DivXMediaServer - ok
    21:36:18.0657 0x12d0  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
    21:36:18.0684 0x12d0  Adobe ARM - ok
    21:36:18.0740 0x12d0  [ D63797E8E7781EE1500A810CB6194FA6, 5C96DA00B98F0776E6174EBB7D4D6DB634838E130D8581E11811831D2C57B119 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    21:36:18.0761 0x12d0  SunJavaUpdateSched - ok
    21:36:18.0802 0x12d0  [ 81800928E0F713DF31F3393CC26F4013, 0ABCC70297C83C01BCCAF03083BE67EB7A50A28557B2F9578EDB73B382F54182 ] C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
    21:36:18.0834 0x12d0  DivXUpdate - ok
    21:36:18.0875 0x12d0  [ 9ACCBC5891BA51B5B29C1A88F80D4CE3, 4EA3D9CB239874232AE0D7F824AF8CC7AD9BB4657CB9978B41067B4447FBE71B ] C:\Program Files (x86)\QuickTime\QTTask.exe
    21:36:18.0899 0x12d0  QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
    21:36:21.0342 0x12d0  Detect skipped due to KSN trusted
    21:36:21.0342 0x12d0  QuickTime Task - ok
    21:36:21.0417 0x12d0  [ A9F9D081518AC03A51C1195986076F42, 7549CA4530470D9C8A0078E0002E3650133051AA4A1D2F3B7CF0BCA4C4A65595 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
    21:36:21.0436 0x12d0  iTunesHelper - ok
    21:36:21.0601 0x12d0  [ 2218928CF528D7BC295B1B4C69E9846C, FCC23BF7FACFC911CD7090B8E12E6ECC7716514FD7CA1D73B2CA351AA41499BD ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
    21:36:21.0686 0x12d0  AvastUI.exe - ok
    21:36:21.0760 0x12d0  [ B1868F9E2B5224E57CE55570AF4FBC99, A4279BE54CA66029BA208049162DC0C9E9EA3BB7830B7E310CA8868614564F34 ] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
    21:36:21.0801 0x12d0  Wondershare Helper Compact.exe - detected UnsignedFile.Multi.Generic ( 1 )
    21:36:24.0483 0x12d0  Detect skipped due to KSN trusted
    21:36:24.0483 0x12d0  Wondershare Helper Compact.exe - ok
    21:36:24.0594 0x12d0  [ 86F33213C450FED3C7E32F9473415E7E, 75F3B3739DD12D8B7F93BEA912B864BF8BAEFA061720A87CF1F55030334C2558 ] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
    21:36:24.0623 0x12d0  EEventManager - ok
    21:36:24.0687 0x12d0  [ 0B0E075EF0AE1CD8526D6D851E684224, 349E8ACF6E570A51C265AC19C4971C7BECA96820A8298D559E2DB6199C03C5A6 ] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe
    21:36:24.0715 0x12d0  FUFAXRCV - ok
    21:36:24.0741 0x12d0  [ 55436C4848E1EB25644C70EF78D53FF9, A8951914E7BDA419CA9A4EBF7285767DC7CEBAD498FADBD017B21F8329C1D131 ] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe
    21:36:24.0764 0x12d0  FUFAXSTM - ok
    21:36:24.0894 0x12d0  [ B1381B756D83248D21DF23887C9B2AA0, 716BEBB735737DD421464EAB6D71F47B53214786FECE018A6A6BC0B90AD6CFEF ] C:\Program Files (x86)\LTCM Client\ltcmClient.exe
    21:36:24.0953 0x12d0  LTCM Client - ok
    21:36:25.0063 0x12d0  [ C0B3668DBC1B93243648C0067AEA2675, 0F5315E3B87B7FD00313D085FFC16CA81AB0078604C1E20E4EF5909C1C5D55D9 ] C:\Program Files (x86)\Steam\Steam.exe
    21:36:25.0103 0x12d0  Steam - ok
    21:36:25.0200 0x12d0  [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
    21:36:25.0258 0x12d0  Sidebar - ok
    21:36:25.0376 0x12d0  [ FCDE60F22FF7B5BEB55770208565B199, 841ED4610B6EF9968CFCFFCF252674297B661DF012BABB0D22938F9445B5AFF5 ] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
    21:36:25.0401 0x12d0  KiesPDLR - ok
    21:36:25.0477 0x12d0  [ DF552350CDC2AA39C01CE40612DF82A8, 17B90AFC0837712EBC781FAC912B288125A900370B09B32320EB874704CACCE2 ] C:\Program Files (x86)\Samsung\Kies\Kies.exe
    21:36:25.0513 0x12d0  KiesPreload - ok
    21:36:25.0547 0x12d0  [ B22CB67919EBAD88B0E8BB9CDA446010, 2F744FEAC48EDE7D6B6D2727F7DDFA80B26D9E3B0009741B00992B19AD85E128 ] C:\Windows\System32\StikyNot.exe
    21:36:25.0588 0x12d0  RESTART_STICKY_NOTES - ok
    21:36:25.0675 0x12d0  [ 6ECE746BB283927604DA192CA0D1403D, 327E1E908B6DB1C8414B31DB277EF5EABA340B2EE7FEE19349860B3C8F7778FE ] C:\Windows\system32\spool\DRIVERS\x64\3\E_YATIJHE.EXE
    21:36:25.0698 0x12d0  EPLTarget\P0000000000000001 - ok
    21:36:25.0743 0x12d0  [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
    21:36:25.0786 0x12d0  Sidebar - ok
    21:36:25.0788 0x12d0  Waiting for KSN requests completion. In queue: 21
    21:36:26.0788 0x12d0  Waiting for KSN requests completion. In queue: 21
    21:36:27.0788 0x12d0  Waiting for KSN requests completion. In queue: 13
    21:36:28.0848 0x12d0  AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2018.391 ), 0x41000 ( enabled : updated )
    21:36:28.0853 0x12d0  Win FW state via NFP2: enabled
    21:36:31.0339 0x12d0  ============================================================
    21:36:31.0339 0x12d0  Scan finished
    21:36:31.0339 0x12d0  ============================================================
    21:36:31.0349 0x1424  Detected object count: 0
    21:36:31.0349 0x1424  Actual detected object count: 0
    22:53:23.0896 0x1004  Deinitialize success


    #12 JSntgRvr

    JSntgRvr

      Master Surgeon General


    • Malware Response Team
    • 10,822 posts
    • ONLINE
    •  
    • Gender:Male
    • Location:Puerto Rico
    • Local time:10:37 AM

    Posted 06 July 2014 - 11:45 AM

    It is all clear. How is the computer doing?


    No request for help throughout private messaging will be attended.

    If I have helped you, consider making a donation to help me continue the fight against Malware!
    btn_donate_SM.gif


    #13 JamAli

    JamAli
    • Topic Starter

    • Members
    • 50 posts
    • OFFLINE
    •  
    • Gender:Female
    • Local time:09:37 AM

    Posted 06 July 2014 - 11:47 AM

    Good day,

      I am still having the problem. Clicked links are opening up a 'special' tab that goes to 'canadaalltax'.

     

    Thanks



    #14 JamAli

    JamAli
    • Topic Starter

    • Members
    • 50 posts
    • OFFLINE
    •  
    • Gender:Female
    • Local time:09:37 AM

    Posted 11 July 2014 - 07:40 PM

    (Just making sure topic stays open)



    #15 JSntgRvr

    JSntgRvr

      Master Surgeon General


    • Malware Response Team
    • 10,822 posts
    • ONLINE
    •  
    • Gender:Male
    • Location:Puerto Rico
    • Local time:10:37 AM

    Posted 11 July 2014 - 08:49 PM

    Reset your browsers to default.For instructions click here
     
     
    Download AdwCleaner from here or from here. Save the file to the desktop.
     
     
    NOTE: If you are using IE 8 or above you may get a warning that stops the program from downloading. Just click on the warning and allow the download to complete.
     
    Close all open windows and browsers.

    • XP users: Double click the AdwCleaner icon to start the program.
    • Vista/7/8 users: Right click the AdwCleaner icon on the desktop, click Run as administrator and accept the UAC prompt to run AdwCleaner.
      You will see the following console:

    AdwScan.jpg?

    • Click the Scan button and wait for the scan to finish.
    • After the Scan has finished the window may or may not show what it found and above, in the progress bar, you will see: Pending. Please uncheck elements you don't want to remove.
    • Click the Clean button.
    • Everything checked will be deleted.
    • When the program has finished cleaning a report appears.Once done it will ask to reboot, allow this

    adwcleaner_delete_restart.jpg

    • On reboot a log will be produced please copy / paste that in your next reply. This report is also saved to C:\AdwCleaner\AdwCleaner[S0].txt

    bf_new.gif Please download Malwarebytes' Anti-Malware from Here
     
    Double Click mbam-setup-2.0..exe to install the application. (The revision number may vary.)

    • Select the language and click OK.
    • Accept the agreement
    • Make sure a checkmark is placed next to Enable the Free Trial and Launch
    • Malwarebytes' Anti-Malware
    • , then click on finish.
    • If an update is found, it will download and install the latest version.
    • Once the program has loaded, select "Scan Now".
    • The scan may take some time to finish,so please be patient.
    • When the scan is complete, click on Quanrantee All,.
    • When disinfection is completed, a dialog will open and you may be prompted to Restart.(See Extra Note)
    • Upon restart, launch Malwarebytes Antimalware and select History.
    • Double click on the last scan done, then on Copy to Clipboard.
    • Right click on your next reply and select Paste.
    • Submit your reply.
    • Extra Note:
       
      If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediatly.

    No request for help throughout private messaging will be attended.

    If I have helped you, consider making a donation to help me continue the fight against Malware!
    btn_donate_SM.gif





    0 user(s) are reading this topic

    0 members, 0 guests, 0 anonymous users