Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Problem with BSOD win32k


  • Please log in to reply
10 replies to this topic

#1 kieran.kccr

kieran.kccr

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:21 PM

Posted 14 September 2014 - 03:30 AM

 
and installed programs using minitools
=========================== Installed Programs ============================
Adobe Flash Player 15 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 15.0.0.159 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
Learning Essentials for Microsoft Office (HKLM\...\{75F3A4B2-F6E8-434D-A2EF-DBBC016C6CB2}) (Version: 2.0 - Microsoft)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Math (HKLM\...\{07043840-959A-4B0D-8825-2C533F0DDB19}) (Version: 2007 - Microsoft Corporation)
Microsoft Office 2010 Service Pack 1 (SP1) (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{047B0968-E622-4FAA-9B4B-121FA109EDDE}) (Version:  - Microsoft)
Microsoft Office 2010 Service Pack 1 (SP1) (Version:  - Microsoft) Hidden
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.4.0304.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.4.304.0 - Microsoft Corporation)
Microsoft Student 2007 for Learning Essentials (HKLM\...\{Microsoft Student 2007_54A0E938-8390-489F-8F1A-563673334DFE}) (Version:  - )
Microsoft Student with Encarta Premium 2009 (HKLM\...\{09041881-2C94-4A67-8E55-8483C019C7D2}) (Version: 2009 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
NVIDIA Control Panel 340.52 (Version: 340.52 - NVIDIA Corporation) Hidden
NVIDIA Graphics Driver 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.157.1165 - NVIDIA Corporation) Hidden
NVIDIA PhysX (Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
oDesk Team (HKCU\...\oDVT) (Version:  - oDesk Corporation)
Opera Stable 24.0.1558.53 (HKLM\...\Opera 24.0.1558.53) (Version: 24.0.1558.53 - Opera Software ASA)
Popcap Game Collection (HKLM\...\{69EA986B-B172-4FAA-B54D-853BD3A2B264}) (Version: 1.00.0000 - Popcap)
qBittorrent 3.1.9.2 (HKLM\...\qbittorrent) (Version: 3.1.9.2 - The qBittorrent project)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5919 - Realtek Semiconductor Corp.)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Winamp (HKLM\...\Winamp) (Version: 5.63  - Nullsoft, Inc)
Winamp Detector Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
WinRAR archiver (HKLM\...\WinRAR archiver) (Version:  - )
Yahoo! Messenger (HKLM\...\Yahoo! Messenger) (Version:  - Yahoo! Inc.)
 
i really need help for fixing this.

Edited by kieran.kccr, 14 September 2014 - 03:32 AM.


BC AdBot (Login to Remove)

 


#2 hamluis

hamluis

    Moderator


  • Moderator
  • 55,384 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:06:21 AM

Posted 14 September 2014 - 11:06 AM

Good morning :).

 

Please download MiniToolBox  , save it to your desktop and run it.
 
Checkmark the following checkboxes:
  List last 10 Event Viewer log
  List Installed Programs
  List Users, Partitions and Memory size.
 
Click Go and paste the content into your next post.
 
Also...please Publish a Snapshot using Speccy - http://www.bleepingcomputer.com/forums/topic323892.html/page__p__1797792#entry1797792 , taking care to post the link of the snapshot in your next post.
 
Louis



#3 kieran.kccr

kieran.kccr
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:21 PM

Posted 14 September 2014 - 11:27 PM

Thanks for the reply.

 

here it is

 

========================= Event log errors: ===============================
 
Application errors:
==================
Error: (09/14/2014 08:47:54 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/13/2014 09:39:18 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/13/2014 08:54:56 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/13/2014 08:37:59 AM) (Source: Application Hang) (User: )
Description: The program msinfo32.exe version 6.1.7601.17514 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 928
 
Start Time: 01cfceea90a821b1
 
Termination Time: 0
 
Application Path: C:\Windows\system32\msinfo32.exe
 
Report Id: 28fd1664-3ade-11e4-8655-00252232ade2
 
Error: (09/13/2014 07:56:08 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/13/2014 07:16:02 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/13/2014 00:24:57 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/13/2014 00:23:58 AM) (Source: Application Error) (User: )
Description: Faulting application name: Explorer.EXE, version: 6.1.7601.17514, time stamp: 0x4ce796f3
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x01d7fad4
Faulting process id: 0x7ec
Faulting application start time: 0xExplorer.EXE0
Faulting application path: Explorer.EXE1
Faulting module path: Explorer.EXE2
Report Id: Explorer.EXE3
 
Error: (09/12/2014 11:37:03 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/12/2014 11:35:24 PM) (Source: Application Error) (User: )
Description: Faulting application name: LogonUI.exe, version: 6.1.7601.17514, time stamp: 0x4ce79505
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x000efc2e
Faulting process id: 0x3b4
Faulting application start time: 0xLogonUI.exe0
Faulting application path: LogonUI.exe1
Faulting module path: LogonUI.exe2
Report Id: LogonUI.exe3
 
 
System errors:
=============
Error: (09/14/2014 08:46:08 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
cdrom
 
Error: (09/14/2014 08:46:08 AM) (Source: Service Control Manager) (User: )
Description: The LiveUpdate service failed to start due to the following error: 
%%2
 
Error: (09/14/2014 08:46:00 AM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: NT AUTHORITY)
Description: Some processor performance power management features have been disabled due to a known firmware problem. Check with the computer manufacturer for updated firmware.
 
Error: (09/13/2014 09:37:35 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
cdrom
 
Error: (09/13/2014 09:37:34 AM) (Source: Service Control Manager) (User: )
Description: The LiveUpdate service failed to start due to the following error: 
%%2
 
Error: (09/13/2014 09:37:32 AM) (Source: BugCheck) (User: )
Description: 0x0000008e (0xc0000005, 0x73152c01, 0xa04abb50, 0x00000000)C:\Windows\MEMORY.DMP091314-12078-01
 
Error: (09/13/2014 09:37:24 AM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: NT AUTHORITY)
Description: Some processor performance power management features have been disabled due to a known firmware problem. Check with the computer manufacturer for updated firmware.
 
Error: (09/13/2014 09:37:32 AM) (Source: EventLog) (User: )
Description: The previous system shutdown at 9:36:05 AM on ‎9/‎13/‎2014 was unexpected.
 
Error: (09/13/2014 08:53:14 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
cdrom
 
Error: (09/13/2014 08:53:13 AM) (Source: Service Control Manager) (User: )
Description: The LiveUpdate service failed to start due to the following error: 
%%2
 
 
Microsoft Office Sessions:
=========================
Error: (09/14/2014 08:47:54 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/13/2014 09:39:18 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/13/2014 08:54:56 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/13/2014 08:37:59 AM) (Source: Application Hang)(User: )
Description: msinfo32.exe6.1.7601.1751492801cfceea90a821b10C:\Windows\system32\msinfo32.exe28fd1664-3ade-11e4-8655-00252232ade2
 
Error: (09/13/2014 07:56:08 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/13/2014 07:16:02 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/13/2014 00:24:57 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/13/2014 00:23:58 AM) (Source: Application Error)(User: )
Description: Explorer.EXE6.1.7601.175144ce796f3unknown0.0.0.000000000c000000501d7fad47ec01cfcea5da4e6932C:\Windows\Explorer.EXEunknown32250777-3a99-11e4-bd4a-00252232ade2
 
Error: (09/12/2014 11:37:03 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (09/12/2014 11:35:24 PM) (Source: Application Error)(User: )
Description: LogonUI.exe6.1.7601.175144ce79505unknown0.0.0.000000000c0000005000efc2e3b401cfce9f27fbcbaeC:\Windows\system32\LogonUI.exeunknown69561866-3a92-11e4-a923-00252232ade2
 
 
 
=========================== Installed Programs ============================
Adobe Flash Player 15 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 15.0.0.159 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
Learning Essentials for Microsoft Office (HKLM\...\{75F3A4B2-F6E8-434D-A2EF-DBBC016C6CB2}) (Version: 2.0 - Microsoft)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Math (HKLM\...\{07043840-959A-4B0D-8825-2C533F0DDB19}) (Version: 2007 - Microsoft Corporation)
Microsoft Office 2010 Service Pack 1 (SP1) (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{047B0968-E622-4FAA-9B4B-121FA109EDDE}) (Version:  - Microsoft)
Microsoft Office 2010 Service Pack 1 (SP1) (Version:  - Microsoft) Hidden
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.4.0304.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.4.304.0 - Microsoft Corporation)
Microsoft Student 2007 for Learning Essentials (HKLM\...\{Microsoft Student 2007_54A0E938-8390-489F-8F1A-563673334DFE}) (Version:  - )
Microsoft Student with Encarta Premium 2009 (HKLM\...\{09041881-2C94-4A67-8E55-8483C019C7D2}) (Version: 2009 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
NVIDIA Control Panel 340.52 (Version: 340.52 - NVIDIA Corporation) Hidden
NVIDIA Graphics Driver 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.157.1165 - NVIDIA Corporation) Hidden
NVIDIA PhysX (Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
oDesk Team (HKCU\...\oDVT) (Version:  - oDesk Corporation)
Opera Stable 24.0.1558.53 (HKLM\...\Opera 24.0.1558.53) (Version: 24.0.1558.53 - Opera Software ASA)
Popcap Game Collection (HKLM\...\{69EA986B-B172-4FAA-B54D-853BD3A2B264}) (Version: 1.00.0000 - Popcap)
qBittorrent 3.1.9.2 (HKLM\...\qbittorrent) (Version: 3.1.9.2 - The qBittorrent project)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5919 - Realtek Semiconductor Corp.)
Speccy (HKLM\...\Speccy) (Version: 1.26 - Piriform)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Winamp (HKLM\...\Winamp) (Version: 5.63  - Nullsoft, Inc)
Winamp Detector Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
WinRAR archiver (HKLM\...\WinRAR archiver) (Version:  - )
Yahoo! Messenger (HKLM\...\Yahoo! Messenger) (Version:  - Yahoo! Inc.)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 87%
Total physical RAM: 1023.3 MB
Available physical RAM: 128.33 MB
Total Pagefile: 2047.3 MB
Available Pagefile: 501.55 MB
Total Virtual: 2047.88 MB
Available Virtual: 1939.81 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:48.73 GB) (Free:30.11 GB) NTFS
2 Drive d: (DATA) (Fixed) (Total:416.93 GB) (Free:336.39 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\USER-PC
 
Administrator            Guest                    User                  
 


#4 hamluis

hamluis

    Moderator


  • Moderator
  • 55,384 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:06:21 AM

Posted 15 September 2014 - 11:06 AM

KMService
 
Identified as possible malware and an indicator of illegal software installed.
 
Topic moved to Am I Infected.
 
Louis


#5 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,358 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:04:21 AM

Posted 15 September 2014 - 11:29 AM

Is this Microsoft software legal?
 
Please run the following scans.

_________________________________________________________________________________________________________

 

Please download Malwarebytes Anti-Malware.  After clicking on the link the download will start automatically.

 
1)  Double-click on mbam-setup.exe, then click on Run to install the application, follow the prompts through the installation.
 
2)  Malwarebytes will automatically open.  If this is the first time you have run this version of Malwarbytes you will see an image like the one below.
 
mbam1_zps95cc812c.png
 
Click on Update Now, after Malwarebytes is updated click on Scan.
 
If this isn't the first time you have run this version, then you will see an image like the one below.  Click on Scan
 
mbam1_zps98e7fba9.png
 
You will be prompted to update Malwarebytes, to do so click on Update Now.
 
 mbam2_zps85f38f0c.png
 
3)  The scan will automatically run now.
 
mbamreplace_zps3ead4824.png
 
 
4)  When the scan is complete the results will be displayed.  Click on Quarantine All, then click on Apply Actions
 
mbam4_zps23e52ad4.png
 
 
5)  To complete any actions taken you will be asked if you want to restart your computer, click on Yes
 
 mbam4_zps490948cc.png
 
6)  Please post the Malwarebytes log.
 
To find your Malwarebytes log,download mbam-check.exe from here and save it to your desktop.
 
To open the log double click on mbam-check.exe on your desktop.  When the log opens, scroll down toward the bottom of the log to Quarantined Items.  Copy and paste this in your next post.
 
_________________________________________________________________________________________________________
 
 
Please download TDSSKiller from here and save it to your Desktop.
 
1.  Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
 
 
tds2.jpg
 
2.  Check Loaded Modules, Verify Driver Digital Signature, and Detect TDLFS file system.
 
If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now.
 
 
2012081514h0118.png
 
3.  Click Start Scan and allow the scan process to run.
 
 
tds4-1.jpg
 
4.  If threats are detected select Skip or Cure (if available) for all of them unless otherwise instructed.
 
***Do NOT select Delete!
Click Continue.
 
 
tds6.jpg[/*]
 
5.  Click Reboot computer.
 
Please copy the TDSSKiller.[Version]_[Date]_[Time]_log.txt file found in your root directory (typically c:\) and paste it into your next reply.
 
_______________________________________________________________________________________________________
 
 
 Please run the ESET OnlineScan

This scan takes quite a long time to run, so be prepared to have the time to allow this to run till it is completed.

***Please note. If you run this scan using Internet Explorer you won't need to download the Eset Smartinstaller.***

  • Click on this link to open ESET OnlineScan in a new window.
  • The ESET Online Scanner page will open, click on Yes, I agree to the trems of use, then click on Start, the scan will now begine.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

Edited by dc3, 15 September 2014 - 11:32 AM.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#6 kieran.kccr

kieran.kccr
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:21 PM

Posted 17 September 2014 - 08:19 AM

Hi does this mean that KMservices caused bsod's? and i can't be able to finish eset scan because it gives me bsod's everytime the scan goes to 20% it goes bsod
 
mbam-check result log version:     2.1.1.1001
========================================
 
User Account type:                 Administrator
OS:                                Windows 7 Service Pack 1 Service Pack 1 32 bit Operating System
Current Version and Build:         6.1.7601.0 
Malwarebytes Anti-Malware:         2.0.2.1012
Installed On:                      2014/09/17
Malware Database:                  2014.09.17.03
Rootkit Database:                  2014.09.15.01
Remediation Database:              2013.10.16.01
IP Database:                       0000.00.00.00
Domain Database:                   0000.00.00.00
License:                           Trial
Malware Protection:                4 (The service is running.)
Malicious Website Protection:      4 (The service is running.)
Chameleon:                         0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMChameleon
Log Created:                       2014/09/17 19:03:48
Compatibility Flag Settings:
=================================
 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\appCompatFlags\Layers
C:\Users\User\Downloads\Compressed\New folder\Audio_Win7-64_Win7_RV\Win7-64_Win7\Setup.exeREG_SZ WINXPSP2
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\appCompatFlags\Layers
C:\Program Files\qBittorrent\qbittorrent.exeREG_SZ RUNASADMIN
 
 
Malwarebytes Anti-Malware Shell Extension Block Check:
======================================================
 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Blocked:
 
MBAM Startup Entries: 
=====================
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
 
Malwarebytes Anti-Malware Service and Driver Status:
=======================================================
 
--------------Driver File Info:--------------
C:\Windows\system32\drivers\mbam.sys
File Size: 23256     BYTES FileVersion: 0.1.13.0 MD5: [8683c1b450f4b3872839308d836e0f92]
C:\Windows\system32\drivers\mwac.sys
File Size: 51928     BYTES FileVersion: 1.0.1.0 MD5: [bd27d97297934fd4217a37fd28a7abc7]
C:\Windows\system32\drivers\mbamswissarmy.sys
File Size: 110296    BYTES FileVersion: 0.1.7.0 MD5: [12e71da845d76665b56753ad149e32b3]
C:\Windows\system32\drivers\mbamchameleon.sys
File Size: 74456     BYTES FileVersion: 1.0.4.0 MD5: [1aa835e8a0b8edf3d676b4ed4bf5ef07]
 
--------------MBAMProtector:--------------
Type:                   2
State:                  4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
--------------MBAMService:--------------
Type:                   16
State:                  4 (The service is running.)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
--------------MBAMScheduler:--------------
Type:                   16
State:                  4 (The service is running.)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
--------------MBAMChameleon:--------------
Type:                   N/A
State:                  0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMChameleon
WIN32_EXIT_CODE:        N/A
SERVICE_EXIT_CODE:      N/A
CHECKPOINT:             N/A
WAIT_HINT:              N/A
 
 
--------------MBAMWebAccessControl:--------------
Type:                   1
State:                  4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
Required Dependencies:
======================
 
--------------BFE:--------------
Type:                   32
State:                  4 (The service is running.)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE
DisplayName                   REG_SZ @%SystemRoot%\system32\bfe.dll,-1001
Group                         REG_SZ NetworkProvider
ImagePath                     REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k LocalServiceNoNetwork
Description                   REG_SZ @%SystemRoot%\system32\bfe.dll,-1002
ObjectName                    REG_SZ NT AUTHORITY\LocalService
ErrorControl                  REG_DWORD 1
Start                         REG_DWORD 2
Type                          REG_DWORD 32
DependOnService               REG_MULTI_SZ RpcSs
 
ServiceSidType                REG_DWORD 3
RequiredPrivileges            REG_MULTI_SZ SeAuditPrivilege
 
FailureActions                REG_BINARY Binary Data
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters
ServiceDll                    REG_EXPAND_SZ %SystemRoot%\System32\bfe.dll
ServiceDllUnloadOnStop        REG_DWORD 1
ServiceMain                   REG_SZ BfeServiceMain
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\BootTime
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\BootTime\Filter
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Callout
{22001ee0-8e87-4f75-ba58-248f5918a63a}REG_BINARY Binary Data
 
{79f2a265-b693-4cc9-b480-cbcd87bd4747}REG_BINARY Binary Data
 
{c4b50f21-503e-4d7a-abd4-ed0a823a2453}REG_BINARY Binary Data
 
{91e902db-2cef-4040-b8e2-02fe4fd49c25}REG_BINARY Binary Data
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Filter
{b02a4013-b6b5-4859-9168-1e3299e43b24}REG_BINARY Binary Data
 
{d870c96c-75ee-46a6-8a02-8e4401a73423}REG_BINARY Binary Data
 
{8b50e2ec-7cf0-4b71-b42e-5b0536f6cab8}REG_BINARY Binary Data
 
{4137b143-2770-43d4-91a2-55bb0a069830}REG_BINARY Binary Data
 
{3180114b-8338-4740-9a16-444134ad62f4}REG_BINARY Binary Data
 
{17043d46-fac2-4561-bca1-0c7a05e95f5f}REG_BINARY Binary Data
 
{567d3836-3f5b-4067-b9c4-952f677010a2}REG_BINARY Binary Data
 
{4e718c57-c397-4221-9fbb-14fd51701d6a}REG_BINARY Binary Data
 
{3a90a266-1519-4d23-911b-e84cd0f02ab8}REG_BINARY Binary Data
 
{56b4fdc4-bb4e-4c42-a9d8-f627ee15ac21}REG_BINARY Binary Data
 
{1ba41ed8-151d-4577-9272-317856bc637c}REG_BINARY Binary Data
 
{9248d57e-f843-4159-807d-3813173e2096}REG_BINARY Binary Data
 
{4658cd86-525d-44ed-98a5-791a7b8655f1}REG_BINARY Binary Data
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Provider
{decc16ca-3f33-4346-be1e-8fb4ae0f3d62}REG_BINARY Binary Data
 
{4b153735-1049-4480-aab4-d1b9bdc03710}REG_BINARY Binary Data
 
{1bebc969-61a5-4732-a177-847a0817862a}REG_BINARY Binary Data
 
{aa6a7d87-7f8f-4d2a-be53-fda555cd5fe3}REG_BINARY Binary Data
 
{839cd73f-1907-49ea-9aa5-0e6be9048087}REG_BINARY Binary Data
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\SubLayer
{b3cdd441-af90-41ba-a745-7c6008ff2300}REG_BINARY Binary Data
 
{b3cdd441-af90-41ba-a745-7c6008ff2301}REG_BINARY Binary Data
 
{b3cdd441-af90-41ba-a745-7c6008ff2302}REG_BINARY Binary Data
 
{9ba30013-c84e-47e5-ac6e-1e1aed72fa69}REG_BINARY Binary Data
 
{8c36b346-4e0c-4049-8b55-5295ac35567c}REG_BINARY Binary Data
 
--------------fltmgr:--------------
Type:                   2
State:                  4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr
AttachWhenLoaded              REG_DWORD 1
DisplayName                   REG_SZ @%SystemRoot%\system32\drivers\fltmgr.sys,-10001
Group                         REG_SZ FSFilter Infrastructure
ImagePath                     REG_EXPAND_SZ system32\drivers\fltmgr.sys
Description                   REG_SZ @%SystemRoot%\system32\drivers\fltmgr.sys,-10000
ErrorControl                  REG_DWORD 3
Start                         REG_DWORD 0
Tag                           REG_DWORD 1
Type                          REG_DWORD 2
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr\Enum
0                             REG_SZ Root\LEGACY_FLTMGR\0000
Count                         REG_DWORD 1
NextInstance                  REG_DWORD 1
 
 
C:\Windows\system32\drivers\fltmgr.sys
File Size: 198208    BYTES FileVersion: 6.1.7600.16385 MD5: [7520ec808e0c35e0ee6f841294316653]
C:\Windows\system32\mscomctl.ocx
File Size: 1069376   BYTES FileVersion: 6.1.98.18 MD5: [d7eef2c46a9880f21be01511024b53ab]
C:\Windows\system32\olepro32.dll
File Size: 90112     BYTES FileVersion: 6.1.7601.17514 MD5: [703ffd301ab900b047337c5d40fd6f96]
 
 
MBAM Registry Settings and License Info:
========================================
--------------Settings:--------------
Advanced: 
    AutomaticQuarantine:                                       true 
    AutostartProtection:                                       true 
    LimitedMode:                                               false 
    StartSilentMode:                                           false 
    StartupDelay:                                              0 
ApplicationState: 
    First-Run-After-Installation:                              false 
General: 
    DaysUntilNotifyExpiration:                                 5 
    Language:                                                  en 
    RightClickAccess:                                          false 
    SilentErrors:                                              false 
Logging: 
    ExportLog:                                                 true 
Notification: 
ProtectionTray: 
    DisplayMilliseconds:                                       7000 
ScanHistory: 
    Duration_Complete:                                         45000 
    Duration_Driver:                                           0 
    Duration_Filesystem:                                       1000 
    Duration_Heuristics:                                       171000 
    Duration_Loading:                                          0 
    Duration_MasterBootRecord:                                 0 
    Duration_Memory:                                           40000 
    Duration_PreScan:                                          7000 
    Duration_Registry:                                         11000 
    Duration_Sector:                                           0 
    Duration_Startup:                                          21000 
    ItemCount_Complete:                                        235299 
    ItemCount_Driver:                                          0 
    ItemCount_Filesystem:                                      28692 
    ItemCount_Heuristics:                                      7492 
    ItemCount_Loading:                                         0 
    ItemCount_MasterBootRecord:                                0 
    ItemCount_Memory:                                          2797 
    ItemCount_PreScan:                                         0 
    ItemCount_Registry:                                        549 
    ItemCount_Sector:                                          0 
    ItemCount_Startup:                                         2802 
    LastScanDateEpoch:                                         1410951346801 
    LastScanType:                                              1 (Threat Scan)
Update: 
    LastUpdate:                                                2014-09-17T10:41:40 
    NotifyInstallReady:                                        true 
    NotifyOutdatedDatabase:                                    1 
    ProxyPassword:                                              
    ProxyPort:                                                 0 
    ProxyServer:                                                
    ProxyUsername:                                              
    UseProxy:                                                  false 
    UseProxyAuthentication:                                    false 
--------------Account:--------------
  Account Status:                                              Trial 
  Expiration Time:                                             2014/10/01 10:41:48 
  Activation Time:                                             2014/09/17 10:41:48 
  Trial Used:                                                  true 
--------------Access Policies:--------------
 
Scheduler Queue:
================
 
tasks: 
    203c54a4-648c-4145-aa3b-926b5d2509b3:                       
      parameters:                                               
        NotifyWhenUpdateCompletes:                             true 
        TaskType:                                              3 
      triggers:                                                 
        879b6337-6820-4f1a-8015-ec9718ac51dd:                   
          dateinterval:                                        0:0:0 
          lastscheduled:                                        
          lasttriggered:                                        
          nextscheduled:                                       Wed, 17 Sep 2014 19:16:13.889648 +0800 
          recovery:                                            00:00:00 
          start:                                               Wed, 17 Sep 2014 19:03:04.889648 +0800 
          timeinterval:                                        01:00:00 
          type:                                                3 
          uuid:                                                879b6337-6820-4f1a-8015-ec9718ac51dd 
      type:                                                    update 
      uuid:                                                    203c54a4-648c-4145-aa3b-926b5d2509b3 
    c36b1b4e-7aef-4222-a15f-e0df305c9baa:                       
      parameters:                                               
        CheckForUpdatesBeforeScanStart:                        true 
        ScanConfig:                                             
          ExitWhenNoMalwareDetected:                           false 
          ExportLog:                                           true 
          FileSystemOption:                                    true 
          RebootSystemWhenMalwareDetected:                     false 
          RemoveMalwareAutomaticallyWhenScanEnds:              false 
          ScanArchives:                                        true 
          ScanExtra:                                           true 
          ScanHeuristic:                                       true 
          ScanMemoryObjects:                                   true 
          ScanPUM:                                             2 
          ScanPUP:                                             2 
          ScanRegistry:                                        true 
          ScanRootkits:                                        false 
          ScanStartup:                                         true 
          ScanTargets:                                          
          ScanType:                                            1 (Threat Scan)
          Silent:                                              true 
          TerminateExplorerWhenMalwareIsRemoved:               false 
        StartTaskFromSystemAccount:                            false 
        TaskType:                                              0 
      triggers:                                                 
        2a6c4897-bb29-4761-8d53-4373b9e733ca:                   
          dateinterval:                                        1:0:0 
          lastscheduled:                                        
          lasttriggered:                                        
          nextscheduled:                                       Thu, 18 Sep 2014 01:57:07 +0800 
          recovery:                                            23:00:00 
          start:                                               Thu, 18 Sep 2014 02:00:37 +0800 
          timeinterval:                                        00:00:00 
          type:                                                4 
          uuid:                                                2a6c4897-bb29-4761-8d53-4373b9e733ca 
      type:                                                    scan 
      uuid:                                                    c36b1b4e-7aef-4222-a15f-e0df305c9baa 
 
Pending File Rename Operations: 
================================
If any Malwarebytes Anti-Malware items are listed below, the user must reboot to complete a Malwarebytes Anti-Malware upgrade installation.
 
MBAMProtector Registry Values:
==============================
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector
Type                          REG_DWORD 2
Start                         REG_DWORD 3
ErrorControl                  REG_DWORD 1
ImagePath                     REG_EXPAND_SZ \??\C:\Windows\system32\drivers\mbam.sys
Group                         REG_SZ FSFilter Anti-Virus
DependOnService               REG_MULTI_SZ FltMgr
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Instances
DefaultInstance               REG_SZ MBAMProtector Instance
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Instances\MBAMProtector Instance
Altitude                      REG_SZ 328800
Flags                         REG_DWORD 0
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Parameters
PassThruFile                  REG_SZ mbampt.exe
ProductPath                   REG_SZ C:\Program Files\Malwarebytes Anti-Malware
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Enum
0                             REG_SZ Root\LEGACY_MBAMPROTECTOR\0000
Count                         REG_DWORD 1
NextInstance                  REG_DWORD 1
 
MBAMService Registry Values:
============================
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMService
Type                          REG_DWORD 16
Start                         REG_DWORD 2
ErrorControl                  REG_DWORD 1
ImagePath                     REG_EXPAND_SZ "C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe"
DependOnService               REG_MULTI_SZ MBAMProtector
 
ObjectName                    REG_SZ LocalSystem
Description                   REG_SZ Malwarebytes Anti-Malware service
DelayedAutostart              REG_DWORD 0
 
MBAMScheduler Registry Values:
==============================
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMScheduler
Type                          REG_DWORD 16
Start                         REG_DWORD 2
ErrorControl                  REG_DWORD 1
ImagePath                     REG_EXPAND_SZ "C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe"
ObjectName                    REG_SZ LocalSystem
Description                   REG_SZ Malwarebytes Anti-Malware scheduler
 
Terminal Services Status for (null) entries in PM logs and GetUserToken errors:
===============================================================================
 
--------------TERMService:--------------
Type:                   32
State:                  1 (The service is not running.) (State is stopped)
WIN32_EXIT_CODE:        1077
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
TermService Start is set to: 3 (Manual Startup)
 
Proxy Status: No proxy is Set
 
Proxy Override: 
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\
ProxyOverride REG_SZ <-loopback>
 
LAN Settings:
=============
 
only 'Automatically detect settings' is selected
 
SystemPartition:
================
 
HKEY_LOCAL_MACHINE\SYSTEM\Setup\
SystemPartition REG_SZ \Device\HarddiskVolume1
 
Balloon Tips Status:
====================
 
Enabled
 
Time Format Settings:
=====================
 
Should be:
h:mm:ss tt
AM 
PM 
:
 
Currently:
REG_SZ h:mm:ss tt
REG_SZ AM
REG_SZ PM
REG_SZ :
 
Language and Regional Settings:
===============================
 
ACP:  Language is English (United States)
MACCP:  Language is English (United States)
OEMCP:  Language is English (United States)

Edited by kieran.kccr, 17 September 2014 - 08:23 AM.


#7 kieran.kccr

kieran.kccr
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:21 PM

Posted 17 September 2014 - 08:27 AM

TDSSKiller
 
19:12:00.0910 0x0d40  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
19:12:05.0222 0x0d40  ============================================================
19:12:05.0222 0x0d40  Current date / time: 2014/09/17 19:12:05.0222
19:12:05.0222 0x0d40  SystemInfo:
19:12:05.0222 0x0d40  
19:12:05.0222 0x0d40  OS Version: 6.1.7601 ServicePack: 1.0
19:12:05.0222 0x0d40  Product type: Workstation
19:12:05.0222 0x0d40  ComputerName: USER-PC
19:12:05.0222 0x0d40  UserName: User
19:12:05.0222 0x0d40  Windows directory: C:\Windows
19:12:05.0222 0x0d40  System windows directory: C:\Windows
19:12:05.0222 0x0d40  Processor architecture: Intel x86
19:12:05.0222 0x0d40  Number of processors: 4
19:12:05.0222 0x0d40  Page size: 0x1000
19:12:05.0222 0x0d40  Boot type: Normal boot
19:12:05.0222 0x0d40  ============================================================
19:12:05.0222 0x0d40  BG loaded
19:12:05.0707 0x0d40  System UUID: {5D3167FD-D44E-6BFB-FFD4-81C8267115C0}
19:12:06.0503 0x0d40  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0x38080, SectorsPerTrack: 0x13, TracksPerCylinder: 0xE0, Type 'K0', Flags 0x00000040
19:12:06.0503 0x0d40  ============================================================
19:12:06.0503 0x0d40  \Device\Harddisk0\DR0:
19:12:06.0503 0x0d40  MBR partitions:
19:12:06.0503 0x0d40  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
19:12:06.0503 0x0d40  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x6175000
19:12:06.0519 0x0d40  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x61A79A5, BlocksNum 0x341DD48B
19:12:06.0519 0x0d40  ============================================================
19:12:06.0535 0x0d40  C: <-> \Device\Harddisk0\DR0\Partition2
19:12:06.0566 0x0d40  D: <-> \Device\Harddisk0\DR0\Partition3
19:12:06.0566 0x0d40  ============================================================
19:12:06.0566 0x0d40  Initialize success
19:12:06.0566 0x0d40  ============================================================
19:12:16.0738 0x0d8c  ============================================================
19:12:16.0738 0x0d8c  Scan started
19:12:16.0738 0x0d8c  Mode: Manual; SigCheck; TDLFS; 
19:12:16.0738 0x0d8c  ============================================================
19:12:16.0738 0x0d8c  KSN ping started
19:12:32.0066 0x0d8c  KSN ping finished: true
19:12:32.0894 0x0d8c  ================ Scan system memory ========================
19:12:32.0894 0x0d8c  Scan was interrupted by user!
19:12:32.0941 0x0d8c  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.4.304.0 ), 0x61000 ( enabled : updated )
19:12:32.0941 0x0d8c  Win FW state via NFP2: disabled
19:12:35.0988 0x0d8c  ============================================================
19:12:35.0988 0x0d8c  Scan finished
19:12:35.0988 0x0d8c  ============================================================
19:12:35.0988 0x0d04  Detected object count: 0
19:12:35.0988 0x0d04  Actual detected object count: 0
19:12:42.0050 0x0514  ============================================================
19:12:42.0050 0x0514  Scan started
19:12:42.0050 0x0514  Mode: Manual; SigCheck; TDLFS; 
19:12:42.0050 0x0514  ============================================================
19:12:42.0050 0x0514  KSN ping started
19:12:45.0050 0x0514  KSN ping finished: true
19:12:45.0925 0x0514  ================ Scan services =============================
19:12:46.0035 0x0514  [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
19:12:46.0082 0x0514  1394ohci - ok
19:12:46.0113 0x0514  [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI            C:\Windows\system32\drivers\ACPI.sys
19:12:46.0128 0x0514  ACPI - ok
19:12:46.0144 0x0514  [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
19:12:46.0160 0x0514  AcpiPmi - ok
19:12:46.0222 0x0514  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
19:12:46.0238 0x0514  AdobeARMservice - ok
19:12:46.0285 0x0514  [ 2A2DA4E580C933BDAFC692F10A1ECBA4, 1813847F64C36C41A36896E8B14C03D1961CBFA754DA41B9F3EFD9DD69FE3E73 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
19:12:46.0300 0x0514  AdobeFlashPlayerUpdateSvc - ok
19:12:46.0332 0x0514  [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
19:12:46.0347 0x0514  adp94xx - ok
19:12:46.0378 0x0514  [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci         C:\Windows\system32\drivers\adpahci.sys
19:12:46.0394 0x0514  adpahci - ok
19:12:46.0410 0x0514  [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320         C:\Windows\system32\drivers\adpu320.sys
19:12:46.0425 0x0514  adpu320 - ok
19:12:46.0457 0x0514  [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
19:12:46.0472 0x0514  AeLookupSvc - ok
19:12:46.0488 0x0514  [ 1151FD4FB0216CFED887BFDE29EBD516, 673C2B498744C7EB846F6BD4FDC852B0A9722377D75FD694F7F78E727ADF4563 ] AFD             C:\Windows\system32\drivers\afd.sys
19:12:46.0519 0x0514  AFD - ok
19:12:46.0535 0x0514  [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440          C:\Windows\system32\drivers\agp440.sys
19:12:46.0535 0x0514  agp440 - ok
19:12:46.0550 0x0514  [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
19:12:46.0566 0x0514  aic78xx - ok
19:12:46.0566 0x0514  [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG             C:\Windows\System32\alg.exe
19:12:46.0582 0x0514  ALG - ok
19:12:46.0597 0x0514  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide          C:\Windows\system32\drivers\aliide.sys
19:12:46.0613 0x0514  aliide - ok
19:12:46.0613 0x0514  [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
19:12:46.0628 0x0514  amdagp - ok
19:12:46.0644 0x0514  [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide          C:\Windows\system32\drivers\amdide.sys
19:12:46.0660 0x0514  amdide - ok
19:12:46.0675 0x0514  [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
19:12:46.0675 0x0514  AmdK8 - ok
19:12:46.0691 0x0514  [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
19:12:46.0707 0x0514  AmdPPM - ok
19:12:46.0707 0x0514  [ E7F4D42D8076EC60E21715CD11743A0D, 91AC020A70964F8783C999BDE8AB8391A3FA3AFC1CD4BC52A43625A2010A53E7 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
19:12:46.0722 0x0514  amdsata - ok
19:12:46.0738 0x0514  [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
19:12:46.0753 0x0514  amdsbs - ok
19:12:46.0753 0x0514  [ 146459D2B08BFDCBFA856D9947043C81, AC7F2069717601F949B0968EA651899D497170A93B84281B66D3CE5C382DDECB ] amdxata         C:\Windows\system32\drivers\amdxata.sys
19:12:46.0769 0x0514  amdxata - ok
19:12:46.0785 0x0514  [ AEA177F783E20150ACE5383EE368DA19, 8FA9EE27AA1F22E8B8FE33A21028CA1E0062BAA95CB132C20D55B98C03B4254F ] AppID           C:\Windows\system32\drivers\appid.sys
19:12:46.0800 0x0514  AppID - ok
19:12:46.0816 0x0514  [ 62A9C86CB6085E20DB4823E4E97826F5, E0F840B49710022C4FB437002AD06F64B0F6B5D628B32D00F2B66765E6B97E4B ] AppIDSvc        C:\Windows\System32\appidsvc.dll
19:12:46.0832 0x0514  AppIDSvc - ok
19:12:46.0847 0x0514  [ FB1959012294D6AD43E5304DF65E3C26, CFE906B07FF71A178CF9C254B056C6F5A303DDC511F0E4E1E75808F1D5326495 ] Appinfo         C:\Windows\System32\appinfo.dll
19:12:46.0878 0x0514  Appinfo - ok
19:12:46.0894 0x0514  [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt         C:\Windows\System32\appmgmts.dll
19:12:46.0910 0x0514  AppMgmt - ok
19:12:46.0925 0x0514  [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc             C:\Windows\system32\drivers\arc.sys
19:12:46.0925 0x0514  arc - ok
19:12:46.0941 0x0514  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas          C:\Windows\system32\drivers\arcsas.sys
19:12:46.0957 0x0514  arcsas - ok
19:12:47.0019 0x0514  [ 776ACEFA0CA9DF0FAA51A5FB2F435705, 72DF7ED6B085BC468994F5B3189506FD726A9A17A9C42ACA1E420D787691361D ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
19:12:47.0019 0x0514  aspnet_state - ok
19:12:47.0035 0x0514  [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
19:12:47.0066 0x0514  AsyncMac - ok
19:12:47.0066 0x0514  [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi           C:\Windows\system32\drivers\atapi.sys
19:12:47.0082 0x0514  atapi - ok
19:12:47.0113 0x0514  [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:12:47.0144 0x0514  AudioEndpointBuilder - ok
19:12:47.0160 0x0514  [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] Audiosrv        C:\Windows\System32\Audiosrv.dll
19:12:47.0191 0x0514  Audiosrv - ok
19:12:47.0207 0x0514  [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV        C:\Windows\System32\AxInstSV.dll
19:12:47.0222 0x0514  AxInstSV - ok
19:12:47.0238 0x0514  [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv         C:\Windows\system32\drivers\bxvbdx.sys
19:12:47.0269 0x0514  b06bdrv - ok
19:12:47.0285 0x0514  [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
19:12:47.0300 0x0514  b57nd60x - ok
19:12:47.0316 0x0514  [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC          C:\Windows\System32\bdesvc.dll
19:12:47.0332 0x0514  BDESVC - ok
19:12:47.0347 0x0514  [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep            C:\Windows\system32\drivers\Beep.sys
19:12:47.0363 0x0514  Beep - ok
19:12:47.0394 0x0514  [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE             C:\Windows\System32\bfe.dll
19:12:47.0425 0x0514  BFE - ok
19:12:47.0457 0x0514  [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS            C:\Windows\System32\qmgr.dll
19:12:47.0488 0x0514  BITS - ok
19:12:47.0503 0x0514  [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
19:12:47.0519 0x0514  blbdrive - ok
19:12:47.0535 0x0514  [ FCAFAEF6798D7B51FF029F99A9898961, BFB37686B1386EB883B99DB6AC342C20514939F8B7A5CEC5D63865B3DC2B4D4F ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
19:12:47.0550 0x0514  bowser - ok
19:12:47.0566 0x0514  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
19:12:47.0582 0x0514  BrFiltLo - ok
19:12:47.0597 0x0514  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
19:12:47.0613 0x0514  BrFiltUp - ok
19:12:47.0613 0x0514  [ 6E11F33D14D020F58D5E02E4D67DFA19, 9563E4E8CE769B7619745F6F6DE618389A1595785023BF1F295AD8301B27F0AF ] Browser         C:\Windows\System32\browser.dll
19:12:47.0644 0x0514  Browser - ok
19:12:47.0644 0x0514  [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
19:12:47.0675 0x0514  Brserid - ok
19:12:47.0691 0x0514  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
19:12:47.0707 0x0514  BrSerWdm - ok
19:12:47.0722 0x0514  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
19:12:47.0722 0x0514  BrUsbMdm - ok
19:12:47.0738 0x0514  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
19:12:47.0753 0x0514  BrUsbSer - ok
19:12:47.0769 0x0514  [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
19:12:47.0785 0x0514  BTHMODEM - ok
19:12:47.0785 0x0514  [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv         C:\Windows\system32\bthserv.dll
19:12:47.0816 0x0514  bthserv - ok
19:12:47.0832 0x0514  [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
19:12:47.0863 0x0514  cdfs - ok
19:12:47.0863 0x0514  [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
19:12:47.0878 0x0514  cdrom - ok
19:12:47.0894 0x0514  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc     C:\Windows\System32\certprop.dll
19:12:47.0925 0x0514  CertPropSvc - ok
19:12:47.0941 0x0514  [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass        C:\Windows\system32\drivers\circlass.sys
19:12:47.0957 0x0514  circlass - ok
19:12:47.0957 0x0514  [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS            C:\Windows\system32\CLFS.sys
19:12:47.0972 0x0514  CLFS - ok
19:12:48.0003 0x0514  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:12:48.0019 0x0514  clr_optimization_v2.0.50727_32 - ok
19:12:48.0050 0x0514  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:12:48.0066 0x0514  clr_optimization_v4.0.30319_32 - ok
19:12:48.0082 0x0514  [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
19:12:48.0082 0x0514  CmBatt - ok
19:12:48.0097 0x0514  [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
19:12:48.0113 0x0514  cmdide - ok
19:12:48.0128 0x0514  [ 1B675691ED940766149C93E8F4488D68, A55C41B2B343B1CF53D737ED1752D0510052094FFC60FDB833279A8A52398132 ] CNG             C:\Windows\system32\Drivers\cng.sys
19:12:48.0160 0x0514  CNG - ok
19:12:48.0160 0x0514  [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
19:12:48.0175 0x0514  Compbatt - ok
19:12:48.0191 0x0514  [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
19:12:48.0191 0x0514  CompositeBus - ok
19:12:48.0207 0x0514  COMSysApp - ok
19:12:48.0207 0x0514  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
19:12:48.0222 0x0514  crcdisk - ok
19:12:48.0253 0x0514  [ A585BEBF7D054BD9618EDA0922D5484A, 340DF730E88F8B6A4EF542F620EBA2A720546AFAB4DFFA00F066B7610A1026C5 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
19:12:48.0269 0x0514  CryptSvc - ok
19:12:48.0300 0x0514  [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] CSC             C:\Windows\system32\drivers\csc.sys
19:12:48.0347 0x0514  CSC - ok
19:12:48.0363 0x0514  [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] CscService      C:\Windows\System32\cscsvc.dll
19:12:48.0394 0x0514  CscService - ok
19:12:48.0425 0x0514  [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] DcomLaunch      C:\Windows\system32\rpcss.dll
19:12:48.0457 0x0514  DcomLaunch - ok
19:12:48.0488 0x0514  [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc       C:\Windows\System32\defragsvc.dll
19:12:48.0519 0x0514  defragsvc - ok
19:12:48.0519 0x0514  [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
19:12:48.0550 0x0514  DfsC - ok
19:12:48.0566 0x0514  [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp            C:\Windows\system32\dhcpcore.dll
19:12:48.0597 0x0514  Dhcp - ok
19:12:48.0613 0x0514  [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache        C:\Windows\system32\drivers\discache.sys
19:12:48.0644 0x0514  discache - ok
19:12:48.0644 0x0514  [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk            C:\Windows\system32\drivers\disk.sys
19:12:48.0660 0x0514  Disk - ok
19:12:48.0675 0x0514  [ 2A958EF85DB1B61FFCA65044FA4BCE9E, C83511685EE1CE85A5ADF9B5BE96C375A521601F66024BDC3EE044C0B6E85D69 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
19:12:48.0691 0x0514  dmvsc - ok
19:12:48.0707 0x0514  [ 2FE30D71919C51131405797620E0A714, 16060DDC32EF95EB6E37B91D50A96AB53CB0DEBB3DFDCB31975D16361092ABA5 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
19:12:48.0722 0x0514  Dnscache - ok
19:12:48.0738 0x0514  [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc         C:\Windows\System32\dot3svc.dll
19:12:48.0769 0x0514  dot3svc - ok
19:12:48.0785 0x0514  [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS             C:\Windows\system32\dps.dll
19:12:48.0816 0x0514  DPS - ok
19:12:48.0816 0x0514  [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
19:12:48.0832 0x0514  drmkaud - ok
19:12:48.0863 0x0514  [ 23F5D28378A160352BA8F817BD8C71CB, 11BF7B7E6276C28EFF74B8AF89B493CBB89B394D2A091708EDA15DA5C342FF19 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
19:12:48.0894 0x0514  DXGKrnl - ok
19:12:48.0925 0x0514  [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost         C:\Windows\System32\eapsvc.dll
19:12:48.0957 0x0514  EapHost - ok
19:12:49.0050 0x0514  [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv           C:\Windows\system32\drivers\evbdx.sys
19:12:49.0160 0x0514  ebdrv - ok
19:12:49.0175 0x0514  [ F42309C4191C506B71DB5D1126D26318, 29B0A8889857CEBFA6CBD795D5EECDDFFA04E794BD3C73FC488725B2A160F326 ] EFS             C:\Windows\System32\lsass.exe
19:12:49.0191 0x0514  EFS - ok
19:12:49.0238 0x0514  [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
19:12:49.0253 0x0514  ehRecvr - ok
19:12:49.0269 0x0514  [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched         C:\Windows\ehome\ehsched.exe
19:12:49.0285 0x0514  ehSched - ok
19:12:49.0316 0x0514  [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
19:12:49.0332 0x0514  elxstor - ok
19:12:49.0332 0x0514  [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
19:12:49.0347 0x0514  ErrDev - ok
19:12:49.0378 0x0514  [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem     C:\Windows\system32\es.dll
19:12:49.0410 0x0514  EventSystem - ok
19:12:49.0425 0x0514  [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat           C:\Windows\system32\drivers\exfat.sys
19:12:49.0441 0x0514  exfat - ok
19:12:49.0472 0x0514  [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
19:12:49.0488 0x0514  fastfat - ok
19:12:49.0519 0x0514  [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax             C:\Windows\system32\fxssvc.exe
19:12:49.0535 0x0514  Fax - ok
19:12:49.0550 0x0514  [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc             C:\Windows\system32\drivers\fdc.sys
19:12:49.0566 0x0514  fdc - ok
19:12:49.0582 0x0514  [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost         C:\Windows\system32\fdPHost.dll
19:12:49.0597 0x0514  fdPHost - ok
19:12:49.0613 0x0514  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub        C:\Windows\system32\fdrespub.dll
19:12:49.0628 0x0514  FDResPub - ok
19:12:49.0644 0x0514  [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
19:12:49.0660 0x0514  FileInfo - ok
19:12:49.0675 0x0514  [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
19:12:49.0691 0x0514  Filetrace - ok
19:12:49.0707 0x0514  [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
19:12:49.0722 0x0514  flpydisk - ok
19:12:49.0738 0x0514  [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
19:12:49.0753 0x0514  FltMgr - ok
19:12:49.0785 0x0514  [ FA6C66E4364D7DA57AADE5DCC03BB999, 9C0D0A04D2558CF60B7F7185CC9B369CDDD3B1C625960910CECF07611F288378 ] FontCache       C:\Windows\system32\FntCache.dll
19:12:49.0832 0x0514  FontCache - ok
19:12:49.0847 0x0514  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
19:12:49.0863 0x0514  FontCache3.0.0.0 - ok
19:12:49.0878 0x0514  [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
19:12:49.0878 0x0514  FsDepends - ok
19:12:49.0894 0x0514  [ A574B4360E438977038AAE4BF60D79A2, 7255CCDDDAC4853FA72E6487408C4B7390CBA37549CE952929B2A9CF3327C616 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
19:12:49.0894 0x0514  Fs_Rec - ok
19:12:49.0925 0x0514  [ 8A73E79089B282100B9393B644CB853B, 844DC5AADFABBD050B967904B796BA06BFD64C9112616EA26229D084F8B3AD41 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
19:12:49.0941 0x0514  fvevol - ok
19:12:49.0957 0x0514  [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
19:12:49.0957 0x0514  gagp30kx - ok
19:12:49.0988 0x0514  [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] gpsvc           C:\Windows\System32\gpsvc.dll
19:12:50.0019 0x0514  gpsvc - ok
19:12:50.0035 0x0514  [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
19:12:50.0050 0x0514  hcw85cir - ok
19:12:50.0066 0x0514  [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:12:50.0082 0x0514  HdAudAddService - ok
19:12:50.0097 0x0514  [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
19:12:50.0113 0x0514  HDAudBus - ok
19:12:50.0113 0x0514  [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
19:12:50.0128 0x0514  HidBatt - ok
19:12:50.0144 0x0514  [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth          C:\Windows\system32\drivers\hidbth.sys
19:12:50.0160 0x0514  HidBth - ok
19:12:50.0175 0x0514  [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr           C:\Windows\system32\drivers\hidir.sys
19:12:50.0191 0x0514  HidIr - ok
19:12:50.0207 0x0514  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv         C:\Windows\system32\hidserv.dll
19:12:50.0222 0x0514  hidserv - ok
19:12:50.0238 0x0514  [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
19:12:50.0253 0x0514  HidUsb - ok
19:12:50.0253 0x0514  [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc          C:\Windows\system32\kmsvc.dll
19:12:50.0285 0x0514  hkmsvc - ok
19:12:50.0300 0x0514  [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:12:50.0332 0x0514  HomeGroupListener - ok
19:12:50.0347 0x0514  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:12:50.0363 0x0514  HomeGroupProvider - ok
19:12:50.0378 0x0514  [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
19:12:50.0394 0x0514  HpSAMD - ok
19:12:50.0410 0x0514  [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
19:12:50.0441 0x0514  HTTP - ok
19:12:50.0457 0x0514  [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
19:12:50.0472 0x0514  hwpolicy - ok
19:12:50.0488 0x0514  [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
19:12:50.0503 0x0514  i8042prt - ok
19:12:50.0519 0x0514  [ A3CAE5D281DB4CFF7CFF8233507EE5AD, 2666107220B9F301193F2CF85A3D6B09E6E42CC150152D10A8886E47A3FD9B0D ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
19:12:50.0535 0x0514  iaStorV - ok
19:12:50.0582 0x0514  [ C521D7EB6497BB1AF6AFA89E322FB43C, BDDCFCBB5B76A9295669B5AC9F732D6127199ED5C300770B554C4E4794F66BB7 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:12:50.0597 0x0514  idsvc - ok
19:12:50.0613 0x0514  [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp           C:\Windows\system32\drivers\iirsp.sys
19:12:50.0628 0x0514  iirsp - ok
19:12:50.0660 0x0514  [ F95622F161474511B8D80D6B093AA610, F2320E25EB9B4AA9A8366BD3AA23EABEBE111A5610D3A62EBA47D90427D5BC26 ] IKEEXT          C:\Windows\System32\ikeext.dll
19:12:50.0691 0x0514  IKEEXT - ok
19:12:50.0800 0x0514  [ 5CEEF2CCCB4FE00D3FFBFEB12BCFA07F, D5533A7BA7BE65D5D5CE137795419E6C49B51B15B7450C319EE0EA9A83AC73E0 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
19:12:50.0941 0x0514  IntcAzAudAddService - ok
19:12:50.0957 0x0514  [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide        C:\Windows\system32\drivers\intelide.sys
19:12:50.0957 0x0514  intelide - ok
19:12:50.0972 0x0514  [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
19:12:50.0988 0x0514  intelppm - ok
19:12:51.0003 0x0514  [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
19:12:51.0035 0x0514  IPBusEnum - ok
19:12:51.0035 0x0514  [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:12:51.0066 0x0514  IpFilterDriver - ok
19:12:51.0097 0x0514  [ 4D65A07B795D6674312F879D09AA7663, 8D72FE0B51A6FF71F85D2602DB3AE91C8749F70869B6789552F047BA81411EDA ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
19:12:51.0128 0x0514  iphlpsvc - ok
19:12:51.0144 0x0514  [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
19:12:51.0160 0x0514  IPMIDRV - ok
19:12:51.0160 0x0514  [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
19:12:51.0191 0x0514  IPNAT - ok
19:12:51.0207 0x0514  [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM          C:\Windows\system32\drivers\irenum.sys
19:12:51.0222 0x0514  IRENUM - ok
19:12:51.0222 0x0514  [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp          C:\Windows\system32\drivers\isapnp.sys
19:12:51.0238 0x0514  isapnp - ok
19:12:51.0253 0x0514  [ CB7A9ABB12B8415BCE5D74994C7BA3AE, 464BFF3F5EEE985BE075E23E1813F5CB82A9A0771A92C6D889B13B867BCDF647 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
19:12:51.0269 0x0514  iScsiPrt - ok
19:12:51.0285 0x0514  [ 18EDC0ACAE6BFA404621A7DB1BAD0C10, 7EDBC9A3586C05377F305721BC6E373CD280C29218AADEB535E2007B23F30AB6 ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
19:12:51.0300 0x0514  iusb3hcs - ok
19:12:51.0300 0x0514  [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
19:12:51.0316 0x0514  kbdclass - ok
19:12:51.0332 0x0514  [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
19:12:51.0347 0x0514  kbdhid - ok
19:12:51.0347 0x0514  [ F42309C4191C506B71DB5D1126D26318, 29B0A8889857CEBFA6CBD795D5EECDDFFA04E794BD3C73FC488725B2A160F326 ] KeyIso          C:\Windows\system32\lsass.exe
19:12:51.0363 0x0514  KeyIso - ok
19:12:51.0394 0x0514  [ 4635935FC972C582632BF45C26BFCB0E, ABD4AFD71B3C2BD3F741BBE3CEC52C4FA63AC78D353101D2E7DC4DE2725D1CA1 ] KMService       C:\Windows\system32\srvany.exe
19:12:51.0394 0x0514  KMService - detected UnsignedFile.Multi.Generic ( 1 )
19:12:51.0457 0x0514  KMService ( UnsignedFile.Multi.Generic ) - warning
19:12:51.0457 0x0514  Force sending object to P2P due to detect: KMService
19:12:55.0113 0x0514  Object send P2P result: true
19:12:58.0160 0x0514  [ 412CEA1AA78CC02A447F5C9E62B32FF1, E06859E2CE2AFA3CE521851F8810778ED1748B812E601A58786605096AACEA81 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
19:12:58.0160 0x0514  KSecDD - ok
19:12:58.0175 0x0514  [ 26C046977E85B95036453D7B88BA1820, 375B284AFB407CAE417D2090B112A0ED1CCD516ABFDDBFCD5D6AADE859F14ACD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
19:12:58.0191 0x0514  KSecPkg - ok
19:12:58.0222 0x0514  [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm           C:\Windows\system32\msdtckrm.dll
19:12:58.0253 0x0514  KtmRm - ok
19:12:58.0285 0x0514  [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer    C:\Windows\system32\srvsvc.dll
19:12:58.0316 0x0514  LanmanServer - ok
19:12:58.0332 0x0514  [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:12:58.0363 0x0514  LanmanWorkstation - ok
19:12:58.0363 0x0514  LiveUpdateSvc - ok
19:12:58.0378 0x0514  [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
19:12:58.0394 0x0514  lltdio - ok
19:12:58.0425 0x0514  [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
19:12:58.0457 0x0514  lltdsvc - ok
19:12:58.0472 0x0514  [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts         C:\Windows\System32\lmhsvc.dll
19:12:58.0488 0x0514  lmhosts - ok
19:12:58.0503 0x0514  [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
19:12:58.0519 0x0514  LSI_FC - ok
19:12:58.0535 0x0514  [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
19:12:58.0535 0x0514  LSI_SAS - ok
19:12:58.0550 0x0514  [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
19:12:58.0550 0x0514  LSI_SAS2 - ok
19:12:58.0566 0x0514  [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
19:12:58.0582 0x0514  LSI_SCSI - ok
19:12:58.0582 0x0514  [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv           C:\Windows\system32\drivers\luafv.sys
19:12:58.0613 0x0514  luafv - ok
19:12:58.0628 0x0514  [ 8683C1B450F4B3872839308D836E0F92, C6CEEEA780D2191AEAC2537FD96324FF5501D92CE46313FB95ABB51765D919ED ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
19:12:58.0644 0x0514  MBAMProtector - ok
19:12:58.0722 0x0514  [ D84AEA3F3329D622DFC1297DDDF6163B, 316FE56CC30ED1473A917253F46B79EAA12F4ABD5B4B1ADB03929DFEE940F577 ] MBAMScheduler   C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
19:12:58.0785 0x0514  MBAMScheduler - ok
19:12:58.0816 0x0514  [ 4F45ED469906494F9BF754E476390DBD, D8FF6AFD73D8C191F5732DF9737E6F83B2B52B06A3A6CD4CC6EAC9464CBB2772 ] MBAMService     C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
19:12:58.0847 0x0514  MBAMService - ok
19:12:58.0863 0x0514  [ 12E71DA845D76665B56753AD149E32B3, 0E403710CCBACD5AB85FD4C32AAB6CB2C27BC1F043E8008EE49EE96ECA944146 ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
19:12:58.0878 0x0514  MBAMSwissArmy - ok
19:12:58.0894 0x0514  [ BD27D97297934FD4217A37FD28A7ABC7, 446F3D6D278A4B3B79B331AA325632FD038952E5E910FC927894E9171A623794 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
19:12:58.0910 0x0514  MBAMWebAccessControl - ok
19:12:58.0925 0x0514  [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
19:12:58.0941 0x0514  Mcx2Svc - ok
19:12:58.0957 0x0514  [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas         C:\Windows\system32\drivers\megasas.sys
19:12:58.0972 0x0514  megasas - ok
19:12:58.0988 0x0514  [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
19:12:58.0988 0x0514  MegaSR - ok
19:12:59.0035 0x0514  Microsoft SharePoint Workspace Audit Service - ok
19:12:59.0035 0x0514  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS           C:\Windows\system32\mmcss.dll
19:12:59.0066 0x0514  MMCSS - ok
19:12:59.0082 0x0514  [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem           C:\Windows\system32\drivers\modem.sys
19:12:59.0097 0x0514  Modem - ok
19:12:59.0128 0x0514  [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
19:12:59.0144 0x0514  monitor - ok
19:12:59.0144 0x0514  [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
19:12:59.0160 0x0514  mouclass - ok
19:12:59.0175 0x0514  [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
19:12:59.0191 0x0514  mouhid - ok
19:12:59.0191 0x0514  [ FC8771F45ECCCFD89684E38842539B9B, 806DDF2B4830CA866582FE74A521BB7DF26CA0E19013DAF584D3677FB48CC77A ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
19:12:59.0207 0x0514  mountmgr - ok
19:12:59.0238 0x0514  [ E77DC03DD3C8E5A388BF9EED2A28F3D1, ED0DAA975D1EC35CE036F02596218E15CC6A054167628D12A0A5AD91B841F422 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
19:12:59.0253 0x0514  MpFilter - ok
19:12:59.0253 0x0514  [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio            C:\Windows\system32\drivers\mpio.sys
19:12:59.0269 0x0514  mpio - ok
19:12:59.0316 0x0514  MpKsl5a9fa651 - ok
19:12:59.0332 0x0514  MpKslf7adaf3f - ok
19:12:59.0347 0x0514  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
19:12:59.0363 0x0514  mpsdrv - ok
19:12:59.0410 0x0514  [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc          C:\Windows\system32\mpssvc.dll
19:12:59.0441 0x0514  MpsSvc - ok
19:12:59.0457 0x0514  [ CEB46AB7C01C9F825F8CC6BABC18166A, AA98898204FC58878502C170FE6ED8BA681396DDD8BF3689D0C3642DEA87BEF8 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
19:12:59.0472 0x0514  MRxDAV - ok
19:12:59.0488 0x0514  [ B272B4C3E085EA860C12F2E4FAF2FFA2, DA99D8223D9FB7BFA52E66B73D1E1AA47B76B45A649400F7898E8D65D8672E52 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
19:12:59.0519 0x0514  mrxsmb - ok
19:12:59.0535 0x0514  [ 9AC33EF26C8A3AD0F117D00EB7301D03, 403445B07DC55F9DF98CA11AC87D4231187A2472A4E107786A5845B213355F0A ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:12:59.0566 0x0514  mrxsmb10 - ok
19:12:59.0582 0x0514  [ E0ABDB5ED7E199E242A7D028E76C1D3A, 4014A1F0720F6D15A2FB0CF4F1F970595BC29929F92F461CDD68E4513F49563E ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:12:59.0597 0x0514  mrxsmb20 - ok
19:12:59.0613 0x0514  [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci          C:\Windows\system32\drivers\msahci.sys
19:12:59.0628 0x0514  msahci - ok
19:12:59.0644 0x0514  [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
19:12:59.0660 0x0514  msdsm - ok
19:12:59.0675 0x0514  [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC           C:\Windows\System32\msdtc.exe
19:12:59.0691 0x0514  MSDTC - ok
19:12:59.0707 0x0514  [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs            C:\Windows\system32\drivers\Msfs.sys
19:12:59.0738 0x0514  Msfs - ok
19:12:59.0753 0x0514  [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
19:12:59.0769 0x0514  mshidkmdf - ok
19:12:59.0785 0x0514  [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
19:12:59.0785 0x0514  msisadrv - ok
19:12:59.0816 0x0514  [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
19:12:59.0832 0x0514  MSiSCSI - ok
19:12:59.0847 0x0514  msiserver - ok
19:12:59.0847 0x0514  [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
19:12:59.0878 0x0514  MSKSSRV - ok
19:12:59.0894 0x0514  [ B0F49DA36F30922F5DDC3B623B778FCE, EE025AEFA4A2095AFEABFB3A49639DA77D78068A3F5EEDA6C15D34853AFD5609 ] MsMpSvc         C:\Program Files\Microsoft Security Client\MsMpEng.exe
19:12:59.0910 0x0514  MsMpSvc - ok
19:12:59.0910 0x0514  [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
19:12:59.0941 0x0514  MSPCLOCK - ok
19:12:59.0941 0x0514  [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
19:12:59.0957 0x0514  MSPQM - ok
19:12:59.0988 0x0514  [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
19:12:59.0988 0x0514  MsRPC - ok
19:13:00.0003 0x0514  [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
19:13:00.0019 0x0514  mssmbios - ok
19:13:00.0019 0x0514  [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
19:13:00.0050 0x0514  MSTEE - ok
19:13:00.0066 0x0514  [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
19:13:00.0066 0x0514  MTConfig - ok
19:13:00.0082 0x0514  [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup             C:\Windows\system32\Drivers\mup.sys
19:13:00.0097 0x0514  Mup - ok
19:13:00.0113 0x0514  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent        C:\Windows\system32\qagentRT.dll
19:13:00.0144 0x0514  napagent - ok
19:13:00.0175 0x0514  [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
19:13:00.0191 0x0514  NativeWifiP - ok
19:13:00.0222 0x0514  [ E7C54812A2AAF43316EB6930C1FFA108, C8A6FC1957FA29A3B372132FEA9145538BC767044A11D77316D3D1A3EAA60630 ] NDIS            C:\Windows\system32\drivers\ndis.sys
19:13:00.0253 0x0514  NDIS - ok
19:13:00.0253 0x0514  [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
19:13:00.0285 0x0514  NdisCap - ok
19:13:00.0285 0x0514  [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
19:13:00.0316 0x0514  NdisTapi - ok
19:13:00.0332 0x0514  [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
19:13:00.0347 0x0514  Ndisuio - ok
19:13:00.0363 0x0514  [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
19:13:00.0394 0x0514  NdisWan - ok
19:13:00.0394 0x0514  [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
19:13:00.0425 0x0514  NDProxy - ok
19:13:00.0425 0x0514  [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
19:13:00.0457 0x0514  NetBIOS - ok
19:13:00.0472 0x0514  [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
19:13:00.0503 0x0514  NetBT - ok
19:13:00.0503 0x0514  [ F42309C4191C506B71DB5D1126D26318, 29B0A8889857CEBFA6CBD795D5EECDDFFA04E794BD3C73FC488725B2A160F326 ] Netlogon        C:\Windows\system32\lsass.exe
19:13:00.0519 0x0514  Netlogon - ok
19:13:00.0550 0x0514  [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman          C:\Windows\System32\netman.dll
19:13:00.0582 0x0514  Netman - ok
19:13:00.0597 0x0514  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:13:00.0613 0x0514  NetMsmqActivator - ok
19:13:00.0613 0x0514  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:13:00.0628 0x0514  NetPipeActivator - ok
19:13:00.0644 0x0514  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm        C:\Windows\System32\netprofm.dll
19:13:00.0675 0x0514  netprofm - ok
19:13:00.0675 0x0514  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:13:00.0691 0x0514  NetTcpActivator - ok
19:13:00.0691 0x0514  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
19:13:00.0707 0x0514  NetTcpPortSharing - ok
19:13:00.0722 0x0514  [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
19:13:00.0738 0x0514  nfrd960 - ok
19:13:00.0753 0x0514  [ 32FF06EC6D946EF791D98D6C838A3090, 319BDD491CB22D0CCCCE76A2854CF469D7AF046289F9C56CD03AE3D3CBC0275E ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
19:13:00.0769 0x0514  NisDrv - ok
19:13:00.0785 0x0514  [ 42D33042371BFB1A7D40834590CAFD30, 53DA3618EC10293B2DF686E291A4EF6ACBBD41D116EC762D54106D201A784E87 ] NisSrv          C:\Program Files\Microsoft Security Client\NisSrv.exe
19:13:00.0800 0x0514  NisSrv - ok
19:13:00.0832 0x0514  [ 912084381D30D8B89EC4E293053F4710, 99B8CD043DF531D4B9725ED167F63CED220608B2FED3EE8250C217D15762DFD7 ] NlaSvc          C:\Windows\System32\nlasvc.dll
19:13:00.0863 0x0514  NlaSvc - ok
19:13:00.0863 0x0514  [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
19:13:00.0894 0x0514  Npfs - ok
19:13:00.0910 0x0514  [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi             C:\Windows\system32\nsisvc.dll
19:13:00.0941 0x0514  nsi - ok
19:13:00.0957 0x0514  [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
19:13:00.0972 0x0514  nsiproxy - ok
19:13:01.0019 0x0514  [ 33C3093D09017CFE2E219F2472BFF6EB, DE46C7A53C3606F036DED1EE8A81B79CAF3171A7E97DA2F71712E2DA046A262E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
19:13:01.0066 0x0514  Ntfs - ok
19:13:01.0082 0x0514  [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null            C:\Windows\system32\drivers\Null.sys
19:13:01.0097 0x0514  Null - ok
19:13:01.0113 0x0514  [ A103F2A100B091809A120A1463BC9EB5, DB9219AAD43C3FE3EFBB70F213568DA87B4F9D89FA0F80AD73611C6A72BACC0E ] NVHDA           C:\Windows\system32\drivers\nvhda32v.sys
19:13:01.0128 0x0514  NVHDA - ok
19:13:01.0441 0x0514  [ 1E3D32DDBE6BBDC0843432BAD599069F, 908893652F953C01E3FFEA19E76154B6246277720B088A61086A9B336B3EC6AD ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:13:01.0769 0x0514  nvlddmkm - ok
19:13:01.0800 0x0514  [ AF2EEC9580C1D32FB7EAF105D9784061, 6DAAE3BCA048ACD7FFD26A65C793C461933179070F03855FE3DC3C01F968163A ] nvraid          C:\Windows\system32\drivers\nvraid.sys
19:13:01.0816 0x0514  nvraid - ok
19:13:01.0832 0x0514  [ 9283C58EBAA2618F93482EB5DABCEC82, 0BC119D4EAFDEA879E4C1CFBA5402499DBD1970EDF963C6D2034D4867C34D15E ] nvstor          C:\Windows\system32\drivers\nvstor.sys
19:13:01.0832 0x0514  nvstor - ok
19:13:01.0878 0x0514  [ 5004DAF6A37C5C73FFCF4D3935A6FE87, 52F2149383EC41B18310801FD07C1363EE81C5D1F2B0206460FC7922C00D7A15 ] nvsvc           C:\Windows\system32\nvvsvc.exe
19:13:01.0894 0x0514  nvsvc - ok
19:13:01.0910 0x0514  [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
19:13:01.0925 0x0514  nv_agp - ok
19:13:01.0941 0x0514  [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
19:13:01.0957 0x0514  ohci1394 - ok
19:13:01.0988 0x0514  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:13:01.0988 0x0514  ose - ok
19:13:02.0160 0x0514  [ 358A9CCA612C68EB2F07DDAD4CE1D8D7, F342100E2E9001F11FDF93F856B50FA43F9B85D2C6B5706EC0433E77206498DA ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:13:02.0300 0x0514  osppsvc - ok
19:13:02.0332 0x0514  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
19:13:02.0363 0x0514  p2pimsvc - ok
19:13:02.0378 0x0514  [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc          C:\Windows\system32\p2psvc.dll
19:13:02.0394 0x0514  p2psvc - ok
19:13:02.0425 0x0514  [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport         C:\Windows\system32\DRIVERS\parport.sys
19:13:02.0425 0x0514  Parport - ok
19:13:02.0441 0x0514  [ BF8F6AF06DA75B336F07E23AEF97D93B, 2F2C4314872732550A112BFF2F803484D4A3D697F0D69D352350CE208FD8A1A4 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
19:13:02.0457 0x0514  partmgr - ok
19:13:02.0457 0x0514  [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
19:13:02.0472 0x0514  Parvdm - ok
19:13:02.0488 0x0514  [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] PcaSvc          C:\Windows\System32\pcasvc.dll
19:13:02.0503 0x0514  PcaSvc - ok
19:13:02.0519 0x0514  [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci             C:\Windows\system32\drivers\pci.sys
19:13:02.0535 0x0514  pci - ok
19:13:02.0535 0x0514  [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide          C:\Windows\system32\DRIVERS\pciide.sys
19:13:02.0550 0x0514  pciide - ok
19:13:02.0566 0x0514  [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
19:13:02.0582 0x0514  pcmcia - ok
19:13:02.0597 0x0514  [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw             C:\Windows\system32\drivers\pcw.sys
19:13:02.0613 0x0514  pcw - ok
19:13:02.0628 0x0514  [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
19:13:02.0675 0x0514  PEAUTH - ok
19:13:02.0722 0x0514  [ AF4D64D2A57B9772CF3801950B8058A6, C9C493A3775E6E1660CE5DF75DA574D0C04245FB88CF41B96217A725359C350D ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
19:13:02.0769 0x0514  PeerDistSvc - ok
19:13:02.0832 0x0514  [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla             C:\Windows\system32\pla.dll
19:13:02.0925 0x0514  pla - ok
19:13:02.0941 0x0514  [ 92DC6E68D2C856C5C2F21AE9E22112B8, EFAA27886A05E57E629A9EFC3671D9D64144795EDF55438A676F5B43E59BE3FC ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
19:13:02.0972 0x0514  PlugPlay - ok
19:13:02.0988 0x0514  [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
19:13:02.0988 0x0514  PNRPAutoReg - ok
19:13:03.0003 0x0514  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
19:13:03.0035 0x0514  PNRPsvc - ok
19:13:03.0066 0x0514  [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
19:13:03.0097 0x0514  PolicyAgent - ok
19:13:03.0113 0x0514  [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power           C:\Windows\system32\umpo.dll
19:13:03.0128 0x0514  Power - ok
19:13:03.0160 0x0514  [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
19:13:03.0191 0x0514  PptpMiniport - ok
19:13:03.0191 0x0514  [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor       C:\Windows\system32\drivers\processr.sys
19:13:03.0207 0x0514  Processor - ok
19:13:03.0222 0x0514  [ 43CA4CCC22D52FB58E8988F0198851D0, DF67BD70D9D82677AE61244B4E54677A5008A7F5EB531DF2A7E7D33F1658EA78 ] ProfSvc         C:\Windows\system32\profsvc.dll
19:13:03.0253 0x0514  ProfSvc - ok
19:13:03.0269 0x0514  [ F42309C4191C506B71DB5D1126D26318, 29B0A8889857CEBFA6CBD795D5EECDDFFA04E794BD3C73FC488725B2A160F326 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:13:03.0285 0x0514  ProtectedStorage - ok
19:13:03.0300 0x0514  [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
19:13:03.0316 0x0514  Psched - ok
19:13:03.0378 0x0514  [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300          C:\Windows\system32\drivers\ql2300.sys
19:13:03.0441 0x0514  ql2300 - ok
19:13:03.0441 0x0514  [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
19:13:03.0457 0x0514  ql40xx - ok
19:13:03.0472 0x0514  [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE           C:\Windows\system32\qwave.dll
19:13:03.0488 0x0514  QWAVE - ok
19:13:03.0503 0x0514  [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
19:13:03.0519 0x0514  QWAVEdrv - ok
19:13:03.0535 0x0514  [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
19:13:03.0550 0x0514  RasAcd - ok
19:13:03.0566 0x0514  [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
19:13:03.0597 0x0514  RasAgileVpn - ok
19:13:03.0613 0x0514  [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto         C:\Windows\System32\rasauto.dll
19:13:03.0644 0x0514  RasAuto - ok
19:13:03.0644 0x0514  [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
19:13:03.0675 0x0514  Rasl2tp - ok
19:13:03.0707 0x0514  [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan          C:\Windows\System32\rasmans.dll
19:13:03.0738 0x0514  RasMan - ok
19:13:03.0738 0x0514  [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
19:13:03.0769 0x0514  RasPppoe - ok
19:13:03.0785 0x0514  [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
19:13:03.0816 0x0514  RasSstp - ok
19:13:03.0832 0x0514  [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
19:13:03.0847 0x0514  rdbss - ok
19:13:03.0863 0x0514  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
19:13:03.0878 0x0514  rdpbus - ok
19:13:03.0894 0x0514  [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
19:13:03.0910 0x0514  RDPCDD - ok
19:13:03.0941 0x0514  [ B973FCFC50DC1434E1970A146F7E3885, BE797E5F5AE34D37F8DA1134CE94DD14DBE36D2BC405B97E992E2257848B7CA9 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
19:13:03.0957 0x0514  RDPDR - ok
19:13:03.0972 0x0514  [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
19:13:03.0988 0x0514  RDPENCDD - ok
19:13:04.0003 0x0514  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
19:13:04.0019 0x0514  RDPREFMP - ok
19:13:04.0035 0x0514  [ 68A0387F58E226DEEE23D9715955572A, F95BB1D2BB3E79AF47B1C715BB5E3003EEF888AAA963F46F4A2FE8AFBD4F37A4 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
19:13:04.0050 0x0514  RdpVideoMiniport - ok
19:13:04.0082 0x0514  [ 244C83332F44589AE98FC347F11B2693, 857B15FDB1163AD2A6770473E891E2BBCFBD3B9AA6FCC0D31023F9BE536F3B36 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
19:13:04.0097 0x0514  RDPWD - ok
19:13:04.0113 0x0514  [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
19:13:04.0128 0x0514  rdyboost - ok
19:13:04.0144 0x0514  [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess    C:\Windows\System32\mprdim.dll
19:13:04.0175 0x0514  RemoteAccess - ok
19:13:04.0191 0x0514  [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry  C:\Windows\system32\regsvc.dll
19:13:04.0222 0x0514  RemoteRegistry - ok
19:13:04.0238 0x0514  [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
19:13:04.0253 0x0514  RpcEptMapper - ok
19:13:04.0269 0x0514  [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator      C:\Windows\system32\locator.exe
19:13:04.0285 0x0514  RpcLocator - ok
19:13:04.0300 0x0514  [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] RpcSs           C:\Windows\system32\rpcss.dll
19:13:04.0332 0x0514  RpcSs - ok
19:13:04.0347 0x0514  [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
19:13:04.0363 0x0514  rspndr - ok
19:13:04.0378 0x0514  [ 7DFD48E24479B68B258D8770121155A0, 3B5F7309403C46855DB888CF2058B07C9029690DBC7FB3224BAC7BE5547D2D57 ] RTL8167         C:\Windows\system32\DRIVERS\Rt86win7.sys
19:13:04.0394 0x0514  RTL8167 - ok
19:13:04.0410 0x0514  [ 7FA7F2E249A5DCBB7970630E15E1F482, 9633B193F3FDA67BC551C6DCA4788AB83E9F45F77763EE579D02FE5D6B80DEDF ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
19:13:04.0425 0x0514  s3cap - ok
19:13:04.0441 0x0514  [ F42309C4191C506B71DB5D1126D26318, 29B0A8889857CEBFA6CBD795D5EECDDFFA04E794BD3C73FC488725B2A160F326 ] SamSs           C:\Windows\system32\lsass.exe
19:13:04.0457 0x0514  SamSs - ok
19:13:04.0457 0x0514  [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
19:13:04.0472 0x0514  sbp2port - ok
19:13:04.0488 0x0514  [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
19:13:04.0519 0x0514  SCardSvr - ok
19:13:04.0519 0x0514  [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
19:13:04.0550 0x0514  scfilter - ok
19:13:04.0582 0x0514  [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] Schedule        C:\Windows\system32\schedsvc.dll
19:13:04.0628 0x0514  Schedule - ok
19:13:04.0628 0x0514  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc     C:\Windows\System32\certprop.dll
19:13:04.0660 0x0514  SCPolicySvc - ok
19:13:04.0660 0x0514  [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
19:13:04.0675 0x0514  SDRSVC - ok
19:13:04.0691 0x0514  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
19:13:04.0707 0x0514  secdrv - ok
19:13:04.0722 0x0514  [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon        C:\Windows\system32\seclogon.dll
19:13:04.0738 0x0514  seclogon - ok
19:13:04.0769 0x0514  [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS            C:\Windows\System32\sens.dll
19:13:04.0785 0x0514  SENS - ok
19:13:04.0816 0x0514  [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
19:13:04.0832 0x0514  SensrSvc - ok
19:13:04.0847 0x0514  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
19:13:04.0847 0x0514  Serenum - ok
19:13:04.0863 0x0514  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial          C:\Windows\system32\DRIVERS\serial.sys
19:13:04.0878 0x0514  Serial - ok
19:13:04.0878 0x0514  [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse        C:\Windows\system32\drivers\sermouse.sys
19:13:04.0894 0x0514  sermouse - ok
19:13:04.0910 0x0514  [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv      C:\Windows\system32\sessenv.dll
19:13:04.0941 0x0514  SessionEnv - ok
19:13:04.0957 0x0514  [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
19:13:04.0957 0x0514  sffdisk - ok
19:13:04.0972 0x0514  [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
19:13:04.0988 0x0514  sffp_mmc - ok
19:13:04.0988 0x0514  [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
19:13:05.0003 0x0514  sffp_sd - ok
19:13:05.0019 0x0514  [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
19:13:05.0035 0x0514  sfloppy - ok
19:13:05.0050 0x0514  [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess    C:\Windows\System32\ipnathlp.dll
19:13:05.0082 0x0514  SharedAccess - ok
19:13:05.0113 0x0514  [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:13:05.0144 0x0514  ShellHWDetection - ok
19:13:05.0160 0x0514  [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp          C:\Windows\system32\drivers\sisagp.sys
19:13:05.0175 0x0514  sisagp - ok
19:13:05.0175 0x0514  [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
19:13:05.0191 0x0514  SiSRaid2 - ok
19:13:05.0222 0x0514  [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
19:13:05.0222 0x0514  SiSRaid4 - ok
19:13:05.0238 0x0514  [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
19:13:05.0269 0x0514  Smb - ok
19:13:05.0300 0x0514  [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
19:13:05.0316 0x0514  SNMPTRAP - ok
19:13:05.0316 0x0514  [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr           C:\Windows\system32\drivers\spldr.sys
19:13:05.0332 0x0514  spldr - ok
19:13:05.0347 0x0514  [ 866A43013535DC8587C258E43579C764, B2BE846B5167A2ECD1E30C69A81385FCC6EAE6033394D08458A5583D311C4D82 ] Spooler         C:\Windows\System32\spoolsv.exe
19:13:05.0378 0x0514  Spooler - ok
19:13:05.0472 0x0514  [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc          C:\Windows\system32\sppsvc.exe
19:13:05.0597 0x0514  sppsvc - ok
19:13:05.0628 0x0514  [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify     C:\Windows\system32\sppuinotify.dll
19:13:05.0644 0x0514  sppuinotify - ok
19:13:05.0675 0x0514  [ 112127C3B2E64D7680CC39CD0A39DD7E, ABE8B868CFE0EF4DAF886517047DBFD5A9C964983FAA499AC086CCD45BA46366 ] srv             C:\Windows\system32\DRIVERS\srv.sys
19:13:05.0707 0x0514  srv - ok
19:13:05.0722 0x0514  [ E5DD784A4EE5EBC72A86C677C988FCDB, 5D54C9AF291F8047DD66C31671F279A5D7EE8BCB5E55640F5F976E16211F59DD ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
19:13:05.0753 0x0514  srv2 - ok
19:13:05.0753 0x0514  [ CDBE627E16CC9E98F343D73F8E81D258, 25A68A6F943FCBA79A0D97ABC5B2EAEEB65C268F1CB2DD445ABF7E2758DF2802 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
19:13:05.0785 0x0514  srvnet - ok
19:13:05.0816 0x0514  [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
19:13:05.0847 0x0514  SSDPSRV - ok
19:13:05.0847 0x0514  [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
19:13:05.0878 0x0514  SstpSvc - ok
19:13:05.0878 0x0514  [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor        C:\Windows\system32\drivers\stexstor.sys
19:13:05.0894 0x0514  stexstor - ok
19:13:05.0910 0x0514  [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc          C:\Windows\System32\wiaservc.dll
19:13:05.0941 0x0514  StiSvc - ok
19:13:05.0957 0x0514  [ 472AF0311073DCECEAA8FA18BA2BDF89, 089414057EB2047E42C96C1ACE79D509967461DC5A4D2836F63C04268637A3FC ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
19:13:05.0972 0x0514  storflt - ok
19:13:05.0988 0x0514  [ DCAFFD62259E0BDB433DD67B5BB37619, CBD12FF9BBF33D18B0F3D322B12EC62E7DF3BF45C6AD43D2E91FF4C4762E05D0 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
19:13:05.0988 0x0514  storvsc - ok
19:13:06.0019 0x0514  [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
19:13:06.0019 0x0514  swenum - ok
19:13:06.0035 0x0514  [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv           C:\Windows\System32\swprv.dll
19:13:06.0066 0x0514  swprv - ok
19:13:06.0082 0x0514  [ F2AD8960812FD111E20E84659EF19D43, FAC91E940D3735738908447E58792C32E6F86427612114A624041B7213831105 ] Synth3dVsc      C:\Windows\system32\drivers\synth3dvsc.sys
19:13:06.0097 0x0514  Synth3dVsc - ok
19:13:06.0128 0x0514  [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] SysMain         C:\Windows\system32\sysmain.dll
19:13:06.0175 0x0514  SysMain - ok
19:13:06.0191 0x0514  [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
19:13:06.0207 0x0514  TabletInputService - ok
19:13:06.0222 0x0514  [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv         C:\Windows\System32\tapisrv.dll
19:13:06.0253 0x0514  TapiSrv - ok
19:13:06.0269 0x0514  [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS             C:\Windows\System32\tbssvc.dll
19:13:06.0300 0x0514  TBS - ok
19:13:06.0347 0x0514  [ 37E8FA3779668837CA9E2C36D2415949, FDDA99B7501CDBC3032AA12FD8E929F5E3B47DA112D0F8A05E2D833E5609EDEA ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
19:13:06.0378 0x0514  Tcpip - ok
19:13:06.0441 0x0514  [ 37E8FA3779668837CA9E2C36D2415949, FDDA99B7501CDBC3032AA12FD8E929F5E3B47DA112D0F8A05E2D833E5609EDEA ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
19:13:06.0472 0x0514  TCPIP6 - ok
19:13:06.0488 0x0514  [ CCA24162E055C3714CE5A88B100C64ED, 9B7712E793B9478BA7A1EF71EA9CC03CCB9C4004C54EAA911F158958519EDCD9 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
19:13:06.0503 0x0514  tcpipreg - ok
19:13:06.0535 0x0514  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
19:13:06.0535 0x0514  TDPIPE - ok
19:13:06.0566 0x0514  [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
19:13:06.0582 0x0514  TDTCP - ok
19:13:06.0597 0x0514  [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
19:13:06.0613 0x0514  tdx - ok
19:13:06.0628 0x0514  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
19:13:06.0628 0x0514  TermDD - ok
19:13:06.0660 0x0514  [ 052306FD76793D5D5AB5D9891FD1ADBB, A590F01A42EC979664044B811E7C98F58D6A23AA025B5A1DD0E5F63BF70B2649 ] terminpt        C:\Windows\system32\drivers\terminpt.sys
19:13:06.0675 0x0514  terminpt - ok
19:13:06.0707 0x0514  [ 382C804C92811BE57829D8E550A900E2, 5F52C2E7902024CF1C9CC0069F411C3F19CCA3DB209F437FA0F3932D4898EB50 ] TermService     C:\Windows\System32\termsrv.dll
19:13:06.0738 0x0514  TermService - ok
19:13:06.0769 0x0514  [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes          C:\Windows\system32\themeservice.dll
19:13:06.0785 0x0514  Themes - ok
19:13:06.0785 0x0514  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER     C:\Windows\system32\mmcss.dll
19:13:06.0816 0x0514  THREADORDER - ok
19:13:06.0832 0x0514  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks          C:\Windows\System32\trkwks.dll
19:13:06.0847 0x0514  TrkWks - ok
19:13:06.0894 0x0514  [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:13:06.0910 0x0514  TrustedInstaller - ok
19:13:06.0941 0x0514  [ 254BB140EEE3C59D6114C1A86B636877, EE09D62E90407A40278F2136F640DAB16A4E2BF57D4FB6E05F92CA9CC9CF57C0 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
19:13:06.0957 0x0514  tssecsrv - ok
19:13:06.0972 0x0514  [ FD1D6C73E6333BE727CBCC6054247654, 6F7B9AE1A5986204DB3348D13B303F30FC17624939DA74D6BD114FAEED0FB30E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
19:13:06.0988 0x0514  TsUsbFlt - ok
19:13:07.0003 0x0514  [ 01246F0BAAD7B68EC0F472AA41E33282, 51F975AF029AD015576FFFA3E88F5DBB8B40C7CD30ECDEDE8AFABCB08C954199 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
19:13:07.0003 0x0514  TsUsbGD - ok
19:13:07.0050 0x0514  [ 045ACB987C650D8186C6B4A692223860, C1CDDF7DABAE531C53290C7C70F35DD65751B399D269711865AD65F9E4E43B0B ] tsusbhub        C:\Windows\system32\drivers\tsusbhub.sys
19:13:07.0066 0x0514  tsusbhub - ok
19:13:07.0082 0x0514  [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
19:13:07.0113 0x0514  tunnel - ok
19:13:07.0128 0x0514  [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
19:13:07.0144 0x0514  uagp35 - ok
19:13:07.0160 0x0514  [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
19:13:07.0191 0x0514  udfs - ok
19:13:07.0238 0x0514  [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect       C:\Windows\system32\UI0Detect.exe
19:13:07.0253 0x0514  UI0Detect - ok
19:13:07.0300 0x0514  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
19:13:07.0316 0x0514  uliagpkx - ok
19:13:07.0316 0x0514  [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
19:13:07.0332 0x0514  umbus - ok
19:13:07.0347 0x0514  [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass          C:\Windows\system32\drivers\umpass.sys
19:13:07.0363 0x0514  UmPass - ok
19:13:07.0394 0x0514  [ 409994A8EACEEE4E328749C0353527A0, FFC57B647147DE2957A7DE4B330CC534DE7AC892A2FCE3BB164F7A516CAB1B56 ] UmRdpService    C:\Windows\System32\umrdp.dll
19:13:07.0410 0x0514  UmRdpService - ok
19:13:07.0441 0x0514  [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost        C:\Windows\System32\upnphost.dll
19:13:07.0472 0x0514  upnphost - ok
19:13:07.0503 0x0514  [ 7E72E7D7E0757D59481D530FD2B0BFAE, 288CAC9F4AC09DEB2B30C6E3A6ACF8D62A75576F62F0EC159D5E1B257419E9DC ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
19:13:07.0519 0x0514  usbccgp - ok
19:13:07.0566 0x0514  [ 04EC7CEC62EC3B6D9354EEE93327FC82, 6CB41D8644618A5F701F6CA91FB65BB94AA83EA48992133B5262DC539B334B2E ] usbcir          C:\Windows\system32\drivers\usbcir.sys
19:13:07.0582 0x0514  usbcir - ok
19:13:07.0597 0x0514  [ CFBCE999C057D78979A181C9C60F208E, D60698EAA8A085214D5945818B0863976CF116EBE523046C344AF4E9392FDF80 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
19:13:07.0628 0x0514  usbehci - ok
19:13:07.0644 0x0514  [ 9D22AAD9AC6A07C691A1113E5F860868, AC34D36DBB5649650FCD873A792CA1387AE841D4C46781C63C0D29834F9B58E9 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
19:13:07.0675 0x0514  usbhub - ok
19:13:07.0675 0x0514  [ A6FB7957EA7AFB1165991E54CE934B74, 1CE83D9E3276AE380F720C7700A17D58A37A2A77FD72DA69EE0C756B88DB3689 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
19:13:07.0691 0x0514  usbohci - ok
19:13:07.0707 0x0514  [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint        C:\Windows\system32\drivers\usbprint.sys
19:13:07.0707 0x0514  usbprint - ok
19:13:07.0722 0x0514  [ BF63EBFC6979FEFB2BC03DF7989A0C1A, AFEF764A3E5D52CDBB5074F0E87F2B5EBCDF8D9B6E8F88EE235602B80145BE31 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:13:07.0738 0x0514  USBSTOR - ok
19:13:07.0753 0x0514  [ 78780C3EBCE17405B1CCD07A3A8A7D72, FBFF3111E22EE0B4BCAFA81F89AAE985135BFF48EEFD130C09B49CCF8A9946B9 ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
19:13:07.0753 0x0514  usbuhci - ok
19:13:07.0785 0x0514  [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2, F9B72DE82078FDB5551D48988190F46EECA9B99655C591B7865FEA1AFB31F637 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
19:13:07.0800 0x0514  usbvideo - ok
19:13:07.0816 0x0514  [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms           C:\Windows\System32\uxsms.dll
19:13:07.0832 0x0514  UxSms - ok
19:13:07.0847 0x0514  [ F42309C4191C506B71DB5D1126D26318, 29B0A8889857CEBFA6CBD795D5EECDDFFA04E794BD3C73FC488725B2A160F326 ] VaultSvc        C:\Windows\system32\lsass.exe
19:13:07.0863 0x0514  VaultSvc - ok
19:13:07.0878 0x0514  [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
19:13:07.0894 0x0514  vdrvroot - ok
19:13:07.0910 0x0514  [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds             C:\Windows\System32\vds.exe
19:13:07.0941 0x0514  vds - ok
19:13:07.0957 0x0514  [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
19:13:07.0972 0x0514  vga - ok
19:13:07.0988 0x0514  [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave         C:\Windows\System32\drivers\vga.sys
19:13:08.0003 0x0514  VgaSave - ok
19:13:08.0019 0x0514  VGPU - ok
19:13:08.0035 0x0514  [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
19:13:08.0035 0x0514  vhdmp - ok
19:13:08.0050 0x0514  [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
19:13:08.0066 0x0514  viaagp - ok
19:13:08.0082 0x0514  [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
19:13:08.0082 0x0514  ViaC7 - ok
19:13:08.0097 0x0514  [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide          C:\Windows\system32\drivers\viaide.sys
19:13:08.0113 0x0514  viaide - ok
19:13:08.0128 0x0514  [ C2F2911156FDC7817C52829C86DA494E, FE499F189B5016FCE0018AA3DE3970B72275B7B15F3D4D608117F6DDEC6B90DC ] vmbus           C:\Windows\system32\drivers\vmbus.sys
19:13:08.0144 0x0514  vmbus - ok
19:13:08.0144 0x0514  [ D4D77455211E204F370D08F4963063CE, 2018B2A84C73E0834200A594C02A9D28C74906F126DAD3CCDDFC9CD9A61669E2 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
19:13:08.0160 0x0514  VMBusHID - ok
19:13:08.0175 0x0514  [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
19:13:08.0175 0x0514  volmgr - ok
19:13:08.0207 0x0514  [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
19:13:08.0207 0x0514  volmgrx - ok
19:13:08.0238 0x0514  [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
19:13:08.0253 0x0514  volsnap - ok
19:13:08.0269 0x0514  [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
19:13:08.0269 0x0514  vsmraid - ok
19:13:08.0332 0x0514  [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS             C:\Windows\system32\vssvc.exe
19:13:08.0378 0x0514  VSS - ok
19:13:08.0394 0x0514  [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
19:13:08.0410 0x0514  vwifibus - ok
19:13:08.0425 0x0514  [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time         C:\Windows\system32\w32time.dll
19:13:08.0457 0x0514  W32Time - ok
19:13:08.0472 0x0514  [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
19:13:08.0488 0x0514  WacomPen - ok
19:13:08.0488 0x0514  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
19:13:08.0519 0x0514  WANARP - ok
19:13:08.0519 0x0514  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
19:13:08.0535 0x0514  Wanarpv6 - ok
19:13:08.0597 0x0514  [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine        C:\Windows\system32\wbengine.exe
19:13:08.0644 0x0514  wbengine - ok
19:13:08.0660 0x0514  [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
19:13:08.0675 0x0514  WbioSrvc - ok
19:13:08.0691 0x0514  [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc         C:\Windows\System32\wcncsvc.dll
19:13:08.0722 0x0514  wcncsvc - ok
19:13:08.0722 0x0514  [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:13:08.0738 0x0514  WcsPlugInService - ok
19:13:08.0753 0x0514  [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd              C:\Windows\system32\drivers\wd.sys
19:13:08.0769 0x0514  Wd - ok
19:13:08.0785 0x0514  [ 9950E3D0F08141C7E89E64456AE7DC73, DE4B96812B305A63F5874BBF2DC40354FB45B3D96C1D33436E677099760BA448 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
19:13:08.0800 0x0514  Wdf01000 - ok
19:13:08.0816 0x0514  [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiServiceHost  C:\Windows\system32\wdi.dll
19:13:08.0832 0x0514  WdiServiceHost - ok
19:13:08.0832 0x0514  [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiSystemHost   C:\Windows\system32\wdi.dll
19:13:08.0847 0x0514  WdiSystemHost - ok
19:13:08.0878 0x0514  [ A9D880F97530D5B8FEE278923349929D, 6A293E2DB9B7C434EA8B4CD4861E11905D46BD60E014AE27B74DC8C4B2DDF834 ] WebClient       C:\Windows\System32\webclnt.dll
19:13:08.0894 0x0514  WebClient - ok
19:13:08.0910 0x0514  [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc          C:\Windows\system32\wecsvc.dll
19:13:08.0925 0x0514  Wecsvc - ok
19:13:08.0941 0x0514  [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
19:13:08.0972 0x0514  wercplsupport - ok
19:13:08.0972 0x0514  [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc          C:\Windows\System32\WerSvc.dll
19:13:09.0003 0x0514  WerSvc - ok
19:13:09.0003 0x0514  [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
19:13:09.0035 0x0514  WfpLwf - ok
19:13:09.0035 0x0514  [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
19:13:09.0050 0x0514  WIMMount - ok
19:13:09.0097 0x0514  [ 3FAE8F94296001C32EAB62CD7D82E0FD, 180FAECC426CF8F46700C855022E5865D528B1A20686F96D11080AB2FE2E0430 ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
19:13:09.0128 0x0514  WinDefend - ok
19:13:09.0144 0x0514  WinHttpAutoProxySvc - ok
19:13:09.0191 0x0514  [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
19:13:09.0222 0x0514  Winmgmt - ok
19:13:09.0253 0x0514  [ 1B91CD34EA3A90AB6A4EF0550174F4CC, 5B6618615EBFBA594C945AD35F5C68DA8C6053892B6D12D626BB6120910D80DC ] WinRM           C:\Windows\system32\WsmSvc.dll
19:13:09.0316 0x0514  WinRM - ok
19:13:09.0347 0x0514  [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc         C:\Windows\System32\wlansvc.dll
19:13:09.0378 0x0514  Wlansvc - ok
19:13:09.0394 0x0514  [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
19:13:09.0410 0x0514  WmiAcpi - ok
19:13:09.0425 0x0514  [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
19:13:09.0441 0x0514  wmiApSrv - ok
19:13:09.0488 0x0514  [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
19:13:09.0535 0x0514  WMPNetworkSvc - ok
19:13:09.0550 0x0514  [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
19:13:09.0566 0x0514  WPCSvc - ok
19:13:09.0582 0x0514  [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
19:13:09.0597 0x0514  WPDBusEnum - ok
19:13:09.0613 0x0514  [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
19:13:09.0628 0x0514  ws2ifsl - ok
19:13:09.0644 0x0514  [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc          C:\Windows\System32\wscsvc.dll
19:13:09.0660 0x0514  wscsvc - ok
19:13:09.0660 0x0514  WSearch - ok
19:13:09.0738 0x0514  [ D9B0134913E5EF007AF82A418C503322, 7418DD28C8E968674382F8352AAFFC4DE77887E2B71B8844D615F19432B4C55A ] wuauserv        C:\Windows\system32\wuaueng.dll
19:13:09.0800 0x0514  wuauserv - ok
19:13:09.0816 0x0514  [ E714A1C0354636837E20CCBF00888EE7, 0E31F0DB0AA318E3B0DACD26C0D3B11519B42F2A996AE580BE67FA8B3C42C436 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
19:13:09.0832 0x0514  WudfPf - ok
19:13:09.0847 0x0514  [ 1023EE888C9B47178C5293ED5336AB69, 62221C80C3F719A585266247482A64F7CB2F5EF69AFA8FA07D563CA2B0A37561 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
19:13:09.0878 0x0514  WUDFRd - ok
19:13:09.0894 0x0514  [ 8D1E1E529A2C9E9B6A85B55A345F7629, 64B637CFE2AF58A4F7CE6D8C3D603F8EFD527500F7137E0A37840313C712CA93 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
19:13:09.0910 0x0514  wudfsvc - ok
19:13:09.0925 0x0514  [ FF2D745B560F7C71B31F30F4D49F73D2, B2FBF7E5F58E34AC64FE6CF65800F1F07939279203BDE89375FAC92B884A4F37 ] WwanSvc         C:\Windows\System32\wwansvc.dll
19:13:09.0957 0x0514  WwanSvc - ok


#8 kieran.kccr

kieran.kccr
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:21 PM

Posted 17 September 2014 - 08:29 AM

19:13:09.0957 0x0514  ================ Scan global ===============================
19:13:09.0988 0x0514  [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:\Windows\system32\basesrv.dll
19:13:10.0019 0x0514  [ A9F564F254E9DDDE120A7135767EC24B, F255DCB4C7F4F941BA27700D66684AD0BA3DF114D6F298E2A909095B71B11D94 ] C:\Windows\system32\winsrv.dll
19:13:10.0035 0x0514  [ A9F564F254E9DDDE120A7135767EC24B, F255DCB4C7F4F941BA27700D66684AD0BA3DF114D6F298E2A909095B71B11D94 ] C:\Windows\system32\winsrv.dll
19:13:10.0050 0x0514  [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
19:13:10.0066 0x0514  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\system32\services.exe
19:13:10.0066 0x0514  [ Global ] - ok
19:13:10.0066 0x0514  ================ Scan MBR ==================================
19:13:10.0082 0x0514  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:13:10.0535 0x0514  \Device\Harddisk0\DR0 - ok
19:13:10.0535 0x0514  ================ Scan VBR ==================================
19:13:10.0566 0x0514  [ 021ECDBE22AF3B6C47285D2DA0785B25 ] \Device\Harddisk0\DR0\Partition1
19:13:10.0566 0x0514  \Device\Harddisk0\DR0\Partition1 - ok
19:13:10.0566 0x0514  [ 1D43A6B29B6BC80438C8154CA3A3EAC8 ] \Device\Harddisk0\DR0\Partition2
19:13:10.0566 0x0514  \Device\Harddisk0\DR0\Partition2 - ok
19:13:10.0566 0x0514  [ 8AEBDEB39D8E453F501528CDAFFFBEB3 ] \Device\Harddisk0\DR0\Partition3
19:13:10.0582 0x0514  \Device\Harddisk0\DR0\Partition3 - ok


#9 kieran.kccr

kieran.kccr
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:21 PM

Posted 17 September 2014 - 08:31 AM

19:13:10.0582 0x0514  ================ Scan active images ========================
19:13:10.0597 0x0514  [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] C:\Windows\System32\drivers\atapi.sys
19:13:10.0597 0x0514  C:\Windows\System32\drivers\atapi.sys - ok
19:13:10.0597 0x0514  [ B7EFEF22FF426EC4158A177CB3B558D3, 87D8F07E23B928B9D71B13B0F43A6235BAFC48879CFCF5920889849D09FFCD6C ] C:\Windows\System32\drivers\crashdmp.sys
19:13:10.0597 0x0514  C:\Windows\System32\drivers\crashdmp.sys - ok
19:13:10.0597 0x0514  [ 5428227D4730EBDFC842E9FB593F8C8A, C62A122FC8A04B63A94F337699A70901ED04B0F20AEC9538EC6E83ED2D18F1E3 ] C:\Windows\System32\drivers\Dumpata.sys
19:13:10.0597 0x0514  C:\Windows\System32\drivers\Dumpata.sys - ok
19:13:10.0613 0x0514  [ 62A63EF2F3053B461CB327E4D69AAA74, 26CC8BBC9BB6C53B46C837FA75C5449508989C26949BD19EB8E03E37F7928456 ] C:\Windows\System32\drivers\dumpfve.sys
19:13:10.0613 0x0514  C:\Windows\System32\drivers\dumpfve.sys - ok
19:13:10.0613 0x0514  [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] C:\Windows\System32\drivers\cdrom.sys
19:13:10.0613 0x0514  C:\Windows\System32\drivers\cdrom.sys - ok
19:13:10.0613 0x0514  [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] C:\Windows\System32\drivers\beep.sys
19:13:10.0613 0x0514  C:\Windows\System32\drivers\beep.sys - ok
19:13:10.0628 0x0514  [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] C:\Windows\System32\drivers\null.sys
19:13:10.0628 0x0514  C:\Windows\System32\drivers\null.sys - ok
19:13:10.0628 0x0514  [ 15C126D1B55814B9E5CAB10A9C1F4C67, CD118B6508355037294AE940E039C095BA9E4A96AA129D38DB0AEC0C393D0F00 ] C:\Windows\System32\drivers\videoprt.sys
19:13:10.0628 0x0514  C:\Windows\System32\drivers\videoprt.sys - ok
19:13:10.0628 0x0514  [ CB45A417C8EF7BA6BAC67EDCDDED8700, 0D9AD2498A7D3B7C3E485A5803D2BDF781B38E07E3C2B5980859073EF6FD9B8A ] C:\Windows\System32\drivers\watchdog.sys
19:13:10.0628 0x0514  C:\Windows\System32\drivers\watchdog.sys - ok
19:13:10.0628 0x0514  [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] C:\Windows\System32\drivers\msfs.sys
19:13:10.0628 0x0514  C:\Windows\System32\drivers\msfs.sys - ok
19:13:10.0644 0x0514  [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] C:\Windows\System32\drivers\RDPCDD.sys
19:13:10.0644 0x0514  C:\Windows\System32\drivers\RDPCDD.sys - ok
19:13:10.0644 0x0514  [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] C:\Windows\System32\drivers\RDPENCDD.sys
19:13:10.0644 0x0514  C:\Windows\System32\drivers\RDPENCDD.sys - ok
19:13:10.0644 0x0514  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] C:\Windows\System32\drivers\RDPREFMP.sys
19:13:10.0644 0x0514  C:\Windows\System32\drivers\RDPREFMP.sys - ok
19:13:10.0660 0x0514  [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] C:\Windows\System32\drivers\vga.sys
19:13:10.0660 0x0514  C:\Windows\System32\drivers\vga.sys - ok
19:13:10.0660 0x0514  [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] C:\Windows\System32\drivers\npfs.sys
19:13:10.0660 0x0514  C:\Windows\System32\drivers\npfs.sys - ok
19:13:10.0660 0x0514  [ 2F885864D5BC8A16C86BEE595969A48A, 279E176CDEF9148A4A07F7D37172A2C2BDC89E47021EEB76F1BCDF789B76D95A ] C:\Windows\System32\drivers\tdi.sys
19:13:10.0660 0x0514  C:\Windows\System32\drivers\tdi.sys - ok
19:13:10.0675 0x0514  [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] C:\Windows\System32\drivers\tdx.sys
19:13:10.0675 0x0514  C:\Windows\System32\drivers\tdx.sys - ok
19:13:10.0675 0x0514  [ 1151FD4FB0216CFED887BFDE29EBD516, 673C2B498744C7EB846F6BD4FDC852B0A9722377D75FD694F7F78E727ADF4563 ] C:\Windows\System32\drivers\afd.sys
19:13:10.0675 0x0514  C:\Windows\System32\drivers\afd.sys - ok
19:13:10.0675 0x0514  [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] C:\Windows\System32\drivers\netbt.sys
19:13:10.0675 0x0514  C:\Windows\System32\drivers\netbt.sys - ok
19:13:10.0691 0x0514  [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] C:\Windows\System32\drivers\pacer.sys
19:13:10.0691 0x0514  C:\Windows\System32\drivers\pacer.sys - ok
19:13:10.0691 0x0514  [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] C:\Windows\System32\drivers\wfplwf.sys
19:13:10.0691 0x0514  C:\Windows\System32\drivers\wfplwf.sys - ok
19:13:10.0691 0x0514  [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] C:\Windows\System32\drivers\netbios.sys
19:13:10.0691 0x0514  C:\Windows\System32\drivers\netbios.sys - ok
19:13:10.0707 0x0514  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] C:\Windows\System32\drivers\serial.sys
19:13:10.0707 0x0514  C:\Windows\System32\drivers\serial.sys - ok
19:13:10.0707 0x0514  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] C:\Windows\System32\drivers\wanarp.sys
19:13:10.0707 0x0514  C:\Windows\System32\drivers\wanarp.sys - ok
19:13:10.0707 0x0514  [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] C:\Windows\System32\drivers\rdbss.sys
19:13:10.0707 0x0514  C:\Windows\System32\drivers\rdbss.sys - ok
19:13:10.0722 0x0514  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] C:\Windows\System32\drivers\termdd.sys
19:13:10.0722 0x0514  C:\Windows\System32\drivers\termdd.sys - ok
19:13:10.0722 0x0514  [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] C:\Windows\System32\drivers\discache.sys
19:13:10.0722 0x0514  C:\Windows\System32\drivers\discache.sys - ok
19:13:10.0722 0x0514  [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] C:\Windows\System32\drivers\mssmbios.sys
19:13:10.0722 0x0514  C:\Windows\System32\drivers\mssmbios.sys - ok
19:13:10.0722 0x0514  [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] C:\Windows\System32\drivers\nsiproxy.sys
19:13:10.0722 0x0514  C:\Windows\System32\drivers\nsiproxy.sys - ok
19:13:10.0738 0x0514  [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] C:\Windows\System32\drivers\csc.sys
19:13:10.0738 0x0514  C:\Windows\System32\drivers\csc.sys - ok
19:13:10.0738 0x0514  [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] C:\Windows\System32\drivers\blbdrive.sys
19:13:10.0738 0x0514  C:\Windows\System32\drivers\blbdrive.sys - ok
19:13:10.0738 0x0514  [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] C:\Windows\System32\drivers\dfsc.sys
19:13:10.0738 0x0514  C:\Windows\System32\drivers\dfsc.sys - ok
19:13:10.0753 0x0514  [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] C:\Windows\System32\drivers\intelppm.sys
19:13:10.0753 0x0514  C:\Windows\System32\drivers\intelppm.sys - ok
19:13:10.0753 0x0514  [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] C:\Windows\System32\drivers\tunnel.sys
19:13:10.0753 0x0514  C:\Windows\System32\drivers\tunnel.sys - ok
19:13:10.0753 0x0514  [ ED60C95C805DBAEE92C90C3AB930085A, D35574D2CC42B4EDBF217A86639864422FBE02443250A36EB2CD11B22F165C39 ] C:\Windows\System32\ntdll.dll
19:13:10.0753 0x0514  C:\Windows\System32\ntdll.dll - ok
19:13:10.0769 0x0514  [ 16742790895960690237A5143CEDEC8B, 88F7B3DB5D931389A737891E16D7069135959DA03E9EC0FFFE609561837FA74F ] C:\Windows\System32\smss.exe
19:13:10.0769 0x0514  C:\Windows\System32\smss.exe - ok
19:13:10.0769 0x0514  [ 1E3D32DDBE6BBDC0843432BAD599069F, 908893652F953C01E3FFEA19E76154B6246277720B088A61086A9B336B3EC6AD ] C:\Windows\System32\drivers\nvlddmkm.sys
19:13:10.0769 0x0514  C:\Windows\System32\drivers\nvlddmkm.sys - ok
19:13:10.0769 0x0514  [ 23F5D28378A160352BA8F817BD8C71CB, 11BF7B7E6276C28EFF74B8AF89B493CBB89B394D2A091708EDA15DA5C342FF19 ] C:\Windows\System32\drivers\dxgkrnl.sys
19:13:10.0769 0x0514  C:\Windows\System32\drivers\dxgkrnl.sys - ok
19:13:10.0785 0x0514  [ 1893ACD253854AC385042DB594FA23FF, 0655202D1C6EE05AFB6AD113CB415AB8FA4A63B3A5C12931F4BB8A51A4A5ED61 ] C:\Windows\System32\drivers\dxgmms1.sys
19:13:10.0785 0x0514  C:\Windows\System32\drivers\dxgmms1.sys - ok
19:13:10.0785 0x0514  [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] C:\Windows\System32\drivers\hdaudbus.sys
19:13:10.0785 0x0514  C:\Windows\System32\drivers\hdaudbus.sys - ok
19:13:10.0785 0x0514  [ 7DFD48E24479B68B258D8770121155A0, 3B5F7309403C46855DB888CF2058B07C9029690DBC7FB3224BAC7BE5547D2D57 ] C:\Windows\System32\drivers\Rt86win7.sys
19:13:10.0785 0x0514  C:\Windows\System32\drivers\Rt86win7.sys - ok
19:13:10.0800 0x0514  [ F3ADCFB2F0BA791A26AC8E9C33D7E20E, ABEC8CC91704D13F11BFAA10C33DE046653A40981E3687D601C74DF0B19BCB88 ] C:\Windows\System32\drivers\usbport.sys
19:13:10.0800 0x0514  C:\Windows\System32\drivers\usbport.sys - ok
19:13:10.0800 0x0514  [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] C:\Windows\System32\drivers\parport.sys
19:13:10.0800 0x0514  C:\Windows\System32\drivers\parport.sys - ok
19:13:10.0800 0x0514  [ CFBCE999C057D78979A181C9C60F208E, D60698EAA8A085214D5945818B0863976CF116EBE523046C344AF4E9392FDF80 ] C:\Windows\System32\drivers\usbehci.sys
19:13:10.0800 0x0514  C:\Windows\System32\drivers\usbehci.sys - ok
19:13:10.0816 0x0514  [ 78780C3EBCE17405B1CCD07A3A8A7D72, FBFF3111E22EE0B4BCAFA81F89AAE985135BFF48EEFD130C09B49CCF8A9946B9 ] C:\Windows\System32\drivers\usbuhci.sys
19:13:10.0816 0x0514  C:\Windows\System32\drivers\usbuhci.sys - ok
19:13:10.0816 0x0514  [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] C:\Windows\System32\drivers\CompositeBus.sys
19:13:10.0816 0x0514  C:\Windows\System32\drivers\CompositeBus.sys - ok
19:13:10.0816 0x0514  [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] C:\Windows\System32\drivers\i8042prt.sys
19:13:10.0816 0x0514  C:\Windows\System32\drivers\i8042prt.sys - ok
19:13:10.0832 0x0514  [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] C:\Windows\System32\drivers\kbdclass.sys
19:13:10.0832 0x0514  C:\Windows\System32\drivers\kbdclass.sys - ok
19:13:10.0832 0x0514  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] C:\Windows\System32\drivers\serenum.sys
19:13:10.0832 0x0514  C:\Windows\System32\drivers\serenum.sys - ok
19:13:10.0832 0x0514  [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] C:\Windows\System32\drivers\agilevpn.sys
19:13:10.0832 0x0514  C:\Windows\System32\drivers\agilevpn.sys - ok
19:13:10.0847 0x0514  [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] C:\Windows\System32\drivers\ndistapi.sys
19:13:10.0847 0x0514  C:\Windows\System32\drivers\ndistapi.sys - ok
19:13:10.0847 0x0514  [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] C:\Windows\System32\drivers\rasl2tp.sys
19:13:10.0847 0x0514  C:\Windows\System32\drivers\rasl2tp.sys - ok
19:13:10.0847 0x0514  [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] C:\Windows\System32\drivers\ndiswan.sys
19:13:10.0847 0x0514  C:\Windows\System32\drivers\ndiswan.sys - ok
19:13:10.0863 0x0514  [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] C:\Windows\System32\drivers\raspppoe.sys
19:13:10.0863 0x0514  C:\Windows\System32\drivers\raspppoe.sys - ok
19:13:10.0863 0x0514  [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] C:\Windows\System32\drivers\raspptp.sys
19:13:10.0863 0x0514  C:\Windows\System32\drivers\raspptp.sys - ok
19:13:10.0863 0x0514  [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] C:\Windows\System32\drivers\rassstp.sys
19:13:10.0863 0x0514  C:\Windows\System32\drivers\rassstp.sys - ok
19:13:10.0878 0x0514  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] C:\Windows\System32\drivers\rdpbus.sys
19:13:10.0878 0x0514  C:\Windows\System32\drivers\rdpbus.sys - ok
19:13:10.0878 0x0514  [ 5DCEF0C32BE0F33277326586FA503689, B6AEB5DE8F2430D2032DAF5B58DBB4E192F6113DB5379F5AD8189A7AC2560EEA ] C:\Windows\System32\drivers\ks.sys
19:13:10.0878 0x0514  C:\Windows\System32\drivers\ks.sys - ok
19:13:10.0878 0x0514  [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] C:\Windows\System32\drivers\mouclass.sys
19:13:10.0878 0x0514  C:\Windows\System32\drivers\mouclass.sys - ok
19:13:10.0894 0x0514  [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] C:\Windows\System32\drivers\swenum.sys
19:13:10.0894 0x0514  C:\Windows\System32\drivers\swenum.sys - ok
19:13:10.0894 0x0514  [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] C:\Windows\System32\drivers\umbus.sys
19:13:10.0894 0x0514  C:\Windows\System32\drivers\umbus.sys - ok
19:13:10.0894 0x0514  [ 9D22AAD9AC6A07C691A1113E5F860868, AC34D36DBB5649650FCD873A792CA1387AE841D4C46781C63C0D29834F9B58E9 ] C:\Windows\System32\drivers\usbhub.sys
19:13:10.0894 0x0514  C:\Windows\System32\drivers\usbhub.sys - ok
19:13:10.0910 0x0514  [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] C:\Windows\System32\drivers\ndproxy.sys
19:13:10.0910 0x0514  C:\Windows\System32\drivers\ndproxy.sys - ok
19:13:10.0910 0x0514  [ 27F9288AF019E6DACA281EDE51FF5928, D27A381331C4298814422EED8B5419F41F375F3F80DA8DA755D6466F8D55A1D2 ] C:\Windows\System32\drivers\drmk.sys
19:13:10.0910 0x0514  C:\Windows\System32\drivers\drmk.sys - ok
19:13:10.0910 0x0514  [ D72708C9F49500C13D7D067E169B7715, 1F6470773F52140CE0557E746DAE494D0BB4A7C4050F8EC6067AAC383CE9E3CF ] C:\Windows\System32\drivers\portcls.sys
19:13:10.0910 0x0514  C:\Windows\System32\drivers\portcls.sys - ok
19:13:10.0925 0x0514  [ A103F2A100B091809A120A1463BC9EB5, DB9219AAD43C3FE3EFBB70F213568DA87B4F9D89FA0F80AD73611C6A72BACC0E ] C:\Windows\System32\drivers\nvhda32v.sys
19:13:10.0925 0x0514  C:\Windows\System32\drivers\nvhda32v.sys - ok

19:13:10.0925 0x0514  [ 5CEEF2CCCB4FE00D3FFBFEB12BCFA07F, D5533A7BA7BE65D5D5CE137795419E6C49B51B15B7450C319EE0EA9A83AC73E0 ] C:\Windows\System32\drivers\RTKVHDA.sys
19:13:10.0925 0x0514  C:\Windows\System32\drivers\RTKVHDA.sys - ok
19:13:10.0925 0x0514  [ F88A52EB62019D6A62FDD9E08034DBD8, 2E035366E9A1A26FB15F1E4857056E6AD7932BCE8CC68BB4B655609F424D2756 ] C:\Windows\System32\autochk.exe
19:13:10.0925 0x0514  C:\Windows\System32\autochk.exe - ok
19:13:10.0941 0x0514  [ A8BB45F9ECAD993461E0FEF8E2A99152, ACB756EA54E71F124D928829666B5B439785593877FF7C0C76ADCF954F4E6C94 ] C:\Windows\System32\Wldap32.dll
19:13:10.0941 0x0514  C:\Windows\System32\Wldap32.dll - ok
19:13:10.0941 0x0514  [ 95E2376B3323F062EB562B8586D0F14A, BD3FA8750123D00AA0967FBA44372C46EA002681DA9C9B77A4F9261553E26017 ] C:\Windows\System32\advapi32.dll
19:13:10.0941 0x0514  C:\Windows\System32\advapi32.dll - ok
19:13:10.0941 0x0514  [ 16AB4BD2ACC52109F43739BF0E89E18F, 8BF53004F8A413598B46C2ECFBA1EA581836E0E0839047471622F31A4A065DD7 ] C:\Windows\System32\shell32.dll
19:13:10.0941 0x0514  C:\Windows\System32\shell32.dll - ok
19:13:10.0941 0x0514  [ 928CF7268086631F54C3D8E17238C6DD, F058FAFB04E7EBD5CADE9B48195B7AA7C3508F332A89F5E6E5F3F071E8CADD4A ] C:\Windows\System32\ole32.dll
19:13:10.0941 0x0514  C:\Windows\System32\ole32.dll - ok
19:13:10.0957 0x0514  [ E46D48A7FE961401F1CBF85531CDF05D, 24CA38641020FF9E07E16CE3992212E2BFD2759E902D12744D4989ADF11995BF ] C:\Windows\System32\msvcrt.dll
19:13:10.0957 0x0514  C:\Windows\System32\msvcrt.dll - ok
19:13:10.0957 0x0514  [ FF5688D309347F2720911D8796912834, 3B0D73C50D40A6F42629B7750F99F656BF5C1C50237D5F98B6C0F2CE5E2DA359 ] C:\Windows\System32\clbcatq.dll
19:13:10.0957 0x0514  C:\Windows\System32\clbcatq.dll - ok
19:13:10.0957 0x0514  [ B2FD31E20B423335FE3273B4BF95813C, C576DA89C6B5D19427B755122CA3D7CB6E166B0D12EAABFB4D30820B861CAFF6 ] C:\Windows\System32\imagehlp.dll
19:13:10.0957 0x0514  C:\Windows\System32\imagehlp.dll - ok
19:13:10.0972 0x0514  [ E87F5393F7D8CE2FACC4DFF703531392, DFBD071A4DD67FEA4AA6199BEEF8D528A29D2D195CB6F10C201A031CEF3C0792 ] C:\Windows\System32\gdi32.dll
19:13:10.0972 0x0514  C:\Windows\System32\gdi32.dll - ok
19:13:10.0972 0x0514  [ 5553784D774CA845380650E010BBDA2C, FF4C354D08C8A6A6554DE195C72E5C940BE0DEF803CE0BE8312161943A0F5821 ] C:\Windows\System32\kernel32.dll
19:13:10.0972 0x0514  C:\Windows\System32\kernel32.dll - ok
19:13:10.0972 0x0514  [ 44214C94911C7CFB1D52CB64D5E8368D, 4B01872788057ECF5A1AC6647512F5671213F76651FF8E808F1310A1240F35A2 ] C:\Windows\System32\wininet.dll
19:13:10.0972 0x0514  C:\Windows\System32\wininet.dll - ok
19:13:10.0988 0x0514  [ 7FF15A4F092CD4A96055BA69F903E3E9, 1B594E6D057C632ABB3A8CF838157369024BD6B9F515CA8E774B22FE71A11627 ] C:\Windows\System32\ws2_32.dll
19:13:10.0988 0x0514  C:\Windows\System32\ws2_32.dll - ok
19:13:10.0988 0x0514  [ 4A8E2F20809CC161107FAA94F6CF2685, 561DCE9E49696288A9EE802C0BEF424EB34A1C29B6D8931CCD5C7E26CB4F88EA ] C:\Windows\System32\imm32.dll
19:13:10.0988 0x0514  C:\Windows\System32\imm32.dll - ok
19:13:10.0988 0x0514  [ 6377051C63D5552A311935C67E9FDFDC, 3FB82988AAB66813567E8DB951D4EE87F156201070F005FDBF52EF998A323E65 ] C:\Windows\System32\nsi.dll
19:13:10.0988 0x0514  C:\Windows\System32\nsi.dll - ok
19:13:11.0003 0x0514  [ A543AC1F7138376D778D630A35FCBC4C, 2D824C66A97FC8C39DAFA397CC47495B712D175EEF393486946DA8936BDD466A ] C:\Windows\System32\psapi.dll
19:13:11.0003 0x0514  C:\Windows\System32\psapi.dll - ok
19:13:11.0003 0x0514  [ CFC97F07904067A1E5FAE195D534DA3A, EB4D2D127312EB09E2ACCA3276779E80F90FAF77322684BABF72B8EC6E1F906C ] C:\Windows\System32\sechost.dll
19:13:11.0003 0x0514  C:\Windows\System32\sechost.dll - ok
19:13:11.0003 0x0514  [ F1DD3ACAEE5E6B4BBC69BC6DF75CEF66, 6CCAD926934EACBE92FDFA1AE46DA6101D78A0B44AE38594E3A88FEBB35D230F ] C:\Windows\System32\user32.dll
19:13:11.0003 0x0514  C:\Windows\System32\user32.dll - ok
19:13:11.0019 0x0514  [ 9C278785347BCC991F8EA2999D90F58D, EA680C3642A6ABF627415AEE019956FAC702DC6A8F4B4D0FC8A4FB21EADD3896 ] C:\Windows\System32\normaliz.dll
19:13:11.0019 0x0514  C:\Windows\System32\normaliz.dll - ok
19:13:11.0019 0x0514  [ 804AAAFEBB3AD5F49334DD906BCB1DE5, EB5DA86810D405555C84F4D452A604665250AB5D01714E0FBECF81CC8E791AC5 ] C:\Windows\System32\usp10.dll
19:13:11.0019 0x0514  C:\Windows\System32\usp10.dll - ok
19:13:11.0019 0x0514  [ 028D74F61952756C9DFFF7969162BB39, 045887F7424A0FAE471BD285ED7A3507EFDCEF986313651E462323ACE3312173 ] C:\Windows\System32\oleaut32.dll
19:13:11.0019 0x0514  C:\Windows\System32\oleaut32.dll - ok
19:13:11.0035 0x0514  [ D1DE1EAFDE97BE41CF6585027FF3E732, 76F17D4DF440D6734DC8157092D94EB18C2A73A0A49BEEA289E7B3EDE30E86A2 ] C:\Windows\System32\comdlg32.dll
19:13:11.0035 0x0514  C:\Windows\System32\comdlg32.dll - ok
19:13:11.0035 0x0514  [ 4F154D2C9C6DF951FD6E5AABBAE6B5EE, FB3A3D2FD5AFFC513BD475E90A705E2C33C8E85AAF8B994C2A987DFC9D0A71D4 ] C:\Windows\System32\lpk.dll
19:13:11.0035 0x0514  C:\Windows\System32\lpk.dll - ok
19:13:11.0035 0x0514  [ 10FB16B50AFFDA6D44588F3C445DC273, 6CDA17DA9B44D11E69F7C6682FA633EA75731623BB21B429A0FE2086ED4495A7 ] C:\Windows\System32\setupapi.dll
19:13:11.0035 0x0514  C:\Windows\System32\setupapi.dll - ok
19:13:11.0050 0x0514  [ C9618BC9B2B0FD7C1138D8774795A79B, 0AC170669C2626519FA7A745C56BFBA6B83B8537488F5B9EB7BA72448E5E7A43 ] C:\Windows\System32\msctf.dll
19:13:11.0050 0x0514  C:\Windows\System32\msctf.dll - ok
19:13:11.0050 0x0514  [ 8CC3C111D653E96F3EA1590891491D71, 1D326D7D116D76876EE2B14A5BFB7B4328E21DB9B5AAAB9CB67F8EFB93924230 ] C:\Windows\System32\shlwapi.dll
19:13:11.0050 0x0514  C:\Windows\System32\shlwapi.dll - ok
19:13:11.0050 0x0514  [ 070C5B9D3006602A07757179D9B56F5D, 7B24E38ADDEEDD9168D0C87275AC0936D0A4F1195810F9736118076589BC18BA ] C:\Windows\System32\difxapi.dll
19:13:11.0050 0x0514  C:\Windows\System32\difxapi.dll - ok
19:13:11.0050 0x0514  [ 683E0C9DA9E1EB9E4691DFAE0EC83E36, F5CD7DE4B315F318D495C4E28292FA47B96640D044502131934190EC58F3D1D5 ] C:\Windows\System32\iertutil.dll
19:13:11.0050 0x0514  C:\Windows\System32\iertutil.dll - ok
19:13:11.0066 0x0514  [ EBB431C6332107651CD2E2715A707994, 669BED2F3A2CFFB5E25FE6CF6956E61036FA1D9127AE59F05B22CFD57CEA3E2A ] C:\Windows\System32\urlmon.dll
19:13:11.0066 0x0514  C:\Windows\System32\urlmon.dll - ok
19:13:11.0066 0x0514  [ 6400774E903729ADD0A62A24A334EE56, 5E03EEEF64C44FD390831E8A78E1B46085C4C1D9F0D4E30084E689B54163DADD ] C:\Windows\System32\rpcrt4.dll
19:13:11.0066 0x0514  C:\Windows\System32\rpcrt4.dll - ok
19:13:11.0066 0x0514  [ 3FFAEA12666E565FF51BF2FCA674F543, 95BA8DBDA495C170E075F48627D7DD89C6B29BE0CE0D0D8316B0236692675060 ] C:\Windows\System32\cfgmgr32.dll
19:13:11.0066 0x0514  C:\Windows\System32\cfgmgr32.dll - ok
19:13:11.0082 0x0514  [ BDAC1AA64495D0F7E1FF810EBBF1F018, 7920E2381307574C5C4562CF1FF8F79F91204102051FCD708FA4E6A941422084 ] C:\Windows\System32\comctl32.dll
19:13:11.0082 0x0514  C:\Windows\System32\comctl32.dll - ok
19:13:11.0082 0x0514  [ 454E292861A4EF1D72F43F42BBAF6917, 9179657AA2928627D73608D7EBA5A9A8D7507F9F67DD8EC1011C76AEE4914043 ] C:\Windows\System32\crypt32.dll
19:13:11.0082 0x0514  C:\Windows\System32\crypt32.dll - ok
19:13:11.0082 0x0514  [ 931A1DF1520ABC6E84BA4A75E6957025, 4A9E388DC432982684517DC9D943B6214CCF422C170963ED9AD8B74A9C39BD99 ] C:\Windows\System32\drivers\hidclass.sys
19:13:11.0082 0x0514  C:\Windows\System32\drivers\hidclass.sys - ok
19:13:11.0097 0x0514  [ 6C26122F1931D4D7810240F32DDCE890, 532A309E1271F7EA2C96415A1CABFA743BB2BFEE4F2515C8BBCB419AD47B2111 ] C:\Windows\System32\drivers\hidparse.sys
19:13:11.0097 0x0514  C:\Windows\System32\drivers\hidparse.sys - ok
19:13:11.0097 0x0514  [ 18E71EA0E063037A5C3C8272A5262B7C, B4EBFED3FBB1E6D82A77F93EA3BC761152C7B0C2B1B02B898B81A92F4D1F1E8B ] C:\Windows\System32\drivers\usbd.sys
19:13:11.0097 0x0514  C:\Windows\System32\drivers\usbd.sys - ok
19:13:11.0097 0x0514  [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] C:\Windows\System32\drivers\hidusb.sys
19:13:11.0097 0x0514  C:\Windows\System32\drivers\hidusb.sys - ok
19:13:11.0113 0x0514  [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] C:\Windows\System32\drivers\mouhid.sys
19:13:11.0113 0x0514  C:\Windows\System32\drivers\mouhid.sys - ok
19:13:11.0113 0x0514  [ AA7E805AF3F7DB2DA9EA350423E87DFD, 5A150D7AA87D14DAA3FF99821B6DCBC1CDDF571F277FE72E830DACBDA872DF07 ] C:\Windows\System32\KernelBase.dll
19:13:11.0113 0x0514  C:\Windows\System32\KernelBase.dll - ok
19:13:11.0113 0x0514  [ 2D0D2DA87BEA7144F2A17F19D0D17E4C, F47B1A6B2284E9B1B664F835D9498C8D11FD411C524877F29783CDA71FB15BB9 ] C:\Windows\System32\wintrust.dll
19:13:11.0113 0x0514  C:\Windows\System32\wintrust.dll - ok
19:13:11.0128 0x0514  [ CC4ED8BEA78B0DCA6F217E014C3291A7, 01104182E4E6FB3CF6397936D30B2CE3486967586D1B94187B59A8232DAE39FF ] C:\Windows\System32\devobj.dll
19:13:11.0128 0x0514  C:\Windows\System32\devobj.dll - ok
19:13:11.0128 0x0514  [ 938F39B50BAFE13D6F58C7790682C010, 902000EE51EFEABAF6A4B30F880AA37083D2232C6FC622CA513C4A823390FEDA ] C:\Windows\System32\msasn1.dll
19:13:11.0128 0x0514  C:\Windows\System32\msasn1.dll - ok
19:13:11.0128 0x0514  [ 5FCD3320AAE71506B43F9E12E4E72172, 067531833F90241A181EF082D85CFF74336D68DAB0AADE4393C1F35CD662DAAE ] C:\Windows\System32\drivers\dxapi.sys
19:13:11.0128 0x0514  C:\Windows\System32\drivers\dxapi.sys - ok
19:13:11.0144 0x0514  [ 687464342342B933D6B7FAA4A907AF4C, 7672238EFD3F14053C132BD318445CCE1352655A0C4FEFFDB32D8CE9CAE8E2B3 ] C:\Windows\System32\win32k.sys
19:13:11.0144 0x0514  C:\Windows\System32\win32k.sys - ok
19:13:11.0144 0x0514  [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:\Windows\System32\basesrv.dll
19:13:11.0144 0x0514  C:\Windows\System32\basesrv.dll - ok
19:13:11.0144 0x0514  [ 10DE24CCCD418C31107813682EB73542, 73A7EEEA73487A1F6386816705C179FDC5CE59E217AB9C367139664EE06D9ED1 ] C:\Windows\System32\csrsrv.dll
19:13:11.0144 0x0514  C:\Windows\System32\csrsrv.dll - ok
19:13:11.0160 0x0514  [ 342271F6142E7C70805B8A81E1BA5F5C, F9112B88FEC5EF10A7AEDF88DCEE61956D1FCDE7CB42197216E8265578713786 ] C:\Windows\System32\csrss.exe
19:13:11.0160 0x0514  C:\Windows\System32\csrss.exe - ok
19:13:11.0160 0x0514  [ A9F564F254E9DDDE120A7135767EC24B, F255DCB4C7F4F941BA27700D66684AD0BA3DF114D6F298E2A909095B71B11D94 ] C:\Windows\System32\winsrv.dll
19:13:11.0160 0x0514  C:\Windows\System32\winsrv.dll - ok
19:13:11.0160 0x0514  [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] C:\Windows\System32\drivers\monitor.sys
19:13:11.0160 0x0514  C:\Windows\System32\drivers\monitor.sys - ok
19:13:11.0175 0x0514  [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\System32\sxssrv.dll
19:13:11.0175 0x0514  C:\Windows\System32\sxssrv.dll - ok
19:13:11.0175 0x0514  [ 7C76B61A5E1EF5D1FA554CF134100F18, 2B07C27A2C9A5D939CE9255C67E87B4EF8BFD3B011A592CC0E6994E660483648 ] C:\Windows\System32\tsddd.dll
19:13:11.0175 0x0514  C:\Windows\System32\tsddd.dll - ok
19:13:11.0175 0x0514  [ C733D233B623B7FFCE5031E4B756EE26, 33CC8B140B0E4A9B702E3468BE2646AEE4273F20C6EA5BAC6C3D8FC8EDEF0881 ] C:\Windows\System32\profapi.dll
19:13:11.0175 0x0514  C:\Windows\System32\profapi.dll - ok
19:13:11.0175 0x0514  [ 5997D769CDB108390DCFAEBF442BF816, 0E25CA984C0EEB629184423FAA9BC6D4356DF9A93F281E06DC83B4AC638AEC4A ] C:\Windows\System32\RpcRtRemote.dll
19:13:11.0175 0x0514  C:\Windows\System32\RpcRtRemote.dll - ok
19:13:11.0191 0x0514  [ B5C5DCAD3899512020D135600129D665, F6B4D18FA0D3C4958711AC0D476C21A6FDF2897F989A0AD290B43F463DD8B5B0 ] C:\Windows\System32\wininit.exe
19:13:11.0191 0x0514  C:\Windows\System32\wininit.exe - ok
19:13:11.0191 0x0514  [ CAEF9CD6C10B1017E2C298D849CD31DB, 62C6638D34CC554D952A09CDBABF29AA1487EED90578C48E3D01C519A4CC6FB8 ] C:\Windows\System32\cdd.dll
19:13:11.0191 0x0514  C:\Windows\System32\cdd.dll - ok
19:13:11.0191 0x0514  [ 357B990A4249D7F7485B230C0CC8825A, FE15918D883B0861D6BBA0E6AC77ABD8FE42C8F76869768BE4FD1F2A5027BD7A ] C:\Windows\System32\KBDUS.DLL
19:13:11.0191 0x0514  C:\Windows\System32\KBDUS.DLL - ok
19:13:11.0207 0x0514  [ 919001D2BB17DF06CA3F8AC16AD039F6, 5169ACFBE9E9D4C4012773ECDD28231C952675EF0C272A40F226E7B5D671B18B ] C:\Windows\System32\sxs.dll
19:13:11.0207 0x0514  C:\Windows\System32\sxs.dll - ok
19:13:11.0207 0x0514  [ 633C2C060CF857099F6C4F8D75C952B1, 95E14B5212301900BC9DDB6B42735B114D364188E9B312C786511258106398C8 ] C:\Windows\System32\WlS0WndH.dll
19:13:11.0207 0x0514  C:\Windows\System32\WlS0WndH.dll - ok
19:13:11.0207 0x0514  [ F08F6FCD09F9BE94C37ACC1B344685FF, DE48D766258B46EFEAB16579421C4BD97ACC6883F782D00E9857F4A0CE7E8A34 ] C:\Windows\System32\cryptbase.dll
19:13:11.0207 0x0514  C:\Windows\System32\cryptbase.dll - ok
19:13:11.0222 0x0514  [ 863F793D15B4026B1A5FDECA873D4D84, AF7ABD95BB5467551562F129F03C7AC9D52A021F7E547609F40A80E66932C942 ] C:\Windows\System32\apphelp.dll
19:13:11.0222 0x0514  C:\Windows\System32\apphelp.dll - ok
19:13:11.0222 0x0514  [ 6D13E1406F50C66E2A95D97F22C47560, BE40E84A824CB201F9C54DB4F860F3937630FDA3423940D44FCF4AC5DFF44271 ] C:\Windows\System32\winlogon.exe
19:13:11.0222 0x0514  C:\Windows\System32\winlogon.exe - ok
19:13:11.0222 0x0514  [ 7D388177BA300BE55264411DF6354D0D, 201EDD0EB7B952954552F5FAF4CAF949144B428E118DF55C4E05E86D1C34B94E ] C:\Windows\System32\lsasrv.dll
19:13:11.0222 0x0514  C:\Windows\System32\lsasrv.dll - ok
19:13:11.0238 0x0514  [ F42309C4191C506B71DB5D1126D26318, 29B0A8889857CEBFA6CBD795D5EECDDFFA04E794BD3C73FC488725B2A160F326 ] C:\Windows\System32\lsass.exe
19:13:11.0238 0x0514  C:\Windows\System32\lsass.exe - ok
19:13:11.0238 0x0514  [ 8AEA9A37C1A3565A204D37C5E72AB791, 939903F93FF37525A6C4B5CBA29CDEEE6D6055C42D605E80AE787F2A76F9870E ] C:\Windows\System32\lsm.exe
19:13:11.0238 0x0514  C:\Windows\System32\lsm.exe - ok
19:13:11.0238 0x0514  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\System32\services.exe
19:13:11.0238 0x0514  C:\Windows\System32\services.exe - ok
19:13:11.0253 0x0514  [ 331534632D1DA3377440493848E4A70E, C246B6D8A13C4D8F852A3B4B9DA5966A32DF4800121A04D5914FFFB768EA2628 ] C:\Windows\System32\sspicli.dll
19:13:11.0253 0x0514  C:\Windows\System32\sspicli.dll - ok
19:13:11.0253 0x0514  [ 4902ECF2A155A51F6FF7C013B7E212CD, 6B5B5B60420FEC8D590CC55204318C9E69A015E093219CBAB1074D5C32941581 ] C:\Windows\System32\sspisrv.dll
19:13:11.0253 0x0514  C:\Windows\System32\sspisrv.dll - ok
19:13:11.0253 0x0514  [ 418E881201583A3039D81F43E39E6C78, C96AAC161E09BE12815A4E931E65F66DB1A456C03253EF1111AE66F44B1515FF ] C:\Windows\System32\winsta.dll
19:13:11.0253 0x0514  C:\Windows\System32\winsta.dll - ok
19:13:11.0269 0x0514  [ 250AA41DE690561AF1282D598914564C, 0F16F50EC74CAC8879F8D88AF4FB656E06D19819E96BC3D71BCDDBF400C78F60 ] C:\Windows\System32\scesrv.dll
19:13:11.0269 0x0514  C:\Windows\System32\scesrv.dll - ok
19:13:11.0269 0x0514  [ 3369D021265E369D57317D61FA86DD79, 25A3BE3619324578C5B7CCB4585D89131DC60A969D35F9573FF20CCD67809BA3 ] C:\Windows\System32\scext.dll
19:13:11.0269 0x0514  C:\Windows\System32\scext.dll - ok
19:13:11.0269 0x0514  [ A8CE0C7F1D37E0B8082608A148B6B976, 29F667E4DEA45C95E15ED54E9C37585E450325370F6011FFB667886F2FF0ABEB ] C:\Windows\System32\secur32.dll
19:13:11.0269 0x0514  C:\Windows\System32\secur32.dll - ok
19:13:11.0269 0x0514  [ BA51FFE170C5B3AE8EC4F5BD2581A29E, CF734875C91B6C547A5F0BA68FB10ECDFD5FF24166A0D69309C27DC712C22F4B ] C:\Windows\System32\sysntfy.dll
19:13:11.0269 0x0514  C:\Windows\System32\sysntfy.dll - ok
19:13:11.0285 0x0514  [ D412B1B72C5AB020218E9A047D90CA05, A9CF8134DB968D259DF4DCC736159841BCB8DF309BEED4FB44F99033B8D31B39 ] C:\Windows\System32\wmsgapi.dll
19:13:11.0285 0x0514  C:\Windows\System32\wmsgapi.dll - ok
19:13:11.0285 0x0514  [ 5CCDCD40E732D54E0F7451AC66AC1C87, 66F4DA105BD72E41250CD59E2B3CD931B47AC9FDB6C784B9E33C5EE1AC29841F ] C:\Windows\System32\srvcli.dll
19:13:11.0285 0x0514  C:\Windows\System32\srvcli.dll - ok
19:13:11.0285 0x0514  [ FD1D6C73E6333BE727CBCC6054247654, 6F7B9AE1A5986204DB3348D13B303F30FC17624939DA74D6BD114FAEED0FB30E ] C:\Windows\System32\drivers\TsUsbFlt.sys
19:13:11.0285 0x0514  C:\Windows\System32\drivers\TsUsbFlt.sys - ok
19:13:11.0300 0x0514  [ 045ACB987C650D8186C6B4A692223860, C1CDDF7DABAE531C53290C7C70F35DD65751B399D269711865AD65F9E4E43B0B ] C:\Windows\System32\drivers\tsusbhub.sys
19:13:11.0300 0x0514  C:\Windows\System32\drivers\tsusbhub.sys - ok
19:13:11.0300 0x0514  [ 245F4691314F42D4D1BC06442F0B2086, 281DD81E06547BEB0DDB1FBB68B149961F1DEE268C9E9648DE662900ECB40FE0 ] C:\Windows\System32\samsrv.dll
19:13:11.0300 0x0514  C:\Windows\System32\samsrv.dll - ok
19:13:11.0300 0x0514  [ 1128637CAD49A8E3C8B5FA5D0A061525, 6B80E50D8296F9E2C978CC6BC002B964ACFD8F4BCF623F4770513792845B5278 ] C:\Windows\System32\cryptdll.dll
19:13:11.0300 0x0514  C:\Windows\System32\cryptdll.dll - ok
19:13:11.0316 0x0514  [ 82C089EA2A3EEFADF3588EA71E8BDADA, 2F3BB32EE2C0673058A74DEEB2D405E5E79F833F33C4D289A93EB3C618A86E75 ] C:\Windows\System32\wevtapi.dll
19:13:11.0316 0x0514  C:\Windows\System32\wevtapi.dll - ok
19:13:11.0316 0x0514  [ 50BA656134F78AF64E4DD3C8B6FEFD7E, F7AB96E0C9658B0444FD473E87165199FA90AE5CE434B40FBA1DB324925DF886 ] C:\Windows\System32\cngaudit.dll
19:13:11.0316 0x0514  C:\Windows\System32\cngaudit.dll - ok
19:13:11.0316 0x0514  [ FB4EB9352B7D698E6B3C2AA2ED724DAD, 534AB280ACD29E88FD1BD8838E1231D9364E649C917547A838F51EC8AB941EE2 ] C:\Windows\System32\authz.dll
19:13:11.0316 0x0514  C:\Windows\System32\authz.dll - ok
19:13:11.0332 0x0514  [ FC7650224790CAE75A5E9231961FDEC5, D634FC1F43AAC41D8B440BD4C1E7576886CDE683EDE4CAF06C43163B5E176CBB ] C:\Windows\System32\bcrypt.dll
19:13:11.0332 0x0514  C:\Windows\System32\bcrypt.dll - ok
19:13:11.0332 0x0514  [ C20FF1A17726C357461A7AC5B3BFC3AD, 970558642CC14837B77B48257E3171ACC84466888875927314ACD6D79176F967 ] C:\Windows\System32\ncrypt.dll
19:13:11.0332 0x0514  C:\Windows\System32\ncrypt.dll - ok
19:13:11.0332 0x0514  [ C90878913DF3DC504790282043DB5F4C, 5DC30020A523B5B219A219D74208A1249A43510D70723985817A021249D97036 ] C:\Windows\System32\msprivs.dll
19:13:11.0332 0x0514  C:\Windows\System32\msprivs.dll - ok
19:13:11.0332 0x0514  [ E343CABBD8D600ABAF3F11625D33B3D0, AA73D0F205749C291BF5EF179BDF3BF30977E36C87F4FF5361942EE024E848F9 ] C:\Windows\System32\netjoin.dll
19:13:11.0332 0x0514  C:\Windows\System32\netjoin.dll - ok
19:13:11.0347 0x0514  [ D9415DBA9FC6BAA8858FB0DD7D1176EB, 39083838724F2581FBD0DBBB24D458414316D3D0C6CAC9F30311654650235214 ] C:\Windows\System32\kerberos.dll
19:13:11.0347 0x0514  C:\Windows\System32\kerberos.dll - ok
19:13:11.0347 0x0514  [ 6DCFAEC6D1334AA6CDF8961DB4633CBF, DA7A26935691379DA0DBA829DEDE82401BCA7D35E28BFBFE3F9CE38AFF344737 ] C:\Windows\System32\negoexts.dll
19:13:11.0347 0x0514  C:\Windows\System32\negoexts.dll - ok
19:13:11.0347 0x0514  [ 7321F18D1F820612ED0E9F2D4B578A7E, 612BD7DE1DFBD100BD6ACB37A38565D88C39842D990D296B9B8E1FB75C3A94E7 ] C:\Windows\System32\cryptsp.dll
19:13:11.0347 0x0514  C:\Windows\System32\cryptsp.dll - ok
19:13:11.0363 0x0514  [ 8999B8631C7FD9F7F9EC3CAFD953BA24, 4E96D3EACCB1EF7DC429CAF433C2D4A0A129333B9AB10A05C32CA33C67DC26FA ] C:\Windows\System32\mswsock.dll
19:13:11.0363 0x0514  C:\Windows\System32\mswsock.dll - ok
19:13:11.0363 0x0514  [ 965E1069169552890603E238340122B4, F787A5F63871B404285F36CF8F4DE6DEA3B7671530523E1E2615982FFCCEE530 ] C:\Windows\System32\atmfd.dll
19:13:11.0363 0x0514  C:\Windows\System32\atmfd.dll - ok
19:13:11.0363 0x0514  [ 4C1E16B9A53102C8D6FBA587CBCB95DE, F982ABB2353E45E3E09B30EA99EFDC2A905AD75B43CDB0A34DB33D91AADDAB17 ] C:\Windows\System32\msv1_0.dll
19:13:11.0363 0x0514  C:\Windows\System32\msv1_0.dll - ok
19:13:11.0378 0x0514  [ 73E8667A19FEEDD856DF2695E9E511D4, 68D66C36D1F293D10ADCC6A33C870F989A29743537592CF172F02E794BEAFD1C ] C:\Windows\System32\wship6.dll
19:13:11.0378 0x0514  C:\Windows\System32\wship6.dll - ok
19:13:11.0378 0x0514  [ C1809B9907ADEDAF16F50C894100883B, 464CF897CB376DCDC9A584A2A470B5B82D99C595DC55930778B162E605CDFBA8 ] C:\Windows\System32\netlogon.dll
19:13:11.0378 0x0514  C:\Windows\System32\netlogon.dll - ok
19:13:11.0378 0x0514  [ 59DF156711A76BCB993253EC6C9BBF41, F8BCA0D764CD78A6B455268B9C5BA655D8A95B3E0939CC0AB5A493610C0058B9 ] C:\Windows\System32\dnsapi.dll
19:13:11.0378 0x0514  C:\Windows\System32\dnsapi.dll - ok
19:13:11.0394 0x0514  [ 8EA53101FF2B15BDFF934B62A8FB326D, E28536A4AC6764C2480EF047AF2312AE2600819899C3E33B486CFE19F25AC464 ] C:\Windows\System32\logoncli.dll
19:13:11.0394 0x0514  C:\Windows\System32\logoncli.dll - ok
19:13:11.0394 0x0514  [ 135F7AC9BE35AB1DF727FAF2E60E92F8, F4E55CC11513B17F0909F57BE9C71BB77F3BDE0B63F5A4AB737124A6C1CA40AC ] C:\Windows\System32\schannel.dll
19:13:11.0394 0x0514  C:\Windows\System32\schannel.dll - ok
19:13:11.0394 0x0514  [ 0450CF487ECD8A67B56F59F9A96D024D, 7B19CD3B3A98384844E3F4D04C505B8D17B2D5AABE184E265E85A17D0DDBC25B ] C:\Windows\System32\wdigest.dll
19:13:11.0394 0x0514  C:\Windows\System32\wdigest.dll - ok
19:13:11.0410 0x0514  [ ED8EC63F7522DF4852147C84EC62C36A, 75633011CD28DCBD4834211A9D415F17DE15BFCD80FB9FF6CE25CBBD4E9899AF ] C:\Windows\System32\rsaenh.dll
19:13:11.0410 0x0514  C:\Windows\System32\rsaenh.dll - ok
19:13:11.0410 0x0514  [ E8449FE262D7406BCB2AC2A45C53EC5F, 6C118C9FB26404D1943824CF3990F36E12986547FFACB7CC0DF975A913065D78 ] C:\Windows\System32\bcryptprimitives.dll
19:13:11.0410 0x0514  C:\Windows\System32\bcryptprimitives.dll - ok
19:13:11.0410 0x0514  [ 37CC990D4E2CDFAE12AC47F6B620FC13, D07E6EF4EED10ACA21A41A739147E54CC435EAF952CD0CA1F2E3CB2D83CEC831 ] C:\Windows\System32\pku2u.dll
19:13:11.0410 0x0514  C:\Windows\System32\pku2u.dll - ok
19:13:11.0425 0x0514  [ D29E45078CF4020CE0AAC82EC652D1EA, 3CB552744C9D02A488ABCF171E29872156BA6B57C73EC45D708C72D541BE8365 ] C:\Windows\System32\TSpkg.dll
19:13:11.0425 0x0514  C:\Windows\System32\TSpkg.dll - ok
19:13:11.0425 0x0514  [ 4E5FE39C1076D115EC8BFCFE14D75B80, F1D02BCA6F664DCDD0CCDE269D31787C7553CD38C7208A8DD8B80B9EA09FEB1C ] C:\Windows\System32\credssp.dll
19:13:11.0425 0x0514  C:\Windows\System32\credssp.dll - ok
19:13:11.0425 0x0514  [ 91F434FF6606ED9BDC6A05D651B69553, F2CF43DDDE2241E8A25F710A516371E0C56D99195022D9715A98379C753929B3 ] C:\Windows\System32\efslsaext.dll
19:13:11.0425 0x0514  C:\Windows\System32\efslsaext.dll - ok
19:13:11.0441 0x0514  [ 8124944EC89D6A1815E4E53F5B96AAF4, A6766BD0F62A381C9899F66E5C32731BD91600363F4CFBE560BC8AA2B111C790 ] C:\Windows\System32\scecli.dll
19:13:11.0441 0x0514  C:\Windows\System32\scecli.dll - ok
19:13:11.0441 0x0514  [ 7222995615BF93B628DCEA4BD6CCACF7, 306A3220868AC38AC796027F0D75052B596F55B9CAE87A9B8863515995BFC2F2 ] C:\Windows\System32\ubpm.dll
19:13:11.0441 0x0514  C:\Windows\System32\ubpm.dll - ok
19:13:11.0441 0x0514  [ 54A47F6B5E09A77E61649109C6A08866, 121118A0F5E0E8C933EFD28C9901E54E42792619A8A3A6D11E1F0025A7324BC2 ] C:\Windows\System32\svchost.exe
19:13:11.0441 0x0514  C:\Windows\System32\svchost.exe - ok
19:13:11.0441 0x0514  [ 92DC6E68D2C856C5C2F21AE9E22112B8, EFAA27886A05E57E629A9EFC3671D9D64144795EDF55438A676F5B43E59BE3FC ] C:\Windows\System32\umpnpmgr.dll
19:13:11.0441 0x0514  C:\Windows\System32\umpnpmgr.dll - ok
19:13:11.0457 0x0514  [ FD07F21E0A19C27ED4E1EEC2B07452B3, DF54C00B021AF64BB04EDEBCA6F41CCF48F1959DD53ADE545FAFC565F1243392 ] C:\Windows\System32\devrtl.dll
19:13:11.0457 0x0514  C:\Windows\System32\devrtl.dll - ok
19:13:11.0457 0x0514  [ 4BDBBE5E4208022DD794F7EEEB0F7366, 4F69BA2EDABFA63A300B9F1880349EFAE185B899DD5C561E7B3BA6AAA4B22D6A ] C:\Windows\System32\SPInf.dll
19:13:11.0457 0x0514  C:\Windows\System32\SPInf.dll - ok
19:13:11.0457 0x0514  [ 1097F3035BAF46CED8B332B3564C5108, C69781683CA963A1335780DABBBC60E2C3CEF0888738D3425D358D12E8D0AF58 ] C:\Windows\System32\gpapi.dll
19:13:11.0457 0x0514  C:\Windows\System32\gpapi.dll - ok
19:13:11.0472 0x0514  [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] C:\Windows\System32\umpo.dll
19:13:11.0472 0x0514  C:\Windows\System32\umpo.dll - ok
19:13:11.0472 0x0514  [ D15618A0FF8DBC2C5BF3726BACC75A0B, ADD81EA1D208907D67802F0E96EC0327BA89021F870BA22B9C7E3A19013A6AE7 ] C:\Windows\System32\userenv.dll
19:13:11.0472 0x0514  C:\Windows\System32\userenv.dll - ok
19:13:11.0472 0x0514  [ 5893EBDCE371174AC89ECD7731DD6D77, 31CC55F4724CFD95E48954B38C0A04D674399FD243083A816893ED5E5A770086 ] C:\Windows\System32\pcwum.dll
19:13:11.0472 0x0514  C:\Windows\System32\pcwum.dll - ok
19:13:11.0488 0x0514  [ 08DFDBD2FD4EA951DC46B1C7661ED35A, D926530C659DDAF80770663F46F1EFD94FFB4AAB475C4E3367CB531AF4A734E1 ] C:\Windows\System32\powrprof.dll
19:13:11.0488 0x0514  C:\Windows\System32\powrprof.dll - ok
19:13:11.0488 0x0514  [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] C:\Windows\System32\drivers\luafv.sys
19:13:11.0488 0x0514  C:\Windows\System32\drivers\luafv.sys - ok
19:13:11.0488 0x0514  [ 8683C1B450F4B3872839308D836E0F92, C6CEEEA780D2191AEAC2537FD96324FF5501D92CE46313FB95ABB51765D919ED ] C:\Windows\System32\drivers\mbam.sys
19:13:11.0488 0x0514  C:\Windows\System32\drivers\mbam.sys - ok
19:13:11.0503 0x0514  [ E714A1C0354636837E20CCBF00888EE7, 0E31F0DB0AA318E3B0DACD26C0D3B11519B42F2A996AE580BE67FA8B3C42C436 ] C:\Windows\System32\drivers\WUDFPf.sys
19:13:11.0503 0x0514  C:\Windows\System32\drivers\WUDFPf.sys - ok
19:13:11.0503 0x0514  [ 5004DAF6A37C5C73FFCF4D3935A6FE87, 52F2149383EC41B18310801FD07C1363EE81C5D1F2B0206460FC7922C00D7A15 ] C:\Windows\System32\nvvsvc.exe
19:13:11.0503 0x0514  C:\Windows\System32\nvvsvc.exe - ok
19:13:11.0503 0x0514  [ 6A6B2EE4565A178035BE2A4FF6F2C968, E2E231F1C2E2CE19583483ACC53318651FA7CA2DE46BCB89B4CBF97CA0525122 ] C:\Windows\System32\wtsapi32.dll
19:13:11.0503 0x0514  C:\Windows\System32\wtsapi32.dll - ok
19:13:11.0519 0x0514  [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] C:\Windows\System32\rpcss.dll
19:13:11.0519 0x0514  C:\Windows\System32\rpcss.dll - ok
19:13:11.0519 0x0514  [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] C:\Windows\System32\RpcEpMap.dll
19:13:11.0519 0x0514  C:\Windows\System32\RpcEpMap.dll - ok
19:13:11.0519 0x0514  [ 81F08948A0F1475894C99D4D19A158A8, 93334DA369BF976E498265E432CAF63D898D378C6B32947DF355366ABE2A0FAC ] C:\Windows\System32\wshqos.dll
19:13:11.0519 0x0514  C:\Windows\System32\wshqos.dll - ok
19:13:11.0535 0x0514  [ EE5C8E27C37B79CB54A2FCEEED2DC262, 0A5E200FD65A491756B951A4A0ED39B88B7B313E97C2BBF3C91AC4C290772BB7 ] C:\Windows\System32\WSHTCPIP.DLL
19:13:11.0535 0x0514  C:\Windows\System32\WSHTCPIP.DLL - ok
19:13:11.0535 0x0514  [ EAF536CEFA2AD556160A9DDFDFB57488, B4E7E3EED21634E1417377692946D5843424C8B0DE315A2CF465EE8310C47BE1 ] C:\Program Files\Microsoft Security Client\MpSvc.dll
19:13:11.0535 0x0514  C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
19:13:11.0535 0x0514  [ B0F49DA36F30922F5DDC3B623B778FCE, EE025AEFA4A2095AFEABFB3A49639DA77D78068A3F5EEDA6C15D34853AFD5609 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
19:13:11.0535 0x0514  C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
19:13:11.0550 0x0514  [ 3F50200237961034FACE602373838980, F97D72CC75D921CF8F8E0544614407358AEFF97A8F48E4A89F82689EE8F2FC86 ] C:\Windows\System32\FirewallAPI.dll
19:13:11.0550 0x0514  C:\Windows\System32\FirewallAPI.dll - ok
19:13:11.0550 0x0514  [ 3EF0D8AB08385AAB5802E773511A2E6A, 1A7EE4BC646767004372EAEA9BC0A2071790E739101F7D25ECD9C95D3F29AFD6 ] C:\Windows\System32\LogonUI.exe
19:13:11.0550 0x0514  C:\Windows\System32\LogonUI.exe - ok
19:13:11.0550 0x0514  [ CDD35C1CE1EBFE80C055691CDC8DF443, DE548012A90FFFCF6B6CA1FFA5C04167CBAAA8656D7D9A7132D62340C3958409 ] C:\Windows\System32\authui.dll
19:13:11.0550 0x0514  C:\Windows\System32\authui.dll - ok
19:13:11.0550 0x0514  [ 702254574E7E52052DE39408457B7149, 645CA9E88DA21C63710A04A0F54421018DF415A3D612112C71A255C49325C082 ] C:\Windows\System32\version.dll
19:13:11.0550 0x0514  C:\Windows\System32\version.dll - ok
19:13:11.0566 0x0514  [ 9DE3C7E166C53DB99EC401F81991C9B0, 927713C28F34BF0F82400E87B766912EC0A4943611C927A19D14B29D8440B181 ] C:\Program Files\Microsoft Security Client\MpClient.dll
19:13:11.0566 0x0514  C:\Program Files\Microsoft Security Client\MpClient.dll - ok
19:13:11.0566 0x0514  [ 28CA821606669BB9215CE010767720FA, C8A1F0D6704F8F37CF8AADDFAD511FF27E56E8BCFFD4AC948DFA0329DB1F3A1E ] C:\Windows\System32\cryptui.dll
19:13:11.0566 0x0514  C:\Windows\System32\cryptui.dll - ok
19:13:11.0566 0x0514  [ 3FD15B4611D9BDA3F8013548C0ECAECA, B47A8D9985D9B71EB870816A0AB2B6403D394CCBDF7DE5378D5721D58D68D28D ] C:\Windows\System32\ntmarta.dll
19:13:11.0566 0x0514  C:\Windows\System32\ntmarta.dll - ok
19:13:11.0582 0x0514  [ 352B3DC62A0D259A82A052238425C872, 393B24E0D6007C74AEE2FB2EE2C18623D37DF64E279B6767952DCFEE0EACBB10 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
19:13:11.0582 0x0514  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
19:13:11.0582 0x0514  [ C30A3E5DEEEBA22E782AC54C5AF5F352, 80939A7B5354032256706C6CA0C3CCC7E67CD1C1C81EAEA2CBC74997C0863662 ] C:\Windows\System32\samlib.dll
19:13:11.0582 0x0514  C:\Windows\System32\samlib.dll - ok
19:13:11.0582 0x0514  [ F14A9B1778376D0B1788E402AC1F831A, 6110F29669E03F8163B5CD7124BE0FF329F36C18529FA3B8FF70FC00B2D8AA02 ] C:\Windows\System32\shacct.dll
19:13:11.0582 0x0514  C:\Windows\System32\shacct.dll - ok
19:13:11.0597 0x0514  [ 12C45E3CB6D65F73209549E2D02ECA7A, 9DFD9C58B90257C34D52B7156C1D2566BE32EE7BD4699DDE164A5F190EC4D44A ] C:\Windows\System32\propsys.dll
19:13:11.0597 0x0514  C:\Windows\System32\propsys.dll - ok
19:13:11.0597 0x0514  [ 63BFDF555DA2075A77D677829C3CCCD0, 13B0C0576A0158FBEE6C216136F8C66373C8E6592895D3D824EC67147B9190E9 ] C:\Windows\System32\uxtheme.dll
19:13:11.0597 0x0514  C:\Windows\System32\uxtheme.dll - ok
19:13:11.0597 0x0514  [ 0029EBA325F2FC9B6BA46BEE33F32A09, C07A936009FB275D56DC451C7D05B5F5A3F4DCD985C7F02DEE57D674034C602B ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\GdiPlus.dll
19:13:11.0597 0x0514  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\GdiPlus.dll - ok
19:13:11.0613 0x0514  [ EE06B85BC69F18826302348A2AD089E0, 417205797CC9F6C986A863A61179784D9ADCAF1961EF8A4D9042D73C5A86509A ] C:\Windows\System32\dui70.dll
19:13:11.0613 0x0514  C:\Windows\System32\dui70.dll - ok
19:13:11.0613 0x0514  [ 6E1F8165C365D35C8E3C045AF0CDD481, B861360D0A014265A0BEB4CC2FE31EA05AE95120E8B07820C13A044D64C00E2B ] C:\Windows\System32\duser.dll
19:13:11.0613 0x0514  C:\Windows\System32\duser.dll - ok
19:13:11.0613 0x0514  [ 2CFA4569350B7F84F815E9EC34E85766, 8DE5F880F23435256E697C24BDDFA9B8994ACC3FAA063AF274BEC918FE012788 ] C:\Windows\System32\SndVolSSO.dll
19:13:11.0613 0x0514  C:\Windows\System32\SndVolSSO.dll - ok
19:13:11.0628 0x0514  [ 63DF770DF74ACB370EF5A16727069AAF, B8F96336BF87F1153C245D19606CBD10FBE7CF2795BCC762F2A1B57CB7C39116 ] C:\Windows\System32\hid.dll
19:13:11.0628 0x0514  C:\Windows\System32\hid.dll - ok
19:13:11.0628 0x0514  [ 243974EC02F7AE49E4179C54624143AB, 755FA67F7BF10E3C6336788D297FBAA70F28F630852A43A78D3F7D7E3A7ECED0 ] C:\Windows\System32\MMDevAPI.dll
19:13:11.0628 0x0514  C:\Windows\System32\MMDevAPI.dll - ok
19:13:11.0628 0x0514  [ 39C5F32747B3414D1BB216FDB1DEFC58, 6FAE64CB9748304090113903A5AE9E7154BE16BA2EEA7AB3EF04AB9D79B81380 ] C:\Windows\System32\dwmapi.dll
19:13:11.0628 0x0514  C:\Windows\System32\dwmapi.dll - ok
19:13:11.0644 0x0514  [ 7BF5EA753D4CC056B9462A02AC51B160, 34AC885FA8C9D982D3A9FC139BEB031320FDD8AFA06FF5DDDDC8BA4CA1F09EEF ] C:\Windows\System32\xmllite.dll
19:13:11.0644 0x0514  C:\Windows\System32\xmllite.dll - ok
19:13:11.0644 0x0514  [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5, ADD7B965D6D4F1FB4DABF8E40E0322E1FDC4652CA8FD670F487D1E875B770759 ] C:\Windows\System32\WindowsCodecs.dll
19:13:11.0644 0x0514  C:\Windows\System32\WindowsCodecs.dll - ok
19:13:11.0644 0x0514  [ 65BF13016A3C22775F3E17591AE5268A, 7DFE2F99D33D47E4A55ACBE83FE5B536A2983742522629414D5F941043C591D3 ] C:\Windows\System32\VaultCredProvider.dll
19:13:11.0644 0x0514  C:\Windows\System32\VaultCredProvider.dll - ok
19:13:11.0660 0x0514  [ 326C7F76A29897A892AA7726E91C1C67, 64305346B06EC14976130B0B80F14B4D5AB63E5B2A6A7B872EC9CE2BF8FADCD2 ] C:\Windows\System32\winbrand.dll
19:13:11.0660 0x0514  C:\Windows\System32\winbrand.dll - ok
19:13:11.0660 0x0514  [ E59F08ED9D2A128CE436BBFC232247F6, 9CD690C1B7CB6CA59F6AB2752A5AF2FC5A057CCBDA4166900F0AC68296972060 ] C:\Windows\System32\BioCredProv.dll
19:13:11.0660 0x0514  C:\Windows\System32\BioCredProv.dll - ok
19:13:11.0660 0x0514  [ 05BF975CA428E04B462FB90841B37C95, 32ECC8D73337CD3B6BD941EABE80F9F7F277F0375834950B96EE74E114F5CDB3 ] C:\Windows\System32\SmartcardCredentialProvider.dll
19:13:11.0660 0x0514  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
19:13:11.0675 0x0514  [ 108C2CFA5527458C096A699929ECBD80, FEF6737C71D7BF7A926C87E69D93D789EDB8C65EFB9422A1C21328AF54ED69AB ] C:\Windows\System32\credui.dll
19:13:11.0675 0x0514  C:\Windows\System32\credui.dll - ok
19:13:11.0675 0x0514  [ 3FAD263CE1E2A6FFF40D00043B2275E3, 0063D7DAD57CA78C3DCE6A2E7D4FF7A47DBBBBAA33F92AEF747D8102E055D1AA ] C:\Windows\System32\winbio.dll
19:13:11.0675 0x0514  C:\Windows\System32\winbio.dll - ok
19:13:11.0675 0x0514  [ 8CE1A6D16B9077E91E192499EB611C5F, 68BB66B40383F7CA04F314FECC12A346914139A64F72CAE791B882B6CB8DC314 ] C:\Windows\System32\netapi32.dll
19:13:11.0675 0x0514  C:\Windows\System32\netapi32.dll - ok
19:13:11.0675 0x0514  [ 20B3934DB73EABA2B49B7177873CB81F, 492EAC5C51472B43DE11825358AEC4B9E3A081DACFD7513C696D6FE40F302EE5 ] C:\Windows\System32\netutils.dll
19:13:11.0675 0x0514  C:\Windows\System32\netutils.dll - ok
19:13:11.0691 0x0514  [ 68ECCA523ED760AAFC03C5D587569859, CDD734279C8F9F24EA2538BAD8E91EB8C3DD74C33032DB6B2D85C19576B42707 ] C:\Windows\System32\samcli.dll
19:13:11.0691 0x0514  C:\Windows\System32\samcli.dll - ok
19:13:11.0691 0x0514  [ 36B8D5903CEEF0AA42A1EE002BD27FF1, CBD5C4D0E05B9A2657D816B655FFFC386807061594DEAABA754658D3152F7403 ] C:\Windows\System32\vaultcli.dll
19:13:11.0691 0x0514  C:\Windows\System32\vaultcli.dll - ok
19:13:11.0691 0x0514  [ E5A4A1326A02F8E7B59E6C3270CE7202, DCB76016F9AC47E631540874DA208A089F9D529DA9628705A2869B954526BFE0 ] C:\Windows\System32\wkscli.dll
19:13:11.0691 0x0514  C:\Windows\System32\wkscli.dll - ok
19:13:11.0707 0x0514  [ 6D8CACF3B1B54943EFCF420C2D667B37, 64EB621EC68077761A0662BE78D2D17ADA982FCFE4D3BBD3A96D0D990BD8541A ] C:\Windows\System32\certCredProvider.dll
19:13:11.0707 0x0514  C:\Windows\System32\certCredProvider.dll - ok
19:13:11.0707 0x0514  [ FFE4BEC5C187C426A17AE76A773063A6, 0003F7DBCE52F3E7B467FBB6522623E7318E22BC2E1BB5890AFAE29682543F99 ] C:\Windows\System32\rasplap.dll
19:13:11.0707 0x0514  C:\Windows\System32\rasplap.dll - ok
19:13:11.0707 0x0514  [ 839F96DBAAFD3353E0B248A5E0BD2A51, 11DA5AD3EA5FF4766C12B99FB520B3CBE08581ECAF1A2FD1DC5AC835CA78FAC2 ] C:\Windows\System32\rasapi32.dll
19:13:11.0707 0x0514  C:\Windows\System32\rasapi32.dll - ok
19:13:11.0722 0x0514  [ FFA7172354B9256DBB2CDD75F16F33FE, 85B2F014C67C2E52540F17D561793C6633C9E98F12639CCD3854EB1EC34DD035 ] C:\Windows\System32\rasman.dll
19:13:11.0722 0x0514  C:\Windows\System32\rasman.dll - ok
19:13:11.0722 0x0514  [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159, ACE7F85685EB92FC3AB4215122B0469E32F23B196C49F08CDA7791D3122C45DC ] C:\Windows\System32\rtutils.dll
19:13:11.0722 0x0514  C:\Windows\System32\rtutils.dll - ok
19:13:11.0722 0x0514  [ CBD010BFBED9657C3813400AAD03CF8A, 2DD60A291D8F4A44D7D638C83A46CFA618525A72B9D975FB81F8F403699B9AE6 ] C:\Windows\System32\oleacc.dll
19:13:11.0722 0x0514  C:\Windows\System32\oleacc.dll - ok
19:13:11.0738 0x0514  [ FD049C25A168D3DE310D9207B7B6367B, 48966605E7CF87996068AC1A2E563F90F6F152E710323792C633E10BCBA480E4 ] C:\Windows\System32\UIAutomationCore.dll
19:13:11.0738 0x0514  C:\Windows\System32\UIAutomationCore.dll - ok
19:13:11.0738 0x0514  [ D475BBD6FEF8DB2DDE0DA7CCFD2C9042, 8E9D77A216D8DD2BE2B304E60EDF85CE825309E67262FCFF1891AEDE63909599 ] C:\Program Files\Microsoft Security Client\SqmApi.dll
19:13:11.0738 0x0514  C:\Program Files\Microsoft Security Client\SqmApi.dll - ok
19:13:11.0738 0x0514  [ 4A4374946B7884D24FFDFC76BB8B3BCC, A490330ACFE8F4A37C2F00B7C3876FC478F9285B8A803F375F96A8CB09719C15 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
19:13:11.0738 0x0514  C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
19:13:11.0753 0x0514  [ 66AACC19D629336B9915F5DB1A414799, FA5ED9B5B23032A064ACD970C7EC3E82B6AD1FF603895AF2D91B0446BDF5785D ] C:\Program Files\Microsoft Security Client\MpRTP.dll
19:13:11.0753 0x0514  C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
19:13:11.0753 0x0514  [ 1EBE9524683C7C4EED8B8BC93FB6FBCC, 78AF098E270EDE62466557091F14B2D37BDAB488F02E7CC769251FD17C02BA4A ] C:\Windows\System32\fltLib.dll
19:13:11.0753 0x0514  C:\Windows\System32\fltLib.dll - ok
19:13:11.0753 0x0514  [ 50D08A9A4C181B9BC2F1ED2003C99269, 59AD161C1D2EC9A066BFC1D9DE54EA092A31CCE19356DAB873A7D00D904BA100 ] C:\Program Files\Microsoft Security Client\MsMpLics.dll
19:13:11.0753 0x0514  C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok
19:13:11.0769 0x0514  [ E77DC03DD3C8E5A388BF9EED2A28F3D1, ED0DAA975D1EC35CE036F02596218E15CC6A054167628D12A0A5AD91B841F422 ] C:\Windows\System32\drivers\MpFilter.sys
19:13:11.0769 0x0514  C:\Windows\System32\drivers\MpFilter.sys - ok
19:13:11.0769 0x0514  [ 241E015DD809CFB23242F890B1FC575B, 763381DCBACF06FD8D043B14D383B6F4D5295B8E665796C59603F15F3E3E36FC ] C:\Windows\System32\wevtsvc.dll
19:13:11.0769 0x0514  C:\Windows\System32\wevtsvc.dll - ok
19:13:11.0769 0x0514  [ D21DEBAEBB3721D2F28324748059393C, 498BA10AD2FBB8D4EC760BE0D3779C7F6934ECA7D08AFCFBC6FFC40A7E1092C7 ] C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll
19:13:11.0769 0x0514  C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll - ok
19:13:11.0785 0x0514  [ 04AB4AF054F9746F6E3C7377B02CF9C0, 34E73217CB6318FF451B652768E060A9F0B90BD3FDB447DE9B47685A7A344630 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{03B00BB1-0C40-4816-9AB0-E5F18FE3658F}\mpengine.dll
19:13:11.0785 0x0514  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{03B00BB1-0C40-4816-9AB0-E5F18FE3658F}\mpengine.dll - ok
19:13:11.0785 0x0514  [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] C:\Windows\System32\audiosrv.dll
19:13:11.0785 0x0514  C:\Windows\System32\audiosrv.dll - ok
19:13:11.0785 0x0514  [ 139D3AB6AA920C34C50CBFFB9EB7D222, 5A5D205E16E6AFDCC965E4144FE6E104157DE7541D31727520363F2670513940 ] C:\Windows\System32\avrt.dll
19:13:11.0785 0x0514  C:\Windows\System32\avrt.dll - ok
19:13:11.0800 0x0514  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] C:\Windows\System32\mmcss.dll
19:13:11.0800 0x0514  C:\Windows\System32\mmcss.dll - ok
19:13:11.0800 0x0514  [ F68194F74350D4A2ADE98961E33F884C, 75DE3554409C42CA3B6FC1503BCB8CAFF85D5D7703F7E68C38A69AA8EF3FDA81 ] C:\Windows\System32\audiodg.exe
19:13:11.0800 0x0514  C:\Windows\System32\audiodg.exe - ok
19:13:11.0800 0x0514  [ B3C650DA28161CE333AE0063BC82E16D, F564D7BCD5CC74253AEFA5AFF8512C47723197B8DE79C63EBD5DEFD989BA3B08 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{03B00BB1-0C40-4816-9AB0-E5F18FE3658F}\mpasbase.vdm
19:13:11.0800 0x0514  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{03B00BB1-0C40-4816-9AB0-E5F18FE3658F}\mpasbase.vdm - ok
19:13:11.0800 0x0514  [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] C:\Windows\System32\cscsvc.dll
19:13:11.0800 0x0514  C:\Windows\System32\cscsvc.dll - ok
19:13:11.0816 0x0514  [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] C:\Windows\System32\gpsvc.dll
19:13:11.0816 0x0514  C:\Windows\System32\gpsvc.dll - ok
19:13:11.0816 0x0514  [ 772F44012DBE49DE894976AE2259A659, 34C7E200D075087A4084EF8947D5FC5A2511CC02A8A34AF8CFEEB5691364E522 ] C:\Windows\System32\PeerDist.dll
19:13:11.0816 0x0514  C:\Windows\System32\PeerDist.dll - ok
19:13:11.0816 0x0514  [ 104A1070E90F1C530328E69B49718841, C5EBDD404F92E185467C390CC30DB4BD7BE0193536DD5708277662D4B0EA38D1 ] C:\Windows\System32\nlaapi.dll
19:13:11.0816 0x0514  C:\Windows\System32\nlaapi.dll - ok
19:13:11.0832 0x0514  [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] C:\Windows\System32\themeservice.dll
19:13:11.0832 0x0514  C:\Windows\System32\themeservice.dll - ok
19:13:11.0832 0x0514  [ F10E5311E5093FA3C00FF88C54C32FCA, B557F5B00D77F030850D9AAC0FFEFC4C2A759EC4081C8459C9DEAE51BAAACC65 ] C:\Windows\System32\atl.dll
19:13:11.0832 0x0514  C:\Windows\System32\atl.dll - ok
19:13:11.0832 0x0514  [ 2F040CF0613A6D64DCBBA9EE81F5A5AE, DA16117429AF47230CD7C136407C81951B8D2E45A8B7A9DC6948407AA2EC4ADD ] C:\Windows\System32\dsrole.dll
19:13:11.0832 0x0514  C:\Windows\System32\dsrole.dll - ok
19:13:11.0847 0x0514  [ 43CA4CCC22D52FB58E8988F0198851D0, DF67BD70D9D82677AE61244B4E54677A5008A7F5EB531DF2A7E7D33F1658EA78 ] C:\Windows\System32\profsvc.dll
19:13:11.0847 0x0514  C:\Windows\System32\profsvc.dll - ok
19:13:11.0847 0x0514  [ 8B74CEC6980D4816B0037AE9A27E538F, 8721EDB4C51BF6020002FA5DDB1987C68590F9F433A2F18D9756B2DAC7542CB6 ] C:\Windows\System32\slc.dll
19:13:11.0847 0x0514  C:\Windows\System32\slc.dll - ok
19:13:11.0847 0x0514  [ 544EFF88AC6C85DF5A4D6F18DFE08CFC, D688381F42062FD5D868E7770857C5951C41BA20A1B6E6F60B5D9536C02CD293 ] C:\Windows\System32\taskschd.dll
19:13:11.0847 0x0514  C:\Windows\System32\taskschd.dll - ok
19:13:11.0863 0x0514  [ 1623AB5FE29564EBB45353C2F64ABF52, 6573B9D53221C594AABB6E36C2C614D64361CA07D4127FB6349E07642ABC6DCD ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{03B00BB1-0C40-4816-9AB0-E5F18FE3658F}\mpasdlta.vdm
19:13:11.0863 0x0514  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{03B00BB1-0C40-4816-9AB0-E5F18FE3658F}\mpasdlta.vdm - ok
19:13:11.0863 0x0514  [ A12829E9974F57E9B5DBFEA7C93190F6, 1EC2A36CAF30A706B6082C5CA79B6A33FA99342E144508DB1415D1611E631EBC ] C:\Windows\System32\UXInit.dll
19:13:11.0863 0x0514  C:\Windows\System32\UXInit.dll - ok
19:13:11.0863 0x0514  [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] C:\Windows\System32\es.dll
19:13:11.0863 0x0514  C:\Windows\System32\es.dll - ok
19:13:11.0878 0x0514  [ C5A99A4C0DC9F0F5A95BA0C83D30A549, F99CCCE303F0FC07D82D3BBA223E8CCE41FB7FA8FB5C2A9214C161826537C7C9 ] C:\Windows\System32\mstask.dll
19:13:11.0878 0x0514  C:\Windows\System32\mstask.dll - ok
19:13:11.0878 0x0514  [ 808D8A8B2A3074002852BC856D419576, 1AFDEAAD071D398F4663E82D58510ABC0A30048018866C59AB53D3ECB6E6D349 ] C:\Windows\System32\comres.dll
19:13:11.0878 0x0514  C:\Windows\System32\comres.dll - ok
19:13:11.0878 0x0514  [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] C:\Windows\System32\Sens.dll
19:13:11.0878 0x0514  C:\Windows\System32\Sens.dll - ok
19:13:11.0894 0x0514  [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] C:\Windows\System32\uxsms.dll
19:13:11.0894 0x0514  C:\Windows\System32\uxsms.dll - ok
19:13:11.0894 0x0514  [ 8D1E1E529A2C9E9B6A85B55A345F7629, 64B637CFE2AF58A4F7CE6D8C3D603F8EFD527500F7137E0A37840313C712CA93 ] C:\Windows\System32\WUDFSvc.dll
19:13:11.0894 0x0514  C:\Windows\System32\WUDFSvc.dll - ok
19:13:11.0894 0x0514  [ 00000000000000000000000000000000, 0000000000000000000000000000000000000000000000000000000000000000 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{03B00BB1-0C40-4816-9AB0-E5F18FE3658F}\mpavbase.vdm
19:13:11.0894 0x0514  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{03B00BB1-0C40-4816-9AB0-E5F18FE3658F}\mpavbase.vdm - ok
19:13:11.0910 0x0514  [ 09695BE5C66F4A5D2C96B8A07288BB86, E899DD53F9CBB926A4000A85330C8C5FF4A2455B7921B11880F580D97C64D5FA ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{03B00BB1-0C40-4816-9AB0-E5F18FE3658F}\mpavdlta.vdm
19:13:11.0910 0x0514  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{03B00BB1-0C40-4816-9AB0-E5F18FE3658F}\mpavdlta.vdm - ok
19:13:11.0910 0x0514  [ 9FBCFD7E88A7ACE0E94456504895DD7F, 831E3AF2B941558BAE5E0F9EE6E7C69933C38CA5CF1F1955B8932291866E7CFD ] C:\Windows\System32\WUDFPlatform.dll
19:13:11.0910 0x0514  C:\Windows\System32\WUDFPlatform.dll - ok
19:13:11.0910 0x0514  [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] C:\Windows\System32\drivers\lltdio.sys
19:13:11.0910 0x0514  C:\Windows\System32\drivers\lltdio.sys - ok
19:13:11.0925 0x0514  [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] C:\Windows\System32\drivers\rspndr.sys
19:13:11.0925 0x0514  C:\Windows\System32\drivers\rspndr.sys - ok
19:13:11.0925 0x0514  [ A90DC9ABD65DB1A8902F361103029952, 26798758976CE53251AC342B966BE0363AE1794BD965C452F5DEBC33E18969F0 ] C:\Windows\System32\IPHLPAPI.DLL
19:13:11.0925 0x0514  C:\Windows\System32\IPHLPAPI.DLL - ok
19:13:11.0925 0x0514  [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] C:\Windows\System32\lmhsvc.dll
19:13:11.0925 0x0514  C:\Windows\System32\lmhsvc.dll - ok
19:13:11.0941 0x0514  [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] C:\Windows\System32\nsisvc.dll
19:13:11.0941 0x0514  C:\Windows\System32\nsisvc.dll - ok
19:13:11.0941 0x0514  [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] C:\Windows\System32\dhcpcore.dll
19:13:11.0941 0x0514  C:\Windows\System32\dhcpcore.dll - ok
19:13:11.0941 0x0514  [ 2FE30D71919C51131405797620E0A714, 16060DDC32EF95EB6E37B91D50A96AB53CB0DEBB3DFDCB31975D16361092ABA5 ] C:\Windows\System32\dnsrslvr.dll
19:13:11.0941 0x0514  C:\Windows\System32\dnsrslvr.dll - ok
19:13:11.0941 0x0514  [ D2A937964199F647B1C3BC435712E5D9, 03029296547750229C0C484CD09D67286096B92661C41DF67C60019DEF75A2F7 ] C:\Windows\System32\nrpsrv.dll
19:13:11.0941 0x0514  C:\Windows\System32\nrpsrv.dll - ok
19:13:11.0957 0x0514  [ CFF35B879D1618D42C86644C717BA947, 1837275202628D3320867A3BF8CFDA15491730C4B74215F7C0D7E140BF01AC3C ] C:\Windows\System32\winnsi.dll
19:13:11.0957 0x0514  C:\Windows\System32\winnsi.dll - ok
19:13:11.0957 0x0514  [ 990A58A0B01720E419B55EFC5FF387F8, 274B89807C4C17DD4D9B39CA2C8643B7A3927CC23D38A434E6837D158D328E72 ] C:\Windows\System32\dhcpcore6.dll
19:13:11.0957 0x0514  C:\Windows\System32\dhcpcore6.dll - ok
19:13:11.0957 0x0514  [ 100103C6535C66265267F5EEA5F5846E, DC5972BC1FCABDC51E4DF4D5124D408BB03F2EFAF25AB70C921DD7A03A12DFD4 ] C:\Windows\System32\dnsext.dll
19:13:11.0957 0x0514  C:\Windows\System32\dnsext.dll - ok
19:13:11.0972 0x0514  [ 03A03A453F1AAAE0C73AAAF895321C7A, BB46C581347EDA9CAF287E24163A593F07BD723E1C250ADD8E5C46BB349B668C ] C:\Windows\System32\FWPUCLNT.DLL
19:13:11.0972 0x0514  C:\Windows\System32\FWPUCLNT.DLL - ok
19:13:11.0972 0x0514  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3, 2A610BEB16610FE2F2E9A50477A62A05481E8A5843A814955A0EDFF45D0304B3 ] C:\Windows\System32\dhcpcsvc.dll
19:13:11.0972 0x0514  C:\Windows\System32\dhcpcsvc.dll - ok
19:13:11.0972 0x0514  [ 29CA5974FAB0E8AE4AA7814FE05CF832, ADE54D406AAB7C364851AAD278A569426C9ADD4F7FB543BB08428CED963BF541 ] C:\Windows\System32\dhcpcsvc6.dll
19:13:11.0972 0x0514  C:\Windows\System32\dhcpcsvc6.dll - ok
19:13:11.0988 0x0514  [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] C:\Windows\System32\shsvcs.dll
19:13:11.0988 0x0514  C:\Windows\System32\shsvcs.dll - ok
19:13:11.0988 0x0514  [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] C:\Windows\System32\schedsvc.dll
19:13:11.0988 0x0514  C:\Windows\System32\schedsvc.dll - ok
19:13:11.0988 0x0514  [ 38B13C0DF479DBA23ECFA815159BA86E, C289C65AF3FB689AD6B770AB0E815860D9EA36FB2A8DE9F1818C63AD0FE47CBD ] C:\Windows\System32\ktmw32.dll
19:13:11.0988 0x0514  C:\Windows\System32\ktmw32.dll - ok
19:13:12.0003 0x0514  [ E6D90DC604F407B3B5E0FD285E46B2A0, 41C0E25E93E6985445410B23058B8972E7720464ABDB41D84FF10CCAC204921A ] C:\Windows\System32\fveapi.dll
19:13:12.0003 0x0514  C:\Windows\System32\fveapi.dll - ok
19:13:12.0003 0x0514  [ C87F28A34B3840F4B40011D170B1A159, 4FB94B9197C5FA73E1A74BA8DCD4ACE830C927FD67B117426714CCD7396E3CB9 ] C:\Windows\System32\fvecerts.dll
19:13:12.0003 0x0514  C:\Windows\System32\fvecerts.dll - ok
19:13:12.0003 0x0514  [ EAFC149CD3BD78C443E31BB157841197, 9045425B0C7A23D5A96D1084FB3B1DED35852B3FB1DCB942DEB4A5B906126CA4 ] C:\Windows\System32\tbs.dll
19:13:12.0003 0x0514  C:\Windows\System32\tbs.dll - ok
19:13:12.0019 0x0514  [ E2D56AE1D40E3725084054CD8E9CFBB1, 7548C22DE09DCCC9BA41BA1DE331CFD0B18DDA00A40E27DFB8EA551CDF7050BC ] C:\Windows\System32\wiarpc.dll
19:13:12.0019 0x0514  C:\Windows\System32\wiarpc.dll - ok
19:13:12.0019 0x0514  [ C50799F0D47DFB9774F721521B6C41D5, CF01745A461C6F69C1AE57940FC32BC8956674D78FCE7CF19C7C7B7460DF720F ] C:\Windows\System32\mshtml.dll
19:13:12.0019 0x0514  C:\Windows\System32\mshtml.dll - ok
19:13:12.0019 0x0514  [ 28366E8BC96A2B7561DE1EE641B35B0C, 8A4BD7F05A04BB9DC531183E27598444B6171E137BBAD2BBC878080E9D7ABDA9 ] C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll
19:13:12.0019 0x0514  C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll - ok
19:13:12.0035 0x0514  [ 60AFE8883F45F41234BEEEF16660129A, 4807C38F9A57F5E91DB106779E606D7491E1FCE59C02E30A47FAB64C66A03332 ] C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
19:13:12.0035 0x0514  C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe - ok
19:13:12.0035 0x0514  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] C:\Windows\System32\netprofm.dll
19:13:12.0035 0x0514  C:\Windows\System32\netprofm.dll - ok
19:13:12.0035 0x0514  [ 1C3E8371377E988B683797A132EFFE1B, CC4A9B9084F163428973A04D77CADDAA838C5761BF9E55971FAD7275BB9D2194 ] C:\Windows\System32\taskcomp.dll
19:13:12.0035 0x0514  C:\Windows\System32\taskcomp.dll - ok
19:13:12.0050 0x0514  [ D4DC85256833834B65E1D77CF8785D27, DE583C69C9171CB2BE6CFB26C63FD3F7C210B7669E1BC64192C4C437FCC4C9DC ] C:\Windows\System32\nvsvc.dll
19:13:12.0050 0x0514  C:\Windows\System32\nvsvc.dll - ok
19:13:12.0050 0x0514  [ AC8C80DC4F1A6E60C9A762C1799F0B39, 9FD3A62B4E476CBE6D94D587826B5D8C6EB8208035A20B8E17749312C251FD6A ] C:\Windows\System32\adtschema.dll
19:13:12.0050 0x0514  C:\Windows\System32\adtschema.dll - ok
19:13:12.0050 0x0514  [ 827CB0D6C3F8057EA037FF271F8E9795, 82760DBDDD38D2A31CAAF51D065DF4E7E1D0F0C22733A0AF653776EBF7B79470 ] C:\Windows\System32\imageres.dll
19:13:12.0050 0x0514  C:\Windows\System32\imageres.dll - ok
19:13:12.0050 0x0514  [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] C:\Windows\System32\drivers\http.sys
19:13:12.0050 0x0514  C:\Windows\System32\drivers\http.sys - ok
19:13:12.0066 0x0514  [ 8B0B4C5927A333A05513791758350DC4, 52FF08569678F3DA6D52FAE200E4C8C85E986805987EF1CDC0616C29664E7D64 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
19:13:12.0066 0x0514  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
19:13:12.0066 0x0514  [ 31B4609D50BE4BB908BDC2E8CFBD5C38, 08663A0FE0CEE9218B79F5C0D0BCCB854752DBE33EF7041D9FC254900BC3FBE6 ] C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll
19:13:12.0066 0x0514  C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll - ok
19:13:12.0066 0x0514  [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] C:\Windows\System32\drivers\fltMgr.sys
19:13:12.0066 0x0514  C:\Windows\System32\drivers\fltMgr.sys - ok
19:13:12.0082 0x0514  [ D93A937A2A9D2CBC06B3A615A197011F, E55028F641512EC22CEC4674F7E380FE71059A21E51ECB345DDB769A276F30D1 ] C:\Windows\System32\PSHED.DLL
19:13:12.0082 0x0514  C:\Windows\System32\PSHED.DLL - ok
19:13:12.0082 0x0514  [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] C:\Windows\System32\MPSSVC.dll
19:13:12.0082 0x0514  C:\Windows\System32\MPSSVC.dll - ok
19:13:12.0082 0x0514  [ 866A43013535DC8587C258E43579C764, B2BE846B5167A2ECD1E30C69A81385FCC6EAE6033394D08458A5583D311C4D82 ] C:\Windows\System32\spoolsv.exe
19:13:12.0082 0x0514  C:\Windows\System32\spoolsv.exe - ok
19:13:12.0097 0x0514  [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] C:\Windows\System32\BFE.DLL
19:13:12.0097 0x0514  C:\Windows\System32\BFE.DLL - ok
19:13:12.0097 0x0514  [ 1F5497D7D3D79C7BF0AB0C8B4C5BFE6E, 27848861F25C00168A1A0FE0722D8E327D2251C4FB69A7968EE5722ECCD129E3 ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
19:13:12.0097 0x0514  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
19:13:12.0097 0x0514  [ FCAFAEF6798D7B51FF029F99A9898961, BFB37686B1386EB883B99DB6AC342C20514939F8B7A5CEC5D63865B3DC2B4D4F ] C:\Windows\System32\drivers\bowser.sys
19:13:12.0097 0x0514  C:\Windows\System32\drivers\bowser.sys - ok
19:13:12.0113 0x0514  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] C:\Windows\System32\drivers\mpsdrv.sys
19:13:12.0113 0x0514  C:\Windows\System32\drivers\mpsdrv.sys - ok
19:13:12.0113 0x0514  [ B272B4C3E085EA860C12F2E4FAF2FFA2, DA99D8223D9FB7BFA52E66B73D1E1AA47B76B45A649400F7898E8D65D8672E52 ] C:\Windows\System32\drivers\mrxsmb.sys
19:13:12.0113 0x0514  C:\Windows\System32\drivers\mrxsmb.sys - ok
19:13:12.0113 0x0514  [ 9AC33EF26C8A3AD0F117D00EB7301D03, 403445B07DC55F9DF98CA11AC87D4231187A2472A4E107786A5845B213355F0A ] C:\Windows\System32\drivers\mrxsmb10.sys
19:13:12.0113 0x0514  C:\Windows\System32\drivers\mrxsmb10.sys - ok
19:13:12.0128 0x0514  [ E0ABDB5ED7E199E242A7D028E76C1D3A, 4014A1F0720F6D15A2FB0CF4F1F970595BC29929F92F461CDD68E4513F49563E ] C:\Windows\System32\drivers\mrxsmb20.sys
19:13:12.0128 0x0514  C:\Windows\System32\drivers\mrxsmb20.sys - ok
19:13:12.0128 0x0514  [ 019C372B1A9DA73A22D0D35A4D40F5C9, 6DDAF455D528FDC2F8271E5909289E76E54D81AC5563433653FC7E0C6EA5BB70 ] C:\Windows\System32\wfapigp.dll
19:13:12.0128 0x0514  C:\Windows\System32\wfapigp.dll - ok
19:13:12.0128 0x0514  [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] C:\Windows\System32\wkssvc.dll
19:13:12.0128 0x0514  C:\Windows\System32\wkssvc.dll - ok
19:13:12.0144 0x0514  [ A585BEBF7D054BD9618EDA0922D5484A, 340DF730E88F8B6A4EF542F620EBA2A720546AFAB4DFFA00F066B7610A1026C5 ] C:\Windows\System32\cryptsvc.dll
19:13:12.0144 0x0514  C:\Windows\System32\cryptsvc.dll - ok
19:13:12.0144 0x0514  [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] C:\Windows\System32\dps.dll
19:13:12.0144 0x0514  C:\Windows\System32\dps.dll - ok
19:13:12.0144 0x0514  [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] C:\Windows\System32\drivers\parvdm.sys
19:13:12.0144 0x0514  C:\Windows\System32\drivers\parvdm.sys - ok
19:13:12.0160 0x0514  [ F95622F161474511B8D80D6B093AA610, F2320E25EB9B4AA9A8366BD3AA23EABEBE111A5610D3A62EBA47D90427D5BC26 ] C:\Windows\System32\IKEEXT.DLL
19:13:12.0160 0x0514  C:\Windows\System32\IKEEXT.DLL - ok
19:13:12.0160 0x0514  [ 13337A3FB17F2242487FD45488ED0485, C174F8652118876494336AB88A65D594E0E6CCBAB20CC6BA08E6B253855A01CA ] C:\Windows\System32\vssapi.dll
19:13:12.0160 0x0514  C:\Windows\System32\vssapi.dll - ok
19:13:12.0160 0x0514  [ D84AEA3F3329D622DFC1297DDDF6163B, 316FE56CC30ED1473A917253F46B79EAA12F4ABD5B4B1ADB03929DFEE940F577 ] C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
19:13:12.0160 0x0514  C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe - ok
19:13:12.0160 0x0514  [ 7F8678C59F188528D60104E697C2361E, 9B4D262B10CB09543ACA9A78482F4EDD905791D2C8C518B574EBA440A71A85B7 ] C:\Windows\System32\mscms.dll
19:13:12.0160 0x0514  C:\Windows\System32\mscms.dll - ok
19:13:12.0175 0x0514  [ D5AEFAD57C08349A4393D987DF7C715D, C36A45BC2448DF30CD17BD2F8A17FC196FAFB685612CACCEB22DC7B58515C201 ] C:\Windows\System32\winmm.dll
19:13:12.0175 0x0514  C:\Windows\System32\winmm.dll - ok
19:13:12.0175 0x0514  [ 18AB2E5A40064ED5F7791AC5946A90F3, B7536CE56702C23B1CEC3E1B6C78866E0A76808B85A92AF3733D9ED9429E004C ] C:\Windows\System32\msimg32.dll
19:13:12.0175 0x0514  C:\Windows\System32\msimg32.dll - ok
19:13:12.0175 0x0514  [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] C:\Windows\System32\pcasvc.dll
19:13:12.0175 0x0514  C:\Windows\System32\pcasvc.dll - ok
19:13:12.0191 0x0514  [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] C:\Windows\System32\snmptrap.exe
19:13:12.0191 0x0514  C:\Windows\System32\snmptrap.exe - ok
19:13:12.0191 0x0514  [ BE9441667B4295997738FAABF2F45752, 77E490B3356F6DC69CDB55ABCF0126018882586F83F75372D70655572A45C774 ] C:\Program Files\NVIDIA Corporation\Display\nvui.dll
19:13:12.0191 0x0514  C:\Program Files\NVIDIA Corporation\Display\nvui.dll - ok
19:13:12.0191 0x0514  [ 5845B1C54380FB980F68024B3A8B1E66, A7215D59B5C452F1494CFEC0DFC1E4ABE2D17EA0E1D07FBA062901BC3DED21AF ] C:\Windows\System32\vpnikeapi.dll
19:13:12.0191 0x0514  C:\Windows\System32\vpnikeapi.dll - ok
19:13:12.0207 0x0514  [ E223D2851906B84F52E1B75EA16198F9, 645E9CC72D5154E8BB8C15A23AC49B1EDD1A3E0569316A047824C11D1A10659A ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\ServiceModelEvents.dll
19:13:12.0207 0x0514  C:\Windows\Microsoft.NET\Framework\v4.0.30319\ServiceModelEvents.dll - ok
19:13:12.0207 0x0514  [ A2F17346CC5C502D4E29EF986BD17D34, 786E1DA5DBE8B56A8708F361425059EC6DB89C43FD4A136090BAB44B084CC204 ] C:\Windows\System32\PeerDistSh.dll
19:13:12.0207 0x0514  C:\Windows\System32\PeerDistSh.dll - ok
19:13:12.0207 0x0514  [ B940289C83121046BD6A60ACC6028593, EBD1C2C0A8EBB201924536AB5C6E032C12B9E081A153CC079748E1D6D625F0DF ] C:\Windows\System32\vsstrace.dll
19:13:12.0207 0x0514  C:\Windows\System32\vsstrace.dll - ok
19:13:12.0222 0x0514  [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] C:\Windows\System32\sstpsvc.dll
19:13:12.0222 0x0514  C:\Windows\System32\sstpsvc.dll - ok
19:13:12.0222 0x0514  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] C:\Windows\System32\provsvc.dll
19:13:12.0222 0x0514  C:\Windows\System32\provsvc.dll - ok
19:13:12.0222 0x0514  [ 9B48E38C35F08FA831B387A0B27C40AA, A36F22314DC6D183DE1853FCAB4ED8A9C7A851B62F34A7DD5E059B6485B34C2C ] C:\Program Files\Malwarebytes Anti-Malware\mbamsrv.dll
19:13:12.0222 0x0514  C:\Program Files\Malwarebytes Anti-Malware\mbamsrv.dll - ok
19:13:12.0238 0x0514  [ BDAC1AA64495D0F7E1FF810EBBF1F018, 7920E2381307574C5C4562CF1FF8F79F91204102051FCD708FA4E6A941422084 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
19:13:12.0238 0x0514  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
19:13:12.0238 0x0514  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8, B1A9B2EF000917214C0198958CBD239D1D91B1720EC40DF041262A34D302AD74 ] C:\Windows\System32\winspool.drv
19:13:12.0238 0x0514  C:\Windows\System32\winspool.drv - ok
19:13:12.0238 0x0514  [ 30490EED6A1E20E8259C0B9C58F488FE, C8CE687EFFED31AD75D79A52D49E83F39BEE5FD9A1A67EC586BA930650A73D6C ] C:\Program Files\Malwarebytes Anti-Malware\QtCore4.dll
19:13:12.0238 0x0514  C:\Program Files\Malwarebytes Anti-Malware\QtCore4.dll - ok
19:13:12.0253 0x0514  [ 30EDD6A7D7DD83648CC6B0A4ECDBF2FB, 3DD96CF11B877684EE86E8BACBBEE8E1BDAF027BA6CBC20FB818A9120E41AF28 ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll
19:13:12.0253 0x0514  C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok
19:13:12.0253 0x0514  [ A8CDF3768604FF95B54669E20053D569, 2DB85B86C839341F2A879A6D25F787D17EE665D425C1BAC3E1F82BAC61F89F94 ] C:\Windows\System32\wscapi.dll
19:13:12.0253 0x0514  C:\Windows\System32\wscapi.dll - ok
19:13:12.0253 0x0514  [ A63DC5C2EA944E6657203E0C8EDEAF61, F7AD4B09AFB301CE46DF695B22114331A57D52E6D4163FF74787BF68CCF44C78 ] C:\Windows\System32\dllhost.exe
19:13:12.0253 0x0514  C:\Windows\System32\dllhost.exe - ok
19:13:12.0269 0x0514  [ 0B31464B7B2D616BD5F7036673588EC1, AAC717D7FB02D5F7CC11AECC5C87FE6B7224340C569EBF7B77BD8C9F79FAA190 ] C:\Windows\System32\IDStore.dll
19:13:12.0269 0x0514  C:\Windows\System32\IDStore.dll - ok
19:13:12.0269 0x0514  [ ED6EE83D61EBC683C2CD8E899EA6FEBE, F82592908D038C44D9F2E5C5B7BC663A2D370FC565F40420E1138A9E55F0E7EB ] C:\Windows\System32\rasadhlp.dll
19:13:12.0269 0x0514  C:\Windows\System32\rasadhlp.dll - ok
19:13:12.0269 0x0514  [ D33E95C0A2754061233B58DC41F8094C, C957FD018DCCC8EA4BFD0EBB16A8A65B5F8AD543929EE92251C8718872BBA628 ] C:\Windows\System32\umb.dll
19:13:12.0269 0x0514  C:\Windows\System32\umb.dll - ok
19:13:12.0269 0x0514  [ 7FA8BA5A780E4757964AC9D4238302B9, 65E3D8CE737896647065103FBB4D58E6A34171D0A48662A832CFDAC3CF469701 ] C:\Windows\System32\taskhost.exe
19:13:12.0269 0x0514  C:\Windows\System32\taskhost.exe - ok
19:13:12.0285 0x0514  [ 12C4E95F468A5FD3FBB8166E27ED4D53, A8F39CA0BF93C192FF322F4AD0D1F355D32629734543F1ACB894C04C19ED8532 ] C:\Windows\System32\localspl.dll
19:13:12.0285 0x0514  C:\Windows\System32\localspl.dll - ok
19:13:12.0285 0x0514  [ 7319102526BD11B45FD66335CF90CA12, F2C7484AE33BEDE8586FB09273665B25DA7E8FEEACF9FEF43EB0B902CE4A0BD9 ] C:\Windows\System32\HotStartUserAgent.dll
19:13:12.0285 0x0514  C:\Windows\System32\HotStartUserAgent.dll - ok
19:13:12.0285 0x0514  [ 03CF941D031F30272D3063E5A4D686F5, 641189DA98156FC8DFABF766EB34726F64E5901AF5F74B42C392C218C892F179 ] C:\Windows\System32\PrintIsolationProxy.dll
19:13:12.0285 0x0514  C:\Windows\System32\PrintIsolationProxy.dll - ok
19:13:12.0300 0x0514  [ 629181C26A78EB66B0B4E774E5AC2882, DE39D01ADC4123C81EF77B24D7FC2F66C27CC2D31248EF53C52CD31AC90A95CE ] C:\Windows\System32\spoolss.dll
19:13:12.0300 0x0514  C:\Windows\System32\spoolss.dll - ok
19:13:12.0300 0x0514  [ 126F8331BD023178C7F0EF2F5EDE16B3, F56DDCC9F282274F2EB073CE33B0CAB7EFC759B9C39B19909FE901E89DA0307F ] C:\Windows\System32\FXSMON.dll
19:13:12.0300 0x0514  C:\Windows\System32\FXSMON.dll - ok
19:13:12.0300 0x0514  [ B390C1D825C7687493BEDE237C6C2F25, 969C456E52695E8AECDDF80995F05D18F6F686AA1AE58A9A661C3069CDF5B1BD ] C:\Windows\System32\tcpmon.dll
19:13:12.0300 0x0514  C:\Windows\System32\tcpmon.dll - ok
19:13:12.0316 0x0514  [ 1220595CABA75AB91A6B3FA3B89483CC, 313DFE385336D00DAFBC8DF30F001859C77DEB214BB3F874CE42F22734FFAE4E ] C:\Windows\System32\snmpapi.dll
19:13:12.0316 0x0514  C:\Windows\System32\snmpapi.dll - ok
19:13:12.0316 0x0514  [ 269D867585CDA04D3972A39F3694E7DF, B1FE2C292C52E73A47D77ACB55DFCC4AA07BFDC538B4389D544DCD075CE02476 ] C:\Windows\System32\msxml6.dll
19:13:12.0316 0x0514  C:\Windows\System32\msxml6.dll - ok
19:13:12.0316 0x0514  [ 6357E2B68753A1F5CF4A68A25C4FD14A, F56BFEEACBB9DAE084F4C275DF0086091F5B83DE7183FA33F4445CD31FBB44E3 ] C:\Windows\System32\wsnmp32.dll
19:13:12.0316 0x0514  C:\Windows\System32\wsnmp32.dll - ok
19:13:12.0316 0x0514  [ 923CDD30092DB73EC4A0EBCDDD16C686, 83F94BE7C324FFADCA13780C617A8CAA1C7CD80F205EACA8FBADA83865D1E0D3 ] C:\Windows\System32\usbmon.dll
19:13:12.0316 0x0514  C:\Windows\System32\usbmon.dll - ok
19:13:12.0332 0x0514  [ A8EB761DE499242BECF153B2B34F020E, 3C6F477B5143FCE607FDB088AE471C7037E2BAC01D8CE8C57B5CF1BE57E78D46 ] C:\Windows\System32\WSDMon.dll
19:13:12.0332 0x0514  C:\Windows\System32\WSDMon.dll - ok
19:13:12.0332 0x0514  [ F58516E2DC0D963EF70D6BFC21FD82C4, 5689BF12B43BE0D6BFBD6B9122A2FF53FCEC766A58A0F3C6B88AE504ACB10E04 ] C:\Windows\System32\PlaySndSrv.dll
19:13:12.0332 0x0514  C:\Windows\System32\PlaySndSrv.dll - ok
19:13:12.0332 0x0514  [ 73F6C5223F7E9B5780DD4A6C30FCF569, 121A361A572EFC6AC964300DA93BF28DC11E55DDCA29A7C6E6FD12955FBA68B8 ] C:\Windows\System32\WSDApi.dll
19:13:12.0347 0x0514  C:\Windows\System32\WSDApi.dll - ok
19:13:12.0347 0x0514  [ DB846EECA70EE9D2E2FF31147C57B0F4, 1086310477697F43EB156314804B7E9100E04966EF3934F9F5E37112C5129954 ] C:\Windows\System32\webservices.dll
19:13:12.0347 0x0514  C:\Windows\System32\webservices.dll - ok
19:13:12.0347 0x0514  [ 89D90579E5FB1469CB0464F6512E42B7, 0E85C6935FEAA219C923FF63D17F7C3AF72FF5028E0FF95B66092C6DF64C665C ] C:\Windows\System32\fundisc.dll
19:13:12.0347 0x0514  C:\Windows\System32\fundisc.dll - ok
19:13:12.0347 0x0514  [ F34CFADA6C48DAA41B996D24C7D8D3CA, D294DECC607A6ED7264BEC41FDA3BF12D3F2B3FAFAF55F0C5F2235A9066C97EC ] C:\Windows\System32\fdPnp.dll
19:13:12.0347 0x0514  C:\Windows\System32\fdPnp.dll - ok
19:13:12.0363 0x0514  [ CD72C6406BA561BED6D42CB145E55307, F5DD79FCE5CAA5049C74462B366509356B8B5CCB68E14586ED95CDF98F307787 ] C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll
19:13:12.0363 0x0514  C:\Windows\System32\spool\prtprocs\w32x86\winprint.dll - ok
19:13:12.0363 0x0514  [ B43687C534A49700BF4B3C9898763752, B4C371CB2C0EAC1803E6C845F629814B2CE4C568022EB6A1C9AC1F293BF74F40 ] C:\Windows\System32\MsCtfMonitor.dll
19:13:12.0363 0x0514  C:\Windows\System32\MsCtfMonitor.dll - ok
19:13:12.0363 0x0514  [ 56CEED370508F69A1BA04939BD1BADDA, C84F383F2B3C9581F635E51DA39567F0B5ED2D847B18CCE51022BA4B2FA7EA8D ] C:\Windows\System32\msutb.dll
19:13:12.0363 0x0514  C:\Windows\System32\msutb.dll - ok
19:13:12.0378 0x0514  [ 536E06B5A05C6E39C8748E3941FB083D, DB6CAD715D0DD6B25EAC86542921B43E610A92ECC77E747622BCF07A61C0E7FB ] C:\Windows\System32\win32spl.dll
19:13:12.0378 0x0514  C:\Windows\System32\win32spl.dll - ok
19:13:12.0378 0x0514  [ D27DDE7E0444C7F1819F958469EB7D93, EA13616D78F17CCFD77603F7EE2DDDD159100AA3DF78C1FAAEB4695D5AC7218A ] C:\Windows\System32\inetpp.dll
19:13:12.0378 0x0514  C:\Windows\System32\inetpp.dll - ok
19:13:12.0378 0x0514  [ 465BEA35F7ED4A4A57686DEA7EA10F47, 7F1B3CA09AB045F805DA5765BE7DD270F5DDACE3073017F7386FF1E2FA82D6FB ] C:\Windows\System32\cscapi.dll
19:13:12.0378 0x0514  C:\Windows\System32\cscapi.dll - ok
19:13:12.0394 0x0514  [ 065BDDF17B791E2F95853866B5C1F4B4, E31BDC6BC78B963C6C161D05A33C0CA4EC5F2E7269DABDA90E8F0BA64D8B5A28 ] C:\Windows\System32\nvapi.dll
19:13:12.0394 0x0514  C:\Windows\System32\nvapi.dll - ok
19:13:12.0394 0x0514  [ E4B829081E639E42985853BAE754A53D, C94E8E6CE2999ED05D6738A2498F1FD521CE68466CDD3EDC3DDAD71278497879 ] C:\Program Files\Malwarebytes Anti-Malware\msvcp100.dll
19:13:12.0394 0x0514  C:\Program Files\Malwarebytes Anti-Malware\msvcp100.dll - ok
19:13:12.0394 0x0514  [ 80FCEDBE920E9CBE30D9D3665BD6EFED, 5BCA95D4EADADE3046F5F95F9FAD97DF585638B49CCA2184BD0157AE374727C8 ] C:\Program Files\Malwarebytes Anti-Malware\msvcr100.dll
19:13:12.0394 0x0514  C:\Program Files\Malwarebytes Anti-Malware\msvcr100.dll - ok
19:13:12.0410 0x0514  [ 4F45ED469906494F9BF754E476390DBD, D8FF6AFD73D8C191F5732DF9737E6F83B2B52B06A3A6CD4CC6EAC9464CBB2772 ] C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
19:13:12.0410 0x0514  C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe - ok
19:13:12.0410 0x0514  [ F722FA26739EAFCBD8D5F3829B632CD7, 8C7356AFF03748C4D565F3B6CBD4E289910253A3CA6CAE3A118F2C7E419CF649 ] C:\Program Files\Malwarebytes Anti-Malware\mbamcore.dll
19:13:12.0410 0x0514  C:\Program Files\Malwarebytes Anti-Malware\mbamcore.dll - ok
19:13:12.0410 0x0514  [ B9A8CBCFCD3EC9D2EA4740AF347BF108, 97FA304E3880BC863D999F441AE47CB8ADF00D2DEC2A52ACD8FBD02CC096786A ] C:\Windows\System32\mpr.dll
19:13:12.0410 0x0514  C:\Windows\System32\mpr.dll - ok
19:13:12.0425 0x0514  [ 61AC3EFDFACFDD3F0F11DD4FD4044223, 538FE1012FEDC72727A8DE0C2C01944B3D35C29812ECEF88E95AAC07235E0B0B ] C:\Windows\System32\userinit.exe
19:13:12.0425 0x0514  C:\Windows\System32\userinit.exe - ok
19:13:12.0425 0x0514  [ 32FF06EC6D946EF791D98D6C838A3090, 319BDD491CB22D0CCCCE76A2854CF469D7AF046289F9C56CD03AE3D3CBC0275E ] C:\Windows\System32\drivers\NisDrvWFP.sys
19:13:12.0425 0x0514  C:\Windows\System32\drivers\NisDrvWFP.sys - ok
19:13:12.0425 0x0514  [ 912084381D30D8B89EC4E293053F4710, 99B8CD043DF531D4B9725ED167F63CED220608B2FED3EE8250C217D15762DFD7 ] C:\Windows\System32\nlasvc.dll
19:13:12.0425 0x0514  C:\Windows\System32\nlasvc.dll - ok
19:13:12.0441 0x0514  [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] C:\Windows\System32\drivers\PEAuth.sys
19:13:12.0441 0x0514  C:\Windows\System32\drivers\PEAuth.sys - ok
19:13:12.0441 0x0514  [ 75EA62927355189876081EF863064982, 2B0139C8BD7CB8A1C6DC92937F9D8CBB2526615021FE6EE979D9373EA3B640B7 ] C:\Windows\System32\ncsi.dll
19:13:12.0441 0x0514  C:\Windows\System32\ncsi.dll - ok
19:13:12.0441 0x0514  [ CA9F7888B524D8100B977C81F44C3234, 57F3353F89724147D8AC8B69B12C1303DF26978309776F5F8CCF074526A915D3 ] C:\Windows\System32\winhttp.dll
19:13:12.0441 0x0514  C:\Windows\System32\winhttp.dll - ok
19:13:12.0457 0x0514  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] C:\Windows\System32\drivers\secdrv.sys
19:13:12.0457 0x0514  C:\Windows\System32\drivers\secdrv.sys - ok
19:13:12.0457 0x0514  [ CDBE627E16CC9E98F343D73F8E81D258, 25A68A6F943FCBA79A0D97ABC5B2EAEEB65C268F1CB2DD445ABF7E2758DF2802 ] C:\Windows\System32\drivers\srvnet.sys
19:13:12.0457 0x0514  C:\Windows\System32\drivers\srvnet.sys - ok
19:13:12.0457 0x0514  [ 02C61D8AD469417F5508225C75DE3236, 579555AB92DA532D69E14B62064B7D415338A963099BB84B599E1FF55D933787 ] C:\Windows\System32\webio.dll
19:13:12.0457 0x0514  C:\Windows\System32\webio.dll - ok
19:13:12.0472 0x0514  [ 28E2231BD34A39C854BDF3923AB2FF86, A95179068F7B86E04F976B724F155DA86253B7F4414F43DBD95F2058282B99E4 ] C:\Windows\System32\ssdpapi.dll
19:13:12.0472 0x0514  C:\Windows\System32\ssdpapi.dll - ok
19:13:12.0472 0x0514  [ CCA24162E055C3714CE5A88B100C64ED, 9B7712E793B9478BA7A1EF71EA9CC03CCB9C4004C54EAA911F158958519EDCD9 ] C:\Windows\System32\drivers\tcpipreg.sys
19:13:12.0472 0x0514  C:\Windows\System32\drivers\tcpipreg.sys - ok
19:13:12.0472 0x0514  [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] C:\Windows\System32\sysmain.dll
19:13:12.0472 0x0514  C:\Windows\System32\sysmain.dll - ok
19:13:12.0488 0x0514  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] C:\Windows\System32\trkwks.dll
19:13:12.0488 0x0514  C:\Windows\System32\trkwks.dll - ok
19:13:12.0488 0x0514  [ E5DD784A4EE5EBC72A86C677C988FCDB, 5D54C9AF291F8047DD66C31671F279A5D7EE8BCB5E55640F5F976E16211F59DD ] C:\Windows\System32\drivers\srv2.sys
19:13:12.0488 0x0514  C:\Windows\System32\drivers\srv2.sys - ok
19:13:12.0488 0x0514  [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] C:\Windows\System32\wbem\WMIsvc.dll
19:13:12.0488 0x0514  C:\Windows\System32\wbem\WMIsvc.dll - ok
19:13:12.0488 0x0514  [ 704314FD398C81D5F342CAA5DF7B7F21, CDA660E1E8AAE0789780B6B9604B138E67B2BDD1404A5E4C2354B35879D43085 ] C:\Windows\System32\wbemcomn.dll
19:13:12.0488 0x0514  C:\Windows\System32\wbemcomn.dll - ok
19:13:12.0503 0x0514  [ 112127C3B2E64D7680CC39CD0A39DD7E, ABE8B868CFE0EF4DAF886517047DBFD5A9C964983FAA499AC086CCD45BA46366 ] C:\Windows\System32\drivers\srv.sys
19:13:12.0503 0x0514  C:\Windows\System32\drivers\srv.sys - ok
19:13:12.0503 0x0514  [ 4D65A07B795D6674312F879D09AA7663, 8D72FE0B51A6FF71F85D2602DB3AE91C8749F70869B6789552F047BA81411EDA ] C:\Windows\System32\iphlpsvc.dll
19:13:12.0503 0x0514  C:\Windows\System32\iphlpsvc.dll - ok
19:13:12.0503 0x0514  [ 881D9F2D6E04E1C323050CF1574870F7, DA02C415977A2E50C3D1E96E227234E7195BD33903C446A17FBE0FA8D14A164F ] C:\Windows\System32\wbem\WinMgmtR.dll
19:13:12.0503 0x0514  C:\Windows\System32\wbem\WinMgmtR.dll - ok
19:13:12.0519 0x0514  [ 701C9EB15E1E23D22F7C7184C0506673, 1CD59E8B8889C93B55F600DA1A7246810E8EAB725EFEF80327AC96344AC596A6 ] C:\Windows\System32\wbem\WmiDcPrv.dll
19:13:12.0519 0x0514  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
19:13:12.0519 0x0514  [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A, 61B4D669C692775EF361445293163E84FAD8636AC49C8047BE806DB4E4093291 ] C:\Windows\System32\wbem\fastprox.dll
19:13:12.0519 0x0514  C:\Windows\System32\wbem\fastprox.dll - ok


#10 kieran.kccr

kieran.kccr
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:07:21 PM

Posted 17 September 2014 - 08:34 AM

19:13:12.0519 0x0514  [ E3E811471DE781900FF21C1FD84E941E, 2A47FF52D1D6480AAD1919382E783EA184BF926311F8C7E466FEBE9F6FB88FD6 ] C:\Windows\System32\ntdsapi.dll
19:13:12.0519 0x0514  C:\Windows\System32\ntdsapi.dll - ok
19:13:12.0535 0x0514  [ CE292C4C10B8DB6070F262EA2733F0DC, 0A685263DA0277F2D215C4C22BF39E2F869B632B42B8C992E068129F57177BE1 ] C:\Windows\System32\sqmapi.dll
19:13:12.0535 0x0514  C:\Windows\System32\sqmapi.dll - ok
19:13:12.0535 0x0514  [ C5B0324DB461559ADD070E632A6919FA, AB09CACB5B7DD372B27921A5E01220552A611CECA27EF87961001FA467FDED45 ] C:\Windows\System32\wbem\wbemprox.dll
19:13:12.0535 0x0514  C:\Windows\System32\wbem\wbemprox.dll - ok
19:13:12.0535 0x0514  [ A399514D3B28C9A3453A486BBAAFF1C7, 487CAA68CF4EE0C9DC26975C694A2780ADEFB687D1EDF929CE6E1C7E3722FFE9 ] C:\Windows\System32\wdscore.dll
19:13:12.0535 0x0514  C:\Windows\System32\wdscore.dll - ok
19:13:12.0550 0x0514  [ 6E11F33D14D020F58D5E02E4D67DFA19, 9563E4E8CE769B7619745F6F6DE618389A1595785023BF1F295AD8301B27F0AF ] C:\Windows\System32\browser.dll
19:13:12.0550 0x0514  C:\Windows\System32\browser.dll - ok
19:13:12.0550 0x0514  [ E4B72E71EC37A59FE574A998A0C0EB9B, C17B06C936FC47B6AA5221ABF1DDE283F59E5751BEE9CDBCCBAF25CD4E7232AD ] C:\Windows\System32\netmsg.dll
19:13:12.0550 0x0514  C:\Windows\System32\netmsg.dll - ok
19:13:12.0550 0x0514  [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] C:\Windows\System32\srvsvc.dll
19:13:12.0550 0x0514  C:\Windows\System32\srvsvc.dll - ok
19:13:12.0550 0x0514  [ 1FF7E4F548C7C372C804938F0D5B36AE, F20409733F67853CBF51FD83E4DB73260FED7B7A4F361C6B3482D78C990E16FC ] C:\Windows\System32\netcfgx.dll
19:13:12.0550 0x0514  C:\Windows\System32\netcfgx.dll - ok
19:13:12.0566 0x0514  [ 89E783711AF91AF09E1EF30EF3107446, CA91DABED7508A86A4AFA5F99A4A78D0BA3577168B04C8E3462FC4D55FA33FFD ] C:\Windows\System32\sscore.dll
19:13:12.0566 0x0514  C:\Windows\System32\sscore.dll - ok
19:13:12.0566 0x0514  [ AE9898D5600A232CD8AE3298692162E5, 8B94BA9C404B8A21CE023335960E77C73245FB30015161EEFF48573DDB7E6922 ] C:\Windows\System32\clusapi.dll
19:13:12.0566 0x0514  C:\Windows\System32\clusapi.dll - ok
19:13:12.0566 0x0514  [ 6383C60EC0133B14F5705F96369421B2, EAB3FA2344B853148F199F744E716FBB8E9331B9DB588F784274599B6BCE2335 ] C:\Windows\System32\hnetcfg.dll
19:13:12.0566 0x0514  C:\Windows\System32\hnetcfg.dll - ok
19:13:12.0582 0x0514  [ 2AF094C822BD6094F14A8E85FB51D52A, F70A4FEC66E64245237D9D1A4C2C87168A26F224FCE648A3D7065E95259887D2 ] C:\Windows\System32\resutils.dll
19:13:12.0582 0x0514  C:\Windows\System32\resutils.dll - ok
19:13:12.0582 0x0514  [ 4FBC630768570E6AC35C3DE8F6EC79F5, CF4E271683AA4AADF763A5B3081B8135C9D69F2C6D9DED9C3717B085A1BF14CF ] C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
19:13:12.0582 0x0514  C:\Program Files\Malwarebytes Anti-Malware\mbam.exe - ok
19:13:12.0582 0x0514  [ 45D9F6CD2469CDB6A640DD4BD2B01471, 21704ADB83B26DD9C2D4D248FE61F3FEC2003D6748BB6A830334F0FDA9610362 ] C:\Windows\System32\nci.dll
19:13:12.0582 0x0514  C:\Windows\System32\nci.dll - ok
19:13:12.0597 0x0514  [ 585EB475E7AF55C9065256E8FFB751A1, 5AE557013435DF993F0E872B90A94CBB9E80FA8A080469C300EBCEE62CABA92F ] C:\Windows\System32\wbem\wbemcore.dll
19:13:12.0597 0x0514  C:\Windows\System32\wbem\wbemcore.dll - ok
19:13:12.0597 0x0514  [ 5AE88135C6A86FCD67BA16AFBB1C8389, 0FC750B5C84F1AFBE93E8A23410360F4B068D367A9AF6FF2E3F6160DA5005DE5 ] C:\Windows\System32\wbem\esscli.dll
19:13:12.0597 0x0514  C:\Windows\System32\wbem\esscli.dll - ok
19:13:12.0597 0x0514  [ 371E3B05894549113D07CD3081ED55EF, 9973678AC0F50B1F02B379B1D4A7DDF317B724D65BE3FF635FD751EDD1D96B5A ] C:\Windows\System32\wbem\repdrvfs.dll
19:13:12.0597 0x0514  C:\Windows\System32\wbem\repdrvfs.dll - ok
19:13:12.0613 0x0514  [ 776AE0564F8B1C282E331FD95A1BDC5F, 601CFCA3922FFEA46A54AD323845A76A12FC6AF9FF64E9B0AE294FBB1AFCF4CB ] C:\Windows\System32\wbem\wbemsvc.dll
19:13:12.0613 0x0514  C:\Windows\System32\wbem\wbemsvc.dll - ok
19:13:12.0613 0x0514  [ 5610B0425518D185331CB8E968D060E6, E235186C3BF266EE9EC733D2CFF35E3A65DE039C19B14260F4054F34B5E8AD41 ] C:\Windows\System32\wbem\wmiutils.dll
19:13:12.0613 0x0514  C:\Windows\System32\wbem\wmiutils.dll - ok
19:13:12.0613 0x0514  [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] C:\Windows\System32\wdi.dll
19:13:12.0613 0x0514  C:\Windows\System32\wdi.dll - ok
19:13:12.0628 0x0514  [ 42D33042371BFB1A7D40834590CAFD30, 53DA3618EC10293B2DF686E291A4EF6ACBBD41D116EC762D54106D201A784E87 ] C:\Program Files\Microsoft Security Client\NisSrv.exe
19:13:12.0628 0x0514  C:\Program Files\Microsoft Security Client\NisSrv.exe - ok
19:13:12.0628 0x0514  [ C65666EE6C56218B2C5FFB53BFB2FD37, 7DB747920001911A47A54CFE4EB0596345E39F03D2CEDF7BAAD1671CD6317C95 ] C:\Program Files\Microsoft Security Client\NisLog.dll
19:13:12.0628 0x0514  C:\Program Files\Microsoft Security Client\NisLog.dll - ok
19:13:12.0628 0x0514  [ 07D8145BCD7D20EA8694E4FD18451C18, 82E506BC3992CDD097D0C8D9C33FA6A2B7EEBE59BEF00EFA91C845D8C54EF15F ] C:\Windows\System32\nvcpl.dll
19:13:12.0628 0x0514  C:\Windows\System32\nvcpl.dll - ok
19:13:12.0644 0x0514  [ D32C2A98859CB22D57A665F15F351E7D, CD50473C7DD0E57F2784B137F3490DF710BEEAA31E4961DCC90CF6A70632B481 ] C:\Program Files\Malwarebytes Anti-Malware\mbam.dll
19:13:12.0644 0x0514  C:\Program Files\Malwarebytes Anti-Malware\mbam.dll - ok
19:13:12.0644 0x0514  [ 15E21AA7D0C0C994CD565EEB96D13C20, 6B9AC59F8C17C639929E9BF911C20DA55459FA55F490E7E0CC284A9FBC077274 ] C:\Program Files\Malwarebytes Anti-Malware\QtGui4.dll
19:13:12.0644 0x0514  C:\Program Files\Malwarebytes Anti-Malware\QtGui4.dll - ok
19:13:12.0644 0x0514  [ D7588D42E29080C32A003BEE465160D8, 03C23580F133C976A93F0BB5088E811BC2EC8AEB20A81FE54C9ED608B010C506 ] C:\Program Files\Malwarebytes Anti-Malware\QtNetwork4.dll
19:13:12.0644 0x0514  C:\Program Files\Malwarebytes Anti-Malware\QtNetwork4.dll - ok
19:13:12.0660 0x0514  [ A3D6CAD1BDB28463278D23726D7F620B, 04C5A007F2F720E9AD9A9CAE854605DA5C2DB5123A67D5CE4DE7BB866A7C4C00 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9D6C1F6F-FBA5-454F-AEB3-A08D6E639220}\gapaengine.dll
19:13:12.0660 0x0514  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9D6C1F6F-FBA5-454F-AEB3-A08D6E639220}\gapaengine.dll - ok
19:13:12.0660 0x0514  [ 3D500566AAEFC28522D14D098F8EED1A, F3203ED8ABD9350DC545247389EB438FEBBE620AF8605420A8C5175A244E7439 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9D6C1F6F-FBA5-454F-AEB3-A08D6E639220}\nisfull.vdm
19:13:12.0660 0x0514  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9D6C1F6F-FBA5-454F-AEB3-A08D6E639220}\nisfull.vdm - ok
19:13:12.0660 0x0514  [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] C:\Windows\System32\wpdbusenum.dll
19:13:12.0660 0x0514  C:\Windows\System32\wpdbusenum.dll - ok
19:13:12.0675 0x0514  [ ECF036299AA554B5E0455262857B39D0, E7A08E4AA1677291FB55E1B43511B912D45676652E35C6BA75D1604A8BE5B1D0 ] C:\Windows\System32\diagperf.dll
19:13:12.0675 0x0514  C:\Windows\System32\diagperf.dll - ok
19:13:12.0675 0x0514  [ 1B0EC94520CAB89A9CE1B2DA405166AF, 129102C98C8B3D403C85604C9A2AFC0471CDB1212FD2C5487D73FC089FC88F0C ] C:\Windows\System32\p2pcollab.dll
19:13:12.0675 0x0514  C:\Windows\System32\p2pcollab.dll - ok
19:13:12.0675 0x0514  [ 7E82616BEE76BF5EAA5B30F681414E21, 2138D743C4C09ECD829E194CA42934CB044BFF400921DA9B5FA50371E191656E ] C:\Windows\System32\perftrack.dll
19:13:12.0675 0x0514  C:\Windows\System32\perftrack.dll - ok
19:13:12.0691 0x0514  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] C:\Windows\System32\QAGENTRT.DLL
19:13:12.0691 0x0514  C:\Windows\System32\QAGENTRT.DLL - ok
19:13:12.0691 0x0514  [ 590D5C506044FE02FF7643E32FF9BDAC, B8178A45E1DB6A39501E95CE4A2B2A1A88119367EC8DA7877120575A3EA47D16 ] C:\Windows\System32\wer.dll
19:13:12.0691 0x0514  C:\Windows\System32\wer.dll - ok
19:13:12.0691 0x0514  [ 8B794AE6D5C7D42092804BC39A2EB8F6, 0C8078442EABA31D48019F1A3B7941CC19D9B3AA571FFA5DCD4E19F67DEBF723 ] C:\Windows\System32\aepic.dll
19:13:12.0691 0x0514  C:\Windows\System32\aepic.dll - ok
19:13:12.0707 0x0514  [ 9FD6496B6D91C8BE2A10BD55EAE2D5F2, FC71F6CC24FE61BF83DD3E237C00DD0002D84DC303DB9570B241BF8212B8639D ] C:\Windows\System32\fveui.dll
19:13:12.0707 0x0514  C:\Windows\System32\fveui.dll - ok
19:13:12.0707 0x0514  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9, E18D66455D00A6D2A2D7CC0833C233FE8A6DD910B59D6B5B5F82EF91450858DF ] C:\Windows\System32\sfc.dll
19:13:12.0707 0x0514  C:\Windows\System32\sfc.dll - ok
19:13:12.0707 0x0514  [ 84799328D87B3091A3BDD251E1AD31F9, F85521215924388830DBB13580688DB70B46AF4C7D82D549D09086438F8D237B ] C:\Windows\System32\sfc_os.dll
19:13:12.0707 0x0514  C:\Windows\System32\sfc_os.dll - ok
19:13:12.0722 0x0514  [ 15E298B5EC5B89C5994A59863969D9FF, 8D38B2E023462D0804F72E907D11FF72CE84540EA3B8D83F411C602C3F6A1177 ] C:\Windows\System32\npmproxy.dll
19:13:12.0722 0x0514  C:\Windows\System32\npmproxy.dll - ok
19:13:12.0722 0x0514  [ D9B0134913E5EF007AF82A418C503322, 7418DD28C8E968674382F8352AAFFC4DE77887E2B71B8844D615F19432B4C55A ] C:\Windows\System32\wuaueng.dll
19:13:12.0722 0x0514  C:\Windows\System32\wuaueng.dll - ok
19:13:12.0722 0x0514  [ F8E882C10AF4C29E378D1E28D4817CB1, 1164096E044FA9B38CCC462315B9A2F7C43C472091F539F6A4BF7B5EAA389410 ] C:\Windows\System32\pnpts.dll
19:13:12.0722 0x0514  C:\Windows\System32\pnpts.dll - ok
19:13:12.0722 0x0514  [ F0016853FA3F38F55FD868FF74C0359B, 49A6A6D610591D0F2FF8A88C8E72D6DCABB8C5FE5D3E995F0CE0E8FC073BA289 ] C:\Windows\System32\wdiasqmmodule.dll
19:13:12.0722 0x0514  C:\Windows\System32\wdiasqmmodule.dll - ok
19:13:12.0738 0x0514  [ 7FFD52D73352806969D424EF327D10A7, DD44B084F052EF798997D7A8578E98DD4EF3F0E2A0C522DA2CC169D362C7B900 ] C:\Windows\System32\radardt.dll
19:13:12.0738 0x0514  C:\Windows\System32\radardt.dll - ok
19:13:12.0738 0x0514  [ 1A617835452EEE5060976C9B9F5FE635, DCCAAB049681BE876B73F0880EA32196CDA7EC954D452768A48D366096C5BD53 ] C:\Windows\System32\wuapi.dll
19:13:12.0738 0x0514  C:\Windows\System32\wuapi.dll - ok
19:13:12.0738 0x0514  [ 7A6986DD659B96398A11AF5173892715, FB7818952B9015F433418E7DC656A2C20CD682056AB981A55C1722020142D578 ] C:\Windows\System32\cabinet.dll
19:13:12.0738 0x0514  C:\Windows\System32\cabinet.dll - ok
19:13:12.0753 0x0514  [ 3458EDA96E30FBD0477A2800D3FB1909, BDF84362E4D8A102E7FB5F352D950B84D1A8E1E7928521B68E7671D4176803C5 ] C:\Windows\System32\wups.dll
19:13:12.0753 0x0514  C:\Windows\System32\wups.dll - ok
19:13:12.0753 0x0514  [ E59F533C26C8375CD120B4791482217E, FFF66E33DB80C549BD77FAC31FA54C0C5FBD505E2BCE7DDB10B873EA4471D55F ] C:\Program Files\Malwarebytes Anti-Malware\imageformats\qgif4.dll
19:13:12.0753 0x0514  C:\Program Files\Malwarebytes Anti-Malware\imageformats\qgif4.dll - ok
19:13:12.0753 0x0514  [ E98278865E8DABA21CFE5FE4BE34210A, 3BB431A9F6476EA98C17DF46BA5DFA265E74328D84875E402236ED12E50B6330 ] C:\Windows\System32\PortableDeviceApi.dll
19:13:12.0753 0x0514  C:\Windows\System32\PortableDeviceApi.dll - ok
19:13:12.0769 0x0514  [ A3A150AEA8E9224B25C3155CEF678CD1, 4E2C5812692E6D480EAA19D4994E6B9454A21AE11FC5FB5FF893371F16AAB94B ] C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll
19:13:12.0769 0x0514  C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll - ok
19:13:12.0769 0x0514  [ D99621C0735B21DCC8BC4FEF02F379EF, C9FAD74DD80B6CCA95B83B767BB55644E775E8DC3FFC05CD89AEF16686F902FD ] C:\Windows\System32\Apphlpdm.dll
19:13:12.0769 0x0514  C:\Windows\System32\Apphlpdm.dll - ok
19:13:12.0769 0x0514  [ C693E642ACFBDD76433AF6BE3C3EEE6F, 5241C30CCB095B10B10AD11F42F57B2DEA362C7F6DA36A9A5B23E4DFF113CFD7 ] C:\Windows\System32\PortableDeviceConnectApi.dll
19:13:12.0769 0x0514  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
19:13:12.0785 0x0514  [ 432BE6CF7311062633459EEF6B242FB5, 890C1734ED1EF6B2422A9B21D6205CF91E014ADD8A7F41AA5A294FCF60631A7B ] C:\Windows\System32\regsvr32.exe
19:13:12.0785 0x0514  C:\Windows\System32\regsvr32.exe - ok
19:13:12.0785 0x0514  [ 9C17DCD6DDFEB1A012544FAF4F2789F6, 88644CFDE4494D9041C01624DFFDCB50B253FDC28235813A18FCDEEFC65D5ABA ] C:\Windows\AppPatch\AcGenral.dll
19:13:12.0785 0x0514  C:\Windows\AppPatch\AcGenral.dll - ok
19:13:12.0785 0x0514  [ 85683DF1F917E4D7F6BE1A04986BF1C8, D68D9F525D31C1843B6EC8FA950166FA1F34DB71222716E7B22DD33981C152B6 ] C:\Windows\System32\msacm32.dll
19:13:12.0785 0x0514  C:\Windows\System32\msacm32.dll - ok
19:13:12.0800 0x0514  [ 1BE09650974C36D9B2A890EEA0C338C3, F2E0D0967EC984EFAFC38D01060BCCBBB9F64B68A8E47C89E3693524F594216D ] C:\Program Files\Malwarebytes Anti-Malware\mbamext.dll
19:13:12.0800 0x0514  C:\Program Files\Malwarebytes Anti-Malware\mbamext.dll - ok
19:13:12.0800 0x0514  [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] C:\Windows\System32\IPSECSVC.DLL
19:13:12.0800 0x0514  C:\Windows\System32\IPSECSVC.DLL - ok
19:13:12.0800 0x0514  [ DB603D3FD090C66F9709EF6493C26BA3, A9D9A3309DAEFC5AED885AC729B1E9DE8BA5454A0C83FD4F61BCAC935F6CBB4A ] C:\Windows\System32\FwRemoteSvr.dll
19:13:12.0800 0x0514  C:\Windows\System32\FwRemoteSvr.dll - ok
19:13:12.0800 0x0514  [ 505BF4D1CADEB8D4F8BCD08D944DE25D, 526F07768471F4457CBEAB7093AF0B0242044C89A80A347DB47F44EBADEEA68D ] C:\Windows\System32\dwm.exe
19:13:12.0800 0x0514  C:\Windows\System32\dwm.exe - ok
19:13:12.0816 0x0514  [ C5C867CD7EFAC60D5021223E374DEEC5, 197FEE8F02DE348E75771AC9AD748EFB29939F1AAF02DA6555181EEF787FD099 ] C:\Windows\System32\dimsjob.dll
19:13:12.0816 0x0514  C:\Windows\System32\dimsjob.dll - ok
19:13:12.0816 0x0514  [ 754AFC50022C95DA7C86B7020DB78136, 81C58F303DA2E0EC066261890C1D638EE02D2B579BBCB1BB398EDF6A0EBA671E ] C:\Windows\System32\dwmredir.dll
19:13:12.0816 0x0514  C:\Windows\System32\dwmredir.dll - ok
19:13:12.0816 0x0514  [ 497E59D9F01C6F247E72222A61835119, 4C31900BA2F911B2A5AE8F7FCE267DCE17655B20A6B71CD4E38FE1B1692142D1 ] C:\Windows\System32\dwmcore.dll
19:13:12.0816 0x0514  C:\Windows\System32\dwmcore.dll - ok
19:13:12.0832 0x0514  [ 40D777B7A95E00593EB1568C68514493, 0A8CE026714E03E72C619307BD598ADD5F9B639CFD91437CB8D9C847BF9F6894 ] C:\Windows\explorer.exe
19:13:12.0832 0x0514  C:\Windows\explorer.exe - ok
19:13:12.0832 0x0514  [ 20308CF0675AD7CE5AAA6712DB823216, F4408BAA3CE59B7D184B46A37D660D44D4F7EBA746B76B9159B4C358C980C07C ] C:\Program Files\Windows Defender\MpClient.dll
19:13:12.0832 0x0514  C:\Program Files\Windows Defender\MpClient.dll - ok
19:13:12.0832 0x0514  [ 846D0E4DB261CFAF363902E41498E961, D7E5591B7604FD583AF7FDA19E30928B24A6145318A3944E7D207F0CCEEB30D0 ] C:\Windows\System32\EhStorShell.dll
19:13:12.0832 0x0514  C:\Windows\System32\EhStorShell.dll - ok
19:13:12.0847 0x0514  [ AA5312B5B37F8E8C97615F8357EA65A8, 79395837BB41B337671A95EB050FF6BCD34575E7E5300E4E81C771F8B64DC0CA ] C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL
19:13:12.0847 0x0514  C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL - ok
19:13:12.0847 0x0514  [ 14486EB6AF542F2BD3239F7FC3E713F7, C084C653CF6C63D7B4DB08CBDE2CAF059019D276BCACD923A29D22E69055012C ] C:\Windows\System32\pautoenr.dll
19:13:12.0847 0x0514  C:\Windows\System32\pautoenr.dll - ok
19:13:12.0847 0x0514  [ 61B1ED5F429EFAC7E2036769870AB93E, 628CF28434C5DFB81B76B90BEA4CDD9EB1E4B0971BEE24136A09490F9439E00E ] C:\Windows\System32\certcli.dll
19:13:12.0847 0x0514  C:\Windows\System32\certcli.dll - ok
19:13:12.0863 0x0514  [ 29BC473072568C072EC8B176498DE996, D3A4DB88BECA8AB3F8722E499548EFEC63022C1CE38F526AFBDA76DDBA8E9064 ] C:\Windows\System32\CertEnroll.dll
19:13:12.0863 0x0514  C:\Windows\System32\CertEnroll.dll - ok
19:13:12.0863 0x0514  [ 12E71DA845D76665B56753AD149E32B3, 0E403710CCBACD5AB85FD4C32AAB6CB2C27BC1F043E8008EE49EE96ECA944146 ] C:\Windows\System32\drivers\MBAMSwissArmy.sys
19:13:12.0863 0x0514  C:\Windows\System32\drivers\MBAMSwissArmy.sys - ok
19:13:12.0863 0x0514  [ 6E05F39AF5B91CEE0D2A84501EEEDBD8, 5F88D52F049566980C94678C145E8E2B46D5AE8E91D71E9B731FDC5206FC3569 ] C:\Windows\System32\d3d10_1.dll
19:13:12.0863 0x0514  C:\Windows\System32\d3d10_1.dll - ok
19:13:12.0878 0x0514  [ 9C36A3CA80F9B204C670336D344F5DF8, 948A3BA92FC4D34288F80AA892D8EBFAEA23ECB764400E9A8F7DBF4681FEA337 ] C:\Windows\System32\d3d10_1core.dll
19:13:12.0878 0x0514  C:\Windows\System32\d3d10_1core.dll - ok
19:13:12.0878 0x0514  [ 0411B7958C524BB2E91EE1B3035FE321, B8F419DF52FCDC93FBA94DC6C90F98389CB24458158F6AE973D2ADEDAF33382E ] C:\Windows\System32\dxgi.dll
19:13:12.0878 0x0514  C:\Windows\System32\dxgi.dll - ok
19:13:12.0878 0x0514  [ E2A17BCC08D92F42E08AF6BA2F93ABA7, 5FC9D47BF4B1094BECC0C0DDCD5CD4318DD3E4495D982F8785331616D5B82599 ] C:\Windows\System32\ExplorerFrame.dll
19:13:12.0878 0x0514  C:\Windows\System32\ExplorerFrame.dll - ok
19:13:12.0894 0x0514  [ 04D16553664796613FE98D441A0C35D7, EC9D4B3B8F8B0C3EE01D18CDF5BE9EF216AC9BBB1FB64A63D5013BD9AFB2A606 ] C:\Windows\System32\cryptnet.dll
19:13:12.0894 0x0514  C:\Windows\System32\cryptnet.dll - ok
19:13:12.0894 0x0514  [ B3892E6DA8E2C8CE4B0A9D3EB9A185E5, AE163388201EF2F119E11265586E7DA32C6E5B348E0CC32E3F72E21EBFD0843B ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_50916076bcb9a742\msvcr90.dll
19:13:12.0894 0x0514  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_50916076bcb9a742\msvcr90.dll - ok
19:13:12.0894 0x0514  [ DB001FAEA818AE2E14A74E0ADC530FC0, 45CB405589C92BF74C47B7C90E299A5732A99403C51F301A5B60579CAF3116E7 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_50916076bcb9a742\msvcp90.dll
19:13:12.0894 0x0514  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_50916076bcb9a742\msvcp90.dll - ok
19:13:12.0910 0x0514  [ 78B62E4C13378F737603136975A07E1A, 7CC6C299A20B2DE62B3844417F085FCE7FEA32CC006A10658B3E4815B536329F ] C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.4148_none_51ca66a2bbe76806\ATL90.dll
19:13:12.0910 0x0514  C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.4148_none_51ca66a2bbe76806\ATL90.dll - ok
19:13:12.0910 0x0514  [ 9F522B2708CAB181C0F137ABBCD1DE2E, 498B73A45A4301C8045109621E0831DA806C4D3AEDED63DF81979D36D0284BA7 ] C:\Program Files\Malwarebytes Anti-Malware\7z.dll
19:13:12.0910 0x0514  C:\Program Files\Malwarebytes Anti-Malware\7z.dll - ok
19:13:12.0910 0x0514  [ E9901A7E569C4156FDA69F5C9356B8ED, 637812F7531518ADD0D477BAA6A99E853216E9E8E23E61CA23100B9603BA0A25 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
19:13:12.0910 0x0514  C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
19:13:12.0925 0x0514  [ E2DF79E836FB4F0861714D365939F49B, 9970A27591E0ED946F588A2662CFE74D3B6D05BF40FC0DD82B13C52BBEBAA1B3 ] C:\Windows\System32\nvwgf2um.dll
19:13:12.0925 0x0514  C:\Windows\System32\nvwgf2um.dll - ok
19:13:12.0925 0x0514  [ 0B7E85364CB878E2AD531DB7B601A9E5, F5AD3018427F1CD68450EE5CB55AA9572546322580E0FB1E7888702A291C2380 ] C:\Windows\System32\NapiNSP.dll
19:13:12.0925 0x0514  C:\Windows\System32\NapiNSP.dll - ok
19:13:12.0925 0x0514  [ 5CF640EDDB1E40A5AB1BB743BCDEC610, 0313AA3F713C9F5B84DBB0B4DE78A96B173E9F7B4CF61C10FDC7DAE952DB04E5 ] C:\Windows\System32\pnrpnsp.dll
19:13:12.0925 0x0514  C:\Windows\System32\pnrpnsp.dll - ok
19:13:12.0941 0x0514  [ 676CCC08D9E9A3F4CA39CB04E97048DF, AD7361AB05A6169705C57C36AAF015130124737720B13BA6102102299B49D629 ] C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll
19:13:12.0941 0x0514  C:\PROGRA~1\MICROS~2\Office14\1033\GrooveIntlResource.dll - ok
19:13:12.0941 0x0514  [ BD27D97297934FD4217A37FD28A7ABC7, 446F3D6D278A4B3B79B331AA325632FD038952E5E910FC927894E9171A623794 ] C:\Windows\System32\drivers\mwac.sys
19:13:12.0941 0x0514  C:\Windows\System32\drivers\mwac.sys - ok
19:13:12.0941 0x0514  [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] C:\Windows\System32\aelupsvc.dll
19:13:12.0941 0x0514  C:\Windows\System32\aelupsvc.dll - ok
19:13:12.0957 0x0514  [ 3EC541C196DE18ED9A0D0AC82A694D4C, 51BCBDDFF113A02EF85E09BE6B2727EDB505EBFE355A8E163A7F4C82EBFBBCC4 ] C:\Windows\System32\cscui.dll
19:13:12.0957 0x0514  C:\Windows\System32\cscui.dll - ok
19:13:12.0957 0x0514  [ 5DF5D8CFD9B9573FA3B2C89D9061A240, 990EA273B640DF2D7E800C0CFF18550259C605A4951CD82CD9F1E7B6FF0C9533 ] C:\Windows\System32\winrnr.dll
19:13:12.0957 0x0514  C:\Windows\System32\winrnr.dll - ok
19:13:12.0957 0x0514  [ 57A51217581614DE07F30E34D6BB4993, 19D06DCCF1B39DFE4FF269C5C4001E60837296411EB8E169CE142DEFAA3D94FA ] C:\Windows\System32\cscdll.dll
19:13:12.0957 0x0514  C:\Windows\System32\cscdll.dll - ok
19:13:12.0972 0x0514  [ EB77DB354791A5932CA559B6F6374E95, 113816D464941C92A952F5593552E889CFDA7E0389DC1B64031C3077C3CF7043 ] C:\Windows\System32\ntshrui.dll
19:13:12.0972 0x0514  C:\Windows\System32\ntshrui.dll - ok
19:13:12.0972 0x0514  [ 2100560AF3F7F2948F2676E44DFB4ECF, 28472E8BEE46DCAE961C7AFEF71EFD5675ECD05492A92631CCB4EF62DFD10F7A ] C:\Windows\System32\uDWM.dll
19:13:12.0972 0x0514  C:\Windows\System32\uDWM.dll - ok
19:13:12.0972 0x0514  [ 3CDE2911462FEC80064A409C07710C06, DBEC8669B1B8FA68750B17008C4328B223F8263EBE02C550780926C23D38D7D3 ] C:\Windows\System32\wbem\WmiPrvSD.dll
19:13:12.0972 0x0514  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
19:13:12.0988 0x0514  [ A4CC7227A452C4909F9499D91B184364, 56111E57D17553BE3EAB8DA2DC42C7132E4458549AFFC08975B7A7204D8F5E76 ] C:\Windows\System32\ncobjapi.dll
19:13:12.0988 0x0514  C:\Windows\System32\ncobjapi.dll - ok
19:13:12.0988 0x0514  [ B350509B6C9296529BC464C60FEEAEF1, CC653ED001FE6A2BE5A9687572A70CEF9FAB258A57896643379E5D6C1D8E4F1F ] C:\Windows\System32\wbem\wbemess.dll
19:13:12.0988 0x0514  C:\Windows\System32\wbem\wbemess.dll - ok
19:13:12.0988 0x0514  [ 523CF74A52C9A1762DA8B83AEE734498, 5A739182B916738B611E1BBA9098F8BCC8C4E2CC2CFEFD1BC5CE7941D11CEDFD ] C:\Windows\System32\IconCodecService.dll
19:13:12.0988 0x0514  C:\Windows\System32\IconCodecService.dll - ok
19:13:12.0988 0x0514  [ D44741F65A1D71F65814A12CF6E2400A, C6721F830675ADC7E7FDE2B5E822E56F6A063146F5066F1E25EBFE86F0A87136 ] C:\Windows\System32\runonce.exe
19:13:12.0988 0x0514  C:\Windows\System32\runonce.exe - ok
19:13:13.0003 0x0514  [ AD7B9C14083B52BC532FBA5948342B98, 17F746D82695FA9B35493B41859D39D786D32B23A9D2E00F4011DEC7A02402AE ] C:\Windows\System32\cmd.exe
19:13:13.0003 0x0514  C:\Windows\System32\cmd.exe - ok
19:13:13.0003 0x0514  [ 156F20E7A89573C2FD7CBC305DFC181F, B3BBCD2FF46233D6F64776B83048F58C8459E76327AD77A2132B471D389FE04C ] C:\Windows\System32\conhost.exe
19:13:13.0003 0x0514  C:\Windows\System32\conhost.exe - ok
19:13:13.0003 0x0514  [ 4619E14B2DF4137907CD988ACA4B30A5, B8D451CC8B23108931D657FA7895CD97734567135F40F061D1F34F9C613B004C ] C:\Windows\System32\ieframe.dll
19:13:13.0003 0x0514  C:\Windows\System32\ieframe.dll - ok
19:13:13.0019 0x0514  [ BE247AE996A9FDE007A27B51413A6C79, A4280BE9BDCB51E50A0E302F59ACDF866EFAC8035D766172D06C15019CC57476 ] C:\Windows\System32\shdocvw.dll
19:13:13.0019 0x0514  C:\Windows\System32\shdocvw.dll - ok
19:13:13.0019 0x0514  [ D40E7B5FBB8E0EAA7C5C294389AF95AB, 8EFD521DF1F335AF416DEC15D5C0C6538903803AA1A8ED93AA704B384A29876B ] C:\Users\User\AppData\Local\Temp\{D2841659-05CA-4FD7-8E2E-34D1B4713E66}.exe
19:13:13.0019 0x0514  C:\Users\User\AppData\Local\Temp\{D2841659-05CA-4FD7-8E2E-34D1B4713E66}.exe - ok
19:13:13.0019 0x0514  [ 0E4A28030C7C6B8A57A60BAF494B114D, 10D3E9A66802E58B6F2A3EF21CD7D97B9BB3BF41A22EF5773D8ECEE69F40A43F ] C:\Windows\System32\iedkcs32.dll
19:13:13.0019 0x0514  C:\Windows\System32\iedkcs32.dll - ok
19:13:13.0035 0x0514  [ 0EE3BD34729C40BD0853825753ACB319, C209E56688588601D947C061446E194AC1A79B9DD0AD38510D0FB9CA200481DD ] C:\Windows\System32\ie4uinit.exe
19:13:13.0035 0x0514  C:\Windows\System32\ie4uinit.exe - ok
19:13:13.0035 0x0514  [ 83C9840CF87A0CA55526327801716D27, C762F82A8B10A6D20777DC5688AA33FE07994B1E6DF5493F19D997E192D4A518 ] C:\Windows\System32\timedate.cpl
19:13:13.0035 0x0514  C:\Windows\System32\timedate.cpl - ok
19:13:13.0035 0x0514  [ 175383778EB24D98C84E624021E3AA0B, FE831AC7C5375FE0F0D2A56F1546F968B2595503CC63FE9A8F819F7910A1604A ] C:\Windows\System32\aeevts.dll
19:13:13.0035 0x0514  C:\Windows\System32\aeevts.dll - ok
19:13:13.0050 0x0514  [ D2958325C1AE1AE37A83334C6229E3BC, D8263CB39A25447442B75A8D8E8111DF671D645DA90A33865C089DEDA9706904 ] C:\Windows\System32\actxprxy.dll
19:13:13.0050 0x0514  C:\Windows\System32\actxprxy.dll - ok
19:13:13.0050 0x0514  [ 19BC13711AC403FEB830522E4831701B, 2A36B13D91CCC37663AA656AFEFFA5D09C69569D5E97291D95FA4736756CA183 ] C:\Windows\System32\gameux.dll
19:13:13.0050 0x0514  C:\Windows\System32\gameux.dll - ok
19:13:13.0050 0x0514  [ 3A16EA01FCFAAB40882DB5BFEE632322, 04ED66BEFDB822181EBD1D84CBF0B17AAADF8455AE742F44D7ADCB26AB07BDAD ] C:\Windows\System32\msftedit.dll
19:13:13.0050 0x0514  C:\Windows\System32\msftedit.dll - ok
19:13:13.0050 0x0514  [ 26025A46FB3FDB40FF06BBF1834093B5, EEA5F111C6F3A86EE2CB7D11C2C9986DC540E713817929366ABD4DB132C61F7B ] C:\Windows\System32\msls31.dll
19:13:13.0050 0x0514  C:\Windows\System32\msls31.dll - ok
19:13:13.0066 0x0514  [ 7896EFFDEE215C172BE724A64931EF1C, 10F9D73B85853FD6D7B54DCB9BC0FA5EC9FAECFB01E3AD4DAE4CC2FE2E68EE6D ] C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
19:13:13.0066 0x0514  C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll - ok
19:13:13.0066 0x0514  [ F1278B3514EA6FA9BC39B20D26139AAC, 7FA1B8CCBB4771F3105EEACE2C13F949FA65C7F53817C783BDF9770F94FF12B5 ] C:\Windows\System32\msiltcfg.dll
19:13:13.0066 0x0514  C:\Windows\System32\msiltcfg.dll - ok
19:13:13.0066 0x0514  [ 0CE4D3BD306DA6D1F6F233C403F5B667, 6428AD0BD3732A2038CD372A06563E84F33DCDAB4E2B203B3F75BE678690DCAD ] C:\Windows\System32\msi.dll
19:13:13.0066 0x0514  C:\Windows\System32\msi.dll - ok
19:13:13.0082 0x0514  [ 2A39F32E0067CBF221611FE1FA8C6D8F, C6D1CAB7BC87F8EB7D801BE3E3DA9B631932A94468E7A6F46D60A43C9AB08EE7 ] C:\Windows\System32\DeviceCenter.dll
19:13:13.0082 0x0514  C:\Windows\System32\DeviceCenter.dll - ok
19:13:13.0082 0x0514  [ 901AA7A38CE13F14B6BBEC38C0595698, 1E95F2048E2A1782807D52E9816ED267355718E24D01FF07ACE73D965EDE388A ] C:\Program Files\Microsoft Office\Office14\BCSSync.exe
19:13:13.0082 0x0514  C:\Program Files\Microsoft Office\Office14\BCSSync.exe - ok
19:13:13.0097 0x0514  [ 03396637E1E1B4E333D00AED86178918, CF582487E856D01C960392AC658E8D36A92F2B2B4B9AEA9BFC9E6F75FBAD6571 ] C:\Program Files\Microsoft Security Client\msseces.exe
19:13:13.0097 0x0514  C:\Program Files\Microsoft Security Client\msseces.exe - ok
19:13:13.0097 0x0514  [ D83947A58613E9091B4C9CC0F1546A8D, C71DF6E18E2099FC462717B8658D39C607A62C7E7A1E5CD0E258C17434535AD0 ] C:\Windows\System32\mscoree.dll
19:13:13.0097 0x0514  C:\Windows\System32\mscoree.dll - ok
19:13:13.0097 0x0514  [ 5987EA8A82C53359BCD2C29D6588583E, 59E2DF91F8DA9E33DE65FA67A6A49A7C3F524618A87EAEFC8A28C5304E7FAB85 ] C:\Windows\System32\linkinfo.dll
19:13:13.0097 0x0514  C:\Windows\System32\linkinfo.dll - ok
19:13:13.0097 0x0514  [ 83BA5E873164A3711B44052F58C8FE9F, 7271ADE7A615E6F33375D23DACC32A8A652AF18CAAF8439F018E32E32E222F5A ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
19:13:13.0097 0x0514  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
19:13:13.0113 0x0514  [ 3D57FFBAD3ED16B63DE3879BAB0FB56F, 6BEAF5AFC98961190B004E8DE57CD5F9F39117287AE18D59DDB2EC5C0A0C6622 ] C:\Windows\System32\networkexplorer.dll
19:13:13.0113 0x0514  C:\Windows\System32\networkexplorer.dll - ok
19:13:13.0113 0x0514  [ 4205CA4CD43E725DB9FF02B0A588A8C6, D49C3B4B2FF0455A434B352DE37070B6E13B5C5557CC688E6E46EEC404840ABE ] C:\Windows\System32\msxml3.dll
19:13:13.0113 0x0514  C:\Windows\System32\msxml3.dll - ok
19:13:13.0113 0x0514  [ B17480E284B378EDE987EEE032ED103E, 2630413BBCB3B10DA48C292274C32873513D1BEDFCA3AA56D5BC4A2E73787C43 ] C:\Program Files\Microsoft Security Client\MsMpRes.dll
19:13:13.0113 0x0514  C:\Program Files\Microsoft Security Client\MsMpRes.dll - ok
19:13:13.0128 0x0514  [ 672D7C5080ACB003343006405DA2E621, 5F28C83A20ECB1F20894B60725477BEF0D672817DFDB9822FB345A3270A0C095 ] C:\Windows\System32\thumbcache.dll
19:13:13.0128 0x0514  C:\Windows\System32\thumbcache.dll - ok
19:13:13.0128 0x0514  [ D6692338B985D4A0CA52B828314D897D, CB0B7C84C1E2782A95489E2F4D2AF4CFDAC02676B76F49FF7D6A7091739EA25D ] C:\Windows\System32\drprov.dll
19:13:13.0128 0x0514  C:\Windows\System32\drprov.dll - ok
19:13:13.0128 0x0514  [ D7B7159BC8374E87D8C45A30377A3440, 0B68B6E7C35280D502BF05177ADADE2EE35D4D5307C3D1EE2635879BA06D904D ] C:\Windows\System32\ntlanman.dll
19:13:13.0128 0x0514  C:\Windows\System32\ntlanman.dll - ok
19:13:13.0144 0x0514  [ 284B59D7B56FC76C80E622AB856B1FAB, AC5F88BA054A381BA66DB23F92DBC5C7FA60C6F3F1539AAD7CCFD97066AB25B3 ] C:\Windows\System32\davclnt.dll
19:13:13.0144 0x0514  C:\Windows\System32\davclnt.dll - ok
19:13:13.0144 0x0514  [ 179BECE8D1A4C488DDB7191FF9BE3FB0, F91ABCB67A2AFD471A9B94AA2B9C46AAEF606266DC2276E81A6D0832566162A5 ] C:\Windows\System32\davhlpr.dll
19:13:13.0144 0x0514  C:\Windows\System32\davhlpr.dll - ok
19:13:13.0144 0x0514  [ 6F8E3B7B70E1BBA871212940C1FBDF60, 3F9D4EE64E4210340C6FEE0DE81BFE3C613DDBE608EC09D63817D24CE24BFC5E ] C:\Windows\System32\SensApi.dll
19:13:13.0144 0x0514  C:\Windows\System32\SensApi.dll - ok
19:13:13.0160 0x0514  [ F50CA00F1929D9294FE01894D0168A7F, 197B7402215422B05837439E6973FD76F8C052A089DB61AA75CF8082A8389344 ] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
19:13:13.0160 0x0514  C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe - ok
19:13:13.0160 0x0514  [ D205C24A9D069049FE2DF2A1B38726A7, B98F420B57A34FDA24F9A655319245EEF86EF4A952014FFA018070A01D5CBC4C ] C:\Windows\System32\wdmaud.drv
19:13:13.0160 0x0514  C:\Windows\System32\wdmaud.drv - ok
19:13:13.0160 0x0514  [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\User\AppData\Local\Temp\{272EFD71-5484-4FF9-BC48-CFD765D3EAA5}\{DC87C6CB-751E-466D-A37E-B3EB0A224C58}.tmp
19:13:13.0160 0x0514  C:\Users\User\AppData\Local\Temp\{272EFD71-5484-4FF9-BC48-CFD765D3EAA5}\{DC87C6CB-751E-466D-A37E-B3EB0A224C58}.tmp - ok
19:13:13.0175 0x0514  [ 9C67F6BBDA3881CFD02095160CF91576, 6CE97C6F0AD8BE183DE935A7AAB7D46821E8DE9E55A4BFF54ACB49D056826A94 ] C:\Windows\System32\ksuser.dll
19:13:13.0175 0x0514  C:\Windows\System32\ksuser.dll - ok
19:13:13.0175 0x0514  [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\User\AppData\Local\Temp\{272EFD71-5484-4FF9-BC48-CFD765D3EAA5}\{0E226969-4857-474C-A982-26BDEBDCF54B}.tmp
19:13:13.0175 0x0514  C:\Users\User\AppData\Local\Temp\{272EFD71-5484-4FF9-BC48-CFD765D3EAA5}\{0E226969-4857-474C-A982-26BDEBDCF54B}.tmp - ok
19:13:13.0175 0x0514  [ C940F2F5C60B3727C5F18840735B229C, EFC3F465FD6C570505C214A92644357ACD01B1843ED25B5FCCCE10533403485C ] C:\Windows\System32\AudioSes.dll
19:13:13.0175 0x0514  C:\Windows\System32\AudioSes.dll - ok
19:13:13.0191 0x0514  [ 0E85C11F8850D524B02181C6E02BA9AE, 8703566931067CCF949E9779E4D328DD21210329DD687459300C83DDD06390A8 ] C:\Windows\System32\dsound.dll
19:13:13.0191 0x0514  C:\Windows\System32\dsound.dll - ok
19:13:13.0191 0x0514  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
19:13:13.0191 0x0514  C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
19:13:13.0191 0x0514  [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\Users\User\AppData\Local\Temp\{272EFD71-5484-4FF9-BC48-CFD765D3EAA5}\{125800C5-B0DA-40D2-A1FA-DC6E51E926CE}.tmp
19:13:13.0191 0x0514  C:\Users\User\AppData\Local\Temp\{272EFD71-5484-4FF9-BC48-CFD765D3EAA5}\{125800C5-B0DA-40D2-A1FA-DC6E51E926CE}.tmp - ok
19:13:13.0207 0x0514  [ 07393A09C46083588E751B63B03C8301, 36E2351CF5FA05FEAAEB340B5E04B107B53C8174F8333559D8AEA40BEB94F678 ] C:\Windows\System32\msacm32.drv
19:13:13.0207 0x0514  C:\Windows\System32\msacm32.drv - ok
19:13:13.0207 0x0514  [ 936F728E04ACCF3F38801CFFCF1E3F40, 59CA86096F4B928E364B6A3C0408615F068BB8BC02DCFC5EAF4873EC6D6E0797 ] C:\Windows\System32\oledlg.dll
19:13:13.0207 0x0514  C:\Windows\System32\oledlg.dll - ok
19:13:13.0207 0x0514  [ 5A12C364AD1D4FCC0AD0E56DBBC34462, 5FDF434BE4E15311AC83754CF85B5451F5A219D768A5DE3DC4FD9AE0B57B0AD9 ] C:\Windows\System32\midimap.dll
19:13:13.0207 0x0514  C:\Windows\System32\midimap.dll - ok
19:13:13.0222 0x0514  [ BBA9D5A730D5E304117AD26923EBD8AA, 62DD6CEA9B3819DEC704BFBDCFF771903A2E2E8668EB9D5AD32210EEDB359132 ] C:\Windows\System32\AudioEng.dll
19:13:13.0222 0x0514  C:\Windows\System32\AudioEng.dll - ok
19:13:13.0222 0x0514  [ D1D4B87FCC936EA0A7C30BC3E335BAEC, ED820C61C179FA27BB63305B5C18DBE913AEA38CECC27835D3B3E51007E7D575 ] C:\Program Files\Adobe\Reader 11.0\Reader\AcroRd32.exe
19:13:13.0222 0x0514  C:\Program Files\Adobe\Reader 11.0\Reader\AcroRd32.exe - ok
19:13:13.0222 0x0514  [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\User\AppData\Local\Temp\{272EFD71-5484-4FF9-BC48-CFD765D3EAA5}\{7AFF6A13-3675-4D76-A6B5-EB9CD9AF83B7}.tmp
19:13:13.0222 0x0514  C:\Users\User\AppData\Local\Temp\{272EFD71-5484-4FF9-BC48-CFD765D3EAA5}\{7AFF6A13-3675-4D76-A6B5-EB9CD9AF83B7}.tmp - ok
19:13:13.0238 0x0514  [ 96F0F8F4DEE598C8D12AD9633E0CFE2A, 56EA483444BB6CCD6B9BE8030BB0FBB60EEE34A96731AB50CDC7DBA56BF2CB7C ] C:\Windows\System32\AUDIOKSE.dll
19:13:13.0238 0x0514  C:\Windows\System32\AUDIOKSE.dll - ok
19:13:13.0238 0x0514  [ 7B42DD38D10BA61A8B2669A504E0EF6C, BB4A125451632B5408520D1063ABB4DD976B30D8F41C0EFD20601B512D42CC91 ] C:\Windows\System32\RTCOM\RtkCfg.dll
19:13:13.0238 0x0514  C:\Windows\System32\RTCOM\RtkCfg.dll - ok
19:13:13.0238 0x0514  [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\User\AppData\Local\Temp\{272EFD71-5484-4FF9-BC48-CFD765D3EAA5}\{E9175348-EFBD-4735-968F-69C9C4C8BA22}.tmp
19:13:13.0238 0x0514  C:\Users\User\AppData\Local\Temp\{272EFD71-5484-4FF9-BC48-CFD765D3EAA5}\{E9175348-EFBD-4735-968F-69C9C4C8BA22}.tmp - ok
19:13:13.0253 0x0514  [ 415EEAD462C489036A9BE0A4098553F9, 4459934E4468B9F1A478EE7E47EF354190E6B467F5E639E4869BCB1851DDADEB ] C:\Windows\System32\RtkAPO.dll
19:13:13.0253 0x0514  C:\Windows\System32\RtkAPO.dll - ok
19:13:13.0253 0x0514  [ 3F7CD7873FA942C38F9831F286698414, 5D7F7D7E999BD5A4DD0D31D5DFFC325E53F52496B14D2DA179192FDB149DCF0A ] C:\Program Files\Adobe\Reader 11.0\Reader\reader_sl.exe
19:13:13.0253 0x0514  C:\Program Files\Adobe\Reader 11.0\Reader\reader_sl.exe - ok
19:13:13.0253 0x0514  [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\User\AppData\Local\Temp\{272EFD71-5484-4FF9-BC48-CFD765D3EAA5}\{C5997768-B553-45BF-B229-A2F942BDF477}.tmp
19:13:13.0253 0x0514  C:\Users\User\AppData\Local\Temp\{272EFD71-5484-4FF9-BC48-CFD765D3EAA5}\{C5997768-B553-45BF-B229-A2F942BDF477}.tmp - ok
19:13:13.0269 0x0514  [ 13ACDB4CD9AE18911A9770FBFDCCD8B7, 6FE8A4BB468F8E9F7FFCD3CC845B00CB132317DD82AC6CA292E091B7E85BABCB ] C:\Windows\System32\MBWrp32.dll
19:13:13.0269 0x0514  C:\Windows\System32\MBWrp32.dll - ok
19:13:13.0269 0x0514  [ 4E30ED3E551E867ADD1C8D58F5EDD9DF, C933ABF1069128F4AB73DA47B2E7C029249804D65F50720897ECCAB3F4A07C27 ] C:\Windows\System32\WMALFXGFXDSP.dll
19:13:13.0269 0x0514  C:\Windows\System32\WMALFXGFXDSP.dll - ok
19:13:13.0269 0x0514  [ E3C817F7FE44CC870ECDBCBC3EA36132, D769FAFA2B3232DE9FA7153212BA287F68E745257F1C00FAFB511E7A02DE7ADF ] C:\Windows\System32\msvcp100.dll
19:13:13.0269 0x0514  C:\Windows\System32\msvcp100.dll - ok
19:13:13.0269 0x0514  [ 40B82688907A7DBA4DB3B5ADDE3EAB3B, 7A8A051F414A0A11252A361461A086890BCE9F49CE1AF794061184AE16517EF1 ] C:\Windows\System32\mfplat.dll
19:13:13.0269 0x0514  C:\Windows\System32\mfplat.dll - ok
19:13:13.0285 0x0514  [ BF38660A9125935658CFA3E53FDC7D65, 60C06E0FA4449314DA3A0A87C1A9D9577DF99226F943637E06F61188E5862EFA ] C:\Windows\System32\msvcr100.dll
19:13:13.0285 0x0514  C:\Windows\System32\msvcr100.dll - ok
19:13:13.0285 0x0514  [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\User\AppData\Local\Temp\{272EFD71-5484-4FF9-BC48-CFD765D3EAA5}\{6D4BAD0F-2264-4C24-B5E3-548D8506A1A3}.tmp
19:13:13.0285 0x0514  C:\Users\User\AppData\Local\Temp\{272EFD71-5484-4FF9-BC48-CFD765D3EAA5}\{6D4BAD0F-2264-4C24-B5E3-548D8506A1A3}.tmp - ok
19:13:13.0285 0x0514  [ 2D2F80EB344F1B095EAA60B6763C68B8, BB57DFE379D8B9EC9B0A5B5A02A585C170A40226BE8F108BD02ED52CEAD1E7AF ] C:\Program Files\NVIDIA Corporation\Display\nvsmartmax.dll
19:13:13.0285 0x0514  C:\Program Files\NVIDIA Corporation\Display\nvsmartmax.dll - ok
19:13:13.0300 0x0514  [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\User\AppData\Local\Temp\{272EFD71-5484-4FF9-BC48-CFD765D3EAA5}\{326F4BA7-7BB5-4878-A72E-8C972A9BFDB0}.tmp
19:13:13.0300 0x0514  C:\Users\User\AppData\Local\Temp\{272EFD71-5484-4FF9-BC48-CFD765D3EAA5}\{326F4BA7-7BB5-4878-A72E-8C972A9BFDB0}.tmp - ok
19:13:13.0300 0x0514  [ 8E18B7366F88ABB9B322A8C96A081151, E33EA4EC957A645192FA69DF31FE93CBDFA6ADA288BE7DD2567340CED7B9E201 ] C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
19:13:13.0300 0x0514  C:\Program Files\NVIDIA Corporation\Display\nvtray.exe - ok
19:13:13.0300 0x0514  [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\User\AppData\Local\Temp\{272EFD71-5484-4FF9-BC48-CFD765D3EAA5}\{3343FB6E-D911-42C8-9A90-1AB0E33EEDF9}.tmp
19:13:13.0300 0x0514  C:\Users\User\AppData\Local\Temp\{272EFD71-5484-4FF9-BC48-CFD765D3EAA5}\{3343FB6E-D911-42C8-9A90-1AB0E33EEDF9}.tmp - ok
19:13:13.0316 0x0514  [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\User\AppData\Local\Temp\{272EFD71-5484-4FF9-BC48-CFD765D3EAA5}\{9E75D37F-DE7A-49C6-9BB6-CE1F328916FD}.tmp
19:13:13.0316 0x0514  C:\Users\User\AppData\Local\Temp\{272EFD71-5484-4FF9-BC48-CFD765D3EAA5}\{9E75D37F-DE7A-49C6-9BB6-CE1F328916FD}.tmp - ok
19:13:13.0316 0x0514  [ 102CF6879887BBE846A00C459E6D4ABC, A4C51C79CF95D5C79DCEFB02946A09A987FEAF83CE2EE1BA7677EBA90869AC80 ] C:\Windows\System32\riched20.dll
19:13:13.0316 0x0514  C:\Windows\System32\riched20.dll - ok
19:13:13.0332 0x0514  [ 0DCA6A11D09D4C2CBE6B898B897EA915, DE071D5E9CC54C2A52B4F34314749CE5031CA553E878FC9D311699EEEE3B2AA8 ] C:\Windows\System32\UIAnimation.dll
19:13:13.0332 0x0514  C:\Windows\System32\UIAnimation.dll - ok
19:13:13.0332 0x0514  [ 912649A1B3F9E6ACB3899FBDABA2ED5F, 049DFA9EA45A888B984E459B927A0F8AA4C10B9D36C6C0A0FE57F6329BEAF555 ] C:\Windows\System32\stobject.dll
19:13:13.0332 0x0514  C:\Windows\System32\stobject.dll - ok
19:13:13.0332 0x0514  [ 67C1B58706B47EEBA4E117AC197289E6, 9213E55DA854563E3A99369A4FAD853C0A97241A4F6D93F98444C57ADEEF89C1 ] C:\Windows\System32\batmeter.dll
19:13:13.0332 0x0514  C:\Windows\System32\batmeter.dll - ok
19:13:13.0347 0x0514  [ C8333F1F77A1B2E25F2202E892CAF634, 7A614AA4353ECE8175B6AB7B25EE26FAB22DF2A53C9A5A694B3A3B56F6C783A7 ] C:\Windows\System32\prnfldr.dll
19:13:13.0347 0x0514  C:\Windows\System32\prnfldr.dll - ok
19:13:13.0347 0x0514  [ 3FF0FA0A81910617739644A06D06D016, 6B6828E06332805FDA887ED181464FD11A16F49ACADE2856F3CF69E98D81DEDB ] C:\Windows\System32\fdProxy.dll
19:13:13.0347 0x0514  C:\Windows\System32\fdProxy.dll - ok
19:13:13.0347 0x0514  [ ADDB05C93272A62606599B24730BD645, 38E2E2979C48549A3B72807B33254DB3AC106DB1FD2790C8AC1B27CDE86EC38F ] C:\Windows\System32\DXP.dll
19:13:13.0347 0x0514  C:\Windows\System32\DXP.dll - ok
19:13:13.0347 0x0514  [ 856CFFCD835528136367BB1A8FE1DB87, 97EE0B243F460BE737D18B634559BC6389064BA013890E69B650E5152AB873C8 ] C:\Windows\System32\Syncreg.dll
19:13:13.0347 0x0514  C:\Windows\System32\Syncreg.dll - ok
19:13:13.0363 0x0514  [ F8F03D206F7D5811D630349A23E9B9B9, D8F63A2DF5E79103BC3DD36BF09E60D095577BCB30BADA8763168E0199ED4CD8 ] C:\Windows\ehome\ehSSO.dll
19:13:13.0363 0x0514  C:\Windows\ehome\ehSSO.dll - ok
19:13:13.0363 0x0514  [ EAB975DB4C2805927FE5BD047D05C9AA, 8F5497B1A2652B5EAA5D35BD314B5F90C5140207427DAE6068D665FA44D3FD56 ] C:\Windows\System32\netshell.dll
19:13:13.0363 0x0514  C:\Windows\System32\netshell.dll - ok
19:13:13.0363 0x0514  [ 99B9343280AF6A4C0F27CF2E28E94BBF, 0E29E05E893B2516A1BB5B1D5B7AC91BB55E2B5D463C8C50765328C10BCEA67E ] C:\Windows\System32\dssenh.dll
19:13:13.0363 0x0514  C:\Windows\System32\dssenh.dll - ok
19:13:13.0378 0x0514  [ 51138BEEA3E2C21EC44D0932C71762A8, 5AD3C37E6F2B9DB3EE8B5AEEDC474645DE90C66E3D95F8620C48102F1EBA4124 ] C:\Windows\System32\rundll32.exe
19:13:13.0378 0x0514  C:\Windows\System32\rundll32.exe - ok
19:13:13.0378 0x0514  [ B2B3DAE040F6B5AE1DF52B0CD7631A18, 062680EFF24EB83FF34DDD76043DB9ABB476C8FEE7BBE869A1E7F7FC8891314F ] C:\Windows\System32\AltTab.dll
19:13:13.0378 0x0514  C:\Windows\System32\AltTab.dll - ok
19:13:13.0378 0x0514  [ 735263DA17BF5BAF9CCD483843BF9D5A, A493F9191EA3F37A53474E94B3917EA038B29545FC62B1634CE47F05EA2FF5C6 ] C:\Windows\System32\WPDShServiceObj.dll
19:13:13.0378 0x0514  C:\Windows\System32\WPDShServiceObj.dll - ok
19:13:13.0394 0x0514  [ 368B2BEE3F88BFB883D2C74A258DE6F6, 2763114EBA077121448FCB0F1FB8B69252349D9E5CCE5B56991F8B84998847CE ] C:\Windows\AppPatch\AcLayers.dll
19:13:13.0394 0x0514  C:\Windows\AppPatch\AcLayers.dll - ok
19:13:13.0394 0x0514  [ ADB45A977BD9E45790CA496DB84BA148, BB251C9A5D2F5C6BDFB22C6BA235748472FC28AF2ADAF1CE7948352301DDE3C1 ] C:\Windows\System32\PortableDeviceTypes.dll
19:13:13.0394 0x0514  C:\Windows\System32\PortableDeviceTypes.dll - ok
19:13:13.0394 0x0514  [ 3D6F22551D422F97AACB0BB927E4C846, 9AB7C9F2E7F3D1CEC4553D0DF57E074121957055A9A4349946D354ACB6FC4579 ] C:\Windows\System32\pnidui.dll
19:13:13.0394 0x0514  C:\Windows\System32\pnidui.dll - ok
19:13:13.0410 0x0514  [ BD626EF05967D14C772B8096292731A3, FE3838B41DCAFC52089D909E7F411186D993C08AC149E093352D691D57C9BE71 ] C:\Windows\System32\QUTIL.DLL
19:13:13.0410 0x0514  C:\Windows\System32\QUTIL.DLL - ok
19:13:13.0410 0x0514  [ CF4274CEEA9F7791FB7FC40A066BC2C7, C153EC0D420261185001B354955DF85C6E842334D34E70BB69CECC3AFC8CE36C ] C:\Windows\System32\cscobj.dll
19:13:13.0410 0x0514  C:\Windows\System32\cscobj.dll - ok
19:13:13.0410 0x0514  [ 622D95520182F6D3D05310D5810CA8B3, 8162F06721E7B994933639D45BEEF34643DB36C25AE9DD8593991F45D5C2DFCC ] C:\Windows\System32\SearchIndexer.exe
19:13:13.0410 0x0514  C:\Windows\System32\SearchIndexer.exe - ok
19:13:13.0425 0x0514  [ 674B0C0F6A448EB185CAAB9C51D44032, 6722351F46BF70BA967844D3239CD801DFC4538A4EB6C478D8497F27F7FD9F1D ] C:\Windows\System32\srchadmin.dll
19:13:13.0425 0x0514  C:\Windows\System32\srchadmin.dll - ok
19:13:13.0425 0x0514  [ 3CD99E5B2487A4018AACBCEB19EE65D0, 75402D915E36861107F3E55C829EFE5DAF8766FB2AFBFA565D9AC4F12C6A0303 ] C:\Windows\System32\tquery.dll
19:13:13.0425 0x0514  C:\Windows\System32\tquery.dll - ok
19:13:13.0425 0x0514  [ FBE743D60132CFA9982860C8E2D99154, 01C717F212EFBFDFAC23C9FD4EBFCC269490DD6DCA2A948B38B4F2D2DE9B1315 ] C:\Windows\System32\mssrch.dll
19:13:13.0425 0x0514  C:\Windows\System32\mssrch.dll - ok
19:13:13.0441 0x0514  [ 256503028879103E9741A276FA24D65D, 6F32B44826FCA3365D77127361F93A009D70A8A63C8825A8B8235B237C60FF41 ] C:\Windows\System32\esent.dll
19:13:13.0441 0x0514  C:\Windows\System32\esent.dll - ok
19:13:13.0441 0x0514  [ 81600E2E27ED61427AAD865B9BCDDB9D, 0D7D39C0A5A2C24FAADCA41658A1C62D13180B462C78103BDF6DBD76B64DD79A ] C:\Windows\System32\msidle.dll
19:13:13.0441 0x0514  C:\Windows\System32\msidle.dll - ok
19:13:13.0441 0x0514  [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] C:\Windows\System32\netman.dll
19:13:13.0441 0x0514  C:\Windows\System32\netman.dll - ok
19:13:13.0457 0x0514  [ 9A39A2A5F443A756C568C6ED5748AFE4, 13C2790985CBA9CD325BA20364A665DB50B769B7DDE93E6BE20F25427BDB34F8 ] C:\Windows\System32\ActionCenter.dll
19:13:13.0457 0x0514  C:\Windows\System32\ActionCenter.dll - ok
19:13:13.0457 0x0514  [ 1CBF15FDB0310345A68972EB5C5B948F, E1EDCE6216B24037B243AC68CEEBD510646B2EFD70BC118E68303F9ED85D1973 ] C:\Windows\System32\mssprxy.dll
19:13:13.0457 0x0514  C:\Windows\System32\mssprxy.dll - ok
19:13:13.0457 0x0514  [ D39DA70FEA6BD713682F70635587DA9E, FF18C97642F48C711D75F32115B1260FE0BDF6072403E5A9226E9BE780AF1969 ] C:\Windows\System32\rasdlg.dll
19:13:13.0457 0x0514  C:\Windows\System32\rasdlg.dll - ok
19:13:13.0472 0x0514  [ B63E24E9271E99FD4540E3CA22A937DA, A9E75FBF482C4447E887E5B6EBAD96FE827F0BBD1101F1D8B54EE178D3AEAA7E ] C:\Windows\System32\en-US\tquery.dll.mui
19:13:13.0472 0x0514  C:\Windows\System32\en-US\tquery.dll.mui - ok
19:13:13.0472 0x0514  [ D4191EFAB91E00FC09257AA5EBAF503B, 161B572CF4C65984EAFDBA95357373BC712AA414B52DDA23523F84151240E337 ] C:\Windows\System32\mprapi.dll
19:13:13.0472 0x0514  C:\Windows\System32\mprapi.dll - ok
19:13:13.0472 0x0514  [ 04B88428A872390D235BE52D38A9D4EF, F6954D514B67547738EB012456342D65289B0B18A0304BBAD5BDAA3436181C77 ] C:\Windows\System32\dot3api.dll
19:13:13.0472 0x0514  C:\Windows\System32\dot3api.dll - ok
19:13:13.0472 0x0514  [ 5A5FEDDF02588B8F9FE4A95E5E7EAE97, 364A2DC446E9AB091A216D0EED559CEA334AA46EC0BC693CBD6CE1DE0F89317B ] C:\Windows\System32\eappcfg.dll
19:13:13.0472 0x0514  C:\Windows\System32\eappcfg.dll - ok
19:13:13.0488 0x0514  [ 8063046AA70B97CA9985672B8848FB2E, C7A7F2D216D1F0D7F28A22E4933DB3D821AC52CC2EF7AE8BA08D18104FCF8B81 ] C:\Windows\System32\wlanhlp.dll
19:13:13.0488 0x0514  C:\Windows\System32\wlanhlp.dll - ok
19:13:13.0488 0x0514  [ B010CF886420EE29C2C276646721D255, CBCD032D679ADE3A9942A1D116648D6A9ECC71F66F8630629E724E5EE23F9F73 ] C:\Windows\System32\wlanapi.dll
19:13:13.0488 0x0514  C:\Windows\System32\wlanapi.dll - ok
19:13:13.0488 0x0514  [ 1D6A771D1D702AE07919DB52C889A249, E5F3378AC40AEE6114EEAF3BF11DC1059466891CAE353E80C08622A60485C954 ] C:\Windows\System32\wlanutil.dll
19:13:13.0488 0x0514  C:\Windows\System32\wlanutil.dll - ok
19:13:13.0503 0x0514  [ F748F53FE09D21D8ECBB6421E6792024, 38F737673F8B089B2540CE7015A4DF7081754F7CC83BFF85199B70555AF32ED0 ] C:\Windows\System32\onex.dll
19:13:13.0503 0x0514  C:\Windows\System32\onex.dll - ok
19:13:13.0503 0x0514  [ 666E57B6B51824D1D235F80A3DD70A13, B2ACCABDD5D8B23E502FE691C1DEE4A2C0EA20EDCDE5B4000557579D56D411EC ] C:\Windows\System32\eappprxy.dll
19:13:13.0503 0x0514  C:\Windows\System32\eappprxy.dll - ok
19:13:13.0503 0x0514  [ A4EE3D80E31D5A3CA8EBE6A67A06CEC0, 25BE80988BAF547FA9800741139E3704F8FB562F5086C336E2AC5FFBDE520A40 ] C:\Windows\System32\webcheck.dll
19:13:13.0503 0x0514  C:\Windows\System32\webcheck.dll - ok
19:13:13.0519 0x0514  [ 8EE6BDE1D572677AA35707C52C585F75, 588A08C0FC3881186CD673F749E46A154F58BE39CA7AE8A2E1F25539B2299752 ] C:\Windows\System32\mlang.dll
19:13:13.0519 0x0514  C:\Windows\System32\mlang.dll - ok
19:13:13.0519 0x0514  [ 2DDEA2C345DA5BC589EFD398F220DB0E, B515B15BE7CB66F94B7A9B802719DAF7D50E1FE2832B66B6883AC0023060800D ] C:\Windows\System32\SyncCenter.dll
19:13:13.0519 0x0514  C:\Windows\System32\SyncCenter.dll - ok
19:13:13.0519 0x0514  [ 2D11BC8B460957E62E4420373A0D8BDA, 56105E84333998D43DFCDA9E8A4D70EAC43076CFF8389B2E525EC5C3017DC5FD ] C:\Windows\System32\imapi2.dll
19:13:13.0519 0x0514  C:\Windows\System32\imapi2.dll - ok
19:13:13.0535 0x0514  [ C7952D0A4C43A965A1741916BB134751, 84EF222159E8C444A1D9D2E6509245716E4106C8032861DBFF399001A529BF94 ] C:\Windows\System32\hgcpl.dll
19:13:13.0535 0x0514  C:\Windows\System32\hgcpl.dll - ok
19:13:13.0535 0x0514  [ 53683A331F8A1BB20ADD0330F1DE6388, 5525766F740268FF5287F927CD784B885F5B8523374AC2858256E6757CDED9F4 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
19:13:13.0535 0x0514  C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
19:13:13.0535 0x0514  [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] C:\Windows\System32\fdPHost.dll
19:13:13.0535 0x0514  C:\Windows\System32\fdPHost.dll - ok
19:13:13.0550 0x0514  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] C:\Windows\System32\FDResPub.dll
19:13:13.0550 0x0514  C:\Windows\System32\FDResPub.dll - ok
19:13:13.0550 0x0514  [ DE6F4B7E62FDE776F3DE8E5FB5A05C48, 703587D10434C1D6755E5F17EB2110433A506E51ECC5329E2CCA0B8380C455EC ] C:\Windows\System32\fdWSD.dll
19:13:13.0550 0x0514  C:\Windows\System32\fdWSD.dll - ok
19:13:13.0550 0x0514  [ C02AA67276FEE0C15CC4D6D616BDE95E, 24B0FFA2903CC77FEDE6B491647BB759C4AE054E38A19EFA0D2662AC2959570B ] C:\Windows\System32\WWanAPI.dll
19:13:13.0550 0x0514  C:\Windows\System32\WWanAPI.dll - ok
19:13:13.0566 0x0514  [ F2ED6D00921CA138289E5E0CCB9ABF87, 528F249CE0835CA4D8B7C4940F5132DF1155EB344177BEA4CD7FCF9B8DCCCA4B ] C:\Windows\System32\wwapi.dll
19:13:13.0566 0x0514  C:\Windows\System32\wwapi.dll - ok
19:13:13.0566 0x0514  [ 02530B0B7E048DD5AC8D52DAEACAEB2B, 2DEB454F8B71EC54C59185E2F1D679F7EC1C7AEFCD1D59761FDD3D70CABE0254 ] C:\Windows\System32\QAGENT.DLL
19:13:13.0566 0x0514  C:\Windows\System32\QAGENT.DLL - ok
19:13:13.0566 0x0514  [ 2F03490092C032392FB6FF635222B9B2, 951E57BA594507058366321AE29DC117CDE9D3801A0535A704DB4C7762690C81 ] C:\Windows\System32\apisetschema.dll
19:13:13.0566 0x0514  C:\Windows\System32\apisetschema.dll - ok
19:13:13.0566 0x0514  [ E3D5E244807AD655787FCD25477CC1BC, 8A378249C936914DBFEDAE310D6ACB93D488C8F490EC4AAB435861C413A5BB0F ] C:\Windows\System32\bthprops.cpl
19:13:13.0566 0x0514  C:\Windows\System32\bthprops.cpl - ok
19:13:13.0582 0x0514  [ 674611721264013DB169EC12AFC9C3B6, 7BC2791EF2239483F1F71A7F0F53E59002F5A1297A39BE3AF51CA34FFCE2CE24 ] C:\Windows\System32\fdSSDP.dll
19:13:13.0582 0x0514  C:\Windows\System32\fdSSDP.dll - ok
19:13:13.0582 0x0514  [ 8CD1DEE212E52B9C22E66DBA44991D32, 7FCD0E7964368616434E3B3B080E783658B86524C26F3DB57503414204713E6D ] C:\Windows\System32\httpapi.dll
19:13:13.0582 0x0514  C:\Windows\System32\httpapi.dll - ok
19:13:13.0582 0x0514  [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] C:\Windows\System32\ListSvc.dll
19:13:13.0582 0x0514  C:\Windows\System32\ListSvc.dll - ok
19:13:13.0597 0x0514  [ 08DF1B8C9C0754A7069E80A986373F52, 7397FDE63A8F3644784C4F9181EEDF80A8A0F824524C619B8795B8F97A8101EC ] C:\Windows\System32\P2P.dll
19:13:13.0597 0x0514  C:\Windows\System32\P2P.dll - ok
19:13:13.0597 0x0514  [ 9DC23ACF360AEA7DF55AD7A8D3FBF4E6, 03FDE54B593303D627B6D60501C7FA12B2D7F88AFE7F9DA05D4AB192EB113F10 ] C:\Windows\System32\IdListen.dll
19:13:13.0597 0x0514  C:\Windows\System32\IdListen.dll - ok
19:13:13.0597 0x0514  [ 8F8AB20AA863EA95A421B9D54C74F20C, BA71E3EED39E78EC554049464D4112EB3A15419F0C5809D9C7CB7F1746BDEBD3 ] C:\Program Files\Windows Media Player\wmpnssci.dll
19:13:13.0597 0x0514  C:\Program Files\Windows Media Player\wmpnssci.dll - ok
19:13:13.0613 0x0514  [ 5FA9311543A7B3CCD36DBE09EA15D5E6, 8E435D76CD1C711D66F6B5128E27EC0B422B94DCF425E62C0E85EF6146C4B351 ] C:\Program Files\Internet Explorer\ieproxy.dll
19:13:13.0613 0x0514  C:\Program Files\Internet Explorer\ieproxy.dll - ok
19:13:13.0613 0x0514  [ C2D6A4475B87651D5909E364439FDA52, BE9B898A8396F977E05A22D6EDF7B6B4EF4C16E159806453D03C2A918D24C19F ] C:\Windows\System32\FXSST.dll
19:13:13.0613 0x0514  C:\Windows\System32\FXSST.dll - ok
19:13:13.0613 0x0514  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] C:\Windows\System32\pnrpsvc.dll
19:13:13.0613 0x0514  C:\Windows\System32\pnrpsvc.dll - ok
19:13:13.0628 0x0514  [ 942E57152F1CD0533644AB30EF1A4728, 4F72510BECFAFDBB06C9CAAC66BA9E95225DE1EA12B4D2FD5B67492A2E628ABD ] C:\Windows\System32\FXSAPI.dll
19:13:13.0628 0x0514  C:\Windows\System32\FXSAPI.dll - ok
19:13:13.0628 0x0514  [ C4096CA42199428B3D63DC206C197F0E, 76336CD81608650E5AAD02D59D2AC752E7BDD057314BBC7334CECF74D1EAB587 ] C:\Windows\System32\FXSRESM.dll
19:13:13.0628 0x0514  C:\Windows\System32\FXSRESM.dll - ok
19:13:13.0628 0x0514  [ F059EB4C9C256F62F196EAA439E28F74, 5BE15E844D96B10195333C7DAECD50D69C393ACA99B3C358A19C5819DF941FB5 ] C:\Windows\System32\hgprint.dll
19:13:13.0628 0x0514  C:\Windows\System32\hgprint.dll - ok
19:13:13.0644 0x0514  [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] C:\Windows\System32\FXSSVC.exe
19:13:13.0644 0x0514  C:\Windows\System32\FXSSVC.exe - ok
19:13:13.0644 0x0514  [ 1957D49A9613FAAD1C73B508CCE02AA5, F370EB20189060F10342D09A76C585A708C3BCDFEBE3853A3C07BAAF0547AB10 ] C:\Windows\System32\wmp.dll
19:13:13.0644 0x0514  C:\Windows\System32\wmp.dll - ok
19:13:13.0644 0x0514  [ 0FBC74AA20FE0AE6884279F893169C60, 28BA0F83ECA708776E295E3A43CFACA8CD3345AADE2129C75AB858C70B349A7B ] C:\Windows\System32\wmploc.DLL
19:13:13.0644 0x0514  C:\Windows\System32\wmploc.DLL - ok

19:13:13.0660 0x0514  [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] C:\Windows\System32\p2psvc.dll
19:13:13.0660 0x0514  C:\Windows\System32\p2psvc.dll - ok
19:13:13.0660 0x0514  [ 1372E8E8FD066002131E3D509275E697, 7CAFCFAFB6DF16CBE88104C4146988AAC1824D9CAA8EE63A7D91092F36BA1313 ] C:\Windows\System32\P2PGraph.dll
19:13:13.0660 0x0514  C:\Windows\System32\P2PGraph.dll - ok
19:13:13.0660 0x0514  [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
19:13:13.0660 0x0514  C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
19:13:13.0675 0x0514  [ 5CF15474FFDB5005E54958DF6EDD97AB, D4DBB3AACBB7679948258FFC53472FE8B5D0B3EC06D572EE2BDBF45CE608D86D ] C:\Windows\System32\wmdrmdev.dll
19:13:13.0675 0x0514  C:\Windows\System32\wmdrmdev.dll - ok
19:13:13.0675 0x0514  [ DF13A51A5C591887D2EC6AE64CEED0FA, DFD503AEBCAA056B2B0E669ACA52F6D26F4E6892F2DCFCCD902752C23A621653 ] C:\Windows\System32\wsock32.dll
19:13:13.0675 0x0514  C:\Windows\System32\wsock32.dll - ok
19:13:13.0675 0x0514  [ EA2B00551F3E7B3D5F7FB730A55F8246, E45CD49CE2D3FF1F3CDB116F8F18EFB09A575021480E45CF9650C837D72272DC ] C:\Windows\System32\blackbox.dll
19:13:13.0675 0x0514  C:\Windows\System32\blackbox.dll - ok
19:13:13.0675 0x0514  [ 3F2B83695E5BF11930C16AF50E991F96, 339535078CDDEF3B0C7C749E7C53634C3B1C7FF18E808F118E1DF36D748A6E15 ] C:\Windows\System32\wmpps.dll
19:13:13.0675 0x0514  C:\Windows\System32\wmpps.dll - ok
19:13:13.0691 0x0514  [ 7B97346CE563B74BBCC120FC83E5A6D9, 03D8BE3F69A02EF22C50365A236CCD56D3A53580B332D1AF51B5560FCB7CD7FD ] C:\Windows\System32\wmpmde.dll
19:13:13.0691 0x0514  C:\Windows\System32\wmpmde.dll - ok
19:13:13.0691 0x0514  [ 81E7E920312D372CF57A817049AC7C76, FF9A2E7FE46937B34F8E61F58DF1F6108742CCE58505F212E8666CB4AB7B74F9 ] C:\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
19:13:13.0691 0x0514  C:\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL - ok
19:13:13.0707 0x0514  [ CBBD4D79EEC3EF5A4ADAE9697944C6B9, 5A642C6C384E69F4B25FFF250EFC8ED4FC6398132C811CBA8B5144F20F0CC621 ] C:\Windows\System32\MSMPEG2ENC.DLL
19:13:13.0707 0x0514  C:\Windows\System32\MSMPEG2ENC.DLL - ok
19:13:13.0707 0x0514  [ 47D052D9EE1FD3BA2A55D13F61E3EF24, 8DB44BA6FC0C49039F3E95D6137CFFF9EE0E0B24CA4E25342B7EFA897737DFAC ] C:\Windows\System32\drmv2clt.dll
19:13:13.0707 0x0514  C:\Windows\System32\drmv2clt.dll - ok
19:13:13.0707 0x0514  [ 954EA9B34F155C844B11F4047A8F6F89, 44703118AE57D44C802DFA5619DC1CA55C5C046D666CE546E5870D722786E395 ] C:\Windows\System32\upnp.dll
19:13:13.0707 0x0514  C:\Windows\System32\upnp.dll - ok
19:13:13.0707 0x0514  [ 89F4D0DD6606A2FE15931E6888DBBC8D, 513D9F6DB0D993DB6D720DF1FF4FED2C6A9B067522CDEE389CA40D3B618B6A55 ] C:\Windows\System32\stdole2.tlb
19:13:13.0707 0x0514  C:\Windows\System32\stdole2.tlb - ok
19:13:13.0722 0x0514  [ FD6DB4D8CAE17FA4E75202EA5D445D7E, 50E517FDE019D9AA04022E6B3D8CBBBD1AEB2990D29121FC7DCCDFC0C278E515 ] C:\Windows\System32\en-US\KernelBase.dll.mui
19:13:13.0722 0x0514  C:\Windows\System32\en-US\KernelBase.dll.mui - ok
19:13:13.0722 0x0514  [ 31C2ADCC585BF23219EAC12923EC4B8C, B5BA2366916D075ECC11C09452236ACFD3D733A6DBC7471701E603C48F01D494 ] C:\Windows\System32\msxml3r.dll
19:13:13.0722 0x0514  C:\Windows\System32\msxml3r.dll - ok
19:13:13.0722 0x0514  [ 81C0FA250EF6DC1C6B3FA2BCE81D6C2E, B1F7FCDA2C8D81CB3661F014745E00423CDDA99AD7909C7BB52DBFA414F2F23D ] C:\Windows\System32\WinSATAPI.dll
19:13:13.0722 0x0514  C:\Windows\System32\WinSATAPI.dll - ok
19:13:13.0738 0x0514  [ C2A9093E56551AACD417926F14F848E8, 7405CD8FD230173F344E0607A9223FA95329EE5134B8B95CA13F5E502999A6A8 ] C:\Windows\System32\msxml6r.dll
19:13:13.0738 0x0514  C:\Windows\System32\msxml6r.dll - ok
19:13:13.0738 0x0514  [ 330A6E9A4A6FA657EBB094FCD82EFA9D, A6FB52B22E495FCCDA4FA7E4D6F7C458DA59A9D3E020ADE410E3A22416197F9F ] C:\Windows\System32\en-US\WinSATAPI.dll.mui
19:13:13.0738 0x0514  C:\Windows\System32\en-US\WinSATAPI.dll.mui - ok
19:13:13.0738 0x0514  [ 5BB8C06EB5EA4BA22EE8A678F2D79B25, 019E9274DE2F5BAB16B4632B8A2E93DFC8DF0C08EC4EEA947B337FD29EB2E0CC ] C:\Windows\System32\devenum.dll
19:13:13.0738 0x0514  C:\Windows\System32\devenum.dll - ok
19:13:13.0753 0x0514  [ 7069AAB8536F29ED7323140973A2894B, 04B7FB6C64BFA3B80549F35CEF36D5DAE5D19A40E42444B3665B6BEFDF98EB5F ] C:\Windows\System32\msdmo.dll
19:13:13.0753 0x0514  C:\Windows\System32\msdmo.dll - ok
19:13:13.0753 0x0514  [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] C:\Windows\System32\upnphost.dll
19:13:13.0753 0x0514  C:\Windows\System32\upnphost.dll - ok
19:13:13.0753 0x0514  [ 03AA82C3772DE28C96E4C83A4A07AF61, A4736B823C75D823971C99461823FD58A747A5D5C2C7D0EA9906CA3D267A3838 ] C:\Windows\System32\en-US\FirewallAPI.dll.mui
19:13:13.0753 0x0514  C:\Windows\System32\en-US\FirewallAPI.dll.mui - ok
19:13:13.0769 0x0514  [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] C:\Windows\System32\ssdpsrv.dll
19:13:13.0769 0x0514  C:\Windows\System32\ssdpsrv.dll - ok
19:13:13.0769 0x0514  [ 4FB491AC8D46AAF22BA8BC5C73DABEF7, CBE2392792D209E15E44AC29E906FFDD5FBF6EED8BAB0D97D66E109AB2C5C56E ] C:\Windows\System32\wbem\WmiPrvSE.exe
19:13:13.0769 0x0514  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
19:13:13.0769 0x0514  [ 2715BB1FEA9C8A9B9E53084C065755B4, AD4FB67CC6D19498DED8F7E0D10A7D7D2B9E355C378C26882F64D45E4D03225C ] C:\Program Files\Opera\launcher.exe
19:13:13.0769 0x0514  C:\Program Files\Opera\launcher.exe - ok
19:13:13.0785 0x0514  [ CB67C2B94302DC94BC15ED6553A5C1C7, AB75F74122123027AF37F8B95CFF1A63852BC2B05F9D7910F0A7FE752AF388FF ] C:\Windows\System32\wbem\cimwin32.dll
19:13:13.0785 0x0514  C:\Windows\System32\wbem\cimwin32.dll - ok
19:13:13.0785 0x0514  [ D0481FB85BEEDD30A0884BE327880F80, D28D53F8FFE4F6D728281BC0FBEF4EB435C153774855AE6348D0B75C80C2EC78 ] C:\Windows\System32\framedynos.dll
19:13:13.0785 0x0514  C:\Windows\System32\framedynos.dll - ok
19:13:13.0785 0x0514  [ C9B9C253C1AAF6730BF8BCA7CC3DCAEF, 8DC3990710485C47E785BE56F86F4EC3666359BC3B77B364B9668ACF7E564A4C ] C:\Windows\System32\wmi.dll
19:13:13.0785 0x0514  C:\Windows\System32\wmi.dll - ok
19:13:13.0800 0x0514  [ 2F6C94BA73C976FAF939358D84E653E9, EEF3BB18CE665F1B02CACC73C79FBC1CEC3B5877EC60042906F6BB56894CA974 ] C:\Windows\System32\azroles.dll
19:13:13.0800 0x0514  C:\Windows\System32\azroles.dll - ok
19:13:13.0800 0x0514  [ BA4F2913CFEE70E866639C59ADD63B00, C90646A63C28A5F1377B721B836E8EC4691862DAF781CC8DB215A1C28F1B86B7 ] C:\Program Files\Opera\24.0.1558.53\launcher_lib.dll
19:13:13.0800 0x0514  C:\Program Files\Opera\24.0.1558.53\launcher_lib.dll - ok
19:13:13.0800 0x0514  [ 8E48B931FA851F1F09E8885B4129483C, F3D7F88F0379A29FAF6B9CAC9020AA9025CE27AEC9CA19DA372E12DA12FA742E ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\en-US\ServiceModelPerformanceCounters.dll.mui
19:13:13.0800 0x0514  C:\Windows\Microsoft.NET\Framework\v4.0.30319\en-US\ServiceModelPerformanceCounters.dll.mui - ok
19:13:13.0800 0x0514  [ D76ADFFFC61C29AC83C1CEC84CFD3C55, 42A1FCCF8258A2E8BF631C18FBB364CB3762FE70540D9DC6819E63110C98739B ] C:\Windows\System32\en-US\umpo.dll.mui
19:13:13.0800 0x0514  C:\Windows\System32\en-US\umpo.dll.mui - ok
19:13:13.0816 0x0514  [ EE29FCC244C8033E2F748D863DCBF378, 406C5EB8FD274588ADC54C07B56DCAEEB21D3C8E38B84BB9B9CFF14629CA7196 ] C:\Windows\System32\drt.dll
19:13:13.0816 0x0514  C:\Windows\System32\drt.dll - ok
19:13:13.0816 0x0514  [ E7C54812A2AAF43316EB6930C1FFA108, C8A6FC1957FA29A3B372132FEA9145538BC767044A11D77316D3D1A3EAA60630 ] C:\Windows\System32\drivers\ndis.sys
19:13:13.0816 0x0514  C:\Windows\System32\drivers\ndis.sys - ok
19:13:13.0816 0x0514  [ AF4D64D2A57B9772CF3801950B8058A6, C9C493A3775E6E1660CE5DF75DA574D0C04245FB88CF41B96217A725359C350D ] C:\Windows\System32\PeerDistSvc.dll
19:13:13.0816 0x0514  C:\Windows\System32\PeerDistSvc.dll - ok
19:13:13.0832 0x0514  [ 0DF34F7EF3BD18DC00C3E03E6E1CA315, F608244DFD63BB0A408609546939E19E2F13CBA67C215D704CBAB8D5E33D7215 ] C:\Windows\System32\WsmRes.dll
19:13:13.0832 0x0514  C:\Windows\System32\WsmRes.dll - ok
19:13:13.0832 0x0514  [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] C:\Windows\System32\tbssvc.dll
19:13:13.0832 0x0514  C:\Windows\System32\tbssvc.dll - ok
19:13:13.0832 0x0514  [ F9B8FE9E8E921CCD7671671FF54F730A, 6FEE1A8CFF2736F11DD4ACA9155B235302E22EB7D9E7B3EF7124A3DF10FF8AF9 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\ServiceModelPerformanceCounters.dll
19:13:13.0832 0x0514  C:\Windows\Microsoft.NET\Framework\v4.0.30319\ServiceModelPerformanceCounters.dll - ok
19:13:13.0847 0x0514  [ 6FA41E0C86EF049A12C05CA4BBA8F9AF, D18758C5A33B4C596EA6E87A16B53D7CF68EA9586C7F11C9518577BC8D7CBC9B ] C:\Windows\System32\perfos.dll
19:13:13.0847 0x0514  C:\Windows\System32\perfos.dll - ok
19:13:13.0847 0x0514  [ FB1BA42D1A1440E99C6B8667E141CFB1, 9ABE7692169AF82150F9B33FB197363DFC37A5DA280E2C53722F9FF4AC68EA95 ] C:\Windows\System32\perfts.dll
19:13:13.0847 0x0514  C:\Windows\System32\perfts.dll - ok
19:13:13.0847 0x0514  [ 1ACC2484F3F111D577ABE4FFB1CAF2A5, 7B93481DD6BE2021C7C7B939FB90C430CB70E1BE4A14E24A8D4D34EEA5AE5F15 ] C:\Windows\System32\perfnet.dll
19:13:13.0847 0x0514  C:\Windows\System32\perfnet.dll - ok
19:13:13.0863 0x0514  [ F4E9693F449600A30088A0B16079F3CD, EF24F4AB066CE66242126C7C7CCDCA09781CCB009EC12927A62EAA537B980DCB ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\Aspnet_perf.dll
19:13:13.0863 0x0514  C:\Windows\Microsoft.NET\Framework\v4.0.30319\Aspnet_perf.dll - ok
19:13:13.0863 0x0514  [ 2FE8810FE251CDE38331ED61F55B5378, 715FB7C48121A6F94D929FB024E12B08550DD25DAB9B7B5AB2B2F939300BE50C ] C:\Program Files\Microsoft Office\Office14\OLMAPI32.DLL
19:13:13.0863 0x0514  C:\Program Files\Microsoft Office\Office14\OLMAPI32.DLL - ok
19:13:13.0863 0x0514  [ 881F98BFE33C2B9C67D75D0B87AA3D36, 024F94BAAACABBF4C4CDF8DD992DFB1064E5DF17A9DC6A1819C6301F6DECD2A6 ] C:\Program Files\Opera\24.0.1558.53\opera.exe
19:13:13.0863 0x0514  C:\Program Files\Opera\24.0.1558.53\opera.exe - ok
19:13:13.0878 0x0514  [ 5BBD1F824741AA1FDA9A9DFD3A9D5416, C9F3EAA48AF158A3377ADD36EA8C0C115A562BCF323D3D4AF41BD7C62285B39B ] C:\Windows\System32\tapiperf.dll
19:13:13.0878 0x0514  C:\Windows\System32\tapiperf.dll - ok
19:13:13.0878 0x0514  [ 7141C57D66182D9E66ABC4767B14E0B3, 1471926FDB0B5B1885EC514D92987BC4341AEA6CF71BF3860E8060A1138B7A9F ] C:\Windows\System32\spool\drivers\w32x86\3\FXSUI.DLL
19:13:13.0878 0x0514  C:\Windows\System32\spool\drivers\w32x86\3\FXSUI.DLL - ok
19:13:13.0878 0x0514  [ 8C9179609935F84202028849112D355A, FBDD3BB4BF8F6854AA4E7E6AD4F86EA3E62363C86D87D2DE884DC343A58C7D07 ] C:\Windows\System32\esentprf.dll
19:13:13.0878 0x0514  C:\Windows\System32\esentprf.dll - ok
19:13:13.0894 0x0514  [ D46E7ED584944A5C5E4BC6C32D5B0222, A412CD14409B7DB6598BBE07901169B8699BE8164B9C14C751A126D51BBFD7FF ] C:\Windows\System32\wbem\ntevt.dll
19:13:13.0894 0x0514  C:\Windows\System32\wbem\ntevt.dll - ok
19:13:13.0894 0x0514  [ C6B0509AA89F656247694E2D6ABF7255, 5E8ABE4B83590E499C418D79FAB152AD3B0FD01E94F137B192518D6DD24E5D97 ] C:\Windows\System32\wbem\wmiprov.dll
19:13:13.0894 0x0514  C:\Windows\System32\wbem\wmiprov.dll - ok
19:13:13.0894 0x0514  [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] C:\Windows\System32\drivers\acpi.sys
19:13:13.0894 0x0514  C:\Windows\System32\drivers\acpi.sys - ok
19:13:13.0910 0x0514  [ 2A73CDAF528D477CEB91D0D39DD21ADD, 3DF87BD9378EA17F51E02855307A9F106478FA9A76A7340C9DA39C844BBBF25F ] C:\Windows\System32\drivers\en-US\ndis.sys.mui
19:13:13.0910 0x0514  C:\Windows\System32\drivers\en-US\ndis.sys.mui - ok
19:13:13.0910 0x0514  [ BA32509D9B340162327B341013DE6522, 478A96ED44326BFAA3CFA9C721A6B00D4C52965909E166D7208F714890BF6CF3 ] C:\Windows\System32\tapi32.dll
19:13:13.0910 0x0514  C:\Windows\System32\tapi32.dll - ok
19:13:13.0910 0x0514  [ B5506B451BFE7148ECA7056BDA2970BD, 4E8E031342E5EA7DD24B5EFCE04B7FB96BAF0B600F548F8FB2414F0E02C54613 ] C:\Windows\System32\riched32.dll
19:13:13.0910 0x0514  C:\Windows\System32\riched32.dll - ok
19:13:13.0925 0x0514  [ 487F44B08EFEAF5AD087878357B9403D, B02C99850940588D52B3E6DB30DB64582F294E0BD62101067BECFEA1483010C6 ] C:\Windows\System32\pdh.dll
19:13:13.0925 0x0514  C:\Windows\System32\pdh.dll - ok
19:13:13.0925 0x0514  [ A42E7748BE906434C5FD17161D168C20, 883A263ED30F9D83A788C484FE61BDB3A518FE489CF97DA4AE9599A8E39E6AE7 ] C:\Windows\System32\schedcli.dll
19:13:13.0925 0x0514  C:\Windows\System32\schedcli.dll - ok
19:13:13.0925 0x0514  [ 248953FBBEE5D5FC7F332D0627052CFE, C99EEB6C59571EA89CA3E0225FCBA4A61B9A4C170535347EE5E8F179A0BDD2CB ] C:\Windows\Branding\Basebrd\basebrd.dll
19:13:13.0925 0x0514  C:\Windows\Branding\Basebrd\basebrd.dll - ok
19:13:13.0941 0x0514  [ 4F6E72B34ED3DC53DCC5E8708E60B61F, CB79F4EBCE11ECCFA167498F329F95D545F8D4E5CCE4006B2A03B595733AEBC2 ] C:\Windows\System32\security.dll
19:13:13.0941 0x0514  C:\Windows\System32\security.dll - ok
19:13:13.0941 0x0514  [ 48C566013F2B20F0BABCAD98079EEC05, C1D5F2CE9A6844BFB2C560E55BCC27364AB902CD14F1BD517551862DCB77B3D7 ] C:\Windows\System32\tzres.dll
19:13:13.0941 0x0514  C:\Windows\System32\tzres.dll - ok
19:13:13.0941 0x0514  [ 45760EECC8B74B251171BE4F247F17CB, 0FAB9A624E632914DB8A4F4245DF9E326063A442A28255A7CB6999349B5455C6 ] C:\Windows\System32\browcli.dll
19:13:13.0941 0x0514  C:\Windows\System32\browcli.dll - ok
19:13:13.0957 0x0514  [ 43BE3B9CA431F88E049928DC45C4365C, D370BEBF27FE039D63B2799F636460988DE751E8088BC7187C05E6E4770E3309 ] C:\Windows\System32\wbem\wmipcima.dll
19:13:13.0957 0x0514  C:\Windows\System32\wbem\wmipcima.dll - ok
19:13:13.0957 0x0514  [ E5F7C30EDF0892667933BE879F067D67, E4BA45F4C6C74A0CDE9B12A00C91E2F5EF83536C89C9053DEC507CBB4F130A12 ] C:\Windows\System32\msvcr100_clr0400.dll
19:13:13.0957 0x0514  C:\Windows\System32\msvcr100_clr0400.dll - ok
19:13:13.0957 0x0514  [ 90FB1802D488FFA9029854A77D4F3F27, FBEAB2065307A2BD9C78D3ABB4F80B8311F3EA68B2F23FD1EF80C24E1DBA1F4D ] C:\Windows\System32\oleaccrc.dll
19:13:13.0957 0x0514  C:\Windows\System32\oleaccrc.dll - ok
19:13:13.0972 0x0514  [ 230EA9ABBC3432CDE388F4891E76E867, 97B169AE84128FE9986BCD70C92FCBA8EB8C814F1C8FD7923BF34B3B984B2745 ] C:\Windows\System32\udhisapi.dll
19:13:13.0972 0x0514  C:\Windows\System32\udhisapi.dll - ok
19:13:13.0972 0x0514  [ 6F4498CFE5F00917CBA9300E1C613D0B, 98C908EFD4F6E1D28858DBB00D96B28F6C204B93F18FBA4B9F28A97CFD4ECDED ] C:\Program Files\Opera\24.0.1558.53\opera_crashreporter.exe
19:13:13.0972 0x0514  C:\Program Files\Opera\24.0.1558.53\opera_crashreporter.exe - ok
19:13:13.0972 0x0514  [ 236360CE5E4C3F063AC110533747C0A8, 405A17410BBB46034EC1DE4B149186A12A0C80AFDADD34C4D7D17B7A24FDF1DC ] C:\Windows\System32\Wpc.dll
19:13:13.0972 0x0514  C:\Windows\System32\Wpc.dll - ok
19:13:13.0988 0x0514  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8, B07A12E3ECD5E418A3F99F00C56E7F482F68CADE330E7C079DCCDFFAD2E21299 ] C:\Windows\System32\dbghelp.dll
19:13:13.0988 0x0514  C:\Windows\System32\dbghelp.dll - ok
19:13:13.0988 0x0514  [ A280E7E364DC535B6C5C74B89A899BB2, 314EF67DE089CDA36055A9A334B082E4C3F5139D20CEBB94FB30C6222B5ECF56 ] C:\Program Files\Opera\24.0.1558.53\d3dcompiler_46.dll
19:13:13.0988 0x0514  C:\Program Files\Opera\24.0.1558.53\d3dcompiler_46.dll - ok
19:13:13.0988 0x0514  [ AF944A25A671D2560177975FBAA4B17B, 548C5D695A687EE1483012C78FA504A1523800A8C19B9A2F4890C6C6E0353DC6 ] C:\Program Files\Opera\24.0.1558.53\libGLESv2.dll
19:13:13.0988 0x0514  C:\Program Files\Opera\24.0.1558.53\libGLESv2.dll - ok
19:13:14.0003 0x0514  [ 6EF5F3F18413C367195F06E503AB86A6, 6F8B87FB4D67F9E76A51EF759B58A95D903C4AAC9C789A65A3FA1FC4F253D978 ] C:\Windows\System32\d3d9.dll
19:13:14.0003 0x0514  C:\Windows\System32\d3d9.dll - ok
19:13:14.0003 0x0514  [ 505375BF09B4CD031A4B6C2E5DA40052, 5584D125571692F84A2F28576E006B5744600AC82846C78AE13784F99EBF33BB ] C:\Program Files\Opera\24.0.1558.53\ffmpegsumo.dll
19:13:14.0003 0x0514  C:\Program Files\Opera\24.0.1558.53\ffmpegsumo.dll - ok
19:13:14.0003 0x0514  [ 77B1471A490B53B24EFE136F09F76550, A650C3A244306F8E605BDA8E74BFE438356BA4403B0CB61E980D3183E3F0A7C7 ] C:\Windows\System32\d3d8thk.dll
19:13:14.0003 0x0514  C:\Windows\System32\d3d8thk.dll - ok
19:13:14.0003 0x0514  [ 41676ED8D35773FD514834EC62CA2A47, 73EF019C09B2BA16E5E7D8C5CEAB58805337DC00390F2AB21F5B553ED4CD4E08 ] C:\Program Files\Opera\24.0.1558.53\libEGL.dll
19:13:14.0003 0x0514  C:\Program Files\Opera\24.0.1558.53\libEGL.dll - ok
19:13:14.0019 0x0514  [ 33D933951E1DD39BA9A973CA5651BC90, 44BA40F73AD91DBB6CEF094D098EDC33CECE7A3AE30E04BA03741A6FA73D1469 ] C:\Windows\System32\d3d11.dll
19:13:14.0019 0x0514  C:\Windows\System32\d3d11.dll - ok
19:13:14.0019 0x0514  [ 3FC9B9010CCB96B2B76BBEE0699DEA1B, 514348E85D1C75178EDE131BBEBAFDA93545CAE91F1DCDDEF12C616D4A39A86E ] C:\Program Files\Opera\24.0.1558.53\opera_autoupdate.exe
19:13:14.0019 0x0514  C:\Program Files\Opera\24.0.1558.53\opera_autoupdate.exe - ok
19:13:14.0019 0x0514  [ 22F183A34D34E82DD46F2FDE62A0AB6D, B40AE1A7AC2EBD314F23DF857A2CD6257F731D927AAB0C7AFF6CBCFC102E414D ] C:\Windows\System32\nvd3dum.dll
19:13:14.0019 0x0514  C:\Windows\System32\nvd3dum.dll - ok
19:13:14.0035 0x0514  [ 421CB2C1010522B3BF7C00725520B844, D8E23D55780556CA383E753928730F37AA3F03C7A081C6D135C75283B17A4A3C ] C:\Program Files\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
19:13:14.0035 0x0514  C:\Program Files\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll - ok
19:13:14.0035 0x0514  [ 7E2B763CF671ADB558D5F7110889D469, 9B221926165A8C577994D2992B5410BD9699E41BF4B92241624B7C69B5EB8707 ] C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL
19:13:14.0035 0x0514  C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL - ok
19:13:14.0035 0x0514  [ 7B882AEBC5F6DBEA4E0361C0FC3E36D4, 97E18C7997F1394AC5CCA44AC287603B427AC1D55E3C5336B38E8B375B638635 ] C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
19:13:14.0035 0x0514  C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL - ok
19:13:14.0050 0x0514  [ 005EBE4A4E6E9C9A7967F6C3F413C1DF, 0181F1867BF1321C9350BBF8FCA7F112C04B21AC9F5FE3ECAABBBE7BDF097F68 ] C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
19:13:14.0050 0x0514  C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll - ok
19:13:14.0050 0x0514  [ 0CA4180B21C6B728578F3B0433BB740E, 2110B88ED2BD706C048D7DA25776D1DD90100B37C2F5E80BE854D8E369E00BF5 ] C:\Program Files\VideoLAN\VLC\npvlc.dll
19:13:14.0050 0x0514  C:\Program Files\VideoLAN\VLC\npvlc.dll - ok
19:13:14.0050 0x0514  [ 18883601394C553AA6A60D0B7392C5DF, 920B671BC7B8730647DFF2B533628B6CD4D04605788E8956DD35E14038B07AF3 ] C:\Program Files\Yahoo!\Shared\npYState.dll
19:13:14.0050 0x0514  C:\Program Files\Yahoo!\Shared\npYState.dll - ok
19:13:14.0066 0x0514  [ DFC9460CC37E5C414DC4680B10C19E7A, 688EAFF5F4BEDBEE18F25BF5EDD0A1FF6B9BA8A1676F596A00286F114C0119FB ] C:\Windows\System32\Macromed\Flash\NPSWF32_15_0_0_152.dll
19:13:14.0066 0x0514  C:\Windows\System32\Macromed\Flash\NPSWF32_15_0_0_152.dll - ok
19:13:14.0066 0x0514  [ 517021D1BCA1962ABF09099014A7D87D, 32DD6FCACE07F2552FD32B8447D4D5B4FD2FF1B42703FE62862E47203F27FAD9 ] C:\Windows\System32\npOGPPlugin.dll
19:13:14.0066 0x0514  C:\Windows\System32\npOGPPlugin.dll - ok
19:13:14.0066 0x0514  [ AA3B91B70E79BCE70AD3B190789B9574, BEA5C6921C0B5A680CC3A5BA1AAD1C365F38C6FA7F80BC93475FFD2AA26F710A ] C:\Windows\System32\drttransport.dll
19:13:14.0066 0x0514  C:\Windows\System32\drttransport.dll - ok
19:13:14.0082 0x0514  [ AF75DBA674E55221B7A055B0A4345F16, 50F1B550F4EBFA946564EB66BBD17C308DCB08055017E010095A94C2EBCE208D ] C:\Windows\System32\keyiso.dll
19:13:14.0082 0x0514  C:\Windows\System32\keyiso.dll - ok
19:13:14.0082 0x0514  [ F148865E4AC4F715E322EA06E6E21D84, 88CF0A1CB18BA9CA3D356EAF2F7EF8892CDDD9BF55798E64E4351C1ED111575A ] C:\Windows\System32\wbem\NCProv.dll
19:13:14.0082 0x0514  C:\Windows\System32\wbem\NCProv.dll - ok
19:13:14.0082 0x0514  [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] C:\Windows\System32\qmgr.dll
19:13:14.0082 0x0514  C:\Windows\System32\qmgr.dll - ok
19:13:14.0097 0x0514  [ 0552A8684BF7566F744D5B19FF6AEC6B, D1EB44C75A0AE0C9ABFE3B1B7AD648DF77B56B4358E522DFF732911906B20B49 ] C:\Windows\System32\bitsperf.dll
19:13:14.0097 0x0514  C:\Windows\System32\bitsperf.dll - ok
19:13:14.0097 0x0514  [ F45ED8C4F9AF862CD9992849B5203C11, F51E56977C33B8F202C2945FB977501C6FFDD453F158B2BE01453FAF13569919 ] C:\Windows\System32\bitsigd.dll
19:13:14.0097 0x0514  C:\Windows\System32\bitsigd.dll - ok
19:13:14.0097 0x0514  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:13:14.0097 0x0514  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
19:13:14.0113 0x0514  [ 34B28F4AD92F4A75D739F7B0E06858EF, E3DC45E153BBE2DD220A292078BB724DF718237FED39F1BCD9112A1C7FE56B1F ] C:\Windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
19:13:14.0113 0x0514  C:\Windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll - ok
19:13:14.0113 0x0514  [ 05DDCB8AB2EB195CD056175ABCC5E3D4, 80144D6386F45EA2B6D82B7A8AF83A52FC5A782B42E45DF285CCB1375B0F2EBE ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\bc09ad2d49d8535371845cd7532f9271\System.Configuration.ni.dll
19:13:14.0113 0x0514  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\bc09ad2d49d8535371845cd7532f9271\System.Configuration.ni.dll - ok
19:13:14.0113 0x0514  [ 5A7A33F7F9DFC0C0A8B8E000F4D9D898, 627785440EAE2D9DB644415353CA69D491AF9182C1533DAD18CD36D4002EB902 ] C:\Windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll
19:13:14.0113 0x0514  C:\Windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll - ok
19:13:14.0128 0x0514  [ 03A5313EEC92FB067B774C220761BD7B, D0A2A96B52769841C8CC417BE97C6AA82F8A4CD6F6A62553C6DB005174ABB712 ] C:\Windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll
19:13:14.0128 0x0514  C:\Windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll - ok
19:13:14.0128 0x0514  [ 5B3FA17E1CD6FBBDF41AC34DAEECC256, 555B1F6E2A11C61F2881E351229A43E6FB74163D2C6C6FF8411B058D41C4B35F ] C:\Windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll
19:13:14.0128 0x0514  C:\Windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll - ok
19:13:14.0128 0x0514  [ 15E587339793E93FB169CF206A079B38, 5634668D4775B0113F08EA31093B281FEA69BFC4E99227F5CA761B4ED98ACC63 ] C:\Windows\Microsoft.NET\assembly\GAC_32\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.dll
19:13:14.0128 0x0514  C:\Windows\Microsoft.NET\assembly\GAC_32\mscorlib\v4.0_4.0.0.0__b77a5c561934e089\mscorlib.dll - ok
19:13:14.0144 0x0514  [ 6C69EA6A0C308A0FB81992CAC9F39C59, 164BEB9C5CCBEEFF98210881ECCA6FD5BC7FE241F716F93D7FC69431F34240CD ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\fusion.dll
19:13:14.0144 0x0514  C:\Windows\Microsoft.NET\Framework\v4.0.30319\fusion.dll - ok
19:13:14.0144 0x0514  [ 78FA8D72060D2DF14BB8AD6C2905C69B, 0227A899085741C1D4D5AFED100FD9D20CD73E02C8BB8374638BB4D145CB2588 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
19:13:14.0144 0x0514  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
19:13:14.0144 0x0514  [ 5FF5E12F28725D14CAA3B408848ADFFC, 32C38FEC25F193EAB1C7EB567666D4F7E46117AC3C1F341C14C1DD5C926BFAAC ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_d08cc06a442b34fc\msvcr80.dll
19:13:14.0144 0x0514  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_d08cc06a442b34fc\msvcr80.dll - ok
19:13:14.0160 0x0514  [ 2795EAA90EDAB15BB239B4DCD3BEB633, 37230C15320812FFA4588113741D82927DA796A6DEBDEFA98F58614F33DC61D8 ] C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll
19:13:14.0160 0x0514  C:\Windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll - ok
19:13:14.0160 0x0514  [ 11B30A8447A724C6E9FBF6261AC0DA6E, 26F9D10E3662E6AE58C2AAE522157EBF50FDA374E2E508F31DFC9146E14370C7 ] C:\Windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll
19:13:14.0160 0x0514  C:\Windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll - ok
19:13:14.0160 0x0514  [ DDA14784F9D8C9E8C91E9236E8A3FCD2, 3844307EB7A42715ADE292A2EB154FB6EAA754321016121FF638C02C6CBD57E4 ] C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll
19:13:14.0160 0x0514  C:\Windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll - ok
19:13:14.0175 0x0514  [ 6B6E88E4FFDC4ACD4452563BA2374697, 1853402E89C7C8436747BE26B023EF306EDD1A1AD3F5DDCCDD30504067D86E44 ] C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
19:13:14.0175 0x0514  C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok
19:13:14.0175 0x0514  [ 120702DF996A3C05EEE1B1A9D1D50E1C, C6CBA29A3B09002E1844B484E61CDE7A9CF1AE51D8E43542E365786FD4E52E39 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\9859a6e0562f64eacfb8ad76f260a2d6\Accessibility.ni.dll
19:13:14.0175 0x0514  C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\9859a6e0562f64eacfb8ad76f260a2d6\Accessibility.ni.dll - ok
19:13:14.0175 0x0514  [ FA6C66E4364D7DA57AADE5DCC03BB999, 9C0D0A04D2558CF60B7F7185CC9B369CDDD3B1C625960910CECF07611F288378 ] C:\Windows\System32\FntCache.dll
19:13:14.0175 0x0514  C:\Windows\System32\FntCache.dll - ok
19:13:14.0191 0x0514  [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] C:\Windows\System32\sppsvc.exe
19:13:14.0191 0x0514  C:\Windows\System32\sppsvc.exe - ok
19:13:14.0191 0x0514  [ D16D818E9930A6E5B4F6476DD0998D1A, 11284FBAE473325322DA0CA6F9317B9A700A666D6D907BBBC812FD0E7BE7FE67 ] C:\Windows\System32\drivers\spsys.sys
19:13:14.0191 0x0514  C:\Windows\System32\drivers\spsys.sys - ok
19:13:14.0191 0x0514  [ 3A11396EAC2414012155AB14E5C1E332, 27B2DF1C2980098025EC43B354C150BA1CE795F1138DFC03C763A115BBF77010 ] C:\Windows\System32\sppwinob.dll
19:13:14.0191 0x0514  C:\Windows\System32\sppwinob.dll - ok
19:13:14.0207 0x0514  [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] C:\Windows\System32\wscsvc.dll
19:13:14.0207 0x0514  C:\Windows\System32\wscsvc.dll - ok
19:13:14.0207 0x0514  [ 421D9645B72CD341ECDBB0FCE06C97DE, C2F0DF431E526A8F6F3F521E1BD26838A6A7B5F8E5DBDD044871815DBC5FF6B1 ] C:\Windows\System32\sppobjs.dll
19:13:14.0207 0x0514  C:\Windows\System32\sppobjs.dll - ok
19:13:14.0207 0x0514  [ 387A8A473ECC5BA02CF453277C1F3274, 3F36D3088B0F7CB0CC2C31E8F908527EC5502F0D3153D20332745B7BBF8B04D7 ] C:\Windows\System32\mspatcha.dll
19:13:14.0207 0x0514  C:\Windows\System32\mspatcha.dll - ok
19:13:14.0222 0x0514  [ 459E257F8915D44B23ACB46211FD45D0, 11A72DBFB0AAC070BB77A7AE9358E9A9402F2FD0484D87F1BFA4DF5A280DCF47 ] C:\Windows\System32\wups2.dll
19:13:14.0222 0x0514  C:\Windows\System32\wups2.dll - ok
19:13:14.0222 0x0514  [ 8258362DDB18B644A82D8B5061AD9426, 87CA586B2B1B0089BFF6A259A0743D184AE383B3B12C4BC5986D72ADFFBE9EDA ] C:\Windows\System32\wscisvif.dll
19:13:14.0222 0x0514  C:\Windows\System32\wscisvif.dll - ok
19:13:14.0222 0x0514  [ 7DF186D86CF8C571A12AAB788C777F84, A2C1064BFDEF2A85CB12A11E55728BCC09933C115C278403F07B27DB2C36C710 ] C:\Windows\System32\wscproxystub.dll
19:13:14.0222 0x0514  C:\Windows\System32\wscproxystub.dll - ok
19:13:14.0238 0x0514  [ F175E53C7C3B25A9029A131FB578B155, 474286F3070D37B418FDEC34B27B027618B025FA5EEA9AA6C8546E0CA8B34133 ] C:\Windows\System32\wscinterop.dll
19:13:14.0238 0x0514  C:\Windows\System32\wscinterop.dll - ok
19:13:14.0238 0x0514  [ 7FD5532C142DB6C9CC47AA4DCF71FDEC, 16BBC7ABBEC24B66A4824D8A4FFDB76A488E6F07182103F5292A3033542BF77A ] C:\Windows\System32\wscui.cpl
19:13:14.0238 0x0514  C:\Windows\System32\wscui.cpl - ok
19:13:14.0238 0x0514  [ 1869BD251211FB6275067372A45682D6, 71E2377FD47C437E82BC5CD136EC9A0B385DE7707B6D483A00E412776F88B6DA ] C:\Windows\System32\werconcpl.dll
19:13:14.0238 0x0514  C:\Windows\System32\werconcpl.dll - ok
19:13:14.0253 0x0514  [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] C:\Windows\System32\wercplsupport.dll
19:13:14.0253 0x0514  C:\Windows\System32\wercplsupport.dll - ok
19:13:14.0253 0x0514  [ 57CE9D8350B1DD76EEC596C423C3C0BC, 289BB8EFEB2CA0E6905DD83F3F0156EA7B215221F675F6EA93ABF87DF61C8D3D ] C:\Windows\System32\hcproviders.dll
19:13:14.0253 0x0514  C:\Windows\System32\hcproviders.dll - ok
19:13:14.0253 0x0514  [ D40E7B5FBB8E0EAA7C5C294389AF95AB, 8EFD521DF1F335AF416DEC15D5C0C6538903803AA1A8ED93AA704B384A29876B ] C:\Users\User\Desktop\TDSSKiller.exe
19:13:14.0253 0x0514  C:\Users\User\Desktop\TDSSKiller.exe - ok
19:13:14.0269 0x0514  [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\User\AppData\Local\Temp\{9E75D5E1-B030-4EA1-A8BB-12EB8D2C1BB1}\{4F31821E-D902-435A-BC23-0956D5995E9C}.tmp
19:13:14.0269 0x0514  C:\Users\User\AppData\Local\Temp\{9E75D5E1-B030-4EA1-A8BB-12EB8D2C1BB1}\{4F31821E-D902-435A-BC23-0956D5995E9C}.tmp - ok
19:13:14.0269 0x0514  [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\User\AppData\Local\Temp\{9E75D5E1-B030-4EA1-A8BB-12EB8D2C1BB1}\{7D1F5401-C264-4FB2-A93A-C6AFC32FC826}.tmp
19:13:14.0269 0x0514  C:\Users\User\AppData\Local\Temp\{9E75D5E1-B030-4EA1-A8BB-12EB8D2C1BB1}\{7D1F5401-C264-4FB2-A93A-C6AFC32FC826}.tmp - ok
19:13:14.0269 0x0514  [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\Users\User\AppData\Local\Temp\{9E75D5E1-B030-4EA1-A8BB-12EB8D2C1BB1}\{4F504290-8AC4-405B-B2D6-68D53AEF1573}.tmp
19:13:14.0269 0x0514  C:\Users\User\AppData\Local\Temp\{9E75D5E1-B030-4EA1-A8BB-12EB8D2C1BB1}\{4F504290-8AC4-405B-B2D6-68D53AEF1573}.tmp - ok
19:13:14.0285 0x0514  [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\User\AppData\Local\Temp\{9E75D5E1-B030-4EA1-A8BB-12EB8D2C1BB1}\{C4940F30-4996-4A7E-852B-7D06C82FB181}.tmp
19:13:14.0285 0x0514  C:\Users\User\AppData\Local\Temp\{9E75D5E1-B030-4EA1-A8BB-12EB8D2C1BB1}\{C4940F30-4996-4A7E-852B-7D06C82FB181}.tmp - ok
19:13:14.0285 0x0514  [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\User\AppData\Local\Temp\{9E75D5E1-B030-4EA1-A8BB-12EB8D2C1BB1}\{079E1B33-8BA1-43DB-8068-E4265C91870C}.tmp
19:13:14.0285 0x0514  C:\Users\User\AppData\Local\Temp\{9E75D5E1-B030-4EA1-A8BB-12EB8D2C1BB1}\{079E1B33-8BA1-43DB-8068-E4265C91870C}.tmp - ok
19:13:14.0285 0x0514  [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\User\AppData\Local\Temp\{9E75D5E1-B030-4EA1-A8BB-12EB8D2C1BB1}\{94CB5FF4-D358-4808-A296-A6070B8059BB}.tmp
19:13:14.0285 0x0514  C:\Users\User\AppData\Local\Temp\{9E75D5E1-B030-4EA1-A8BB-12EB8D2C1BB1}\{94CB5FF4-D358-4808-A296-A6070B8059BB}.tmp - ok
19:13:14.0300 0x0514  [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\User\AppData\Local\Temp\{9E75D5E1-B030-4EA1-A8BB-12EB8D2C1BB1}\{5EB2FFD9-68AB-43A2-88F9-A621B24A2985}.tmp
19:13:14.0300 0x0514  C:\Users\User\AppData\Local\Temp\{9E75D5E1-B030-4EA1-A8BB-12EB8D2C1BB1}\{5EB2FFD9-68AB-43A2-88F9-A621B24A2985}.tmp - ok
19:13:14.0300 0x0514  [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\User\AppData\Local\Temp\{9E75D5E1-B030-4EA1-A8BB-12EB8D2C1BB1}\{FC3D9066-543C-4A0E-BC6A-FAE0B8A4D2EB}.tmp
19:13:14.0300 0x0514  C:\Users\User\AppData\Local\Temp\{9E75D5E1-B030-4EA1-A8BB-12EB8D2C1BB1}\{FC3D9066-543C-4A0E-BC6A-FAE0B8A4D2EB}.tmp - ok
19:13:14.0300 0x0514  [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\User\AppData\Local\Temp\{9E75D5E1-B030-4EA1-A8BB-12EB8D2C1BB1}\{FB86E54C-8B3D-4A17-89E4-4833E4D824C9}.tmp
19:13:14.0300 0x0514  C:\Users\User\AppData\Local\Temp\{9E75D5E1-B030-4EA1-A8BB-12EB8D2C1BB1}\{FB86E54C-8B3D-4A17-89E4-4833E4D824C9}.tmp - ok
19:13:14.0316 0x0514  [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\User\AppData\Local\Temp\{9E75D5E1-B030-4EA1-A8BB-12EB8D2C1BB1}\{08DA2192-AB3F-453D-A88B-EF840373F718}.tmp
19:13:14.0316 0x0514  C:\Users\User\AppData\Local\Temp\{9E75D5E1-B030-4EA1-A8BB-12EB8D2C1BB1}\{08DA2192-AB3F-453D-A88B-EF840373F718}.tmp - ok
19:13:14.0316 0x0514  [ 89ED7C028A487340B7D93D5A38FDCB54, 8217FA0DE986E9041C030CD8D504F706E8D9DE10ED205A2619FF62461EDC1441 ] C:\Windows\System32\SearchProtocolHost.exe
19:13:14.0316 0x0514  C:\Windows\System32\SearchProtocolHost.exe - ok
19:13:14.0316 0x0514  [ A5D237B8673025B052C0E6FDB6A883E8, 0DAE34965C08F7450938A5145D2B53C68AA917744B8C6FCB130A35C03C5CEF6F ] C:\Windows\System32\msshooks.dll
19:13:14.0316 0x0514  C:\Windows\System32\msshooks.dll - ok
19:13:14.0332 0x0514  [ 8A674F9AB20B4937357BF6F5A0938EBF, 0EC6D49818BE7731C55CB629AEF43A7794FB5ABEF9FF83812470FE21A6213CDD ] C:\Windows\System32\SearchFilterHost.exe
19:13:14.0332 0x0514  C:\Windows\System32\SearchFilterHost.exe - ok
19:13:14.0332 0x0514  [ 285354B4C28567054F9E382EAC540D05, D5A166582C7F0A55382833E86AA8E50B5ABA63BB64BEBDEA8BE29A965FAC21A4 ] C:\Windows\System32\mssvp.dll
19:13:14.0332 0x0514  C:\Windows\System32\mssvp.dll - ok
19:13:14.0332 0x0514  [ 8BC9DB92C4B2F3BE89185BEAB2AFC1F6, 4F40D5CCE264290C8DD73A5766062A55ED4CF77D8F6B59D453DDB6F88B640D7E ] C:\Windows\System32\mapi32.dll
19:13:14.0332 0x0514  C:\Windows\System32\mapi32.dll - ok
19:13:14.0347 0x0514  [ 8B57A1AD493653BB57F281FE75DD175B, 65A54DDCA45CED94F7CF079632F127C247DD9E5E4D2B074593F89621F8CC6C55 ] C:\Windows\System32\NaturalLanguage6.dll
19:13:14.0347 0x0514  C:\Windows\System32\NaturalLanguage6.dll - ok
19:13:14.0347 0x0514  [ 2992932C1AB1D29A1A4A9E8CB8530CBF, 894FB2246F09FAC7E78FA1DC0159E888944AD3F4E66844BCE01A967B789CC82B ] C:\Windows\System32\NlsData0009.dll
19:13:14.0347 0x0514  C:\Windows\System32\NlsData0009.dll - ok
19:13:14.0347 0x0514  [ C8CB301BF896C7C556BBE963FADF5BB6, 94ABF348C70E4BE391B9344CC730A0A98D6EB042EA1D031840DA3DB74A76849C ] C:\Windows\System32\NlsLexicons0009.dll
19:13:14.0347 0x0514  C:\Windows\System32\NlsLexicons0009.dll - ok
19:13:14.0347 0x0514  ================ Scan generic autorun ======================
19:13:14.0363 0x0514  [ 901AA7A38CE13F14B6BBEC38C0595698, 1E95F2048E2A1782807D52E9816ED267355718E24D01FF07ACE73D965EDE388A ] C:\Program Files\Microsoft Office\Office14\BCSSync.exe
19:13:14.0378 0x0514  BCSSync - ok
19:13:14.0410 0x0514  [ 03396637E1E1B4E333D00AED86178918, CF582487E856D01C960392AC658E8D36A92F2B2B4B9AEA9BFC9E6F75FBAD6571 ] C:\Program Files\Microsoft Security Client\msseces.exe
19:13:14.0441 0x0514  MSC - ok
19:13:14.0675 0x0514  [ F50CA00F1929D9294FE01894D0168A7F, 197B7402215422B05837439E6973FD76F8C052A089DB61AA75CF8082A8389344 ] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
19:13:14.0847 0x0514  RtHDVCpl - ok
19:13:14.0910 0x0514  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
19:13:14.0925 0x0514  Adobe ARM - ok
19:13:14.0988 0x0514  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
19:13:15.0035 0x0514  Sidebar - ok
19:13:15.0050 0x0514  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
19:13:15.0066 0x0514  mctadmin - ok
19:13:15.0113 0x0514  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
19:13:15.0144 0x0514  Sidebar - ok
19:13:15.0144 0x0514  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
19:13:15.0160 0x0514  mctadmin - ok
19:13:15.0191 0x0514  Akamai NetSession Interface - ok
19:13:15.0207 0x0514  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.4.304.0 ), 0x61000 ( enabled : updated )
19:13:15.0207 0x0514  Win FW state via NFP2: disabled
19:13:18.0238 0x0514  ============================================================
19:13:18.0238 0x0514  Scan finished
19:13:18.0238 0x0514  ============================================================
19:13:18.0238 0x0c6c  Detected object count: 1
19:13:18.0238 0x0c6c  Actual detected object count: 1
19:14:39.0465 0x0c6c  KMService ( UnsignedFile.Multi.Generic ) - skipped by user
19:14:39.0465 0x0c6c  KMService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
19:15:56.0793 0x0c7c  Deinitialize success


#11 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,358 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:04:21 AM

Posted 17 September 2014 - 10:32 AM

There are tools or techniques which cannot be used in this forum which will be needed to clean your computer.  For this reason you will need to open another topic in the Virus, Trojan, Spyware, and Malware Removal Logs forum.
 
Before posting your topic there you will need to read and follow the instructions in the Preparation Guide For Use Before Using Malware Removal Tools and Requesting Help.
 
This forum is always busy, for this reason it may take a couple of days before a member of the Malware Removal Team will be able to get to your topic.  Do not add anything once you have posted your log.  The Malware Removal Team members look for topics which have not been addressed, if you post any additional information it will make it appear that the topic is being addressed.
 
After you have posted your new topic a Moderator will close this topic.  If after cleaning the infection it is determined that you have a software or hardware issue you can contact a Moderator to have your topic reopened.  

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users