Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Multiple dllhost.exe appearing in task manager


  • This topic is locked This topic is locked
22 replies to this topic

#1 poppyseed

poppyseed

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:03:12 PM

Posted 19 October 2014 - 03:25 PM

Hi,

I have a HP labtop running windows 7 and I have been exexperiencing very slow response from my computer. The CPU usage is at 100%.

If any one could help me with this problem that would br great.

BC AdBot (Login to Remove)

 


#2 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:11:12 PM

Posted 19 October 2014 - 03:51 PM

Hello! Welcome to BleepingComputer Forums! :welcome:
My name is Georgi and and I will be helping you with your computer problems.

Before we begin, please note the following:

  • I will working be on your Malware issues, this may or may not, solve other issues you have with your machine.
  • The logs can take some time to research, so please be patient with me.
  • Stay with the topic until I tell you that your system is clean. Missing symptoms does not mean that everything is okay.
  • Instructions that I give are for your system only!
  • Please do not run any tools until requested ! The reason for this is so I know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.
  • Please perform all steps in the order received. If you can't understand something don't hesitate to ask.
  • Again I would like to remind you to make no further changes to your computer unless I direct you to do so. I will not help you if you do not follow my instructions.

 

 

Please download the latest version of Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Double-click to run it. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

 

 

Regards,

Georgi


cXfZ4wS.png


#3 poppyseed

poppyseed
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:03:12 PM

Posted 19 October 2014 - 04:40 PM

Hi Georgi Thanks for helping me.

 

Here is my FRST.txt log:

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-10-2014
Ran by User (administrator) on USER-PC on 19-10-2014 17:32:44
Running from C:\Users\User\Downloads
Loaded Profile: User (Available profiles: User)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
(Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(Eastman Kodak Company) C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe
(Eastman Kodak Company) C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
(LeapFrog Enterprises, Inc.) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Eastman Kodak Company) C:\Windows\System32\spool\drivers\x64\3\EKIJ5000MUI.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(Google Inc.) C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
(McAfee, Inc.) C:\Program Files (x86)\McAfee Security Scan\3.0.285\SSScheduler.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(LeapFrog Enterprises, Inc.) C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
() C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1234216 2008-03-28] (Synaptics, Inc.)
HKLM\...\Run: [EKIJ5000StatusMonitor] => C:\Windows\system32\spool\DRIVERS\x64\3\EKIJ5000MUI.exe [3182080 2012-10-08] (Eastman Kodak Company)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2010-11-29] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [421160 2011-06-07] (Apple Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-11-02] (CyberLink)
HKLM-x32\...\Run: [TWebCamera] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe [2454840 2010-02-24] (TOSHIBA CORPORATION.)
HKLM-x32\...\Run: [YouCam Service] => C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe [247016 2011-09-09] (CyberLink Corp.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BingDesktop] => C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe [2368736 2014-06-03] (Microsoft Corp.)
HKLM-x32\...\Run: [Conime] => %windir%\system32\conime.exe
HKLM-x32\...\Run: [EKStatusMonitor] => C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKStatusMonitor.exe [2750840 2013-01-15] (Eastman Kodak Company)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2691480 2014-03-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [204136 2012-09-13] (Logitech Inc.)
HKLM-x32\...\Run: [Monitor] => C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe [106496 2014-01-22] (LeapFrog Enterprises, Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3299709030-147293944-2658779064-1000\...\Run: [Google Update] => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-12-01] (Google Inc.)
HKU\S-1-5-21-3299709030-147293944-2658779064-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [1939136 2014-08-28] (Valve Corporation)
HKU\S-1-5-21-3299709030-147293944-2658779064-1000\...\Run: [Amazon Cloud Player] => C:\Users\User\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe [3145536 2014-05-08] ()
HKU\S-1-5-21-3299709030-147293944-2658779064-1000\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-21-3299709030-147293944-2658779064-1000\...\Policies\Explorer: [LinkResolveIgnoreLinkInfo] 1
HKU\S-1-5-21-3299709030-147293944-2658779064-1000\...\Policies\Explorer: [NoResolveSearch] 1
HKU\S-1-5-21-3299709030-147293944-2658779064-1000\...\Policies\Explorer: [NoInternetOpenWith] 1
HKU\S-1-5-21-3299709030-147293944-2658779064-1000\...A8F59079A8D5}\localserver32: rundll32.exe javascript:"\..\mshtml,RunHTMLApplication ";eval("epdvnfou/xsjuf)(=tdsjqu!mbohvbhf>ktds (the data entry has 239 more characters). <==== Poweliks!
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files (x86)\McAfee Security Scan\3.0.285\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
ShortcutTarget: OneNote 2007 Screen Clipper and Launcher.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/
SearchScopes: HKCU - {96bd48dd-741b-41ae-ac4a-aff96ba00f7e} URL = http://search.coupons.com/search.asp?p=df&q={searchTerms}
BHO: AVG Safe Search -> {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -> C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll No File
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Microsoft.Search.HRSToolBar.InitToolbarBHO -> {1d970ed5-3eda-438d-bffd-715931e2775d} -> C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: AVG Safe Search -> {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -> C:\Program Files (x86)\AVG\AVG2012\avgssie.dll No File
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - Bing HRS Toolbar - {c9a6357b-25cc-4bcf-96c1-78736985d414} - C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgppa.dll No File
Handler-x32: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @java.com/DTPlugin,version=10.9.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @mcafee.com/MVT -> C:\Program Files (x86)\McAfee\Supportability\MVT\NPMVTPlugin.dll (McAfee, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin -> C:\Users\User\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin -> C:\Users\User\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> C:\Users\User\AppData\Local\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> C:\Users\User\AppData\Local\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: hopster.com/CouponPrinterPlugin -> C:\Users\User\AppData\Roaming\Hopster\CouponPrinterPlugin\2.0.2.0\npCouponPrinterPlugin.dll (Hopster)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npCouponPrinter.dll (Coupons, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMozCouponPrinter.dll (Coupons, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\User\AppData\Roaming\mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\User\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)

Chrome:
=======
CHR HomePage: Default ->
CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2012-12-01]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-09-02]
CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2012-12-01]
CHR Extension: (Google Search) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2012-12-01]
CHR Extension: (20-20 3D Viewer for Virtual Studio) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpbhljkhbideandpbhpinhedfgdhkpdc [2013-01-12]
CHR Extension: (Google Wallet) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-24]
CHR Extension: (Gmail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2012-12-01]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173792 2014-06-03] (Microsoft Corp.)
R2 LeapFrog Connect Device Service; C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe [7393280 2014-01-22] (LeapFrog Enterprises, Inc.) [File not signed]
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-10-01] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [968504 2014-10-01] (Malwarebytes Corporation)
S2 McNASvc; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
S2 McProxy; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [201304 2012-08-31] (McAfee, Inc.)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [244904 2010-09-15] () [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 mbamchameleon; C:\Windows\system32\drivers\mbamchameleon.sys [93400 2014-10-01] (Malwarebytes Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-10-01] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2014-10-19] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-10-01] (Malwarebytes Corporation)
S2 MCSTRM; No ImagePath
S1 MpKsl125e77ea; \??\C:\Windows\system32\MpEngineStore\MpKsl125e77ea.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-19 17:32 - 2014-10-19 17:35 - 00017687 _____ () C:\Users\User\Downloads\FRST.txt
2014-10-19 17:31 - 2014-10-19 17:33 - 00000000 ____D () C:\FRST
2014-10-19 17:30 - 2014-10-19 17:30 - 02112512 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2014-10-14 22:51 - 2014-10-09 22:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-14 22:51 - 2014-10-06 22:54 - 00378552 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-14 22:51 - 2014-10-06 22:04 - 00331448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-14 22:51 - 2014-09-28 20:58 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-14 22:51 - 2014-09-25 18:50 - 13619200 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-14 22:51 - 2014-09-25 18:46 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-14 22:51 - 2014-09-25 18:46 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-14 22:51 - 2014-09-25 18:46 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-14 22:51 - 2014-09-25 18:43 - 11807232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-14 22:51 - 2014-09-25 18:32 - 02017280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-14 22:51 - 2014-09-25 18:31 - 02108416 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-14 22:51 - 2014-09-18 22:25 - 23631360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-14 22:51 - 2014-09-18 21:56 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-14 22:51 - 2014-09-18 21:55 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-10-14 22:51 - 2014-09-18 21:44 - 17484800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-14 22:51 - 2014-09-18 21:41 - 02796032 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-14 22:51 - 2014-09-18 21:40 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-10-14 22:51 - 2014-09-18 21:40 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-14 22:51 - 2014-09-18 21:39 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-10-14 22:51 - 2014-09-18 21:38 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-10-14 22:51 - 2014-09-18 21:36 - 05829632 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-14 22:51 - 2014-09-18 21:31 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-14 22:51 - 2014-09-18 21:30 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-14 22:51 - 2014-09-18 21:27 - 00595968 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-14 22:51 - 2014-09-18 21:26 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-10-14 22:51 - 2014-09-18 21:25 - 04201472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-14 22:51 - 2014-09-18 21:25 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-10-14 22:51 - 2014-09-18 21:25 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-10-14 22:51 - 2014-09-18 21:18 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-10-14 22:51 - 2014-09-18 21:14 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-14 22:51 - 2014-09-18 21:14 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-14 22:51 - 2014-09-18 21:06 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-10-14 22:51 - 2014-09-18 21:02 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-10-14 22:51 - 2014-09-18 21:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-14 22:51 - 2014-09-18 21:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-14 22:51 - 2014-09-18 21:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-10-14 22:51 - 2014-09-18 21:00 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-14 22:51 - 2014-09-18 20:59 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-10-14 22:51 - 2014-09-18 20:58 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-14 22:51 - 2014-09-18 20:55 - 02187264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-14 22:51 - 2014-09-18 20:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-14 22:51 - 2014-09-18 20:53 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-14 22:51 - 2014-09-18 20:51 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-14 22:51 - 2014-09-18 20:50 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-10-14 22:51 - 2014-09-18 20:49 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-10-14 22:51 - 2014-09-18 20:42 - 00731136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-14 22:51 - 2014-09-18 20:42 - 00710656 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-14 22:51 - 2014-09-18 20:40 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-10-14 22:51 - 2014-09-18 20:36 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-14 22:51 - 2014-09-18 20:33 - 02309632 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-14 22:51 - 2014-09-18 20:32 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-14 22:51 - 2014-09-18 20:20 - 00607744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-14 22:51 - 2014-09-18 20:18 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-10-14 22:51 - 2014-09-18 20:14 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-14 22:51 - 2014-09-18 19:59 - 01810944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-14 22:51 - 2014-09-18 19:59 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-10-14 22:51 - 2014-09-18 19:53 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-14 22:51 - 2014-09-18 19:52 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-10-14 22:51 - 2014-06-18 18:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-14 22:51 - 2014-06-18 18:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-14 22:51 - 2014-06-18 18:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-14 22:51 - 2014-06-18 18:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-14 22:51 - 2014-06-18 18:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-14 22:51 - 2014-06-18 18:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-14 22:50 - 2014-10-09 22:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-14 22:50 - 2014-10-09 22:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-14 22:50 - 2014-08-18 23:11 - 00693176 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-10-14 22:50 - 2014-08-18 23:10 - 00616352 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-10-14 22:50 - 2014-08-18 23:08 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-10-14 22:50 - 2014-08-18 23:08 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2014-10-14 22:50 - 2014-08-18 23:08 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2014-10-14 22:50 - 2014-08-18 23:07 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2014-10-14 22:50 - 2014-08-18 23:07 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2014-10-14 22:50 - 2014-08-18 23:07 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2014-10-14 22:50 - 2014-08-18 23:07 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2014-10-14 22:50 - 2014-08-18 23:07 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2014-10-14 22:50 - 2014-08-18 22:41 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2014-10-14 22:50 - 2014-08-18 22:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-10-14 22:50 - 2014-08-18 22:06 - 00061440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2014-10-14 22:50 - 2014-07-06 22:07 - 14632960 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-10-14 22:50 - 2014-07-06 22:07 - 00782848 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2014-10-14 22:50 - 2014-07-06 22:07 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-10-14 22:50 - 2014-07-06 22:06 - 05551032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-10-14 22:50 - 2014-07-06 22:06 - 04120576 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2014-10-14 22:50 - 2014-07-06 22:06 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2014-10-14 22:50 - 2014-07-06 22:06 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-10-14 22:50 - 2014-07-06 22:06 - 01202176 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2014-10-14 22:50 - 2014-07-06 22:06 - 01069056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2014-10-14 22:50 - 2014-07-06 22:06 - 00842240 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2014-10-14 22:50 - 2014-07-06 22:06 - 00679424 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-10-14 22:50 - 2014-07-06 22:06 - 00641024 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2014-10-14 22:50 - 2014-07-06 22:06 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2014-10-14 22:50 - 2014-07-06 22:06 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-10-14 22:50 - 2014-07-06 22:06 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2014-10-14 22:50 - 2014-07-06 22:06 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-10-14 22:50 - 2014-07-06 22:06 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-10-14 22:50 - 2014-07-06 22:06 - 00325632 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2014-10-14 22:50 - 2014-07-06 22:06 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-10-14 22:50 - 2014-07-06 22:06 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-10-14 22:50 - 2014-07-06 22:06 - 00206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2014-10-14 22:50 - 2014-07-06 22:06 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2014-10-14 22:50 - 2014-07-06 22:06 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-10-14 22:50 - 2014-07-06 22:06 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2014-10-14 22:50 - 2014-07-06 22:06 - 00055808 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2014-10-14 22:50 - 2014-07-06 22:06 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2014-10-14 22:50 - 2014-07-06 22:06 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2014-10-14 22:50 - 2014-07-06 22:06 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2014-10-14 22:50 - 2014-07-06 22:06 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2014-10-14 22:50 - 2014-07-06 22:05 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-10-14 22:50 - 2014-07-06 22:05 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2014-10-14 22:50 - 2014-07-06 22:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2014-10-14 22:50 - 2014-07-06 21:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2014-10-14 22:50 - 2014-07-06 21:40 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-10-14 22:50 - 2014-07-06 21:40 - 03208704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2014-10-14 22:50 - 2014-07-06 21:40 - 01329664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2014-10-14 22:50 - 2014-07-06 21:40 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-10-14 22:50 - 2014-07-06 21:40 - 01005056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptui.dll
2014-10-14 22:50 - 2014-07-06 21:40 - 00988160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmv2clt.dll
2014-10-14 22:50 - 2014-07-06 21:40 - 00744960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\blackbox.dll
2014-10-14 22:50 - 2014-07-06 21:40 - 00617984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmdrmsdk.dll
2014-10-14 22:50 - 2014-07-06 21:40 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscp.dll
2014-10-14 22:50 - 2014-07-06 21:40 - 00489984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\evr.dll
2014-10-14 22:50 - 2014-07-06 21:40 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-10-14 22:50 - 2014-07-06 21:40 - 00406016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drmmgrtn.dll
2014-10-14 22:50 - 2014-07-06 21:40 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-10-14 22:50 - 2014-07-06 21:40 - 00354816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2014-10-14 22:50 - 2014-07-06 21:40 - 00265216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msnetobj.dll
2014-10-14 22:50 - 2014-07-06 21:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-10-14 22:50 - 2014-07-06 21:40 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-10-14 22:50 - 2014-07-06 21:40 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2014-10-14 22:50 - 2014-07-06 21:40 - 00103424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfps.dll
2014-10-14 22:50 - 2014-07-06 21:40 - 00081408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsp.dll
2014-10-14 22:50 - 2014-07-06 21:40 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2014-10-14 22:50 - 2014-07-06 21:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2014-10-14 22:50 - 2014-07-06 21:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2014-10-14 22:50 - 2014-07-06 21:39 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-10-14 22:50 - 2014-07-06 21:39 - 03970488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-10-14 22:50 - 2014-07-06 21:39 - 03914680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-10-14 22:50 - 2014-07-06 21:39 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rrinstaller.exe
2014-10-14 22:50 - 2014-07-06 21:39 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfpmp.exe
2014-10-14 22:50 - 2014-07-06 21:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mferror.dll
2014-10-14 22:50 - 2014-06-27 20:21 - 00619056 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-10-14 22:50 - 2014-06-27 20:21 - 00532176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-10-14 22:50 - 2014-06-27 20:21 - 00457400 _____ (Microsoft Corporation) C:\Windows\system32\ci.dll
2014-10-14 22:49 - 2014-09-17 22:00 - 03241472 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-14 22:49 - 2014-09-17 21:32 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-14 22:49 - 2014-08-28 22:07 - 05780480 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-14 22:49 - 2014-08-28 22:07 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-14 22:49 - 2014-08-28 22:07 - 00322560 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2014-10-14 22:49 - 2014-08-28 22:07 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2014-10-14 22:49 - 2014-08-28 22:06 - 01125888 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-10-14 22:49 - 2014-08-28 21:44 - 04922368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-14 22:49 - 2014-08-28 21:44 - 01050112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-10-14 22:49 - 2014-08-28 21:44 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-10-14 22:49 - 2014-08-28 21:44 - 00037376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2014-10-14 22:48 - 2014-07-16 22:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-14 22:48 - 2014-07-16 22:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-14 22:48 - 2014-07-16 22:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-14 22:48 - 2014-07-16 22:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-10-14 22:48 - 2014-07-16 22:07 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-14 22:48 - 2014-07-16 22:07 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-14 22:48 - 2014-07-16 21:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-14 22:48 - 2014-07-16 21:39 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-14 22:48 - 2014-07-16 21:39 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-14 22:48 - 2014-07-16 21:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-10-14 22:48 - 2014-07-16 21:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-10-14 22:46 - 2014-09-12 21:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-14 22:46 - 2014-09-12 21:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-14 22:46 - 2014-09-04 01:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-14 22:46 - 2014-09-04 01:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-14 19:18 - 2014-10-14 19:19 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-08 03:50 - 2014-10-08 03:50 - 00000000 ____D () C:\Program Files (x86)\MSECache
2014-10-08 03:49 - 2014-10-08 03:50 - 01483584 _____ (Microsoft Corporation) C:\Users\User\Downloads\WorksConv.exe
2014-09-30 23:26 - 2014-09-24 22:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-09-30 23:26 - 2014-09-24 21:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-09-26 15:13 - 2014-09-26 15:13 - 00002117 _____ () C:\Users\User\Documents\csg word unit b.txt
2014-09-24 10:57 - 2014-09-09 18:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-09-24 10:57 - 2014-09-09 17:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-09-20 13:50 - 2014-09-20 13:50 - 00003554 _____ () C:\Users\User\Documents\csg window7 mod 2 exam.txt

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-19 17:34 - 2012-04-06 14:48 - 01510222 _____ () C:\Windows\WindowsUpdate.log
2014-10-19 17:32 - 2014-06-28 16:36 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-10-19 17:31 - 2009-07-14 00:45 - 00036352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-19 17:31 - 2009-07-14 00:45 - 00036352 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-19 17:25 - 2012-12-25 15:23 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-10-19 17:25 - 2012-11-16 11:44 - 00000000 ____D () C:\Users\User\Documents\Youcam
2014-10-19 17:24 - 2012-12-01 10:53 - 00000890 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-19 17:23 - 2012-12-03 02:14 - 00000000 ____D () C:\ProgramData\Kodak
2014-10-19 17:23 - 2009-07-14 01:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-19 17:23 - 2009-07-14 00:51 - 00087823 _____ () C:\Windows\setupact.log
2014-10-19 02:55 - 2012-12-01 10:53 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-19 02:14 - 2012-04-09 13:37 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-10-19 02:00 - 2012-11-16 13:14 - 00000000 ____D () C:\Users\User\AppData\Local\Adobe
2014-10-18 23:48 - 2009-07-14 00:45 - 05082136 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-18 23:47 - 2012-11-16 12:41 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-18 23:45 - 2012-12-04 18:00 - 00000852 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3299709030-147293944-2658779064-1000Core.job
2014-10-15 23:30 - 2012-04-06 14:40 - 00114384 _____ () C:\Users\User\AppData\Local\GDIPFONTCACHEV1.DAT
2014-10-15 23:28 - 2012-04-06 15:13 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-10-15 19:36 - 2012-11-27 21:34 - 00002471 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-10-15 19:25 - 2009-07-14 01:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-10-15 19:20 - 2009-07-13 23:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-10-15 19:14 - 2014-05-07 05:59 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-15 19:14 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-10-15 19:14 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-10-15 06:58 - 2012-12-04 18:00 - 00003872 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3299709030-147293944-2658779064-1000UA
2014-10-15 06:58 - 2012-12-04 18:00 - 00003476 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3299709030-147293944-2658779064-1000Core
2014-10-15 06:58 - 2012-12-04 18:00 - 00000904 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3299709030-147293944-2658779064-1000UA.job
2014-10-15 03:23 - 2013-08-24 12:43 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-15 03:03 - 2012-04-06 15:46 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-10-13 15:53 - 2014-06-28 14:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-10-13 15:53 - 2014-06-28 14:52 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-10-13 15:53 - 2013-02-07 23:36 - 00001118 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-10-09 15:27 - 2012-11-27 18:15 - 00000000 ____D () C:\Users\User\AppData\Roaming\Mozilla
2014-10-08 03:44 - 2009-07-14 01:13 - 00782510 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-07 19:50 - 2014-08-29 14:11 - 00025215 ____H () C:\Users\User\Documents\~WRL1175.tmp
2014-10-02 15:51 - 2009-07-13 23:20 - 00000000 ____D () C:\Windows\rescache
2014-10-01 11:11 - 2014-06-28 14:53 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-10-01 11:11 - 2014-06-28 14:53 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-10-01 11:11 - 2013-02-07 23:36 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-09-28 16:16 - 2010-11-20 23:47 - 00328836 _____ () C:\Windows\PFRO.log
2014-09-26 15:12 - 2012-11-16 11:43 - 00000730 _____ () C:\Users\User\Documents\Dad's myhealth VA.txt
2014-09-25 18:34 - 2014-09-04 12:26 - 00000000 ____D () C:\Users\User\AppData\Roaming\HpUpdate
2014-09-24 11:48 - 2014-08-29 14:11 - 00020259 ____H () C:\Users\User\Documents\~WRL0678.tmp
2014-09-23 21:14 - 2012-04-09 13:37 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-09-23 21:14 - 2012-04-09 13:36 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-09-23 21:14 - 2012-04-09 13:36 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-20 21:03 - 2009-07-14 01:32 - 00000000 ____D () C:\Windows\system32\FxsTmp

Some content of TEMP:
====================
C:\Users\User\AppData\Local\Temp\Couponscom.exe
C:\Users\User\AppData\Local\Temp\Creative Cloud Helper.exe
C:\Users\User\AppData\Local\Temp\CreativeCloudSet-Up.exe
C:\Users\User\AppData\Local\Temp\jre-7u13-windows-i586-iftw.exe
C:\Users\User\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\User\AppData\Local\Temp\ose00000.exe
C:\Users\User\AppData\Local\Temp\RhapInstTemp.exe
C:\Users\User\AppData\Local\Temp\SkypeSetup.exe
C:\Users\User\AppData\Local\Temp\WiseUpdX.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-09-26 21:33

==================== End Of Log ============================

 

 

 

Here is my Addition log:

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-10-2014
Ran by User at 2014-10-19 17:36:18
Running from C:\Users\User\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.5.0.600 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.5.0.600 - Adobe Systems Incorporated) Hidden
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.5.1.369 - Adobe Systems Incorporated)
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Photoshop CC (HKLM-x32\...\{2D99B50E-431D-4AA8-85C1-172A6F8BCF09}) (Version: 14.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.8.638 - Adobe Systems, Inc.)
Advertising Center (x32 Version: 0.0.0.1 - Nero AG) Hidden
aioprnt (Version: 5.3.1.0 - Eastman Kodak Company) Hidden
aioscnnr (x32 Version: 5.7.5.30 - Your Company Name) Hidden
aioscnnr (x32 Version: 7.6.13.10 - Your Company Name) Hidden
Amazon Cloud Player (HKCU\...\Amazon Amazon Cloud Player) (Version: 2.4.0.33 - Amazon Services LLC)
Amazon Kindle (HKCU\...\Amazon Kindle) (Version:  - Amazon)
Apple Application Support (HKLM-x32\...\{B3575D00-27EF-49C2-B9E0-14B3D954E992}) (Version: 1.5.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{439760BC-7737-4386-9B1D-A90A3E8A22EA}) (Version: 3.4.1.2 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{C6579A65-9CAE-4B31-8B6B-3306E0630A66}) (Version: 2.1.3.127 - Apple Inc.)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.26 - Atheros Communications Inc.)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Bing Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.470.0 - Microsoft Corporation)
Bing HRS Toolbar (HKLM-x32\...\{3E2C0025-D900-40F2-A819-D97CE1D48C43}) (Version: 3.15.0 - Microsoft Corporation)
Bonjour (HKLM\...\{0E543634-7E25-4B8F-8D5B-97880E5E5088}) (Version: 2.0.5.0 - Apple Inc.)
C4USelfUpdater (x32 Version: 1.00.0000 - Your Company Name) Hidden
CameraHelperMsi (x32 Version: 13.51.815.0 - Logitech) Hidden
center (x32 Version: 7.7.2.0 - Eastman Kodak Company) Hidden
Combined Community Codec Pack 2011-11-11 (HKLM-x32\...\Combined Community Codec Pack_is1) (Version: 2011.11.11.0 - CCCP Project)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.98.60.50 - Conexant)
Coupon Printer for Windows (HKLM-x32\...\Coupon Printer for Windows5.0.0.3) (Version: 5.0.0.3 - Coupons.com Incorporated)
CouponBar (HKLM-x32\...\CouponBar5.0.0.5) (Version: 5.0.0.5 - Coupons.com Incorporated) <==== ATTENTION
CouponPrinterPlugin (HKLM-x32\...\{8AC6566B-131F-4987-82DF-932CED9FCA23}) (Version: 2.0.2.0 - Hopster) <==== ATTENTION
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3624 - CyberLink Corp.)
CyberLink LabelPrint (x32 Version: 2.5.3624 - CyberLink Corp.) Hidden
CyberLink Media Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.2813 - CyberLink Corp.)
CyberLink Media Suite (x32 Version: 8.0.2813 - CyberLink Corp.) Hidden
CyberLink MediaShow (HKLM-x32\...\InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}) (Version: 5.1.2109n - CyberLink Corp.)
CyberLink MediaShow (x32 Version: 5.1.2109n - CyberLink Corp.) Hidden
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.5025 - CyberLink Corp.)
CyberLink Power2Go (x32 Version: 6.1.5025 - CyberLink Corp.) Hidden
CyberLink PowerBackup (HKLM-x32\...\{ADD5DB49-72CF-11D8-9D75-000129760D75}) (Version: 2.5.6023 - CyberLink Corp.)
CyberLink PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.4305 - CyberLink Corp.)
CyberLink PowerDirector (x32 Version: 8.0.4305 - CyberLink Corp.) Hidden
CyberLink YouCam 5 (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 5.0.0909 - CyberLink Corp.)
CyberLink YouCam 5 (x32 Version: 5.0.0909 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DolbyFiles (x32 Version: 0.1 - Nero AG) Hidden
erLT (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden
essentials (x32 Version: 7.7.2.0 - Eastman Kodak Company) Hidden
Fences (HKLM-x32\...\Fences) (Version:  - Stardock Corporation)
Fences (Version: 1.0 - Stardock Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.104 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{F7770F7F-0ABC-30CB-95BC-93761A05CAB6}) (Version: 5.38.4.0 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Grand Theft Auto (HKLM-x32\...\Steam App 12170) (Version:  - Rockstar)
Grand Theft Auto III (HKLM-x32\...\Steam App 12100) (Version:  - Rockstar)
Grand Theft Auto IV (HKLM-x32\...\Steam App 12210) (Version:  - Rockstar)
Grand Theft Auto: San Andreas (HKLM-x32\...\Steam App 12120) (Version:  - Rockstar)
Grand Theft Auto: Vice City (HKLM-x32\...\Steam App 12110) (Version:  - Rockstar)
Half-Life 2: Episode One (HKLM-x32\...\Steam App 380) (Version:  - Valve)
HP Deskjet 3520 series Basic Device Software (HKLM\...\{A0A03B53-927D-4454-A456-CB0A72A4912F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3520 series Help (HKLM-x32\...\{C13E1F46-84FE-4D3B-8581-0F2F624C7EEC}) (Version: 27.0.0 - Hewlett Packard)
HP Deskjet 3520 series Product Improvement Study (HKLM\...\{14ABDFC2-491B-4AF0-8134-CC5596D0EF57}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Deskjet 3520 series Setup Guide (HKLM-x32\...\{AEEDCEB7-00B8-4BE1-B492-AB04803D5F1E}) (Version: 27.0.0 - Hewlett Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.7702 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.7.0 - LIGHTNING UK!)
iTunes (HKLM\...\{BCF07271-A853-4D3A-B668-4B752174CAA8}) (Version: 10.3.1.55 - Apple Inc.)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217025FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
K-Lite Codec Pack 9.5.0 (64-bit) (HKLM\...\KLiteCodecPack64_is1) (Version: 9.5.0 - )
K-Lite Codec Pack 9.5.0 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.5.0 - )
Kodak AIO Printer (Version: 7.7.2.0 - Eastman Kodak Company) Hidden
KODAK AiO Software (HKLM-x32\...\{E0F274B7-592B-4669-8FB8-8D9825A09858}) (Version: 7.7.6.0 - Eastman Kodak Company)
LeapFrog Connect (HKLM-x32\...\UPCShell) (Version: 5.3.0.18537 - LeapFrog)
LeapFrog Connect (x32 Version: 5.3.0.18537 - LeapFrog) Hidden
LeapFrog LeapPad Explorer Plugin (x32 Version: 5.2.1.18456 - LeapFrog) Hidden
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
LWS Facebook (x32 Version: 13.50.854.0 - Logitech) Hidden
LWS Gallery (x32 Version: 13.51.827.0 - Logitech) Hidden
LWS Help_main (x32 Version: 13.51.828.0 - Logitech) Hidden
LWS Launcher (x32 Version: 13.51.828.0 - Logitech) Hidden
LWS Motion Detection (x32 Version: 13.51.815.0 - Logitech) Hidden
LWS Pictures And Video (x32 Version: 13.51.815.0 - Logitech) Hidden
LWS Twitter (x32 Version: 13.30.1346.0 - Logitech) Hidden
LWS Webcam Software (x32 Version: 13.51.815.0 - Logitech) Hidden
LWS WLM Plugin (x32 Version: 1.30.1201.0 - Logitech) Hidden
LWS YouTube Plugin (x32 Version: 13.31.1038.0 - Logitech) Hidden
Malwarebytes Anti-Malware version 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
McAfee Virtual Technician (HKLM-x32\...\McAfee Virtual Technician) (Version: 7.0.0.2358 - McAfee, Inc.)
Menu Templates - Starter Kit (x32 Version: 9.4.2.0 - Nero AG) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Works 6-9 Converter (HKLM-x32\...\{95140000-0137-0409-0000-0000000FF1CE}) (Version: 14.0.6120.5002 - Microsoft Corporation)
MorphVOX Pro (HKLM-x32\...\{4bfc0d50-0417-46a0-ab1e-475fb1a90916}) (Version: 4.4.17.22603 - Screaming Bee)
MorphVOX Pro (x32 Version: 4.4.17.22603 - Screaming Bee) Hidden
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Movie Templates - Starter Kit (x32 Version: 9.4.2.0 - Nero AG) Hidden
Mozilla Firefox 33.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 33.0 (x86 en-US)) (Version: 33.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 9 Essentials (HKLM-x32\...\{fc350242-56d5-4ddf-afe2-132de9d511b7}) (Version:  - Nero AG)
Nero BurnRights (x32 Version: 3.4.11.100 - Nero AG) Hidden
Nero BurnRights Help (x32 Version: 3.4.4.100 - Nero AG) Hidden
Nero ControlCenter (x32 Version: 9.0.0.1 - Nero AG) Hidden
Nero CoverDesigner (x32 Version: 4.4.9.100 - Nero AG) Hidden
Nero CoverDesigner Help (x32 Version: 4.4.9.100 - Nero AG) Hidden
Nero DiscSpeed (x32 Version: 5.4.11.100 - Nero AG) Hidden
Nero DiscSpeed Help (x32 Version: 5.4.4.100 - Nero AG) Hidden
Nero DriveSpeed (x32 Version: 4.4.11.100 - Nero AG) Hidden
Nero DriveSpeed Help (x32 Version: 4.4.4.100 - Nero AG) Hidden
Nero Express Help (x32 Version: 9.6.2.101 - Nero AG) Hidden
Nero InfoTool (x32 Version: 6.4.11.100 - Nero AG) Hidden
Nero InfoTool Help (x32 Version: 6.4.4.100 - Nero AG) Hidden
Nero Installer (x32 Version: 4.4.9.0 - Nero AG) Hidden
Nero Online Upgrade (x32 Version: 1.3.0.0 - Nero AG) Hidden
Nero ShowTime (x32 Version: 5.4.0.100 - Nero AG) Hidden
Nero ShowTime (x32 Version: 5.4.13.100 - Nero AG) Hidden
Nero StartSmart (x32 Version: 9.4.12.100 - Nero AG) Hidden
Nero StartSmart Help (x32 Version: 9.4.12.100 - Nero AG) Hidden
Nero Vision (x32 Version: 6.4.12.100 - Nero AG) Hidden
Nero Vision Help (x32 Version: 6.4.8.100 - Nero AG) Hidden
NeroExpress (x32 Version: 9.4.17.100 - Nero AG) Hidden
neroxml (x32 Version: 1.0.0 - Nero AG) Hidden
ocr (x32 Version: 6.2.3.50 - Eastman Kodak Company) Hidden
PDF Settings CC (x32 Version: 12.0 - Adobe Systems Incorporated) Hidden
Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
PreReq (x32 Version: 6.2.4.0 - Eastman Kodak Company) Hidden
PrintProjects (HKLM-x32\...\PrintProjects) (Version: 1.0.0.9282 - RocketLife Inc.)
QuickTime (HKLM-x32\...\{57752979-A1C9-4C02-856B-FBB27AC4E02C}) (Version: 7.69.80.9 - Apple Inc.)
Rhapsody (HKLM-x32\...\Rhapsody) (Version:  - )
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype™ 6.14 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
SmartSound Quicktracks Plugin (HKLM-x32\...\InstallShield_{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}) (Version: 3.0.3.0 - SmartSound Software Inc)
SmartSound Quicktracks Plugin (x32 Version: 3.0.3.0 - SmartSound Software Inc) Hidden
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 11.0.7.0 - Synaptics)
TOSHIBA Web Camera Application (HKLM-x32\...\{5E6F6CF3-BACC-4144-868C-E14622C658F3}) (Version: 1.1.1.15 - TOSHIBA Corporation)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Use the entry named LeapFrog Connect to uninstall (LeapFrog LeapPad Explorer Plugin) (HKLM-x32\...\LeapPadExplorerPlugin) (Version:  - LeapFrog)
VLC media player 2.0.4 (HKLM-x32\...\VLC media player) (Version: 2.0.4 - VideoLAN)
Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net  (09/10/2009 02.03.05.012) (HKLM\...\8F14F2ECEDE68D26EA515B48DC25B39103C4FE8D) (Version: 09/10/2009 02.03.05.012 - Leapfrog)
Windows Live Communications Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Mobile Device Center (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
WinRAR (HKLM-x32\...\WinRAR) (Version:  - )

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3299709030-147293944-2658779064-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\User\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3299709030-147293944-2658779064-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\User\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-3299709030-147293944-2658779064-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\User\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-3299709030-147293944-2658779064-1000_Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\localserver32 -> rundll32.exe javascript:"\..\mshtml,RunHTMLApplication ";eval("epdvnfou/xsjuf)(=tdsjqu!mbohvbhf>ktds (the data entry has 247 more characters). <==== Poweliks?
CustomCLSID: HKU\S-1-5-21-3299709030-147293944-2658779064-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\User\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3299709030-147293944-2658779064-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\User\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll No File

==================== Restore Points  =========================

15-09-2014 07:00:55 Windows Update
18-09-2014 21:51:28 Installed HP Update.
19-09-2014 21:40:57 Windows Update
23-09-2014 12:05:14 Windows Update
25-09-2014 07:00:30 Windows Update
30-09-2014 07:32:11 Windows Update
01-10-2014 07:00:22 Windows Update
07-10-2014 19:30:36 Windows Update
15-10-2014 02:23:51 Windows Update
15-10-2014 07:01:27 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 22:34 - 2013-02-01 12:28 - 00000778 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
::1             localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0259BA86-1C86-4183-8CB2-A358652C260B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-01] (Google Inc.)
Task: {436AEC6B-AF23-4E5D-8847-8E81F6157F97} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-01] (Google Inc.)
Task: {72106232-5E6D-4E68-BE85-8B38D4DF434B} - System32\Tasks\HPCustParticipation HP Deskjet 3520 series => C:\Program Files\HP\HP Deskjet 3520 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {949FF342-C49A-4DCF-A3E1-40E522E57C0D} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3299709030-147293944-2658779064-1000Core => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2012-12-01] (Google Inc.)
Task: {9D7D1F96-A5F0-4339-BEC6-4B1EFD128026} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-23] (Adobe Systems Incorporated)
Task: {ACAC9699-880E-4674-B80C-C5223395214B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3299709030-147293944-2658779064-1000UA => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe [2012-12-01] (Google Inc.)
Task: {ADB6E3A8-980F-43BA-A9B5-8D0BBFF12EAD} - System32\Tasks\AdobeAAMUpdater-1.0-User-PC-User => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3299709030-147293944-2658779064-1000Core.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3299709030-147293944-2658779064-1000UA.job => C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2012-04-09 13:33 - 2010-09-15 05:50 - 00244904 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2014-03-20 11:24 - 2014-03-20 11:24 - 00667808 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00264040 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
2014-03-20 11:24 - 2014-03-20 11:24 - 05288608 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2011-05-26 13:42 - 2011-05-26 13:42 - 00067872 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2009-11-02 14:20 - 2009-11-02 14:20 - 00619816 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2009-11-02 14:23 - 2009-11-02 14:23 - 00013096 _____ () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2014-03-18 23:22 - 2014-03-18 23:22 - 32733088 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\libcef.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 02144104 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 07955304 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00341352 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00028008 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
2012-09-13 01:38 - 2012-09-13 01:38 - 00127336 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll
2012-09-13 01:39 - 2012-09-13 01:39 - 00336232 _____ () C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll
2014-10-14 19:18 - 2014-10-14 19:19 - 03649648 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


========================= Accounts: ==========================

Administrator (S-1-5-21-3299709030-147293944-2658779064-500 - Administrator - Disabled)
Guest (S-1-5-21-3299709030-147293944-2658779064-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3299709030-147293944-2658779064-1002 - Limited - Enabled)
User (S-1-5-21-3299709030-147293944-2658779064-1000 - Administrator - Enabled) => C:\Users\User

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (10/19/2014 05:25:19 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/19/2014 05:23:54 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding   15 77.1.168.192.in-addr.arpa. PTR User-PC.local.

Error: (10/19/2014 05:23:54 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.77:5353   17 77.1.168.192.in-addr.arpa. PTR User-PC-2.local.

Error: (10/19/2014 03:16:02 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/19/2014 00:24:13 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/19/2014 00:22:53 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Unexpected conflict discarding   15 77.1.168.192.in-addr.arpa. PTR User-PC.local.

Error: (10/19/2014 00:22:53 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: mDNSCoreReceiveResponse: Received from 192.168.1.77:5353   17 77.1.168.192.in-addr.arpa. PTR User-PC-2.local.

Error: (10/18/2014 11:49:26 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/15/2014 07:24:30 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/15/2014 07:20:22 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (10/19/2014 05:26:57 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (10/19/2014 05:26:26 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (10/19/2014 05:26:26 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (10/19/2014 05:26:26 PM) (Source: PNRPSvc) (EventID: 102) (User: )
Description: 0x80630801

Error: (10/19/2014 05:26:07 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: The McAfee Network Agent service depends the following service: mfefire. This service might not be installed.

Error: (10/19/2014 05:25:50 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (10/19/2014 05:25:50 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (10/19/2014 05:25:50 PM) (Source: PNRPSvc) (EventID: 102) (User: )
Description: 0x80630801

Error: (10/19/2014 05:25:45 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (10/19/2014 05:25:45 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2014-09-15 12:30:23.265
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-15 12:30:23.202
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-09-15 12:28:45.343
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-08-15 05:20:14.453
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-08-15 05:20:14.400
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-08-15 05:18:12.878
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-07-10 10:02:44.376
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-07-10 10:02:44.314
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-07-10 10:01:25.086
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-06-29 12:25:39.551
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel® Celeron® CPU 900 @ 2.20GHz
Percentage of memory in use: 55%
Total physical RAM: 1979.2 MB
Available physical RAM: 885.44 MB
Total Pagefile: 3958.39 MB
Available Pagefile: 2236.08 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.79 GB) (Free:129.44 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 7CC40A08)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=232.8 GB) - (Type=07 NTFS)

==================== End Of Log ============================



#4 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:11:12 PM

Posted 20 October 2014 - 12:56 PM

Hello,

 

Go ahead and uninstall the following application if you don't use them since they are adware bundled:

 

Coupon Printer for Windows

CouponBar
CouponPrinterPlugin
 

Next  please download the following file => [attachment=156429:fixlist.txt] and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

Run FRST and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.

 

 

Regards,

Georgi


cXfZ4wS.png


#5 poppyseed

poppyseed
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:03:12 PM

Posted 20 October 2014 - 03:49 PM

I deleted one of the files you listed, but kept the other two because I use them.

 

Here is my fixlog:

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 20-10-2014 01
Ran by User at 2014-10-20 16:12:56 Run:1
Running from C:\Users\User\Desktop
Loaded Profile: User (Available profiles: User)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
start
CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-3299709030-147293944-2658779064-1000\...A8F59079A8D5}\localserver32: rundll32.exe javascript:"\..\mshtml,RunHTMLApplication ";eval("epdvnfou/xsjuf)(=tdsjqu!mbohvbhf>ktds (the data entry has 239 more characters). <==== Poweliks!
SearchScopes: HKCU - {96bd48dd-741b-41ae-ac4a-aff96ba00f7e} URL = http://search.coupons.com/search.asp?p=df&q={searchTerms}
BHO: AVG Safe Search -> {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -> C:\Program Files (x86)\AVG\AVG2012\avgssiea.dll No File
BHO-x32: AVG Safe Search -> {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} -> C:\Program Files (x86)\AVG\AVG2012\avgssie.dll No File
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgppa.dll No File
Handler-x32: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll No File
S1 MpKsl125e77ea; \??\C:\Windows\system32\MpEngineStore\MpKsl125e77ea.sys [X]
emptytemp:
end

*****************

Processes closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
"HKU\S-1-5-21-3299709030-147293944-2658779064-1000\Software\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\localserver32" => Key Deleted Successfully.
"HKU\S-1-5-21-3299709030-147293944-2658779064-1000\Software\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}" => Key deleted successfully.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}" => Key deleted successfully.
"HKCR\CLSID\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}" => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}" => Key deleted successfully.
"HKCR\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}" => Key deleted successfully.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}" => Key deleted successfully.
"HKCR\PROTOCOLS\Handler\linkscanner" => Key deleted successfully.
"HKCR\CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1}" => Key deleted successfully.
"HKCR\Wow6432Node\PROTOCOLS\Handler\linkscanner" => Key not found.
"HKCR\Wow6432Node\CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1}" => Key deleted successfully.
MpKsl125e77ea => Service deleted successfully.
EmptyTemp: => Removed 12.7 GB temporary data.


The system needed a reboot.

==== End of Fixlog ====



#6 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:11:12 PM

Posted 20 October 2014 - 04:07 PM

Hi,

 

How are things now?

 

I want to make sure there is nothing lurking on the system so just in case I want you to go through these steps:

 

The most of them should take no more than 5 minutes each (but the time they take to complete can vary depending on the size of your hard and the speed of your computer).

 

 

STEP 1

 

 

  • Please download RKill by Grinler from the link below and save it to your desktop.

    Rkill
  • Before we begin, you should disable your anti-malware softwares you have installed so they do not interfere RKill running as some anti-malware softwares detect RKill as malicious. Please refer to this page if you are not sure how.
  • Double-click on Rkill on your desktop to run it. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • If nothing happens or if the tool does not run, please let me know in your next reply.
  • A log pops up at the end of the run. This log file is located at C:\rkill.log.
  • Please post the log in your next reply.

 

 

STEP 2

 

 

  • Please download RogueKillerX64.exe and save to the desktop.
  • Close all windows and browsers
  • Right-click the program and select 'Run as Administrator'
  • Press the scan button.
  • A report opens on the desktop named - RKreport.txt
  • Please copy and past the results at pastebin.com and post the link to the log in your next reply.

 

 

STEP 3
 

 

Please download the latest version of TDSSKiller from here and save it to your Desktop.

  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
     
  • Put a checkmark beside loaded modules.
    Sbf88.png
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
  • Click the Start Scan button.
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and past the results at pastebin.com and post the link to the log in your next reply.

 

 

STEP 4

 

 

Please download Malwarebytes Anti-Malware to your desktop.
 

  • Double-click mbam-setup-2.0.2.1012.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to the following:
    • Launch Malwarebytes Anti-Malware
    • A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.
  • Click Finish.
  • On the Settings tab > Detection and Protection subtab, Detection Options, tick the box 'Scan for rootkits'.
  • Click on the Scan tab, then click on Scan Now >> . If an update is available, click the Update Now button.
  • A Threat Scan will begin.
  • With some infections, you may see this message box.
    • 'Could not load DDA driver'
  • Click 'Yes' to this message, to allow the driver to load after a restart.
  • Allow the computer to restart. Continue with the rest of these instructions.
  • When the scan is complete, click Apply Actions.
  • Wait for the prompt to restart the computer to appear, then click on Yes.
  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the scan log which shows the Date and time of the scan just performed.
  • Click 'Copy to Clipboard'
  • Paste the contents of the clipboard into your reply.

 

 

STEP 5

 

 

1.Please download HitmanPro.

  • For 32-bit Operating System - dEMD6.gif.
  • This is the mirror - dEMD6.gif
  • For 64-bit Operating System - dEMD6.gif
  • This is the mirror - dEMD6.gif

2.Launch the program by double clicking on the 5vo5F.jpg icon. (Windows Vista/7 users right click on the HitmanPro icon and select run as administrator).

Note: If the program won't run please then open the program while holding down the left CTRL key until the program is loaded.

3.Click on the next button. You must agree with the terms of EULA. (if asked)

4.Check the box beside "No, I only want to perform a one-time scan to check this computer".

5.Click on the next button.

6.The program will start to scan the computer. The scan will typically take no more than 2-3 minutes.

7.When the scan is done click on drop-down menu of the found entries (if any) and choose - Apply to all => Ignore <= IMPORTANT!!!
 
8.Click on the next button.

9.Click on the "Save Log" button.

10.Save that file to your desktop and post the content of that file in your next reply.
 
Note: if there isn't a dropdown menu when the scan is done then please don't delete anything and close HitmanPro

Navigate to C:\ProgramData\HitmanPro\Logs open the report and copy and paste it to your next reply.

 

 

 

Regards,

Georgi


cXfZ4wS.png


#7 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:11:12 PM

Posted 25 October 2014 - 04:06 AM

Hi,

 

Do you still need assistance?

 

 

Regards,

Georgi


cXfZ4wS.png


#8 poppyseed

poppyseed
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:03:12 PM

Posted 25 October 2014 - 08:33 AM

Hi Georgi,

 

Sorry for the late reply. My computer is working better, but it is still a bit slow. I am running the test now.

 

 



#9 poppyseed

poppyseed
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:03:12 PM

Posted 25 October 2014 - 08:45 AM

Roguekiller log:

 

RogueKiller V10.0.3.0 (x64) [Oct 16 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : User [Administrator]
Mode : Scan -- Date : 10/25/2014  09:43:57

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 10 ¤¤¤
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{30E02D52-24E0-4F23-BD84-A37D0C3240C5} | DhcpNameServer : 8.8.8.8 63.251.149.27 4.2.2.1  -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{A6BD84D0-5FE8-4641-BE0D-5D2A41EF03A7} | DhcpNameServer : 8.8.8.8 63.251.149.27 4.2.2.1  -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{30E02D52-24E0-4F23-BD84-A37D0C3240C5} | DhcpNameServer : 8.8.8.8 63.251.149.27 4.2.2.1  -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{A6BD84D0-5FE8-4641-BE0D-5D2A41EF03A7} | DhcpNameServer : 8.8.8.8 63.251.149.27 4.2.2.1  -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{30E02D52-24E0-4F23-BD84-A37D0C3240C5} | DhcpNameServer : 8.8.8.8 63.251.149.27 4.2.2.1  -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{A6BD84D0-5FE8-4641-BE0D-5D2A41EF03A7} | DhcpNameServer : 8.8.8.8 63.251.149.27 4.2.2.1  -> Found
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1  -> Found
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1  -> Found
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1  -> Found
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1  -> Found

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 0 ¤¤¤

¤¤¤ Hosts File : 2 ¤¤¤
[C:\Windows\System32\drivers\etc\hosts] 127.0.0.1       localhost
[C:\Windows\System32\drivers\etc\hosts] ::1             localhost

¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: Hitachi HTS545032B9A300 ATA Device +++++
--- User ---
[MBR] 25ed343c2ec960ea1b7cde5538af4fbb
[BSP] dfead0f89cdb10d7b75931bf2aca3843 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 238373 MB
User = LL1 ... OK
User = LL2 ... OK


============================================
RKreport_SCN_10252014_081643.log



#10 poppyseed

poppyseed
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:03:12 PM

Posted 25 October 2014 - 09:22 AM

TDDkiller log Part 1:

 

08:26:54.0224 0x044c  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
08:26:54.0832 0x044c  ============================================================
08:26:54.0832 0x044c  Current date / time: 2014/10/25 08:26:54.0832
08:26:54.0832 0x044c  SystemInfo:
08:26:54.0832 0x044c  
08:26:54.0832 0x044c  OS Version: 6.1.7601 ServicePack: 1.0
08:26:54.0832 0x044c  Product type: Workstation
08:26:54.0832 0x044c  ComputerName: USER-PC
08:26:54.0832 0x044c  UserName: User
08:26:54.0832 0x044c  Windows directory: C:\Windows
08:26:54.0832 0x044c  System windows directory: C:\Windows
08:26:54.0832 0x044c  Running under WOW64
08:26:54.0832 0x044c  Processor architecture: Intel x64
08:26:54.0832 0x044c  Number of processors: 1
08:26:54.0832 0x044c  Page size: 0x1000
08:26:54.0832 0x044c  Boot type: Normal boot
08:26:54.0832 0x044c  ============================================================
08:26:54.0832 0x044c  BG loaded
08:26:55.0799 0x044c  System UUID: {7620622D-2EE2-D077-7FE5-FF4E5332356E}
08:27:00.0604 0x044c  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0xAD0A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xE0, Type 'K0', Flags 0x00000040
08:27:00.0604 0x044c  ============================================================
08:27:00.0604 0x044c  \Device\Harddisk0\DR0:
08:27:00.0620 0x044c  MBR partitions:
08:27:00.0620 0x044c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
08:27:00.0620 0x044c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D192800
08:27:00.0620 0x044c  ============================================================
08:27:00.0635 0x044c  C: <-> \Device\Harddisk0\DR0\Partition2
08:27:00.0635 0x044c  ============================================================
08:27:00.0635 0x044c  Initialize success
08:27:00.0635 0x044c  ============================================================
08:33:59.0128 0x0d34  ============================================================
08:33:59.0159 0x0d34  Scan started
08:33:59.0159 0x0d34  Mode: Manual; SigCheck; TDLFS;
08:33:59.0159 0x0d34  ============================================================
08:33:59.0159 0x0d34  KSN ping started
08:34:02.0529 0x0d34  KSN ping finished: true
08:34:15.0040 0x0d34  ================ Scan system memory ========================
08:34:15.0040 0x0d34  System memory - ok
08:34:15.0040 0x0d34  ================ Scan services =============================
08:34:16.0366 0x0d34  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
08:34:17.0115 0x0d34  1394ohci - ok
08:34:18.0612 0x0d34  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
08:34:18.0628 0x0d34  ACPI - ok
08:34:18.0846 0x0d34  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
08:34:19.0673 0x0d34  AcpiPmi - ok
08:34:20.0141 0x0d34  [ C5679E5186B2FC95BC76A8A9870D5456, 70AC61850B811A0A902532F098AE1D5DF4622455E56C78B89D4ABDBE4A061A48 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
08:34:20.0172 0x0d34  AdobeARMservice - ok
08:34:21.0046 0x0d34  [ 4ECFCAAE5CB380F58934F0DCF5F64E7F, D82B37E57D93484D7A3CB65470BCD54A578A695F0203A8DD441B1348C1EEA751 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
08:34:21.0062 0x0d34  AdobeFlashPlayerUpdateSvc - ok
08:34:21.0436 0x0d34  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
08:34:21.0498 0x0d34  adp94xx - ok
08:34:21.0795 0x0d34  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
08:34:21.0857 0x0d34  adpahci - ok
08:34:21.0966 0x0d34  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
08:34:21.0998 0x0d34  adpu320 - ok
08:34:22.0185 0x0d34  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
08:34:25.0040 0x0d34  AeLookupSvc - ok
08:34:25.0352 0x0d34  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
08:34:25.0461 0x0d34  AFD - ok
08:34:25.0570 0x0d34  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
08:34:25.0586 0x0d34  agp440 - ok
08:34:25.0679 0x0d34  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
08:34:25.0851 0x0d34  ALG - ok
08:34:25.0960 0x0d34  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
08:34:25.0976 0x0d34  aliide - ok
08:34:26.0194 0x0d34  [ D696F317BD465A602566F8E1DCCE15F7, 6CE77CD4221C0854986F760D1944DF9F4255192D99630D43A0527A6D58D83406 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
08:34:26.0444 0x0d34  AMD External Events Utility - ok
08:34:26.0522 0x0d34  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
08:34:26.0568 0x0d34  amdide - ok
08:34:26.0631 0x0d34  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
08:34:26.0724 0x0d34  AmdK8 - ok
08:34:26.0849 0x0d34  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
08:34:26.0912 0x0d34  AmdPPM - ok
08:34:27.0052 0x0d34  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
08:34:27.0083 0x0d34  amdsata - ok
08:34:27.0208 0x0d34  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
08:34:27.0270 0x0d34  amdsbs - ok
08:34:27.0302 0x0d34  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
08:34:27.0333 0x0d34  amdxata - ok
08:34:27.0458 0x0d34  [ 80B9412C4DE09147581FC935FB4C97AB, 0C9661F7B5EF7F9D61981790B7AB64E3375BD117962166619D0CC546A2D014D3 ] AppID           C:\Windows\system32\drivers\appid.sys
08:34:27.0676 0x0d34  AppID - ok
08:34:27.0738 0x0d34  [ F71CA01C24FC3798A717B5A6F682F9AD, 8CF1C209E7BBBAD02D6D087293C0B681CDA3170AF119CA2916C2708D8801E749 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
08:34:27.0832 0x0d34  AppIDSvc - ok
08:34:27.0988 0x0d34  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
08:34:28.0331 0x0d34  Appinfo - ok
08:34:28.0706 0x0d34  [ 20F6F19FE9E753F2780DC2FA083AD597, 5106F0F9BA8A7DE49260A9B13BF8EC45ACA6A166FA8B10B4F69C3BB54F6840A1 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:34:28.0737 0x0d34  Apple Mobile Device - ok
08:34:28.0846 0x0d34  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
08:34:28.0908 0x0d34  arc - ok
08:34:29.0002 0x0d34  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
08:34:29.0018 0x0d34  arcsas - ok
08:34:29.0579 0x0d34  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
08:34:29.0626 0x0d34  aspnet_state - ok
08:34:29.0751 0x0d34  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
08:34:29.0844 0x0d34  AsyncMac - ok
08:34:29.0876 0x0d34  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
08:34:29.0891 0x0d34  atapi - ok
08:34:31.0155 0x0d34  [ B4421D8CDADC441F76BA39532A3E3414, 4C7C14C99E2095012A85672C824E21CF2FC152BCC37A1B25BF3189D0F6A06ED3 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
08:34:31.0498 0x0d34  athr - ok
08:34:33.0510 0x0d34  [ 52BD95CAA9CAE8977FE043E9AD6D2D0E, E96DD29A2FCE1403340CB29D34F657DF17F483F62A2E8E24890F9BC4812B2971 ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
08:34:33.0900 0x0d34  atikmdag - ok
08:34:34.0337 0x0d34  [ 2C1B6A64294F2182DC4999F923873974, 6D611636D849631BB1F852DC03A98BBFEC4D797A2707CA63427E187F0725A796 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
08:34:34.0400 0x0d34  AudioEndpointBuilder - ok
08:34:34.0462 0x0d34  [ 2C1B6A64294F2182DC4999F923873974, 6D611636D849631BB1F852DC03A98BBFEC4D797A2707CA63427E187F0725A796 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
08:34:34.0509 0x0d34  AudioSrv - ok
08:34:34.0587 0x0d34  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
08:34:35.0304 0x0d34  AxInstSV - ok
08:34:35.0523 0x0d34  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
08:34:35.0663 0x0d34  b06bdrv - ok
08:34:35.0835 0x0d34  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
08:34:35.0928 0x0d34  b57nd60a - ok
08:34:36.0084 0x0d34  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
08:34:36.0272 0x0d34  BDESVC - ok
08:34:36.0334 0x0d34  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
08:34:36.0568 0x0d34  Beep - ok
08:34:36.0833 0x0d34  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
08:34:36.0896 0x0d34  BFE - ok
08:34:37.0566 0x0d34  [ 9BF7ED72685E81BF8763B1585D40C57F, 69C463A4284A4AC8968F3D1690E4F1560486AB7D17A704F705D6A8896915A3B4 ] BingDesktopUpdate C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
08:34:37.0598 0x0d34  BingDesktopUpdate - ok
08:34:37.0925 0x0d34  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
08:34:41.0763 0x0d34  BITS - ok
08:34:41.0888 0x0d34  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
08:34:41.0981 0x0d34  blbdrive - ok
08:34:42.0293 0x0d34  [ F2060A34C8A75BC24A9222EB4F8C07BD, 14EE16BF7E55716C1ADC3F133582A03339844088CF01E929B5A8FB8FA515F714 ] Bonjour Service C:\Program Files (x86)\Bonjour\mDNSResponder.exe
08:34:42.0324 0x0d34  Bonjour Service - ok
08:34:42.0418 0x0d34  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
08:34:42.0512 0x0d34  bowser - ok
08:34:42.0605 0x0d34  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
08:34:42.0746 0x0d34  BrFiltLo - ok
08:34:42.0777 0x0d34  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
08:34:42.0824 0x0d34  BrFiltUp - ok
08:34:42.0902 0x0d34  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
08:34:43.0042 0x0d34  Browser - ok
08:34:43.0229 0x0d34  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
08:34:43.0479 0x0d34  Brserid - ok
08:34:43.0510 0x0d34  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
08:34:43.0572 0x0d34  BrSerWdm - ok
08:34:43.0604 0x0d34  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
08:34:43.0635 0x0d34  BrUsbMdm - ok
08:34:43.0728 0x0d34  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
08:34:43.0791 0x0d34  BrUsbSer - ok
08:34:43.0822 0x0d34  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
08:34:43.0900 0x0d34  BTHMODEM - ok
08:34:44.0072 0x0d34  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
08:34:44.0228 0x0d34  bthserv - ok
08:34:44.0259 0x0d34  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
08:34:44.0415 0x0d34  cdfs - ok
08:34:44.0508 0x0d34  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
08:34:44.0571 0x0d34  cdrom - ok
08:34:44.0664 0x0d34  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
08:34:44.0742 0x0d34  CertPropSvc - ok
08:34:44.0898 0x0d34  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
08:34:44.0976 0x0d34  circlass - ok
08:34:45.0179 0x0d34  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
08:34:45.0242 0x0d34  CLFS - ok
08:34:45.0491 0x0d34  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:34:45.0507 0x0d34  clr_optimization_v2.0.50727_32 - ok
08:34:45.0772 0x0d34  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:34:45.0819 0x0d34  clr_optimization_v2.0.50727_64 - ok
08:34:46.0193 0x0d34  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:34:46.0224 0x0d34  clr_optimization_v4.0.30319_32 - ok
08:34:46.0334 0x0d34  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:34:46.0490 0x0d34  clr_optimization_v4.0.30319_64 - ok
08:34:46.0646 0x0d34  [ E13A438F9E51DD034730678E33B73290, 3BB111DFDAEAB8DA6124600C7F6E080C2950A0BB420803FC12560343E1A9280A ] clwvd           C:\Windows\system32\DRIVERS\clwvd.sys
08:34:46.0755 0x0d34  clwvd - ok
08:34:46.0958 0x0d34  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
08:34:47.0036 0x0d34  CmBatt - ok
08:34:47.0082 0x0d34  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
08:34:47.0114 0x0d34  cmdide - ok
08:34:47.0332 0x0d34  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
08:34:47.0394 0x0d34  CNG - ok
08:34:47.0706 0x0d34  [ A44DFDB81DC62B11760881175E5B2266, A34739392B1089A850FE8B4AFCD43591212129D2F0FFB38ABED56EDA384E7864 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
08:34:47.0738 0x0d34  CnxtHdAudService - ok
08:34:47.0909 0x0d34  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
08:34:47.0940 0x0d34  Compbatt - ok
08:34:48.0003 0x0d34  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
08:34:48.0065 0x0d34  CompositeBus - ok
08:34:48.0096 0x0d34  COMSysApp - ok
08:34:48.0128 0x0d34  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
08:34:48.0159 0x0d34  crcdisk - ok
08:34:48.0424 0x0d34  [ 19D511CC455C19DE1ADF60E6C39C85B6, 2A05DD5EF3D0BEC2C9F4EA186E0E2D0F7BE0BF6A473D51194B09D33773AC7FAA ] CryptSvc        C:\Windows\system32\cryptsvc.dll
08:34:48.0642 0x0d34  CryptSvc - ok
08:34:48.0908 0x0d34  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
08:34:49.0032 0x0d34  DcomLaunch - ok
08:34:49.0204 0x0d34  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
08:34:49.0266 0x0d34  defragsvc - ok
08:34:49.0344 0x0d34  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
08:34:49.0422 0x0d34  DfsC - ok
08:34:49.0797 0x0d34  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
08:34:50.0062 0x0d34  Dhcp - ok
08:34:50.0421 0x0d34  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
08:34:50.0858 0x0d34  discache - ok
08:34:51.0045 0x0d34  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
08:34:51.0076 0x0d34  Disk - ok
08:34:51.0216 0x0d34  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
08:34:51.0372 0x0d34  Dnscache - ok
08:34:51.0466 0x0d34  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
08:34:51.0544 0x0d34  dot3svc - ok
08:34:51.0762 0x0d34  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
08:34:51.0856 0x0d34  DPS - ok
08:34:52.0152 0x0d34  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
08:34:52.0246 0x0d34  drmkaud - ok
08:34:52.0776 0x0d34  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
08:34:52.0839 0x0d34  DXGKrnl - ok
08:34:52.0995 0x0d34  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
08:34:53.0073 0x0d34  EapHost - ok
08:34:54.0087 0x0d34  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
08:34:54.0368 0x0d34  ebdrv - ok
08:34:54.0477 0x0d34  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
08:34:54.0633 0x0d34  EFS - ok
08:34:55.0319 0x0d34  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
08:34:55.0491 0x0d34  ehRecvr - ok
08:34:55.0553 0x0d34  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
08:34:55.0631 0x0d34  ehSched - ok
08:34:55.0928 0x0d34  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
08:34:55.0990 0x0d34  elxstor - ok
08:34:56.0037 0x0d34  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
08:34:56.0193 0x0d34  ErrDev - ok
08:34:56.0520 0x0d34  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
08:34:56.0614 0x0d34  EventSystem - ok
08:34:56.0661 0x0d34  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
08:34:56.0708 0x0d34  exfat - ok
08:34:56.0786 0x0d34  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
08:34:56.0926 0x0d34  fastfat - ok
08:34:57.0254 0x0d34  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
08:34:57.0347 0x0d34  Fax - ok
08:34:57.0410 0x0d34  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
08:34:57.0519 0x0d34  fdc - ok
08:34:57.0706 0x0d34  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
08:34:57.0831 0x0d34  fdPHost - ok
08:34:57.0862 0x0d34  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
08:34:57.0940 0x0d34  FDResPub - ok
08:34:58.0034 0x0d34  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
08:34:58.0080 0x0d34  FileInfo - ok
08:34:58.0096 0x0d34  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
08:34:58.0190 0x0d34  Filetrace - ok
08:34:58.0268 0x0d34  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
08:34:58.0439 0x0d34  flpydisk - ok
08:34:58.0736 0x0d34  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
08:34:58.0782 0x0d34  FltMgr - ok
08:34:59.0048 0x0d34  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
08:34:59.0188 0x0d34  FontCache - ok
08:34:59.0360 0x0d34  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:34:59.0438 0x0d34  FontCache3.0.0.0 - ok
08:34:59.0500 0x0d34  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
08:34:59.0516 0x0d34  FsDepends - ok
08:34:59.0578 0x0d34  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
08:34:59.0609 0x0d34  Fs_Rec - ok
08:34:59.0796 0x0d34  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
08:34:59.0859 0x0d34  fvevol - ok
08:34:59.0999 0x0d34  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
08:35:00.0046 0x0d34  gagp30kx - ok
08:35:00.0140 0x0d34  [ E403AACF8C7BB11375122D2464560311, 0427B8FFD999D256EA1A5135F218692959A7577CB32354D3087CF0FB4F0577DF ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
08:35:00.0327 0x0d34  GEARAspiWDM - ok
08:35:00.0748 0x0d34  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
08:35:00.0873 0x0d34  gpsvc - ok
08:35:01.0325 0x0d34  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:35:01.0341 0x0d34  gupdate - ok
08:35:01.0466 0x0d34  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:35:01.0481 0x0d34  gupdatem - ok
08:35:01.0575 0x0d34  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
08:35:01.0668 0x0d34  hcw85cir - ok
08:35:01.0840 0x0d34  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
08:35:01.0902 0x0d34  HdAudAddService - ok
08:35:01.0949 0x0d34  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
08:35:01.0996 0x0d34  HDAudBus - ok
08:35:02.0043 0x0d34  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
08:35:02.0121 0x0d34  HidBatt - ok
08:35:02.0152 0x0d34  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
08:35:02.0230 0x0d34  HidBth - ok
08:35:02.0277 0x0d34  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
08:35:02.0495 0x0d34  HidIr - ok
08:35:02.0636 0x0d34  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
08:35:02.0714 0x0d34  hidserv - ok
08:35:02.0854 0x0d34  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
08:35:02.0916 0x0d34  HidUsb - ok
08:35:03.0026 0x0d34  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
08:35:03.0104 0x0d34  hkmsvc - ok
08:35:03.0306 0x0d34  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
08:35:03.0478 0x0d34  HomeGroupListener - ok
08:35:03.0712 0x0d34  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
08:35:03.0806 0x0d34  HomeGroupProvider - ok
08:35:03.0899 0x0d34  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
08:35:03.0930 0x0d34  HpSAMD - ok
08:35:04.0289 0x0d34  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
08:35:04.0383 0x0d34  HTTP - ok
08:35:04.0461 0x0d34  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
08:35:04.0492 0x0d34  hwpolicy - ok
08:35:04.0570 0x0d34  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
08:35:04.0710 0x0d34  i8042prt - ok
08:35:04.0929 0x0d34  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
08:35:04.0960 0x0d34  iaStorV - ok
08:35:05.0210 0x0d34  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:35:05.0241 0x0d34  idsvc - ok
08:35:05.0397 0x0d34  IEEtwCollectorService - ok
08:35:09.0827 0x0d34  [ C6238C6ABD6AC99F5D152DA4E9439A3D, 6FC490B94CEF523C7C099AEA3D36AB75C9896B1D83D4467D237E698A8E0D9E7B ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
08:35:10.0654 0x0d34  igfx - ok
08:35:10.0857 0x0d34  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
08:35:10.0935 0x0d34  iirsp - ok
08:35:11.0091 0x0d34  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
08:35:11.0185 0x0d34  IKEEXT - ok
08:35:11.0247 0x0d34  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
08:35:11.0294 0x0d34  intelide - ok
08:35:11.0387 0x0d34  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
08:35:11.0528 0x0d34  intelppm - ok
08:35:11.0653 0x0d34  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
08:35:11.0793 0x0d34  IPBusEnum - ok
08:35:11.0824 0x0d34  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
08:35:11.0918 0x0d34  IpFilterDriver - ok
08:35:12.0105 0x0d34  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
08:35:12.0245 0x0d34  iphlpsvc - ok
08:35:12.0323 0x0d34  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
08:35:12.0355 0x0d34  IPMIDRV - ok
08:35:12.0386 0x0d34  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
08:35:12.0464 0x0d34  IPNAT - ok
08:35:12.0916 0x0d34  [ D38469601B72D2DA4F847FC642174E21, 7AFAD65B8C1B2615F03F75CED3173C93D9CE2B33BDD20A7CE23E78B98A375A64 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
08:35:12.0963 0x0d34  iPod Service - ok
08:35:13.0057 0x0d34  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
08:35:13.0072 0x0d34  IRENUM - ok
08:35:13.0150 0x0d34  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
08:35:13.0181 0x0d34  isapnp - ok
08:35:13.0353 0x0d34  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
08:35:13.0400 0x0d34  iScsiPrt - ok
08:35:13.0478 0x0d34  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
08:35:13.0493 0x0d34  kbdclass - ok
08:35:13.0556 0x0d34  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
08:35:13.0587 0x0d34  kbdhid - ok
08:35:13.0618 0x0d34  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
08:35:13.0665 0x0d34  KeyIso - ok
08:35:14.0258 0x0d34  [ 140692763A50BFFF322CDC076300587E, 4B6D9AE479EDDB429C1DE36406517FA65C2B3927B20792B3A27CEE05A6B7A3AB ] Kodak AiO Network Discovery Service C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe
08:35:14.0320 0x0d34  Kodak AiO Network Discovery Service - ok
08:35:14.0726 0x0d34  [ E29F999616D7C08B0E91296908C47CAF, 285594B526A15911238B89E5FCBCFFA48A6C69CCC481918D2C474C6BB12869E6 ] Kodak AiO Status Monitor Service C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
08:35:14.0773 0x0d34  Kodak AiO Status Monitor Service - ok
08:35:14.0882 0x0d34  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
08:35:14.0913 0x0d34  KSecDD - ok
08:35:14.0975 0x0d34  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
08:35:14.0991 0x0d34  KSecPkg - ok
08:35:15.0069 0x0d34  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
08:35:15.0116 0x0d34  ksthunk - ok
08:35:15.0319 0x0d34  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
08:35:15.0428 0x0d34  KtmRm - ok
08:35:15.0537 0x0d34  [ 55480B9C63F3F91A8EBBADCBF28FE581, 5B4BC3F0307B0697DD08DD8AAD4B9EAE99EDD3B33B85D9293D183684D5057293 ] L1C             C:\Windows\system32\DRIVERS\L1C62x64.sys
08:35:15.0553 0x0d34  L1C - ok
08:35:15.0724 0x0d34  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
08:35:15.0833 0x0d34  LanmanServer - ok
08:35:15.0896 0x0d34  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
08:35:15.0974 0x0d34  LanmanWorkstation - ok
08:35:18.0766 0x0d34  [ 243D0DFFFCC389D09F341F88AF5C56A4, 88038BBB878A232F1F38F11075C74B9026808360C055D42C526FACFAC1A0B232 ] LeapFrog Connect Device Service C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
08:35:19.0141 0x0d34  LeapFrog Connect Device Service - detected UnsignedFile.Multi.Generic ( 1 )
08:35:29.0438 0x0d34  LeapFrog Connect Device Service ( UnsignedFile.Multi.Generic ) - warning
08:35:32.0542 0x0d34  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
08:35:32.0636 0x0d34  lltdio - ok
08:35:32.0807 0x0d34  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
08:35:32.0932 0x0d34  lltdsvc - ok
08:35:32.0963 0x0d34  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
08:35:33.0057 0x0d34  lmhosts - ok
08:35:33.0197 0x0d34  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
08:35:33.0228 0x0d34  LSI_FC - ok
08:35:33.0260 0x0d34  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
08:35:33.0322 0x0d34  LSI_SAS - ok
08:35:33.0400 0x0d34  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
08:35:33.0431 0x0d34  LSI_SAS2 - ok
08:35:33.0478 0x0d34  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
08:35:33.0494 0x0d34  LSI_SCSI - ok
08:35:33.0556 0x0d34  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
08:35:33.0650 0x0d34  luafv - ok
08:35:33.0884 0x0d34  [ A401CFF74982D8DF851F20307C806073, 1D7BA90C9E77FAAE59F60AB5310EC41D9C5B98F1F9A89A3CDB9169E6DEF565DA ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
08:35:33.0946 0x0d34  LVRS64 - ok
08:35:36.0099 0x0d34  [ 13384CB5F5813E65F31078D6ABFAAF38, A6E7374C15CAECC273197BF62F8F926BA30E9509270A8470756F4710E1DEA126 ] LVUVC64         C:\Windows\system32\DRIVERS\lvuvc64.sys
08:35:36.0395 0x0d34  LVUVC64 - ok
08:35:36.0785 0x0d34  [ D3311B31C470E7681B14D9B014CBF9ED, 8F7053B92E0354D779988ABDADA265C102F13FD56F825054F21721BA36A15EA8 ] mbamchameleon   C:\Windows\system32\drivers\mbamchameleon.sys
08:35:36.0832 0x0d34  mbamchameleon - ok
08:35:37.0019 0x0d34  [ 5C3669B71657F22E67A1D4BD49D2CBE7, 7CAE59AA6CA9CBBD70BBD707A155FB169BF3F71096275BF7C0F415B6A092C671 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
08:35:37.0050 0x0d34  MBAMProtector - ok
08:35:37.0846 0x0d34  [ 6D8A2EE4244630B290A837E79C0F37A1, 6783BBC0BDC93E4D6D43531A1AD0DF5CD26C3BBFA6384927C5CF65AD97FB04AD ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
08:35:37.0971 0x0d34  MBAMScheduler - ok
08:35:38.0626 0x0d34  [ 09D4503CBB6ADB3A54E7C7A75090B728, 6139EA3338FD64205481EDEC813A44F8D395FDA7B67AA431DA61F3631C3EDAE6 ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
08:35:38.0673 0x0d34  MBAMService - ok
08:35:38.0829 0x0d34  [ 26C43960C99EE861A5D0EDC4DCF3B1C3, 6238FB8E785652040CCE3E7044EA52066CE1BF173A1467474D64A3AB214B6BCD ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
08:35:38.0876 0x0d34  MBAMSwissArmy - ok
08:35:39.0047 0x0d34  [ 95EF63A7827D4E3A229CBBCB42619E93, FA38DD035B2C4FC82B60868F49D45A39FBBC96096AAD5A2C8BD752A250255BA7 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
08:35:39.0078 0x0d34  MBAMWebAccessControl - ok
08:35:39.0390 0x0d34  [ F928E5E72BBA15DD0CE9A26E0413D236, D63EFA1408084F524464729C2F3BE16550E07ACE2BF8A00699A8438079AD381B ] McNASvc         C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
08:35:39.0422 0x0d34  McNASvc - ok
08:35:39.0780 0x0d34  [ F928E5E72BBA15DD0CE9A26E0413D236, D63EFA1408084F524464729C2F3BE16550E07ACE2BF8A00699A8438079AD381B ] McProxy         C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
08:35:39.0796 0x0d34  McProxy - ok
08:35:39.0858 0x0d34  MCSTRM - ok
08:35:39.0936 0x0d34  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
08:35:39.0983 0x0d34  Mcx2Svc - ok
08:35:40.0046 0x0d34  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
08:35:40.0108 0x0d34  megasas - ok
08:35:40.0217 0x0d34  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
08:35:40.0248 0x0d34  MegaSR - ok
08:35:40.0451 0x0d34  [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
08:35:40.0482 0x0d34  Microsoft Office Groove Audit Service - ok
08:35:40.0545 0x0d34  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
08:35:40.0623 0x0d34  MMCSS - ok
08:35:40.0685 0x0d34  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
08:35:40.0779 0x0d34  Modem - ok
08:35:40.0826 0x0d34  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
08:35:40.0888 0x0d34  monitor - ok
08:35:40.0966 0x0d34  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
08:35:41.0075 0x0d34  mouclass - ok
08:35:41.0122 0x0d34  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
08:35:41.0216 0x0d34  mouhid - ok
08:35:41.0247 0x0d34  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
08:35:41.0278 0x0d34  mountmgr - ok
08:35:41.0356 0x0d34  [ 6ACCF2E8210880D7005C608AFDB5301C, D00122C928C5818A24E6C11183F79C253CFB6576AD54DC92AEEFC630ABBDE655 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
08:35:41.0372 0x0d34  MozillaMaintenance - ok
08:35:41.0434 0x0d34  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
08:35:41.0481 0x0d34  mpio - ok
08:35:41.0668 0x0d34  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
08:35:41.0762 0x0d34  mpsdrv - ok
08:35:42.0292 0x0d34  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
08:35:42.0354 0x0d34  MpsSvc - ok
08:35:42.0464 0x0d34  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
08:35:42.0542 0x0d34  MRxDAV - ok
08:35:42.0620 0x0d34  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
08:35:42.0698 0x0d34  mrxsmb - ok
08:35:42.0807 0x0d34  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
08:35:42.0869 0x0d34  mrxsmb10 - ok
08:35:42.0947 0x0d34  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
08:35:43.0166 0x0d34  mrxsmb20 - ok
08:35:43.0197 0x0d34  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
08:35:43.0228 0x0d34  msahci - ok
08:35:43.0322 0x0d34  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
08:35:43.0353 0x0d34  msdsm - ok
08:35:43.0478 0x0d34  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
08:35:43.0540 0x0d34  MSDTC - ok
08:35:43.0649 0x0d34  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
08:35:43.0790 0x0d34  Msfs - ok
08:35:43.0868 0x0d34  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
08:35:43.0946 0x0d34  mshidkmdf - ok
08:35:43.0977 0x0d34  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
08:35:44.0055 0x0d34  msisadrv - ok
08:35:44.0164 0x0d34  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
08:35:44.0242 0x0d34  MSiSCSI - ok
08:35:44.0242 0x0d34  msiserver - ok
08:35:44.0336 0x0d34  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
08:35:44.0398 0x0d34  MSKSSRV - ok
08:35:44.0445 0x0d34  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
08:35:44.0523 0x0d34  MSPCLOCK - ok
08:35:44.0570 0x0d34  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
08:35:44.0648 0x0d34  MSPQM - ok
08:35:44.0804 0x0d34  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
08:35:44.0835 0x0d34  MsRPC - ok
08:35:44.0866 0x0d34  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
08:35:44.0913 0x0d34  mssmbios - ok
08:35:44.0960 0x0d34  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
08:35:45.0022 0x0d34  MSTEE - ok
08:35:45.0053 0x0d34  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
08:35:45.0116 0x0d34  MTConfig - ok
08:35:45.0178 0x0d34  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
08:35:45.0194 0x0d34  Mup - ok
08:35:45.0381 0x0d34  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
08:35:45.0443 0x0d34  napagent - ok
08:35:45.0630 0x0d34  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
08:35:45.0693 0x0d34  NativeWifiP - ok
08:35:46.0145 0x0d34  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
08:35:46.0208 0x0d34  NDIS - ok
08:35:46.0332 0x0d34  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
08:35:46.0426 0x0d34  NdisCap - ok
08:35:46.0488 0x0d34  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
08:35:46.0551 0x0d34  NdisTapi - ok
08:35:46.0598 0x0d34  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
08:35:46.0707 0x0d34  Ndisuio - ok
08:35:46.0738 0x0d34  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
08:35:46.0816 0x0d34  NdisWan - ok
08:35:46.0847 0x0d34  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
08:35:46.0894 0x0d34  NDProxy - ok
08:35:47.0300 0x0d34  [ B90E093E7A7250906F1054418B5339C0, F9A0BAC5B4B29F14B5CACA1047F8928A495EFD56E485492BF71C856B296476D6 ] Nero BackItUp Scheduler 4.0 C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
08:35:47.0346 0x0d34  Nero BackItUp Scheduler 4.0 - ok
08:35:47.0456 0x0d34  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
08:35:47.0580 0x0d34  NetBIOS - ok
08:35:47.0674 0x0d34  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
08:35:47.0736 0x0d34  NetBT - ok
08:35:47.0768 0x0d34  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
08:35:47.0814 0x0d34  Netlogon - ok
08:35:48.0002 0x0d34  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
08:35:48.0080 0x0d34  Netman - ok
08:35:48.0298 0x0d34  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:35:48.0470 0x0d34  NetMsmqActivator - ok
08:35:48.0516 0x0d34  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:35:48.0548 0x0d34  NetPipeActivator - ok
08:35:48.0735 0x0d34  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
08:35:48.0813 0x0d34  netprofm - ok
08:35:48.0938 0x0d34  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:35:48.0953 0x0d34  NetTcpActivator - ok
08:35:48.0969 0x0d34  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:35:49.0000 0x0d34  NetTcpPortSharing - ok
08:35:49.0109 0x0d34  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
08:35:49.0218 0x0d34  nfrd960 - ok
08:35:49.0374 0x0d34  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
08:35:49.0437 0x0d34  NlaSvc - ok
08:35:49.0468 0x0d34  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
08:35:49.0546 0x0d34  Npfs - ok
08:35:49.0671 0x0d34  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
08:35:49.0764 0x0d34  nsi - ok
08:35:49.0796 0x0d34  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
08:35:49.0858 0x0d34  nsiproxy - ok
08:35:50.0482 0x0d34  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
08:35:50.0607 0x0d34  Ntfs - ok
08:35:50.0732 0x0d34  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
08:35:50.0810 0x0d34  Null - ok
08:35:50.0903 0x0d34  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
08:35:50.0934 0x0d34  nvraid - ok
08:35:50.0997 0x0d34  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
08:35:51.0012 0x0d34  nvstor - ok
08:35:51.0090 0x0d34  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
08:35:51.0122 0x0d34  nv_agp - ok
08:35:51.0496 0x0d34  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
08:35:51.0512 0x0d34  odserv - ok
08:35:51.0574 0x0d34  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
08:35:51.0621 0x0d34  ohci1394 - ok
08:35:51.0808 0x0d34  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:35:51.0824 0x0d34  ose - ok
08:35:52.0073 0x0d34  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
08:35:52.0198 0x0d34  p2pimsvc - ok
08:35:52.0354 0x0d34  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
08:35:52.0463 0x0d34  p2psvc - ok
08:35:52.0526 0x0d34  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
08:35:52.0619 0x0d34  Parport - ok
08:35:52.0697 0x0d34  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
08:35:52.0728 0x0d34  partmgr - ok
08:35:52.0806 0x0d34  [ 256390425414F90FCBC12F525A84EB11, A4992020BF6A239AD8A77125426E2C39980C9ABC971C4DBCB24B358F946AD7F9 ] PcaSvc          C:\Windows\System32\pcasvc.dll
08:35:52.0931 0x0d34  PcaSvc - ok
08:35:53.0072 0x0d34  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
08:35:53.0087 0x0d34  pci - ok
08:35:53.0150 0x0d34  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
08:35:53.0306 0x0d34  pciide - ok
08:35:53.0446 0x0d34  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
08:35:53.0555 0x0d34  pcmcia - ok
08:35:53.0649 0x0d34  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
08:35:53.0711 0x0d34  pcw - ok
08:35:53.0945 0x0d34  [ 946010CDFA91469351B22E2620CEBCD8, F099C92706D42ADC289B72724F7932E5D4F62A427AEC967DDB0A1D728AE59A63 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
08:35:54.0086 0x0d34  PEAUTH - ok
08:35:54.0866 0x0d34  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
08:35:54.0897 0x0d34  PerfHost - ok
08:35:55.0053 0x0d34  [ 663962900E7FEA522126BA287715BB4A, 95CE12CA11E705C293BE4E18845581037D819A7EC812349BCAF4EABC8E7087B1 ] PGEffect        C:\Windows\system32\DRIVERS\pgeffect.sys
08:35:55.0146 0x0d34  PGEffect - ok
08:35:55.0505 0x0d34  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
08:35:55.0599 0x0d34  pla - ok
08:35:55.0739 0x0d34  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
08:35:55.0848 0x0d34  PlugPlay - ok
08:35:55.0911 0x0d34  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
08:35:55.0989 0x0d34  PNRPAutoReg - ok
08:35:56.0051 0x0d34  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
08:35:56.0082 0x0d34  PNRPsvc - ok
08:35:56.0410 0x0d34  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
08:35:56.0519 0x0d34  PolicyAgent - ok
08:35:56.0644 0x0d34  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
08:35:56.0753 0x0d34  Power - ok
08:35:56.0909 0x0d34  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
08:35:57.0034 0x0d34  PptpMiniport - ok
08:35:57.0065 0x0d34  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
08:35:57.0096 0x0d34  Processor - ok
08:35:57.0252 0x0d34  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
08:35:57.0330 0x0d34  ProfSvc - ok
08:35:57.0377 0x0d34  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
08:35:57.0424 0x0d34  ProtectedStorage - ok
08:35:57.0502 0x0d34  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
08:35:57.0564 0x0d34  Psched - ok
08:35:58.0064 0x0d34  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
08:35:58.0173 0x0d34  ql2300 - ok
08:35:58.0235 0x0d34  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
08:35:58.0282 0x0d34  ql40xx - ok
08:35:58.0360 0x0d34  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
08:35:58.0391 0x0d34  QWAVE - ok
08:35:58.0422 0x0d34  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
08:35:58.0485 0x0d34  QWAVEdrv - ok
08:35:58.0641 0x0d34  [ A55E7D0D873B2C97585B3B5926AC6ADE, 3BE3895DA7F0888E85B1941525878BA0846A8F215AD39ED8138BB39615468E32 ] RapiMgr         C:\Windows\WindowsMobile\rapimgr.dll
08:35:58.0719 0x0d34  RapiMgr - ok
08:35:58.0766 0x0d34  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
08:35:58.0859 0x0d34  RasAcd - ok
08:35:58.0953 0x0d34  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
08:35:59.0000 0x0d34  RasAgileVpn - ok
08:35:59.0109 0x0d34  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
08:35:59.0218 0x0d34  RasAuto - ok
08:35:59.0296 0x0d34  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
08:35:59.0374 0x0d34  Rasl2tp - ok
08:35:59.0608 0x0d34  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
08:35:59.0702 0x0d34  RasMan - ok
08:35:59.0748 0x0d34  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
08:35:59.0842 0x0d34  RasPppoe - ok
08:35:59.0904 0x0d34  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
08:36:00.0045 0x0d34  RasSstp - ok
08:36:00.0248 0x0d34  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
08:36:00.0357 0x0d34  rdbss - ok
08:36:00.0404 0x0d34  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
08:36:00.0575 0x0d34  rdpbus - ok
08:36:00.0653 0x0d34  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
08:36:00.0825 0x0d34  RDPCDD - ok
08:36:00.0872 0x0d34  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
08:36:00.0965 0x0d34  RDPENCDD - ok
08:36:00.0996 0x0d34  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
08:36:01.0059 0x0d34  RDPREFMP - ok
08:36:01.0152 0x0d34  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
08:36:01.0371 0x0d34  RdpVideoMiniport - ok
08:36:01.0527 0x0d34  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
08:36:01.0683 0x0d34  RDPWD - ok
08:36:01.0808 0x0d34  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
08:36:01.0839 0x0d34  rdyboost - ok
08:36:01.0886 0x0d34  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
08:36:01.0979 0x0d34  RemoteAccess - ok
08:36:02.0042 0x0d34  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
08:36:02.0088 0x0d34  RemoteRegistry - ok
08:36:02.0385 0x0d34  [ F12A68ED55053940CADD59CA5E3468DD, 75331E6DA4E30717085E7D8131989241EBC492DC3EE455546F91DA9DFFFD2BFC ] RichVideo       C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
08:36:02.0400 0x0d34  RichVideo - detected UnsignedFile.Multi.Generic ( 1 )
08:36:12.0431 0x0d34  RichVideo ( UnsignedFile.Multi.Generic ) - warning
08:36:12.0431 0x0d34  Force sending object to P2P due to detect: RichVideo
08:36:15.0614 0x0d34  Object send P2P result: true
08:36:18.0656 0x0d34  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
08:36:18.0718 0x0d34  RpcEptMapper - ok
08:36:18.0780 0x0d34  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
08:36:18.0812 0x0d34  RpcLocator - ok
08:36:18.0921 0x0d34  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
08:36:18.0983 0x0d34  RpcSs - ok
08:36:19.0077 0x0d34  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
08:36:19.0186 0x0d34  rspndr - ok
08:36:19.0326 0x0d34  [ ABCB5A38A0D85BDF69B7877E1AD1EED5, 44DF1A92E8FA53677A04C46088B0AD49F1F6A090820BE550A514C4FBFD91444D ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
08:36:19.0779 0x0d34  RTL8167 - ok
08:36:20.0372 0x0d34  [ 7475548B0BA58EBA4D12414FC9E9DFE6, 93F5CF9C7F5CE556810A6113014CB17774EA7779BD91D84670FA6653C810361F ] rtl8192se       C:\Windows\system32\DRIVERS\rtl8192se.sys
08:36:20.0512 0x0d34  rtl8192se - ok
08:36:20.0543 0x0d34  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
08:36:20.0559 0x0d34  SamSs - ok
08:36:20.0637 0x0d34  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
08:36:20.0652 0x0d34  sbp2port - ok
08:36:20.0746 0x0d34  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
08:36:20.0855 0x0d34  SCardSvr - ok
08:36:20.0886 0x0d34  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
08:36:20.0933 0x0d34  scfilter - ok
08:36:21.0417 0x0d34  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
08:36:21.0573 0x0d34  Schedule - ok
08:36:21.0635 0x0d34  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
08:36:21.0682 0x0d34  SCPolicySvc - ok
08:36:21.0854 0x0d34  [ 8B56BDCE6A303DDE63D63440D1CF9AD1, 66A4356C29D00A1B8A95975C073AE4E6D2A90CBF3B143FE9B83B96BEC0805D46 ] ScreamBAudioSvc C:\Windows\system32\drivers\ScreamingBAudio64.sys
08:36:21.0885 0x0d34  ScreamBAudioSvc - ok
08:36:22.0025 0x0d34  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
08:36:22.0166 0x0d34  SDRSVC - ok
08:36:22.0275 0x0d34  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
08:36:22.0368 0x0d34  secdrv - ok
08:36:22.0446 0x0d34  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
08:36:22.0556 0x0d34  seclogon - ok
08:36:22.0602 0x0d34  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
08:36:22.0665 0x0d34  SENS - ok
08:36:22.0743 0x0d34  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
08:36:22.0790 0x0d34  SensrSvc - ok
08:36:22.0914 0x0d34  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
08:36:23.0039 0x0d34  Serenum - ok
08:36:23.0117 0x0d34  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
08:36:23.0148 0x0d34  Serial - ok
08:36:23.0211 0x0d34  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
08:36:23.0289 0x0d34  sermouse - ok
08:36:23.0414 0x0d34  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
08:36:23.0507 0x0d34  SessionEnv - ok
08:36:23.0554 0x0d34  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
08:36:23.0616 0x0d34  sffdisk - ok
08:36:23.0694 0x0d34  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
08:36:23.0757 0x0d34  sffp_mmc - ok
08:36:23.0788 0x0d34  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
08:36:24.0053 0x0d34  sffp_sd - ok
08:36:24.0116 0x0d34  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
08:36:24.0147 0x0d34  sfloppy - ok
08:36:24.0350 0x0d34  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
08:36:24.0428 0x0d34  SharedAccess - ok
08:36:24.0506 0x0d34  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
08:36:24.0599 0x0d34  ShellHWDetection - ok
08:36:24.0646 0x0d34  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
08:36:24.0662 0x0d34  SiSRaid2 - ok
08:36:24.0771 0x0d34  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
08:36:24.0818 0x0d34  SiSRaid4 - ok
08:36:25.0020 0x0d34  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
08:36:25.0114 0x0d34  SkypeUpdate - ok
08:36:25.0239 0x0d34  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
08:36:25.0301 0x0d34  Smb - ok
08:36:25.0457 0x0d34  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
08:36:25.0520 0x0d34  SNMPTRAP - ok
08:36:25.0598 0x0d34  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
08:36:25.0676 0x0d34  spldr - ok
08:36:25.0816 0x0d34  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
08:36:25.0910 0x0d34  Spooler - ok
08:36:26.0783 0x0d34  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
08:36:27.0064 0x0d34  sppsvc - ok
08:36:27.0111 0x0d34  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
08:36:27.0189 0x0d34  sppuinotify - ok
08:36:27.0485 0x0d34  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
08:36:27.0641 0x0d34  srv - ok
08:36:27.0750 0x0d34  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
08:36:27.0828 0x0d34  srv2 - ok
08:36:27.0938 0x0d34  [ 0C4540311E11664B245A263E1154CEF8, 63376322BFFAFF2F166AF3FDD3F1A346C21FAE21F406F659F8630779D1D6525D ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL6.SYS
08:36:28.0000 0x0d34  SrvHsfHDA - ok
08:36:28.0484 0x0d34  [ 02071D207A9858FBE3A48CBFD59C4A04, FEA4DEBAEC3465E0C7C1E8B721805922F6BBCB96A60A193B11688F4252F4B89E ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV6.SYS
08:36:28.0640 0x0d34  SrvHsfV92 - ok
08:36:28.0842 0x0d34  [ 18E40C245DBFAF36FD0134A7EF2DF396, 0138A68958112101A5D3BD94114F320CE80B0C9A93E009AC78DE7415FCCC7DE7 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
08:36:28.0920 0x0d34  SrvHsfWinac - ok
08:36:28.0998 0x0d34  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
08:36:29.0092 0x0d34  srvnet - ok
08:36:29.0279 0x0d34  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
08:36:29.0357 0x0d34  SSDPSRV - ok
08:36:29.0451 0x0d34  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
08:36:29.0529 0x0d34  SstpSvc - ok
08:36:29.0841 0x0d34  [ AFE32AFD30464FC59CB8E88DC72F66FA, 24644F8AA47E61B98EF867BE18A9BE383822D64F3AADF2ED35E42FBFBA7B340F ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
08:36:29.0872 0x0d34  Steam Client Service - ok
08:36:29.0950 0x0d34  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
08:36:30.0028 0x0d34  stexstor - ok
08:36:30.0184 0x0d34  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
08:36:30.0262 0x0d34  stisvc - ok
08:36:30.0324 0x0d34  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
08:36:30.0480 0x0d34  swenum - ok
08:36:30.0683 0x0d34  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
08:36:30.0777 0x0d34  swprv - ok
08:36:30.0917 0x0d34  [ C52B05821884F9A0EBEE38C45DBD73CD, BB9DD84C191F16EC4596D595D41A2C7E6D7D231520284D36ED4D7B5084FE6E84 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
08:36:30.0948 0x0d34  SynTP - ok
08:36:31.0728 0x0d34  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
08:36:31.0853 0x0d34  SysMain - ok
08:36:31.0931 0x0d34  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
08:36:31.0994 0x0d34  TabletInputService - ok
08:36:32.0118 0x0d34  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
08:36:32.0181 0x0d34  TapiSrv - ok
08:36:32.0228 0x0d34  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
08:36:32.0274 0x0d34  TBS - ok
08:36:33.0195 0x0d34  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
08:36:33.0335 0x0d34  Tcpip - ok
08:36:33.0756 0x0d34  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
08:36:33.0897 0x0d34  TCPIP6 - ok
08:36:33.0975 0x0d34  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
08:36:34.0022 0x0d34  tcpipreg - ok
08:36:34.0100 0x0d34  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
08:36:34.0271 0x0d34  TDPIPE - ok
08:36:34.0365 0x0d34  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
08:36:34.0443 0x0d34  TDTCP - ok
08:36:34.0552 0x0d34  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
08:36:34.0661 0x0d34  tdx - ok
08:36:34.0677 0x0d34  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
08:36:34.0724 0x0d34  TermDD - ok
08:36:35.0145 0x0d34  [ 4FC4C50985E5B840F4D72E57286887B8, 0BCBB4A938803AE3A3532B6D8FFC85594AA9AEF5D8F9792684841BEA8780AE9E ] TermService     C:\Windows\System32\termsrv.dll
08:36:35.0223 0x0d34  TermService - ok
08:36:35.0316 0x0d34  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
08:36:35.0426 0x0d34  Themes - ok
08:36:35.0457 0x0d34  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
08:36:35.0504 0x0d34  THREADORDER - ok
08:36:35.0613 0x0d34  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
08:36:35.0722 0x0d34  TrkWks - ok
08:36:36.0065 0x0d34  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
08:36:36.0128 0x0d34  TrustedInstaller - ok
08:36:36.0221 0x0d34  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
08:36:36.0252 0x0d34  tssecsrv - ok
08:36:36.0299 0x0d34  [ 17C6B51CBCCDED95B3CC14E22791F85E, EE417C19E9B2C258D62A74F1F2421AFFBAC67ACD62481CAA08F5B6A3439C1D7C ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
08:36:36.0408 0x0d34  TsUsbFlt - ok
08:36:36.0502 0x0d34  [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
08:36:36.0533 0x0d34  TsUsbGD - ok
08:36:36.0705 0x0d34  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
08:36:36.0767 0x0d34  tunnel - ok
08:36:36.0845 0x0d34  [ 9A744CC3D804EC38A6C2C65BC3C6FCD8, 28CDF1A8614444F4A7249FB7189B423579CA91D1373138CD3E6C048CE6D2799F ] TVALZ           C:\Windows\system32\DRIVERS\TVALZ_O.SYS
08:36:36.0876 0x0d34  TVALZ - ok
08:36:36.0923 0x0d34  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
08:36:36.0954 0x0d34  uagp35 - ok
08:36:37.0126 0x0d34  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
08:36:37.0266 0x0d34  udfs - ok
08:36:37.0376 0x0d34  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
08:36:37.0469 0x0d34  UI0Detect - ok
08:36:37.0563 0x0d34  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
08:36:37.0625 0x0d34  uliagpkx - ok
08:36:37.0750 0x0d34  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
08:36:37.0859 0x0d34  umbus - ok
08:36:37.0875 0x0d34  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
08:36:37.0922 0x0d34  UmPass - ok
08:36:38.0093 0x0d34  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
08:36:38.0156 0x0d34  upnphost - ok
08:36:38.0265 0x0d34  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
08:36:38.0390 0x0d34  usbaudio - ok
08:36:38.0452 0x0d34  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
08:36:38.0577 0x0d34  usbccgp - ok
08:36:38.0639 0x0d34  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
08:36:38.0764 0x0d34  usbcir - ok
08:36:38.0842 0x0d34  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
08:36:39.0029 0x0d34  usbehci - ok
08:36:39.0575 0x0d34  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
08:36:39.0669 0x0d34  usbhub - ok
08:36:39.0700 0x0d34  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
08:36:39.0778 0x0d34  usbohci - ok
08:36:39.0903 0x0d34  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
08:36:39.0950 0x0d34  usbprint - ok
08:36:40.0121 0x0d34  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
08:36:40.0246 0x0d34  usbscan - ok
08:36:40.0308 0x0d34  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
08:36:40.0464 0x0d34  USBSTOR - ok
08:36:40.0527 0x0d34  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
08:36:40.0558 0x0d34  usbuhci - ok
08:36:40.0839 0x0d34  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
08:36:40.0886 0x0d34  usbvideo - ok
08:36:40.0948 0x0d34  [ 7B28E2FBE75115660FAB31079C0A9F29, 81BB5A3E64B652A672A0782A88ABF6DDD729D38712D0706CE0FB9DE6D1EE1515 ] usb_rndisx      C:\Windows\system32\DRIVERS\usb8023x.sys
08:36:40.0995 0x0d34  usb_rndisx - ok
08:36:41.0042 0x0d34  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
08:36:41.0213 0x0d34  UxSms - ok
08:36:41.0229 0x0d34  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
08:36:41.0244 0x0d34  VaultSvc - ok
08:36:41.0322 0x0d34  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
08:36:41.0369 0x0d34  vdrvroot - ok
08:36:41.0681 0x0d34  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
08:36:41.0759 0x0d34  vds - ok
08:36:41.0884 0x0d34  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
08:36:41.0931 0x0d34  vga - ok
08:36:41.0946 0x0d34  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
08:36:42.0056 0x0d34  VgaSave - ok
08:36:42.0118 0x0d34  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
08:36:42.0149 0x0d34  vhdmp - ok
08:36:42.0212 0x0d34  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
08:36:42.0243 0x0d34  viaide - ok
08:36:42.0321 0x0d34  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
08:36:42.0352 0x0d34  volmgr - ok
08:36:42.0492 0x0d34  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
08:36:42.0555 0x0d34  volmgrx - ok
08:36:42.0648 0x0d34  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
08:36:42.0664 0x0d34  volsnap - ok
08:36:42.0773 0x0d34  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
08:36:42.0789 0x0d34  vsmraid - ok
08:36:43.0350 0x0d34  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
08:36:43.0538 0x0d34  VSS - ok
08:36:43.0569 0x0d34  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
08:36:43.0631 0x0d34  vwifibus - ok
08:36:43.0740 0x0d34  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
08:36:43.0787 0x0d34  vwififlt - ok
08:36:43.0943 0x0d34  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] w32time         C:\Windows\system32\w32time.DLL
08:36:44.0006 0x0d34  w32time - ok
08:36:44.0068 0x0d34  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
08:36:44.0099 0x0d34  WacomPen - ok
08:36:44.0208 0x0d34  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
08:36:44.0318 0x0d34  WANARP - ok
08:36:44.0333 0x0d34  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
08:36:44.0364 0x0d34  Wanarpv6 - ok
08:36:44.0817 0x0d34  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
08:36:44.0879 0x0d34  WatAdminSvc - ok
08:36:45.0332 0x0d34  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
08:36:45.0472 0x0d34  wbengine - ok
08:36:45.0597 0x0d34  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
08:36:45.0706 0x0d34  WbioSrvc - ok
08:36:45.0862 0x0d34  [ 8BDA6DB43AA54E8BB5E0794541DDC209, 8753C507BE77B019A3403AF5252434A01DB9F9332E58AC3783ABCE3D21AD9DD4 ] WcesComm        C:\Windows\WindowsMobile\wcescomm.dll
08:36:45.0878 0x0d34  WcesComm - ok
08:36:46.0018 0x0d34  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
08:36:46.0096 0x0d34  wcncsvc - ok
08:36:46.0158 0x0d34  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
08:36:46.0268 0x0d34  WcsPlugInService - ok
08:36:46.0408 0x0d34  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
08:36:46.0470 0x0d34  Wd - ok
08:36:46.0704 0x0d34  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
08:36:46.0767 0x0d34  Wdf01000 - ok
08:36:46.0845 0x0d34  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
08:36:47.0453 0x0d34  WdiServiceHost - ok
08:36:47.0500 0x0d34  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
08:36:47.0531 0x0d34  WdiSystemHost - ok
08:36:47.0687 0x0d34  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
08:36:47.0765 0x0d34  WebClient - ok
08:36:47.0999 0x0d34  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
08:36:48.0124 0x0d34  Wecsvc - ok
08:36:48.0155 0x0d34  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
08:36:48.0264 0x0d34  wercplsupport - ok
08:36:48.0405 0x0d34  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
08:36:48.0498 0x0d34  WerSvc - ok
08:36:48.0654 0x0d34  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
08:36:48.0732 0x0d34  WfpLwf - ok
08:36:48.0795 0x0d34  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
08:36:48.0857 0x0d34  WIMMount - ok
08:36:48.0935 0x0d34  WinDefend - ok
08:36:48.0982 0x0d34  WinHttpAutoProxySvc - ok
08:36:49.0356 0x0d34  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
08:36:49.0434 0x0d34  Winmgmt - ok
08:36:49.0856 0x0d34  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
08:36:49.0996 0x0d34  WinRM - ok
08:36:50.0121 0x0d34  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
08:36:50.0168 0x0d34  WinUsb - ok
08:36:50.0651 0x0d34  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
08:36:50.0729 0x0d34  Wlansvc - ok
08:36:51.0712 0x0d34  [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
08:36:51.0837 0x0d34  wlidsvc - ok
08:36:51.0946 0x0d34  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
08:36:52.0086 0x0d34  WmiAcpi - ok
08:36:52.0242 0x0d34  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
08:36:52.0352 0x0d34  wmiApSrv - ok
08:36:52.0445 0x0d34  WMPNetworkSvc - ok
08:36:52.0570 0x0d34  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
08:36:52.0695 0x0d34  WPCSvc - ok
08:36:52.0726 0x0d34  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
08:36:53.0334 0x0d34  WPDBusEnum - ok
08:36:53.0412 0x0d34  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
08:36:53.0490 0x0d34  ws2ifsl - ok
08:36:53.0537 0x0d34  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
08:36:53.0568 0x0d34  wscsvc - ok
08:36:53.0584 0x0d34  WSearch - ok
08:36:54.0536 0x0d34  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll
08:36:54.0645 0x0d34  wuauserv - ok
08:36:54.0754 0x0d34  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
08:36:54.0848 0x0d34  WudfPf - ok
08:36:54.0972 0x0d34  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
08:36:55.0113 0x0d34  WUDFRd - ok
08:36:55.0160 0x0d34  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
08:36:55.0238 0x0d34  wudfsvc - ok
08:36:55.0316 0x0d34  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
08:36:55.0378 0x0d34  WwanSvc - ok
08:36:55.0565 0x0d34  ================ Scan global ===============================
08:36:55.0674 0x0d34  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
08:36:55.0784 0x0d34  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
08:36:55.0830 0x0d34  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
08:36:55.0924 0x0d34  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
08:36:56.0096 0x0d34  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
08:36:56.0127 0x0d34  [ Global ] - ok
08:36:56.0127 0x0d34  ================ Scan MBR ==================================
08:36:56.0142 0x0d34  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
08:36:59.0528 0x0d34  \Device\Harddisk0\DR0 - ok
08:36:59.0528 0x0d34  ================ Scan VBR ==================================
08:36:59.0559 0x0d34  [ 0077FC9E10A1171186C3FB68BFAD7B43 ] \Device\Harddisk0\DR0\Partition1
08:36:59.0590 0x0d34  \Device\Harddisk0\DR0\Partition1 - ok
08:36:59.0621 0x0d34  [ E34754E14F2996AE9E6BF7E0D75F21B3 ] \Device\Harddisk0\DR0\Partition2
08:36:59.0637 0x0d34  \Device\Harddisk0\DR0\Partition2 - ok
08:36:59.0637 0x0d34  ================ Scan active images ========================
08:36:59.0637 0x0d34  [ 3E588B60EC061686BA05D33574A344C6, 19D2D863F95CCC4493A2328B6BEB04248B6A80F957532E58C1D1D868C19FDCCB ] C:\Windows\System32\drivers\crashdmp.sys
08:36:59.0637 0x0d34  C:\Windows\System32\drivers\crashdmp.sys - ok
08:36:59.0652 0x0d34  [ 839B5FE3D48E9F35B22C21A3D5103F6C, A9CEA695E43092B72B0E988063E00A7C0BCE90095344E9A2F380218482BCE77F ] C:\Windows\System32\drivers\Dumpata.sys
08:36:59.0652 0x0d34  C:\Windows\System32\drivers\Dumpata.sys - ok
08:36:59.0652 0x0d34  [ 814DB88F2641691575A455CF25354098, 79C50F0CD72612733217A0316BEFEA0B6D819C3159D9452EAB89AC26A18A0F89 ] C:\Windows\System32\drivers\dumpfve.sys
08:36:59.0652 0x0d34  C:\Windows\System32\drivers\dumpfve.sys - ok
08:36:59.0668 0x0d34  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] C:\Windows\System32\drivers\msahci.sys
08:36:59.0668 0x0d34  C:\Windows\System32\drivers\msahci.sys - ok
08:36:59.0668 0x0d34  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] C:\Windows\System32\drivers\beep.sys
08:36:59.0668 0x0d34  C:\Windows\System32\drivers\beep.sys - ok
08:36:59.0684 0x0d34  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] C:\Windows\System32\drivers\cdrom.sys
08:36:59.0684 0x0d34  C:\Windows\System32\drivers\cdrom.sys - ok
08:36:59.0684 0x0d34  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] C:\Windows\System32\drivers\null.sys
08:36:59.0684 0x0d34  C:\Windows\System32\drivers\null.sys - ok
08:36:59.0699 0x0d34  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] C:\Windows\System32\drivers\vga.sys
08:36:59.0699 0x0d34  C:\Windows\System32\drivers\vga.sys - ok
08:36:59.0715 0x0d34  [ E7353D59C9842BC7299FAEB7E7E09340, C37ED1025E07BAC2F535DCFED6C6C509515D95722EADE5AF94F1FC5D8B1DC783 ] C:\Windows\System32\drivers\videoprt.sys
08:36:59.0715 0x0d34  C:\Windows\System32\drivers\videoprt.sys - ok
08:36:59.0715 0x0d34  [ FC438D1430B28618E2D0C7C332A710AD, 873957B202E454E2C8F625E5799F278CAC16EC5EEAEE2C33E2FE5D1FF0408CB2 ] C:\Windows\System32\drivers\watchdog.sys
08:36:59.0715 0x0d34  C:\Windows\System32\drivers\watchdog.sys - ok
08:36:59.0730 0x0d34  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] C:\Windows\System32\drivers\RDPCDD.sys
08:36:59.0730 0x0d34  C:\Windows\System32\drivers\RDPCDD.sys - ok
08:36:59.0730 0x0d34  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] C:\Windows\System32\drivers\RDPENCDD.sys
08:36:59.0730 0x0d34  C:\Windows\System32\drivers\RDPENCDD.sys - ok
08:36:59.0746 0x0d34  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] C:\Windows\System32\drivers\RDPREFMP.sys
08:36:59.0746 0x0d34  C:\Windows\System32\drivers\RDPREFMP.sys - ok
08:36:59.0746 0x0d34  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] C:\Windows\System32\drivers\msfs.sys
08:36:59.0746 0x0d34  C:\Windows\System32\drivers\msfs.sys - ok
08:36:59.0762 0x0d34  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] C:\Windows\System32\drivers\npfs.sys
08:36:59.0762 0x0d34  C:\Windows\System32\drivers\npfs.sys - ok
08:36:59.0762 0x0d34  [ 6F020A220388ECA0AB6062DC27BD16B6, 48655230E482DEB7B4B50EF05818EBB29CA61E780AEFCD9D31B02DE4DF9D9540 ] C:\Windows\System32\drivers\tdi.sys
08:36:59.0762 0x0d34  C:\Windows\System32\drivers\tdi.sys - ok
08:36:59.0777 0x0d34  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] C:\Windows\System32\drivers\tdx.sys
08:36:59.0777 0x0d34  C:\Windows\System32\drivers\tdx.sys - ok
08:36:59.0777 0x0d34  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] C:\Windows\System32\drivers\netbt.sys
08:36:59.0777 0x0d34  C:\Windows\System32\drivers\netbt.sys - ok
08:36:59.0793 0x0d34  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] C:\Windows\System32\drivers\afd.sys
08:36:59.0793 0x0d34  C:\Windows\System32\drivers\afd.sys - ok
08:36:59.0808 0x0d34  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] C:\Windows\System32\drivers\wfplwf.sys
08:36:59.0808 0x0d34  C:\Windows\System32\drivers\wfplwf.sys - ok
08:36:59.0808 0x0d34  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] C:\Windows\System32\drivers\pacer.sys
08:36:59.0808 0x0d34  C:\Windows\System32\drivers\pacer.sys - ok
08:36:59.0824 0x0d34  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] C:\Windows\System32\drivers\vwififlt.sys
08:36:59.0824 0x0d34  C:\Windows\System32\drivers\vwififlt.sys - ok
08:36:59.0824 0x0d34  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] C:\Windows\System32\drivers\netbios.sys
08:36:59.0824 0x0d34  C:\Windows\System32\drivers\netbios.sys - ok
08:36:59.0840 0x0d34  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] C:\Windows\System32\drivers\termdd.sys
08:36:59.0840 0x0d34  C:\Windows\System32\drivers\termdd.sys - ok
08:36:59.0840 0x0d34  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] C:\Windows\System32\drivers\wanarp.sys
08:36:59.0840 0x0d34  C:\Windows\System32\drivers\wanarp.sys - ok
08:36:59.0855 0x0d34  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] C:\Windows\System32\drivers\rdbss.sys
08:36:59.0855 0x0d34  C:\Windows\System32\drivers\rdbss.sys - ok
08:36:59.0855 0x0d34  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] C:\Windows\System32\drivers\nsiproxy.sys
08:36:59.0855 0x0d34  C:\Windows\System32\drivers\nsiproxy.sys - ok
08:36:59.0871 0x0d34  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] C:\Windows\System32\drivers\discache.sys
08:36:59.0871 0x0d34  C:\Windows\System32\drivers\discache.sys - ok
08:36:59.0886 0x0d34  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] C:\Windows\System32\drivers\mssmbios.sys
08:36:59.0886 0x0d34  C:\Windows\System32\drivers\mssmbios.sys - ok
08:36:59.0886 0x0d34  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] C:\Windows\System32\drivers\dfsc.sys
08:36:59.0886 0x0d34  C:\Windows\System32\drivers\dfsc.sys - ok
08:36:59.0902 0x0d34  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] C:\Windows\System32\drivers\blbdrive.sys
08:36:59.0902 0x0d34  C:\Windows\System32\drivers\blbdrive.sys - ok
08:36:59.0902 0x0d34  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] C:\Windows\System32\drivers\intelppm.sys
08:36:59.0902 0x0d34  C:\Windows\System32\drivers\intelppm.sys - ok
08:36:59.0918 0x0d34  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] C:\Windows\System32\drivers\wmiacpi.sys
08:36:59.0918 0x0d34  C:\Windows\System32\drivers\wmiacpi.sys - ok
08:36:59.0918 0x0d34  [ F0970A4BC8395659C22BF53D0FADF16F, 23BE3066D89A5ACBF8130899640D377476E78B6C3D19E2D13C32238464A83E21 ] C:\Windows\System32\smss.exe
08:36:59.0918 0x0d34  C:\Windows\System32\smss.exe - ok
08:36:59.0933 0x0d34  [ CAAAC014C5C56A69F710B5F1B836DE22, DA98EF2EBF9A7F180344A88CC2C74F69101E17BBAB58B1C46176FD6EE7AA2E6A ] C:\Windows\System32\ntdll.dll
08:36:59.0933 0x0d34  C:\Windows\System32\ntdll.dll - ok
08:36:59.0933 0x0d34  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93, 7BC847CE6C2D29C334F0D1600BBBDE3933FF45F6BEE5186F442E6270A3F9EC4E ] C:\Windows\System32\autochk.exe
08:36:59.0933 0x0d34  C:\Windows\System32\autochk.exe - ok
08:36:59.0949 0x0d34  [ C6238C6ABD6AC99F5D152DA4E9439A3D, 6FC490B94CEF523C7C099AEA3D36AB75C9896B1D83D4467D237E698A8E0D9E7B ] C:\Windows\System32\drivers\igdkmd64.sys
08:36:59.0949 0x0d34  C:\Windows\System32\drivers\igdkmd64.sys - ok
08:36:59.0949 0x0d34  [ C06B32165E23A72A898B7A89679AD754, 721405158F6E9F1A7FE7BB33EF642D91332726629D0D3B07DF3CF3152A91C85D ] C:\Windows\System32\oleaut32.dll
08:36:59.0949 0x0d34  C:\Windows\System32\oleaut32.dll - ok
08:36:59.0964 0x0d34  [ 0F5A279522FA6A30C9C5A297A1064933, 875F9B983295B0ACB3080BA8C4587C055393F6E8C95F4237BF60297C4D16940A ] C:\Windows\System32\urlmon.dll
08:36:59.0964 0x0d34  C:\Windows\System32\urlmon.dll - ok
08:36:59.0980 0x0d34  [ EAF32CB8C1F810E4715B4DFBE785C7FF, DB6AD07FDED42433E669508AB73FAFF6DAFF04575D6F1D016FE3EB6ECEC4DD5D ] C:\Windows\System32\shlwapi.dll
08:36:59.0980 0x0d34  C:\Windows\System32\shlwapi.dll - ok
08:36:59.0980 0x0d34  [ F7CE0C81C545364020ED8203CF0A633E, 24B47A7492B7048096AF87E26786E8108455ADBD1A374B6A0466DE008505B8A9 ] C:\Windows\System32\difxapi.dll
08:36:59.0980 0x0d34  C:\Windows\System32\difxapi.dll - ok
08:36:59.0996 0x0d34  [ D87E1E59C73C1F98D5DED5B3850C40F5, 536419BFF9F877D4314B5D0C045D9A6E729489C389863FADF07E382050BC84FD ] C:\Windows\System32\psapi.dll
08:36:59.0996 0x0d34  C:\Windows\System32\psapi.dll - ok
08:36:59.0996 0x0d34  [ 9835E63E09F824D22B689D2BB789BAB9, 5BCFFAFB894D69FBCDDB91E64D30A356F4BD57098E8B4C51B98AFAF6581BDB63 ] C:\Windows\System32\comdlg32.dll
08:36:59.0996 0x0d34  C:\Windows\System32\comdlg32.dll - ok
 



#11 poppyseed

poppyseed
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:03:12 PM

Posted 25 October 2014 - 09:28 AM

TDSSkiller log part 2:

 

08:37:00.0011 0x0d34  [ 088CF6AFCD5CDD44E40C0ACDE3C1A5E0, AC6AFCAE3A58AAABC972B3D6A1ED383A59910C689F38D9D4A059A0A535BA1039 ] C:\Windows\System32\usp10.dll
08:37:00.0011 0x0d34  C:\Windows\System32\usp10.dll - ok
08:37:00.0011 0x0d34  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] C:\Windows\System32\drivers\dxgkrnl.sys
08:37:00.0011 0x0d34  C:\Windows\System32\drivers\dxgkrnl.sys - ok
08:37:00.0027 0x0d34  [ 1F04CFB79DD5FB7694468CE3FB3DCC31, A40C0BF6D1EC6C4281611A830EA7B22FEF523A3E197E5A8F59332D64E90376B6 ] C:\Windows\System32\drivers\dxgmms1.sys
08:37:00.0027 0x0d34  C:\Windows\System32\drivers\dxgmms1.sys - ok
08:37:00.0027 0x0d34  [ 12FEB33791920678F8433701C822BCFD, 7D1AD944CF0532D5AF951ACCE064EA9288F068964603674854CD7658D2B96039 ] C:\Windows\System32\drivers\usbport.sys
08:37:00.0027 0x0d34  C:\Windows\System32\drivers\usbport.sys - ok
08:37:00.0042 0x0d34  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] C:\Windows\System32\drivers\usbuhci.sys
08:37:00.0042 0x0d34  C:\Windows\System32\drivers\usbuhci.sys - ok
08:37:00.0058 0x0d34  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] C:\Windows\System32\drivers\usbehci.sys
08:37:00.0058 0x0d34  C:\Windows\System32\drivers\usbehci.sys - ok
08:37:00.0058 0x0d34  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] C:\Windows\System32\drivers\hdaudbus.sys
08:37:00.0058 0x0d34  C:\Windows\System32\drivers\hdaudbus.sys - ok
08:37:00.0074 0x0d34  [ ABCB5A38A0D85BDF69B7877E1AD1EED5, 44DF1A92E8FA53677A04C46088B0AD49F1F6A090820BE550A514C4FBFD91444D ] C:\Windows\System32\drivers\Rt64win7.sys
08:37:00.0074 0x0d34  C:\Windows\System32\drivers\Rt64win7.sys - ok
08:37:00.0074 0x0d34  [ B4421D8CDADC441F76BA39532A3E3414, 4C7C14C99E2095012A85672C824E21CF2FC152BCC37A1B25BF3189D0F6A06ED3 ] C:\Windows\System32\drivers\athrx.sys
08:37:00.0074 0x0d34  C:\Windows\System32\drivers\athrx.sys - ok
08:37:00.0089 0x0d34  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] C:\Windows\System32\drivers\vwifibus.sys
08:37:00.0089 0x0d34  C:\Windows\System32\drivers\vwifibus.sys - ok
08:37:00.0089 0x0d34  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] C:\Windows\System32\drivers\i8042prt.sys
08:37:00.0089 0x0d34  C:\Windows\System32\drivers\i8042prt.sys - ok
08:37:00.0105 0x0d34  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] C:\Windows\System32\drivers\kbdclass.sys
08:37:00.0105 0x0d34  C:\Windows\System32\drivers\kbdclass.sys - ok
08:37:00.0105 0x0d34  [ FFA06EF43987ED0DD42AD59B260C0C78, 260518D5E077E55E0F2099037DBEFA93016FD4D4655456DDB3147AF9CBE7BF6B ] C:\Windows\System32\drivers\usbd.sys
08:37:00.0105 0x0d34  C:\Windows\System32\drivers\usbd.sys - ok
08:37:00.0120 0x0d34  [ C52B05821884F9A0EBEE38C45DBD73CD, BB9DD84C191F16EC4596D595D41A2C7E6D7D231520284D36ED4D7B5084FE6E84 ] C:\Windows\System32\drivers\SynTP.sys
08:37:00.0120 0x0d34  C:\Windows\System32\drivers\SynTP.sys - ok
08:37:00.0120 0x0d34  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] C:\Windows\System32\drivers\mouclass.sys
08:37:00.0120 0x0d34  C:\Windows\System32\drivers\mouclass.sys - ok
08:37:00.0136 0x0d34  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] C:\Windows\System32\drivers\CmBatt.sys
08:37:00.0136 0x0d34  C:\Windows\System32\drivers\CmBatt.sys - ok
08:37:00.0152 0x0d34  [ E403AACF8C7BB11375122D2464560311, 0427B8FFD999D256EA1A5135F218692959A7577CB32354D3087CF0FB4F0577DF ] C:\Windows\System32\drivers\GEARAspiWDM.sys
08:37:00.0152 0x0d34  C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
08:37:00.0152 0x0d34  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] C:\Windows\System32\drivers\CompositeBus.sys
08:37:00.0152 0x0d34  C:\Windows\System32\drivers\CompositeBus.sys - ok
08:37:00.0167 0x0d34  [ E13A438F9E51DD034730678E33B73290, 3BB111DFDAEAB8DA6124600C7F6E080C2950A0BB420803FC12560343E1A9280A ] C:\Windows\System32\drivers\clwvd.sys
08:37:00.0167 0x0d34  C:\Windows\System32\drivers\clwvd.sys - ok
08:37:00.0167 0x0d34  [ 24FBF5CC5C04150073C315A7C83521EE, 581BD5F15B5E57B3BAA762E421FFD859FDA46DDB8515C2A7AAFF208D784E906C ] C:\Windows\System32\drivers\ks.sys
08:37:00.0167 0x0d34  C:\Windows\System32\drivers\ks.sys - ok
08:37:00.0183 0x0d34  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] C:\Windows\System32\drivers\ksthunk.sys
08:37:00.0183 0x0d34  C:\Windows\System32\drivers\ksthunk.sys - ok
08:37:00.0183 0x0d34  [ AE57F6C7AB3ED244B5F14151C4EA0057, 60BAF0909C60B2387E2972EBBC77140E9E982549F0746EE26AF4EFB4E9FD77A4 ] C:\Windows\System32\shell32.dll
08:37:00.0183 0x0d34  C:\Windows\System32\shell32.dll - ok
08:37:00.0198 0x0d34  [ 4BBFA57F594F7E8A8EDC8F377184C3F0, 9F3AC5DEA5A6250C3DBB97AF79C81C0A48429486521F807355A1D7D3D861B75F ] C:\Windows\System32\ws2_32.dll
08:37:00.0198 0x0d34  C:\Windows\System32\ws2_32.dll - ok
08:37:00.0198 0x0d34  [ AA2C08CE85653B1A0D2E4AB407FA176C, 83DFD0C119B20AEDB07114C9D1CF9CE2DFA938D0F1070256B0591A9E2C3997FA ] C:\Windows\System32\imm32.dll
08:37:00.0198 0x0d34  C:\Windows\System32\imm32.dll - ok
08:37:00.0214 0x0d34  [ 9D98D4F390F0B14A782F3B931E613A1A, DF11CA01EC78076072A6283DED5A9B8EDF6DD56C5D1D4A0C61773D9CF61F2E4E ] C:\Windows\System32\wininet.dll
08:37:00.0214 0x0d34  C:\Windows\System32\wininet.dll - ok
08:37:00.0230 0x0d34  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5, 12130837D7F89A2C7E9D25747A8E5B9001E0A38D545178B49B450C23AE62664A ] C:\Windows\System32\setupapi.dll
08:37:00.0230 0x0d34  C:\Windows\System32\setupapi.dll - ok
08:37:00.0230 0x0d34  [ F947D57534E01E3CA597BCF2AD8AE65B, 498A87443CE3344F82B19D4903F128337B5B3DA49D3C208F796394DA6B3A8946 ] C:\Windows\System32\rpcrt4.dll
08:37:00.0230 0x0d34  C:\Windows\System32\rpcrt4.dll - ok
08:37:00.0245 0x0d34  [ 050FD78BA4EFA62417F61F4C098B5B25, 889EF561939B67DAD774E90DFDFEA01BC54BFCCD922EE11329A0B44FC2C12604 ] C:\Windows\System32\iertutil.dll
08:37:00.0245 0x0d34  C:\Windows\System32\iertutil.dll - ok
08:37:00.0245 0x0d34  [ 63A580C88CFAF72A92550940054569EF, A66C89123D1833446ACC31D5CF536B0D0EC24D2F805C022A637596CF98429D9F ] C:\Windows\System32\advapi32.dll
08:37:00.0245 0x0d34  C:\Windows\System32\advapi32.dll - ok
08:37:00.0261 0x0d34  [ C391FC68282A000CDF953F8B6B55D2EF, 1CB0DAB84545D9FDEA5A7865A1E7132CEAC91DECF8B100285B63098D7B09E584 ] C:\Windows\System32\msvcrt.dll
08:37:00.0261 0x0d34  C:\Windows\System32\msvcrt.dll - ok
08:37:00.0261 0x0d34  [ C431EAF5CAA1C82CAC2534A2EAB348A3, ADDF850128DC675E67FABA9A3D0D27E684F01F733962CA22927BB94503549E44 ] C:\Windows\System32\msctf.dll
08:37:00.0261 0x0d34  C:\Windows\System32\msctf.dll - ok
08:37:00.0276 0x0d34  [ 28C0B5024F5C5A438E78B188CFC81B7F, AB81FB63F2908CE316B45609077ACBD85F4B2AAD1606B1E9030F06DB82EDDFAD ] C:\Windows\System32\normaliz.dll
08:37:00.0276 0x0d34  C:\Windows\System32\normaliz.dll - ok
08:37:00.0276 0x0d34  [ 6C60B5ACA7442EFB794082CDACFC001C, FC1D9124856A70FF232EF3057D66BEE803295847624CE23B4D0217F23AF52C75 ] C:\Windows\System32\ole32.dll
08:37:00.0276 0x0d34  C:\Windows\System32\ole32.dll - ok
08:37:00.0292 0x0d34  [ 860528C9E50AB84935843B23A80E665E, 1BBC4FC384A2C9B2E30DC8D84C435A6A8E1993F074CDBF0A6A3AC774A3E62AD4 ] C:\Windows\System32\gdi32.dll
08:37:00.0292 0x0d34  C:\Windows\System32\gdi32.dll - ok
08:37:00.0292 0x0d34  [ 044FE45FFD6AD40E3BBBE60B7F41BABE, A1688A5E6E0F7037C850699462C2655006A7D873C97F9AB406C59D81749B6F09 ] C:\Windows\System32\nsi.dll
08:37:00.0292 0x0d34  C:\Windows\System32\nsi.dll - ok
08:37:00.0308 0x0d34  [ FE70103391A64039A921DBFFF9C7AB1B, F7D219D75037BC98F6C69143B00AB6000A31F8B5E211E0AF514F4F4B681522A0 ] C:\Windows\System32\user32.dll
08:37:00.0308 0x0d34  C:\Windows\System32\user32.dll - ok
08:37:00.0323 0x0d34  [ 83404DCBCE4925B6A5A77C5170F46D86, D669614D0B4461DB244AD99FBE1BA92CEB9B4ED5EC8E987E23764E77D9AC7074 ] C:\Windows\System32\sechost.dll
08:37:00.0323 0x0d34  C:\Windows\System32\sechost.dll - ok
08:37:00.0323 0x0d34  [ 4E4FFB09D895AA000DD56D1404F69A7E, D999E04BB35780088480EAB322176570591A21E311D204BDCAB010A63B34D24C ] C:\Windows\System32\Wldap32.dll
08:37:00.0323 0x0d34  C:\Windows\System32\Wldap32.dll - ok
08:37:00.0339 0x0d34  [ 25983DE69B57142039AC8D95E71CD9C9, A677DA7EBCBCB6073D27E8A38809F51E971E83ED379BC599AAAD6EF4216348DA ] C:\Windows\System32\clbcatq.dll
08:37:00.0339 0x0d34  C:\Windows\System32\clbcatq.dll - ok
08:37:00.0339 0x0d34  [ B4F29F65AD3114051F01E9403346047F, 7EB58545211C51E95B3F45C47C1F7CCE05B707D168E7C20F46D36E19EE3D8DFC ] C:\Windows\System32\imagehlp.dll
08:37:00.0339 0x0d34  C:\Windows\System32\imagehlp.dll - ok
08:37:00.0354 0x0d34  [ D2A513EE880D71BDE7F0257F38B9D019, 7BDBFEA312061C0498E4C09EF5E4B3AAA23309E7448028F67EAA6F8F7188E871 ] C:\Windows\System32\kernel32.dll
08:37:00.0354 0x0d34  C:\Windows\System32\kernel32.dll - ok
08:37:00.0354 0x0d34  [ 796B47A4B82EF1C39F13435B88834C48, AFC3E89476BAAD8A71663F0DB8D15E00FF9D131F1306A2F69D728E3AD1184602 ] C:\Windows\System32\lpk.dll
08:37:00.0354 0x0d34  C:\Windows\System32\lpk.dll - ok
08:37:00.0370 0x0d34  [ F49E92B50CED5C9F1725D3C0329FD933, 6155FA4D8242F07FC578FF746890C2EE19FC3D6A20ED8AE4C6F021DB2DAC184F ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
08:37:00.0370 0x0d34  C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
08:37:00.0386 0x0d34  [ 64A4AB126E24FD3F58EBE64852773DB5, ED425BBC91EB8BEF54C363036A770C551C97EF324F1AE31049CA750D0E2D6776 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
08:37:00.0386 0x0d34  C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
08:37:00.0386 0x0d34  [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A, 445C2857398252756FD25BB94DAFCCEFF573DE55F1F8BF9094C191F409FE6437 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
08:37:00.0386 0x0d34  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
08:37:00.0401 0x0d34  [ 06FEC9E8117103BB1141A560E98077DA, C5E61B11DDBBBBBA3D9488970524F0975EA5FBDF16E2FA31F579F8BFA48353B1 ] C:\Windows\System32\devobj.dll
08:37:00.0401 0x0d34  C:\Windows\System32\devobj.dll - ok
08:37:00.0401 0x0d34  [ 08835F1772B58DE4C3AAF604760276A5, 2D9E296E167203246319C67C433CD5FF2A4857F3A2339593386529CF43AFD573 ] C:\Windows\System32\crypt32.dll
08:37:00.0401 0x0d34  C:\Windows\System32\crypt32.dll - ok
08:37:00.0417 0x0d34  [ 72723D3E4781BADC62C3180C137E7B23, 0BDA5292928578C5DA79C761E15B8A892B9D4A3DA26D3635E714797C653CF492 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
08:37:00.0417 0x0d34  C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
08:37:00.0417 0x0d34  [ 2477A28081BDAEE622CF045ACF8EE124, 00A09CAF9129E84FEEA98FA03CE9012C9F961B64FEE15C4F268822C0F82ACC3C ] C:\Windows\System32\cfgmgr32.dll
08:37:00.0417 0x0d34  C:\Windows\System32\cfgmgr32.dll - ok
08:37:00.0432 0x0d34  [ 0E6FBF19D9DFBB77316C23DF91F8A101, 680F88E1BC55EA3342AACE6F2E3511BF877AC8F03276D028FEE84EEFE8B5611A ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
08:37:00.0432 0x0d34  C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
08:37:00.0432 0x0d34  [ 7FC292D1527EDFEBA2576B6789DE6AB5, A954CD41F5EA3C169D3183CC6CCF36DD157ED384836FDACC763E82F866C0246F ] C:\Windows\System32\wintrust.dll
08:37:00.0432 0x0d34  C:\Windows\System32\wintrust.dll - ok
08:37:00.0448 0x0d34  [ 9094039A00485F71C4DE64BF51F64C46, 4ACFEF4C747ADF806A4FDEDDFD9CC48168DFB05075306C77D3F3927749DD7484 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
08:37:00.0448 0x0d34  C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
08:37:00.0448 0x0d34  [ 9028D1621C43DF8DFBD1C76860412A11, A1D48D9B33180BDE50D2FA9BB07E9520B7B7788C39B3AABB4A06AE4B1AACA755 ] C:\Windows\System32\comctl32.dll
08:37:00.0448 0x0d34  C:\Windows\System32\comctl32.dll - ok
08:37:00.0464 0x0d34  [ 7A17485DC7D8A7AC81321A42CD034519, 88D8705FA901793FC8C1CFD0175E49A6502BF0FC94A066BA573D2FD13AA5F04A ] C:\Windows\System32\userenv.dll
08:37:00.0464 0x0d34  C:\Windows\System32\userenv.dll - ok
08:37:00.0464 0x0d34  [ 851BB346CD59D9B3BC8854384C7DD5C3, 0CA1BCBDA6CB8CAC1186B3BE13C3937EDF46264FDFFCEBDF94C7EB10DE957DC6 ] C:\Windows\System32\KernelBase.dll
08:37:00.0464 0x0d34  C:\Windows\System32\KernelBase.dll - ok
08:37:00.0479 0x0d34  [ 884415BD4269C02EAF8E2613BF85500D, EFE771709EC942694FD206AC8D0A48ED7DCD35036F074268E4AECD68AC982CEA ] C:\Windows\System32\msasn1.dll
08:37:00.0479 0x0d34  C:\Windows\System32\msasn1.dll - ok
08:37:00.0495 0x0d34  [ 2C942733A5983DD4502219FF37C7EBC7, 34B20B6B0D7274E4B5B783F1D2345BC3DD9888964D5C2C65712F041A00CF5B45 ] C:\Windows\System32\profapi.dll
08:37:00.0495 0x0d34  C:\Windows\System32\profapi.dll - ok
08:37:00.0495 0x0d34  [ E0D3CD5841E5C7BE7B94BA946AF1E498, 4EAE1B226255623DA41A047633994D6902F6D4CA5757BF5D85E227378336227F ] C:\Windows\System32\drivers\drmk.sys
08:37:00.0495 0x0d34  C:\Windows\System32\drivers\drmk.sys - ok
08:37:00.0510 0x0d34  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] C:\Windows\System32\drivers\agilevpn.sys
08:37:00.0510 0x0d34  C:\Windows\System32\drivers\agilevpn.sys - ok
08:37:00.0510 0x0d34  [ 1E0B4CBBA91C6B041A14ECC2186F7E24, 63039A317F906454A0652704DA2D646658A148B9B55BFB5D2F4B27997F357DF9 ] C:\Windows\System32\drivers\portcls.sys
08:37:00.0510 0x0d34  C:\Windows\System32\drivers\portcls.sys - ok
08:37:00.0526 0x0d34  [ 8B56BDCE6A303DDE63D63440D1CF9AD1, 66A4356C29D00A1B8A95975C073AE4E6D2A90CBF3B143FE9B83B96BEC0805D46 ] C:\Windows\System32\drivers\ScreamingBAudio64.sys
08:37:00.0526 0x0d34  C:\Windows\System32\drivers\ScreamingBAudio64.sys - ok
08:37:00.0526 0x0d34  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] C:\Windows\System32\drivers\rasl2tp.sys
08:37:00.0526 0x0d34  C:\Windows\System32\drivers\rasl2tp.sys - ok
08:37:00.0542 0x0d34  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] C:\Windows\System32\drivers\ndistapi.sys
08:37:00.0542 0x0d34  C:\Windows\System32\drivers\ndistapi.sys - ok
08:37:00.0557 0x0d34  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] C:\Windows\System32\drivers\ndiswan.sys
08:37:00.0557 0x0d34  C:\Windows\System32\drivers\ndiswan.sys - ok
08:37:00.0557 0x0d34  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] C:\Windows\System32\drivers\raspppoe.sys
08:37:00.0557 0x0d34  C:\Windows\System32\drivers\raspppoe.sys - ok
08:37:00.0573 0x0d34  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] C:\Windows\System32\drivers\raspptp.sys
08:37:00.0573 0x0d34  C:\Windows\System32\drivers\raspptp.sys - ok
08:37:00.0573 0x0d34  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] C:\Windows\System32\drivers\rassstp.sys
08:37:00.0573 0x0d34  C:\Windows\System32\drivers\rassstp.sys - ok
08:37:00.0588 0x0d34  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] C:\Windows\System32\drivers\swenum.sys
08:37:00.0588 0x0d34  C:\Windows\System32\drivers\swenum.sys - ok
08:37:00.0588 0x0d34  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] C:\Windows\System32\drivers\umbus.sys
08:37:00.0588 0x0d34  C:\Windows\System32\drivers\umbus.sys - ok
08:37:00.0604 0x0d34  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] C:\Windows\System32\drivers\usbhub.sys
08:37:00.0604 0x0d34  C:\Windows\System32\drivers\usbhub.sys - ok
08:37:00.0604 0x0d34  [ 9C278785347BCC991F8EA2999D90F58D, EA680C3642A6ABF627415AEE019956FAC702DC6A8F4B4D0FC8A4FB21EADD3896 ] C:\Windows\SysWOW64\normaliz.dll
08:37:00.0604 0x0d34  C:\Windows\SysWOW64\normaliz.dll - ok
08:37:00.0620 0x0d34  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] C:\Windows\System32\drivers\ndproxy.sys
08:37:00.0620 0x0d34  C:\Windows\System32\drivers\ndproxy.sys - ok
08:37:00.0620 0x0d34  [ A44DFDB81DC62B11760881175E5B2266, A34739392B1089A850FE8B4AFCD43591212129D2F0FFB38ABED56EDA384E7864 ] C:\Windows\System32\drivers\CHDRT64.sys
08:37:00.0620 0x0d34  C:\Windows\System32\drivers\CHDRT64.sys - ok
08:37:00.0635 0x0d34  [ 0C4540311E11664B245A263E1154CEF8, 63376322BFFAFF2F166AF3FDD3F1A346C21FAE21F406F659F8630779D1D6525D ] C:\Windows\System32\drivers\VSTAZL6.SYS
08:37:00.0635 0x0d34  C:\Windows\System32\drivers\VSTAZL6.SYS - ok
08:37:00.0635 0x0d34  [ 02071D207A9858FBE3A48CBFD59C4A04, FEA4DEBAEC3465E0C7C1E8B721805922F6BBCB96A60A193B11688F4252F4B89E ] C:\Windows\System32\drivers\VSTDPV6.SYS
08:37:00.0635 0x0d34  C:\Windows\System32\drivers\VSTDPV6.SYS - ok
08:37:00.0651 0x0d34  [ 18E40C245DBFAF36FD0134A7EF2DF396, 0138A68958112101A5D3BD94114F320CE80B0C9A93E009AC78DE7415FCCC7DE7 ] C:\Windows\System32\drivers\VSTCNXT6.SYS
08:37:00.0651 0x0d34  C:\Windows\System32\drivers\VSTCNXT6.SYS - ok
08:37:00.0666 0x0d34  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] C:\Windows\System32\drivers\HdAudio.sys
08:37:00.0666 0x0d34  C:\Windows\System32\drivers\HdAudio.sys - ok
08:37:00.0666 0x0d34  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] C:\Windows\System32\drivers\modem.sys
08:37:00.0666 0x0d34  C:\Windows\System32\drivers\modem.sys - ok
08:37:00.0682 0x0d34  [ BF24D6F2ED97FE830BFD52B246F98E67, 6BBF4C4221A245462EF653798F6B416EEB12594AD1CB4E8BC8908A8CB2F53384 ] C:\Windows\System32\drivers\dxapi.sys
08:37:00.0682 0x0d34  C:\Windows\System32\drivers\dxapi.sys - ok
08:37:00.0682 0x0d34  [ 5602D4C331FD7938ADE06D9242138922, 852A18136E899A165C7FFC14542FCC9E3CB9420E6634E80B8378865D655106B3 ] C:\Windows\System32\win32k.sys
08:37:00.0682 0x0d34  C:\Windows\System32\win32k.sys - ok
08:37:00.0698 0x0d34  [ 216BABD555BC550952320EEA89C25DDF, 1BBB92415280032CD18F361382A69D0D91266AAD56FC88A99C804B0053743D72 ] C:\Windows\System32\csrsrv.dll
08:37:00.0698 0x0d34  C:\Windows\System32\csrsrv.dll - ok
08:37:00.0698 0x0d34  [ 60C2862B4BF0FD9F582EF344C2B1EC72, CB1C6018FC5C15483AC5BB96E5C2E2E115BB0C0E1314837D77201BAB37E8C03A ] C:\Windows\System32\csrss.exe
08:37:00.0698 0x0d34  C:\Windows\System32\csrss.exe - ok
08:37:00.0713 0x0d34  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\System32\basesrv.dll
08:37:00.0713 0x0d34  C:\Windows\System32\basesrv.dll - ok
08:37:00.0713 0x0d34  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\System32\winsrv.dll
08:37:00.0713 0x0d34  C:\Windows\System32\winsrv.dll - ok
08:37:00.0729 0x0d34  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] C:\Windows\System32\drivers\monitor.sys
08:37:00.0729 0x0d34  C:\Windows\System32\drivers\monitor.sys - ok
08:37:00.0729 0x0d34  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] C:\Windows\System32\drivers\usbccgp.sys
08:37:00.0729 0x0d34  C:\Windows\System32\drivers\usbccgp.sys - ok
08:37:00.0744 0x0d34  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] C:\Windows\System32\drivers\usbvideo.sys
08:37:00.0744 0x0d34  C:\Windows\System32\drivers\usbvideo.sys - ok
08:37:00.0760 0x0d34  [ 663962900E7FEA522126BA287715BB4A, 95CE12CA11E705C293BE4E18845581037D819A7EC812349BCAF4EABC8E7087B1 ] C:\Windows\System32\drivers\PGEffect.sys
08:37:00.0760 0x0d34  C:\Windows\System32\drivers\PGEffect.sys - ok
08:37:00.0760 0x0d34  [ F29FE765E1448EF371CFE05BFAC74ADB, F251581222D78543272FD4B14A6A59F4B0E0CC44A5FCBCF56DE4CA5783F78A75 ] C:\Windows\System32\tsddd.dll
08:37:00.0760 0x0d34  C:\Windows\System32\tsddd.dll - ok
08:37:00.0776 0x0d34  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\System32\sxssrv.dll
08:37:00.0776 0x0d34  C:\Windows\System32\sxssrv.dll - ok
08:37:00.0776 0x0d34  [ 94355C28C1970635A31B3FE52EB7CEBA, C4E98F07170CEC69CACDD5CEDB8927E48A2A299CB1B8CDA87526E768AF6174F0 ] C:\Windows\System32\wininit.exe
08:37:00.0776 0x0d34  C:\Windows\System32\wininit.exe - ok
08:37:00.0791 0x0d34  [ 943F527DF79E6B400104341AA7023C75, 53C7B9426181D3D172E6B1A07E6DF8A0CB8FCA27D3A03CE5F544D3209B5F4651 ] C:\Windows\System32\cdd.dll
08:37:00.0791 0x0d34  C:\Windows\System32\cdd.dll - ok
08:37:00.0791 0x0d34  [ 78523A26F5604C0568FE9D1CE86E36F4, 534A7228BF69719106F581616A32EAEF0B770DDB36DCE94F84E7D52FDB1382B5 ] C:\Windows\System32\KBDUS.DLL
08:37:00.0791 0x0d34  C:\Windows\System32\KBDUS.DLL - ok
08:37:00.0807 0x0d34  [ C2A8CB1275ECB85D246A9ECC02A728E3, 3603FADCA0060BD201148F9D59E4E2627F024609A6463AB525B5D1AD17BDCD10 ] C:\Windows\System32\RpcRtRemote.dll
08:37:00.0807 0x0d34  C:\Windows\System32\RpcRtRemote.dll - ok
08:37:00.0807 0x0d34  [ 8CEBD9D0A0A879CDE9F36F4383B7CAEA, 7AA73B8E7D4D700C164D0410DCF84EA1CCCB0F7DD513E47A2EF0DAE5F16CAE45 ] C:\Windows\System32\winlogon.exe
08:37:00.0807 0x0d34  C:\Windows\System32\winlogon.exe - ok
08:37:00.0823 0x0d34  [ C23B6D9D16FD86F446BE607CA18389D9, 331FA37B5A059FE85C5D1368A42293A7BAE2581F3F1F15B48364644136066C14 ] C:\Windows\System32\winsta.dll
08:37:00.0823 0x0d34  C:\Windows\System32\winsta.dll - ok
08:37:00.0823 0x0d34  [ B26B1801356760841C3BC69F9F91537F, 83B9DF333E36C09E81D44E12AE5BE14650126FDA0CF4A0EA853BF40C5780EF81 ] C:\Windows\System32\WlS0WndH.dll
08:37:00.0823 0x0d34  C:\Windows\System32\WlS0WndH.dll - ok
08:37:00.0838 0x0d34  [ 9CEAD32E79A62150FE9F8557E58E008B, AFE4C1725EE94D7DE0749AE1495A4E5CC33C369F29B2A589DA66FFE27FF9777E ] C:\Windows\System32\sxs.dll
08:37:00.0838 0x0d34  C:\Windows\System32\sxs.dll - ok
08:37:00.0854 0x0d34  [ 784FA3DF338E2E8F5F0389D6FAC428AF, 9C8AA0CFDEB9E38AAF8EB08626070E0F0364F4F8A793CFE3532EC6C007980C34 ] C:\Windows\System32\cryptbase.dll
08:37:00.0854 0x0d34  C:\Windows\System32\cryptbase.dll - ok
08:37:00.0854 0x0d34  [ 90499F3163A9F815CF196A205EA3CD5D, 29B4ED3795CEC1177EB367132914CE21C194CDEC5DB9DC923FD928C85E94D821 ] C:\Windows\System32\apphelp.dll
08:37:00.0854 0x0d34  C:\Windows\System32\apphelp.dll - ok
08:37:00.0869 0x0d34  [ EE4B105F1DBE1E864AFC72E7F0315432, 0E69A25BA7ED920B3103F219D3BF117D8CEFBD4DC74C762945AE291D24772FAD ] C:\Windows\System32\lsasrv.dll
08:37:00.0869 0x0d34  C:\Windows\System32\lsasrv.dll - ok
08:37:00.0869 0x0d34  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] C:\Windows\System32\lsass.exe
08:37:00.0869 0x0d34  C:\Windows\System32\lsass.exe - ok
08:37:00.0885 0x0d34  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\System32\services.exe
08:37:00.0885 0x0d34  C:\Windows\System32\services.exe - ok
08:37:00.0885 0x0d34  [ 8098627D0AA1706D69C5AF3F74332ABB, 9582F6162A8405DC568FFBEA08A9090FE92FE2C9DB640077BD7F23AC4FABF700 ] C:\Windows\System32\sspisrv.dll
08:37:00.0885 0x0d34  C:\Windows\System32\sspisrv.dll - ok
08:37:00.0901 0x0d34  [ 9662EE182644511439F1C53745DC1C88, D205B2C163E78AB42A5D67D7664EF6B75EA0374FF0924467D624F9DB0611F0AD ] C:\Windows\System32\lsm.exe
08:37:00.0901 0x0d34  C:\Windows\System32\lsm.exe - ok
08:37:00.0901 0x0d34  [ BBCDF350817BA86416C0F06B6981BE8D, D064438F97852B9BD6015C8B19377C61C671E0969E09506B8359FE7B1F373A61 ] C:\Windows\System32\scesrv.dll
08:37:00.0901 0x0d34  C:\Windows\System32\scesrv.dll - ok
08:37:00.0916 0x0d34  [ E914A50A151DFFE63D3935226DB5E2C1, 7DCCE4060344E1C771679F1C20378A0BEB3C1F06DB684072F07B98921A62A299 ] C:\Windows\System32\scext.dll
08:37:00.0916 0x0d34  C:\Windows\System32\scext.dll - ok
08:37:00.0916 0x0d34  [ 39312B37C5FE5138F99680A49ACD3AEA, B9566B4117FBBECF77A0D3F49E9DF302088B9D483F817720B22E4F9C5754264A ] C:\Windows\System32\secur32.dll
08:37:00.0916 0x0d34  C:\Windows\System32\secur32.dll - ok
08:37:00.0932 0x0d34  [ C072064F95579C0D6D86AF5B3DC53192, CF4A088DF97F4D4963BEAB9CBDBF69FEA2D4773159054A0AF8B8DFFDF83E18DA ] C:\Windows\System32\sspicli.dll
08:37:00.0932 0x0d34  C:\Windows\System32\sspicli.dll - ok
08:37:00.0932 0x0d34  [ 68083118797CAF30FB2EA3E71494D67E, 5F1BCDFCB00A20CD60CBC70A2FD97405EF0F7173DD0E404BBA7B06D39DB37364 ] C:\Windows\System32\sysntfy.dll
08:37:00.0932 0x0d34  C:\Windows\System32\sysntfy.dll - ok
08:37:00.0947 0x0d34  [ DEE7267C5D232A3B816866872CE199E6, A1994FD37667C52E7CBF873514C190DA61A3D1349786D187BFAE0006F61799AE ] C:\Windows\System32\wmsgapi.dll
08:37:00.0947 0x0d34  C:\Windows\System32\wmsgapi.dll - ok
08:37:00.0963 0x0d34  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] C:\Windows\System32\aelupsvc.dll
08:37:00.0963 0x0d34  C:\Windows\System32\aelupsvc.dll - ok
08:37:00.0963 0x0d34  [ A744BA6E04C8AA4592818178DBF89521, 9E7C85D842DF16F9B8FED7B06AF309B5ECCBFD465F5552347D4C3F1FEFDC6F7A ] C:\Windows\System32\samsrv.dll
08:37:00.0963 0x0d34  C:\Windows\System32\samsrv.dll - ok
08:37:00.0979 0x0d34  [ 3A9C9BAF610B0DD4967086040B3B62A9, E8E9A0F42B1EE7806EDCEED08AA024D037215D06CA317E3678BD5364AD513D23 ] C:\Windows\System32\srvcli.dll
08:37:00.0979 0x0d34  C:\Windows\System32\srvcli.dll - ok
08:37:00.0979 0x0d34  [ 3A061472B38233BAFF9CFEFF2E49C46B, DF29B14C8D22A8A16AA336A09A6152E2C7FCA6CAF4E76F0C5DCB55BEF9D00515 ] C:\Windows\System32\cryptdll.dll
08:37:00.0979 0x0d34  C:\Windows\System32\cryptdll.dll - ok
08:37:00.0994 0x0d34  [ 3C073B0C596A0AF84933E7406766B040, 4698BBA678F553E15AD4B07AD7FB236281F872DEFEE97BFD637114476C8F97B3 ] C:\Windows\System32\wevtapi.dll
08:37:00.0994 0x0d34  C:\Windows\System32\wevtapi.dll - ok
08:37:00.0994 0x0d34  [ 7FBEBD2229EA5FD48D41B199EC2D541C, A465975D445A8D50CAF3EF29BD33354B320D11173C127BE30D5EBBFF7008CDCE ] C:\Windows\System32\authz.dll
08:37:00.0994 0x0d34  C:\Windows\System32\authz.dll - ok
08:37:01.0010 0x0d34  [ 86FE1B1F8FD42CD0DB641AB1CDB13093, 8C4BB4415105CE82FFFE658879EAE9D259A24C0F6DFC7D25507352DC99241BE2 ] C:\Windows\System32\cngaudit.dll
08:37:01.0010 0x0d34  C:\Windows\System32\cngaudit.dll - ok
08:37:01.0010 0x0d34  [ E23BA7A7BD97FC6B8AB5EA32A46D05CD, 593564F84B36451A5CDCA9B04DCFC7886DB124F7CA95464B67B1E65E041A1EC6 ] C:\Windows\System32\ncrypt.dll
08:37:01.0010 0x0d34  C:\Windows\System32\ncrypt.dll - ok
08:37:01.0025 0x0d34  [ B9A95365E52F421A20E1501935FADDA5, DDB4CB575139233EFAF2C59B7E9B04AF36BBCCC63190181F3B2A7E6BFC86E77E ] C:\Windows\System32\bcrypt.dll
08:37:01.0025 0x0d34  C:\Windows\System32\bcrypt.dll - ok
08:37:01.0025 0x0d34  [ 02B64609F865A39365FF88580DF11738, 2F676B93898E1B6131AF6227BB7AB731EB9C29477F9BD4C2C60F0FC1E35CD968 ] C:\Windows\System32\msprivs.dll
08:37:01.0025 0x0d34  C:\Windows\System32\msprivs.dll - ok
08:37:01.0041 0x0d34  [ C6505DE3561537BA1004D638C2F93F2F, 3E4FDF374B1A9E43A8F61FD2D79E0515390ECABFDAF72C4BD44A7B6429039AF6 ] C:\Windows\System32\netjoin.dll
08:37:01.0041 0x0d34  C:\Windows\System32\netjoin.dll - ok
08:37:01.0057 0x0d34  [ 50532FCD7ECF02DD169CE5C485F02534, 8EE5D9D0EA53DC72BCC300692E521ACADD56AB09BFA3E78149D8B5A90648512C ] C:\Windows\System32\negoexts.dll
08:37:01.0057 0x0d34  C:\Windows\System32\negoexts.dll - ok
08:37:01.0057 0x0d34  [ 33EF550DCCC58C93F5B65FD75BAD9832, 904DA99D4CBE5904E8D2580077FBB8909A44147F95492929D9A7A581C06645A8 ] C:\Windows\System32\kerberos.dll
08:37:01.0057 0x0d34  C:\Windows\System32\kerberos.dll - ok
08:37:01.0072 0x0d34  [ D9A61370B40ABAA9F509113504CD8425, 9C310313A3C37B17F9C2A0312A2150C3D787A153A5A1E3BF67DC743AD54576ED ] C:\Windows\System32\cryptsp.dll
08:37:01.0072 0x0d34  C:\Windows\System32\cryptsp.dll - ok
08:37:01.0088 0x0d34  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] C:\Windows\System32\alg.exe
08:37:01.0088 0x0d34  C:\Windows\System32\alg.exe - ok
08:37:01.0103 0x0d34  [ F71CA01C24FC3798A717B5A6F682F9AD, 8CF1C209E7BBBAD02D6D087293C0B681CDA3170AF119CA2916C2708D8801E749 ] C:\Windows\System32\appidsvc.dll
08:37:01.0103 0x0d34  C:\Windows\System32\appidsvc.dll - ok
08:37:01.0119 0x0d34  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] C:\Windows\System32\appinfo.dll
08:37:01.0119 0x0d34  C:\Windows\System32\appinfo.dll - ok
08:37:01.0119 0x0d34  [ 3D6AF45673C4B31CDECD7F80AF09D443, 7D711D138C107816155AFA5E5FDC6892734074BEFF604B5904177B5D9ACE4670 ] C:\Windows\System32\rascfg.dll
08:37:01.0119 0x0d34  C:\Windows\System32\rascfg.dll - ok
08:37:01.0135 0x0d34  [ 2C1B6A64294F2182DC4999F923873974, 6D611636D849631BB1F852DC03A98BBFEC4D797A2707CA63427E187F0725A796 ] C:\Windows\System32\audiosrv.dll
08:37:01.0135 0x0d34  C:\Windows\System32\audiosrv.dll - ok
08:37:01.0135 0x0d34  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] C:\Windows\System32\AxInstSv.dll
08:37:01.0135 0x0d34  C:\Windows\System32\AxInstSv.dll - ok
08:37:01.0150 0x0d34  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] C:\Windows\System32\bdesvc.dll
08:37:01.0150 0x0d34  C:\Windows\System32\bdesvc.dll - ok
08:37:01.0150 0x0d34  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] C:\Windows\System32\BFE.DLL
08:37:01.0150 0x0d34  C:\Windows\System32\BFE.DLL - ok
08:37:01.0166 0x0d34  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] C:\Windows\System32\qmgr.dll
08:37:01.0166 0x0d34  C:\Windows\System32\qmgr.dll - ok
08:37:01.0166 0x0d34  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] C:\Windows\System32\browser.dll
08:37:01.0166 0x0d34  C:\Windows\System32\browser.dll - ok
08:37:01.0181 0x0d34  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] C:\Windows\System32\bthserv.dll
08:37:01.0181 0x0d34  C:\Windows\System32\bthserv.dll - ok
08:37:01.0197 0x0d34  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] C:\Windows\System32\certprop.dll
08:37:01.0197 0x0d34  C:\Windows\System32\certprop.dll - ok
08:37:01.0197 0x0d34  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] C:\Windows\System32\clfs.sys
08:37:01.0197 0x0d34  C:\Windows\System32\clfs.sys - ok
08:37:01.0213 0x0d34  [ 1A47D52E303B7543E4E6026595B95422, C577CD3837546A7CED5D2E8E97FA2EDACA133B4A8595770EF96CAE519BFE280F ] C:\Windows\System32\comres.dll
08:37:01.0213 0x0d34  C:\Windows\System32\comres.dll - ok
08:37:01.0213 0x0d34  [ 19D511CC455C19DE1ADF60E6C39C85B6, 2A05DD5EF3D0BEC2C9F4EA186E0E2D0F7BE0BF6A473D51194B09D33773AC7FAA ] C:\Windows\System32\cryptsvc.dll
08:37:01.0213 0x0d34  C:\Windows\System32\cryptsvc.dll - ok
08:37:01.0228 0x0d34  [ 732E668096B1A37B7BFD4B9021E69A8E, D6302B8DAE374569AD49FE2FC40AA5F485E5D9DD50167F9395D282B5D3EF8F0B ] C:\Windows\System32\oleres.dll
08:37:01.0228 0x0d34  C:\Windows\System32\oleres.dll - ok
08:37:01.0228 0x0d34  [ 9A9F9F1A77D6A80EE28B57664F00013E, 0D441638E086EF1342FCDC43E826BF9E9CC6B2E8AE100D89BFC70163F987DE91 ] C:\Windows\System32\mswsock.dll
08:37:01.0228 0x0d34  C:\Windows\System32\mswsock.dll - ok
08:37:01.0244 0x0d34  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] C:\Windows\System32\defragsvc.dll
08:37:01.0244 0x0d34  C:\Windows\System32\defragsvc.dll - ok
08:37:01.0244 0x0d34  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] C:\Windows\System32\dhcpcore.dll
08:37:01.0244 0x0d34  C:\Windows\System32\dhcpcore.dll - ok
08:37:01.0259 0x0d34  [ 492D07D79E7024CA310867B526D9636D, F2FE647AB85C6C3C1AA3DF4BCE6E4D42B9676C9D837E11388C235AE8DB20044F ] C:\Windows\System32\dnsapi.dll
08:37:01.0259 0x0d34  C:\Windows\System32\dnsapi.dll - ok
08:37:01.0275 0x0d34  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] C:\Windows\System32\dot3svc.dll
08:37:01.0275 0x0d34  C:\Windows\System32\dot3svc.dll - ok
08:37:01.0275 0x0d34  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] C:\Windows\System32\dps.dll
08:37:01.0275 0x0d34  C:\Windows\System32\dps.dll - ok
08:37:01.0291 0x0d34  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] C:\Windows\System32\eapsvc.dll
08:37:01.0291 0x0d34  C:\Windows\System32\eapsvc.dll - ok
08:37:01.0291 0x0d34  [ 0C043B0ABBB5E14E68906AB80365395B, A57A6FAF713EA4F46566A941DE7C2273ED4EB50F9E30B70276E810873AF6900B ] C:\Windows\System32\efssvc.dll
08:37:01.0291 0x0d34  C:\Windows\System32\efssvc.dll - ok
08:37:01.0306 0x0d34  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] C:\Windows\ehome\ehrecvr.exe
08:37:01.0306 0x0d34  C:\Windows\ehome\ehrecvr.exe - ok
08:37:01.0306 0x0d34  [ EC7CBFF96B05ECF3D366355B3C64ADCF, F69ED45EBEDCA9CF000AC03281F0EC2C351F98513FBA90E63394E4E561D6C7A2 ] C:\Windows\System32\wship6.dll
08:37:01.0306 0x0d34  C:\Windows\System32\wship6.dll - ok
08:37:01.0322 0x0d34  [ E1BB958681BE311E7CFF06CFEC5F1F2B, C2FDFC6C7350788A07DCB99A6A54FB9A96A6A578013DF46D0E5094A3CBF6E862 ] C:\Windows\System32\atmfd.dll
08:37:01.0322 0x0d34  C:\Windows\System32\atmfd.dll - ok
08:37:01.0322 0x0d34  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] C:\Windows\ehome\ehsched.exe
08:37:01.0322 0x0d34  C:\Windows\ehome\ehsched.exe - ok
08:37:01.0337 0x0d34  [ 6011714C8C5C55CBFFAD24D61E879FBD, 75D615082A1C71C6ED3ABB49EDAF660EE538D112CF79B9C8AF0A583D1CE1BBB0 ] C:\Windows\System32\wevtsvc.dll
08:37:01.0337 0x0d34  C:\Windows\System32\wevtsvc.dll - ok
08:37:01.0337 0x0d34  [ 7D1017ED11B7C3B162628069742B5E58, 0553ABF5C84469370748CA2496BA82655039E5048980C675742A88B761DED967 ] C:\Windows\System32\msv1_0.dll
08:37:01.0337 0x0d34  C:\Windows\System32\msv1_0.dll - ok
08:37:01.0353 0x0d34  [ AA339DD8BB128EF66660DFBBB59043D3, 76D9F849AFDDA38E04549EB67B4163478776F1B6EF46434168278F84FEB8FC5C ] C:\Windows\System32\netlogon.dll
08:37:01.0353 0x0d34  C:\Windows\System32\netlogon.dll - ok
08:37:01.0353 0x0d34  [ 8FFE297B8449386E7B6851458B6E474E, E149B37E11091D69D926242517E5655596594A6F01FEF06EB65D6BA5B354E326 ] C:\Windows\System32\logoncli.dll
08:37:01.0353 0x0d34  C:\Windows\System32\logoncli.dll - ok
08:37:01.0369 0x0d34  [ E8E98B3B7A6E1250F4AA7AF8FA17D5BB, 36EA8779A04E40B93961C8F4B1B6FF7E26254D38B30EA9B1031066B3FC02A776 ] C:\Windows\System32\schannel.dll
08:37:01.0369 0x0d34  C:\Windows\System32\schannel.dll - ok
08:37:01.0384 0x0d34  [ BFC98590EAB40C785D6134B1FA818A62, 3A0136DE59815C36ADD2E960D610371733B119635D2EBA15588DB62A05B928C8 ] C:\Windows\System32\wdigest.dll
08:37:01.0384 0x0d34  C:\Windows\System32\wdigest.dll - ok
08:37:01.0384 0x0d34  [ 5D8874A8C11DDDDE29E12DE0E2013493, 3E9A57137BF622AF83E3E4D58971E2C0200559CCA7545D16CF263AA03EE9C7D2 ] C:\Windows\System32\rsaenh.dll
08:37:01.0384 0x0d34  C:\Windows\System32\rsaenh.dll - ok
08:37:01.0400 0x0d34  [ 85E03B6E05939845BC924C91AEDE0E24, 54CF5BD26870F89AEA72734CAC5A5A7DFEB67A01DBEF4CAC12DFD26DDCC72FBC ] C:\Windows\System32\TSpkg.dll
08:37:01.0400 0x0d34  C:\Windows\System32\TSpkg.dll - ok
08:37:01.0400 0x0d34  [ E08088A97F95345E181C3DFCE2C615EF, DEF3B087DF5E10E4F8418029DB6E82546E62FEFA39694B7BD6A48CE8AAFD1B96 ] C:\Windows\System32\pku2u.dll
08:37:01.0400 0x0d34  C:\Windows\System32\pku2u.dll - ok
08:37:01.0415 0x0d34  [ 94AA2DFFF94DF789AAA0081333A6CADA, 07A3F01F06D27D1582642A165533649B83895304928AFE3DAC09924FBE22F7B3 ] C:\Windows\System32\LIVESSP.DLL
08:37:01.0415 0x0d34  C:\Windows\System32\LIVESSP.DLL - ok
08:37:01.0415 0x0d34  [ D6C7780A364C6BBACFA796BAB9F1B374, 3B5ED1A030BFD0BB73D4FFCD67A6A0B8501EF70293F223EFAA12F430ADF270F9 ] C:\Windows\System32\bcryptprimitives.dll
08:37:01.0415 0x0d34  C:\Windows\System32\bcryptprimitives.dll - ok
08:37:01.0431 0x0d34  [ 560CF90C026C0FE51CC6820302FF94FE, 847F8176DAC4683765530B31FCD5A876591F8ED8B7852B84D08BBBA9B6C0A4FC ] C:\Windows\System32\credssp.dll
08:37:01.0431 0x0d34  C:\Windows\System32\credssp.dll - ok
08:37:01.0431 0x0d34  [ 90BDEFC5DF334E5100EAA781D798DE1A, F48B650D811B6D57D2252E326C0C9CC74534BE9D510E7D3403F91D1C5C36281E ] C:\Windows\System32\efslsaext.dll
08:37:01.0431 0x0d34  C:\Windows\System32\efslsaext.dll - ok
08:37:01.0447 0x0d34  [ ED78427259134C63ED69804D2132B86C, F6F51B8B35881ABCA5580ED111AAC80E466E6474ABAE31EC8BE46C23EDCA77B2 ] C:\Windows\System32\scecli.dll
08:37:01.0447 0x0d34  C:\Windows\System32\scecli.dll - ok
08:37:01.0447 0x0d34  [ C8E8B8239FCF17BEA10E751BE5854631, CB869195E78AB613CEF50AE3B247F0E4E42F233A7AAF5B2BFC5ADEA2C45C5F8D ] C:\Windows\System32\FXSRESM.dll
08:37:01.0447 0x0d34  C:\Windows\System32\FXSRESM.dll - ok
08:37:01.0462 0x0d34  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] C:\Windows\System32\fdPHost.dll
08:37:01.0462 0x0d34  C:\Windows\System32\fdPHost.dll - ok
08:37:01.0462 0x0d34  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] C:\Windows\System32\FDResPub.dll
08:37:01.0462 0x0d34  C:\Windows\System32\FDResPub.dll - ok
08:37:01.0478 0x0d34  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] C:\Windows\System32\drivers\fileinfo.sys
08:37:01.0478 0x0d34  C:\Windows\System32\drivers\fileinfo.sys - ok
08:37:01.0493 0x0d34  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] C:\Windows\System32\drivers\filetrace.sys
08:37:01.0493 0x0d34  C:\Windows\System32\drivers\filetrace.sys - ok
08:37:01.0493 0x0d34  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] C:\Windows\System32\drivers\fltMgr.sys
08:37:01.0493 0x0d34  C:\Windows\System32\drivers\fltMgr.sys - ok
08:37:01.0509 0x0d34  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] C:\Windows\System32\FntCache.dll
08:37:01.0509 0x0d34  C:\Windows\System32\FntCache.dll - ok
08:37:01.0509 0x0d34  [ 8A1846C0817513AD18BA48B4427771FC, 58874A2B24B685DCB14CE0430846210A76C8D8CBFBF0171B145BC15E502C12A0 ] C:\Windows\System32\PresentationHost.exe
08:37:01.0509 0x0d34  C:\Windows\System32\PresentationHost.exe - ok
08:37:01.0525 0x0d34  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] C:\Windows\System32\drivers\fsdepends.sys
08:37:01.0525 0x0d34  C:\Windows\System32\drivers\fsdepends.sys - ok
08:37:01.0525 0x0d34  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] C:\Windows\System32\drivers\fvevol.sys
08:37:01.0525 0x0d34  C:\Windows\System32\drivers\fvevol.sys - ok
08:37:01.0540 0x0d34  [ 9C9307C95671AC962F3D6EB3A4A89BAE, D1433791C9B8BCEEAD8937EC18D33E89E4E2012B5975228A8500FD141BC30078 ] C:\Windows\System32\gpapi.dll
08:37:01.0540 0x0d34  C:\Windows\System32\gpapi.dll - ok
08:37:01.0540 0x0d34  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] C:\Windows\System32\hidserv.dll
08:37:01.0540 0x0d34  C:\Windows\System32\hidserv.dll - ok
08:37:01.0556 0x0d34  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] C:\Windows\System32\KMSVC.DLL
08:37:01.0556 0x0d34  C:\Windows\System32\KMSVC.DLL - ok
08:37:01.0571 0x0d34  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] C:\Windows\System32\ListSvc.dll
08:37:01.0571 0x0d34  C:\Windows\System32\ListSvc.dll - ok
08:37:01.0571 0x0d34  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] C:\Windows\System32\provsvc.dll
08:37:01.0571 0x0d34  C:\Windows\System32\provsvc.dll - ok
08:37:01.0587 0x0d34  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] C:\Windows\System32\drivers\http.sys
08:37:01.0587 0x0d34  C:\Windows\System32\drivers\http.sys - ok
08:37:01.0587 0x0d34  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] C:\Windows\System32\drivers\hwpolicy.sys
08:37:01.0587 0x0d34  C:\Windows\System32\drivers\hwpolicy.sys - ok
08:37:01.0603 0x0d34  [ AA41A1449997CD37329C34144233F316, 9E83090CE891E2755A7343788BFDE0AD621CD02AA7BD1CBC2B12BBA2DAFBE905 ] C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll
08:37:01.0603 0x0d34  C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll - ok
08:37:01.0603 0x0d34  [ B07E9AFF50DC007E7D5AC54736AA5A25, 42DE89046C95544042AC87AC951DA9299AF3527F1523DB6516AF335B5805DCAE ] C:\Windows\System32\ieetwcollectorres.dll
08:37:01.0603 0x0d34  C:\Windows\System32\ieetwcollectorres.dll - ok
08:37:01.0618 0x0d34  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] C:\Windows\System32\IKEEXT.DLL
08:37:01.0618 0x0d34  C:\Windows\System32\IKEEXT.DLL - ok
08:37:01.0618 0x0d34  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] C:\Windows\System32\IPBusEnum.dll
08:37:01.0618 0x0d34  C:\Windows\System32\IPBusEnum.dll - ok
08:37:01.0634 0x0d34  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] C:\Windows\System32\iphlpsvc.dll
08:37:01.0634 0x0d34  C:\Windows\System32\iphlpsvc.dll - ok
08:37:01.0634 0x0d34  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] C:\Windows\System32\drivers\irenum.sys
08:37:01.0634 0x0d34  C:\Windows\System32\drivers\irenum.sys - ok
08:37:01.0649 0x0d34  [ F9EC845C5EECF20E9A67F9F805F2EF1F, C3DBA8CF93DBF50954B1BF6D7EF3F6F5DD1A56DC62B7EB2749C54D9B65D9BB43 ] C:\Windows\System32\keyiso.dll
08:37:01.0649 0x0d34  C:\Windows\System32\keyiso.dll - ok
08:37:01.0649 0x0d34  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] C:\Windows\System32\srvsvc.dll
08:37:01.0649 0x0d34  C:\Windows\System32\srvsvc.dll - ok
08:37:01.0665 0x0d34  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] C:\Windows\System32\wkssvc.dll
08:37:01.0665 0x0d34  C:\Windows\System32\wkssvc.dll - ok
08:37:01.0681 0x0d34  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] C:\Windows\System32\drivers\luafv.sys
08:37:01.0681 0x0d34  C:\Windows\System32\drivers\luafv.sys - ok
08:37:01.0681 0x0d34  [ 7A757C41C3879CD34BDE15F0563C0CE2, E1D33EB03EFB2FC2CDB1EBECD644FF5E64EFB8143A54D21CB1B51D15E7BE20BC ] C:\Windows\System32\lltdres.dll
08:37:01.0681 0x0d34  C:\Windows\System32\lltdres.dll - ok
08:37:01.0696 0x0d34  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] C:\Windows\System32\lmhsvc.dll
08:37:01.0696 0x0d34  C:\Windows\System32\lmhsvc.dll - ok
08:37:01.0696 0x0d34  [ E5DE3FFD785B6730291AD98E491D58BA, 1A26DB6EE0A70AA495948A68F63453C6ABCD76E1FCCEAE909F922F28D277F10D ] C:\Windows\ehome\ehres.dll
08:37:01.0696 0x0d34  C:\Windows\ehome\ehres.dll - ok
08:37:01.0712 0x0d34  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] C:\Windows\System32\mmcss.dll
08:37:01.0712 0x0d34  C:\Windows\System32\mmcss.dll - ok
08:37:01.0712 0x0d34  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] C:\Windows\System32\drivers\mountmgr.sys
08:37:01.0712 0x0d34  C:\Windows\System32\drivers\mountmgr.sys - ok
08:37:01.0727 0x0d34  [ 9AD9E06F8656F296D91FAE8EE5B95A27, 53384747D5864D699BCC4F48E0A5E656430EDAA65DCDAB4B11EA68FC7106459E ] C:\Windows\System32\FirewallAPI.dll
08:37:01.0727 0x0d34  C:\Windows\System32\FirewallAPI.dll - ok
08:37:01.0727 0x0d34  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] C:\Windows\System32\WebClnt.dll
08:37:01.0727 0x0d34  C:\Windows\System32\WebClnt.dll - ok
08:37:01.0743 0x0d34  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] C:\Windows\System32\drivers\mshidkmdf.sys
08:37:01.0743 0x0d34  C:\Windows\System32\drivers\mshidkmdf.sys - ok
08:37:01.0743 0x0d34  [ E11E3F3BBEFDC5C0C160BE13B65E25E4, 0F734B174273DAF0E691C336E112C12259B4A74054886206656B0B065CB1A229 ] C:\Windows\System32\iscsidsc.dll
08:37:01.0743 0x0d34  C:\Windows\System32\iscsidsc.dll - ok
08:37:01.0759 0x0d34  [ 8EE1C893C50D1C02D4675978BAC756BA, AFA6E61B5C7784086BE546277331DFC08B4D43B6F68AA388B24681AD912C78A5 ] C:\Windows\System32\msimsg.dll
08:37:01.0759 0x0d34  C:\Windows\System32\msimsg.dll - ok
08:37:01.0774 0x0d34  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] C:\Windows\System32\drivers\mup.sys
08:37:01.0774 0x0d34  C:\Windows\System32\drivers\mup.sys - ok
08:37:01.0774 0x0d34  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] C:\Windows\System32\QAGENTRT.DLL
08:37:01.0774 0x0d34  C:\Windows\System32\QAGENTRT.DLL - ok
08:37:01.0790 0x0d34  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] C:\Windows\System32\drivers\ndis.sys
08:37:01.0790 0x0d34  C:\Windows\System32\drivers\ndis.sys - ok
08:37:01.0790 0x0d34  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] C:\Windows\System32\netman.dll
08:37:01.0790 0x0d34  C:\Windows\System32\netman.dll - ok
08:37:01.0805 0x0d34  [ 82C136E9E2FA0B1CFBA49BC7A18F72FD, 6A02C31F74C212C14E11B053B1B8A8F464AC3BAA8C0CDDA3A242879E296035EF ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll
08:37:01.0805 0x0d34  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelInstallRC.dll - ok
08:37:01.0805 0x0d34  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] C:\Windows\System32\netprofm.dll
08:37:01.0805 0x0d34  C:\Windows\System32\netprofm.dll - ok
08:37:01.0821 0x0d34  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] C:\Windows\System32\nlasvc.dll
08:37:01.0821 0x0d34  C:\Windows\System32\nlasvc.dll - ok
08:37:01.0821 0x0d34  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] C:\Windows\System32\nsisvc.dll
08:37:01.0821 0x0d34  C:\Windows\System32\nsisvc.dll - ok
08:37:01.0837 0x0d34  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] C:\Windows\System32\pnrpsvc.dll
08:37:01.0837 0x0d34  C:\Windows\System32\pnrpsvc.dll - ok
08:37:01.0837 0x0d34  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] C:\Windows\System32\p2psvc.dll
08:37:01.0837 0x0d34  C:\Windows\System32\p2psvc.dll - ok
08:37:01.0852 0x0d34  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] C:\Windows\System32\drivers\partmgr.sys
08:37:01.0852 0x0d34  C:\Windows\System32\drivers\partmgr.sys - ok
08:37:01.0852 0x0d34  [ 256390425414F90FCBC12F525A84EB11, A4992020BF6A239AD8A77125426E2C39980C9ABC971C4DBCB24B358F946AD7F9 ] C:\Windows\System32\pcasvc.dll
08:37:01.0852 0x0d34  C:\Windows\System32\pcasvc.dll - ok
08:37:01.0868 0x0d34  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] C:\Windows\System32\pla.dll
08:37:01.0868 0x0d34  C:\Windows\System32\pla.dll - ok
08:37:01.0883 0x0d34  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] C:\Windows\System32\umpnpmgr.dll
08:37:01.0883 0x0d34  C:\Windows\System32\umpnpmgr.dll - ok
08:37:01.0883 0x0d34  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] C:\Windows\System32\pnrpauto.dll
08:37:01.0883 0x0d34  C:\Windows\System32\pnrpauto.dll - ok
08:37:01.0899 0x0d34  [ 8DEC9C6DD13C4B3B62CD8D5A0FEF1650, 64D581B5F68821B9FCBC656B9C3B04F047EDFE4D2905B1926017A60C740D645A ] C:\Windows\System32\polstore.dll
08:37:01.0899 0x0d34  C:\Windows\System32\polstore.dll - ok
08:37:01.0899 0x0d34  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] C:\Windows\System32\umpo.dll
08:37:01.0899 0x0d34  C:\Windows\System32\umpo.dll - ok
08:37:01.0915 0x0d34  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] C:\Windows\System32\profsvc.dll
08:37:01.0915 0x0d34  C:\Windows\System32\profsvc.dll - ok
08:37:01.0915 0x0d34  [ AB95FBAE4F9A5A56B177CEC427B2B35E, 59D7C2A5097F83E8D07CAAFCF9C6F9C6849AF24C28047FD4D4D6B5673EE8D089 ] C:\Windows\System32\psbase.dll
08:37:01.0915 0x0d34  C:\Windows\System32\psbase.dll - ok
08:37:01.0930 0x0d34  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] C:\Windows\System32\qwave.dll
08:37:01.0930 0x0d34  C:\Windows\System32\qwave.dll - ok
08:37:01.0930 0x0d34  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] C:\Windows\System32\drivers\qwavedrv.sys
08:37:01.0930 0x0d34  C:\Windows\System32\drivers\qwavedrv.sys - ok
08:37:01.0946 0x0d34  [ A55E7D0D873B2C97585B3B5926AC6ADE, 3BE3895DA7F0888E85B1941525878BA0846A8F215AD39ED8138BB39615468E32 ] C:\Windows\WindowsMobile\rapimgr.dll
08:37:01.0946 0x0d34  C:\Windows\WindowsMobile\rapimgr.dll - ok
08:37:01.0946 0x0d34  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] C:\Windows\System32\rasauto.dll
08:37:01.0946 0x0d34  C:\Windows\System32\rasauto.dll - ok
08:37:01.0961 0x0d34  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] C:\Windows\System32\rasmans.dll
08:37:01.0961 0x0d34  C:\Windows\System32\rasmans.dll - ok
08:37:01.0977 0x0d34  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] C:\Windows\System32\sstpsvc.dll
08:37:01.0977 0x0d34  C:\Windows\System32\sstpsvc.dll - ok
08:37:01.0977 0x0d34  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] C:\Windows\System32\mprdim.dll
08:37:01.0977 0x0d34  C:\Windows\System32\mprdim.dll - ok
08:37:01.0993 0x0d34  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] C:\Windows\System32\regsvc.dll
08:37:01.0993 0x0d34  C:\Windows\System32\regsvc.dll - ok
08:37:01.0993 0x0d34  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] C:\Windows\System32\RpcEpMap.dll
08:37:01.0993 0x0d34  C:\Windows\System32\RpcEpMap.dll - ok
08:37:02.0008 0x0d34  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] C:\Windows\System32\Locator.exe
08:37:02.0008 0x0d34  C:\Windows\System32\Locator.exe - ok
08:37:02.0008 0x0d34  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] C:\Windows\System32\SCardSvr.dll
08:37:02.0008 0x0d34  C:\Windows\System32\SCardSvr.dll - ok
08:37:02.0024 0x0d34  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] C:\Windows\System32\drivers\scfilter.sys
08:37:02.0024 0x0d34  C:\Windows\System32\drivers\scfilter.sys - ok
08:37:02.0024 0x0d34  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] C:\Windows\System32\schedsvc.dll
08:37:02.0024 0x0d34  C:\Windows\System32\schedsvc.dll - ok
08:37:02.0039 0x0d34  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] C:\Windows\System32\sdrsvc.dll
08:37:02.0039 0x0d34  C:\Windows\System32\sdrsvc.dll - ok
08:37:02.0055 0x0d34  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] C:\Windows\System32\seclogon.dll
08:37:02.0055 0x0d34  C:\Windows\System32\seclogon.dll - ok
08:37:02.0055 0x0d34  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] C:\Windows\System32\Sens.dll
08:37:02.0055 0x0d34  C:\Windows\System32\Sens.dll - ok
08:37:02.0071 0x0d34  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] C:\Windows\System32\sensrsvc.dll
08:37:02.0071 0x0d34  C:\Windows\System32\sensrsvc.dll - ok
08:37:02.0071 0x0d34  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] C:\Windows\System32\SessEnv.dll
08:37:02.0071 0x0d34  C:\Windows\System32\SessEnv.dll - ok
08:37:02.0086 0x0d34  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] C:\Windows\System32\ipnathlp.dll
08:37:02.0086 0x0d34  C:\Windows\System32\ipnathlp.dll - ok
08:37:02.0086 0x0d34  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] C:\Windows\System32\shsvcs.dll
08:37:02.0086 0x0d34  C:\Windows\System32\shsvcs.dll - ok
08:37:02.0102 0x0d34  [ 55DE45B116711881C852D2841E4C84DD, 18E5021530BB44042C85087BAE4FEDA633E01CDCBA09C90A5941B74C75133A35 ] C:\Windows\System32\tcpipcfg.dll
08:37:02.0102 0x0d34  C:\Windows\System32\tcpipcfg.dll - ok
08:37:02.0102 0x0d34  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] C:\Windows\System32\snmptrap.exe
08:37:02.0102 0x0d34  C:\Windows\System32\snmptrap.exe - ok
08:37:02.0117 0x0d34  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] C:\Windows\System32\sppsvc.exe
08:37:02.0117 0x0d34  C:\Windows\System32\sppsvc.exe - ok
08:37:02.0117 0x0d34  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] C:\Windows\System32\sppuinotify.dll
08:37:02.0117 0x0d34  C:\Windows\System32\sppuinotify.dll - ok
08:37:02.0133 0x0d34  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] C:\Windows\System32\ssdpsrv.dll
08:37:02.0133 0x0d34  C:\Windows\System32\ssdpsrv.dll - ok
08:37:02.0133 0x0d34  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] C:\Windows\System32\wiaservc.dll
08:37:02.0133 0x0d34  C:\Windows\System32\wiaservc.dll - ok
08:37:02.0149 0x0d34  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] C:\Windows\System32\swprv.dll
08:37:02.0149 0x0d34  C:\Windows\System32\swprv.dll - ok
08:37:02.0149 0x0d34  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] C:\Windows\System32\sysmain.dll
08:37:02.0149 0x0d34  C:\Windows\System32\sysmain.dll - ok
08:37:02.0164 0x0d34  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] C:\Windows\System32\TabSvc.dll
08:37:02.0164 0x0d34  C:\Windows\System32\TabSvc.dll - ok
08:37:02.0180 0x0d34  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] C:\Windows\System32\tapisrv.dll
08:37:02.0180 0x0d34  C:\Windows\System32\tapisrv.dll - ok
08:37:02.0180 0x0d34  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] C:\Windows\System32\tbssvc.dll
08:37:02.0180 0x0d34  C:\Windows\System32\tbssvc.dll - ok
08:37:02.0195 0x0d34  [ 4FC4C50985E5B840F4D72E57286887B8, 0BCBB4A938803AE3A3532B6D8FFC85594AA9AEF5D8F9792684841BEA8780AE9E ] C:\Windows\System32\termsrv.dll
08:37:02.0195 0x0d34  C:\Windows\System32\termsrv.dll - ok
08:37:02.0195 0x0d34  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] C:\Windows\System32\themeservice.dll
08:37:02.0195 0x0d34  C:\Windows\System32\themeservice.dll - ok
08:37:02.0211 0x0d34  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] C:\Windows\System32\trkwks.dll
08:37:02.0211 0x0d34  C:\Windows\System32\trkwks.dll - ok
08:37:02.0211 0x0d34  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] C:\Windows\servicing\TrustedInstaller.exe
08:37:02.0211 0x0d34  C:\Windows\servicing\TrustedInstaller.exe - ok
08:37:02.0227 0x0d34  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] C:\Windows\System32\drivers\tssecsrv.sys
08:37:02.0227 0x0d34  C:\Windows\System32\drivers\tssecsrv.sys - ok
08:37:02.0227 0x0d34  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] C:\Windows\System32\UI0Detect.exe
08:37:02.0227 0x0d34  C:\Windows\System32\UI0Detect.exe - ok
08:37:02.0242 0x0d34  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] C:\Windows\System32\upnphost.dll
08:37:02.0242 0x0d34  C:\Windows\System32\upnphost.dll - ok
08:37:02.0258 0x0d34  [ F162D5F5E845B9DC352DD1BAD8CEF1BC, 8A7B7528DB30AB123B060D8E41954D95913C07BB40CDAE32E97F9EDB0BAF79C7 ] C:\Windows\System32\dwm.exe
08:37:02.0258 0x0d34  C:\Windows\System32\dwm.exe - ok
08:37:02.0258 0x0d34  [ 567BC1309E05FCFA680ADB6E02260736, 50F57C5D0B9C8096F615C2335F2F252A074014CBBDC7FFF56C0501A8CFB3FB81 ] C:\Windows\System32\vaultsvc.dll
08:37:02.0258 0x0d34  C:\Windows\System32\vaultsvc.dll - ok
08:37:02.0273 0x0d34  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] C:\Windows\System32\vds.exe
08:37:02.0273 0x0d34  C:\Windows\System32\vds.exe - ok
08:37:02.0273 0x0d34  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] C:\Windows\System32\drivers\volmgrx.sys
08:37:02.0273 0x0d34  C:\Windows\System32\drivers\volmgrx.sys - ok
08:37:02.0289 0x0d34  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] C:\Windows\System32\VSSVC.exe
08:37:02.0289 0x0d34  C:\Windows\System32\VSSVC.exe - ok
08:37:02.0289 0x0d34  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] C:\Windows\System32\w32time.dll
08:37:02.0289 0x0d34  C:\Windows\System32\w32time.dll - ok
08:37:02.0305 0x0d34  [ 05E9265E2228799B68DC0F58A94E1AB8, FDB235920A70B64D3AC4A69228985033A830A4B71BA8B779437A0F0FA5A3FB40 ] C:\Windows\System32\Wat\WatUX.exe
08:37:02.0305 0x0d34  C:\Windows\System32\Wat\WatUX.exe - ok
08:37:02.0305 0x0d34  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] C:\Windows\System32\wbengine.exe
08:37:02.0305 0x0d34  C:\Windows\System32\wbengine.exe - ok
08:37:02.0320 0x0d34  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] C:\Windows\System32\wbiosrvc.dll
08:37:02.0320 0x0d34  C:\Windows\System32\wbiosrvc.dll - ok
08:37:02.0320 0x0d34  [ 8BDA6DB43AA54E8BB5E0794541DDC209, 8753C507BE77B019A3403AF5252434A01DB9F9332E58AC3783ABCE3D21AD9DD4 ] C:\Windows\WindowsMobile\wcescomm.dll
08:37:02.0320 0x0d34  C:\Windows\WindowsMobile\wcescomm.dll - ok
08:37:02.0336 0x0d34  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] C:\Windows\System32\wcncsvc.dll
08:37:02.0336 0x0d34  C:\Windows\System32\wcncsvc.dll - ok
08:37:02.0336 0x0d34  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] C:\Windows\System32\drivers\Wdf01000.sys
08:37:02.0336 0x0d34  C:\Windows\System32\drivers\Wdf01000.sys - ok
08:37:02.0351 0x0d34  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] C:\Windows\System32\WcsPlugInService.dll
08:37:02.0351 0x0d34  C:\Windows\System32\WcsPlugInService.dll - ok
08:37:02.0351 0x0d34  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] C:\Windows\System32\wdi.dll
08:37:02.0367 0x0d34  C:\Windows\System32\wdi.dll - ok
08:37:02.0367 0x0d34  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] C:\Windows\System32\wecsvc.dll
08:37:02.0367 0x0d34  C:\Windows\System32\wecsvc.dll - ok
08:37:02.0383 0x0d34  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] C:\Windows\System32\wercplsupport.dll
08:37:02.0383 0x0d34  C:\Windows\System32\wercplsupport.dll - ok
08:37:02.0383 0x0d34  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] C:\Windows\System32\wersvc.dll
08:37:02.0383 0x0d34  C:\Windows\System32\wersvc.dll - ok
08:37:02.0398 0x0d34  [ 2DA738A0A6BEE483A5647A76695AF3B0, FD7929F5A3C7161E2C1A6F4D9E59D56F891D1A8966A26562E220D9B4B98B14BD ] C:\Program Files\Windows Defender\MsMpRes.dll
08:37:02.0398 0x0d34  C:\Program Files\Windows Defender\MsMpRes.dll - ok
08:37:02.0398 0x0d34  [ 58F4493BF748A3A89689997B7BD00E95, EC5DEEC73E357C7C87B001275C4E635011A9CF39419F2B86E2C2B8D7E388C551 ] C:\Windows\System32\winhttp.dll
08:37:02.0398 0x0d34  C:\Windows\System32\winhttp.dll - ok
08:37:02.0414 0x0d34  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] C:\Windows\System32\wbem\WMIsvc.dll
08:37:02.0414 0x0d34  C:\Windows\System32\wbem\WMIsvc.dll - ok
08:37:02.0414 0x0d34  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] C:\Windows\System32\WsmSvc.dll
08:37:02.0414 0x0d34  C:\Windows\System32\WsmSvc.dll - ok
08:37:02.0429 0x0d34  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] C:\Windows\System32\wlansvc.dll
08:37:02.0429 0x0d34  C:\Windows\System32\wlansvc.dll - ok
08:37:02.0429 0x0d34  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] C:\Windows\System32\wbem\WmiApSrv.exe
08:37:02.0429 0x0d34  C:\Windows\System32\wbem\WmiApSrv.exe - ok
08:37:02.0445 0x0d34  [ A9F3BFC9345F49614D5859EC95B9E994, 306467D280E99D0616E839278A4DB5BED684F002AE284C3678CABB5251459CB3 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
08:37:02.0445 0x0d34  C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
08:37:02.0461 0x0d34  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] C:\Windows\System32\wpcsvc.dll
08:37:02.0461 0x0d34  C:\Windows\System32\wpcsvc.dll - ok
08:37:02.0461 0x0d34  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] C:\Windows\System32\wpdbusenum.dll
08:37:02.0461 0x0d34  C:\Windows\System32\wpdbusenum.dll - ok
08:37:02.0476 0x0d34  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] C:\Windows\System32\drivers\ws2ifsl.sys
08:37:02.0476 0x0d34  C:\Windows\System32\drivers\ws2ifsl.sys - ok
08:37:02.0476 0x0d34  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] C:\Windows\System32\wscsvc.dll
08:37:02.0476 0x0d34  C:\Windows\System32\wscsvc.dll - ok
08:37:02.0492 0x0d34  [ E0B340996A41C9A75DFA3B99BBA9C500, D029AD8ABBD2267B1E44DF5172B93C3F832B4C21F930F5512C24E800F5CE4F8B ] C:\Windows\System32\SearchIndexer.exe
08:37:02.0492 0x0d34  C:\Windows\System32\SearchIndexer.exe - ok
08:37:02.0492 0x0d34  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] C:\Windows\System32\drivers\WUDFPf.sys
08:37:02.0492 0x0d34  C:\Windows\System32\drivers\WUDFPf.sys - ok
08:37:02.0507 0x0d34  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] C:\Windows\System32\WUDFSvc.dll
08:37:02.0507 0x0d34  C:\Windows\System32\WUDFSvc.dll - ok
08:37:02.0507 0x0d34  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] C:\Windows\System32\wwansvc.dll
08:37:02.0507 0x0d34  C:\Windows\System32\wwansvc.dll - ok
08:37:02.0523 0x0d34  [ 7CC7DF5B654DA579613F811D8C637E29, 70EAC059C1ED814810C75DBB9F4D188428CB942FFD8869D692158D384EB6BB35 ] C:\Windows\System32\ubpm.dll
08:37:02.0523 0x0d34  C:\Windows\System32\ubpm.dll - ok
08:37:02.0523 0x0d34  [ E6EB44ABAAF1F330119F854856C53EBE, 77279972FFBFA984578DD4F17EB615F5D2D93590AF3A9FEFEFDB9128206C9887 ] C:\Windows\System32\SPInf.dll
08:37:02.0523 0x0d34  C:\Windows\System32\SPInf.dll - ok
08:37:02.0539 0x0d34  [ C78655BC80301D76ED4FEF1C1EA40A7D, 93B2ED4004ED5F7F3039DD7ECBD22C7E4E24B6373B4D9EF8D6E45A179B13A5E8 ] C:\Windows\System32\svchost.exe
08:37:02.0539 0x0d34  C:\Windows\System32\svchost.exe - ok
08:37:02.0539 0x0d34  [ CD1B5AD07E5F7FEF30E055DCC9E96180, 63C58551F32B0B09377F64A6AE1FA81AF93B8A707A57A8C18722086906AD3046 ] C:\Windows\System32\devrtl.dll
08:37:02.0539 0x0d34  C:\Windows\System32\devrtl.dll - ok
08:37:02.0554 0x0d34  [ F6C011B46FAEEF33536B2E80F48B5CBE, BDD149D3D6F9F6C8F6F34C311219BE5618CEEFBC7D35E37473A47F1D5D015067 ] C:\Windows\System32\pcwum.dll
08:37:02.0554 0x0d34  C:\Windows\System32\pcwum.dll - ok
08:37:02.0570 0x0d34  [ 716175021BDA290504CE434273F666BC, FA18CA2D8A5F4335E051E2933147D3C1E7308F7D446E2AEB6596CDEF6E2AFC88 ] C:\Windows\System32\powrprof.dll
08:37:02.0570 0x0d34  C:\Windows\System32\powrprof.dll - ok
08:37:02.0570 0x0d34  [ 5C3669B71657F22E67A1D4BD49D2CBE7, 7CAE59AA6CA9CBBD70BBD707A155FB169BF3F71096275BF7C0F415B6A092C671 ] C:\Windows\System32\drivers\mbam.sys
08:37:02.0570 0x0d34  C:\Windows\System32\drivers\mbam.sys - ok
08:37:02.0585 0x0d34  [ D3311B31C470E7681B14D9B014CBF9ED, 8F7053B92E0354D779988ABDADA265C102F13FD56F825054F21721BA36A15EA8 ] C:\Windows\System32\drivers\mbamchameleon.sys
08:37:02.0585 0x0d34  C:\Windows\System32\drivers\mbamchameleon.sys - ok
08:37:02.0585 0x0d34  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] C:\Windows\System32\rpcss.dll
08:37:02.0585 0x0d34  C:\Windows\System32\rpcss.dll - ok
08:37:02.0601 0x0d34  [ 16E964ABF6D1E0F0CC7822FCA9BA754D, 0E461387ACFD641DA22EE542A3C68AF5F7D3A7F967D974E3B198143D461ABE39 ] C:\Windows\System32\wshqos.dll
08:37:02.0601 0x0d34  C:\Windows\System32\wshqos.dll - ok
08:37:02.0601 0x0d34  [ 31559F3244C6BC00A52030CAA83B6B91, B2025742B5F0025ACE9821D5722DE3F997EEEAB21D2F381C9E307882DF422579 ] C:\Windows\System32\WSHTCPIP.DLL
08:37:02.0601 0x0d34  C:\Windows\System32\WSHTCPIP.DLL - ok
08:37:02.0617 0x0d34  [ D696F317BD465A602566F8E1DCCE15F7, 6CE77CD4221C0854986F760D1944DF9F4255192D99630D43A0527A6D58D83406 ] C:\Windows\System32\atiesrxx.exe
08:37:02.0617 0x0d34  C:\Windows\System32\atiesrxx.exe - ok
08:37:02.0617 0x0d34  [ 94E026870A55AAEAFF7853C1754091E9, B2F5D5629D12BDFA98DBED3898368F37D9009C7531B6909C7285A2C11C9A0F93 ] C:\Windows\System32\version.dll
08:37:02.0617 0x0d34  C:\Windows\System32\version.dll - ok
08:37:02.0632 0x0d34  [ 715F03B4C7223349768013EA95D9E5B7, 09AB0535A54C2E2962F0FD06988D99060F8CECA39B07AC00A63204C773B95893 ] C:\Windows\System32\LogonUI.exe
08:37:02.0632 0x0d34  C:\Windows\System32\LogonUI.exe - ok
08:37:02.0632 0x0d34  [ BD3674BE7FC9D8D3732C83E8499576ED, E6716A5895D629263A4D21959F48840429AB6F4B55A5FA2663EE5E86C9CA2BF1 ] C:\Windows\System32\wtsapi32.dll
08:37:02.0632 0x0d34  C:\Windows\System32\wtsapi32.dll - ok
08:37:02.0648 0x0d34  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67, E957E4463D318A44BA5109EE3428624DE901C5FF2BA358986DF6C6F059DDBCC2 ] C:\Windows\System32\adtschema.dll
08:37:02.0648 0x0d34  C:\Windows\System32\adtschema.dll - ok
08:37:02.0663 0x0d34  [ 227E2C382A1E02F8D4965E664D3BBE43, 1CFF20A8BF87ACE4FA4935EBEED72BFB1A1FE902A754899E2F50798D67DF5642 ] C:\Windows\System32\MMDevAPI.dll
08:37:02.0663 0x0d34  C:\Windows\System32\MMDevAPI.dll - ok
08:37:02.0663 0x0d34  [ F06BB4E336EA57511FDBAFAFCC47DE62, BE43EC62548E9FF89A9495A1722E22DBB76EEC3764F86E64057B636F27D15765 ] C:\Windows\System32\propsys.dll
08:37:02.0663 0x0d34  C:\Windows\System32\propsys.dll - ok
08:37:02.0679 0x0d34  [ 78A1E65207484B7F8D3217507745F47C, 35F413ADB9D157F3666DD15DD58104D629CD9143198A1AB914B73A4A3C9903DD ] C:\Windows\System32\avrt.dll
08:37:02.0679 0x0d34  C:\Windows\System32\avrt.dll - ok
08:37:02.0679 0x0d34  [ FE05D03B73000CFF476E1D29109F3A84, 7880B025413338A7B114BECB5DC67605FC7A97142C26FD12F765A64A21805842 ] C:\Program Files\Windows Defender\MpEvMsg.dll
08:37:02.0679 0x0d34  C:\Program Files\Windows Defender\MpEvMsg.dll - ok
08:37:02.0695 0x0d34  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] C:\Windows\System32\MPSSVC.dll
08:37:02.0695 0x0d34  C:\Windows\System32\MPSSVC.dll - ok
08:37:02.0695 0x0d34  [ 5DFFC12BF7DB53BDB401804A3C3A475E, DEACB4BFF904AD77389A8326BFCF12A490E1A7A10B68049D253552F1FC630FA3 ] C:\Windows\System32\authui.dll
08:37:02.0695 0x0d34  C:\Windows\System32\authui.dll - ok
08:37:02.0710 0x0d34  [ A3DB3C17EE6CAE65D53602B4E80BCCBC, D802A7C6161F937DC42A6E45FE1BB2C8272819F92C294C180EBCDF8FF72CBFDC ] C:\Windows\System32\PSHED.DLL
08:37:02.0710 0x0d34  C:\Windows\System32\PSHED.DLL - ok
08:37:02.0710 0x0d34  [ 81A2008198A6E450E4BC7EF361154C8A, E9976934EBCD36B08BDE4210062227BF491AE29D16ADD98D2C765DFCBCCC7F7F ] C:\Windows\System32\cryptui.dll
08:37:02.0710 0x0d34  C:\Windows\System32\cryptui.dll - ok
08:37:02.0726 0x0d34  [ 50544D04AD845C43130B70212EC05CCD, B2E6B558DE7D273512226685FF53ED17C9B4BF81B739FBCA5D3FC82DF8D2BCF7 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
08:37:02.0726 0x0d34  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
08:37:02.0741 0x0d34  [ B0945E538CF906BBDDC5A11C8EE868CC, 5F3459F6512918835F7C9400905EC7C1FAEAA7114E0D28C522040C359E3B93F7 ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
08:37:02.0741 0x0d34  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
08:37:02.0741 0x0d34  [ 7FA8FDC2C2A27817FD0F624E78D3B50C, 7B63F6AA2CD6D4D07EA3C595B868B1A0749BB11620027A2BD9B935E3055481E4 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
08:37:02.0741 0x0d34  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
08:37:02.0757 0x0d34  [ 5B3EBFC3DA142324B388DDCC4465E1FF, 5D58642305311F9BC9B779C9598BFC4E7433B3EA58404BF1FF9466838A2328C7 ] C:\Windows\System32\samlib.dll
08:37:02.0757 0x0d34  C:\Windows\System32\samlib.dll - ok
08:37:02.0757 0x0d34  [ 4E9C2DB10F7E6AE91BF761139D4B745B, 8F63F78294F5585D599A114AF449DCC447CCB239D0F0B490BFE6B34A2146E730 ] C:\Windows\System32\shacct.dll
08:37:02.0757 0x0d34  C:\Windows\System32\shacct.dll - ok
08:37:02.0773 0x0d34  [ D29E998E8277666982B4F0303BF4E7AF, 4F19AB5DC173E278EBE45832F6CEAA40E2DF6A2EDDC81B2828122442FE5D376C ] C:\Windows\System32\uxtheme.dll
08:37:02.0773 0x0d34  C:\Windows\System32\uxtheme.dll - ok
08:37:02.0773 0x0d34  [ A9A87481B1A6589898C1DAB37C03E4AB, 803DB46E9FEE4E45B63A13A8CE3E589D7498532B8A7D8C3424E210E6A9AAC61F ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_2b283fd671e9bf4d\GdiPlus.dll
08:37:02.0773 0x0d34  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_2b283fd671e9bf4d\GdiPlus.dll - ok
08:37:02.0788 0x0d34  [ 3CB6A7286422C72C34DAB54A5DFF1A34, 98D21EFFF511E407336A226420701E82554DA01FA05661303836B6860D63749D ] C:\Windows\System32\dui70.dll
08:37:02.0788 0x0d34  C:\Windows\System32\dui70.dll - ok
08:37:02.0788 0x0d34  [ 8CCDE014A4CDF84564E03ACE064CA753, DD663029B2EB7B12FDB00FCE403D8326141E540E3B9CE84CD5871473D3E2E2CF ] C:\Windows\System32\duser.dll
08:37:02.0788 0x0d34  C:\Windows\System32\duser.dll - ok
08:37:02.0804 0x0d34  [ D7F1EF374A90709B31591823B002F918, 05FD2837C9B03D14BB2A969C1AD77CAEF047D93DC5D0F6C2ACBF0888E8F7B359 ] C:\Windows\System32\SndVolSSO.dll
08:37:02.0804 0x0d34  C:\Windows\System32\SndVolSSO.dll - ok
08:37:02.0804 0x0d34  [ DA1B7075260F3872585BFCDD668C648B, 3E10EF6E1A5C341B478322CB78A0AB7BFC70AD8023779B8B4542A7CB4CA756AB ] C:\Windows\System32\dwmapi.dll
08:37:02.0804 0x0d34  C:\Windows\System32\dwmapi.dll - ok
08:37:02.0819 0x0d34  [ 896F15A6434D93EDB42519D5E18E6B50, 9263F0CEC58D45EBE3FB9C3061FB9392C55A7933B84B4592E6EE13CFC86D5A50 ] C:\Windows\System32\hid.dll
08:37:02.0819 0x0d34  C:\Windows\System32\hid.dll - ok
08:37:02.0819 0x0d34  [ 6F8B48F3D343E4B186AB6A9E302B7E16, 54DB52FC56509E61DF68BD251B3286E6CBE1A91D9BC4D950940A61FE2DA04DF8 ] C:\Windows\System32\xmllite.dll
08:37:02.0819 0x0d34  C:\Windows\System32\xmllite.dll - ok
08:37:02.0835 0x0d34  [ AFCA5C1ECEAF948FC815178BC077680E, D052C18EF455E1A272332F2E11FD4F36DA071FAB3B81CA312FB75BF8702ED72D ] C:\Windows\System32\WindowsCodecs.dll
08:37:02.0835 0x0d34  C:\Windows\System32\WindowsCodecs.dll - ok
08:37:02.0851 0x0d34  [ C2762A57DF0EE85E63CE4893C5215313, DDE22212D78353633CEDE27D7210469DE674563991105563CF64CCCE2D0743BD ] C:\Windows\System32\VaultCredProvider.dll
08:37:02.0851 0x0d34  C:\Windows\System32\VaultCredProvider.dll - ok
08:37:02.0851 0x0d34  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D, 19959D18601712901F03B83150D15E34EBCAB355BB4692C9A28511A72F57FC66 ] C:\Windows\System32\winbrand.dll
08:37:02.0851 0x0d34  C:\Windows\System32\winbrand.dll - ok
08:37:02.0866 0x0d34  [ 983E82A09D11D44D266355105249C464, 4697B7B06649D29A9BED782FB884DCFB1A4919F1FA1F0F75657868FE7BA2A541 ] C:\Program Files (x86)\CyberLink\YouCam\CLCredProv\x64\CLCredProv.dll
08:37:02.0866 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\CLCredProv\x64\CLCredProv.dll - ok
08:37:02.0866 0x0d34  [ 8563BA40DF4F1E93A61B70E2C8B60CF8, E5CAA520CBE61FAF3EAA784A51ED30E0CB2FD78EFD8AE1D5C6B0FE43A1009F39 ] C:\Windows\System32\SmartcardCredentialProvider.dll
08:37:02.0866 0x0d34  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
08:37:02.0882 0x0d34  [ BF352E73615F5461AA6884472435A544, 4B059E79325C5F08CD6FBBE6352E17ADB64B9608CC9EDB36A2DF4D148060C309 ] C:\Windows\System32\BioCredProv.dll
08:37:02.0882 0x0d34  C:\Windows\System32\BioCredProv.dll - ok
08:37:02.0882 0x0d34  [ 796B8123A7859AFD3A4AE10514DBAEB5, E76F69FAFEC3D66263ED95F3FA9EE309BDDACB287E30583A147DC97F6EEB8844 ] C:\Windows\System32\winbio.dll
08:37:02.0882 0x0d34  C:\Windows\System32\winbio.dll - ok
08:37:02.0897 0x0d34  [ A8DDFADCA566D4EA38C9DA928D14A658, C38FBF8E83B56EC6CD2EA4FCBB3B779709CF6998A2C00BF3A9A2AD004971A074 ] C:\Windows\System32\audiodg.exe
08:37:02.0897 0x0d34  C:\Windows\System32\audiodg.exe - ok
08:37:02.0897 0x0d34  [ 4403D5ECE7D8323CAF1207D1AA38FA01, BD0B34DCF658D3CB91C1B55E9E730C5F7C571AFC2BFA09270C377B72B6830D48 ] C:\Windows\System32\credui.dll
08:37:02.0897 0x0d34  C:\Windows\System32\credui.dll - ok
08:37:02.0913 0x0d34  [ EEEA40F0EDB0A6E5359E539E15D0BC77, BFCBF777239C29C6AC4BC5B59591308571647B7C7FDB5571903F7403DD241E8E ] C:\Windows\System32\netapi32.dll
08:37:02.0913 0x0d34  C:\Windows\System32\netapi32.dll - ok
08:37:02.0929 0x0d34  [ 6CECA4C6A489C9B2E6073AFDAAE3F607, 127506D1DB38275614CBEB047C133718EF9D03266BA9C98BE55EC7847CFC9C3D ] C:\Windows\System32\netutils.dll
08:37:02.0929 0x0d34  C:\Windows\System32\netutils.dll - ok
08:37:02.0929 0x0d34  [ FC51229C7D4AFA0D6F186133728B95AB, 37E58C8E1C8437D1981725A5DCDACA7316CEFBB570370CEFC8D122F523B96AC0 ] C:\Windows\System32\samcli.dll
08:37:02.0929 0x0d34  C:\Windows\System32\samcli.dll - ok
08:37:02.0944 0x0d34  [ 44B9C66177651F3F53C87B665D58D17A, 3FC426115FF87570889DB28D71970B82B525D2A4B9A00EDD273BF083B77A05CE ] C:\Windows\System32\vaultcli.dll
08:37:02.0944 0x0d34  C:\Windows\System32\vaultcli.dll - ok
08:37:02.0944 0x0d34  [ 3C91392D448F6E5D525A85B7550D8BA9, 6FD0DC73DBE7519E2C643554C2A7F8FBE4F9A678C4241BB54B3C6E65D2ABCF3A ] C:\Windows\System32\wkscli.dll
08:37:02.0944 0x0d34  C:\Windows\System32\wkscli.dll - ok
08:37:02.0960 0x0d34  [ 972C3301DB3DA91AE06A95F6B4160B1B, 678B533A06C306295FE97DC26CE9BAFFC8EAF1FB7405ACB040719099717744D5 ] C:\Windows\System32\certCredProvider.dll
08:37:02.0960 0x0d34  C:\Windows\System32\certCredProvider.dll - ok
08:37:02.0960 0x0d34  [ 1ECB3FFBF22B8A7C958CCF8F96119FC0, 9DF42A27F486CD55F8141DAC4335B2A98764ED05E3F2342255854A35AB8A32FF ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
08:37:02.0960 0x0d34  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
08:37:02.0975 0x0d34  [ 87FA0C48C3B2E9FEE518818FE26B15B5, DA4042DE9897397AEDCEFF9F69746726237305DDE64464309B6DCC45E05E42F4 ] C:\Windows\System32\rasplap.dll
08:37:02.0975 0x0d34  C:\Windows\System32\rasplap.dll - ok
08:37:02.0975 0x0d34  [ 019CD868461B646E09BDF04474C19341, 01837EFACB02E52BC6E90C90C4CB01B11D56E449A37EA4FC2695507FF85EA9FE ] C:\Windows\System32\rasapi32.dll
08:37:02.0975 0x0d34  C:\Windows\System32\rasapi32.dll - ok
08:37:02.0991 0x0d34  [ B28DEEC597C8DEB70C744C7CF9210E3E, E777F192D822990CA6301B3FEA2AEA213FA7901438EB3328914ADF02B6C39DB9 ] C:\Windows\System32\rasman.dll
08:37:02.0991 0x0d34  C:\Windows\System32\rasman.dll - ok
08:37:02.0991 0x0d34  [ B53C4B69B695EDA1B7E41D35CA4244E2, 3D98E9B263CADA576E4057E059AFC867F6E3F1001F3B73C8BCF9066763A45D9D ] C:\Windows\System32\rtutils.dll
08:37:02.0991 0x0d34  C:\Windows\System32\rtutils.dll - ok
08:37:03.0007 0x0d34  [ CF636C92B762B26F0B39B38E92380A09, F7B8B0EA4536CE3BA33EE1BD0783F6AAD8C0EF69714E874D4A30B720A04C7A18 ] C:\Windows\System32\oleacc.dll
08:37:03.0007 0x0d34  C:\Windows\System32\oleacc.dll - ok
08:37:03.0007 0x0d34  [ 1F4492FE41767CDB8B89D17655847CDD, 184547FAC0C3D7148FAA3F601929A7089DE393BD19929A137DAD743331DD3F77 ] C:\Windows\System32\ntmarta.dll
08:37:03.0007 0x0d34  C:\Windows\System32\ntmarta.dll - ok
08:37:03.0022 0x0d34  [ 019BDD35DE269CB98B22DE8923C2AA3B, 68B216D5331B128CF1BCB3A3F82FD85B119FFDBCB796C907461CDD6248995817 ] C:\Windows\System32\UIAutomationCore.dll
08:37:03.0022 0x0d34  C:\Windows\System32\UIAutomationCore.dll - ok
08:37:03.0038 0x0d34  [ 8560FFFC8EB3A806DCD4F82252CFC8C6, CC27BC092369A89D6147B16568FEDEB68B584D5738CD686C31F7FAE22ED17B3B ] C:\Windows\System32\ksuser.dll
08:37:03.0038 0x0d34  C:\Windows\System32\ksuser.dll - ok
08:37:03.0038 0x0d34  [ 1473768973453DE50DC738C2955FC4DD, 14BC5DA2442CB726ACC1F277DDBECCF5D61E3A0A3E083A55A0BB610191E35220 ] C:\Windows\System32\wdmaud.drv
08:37:03.0038 0x0d34  C:\Windows\System32\wdmaud.drv - ok
08:37:03.0053 0x0d34  [ EF2AE43BCD46ABB13FC3E5B2B1935C73, 81FC06F306F620845D7DD8D06E706309E70BC89B589C81F3478302A3F5F73431 ] C:\Windows\System32\winmm.dll
08:37:03.0053 0x0d34  C:\Windows\System32\winmm.dll - ok
08:37:03.0053 0x0d34  [ C92075D9FFC8429E6CA1279EA8D25722, 4333784F8A604D588D6D5FC60E1C11D0AD9930863EA72E2673440C3B4B60B994 ] C:\Windows\System32\AudioSes.dll
08:37:03.0053 0x0d34  C:\Windows\System32\AudioSes.dll - ok
08:37:03.0069 0x0d34  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] C:\Windows\System32\gpsvc.dll
08:37:03.0069 0x0d34  C:\Windows\System32\gpsvc.dll - ok
08:37:03.0069 0x0d34  [ 58775492FFD419248B08325E583C527F, DBB013971F5894F25C222C2D4D50A29DB6DF3C413792EE9CCC1A9E6D85469093 ] C:\Windows\System32\atl.dll
08:37:03.0069 0x0d34  C:\Windows\System32\atl.dll - ok
08:37:03.0085 0x0d34  [ A77BE7CB3222B4FB0AC6C71D1C2698D4, 73566223914BF670DF6B5931FA213E546713531B10391ED65B5256BBD7ABDE7F ] C:\Windows\System32\dsrole.dll
08:37:03.0085 0x0d34  C:\Windows\System32\dsrole.dll - ok
08:37:03.0085 0x0d34  [ 46BB91A169B9B31FF44EB04C48EC1D41, 8115B533D3A5BE07633FA54FA8847E3DEC00C5BEB193CF2FBE88428D23E2B3D6 ] C:\Windows\System32\nlaapi.dll
08:37:03.0085 0x0d34  C:\Windows\System32\nlaapi.dll - ok
08:37:03.0100 0x0d34  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] C:\Windows\System32\es.dll
08:37:03.0100 0x0d34  C:\Windows\System32\es.dll - ok
08:37:03.0100 0x0d34  [ BE097F5BB10F9079FCEB2DC4E7E20F02, 90A88986C8C5F30FB153EC803FEDA6572B2C2630A6C9578FCC017800692694D5 ] C:\Windows\System32\slc.dll
08:37:03.0100 0x0d34  C:\Windows\System32\slc.dll - ok
08:37:03.0116 0x0d34  [ CA2A0750ED830678997695FF61B04C30, E84860CD97AA3C4565ABB2D5D406A5C42B1AD2D8BA1B8CF81FE564D91F15F976 ] C:\Windows\System32\midimap.dll
08:37:03.0116 0x0d34  C:\Windows\System32\midimap.dll - ok
08:37:03.0116 0x0d34  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A, 72288C0A88916D3C3828DBD948DBDB0928F26106319F8E60102D6C9004514D60 ] C:\Windows\System32\msacm32.dll
08:37:03.0116 0x0d34  C:\Windows\System32\msacm32.dll - ok
08:37:03.0131 0x0d34  [ 1B7C3A37362C7B2890168C5FC61C8D9B, 03727930E5BB5F9D91BAB901FC9A2E3B795D68E2AEE6A2CC3477F356C45A9C54 ] C:\Windows\System32\msacm32.drv
08:37:03.0131 0x0d34  C:\Windows\System32\msacm32.drv - ok
08:37:03.0147 0x0d34  [ 9BC8610C32C96A2983A65DC21CAFA921, 2A4195F663C9D55939E3D8FEAA208090FDB0B8801A60164A7325B53104797CBC ] C:\Windows\System32\UXInit.dll
08:37:03.0147 0x0d34  C:\Windows\System32\UXInit.dll - ok
08:37:03.0147 0x0d34  [ DA9AF4793B4874BE0BE28170DB890CDF, CDD42BA0D13980349422B417F1C6B6F2A18DC4F9ED4568A57560E70781BB6F0B ] C:\Windows\System32\AudioEng.dll
08:37:03.0147 0x0d34  C:\Windows\System32\AudioEng.dll - ok
08:37:03.0163 0x0d34  [ 23D0CE89D5A6C87DFA023839FE7F4C37, 1C1A8228EEB8AF3A5CC29AC4F926565DE0D051C6420CC92E6605AB2ED836D1DB ] C:\Windows\System32\atieclxx.exe
08:37:03.0163 0x0d34  C:\Windows\System32\atieclxx.exe - ok
08:37:03.0163 0x0d34  [ 87222A707545E783D9FAE7940645A2C3, 3A0D6907A3F98FED87AA2D223E492037F6625456FA327BB0E22D366F2B52C148 ] C:\Windows\System32\AUDIOKSE.dll
08:37:03.0163 0x0d34  C:\Windows\System32\AUDIOKSE.dll - ok
08:37:03.0178 0x0d34  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] C:\Windows\System32\uxsms.dll
08:37:03.0178 0x0d34  C:\Windows\System32\uxsms.dll - ok
08:37:03.0178 0x0d34  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] C:\Windows\System32\drivers\lltdio.sys
08:37:03.0178 0x0d34  C:\Windows\System32\drivers\lltdio.sys - ok
08:37:03.0194 0x0d34  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] C:\Windows\System32\drivers\nwifi.sys
08:37:03.0194 0x0d34  C:\Windows\System32\drivers\nwifi.sys - ok
08:37:03.0194 0x0d34  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] C:\Windows\System32\drivers\ndisuio.sys
08:37:03.0194 0x0d34  C:\Windows\System32\drivers\ndisuio.sys - ok
08:37:03.0209 0x0d34  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] C:\Windows\System32\drivers\rspndr.sys
08:37:03.0209 0x0d34  C:\Windows\System32\drivers\rspndr.sys - ok
08:37:03.0209 0x0d34  [ 81D93344A7FF90C1802A021727813E9F, F47F04BC385281E9C22C3A8A368C24237618A59A0814BF7D5A1AE088BDE66045 ] C:\Windows\System32\atiadlxx.dll
08:37:03.0209 0x0d34  C:\Windows\System32\atiadlxx.dll - ok
08:37:03.0225 0x0d34  [ 7ADD763FC46041180E83B4BFAEE593A5, 5D649E3D96EEF70F2C844198F2A58ACB680658C88B70978FA4A7BB060A717553 ] C:\Program Files (x86)\CyberLink\YouCam\CLWFLService.exe
08:37:03.0225 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\CLWFLService.exe - ok
08:37:03.0241 0x0d34  [ A2B0924D50F4435FD389499047CE553A, 8D16D5CAAD71AAAAA1479F8477D2928B66581C79932A49A21EDF93DB2803AB9C ] C:\Windows\SysWOW64\ntdll.dll
08:37:03.0241 0x0d34  C:\Windows\SysWOW64\ntdll.dll - ok
08:37:03.0241 0x0d34  [ 2B81776DA02017A37FE26C662827470E, A656353C50EE08422145D00DB9CFD9F6D3E664753B3C454B171E2A56A8AA94DC ] C:\Windows\System32\IPHLPAPI.DLL
08:37:03.0241 0x0d34  C:\Windows\System32\IPHLPAPI.DLL - ok
08:37:03.0256 0x0d34  [ DCE4C04469AE79ED613C250A7F129286, FC4806ED5C6077DFE331229BB6AC39F595F7BA47B437615C5066747C9D264A4E ] C:\Windows\System32\CX64PP19.dll
08:37:03.0256 0x0d34  C:\Windows\System32\CX64PP19.dll - ok
08:37:03.0256 0x0d34  [ B73A6E4B319AFFE64582AC5C1801BB3F, 274EEA0743DC659180E691654CBB17136E9E9D83B07E302B47EA5B103EA57710 ] C:\Windows\System32\nrpsrv.dll
08:37:03.0256 0x0d34  C:\Windows\System32\nrpsrv.dll - ok
08:37:03.0272 0x0d34  [ 4C9210E8F4E052F6A4EB87716DA0C24C, 460F7990BDADB7D58D6DC95B094D30A2EFDC4CEED444B18A2F36E8D9076FB8B9 ] C:\Windows\System32\winnsi.dll
08:37:03.0272 0x0d34  C:\Windows\System32\winnsi.dll - ok
08:37:03.0272 0x0d34  [ 87356377F31DA5F20A833811CD59499C, 4FEC1FD3AC4E4E34DCBC0109B248952604F438C84B1604EB9E2359FA721E23C4 ] C:\Windows\System32\eapphost.dll
08:37:03.0272 0x0d34  C:\Windows\System32\eapphost.dll - ok
08:37:03.0287 0x0d34  [ 3CC16A849E6092E43909F48EF0E60306, 610B576654A69415E4F2FEDB6BA384C77715944E4F89BD2821B311968CA8D810 ] C:\Windows\System32\dhcpcore6.dll
08:37:03.0287 0x0d34  C:\Windows\System32\dhcpcore6.dll - ok
08:37:03.0287 0x0d34  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] C:\Windows\System32\dnsrslvr.dll
08:37:03.0287 0x0d34  C:\Windows\System32\dnsrslvr.dll - ok
08:37:03.0303 0x0d34  [ 2A107B611C91CD256466C58C0D776E9D, 58EA4F6E0FE7EFB8D3024AE71EE16848C2A00BA5224C8054C80134F99D9A72AB ] C:\Windows\System32\wow64.dll
08:37:03.0303 0x0d34  C:\Windows\System32\wow64.dll - ok
08:37:03.0319 0x0d34  [ 7434E01FBCA3CB86539C39412A31D5E1, E40D5AEBB3A5D8F53C76E3FBF0C07B9C0227914C869F57622EA44A212383EE6D ] C:\Windows\System32\wow64win.dll
08:37:03.0319 0x0d34  C:\Windows\System32\wow64win.dll - ok
08:37:03.0319 0x0d34  [ 0F090A77E664CB0F70AB8D3B230B760C, A08EA0409B3BF88AB12792F721FA3A692BBE640DF2A06641E142843A7044EC5E ] C:\Windows\System32\wow64cpu.dll
08:37:03.0319 0x0d34  C:\Windows\System32\wow64cpu.dll - ok
08:37:03.0334 0x0d34  [ 76161B9D78A275F8F28DD67436013110, E4AE9648BDED9035D39DF20C3A6F453F67D49D7899038B21D88FFD4EFFCC4C08 ] C:\Windows\SysWOW64\kernel32.dll
08:37:03.0334 0x0d34  C:\Windows\SysWOW64\kernel32.dll - ok
08:37:03.0334 0x0d34  [ D07EB640618F96490DB88C3CE58DB608, 0C553971259632031E6856A94EEB937D571627FC7CF061CCFC040F4BF0CFF259 ] C:\Windows\System32\FWPUCLNT.DLL
08:37:03.0334 0x0d34  C:\Windows\System32\FWPUCLNT.DLL - ok
08:37:03.0350 0x0d34  [ 885D0942E0F28DB90919BE3129ECF279, 5A10D90EE656ECE3DCA174D6F924641509819FC20CB6EF46B5E1723E52DE85BE ] C:\Windows\System32\dnsext.dll
08:37:03.0350 0x0d34  C:\Windows\System32\dnsext.dll - ok
08:37:03.0350 0x0d34  [ DD7C31F12936795C0516BB6C59CBCCD8, 8DBA514CE6FF421F3D1C3C5B417462681A61D81B63289F91F50E448798B3F83C ] C:\Windows\System32\rastls.dll
08:37:03.0350 0x0d34  C:\Windows\System32\rastls.dll - ok
08:37:03.0365 0x0d34  [ 6F3C559B82F2912354BE5B098744CC8C, EB64E5C02C81588921A65194E1256E80699A1317E7D9A57395CD38C2639C8B08 ] C:\Windows\System32\WMALFXGFXDSP.dll
08:37:03.0365 0x0d34  C:\Windows\System32\WMALFXGFXDSP.dll - ok
08:37:03.0365 0x0d34  [ 461B713DE7F353C6447B744F1A049930, 3551C57128DAFA009C9DB3EE0D798D94B269D1605F74897566D7E79E5FDD437B ] C:\Windows\SysWOW64\KernelBase.dll
08:37:03.0365 0x0d34  C:\Windows\SysWOW64\KernelBase.dll - ok
08:37:03.0381 0x0d34  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3, 01EB95FA3943CF3C6B1A21E473A5C3CB9FCBCE46913B15C96CAC14E4F04075B4 ] C:\Windows\SysWOW64\user32.dll
08:37:03.0381 0x0d34  C:\Windows\SysWOW64\user32.dll - ok
08:37:03.0381 0x0d34  [ F568F7C08458D69E4FCD8675BBB107E4, A5FA25ECF248999A68CCECFBB508BFA1ADD18A23E20A9A9081A87C41CAAA36C0 ] C:\Windows\System32\dhcpcsvc.dll
08:37:03.0381 0x0d34  C:\Windows\System32\dhcpcsvc.dll - ok
08:37:03.0397 0x0d34  [ 3C06D5A929B798D0B13F6481242A0FD2, CE6127A31AB09E21A912CA16E4BDF663E9D05C254CCF9090A8B5A9A2E055EFF3 ] C:\Windows\System32\dhcpcsvc6.dll
08:37:03.0397 0x0d34  C:\Windows\System32\dhcpcsvc6.dll - ok
08:37:03.0412 0x0d34  [ 980305AC3AF53C1964A11190451ABB32, D0FE0845F9FB51B1F556E3A1D327F30603033A1FAFC17DFA3D5047B93C7D4D82 ] C:\Windows\SysWOW64\gdi32.dll
08:37:03.0412 0x0d34  C:\Windows\SysWOW64\gdi32.dll - ok
08:37:03.0412 0x0d34  [ CC23295DA8F7B5C53F93804D2F5D30EB, B290D96C40FBA934DE6CFF82D9BBA6780922CC5012C61599BD5006DAEDC82DDB ] C:\Windows\SysWOW64\lpk.dll
08:37:03.0412 0x0d34  C:\Windows\SysWOW64\lpk.dll - ok
08:37:03.0428 0x0d34  [ A5F833506BF6A1B5D693E1499DEE2444, 045874B7D37F49216E37D551076FF440E29DB5196564E714207DF753DF7FDDEE ] C:\Windows\SysWOW64\usp10.dll
08:37:03.0428 0x0d34  C:\Windows\SysWOW64\usp10.dll - ok
08:37:03.0428 0x0d34  [ 9DC80A8AAAAAC397BDAB3C67165A824E, 051636BFDFF7AB0E4191354E846BD0DACCA1A01FCC13C1AFED91D8DBFE17127A ] C:\Windows\SysWOW64\msvcrt.dll
08:37:03.0428 0x0d34  C:\Windows\SysWOW64\msvcrt.dll - ok
08:37:03.0443 0x0d34  [ 4BE4D8091FBE4DE496B3EFBA206F29AE, EEC8BFA0EFEF3FBA0CA2FF78B4ACE34269488B7B97FEACC1D20CF7DC9D112E45 ] C:\Windows\System32\mfplat.dll
08:37:03.0443 0x0d34  C:\Windows\System32\mfplat.dll - ok
08:37:03.0443 0x0d34  [ 6A84E68B538B8B04608BF2F0D426CE6F, 59CE1C06364D1BBEE853DA4AEC1E8B678D6E181723ACCF6DB9F9776CAD47BBDA ] C:\Windows\System32\raschap.dll
08:37:03.0443 0x0d34  C:\Windows\System32\raschap.dll - ok
08:37:03.0459 0x0d34  [ D67472125471784DE7147946EDA25FEB, F41960118F412B6CA5E80AE5E8DB9AECDD043A7DB34388FF57C6F9C5A0056F91 ] C:\Windows\SysWOW64\advapi32.dll
08:37:03.0459 0x0d34  C:\Windows\SysWOW64\advapi32.dll - ok
08:37:03.0459 0x0d34  [ D8BED6BA298DBAAF6F3D746739FCD333, 83A40845EC448943F4737B730F95860983919677D84922E44EED4BECDFA71A31 ] C:\Windows\SysWOW64\rpcrt4.dll
08:37:03.0459 0x0d34  C:\Windows\SysWOW64\rpcrt4.dll - ok
08:37:03.0475 0x0d34  [ CFC97F07904067A1E5FAE195D534DA3A, EB4D2D127312EB09E2ACCA3276779E80F90FAF77322684BABF72B8EC6E1F906C ] C:\Windows\SysWOW64\sechost.dll
08:37:03.0475 0x0d34  C:\Windows\SysWOW64\sechost.dll - ok
08:37:03.0490 0x0d34  [ 10826DA2FC073702AEAB93AF3D73B066, 1B55FE13B52109F1E427FCE6F64A02CF37AB6732BE4C968479BD871DE1D38A06 ] C:\Windows\SysWOW64\sspicli.dll
08:37:03.0490 0x0d34  C:\Windows\SysWOW64\sspicli.dll - ok
08:37:03.0490 0x0d34  [ F08F6FCD09F9BE94C37ACC1B344685FF, DE48D766258B46EFEAB16579421C4BD97ACC6883F782D00E9857F4A0CE7E8A34 ] C:\Windows\SysWOW64\cryptbase.dll
08:37:03.0490 0x0d34  C:\Windows\SysWOW64\cryptbase.dll - ok
08:37:03.0506 0x0d34  [ 386BF6FD9FC562B1A5558C49E1C3A6FB, 6ED5A61C911845027D0A67B2473603D87E79DB88F0C0C699CBB2D1639C1DFDA5 ] C:\Windows\SysWOW64\shell32.dll
08:37:03.0506 0x0d34  C:\Windows\SysWOW64\shell32.dll - ok
08:37:03.0506 0x0d34  [ 9FCA3A84338ADEF2AFF67CDA46EF8539, 087DF72096852AE98C56990EE6E68835BE95E7E49ECDDE8B54DAC11C9E07FE94 ] C:\Windows\System32\umb.dll
08:37:03.0506 0x0d34  C:\Windows\System32\umb.dll - ok
08:37:03.0521 0x0d34  [ A648C4A06DE367065B24056D067B4460, 2412487D65A833DDD9AB17D039515CC08DA22D006259EC4B03E42475FAFFD2AD ] C:\Windows\System32\wlanmsm.dll
08:37:03.0521 0x0d34  C:\Windows\System32\wlanmsm.dll - ok
08:37:03.0521 0x0d34  [ 06A1386B6E3A0CBC368665C1840906F4, C10BCA5092A0B3F9435CE4D65C7449528C89F5C5243B410878D2EBF516DA2FB2 ] C:\Windows\System32\wlansec.dll
08:37:03.0521 0x0d34  C:\Windows\System32\wlansec.dll - ok
08:37:03.0537 0x0d34  [ 73FCB7919DEE80EE556F2E498594EBAE, D0F7A0AD3BC33263E9C2CF9787DD326436F9E0C9F5031D769F8A43C64C08A762 ] C:\Windows\System32\onex.dll
08:37:03.0537 0x0d34  C:\Windows\System32\onex.dll - ok
08:37:03.0537 0x0d34  [ 65522E77A1360DBC8D199DA3BF5EFFE4, E9D748070FA478A3D37F15049F998D340885C0DC5FCE03BFCE5D521C9EBA7350 ] C:\Windows\System32\eappprxy.dll
08:37:03.0537 0x0d34  C:\Windows\System32\eappprxy.dll - ok
08:37:03.0553 0x0d34  [ 0D753307D274F3688BD21C377B616700, 5DD08E77A11F2561FB96BA212FDDFE21D4394C69C34C3EB88F7F5CD068EE55BF ] C:\Windows\System32\eappcfg.dll
08:37:03.0553 0x0d34  C:\Windows\System32\eappcfg.dll - ok
08:37:03.0553 0x0d34  [ 730BF204A595D5B6D7DC57A247CC741C, 264C6901F4A49B738BBD04BCA1783DEE892885BADE9085B0AEA40BAE7CC0A218 ] C:\Windows\System32\wlgpclnt.dll
08:37:03.0553 0x0d34  C:\Windows\System32\wlgpclnt.dll - ok
08:37:03.0568 0x0d34  [ 97E43F324BE1503CB2FFB058534688DA, 50C781DF38D0D38C9A5420AB1FFF8672DC13FD1ED8E9F5432B4BA3077A7435D5 ] C:\Windows\System32\l2gpstore.dll
08:37:03.0568 0x0d34  C:\Windows\System32\l2gpstore.dll - ok
08:37:03.0568 0x0d34  [ 7D5645EE0EA77D539828433D9B95F5EB, EEF81E9B2205FC456DB6095AD0AEAB38BB131D3BCD090EA6CD91D5568ACAFB7F ] C:\Windows\System32\WinSCard.dll
08:37:03.0568 0x0d34  C:\Windows\System32\WinSCard.dll - ok
08:37:03.0584 0x0d34  [ 7F1B4C6FF3B85F9ADF74055187B8A22C, CC95DA5662638AACBE9643DCB236464C2C2095A8D5CDC8A747045870BE9D0E7D ] C:\Windows\System32\wlanutil.dll
08:37:03.0584 0x0d34  C:\Windows\System32\wlanutil.dll - ok
08:37:03.0599 0x0d34  [ 0E3A7EC2B9590EA7767BBB1823630DEA, 6858B7050465DB8505CF9E932868B123B925376C05363EA5A9198B2AE15CF728 ] C:\Windows\System32\msxml6.dll
08:37:03.0599 0x0d34  C:\Windows\System32\msxml6.dll - ok
08:37:03.0599 0x0d34  [ 03706015DB44368375AEBE6339490E66, 02EB28B5156E320C1EBABC03D37E94EB770A721B99E1DD276F8DC2A50D76C381 ] C:\Windows\System32\netcfgx.dll
08:37:03.0599 0x0d34  C:\Windows\System32\netcfgx.dll - ok
08:37:03.0615 0x0d34  [ 8CC3C111D653E96F3EA1590891491D71, 1D326D7D116D76876EE2B14A5BFB7B4328E21DB9B5AAAB9CB67F8EFB93924230 ] C:\Windows\SysWOW64\shlwapi.dll
08:37:03.0615 0x0d34  C:\Windows\SysWOW64\shlwapi.dll - ok
08:37:03.0615 0x0d34  [ 928CF7268086631F54C3D8E17238C6DD, F058FAFB04E7EBD5CADE9B48195B7AA7C3508F332A89F5E6E5F3F071E8CADD4A ] C:\Windows\SysWOW64\ole32.dll
08:37:03.0615 0x0d34  C:\Windows\SysWOW64\ole32.dll - ok
08:37:03.0631 0x0d34  [ BC414631876B2F28B8DAB08E849C12C5, 5973654AA3E90E6B699B0A43F645B893D95BAA803129B6967D746C8239AB26E3 ] C:\Windows\System32\ktmw32.dll
08:37:03.0631 0x0d34  C:\Windows\System32\ktmw32.dll - ok
08:37:03.0631 0x0d34  [ 6C765E82B57F2E66CE9C54AC238471D9, 97F410023F5C08B4BC5DBF89A642200E76F4025ADD9707C24FD89D673675BB43 ] C:\Windows\SysWOW64\oleaut32.dll
08:37:03.0631 0x0d34  C:\Windows\SysWOW64\oleaut32.dll - ok
08:37:03.0646 0x0d34  [ 945E54F23C72D37B8CD1987AF0DB63BF, C2B217C94DBCA0A31ED834B9D492B53B25B235DDD02B1D1200E76609D32772EA ] C:\Windows\System32\fveapi.dll
08:37:03.0646 0x0d34  C:\Windows\System32\fveapi.dll - ok
08:37:03.0646 0x0d34  [ 891ECFD08E2C538B7948CBC45106D697, 628D0D618FF3A70E9FBE3B2C7206C9365ED2297784A5F10FFA05BD2C56657013 ] C:\Windows\System32\fvecerts.dll
08:37:03.0646 0x0d34  C:\Windows\System32\fvecerts.dll - ok
08:37:03.0662 0x0d34  [ 694865362F0965779F92BCFE97712323, 825EB75E37AFE9B738869FB5D95020D4F44AD419C2F6C5A658F82A5242FDEF6C ] C:\Windows\System32\tbs.dll
08:37:03.0662 0x0d34  C:\Windows\System32\tbs.dll - ok
08:37:03.0662 0x0d34  [ 8269210DAF3B12BC8300631B28A2A442, EABEB792C2EA8D4A1A7B13281CF557C194D5667AE0BA2A2D5664908D8269113D ] C:\Windows\System32\wiarpc.dll
08:37:03.0662 0x0d34  C:\Windows\System32\wiarpc.dll - ok
08:37:03.0677 0x0d34  [ EE19C85CA685A275BE346EC41F1870F9, F071D88C38C62E9D88DDE29F451B2B581499758A7E60BDA6DED3376280C5A635 ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_72d576ad8665e853\GdiPlus.dll
08:37:03.0677 0x0d34  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_72d576ad8665e853\GdiPlus.dll - ok
08:37:03.0693 0x0d34  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7, 4BC5A1279885EEFBEB27333AF719622A5FCDD9606697692C1978E434CE264D80 ] C:\Windows\System32\taskcomp.dll
08:37:03.0693 0x0d34  C:\Windows\System32\taskcomp.dll - ok
08:37:03.0693 0x0d34  [ A6F09E5669D9A19035F6D942CAA15882, 68C8AF0CC1923E3A7245392F2480EE665D265DF300A609D2540BF7C6D9C1A1BE ] C:\Windows\SysWOW64\imm32.dll
08:37:03.0693 0x0d34  C:\Windows\SysWOW64\imm32.dll - ok
08:37:03.0709 0x0d34  [ C9618BC9B2B0FD7C1138D8774795A79B, 0AC170669C2626519FA7A745C56BFBA6B83B8537488F5B9EB7BA72448E5E7A43 ] C:\Windows\SysWOW64\msctf.dll
08:37:03.0709 0x0d34  C:\Windows\SysWOW64\msctf.dll - ok
08:37:03.0709 0x0d34  [ FF5688D309347F2720911D8796912834, 3B0D73C50D40A6F42629B7750F99F656BF5C1C50237D5F98B6C0F2CE5E2DA359 ] C:\Windows\SysWOW64\clbcatq.dll
08:37:03.0709 0x0d34  C:\Windows\SysWOW64\clbcatq.dll - ok
08:37:03.0724 0x0d34  [ 43964FA89CCF97BA6BE34D69455AC65F, 10E3B89A5470E1BB6F73382135DD2352F5073C1EE8485D7476CFB5122D4AAA2F ] C:\Windows\SysWOW64\uxtheme.dll
08:37:03.0724 0x0d34  C:\Windows\SysWOW64\uxtheme.dll - ok
08:37:03.0724 0x0d34  [ 6B07EE9C7668D2C704563DA838026828, CFC0CA7F9F3ADF14FBA9AF6182F0260CF6B6C088F3A9DF6FD20B51B483385BBB ] C:\Windows\SysWOW64\cryptsp.dll
08:37:03.0724 0x0d34  C:\Windows\SysWOW64\cryptsp.dll - ok
08:37:03.0740 0x0d34  [ ED8EC63F7522DF4852147C84EC62C36A, 75633011CD28DCBD4834211A9D415F17DE15BFCD80FB9FF6CE25CBBD4E9899AF ] C:\Windows\SysWOW64\rsaenh.dll
08:37:03.0740 0x0d34  C:\Windows\SysWOW64\rsaenh.dll - ok
08:37:03.0740 0x0d34  [ 5997D769CDB108390DCFAEBF442BF816, 0E25CA984C0EEB629184423FAA9BC6D4356DF9A93F281E06DC83B4AC638AEC4A ] C:\Windows\SysWOW64\RpcRtRemote.dll
08:37:03.0740 0x0d34  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
08:37:03.0755 0x0d34  [ CA257FDBA45DEE8D3DCDD9C4A62EF133, 1887A7EE7354017B1E91F2DC20A6493A114CA2D510BCE24EBB67937793A79ECF ] C:\Program Files (x86)\CyberLink\YouCam\subsys\PyFaceLogin\CLWFL.dll
08:37:03.0755 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\subsys\PyFaceLogin\CLWFL.dll - ok
08:37:03.0771 0x0d34  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] C:\Windows\System32\spoolsv.exe
08:37:03.0771 0x0d34  C:\Windows\System32\spoolsv.exe - ok
08:37:03.0771 0x0d34  [ 7069AAB8536F29ED7323140973A2894B, 04B7FB6C64BFA3B80549F35CEF36D5DAE5D19A40E42444B3665B6BEFDF98EB5F ] C:\Windows\SysWOW64\msdmo.dll
08:37:03.0771 0x0d34  C:\Windows\SysWOW64\msdmo.dll - ok
08:37:03.0787 0x0d34  [ 919001D2BB17DF06CA3F8AC16AD039F6, 5169ACFBE9E9D4C4012773ECDD28231C952675EF0C272A40F226E7B5D671B18B ] C:\Windows\SysWOW64\sxs.dll
08:37:03.0787 0x0d34  C:\Windows\SysWOW64\sxs.dll - ok
08:37:03.0787 0x0d34  [ 39C5F32747B3414D1BB216FDB1DEFC58, 6FAE64CB9748304090113903A5AE9E7154BE16BA2EEA7AB3EF04AB9D79B81380 ] C:\Windows\SysWOW64\dwmapi.dll
08:37:03.0787 0x0d34  C:\Windows\SysWOW64\dwmapi.dll - ok
08:37:03.0802 0x0d34  [ F436E847FA799ECD75AD8C313673F450, 3C8BF3F0C08C7FA8DE5CD9C60AD9D00B742E84EB1FEBEEBA0F7159844BAAA471 ] C:\Windows\SysWOW64\cfgmgr32.dll
08:37:03.0802 0x0d34  C:\Windows\SysWOW64\cfgmgr32.dll - ok
08:37:03.0802 0x0d34  [ CC5BF60E9D3F181C0B62AC91AD8634B8, AFF680E62D989A62CBDEC2BF70B6D17F7615F9826EAEE0C8A524AF80F9FF862D ] C:\Windows\SysWOW64\qcap.dll
08:37:03.0802 0x0d34  C:\Windows\SysWOW64\qcap.dll - ok
08:37:03.0818 0x0d34  [ C335EC1182AC10B188705554E0BC1186, 963CD11CEF7A79559361134FDF9C07B8EA829A40D3996D77E95C291DD17AAD2B ] C:\Windows\SysWOW64\msvfw32.dll
08:37:03.0818 0x0d34  C:\Windows\SysWOW64\msvfw32.dll - ok
08:37:03.0818 0x0d34  [ D5AEFAD57C08349A4393D987DF7C715D, C36A45BC2448DF30CD17BD2F8A17FC196FAFB685612CACCEB22DC7B58515C201 ] C:\Windows\SysWOW64\winmm.dll
08:37:03.0818 0x0d34  C:\Windows\SysWOW64\winmm.dll - ok
08:37:03.0833 0x0d34  [ 75F5E1FE8D55CF8E577E0EC5F2290D3F, F4E2C81F0834018052A481AE8D7DF4780302A6844160CCDC09F7D82D3B992BDE ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll
08:37:03.0833 0x0d34  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll - ok
08:37:03.0833 0x0d34  [ 702254574E7E52052DE39408457B7149, 645CA9E88DA21C63710A04A0F54421018DF415A3D612112C71A255C49325C082 ] C:\Windows\SysWOW64\version.dll
08:37:03.0833 0x0d34  C:\Windows\SysWOW64\version.dll - ok
08:37:03.0849 0x0d34  [ 5C3BA07E215B4F693E7D78D6F4980D98, 7DBA5D646583D8B4170ED7EC204C17E71B8162B72C0A32F2BD9E8D899A692C5A ] C:\Windows\SysWOW64\quartz.dll
08:37:03.0849 0x0d34  C:\Windows\SysWOW64\quartz.dll - ok
08:37:03.0849 0x0d34  [ 7448354E89900479C227DD3118EBD6FD, 2169D58212C2BB0BAD45B81CDB8FE745D2C06383DCFE69F35AFBE0ADD68545B8 ] C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUITransfer.dll
08:37:03.0849 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUITransfer.dll - ok
08:37:03.0865 0x0d34  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] C:\Windows\System32\drivers\bowser.sys
08:37:03.0865 0x0d34  C:\Windows\System32\drivers\bowser.sys - ok
08:37:03.0865 0x0d34  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] C:\Windows\System32\drivers\mpsdrv.sys
08:37:03.0865 0x0d34  C:\Windows\System32\drivers\mpsdrv.sys - ok
08:37:03.0880 0x0d34  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] C:\Windows\System32\drivers\mrxsmb.sys
08:37:03.0880 0x0d34  C:\Windows\System32\drivers\mrxsmb.sys - ok
08:37:03.0896 0x0d34  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] C:\Windows\System32\drivers\mrxsmb10.sys
08:37:03.0896 0x0d34  C:\Windows\System32\drivers\mrxsmb10.sys - ok
08:37:03.0896 0x0d34  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] C:\Windows\System32\drivers\mrxsmb20.sys
08:37:03.0896 0x0d34  C:\Windows\System32\drivers\mrxsmb20.sys - ok
08:37:03.0911 0x0d34  [ 863ABB8788D7A4562D845A70B3CCA426, D67A5313750093AD58FE44FCDE2F255AEA58D4051AE3BEC73ACFFA5C7C8AA04B ] C:\Program Files (x86)\CyberLink\YouCam\MFC71u.dll
08:37:03.0911 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\MFC71u.dll - ok
08:37:03.0911 0x0d34  [ CA2F560921B7B8BE1CF555A5A18D54C3, C4D4339DF314A27FF75A38967B7569D9962337B8D4CD4B0DB3ABA5FF72B2BFBB ] C:\Program Files (x86)\CyberLink\YouCam\msvcr71.dll
08:37:03.0911 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\msvcr71.dll - ok
08:37:03.0927 0x0d34  [ A94DC60A90EFD7A35C36D971E3EE7470, 6C483CBE349863C7DCF6F8CB7334E7D28C299E7D5AA063297EA2F62352F6BDD9 ] C:\Program Files (x86)\CyberLink\YouCam\msvcp71.dll
08:37:03.0927 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\msvcp71.dll - ok
08:37:03.0943 0x0d34  [ 8B8D1CEF498678CAB9DF17145D34BC64, B833545CC592BBF77F4F3E6BA9961D10673AA3F4E2CF6369F6A3BDAF1BC02026 ] C:\Windows\SysWOW64\msxml3.dll
08:37:03.0943 0x0d34  C:\Windows\SysWOW64\msxml3.dll - ok
08:37:03.0943 0x0d34  [ C5679E5186B2FC95BC76A8A9870D5456, 70AC61850B811A0A902532F098AE1D5DF4622455E56C78B89D4ABDBE4A061A48 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
08:37:03.0943 0x0d34  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
08:37:03.0958 0x0d34  [ 454BF1E3B844306E764ADC0EA7B6E64C, 5E46DEBF75EEEF03410CA8B9C52E2577A19313104EBB7A7DE8656519285C2C36 ] C:\Windows\SysWOW64\crypt32.dll
08:37:03.0958 0x0d34  C:\Windows\SysWOW64\crypt32.dll - ok
08:37:03.0958 0x0d34  [ 938F39B50BAFE13D6F58C7790682C010, 902000EE51EFEABAF6A4B30F880AA37083D2232C6FC622CA513C4A823390FEDA ] C:\Windows\SysWOW64\msasn1.dll
08:37:03.0958 0x0d34  C:\Windows\SysWOW64\msasn1.dll - ok
08:37:03.0974 0x0d34  [ E365C7B3EBB96451D3C9DF6B6B6900C2, 8A3C9B274969EC65BA9B968AA6910216464320A5D0D3A7E4E24B43A746D4728A ] C:\Windows\SysWOW64\wintrust.dll
08:37:03.0974 0x0d34  C:\Windows\SysWOW64\wintrust.dll - ok
08:37:03.0974 0x0d34  [ CDBE9690CF2B8409FACAD94FAC9479C9, 8E7FE1A1F3550C479FFD86A77BC9D10686D47F8727025BB891D8F4F0259354C8 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
08:37:03.0974 0x0d34  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
08:37:03.0989 0x0d34  [ B2D5E019A17E605DCCC29CF5F72858C3, CB39ED6A5792E47E5EAE31CB3A928EF9B39101CD18528BE385ABC1E7464F54B8 ] C:\Program Files (x86)\CyberLink\YouCam\Custom\Lang\ENU\IM.dll
08:37:03.0989 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\Custom\Lang\ENU\IM.dll - ok
08:37:03.0989 0x0d34  [ A054EA8FBE16D4D34F06D81A4F0088E2, 1CD4EECFDA374C8A7B8AD4E664DC057B9C75813AF776A616DC6D845905567CBD ] C:\Windows\SysWOW64\WindowsCodecs.dll
08:37:03.0989 0x0d34  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
08:37:04.0005 0x0d34  [ 20F6F19FE9E753F2780DC2FA083AD597, 5106F0F9BA8A7DE49260A9B13BF8EC45ACA6A166FA8B10B4F69C3BB54F6840A1 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:37:04.0005 0x0d34  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
08:37:04.0005 0x0d34  [ C67F8A962B2534224D5908D16D2AD3CE, CAC1821F5E867285638AEE7AE33CE574BCCF16277AC5AD805650B48F7759B4B4 ] C:\Windows\System32\wfapigp.dll
08:37:04.0005 0x0d34  C:\Windows\System32\wfapigp.dll - ok
08:37:04.0021 0x0d34  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC, 372AF797353F9335915CD06D4076BAB8410775DCAF2DAC0593197D7C41BBFFB2 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
08:37:04.0021 0x0d34  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
08:37:04.0036 0x0d34  [ 1834B31C749B86DAC233BBBA1C03BC48, 27FCA9196842C0BB53CCAD895870A0EB10D2F8ED67E5486A4437067BD4BC4448 ] C:\Windows\System32\mscms.dll
08:37:04.0036 0x0d34  C:\Windows\System32\mscms.dll - ok
08:37:04.0036 0x0d34  [ 5AA945234E9D4CCE4F715276B9AA712C, 65165BD131056816F009D987FC78AC86FFE0C3C38A27E73F873586B7FF4D59CF ] C:\Windows\System32\imageres.dll
08:37:04.0036 0x0d34  C:\Windows\System32\imageres.dll - ok
08:37:04.0052 0x0d34  [ 233A10D4B3F6897899112E4EC60F1906, 1F7E768E57064938114DF2EFC5B219EB0D30A7D9E574924E9CED054462505AF0 ] C:\Windows\WindowsMobile\wmdcBase.exe
08:37:04.0052 0x0d34  C:\Windows\WindowsMobile\wmdcBase.exe - ok
08:37:04.0052 0x0d34  [ C9564CF4976E7E96B4052737AA2492B4, C3AC989C8489A23BB96400B1856F5325FFC67E844F04651EA5D61BC20A991C6D ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
08:37:04.0052 0x0d34  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
08:37:04.0067 0x0d34  [ DDDD1D04D5F4360371BC99C7C476F70D, D4400B6DF35296E6BE1F753588EE326A515658A7A0F8DC670552DEC64ACDE55A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
08:37:04.0067 0x0d34  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
08:37:04.0067 0x0d34  [ DC70310B3D079D667B67F0C7067209F3, F1FC98E7E9DD60BC1019E2960EE54E50946128D1C6699DB0BB44EBB6C2691922 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
08:37:04.0067 0x0d34  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
08:37:04.0083 0x0d34  [ 7FF15A4F092CD4A96055BA69F903E3E9, 1B594E6D057C632ABB3A8CF838157369024BD6B9F515CA8E774B22FE71A11627 ] C:\Windows\SysWOW64\ws2_32.dll
08:37:04.0083 0x0d34  C:\Windows\SysWOW64\ws2_32.dll - ok
08:37:04.0083 0x0d34  [ DF13A51A5C591887D2EC6AE64CEED0FA, DFD503AEBCAA056B2B0E669ACA52F6D26F4E6892F2DCFCCD902752C23A621653 ] C:\Windows\SysWOW64\wsock32.dll
08:37:04.0083 0x0d34  C:\Windows\SysWOW64\wsock32.dll - ok
08:37:04.0099 0x0d34  [ 6377051C63D5552A311935C67E9FDFDC, 3FB82988AAB66813567E8DB951D4EE87F156201070F005FDBF52EF998A323E65 ] C:\Windows\SysWOW64\nsi.dll
08:37:04.0099 0x0d34  C:\Windows\SysWOW64\nsi.dll - ok
08:37:04.0114 0x0d34  [ 10FB16B50AFFDA6D44588F3C445DC273, 6CDA17DA9B44D11E69F7C6682FA633EA75731623BB21B429A0FE2086ED4495A7 ] C:\Windows\SysWOW64\setupapi.dll
08:37:04.0114 0x0d34  C:\Windows\SysWOW64\setupapi.dll - ok
08:37:04.0114 0x0d34  [ 2EEFF4502F5E13B1BED4A04CCAD64C08, 209FF1B6D46D1AC99518FCF54F2F726143B2DBF2C5FDA90212FBEF7526F7CBF5 ] C:\Windows\SysWOW64\devobj.dll
08:37:04.0114 0x0d34  C:\Windows\SysWOW64\devobj.dll - ok
08:37:04.0130 0x0d34  [ 6A6B2EE4565A178035BE2A4FF6F2C968, E2E231F1C2E2CE19583483ACC53318651FA7CA2DE46BCB89B4CBF97CA0525122 ] C:\Windows\SysWOW64\wtsapi32.dll
08:37:04.0130 0x0d34  C:\Windows\SysWOW64\wtsapi32.dll - ok
08:37:04.0130 0x0d34  [ D15618A0FF8DBC2C5BF3726BACC75A0B, ADD81EA1D208907D67802F0E96EC0327BA89021F870BA22B9C7E3A19013A6AE7 ] C:\Windows\SysWOW64\userenv.dll
08:37:04.0130 0x0d34  C:\Windows\SysWOW64\userenv.dll - ok
08:37:04.0145 0x0d34  [ C733D233B623B7FFCE5031E4B756EE26, 33CC8B140B0E4A9B702E3468BE2646AEE4273F20C6EA5BAC6C3D8FC8EDEF0881 ] C:\Windows\SysWOW64\profapi.dll
08:37:04.0145 0x0d34  C:\Windows\SysWOW64\profapi.dll - ok
08:37:04.0145 0x0d34  [ 3B9E8E49E86D22690E08B1350FA9A4D4, D18F9DABCD3B9D43695F382CD4AED42507A4316A03E7C1521DC34463DEB4EF5A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
08:37:04.0145 0x0d34  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
08:37:04.0161 0x0d34  [ 4004299B7AF4CBFF6540F1798899A11F, 5DD3AE149B7228A769F2FE95355795AC98ACD8CDFB78954A423A357F717203C3 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
08:37:04.0161 0x0d34  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
08:37:04.0161 0x0d34  [ 152F8772D5A5CD7883305C3B8D28470E, 8353B56461E889D277B6FB7DBF97D7C60AD11748C0818FBA9D80DCE5D89C6CC4 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
08:37:04.0161 0x0d34  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
08:37:04.0177 0x0d34  [ 258D35F5F5F5F3F6045488ECDC14FAAB, 702ED81418D454D840F1200CF50574BD0BEBE4CD4B8D46BE187550D95412489D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
08:37:04.0177 0x0d34  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
08:37:04.0192 0x0d34  [ 2147C5330F983D76A36B73F4A804F778, 4B201E86B701FEA4754139BB3873DEB132932732F1B8EEEAE7C9DB891CC64D2E ] C:\Windows\System32\RdpGroupPolicyExtension.dll
08:37:04.0192 0x0d34  C:\Windows\System32\RdpGroupPolicyExtension.dll - ok
08:37:04.0192 0x0d34  [ 7EF0C8A9A1A57756F4868E3693173C08, FB22E763D114D4943DE6C5256FC2D92F8C612400861641306BF4E076363CD473 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
08:37:04.0192 0x0d34  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
08:37:04.0208 0x0d34  [ 38711BB50D27B7145186F61CE31B3336, 43BD84F0C3E277638573D581EF1A8B89ADA6792F91E0B8284147E6FBE9B6856F ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icuin40.dll
08:37:04.0208 0x0d34  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icuin40.dll - ok
08:37:04.0208 0x0d34  [ 9E515554A3EA7B70C975F61971C6977D, 610D61391E06C8F67DA4A92E8279ED5955A29216C2BF3D5211336E4DAF952753 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icuuc40.dll
08:37:04.0208 0x0d34  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icuuc40.dll - ok
08:37:04.0223 0x0d34  [ D30DD708F05FB85EF2C53727ED3573D2, A8AA54920F6AC9B847D61AAFD5C6595AF25C793DCD4F6C69CB487C2F8EC4AB8E ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt40.dll
08:37:04.0223 0x0d34  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt40.dll - ok
08:37:04.0223 0x0d34  [ 3FD15B4611D9BDA3F8013548C0ECAECA, B47A8D9985D9B71EB870816A0AB2B6403D394CCBDF7DE5378D5721D58D68D28D ] C:\Windows\SysWOW64\ntmarta.dll
08:37:04.0223 0x0d34  C:\Windows\SysWOW64\ntmarta.dll - ok
08:37:04.0239 0x0d34  [ A8BB45F9ECAD993461E0FEF8E2A99152, ACB756EA54E71F124D928829666B5B439785593877FF7C0C76ADCF954F4E6C94 ] C:\Windows\SysWOW64\Wldap32.dll
08:37:04.0239 0x0d34  C:\Windows\SysWOW64\Wldap32.dll - ok
08:37:04.0239 0x0d34  [ E94C583CDE2348950155F2AF2876F34D, D00C7E0D665E467B712C68A446CC5BE14FDA743A2301878B3CEB72CDD0A8B8E7 ] C:\Windows\SysWOW64\mswsock.dll
08:37:04.0239 0x0d34  C:\Windows\SysWOW64\mswsock.dll - ok
08:37:04.0255 0x0d34  [ EE5C8E27C37B79CB54A2FCEEED2DC262, 0A5E200FD65A491756B951A4A0ED39B88B7B313E97C2BBF3C91AC4C290772BB7 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
08:37:04.0255 0x0d34  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
08:37:04.0270 0x0d34  [ 9BF7ED72685E81BF8763B1585D40C57F, 69C463A4284A4AC8968F3D1690E4F1560486AB7D17A704F705D6A8896915A3B4 ] C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
08:37:04.0270 0x0d34  C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe - ok
08:37:04.0270 0x0d34  [ 3888D02CE6413C2A06D903DE1C778BF5, 4158B80F3F481C8275DBA1361B49C34025F4B6DC154DB8237AB69665727516F7 ] C:\Windows\SysWOW64\msi.dll
08:37:04.0270 0x0d34  C:\Windows\SysWOW64\msi.dll - ok
08:37:04.0286 0x0d34  [ CA9F7888B524D8100B977C81F44C3234, 57F3353F89724147D8AC8B69B12C1303DF26978309776F5F8CCF074526A915D3 ] C:\Windows\SysWOW64\winhttp.dll
08:37:04.0286 0x0d34  C:\Windows\SysWOW64\winhttp.dll - ok
08:37:04.0286 0x0d34  [ FB19FC5951A88F3C523E35C2C98D23C0, FF0DB8BF0C68DA0D09272E8181D2B5409C8850BB2F31AEA3AC4CD14C5A420A59 ] C:\Windows\SysWOW64\webio.dll
08:37:04.0286 0x0d34  C:\Windows\SysWOW64\webio.dll - ok
08:37:04.0301 0x0d34  [ 7A6986DD659B96398A11AF5173892715, FB7818952B9015F433418E7DC656A2C20CD682056AB981A55C1722020142D578 ] C:\Windows\SysWOW64\cabinet.dll
08:37:04.0301 0x0d34  C:\Windows\SysWOW64\cabinet.dll - ok
08:37:04.0301 0x0d34  [ A543AC1F7138376D778D630A35FCBC4C, 2D824C66A97FC8C39DAFA397CC47495B712D175EEF393486946DA8936BDD466A ] C:\Windows\SysWOW64\psapi.dll
08:37:04.0301 0x0d34  C:\Windows\SysWOW64\psapi.dll - ok
08:37:04.0317 0x0d34  [ 6F8E3B7B70E1BBA871212940C1FBDF60, 3F9D4EE64E4210340C6FEE0DE81BFE3C613DDBE608EC09D63817D24CE24BFC5E ] C:\Windows\SysWOW64\SensApi.dll
08:37:04.0317 0x0d34  C:\Windows\SysWOW64\SensApi.dll - ok
08:37:04.0317 0x0d34  [ 3065FF6794A7FDC882F0DA8B6230AB6E, F93F8B3E1B7CCD51C202E7F9327D50EEAC1DF2C85F4AF0314D5165A7F3342182 ] C:\Windows\SysWOW64\urlmon.dll
08:37:04.0317 0x0d34  C:\Windows\SysWOW64\urlmon.dll - ok
08:37:04.0333 0x0d34  [ 6A13B4F3B3F575F1E24B877B9359AABA, 676AD5F8F709D4A9DCE9938D82DEEE329C9A385A6969C169B3DF37AA75F1E4C7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
08:37:04.0333 0x0d34  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
08:37:04.0348 0x0d34  [ 2E33DFD10F28F86C3FC40EE123CC3904, 57C65671A04EFCA437A69E8E97B2FCA17897EE4608C7DB69F77D44FBD3490B50 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
08:37:04.0348 0x0d34  C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
08:37:04.0348 0x0d34  [ 1C60E09CA1C3A045BC4D367F67C915B7, DF1ED88CB57DA1AB1A4245AE0D5B42AFA3396EBF67B99411FFFB0DD06DE1AEAF ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
08:37:04.0348 0x0d34  C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
08:37:04.0364 0x0d34  [ 6951562DC4625EEFC6EACD52AD165866, 44A0B3EA0232D613A5B4115492DF2A7CEF25B35300E6A3E3E50C9544C5D1049E ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
08:37:04.0364 0x0d34  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
08:37:04.0364 0x0d34  [ 589CBC4989F750E1DA35625AB481CF43, B93E1B8C3775F9C995FD5451C685A06DEFD24AE1DF0DD99D19D5E4B9AC0010F9 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
08:37:04.0364 0x0d34  C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
08:37:04.0379 0x0d34  [ 3BE0D923AA45A4DBE091C2D84F0B4FE7, 603EEC55D6F646150FC3F0F2C939CFE434C02FC7A7AB23B1FEC8B5C77E4C8381 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
08:37:04.0379 0x0d34  C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
08:37:04.0379 0x0d34  [ 55A400FDB21D157E947A0EE65AEDB1B3, 8790D3A676007F086F6298C5BA65F8FE85FD150248FC9DCAF48BCCEAD1B31764 ] C:\Windows\SysWOW64\iertutil.dll
08:37:04.0379 0x0d34  C:\Windows\SysWOW64\iertutil.dll - ok
08:37:04.0395 0x0d34  [ 7AE80F921027CF88CB9D0433088A3E55, 7B495ADBA2DCBD873C918F5F6FF588BAFAB5AF29BE4E8BEF12A520947457B738 ] C:\Windows\SysWOW64\wininet.dll
08:37:04.0395 0x0d34  C:\Windows\SysWOW64\wininet.dll - ok
08:37:04.0395 0x0d34  [ 007863E45F25AA47A4C30D0930BBFD85, 60F2ABA40D520FCA2C57FA2DB72E111C14F21821DA17F662837506B80C269634 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
08:37:04.0395 0x0d34  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
08:37:04.0411 0x0d34  [ E227B810296AA27E6C69307A7B6456E5, 0FBF1C90362EA0D12B4B0E18A2FB3E3AC90E116C30BE4CBE95F12EB4882FB985 ] C:\Windows\SysWOW64\msxml6.dll
08:37:04.0411 0x0d34  C:\Windows\SysWOW64\msxml6.dll - ok
08:37:04.0411 0x0d34  [ DB1D6751689B4A7EE2439C64F2ADF1C9, C352B00DA59F80CD55338C27D6DD314B37401952863B70915501C6391EAEF2E7 ] C:\Windows\SysWOW64\credssp.dll
08:37:04.0411 0x0d34  C:\Windows\SysWOW64\credssp.dll - ok
08:37:04.0426 0x0d34  [ F2060A34C8A75BC24A9222EB4F8C07BD, 14EE16BF7E55716C1ADC3F133582A03339844088CF01E929B5A8FB8FA515F714 ] C:\Program Files (x86)\Bonjour\mDNSResponder.exe
08:37:04.0426 0x0d34  C:\Program Files (x86)\Bonjour\mDNSResponder.exe - ok
08:37:04.0442 0x0d34  [ A90DC9ABD65DB1A8902F361103029952, 26798758976CE53251AC342B966BE0363AE1794BD965C452F5DEBC33E18969F0 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
08:37:04.0442 0x0d34  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
08:37:04.0442 0x0d34  [ CFF35B879D1618D42C86644C717BA947, 1837275202628D3320867A3BF8CFDA15491730C4B74215F7C0D7E140BF01AC3C ] C:\Windows\SysWOW64\winnsi.dll
08:37:04.0442 0x0d34  C:\Windows\SysWOW64\winnsi.dll - ok
08:37:04.0457 0x0d34  [ 2FCA0D2C59A855C54BAFA22AA329DF0F, ED9D26F539065D62FCCEDEEC8E509B30F4D15F8DA586C1F657ACEFE9DABAACD0 ] C:\Windows\SysWOW64\netapi32.dll
08:37:04.0457 0x0d34  C:\Windows\SysWOW64\netapi32.dll - ok
08:37:04.0457 0x0d34  [ 20B3934DB73EABA2B49B7177873CB81F, 492EAC5C51472B43DE11825358AEC4B9E3A081DACFD7513C696D6FE40F302EE5 ] C:\Windows\SysWOW64\netutils.dll
08:37:04.0457 0x0d34  C:\Windows\SysWOW64\netutils.dll - ok
08:37:04.0473 0x0d34  [ 5CCDCD40E732D54E0F7451AC66AC1C87, 66F4DA105BD72E41250CD59E2B3CD931B47AC9FDB6C784B9E33C5EE1AC29841F ] C:\Windows\SysWOW64\srvcli.dll
08:37:04.0473 0x0d34  C:\Windows\SysWOW64\srvcli.dll - ok
08:37:04.0473 0x0d34  [ E5A4A1326A02F8E7B59E6C3270CE7202, DCB76016F9AC47E631540874DA208A089F9D529DA9628705A2869B954526BFE0 ] C:\Windows\SysWOW64\wkscli.dll
08:37:04.0473 0x0d34  C:\Windows\SysWOW64\wkscli.dll - ok
08:37:04.0489 0x0d34  [ 08DFDBD2FD4EA951DC46B1C7661ED35A, D926530C659DDAF80770663F46F1EFD94FFB4AAB475C4E3367CB531AF4A734E1 ] C:\Windows\SysWOW64\powrprof.dll
08:37:04.0489 0x0d34  C:\Windows\SysWOW64\powrprof.dll - ok
08:37:04.0489 0x0d34  [ A6B726DCA228F7878E38368A1BDC68BE, 30E8300B09B876E3D4B2A9215C9CC070EADF915E1268F425B6F8E0596A0D3539 ] C:\Windows\System32\cryptnet.dll
08:37:04.0489 0x0d34  C:\Windows\System32\cryptnet.dll - ok
08:37:04.0504 0x0d34  [ 73E8667A19FEEDD856DF2695E9E511D4, 68D66C36D1F293D10ADCC6A33C870F989A29743537592CF172F02E794BEAFD1C ] C:\Windows\SysWOW64\wship6.dll
08:37:04.0504 0x0d34  C:\Windows\SysWOW64\wship6.dll - ok
08:37:04.0504 0x0d34  [ B40420876B9288E0A1C8CCA8A84E5DC9, 0D3C73B45BC708D7B1E26DFB6D4F64031A998548FEA0FB5CE198ED716F7DC9A0 ] C:\Windows\SysWOW64\dnsapi.dll
08:37:04.0504 0x0d34  C:\Windows\SysWOW64\dnsapi.dll - ok
08:37:04.0520 0x0d34  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3, 2A610BEB16610FE2F2E9A50477A62A05481E8A5843A814955A0EDFF45D0304B3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
08:37:04.0520 0x0d34  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
08:37:04.0535 0x0d34  [ 81F6C1AE23B1C493D9E996C3103915D7, E22408B4D2EDE2F89E686A4FDCD4057BE27B86D050E9CB489F0FFB39C72AEC1D ] C:\Windows\SysWOW64\dhcpcsvc6.dll
08:37:04.0535 0x0d34  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
08:37:04.0535 0x0d34  [ 140692763A50BFFF322CDC076300587E, 4B6D9AE479EDDB429C1DE36406517FA65C2B3927B20792B3A27CEE05A6B7A3AB ] C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe
08:37:04.0535 0x0d34  C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe - ok
08:37:04.0551 0x0d34  [ D1DE1EAFDE97BE41CF6585027FF3E732, 76F17D4DF440D6734DC8157092D94EB18C2A73A0A49BEEA289E7B3EDE30E86A2 ] C:\Windows\SysWOW64\comdlg32.dll
08:37:04.0551 0x0d34  C:\Windows\SysWOW64\comdlg32.dll - ok
08:37:04.0551 0x0d34  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB, 018CB95A43CEA2063EA24691C71D51EF60D522C21502ABA8AD93876363D4B857 ] C:\Windows\System32\taskschd.dll
08:37:04.0551 0x0d34  C:\Windows\System32\taskschd.dll - ok
08:37:04.0567 0x0d34  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567, 426FB40A065FEF61980C803EF72D0D326C623340C3AE99CA8AFFDEFB81E8D49D ] C:\Windows\System32\vssapi.dll
08:37:04.0567 0x0d34  C:\Windows\System32\vssapi.dll - ok
08:37:04.0567 0x0d34  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8, B1A9B2EF000917214C0198958CBD239D1D91B1720EC40DF041262A34D302AD74 ] C:\Windows\SysWOW64\winspool.drv
08:37:04.0567 0x0d34  C:\Windows\SysWOW64\winspool.drv - ok
08:37:04.0582 0x0d34  [ 0BA65122FFA7E37564EE86422DBF7AE8, 3A37FC503D3228D021473AECA285427382518CC36C197E4C9912745BDF3AB757 ] C:\Windows\SysWOW64\nlaapi.dll
08:37:04.0582 0x0d34  C:\Windows\SysWOW64\nlaapi.dll - ok
08:37:04.0582 0x0d34  [ 0B7E85364CB878E2AD531DB7B601A9E5, F5AD3018427F1CD68450EE5CB55AA9572546322580E0FB1E7888702A291C2380 ] C:\Windows\SysWOW64\NapiNSP.dll
08:37:04.0582 0x0d34  C:\Windows\SysWOW64\NapiNSP.dll - ok
08:37:04.0598 0x0d34  [ 287923557447D7E4BDD7E65B1F0F5428, 14D85A0F036F28D77AA9723C3D7E8C4DA9BDFF8A1AD9BEA6FE5756DBF5D00F08 ] C:\Windows\System32\vsstrace.dll
08:37:04.0598 0x0d34  C:\Windows\System32\vsstrace.dll - ok
08:37:04.0598 0x0d34  [ 5CF640EDDB1E40A5AB1BB743BCDEC610, 0313AA3F713C9F5B84DBB0B4DE78A96B173E9F7B4CF61C10FDC7DAE952DB04E5 ] C:\Windows\SysWOW64\pnrpnsp.dll
08:37:04.0598 0x0d34  C:\Windows\SysWOW64\pnrpnsp.dll - ok
08:37:04.0613 0x0d34  [ 5DF5D8CFD9B9573FA3B2C89D9061A240, 990EA273B640DF2D7E800C0CFF18550259C605A4951CD82CD9F1E7B6FF0C9533 ] C:\Windows\SysWOW64\winrnr.dll
08:37:04.0613 0x0d34  C:\Windows\SysWOW64\winrnr.dll - ok
08:37:04.0629 0x0d34  [ 37BC9E0E4B3657B54037777135569D1E, CD7B8973426807F604C9AFC130F55A1F8090F3B9A2060B0522A8A3F9281991C2 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
08:37:04.0629 0x0d34  C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
08:37:04.0629 0x0d34  [ 4355CF8BD07B0E48C111FC3D2F36D313, B3C5837C29A71E82CA4C7A887FE219C26A5CAA1230AD7E5853C4B3035C7CC94D ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
08:37:04.0629 0x0d34  C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
08:37:04.0645 0x0d34  [ F0D0E883EBBDC7615DC9EDEA0FFB2817, 58F1395445018CB16ED4D3710443FB5B0E087043F6A69F7B10D72D0455958954 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
08:37:04.0645 0x0d34  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
08:37:04.0645 0x0d34  [ ED6EE83D61EBC683C2CD8E899EA6FEBE, F82592908D038C44D9F2E5C5B7BC663A2D370FC565F40420E1138A9E55F0E7EB ] C:\Windows\SysWOW64\rasadhlp.dll
08:37:04.0645 0x0d34  C:\Windows\SysWOW64\rasadhlp.dll - ok
08:37:04.0660 0x0d34  [ E29F999616D7C08B0E91296908C47CAF, 285594B526A15911238B89E5FCBCFFA48A6C69CCC481918D2C474C6BB12869E6 ] C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
08:37:04.0660 0x0d34  C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe - ok
08:37:04.0660 0x0d34  [ 243D0DFFFCC389D09F341F88AF5C56A4, 88038BBB878A232F1F38F11075C74B9026808360C055D42C526FACFAC1A0B232 ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
08:37:04.0660 0x0d34  C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe - ok
08:37:04.0676 0x0d34  [ E849BBF4D8045C3E6BF7A23FA91E36AB, 29E5B33F64ECCA6D85C40AFEDDE33A3659E1D9F3E581670452C6D3376FE3E0FB ] C:\Program Files\Bonjour\mdnsNSP.dll
08:37:04.0676 0x0d34  C:\Program Files\Bonjour\mdnsNSP.dll - ok
08:37:04.0676 0x0d34  [ AF528B4ECA925F63D437F76E87D8971D, 8BA0A8343AF6499A121B8B8E6D0C42E9CBCE069919F7E5DD41F1AA64899E190C ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
08:37:04.0676 0x0d34  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
08:37:04.0691 0x0d34  [ 88351B29B622B30962D2FEB6CA8D860B, A16CAD7D94C1C9807083BB36E9B4C3C14E6482C4CA2BDFACBCC86E737DDCE42E ] C:\Windows\System32\rasadhlp.dll
08:37:04.0691 0x0d34  C:\Windows\System32\rasadhlp.dll - ok
08:37:04.0707 0x0d34  [ 2424231BBD703A677D115C29983B4293, B33022D9BEE7B8B472A73C242578089D02CD683EBDD41CB519AEDC6C18E5D485 ] C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
08:37:04.0707 0x0d34  C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL - ok
08:37:04.0707 0x0d34  [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051, 8EFD0A6DE6F4E335D342782190008FB5AC84A6ADE49170B310DEC9AC48E623E8 ] C:\Windows\System32\localspl.dll
08:37:04.0707 0x0d34  C:\Windows\System32\localspl.dll - ok
08:37:04.0723 0x0d34  [ 49ACA548B2423F1C67898E6AC719A9A6, 23D84137EAB9AFDD31CBB6776B6B25AD135A120AF7F7885EB5BBF9E0A2CCC4C1 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
08:37:04.0723 0x0d34  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
08:37:04.0723 0x0d34  [ B094390B6B2D0456821384771020870B, 137FEDD0EFBF1CEDA4930D8CE0A012A250CFF4020931846646090BB2C99EE7CE ] C:\Windows\SysWOW64\secur32.dll
08:37:04.0723 0x0d34  C:\Windows\SysWOW64\secur32.dll - ok
08:37:04.0738 0x0d34  [ FD67683FBA9B2C4BB551780BD8846F64, 4BB7C956EA8D2CE63F5BF80FAE652F98416A7635202AEE04FC8D81000E6363DF ] C:\Windows\SysWOW64\winsta.dll
08:37:04.0738 0x0d34  C:\Windows\SysWOW64\winsta.dll - ok
08:37:04.0738 0x0d34  [ 3285481F5C12305CA104A6C493CA5A0B, ADB39B15D26A954B0F347C7BAFCC76DE5E3CF3CF05736E8987E0832AA7F8563C ] C:\Windows\System32\spoolss.dll
08:37:04.0738 0x0d34  C:\Windows\System32\spoolss.dll - ok
08:37:04.0754 0x0d34  [ 0015ACFBBDD164A8A730009908868CA7, E1FF243AD2CF959FAB81EFE701592414991C03416FF296ADC93906E76B707C4D ] C:\Windows\System32\winspool.drv
08:37:04.0754 0x0d34  C:\Windows\System32\winspool.drv - ok
08:37:04.0754 0x0d34  [ C5AC93CF3BA30D367FB49148A2B673B9, 07B556039BBA841BC9F28979C3AD5D238B55391F921C9C805F3AFC9EFB437766 ] C:\Windows\System32\PrintIsolationProxy.dll
08:37:04.0754 0x0d34  C:\Windows\System32\PrintIsolationProxy.dll - ok
08:37:04.0769 0x0d34  [ 0C2E553DB845E9A7369CDFEE3654ECE8, 0F4D0E301DD82E1CDD814E55F38857D1D2E9AE1421FC187E774432159D2B2310 ] C:\Windows\System32\hpinkstsB011LM.dll
08:37:04.0769 0x0d34  C:\Windows\System32\hpinkstsB011LM.dll - ok
08:37:04.0785 0x0d34  [ 3D7C1DFE052288F40AC9ABFB2A824B92, 0F8E9DDC6A47B183265CAC7EE63166D35DC27BBE4722300CF1ADA62E9ED277E2 ] C:\Windows\System32\HPDiscoPMB011.dll
08:37:04.0785 0x0d34  C:\Windows\System32\HPDiscoPMB011.dll - ok
08:37:04.0785 0x0d34  [ 6D8A2EE4244630B290A837E79C0F37A1, 6783BBC0BDC93E4D6D43531A1AD0DF5CD26C3BBFA6384927C5CF65AD97FB04AD ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
08:37:04.0785 0x0d34  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe - ok
08:37:04.0801 0x0d34  [ A422816A15CFAC50567FD0F6582FD2CF, 0AA6588C63F53962E2D3665159BAE7402F43BEC0136A48DE39FE977430CA7B5A ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamsrv.dll
08:37:04.0801 0x0d34  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamsrv.dll - ok
08:37:04.0801 0x0d34  [ FFF9D00CF16397C64317F213484F94BD, 94D0584E14BDB27F61F59A7BCEA529A1594261BE0CE74502C13E8865843BA414 ] C:\Windows\System32\wsnmp32.dll
08:37:04.0801 0x0d34  C:\Windows\System32\wsnmp32.dll - ok
08:37:04.0816 0x0d34  [ A14D4FF189D4FFABB2719A774049E8E1, AA5CAEC677E8F53D5B7B1487B84E89E1A111A00165F6D39C88F8421F0ADE91FE ] C:\Windows\System32\EKIJ5000MON.dll
08:37:04.0816 0x0d34  C:\Windows\System32\EKIJ5000MON.dll - ok
08:37:04.0816 0x0d34  [ 19E41CCCEE697CC9465396B370929792, A9FC4C33C71C3677FE57779380E55FDE2AC0B0C70A9DBCBA0D0B6FA92C709A7F ] C:\Windows\System32\FXSMON.dll
08:37:04.0816 0x0d34  C:\Windows\System32\FXSMON.dll - ok
08:37:04.0832 0x0d34  [ 32A3C8600AF124CBAAD845F13CFAE3CB, F36FE9E57D5C509FEECE890F9F8717F9CC6F762E32AE0B7DB7E0153370CE0B9D ] C:\Windows\System32\tcpmon.dll
08:37:04.0832 0x0d34  C:\Windows\System32\tcpmon.dll - ok
08:37:04.0832 0x0d34  [ 93518C6EDE0B61BCBD02BDB02BD05FEE, 3637F5E5F15093AFB501EE910368CF900B422AC22669391FFA4198BBAE6F8FCB ] C:\Windows\System32\snmpapi.dll
08:37:04.0832 0x0d34  C:\Windows\System32\snmpapi.dll - ok
08:37:04.0847 0x0d34  [ DF72A9936D0C3F517083119648814B09, 6BA4DCAC2F55A393A266ED0B2AF92B38141654D1666E3E143D85BBAF21663E1E ] C:\Windows\System32\usbmon.dll
08:37:04.0847 0x0d34  C:\Windows\System32\usbmon.dll - ok
08:37:04.0847 0x0d34  [ A1D7E3ADCDB07DDB6F423862DCB1A52B, 6191C33D2AE090F6F055D6AE211096CE8F003EC5518A5333EE1E376052176BAB ] C:\Windows\System32\WSDMon.dll
08:37:04.0847 0x0d34  C:\Windows\System32\WSDMon.dll - ok
08:37:04.0863 0x0d34  [ F1B205F932F62F94506A5F332C895DAF, F02F01F20F655DD919C71AE814E4C3DD43330AAD1425FC5B1497F1613917CCDE ] C:\Windows\System32\WSDApi.dll
08:37:04.0863 0x0d34  C:\Windows\System32\WSDApi.dll - ok
08:37:04.0863 0x0d34  [ C55516D98DD5D8F0153C2A9B4227DA86, DBC62B776CF06D0873A4C7CFCDF5B6F5C6E6C41917C326C090BCE58DC66EE09C ] C:\Windows\System32\webservices.dll
08:37:04.0863 0x0d34  C:\Windows\System32\webservices.dll - ok
08:37:04.0879 0x0d34  [ 61AF7614418BA5B9E8B4EB82E459BE53, 828ABEF68681C061E93FA61E7D12AEAB6D67ABBE597BC207DF0E6DB185C95C72 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\QtCore4.dll
08:37:04.0879 0x0d34  C:\Program Files (x86)\Malwarebytes Anti-Malware\QtCore4.dll - ok
08:37:04.0894 0x0d34  [ CA55500E2E0515FCC888C4A5E01E64B7, 053910D883931A776F71AF8CF3A15837524B65B933C09038E51F40FCB7B959D2 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcp100.dll
08:37:04.0894 0x0d34  C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcp100.dll - ok
08:37:04.0894 0x0d34  [ B5055B51BAA0FD0A736A88653DA3C1C0, A3BD057C7E8C926930BA7E9D11427D26FB37267026A0B72AB4021101EE424F74 ] C:\Windows\System32\fundisc.dll
08:37:04.0894 0x0d34  C:\Windows\System32\fundisc.dll - ok
08:37:04.0910 0x0d34  [ 4C539E592E50633B21AB1E1FDA40A32A, F07F846E1BFA7AE1B5FE835BCB34CCD2FA671B865415EF2A9C6EB8972D3A0E0C ] C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcr100.dll
08:37:04.0910 0x0d34  C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcr100.dll - ok
08:37:04.0925 0x0d34  [ 4581716B4BF76ACFD8E167EB0B26D82A, 39D822527114EEED68044CCE4D542767F53978D9E0A7F72638F1CA9A016DE13B ] C:\Windows\System32\fdPnp.dll
08:37:04.0925 0x0d34  C:\Windows\System32\fdPnp.dll - ok
08:37:04.0925 0x0d34  [ 1D626FE2E13C1CE49CA0136CFF214E93, 4F02DD92045CF244979FFD074B2BDE6925A909227A474C60DCABE4384D916218 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
08:37:04.0925 0x0d34  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
08:37:04.0941 0x0d34  [ A6307861451FC3B51D0C867466BDD76D, E3C1B4AB1CCA299ACDFE7235C7927FAF3D1E01A9ECA924556E364F84A78A03F4 ] C:\Windows\System32\spool\prtprocs\x64\EKIJ5000PPR.dll
08:37:04.0941 0x0d34  C:\Windows\System32\spool\prtprocs\x64\EKIJ5000PPR.dll - ok
08:37:04.0957 0x0d34  [ 67CF11E00D026A5C0C88EA5F84D501E5, 5081A87466116232CF07F58229967B6C0CD3738B64A56EFC6BB3EBDA62E378F6 ] C:\Windows\System32\win32spl.dll
08:37:04.0957 0x0d34  C:\Windows\System32\win32spl.dll - ok
08:37:04.0957 0x0d34  [ 507D5567A0A4EE86C4B0CE2CE1777025, 408770B00CED498BF7782054F17A5CB361CF65429B0C816403D70E416E0EEF23 ] C:\Windows\System32\inetpp.dll
08:37:04.0957 0x0d34  C:\Windows\System32\inetpp.dll - ok
08:37:04.0972 0x0d34  [ 1BF0CB861A48FEB1638228760750F3CB, 37C781A8C546EAD8B4D28BD7D730B9AC78EB799599AD69DAD9054B6F9F1DD6BD ] C:\Windows\System32\cscapi.dll
08:37:04.0972 0x0d34  C:\Windows\System32\cscapi.dll - ok
08:37:04.0972 0x0d34  [ 09D4503CBB6ADB3A54E7C7A75090B728, 6139EA3338FD64205481EDEC813A44F8D395FDA7B67AA431DA61F3631C3EDAE6 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
08:37:04.0972 0x0d34  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe - ok
08:37:04.0988 0x0d34  [ A8D4B1D04A5FCD862321CE106DA7CE4E, 571EBB0E77CEB5DACBD2F57F707E83D276A50EB540871BA015E0063AD9101071 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamcore.dll
08:37:04.0988 0x0d34  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamcore.dll - ok
08:37:05.0003 0x0d34  [ E7B9D5FF20FFDD4AAE2EF1D1B8C27A37, 689D126B1B42140D5049015E3E324268E6542D4BC6CC14E31D8B89A25B94BAA5 ] C:\Windows\SysWOW64\imagehlp.dll
08:37:05.0003 0x0d34  C:\Windows\SysWOW64\imagehlp.dll - ok
08:37:05.0003 0x0d34  [ B9A8CBCFCD3EC9D2EA4740AF347BF108, 97FA304E3880BC863D999F441AE47CB8ADF00D2DEC2A52ACD8FBD02CC096786A ] C:\Windows\SysWOW64\mpr.dll
08:37:05.0003 0x0d34  C:\Windows\SysWOW64\mpr.dll - ok
08:37:05.0019 0x0d34  [ B90E093E7A7250906F1054418B5339C0, F9A0BAC5B4B29F14B5CACA1047F8928A495EFD56E485492BF71C856B296476D6 ] C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
08:37:05.0019 0x0d34  C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe - ok
08:37:05.0019 0x0d34  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8, B07A12E3ECD5E418A3F99F00C56E7F482F68CADE330E7C079DCCDFFAD2E21299 ] C:\Windows\SysWOW64\dbghelp.dll
08:37:05.0019 0x0d34  C:\Windows\SysWOW64\dbghelp.dll - ok
08:37:05.0035 0x0d34  [ D167CA427516B8C416B746117F69B870, 6B8CFCF34D3069834A103EB218BA785F274A578B0C13A549ADCB9C3706D0BFAF ] C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NB.dll
08:37:05.0035 0x0d34  C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NB.dll - ok
08:37:05.0035 0x0d34  [ 1E8D06AAE74FED674C1156B3FEA911C2, C1999BA9E436F9E0B9302DC82DF8B214E66372899FD4C0C60C56EE5340BADB9F ] C:\Windows\SysWOW64\Faultrep.dll
08:37:05.0035 0x0d34  C:\Windows\SysWOW64\Faultrep.dll - ok
08:37:05.0050 0x0d34  [ 352B3DC62A0D259A82A052238425C872, 393B24E0D6007C74AEE2FB2EE2C18623D37DF64E279B6767952DCFEE0EACBB10 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
08:37:05.0050 0x0d34  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
08:37:05.0066 0x0d34  [ 5F5360825D2B829121E78E84D4CB8785, 176B4C7C3439DA2D98C8EFFC136AF1975F55847AC206A324D15619F534973EE3 ] C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\LBFC.dll
08:37:05.0066 0x0d34  C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\LBFC.dll - ok
08:37:05.0066 0x0d34  [ 3F50200237961034FACE602373838980, F97D72CC75D921CF8F8E0544614407358AEFF97A8F48E4A89F82689EE8F2FC86 ] C:\Windows\SysWOW64\FirewallAPI.dll
08:37:05.0066 0x0d34  C:\Windows\SysWOW64\FirewallAPI.dll - ok
08:37:05.0081 0x0d34  [ D4FAC263861BAE06971C7F7D0A8EBF15, D494DEF0024288B9CC56EC6B500FF5828144BE9B8E7033340509EC5E68F8DED0 ] C:\Windows\System32\ncsi.dll
08:37:05.0081 0x0d34  C:\Windows\System32\ncsi.dll - ok
08:37:05.0081 0x0d34  [ 603EBD34E216C5654A2D774EAC98D278, ACE0171BB780DB2C1B1A8BF6FA8CF51C529D7E09141FA504C7199AF764FD9A36 ] C:\Windows\System32\webio.dll
08:37:05.0081 0x0d34  C:\Windows\System32\webio.dll - ok
08:37:05.0097 0x0d34  [ 1727B2A2F379A32B864C096FA794AADC, 87B77A5DF95F3A1C5ED6DEF820C7E384BEFCBAA2FE1BB4781AC6F777A081E5CC ] C:\Windows\System32\aepic.dll
08:37:05.0097 0x0d34  C:\Windows\System32\aepic.dll - ok
08:37:05.0097 0x0d34  [ C6DCD1D11ED6827F05C00773C3E7053C, EA23BE261C9C04F44215D254D7A80FD0AEE84C6F192D0FEE49A7CF74ED3CB1A6 ] C:\Windows\System32\sfc.dll
08:37:05.0097 0x0d34  C:\Windows\System32\sfc.dll - ok
08:37:05.0113 0x0d34  [ 895C9AB0A855547445C4181195230757, 89BDA385D8CCB75C3D7B1BDFA567AC441A931F4E499C0835FEE9D010343FABB6 ] C:\Windows\System32\sfc_os.dll
08:37:05.0113 0x0d34  C:\Windows\System32\sfc_os.dll - ok
08:37:05.0113 0x0d34  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE, 4EFA41765E46E90C6CBDB0DC1E0CD375D7AB3307C477171EBAA6A16AC32E5211 ] C:\Windows\System32\ssdpapi.dll
08:37:05.0113 0x0d34  C:\Windows\System32\ssdpapi.dll - ok
08:37:05.0128 0x0d34  [ D83947A58613E9091B4C9CC0F1546A8D, C71DF6E18E2099FC462717B8658D39C607A62C7E7A1E5CD0E258C17434535AD0 ] C:\Windows\SysWOW64\mscoree.dll
08:37:05.0128 0x0d34  C:\Windows\SysWOW64\mscoree.dll - ok
08:37:05.0144 0x0d34  [ C5A99A4C0DC9F0F5A95BA0C83D30A549, F99CCCE303F0FC07D82D3BBA223E8CCE41FB7FA8FB5C2A9214C161826537C7C9 ] C:\Windows\SysWOW64\mstask.dll
08:37:05.0144 0x0d34  C:\Windows\SysWOW64\mstask.dll - ok
08:37:05.0144 0x0d34  [ 946010CDFA91469351B22E2620CEBCD8, F099C92706D42ADC289B72724F7932E5D4F62A427AEC967DDB0A1D728AE59A63 ] C:\Windows\System32\drivers\PEAuth.sys
08:37:05.0144 0x0d34  C:\Windows\System32\drivers\PEAuth.sys - ok
08:37:05.0159 0x0d34  [ 5E3C0E5FFDA48C5DA35BBFB8EFFF8066, E2BBCC111DB1CE6072CB796F21677E4529029CE66DDC471EC793278F81F1FCF6 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
08:37:05.0159 0x0d34  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
08:37:05.0175 0x0d34  [ 8E2242BB3CB7A632A8CF22BDE2A41AE1, FB068D1EED054DB6935A5DE19DEA6AFCCE8C3F0F665973FDFB97431078207D91 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
08:37:05.0175 0x0d34  C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll - ok
08:37:05.0175 0x0d34  [ 81DA72712DF46480E6248AEB35E15FCC, 1A6939273FABA1062FE39AA028F394DE61A4CCE1EE0C123006E8E87ED74D1189 ] C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBBurn.dll
08:37:05.0175 0x0d34  C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBBurn.dll - ok
08:37:05.0191 0x0d34  [ F12A68ED55053940CADD59CA5E3468DD, 75331E6DA4E30717085E7D8131989241EBC492DC3EE455546F91DA9DFFFD2BFC ] C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
08:37:05.0191 0x0d34  C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe - ok
08:37:05.0206 0x0d34  [ 8E2D68A36FCB58A8DA57DE3E064F39CC, 61CBB2183BD22A22C27D6A975470D373667703C9F7B29CDD7628441BC951A492 ] C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NeroAPIGlueLayerUnicode.dll
08:37:05.0206 0x0d34  C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NeroAPIGlueLayerUnicode.dll - ok
08:37:05.0206 0x0d34  [ 0DCA5F8AF83975061D9D8340DC471B5C, 71C8549419F46ABB4826B1847BF325374FA5C237CE14DB8B1DD8BB6FDABF6138 ] C:\Windows\SysWOW64\msvcr110_clr0400.dll
08:37:05.0206 0x0d34  C:\Windows\SysWOW64\msvcr110_clr0400.dll - ok
08:37:05.0222 0x0d34  [ C1F1E53851FAA7E029CFA07DAF9A5E81, 5FED0DC48651735AEBF53D5B7C16D13A9F7205B9EBEFE829022FC9281A940718 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\ce5f61c5754789df97be8dc991c47d07\mscorlib.ni.dll
08:37:05.0222 0x0d34  C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\ce5f61c5754789df97be8dc991c47d07\mscorlib.ni.dll - ok
08:37:05.0222 0x0d34  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] C:\Windows\System32\drivers\secdrv.sys
08:37:05.0222 0x0d34  C:\Windows\System32\drivers\secdrv.sys - ok
08:37:05.0237 0x0d34  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] C:\Program Files (x86)\Skype\Updater\Updater.exe
08:37:05.0237 0x0d34  C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
08:37:05.0237 0x0d34  [ E1BDF4AE0DA3ACDA72090BC75DA3B00B, B4FD01738592A462BCF816674EC8C6A4AEE492B6C3AED7B3DDABFD0AE8832ACE ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Automation.dll
08:37:05.0237 0x0d34  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Automation.dll - ok
08:37:05.0253 0x0d34  [ 311C2664FA7B215B31345469D7B143C6, AAA73AFFB119B0ACE6B2CAC4956F40A3E1007D74904E4C4DE53A0E82D72DBE6D ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System\17a393b77ae757f0768501fb95ff5af6\System.ni.dll
08:37:05.0253 0x0d34  C:\Windows\assembly\NativeImages_v4.0.30319_32\System\17a393b77ae757f0768501fb95ff5af6\System.ni.dll - ok
08:37:05.0269 0x0d34  [ 847CACE7DD8BCD0BBED934A14ADF1AF9, 1ECA8EE7430DC6D5C0BB11E6E13A6B19C63AAE3BA4C58106DEA6DFEF4C6C7CF7 ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Hardware.dll
08:37:05.0269 0x0d34  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Hardware.dll - ok
08:37:05.0269 0x0d34  [ 44E192654A39B57D86DD6F40D257A901, D213379A525B7CFA521EDA531DBD46B17A66DFFE431653CE5B6142497E626617 ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Statistics.dll
08:37:05.0269 0x0d34  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Statistics.dll - ok
08:37:05.0284 0x0d34  [ D3E30F36EBE11C59D8A2AB066845A957, 9FBF15BBDE712055BE7F48A38BB7982A992FF1688CCA43562E2580340717332F ] C:\Program Files (x86)\Kodak\AiO\Center\Newtonsoft.Json.Net20.dll
08:37:05.0284 0x0d34  C:\Program Files (x86)\Kodak\AiO\Center\Newtonsoft.Json.Net20.dll - ok
08:37:05.0300 0x0d34  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] C:\Windows\System32\drivers\srvnet.sys
08:37:05.0300 0x0d34  C:\Windows\System32\drivers\srvnet.sys - ok
08:37:05.0300 0x0d34  [ 210FCACAF902B2CD47CF9FD17D846146, 3F77AC721E084864C5966FF5337A90185F62203DC19C685328675500D629CB87 ] C:\Windows\System32\aeevts.dll
08:37:05.0300 0x0d34  C:\Windows\System32\aeevts.dll - ok
08:37:05.0315 0x0d34  [ 79F1A306B8F247261DF16444069BAC8C, 30D8FC6CF95EE9B4B9EDC9406A320C723A2A76EED09947DF6760ECE9E9B912B2 ] C:\Program Files (x86)\Kodak\AiO\Center\jabber-net.dll
08:37:05.0315 0x0d34  C:\Program Files (x86)\Kodak\AiO\Center\jabber-net.dll - ok
08:37:05.0315 0x0d34  [ 8A3AAD2ABEA785A16900DC481ADC576B, FBC87994E6CF4E6975331345FB2CF091D856C8CC363784C2DE7850B1DB85D6A0 ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Configuration.dll
08:37:05.0315 0x0d34  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Configuration.dll - ok
08:37:05.0331 0x0d34  [ EFD15326A50B34BEB0E01901937D9206, DBE606D2833E18C5193BC8C1FD589F7CA4D1D79BA6562771CA72EA6ADC467C34 ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Utilities.dll
08:37:05.0331 0x0d34  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Utilities.dll - ok
08:37:05.0347 0x0d34  [ 0F115371233581F3F70F5CE82C374919, 75392C84F4D2A252BE968A2EC5319CF201D586C98F41F889B957691003A7CB11 ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Diagnostics.dll
08:37:05.0347 0x0d34  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Diagnostics.dll - ok
08:37:05.0347 0x0d34  [ 017637D7C030C7819733875E3614FEE2, B8FE60CC46A7F993AC642291E1D70355789E96DB882C5312A110C5C2E33DE764 ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Localization.dll
08:37:05.0347 0x0d34  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.Localization.dll - ok
08:37:05.0362 0x0d34  [ 455916F57BA7C205169E3E1C55763C7E, 649068D2A4FAFEAA514692CC9A58456E6CC73782A62B6DC51955F094C96A95F5 ] C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.DeviceSettings.dll
08:37:05.0362 0x0d34  C:\Program Files (x86)\Kodak\AiO\Center\Inkjet.DeviceSettings.dll - ok
08:37:05.0362 0x0d34  [ 84A99FDCE9B5C7457E503C7C47DD5F4F, AF6C596F3DABAD50AA896C89F5A2FE25C2079C90AAB4FF0C4FE065AFCD46909B ] C:\Program Files (x86)\Kodak\AiO\Center\Interop.EKAiO2SDKLib.dll
08:37:05.0362 0x0d34  C:\Program Files (x86)\Kodak\AiO\Center\Interop.EKAiO2SDKLib.dll - ok
08:37:05.0378 0x0d34  [ EB54D0280E8EDC136E68F26C6B9A69F1, 2988693471A48E6227C17E33BE929DAEAB5EA67C8232482ED2233FE9FD10EB55 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Inkjet.Automation\8d49876d04dcef0303bf3aac86e26612\Inkjet.Automation.ni.dll
08:37:05.0378 0x0d34  C:\Windows\assembly\NativeImages_v4.0.30319_32\Inkjet.Automation\8d49876d04dcef0303bf3aac86e26612\Inkjet.Automation.ni.dll - ok
08:37:05.0393 0x0d34  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5, BDA403E6CACC249C467671FB1FAF7B77FB019326BC18F9F6CF377104520E2654 ] C:\Windows\System32\wiatrace.dll
08:37:05.0393 0x0d34  C:\Windows\System32\wiatrace.dll - ok
08:37:05.0393 0x0d34  [ 547AA7795F54452E5EF210E6B2EF2C97, A90DFD832FEC1AE574EBE0B31B63E6934ED2BB56B84177E5E4CBC230D036DA1A ] C:\Program Files (x86)\Kodak\AiO\Center\Interop.WIA.dll
08:37:05.0393 0x0d34  C:\Program Files (x86)\Kodak\AiO\Center\Interop.WIA.dll - ok
08:37:05.0409 0x0d34  [ 2693B2DB419E37221E73E2EAF2E6E183, ECFACFC40E7E907E0C6344B21180F1D7F81D974E7FD955590688C50037727D78 ] C:\Program Files (x86)\Kodak\AiO\Center\ShellLib.dll
08:37:05.0409 0x0d34  C:\Program Files (x86)\Kodak\AiO\Center\ShellLib.dll - ok
08:37:05.0409 0x0d34  [ CAEEF420695CF8029CBBACEF2D306806, 9B2742EA030DB421C0FFB1C0CD01276156CAB55BCA4DC79DE5405258A416E380 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Inkjet.Utilities\05056c3bd6f3494de91d59c0b96aed6e\Inkjet.Utilities.ni.dll
08:37:05.0409 0x0d34  C:\Windows\assembly\NativeImages_v4.0.30319_32\Inkjet.Utilities\05056c3bd6f3494de91d59c0b96aed6e\Inkjet.Utilities.ni.dll - ok
08:37:05.0425 0x0d34  [ 3634BC5FDA3FF83D4818194CD4A8518B, EF772ED95E3815BDFAEEB2A429662C9ADF3CAC37F758446722D2DCF37499E2AE ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Inkjet.Configuration\3c585b2c3166e5d720dfb75427c6d828\Inkjet.Configuration.ni.dll
08:37:05.0425 0x0d34  C:\Windows\assembly\NativeImages_v4.0.30319_32\Inkjet.Configuration\3c585b2c3166e5d720dfb75427c6d828\Inkjet.Configuration.ni.dll - ok
08:37:05.0440 0x0d34  [ D9747507D0885342B3D94C3FA4A784ED, C6F0FD8B7206B0CC72210CBAFD2ED75433649B11DA9D970D9A74FFCB5FBF6752 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\7147fa233a070283dba824da40089bf1\System.Xml.ni.dll
08:37:05.0440 0x0d34  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\7147fa233a070283dba824da40089bf1\System.Xml.ni.dll - ok
08:37:05.0440 0x0d34  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] C:\Windows\System32\drivers\tcpipreg.sys
08:37:05.0440 0x0d34  C:\Windows\System32\drivers\tcpipreg.sys - ok
08:37:05.0456 0x0d34  [ 71ECC01F9928873A5DEB5B475C0F2429, 608B7D5EFB980CBCC519A039C85EF86E4DD12CCFCA6884675615BBE6DAAF6582 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll
08:37:05.0456 0x0d34  C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll - ok
08:37:05.0471 0x0d34  [ F3B60F3E9AF069AC46A02A3958899CB7, 5548741F4D30D03F2DAC4D43FA0218B6DCECCE7D63A4236D092D99DD1210453B ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Inkjet.Diagnostics\5c2f68406c3811d211177b7665049013\Inkjet.Diagnostics.ni.dll
08:37:05.0471 0x0d34  C:\Windows\assembly\NativeImages_v4.0.30319_32\Inkjet.Diagnostics\5c2f68406c3811d211177b7665049013\Inkjet.Diagnostics.ni.dll - ok
08:37:05.0471 0x0d34  [ FA2D9EF82CD54BF0A028DA25AA40A3A8, 2FE5F6A5ABECB67A97D5DA6C2A0A0954086E06B87B17DB5BB83D4CBB1B2303EC ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Inkjet.Localization\e08bf2b2f1907b349519fd145beb39d0\Inkjet.Localization.ni.dll
08:37:05.0471 0x0d34  C:\Windows\assembly\NativeImages_v4.0.30319_32\Inkjet.Localization\e08bf2b2f1907b349519fd145beb39d0\Inkjet.Localization.ni.dll - ok
08:37:05.0487 0x0d34  [ 071348A540326CE10849640E3290FA32, F38E2E8A5015091E4DB32479512844889BA96FE09B6E2712C454781D0494D208 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Inkjet.Devidd83fa01#\bfb0decd5fd3809dc6e7de475ca82dbf\Inkjet.DeviceSettings.ni.dll
08:37:05.0487 0x0d34  C:\Windows\assembly\NativeImages_v4.0.30319_32\Inkjet.Devidd83fa01#\bfb0decd5fd3809dc6e7de475ca82dbf\Inkjet.DeviceSettings.ni.dll - ok
08:37:05.0487 0x0d34  [ D89F78736FEAFEEEDF12DE2895FB2779, AD17BF2B5674E1CD78F6E9B0A5E7867B6EE6F72001B7ADABFEE35C89D32BB2B2 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\0648dbecb7e3fb9523565107e04a5caf\System.Configuration.ni.dll
08:37:05.0487 0x0d34  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\0648dbecb7e3fb9523565107e04a5caf\System.Configuration.ni.dll - ok
08:37:05.0503 0x0d34  [ 7DB5AA22A8A8E5C2D335F44853C1F6DE, A734A20357026C42950394682A52CBC3AF956D09F1949E1B4E95467E999BC428 ] C:\Windows\System32\wbemcomn.dll
08:37:05.0503 0x0d34  C:\Windows\System32\wbemcomn.dll - ok
08:37:05.0518 0x0d34  [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
08:37:05.0518 0x0d34  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE - ok
08:37:05.0518 0x0d34  [ 93812FDC01AA864195816CD814445F95, E5CB2576DA2905177AFD342DBE63E17CF626F93F430DEBC55155C18C60166BEE ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL
08:37:05.0518 0x0d34  C:\Program Files\Common Files\Microsoft Shared\Windows Live\SQMAPI.DLL - ok
08:37:05.0534 0x0d34  [ B837D1528CE2E3CB79F09496BC08DDC6, ACD54CE61CFE94F23DC283537AD8FFBEB3D6041BD30317B60BA7A10FCB240A27 ] C:\Windows\System32\SensApi.dll
08:37:05.0534 0x0d34  C:\Windows\System32\SensApi.dll - ok
08:37:05.0534 0x0d34  [ 1075AB2C077B415760C0E948856B5126, D67804B4A038FC06BD84CBF9C047DD4C13073622027F825371DB98867EF4E9B9 ] C:\Windows\System32\wer.dll
08:37:05.0534 0x0d34  C:\Windows\System32\wer.dll - ok
08:37:05.0549 0x0d34  [ 4D534921D65609114D3F66A27C2D54AA, 83254FDDEF1DBC816C05D7A5C8477A9152C1ECB813DF72C72806D1F1913A80D6 ] C:\Program Files (x86)\Kodak\AiO\Center\Logger.dll
08:37:05.0549 0x0d34  C:\Program Files (x86)\Kodak\AiO\Center\Logger.dll - ok
08:37:05.0565 0x0d34  [ 81466AEED2E69F5711395EAF3256ACD2, E78A3BC0B77BCC1D9FBD503CD177356A268D0891C81B9731E4DC639B2BA73CFB ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\diasymreader.dll
08:37:05.0565 0x0d34  C:\Windows\Microsoft.NET\Framework\v4.0.30319\diasymreader.dll - ok
08:37:05.0565 0x0d34  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] C:\Windows\System32\drivers\srv2.sys
08:37:05.0565 0x0d34  C:\Windows\System32\drivers\srv2.sys - ok
08:37:05.0581 0x0d34  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] C:\Windows\System32\drivers\srv.sys
08:37:05.0581 0x0d34  C:\Windows\System32\drivers\srv.sys - ok
08:37:05.0581 0x0d34  [ 27B9E163740A226B65E4B9E186117911, 17411C6A6C1E699BC4B0C04D782FD9AA09CF577DBA41E743F7588904D489CB9F ] C:\Windows\System32\sqmapi.dll
08:37:05.0581 0x0d34  C:\Windows\System32\sqmapi.dll - ok
08:37:05.0596 0x0d34  [ 7B38D7916A7CD058C16A0A6CA5077901, 3F6DD990E2DA5D3BD6D65A72CBFB0FE79EB30B118A8AD71B6C9BB5581A622DCE ] C:\Windows\System32\wdscore.dll
08:37:05.0596 0x0d34  C:\Windows\System32\wdscore.dll - ok
08:37:05.0596 0x0d34  [ 0C52762C606BCF6A377D5E4688191A6B, C58C9A73AD07E3B93AB186D0D47C5F1CB7197771DBEE40646C3B801645BB388F ] C:\Windows\System32\wbem\WmiDcPrv.dll
08:37:05.0596 0x0d34  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
08:37:05.0612 0x0d34  [ A3F5E8EC1316C3E2562B82694A251C9E, F3DC6AA6A9D3B5BBC730668FC52C1D4BB5D515D404578BDDD3D4869A7ED58822 ] C:\Windows\System32\wbem\fastprox.dll
08:37:05.0612 0x0d34  C:\Windows\System32\wbem\fastprox.dll - ok
08:37:05.0612 0x0d34  [ EE26D130808D16C0E417BBBED0451B34, 4886DCE4FAEF146A40BABD492A8000A2022FEA542A6135A9BAFD4CD09297B4E5 ] C:\Windows\System32\ntdsapi.dll
08:37:05.0612 0x0d34  C:\Windows\System32\ntdsapi.dll - ok
08:37:05.0627 0x0d34  [ 666A60F6F5E719856FF6254E0966EFF7, 58C072E7E215991E19C1CA062C476081982F7B9F039714539AE7FEB4981C200F ] C:\Windows\System32\wbem\wbemprox.dll
08:37:05.0627 0x0d34  C:\Windows\System32\wbem\wbemprox.dll - ok
08:37:05.0627 0x0d34  [ 0255C22D99602534F15CBB8D9B6F152F, 43CD89D6CA56E0B633142F7C86DA9E072EE0723B5EBC4CE8CCBCA58C396ECF54 ] C:\Windows\System32\wbem\WinMgmtR.dll
08:37:05.0627 0x0d34  C:\Windows\System32\wbem\WinMgmtR.dll - ok
08:37:05.0643 0x0d34  [ 5EB55F661DEBF156E126160BCD4D89F8, 948D1F627AA55D55FB3B558BA61B8366C5481A6041820631F24408F75EA5D2CC ] C:\Windows\System32\wbem\wbemcore.dll
08:37:05.0643 0x0d34  C:\Windows\System32\wbem\wbemcore.dll - ok
08:37:05.0659 0x0d34  [ 087D8668C71634A3A3761135ABF16EEE, B7348A63299CFF4FFBF375E645A4850AE0F108D48D13AB25434CFAE7CF3D61FD ] C:\Windows\System32\wbem\esscli.dll
08:37:05.0659 0x0d34  C:\Windows\System32\wbem\esscli.dll - ok
08:37:05.0659 0x0d34  [ 2ABDEC2F3EDB5A15808713C08A21BF7E, 9C125841824D1376495EC7D1E1D3DF20635B9E8215FDECE25FAB70E874B8D9DB ] C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
08:37:05.0659 0x0d34  C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll - ok
08:37:05.0674 0x0d34  [ ECA6AC33BD9E441F7B47D173D715D268, 5B9017F80BD8C7823CFE1AB4C21D91388E1B31BF0D77058A98791D2FACA11EB6 ] C:\Windows\System32\msxml3.dll
08:37:05.0674 0x0d34  C:\Windows\System32\msxml3.dll - ok
08:37:05.0674 0x0d34  [ 718B6F51AB7F6FE2988A36868F9AD3AB, 76141B4E94C2766E2C34CEF523092948771A7893212EFADBE88D2171B85FF012 ] C:\Windows\System32\wbem\wbemsvc.dll
08:37:05.0674 0x0d34  C:\Windows\System32\wbem\wbemsvc.dll - ok
08:37:05.0690 0x0d34  [ CFEFA40DDE34659BE5211966EAD86437, AC0A3AD8AA47012C40785013E2273FC571F416BC9C9FFDA418FE72B3123C1FB0 ] C:\Windows\System32\netmsg.dll
08:37:05.0690 0x0d34  C:\Windows\System32\netmsg.dll - ok
08:37:05.0705 0x0d34  [ D790CAFEFF0291D0AF8C76F5A1EE2E4E, 135EC003E17E290FFC3BBE93E9136BCAD003D1E2C649EC03DF4688740CC009DC ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
08:37:05.0705 0x0d34  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE - ok
08:37:05.0705 0x0d34  [ 0143DB80DACFB7C2B5B7009ED9063353, 252885CF7C1BAB89B86908373546E5F5D674BEF7AACBDDCF321AD877CB9150A9 ] C:\Windows\System32\wbem\wmiutils.dll
08:37:05.0705 0x0d34  C:\Windows\System32\wbem\wmiutils.dll - ok
08:37:05.0721 0x0d34  [ 81749E073AC5857B044A686B406E5244, 3884EE705CA34235B29942FEDA8FEA654A21139B8C2A1D5E009C7D07D6E6ADF1 ] C:\Windows\System32\clusapi.dll
08:37:05.0721 0x0d34  C:\Windows\System32\clusapi.dll - ok
08:37:05.0721 0x0d34  [ FF80CAD87555E8E4D2CFD7B9058343F8, 07653773FBEC1996408B8507B08E0E1E812830063F932F897F4B39EE63DDCDC4 ] C:\Windows\System32\sscore.dll
08:37:05.0721 0x0d34  C:\Windows\System32\sscore.dll - ok
08:37:05.0737 0x0d34  [ 344FCC9850C3A8A3B4D3C65151AF8E4C, C38853454E153B1AB4AEAE1AAFB7CB4B2E6234208CF24C09F3B2AFE25E271C5C ] C:\Windows\System32\resutils.dll
08:37:05.0737 0x0d34  C:\Windows\System32\resutils.dll - ok
08:37:05.0752 0x0d34  [ 0AB34456654C283DAA13B8D2BA21439B, 4B70FC5195DE39564E951C8542020BA3D4257E3D4488F69825F67A6099CB7549 ] C:\Windows\System32\wbem\repdrvfs.dll
08:37:05.0752 0x0d34  C:\Windows\System32\wbem\repdrvfs.dll - ok
08:37:05.0752 0x0d34  [ 3B367397320C26DBA890B260F80D1B1B, 50BBE71B4380B5E86E197AF86F5C08266DD6B12344BA4ABDEA604B8C774C4147 ] C:\Windows\System32\hnetcfg.dll
08:37:05.0752 0x0d34  C:\Windows\System32\hnetcfg.dll - ok
08:37:05.0768 0x0d34  [ 11930A7074F0553E1062DFA01430EE58, 935EC539C258832E8338EEB7D3DB805576C7FDC34A809F7DFAF80D82DEAD7C02 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\b4c08872c259018b17b2801da33ac80f\System.Drawing.ni.dll
08:37:05.0768 0x0d34  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\b4c08872c259018b17b2801da33ac80f\System.Drawing.ni.dll - ok
08:37:05.0768 0x0d34  [ DDD0357A92FA843EFF8915ED17253D6C, 0C78B1D41F0A7821186ADF653504F2BFF067CB512CB0E932047C301378BBADB6 ] C:\Windows\System32\wbem\WmiPrvSD.dll
08:37:05.0768 0x0d34  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
08:37:05.0783 0x0d34  [ D41FEBD098234F02485A4EA98D4730A4, 462DC8168C444F35B43BA3B8F7D77734665D84F1C6D25CAD7391C0145961628F ] C:\Windows\System32\ncobjapi.dll
08:37:05.0783 0x0d34  C:\Windows\System32\ncobjapi.dll - ok
08:37:05.0783 0x0d34  [ 6F40D6FB05E0C1E5402812B426971AF0, E41F138F0F2DB057F8DBB1587237C6FA8A2059B3D64EC894D1DC492A18DBBDED ] C:\Windows\System32\wbem\wbemess.dll
08:37:05.0783 0x0d34  C:\Windows\System32\wbem\wbemess.dll - ok
08:37:05.0799 0x0d34  [ 4E886667DD5BC1B44E280404310443C2, 8FD8952C315E3A5871C6BA7DD12647142BFD82808C0163185CB324CA7786673A ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\db563d596d76daed04e9b5d25b2f4cb9\System.Windows.Forms.ni.dll
08:37:05.0799 0x0d34  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\db563d596d76daed04e9b5d25b2f4cb9\System.Windows.Forms.ni.dll - ok
08:37:05.0799 0x0d34  [ 4449D23E8F197862F1B16F1E6C89C36C, 93AF52BF8E870C0381F027D3BB8F6829E449242074472F1593EB8172D7EB6559 ] C:\Windows\System32\diagperf.dll
08:37:05.0799 0x0d34  C:\Windows\System32\diagperf.dll - ok
08:37:05.0815 0x0d34  [ BF4AC709BE5BF64F331F5D67773A0C82, 96E5A2A12D386B8A7976FEC76FD350E6A3EEBDF5763F4BBF4AB18880E9F269E0 ] C:\Windows\System32\perftrack.dll
08:37:05.0815 0x0d34  C:\Windows\System32\perftrack.dll - ok
08:37:05.0815 0x0d34  [ E1B22739C933BE33F53DB58C5393ADD3, 26EE0DD091D2E00DECC774DC1EEDFFDE69AF74B0C769CCBE091AFC32C66E4207 ] C:\Windows\System32\Apphlpdm.dll
08:37:05.0815 0x0d34  C:\Windows\System32\Apphlpdm.dll - ok
08:37:05.0830 0x0d34  [ 1452AF963D2821CC35A24FE52F86B8A7, B88251D57DCE5087B7AF0D026A74B002C2C942F624EF88A083CC5C7D28686D87 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt73a1fc9d#\54565a827b0e5a6f78e93e2ae06dd0e4\System.Runtime.Remoting.ni.dll
08:37:05.0830 0x0d34  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runt73a1fc9d#\54565a827b0e5a6f78e93e2ae06dd0e4\System.Runtime.Remoting.ni.dll - ok
08:37:05.0846 0x0d34  [ F7073C962C4FB7C415565DDE109DE49F, 781E7088DCEFBC34A808C3E7DA41A56112B3F23ABE9F54B5EF4D5CD9CD016B1D ] C:\Windows\System32\npmproxy.dll
08:37:05.0846 0x0d34  C:\Windows\System32\npmproxy.dll - ok
08:37:05.0846 0x0d34  [ 32BD04C8379A843136449A734E70A7F6, 4A92647F97B41B1AAA95FCCEFE396B33A032EAD7C00205C67ACEC90F817613F2 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Inkjet.Statistics\f70c563062b64842be0cce9ae5eb1e45\Inkjet.Statistics.ni.dll
08:37:05.0846 0x0d34  C:\Windows\assembly\NativeImages_v4.0.30319_32\Inkjet.Statistics\f70c563062b64842be0cce9ae5eb1e45\Inkjet.Statistics.ni.dll - ok
08:37:05.0861 0x0d34  [ 9719E3D834F5C8C43F56A93DFA497023, 4D78D4BD4835C0A237821967156C19DF4B90384A6BCB1F48CEAF35D003A0099A ] C:\Windows\System32\pnpts.dll
08:37:05.0861 0x0d34  C:\Windows\System32\pnpts.dll - ok
08:37:05.0861 0x0d34  [ E811F8510B133E70CF6E509FB809824F, 82541F2B15748250462B67B6C77530D4F7C45A1482237EC49B28F9FA5A414108 ] C:\Windows\System32\wdiasqmmodule.dll
08:37:05.0861 0x0d34  C:\Windows\System32\wdiasqmmodule.dll - ok
08:37:05.0877 0x0d34  [ 36CCCCFFBA7FE74564A0507C817AAB94, 2174B2E9E7D9602ADB45B11B917E0253E604FAFFA0041A3B351EC0E187FB7AB0 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Inkjet.Hardware\7a22fa8e300850e1ccd7a0f585c80223\Inkjet.Hardware.ni.dll
08:37:05.0877 0x0d34  C:\Windows\assembly\NativeImages_v4.0.30319_32\Inkjet.Hardware\7a22fa8e300850e1ccd7a0f585c80223\Inkjet.Hardware.ni.dll - ok
08:37:05.0877 0x0d34  [ E64D9EC8018C55873B40FDEE9DBEF5B3, 2DB11E7C631A9887CB75AFEAD2C79EC65F82C51F5F073CEFC8CDDF664EFF29C1 ] C:\Windows\System32\PortableDeviceApi.dll
08:37:05.0877 0x0d34  C:\Windows\System32\PortableDeviceApi.dll - ok
08:37:05.0893 0x0d34  [ AFA79C343F9D1555F7E5D5FA70BB2A14, 440EF3ADC1F5C7A5ED3E872C8D8DFA61B039454C3CA67F8A51CA8BDCFDC4BA4A ] C:\Windows\System32\PortableDeviceConnectApi.dll
08:37:05.0893 0x0d34  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
08:37:05.0893 0x0d34  [ 639774C9ACD063F028F6084ABF5593AD, 9DFD80610CBBC9188F6C6BC85C87016B0AE42254FC289C2B578E85282BDD9C23 ] C:\Windows\System32\taskhost.exe
08:37:05.0893 0x0d34  C:\Windows\System32\taskhost.exe - ok
08:37:05.0939 0x0d34  [ 89981D2C95C5094B35A552EFEF1FF6CB, 9A6F51FB715D5F33D6C9D1722BF73072B6E8DFB9A368456A7C30F46F196D92F0 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.EKAiO2SDKLib\28d2af5802c33456d08e2288ecb73972\Interop.EKAiO2SDKLib.ni.dll
08:37:05.0939 0x0d34  C:\Windows\assembly\NativeImages_v4.0.30319_32\Interop.EKAiO2SDKLib\28d2af5802c33456d08e2288ecb73972\Interop.EKAiO2SDKLib.ni.dll - ok
08:37:05.0986 0x0d34  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] C:\Windows\System32\IPSECSVC.DLL
08:37:05.0986 0x0d34  C:\Windows\System32\IPSECSVC.DLL - ok
 



#12 poppyseed

poppyseed
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:03:12 PM

Posted 25 October 2014 - 09:31 AM

TDSSkiller log part 3:

 

08:37:06.0017 0x0d34  [ 9BC93C9ACFA34DB5A41B89357B31E4ED, C3B9DDCB31970F91F8CAF85D2431903DB1738872775EEFD6712B7646BDE1250C ] C:\Windows\System32\FwRemoteSvr.dll
08:37:06.0017 0x0d34  C:\Windows\System32\FwRemoteSvr.dll - ok
08:37:06.0017 0x0d34  [ 49BACF955ED0DD7E3C6B957F568A5D3E, 4EC83437F75FF94D6881D510D086AA87059F7EC9A6225FCB3E1F3A2302A5841A ] C:\Program Files (x86)\Kodak\AiO\Center\EKIJ5000SDK.dll
08:37:06.0017 0x0d34  C:\Program Files (x86)\Kodak\AiO\Center\EKIJ5000SDK.dll - ok
08:37:06.0033 0x0d34  [ 58A0CDABEA255616827B1C22C9994466, 4FE1140AA8D3995579DE8CDF4ECAD1978804D05351EABB4079A63B303EF1B451 ] C:\Windows\System32\NapiNSP.dll
08:37:06.0033 0x0d34  C:\Windows\System32\NapiNSP.dll - ok
08:37:06.0033 0x0d34  [ 613C8CE10A5FDE582BA5FA64C4D56AAA, 30507B6BA79E1A271B07BBA58B4FF463678BE0960266A1D5E88031E932D768B6 ] C:\Windows\System32\pnrpnsp.dll
08:37:06.0033 0x0d34  C:\Windows\System32\pnrpnsp.dll - ok
08:37:06.0049 0x0d34  [ 2E2072EB48238FCA8FBB7A9F5FABAC45, AC70B9FC24847EEC2E18008F2894DCDAC19A9C90D5D88729326E493CA524F5C3 ] C:\Windows\System32\winrnr.dll
08:37:06.0049 0x0d34  C:\Windows\System32\winrnr.dll - ok
08:37:06.0049 0x0d34  [ CE71B9119A258EDD0A05B37D7B0F92E3, D9310C5BBFE089B8C81E259C462EC1E6D7A7A87FA59FC1F174ED5C58D409AE7A ] C:\Windows\SysWOW64\bcrypt.dll
08:37:06.0049 0x0d34  C:\Windows\SysWOW64\bcrypt.dll - ok
08:37:06.0064 0x0d34  [ A8EDB86FC2A4D6D1285E4C70384AC35A, 61B8955CE0A2AA9D0719920B30216717B349B6FBE11C697C31CFA84F859CC1AE ] C:\Windows\System32\dllhost.exe
08:37:06.0064 0x0d34  C:\Windows\System32\dllhost.exe - ok
08:37:06.0064 0x0d34  [ 9028D1621C43DF8DFBD1C76860412A11, A1D48D9B33180BDE50D2FA9BB07E9520B7B7788C39B3AABB4A06AE4B1AACA755 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll
08:37:06.0064 0x0d34  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll - ok
08:37:06.0080 0x0d34  [ A0A2C1D812C231C9BFE119FDC68E341B, F94446594EE17505956A715DFB28B51D09F00A7A65E56950661B889A57DE8FA8 ] C:\Windows\System32\IDStore.dll
08:37:06.0080 0x0d34  C:\Windows\System32\IDStore.dll - ok
08:37:06.0095 0x0d34  [ 23566F9723771108D2E6CD768AC27407, FAC0293DD1061B151E779BF4B245E6652C951FEDEBC602A166156DFBD38B5D67 ] C:\Windows\System32\AtBroker.exe
08:37:06.0095 0x0d34  C:\Windows\System32\AtBroker.exe - ok
08:37:06.0095 0x0d34  [ 6CEF7856A3EFAC59470F6208F0F585CE, 0F7A80DB821FDE6580E9481B6DA44844F717DDB4983B0E3D562BE43726153951 ] C:\Windows\System32\mpr.dll
08:37:06.0095 0x0d34  C:\Windows\System32\mpr.dll - ok
08:37:06.0111 0x0d34  [ 863F793D15B4026B1A5FDECA873D4D84, AF7ABD95BB5467551562F129F03C7AC9D52A021F7E547609F40A80E66932C942 ] C:\Windows\SysWOW64\apphelp.dll
08:37:06.0111 0x0d34  C:\Windows\SysWOW64\apphelp.dll - ok
08:37:06.0111 0x0d34  [ F89773DFA9B8C95A3AC2AF1E7D99E483, 7C646F466850CACF9A5FD5C98D7E119FB79149CE0C667A82E0264C671B4582A9 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
08:37:06.0111 0x0d34  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe - ok
08:37:06.0127 0x0d34  [ BAFE84E637BF7388C96EF48D4D3FDD53, 11C194D9ADCE90027272C627D7FBF3BA5025FF0F7B26A8333F764E11E1382CF9 ] C:\Windows\System32\userinit.exe
08:37:06.0127 0x0d34  C:\Windows\System32\userinit.exe - ok
08:37:06.0127 0x0d34  [ 46863C4CC5B68EB09EA2D5EEF0F1193A, 9B5593E1F484AC8F96F89A5995FB1FE9C51CB2F0F545607F6850751191150CFE ] C:\Windows\System32\radardt.dll
08:37:06.0127 0x0d34  C:\Windows\System32\radardt.dll - ok
08:37:06.0142 0x0d34  [ FCFCD1101C5DA23B4B95F93D02B2C169, 040A086875B6C5475490A2F8B0CF4FF20DDB4FEDFE5FCABBA49692AA05F40527 ] C:\Windows\System32\dwmredir.dll
08:37:06.0142 0x0d34  C:\Windows\System32\dwmredir.dll - ok
08:37:06.0158 0x0d34  [ 1EBE9524683C7C4EED8B8BC93FB6FBCC, 78AF098E270EDE62466557091F14B2D37BDAB488F02E7CC769251FD17C02BA4A ] C:\Windows\SysWOW64\fltLib.dll
08:37:06.0158 0x0d34  C:\Windows\SysWOW64\fltLib.dll - ok
08:37:06.0158 0x0d34  [ 332FEAB1435662FC6C672E25BEB37BE3, 6BED1A3A956A859EF4420FEB2466C040800EAF01EF53214EF9DAB53AEFF1CFF0 ] C:\Windows\explorer.exe
08:37:06.0158 0x0d34  C:\Windows\explorer.exe - ok
08:37:06.0173 0x0d34  [ 4BA77A5EF71C14C764B0ED4701683E3E, 066A064CDBE09BF8BE1DF5B259F30FF6C124A1C3D637800D3E19E8E25EDB950E ] C:\Windows\System32\dwmcore.dll
08:37:06.0173 0x0d34  C:\Windows\System32\dwmcore.dll - ok
08:37:06.0173 0x0d34  [ E629F1A051C82795DDFFD3E8D4855811, 6E4DFFEAB2795C98EA6DCAF10EA6D97413D0F8CA0C04869CB20B74FF4D6FE679 ] C:\Windows\System32\dimsjob.dll
08:37:06.0173 0x0d34  C:\Windows\System32\dimsjob.dll - ok
08:37:06.0189 0x0d34  [ 94DFBB481BF51158B216E23C5C1C9D6E, 0199086A70B9B63E48A7A15C8AE5442E9C6BC0173BD80A104DE1BE6A6C25F202 ] C:\Windows\System32\certcli.dll
08:37:06.0189 0x0d34  C:\Windows\System32\certcli.dll - ok
08:37:06.0205 0x0d34  [ 35CB97CBC3EDC463418ED4997AAB29B6, EE60EABE2D87CEDD68FB8985B6C5D70930015FB2B8DB9FDCB4044587BC6ECA4C ] C:\Windows\System32\pautoenr.dll
08:37:06.0205 0x0d34  C:\Windows\System32\pautoenr.dll - ok
08:37:06.0205 0x0d34  [ 94EEAC26F57811BD1AEFC164412F7FCE, 7390BCD7709D48DE75D7D6E06AA7356D1C58EE63F3CC2E07ABCD2E2FF6CC81CF ] C:\Windows\System32\PlaySndSrv.dll
08:37:06.0205 0x0d34  C:\Windows\System32\PlaySndSrv.dll - ok
08:37:06.0220 0x0d34  [ 9BB99503D6A4DD62569EDE9E5E2672A5, 6F4EA5BC50B1F929735246485263078BEF1B3BEB33F78CB1F483F13AA226C27E ] C:\Windows\System32\HotStartUserAgent.dll
08:37:06.0220 0x0d34  C:\Windows\System32\HotStartUserAgent.dll - ok
08:37:06.0220 0x0d34  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA, 8A6ACEFAB95E5275CBFBE6CCB5A6C3A6A471260B279B9063E86B9C7765E18656 ] C:\Windows\System32\MsCtfMonitor.dll
08:37:06.0220 0x0d34  C:\Windows\System32\MsCtfMonitor.dll - ok
08:37:06.0236 0x0d34  [ F09A9A1AD21FE618C4C8B0A0D830C886, 29831DDAB2AB105358FBC067CDF96428220B6743CD6019F6FE74BAC7AF325E7E ] C:\Windows\System32\msutb.dll
08:37:06.0236 0x0d34  C:\Windows\System32\msutb.dll - ok
08:37:06.0251 0x0d34  [ 95EF63A7827D4E3A229CBBCB42619E93, FA38DD035B2C4FC82B60868F49D45A39FBBC96096AAD5A2C8BD752A250255BA7 ] C:\Windows\System32\drivers\mwac.sys
08:37:06.0251 0x0d34  C:\Windows\System32\drivers\mwac.sys - ok
08:37:06.0251 0x0d34  [ EED05D42D91835064703E2318552ED25, E9EE1E2253445B207B76F5D3073C612ED979A982522C1515E0FE8FA9641AE568 ] C:\Windows\System32\ExplorerFrame.dll
08:37:06.0251 0x0d34  C:\Windows\System32\ExplorerFrame.dll - ok
08:37:06.0267 0x0d34  [ 9AE80F6A66B30E3ED8CDF858CF28B11B, A93E470DC54E3C74C10979D49CABB9A34893F9E847F88491F935DB44EEC3541A ] C:\Windows\System32\d3d10_1.dll
08:37:06.0267 0x0d34  C:\Windows\System32\d3d10_1.dll - ok
08:37:06.0267 0x0d34  [ 63F72417CA38D8FC8F53709649B589E3, 39AE8AFFCFB8A9E345FC4C6F11926F25552C464380F88CDECD299FD27AF7866B ] C:\Windows\System32\d3d10_1core.dll
08:37:06.0267 0x0d34  C:\Windows\System32\d3d10_1core.dll - ok
08:37:06.0283 0x0d34  [ 8DFB5752FCE145A6B295093C0A8BE131, F38029C8B36EFD46B1F6CCA0089FF4EFB0AB246497E38EDFF6A67FAC804D4A97 ] C:\Windows\System32\dxgi.dll
08:37:06.0283 0x0d34  C:\Windows\System32\dxgi.dll - ok
08:37:06.0283 0x0d34  [ 59569D4BE0D79A2B8C3241C6DCEA0034, EDD1F2CA8225A797B2BB94141A3EB1E6CE5D08C1CBA8F6A115E0D32CF541F0D8 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.dll
08:37:06.0283 0x0d34  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.dll - ok
08:37:06.0298 0x0d34  [ 4C92EB7535CAA1681A77D928FBF9771F, 7D02B2357CA02393CA711C3C499AAD86B792EEFFDC67F2CE52F7F7BB8A28DE79 ] C:\Windows\System32\d3d11.dll
08:37:06.0298 0x0d34  C:\Windows\System32\d3d11.dll - ok
08:37:06.0314 0x0d34  [ 2954DC080087CF73818F959CB3ED9C13, 6CA3D7196CABD257A34599254C995321749CE10186872EF0625B28F7CA5BC97D ] C:\Program Files (x86)\Malwarebytes Anti-Malware\QtGui4.dll
08:37:06.0314 0x0d34  C:\Program Files (x86)\Malwarebytes Anti-Malware\QtGui4.dll - ok
08:37:06.0314 0x0d34  [ D36B759179DDD214743DCFB8ED791FA2, CADE72447E3231726B2CBF1C7B488D347E20187AE5760F8EE82BF150C31AD828 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\QtNetwork4.dll
08:37:06.0314 0x0d34  C:\Program Files (x86)\Malwarebytes Anti-Malware\QtNetwork4.dll - ok
08:37:06.0329 0x0d34  [ 8F19AA7A891F429578D19753E3659A16, B8386396BF0BEB717F1700094434356CAAE70F6203CC5E9DE1143765DDDE7FFB ] C:\Windows\System32\igd10umd64.dll
08:37:06.0329 0x0d34  C:\Windows\System32\igd10umd64.dll - ok
08:37:06.0345 0x0d34  [ 49E5753D923F1AC63B22D3DCB0B47E00, 14CEC0BF5F625FF839A8D79B4A6B7C4AC0CBB705FD197C6B7FF8617C6C3E34FE ] C:\Windows\System32\uDWM.dll
08:37:06.0345 0x0d34  C:\Windows\System32\uDWM.dll - ok
08:37:06.0345 0x0d34  [ 22BF02C220454ABE47C6DCF01AA12C77, 381259B0D3083AF0FF2C6B9BB55F58E218B05178DA134AE81C3F293A6E4128E2 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
08:37:06.0345 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll - ok
08:37:06.0361 0x0d34  [ 349B1D5D8D1B5A7B10BCD01470BD5F64, F0502E3D58713044F62F539B8738694E4CE9C619C665515F5ED2500C843C0C46 ] C:\Windows\System32\msvcp110.dll
08:37:06.0361 0x0d34  C:\Windows\System32\msvcp110.dll - ok
08:37:06.0361 0x0d34  [ C72ABC6B7B90A61364B6DD889B5435F3, 0CBBD9691F08434DA3617874F99C6DD87538CBD65B5D8BC39FCE378D4ED29EED ] C:\Windows\System32\msvcr110.dll
08:37:06.0361 0x0d34  C:\Windows\System32\msvcr110.dll - ok
08:37:06.0376 0x0d34  [ 024352FEEC9042260BB4CFB4D79A206B, 60CB39086E10C5B66EBC15E4DF219620B344B4358D2918AB6BB3448A0AC8BE36 ] C:\Windows\System32\EhStorShell.dll
08:37:06.0376 0x0d34  C:\Windows\System32\EhStorShell.dll - ok
08:37:06.0376 0x0d34  [ 037A719DAD50603202C978CD802623E4, BD4C222913D32D7CF5FE0201FEBE7BD67FC39DF47A7A672C2D6C228A6E13B5DE ] C:\Windows\System32\ntshrui.dll
08:37:06.0376 0x0d34  C:\Windows\System32\ntshrui.dll - ok
08:37:06.0392 0x0d34  [ FF014AC49AC32E5F1C7D6E271B320893, B18E4A47EE42C1E1962A243EF06FBB9D1401465D6B2CFA198B8ADEE1EA1C8ACE ] C:\Program Files (x86)\Malwarebytes Anti-Malware\imageformats\qgif4.dll
08:37:06.0392 0x0d34  C:\Program Files (x86)\Malwarebytes Anti-Malware\imageformats\qgif4.dll - ok
08:37:06.0407 0x0d34  [ 1D63F4366288B8A7595397E27010FD44, 99EA4DDD88D9C4A4CC9B238F533CB4D2C062D46239173997E8594D8A75811A01 ] C:\Windows\System32\IconCodecService.dll
08:37:06.0407 0x0d34  C:\Windows\System32\IconCodecService.dll - ok
08:37:06.0407 0x0d34  [ 12C45E3CB6D65F73209549E2D02ECA7A, 9DFD9C58B90257C34D52B7156C1D2566BE32EE7BD4699DDE164A5F190EC4D44A ] C:\Windows\SysWOW64\propsys.dll
08:37:06.0407 0x0d34  C:\Windows\SysWOW64\propsys.dll - ok
08:37:06.0423 0x0d34  [ 263B26106606A010CF877472B535E4BB, 43ECE89E428D2BB34244894BEBA1B946B0767649D15B1C715223E4E471A9E504 ] C:\Windows\System32\CertEnroll.dll
08:37:06.0423 0x0d34  C:\Windows\System32\CertEnroll.dll - ok
08:37:06.0423 0x0d34  [ 70A1D465390C393AA118D9764E065B06, 9CF967E76E5D6F3BE7E3A11EBF53F9AC4B3EF88432D338331EC7522FE8C11F10 ] C:\Windows\System32\apisetschema.dll
08:37:06.0423 0x0d34  C:\Windows\System32\apisetschema.dll - ok
08:37:06.0439 0x0d34  [ F5CEF064C7E6D95DA86B9D064A56A969, F118CD4364690F37A07AE458E043E8CFBA98F332DC9E7228C83409CF26F6EF6D ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
08:37:06.0439 0x0d34  C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
08:37:06.0439 0x0d34  [ 65EA57712340C09B1B0C427B4848AE05, 5FDCF73191BFF9DBB03886755FFCF0BC15849F0E216884A5A8B9BB375FA7C1A5 ] C:\Windows\System32\taskeng.exe
08:37:06.0439 0x0d34  C:\Windows\System32\taskeng.exe - ok
08:37:06.0454 0x0d34  [ 025E7DBDB98866ED3CB2D4DDA70B364D, 78962F23F066E362AF1A4B98FA7D5E30AF30C561307438503031D30C944B6A6E ] C:\Windows\System32\runonce.exe
08:37:06.0454 0x0d34  C:\Windows\System32\runonce.exe - ok
08:37:06.0470 0x0d34  [ 522B0466ED967A0762E9AF5B37D8F40A, B14C62D059BC7CF430E1B0F6E18E31EFD1959EFB3025A2B0EBB11751F38DD6D4 ] C:\Windows\System32\esent.dll
08:37:06.0470 0x0d34  C:\Windows\System32\esent.dll - ok
08:37:06.0470 0x0d34  [ 805A52C5AE26C28E88FDD9BCCFE6F312, 4FF28D3658C31722B7DD036DED9D544B14841C0E0B94D31A8EC5AB92128DA020 ] C:\Windows\System32\TSChannel.dll
08:37:06.0470 0x0d34  C:\Windows\System32\TSChannel.dll - ok
08:37:06.0485 0x0d34  [ D44741F65A1D71F65814A12CF6E2400A, C6721F830675ADC7E7FDE2B5E822E56F6A063146F5066F1E25EBFE86F0A87136 ] C:\Windows\SysWOW64\runonce.exe
08:37:06.0485 0x0d34  C:\Windows\SysWOW64\runonce.exe - ok
08:37:06.0485 0x0d34  [ 30DB64D316F502558DB2380F7343C9FD, 4C1B8F9637EA79644CDD86AEA0A3360482905321DD32B158587FBB60884E93D6 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
08:37:06.0485 0x0d34  C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll - ok
08:37:06.0501 0x0d34  [ 4ECFCAAE5CB380F58934F0DCF5F64E7F, D82B37E57D93484D7A3CB65470BCD54A578A695F0203A8DD441B1348C1EEA751 ] C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
08:37:06.0501 0x0d34  C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe - ok
08:37:06.0517 0x0d34  [ 207204AF80505AF51271FE164B56F662, 509E2F4D2F696108E4DBE40A7828C633E988289EE4756D2E0FAC9D59604445C6 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveUtil.dll
08:37:06.0517 0x0d34  C:\Program Files (x86)\Microsoft Office\Office12\GrooveUtil.dll - ok
08:37:06.0532 0x0d34  [ 30EFEBDC960A482E3E188B9960B286E2, C4B0ABD3C8E4D6C78F713B93C382E9DC2C86F03B479FDE461EAD2DB1BCDF0578 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveNew.dll
08:37:06.0532 0x0d34  C:\Program Files (x86)\Microsoft Office\Office12\GrooveNew.dll - ok
08:37:06.0532 0x0d34  [ F11A57E91FDAECFB41A5CB21EB1EBC8E, 904DA963F2274ADF521660E3131DAC781E59C6FAEB393E57802A3B5638C09283 ] C:\Windows\System32\dssenh.dll
08:37:06.0532 0x0d34  C:\Windows\System32\dssenh.dll - ok
08:37:06.0548 0x0d34  [ D5E459BED3DB9CF7FC6CC1455F177D2D, FCAB2130FAB57B6728C50D5B9E9924F001C43538DE4F675DE03537FF0D9B84BD ] C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll
08:37:06.0548 0x0d34  C:\Windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.dll - ok
08:37:06.0548 0x0d34  [ 18AB2E5A40064ED5F7791AC5946A90F3, B7536CE56702C23B1CEC3E1B6C78866E0A76808B85A92AF3733D9ED9429E004C ] C:\Windows\SysWOW64\msimg32.dll
08:37:06.0548 0x0d34  C:\Windows\SysWOW64\msimg32.dll - ok
08:37:06.0579 0x0d34  [ D8C2B95BC2353E1F18850D6B8F5DBA13, 0C448A46CDDD0C39092E371EEDF2DD9A0F21E051109ED15C3D7F3C6E9E53782D ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
08:37:06.0579 0x0d34  C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll - ok
08:37:06.0579 0x0d34  [ 33398D340008A0577507FCA7FD443622, C76B02D6582B85181A21E0E4E40F958C4EB86CFFD4C4CF7ECE4E49D9A1BAF923 ] C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbam-setup.exe
08:37:06.0579 0x0d34  C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\mbam-setup.exe - ok
08:37:06.0595 0x0d34  [ 533AECD1B5356870AE2D905B4D3B42B7, 953338C70D58C65D64503694B2CAFE60D71B204EFAA326FCB9685B8AAF756B84 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMisc.dll
08:37:06.0595 0x0d34  C:\Program Files (x86)\Microsoft Office\Office12\GrooveMisc.dll - ok
08:37:06.0595 0x0d34  [ AD7B9C14083B52BC532FBA5948342B98, 17F746D82695FA9B35493B41859D39D786D32B23A9D2E00F4011DEC7A02402AE ] C:\Windows\SysWOW64\cmd.exe
08:37:06.0595 0x0d34  C:\Windows\SysWOW64\cmd.exe - ok
08:37:06.0610 0x0d34  [ 846D0E4DB261CFAF363902E41498E961, D7E5591B7604FD583AF7FDA19E30928B24A6145318A3944E7D207F0CCEEB30D0 ] C:\Windows\SysWOW64\EhStorShell.dll
08:37:06.0610 0x0d34  C:\Windows\SysWOW64\EhStorShell.dll - ok
08:37:06.0610 0x0d34  [ BF95EA5809E3BBF55370F7CB309FEBD0, 62ADBA6E1A7DDDEFA971580161F30896DFFC27EB4EB82E3CC72062D57DA66500 ] C:\Windows\System32\conhost.exe
08:37:06.0610 0x0d34  C:\Windows\System32\conhost.exe - ok
08:37:06.0626 0x0d34  [ 03F3B770DFBED6131653CEDA8CA780F0, 77373919DCA647F09851E7E460AE78FBD89F21516B961F84AC4446304E51E09C ] C:\Windows\SysWOW64\ntshrui.dll
08:37:06.0626 0x0d34  C:\Windows\SysWOW64\ntshrui.dll - ok
08:37:06.0641 0x0d34  [ 465BEA35F7ED4A4A57686DEA7EA10F47, 7F1B3CA09AB045F805DA5765BE7DD270F5DDACE3073017F7386FF1E2FA82D6FB ] C:\Windows\SysWOW64\cscapi.dll
08:37:06.0641 0x0d34  C:\Windows\SysWOW64\cscapi.dll - ok
08:37:06.0641 0x0d34  [ 8B74CEC6980D4816B0037AE9A27E538F, 8721EDB4C51BF6020002FA5DDB1987C68590F9F433A2F18D9756B2DAC7542CB6 ] C:\Windows\SysWOW64\slc.dll
08:37:06.0641 0x0d34  C:\Windows\SysWOW64\slc.dll - ok
08:37:06.0657 0x0d34  [ 326C7F76A29897A892AA7726E91C1C67, 64305346B06EC14976130B0B80F14B4D5AB63E5B2A6A7B872EC9CE2BF8FADCD2 ] C:\Windows\SysWOW64\winbrand.dll
08:37:06.0657 0x0d34  C:\Windows\SysWOW64\winbrand.dll - ok
08:37:06.0657 0x0d34  [ EF94FA1F3D90520CCA4AE65D639A9E62, 2F9DD6D8AC0A02009D9F162BE317436FE78D5973518F5997B78867D852DF617F ] C:\Windows\SysWOW64\ieframe.dll
08:37:06.0657 0x0d34  C:\Windows\SysWOW64\ieframe.dll - ok
08:37:06.0673 0x0d34  [ 827CB0D6C3F8057EA037FF271F8E9795, 82760DBDDD38D2A31CAAF51D065DF4E7E1D0F0C22733A0AF653776EBF7B79470 ] C:\Windows\SysWOW64\imageres.dll
08:37:06.0673 0x0d34  C:\Windows\SysWOW64\imageres.dll - ok
08:37:06.0673 0x0d34  [ 60F4AEFA103D421EA4A40E31409B4756, 037A8605CA504A4FF43E9D4DE9017CEA1E26D3556C975872C747E24D8B0835EF ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
08:37:06.0673 0x0d34  C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
08:37:06.0688 0x0d34  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:37:06.0688 0x0d34  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
08:37:06.0704 0x0d34  [ 26C43960C99EE861A5D0EDC4DCF3B1C3, 6238FB8E785652040CCE3E7044EA52066CE1BF173A1467474D64A3AB214B6BCD ] C:\Windows\System32\drivers\MBAMSwissArmy.sys
08:37:06.0704 0x0d34  C:\Windows\System32\drivers\MBAMSwissArmy.sys - ok
08:37:06.0704 0x0d34  [ 2C4A87CA8C00E98EFDCFA2E8EC9A3503, DA59CE662E98E56D89E2894D2AC8B9F324C16DA23C860640EDC2C82E0AD06097 ] C:\Windows\SysWOW64\shdocvw.dll
08:37:06.0704 0x0d34  C:\Windows\SysWOW64\shdocvw.dll - ok
08:37:06.0719 0x0d34  [ 92E0508D924512F63FFEEFE498CBD11F, 1158011E4A1298DEC79133B40888AA87B06F5B64BA2AB461B58C22F5F9211D0C ] C:\Windows\System32\p2pcollab.dll
08:37:06.0719 0x0d34  C:\Windows\System32\p2pcollab.dll - ok
08:37:06.0735 0x0d34  [ 506A83A3BEEE9FCA09F0170DE9FC7D1B, 2DFBD792B68F3EBEF0843183CAE5D52B6FA04163808AFACF6C0D738455898C36 ] C:\Windows\System32\fveui.dll
08:37:06.0735 0x0d34  C:\Windows\System32\fveui.dll - ok
08:37:06.0735 0x0d34  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] C:\Windows\System32\wuaueng.dll
08:37:06.0735 0x0d34  C:\Windows\System32\wuaueng.dll - ok
08:37:06.0751 0x0d34  [ D40E7B5FBB8E0EAA7C5C294389AF95AB, 8EFD521DF1F335AF416DEC15D5C0C6538903803AA1A8ED93AA704B384A29876B ] C:\Users\User\AppData\Local\Temp\{0F7260CC-D184-4F62-9C55-DBA5BAB744CF}.exe
08:37:06.0751 0x0d34  C:\Users\User\AppData\Local\Temp\{0F7260CC-D184-4F62-9C55-DBA5BAB744CF}.exe - ok
08:37:06.0751 0x0d34  [ E243FE74E2ADE67A1BD3F79E6D8D9245, 247832F36259907A7EFC4F4DD718EDE788B3A979D734165AE5133417E6EA25F7 ] C:\Program Files (x86)\Google\Update\1.3.25.5\goopdate.dll
08:37:06.0751 0x0d34  C:\Program Files (x86)\Google\Update\1.3.25.5\goopdate.dll - ok
08:37:06.0766 0x0d34  [ C61DDFE40204F3BE3DF111981D91560E, 450D5E608D344B2186A73F5421CAF1792902BFB428182D6C5A971C5E0686842F ] C:\Windows\SysWOW64\ncrypt.dll
08:37:06.0766 0x0d34  C:\Windows\SysWOW64\ncrypt.dll - ok
08:37:06.0782 0x0d34  [ E8449FE262D7406BCB2AC2A45C53EC5F, 6C118C9FB26404D1943824CF3990F36E12986547FFACB7CC0DF975A913065D78 ] C:\Windows\SysWOW64\bcryptprimitives.dll
08:37:06.0782 0x0d34  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
08:37:06.0782 0x0d34  [ 1097F3035BAF46CED8B332B3564C5108, C69781683CA963A1335780DABBBC60E2C3CEF0888738D3425D358D12E8D0AF58 ] C:\Windows\SysWOW64\gpapi.dll
08:37:06.0782 0x0d34  C:\Windows\SysWOW64\gpapi.dll - ok
08:37:06.0797 0x0d34  [ 7B851A8018B1EA00A69707A390004884, DAE654713EF1DC66C8C2D27752B659081794063A7D522D1F680AA9A6E7FBA9FD ] C:\Windows\SysWOW64\cryptnet.dll
08:37:06.0797 0x0d34  C:\Windows\SysWOW64\cryptnet.dll - ok
08:37:06.0797 0x0d34  [ CE5BAB535BFA98530DDAC4661A751DFE, 2034001AD8C8B39889349D96437696FC0C924725D2ECE4FF74FEA8466E60E1A3 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\7z.dll
08:37:06.0797 0x0d34  C:\Program Files (x86)\Malwarebytes Anti-Malware\7z.dll - ok
08:37:06.0813 0x0d34  [ 9E4FA017C8D51AC87E25C0BA8A669DCC, FD4ED5098D25FF7A3D8C064B3883FBB0875D9689058D94464B64A37963AA4D55 ] C:\Program Files (x86)\Google\Update\1.3.25.5\goopdateres_en.dll
08:37:06.0813 0x0d34  C:\Program Files (x86)\Google\Update\1.3.25.5\goopdateres_en.dll - ok
08:37:06.0813 0x0d34  [ 976D5F35A058340DA2C160CEC4063C4B, 156210FFE32821DBC0BEE39FE1CD7CD30ECFC02B80EF02DC2A990DA06B87A925 ] C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe
08:37:06.0813 0x0d34  C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe - ok
08:37:06.0829 0x0d34  [ 047556104954A72A2222FFF169166EEE, B9DED78A089FDCBF557D99546107E384D077D617655D14990E14FDA9A3B609ED ] C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe
08:37:06.0829 0x0d34  C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe - ok
08:37:06.0844 0x0d34  [ A7A8CA53D9C9FD90C07AB0EB38E5316B, B98722E76601A98F038F40703C4B8BD21B5EC3B65DC1B07B7C367C06448F8A0E ] C:\Windows\System32\dbghelp.dll
08:37:06.0844 0x0d34  C:\Windows\System32\dbghelp.dll - ok
08:37:06.0844 0x0d34  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9, E18D66455D00A6D2A2D7CC0833C233FE8A6DD910B59D6B5B5F82EF91450858DF ] C:\Windows\SysWOW64\sfc.dll
08:37:06.0844 0x0d34  C:\Windows\SysWOW64\sfc.dll - ok
08:37:06.0860 0x0d34  [ 84799328D87B3091A3BDD251E1AD31F9, F85521215924388830DBB13580688DB70B46AF4C7D82D549D09086438F8D237B ] C:\Windows\SysWOW64\sfc_os.dll
08:37:06.0860 0x0d34  C:\Windows\SysWOW64\sfc_os.dll - ok
08:37:06.0860 0x0d34  [ 162D247E995EAEBF3EF4289069E1111C, 19E858E9902E2D570FFD24AE2CB4165273F5BAB1FF7B04758B11AB5CD41FD752 ] C:\Windows\SysWOW64\devrtl.dll
08:37:06.0860 0x0d34  C:\Windows\SysWOW64\devrtl.dll - ok
08:37:06.0875 0x0d34  [ 71EF970D853661A6BAFBD45C36714FEC, F9EE7079D10AE7883C33860361B25FC3F3D29258FCF01902136ADE921E236E22 ] C:\Windows\System32\wmploc.DLL
08:37:06.0875 0x0d34  C:\Windows\System32\wmploc.DLL - ok
08:37:06.0891 0x0d34  [ 2C647ABE9A424E55B5F3DAE4629B4277, 7B33009D253BAFFF87535C075E75498B6A06F334035DDC0DF51E10A142B4DF9E ] C:\Windows\System32\themeui.dll
08:37:06.0891 0x0d34  C:\Windows\System32\themeui.dll - ok
08:37:06.0891 0x0d34  [ 29C0530E0F120AC3E583889DCD6A63DD, D7612E3F224F2053B22177DED131609EB60173A7F2274DCEA16210B57CAEDD29 ] C:\Windows\System32\ie4uinit.exe
08:37:06.0891 0x0d34  C:\Windows\System32\ie4uinit.exe - ok
08:37:06.0907 0x0d34  [ FB10715E4099AF9FA389C71873245226, 6A4CB43880B822A0C4714D6E52EB3EB2CE1E69C3AA9CA65EAAD6B131AE43F274 ] C:\Windows\System32\timedate.cpl
08:37:06.0907 0x0d34  C:\Windows\System32\timedate.cpl - ok
08:37:06.0907 0x0d34  [ 220159496484D34009DE71CA1A68E0D4, 94BD3DEB4E84F95D80BE5775E5A612EFF181ECB212FB668674C67AD19194DE69 ] C:\Windows\System32\wbem\NCProv.dll
08:37:06.0907 0x0d34  C:\Windows\System32\wbem\NCProv.dll - ok
08:37:06.0922 0x0d34  [ E6F0F82788E8BD0F7A616350EFA0761C, 13091DCB3E3F4F52C3FF210E93AAF1DCE142CFC09F671AEAC5B922393B23E67B ] C:\Windows\System32\actxprxy.dll
08:37:06.0922 0x0d34  C:\Windows\System32\actxprxy.dll - ok
08:37:06.0922 0x0d34  [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\User\AppData\Local\Temp\{2C804651-74CF-4E18-BDFF-FFE77FCC29F8}\{9DE2F0EB-62C7-4191-B0EF-459D49BFEF8F}.tmp
08:37:06.0922 0x0d34  C:\Users\User\AppData\Local\Temp\{2C804651-74CF-4E18-BDFF-FFE77FCC29F8}\{9DE2F0EB-62C7-4191-B0EF-459D49BFEF8F}.tmp - ok
08:37:06.0938 0x0d34  [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\User\AppData\Local\Temp\{2C804651-74CF-4E18-BDFF-FFE77FCC29F8}\{9645A0C8-BBB4-47DF-85A2-17400118B9DF}.tmp
08:37:06.0938 0x0d34  C:\Users\User\AppData\Local\Temp\{2C804651-74CF-4E18-BDFF-FFE77FCC29F8}\{9645A0C8-BBB4-47DF-85A2-17400118B9DF}.tmp - ok
08:37:06.0953 0x0d34  [ 23B001185B7C3CB1F4BDEB143E6B45B7, AB3A5AB346F6353B43B06FBE20B7785DA988975E2C8B73A6588F107FFAAACC47 ] C:\Windows\System32\shdocvw.dll
08:37:06.0953 0x0d34  C:\Windows\System32\shdocvw.dll - ok
08:37:06.0953 0x0d34  [ A0A65D306A5490D2EB8E7DE66898ECFD, CE5DA408F4EDD5E81CE0925867F03C9A35172CF1571FE4C4C052E45AB69822BB ] C:\Windows\System32\linkinfo.dll
08:37:06.0953 0x0d34  C:\Windows\System32\linkinfo.dll - ok
08:37:06.0969 0x0d34  [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\Users\User\AppData\Local\Temp\{2C804651-74CF-4E18-BDFF-FFE77FCC29F8}\{2C7BB532-9BD3-40B4-B3FE-4D1759AD3D65}.tmp
08:37:06.0969 0x0d34  C:\Users\User\AppData\Local\Temp\{2C804651-74CF-4E18-BDFF-FFE77FCC29F8}\{2C7BB532-9BD3-40B4-B3FE-4D1759AD3D65}.tmp - ok
08:37:06.0969 0x0d34  [ FD28E3B46F63337EAF905120F1E00070, 23001BDC9A3BBB82021C4B8664F07FDC0BEF5CB43BE9CF1C17E53E9BDB23FF01 ] C:\Windows\System32\accessibilitycpl.dll
08:37:06.0969 0x0d34  C:\Windows\System32\accessibilitycpl.dll - ok
08:37:06.0985 0x0d34  [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86, E15ED4FEFC3010C213694331DDFDC03767682325C898D773AB243E2DC8B08461 ] C:\Windows\System32\msftedit.dll
08:37:06.0985 0x0d34  C:\Windows\System32\msftedit.dll - ok
08:37:06.0985 0x0d34  [ 2EBD0C5B090125AECF017C57344C45AB, 4FF8F2460115C60AD164EE0DC2079E1601B8AA21A1BA8033B7B731FAF85411B6 ] C:\Windows\System32\msls31.dll
08:37:06.0985 0x0d34  C:\Windows\System32\msls31.dll - ok
08:37:07.0000 0x0d34  [ 80041798F2F049259241393A2017DB02, 59B8913A129EC26FB111C2C614C0C7440D521F65BAF32E57CA48E34337C0DDEE ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
08:37:07.0000 0x0d34  C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
08:37:07.0016 0x0d34  [ 6335F8B4B89F002A3801473C1A799237, 05DEEA3B4677764EAC34B0F99B22B31F337BB2349A563522A304F697413857A4 ] C:\Windows\System32\wucltux.dll
08:37:07.0016 0x0d34  C:\Windows\System32\wucltux.dll - ok
08:37:07.0016 0x0d34  [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\User\AppData\Local\Temp\{2C804651-74CF-4E18-BDFF-FFE77FCC29F8}\{6CF2B656-C9C7-4481-B870-58D753AFE1DC}.tmp
08:37:07.0016 0x0d34  C:\Users\User\AppData\Local\Temp\{2C804651-74CF-4E18-BDFF-FFE77FCC29F8}\{6CF2B656-C9C7-4481-B870-58D753AFE1DC}.tmp - ok
08:37:07.0031 0x0d34  [ 4C2C4640BF23AAFCF90519E0F34436CE, 8ACCDA77C2DC5BE2DAED05134310122AFECC872A8D118612E55DD229BFE4D844 ] C:\Windows\System32\DeviceCenter.dll
08:37:07.0031 0x0d34  C:\Windows\System32\DeviceCenter.dll - ok
08:37:07.0047 0x0d34  [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\User\AppData\Local\Temp\{2C804651-74CF-4E18-BDFF-FFE77FCC29F8}\{90B57BDA-55E5-4736-86D2-D3942D8044BC}.tmp
08:37:07.0047 0x0d34  C:\Users\User\AppData\Local\Temp\{2C804651-74CF-4E18-BDFF-FFE77FCC29F8}\{90B57BDA-55E5-4736-86D2-D3942D8044BC}.tmp - ok
08:37:07.0047 0x0d34  [ 88380081BC2C3163B24EF393844131FA, 744225AA22A8F88DEC17D99294A46129B844374C6ADD9E03DFC2BDD54633166F ] C:\PROGRA~2\Windows Live\Photo Gallery\WLXPhotoLibraryDuiResourcesLocalized.dll
08:37:07.0047 0x0d34  C:\PROGRA~2\Windows Live\Photo Gallery\WLXPhotoLibraryDuiResourcesLocalized.dll - ok
08:37:07.0063 0x0d34  [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\User\AppData\Local\Temp\{2C804651-74CF-4E18-BDFF-FFE77FCC29F8}\{9FE5A5C3-424C-4BD7-A30C-CB7A6A0B4322}.tmp
08:37:07.0063 0x0d34  C:\Users\User\AppData\Local\Temp\{2C804651-74CF-4E18-BDFF-FFE77FCC29F8}\{9FE5A5C3-424C-4BD7-A30C-CB7A6A0B4322}.tmp - ok
08:37:07.0063 0x0d34  [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\User\AppData\Local\Temp\{2C804651-74CF-4E18-BDFF-FFE77FCC29F8}\{795F9AC1-872D-47A6-BED3-086FEF8DC9C1}.tmp
08:37:07.0063 0x0d34  C:\Users\User\AppData\Local\Temp\{2C804651-74CF-4E18-BDFF-FFE77FCC29F8}\{795F9AC1-872D-47A6-BED3-086FEF8DC9C1}.tmp - ok
08:37:07.0078 0x0d34  [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\User\AppData\Local\Temp\{2C804651-74CF-4E18-BDFF-FFE77FCC29F8}\{44508CF4-75F4-48B8-ADC3-C764F82AE2B3}.tmp
08:37:07.0078 0x0d34  C:\Users\User\AppData\Local\Temp\{2C804651-74CF-4E18-BDFF-FFE77FCC29F8}\{44508CF4-75F4-48B8-ADC3-C764F82AE2B3}.tmp - ok
08:37:07.0094 0x0d34  [ 43D4B8E9DC8C1F0C16B74D57A98A806F, 0A0D4DBF1DD8DE60927F1D13FC092513D48241FAB2DB0AEE1144E6E58C36776F ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
08:37:07.0094 0x0d34  C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
08:37:07.0094 0x0d34  [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
08:37:07.0094 0x0d34  C:\Program Files\Windows Sidebar\sidebar.exe - ok
08:37:07.0109 0x0d34  [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\User\AppData\Local\Temp\{2C804651-74CF-4E18-BDFF-FFE77FCC29F8}\{3CABA33A-E6EB-4B1E-B12F-4236F2FCD14D}.tmp
08:37:07.0109 0x0d34  C:\Users\User\AppData\Local\Temp\{2C804651-74CF-4E18-BDFF-FFE77FCC29F8}\{3CABA33A-E6EB-4B1E-B12F-4236F2FCD14D}.tmp - ok
08:37:07.0109 0x0d34  [ FDA49D1D0C201F6C76BD2593F562BF80, AC021539FBFB30F85973797F48180BB916272A71C02B6C2E41FCAC99FDC4FD7E ] C:\Windows\System32\WindowsAnytimeUpgradeui.exe
08:37:07.0109 0x0d34  C:\Windows\System32\WindowsAnytimeUpgradeui.exe - ok
08:37:07.0125 0x0d34  [ 7E60EE8A68F7270D1E1662CBA275D4FA, 0CD0DCE4C732EE597A866B9918BC7C1CEF955CD938667E9D94629D1CA2AE4CB2 ] C:\Windows\System32\ieframe.dll
08:37:07.0125 0x0d34  C:\Windows\System32\ieframe.dll - ok
08:37:07.0125 0x0d34  [ 9108540E866F75C7AF2B91DD921A8091, 7208C8E05E818781D7F2703B86848FC90651E0D8BE10362863250F2283CEC511 ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
08:37:07.0125 0x0d34  C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
08:37:07.0141 0x0d34  [ FB4045578F5180BDB1963AB352B78548, 8E645A63436EE6CDDB78E6064AEB04ECE39208F760A3EF13A3F49FDF41505E21 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
08:37:07.0141 0x0d34  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
08:37:07.0156 0x0d34  [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\User\AppData\Local\Temp\{2C804651-74CF-4E18-BDFF-FFE77FCC29F8}\{E9FFF2C9-4085-443B-9714-5B70A358C6D3}.tmp
08:37:07.0156 0x0d34  C:\Users\User\AppData\Local\Temp\{2C804651-74CF-4E18-BDFF-FFE77FCC29F8}\{E9FFF2C9-4085-443B-9714-5B70A358C6D3}.tmp - ok
08:37:07.0156 0x0d34  [ 405F4D32D2185F1F1BD753D8EEAFFB3A, CAC42C3E09C43BE96592B670D70821386014DB22D8239A9CFB9E33E54FB5C3D5 ] C:\Windows\System32\networkexplorer.dll
08:37:07.0156 0x0d34  C:\Windows\System32\networkexplorer.dll - ok
08:37:07.0172 0x0d34  [ E83D2495D5867E224FBF42EF40D8856C, 2C806D9B932F24C4BC84E86CED7962A75C0161FF732F77EB1827A3A14976B2C1 ] C:\Program Files\DVD Maker\DVDMaker.exe
08:37:07.0172 0x0d34  C:\Program Files\DVD Maker\DVDMaker.exe - ok
08:37:07.0187 0x0d34  [ 87A4570E9D15A2821015B7FB6B821654, BDF5266905DC3F9ED0DBE41798D9907FC9E8D030DD5C28975BBF9BFD8BD9DA71 ] C:\Windows\System32\igfxtray.exe
08:37:07.0187 0x0d34  C:\Windows\System32\igfxtray.exe - ok
08:37:07.0187 0x0d34  [ 24F4B480F335A6C724AF352253C5D98B, 011413B236CAD7B78CE0A0EEC3E3085D48C7576A3205D025BA6EBFDF590538E4 ] C:\Windows\System32\thumbcache.dll
08:37:07.0187 0x0d34  C:\Windows\System32\thumbcache.dll - ok
08:37:07.0203 0x0d34  [ 82BD1656314D2FA949A0E8522828F837, 746A98E68D8FC05B7C577A0BC7DD9C197E80F0B73614F5A2CA84B01C2EF433D1 ] C:\Windows\System32\hccutils.dll
08:37:07.0203 0x0d34  C:\Windows\System32\hccutils.dll - ok
08:37:07.0203 0x0d34  [ 842683D8F1A58A76E5A03DA35B4962EE, 7D1B1918D69566694D7D0E82A8A1C7537A5C3A1533DC80F60FE212DD2DBC6099 ] C:\Windows\System32\hkcmd.exe
08:37:07.0203 0x0d34  C:\Windows\System32\hkcmd.exe - ok
08:37:07.0219 0x0d34  [ 5F639198C4137075DA50E61C23963C11, 3D03B3BF62B3469069AD6BE2AAEE152CB6722D36C001B8197FEBC2F3EB9ADBE0 ] C:\Windows\System32\drprov.dll
08:37:07.0219 0x0d34  C:\Windows\System32\drprov.dll - ok
08:37:07.0219 0x0d34  [ BC566D17914B07ABAAB3A5A385CC3300, DCE0A1D26312AA6441FB7122C6EED980AE350D58B2B4B166CB62F983306268E9 ] C:\Windows\System32\ntlanman.dll
08:37:07.0219 0x0d34  C:\Windows\System32\ntlanman.dll - ok
08:37:07.0234 0x0d34  [ B32AB94A432289AC2DF77A3DCAD32EED, B1021C78F940E6FA7A8992B2733B593B89DA57325A0A0D13D2767F193A78D90F ] C:\Windows\System32\davclnt.dll
08:37:07.0234 0x0d34  C:\Windows\System32\davclnt.dll - ok
08:37:07.0250 0x0d34  [ 090B075647258B999BF8A3E65CFE7E8F, B73CF797C9DD4F6CC9EB3BB701443363F4CE009B1C4941D88B97DC8899A86BE1 ] C:\Windows\System32\SynCOM.dll
08:37:07.0250 0x0d34  C:\Windows\System32\SynCOM.dll - ok
08:37:07.0250 0x0d34  [ 45B24A357C801CE62052FE0CDC8BD4D2, 00602E41B78473825253F6B2557A5C43FBDDCCF713D806929AE7C039FF8F185C ] C:\Windows\System32\davhlpr.dll
08:37:07.0250 0x0d34  C:\Windows\System32\davhlpr.dll - ok
08:37:07.0265 0x0d34  [ 99F8C1060BFB20D2039716BBF741D6C2, 8C578E288D88697E88AB9BEAE79D33AF23AD6176D830D5916BD2DD42EC6FADC5 ] C:\Windows\System32\igfxpers.exe
08:37:07.0265 0x0d34  C:\Windows\System32\igfxpers.exe - ok
08:37:07.0265 0x0d34  [ 492CB6A624D5DAD73EE0294B5DB37DD6, CCB4ECD48561CE024EA176B7036F0F2713B98BC82AA37347A30D8187762A8784 ] C:\Windows\System32\xpsrchvw.exe
08:37:07.0265 0x0d34  C:\Windows\System32\xpsrchvw.exe - ok
08:37:07.0281 0x0d34  [ A5EE9CCAE2D4C3D0D2CDF1BA1D3BE2BE, ECB3D3D7C21111B6A546E789F9919BDA8B61EAA402B4686BF0FFA8336BB57C6E ] C:\Windows\System32\SynTPAPI.dll
08:37:07.0281 0x0d34  C:\Windows\System32\SynTPAPI.dll - ok
08:37:07.0297 0x0d34  [ 7CB55ECF3860D14DEA2DED97461A08B0, 3322D1A9BF2DBF509E0A891B815FFF2FFF9CCE23E2D29C1CA9E8EB714C3EEF99 ] C:\Windows\System32\igfxsrvc.exe
08:37:07.0297 0x0d34  C:\Windows\System32\igfxsrvc.exe - ok
08:37:07.0297 0x0d34  [ 102CF6879887BBE846A00C459E6D4ABC, A4C51C79CF95D5C79DCEFB02946A09A987FEAF83CE2EE1BA7677EBA90869AC80 ] C:\Windows\SysWOW64\riched20.dll
08:37:07.0297 0x0d34  C:\Windows\SysWOW64\riched20.dll - ok
08:37:07.0312 0x0d34  [ E2A17BCC08D92F42E08AF6BA2F93ABA7, 5FC9D47BF4B1094BECC0C0DDCD5CD4318DD3E4495D982F8785331616D5B82599 ] C:\Windows\SysWOW64\ExplorerFrame.dll
08:37:07.0312 0x0d34  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
08:37:07.0328 0x0d34  [ D740A8765554D6BF9AC40254C541F23F, B6330541331D22B81CD6BDB9F6B2E0BD8BCEE5BFBEF5B520D2648E6CDDF31C41 ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
08:37:07.0328 0x0d34  C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
08:37:07.0328 0x0d34  [ 6E1F8165C365D35C8E3C045AF0CDD481, B861360D0A014265A0BEB4CC2FE31EA05AE95120E8B07820C13A044D64C00E2B ] C:\Windows\SysWOW64\duser.dll
08:37:07.0328 0x0d34  C:\Windows\SysWOW64\duser.dll - ok
08:37:07.0343 0x0d34  [ B0F8CCA08DBC392442E27377B98DD0CD, D76D5897EFE57BD3897F3ACD44A85003BD412E9C0CAF1C78D18137C32327A399 ] C:\Windows\System32\consent.exe
08:37:07.0343 0x0d34  C:\Windows\System32\consent.exe - ok
08:37:07.0359 0x0d34  [ B795E6138E29A37508285FC31E92BD78, 01A9733871BAA8518092BADE3FCE62DCCA14CDF6FC55B98218253580B38D7659 ] C:\Windows\System32\DisplaySwitch.exe
08:37:07.0359 0x0d34  C:\Windows\System32\DisplaySwitch.exe - ok
08:37:07.0359 0x0d34  [ 74E6E1E62E35661679A6CAFF392B96E9, 03AB89AE3B205DDF31497FDECCFF9BA389892C3DAF05D0D408C2627FBA06164D ] C:\Windows\System32\spool\drivers\x64\3\EKIJ5000MUI.exe
08:37:07.0359 0x0d34  C:\Windows\System32\spool\drivers\x64\3\EKIJ5000MUI.exe - ok
08:37:07.0375 0x0d34  [ EE06B85BC69F18826302348A2AD089E0, 417205797CC9F6C986A863A61179784D9ADCAF1961EF8A4D9042D73C5A86509A ] C:\Windows\SysWOW64\dui70.dll
08:37:07.0375 0x0d34  C:\Windows\SysWOW64\dui70.dll - ok
08:37:07.0390 0x0d34  [ C3761661C17C2248A9379A8FB89E3DE1, CE3477FA2B4058EB80739E0161FE957545F13CF86D313F6422732901D35F75F2 ] C:\Windows\System32\stobject.dll
08:37:07.0390 0x0d34  C:\Windows\System32\stobject.dll - ok
08:37:07.0390 0x0d34  [ F832EEEA97CDDA1AF577E721F652A0D1, EBBB7CA199BA4DF231123922BD310D43DE0104C6185B70FE0281B938D5336F2E ] C:\Windows\System32\batmeter.dll
08:37:07.0390 0x0d34  C:\Windows\System32\batmeter.dll - ok
08:37:07.0406 0x0d34  [ B95E9630242E2154A320F042EBF20DB1, 40DDCE3A5C2503E72DF6899D790220779ADBE7831ED4E544B268C5CF5458C4E0 ] C:\Windows\System32\igfxsrvc.dll
08:37:07.0406 0x0d34  C:\Windows\System32\igfxsrvc.dll - ok
08:37:07.0406 0x0d34  [ 026E1B4D80750DC88357694443724729, 0D5838226BC9A731B40C5C73203EA713D2FFCB191853E226A2FD77E92A3FACC7 ] C:\Windows\System32\igfxdev.dll
08:37:07.0406 0x0d34  C:\Windows\System32\igfxdev.dll - ok
08:37:07.0421 0x0d34  [ 98F1C94E108DF0811CC5EF098ECFB842, 4D3F1B38654C870645C9F3DDC8B3D11E910F2897A60ECC4A1FA2F46474E168CF ] C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe
08:37:07.0421 0x0d34  C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe - ok
08:37:07.0421 0x0d34  [ E424B3EF666B184CEE0B6871AAA8C9F6, D182D9B3A813C75F88CA16A9C236AB6167DF5861D155B5DC016B90918C4BD579 ] C:\Windows\System32\msimg32.dll
08:37:07.0421 0x0d34  C:\Windows\System32\msimg32.dll - ok
08:37:07.0437 0x0d34  [ F5A5DBADCD24BDF33BFDAA789E39C876, A0D931FA339CA1FB6198BF5DF327ECEB0881796FFF92BDE0F9FC2C233C46E83C ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
08:37:07.0437 0x0d34  C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe - ok
08:37:07.0437 0x0d34  [ 263E9A047D17CD50BAA9D3C02910D18D, F526648358AD121001D2776E0ACC333EC4AC168CA07B40A3D3C06C5CE6A361C3 ] C:\Windows\System32\oledlg.dll
08:37:07.0437 0x0d34  C:\Windows\System32\oledlg.dll - ok
08:37:07.0453 0x0d34  [ FA4C36B574BF387D9582ED2C54A347A8, B71CDF708D4A4F045F784DE5E5458EBF9A4FA2B188C3F7422E2FBFE19310BE3F ] C:\Windows\System32\mblctr.exe
08:37:07.0453 0x0d34  C:\Windows\System32\mblctr.exe - ok
08:37:07.0468 0x0d34  [ 233A10D4B3F6897899112E4EC60F1906, 1F7E768E57064938114DF2EFC5B219EB0D30A7D9E574924E9CED054462505AF0 ] C:\Windows\WindowsMobile\wmdc.exe
08:37:07.0468 0x0d34  C:\Windows\WindowsMobile\wmdc.exe - ok
08:37:07.0468 0x0d34  [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122, E7EA375A3BDE8FC764CB09524344370B9EE25F98AD6C83E6F37A569EB8D277D6 ] C:\Windows\System32\prnfldr.dll
08:37:07.0468 0x0d34  C:\Windows\System32\prnfldr.dll - ok
08:37:07.0484 0x0d34  [ E345E529C548F9A876DE0FCC9447F32C, 02D693D5725C073C17FEA8CA259B7DFC3A79ED6ABDCB59677B7E5F2E963E5E5E ] C:\Windows\System32\mstsc.exe
08:37:07.0484 0x0d34  C:\Windows\System32\mstsc.exe - ok
08:37:07.0484 0x0d34  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
08:37:07.0484 0x0d34  C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe - ok
08:37:07.0499 0x0d34  [ 135255E6557AD2B342A4BB4D892AE2DB, FDAE657C5CB268F14F3326900B998BBB4EEA16D301B75ED40145F439ABCAA8FE ] C:\Windows\System32\igfxrenu.lrc
08:37:07.0499 0x0d34  C:\Windows\System32\igfxrenu.lrc - ok
08:37:07.0499 0x0d34  [ 7633F554EEAFDE7F144B41C2FCAF5F63, 890884C7FE7D037E6DEBD21D1877E9C9C5E7790CDBA007DDB219AE6A55667F78 ] C:\Windows\System32\SnippingTool.exe
08:37:07.0499 0x0d34  C:\Windows\System32\SnippingTool.exe - ok
08:37:07.0515 0x0d34  [ 05A58F9A6BBA37412CDEACD055FAEB37, 94D57637FBD956B3D7EC8F90099883BD7AA3C82BBC320EA53CC94132D7AC5286 ] C:\Windows\System32\igfxress.dll
08:37:07.0515 0x0d34  C:\Windows\System32\igfxress.dll - ok
08:37:07.0515 0x0d34  [ 8B5F423B85A7DDED6774FF378370A442, 1CC52125C5DC4F7BBF91300B207F1B5D000C2E16518FAB715F90D69AF13C5CA7 ] C:\Windows\System32\spool\drivers\x64\3\EKIJ5000MUI.dll
08:37:07.0515 0x0d34  C:\Windows\System32\spool\drivers\x64\3\EKIJ5000MUI.dll - ok
08:37:07.0531 0x0d34  [ 47F0F526AD4982806C54B845B3289DE1, E81B11FE30B16FA4E3F08810513C245248ADCE8566355A8F2A19C63B1143FF5B ] C:\Windows\System32\SoundRecorder.exe
08:37:07.0531 0x0d34  C:\Windows\System32\SoundRecorder.exe - ok
08:37:07.0531 0x0d34  [ FE157C8114B6D6FEBEEB5884D4933CF8, BA94B3E09524E062618DBDC2889AD2721B6D1D074380410275480476CAB38770 ] C:\Program Files (x86)\Steam\Steam.exe
08:37:07.0531 0x0d34  C:\Program Files (x86)\Steam\Steam.exe - ok
08:37:07.0546 0x0d34  [ 101797BA603D227946B4B5109867EB19, EBF2B48D1A4FE148F455EA32023ABC0D479215D48C7CE76E765F199CD3C80AF8 ] C:\Windows\System32\SyncCenter.dll
08:37:07.0546 0x0d34  C:\Windows\System32\SyncCenter.dll - ok
08:37:07.0546 0x0d34  [ 544EFF88AC6C85DF5A4D6F18DFE08CFC, D688381F42062FD5D868E7770857C5951C41BA20A1B6E6F60B5D9536C02CD293 ] C:\Windows\SysWOW64\taskschd.dll
08:37:07.0546 0x0d34  C:\Windows\SysWOW64\taskschd.dll - ok
08:37:07.0562 0x0d34  [ 6C457C8E7D16A708F7818877F570ADFC, 8D6E76C6BEF767F803D9435D5EA1485ED2E1B834D4E926708C4BB2FA5C0309D5 ] C:\Windows\System32\rapistub.dll
08:37:07.0562 0x0d34  C:\Windows\System32\rapistub.dll - ok
08:37:07.0577 0x0d34  [ D8470A716BE1C02A81F5AD704D43D334, DA2E76AFB6C0F0111CC5B3A83B331D2BCA54CC78C56128D2B90B86FC89E7EAA7 ] C:\Users\User\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe
08:37:07.0577 0x0d34  C:\Users\User\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe - ok
08:37:07.0577 0x0d34  [ FCF433BFE9F44C8FD2FAF1E8DED23D72, B894B6815B72FA0243AF4CC139AEDC934BFE4090F04AFDA59000A2D9A5F4356A ] C:\Windows\System32\OobeFldr.dll
08:37:07.0577 0x0d34  C:\Windows\System32\OobeFldr.dll - ok
08:37:07.0593 0x0d34  [ E36112A8A6C7F840169A7E92C12F4203, 52795B2E6ECCE751EEF5074AF52FDE376A382D0A1C43B90DD4F77A397C00FBC5 ] C:\Windows\System32\wsock32.dll
08:37:07.0593 0x0d34  C:\Windows\System32\wsock32.dll - ok
08:37:07.0609 0x0d34  [ 537B1C9D3A2EBBF96BBAD4BB41D1D60B, ADCA2ADB57EA1A579E37A4FA8C696497EC6DAF9658AA647E05635702D7753475 ] C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll
08:37:07.0609 0x0d34  C:\Program Files (x86)\Stardock\Fences\FencesMenu64.dll - ok
08:37:07.0609 0x0d34  [ B53D59915A356B06C1D7DE5B22B4177C, 98E7DF7D9695E0CB18B2C1B39473E147C6C943828950CB9EBAD71C82241FDBD7 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
08:37:07.0609 0x0d34  C:\Program Files (x86)\Google\Chrome\Application\chrome.exe - ok
08:37:07.0624 0x0d34  [ F121FF27B30D62EB148E928C4769328B, 2E5E0367FF7DF70D8550EE890E08994A4EE1E023027CD5C071FE803F6A949CB6 ] C:\Windows\System32\Speech\SpeechUX\sapi.cpl
08:37:07.0624 0x0d34  C:\Windows\System32\Speech\SpeechUX\sapi.cpl - ok
08:37:07.0624 0x0d34  [ 2AF7D9225E0D92A45729A5D844784A96, 04E033CF5C952AC99AD7048605CF42CD3265EC45DF606C801BC05981A55C046B ] C:\Program Files (x86)\Steam\crashhandler.dll
08:37:07.0624 0x0d34  C:\Program Files (x86)\Steam\crashhandler.dll - ok
08:37:07.0640 0x0d34  [ 42A9CB6906D9A8BEDC83B57163E62924, E18522D3137653140757829EFBFCE624A5BAA5842E2BBA10B9E5AB6C84BE49E1 ] C:\Windows\System32\DXP.dll
08:37:07.0640 0x0d34  C:\Windows\System32\DXP.dll - ok
08:37:07.0655 0x0d34  [ 2978388067E79B781BFF6DD2AB565376, 35345C29085D47ACE4E14B46F6B32B2499A732E2F9DECB45C750EC985BC3D7B2 ] C:\Windows\System32\rapi.dll
08:37:07.0655 0x0d34  C:\Windows\System32\rapi.dll - ok
08:37:07.0655 0x0d34  [ 56312836FE23FADC4F838656D7477A93, 269A3B4BA460FD82409C0646CABAA8B71DCCD13B98C564A1FBFCA2F5EC99A8A6 ] C:\Windows\System32\ceutil.dll
08:37:07.0655 0x0d34  C:\Windows\System32\ceutil.dll - ok
08:37:07.0671 0x0d34  [ 4E8E3880A3E0632AA5C8F7EF8B37E2B2, F05D2C1B3B015F8486AF5EBA4E6A91E511E01162071B3E1F2A2305503A4B6BC7 ] C:\Windows\System32\GfxUI.exe
08:37:07.0671 0x0d34  C:\Windows\System32\GfxUI.exe - ok
08:37:07.0671 0x0d34  [ CCB3870261BBD404CF8C2979D0063468, 106A9EE960E18DE68FF6ED2532BD46D86D3E4A6BAE15367308B02EA1E0956BF3 ] C:\Program Files (x86)\Steam\steamerrorreporter.exe
08:37:07.0671 0x0d34  C:\Program Files (x86)\Steam\steamerrorreporter.exe - ok
08:37:07.0687 0x0d34  [ D95E22403AEEDAD43BE59B775E40F28B, AC747F0C0940F266FB8CC129CEBE7F398995B847B5C6CF678339E393FE385EBA ] C:\Program Files (x86)\Stardock\Fences\DesktopDock64.dll
08:37:07.0687 0x0d34  C:\Program Files (x86)\Stardock\Fences\DesktopDock64.dll - ok
08:37:07.0687 0x0d34  [ ADD3F2C3E6B89BD16D4BFC61B3658DD9, 0C8C5EB0BB2CE588AA749245ECDD5576882AEA537D316043A8193C2A740FF148 ] C:\Windows\System32\msi.dll
08:37:07.0687 0x0d34  C:\Windows\System32\msi.dll - ok
08:37:07.0702 0x0d34  [ A0EC5976E86CEED540992CD634D3BCEE, 2EC6E9C838C0DA531015DA0E29FFE483EEC5EE8500B9254E9288462164A71C05 ] C:\Windows\System32\en-US\consent.exe.mui
08:37:07.0702 0x0d34  C:\Windows\System32\en-US\consent.exe.mui - ok
08:37:07.0718 0x0d34  [ 5046E55184021406C27E8D48A1B2C9D2, DA592E05F2BA21A540B409FD2156A5BDF253EB3B50B30EEDCAE325DD026993D7 ] C:\Windows\System32\l3codeca.acm
08:37:07.0718 0x0d34  C:\Windows\System32\l3codeca.acm - ok
08:37:07.0718 0x0d34  [ E70DD043505896AC875975BD6AAAB76A, FF7975260FADB7F96FE441D8881B36B7D1FA07431388E0EC22A5523450DC9D98 ] C:\Program Files (x86)\Steam\tier0_s.dll
08:37:07.0718 0x0d34  C:\Program Files (x86)\Steam\tier0_s.dll - ok
08:37:07.0733 0x0d34  [ A2C1288BD3DEDE03B2327E5972678C2E, C507FD2746D4003FAA3CD7395B05A5EA2EF50E5A1550F18B86C5EC8D62EE5189 ] C:\Program Files (x86)\McAfee Security Scan\3.0.285\SSScheduler.exe
08:37:07.0733 0x0d34  C:\Program Files (x86)\McAfee Security Scan\3.0.285\SSScheduler.exe - ok
08:37:07.0733 0x0d34  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB, CF9082360E32A7C3E13A67AC2C6192F4A76870D43DA9FF2936993A637F712761 ] C:\Windows\System32\AltTab.dll
08:37:07.0733 0x0d34  C:\Windows\System32\AltTab.dll - ok
08:37:07.0749 0x0d34  [ 92DBF0A4C9239169010FC6E07859C82E, 00FB2CF4420F0FFEF519AFE732A708CF249640121E2A891CAA164313ABD7F804 ] C:\Windows\System32\ActionCenter.dll
08:37:07.0749 0x0d34  C:\Windows\System32\ActionCenter.dll - ok
08:37:07.0749 0x0d34  [ 21209D1612C598FEF07D6526E2150142, 125369EA8BB1BAB224C30C6F3EBA6435894ECCD435D892299C133C2C8267D6A9 ] C:\Program Files (x86)\Steam\vstdlib_s.dll
08:37:07.0749 0x0d34  C:\Program Files (x86)\Steam\vstdlib_s.dll - ok
08:37:07.0765 0x0d34  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891, 0A82A475301202791A7C10F978F952EAB7DB146A702D4EA67E24E2C98BC19638 ] C:\Windows\System32\Syncreg.dll
08:37:07.0765 0x0d34  C:\Windows\System32\Syncreg.dll - ok
08:37:07.0765 0x0d34  [ EB8CDE4EF586D7A579B44FF198850DE4, DB91AB6CD37EB0131E2C9D4789833910CD3CABD5B00DB3F96E95AB3FDAAC9801 ] C:\Windows\System32\input.dll
08:37:07.0765 0x0d34  C:\Windows\System32\input.dll - ok
08:37:07.0780 0x0d34  [ C836175870E00ACC546066632E15BD10, 4347F3319C26DA1C38F395C74DBD67AF886149C8F29EDE765DD96C8480A3054A ] C:\Windows\ehome\ehSSO.dll
08:37:07.0780 0x0d34  C:\Windows\ehome\ehSSO.dll - ok
08:37:07.0780 0x0d34  [ C746F3BF98E92FB137B5BD2B8B5925BD, 67A8990F3D491D149E65C90042909259793C65E671DC953FDA1F7590FAC23D9E ] C:\Windows\System32\FXSST.dll
08:37:07.0780 0x0d34  C:\Windows\System32\FXSST.dll - ok
08:37:07.0796 0x0d34  [ 1658E808E4D4889C66DE47EC87F1DED1, 53A97CEC6391444A4C8C5A057C6238C20AE29669F21A27EBF1E66DA5918A4979 ] C:\Windows\System32\msvcp60.dll
08:37:07.0796 0x0d34  C:\Windows\System32\msvcp60.dll - ok
08:37:07.0811 0x0d34  [ 650CAEA856943E29F25A25D31E004B18, DCA63D2AF4C6F14B27EA006F200E58A5C13AC940A51947A40F668908A446CC4E ] C:\Windows\System32\FXSAPI.dll
08:37:07.0811 0x0d34  C:\Windows\System32\FXSAPI.dll - ok
08:37:07.0811 0x0d34  [ A08C010D859F8EB42BDD7E1D55B8CA27, F86EAFBF7AA41D8425156C07398EDC3BD42F1690BD3E15D27AEF2EDA86549F15 ] C:\Windows\System32\mscoree.dll
08:37:07.0811 0x0d34  C:\Windows\System32\mscoree.dll - ok
08:37:07.0827 0x0d34  [ 5E6504432DB222547B729B784689BEBB, 145CA3F2C622E9336B944B68FECA120A5CB9439959E987261BCA7C726DFCB65B ] C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.104\chrome_elf.dll
08:37:07.0827 0x0d34  C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.104\chrome_elf.dll - ok
08:37:07.0843 0x0d34  [ D629F73E88B2DA7F5BDA2C06466DCCC4, 0870101A02E3BEB49F209662E22353648E0FA4D1ACCB8F08D7D10F293D38C028 ] C:\Windows\IME\SPTIP.DLL
08:37:07.0843 0x0d34  C:\Windows\IME\SPTIP.DLL - ok
08:37:07.0843 0x0d34  [ E243FE74E2ADE67A1BD3F79E6D8D9245, 247832F36259907A7EFC4F4DD718EDE788B3A979D734165AE5133417E6EA25F7 ] C:\Users\User\AppData\Local\Google\Update\1.3.25.5\goopdate.dll
08:37:07.0858 0x0d34  C:\Users\User\AppData\Local\Google\Update\1.3.25.5\goopdate.dll - ok
08:37:07.0858 0x0d34  [ 3EE10E01F87C77690AAE39DA7B8FDC2D, 81B743D4AD3F6FA1876EAA12712C9E48E685905FBB6D187A6B3D1CDF045DB27F ] C:\Program Files\Windows NT\TableTextService\TableTextService.dll
08:37:07.0858 0x0d34  C:\Program Files\Windows NT\TableTextService\TableTextService.dll - ok
08:37:07.0874 0x0d34  [ 32C26797AB646074A2BB562F9D10ADB5, B9836265C6BFA17CD5E0265F32CEDB1CED3B98E85990D000DC8E1298D5D25F93 ] C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
08:37:07.0874 0x0d34  C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE - ok
08:37:07.0874 0x0d34  [ A42F2C1EB3B66C54FB3C7B79D30C1A6D, A63836DB3B01835DC1311526A95198D6EBCCB1DC9DDAFBC38EC36C128CDB98B9 ] C:\Windows\System32\netshell.dll
08:37:07.0874 0x0d34  C:\Windows\System32\netshell.dll - ok
08:37:07.0889 0x0d34  [ D44067027714CC58B8AB0AC38FDA1A0B, 56E96A58B5A53A68485F8D2F7BA286F2B174AB910BD45145258D48251F489F02 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
08:37:07.0889 0x0d34  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
08:37:07.0889 0x0d34  [ 07531B287890150E348BA7EB1FE76C36, A7578EDE61F968DE31D16C2AC4A75289E78BFA26946B65E6B7F680469496B2C7 ] C:\Windows\System32\en-US\KernelBase.dll.mui
08:37:07.0889 0x0d34  C:\Windows\System32\en-US\KernelBase.dll.mui - ok
08:37:07.0921 0x0d34  [ 7B40621518648A67E8F543904696A219, 2D2FD3CC46CB6ADE30D548706E04E60BD36FC7A818A32F175E294DD163F8042D ] C:\Windows\System32\rapiproxystub.dll
08:37:07.0921 0x0d34  C:\Windows\System32\rapiproxystub.dll - ok
08:37:07.0921 0x0d34  [ A727F15EF71A8AD054AED18DAC825022, 9FC97AFE943BD3217B2E028B332952E2287BB55DEC283D4004F7D4CD5E0C2AA1 ] C:\Windows\System32\en-US\msutb.dll.mui
08:37:07.0921 0x0d34  C:\Windows\System32\en-US\msutb.dll.mui - ok
08:37:07.0936 0x0d34  [ 9B8F2F20589230F09C70BA0A9C589C9F, 12CBCE1A7B81146B8D62C25BFBE2D50D53BD78D6008B5A673F3EBBFA83471639 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
08:37:07.0936 0x0d34  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
08:37:07.0936 0x0d34  [ 10F815BE90A66AAFC6C713D1BD626064, 01139FC04BC53594296F6A0E16B8D20B940F64BC8119FE7705C03C4947958F39 ] C:\Windows\System32\pnidui.dll
08:37:07.0936 0x0d34  C:\Windows\System32\pnidui.dll - ok
08:37:07.0952 0x0d34  [ 0AEE5668EB59912F32FF245BFA72465F, 653978E365B0E72D34E8B3ED1BFCF0237B70B41396BD70EBBBEDB31AFD77857B ] C:\Program Files (x86)\QuickTime\QTTask.exe
08:37:07.0952 0x0d34  C:\Program Files (x86)\QuickTime\QTTask.exe - ok
08:37:07.0967 0x0d34  [ B9F0A4020AA98B7A20287BF7FE99A1FD, 21138F161EEEA46198890C7A2D073F2C82829E15676131BDAD9F237EDC7477CD ] C:\Windows\System32\QUTIL.DLL
08:37:07.0967 0x0d34  C:\Windows\System32\QUTIL.DLL - ok
08:37:07.0967 0x0d34  [ C7301A1D3DB09DE86528D9D916069859, 3440BAA0CCA74C123BF484C387359F53EADD3324C8069AC264D59B056E6AF111 ] C:\Windows\System32\dfrgui.exe
08:37:07.0967 0x0d34  C:\Windows\System32\dfrgui.exe - ok
08:37:07.0983 0x0d34  [ C8FDF0FA9E97E2FAAF3F814716AAA881, DD24A1CAB44D943B0E1A795A347AD25D9305FC7F012A2566A6A14BD47221831F ] C:\Windows\System32\WPDShServiceObj.dll
08:37:07.0983 0x0d34  C:\Windows\System32\WPDShServiceObj.dll - ok
08:37:07.0983 0x0d34  [ 5D0F03EEF3205F66ECFBE72A7CBBAD1F, 05F4D1E9DFA02D7C151D21CB5D430BD86176177E4A2A59C4E5F206886C4EF88C ] C:\Windows\System32\winusb.dll
08:37:07.0983 0x0d34  C:\Windows\System32\winusb.dll - ok
08:37:07.0999 0x0d34  [ C5B0324DB461559ADD070E632A6919FA, AB09CACB5B7DD372B27921A5E01220552A611CECA27EF87961001FA467FDED45 ] C:\Windows\SysWOW64\wbem\wbemprox.dll
08:37:07.0999 0x0d34  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
08:37:07.0999 0x0d34  [ 1843E81FA7ACFFF4344A7DD4328D7DA0, CEA1F9B12F61ACF255A25403A76E84F6E0330DEA7BED124AEA88FC0104453D71 ] C:\Program Files (x86)\Microsoft Office\Office12\1033\ONINTL.DLL
08:37:07.0999 0x0d34  C:\Program Files (x86)\Microsoft Office\Office12\1033\ONINTL.DLL - ok
08:37:08.0014 0x0d34  [ 704314FD398C81D5F342CAA5DF7B7F21, CDA660E1E8AAE0789780B6B9604B138E67B2BDD1404A5E4C2354B35879D43085 ] C:\Windows\SysWOW64\wbemcomn.dll
08:37:08.0014 0x0d34  C:\Windows\SysWOW64\wbemcomn.dll - ok
08:37:08.0014 0x0d34  [ F76DE9FC66F049AE7DCC2C6AA082CA90, 5F6F0E0F2E59EC51FEFD18711285051D08B8BB7C872F106CF6DE0708DE620CC3 ] C:\Windows\WindowsMobile\tcp2udp.dll
08:37:08.0014 0x0d34  C:\Windows\WindowsMobile\tcp2udp.dll - ok
08:37:08.0030 0x0d34  [ 53D96678FB89F056D5285101481297D9, E66D799027046ADBF573BC357196A45D6F5A0F571C694A7F659B8278A982E29C ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
08:37:08.0030 0x0d34  C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
08:37:08.0045 0x0d34  [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7, 690F12C490BEE2BF17AB7B6804E6E9B96F51C304350CCDE80FE5C7EEFA89720E ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
08:37:08.0045 0x0d34  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
08:37:08.0045 0x0d34  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] C:\Windows\System32\FXSSVC.exe
08:37:08.0045 0x0d34  C:\Windows\System32\FXSSVC.exe - ok
08:37:08.0061 0x0d34  [ 0E34B7BB1FCF22BCC1E394D16F9E992B, 382CA8E6BAC301E2F277F8EDA03D263FF71272796A8EED582C36294EEE9191F9 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
08:37:08.0061 0x0d34  C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe - ok
08:37:08.0061 0x0d34  [ C263F3E7E0523556964D661BC7CB9565, E912A3FAE01E2AB122451238033A736EE0E7EE4CE75A4B2BA802EB5C0EFE4EE8 ] C:\Windows\SysWOW64\tzres.dll
08:37:08.0061 0x0d34  C:\Windows\SysWOW64\tzres.dll - ok
08:37:08.0077 0x0d34  [ 776AE0564F8B1C282E331FD95A1BDC5F, 601CFCA3922FFEA46A54AD323845A76A12FC6AF9FF64E9B0AE294FBB1AFCF4CB ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
08:37:08.0077 0x0d34  C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
08:37:08.0077 0x0d34  [ B44A28651149D885FCD33FEC08A7733C, 24D61941FD2B9101990308541A5CE85DDA2B1F8E7442C165B173E3FC8BCF4195 ] C:\Windows\System32\wcescommproxy.dll
08:37:08.0077 0x0d34  C:\Windows\System32\wcescommproxy.dll - ok
08:37:08.0092 0x0d34  [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A, 61B4D669C692775EF361445293163E84FAD8636AC49C8047BE806DB4E4093291 ] C:\Windows\SysWOW64\wbem\fastprox.dll
08:37:08.0092 0x0d34  C:\Windows\SysWOW64\wbem\fastprox.dll - ok
08:37:08.0108 0x0d34  [ 9E4FA017C8D51AC87E25C0BA8A669DCC, FD4ED5098D25FF7A3D8C064B3883FBB0875D9689058D94464B64A37963AA4D55 ] C:\Users\User\AppData\Local\Google\Update\1.3.25.5\goopdateres_en.dll
08:37:08.0108 0x0d34  C:\Users\User\AppData\Local\Google\Update\1.3.25.5\goopdateres_en.dll - ok
08:37:08.0108 0x0d34  [ 57B4D34232852BFE4453BE571DF90D21, 3D329499D7BCACAE5F6377F988B90714F5A8301784CDB22D5B54A2266AC50D79 ] C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
08:37:08.0108 0x0d34  C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe - ok
08:37:08.0123 0x0d34  [ 4F3CD1C59EA71401E155C432BCECE180, 6D4118A627CAE509E43D0CC0062EECAA0990C955BB15AE24834460551B2F51A2 ] C:\Windows\System32\PortableDeviceTypes.dll
08:37:08.0123 0x0d34  C:\Windows\System32\PortableDeviceTypes.dll - ok
08:37:08.0139 0x0d34  [ E3E811471DE781900FF21C1FD84E941E, 2A47FF52D1D6480AAD1919382E783EA184BF926311F8C7E466FEBE9F6FB88FD6 ] C:\Windows\SysWOW64\ntdsapi.dll
08:37:08.0139 0x0d34  C:\Windows\SysWOW64\ntdsapi.dll - ok
08:37:08.0139 0x0d34  [ F7E0783DA9043BC131BB37C77EDB04DF, CD24E9B89789BE57230C52B24E63F29C6E650876E5FB0CB1304390B7E698FF93 ] C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe
08:37:08.0139 0x0d34  C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe - ok
08:37:08.0155 0x0d34  [ 35B5EEBF76C8AA07164C11B58ADA506D, C7932373676E5CE3F6D4AB498E20508410A614FD92AE97B98949834C05CEA634 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\fe6ac93181b40a571892e14bfb9d65f2\mscorlib.ni.dll
08:37:08.0155 0x0d34  C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\fe6ac93181b40a571892e14bfb9d65f2\mscorlib.ni.dll - ok
08:37:08.0155 0x0d34  [ F2FD94A4F1E5400DB959A2987B8081E9, 4C809651DCBE48F1DACCD17B40126BE9380CD28CCF9E365EF404BAC132E5E766 ] C:\Windows\WindowsMobile\dtptdns.dll
08:37:08.0155 0x0d34  C:\Windows\WindowsMobile\dtptdns.dll - ok
08:37:08.0170 0x0d34  [ F7A256EC899C72B4ECDD2C02CB592EFD, 9C1AA9322E83CABB94AEA4375EAEB0C44700E1F33B8BE98649BA1DF4DDFAD326 ] C:\Windows\System32\bthprops.cpl
08:37:08.0170 0x0d34  C:\Windows\System32\bthprops.cpl - ok
08:37:08.0186 0x0d34  [ 619A67C9F617B7E69315BB28ECD5E1DF, F34F231D117CCDFEBB9CB35C8D6FDFA7051DA27FDC1204FCCFF361FC0B13A0FF ] C:\Windows\System32\wbem\WmiPrvSE.exe
08:37:08.0186 0x0d34  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
08:37:08.0186 0x0d34  [ BA0F6DCC3181A4E3CBB02EC41153BB72, C4E4F98D4267209ECD269C6646C1B75C5BDEFFA261D14B08898693DE343A17B6 ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
08:37:08.0186 0x0d34  C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
08:37:08.0201 0x0d34  [ 7EAFC20E93923DBE751164EB0683C490, B485C1AD3E804B3D00BCFE74B2FBDBED18F79FC82762DB517264156CF4EEDE3C ] C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
08:37:08.0201 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe - ok
08:37:08.0201 0x0d34  [ 19951B1AF3F684B1293FB633D3BA73B6, 21183D2B0DD7468E657F126DEE1D5A1E6D01A0056AF54A39774CA88B09C46D92 ] C:\Windows\WindowsMobile\BthASPlugin.dll
08:37:08.0201 0x0d34  C:\Windows\WindowsMobile\BthASPlugin.dll - ok
08:37:08.0217 0x0d34  [ 47EA5F76FAB723C61AB4A0D79BAD512C, A7A38EB0A7068B160E6949945EF639F999A06AE35746F6E79C7350745798E5C9 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
08:37:08.0217 0x0d34  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
08:37:08.0233 0x0d34  [ C3A5FFD57C2563204CD9351F0C7A0DEA, 107899DBCF33DB6844B59D27C768069635B6A21E1BD20B9A1E7DCF3A7F895657 ] C:\Program Files (x86)\CyberLink\Power2Go\msvcp71.dll
08:37:08.0233 0x0d34  C:\Program Files (x86)\CyberLink\Power2Go\msvcp71.dll - ok
08:37:08.0233 0x0d34  [ 0F416E23DD2EB4DEBE70608020CFD283, 8762F519453F114EC3126698E3DD49F2C5AF79124DDBFC87DF08D1EC2B292235 ] C:\Windows\SysWOW64\WMVCORE.DLL
08:37:08.0233 0x0d34  C:\Windows\SysWOW64\WMVCORE.DLL - ok
08:37:08.0248 0x0d34  [ 7E56B4B57F6B9D2045F6917DDEDFF5D5, EA2C9F7EFED2D92ECF22135EF41B071DE6825963CE23765EBD5DEEE9741FC0FA ] C:\Windows\System32\en-US\msctf.dll.mui
08:37:08.0248 0x0d34  C:\Windows\System32\en-US\msctf.dll.mui - ok
08:37:08.0248 0x0d34  [ 30EE672AD2C53BFB7DD4BE6993B07C71, 5FB6B5B71AFF14E22460C4C6CA75830736222B74D200E413E05F0CACDE2C44CF ] C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe
08:37:08.0248 0x0d34  C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe - ok
08:37:08.0264 0x0d34  [ A1A6FC56A1D0DADC164637FE43C40605, 8C43448D07F7827F5761B30EB0A903E1B2EFD8F460787F03404C8098B136AE33 ] C:\Program Files (x86)\CyberLink\Power2Go\msvcr71.dll
08:37:08.0264 0x0d34  C:\Program Files (x86)\CyberLink\Power2Go\msvcr71.dll - ok
08:37:08.0264 0x0d34  [ A7DD56261518373F70F23079EB3CD0A2, 4BC8DC1744DA5C062DEA5BE122CBAE948810536116BBA747844556783768F1F6 ] C:\Windows\SysWOW64\WMASF.DLL
08:37:08.0264 0x0d34  C:\Windows\SysWOW64\WMASF.DLL - ok
08:37:08.0279 0x0d34  [ BDD83E29B58C1D32407A9032D9F7981B, C2E5DB790D36F9CE955E3A72515B9E0E0653AE99E3CDA259903BAE6380C93DF8 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\c7fb84e825f6604d7f4684ab96cbd148\System.ni.dll
08:37:08.0279 0x0d34  C:\Windows\assembly\NativeImages_v2.0.50727_64\System\c7fb84e825f6604d7f4684ab96cbd148\System.ni.dll - ok
08:37:08.0279 0x0d34  [ D560554BAE63D2A18197B7D2B5DA045B, 2BC9256C5759070DCF970F8F39297F9A7A804BD845A49BD3DE66A7305E307C06 ] C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKStatusMonitor.exe
08:37:08.0279 0x0d34  C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKStatusMonitor.exe - ok
08:37:08.0295 0x0d34  [ E2C48CD0132D4D1DC7D0DF9A6BEF686A, 52D1A8AA992AF2F727DA4B16522D604648D700997B1620CCB67D05838C127674 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
08:37:08.0295 0x0d34  C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll - ok
08:37:08.0311 0x0d34  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\System32\cmd.exe
08:37:08.0311 0x0d34  C:\Windows\System32\cmd.exe - ok
08:37:08.0311 0x0d34  [ 11FBB8CB6865B7BA387095398EB91ED4, 8A565AA6319CEAADDF67598AE95EEE174649A852F56B3EFB7F3A11CD2F786986 ] C:\Windows\SysWOW64\rapi.dll
08:37:08.0311 0x0d34  C:\Windows\SysWOW64\rapi.dll - ok
08:37:08.0326 0x0d34  [ 9E6DC845DED46CCBE085DD24503750C0, 8BC6FD0FFC2AFAD8DAEBAD48255C3D5F174F4FC69C47AE493CEB8C5ACA88B791 ] C:\Program Files (x86)\Stardock\Fences\Fences.exe
08:37:08.0326 0x0d34  C:\Program Files (x86)\Stardock\Fences\Fences.exe - ok
08:37:08.0326 0x0d34  [ 8569E35D00F45972E506502EEE622BA4, 01FE851C03DB88C8373099C279F995A559D962B08932E193032FA3EAD522FB01 ] C:\Windows\System32\srchadmin.dll
08:37:08.0326 0x0d34  C:\Windows\System32\srchadmin.dll - ok
08:37:08.0342 0x0d34  [ B8DDB5295B9CDF0D573FC6DD14D67302, 79562F8A13AE6C7396D1F42927AE2F96D3FB3DDFE7B8D0E591C8134B45386D47 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\a112eb3399caef2b6a4c9b995fe1ea3d\WindowsBase.ni.dll
08:37:08.0342 0x0d34  C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsBase\a112eb3399caef2b6a4c9b995fe1ea3d\WindowsBase.ni.dll - ok
08:37:08.0342 0x0d34  [ 38875F805FBD3D7B32D5B3EFEA7D1CD2, 5FD026593287DADB1F524EE3A9213A9D7544E20E46598BF3A8ED62379C9BE0E7 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
08:37:08.0342 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe - ok
08:37:08.0357 0x0d34  [ 6E26EE228F60D75C732D209688FB546C, 28E5F7EAC9659B8D787F89EE2234AA3997AC2DAEA092D5A8FC40EFB5B4CE532A ] C:\Windows\System32\wdc.dll
08:37:08.0357 0x0d34  C:\Windows\System32\wdc.dll - ok
08:37:08.0373 0x0d34  [ B0B4C590C0CAE7741DA17E3DC86CC828, B0FD9C7D34B5EEA1346E98AC499E503AB67672FBD3A48CB482E139F1BC05D55E ] C:\Windows\SysWOW64\ceutil.dll
08:37:08.0373 0x0d34  C:\Windows\SysWOW64\ceutil.dll - ok
08:37:08.0373 0x0d34  [ FD049C25A168D3DE310D9207B7B6367B, 48966605E7CF87996068AC1A2E563F90F6F152E710323792C633E10BCBA480E4 ] C:\Windows\SysWOW64\UIAutomationCore.dll
08:37:08.0373 0x0d34  C:\Windows\SysWOW64\UIAutomationCore.dll - ok
08:37:08.0389 0x0d34  [ 8FFDB89A0FB7C8ABC3A8825E38047341, B9107FAA3A885CD9A08C20F78D31C3642FA76812E417F41C4F2ADF7D90CA8C72 ] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
08:37:08.0389 0x0d34  C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe - ok
08:37:08.0404 0x0d34  [ 01D170E001259C276DCD04B6A46A130D, 8E032A42C072122B7C14A3A04514D50E311BD3847C45DF42B03184CDD21A74F6 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\85f72cca29c67444ed2716b0cbcb1eae\PresentationCore.ni.dll
08:37:08.0404 0x0d34  C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationCore\85f72cca29c67444ed2716b0cbcb1eae\PresentationCore.ni.dll - ok
08:37:08.0404 0x0d34  [ D291620D4C51C5F5FFA62CCDC52C5C13, 76E959DD7DB31726C040D46CFA86B681479967AEA36DB5F625E80BD36422E8AE ] C:\Windows\System32\msinfo32.exe
08:37:08.0404 0x0d34  C:\Windows\System32\msinfo32.exe - ok
08:37:08.0420 0x0d34  [ 0863C978F7418CC14059E401B1960DE2, 676B39FD1AFB38073A8D07F3E549CFB50BF4FA18B4FD5E37A44EAF7F3E1E3BB3 ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe
08:37:08.0420 0x0d34  C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe - ok
08:37:08.0420 0x0d34  [ 6A5D0ED8F280AB8E312A4252472A14A4, B45A06F95729175045DD499B5037BF1878773B2BB0A90EBC71288A7B329572AC ] C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
08:37:08.0420 0x0d34  C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll - ok
08:37:08.0435 0x0d34  [ 73DBAA64D589F3262615550DD6881FEE, 24025F2734201FE69A679194C6611A1603C4E7592809B6A185334E7D8BCC038A ] C:\Windows\winsxs\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.6195_none_3b1209fdc9ac7774\vcomp.dll
08:37:08.0435 0x0d34  C:\Windows\winsxs\x86_microsoft.vc80.openmp_1fc8b3b9a1e18e3b_8.0.50727.6195_none_3b1209fdc9ac7774\vcomp.dll - ok
08:37:08.0451 0x0d34  [ F4F4D51214FEC718D798CA4FF7629FC5, 7515A8D219486DA9A7001CFDB121426180D224D5B6F67830712984C6E7458BBA ] C:\Windows\System32\rstrui.exe
08:37:08.0451 0x0d34  C:\Windows\System32\rstrui.exe - ok
08:37:08.0451 0x0d34  [ 848BC9A0BB2361E549FD4C22D7548FB8, 40D1B1DFE64A1FE256DEE7E911CD7D020F945E4E9D05C86609E7FB2880C2E3AA ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
08:37:08.0451 0x0d34  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
08:37:08.0467 0x0d34  [ 8E01332CC4B68BC6B5B7EFFE374442AA, A4AD1D2FD3EC2F26949DBBC388F9FFF3713AD7EB4E9220AF817EBB5223E467C6 ] C:\Windows\SysWOW64\oleacc.dll
08:37:08.0467 0x0d34  C:\Windows\SysWOW64\oleacc.dll - ok
08:37:08.0467 0x0d34  [ 917422E1B95A72B0328B301BACBF1B07, B2452A303EC960F14FD1AB2D346B611D16E72061B5508EABB0F468CD30892E68 ] C:\Windows\SysWOW64\wcescommproxy.dll
08:37:08.0467 0x0d34  C:\Windows\SysWOW64\wcescommproxy.dll - ok
08:37:08.0482 0x0d34  [ 34D296AFC913E302953C70463EF09A48, BC413307CBC56C039EE8A05B51A56E14EF59678FBB33815AEB320078056C8CE7 ] C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
08:37:08.0482 0x0d34  C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe - ok
08:37:08.0498 0x0d34  [ 51D186B582C905E49D84B70322F70B21, 37232FB4C67E74E0DEC69EE6895B719B06548CA42B3BB4EA6E3BF76AB2283944 ] C:\Windows\System32\miguiresource.dll
08:37:08.0498 0x0d34  C:\Windows\System32\miguiresource.dll - ok
08:37:08.0498 0x0d34  [ 936F728E04ACCF3F38801CFFCF1E3F40, 59CA86096F4B928E364B6A3C0408615F068BB8BC02DCFC5EAF4873EC6D6E0797 ] C:\Windows\SysWOW64\oledlg.dll
08:37:08.0498 0x0d34  C:\Windows\SysWOW64\oledlg.dll - ok
08:37:08.0513 0x0d34  [ 2BA2D765B89FB4B7C1D071E61915AB5A, 85F4253B6E82E7B1A7FC6F076963A00E4A574F7A6C6B40DCF3DDDF0E117238CE ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\fd2485b871dd53f0ee4ef54b7e602d92\PresentationFramework.ni.dll
08:37:08.0513 0x0d34  C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\fd2485b871dd53f0ee4ef54b7e602d92\PresentationFramework.ni.dll - ok
08:37:08.0513 0x0d34  [ 562814461DB20253B42BB806C994D20D, 98734A0D38ECFEA6335BBF86F165F3F09B27C5FC27C802048726A0E0CE8BC035 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
08:37:08.0513 0x0d34  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
08:37:08.0529 0x0d34  [ 589DF683A6C81424A6CECE52ABF98A50, 8CE0D07B2FC1F1BF8C07434FAFCDC63FDD3B75007C3B2EED130DB69D2D16E90A ] C:\Windows\System32\tquery.dll
08:37:08.0529 0x0d34  C:\Windows\System32\tquery.dll - ok
08:37:08.0529 0x0d34  [ 979FE75157468CF29FF962AA1E88F687, D234A2063E51F1B38C5709C2DBF8C70FE214D03E888CA54D29AC90230B32A0EC ] C:\Program Files (x86)\Logitech\LWS\Webcam Software\QTCore4.dll
08:37:08.0529 0x0d34  C:\Program Files (x86)\Logitech\LWS\Webcam Software\QTCore4.dll - ok
08:37:08.0545 0x0d34  [ B1E4D190CD21CC75AE38562400DD5345, 08C051866DFCE1E4DE62E5023075C80A130472A36431247D0B6C578B3CF8AD2A ] C:\Windows\SysWOW64\rapistub.dll
08:37:08.0545 0x0d34  C:\Windows\SysWOW64\rapistub.dll - ok
08:37:08.0560 0x0d34  [ 152FCD9B979D70FDB703A28152B634EA, 0F29CF84D1CA0D7E3318F86CE3345B97F5D7CBCE92F4F8A1DEFA682837CDE3D8 ] C:\Windows\SysWOW64\wmp.dll
08:37:08.0560 0x0d34  C:\Windows\SysWOW64\wmp.dll - ok
08:37:08.0560 0x0d34  [ 7568CC720ACE4D03B84AF97817E745EF, 7155144CB0B260B969C398A36BC277C97BEADB5DB137D19A4F7E5AF61C3E24D4 ] C:\Windows\System32\mssrch.dll
08:37:08.0560 0x0d34  C:\Windows\System32\mssrch.dll - ok
08:37:08.0576 0x0d34  [ 99AAA6C83D40BE9DB1BA81141B2AEBC8, 05FCD0EFB6E090BC767AB3AE0376216806C6920FAA9AA9A5DC1586DBD67C1DBD ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
08:37:08.0576 0x0d34  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
08:37:08.0576 0x0d34  [ 28A09777D2D952122567A8A82F1A2C7B, 772260DF36AE85A0619C51402DE416E0C329976B724C8E9C4F8C013CBB7C7289 ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
08:37:08.0576 0x0d34  C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
08:37:08.0591 0x0d34  [ 8A6062A4E6CC7E5A8C17B7D82B07A73A, E67A01F0D47BE82ED631FE93F0B2F8C6276B4CE89B46B51D178E66F976B324BD ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
08:37:08.0591 0x0d34  C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe - ok
08:37:08.0591 0x0d34  [ AE098D9D3BD83440C59A0C3386F4F5DD, 13CFA7323349A2746D7FE662A7FCFC678F4E7AA9E12B45C62328022E3272384F ] C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll
08:37:08.0591 0x0d34  C:\Windows\assembly\GAC_64\PresentationCore\3.0.0.0__31bf3856ad364e35\PresentationCore.dll - ok
08:37:08.0607 0x0d34  [ 735623AAED32285D47FE6716D92ABC40, 335528DE80A18EEAF924D8770CF3495F7027BF7E12786BE0F1C654F5E0C697E0 ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\QtCore4.dll
08:37:08.0607 0x0d34  C:\Program Files (x86)\LeapFrog\LeapFrog Connect\QtCore4.dll - ok
08:37:08.0607 0x0d34  [ 4C39358EBDD2FFCD9132A30E1EC31E16, 06918CF99AD26CD6CF106881C0D5BDB212DC0BAC4549805C9F5906E3D03D152C ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
08:37:08.0607 0x0d34  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
08:37:08.0623 0x0d34  [ 3379989F06B31347792836DCF028A325, D1689EF16BF6419CD131FBA7683926608AAEBAA540302DCB067F8A60F37ABAF3 ] C:\Windows\SysWOW64\rapiproxystub.dll
08:37:08.0623 0x0d34  C:\Windows\SysWOW64\rapiproxystub.dll - ok
08:37:08.0638 0x0d34  [ A7DD5C1F29877A473265D4B98B3495ED, 557E7B6BA35D87488B59AC7EC1ACC8B42886468E23E5490D5FD1127175AC504B ] C:\Windows\SysWOW64\wmploc.DLL
08:37:08.0638 0x0d34  C:\Windows\SysWOW64\wmploc.DLL - ok
08:37:08.0638 0x0d34  [ 976D5F35A058340DA2C160CEC4063C4B, 156210FFE32821DBC0BEE39FE1CD7CD30ECFC02B80EF02DC2A990DA06B87A925 ] C:\Users\User\AppData\Local\Google\Update\1.3.25.5\GoogleCrashHandler.exe
08:37:08.0638 0x0d34  C:\Users\User\AppData\Local\Google\Update\1.3.25.5\GoogleCrashHandler.exe - ok
08:37:08.0654 0x0d34  [ 1C0E369575F387460E2A5F28269B2CC4, 96F26EF7483F9EB7B79DFCF50BB0261B981322BF8FB9F239D617FEACCEC466C8 ] C:\Windows\SysWOW64\DWrite.dll
08:37:08.0654 0x0d34  C:\Windows\SysWOW64\DWrite.dll - ok
08:37:08.0654 0x0d34  [ BC83108B18756547013ED443B8CDB31B, B2AD109C15EAA92079582787B7772BA0A2F034F7D075907FF87028DF0EAEA671 ] C:\Windows\SysWOW64\msvcp100.dll
08:37:08.0654 0x0d34  C:\Windows\SysWOW64\msvcp100.dll - ok
08:37:08.0669 0x0d34  [ A440A6EFED28AB4A8741E76BBDCF4B78, 869F1F3D6232846D70BDBFB19E83A00120434E2908B27FF053698A1F6A56521A ] C:\Windows\System32\migwiz\wet.dll
08:37:08.0669 0x0d34  C:\Windows\System32\migwiz\wet.dll - ok
08:37:08.0669 0x0d34  [ 8046522F25D5B5ADEC2CF292E0B7BFEE, 91CA604E6A1735515B328B839D94D17B39A6C6117C581D4F3B66824EA74DAD67 ] C:\Program Files (x86)\Logitech\LWS\Webcam Software\QTGui4.dll
08:37:08.0669 0x0d34  C:\Program Files (x86)\Logitech\LWS\Webcam Software\QTGui4.dll - ok
08:37:08.0685 0x0d34  [ 047556104954A72A2222FFF169166EEE, B9DED78A089FDCBF557D99546107E384D077D617655D14990E14FDA9A3B609ED ] C:\Users\User\AppData\Local\Google\Update\1.3.25.5\GoogleCrashHandler64.exe
08:37:08.0685 0x0d34  C:\Users\User\AppData\Local\Google\Update\1.3.25.5\GoogleCrashHandler64.exe - ok
08:37:08.0701 0x0d34  [ 0E37FBFA79D349D672456923EC5FBBE3, 8793353461826FBD48F25EA8B835BE204B758CE7510DB2AF631B28850355BD18 ] C:\Windows\SysWOW64\msvcr100.dll
08:37:08.0701 0x0d34  C:\Windows\SysWOW64\msvcr100.dll - ok
08:37:08.0701 0x0d34  [ 5BB8C06EB5EA4BA22EE8A678F2D79B25, 019E9274DE2F5BAB16B4632B8A2E93DFC8DF0C08EC4EEA947B337FD29EB2E0CC ] C:\Windows\SysWOW64\devenum.dll
08:37:08.0701 0x0d34  C:\Windows\SysWOW64\devenum.dll - ok
08:37:08.0716 0x0d34  [ 964B05EE97D3E71F585F97FD93C2CD6B, 3D7259BC76DE31094A85B3F55FC6EEB9871D13DABE8CA069FD33523D85B2A518 ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\QtGui4.dll
08:37:08.0716 0x0d34  C:\Program Files (x86)\LeapFrog\LeapFrog Connect\QtGui4.dll - ok
08:37:08.0732 0x0d34  [ 18ADA4886B82B4168A2C17FCB6647B63, 947FB40376EFB2E0BC0B4F690D76ADAD696F8D3322C88F57B9FE8EF7E29B1A54 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Core\Core.dll
08:37:08.0732 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Core\Core.dll - ok
08:37:08.0732 0x0d34  [ 3121A79D13A61562BE9CC902CD46B542, 00A5833A48338A4A9A5530844924AF4F1FAB618DA46D7EBBC6E2165C32ED376C ] C:\Windows\System32\msidle.dll
08:37:08.0732 0x0d34  C:\Windows\System32\msidle.dll - ok
08:37:08.0747 0x0d34  [ 2168E61B9E3B06EEB8B3EACDFDC4699B, D4062D332908447708389C3568B5245C6569C27E0C2ABFF3C85147522AC7D606 ] C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
08:37:08.0747 0x0d34  C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll - ok
08:37:08.0763 0x0d34  [ 1D856E6E7490447FCFAA46E09A2BF9C9, 0C6FCA8370D4996FC9592962750041529C0D8D6BD6DB19EA76604820AA8F6EEB ] C:\Program Files (x86)\QuickTime\QTSystem\QuickTime.qts
08:37:08.0763 0x0d34  C:\Program Files (x86)\QuickTime\QTSystem\QuickTime.qts - ok
08:37:08.0763 0x0d34  [ 4A1EEE4D46D77FA41680CF6F12C64E7B, 734CA7AE0F7A329D437CC812FF02C0277BBA036DB8DDA8DF78B14EA81E885F71 ] C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop_Res.dll
08:37:08.0763 0x0d34  C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop_Res.dll - ok
08:37:08.0779 0x0d34  [ DDFA8F1D6F3628D74C084F67235F8F9B, B3F4DA806BF673CF0123737CDC2B1A37B4129E0964B59014EF9187F59C0FD906 ] C:\Program Files (x86)\Logitech\LWS\Webcam Software\QTXml4.dll
08:37:08.0779 0x0d34  C:\Program Files (x86)\Logitech\LWS\Webcam Software\QTXml4.dll - ok
08:37:08.0779 0x0d34  [ E24FE90E9DE8D8AE70E59F7B01675DEF, DDB0691488DB424CC203505E27364B24E4410E599A972CF2C1AFF4E2F3E3C04F ] C:\Windows\SysWOW64\avicap32.dll
08:37:08.0779 0x0d34  C:\Windows\SysWOW64\avicap32.dll - ok
08:37:08.0794 0x0d34  [ 2990CE4D9BBDA56C38D3E60C320C180F, 2FEFB4EBCD71F80C7A51C00149BC70D933AC3081B9DF480B27439CD01DA309D1 ] C:\Windows\System32\en-US\wdmaud.drv.mui
08:37:08.0794 0x0d34  C:\Windows\System32\en-US\wdmaud.drv.mui - ok
08:37:08.0794 0x0d34  [ 6E656C325A5519A3A9D951709958CF6F, 1DC1D4BDF42F40A381D569297FEFB79B53CBD87088BA61A9EEA5AE4526B6182E ] C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll
08:37:08.0794 0x0d34  C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\wpfgfx_v0300.dll - ok
08:37:08.0810 0x0d34  [ AFDAE59FE562A7CDB44F9D4ABEDAC316, 1EEF26F414A9F51740F6BE370E005A34996DF53F0CE24D436B897D1F525C5691 ] C:\Program Files (x86)\QuickTime\QTSystem\QTCF.dll
08:37:08.0810 0x0d34  C:\Program Files (x86)\QuickTime\QTSystem\QTCF.dll - ok
08:37:08.0825 0x0d34  [ 3F7CD7873FA942C38F9831F286698414, 5D7F7D7E999BD5A4DD0D31D5DFFC325E53F52496B14D2DA179192FDB149DCF0A ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe
08:37:08.0825 0x0d34  C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe - ok
08:37:08.0825 0x0d34  [ 45AEB2FE679450DADCAC27668C47AC46, 566D0A8B8EBF931B709FDDC4AF59CDC6B846982EAA66BE435941D7C4482B0365 ] C:\Windows\System32\en-US\MMDevAPI.dll.mui
08:37:08.0825 0x0d34  C:\Windows\System32\en-US\MMDevAPI.dll.mui - ok
08:37:08.0841 0x0d34  [ 1B1431D9520C7578AD5633ED2A70625F, 6852FAC1355CA69226B727A1355D6DA8C0865F5EEDA45D7690701CFED7C542A1 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
08:37:08.0841 0x0d34  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
08:37:08.0841 0x0d34  [ 9D9C0DD19ED1D36E1FAB8805EA5CE1AF, 4DFA951D86898EB6E1377EDC4BC3370E5985AF8BE61DA6BFA9F862AC07DC3288 ] C:\Program Files\Common Files\Microsoft Shared\ink\ShapeCollector.exe
08:37:08.0841 0x0d34  C:\Program Files\Common Files\Microsoft Shared\ink\ShapeCollector.exe - ok
08:37:08.0857 0x0d34  [ 0E85C11F8850D524B02181C6E02BA9AE, 8703566931067CCF949E9779E4D328DD21210329DD687459300C83DDD06390A8 ] C:\Windows\SysWOW64\dsound.dll
08:37:08.0857 0x0d34  C:\Windows\SysWOW64\dsound.dll - ok
08:37:08.0857 0x0d34  [ 24498D084FAA7A459C91066EC241E1CE, 5214A26D8B441F7A55414DC2935AF6C76DB8C8D55F8677DA97D19943C69D765E ] C:\Windows\SysWOW64\vfwwdm32.dll
08:37:08.0857 0x0d34  C:\Windows\SysWOW64\vfwwdm32.dll - ok
08:37:08.0872 0x0d34  [ E4C53CE8409DCFF708C790A0AC76398D, 483B7BBDD601A70BF1537DCBA098B3B79144878185A4C841454209722C785375 ] C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
08:37:08.0872 0x0d34  C:\Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe - ok
08:37:08.0872 0x0d34  [ B998AB59D5541777A1E43175A9ACBE83, 8026C0FEA64591B1C8013A1DC77E6FAB0D82D84D70C0D8E0C3C00C18A5A65B2E ] C:\Windows\System32\en-US\conhost.exe.mui
08:37:08.0872 0x0d34  C:\Windows\System32\en-US\conhost.exe.mui - ok
08:37:08.0888 0x0d34  [ 44D4769D08FE21BD72029410DD26F22D, 0A7EE3FD76E2365A9FE217E6DE4D03C746CBD59502A300E7D8EFFA499ADD4A77 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\AdobePIM.dll
08:37:08.0888 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\AdobePIM.dll - ok
08:37:08.0903 0x0d34  [ ACE1BB07E0377E37A2C514CD2EC119B1, A9AFA4774DFA875496764D6E541A6333A3ACD3C5D2BBEF753C2D80BA83B4AC15 ] C:\Windows\System32\mssprxy.dll
08:37:08.0903 0x0d34  C:\Windows\System32\mssprxy.dll - ok
08:37:08.0919 0x0d34  [ 34842F850C64D435EB35541E50B967D6, C4FA8AD9DD0B2A521C3BBD70A05A04E74A84531B166F0EA1F39BE837BE7850BB ] C:\Windows\System32\en-US\msacm32.dll.mui
08:37:08.0919 0x0d34  C:\Windows\System32\en-US\msacm32.dll.mui - ok
08:37:08.0919 0x0d34  [ CB3E126E39353CF565C4A7D23E0094DD, 404187BEB657513997175263982A1F20AA0CF43C943D387BDF6A7B3BC7E6EEED ] C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\HelpMain\Main_help.dll
08:37:08.0919 0x0d34  C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\HelpMain\Main_help.dll - ok
08:37:08.0935 0x0d34  [ C140F86932B5B61F54A4D836E2D34AB2, 94821597EC70F27BF11A747D5EED474C57F389F20A2E0C3F1D0CB3F00974A53B ] C:\Windows\SysWOW64\ksproxy.ax
08:37:08.0935 0x0d34  C:\Windows\SysWOW64\ksproxy.ax - ok
08:37:08.0935 0x0d34  [ AE0A00532FBFC82B5EA0A3257525199F, E22072ABEFC515AAD1AAE11E33592F48AA634BAFD961C5AD54064DFA1E11D5CD ] C:\Windows\System32\en-US\l3codeca.acm.mui
08:37:08.0935 0x0d34  C:\Windows\System32\en-US\l3codeca.acm.mui - ok
08:37:08.0950 0x0d34  [ BD206A63E0DCE289C623815D75E8DF60, 791E12EC2C702AAED9013B4E7D9E7E972F177824FA2E48695B2177013E0A7DC6 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
08:37:08.0950 0x0d34  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
08:37:08.0966 0x0d34  [ 00E41EC45B96C1C9D83ABE41A52C5F1B, A697C55652E03FC1392344307E5AEA9182D38E8FDE09CC3DC53EFFDDC329412A ] C:\Program Files (x86)\Logitech\LWS\Webcam Software\ImageFormats\QGif4.dll
08:37:08.0966 0x0d34  C:\Program Files (x86)\Logitech\LWS\Webcam Software\ImageFormats\QGif4.dll - ok
08:37:08.0966 0x0d34  [ 9C67F6BBDA3881CFD02095160CF91576, 6CE97C6F0AD8BE183DE935A7AAB7D46821E8DE9E55A4BFF54ACB49D056826A94 ] C:\Windows\SysWOW64\ksuser.dll
08:37:08.0966 0x0d34  C:\Windows\SysWOW64\ksuser.dll - ok
08:37:08.0981 0x0d34  [ DF3BF36F93945062B85B02EA408E716F, C13EABEDE8AFBDD5DC27E2346ECAE8C4DBE111CB1A882700B4B0964DCC58C223 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
08:37:08.0981 0x0d34  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
08:37:08.0981 0x0d34  [ 6EF5F3F18413C367195F06E503AB86A6, 6F8B87FB4D67F9E76A51EF759B58A95D903C4AAC9C789A65A3FA1FC4F253D978 ] C:\Windows\SysWOW64\d3d9.dll
08:37:08.0981 0x0d34  C:\Windows\SysWOW64\d3d9.dll - ok
08:37:08.0997 0x0d34  [ 3B7CC9279869125D0892C665024A224E, A26FC7DA56D4C0DE2047D6357D885792BCDA0DA8AD2D705C81E0661CD005AEDB ] C:\Program Files (x86)\Logitech\LWS\Webcam Software\ImageFormats\QJpeg4.dll
08:37:08.0997 0x0d34  C:\Program Files (x86)\Logitech\LWS\Webcam Software\ImageFormats\QJpeg4.dll - ok
08:37:08.0997 0x0d34  [ D2155709E336C3BC15729EB87FEC6064, 682A84C0F2D892E7A6CEE4E5937B4799E352AAE3B71E7037F2A343373467443C ] C:\Windows\System32\rasdlg.dll
08:37:08.0997 0x0d34  C:\Windows\System32\rasdlg.dll - ok
08:37:09.0013 0x0d34  [ ABAC57D3B1C8E5E3C5A86F3D311CAA5F, 74DF953CB69A46B04AA9D77A07C50D346976DB4283FDFEE3637935C482C7DF30 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
08:37:09.0013 0x0d34  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
08:37:09.0028 0x0d34  [ 90044039365B06CECDD8E347AC08BBAE, DAAFD6BF526EABFC93F58DD71A1768751E05F8D2DDBDF640A53E4E079F53A24A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
08:37:09.0028 0x0d34  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
08:37:09.0028 0x0d34  [ 1C09858449980D64577E377EB262C9D7, 23DD82AD6EF5B00BCAABC3BEB3937B736E13B849C544B8A6F48C09F914013634 ] C:\Program Files\Windows Journal\Journal.exe
08:37:09.0028 0x0d34  C:\Program Files\Windows Journal\Journal.exe - ok
08:37:09.0044 0x0d34  [ 2DF29664ED261F0FC448E58F338F0671, 4EFE79C383D0AF126FC4EE668D822563F8F037B1E61D73747A35FE11AAFDB8CE ] C:\Windows\System32\mprapi.dll
08:37:09.0044 0x0d34  C:\Windows\System32\mprapi.dll - ok
08:37:09.0059 0x0d34  [ 77B1471A490B53B24EFE136F09F76550, A650C3A244306F8E605BDA8E74BFE438356BA4403B0CB61E980D3183E3F0A7C7 ] C:\Windows\SysWOW64\d3d8thk.dll
08:37:09.0059 0x0d34  C:\Windows\SysWOW64\d3d8thk.dll - ok
08:37:09.0059 0x0d34  [ 6607C2182C6A53ED983813AFE2F85768, FC9E718ABC4E0FBC7B0DD145F9C377A1800A7776AD832AB645796E13B1E15A1F ] C:\Windows\System32\wbem\cimwin32.dll
08:37:09.0059 0x0d34  C:\Windows\System32\wbem\cimwin32.dll - ok
08:37:09.0075 0x0d34  [ A18C3579512D96D02C8BEC1400454BE8, B42BBB8F1C629F69AE4227F6D9CCBA2C33147CCBD974BC053DFC7021D7EBF8F7 ] C:\Windows\System32\gfxSrvc.dll
08:37:09.0075 0x0d34  C:\Windows\System32\gfxSrvc.dll - ok
08:37:09.0075 0x0d34  [ E2F56CD9FB2D26A9FE495E5FB1544EF3, 19F7D81AD3B357DB78C972F6DEED99CC9A8D1C387A23560131328AABCA0D62D3 ] C:\Program Files\Internet Explorer\sqmapi.dll
08:37:09.0075 0x0d34  C:\Program Files\Internet Explorer\sqmapi.dll - ok
08:37:09.0091 0x0d34  [ 292D7CCBAF7D875AFBB4F00896863935, 2CFA99A77DF42A4E60EE4F610ACBFADB34BED6BCE4D1C6CE53AAAF87F98F3F92 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
08:37:09.0091 0x0d34  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
08:37:09.0091 0x0d34  [ 1484B9EBF567346582DE571B0E164AE0, 9862BF22B2E32DABE7A82ACEE5B4EA1F0A93BDC3C71B20A6A4E568CCCD76A7A6 ] C:\Windows\System32\framedynos.dll
08:37:09.0091 0x0d34  C:\Windows\System32\framedynos.dll - ok
08:37:09.0106 0x0d34  [ 4DDACA8A66B95ABA02812FF3C13DE198, FC14FA85367B29A5DA6479D198B9FA1D9A41C965685F51D5F0166D72A9F4668E ] C:\Windows\SysWOW64\vidcap.ax
08:37:09.0106 0x0d34  C:\Windows\SysWOW64\vidcap.ax - ok
08:37:09.0106 0x0d34  [ 1BC3E74A5DD955F8DEBEFE4A2992001D, 130747140C7CDA7FFC242B99A70F6F56F9C652105DDB1729650FB02A8C16B274 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreExt\CmdCntr.dll
08:37:09.0106 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreExt\CmdCntr.dll - ok
08:37:09.0122 0x0d34  [ 630A31F277349109299E590856A4B004, E686938BE16163976BA048C19E0F23F27CFFBDEB044C0C038176BA3435C67C0B ] C:\Windows\SysWOW64\Kswdmcap.ax
08:37:09.0122 0x0d34  C:\Windows\SysWOW64\Kswdmcap.ax - ok
08:37:09.0137 0x0d34  [ C5B18E63CE3EE48E0D2B0808D6615DFE, 9EDAEBF061FAC5A89B4FEE1DBB593F7770C9371CA7557898969EB3D1B933FA66 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreExt\VulcanWrapper.dll
08:37:09.0137 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreExt\VulcanWrapper.dll - ok
08:37:09.0137 0x0d34  [ 90E03A12E4BAD479257ACB33E7BDE9DC, 48FD11F9118CA8CE09D3053A4A1534E5F25A774ED24E1D288A47D599BAEEAB71 ] C:\Windows\System32\IGFXDEVLib.dll
08:37:09.0137 0x0d34  C:\Windows\System32\IGFXDEVLib.dll - ok
08:37:09.0153 0x0d34  [ DC6612A9EE015A36BA2A27BC9CC12537, F4456A3E4028BE3BDE46363290CCC1E8420034A122596D86272CE4B554C78DB5 ] C:\Windows\SysWOW64\mfc42.dll
08:37:09.0153 0x0d34  C:\Windows\SysWOW64\mfc42.dll - ok
08:37:09.0153 0x0d34  [ 919C5C0722F43B0833BC3F8E1F6AFA58, EB6F34BA066A9EF4AA25F7A154B7797A1F300EC6D6396D67B601EFB9D77EEA66 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreExt\VulcanMessage5.dll
08:37:09.0153 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreExt\VulcanMessage5.dll - ok
08:37:09.0169 0x0d34  [ C00DB14550E4BD49737F311C644E45FF, 7085C47DADEED82B6F98ED3903197D76B648E9D6CC67D40C789E236264D9A0DC ] C:\Windows\System32\wmi.dll
08:37:09.0169 0x0d34  C:\Windows\System32\wmi.dll - ok
08:37:09.0169 0x0d34  [ 850BD2D2D9CB5894935C3B6333CAD6FD, AB1EE5FD5E2F1CC927C3EA92E71C91ACA566E69622D47AE780DA391B7C30DDD6 ] C:\Windows\System32\riched20.dll
08:37:09.0169 0x0d34  C:\Windows\System32\riched20.dll - ok
08:37:09.0184 0x0d34  [ 198552AEFECA69D646867EC8D792DE95, 6978D5205387391748EE7E9FACF1AE607C37FBFD83B77CB632DD772F8D71A165 ] C:\Windows\SysWOW64\ddraw.dll
08:37:09.0184 0x0d34  C:\Windows\SysWOW64\ddraw.dll - ok
08:37:09.0200 0x0d34  [ 52AC479854C16B4AFD51FD7C2D64F8ED, 3EDC682261D679BA9A51EDCCC1D1ECBB2B1091AE4C0F0284AC58AB67D056C0A6 ] C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\CameraHelperUI.dll
08:37:09.0200 0x0d34  C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\CameraHelperUI.dll - ok
08:37:09.0200 0x0d34  [ 7D34AF98A706230CC2DEDFE0CABF87AB, 93237B839C2BC6E84C2C675BB211CA0FB781B348A033EF648A9AA5BDAC1EFDAE ] C:\Windows\SysWOW64\odbc32.dll
08:37:09.0200 0x0d34  C:\Windows\SysWOW64\odbc32.dll - ok
08:37:09.0215 0x0d34  [ E6E271C5BCEADA7DE47B83B08B765A17, D7FAEF481207D35849AF8571D09AB002ACAF2A1E6A77BD8FBD2CF008BDF83386 ] C:\Windows\Branding\Basebrd\basebrd.dll
08:37:09.0215 0x0d34  C:\Windows\Branding\Basebrd\basebrd.dll - ok
08:37:09.0231 0x0d34  [ 2342EC9254F4C60CA98441BD65C89E12, 7FDCAEB5D021E291A1C9B94DD4D49913CE363BF94D37518E466DB3DD72C41D05 ] C:\Windows\SysWOW64\dciman32.dll
08:37:09.0231 0x0d34  C:\Windows\SysWOW64\dciman32.dll - ok
08:37:09.0231 0x0d34  [ 852D67A27E454BD389FA7F02A8CBE23F, A8FDBA9DF15E41B6F5C69C79F66A26A9D48E174F9E7018A371600B866867DAB8 ] C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
08:37:09.0231 0x0d34  C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe - ok
08:37:09.0247 0x0d34  [ A8A87343CAE432677D82C0BCC753D905, 22C7C49D2FEDE526E6B0452F305FD8FEC291BED9118123262E6F1E7662067B49 ] C:\Windows\System32\tzres.dll
08:37:09.0247 0x0d34  C:\Windows\System32\tzres.dll - ok
08:37:09.0247 0x0d34  [ FAB72F22055C69AC081481DE0EE47B33, F79E776A43C300C2877DFD4790231E69175450A4B1343137EF8F1686708D76D8 ] C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\CameraControlsUI.dll
08:37:09.0247 0x0d34  C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\CameraControlsUI.dll - ok
08:37:09.0262 0x0d34  [ ABA457BFC7EC0B5E130B2F1E0F549DFF, C944C75C351A276952D0A869F9ED3DF8674E9479797EE7B03D13E8FDCDEB2DC4 ] C:\Windows\SysWOW64\odbcint.dll
08:37:09.0262 0x0d34  C:\Windows\SysWOW64\odbcint.dll - ok
08:37:09.0262 0x0d34  [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2, E8ACB693B1A78FAEF292111BE3F9B10BA95C76833C06C931A08EAAAE39A21334 ] C:\Windows\System32\dot3api.dll
08:37:09.0262 0x0d34  C:\Windows\System32\dot3api.dll - ok
08:37:09.0278 0x0d34  [ A4EFDB8536061B3731EC11FCCFF27265, FCEEAFB4DA203A65D9C15D9A0B45B7041DA36A8136E52D5103B3DA40E6A94BF4 ] C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\VFXCore.dll
08:37:09.0278 0x0d34  C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\VFXCore.dll - ok
08:37:09.0293 0x0d34  [ C9FB9038B15036CA28CF0B4BE2BED9BD, 0F56384E798B3F725FFEFC6E31A980DA31F620DB847F601273EF19E8CE74A226 ] C:\Windows\System32\en-US\tquery.dll.mui
08:37:09.0293 0x0d34  C:\Windows\System32\en-US\tquery.dll.mui - ok
08:37:09.0293 0x0d34  [ 1F85A80EBC4C4C1D562094F5AB231077, 30C5C93B267FB6371281B1C5E7C1D37897196157E47E8824EB42D3C3C4D69B3B ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
08:37:09.0293 0x0d34  C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe - ok
08:37:09.0309 0x0d34  [ E6748A0ADC22F0595E31448CAC746D3F, 9909066DEE5A6FA61F54947019A16776D1B1019CC549484EE9B9F2BB2DB76396 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
08:37:09.0309 0x0d34  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
08:37:09.0325 0x0d34  [ E4FCA0F99A41E460C84016DEFD31E6EF, 8EB14AF2025EADC7C86280E8417D8F286E8271B4F88B31696E33DFD72B3A0EF2 ] C:\Windows\System32\wlanhlp.dll
08:37:09.0325 0x0d34  C:\Windows\System32\wlanhlp.dll - ok
08:37:09.0325 0x0d34  [ 793137C0033CC6FE6CF2A5D4F1AD923F, C6DCA9DC580A6242073CE02E79D4D3BFB4EE8FDBA6171E113AF5B623918D754D ] C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\CameraControls_Core.dll
08:37:09.0325 0x0d34  C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\CameraControls_Core.dll - ok
08:37:09.0340 0x0d34  [ 06A6FE79BD96C7FEF7322AFE5B45FFFF, 6A0A877D495A22BEF290F2A248CCC7703FA921F16939EAFC934E98025666B2D1 ] C:\Windows\System32\mycomput.dll
08:37:09.0340 0x0d34  C:\Windows\System32\mycomput.dll - ok
08:37:09.0340 0x0d34  [ B232802526E70A3787045BFF871EA832, 532725DCD4DD153960022CA218032D116BE97DF49AE4CA250B1372944C6E950C ] C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\VideoEffects.dll
08:37:09.0340 0x0d34  C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\VideoEffects.dll - ok
08:37:09.0356 0x0d34  [ 357BE883C5236BFC7341CB9E82308908, 4DDB697FD9B7C516CF99D73C8799EA35BB97E2431216CD7C1045F17B06109FBF ] C:\Windows\System32\wlanapi.dll
08:37:09.0356 0x0d34  C:\Windows\System32\wlanapi.dll - ok
08:37:09.0356 0x0d34  [ 4C3DAEE652B005B483F16B8E9131C99D, 188DFF96F3B18A610C52775C8F95C99ABF27FF2E1D52B50EDF9F80FE337239CD ] C:\Windows\System32\d3d9.dll
08:37:09.0356 0x0d34  C:\Windows\System32\d3d9.dll - ok
08:37:09.0371 0x0d34  [ 3E466073C3B1033FF92ADE9031E3D4A2, 2B26096A6BA2EE8C496D3252248F21D214E8C41ECF79A60A60E52D3BC4135C03 ] C:\Windows\System32\odbcint.dll
08:37:09.0371 0x0d34  C:\Windows\System32\odbcint.dll - ok
08:37:09.0371 0x0d34  [ 3044D07ABDF4BBEA27E2EE7B1E0C0C65, D99A8C10CC4E5C778D063E56A131DB549F01CA7F9605F6596406606BB12C0269 ] C:\Windows\System32\d3d8thk.dll
08:37:09.0371 0x0d34  C:\Windows\System32\d3d8thk.dll - ok
08:37:09.0387 0x0d34  [ B72F77DA5A69F5626696182E17B503BA, B66545A0B7591AC476DCC8799D03A14619CA8EFD86D71E51E47C858EDC4C6C54 ] C:\Windows\SysWOW64\miguiresource.dll
08:37:09.0387 0x0d34  C:\Windows\SysWOW64\miguiresource.dll - ok
08:37:09.0403 0x0d34  [ B9CE8CF2FF2D5EAFFDBAA340E7B385A5, FBCBFEBA72E174EBD15CB59A76B420C9DD0F6862DC39566A3D2997D6671E98B8 ] C:\Windows\System32\iscsicpl.dll
08:37:09.0403 0x0d34  C:\Windows\System32\iscsicpl.dll - ok
08:37:09.0403 0x0d34  [ 4D7CDB4CDD7B71F0550F7AF163E1FCF6, 61454B37B36A2AAE207CA1102146A0D21E39FAA74850A017464EC8C0BC22D1D7 ] C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll
08:37:09.0403 0x0d34  C:\Program Files (x86)\Common Files\logishrd\LWSPlugins\LWS\Applets\CameraHelper\DevManagerCore.dll - ok
08:37:09.0418 0x0d34  [ 7D631675030CE69C78FB131912E0E3DF, C042686A2402EE28B34F83A7020E332DBCD0AFDFDBEDCCDD67BC6BD86F2A1AD1 ] C:\Windows\System32\igdumd64.dll
08:37:09.0418 0x0d34  C:\Windows\System32\igdumd64.dll - ok
08:37:09.0418 0x0d34  [ 3EEC0FB1DDD317AA1E8933B912439736, D909466452583BBC8227ED9943CF373084E6000BE2C530CF81AC38ED19A9E1D0 ] C:\Windows\System32\MdSched.exe
08:37:09.0418 0x0d34  C:\Windows\System32\MdSched.exe - ok
08:37:09.0434 0x0d34  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] C:\Windows\SysWOW64\netprofm.dll
08:37:09.0434 0x0d34  C:\Windows\SysWOW64\netprofm.dll - ok
08:37:09.0434 0x0d34  [ DE038C40F3033EDA732655FA42DCBD18, 8516D2EEA5E665FCE354A5352517EE9DA47781F507C281AE88DC1939F900BDBE ] C:\Windows\System32\filemgmt.dll
08:37:09.0434 0x0d34  C:\Windows\System32\filemgmt.dll - ok
08:37:09.0449 0x0d34  [ 29409ED7400CA5BCCC30C0EE5147A60D, FCC41E4308A1648CE810105AACED08295C53E25178D6C40C9DF61E9397C579D6 ] C:\Windows\System32\bitsperf.dll
08:37:09.0449 0x0d34  C:\Windows\System32\bitsperf.dll - ok
08:37:09.0465 0x0d34  [ 894AC58BD04D4CFEFB92E458EBEB99F7, 9170F669F153E2A9EBF83373F9780A13CF34EDFA9018661088CCB657C805790E ] C:\Program Files (x86)\Stardock\Fences\VistaBridgeLibrary.dll
08:37:09.0465 0x0d34  C:\Program Files (x86)\Stardock\Fences\VistaBridgeLibrary.dll - ok
08:37:09.0465 0x0d34  [ E660017F96804CF1BE6C88AB4FB08335, 1C76A943493B4975CCD4D934EF40A3386404399FD4405B57C5D6B20D4C1D2CDD ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreExt\Analytics.dll
08:37:09.0465 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreExt\Analytics.dll - ok
08:37:09.0481 0x0d34  [ D9431DCF90B0253773F51FDEFE7FD42F, E53C40CC0EC603CF67305F0AA81389124CF6E709A22DABF13563CBAD15897422 ] C:\Windows\System32\bitsigd.dll
08:37:09.0481 0x0d34  C:\Windows\System32\bitsigd.dll - ok
08:37:09.0496 0x0d34  [ A3E23DD82AA7963D9F7D184BEEEE5448, 5DE83126BCEF661B11CE75AB0D71CC5348420F640779F15088E14FE5E403A4D7 ] C:\Windows\SysWOW64\filemgmt.dll
08:37:09.0496 0x0d34  C:\Windows\SysWOW64\filemgmt.dll - ok
08:37:09.0496 0x0d34  [ 96DB78C9C50CEED9DA5050EFFEE272A2, 51CF3E1F96555A4E4B5BC0DE2598CE5A0199F495644A91C2105F25A5A4CF10E3 ] C:\Windows\System32\upnp.dll
08:37:09.0496 0x0d34  C:\Windows\System32\upnp.dll - ok
08:37:09.0512 0x0d34  [ 243974EC02F7AE49E4179C54624143AB, 755FA67F7BF10E3C6336788D297FBAA70F28F630852A43A78D3F7D7E3A7ECED0 ] C:\Windows\SysWOW64\MMDevAPI.dll
08:37:09.0512 0x0d34  C:\Windows\SysWOW64\MMDevAPI.dll - ok
08:37:09.0512 0x0d34  [ E3F1F845DF069EBA874FA241188B6BE4, 9F7A736C379CA67FE89158F4D2F2B89E266B735B62A135E402FEBB978357A945 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\Fences\65e8808fd433b941ade3db0cedd040ca\Fences.ni.exe
08:37:09.0512 0x0d34  C:\Windows\assembly\NativeImages_v2.0.50727_64\Fences\65e8808fd433b941ade3db0cedd040ca\Fences.ni.exe - ok
08:37:09.0527 0x0d34  [ 46EFEF2A1EA2F366799A1AEE02A3E732, 0349D5C604658269D16A9EDBD7B0BBC98ECF2DD694469F75E291EE1068B8516C ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreExt\LocManager.dll
08:37:09.0527 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreExt\LocManager.dll - ok
08:37:09.0527 0x0d34  [ E19D102BAF266F34592F7C742FBFA886, F3C8BB430F9C33E6CAF06AAEBDE17B7FDDCC55E8BB36CEC2B9379038F1FCA0B1 ] C:\Windows\System32\msconfig.exe
08:37:09.0527 0x0d34  C:\Windows\System32\msconfig.exe - ok
08:37:09.0543 0x0d34  [ EAC3306A70B7E02DD6A3AA8FED054575, B7FAAEA395026BE4CAF75BD9F535B92AEDFB2E540FEEC986BFD43E9DDC9CB0DB ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\d09a5530f1283b469957bf146e2f4d65\System.Xml.ni.dll
08:37:09.0543 0x0d34  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\d09a5530f1283b469957bf146e2f4d65\System.Xml.ni.dll - ok
08:37:09.0559 0x0d34  [ 11F174ED2050121C394C17B4F7B69983, 988B799650BA89DC9AA7078991A854EB4E897744D8051FA805D8070A28FFE0C5 ] C:\Windows\System32\AuthFWGP.dll
08:37:09.0559 0x0d34  C:\Windows\System32\AuthFWGP.dll - ok
08:37:09.0559 0x0d34  [ B839EB47534AA87694EA437903A11EB8, 92B23311ED142BBFE33182D88636C1325742603E018A06CF3EA7E651FDF2E6B0 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreExt\C3Prefs.dll
08:37:09.0559 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreExt\C3Prefs.dll - ok
08:37:09.0574 0x0d34  [ D205C24A9D069049FE2DF2A1B38726A7, B98F420B57A34FDA24F9A655319245EEF86EF4A952014FFA018070A01D5CBC4C ] C:\Windows\SysWOW64\wdmaud.drv
08:37:09.0574 0x0d34  C:\Windows\SysWOW64\wdmaud.drv - ok
08:37:09.0590 0x0d34  [ 036F75AB1273CA217D17EB4B8C185808, 0E69026F34E0CD204FA4225CD1D6D84EB1EA0758F483D2A841209F60B58F8504 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreExt\ElevationManager.dll
08:37:09.0590 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreExt\ElevationManager.dll - ok
08:37:09.0590 0x0d34  [ 24473CD832D3D4C782B14F41A2C2482A, 7743B12D4BFE899EBBCE9331BAFECB3EF428D5245FDD88352C7EC2598742713E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\VistaBridgeLibrary\eebe48fcb85e840a7cb969ed6d91db22\VistaBridgeLibrary.ni.dll
08:37:09.0590 0x0d34  C:\Windows\assembly\NativeImages_v2.0.50727_64\VistaBridgeLibrary\eebe48fcb85e840a7cb969ed6d91db22\VistaBridgeLibrary.ni.dll - ok
08:37:09.0605 0x0d34  [ 9450EBCBDEC254A0E0A1C4DB6508AF41, EA929F7DC23D03AD728C1D372715108473410639FCEF687BF40B72A8CD8672EB ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\c3containerBL.dll
08:37:09.0605 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\c3containerBL.dll - ok
08:37:09.0605 0x0d34  [ 139D3AB6AA920C34C50CBFFB9EB7D222, 5A5D205E16E6AFDCC965E4144FE6E104157DE7541D31727520363F2670513940 ] C:\Windows\SysWOW64\avrt.dll
08:37:09.0605 0x0d34  C:\Windows\SysWOW64\avrt.dll - ok
08:37:09.0621 0x0d34  [ D5A0DDE2F6D883F2B41D307AFFDF216E, DC03768CF4310D9356686EC44DD811A975B0C38BAC40F0A6129D8F6A6DCF9560 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\8b936558407ab33fd18006f6774034a8\System.Configuration.ni.dll
08:37:09.0621 0x0d34  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\8b936558407ab33fd18006f6774034a8\System.Configuration.ni.dll - ok
08:37:09.0621 0x0d34  [ 15E298B5EC5B89C5994A59863969D9FF, 8D38B2E023462D0804F72E907D11FF72CE84540EA3B8D83F411C602C3F6A1177 ] C:\Windows\SysWOW64\npmproxy.dll
08:37:09.0621 0x0d34  C:\Windows\SysWOW64\npmproxy.dll - ok
08:37:09.0637 0x0d34  [ 776DBF61BA3E8FA64FFA052559A29174, 49138662E97D4E0195455EC3BA593C6191E9B3EC2DFCA62FB9A164B53C2886A8 ] C:\Windows\SysWOW64\AudioSes.dll
08:37:09.0637 0x0d34  C:\Windows\SysWOW64\AudioSes.dll - ok
08:37:09.0652 0x0d34  [ 2291B6B771B37424F02673F582571ACA, DD541D831CA779C62D8E96FF233C26A7198CAD19C7043BCF7871AAD3318D35B7 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\20dbd669c42888d4bf4949279ecaec94\System.Drawing.ni.dll
08:37:09.0652 0x0d34  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\20dbd669c42888d4bf4949279ecaec94\System.Drawing.ni.dll - ok
08:37:09.0652 0x0d34  [ D38469601B72D2DA4F847FC642174E21, 7AFAD65B8C1B2615F03F75CED3173C93D9CE2B33BDD20A7CE23E78B98A375A64 ] C:\Program Files\iPod\bin\iPodService.exe
08:37:09.0652 0x0d34  C:\Program Files\iPod\bin\iPodService.exe - ok
08:37:09.0668 0x0d34  [ 347388E4F1236581984CC5BE11341D6E, 334B2B0E2924C725C774F0828A8AC3B046D3893436B7A3D034E156378ACB6C4C ] C:\PROGRA~2\CyberLink\LabelPrint\MUITransfer\LBPEnvRes.dll
08:37:09.0668 0x0d34  C:\PROGRA~2\CyberLink\LabelPrint\MUITransfer\LBPEnvRes.dll - ok
08:37:09.0668 0x0d34  [ 4EFA9B87B1DEC01DEDA96746BF548E85, D90F65048871C0533E42E259700469C53081625E6B283687A0D9AE390E6ED04D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\19bfbbbe2ebf4db54647f4aed0f3c443\System.Windows.Forms.ni.dll
08:37:09.0668 0x0d34  C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\19bfbbbe2ebf4db54647f4aed0f3c443\System.Windows.Forms.ni.dll - ok
08:37:09.0683 0x0d34  [ 8E6972706E3855998FAEC646754CADD2, AA7D17C5A1812A1A863C92E590E0605F106BDC53C31B9ADE542C6E1DE3E99E33 ] C:\PROGRA~2\CyberLink\MediaShow5\MUITransfer\MDSMUIRes.dll
08:37:09.0683 0x0d34  C:\PROGRA~2\CyberLink\MediaShow5\MUITransfer\MDSMUIRes.dll - ok
08:37:09.0683 0x0d34  [ 7F06720DE0BC7A368D5E385C1B462519, D302B0D2CBD4A9E46E5A366FCBA6ACE5F67D1AA8940CB70AED1C181DBBC54C9F ] C:\PROGRA~2\CyberLink\Power2Go\MUITransfer\EnvRes.dll
08:37:09.0683 0x0d34  C:\PROGRA~2\CyberLink\Power2Go\MUITransfer\EnvRes.dll - ok
08:37:09.0699 0x0d34  [ 590A673067BCE6AED5D698D2D848A8B2, 3BE9827B4848A55DB903FF6A5C52EC7B6D936D2A99BE53F9BAA7A8314D5EA86C ] C:\PROGRA~2\CyberLink\PowerDirector\MUITransfer\PDRMUIRes.dll
08:37:09.0699 0x0d34  C:\PROGRA~2\CyberLink\PowerDirector\MUITransfer\PDRMUIRes.dll - ok
08:37:09.0699 0x0d34  [ 07393A09C46083588E751B63B03C8301, 36E2351CF5FA05FEAAEB340B5E04B107B53C8174F8333559D8AEA40BEB94F678 ] C:\Windows\SysWOW64\msacm32.drv
08:37:09.0699 0x0d34  C:\Windows\SysWOW64\msacm32.drv - ok
08:37:09.0715 0x0d34  [ 1D1600468062A7928166422FBE37EE05, A189D6A7B5F6B8377CB8B51F3224CD1CF2C3D577DCF78775E0A556F95794E0BD ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\HEX.dll
08:37:09.0715 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\HEX.dll - ok
08:37:09.0730 0x0d34  [ 5DA219F57A9076FB6FBD3C9C3713A672, 274FE616625B336D81841FDC752C8053D4CD6926565B899760D298D145CBA1A3 ] C:\Windows\System32\WWanAPI.dll
08:37:09.0730 0x0d34  C:\Windows\System32\WWanAPI.dll - ok
08:37:09.0730 0x0d34  [ 85683DF1F917E4D7F6BE1A04986BF1C8, D68D9F525D31C1843B6EC8FA950166FA1F34DB71222716E7B22DD33981C152B6 ] C:\Windows\SysWOW64\msacm32.dll
08:37:09.0730 0x0d34  C:\Windows\SysWOW64\msacm32.dll - ok
08:37:09.0746 0x0d34  [ 62C7AACC746C9723468A8F2169ED3E85, 40E901F3EAFE52DF11D6BC4EF0E79F666EBDACE0B3C090CAD2358076E893EA47 ] C:\Windows\System32\wwapi.dll
08:37:09.0746 0x0d34  C:\Windows\System32\wwapi.dll - ok
08:37:09.0761 0x0d34  [ 81F08948A0F1475894C99D4D19A158A8, 93334DA369BF976E498265E432CAF63D898D378C6B32947DF355366ABE2A0FAC ] C:\Windows\SysWOW64\wshqos.dll
08:37:09.0761 0x0d34  C:\Windows\SysWOW64\wshqos.dll - ok
08:37:09.0761 0x0d34  [ 2BCBA6052374959A30BD7948444DBB79, 46224A2B729026FEEBC3C6A09E69919D477097848DB2CA0C2F5B166CDF379660 ] C:\Windows\System32\gameux.dll
08:37:09.0761 0x0d34  C:\Windows\System32\gameux.dll - ok
08:37:09.0777 0x0d34  [ C20B228E0233E68DF783DF92633DA1A9, FB0A7D1335464627306B425C32EF4756FFC5C7BB2ACB93146EC07822C457B4FF ] C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
08:37:09.0777 0x0d34  C:\Windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok
08:37:09.0777 0x0d34  [ F1C19F0AA151B90A7416FA1D50DDB582, A4AE6B056BF65A12CE5BEDFC3ADE156F088AEAC7196EB5741C9573C64552A7C0 ] C:\Windows\System32\WindowsCodecsExt.dll
08:37:09.0777 0x0d34  C:\Windows\System32\WindowsCodecsExt.dll - ok
08:37:09.0793 0x0d34  [ 64E211E0FDFCE4D186DF58BB7D0503BC, 6B9E12979119BAD721D493A9CEFDC7B4150121D5590222069FD1B8D80F9AC5C0 ] C:\Windows\SysWOW64\gameux.dll
08:37:09.0793 0x0d34  C:\Windows\SysWOW64\gameux.dll - ok
08:37:09.0793 0x0d34  [ 024F00329E8D25E0F2987D3961F6A000, 0B29C85872B8372AAAF57E6F2B3AAD4FBF62EC9CA1AF363D3055B708F0396F11 ] C:\Users\User\AppData\Local\Amazon Cloud Player\cd_helper.exe
08:37:09.0793 0x0d34  C:\Users\User\AppData\Local\Amazon Cloud Player\cd_helper.exe - ok
08:37:09.0808 0x0d34  [ E7B1B5D5A1D1E4C77AE995D725A1FEE5, 4198F1C2E99317723DE705C22BFF6040A71B421098037C83D41C075B778283B7 ] C:\Windows\System32\sdcpl.dll
08:37:09.0808 0x0d34  C:\Windows\System32\sdcpl.dll - ok
08:37:09.0824 0x0d34  [ 5A12C364AD1D4FCC0AD0E56DBBC34462, 5FDF434BE4E15311AC83754CF85B5451F5A219D768A5DE3DC4FD9AE0B57B0AD9 ] C:\Windows\SysWOW64\midimap.dll
08:37:09.0824 0x0d34  C:\Windows\SysWOW64\midimap.dll - ok
08:37:09.0824 0x0d34  [ 1D296F090ED401967B30BD2B970DC306, 9D83B54050E7BD6D807E437CFD22FF803D450194ABA4FD0EDEBF27BEC90521AC ] C:\Windows\System32\icm32.dll
08:37:09.0824 0x0d34  C:\Windows\System32\icm32.dll - ok
08:37:09.0839 0x0d34  [ 13D629BF27D904631A4ADF67D1960531, 19F06380417E91E408F13800811E2911BBFE3C8E2EE026EC7F5EC6971CD439AB ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
08:37:09.0839 0x0d34  C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
08:37:09.0855 0x0d34  [ AC5DF873913B00E554D8F553459BC431, 86FC6E15BD67AEB714E44C088EDA1C17BAC25A1EC67A518A05878D594F293394 ] C:\Windows\System32\qmgrprxy.dll
08:37:09.0855 0x0d34  C:\Windows\System32\qmgrprxy.dll - ok
08:37:09.0855 0x0d34  [ 5E3012DF734F2CCD1BE99AE19D0E90D0, AFA187D7B03CA254341682FD688A2CFCFF799AEBCD4135AF9D3F99FD4D758127 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\0b3734c42f6d76a012ad78867f5e0ba9\WindowsFormsIntegration.ni.dll
08:37:09.0855 0x0d34  C:\Windows\assembly\NativeImages_v2.0.50727_64\WindowsFormsIntegra#\0b3734c42f6d76a012ad78867f5e0ba9\WindowsFormsIntegration.ni.dll - ok
08:37:09.0871 0x0d34  [ 85B45B4B285B159ACDB355FC8C1E8925, EBB4A5472306A284D3A845347E2A79B13EFCCBA86705E1D49DE8AC44D8D06112 ] C:\Windows\SysWOW64\qmgrprxy.dll
08:37:09.0871 0x0d34  C:\Windows\SysWOW64\qmgrprxy.dll - ok
08:37:09.0871 0x0d34  [ BA1743DC5FA766BC0501E553147BACCF, 69B8CB314EF849023051FD8A724B33361D738C508453260D4E6C1AFF3BD4789A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\96b76b5a686f9f3ef34dc285e21c14b8\PresentationFramework.Aero.ni.dll
08:37:09.0871 0x0d34  C:\Windows\assembly\NativeImages_v2.0.50727_64\PresentationFramewo#\96b76b5a686f9f3ef34dc285e21c14b8\PresentationFramework.Aero.ni.dll - ok
08:37:09.0886 0x0d34  [ 23FAEEF80B00A2773680EC3E183C7899, CC29C4611EFAD7F5D62A8093E3C8D13C9EF5D0D04E93A30A761FC594F34FFEB6 ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
08:37:09.0886 0x0d34  C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
08:37:09.0886 0x0d34  [ F3B306179F1840C0813DC6771B018358, DCAEB590394B42D180E23E3CEF4DD135513395B026E0ED489AEC49848B85B8F0 ] C:\Windows\System32\recdisc.exe
08:37:09.0886 0x0d34  C:\Windows\System32\recdisc.exe - ok
08:37:09.0902 0x0d34  [ 6B851E682A36453E1B1EE297FFB6E2AB, A641D3FD9463C4788B45B8B5584EA4489C1F63A71B4B595AE85FF3482CD5EDA6 ] C:\Windows\System32\QAGENT.DLL
08:37:09.0902 0x0d34  C:\Windows\System32\QAGENT.DLL - ok
08:37:09.0902 0x0d34  [ E79DF53BAD587E24B3CF965A5746C7B6, 4E7C22648ACF664AB13DFEB2DC062AE90AF1E6C621186981F395FB279BBC9B9D ] C:\Windows\System32\msra.exe
08:37:09.0902 0x0d34  C:\Windows\System32\msra.exe - ok
08:37:09.0917 0x0d34  [ 6564B4AE1C541C7E0C51C8590B302008, 4BF50CAD44A7603CF2CFFFC9867AC53D9AE17B9E642D66D03C589C6A590940EC ] C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.104\pdf.dll
08:37:09.0917 0x0d34  C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.104\pdf.dll - ok
08:37:09.0933 0x0d34  [ 83CFD96A3674C2183AAC5651B86ACA3D, D662D470330EA5F9E2D7074B2DD95951764418183F5D5BB8293CB119AD68287C ] C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.104\libpeerconnection.dll
08:37:09.0933 0x0d34  C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.104\libpeerconnection.dll - ok
08:37:09.0933 0x0d34  [ 20F8D71759AB3A36DD2F1F5D42F40DDE, 0A05A469A056EC052C59356A671828102E914C488B12419E3D9CEB9FDA897F4A ] C:\Windows\SysWOW64\msra.exe
08:37:09.0933 0x0d34  C:\Windows\SysWOW64\msra.exe - ok
08:37:09.0949 0x0d34  [ 43C9CF6825CEA58F1815B7C3DBBB385C, C79DB405D588C77E4ACAE3BC26080213BEEB604C0A109AFDF88031FC46B4CBC0 ] C:\Windows\SysWOW64\Wpc.dll
08:37:09.0949 0x0d34  C:\Windows\SysWOW64\Wpc.dll - ok
08:37:09.0949 0x0d34  [ 5E244B1AD60A0F9DD69F3E02AEBB4D2B, 8192D8CC54B2A383E2B79FABB894A946E917F2792D9D720258E13B88BBDAF0E0 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\libcef.dll
08:37:09.0949 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\libcef.dll - ok
08:37:09.0964 0x0d34  [ EDF2A5E96BEC469DA3F64E9BDD386111, 63C91BBDFA2E087293B010A4E45625FBD1BFCAF655BFADE2F8B1C36CF804B118 ] C:\Windows\SysWOW64\xmllite.dll
08:37:09.0964 0x0d34  C:\Windows\SysWOW64\xmllite.dll - ok
08:37:09.0964 0x0d34  [ 4F8CCD3E7D9F17A7C60FA0AE2466CACF, 77849DD78145EA879E63A42AE1481C0DEA3E16D89BB067229203317E9EDD340D ] C:\Windows\SysWOW64\wer.dll
08:37:09.0964 0x0d34  C:\Windows\SysWOW64\wer.dll - ok
08:37:09.0980 0x0d34  [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8, C0B22B8C402EEEAF68F5380BC265C15418934D2F702F0A43674EC93853E26040 ] C:\Windows\System32\shfolder.dll
08:37:09.0980 0x0d34  C:\Windows\System32\shfolder.dll - ok
08:37:09.0980 0x0d34  [ 5987EA8A82C53359BCD2C29D6588583E, 59E2DF91F8DA9E33DE65FA67A6A49A7C3F524618A87EAEFC8A28C5304E7FAB85 ] C:\Windows\SysWOW64\linkinfo.dll
08:37:09.0980 0x0d34  C:\Windows\SysWOW64\linkinfo.dll - ok
08:37:09.0995 0x0d34  [ 7D39AB50F9156AD26284054B6BF7D94B, 140AEC3067D58FF56356D72AB718511AE9D4AAA73F60648DA45B5A5DAFA8F041 ] C:\Windows\System32\icacls.exe
08:37:09.0995 0x0d34  C:\Windows\System32\icacls.exe - ok
08:37:10.0011 0x0d34  [ F95E1E9D97D25C11F29CA34C843A6F4D, 97DF01FA582425B72EFE54BE1CE8B28C4A8BA680A081F4D32797C5A0425FFB41 ] C:\Windows\SysWOW64\schannel.dll
08:37:10.0011 0x0d34  C:\Windows\SysWOW64\schannel.dll - ok
08:37:10.0011 0x0d34  [ 82CE3E2860AA93F35E6FCC88E36CEE31, DE45C7D24D6AA1C37835D8F6A1E37BCF1AB8DAD8989CA25C760C8D9B40214B4D ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\icudt.dll
08:37:10.0011 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\icudt.dll - ok
08:37:10.0027 0x0d34  [ 72DB7DD3611C6635BA1E3AAA88A3FEAC, 3B46E9AFA4D47868F42071364CE7B02CFBBF71D90A8EE91446232DDBEFCCFE10 ] C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe
08:37:10.0027 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\YouCam.exe - ok
08:37:10.0042 0x0d34  [ AEB983842B327F4A088D35EDFB4FDB19, C4A950B3C731BC6A43FF01150780E402B72F456567C4B19EA433B708F7125694 ] C:\Program Files (x86)\CyberLink\YouCam\Koan\pyloader.dll
08:37:10.0042 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\Koan\pyloader.dll - ok
08:37:10.0042 0x0d34  [ 6E087B1CDBE342D8CA485711B31C9165, 776593D13CDBA753597AF1FEE0EF27294817C3974A752FECFAE78CC174654E31 ] C:\Program Files (x86)\CyberLink\YouCam\Koan\python25.dll
08:37:10.0042 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\Koan\python25.dll - ok
08:37:10.0058 0x0d34  [ 69754747274B76E7FAF287239333D7E6, A0BAEC1E56E4B1A17C0D41B317526AF5BB11E7E488C7016067A6229346A23B16 ] C:\Windows\System32\msiltcfg.dll
08:37:10.0058 0x0d34  C:\Windows\System32\msiltcfg.dll - ok
08:37:10.0058 0x0d34  [ D2E95CE4B980EFD9605D1A38F895B3DF, CEB2E176F3CB18628512E459E52EF766E111A7DC70E705CE6EABB6D14A464A36 ] C:\Program Files (x86)\CyberLink\YouCam\Koan\_render3d.pyd
08:37:10.0058 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\Koan\_render3d.pyd - ok
08:37:10.0073 0x0d34  [ F182E8EC4BE415E4EB60766A2BC3A760, A583A83E7EECA2D7CA1787A3F68DC52FF7A51CBF02D8E7B7BFB156770BAE28E0 ] C:\Program Files (x86)\CyberLink\YouCam\Koan\_font.pyd
08:37:10.0073 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\Koan\_font.pyd - ok
08:37:10.0089 0x0d34  [ C084F360C0386BBF6773AB4C5AFC0D86, B2D9F3EA68C30E496541899A99CEF8B2324FAE408E23898508D1CD819945A810 ] C:\Program Files (x86)\CyberLink\YouCam\Koan\_Interpolator.pyd
08:37:10.0089 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\Koan\_Interpolator.pyd - ok
08:37:10.0089 0x0d34  [ 58855D0103C825993E578902126FB18F, FEA9ED542379F058DFC5B655CAD42FFAF486C48DAA7A49763BEDCA945A09E34C ] C:\Program Files (x86)\CyberLink\YouCam\Koan\_image.pyd
08:37:10.0089 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\Koan\_image.pyd - ok
08:37:10.0105 0x0d34  [ BF0852AAC80EBB66A7E1C984C898B4F0, 3025A77D2CDAA6FFD4995741F12A4A8433D9C1CC634340D4E8CA74501FBE3E65 ] C:\Program Files (x86)\CyberLink\YouCam\Koan\_wingdi.pyd
08:37:10.0105 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\Koan\_wingdi.pyd - ok
08:37:10.0105 0x0d34  [ 4DC7345657EFC069D301496DC5B66ECD, 9B12CC69AAAE24828510216509497C29C2C36544F51243971E2749F980FE4D22 ] C:\Program Files (x86)\CyberLink\YouCam\Koan\_ctypes.pyd
08:37:10.0105 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\Koan\_ctypes.pyd - ok
08:37:10.0120 0x0d34  [ F5ECEAF5132D00B3DA565DBDD14E430F, 210689FA1967B007B9884D275100AA366F9197CF8EA3EE07BC3F75F48DE994FD ] C:\Windows\SysWOW64\igdumdx32.dll
08:37:10.0120 0x0d34  C:\Windows\SysWOW64\igdumdx32.dll - ok
08:37:10.0136 0x0d34  [ F58E87DE0F2855BAE62EED30D306358D, F26AF292B035EF3939D583FA38FB60C0A95C5E052245FB93B5066873A4C0A28F ] C:\Windows\SysWOW64\igdumd32.dll
08:37:10.0136 0x0d34  C:\Windows\SysWOW64\igdumd32.dll - ok
08:37:10.0136 0x0d34  [ E415862612E65F10D7D888443ECD7594, 5EDEED79F2359527A55B8189CFA8B9B121CD608D44EEAD905A0F3436938AD532 ] C:\Windows\SysWOW64\d3dx9_30.dll
08:37:10.0136 0x0d34  C:\Windows\SysWOW64\d3dx9_30.dll - ok
08:37:10.0151 0x0d34  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:37:10.0151 0x0d34  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
08:37:10.0151 0x0d34  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:37:10.0151 0x0d34  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
08:37:10.0167 0x0d34  [ 81FB155132AE12BA18119D5B36A85476, B135C87752B20C98CD5D4B9BE47316F785EC41FD5E391D8609F06EDA29B05BBF ] C:\Windows\System32\msvcr110_clr0400.dll
08:37:10.0167 0x0d34  C:\Windows\System32\msvcr110_clr0400.dll - ok
08:37:10.0167 0x0d34  [ 17EFB4C5F996F783E90BE1EB0077BA40, B12C1758969E6440D3305BD9AECB6F7A77310296CC0C78840ED813E87285E71A ] C:\Program Files (x86)\McAfee Security Scan\3.0.285\mcuicnt.exe
08:37:10.0167 0x0d34  C:\Program Files (x86)\McAfee Security Scan\3.0.285\mcuicnt.exe - ok
08:37:10.0183 0x0d34  [ FA198903B4151EDF0F01C5FE19A3875A, 2C5D4381849830DBB0C81D3E6EDDDDB409046662524DEC8E6B35497305264D2C ] C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.104\chrome.dll
08:37:10.0183 0x0d34  C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.104\chrome.dll - ok
08:37:10.0183 0x0d34  [ C5413BC4F10CEB4C3070BBF04D324117, 83908C79D22458BC05FAB5ABF1DDF74177B1E5C612E893C62C19C284D2C86F60 ] C:\Windows\SysWOW64\msisip.dll
08:37:10.0183 0x0d34  C:\Windows\SysWOW64\msisip.dll - ok
08:37:10.0198 0x0d34  [ 8D20196D121BADB238EEBD17FFCF2C11, EEBC93A4BB57643926E31AE7CAFB1FBAB5D81B940913340CFA33E65B064673B8 ] C:\Program Files (x86)\McAfee Security Scan\3.0.285\SecurityScanner.dll
08:37:10.0198 0x0d34  C:\Program Files (x86)\McAfee Security Scan\3.0.285\SecurityScanner.dll - ok
08:37:10.0214 0x0d34  [ 137C437E5755FAA2A71F6FF877EA1D70, DB66E0681E5F06405A0D7A1BA18210FCB23D480437C43DFDE23F54B248575639 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\NEX\NEX.dll
08:37:10.0214 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\NEX\NEX.dll - ok
08:37:10.0214 0x0d34  [ F0B878EE033400F98A56F288EE575823, BF00AA59FE2C6EFBA4269BA3321A212AC5A526A4A5E5333A9307AD349755CE63 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\c3containerUI.dll
08:37:10.0214 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\c3containerUI.dll - ok
08:37:10.0229 0x0d34  [ 76FC7842573EDFBB128E668512AA63C9, 36D6B61C771C337F8BFD7CED898C20E6E265FE10FC1A9A48215E4CAB28E2379E ] C:\Program Files (x86)\CyberLink\YouCam\Koan\_socket.pyd
08:37:10.0229 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\Koan\_socket.pyd - ok
08:37:10.0229 0x0d34  [ 34E7F32C5C4E6D509A14EC84913C244A, BE803BED2D1A44DE2BF48563A29687B99E644F8302E8F9B87003A40D1FEEF005 ] C:\Program Files (x86)\CyberLink\YouCam\Koan\_ssl.pyd
08:37:10.0229 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\Koan\_ssl.pyd - ok
08:37:10.0245 0x0d34  [ 20F744A39D10FCBF5D68F93A0AC3DC98, 741B7B224810478E0256B101DA092FEB9EAA0772C99488461C7620E2E0E31849 ] C:\Program Files (x86)\McAfee Security Scan\3.0.285\mcbrwsr2.dll
08:37:10.0245 0x0d34  C:\Program Files (x86)\McAfee Security Scan\3.0.285\mcbrwsr2.dll - ok
08:37:10.0245 0x0d34  [ 68ECCA523ED760AAFC03C5D587569859, CDD734279C8F9F24EA2538BAD8E91EB8C3DD74C33032DB6B2D85C19576B42707 ] C:\Windows\SysWOW64\samcli.dll
08:37:10.0245 0x0d34  C:\Windows\SysWOW64\samcli.dll - ok
08:37:10.0261 0x0d34  [ E9BB0CD09DA17C71FD1B9954D75AEEF7, FF5E2F04F1FD56FDD19368150B5750275F0A44E9EA9820C8087E84ECBBF45286 ] C:\Windows\SysWOW64\credui.dll
08:37:10.0261 0x0d34  C:\Windows\SysWOW64\credui.dll - ok
08:37:10.0261 0x0d34  [ FFF95479C7AB1550F0750A5D01744211, FF67F892AABCE1C2B695FF4C0816339566F5745C1498D48FAC050E5196C1CE09 ] C:\Windows\System32\drivers\spsys.sys
08:37:10.0261 0x0d34  C:\Windows\System32\drivers\spsys.sys - ok
08:37:10.0276 0x0d34  [ 63DF770DF74ACB370EF5A16727069AAF, B8F96336BF87F1153C245D19606CBD10FBE7CF2795BCC762F2A1B57CB7C39116 ] C:\Windows\SysWOW64\hid.dll
08:37:10.0276 0x0d34  C:\Windows\SysWOW64\hid.dll - ok
08:37:10.0292 0x0d34  [ 26EA93B949F0BE2C7481CC9A4A9F83AB, FF13583ED5109961114C89FAA8085105B35EBBCD96F3C3C88A50563F924BFE4E ] C:\Program Files (x86)\CyberLink\YouCam\subsys\Mui\_CLMuiTransfer.pyd
08:37:10.0292 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\subsys\Mui\_CLMuiTransfer.pyd - ok
08:37:10.0292 0x0d34  [ F00AE7B953ABEF1B53FBBA187DFC8238, 6FFA160FB6821A725A7D81E1BECE1DE89E3E022B33E56A7468E2E0B4C8B2AE31 ] C:\Windows\System32\webcheck.dll
08:37:10.0292 0x0d34  C:\Windows\System32\webcheck.dll - ok
08:37:10.0307 0x0d34  [ 738BC1EC1094DFD93F0EEF567E3011B7, 1A8B8A2F3B631EE55EBBF6FFEF11CBA6E6DF96AF4A9377C0E69E61EC68E45E34 ] C:\Program Files (x86)\CyberLink\YouCam\subsys\YouCam\CLVTransDetect.dll
08:37:10.0307 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\subsys\YouCam\CLVTransDetect.dll - ok
08:37:10.0307 0x0d34  [ D9E21CBF9E6A87847AFFD39EA3FA28EE, B2AE0BBF907D4108DE3485E6059DF8D10C39707CD508A55A2D9627A66D01AE78 ] C:\Windows\System32\SearchProtocolHost.exe
08:37:10.0307 0x0d34  C:\Windows\System32\SearchProtocolHost.exe - ok
08:37:10.0323 0x0d34  [ 8130391F82D52D36C0441F714136957F, 1FD4FEE7CAF63E450F27729E07EA2A2F09288629FD872DBB6E8710B16D8DBD5D ] C:\Windows\System32\imapi2.dll
08:37:10.0323 0x0d34  C:\Windows\System32\imapi2.dll - ok
08:37:10.0323 0x0d34  [ 53B1185B44464964FFD50774F5A8A13E, 1F42F5DDFB1E8574F7A913BE15200854F4F1AA3C09DCCFFBF3251FDA6FBD4B05 ] C:\Program Files (x86)\CyberLink\YouCam\subsys\YouCam\_PyYouCam.pyd
08:37:10.0323 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\subsys\YouCam\_PyYouCam.pyd - ok
08:37:10.0339 0x0d34  [ 6A5C1A8AC0B572679361026D0E900420, B5E693B48B462E97738A3D4E58B60846159649EB15F4D11074B4BC107CC88562 ] C:\Windows\System32\hgcpl.dll
08:37:10.0339 0x0d34  C:\Windows\System32\hgcpl.dll - ok
08:37:10.0339 0x0d34  [ 7CBB1D4D13DC62D7F529D87151FD3CD3, DA75C5E64777F6ACE6F77A72D3362A40F8BE59DF3E6BC83550A81D9E20730401 ] C:\Program Files\Windows Defender\MpSvc.dll
08:37:10.0339 0x0d34  C:\Program Files\Windows Defender\MpSvc.dll - ok
08:37:10.0354 0x0d34  [ 794E62D96E8CE1ED9AABCA917F632AD3, C74D8CC791AE2BF441AA5F5216E585C37C4B518409E29B3197C7DE92F5A33FFF ] C:\Program Files (x86)\CyberLink\YouCam\subsys\Device\_Device.pyd
08:37:10.0354 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\subsys\Device\_Device.pyd - ok
08:37:10.0370 0x0d34  [ 539C49CEBB3C50957AC8A09D95ECD880, 49E75CDB556FBCE72C44648F8930CF2209C1360F9311C5B4CEB19E13B11E6B75 ] C:\Windows\SysWOW64\shfolder.dll
08:37:10.0370 0x0d34  C:\Windows\SysWOW64\shfolder.dll - ok
08:37:10.0370 0x0d34  [ B59421860FD19D81BE1385C594795389, CA44E01C6E61237E223ED84B2FDBE50C2883AB8FE9AFD55930F47DA67B0FFDE5 ] C:\Program Files (x86)\Microsoft\BingDesktop\BDExtHost.exe
08:37:10.0370 0x0d34  C:\Program Files (x86)\Microsoft\BingDesktop\BDExtHost.exe - ok
08:37:10.0385 0x0d34  [ 662BA98309818AF2C17D4E48BF4021C4, 57B3FFAECE3DF5E22B6764A95D2B8523AA02CCCB4BD0779025C11D02EEBF4B1E ] C:\Program Files\Windows Defender\MpClient.dll
08:37:10.0385 0x0d34  C:\Program Files\Windows Defender\MpClient.dll - ok
08:37:10.0385 0x0d34  [ BDCD3B55058D8ABFF3A26A04F4760B2F, 39D4AC1F39F16B511E4CB4FDED95B8B76C04D145A6DE051ABF8D02206BCCA4B6 ] C:\Program Files (x86)\CyberLink\YouCam\subsys\SplashWnd\_PySplashWnd.pyd
08:37:10.0385 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\subsys\SplashWnd\_PySplashWnd.pyd - ok
08:37:10.0401 0x0d34  [ F6F22291024906E43D135A4B1705FEAC, C1B66012799D247033E8AB8386B51BC86A4E2255E6D0B163AC000B215C51B42A ] C:\Windows\System32\sppwinob.dll
08:37:10.0401 0x0d34  C:\Windows\System32\sppwinob.dll - ok
08:37:10.0401 0x0d34  [ 171D7DB433314A868507C4326E8209DC, 254E0D9F99CE47104CF21D8E968D89D6A09B9CE47168E760BAB28AD5A1E9E6A3 ] C:\Windows\System32\fdWSD.dll
08:37:10.0401 0x0d34  C:\Windows\System32\fdWSD.dll - ok
08:37:10.0417 0x0d34  [ 839F96DBAAFD3353E0B248A5E0BD2A51, 11DA5AD3EA5FF4766C12B99FB520B3CBE08581ECAF1A2FD1DC5AC835CA78FAC2 ] C:\Windows\SysWOW64\rasapi32.dll
08:37:10.0417 0x0d34  C:\Windows\SysWOW64\rasapi32.dll - ok
08:37:10.0417 0x0d34  [ 8494E126F0B10180F3293AF861CE1F7A, 538B1F30423DB2398E611BC46C80150C090698E633BABF7362F7060DBF0C3064 ] C:\Windows\System32\mlang.dll
08:37:10.0417 0x0d34  C:\Windows\System32\mlang.dll - ok
08:37:10.0432 0x0d34  [ C85670AB64068F8080998AEBA6C5019C, 87D88235F69C062E5B759F91253ABAF7BD055937DD119BD26858237F812D3DED ] C:\Windows\SysWOW64\atl100.dll
08:37:10.0432 0x0d34  C:\Windows\SysWOW64\atl100.dll - ok
08:37:10.0448 0x0d34  [ FFA7172354B9256DBB2CDD75F16F33FE, 85B2F014C67C2E52540F17D561793C6633C9E98F12639CCD3854EB1EC34DD035 ] C:\Windows\SysWOW64\rasman.dll
08:37:10.0448 0x0d34  C:\Windows\SysWOW64\rasman.dll - ok
08:37:10.0448 0x0d34  [ D2A5B2B09F2AF5ED13BF494508B09788, 3FA04E84EC5A575E7804E44BA3BF1C4143E53C4ACF6C823CD029711529B0BE2C ] C:\Windows\System32\msshooks.dll
08:37:10.0448 0x0d34  C:\Windows\System32\msshooks.dll - ok
08:37:10.0463 0x0d34  [ A2E5B2D20954210DCE1A75A1FC8CC36D, 1EA240AC37ECA4EC3E542F9E6DF72753EBA1DF76CBA8691EC61ABCC51EE6FCB2 ] C:\Windows\System32\fdSSDP.dll
08:37:10.0463 0x0d34  C:\Windows\System32\fdSSDP.dll - ok
08:37:10.0463 0x0d34  [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159, ACE7F85685EB92FC3AB4215122B0469E32F23B196C49F08CDA7791D3122C45DC ] C:\Windows\SysWOW64\rtutils.dll
08:37:10.0463 0x0d34  C:\Windows\SysWOW64\rtutils.dll - ok
08:37:10.0479 0x0d34  [ 71C4F42DC8DB668E826DA79462EA741E, 69452DBC1CD4E09B27A42A535827B359FA9A2762A106E91653DDB7BF00A9C029 ] C:\Windows\SysWOW64\KBDUS.DLL
08:37:10.0479 0x0d34  C:\Windows\SysWOW64\KBDUS.DLL - ok
08:37:10.0479 0x0d34  [ 5D6575A080B7F8D44B64D7E78951E5AF, 8DA1CD96C3EF0B0D84471F8C893E88861B5A85061881D3FAAF6F66EA36282D7C ] C:\Program Files (x86)\CyberLink\YouCam\subsys\YouCam\CLFxRec.dll
08:37:10.0479 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\subsys\YouCam\CLFxRec.dll - ok
08:37:10.0495 0x0d34  [ BCEA9AB347E53BC03B2E36BE0B8BA0EF, 868DEFB78767E91694E83F931725257DF3FF79A4BFED3B914D27F3493EB7A8D0 ] C:\Windows\System32\httpapi.dll
08:37:10.0495 0x0d34  C:\Windows\System32\httpapi.dll - ok
08:37:10.0495 0x0d34  [ E84E5E8888FDB6B3D908113D784A9920, 63426D762B8730F56EAA323B3F42253BB30A8592A4A2993BF3526A43792F3917 ] C:\Program Files (x86)\Microsoft\BingDesktop\BDAppHost.exe
08:37:10.0495 0x0d34  C:\Program Files (x86)\Microsoft\BingDesktop\BDAppHost.exe - ok
08:37:10.0510 0x0d34  [ 76144D2A8B190A35EB578F65C66C88BB, 6714A0D045227A7F446A25550E7C98D8CCF0BAD3FA8D84A9B836E7513D52817D ] C:\Program Files (x86)\CyberLink\YouCam\subsys\YouCam\CLWebCameraSource.ax
08:37:10.0510 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\subsys\YouCam\CLWebCameraSource.ax - ok
08:37:10.0510 0x0d34  [ A626AEB98E7454EE84BA00BBB907A752, AA5483300288A88DAFDAC6D7E411247A53EDF77F861ABE08531ECEBA1FF0D87B ] C:\Program Files (x86)\CyberLink\YouCam\subsys\YouCam\XUControl.dll
08:37:10.0510 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\subsys\YouCam\XUControl.dll - ok
08:37:10.0526 0x0d34  [ 82C089EA2A3EEFADF3588EA71E8BDADA, 2F3BB32EE2C0673058A74DEEB2D405E5E79F833F33C4D289A93EB3C618A86E75 ] C:\Windows\SysWOW64\wevtapi.dll
08:37:10.0526 0x0d34  C:\Windows\SysWOW64\wevtapi.dll - ok
08:37:10.0541 0x0d34  [ 49A3AD5CE578CD77F445F3D244AEAB2D, 1D200547C6277C4A878A9ADD94045F7ACCC583609985C592AAE9B9B9CA7B812A ] C:\Windows\System32\SearchFilterHost.exe
08:37:10.0541 0x0d34  C:\Windows\System32\SearchFilterHost.exe - ok
08:37:10.0541 0x0d34  [ C30A3E5DEEEBA22E782AC54C5AF5F352, 80939A7B5354032256706C6CA0C3CCC7E67CD1C1C81EAEA2CBC74997C0863662 ] C:\Windows\SysWOW64\samlib.dll
08:37:10.0541 0x0d34  C:\Windows\SysWOW64\samlib.dll - ok
08:37:10.0557 0x0d34  [ C423E09CD8D2FDD19F1C1728D30623B1, 3109E9465453D99C84755C362F6A7E6E6730A45F1A50773649FEC7ACDF509989 ] C:\Program Files (x86)\Microsoft\BingDesktop\BDRuntimeHost.exe
08:37:10.0557 0x0d34  C:\Program Files (x86)\Microsoft\BingDesktop\BDRuntimeHost.exe - ok
08:37:10.0557 0x0d34  [ 2A436796758BF2555A26C770FE8A6FEE, 9E42AF3A3CB05E323CBB7F93FE7C454CD251672C5D9F5E94909131A5D8F9204A ] C:\Windows\System32\fdProxy.dll
08:37:10.0557 0x0d34  C:\Windows\System32\fdProxy.dll - ok
08:37:10.0573 0x0d34  [ 779E142FE2159935E78C0FA2E190FF1E, 681CEEDE8C1295B0245675A54E01898860F24AC21171B2858160D05B5E08E387 ] C:\Windows\SysWOW64\jscript.dll
08:37:10.0573 0x0d34  C:\Windows\SysWOW64\jscript.dll - ok
08:37:10.0573 0x0d34  [ B6411CED931AFD059E48C52DBFBA95B4, 4E275A691E6A1C07D72DC8DA16B58B6634286A5058C3F4AC0ABD92B9A57FB5D5 ] C:\Windows\System32\P2P.dll
08:37:10.0573 0x0d34  C:\Windows\System32\P2P.dll - ok
08:37:10.0588 0x0d34  [ 48041BAEB60CE5F34F13CC2A1361E49C, AF82355A4C0D872F1F45261381C23C1510C2C77DD5F040B706FD7A3D63D4BAA4 ] C:\Windows\System32\mssph.dll
08:37:10.0588 0x0d34  C:\Windows\System32\mssph.dll - ok
08:37:10.0588 0x0d34  [ 4A82EA2807B16FF577AEAF8ADB8779FF, C7F9A45FF80DFDE804D81BEE23C748A465AEB729DF2C9E327374CDD94E300547 ] C:\Windows\System32\IdListen.dll
08:37:10.0588 0x0d34  C:\Windows\System32\IdListen.dll - ok
08:37:10.0604 0x0d34  [ 8F4BB0CFECED925D440ABC2481278360, 0A87E7E1B38300E211F2ECA10BFB9831CF79B128DEB9D7AB0AA6A715197FF2DD ] C:\Windows\System32\mapi32.dll
08:37:10.0604 0x0d34  C:\Windows\System32\mapi32.dll - ok
08:37:10.0619 0x0d34  [ 2B373B5F7E36B5ED5DA176D4400EF091, A7E220CC3661429D786693B277A7F39D5D9E24284B1D9E55DB6295AF7D97D104 ] C:\Windows\System32\sppobjs.dll
08:37:10.0619 0x0d34  C:\Windows\System32\sppobjs.dll - ok
08:37:10.0619 0x0d34  [ A3B1D1312602280839A4A2AFBDFD066E, 607D1E78E76F2DEB1982172E93AE68420825A1B6153B413451AE306A27594B17 ] C:\Windows\SysWOW64\scrrun.dll
08:37:10.0619 0x0d34  C:\Windows\SysWOW64\scrrun.dll - ok
08:37:10.0635 0x0d34  [ A0524499F4C63CADA7E1529FC77F5DC1, DCAF3C89B7363139EB128C6240CA2B301090BF18C57688B0990FC2BBF680752F ] C:\Windows\System32\hgprint.dll
08:37:10.0635 0x0d34  C:\Windows\System32\hgprint.dll - ok
08:37:10.0635 0x0d34  [ B010CF886420EE29C2C276646721D255, CBCD032D679ADE3A9942A1D116648D6A9ECC71F66F8630629E724E5EE23F9F73 ] C:\Windows\SysWOW64\wlanapi.dll
08:37:10.0635 0x0d34  C:\Windows\SysWOW64\wlanapi.dll - ok
08:37:10.0651 0x0d34  [ FF2B106909EED48C536DA04742C0324A, 7FEE709C0E37747412C3420EC2622F23F1CD87473D0A5890F2752E8F0B76D3E0 ] C:\Windows\System32\Query.dll
08:37:10.0651 0x0d34  C:\Windows\System32\Query.dll - ok
08:37:10.0651 0x0d34  [ 6DC3C4CF11B48BB8878731278C153209, E734ED47E527439EBE0497BB591C3762567210BA2ED5CEA0BCA810923D3DCE97 ] C:\Program Files\Internet Explorer\ieproxy.dll
08:37:10.0651 0x0d34  C:\Program Files\Internet Explorer\ieproxy.dll - ok
08:37:10.0666 0x0d34  [ 1D6A771D1D702AE07919DB52C889A249, E5F3378AC40AEE6114EEAF3BF11DC1059466891CAE353E80C08622A60485C954 ] C:\Windows\SysWOW64\wlanutil.dll
08:37:10.0666 0x0d34  C:\Windows\SysWOW64\wlanutil.dll - ok
08:37:10.0666 0x0d34  [ 01E2855FB06C422E721D890AF201C2D7, 9CAA197D5CE95AABFC8C09EA2137E73C7A0EF37CE0459508C663F7B2D758E57F ] C:\Windows\System32\NaturalLanguage6.dll
08:37:10.0666 0x0d34  C:\Windows\System32\NaturalLanguage6.dll - ok
08:37:10.0682 0x0d34  [ F91E55DA404B834648A3B0A2477C10DB, 77B4104E7C2E2B30052FB82676456CC2DBBC2A9F797A56D52FC3510EF94C0BAD ] C:\Windows\SysWOW64\mshtml.dll
08:37:10.0682 0x0d34  C:\Windows\SysWOW64\mshtml.dll - ok
08:37:10.0682 0x0d34  [ 701D9F5F3F21580936638D5C5F86B460, 2F187684F61C72AACF8274EA29B48DAAC6C8377F791843914AABF5DAB3760980 ] C:\Windows\System32\NlsData0009.dll
08:37:10.0682 0x0d34  C:\Windows\System32\NlsData0009.dll - ok
08:37:10.0697 0x0d34  [ 148A733B93A2AC104280495DA09D3CC2, 443E46865090C610B84A82DB23DF8D1F22001FEA8B10F5619A10D25D7FEA29CC ] C:\Windows\System32\NlsLexicons0009.dll
08:37:10.0697 0x0d34  C:\Windows\System32\NlsLexicons0009.dll - ok
08:37:10.0697 0x0d34  [ 423982DD851406A52B6399DDB196C606, 5FFBA6D1E9398E7C5D18553EE1C485F59174013622332F7BD8D461F707F1EC93 ] C:\Windows\System32\wmdrmdev.dll
08:37:10.0697 0x0d34  C:\Windows\System32\wmdrmdev.dll - ok
08:37:10.0713 0x0d34  [ 9295625D5DAA4286CE36A60AFA5F2EA5, 16AAA658F7604CBB7C97E40B1F9A54A1E802A24CCFB951A7BB0439A681817C0E ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P7\P7Native.dll
08:37:10.0713 0x0d34  C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P7\P7Native.dll - ok
08:37:10.0729 0x0d34  [ 398CA10D70AFF27422ED3D9ED8713922,



#13 poppyseed

poppyseed
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:03:12 PM

Posted 25 October 2014 - 09:34 AM

TDSSkiller log part 4:

 

70ABB1BDE9BB27438D5EB8415377E04AFDF5236CA1C415A78592019A5FA8D445 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HomePanel\HomePanelBL.dll
08:37:10.0729 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HomePanel\HomePanelBL.dll - ok
08:37:10.0729 0x0d34  [ EF86A7118A3950F03B364FAC93A08E96, 239BE3E857DCCB87048D73906198167886169AD1EDD640C85E536A2D3CF30795 ] C:\Windows\System32\drmv2clt.dll
08:37:10.0729 0x0d34  C:\Windows\System32\drmv2clt.dll - ok
08:37:10.0744 0x0d34  [ 10BAAD7C629FC114DF09B734CF404414, 0A714310E42B4F402DC8CE7E7C09113D9DB1F240AF0EEAB70B6B03A8B433F1A4 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HomePanel\HomePanelUI.dll
08:37:10.0744 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HomePanel\HomePanelUI.dll - ok
08:37:10.0744 0x0d34  [ 76D86E65FF7D10292886A1F2DB93A911, D83CF27E338FEF4967CE0B1D28FE60CEF986D275781FC013531E54B328C4B9A3 ] C:\Windows\System32\ELSCore.dll
08:37:10.0744 0x0d34  C:\Windows\System32\ELSCore.dll - ok
08:37:10.0760 0x0d34  [ FA43D418BC945D27D0625B697B8442B5, 035DE0FEA440D2E3AD255EE84B388DDA538E778877033FDB54B8A61BB0AADE56 ] C:\Windows\System32\cabinet.dll
08:37:10.0760 0x0d34  C:\Windows\System32\cabinet.dll - ok
08:37:10.0775 0x0d34  [ 8EE6BDE1D572677AA35707C52C585F75, 588A08C0FC3881186CD673F749E46A154F58BE39CA7AE8A2E1F25539B2299752 ] C:\Windows\SysWOW64\mlang.dll
08:37:10.0775 0x0d34  C:\Windows\SysWOW64\mlang.dll - ok
08:37:10.0775 0x0d34  [ 53F36AC5B55E515C75B4BDA2E5A231BD, 959D1F3B74F98A72D362557288668593C7717761018483AFF37547440675C366 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\AppsPanel\AppsPanelBL.dll
08:37:10.0775 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\AppsPanel\AppsPanelBL.dll - ok
08:37:10.0791 0x0d34  [ 12929BDE96189F4E968AD035573424F0, 27FBB49F6ED6722A0C43E270E7678EFE9950BD913760DB33D5C10AFAB99417FC ] C:\Windows\System32\elsTrans.dll
08:37:10.0791 0x0d34  C:\Windows\System32\elsTrans.dll - ok
08:37:10.0791 0x0d34  [ 617F6EC0AC677C685479C1D0D1E76C6F, 77B22C0817558CE70EF7D3BBE04A275FFA35ED2E4AFB17DBDF353DF9932DC693 ] C:\Windows\System32\mspatcha.dll
08:37:10.0791 0x0d34  C:\Windows\System32\mspatcha.dll - ok
08:37:10.0807 0x0d34  [ D88A6C9F713536922B979F90C84A7978, 5AA5473D971077118DCD7E77621C134A2DE97B87E0AE05F9B0C93689B48F730D ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\AppsPanel\AppsPanelUI.dll
08:37:10.0807 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\AppsPanel\AppsPanelUI.dll - ok
08:37:10.0807 0x0d34  [ AEE087CF7423BA44CC2DE03CC565E399, 8C1C59D438C0C28E1B7B078C3EA030F6C4A7CBC3B1306D673B0A2EA0AAB2B953 ] C:\Windows\System32\elslad.dll
08:37:10.0807 0x0d34  C:\Windows\System32\elslad.dll - ok
08:37:10.0822 0x0d34  [ 164647BBD819458CE5AA8A8C097B83AC, DF3CA7ECE8045B3DEAF963AE9F99170927AB28EC823517DB652AE2CF81B6EA02 ] C:\Windows\System32\NlsData0007.dll
08:37:10.0822 0x0d34  C:\Windows\System32\NlsData0007.dll - ok
08:37:10.0822 0x0d34  [ 37A2FBCBD0AF846BEF609CBEB61EEA68, FD686224D7B85F8908487FD5D5318F06B1AA6828B3940EE9F8AFB219AAB280E9 ] C:\Windows\System32\NlsLexicons0007.dll
08:37:10.0822 0x0d34  C:\Windows\System32\NlsLexicons0007.dll - ok
08:37:10.0838 0x0d34  [ 88BDF55B2CC9F5640B204A4F610BA0A2, 9EA89C2763237F3AFFC1C0E758514CE7273B11A03DD278C52F70D8B9C4850F6E ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\FilesPanel\FilesPanelBL.dll
08:37:10.0838 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\FilesPanel\FilesPanelBL.dll - ok
08:37:10.0838 0x0d34  [ 0DB2758CF1BAFE22E0970FDA0785B74C, 325DEABB182FCA8DCB426AD0095B3524C8F77F2A9204E703391F631B2C4A1157 ] C:\Windows\System32\wuapi.dll
08:37:10.0838 0x0d34  C:\Windows\System32\wuapi.dll - ok
08:37:10.0853 0x0d34  [ D7227BF6ECB7D33D6E1AEF4D8ACD8B2E, F337A176739397480979DCA3DD05358C03490FFF37E01793B0FD50D0CA3335BD ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\FilesPanel\FilesPanelUI.dll
08:37:10.0853 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\FilesPanel\FilesPanelUI.dll - ok
08:37:10.0853 0x0d34  [ 7EC6617005F76714C7E16605E7A8AB06, 5940168249A9C1791CBD71C8F22FC618E8932808E1478986D89A386A5DA458AC ] C:\Windows\System32\wups.dll
08:37:10.0853 0x0d34  C:\Windows\System32\wups.dll - ok
08:37:10.0869 0x0d34  [ 1CBF15FDB0310345A68972EB5C5B948F, E1EDCE6216B24037B243AC68CEEBD510646B2EFD70BC118E68303F9ED85D1973 ] C:\Windows\SysWOW64\mssprxy.dll
08:37:10.0869 0x0d34  C:\Windows\SysWOW64\mssprxy.dll - ok
08:37:10.0885 0x0d34  [ 51272A935F4F482A70F2A7D1C3A67AEE, CDA0861FFFE918B74E7C30E6A54D9A8B51665ACC24185D30273F9782407B0C8E ] C:\Windows\System32\NlsData000c.dll
08:37:10.0885 0x0d34  C:\Windows\System32\NlsData000c.dll - ok
08:37:10.0885 0x0d34  [ C2142407A2BE3462247500849B3FF8C7, A2C1C5689591871215F1F485B2BB37C5EC2943EBA44501C2486CA4F2186C9C96 ] C:\Windows\System32\NlsLexicons000c.dll
08:37:10.0885 0x0d34  C:\Windows\System32\NlsLexicons000c.dll - ok
08:37:10.0900 0x0d34  [ 2FE58BF052FA87F87D5407C055B3516F, FB6DF334538A906E3D448278A3186099032E1E5AC8769EF5F30806A075E00E7E ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\FontsPanel\FontsPanelBL.dll
08:37:10.0900 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\FontsPanel\FontsPanelBL.dll - ok
08:37:10.0916 0x0d34  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] C:\Windows\System32\drivers\asyncmac.sys
08:37:10.0916 0x0d34  C:\Windows\System32\drivers\asyncmac.sys - ok
08:37:10.0916 0x0d34  [ 2E0CAC8E1686EAB98F0BEE197B0248F2, 343B28A57E6C9EDDC830FFCDBD10296D1D7E82BF8128AD7C95654057DB2B9465 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\FontsPanel\FontsPanelUI.dll
08:37:10.0916 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\FontsPanel\FontsPanelUI.dll - ok
08:37:10.0931 0x0d34  [ 1D1EAA16D193C6A2D45981ED3914D22A, 587228942AA867FBA0D2A04F52A3431F33453B2C2735E4C45D621A4358BB9BB0 ] C:\Windows\SysWOW64\msimtf.dll
08:37:10.0931 0x0d34  C:\Windows\SysWOW64\msimtf.dll - ok
08:37:10.0931 0x0d34  [ 14800BD31701A5047AC3145BB1E698AE, 05B4E33B14B9623EE065634708D9C4CDC7226146F9614C4F374E6B097BB35A50 ] C:\Windows\SysWOW64\d2d1.dll
08:37:10.0931 0x0d34  C:\Windows\SysWOW64\d2d1.dll - ok
08:37:10.0947 0x0d34  [ FA94B13CEA419C6FF8D724859A7FB602, 8AFD1BCE1B9C937D75E8A9C60D653072AF74ED0931DA381C5617409CFED8C36F ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\BehancePanel\BehancePanelBL.dll
08:37:10.0947 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\BehancePanel\BehancePanelBL.dll - ok
08:37:10.0947 0x0d34  [ 2E7E0B4FBFFEFCCD1A0F7EDF4F4EA6D6, EF1BA433ED379AEB9489661130D511E6D0E6A787D9D265A8747D738AF1D91FF1 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\BehancePanel\BehancePanelUI.dll
08:37:10.0947 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\BehancePanel\BehancePanelUI.dll - ok
08:37:10.0963 0x0d34  [ D4F264FE23F8953D840904418220C15E, 72EAF30265A0CC88DEC0FCA7869734D8C93572457C61A2BF1BDFFB20C061DBCD ] C:\Windows\SysWOW64\dxgi.dll
08:37:10.0963 0x0d34  C:\Windows\SysWOW64\dxgi.dll - ok
08:37:10.0978 0x0d34  [ 6DE66FE7C526637E74CD066461C7C871, 7E8980A3751762180D795EAC38458303BEAF8D1F85AB5F2D10D9CE7013090CBE ] C:\Windows\SysWOW64\d3d11.dll
08:37:10.0978 0x0d34  C:\Windows\SysWOW64\d3d11.dll - ok
08:37:10.0978 0x0d34  [ 79896A78039C9A63C56197843CFBAD0B, 01F23611A8F702BCA0CDBB583B7E4EC22EFF1DE1A5B6A8A02450106F5B19EBCD ] C:\Windows\SysWOW64\d3d10warp.dll
08:37:10.0978 0x0d34  C:\Windows\SysWOW64\d3d10warp.dll - ok
08:37:10.0994 0x0d34  [ 7FA16A68EF2B1B6C3281D1D33F513CB2, FAD5EB95C044E289D8EA00E588B1A6AC8820804E22AA62F803E39AB714C294C7 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
08:37:10.0994 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe - ok
08:37:10.0994 0x0d34  [ AF058C3771AE62E0A769AEEE570488F1, B565907FFD6BB352B35E0BDDC0EB24CDA9BEBC0F62A7B70856B69E46782BC813 ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P7\adobe_oobelib.dll
08:37:10.0994 0x0d34  C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P7\adobe_oobelib.dll - ok
08:37:11.0009 0x0d34  [ 98628786B81D7695BC628F8BED6662D6, F3CA1B18EFF81FB454F54B8E721ABD36DC84ED568CA992D95BC803007F33BC30 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\acsl.dll
08:37:11.0009 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\acsl.dll - ok
08:37:11.0009 0x0d34  [ DE46F8CF0D9734CC19241E3F48B90653, 76301E54C458FA42763438AF57EA70500AD32D792817EA4976E0483341FFA792 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\gude.dll
08:37:11.0009 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\gude.dll - ok
08:37:11.0025 0x0d34  [ 3E29914113EC4B968BA5EB1F6D194A0A, C8D5572CA8D7624871188F0ACABC3AE60D4C5A4F6782D952B9038DE3BC28B39A ] C:\Windows\SysWOW64\msvcp110.dll
08:37:11.0025 0x0d34  C:\Windows\SysWOW64\msvcp110.dll - ok
08:37:11.0025 0x0d34  [ 4BA25D2CBE1587A841DCFB8C8C4A6EA6, B30160E759115E24425B9BCDF606EF6EBCE4657487525EDE7F1AC40B90FF7E49 ] C:\Windows\SysWOW64\msvcr110.dll
08:37:11.0025 0x0d34  C:\Windows\SysWOW64\msvcr110.dll - ok
08:37:11.0041 0x0d34  [ D03EB7605435FE24ADE670661A932651, F73BA8BF2D899390F92EFDAF9B5092AF5ADA45AD3DBEE4D58D558FBA09C25E86 ] C:\Windows\SysWOW64\jscript9.dll
08:37:11.0041 0x0d34  C:\Windows\SysWOW64\jscript9.dll - ok
08:37:11.0056 0x0d34  [ D0AE76E4D75B8DAC0AFCB09C0A1D7055, B1F47B7864186B8D86F716B4723A7CD6B45C35AFB1F0F4009EB7325B2E65CE6D ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\boost_threads.dll
08:37:11.0056 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\boost_threads.dll - ok
08:37:11.0056 0x0d34  [ 1C820F407BB59EE961387CF572A9F7C8, FF2A573F18F87EAEF10C393AE285D11C0A709F99D52B43B109417D195353C8F4 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\dvacore.dll
08:37:11.0056 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\dvacore.dll - ok
08:37:11.0072 0x0d34  [ 68993A3D9CA503A0CB0012820F45AC08, E581378403B29EC0B35072995C03769A2BA747371819CB825A231DA070675673 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\extensibility.dll
08:37:11.0072 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\extensibility.dll - ok
08:37:11.0072 0x0d34  [ 298FDE634538B62CEEEC266D8773B21A, E6E445282D17CEAFEAB66A5A1E0124DD50F2438205BCE5649DB998BDAED06CB7 ] C:\Windows\SysWOW64\msls31.dll
08:37:11.0072 0x0d34  C:\Windows\SysWOW64\msls31.dll - ok
08:37:11.0087 0x0d34  [ AF82D6C85DFCF53F0875417E26C68135, 5C0352A22794FB8AF05C9AF13E39548AE63D914E9F09E85D53BA4FE87E1B39EE ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\VulcanMessage5.dll
08:37:11.0087 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\VulcanMessage5.dll - ok
08:37:11.0087 0x0d34  [ 301A0D382E360A7662F833E481B49917, 33FC716E72B21BD660EB5475CE6889B0CF58EF9EE740C2EFC2D01E7D31879D96 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\plugins\ANSClient\ANSClient.dll
08:37:11.0087 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\plugins\ANSClient\ANSClient.dll - ok
08:37:11.0103 0x0d34  [ 848283C0226B6B96DDCC7DCEF1A9D3B9, 24DB143E7256C356821FC192252229474F17A6E10CE5ABD9203E19331DEDD70A ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\plugins\ExchangePlugin\ExchangePlugin.dll
08:37:11.0103 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\plugins\ExchangePlugin\ExchangePlugin.dll - ok
08:37:11.0119 0x0d34  [ 0ED24E33904110B49B8C7AE883093C16, FAC1BF7DF985ED2F584E37116B8EAF2820C1AC7A0627D72F689BE3B373D7C53F ] C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.104\chrome_child.dll
08:37:11.0119 0x0d34  C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.104\chrome_child.dll - ok
08:37:11.0119 0x0d34  [ 22A143BF33A6454714F6669A6C82D333, FBECF6C56C75E3625F0FDB8CEEA87B4E6D9090208FE6C439CB31570F28C3A86E ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\plugins\LiveType\livetype.dll
08:37:11.0119 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\plugins\LiveType\livetype.dll - ok
08:37:11.0134 0x0d34  [ C606758BC4FD68A706CA1D9977416D63, 55AB2A5E0916D33578E7E56D2D19C85283D05DA21DDC43CAAFF1744092F4EC5A ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\plugins\ExchangePlugin\ExManCoreLib\ExManCoreLibCoreSync.dll
08:37:11.0134 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\plugins\ExchangePlugin\ExManCoreLib\ExManCoreLibCoreSync.dll - ok
08:37:11.0134 0x0d34  [ D421FC33E146AB93C72222D3914F8C62, 4EC8226C392BF53869B1B074C6C51F9B57FB0ED51C0919624F218C51F3756374 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\plugins\ExchangePlugin\ExManCoreLib\adobe_caps.dll
08:37:11.0134 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\plugins\ExchangePlugin\ExManCoreLib\adobe_caps.dll - ok
08:37:11.0150 0x0d34  [ 0C14AC6E82DAAFF5057A1BB250428611, ECFBEE0DCF605E371736936EEFDBCC73E685F2179E25D53ECC4C43351352926E ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\plugins\ExchangePlugin\ExManCoreLib\ExManZxpSign.dll
08:37:11.0150 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\plugins\ExchangePlugin\ExManCoreLib\ExManZxpSign.dll - ok
08:37:11.0150 0x0d34  [ 4D7B65ACE296558EF42DE9615A394BC9, 4B757E55E8E3D78E5A59B0C7E31D445152CD78D8AA9F08CB4235D5AB9F689B19 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\plugins\ExchangePlugin\ExManCoreLib\ssleay32.dll
08:37:11.0150 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\plugins\ExchangePlugin\ExManCoreLib\ssleay32.dll - ok
08:37:11.0165 0x0d34  [ D443535A0C6EAFF4314A58CB0BAC4C26, FE794F541C783D0E95D8660C941A3ACBAAC1E93C8099EDBF9E9681F58AA55E78 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\plugins\ExchangePlugin\ExManCoreLib\libeay32.dll
08:37:11.0165 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\plugins\ExchangePlugin\ExManCoreLib\libeay32.dll - ok
08:37:11.0181 0x0d34  [ 521202AA6F2B74FCCC6BC7E162109D71, 3B2F41EFDA68C82D9D50AF329AC9B403C806CBE74F87917CDB350E542ADDA017 ] C:\Windows\System32\wbem\unsecapp.exe
08:37:11.0181 0x0d34  C:\Windows\System32\wbem\unsecapp.exe - ok
08:37:11.0181 0x0d34  [ 1542A92D5C6F7E1E80613F3466C9CE7F, E78B14513C47C1339D96065237E9D270F33D595D5A92F2B5C8F4F841E2A4AD5C ] C:\Windows\SysWOW64\icacls.exe
08:37:11.0181 0x0d34  C:\Windows\SysWOW64\icacls.exe - ok
08:37:11.0197 0x0d34  [ 6263C18077EC0671FCC39E9F404A96DC, 14270D7369F28FA74C65365B3818B57B3695208D0052D1DEA5D8135122B07B7B ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P7\axlibv7.dll
08:37:11.0197 0x0d34  C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P7\axlibv7.dll - ok
08:37:11.0197 0x0d34  [ 81252AA3B13743020BCF2089A5A0D911, BFFB1A5917EC1EDAF6B58EAFD888575299365D09C734FACF5A7D1843680DDFD8 ] C:\Windows\System32\wscinterop.dll
08:37:11.0197 0x0d34  C:\Windows\System32\wscinterop.dll - ok
08:37:11.0212 0x0d34  [ E76F105AD039B9E4DA9ECE839298C4A2, 76C7056F23E90524CE4947FDE560C6D825186520DA5E9965A2116C24011AB762 ] C:\Windows\System32\wups2.dll
08:37:11.0212 0x0d34  C:\Windows\System32\wups2.dll - ok
08:37:11.0212 0x0d34  [ 218A400108F280428FA22282D3268BBC, 7712687ABAEF6616E90AE5A321044C102E79EC23F4A1EAFB4278C93724873CB3 ] C:\Windows\System32\wscapi.dll
08:37:11.0212 0x0d34  C:\Windows\System32\wscapi.dll - ok
08:37:11.0228 0x0d34  [ DF50DAE4C547285E4997A0C61063B632, 24F1B66CD2C5188609F936E7F4947E29EB120C59731E7028285CE6791F31B580 ] C:\Windows\System32\wscui.cpl
08:37:11.0228 0x0d34  C:\Windows\System32\wscui.cpl - ok
08:37:11.0243 0x0d34  [ F9959237F106F2B2609E61A290C0652E, FCCC12E5AAE1773BF87B1C4BCE71D017DB1A5A7AC189559058EA1ECC72075A82 ] C:\Windows\System32\werconcpl.dll
08:37:11.0243 0x0d34  C:\Windows\System32\werconcpl.dll - ok
08:37:11.0243 0x0d34  [ 19779242217D7403577C34AFD95C8626, B7A0E0CD8749BDD22184E23029133E4AAAEBE91C0B1D43310184995F1E097C85 ] C:\Windows\SysWOW64\dispex.dll
08:37:11.0243 0x0d34  C:\Windows\SysWOW64\dispex.dll - ok
08:37:11.0259 0x0d34  [ C2BA62EE92527A3CE2F2FE0892319C9D, 8866DE84316AB1D6F72A83026B31892DED6D8CE3C4F6711F50CC367B21714BF9 ] C:\Program Files (x86)\Internet Explorer\ieproxy.dll
08:37:11.0259 0x0d34  C:\Program Files (x86)\Internet Explorer\ieproxy.dll - ok
08:37:11.0259 0x0d34  [ 07AD88DF9EF73215458867EFC1BFFE9E, 8C659B6F31111C09448B68889623886658C96467E7E5C95C1714E18AD3924463 ] C:\Windows\System32\wbem\wmiprov.dll
08:37:11.0259 0x0d34  C:\Windows\System32\wbem\wmiprov.dll - ok
08:37:11.0275 0x0d34  [ B79515AFF098E5A56DFBD316152534DE, D796DCC8E363744FBC75426B0B64F083A3C82B984F76216796E2B2D55325DA15 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL
08:37:11.0275 0x0d34  C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL - ok
08:37:11.0275 0x0d34  [ 7F8678C59F188528D60104E697C2361E, 9B4D262B10CB09543ACA9A78482F4EDD905791D2C8C518B574EBA440A71A85B7 ] C:\Windows\SysWOW64\mscms.dll
08:37:11.0275 0x0d34  C:\Windows\SysWOW64\mscms.dll - ok
08:37:11.0290 0x0d34  [ 5BF8E37FA1E25227480F9CD2ACA21FB6, 58D9A00888AF693B2A5222FE74CFDED32CE83E74F85B474F1CBE5987217B5A9D ] C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.104\d3dcompiler_46.dll
08:37:11.0290 0x0d34  C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.104\d3dcompiler_46.dll - ok
08:37:11.0290 0x0d34  [ 9873AEFDF96E5E7CD8F11722DC3A2557, 52F52ECB05E10478C7D836A1325F0C36AE1779F8FFD58F1DAA25F3808D738FC0 ] C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.104\libglesv2.dll
08:37:11.0290 0x0d34  C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.104\libglesv2.dll - ok
08:37:11.0306 0x0d34  [ E39C48B65200C28FE0F7CB700732F332, A5A63CA3E728AF820FBDBE44DFB830B15123106B626ED80B539F5C34B6E5AB9C ] C:\Program Files (x86)\Microsoft\BingDesktop\BDSurrogateHost.exe
08:37:11.0306 0x0d34  C:\Program Files (x86)\Microsoft\BingDesktop\BDSurrogateHost.exe - ok
08:37:11.0321 0x0d34  [ 96F620B4D6C245B4401624C248AA4A17, BF989BF9D31301753521A9BAF2D426256949C07AAB7F28384EB968317AF500BA ] C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.104\libegl.dll
08:37:11.0321 0x0d34  C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.104\libegl.dll - ok
08:37:11.0321 0x0d34  [ DEC1426BF15A07E4B26DC7F479EDAA60, DFF130EABDE57DD362772FA67280C75958E8FCB8241553D7599CBB4C3F6E9FE6 ] C:\Program Files (x86)\Common Files\System\ado\msado15.dll
08:37:11.0321 0x0d34  C:\Program Files (x86)\Common Files\System\ado\msado15.dll - ok
08:37:11.0337 0x0d34  [ 27C5DE707FED58D11D887B4830E7B8F1, 9CCEC8E458AC394DCCBD5C330C9CC899789BD3B390F32042A623C0A18FC16CBC ] C:\Users\User\AppData\Local\Microsoft\BingDesktop\en-US\Apps\Wallpaper_5386c77076d04cf9a8b5d619b4cba48e\1.4.82\wallpaper.dll
08:37:11.0337 0x0d34  C:\Users\User\AppData\Local\Microsoft\BingDesktop\en-US\Apps\Wallpaper_5386c77076d04cf9a8b5d619b4cba48e\1.4.82\wallpaper.dll - ok
08:37:11.0337 0x0d34  [ A99C4D1B5E7E794EC5779CF14F431932, A1D43FDD572D026A4E6C6C50DAB39D4446F8F0D54004F077CD566B466E9BBD36 ] C:\Windows\SysWOW64\msdart.dll
08:37:11.0337 0x0d34  C:\Windows\SysWOW64\msdart.dll - ok
08:37:11.0353 0x0d34  [ 809AE7D4ACE06BBCF621E5C504BF6FC8, 0BAAB89FB57468F27446947D75CBD6DDFC92D9B8F040144A12656803B2F7BF65 ] C:\Windows\System32\hcproviders.dll
08:37:11.0353 0x0d34  C:\Windows\System32\hcproviders.dll - ok
08:37:11.0353 0x0d34  [ 930AB4A84ECD75B38EF76FB8D6234C53, C72B99C0BC9810A45BCACC9FC0B43C10136F7B0E381458ADD417112D2DAA4846 ] C:\Windows\SysWOW64\en-US\ICacls.exe.mui
08:37:11.0353 0x0d34  C:\Windows\SysWOW64\en-US\ICacls.exe.mui - ok
08:37:11.0368 0x0d34  [ 012787CEB35505EB78DF82E0A0072888, FE082EF9F8462589F8C8BEEFB1D10AB06E1E3D6F4494CABF34097328C109C03E ] C:\Windows\System32\browcli.dll
08:37:11.0368 0x0d34  C:\Windows\System32\browcli.dll - ok
08:37:11.0368 0x0d34  [ C4BFE4B61086416B0529212F92BCE081, A5EE6FB81229885C7A4A4EF0A9C3E9EE9E7F85C1EDE9BEEE236EB0503093D8F3 ] C:\Windows\System32\schedcli.dll
08:37:11.0368 0x0d34  C:\Windows\System32\schedcli.dll - ok
08:37:11.0384 0x0d34  [ 0907A2F264421EA45BD539F9988282AB, E0F8E0EC6B003CBF894EF80AB07D6B2FB17584B9138D486A1A263BE9CF4A17BE ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P7\adobe_upgrade.dll
08:37:11.0384 0x0d34  C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P7\adobe_upgrade.dll - ok
08:37:11.0384 0x0d34  [ 5F1F2C9005619922CD79A2804A525098, 364F8DAC83A923140BE675CADF6269C42B133554FA315018B53CF6E2FE18ED7D ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P7\IMSLib.dll
08:37:11.0384 0x0d34  C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\P7\IMSLib.dll - ok
08:37:11.0399 0x0d34  [ FE3174608E5B89B09B120EA0D203BE77, F34BA7584544A5D61083DEF801C2C826B3B8EE9EDFE9F3E30A4E10533C5310E8 ] C:\Program Files (x86)\Steam\SteamUI.dll
08:37:11.0399 0x0d34  C:\Program Files (x86)\Steam\SteamUI.dll - ok
08:37:11.0415 0x0d34  [ 7B34385C5D94E7FDFF0CFF9EF26EEE08, 590E0EC79934DD0727ECDF8434FC03B21553676176290E490555609C36472624 ] C:\Program Files (x86)\Steam\libavcodec-56.dll
08:37:11.0415 0x0d34  C:\Program Files (x86)\Steam\libavcodec-56.dll - ok
08:37:11.0415 0x0d34  [ F12073A35D9E5D74686E8EF913FD1679, 8534D1B9EDFB2A2BABE991AC5E0CECFA5338010B56A94F9DC0076080D4EB6B9D ] C:\Program Files (x86)\Steam\libavutil-54.dll
08:37:11.0415 0x0d34  C:\Program Files (x86)\Steam\libavutil-54.dll - ok
08:37:11.0431 0x0d34  [ E08A38A6DA7CEDCD00447CF858C69DBF, D807819E80291402577D78AB95398FB8A626A71B24AA593707AC69D8D47044E6 ] C:\Program Files (x86)\Steam\libavresample-2.dll
08:37:11.0431 0x0d34  C:\Program Files (x86)\Steam\libavresample-2.dll - ok
08:37:11.0431 0x0d34  [ 54C2A4267343D32777E4ACF9E2769BD6, 683FE5408B38FEA673683CA88E48554568F2F6F4D933E6AA3FAB61F5585ECFD1 ] C:\Program Files (x86)\Steam\SDL2.dll
08:37:11.0431 0x0d34  C:\Program Files (x86)\Steam\SDL2.dll - ok
08:37:11.0446 0x0d34  [ AA61E4E73E812D6411F375989E4501CE, 3C094C2443FAC8F88DD0DF2B27217F2C5B967F41238B0FB57CA6AA5C906AD0E6 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
08:37:11.0446 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe - ok
08:37:11.0446 0x0d34  [ 1D217A52C82CD3F8CBE3B7DDC6C460B3, 8772F4C14B21321276CF248028BC2E586E3BC2241ED22609E329F08FB2B74333 ] C:\Program Files (x86)\Steam\video.dll
08:37:11.0446 0x0d34  C:\Program Files (x86)\Steam\video.dll - ok
08:37:11.0462 0x0d34  [ 74C584CC27FA2ED5A223118D59CBC1B9, 825FB0EEE695A50C6ED0923ED28D37B07A6134243F2501546992CEC2E57C9DDA ] C:\Program Files (x86)\Steam\libavformat-56.dll
08:37:11.0462 0x0d34  C:\Program Files (x86)\Steam\libavformat-56.dll - ok
08:37:11.0477 0x0d34  [ C71EAF6C8F6AD15C530E386F56F57182, 586C42512C40871651DCA1B97DC927D189D9703A8933760AC65AC8CB23DC42DD ] C:\Program Files (x86)\Steam\libswscale-3.dll
08:37:11.0477 0x0d34  C:\Program Files (x86)\Steam\libswscale-3.dll - ok
08:37:11.0477 0x0d34  [ 3D57FFBAD3ED16B63DE3879BAB0FB56F, 6BEAF5AFC98961190B004E8DE57CD5F9F39117287AE18D59DDB2EC5C0A0C6622 ] C:\Windows\SysWOW64\networkexplorer.dll
08:37:11.0477 0x0d34  C:\Windows\SysWOW64\networkexplorer.dll - ok
08:37:11.0493 0x0d34  [ F37166AD8DE9F863809B0A53C94BACAA, B5C742DED3B70943468E095B5D462295082E0B8D95639F6A8135B788B1383FF4 ] C:\Program Files (x86)\Steam\bin\filesystem_stdio.dll
08:37:11.0493 0x0d34  C:\Program Files (x86)\Steam\bin\filesystem_stdio.dll - ok
08:37:11.0493 0x0d34  [ 1A50C71110642A40C3A7D3822E78ACD1, CE1CB4E63BE0A704424D5CF765F1B943F5E24796368E5BA0C0D8D515BDB798B2 ] C:\Program Files (x86)\Steam\bin\vgui2_s.dll
08:37:11.0493 0x0d34  C:\Program Files (x86)\Steam\bin\vgui2_s.dll - ok
08:37:11.0509 0x0d34  [ D1BBE227367ED791D5FCF08E132D2956, 34349B7FB46BB89D59CC9CC6CD3F790870AB96642254C0374D97AFAC6121B945 ] C:\Windows\SysWOW64\opengl32.dll
08:37:11.0509 0x0d34  C:\Windows\SysWOW64\opengl32.dll - ok
08:37:11.0509 0x0d34  [ DE3897365B04C4DA1CF8FF725577C082, 44703E2D6C7219714C929D8ED096C8E044A3EDCA73198870A5CC4EF5CE16C397 ] C:\Windows\SysWOW64\glu32.dll
08:37:11.0509 0x0d34  C:\Windows\SysWOW64\glu32.dll - ok
08:37:11.0524 0x0d34  [ 5331DC9D1C88840326F68C2C531A82A7, 130CA10426AA33F8FC20E575C970CCFD887578E392DB52B3A7444644D9AC79ED ] C:\Users\User\AppData\Local\Logitech® Webcam Software\Logishrd\LU2.0\LULnchr.exe
08:37:11.0524 0x0d34  C:\Users\User\AppData\Local\Logitech® Webcam Software\Logishrd\LU2.0\LULnchr.exe - ok
08:37:11.0524 0x0d34  [ 71B7D1C8841AE3436060EB4FAE83F1A3, CF0D9A24707B1A2D759908F0ECE67A9FDD25A463C46F56297212FE01BAB52E48 ] C:\Program Files (x86)\Steam\bin\chromehtml.dll
08:37:11.0524 0x0d34  C:\Program Files (x86)\Steam\bin\chromehtml.dll - ok
08:37:11.0540 0x0d34  [ 65EBB6629060BD6B08BC4B5B013445A7, C2BF311261ED0237A052DE42483D5D44D10C6B9A15B5887BC73022D7A593A74A ] C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
08:37:11.0540 0x0d34  C:\Program Files (x86)\Steam\bin\steamwebhelper.exe - ok
08:37:11.0555 0x0d34  [ EF112BB383441FC7572F5BFCCAD54282, 0812901889BBA63CDCEDDA3E7E1308A0E286E3F577FE48557501FB8DBC45A37F ] C:\Program Files (x86)\Steam\bin\libcef.dll
08:37:11.0555 0x0d34  C:\Program Files (x86)\Steam\bin\libcef.dll - ok
08:37:11.0555 0x0d34  [ D6692338B985D4A0CA52B828314D897D, CB0B7C84C1E2782A95489E2F4D2AF4CFDAC02676B76F49FF7D6A7091739EA25D ] C:\Windows\SysWOW64\drprov.dll
08:37:11.0555 0x0d34  C:\Windows\SysWOW64\drprov.dll - ok
08:37:11.0571 0x0d34  [ D7B7159BC8374E87D8C45A30377A3440, 0B68B6E7C35280D502BF05177ADADE2EE35D4D5307C3D1EE2635879BA06D904D ] C:\Windows\SysWOW64\ntlanman.dll
08:37:11.0571 0x0d34  C:\Windows\SysWOW64\ntlanman.dll - ok
08:37:11.0571 0x0d34  [ 96C70BD48D49B87475F4572DEDC62EB9, DA841CEBDFF2C5821D4D3396BD9299940A4A2927C161554B66AB8F58CBF04467 ] C:\Windows\AppPatch\AcLayers.dll
08:37:11.0571 0x0d34  C:\Windows\AppPatch\AcLayers.dll - ok
08:37:11.0587 0x0d34  [ EAF4712B706936C0B10D3B5319B37E81, 1A356A3AB52DC8A13F41D2B7F26B6B0E23663D7C9DD6DF6E464EF29460EF2602 ] C:\Windows\SysWOW64\davclnt.dll
08:37:11.0587 0x0d34  C:\Windows\SysWOW64\davclnt.dll - ok
08:37:11.0587 0x0d34  [ 179BECE8D1A4C488DDB7191FF9BE3FB0, F91ABCB67A2AFD471A9B94AA2B9C46AAEF606266DC2276E81A6D0832566162A5 ] C:\Windows\SysWOW64\davhlpr.dll
08:37:11.0587 0x0d34  C:\Windows\SysWOW64\davhlpr.dll - ok
08:37:11.0602 0x0d34  [ 6581B52E133CC6D00661C58968C7E212, 2376CE4A4EC96CD71CE177E19C90AEA1D93F790124DF78F4AC5EAE8FE562F36B ] C:\Windows\SysWOW64\SearchFolder.dll
08:37:11.0602 0x0d34  C:\Windows\SysWOW64\SearchFolder.dll - ok
08:37:11.0602 0x0d34  [ 6B3261562CF19DBBE39F8F49658C02A9, 2FE9F60DC97BFD7F6D0D27A211C8899455CDF0409EE7B6B149E69363CB851F2F ] C:\Program Files (x86)\Steam\steamclient.dll
08:37:11.0602 0x0d34  C:\Program Files (x86)\Steam\steamclient.dll - ok
08:37:11.0618 0x0d34  [ 9C7161CDF282B770E79174B0B1D66829, 4CF311FECEBD76D2D92647906A22E1D2A7243F67DB519C2E3D573E36B07C12F2 ] C:\Program Files (x86)\CyberLink\YouCam\subsys\YouCam\CLWVDAdapter.dll
08:37:11.0618 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\subsys\YouCam\CLWVDAdapter.dll - ok
08:37:11.0633 0x0d34  [ 005247E3057BC5D5C3F8C6F886FFC10C, FCB27F89EC36856A4A225744CE5EE3A30CBC8A447868B165D95E8AB2C17F5671 ] C:\Windows\System32\wbem\WMIADAP.exe
08:37:11.0633 0x0d34  C:\Windows\System32\wbem\WMIADAP.exe - ok
08:37:11.0633 0x0d34  [ 9FE3ED67345F0FF829A4A53B90E09672, F70CD131DCF101B26CD55A57876DB3765B3E15C9D3A8B508FF041C91226EC504 ] C:\Windows\System32\loadperf.dll
08:37:11.0633 0x0d34  C:\Windows\System32\loadperf.dll - ok
08:37:11.0649 0x0d34  [ 64EA845F52C31E50D112093E063C36F1, 1BCE1BB12491B80006F7768D714EEA6B3EECCA9A864A8A1EB05312A063071E78 ] C:\Windows\SysWOW64\en-US\shdocvw.dll.mui
08:37:11.0649 0x0d34  C:\Windows\SysWOW64\en-US\shdocvw.dll.mui - ok
08:37:11.0649 0x0d34  [ C2B7A2172F456A0FBD24434E14C0E209, 3E59EE4AD35392A6E010A997265E7F4759BDA4D0F6724DE43EA76294433888E9 ] C:\Program Files (x86)\CyberLink\YouCam\subsys\YouCam\CLRGL.ax
08:37:11.0649 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\subsys\YouCam\CLRGL.ax - ok
08:37:11.0665 0x0d34  [ 235D42833F2F89083FA70B9787899846, CF271DBF5698707D4618BFAA50E7B416558BF794B3DC733212E4D0E48BD703DC ] C:\Users\User\AppData\Local\Logitech® Webcam Software\Logishrd\LU2.0\LogitechUpdate.exe
08:37:11.0665 0x0d34  C:\Users\User\AppData\Local\Logitech® Webcam Software\Logishrd\LU2.0\LogitechUpdate.exe - ok
08:37:11.0665 0x0d34  [ AFE32AFD30464FC59CB8E88DC72F66FA, 24644F8AA47E61B98EF867BE18A9BE383822D64F3AADF2ED35E42FBFBA7B340F ] C:\Program Files (x86)\Common Files\Steam\SteamService.exe
08:37:11.0665 0x0d34  C:\Program Files (x86)\Common Files\Steam\SteamService.exe - ok
08:37:11.0680 0x0d34  [ EE5138EE6B5D8D166163B95EF0EBDDF3, B0C4A1040AB0DD04209E05693176F2E8F0520FE96DACE980BE60D3C8B01D39FD ] C:\Program Files (x86)\CyberLink\YouCam\subsys\YouCam\CLCSIWriter.ax
08:37:11.0680 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\subsys\YouCam\CLCSIWriter.ax - ok
08:37:11.0696 0x0d34  [ 04CB7C8FDC6D9640DD82A527208F72C4, 0F8A327B0234A29EAB1F03D9102A3DF7DB4515BF580163198C5A8C174C98DE4F ] C:\Windows\System32\UIAnimation.dll
08:37:11.0696 0x0d34  C:\Windows\System32\UIAnimation.dll - ok
08:37:11.0711 0x0d34  [ 523CF74A52C9A1762DA8B83AEE734498, 5A739182B916738B611E1BBA9098F8BCC8C4E2CC2CFEFD1BC5CE7941D11CEDFD ] C:\Windows\SysWOW64\IconCodecService.dll
08:37:11.0711 0x0d34  C:\Windows\SysWOW64\IconCodecService.dll - ok
08:37:11.0711 0x0d34  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] C:\Windows\System32\drivers\mspqm.sys
08:37:11.0711 0x0d34  C:\Windows\System32\drivers\mspqm.sys - ok
08:37:11.0727 0x0d34  [ EE1320789A5B398C8BC2A6216953F625, E1FBB911CB000193FC55E57189945141E4D50D158A0FC8B9F1B8304F07BF0B9C ] C:\Windows\SysWOW64\WMSPDMOE.DLL
08:37:11.0727 0x0d34  C:\Windows\SysWOW64\WMSPDMOE.DLL - ok
08:37:11.0727 0x0d34  [ 8C147D67D4E75882DA88206DF098229A, E42B67E30C3B616EF9070BC426A119B8AF229E672435D57B51435837E0D3639F ] C:\Windows\SysWOW64\mfplat.dll
08:37:11.0727 0x0d34  C:\Windows\SysWOW64\mfplat.dll - ok
08:37:11.0743 0x0d34  [ 436B7C33425D6445FDC733083C823458, C0EC5145CCD44AE986D81F3910268013068E36BF99C4AABFFCDB9E26C8899D4C ] C:\Windows\SysWOW64\WMADMOE.DLL
08:37:11.0743 0x0d34  C:\Windows\SysWOW64\WMADMOE.DLL - ok
08:37:11.0758 0x0d34  [ C2A12B061F591E093E3FD99D75811398, 015EEC31E429735E83556A6A727A7D7C42534B0F7E0BCE01DC21AF76B48F726E ] C:\Windows\SysWOW64\imaadp32.acm
08:37:11.0758 0x0d34  C:\Windows\SysWOW64\imaadp32.acm - ok
08:37:11.0758 0x0d34  [ CE7803953FE7314061B3F9188D310EB2, 75078CCE3A7277B5B60E806FA000FC437C4B06E2AD80EAB5BC99C8960810F295 ] C:\Windows\SysWOW64\en-US\KernelBase.dll.mui
08:37:11.0758 0x0d34  C:\Windows\SysWOW64\en-US\KernelBase.dll.mui - ok
08:37:11.0774 0x0d34  [ BF3D6F7D929E018703BE2D4556DD679A, 577DF98717786E33468A1AD3D7E413ACD08720A449832499B7DB6253B68462FF ] C:\Windows\SysWOW64\msg711.acm
08:37:11.0774 0x0d34  C:\Windows\SysWOW64\msg711.acm - ok
08:37:11.0774 0x0d34  [ AE796D3FD1C69CE62BB6AFACDFB950AA, 83731776EE080CB5C3DB3121C508F0BCB123D8D40ABE29C648F2C9964312A62C ] C:\Windows\SysWOW64\msgsm32.acm
08:37:11.0774 0x0d34  C:\Windows\SysWOW64\msgsm32.acm - ok
08:37:11.0789 0x0d34  [ 4715F8F8CDBFFF2728BA38B789A1D7C7, 70E6F51636CFF04FCB5AD95968AC4771BEFE2D205DB7E34681F02DBE24C9CF39 ] C:\Windows\System32\wpdshext.dll
08:37:11.0789 0x0d34  C:\Windows\System32\wpdshext.dll - ok
08:37:11.0789 0x0d34  [ 8EE566982477BC5886FE622CEBEE9C86, 19D6100EDA7C3F250610062B0D87246469FE10A48AF5E34A541787A6773BE278 ] C:\Windows\SysWOW64\msadp32.acm
08:37:11.0789 0x0d34  C:\Windows\SysWOW64\msadp32.acm - ok
08:37:11.0805 0x0d34  [ 1C7F1C3EA5894995E6C563E9AE9F029F, 992F3206D4AAD0E22EC361C1DADF8A771CA5F2E6F0B999B43F56ECE8C412D414 ] C:\Windows\SysWOW64\l3codeca.acm
08:37:11.0805 0x0d34  C:\Windows\SysWOW64\l3codeca.acm - ok
08:37:11.0805 0x0d34  [ FB7EC1437DD9B869C9C9844CF7B8EDE6, D904496E42D7005201171AF8047348A95555FEB9EDA8FEDDB4327B504E56511F ] C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.104\ffmpegsumo.dll
08:37:11.0805 0x0d34  C:\Program Files (x86)\Google\Chrome\Application\38.0.2125.104\ffmpegsumo.dll - ok
08:37:11.0821 0x0d34  [ 106237BC218D53A0FCEBD2AC7ADD5721, FA6C6369480E674B24C02B3E6005E26DF65AD6623CED40C155528E173EF472A8 ] C:\Windows\SysWOW64\WMVSENCD.DLL
08:37:11.0821 0x0d34  C:\Windows\SysWOW64\WMVSENCD.DLL - ok
08:37:11.0836 0x0d34  [ 50E32B49ED0AAC7403550B63DAC2DB68, CA76705400A347676845E1086BA4B3993D12A4EFC9DF82A70F00F234330074E8 ] C:\Windows\SysWOW64\WMVXENCD.DLL
08:37:11.0836 0x0d34  C:\Windows\SysWOW64\WMVXENCD.DLL - ok
08:37:11.0836 0x0d34  [ 3BFAA4560430DC2B1B86E7EAD4A63F91, B403428AA2A0258CAEE5AA77EA9E24E9F07B7C1717A89C501F6B7F9DB7C3D6AE ] C:\Windows\SysWOW64\en-US\setupapi.dll.mui
08:37:11.0836 0x0d34  C:\Windows\SysWOW64\en-US\setupapi.dll.mui - ok
08:37:11.0852 0x0d34  [ E19AF92D61DC3E377F9DF9BF72C7A128, 4CE0E20231FA0F4FFC222721FB4A396B8FCE09920BEC36394B2B74F4092E6A29 ] C:\Windows\SysWOW64\WMVENCOD.DLL
08:37:11.0852 0x0d34  C:\Windows\SysWOW64\WMVENCOD.DLL - ok
08:37:11.0852 0x0d34  [ 33E00913297328DE59A1CD6BF90D2084, 666EB5963DF9EDB3EE5C0B97FB0466631BA45F7F5AF9544AA5256265E1F06B06 ] C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpbhljkhbideandpbhpinhedfgdhkpdc\5.0.110.94_0\NP_2020Player_WEB.dll
08:37:11.0852 0x0d34  C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpbhljkhbideandpbhpinhedfgdhkpdc\5.0.110.94_0\NP_2020Player_WEB.dll - ok
08:37:11.0867 0x0d34  [ 6B63EA7979F501C37FC55A26CA162ACD, A2118847A624B2AEB133131EC1D28541221F779879FBAAE934D1198609221809 ] C:\Windows\SysWOW64\en-US\user32.dll.mui
08:37:11.0867 0x0d34  C:\Windows\SysWOW64\en-US\user32.dll.mui - ok
08:37:11.0867 0x0d34  [ 0B9C648D986392AB00207C83A2D73B76, E5CFA147FF38810687A934A9678A68B4629F0C3B6ACE2570E9DA22E14126E9F0 ] C:\Windows\SysWOW64\en-US\wship6.dll.mui
08:37:11.0867 0x0d34  C:\Windows\SysWOW64\en-US\wship6.dll.mui - ok
08:37:11.0883 0x0d34  [ 1190265777966A5B05F30F8D1BF1E1C1, AFA6292F223949EED524A4D6FEDBB2A424329590B18D37911BDD713A53491A13 ] C:\Windows\SysWOW64\en-US\wshtcpip.dll.mui
08:37:11.0883 0x0d34  C:\Windows\SysWOW64\en-US\wshtcpip.dll.mui - ok
08:37:11.0883 0x0d34  [ D06E87B25763640FF458469AB7FCC024, F8A751CE8B9F1EAB61BB14F34D34EB8B228702410A15A10D9D7EB1B73FF94AF6 ] C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpbhljkhbideandpbhpinhedfgdhkpdc\5.0.110.94_0\tbb.dll
08:37:11.0883 0x0d34  C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpbhljkhbideandpbhpinhedfgdhkpdc\5.0.110.94_0\tbb.dll - ok
08:37:11.0899 0x0d34  [ EC05D1B87CC762807F3FCD5699EB103C, BE0CC29CE12C580DDAAA74B506C2B330BA3FA67DFA9CE6E99440DE773357B82C ] C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpbhljkhbideandpbhpinhedfgdhkpdc\5.0.110.94_0\tbbmalloc.dll
08:37:11.0899 0x0d34  C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cpbhljkhbideandpbhpinhedfgdhkpdc\5.0.110.94_0\tbbmalloc.dll - ok
08:37:11.0914 0x0d34  [ 64C4ADE063A9C93D3BAE09922AD90C27, F1F18B74BD2904EEC9983F85F48888AC7E1C851D6776B9BB14C51D0A9296FDD2 ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll
08:37:11.0914 0x0d34  C:\Program Files (x86)\Adobe\Reader 11.0\Reader\Browser\nppdf32.dll - ok
08:37:11.0914 0x0d34  [ 924366CBEDB044930207A40A5404FF7E, 7FA0A83807ED212FEB18C14B0AFF5FFE307F42F0AF5DCFE0E8B926F3BC6384E7 ] C:\Program Files (x86)\Google\Chrome\Application\plugins\npMozCouponPrinter.dll
08:37:11.0914 0x0d34  C:\Program Files (x86)\Google\Chrome\Application\plugins\npMozCouponPrinter.dll - ok
08:37:11.0930 0x0d34  [ 2C52BB8C805A67D852E50C5D03022305, 9AE884908B0F02395DFC23C41786EE4B207DD9FF66F8860C4033E5884053ABE0 ] C:\Program Files (x86)\Mozilla Firefox\plugins\npCouponPrinter.dll
08:37:11.0930 0x0d34  C:\Program Files (x86)\Mozilla Firefox\plugins\npCouponPrinter.dll - ok
08:37:11.0945 0x0d34  [ 924366CBEDB044930207A40A5404FF7E, 7FA0A83807ED212FEB18C14B0AFF5FFE307F42F0AF5DCFE0E8B926F3BC6384E7 ] C:\Program Files (x86)\Mozilla Firefox\plugins\npMozCouponPrinter.dll
08:37:11.0945 0x0d34  C:\Program Files (x86)\Mozilla Firefox\plugins\npMozCouponPrinter.dll - ok
08:37:11.0945 0x0d34  [ 421CB2C1010522B3BF7C00725520B844, D8E23D55780556CA383E753928730F37AA3F03C7A081C6D135C75283B17A4A3C ] C:\Program Files (x86)\Mozilla Firefox\plugins\nppdf32.dll
08:37:11.0945 0x0d34  C:\Program Files (x86)\Mozilla Firefox\plugins\nppdf32.dll - ok
08:37:11.0961 0x0d34  [ 6C859C6FCE6D694EAFD7EA3AE66D54DB, 72DEBABCBAA1E52FE33B8739F475509CD513C8053937B8860E7B44FD76E0FA61 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin.dll
08:37:11.0961 0x0d34  C:\Program Files (x86)\QuickTime\Plugins\npqtplugin.dll - ok
08:37:11.0977 0x0d34  [ 8E324717EDBF12F7E005D26DF26A0F96, 3131B42E7BDADD5DC3742C37A602E0F6C03A1CDB58C040B3C5FC389D98F24DA9 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin2.dll
08:37:11.0977 0x0d34  C:\Program Files (x86)\QuickTime\Plugins\npqtplugin2.dll - ok
08:37:11.0977 0x0d34  [ ED5D191844D295959F82EB8C27546AC8, 0AB1C1F61CB066D020ED8CEBB055475BADD872536A49DED258F093CA528FBCF0 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin3.dll
08:37:11.0977 0x0d34  C:\Program Files (x86)\QuickTime\Plugins\npqtplugin3.dll - ok
08:37:11.0992 0x0d34  [ 6C79088343E7D1A6E9239CDD21A94EEA, CA1ADF2ED6FDF460995FFF0E4617D948715EAFBAFFC7DF00A39FEFA3329C3D3A ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin4.dll
08:37:11.0992 0x0d34  C:\Program Files (x86)\QuickTime\Plugins\npqtplugin4.dll - ok
08:37:11.0992 0x0d34  [ E2B1CAEE5DDA3A60DB4212BB12AFE1E3, 86C9B4129BA5A0550DDC5A7978617E03AD21544D873531C5FD2438A0FBBBEC3D ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin5.dll
08:37:11.0992 0x0d34  C:\Program Files (x86)\QuickTime\Plugins\npqtplugin5.dll - ok
08:37:12.0008 0x0d34  [ A517760D4AD38550BC1DFD6B96F1B59C, 312DB19503804AD12E834748E1D8F459EFF632410859256A39C47550B6EAD25E ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin6.dll
08:37:12.0008 0x0d34  C:\Program Files (x86)\QuickTime\Plugins\npqtplugin6.dll - ok
08:37:12.0008 0x0d34  [ C0F8E64200332C0A2B6A78D29257968D, 7C6619FF759D9DCB216B208C6D7C2F1E5E8AC689319EBBAA48564D444F262A90 ] C:\Program Files (x86)\QuickTime\Plugins\npqtplugin7.dll
08:37:12.0008 0x0d34  C:\Program Files (x86)\QuickTime\Plugins\npqtplugin7.dll - ok
08:37:12.0023 0x0d34  [ 80703C2F3C6B7DD9C4B9CCBB1699065A, 6EAD3B206C4B793A5E42B8D3172D177A3EB5BF8B9E49D372E06CF42EA8B3A1DF ] C:\Users\User\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
08:37:12.0023 0x0d34  C:\Users\User\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll - ok
08:37:12.0039 0x0d34  [ 649972EF1BEB3EA9FAF64E4457D40039, C87F77E3FDB825220A59470BFDE9B347CF19406DB31163D70506CF99113FB8FB ] C:\Users\User\AppData\Roaming\Mozilla\plugins\npo1d.dll
08:37:12.0039 0x0d34  C:\Users\User\AppData\Roaming\Mozilla\plugins\npo1d.dll - ok
08:37:12.0039 0x0d34  [ 030992BCBD13BE4D1889A7B8C522B558, CB0118CE110D56ABCF9B37DFCDD82B18EF43334F0825A8A882C000EBA4DAC320 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll
08:37:12.0039 0x0d34  C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll - ok
08:37:12.0055 0x0d34  [ 446BCAE59E26321802E000FC3E0C390A, 90DC242CAAE93E160318E2D1807AAA1E955DBAF26B62EAF1533122EE6AFAB332 ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
08:37:12.0055 0x0d34  C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll - ok
08:37:12.0055 0x0d34  [ 40AAE0A1A4F664828DF5A95875AEA1C8, 0743E9A679DEC3D9DCFE4883CF13C05B4A8FBFEA97F8F3A51E8D7A3975B94E22 ] C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll
08:37:12.0055 0x0d34  C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll - ok
08:37:12.0070 0x0d34  [ 290A0130C74ADCD4546BC6900D1665D9, 42D2AF4A079BCDBEBC1579130428AAE6B667BA7D291536885A1F6C3AB2462DAC ] C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
08:37:12.0070 0x0d34  C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll - ok
08:37:12.0086 0x0d34  [ 025BBEF5A248B09BDC6684747F6EB5BC, EF90434D022537329D081A38B54834D69A45767A878621C8560D6ACB0161FB1C ] C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
08:37:12.0086 0x0d34  C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll - ok
08:37:12.0086 0x0d34  [ 40871CDDC863B8AE2274C2C57E851825, C38FA3137883A478DC1A2EC1409FF80D817527617E257B3085AE34AF28BFF453 ] C:\Program Files (x86)\McAfee\Supportability\MVT\NPMVTPlugin.dll
08:37:12.0086 0x0d34  C:\Program Files (x86)\McAfee\Supportability\MVT\NPMVTPlugin.dll - ok
08:37:12.0101 0x0d34  [ C7794A997CEC29173A4401F3AE16C51F, 7B1F72F7619FD9D33382A39268B7F842E57D8171A159AD9ABC53F88C525E2853 ] C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
08:37:12.0101 0x0d34  C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll - ok
08:37:12.0101 0x0d34  [ 0D80C49D9A4A3E096296C67BD015F614, 3F3DF613531A6C4266257DCE07C843C702398E5F663687CB9F5020B26E3C3F7A ] C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
08:37:12.0101 0x0d34  C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll - ok
08:37:12.0117 0x0d34  [ 7F8AEFD3BBC0F30C42C59FD27A828DCF, 8EB792BBC3DC29516439C4AA749E8F6BF96B276FA32DF86C442A9841E3173E35 ] C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
08:37:12.0117 0x0d34  C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll - ok
08:37:12.0133 0x0d34  [ 40AAE0A1A4F664828DF5A95875AEA1C8, 0743E9A679DEC3D9DCFE4883CF13C05B4A8FBFEA97F8F3A51E8D7A3975B94E22 ] C:\Users\User\AppData\Local\Google\Update\1.3.25.5\npGoogleUpdate3.dll
08:37:12.0133 0x0d34  C:\Users\User\AppData\Local\Google\Update\1.3.25.5\npGoogleUpdate3.dll - ok
08:37:12.0133 0x0d34  [ 6846D2CA7E1D5937AEE3F99BB7F5464B, B32F1DBBFB7D23B2C7A361467C6CC2E3D3701EFABCBF2ECA1B15F97A44729BF1 ] C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll
08:37:12.0133 0x0d34  C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll - ok
08:37:12.0148 0x0d34  [ DFC9460CC37E5C414DC4680B10C19E7A, 688EAFF5F4BEDBEE18F25BF5EDD0A1FF6B9BA8A1676F596A00286F114C0119FB ] C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll
08:37:12.0148 0x0d34  C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll - ok
08:37:12.0148 0x0d34  [ 534D84434D9DB1D1E1E865F64E52AA8E, 7E2AF0C13C90C222227FF4CAB94E2E11FB18B0FE915A63072EE3B8B3D5F42EF0 ] C:\Windows\System32\twext.dll
08:37:12.0148 0x0d34  C:\Windows\System32\twext.dll - ok
08:37:12.0164 0x0d34  [ C49FE57CFA679DC1427FD6737BDCE551, C5830AFC3A4A581179CBC72225D978A85ADA8499ACC79DC61C2273CE4EB50D87 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll
08:37:12.0164 0x0d34  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll - ok
08:37:12.0179 0x0d34  [ 893BF7D2261C56C24F813405D9D018E0, 0A98254DD91D2482E1B743B3DF9524523CBF03AEC757AF804C0FECEB11EB543B ] C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
08:37:12.0179 0x0d34  C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll - ok
08:37:12.0179 0x0d34  [ CE1B888FF09A0B8844D81E9515463302, 4CDD2A4FB61EF206AB9BA86FD8E271E0D6DDDF15AD5AFC71B0C1BAB92F91AD75 ] C:\Program Files (x86)\WinRAR\RarExt64.dll
08:37:12.0179 0x0d34  C:\Program Files (x86)\WinRAR\RarExt64.dll - ok
08:37:12.0195 0x0d34  [ 5D0C2E0906738EEA3F9AFB6F76B272A2, 22E3EC9750954745F55311B73D79D04FB205A26920D89D53FA73DCCD1DF79A0A ] C:\Program Files (x86)\WinRAR\RarExtLoader.exe
08:37:12.0195 0x0d34  C:\Program Files (x86)\WinRAR\RarExtLoader.exe - ok
08:37:12.0195 0x0d34  [ EDBBD86134D4EB57B7917A13262ABE8E, C05EC3484741A1F4016B5DAAA61FE320D3E241D48BF5EA274158E2D7A9AC1EBB ] C:\Program Files (x86)\WinRAR\RarExt.dll
08:37:12.0195 0x0d34  C:\Program Files (x86)\WinRAR\RarExt.dll - ok
08:37:12.0211 0x0d34  [ 956E5B55207EBBFB28DA2B31EA2F405D, A67E65666DA1B0D24F510E7625F15A3E2970611EB7269F34198E96BE6A7075BE ] C:\Program Files (x86)\WinRAR\Formats\tar.fmt
08:37:12.0211 0x0d34  C:\Program Files (x86)\WinRAR\Formats\tar.fmt - ok
08:37:12.0211 0x0d34  [ C535914036E87D134A80EAFFD9A96C56, DF908E656C64DDBE183828405DA72D32D988E70B7B25F4FA621ED89BCF1393BD ] C:\Program Files (x86)\WinRAR\Formats\arj.fmt
08:37:12.0211 0x0d34  C:\Program Files (x86)\WinRAR\Formats\arj.fmt - ok
08:37:12.0226 0x0d34  [ B2C942156191EF4FD88C47B70D3B346C, 9740A5066240969DF615244331EE9190E80F3008F09FFFE5C08865A1AA529B65 ] C:\Program Files (x86)\WinRAR\Formats\gz.fmt
08:37:12.0226 0x0d34  C:\Program Files (x86)\WinRAR\Formats\gz.fmt - ok
08:37:12.0242 0x0d34  [ A10B048B681C38E26CA90CD1BC123604, 4DA549D159D22650D8E83F9F76E8849F1126B0CB93E88F196409080200C48433 ] C:\Windows\System32\syncui.dll
08:37:12.0242 0x0d34  C:\Windows\System32\syncui.dll - ok
08:37:12.0242 0x0d34  [ 8699D17DFCFCD327784034DB6BD3A422, 649FA1885F04E48FDD1B3F8C5769112F29BBE880A2FAEF44A22F6051737FF8B8 ] C:\Windows\System32\synceng.dll
08:37:12.0242 0x0d34  C:\Windows\System32\synceng.dll - ok
08:37:12.0257 0x0d34  [ 8B22B0CF8912F810B28AFBFC8B42727F, 3E65AE302C177DB3496B38B698C825C22BEF406809DDC3DFF46A3B86F58B6808 ] C:\Windows\System32\acppage.dll
08:37:12.0257 0x0d34  C:\Windows\System32\acppage.dll - ok
08:37:12.0257 0x0d34  [ 2F5AF776A7B24C6B82D20B5F3179B235, 7F8A2A67443FA6B59308402F523FAB5C9447D169525C5370F7937EB19271BAF4 ] C:\Windows\System32\blackbox.dll
08:37:12.0257 0x0d34  C:\Windows\System32\blackbox.dll - ok
08:37:12.0273 0x0d34  [ 73D3B2408952890DE8157EAA014B9A52, 3AFF4130CF129B314E1B274C7145342B10C38BE7CEC850650E65BB1298AE5EE7 ] C:\Windows\System32\wmp.dll
08:37:12.0273 0x0d34  C:\Windows\System32\wmp.dll - ok
08:37:12.0289 0x0d34  [ 4FDFA3F219692D17011BF1B428857C1E, 0422101F9D47633DFF47DF022031C4221B9D395F3E23C0C6E0A54CE55D76565D ] C:\Program Files\Windows Defender\MpRTP.dll
08:37:12.0289 0x0d34  C:\Program Files\Windows Defender\MpRTP.dll - ok
08:37:12.0289 0x0d34  [ A3FCC4F97551087D65F8FEE879FEF736, 000EA00FD2644531F38D215972C22FE2BCE5B01CF483071398053099A342BF74 ] C:\Windows\System32\tdh.dll
08:37:12.0289 0x0d34  C:\Windows\System32\tdh.dll - ok
08:37:12.0304 0x0d34  [ 355A138ABDFD43FBABCAE3A1B06AB93D, 26015CE72D27E2F7FA7322203CDF236896A079F8325F1B24975CA12C57FD4B7B ] C:\Windows\System32\wmpps.dll
08:37:12.0304 0x0d34  C:\Windows\System32\wmpps.dll - ok
08:37:12.0304 0x0d34  [ F149E8CAE538DBF7059B00326673F602, 8B576A68AE43B506D0C7E91C63E8EF1DB9E73F0E87E48CF57086BCE51E5F8C36 ] C:\Windows\System32\wmpmde.dll
08:37:12.0304 0x0d34  C:\Windows\System32\wmpmde.dll - ok
08:37:12.0320 0x0d34  [ 021287C2050FD5DB4A8B084E2C38139C, EA27C640FE0F1E8BAE70BEF98E663E68A35336BB6D52D56B2367297D22C50648 ] C:\Windows\System32\WinSATAPI.dll
08:37:12.0320 0x0d34  C:\Windows\System32\WinSATAPI.dll - ok
08:37:12.0320 0x0d34  [ 28A7D7C7E2FDD1D55F12F750CD6331EC, 0CC0159D3F5682307439D8F3651A080430C7EAB8EFA25BA246AADF4665297E8D ] C:\Windows\System32\MSMPEG2ENC.DLL
08:37:12.0320 0x0d34  C:\Windows\System32\MSMPEG2ENC.DLL - ok
08:37:12.0335 0x0d34  [ 46767946E7B559D981C1DC04EC0AB36F, 69137AA9AEF9727FFD1B65AA4D658C6E8AAD3A062717B447260502B4D7DB90C6 ] C:\Windows\System32\devenum.dll
08:37:12.0335 0x0d34  C:\Windows\System32\devenum.dll - ok
08:37:12.0335 0x0d34  [ 558C42D165DB5799B4072DC0A9C27C0B, 2385E16ACF07252D5567EC091C1B39D39BB8199F60854D5A91EDC948C57B3A3F ] C:\Windows\System32\msdmo.dll
08:37:12.0335 0x0d34  C:\Windows\System32\msdmo.dll - ok
08:37:12.0351 0x0d34  [ AAC20E2DC0EFF52E91F9672B11144365, FB8AD1D3EF80C18604996C2A464E988C0AB7CA6F58CC83991A4E7479E5E6C682 ] C:\Program Files (x86)\Mozilla Firefox\firefox.exe
08:37:12.0351 0x0d34  C:\Program Files (x86)\Mozilla Firefox\firefox.exe - ok
08:37:12.0367 0x0d34  [ 67EC459E42D3081DD8FD34356F7CAFC1, 1221A09484964A6F38AF5E34EE292B9AFEFCCB3DC6E55435FD3AAF7C235D9067 ] C:\Program Files (x86)\Mozilla Firefox\msvcr100.dll
08:37:12.0367 0x0d34  C:\Program Files (x86)\Mozilla Firefox\msvcr100.dll - ok
08:37:12.0367 0x0d34  [ 4F77DB8357920D50352290FE3982701C, 8DADF158A3D496AE02230CF26FAB63F715361B8D47A57FC4FA0532DBF04AD39F ] C:\Program Files (x86)\Mozilla Firefox\mozglue.dll
08:37:12.0367 0x0d34  C:\Program Files (x86)\Mozilla Firefox\mozglue.dll - ok
08:37:12.0382 0x0d34  [ 03E9314004F504A14A61C3D364B62F66, A3BA6421991241BEA9C8334B62C3088F8F131AB906C3CC52113945D05016A35F ] C:\Program Files (x86)\Mozilla Firefox\msvcp100.dll
08:37:12.0382 0x0d34  C:\Program Files (x86)\Mozilla Firefox\msvcp100.dll - ok
08:37:12.0382 0x0d34  [ F063BD6DE9BD749224DBC6725636C42C, A41E2A02B0CEC8F3FD0DE5A93ABEE652712E98FABCC89823E1923F54F4F96307 ] C:\Program Files (x86)\Mozilla Firefox\sandboxbroker.dll
08:37:12.0382 0x0d34  C:\Program Files (x86)\Mozilla Firefox\sandboxbroker.dll - ok
08:37:12.0398 0x0d34  [ A188F7724AAD8BE3689DD1C157F0A6CC, 547ACB9E69D6D588E25BB582C8A88BD60C4579226051949BCE7355243172A027 ] C:\Program Files (x86)\Mozilla Firefox\nss3.dll
08:37:12.0398 0x0d34  C:\Program Files (x86)\Mozilla Firefox\nss3.dll - ok
08:37:12.0398 0x0d34  [ EE4A91458C8ACD558C2FDE3CA9B242CF, BB0F802C8E9983182C2528E5A3020E3A13D2F318E38C47A75AD5580CFD8AB186 ] C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
08:37:12.0398 0x0d34  C:\Program Files (x86)\Mozilla Firefox\mozjs.dll - ok
08:37:12.0413 0x0d34  [ 7187BA1D6E0690B3D412675FDC65CD24, 1CF585B6A2746035B3BCBFDFEB38BEC04674356DFC61CF2BF58646A02979E412 ] C:\Program Files (x86)\Mozilla Firefox\icuin52.dll
08:37:12.0413 0x0d34  C:\Program Files (x86)\Mozilla Firefox\icuin52.dll - ok
08:37:12.0413 0x0d34  [ B1A649CE255C7A60002D729F953A776D, 24E8608B6786A2F3CF6410FD840C781F69CAB002EAAC6DF8205DEB5CEC05332B ] C:\Program Files (x86)\Mozilla Firefox\icuuc52.dll
08:37:12.0413 0x0d34  C:\Program Files (x86)\Mozilla Firefox\icuuc52.dll - ok
08:37:12.0429 0x0d34  [ 05AE9350F356E4997DEB538FCFC5429B, 8459EE1096158347A833E18D392A4040CCC3939CFAE55A02829BBB1DEDD7F775 ] C:\Program Files (x86)\Mozilla Firefox\icudt52.dll
08:37:12.0429 0x0d34  C:\Program Files (x86)\Mozilla Firefox\icudt52.dll - ok
08:37:12.0445 0x0d34  [ 57F45F5820F35CEC8123B622DE7D9705, 57C71A5B57C15E03828A2D5311E5AF589F0C1FCCAB9578F15F118C93A8077460 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Updates\mpasdlta.vdm
08:37:12.0445 0x0d34  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Updates\mpasdlta.vdm - ok
08:37:12.0445 0x0d34  [ EF3143ECEDEF915E11D13CE425F0305E, 2C5A245F0BDBDA7500470DE02186C098942F6359C833BB9FA4CC948A89A503A0 ] C:\Program Files (x86)\Mozilla Firefox\mozalloc.dll
08:37:12.0445 0x0d34  C:\Program Files (x86)\Mozilla Firefox\mozalloc.dll - ok
08:37:12.0460 0x0d34  [ 55DC1FD2BB05480D059BE37CC4F34DD0, FEFF4035328809F5D922215A239942321F1BB6C304EE55A1341DA210D054795D ] C:\Program Files (x86)\Mozilla Firefox\gkmedias.dll
08:37:12.0460 0x0d34  C:\Program Files (x86)\Mozilla Firefox\gkmedias.dll - ok
08:37:12.0460 0x0d34  [ 2977FFEC201E48A2970998F2DD936E32, EC383115E6C76528EFD887A8F1B4BF9CD4F445D2FAC18F88B1D2604B0366BB69 ] C:\Program Files (x86)\CyberLink\YouCam\Trial\Trial.exe
08:37:12.0460 0x0d34  C:\Program Files (x86)\CyberLink\YouCam\Trial\Trial.exe - ok
08:37:12.0476 0x0d34  [ 487F44B08EFEAF5AD087878357B9403D, B02C99850940588D52B3E6DB30DB64582F294E0BD62101067BECFEA1483010C6 ] C:\Windows\SysWOW64\pdh.dll
08:37:12.0476 0x0d34  C:\Windows\SysWOW64\pdh.dll - ok
08:37:12.0491 0x0d34  [ 71E68F2443A80BD4DA89181889C457EA, 8665D3DDF92B05EF287FB6EC43782512C23A1437764CF6F4DE0B00547F3C696B ] C:\Windows\System32\udhisapi.dll
08:37:12.0491 0x0d34  C:\Windows\System32\udhisapi.dll - ok
08:37:12.0491 0x0d34  [ 1D70A818ADA54F81985B197C6BF313D8, E21E1838CC0A782DD93AA5AE0ACDCF7A2D9DEF3266970742BD2A59605597B54F ] C:\Program Files (x86)\Steam\bin\steamservice.dll
08:37:12.0491 0x0d34  C:\Program Files (x86)\Steam\bin\steamservice.dll - ok
08:37:12.0507 0x0d34  [ 6FC79E4450626D0E208AA3B191FBC7D5, A56CD1CF452ED353CAF2E7CF6E0455890A20A5A36F24EEF75D7E8B759F16233D ] C:\Program Files (x86)\Mozilla Firefox\browser\components\browsercomps.dll
08:37:12.0507 0x0d34  C:\Program Files (x86)\Mozilla Firefox\browser\components\browsercomps.dll - ok
08:37:12.0507 0x0d34  [ D875FF86664F102B97A4BD5746AD40F5, 2EFF93E3A2E65A927E0CF8FAD23D8F8D0EAA667626A187476A74A21259A21031 ] C:\Windows\SysWOW64\en-US\msctf.dll.mui
08:37:12.0507 0x0d34  C:\Windows\SysWOW64\en-US\msctf.dll.mui - ok
08:37:12.0523 0x0d34  [ A648AB50A6FE18002C762674F4E0F41C, 7D5230AE3346277896E13D5B40FFDB91ED3ECE655F0643BBEEFDA78B26488301 ] C:\Windows\SysWOW64\igd10umd32.dll
08:37:12.0523 0x0d34  C:\Windows\SysWOW64\igd10umd32.dll - ok
08:37:12.0523 0x0d34  [ 3C1936A12C62254F914A01BBC6A8DC69, 0068F7A8B0D9E9776B44EAD99007B0CE5A5600633F2B477E9EFAAC644408C70E ] C:\Windows\SysWOW64\d3d10_1.dll
08:37:12.0523 0x0d34  C:\Windows\SysWOW64\d3d10_1.dll - ok
08:37:12.0538 0x0d34  [ D4212AB475A3B25EC4DF574536C3EDC5, F8BBEECB66BA6DDE5A64ED41D8BF95A1C81470552B4BFD5B11D888156289CCDD ] C:\Windows\SysWOW64\d3d10_1core.dll
08:37:12.0538 0x0d34  C:\Windows\SysWOW64\d3d10_1core.dll - ok
08:37:12.0538 0x0d34  [ 54C5267656DD804B844223067350BCE4, 31670176F4A15E6275F877EDEC14E4AA24FA1F4996BEEC487B7695125FDAB436 ] C:\Program Files (x86)\Mozilla Firefox\xul.dll
08:37:12.0538 0x0d34  C:\Program Files (x86)\Mozilla Firefox\xul.dll - ok
08:37:12.0554 0x0d34  [ F13A0F20390A2E25C76EDCB0CE684D11, C522A6F277DDD29D5A9106CEC9CF2F57E039E588A98A20BDA79EE71DCAE62CD8 ] C:\Program Files (x86)\Mozilla Firefox\softokn3.dll
08:37:12.0554 0x0d34  C:\Program Files (x86)\Mozilla Firefox\softokn3.dll - ok
08:37:12.0569 0x0d34  [ 3C4CE6A33A8CFC1211A8D9FDEC245EE0, BB4E0AF46DE89655E483BFA3507B73B03EA620D92592F897DC80669463B1C68C ] C:\Program Files (x86)\Mozilla Firefox\nssdbm3.dll
08:37:12.0569 0x0d34  C:\Program Files (x86)\Mozilla Firefox\nssdbm3.dll - ok
08:37:12.0569 0x0d34  [ 6E406AED923F3845F403213BD8D3773F, 0681C97C783D76372903FBEF341166EFAB75BD8F7F8A75D2004AB8C6A06E7C2F ] C:\Program Files (x86)\Mozilla Firefox\freebl3.dll
08:37:12.0569 0x0d34  C:\Program Files (x86)\Mozilla Firefox\freebl3.dll - ok
08:37:12.0585 0x0d34  [ F5A8DBEB61E23E5B16EF2B0A9DE2E355, C6920EA4A82DB85548695CF350474C149F516CF098EE80700744F49043F92FC3 ] C:\Program Files (x86)\Mozilla Firefox\nssckbi.dll
08:37:12.0585 0x0d34  C:\Program Files (x86)\Mozilla Firefox\nssckbi.dll - ok
08:37:12.0601 0x0d34  [ 5E0DB1BF6B64CC9B58A387F2FC1166EF, 704152F9468352C6EE471BD9D8ADF064916E0165E6F7BF8F991E39CF810EA2DF ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{292759AA-D2ED-4A0E-A3A5-223D06CD8A50}\mpengine.dll
08:37:12.0601 0x0d34  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{292759AA-D2ED-4A0E-A3A5-223D06CD8A50}\mpengine.dll - ok
08:37:12.0601 0x0d34  [ 6556819CD55CE306D7FF546E1DF680D6, 2B7068963E59C1FDF2ABB60F3FF8A133028E2F1484D1F7B9482F52C799487A0C ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{292759AA-D2ED-4A0E-A3A5-223D06CD8A50}\mpasbase.vdm
08:37:12.0601 0x0d34  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{292759AA-D2ED-4A0E-A3A5-223D06CD8A50}\mpasbase.vdm - ok
08:37:12.0616 0x0d34  [ 7CF92E4C4D588449246ED924DCA24D0D, 4930617611A1C635536F53D609181F36F0140B971BDD1B1A7F6244445FF652B5 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{292759AA-D2ED-4A0E-A3A5-223D06CD8A50}\mpasdlta.vdm
08:37:12.0616 0x0d34  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{292759AA-D2ED-4A0E-A3A5-223D06CD8A50}\mpasdlta.vdm - ok
08:37:12.0616 0x0d34  [ 57F45F5820F35CEC8123B622DE7D9705, 57C71A5B57C15E03828A2D5311E5AF589F0C1FCCAB9578F15F118C93A8077460 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{76F8A002-CB95-42BE-B74C-B540CF301DC4}\mpasdlta.vdm
08:37:12.0616 0x0d34  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{76F8A002-CB95-42BE-B74C-B540CF301DC4}\mpasdlta.vdm - ok
08:37:12.0632 0x0d34  [ A943D670747778C7597987A4B5B9A679, 1A582EBE780ABC1143BACCAF4910714D3E9F4195EDD86939499D03ED6E756610 ] C:\Windows\System32\WFS.exe
08:37:12.0632 0x0d34  C:\Windows\System32\WFS.exe - ok
08:37:12.0632 0x0d34  [ EC84D7DCAE6AE0FE87EE5D4F0D50DC55, 7D914A319B195908752904C4A18DBC007C767941D11C9C76E3DD421DDD95ECE6 ] C:\Windows\System32\sud.dll
08:37:12.0632 0x0d34  C:\Windows\System32\sud.dll - ok
08:37:12.0647 0x0d34  [ EC3D1A16E221E6B27850FDD278EB6929, 7D1AC0F71CE183F2484D04E292D2AEE69262C16B7AA1480CBE0261B2B4B7FD7E ] C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe
08:37:12.0647 0x0d34  C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe - ok
08:37:12.0647 0x0d34  [ 0786D45A6F41F075E20A18E2F7285BA0, 1561688A6641BE8D538CBD0933546C40887C4A336E8EA6D976333492C4C714B1 ] C:\Program Files (x86)\Windows Media Player\wmplayer.exe
08:37:12.0647 0x0d34  C:\Program Files (x86)\Windows Media Player\wmplayer.exe - ok
08:37:12.0663 0x0d34  [ A4898B7BCA283C7CA3170117FE1AF893, A67A8E1950A54EC248DC4C2D788F874132EBC7BD4F659846B8D39682978587C1 ] C:\Windows\System32\clb.dll
08:37:12.0663 0x0d34  C:\Windows\System32\clb.dll - ok
08:37:12.0679 0x0d34  [ 345BC7CADBE91E78B52497EF3B0D910B, A813221797DB196152B8D071E185FFEFEDC6FCF6BBBA1A56A41DB3E47DDD2463 ] C:\Windows\System32\fms.dll
08:37:12.0679 0x0d34  C:\Windows\System32\fms.dll - ok
08:37:12.0679 0x0d34  [ FEB91B4DA0D540865260A33838654FA3, 8636B008BA329D3E6CC235D08BA4C914EFF45DBFCB9297C893CCDA8D907BA946 ] C:\Windows\System32\nci.dll
08:37:12.0679 0x0d34  C:\Windows\System32\nci.dll - ok
08:37:12.0694 0x0d34  [ EE11A3F03D8B801B721BC6D0089BDD9C, E1942476AD833FF53B8A9AA705F096FA52BAAC2FBED1BF3DEFDE48368B14AC0C ] C:\Windows\System32\ulib.dll
08:37:12.0694 0x0d34  C:\Windows\System32\ulib.dll - ok
08:37:12.0694 0x0d34  [ F0C6A924CAED0D26E7150F4009384AA6, 15F2F383795DA0FD3053418B3DBDCC3D818E63E6B2038316AE75256F9703613D ] C:\Windows\System32\desk.cpl
08:37:12.0694 0x0d34  C:\Windows\System32\desk.cpl - ok
08:37:12.0710 0x0d34  [ 86F1F949DD51FB5A044F1BD34CBE4AA8, AAFA3B8294E2543AFFF1E2C04FF0FA93D517FC20F7622ABE46B57BDCCF235E92 ] C:\Windows\System32\apds.dll
08:37:12.0710 0x0d34  C:\Windows\System32\apds.dll - ok
08:37:12.0725 0x0d34  [ 21B62252D283FBF75A5F67849EBD9B2E, 22F36CB376530A02A10BC4CFECFEB423DD1DA16D2B4587AE593EC28FFBBCC337 ] C:\Windows\System32\WFSR.dll
08:37:12.0725 0x0d34  C:\Windows\System32\WFSR.dll - ok
08:37:12.0725 0x0d34  [ E8C2C855AADAEEA8CBB879246BFA7B9E, 698AA48BAE2CD4EF362AB52135149F782FEB1F94B114F4DA046411A7B300D6D9 ] C:\Windows\System32\batt.dll
08:37:12.0725 0x0d34  C:\Windows\System32\batt.dll - ok
08:37:12.0741 0x0d34  [ 6E90B7A6C66355AA8DDC5CABF6073DE1, 83367D7BD8498811AAC5632842ABB92742D50A45622968482477EBC133A47075 ] C:\Windows\System32\main.cpl
08:37:12.0741 0x0d34  C:\Windows\System32\main.cpl - ok
08:37:12.0741 0x0d34  [ A0BFC858B3A45CF9BFFFC3C8C08ED7FC, 8228440F553AB08B63E834B83E201107A697C1FF7767F50A6FAE357CCC5A7C75 ] C:\Windows\System32\apss.dll
08:37:12.0741 0x0d34  C:\Windows\System32\apss.dll - ok
08:37:12.0757 0x0d34  [ 0D893F8D145D3B125B0226727C243A69, B344A18C5D5324A891B6E2121EC375AFB9E83D4C59D64EDD2E63854ABEC5D734 ] C:\Windows\System32\security.dll
08:37:12.0757 0x0d34  C:\Windows\System32\security.dll - ok
08:37:12.0757 0x0d34  [ 5EA9A0950F322BFA382AF277801C0307, A2C00A3E22A484A00620FF801E0B6EB475C9593C80AF321564E5A0DD2B1C38B7 ] C:\Windows\System32\wbem\wmipcima.dll
08:37:12.0757 0x0d34  C:\Windows\System32\wbem\wmipcima.dll - ok
08:37:12.0772 0x0d34  [ B6D6886149573278CBA6ABD44C4317F5, 273C05C8504CA050FE6C50B50D15F32064EC6672AE85CDE038976027CA4B14D3 ] C:\Windows\System32\slwga.dll
08:37:12.0772 0x0d34  C:\Windows\System32\slwga.dll - ok
08:37:12.0772 0x0d34  [ DB76DB15EFC6E4D1153A6C5BC895948D, 71DDF02C7EE2DF66A08F1A2A08DA39802C354624880A2BE93A706EA7476422A3 ] C:\Windows\System32\sppc.dll
08:37:12.0772 0x0d34  C:\Windows\System32\sppc.dll - ok
08:37:12.0788 0x0d34  [ ABDFC692D9FE43E2BA8FE6CB5A8CB95A, 949485BA939953642714AE6831D7DCB261691CAC7CBB8C1A9220333801F60820 ] C:\Windows\SysWOW64\mshta.exe
08:37:12.0788 0x0d34  C:\Windows\SysWOW64\mshta.exe - ok
08:37:12.0803 0x0d34  [ 31DF8B79EF2B1985FFBB113D7A03B0AA, C6B526D22460E86BE0763524AF742606BC0108F7DC0AACE3FA7CCFECE3D45D78 ] C:\Windows\System32\bthci.dll
08:37:12.0803 0x0d34  C:\Windows\System32\bthci.dll - ok
08:37:12.0803 0x0d34  [ 649F5F47EA85C08AEE9353CEEF810233, 48E947832E4F5512D41EB6BAB950CAD6F86F026EF8641DB410D25CBEA8C71AE1 ] C:\Windows\System32\mmsys.cpl
08:37:12.0803 0x0d34  C:\Windows\System32\mmsys.cpl - ok
08:37:12.0819 0x0d34  [ 1F4C97B6D0BD2515BCDF8B15DC65F2E3, 0557319D1F4F4CEF13C9737CBCF40A15375F38B90B2BEF46D22DE986B42C008A ] C:\Windows\System32\sccls.dll
08:37:12.0819 0x0d34  C:\Windows\System32\sccls.dll - ok
08:37:12.0819 0x0d34  [ 13337A3FB17F2242487FD45488ED0485, C174F8652118876494336AB88A65D594E0E6CCBAB20CC6BA08E6B253855A01CA ] C:\Windows\SysWOW64\vssapi.dll
08:37:12.0819 0x0d34  C:\Windows\SysWOW64\vssapi.dll - ok
08:37:12.0819 0x0d34  ================ Scan generic autorun ======================
08:37:13.0568 0x0d34  [ 43D4B8E9DC8C1F0C16B74D57A98A806F, 0A0D4DBF1DD8DE60927F1D13FC092513D48241FAB2DB0AEE1144E6E58C36776F ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
08:37:13.0661 0x0d34  SynTPEnh - ok
08:37:13.0786 0x0d34  [ 87A4570E9D15A2821015B7FB6B821654, BDF5266905DC3F9ED0DBE41798D9907FC9E8D030DD5C28975BBF9BFD8BD9DA71 ] C:\Windows\system32\igfxtray.exe
08:37:13.0817 0x0d34  IgfxTray - ok
08:37:13.0927 0x0d34  [ 842683D8F1A58A76E5A03DA35B4962EE, 7D1B1918D69566694D7D0E82A8A1C7537A5C3A1533DC80F60FE212DD2DBC6099 ] C:\Windows\system32\hkcmd.exe
08:37:13.0973 0x0d34  HotKeysCmds - ok
08:37:14.0083 0x0d34  [ 99F8C1060BFB20D2039716BBF741D6C2, 8C578E288D88697E88AB9BEAE79D33AF23AD6176D830D5916BD2DD42EC6FADC5 ] C:\Windows\system32\igfxpers.exe
08:37:14.0114 0x0d34  Persistence - ok
08:37:15.0471 0x0d34  [ 74E6E1E62E35661679A6CAFF392B96E9, 03AB89AE3B205DDF31497FDECCFF9BA389892C3DAF05D0D408C2627FBA06164D ] C:\Windows\system32\spool\DRIVERS\x64\3\EKIJ5000MUI.exe
08:37:15.0689 0x0d34  EKIJ5000StatusMonitor - ok
08:37:16.0095 0x0d34  [ F5A5DBADCD24BDF33BFDAA789E39C876, A0D931FA339CA1FB6198BF5DF327ECEB0881796FFF92BDE0F9FC2C233C46E83C ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
08:37:16.0235 0x0d34  AdobeAAMUpdater-1.0 - ok
08:37:16.0360 0x0d34  [ 233A10D4B3F6897899112E4EC60F1906, 1F7E768E57064938114DF2EFC5B219EB0D30A7D9E574924E9CED054462505AF0 ] C:\Windows\WindowsMobile\wmdc.exe
08:37:16.0391 0x0d34  Windows Mobile Device Center - ok
08:37:16.0625 0x0d34  [ 0AEE5668EB59912F32FF245BFA72465F, 653978E365B0E72D34E8B3ED1BFCF0237B70B41396BD70EBBBEDB31AFD77857B ] C:\Program Files (x86)\QuickTime\QTTask.exe
08:37:16.0672 0x0d34  QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
08:37:19.0855 0x0d34  Detect skipped due to KSN trusted
08:37:19.0855 0x0d34  QuickTime Task - ok
08:37:19.0995 0x0d34  [ 53D96678FB89F056D5285101481297D9, E66D799027046ADBF573BC357196A45D6F5A0F571C694A7F659B8278A982E29C ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
08:37:20.0026 0x0d34  iTunesHelper - ok
08:37:20.0213 0x0d34  [ 0E34B7BB1FCF22BCC1E394D16F9E992B, 382CA8E6BAC301E2F277F8EDA03D263FF71272796A8EED582C36294EEE9191F9 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
08:37:20.0229 0x0d34  GrooveMonitor - ok
08:37:20.0338 0x0d34  [ 57B4D34232852BFE4453BE571DF90D21, 3D329499D7BCACAE5F6377F988B90714F5A8301784CDB22D5B54A2266AC50D79 ] C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
08:37:20.0354 0x0d34  CLMLServer - ok
08:37:20.0588 0x0d34  [ F7E0783DA9043BC131BB37C77EDB04DF, CD24E9B89789BE57230C52B24E63F29C6E650876E5FB0CB1304390B7E698FF93 ] C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe
08:37:20.0666 0x0d34  TWebCamera - ok
08:37:20.0837 0x0d34  [ 7EAFC20E93923DBE751164EB0683C490, B485C1AD3E804B3D00BCFE74B2FBDBED18F79FC82762DB517264156CF4EEDE3C ] C:\Program Files (x86)\CyberLink\YouCam\YouCamService.exe
08:37:20.0869 0x0d34  YouCam Service - ok
08:37:21.0399 0x0d34  [ 47EA5F76FAB723C61AB4A0D79BAD512C, A7A38EB0A7068B160E6949945EF639F999A06AE35746F6E79C7350745798E5C9 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
08:37:21.0446 0x0d34  Adobe ARM - ok
08:37:21.0898 0x0d34  [ 30EE672AD2C53BFB7DD4BE6993B07C71, 5FB6B5B71AFF14E22460C4C6CA75830736222B74D200E413E05F0CACDE2C44CF ] C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe
08:37:22.0039 0x0d34  BingDesktop - ok
08:37:22.0039 0x0d34  Conime - ok
08:37:22.0538 0x0d34  [ D560554BAE63D2A18197B7D2B5DA045B, 2BC9256C5759070DCF970F8F39297F9A7A804BD845A49BD3DE66A7305E307C06 ] C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKStatusMonitor.exe
08:37:22.0709 0x0d34  EKStatusMonitor - ok
08:37:23.0989 0x0d34  [ 38875F805FBD3D7B32D5B3EFEA7D1CD2, 5FD026593287DADB1F524EE3A9213A9D7544E20E46598BF3A8ED62379C9BE0E7 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
08:37:24.0129 0x0d34  Adobe Creative Cloud - ok
08:37:24.0301 0x0d34  [ 8FFDB89A0FB7C8ABC3A8825E38047341, B9107FAA3A885CD9A08C20F78D31C3642FA76812E417F41C4F2ADF7D90CA8C72 ] C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
08:37:24.0379 0x0d34  LWS - ok
08:37:24.0581 0x0d34  [ 0863C978F7418CC14059E401B1960DE2, 676B39FD1AFB38073A8D07F3E549CFB50BF4FA18B4FD5E37A44EAF7F3E1E3BB3 ] C:\Program Files (x86)\LeapFrog\LeapFrog Connect\Monitor.exe
08:37:24.0644 0x0d34  Monitor - detected UnsignedFile.Multi.Generic ( 1 )
08:37:27.0764 0x0d34  Detect skipped due to KSN trusted
08:37:27.0764 0x0d34  Monitor - ok
08:37:28.0107 0x0d34  [ 34D296AFC913E302953C70463EF09A48, BC413307CBC56C039EE8A05B51A56E14EF59678FBB33815AEB320078056C8CE7 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
08:37:28.0138 0x0d34  HP Software Update - ok
08:37:28.0450 0x0d34  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
08:37:28.0684 0x0d34  Sidebar - ok
08:37:28.0747 0x0d34  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
08:37:29.0901 0x0d34  mctadmin - ok
08:37:30.0104 0x0d34  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
08:37:30.0213 0x0d34  Sidebar - ok
08:37:30.0322 0x0d34  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
08:37:30.0353 0x0d34  mctadmin - ok
08:37:30.0619 0x0d34  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] C:\Users\User\AppData\Local\Google\Update\GoogleUpdate.exe
08:37:30.0650 0x0d34  Google Update - ok
08:37:30.0962 0x0d34  [ FE157C8114B6D6FEBEEB5884D4933CF8, BA94B3E09524E062618DBDC2889AD2721B6D1D074380410275480476CAB38770 ] C:\Program Files (x86)\Steam\Steam.exe
08:37:31.0133 0x0d34  Steam - ok
08:37:31.0991 0x0d34  [ D8470A716BE1C02A81F5AD704D43D334, DA2E76AFB6C0F0111CC5B3A83B331D2BCA54CC78C56128D2B90B86FC89E7EAA7 ] C:\Users\User\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe
08:37:32.0179 0x0d34  Amazon Cloud Player - ok
08:37:32.0491 0x0d34  [ B53D59915A356B06C1D7DE5B22B4177C, 98E7DF7D9695E0CB18B2C1B39473E147C6C943828950CB9EBAD71C82241FDBD7 ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
08:37:32.0522 0x0d34  GoogleChromeAutoLaunch_BCEA24321E5E4F1401136BBEDFB545FE - ok
08:37:32.0537 0x0d34  Waiting for KSN requests completion. In queue: 8
08:37:33.0551 0x0d34  Waiting for KSN requests completion. In queue: 8
08:37:34.0565 0x0d34  Waiting for KSN requests completion. In queue: 8
08:37:35.0579 0x0d34  Waiting for KSN requests completion. In queue: 8
08:37:38.0356 0x0d34  Win FW state via NFP2: enabled
08:37:41.0258 0x0d34  ============================================================
08:37:41.0258 0x0d34  Scan finished
08:37:41.0258 0x0d34  ============================================================
08:37:41.0320 0x114c  Detected object count: 2
08:37:41.0320 0x114c  Actual detected object count: 2
08:38:33.0268 0x114c  LeapFrog Connect Device Service ( UnsignedFile.Multi.Generic ) - skipped by user
08:38:33.0268 0x114c  LeapFrog Connect Device Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
08:38:33.0268 0x114c  RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
08:38:33.0268 0x114c  RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
08:42:03.0611 0x0934  Deinitialize success
 



#14 poppyseed

poppyseed
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:03:12 PM

Posted 25 October 2014 - 09:35 AM

Rkill log:

 

Rkill 2.6.8 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2014 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 10/25/2014 07:55:47 AM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * No malware processes found to kill.

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * No issues found.

Checking Windows Service Integrity:

 * No issues found.

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * HOSTS file entries found:

  127.0.0.1       localhost
  ::1             localhost

Program finished at: 10/25/2014 07:57:33 AM
Execution time: 0 hours(s), 1 minute(s), and 46 seconds(s)
 



#15 poppyseed

poppyseed
  • Topic Starter

  • Members
  • 20 posts
  • OFFLINE
  •  
  • Local time:03:12 PM

Posted 25 October 2014 - 09:49 AM

Hitman log:

 

HitmanPro 3.7.9.225
www.hitmanpro.com

   Computer name . . . . : USER-PC
   Windows . . . . . . . : 6.1.1.7601.X64/1
   User name . . . . . . : User-PC\User
   UAC . . . . . . . . . : Enabled
   License . . . . . . . : Free

   Scan date . . . . . . : 2014-10-25 10:39:58
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 8m 13s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : No

   Threats . . . . . . . : 2
   Traces  . . . . . . . : 63

   Objects scanned . . . : 1,702,286
   Files scanned . . . . : 41,219
   Remnants scanned  . . : 479,294 files / 1,181,773 keys

Suspicious files ____________________________________________________________

   C:\Users\User\AppData\Local\Amazon Cloud Player\Amazon Music Helper.exe
      Size . . . . . . . : 3,145,536 bytes
      Age  . . . . . . . : 142.8 days (2014-06-04 16:23:44)
      Entropy  . . . . . : 6.6
      SHA-256  . . . . . : DA2E76AFB6C0F0111CC5B3A83B331D2BCA54CC78C56128D2B90B86FC89E7EAA7
      RSA Key Size . . . : 2048
      Parent Name  . . . : C:\Windows\explorer.exe
      Authenticode . . . : Self-signed
      Running processes  : 3608
      Fuzzy  . . . . . . : 24.0
         Program is code self-signed.
         This program is actively listening for inbound network connections.
         Uses the Windows Registry to run each time the user logs on.
         Authors name is missing in version info. This is not common to most programs.
         Version control is missing. This file is probably created by an individual. This is not typical for most programs.
         Program starts automatically without user intervention.
         The file is in use by one or more active processes.
      Startup
         HKU\S-1-5-21-3299709030-147293944-2658779064-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Amazon Cloud Player
      Network Ports
         127.0.0.1:4750    

   C:\Users\User\Desktop\FRST-OlderVersion\FRST64.exe
      Size . . . . . . . : 2,112,512 bytes
      Age  . . . . . . . : 5.7 days (2014-10-19 17:30:18)
      Entropy  . . . . . : 7.5
      SHA-256  . . . . . : 7F619D4E28A401051015E77116913A7E6DC3891B1248A2D08FCB439B38C730A6
      Needs elevation  . : Yes
      Fuzzy  . . . . . . : 24.0
         Program has no publisher information but prompts the user for permission elevation.
         Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
         Authors name is missing in version info. This is not common to most programs.
         Version control is missing. This file is probably created by an individual. This is not typical for most programs.
         Time indicates that the file appeared recently on this computer.

   C:\Users\User\Desktop\FRST64.exe
      Size . . . . . . . : 2,110,976 bytes
      Age  . . . . . . . : 4.8 days (2014-10-20 16:12:42)
      Entropy  . . . . . : 7.5
      SHA-256  . . . . . : 70F33C1CFFE60B925F4B2DE5D0F513388FDE57FA03AC9D09BE059B4DDD05AC2D
      Needs elevation  . : Yes
      Fuzzy  . . . . . . : 24.0
         Program has no publisher information but prompts the user for permission elevation.
         Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
         Authors name is missing in version info. This is not common to most programs.
         Version control is missing. This file is probably created by an individual. This is not typical for most programs.
         Time indicates that the file appeared recently on this computer.
      Forensic Cluster
          0.0s C:\Users\User\Desktop\FRST64.exe
          0.0s C:\Users\User\Desktop\FRST64.exe
          0.0s C:\Users\User\Desktop\FRST64.exe
          0.0s C:\Users\User\Desktop\FRST64.exe
          2.4s C:\Users\User\Desktop\FRST-OlderVersion\
          2.4s C:\Users\User\Desktop\FRST-OlderVersion\
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\FRST\Logs\ct
         13.8s C:\Users\User\Desktop\Fixlog.txt


Malware remnants ____________________________________________________________

   HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}\ (Hijacker)
   HKU\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}\ (Hijacker)

Cookies _____________________________________________________________________

   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:247realmedia.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:4391541.fls.doubleclick.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:ad.360yield.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:ad.mlnadvertising.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:adlegend.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:ads.al.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:ads.bridgetrack.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:ads.cleveland.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:ads.creative-serving.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:ads.masslive.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:ads.mediade.sk
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:ads.mlive.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:ads.nj.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:ads.nola.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:ads.oregonlive.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:ads.p161.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:ads.pennlive.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:ads.pointroll.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:ads.pubmatic.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:ads.servebom.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:ads.stickyadstv.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:ads.syracuse.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:ads.yahoo.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:adtechus.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:advertising.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:at.atwola.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:atdmt.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:bs.serving-sys.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:burstnet.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:casalemedia.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:chitika.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:collective-media.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:doubleclick.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:fastclick.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:googleadservices.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:interclick.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:media6degrees.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:mediaplex.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:mm.chitika.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:oasn04.247realmedia.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:pointroll.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:questionmarket.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:revsci.net
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:ru4.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:serving-sys.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:smartadserver.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:statcounter.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:stats.adotube.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:statse.webtrendslive.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:t.pointroll.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:tacoda.at.atwola.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:tribalfusion.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:www.burstnet.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:xiti.com
   C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\1iv2brg4.default\cookies.sqlite:zedo.com
 




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users