Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

rootkit on my asus n50vn


  • Please log in to reply
24 replies to this topic

#1 Xblee

Xblee

  • Members
  • 18 posts
  • OFFLINE
  •  

Posted 13 November 2014 - 03:08 PM

Hello. I have a serious problem, can not keep to get rid of a virus that rooting my computer. no matter whether windows or linux. Present situation: cmos reset, active kill disk from dos, reset disk, fresh installation of windows 7 prof x64, install anti-malware Emisoft, the result: Scan type: Smart Scan
Objects: Rootkits, Memory, Traces, C: \ Windows \, C: \ Program Files \, C: \ Program Files (x86) \
 
PNP detection: Enabled
Scan compressed files: Off
Scanning ADS: Enabled
The filter file extensions: Off
Advanced cache: Enabled
Dezpośredni disk access: Disabled
 
Scanning started: 2014-11-13 7:17:21 p.m.
Key: HKEY_LOCAL_MACHINE \ SOFTWARE \ CLASSES \ PROTECTOR_DLL.PROTECTORBHO Found: Application.AdReg (A)
Key: HKEY_LOCAL_MACHINE \ SOFTWARE \ CLASSES \ PROTECTOR_DLL.PROTECTORBHO.1 Found: Application.AdReg (A)
 
Scanned: 124873
Found: 2.
Antivirus ordered to contact for help.

Edited by Queen-Evie, 13 November 2014 - 03:37 PM.
moved from Windows 7 to the appropriate forum


BC AdBot (Login to Remove)

 


#2 Alex&Vanko

Alex&Vanko

  • Banned
  • 1,394 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:34 PM

Posted 13 November 2014 - 03:18 PM

To contact to pay for help may be.



#3 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,690 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:12:34 PM

Posted 13 November 2014 - 03:31 PM

Please run Malwarebytes AntiMalware
 
Please download Malwarebytes Anti-Malware.  After clicking on the link the download will start automatically.
 
1)  Double-click on mbam-setup.exe, then click on Run to install the application, follow the prompts through the installation.
 
2)  Malwarebytes will automatically open.  If this is the first time you have run this version of Malwarbytes you will see an image like the one below.
 
mbam1_zps95cc812c.png
 
Click on Update Now, after Malwarebytes is updated click on Scan.
 
If this isn't the first time you have run this version, then you will see an image like the one below.  Click on Scan
 
mbam1_zps98e7fba9.png
 
You will be prompted to update Malwarebytes, to do so click on Update Now.
 
 mbam2_zps85f38f0c.png
 
3)  The scan will automatically run now.
 
malwarerun_zps9abd4ef1.png
 
 
4)  When the scan is complete the results will be displayed.  Click on Quarantine All, then click on Apply Actions
 
mbam4_zps23e52ad4.png
 
 
5)  To complete any actions taken you will be asked if you want to restart your computer, click on Yes
 
 mbam4_zps490948cc.png
 
6)  Please post the Malwarebytes log.
 
To find your Malwarebytes log,download mbam-check.exe from here and save it to your desktop.
 

 

To open the log double click on mbam-check.exe on your desktop.  When the log opens, scroll down toward the bottom of the log to Quarantined Items.  Copy and paste this in your next post.

 

 

Please run TDSSKiller.
 
Please download TDSSKiller from here and save it to your Desktop.
 
1.  Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
 
tdss1_zps90132559.png
 
2.  Check Loaded Modules, Verify Driver Digital Signature, and Detect TDLFS file system.
 
If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now.
 
tdsskillermultiple_zps472c18eb.png
 
3.  Click Start Scan and allow the scan process to run.
 
tdss4_zps6792a13c.png
 
4.  If threats are detected select Cure (if available) for all of them unless otherwise instructed.
 
***Do NOT select Delete!
 
Click on Continue.
 
tdss5_zps98fc5887.png
 
5.  Click on Reboot computer.
 

 

Please copy the TDSSKiller.[Version]_[Date]_[Time]_log.txt file found in your root directory (typically c:\) and paste it into your next reply.

 

 

Please run the ESET OnlineScan

This scan takes quite a long time to run, so be prepared to have the time to allow this to run till it is completed.

***Please note. If you run this scan using Internet Explorer you won't need to download the Eset Smartinstaller.***

  • Click on this link to open ESET OnlineScan in a new window.
  • The ESET Online Scanner page will open, click on Yes, I agree to the trems of use, then click on Start, the scan will now begine.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#4 Xblee

Xblee
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  

Posted 13 November 2014 - 03:36 PM

sorry


Edited by Xblee, 13 November 2014 - 03:51 PM.


#5 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,690 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:12:34 PM

Posted 13 November 2014 - 03:47 PM

You cannot run Combofix in this forum.  A moderator will probably move this to a more appropriate forum if it isn't removed soon.

 

You should only do what is requested by those helping you, to just start running scans on your own will only prolong a repair and confuse the topic.


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#6 Xblee

Xblee
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  

Posted 13 November 2014 - 03:56 PM

mbam-check result log version:     2.1.1.1001
========================================
 
User Account type:                 Administrator
OS:                                Windows 7 Service Pack 1 Service Pack 1 64 bit Operating System
Current Version and Build:         6.1.7601.0 
Malwarebytes Anti-Malware:         2.0.3.1025
Installed On:                      2014/11/13
Malware Database:                  2014.11.13.08
Rootkit Database:                  2014.11.12.01
Remediation Database:              2013.10.16.01
IP Database:                       0000.00.00.00
Domain Database:                   0000.00.00.00
License:                           Trial
Malware Protection:                4 (The service is running.)
Malicious Website Protection:      4 (The service is running.)
Chameleon:                         0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMChameleon
Log Created:                       2014/11/13 20:55:46
Compatibility Flag Settings:
=================================
 
 
 
 
 
Malwarebytes Anti-Malware Shell Extension Block Check:
======================================================
 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Blocked:
 
MBAM Startup Entries: 
=====================
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
 
Malwarebytes Anti-Malware Service and Driver Status:
=======================================================
 
--------------Driver File Info:--------------
C:\Windows\system32\drivers\mbam.sys
File Size:     25816 BYTES FileVersion: 0.1.15.0 MD5: [5c3669b71657f22e67a1d4bd49d2cbe7]
C:\Windows\system32\drivers\mwac.sys
File Size:     63704 BYTES FileVersion: 1.0.6.0 MD5: [95ef63a7827d4e3a229cbbcb42619e93]
C:\Windows\system32\drivers\mbamswissarmy.sys
File Size:    129752 BYTES FileVersion: 0.2.13.0 MD5: [26c43960c99ee861a5d0edc4dcf3b1c3]
C:\Windows\system32\drivers\mbamchameleon.sys
File Size:     93400 BYTES FileVersion: 1.1.4.0 MD5: [d3311b31c470e7681b14d9b014cbf9ed]
 
--------------MBAMProtector:--------------
Type:                   2
State:                  4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
--------------MBAMService:--------------
Type:                   16
State:                  4 (The service is running.)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
--------------MBAMScheduler:--------------
Type:                   16
State:                  4 (The service is running.)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
--------------MBAMChameleon:--------------
Type:                   N/A
State:                  0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMChameleon
WIN32_EXIT_CODE:        N/A
SERVICE_EXIT_CODE:      N/A
CHECKPOINT:             N/A
WAIT_HINT:              N/A
 
 
--------------MBAMWebAccessControl:--------------
Type:                   2
State:                  4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
Required Dependencies:
======================
 
--------------BFE:--------------
Type:                   32
State:                  4 (The service is running.)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE
DisplayName                   REG_SZ @%SystemRoot%\system32\bfe.dll,-1001
Group                         REG_SZ NetworkProvider
ImagePath                     REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k LocalServiceNoNetwork
Description                   REG_SZ @%SystemRoot%\system32\bfe.dll,-1002
ObjectName                    REG_SZ NT AUTHORITY\LocalService
ErrorControl                  REG_DWORD 1
Start                         REG_DWORD 2
Type                          REG_DWORD 32
DependOnService               REG_MULTI_SZ RpcSs
 
ServiceSidType                REG_DWORD 3
RequiredPrivileges            REG_MULTI_SZ SeAuditPrivilege
 
FailureActions                REG_BINARY Binary Data
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters
ServiceDll                    REG_EXPAND_SZ %SystemRoot%\System32\bfe.dll
ServiceDllUnloadOnStop        REG_DWORD 1
ServiceMain                   REG_SZ BfeServiceMain
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\BootTime
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\BootTime\Filter
{dc95b53e-01cf-4058-821d-350b3d0d4676}REG_BINARY Binary Data
 
{2dd96961-5757-434f-b617-34e732517c0e}REG_BINARY Binary Data
 
{2db25e6c-f07a-44f4-b6c8-50a330d2790b}REG_BINARY Binary Data
 
{c42f1cd6-3a95-4ae2-a513-793c3ae610c7}REG_BINARY Binary Data
 
{0c41d586-9c19-4e01-9d66-b5b98a97576e}REG_BINARY Binary Data
 
{12c38916-82ac-4737-8f38-b6957ffebad6}REG_BINARY Binary Data
 
{c970a45d-57f9-4e32-a5bd-886a9662641e}REG_BINARY Binary Data
 
{0c3be01b-fe70-4cc4-89dc-c07996b67e6d}REG_BINARY Binary Data
 
{074f7f68-ee10-428a-89d1-ba78f6c327ca}REG_BINARY Binary Data
 
{c016105c-eb34-4519-a5fd-5f4e4ad4d18e}REG_BINARY Binary Data
 
{a47525e2-725b-4888-8af1-ba5a60c04f4d}REG_BINARY Binary Data
 
{0ccc96a3-8c5c-45e2-b80e-7e37b16cc1ad}REG_BINARY Binary Data
 
{935b7f48-0ede-44dd-9bc2-e00bb635cda3}REG_BINARY Binary Data
 
{941dad9d-7b1a-4354-997b-00cf1aa9b35c}REG_BINARY Binary Data
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Filter
{dc95b53e-01cf-4058-821d-350b3d0d4676}REG_BINARY Binary Data
 
{f444c576-6e60-4ea2-9faa-80d57ed12cd2}REG_BINARY Binary Data
 
{0c41d586-9c19-4e01-9d66-b5b98a97576e}REG_BINARY Binary Data
 
{12c38916-82ac-4737-8f38-b6957ffebad6}REG_BINARY Binary Data
 
{c970a45d-57f9-4e32-a5bd-886a9662641e}REG_BINARY Binary Data
 
{0c3be01b-fe70-4cc4-89dc-c07996b67e6d}REG_BINARY Binary Data
 
{4d9581d2-aef8-4993-84cd-b986ced80d42}REG_BINARY Binary Data
 
{be7cbdf4-b192-4aa5-94f8-1fb5c5ee07bc}REG_BINARY Binary Data
 
{716b48eb-0a35-4a76-92ab-1d987230d288}REG_BINARY Binary Data
 
{1165065e-4996-4338-abaf-4b8556b4d431}REG_BINARY Binary Data
 
{07a24961-a760-4e80-b263-6d275e1b09cb}REG_BINARY Binary Data
 
{5b0cb2e2-ab87-4974-9f1c-2f22a654eeb9}REG_BINARY Binary Data
 
{b6b2ca61-fb98-4422-adc2-e7cf56b3680c}REG_BINARY Binary Data
 
{0aa7fff8-919f-453c-928c-28a12122ba38}REG_BINARY Binary Data
 
{074f7f68-ee10-428a-89d1-ba78f6c327ca}REG_BINARY Binary Data
 
{c016105c-eb34-4519-a5fd-5f4e4ad4d18e}REG_BINARY Binary Data
 
{a47525e2-725b-4888-8af1-ba5a60c04f4d}REG_BINARY Binary Data
 
{0ccc96a3-8c5c-45e2-b80e-7e37b16cc1ad}REG_BINARY Binary Data
 
{91ffecf0-0a9e-4572-95f1-a7111af86967}REG_BINARY Binary Data
 
{64e55933-15a5-495d-a928-ccca43d44875}REG_BINARY Binary Data
 
{13bfd422-6f75-4408-8924-9400ec0cb19c}REG_BINARY Binary Data
 
{cbfb56db-3c85-4543-9bc2-76ea28cdd74e}REG_BINARY Binary Data
 
{2dd96961-5757-434f-b617-34e732517c0e}REG_BINARY Binary Data
 
{375fb39b-08c6-40f2-bdf2-08fa63f970a2}REG_BINARY Binary Data
 
{2db25e6c-f07a-44f4-b6c8-50a330d2790b}REG_BINARY Binary Data
 
{c42f1cd6-3a95-4ae2-a513-793c3ae610c7}REG_BINARY Binary Data
 
{b6fdab6b-dcc6-43e3-99ce-7aeca65063a4}REG_BINARY Binary Data
 
{3697a558-3ed3-49be-a4c1-c1a4448653b4}REG_BINARY Binary Data
 
{935b7f48-0ede-44dd-9bc2-e00bb635cda3}REG_BINARY Binary Data
 
{941dad9d-7b1a-4354-997b-00cf1aa9b35c}REG_BINARY Binary Data
 
{b02a4013-b6b5-4859-9168-1e3299e43b24}REG_BINARY Binary Data
 
{d870c96c-75ee-46a6-8a02-8e4401a73423}REG_BINARY Binary Data
 
{8b50e2ec-7cf0-4b71-b42e-5b0536f6cab8}REG_BINARY Binary Data
 
{4137b143-2770-43d4-91a2-55bb0a069830}REG_BINARY Binary Data
 
{3180114b-8338-4740-9a16-444134ad62f4}REG_BINARY Binary Data
 
{17043d46-fac2-4561-bca1-0c7a05e95f5f}REG_BINARY Binary Data
 
{567d3836-3f5b-4067-b9c4-952f677010a2}REG_BINARY Binary Data
 
{4e718c57-c397-4221-9fbb-14fd51701d6a}REG_BINARY Binary Data
 
{3a90a266-1519-4d23-911b-e84cd0f02ab8}REG_BINARY Binary Data
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Provider
{decc16ca-3f33-4346-be1e-8fb4ae0f3d62}REG_BINARY Binary Data
 
{4b153735-1049-4480-aab4-d1b9bdc03710}REG_BINARY Binary Data
 
{1bebc969-61a5-4732-a177-847a0817862a}REG_BINARY Binary Data
 
{aa6a7d87-7f8f-4d2a-be53-fda555cd5fe3}REG_BINARY Binary Data
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\SubLayer
{b3cdd441-af90-41ba-a745-7c6008ff2300}REG_BINARY Binary Data
 
{b3cdd441-af90-41ba-a745-7c6008ff2301}REG_BINARY Binary Data
 
{b3cdd441-af90-41ba-a745-7c6008ff2302}REG_BINARY Binary Data
 
{9ba30013-c84e-47e5-ac6e-1e1aed72fa69}REG_BINARY Binary Data
 
--------------fltmgr:--------------
Type:                   2
State:                  4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr
AttachWhenLoaded              REG_DWORD 1
DisplayName                   REG_SZ @%SystemRoot%\system32\drivers\fltmgr.sys,-10001
Group                         REG_SZ FSFilter Infrastructure
ImagePath                     REG_EXPAND_SZ system32\drivers\fltmgr.sys
Description                   REG_SZ @%SystemRoot%\system32\drivers\fltmgr.sys,-10000
ErrorControl                  REG_DWORD 3
Start                         REG_DWORD 0
Tag                           REG_DWORD 1
Type                          REG_DWORD 2
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr\Enum
0                             REG_SZ Root\LEGACY_FLTMGR\0000
Count                         REG_DWORD 1
NextInstance                  REG_DWORD 1
 
 
C:\Windows\system32\drivers\fltmgr.sys
File Size: 289664    BYTES FileVersion: 6.1.7601.17514 MD5: [da6b67270fd9db3697b20fce94950741]
C:\Windows\SysWOW64\olepro32.dll
File Size: 90112     BYTES FileVersion: 6.1.7601.17514 MD5: [703ffd301ab900b047337c5d40fd6f96]
 
 
MBAM Registry Settings and License Info:
========================================
--------------Settings:--------------
Advanced: 
    AutomaticQuarantine:                                       true 
    AutostartProtection:                                       true 
    LimitedMode:                                               false 
    StartSilentMode:                                           false 
    StartupDelay:                                              0 
ApplicationState: 
    First-Run-After-Installation:                              false 
General: 
    DaysUntilNotifyExpiration:                                 5 
    Language:                                                  en 
    RightClickAccess:                                          false 
    SilentErrors:                                              false 
Logging: 
    ExportLog:                                                 true 
Notification: 
ProtectionTray: 
    DisplayMilliseconds:                                       7000 
ScanHistory: 
    Duration_Complete:                                         595894 
    Duration_Driver:                                           0 
    Duration_Filesystem:                                       181 
    Duration_Heuristics:                                       239693 
    Duration_Loading:                                          0 
    Duration_MasterBootRecord:                                 0 
    Duration_Memory:                                           40000 
    Duration_PreScan:                                          13814 
    Duration_Registry:                                         9543 
    Duration_Sector:                                           0 
    Duration_Startup:                                          10112 
    ItemCount_Complete:                                        273490 
    ItemCount_Driver:                                          0 
    ItemCount_Filesystem:                                      28988 
    ItemCount_Heuristics:                                      7179 
    ItemCount_Loading:                                         0 
    ItemCount_MasterBootRecord:                                0 
    ItemCount_Memory:                                          2797 
    ItemCount_PreScan:                                         13750 
    ItemCount_Registry:                                        539 
    ItemCount_Sector:                                          0 
    ItemCount_Startup:                                         1029 
    LastScanDateEpoch:                                         1415907616774 
    LastScanType:                                              1 (Threat Scan)
Update: 
    LastUpdate:                                                2014-11-13T19:40:04 
    NotifyInstallReady:                                        true 
    NotifyOutdatedDatabase:                                    7 
    ProxyPassword:                                              
    ProxyPort:                                                 0 
    ProxyServer:                                                
    ProxyUsername:                                              
    UseProxy:                                                  false 
    UseProxyAuthentication:                                    false 
--------------Account:--------------
  Account Status:                                              Trial 
  Expiration Time:                                             2014/11/27 20:39:14 
  Activation Time:                                             2014/11/13 20:39:14 
  Trial Used:                                                  true 
--------------Access Policies:--------------
 
Scheduler Queue:
================
 
tasks: 
    576321a0-3733-410f-ab0a-63e62e24b6d5:                       
      parameters:                                               
        AutoDelete:                                            false 
        CheckForUpdatesBeforeScanStart:                        true 
        ScanConfig:                                             
          ExitWhenQuarantineCompletes:                         false 
          ExportLog:                                           true 
          FileSystemOption:                                    true 
          Quarantine:                                          Prompt 
          RebootSystemWhenMalwareDetected:                     false 
          ScanArchives:                                        true 
          ScanExtra:                                           true 
          ScanHeuristic:                                       true 
          ScanMemoryObjects:                                   true 
          ScanPUM:                                             2 
          ScanPUP:                                             2 
          ScanRegistry:                                        true 
          ScanRootkits:                                        false 
          ScanStartup:                                         true 
          ScanTargets:                                          
          ScanType:                                            1 (Threat Scan)
          Silent:                                              true 
        StartTaskFromSystemAccount:                            false 
        TaskType:                                              0 
      triggers:                                                 
        ce038a43-9562-42e6-8fd0-7255c9784c94:                   
          dateinterval:                                        1:0:0 
          lastscheduled:                                        
          lasttriggered:                                        
          nextscheduled:                                       Fri, 14 Nov 2014 03:22:46 +0100 
          recovery:                                            23:00:00 
          start:                                               Fri, 14 Nov 2014 03:20:10 +0100 
          timeinterval:                                        00:00:00 
          type:                                                4 
          uuid:                                                ce038a43-9562-42e6-8fd0-7255c9784c94 
      type:                                                    scan 
      uuid:                                                    576321a0-3733-410f-ab0a-63e62e24b6d5 
    d2919900-ba2f-45d5-8f8a-22f454a623ef:                       
      parameters:                                               
        NotifyWhenUpdateCompletes:                             true 
        TaskType:                                              3 
      triggers:                                                 
        3a95ec54-9eaf-48d7-ac40-c2bffac313ab:                   
          dateinterval:                                        0:0:0 
          lastscheduled:                                       Thu, 13 Nov 2014 20:50:46.099056 +0100 
          lasttriggered:                                       Thu, 13 Nov 2014 20:50:46.099056 +0100 
          nextscheduled:                                       Thu, 13 Nov 2014 21:14:39.075887 +0100 
          recovery:                                            00:00:00 
          start:                                               Thu, 13 Nov 2014 21:05:34.075887 +0100 
          timeinterval:                                        01:00:00 
          type:                                                3 
          uuid:                                                3a95ec54-9eaf-48d7-ac40-c2bffac313ab 
      type:                                                    update 
      uuid:                                                    d2919900-ba2f-45d5-8f8a-22f454a623ef 
 
Pending File Rename Operations: 
================================
If any Malwarebytes Anti-Malware items are listed below, the user must reboot to complete a Malwarebytes Anti-Malware upgrade installation.
Pending File Rename Operations: 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\
PendingFileRenameOperations REG_MULTI_SZ \??\C:\Qoobox\Quarantine\C\MoveEx_test0123.vir
 
 
 
MBAMProtector Registry Values:
==============================
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector
Type                          REG_DWORD 2
Start                         REG_DWORD 3
ErrorControl                  REG_DWORD 1
ImagePath                     REG_EXPAND_SZ \??\C:\Windows\system32\drivers\mbam.sys
Group                         REG_SZ FSFilter Anti-Virus
DependOnService               REG_MULTI_SZ FltMgr
 
WOW64                         REG_DWORD 1
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Instances
DefaultInstance               REG_SZ MBAMProtector Instance
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Instances\MBAMProtector Instance
Altitude                      REG_SZ 328800
Flags                         REG_DWORD 0
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Parameters
PassThruFile                  REG_SZ mbampt.exe
ProductPath                   REG_SZ C:\Program Files (x86)\Malwarebytes Anti-Malware
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Enum
0                             REG_SZ Root\LEGACY_MBAMPROTECTOR\0000
Count                         REG_DWORD 1
NextInstance                  REG_DWORD 1
 
MBAMService Registry Values:
============================
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMService
Type                          REG_DWORD 16
Start                         REG_DWORD 2
ErrorControl                  REG_DWORD 1
ImagePath                     REG_EXPAND_SZ "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
DependOnService               REG_MULTI_SZ MBAMProtector
 
WOW64                         REG_DWORD 1
ObjectName                    REG_SZ LocalSystem
Description                   REG_SZ Malwarebytes Anti-Malware service
DelayedAutostart              REG_DWORD 0
 
MBAMScheduler Registry Values:
==============================
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMScheduler
Type                          REG_DWORD 16
Start                         REG_DWORD 2
ErrorControl                  REG_DWORD 1
ImagePath                     REG_EXPAND_SZ "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
WOW64                         REG_DWORD 1
ObjectName                    REG_SZ LocalSystem
Description                   REG_SZ Malwarebytes Anti-Malware scheduler
 
Terminal Services Status for (null) entries in PM logs and GetUserToken errors:
===============================================================================
 
--------------TERMService:--------------
Type:                   32
State:                  1 (The service is not running.) (State is stopped)
WIN32_EXIT_CODE:        1077
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
TermService Start is set to: 3 (Manual Startup)
 
Proxy Status: No proxy is Set
 
LAN Settings:
=============
 
only 'Automatically detect settings' is selected
 
SystemPartition:
================
 
HKEY_LOCAL_MACHINE\SYSTEM\Setup\
SystemPartition REG_SZ \Device\HarddiskVolume1
 
Balloon Tips Status:
====================
 
Enabled
 
Time Format Settings:
=====================
 
Should be:
h:mm:ss tt
AM 
PM 
:
 
Currently:
REG_SZ HH:mm:ss
REG_SZ
REG_SZ
REG_SZ
 
Language and Regional Settings:
===============================
 
ACP: 1250 Please refer to this link for details: Here 
MACCP: 10029 Please refer to this link for details: Here 
OEMCP: 852 Please refer to this link for details: Here 
 
Startup Folders for Error_Expanding_Variables Check:
====================================================
 
All Users Startup Folder Exists.
Current User's Startup Folder Exists.
 
 
Context Menu Entries:
=====================
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
List of MBAM Related Directories:
=================================
 
C:\Program Files (x86)\Malwarebytes Anti-Malware\
7z.dll                                   File Size: 920888    BYTES FileVersion:  9.20.0.0       MD5: [ce5bab535bfa98530ddac4661a751dfe]
changes.txt                             File Size: 3104      BYTES FileVersion:  N/A            MD5: [3ac874d1e1bfd50e4ceb220f5dd73f67]
license.rtf                             File Size: 39478     BYTES FileVersion:  N/A            MD5: [8627b31943a534aad30d154c2b2c1aaf]
master.conf                             File Size: 1258      BYTES FileVersion:  N/A            MD5: [9702ca5e82d3756c6d8af34a2ababaea]
mbam.dll                                 File Size: 579896    BYTES FileVersion:  1.0.16.0       MD5: [59569d4be0d79a2b8c3241c6dcea0034]
mbam.exe                                 File Size: 7229752   BYTES FileVersion:  1.0.1.711      MD5: [f89773dfa9b8c95a3ac2af1e7d99e483]
mbamcore.dll                             File Size: 1829176   BYTES FileVersion:  1.1.20.0       MD5: [a8d4b1d04a5fcd862321ce106da7ce4e]
mbamdor.exe                             File Size: 54072     BYTES FileVersion:  1.0.1.0        MD5: [842c198bb5fb3a051c34d493f3a7dff4]
mbamext.dll                             File Size: 310584    BYTES FileVersion:  3.0.6.0        MD5: [c49fe57cfa679dc1427fd6737bdce551]
mbampt.exe                               File Size: 39736     BYTES FileVersion:  1.0.0.0        MD5: [03cfd2a07ddf755aafac6e459d2d855a]
mbamscheduler.exe                       File Size: 1871160   BYTES FileVersion:  3.1.1.0        MD5: [6d8a2ee4244630b290a837e79c0f37a1]
mbamservice.exe                         File Size: 968504    BYTES FileVersion:  3.0.8.0        MD5: [09d4503cbb6adb3a54e7c7a75090b728]
mbamsrv.dll                             File Size: 4463928   BYTES FileVersion:  1.2.0.0        MD5: [a422816a15cfac50567fd0f6582fd2cf]
msvcp100.dll                             File Size: 421688    BYTES FileVersion:  10.0.40219.325 MD5: [ca55500e2e0515fcc888c4a5e01e64b7]
msvcr100.dll                             File Size: 774456    BYTES FileVersion:  10.0.40219.325 MD5: [4c539e592e50633b21ab1e1fda40a32a]
QtCore4.dll                             File Size: 2732856   BYTES FileVersion:  4.8.4.0        MD5: [61af7614418ba5b9e8b4eb82e459be53]
QtGui4.dll                               File Size: 8575288   BYTES FileVersion:  4.8.4.0        MD5: [2954dc080087cf73818f959cb3ed9c13]
QtNetwork4.dll                           File Size: 909112    BYTES FileVersion:  4.8.4.0        MD5: [d36b759179ddd214743dcfb8ed791fa2]
unins000.dat                             File Size: 26192     BYTES FileVersion:  N/A            MD5: [5a1b4acebdfeac885e2b2296655f4994]
unins000.exe                             File Size: 719327    BYTES FileVersion:  51.52.0.0      MD5: [f0137d490c5fdce171f120ab07197a20]
 
C:\Program Files (x86)\Malwarebytes Anti-Malware\\accessible
qtaccessiblewidgets4.dll                 File Size: 198968    BYTES FileVersion:  4.8.4.0        MD5: [ac1481e30e75034928f50923c42a530d]
 
C:\Program Files (x86)\Malwarebytes Anti-Malware\\Chameleon
 
C:\Program Files (x86)\Malwarebytes Anti-Malware\\Chameleon\Windows
chameleon.chm                           File Size: 235882    BYTES FileVersion:  N/A            MD5: [c4190b71f037714aa77aba294434ba5b]
firefox.com                             File Size: 761656    BYTES FileVersion:  3.1.7.0        MD5: [c0afb3c7e6c7ca3f6e42ff242bbbcb1f]
firefox.exe                             File Size: 761656    BYTES FileVersion:  3.1.7.0        MD5: [c0afb3c7e6c7ca3f6e42ff242bbbcb1f]
firefox.pif                             File Size: 761656    BYTES FileVersion:  3.1.7.0        MD5: [c0afb3c7e6c7ca3f6e42ff242bbbcb1f]
firefox.scr                             File Size: 761656    BYTES FileVersion:  3.1.7.0        MD5: [c0afb3c7e6c7ca3f6e42ff242bbbcb1f]
iexplore.exe                             File Size: 761656    BYTES FileVersion:  3.1.7.0        MD5: [c0afb3c7e6c7ca3f6e42ff242bbbcb1f]
mbam-chameleon.com                       File Size: 761656    BYTES FileVersion:  3.1.7.0        MD5: [c0afb3c7e6c7ca3f6e42ff242bbbcb1f]
mbam-chameleon.exe                       File Size: 761656    BYTES FileVersion:  3.1.7.0        MD5: [c0afb3c7e6c7ca3f6e42ff242bbbcb1f]
mbam-chameleon.pif                       File Size: 761656    BYTES FileVersion:  3.1.7.0        MD5: [c0afb3c7e6c7ca3f6e42ff242bbbcb1f]
mbam-chameleon.scr                       File Size: 761656    BYTES FileVersion:  3.1.7.0        MD5: [c0afb3c7e6c7ca3f6e42ff242bbbcb1f]
mbam-killer.exe                         File Size: 1188664   BYTES FileVersion:  3.0.2.0        MD5: [311251e69b0db0562be1a2d6b556e552]
rundll32.exe                             File Size: 761656    BYTES FileVersion:  3.1.7.0        MD5: [c0afb3c7e6c7ca3f6e42ff242bbbcb1f]
svchost.exe                             File Size: 761656    BYTES FileVersion:  3.1.7.0        MD5: [c0afb3c7e6c7ca3f6e42ff242bbbcb1f]
windows.exe                             File Size: 761656    BYTES FileVersion:  3.1.7.0        MD5: [c0afb3c7e6c7ca3f6e42ff242bbbcb1f]
winlogon.exe                             File Size: 761656    BYTES FileVersion:  3.1.7.0        MD5: [c0afb3c7e6c7ca3f6e42ff242bbbcb1f]
 
C:\Program Files (x86)\Malwarebytes Anti-Malware\\imageformats
qgif4.dll                               File Size: 32568     BYTES FileVersion:  4.8.4.0        MD5: [ff014ac49ac32e5f1c7d6e271b320893]
 
C:\Program Files (x86)\Malwarebytes Anti-Malware\\Languages
lang_ar.qm                               File Size: 139423    BYTES FileVersion:  N/A            MD5: [9771d098e918204a99fa0068f431e6ba]
lang_bg.qm                               File Size: 147865    BYTES FileVersion:  N/A            MD5: [d250b37179f313e58267f7946e0522d4]
lang_ca.qm                               File Size: 149256    BYTES FileVersion:  N/A            MD5: [0cc2735ee2f231ea5d964c323ca73e08]
lang_cs.qm                               File Size: 142601    BYTES FileVersion:  N/A            MD5: [8426f7126d2851a1e6ca1f1f7e45d2ec]
lang_da.qm                               File Size: 143131    BYTES FileVersion:  N/A            MD5: [6fe13d4a5a44a3390bf9940404eeb6c7]
lang_de.qm                               File Size: 151959    BYTES FileVersion:  N/A            MD5: [9517c7c9865b5641c5c250c84b51a6d1]
lang_el.qm                               File Size: 152327    BYTES FileVersion:  N/A            MD5: [4cd483236d99cf40e9d8cf534bac05e7]
lang_en.qm                               File Size: 137689    BYTES FileVersion:  N/A            MD5: [d34a8afc30bb472c443f7f088513ff04]
lang_es.qm                               File Size: 149211    BYTES FileVersion:  N/A            MD5: [1ee5f6535d02c94812e54e3ed65de6ac]
lang_et.qm                               File Size: 141939    BYTES FileVersion:  N/A            MD5: [f6faee4a33654bb27dcf2f9d4cf955ef]
lang_fi.qm                               File Size: 145730    BYTES FileVersion:  N/A            MD5: [9f4ff431ec70747591ef0e0eaf3ed2cb]
lang_fr.qm                               File Size: 153965    BYTES FileVersion:  N/A            MD5: [8dd69dd62ee617dc3ca4f25ab2c70af8]
lang_he.qm                               File Size: 134117    BYTES FileVersion:  N/A            MD5: [3ad149f1778e6e8f8f89ecfe67a1e62e]
lang_hu.qm                               File Size: 147806    BYTES FileVersion:  N/A            MD5: [7c3ae4dde80fa8759968b218a03a7a73]
lang_id.qm                               File Size: 145710    BYTES FileVersion:  N/A            MD5: [c2a0325d9dfb5c5fce7a4832837896e7]
lang_it.qm                               File Size: 148249    BYTES FileVersion:  N/A            MD5: [4766a519a653d8e6f6ad32094a2a059b]
lang_ja.qm                               File Size: 122782    BYTES FileVersion:  N/A            MD5: [339134f906b770b833653682264bdc23]
lang_ko.qm                               File Size: 119240    BYTES FileVersion:  N/A            MD5: [5042df441910dfe9f6a55d3c005b00c7]
lang_lt.qm                               File Size: 146950    BYTES FileVersion:  N/A            MD5: [5c0fca31ff0a6d2b3f6d1722940a2dc6]
lang_lv.qm                               File Size: 146072    BYTES FileVersion:  N/A            MD5: [8623ed6977cd81c0d520f5fd84788d93]
lang_nl.qm                               File Size: 147725    BYTES FileVersion:  N/A            MD5: [1b391d5599be4724018624a27014eb75]
lang_no.qm                               File Size: 144153    BYTES FileVersion:  N/A            MD5: [2d53348f8e74f26f065e0c83e8fff7fe]
lang_pl.qm                               File Size: 147483    BYTES FileVersion:  N/A            MD5: [ce39bae20f8a2b42f93f2f5a5c6dd63e]
lang_pt_BR.qm                           File Size: 146906    BYTES FileVersion:  N/A            MD5: [b337c75fa23ba36176719d54c0269560]
lang_pt_PT.qm                           File Size: 144956    BYTES FileVersion:  N/A            MD5: [b41016907930a96a11aadb348fd9a1b6]
lang_ro.qm                               File Size: 146821    BYTES FileVersion:  N/A            MD5: [69c447559268a873808d5ae48b425ad9]
lang_ru.qm                               File Size: 148179    BYTES FileVersion:  N/A            MD5: [51d4d0c155de54f24b09be7040a7ff15]
lang_sk.qm                               File Size: 144330    BYTES FileVersion:  N/A            MD5: [3a00a97315c24e6820f8939920ef14b4]
lang_sl.qm                               File Size: 144582    BYTES FileVersion:  N/A            MD5: [47db99ccdd98936e6a38957321c71317]
lang_sv.qm                               File Size: 145435    BYTES FileVersion:  N/A            MD5: [a2b33c0364aad3e9d7daafdd4f286ee1]
lang_th.qm                               File Size: 137957    BYTES FileVersion:  N/A            MD5: [6a24ece552172d805cd428853255d294]
lang_tr.qm                               File Size: 144262    BYTES FileVersion:  N/A            MD5: [18b7fec7611c038780ee77044e523f70]
lang_vi.qm                               File Size: 144480    BYTES FileVersion:  N/A            MD5: [708062759498e791186bbe64b7246d0c]
 
C:\Program Files (x86)\Malwarebytes Anti-Malware\\Plugins
fixdamage.exe                           File Size: 821560    BYTES FileVersion:  1.1.0.1010     MD5: [0d7dd0e7f98a4f414fed44af0b50128b]
 
C:\Users\xblee\AppData\Roaming\Malwarebytes\Malwarebytes Anti-Malware
 
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware
actions.ref                             File Size: 314       BYTES FileVersion:  N/A            MD5: [b26a36c0696e299fdfebe180c09c2737]
domains.ref                             File Size: 38        BYTES FileVersion:  N/A            MD5: [8c30b536b67543eb68e68b9640d4d498]
exclusions.dat                           File Size: 0         BYTES FileVersion:  N/A            MD5: [d41d8cd98f00b204e9800998ecf8427e]
ips.ref                                 File Size: 33        BYTES FileVersion:  N/A            MD5: [8a1c580788ea8de3f32862c2c1cf373c]
rules.ref                               File Size: 10153932  BYTES FileVersion:  N/A            MD5: [c86f8a2459062581df5d23b276e4e69c]
swissarmy.ref                           File Size: 23872     BYTES FileVersion:  N/A            MD5: [e1516c9e24ab045d1134d0a88fd9a262]
 
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Configuration
build.conf                               File Size: 4571      BYTES FileVersion:  N/A            MD5: [1d542314fd0f1240070caaf8d9ece40c]
database.conf                           File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
gatekeeper.conf                         File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
license.conf                             File Size: 468       BYTES FileVersion:  N/A            MD5: [4ca019edf079bb253e306326dab58580]
manifest.conf                           File Size: 1709      BYTES FileVersion:  N/A            MD5: [629192c401fcefc4342036ee92690f02]
marketing.conf                           File Size: 1434      BYTES FileVersion:  N/A            MD5: [19533c40d9c9778b2ab423dbcf063d80]
net.conf                                 File Size: 6068      BYTES FileVersion:  N/A            MD5: [09d89f596bfd7e9a790c5cc01286f7a8]
notifications.conf                       File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
scheduler.conf                           File Size: 2067      BYTES FileVersion:  N/A            MD5: [4ae8e7680598f54384e179e9e5d3949f]
settings.conf                           File Size: 1996      BYTES FileVersion:  N/A            MD5: [cd9e3412d2d3773f5fadadd94ae829ca]
statistics.conf                         File Size: 513       BYTES FileVersion:  N/A            MD5: [a261fdd887fc92112ff8297b6339216f]
 
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Configuration\Restore
build.conf                               File Size: 4155      BYTES FileVersion:  N/A            MD5: [287475cbeda24d01fe8d34660bc35e1c]
database.conf                           File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
gatekeeper.conf                         File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
license.conf                             File Size: 23        BYTES FileVersion:  N/A            MD5: [0ec01df616b565180556881d8042255b]
manifest.conf                           File Size: 1566      BYTES FileVersion:  N/A            MD5: [29b928c33aec22293649d003ea4ef224]
marketing.conf                           File Size: 1434      BYTES FileVersion:  N/A            MD5: [19533c40d9c9778b2ab423dbcf063d80]
net.conf                                 File Size: 5344      BYTES FileVersion:  N/A            MD5: [973e9c5714cc0c56a7b9c83d876754dd]
notifications.conf                       File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
scheduler.conf                           File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
settings.conf                           File Size: 1725      BYTES FileVersion:  N/A            MD5: [06c52d7137dac16e1661f7cf004f2e4d]
statistics.conf                         File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
 
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Logs
mbam-log-2014-11-13 (20-40-13).xml       File Size: 2496      BYTES FileVersion:  N/A            MD5: [e2ebbc0730043811b22d9f58f9d03654]
protection-log-2014-11-13.xml           File Size: 4011      BYTES FileVersion:  N/A            MD5: [1be92122c3d00745effcae41d6c173db]
 
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Quarantine
 
Malware Exclusions:
===================
Web Exclusions:
================
Quarantined Items:
===================
===============================================================
END OF FILE


#7 Xblee

Xblee
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  

Posted 13 November 2014 - 04:18 PM

20:56:32.0220 0x0fa4  TDSS rootkit removing tool 3.0.0.41 Oct 28 2014 17:58:34
20:56:36.0553 0x0fa4  ============================================================
20:56:36.0553 0x0fa4  Current date / time: 2014/11/13 20:56:36.0553
20:56:36.0553 0x0fa4  SystemInfo:
20:56:36.0553 0x0fa4  
20:56:36.0553 0x0fa4  OS Version: 6.1.7601 ServicePack: 1.0
20:56:36.0553 0x0fa4  Product type: Workstation
20:56:36.0553 0x0fa4  ComputerName: XBLEE-KOMPUTER
20:56:36.0554 0x0fa4  UserName: xblee
20:56:36.0554 0x0fa4  Windows directory: C:\Windows
20:56:36.0554 0x0fa4  System windows directory: C:\Windows
20:56:36.0554 0x0fa4  Running under WOW64
20:56:36.0554 0x0fa4  Processor architecture: Intel x64
20:56:36.0554 0x0fa4  Number of processors: 2
20:56:36.0554 0x0fa4  Page size: 0x1000
20:56:36.0554 0x0fa4  Boot type: Normal boot
20:56:36.0554 0x0fa4  ============================================================
20:56:40.0263 0x0fa4  KLMD registered as C:\Windows\system32\drivers\55125361.sys
20:56:40.0516 0x0fa4  System UUID: {B7132EFC-7A24-3847-61DC-414AB42AA016}
20:56:41.0251 0x0fa4  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:56:41.0267 0x0fa4  Drive \Device\Harddisk1\DR1 - Size: 0x75E00000 ( 1.84 Gb ), SectorSize: 0x200, Cylinders: 0xF0, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
20:56:41.0267 0x0fa4  ============================================================
20:56:41.0267 0x0fa4  \Device\Harddisk0\DR0:
20:56:41.0267 0x0fa4  MBR partitions:
20:56:41.0267 0x0fa4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
20:56:41.0267 0x0fa4  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353000
20:56:41.0267 0x0fa4  \Device\Harddisk1\DR1:
20:56:41.0267 0x0fa4  MBR partitions:
20:56:41.0267 0x0fa4  ============================================================
20:56:41.0314 0x0fa4  C: <-> \Device\Harddisk0\DR0\Partition2
20:56:41.0314 0x0fa4  ============================================================
20:56:41.0314 0x0fa4  Initialize success
20:56:41.0314 0x0fa4  ============================================================
20:57:43.0347 0x0bbc  KLMD registered as C:\Windows\system32\drivers\31676794.sys
20:57:45.0228 0x0bbc  Deinitialize success


#8 Xblee

Xblee
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  

Posted 13 November 2014 - 04:24 PM

20:59:49.0652 0x0b88  TDSS rootkit removing tool 3.0.0.41 Oct 28 2014 17:58:34
20:59:49.0855 0x0b88  ============================================================
20:59:49.0855 0x0b88  Current date / time: 2014/11/13 20:59:49.0855
20:59:49.0855 0x0b88  SystemInfo:
20:59:49.0855 0x0b88  
20:59:49.0855 0x0b88  OS Version: 6.1.7601 ServicePack: 1.0
20:59:49.0855 0x0b88  Product type: Workstation
20:59:49.0855 0x0b88  ComputerName: XBLEE-KOMPUTER
20:59:49.0855 0x0b88  UserName: xblee
20:59:49.0855 0x0b88  Windows directory: C:\Windows
20:59:49.0855 0x0b88  System windows directory: C:\Windows
20:59:49.0855 0x0b88  Running under WOW64
20:59:49.0855 0x0b88  Processor architecture: Intel x64
20:59:49.0855 0x0b88  Number of processors: 2
20:59:49.0855 0x0b88  Page size: 0x1000
20:59:49.0855 0x0b88  Boot type: Normal boot
20:59:49.0855 0x0b88  ============================================================
20:59:49.0855 0x0b88  BG loaded
20:59:50.0230 0x0b88  System UUID: {B7132EFC-7A24-3847-61DC-414AB42AA016}
20:59:51.0961 0x0b88  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:59:51.0961 0x0b88  Drive \Device\Harddisk1\DR1 - Size: 0x75E00000 ( 1.84 Gb ), SectorSize: 0x200, Cylinders: 0xF0, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
20:59:51.0977 0x0b88  ============================================================
20:59:51.0977 0x0b88  \Device\Harddisk0\DR0:
20:59:51.0977 0x0b88  MBR partitions:
20:59:51.0977 0x0b88  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
20:59:51.0977 0x0b88  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353000
20:59:51.0977 0x0b88  \Device\Harddisk1\DR1:
20:59:51.0977 0x0b88  MBR partitions:
20:59:51.0977 0x0b88  ============================================================
20:59:52.0039 0x0b88  C: <-> \Device\Harddisk0\DR0\Partition2
20:59:52.0039 0x0b88  ============================================================
20:59:52.0039 0x0b88  Initialize success
20:59:52.0039 0x0b88  ============================================================
21:00:01.0662 0x03e4  ============================================================
21:00:01.0662 0x03e4  Scan started
21:00:01.0662 0x03e4  Mode: Manual; 
21:00:01.0662 0x03e4  ============================================================
21:00:01.0662 0x03e4  KSN ping started
21:00:02.0364 0x03e4  KSN ping finished: false
21:00:10.0990 0x03e4  ================ Scan system memory ========================
21:00:10.0990 0x03e4  System memory - ok
21:00:10.0990 0x03e4  ================ Scan services =============================
21:00:11.0521 0x03e4  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
21:00:11.0536 0x03e4  1394ohci - ok
21:00:11.0692 0x03e4  [ 73C035299E3044636104CA7A7634A6AC, ED1D4904E2D1D1C72ED9697297AE1B64860098BA2F6F63F7A1426413007DF138 ] a2acc           C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys
21:00:11.0708 0x03e4  a2acc - ok
21:00:11.0958 0x03e4  [ 5E65B8C0E1AAE00E749BA4AC3B88E854, D641DDD1B14AED7FD1FB8D2B27BAC80548DF6D89A44FD57244FBAFC6F448BA37 ] a2AntiMalware   C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
21:00:12.0051 0x03e4  a2AntiMalware - ok
21:00:12.0067 0x03e4  [ D27A8B7BB0E15DFBFC6B4E774EE17AD9, CBAD45B3FFFD30C34AF918009F699B65F89043D0799FC25D2472381912F86F93 ] A2DDA           C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys
21:00:12.0067 0x03e4  A2DDA - ok
21:00:12.0114 0x03e4  [ 05936579605018BD2BC528FF2C1AD95F, 763C2E76F9078F6A74D5BCCB4DD8A10C82AEB9C9F5A45C3706A587FA2D03E7D3 ] a2injectiondriver C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys
21:00:12.0114 0x03e4  a2injectiondriver - ok
21:00:12.0114 0x03e4  [ B1AB7116D14667A2238DAEFE20B7F4D0, DC8A9093A6F759657C3354931A462FCCAF3533A907FB7152380EB2E9B4AD3BF8 ] a2util          C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys
21:00:12.0129 0x03e4  a2util - ok
21:00:12.0176 0x03e4  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
21:00:12.0176 0x03e4  ACPI - ok
21:00:12.0192 0x03e4  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
21:00:12.0192 0x03e4  AcpiPmi - ok
21:00:12.0847 0x03e4  [ D51145F6B0CE987850F13A61DAD5E531, 67CB6AB8C42781FA717CBEF81F3C658747E3B7814383056A56EDA99583FDBFD5 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:00:12.0862 0x03e4  AdobeFlashPlayerUpdateSvc - ok
21:00:12.0925 0x03e4  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
21:00:12.0956 0x03e4  adp94xx - ok
21:00:12.0987 0x03e4  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
21:00:13.0003 0x03e4  adpahci - ok
21:00:13.0034 0x03e4  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
21:00:13.0034 0x03e4  adpu320 - ok
21:00:13.0065 0x03e4  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
21:00:13.0065 0x03e4  AeLookupSvc - ok
21:00:13.0112 0x03e4  [ D31DC7A16DEA4A9BAF179F3D6FBDB38C, 532678D86E3E667F2E789C4873565E0B92C549A93F10802BB6D5B505CA3238CE ] AFD             C:\Windows\system32\drivers\afd.sys
21:00:13.0128 0x03e4  AFD - ok
21:00:13.0143 0x03e4  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
21:00:13.0143 0x03e4  agp440 - ok
21:00:13.0174 0x03e4  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
21:00:13.0174 0x03e4  ALG - ok
21:00:13.0190 0x03e4  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
21:00:13.0190 0x03e4  aliide - ok
21:00:13.0206 0x03e4  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
21:00:13.0206 0x03e4  amdide - ok
21:00:13.0206 0x03e4  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
21:00:13.0221 0x03e4  AmdK8 - ok
21:00:13.0221 0x03e4  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
21:00:13.0237 0x03e4  AmdPPM - ok
21:00:13.0252 0x03e4  [ 6EC6D772EAE38DC17C14AED9B178D24B, B4FB936B31B1265B8CC6B426C64965C34D0CCF1638E645ACD65E88F4AFFC57A6 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
21:00:13.0252 0x03e4  amdsata - ok
21:00:13.0268 0x03e4  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
21:00:13.0284 0x03e4  amdsbs - ok
21:00:13.0284 0x03e4  [ 1142A21DB581A84EA5597B03A26EBAA0, F94EB140D0CD068760D7EB081FF75154C75DAC75E5E24B6DE4E4F9CE65A70343 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
21:00:13.0284 0x03e4  amdxata - ok
21:00:13.0299 0x03e4  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
21:00:13.0299 0x03e4  AppID - ok
21:00:13.0330 0x03e4  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
21:00:13.0346 0x03e4  AppIDSvc - ok
21:00:13.0362 0x03e4  [ 3977D4A871CA0D4F2ED1E7DB46829731, 2AF1C3225994769C3FD25CD7E9603964B035576F25B0B6D91545566E0722FFAA ] Appinfo         C:\Windows\System32\appinfo.dll
21:00:13.0362 0x03e4  Appinfo - ok
21:00:13.0424 0x03e4  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
21:00:13.0440 0x03e4  AppMgmt - ok
21:00:13.0455 0x03e4  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
21:00:13.0455 0x03e4  arc - ok
21:00:13.0471 0x03e4  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
21:00:13.0471 0x03e4  arcsas - ok
21:00:13.0486 0x03e4  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
21:00:13.0486 0x03e4  AsyncMac - ok
21:00:13.0486 0x03e4  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
21:00:13.0486 0x03e4  atapi - ok
21:00:13.0549 0x03e4  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:00:13.0549 0x03e4  AudioEndpointBuilder - ok
21:00:13.0596 0x03e4  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
21:00:13.0611 0x03e4  AudioSrv - ok
21:00:13.0642 0x03e4  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
21:00:13.0658 0x03e4  AxInstSV - ok
21:00:13.0736 0x03e4  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
21:00:13.0752 0x03e4  b06bdrv - ok
21:00:13.0783 0x03e4  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
21:00:13.0798 0x03e4  b57nd60a - ok
21:00:13.0845 0x03e4  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
21:00:13.0861 0x03e4  BDESVC - ok
21:00:13.0876 0x03e4  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
21:00:13.0876 0x03e4  Beep - ok
21:00:13.0954 0x03e4  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
21:00:13.0970 0x03e4  BFE - ok
21:00:14.0126 0x03e4  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll
21:00:14.0142 0x03e4  BITS - ok
21:00:14.0173 0x03e4  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
21:00:14.0173 0x03e4  blbdrive - ok
21:00:14.0188 0x03e4  [ 91CE0D3DC57DD377E690A2D324022B08, 61874463956C0BCA5139522F34E974E5F638A092E0FD5C59DD30DE61D9AB8B0E ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
21:00:14.0188 0x03e4  bowser - ok
21:00:14.0220 0x03e4  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
21:00:14.0220 0x03e4  BrFiltLo - ok
21:00:14.0220 0x03e4  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
21:00:14.0220 0x03e4  BrFiltUp - ok
21:00:14.0235 0x03e4  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
21:00:14.0235 0x03e4  BridgeMP - ok
21:00:14.0282 0x03e4  [ 8EF0D5C41EC907751B8429162B1239ED, 9CC25F1F93FACA6F6CE23F78EB58590C39A2E3C8A3ACDF400E8A9DE0757EADAE ] Browser         C:\Windows\System32\browser.dll
21:00:14.0282 0x03e4  Browser - ok
21:00:14.0298 0x03e4  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
21:00:14.0313 0x03e4  Brserid - ok
21:00:14.0313 0x03e4  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
21:00:14.0313 0x03e4  BrSerWdm - ok
21:00:14.0313 0x03e4  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
21:00:14.0313 0x03e4  BrUsbMdm - ok
21:00:14.0329 0x03e4  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
21:00:14.0329 0x03e4  BrUsbSer - ok
21:00:14.0329 0x03e4  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
21:00:14.0329 0x03e4  BTHMODEM - ok
21:00:14.0344 0x03e4  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
21:00:14.0344 0x03e4  bthserv - ok
21:00:14.0376 0x03e4  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
21:00:14.0376 0x03e4  cdfs - ok
21:00:14.0407 0x03e4  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
21:00:14.0407 0x03e4  cdrom - ok
21:00:14.0438 0x03e4  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
21:00:14.0438 0x03e4  CertPropSvc - ok
21:00:14.0438 0x03e4  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
21:00:14.0438 0x03e4  circlass - ok
21:00:14.0469 0x03e4  [ B794DCF38C965FA2F93C45A7C3D582C5, 0E483EAF835B85AA4B6F449F9BB68AF0A3EE4192D29CD72F4B812F1E4D9E9A7C ] cleanhlp        C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys
21:00:14.0469 0x03e4  cleanhlp - ok
21:00:14.0516 0x03e4  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
21:00:14.0516 0x03e4  CLFS - ok
21:00:14.0719 0x03e4  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:00:14.0750 0x03e4  clr_optimization_v2.0.50727_32 - ok
21:00:14.0875 0x03e4  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:00:14.0922 0x03e4  clr_optimization_v2.0.50727_64 - ok
21:00:14.0953 0x03e4  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
21:00:14.0953 0x03e4  CmBatt - ok
21:00:14.0968 0x03e4  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
21:00:14.0968 0x03e4  cmdide - ok
21:00:15.0000 0x03e4  [ D5FEA92400F12412B3922087C09DA6A5, C8CD9215D26D3295FE487C96A4FC3F4C8AFED764AE9445D9858D7489823A8A2B ] CNG             C:\Windows\system32\Drivers\cng.sys
21:00:15.0015 0x03e4  CNG - ok
21:00:15.0062 0x03e4  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
21:00:15.0062 0x03e4  Compbatt - ok
21:00:15.0093 0x03e4  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
21:00:15.0093 0x03e4  CompositeBus - ok
21:00:15.0109 0x03e4  COMSysApp - ok
21:00:15.0140 0x03e4  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
21:00:15.0140 0x03e4  crcdisk - ok
21:00:15.0187 0x03e4  [ 15597883FBE9B056F276ADA3AD87D9AF, B347E0B11228E38313C59C8ED984253A8A1FF482ED137CF5F488C4AFD6B08857 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
21:00:15.0202 0x03e4  CryptSvc - ok
21:00:15.0249 0x03e4  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
21:00:15.0249 0x03e4  CSC - ok
21:00:15.0343 0x03e4  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
21:00:15.0374 0x03e4  CscService - ok
21:00:15.0468 0x03e4  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
21:00:15.0499 0x03e4  DcomLaunch - ok
21:00:15.0546 0x03e4  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
21:00:15.0561 0x03e4  defragsvc - ok
21:00:15.0577 0x03e4  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
21:00:15.0592 0x03e4  DfsC - ok
21:00:15.0639 0x03e4  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
21:00:15.0655 0x03e4  Dhcp - ok
21:00:15.0670 0x03e4  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
21:00:15.0670 0x03e4  discache - ok
21:00:15.0702 0x03e4  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
21:00:15.0717 0x03e4  Disk - ok
21:00:15.0764 0x03e4  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
21:00:15.0780 0x03e4  dmvsc - ok
21:00:15.0826 0x03e4  [ CD55F5355D8F55D44C9F4ED875705BD6, 321C26E3CD9F376D30F05FBDF00E96399512ED705D867E8B14793D9CE69A1C1F ] Dnscache        C:\Windows\System32\dnsrslvr.dll
21:00:15.0842 0x03e4  Dnscache - ok
21:00:15.0873 0x03e4  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
21:00:15.0873 0x03e4  dot3svc - ok
21:00:15.0889 0x03e4  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
21:00:15.0904 0x03e4  DPS - ok
21:00:15.0936 0x03e4  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
21:00:15.0936 0x03e4  drmkaud - ok
21:00:16.0014 0x03e4  [ F5BEE30450E18E6B83A5012C100616FD, 44D0577D159FC2BDF4EAD1DC2C7FD14925D075225EF97608CAC52DEE405B08FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
21:00:16.0045 0x03e4  DXGKrnl - ok
21:00:16.0076 0x03e4  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
21:00:16.0076 0x03e4  EapHost - ok
21:00:16.0435 0x03e4  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
21:00:16.0606 0x03e4  ebdrv - ok
21:00:16.0638 0x03e4  [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] EFS             C:\Windows\System32\lsass.exe
21:00:16.0638 0x03e4  EFS - ok
21:00:16.0794 0x03e4  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
21:00:16.0840 0x03e4  ehRecvr - ok
21:00:16.0840 0x03e4  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
21:00:16.0856 0x03e4  ehSched - ok
21:00:16.0903 0x03e4  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
21:00:16.0918 0x03e4  elxstor - ok
21:00:16.0918 0x03e4  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
21:00:16.0918 0x03e4  ErrDev - ok
21:00:16.0981 0x03e4  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
21:00:16.0981 0x03e4  EventSystem - ok
21:00:17.0043 0x03e4  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
21:00:17.0059 0x03e4  exfat - ok
21:00:17.0090 0x03e4  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
21:00:17.0106 0x03e4  fastfat - ok
21:00:17.0184 0x03e4  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
21:00:17.0215 0x03e4  Fax - ok
21:00:17.0230 0x03e4  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
21:00:17.0230 0x03e4  fdc - ok
21:00:17.0246 0x03e4  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
21:00:17.0246 0x03e4  fdPHost - ok
21:00:17.0262 0x03e4  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
21:00:17.0262 0x03e4  FDResPub - ok
21:00:17.0262 0x03e4  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
21:00:17.0262 0x03e4  FileInfo - ok
21:00:17.0277 0x03e4  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
21:00:17.0277 0x03e4  Filetrace - ok
21:00:17.0277 0x03e4  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
21:00:17.0277 0x03e4  flpydisk - ok
21:00:17.0308 0x03e4  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
21:00:17.0324 0x03e4  FltMgr - ok
21:00:17.0418 0x03e4  [ B4447F606BB19FD8AD0BAFB59B90F5D9, 043E686029DE2710305852E3A416176E400F9FD5FB98E4F2A6F14C060FAABED5 ] FontCache       C:\Windows\system32\FntCache.dll
21:00:17.0480 0x03e4  FontCache - ok
21:00:17.0527 0x03e4  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:00:17.0527 0x03e4  FontCache3.0.0.0 - ok
21:00:17.0542 0x03e4  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
21:00:17.0558 0x03e4  FsDepends - ok
21:00:17.0558 0x03e4  [ E95EF8547DE20CF0603557C0CF7A9462, 55540B06B7B380CA2DA6EEE2D76C6CD6131ADB02B2D0B172A36536863A0C57B6 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
21:00:17.0558 0x03e4  Fs_Rec - ok
21:00:17.0574 0x03e4  [ 1F7B25B858FA27015169FE95E54108ED, 72DD12E924AA7273B3E4BDD2A2C581DECE304C8EF3D44EA79ABB032F3F95DCE5 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
21:00:17.0574 0x03e4  fvevol - ok
21:00:17.0589 0x03e4  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
21:00:17.0605 0x03e4  gagp30kx - ok
21:00:18.0151 0x03e4  [ 9A9B2E57B2FF59AE76652DA8723640D0, 8D7458CC85EA9B9008B3F98F14C62A33035840D85058664B55928CB3464903FC ] GlassWire       C:\Program Files (x86)\GlassWire\GWCtlSrv.exe
21:00:18.0260 0x03e4  GlassWire - ok
21:00:18.0338 0x03e4  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
21:00:18.0354 0x03e4  gpsvc - ok
21:00:18.0447 0x03e4  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:00:18.0447 0x03e4  gupdate - ok
21:00:18.0478 0x03e4  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:00:18.0478 0x03e4  gupdatem - ok
21:00:18.0510 0x03e4  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
21:00:18.0510 0x03e4  gusvc - ok
21:00:18.0556 0x03e4  [ 2B0E73BABE1B2B01F477734E3B5CF8A7, A067BF8B9170BF7360FAEC1D4689BF9E998BF0ED6B1C0708C32878442C8AEC2A ] gwdrv           C:\Windows\system32\DRIVERS\gwdrv.sys
21:00:18.0556 0x03e4  gwdrv - ok
21:00:18.0603 0x03e4  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
21:00:18.0619 0x03e4  hcw85cir - ok
21:00:18.0681 0x03e4  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:00:18.0697 0x03e4  HdAudAddService - ok
21:00:18.0712 0x03e4  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
21:00:18.0712 0x03e4  HDAudBus - ok
21:00:18.0728 0x03e4  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
21:00:18.0728 0x03e4  HidBatt - ok
21:00:18.0744 0x03e4  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
21:00:18.0744 0x03e4  HidBth - ok
21:00:18.0759 0x03e4  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
21:00:18.0759 0x03e4  HidIr - ok
21:00:18.0775 0x03e4  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
21:00:18.0790 0x03e4  hidserv - ok
21:00:18.0806 0x03e4  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
21:00:18.0822 0x03e4  HidUsb - ok
21:00:18.0837 0x03e4  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
21:00:18.0853 0x03e4  hkmsvc - ok
21:00:18.0884 0x03e4  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:00:18.0884 0x03e4  HomeGroupListener - ok
21:00:18.0915 0x03e4  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:00:18.0915 0x03e4  HomeGroupProvider - ok
21:00:18.0931 0x03e4  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
21:00:18.0946 0x03e4  HpSAMD - ok
21:00:18.0993 0x03e4  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
21:00:19.0009 0x03e4  HTTP - ok
21:00:19.0056 0x03e4  [ 4DBBFCE863FE1B64C770EB53A3BA5860, DA77FB5D865779834CDCEE74200B9346FA3A4D0465F7A49C877ED6F786232CEF ] huawei_cdcacm   C:\Windows\system32\DRIVERS\ew_jucdcacm.sys
21:00:19.0056 0x03e4  huawei_cdcacm - ok
21:00:19.0071 0x03e4  [ 1642C62F1FD5E1FF44608283994A7BB8, 4646AA0EF74A2AEE6C17D12206FCFE1E84D6FA712AD95A171F16D11BC9D3F11A ] huawei_enumerator C:\Windows\system32\DRIVERS\ew_jubusenum.sys
21:00:19.0071 0x03e4  huawei_enumerator - ok
21:00:19.0196 0x03e4  [ E90DA42B87D684DEBFB73B38A718A006, BB18C63C1982F5CB99C9B65D2B801E8C1909AD7CD0171326DC0015D6B781B451 ] HWDeviceService64.exe C:\ProgramData\DatacardService\HWDeviceService64.exe
21:00:19.0212 0x03e4  HWDeviceService64.exe - ok
21:00:19.0243 0x03e4  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
21:00:19.0243 0x03e4  hwpolicy - ok
21:00:19.0274 0x03e4  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
21:00:19.0274 0x03e4  i8042prt - ok
21:00:19.0305 0x03e4  [ 3DF4395A7CF8B7A72A5F4606366B8C2D, 483588B8FC6E05488ED631C4E1CFC398553FEBFA2CD2BB527B4DF12D19774F80 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
21:00:19.0321 0x03e4  iaStorV - ok
21:00:19.0414 0x03e4  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:00:19.0461 0x03e4  idsvc - ok
21:00:19.0477 0x03e4  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
21:00:19.0492 0x03e4  iirsp - ok
21:00:19.0539 0x03e4  [ FCD84C381E0140AF901E58D48882D26B, 76955FFC230C801E8ED890E32076075F04CD6E5EC79E594FDE6D23797A36B406 ] IKEEXT          C:\Windows\System32\ikeext.dll
21:00:19.0555 0x03e4  IKEEXT - ok
21:00:19.0586 0x03e4  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
21:00:19.0586 0x03e4  intelide - ok
21:00:19.0602 0x03e4  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
21:00:19.0602 0x03e4  intelppm - ok
21:00:19.0633 0x03e4  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
21:00:19.0648 0x03e4  IPBusEnum - ok
21:00:19.0664 0x03e4  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:00:19.0664 0x03e4  IpFilterDriver - ok
21:00:19.0711 0x03e4  [ A34A587FFFD45FA649FBA6D03784D257, C9A2BCD4E2A5EB6E320092A3AFD5737ECDCDA0B83EE42314A23C4978F2974767 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
21:00:19.0711 0x03e4  iphlpsvc - ok
21:00:19.0726 0x03e4  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
21:00:19.0726 0x03e4  IPMIDRV - ok
21:00:19.0742 0x03e4  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
21:00:19.0742 0x03e4  IPNAT - ok
21:00:19.0758 0x03e4  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
21:00:19.0758 0x03e4  IRENUM - ok
21:00:19.0773 0x03e4  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
21:00:19.0773 0x03e4  isapnp - ok
21:00:19.0804 0x03e4  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
21:00:19.0804 0x03e4  iScsiPrt - ok
21:00:19.0836 0x03e4  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
21:00:19.0836 0x03e4  kbdclass - ok
21:00:19.0836 0x03e4  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
21:00:19.0851 0x03e4  kbdhid - ok
21:00:19.0882 0x03e4  [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] KeyIso          C:\Windows\system32\lsass.exe
21:00:19.0882 0x03e4  KeyIso - ok
21:00:19.0898 0x03e4  [ CCD53B5BD33CE0C889E830D839C8B66E, 51B7556DA7DAA0BC75E00E53099776016A55FAA115D5A4E6830E12A0A0869C10 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
21:00:19.0914 0x03e4  KSecDD - ok
21:00:19.0929 0x03e4  [ 9FF918A261752C12639E8AD4208D2C2F, B60F7A730C92F2BF7E85A6CA14DD7671AEECEE154CEC83B1E23EF268C25C9E5E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
21:00:19.0929 0x03e4  KSecPkg - ok
21:00:19.0945 0x03e4  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
21:00:19.0945 0x03e4  ksthunk - ok
21:00:20.0007 0x03e4  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
21:00:20.0023 0x03e4  KtmRm - ok
21:00:20.0054 0x03e4  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
21:00:20.0070 0x03e4  LanmanServer - ok
21:00:20.0101 0x03e4  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:00:20.0101 0x03e4  LanmanWorkstation - ok
21:00:20.0148 0x03e4  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
21:00:20.0148 0x03e4  lltdio - ok
21:00:20.0194 0x03e4  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
21:00:20.0194 0x03e4  lltdsvc - ok
21:00:20.0210 0x03e4  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
21:00:20.0210 0x03e4  lmhosts - ok
21:00:20.0226 0x03e4  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
21:00:20.0226 0x03e4  LSI_FC - ok
21:00:20.0241 0x03e4  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
21:00:20.0241 0x03e4  LSI_SAS - ok
21:00:20.0272 0x03e4  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
21:00:20.0272 0x03e4  LSI_SAS2 - ok
21:00:20.0272 0x03e4  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
21:00:20.0288 0x03e4  LSI_SCSI - ok
21:00:20.0288 0x03e4  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
21:00:20.0304 0x03e4  luafv - ok
21:00:20.0335 0x03e4  [ 5C3669B71657F22E67A1D4BD49D2CBE7, 7CAE59AA6CA9CBBD70BBD707A155FB169BF3F71096275BF7C0F415B6A092C671 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
21:00:20.0335 0x03e4  MBAMProtector - ok
21:00:20.0460 0x03e4  [ 6D8A2EE4244630B290A837E79C0F37A1, 6783BBC0BDC93E4D6D43531A1AD0DF5CD26C3BBFA6384927C5CF65AD97FB04AD ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
21:00:20.0491 0x03e4  MBAMScheduler - ok
21:00:20.0647 0x03e4  [ 09D4503CBB6ADB3A54E7C7A75090B728, 6139EA3338FD64205481EDEC813A44F8D395FDA7B67AA431DA61F3631C3EDAE6 ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
21:00:20.0662 0x03e4  MBAMService - ok
21:00:20.0694 0x03e4  [ 26C43960C99EE861A5D0EDC4DCF3B1C3, 6238FB8E785652040CCE3E7044EA52066CE1BF173A1467474D64A3AB214B6BCD ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
21:00:20.0694 0x03e4  MBAMSwissArmy - ok
21:00:20.0756 0x03e4  [ 95EF63A7827D4E3A229CBBCB42619E93, FA38DD035B2C4FC82B60868F49D45A39FBBC96096AAD5A2C8BD752A250255BA7 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
21:00:20.0756 0x03e4  MBAMWebAccessControl - ok
21:00:20.0834 0x03e4  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
21:00:20.0834 0x03e4  Mcx2Svc - ok
21:00:20.0865 0x03e4  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
21:00:20.0865 0x03e4  megasas - ok
21:00:20.0896 0x03e4  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
21:00:20.0912 0x03e4  MegaSR - ok
21:00:20.0943 0x03e4  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
21:00:20.0943 0x03e4  MMCSS - ok
21:00:20.0943 0x03e4  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
21:00:20.0943 0x03e4  Modem - ok
21:00:20.0974 0x03e4  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
21:00:20.0974 0x03e4  monitor - ok
21:00:20.0990 0x03e4  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
21:00:21.0006 0x03e4  mouclass - ok
21:00:21.0021 0x03e4  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\drivers\mouhid.sys
21:00:21.0021 0x03e4  mouhid - ok
21:00:21.0052 0x03e4  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
21:00:21.0052 0x03e4  mountmgr - ok
21:00:21.0068 0x03e4  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
21:00:21.0068 0x03e4  mpio - ok
21:00:21.0084 0x03e4  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
21:00:21.0084 0x03e4  mpsdrv - ok
21:00:21.0130 0x03e4  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
21:00:21.0146 0x03e4  MpsSvc - ok
21:00:21.0162 0x03e4  [ DC722758B8261E1ABAFD31A3C0A66380, 88BBE073E2CCD1DAB4656DDC53D5161E8A91D035ADAC1465D0CEBA86F1BB6D9A ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
21:00:21.0162 0x03e4  MRxDAV - ok
21:00:21.0193 0x03e4  [ FAF015B07E3A2874A790A39B7D2C579F, C614B0E80B38EBF7C670EEB833F5E476B33042097DA07206D6C5EE3E52B9A427 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
21:00:21.0193 0x03e4  mrxsmb - ok
21:00:21.0224 0x03e4  [ 08E2345DF129082BCDFFDC1440F9C00D, 2ADF69F49DF8C43D4440B6C8A62085C51518CA895A88D37264C60A0B4B1EC55F ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:00:21.0224 0x03e4  mrxsmb10 - ok
21:00:21.0240 0x03e4  [ 108D87409C5812EF47D81E22843E8C9D, CAE9B91B6BD1DF1552463BD63A06288F5D3E0B81B040BC1C7EC0C2A0119CCECA ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:00:21.0240 0x03e4  mrxsmb20 - ok
21:00:21.0255 0x03e4  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
21:00:21.0255 0x03e4  msahci - ok
21:00:21.0286 0x03e4  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
21:00:21.0286 0x03e4  msdsm - ok
21:00:21.0318 0x03e4  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
21:00:21.0333 0x03e4  MSDTC - ok
21:00:21.0349 0x03e4  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
21:00:21.0349 0x03e4  Msfs - ok
21:00:21.0364 0x03e4  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
21:00:21.0364 0x03e4  mshidkmdf - ok
21:00:21.0380 0x03e4  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
21:00:21.0380 0x03e4  msisadrv - ok
21:00:21.0411 0x03e4  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
21:00:21.0411 0x03e4  MSiSCSI - ok
21:00:21.0427 0x03e4  msiserver - ok
21:00:21.0474 0x03e4  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
21:00:21.0474 0x03e4  MSKSSRV - ok
21:00:21.0474 0x03e4  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
21:00:21.0474 0x03e4  MSPCLOCK - ok
21:00:21.0489 0x03e4  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
21:00:21.0489 0x03e4  MSPQM - ok
21:00:21.0505 0x03e4  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
21:00:21.0520 0x03e4  MsRPC - ok
21:00:21.0536 0x03e4  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
21:00:21.0536 0x03e4  mssmbios - ok
21:00:21.0536 0x03e4  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
21:00:21.0536 0x03e4  MSTEE - ok
21:00:21.0552 0x03e4  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
21:00:21.0552 0x03e4  MTConfig - ok
21:00:21.0567 0x03e4  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
21:00:21.0567 0x03e4  Mup - ok
21:00:21.0614 0x03e4  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
21:00:21.0630 0x03e4  napagent - ok
21:00:21.0723 0x03e4  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
21:00:21.0739 0x03e4  NativeWifiP - ok
21:00:21.0786 0x03e4  [ 79B47FD40D9A817E932F9D26FAC0A81C, 53E260B8BFC50BA45FA73BFCF4E58C233890D0EAA9DEFDCCBB55FD3EB992FF2D ] NDIS            C:\Windows\system32\drivers\ndis.sys
21:00:21.0817 0x03e4  NDIS - ok
21:00:21.0864 0x03e4  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
21:00:21.0864 0x03e4  NdisCap - ok
21:00:21.0879 0x03e4  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
21:00:21.0879 0x03e4  NdisTapi - ok
21:00:21.0910 0x03e4  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
21:00:21.0926 0x03e4  Ndisuio - ok
21:00:21.0942 0x03e4  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
21:00:21.0942 0x03e4  NdisWan - ok
21:00:21.0957 0x03e4  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
21:00:21.0957 0x03e4  NDProxy - ok
21:00:21.0957 0x03e4  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
21:00:21.0957 0x03e4  NetBIOS - ok
21:00:21.0973 0x03e4  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
21:00:21.0988 0x03e4  NetBT - ok
21:00:22.0004 0x03e4  [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] Netlogon        C:\Windows\system32\lsass.exe
21:00:22.0004 0x03e4  Netlogon - ok
21:00:22.0066 0x03e4  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
21:00:22.0066 0x03e4  Netman - ok
21:00:22.0113 0x03e4  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
21:00:22.0113 0x03e4  netprofm - ok
21:00:22.0144 0x03e4  [ 3E5A36127E201DDF663176B66828FAFE, 5A08BA9EFB1A72DF1DD839BA5FA2B8994012BA62A515588FF62333B33B60045B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:00:22.0160 0x03e4  NetTcpPortSharing - ok
21:00:22.0488 0x03e4  [ 64428DFDAF6E88366CB51F45A79C5F69, 31187D38C1AB52120A3CB7AC3CE47ED9682AC37B0F06B9A9610C0065DD4E7B13 ] netw5v64        C:\Windows\system32\DRIVERS\netw5v64.sys
21:00:22.0722 0x03e4  netw5v64 - ok
21:00:22.0833 0x03e4  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
21:00:22.0835 0x03e4  nfrd960 - ok
21:00:22.0876 0x03e4  [ 1EE99A89CC788ADA662441D1E9830529, 6B4FDD74BB81E12BD4B25A3E8AECB0FA77FA0075D454DD1D6DC1790ADF1F2AA8 ] NlaSvc          C:\Windows\System32\nlasvc.dll
21:00:22.0884 0x03e4  NlaSvc - ok
21:00:22.0904 0x03e4  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
21:00:22.0905 0x03e4  Npfs - ok
21:00:22.0939 0x03e4  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
21:00:22.0940 0x03e4  nsi - ok
21:00:22.0965 0x03e4  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
21:00:22.0966 0x03e4  nsiproxy - ok
21:00:23.0128 0x03e4  [ 05D78AA5CB5F3F5C31160BDB955D0B7C, E3CD3FAF52ED11A8FB96D667510F1EDCA49053705AA3A13F560F8F6EC995CA45 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
21:00:23.0181 0x03e4  Ntfs - ok
21:00:23.0204 0x03e4  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
21:00:23.0205 0x03e4  Null - ok
21:00:23.0231 0x03e4  [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48, 7738785DE8B50D69993F4408498B812D0283FEE5C04FF5B89C20F149B44E9737 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
21:00:23.0235 0x03e4  nvraid - ok
21:00:23.0251 0x03e4  [ F7CD50FE7139F07E77DA8AC8033D1832, DA96F4B15C8165E6AE1D00E03A062C66CA3A3089E4FF0E9E11CE00B154DD12EC ] nvstor          C:\Windows\system32\drivers\nvstor.sys
21:00:23.0255 0x03e4  nvstor - ok
21:00:23.0285 0x03e4  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
21:00:23.0289 0x03e4  nv_agp - ok
21:00:23.0311 0x03e4  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
21:00:23.0311 0x03e4  ohci1394 - ok
21:00:23.0373 0x03e4  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
21:00:23.0373 0x03e4  p2pimsvc - ok
21:00:23.0420 0x03e4  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
21:00:23.0435 0x03e4  p2psvc - ok
21:00:23.0451 0x03e4  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
21:00:23.0451 0x03e4  Parport - ok
21:00:23.0467 0x03e4  [ 871EADAC56B0A4C6512BBE32753CCF79, F9FD9DBA55274BB72B897550988DCDFD0F2D9367BE641DFDE07D240052DDC180 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
21:00:23.0467 0x03e4  partmgr - ok
21:00:23.0498 0x03e4  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
21:00:23.0498 0x03e4  PcaSvc - ok
21:00:23.0524 0x03e4  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
21:00:23.0524 0x03e4  pci - ok
21:00:23.0540 0x03e4  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
21:00:23.0540 0x03e4  pciide - ok
21:00:23.0556 0x03e4  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
21:00:23.0571 0x03e4  pcmcia - ok
21:00:23.0587 0x03e4  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
21:00:23.0587 0x03e4  pcw - ok
21:00:23.0618 0x03e4  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
21:00:23.0634 0x03e4  PEAUTH - ok
21:00:23.0740 0x03e4  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
21:00:23.0762 0x03e4  PeerDistSvc - ok
21:00:24.0136 0x03e4  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
21:00:24.0136 0x03e4  PerfHost - ok
21:00:24.0323 0x03e4  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
21:00:24.0355 0x03e4  pla - ok
21:00:24.0417 0x03e4  [ B806E50427511BCF4AD8E8239C3E25FA, AB89B48ECCF90F701B314D18BE531CDA5ABE1636C17B994A5E4BE5AAC136B4E3 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
21:00:24.0433 0x03e4  PlugPlay - ok
21:00:24.0448 0x03e4  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
21:00:24.0448 0x03e4  PNRPAutoReg - ok
21:00:24.0464 0x03e4  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
21:00:24.0464 0x03e4  PNRPsvc - ok
21:00:24.0526 0x03e4  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
21:00:24.0542 0x03e4  PolicyAgent - ok
21:00:24.0557 0x03e4  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
21:00:24.0573 0x03e4  Power - ok
21:00:24.0620 0x03e4  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
21:00:24.0620 0x03e4  PptpMiniport - ok
21:00:24.0651 0x03e4  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
21:00:24.0651 0x03e4  Processor - ok
21:00:24.0682 0x03e4  [ 5C78838B4D166D1A27DB3A8A820C799A, BBF7E1D0B6754CF06BF3936671FDF5BF6E845CA5678D0940EA54E9212B539B7F ] ProfSvc         C:\Windows\system32\profsvc.dll
21:00:24.0698 0x03e4  ProfSvc - ok
21:00:24.0729 0x03e4  [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] ProtectedStorage C:\Windows\system32\lsass.exe
21:00:24.0729 0x03e4  ProtectedStorage - ok
21:00:24.0760 0x03e4  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
21:00:24.0760 0x03e4  Psched - ok
21:00:24.0916 0x03e4  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
21:00:24.0947 0x03e4  ql2300 - ok
21:00:24.0994 0x03e4  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
21:00:24.0994 0x03e4  ql40xx - ok
21:00:25.0041 0x03e4  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
21:00:25.0041 0x03e4  QWAVE - ok
21:00:25.0057 0x03e4  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
21:00:25.0057 0x03e4  QWAVEdrv - ok
21:00:25.0057 0x03e4  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
21:00:25.0057 0x03e4  RasAcd - ok
21:00:25.0103 0x03e4  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
21:00:25.0103 0x03e4  RasAgileVpn - ok
21:00:25.0135 0x03e4  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
21:00:25.0135 0x03e4  RasAuto - ok
21:00:25.0166 0x03e4  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
21:00:25.0166 0x03e4  Rasl2tp - ok
21:00:25.0213 0x03e4  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
21:00:25.0228 0x03e4  RasMan - ok
21:00:25.0244 0x03e4  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
21:00:25.0244 0x03e4  RasPppoe - ok
21:00:25.0259 0x03e4  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
21:00:25.0259 0x03e4  RasSstp - ok
21:00:25.0306 0x03e4  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
21:00:25.0306 0x03e4  rdbss - ok
21:00:25.0322 0x03e4  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
21:00:25.0322 0x03e4  rdpbus - ok
21:00:25.0322 0x03e4  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
21:00:25.0322 0x03e4  RDPCDD - ok
21:00:25.0384 0x03e4  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
21:00:25.0384 0x03e4  RDPDR - ok
21:00:25.0415 0x03e4  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
21:00:25.0415 0x03e4  RDPENCDD - ok
21:00:25.0415 0x03e4  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
21:00:25.0415 0x03e4  RDPREFMP - ok
21:00:25.0431 0x03e4  [ 15B66C206B5CB095BAB980553F38ED23, 3CA50786A8D3D6BAF145AFD22C1ED92C2EB39F5D6AF4F6B09B69610FDE0C5B24 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
21:00:25.0447 0x03e4  RDPWD - ok
21:00:25.0462 0x03e4  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
21:00:25.0478 0x03e4  rdyboost - ok
21:00:25.0509 0x03e4  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
21:00:25.0509 0x03e4  RemoteAccess - ok
21:00:25.0540 0x03e4  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
21:00:25.0540 0x03e4  RemoteRegistry - ok
21:00:25.0571 0x03e4  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
21:00:25.0571 0x03e4  RpcEptMapper - ok
21:00:25.0587 0x03e4  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
21:00:25.0587 0x03e4  RpcLocator - ok
21:00:25.0634 0x03e4  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
21:00:25.0634 0x03e4  RpcSs - ok
21:00:25.0665 0x03e4  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
21:00:25.0665 0x03e4  rspndr - ok
21:00:25.0727 0x03e4  [ BAEFEE35D27A5440D35092CE10267BEC, FB550D38C01E07B1170C52C1441874B56DD3BECB10CBE8E132EE3276A05C796E ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
21:00:25.0727 0x03e4  RTL8167 - ok
21:00:25.0790 0x03e4  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
21:00:25.0790 0x03e4  s3cap - ok
21:00:25.0805 0x03e4  [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] SamSs           C:\Windows\system32\lsass.exe
21:00:25.0805 0x03e4  SamSs - ok
21:00:25.0821 0x03e4  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
21:00:25.0821 0x03e4  sbp2port - ok
21:00:25.0868 0x03e4  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
21:00:25.0883 0x03e4  SCardSvr - ok
21:00:25.0899 0x03e4  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
21:00:25.0915 0x03e4  scfilter - ok
21:00:25.0961 0x03e4  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
21:00:25.0977 0x03e4  Schedule - ok
21:00:26.0024 0x03e4  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
21:00:26.0024 0x03e4  SCPolicySvc - ok
21:00:26.0055 0x03e4  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
21:00:26.0071 0x03e4  sdbus - ok
21:00:26.0102 0x03e4  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
21:00:26.0102 0x03e4  SDRSVC - ok
21:00:26.0164 0x03e4  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
21:00:26.0164 0x03e4  secdrv - ok
21:00:26.0180 0x03e4  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
21:00:26.0180 0x03e4  seclogon - ok
21:00:26.0227 0x03e4  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
21:00:26.0227 0x03e4  SENS - ok
21:00:26.0242 0x03e4  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
21:00:26.0258 0x03e4  SensrSvc - ok
21:00:26.0258 0x03e4  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
21:00:26.0258 0x03e4  Serenum - ok
21:00:26.0305 0x03e4  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
21:00:26.0305 0x03e4  Serial - ok
21:00:26.0320 0x03e4  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
21:00:26.0320 0x03e4  sermouse - ok
21:00:26.0351 0x03e4  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
21:00:26.0351 0x03e4  SessionEnv - ok
21:00:26.0367 0x03e4  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
21:00:26.0367 0x03e4  sffdisk - ok
21:00:26.0383 0x03e4  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
21:00:26.0383 0x03e4  sffp_mmc - ok
21:00:26.0383 0x03e4  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
21:00:26.0383 0x03e4  sffp_sd - ok
21:00:26.0398 0x03e4  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
21:00:26.0398 0x03e4  sfloppy - ok
21:00:26.0476 0x03e4  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
21:00:26.0476 0x03e4  SharedAccess - ok
21:00:26.0523 0x03e4  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:00:26.0539 0x03e4  ShellHWDetection - ok
21:00:26.0570 0x03e4  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
21:00:26.0570 0x03e4  SiSRaid2 - ok
21:00:26.0585 0x03e4  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
21:00:26.0585 0x03e4  SiSRaid4 - ok
21:00:26.0617 0x03e4  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
21:00:26.0617 0x03e4  Smb - ok
21:00:26.0663 0x03e4  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
21:00:26.0663 0x03e4  SNMPTRAP - ok
21:00:26.0679 0x03e4  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
21:00:26.0679 0x03e4  spldr - ok
21:00:26.0710 0x03e4  [ B96C17B5DC1424D56EEA3A99E97428CD, AF0A85066A7983878DC1C663811CE61C6CA1912DC956184F878B7B82DB93C651 ] Spooler         C:\Windows\System32\spoolsv.exe
21:00:26.0726 0x03e4  Spooler - ok
21:00:27.0022 0x03e4  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
21:00:27.0147 0x03e4  sppsvc - ok
21:00:27.0178 0x03e4  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
21:00:27.0178 0x03e4  sppuinotify - ok
21:00:27.0209 0x03e4  [ 2098B8556D1CEC2ACA9A29CD479E3692, D5826407C64F18C16EB36E6F00787CFAFCD9B24B5BD8AD126AD01E6E4134966F ] srv             C:\Windows\system32\DRIVERS\srv.sys
21:00:27.0225 0x03e4  srv - ok
21:00:27.0241 0x03e4  [ D0F73A42040F21F92FD314B42AC5C9E7, A021C4318C9CFA594305458B2643BB0C22DDE1F3D51C93C9F3E7F7AB75B31278 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
21:00:27.0256 0x03e4  srv2 - ok
21:00:27.0287 0x03e4  [ 2BA8F3250828CCDB4204ECF2C6F40B6A, 22C4FBF9A87C46E69C48B681FF733D68D9CB7B7D73FB14C8C2A06E9009F9860E ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
21:00:27.0287 0x03e4  srvnet - ok
21:00:27.0334 0x03e4  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
21:00:27.0334 0x03e4  SSDPSRV - ok
21:00:27.0350 0x03e4  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
21:00:27.0350 0x03e4  SstpSvc - ok
21:00:27.0365 0x03e4  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
21:00:27.0365 0x03e4  stexstor - ok
21:00:27.0412 0x03e4  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
21:00:27.0428 0x03e4  stisvc - ok
21:00:27.0459 0x03e4  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
21:00:27.0459 0x03e4  storflt - ok
21:00:27.0490 0x03e4  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
21:00:27.0506 0x03e4  StorSvc - ok
21:00:27.0521 0x03e4  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
21:00:27.0521 0x03e4  storvsc - ok
21:00:27.0537 0x03e4  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
21:00:27.0537 0x03e4  swenum - ok
21:00:27.0599 0x03e4  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
21:00:27.0599 0x03e4  swprv - ok
21:00:27.0693 0x03e4  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
21:00:27.0724 0x03e4  SysMain - ok
21:00:27.0755 0x03e4  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:00:27.0755 0x03e4  TabletInputService - ok
21:00:27.0787 0x03e4  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
21:00:27.0787 0x03e4  TapiSrv - ok
21:00:27.0833 0x03e4  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
21:00:27.0833 0x03e4  TBS - ok
21:00:27.0943 0x03e4  [ 509383E505C973ED7534A06B3D19688D, 520AE434CCE1D365A45B2035283A4AD915E98D28D06BD73822F6FF865C2AE7DF ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
21:00:28.0021 0x03e4  Tcpip - ok
21:00:28.0130 0x03e4  [ 509383E505C973ED7534A06B3D19688D, 520AE434CCE1D365A45B2035283A4AD915E98D28D06BD73822F6FF865C2AE7DF ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
21:00:28.0161 0x03e4  TCPIP6 - ok
21:00:28.0239 0x03e4  [ DF687E3D8836BFB04FCC0615BF15A519, 7C5B1E72673B4299DFC21E869F0FBB28198CA54DF4F4AF7080005F2D82467784 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
21:00:28.0239 0x03e4  tcpipreg - ok
21:00:28.0255 0x03e4  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
21:00:28.0270 0x03e4  TDPIPE - ok
21:00:28.0286 0x03e4  [ E4245BDA3190A582D55ED09E137401A9, F59C983882997D68CC7B1B2080AEE9EBE2AE90D478F877559BD2AAA97158A116 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
21:00:28.0301 0x03e4  TDTCP - ok
21:00:28.0317 0x03e4  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
21:00:28.0317 0x03e4  tdx - ok
21:00:28.0348 0x03e4  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
21:00:28.0348 0x03e4  TermDD - ok
21:00:28.0473 0x03e4  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
21:00:28.0489 0x03e4  TermService - ok
21:00:28.0535 0x03e4  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
21:00:28.0535 0x03e4  Themes - ok
21:00:28.0567 0x03e4  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
21:00:28.0567 0x03e4  THREADORDER - ok
21:00:28.0598 0x03e4  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
21:00:28.0613 0x03e4  TrkWks - ok
21:00:28.0691 0x03e4  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:00:28.0707 0x03e4  TrustedInstaller - ok
21:00:28.0738 0x03e4  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30, CA302C2ED6A6BF4670BAAA4F5C14C0238CF0C80316856AA0DB053F4D593033AC ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
21:00:28.0738 0x03e4  tssecsrv - ok
21:00:28.0801 0x03e4  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
21:00:28.0816 0x03e4  TsUsbFlt - ok
21:00:28.0863 0x03e4  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
21:00:28.0879 0x03e4  TsUsbGD - ok
21:00:28.0925 0x03e4  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
21:00:28.0925 0x03e4  tunnel - ok
21:00:28.0941 0x03e4  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
21:00:28.0957 0x03e4  uagp35 - ok
21:00:29.0003 0x03e4  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
21:00:29.0003 0x03e4  udfs - ok
21:00:29.0066 0x03e4  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
21:00:29.0081 0x03e4  UI0Detect - ok
21:00:29.0128 0x03e4  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
21:00:29.0144 0x03e4  uliagpkx - ok
21:00:29.0175 0x03e4  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
21:00:29.0175 0x03e4  umbus - ok
21:00:29.0191 0x03e4  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
21:00:29.0191 0x03e4  UmPass - ok
21:00:29.0237 0x03e4  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
21:00:29.0253 0x03e4  UmRdpService - ok
21:00:29.0300 0x03e4  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
21:00:29.0315 0x03e4  upnphost - ok
21:00:29.0378 0x03e4  [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829, 5D6E404FE0AB875202CA1A3E8E9D2F4368DF6ACCFA1C872ECFAF8399CBA3A485 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
21:00:29.0378 0x03e4  usbccgp - ok
21:00:29.0409 0x03e4  [ AF0892A803FDDA7492F595368E3B68E7, F263346DEB4D742EB436CF578F187AC8521D84CED52E98475E6198EC52244F07 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
21:00:29.0409 0x03e4  usbcir - ok
21:00:29.0440 0x03e4  [ 74EE782B1D9C241EFE425565854C661C, E8258EA65B0FCAD4E077B176E9D9324646B652D6E651241E397346A39770D065 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
21:00:29.0440 0x03e4  usbehci - ok
21:00:29.0487 0x03e4  [ DC96BD9CCB8403251BCF25047573558E, 66EBF8A6B3BC0634F32DDCC8BA31F1EB5987E8C6853E1DC26005E3EED0945565 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
21:00:29.0487 0x03e4  usbhub - ok
21:00:29.0503 0x03e4  [ 58E546BBAF87664FC57E0F6081E4F609, 1DD99D57369A0069654432AB5325AFD8F7D422D531E053EA05FF664BA6BDAEF9 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
21:00:29.0503 0x03e4  usbohci - ok
21:00:29.0534 0x03e4  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
21:00:29.0534 0x03e4  usbprint - ok
21:00:29.0549 0x03e4  [ D76510CFA0FC09023077F22C2F979D86, 5662281C6D515423255D3C262EA368DBAFC250235E535FBFA3E59D3487695439 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:00:29.0549 0x03e4  USBSTOR - ok
21:00:29.0565 0x03e4  [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
21:00:29.0565 0x03e4  usbuhci - ok
21:00:29.0612 0x03e4  [ 454800C2BC7F3927CE030141EE4F4C50, 10901E62DAA70657C499AD590DECCCA6E46FDDF4A193B2F19279E1B8ED7B1E44 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
21:00:29.0612 0x03e4  usbvideo - ok
21:00:29.0659 0x03e4  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
21:00:29.0659 0x03e4  UxSms - ok
21:00:29.0690 0x03e4  [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] VaultSvc        C:\Windows\system32\lsass.exe
21:00:29.0690 0x03e4  VaultSvc - ok
21:00:29.0752 0x03e4  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
21:00:29.0752 0x03e4  vdrvroot - ok
21:00:29.0783 0x03e4  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
21:00:29.0799 0x03e4  vds - ok
21:00:29.0815 0x03e4  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
21:00:29.0830 0x03e4  vga - ok
21:00:29.0830 0x03e4  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
21:00:29.0846 0x03e4  VgaSave - ok
21:00:29.0861 0x03e4  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
21:00:29.0861 0x03e4  vhdmp - ok
21:00:29.0877 0x03e4  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
21:00:29.0893 0x03e4  viaide - ok
21:00:29.0939 0x03e4  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
21:00:29.0939 0x03e4  vmbus - ok
21:00:29.0955 0x03e4  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
21:00:29.0955 0x03e4  VMBusHID - ok
21:00:29.0971 0x03e4  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
21:00:29.0971 0x03e4  volmgr - ok
21:00:30.0017 0x03e4  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
21:00:30.0017 0x03e4  volmgrx - ok
21:00:30.0064 0x03e4  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
21:00:30.0064 0x03e4  volsnap - ok
21:00:30.0095 0x03e4  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
21:00:30.0111 0x03e4  vsmraid - ok
21:00:30.0189 0x03e4  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
21:00:30.0236 0x03e4  VSS - ok
21:00:30.0251 0x03e4  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
21:00:30.0267 0x03e4  vwifibus - ok
21:00:30.0298 0x03e4  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
21:00:30.0298 0x03e4  W32Time - ok
21:00:30.0329 0x03e4  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
21:00:30.0361 0x03e4  WacomPen - ok
21:00:30.0392 0x03e4  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
21:00:30.0392 0x03e4  WANARP - ok
21:00:30.0392 0x03e4  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
21:00:30.0407 0x03e4  Wanarpv6 - ok
21:00:30.0470 0x03e4  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
21:00:30.0501 0x03e4  wbengine - ok
21:00:30.0517 0x03e4  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
21:00:30.0532 0x03e4  WbioSrvc - ok
21:00:30.0563 0x03e4  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
21:00:30.0563 0x03e4  wcncsvc - ok
21:00:30.0579 0x03e4  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:00:30.0579 0x03e4  WcsPlugInService - ok
21:00:30.0610 0x03e4  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
21:00:30.0610 0x03e4  Wd - ok
21:00:30.0641 0x03e4  [ 441BD2D7B4F98134C3A4F9FA570FD250, FF20815273014C5A27C2B75E2C70FE674809293627056199F502DFDF4CECFCA1 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
21:00:30.0657 0x03e4  Wdf01000 - ok
21:00:30.0688 0x03e4  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
21:00:30.0688 0x03e4  WdiServiceHost - ok
21:00:30.0704 0x03e4  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
21:00:30.0704 0x03e4  WdiSystemHost - ok
21:00:30.0766 0x03e4  [ 3DB6D04E1C64272F8B14EB8BC4616280, 9138642B1C19F895D4ECFD930160C80FBF15813CE63BBF4C899842C300FD3026 ] WebClient       C:\Windows\System32\webclnt.dll
21:00:30.0782 0x03e4  WebClient - ok
21:00:30.0797 0x03e4  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
21:00:30.0813 0x03e4  Wecsvc - ok
21:00:30.0829 0x03e4  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
21:00:30.0844 0x03e4  wercplsupport - ok
21:00:30.0860 0x03e4  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
21:00:30.0875 0x03e4  WerSvc - ok
21:00:30.0891 0x03e4  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
21:00:30.0891 0x03e4  WfpLwf - ok
21:00:30.0907 0x03e4  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
21:00:30.0907 0x03e4  WIMMount - ok
21:00:30.0938 0x03e4  WinDefend - ok
21:00:30.0953 0x03e4  WinHttpAutoProxySvc - ok
21:00:31.0094 0x03e4  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
21:00:31.0109 0x03e4  Winmgmt - ok
21:00:31.0234 0x03e4  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
21:00:31.0312 0x03e4  WinRM - ok
21:00:31.0437 0x03e4  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
21:00:31.0453 0x03e4  Wlansvc - ok
21:00:31.0484 0x03e4  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
21:00:31.0484 0x03e4  WmiAcpi - ok
21:00:31.0531 0x03e4  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
21:00:31.0531 0x03e4  wmiApSrv - ok
21:00:31.0577 0x03e4  WMPNetworkSvc - ok
21:00:31.0593 0x03e4  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
21:00:31.0609 0x03e4  WPCSvc - ok
21:00:31.0609 0x03e4  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
21:00:31.0624 0x03e4  WPDBusEnum - ok
21:00:31.0671 0x03e4  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
21:00:31.0671 0x03e4  ws2ifsl - ok
21:00:31.0702 0x03e4  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
21:00:31.0733 0x03e4  wscsvc - ok
21:00:31.0733 0x03e4  WSearch - ok
21:00:31.0921 0x03e4  [ 9DF12EDBC698B0BC353B3EF84861E430, 5777972DC6242096EE2D4DAEEFC822DE9077560322DED7B9696BB23B7C240403 ] wuauserv        C:\Windows\system32\wuaueng.dll
21:00:31.0999 0x03e4  wuauserv - ok
21:00:32.0030 0x03e4  [ D3381DC54C34D79B22CEE0D65BA91B7C, 70DC4ADCA4C0C28BB133287511E329D1B6B9B97F96CDE5B1D2F1F59FE1A965D9 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
21:00:32.0030 0x03e4  WudfPf - ok
21:00:32.0061 0x03e4  [ CF8D590BE3373029D57AF80914190682, FB9641777E90A58C063FBE95F081DC6D2F4770827DE19108A9DC3E3D6B17B4BF ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
21:00:32.0077 0x03e4  WUDFRd - ok
21:00:32.0108 0x03e4  [ 7A95C95B6C4CF292D689106BCAE49543, 9029F489E1E817CE12839B8C6656E46190497D445DC3F43C20CF96E5E6BD0691 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
21:00:32.0108 0x03e4  wudfsvc - ok
21:00:32.0139 0x03e4  [ 9A3452B3C2A46C073166C5CF49FAD1AE, D6F95F51D8E37BA4CF403965EC08CCFEEA9EEFDBFC7752432EAEC19925BDA115 ] WwanSvc         C:\Windows\System32\wwansvc.dll
21:00:32.0139 0x03e4  WwanSvc - ok
21:00:32.0170 0x03e4  ================ Scan global ===============================
21:00:32.0201 0x03e4  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
21:00:32.0217 0x03e4  [ E0406AEF04B088D1C49FC78D0546F689, 7ADD4D1C174FAA5405BD94BAF104A5DD56BE00DBDC1ED9F069A95430A7B264AA ] C:\Windows\system32\winsrv.dll
21:00:32.0233 0x03e4  [ E0406AEF04B088D1C49FC78D0546F689, 7ADD4D1C174FAA5405BD94BAF104A5DD56BE00DBDC1ED9F069A95430A7B264AA ] C:\Windows\system32\winsrv.dll
21:00:32.0248 0x03e4  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
21:00:32.0279 0x03e4  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
21:00:32.0279 0x03e4  [ Global ] - ok
21:00:32.0279 0x03e4  ================ Scan MBR ==================================
21:00:32.0295 0x03e4  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:00:32.0654 0x03e4  \Device\Harddisk0\DR0 - ok
21:00:32.0669 0x03e4  [ D71B99B6FF96AEB15E1A83E27DB8EAAA ] \Device\Harddisk1\DR1
21:00:32.0685 0x03e4  \Device\Harddisk1\DR1 - ok
21:00:32.0685 0x03e4  ================ Scan VBR ==================================
21:00:32.0685 0x03e4  [ D60A4F49EBAC2CF8B1284E1BDCFDCEFE ] \Device\Harddisk0\DR0\Partition1
21:00:32.0701 0x03e4  \Device\Harddisk0\DR0\Partition1 - ok
21:00:32.0732 0x03e4  [ 337EDBC98DA40D2C9F65DC3F5BF0063A ] \Device\Harddisk0\DR0\Partition2
21:00:32.0747 0x03e4  \Device\Harddisk0\DR0\Partition2 - ok
21:00:32.0747 0x03e4  ================ Scan active images ========================
21:00:32.0747 0x03e4  [ 3E588B60EC061686BA05D33574A344C6, 19D2D863F95CCC4493A2328B6BEB04248B6A80F957532E58C1D1D868C19FDCCB ] C:\Windows\System32\drivers\crashdmp.sys
21:00:32.0747 0x03e4  C:\Windows\System32\drivers\crashdmp.sys - ok
21:00:32.0747 0x03e4  [ 839B5FE3D48E9F35B22C21A3D5103F6C, A9CEA695E43092B72B0E988063E00A7C0BCE90095344E9A2F380218482BCE77F ] C:\Windows\System32\drivers\Dumpata.sys
21:00:32.0747 0x03e4  C:\Windows\System32\drivers\Dumpata.sys - ok
21:00:32.0763 0x03e4  [ 814DB88F2641691575A455CF25354098, 79C50F0CD72612733217A0316BEFEA0B6D819C3159D9452EAB89AC26A18A0F89 ] C:\Windows\System32\drivers\dumpfve.sys
21:00:32.0763 0x03e4  C:\Windows\System32\drivers\dumpfve.sys - ok
21:00:32.0763 0x03e4  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] C:\Windows\System32\drivers\msahci.sys
21:00:32.0763 0x03e4  C:\Windows\System32\drivers\msahci.sys - ok
21:00:32.0763 0x03e4  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] C:\Windows\System32\drivers\cdrom.sys
21:00:32.0763 0x03e4  C:\Windows\System32\drivers\cdrom.sys - ok
21:00:32.0763 0x03e4  [ 05936579605018BD2BC528FF2C1AD95F, 763C2E76F9078F6A74D5BCCB4DD8A10C82AEB9C9F5A45C3706A587FA2D03E7D3 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys
21:00:32.0763 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys - ok
21:00:32.0763 0x03e4  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] C:\Windows\System32\drivers\beep.sys
21:00:32.0763 0x03e4  C:\Windows\System32\drivers\beep.sys - ok
21:00:32.0763 0x03e4  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] C:\Windows\System32\drivers\null.sys
21:00:32.0763 0x03e4  C:\Windows\System32\drivers\null.sys - ok
21:00:32.0779 0x03e4  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] C:\Windows\System32\drivers\RDPCDD.sys
21:00:32.0779 0x03e4  C:\Windows\System32\drivers\RDPCDD.sys - ok
21:00:32.0779 0x03e4  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] C:\Windows\System32\drivers\vga.sys
21:00:32.0779 0x03e4  C:\Windows\System32\drivers\vga.sys - ok
21:00:32.0779 0x03e4  [ E7353D59C9842BC7299FAEB7E7E09340, C37ED1025E07BAC2F535DCFED6C6C509515D95722EADE5AF94F1FC5D8B1DC783 ] C:\Windows\System32\drivers\videoprt.sys
21:00:32.0779 0x03e4  C:\Windows\System32\drivers\videoprt.sys - ok
21:00:32.0779 0x03e4  [ FC438D1430B28618E2D0C7C332A710AD, 873957B202E454E2C8F625E5799F278CAC16EC5EEAEE2C33E2FE5D1FF0408CB2 ] C:\Windows\System32\drivers\watchdog.sys
21:00:32.0779 0x03e4  C:\Windows\System32\drivers\watchdog.sys - ok
21:00:32.0779 0x03e4  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] C:\Windows\System32\drivers\msfs.sys
21:00:32.0779 0x03e4  C:\Windows\System32\drivers\msfs.sys - ok
21:00:32.0779 0x03e4  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] C:\Windows\System32\drivers\npfs.sys
21:00:32.0779 0x03e4  C:\Windows\System32\drivers\npfs.sys - ok
21:00:32.0794 0x03e4  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] C:\Windows\System32\drivers\RDPENCDD.sys
21:00:32.0794 0x03e4  C:\Windows\System32\drivers\RDPENCDD.sys - ok
21:00:32.0794 0x03e4  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] C:\Windows\System32\drivers\RDPREFMP.sys
21:00:32.0794 0x03e4  C:\Windows\System32\drivers\RDPREFMP.sys - ok
21:00:32.0794 0x03e4  [ 6F020A220388ECA0AB6062DC27BD16B6, 48655230E482DEB7B4B50EF05818EBB29CA61E780AEFCD9D31B02DE4DF9D9540 ] C:\Windows\System32\drivers\tdi.sys
21:00:32.0794 0x03e4  C:\Windows\System32\drivers\tdi.sys - ok
21:00:32.0794 0x03e4  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] C:\Windows\System32\drivers\tdx.sys
21:00:32.0794 0x03e4  C:\Windows\System32\drivers\tdx.sys - ok
21:00:32.0794 0x03e4  [ D31DC7A16DEA4A9BAF179F3D6FBDB38C, 532678D86E3E667F2E789C4873565E0B92C549A93F10802BB6D5B505CA3238CE ] C:\Windows\System32\drivers\afd.sys
21:00:32.0794 0x03e4  C:\Windows\System32\drivers\afd.sys - ok
21:00:32.0794 0x03e4  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] C:\Windows\System32\drivers\netbt.sys
21:00:32.0794 0x03e4  C:\Windows\System32\drivers\netbt.sys - ok
21:00:32.0810 0x03e4  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] C:\Windows\System32\drivers\pacer.sys
21:00:32.0810 0x03e4  C:\Windows\System32\drivers\pacer.sys - ok
21:00:32.0810 0x03e4  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] C:\Windows\System32\drivers\wfplwf.sys
21:00:32.0810 0x03e4  C:\Windows\System32\drivers\wfplwf.sys - ok
21:00:32.0810 0x03e4  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] C:\Windows\System32\drivers\ws2ifsl.sys
21:00:32.0810 0x03e4  C:\Windows\System32\drivers\ws2ifsl.sys - ok
21:00:32.0810 0x03e4  [ 2B0E73BABE1B2B01F477734E3B5CF8A7, A067BF8B9170BF7360FAEC1D4689BF9E998BF0ED6B1C0708C32878442C8AEC2A ] C:\Windows\System32\drivers\gwdrv.sys
21:00:32.0810 0x03e4  C:\Windows\System32\drivers\gwdrv.sys - ok
21:00:32.0810 0x03e4  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] C:\Windows\System32\drivers\netbios.sys
21:00:32.0810 0x03e4  C:\Windows\System32\drivers\netbios.sys - ok
21:00:32.0825 0x03e4  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] C:\Windows\System32\drivers\wanarp.sys
21:00:32.0825 0x03e4  C:\Windows\System32\drivers\wanarp.sys - ok
21:00:32.0825 0x03e4  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] C:\Windows\System32\drivers\nsiproxy.sys
21:00:32.0825 0x03e4  C:\Windows\System32\drivers\nsiproxy.sys - ok
21:00:32.0825 0x03e4  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] C:\Windows\System32\drivers\rdbss.sys
21:00:32.0825 0x03e4  C:\Windows\System32\drivers\rdbss.sys - ok
21:00:32.0825 0x03e4  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] C:\Windows\System32\drivers\termdd.sys
21:00:32.0825 0x03e4  C:\Windows\System32\drivers\termdd.sys - ok
21:00:32.0825 0x03e4  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] C:\Windows\System32\drivers\csc.sys
21:00:32.0825 0x03e4  C:\Windows\System32\drivers\csc.sys - ok
21:00:32.0825 0x03e4  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] C:\Windows\System32\drivers\discache.sys
21:00:32.0825 0x03e4  C:\Windows\System32\drivers\discache.sys - ok
21:00:32.0841 0x03e4  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] C:\Windows\System32\drivers\mssmbios.sys
21:00:32.0841 0x03e4  C:\Windows\System32\drivers\mssmbios.sys - ok
21:00:32.0841 0x03e4  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] C:\Windows\System32\drivers\blbdrive.sys
21:00:32.0841 0x03e4  C:\Windows\System32\drivers\blbdrive.sys - ok
21:00:32.0841 0x03e4  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] C:\Windows\System32\drivers\dfsc.sys
21:00:32.0841 0x03e4  C:\Windows\System32\drivers\dfsc.sys - ok
21:00:32.0841 0x03e4  [ D27A8B7BB0E15DFBFC6B4E774EE17AD9, CBAD45B3FFFD30C34AF918009F699B65F89043D0799FC25D2472381912F86F93 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys
21:00:32.0841 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys - ok
21:00:32.0841 0x03e4  [ B1AB7116D14667A2238DAEFE20B7F4D0, DC8A9093A6F759657C3354931A462FCCAF3533A907FB7152380EB2E9B4AD3BF8 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys
21:00:32.0841 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys - ok
21:00:32.0841 0x03e4  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] C:\Windows\System32\drivers\intelppm.sys
21:00:32.0841 0x03e4  C:\Windows\System32\drivers\intelppm.sys - ok
21:00:32.0857 0x03e4  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] C:\Windows\System32\drivers\tunnel.sys
21:00:32.0857 0x03e4  C:\Windows\System32\drivers\tunnel.sys - ok
21:00:32.0857 0x03e4  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] C:\Windows\System32\drivers\vgapnp.sys
21:00:32.0857 0x03e4  C:\Windows\System32\drivers\vgapnp.sys - ok
21:00:32.0857 0x03e4  [ 1911A3356FA3F77CCC825CCBAC038C2A, 6ED135B792C81D78B33A57F0F4770DB6105C9ED3E2193629CB3EC38BFD5B7E1B ] C:\Windows\System32\smss.exe
21:00:32.0857 0x03e4  C:\Windows\System32\smss.exe - ok
21:00:32.0857 0x03e4  [ B6D64EE607637301FF8C33139B4950DE, E7FE3EC3DA3CABDBBE2C23BAA5FE3CD64DA01FF73B4B4C2F077224A607E688DD ] C:\Windows\System32\drivers\usbport.sys
21:00:32.0857 0x03e4  C:\Windows\System32\drivers\usbport.sys - ok
21:00:32.0857 0x03e4  [ 3556D5A8BF2CC508BDAB51DEC38D7C61, 91E3D98AD3119E8ADDF8D2AA1DD6795162842FFF7101E4C70C5137E847B4FF50 ] C:\Windows\System32\ntdll.dll
21:00:32.0857 0x03e4  C:\Windows\System32\ntdll.dll - ok
21:00:32.0857 0x03e4  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] C:\Windows\System32\drivers\hdaudbus.sys
21:00:32.0857 0x03e4  C:\Windows\System32\drivers\hdaudbus.sys - ok
21:00:32.0872 0x03e4  [ 74EE782B1D9C241EFE425565854C661C, E8258EA65B0FCAD4E077B176E9D9324646B652D6E651241E397346A39770D065 ] C:\Windows\System32\drivers\usbehci.sys
21:00:32.0872 0x03e4  C:\Windows\System32\drivers\usbehci.sys - ok
21:00:32.0872 0x03e4  [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] C:\Windows\System32\drivers\usbuhci.sys
21:00:32.0872 0x03e4  C:\Windows\System32\drivers\usbuhci.sys - ok
21:00:32.0872 0x03e4  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93, 7BC847CE6C2D29C334F0D1600BBBDE3933FF45F6BEE5186F442E6270A3F9EC4E ] C:\Windows\System32\autochk.exe
21:00:32.0872 0x03e4  C:\Windows\System32\autochk.exe - ok
21:00:32.0872 0x03e4  [ 64428DFDAF6E88366CB51F45A79C5F69, 31187D38C1AB52120A3CB7AC3CE47ED9682AC37B0F06B9A9610C0065DD4E7B13 ] C:\Windows\System32\drivers\netw5v64.sys
21:00:32.0872 0x03e4  C:\Windows\System32\drivers\netw5v64.sys - ok
21:00:32.0872 0x03e4  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] C:\Windows\System32\drivers\1394ohci.sys
21:00:32.0872 0x03e4  C:\Windows\System32\drivers\1394ohci.sys - ok
21:00:32.0872 0x03e4  [ BAEFEE35D27A5440D35092CE10267BEC, FB550D38C01E07B1170C52C1441874B56DD3BECB10CBE8E132EE3276A05C796E ] C:\Windows\System32\drivers\Rt64win7.sys
21:00:32.0872 0x03e4  C:\Windows\System32\drivers\Rt64win7.sys - ok
21:00:32.0872 0x03e4  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] C:\Windows\System32\drivers\i8042prt.sys
21:00:32.0872 0x03e4  C:\Windows\System32\drivers\i8042prt.sys - ok
21:00:32.0888 0x03e4  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] C:\Windows\System32\drivers\sdbus.sys
21:00:32.0888 0x03e4  C:\Windows\System32\drivers\sdbus.sys - ok
21:00:32.0888 0x03e4  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] C:\Windows\System32\drivers\kbdclass.sys
21:00:32.0888 0x03e4  C:\Windows\System32\drivers\kbdclass.sys - ok
21:00:32.0888 0x03e4  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] C:\Windows\System32\drivers\mouclass.sys
21:00:32.0888 0x03e4  C:\Windows\System32\drivers\mouclass.sys - ok
21:00:32.0888 0x03e4  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] C:\Windows\System32\drivers\CmBatt.sys
21:00:32.0888 0x03e4  C:\Windows\System32\drivers\CmBatt.sys - ok
21:00:32.0888 0x03e4  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] C:\Windows\System32\drivers\CompositeBus.sys
21:00:32.0888 0x03e4  C:\Windows\System32\drivers\CompositeBus.sys - ok
21:00:32.0888 0x03e4  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] C:\Windows\System32\drivers\agilevpn.sys
21:00:32.0888 0x03e4  C:\Windows\System32\drivers\agilevpn.sys - ok
21:00:32.0903 0x03e4  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] C:\Windows\System32\drivers\rasl2tp.sys
21:00:32.0903 0x03e4  C:\Windows\System32\drivers\rasl2tp.sys - ok
21:00:32.0903 0x03e4  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] C:\Windows\System32\drivers\ndistapi.sys
21:00:32.0903 0x03e4  C:\Windows\System32\drivers\ndistapi.sys - ok
21:00:32.0903 0x03e4  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] C:\Windows\System32\drivers\ndiswan.sys
21:00:32.0903 0x03e4  C:\Windows\System32\drivers\ndiswan.sys - ok
21:00:32.0903 0x03e4  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] C:\Windows\System32\drivers\raspppoe.sys
21:00:32.0903 0x03e4  C:\Windows\System32\drivers\raspppoe.sys - ok
21:00:32.0903 0x03e4  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] C:\Windows\System32\drivers\raspptp.sys
21:00:32.0903 0x03e4  C:\Windows\System32\drivers\raspptp.sys - ok
21:00:32.0903 0x03e4  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] C:\Windows\System32\drivers\rassstp.sys
21:00:32.0903 0x03e4  C:\Windows\System32\drivers\rassstp.sys - ok
21:00:32.0919 0x03e4  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] C:\Windows\System32\drivers\rdpbus.sys
21:00:32.0919 0x03e4  C:\Windows\System32\drivers\rdpbus.sys - ok
21:00:32.0919 0x03e4  [ 24FBF5CC5C04150073C315A7C83521EE, 581BD5F15B5E57B3BAA762E421FFD859FDA46DDB8515C2A7AAFF208D784E906C ] C:\Windows\System32\drivers\ks.sys
21:00:32.0919 0x03e4  C:\Windows\System32\drivers\ks.sys - ok
21:00:32.0919 0x03e4  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] C:\Windows\System32\drivers\swenum.sys
21:00:32.0919 0x03e4  C:\Windows\System32\drivers\swenum.sys - ok
21:00:32.0919 0x03e4  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] C:\Windows\System32\drivers\umbus.sys
21:00:32.0919 0x03e4  C:\Windows\System32\drivers\umbus.sys - ok
21:00:32.0919 0x03e4  [ 1642C62F1FD5E1FF44608283994A7BB8, 4646AA0EF74A2AEE6C17D12206FCFE1E84D6FA712AD95A171F16D11BC9D3F11A ] C:\Windows\System32\drivers\ew_jubusenum.sys
21:00:32.0919 0x03e4  C:\Windows\System32\drivers\ew_jubusenum.sys - ok
21:00:32.0919 0x03e4  [ DC96BD9CCB8403251BCF25047573558E, 66EBF8A6B3BC0634F32DDCC8BA31F1EB5987E8C6853E1DC26005E3EED0945565 ] C:\Windows\System32\drivers\usbhub.sys
21:00:32.0919 0x03e4  C:\Windows\System32\drivers\usbhub.sys - ok
21:00:32.0935 0x03e4  [ F7CE0C81C545364020ED8203CF0A633E, 24B47A7492B7048096AF87E26786E8108455ADBD1A374B6A0466DE008505B8A9 ] C:\Windows\System32\difxapi.dll
21:00:32.0935 0x03e4  C:\Windows\System32\difxapi.dll - ok
21:00:32.0935 0x03e4  [ F6C5302E1F4813D552F41A0AC82455E5, E3EBF44621EFC6381BAAE0F0EFC13C356DCB6EE31BB258137EDB3CC3E18549B5 ] C:\Windows\System32\wininet.dll
21:00:32.0935 0x03e4  C:\Windows\System32\wininet.dll - ok
21:00:32.0935 0x03e4  [ 4BBFA57F594F7E8A8EDC8F377184C3F0, 9F3AC5DEA5A6250C3DBB97AF79C81C0A48429486521F807355A1D7D3D861B75F ] C:\Windows\System32\ws2_32.dll
21:00:32.0935 0x03e4  C:\Windows\System32\ws2_32.dll - ok
21:00:32.0935 0x03e4  [ AA2C08CE85653B1A0D2E4AB407FA176C, 83DFD0C119B20AEDB07114C9D1CF9CE2DFA938D0F1070256B0591A9E2C3997FA ] C:\Windows\System32\imm32.dll
21:00:32.0935 0x03e4  C:\Windows\System32\imm32.dll - ok
21:00:32.0935 0x03e4  [ D87E1E59C73C1F98D5DED5B3850C40F5, 536419BFF9F877D4314B5D0C045D9A6E729489C389863FADF07E382050BC84FD ] C:\Windows\System32\psapi.dll
21:00:32.0935 0x03e4  C:\Windows\System32\psapi.dll - ok
21:00:32.0935 0x03e4  [ 83404DCBCE4925B6A5A77C5170F46D86, D669614D0B4461DB244AD99FBE1BA92CEB9B4ED5EC8E987E23764E77D9AC7074 ] C:\Windows\System32\sechost.dll
21:00:32.0935 0x03e4  C:\Windows\System32\sechost.dll - ok
21:00:32.0950 0x03e4  [ 28C0B5024F5C5A438E78B188CFC81B7F, AB81FB63F2908CE316B45609077ACBD85F4B2AAD1606B1E9030F06DB82EDDFAD ] C:\Windows\System32\normaliz.dll
21:00:32.0950 0x03e4  C:\Windows\System32\normaliz.dll - ok
21:00:32.0950 0x03e4  [ 42F05F980F164E084DB65B2E8CD8430F, 0813749847B08F6577791D18AD9ECA6DFF5B41C2F727AB5EE9E5BF9602ED50CB ] C:\Windows\System32\oleaut32.dll
21:00:32.0950 0x03e4  C:\Windows\System32\oleaut32.dll - ok
21:00:32.0950 0x03e4  [ 5180380D353277D395D3B36D790AA93E, 89B894ECCF65704D00D30EA3BD45B184BFAB8345B779F9AE2BE66B9FC7226F72 ] C:\Windows\System32\iertutil.dll
21:00:32.0950 0x03e4  C:\Windows\System32\iertutil.dll - ok
21:00:32.0950 0x03e4  [ 1084AA52CCC324EA54C7121FA24C2221, 6E972CF624F7C0DE8190434B3B30279A01C551713109F97B9EBB77FAC9364754 ] C:\Windows\System32\gdi32.dll
21:00:32.0950 0x03e4  C:\Windows\System32\gdi32.dll - ok
21:00:32.0950 0x03e4  [ EAF32CB8C1F810E4715B4DFBE785C7FF, DB6AD07FDED42433E669508AB73FAFF6DAFF04575D6F1D016FE3EB6ECEC4DD5D ] C:\Windows\System32\shlwapi.dll
21:00:32.0950 0x03e4  C:\Windows\System32\shlwapi.dll - ok
21:00:32.0950 0x03e4  [ 0611473C1AD9E2D991CD9482068417F7, 90AFCC2A60350ECE27E75E76459132EF0FA28EF283CE88FCED4B82735A93ECDA ] C:\Windows\System32\rpcrt4.dll
21:00:32.0950 0x03e4  C:\Windows\System32\rpcrt4.dll - ok
21:00:32.0966 0x03e4  [ 9835E63E09F824D22B689D2BB789BAB9, 5BCFFAFB894D69FBCDDB91E64D30A356F4BD57098E8B4C51B98AFAF6581BDB63 ] C:\Windows\System32\comdlg32.dll
21:00:32.0966 0x03e4  C:\Windows\System32\comdlg32.dll - ok
21:00:32.0966 0x03e4  [ 4E4FFB09D895AA000DD56D1404F69A7E, D999E04BB35780088480EAB322176570591A21E311D204BDCAB010A63B34D24C ] C:\Windows\System32\Wldap32.dll
21:00:32.0966 0x03e4  C:\Windows\System32\Wldap32.dll - ok
21:00:32.0966 0x03e4  [ 7319BB10FA1F86E49E3DCF4136F6C957, 60DE43AB267FD41C9804369B569139ADD30ED4E295C425F44FC04D3FCC95FCA2 ] C:\Windows\System32\msvcrt.dll
21:00:32.0966 0x03e4  C:\Windows\System32\msvcrt.dll - ok
21:00:32.0966 0x03e4  [ 25983DE69B57142039AC8D95E71CD9C9, A677DA7EBCBCB6073D27E8A38809F51E971E83ED379BC599AAAD6EF4216348DA ] C:\Windows\System32\clbcatq.dll
21:00:32.0966 0x03e4  C:\Windows\System32\clbcatq.dll - ok
21:00:32.0966 0x03e4  [ 6DF46D2BD74E3DA1B45F08F10D172732, 2DC945F6F2C4A82189BC7DA2FCBB7D9A0E2588A909539249E55BA82468E0C677 ] C:\Windows\System32\advapi32.dll
21:00:32.0966 0x03e4  C:\Windows\System32\advapi32.dll - ok
21:00:32.0966 0x03e4  [ D202223587518B13D72D68937B7E3F70, 9DB971B866D058ADBB518DD99B87C5DB8DD1E7C9073755B989AE7E9FB62901E8 ] C:\Windows\System32\lpk.dll
21:00:32.0966 0x03e4  C:\Windows\System32\lpk.dll - ok
21:00:32.0966 0x03e4  [ 044FE45FFD6AD40E3BBBE60B7F41BABE, A1688A5E6E0F7037C850699462C2655006A7D873C97F9AB406C59D81749B6F09 ] C:\Windows\System32\nsi.dll
21:00:32.0966 0x03e4  C:\Windows\System32\nsi.dll - ok
21:00:32.0981 0x03e4  [ 26E716ED95DC48CF6E5AC046089366AF, F686D557B7AC1688EFC7CB48311290D713D3DB2E9E61E947098A7C80E3A1B9E9 ] C:\Windows\System32\shell32.dll
21:00:32.0981 0x03e4  C:\Windows\System32\shell32.dll - ok
21:00:32.0981 0x03e4  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] C:\Windows\System32\drivers\ndproxy.sys
21:00:32.0981 0x03e4  C:\Windows\System32\drivers\ndproxy.sys - ok
21:00:32.0981 0x03e4  [ 5FADA8B707318E1BD63A7E2B81E6C8CB, 2590E88CAB52FCC1B24CB262D293131C6280A5F234E0C130E77AA8697EFA3B5F ] C:\Windows\System32\urlmon.dll
21:00:32.0981 0x03e4  C:\Windows\System32\urlmon.dll - ok
21:00:32.0981 0x03e4  [ 7A6326D96D53048FDEC542DF23D875A0, 182351570856CD6EEDD9DF7E2FB8AB76BD4D8FC70BE11AD5DE6484CFD70C21C6 ] C:\Windows\System32\kernel32.dll
21:00:32.0981 0x03e4  C:\Windows\System32\kernel32.dll - ok
21:00:32.0981 0x03e4  [ 21D26064AEDB4988F785BB4A3A2C051E, F6FA2CA351B24DA19645EB542596C82F9A68D84CC7CCFE6F9FC15CE2CE4D1961 ] C:\Windows\System32\drivers\drmk.sys
21:00:32.0981 0x03e4  C:\Windows\System32\drivers\drmk.sys - ok
21:00:32.0981 0x03e4  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] C:\Windows\System32\drivers\HdAudio.sys
21:00:32.0981 0x03e4  C:\Windows\System32\drivers\HdAudio.sys - ok
21:00:32.0997 0x03e4  [ 32E11315B5126921FFD9074840EF13D3, FC7C0E1CC447FDD89C0FA5EBFD04CCEABFB27751AB57A7176F12BD0D35306E1C ] C:\Windows\System32\drivers\portcls.sys
21:00:32.0997 0x03e4  C:\Windows\System32\drivers\portcls.sys - ok
21:00:32.0997 0x03e4  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] C:\Windows\System32\drivers\ksthunk.sys
21:00:32.0997 0x03e4  C:\Windows\System32\drivers\ksthunk.sys - ok
21:00:32.0997 0x03e4  [ 63C8D74BED9F80F4DD0AA7A3101EB639, EA2CE29025259E9DE945CE52C80A41C33024D7C2907AA1928480EC11FC852B08 ] C:\Windows\System32\drivers\usbd.sys
21:00:32.0997 0x03e4  C:\Windows\System32\drivers\usbd.sys - ok
21:00:32.0997 0x03e4  [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829, 5D6E404FE0AB875202CA1A3E8E9D2F4368DF6ACCFA1C872ECFAF8399CBA3A485 ] C:\Windows\System32\drivers\usbccgp.sys
21:00:32.0997 0x03e4  C:\Windows\System32\drivers\usbccgp.sys - ok
21:00:32.0997 0x03e4  [ D76510CFA0FC09023077F22C2F979D86, 5662281C6D515423255D3C262EA368DBAFC250235E535FBFA3E59D3487695439 ] C:\Windows\System32\drivers\USBSTOR.SYS
21:00:32.0997 0x03e4  C:\Windows\System32\drivers\USBSTOR.SYS - ok
21:00:32.0997 0x03e4  [ FE70103391A64039A921DBFFF9C7AB1B, F7D219D75037BC98F6C69143B00AB6000A31F8B5E211E0AF514F4F4B681522A0 ] C:\Windows\System32\user32.dll
21:00:32.0997 0x03e4  C:\Windows\System32\user32.dll - ok
21:00:33.0013 0x03e4  [ 6C60B5ACA7442EFB794082CDACFC001C, FC1D9124856A70FF232EF3057D66BEE803295847624CE23B4D0217F23AF52C75 ] C:\Windows\System32\ole32.dll
21:00:33.0013 0x03e4  C:\Windows\System32\ole32.dll - ok
21:00:33.0013 0x03e4  [ 2F8B1E3EE3545D3B5A8D56FA1AE07B65, 2A3EC01F3BAFE7D7D656886437F7FFECCE440C0D3F3467804769AB4BF1FF7A99 ] C:\Windows\System32\usp10.dll
21:00:33.0013 0x03e4  C:\Windows\System32\usp10.dll - ok
21:00:33.0013 0x03e4  [ 4DBBFCE863FE1B64C770EB53A3BA5860, DA77FB5D865779834CDCEE74200B9346FA3A4D0465F7A49C877ED6F786232CEF ] C:\Windows\System32\drivers\ew_jucdcacm.sys
21:00:33.0013 0x03e4  C:\Windows\System32\drivers\ew_jucdcacm.sys - ok
21:00:33.0013 0x03e4  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] C:\Windows\System32\drivers\modem.sys
21:00:33.0013 0x03e4  C:\Windows\System32\drivers\modem.sys - ok
21:00:33.0013 0x03e4  [ B8509DCFCFD577F568BE4026BFD982C0, E3608E6DE15C400FA437349E7295FEF10A1A0213CA3B532A58964B8C89749110 ] C:\Windows\System32\imagehlp.dll
21:00:33.0013 0x03e4  C:\Windows\System32\imagehlp.dll - ok
21:00:33.0013 0x03e4  [ C431EAF5CAA1C82CAC2534A2EAB348A3, ADDF850128DC675E67FABA9A3D0D27E684F01F733962CA22927BB94503549E44 ] C:\Windows\System32\msctf.dll
21:00:33.0013 0x03e4  C:\Windows\System32\msctf.dll - ok
21:00:33.0028 0x03e4  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5, 12130837D7F89A2C7E9D25747A8E5B9001E0A38D545178B49B450C23AE62664A ] C:\Windows\System32\setupapi.dll
21:00:33.0028 0x03e4  C:\Windows\System32\setupapi.dll - ok
21:00:33.0028 0x03e4  [ 14DFDEAF4E589ED3F1FF187A86B9408C, 86D383D5B90A86556521C62C50F7BE0306FCD24FD86A8A37E8320FAE948531EB ] C:\Windows\System32\comctl32.dll
21:00:33.0028 0x03e4  C:\Windows\System32\comctl32.dll - ok
21:00:33.0028 0x03e4  [ 3F9F2AFA135F0663946A006DD5FFD897, 276D1C9C78C529625C2EF3D77079324628686EA184767971901A1DE93681C133 ] C:\Windows\System32\crypt32.dll
21:00:33.0028 0x03e4  C:\Windows\System32\crypt32.dll - ok
21:00:33.0028 0x03e4  [ 2477A28081BDAEE622CF045ACF8EE124, 00A09CAF9129E84FEEA98FA03CE9012C9F961B64FEE15C4F268822C0F82ACC3C ] C:\Windows\System32\cfgmgr32.dll
21:00:33.0028 0x03e4  C:\Windows\System32\cfgmgr32.dll - ok
21:00:33.0028 0x03e4  [ 06FEC9E8117103BB1141A560E98077DA, C5E61B11DDBBBBBA3D9488970524F0975EA5FBDF16E2FA31F579F8BFA48353B1 ] C:\Windows\System32\devobj.dll
21:00:33.0028 0x03e4  C:\Windows\System32\devobj.dll - ok
21:00:33.0028 0x03e4  [ DA68C291B4EF2DEC9C5963266BCAE454, 21AA4779FC21E762178517268C95467238C92851AD9160BFFC36B2379C58337F ] C:\Windows\System32\KernelBase.dll
21:00:33.0028 0x03e4  C:\Windows\System32\KernelBase.dll - ok
21:00:33.0044 0x03e4  [ EB3F9C2DE1236B5D46B2291D82970E43, 8A43D335F3D573BED98AF54BB51E82546C2ACC025DA8A48D801213EB14E9D5D4 ] C:\Windows\System32\wintrust.dll
21:00:33.0044 0x03e4  C:\Windows\System32\wintrust.dll - ok
21:00:33.0044 0x03e4  [ 884415BD4269C02EAF8E2613BF85500D, EFE771709EC942694FD206AC8D0A48ED7DCD35036F074268E4AECD68AC982CEA ] C:\Windows\System32\msasn1.dll
21:00:33.0044 0x03e4  C:\Windows\System32\msasn1.dll - ok
21:00:33.0044 0x03e4  [ 9C278785347BCC991F8EA2999D90F58D, EA680C3642A6ABF627415AEE019956FAC702DC6A8F4B4D0FC8A4FB21EADD3896 ] C:\Windows\SysWOW64\normaliz.dll
21:00:33.0044 0x03e4  C:\Windows\SysWOW64\normaliz.dll - ok
21:00:33.0044 0x03e4  [ BF24D6F2ED97FE830BFD52B246F98E67, 6BBF4C4221A245462EF653798F6B416EEB12594AD1CB4E8BC8908A8CB2F53384 ] C:\Windows\System32\drivers\dxapi.sys
21:00:33.0044 0x03e4  C:\Windows\System32\drivers\dxapi.sys - ok
21:00:33.0044 0x03e4  [ A89392A32BA98468710FD7E38318934B, 20ADA396709E694B47976A269FE0C1C640192EED9E39EC288157AEFFA8E9AD4B ] C:\Windows\System32\win32k.sys
21:00:33.0044 0x03e4  C:\Windows\System32\win32k.sys - ok
21:00:33.0059 0x03e4  [ 0D7598360DF6C8637E6D678C20B5C47C, 0EC86D578C0B1703B89C24AE0FEE2CD91DD869BD4A97949A4B29AE57D490F890 ] C:\Windows\System32\csrsrv.dll
21:00:33.0059 0x03e4  C:\Windows\System32\csrsrv.dll - ok
21:00:33.0059 0x03e4  [ 60C2862B4BF0FD9F582EF344C2B1EC72, CB1C6018FC5C15483AC5BB96E5C2E2E115BB0C0E1314837D77201BAB37E8C03A ] C:\Windows\System32\csrss.exe
21:00:33.0059 0x03e4  C:\Windows\System32\csrss.exe - ok
21:00:33.0059 0x03e4  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\System32\basesrv.dll
21:00:33.0059 0x03e4  C:\Windows\System32\basesrv.dll - ok
21:00:33.0059 0x03e4  [ E0406AEF04B088D1C49FC78D0546F689, 7ADD4D1C174FAA5405BD94BAF104A5DD56BE00DBDC1ED9F069A95430A7B264AA ] C:\Windows\System32\winsrv.dll
21:00:33.0059 0x03e4  C:\Windows\System32\winsrv.dll - ok
21:00:33.0059 0x03e4  [ FEDE0629ECB23650D48989517D4914DA, AD3DFC34F0F4AF0EC7A2C018F7DCEF72DECA85E569BAEBA39484407956594D8B ] C:\Windows\System32\drivers\dxg.sys
21:00:33.0059 0x03e4  C:\Windows\System32\drivers\dxg.sys - ok
21:00:33.0059 0x03e4  [ 454800C2BC7F3927CE030141EE4F4C50, 10901E62DAA70657C499AD590DECCCA6E46FDDF4A193B2F19279E1B8ED7B1E44 ] C:\Windows\System32\drivers\usbvideo.sys
21:00:33.0059 0x03e4  C:\Windows\System32\drivers\usbvideo.sys - ok
21:00:33.0059 0x03e4  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] C:\Windows\System32\drivers\monitor.sys
21:00:33.0059 0x03e4  C:\Windows\System32\drivers\monitor.sys - ok
21:00:33.0075 0x03e4  [ F29FE765E1448EF371CFE05BFAC74ADB, F251581222D78543272FD4B14A6A59F4B0E0CC44A5FCBCF56DE4CA5783F78A75 ] C:\Windows\System32\tsddd.dll
21:00:33.0075 0x03e4  C:\Windows\System32\tsddd.dll - ok
21:00:33.0075 0x03e4  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\System32\sxssrv.dll
21:00:33.0075 0x03e4  C:\Windows\System32\sxssrv.dll - ok
21:00:33.0075 0x03e4  [ 94355C28C1970635A31B3FE52EB7CEBA, C4E98F07170CEC69CACDD5CEDB8927E48A2A299CB1B8CDA87526E768AF6174F0 ] C:\Windows\System32\wininit.exe
21:00:33.0075 0x03e4  C:\Windows\System32\wininit.exe - ok
21:00:33.0075 0x03e4  [ 401329D20D284FAF745F47294D6248D1, 3870389012C37A74F857F37F9F0348C369B3BF6D9A29EABC7CDBAEA413006BCF ] C:\Windows\System32\KBDPL1.DLL
21:00:33.0075 0x03e4  C:\Windows\System32\KBDPL1.DLL - ok
21:00:33.0075 0x03e4  [ 2C942733A5983DD4502219FF37C7EBC7, 34B20B6B0D7274E4B5B783F1D2345BC3DD9888964D5C2C65712F041A00CF5B45 ] C:\Windows\System32\profapi.dll
21:00:33.0075 0x03e4  C:\Windows\System32\profapi.dll - ok
21:00:33.0075 0x03e4  [ C2A8CB1275ECB85D246A9ECC02A728E3, 3603FADCA0060BD201148F9D59E4E2627F024609A6463AB525B5D1AD17BDCD10 ] C:\Windows\System32\RpcRtRemote.dll
21:00:33.0075 0x03e4  C:\Windows\System32\RpcRtRemote.dll - ok
21:00:33.0091 0x03e4  [ E30B04A8FE665C52162D70233ABEA9A3, E5586EDF32684B31D438B2BF800FA625F8D73473896995B5FFC907E1742BF79E ] C:\Windows\System32\framebuf.dll
21:00:33.0091 0x03e4  C:\Windows\System32\framebuf.dll - ok
21:00:33.0091 0x03e4  [ 8BEC4D6AD2864EDF68D9AD0C6AA6C6D1, 9708FC829CA75ADDC5921BAADC191F5BBAF90612164F4EFB042C002A05FC16B4 ] C:\Windows\System32\vga.dll
21:00:33.0091 0x03e4  C:\Windows\System32\vga.dll - ok
21:00:33.0091 0x03e4  [ 1151B1BAA6F350B1DB6598E0FEA7C457, B1506E0A7E826EFF0F5252EF5026070C46E2235438403A9A24D73EE69C0B8A49 ] C:\Windows\System32\winlogon.exe
21:00:33.0091 0x03e4  C:\Windows\System32\winlogon.exe - ok
21:00:33.0091 0x03e4  [ 0D9764D58C5EFD672B7184854B152E5E, 9827B43DABBEC39AB2E2294408D9C5304EF27A684903C5234C6070387723D49E ] C:\Windows\System32\winsta.dll
21:00:33.0091 0x03e4  C:\Windows\System32\winsta.dll - ok
21:00:33.0091 0x03e4  [ 2F0C8662DFA99A5958845AC824371BD6, 59163CB8BB8A7CB41B8C151785256375B04A18AEC78A4B136698FFB7E1C86008 ] C:\Windows\System32\KBDPL.DLL
21:00:33.0091 0x03e4  C:\Windows\System32\KBDPL.DLL - ok
21:00:33.0091 0x03e4  [ 331EFB5B729C3DB265F985D857B6F574, F83A806604B963E0A4F0E36D94C4BF802E0E26410C6C70B2DF97F6DE9C4CB896 ] C:\Windows\System32\KBDUSX.DLL
21:00:33.0091 0x03e4  C:\Windows\System32\KBDUSX.DLL - ok
21:00:33.0091 0x03e4  [ B26B1801356760841C3BC69F9F91537F, 83B9DF333E36C09E81D44E12AE5BE14650126FDA0CF4A0EA853BF40C5780EF81 ] C:\Windows\System32\WlS0WndH.dll
21:00:33.0091 0x03e4  C:\Windows\System32\WlS0WndH.dll - ok
21:00:33.0106 0x03e4  [ 9CEAD32E79A62150FE9F8557E58E008B, AFE4C1725EE94D7DE0749AE1495A4E5CC33C369F29B2A589DA66FFE27FF9777E ] C:\Windows\System32\sxs.dll
21:00:33.0106 0x03e4  C:\Windows\System32\sxs.dll - ok
21:00:33.0106 0x03e4  [ 784FA3DF338E2E8F5F0389D6FAC428AF, 9C8AA0CFDEB9E38AAF8EB08626070E0F0364F4F8A793CFE3532EC6C007980C34 ] C:\Windows\System32\cryptbase.dll
21:00:33.0106 0x03e4  C:\Windows\System32\cryptbase.dll - ok
21:00:33.0106 0x03e4  [ 90499F3163A9F815CF196A205EA3CD5D, 29B4ED3795CEC1177EB367132914CE21C194CDEC5DB9DC923FD928C85E94D821 ] C:\Windows\System32\apphelp.dll
21:00:33.0106 0x03e4  C:\Windows\System32\apphelp.dll - ok
21:00:33.0106 0x03e4  [ 9F84806B3991D338FFDFC4ECF86A6923, 642FF3B8EE8BD6597AABE74E106A65F0C5551786CEB18BC69946F9608B5CAF64 ] C:\Windows\System32\lsasrv.dll
21:00:33.0106 0x03e4  C:\Windows\System32\lsasrv.dll - ok
21:00:33.0106 0x03e4  [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] C:\Windows\System32\lsass.exe
21:00:33.0106 0x03e4  C:\Windows\System32\lsass.exe - ok
21:00:33.0106 0x03e4  [ 9662EE182644511439F1C53745DC1C88, D205B2C163E78AB42A5D67D7664EF6B75EA0374FF0924467D624F9DB0611F0AD ] C:\Windows\System32\lsm.exe
21:00:33.0106 0x03e4  C:\Windows\System32\lsm.exe - ok
21:00:33.0122 0x03e4  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\System32\services.exe
21:00:33.0122 0x03e4  C:\Windows\System32\services.exe - ok
21:00:33.0122 0x03e4  [ 2A86E54B441AD41557F75DC5609B9793, 8FEDE6909413C0FA5B63D58D39AFFD0F6C3BEEAF19B7B2F8674913ABFD79A912 ] C:\Windows\System32\sspicli.dll
21:00:33.0122 0x03e4  C:\Windows\System32\sspicli.dll - ok
21:00:33.0122 0x03e4  [ D8A79180614C14F87DA1038FFEB56F71, 60142DC3795FC7C7F24D1742A9475F67416695CA7EB1A64C57E42367AC0998E3 ] C:\Windows\System32\sspisrv.dll
21:00:33.0122 0x03e4  C:\Windows\System32\sspisrv.dll - ok
21:00:33.0122 0x03e4  [ 68083118797CAF30FB2EA3E71494D67E, 5F1BCDFCB00A20CD60CBC70A2FD97405EF0F7173DD0E404BBA7B06D39DB37364 ] C:\Windows\System32\sysntfy.dll
21:00:33.0122 0x03e4  C:\Windows\System32\sysntfy.dll - ok
21:00:33.0122 0x03e4  [ DEE7267C5D232A3B816866872CE199E6, A1994FD37667C52E7CBF873514C190DA61A3D1349786D187BFAE0006F61799AE ] C:\Windows\System32\wmsgapi.dll
21:00:33.0122 0x03e4  C:\Windows\System32\wmsgapi.dll - ok
21:00:33.0122 0x03e4  [ BBCDF350817BA86416C0F06B6981BE8D, D064438F97852B9BD6015C8B19377C61C671E0969E09506B8359FE7B1F373A61 ] C:\Windows\System32\scesrv.dll
21:00:33.0122 0x03e4  C:\Windows\System32\scesrv.dll - ok
21:00:33.0137 0x03e4  [ E914A50A151DFFE63D3935226DB5E2C1, 7DCCE4060344E1C771679F1C20378A0BEB3C1F06DB684072F07B98921A62A299 ] C:\Windows\System32\scext.dll
21:00:33.0137 0x03e4  C:\Windows\System32\scext.dll - ok
21:00:33.0137 0x03e4  [ 858DF0795CB5B4BACE0F33708925A414, A9063AF8D5C73A722BD269D144D8A65C98DB4CFDD9F626E3A8283754E22C8C9C ] C:\Windows\System32\secur32.dll
21:00:33.0137 0x03e4  C:\Windows\System32\secur32.dll - ok
21:00:33.0137 0x03e4  [ 3A9C9BAF610B0DD4967086040B3B62A9, E8E9A0F42B1EE7806EDCEED08AA024D037215D06CA317E3678BD5364AD513D23 ] C:\Windows\System32\srvcli.dll
21:00:33.0137 0x03e4  C:\Windows\System32\srvcli.dll - ok
21:00:33.0137 0x03e4  [ A744BA6E04C8AA4592818178DBF89521, 9E7C85D842DF16F9B8FED7B06AF309B5ECCBFD465F5552347D4C3F1FEFDC6F7A ] C:\Windows\System32\samsrv.dll
21:00:33.0137 0x03e4  C:\Windows\System32\samsrv.dll - ok
21:00:33.0137 0x03e4  [ 2D066FBE63F7026C43C662C094B98076, CDAB0E3F24A0AEC4FBFA68EB3E6F80AA86C15AC9080F27216E386CE829C3DF10 ] C:\Windows\System32\bridgeres.dll
21:00:33.0137 0x03e4  C:\Windows\System32\bridgeres.dll - ok
21:00:33.0137 0x03e4  [ 3A061472B38233BAFF9CFEFF2E49C46B, DF29B14C8D22A8A16AA336A09A6152E2C7FCA6CAF4E76F0C5DCB55BEF9D00515 ] C:\Windows\System32\cryptdll.dll
21:00:33.0137 0x03e4  C:\Windows\System32\cryptdll.dll - ok
21:00:33.0153 0x03e4  [ 3C073B0C596A0AF84933E7406766B040, 4698BBA678F553E15AD4B07AD7FB236281F872DEFEE97BFD637114476C8F97B3 ] C:\Windows\System32\wevtapi.dll
21:00:33.0153 0x03e4  C:\Windows\System32\wevtapi.dll - ok
21:00:33.0153 0x03e4  [ 7FBEBD2229EA5FD48D41B199EC2D541C, A465975D445A8D50CAF3EF29BD33354B320D11173C127BE30D5EBBFF7008CDCE ] C:\Windows\System32\authz.dll
21:00:33.0153 0x03e4  C:\Windows\System32\authz.dll - ok
21:00:33.0153 0x03e4  [ 86FE1B1F8FD42CD0DB641AB1CDB13093, 8C4BB4415105CE82FFFE658879EAE9D259A24C0F6DFC7D25507352DC99241BE2 ] C:\Windows\System32\cngaudit.dll
21:00:33.0153 0x03e4  C:\Windows\System32\cngaudit.dll - ok
21:00:33.0153 0x03e4  [ 2E8C52A0EC788D90FA35D9507D828771, DD5AAA10E075F209D9827C7A192AD5645D1156C149DB9B5AC1EF7B5E0B5F11DE ] C:\Windows\System32\ncrypt.dll
21:00:33.0153 0x03e4  C:\Windows\System32\ncrypt.dll - ok
21:00:33.0153 0x03e4  [ B9A95365E52F421A20E1501935FADDA5, DDB4CB575139233EFAF2C59B7E9B04AF36BBCCC63190181F3B2A7E6BFC86E77E ] C:\Windows\System32\bcrypt.dll
21:00:33.0153 0x03e4  C:\Windows\System32\bcrypt.dll - ok
21:00:33.0153 0x03e4  [ 02B64609F865A39365FF88580DF11738, 2F676B93898E1B6131AF6227BB7AB731EB9C29477F9BD4C2C60F0FC1E35CD968 ] C:\Windows\System32\msprivs.dll
21:00:33.0153 0x03e4  C:\Windows\System32\msprivs.dll - ok
21:00:33.0153 0x03e4  [ C6505DE3561537BA1004D638C2F93F2F, 3E4FDF374B1A9E43A8F61FD2D79E0515390ECABFDAF72C4BD44A7B6429039AF6 ] C:\Windows\System32\netjoin.dll
21:00:33.0153 0x03e4  C:\Windows\System32\netjoin.dll - ok
21:00:33.0169 0x03e4  [ 50532FCD7ECF02DD169CE5C485F02534, 8EE5D9D0EA53DC72BCC300692E521ACADD56AB09BFA3E78149D8B5A90648512C ] C:\Windows\System32\negoexts.dll
21:00:33.0169 0x03e4  C:\Windows\System32\negoexts.dll - ok
21:00:33.0169 0x03e4  [ 65D57212965A93FE78E41E3998BB97AD, A44EAED256EA8F39C28D7019AF2C1FB20C0A63EFE03C9A069CFA730E787FB179 ] C:\Windows\System32\kerberos.dll
21:00:33.0169 0x03e4  C:\Windows\System32\kerberos.dll - ok
21:00:33.0169 0x03e4  [ D0C2FBB6D97416B0166478FC7AE2B212, 7EAB6C37F0A845E645CA44CC060AC6C56E386C7EF7A64716C6786C9602AD8C9D ] C:\Windows\System32\cryptsp.dll
21:00:33.0169 0x03e4  C:\Windows\System32\cryptsp.dll - ok
21:00:33.0169 0x03e4  [ 1D5185A4C7E6695431AE4B55C3D7D333, 16F3906C54F1D71559836FDFCF4E83E7C9F454463D78FD577AD2D7022E0BCB51 ] C:\Windows\System32\mswsock.dll
21:00:33.0169 0x03e4  C:\Windows\System32\mswsock.dll - ok
21:00:33.0169 0x03e4  [ EF12B8385AA2849999008A977918F96B, ADEF9F5D2B0C2A30CB1B395C774E7FE75437135A09D3D4E6F97EE8656CE139B4 ] C:\Windows\System32\msv1_0.dll
21:00:33.0169 0x03e4  C:\Windows\System32\msv1_0.dll - ok
21:00:33.0169 0x03e4  [ EC7CBFF96B05ECF3D366355B3C64ADCF, F69ED45EBEDCA9CF000AC03281F0EC2C351F98513FBA90E63394E4E561D6C7A2 ] C:\Windows\System32\wship6.dll
21:00:33.0169 0x03e4  C:\Windows\System32\wship6.dll - ok
21:00:33.0184 0x03e4  [ AA339DD8BB128EF66660DFBBB59043D3, 76D9F849AFDDA38E04549EB67B4163478776F1B6EF46434168278F84FEB8FC5C ] C:\Windows\System32\netlogon.dll
21:00:33.0184 0x03e4  C:\Windows\System32\netlogon.dll - ok
21:00:33.0184 0x03e4  [ A52B6CC24063CC83C78C0E6F24DEEC01, 77E0D2B2356E71F9BE52FA479C9DDE17C453C198BB49CD4A97F2309628D82E3B ] C:\Windows\System32\dnsapi.dll
21:00:33.0184 0x03e4  C:\Windows\System32\dnsapi.dll - ok
21:00:33.0184 0x03e4  [ 8FFE297B8449386E7B6851458B6E474E, E149B37E11091D69D926242517E5655596594A6F01FEF06EB65D6BA5B354E326 ] C:\Windows\System32\logoncli.dll
21:00:33.0184 0x03e4  C:\Windows\System32\logoncli.dll - ok
21:00:33.0184 0x03e4  [ A199DE544BF5C61C134B22C7592226FC, AF0CC2DA847036F5FE6DD9FBEDA7C3D05AF291873D4EAE121676DC6E8841A78F ] C:\Windows\System32\schannel.dll
21:00:33.0184 0x03e4  C:\Windows\System32\schannel.dll - ok
21:00:33.0184 0x03e4  [ 95FB6CA4374E343DDD653FCC43F9D26B, 911A240F9C1DD155C2B1CD85FE4A8044EB2816AF166CD8CB66EEB905CA352881 ] C:\Windows\System32\wdigest.dll
21:00:33.0184 0x03e4  C:\Windows\System32\wdigest.dll - ok
21:00:33.0184 0x03e4  [ 5D8874A8C11DDDDE29E12DE0E2013493, 3E9A57137BF622AF83E3E4D58971E2C0200559CCA7545D16CF263AA03EE9C7D2 ] C:\Windows\System32\rsaenh.dll
21:00:33.0184 0x03e4  C:\Windows\System32\rsaenh.dll - ok
21:00:33.0200 0x03e4  [ E08088A97F95345E181C3DFCE2C615EF, DEF3B087DF5E10E4F8418029DB6E82546E62FEFA39694B7BD6A48CE8AAFD1B96 ] C:\Windows\System32\pku2u.dll
21:00:33.0200 0x03e4  C:\Windows\System32\pku2u.dll - ok
21:00:33.0200 0x03e4  [ 8A25506B6948EFBD5A7F37E53CCD36D9, 2A20562ED33ABD1D15C7BE9F4F1E623E3604BCC0F7214D067CD8C3D16B9EC6A7 ] C:\Windows\System32\TSpkg.dll
21:00:33.0200 0x03e4  C:\Windows\System32\TSpkg.dll - ok
21:00:33.0200 0x03e4  [ D6C7780A364C6BBACFA796BAB9F1B374, 3B5ED1A030BFD0BB73D4FFCD67A6A0B8501EF70293F223EFAA12F430ADF270F9 ] C:\Windows\System32\bcryptprimitives.dll
21:00:33.0200 0x03e4  C:\Windows\System32\bcryptprimitives.dll - ok
21:00:33.0200 0x03e4  [ 90BDEFC5DF334E5100EAA781D798DE1A, F48B650D811B6D57D2252E326C0C9CC74534BE9D510E7D3403F91D1C5C36281E ] C:\Windows\System32\efslsaext.dll
21:00:33.0200 0x03e4  C:\Windows\System32\efslsaext.dll - ok
21:00:33.0200 0x03e4  [ 52D3D5E3586988D4D9E34ACAAC33105C, C61B60BA962B25B8334F0941C3535EA4ACA1CC060B8A196E396CA3E11CEEF8A1 ] C:\Windows\System32\credssp.dll
21:00:33.0200 0x03e4  C:\Windows\System32\credssp.dll - ok
21:00:33.0200 0x03e4  [ ED78427259134C63ED69804D2132B86C, F6F51B8B35881ABCA5580ED111AAC80E466E6474ABAE31EC8BE46C23EDCA77B2 ] C:\Windows\System32\scecli.dll
21:00:33.0200 0x03e4  C:\Windows\System32\scecli.dll - ok
21:00:33.0215 0x03e4  [ 7CC7DF5B654DA579613F811D8C637E29, 70EAC059C1ED814810C75DBB9F4D188428CB942FFD8869D692158D384EB6BB35 ] C:\Windows\System32\ubpm.dll
21:00:33.0215 0x03e4  C:\Windows\System32\ubpm.dll - ok
21:00:33.0215 0x03e4  [ C78655BC80301D76ED4FEF1C1EA40A7D, 93B2ED4004ED5F7F3039DD7ECBD22C7E4E24B6373B4D9EF8D6E45A179B13A5E8 ] C:\Windows\System32\svchost.exe
21:00:33.0215 0x03e4  C:\Windows\System32\svchost.exe - ok
21:00:33.0215 0x03e4  [ B806E50427511BCF4AD8E8239C3E25FA, AB89B48ECCF90F701B314D18BE531CDA5ABE1636C17B994A5E4BE5AAC136B4E3 ] C:\Windows\System32\umpnpmgr.dll
21:00:33.0215 0x03e4  C:\Windows\System32\umpnpmgr.dll - ok
21:00:33.0215 0x03e4  [ E6EB44ABAAF1F330119F854856C53EBE, 77279972FFBFA984578DD4F17EB615F5D2D93590AF3A9FEFEFDB9128206C9887 ] C:\Windows\System32\SPInf.dll
21:00:33.0215 0x03e4  C:\Windows\System32\SPInf.dll - ok
21:00:33.0215 0x03e4  [ CD1B5AD07E5F7FEF30E055DCC9E96180, 63C58551F32B0B09377F64A6AE1FA81AF93B8A707A57A8C18722086906AD3046 ] C:\Windows\System32\devrtl.dll
21:00:33.0215 0x03e4  C:\Windows\System32\devrtl.dll - ok
21:00:33.0215 0x03e4  [ 7A17485DC7D8A7AC81321A42CD034519, 88D8705FA901793FC8C1CFD0175E49A6502BF0FC94A066BA573D2FD13AA5F04A ] C:\Windows\System32\userenv.dll
21:00:33.0215 0x03e4  C:\Windows\System32\userenv.dll - ok
21:00:33.0231 0x03e4  [ 9C9307C95671AC962F3D6EB3A4A89BAE, D1433791C9B8BCEEAD8937EC18D33E89E4E2012B5975228A8500FD141BC30078 ] C:\Windows\System32\gpapi.dll
21:00:33.0231 0x03e4  C:\Windows\System32\gpapi.dll - ok
21:00:33.0231 0x03e4  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] C:\Windows\System32\umpo.dll
21:00:33.0231 0x03e4  C:\Windows\System32\umpo.dll - ok
21:00:33.0231 0x03e4  [ F6C011B46FAEEF33536B2E80F48B5CBE, BDD149D3D6F9F6C8F6F34C311219BE5618CEEFBC7D35E37473A47F1D5D015067 ] C:\Windows\System32\pcwum.dll
21:00:33.0231 0x03e4  C:\Windows\System32\pcwum.dll - ok
21:00:33.0231 0x03e4  [ 716175021BDA290504CE434273F666BC, FA18CA2D8A5F4335E051E2933147D3C1E7308F7D446E2AEB6596CDEF6E2AFC88 ] C:\Windows\System32\powrprof.dll
21:00:33.0231 0x03e4  C:\Windows\System32\powrprof.dll - ok
21:00:33.0231 0x03e4  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] C:\Windows\System32\drivers\luafv.sys
21:00:33.0231 0x03e4  C:\Windows\System32\drivers\luafv.sys - ok
21:00:33.0231 0x03e4  [ 5C3669B71657F22E67A1D4BD49D2CBE7, 7CAE59AA6CA9CBBD70BBD707A155FB169BF3F71096275BF7C0F415B6A092C671 ] C:\Windows\System32\drivers\mbam.sys
21:00:33.0231 0x03e4  C:\Windows\System32\drivers\mbam.sys - ok
21:00:33.0247 0x03e4  [ D3381DC54C34D79B22CEE0D65BA91B7C, 70DC4ADCA4C0C28BB133287511E329D1B6B9B97F96CDE5B1D2F1F59FE1A965D9 ] C:\Windows\System32\drivers\WUDFPf.sys
21:00:33.0247 0x03e4  C:\Windows\System32\drivers\WUDFPf.sys - ok
21:00:33.0247 0x03e4  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] C:\Windows\System32\rpcss.dll
21:00:33.0247 0x03e4  C:\Windows\System32\rpcss.dll - ok
21:00:33.0247 0x03e4  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] C:\Windows\System32\RpcEpMap.dll
21:00:33.0247 0x03e4  C:\Windows\System32\RpcEpMap.dll - ok
21:00:33.0247 0x03e4  [ 16E964ABF6D1E0F0CC7822FCA9BA754D, 0E461387ACFD641DA22EE542A3C68AF5F7D3A7F967D974E3B198143D461ABE39 ] C:\Windows\System32\wshqos.dll
21:00:33.0247 0x03e4  C:\Windows\System32\wshqos.dll - ok
21:00:33.0247 0x03e4  [ 31559F3244C6BC00A52030CAA83B6B91, B2025742B5F0025ACE9821D5722DE3F997EEEAB21D2F381C9E307882DF422579 ] C:\Windows\System32\WSHTCPIP.DLL
21:00:33.0247 0x03e4  C:\Windows\System32\WSHTCPIP.DLL - ok
21:00:33.0247 0x03e4  [ 9AD9E06F8656F296D91FAE8EE5B95A27, 53384747D5864D699BCC4F48E0A5E656430EDAA65DCDAB4B11EA68FC7106459E ] C:\Windows\System32\FirewallAPI.dll
21:00:33.0247 0x03e4  C:\Windows\System32\FirewallAPI.dll - ok
21:00:33.0262 0x03e4  [ 715F03B4C7223349768013EA95D9E5B7, 09AB0535A54C2E2962F0FD06988D99060F8CECA39B07AC00A63204C773B95893 ] C:\Windows\System32\LogonUI.exe
21:00:33.0262 0x03e4  C:\Windows\System32\LogonUI.exe - ok
21:00:33.0262 0x03e4  [ 0BEE002C68E28CE6DA161DCF1376D7D7, 1D4EE0B9CE22D139478008D5591B8C9F027C235CBA601F95A96547CF98159D4B ] C:\Windows\System32\authui.dll
21:00:33.0262 0x03e4  C:\Windows\System32\authui.dll - ok
21:00:33.0262 0x03e4  [ 94E026870A55AAEAFF7853C1754091E9, B2F5D5629D12BDFA98DBED3898368F37D9009C7531B6909C7285A2C11C9A0F93 ] C:\Windows\System32\version.dll
21:00:33.0262 0x03e4  C:\Windows\System32\version.dll - ok
21:00:33.0262 0x03e4  [ 6011714C8C5C55CBFFAD24D61E879FBD, 75D615082A1C71C6ED3ABB49EDAF660EE538D112CF79B9C8AF0A583D1CE1BBB0 ] C:\Windows\System32\wevtsvc.dll
21:00:33.0262 0x03e4  C:\Windows\System32\wevtsvc.dll - ok
21:00:33.0262 0x03e4  [ B3BFBD758506ECB50C5804AAA76318F9, 34E079A6AB2D41D1E0B3887B6AE31C43941061B7176FFF2801C3F465C2C89578 ] C:\Windows\System32\cryptui.dll
21:00:33.0262 0x03e4  C:\Windows\System32\cryptui.dll - ok
21:00:33.0262 0x03e4  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] C:\Windows\System32\audiosrv.dll
21:00:33.0262 0x03e4  C:\Windows\System32\audiosrv.dll - ok
21:00:33.0262 0x03e4  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] C:\Windows\System32\dhcpcore.dll
21:00:33.0262 0x03e4  C:\Windows\System32\dhcpcore.dll - ok
21:00:33.0278 0x03e4  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67, E957E4463D318A44BA5109EE3428624DE901C5FF2BA358986DF6C6F059DDBCC2 ] C:\Windows\System32\adtschema.dll
21:00:33.0278 0x03e4  C:\Windows\System32\adtschema.dll - ok
21:00:33.0278 0x03e4  [ 227E2C382A1E02F8D4965E664D3BBE43, 1CFF20A8BF87ACE4FA4935EBEED72BFB1A1FE902A754899E2F50798D67DF5642 ] C:\Windows\System32\MMDevAPI.dll
21:00:33.0278 0x03e4  C:\Windows\System32\MMDevAPI.dll - ok
21:00:33.0278 0x03e4  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] C:\Windows\System32\mmcss.dll
21:00:33.0278 0x03e4  C:\Windows\System32\mmcss.dll - ok
21:00:33.0278 0x03e4  [ 78A1E65207484B7F8D3217507745F47C, 35F413ADB9D157F3666DD15DD58104D629CD9143198A1AB914B73A4A3C9903DD ] C:\Windows\System32\avrt.dll
21:00:33.0278 0x03e4  C:\Windows\System32\avrt.dll - ok
21:00:33.0278 0x03e4  [ F06BB4E336EA57511FDBAFAFCC47DE62, BE43EC62548E9FF89A9495A1722E22DBB76EEC3764F86E64057B636F27D15765 ] C:\Windows\System32\propsys.dll
21:00:33.0278 0x03e4  C:\Windows\System32\propsys.dll - ok
21:00:33.0278 0x03e4  [ 7FA8FDC2C2A27817FD0F624E78D3B50C, 7B63F6AA2CD6D4D07EA3C595B868B1A0749BB11620027A2BD9B935E3055481E4 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
21:00:33.0278 0x03e4  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
21:00:33.0293 0x03e4  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] C:\Windows\System32\wlansvc.dll
21:00:33.0293 0x03e4  C:\Windows\System32\wlansvc.dll - ok
21:00:33.0293 0x03e4  [ 4E9C2DB10F7E6AE91BF761139D4B745B, 8F63F78294F5585D599A114AF449DCC447CCB239D0F0B490BFE6B34A2146E730 ] C:\Windows\System32\shacct.dll
21:00:33.0293 0x03e4  C:\Windows\System32\shacct.dll - ok
21:00:33.0293 0x03e4  [ 5B3EBFC3DA142324B388DDCC4465E1FF, 5D58642305311F9BC9B779C9598BFC4E7433B3EA58404BF1FF9466838A2328C7 ] C:\Windows\System32\samlib.dll
21:00:33.0293 0x03e4  C:\Windows\System32\samlib.dll - ok
21:00:33.0293 0x03e4  [ D29E998E8277666982B4F0303BF4E7AF, 4F19AB5DC173E278EBE45832F6CEAA40E2DF6A2EDDC81B2828122442FE5D376C ] C:\Windows\System32\uxtheme.dll
21:00:33.0293 0x03e4  C:\Windows\System32\uxtheme.dll - ok
21:00:33.0293 0x03e4  [ 497BFEDDAF3950DD909C3B0C5558A25D, 980EA189929D95EB36E35980FFF0C81F7B78DE9422771FDE8F4AC7A779F5BD89 ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_2b24536c71ed437a\GdiPlus.dll
21:00:33.0293 0x03e4  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_2b24536c71ed437a\GdiPlus.dll - ok
21:00:33.0293 0x03e4  [ D5CCA1453B98A5801E6D5FF0FF89DC6C, 85F2C2480AAC31B6092187B431A562D79D4CFB1324F925C85055ABAB2483264B ] C:\Windows\System32\audiodg.exe
21:00:33.0293 0x03e4  C:\Windows\System32\audiodg.exe - ok
21:00:33.0309 0x03e4  [ FE05D03B73000CFF476E1D29109F3A84, 7880B025413338A7B114BECB5DC67605FC7A97142C26FD12F765A64A21805842 ] C:\Program Files\Windows Defender\MpEvMsg.dll
21:00:33.0309 0x03e4  C:\Program Files\Windows Defender\MpEvMsg.dll - ok
21:00:33.0309 0x03e4  [ 1F4492FE41767CDB8B89D17655847CDD, 184547FAC0C3D7148FAA3F601929A7089DE393BD19929A137DAD743331DD3F77 ] C:\Windows\System32\ntmarta.dll
21:00:33.0309 0x03e4  C:\Windows\System32\ntmarta.dll - ok
21:00:33.0309 0x03e4  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] C:\Windows\System32\cscsvc.dll
21:00:33.0309 0x03e4  C:\Windows\System32\cscsvc.dll - ok
21:00:33.0309 0x03e4  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] C:\Windows\System32\gpsvc.dll
21:00:33.0309 0x03e4  C:\Windows\System32\gpsvc.dll - ok
21:00:33.0309 0x03e4  [ 58775492FFD419248B08325E583C527F, DBB013971F5894F25C222C2D4D50A29DB6DF3C413792EE9CCC1A9E6D85469093 ] C:\Windows\System32\atl.dll
21:00:33.0309 0x03e4  C:\Windows\System32\atl.dll - ok
21:00:33.0309 0x03e4  [ 2DF36F15B2BC1571A6A542A3C2107920, A918F1EE95269DF973421AF2F5713DEEAF15EF0F77BAA7E8C515FFB69896FB7A ] C:\Windows\System32\nlaapi.dll
21:00:33.0309 0x03e4  C:\Windows\System32\nlaapi.dll - ok
21:00:33.0309 0x03e4  [ 5C78838B4D166D1A27DB3A8A820C799A, BBF7E1D0B6754CF06BF3936671FDF5BF6E845CA5678D0940EA54E9212B539B7F ] C:\Windows\System32\profsvc.dll
21:00:33.0309 0x03e4  C:\Windows\System32\profsvc.dll - ok
21:00:33.0325 0x03e4  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] C:\Windows\System32\themeservice.dll
21:00:33.0325 0x03e4  C:\Windows\System32\themeservice.dll - ok
21:00:33.0325 0x03e4  [ A77BE7CB3222B4FB0AC6C71D1C2698D4, 73566223914BF670DF6B5931FA213E546713531B10391ED65B5256BBD7ABDE7F ] C:\Windows\System32\dsrole.dll
21:00:33.0325 0x03e4  C:\Windows\System32\dsrole.dll - ok
21:00:33.0325 0x03e4  [ BE097F5BB10F9079FCEB2DC4E7E20F02, 90A88986C8C5F30FB153EC803FEDA6572B2C2630A6C9578FCC017800692694D5 ] C:\Windows\System32\slc.dll
21:00:33.0325 0x03e4  C:\Windows\System32\slc.dll - ok
21:00:33.0325 0x03e4  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] C:\Windows\System32\es.dll
21:00:33.0325 0x03e4  C:\Windows\System32\es.dll - ok
21:00:33.0325 0x03e4  [ 50544D04AD845C43130B70212EC05CCD, B2E6B558DE7D273512226685FF53ED17C9B4BF81B739FBCA5D3FC82DF8D2BCF7 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
21:00:33.0325 0x03e4  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
21:00:33.0325 0x03e4  [ 1A47D52E303B7543E4E6026595B95422, C577CD3837546A7CED5D2E8E97FA2EDACA133B4A8595770EF96CAE519BFE280F ] C:\Windows\System32\comres.dll
21:00:33.0325 0x03e4  C:\Windows\System32\comres.dll - ok
21:00:33.0340 0x03e4  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] C:\Windows\System32\Sens.dll
21:00:33.0340 0x03e4  C:\Windows\System32\Sens.dll - ok
21:00:33.0340 0x03e4  [ 29910D50542B1AA0F162EF3339C61B6D, 018F0922384A5757390652865BB2DF876E9DA08B0858BC619B41D2CD14533ED4 ] C:\Windows\System32\PeerDist.dll
21:00:33.0340 0x03e4  C:\Windows\System32\PeerDist.dll - ok
21:00:33.0340 0x03e4  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB, 018CB95A43CEA2063EA24691C71D51EF60D522C21502ABA8AD93876363D4B857 ] C:\Windows\System32\taskschd.dll
21:00:33.0340 0x03e4  C:\Windows\System32\taskschd.dll - ok
21:00:33.0340 0x03e4  [ 862596399AAFD2A21DB2AF9270CD4F70, 24CAA19EE791FB3440CE742C9064FCE0CB755EF0789D3CE62058A2CFEF0FF6D2 ] C:\Windows\System32\mstask.dll
21:00:33.0340 0x03e4  C:\Windows\System32\mstask.dll - ok
21:00:33.0340 0x03e4  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] C:\Windows\System32\uxsms.dll
21:00:33.0340 0x03e4  C:\Windows\System32\uxsms.dll - ok
21:00:33.0340 0x03e4  [ BD3674BE7FC9D8D3732C83E8499576ED, E6716A5895D629263A4D21959F48840429AB6F4B55A5FA2663EE5E86C9CA2BF1 ] C:\Windows\System32\wtsapi32.dll
21:00:33.0340 0x03e4  C:\Windows\System32\wtsapi32.dll - ok
21:00:33.0340 0x03e4  [ 7A95C95B6C4CF292D689106BCAE49543, 9029F489E1E817CE12839B8C6656E46190497D445DC3F43C20CF96E5E6BD0691 ] C:\Windows\System32\WUDFSvc.dll
21:00:33.0340 0x03e4  C:\Windows\System32\WUDFSvc.dll - ok
21:00:33.0356 0x03e4  [ 80E69670BDA10F32A941BA7358E33012, AFEC6DB90B06381074B23DC91BEF34E7EA4C87F4B6D836F6BF6BB05CDDBF7605 ] C:\Windows\System32\WUDFPlatform.dll
21:00:33.0356 0x03e4  C:\Windows\System32\WUDFPlatform.dll - ok
21:00:33.0356 0x03e4  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] C:\Windows\System32\drivers\fltMgr.sys
21:00:33.0356 0x03e4  C:\Windows\System32\drivers\fltMgr.sys - ok
21:00:33.0356 0x03e4  [ A3DB3C17EE6CAE65D53602B4E80BCCBC, D802A7C6161F937DC42A6E45FE1BB2C8272819F92C294C180EBCDF8FF72CBFDC ] C:\Windows\System32\PSHED.DLL
21:00:33.0356 0x03e4  C:\Windows\System32\PSHED.DLL - ok
21:00:33.0356 0x03e4  [ B0945E538CF906BBDDC5A11C8EE868CC, 5F3459F6512918835F7C9400905EC7C1FAEAA7114E0D28C522040C359E3B93F7 ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
21:00:33.0356 0x03e4  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
21:00:33.0356 0x03e4  [ 5E65B8C0E1AAE00E749BA4AC3B88E854, D641DDD1B14AED7FD1FB8D2B27BAC80548DF6D89A44FD57244FBAFC6F448BA37 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
21:00:33.0356 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe - ok
21:00:33.0371 0x03e4  [ D124F55B9393C976963407DFF51FFA79, EA1E16247C848C8C171C4CD1FA17BC5A018A1FCB0C0DAC25009066B6667B8EEF ] C:\Windows\SysWOW64\ntdll.dll
21:00:33.0371 0x03e4  C:\Windows\SysWOW64\ntdll.dll - ok
21:00:33.0371 0x03e4  [ 098EF40B77F88148349AAEBFE38E87C7, 4E3CDF9FEDBC2C2C031B5B52C20B0DDD7FAF0672D0B35469E239D93F1BD4BC1F ] C:\Windows\System32\wow64.dll
21:00:33.0371 0x03e4  C:\Windows\System32\wow64.dll - ok
21:00:33.0371 0x03e4  [ C742077774E78A388F11EC943AD717FC, 1D062803F758D7093608441EDFF72625E5333D2C47B4FC101463148B9A8F685C ] C:\Windows\System32\wow64win.dll
21:00:33.0371 0x03e4  C:\Windows\System32\wow64win.dll - ok
21:00:33.0371 0x03e4  [ 99F5AEDBA338CE63F047D86E07DA36F6, B21DDAC8568058E02743FFBDB76557BF76F133D3981298E0634D1D2620AFCE2D ] C:\Windows\System32\wow64cpu.dll
21:00:33.0371 0x03e4  C:\Windows\System32\wow64cpu.dll - ok
21:00:33.0371 0x03e4  [ E80758CF485DB142FCA1EE03A34EAD05, 3F94F8630C7603F9DA79BF021CB56AC5357502BADF6CB12F6CE11E5B2B244153 ] C:\Windows\SysWOW64\kernel32.dll
21:00:33.0371 0x03e4  C:\Windows\SysWOW64\kernel32.dll - ok
21:00:33.0371 0x03e4  [ 61EABC3358D869519D851B08C8FA512D, 00F4AEB2C0FBEDFBAFAC5E7DA17A5B7328E96216597153D3E7FAC219A284282B ] C:\Windows\SysWOW64\KernelBase.dll
21:00:33.0371 0x03e4  C:\Windows\SysWOW64\KernelBase.dll - ok
21:00:33.0387 0x03e4  [ 028D74F61952756C9DFFF7969162BB39, 045887F7424A0FAE471BD285ED7A3507EFDCEF986313651E462323ACE3312173 ] C:\Windows\SysWOW64\oleaut32.dll
21:00:33.0387 0x03e4  C:\Windows\SysWOW64\oleaut32.dll - ok
21:00:33.0387 0x03e4  [ 928CF7268086631F54C3D8E17238C6DD, F058FAFB04E7EBD5CADE9B48195B7AA7C3508F332A89F5E6E5F3F071E8CADD4A ] C:\Windows\SysWOW64\ole32.dll
21:00:33.0387 0x03e4  C:\Windows\SysWOW64\ole32.dll - ok
21:00:33.0387 0x03e4  [ E46D48A7FE961401F1CBF85531CDF05D, 24CA38641020FF9E07E16CE3992212E2BFD2759E902D12744D4989ADF11995BF ] C:\Windows\SysWOW64\msvcrt.dll
21:00:33.0387 0x03e4  C:\Windows\SysWOW64\msvcrt.dll - ok
21:00:33.0387 0x03e4  [ D6D3AD7BF1D6F6CE9547613ED5E170A2, EA3BD7FEC193A8CFE1D5736301ACADC476FB6AAC5475A45776D0A638E9845445 ] C:\Windows\SysWOW64\gdi32.dll
21:00:33.0387 0x03e4  C:\Windows\SysWOW64\gdi32.dll - ok
21:00:33.0387 0x03e4  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3, 01EB95FA3943CF3C6B1A21E473A5C3CB9FCBCE46913B15C96CAC14E4F04075B4 ] C:\Windows\SysWOW64\user32.dll
21:00:33.0387 0x03e4  C:\Windows\SysWOW64\user32.dll - ok
21:00:33.0387 0x03e4  [ 95E2376B3323F062EB562B8586D0F14A, BD3FA8750123D00AA0967FBA44372C46EA002681DA9C9B77A4F9261553E26017 ] C:\Windows\SysWOW64\advapi32.dll
21:00:33.0387 0x03e4  C:\Windows\SysWOW64\advapi32.dll - ok
21:00:33.0387 0x03e4  [ C5AD8083CF94201F1F8084ECC696A8B7, 9F9A23DC2587E88C1BF671E9E147F134242002288E22E1C57881F3ED721F4296 ] C:\Windows\SysWOW64\rpcrt4.dll
21:00:33.0387 0x03e4  C:\Windows\SysWOW64\rpcrt4.dll - ok
21:00:33.0403 0x03e4  [ CFC97F07904067A1E5FAE195D534DA3A, EB4D2D127312EB09E2ACCA3276779E80F90FAF77322684BABF72B8EC6E1F906C ] C:\Windows\SysWOW64\sechost.dll
21:00:33.0403 0x03e4  C:\Windows\SysWOW64\sechost.dll - ok
21:00:33.0403 0x03e4  [ F08F6FCD09F9BE94C37ACC1B344685FF, DE48D766258B46EFEAB16579421C4BD97ACC6883F782D00E9857F4A0CE7E8A34 ] C:\Windows\SysWOW64\cryptbase.dll
21:00:33.0403 0x03e4  C:\Windows\SysWOW64\cryptbase.dll - ok
21:00:33.0403 0x03e4  [ 384721EF4024890092625E20CADFAF85, 32FB012437C271CA4408EC60E6858485C2F9489107BBDB7011F728A0D2A26D2C ] C:\Windows\SysWOW64\lpk.dll
21:00:33.0403 0x03e4  C:\Windows\SysWOW64\lpk.dll - ok
21:00:33.0403 0x03e4  [ 7224D964A6D657374C551C878EB2C386, C6F56D05CFBC06ECEF8CF44DCDE939AB25C3D3C01CA43323F827EE3086836CD9 ] C:\Windows\SysWOW64\sspicli.dll
21:00:33.0403 0x03e4  C:\Windows\SysWOW64\sspicli.dll - ok
21:00:33.0403 0x03e4  [ 804AAAFEBB3AD5F49334DD906BCB1DE5, EB5DA86810D405555C84F4D452A604665250AB5D01714E0FBECF81CC8E791AC5 ] C:\Windows\SysWOW64\usp10.dll
21:00:33.0403 0x03e4  C:\Windows\SysWOW64\usp10.dll - ok
21:00:33.0403 0x03e4  [ 18AB2E5A40064ED5F7791AC5946A90F3, B7536CE56702C23B1CEC3E1B6C78866E0A76808B85A92AF3733D9ED9429E004C ] C:\Windows\SysWOW64\msimg32.dll
21:00:33.0403 0x03e4  C:\Windows\SysWOW64\msimg32.dll - ok
21:00:33.0418 0x03e4  [ 16AB4BD2ACC52109F43739BF0E89E18F, 8BF53004F8A413598B46C2ECFBA1EA581836E0E0839047471622F31A4A065DD7 ] C:\Windows\SysWOW64\shell32.dll
21:00:33.0418 0x03e4  C:\Windows\SysWOW64\shell32.dll - ok
21:00:33.0418 0x03e4  [ 702254574E7E52052DE39408457B7149, 645CA9E88DA21C63710A04A0F54421018DF415A3D612112C71A255C49325C082 ] C:\Windows\SysWOW64\version.dll
21:00:33.0418 0x03e4  C:\Windows\SysWOW64\version.dll - ok
21:00:33.0418 0x03e4  [ 8CC3C111D653E96F3EA1590891491D71, 1D326D7D116D76876EE2B14A5BFB7B4328E21DB9B5AAAB9CB67F8EFB93924230 ] C:\Windows\SysWOW64\shlwapi.dll
21:00:33.0418 0x03e4  C:\Windows\SysWOW64\shlwapi.dll - ok
21:00:33.0418 0x03e4  [ 352B3DC62A0D259A82A052238425C872, 393B24E0D6007C74AEE2FB2EE2C18623D37DF64E279B6767952DCFEE0EACBB10 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
21:00:33.0418 0x03e4  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
21:00:33.0418 0x03e4  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8, B1A9B2EF000917214C0198958CBD239D1D91B1720EC40DF041262A34D302AD74 ] C:\Windows\SysWOW64\winspool.drv
21:00:33.0418 0x03e4  C:\Windows\SysWOW64\winspool.drv - ok
21:00:33.0418 0x03e4  [ 454E292861A4EF1D72F43F42BBAF6917, 9179657AA2928627D73608D7EBA5A9A8D7507F9F67DD8EC1011C76AEE4914043 ] C:\Windows\SysWOW64\crypt32.dll
21:00:33.0418 0x03e4  C:\Windows\SysWOW64\crypt32.dll - ok
21:00:33.0434 0x03e4  [ A90DC9ABD65DB1A8902F361103029952, 26798758976CE53251AC342B966BE0363AE1794BD965C452F5DEBC33E18969F0 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
21:00:33.0434 0x03e4  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
21:00:33.0434 0x03e4  [ 6377051C63D5552A311935C67E9FDFDC, 3FB82988AAB66813567E8DB951D4EE87F156201070F005FDBF52EF998A323E65 ] C:\Windows\SysWOW64\nsi.dll
21:00:33.0434 0x03e4  C:\Windows\SysWOW64\nsi.dll - ok
21:00:33.0434 0x03e4  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9, E18D66455D00A6D2A2D7CC0833C233FE8A6DD910B59D6B5B5F82EF91450858DF ] C:\Windows\SysWOW64\sfc.dll
21:00:33.0434 0x03e4  C:\Windows\SysWOW64\sfc.dll - ok
21:00:33.0434 0x03e4  [ 84799328D87B3091A3BDD251E1AD31F9, F85521215924388830DBB13580688DB70B46AF4C7D82D549D09086438F8D237B ] C:\Windows\SysWOW64\sfc_os.dll
21:00:33.0434 0x03e4  C:\Windows\SysWOW64\sfc_os.dll - ok
21:00:33.0434 0x03e4  [ CFF35B879D1618D42C86644C717BA947, 1837275202628D3320867A3BF8CFDA15491730C4B74215F7C0D7E140BF01AC3C ] C:\Windows\SysWOW64\winnsi.dll
21:00:33.0434 0x03e4  C:\Windows\SysWOW64\winnsi.dll - ok
21:00:33.0434 0x03e4  [ 938F39B50BAFE13D6F58C7790682C010, 902000EE51EFEABAF6A4B30F880AA37083D2232C6FC622CA513C4A823390FEDA ] C:\Windows\SysWOW64\msasn1.dll
21:00:33.0434 0x03e4  C:\Windows\SysWOW64\msasn1.dll - ok
21:00:33.0434 0x03e4  [ 2D0D2DA87BEA7144F2A17F19D0D17E4C, F47B1A6B2284E9B1B664F835D9498C8D11FD411C524877F29783CDA71FB15BB9 ] C:\Windows\SysWOW64\wintrust.dll
21:00:33.0434 0x03e4  C:\Windows\SysWOW64\wintrust.dll - ok
21:00:33.0449 0x03e4  [ 4BBC85741BAC00060BCEB4982DFB800C, E121981CC060C88479C3AB9F24B52FA7F4C3104245D82F0273BB93B8795A6B91 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2engine.dll
21:00:33.0449 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\a2engine.dll - ok
21:00:33.0449 0x03e4  [ 4CEB44AE133F1628917E3385905B88D7, 5900C7EB5B360FF5469AA24E41F3D91C102E6E262937CA9CA40532BE8BE30D55 ] C:\Program Files (x86)\Emsisoft Anti-Malware\bdcore.dll
21:00:33.0449 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\bdcore.dll - ok
21:00:33.0449 0x03e4  [ A6F09E5669D9A19035F6D942CAA15882, 68C8AF0CC1923E3A7245392F2480EE665D265DF300A609D2540BF7C6D9C1A1BE ] C:\Windows\SysWOW64\imm32.dll
21:00:33.0449 0x03e4  C:\Windows\SysWOW64\imm32.dll - ok
21:00:33.0449 0x03e4  [ A543AC1F7138376D778D630A35FCBC4C, 2D824C66A97FC8C39DAFA397CC47495B712D175EEF393486946DA8936BDD466A ] C:\Windows\SysWOW64\psapi.dll
21:00:33.0449 0x03e4  C:\Windows\SysWOW64\psapi.dll - ok
21:00:33.0449 0x03e4  [ C9618BC9B2B0FD7C1138D8774795A79B, 0AC170669C2626519FA7A745C56BFBA6B83B8537488F5B9EB7BA72448E5E7A43 ] C:\Windows\SysWOW64\msctf.dll
21:00:33.0449 0x03e4  C:\Windows\SysWOW64\msctf.dll - ok
21:00:33.0449 0x03e4  [ 3CB6A7286422C72C34DAB54A5DFF1A34, 98D21EFFF511E407336A226420701E82554DA01FA05661303836B6860D63749D ] C:\Windows\System32\dui70.dll
21:00:33.0449 0x03e4  C:\Windows\System32\dui70.dll - ok
21:00:33.0465 0x03e4  [ 8CCDE014A4CDF84564E03ACE064CA753, DD663029B2EB7B12FDB00FCE403D8326141E540E3B9CE84CD5871473D3E2E2CF ] C:\Windows\System32\duser.dll
21:00:33.0465 0x03e4  C:\Windows\System32\duser.dll - ok
21:00:33.0465 0x03e4  [ D7F1EF374A90709B31591823B002F918, 05FD2837C9B03D14BB2A969C1AD77CAEF047D93DC5D0F6C2ACBF0888E8F7B359 ] C:\Windows\System32\SndVolSSO.dll
21:00:33.0465 0x03e4  C:\Windows\System32\SndVolSSO.dll - ok
21:00:33.0465 0x03e4  [ DA1B7075260F3872585BFCDD668C648B, 3E10EF6E1A5C341B478322CB78A0AB7BFC70AD8023779B8B4542A7CB4CA756AB ] C:\Windows\System32\dwmapi.dll
21:00:33.0465 0x03e4  C:\Windows\System32\dwmapi.dll - ok
21:00:33.0465 0x03e4  [ 896F15A6434D93EDB42519D5E18E6B50, 9263F0CEC58D45EBE3FB9C3061FB9392C55A7933B84B4592E6EE13CFC86D5A50 ] C:\Windows\System32\hid.dll
21:00:33.0465 0x03e4  C:\Windows\System32\hid.dll - ok
21:00:33.0465 0x03e4  [ D6F630C1FD7F436316093AE500363B19, 73A94B4938430396EA4240B1A6676B4E6C19CFAF8C52EFB9A69B4B2175A86307 ] C:\Windows\System32\xmllite.dll
21:00:33.0465 0x03e4  C:\Windows\System32\xmllite.dll - ok
21:00:33.0465 0x03e4  [ 26B73A85855681500BCC25C7CD9FF5B1, 94D134A6AF53AD629A4505B8B0EA37F61BB43AF4DB71874E7E87853163A9282A ] C:\Windows\System32\WindowsCodecs.dll
21:00:33.0465 0x03e4  C:\Windows\System32\WindowsCodecs.dll - ok
21:00:33.0465 0x03e4  [ C2762A57DF0EE85E63CE4893C5215313, DDE22212D78353633CEDE27D7210469DE674563991105563CF64CCCE2D0743BD ] C:\Windows\System32\VaultCredProvider.dll
21:00:33.0465 0x03e4  C:\Windows\System32\VaultCredProvider.dll - ok
21:00:33.0481 0x03e4  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D, 19959D18601712901F03B83150D15E34EBCAB355BB4692C9A28511A72F57FC66 ] C:\Windows\System32\winbrand.dll
21:00:33.0481 0x03e4  C:\Windows\System32\winbrand.dll - ok
21:00:33.0481 0x03e4  [ CA2985996BB49924B677113DF95CFEA7, 91F63863B1B597AE421CD2C3D8A3E00578B17876E5F5B828D25C2C9B349ECCCD ] C:\Windows\System32\SmartcardCredentialProvider.dll
21:00:33.0481 0x03e4  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
21:00:33.0481 0x03e4  [ BF352E73615F5461AA6884472435A544, 4B059E79325C5F08CD6FBBE6352E17ADB64B9608CC9EDB36A2DF4D148060C309 ] C:\Windows\System32\BioCredProv.dll
21:00:33.0481 0x03e4  C:\Windows\System32\BioCredProv.dll - ok
21:00:33.0481 0x03e4  [ 796B8123A7859AFD3A4AE10514DBAEB5, E76F69FAFEC3D66263ED95F3FA9EE309BDDACB287E30583A147DC97F6EEB8844 ] C:\Windows\System32\winbio.dll
21:00:33.0481 0x03e4  C:\Windows\System32\winbio.dll - ok
21:00:33.0481 0x03e4  [ CC0AB40F02D2C2A12209715A3C1B07B8, 90EB303A4E151340DB382248361FEFC5346C31394791DF83663086C8219C2B20 ] C:\Windows\System32\credui.dll
21:00:33.0481 0x03e4  C:\Windows\System32\credui.dll - ok
21:00:33.0481 0x03e4  [ 764908FE1FA96F93C95B1B67A0FCED29, 26EF25AB307903C5E806A8CC3B750A491049E5D1225CEDDFCE64DD51AA6F592B ] C:\Windows\System32\netapi32.dll
21:00:33.0481 0x03e4  C:\Windows\System32\netapi32.dll - ok
21:00:33.0496 0x03e4  [ 6CECA4C6A489C9B2E6073AFDAAE3F607, 127506D1DB38275614CBEB047C133718EF9D03266BA9C98BE55EC7847CFC9C3D ] C:\Windows\System32\netutils.dll
21:00:33.0496 0x03e4  C:\Windows\System32\netutils.dll - ok
21:00:33.0496 0x03e4  [ 44B9C66177651F3F53C87B665D58D17A, 3FC426115FF87570889DB28D71970B82B525D2A4B9A00EDD273BF083B77A05CE ] C:\Windows\System32\vaultcli.dll
21:00:33.0496 0x03e4  C:\Windows\System32\vaultcli.dll - ok
21:00:33.0496 0x03e4  [ FC51229C7D4AFA0D6F186133728B95AB, 37E58C8E1C8437D1981725A5DCDACA7316CEFBB570370CEFC8D122F523B96AC0 ] C:\Windows\System32\samcli.dll
21:00:33.0496 0x03e4  C:\Windows\System32\samcli.dll - ok
21:00:33.0496 0x03e4  [ 3C91392D448F6E5D525A85B7550D8BA9, 6FD0DC73DBE7519E2C643554C2A7F8FBE4F9A678C4241BB54B3C6E65D2ABCF3A ] C:\Windows\System32\wkscli.dll
21:00:33.0496 0x03e4  C:\Windows\System32\wkscli.dll - ok
21:00:33.0496 0x03e4  [ 972C3301DB3DA91AE06A95F6B4160B1B, 678B533A06C306295FE97DC26CE9BAFFC8EAF1FB7405ACB040719099717744D5 ] C:\Windows\System32\certCredProvider.dll
21:00:33.0496 0x03e4  C:\Windows\System32\certCredProvider.dll - ok
21:00:33.0496 0x03e4  [ 87FA0C48C3B2E9FEE518818FE26B15B5, DA4042DE9897397AEDCEFF9F69746726237305DDE64464309B6DCC45E05E42F4 ] C:\Windows\System32\rasplap.dll
21:00:33.0496 0x03e4  C:\Windows\System32\rasplap.dll - ok
21:00:33.0512 0x03e4  [ 019CD868461B646E09BDF04474C19341, 01837EFACB02E52BC6E90C90C4CB01B11D56E449A37EA4FC2695507FF85EA9FE ] C:\Windows\System32\rasapi32.dll
21:00:33.0512 0x03e4  C:\Windows\System32\rasapi32.dll - ok
21:00:33.0512 0x03e4  [ B28DEEC597C8DEB70C744C7CF9210E3E, E777F192D822990CA6301B3FEA2AEA213FA7901438EB3328914ADF02B6C39DB9 ] C:\Windows\System32\rasman.dll
21:00:33.0512 0x03e4  C:\Windows\System32\rasman.dll - ok
21:00:33.0512 0x03e4  [ B53C4B69B695EDA1B7E41D35CA4244E2, 3D98E9B263CADA576E4057E059AFC867F6E3F1001F3B73C8BCF9066763A45D9D ] C:\Windows\System32\rtutils.dll
21:00:33.0512 0x03e4  C:\Windows\System32\rtutils.dll - ok
21:00:33.0512 0x03e4  [ 9BC8610C32C96A2983A65DC21CAFA921, 2A4195F663C9D55939E3D8FEAA208090FDB0B8801A60164A7325B53104797CBC ] C:\Windows\System32\UXInit.dll
21:00:33.0512 0x03e4  C:\Windows\System32\UXInit.dll - ok
21:00:33.0512 0x03e4  [ 9869A4A10B90546DBD56947839FB4B87, 66C84DCF39D9F6896D55B1623184A028891A0A98ABE6044DE1D4BAD60C3C8D72 ] C:\Windows\System32\oleacc.dll
21:00:33.0512 0x03e4  C:\Windows\System32\oleacc.dll - ok
21:00:33.0512 0x03e4  [ 019BDD35DE269CB98B22DE8923C2AA3B, 68B216D5331B128CF1BCB3A3F82FD85B119FFDBCB796C907461CDD6248995817 ] C:\Windows\System32\UIAutomationCore.dll
21:00:33.0512 0x03e4  C:\Windows\System32\UIAutomationCore.dll - ok
21:00:33.0527 0x03e4  [ E424B3EF666B184CEE0B6871AAA8C9F6, D182D9B3A813C75F88CA16A9C236AB6167DF5861D155B5DC016B90918C4BD579 ] C:\Windows\System32\msimg32.dll
21:00:33.0527 0x03e4  C:\Windows\System32\msimg32.dll - ok
21:00:33.0527 0x03e4  [ 5AA945234E9D4CCE4F715276B9AA712C, 65165BD131056816F009D987FC78AC86FFE0C3C38A27E73F873586B7FF4D59CF ] C:\Windows\System32\imageres.dll
21:00:33.0527 0x03e4  C:\Windows\System32\imageres.dll - ok
21:00:33.0527 0x03e4  [ C733D233B623B7FFCE5031E4B756EE26, 33CC8B140B0E4A9B702E3468BE2646AEE4273F20C6EA5BAC6C3D8FC8EDEF0881 ] C:\Windows\SysWOW64\profapi.dll
21:00:33.0527 0x03e4  C:\Windows\SysWOW64\profapi.dll - ok
21:00:33.0527 0x03e4  [ D15618A0FF8DBC2C5BF3726BACC75A0B, ADD81EA1D208907D67802F0E96EC0327BA89021F870BA22B9C7E3A19013A6AE7 ] C:\Windows\SysWOW64\userenv.dll
21:00:33.0527 0x03e4  C:\Windows\SysWOW64\userenv.dll - ok
21:00:33.0527 0x03e4  [ 6A6B2EE4565A178035BE2A4FF6F2C968, E2E231F1C2E2CE19583483ACC53318651FA7CA2DE46BCB89B4CBF97CA0525122 ] C:\Windows\SysWOW64\wtsapi32.dll
21:00:33.0527 0x03e4  C:\Windows\SysWOW64\wtsapi32.dll - ok


#9 Xblee

Xblee
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  

Posted 13 November 2014 - 04:26 PM

21:00:33.0527 0x03e4  [ 6C870EEFC0404EF05BFA1151E53F9F4D, 9B0D2129D81EB803A81C3C49DE883C31B1B94C4FC2D973F7BFBD6B5E722BC4EA ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2wsc.dll
21:00:33.0527 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\a2wsc.dll - ok
21:00:33.0527 0x03e4  [ 6A354AB50370DBC29137BD2ECA3460E7, EA98E97C9A340958DA1F615B87A18A17229D010E51558D446D34A468C66E2801 ] C:\Program Files (x86)\Emsisoft Anti-Malware\fw32.dll
21:00:33.0527 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\fw32.dll - ok
21:00:33.0543 0x03e4  [ 7FF15A4F092CD4A96055BA69F903E3E9, 1B594E6D057C632ABB3A8CF838157369024BD6B9F515CA8E774B22FE71A11627 ] C:\Windows\SysWOW64\ws2_32.dll
21:00:33.0543 0x03e4  C:\Windows\SysWOW64\ws2_32.dll - ok
21:00:33.0543 0x03e4  [ 10FB16B50AFFDA6D44588F3C445DC273, 6CDA17DA9B44D11E69F7C6682FA633EA75731623BB21B429A0FE2086ED4495A7 ] C:\Windows\SysWOW64\setupapi.dll
21:00:33.0543 0x03e4  C:\Windows\SysWOW64\setupapi.dll - ok
21:00:33.0543 0x03e4  [ 3FFAEA12666E565FF51BF2FCA674F543, 95BA8DBDA495C170E075F48627D7DD89C6B29BE0CE0D0D8316B0236692675060 ] C:\Windows\SysWOW64\cfgmgr32.dll
21:00:33.0543 0x03e4  C:\Windows\SysWOW64\cfgmgr32.dll - ok
21:00:33.0543 0x03e4  [ CC4ED8BEA78B0DCA6F217E014C3291A7, 01104182E4E6FB3CF6397936D30B2CE3486967586D1B94187B59A8232DAE39FF ] C:\Windows\SysWOW64\devobj.dll
21:00:33.0543 0x03e4  C:\Windows\SysWOW64\devobj.dll - ok
21:00:33.0543 0x03e4  [ 3FD15B4611D9BDA3F8013548C0ECAECA, B47A8D9985D9B71EB870816A0AB2B6403D394CCBDF7DE5378D5721D58D68D28D ] C:\Windows\SysWOW64\ntmarta.dll
21:00:33.0543 0x03e4  C:\Windows\SysWOW64\ntmarta.dll - ok
21:00:33.0543 0x03e4  [ A8BB45F9ECAD993461E0FEF8E2A99152, ACB756EA54E71F124D928829666B5B439785593877FF7C0C76ADCF954F4E6C94 ] C:\Windows\SysWOW64\Wldap32.dll
21:00:33.0543 0x03e4  C:\Windows\SysWOW64\Wldap32.dll - ok
21:00:33.0559 0x03e4  [ 2B81776DA02017A37FE26C662827470E, A656353C50EE08422145D00DB9CFD9F6D3E664753B3C454B171E2A56A8AA94DC ] C:\Windows\System32\IPHLPAPI.DLL
21:00:33.0559 0x03e4  C:\Windows\System32\IPHLPAPI.DLL - ok
21:00:33.0559 0x03e4  [ 4C9210E8F4E052F6A4EB87716DA0C24C, 460F7990BDADB7D58D6DC95B094D30A2EFDC4CEED444B18A2F36E8D9076FB8B9 ] C:\Windows\System32\winnsi.dll
21:00:33.0559 0x03e4  C:\Windows\System32\winnsi.dll - ok
21:00:33.0559 0x03e4  [ 69BEBE14C562CDAB8C5F4C881E7D1343, 255C4E7B445E42850D4BE58C1E0B37BC73F5B51BEDDD89E72EA8B322D2FDC5CD ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2core32.dll
21:00:33.0559 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\a2core32.dll - ok
21:00:33.0559 0x03e4  [ F83FB687FE3CB8908CD98B509DCB4EA6, 09D98362148CFD691EF252695F76BB05F56AAE7D13561458A87199D9A7DC870D ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix86.dll
21:00:33.0559 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix86.dll - ok
21:00:33.0559 0x03e4  [ 731C7B93FBB09282787C3BC872DCE6BA, 55EDE94C3A28FCEDA9A06E2AA9EB37CF4E7807D2719F1609045D2B404A1AD451 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2update.dll
21:00:33.0559 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\a2update.dll - ok
21:00:33.0559 0x03e4  [ 1EBE9524683C7C4EED8B8BC93FB6FBCC, 78AF098E270EDE62466557091F14B2D37BDAB488F02E7CC769251FD17C02BA4A ] C:\Windows\SysWOW64\fltLib.dll
21:00:33.0559 0x03e4  C:\Windows\SysWOW64\fltLib.dll - ok
21:00:33.0574 0x03e4  [ 803AF5E2B4AB04B823EDF1CEDBF217BB, 71D218B3C07F1AAE2A295C05900CA8CDB35E06E78063E856BE00F84EE7DA01B5 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2framework.dll
21:00:33.0574 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\a2framework.dll - ok
21:00:33.0574 0x03e4  [ 9E28CAA559C533A531CCEE624DA8C64E, C0C1C6FF2C1F0D530B7B58CB5D19F0213488D58994B3BF8BF956E75D840F0A34 ] C:\Program Files (x86)\Emsisoft Anti-Malware\evcdiff.dll
21:00:33.0574 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\evcdiff.dll - ok
21:00:33.0574 0x03e4  [ A8EDB86FC2A4D6D1285E4C70384AC35A, 61B8955CE0A2AA9D0719920B30216717B349B6FBE11C697C31CFA84F859CC1AE ] C:\Windows\System32\dllhost.exe
21:00:33.0574 0x03e4  C:\Windows\System32\dllhost.exe - ok
21:00:33.0574 0x03e4  [ 14DFDEAF4E589ED3F1FF187A86B9408C, 86D383D5B90A86556521C62C50F7BE0306FCD24FD86A8A37E8320FAE948531EB ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
21:00:33.0574 0x03e4  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
21:00:33.0574 0x03e4  [ A0A2C1D812C231C9BFE119FDC68E341B, F94446594EE17505956A715DFB28B51D09F00A7A65E56950661B889A57DE8FA8 ] C:\Windows\System32\IDStore.dll
21:00:33.0574 0x03e4  C:\Windows\System32\IDStore.dll - ok
21:00:33.0574 0x03e4  [ 6CEF7856A3EFAC59470F6208F0F585CE, 0F7A80DB821FDE6580E9481B6DA44844F717DDB4983B0E3D562BE43726153951 ] C:\Windows\System32\mpr.dll
21:00:33.0574 0x03e4  C:\Windows\System32\mpr.dll - ok
21:00:33.0574 0x03e4  [ BAFE84E637BF7388C96EF48D4D3FDD53, 11C194D9ADCE90027272C627D7FBF3BA5025FF0F7B26A8333F764E11E1382CF9 ] C:\Windows\System32\userinit.exe
21:00:33.0574 0x03e4  C:\Windows\System32\userinit.exe - ok
21:00:33.0590 0x03e4  [ A5300E4E099DD3D306F194988C3E18B2, 57B7C1646E0AF7D7E72B9642E588C6AC45F48FA49949726BA97580654B462372 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2hooks64.dll
21:00:33.0590 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\a2hooks64.dll - ok
21:00:33.0590 0x03e4  [ F162D5F5E845B9DC352DD1BAD8CEF1BC, 8A7B7528DB30AB123B060D8E41954D95913C07BB40CDAE32E97F9EDB0BAF79C7 ] C:\Windows\System32\dwm.exe
21:00:33.0590 0x03e4  C:\Windows\System32\dwm.exe - ok
21:00:33.0590 0x03e4  [ FCFCD1101C5DA23B4B95F93D02B2C169, 040A086875B6C5475490A2F8B0CF4FF20DDB4FEDFE5FCABBA49692AA05F40527 ] C:\Windows\System32\dwmredir.dll
21:00:33.0590 0x03e4  C:\Windows\System32\dwmredir.dll - ok
21:00:33.0590 0x03e4  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] C:\Windows\System32\drivers\lltdio.sys
21:00:33.0590 0x03e4  C:\Windows\System32\drivers\lltdio.sys - ok
21:00:33.0590 0x03e4  [ 4BA77A5EF71C14C764B0ED4701683E3E, 066A064CDBE09BF8BE1DF5B259F30FF6C124A1C3D637800D3E19E8E25EDB950E ] C:\Windows\System32\dwmcore.dll
21:00:33.0590 0x03e4  C:\Windows\System32\dwmcore.dll - ok
21:00:33.0590 0x03e4  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] C:\Windows\System32\drivers\nwifi.sys
21:00:33.0590 0x03e4  C:\Windows\System32\drivers\nwifi.sys - ok
21:00:33.0605 0x03e4  [ D63BEE2A8B22482F7080A8D3F2E1A733, 20E2CC793E55548CA8F6EB7F02D51EEA7632E16302C9213705F3A9684AD9F41F ] C:\Windows\System32\d3d10_1.dll
21:00:33.0605 0x03e4  C:\Windows\System32\d3d10_1.dll - ok
21:00:33.0605 0x03e4  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] C:\Windows\System32\drivers\ndisuio.sys
21:00:33.0605 0x03e4  C:\Windows\System32\drivers\ndisuio.sys - ok
21:00:33.0605 0x03e4  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] C:\Windows\System32\drivers\rspndr.sys
21:00:33.0605 0x03e4  C:\Windows\System32\drivers\rspndr.sys - ok
21:00:33.0605 0x03e4  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] C:\Windows\System32\lmhsvc.dll
21:00:33.0605 0x03e4  C:\Windows\System32\lmhsvc.dll - ok
21:00:33.0605 0x03e4  [ 426BA4E737A7988FD1202AF2F2B2F4A6, 3E84B1EF044C157B7B228AE86A4466BC7E24B2D85F07636D0119041E3D630A2F ] C:\Windows\System32\d3d10_1core.dll
21:00:33.0605 0x03e4  C:\Windows\System32\d3d10_1core.dll - ok
21:00:33.0605 0x03e4  [ F404E59DB6A0F122AB26BF4F3E2FD0FA, 47F30401D86006821475F911A3D5E9B23571F6A8B4A9942891298E33D070D5D5 ] C:\Windows\System32\dxgi.dll
21:00:33.0605 0x03e4  C:\Windows\System32\dxgi.dll - ok
21:00:33.0621 0x03e4  [ F9EC845C5EECF20E9A67F9F805F2EF1F, C3DBA8CF93DBF50954B1BF6D7EF3F6F5DD1A56DC62B7EB2749C54D9B65D9BB43 ] C:\Windows\System32\keyiso.dll
21:00:33.0621 0x03e4  C:\Windows\System32\keyiso.dll - ok
21:00:33.0621 0x03e4  [ B73A6E4B319AFFE64582AC5C1801BB3F, 274EEA0743DC659180E691654CBB17136E9E9D83B07E302B47EA5B103EA57710 ] C:\Windows\System32\nrpsrv.dll
21:00:33.0621 0x03e4  C:\Windows\System32\nrpsrv.dll - ok
21:00:33.0621 0x03e4  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] C:\Windows\System32\nsisvc.dll
21:00:33.0621 0x03e4  C:\Windows\System32\nsisvc.dll - ok
21:00:33.0621 0x03e4  [ 71C7B65B6557B75B99907E76956AE4B8, 38AD0E96D6AD36C0643761D5F5DB7A2802E059008C0984ABF61F4D8703DE4B3B ] C:\Windows\System32\dhcpcore6.dll
21:00:33.0621 0x03e4  C:\Windows\System32\dhcpcore6.dll - ok
21:00:33.0621 0x03e4  [ CD55F5355D8F55D44C9F4ED875705BD6, 321C26E3CD9F376D30F05FBDF00E96399512ED705D867E8B14793D9CE69A1C1F ] C:\Windows\System32\dnsrslvr.dll
21:00:33.0621 0x03e4  C:\Windows\System32\dnsrslvr.dll - ok
21:00:33.0621 0x03e4  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] C:\Windows\System32\eapsvc.dll
21:00:33.0621 0x03e4  C:\Windows\System32\eapsvc.dll - ok
21:00:33.0621 0x03e4  [ 87356377F31DA5F20A833811CD59499C, 4FEC1FD3AC4E4E34DCBC0109B248952604F438C84B1604EB9E2359FA721E23C4 ] C:\Windows\System32\eapphost.dll
21:00:33.0621 0x03e4  C:\Windows\System32\eapphost.dll - ok
21:00:33.0637 0x03e4  [ 885D0942E0F28DB90919BE3129ECF279, 5A10D90EE656ECE3DCA174D6F924641509819FC20CB6EF46B5E1723E52DE85BE ] C:\Windows\System32\dnsext.dll
21:00:33.0637 0x03e4  C:\Windows\System32\dnsext.dll - ok
21:00:33.0637 0x03e4  [ 0040C486584A8E582C861CFB57AB5387, 5EE17B55CB702D14AE75B19226DE21CD2498BDA6C6EF5872FDB8A718F401FED1 ] C:\Windows\System32\FWPUCLNT.DLL
21:00:33.0637 0x03e4  C:\Windows\System32\FWPUCLNT.DLL - ok
21:00:33.0637 0x03e4  [ 9FCA3A84338ADEF2AFF67CDA46EF8539, 087DF72096852AE98C56990EE6E68835BE95E7E49ECDDE8B54DAC11C9E07FE94 ] C:\Windows\System32\umb.dll
21:00:33.0637 0x03e4  C:\Windows\System32\umb.dll - ok
21:00:33.0637 0x03e4  [ AC4C51EB24AA95B77F705AB159189E24, 6A671B92A69755DE6FD063FCBE4BA926D83B49F78C42DBAEED8CDB6BBC57576A ] C:\Windows\explorer.exe
21:00:33.0637 0x03e4  C:\Windows\explorer.exe - ok
21:00:33.0637 0x03e4  [ F568F7C08458D69E4FCD8675BBB107E4, A5FA25ECF248999A68CCECFBB508BFA1ADD18A23E20A9A9081A87C41CAAA36C0 ] C:\Windows\System32\dhcpcsvc.dll
21:00:33.0637 0x03e4  C:\Windows\System32\dhcpcsvc.dll - ok
21:00:33.0637 0x03e4  [ 4CBCC37856EA2039C27A2FB661DDA0E5, 74CBFAB3092A9564BDDFCB84DB3E3F8BCFD1492938ADF187423D3355D73D21C6 ] C:\Windows\System32\dhcpcsvc6.dll
21:00:33.0637 0x03e4  C:\Windows\System32\dhcpcsvc6.dll - ok
21:00:33.0652 0x03e4  [ A648C4A06DE367065B24056D067B4460, 2412487D65A833DDD9AB17D039515CC08DA22D006259EC4B03E42475FAFFD2AD ] C:\Windows\System32\wlanmsm.dll
21:00:33.0652 0x03e4  C:\Windows\System32\wlanmsm.dll - ok
21:00:33.0652 0x03e4  [ 06A1386B6E3A0CBC368665C1840906F4, C10BCA5092A0B3F9435CE4D65C7449528C89F5C5243B410878D2EBF516DA2FB2 ] C:\Windows\System32\wlansec.dll
21:00:33.0652 0x03e4  C:\Windows\System32\wlansec.dll - ok
21:00:33.0652 0x03e4  [ 0D753307D274F3688BD21C377B616700, 5DD08E77A11F2561FB96BA212FDDFE21D4394C69C34C3EB88F7F5CD068EE55BF ] C:\Windows\System32\eappcfg.dll
21:00:33.0652 0x03e4  C:\Windows\System32\eappcfg.dll - ok
21:00:33.0652 0x03e4  [ 65522E77A1360DBC8D199DA3BF5EFFE4, E9D748070FA478A3D37F15049F998D340885C0DC5FCE03BFCE5D521C9EBA7350 ] C:\Windows\System32\eappprxy.dll
21:00:33.0652 0x03e4  C:\Windows\System32\eappprxy.dll - ok
21:00:33.0652 0x03e4  [ 73FCB7919DEE80EE556F2E498594EBAE, D0F7A0AD3BC33263E9C2CF9787DD326436F9E0C9F5031D769F8A43C64C08A762 ] C:\Windows\System32\onex.dll
21:00:33.0652 0x03e4  C:\Windows\System32\onex.dll - ok
21:00:33.0652 0x03e4  [ 97E43F324BE1503CB2FFB058534688DA, 50C781DF38D0D38C9A5420AB1FFF8672DC13FD1ED8E9F5432B4BA3077A7435D5 ] C:\Windows\System32\l2gpstore.dll
21:00:33.0652 0x03e4  C:\Windows\System32\l2gpstore.dll - ok
21:00:33.0652 0x03e4  [ 5C29199C9F0EDE64F17F268084EC4392, EA9FD588A8C89399DD287399A912B356A4234CFE418239B227D255749F5DDDE2 ] C:\Windows\System32\msxml6.dll
21:00:33.0652 0x03e4  C:\Windows\System32\msxml6.dll - ok
21:00:33.0668 0x03e4  [ 7D5645EE0EA77D539828433D9B95F5EB, EEF81E9B2205FC456DB6095AD0AEAB38BB131D3BCD090EA6CD91D5568ACAFB7F ] C:\Windows\System32\WinSCard.dll
21:00:33.0668 0x03e4  C:\Windows\System32\WinSCard.dll - ok
21:00:33.0668 0x03e4  [ 7F1B4C6FF3B85F9ADF74055187B8A22C, CC95DA5662638AACBE9643DCB236464C2C2095A8D5CDC8A747045870BE9D0E7D ] C:\Windows\System32\wlanutil.dll
21:00:33.0668 0x03e4  C:\Windows\System32\wlanutil.dll - ok
21:00:33.0668 0x03e4  [ 730BF204A595D5B6D7DC57A247CC741C, 264C6901F4A49B738BBD04BCA1783DEE892885BADE9085B0AEA40BAE7CC0A218 ] C:\Windows\System32\wlgpclnt.dll
21:00:33.0668 0x03e4  C:\Windows\System32\wlgpclnt.dll - ok
21:00:33.0668 0x03e4  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] C:\Windows\System32\shsvcs.dll
21:00:33.0668 0x03e4  C:\Windows\System32\shsvcs.dll - ok
21:00:33.0668 0x03e4  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] C:\Windows\System32\schedsvc.dll
21:00:33.0668 0x03e4  C:\Windows\System32\schedsvc.dll - ok
21:00:33.0668 0x03e4  [ 03706015DB44368375AEBE6339490E66, 02EB28B5156E320C1EBABC03D37E94EB770A721B99E1DD276F8DC2A50D76C381 ] C:\Windows\System32\netcfgx.dll
21:00:33.0668 0x03e4  C:\Windows\System32\netcfgx.dll - ok
21:00:33.0683 0x03e4  [ BC414631876B2F28B8DAB08E849C12C5, 5973654AA3E90E6B699B0A43F645B893D95BAA803129B6967D746C8239AB26E3 ] C:\Windows\System32\ktmw32.dll
21:00:33.0683 0x03e4  C:\Windows\System32\ktmw32.dll - ok
21:00:33.0683 0x03e4  [ EED05D42D91835064703E2318552ED25, E9EE1E2253445B207B76F5D3073C612ED979A982522C1515E0FE8FA9641AE568 ] C:\Windows\System32\ExplorerFrame.dll
21:00:33.0683 0x03e4  C:\Windows\System32\ExplorerFrame.dll - ok
21:00:33.0683 0x03e4  [ 024352FEEC9042260BB4CFB4D79A206B, 60CB39086E10C5B66EBC15E4DF219620B344B4358D2918AB6BB3448A0AC8BE36 ] C:\Windows\System32\EhStorShell.dll
21:00:33.0683 0x03e4  C:\Windows\System32\EhStorShell.dll - ok
21:00:33.0683 0x03e4  [ 32802C0F6FC7C8F561B9D91F52A46421, EE02CF54FC3626D85849EF14D9B7B57419F12D1DD0735C25ECBD987EE53F634B ] C:\Windows\System32\cscui.dll
21:00:33.0683 0x03e4  C:\Windows\System32\cscui.dll - ok
21:00:33.0683 0x03e4  [ 1BF0CB861A48FEB1638228760750F3CB, 37C781A8C546EAD8B4D28BD7D730B9AC78EB799599AD69DAD9054B6F9F1DD6BD ] C:\Windows\System32\cscapi.dll
21:00:33.0683 0x03e4  C:\Windows\System32\cscapi.dll - ok
21:00:33.0683 0x03e4  [ 7EE5F17A21D9A9101207DF4BC37B085D, C07A56D52449B9F126B617FB4EFDC22EFE043C9B257B01967EA2FCCCA6216763 ] C:\Windows\System32\cscdll.dll
21:00:33.0683 0x03e4  C:\Windows\System32\cscdll.dll - ok
21:00:33.0683 0x03e4  [ 7BBF670114373CE6A203FA155A9E0D0A, 36EF0A36C679E53B1B169289BD3C05D7C2839DC20C8C87BF520B633911FDE198 ] C:\Windows\System32\ntshrui.dll
21:00:33.0683 0x03e4  C:\Windows\System32\ntshrui.dll - ok
21:00:33.0699 0x03e4  [ 1D63F4366288B8A7595397E27010FD44, 99EA4DDD88D9C4A4CC9B238F533CB4D2C062D46239173997E8594D8A75811A01 ] C:\Windows\System32\IconCodecService.dll
21:00:33.0699 0x03e4  C:\Windows\System32\IconCodecService.dll - ok
21:00:33.0699 0x03e4  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7, 4BC5A1279885EEFBEB27333AF719622A5FCDD9606697692C1978E434CE264D80 ] C:\Windows\System32\taskcomp.dll
21:00:33.0699 0x03e4  C:\Windows\System32\taskcomp.dll - ok
21:00:33.0699 0x03e4  [ 945E54F23C72D37B8CD1987AF0DB63BF, C2B217C94DBCA0A31ED834B9D492B53B25B235DDD02B1D1200E76609D32772EA ] C:\Windows\System32\fveapi.dll
21:00:33.0699 0x03e4  C:\Windows\System32\fveapi.dll - ok
21:00:33.0699 0x03e4  [ 694865362F0965779F92BCFE97712323, 825EB75E37AFE9B738869FB5D95020D4F44AD419C2F6C5A658F82A5242FDEF6C ] C:\Windows\System32\tbs.dll
21:00:33.0699 0x03e4  C:\Windows\System32\tbs.dll - ok
21:00:33.0699 0x03e4  [ 891ECFD08E2C538B7948CBC45106D697, 628D0D618FF3A70E9FBE3B2C7206C9365ED2297784A5F10FFA05BD2C56657013 ] C:\Windows\System32\fvecerts.dll
21:00:33.0699 0x03e4  C:\Windows\System32\fvecerts.dll - ok
21:00:33.0699 0x03e4  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] C:\Windows\System32\drivers\http.sys
21:00:33.0699 0x03e4  C:\Windows\System32\drivers\http.sys - ok
21:00:33.0715 0x03e4  [ B96C17B5DC1424D56EEA3A99E97428CD, AF0A85066A7983878DC1C663811CE61C6CA1912DC956184F878B7B82DB93C651 ] C:\Windows\System32\spoolsv.exe
21:00:33.0715 0x03e4  C:\Windows\System32\spoolsv.exe - ok
21:00:33.0715 0x03e4  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] C:\Windows\System32\BFE.DLL
21:00:33.0715 0x03e4  C:\Windows\System32\BFE.DLL - ok
21:00:33.0715 0x03e4  [ 517110BD83835338C037269E603DB55D, 499A803DE14905F2FF7BCA56D81CC983E16A8D9CEA93EC4B84A06A366E7CB939 ] C:\Windows\System32\taskhost.exe
21:00:33.0715 0x03e4  C:\Windows\System32\taskhost.exe - ok
21:00:33.0715 0x03e4  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] C:\Windows\System32\drivers\cdfs.sys
21:00:33.0715 0x03e4  C:\Windows\System32\drivers\cdfs.sys - ok
21:00:33.0715 0x03e4  [ 91CE0D3DC57DD377E690A2D324022B08, 61874463956C0BCA5139522F34E974E5F638A092E0FD5C59DD30DE61D9AB8B0E ] C:\Windows\System32\drivers\bowser.sys
21:00:33.0715 0x03e4  C:\Windows\System32\drivers\bowser.sys - ok
21:00:33.0715 0x03e4  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] C:\Windows\System32\drivers\mpsdrv.sys
21:00:33.0715 0x03e4  C:\Windows\System32\drivers\mpsdrv.sys - ok
21:00:33.0715 0x03e4  [ FAF015B07E3A2874A790A39B7D2C579F, C614B0E80B38EBF7C670EEB833F5E476B33042097DA07206D6C5EE3E52B9A427 ] C:\Windows\System32\drivers\mrxsmb.sys
21:00:33.0715 0x03e4  C:\Windows\System32\drivers\mrxsmb.sys - ok
21:00:33.0730 0x03e4  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] C:\Windows\System32\MPSSVC.dll
21:00:33.0730 0x03e4  C:\Windows\System32\MPSSVC.dll - ok
21:00:33.0730 0x03e4  [ 08E2345DF129082BCDFFDC1440F9C00D, 2ADF69F49DF8C43D4440B6C8A62085C51518CA895A88D37264C60A0B4B1EC55F ] C:\Windows\System32\drivers\mrxsmb10.sys
21:00:33.0730 0x03e4  C:\Windows\System32\drivers\mrxsmb10.sys - ok
21:00:33.0730 0x03e4  [ 108D87409C5812EF47D81E22843E8C9D, CAE9B91B6BD1DF1552463BD63A06288F5D3E0B81B040BC1C7EC0C2A0119CCECA ] C:\Windows\System32\drivers\mrxsmb20.sys
21:00:33.0730 0x03e4  C:\Windows\System32\drivers\mrxsmb20.sys - ok
21:00:33.0730 0x03e4  [ C67F8A962B2534224D5908D16D2AD3CE, CAC1821F5E867285638AEE7AE33CE574BCCF16277AC5AD805650B48F7759B4B4 ] C:\Windows\System32\wfapigp.dll
21:00:33.0730 0x03e4  C:\Windows\System32\wfapigp.dll - ok
21:00:33.0730 0x03e4  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] C:\Windows\System32\wkssvc.dll
21:00:33.0730 0x03e4  C:\Windows\System32\wkssvc.dll - ok
21:00:33.0730 0x03e4  [ 15597883FBE9B056F276ADA3AD87D9AF, B347E0B11228E38313C59C8ED984253A8A1FF482ED137CF5F488C4AFD6B08857 ] C:\Windows\System32\cryptsvc.dll
21:00:33.0730 0x03e4  C:\Windows\System32\cryptsvc.dll - ok
21:00:33.0746 0x03e4  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] C:\Windows\System32\dps.dll
21:00:33.0746 0x03e4  C:\Windows\System32\dps.dll - ok
21:00:33.0746 0x03e4  [ 8269210DAF3B12BC8300631B28A2A442, EABEB792C2EA8D4A1A7B13281CF557C194D5667AE0BA2A2D5664908D8269113D ] C:\Windows\System32\wiarpc.dll
21:00:33.0746 0x03e4  C:\Windows\System32\wiarpc.dll - ok
21:00:33.0746 0x03e4  [ E6F0F82788E8BD0F7A616350EFA0761C, 13091DCB3E3F4F52C3FF210E93AAF1DCE142CFC09F671AEAC5B922393B23E67B ] C:\Windows\System32\actxprxy.dll
21:00:33.0746 0x03e4  C:\Windows\System32\actxprxy.dll - ok
21:00:34.0011 0x03e4  [ 1834B31C749B86DAC233BBBA1C03BC48, 27FCA9196842C0BB53CCAD895870A0EB10D2F8ED67E5486A4437067BD4BC4448 ] C:\Windows\System32\mscms.dll
21:00:34.0011 0x03e4  C:\Windows\System32\mscms.dll - ok
21:00:34.0011 0x03e4  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567, 426FB40A065FEF61980C803EF72D0D326C623340C3AE99CA8AFFDEFB81E8D49D ] C:\Windows\System32\vssapi.dll
21:00:34.0011 0x03e4  C:\Windows\System32\vssapi.dll - ok
21:00:34.0011 0x03e4  [ 9A9B2E57B2FF59AE76652DA8723640D0, 8D7458CC85EA9B9008B3F98F14C62A33035840D85058664B55928CB3464903FC ] C:\Program Files (x86)\GlassWire\GWCtlSrv.exe
21:00:34.0011 0x03e4  C:\Program Files (x86)\GlassWire\GWCtlSrv.exe - ok
21:00:34.0027 0x03e4  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] C:\Windows\System32\pcasvc.dll
21:00:34.0027 0x03e4  C:\Windows\System32\pcasvc.dll - ok
21:00:34.0027 0x03e4  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] C:\Windows\System32\snmptrap.exe
21:00:34.0027 0x03e4  C:\Windows\System32\snmptrap.exe - ok
21:00:34.0027 0x03e4  [ 91A8E32B00BF7899EDAB6783287DDDA6, 49451722317AB42B3DE407EFCB9CC560C1455217AC3E2F11F74D08C1708473C5 ] C:\Windows\System32\PeerDistSh.dll
21:00:34.0027 0x03e4  C:\Windows\System32\PeerDistSh.dll - ok
21:00:34.0042 0x03e4  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] C:\Windows\System32\provsvc.dll
21:00:34.0042 0x03e4  C:\Windows\System32\provsvc.dll - ok
21:00:34.0042 0x03e4  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] C:\Windows\System32\sstpsvc.dll
21:00:34.0042 0x03e4  C:\Windows\System32\sstpsvc.dll - ok
21:00:34.0042 0x03e4  [ 287923557447D7E4BDD7E65B1F0F5428, 14D85A0F036F28D77AA9723C3D7E8C4DA9BDFF8A1AD9BEA6FE5756DBF5D00F08 ] C:\Windows\System32\vsstrace.dll
21:00:34.0042 0x03e4  C:\Windows\System32\vsstrace.dll - ok
21:00:34.0042 0x03e4  [ 3E29914113EC4B968BA5EB1F6D194A0A, C8D5572CA8D7624871188F0ACABC3AE60D4C5A4F6782D952B9038DE3BC28B39A ] C:\Program Files (x86)\GlassWire\msvcp110.dll
21:00:34.0042 0x03e4  C:\Program Files (x86)\GlassWire\msvcp110.dll - ok
21:00:34.0042 0x03e4  [ 4BA25D2CBE1587A841DCFB8C8C4A6EA6, B30160E759115E24425B9BCDF606EF6EBCE4657487525EDE7F1AC40B90FF7E49 ] C:\Program Files (x86)\GlassWire\msvcr110.dll
21:00:34.0042 0x03e4  C:\Program Files (x86)\GlassWire\msvcr110.dll - ok
21:00:34.0058 0x03e4  [ 03A03A453F1AAAE0C73AAAF895321C7A, BB46C581347EDA9CAF287E24163A593F07BD723E1C250ADD8E5C46BB349B668C ] C:\Windows\SysWOW64\FWPUCLNT.DLL
21:00:34.0058 0x03e4  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
21:00:34.0058 0x03e4  [ CA9F7888B524D8100B977C81F44C3234, 57F3353F89724147D8AC8B69B12C1303DF26978309776F5F8CCF074526A915D3 ] C:\Windows\SysWOW64\winhttp.dll
21:00:34.0058 0x03e4  C:\Windows\SysWOW64\winhttp.dll - ok
21:00:34.0058 0x03e4  [ 02C61D8AD469417F5508225C75DE3236, 579555AB92DA532D69E14B62064B7D415338A963099BB84B599E1FF55D933787 ] C:\Windows\SysWOW64\webio.dll
21:00:34.0058 0x03e4  C:\Windows\SysWOW64\webio.dll - ok
21:00:34.0058 0x03e4  [ 8999B8631C7FD9F7F9EC3CAFD953BA24, 4E96D3EACCB1EF7DC429CAF433C2D4A0A129333B9AB10A05C32CA33C67DC26FA ] C:\Windows\SysWOW64\mswsock.dll
21:00:34.0058 0x03e4  C:\Windows\SysWOW64\mswsock.dll - ok
21:00:34.0058 0x03e4  [ E90DA42B87D684DEBFB73B38A718A006, BB18C63C1982F5CB99C9B65D2B801E8C1909AD7CD0171326DC0015D6B781B451 ] C:\ProgramData\DatacardService\HWDeviceService64.exe
21:00:34.0058 0x03e4  C:\ProgramData\DatacardService\HWDeviceService64.exe - ok
21:00:34.0058 0x03e4  [ 8CE1A6D16B9077E91E192499EB611C5F, 68BB66B40383F7CA04F314FECC12A346914139A64F72CAE791B882B6CB8DC314 ] C:\Windows\SysWOW64\netapi32.dll
21:00:34.0058 0x03e4  C:\Windows\SysWOW64\netapi32.dll - ok
21:00:34.0073 0x03e4  [ 20B3934DB73EABA2B49B7177873CB81F, 492EAC5C51472B43DE11825358AEC4B9E3A081DACFD7513C696D6FE40F302EE5 ] C:\Windows\SysWOW64\netutils.dll
21:00:34.0073 0x03e4  C:\Windows\SysWOW64\netutils.dll - ok
21:00:34.0073 0x03e4  [ 5CCDCD40E732D54E0F7451AC66AC1C87, 66F4DA105BD72E41250CD59E2B3CD931B47AC9FDB6C784B9E33C5EE1AC29841F ] C:\Windows\SysWOW64\srvcli.dll
21:00:34.0073 0x03e4  C:\Windows\SysWOW64\srvcli.dll - ok
21:00:34.0073 0x03e4  [ FF5688D309347F2720911D8796912834, 3B0D73C50D40A6F42629B7750F99F656BF5C1C50237D5F98B6C0F2CE5E2DA359 ] C:\Windows\SysWOW64\clbcatq.dll
21:00:34.0073 0x03e4  C:\Windows\SysWOW64\clbcatq.dll - ok
21:00:34.0073 0x03e4  [ E5A4A1326A02F8E7B59E6C3270CE7202, DCB76016F9AC47E631540874DA208A089F9D529DA9628705A2869B954526BFE0 ] C:\Windows\SysWOW64\wkscli.dll
21:00:34.0073 0x03e4  C:\Windows\SysWOW64\wkscli.dll - ok
21:00:34.0073 0x03e4  [ 3F50200237961034FACE602373838980, F97D72CC75D921CF8F8E0544614407358AEFF97A8F48E4A89F82689EE8F2FC86 ] C:\Windows\SysWOW64\FirewallAPI.dll
21:00:34.0073 0x03e4  C:\Windows\SysWOW64\FirewallAPI.dll - ok
21:00:34.0073 0x03e4  [ 7321F18D1F820612ED0E9F2D4B578A7E, 612BD7DE1DFBD100BD6ACB37A38565D88C39842D990D296B9B8E1FB75C3A94E7 ] C:\Windows\SysWOW64\cryptsp.dll
21:00:34.0073 0x03e4  C:\Windows\SysWOW64\cryptsp.dll - ok
21:00:34.0089 0x03e4  [ 418E881201583A3039D81F43E39E6C78, C96AAC161E09BE12815A4E931E65F66DB1A456C03253EF1111AE66F44B1515FF ] C:\Windows\SysWOW64\winsta.dll
21:00:34.0089 0x03e4  C:\Windows\SysWOW64\winsta.dll - ok
21:00:34.0089 0x03e4  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3, 2A610BEB16610FE2F2E9A50477A62A05481E8A5843A814955A0EDFF45D0304B3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
21:00:34.0089 0x03e4  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
21:00:34.0089 0x03e4  [ ED8EC63F7522DF4852147C84EC62C36A, 75633011CD28DCBD4834211A9D415F17DE15BFCD80FB9FF6CE25CBBD4E9899AF ] C:\Windows\SysWOW64\rsaenh.dll
21:00:34.0089 0x03e4  C:\Windows\SysWOW64\rsaenh.dll - ok
21:00:34.0089 0x03e4  [ 29CA5974FAB0E8AE4AA7814FE05CF832, ADE54D406AAB7C364851AAD278A569426C9ADD4F7FB543BB08428CED963BF541 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
21:00:34.0089 0x03e4  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
21:00:34.0089 0x03e4  [ 4E5FE39C1076D115EC8BFCFE14D75B80, F1D02BCA6F664DCDD0CCDE269D31787C7553CD38C7208A8DD8B80B9EA09FEB1C ] C:\Windows\SysWOW64\credssp.dll
21:00:34.0089 0x03e4  C:\Windows\SysWOW64\credssp.dll - ok
21:00:34.0105 0x03e4  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] C:\Windows\SysWOW64\netprofm.dll
21:00:34.0105 0x03e4  C:\Windows\SysWOW64\netprofm.dll - ok
21:00:34.0105 0x03e4  [ 104A1070E90F1C530328E69B49718841, C5EBDD404F92E185467C390CC30DB4BD7BE0193536DD5708277662D4B0EA38D1 ] C:\Windows\SysWOW64\nlaapi.dll
21:00:34.0105 0x03e4  C:\Windows\SysWOW64\nlaapi.dll - ok
21:00:34.0105 0x03e4  [ 5997D769CDB108390DCFAEBF442BF816, 0E25CA984C0EEB629184423FAA9BC6D4356DF9A93F281E06DC83B4AC638AEC4A ] C:\Windows\SysWOW64\RpcRtRemote.dll
21:00:34.0105 0x03e4  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
21:00:34.0105 0x03e4  [ 94EEAC26F57811BD1AEFC164412F7FCE, 7390BCD7709D48DE75D7D6E06AA7356D1C58EE63F3CC2E07ABCD2E2FF6CC81CF ] C:\Windows\System32\PlaySndSrv.dll
21:00:34.0105 0x03e4  C:\Windows\System32\PlaySndSrv.dll - ok
21:00:34.0105 0x03e4  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA, 8A6ACEFAB95E5275CBFBE6CCB5A6C3A6A471260B279B9063E86B9C7765E18656 ] C:\Windows\System32\MsCtfMonitor.dll
21:00:34.0105 0x03e4  C:\Windows\System32\MsCtfMonitor.dll - ok
21:00:34.0105 0x03e4  [ F09A9A1AD21FE618C4C8B0A0D830C886, 29831DDAB2AB105358FBC067CDF96428220B6743CD6019F6FE74BAC7AF325E7E ] C:\Windows\System32\msutb.dll
21:00:34.0105 0x03e4  C:\Windows\System32\msutb.dll - ok
21:00:34.0120 0x03e4  [ 9BB99503D6A4DD62569EDE9E5E2672A5, 6F4EA5BC50B1F929735246485263078BEF1B3BEB33F78CB1F483F13AA226C27E ] C:\Windows\System32\HotStartUserAgent.dll
21:00:34.0120 0x03e4  C:\Windows\System32\HotStartUserAgent.dll - ok
21:00:34.0120 0x03e4  [ 65EA57712340C09B1B0C427B4848AE05, 5FDCF73191BFF9DBB03886755FFCF0BC15849F0E216884A5A8B9BB375FA7C1A5 ] C:\Windows\System32\taskeng.exe
21:00:34.0120 0x03e4  C:\Windows\System32\taskeng.exe - ok
21:00:34.0120 0x03e4  [ 349AB4F70E2AC44970894E7F03E1576E, 584D84AD7BE834B72E3C4548B3E1E25984CCC5F9EAA2245C44CB6BFC63A9D716 ] C:\ProgramData\DatacardService\DCSHelper.exe
21:00:34.0120 0x03e4  C:\ProgramData\DatacardService\DCSHelper.exe - ok
21:00:34.0120 0x03e4  [ 6D8A2EE4244630B290A837E79C0F37A1, 6783BBC0BDC93E4D6D43531A1AD0DF5CD26C3BBFA6384927C5CF65AD97FB04AD ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
21:00:34.0120 0x03e4  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe - ok
21:00:34.0120 0x03e4  [ EF2AE43BCD46ABB13FC3E5B2B1935C73, 81FC06F306F620845D7DD8D06E706309E70BC89B589C81F3478302A3F5F73431 ] C:\Windows\System32\winmm.dll
21:00:34.0120 0x03e4  C:\Windows\System32\winmm.dll - ok
21:00:34.0136 0x03e4  [ 1C6C3C558AA7AFFA82BCCAA9980234B9, 8AACCC5F0CBFEAC568654F49AE880D26C9C0F623F7EDCA815FBB9F9CDF3C6221 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2hooks32.dll
21:00:34.0136 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\a2hooks32.dll - ok
21:00:34.0136 0x03e4  [ 43964FA89CCF97BA6BE34D69455AC65F, 10E3B89A5470E1BB6F73382135DD2352F5073C1EE8485D7476CFB5122D4AAA2F ] C:\Windows\SysWOW64\uxtheme.dll
21:00:34.0136 0x03e4  C:\Windows\SysWOW64\uxtheme.dll - ok
21:00:34.0136 0x03e4  [ A422816A15CFAC50567FD0F6582FD2CF, 0AA6588C63F53962E2D3665159BAE7402F43BEC0136A48DE39FE977430CA7B5A ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamsrv.dll
21:00:34.0136 0x03e4  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamsrv.dll - ok
21:00:34.0136 0x03e4  [ 61AF7614418BA5B9E8B4EB82E459BE53, 828ABEF68681C061E93FA61E7D12AEAB6D67ABBE597BC207DF0E6DB185C95C72 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\QtCore4.dll
21:00:34.0136 0x03e4  C:\Program Files (x86)\Malwarebytes Anti-Malware\QtCore4.dll - ok
21:00:34.0136 0x03e4  [ CA55500E2E0515FCC888C4A5E01E64B7, 053910D883931A776F71AF8CF3A15837524B65B933C09038E51F40FCB7B959D2 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcp100.dll
21:00:34.0136 0x03e4  C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcp100.dll - ok
21:00:34.0151 0x03e4  [ 4C539E592E50633B21AB1E1FDA40A32A, F07F846E1BFA7AE1B5FE835BCB34CCD2FA671B865415EF2A9C6EB8972D3A0E0C ] C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcr100.dll
21:00:34.0151 0x03e4  C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcr100.dll - ok
21:00:34.0151 0x03e4  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:00:34.0151 0x03e4  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
21:00:34.0151 0x03e4  [ 805A52C5AE26C28E88FDD9BCCFE6F312, 4FF28D3658C31722B7DD036DED9D544B14841C0E0B94D31A8EC5AB92128DA020 ] C:\Windows\System32\TSChannel.dll
21:00:34.0151 0x03e4  C:\Windows\System32\TSChannel.dll - ok
21:00:34.0151 0x03e4  [ A8CE0C7F1D37E0B8082608A148B6B976, 29F667E4DEA45C95E15ED54E9C37585E450325370F6011FFB667886F2FF0ABEB ] C:\Windows\SysWOW64\secur32.dll
21:00:34.0151 0x03e4  C:\Windows\SysWOW64\secur32.dll - ok
21:00:34.0151 0x03e4  [ 09D4503CBB6ADB3A54E7C7A75090B728, 6139EA3338FD64205481EDEC813A44F8D395FDA7B67AA431DA61F3631C3EDAE6 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
21:00:34.0151 0x03e4  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe - ok
21:00:34.0151 0x03e4  [ A8D4B1D04A5FCD862321CE106DA7CE4E, 571EBB0E77CEB5DACBD2F57F707E83D276A50EB540871BA015E0063AD9101071 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamcore.dll
21:00:34.0151 0x03e4  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamcore.dll - ok
21:00:34.0151 0x03e4  [ B2FD31E20B423335FE3273B4BF95813C, C576DA89C6B5D19427B755122CA3D7CB6E166B0D12EAABFB4D30820B861CAFF6 ] C:\Windows\SysWOW64\imagehlp.dll
21:00:34.0151 0x03e4  C:\Windows\SysWOW64\imagehlp.dll - ok
21:00:34.0167 0x03e4  [ B9A8CBCFCD3EC9D2EA4740AF347BF108, 97FA304E3880BC863D999F441AE47CB8ADF00D2DEC2A52ACD8FBD02CC096786A ] C:\Windows\SysWOW64\mpr.dll
21:00:34.0167 0x03e4  C:\Windows\SysWOW64\mpr.dll - ok
21:00:34.0167 0x03e4  [ 59DF156711A76BCB993253EC6C9BBF41, F8BCA0D764CD78A6B455268B9C5BA655D8A95B3E0939CC0AB5A493610C0058B9 ] C:\Windows\SysWOW64\dnsapi.dll
21:00:34.0167 0x03e4  C:\Windows\SysWOW64\dnsapi.dll - ok
21:00:34.0167 0x03e4  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] C:\Windows\System32\netman.dll
21:00:34.0167 0x03e4  C:\Windows\System32\netman.dll - ok
21:00:34.0167 0x03e4  [ 1727B2A2F379A32B864C096FA794AADC, 87B77A5DF95F3A1C5ED6DEF820C7E384BEFCBAA2FE1BB4781AC6F777A081E5CC ] C:\Windows\System32\aepic.dll
21:00:34.0167 0x03e4  C:\Windows\System32\aepic.dll - ok
21:00:34.0167 0x03e4  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] C:\Windows\System32\drivers\PEAuth.sys
21:00:34.0167 0x03e4  C:\Windows\System32\drivers\PEAuth.sys - ok
21:00:34.0167 0x03e4  [ 1EE99A89CC788ADA662441D1E9830529, 6B4FDD74BB81E12BD4B25A3E8AECB0FA77FA0075D454DD1D6DC1790ADF1F2AA8 ] C:\Windows\System32\nlasvc.dll
21:00:34.0167 0x03e4  C:\Windows\System32\nlasvc.dll - ok
21:00:34.0183 0x03e4  [ C6DCD1D11ED6827F05C00773C3E7053C, EA23BE261C9C04F44215D254D7A80FD0AEE84C6F192D0FEE49A7CF74ED3CB1A6 ] C:\Windows\System32\sfc.dll
21:00:34.0183 0x03e4  C:\Windows\System32\sfc.dll - ok
21:00:34.0183 0x03e4  [ 895C9AB0A855547445C4181195230757, 89BDA385D8CCB75C3D7B1BDFA567AC441A931F4E499C0835FEE9D010343FABB6 ] C:\Windows\System32\sfc_os.dll
21:00:34.0183 0x03e4  C:\Windows\System32\sfc_os.dll - ok
21:00:34.0183 0x03e4  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] C:\Windows\System32\drivers\secdrv.sys
21:00:34.0183 0x03e4  C:\Windows\System32\drivers\secdrv.sys - ok
21:00:34.0183 0x03e4  [ 4A435F95B940E93A88FEC144BD409789, 12775F6F54AD9BCBCD4F91F371D8911772CA7B14316DAFFDC28B971D1FDCC182 ] C:\Windows\System32\ncsi.dll
21:00:34.0183 0x03e4  C:\Windows\System32\ncsi.dll - ok
21:00:34.0183 0x03e4  [ BC9489DF517C426D4044D99F14449134, CABD014BA29A548252BB8D5BD46D047DBFC445489492D9DF75B29CEDE0AC9F8B ] C:\Windows\System32\webio.dll
21:00:34.0183 0x03e4  C:\Windows\System32\webio.dll - ok
21:00:34.0198 0x03e4  [ 58F4493BF748A3A89689997B7BD00E95, EC5DEEC73E357C7C87B001275C4E635011A9CF39419F2B86E2C2B8D7E388C551 ] C:\Windows\System32\winhttp.dll
21:00:34.0198 0x03e4  C:\Windows\System32\winhttp.dll - ok
21:00:34.0198 0x03e4  [ 2BA8F3250828CCDB4204ECF2C6F40B6A, 22C4FBF9A87C46E69C48B681FF733D68D9CB7B7D73FB14C8C2A06E9009F9860E ] C:\Windows\System32\drivers\srvnet.sys
21:00:34.0198 0x03e4  C:\Windows\System32\drivers\srvnet.sys - ok
21:00:34.0198 0x03e4  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE, 4EFA41765E46E90C6CBDB0DC1E0CD375D7AB3307C477171EBAA6A16AC32E5211 ] C:\Windows\System32\ssdpapi.dll
21:00:34.0198 0x03e4  C:\Windows\System32\ssdpapi.dll - ok
21:00:34.0198 0x03e4  [ BCEA9AB347E53BC03B2E36BE0B8BA0EF, 868DEFB78767E91694E83F931725257DF3FF79A4BFED3B914D27F3493EB7A8D0 ] C:\Windows\System32\httpapi.dll
21:00:34.0198 0x03e4  C:\Windows\System32\httpapi.dll - ok
21:00:34.0198 0x03e4  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] C:\Windows\System32\seclogon.dll
21:00:34.0198 0x03e4  C:\Windows\System32\seclogon.dll - ok
21:00:34.0214 0x03e4  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] C:\Windows\System32\sysmain.dll
21:00:34.0214 0x03e4  C:\Windows\System32\sysmain.dll - ok
21:00:34.0214 0x03e4  [ DF687E3D8836BFB04FCC0615BF15A519, 7C5B1E72673B4299DFC21E869F0FBB28198CA54DF4F4AF7080005F2D82467784 ] C:\Windows\System32\drivers\tcpipreg.sys
21:00:34.0214 0x03e4  C:\Windows\System32\drivers\tcpipreg.sys - ok
21:00:34.0214 0x03e4  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] C:\Windows\System32\tapisrv.dll
21:00:34.0214 0x03e4  C:\Windows\System32\tapisrv.dll - ok
21:00:34.0214 0x03e4  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] C:\Windows\System32\trkwks.dll
21:00:34.0214 0x03e4  C:\Windows\System32\trkwks.dll - ok
21:00:34.0214 0x03e4  [ CF318F60A84F15AF352439465A8D05F4, E713F7FD90EB5D8845F3407E94FFD17D893C59746330960A36645A989D8D45AF ] C:\Program Files\Windows Defender\MpSvc.dll
21:00:34.0214 0x03e4  C:\Program Files\Windows Defender\MpSvc.dll - ok
21:00:34.0229 0x03e4  [ D0F73A42040F21F92FD314B42AC5C9E7, A021C4318C9CFA594305458B2643BB0C22DDE1F3D51C93C9F3E7F7AB75B31278 ] C:\Windows\System32\drivers\srv2.sys
21:00:34.0229 0x03e4  C:\Windows\System32\drivers\srv2.sys - ok
21:00:34.0229 0x03e4  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] C:\Windows\System32\wbem\WMIsvc.dll
21:00:34.0229 0x03e4  C:\Windows\System32\wbem\WMIsvc.dll - ok
21:00:34.0229 0x03e4  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] C:\Windows\System32\rasmans.dll
21:00:34.0229 0x03e4  C:\Windows\System32\rasmans.dll - ok
21:00:34.0229 0x03e4  [ 7DB5AA22A8A8E5C2D335F44853C1F6DE, A734A20357026C42950394682A52CBC3AF956D09F1949E1B4E95467E999BC428 ] C:\Windows\System32\wbemcomn.dll
21:00:34.0229 0x03e4  C:\Windows\System32\wbemcomn.dll - ok
21:00:34.0229 0x03e4  [ 44C96B48112EB24AE7764EBF1C527000, 6691D008C834686906B4841EF27604B0F0E70E668C09CEE19369426BF168AF44 ] C:\Windows\System32\rastapi.dll
21:00:34.0229 0x03e4  C:\Windows\System32\rastapi.dll - ok
21:00:34.0229 0x03e4  [ 0C52762C606BCF6A377D5E4688191A6B, C58C9A73AD07E3B93AB186D0D47C5F1CB7197771DBEE40646C3B801645BB388F ] C:\Windows\System32\wbem\WmiDcPrv.dll
21:00:34.0229 0x03e4  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
21:00:34.0245 0x03e4  [ 2098B8556D1CEC2ACA9A29CD479E3692, D5826407C64F18C16EB36E6F00787CFAFCD9B24B5BD8AD126AD01E6E4134966F ] C:\Windows\System32\drivers\srv.sys
21:00:34.0245 0x03e4  C:\Windows\System32\drivers\srv.sys - ok
21:00:34.0245 0x03e4  [ ADF3E771F429940E762AC097F5A54EAF, C6083EFF964E56DAB13C1D9A925052110A57145AEF06D895EAB53FD882463436 ] C:\Program Files\Windows Defender\MpClient.dll
21:00:34.0245 0x03e4  C:\Program Files\Windows Defender\MpClient.dll - ok
21:00:34.0245 0x03e4  [ A3F5E8EC1316C3E2562B82694A251C9E, F3DC6AA6A9D3B5BBC730668FC52C1D4BB5D515D404578BDDD3D4869A7ED58822 ] C:\Windows\System32\wbem\fastprox.dll
21:00:34.0245 0x03e4  C:\Windows\System32\wbem\fastprox.dll - ok
21:00:34.0245 0x03e4  [ FAFAE01E889DC9C05A6CA2138CFC220B, 192CFDE3593ED0A9B397461D912074C0F062015C23E6F6658571C7C2864D9A51 ] C:\Windows\System32\tapi32.dll
21:00:34.0245 0x03e4  C:\Windows\System32\tapi32.dll - ok
21:00:34.0245 0x03e4  [ EE26D130808D16C0E417BBBED0451B34, 4886DCE4FAEF146A40BABD492A8000A2022FEA542A6135A9BAFD4CD09297B4E5 ] C:\Windows\System32\ntdsapi.dll
21:00:34.0245 0x03e4  C:\Windows\System32\ntdsapi.dll - ok
21:00:34.0261 0x03e4  [ 666A60F6F5E719856FF6254E0966EFF7, 58C072E7E215991E19C1CA062C476081982F7B9F039714539AE7FEB4981C200F ] C:\Windows\System32\wbem\wbemprox.dll
21:00:34.0261 0x03e4  C:\Windows\System32\wbem\wbemprox.dll - ok
21:00:34.0261 0x03e4  [ A34A587FFFD45FA649FBA6D03784D257, C9A2BCD4E2A5EB6E320092A3AFD5737ECDCDA0B83EE42314A23C4978F2974767 ] C:\Windows\System32\iphlpsvc.dll
21:00:34.0261 0x03e4  C:\Windows\System32\iphlpsvc.dll - ok
21:00:34.0261 0x03e4  [ 27B9E163740A226B65E4B9E186117911, 17411C6A6C1E699BC4B0C04D782FD9AA09CF577DBA41E743F7588904D489CB9F ] C:\Windows\System32\sqmapi.dll
21:00:34.0261 0x03e4  C:\Windows\System32\sqmapi.dll - ok
21:00:34.0261 0x03e4  [ 210FCACAF902B2CD47CF9FD17D846146, 3F77AC721E084864C5966FF5337A90185F62203DC19C685328675500D629CB87 ] C:\Windows\System32\aeevts.dll
21:00:34.0261 0x03e4  C:\Windows\System32\aeevts.dll - ok
21:00:34.0261 0x03e4  [ 7B38D7916A7CD058C16A0A6CA5077901, 3F6DD990E2DA5D3BD6D65A72CBFB0FE79EB30B118A8AD71B6C9BB5581A622DCE ] C:\Windows\System32\wdscore.dll
21:00:34.0261 0x03e4  C:\Windows\System32\wdscore.dll - ok
21:00:34.0261 0x03e4  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] C:\Windows\System32\srvsvc.dll
21:00:34.0261 0x03e4  C:\Windows\System32\srvsvc.dll - ok
21:00:34.0276 0x03e4  [ 0255C22D99602534F15CBB8D9B6F152F, 43CD89D6CA56E0B633142F7C86DA9E072EE0723B5EBC4CE8CCBCA58C396ECF54 ] C:\Windows\System32\wbem\WinMgmtR.dll
21:00:34.0276 0x03e4  C:\Windows\System32\wbem\WinMgmtR.dll - ok
21:00:34.0276 0x03e4  [ 8EF0D5C41EC907751B8429162B1239ED, 9CC25F1F93FACA6F6CE23F78EB58590C39A2E3C8A3ACDF400E8A9DE0757EADAE ] C:\Windows\System32\browser.dll
21:00:34.0276 0x03e4  C:\Windows\System32\browser.dll - ok
21:00:34.0276 0x03e4  [ 81749E073AC5857B044A686B406E5244, 3884EE705CA34235B29942FEDA8FEA654A21139B8C2A1D5E009C7D07D6E6ADF1 ] C:\Windows\System32\clusapi.dll
21:00:34.0276 0x03e4  C:\Windows\System32\clusapi.dll - ok
21:00:34.0276 0x03e4  [ CFEFA40DDE34659BE5211966EAD86437, AC0A3AD8AA47012C40785013E2273FC571F416BC9C9FFDA418FE72B3123C1FB0 ] C:\Windows\System32\netmsg.dll
21:00:34.0276 0x03e4  C:\Windows\System32\netmsg.dll - ok
21:00:34.0276 0x03e4  [ FF80CAD87555E8E4D2CFD7B9058343F8, 07653773FBEC1996408B8507B08E0E1E812830063F932F897F4B39EE63DDCDC4 ] C:\Windows\System32\sscore.dll
21:00:34.0276 0x03e4  C:\Windows\System32\sscore.dll - ok
21:00:34.0276 0x03e4  [ D2A0FFA75AB181B19B5EB93BB29C7686, AC282D5EFFB191492F14638EB80F18E53C4A3D26C94A00A949366B3564D6C3E2 ] C:\Windows\System32\unimdm.tsp
21:00:34.0276 0x03e4  C:\Windows\System32\unimdm.tsp - ok
21:00:34.0276 0x03e4  [ 344FCC9850C3A8A3B4D3C65151AF8E4C, C38853454E153B1AB4AEAE1AAFB7CB4B2E6234208CF24C09F3B2AFE25E271C5C ] C:\Windows\System32\resutils.dll
21:00:34.0276 0x03e4  C:\Windows\System32\resutils.dll - ok
21:00:34.0292 0x03e4  [ 3B367397320C26DBA890B260F80D1B1B, 50BBE71B4380B5E86E197AF86F5C08266DD6B12344BA4ABDEA604B8C774C4147 ] C:\Windows\System32\hnetcfg.dll
21:00:34.0292 0x03e4  C:\Windows\System32\hnetcfg.dll - ok
21:00:34.0292 0x03e4  [ FEB91B4DA0D540865260A33838654FA3, 8636B008BA329D3E6CC235D08BA4C914EFF45DBFCB9297C893CCDA8D907BA946 ] C:\Windows\System32\nci.dll
21:00:34.0292 0x03e4  C:\Windows\System32\nci.dll - ok
21:00:34.0292 0x03e4  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] C:\Windows\System32\netprofm.dll
21:00:34.0292 0x03e4  C:\Windows\System32\netprofm.dll - ok
21:00:34.0292 0x03e4  [ 94B7DF336815B47236724019FAB24B7C, 43549F1FB89D0585A0E0333BB8E1DDED2EBD0F3C0EC3EA93B238EA037188AA41 ] C:\Windows\System32\uniplat.dll
21:00:34.0292 0x03e4  C:\Windows\System32\uniplat.dll - ok
21:00:34.0292 0x03e4  [ 2472BDF30C62F3E81AE27A968C25608C, C05B0161B2C84FAA9CF2ECDAEFC98D450D21BC0B8BC60C185AA931E4E03E667A ] C:\Windows\System32\unimdmat.dll
21:00:34.0292 0x03e4  C:\Windows\System32\unimdmat.dll - ok
21:00:34.0307 0x03e4  [ 5EB55F661DEBF156E126160BCD4D89F8, 948D1F627AA55D55FB3B558BA61B8366C5481A6041820631F24408F75EA5D2CC ] C:\Windows\System32\wbem\wbemcore.dll
21:00:34.0307 0x03e4  C:\Windows\System32\wbem\wbemcore.dll - ok
21:00:34.0307 0x03e4  [ C1446A66BB89FC3AA2485C67562247DA, F2FD38968CE66828B1EE4B17646053C1FE95B077AEF4F5367013F869B5BA9D7B ] C:\Windows\System32\modemui.dll
21:00:34.0307 0x03e4  C:\Windows\System32\modemui.dll - ok
21:00:34.0307 0x03e4  [ EE5C8E27C37B79CB54A2FCEEED2DC262, 0A5E200FD65A491756B951A4A0ED39B88B7B313E97C2BBF3C91AC4C290772BB7 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
21:00:34.0307 0x03e4  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
21:00:34.0307 0x03e4  [ 7C1BAE7D23D4874FEE256A2B9C00E019, 4EE87C2F0CACE557AA159349133474A5857B6667DDB976BA5A18489A3333F798 ] C:\Windows\System32\hidphone.tsp
21:00:34.0307 0x03e4  C:\Windows\System32\hidphone.tsp - ok
21:00:34.0307 0x03e4  [ 41326DD08ACC0CDC5F8177AF96C066E8, 9C21BB553EEDD28272E865396C9EF94655EC1CF216290A56581AEF7908B7AFDD ] C:\Windows\System32\kmddsp.tsp
21:00:34.0307 0x03e4  C:\Windows\System32\kmddsp.tsp - ok
21:00:34.0307 0x03e4  [ 1D6BC2769DA66C1145F4DA5A65F52E61, B38EFF16652E751BF3B3BD85DA6EA33AB9B7F4228C59F741074E33085DB66ED0 ] C:\Windows\System32\ndptsp.tsp
21:00:34.0307 0x03e4  C:\Windows\System32\ndptsp.tsp - ok
21:00:34.0307 0x03e4  [ 087D8668C71634A3A3761135ABF16EEE, B7348A63299CFF4FFBF375E645A4850AE0F108D48D13AB25434CFAE7CF3D61FD ] C:\Windows\System32\wbem\esscli.dll
21:00:34.0307 0x03e4  C:\Windows\System32\wbem\esscli.dll - ok
21:00:34.0323 0x03e4  [ 718B6F51AB7F6FE2988A36868F9AD3AB, 76141B4E94C2766E2C34CEF523092948771A7893212EFADBE88D2171B85FF012 ] C:\Windows\System32\wbem\wbemsvc.dll
21:00:34.0323 0x03e4  C:\Windows\System32\wbem\wbemsvc.dll - ok
21:00:34.0323 0x03e4  [ 0143DB80DACFB7C2B5B7009ED9063353, 252885CF7C1BAB89B86908373546E5F5D674BEF7AACBDDCF321AD877CB9150A9 ] C:\Windows\System32\wbem\wmiutils.dll
21:00:34.0323 0x03e4  C:\Windows\System32\wbem\wmiutils.dll - ok
21:00:34.0323 0x03e4  [ A717A35120DBAB5AB707AB40662AF9DD, DE117E70D0AC7FC26BBCEAAB45A0270A1065B36CC8B062B4128B561F2AAA9E04 ] C:\Windows\System32\rasppp.dll
21:00:34.0323 0x03e4  C:\Windows\System32\rasppp.dll - ok
21:00:34.0323 0x03e4  [ 0AB34456654C283DAA13B8D2BA21439B, 4B70FC5195DE39564E951C8542020BA3D4257E3D4488F69825F67A6099CB7549 ] C:\Windows\System32\wbem\repdrvfs.dll
21:00:34.0323 0x03e4  C:\Windows\System32\wbem\repdrvfs.dll - ok
21:00:34.0323 0x03e4  [ 88351B29B622B30962D2FEB6CA8D860B, A16CAD7D94C1C9807083BB36E9B4C3C14E6482C4CA2BDFACBCC86E737DDCE42E ] C:\Windows\System32\rasadhlp.dll
21:00:34.0323 0x03e4  C:\Windows\System32\rasadhlp.dll - ok
21:00:34.0323 0x03e4  [ 6A84E68B538B8B04608BF2F0D426CE6F, 59CE1C06364D1BBEE853DA4AEC1E8B678D6E181723ACCF6DB9F9776CAD47BBDA ] C:\Windows\System32\raschap.dll
21:00:34.0323 0x03e4  C:\Windows\System32\raschap.dll - ok
21:00:34.0339 0x03e4  [ 0FE5CD5F9C9248F42D1EF56E495B182E, 1EBD40C119A3D3251A19A8D15669D9DCB5D3CFBC3AFCF1CD00101C31320243E1 ] C:\Windows\System32\vpnike.dll
21:00:34.0339 0x03e4  C:\Windows\System32\vpnike.dll - ok
21:00:34.0339 0x03e4  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] C:\Windows\System32\ipnathlp.dll
21:00:34.0339 0x03e4  C:\Windows\System32\ipnathlp.dll - ok
21:00:34.0339 0x03e4  [ 2DF29664ED261F0FC448E58F338F0671, 4EFE79C383D0AF126FC4EE668D822563F8F037B1E61D73747A35FE11AAFDB8CE ] C:\Windows\System32\mprapi.dll
21:00:34.0339 0x03e4  C:\Windows\System32\mprapi.dll - ok
21:00:34.0339 0x03e4  [ A42F2C1EB3B66C54FB3C7B79D30C1A6D, A63836DB3B01835DC1311526A95198D6EBCCB1DC9DDAFBC38EC36C128CDB98B9 ] C:\Windows\System32\netshell.dll
21:00:34.0339 0x03e4  C:\Windows\System32\netshell.dll - ok
21:00:34.0339 0x03e4  [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C, 78889511D6F471009674CC958F8BB77B4A79C952634B18E8AFF4A75AA6A60E87 ] C:\Windows\System32\ndiscapCfg.dll
21:00:34.0339 0x03e4  C:\Windows\System32\ndiscapCfg.dll - ok
21:00:34.0339 0x03e4  [ 1CF21800E337F4039AAD4C94B4280EE4, EF434CEF6E62A202B85E8EC7916EB998E20B10675437CDE90084CDA938C0AA3F ] C:\Windows\System32\mprmsg.dll
21:00:34.0339 0x03e4  C:\Windows\System32\mprmsg.dll - ok
21:00:34.0354 0x03e4  [ 3D6AF45673C4B31CDECD7F80AF09D443, 7D711D138C107816155AFA5E5FDC6892734074BEFF604B5904177B5D9ACE4670 ] C:\Windows\System32\rascfg.dll
21:00:34.0354 0x03e4  C:\Windows\System32\rascfg.dll - ok
21:00:34.0354 0x03e4  [ 55DE45B116711881C852D2841E4C84DD, 18E5021530BB44042C85087BAE4FEDA633E01CDCBA09C90A5941B74C75133A35 ] C:\Windows\System32\tcpipcfg.dll
21:00:34.0354 0x03e4  C:\Windows\System32\tcpipcfg.dll - ok
21:00:34.0354 0x03e4  [ DDD0357A92FA843EFF8915ED17253D6C, 0C78B1D41F0A7821186ADF653504F2BFF067CB512CB0E932047C301378BBADB6 ] C:\Windows\System32\wbem\WmiPrvSD.dll
21:00:34.0354 0x03e4  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
21:00:34.0354 0x03e4  [ D41FEBD098234F02485A4EA98D4730A4, 462DC8168C444F35B43BA3B8F7D77734665D84F1C6D25CAD7391C0145961628F ] C:\Windows\System32\ncobjapi.dll
21:00:34.0354 0x03e4  C:\Windows\System32\ncobjapi.dll - ok
21:00:34.0354 0x03e4  [ 6F40D6FB05E0C1E5402812B426971AF0, E41F138F0F2DB057F8DBB1587237C6FA8A2059B3D64EC894D1DC492A18DBBDED ] C:\Windows\System32\wbem\wbemess.dll
21:00:34.0354 0x03e4  C:\Windows\System32\wbem\wbemess.dll - ok
21:00:34.0354 0x03e4  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] C:\Windows\System32\wdi.dll
21:00:34.0354 0x03e4  C:\Windows\System32\wdi.dll - ok
21:00:34.0370 0x03e4  [ 3977D4A871CA0D4F2ED1E7DB46829731, 2AF1C3225994769C3FD25CD7E9603964B035576F25B0B6D91545566E0722FFAA ] C:\Windows\System32\appinfo.dll
21:00:34.0370 0x03e4  C:\Windows\System32\appinfo.dll - ok
21:00:34.0370 0x03e4  [ F7073C962C4FB7C415565DDE109DE49F, 781E7088DCEFBC34A808C3E7DA41A56112B3F23ABE9F54B5EF4D5CD9CD016B1D ] C:\Windows\System32\npmproxy.dll
21:00:34.0370 0x03e4  C:\Windows\System32\npmproxy.dll - ok
21:00:34.0370 0x03e4  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] C:\Windows\System32\wpdbusenum.dll
21:00:34.0370 0x03e4  C:\Windows\System32\wpdbusenum.dll - ok
21:00:34.0370 0x03e4  [ 4449D23E8F197862F1B16F1E6C89C36C, 93AF52BF8E870C0381F027D3BB8F6829E449242074472F1593EB8172D7EB6559 ] C:\Windows\System32\diagperf.dll
21:00:34.0370 0x03e4  C:\Windows\System32\diagperf.dll - ok
21:00:34.0370 0x03e4  [ BF4AC709BE5BF64F331F5D67773A0C82, 96E5A2A12D386B8A7976FEC76FD350E6A3EEBDF5763F4BBF4AB18880E9F269E0 ] C:\Windows\System32\perftrack.dll
21:00:34.0370 0x03e4  C:\Windows\System32\perftrack.dll - ok
21:00:34.0370 0x03e4  [ E64D9EC8018C55873B40FDEE9DBEF5B3, 2DB11E7C631A9887CB75AFEAD2C79EC65F82C51F5F073CEFC8CDDF664EFF29C1 ] C:\Windows\System32\PortableDeviceApi.dll
21:00:34.0370 0x03e4  C:\Windows\System32\PortableDeviceApi.dll - ok
21:00:34.0385 0x03e4  [ AFA79C343F9D1555F7E5D5FA70BB2A14, 440EF3ADC1F5C7A5ED3E872C8D8DFA61B039454C3CA67F8A51CA8BDCFDC4BA4A ] C:\Windows\System32\PortableDeviceConnectApi.dll
21:00:34.0385 0x03e4  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
21:00:34.0385 0x03e4  [ 9689A9C7F7C2A1A423CDA2C3B43FFF65, 914AD22D98975578BC14D821F72E8DFCE24F2092F9C299D24EBBAF5408FE8B8B ] C:\Windows\System32\wer.dll
21:00:34.0385 0x03e4  C:\Windows\System32\wer.dll - ok
21:00:34.0385 0x03e4  [ CF8D590BE3373029D57AF80914190682, FB9641777E90A58C063FBE95F081DC6D2F4770827DE19108A9DC3E3D6B17B4BF ] C:\Windows\System32\drivers\WUDFRd.sys
21:00:34.0385 0x03e4  C:\Windows\System32\drivers\WUDFRd.sys - ok
21:00:34.0385 0x03e4  [ D0FF1CA89D013B94768A289023958F6B, DB15E374E26E351561C5A6DCC5822AFB7CFF2C373761266520193E89DFAC6855 ] C:\Windows\System32\WUDFHost.exe
21:00:34.0385 0x03e4  C:\Windows\System32\WUDFHost.exe - ok
21:00:34.0385 0x03e4  [ E1B22739C933BE33F53DB58C5393ADD3, 26EE0DD091D2E00DECC774DC1EEDFFDE69AF74B0C769CCBE091AFC32C66E4207 ] C:\Windows\System32\Apphlpdm.dll
21:00:34.0385 0x03e4  C:\Windows\System32\Apphlpdm.dll - ok
21:00:34.0385 0x03e4  [ 9719E3D834F5C8C43F56A93DFA497023, 4D78D4BD4835C0A237821967156C19DF4B90384A6BCB1F48CEAF35D003A0099A ] C:\Windows\System32\pnpts.dll
21:00:34.0385 0x03e4  C:\Windows\System32\pnpts.dll - ok
21:00:34.0401 0x03e4  [ 46863C4CC5B68EB09EA2D5EEF0F1193A, 9B5593E1F484AC8F96F89A5995FB1FE9C51CB2F0F545607F6850751191150CFE ] C:\Windows\System32\radardt.dll
21:00:34.0401 0x03e4  C:\Windows\System32\radardt.dll - ok
21:00:34.0401 0x03e4  [ E811F8510B133E70CF6E509FB809824F, 82541F2B15748250462B67B6C77530D4F7C45A1482237EC49B28F9FA5A414108 ] C:\Windows\System32\wdiasqmmodule.dll
21:00:34.0401 0x03e4  C:\Windows\System32\wdiasqmmodule.dll - ok
21:00:34.0401 0x03e4  [ 025E7DBDB98866ED3CB2D4DDA70B364D, 78962F23F066E362AF1A4B98FA7D5E30AF30C561307438503031D30C944B6A6E ] C:\Windows\System32\runonce.exe
21:00:34.0401 0x03e4  C:\Windows\System32\runonce.exe - ok
21:00:34.0401 0x03e4  [ D44741F65A1D71F65814A12CF6E2400A, C6721F830675ADC7E7FDE2B5E822E56F6A063146F5066F1E25EBFE86F0A87136 ] C:\Windows\SysWOW64\runonce.exe
21:00:34.0401 0x03e4  C:\Windows\SysWOW64\runonce.exe - ok
21:00:34.0401 0x03e4  [ 12C45E3CB6D65F73209549E2D02ECA7A, 9DFD9C58B90257C34D52B7156C1D2566BE32EE7BD4699DDE164A5F190EC4D44A ] C:\Windows\SysWOW64\propsys.dll
21:00:34.0401 0x03e4  C:\Windows\SysWOW64\propsys.dll - ok
21:00:34.0401 0x03e4  [ EBB431C6332107651CD2E2715A707994, 669BED2F3A2CFFB5E25FE6CF6956E61036FA1D9127AE59F05B22CFD57CEA3E2A ] C:\Windows\SysWOW64\urlmon.dll
21:00:34.0401 0x03e4  C:\Windows\SysWOW64\urlmon.dll - ok
21:00:34.0417 0x03e4  [ 863F793D15B4026B1A5FDECA873D4D84, AF7ABD95BB5467551562F129F03C7AC9D52A021F7E547609F40A80E66932C942 ] C:\Windows\SysWOW64\apphelp.dll
21:00:34.0417 0x03e4  C:\Windows\SysWOW64\apphelp.dll - ok
21:00:34.0417 0x03e4  [ D63F0353F632FB1EDE724173BE6DB5B5, 82FC79B99BD5D99231CE6701CBACA94ED6F6EC5B7EC0F00F63FC942B2D06568E ] C:\Windows\System32\esent.dll
21:00:34.0417 0x03e4  C:\Windows\System32\esent.dll - ok
21:00:34.0417 0x03e4  [ 4FDFA3F219692D17011BF1B428857C1E, 0422101F9D47633DFF47DF022031C4221B9D395F3E23C0C6E0A54CE55D76565D ] C:\Program Files\Windows Defender\MpRTP.dll
21:00:34.0417 0x03e4  C:\Program Files\Windows Defender\MpRTP.dll - ok
21:00:34.0417 0x03e4  [ FBD879D17B26D49DD7A48FF58062FAE6, 531363F29AB4C479C7757D5FE45D7CE2609FA112E644AB98F8269E03454DC387 ] C:\Windows\System32\tdh.dll
21:00:34.0417 0x03e4  C:\Windows\System32\tdh.dll - ok
21:00:34.0417 0x03e4  [ 97BDC9A400EEF273CC4B336614CA74BD, 2B0792816C882C8B7DAFE93E8148DF94B1C0786287272E3FE4005166751069AE ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D2B0B133-42ED-44D3-809A-46EBB62BA863}\mpengine.dll
21:00:34.0417 0x03e4  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D2B0B133-42ED-44D3-809A-46EBB62BA863}\mpengine.dll - ok
21:00:34.0417 0x03e4  [ B17051CEA6ECF263EF7EB4B79FA50763, F10A3DBEABA655F7F595C8954CB85D5E7804A2CDCF6A09C0544EEB739D442DFA ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D2B0B133-42ED-44D3-809A-46EBB62BA863}\mpasbase.vdm
21:00:34.0417 0x03e4  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D2B0B133-42ED-44D3-809A-46EBB62BA863}\mpasbase.vdm - ok
21:00:34.0432 0x03e4  [ F0F8B583C084699DDBF036B892058F6E, D2CA676148C1F59C2D3494BB0AA28127D2957EA8C2F494DDEBE7E1249038E9A1 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D2B0B133-42ED-44D3-809A-46EBB62BA863}\mpasdlta.vdm
21:00:34.0432 0x03e4  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D2B0B133-42ED-44D3-809A-46EBB62BA863}\mpasdlta.vdm - ok
21:00:34.0432 0x03e4  [ 93BB66044FA76734E882C6F3E8EE1900, E00FE1028C999FFED3F8335F9D760929CB3A11B6EEF8D8D2F2CA4A32DEC56B26 ] C:\Program Files\Windows Defender\MsMpLics.dll
21:00:34.0432 0x03e4  C:\Program Files\Windows Defender\MsMpLics.dll - ok
21:00:34.0432 0x03e4  [ 218A400108F280428FA22282D3268BBC, 7712687ABAEF6616E90AE5A321044C102E79EC23F4A1EAFB4278C93724873CB3 ] C:\Windows\System32\wscapi.dll
21:00:34.0432 0x03e4  C:\Windows\System32\wscapi.dll - ok
21:00:34.0432 0x03e4  [ B84E2D174DC84916A536572BB8F691A8, 94E3D68F102439D3A585D2D796F3F3FC27CB41C640058DDC14AF99A723B2CD99 ] C:\Windows\System32\wscisvif.dll
21:00:34.0432 0x03e4  C:\Windows\System32\wscisvif.dll - ok
21:00:34.0432 0x03e4  [ 6C1E3C43B35268C17833244C8ED96430, 9C571AA762E71177B6FF486D1DB500E3530E13CAFD87316AD2C64F5A55EB4A93 ] C:\Windows\System32\wscproxystub.dll
21:00:34.0432 0x03e4  C:\Windows\System32\wscproxystub.dll - ok
21:00:34.0448 0x03e4  [ 44214C94911C7CFB1D52CB64D5E8368D, 4B01872788057ECF5A1AC6647512F5671213F76651FF8E808F1310A1240F35A2 ] C:\Windows\SysWOW64\wininet.dll
21:00:34.0448 0x03e4  C:\Windows\SysWOW64\wininet.dll - ok
21:00:34.0448 0x03e4  [ 683E0C9DA9E1EB9E4691DFAE0EC83E36, F5CD7DE4B315F318D495C4E28292FA47B96640D044502131934190EC58F3D1D5 ] C:\Windows\SysWOW64\iertutil.dll
21:00:34.0448 0x03e4  C:\Windows\SysWOW64\iertutil.dll - ok
21:00:34.0448 0x03e4  [ 723363553532D15BF70E55E860EA6B00, 2510A674A9013D4654A5CEBB4C93128D15DEE078CDF7003ACB61E372072F25D6 ] C:\Program Files (x86)\GlassWire\GWIdlMon.exe
21:00:34.0448 0x03e4  C:\Program Files (x86)\GlassWire\GWIdlMon.exe - ok
21:00:34.0448 0x03e4  [ F89773DFA9B8C95A3AC2AF1E7D99E483, 7C646F466850CACF9A5FD5C98D7E119FB79149CE0C667A82E0264C671B4582A9 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
21:00:34.0448 0x03e4  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe - ok
21:00:34.0448 0x03e4  [ AD7B9C14083B52BC532FBA5948342B98, 17F746D82695FA9B35493B41859D39D786D32B23A9D2E00F4011DEC7A02402AE ] C:\Windows\SysWOW64\cmd.exe
21:00:34.0448 0x03e4  C:\Windows\SysWOW64\cmd.exe - ok
21:00:34.0448 0x03e4  [ BDAC1AA64495D0F7E1FF810EBBF1F018, 7920E2381307574C5C4562CF1FF8F79F91204102051FCD708FA4E6A941422084 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
21:00:34.0448 0x03e4  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
21:00:34.0448 0x03e4  [ 39C5F32747B3414D1BB216FDB1DEFC58, 6FAE64CB9748304090113903A5AE9E7154BE16BA2EEA7AB3EF04AB9D79B81380 ] C:\Windows\SysWOW64\dwmapi.dll
21:00:34.0448 0x03e4  C:\Windows\SysWOW64\dwmapi.dll - ok
21:00:34.0463 0x03e4  [ 15E298B5EC5B89C5994A59863969D9FF, 8D38B2E023462D0804F72E907D11FF72CE84540EA3B8D83F411C602C3F6A1177 ] C:\Windows\SysWOW64\npmproxy.dll
21:00:34.0463 0x03e4  C:\Windows\SysWOW64\npmproxy.dll - ok
21:00:34.0463 0x03e4  [ 0C8EF8F973B316BF787F34AE8D1BA824, 4B75EF85D597EC85F149B2FE2B01C4DBC2D07CF885120C16EE67269B2301E871 ] C:\Program Files (x86)\blueconnect\blueconnect.exe
21:00:34.0463 0x03e4  C:\Program Files (x86)\blueconnect\blueconnect.exe - ok
21:00:34.0463 0x03e4  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] C:\Windows\System32\aelupsvc.dll
21:00:34.0463 0x03e4  C:\Windows\System32\aelupsvc.dll - ok
21:00:34.0463 0x03e4  [ BD51024FB014064BC9FE8C715C18392F, 23F7AB98268F88E6CA9EE96B3DDBC6AA745BFFACD2E5F80A211CE48D976EB9A4 ] C:\Windows\System32\conhost.exe
21:00:34.0463 0x03e4  C:\Windows\System32\conhost.exe - ok
21:00:34.0463 0x03e4  [ 78F0F176E4883150D4FF37842E960A65, 71E69396B49E8C93157495B5E8F78497A11FC8771144C21E229191438979B3C5 ] C:\Program Files (x86)\blueconnect\Container.dll
21:00:34.0463 0x03e4  C:\Program Files (x86)\blueconnect\Container.dll - ok
21:00:34.0463 0x03e4  [ 59569D4BE0D79A2B8C3241C6DCEA0034, EDD1F2CA8225A797B2BB94141A3EB1E6CE5D08C1CBA8F6A115E0D32CF541F0D8 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.dll
21:00:34.0463 0x03e4  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.dll - ok
21:00:34.0479 0x03e4  [ 2954DC080087CF73818F959CB3ED9C13, 6CA3D7196CABD257A34599254C995321749CE10186872EF0625B28F7CA5BC97D ] C:\Program Files (x86)\Malwarebytes Anti-Malware\QtGui4.dll
21:00:34.0479 0x03e4  C:\Program Files (x86)\Malwarebytes Anti-Malware\QtGui4.dll - ok
21:00:34.0479 0x03e4  [ D1DE1EAFDE97BE41CF6585027FF3E732, 76F17D4DF440D6734DC8157092D94EB18C2A73A0A49BEEA289E7B3EDE30E86A2 ] C:\Windows\SysWOW64\comdlg32.dll
21:00:34.0479 0x03e4  C:\Windows\SysWOW64\comdlg32.dll - ok
21:00:34.0479 0x03e4  [ 326C7F76A29897A892AA7726E91C1C67, 64305346B06EC14976130B0B80F14B4D5AB63E5B2A6A7B872EC9CE2BF8FADCD2 ] C:\Windows\SysWOW64\winbrand.dll
21:00:34.0479 0x03e4  C:\Windows\SysWOW64\winbrand.dll - ok
21:00:34.0479 0x03e4  [ 9CB05668015945B5B0B311851F1A4888, FBA7BF211E68ECC5AC32BB269E5519A6904EAA9644CE3832884B9FAD0BA00E5E ] C:\Program Files (x86)\blueconnect\MFC71u.dll
21:00:34.0479 0x03e4  C:\Program Files (x86)\blueconnect\MFC71u.dll - ok
21:00:34.0479 0x03e4  [ 4619E14B2DF4137907CD988ACA4B30A5, B8D451CC8B23108931D657FA7895CD97734567135F40F061D1F34F9C613B004C ] C:\Windows\SysWOW64\ieframe.dll
21:00:34.0479 0x03e4  C:\Windows\SysWOW64\ieframe.dll - ok
21:00:34.0495 0x03e4  [ D5AEFAD57C08349A4393D987DF7C715D, C36A45BC2448DF30CD17BD2F8A17FC196FAFB685612CACCEB22DC7B58515C201 ] C:\Windows\SysWOW64\winmm.dll
21:00:34.0495 0x03e4  C:\Windows\SysWOW64\winmm.dll - ok
21:00:34.0495 0x03e4  [ D36B759179DDD214743DCFB8ED791FA2, CADE72447E3231726B2CBF1C7B488D347E20187AE5760F8EE82BF150C31AD828 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\QtNetwork4.dll
21:00:34.0495 0x03e4  C:\Program Files (x86)\Malwarebytes Anti-Malware\QtNetwork4.dll - ok
21:00:34.0495 0x03e4  [ CBD010BFBED9657C3813400AAD03CF8A, 2DD60A291D8F4A44D7D638C83A46CFA618525A72B9D975FB81F8F403699B9AE6 ] C:\Windows\SysWOW64\oleacc.dll
21:00:34.0495 0x03e4  C:\Windows\SysWOW64\oleacc.dll - ok
21:00:34.0495 0x03e4  [ BE247AE996A9FDE007A27B51413A6C79, A4280BE9BDCB51E50A0E302F59ACDF866EFAC8035D766172D06C15019CC57476 ] C:\Windows\SysWOW64\shdocvw.dll
21:00:34.0495 0x03e4  C:\Windows\SysWOW64\shdocvw.dll - ok
21:00:34.0495 0x03e4  [ 2AD9820E4B17E78110A6AA06BF5C1CE2, 330A62FC255D24FCF7904B11CD533A9A06C1EBDBD90491A11960317759E7F4D0 ] C:\Users\xblee\AppData\Local\Temp\{3F2DFA4A-6A89-4BD7-833E-F320D2A088A4}.exe
21:00:34.0495 0x03e4  C:\Users\xblee\AppData\Local\Temp\{3F2DFA4A-6A89-4BD7-833E-F320D2A088A4}.exe - ok
21:00:34.0495 0x03e4  [ C20FF1A17726C357461A7AC5B3BFC3AD, 970558642CC14837B77B48257E3171ACC84466888875927314ACD6D79176F967 ] C:\Windows\SysWOW64\ncrypt.dll
21:00:34.0495 0x03e4  C:\Windows\SysWOW64\ncrypt.dll - ok
21:00:34.0510 0x03e4  [ CE71B9119A258EDD0A05B37D7B0F92E3, D9310C5BBFE089B8C81E259C462EC1E6D7A7A87FA59FC1F174ED5C58D409AE7A ] C:\Windows\SysWOW64\bcrypt.dll
21:00:34.0510 0x03e4  C:\Windows\SysWOW64\bcrypt.dll - ok
21:00:34.0510 0x03e4  [ E8449FE262D7406BCB2AC2A45C53EC5F, 6C118C9FB26404D1943824CF3990F36E12986547FFACB7CC0DF975A913065D78 ] C:\Windows\SysWOW64\bcryptprimitives.dll
21:00:34.0510 0x03e4  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
21:00:34.0510 0x03e4  [ 1097F3035BAF46CED8B332B3564C5108, C69781683CA963A1335780DABBBC60E2C3CEF0888738D3425D358D12E8D0AF58 ] C:\Windows\SysWOW64\gpapi.dll
21:00:34.0510 0x03e4  C:\Windows\SysWOW64\gpapi.dll - ok
21:00:34.0510 0x03e4  [ 04D16553664796613FE98D441A0C35D7, EC9D4B3B8F8B0C3EE01D18CDF5BE9EF216AC9BBB1FB64A63D5013BD9AFB2A606 ] C:\Windows\SysWOW64\cryptnet.dll
21:00:34.0510 0x03e4  C:\Windows\SysWOW64\cryptnet.dll - ok
21:00:34.0510 0x03e4  [ 6F8E3B7B70E1BBA871212940C1FBDF60, 3F9D4EE64E4210340C6FEE0DE81BFE3C613DDBE608EC09D63817D24CE24BFC5E ] C:\Windows\SysWOW64\SensApi.dll
21:00:34.0510 0x03e4  C:\Windows\SysWOW64\SensApi.dll - ok
21:00:34.0510 0x03e4  [ 0562DF97934FC271893BD916A0262E6D, D0274F22D919ECAB50281BFAA16AB530B54DDC8EBA3B34350640858623663B8A ] C:\Program Files (x86)\Google\Update\1.3.25.11\goopdate.dll
21:00:34.0510 0x03e4  C:\Program Files (x86)\Google\Update\1.3.25.11\goopdate.dll - ok
21:00:34.0526 0x03e4  [ 0CE4D3BD306DA6D1F6F233C403F5B667, 6428AD0BD3732A2038CD372A06563E84F33DCDAB4E2B203B3F75BE678690DCAD ] C:\Windows\SysWOW64\msi.dll
21:00:34.0526 0x03e4  C:\Windows\SysWOW64\msi.dll - ok
21:00:34.0526 0x03e4  [ 7A6986DD659B96398A11AF5173892715, FB7818952B9015F433418E7DC656A2C20CD682056AB981A55C1722020142D578 ] C:\Windows\SysWOW64\cabinet.dll
21:00:34.0526 0x03e4  C:\Windows\SysWOW64\cabinet.dll - ok
21:00:34.0526 0x03e4  [ FD07F21E0A19C27ED4E1EEC2B07452B3, DF54C00B021AF64BB04EDEBCA6F41CCF48F1959DD53ADE545FAFC565F1243392 ] C:\Windows\SysWOW64\devrtl.dll
21:00:34.0526 0x03e4  C:\Windows\SysWOW64\devrtl.dll - ok
21:00:34.0526 0x03e4  [ 465BEA35F7ED4A4A57686DEA7EA10F47, 7F1B3CA09AB045F805DA5765BE7DD270F5DDACE3073017F7386FF1E2FA82D6FB ] C:\Windows\SysWOW64\cscapi.dll
21:00:34.0526 0x03e4  C:\Windows\SysWOW64\cscapi.dll - ok
21:00:34.0526 0x03e4  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8, B07A12E3ECD5E418A3F99F00C56E7F482F68CADE330E7C079DCCDFFAD2E21299 ] C:\Windows\SysWOW64\dbghelp.dll
21:00:34.0526 0x03e4  C:\Windows\SysWOW64\dbghelp.dll - ok
21:00:34.0541 0x03e4  [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5, ADD7B965D6D4F1FB4DABF8E40E0322E1FDC4652CA8FD670F487D1E875B770759 ] C:\Windows\SysWOW64\WindowsCodecs.dll
21:00:34.0541 0x03e4  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
21:00:34.0541 0x03e4  [ 846D0E4DB261CFAF363902E41498E961, D7E5591B7604FD583AF7FDA19E30928B24A6145318A3944E7D207F0CCEEB30D0 ] C:\Windows\SysWOW64\EhStorShell.dll
21:00:34.0541 0x03e4  C:\Windows\SysWOW64\EhStorShell.dll - ok
21:00:34.0541 0x03e4  [ EB77DB354791A5932CA559B6F6374E95, 113816D464941C92A952F5593552E889CFDA7E0389DC1B64031C3077C3CF7043 ] C:\Windows\SysWOW64\ntshrui.dll
21:00:34.0541 0x03e4  C:\Windows\SysWOW64\ntshrui.dll - ok
21:00:34.0541 0x03e4  [ 827CB0D6C3F8057EA037FF271F8E9795, 82760DBDDD38D2A31CAAF51D065DF4E7E1D0F0C22733A0AF653776EBF7B79470 ] C:\Windows\SysWOW64\imageres.dll
21:00:34.0541 0x03e4  C:\Windows\SysWOW64\imageres.dll - ok
21:00:34.0541 0x03e4  [ 8B74CEC6980D4816B0037AE9A27E538F, 8721EDB4C51BF6020002FA5DDB1987C68590F9F433A2F18D9756B2DAC7542CB6 ] C:\Windows\SysWOW64\slc.dll
21:00:34.0541 0x03e4  C:\Windows\SysWOW64\slc.dll - ok
21:00:34.0541 0x03e4  [ 1950B1C38AED4154BA79F77E36494D8A, 3F79FA4C971FBB73FECA64F5F0C6BCB9F04D7E9A49A95584E97D80B97CCE326C ] C:\Windows\System32\WUDFx.dll
21:00:34.0541 0x03e4  C:\Windows\System32\WUDFx.dll - ok
21:00:34.0557 0x03e4  [ 91D6F0AB79AA36FFB932157865206F35, 5C20EA92737A4409DF4601D6D256DBC7A8D0AE4C31A32F20054E873473B27781 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
21:00:34.0557 0x03e4  C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
21:00:34.0557 0x03e4  [ 9864D52F15AD32094A636C6B5281D9E7, 2DBECE721AA11509F6D5005C5FB965EB0DF28729D0B6C524BB35603C1243BA42 ] C:\Windows\System32\WMVCORE.DLL
21:00:34.0557 0x03e4  C:\Windows\System32\WMVCORE.DLL - ok
21:00:34.0557 0x03e4  [ CB8C1CC4F46FBAC78150754D77460C73, 2A8F6A2FFA85E1F068C539BDF100C8B4B02B2D1379FFC2607AA474890D8E7C0A ] C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe
21:00:34.0557 0x03e4  C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe - ok
21:00:34.0557 0x03e4  [ 7161E8E31B7FD3B1CE083C2CA5FD5F44, 9DDF242C7B5D373064D1C5284C435E60214E90CE8E3A23F02FD6875C101F7C50 ] C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
21:00:34.0557 0x03e4  C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe - ok
21:00:34.0557 0x03e4  [ A7A8CA53D9C9FD90C07AB0EB38E5316B, B98722E76601A98F038F40703C4B8BD21B5EC3B65DC1B07B7C367C06448F8A0E ] C:\Windows\System32\dbghelp.dll
21:00:34.0557 0x03e4  C:\Windows\System32\dbghelp.dll - ok
21:00:34.0573 0x03e4  [ 95EF63A7827D4E3A229CBBCB42619E93, FA38DD035B2C4FC82B60868F49D45A39FBBC96096AAD5A2C8BD752A250255BA7 ] C:\Windows\System32\drivers\mwac.sys
21:00:34.0573 0x03e4  C:\Windows\System32\drivers\mwac.sys - ok
21:00:34.0573 0x03e4  [ C5A99A4C0DC9F0F5A95BA0C83D30A549, F99CCCE303F0FC07D82D3BBA223E8CCE41FB7FA8FB5C2A9214C161826537C7C9 ] C:\Windows\SysWOW64\mstask.dll
21:00:34.0573 0x03e4  C:\Windows\SysWOW64\mstask.dll - ok
21:00:34.0573 0x03e4  [ FF014AC49AC32E5F1C7D6E271B320893, B18E4A47EE42C1E1962A243EF06FBB9D1401465D6B2CFA198B8ADEE1EA1C8ACE ] C:\Program Files (x86)\Malwarebytes Anti-Malware\imageformats\qgif4.dll
21:00:34.0573 0x03e4  C:\Program Files (x86)\Malwarebytes Anti-Malware\imageformats\qgif4.dll - ok
21:00:34.0573 0x03e4  [ 267C379589E14C5A7B5CD2CCABF35CD2, 32943ED9C05CCCC3089CF081466D1A51BB899120DA4B3C8CA21ADC262463C407 ] C:\Program Files (x86)\blueconnect\msvcr71.dll
21:00:34.0573 0x03e4  C:\Program Files (x86)\blueconnect\msvcr71.dll - ok
21:00:34.0573 0x03e4  [ 6CB0776D0F5E1E1E8A23523FFD3FAF6F, 2C4CF7CBE810E704913887F57898E97717091884098D8C530972EF247FE4C953 ] C:\Program Files (x86)\blueconnect\msvcp71.dll
21:00:34.0573 0x03e4  C:\Program Files (x86)\blueconnect\msvcp71.dll - ok
21:00:34.0573 0x03e4  [ FF835BD27335EB26C042EDD6E523168B, 4C18C65428DB658CA0AE2E9734E3CDE4ED7954D403898750114440A3845DABB0 ] C:\Program Files (x86)\blueconnect\isaputrace.dll
21:00:34.0573 0x03e4  C:\Program Files (x86)\blueconnect\isaputrace.dll - ok
21:00:34.0588 0x03e4  [ 8A44B240D73D6B3F0C13A6D3814E08F8, 20083BD688D1A79967BD4D4E1F17634B5A871843867C1E2DFEC9D7A360D027DB ] C:\Program Files (x86)\blueconnect\SkinMagicU.dll
21:00:34.0588 0x03e4  C:\Program Files (x86)\blueconnect\SkinMagicU.dll - ok
21:00:34.0588 0x03e4  [ 50D245593D05B0AD15561995939DFEB7, E09ABF0423B4A86DDD9A9D0A367A3E967DD8354E6B2767A507840FE0C3ABF719 ] C:\Program Files (x86)\blueconnect\DeviceMgrPlugin.dll
21:00:34.0588 0x03e4  C:\Program Files (x86)\blueconnect\DeviceMgrPlugin.dll - ok
21:00:34.0588 0x03e4  [ 563449A91F8CF193C6AFBD332C42D326, 30F9B722725C02B91C454FFDB2EB6C7387C0369F3F0B5722BF6453AD8275E98C ] C:\Program Files (x86)\blueconnect\DetectDev.dll
21:00:34.0588 0x03e4  C:\Program Files (x86)\blueconnect\DetectDev.dll - ok
21:00:34.0588 0x03e4  [ B8DF8113E1FE40B929B6B6355C5DBD6A, 0A878243101CF0F4528E5111EC03E7288564D21168144FAB91C617C183E90EC7 ] C:\Program Files (x86)\blueconnect\atcomm.dll
21:00:34.0588 0x03e4  C:\Program Files (x86)\blueconnect\atcomm.dll - ok
21:00:34.0588 0x03e4  [ C58EA91166B802B607222F9E6BF72696, 28A3EA2EDB4595CFA650F94D1847EADBEFBD381F70596B2A437227A8A3C5A0C2 ] C:\Program Files (x86)\blueconnect\XCodec.dll
21:00:34.0588 0x03e4  C:\Program Files (x86)\blueconnect\XCodec.dll - ok
21:00:34.0604 0x03e4  [ AACC48FE239F0DF126DA2F28930A5B83, D55E7D9AA79B1875E9074CFFBBCD484024902566B49806A8639B5C04847DFF89 ] C:\Windows\System32\WMASF.DLL
21:00:34.0604 0x03e4  C:\Windows\System32\WMASF.DLL - ok
21:00:34.0604 0x03e4  [ 389CA818132C1D7DCF0C791E8D9035DE, 5E54799F92CC604FABEF2F97AFD97F9CAD70D01BCDBC41FAC408D60821927C12 ] C:\Windows\System32\PortableDeviceClassExtension.dll
21:00:34.0604 0x03e4  C:\Windows\System32\PortableDeviceClassExtension.dll - ok
21:00:34.0604 0x03e4  [ 4F3CD1C59EA71401E155C432BCECE180, 6D4118A627CAE509E43D0CC0062EECAA0990C955BB15AE24834460551B2F51A2 ] C:\Windows\System32\PortableDeviceTypes.dll
21:00:34.0604 0x03e4  C:\Windows\System32\PortableDeviceTypes.dll - ok
21:00:34.0604 0x03e4  [ BC0A3CEEEE93480531A31FA4E255BD9B, 462881E4ECE52501770F7DE51039A09487862FCF1199DD940A98E07AF84DCA62 ] C:\Program Files (x86)\blueconnect\DeviceOperate.dll
21:00:34.0604 0x03e4  C:\Program Files (x86)\blueconnect\DeviceOperate.dll - ok
21:00:34.0604 0x03e4  [ 512D9828B46A9EDA9CD9A66C4568A215, 8480DDC62B2A54B33E4A0F4C43E03CEA983242FE2C60C48BB1A6FCDA02E4D49C ] C:\Program Files (x86)\blueconnect\ConfigFilePlugin.dll
21:00:34.0604 0x03e4  C:\Program Files (x86)\blueconnect\ConfigFilePlugin.dll - ok
21:00:34.0619 0x03e4  [ 26C43960C99EE861A5D0EDC4DCF3B1C3, 6238FB8E785652040CCE3E7044EA52066CE1BF173A1467474D64A3AB214B6BCD ] C:\Windows\System32\drivers\MBAMSwissArmy.sys
21:00:34.0619 0x03e4  C:\Windows\System32\drivers\MBAMSwissArmy.sys - ok
21:00:34.0619 0x03e4  [ CE5BAB535BFA98530DDAC4661A751DFE, 2034001AD8C8B39889349D96437696FC0C924725D2ECE4FF74FEA8466E60E1A3 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\7z.dll
21:00:34.0619 0x03e4  C:\Program Files (x86)\Malwarebytes Anti-Malware\7z.dll - ok
21:00:34.0619 0x03e4  [ 2EAA4F04AE16F4801E73750376632963, E11FD2F5A7B5298F25CC838BA444F42375D3423CC572499A410EF95C15CC362B ] C:\Program Files (x86)\blueconnect\NetInfoPlugin.dll
21:00:34.0619 0x03e4  C:\Program Files (x86)\blueconnect\NetInfoPlugin.dll - ok
21:00:34.0619 0x03e4  [ 839F96DBAAFD3353E0B248A5E0BD2A51, 11DA5AD3EA5FF4766C12B99FB520B3CBE08581ECAF1A2FD1DC5AC835CA78FAC2 ] C:\Windows\SysWOW64\rasapi32.dll
21:00:34.0619 0x03e4  C:\Windows\SysWOW64\rasapi32.dll - ok
21:00:34.0619 0x03e4  [ FFA7172354B9256DBB2CDD75F16F33FE, 85B2F014C67C2E52540F17D561793C6633C9E98F12639CCD3854EB1EC34DD035 ] C:\Windows\SysWOW64\rasman.dll
21:00:34.0619 0x03e4  C:\Windows\SysWOW64\rasman.dll - ok
21:00:34.0635 0x03e4  [ C68094AC62743AE350AB0FB17EC6AA3E, 5B0407AEA948750342158E3B4B2ACEABCCED48D6EA7CAEEEFAEFFD8C050B2EB2 ] C:\Program Files (x86)\blueconnect\NetConnectPlugin.dll
21:00:34.0635 0x03e4  C:\Program Files (x86)\blueconnect\NetConnectPlugin.dll - ok
21:00:34.0635 0x03e4  [ 428E93C11AB425386DEC1F8B65C82DC0, E6A6679D01A4FFE2D985B66DC6F4BF7AFDA248C476B9D5B4E51E59E876349277 ] C:\Program Files (x86)\blueconnect\DialUpPlugin.dll
21:00:34.0635 0x03e4  C:\Program Files (x86)\blueconnect\DialUpPlugin.dll - ok
21:00:34.0635 0x03e4  [ D2273267A1F18C2D3D3AE34BB08DAB1F, 708E51B479FA8D1D7E58EB6EF1572F4B69577BAA60E37934DAF45761CF67B3B2 ] C:\Program Files (x86)\blueconnect\TracePlugin.dll
21:00:34.0635 0x03e4  C:\Program Files (x86)\blueconnect\TracePlugin.dll - ok
21:00:34.0635 0x03e4  [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159, ACE7F85685EB92FC3AB4215122B0469E32F23B196C49F08CDA7791D3122C45DC ] C:\Windows\SysWOW64\rtutils.dll
21:00:34.0635 0x03e4  C:\Windows\SysWOW64\rtutils.dll - ok
21:00:34.0635 0x03e4  [ DE8AD266952C4E8A0F5F9EC4F2291524, 4BBC3FBFCD7EE0D76932399231A280FB3DFD052E88C1AD97CB958B8D8303BC32 ] C:\Program Files (x86)\blueconnect\CryptPlugin.dll
21:00:34.0635 0x03e4  C:\Program Files (x86)\blueconnect\CryptPlugin.dll - ok
21:00:34.0635 0x03e4  [ 5C91ABA75BA32797DB5B536C354DF616, E4C98EDF18D8B45CA703EDB7D988686706BD7509251EDA4F6864844DC6E77E57 ] C:\Program Files (x86)\blueconnect\NDISPlugin.dll
21:00:34.0635 0x03e4  C:\Program Files (x86)\blueconnect\NDISPlugin.dll - ok
21:00:34.0651 0x03e4  [ 84F22128ABCDA63E57078353A5EC9750, 9713D0C44F56233EBDB7B793AB58D8EBDFF0CB163EF9F8274AB4FAD923B2EFCB ] C:\Program Files (x86)\blueconnect\NDISAPI.dll
21:00:34.0651 0x03e4  C:\Program Files (x86)\blueconnect\NDISAPI.dll - ok
21:00:34.0651 0x03e4  [ C3EA93FAFF6BD7B5778F7C1B9EA72F7D, 2B9981B36A17D76F096AFF834DA1CE726F868D792731A6D02E80C2FE0C5CE382 ] C:\Program Files (x86)\blueconnect\NetInfoUIExPlugin.dll
21:00:34.0651 0x03e4  C:\Program Files (x86)\blueconnect\NetInfoUIExPlugin.dll - ok
21:00:34.0651 0x03e4  [ 0029EBA325F2FC9B6BA46BEE33F32A09, C07A936009FB275D56DC451C7D05B5F5A3F4DCD985C7F02DEE57D674034C602B ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\GdiPlus.dll
21:00:34.0651 0x03e4  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\GdiPlus.dll - ok
21:00:34.0651 0x03e4  [ D8CE9B84897DBD57B988F62595AEEB09, 4D11A452760A8F47CD2BCC48D406D5BC31A81EF83C1FF8CC3731734DAB977FCA ] C:\Program Files (x86)\blueconnect\QuickLinkUIPlugin.dll
21:00:34.0651 0x03e4  C:\Program Files (x86)\blueconnect\QuickLinkUIPlugin.dll - ok
21:00:34.0651 0x03e4  [ 5FCF8573F9E1DA2CD680F6C9C3334CE3, 4A0DF69FF92B6BFBED5F112D0B55168353D332A2B6028B9B1B904DFC72FCF3EB ] C:\Program Files (x86)\blueconnect\XFramePlugin.dll
21:00:34.0651 0x03e4  C:\Program Files (x86)\blueconnect\XFramePlugin.dll - ok
21:00:34.0651 0x03e4  [ B3F446D1C1D3363015C539DFE114863B, F5D1A738E35B66DE1D3F08A85625531F343B18F9B306ECCF03C198DFB8A7DD3E ] C:\Program Files (x86)\blueconnect\MenuMgrPlugin.dll
21:00:34.0651 0x03e4  C:\Program Files (x86)\blueconnect\MenuMgrPlugin.dll - ok
21:00:34.0666 0x03e4  [ 801CB805C9086457A589F94BE6396A36, CB01155D61CA116B6180683A35EC96F0D32F9BD9E24876582403B35F792175B5 ] C:\Program Files (x86)\blueconnect\LocaleMgrPlugin.dll
21:00:34.0666 0x03e4  C:\Program Files (x86)\blueconnect\LocaleMgrPlugin.dll - ok
21:00:34.0666 0x03e4  [ 32E4018BF98CB368ED187CFFF73B7191, 0FB6CA15E4BF3B3C6C8DD45B947C880F8B77EEA6953540BC97B33B23866D5EEE ] C:\Program Files (x86)\blueconnect\NotifyServicePlugin.dll
21:00:34.0666 0x03e4  C:\Program Files (x86)\blueconnect\NotifyServicePlugin.dll - ok
21:00:34.0666 0x03e4  [ 4DD3BF01094BEA8C0629FBDD65C63CB3, F91491A3B2004ABB7C43CBAC49B7A0B8C8E3A7A79D55C26C94AE7412B63B8A15 ] C:\Program Files (x86)\blueconnect\StatusBarMgrPlugin.dll
21:00:34.0666 0x03e4  C:\Program Files (x86)\blueconnect\StatusBarMgrPlugin.dll - ok
21:00:34.0666 0x03e4  [ 54D362FDFF10D6576A074DC6CE6BA246, 11E8FF5ECAF1D6101538BC4DBF2B324DD429BC892E40937AAE105AE54017E1D6 ] C:\Program Files (x86)\blueconnect\ToolBarMgrPlugin.dll
21:00:34.0666 0x03e4  C:\Program Files (x86)\blueconnect\ToolBarMgrPlugin.dll - ok
21:00:34.0666 0x03e4  [ A35DCF5320BF2D4A1374FADB8F1D0F66, AE80AFA27E9E6787AB12FDD8DD01ED64CB9BD4CAF02A922ABF7B52111B69EB3A ] C:\Program Files (x86)\blueconnect\LayoutPlugin.dll
21:00:34.0666 0x03e4  C:\Program Files (x86)\blueconnect\LayoutPlugin.dll - ok
21:00:34.0666 0x03e4  [ 07BDC7D0A36D3258ABAC98D4D250BAEB, DEAE8E62279978A25B0FAD70596B96DD0168544736C842488090E45861A4C86B ] C:\Program Files (x86)\blueconnect\SkinMagicExU.dll
21:00:34.0666 0x03e4  C:\Program Files (x86)\blueconnect\SkinMagicExU.dll - ok
21:00:34.0666 0x03e4  [ 98D3C7878237FE3EC0A47D87E369750A, 3F9A575A0735265BC802FA3BF81552ECD3603A2BBA47BF091EAEA311ABB11138 ] C:\Program Files (x86)\blueconnect\SMSUIPlugin.dll
21:00:34.0666 0x03e4  C:\Program Files (x86)\blueconnect\SMSUIPlugin.dll - ok
21:00:34.0682 0x03e4  [ B4DADE20D77C00A736EC773CEBC9F201, ED59C16C18C3B5F227FE5CEA2BD14E3294878E4E25775530EBC68E37B9C16253 ] C:\Program Files (x86)\blueconnect\AddrBookPlugin.dll
21:00:34.0682 0x03e4  C:\Program Files (x86)\blueconnect\AddrBookPlugin.dll - ok
21:00:34.0682 0x03e4  [ 3D1A8BCDF3FB0FE1CDEC74BF29EA62B7, 0177C89845445C32773F17A15120FE4E3EDC8CF5B38BD117DF38E552044B7808 ] C:\Program Files (x86)\blueconnect\FileManager.dll
21:00:34.0682 0x03e4  C:\Program Files (x86)\blueconnect\FileManager.dll - ok
21:00:34.0682 0x03e4  [ DE79CE92A53F54147BF82476CBF47914, 4D093E11C77B630118C169C6E74D4EC4318BE2A020ECAD1C3600454EFB5F9F1E ] C:\Program Files (x86)\blueconnect\SMSPlugin.dll
21:00:34.0682 0x03e4  C:\Program Files (x86)\blueconnect\SMSPlugin.dll - ok
21:00:34.0682 0x03e4  [ A7F91DF2651A8E91E7108DEE3CC51521, A0DC06CDFBEA4E205A4615D3CE3421FB47CED1287D4CD39807FA2D99AF136652 ] C:\Program Files (x86)\blueconnect\USSDUIPlugin.dll
21:00:34.0682 0x03e4  C:\Program Files (x86)\blueconnect\USSDUIPlugin.dll - ok
21:00:34.0682 0x03e4  [ B5506B451BFE7148ECA7056BDA2970BD, 4E8E031342E5EA7DD24B5EFCE04B7FB96BAF0B600F548F8FB2414F0E02C54613 ] C:\Windows\SysWOW64\riched32.dll
21:00:34.0682 0x03e4  C:\Windows\SysWOW64\riched32.dll - ok
21:00:34.0682 0x03e4  [ 102CF6879887BBE846A00C459E6D4ABC, A4C51C79CF95D5C79DCEFB02946A09A987FEAF83CE2EE1BA7677EBA90869AC80 ] C:\Windows\SysWOW64\riched20.dll
21:00:34.0682 0x03e4  C:\Windows\SysWOW64\riched20.dll - ok
21:00:34.0697 0x03e4  [ B3EEDF54A701B1879F6FC412EDAF67F5, AA904BE37F020C139A9772A35110B4D4FD6F348898BA1046DDCBFEAA79B48A65 ] C:\Program Files (x86)\blueconnect\DeviceMgrUIPlugin.dll
21:00:34.0697 0x03e4  C:\Program Files (x86)\blueconnect\DeviceMgrUIPlugin.dll - ok
21:00:34.0697 0x03e4  [ D56C13F26ADCB3BC0455DB42883F6E7D, D4FED452DB714614EC362DCC56EFA66777FBCFB49037D9B3C1FFE09A91ADA2D0 ] C:\Windows\System32\iedkcs32.dll
21:00:34.0697 0x03e4  C:\Windows\System32\iedkcs32.dll - ok
21:00:34.0697 0x03e4  [ 6D220604AA4240303DD8DEAEAB428377, 0AC013CFA8F8040017969B3110BBD3B9A4827E0DFC4BE65F334F607248DF9550 ] C:\Windows\System32\ie4uinit.exe
21:00:34.0697 0x03e4  C:\Windows\System32\ie4uinit.exe - ok
21:00:34.0697 0x03e4  [ 2C647ABE9A424E55B5F3DAE4629B4277, 7B33009D253BAFFF87535C075E75498B6A06F334035DDC0DF51E10A142B4DF9E ] C:\Windows\System32\themeui.dll
21:00:34.0697 0x03e4  C:\Windows\System32\themeui.dll - ok
21:00:34.0697 0x03e4  [ 1FCB1A72BF5C784F7358E6BEF38E4571, 12DA4240F8C964EDA6223257BD9723FD9372E63AE86F00509163B1DE12A5F6C5 ] C:\Windows\System32\timedate.cpl
21:00:34.0697 0x03e4  C:\Windows\System32\timedate.cpl - ok
21:00:34.0713 0x03e4  [ 73E8667A19FEEDD856DF2695E9E511D4, 68D66C36D1F293D10ADCC6A33C870F989A29743537592CF172F02E794BEAFD1C ] C:\Windows\SysWOW64\wship6.dll
21:00:34.0713 0x03e4  C:\Windows\SysWOW64\wship6.dll - ok
21:00:34.0713 0x03e4  [ ED6EE83D61EBC683C2CD8E899EA6FEBE, F82592908D038C44D9F2E5C5B7BC663A2D370FC565F40420E1138A9E55F0E7EB ] C:\Windows\SysWOW64\rasadhlp.dll
21:00:34.0713 0x03e4  C:\Windows\SysWOW64\rasadhlp.dll - ok
21:00:34.0713 0x03e4  [ C4F40F6CACD796A8E16671D0E9A2F319, 44853C645915D910ED0CC6D38F68B6C222528EC5FCBE990E238010F41204E682 ] C:\Windows\System32\shdocvw.dll
21:00:34.0713 0x03e4  C:\Windows\System32\shdocvw.dll - ok
21:00:34.0713 0x03e4  [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{B0B27853-B141-46C1-840B-9CBAE21CC8E8}.tmp
21:00:34.0713 0x03e4  C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{B0B27853-B141-46C1-840B-9CBAE21CC8E8}.tmp - ok
21:00:34.0713 0x03e4  [ A0A65D306A5490D2EB8E7DE66898ECFD, CE5DA408F4EDD5E81CE0925867F03C9A35172CF1571FE4C4C052E45AB69822BB ] C:\Windows\System32\linkinfo.dll
21:00:34.0713 0x03e4  C:\Windows\System32\linkinfo.dll - ok
21:00:34.0713 0x03e4  [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{BE19E0CB-CCA6-4289-83FC-3C682D7953EE}.tmp
21:00:34.0713 0x03e4  C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{BE19E0CB-CCA6-4289-83FC-3C682D7953EE}.tmp - ok
21:00:34.0713 0x03e4  [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{1476CB00-C22E-444A-B5AA-6BE563F405DA}.tmp
21:00:34.0713 0x03e4  C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{1476CB00-C22E-444A-B5AA-6BE563F405DA}.tmp - ok
21:00:34.0729 0x03e4  [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{A18D1272-22DD-4618-93D1-D7B68170EDAB}.tmp
21:00:34.0729 0x03e4  C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{A18D1272-22DD-4618-93D1-D7B68170EDAB}.tmp - ok
21:00:34.0729 0x03e4  [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{8D31FCF9-E9D8-49F3-A9BC-C31B92423083}.tmp
21:00:34.0729 0x03e4  C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{8D31FCF9-E9D8-49F3-A9BC-C31B92423083}.tmp - ok
21:00:34.0729 0x03e4  [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86, E15ED4FEFC3010C213694331DDFDC03767682325C898D773AB243E2DC8B08461 ] C:\Windows\System32\msftedit.dll
21:00:34.0729 0x03e4  C:\Windows\System32\msftedit.dll - ok
21:00:34.0729 0x03e4  [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{75DFD031-CEDA-4B68-A621-530DE24EE23C}.tmp
21:00:34.0729 0x03e4  C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{75DFD031-CEDA-4B68-A621-530DE24EE23C}.tmp - ok
21:00:34.0729 0x03e4  [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{C0980AA2-7888-4A42-B819-C3EF9FD85CAF}.tmp
21:00:34.0729 0x03e4  C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{C0980AA2-7888-4A42-B819-C3EF9FD85CAF}.tmp - ok
21:00:34.0729 0x03e4  [ 7CB3ACB163DE051169095DC6507B8977, 45D4DEB0695440D8B5E959945B3F7A773E02E2AB305E316123A1064FC1905402 ] C:\Windows\System32\msls31.dll
21:00:34.0729 0x03e4  C:\Windows\System32\msls31.dll - ok
21:00:34.0744 0x03e4  [ 7DBA84667DC18877AEF693E3543DFAD7, 499306CE72EB8B873C547C600FD1093B7A79122D656407E69879041690AE588F ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
21:00:34.0744 0x03e4  C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
21:00:34.0744 0x03e4  [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{C12DF315-3036-488A-83E5-8DEF83CF50AD}.tmp
21:00:34.0744 0x03e4  C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{C12DF315-3036-488A-83E5-8DEF83CF50AD}.tmp - ok
21:00:34.0744 0x03e4  [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{5A2E0D29-563B-4F93-B71D-30EBB4FD924D}.tmp
21:00:34.0744 0x03e4  C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{5A2E0D29-563B-4F93-B71D-30EBB4FD924D}.tmp - ok
21:00:34.0744 0x03e4  [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{4BFACA7F-387E-4C75-B92F-77AFD96A50DC}.tmp
21:00:34.0744 0x03e4  C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{4BFACA7F-387E-4C75-B92F-77AFD96A50DC}.tmp - ok
21:00:34.0744 0x03e4  [ 4C2C4640BF23AAFCF90519E0F34436CE, 8ACCDA77C2DC5BE2DAED05134310122AFECC872A8D118612E55DD229BFE4D844 ] C:\Windows\System32\DeviceCenter.dll
21:00:34.0744 0x03e4  C:\Windows\System32\DeviceCenter.dll - ok
21:00:34.0760 0x03e4  [ 24F4B480F335A6C724AF352253C5D98B, 011413B236CAD7B78CE0A0EEC3E3085D48C7576A3205D025BA6EBFDF590538E4 ] C:\Windows\System32\thumbcache.dll
21:00:34.0760 0x03e4  C:\Windows\System32\thumbcache.dll - ok
21:00:34.0760 0x03e4  [ 64D94F1ED2DCB199948F614367CD2636, 49C28D44658683F234F6F59FA10EA0957A2BF75421C0846E64DC0D359FB6D410 ] C:\Program Files (x86)\blueconnect\UpdateDog\ouc.exe
21:00:34.0760 0x03e4  C:\Program Files (x86)\blueconnect\UpdateDog\ouc.exe - ok
21:00:34.0760 0x03e4  [ 405F4D32D2185F1F1BD753D8EEAFFB3A, CAC42C3E09C43BE96592B670D70821386014DB22D8239A9CFB9E33E54FB5C3D5 ] C:\Windows\System32\networkexplorer.dll
21:00:34.0760 0x03e4  C:\Windows\System32\networkexplorer.dll - ok
21:00:34.0760 0x03e4  [ B9B1DA9C6A463114CC52DD293643DA6D, AD3DC4D57AB20E4E4A34BD586B4D8CE72968D1028E090001584AD04884B3006B ] C:\Program Files (x86)\GlassWire\GlassWire.exe
21:00:34.0760 0x03e4  C:\Program Files (x86)\GlassWire\GlassWire.exe - ok
21:00:34.0760 0x03e4  [ 1473768973453DE50DC738C2955FC4DD, 14BC5DA2442CB726ACC1F277DDBECCF5D61E3A0A3E083A55A0BB610191E35220 ] C:\Windows\System32\wdmaud.drv
21:00:34.0760 0x03e4  C:\Windows\System32\wdmaud.drv - ok
21:00:34.0775 0x03e4  [ 8560FFFC8EB3A806DCD4F82252CFC8C6, CC27BC092369A89D6147B16568FEDEB68B584D5738CD686C31F7FAE22ED17B3B ] C:\Windows\System32\ksuser.dll
21:00:34.0775 0x03e4  C:\Windows\System32\ksuser.dll - ok
21:00:34.0775 0x03e4  [ E2A17BCC08D92F42E08AF6BA2F93ABA7, 5FC9D47BF4B1094BECC0C0DDCD5CD4318DD3E4495D982F8785331616D5B82599 ] C:\Windows\SysWOW64\ExplorerFrame.dll
21:00:34.0775 0x03e4  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
21:00:34.0775 0x03e4  [ 783EF0BC461DF3EB545E742EA7139048, 906BDF3F3FA22323548D041DA8C4A5D1E36AE8F085AEC2479AF3CA50396FA9C3 ] C:\Program Files (x86)\GlassWire\Qt5Core.dll
21:00:34.0775 0x03e4  C:\Program Files (x86)\GlassWire\Qt5Core.dll - ok
21:00:34.0775 0x03e4  [ 316663537A203220F15B9D426D5B44F8, DA8137486BD7A599F39286D71C04BB1AFD9C101E628311C2999D2630FD9AE035 ] C:\Windows\System32\apisetschema.dll
21:00:34.0775 0x03e4  C:\Windows\System32\apisetschema.dll - ok
21:00:34.0791 0x03e4  [ DC220AE6F64819099F7EBD6F137E32E7, B8FE13B859FA83500DD95637FA6D4A5B8392C2A363E41D014D3B5374F636E1DE ] C:\Windows\System32\AudioSes.dll
21:00:34.0791 0x03e4  C:\Windows\System32\AudioSes.dll - ok
21:00:34.0791 0x03e4  [ 6E1F8165C365D35C8E3C045AF0CDD481, B861360D0A014265A0BEB4CC2FE31EA05AE95120E8B07820C13A044D64C00E2B ] C:\Windows\SysWOW64\duser.dll
21:00:34.0791 0x03e4  C:\Windows\SysWOW64\duser.dll - ok
21:00:34.0791 0x03e4  [ A5A5C69F11899A81BEEBBBF51C827393, 8FD9EDA86516B2FA9613F32A88A2D2C0E63B5E05B12FD0447D2045D69EA8A649 ] C:\Program Files (x86)\GlassWire\icuin52.dll
21:00:34.0791 0x03e4  C:\Program Files (x86)\GlassWire\icuin52.dll - ok
21:00:34.0791 0x03e4  [ 1B7C3A37362C7B2890168C5FC61C8D9B, 03727930E5BB5F9D91BAB901FC9A2E3B795D68E2AEE6A2CC3477F356C45A9C54 ] C:\Windows\System32\msacm32.drv
21:00:34.0791 0x03e4  C:\Windows\System32\msacm32.drv - ok
21:00:34.0807 0x03e4  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A, 72288C0A88916D3C3828DBD948DBDB0928F26106319F8E60102D6C9004514D60 ] C:\Windows\System32\msacm32.dll
21:00:34.0807 0x03e4  C:\Windows\System32\msacm32.dll - ok
21:00:34.0807 0x03e4  [ EE06B85BC69F18826302348A2AD089E0, 417205797CC9F6C986A863A61179784D9ADCAF1961EF8A4D9042D73C5A86509A ] C:\Windows\SysWOW64\dui70.dll
21:00:34.0807 0x03e4  C:\Windows\SysWOW64\dui70.dll - ok
21:00:34.0807 0x03e4  [ CA2A0750ED830678997695FF61B04C30, E84860CD97AA3C4565ABB2D5D406A5C42B1AD2D8BA1B8CF81FE564D91F15F976 ] C:\Windows\System32\midimap.dll
21:00:34.0807 0x03e4  C:\Windows\System32\midimap.dll - ok
21:00:34.0807 0x03e4  [ 4D2E41F6A2F322156A8EE96519411A37, 037841209A8551C4748767AE6AF6B7CA9C6739E72D74878224A0242D265166BC ] C:\Program Files (x86)\GlassWire\icuuc52.dll
21:00:34.0807 0x03e4  C:\Program Files (x86)\GlassWire\icuuc52.dll - ok
21:00:34.0807 0x03e4  [ 88A59F393DFB73F15A95E8F913CD3211, BC0D37DC0288D725F91392F7EAADB5744DF577186F56AF1ED363E17E12914FAC ] C:\Program Files (x86)\blueconnect\DataCardMonitor.exe
21:00:34.0807 0x03e4  C:\Program Files (x86)\blueconnect\DataCardMonitor.exe - ok
21:00:34.0822 0x03e4  [ 9A7C4816F97035F34B5E9EFE9897828F, BA500ADC247EBA085D5FAA0C701C465A77C82660FD3D326F09070D0CD01BBBEF ] C:\Program Files (x86)\GlassWire\icudt52.dll
21:00:34.0822 0x03e4  C:\Program Files (x86)\GlassWire\icudt52.dll - ok
21:00:34.0822 0x03e4  [ 5EDBB34736DD7AC1A73CF8792A835E10, 15E87C449AAF2095273341DD9355D8DF2690340D1DEFAF0DFF034F1CDF4316F8 ] C:\Windows\System32\AudioEng.dll
21:00:34.0822 0x03e4  C:\Windows\System32\AudioEng.dll - ok
21:00:34.0822 0x03e4  [ 887CAA31048EB8ED09A0CBD0E6F46F09, BBCED0BD4EB00C3FECFC9448223D4C441A868787877291F5489B07B43FAB65A4 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
21:00:34.0822 0x03e4  C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
21:00:34.0822 0x03e4  [ 3504B34CD2DE00BA3CC1A195F1B739BD, C08B5AD0C59FF393658CB08130A138CDBC16C1BF2672611CD2C5C93ED40EBA21 ] C:\Windows\System32\gameux.dll
21:00:34.0822 0x03e4  C:\Windows\System32\gameux.dll - ok
21:00:34.0838 0x03e4  [ F7F0714EF964652CAF1CA177722AC6DD, 06C8F8AC796F218473BA002A21AD947B13BE5E235CBAC684B209FA6E8C2DC2DE ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe
21:00:34.0838 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe - ok
21:00:34.0838 0x03e4  [ D02CCF48FA62EA551E83AF6E4D5C2F43, B8A4E6CA02A4D98C484B316737435A568B7F9E538DD3B15FDB9634DD27C1F9B0 ] C:\Program Files (x86)\GlassWire\Qt5Widgets.dll
21:00:34.0838 0x03e4  C:\Program Files (x86)\GlassWire\Qt5Widgets.dll - ok
21:00:34.0838 0x03e4  [ C1395286B822E306B4FE1568A8A77813, 0642B6C793BE0EED5E7D1D2533FC5A01417C50040FC60A8E89BD97CE4A119388 ] C:\Windows\System32\AUDIOKSE.dll
21:00:34.0838 0x03e4  C:\Windows\System32\AUDIOKSE.dll - ok
21:00:34.0838 0x03e4  [ 3819AD4329303EAC88480CA16A650735, FBE665BEE15A334851AF4BF9969C8BC21B3F0254CAA5E21E67D7843D4171E675 ] C:\Windows\System32\UIAnimation.dll
21:00:34.0838 0x03e4  C:\Windows\System32\UIAnimation.dll - ok
21:00:34.0838 0x03e4  [ F6DE549039CCF8DB36A60DB15080E78A, D4F2CA9846012155068145BDA9D1A506155DD4C177171E2DB63BD555C4B0CB10 ] C:\Program Files (x86)\GlassWire\Qt5Gui.dll
21:00:34.0838 0x03e4  C:\Program Files (x86)\GlassWire\Qt5Gui.dll - ok
21:00:34.0853 0x03e4  [ D1BBE227367ED791D5FCF08E132D2956, 34349B7FB46BB89D59CC9CC6CD3F790870AB96642254C0374D97AFAC6121B945 ] C:\Windows\SysWOW64\opengl32.dll
21:00:34.0853 0x03e4  C:\Windows\SysWOW64\opengl32.dll - ok
21:00:34.0853 0x03e4  [ DE3897365B04C4DA1CF8FF725577C082, 44703E2D6C7219714C929D8ED096C8E044A3EDCA73198870A5CC4EF5CE16C397 ] C:\Windows\SysWOW64\glu32.dll
21:00:34.0853 0x03e4  C:\Windows\SysWOW64\glu32.dll - ok
21:00:34.0853 0x03e4  [ 64D94F1ED2DCB199948F614367CD2636, 49C28D44658683F234F6F59FA10EA0957A2BF75421C0846E64DC0D359FB6D410 ] C:\Users\xblee\AppData\Roaming\blueconnect\ouc.exe
21:00:34.0853 0x03e4  C:\Users\xblee\AppData\Roaming\blueconnect\ouc.exe - ok
21:00:34.0853 0x03e4  [ 198552AEFECA69D646867EC8D792DE95, 6978D5205387391748EE7E9FACF1AE607C37FBFD83B77CB632DD772F8D71A165 ] C:\Windows\SysWOW64\ddraw.dll
21:00:34.0853 0x03e4  C:\Windows\SysWOW64\ddraw.dll - ok
21:00:34.0853 0x03e4  [ 6F3C559B82F2912354BE5B098744CC8C, EB64E5C02C81588921A65194E1256E80699A1317E7D9A57395CD38C2639C8B08 ] C:\Windows\System32\WMALFXGFXDSP.dll
21:00:34.0853 0x03e4  C:\Windows\System32\WMALFXGFXDSP.dll - ok
21:00:34.0853 0x03e4  [ 55E5B32AE8D1F51A63C82919656FD275, 1E32D9471902F0743BF234466E44A7ECCF7B55618A2D42F9B0902AD591133700 ] C:\Windows\SysWOW64\dciman32.dll
21:00:34.0853 0x03e4  C:\Windows\SysWOW64\dciman32.dll - ok
21:00:34.0853 0x03e4  [ 48C566013F2B20F0BABCAD98079EEC05, C1D5F2CE9A6844BFB2C560E55BCC27364AB902CD14F1BD517551862DCB77B3D7 ] C:\Windows\SysWOW64\tzres.dll
21:00:34.0853 0x03e4  C:\Windows\SysWOW64\tzres.dll - ok
21:00:34.0869 0x03e4  [ 54B5DCD55B223BC5DF50B82E1E9E86B1, 025294DD69A421FE4EACAA463F8CB797610D8F3A7A3C61656AE83D0CEE07A9BF ] C:\Windows\System32\mfplat.dll
21:00:34.0869 0x03e4  C:\Windows\System32\mfplat.dll - ok
21:00:34.0869 0x03e4  [ 26DDA8F0DC1B9E5F92A89ABE454E3F5D, 111AEB51CC0130BE50351150FD47B922EF02548032FCAA798193EF8277584027 ] C:\Program Files (x86)\GlassWire\Qt5Svg.dll
21:00:34.0869 0x03e4  C:\Program Files (x86)\GlassWire\Qt5Svg.dll - ok
21:00:34.0869 0x03e4  [ 9F044AC925A9DCB79C743A95392C4E06, 8BFD982F1417E6D224B8E2C0F8718C45BC6435D082E066C6F59E9A80660C8696 ] C:\Program Files (x86)\GlassWire\Qt5WinExtras.dll
21:00:34.0869 0x03e4  C:\Program Files (x86)\GlassWire\Qt5WinExtras.dll - ok
21:00:34.0869 0x03e4  [ FCCC8EC36B98EAAB050F302DA6E27531, F7E5E4597BE2DE0B53FF13C704C5D6A849A0AE4912E6C81448ACB4DCC88E416C ] C:\Program Files (x86)\GlassWire\platforms\qwindows.dll
21:00:34.0869 0x03e4  C:\Program Files (x86)\GlassWire\platforms\qwindows.dll - ok
21:00:34.0869 0x03e4  [ B0129FA6E4C16D53EFF3754D85F37C4D, 1A348EA22A818593F4B891ACB352994A10A2CCE348D96150CEB386106EDE74B6 ] C:\Program Files (x86)\GlassWire\imageformats\qico.dll
21:00:34.0869 0x03e4  C:\Program Files (x86)\GlassWire\imageformats\qico.dll - ok
21:00:34.0885 0x03e4  [ 9F40F5F88CDE50488F637B60B3F751D2, 009BFFEE2BA90C09FB67E53A0F61C28E24B0E6F3818BF7CF7A0637181CB08D7A ] C:\Program Files (x86)\GlassWire\imageformats\qjpeg.dll
21:00:34.0885 0x03e4  C:\Program Files (x86)\GlassWire\imageformats\qjpeg.dll - ok
21:00:34.0885 0x03e4  [ 88D358DB551268ED10CB4E71678F85AA, 6275D111CEB4C85EF29E4934F256181027E9C9E4918E67D87BE6E70CB069D53A ] C:\Program Files (x86)\blueconnect\UpdateDog\LiveUpdate.exe
21:00:34.0885 0x03e4  C:\Program Files (x86)\blueconnect\UpdateDog\LiveUpdate.exe - ok
21:00:34.0885 0x03e4  [ C3761661C17C2248A9379A8FB89E3DE1, CE3477FA2B4058EB80739E0161FE957545F13CF86D313F6422732901D35F75F2 ] C:\Windows\System32\stobject.dll
21:00:34.0885 0x03e4  C:\Windows\System32\stobject.dll - ok
21:00:34.0885 0x03e4  [ F832EEEA97CDDA1AF577E721F652A0D1, EBBB7CA199BA4DF231123922BD310D43DE0104C6185B70FE0281B938D5336F2E ] C:\Windows\System32\batmeter.dll
21:00:34.0885 0x03e4  C:\Windows\System32\batmeter.dll - ok
21:00:34.0885 0x03e4  [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122, E7EA375A3BDE8FC764CB09524344370B9EE25F98AD6C83E6F37A569EB8D277D6 ] C:\Windows\System32\prnfldr.dll
21:00:34.0885 0x03e4  C:\Windows\System32\prnfldr.dll - ok
21:00:34.0885 0x03e4  [ 0015ACFBBDD164A8A730009908868CA7, E1FF243AD2CF959FAB81EFE701592414991C03416FF296ADC93906E76B707C4D ] C:\Windows\System32\winspool.drv
21:00:34.0885 0x03e4  C:\Windows\System32\winspool.drv - ok
21:00:34.0900 0x03e4  [ FCD0DC8C463CCE283AFE7E71332948AB, 8736715FB402C2DDF45D78D10CE0FC2758C22C22181701FF2CA5493846A70029 ] C:\Program Files (x86)\Emsisoft Anti-Malware\clean32.dll
21:00:34.0900 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\clean32.dll - ok
21:00:34.0900 0x03e4  [ 725E5A19B34061BDD5A5F5720A4D9022, 538B6209E15DFBEBE238B6F13029DFCA3A8803CFCDB5B38B1668961C9CE5A9E8 ] C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp32.dll
21:00:34.0900 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp32.dll - ok
21:00:34.0900 0x03e4  [ 1E370D588367AE396EAFF9D34BD15149, F23F879657ADA63008F7E10B84F60CDF69FCA01FA7D5B9E7212974DE4E3EFD77 ] C:\Program Files (x86)\Emsisoft Anti-Malware\frme32.dll
21:00:34.0900 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\frme32.dll - ok
21:00:34.0900 0x03e4  [ 42A9CB6906D9A8BEDC83B57163E62924, E18522D3137653140757829EFBFCE624A5BAA5842E2BBA10B9E5AB6C84BE49E1 ] C:\Windows\System32\DXP.dll
21:00:34.0900 0x03e4  C:\Windows\System32\DXP.dll - ok
21:00:34.0916 0x03e4  [ B794DCF38C965FA2F93C45A7C3D582C5, 0E483EAF835B85AA4B6F449F9BB68AF0A3EE4192D29CD72F4B812F1E4D9E9A7C ] C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys
21:00:34.0916 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys - ok
21:00:34.0916 0x03e4  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891, 0A82A475301202791A7C10F978F952EAB7DB146A702D4EA67E24E2C98BC19638 ] C:\Windows\System32\Syncreg.dll
21:00:34.0916 0x03e4  C:\Windows\System32\Syncreg.dll - ok
21:00:34.0916 0x03e4  [ C836175870E00ACC546066632E15BD10, 4347F3319C26DA1C38F395C74DBD67AF886149C8F29EDE765DD96C8480A3054A ] C:\Windows\ehome\ehSSO.dll
21:00:34.0916 0x03e4  C:\Windows\ehome\ehSSO.dll - ok
21:00:34.0916 0x03e4  [ C8FDF0FA9E97E2FAAF3F814716AAA881, DD24A1CAB44D943B0E1A795A347AD25D9305FC7F012A2566A6A14BD47221831F ] C:\Windows\System32\WPDShServiceObj.dll
21:00:34.0916 0x03e4  C:\Windows\System32\WPDShServiceObj.dll - ok
21:00:34.0916 0x03e4  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB, CF9082360E32A7C3E13A67AC2C6192F4A76870D43DA9FF2936993A637F712761 ] C:\Windows\System32\AltTab.dll
21:00:34.0916 0x03e4  C:\Windows\System32\AltTab.dll - ok
21:00:34.0916 0x03e4  [ 10F815BE90A66AAFC6C713D1BD626064, 01139FC04BC53594296F6A0E16B8D20B940F64BC8119FE7705C03C4947958F39 ] C:\Windows\System32\pnidui.dll
21:00:34.0916 0x03e4  C:\Windows\System32\pnidui.dll - ok
21:00:34.0931 0x03e4  [ B9F0A4020AA98B7A20287BF7FE99A1FD, 21138F161EEEA46198890C7A2D073F2C82829E15676131BDAD9F237EDC7477CD ] C:\Windows\System32\QUTIL.DLL
21:00:34.0931 0x03e4  C:\Windows\System32\QUTIL.DLL - ok
21:00:34.0931 0x03e4  [ D9435DA6B31A7D552EA8B4CDAF2980C2, 43A6BAAE0BEF203FFAAE5B4E0656B7ABA0FBBCA04DE05EE500365F29813A8A35 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2acc.dll
21:00:34.0931 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\a2acc.dll - ok
21:00:34.0931 0x03e4  [ 73C035299E3044636104CA7A7634A6AC, ED1D4904E2D1D1C72ED9697297AE1B64860098BA2F6F63F7A1426413007DF138 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2accx64.sys
21:00:34.0931 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\a2accx64.sys - ok
21:00:34.0931 0x03e4  [ 92DBF0A4C9239169010FC6E07859C82E, 00FB2CF4420F0FFEF519AFE732A708CF249640121E2A891CAA164313ABD7F804 ] C:\Windows\System32\ActionCenter.dll
21:00:34.0931 0x03e4  C:\Windows\System32\ActionCenter.dll - ok
21:00:34.0931 0x03e4  [ F7A256EC899C72B4ECDD2C02CB592EFD, 9C1AA9322E83CABB94AEA4375EAEB0C44700E1F33B8BE98649BA1DF4DDFAD326 ] C:\Windows\System32\bthprops.cpl
21:00:34.0931 0x03e4  C:\Windows\System32\bthprops.cpl - ok
21:00:34.0947 0x03e4  [ F1115299B9F4C983BC4523B33E3A506C, 01A1D8B3E5CF727F92F4A43D5C5F81022127D58A850D29D3F084AD411EFBC9DD ] C:\Windows\System32\ieframe.dll
21:00:34.0947 0x03e4  C:\Windows\System32\ieframe.dll - ok
21:00:34.0947 0x03e4  [ 0B7E85364CB878E2AD531DB7B601A9E5, F5AD3018427F1CD68450EE5CB55AA9572546322580E0FB1E7888702A291C2380 ] C:\Windows\SysWOW64\NapiNSP.dll
21:00:34.0947 0x03e4  C:\Windows\SysWOW64\NapiNSP.dll - ok
21:00:34.0947 0x03e4  [ 5CF640EDDB1E40A5AB1BB743BCDEC610, 0313AA3F713C9F5B84DBB0B4DE78A96B173E9F7B4CF61C10FDC7DAE952DB04E5 ] C:\Windows\SysWOW64\pnrpnsp.dll
21:00:34.0947 0x03e4  C:\Windows\SysWOW64\pnrpnsp.dll - ok
21:00:34.0947 0x03e4  [ 5DF5D8CFD9B9573FA3B2C89D9061A240, 990EA273B640DF2D7E800C0CFF18550259C605A4951CD82CD9F1E7B6FF0C9533 ] C:\Windows\SysWOW64\winrnr.dll
21:00:34.0947 0x03e4  C:\Windows\SysWOW64\winrnr.dll - ok
21:00:34.0947 0x03e4  [ C746F3BF98E92FB137B5BD2B8B5925BD, 67A8990F3D491D149E65C90042909259793C65E671DC953FDA1F7590FAC23D9E ] C:\Windows\System32\FXSST.dll
21:00:34.0947 0x03e4  C:\Windows\System32\FXSST.dll - ok
21:00:34.0947 0x03e4  [ 650CAEA856943E29F25A25D31E004B18, DCA63D2AF4C6F14B27EA006F200E58A5C13AC940A51947A40F668908A446CC4E ] C:\Windows\System32\FXSAPI.dll
21:00:34.0947 0x03e4  C:\Windows\System32\FXSAPI.dll - ok
21:00:34.0963 0x03e4  [ 234AFA322624B3203A2E720F08292B03, 0C0ACDD63FD82EDD34442E9E0763872BA6BF6AC73AB89147EA5FDD1E0229CC0A ] C:\Windows\System32\cscobj.dll
21:00:34.0963 0x03e4  C:\Windows\System32\cscobj.dll - ok
21:00:34.0963 0x03e4  [ AD31942BDF3D594C404874613BC2FE4D, 704F4A48FA91B8A22604FF740B506C3B28766F8DFADB9D11814602FAA00EDFAB ] C:\Windows\System32\SearchIndexer.exe
21:00:34.0963 0x03e4  C:\Windows\System32\SearchIndexer.exe - ok
21:00:34.0963 0x03e4  [ C8E8B8239FCF17BEA10E751BE5854631, CB869195E78AB613CEF50AE3B247F0E4E42F233A7AAF5B2BFC5ADEA2C45C5F8D ] C:\Windows\System32\FXSRESM.dll
21:00:34.0963 0x03e4  C:\Windows\System32\FXSRESM.dll - ok
21:00:34.0963 0x03e4  [ 8569E35D00F45972E506502EEE622BA4, 01FE851C03DB88C8373099C279F995A559D962B08932E193032FA3EAD522FB01 ] C:\Windows\System32\srchadmin.dll
21:00:34.0963 0x03e4  C:\Windows\System32\srchadmin.dll - ok
21:00:34.0963 0x03e4  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] C:\Windows\System32\FXSSVC.exe
21:00:34.0963 0x03e4  C:\Windows\System32\FXSSVC.exe - ok
21:00:34.0963 0x03e4  [ 6C597496AB646EB9F31C68241050F771, 4107FC16395C80443B999DB547EA6DA5D511D70B49901F97E29858B35C046E8F ] C:\Windows\System32\tquery.dll
21:00:34.0963 0x03e4  C:\Windows\System32\tquery.dll - ok
21:00:34.0978 0x03e4  [ 017F5CE9BC2333FE0FB738B0A9C13C2F, AA4F0C8AE81E9FA9FB198D9EDB3BBBF1FC4C0FB03388089C0F7E96D496038218 ] C:\Windows\System32\mssrch.dll
21:00:34.0978 0x03e4  C:\Windows\System32\mssrch.dll - ok
21:00:34.0978 0x03e4  [ B8A0F9C2BFD380E5642456FDF2F1AFD5, 15C04979306DA2B1F0842133300A447271BEFA95CC8A19477FC66E781CE023E1 ] C:\Windows\System32\pl-PL\SearchIndexer.exe.mui
21:00:34.0978 0x03e4  C:\Windows\System32\pl-PL\SearchIndexer.exe.mui - ok
21:00:34.0978 0x03e4  [ D2155709E336C3BC15729EB87FEC6064, 682A84C0F2D892E7A6CEE4E5937B4799E352AAE3B71E7037F2A343373467443C ] C:\Windows\System32\rasdlg.dll
21:00:34.0978 0x03e4  C:\Windows\System32\rasdlg.dll - ok
21:00:34.0978 0x03e4  [ 3121A79D13A61562BE9CC902CD46B542, 00A5833A48338A4A9A5530844924AF4F1FAB618DA46D7EBBC6E2165C32ED376C ] C:\Windows\System32\msidle.dll
21:00:34.0978 0x03e4  C:\Windows\System32\msidle.dll - ok
21:00:34.0978 0x03e4  [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2, E8ACB693B1A78FAEF292111BE3F9B10BA95C76833C06C931A08EAAAE39A21334 ] C:\Windows\System32\dot3api.dll
21:00:34.0978 0x03e4  C:\Windows\System32\dot3api.dll - ok
21:00:34.0978 0x03e4  [ E4FCA0F99A41E460C84016DEFD31E6EF, 8EB14AF2025EADC7C86280E8417D8F286E8271B4F88B31696E33DFD72B3A0EF2 ] C:\Windows\System32\wlanhlp.dll
21:00:34.0978 0x03e4  C:\Windows\System32\wlanhlp.dll - ok
21:00:34.0978 0x03e4  [ 357BE883C5236BFC7341CB9E82308908, 4DDB697FD9B7C516CF99D73C8799EA35BB97E2431216CD7C1045F17B06109FBF ] C:\Windows\System32\wlanapi.dll
21:00:34.0978 0x03e4  C:\Windows\System32\wlanapi.dll - ok
21:00:34.0994 0x03e4  [ ACE1BB07E0377E37A2C514CD2EC119B1, A9AFA4774DFA875496764D6E541A6333A3ACD3C5D2BBEF753C2D80BA83B4AC15 ] C:\Windows\System32\mssprxy.dll
21:00:34.0994 0x03e4  C:\Windows\System32\mssprxy.dll - ok
21:00:34.0994 0x03e4  [ 5DA219F57A9076FB6FBD3C9C3713A672, 274FE616625B336D81841FDC752C8053D4CD6926565B899760D298D145CBA1A3 ] C:\Windows\System32\WWanAPI.dll
21:00:34.0994 0x03e4  C:\Windows\System32\WWanAPI.dll - ok
21:00:34.0994 0x03e4  [ 62C7AACC746C9723468A8F2169ED3E85, 40E901F3EAFE52DF11D6BC4EF0E79F666EBDACE0B3C090CAD2358076E893EA47 ] C:\Windows\System32\wwapi.dll
21:00:34.0994 0x03e4  C:\Windows\System32\wwapi.dll - ok
21:00:34.0994 0x03e4  [ 6B851E682A36453E1B1EE297FFB6E2AB, A641D3FD9463C4788B45B8B5584EA4489C1F63A71B4B595AE85FF3482CD5EDA6 ] C:\Windows\System32\QAGENT.DLL
21:00:34.0994 0x03e4  C:\Windows\System32\QAGENT.DLL - ok
21:00:34.0994 0x03e4  [ 47B8DEBEC68FACCD026F99CAE8698C93, 99EEFC2B43402E59A48BEC326A811B25E25DCDA3ECA12D5C2D9B529DA74564DA ] C:\Windows\System32\webcheck.dll
21:00:34.0994 0x03e4  C:\Windows\System32\webcheck.dll - ok
21:00:34.0994 0x03e4  [ 8494E126F0B10180F3293AF861CE1F7A, 538B1F30423DB2398E611BC46C80150C090698E633BABF7362F7060DBF0C3064 ] C:\Windows\System32\mlang.dll
21:00:34.0994 0x03e4  C:\Windows\System32\mlang.dll - ok
21:00:34.0994 0x03e4  [ 101797BA603D227946B4B5109867EB19, EBF2B48D1A4FE148F455EA32023ABC0D479215D48C7CE76E765F199CD3C80AF8 ] C:\Windows\System32\SyncCenter.dll
21:00:34.0994 0x03e4  C:\Windows\System32\SyncCenter.dll - ok
21:00:34.0994 0x03e4  [ 8130391F82D52D36C0441F714136957F, 1FD4FEE7CAF63E450F27729E07EA2A2F09288629FD872DBB6E8710B16D8DBD5D ] C:\Windows\System32\imapi2.dll
21:00:34.0994 0x03e4  C:\Windows\System32\imapi2.dll - ok
21:00:35.0009 0x03e4  [ 6A5C1A8AC0B572679361026D0E900420, B5E693B48B462E97738A3D4E58B60846159649EB15F4D11074B4BC107CC88562 ] C:\Windows\System32\hgcpl.dll
21:00:35.0009 0x03e4  C:\Windows\System32\hgcpl.dll - ok
21:00:35.0009 0x03e4  [ BF9C2547806408FA6E3D67A30D971826, A1A0A0A0E38567D772B6221AA032B3DF868E4B7E59D7F3A4BADB66592FA2BDC6 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2start.exe
21:00:35.0009 0x03e4  C:\Program Files (x86)\Emsisoft Anti-Malware\a2start.exe - ok
21:00:35.0009 0x03e4  ================ Scan generic autorun ======================
21:00:35.0119 0x03e4  [ 88A59F393DFB73F15A95E8F913CD3211, BC0D37DC0288D725F91392F7EAADB5744DF577186F56AF1ED363E17E12914FAC ] C:\Program Files (x86)\blueconnect\DataCardMonitor.exe
21:00:35.0134 0x03e4  DataCardMonitor - ok
21:00:35.0415 0x03e4  [ 887CAA31048EB8ED09A0CBD0E6F46F09, BBCED0BD4EB00C3FECFC9448223D4C441A868787877291F5489B07B43FAB65A4 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
21:00:35.0431 0x03e4  SunJavaUpdateSched - ok
21:00:35.0883 0x03e4  [ F7F0714EF964652CAF1CA177722AC6DD, 06C8F8AC796F218473BA002A21AD947B13BE5E235CBAC684B209FA6E8C2DC2DE ] c:\program files (x86)\emsisoft anti-malware\a2guard.exe
21:00:35.0961 0x03e4  emsisoft anti-malware - ok
21:00:36.0023 0x03e4  [ 64D94F1ED2DCB199948F614367CD2636, 49C28D44658683F234F6F59FA10EA0957A2BF75421C0846E64DC0D359FB6D410 ] C:\Program Files (x86)\blueconnect\UpdateDog\ouc.exe
21:00:36.0023 0x03e4  HW_OPENEYE_OUC_blueconnect - ok
21:00:36.0476 0x03e4  [ B9B1DA9C6A463114CC52DD293643DA6D, AD3DC4D57AB20E4E4A34BD586B4D8CE72968D1028E090001584AD04884B3006B ] C:\Program Files (x86)\GlassWire\glasswire.exe
21:00:36.0647 0x03e4  GlassWire - ok
21:00:37.0084 0x03e4  AV detected via SS2: Emsisoft Anti-Malware, C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2start.exe ( 9.0.0.4570 ), 0x41000 ( enabled : updated )
21:00:37.0178 0x03e4  Win FW state via NFP2: enabled
21:00:37.0178 0x03e4  ============================================================
21:00:37.0178 0x03e4  Scan finished
21:00:37.0178 0x03e4  ============================================================
21:00:37.0193 0x08f4  Detected object count: 0
21:00:37.0193 0x08f4  Actual detected object count: 0
21:00:50.0095 0x0098  ============================================================
21:00:50.0095 0x0098  Scan started
21:00:50.0095 0x0098  Mode: Manual; SigCheck; TDLFS; 
21:00:50.0095 0x0098  ============================================================
21:00:50.0095 0x0098  KSN ping started
21:00:50.0219 0x0098  KSN ping finished: false
21:00:51.0489 0x0098  ================ Scan system memory ========================
21:00:51.0489 0x0098  System memory - ok
21:00:51.0489 0x0098  ================ Scan services =============================
21:00:51.0862 0x0098  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
21:00:52.0174 0x0098  1394ohci - ok
21:00:52.0471 0x0098  [ 73C035299E3044636104CA7A7634A6AC, ED1D4904E2D1D1C72ED9697297AE1B64860098BA2F6F63F7A1426413007DF138 ] a2acc           C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2accx64.sys
21:00:52.0658 0x0098  a2acc - ok
21:00:53.0266 0x0098  [ 5E65B8C0E1AAE00E749BA4AC3B88E854, D641DDD1B14AED7FD1FB8D2B27BAC80548DF6D89A44FD57244FBAFC6F448BA37 ] a2AntiMalware   C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
21:00:53.0391 0x0098  a2AntiMalware - ok
21:00:53.0422 0x0098  [ D27A8B7BB0E15DFBFC6B4E774EE17AD9, CBAD45B3FFFD30C34AF918009F699B65F89043D0799FC25D2472381912F86F93 ] A2DDA           C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys
21:00:53.0438 0x0098  A2DDA - ok
21:00:53.0469 0x0098  [ 05936579605018BD2BC528FF2C1AD95F, 763C2E76F9078F6A74D5BCCB4DD8A10C82AEB9C9F5A45C3706A587FA2D03E7D3 ] a2injectiondriver C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys
21:00:53.0485 0x0098  a2injectiondriver - ok
21:00:53.0500 0x0098  [ B1AB7116D14667A2238DAEFE20B7F4D0, DC8A9093A6F759657C3354931A462FCCAF3533A907FB7152380EB2E9B4AD3BF8 ] a2util          C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys
21:00:53.0516 0x0098  a2util - ok
21:00:53.0563 0x0098  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
21:00:53.0578 0x0098  ACPI - ok
21:00:53.0594 0x0098  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
21:00:53.0656 0x0098  AcpiPmi - ok
21:00:53.0937 0x0098  [ D51145F6B0CE987850F13A61DAD5E531, 67CB6AB8C42781FA717CBEF81F3C658747E3B7814383056A56EDA99583FDBFD5 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:00:53.0999 0x0098  AdobeFlashPlayerUpdateSvc - ok
21:00:54.0062 0x0098  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
21:00:54.0109 0x0098  adp94xx - ok
21:00:54.0140 0x0098  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
21:00:54.0171 0x0098  adpahci - ok
21:00:54.0171 0x0098  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
21:00:54.0202 0x0098  adpu320 - ok
21:00:54.0218 0x0098  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
21:00:54.0265 0x0098  AeLookupSvc - ok
21:00:54.0296 0x0098  [ D31DC7A16DEA4A9BAF179F3D6FBDB38C, 532678D86E3E667F2E789C4873565E0B92C549A93F10802BB6D5B505CA3238CE ] AFD             C:\Windows\system32\drivers\afd.sys
21:00:54.0358 0x0098  AFD - ok
21:00:54.0374 0x0098  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
21:00:54.0389 0x0098  agp440 - ok
21:00:54.0405 0x0098  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
21:00:54.0467 0x0098  ALG - ok
21:00:54.0467 0x0098  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
21:00:54.0483 0x0098  aliide - ok
21:00:54.0499 0x0098  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
21:00:54.0499 0x0098  amdide - ok
21:00:54.0514 0x0098  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
21:00:54.0545 0x0098  AmdK8 - ok
21:00:54.0545 0x0098  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
21:00:54.0577 0x0098  AmdPPM - ok
21:00:54.0592 0x0098  [ 6EC6D772EAE38DC17C14AED9B178D24B, B4FB936B31B1265B8CC6B426C64965C34D0CCF1638E645ACD65E88F4AFFC57A6 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
21:00:54.0608 0x0098  amdsata - ok
21:00:54.0623 0x0098  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
21:00:54.0639 0x0098  amdsbs - ok
21:00:54.0655 0x0098  [ 1142A21DB581A84EA5597B03A26EBAA0, F94EB140D0CD068760D7EB081FF75154C75DAC75E5E24B6DE4E4F9CE65A70343 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
21:00:54.0670 0x0098  amdxata - ok
21:00:54.0670 0x0098  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
21:00:54.0733 0x0098  AppID - ok
21:00:54.0795 0x0098  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
21:00:54.0873 0x0098  AppIDSvc - ok
21:00:54.0889 0x0098  [ 3977D4A871CA0D4F2ED1E7DB46829731, 2AF1C3225994769C3FD25CD7E9603964B035576F25B0B6D91545566E0722FFAA ] Appinfo         C:\Windows\System32\appinfo.dll
21:00:54.0935 0x0098  Appinfo - ok
21:00:54.0967 0x0098  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
21:00:54.0998 0x0098  AppMgmt - ok
21:00:54.0998 0x0098  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
21:00:55.0013 0x0098  arc - ok
21:00:55.0045 0x0098  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
21:00:55.0060 0x0098  arcsas - ok
21:00:55.0060 0x0098  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
21:00:55.0107 0x0098  AsyncMac - ok
21:00:55.0123 0x0098  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
21:00:55.0138 0x0098  atapi - ok
21:00:55.0341 0x0098  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:00:55.0403 0x0098  AudioEndpointBuilder - ok
21:00:55.0419 0x0098  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
21:00:55.0466 0x0098  AudioSrv - ok
21:00:55.0497 0x0098  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
21:00:55.0544 0x0098  AxInstSV - ok
21:00:55.0575 0x0098  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
21:00:55.0606 0x0098  b06bdrv - ok
21:00:55.0637 0x0098  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
21:00:55.0669 0x0098  b57nd60a - ok
21:00:55.0700 0x0098  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
21:00:55.0747 0x0098  BDESVC - ok
21:00:55.0747 0x0098  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
21:00:55.0793 0x0098  Beep - ok
21:00:55.0825 0x0098  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
21:00:55.0887 0x0098  BFE - ok
21:00:55.0934 0x0098  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll
21:00:56.0043 0x0098  BITS - ok
21:00:56.0059 0x0098  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
21:00:56.0074 0x0098  blbdrive - ok
21:00:56.0074 0x0098  [ 91CE0D3DC57DD377E690A2D324022B08, 61874463956C0BCA5139522F34E974E5F638A092E0FD5C59DD30DE61D9AB8B0E ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
21:00:56.0121 0x0098  bowser - ok
21:00:56.0137 0x0098  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
21:00:56.0168 0x0098  BrFiltLo - ok
21:00:56.0168 0x0098  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
21:00:56.0183 0x0098  BrFiltUp - ok
21:00:56.0199 0x0098  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
21:00:56.0246 0x0098  BridgeMP - ok
21:00:56.0261 0x0098  [ 8EF0D5C41EC907751B8429162B1239ED, 9CC25F1F93FACA6F6CE23F78EB58590C39A2E3C8A3ACDF400E8A9DE0757EADAE ] Browser         C:\Windows\System32\browser.dll
21:00:56.0308 0x0098  Browser - ok
21:00:56.0324 0x0098  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
21:00:56.0371 0x0098  Brserid - ok
21:00:56.0402 0x0098  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
21:00:56.0417 0x0098  BrSerWdm - ok
21:00:56.0417 0x0098  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
21:00:56.0449 0x0098  BrUsbMdm - ok
21:00:56.0449 0x0098  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
21:00:56.0480 0x0098  BrUsbSer - ok
21:00:56.0495 0x0098  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
21:00:56.0527 0x0098  BTHMODEM - ok
21:00:56.0542 0x0098  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
21:00:56.0589 0x0098  bthserv - ok
21:00:56.0605 0x0098  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
21:00:56.0683 0x0098  cdfs - ok
21:00:56.0683 0x0098  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
21:00:56.0714 0x0098  cdrom - ok
21:00:56.0729 0x0098  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
21:00:56.0792 0x0098  CertPropSvc - ok
21:00:56.0807 0x0098  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
21:00:56.0854 0x0098  circlass - ok
21:00:56.0885 0x0098  [ B794DCF38C965FA2F93C45A7C3D582C5, 0E483EAF835B85AA4B6F449F9BB68AF0A3EE4192D29CD72F4B812F1E4D9E9A7C ] cleanhlp        C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys
21:00:56.0901 0x0098  cleanhlp - ok
21:00:56.0932 0x0098  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
21:00:56.0948 0x0098  CLFS - ok
21:00:57.0088 0x0098  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:00:57.0104 0x0098  clr_optimization_v2.0.50727_32 - ok
21:00:57.0260 0x0098  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:00:57.0291 0x0098  clr_optimization_v2.0.50727_64 - ok
21:00:57.0322 0x0098  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
21:00:57.0338 0x0098  CmBatt - ok
21:00:57.0353 0x0098  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
21:00:57.0369 0x0098  cmdide - ok
21:00:57.0416 0x0098  [ D5FEA92400F12412B3922087C09DA6A5, C8CD9215D26D3295FE487C96A4FC3F4C8AFED764AE9445D9858D7489823A8A2B ] CNG             C:\Windows\system32\Drivers\cng.sys
21:00:57.0447 0x0098  CNG - ok
21:00:57.0447 0x0098  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
21:00:57.0463 0x0098  Compbatt - ok
21:00:57.0478 0x0098  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
21:00:57.0509 0x0098  CompositeBus - ok
21:00:57.0509 0x0098  COMSysApp - ok
21:00:57.0525 0x0098  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
21:00:57.0541 0x0098  crcdisk - ok
21:00:57.0556 0x0098  [ 15597883FBE9B056F276ADA3AD87D9AF, B347E0B11228E38313C59C8ED984253A8A1FF482ED137CF5F488C4AFD6B08857 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
21:00:57.0603 0x0098  CryptSvc - ok
21:00:57.0634 0x0098  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
21:00:57.0681 0x0098  CSC - ok
21:00:57.0775 0x0098  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
21:00:57.0837 0x0098  CscService - ok
21:00:57.0884 0x0098  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
21:00:57.0931 0x0098  DcomLaunch - ok
21:00:57.0962 0x0098  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
21:00:58.0009 0x0098  defragsvc - ok
21:00:58.0024 0x0098  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
21:00:58.0071 0x0098  DfsC - ok
21:00:58.0087 0x0098  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
21:00:58.0133 0x0098  Dhcp - ok
21:00:58.0149 0x0098  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
21:00:58.0196 0x0098  discache - ok
21:00:58.0196 0x0098  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
21:00:58.0211 0x0098  Disk - ok
21:00:58.0243 0x0098  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
21:00:58.0274 0x0098  dmvsc - ok
21:00:58.0305 0x0098  [ CD55F5355D8F55D44C9F4ED875705BD6, 321C26E3CD9F376D30F05FBDF00E96399512ED705D867E8B14793D9CE69A1C1F ] Dnscache        C:\Windows\System32\dnsrslvr.dll
21:00:58.0352 0x0098  Dnscache - ok
21:00:58.0367 0x0098  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
21:00:58.0414 0x0098  dot3svc - ok
21:00:58.0430 0x0098  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
21:00:58.0477 0x0098  DPS - ok
21:00:58.0492 0x0098  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
21:00:58.0523 0x0098  drmkaud - ok
21:00:58.0570 0x0098  [ F5BEE30450E18E6B83A5012C100616FD, 44D0577D159FC2BDF4EAD1DC2C7FD14925D075225EF97608CAC52DEE405B08FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
21:00:58.0601 0x0098  DXGKrnl - ok
21:00:58.0633 0x0098  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
21:00:58.0679 0x0098  EapHost - ok
21:00:58.0804 0x0098  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
21:00:59.0007 0x0098  ebdrv - ok
21:00:59.0038 0x0098  [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] EFS             C:\Windows\System32\lsass.exe
21:00:59.0069 0x0098  EFS - ok
21:00:59.0194 0x0098  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
21:00:59.0241 0x0098  ehRecvr - ok
21:00:59.0272 0x0098  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
21:00:59.0303 0x0098  ehSched - ok
21:00:59.0350 0x0098  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
21:00:59.0381 0x0098  elxstor - ok
21:00:59.0381 0x0098  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
21:00:59.0428 0x0098  ErrDev - ok
21:00:59.0475 0x0098  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
21:00:59.0537 0x0098  EventSystem - ok
21:00:59.0584 0x0098  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
21:00:59.0647 0x0098  exfat - ok
21:00:59.0647 0x0098  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
21:00:59.0709 0x0098  fastfat - ok
21:00:59.0756 0x0098  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
21:00:59.0787 0x0098  Fax - ok
21:00:59.0818 0x0098  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
21:00:59.0834 0x0098  fdc - ok
21:00:59.0865 0x0098  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
21:00:59.0927 0x0098  fdPHost - ok
21:00:59.0927 0x0098  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
21:00:59.0974 0x0098  FDResPub - ok
21:00:59.0990 0x0098  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
21:01:00.0005 0x0098  FileInfo - ok
21:01:00.0005 0x0098  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
21:01:00.0052 0x0098  Filetrace - ok
21:01:00.0068 0x0098  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
21:01:00.0083 0x0098  flpydisk - ok
21:01:00.0099 0x0098  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
21:01:00.0115 0x0098  FltMgr - ok
21:01:00.0177 0x0098  [ B4447F606BB19FD8AD0BAFB59B90F5D9, 043E686029DE2710305852E3A416176E400F9FD5FB98E4F2A6F14C060FAABED5 ] FontCache       C:\Windows\system32\FntCache.dll
21:01:00.0239 0x0098  FontCache - ok
21:01:00.0286 0x0098  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:01:00.0317 0x0098  FontCache3.0.0.0 - ok
21:01:00.0333 0x0098  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
21:01:00.0349 0x0098  FsDepends - ok
21:01:00.0364 0x0098  [ E95EF8547DE20CF0603557C0CF7A9462, 55540B06B7B380CA2DA6EEE2D76C6CD6131ADB02B2D0B172A36536863A0C57B6 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
21:01:00.0380 0x0098  Fs_Rec - ok
21:01:00.0395 0x0098  [ 1F7B25B858FA27015169FE95E54108ED, 72DD12E924AA7273B3E4BDD2A2C581DECE304C8EF3D44EA79ABB032F3F95DCE5 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
21:01:00.0411 0x0098  fvevol - ok
21:01:00.0427 0x0098  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
21:01:00.0458 0x0098  gagp30kx - ok
21:01:01.0643 0x0098  [ 9A9B2E57B2FF59AE76652DA8723640D0, 8D7458CC85EA9B9008B3F98F14C62A33035840D85058664B55928CB3464903FC ] GlassWire       C:\Program Files (x86)\GlassWire\GWCtlSrv.exe
21:01:01.0799 0x0098  GlassWire - ok
21:01:01.0909 0x0098  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
21:01:02.0002 0x0098  gpsvc - ok
21:01:02.0127 0x0098  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:01:02.0158 0x0098  gupdate - ok
21:01:02.0205 0x0098  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:01:02.0221 0x0098  gupdatem - ok
21:01:02.0236 0x0098  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
21:01:02.0252 0x0098  gusvc - ok
21:01:02.0314 0x0098  [ 2B0E73BABE1B2B01F477734E3B5CF8A7, A067BF8B9170BF7360FAEC1D4689BF9E998BF0ED6B1C0708C32878442C8AEC2A ] gwdrv           C:\Windows\system32\DRIVERS\gwdrv.sys
21:01:02.0330 0x0098  gwdrv - ok
21:01:02.0377 0x0098  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
21:01:02.0408 0x0098  hcw85cir - ok
21:01:02.0455 0x0098  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:01:02.0548 0x0098  HdAudAddService - ok
21:01:02.0564 0x0098  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
21:01:02.0611 0x0098  HDAudBus - ok
21:01:02.0626 0x0098  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
21:01:02.0642 0x0098  HidBatt - ok
21:01:02.0673 0x0098  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
21:01:02.0985 0x0098  HidBth - ok
21:01:03.0032 0x0098  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
21:01:03.0047 0x0098  HidIr - ok
21:01:03.0079 0x0098  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
21:01:03.0188 0x0098  hidserv - ok
21:01:03.0250 0x0098  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
21:01:03.0328 0x0098  HidUsb - ok
21:01:03.0344 0x0098  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
21:01:03.0515 0x0098  hkmsvc - ok
21:01:03.0859 0x0098  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:01:03.0921 0x0098  HomeGroupListener - ok
21:01:03.0952 0x0098  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:01:04.0061 0x0098  HomeGroupProvider - ok
21:01:04.0077 0x0098  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
21:01:04.0093 0x0098  HpSAMD - ok
21:01:04.0124 0x0098  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
21:01:04.0295 0x0098  HTTP - ok
21:01:04.0327 0x0098  [ 4DBBFCE863FE1B64C770EB53A3BA5860, DA77FB5D865779834CDCEE74200B9346FA3A4D0465F7A49C877ED6F786232CEF ] huawei_cdcacm   C:\Windows\system32\DRIVERS\ew_jucdcacm.sys
21:01:04.0545 0x0098  huawei_cdcacm - ok
21:01:04.0576 0x0098  [ 1642C62F1FD5E1FF44608283994A7BB8, 4646AA0EF74A2AEE6C17D12206FCFE1E84D6FA712AD95A171F16D11BC9D3F11A ] huawei_enumerator C:\Windows\system32\DRIVERS\ew_jubusenum.sys
21:01:04.0701 0x0098  huawei_enumerator - ok
21:01:05.0169 0x0098  [ E90DA42B87D684DEBFB73B38A718A006, BB18C63C1982F5CB99C9B65D2B801E8C1909AD7CD0171326DC0015D6B781B451 ] HWDeviceService64.exe C:\ProgramData\DatacardService\HWDeviceService64.exe
21:01:05.0185 0x0098  HWDeviceService64.exe - ok
21:01:05.0231 0x0098  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
21:01:05.0247 0x0098  hwpolicy - ok
21:01:05.0278 0x0098  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
21:01:05.0325 0x0098  i8042prt - ok
21:01:05.0356 0x0098  [ 3DF4395A7CF8B7A72A5F4606366B8C2D, 483588B8FC6E05488ED631C4E1CFC398553FEBFA2CD2BB527B4DF12D19774F80 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
21:01:05.0387 0x0098  iaStorV - ok
21:01:05.0512 0x0098  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:01:05.0543 0x0098  idsvc - ok
21:01:05.0575 0x0098  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
21:01:05.0590 0x0098  iirsp - ok
21:01:05.0855 0x0098  [ FCD84C381E0140AF901E58D48882D26B, 76955FFC230C801E8ED890E32076075F04CD6E5EC79E594FDE6D23797A36B406 ] IKEEXT          C:\Windows\System32\ikeext.dll
21:01:05.0933 0x0098  IKEEXT - ok
21:01:05.0980 0x0098  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
21:01:05.0996 0x0098  intelide - ok
21:01:05.0996 0x0098  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
21:01:06.0043 0x0098  intelppm - ok
21:01:06.0074 0x0098  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
21:01:06.0136 0x0098  IPBusEnum - ok
21:01:06.0152 0x0098  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:01:06.0183 0x0098  IpFilterDriver - ok
21:01:06.0230 0x0098  [ A34A587FFFD45FA649FBA6D03784D257, C9A2BCD4E2A5EB6E320092A3AFD5737ECDCDA0B83EE42314A23C4978F2974767 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
21:01:06.0323 0x0098  iphlpsvc - ok
21:01:06.0386 0x0098  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
21:01:06.0417 0x0098  IPMIDRV - ok
21:01:06.0448 0x0098  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
21:01:06.0511 0x0098  IPNAT - ok
21:01:06.0823 0x0098  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
21:01:06.0854 0x0098  IRENUM - ok
21:01:06.0901 0x0098  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
21:01:06.0916 0x0098  isapnp - ok
21:01:06.0947 0x0098  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
21:01:06.0963 0x0098  iScsiPrt - ok
21:01:06.0994 0x0098  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
21:01:07.0010 0x0098  kbdclass - ok
21:01:07.0072 0x0098  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
21:01:07.0103 0x0098  kbdhid - ok
21:01:07.0119 0x0098  [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] KeyIso          C:\Windows\system32\lsass.exe
21:01:07.0150 0x0098  KeyIso - ok
21:01:07.0400 0x0098  [ CCD53B5BD33CE0C889E830D839C8B66E, 51B7556DA7DAA0BC75E00E53099776016A55FAA115D5A4E6830E12A0A0869C10 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
21:01:07.0415 0x0098  KSecDD - ok
21:01:07.0447 0x0098  [ 9FF918A261752C12639E8AD4208D2C2F, B60F7A730C92F2BF7E85A6CA14DD7671AEECEE154CEC83B1E23EF268C25C9E5E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
21:01:07.0462 0x0098  KSecPkg - ok
21:01:07.0540 0x0098  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
21:01:07.0634 0x0098  ksthunk - ok
21:01:07.0665 0x0098  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
21:01:07.0759 0x0098  KtmRm - ok
21:01:07.0805 0x0098  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
21:01:07.0868 0x0098  LanmanServer - ok
21:01:07.0899 0x0098  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:01:07.0961 0x0098  LanmanWorkstation - ok
21:01:07.0993 0x0098  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
21:01:08.0039 0x0098  lltdio - ok
21:01:08.0071 0x0098  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
21:01:08.0133 0x0098  lltdsvc - ok
21:01:08.0149 0x0098  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
21:01:08.0227 0x0098  lmhosts - ok
21:01:08.0227 0x0098  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys


#10 Xblee

Xblee
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  

Posted 13 November 2014 - 04:31 PM

21:01:08.0258 0x0098  LSI_FC - ok
21:01:08.0258 0x0098  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
21:01:08.0273 0x0098  LSI_SAS - ok
21:01:08.0289 0x0098  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
21:01:08.0320 0x0098  LSI_SAS2 - ok
21:01:08.0351 0x0098  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
21:01:08.0383 0x0098  LSI_SCSI - ok
21:01:08.0429 0x0098  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
21:01:08.0492 0x0098  luafv - ok
21:01:08.0507 0x0098  [ 5C3669B71657F22E67A1D4BD49D2CBE7, 7CAE59AA6CA9CBBD70BBD707A155FB169BF3F71096275BF7C0F415B6A092C671 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
21:01:08.0523 0x0098  MBAMProtector - ok
21:01:08.0773 0x0098  [ 6D8A2EE4244630B290A837E79C0F37A1, 6783BBC0BDC93E4D6D43531A1AD0DF5CD26C3BBFA6384927C5CF65AD97FB04AD ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
21:01:08.0866 0x0098  MBAMScheduler - ok
21:01:09.0022 0x0098  [ 09D4503CBB6ADB3A54E7C7A75090B728, 6139EA3338FD64205481EDEC813A44F8D395FDA7B67AA431DA61F3631C3EDAE6 ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
21:01:09.0053 0x0098  MBAMService - ok
21:01:09.0085 0x0098  [ 26C43960C99EE861A5D0EDC4DCF3B1C3, 6238FB8E785652040CCE3E7044EA52066CE1BF173A1467474D64A3AB214B6BCD ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
21:01:09.0116 0x0098  MBAMSwissArmy - ok
21:01:09.0131 0x0098  [ 95EF63A7827D4E3A229CBBCB42619E93, FA38DD035B2C4FC82B60868F49D45A39FBBC96096AAD5A2C8BD752A250255BA7 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
21:01:09.0147 0x0098  MBAMWebAccessControl - ok
21:01:09.0178 0x0098  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
21:01:09.0209 0x0098  Mcx2Svc - ok
21:01:09.0256 0x0098  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
21:01:09.0272 0x0098  megasas - ok
21:01:09.0287 0x0098  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
21:01:09.0303 0x0098  MegaSR - ok
21:01:09.0365 0x0098  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
21:01:09.0428 0x0098  MMCSS - ok
21:01:09.0459 0x0098  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
21:01:09.0631 0x0098  Modem - ok
21:01:09.0693 0x0098  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
21:01:09.0755 0x0098  monitor - ok
21:01:09.0833 0x0098  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
21:01:09.0849 0x0098  mouclass - ok
21:01:09.0865 0x0098  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\drivers\mouhid.sys
21:01:09.0896 0x0098  mouhid - ok
21:01:09.0911 0x0098  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
21:01:09.0927 0x0098  mountmgr - ok
21:01:09.0958 0x0098  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
21:01:09.0974 0x0098  mpio - ok
21:01:10.0083 0x0098  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
21:01:10.0130 0x0098  mpsdrv - ok
21:01:10.0660 0x0098  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
21:01:11.0206 0x0098  MpsSvc - ok
21:01:11.0253 0x0098  [ DC722758B8261E1ABAFD31A3C0A66380, 88BBE073E2CCD1DAB4656DDC53D5161E8A91D035ADAC1465D0CEBA86F1BB6D9A ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
21:01:11.0315 0x0098  MRxDAV - ok
21:01:11.0362 0x0098  [ FAF015B07E3A2874A790A39B7D2C579F, C614B0E80B38EBF7C670EEB833F5E476B33042097DA07206D6C5EE3E52B9A427 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
21:01:11.0409 0x0098  mrxsmb - ok
21:01:11.0440 0x0098  [ 08E2345DF129082BCDFFDC1440F9C00D, 2ADF69F49DF8C43D4440B6C8A62085C51518CA895A88D37264C60A0B4B1EC55F ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:01:11.0518 0x0098  mrxsmb10 - ok
21:01:11.0518 0x0098  [ 108D87409C5812EF47D81E22843E8C9D, CAE9B91B6BD1DF1552463BD63A06288F5D3E0B81B040BC1C7EC0C2A0119CCECA ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:01:11.0581 0x0098  mrxsmb20 - ok
21:01:11.0627 0x0098  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
21:01:11.0643 0x0098  msahci - ok
21:01:11.0659 0x0098  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
21:01:11.0674 0x0098  msdsm - ok
21:01:11.0690 0x0098  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
21:01:11.0752 0x0098  MSDTC - ok
21:01:11.0783 0x0098  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
21:01:11.0846 0x0098  Msfs - ok
21:01:11.0877 0x0098  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
21:01:11.0924 0x0098  mshidkmdf - ok
21:01:11.0955 0x0098  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
21:01:11.0971 0x0098  msisadrv - ok
21:01:12.0017 0x0098  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
21:01:12.0080 0x0098  MSiSCSI - ok
21:01:12.0095 0x0098  msiserver - ok
21:01:12.0127 0x0098  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
21:01:12.0220 0x0098  MSKSSRV - ok
21:01:12.0236 0x0098  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
21:01:12.0283 0x0098  MSPCLOCK - ok
21:01:12.0314 0x0098  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
21:01:12.0361 0x0098  MSPQM - ok
21:01:12.0407 0x0098  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
21:01:12.0423 0x0098  MsRPC - ok
21:01:12.0454 0x0098  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
21:01:12.0470 0x0098  mssmbios - ok
21:01:12.0470 0x0098  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
21:01:12.0532 0x0098  MSTEE - ok
21:01:12.0563 0x0098  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
21:01:12.0595 0x0098  MTConfig - ok
21:01:12.0610 0x0098  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
21:01:12.0610 0x0098  Mup - ok
21:01:12.0673 0x0098  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
21:01:12.0735 0x0098  napagent - ok
21:01:12.0782 0x0098  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
21:01:12.0844 0x0098  NativeWifiP - ok
21:01:13.0078 0x0098  [ 79B47FD40D9A817E932F9D26FAC0A81C, 53E260B8BFC50BA45FA73BFCF4E58C233890D0EAA9DEFDCCBB55FD3EB992FF2D ] NDIS            C:\Windows\system32\drivers\ndis.sys
21:01:13.0219 0x0098  NDIS - ok
21:01:13.0312 0x0098  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
21:01:13.0531 0x0098  NdisCap - ok
21:01:13.0562 0x0098  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
21:01:13.0593 0x0098  NdisTapi - ok
21:01:13.0687 0x0098  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
21:01:13.0765 0x0098  Ndisuio - ok
21:01:13.0843 0x0098  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
21:01:13.0889 0x0098  NdisWan - ok
21:01:13.0967 0x0098  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
21:01:14.0014 0x0098  NDProxy - ok
21:01:14.0061 0x0098  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
21:01:14.0155 0x0098  NetBIOS - ok
21:01:14.0264 0x0098  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
21:01:14.0389 0x0098  NetBT - ok
21:01:14.0467 0x0098  [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] Netlogon        C:\Windows\system32\lsass.exe
21:01:14.0482 0x0098  Netlogon - ok
21:01:14.0669 0x0098  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
21:01:14.0763 0x0098  Netman - ok
21:01:14.0825 0x0098  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
21:01:14.0935 0x0098  netprofm - ok
21:01:14.0966 0x0098  [ 3E5A36127E201DDF663176B66828FAFE, 5A08BA9EFB1A72DF1DD839BA5FA2B8994012BA62A515588FF62333B33B60045B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
21:01:14.0981 0x0098  NetTcpPortSharing - ok
21:01:18.0412 0x0098  [ 64428DFDAF6E88366CB51F45A79C5F69, 31187D38C1AB52120A3CB7AC3CE47ED9682AC37B0F06B9A9610C0065DD4E7B13 ] netw5v64        C:\Windows\system32\DRIVERS\netw5v64.sys
21:01:18.0635 0x0098  netw5v64 - ok
21:01:18.0788 0x0098  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
21:01:18.0802 0x0098  nfrd960 - ok
21:01:19.0000 0x0098  [ 1EE99A89CC788ADA662441D1E9830529, 6B4FDD74BB81E12BD4B25A3E8AECB0FA77FA0075D454DD1D6DC1790ADF1F2AA8 ] NlaSvc          C:\Windows\System32\nlasvc.dll
21:01:19.0214 0x0098  NlaSvc - ok
21:01:19.0302 0x0098  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
21:01:19.0372 0x0098  Npfs - ok
21:01:19.0609 0x0098  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
21:01:19.0729 0x0098  nsi - ok
21:01:19.0802 0x0098  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
21:01:19.0891 0x0098  nsiproxy - ok
21:01:20.0027 0x0098  [ 05D78AA5CB5F3F5C31160BDB955D0B7C, E3CD3FAF52ED11A8FB96D667510F1EDCA49053705AA3A13F560F8F6EC995CA45 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
21:01:20.0077 0x0098  Ntfs - ok
21:01:20.0250 0x0098  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
21:01:20.0305 0x0098  Null - ok
21:01:20.0389 0x0098  [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48, 7738785DE8B50D69993F4408498B812D0283FEE5C04FF5B89C20F149B44E9737 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
21:01:20.0406 0x0098  nvraid - ok
21:01:20.0485 0x0098  [ F7CD50FE7139F07E77DA8AC8033D1832, DA96F4B15C8165E6AE1D00E03A062C66CA3A3089E4FF0E9E11CE00B154DD12EC ] nvstor          C:\Windows\system32\drivers\nvstor.sys
21:01:20.0501 0x0098  nvstor - ok
21:01:20.0544 0x0098  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
21:01:20.0646 0x0098  nv_agp - ok
21:01:20.0716 0x0098  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
21:01:20.0834 0x0098  ohci1394 - ok
21:01:20.0969 0x0098  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
21:01:21.0060 0x0098  p2pimsvc - ok
21:01:21.0170 0x0098  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
21:01:21.0230 0x0098  p2psvc - ok
21:01:21.0322 0x0098  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
21:01:21.0341 0x0098  Parport - ok
21:01:21.0424 0x0098  [ 871EADAC56B0A4C6512BBE32753CCF79, F9FD9DBA55274BB72B897550988DCDFD0F2D9367BE641DFDE07D240052DDC180 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
21:01:21.0570 0x0098  partmgr - ok
21:01:21.0728 0x0098  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
21:01:21.0814 0x0098  PcaSvc - ok
21:01:21.0877 0x0098  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
21:01:21.0904 0x0098  pci - ok
21:01:22.0108 0x0098  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
21:01:22.0124 0x0098  pciide - ok
21:01:22.0146 0x0098  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
21:01:22.0164 0x0098  pcmcia - ok
21:01:22.0183 0x0098  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
21:01:22.0199 0x0098  pcw - ok
21:01:22.0481 0x0098  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
21:01:22.0632 0x0098  PEAUTH - ok
21:01:22.0712 0x0098  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
21:01:22.0895 0x0098  PeerDistSvc - ok
21:01:24.0103 0x0098  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
21:01:24.0139 0x0098  PerfHost - ok
21:01:24.0583 0x0098  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
21:01:24.0666 0x0098  pla - ok
21:01:24.0736 0x0098  [ B806E50427511BCF4AD8E8239C3E25FA, AB89B48ECCF90F701B314D18BE531CDA5ABE1636C17B994A5E4BE5AAC136B4E3 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
21:01:24.0851 0x0098  PlugPlay - ok
21:01:24.0892 0x0098  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
21:01:24.0926 0x0098  PNRPAutoReg - ok
21:01:24.0955 0x0098  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
21:01:24.0982 0x0098  PNRPsvc - ok
21:01:25.0048 0x0098  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
21:01:25.0134 0x0098  PolicyAgent - ok
21:01:25.0270 0x0098  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
21:01:25.0411 0x0098  Power - ok
21:01:25.0444 0x0098  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
21:01:25.0486 0x0098  PptpMiniport - ok
21:01:25.0517 0x0098  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
21:01:25.0552 0x0098  Processor - ok
21:01:25.0679 0x0098  [ 5C78838B4D166D1A27DB3A8A820C799A, BBF7E1D0B6754CF06BF3936671FDF5BF6E845CA5678D0940EA54E9212B539B7F ] ProfSvc         C:\Windows\system32\profsvc.dll
21:01:25.0739 0x0098  ProfSvc - ok
21:01:25.0764 0x0098  [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] ProtectedStorage C:\Windows\system32\lsass.exe
21:01:25.0788 0x0098  ProtectedStorage - ok
21:01:25.0809 0x0098  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
21:01:25.0864 0x0098  Psched - ok
21:01:25.0952 0x0098  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
21:01:25.0999 0x0098  ql2300 - ok
21:01:26.0030 0x0098  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
21:01:26.0061 0x0098  ql40xx - ok
21:01:26.0126 0x0098  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
21:01:26.0164 0x0098  QWAVE - ok
21:01:26.0189 0x0098  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
21:01:26.0228 0x0098  QWAVEdrv - ok
21:01:26.0238 0x0098  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
21:01:26.0283 0x0098  RasAcd - ok
21:01:26.0321 0x0098  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
21:01:26.0361 0x0098  RasAgileVpn - ok
21:01:26.0407 0x0098  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
21:01:26.0473 0x0098  RasAuto - ok
21:01:26.0893 0x0098  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
21:01:26.0999 0x0098  Rasl2tp - ok
21:01:27.0049 0x0098  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
21:01:27.0126 0x0098  RasMan - ok
21:01:27.0175 0x0098  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
21:01:27.0244 0x0098  RasPppoe - ok
21:01:27.0259 0x0098  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
21:01:27.0316 0x0098  RasSstp - ok
21:01:27.0370 0x0098  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
21:01:27.0460 0x0098  rdbss - ok
21:01:27.0487 0x0098  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
21:01:27.0527 0x0098  rdpbus - ok
21:01:27.0654 0x0098  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
21:01:27.0699 0x0098  RDPCDD - ok
21:01:27.0856 0x0098  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
21:01:27.0897 0x0098  RDPDR - ok
21:01:27.0943 0x0098  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
21:01:28.0008 0x0098  RDPENCDD - ok
21:01:28.0081 0x0098  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
21:01:28.0180 0x0098  RDPREFMP - ok
21:01:28.0224 0x0098  [ 15B66C206B5CB095BAB980553F38ED23, 3CA50786A8D3D6BAF145AFD22C1ED92C2EB39F5D6AF4F6B09B69610FDE0C5B24 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
21:01:28.0275 0x0098  RDPWD - ok
21:01:28.0301 0x0098  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
21:01:28.0320 0x0098  rdyboost - ok
21:01:28.0356 0x0098  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
21:01:28.0454 0x0098  RemoteAccess - ok
21:01:28.0597 0x0098  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
21:01:28.0675 0x0098  RemoteRegistry - ok
21:01:28.0697 0x0098  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
21:01:28.0862 0x0098  RpcEptMapper - ok
21:01:28.0916 0x0098  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
21:01:28.0990 0x0098  RpcLocator - ok
21:01:29.0117 0x0098  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
21:01:29.0337 0x0098  RpcSs - ok
21:01:29.0369 0x0098  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
21:01:29.0408 0x0098  rspndr - ok
21:01:29.0434 0x0098  [ BAEFEE35D27A5440D35092CE10267BEC, FB550D38C01E07B1170C52C1441874B56DD3BECB10CBE8E132EE3276A05C796E ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
21:01:29.0496 0x0098  RTL8167 - ok
21:01:29.0771 0x0098  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
21:01:29.0924 0x0098  s3cap - ok
21:01:29.0971 0x0098  [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] SamSs           C:\Windows\system32\lsass.exe
21:01:30.0037 0x0098  SamSs - ok
21:01:30.0061 0x0098  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
21:01:30.0077 0x0098  sbp2port - ok
21:01:30.0116 0x0098  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
21:01:30.0191 0x0098  SCardSvr - ok
21:01:30.0238 0x0098  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
21:01:30.0294 0x0098  scfilter - ok
21:01:30.0581 0x0098  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
21:01:30.0842 0x0098  Schedule - ok
21:01:30.0909 0x0098  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
21:01:31.0021 0x0098  SCPolicySvc - ok
21:01:31.0287 0x0098  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
21:01:31.0407 0x0098  sdbus - ok
21:01:31.0779 0x0098  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
21:01:31.0921 0x0098  SDRSVC - ok
21:01:32.0109 0x0098  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
21:01:32.0171 0x0098  secdrv - ok
21:01:32.0284 0x0098  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
21:01:32.0527 0x0098  seclogon - ok
21:01:32.0593 0x0098  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
21:01:32.0673 0x0098  SENS - ok
21:01:32.0860 0x0098  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
21:01:32.0945 0x0098  SensrSvc - ok
21:01:32.0969 0x0098  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
21:01:33.0020 0x0098  Serenum - ok
21:01:33.0228 0x0098  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
21:01:33.0411 0x0098  Serial - ok
21:01:33.0448 0x0098  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
21:01:33.0486 0x0098  sermouse - ok
21:01:34.0275 0x0098  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
21:01:34.0392 0x0098  SessionEnv - ok
21:01:34.0522 0x0098  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
21:01:34.0592 0x0098  sffdisk - ok
21:01:34.0606 0x0098  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
21:01:34.0689 0x0098  sffp_mmc - ok
21:01:34.0793 0x0098  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
21:01:34.0886 0x0098  sffp_sd - ok
21:01:34.0901 0x0098  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
21:01:34.0946 0x0098  sfloppy - ok
21:01:34.0990 0x0098  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
21:01:35.0047 0x0098  SharedAccess - ok
21:01:35.0088 0x0098  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:01:35.0175 0x0098  ShellHWDetection - ok
21:01:35.0228 0x0098  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
21:01:35.0243 0x0098  SiSRaid2 - ok
21:01:35.0255 0x0098  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
21:01:35.0271 0x0098  SiSRaid4 - ok
21:01:35.0306 0x0098  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
21:01:35.0372 0x0098  Smb - ok
21:01:35.0443 0x0098  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
21:01:35.0472 0x0098  SNMPTRAP - ok
21:01:35.0512 0x0098  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
21:01:35.0525 0x0098  spldr - ok
21:01:35.0607 0x0098  [ B96C17B5DC1424D56EEA3A99E97428CD, AF0A85066A7983878DC1C663811CE61C6CA1912DC956184F878B7B82DB93C651 ] Spooler         C:\Windows\System32\spoolsv.exe
21:01:35.0658 0x0098  Spooler - ok
21:01:35.0797 0x0098  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
21:01:35.0961 0x0098  sppsvc - ok
21:01:35.0993 0x0098  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
21:01:36.0065 0x0098  sppuinotify - ok
21:01:36.0099 0x0098  [ 2098B8556D1CEC2ACA9A29CD479E3692, D5826407C64F18C16EB36E6F00787CFAFCD9B24B5BD8AD126AD01E6E4134966F ] srv             C:\Windows\system32\DRIVERS\srv.sys
21:01:36.0167 0x0098  srv - ok
21:01:36.0209 0x0098  [ D0F73A42040F21F92FD314B42AC5C9E7, A021C4318C9CFA594305458B2643BB0C22DDE1F3D51C93C9F3E7F7AB75B31278 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
21:01:36.0271 0x0098  srv2 - ok
21:01:36.0306 0x0098  [ 2BA8F3250828CCDB4204ECF2C6F40B6A, 22C4FBF9A87C46E69C48B681FF733D68D9CB7B7D73FB14C8C2A06E9009F9860E ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
21:01:36.0364 0x0098  srvnet - ok
21:01:36.0394 0x0098  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
21:01:36.0452 0x0098  SSDPSRV - ok
21:01:36.0482 0x0098  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
21:01:36.0533 0x0098  SstpSvc - ok
21:01:36.0561 0x0098  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
21:01:36.0583 0x0098  stexstor - ok
21:01:36.0660 0x0098  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
21:01:36.0747 0x0098  stisvc - ok
21:01:36.0858 0x0098  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
21:01:36.0883 0x0098  storflt - ok
21:01:36.0960 0x0098  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
21:01:36.0990 0x0098  StorSvc - ok
21:01:37.0006 0x0098  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
21:01:37.0021 0x0098  storvsc - ok
21:01:37.0053 0x0098  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
21:01:37.0066 0x0098  swenum - ok
21:01:37.0115 0x0098  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
21:01:37.0182 0x0098  swprv - ok
21:01:37.0259 0x0098  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
21:01:37.0377 0x0098  SysMain - ok
21:01:37.0424 0x0098  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:01:37.0469 0x0098  TabletInputService - ok
21:01:37.0489 0x0098  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
21:01:37.0582 0x0098  TapiSrv - ok
21:01:37.0597 0x0098  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
21:01:37.0649 0x0098  TBS - ok
21:01:37.0750 0x0098  [ 509383E505C973ED7534A06B3D19688D, 520AE434CCE1D365A45B2035283A4AD915E98D28D06BD73822F6FF865C2AE7DF ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
21:01:37.0815 0x0098  Tcpip - ok
21:01:37.0943 0x0098  [ 509383E505C973ED7534A06B3D19688D, 520AE434CCE1D365A45B2035283A4AD915E98D28D06BD73822F6FF865C2AE7DF ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
21:01:38.0029 0x0098  TCPIP6 - ok
21:01:38.0065 0x0098  [ DF687E3D8836BFB04FCC0615BF15A519, 7C5B1E72673B4299DFC21E869F0FBB28198CA54DF4F4AF7080005F2D82467784 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
21:01:38.0121 0x0098  tcpipreg - ok
21:01:38.0161 0x0098  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
21:01:38.0278 0x0098  TDPIPE - ok
21:01:38.0312 0x0098  [ E4245BDA3190A582D55ED09E137401A9, F59C983882997D68CC7B1B2080AEE9EBE2AE90D478F877559BD2AAA97158A116 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
21:01:38.0418 0x0098  TDTCP - ok
21:01:38.0444 0x0098  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
21:01:38.0515 0x0098  tdx - ok
21:01:38.0666 0x0098  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
21:01:38.0685 0x0098  TermDD - ok
21:01:38.0820 0x0098  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
21:01:38.0891 0x0098  TermService - ok
21:01:38.0933 0x0098  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
21:01:38.0960 0x0098  Themes - ok
21:01:38.0983 0x0098  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
21:01:39.0114 0x0098  THREADORDER - ok
21:01:39.0147 0x0098  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
21:01:39.0193 0x0098  TrkWks - ok
21:01:39.0304 0x0098  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:01:39.0367 0x0098  TrustedInstaller - ok
21:01:39.0400 0x0098  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30, CA302C2ED6A6BF4670BAAA4F5C14C0238CF0C80316856AA0DB053F4D593033AC ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
21:01:39.0459 0x0098  tssecsrv - ok
21:01:39.0471 0x0098  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
21:01:39.0489 0x0098  TsUsbFlt - ok
21:01:39.0531 0x0098  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
21:01:39.0553 0x0098  TsUsbGD - ok
21:01:39.0580 0x0098  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
21:01:39.0644 0x0098  tunnel - ok
21:01:39.0687 0x0098  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
21:01:39.0707 0x0098  uagp35 - ok
21:01:39.0777 0x0098  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
21:01:39.0840 0x0098  udfs - ok
21:01:39.0897 0x0098  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
21:01:39.0920 0x0098  UI0Detect - ok
21:01:39.0951 0x0098  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
21:01:39.0966 0x0098  uliagpkx - ok
21:01:39.0978 0x0098  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
21:01:39.0999 0x0098  umbus - ok
21:01:40.0012 0x0098  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
21:01:40.0041 0x0098  UmPass - ok
21:01:40.0084 0x0098  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
21:01:40.0128 0x0098  UmRdpService - ok
21:01:40.0179 0x0098  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
21:01:40.0244 0x0098  upnphost - ok
21:01:40.0279 0x0098  [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829, 5D6E404FE0AB875202CA1A3E8E9D2F4368DF6ACCFA1C872ECFAF8399CBA3A485 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
21:01:40.0300 0x0098  usbccgp - ok
21:01:40.0314 0x0098  [ AF0892A803FDDA7492F595368E3B68E7, F263346DEB4D742EB436CF578F187AC8521D84CED52E98475E6198EC52244F07 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
21:01:40.0336 0x0098  usbcir - ok
21:01:40.0347 0x0098  [ 74EE782B1D9C241EFE425565854C661C, E8258EA65B0FCAD4E077B176E9D9324646B652D6E651241E397346A39770D065 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
21:01:40.0375 0x0098  usbehci - ok
21:01:40.0402 0x0098  [ DC96BD9CCB8403251BCF25047573558E, 66EBF8A6B3BC0634F32DDCC8BA31F1EB5987E8C6853E1DC26005E3EED0945565 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
21:01:40.0439 0x0098  usbhub - ok
21:01:40.0450 0x0098  [ 58E546BBAF87664FC57E0F6081E4F609, 1DD99D57369A0069654432AB5325AFD8F7D422D531E053EA05FF664BA6BDAEF9 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
21:01:40.0469 0x0098  usbohci - ok
21:01:40.0483 0x0098  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
21:01:40.0503 0x0098  usbprint - ok
21:01:40.0517 0x0098  [ D76510CFA0FC09023077F22C2F979D86, 5662281C6D515423255D3C262EA368DBAFC250235E535FBFA3E59D3487695439 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:01:40.0540 0x0098  USBSTOR - ok
21:01:40.0555 0x0098  [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
21:01:40.0583 0x0098  usbuhci - ok
21:01:40.0612 0x0098  [ 454800C2BC7F3927CE030141EE4F4C50, 10901E62DAA70657C499AD590DECCCA6E46FDDF4A193B2F19279E1B8ED7B1E44 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
21:01:40.0648 0x0098  usbvideo - ok
21:01:40.0681 0x0098  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
21:01:40.0731 0x0098  UxSms - ok
21:01:40.0755 0x0098  [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] VaultSvc        C:\Windows\system32\lsass.exe
21:01:40.0773 0x0098  VaultSvc - ok
21:01:40.0800 0x0098  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
21:01:40.0814 0x0098  vdrvroot - ok
21:01:40.0849 0x0098  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
21:01:40.0908 0x0098  vds - ok
21:01:40.0932 0x0098  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
21:01:40.0956 0x0098  vga - ok
21:01:40.0970 0x0098  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
21:01:41.0040 0x0098  VgaSave - ok
21:01:41.0055 0x0098  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
21:01:41.0072 0x0098  vhdmp - ok
21:01:41.0095 0x0098  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
21:01:41.0129 0x0098  viaide - ok
21:01:41.0166 0x0098  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
21:01:41.0185 0x0098  vmbus - ok
21:01:41.0209 0x0098  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
21:01:41.0253 0x0098  VMBusHID - ok
21:01:41.0278 0x0098  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
21:01:41.0292 0x0098  volmgr - ok
21:01:41.0327 0x0098  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
21:01:41.0348 0x0098  volmgrx - ok
21:01:41.0390 0x0098  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
21:01:41.0409 0x0098  volsnap - ok
21:01:41.0426 0x0098  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
21:01:41.0443 0x0098  vsmraid - ok
21:01:41.0535 0x0098  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
21:01:41.0633 0x0098  VSS - ok
21:01:41.0667 0x0098  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
21:01:41.0717 0x0098  vwifibus - ok
21:01:41.0803 0x0098  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
21:01:41.0858 0x0098  W32Time - ok
21:01:41.0888 0x0098  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
21:01:41.0905 0x0098  WacomPen - ok
21:01:41.0920 0x0098  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
21:01:41.0963 0x0098  WANARP - ok
21:01:41.0973 0x0098  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
21:01:42.0011 0x0098  Wanarpv6 - ok
21:01:42.0076 0x0098  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
21:01:42.0141 0x0098  wbengine - ok
21:01:42.0170 0x0098  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
21:01:42.0197 0x0098  WbioSrvc - ok
21:01:42.0226 0x0098  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
21:01:42.0267 0x0098  wcncsvc - ok
21:01:42.0279 0x0098  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:01:42.0297 0x0098  WcsPlugInService - ok
21:01:42.0318 0x0098  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
21:01:42.0334 0x0098  Wd - ok
21:01:42.0362 0x0098  [ 441BD2D7B4F98134C3A4F9FA570FD250, FF20815273014C5A27C2B75E2C70FE674809293627056199F502DFDF4CECFCA1 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
21:01:42.0389 0x0098  Wdf01000 - ok
21:01:42.0414 0x0098  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
21:01:42.0454 0x0098  WdiServiceHost - ok
21:01:42.0465 0x0098  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
21:01:42.0490 0x0098  WdiSystemHost - ok
21:01:42.0527 0x0098  [ 3DB6D04E1C64272F8B14EB8BC4616280, 9138642B1C19F895D4ECFD930160C80FBF15813CE63BBF4C899842C300FD3026 ] WebClient       C:\Windows\System32\webclnt.dll
21:01:42.0569 0x0098  WebClient - ok
21:01:42.0592 0x0098  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
21:01:42.0647 0x0098  Wecsvc - ok
21:01:42.0668 0x0098  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
21:01:42.0707 0x0098  wercplsupport - ok
21:01:42.0733 0x0098  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
21:01:42.0773 0x0098  WerSvc - ok
21:01:42.0795 0x0098  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
21:01:42.0833 0x0098  WfpLwf - ok
21:01:42.0851 0x0098  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
21:01:42.0864 0x0098  WIMMount - ok
21:01:42.0888 0x0098  WinDefend - ok
21:01:42.0905 0x0098  WinHttpAutoProxySvc - ok
21:01:43.0019 0x0098  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
21:01:43.0068 0x0098  Winmgmt - ok
21:01:43.0304 0x0098  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
21:01:43.0394 0x0098  WinRM - ok
21:01:43.0489 0x0098  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
21:01:43.0560 0x0098  Wlansvc - ok
21:01:43.0595 0x0098  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
21:01:43.0614 0x0098  WmiAcpi - ok
21:01:43.0664 0x0098  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
21:01:43.0695 0x0098  wmiApSrv - ok
21:01:43.0748 0x0098  WMPNetworkSvc - ok
21:01:43.0810 0x0098  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
21:01:43.0829 0x0098  WPCSvc - ok
21:01:43.0841 0x0098  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
21:01:43.0862 0x0098  WPDBusEnum - ok
21:01:43.0896 0x0098  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
21:01:43.0941 0x0098  ws2ifsl - ok
21:01:43.0965 0x0098  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
21:01:43.0990 0x0098  wscsvc - ok
21:01:43.0999 0x0098  WSearch - ok
21:01:44.0100 0x0098  [ 9DF12EDBC698B0BC353B3EF84861E430, 5777972DC6242096EE2D4DAEEFC822DE9077560322DED7B9696BB23B7C240403 ] wuauserv        C:\Windows\system32\wuaueng.dll
21:01:44.0209 0x0098  wuauserv - ok
21:01:44.0232 0x0098  [ D3381DC54C34D79B22CEE0D65BA91B7C, 70DC4ADCA4C0C28BB133287511E329D1B6B9B97F96CDE5B1D2F1F59FE1A965D9 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
21:01:44.0271 0x0098  WudfPf - ok
21:01:44.0285 0x0098  [ CF8D590BE3373029D57AF80914190682, FB9641777E90A58C063FBE95F081DC6D2F4770827DE19108A9DC3E3D6B17B4BF ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
21:01:44.0327 0x0098  WUDFRd - ok
21:01:44.0360 0x0098  [ 7A95C95B6C4CF292D689106BCAE49543, 9029F489E1E817CE12839B8C6656E46190497D445DC3F43C20CF96E5E6BD0691 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
21:01:44.0400 0x0098  wudfsvc - ok
21:01:44.0426 0x0098  [ 9A3452B3C2A46C073166C5CF49FAD1AE, D6F95F51D8E37BA4CF403965EC08CCFEEA9EEFDBFC7752432EAEC19925BDA115 ] WwanSvc         C:\Windows\System32\wwansvc.dll
21:01:44.0464 0x0098  WwanSvc - ok
21:01:44.0490 0x0098  ================ Scan global ===============================
21:01:44.0509 0x0098  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
21:01:44.0534 0x0098  [ E0406AEF04B088D1C49FC78D0546F689, 7ADD4D1C174FAA5405BD94BAF104A5DD56BE00DBDC1ED9F069A95430A7B264AA ] C:\Windows\system32\winsrv.dll
21:01:44.0547 0x0098  [ E0406AEF04B088D1C49FC78D0546F689, 7ADD4D1C174FAA5405BD94BAF104A5DD56BE00DBDC1ED9F069A95430A7B264AA ] C:\Windows\system32\winsrv.dll
21:01:44.0574 0x0098  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
21:01:44.0597 0x0098  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
21:01:44.0604 0x0098  [ Global ] - ok
21:01:44.0607 0x0098  ================ Scan MBR ==================================
21:01:44.0621 0x0098  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:01:45.0194 0x0098  \Device\Harddisk0\DR0 - ok
21:01:45.0221 0x0098  [ D71B99B6FF96AEB15E1A83E27DB8EAAA ] \Device\Harddisk1\DR1
21:01:45.0709 0x0098  \Device\Harddisk1\DR1 - ok
21:01:45.0710 0x0098  ================ Scan VBR ==================================
21:01:45.0712 0x0098  [ D60A4F49EBAC2CF8B1284E1BDCFDCEFE ] \Device\Harddisk0\DR0\Partition1
21:01:45.0713 0x0098  \Device\Harddisk0\DR0\Partition1 - ok
21:01:45.0715 0x0098  [ 337EDBC98DA40D2C9F65DC3F5BF0063A ] \Device\Harddisk0\DR0\Partition2
21:01:45.0757 0x0098  \Device\Harddisk0\DR0\Partition2 - ok
21:01:45.0758 0x0098  ================ Scan active images ========================
21:01:45.0759 0x0098  [ 3E588B60EC061686BA05D33574A344C6, 19D2D863F95CCC4493A2328B6BEB04248B6A80F957532E58C1D1D868C19FDCCB ] C:\Windows\System32\drivers\crashdmp.sys
21:01:45.0759 0x0098  C:\Windows\System32\drivers\crashdmp.sys - ok
21:01:45.0761 0x0098  [ 839B5FE3D48E9F35B22C21A3D5103F6C, A9CEA695E43092B72B0E988063E00A7C0BCE90095344E9A2F380218482BCE77F ] C:\Windows\System32\drivers\Dumpata.sys
21:01:45.0761 0x0098  C:\Windows\System32\drivers\Dumpata.sys - ok
21:01:45.0764 0x0098  [ 814DB88F2641691575A455CF25354098, 79C50F0CD72612733217A0316BEFEA0B6D819C3159D9452EAB89AC26A18A0F89 ] C:\Windows\System32\drivers\dumpfve.sys
21:01:45.0764 0x0098  C:\Windows\System32\drivers\dumpfve.sys - ok
21:01:45.0766 0x0098  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] C:\Windows\System32\drivers\msahci.sys
21:01:45.0766 0x0098  C:\Windows\System32\drivers\msahci.sys - ok
21:01:45.0769 0x0098  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] C:\Windows\System32\drivers\cdrom.sys
21:01:45.0769 0x0098  C:\Windows\System32\drivers\cdrom.sys - ok
21:01:45.0772 0x0098  [ 05936579605018BD2BC528FF2C1AD95F, 763C2E76F9078F6A74D5BCCB4DD8A10C82AEB9C9F5A45C3706A587FA2D03E7D3 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys
21:01:45.0772 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix64.sys - ok
21:01:45.0774 0x0098  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] C:\Windows\System32\drivers\beep.sys
21:01:45.0774 0x0098  C:\Windows\System32\drivers\beep.sys - ok
21:01:45.0777 0x0098  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] C:\Windows\System32\drivers\null.sys
21:01:45.0777 0x0098  C:\Windows\System32\drivers\null.sys - ok
21:01:45.0779 0x0098  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] C:\Windows\System32\drivers\RDPCDD.sys
21:01:45.0779 0x0098  C:\Windows\System32\drivers\RDPCDD.sys - ok
21:01:45.0782 0x0098  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] C:\Windows\System32\drivers\vga.sys
21:01:45.0782 0x0098  C:\Windows\System32\drivers\vga.sys - ok
21:01:45.0784 0x0098  [ E7353D59C9842BC7299FAEB7E7E09340, C37ED1025E07BAC2F535DCFED6C6C509515D95722EADE5AF94F1FC5D8B1DC783 ] C:\Windows\System32\drivers\videoprt.sys
21:01:45.0784 0x0098  C:\Windows\System32\drivers\videoprt.sys - ok
21:01:45.0787 0x0098  [ FC438D1430B28618E2D0C7C332A710AD, 873957B202E454E2C8F625E5799F278CAC16EC5EEAEE2C33E2FE5D1FF0408CB2 ] C:\Windows\System32\drivers\watchdog.sys
21:01:45.0787 0x0098  C:\Windows\System32\drivers\watchdog.sys - ok
21:01:45.0789 0x0098  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] C:\Windows\System32\drivers\msfs.sys
21:01:45.0789 0x0098  C:\Windows\System32\drivers\msfs.sys - ok
21:01:45.0792 0x0098  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] C:\Windows\System32\drivers\npfs.sys
21:01:45.0792 0x0098  C:\Windows\System32\drivers\npfs.sys - ok
21:01:45.0794 0x0098  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] C:\Windows\System32\drivers\RDPENCDD.sys
21:01:45.0794 0x0098  C:\Windows\System32\drivers\RDPENCDD.sys - ok
21:01:45.0797 0x0098  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] C:\Windows\System32\drivers\RDPREFMP.sys
21:01:45.0797 0x0098  C:\Windows\System32\drivers\RDPREFMP.sys - ok
21:01:45.0799 0x0098  [ 6F020A220388ECA0AB6062DC27BD16B6, 48655230E482DEB7B4B50EF05818EBB29CA61E780AEFCD9D31B02DE4DF9D9540 ] C:\Windows\System32\drivers\tdi.sys
21:01:45.0799 0x0098  C:\Windows\System32\drivers\tdi.sys - ok
21:01:45.0801 0x0098  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] C:\Windows\System32\drivers\tdx.sys
21:01:45.0801 0x0098  C:\Windows\System32\drivers\tdx.sys - ok
21:01:45.0804 0x0098  [ D31DC7A16DEA4A9BAF179F3D6FBDB38C, 532678D86E3E667F2E789C4873565E0B92C549A93F10802BB6D5B505CA3238CE ] C:\Windows\System32\drivers\afd.sys
21:01:45.0804 0x0098  C:\Windows\System32\drivers\afd.sys - ok
21:01:45.0806 0x0098  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] C:\Windows\System32\drivers\netbt.sys
21:01:45.0806 0x0098  C:\Windows\System32\drivers\netbt.sys - ok
21:01:45.0809 0x0098  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] C:\Windows\System32\drivers\pacer.sys
21:01:45.0809 0x0098  C:\Windows\System32\drivers\pacer.sys - ok
21:01:45.0811 0x0098  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] C:\Windows\System32\drivers\wfplwf.sys
21:01:45.0811 0x0098  C:\Windows\System32\drivers\wfplwf.sys - ok
21:01:45.0814 0x0098  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] C:\Windows\System32\drivers\ws2ifsl.sys
21:01:45.0814 0x0098  C:\Windows\System32\drivers\ws2ifsl.sys - ok
21:01:45.0816 0x0098  [ 2B0E73BABE1B2B01F477734E3B5CF8A7, A067BF8B9170BF7360FAEC1D4689BF9E998BF0ED6B1C0708C32878442C8AEC2A ] C:\Windows\System32\drivers\gwdrv.sys
21:01:45.0816 0x0098  C:\Windows\System32\drivers\gwdrv.sys - ok
21:01:45.0819 0x0098  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] C:\Windows\System32\drivers\netbios.sys
21:01:45.0819 0x0098  C:\Windows\System32\drivers\netbios.sys - ok
21:01:45.0822 0x0098  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] C:\Windows\System32\drivers\wanarp.sys
21:01:45.0822 0x0098  C:\Windows\System32\drivers\wanarp.sys - ok
21:01:45.0824 0x0098  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] C:\Windows\System32\drivers\nsiproxy.sys
21:01:45.0824 0x0098  C:\Windows\System32\drivers\nsiproxy.sys - ok
21:01:45.0826 0x0098  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] C:\Windows\System32\drivers\rdbss.sys
21:01:45.0826 0x0098  C:\Windows\System32\drivers\rdbss.sys - ok
21:01:45.0828 0x0098  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] C:\Windows\System32\drivers\termdd.sys
21:01:45.0828 0x0098  C:\Windows\System32\drivers\termdd.sys - ok
21:01:45.0831 0x0098  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] C:\Windows\System32\drivers\csc.sys
21:01:45.0831 0x0098  C:\Windows\System32\drivers\csc.sys - ok
21:01:45.0833 0x0098  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] C:\Windows\System32\drivers\discache.sys
21:01:45.0833 0x0098  C:\Windows\System32\drivers\discache.sys - ok
21:01:45.0836 0x0098  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] C:\Windows\System32\drivers\mssmbios.sys
21:01:45.0836 0x0098  C:\Windows\System32\drivers\mssmbios.sys - ok
21:01:45.0838 0x0098  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] C:\Windows\System32\drivers\blbdrive.sys
21:01:45.0838 0x0098  C:\Windows\System32\drivers\blbdrive.sys - ok
21:01:45.0841 0x0098  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] C:\Windows\System32\drivers\dfsc.sys
21:01:45.0841 0x0098  C:\Windows\System32\drivers\dfsc.sys - ok
21:01:45.0843 0x0098  [ D27A8B7BB0E15DFBFC6B4E774EE17AD9, CBAD45B3FFFD30C34AF918009F699B65F89043D0799FC25D2472381912F86F93 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys
21:01:45.0843 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\a2ddax64.sys - ok
21:01:45.0846 0x0098  [ B1AB7116D14667A2238DAEFE20B7F4D0, DC8A9093A6F759657C3354931A462FCCAF3533A907FB7152380EB2E9B4AD3BF8 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys
21:01:45.0846 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\a2util64.sys - ok
21:01:45.0848 0x0098  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] C:\Windows\System32\drivers\intelppm.sys
21:01:45.0848 0x0098  C:\Windows\System32\drivers\intelppm.sys - ok
21:01:45.0852 0x0098  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] C:\Windows\System32\drivers\tunnel.sys
21:01:45.0852 0x0098  C:\Windows\System32\drivers\tunnel.sys - ok
21:01:45.0854 0x0098  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] C:\Windows\System32\drivers\vgapnp.sys
21:01:45.0854 0x0098  C:\Windows\System32\drivers\vgapnp.sys - ok
21:01:45.0856 0x0098  [ 1911A3356FA3F77CCC825CCBAC038C2A, 6ED135B792C81D78B33A57F0F4770DB6105C9ED3E2193629CB3EC38BFD5B7E1B ] C:\Windows\System32\smss.exe
21:01:45.0856 0x0098  C:\Windows\System32\smss.exe - ok
21:01:45.0858 0x0098  [ B6D64EE607637301FF8C33139B4950DE, E7FE3EC3DA3CABDBBE2C23BAA5FE3CD64DA01FF73B4B4C2F077224A607E688DD ] C:\Windows\System32\drivers\usbport.sys
21:01:45.0858 0x0098  C:\Windows\System32\drivers\usbport.sys - ok
21:01:45.0861 0x0098  [ 3556D5A8BF2CC508BDAB51DEC38D7C61, 91E3D98AD3119E8ADDF8D2AA1DD6795162842FFF7101E4C70C5137E847B4FF50 ] C:\Windows\System32\ntdll.dll
21:01:45.0861 0x0098  C:\Windows\System32\ntdll.dll - ok
21:01:45.0864 0x0098  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] C:\Windows\System32\drivers\hdaudbus.sys
21:01:45.0864 0x0098  C:\Windows\System32\drivers\hdaudbus.sys - ok
21:01:45.0866 0x0098  [ 74EE782B1D9C241EFE425565854C661C, E8258EA65B0FCAD4E077B176E9D9324646B652D6E651241E397346A39770D065 ] C:\Windows\System32\drivers\usbehci.sys
21:01:45.0866 0x0098  C:\Windows\System32\drivers\usbehci.sys - ok
21:01:45.0869 0x0098  [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] C:\Windows\System32\drivers\usbuhci.sys
21:01:45.0869 0x0098  C:\Windows\System32\drivers\usbuhci.sys - ok
21:01:45.0872 0x0098  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93, 7BC847CE6C2D29C334F0D1600BBBDE3933FF45F6BEE5186F442E6270A3F9EC4E ] C:\Windows\System32\autochk.exe
21:01:45.0872 0x0098  C:\Windows\System32\autochk.exe - ok
21:01:45.0875 0x0098  [ 64428DFDAF6E88366CB51F45A79C5F69, 31187D38C1AB52120A3CB7AC3CE47ED9682AC37B0F06B9A9610C0065DD4E7B13 ] C:\Windows\System32\drivers\netw5v64.sys
21:01:45.0875 0x0098  C:\Windows\System32\drivers\netw5v64.sys - ok
21:01:45.0878 0x0098  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] C:\Windows\System32\drivers\1394ohci.sys
21:01:45.0878 0x0098  C:\Windows\System32\drivers\1394ohci.sys - ok
21:01:45.0880 0x0098  [ BAEFEE35D27A5440D35092CE10267BEC, FB550D38C01E07B1170C52C1441874B56DD3BECB10CBE8E132EE3276A05C796E ] C:\Windows\System32\drivers\Rt64win7.sys
21:01:45.0880 0x0098  C:\Windows\System32\drivers\Rt64win7.sys - ok
21:01:45.0883 0x0098  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] C:\Windows\System32\drivers\i8042prt.sys
21:01:45.0883 0x0098  C:\Windows\System32\drivers\i8042prt.sys - ok
21:01:45.0885 0x0098  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] C:\Windows\System32\drivers\sdbus.sys
21:01:45.0885 0x0098  C:\Windows\System32\drivers\sdbus.sys - ok
21:01:45.0888 0x0098  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] C:\Windows\System32\drivers\kbdclass.sys
21:01:45.0888 0x0098  C:\Windows\System32\drivers\kbdclass.sys - ok
21:01:45.0891 0x0098  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] C:\Windows\System32\drivers\mouclass.sys
21:01:45.0891 0x0098  C:\Windows\System32\drivers\mouclass.sys - ok
21:01:45.0893 0x0098  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] C:\Windows\System32\drivers\CmBatt.sys
21:01:45.0893 0x0098  C:\Windows\System32\drivers\CmBatt.sys - ok
21:01:45.0896 0x0098  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] C:\Windows\System32\drivers\CompositeBus.sys
21:01:45.0896 0x0098  C:\Windows\System32\drivers\CompositeBus.sys - ok
21:01:45.0899 0x0098  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] C:\Windows\System32\drivers\agilevpn.sys
21:01:45.0899 0x0098  C:\Windows\System32\drivers\agilevpn.sys - ok
21:01:45.0901 0x0098  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] C:\Windows\System32\drivers\rasl2tp.sys
21:01:45.0901 0x0098  C:\Windows\System32\drivers\rasl2tp.sys - ok
21:01:45.0906 0x0098  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] C:\Windows\System32\drivers\ndistapi.sys
21:01:45.0906 0x0098  C:\Windows\System32\drivers\ndistapi.sys - ok
21:01:45.0909 0x0098  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] C:\Windows\System32\drivers\ndiswan.sys
21:01:45.0909 0x0098  C:\Windows\System32\drivers\ndiswan.sys - ok
21:01:45.0912 0x0098  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] C:\Windows\System32\drivers\raspppoe.sys
21:01:45.0912 0x0098  C:\Windows\System32\drivers\raspppoe.sys - ok
21:01:45.0915 0x0098  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] C:\Windows\System32\drivers\raspptp.sys
21:01:45.0915 0x0098  C:\Windows\System32\drivers\raspptp.sys - ok
21:01:45.0919 0x0098  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] C:\Windows\System32\drivers\rassstp.sys
21:01:45.0919 0x0098  C:\Windows\System32\drivers\rassstp.sys - ok
21:01:45.0923 0x0098  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] C:\Windows\System32\drivers\rdpbus.sys
21:01:45.0923 0x0098  C:\Windows\System32\drivers\rdpbus.sys - ok
21:01:45.0926 0x0098  [ 24FBF5CC5C04150073C315A7C83521EE, 581BD5F15B5E57B3BAA762E421FFD859FDA46DDB8515C2A7AAFF208D784E906C ] C:\Windows\System32\drivers\ks.sys
21:01:45.0926 0x0098  C:\Windows\System32\drivers\ks.sys - ok
21:01:45.0929 0x0098  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] C:\Windows\System32\drivers\swenum.sys
21:01:45.0929 0x0098  C:\Windows\System32\drivers\swenum.sys - ok
21:01:45.0933 0x0098  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] C:\Windows\System32\drivers\umbus.sys
21:01:45.0933 0x0098  C:\Windows\System32\drivers\umbus.sys - ok
21:01:45.0936 0x0098  [ 1642C62F1FD5E1FF44608283994A7BB8, 4646AA0EF74A2AEE6C17D12206FCFE1E84D6FA712AD95A171F16D11BC9D3F11A ] C:\Windows\System32\drivers\ew_jubusenum.sys
21:01:45.0936 0x0098  C:\Windows\System32\drivers\ew_jubusenum.sys - ok
21:01:45.0939 0x0098  [ DC96BD9CCB8403251BCF25047573558E, 66EBF8A6B3BC0634F32DDCC8BA31F1EB5987E8C6853E1DC26005E3EED0945565 ] C:\Windows\System32\drivers\usbhub.sys
21:01:45.0939 0x0098  C:\Windows\System32\drivers\usbhub.sys - ok
21:01:45.0942 0x0098  [ F7CE0C81C545364020ED8203CF0A633E, 24B47A7492B7048096AF87E26786E8108455ADBD1A374B6A0466DE008505B8A9 ] C:\Windows\System32\difxapi.dll
21:01:45.0942 0x0098  C:\Windows\System32\difxapi.dll - ok
21:01:45.0945 0x0098  [ F6C5302E1F4813D552F41A0AC82455E5, E3EBF44621EFC6381BAAE0F0EFC13C356DCB6EE31BB258137EDB3CC3E18549B5 ] C:\Windows\System32\wininet.dll
21:01:45.0945 0x0098  C:\Windows\System32\wininet.dll - ok
21:01:45.0947 0x0098  [ 4BBFA57F594F7E8A8EDC8F377184C3F0, 9F3AC5DEA5A6250C3DBB97AF79C81C0A48429486521F807355A1D7D3D861B75F ] C:\Windows\System32\ws2_32.dll
21:01:45.0947 0x0098  C:\Windows\System32\ws2_32.dll - ok
21:01:45.0950 0x0098  [ AA2C08CE85653B1A0D2E4AB407FA176C, 83DFD0C119B20AEDB07114C9D1CF9CE2DFA938D0F1070256B0591A9E2C3997FA ] C:\Windows\System32\imm32.dll
21:01:45.0950 0x0098  C:\Windows\System32\imm32.dll - ok
21:01:45.0952 0x0098  [ D87E1E59C73C1F98D5DED5B3850C40F5, 536419BFF9F877D4314B5D0C045D9A6E729489C389863FADF07E382050BC84FD ] C:\Windows\System32\psapi.dll
21:01:45.0952 0x0098  C:\Windows\System32\psapi.dll - ok
21:01:45.0955 0x0098  [ 83404DCBCE4925B6A5A77C5170F46D86, D669614D0B4461DB244AD99FBE1BA92CEB9B4ED5EC8E987E23764E77D9AC7074 ] C:\Windows\System32\sechost.dll
21:01:45.0955 0x0098  C:\Windows\System32\sechost.dll - ok
21:01:45.0957 0x0098  [ 28C0B5024F5C5A438E78B188CFC81B7F, AB81FB63F2908CE316B45609077ACBD85F4B2AAD1606B1E9030F06DB82EDDFAD ] C:\Windows\System32\normaliz.dll
21:01:45.0957 0x0098  C:\Windows\System32\normaliz.dll - ok
21:01:45.0959 0x0098  [ 42F05F980F164E084DB65B2E8CD8430F, 0813749847B08F6577791D18AD9ECA6DFF5B41C2F727AB5EE9E5BF9602ED50CB ] C:\Windows\System32\oleaut32.dll
21:01:45.0959 0x0098  C:\Windows\System32\oleaut32.dll - ok
21:01:45.0962 0x0098  [ 5180380D353277D395D3B36D790AA93E, 89B894ECCF65704D00D30EA3BD45B184BFAB8345B779F9AE2BE66B9FC7226F72 ] C:\Windows\System32\iertutil.dll
21:01:45.0962 0x0098  C:\Windows\System32\iertutil.dll - ok
21:01:45.0964 0x0098  [ 1084AA52CCC324EA54C7121FA24C2221, 6E972CF624F7C0DE8190434B3B30279A01C551713109F97B9EBB77FAC9364754 ] C:\Windows\System32\gdi32.dll
21:01:45.0964 0x0098  C:\Windows\System32\gdi32.dll - ok
21:01:45.0968 0x0098  [ EAF32CB8C1F810E4715B4DFBE785C7FF, DB6AD07FDED42433E669508AB73FAFF6DAFF04575D6F1D016FE3EB6ECEC4DD5D ] C:\Windows\System32\shlwapi.dll
21:01:45.0968 0x0098  C:\Windows\System32\shlwapi.dll - ok
21:01:45.0969 0x0098  [ 0611473C1AD9E2D991CD9482068417F7, 90AFCC2A60350ECE27E75E76459132EF0FA28EF283CE88FCED4B82735A93ECDA ] C:\Windows\System32\rpcrt4.dll
21:01:45.0969 0x0098  C:\Windows\System32\rpcrt4.dll - ok
21:01:45.0972 0x0098  [ 9835E63E09F824D22B689D2BB789BAB9, 5BCFFAFB894D69FBCDDB91E64D30A356F4BD57098E8B4C51B98AFAF6581BDB63 ] C:\Windows\System32\comdlg32.dll
21:01:45.0972 0x0098  C:\Windows\System32\comdlg32.dll - ok
21:01:45.0974 0x0098  [ 4E4FFB09D895AA000DD56D1404F69A7E, D999E04BB35780088480EAB322176570591A21E311D204BDCAB010A63B34D24C ] C:\Windows\System32\Wldap32.dll
21:01:45.0974 0x0098  C:\Windows\System32\Wldap32.dll - ok
21:01:45.0976 0x0098  [ 7319BB10FA1F86E49E3DCF4136F6C957, 60DE43AB267FD41C9804369B569139ADD30ED4E295C425F44FC04D3FCC95FCA2 ] C:\Windows\System32\msvcrt.dll
21:01:45.0976 0x0098  C:\Windows\System32\msvcrt.dll - ok
21:01:45.0979 0x0098  [ 25983DE69B57142039AC8D95E71CD9C9, A677DA7EBCBCB6073D27E8A38809F51E971E83ED379BC599AAAD6EF4216348DA ] C:\Windows\System32\clbcatq.dll
21:01:45.0979 0x0098  C:\Windows\System32\clbcatq.dll - ok
21:01:45.0982 0x0098  [ 6DF46D2BD74E3DA1B45F08F10D172732, 2DC945F6F2C4A82189BC7DA2FCBB7D9A0E2588A909539249E55BA82468E0C677 ] C:\Windows\System32\advapi32.dll
21:01:45.0982 0x0098  C:\Windows\System32\advapi32.dll - ok
21:01:45.0985 0x0098  [ D202223587518B13D72D68937B7E3F70, 9DB971B866D058ADBB518DD99B87C5DB8DD1E7C9073755B989AE7E9FB62901E8 ] C:\Windows\System32\lpk.dll
21:01:45.0985 0x0098  C:\Windows\System32\lpk.dll - ok
21:01:45.0989 0x0098  [ 044FE45FFD6AD40E3BBBE60B7F41BABE, A1688A5E6E0F7037C850699462C2655006A7D873C97F9AB406C59D81749B6F09 ] C:\Windows\System32\nsi.dll
21:01:45.0989 0x0098  C:\Windows\System32\nsi.dll - ok
21:01:45.0991 0x0098  [ 26E716ED95DC48CF6E5AC046089366AF, F686D557B7AC1688EFC7CB48311290D713D3DB2E9E61E947098A7C80E3A1B9E9 ] C:\Windows\System32\shell32.dll
21:01:45.0991 0x0098  C:\Windows\System32\shell32.dll - ok
21:01:45.0994 0x0098  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] C:\Windows\System32\drivers\ndproxy.sys
21:01:45.0994 0x0098  C:\Windows\System32\drivers\ndproxy.sys - ok
21:01:45.0996 0x0098  [ 5FADA8B707318E1BD63A7E2B81E6C8CB, 2590E88CAB52FCC1B24CB262D293131C6280A5F234E0C130E77AA8697EFA3B5F ] C:\Windows\System32\urlmon.dll
21:01:45.0996 0x0098  C:\Windows\System32\urlmon.dll - ok
21:01:45.0999 0x0098  [ 7A6326D96D53048FDEC542DF23D875A0, 182351570856CD6EEDD9DF7E2FB8AB76BD4D8FC70BE11AD5DE6484CFD70C21C6 ] C:\Windows\System32\kernel32.dll
21:01:45.0999 0x0098  C:\Windows\System32\kernel32.dll - ok
21:01:46.0002 0x0098  [ 21D26064AEDB4988F785BB4A3A2C051E, F6FA2CA351B24DA19645EB542596C82F9A68D84CC7CCFE6F9FC15CE2CE4D1961 ] C:\Windows\System32\drivers\drmk.sys
21:01:46.0002 0x0098  C:\Windows\System32\drivers\drmk.sys - ok
21:01:46.0004 0x0098  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] C:\Windows\System32\drivers\HdAudio.sys
21:01:46.0004 0x0098  C:\Windows\System32\drivers\HdAudio.sys - ok
21:01:46.0006 0x0098  [ 32E11315B5126921FFD9074840EF13D3, FC7C0E1CC447FDD89C0FA5EBFD04CCEABFB27751AB57A7176F12BD0D35306E1C ] C:\Windows\System32\drivers\portcls.sys
21:01:46.0006 0x0098  C:\Windows\System32\drivers\portcls.sys - ok
21:01:46.0009 0x0098  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] C:\Windows\System32\drivers\ksthunk.sys
21:01:46.0009 0x0098  C:\Windows\System32\drivers\ksthunk.sys - ok
21:01:46.0011 0x0098  [ 63C8D74BED9F80F4DD0AA7A3101EB639, EA2CE29025259E9DE945CE52C80A41C33024D7C2907AA1928480EC11FC852B08 ] C:\Windows\System32\drivers\usbd.sys
21:01:46.0011 0x0098  C:\Windows\System32\drivers\usbd.sys - ok
21:01:46.0014 0x0098  [ 481DFF26B4DCA8F4CBAC1F7DCE1D6829, 5D6E404FE0AB875202CA1A3E8E9D2F4368DF6ACCFA1C872ECFAF8399CBA3A485 ] C:\Windows\System32\drivers\usbccgp.sys
21:01:46.0015 0x0098  C:\Windows\System32\drivers\usbccgp.sys - ok
21:01:46.0018 0x0098  [ D76510CFA0FC09023077F22C2F979D86, 5662281C6D515423255D3C262EA368DBAFC250235E535FBFA3E59D3487695439 ] C:\Windows\System32\drivers\USBSTOR.SYS
21:01:46.0018 0x0098  C:\Windows\System32\drivers\USBSTOR.SYS - ok
21:01:46.0022 0x0098  [ FE70103391A64039A921DBFFF9C7AB1B, F7D219D75037BC98F6C69143B00AB6000A31F8B5E211E0AF514F4F4B681522A0 ] C:\Windows\System32\user32.dll
21:01:46.0022 0x0098  C:\Windows\System32\user32.dll - ok
21:01:46.0024 0x0098  [ 6C60B5ACA7442EFB794082CDACFC001C, FC1D9124856A70FF232EF3057D66BEE803295847624CE23B4D0217F23AF52C75 ] C:\Windows\System32\ole32.dll
21:01:46.0024 0x0098  C:\Windows\System32\ole32.dll - ok
21:01:46.0026 0x0098  [ 2F8B1E3EE3545D3B5A8D56FA1AE07B65, 2A3EC01F3BAFE7D7D656886437F7FFECCE440C0D3F3467804769AB4BF1FF7A99 ] C:\Windows\System32\usp10.dll
21:01:46.0026 0x0098  C:\Windows\System32\usp10.dll - ok
21:01:46.0029 0x0098  [ 4DBBFCE863FE1B64C770EB53A3BA5860, DA77FB5D865779834CDCEE74200B9346FA3A4D0465F7A49C877ED6F786232CEF ] C:\Windows\System32\drivers\ew_jucdcacm.sys
21:01:46.0029 0x0098  C:\Windows\System32\drivers\ew_jucdcacm.sys - ok
21:01:46.0031 0x0098  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] C:\Windows\System32\drivers\modem.sys
21:01:46.0031 0x0098  C:\Windows\System32\drivers\modem.sys - ok
21:01:46.0035 0x0098  [ B8509DCFCFD577F568BE4026BFD982C0, E3608E6DE15C400FA437349E7295FEF10A1A0213CA3B532A58964B8C89749110 ] C:\Windows\System32\imagehlp.dll
21:01:46.0035 0x0098  C:\Windows\System32\imagehlp.dll - ok
21:01:46.0038 0x0098  [ C431EAF5CAA1C82CAC2534A2EAB348A3, ADDF850128DC675E67FABA9A3D0D27E684F01F733962CA22927BB94503549E44 ] C:\Windows\System32\msctf.dll
21:01:46.0038 0x0098  C:\Windows\System32\msctf.dll - ok
21:01:46.0040 0x0098  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5, 12130837D7F89A2C7E9D25747A8E5B9001E0A38D545178B49B450C23AE62664A ] C:\Windows\System32\setupapi.dll
21:01:46.0040 0x0098  C:\Windows\System32\setupapi.dll - ok
21:01:46.0042 0x0098  [ 14DFDEAF4E589ED3F1FF187A86B9408C, 86D383D5B90A86556521C62C50F7BE0306FCD24FD86A8A37E8320FAE948531EB ] C:\Windows\System32\comctl32.dll
21:01:46.0042 0x0098  C:\Windows\System32\comctl32.dll - ok
21:01:46.0045 0x0098  [ 3F9F2AFA135F0663946A006DD5FFD897, 276D1C9C78C529625C2EF3D77079324628686EA184767971901A1DE93681C133 ] C:\Windows\System32\crypt32.dll
21:01:46.0045 0x0098  C:\Windows\System32\crypt32.dll - ok
21:01:46.0047 0x0098  [ 2477A28081BDAEE622CF045ACF8EE124, 00A09CAF9129E84FEEA98FA03CE9012C9F961B64FEE15C4F268822C0F82ACC3C ] C:\Windows\System32\cfgmgr32.dll
21:01:46.0047 0x0098  C:\Windows\System32\cfgmgr32.dll - ok
21:01:46.0050 0x0098  [ 06FEC9E8117103BB1141A560E98077DA, C5E61B11DDBBBBBA3D9488970524F0975EA5FBDF16E2FA31F579F8BFA48353B1 ] C:\Windows\System32\devobj.dll
21:01:46.0050 0x0098  C:\Windows\System32\devobj.dll - ok
21:01:46.0052 0x0098  [ DA68C291B4EF2DEC9C5963266BCAE454, 21AA4779FC21E762178517268C95467238C92851AD9160BFFC36B2379C58337F ] C:\Windows\System32\KernelBase.dll
21:01:46.0052 0x0098  C:\Windows\System32\KernelBase.dll - ok
21:01:46.0055 0x0098  [ EB3F9C2DE1236B5D46B2291D82970E43, 8A43D335F3D573BED98AF54BB51E82546C2ACC025DA8A48D801213EB14E9D5D4 ] C:\Windows\System32\wintrust.dll
21:01:46.0055 0x0098  C:\Windows\System32\wintrust.dll - ok
21:01:46.0057 0x0098  [ 884415BD4269C02EAF8E2613BF85500D, EFE771709EC942694FD206AC8D0A48ED7DCD35036F074268E4AECD68AC982CEA ] C:\Windows\System32\msasn1.dll
21:01:46.0057 0x0098  C:\Windows\System32\msasn1.dll - ok
21:01:46.0059 0x0098  [ 9C278785347BCC991F8EA2999D90F58D, EA680C3642A6ABF627415AEE019956FAC702DC6A8F4B4D0FC8A4FB21EADD3896 ] C:\Windows\SysWOW64\normaliz.dll
21:01:46.0059 0x0098  C:\Windows\SysWOW64\normaliz.dll - ok
21:01:46.0062 0x0098  [ BF24D6F2ED97FE830BFD52B246F98E67, 6BBF4C4221A245462EF653798F6B416EEB12594AD1CB4E8BC8908A8CB2F53384 ] C:\Windows\System32\drivers\dxapi.sys
21:01:46.0062 0x0098  C:\Windows\System32\drivers\dxapi.sys - ok
21:01:46.0065 0x0098  [ A89392A32BA98468710FD7E38318934B, 20ADA396709E694B47976A269FE0C1C640192EED9E39EC288157AEFFA8E9AD4B ] C:\Windows\System32\win32k.sys
21:01:46.0065 0x0098  C:\Windows\System32\win32k.sys - ok
21:01:46.0067 0x0098  [ 0D7598360DF6C8637E6D678C20B5C47C, 0EC86D578C0B1703B89C24AE0FEE2CD91DD869BD4A97949A4B29AE57D490F890 ] C:\Windows\System32\csrsrv.dll
21:01:46.0067 0x0098  C:\Windows\System32\csrsrv.dll - ok
21:01:46.0072 0x0098  [ 60C2862B4BF0FD9F582EF344C2B1EC72, CB1C6018FC5C15483AC5BB96E5C2E2E115BB0C0E1314837D77201BAB37E8C03A ] C:\Windows\System32\csrss.exe
21:01:46.0072 0x0098  C:\Windows\System32\csrss.exe - ok
21:01:46.0074 0x0098  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\System32\basesrv.dll
21:01:46.0074 0x0098  C:\Windows\System32\basesrv.dll - ok
21:01:46.0077 0x0098  [ E0406AEF04B088D1C49FC78D0546F689, 7ADD4D1C174FAA5405BD94BAF104A5DD56BE00DBDC1ED9F069A95430A7B264AA ] C:\Windows\System32\winsrv.dll
21:01:46.0077 0x0098  C:\Windows\System32\winsrv.dll - ok
21:01:46.0078 0x0098  [ FEDE0629ECB23650D48989517D4914DA, AD3DFC34F0F4AF0EC7A2C018F7DCEF72DECA85E569BAEBA39484407956594D8B ] C:\Windows\System32\drivers\dxg.sys
21:01:46.0078 0x0098  C:\Windows\System32\drivers\dxg.sys - ok
21:01:46.0081 0x0098  [ 454800C2BC7F3927CE030141EE4F4C50, 10901E62DAA70657C499AD590DECCCA6E46FDDF4A193B2F19279E1B8ED7B1E44 ] C:\Windows\System32\drivers\usbvideo.sys
21:01:46.0081 0x0098  C:\Windows\System32\drivers\usbvideo.sys - ok
21:01:46.0085 0x0098  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] C:\Windows\System32\drivers\monitor.sys
21:01:46.0085 0x0098  C:\Windows\System32\drivers\monitor.sys - ok
21:01:46.0086 0x0098  [ F29FE765E1448EF371CFE05BFAC74ADB, F251581222D78543272FD4B14A6A59F4B0E0CC44A5FCBCF56DE4CA5783F78A75 ] C:\Windows\System32\tsddd.dll
21:01:46.0086 0x0098  C:\Windows\System32\tsddd.dll - ok
21:01:46.0089 0x0098  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\System32\sxssrv.dll
21:01:46.0089 0x0098  C:\Windows\System32\sxssrv.dll - ok
21:01:46.0091 0x0098  [ 94355C28C1970635A31B3FE52EB7CEBA, C4E98F07170CEC69CACDD5CEDB8927E48A2A299CB1B8CDA87526E768AF6174F0 ] C:\Windows\System32\wininit.exe
21:01:46.0091 0x0098  C:\Windows\System32\wininit.exe - ok
21:01:46.0093 0x0098  [ 401329D20D284FAF745F47294D6248D1, 3870389012C37A74F857F37F9F0348C369B3BF6D9A29EABC7CDBAEA413006BCF ] C:\Windows\System32\KBDPL1.DLL
21:01:46.0093 0x0098  C:\Windows\System32\KBDPL1.DLL - ok
21:01:46.0096 0x0098  [ 2C942733A5983DD4502219FF37C7EBC7, 34B20B6B0D7274E4B5B783F1D2345BC3DD9888964D5C2C65712F041A00CF5B45 ] C:\Windows\System32\profapi.dll
21:01:46.0096 0x0098  C:\Windows\System32\profapi.dll - ok
21:01:46.0099 0x0098  [ C2A8CB1275ECB85D246A9ECC02A728E3, 3603FADCA0060BD201148F9D59E4E2627F024609A6463AB525B5D1AD17BDCD10 ] C:\Windows\System32\RpcRtRemote.dll
21:01:46.0099 0x0098  C:\Windows\System32\RpcRtRemote.dll - ok
21:01:46.0102 0x0098  [ E30B04A8FE665C52162D70233ABEA9A3, E5586EDF32684B31D438B2BF800FA625F8D73473896995B5FFC907E1742BF79E ] C:\Windows\System32\framebuf.dll
21:01:46.0102 0x0098  C:\Windows\System32\framebuf.dll - ok
21:01:46.0106 0x0098  [ 8BEC4D6AD2864EDF68D9AD0C6AA6C6D1, 9708FC829CA75ADDC5921BAADC191F5BBAF90612164F4EFB042C002A05FC16B4 ] C:\Windows\System32\vga.dll
21:01:46.0106 0x0098  C:\Windows\System32\vga.dll - ok
21:01:46.0108 0x0098  [ 1151B1BAA6F350B1DB6598E0FEA7C457, B1506E0A7E826EFF0F5252EF5026070C46E2235438403A9A24D73EE69C0B8A49 ] C:\Windows\System32\winlogon.exe
21:01:46.0108 0x0098  C:\Windows\System32\winlogon.exe - ok
21:01:46.0111 0x0098  [ 0D9764D58C5EFD672B7184854B152E5E, 9827B43DABBEC39AB2E2294408D9C5304EF27A684903C5234C6070387723D49E ] C:\Windows\System32\winsta.dll
21:01:46.0111 0x0098  C:\Windows\System32\winsta.dll - ok
21:01:46.0113 0x0098  [ 2F0C8662DFA99A5958845AC824371BD6, 59163CB8BB8A7CB41B8C151785256375B04A18AEC78A4B136698FFB7E1C86008 ] C:\Windows\System32\KBDPL.DLL
21:01:46.0113 0x0098  C:\Windows\System32\KBDPL.DLL - ok
21:01:46.0115 0x0098  [ 331EFB5B729C3DB265F985D857B6F574, F83A806604B963E0A4F0E36D94C4BF802E0E26410C6C70B2DF97F6DE9C4CB896 ] C:\Windows\System32\KBDUSX.DLL
21:01:46.0115 0x0098  C:\Windows\System32\KBDUSX.DLL - ok
21:01:46.0118 0x0098  [ B26B1801356760841C3BC69F9F91537F, 83B9DF333E36C09E81D44E12AE5BE14650126FDA0CF4A0EA853BF40C5780EF81 ] C:\Windows\System32\WlS0WndH.dll
21:01:46.0118 0x0098  C:\Windows\System32\WlS0WndH.dll - ok
21:01:46.0121 0x0098  [ 9CEAD32E79A62150FE9F8557E58E008B, AFE4C1725EE94D7DE0749AE1495A4E5CC33C369F29B2A589DA66FFE27FF9777E ] C:\Windows\System32\sxs.dll
21:01:46.0121 0x0098  C:\Windows\System32\sxs.dll - ok
21:01:46.0123 0x0098  [ 784FA3DF338E2E8F5F0389D6FAC428AF, 9C8AA0CFDEB9E38AAF8EB08626070E0F0364F4F8A793CFE3532EC6C007980C34 ] C:\Windows\System32\cryptbase.dll
21:01:46.0123 0x0098  C:\Windows\System32\cryptbase.dll - ok
21:01:46.0126 0x0098  [ 90499F3163A9F815CF196A205EA3CD5D, 29B4ED3795CEC1177EB367132914CE21C194CDEC5DB9DC923FD928C85E94D821 ] C:\Windows\System32\apphelp.dll
21:01:46.0126 0x0098  C:\Windows\System32\apphelp.dll - ok
21:01:46.0128 0x0098  [ 9F84806B3991D338FFDFC4ECF86A6923, 642FF3B8EE8BD6597AABE74E106A65F0C5551786CEB18BC69946F9608B5CAF64 ] C:\Windows\System32\lsasrv.dll
21:01:46.0128 0x0098  C:\Windows\System32\lsasrv.dll - ok
21:01:46.0131 0x0098  [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] C:\Windows\System32\lsass.exe
21:01:46.0131 0x0098  C:\Windows\System32\lsass.exe - ok
21:01:46.0134 0x0098  [ 9662EE182644511439F1C53745DC1C88, D205B2C163E78AB42A5D67D7664EF6B75EA0374FF0924467D624F9DB0611F0AD ] C:\Windows\System32\lsm.exe
21:01:46.0134 0x0098  C:\Windows\System32\lsm.exe - ok
21:01:46.0138 0x0098  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\System32\services.exe
21:01:46.0139 0x0098  C:\Windows\System32\services.exe - ok
21:01:46.0141 0x0098  [ 2A86E54B441AD41557F75DC5609B9793, 8FEDE6909413C0FA5B63D58D39AFFD0F6C3BEEAF19B7B2F8674913ABFD79A912 ] C:\Windows\System32\sspicli.dll
21:01:46.0141 0x0098  C:\Windows\System32\sspicli.dll - ok
21:01:46.0143 0x0098  [ D8A79180614C14F87DA1038FFEB56F71, 60142DC3795FC7C7F24D1742A9475F67416695CA7EB1A64C57E42367AC0998E3 ] C:\Windows\System32\sspisrv.dll
21:01:46.0143 0x0098  C:\Windows\System32\sspisrv.dll - ok
21:01:46.0146 0x0098  [ 68083118797CAF30FB2EA3E71494D67E, 5F1BCDFCB00A20CD60CBC70A2FD97405EF0F7173DD0E404BBA7B06D39DB37364 ] C:\Windows\System32\sysntfy.dll
21:01:46.0146 0x0098  C:\Windows\System32\sysntfy.dll - ok
21:01:46.0148 0x0098  [ DEE7267C5D232A3B816866872CE199E6, A1994FD37667C52E7CBF873514C190DA61A3D1349786D187BFAE0006F61799AE ] C:\Windows\System32\wmsgapi.dll
21:01:46.0148 0x0098  C:\Windows\System32\wmsgapi.dll - ok
21:01:46.0151 0x0098  [ BBCDF350817BA86416C0F06B6981BE8D, D064438F97852B9BD6015C8B19377C61C671E0969E09506B8359FE7B1F373A61 ] C:\Windows\System32\scesrv.dll
21:01:46.0151 0x0098  C:\Windows\System32\scesrv.dll - ok
21:01:46.0153 0x0098  [ E914A50A151DFFE63D3935226DB5E2C1, 7DCCE4060344E1C771679F1C20378A0BEB3C1F06DB684072F07B98921A62A299 ] C:\Windows\System32\scext.dll
21:01:46.0153 0x0098  C:\Windows\System32\scext.dll - ok
21:01:46.0155 0x0098  [ 858DF0795CB5B4BACE0F33708925A414, A9063AF8D5C73A722BD269D144D8A65C98DB4CFDD9F626E3A8283754E22C8C9C ] C:\Windows\System32\secur32.dll
21:01:46.0155 0x0098  C:\Windows\System32\secur32.dll - ok
21:01:46.0158 0x0098  [ 3A9C9BAF610B0DD4967086040B3B62A9, E8E9A0F42B1EE7806EDCEED08AA024D037215D06CA317E3678BD5364AD513D23 ] C:\Windows\System32\srvcli.dll
21:01:46.0158 0x0098  C:\Windows\System32\srvcli.dll - ok
21:01:46.0161 0x0098  [ A744BA6E04C8AA4592818178DBF89521, 9E7C85D842DF16F9B8FED7B06AF309B5ECCBFD465F5552347D4C3F1FEFDC6F7A ] C:\Windows\System32\samsrv.dll
21:01:46.0161 0x0098  C:\Windows\System32\samsrv.dll - ok
21:01:46.0163 0x0098  [ 2D066FBE63F7026C43C662C094B98076, CDAB0E3F24A0AEC4FBFA68EB3E6F80AA86C15AC9080F27216E386CE829C3DF10 ] C:\Windows\System32\bridgeres.dll
21:01:46.0163 0x0098  C:\Windows\System32\bridgeres.dll - ok
21:01:46.0165 0x0098  [ 3A061472B38233BAFF9CFEFF2E49C46B, DF29B14C8D22A8A16AA336A09A6152E2C7FCA6CAF4E76F0C5DCB55BEF9D00515 ] C:\Windows\System32\cryptdll.dll
21:01:46.0165 0x0098  C:\Windows\System32\cryptdll.dll - ok
21:01:46.0168 0x0098  [ 3C073B0C596A0AF84933E7406766B040, 4698BBA678F553E15AD4B07AD7FB236281F872DEFEE97BFD637114476C8F97B3 ] C:\Windows\System32\wevtapi.dll
21:01:46.0168 0x0098  C:\Windows\System32\wevtapi.dll - ok
21:01:46.0170 0x0098  [ 7FBEBD2229EA5FD48D41B199EC2D541C, A465975D445A8D50CAF3EF29BD33354B320D11173C127BE30D5EBBFF7008CDCE ] C:\Windows\System32\authz.dll
21:01:46.0170 0x0098  C:\Windows\System32\authz.dll - ok
21:01:46.0173 0x0098  [ 86FE1B1F8FD42CD0DB641AB1CDB13093, 8C4BB4415105CE82FFFE658879EAE9D259A24C0F6DFC7D25507352DC99241BE2 ] C:\Windows\System32\cngaudit.dll
21:01:46.0173 0x0098  C:\Windows\System32\cngaudit.dll - ok
21:01:46.0175 0x0098  [ 2E8C52A0EC788D90FA35D9507D828771, DD5AAA10E075F209D9827C7A192AD5645D1156C149DB9B5AC1EF7B5E0B5F11DE ] C:\Windows\System32\ncrypt.dll
21:01:46.0175 0x0098  C:\Windows\System32\ncrypt.dll - ok
21:01:46.0178 0x0098  [ B9A95365E52F421A20E1501935FADDA5, DDB4CB575139233EFAF2C59B7E9B04AF36BBCCC63190181F3B2A7E6BFC86E77E ] C:\Windows\System32\bcrypt.dll
21:01:46.0178 0x0098  C:\Windows\System32\bcrypt.dll - ok
21:01:46.0180 0x0098  [ 02B64609F865A39365FF88580DF11738, 2F676B93898E1B6131AF6227BB7AB731EB9C29477F9BD4C2C60F0FC1E35CD968 ] C:\Windows\System32\msprivs.dll
21:01:46.0180 0x0098  C:\Windows\System32\msprivs.dll - ok
21:01:46.0183 0x0098  [ C6505DE3561537BA1004D638C2F93F2F, 3E4FDF374B1A9E43A8F61FD2D79E0515390ECABFDAF72C4BD44A7B6429039AF6 ] C:\Windows\System32\netjoin.dll
21:01:46.0183 0x0098  C:\Windows\System32\netjoin.dll - ok
21:01:46.0186 0x0098  [ 50532FCD7ECF02DD169CE5C485F02534, 8EE5D9D0EA53DC72BCC300692E521ACADD56AB09BFA3E78149D8B5A90648512C ] C:\Windows\System32\negoexts.dll
21:01:46.0186 0x0098  C:\Windows\System32\negoexts.dll - ok
21:01:46.0189 0x0098  [ 65D57212965A93FE78E41E3998BB97AD, A44EAED256EA8F39C28D7019AF2C1FB20C0A63EFE03C9A069CFA730E787FB179 ] C:\Windows\System32\kerberos.dll
21:01:46.0189 0x0098  C:\Windows\System32\kerberos.dll - ok
21:01:46.0192 0x0098  [ D0C2FBB6D97416B0166478FC7AE2B212, 7EAB6C37F0A845E645CA44CC060AC6C56E386C7EF7A64716C6786C9602AD8C9D ] C:\Windows\System32\cryptsp.dll
21:01:46.0192 0x0098  C:\Windows\System32\cryptsp.dll - ok
21:01:46.0195 0x0098  [ 1D5185A4C7E6695431AE4B55C3D7D333, 16F3906C54F1D71559836FDFCF4E83E7C9F454463D78FD577AD2D7022E0BCB51 ] C:\Windows\System32\mswsock.dll
21:01:46.0195 0x0098  C:\Windows\System32\mswsock.dll - ok
21:01:46.0197 0x0098  [ EF12B8385AA2849999008A977918F96B, ADEF9F5D2B0C2A30CB1B395C774E7FE75437135A09D3D4E6F97EE8656CE139B4 ] C:\Windows\System32\msv1_0.dll
21:01:46.0197 0x0098  C:\Windows\System32\msv1_0.dll - ok
21:01:46.0199 0x0098  [ EC7CBFF96B05ECF3D366355B3C64ADCF, F69ED45EBEDCA9CF000AC03281F0EC2C351F98513FBA90E63394E4E561D6C7A2 ] C:\Windows\System32\wship6.dll
21:01:46.0199 0x0098  C:\Windows\System32\wship6.dll - ok
21:01:46.0202 0x0098  [ AA339DD8BB128EF66660DFBBB59043D3, 76D9F849AFDDA38E04549EB67B4163478776F1B6EF46434168278F84FEB8FC5C ] C:\Windows\System32\netlogon.dll
21:01:46.0202 0x0098  C:\Windows\System32\netlogon.dll - ok
21:01:46.0205 0x0098  [ A52B6CC24063CC83C78C0E6F24DEEC01, 77E0D2B2356E71F9BE52FA479C9DDE17C453C198BB49CD4A97F2309628D82E3B ] C:\Windows\System32\dnsapi.dll
21:01:46.0205 0x0098  C:\Windows\System32\dnsapi.dll - ok
21:01:46.0207 0x0098  [ 8FFE297B8449386E7B6851458B6E474E, E149B37E11091D69D926242517E5655596594A6F01FEF06EB65D6BA5B354E326 ] C:\Windows\System32\logoncli.dll
21:01:46.0207 0x0098  C:\Windows\System32\logoncli.dll - ok
21:01:46.0209 0x0098  [ A199DE544BF5C61C134B22C7592226FC, AF0CC2DA847036F5FE6DD9FBEDA7C3D05AF291873D4EAE121676DC6E8841A78F ] C:\Windows\System32\schannel.dll
21:01:46.0209 0x0098  C:\Windows\System32\schannel.dll - ok
21:01:46.0212 0x0098  [ 95FB6CA4374E343DDD653FCC43F9D26B, 911A240F9C1DD155C2B1CD85FE4A8044EB2816AF166CD8CB66EEB905CA352881 ] C:\Windows\System32\wdigest.dll
21:01:46.0212 0x0098  C:\Windows\System32\wdigest.dll - ok
21:01:46.0215 0x0098  [ 5D8874A8C11DDDDE29E12DE0E2013493, 3E9A57137BF622AF83E3E4D58971E2C0200559CCA7545D16CF263AA03EE9C7D2 ] C:\Windows\System32\rsaenh.dll
21:01:46.0215 0x0098  C:\Windows\System32\rsaenh.dll - ok
21:01:46.0221 0x0098  [ E08088A97F95345E181C3DFCE2C615EF, DEF3B087DF5E10E4F8418029DB6E82546E62FEFA39694B7BD6A48CE8AAFD1B96 ] C:\Windows\System32\pku2u.dll
21:01:46.0221 0x0098  C:\Windows\System32\pku2u.dll - ok
21:01:46.0225 0x0098  [ 8A25506B6948EFBD5A7F37E53CCD36D9, 2A20562ED33ABD1D15C7BE9F4F1E623E3604BCC0F7214D067CD8C3D16B9EC6A7 ] C:\Windows\System32\TSpkg.dll
21:01:46.0225 0x0098  C:\Windows\System32\TSpkg.dll - ok
21:01:46.0227 0x0098  [ D6C7780A364C6BBACFA796BAB9F1B374, 3B5ED1A030BFD0BB73D4FFCD67A6A0B8501EF70293F223EFAA12F430ADF270F9 ] C:\Windows\System32\bcryptprimitives.dll
21:01:46.0227 0x0098  C:\Windows\System32\bcryptprimitives.dll - ok
21:01:46.0230 0x0098  [ 90BDEFC5DF334E5100EAA781D798DE1A, F48B650D811B6D57D2252E326C0C9CC74534BE9D510E7D3403F91D1C5C36281E ] C:\Windows\System32\efslsaext.dll
21:01:46.0230 0x0098  C:\Windows\System32\efslsaext.dll - ok
21:01:46.0232 0x0098  [ 52D3D5E3586988D4D9E34ACAAC33105C, C61B60BA962B25B8334F0941C3535EA4ACA1CC060B8A196E396CA3E11CEEF8A1 ] C:\Windows\System32\credssp.dll
21:01:46.0232 0x0098  C:\Windows\System32\credssp.dll - ok
21:01:46.0235 0x0098  [ ED78427259134C63ED69804D2132B86C, F6F51B8B35881ABCA5580ED111AAC80E466E6474ABAE31EC8BE46C23EDCA77B2 ] C:\Windows\System32\scecli.dll
21:01:46.0235 0x0098  C:\Windows\System32\scecli.dll - ok
21:01:46.0237 0x0098  [ 7CC7DF5B654DA579613F811D8C637E29, 70EAC059C1ED814810C75DBB9F4D188428CB942FFD8869D692158D384EB6BB35 ] C:\Windows\System32\ubpm.dll
21:01:46.0237 0x0098  C:\Windows\System32\ubpm.dll - ok
21:01:46.0240 0x0098  [ C78655BC80301D76ED4FEF1C1EA40A7D, 93B2ED4004ED5F7F3039DD7ECBD22C7E4E24B6373B4D9EF8D6E45A179B13A5E8 ] C:\Windows\System32\svchost.exe
21:01:46.0240 0x0098  C:\Windows\System32\svchost.exe - ok
21:01:46.0242 0x0098  [ B806E50427511BCF4AD8E8239C3E25FA, AB89B48ECCF90F701B314D18BE531CDA5ABE1636C17B994A5E4BE5AAC136B4E3 ] C:\Windows\System32\umpnpmgr.dll
21:01:46.0242 0x0098  C:\Windows\System32\umpnpmgr.dll - ok
21:01:46.0245 0x0098  [ E6EB44ABAAF1F330119F854856C53EBE, 77279972FFBFA984578DD4F17EB615F5D2D93590AF3A9FEFEFDB9128206C9887 ] C:\Windows\System32\SPInf.dll
21:01:46.0245 0x0098  C:\Windows\System32\SPInf.dll - ok
21:01:46.0249 0x0098  [ CD1B5AD07E5F7FEF30E055DCC9E96180, 63C58551F32B0B09377F64A6AE1FA81AF93B8A707A57A8C18722086906AD3046 ] C:\Windows\System32\devrtl.dll
21:01:46.0249 0x0098  C:\Windows\System32\devrtl.dll - ok
21:01:46.0254 0x0098  [ 7A17485DC7D8A7AC81321A42CD034519, 88D8705FA901793FC8C1CFD0175E49A6502BF0FC94A066BA573D2FD13AA5F04A ] C:\Windows\System32\userenv.dll
21:01:46.0254 0x0098  C:\Windows\System32\userenv.dll - ok
21:01:46.0258 0x0098  [ 9C9307C95671AC962F3D6EB3A4A89BAE, D1433791C9B8BCEEAD8937EC18D33E89E4E2012B5975228A8500FD141BC30078 ] C:\Windows\System32\gpapi.dll
21:01:46.0258 0x0098  C:\Windows\System32\gpapi.dll - ok
21:01:46.0261 0x0098  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] C:\Windows\System32\umpo.dll
21:01:46.0261 0x0098  C:\Windows\System32\umpo.dll - ok
21:01:46.0264 0x0098  [ F6C011B46FAEEF33536B2E80F48B5CBE, BDD149D3D6F9F6C8F6F34C311219BE5618CEEFBC7D35E37473A47F1D5D015067 ] C:\Windows\System32\pcwum.dll
21:01:46.0264 0x0098  C:\Windows\System32\pcwum.dll - ok
21:01:46.0270 0x0098  [ 716175021BDA290504CE434273F666BC, FA18CA2D8A5F4335E051E2933147D3C1E7308F7D446E2AEB6596CDEF6E2AFC88 ] C:\Windows\System32\powrprof.dll
21:01:46.0270 0x0098  C:\Windows\System32\powrprof.dll - ok
21:01:46.0273 0x0098  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] C:\Windows\System32\drivers\luafv.sys
21:01:46.0273 0x0098  C:\Windows\System32\drivers\luafv.sys - ok
21:01:46.0278 0x0098  [ 5C3669B71657F22E67A1D4BD49D2CBE7, 7CAE59AA6CA9CBBD70BBD707A155FB169BF3F71096275BF7C0F415B6A092C671 ] C:\Windows\System32\drivers\mbam.sys
21:01:46.0278 0x0098  C:\Windows\System32\drivers\mbam.sys - ok
21:01:46.0282 0x0098  [ D3381DC54C34D79B22CEE0D65BA91B7C, 70DC4ADCA4C0C28BB133287511E329D1B6B9B97F96CDE5B1D2F1F59FE1A965D9 ] C:\Windows\System32\drivers\WUDFPf.sys
21:01:46.0282 0x0098  C:\Windows\System32\drivers\WUDFPf.sys - ok
21:01:46.0287 0x0098  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] C:\Windows\System32\rpcss.dll
21:01:46.0287 0x0098  C:\Windows\System32\rpcss.dll - ok
21:01:46.0290 0x0098  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] C:\Windows\System32\RpcEpMap.dll
21:01:46.0290 0x0098  C:\Windows\System32\RpcEpMap.dll - ok
21:01:46.0292 0x0098  [ 16E964ABF6D1E0F0CC7822FCA9BA754D, 0E461387ACFD641DA22EE542A3C68AF5F7D3A7F967D974E3B198143D461ABE39 ] C:\Windows\System32\wshqos.dll
21:01:46.0292 0x0098  C:\Windows\System32\wshqos.dll - ok
21:01:46.0297 0x0098  [ 31559F3244C6BC00A52030CAA83B6B91, B2025742B5F0025ACE9821D5722DE3F997EEEAB21D2F381C9E307882DF422579 ] C:\Windows\System32\WSHTCPIP.DLL
21:01:46.0297 0x0098  C:\Windows\System32\WSHTCPIP.DLL - ok
21:01:46.0302 0x0098  [ 9AD9E06F8656F296D91FAE8EE5B95A27, 53384747D5864D699BCC4F48E0A5E656430EDAA65DCDAB4B11EA68FC7106459E ] C:\Windows\System32\FirewallAPI.dll
21:01:46.0302 0x0098  C:\Windows\System32\FirewallAPI.dll - ok
21:01:46.0305 0x0098  [ 715F03B4C7223349768013EA95D9E5B7, 09AB0535A54C2E2962F0FD06988D99060F8CECA39B07AC00A63204C773B95893 ] C:\Windows\System32\LogonUI.exe
21:01:46.0306 0x0098  C:\Windows\System32\LogonUI.exe - ok
21:01:46.0312 0x0098  [ 0BEE002C68E28CE6DA161DCF1376D7D7, 1D4EE0B9CE22D139478008D5591B8C9F027C235CBA601F95A96547CF98159D4B ] C:\Windows\System32\authui.dll
21:01:46.0312 0x0098  C:\Windows\System32\authui.dll - ok
21:01:46.0317 0x0098  [ 94E026870A55AAEAFF7853C1754091E9, B2F5D5629D12BDFA98DBED3898368F37D9009C7531B6909C7285A2C11C9A0F93 ] C:\Windows\System32\version.dll
21:01:46.0317 0x0098  C:\Windows\System32\version.dll - ok
21:01:46.0321 0x0098  [ 6011714C8C5C55CBFFAD24D61E879FBD, 75D615082A1C71C6ED3ABB49EDAF660EE538D112CF79B9C8AF0A583D1CE1BBB0 ] C:\Windows\System32\wevtsvc.dll
21:01:46.0321 0x0098  C:\Windows\System32\wevtsvc.dll - ok
21:01:46.0325 0x0098  [ B3BFBD758506ECB50C5804AAA76318F9, 34E079A6AB2D41D1E0B3887B6AE31C43941061B7176FFF2801C3F465C2C89578 ] C:\Windows\System32\cryptui.dll
21:01:46.0325 0x0098  C:\Windows\System32\cryptui.dll - ok
21:01:46.0327 0x0098  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] C:\Windows\System32\audiosrv.dll
21:01:46.0327 0x0098  C:\Windows\System32\audiosrv.dll - ok
21:01:46.0329 0x0098  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] C:\Windows\System32\dhcpcore.dll
21:01:46.0329 0x0098  C:\Windows\System32\dhcpcore.dll - ok
21:01:46.0332 0x0098  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67, E957E4463D318A44BA5109EE3428624DE901C5FF2BA358986DF6C6F059DDBCC2 ] C:\Windows\System32\adtschema.dll
21:01:46.0332 0x0098  C:\Windows\System32\adtschema.dll - ok
21:01:46.0337 0x0098  [ 227E2C382A1E02F8D4965E664D3BBE43, 1CFF20A8BF87ACE4FA4935EBEED72BFB1A1FE902A754899E2F50798D67DF5642 ] C:\Windows\System32\MMDevAPI.dll
21:01:46.0337 0x0098  C:\Windows\System32\MMDevAPI.dll - ok
21:01:46.0340 0x0098  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] C:\Windows\System32\mmcss.dll
21:01:46.0340 0x0098  C:\Windows\System32\mmcss.dll - ok
21:01:46.0342 0x0098  [ 78A1E65207484B7F8D3217507745F47C, 35F413ADB9D157F3666DD15DD58104D629CD9143198A1AB914B73A4A3C9903DD ] C:\Windows\System32\avrt.dll
21:01:46.0342 0x0098  C:\Windows\System32\avrt.dll - ok
21:01:46.0345 0x0098  [ F06BB4E336EA57511FDBAFAFCC47DE62, BE43EC62548E9FF89A9495A1722E22DBB76EEC3764F86E64057B636F27D15765 ] C:\Windows\System32\propsys.dll
21:01:46.0345 0x0098  C:\Windows\System32\propsys.dll - ok
21:01:46.0353 0x0098  [ 7FA8FDC2C2A27817FD0F624E78D3B50C, 7B63F6AA2CD6D4D07EA3C595B868B1A0749BB11620027A2BD9B935E3055481E4 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
21:01:46.0353 0x0098  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
21:01:46.0356 0x0098  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] C:\Windows\System32\wlansvc.dll
21:01:46.0356 0x0098  C:\Windows\System32\wlansvc.dll - ok
21:01:46.0359 0x0098  [ 4E9C2DB10F7E6AE91BF761139D4B745B, 8F63F78294F5585D599A114AF449DCC447CCB239D0F0B490BFE6B34A2146E730 ] C:\Windows\System32\shacct.dll
21:01:46.0359 0x0098  C:\Windows\System32\shacct.dll - ok
21:01:46.0369 0x0098  [ 5B3EBFC3DA142324B388DDCC4465E1FF, 5D58642305311F9BC9B779C9598BFC4E7433B3EA58404BF1FF9466838A2328C7 ] C:\Windows\System32\samlib.dll
21:01:46.0369 0x0098  C:\Windows\System32\samlib.dll - ok
21:01:46.0372 0x0098  [ D29E998E8277666982B4F0303BF4E7AF, 4F19AB5DC173E278EBE45832F6CEAA40E2DF6A2EDDC81B2828122442FE5D376C ] C:\Windows\System32\uxtheme.dll
21:01:46.0372 0x0098  C:\Windows\System32\uxtheme.dll - ok
21:01:46.0375 0x0098  [ 497BFEDDAF3950DD909C3B0C5558A25D, 980EA189929D95EB36E35980FFF0C81F7B78DE9422771FDE8F4AC7A779F5BD89 ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_2b24536c71ed437a\GdiPlus.dll
21:01:46.0375 0x0098  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_2b24536c71ed437a\GdiPlus.dll - ok
21:01:46.0377 0x0098  [ D5CCA1453B98A5801E6D5FF0FF89DC6C, 85F2C2480AAC31B6092187B431A562D79D4CFB1324F925C85055ABAB2483264B ] C:\Windows\System32\audiodg.exe
21:01:46.0377 0x0098  C:\Windows\System32\audiodg.exe - ok
21:01:46.0386 0x0098  [ FE05D03B73000CFF476E1D29109F3A84, 7880B025413338A7B114BECB5DC67605FC7A97142C26FD12F765A64A21805842 ] C:\Program Files\Windows Defender\MpEvMsg.dll
21:01:46.0386 0x0098  C:\Program Files\Windows Defender\MpEvMsg.dll - ok
21:01:46.0393 0x0098  [ 1F4492FE41767CDB8B89D17655847CDD, 184547FAC0C3D7148FAA3F601929A7089DE393BD19929A137DAD743331DD3F77 ] C:\Windows\System32\ntmarta.dll
21:01:46.0394 0x0098  C:\Windows\System32\ntmarta.dll - ok
21:01:46.0397 0x0098  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] C:\Windows\System32\cscsvc.dll
21:01:46.0397 0x0098  C:\Windows\System32\cscsvc.dll - ok
21:01:46.0400 0x0098  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] C:\Windows\System32\gpsvc.dll
21:01:46.0400 0x0098  C:\Windows\System32\gpsvc.dll - ok
21:01:46.0402 0x0098  [ 58775492FFD419248B08325E583C527F, DBB013971F5894F25C222C2D4D50A29DB6DF3C413792EE9CCC1A9E6D85469093 ] C:\Windows\System32\atl.dll
21:01:46.0402 0x0098  C:\Windows\System32\atl.dll - ok
21:01:46.0409 0x0098  [ 2DF36F15B2BC1571A6A542A3C2107920, A918F1EE95269DF973421AF2F5713DEEAF15EF0F77BAA7E8C515FFB69896FB7A ] C:\Windows\System32\nlaapi.dll
21:01:46.0409 0x0098  C:\Windows\System32\nlaapi.dll - ok
21:01:46.0414 0x0098  [ 5C78838B4D166D1A27DB3A8A820C799A, BBF7E1D0B6754CF06BF3936671FDF5BF6E845CA5678D0940EA54E9212B539B7F ] C:\Windows\System32\profsvc.dll
21:01:46.0414 0x0098  C:\Windows\System32\profsvc.dll - ok
21:01:46.0417 0x0098  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] C:\Windows\System32\themeservice.dll
21:01:46.0417 0x0098  C:\Windows\System32\themeservice.dll - ok
21:01:46.0420 0x0098  [ A77BE7CB3222B4FB0AC6C71D1C2698D4, 73566223914BF670DF6B5931FA213E546713531B10391ED65B5256BBD7ABDE7F ] C:\Windows\System32\dsrole.dll
21:01:46.0420 0x0098  C:\Windows\System32\dsrole.dll - ok
21:01:46.0425 0x0098  [ BE097F5BB10F9079FCEB2DC4E7E20F02, 90A88986C8C5F30FB153EC803FEDA6572B2C2630A6C9578FCC017800692694D5 ] C:\Windows\System32\slc.dll
21:01:46.0425 0x0098  C:\Windows\System32\slc.dll - ok
21:01:46.0427 0x0098  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] C:\Windows\System32\es.dll
21:01:46.0427 0x0098  C:\Windows\System32\es.dll - ok
21:01:46.0430 0x0098  [ 50544D04AD845C43130B70212EC05CCD, B2E6B558DE7D273512226685FF53ED17C9B4BF81B739FBCA5D3FC82DF8D2BCF7 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
21:01:46.0430 0x0098  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
21:01:46.0433 0x0098  [ 1A47D52E303B7543E4E6026595B95422, C577CD3837546A7CED5D2E8E97FA2EDACA133B4A8595770EF96CAE519BFE280F ] C:\Windows\System32\comres.dll
21:01:46.0433 0x0098  C:\Windows\System32\comres.dll - ok
21:01:46.0435 0x0098  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] C:\Windows\System32\Sens.dll
21:01:46.0435 0x0098  C:\Windows\System32\Sens.dll - ok
21:01:46.0439 0x0098  [ 29910D50542B1AA0F162EF3339C61B6D, 018F0922384A5757390652865BB2DF876E9DA08B0858BC619B41D2CD14533ED4 ] C:\Windows\System32\PeerDist.dll
21:01:46.0439 0x0098  C:\Windows\System32\PeerDist.dll - ok
21:01:46.0442 0x0098  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB, 018CB95A43CEA2063EA24691C71D51EF60D522C21502ABA8AD93876363D4B857 ] C:\Windows\System32\taskschd.dll
21:01:46.0442 0x0098  C:\Windows\System32\taskschd.dll - ok
21:01:46.0444 0x0098  [ 862596399AAFD2A21DB2AF9270CD4F70, 24CAA19EE791FB3440CE742C9064FCE0CB755EF0789D3CE62058A2CFEF0FF6D2 ] C:\Windows\System32\mstask.dll
21:01:46.0444 0x0098  C:\Windows\System32\mstask.dll - ok
21:01:46.0447 0x0098  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] C:\Windows\System32\uxsms.dll
21:01:46.0447 0x0098  C:\Windows\System32\uxsms.dll - ok
21:01:46.0449 0x0098  [ BD3674BE7FC9D8D3732C83E8499576ED, E6716A5895D629263A4D21959F48840429AB6F4B55A5FA2663EE5E86C9CA2BF1 ] C:\Windows\System32\wtsapi32.dll
21:01:46.0449 0x0098  C:\Windows\System32\wtsapi32.dll - ok
21:01:46.0452 0x0098  [ 7A95C95B6C4CF292D689106BCAE49543, 9029F489E1E817CE12839B8C6656E46190497D445DC3F43C20CF96E5E6BD0691 ] C:\Windows\System32\WUDFSvc.dll
21:01:46.0452 0x0098  C:\Windows\System32\WUDFSvc.dll - ok
21:01:46.0454 0x0098  [ 80E69670BDA10F32A941BA7358E33012, AFEC6DB90B06381074B23DC91BEF34E7EA4C87F4B6D836F6BF6BB05CDDBF7605 ] C:\Windows\System32\WUDFPlatform.dll
21:01:46.0454 0x0098  C:\Windows\System32\WUDFPlatform.dll - ok
21:01:46.0457 0x0098  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] C:\Windows\System32\drivers\fltMgr.sys
21:01:46.0457 0x0098  C:\Windows\System32\drivers\fltMgr.sys - ok
21:01:46.0459 0x0098  [ A3DB3C17EE6CAE65D53602B4E80BCCBC, D802A7C6161F937DC42A6E45FE1BB2C8272819F92C294C180EBCDF8FF72CBFDC ] C:\Windows\System32\PSHED.DLL
21:01:46.0459 0x0098  C:\Windows\System32\PSHED.DLL - ok
21:01:46.0462 0x0098  [ B0945E538CF906BBDDC5A11C8EE868CC, 5F3459F6512918835F7C9400905EC7C1FAEAA7114E0D28C522040C359E3B93F7 ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
21:01:46.0462 0x0098  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
21:01:46.0465 0x0098  [ 5E65B8C0E1AAE00E749BA4AC3B88E854, D641DDD1B14AED7FD1FB8D2B27BAC80548DF6D89A44FD57244FBAFC6F448BA37 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe
21:01:46.0465 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe - ok
21:01:46.0467 0x0098  [ D124F55B9393C976963407DFF51FFA79, EA1E16247C848C8C171C4CD1FA17BC5A018A1FCB0C0DAC25009066B6667B8EEF ] C:\Windows\SysWOW64\ntdll.dll
21:01:46.0468 0x0098  C:\Windows\SysWOW64\ntdll.dll - ok
21:01:46.0470 0x0098  [ 098EF40B77F88148349AAEBFE38E87C7, 4E3CDF9FEDBC2C2C031B5B52C20B0DDD7FAF0672D0B35469E239D93F1BD4BC1F ] C:\Windows\System32\wow64.dll
21:01:46.0471 0x0098  C:\Windows\System32\wow64.dll - ok
21:01:46.0473 0x0098  [ C742077774E78A388F11EC943AD717FC, 1D062803F758D7093608441EDFF72625E5333D2C47B4FC101463148B9A8F685C ] C:\Windows\System32\wow64win.dll
21:01:46.0473 0x0098  C:\Windows\System32\wow64win.dll - ok
21:01:46.0476 0x0098  [ 99F5AEDBA338CE63F047D86E07DA36F6, B21DDAC8568058E02743FFBDB76557BF76F133D3981298E0634D1D2620AFCE2D ] C:\Windows\System32\wow64cpu.dll
21:01:46.0476 0x0098  C:\Windows\System32\wow64cpu.dll - ok
21:01:46.0478 0x0098  [ E80758CF485DB142FCA1EE03A34EAD05, 3F94F8630C7603F9DA79BF021CB56AC5357502BADF6CB12F6CE11E5B2B244153 ] C:\Windows\SysWOW64\kernel32.dll
21:01:46.0478 0x0098  C:\Windows\SysWOW64\kernel32.dll - ok
21:01:46.0481 0x0098  [ 61EABC3358D869519D851B08C8FA512D, 00F4AEB2C0FBEDFBAFAC5E7DA17A5B7328E96216597153D3E7FAC219A284282B ] C:\Windows\SysWOW64\KernelBase.dll
21:01:46.0481 0x0098  C:\Windows\SysWOW64\KernelBase.dll - ok
21:01:46.0483 0x0098  [ 028D74F61952756C9DFFF7969162BB39, 045887F7424A0FAE471BD285ED7A3507EFDCEF986313651E462323ACE3312173 ] C:\Windows\SysWOW64\oleaut32.dll
21:01:46.0483 0x0098  C:\Windows\SysWOW64\oleaut32.dll - ok
21:01:46.0489 0x0098  [ 928CF7268086631F54C3D8E17238C6DD, F058FAFB04E7EBD5CADE9B48195B7AA7C3508F332A89F5E6E5F3F071E8CADD4A ] C:\Windows\SysWOW64\ole32.dll
21:01:46.0489 0x0098  C:\Windows\SysWOW64\ole32.dll - ok
21:01:46.0491 0x0098  [ E46D48A7FE961401F1CBF85531CDF05D, 24CA38641020FF9E07E16CE3992212E2BFD2759E902D12744D4989ADF11995BF ] C:\Windows\SysWOW64\msvcrt.dll
21:01:46.0491 0x0098  C:\Windows\SysWOW64\msvcrt.dll - ok
21:01:46.0494 0x0098  [ D6D3AD7BF1D6F6CE9547613ED5E170A2, EA3BD7FEC193A8CFE1D5736301ACADC476FB6AAC5475A45776D0A638E9845445 ] C:\Windows\SysWOW64\gdi32.dll
21:01:46.0494 0x0098  C:\Windows\SysWOW64\gdi32.dll - ok
21:01:46.0499 0x0098  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3, 01EB95FA3943CF3C6B1A21E473A5C3CB9FCBCE46913B15C96CAC14E4F04075B4 ] C:\Windows\SysWOW64\user32.dll
21:01:46.0499 0x0098  C:\Windows\SysWOW64\user32.dll - ok
21:01:46.0501 0x0098  [ 95E2376B3323F062EB562B8586D0F14A, BD3FA8750123D00AA0967FBA44372C46EA002681DA9C9B77A4F9261553E26017 ] C:\Windows\SysWOW64\advapi32.dll
21:01:46.0501 0x0098  C:\Windows\SysWOW64\advapi32.dll - ok
21:01:46.0505 0x0098  [ C5AD8083CF94201F1F8084ECC696A8B7, 9F9A23DC2587E88C1BF671E9E147F134242002288E22E1C57881F3ED721F4296 ] C:\Windows\SysWOW64\rpcrt4.dll
21:01:46.0505 0x0098  C:\Windows\SysWOW64\rpcrt4.dll - ok
21:01:46.0508 0x0098  [ CFC97F07904067A1E5FAE195D534DA3A, EB4D2D127312EB09E2ACCA3276779E80F90FAF77322684BABF72B8EC6E1F906C ] C:\Windows\SysWOW64\sechost.dll
21:01:46.0508 0x0098  C:\Windows\SysWOW64\sechost.dll - ok
21:01:46.0510 0x0098  [ F08F6FCD09F9BE94C37ACC1B344685FF, DE48D766258B46EFEAB16579421C4BD97ACC6883F782D00E9857F4A0CE7E8A34 ] C:\Windows\SysWOW64\cryptbase.dll
21:01:46.0510 0x0098  C:\Windows\SysWOW64\cryptbase.dll - ok
21:01:46.0513 0x0098  [ 384721EF4024890092625E20CADFAF85, 32FB012437C271CA4408EC60E6858485C2F9489107BBDB7011F728A0D2A26D2C ] C:\Windows\SysWOW64\lpk.dll
21:01:46.0513 0x0098  C:\Windows\SysWOW64\lpk.dll - ok
21:01:46.0515 0x0098  [ 7224D964A6D657374C551C878EB2C386, C6F56D05CFBC06ECEF8CF44DCDE939AB25C3D3C01CA43323F827EE3086836CD9 ] C:\Windows\SysWOW64\sspicli.dll
21:01:46.0515 0x0098  C:\Windows\SysWOW64\sspicli.dll - ok
21:01:46.0519 0x0098  [ 804AAAFEBB3AD5F49334DD906BCB1DE5, EB5DA86810D405555C84F4D452A604665250AB5D01714E0FBECF81CC8E791AC5 ] C:\Windows\SysWOW64\usp10.dll
21:01:46.0519 0x0098  C:\Windows\SysWOW64\usp10.dll - ok
21:01:46.0524 0x0098  [ 18AB2E5A40064ED5F7791AC5946A90F3, B7536CE56702C23B1CEC3E1B6C78866E0A76808B85A92AF3733D9ED9429E004C ] C:\Windows\SysWOW64\msimg32.dll
21:01:46.0524 0x0098  C:\Windows\SysWOW64\msimg32.dll - ok
21:01:46.0526 0x0098  [ 16AB4BD2ACC52109F43739BF0E89E18F, 8BF53004F8A413598B46C2ECFBA1EA581836E0E0839047471622F31A4A065DD7 ] C:\Windows\SysWOW64\shell32.dll
21:01:46.0526 0x0098  C:\Windows\SysWOW64\shell32.dll - ok
21:01:46.0529 0x0098  [ 702254574E7E52052DE39408457B7149, 645CA9E88DA21C63710A04A0F54421018DF415A3D612112C71A255C49325C082 ] C:\Windows\SysWOW64\version.dll
21:01:46.0529 0x0098  C:\Windows\SysWOW64\version.dll - ok
21:01:46.0533 0x0098  [ 8CC3C111D653E96F3EA1590891491D71, 1D326D7D116D76876EE2B14A5BFB7B4328E21DB9B5AAAB9CB67F8EFB93924230 ] C:\Windows\SysWOW64\shlwapi.dll
21:01:46.0533 0x0098  C:\Windows\SysWOW64\shlwapi.dll - ok
21:01:46.0535 0x0098  [ 352B3DC62A0D259A82A052238425C872, 393B24E0D6007C74AEE2FB2EE2C18623D37DF64E279B6767952DCFEE0EACBB10 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
21:01:46.0535 0x0098  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
21:01:46.0539 0x0098  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8, B1A9B2EF000917214C0198958CBD239D1D91B1720EC40DF041262A34D302AD74 ] C:\Windows\SysWOW64\winspool.drv
21:01:46.0539 0x0098  C:\Windows\SysWOW64\winspool.drv - ok
21:01:46.0541 0x0098  [ 454E292861A4EF1D72F43F42BBAF6917, 9179657AA2928627D73608D7EBA5A9A8D7507F9F67DD8EC1011C76AEE4914043 ] C:\Windows\SysWOW64\crypt32.dll
21:01:46.0541 0x0098  C:\Windows\SysWOW64\crypt32.dll - ok
21:01:46.0543 0x0098  [ A90DC9ABD65DB1A8902F361103029952, 26798758976CE53251AC342B966BE0363AE1794BD965C452F5DEBC33E18969F0 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
21:01:46.0543 0x0098  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
21:01:46.0547 0x0098  [ 6377051C63D5552A311935C67E9FDFDC, 3FB82988AAB66813567E8DB951D4EE87F156201070F005FDBF52EF998A323E65 ] C:\Windows\SysWOW64\nsi.dll
21:01:46.0547 0x0098  C:\Windows\SysWOW64\nsi.dll - ok
21:01:46.0548 0x0098  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9, E18D66455D00A6D2A2D7CC0833C233FE8A6DD910B59D6B5B5F82EF91450858DF ] C:\Windows\SysWOW64\sfc.dll
21:01:46.0548 0x0098  C:\Windows\SysWOW64\sfc.dll - ok
21:01:46.0551 0x0098  [ 84799328D87B3091A3BDD251E1AD31F9, F85521215924388830DBB13580688DB70B46AF4C7D82D549D09086438F8D237B ] C:\Windows\SysWOW64\sfc_os.dll
21:01:46.0552 0x0098  C:\Windows\SysWOW64\sfc_os.dll - ok
21:01:46.0553 0x0098  [ CFF35B879D1618D42C86644C717BA947, 1837275202628D3320867A3BF8CFDA15491730C4B74215F7C0D7E140BF01AC3C ] C:\Windows\SysWOW64\winnsi.dll
21:01:46.0553 0x0098  C:\Windows\SysWOW64\winnsi.dll - ok
21:01:46.0558 0x0098  [ 938F39B50BAFE13D6F58C7790682C010, 902000EE51EFEABAF6A4B30F880AA37083D2232C6FC622CA513C4A823390FEDA ] C:\Windows\SysWOW64\msasn1.dll
21:01:46.0558 0x0098  C:\Windows\SysWOW64\msasn1.dll - ok
21:01:46.0561 0x0098  [ 2D0D2DA87BEA7144F2A17F19D0D17E4C, F47B1A6B2284E9B1B664F835D9498C8D11FD411C524877F29783CDA71FB15BB9 ] C:\Windows\SysWOW64\wintrust.dll
21:01:46.0561 0x0098  C:\Windows\SysWOW64\wintrust.dll - ok
21:01:46.0563 0x0098  [ 4BBC85741BAC00060BCEB4982DFB800C, E121981CC060C88479C3AB9F24B52FA7F4C3104245D82F0273BB93B8795A6B91 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2engine.dll
21:01:46.0563 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\a2engine.dll - ok
21:01:46.0566 0x0098  [ 4CEB44AE133F1628917E3385905B88D7, 5900C7EB5B360FF5469AA24E41F3D91C102E6E262937CA9CA40532BE8BE30D55 ] C:\Program Files (x86)\Emsisoft Anti-Malware\bdcore.dll
21:01:46.0566 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\bdcore.dll - ok
21:01:46.0569 0x0098  [ A6F09E5669D9A19035F6D942CAA15882, 68C8AF0CC1923E3A7245392F2480EE665D265DF300A609D2540BF7C6D9C1A1BE ] C:\Windows\SysWOW64\imm32.dll
21:01:46.0569 0x0098  C:\Windows\SysWOW64\imm32.dll - ok
21:01:46.0571 0x0098  [ A543AC1F7138376D778D630A35FCBC4C, 2D824C66A97FC8C39DAFA397CC47495B712D175EEF393486946DA8936BDD466A ] C:\Windows\SysWOW64\psapi.dll
21:01:46.0571 0x0098  C:\Windows\SysWOW64\psapi.dll - ok
21:01:46.0573 0x0098  [ C9618BC9B2B0FD7C1138D8774795A79B, 0AC170669C2626519FA7A745C56BFBA6B83B8537488F5B9EB7BA72448E5E7A43 ] C:\Windows\SysWOW64\msctf.dll
21:01:46.0573 0x0098  C:\Windows\SysWOW64\msctf.dll - ok
21:01:46.0576 0x0098  [ 3CB6A7286422C72C34DAB54A5DFF1A34, 98D21EFFF511E407336A226420701E82554DA01FA05661303836B6860D63749D ] C:\Windows\System32\dui70.dll
21:01:46.0576 0x0098  C:\Windows\System32\dui70.dll - ok
21:01:46.0578 0x0098  [ 8CCDE014A4CDF84564E03ACE064CA753, DD663029B2EB7B12FDB00FCE403D8326141E540E3B9CE84CD5871473D3E2E2CF ] C:\Windows\System32\duser.dll
21:01:46.0578 0x0098  C:\Windows\System32\duser.dll - ok
21:01:46.0580 0x0098  [ D7F1EF374A90709B31591823B002F918, 05FD2837C9B03D14BB2A969C1AD77CAEF047D93DC5D0F6C2ACBF0888E8F7B359 ] C:\Windows\System32\SndVolSSO.dll
21:01:46.0580 0x0098  C:\Windows\System32\SndVolSSO.dll - ok
21:01:46.0583 0x0098  [ DA1B7075260F3872585BFCDD668C648B, 3E10EF6E1A5C341B478322CB78A0AB7BFC70AD8023779B8B4542A7CB4CA756AB ] C:\Windows\System32\dwmapi.dll
21:01:46.0583 0x0098  C:\Windows\System32\dwmapi.dll - ok
21:01:46.0585 0x0098  [ 896F15A6434D93EDB42519D5E18E6B50, 9263F0CEC58D45EBE3FB9C3061FB9392C55A7933B84B4592E6EE13CFC86D5A50 ] C:\Windows\System32\hid.dll
21:01:46.0585 0x0098  C:\Windows\System32\hid.dll - ok
21:01:46.0589 0x0098  [ D6F630C1FD7F436316093AE500363B19, 73A94B4938430396EA4240B1A6676B4E6C19CFAF8C52EFB9A69B4B2175A86307 ] C:\Windows\System32\xmllite.dll
21:01:46.0589 0x0098  C:\Windows\System32\xmllite.dll - ok
21:01:46.0591 0x0098  [ 26B73A85855681500BCC25C7CD9FF5B1, 94D134A6AF53AD629A4505B8B0EA37F61BB43AF4DB71874E7E87853163A9282A ] C:\Windows\System32\WindowsCodecs.dll
21:01:46.0591 0x0098  C:\Windows\System32\WindowsCodecs.dll - ok
21:01:46.0594 0x0098  [ C2762A57DF0EE85E63CE4893C5215313, DDE22212D78353633CEDE27D7210469DE674563991105563CF64CCCE2D0743BD ] C:\Windows\System32\VaultCredProvider.dll
21:01:46.0594 0x0098  C:\Windows\System32\VaultCredProvider.dll - ok
21:01:46.0596 0x0098  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D, 19959D18601712901F03B83150D15E34EBCAB355BB4692C9A28511A72F57FC66 ] C:\Windows\System32\winbrand.dll
21:01:46.0596 0x0098  C:\Windows\System32\winbrand.dll - ok
21:01:46.0598 0x0098  [ CA2985996BB49924B677113DF95CFEA7, 91F63863B1B597AE421CD2C3D8A3E00578B17876E5F5B828D25C2C9B349ECCCD ] C:\Windows\System32\SmartcardCredentialProvider.dll
21:01:46.0598 0x0098  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
21:01:46.0602 0x0098  [ BF352E73615F5461AA6884472435A544, 4B059E79325C5F08CD6FBBE6352E17ADB64B9608CC9EDB36A2DF4D148060C309 ] C:\Windows\System32\BioCredProv.dll
21:01:46.0602 0x0098  C:\Windows\System32\BioCredProv.dll - ok
21:01:46.0606 0x0098  [ 796B8123A7859AFD3A4AE10514DBAEB5, E76F69FAFEC3D66263ED95F3FA9EE309BDDACB287E30583A147DC97F6EEB8844 ] C:\Windows\System32\winbio.dll
21:01:46.0606 0x0098  C:\Windows\System32\winbio.dll - ok
21:01:46.0608 0x0098  [ CC0AB40F02D2C2A12209715A3C1B07B8, 90EB303A4E151340DB382248361FEFC5346C31394791DF83663086C8219C2B20 ] C:\Windows\System32\credui.dll
21:01:46.0608 0x0098  C:\Windows\System32\credui.dll - ok
21:01:46.0611 0x0098  [ 764908FE1FA96F93C95B1B67A0FCED29, 26EF25AB307903C5E806A8CC3B750A491049E5D1225CEDDFCE64DD51AA6F592B ] C:\Windows\System32\netapi32.dll
21:01:46.0612 0x0098  C:\Windows\System32\netapi32.dll - ok
21:01:46.0616 0x0098  [ 6CECA4C6A489C9B2E6073AFDAAE3F607, 127506D1DB38275614CBEB047C133718EF9D03266BA9C98BE55EC7847CFC9C3D ] C:\Windows\System32\netutils.dll
21:01:46.0616 0x0098  C:\Windows\System32\netutils.dll - ok
21:01:46.0620 0x0098  [ 44B9C66177651F3F53C87B665D58D17A, 3FC426115FF87570889DB28D71970B82B525D2A4B9A00EDD273BF083B77A05CE ] C:\Windows\System32\vaultcli.dll
21:01:46.0620 0x0098  C:\Windows\System32\vaultcli.dll - ok
21:01:46.0625 0x0098  [ FC51229C7D4AFA0D6F186133728B95AB, 37E58C8E1C8437D1981725A5DCDACA7316CEFBB570370CEFC8D122F523B96AC0 ] C:\Windows\System32\samcli.dll
21:01:46.0625 0x0098  C:\Windows\System32\samcli.dll - ok
21:01:46.0627 0x0098  [ 3C91392D448F6E5D525A85B7550D8BA9, 6FD0DC73DBE7519E2C643554C2A7F8FBE4F9A678C4241BB54B3C6E65D2ABCF3A ] C:\Windows\System32\wkscli.dll
21:01:46.0627 0x0098  C:\Windows\System32\wkscli.dll - ok
21:01:46.0629 0x0098  [ 972C3301DB3DA91AE06A95F6B4160B1B, 678B533A06C306295FE97DC26CE9BAFFC8EAF1FB7405ACB040719099717744D5 ] C:\Windows\System32\certCredProvider.dll
21:01:46.0629 0x0098  C:\Windows\System32\certCredProvider.dll - ok
21:01:46.0633 0x0098  [ 87FA0C48C3B2E9FEE518818FE26B15B5, DA4042DE9897397AEDCEFF9F69746726237305DDE64464309B6DCC45E05E42F4 ] C:\Windows\System32\rasplap.dll
21:01:46.0633 0x0098  C:\Windows\System32\rasplap.dll - ok
21:01:46.0637 0x0098  [ 019CD868461B646E09BDF04474C19341, 01837EFACB02E52BC6E90C90C4CB01B11D56E449A37EA4FC2695507FF85EA9FE ] C:\Windows\System32\rasapi32.dll
21:01:46.0637 0x0098  C:\Windows\System32\rasapi32.dll - ok
21:01:46.0641 0x0098  [ B28DEEC597C8DEB70C744C7CF9210E3E, E777F192D822990CA6301B3FEA2AEA213FA7901438EB3328914ADF02B6C39DB9 ] C:\Windows\System32\rasman.dll
21:01:46.0641 0x0098  C:\Windows\System32\rasman.dll - ok
21:01:46.0644 0x0098  [ B53C4B69B695EDA1B7E41D35CA4244E2, 3D98E9B263CADA576E4057E059AFC867F6E3F1001F3B73C8BCF9066763A45D9D ] C:\Windows\System32\rtutils.dll
21:01:46.0644 0x0098  C:\Windows\System32\rtutils.dll - ok
21:01:46.0647 0x0098  [ 9BC8610C32C96A2983A65DC21CAFA921, 2A4195F663C9D55939E3D8FEAA208090FDB0B8801A60164A7325B53104797CBC ] C:\Windows\System32\UXInit.dll
21:01:46.0647 0x0098  C:\Windows\System32\UXInit.dll - ok
21:01:46.0649 0x0098  [ 9869A4A10B90546DBD56947839FB4B87, 66C84DCF39D9F6896D55B1623184A028891A0A98ABE6044DE1D4BAD60C3C8D72 ] C:\Windows\System32\oleacc.dll
21:01:46.0649 0x0098  C:\Windows\System32\oleacc.dll - ok
21:01:46.0652 0x0098  [ 019BDD35DE269CB98B22DE8923C2AA3B, 68B216D5331B128CF1BCB3A3F82FD85B119FFDBCB796C907461CDD6248995817 ] C:\Windows\System32\UIAutomationCore.dll
21:01:46.0652 0x0098  C:\Windows\System32\UIAutomationCore.dll - ok
21:01:46.0656 0x0098  [ E424B3EF666B184CEE0B6871AAA8C9F6, D182D9B3A813C75F88CA16A9C236AB6167DF5861D155B5DC016B90918C4BD579 ] C:\Windows\System32\msimg32.dll
21:01:46.0656 0x0098  C:\Windows\System32\msimg32.dll - ok
21:01:46.0658 0x0098  [ 5AA945234E9D4CCE4F715276B9AA712C, 65165BD131056816F009D987FC78AC86FFE0C3C38A27E73F873586B7FF4D59CF ] C:\Windows\System32\imageres.dll
21:01:46.0658 0x0098  C:\Windows\System32\imageres.dll - ok
21:01:46.0660 0x0098  [ C733D233B623B7FFCE5031E4B756EE26, 33CC8B140B0E4A9B702E3468BE2646AEE4273F20C6EA5BAC6C3D8FC8EDEF0881 ] C:\Windows\SysWOW64\profapi.dll
21:01:46.0660 0x0098  C:\Windows\SysWOW64\profapi.dll - ok
21:01:46.0663 0x0098  [ D15618A0FF8DBC2C5BF3726BACC75A0B, ADD81EA1D208907D67802F0E96EC0327BA89021F870BA22B9C7E3A19013A6AE7 ] C:\Windows\SysWOW64\userenv.dll
21:01:46.0663 0x0098  C:\Windows\SysWOW64\userenv.dll - ok
21:01:46.0666 0x0098  [ 6A6B2EE4565A178035BE2A4FF6F2C968, E2E231F1C2E2CE19583483ACC53318651FA7CA2DE46BCB89B4CBF97CA0525122 ] C:\Windows\SysWOW64\wtsapi32.dll
21:01:46.0666 0x0098  C:\Windows\SysWOW64\wtsapi32.dll - ok
21:01:46.0669 0x0098  [ 6C870EEFC0404EF05BFA1151E53F9F4D, 9B0D2129D81EB803A81C3C49DE883C31B1B94C4FC2D973F7BFBD6B5E722BC4EA ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2wsc.dll
21:01:46.0669 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\a2wsc.dll - ok
21:01:46.0672 0x0098  [ 6A354AB50370DBC29137BD2ECA3460E7, EA98E97C9A340958DA1F615B87A18A17229D010E51558D446D34A468C66E2801 ] C:\Program Files (x86)\Emsisoft Anti-Malware\fw32.dll
21:01:46.0672 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\fw32.dll - ok
21:01:46.0675 0x0098  [ 7FF15A4F092CD4A96055BA69F903E3E9, 1B594E6D057C632ABB3A8CF838157369024BD6B9F515CA8E774B22FE71A11627 ] C:\Windows\SysWOW64\ws2_32.dll
21:01:46.0675 0x0098  C:\Windows\SysWOW64\ws2_32.dll - ok
21:01:46.0677 0x0098  [ 10FB16B50AFFDA6D44588F3C445DC273, 6CDA17DA9B44D11E69F7C6682FA633EA75731623BB21B429A0FE2086ED4495A7 ] C:\Windows\SysWOW64\setupapi.dll
21:01:46.0677 0x0098  C:\Windows\SysWOW64\setupapi.dll - ok
21:01:46.0679 0x0098  [ 3FFAEA12666E565FF51BF2FCA674F543, 95BA8DBDA495C170E075F48627D7DD89C6B29BE0CE0D0D8316B0236692675060 ] C:\Windows\SysWOW64\cfgmgr32.dll
21:01:46.0679 0x0098  C:\Windows\SysWOW64\cfgmgr32.dll - ok
21:01:46.0682 0x0098  [ CC4ED8BEA78B0DCA6F217E014C3291A7, 01104182E4E6FB3CF6397936D30B2CE3486967586D1B94187B59A8232DAE39FF ] C:\Windows\SysWOW64\devobj.dll
21:01:46.0682 0x0098  C:\Windows\SysWOW64\devobj.dll - ok
21:01:46.0686 0x0098  [ 3FD15B4611D9BDA3F8013548C0ECAECA, B47A8D9985D9B71EB870816A0AB2B6403D394CCBDF7DE5378D5721D58D68D28D ] C:\Windows\SysWOW64\ntmarta.dll
21:01:46.0686 0x0098  C:\Windows\SysWOW64\ntmarta.dll - ok
21:01:46.0691 0x0098  [ A8BB45F9ECAD993461E0FEF8E2A99152, ACB756EA54E71F124D928829666B5B439785593877FF7C0C76ADCF954F4E6C94 ] C:\Windows\SysWOW64\Wldap32.dll
21:01:46.0691 0x0098  C:\Windows\SysWOW64\Wldap32.dll - ok
21:01:46.0693 0x0098  [ 2B81776DA02017A37FE26C662827470E, A656353C50EE08422145D00DB9CFD9F6D3E664753B3C454B171E2A56A8AA94DC ] C:\Windows\System32\IPHLPAPI.DLL
21:01:46.0693 0x0098  C:\Windows\System32\IPHLPAPI.DLL - ok
21:01:46.0697 0x0098  [ 4C9210E8F4E052F6A4EB87716DA0C24C, 460F7990BDADB7D58D6DC95B094D30A2EFDC4CEED444B18A2F36E8D9076FB8B9 ] C:\Windows\System32\winnsi.dll
21:01:46.0697 0x0098  C:\Windows\System32\winnsi.dll - ok
21:01:46.0699 0x0098  [ 69BEBE14C562CDAB8C5F4C881E7D1343, 255C4E7B445E42850D4BE58C1E0B37BC73F5B51BEDDD89E72EA8B322D2FDC5CD ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2core32.dll
21:01:46.0699 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\a2core32.dll - ok
21:01:46.0703 0x0098  [ F83FB687FE3CB8908CD98B509DCB4EA6, 09D98362148CFD691EF252695F76BB05F56AAE7D13561458A87199D9A7DC870D ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix86.dll
21:01:46.0703 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\a2dix86.dll - ok
21:01:46.0705 0x0098  [ 731C7B93FBB09282787C3BC872DCE6BA, 55EDE94C3A28FCEDA9A06E2AA9EB37CF4E7807D2719F1609045D2B404A1AD451 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2update.dll
21:01:46.0705 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\a2update.dll - ok
21:01:46.0708 0x0098  [ 1EBE9524683C7C4EED8B8BC93FB6FBCC, 78AF098E270EDE62466557091F14B2D37BDAB488F02E7CC769251FD17C02BA4A ] C:\Windows\SysWOW64\fltLib.dll
21:01:46.0708 0x0098  C:\Windows\SysWOW64\fltLib.dll - ok
21:01:46.0711 0x0098  [ 803AF5E2B4AB04B823EDF1CEDBF217BB, 71D218B3C07F1AAE2A295C05900CA8CDB35E06E78063E856BE00F84EE7DA01B5 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2framework.dll
21:01:46.0711 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\a2framework.dll - ok
21:01:46.0714 0x0098  [ 9E28CAA559C533A531CCEE624DA8C64E, C0C1C6FF2C1F0D530B7B58CB5D19F0213488D58994B3BF8BF956E75D840F0A34 ] C:\Program Files (x86)\Emsisoft Anti-Malware\evcdiff.dll
21:01:46.0714 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\evcdiff.dll - ok
21:01:46.0716 0x0098  [ A8EDB86FC2A4D6D1285E4C70384AC35A, 61B8955CE0A2AA9D0719920B30216717B349B6FBE11C697C31CFA84F859CC1AE ] C:\Windows\System32\dllhost.exe
21:01:46.0716 0x0098  C:\Windows\System32\dllhost.exe - ok
21:01:46.0722 0x0098  [ 14DFDEAF4E589ED3F1FF187A86B9408C, 86D383D5B90A86556521C62C50F7BE0306FCD24FD86A8A37E8320FAE948531EB ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll
21:01:46.0722 0x0098  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_a4d6a923711520a9\comctl32.dll - ok
21:01:46.0724 0x0098  [ A0A2C1D812C231C9BFE119FDC68E341B, F94446594EE17505956A715DFB28B51D09F00A7A65E56950661B889A57DE8FA8 ] C:\Windows\System32\IDStore.dll
21:01:46.0724 0x0098  C:\Windows\System32\IDStore.dll - ok
21:01:46.0727 0x0098  [ 6CEF7856A3EFAC59470F6208F0F585CE, 0F7A80DB821FDE6580E9481B6DA44844F717DDB4983B0E3D562BE43726153951 ] C:\Windows\System32\mpr.dll
21:01:46.0727 0x0098  C:\Windows\System32\mpr.dll - ok
21:01:46.0729 0x0098  [ BAFE84E637BF7388C96EF48D4D3FDD53, 11C194D9ADCE90027272C627D7FBF3BA5025FF0F7B26A8333F764E11E1382CF9 ] C:\Windows\System32\userinit.exe
21:01:46.0730 0x0098  C:\Windows\System32\userinit.exe - ok
21:01:46.0734 0x0098  [ A5300E4E099DD3D306F194988C3E18B2, 57B7C1646E0AF7D7E72B9642E588C6AC45F48FA49949726BA97580654B462372 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2hooks64.dll
21:01:46.0734 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\a2hooks64.dll - ok
21:01:46.0736 0x0098  [ F162D5F5E845B9DC352DD1BAD8CEF1BC, 8A7B7528DB30AB123B060D8E41954D95913C07BB40CDAE32E97F9EDB0BAF79C7 ] C:\Windows\System32\dwm.exe
21:01:46.0736 0x0098  C:\Windows\System32\dwm.exe - ok
21:01:46.0740 0x0098  [ FCFCD1101C5DA23B4B95F93D02B2C169, 040A086875B6C5475490A2F8B0CF4FF20DDB4FEDFE5FCABBA49692AA05F40527 ] C:\Windows\System32\dwmredir.dll
21:01:46.0740 0x0098  C:\Windows\System32\dwmredir.dll - ok
21:01:46.0742 0x0098  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] C:\Windows\System32\drivers\lltdio.sys
21:01:46.0742 0x0098  C:\Windows\System32\drivers\lltdio.sys - ok
21:01:46.0744 0x0098  [ 4BA77A5EF71C14C764B0ED4701683E3E, 066A064CDBE09BF8BE1DF5B259F30FF6C124A1C3D637800D3E19E8E25EDB950E ] C:\Windows\System32\dwmcore.dll
21:01:46.0744 0x0098  C:\Windows\System32\dwmcore.dll - ok
21:01:46.0747 0x0098  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] C:\Windows\System32\drivers\nwifi.sys
21:01:46.0747 0x0098  C:\Windows\System32\drivers\nwifi.sys - ok
21:01:46.0749 0x0098  [ D63BEE2A8B22482F7080A8D3F2E1A733, 20E2CC793E55548CA8F6EB7F02D51EEA7632E16302C9213705F3A9684AD9F41F ] C:\Windows\System32\d3d10_1.dll
21:01:46.0749 0x0098  C:\Windows\System32\d3d10_1.dll - ok
21:01:46.0752 0x0098  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] C:\Windows\System32\drivers\ndisuio.sys
21:01:46.0752 0x0098  C:\Windows\System32\drivers\ndisuio.sys - ok
21:01:46.0757 0x0098  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] C:\Windows\System32\drivers\rspndr.sys
21:01:46.0757 0x0098  C:\Windows\System32\drivers\rspndr.sys - ok
21:01:46.0759 0x0098  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] C:\Windows\System32\lmhsvc.dll
21:01:46.0759 0x0098  C:\Windows\System32\lmhsvc.dll - ok
21:01:46.0762 0x0098  [ 426BA4E737A7988FD1202AF2F2B2F4A6, 3E84B1EF044C157B7B228AE86A4466BC7E24B2D85F07636D0119041E3D630A2F ] C:\Windows\System32\d3d10_1core.dll
21:01:46.0762 0x0098  C:\Windows\System32\d3d10_1core.dll - ok
21:01:46.0764 0x0098  [ F404E59DB6A0F122AB26BF4F3E2FD0FA, 47F30401D86006821475F911A3D5E9B23571F6A8B4A9942891298E33D070D5D5 ] C:\Windows\System32\dxgi.dll
21:01:46.0764 0x0098  C:\Windows\System32\dxgi.dll - ok
21:01:46.0767 0x0098  [ F9EC845C5EECF20E9A67F9F805F2EF1F, C3DBA8CF93DBF50954B1BF6D7EF3F6F5DD1A56DC62B7EB2749C54D9B65D9BB43 ] C:\Windows\System32\keyiso.dll
21:01:46.0767 0x0098  C:\Windows\System32\keyiso.dll - ok
21:01:46.0769 0x0098  [ B73A6E4B319AFFE64582AC5C1801BB3F, 274EEA0743DC659180E691654CBB17136E9E9D83B07E302B47EA5B103EA57710 ] C:\Windows\System32\nrpsrv.dll
21:01:46.0769 0x0098  C:\Windows\System32\nrpsrv.dll - ok

21:01:46.0772 0x0098  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] C:\Windows\System32\nsisvc.dll
21:01:46.0772 0x0098  C:\Windows\System32\nsisvc.dll - ok
21:01:46.0774 0x0098  [ 71C7B65B6557B75B99907E76956AE4B8, 38AD0E96D6AD36C0643761D5F5DB7A2802E059008C0984ABF61F4D8703DE4B3B ] C:\Windows\System32\dhcpcore6.dll
21:01:46.0774 0x0098  C:\Windows\System32\dhcpcore6.dll - ok
21:01:46.0776 0x0098  [ CD55F5355D8F55D44C9F4ED875705BD6, 321C26E3CD9F376D30F05FBDF00E96399512ED705D867E8B14793D9CE69A1C1F ] C:\Windows\System32\dnsrslvr.dll
21:01:46.0776 0x0098  C:\Windows\System32\dnsrslvr.dll - ok
21:01:46.0779 0x0098  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] C:\Windows\System32\eapsvc.dll
21:01:46.0779 0x0098  C:\Windows\System32\eapsvc.dll - ok
21:01:46.0782 0x0098  [ 87356377F31DA5F20A833811CD59499C, 4FEC1FD3AC4E4E34DCBC0109B248952604F438C84B1604EB9E2359FA721E23C4 ] C:\Windows\System32\eapphost.dll
21:01:46.0782 0x0098  C:\Windows\System32\eapphost.dll - ok
21:01:46.0784 0x0098  [ 885D0942E0F28DB90919BE3129ECF279, 5A10D90EE656ECE3DCA174D6F924641509819FC20CB6EF46B5E1723E52DE85BE ] C:\Windows\System32\dnsext.dll
21:01:46.0784 0x0098  C:\Windows\System32\dnsext.dll - ok
21:01:46.0787 0x0098  [ 0040C486584A8E582C861CFB57AB5387, 5EE17B55CB702D14AE75B19226DE21CD2498BDA6C6EF5872FDB8A718F401FED1 ] C:\Windows\System32\FWPUCLNT.DLL
21:01:46.0787 0x0098  C:\Windows\System32\FWPUCLNT.DLL - ok
21:01:46.0790 0x0098  [ 9FCA3A84338ADEF2AFF67CDA46EF8539, 087DF72096852AE98C56990EE6E68835BE95E7E49ECDDE8B54DAC11C9E07FE94 ] C:\Windows\System32\umb.dll
21:01:46.0790 0x0098  C:\Windows\System32\umb.dll - ok
21:01:46.0793 0x0098  [ AC4C51EB24AA95B77F705AB159189E24, 6A671B92A69755DE6FD063FCBE4BA926D83B49F78C42DBAEED8CDB6BBC57576A ] C:\Windows\explorer.exe
21:01:46.0793 0x0098  C:\Windows\explorer.exe - ok
21:01:46.0795 0x0098  [ F568F7C08458D69E4FCD8675BBB107E4, A5FA25ECF248999A68CCECFBB508BFA1ADD18A23E20A9A9081A87C41CAAA36C0 ] C:\Windows\System32\dhcpcsvc.dll
21:01:46.0795 0x0098  C:\Windows\System32\dhcpcsvc.dll - ok
21:01:46.0798 0x0098  [ 4CBCC37856EA2039C27A2FB661DDA0E5, 74CBFAB3092A9564BDDFCB84DB3E3F8BCFD1492938ADF187423D3355D73D21C6 ] C:\Windows\System32\dhcpcsvc6.dll
21:01:46.0798 0x0098  C:\Windows\System32\dhcpcsvc6.dll - ok
21:01:46.0800 0x0098  [ A648C4A06DE367065B24056D067B4460, 2412487D65A833DDD9AB17D039515CC08DA22D006259EC4B03E42475FAFFD2AD ] C:\Windows\System32\wlanmsm.dll
21:01:46.0800 0x0098  C:\Windows\System32\wlanmsm.dll - ok
21:01:46.0803 0x0098  [ 06A1386B6E3A0CBC368665C1840906F4, C10BCA5092A0B3F9435CE4D65C7449528C89F5C5243B410878D2EBF516DA2FB2 ] C:\Windows\System32\wlansec.dll
21:01:46.0803 0x0098  C:\Windows\System32\wlansec.dll - ok
21:01:46.0810 0x0098  [ 0D753307D274F3688BD21C377B616700, 5DD08E77A11F2561FB96BA212FDDFE21D4394C69C34C3EB88F7F5CD068EE55BF ] C:\Windows\System32\eappcfg.dll
21:01:46.0810 0x0098  C:\Windows\System32\eappcfg.dll - ok
21:01:46.0811 0x0098  [ 65522E77A1360DBC8D199DA3BF5EFFE4, E9D748070FA478A3D37F15049F998D340885C0DC5FCE03BFCE5D521C9EBA7350 ] C:\Windows\System32\eappprxy.dll
21:01:46.0812 0x0098  C:\Windows\System32\eappprxy.dll - ok
21:01:46.0814 0x0098  [ 73FCB7919DEE80EE556F2E498594EBAE, D0F7A0AD3BC33263E9C2CF9787DD326436F9E0C9F5031D769F8A43C64C08A762 ] C:\Windows\System32\onex.dll
21:01:46.0814 0x0098  C:\Windows\System32\onex.dll - ok
21:01:46.0817 0x0098  [ 97E43F324BE1503CB2FFB058534688DA, 50C781DF38D0D38C9A5420AB1FFF8672DC13FD1ED8E9F5432B4BA3077A7435D5 ] C:\Windows\System32\l2gpstore.dll
21:01:46.0817 0x0098  C:\Windows\System32\l2gpstore.dll - ok
21:01:46.0820 0x0098  [ 5C29199C9F0EDE64F17F268084EC4392, EA9FD588A8C89399DD287399A912B356A4234CFE418239B227D255749F5DDDE2 ] C:\Windows\System32\msxml6.dll
21:01:46.0820 0x0098  C:\Windows\System32\msxml6.dll - ok
21:01:46.0823 0x0098  [ 7D5645EE0EA77D539828433D9B95F5EB, EEF81E9B2205FC456DB6095AD0AEAB38BB131D3BCD090EA6CD91D5568ACAFB7F ] C:\Windows\System32\WinSCard.dll
21:01:46.0823 0x0098  C:\Windows\System32\WinSCard.dll - ok
21:01:46.0826 0x0098  [ 7F1B4C6FF3B85F9ADF74055187B8A22C, CC95DA5662638AACBE9643DCB236464C2C2095A8D5CDC8A747045870BE9D0E7D ] C:\Windows\System32\wlanutil.dll
21:01:46.0826 0x0098  C:\Windows\System32\wlanutil.dll - ok
21:01:46.0828 0x0098  [ 730BF204A595D5B6D7DC57A247CC741C, 264C6901F4A49B738BBD04BCA1783DEE892885BADE9085B0AEA40BAE7CC0A218 ] C:\Windows\System32\wlgpclnt.dll
21:01:46.0828 0x0098  C:\Windows\System32\wlgpclnt.dll - ok
21:01:46.0830 0x0098  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] C:\Windows\System32\shsvcs.dll
21:01:46.0830 0x0098  C:\Windows\System32\shsvcs.dll - ok
21:01:46.0833 0x0098  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] C:\Windows\System32\schedsvc.dll
21:01:46.0833 0x0098  C:\Windows\System32\schedsvc.dll - ok
21:01:46.0836 0x0098  [ 03706015DB44368375AEBE6339490E66, 02EB28B5156E320C1EBABC03D37E94EB770A721B99E1DD276F8DC2A50D76C381 ] C:\Windows\System32\netcfgx.dll
21:01:46.0836 0x0098  C:\Windows\System32\netcfgx.dll - ok
21:01:46.0841 0x0098  [ BC414631876B2F28B8DAB08E849C12C5, 5973654AA3E90E6B699B0A43F645B893D95BAA803129B6967D746C8239AB26E3 ] C:\Windows\System32\ktmw32.dll
21:01:46.0841 0x0098  C:\Windows\System32\ktmw32.dll - ok
21:01:46.0843 0x0098  [ EED05D42D91835064703E2318552ED25, E9EE1E2253445B207B76F5D3073C612ED979A982522C1515E0FE8FA9641AE568 ] C:\Windows\System32\ExplorerFrame.dll
21:01:46.0843 0x0098  C:\Windows\System32\ExplorerFrame.dll - ok
21:01:46.0846 0x0098  [ 024352FEEC9042260BB4CFB4D79A206B, 60CB39086E10C5B66EBC15E4DF219620B344B4358D2918AB6BB3448A0AC8BE36 ] C:\Windows\System32\EhStorShell.dll
21:01:46.0846 0x0098  C:\Windows\System32\EhStorShell.dll - ok
21:01:46.0848 0x0098  [ 32802C0F6FC7C8F561B9D91F52A46421, EE02CF54FC3626D85849EF14D9B7B57419F12D1DD0735C25ECBD987EE53F634B ] C:\Windows\System32\cscui.dll
21:01:46.0848 0x0098  C:\Windows\System32\cscui.dll - ok
21:01:46.0850 0x0098  [ 1BF0CB861A48FEB1638228760750F3CB, 37C781A8C546EAD8B4D28BD7D730B9AC78EB799599AD69DAD9054B6F9F1DD6BD ] C:\Windows\System32\cscapi.dll
21:01:46.0850 0x0098  C:\Windows\System32\cscapi.dll - ok
21:01:46.0853 0x0098  [ 7EE5F17A21D9A9101207DF4BC37B085D, C07A56D52449B9F126B617FB4EFDC22EFE043C9B257B01967EA2FCCCA6216763 ] C:\Windows\System32\cscdll.dll
21:01:46.0853 0x0098  C:\Windows\System32\cscdll.dll - ok
21:01:46.0856 0x0098  [ 7BBF670114373CE6A203FA155A9E0D0A, 36EF0A36C679E53B1B169289BD3C05D7C2839DC20C8C87BF520B633911FDE198 ] C:\Windows\System32\ntshrui.dll
21:01:46.0856 0x0098  C:\Windows\System32\ntshrui.dll - ok
21:01:46.0858 0x0098  [ 1D63F4366288B8A7595397E27010FD44, 99EA4DDD88D9C4A4CC9B238F533CB4D2C062D46239173997E8594D8A75811A01 ] C:\Windows\System32\IconCodecService.dll
21:01:46.0858 0x0098  C:\Windows\System32\IconCodecService.dll - ok
21:01:46.0861 0x0098  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7, 4BC5A1279885EEFBEB27333AF719622A5FCDD9606697692C1978E434CE264D80 ] C:\Windows\System32\taskcomp.dll
21:01:46.0861 0x0098  C:\Windows\System32\taskcomp.dll - ok
21:01:46.0863 0x0098  [ 945E54F23C72D37B8CD1987AF0DB63BF, C2B217C94DBCA0A31ED834B9D492B53B25B235DDD02B1D1200E76609D32772EA ] C:\Windows\System32\fveapi.dll
21:01:46.0863 0x0098  C:\Windows\System32\fveapi.dll - ok
21:01:46.0866 0x0098  [ 694865362F0965779F92BCFE97712323, 825EB75E37AFE9B738869FB5D95020D4F44AD419C2F6C5A658F82A5242FDEF6C ] C:\Windows\System32\tbs.dll
21:01:46.0866 0x0098  C:\Windows\System32\tbs.dll - ok
21:01:46.0869 0x0098  [ 891ECFD08E2C538B7948CBC45106D697, 628D0D618FF3A70E9FBE3B2C7206C9365ED2297784A5F10FFA05BD2C56657013 ] C:\Windows\System32\fvecerts.dll
21:01:46.0869 0x0098  C:\Windows\System32\fvecerts.dll - ok
21:01:46.0873 0x0098  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] C:\Windows\System32\drivers\http.sys
21:01:46.0873 0x0098  C:\Windows\System32\drivers\http.sys - ok
21:01:46.0874 0x0098  [ B96C17B5DC1424D56EEA3A99E97428CD, AF0A85066A7983878DC1C663811CE61C6CA1912DC956184F878B7B82DB93C651 ] C:\Windows\System32\spoolsv.exe
21:01:46.0874 0x0098  C:\Windows\System32\spoolsv.exe - ok
21:01:46.0877 0x0098  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] C:\Windows\System32\BFE.DLL
21:01:46.0877 0x0098  C:\Windows\System32\BFE.DLL - ok
21:01:46.0879 0x0098  [ 517110BD83835338C037269E603DB55D, 499A803DE14905F2FF7BCA56D81CC983E16A8D9CEA93EC4B84A06A366E7CB939 ] C:\Windows\System32\taskhost.exe
21:01:46.0880 0x0098  C:\Windows\System32\taskhost.exe - ok
21:01:46.0882 0x0098  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] C:\Windows\System32\drivers\cdfs.sys
21:01:46.0882 0x0098  C:\Windows\System32\drivers\cdfs.sys - ok
21:01:46.0886 0x0098  [ 91CE0D3DC57DD377E690A2D324022B08, 61874463956C0BCA5139522F34E974E5F638A092E0FD5C59DD30DE61D9AB8B0E ] C:\Windows\System32\drivers\bowser.sys
21:01:46.0886 0x0098  C:\Windows\System32\drivers\bowser.sys - ok
21:01:46.0891 0x0098  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] C:\Windows\System32\drivers\mpsdrv.sys
21:01:46.0891 0x0098  C:\Windows\System32\drivers\mpsdrv.sys - ok
21:01:46.0893 0x0098  [ FAF015B07E3A2874A790A39B7D2C579F, C614B0E80B38EBF7C670EEB833F5E476B33042097DA07206D6C5EE3E52B9A427 ] C:\Windows\System32\drivers\mrxsmb.sys
21:01:46.0893 0x0098  C:\Windows\System32\drivers\mrxsmb.sys - ok
21:01:46.0896 0x0098  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] C:\Windows\System32\MPSSVC.dll
21:01:46.0896 0x0098  C:\Windows\System32\MPSSVC.dll - ok
21:01:46.0900 0x0098  [ 08E2345DF129082BCDFFDC1440F9C00D, 2ADF69F49DF8C43D4440B6C8A62085C51518CA895A88D37264C60A0B4B1EC55F ] C:\Windows\System32\drivers\mrxsmb10.sys
21:01:46.0900 0x0098  C:\Windows\System32\drivers\mrxsmb10.sys - ok
21:01:46.0902 0x0098  [ 108D87409C5812EF47D81E22843E8C9D, CAE9B91B6BD1DF1552463BD63A06288F5D3E0B81B040BC1C7EC0C2A0119CCECA ] C:\Windows\System32\drivers\mrxsmb20.sys
21:01:46.0902 0x0098  C:\Windows\System32\drivers\mrxsmb20.sys - ok
21:01:46.0907 0x0098  [ C67F8A962B2534224D5908D16D2AD3CE, CAC1821F5E867285638AEE7AE33CE574BCCF16277AC5AD805650B48F7759B4B4 ] C:\Windows\System32\wfapigp.dll
21:01:46.0907 0x0098  C:\Windows\System32\wfapigp.dll - ok
21:01:46.0910 0x0098  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] C:\Windows\System32\wkssvc.dll
21:01:46.0910 0x0098  C:\Windows\System32\wkssvc.dll - ok
21:01:46.0913 0x0098  [ 15597883FBE9B056F276ADA3AD87D9AF, B347E0B11228E38313C59C8ED984253A8A1FF482ED137CF5F488C4AFD6B08857 ] C:\Windows\System32\cryptsvc.dll
21:01:46.0913 0x0098  C:\Windows\System32\cryptsvc.dll - ok
21:01:46.0917 0x0098  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] C:\Windows\System32\dps.dll
21:01:46.0917 0x0098  C:\Windows\System32\dps.dll - ok
21:01:46.0919 0x0098  [ 8269210DAF3B12BC8300631B28A2A442, EABEB792C2EA8D4A1A7B13281CF557C194D5667AE0BA2A2D5664908D8269113D ] C:\Windows\System32\wiarpc.dll
21:01:46.0919 0x0098  C:\Windows\System32\wiarpc.dll - ok
21:01:46.0922 0x0098  [ E6F0F82788E8BD0F7A616350EFA0761C, 13091DCB3E3F4F52C3FF210E93AAF1DCE142CFC09F671AEAC5B922393B23E67B ] C:\Windows\System32\actxprxy.dll
21:01:46.0922 0x0098  C:\Windows\System32\actxprxy.dll - ok
21:01:46.0924 0x0098  [ 1834B31C749B86DAC233BBBA1C03BC48, 27FCA9196842C0BB53CCAD895870A0EB10D2F8ED67E5486A4437067BD4BC4448 ] C:\Windows\System32\mscms.dll
21:01:46.0924 0x0098  C:\Windows\System32\mscms.dll - ok
21:01:46.0926 0x0098  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567, 426FB40A065FEF61980C803EF72D0D326C623340C3AE99CA8AFFDEFB81E8D49D ] C:\Windows\System32\vssapi.dll
21:01:46.0926 0x0098  C:\Windows\System32\vssapi.dll - ok
21:01:46.0929 0x0098  [ 9A9B2E57B2FF59AE76652DA8723640D0, 8D7458CC85EA9B9008B3F98F14C62A33035840D85058664B55928CB3464903FC ] C:\Program Files (x86)\GlassWire\GWCtlSrv.exe
21:01:46.0929 0x0098  C:\Program Files (x86)\GlassWire\GWCtlSrv.exe - ok
21:01:46.0931 0x0098  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] C:\Windows\System32\pcasvc.dll
21:01:46.0931 0x0098  C:\Windows\System32\pcasvc.dll - ok
21:01:46.0934 0x0098  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] C:\Windows\System32\snmptrap.exe
21:01:46.0934 0x0098  C:\Windows\System32\snmptrap.exe - ok
21:01:46.0939 0x0098  [ 91A8E32B00BF7899EDAB6783287DDDA6, 49451722317AB42B3DE407EFCB9CC560C1455217AC3E2F11F74D08C1708473C5 ] C:\Windows\System32\PeerDistSh.dll
21:01:46.0939 0x0098  C:\Windows\System32\PeerDistSh.dll - ok
21:01:46.0941 0x0098  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] C:\Windows\System32\provsvc.dll
21:01:46.0941 0x0098  C:\Windows\System32\provsvc.dll - ok
21:01:46.0946 0x0098  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] C:\Windows\System32\sstpsvc.dll
21:01:46.0946 0x0098  C:\Windows\System32\sstpsvc.dll - ok
21:01:46.0949 0x0098  [ 287923557447D7E4BDD7E65B1F0F5428, 14D85A0F036F28D77AA9723C3D7E8C4DA9BDFF8A1AD9BEA6FE5756DBF5D00F08 ] C:\Windows\System32\vsstrace.dll
21:01:46.0949 0x0098  C:\Windows\System32\vsstrace.dll - ok
21:01:46.0951 0x0098  [ 3E29914113EC4B968BA5EB1F6D194A0A, C8D5572CA8D7624871188F0ACABC3AE60D4C5A4F6782D952B9038DE3BC28B39A ] C:\Program Files (x86)\GlassWire\msvcp110.dll
21:01:46.0951 0x0098  C:\Program Files (x86)\GlassWire\msvcp110.dll - ok
21:01:46.0954 0x0098  [ 4BA25D2CBE1587A841DCFB8C8C4A6EA6, B30160E759115E24425B9BCDF606EF6EBCE4657487525EDE7F1AC40B90FF7E49 ] C:\Program Files (x86)\GlassWire\msvcr110.dll
21:01:46.0954 0x0098  C:\Program Files (x86)\GlassWire\msvcr110.dll - ok
21:01:46.0957 0x0098  [ 03A03A453F1AAAE0C73AAAF895321C7A, BB46C581347EDA9CAF287E24163A593F07BD723E1C250ADD8E5C46BB349B668C ] C:\Windows\SysWOW64\FWPUCLNT.DLL
21:01:46.0957 0x0098  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
21:01:46.0959 0x0098  [ CA9F7888B524D8100B977C81F44C3234, 57F3353F89724147D8AC8B69B12C1303DF26978309776F5F8CCF074526A915D3 ] C:\Windows\SysWOW64\winhttp.dll
21:01:46.0959 0x0098  C:\Windows\SysWOW64\winhttp.dll - ok
21:01:46.0962 0x0098  [ 02C61D8AD469417F5508225C75DE3236, 579555AB92DA532D69E14B62064B7D415338A963099BB84B599E1FF55D933787 ] C:\Windows\SysWOW64\webio.dll
21:01:46.0962 0x0098  C:\Windows\SysWOW64\webio.dll - ok
21:01:46.0964 0x0098  [ 8999B8631C7FD9F7F9EC3CAFD953BA24, 4E96D3EACCB1EF7DC429CAF433C2D4A0A129333B9AB10A05C32CA33C67DC26FA ] C:\Windows\SysWOW64\mswsock.dll
21:01:46.0964 0x0098  C:\Windows\SysWOW64\mswsock.dll - ok
21:01:46.0968 0x0098  [ E90DA42B87D684DEBFB73B38A718A006, BB18C63C1982F5CB99C9B65D2B801E8C1909AD7CD0171326DC0015D6B781B451 ] C:\ProgramData\DatacardService\HWDeviceService64.exe
21:01:46.0968 0x0098  C:\ProgramData\DatacardService\HWDeviceService64.exe - ok
21:01:46.0969 0x0098  [ 8CE1A6D16B9077E91E192499EB611C5F, 68BB66B40383F7CA04F314FECC12A346914139A64F72CAE791B882B6CB8DC314 ] C:\Windows\SysWOW64\netapi32.dll
21:01:46.0970 0x0098  C:\Windows\SysWOW64\netapi32.dll - ok
21:01:46.0974 0x0098  [ 20B3934DB73EABA2B49B7177873CB81F, 492EAC5C51472B43DE11825358AEC4B9E3A081DACFD7513C696D6FE40F302EE5 ] C:\Windows\SysWOW64\netutils.dll
21:01:46.0974 0x0098  C:\Windows\SysWOW64\netutils.dll - ok
21:01:46.0977 0x0098  [ 5CCDCD40E732D54E0F7451AC66AC1C87, 66F4DA105BD72E41250CD59E2B3CD931B47AC9FDB6C784B9E33C5EE1AC29841F ] C:\Windows\SysWOW64\srvcli.dll
21:01:46.0977 0x0098  C:\Windows\SysWOW64\srvcli.dll - ok
21:01:46.0979 0x0098  [ FF5688D309347F2720911D8796912834, 3B0D73C50D40A6F42629B7750F99F656BF5C1C50237D5F98B6C0F2CE5E2DA359 ] C:\Windows\SysWOW64\clbcatq.dll
21:01:46.0979 0x0098  C:\Windows\SysWOW64\clbcatq.dll - ok
21:01:46.0982 0x0098  [ E5A4A1326A02F8E7B59E6C3270CE7202, DCB76016F9AC47E631540874DA208A089F9D529DA9628705A2869B954526BFE0 ] C:\Windows\SysWOW64\wkscli.dll
21:01:46.0982 0x0098  C:\Windows\SysWOW64\wkscli.dll - ok
21:01:46.0986 0x0098  [ 3F50200237961034FACE602373838980, F97D72CC75D921CF8F8E0544614407358AEFF97A8F48E4A89F82689EE8F2FC86 ] C:\Windows\SysWOW64\FirewallAPI.dll
21:01:46.0986 0x0098  C:\Windows\SysWOW64\FirewallAPI.dll - ok
21:01:46.0988 0x0098  [ 7321F18D1F820612ED0E9F2D4B578A7E, 612BD7DE1DFBD100BD6ACB37A38565D88C39842D990D296B9B8E1FB75C3A94E7 ] C:\Windows\SysWOW64\cryptsp.dll
21:01:46.0988 0x0098  C:\Windows\SysWOW64\cryptsp.dll - ok
21:01:46.0991 0x0098  [ 418E881201583A3039D81F43E39E6C78, C96AAC161E09BE12815A4E931E65F66DB1A456C03253EF1111AE66F44B1515FF ] C:\Windows\SysWOW64\winsta.dll
21:01:46.0991 0x0098  C:\Windows\SysWOW64\winsta.dll - ok
21:01:46.0993 0x0098  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3, 2A610BEB16610FE2F2E9A50477A62A05481E8A5843A814955A0EDFF45D0304B3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
21:01:46.0993 0x0098  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
21:01:46.0996 0x0098  [ ED8EC63F7522DF4852147C84EC62C36A, 75633011CD28DCBD4834211A9D415F17DE15BFCD80FB9FF6CE25CBBD4E9899AF ] C:\Windows\SysWOW64\rsaenh.dll
21:01:46.0996 0x0098  C:\Windows\SysWOW64\rsaenh.dll - ok
21:01:46.0998 0x0098  [ 29CA5974FAB0E8AE4AA7814FE05CF832, ADE54D406AAB7C364851AAD278A569426C9ADD4F7FB543BB08428CED963BF541 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
21:01:46.0998 0x0098  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
21:01:47.0000 0x0098  [ 4E5FE39C1076D115EC8BFCFE14D75B80, F1D02BCA6F664DCDD0CCDE269D31787C7553CD38C7208A8DD8B80B9EA09FEB1C ] C:\Windows\SysWOW64\credssp.dll
21:01:47.0000 0x0098  C:\Windows\SysWOW64\credssp.dll - ok
21:01:47.0003 0x0098  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] C:\Windows\SysWOW64\netprofm.dll
21:01:47.0003 0x0098  C:\Windows\SysWOW64\netprofm.dll - ok
21:01:47.0008 0x0098  [ 104A1070E90F1C530328E69B49718841, C5EBDD404F92E185467C390CC30DB4BD7BE0193536DD5708277662D4B0EA38D1 ] C:\Windows\SysWOW64\nlaapi.dll
21:01:47.0008 0x0098  C:\Windows\SysWOW64\nlaapi.dll - ok
21:01:47.0010 0x0098  [ 5997D769CDB108390DCFAEBF442BF816, 0E25CA984C0EEB629184423FAA9BC6D4356DF9A93F281E06DC83B4AC638AEC4A ] C:\Windows\SysWOW64\RpcRtRemote.dll
21:01:47.0011 0x0098  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
21:01:47.0013 0x0098  [ 94EEAC26F57811BD1AEFC164412F7FCE, 7390BCD7709D48DE75D7D6E06AA7356D1C58EE63F3CC2E07ABCD2E2FF6CC81CF ] C:\Windows\System32\PlaySndSrv.dll
21:01:47.0013 0x0098  C:\Windows\System32\PlaySndSrv.dll - ok
21:01:47.0017 0x0098  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA, 8A6ACEFAB95E5275CBFBE6CCB5A6C3A6A471260B279B9063E86B9C7765E18656 ] C:\Windows\System32\MsCtfMonitor.dll
21:01:47.0017 0x0098  C:\Windows\System32\MsCtfMonitor.dll - ok
21:01:47.0020 0x0098  [ F09A9A1AD21FE618C4C8B0A0D830C886, 29831DDAB2AB105358FBC067CDF96428220B6743CD6019F6FE74BAC7AF325E7E ] C:\Windows\System32\msutb.dll
21:01:47.0020 0x0098  C:\Windows\System32\msutb.dll - ok
21:01:47.0024 0x0098  [ 9BB99503D6A4DD62569EDE9E5E2672A5, 6F4EA5BC50B1F929735246485263078BEF1B3BEB33F78CB1F483F13AA226C27E ] C:\Windows\System32\HotStartUserAgent.dll
21:01:47.0024 0x0098  C:\Windows\System32\HotStartUserAgent.dll - ok
21:01:47.0025 0x0098  [ 65EA57712340C09B1B0C427B4848AE05, 5FDCF73191BFF9DBB03886755FFCF0BC15849F0E216884A5A8B9BB375FA7C1A5 ] C:\Windows\System32\taskeng.exe
21:01:47.0025 0x0098  C:\Windows\System32\taskeng.exe - ok
21:01:47.0028 0x0098  [ 349AB4F70E2AC44970894E7F03E1576E, 584D84AD7BE834B72E3C4548B3E1E25984CCC5F9EAA2245C44CB6BFC63A9D716 ] C:\ProgramData\DatacardService\DCSHelper.exe
21:01:47.0028 0x0098  C:\ProgramData\DatacardService\DCSHelper.exe - ok
21:01:47.0031 0x0098  [ 6D8A2EE4244630B290A837E79C0F37A1, 6783BBC0BDC93E4D6D43531A1AD0DF5CD26C3BBFA6384927C5CF65AD97FB04AD ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
21:01:47.0031 0x0098  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe - ok
21:01:47.0036 0x0098  [ EF2AE43BCD46ABB13FC3E5B2B1935C73, 81FC06F306F620845D7DD8D06E706309E70BC89B589C81F3478302A3F5F73431 ] C:\Windows\System32\winmm.dll
21:01:47.0036 0x0098  C:\Windows\System32\winmm.dll - ok
21:01:47.0041 0x0098  [ 1C6C3C558AA7AFFA82BCCAA9980234B9, 8AACCC5F0CBFEAC568654F49AE880D26C9C0F623F7EDCA815FBB9F9CDF3C6221 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2hooks32.dll
21:01:47.0041 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\a2hooks32.dll - ok
21:01:47.0043 0x0098  [ 43964FA89CCF97BA6BE34D69455AC65F, 10E3B89A5470E1BB6F73382135DD2352F5073C1EE8485D7476CFB5122D4AAA2F ] C:\Windows\SysWOW64\uxtheme.dll
21:01:47.0043 0x0098  C:\Windows\SysWOW64\uxtheme.dll - ok
21:01:47.0054 0x0098  [ A422816A15CFAC50567FD0F6582FD2CF, 0AA6588C63F53962E2D3665159BAE7402F43BEC0136A48DE39FE977430CA7B5A ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamsrv.dll
21:01:47.0054 0x0098  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamsrv.dll - ok
21:01:47.0057 0x0098  [ 61AF7614418BA5B9E8B4EB82E459BE53, 828ABEF68681C061E93FA61E7D12AEAB6D67ABBE597BC207DF0E6DB185C95C72 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\QtCore4.dll
21:01:47.0057 0x0098  C:\Program Files (x86)\Malwarebytes Anti-Malware\QtCore4.dll - ok
21:01:47.0062 0x0098  [ CA55500E2E0515FCC888C4A5E01E64B7, 053910D883931A776F71AF8CF3A15837524B65B933C09038E51F40FCB7B959D2 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcp100.dll
21:01:47.0062 0x0098  C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcp100.dll - ok
21:01:47.0065 0x0098  [ 4C539E592E50633B21AB1E1FDA40A32A, F07F846E1BFA7AE1B5FE835BCB34CCD2FA671B865415EF2A9C6EB8972D3A0E0C ] C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcr100.dll
21:01:47.0065 0x0098  C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcr100.dll - ok
21:01:47.0069 0x0098  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:01:47.0069 0x0098  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
21:01:47.0072 0x0098  [ 805A52C5AE26C28E88FDD9BCCFE6F312, 4FF28D3658C31722B7DD036DED9D544B14841C0E0B94D31A8EC5AB92128DA020 ] C:\Windows\System32\TSChannel.dll
21:01:47.0072 0x0098  C:\Windows\System32\TSChannel.dll - ok
21:01:47.0074 0x0098  [ A8CE0C7F1D37E0B8082608A148B6B976, 29F667E4DEA45C95E15ED54E9C37585E450325370F6011FFB667886F2FF0ABEB ] C:\Windows\SysWOW64\secur32.dll
21:01:47.0075 0x0098  C:\Windows\SysWOW64\secur32.dll - ok
21:01:47.0078 0x0098  [ 09D4503CBB6ADB3A54E7C7A75090B728, 6139EA3338FD64205481EDEC813A44F8D395FDA7B67AA431DA61F3631C3EDAE6 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
21:01:47.0078 0x0098  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe - ok
21:01:47.0080 0x0098  [ A8D4B1D04A5FCD862321CE106DA7CE4E, 571EBB0E77CEB5DACBD2F57F707E83D276A50EB540871BA015E0063AD9101071 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamcore.dll
21:01:47.0080 0x0098  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamcore.dll - ok
21:01:47.0082 0x0098  [ B2FD31E20B423335FE3273B4BF95813C, C576DA89C6B5D19427B755122CA3D7CB6E166B0D12EAABFB4D30820B861CAFF6 ] C:\Windows\SysWOW64\imagehlp.dll
21:01:47.0082 0x0098  C:\Windows\SysWOW64\imagehlp.dll - ok
21:01:47.0086 0x0098  [ B9A8CBCFCD3EC9D2EA4740AF347BF108, 97FA304E3880BC863D999F441AE47CB8ADF00D2DEC2A52ACD8FBD02CC096786A ] C:\Windows\SysWOW64\mpr.dll
21:01:47.0086 0x0098  C:\Windows\SysWOW64\mpr.dll - ok
21:01:47.0091 0x0098  [ 59DF156711A76BCB993253EC6C9BBF41, F8BCA0D764CD78A6B455268B9C5BA655D8A95B3E0939CC0AB5A493610C0058B9 ] C:\Windows\SysWOW64\dnsapi.dll
21:01:47.0091 0x0098  C:\Windows\SysWOW64\dnsapi.dll - ok
21:01:47.0093 0x0098  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] C:\Windows\System32\netman.dll
21:01:47.0093 0x0098  C:\Windows\System32\netman.dll - ok
21:01:47.0096 0x0098  [ 1727B2A2F379A32B864C096FA794AADC, 87B77A5DF95F3A1C5ED6DEF820C7E384BEFCBAA2FE1BB4781AC6F777A081E5CC ] C:\Windows\System32\aepic.dll
21:01:47.0096 0x0098  C:\Windows\System32\aepic.dll - ok
21:01:47.0100 0x0098  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] C:\Windows\System32\drivers\PEAuth.sys
21:01:47.0100 0x0098  C:\Windows\System32\drivers\PEAuth.sys - ok
21:01:47.0103 0x0098  [ 1EE99A89CC788ADA662441D1E9830529, 6B4FDD74BB81E12BD4B25A3E8AECB0FA77FA0075D454DD1D6DC1790ADF1F2AA8 ] C:\Windows\System32\nlasvc.dll
21:01:47.0103 0x0098  C:\Windows\System32\nlasvc.dll - ok
21:01:47.0105 0x0098  [ C6DCD1D11ED6827F05C00773C3E7053C, EA23BE261C9C04F44215D254D7A80FD0AEE84C6F192D0FEE49A7CF74ED3CB1A6 ] C:\Windows\System32\sfc.dll
21:01:47.0105 0x0098  C:\Windows\System32\sfc.dll - ok
21:01:47.0111 0x0098  [ 895C9AB0A855547445C4181195230757, 89BDA385D8CCB75C3D7B1BDFA567AC441A931F4E499C0835FEE9D010343FABB6 ] C:\Windows\System32\sfc_os.dll
21:01:47.0111 0x0098  C:\Windows\System32\sfc_os.dll - ok
21:01:47.0113 0x0098  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] C:\Windows\System32\drivers\secdrv.sys
21:01:47.0113 0x0098  C:\Windows\System32\drivers\secdrv.sys - ok
21:01:47.0115 0x0098  [ 4A435F95B940E93A88FEC144BD409789, 12775F6F54AD9BCBCD4F91F371D8911772CA7B14316DAFFDC28B971D1FDCC182 ] C:\Windows\System32\ncsi.dll
21:01:47.0115 0x0098  C:\Windows\System32\ncsi.dll - ok
21:01:47.0118 0x0098  [ BC9489DF517C426D4044D99F14449134, CABD014BA29A548252BB8D5BD46D047DBFC445489492D9DF75B29CEDE0AC9F8B ] C:\Windows\System32\webio.dll
21:01:47.0118 0x0098  C:\Windows\System32\webio.dll - ok
21:01:47.0122 0x0098  [ 58F4493BF748A3A89689997B7BD00E95, EC5DEEC73E357C7C87B001275C4E635011A9CF39419F2B86E2C2B8D7E388C551 ] C:\Windows\System32\winhttp.dll
21:01:47.0122 0x0098  C:\Windows\System32\winhttp.dll - ok
21:01:47.0124 0x0098  [ 2BA8F3250828CCDB4204ECF2C6F40B6A, 22C4FBF9A87C46E69C48B681FF733D68D9CB7B7D73FB14C8C2A06E9009F9860E ] C:\Windows\System32\drivers\srvnet.sys
21:01:47.0124 0x0098  C:\Windows\System32\drivers\srvnet.sys - ok
21:01:47.0127 0x0098  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE, 4EFA41765E46E90C6CBDB0DC1E0CD375D7AB3307C477171EBAA6A16AC32E5211 ] C:\Windows\System32\ssdpapi.dll
21:01:47.0127 0x0098  C:\Windows\System32\ssdpapi.dll - ok
21:01:47.0129 0x0098  [ BCEA9AB347E53BC03B2E36BE0B8BA0EF, 868DEFB78767E91694E83F931725257DF3FF79A4BFED3B914D27F3493EB7A8D0 ] C:\Windows\System32\httpapi.dll
21:01:47.0129 0x0098  C:\Windows\System32\httpapi.dll - ok
21:01:47.0133 0x0098  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] C:\Windows\System32\seclogon.dll
21:01:47.0134 0x0098  C:\Windows\System32\seclogon.dll - ok
21:01:47.0135 0x0098  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] C:\Windows\System32\sysmain.dll
21:01:47.0135 0x0098  C:\Windows\System32\sysmain.dll - ok
21:01:47.0138 0x0098  [ DF687E3D8836BFB04FCC0615BF15A519, 7C5B1E72673B4299DFC21E869F0FBB28198CA54DF4F4AF7080005F2D82467784 ] C:\Windows\System32\drivers\tcpipreg.sys
21:01:47.0138 0x0098  C:\Windows\System32\drivers\tcpipreg.sys - ok
21:01:47.0141 0x0098  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] C:\Windows\System32\tapisrv.dll
21:01:47.0141 0x0098  C:\Windows\System32\tapisrv.dll - ok
21:01:47.0143 0x0098  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] C:\Windows\System32\trkwks.dll
21:01:47.0143 0x0098  C:\Windows\System32\trkwks.dll - ok
21:01:47.0146 0x0098  [ CF318F60A84F15AF352439465A8D05F4, E713F7FD90EB5D8845F3407E94FFD17D893C59746330960A36645A989D8D45AF ] C:\Program Files\Windows Defender\MpSvc.dll
21:01:47.0146 0x0098  C:\Program Files\Windows Defender\MpSvc.dll - ok
21:01:47.0148 0x0098  [ D0F73A42040F21F92FD314B42AC5C9E7, A021C4318C9CFA594305458B2643BB0C22DDE1F3D51C93C9F3E7F7AB75B31278 ] C:\Windows\System32\drivers\srv2.sys
21:01:47.0148 0x0098  C:\Windows\System32\drivers\srv2.sys - ok
21:01:47.0152 0x0098  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] C:\Windows\System32\wbem\WMIsvc.dll
21:01:47.0152 0x0098  C:\Windows\System32\wbem\WMIsvc.dll - ok
21:01:47.0154 0x0098  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] C:\Windows\System32\rasmans.dll
21:01:47.0154 0x0098  C:\Windows\System32\rasmans.dll - ok
21:01:47.0157 0x0098  [ 7DB5AA22A8A8E5C2D335F44853C1F6DE, A734A20357026C42950394682A52CBC3AF956D09F1949E1B4E95467E999BC428 ] C:\Windows\System32\wbemcomn.dll
21:01:47.0157 0x0098  C:\Windows\System32\wbemcomn.dll - ok
21:01:47.0160 0x0098  [ 44C96B48112EB24AE7764EBF1C527000, 6691D008C834686906B4841EF27604B0F0E70E668C09CEE19369426BF168AF44 ] C:\Windows\System32\rastapi.dll
21:01:47.0160 0x0098  C:\Windows\System32\rastapi.dll - ok
21:01:47.0162 0x0098  [ 0C52762C606BCF6A377D5E4688191A6B, C58C9A73AD07E3B93AB186D0D47C5F1CB7197771DBEE40646C3B801645BB388F ] C:\Windows\System32\wbem\WmiDcPrv.dll
21:01:47.0162 0x0098  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
21:01:47.0165 0x0098  [ 2098B8556D1CEC2ACA9A29CD479E3692, D5826407C64F18C16EB36E6F00787CFAFCD9B24B5BD8AD126AD01E6E4134966F ] C:\Windows\System32\drivers\srv.sys
21:01:47.0165 0x0098  C:\Windows\System32\drivers\srv.sys - ok
21:01:47.0168 0x0098  [ ADF3E771F429940E762AC097F5A54EAF, C6083EFF964E56DAB13C1D9A925052110A57145AEF06D895EAB53FD882463436 ] C:\Program Files\Windows Defender\MpClient.dll
21:01:47.0168 0x0098  C:\Program Files\Windows Defender\MpClient.dll - ok
21:01:47.0170 0x0098  [ A3F5E8EC1316C3E2562B82694A251C9E, F3DC6AA6A9D3B5BBC730668FC52C1D4BB5D515D404578BDDD3D4869A7ED58822 ] C:\Windows\System32\wbem\fastprox.dll
21:01:47.0170 0x0098  C:\Windows\System32\wbem\fastprox.dll - ok
21:01:47.0172 0x0098  [ FAFAE01E889DC9C05A6CA2138CFC220B, 192CFDE3593ED0A9B397461D912074C0F062015C23E6F6658571C7C2864D9A51 ] C:\Windows\System32\tapi32.dll
21:01:47.0172 0x0098  C:\Windows\System32\tapi32.dll - ok
21:01:47.0175 0x0098  [ EE26D130808D16C0E417BBBED0451B34, 4886DCE4FAEF146A40BABD492A8000A2022FEA542A6135A9BAFD4CD09297B4E5 ] C:\Windows\System32\ntdsapi.dll
21:01:47.0175 0x0098  C:\Windows\System32\ntdsapi.dll - ok
21:01:47.0177 0x0098  [ 666A60F6F5E719856FF6254E0966EFF7, 58C072E7E215991E19C1CA062C476081982F7B9F039714539AE7FEB4981C200F ] C:\Windows\System32\wbem\wbemprox.dll
21:01:47.0177 0x0098  C:\Windows\System32\wbem\wbemprox.dll - ok
21:01:47.0180 0x0098  [ A34A587FFFD45FA649FBA6D03784D257, C9A2BCD4E2A5EB6E320092A3AFD5737ECDCDA0B83EE42314A23C4978F2974767 ] C:\Windows\System32\iphlpsvc.dll
21:01:47.0180 0x0098  C:\Windows\System32\iphlpsvc.dll - ok
21:01:47.0183 0x0098  [ 27B9E163740A226B65E4B9E186117911, 17411C6A6C1E699BC4B0C04D782FD9AA09CF577DBA41E743F7588904D489CB9F ] C:\Windows\System32\sqmapi.dll
21:01:47.0183 0x0098  C:\Windows\System32\sqmapi.dll - ok
21:01:47.0186 0x0098  [ 210FCACAF902B2CD47CF9FD17D846146, 3F77AC721E084864C5966FF5337A90185F62203DC19C685328675500D629CB87 ] C:\Windows\System32\aeevts.dll
21:01:47.0186 0x0098  C:\Windows\System32\aeevts.dll - ok
21:01:47.0188 0x0098  [ 7B38D7916A7CD058C16A0A6CA5077901, 3F6DD990E2DA5D3BD6D65A72CBFB0FE79EB30B118A8AD71B6C9BB5581A622DCE ] C:\Windows\System32\wdscore.dll
21:01:47.0188 0x0098  C:\Windows\System32\wdscore.dll - ok
21:01:47.0190 0x0098  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] C:\Windows\System32\srvsvc.dll
21:01:47.0190 0x0098  C:\Windows\System32\srvsvc.dll - ok
21:01:47.0193 0x0098  [ 0255C22D99602534F15CBB8D9B6F152F, 43CD89D6CA56E0B633142F7C86DA9E072EE0723B5EBC4CE8CCBCA58C396ECF54 ] C:\Windows\System32\wbem\WinMgmtR.dll
21:01:47.0193 0x0098  C:\Windows\System32\wbem\WinMgmtR.dll - ok
21:01:47.0195 0x0098  [ 8EF0D5C41EC907751B8429162B1239ED, 9CC25F1F93FACA6F6CE23F78EB58590C39A2E3C8A3ACDF400E8A9DE0757EADAE ] C:\Windows\System32\browser.dll
21:01:47.0195 0x0098  C:\Windows\System32\browser.dll - ok
21:01:47.0198 0x0098  [ 81749E073AC5857B044A686B406E5244, 3884EE705CA34235B29942FEDA8FEA654A21139B8C2A1D5E009C7D07D6E6ADF1 ] C:\Windows\System32\clusapi.dll
21:01:47.0198 0x0098  C:\Windows\System32\clusapi.dll - ok
21:01:47.0200 0x0098  [ CFEFA40DDE34659BE5211966EAD86437, AC0A3AD8AA47012C40785013E2273FC571F416BC9C9FFDA418FE72B3123C1FB0 ] C:\Windows\System32\netmsg.dll
21:01:47.0200 0x0098  C:\Windows\System32\netmsg.dll - ok
21:01:47.0203 0x0098  [ FF80CAD87555E8E4D2CFD7B9058343F8, 07653773FBEC1996408B8507B08E0E1E812830063F932F897F4B39EE63DDCDC4 ] C:\Windows\System32\sscore.dll
21:01:47.0203 0x0098  C:\Windows\System32\sscore.dll - ok
21:01:47.0206 0x0098  [ D2A0FFA75AB181B19B5EB93BB29C7686, AC282D5EFFB191492F14638EB80F18E53C4A3D26C94A00A949366B3564D6C3E2 ] C:\Windows\System32\unimdm.tsp
21:01:47.0207 0x0098  C:\Windows\System32\unimdm.tsp - ok
21:01:47.0209 0x0098  [ 344FCC9850C3A8A3B4D3C65151AF8E4C, C38853454E153B1AB4AEAE1AAFB7CB4B2E6234208CF24C09F3B2AFE25E271C5C ] C:\Windows\System32\resutils.dll
21:01:47.0209 0x0098  C:\Windows\System32\resutils.dll - ok
21:01:47.0211 0x0098  [ 3B367397320C26DBA890B260F80D1B1B, 50BBE71B4380B5E86E197AF86F5C08266DD6B12344BA4ABDEA604B8C774C4147 ] C:\Windows\System32\hnetcfg.dll
21:01:47.0211 0x0098  C:\Windows\System32\hnetcfg.dll - ok
21:01:47.0214 0x0098  [ FEB91B4DA0D540865260A33838654FA3, 8636B008BA329D3E6CC235D08BA4C914EFF45DBFCB9297C893CCDA8D907BA946 ] C:\Windows\System32\nci.dll
21:01:47.0214 0x0098  C:\Windows\System32\nci.dll - ok
21:01:47.0217 0x0098  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] C:\Windows\System32\netprofm.dll
21:01:47.0217 0x0098  C:\Windows\System32\netprofm.dll - ok
21:01:47.0220 0x0098  [ 94B7DF336815B47236724019FAB24B7C, 43549F1FB89D0585A0E0333BB8E1DDED2EBD0F3C0EC3EA93B238EA037188AA41 ] C:\Windows\System32\uniplat.dll
21:01:47.0220 0x0098  C:\Windows\System32\uniplat.dll - ok
21:01:47.0222 0x0098  [ 2472BDF30C62F3E81AE27A968C25608C, C05B0161B2C84FAA9CF2ECDAEFC98D450D21BC0B8BC60C185AA931E4E03E667A ] C:\Windows\System32\unimdmat.dll
21:01:47.0222 0x0098  C:\Windows\System32\unimdmat.dll - ok
21:01:47.0225 0x0098  [ 5EB55F661DEBF156E126160BCD4D89F8, 948D1F627AA55D55FB3B558BA61B8366C5481A6041820631F24408F75EA5D2CC ] C:\Windows\System32\wbem\wbemcore.dll
21:01:47.0225 0x0098  C:\Windows\System32\wbem\wbemcore.dll - ok
21:01:47.0227 0x0098  [ C1446A66BB89FC3AA2485C67562247DA, F2FD38968CE66828B1EE4B17646053C1FE95B077AEF4F5367013F869B5BA9D7B ] C:\Windows\System32\modemui.dll
21:01:47.0227 0x0098  C:\Windows\System32\modemui.dll - ok
21:01:47.0229 0x0098  [ EE5C8E27C37B79CB54A2FCEEED2DC262, 0A5E200FD65A491756B951A4A0ED39B88B7B313E97C2BBF3C91AC4C290772BB7 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
21:01:47.0229 0x0098  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
21:01:47.0232 0x0098  [ 7C1BAE7D23D4874FEE256A2B9C00E019, 4EE87C2F0CACE557AA159349133474A5857B6667DDB976BA5A18489A3333F798 ] C:\Windows\System32\hidphone.tsp
21:01:47.0232 0x0098  C:\Windows\System32\hidphone.tsp - ok
21:01:47.0234 0x0098  [ 41326DD08ACC0CDC5F8177AF96C066E8, 9C21BB553EEDD28272E865396C9EF94655EC1CF216290A56581AEF7908B7AFDD ] C:\Windows\System32\kmddsp.tsp
21:01:47.0234 0x0098  C:\Windows\System32\kmddsp.tsp - ok
21:01:47.0238 0x0098  [ 1D6BC2769DA66C1145F4DA5A65F52E61, B38EFF16652E751BF3B3BD85DA6EA33AB9B7F4228C59F741074E33085DB66ED0 ] C:\Windows\System32\ndptsp.tsp
21:01:47.0238 0x0098  C:\Windows\System32\ndptsp.tsp - ok
21:01:47.0241 0x0098  [ 087D8668C71634A3A3761135ABF16EEE, B7348A63299CFF4FFBF375E645A4850AE0F108D48D13AB25434CFAE7CF3D61FD ] C:\Windows\System32\wbem\esscli.dll
21:01:47.0241 0x0098  C:\Windows\System32\wbem\esscli.dll - ok
21:01:47.0243 0x0098  [ 718B6F51AB7F6FE2988A36868F9AD3AB, 76141B4E94C2766E2C34CEF523092948771A7893212EFADBE88D2171B85FF012 ] C:\Windows\System32\wbem\wbemsvc.dll
21:01:47.0243 0x0098  C:\Windows\System32\wbem\wbemsvc.dll - ok
21:01:47.0245 0x0098  [ 0143DB80DACFB7C2B5B7009ED9063353, 252885CF7C1BAB89B86908373546E5F5D674BEF7AACBDDCF321AD877CB9150A9 ] C:\Windows\System32\wbem\wmiutils.dll
21:01:47.0245 0x0098  C:\Windows\System32\wbem\wmiutils.dll - ok
21:01:47.0248 0x0098  [ A717A35120DBAB5AB707AB40662AF9DD, DE117E70D0AC7FC26BBCEAAB45A0270A1065B36CC8B062B4128B561F2AAA9E04 ] C:\Windows\System32\rasppp.dll
21:01:47.0248 0x0098  C:\Windows\System32\rasppp.dll - ok
21:01:47.0250 0x0098  [ 0AB34456654C283DAA13B8D2BA21439B, 4B70FC5195DE39564E951C8542020BA3D4257E3D4488F69825F67A6099CB7549 ] C:\Windows\System32\wbem\repdrvfs.dll
21:01:47.0250 0x0098  C:\Windows\System32\wbem\repdrvfs.dll - ok
21:01:47.0253 0x0098  [ 88351B29B622B30962D2FEB6CA8D860B, A16CAD7D94C1C9807083BB36E9B4C3C14E6482C4CA2BDFACBCC86E737DDCE42E ] C:\Windows\System32\rasadhlp.dll
21:01:47.0253 0x0098  C:\Windows\System32\rasadhlp.dll - ok
21:01:47.0255 0x0098  [ 6A84E68B538B8B04608BF2F0D426CE6F, 59CE1C06364D1BBEE853DA4AEC1E8B678D6E181723ACCF6DB9F9776CAD47BBDA ] C:\Windows\System32\raschap.dll
21:01:47.0256 0x0098  C:\Windows\System32\raschap.dll - ok
21:01:47.0258 0x0098  [ 0FE5CD5F9C9248F42D1EF56E495B182E, 1EBD40C119A3D3251A19A8D15669D9DCB5D3CFBC3AFCF1CD00101C31320243E1 ] C:\Windows\System32\vpnike.dll
21:01:47.0258 0x0098  C:\Windows\System32\vpnike.dll - ok
21:01:47.0260 0x0098  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] C:\Windows\System32\ipnathlp.dll
21:01:47.0260 0x0098  C:\Windows\System32\ipnathlp.dll - ok
21:01:47.0263 0x0098  [ 2DF29664ED261F0FC448E58F338F0671, 4EFE79C383D0AF126FC4EE668D822563F8F037B1E61D73747A35FE11AAFDB8CE ] C:\Windows\System32\mprapi.dll
21:01:47.0263 0x0098  C:\Windows\System32\mprapi.dll - ok
21:01:47.0266 0x0098  [ A42F2C1EB3B66C54FB3C7B79D30C1A6D, A63836DB3B01835DC1311526A95198D6EBCCB1DC9DDAFBC38EC36C128CDB98B9 ] C:\Windows\System32\netshell.dll
21:01:47.0266 0x0098  C:\Windows\System32\netshell.dll - ok
21:01:47.0270 0x0098  [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C, 78889511D6F471009674CC958F8BB77B4A79C952634B18E8AFF4A75AA6A60E87 ] C:\Windows\System32\ndiscapCfg.dll
21:01:47.0270 0x0098  C:\Windows\System32\ndiscapCfg.dll - ok
21:01:47.0272 0x0098  [ 1CF21800E337F4039AAD4C94B4280EE4, EF434CEF6E62A202B85E8EC7916EB998E20B10675437CDE90084CDA938C0AA3F ] C:\Windows\System32\mprmsg.dll
21:01:47.0272 0x0098  C:\Windows\System32\mprmsg.dll - ok
21:01:47.0275 0x0098  [ 3D6AF45673C4B31CDECD7F80AF09D443, 7D711D138C107816155AFA5E5FDC6892734074BEFF604B5904177B5D9ACE4670 ] C:\Windows\System32\rascfg.dll
21:01:47.0275 0x0098  C:\Windows\System32\rascfg.dll - ok
21:01:47.0278 0x0098  [ 55DE45B116711881C852D2841E4C84DD, 18E5021530BB44042C85087BAE4FEDA633E01CDCBA09C90A5941B74C75133A35 ] C:\Windows\System32\tcpipcfg.dll
21:01:47.0278 0x0098  C:\Windows\System32\tcpipcfg.dll - ok
21:01:47.0280 0x0098  [ DDD0357A92FA843EFF8915ED17253D6C, 0C78B1D41F0A7821186ADF653504F2BFF067CB512CB0E932047C301378BBADB6 ] C:\Windows\System32\wbem\WmiPrvSD.dll
21:01:47.0280 0x0098  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
21:01:47.0283 0x0098  [ D41FEBD098234F02485A4EA98D4730A4, 462DC8168C444F35B43BA3B8F7D77734665D84F1C6D25CAD7391C0145961628F ] C:\Windows\System32\ncobjapi.dll
21:01:47.0283 0x0098  C:\Windows\System32\ncobjapi.dll - ok
21:01:47.0285 0x0098  [ 6F40D6FB05E0C1E5402812B426971AF0, E41F138F0F2DB057F8DBB1587237C6FA8A2059B3D64EC894D1DC492A18DBBDED ] C:\Windows\System32\wbem\wbemess.dll
21:01:47.0285 0x0098  C:\Windows\System32\wbem\wbemess.dll - ok
21:01:47.0288 0x0098  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] C:\Windows\System32\wdi.dll
21:01:47.0288 0x0098  C:\Windows\System32\wdi.dll - ok
21:01:47.0290 0x0098  [ 3977D4A871CA0D4F2ED1E7DB46829731, 2AF1C3225994769C3FD25CD7E9603964B035576F25B0B6D91545566E0722FFAA ] C:\Windows\System32\appinfo.dll
21:01:47.0290 0x0098  C:\Windows\System32\appinfo.dll - ok
21:01:47.0292 0x0098  [ F7073C962C4FB7C415565DDE109DE49F, 781E7088DCEFBC34A808C3E7DA41A56112B3F23ABE9F54B5EF4D5CD9CD016B1D ] C:\Windows\System32\npmproxy.dll
21:01:47.0292 0x0098  C:\Windows\System32\npmproxy.dll - ok
21:01:47.0295 0x0098  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] C:\Windows\System32\wpdbusenum.dll
21:01:47.0295 0x0098  C:\Windows\System32\wpdbusenum.dll - ok
21:01:47.0298 0x0098  [ 4449D23E8F197862F1B16F1E6C89C36C, 93AF52BF8E870C0381F027D3BB8F6829E449242074472F1593EB8172D7EB6559 ] C:\Windows\System32\diagperf.dll
21:01:47.0298 0x0098  C:\Windows\System32\diagperf.dll - ok
21:01:47.0301 0x0098  [ BF4AC709BE5BF64F331F5D67773A0C82, 96E5A2A12D386B8A7976FEC76FD350E6A3EEBDF5763F4BBF4AB18880E9F269E0 ] C:\Windows\System32\perftrack.dll
21:01:47.0301 0x0098  C:\Windows\System32\perftrack.dll - ok
21:01:47.0303 0x0098  [ E64D9EC8018C55873B40FDEE9DBEF5B3, 2DB11E7C631A9887CB75AFEAD2C79EC65F82C51F5F073CEFC8CDDF664EFF29C1 ] C:\Windows\System32\PortableDeviceApi.dll
21:01:47.0303 0x0098  C:\Windows\System32\PortableDeviceApi.dll - ok
21:01:47.0306 0x0098  [ AFA79C343F9D1555F7E5D5FA70BB2A14, 440EF3ADC1F5C7A5ED3E872C8D8DFA61B039454C3CA67F8A51CA8BDCFDC4BA4A ] C:\Windows\System32\PortableDeviceConnectApi.dll
21:01:47.0306 0x0098  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
21:01:47.0308 0x0098  [ 9689A9C7F7C2A1A423CDA2C3B43FFF65, 914AD22D98975578BC14D821F72E8DFCE24F2092F9C299D24EBBAF5408FE8B8B ] C:\Windows\System32\wer.dll
21:01:47.0308 0x0098  C:\Windows\System32\wer.dll - ok
21:01:47.0311 0x0098  [ CF8D590BE3373029D57AF80914190682, FB9641777E90A58C063FBE95F081DC6D2F4770827DE19108A9DC3E3D6B17B4BF ] C:\Windows\System32\drivers\WUDFRd.sys
21:01:47.0311 0x0098  C:\Windows\System32\drivers\WUDFRd.sys - ok
21:01:47.0313 0x0098  [ D0FF1CA89D013B94768A289023958F6B, DB15E374E26E351561C5A6DCC5822AFB7CFF2C373761266520193E89DFAC6855 ] C:\Windows\System32\WUDFHost.exe
21:01:47.0313 0x0098  C:\Windows\System32\WUDFHost.exe - ok
21:01:47.0316 0x0098  [ E1B22739C933BE33F53DB58C5393ADD3, 26EE0DD091D2E00DECC774DC1EEDFFDE69AF74B0C769CCBE091AFC32C66E4207 ] C:\Windows\System32\Apphlpdm.dll
21:01:47.0316 0x0098  C:\Windows\System32\Apphlpdm.dll - ok
21:01:47.0318 0x0098  [ 9719E3D834F5C8C43F56A93DFA497023, 4D78D4BD4835C0A237821967156C19DF4B90384A6BCB1F48CEAF35D003A0099A ] C:\Windows\System32\pnpts.dll
21:01:47.0318 0x0098  C:\Windows\System32\pnpts.dll - ok
21:01:47.0322 0x0098  [ 46863C4CC5B68EB09EA2D5EEF0F1193A, 9B5593E1F484AC8F96F89A5995FB1FE9C51CB2F0F545607F6850751191150CFE ] C:\Windows\System32\radardt.dll
21:01:47.0322 0x0098  C:\Windows\System32\radardt.dll - ok
21:01:47.0324 0x0098  [ E811F8510B133E70CF6E509FB809824F, 82541F2B15748250462B67B6C77530D4F7C45A1482237EC49B28F9FA5A414108 ] C:\Windows\System32\wdiasqmmodule.dll
21:01:47.0324 0x0098  C:\Windows\System32\wdiasqmmodule.dll - ok
21:01:47.0327 0x0098  [ 025E7DBDB98866ED3CB2D4DDA70B364D, 78962F23F066E362AF1A4B98FA7D5E30AF30C561307438503031D30C944B6A6E ] C:\Windows\System32\runonce.exe
21:01:47.0327 0x0098  C:\Windows\System32\runonce.exe - ok
21:01:47.0329 0x0098  [ D44741F65A1D71F65814A12CF6E2400A, C6721F830675ADC7E7FDE2B5E822E56F6A063146F5066F1E25EBFE86F0A87136 ] C:\Windows\SysWOW64\runonce.exe
21:01:47.0329 0x0098  C:\Windows\SysWOW64\runonce.exe - ok
21:01:47.0333 0x0098  [ 12C45E3CB6D65F73209549E2D02ECA7A, 9DFD9C58B90257C34D52B7156C1D2566BE32EE7BD4699DDE164A5F190EC4D44A ] C:\Windows\SysWOW64\propsys.dll
21:01:47.0333 0x0098  C:\Windows\SysWOW64\propsys.dll - ok
21:01:47.0336 0x0098  [ EBB431C6332107651CD2E2715A707994, 669BED2F3A2CFFB5E25FE6CF6956E61036FA1D9127AE59F05B22CFD57CEA3E2A ] C:\Windows\SysWOW64\urlmon.dll
21:01:47.0336 0x0098  C:\Windows\SysWOW64\urlmon.dll - ok
21:01:47.0338 0x0098  [ 863F793D15B4026B1A5FDECA873D4D84, AF7ABD95BB5467551562F129F03C7AC9D52A021F7E547609F40A80E66932C942 ] C:\Windows\SysWOW64\apphelp.dll
21:01:47.0338 0x0098  C:\Windows\SysWOW64\apphelp.dll - ok
21:01:47.0342 0x0098  [ D63F0353F632FB1EDE724173BE6DB5B5, 82FC79B99BD5D99231CE6701CBACA94ED6F6EC5B7EC0F00F63FC942B2D06568E ] C:\Windows\System32\esent.dll
21:01:47.0342 0x0098  C:\Windows\System32\esent.dll - ok
21:01:47.0343 0x0098  [ 4FDFA3F219692D17011BF1B428857C1E, 0422101F9D47633DFF47DF022031C4221B9D395F3E23C0C6E0A54CE55D76565D ] C:\Program Files\Windows Defender\MpRTP.dll
21:01:47.0343 0x0098  C:\Program Files\Windows Defender\MpRTP.dll - ok
21:01:47.0346 0x0098  [ FBD879D17B26D49DD7A48FF58062FAE6, 531363F29AB4C479C7757D5FE45D7CE2609FA112E644AB98F8269E03454DC387 ] C:\Windows\System32\tdh.dll
21:01:47.0346 0x0098  C:\Windows\System32\tdh.dll - ok
21:01:47.0350 0x0098  [ 97BDC9A400EEF273CC4B336614CA74BD, 2B0792816C882C8B7DAFE93E8148DF94B1C0786287272E3FE4005166751069AE ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D2B0B133-42ED-44D3-809A-46EBB62BA863}\mpengine.dll
21:01:47.0350 0x0098  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D2B0B133-42ED-44D3-809A-46EBB62BA863}\mpengine.dll - ok
21:01:47.0353 0x0098  [ B17051CEA6ECF263EF7EB4B79FA50763, F10A3DBEABA655F7F595C8954CB85D5E7804A2CDCF6A09C0544EEB739D442DFA ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D2B0B133-42ED-44D3-809A-46EBB62BA863}\mpasbase.vdm
21:01:47.0353 0x0098  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D2B0B133-42ED-44D3-809A-46EBB62BA863}\mpasbase.vdm - ok
21:01:47.0358 0x0098  [ F0F8B583C084699DDBF036B892058F6E, D2CA676148C1F59C2D3494BB0AA28127D2957EA8C2F494DDEBE7E1249038E9A1 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D2B0B133-42ED-44D3-809A-46EBB62BA863}\mpasdlta.vdm
21:01:47.0358 0x0098  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{D2B0B133-42ED-44D3-809A-46EBB62BA863}\mpasdlta.vdm - ok
21:01:47.0361 0x0098  [ 93BB66044FA76734E882C6F3E8EE1900, E00FE1028C999FFED3F8335F9D760929CB3A11B6EEF8D8D2F2CA4A32DEC56B26 ] C:\Program Files\Windows Defender\MsMpLics.dll
21:01:47.0361 0x0098  C:\Program Files\Windows Defender\MsMpLics.dll - ok
21:01:47.0363 0x0098  [ 218A400108F280428FA22282D3268BBC, 7712687ABAEF6616E90AE5A321044C102E79EC23F4A1EAFB4278C93724873CB3 ] C:\Windows\System32\wscapi.dll
21:01:47.0363 0x0098  C:\Windows\System32\wscapi.dll - ok
21:01:47.0366 0x0098  [ B84E2D174DC84916A536572BB8F691A8, 94E3D68F102439D3A585D2D796F3F3FC27CB41C640058DDC14AF99A723B2CD99 ] C:\Windows\System32\wscisvif.dll
21:01:47.0366 0x0098  C:\Windows\System32\wscisvif.dll - ok
21:01:47.0368 0x0098  [ 6C1E3C43B35268C17833244C8ED96430, 9C571AA762E71177B6FF486D1DB500E3530E13CAFD87316AD2C64F5A55EB4A93 ] C:\Windows\System32\wscproxystub.dll
21:01:47.0368 0x0098  C:\Windows\System32\wscproxystub.dll - ok
21:01:47.0371 0x0098  [ 44214C94911C7CFB1D52CB64D5E8368D, 4B01872788057ECF5A1AC6647512F5671213F76651FF8E808F1310A1240F35A2 ] C:\Windows\SysWOW64\wininet.dll
21:01:47.0371 0x0098  C:\Windows\SysWOW64\wininet.dll - ok
21:01:47.0373 0x0098  [ 683E0C9DA9E1EB9E4691DFAE0EC83E36, F5CD7DE4B315F318D495C4E28292FA47B96640D044502131934190EC58F3D1D5 ] C:\Windows\SysWOW64\iertutil.dll
21:01:47.0373 0x0098  C:\Windows\SysWOW64\iertutil.dll - ok
21:01:47.0376 0x0098  [ 723363553532D15BF70E55E860EA6B00, 2510A674A9013D4654A5CEBB4C93128D15DEE078CDF7003ACB61E372072F25D6 ] C:\Program Files (x86)\GlassWire\GWIdlMon.exe
21:01:47.0376 0x0098  C:\Program Files (x86)\GlassWire\GWIdlMon.exe - ok
21:01:47.0378 0x0098  [ F89773DFA9B8C95A3AC2AF1E7D99E483, 7C646F466850CACF9A5FD5C98D7E119FB79149CE0C667A82E0264C671B4582A9 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
21:01:47.0378 0x0098  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe - ok
21:01:47.0383 0x0098  [ AD7B9C14083B52BC532FBA5948342B98, 17F746D82695FA9B35493B41859D39D786D32B23A9D2E00F4011DEC7A02402AE ] C:\Windows\SysWOW64\cmd.exe
21:01:47.0383 0x0098  C:\Windows\SysWOW64\cmd.exe - ok
21:01:47.0384 0x0098  [ BDAC1AA64495D0F7E1FF810EBBF1F018, 7920E2381307574C5C4562CF1FF8F79F91204102051FCD708FA4E6A941422084 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
21:01:47.0385 0x0098  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll - ok
21:01:47.0387 0x0098  [ 39C5F32747B3414D1BB216FDB1DEFC58, 6FAE64CB9748304090113903A5AE9E7154BE16BA2EEA7AB3EF04AB9D79B81380 ] C:\Windows\SysWOW64\dwmapi.dll
21:01:47.0387 0x0098  C:\Windows\SysWOW64\dwmapi.dll - ok
21:01:47.0390 0x0098  [ 15E298B5EC5B89C5994A59863969D9FF, 8D38B2E023462D0804F72E907D11FF72CE84540EA3B8D83F411C602C3F6A1177 ] C:\Windows\SysWOW64\npmproxy.dll
21:01:47.0390 0x0098  C:\Windows\SysWOW64\npmproxy.dll - ok
21:01:47.0392 0x0098  [ 0C8EF8F973B316BF787F34AE8D1BA824, 4B75EF85D597EC85F149B2FE2B01C4DBC2D07CF885120C16EE67269B2301E871 ] C:\Program Files (x86)\blueconnect\blueconnect.exe
21:01:47.0392 0x0098  C:\Program Files (x86)\blueconnect\blueconnect.exe - ok
21:01:47.0395 0x0098  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] C:\Windows\System32\aelupsvc.dll
21:01:47.0395 0x0098  C:\Windows\System32\aelupsvc.dll - ok
21:01:47.0397 0x0098  [ BD51024FB014064BC9FE8C715C18392F, 23F7AB98268F88E6CA9EE96B3DDBC6AA745BFFACD2E5F80A211CE48D976EB9A4 ] C:\Windows\System32\conhost.exe
21:01:47.0397 0x0098  C:\Windows\System32\conhost.exe - ok
21:01:47.0400 0x0098  [ 78F0F176E4883150D4FF37842E960A65, 71E69396B49E8C93157495B5E8F78497A11FC8771144C21E229191438979B3C5 ] C:\Program Files (x86)\blueconnect\Container.dll
21:01:47.0400 0x0098  C:\Program Files (x86)\blueconnect\Container.dll - ok
21:01:47.0405 0x0098  [ 59569D4BE0D79A2B8C3241C6DCEA0034, EDD1F2CA8225A797B2BB94141A3EB1E6CE5D08C1CBA8F6A115E0D32CF541F0D8 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.dll
21:01:47.0405 0x0098  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.dll - ok
21:01:47.0407 0x0098  [ 2954DC080087CF73818F959CB3ED9C13, 6CA3D7196CABD257A34599254C995321749CE10186872EF0625B28F7CA5BC97D ] C:\Program Files (x86)\Malwarebytes Anti-Malware\QtGui4.dll
21:01:47.0407 0x0098  C:\Program Files (x86)\Malwarebytes Anti-Malware\QtGui4.dll - ok
21:01:47.0410 0x0098  [ D1DE1EAFDE97BE41CF6585027FF3E732, 76F17D4DF440D6734DC8157092D94EB18C2A73A0A49BEEA289E7B3EDE30E86A2 ] C:\Windows\SysWOW64\comdlg32.dll
21:01:47.0410 0x0098  C:\Windows\SysWOW64\comdlg32.dll - ok
21:01:47.0412 0x0098  [ 326C7F76A29897A892AA7726E91C1C67, 64305346B06EC14976130B0B80F14B4D5AB63E5B2A6A7B872EC9CE2BF8FADCD2 ] C:\Windows\SysWOW64\winbrand.dll
21:01:47.0412 0x0098  C:\Windows\SysWOW64\winbrand.dll - ok
21:01:47.0419 0x0098  [ 9CB05668015945B5B0B311851F1A4888, FBA7BF211E68ECC5AC32BB269E5519A6904EAA9644CE3832884B9FAD0BA00E5E ] C:\Program Files (x86)\blueconnect\MFC71u.dll
21:01:47.0419 0x0098  C:\Program Files (x86)\blueconnect\MFC71u.dll - ok
21:01:47.0421 0x0098  [ 4619E14B2DF4137907CD988ACA4B30A5, B8D451CC8B23108931D657FA7895CD97734567135F40F061D1F34F9C613B004C ] C:\Windows\SysWOW64\ieframe.dll
21:01:47.0421 0x0098  C:\Windows\SysWOW64\ieframe.dll - ok
21:01:47.0426 0x0098  [ D5AEFAD57C08349A4393D987DF7C715D, C36A45BC2448DF30CD17BD2F8A17FC196FAFB685612CACCEB22DC7B58515C201 ] C:\Windows\SysWOW64\winmm.dll
21:01:47.0426 0x0098  C:\Windows\SysWOW64\winmm.dll - ok
21:01:47.0428 0x0098  [ D36B759179DDD214743DCFB8ED791FA2, CADE72447E3231726B2CBF1C7B488D347E20187AE5760F8EE82BF150C31AD828 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\QtNetwork4.dll
21:01:47.0428 0x0098  C:\Program Files (x86)\Malwarebytes Anti-Malware\QtNetwork4.dll - ok
21:01:47.0430 0x0098  [ CBD010BFBED9657C3813400AAD03CF8A, 2DD60A291D8F4A44D7D638C83A46CFA618525A72B9D975FB81F8F403699B9AE6 ] C:\Windows\SysWOW64\oleacc.dll
21:01:47.0430 0x0098  C:\Windows\SysWOW64\oleacc.dll - ok
21:01:47.0433 0x0098  [ BE247AE996A9FDE007A27B51413A6C79, A4280BE9BDCB51E50A0E302F59ACDF866EFAC8035D766172D06C15019CC57476 ] C:\Windows\SysWOW64\shdocvw.dll
21:01:47.0433 0x0098  C:\Windows\SysWOW64\shdocvw.dll - ok
21:01:47.0435 0x0098  [ 2AD9820E4B17E78110A6AA06BF5C1CE2, 330A62FC255D24FCF7904B11CD533A9A06C1EBDBD90491A11960317759E7F4D0 ] C:\Users\xblee\AppData\Local\Temp\{3F2DFA4A-6A89-4BD7-833E-F320D2A088A4}.exe
21:01:47.0435 0x0098  C:\Users\xblee\AppData\Local\Temp\{3F2DFA4A-6A89-4BD7-833E-F320D2A088A4}.exe - ok
21:01:47.0440 0x0098  [ C20FF1A17726C357461A7AC5B3BFC3AD, 970558642CC14837B77B48257E3171ACC84466888875927314ACD6D79176F967 ] C:\Windows\SysWOW64\ncrypt.dll
21:01:47.0440 0x0098  C:\Windows\SysWOW64\ncrypt.dll - ok
21:01:47.0442 0x0098  [ CE71B9119A258EDD0A05B37D7B0F92E3, D9310C5BBFE089B8C81E259C462EC1E6D7A7A87FA59FC1F174ED5C58D409AE7A ] C:\Windows\SysWOW64\bcrypt.dll
21:01:47.0442 0x0098  C:\Windows\SysWOW64\bcrypt.dll - ok
21:01:47.0445 0x0098  [ E8449FE262D7406BCB2AC2A45C53EC5F, 6C118C9FB26404D1943824CF3990F36E12986547FFACB7CC0DF975A913065D78 ] C:\Windows\SysWOW64\bcryptprimitives.dll
21:01:47.0445 0x0098  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
21:01:47.0447 0x0098  [ 1097F3035BAF46CED8B332B3564C5108, C69781683CA963A1335780DABBBC60E2C3CEF0888738D3425D358D12E8D0AF58 ] C:\Windows\SysWOW64\gpapi.dll
21:01:47.0447 0x0098  C:\Windows\SysWOW64\gpapi.dll - ok
21:01:47.0450 0x0098  [ 04D16553664796613FE98D441A0C35D7, EC9D4B3B8F8B0C3EE01D18CDF5BE9EF216AC9BBB1FB64A63D5013BD9AFB2A606 ] C:\Windows\SysWOW64\cryptnet.dll
21:01:47.0450 0x0098  C:\Windows\SysWOW64\cryptnet.dll - ok
21:01:47.0452 0x0098  [ 6F8E3B7B70E1BBA871212940C1FBDF60, 3F9D4EE64E4210340C6FEE0DE81BFE3C613DDBE608EC09D63817D24CE24BFC5E ] C:\Windows\SysWOW64\SensApi.dll
21:01:47.0452 0x0098  C:\Windows\SysWOW64\SensApi.dll - ok
21:01:47.0455 0x0098  [ 0562DF97934FC271893BD916A0262E6D, D0274F22D919ECAB50281BFAA16AB530B54DDC8EBA3B34350640858623663B8A ] C:\Program Files (x86)\Google\Update\1.3.25.11\goopdate.dll
21:01:47.0455 0x0098  C:\Program Files (x86)\Google\Update\1.3.25.11\goopdate.dll - ok
21:01:47.0457 0x0098  [ 0CE4D3BD306DA6D1F6F233C403F5B667, 6428AD0BD3732A2038CD372A06563E84F33DCDAB4E2B203B3F75BE678690DCAD ] C:\Windows\SysWOW64\msi.dll
21:01:47.0457 0x0098  C:\Windows\SysWOW64\msi.dll - ok
21:01:47.0460 0x0098  [ 7A6986DD659B96398A11AF5173892715, FB7818952B9015F433418E7DC656A2C20CD682056AB981A55C1722020142D578 ] C:\Windows\SysWOW64\cabinet.dll
21:01:47.0460 0x0098  C:\Windows\SysWOW64\cabinet.dll - ok
21:01:47.0462 0x0098  [ FD07F21E0A19C27ED4E1EEC2B07452B3, DF54C00B021AF64BB04EDEBCA6F41CCF48F1959DD53ADE545FAFC565F1243392 ] C:\Windows\SysWOW64\devrtl.dll
21:01:47.0462 0x0098  C:\Windows\SysWOW64\devrtl.dll - ok
21:01:47.0466 0x0098  [ 465BEA35F7ED4A4A57686DEA7EA10F47, 7F1B3CA09AB045F805DA5765BE7DD270F5DDACE3073017F7386FF1E2FA82D6FB ] C:\Windows\SysWOW64\cscapi.dll
21:01:47.0466 0x0098  C:\Windows\SysWOW64\cscapi.dll - ok
21:01:47.0470 0x0098  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8, B07A12E3ECD5E418A3F99F00C56E7F482F68CADE330E7C079DCCDFFAD2E21299 ] C:\Windows\SysWOW64\dbghelp.dll
21:01:47.0470 0x0098  C:\Windows\SysWOW64\dbghelp.dll - ok
21:01:47.0471 0x0098  [ 1DB71A41DAEE6B3F8CD0DDA8209FA2D5, ADD7B965D6D4F1FB4DABF8E40E0322E1FDC4652CA8FD670F487D1E875B770759 ] C:\Windows\SysWOW64\WindowsCodecs.dll
21:01:47.0471 0x0098  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
21:01:47.0474 0x0098  [ 846D0E4DB261CFAF363902E41498E961, D7E5591B7604FD583AF7FDA19E30928B24A6145318A3944E7D207F0CCEEB30D0 ] C:\Windows\SysWOW64\EhStorShell.dll
21:01:47.0474 0x0098  C:\Windows\SysWOW64\EhStorShell.dll - ok
21:01:47.0476 0x0098  [ EB77DB354791A5932CA559B6F6374E95, 113816D464941C92A952F5593552E889CFDA7E0389DC1B64031C3077C3CF7043 ] C:\Windows\SysWOW64\ntshrui.dll
21:01:47.0476 0x0098  C:\Windows\SysWOW64\ntshrui.dll - ok
21:01:47.0479 0x0098  [ 827CB0D6C3F8057EA037FF271F8E9795, 82760DBDDD38D2A31CAAF51D065DF4E7E1D0F0C22733A0AF653776EBF7B79470 ] C:\Windows\SysWOW64\imageres.dll
21:01:47.0479 0x0098  C:\Windows\SysWOW64\imageres.dll - ok
21:01:47.0481 0x0098  [ 8B74CEC6980D4816B0037AE9A27E538F, 8721EDB4C51BF6020002FA5DDB1987C68590F9F433A2F18D9756B2DAC7542CB6 ] C:\Windows\SysWOW64\slc.dll
21:01:47.0481 0x0098  C:\Windows\SysWOW64\slc.dll - ok
21:01:47.0483 0x0098  [ 1950B1C38AED4154BA79F77E36494D8A, 3F79FA4C971FBB73FECA64F5F0C6BCB9F04D7E9A49A95584E97D80B97CCE326C ] C:\Windows\System32\WUDFx.dll
21:01:47.0483 0x0098  C:\Windows\System32\WUDFx.dll - ok
21:01:47.0488 0x0098  [ 91D6F0AB79AA36FFB932157865206F35, 5C20EA92737A4409DF4601D6D256DBC7A8D0AE4C31A32F20054E873473B27781 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
21:01:47.0488 0x0098  C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
21:01:47.0490 0x0098  [ 9864D52F15AD32094A636C6B5281D9E7, 2DBECE721AA11509F6D5005C5FB965EB0DF28729D0B6C524BB35603C1243BA42 ] C:\Windows\System32\WMVCORE.DLL
21:01:47.0490 0x0098  C:\Windows\System32\WMVCORE.DLL - ok
21:01:47.0493 0x0098  [ CB8C1CC4F46FBAC78150754D77460C73, 2A8F6A2FFA85E1F068C539BDF100C8B4B02B2D1379FFC2607AA474890D8E7C0A ] C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe
21:01:47.0493 0x0098  C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler.exe - ok
21:01:47.0496 0x0098  [ 7161E8E31B7FD3B1CE083C2CA5FD5F44, 9DDF242C7B5D373064D1C5284C435E60214E90CE8E3A23F02FD6875C101F7C50 ] C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe
21:01:47.0496 0x0098  C:\Program Files (x86)\Google\Update\1.3.25.11\GoogleCrashHandler64.exe - ok
21:01:47.0500 0x0098  [ A7A8CA53D9C9FD90C07AB0EB38E5316B, B98722E76601A98F038F40703C4B8BD21B5EC3B65DC1B07B7C367C06448F8A0E ] C:\Windows\System32\dbghelp.dll
21:01:47.0500 0x0098  C:\Windows\System32\dbghelp.dll - ok
21:01:47.0502 0x0098  [ 95EF63A7827D4E3A229CBBCB42619E93, FA38DD035B2C4FC82B60868F49D45A39FBBC96096AAD5A2C8BD752A250255BA7 ] C:\Windows\System32\drivers\mwac.sys
21:01:47.0502 0x0098  C:\Windows\System32\drivers\mwac.sys - ok
21:01:47.0506 0x0098  [ C5A99A4C0DC9F0F5A95BA0C83D30A549, F99CCCE303F0FC07D82D3BBA223E8CCE41FB7FA8FB5C2A9214C161826537C7C9 ] C:\Windows\SysWOW64\mstask.dll
21:01:47.0506 0x0098  C:\Windows\SysWOW64\mstask.dll - ok
21:01:47.0508 0x0098  [ FF014AC49AC32E5F1C7D6E271B320893, B18E4A47EE42C1E1962A243EF06FBB9D1401465D6B2CFA198B8ADEE1EA1C8ACE ] C:\Program Files (x86)\Malwarebytes Anti-Malware\imageformats\qgif4.dll
21:01:47.0508 0x0098  C:\Program Files (x86)\Malwarebytes Anti-Malware\imageformats\qgif4.dll - ok
21:01:47.0511 0x0098  [ 267C379589E14C5A7B5CD2CCABF35CD2, 32943ED9C05CCCC3089CF081466D1A51BB899120DA4B3C8CA21ADC262463C407 ] C:\Program Files (x86)\blueconnect\msvcr71.dll
21:01:47.0511 0x0098  C:\Program Files (x86)\blueconnect\msvcr71.dll - ok
21:01:47.0514 0x0098  [ 6CB0776D0F5E1E1E8A23523FFD3FAF6F, 2C4CF7CBE810E704913887F57898E97717091884098D8C530972EF247FE4C953 ] C:\Program Files (x86)\blueconnect\msvcp71.dll
21:01:47.0514 0x0098  C:\Program Files (x86)\blueconnect\msvcp71.dll - ok
21:01:47.0516 0x0098  [ FF835BD27335EB26C042EDD6E523168B, 4C18C65428DB658CA0AE2E9734E3CDE4ED7954D403898750114440A3845DABB0 ] C:\Program Files (x86)\blueconnect\isaputrace.dll
21:01:47.0516 0x0098  C:\Program Files (x86)\blueconnect\isaputrace.dll - ok
21:01:47.0519 0x0098  [ 8A44B240D73D6B3F0C13A6D3814E08F8, 20083BD688D1A79967BD4D4E1F17634B5A871843867C1E2DFEC9D7A360D027DB ] C:\Program Files (x86)\blueconnect\SkinMagicU.dll
21:01:47.0519 0x0098  C:\Program Files (x86)\blueconnect\SkinMagicU.dll - ok
21:01:47.0522 0x0098  [ 50D245593D05B0AD15561995939DFEB7, E09ABF0423B4A86DDD9A9D0A367A3E967DD8354E6B2767A507840FE0C3ABF719 ] C:\Program Files (x86)\blueconnect\DeviceMgrPlugin.dll
21:01:47.0522 0x0098  C:\Program Files (x86)\blueconnect\DeviceMgrPlugin.dll - ok
21:01:47.0524 0x0098  [ 563449A91F8CF193C6AFBD332C42D326, 30F9B722725C02B91C454FFDB2EB6C7387C0369F3F0B5722BF6453AD8275E98C ] C:\Program Files (x86)\blueconnect\DetectDev.dll
21:01:47.0524 0x0098  C:\Program Files (x86)\blueconnect\DetectDev.dll - ok
21:01:47.0527 0x0098  [ B8DF8113E1FE40B929B6B6355C5DBD6A, 0A878243101CF0F4528E5111EC03E7288564D21168144FAB91C617C183E90EC7 ] C:\Program Files (x86)\blueconnect\atcomm.dll
21:01:47.0527 0x0098  C:\Program Files (x86)\blueconnect\atcomm.dll - ok
21:01:47.0529 0x0098  [ C58EA91166B802B607222F9E6BF72696, 28A3EA2EDB4595CFA650F94D1847EADBEFBD381F70596B2A437227A8A3C5A0C2 ] C:\Program Files (x86)\blueconnect\XCodec.dll
21:01:47.0529 0x0098  C:\Program Files (x86)\blueconnect\XCodec.dll - ok
21:01:47.0534 0x0098  [ AACC48FE239F0DF126DA2F28930A5B83, D55E7D9AA79B1875E9074CFFBBCD484024902566B49806A8639B5C04847DFF89 ] C:\Windows\System32\WMASF.DLL
21:01:47.0534 0x0098  C:\Windows\System32\WMASF.DLL - ok
21:01:47.0535 0x0098  [ 389CA818132C1D7DCF0C791E8D9035DE, 5E54799F92CC604FABEF2F97AFD97F9CAD70D01BCDBC41FAC408D60821927C12 ] C:\Windows\System32\PortableDeviceClassExtension.dll
21:01:47.0535 0x0098  C:\Windows\System32\PortableDeviceClassExtension.dll - ok
21:01:47.0538 0x0098  [ 4F3CD1C59EA71401E155C432BCECE180, 6D4118A627CAE509E43D0CC0062EECAA0990C955BB15AE24834460551B2F51A2 ] C:\Windows\System32\PortableDeviceTypes.dll
21:01:47.0538 0x0098  C:\Windows\System32\PortableDeviceTypes.dll - ok
21:01:47.0541 0x0098  [ BC0A3CEEEE93480531A31FA4E255BD9B, 462881E4ECE52501770F7DE51039A09487862FCF1199DD940A98E07AF84DCA62 ] C:\Program Files (x86)\blueconnect\DeviceOperate.dll
21:01:47.0541 0x0098  C:\Program Files (x86)\blueconnect\DeviceOperate.dll - ok
21:01:47.0544 0x0098  [ 512D9828B46A9EDA9CD9A66C4568A215, 8480DDC62B2A54B33E4A0F4C43E03CEA983242FE2C60C48BB1A6FCDA02E4D49C ] C:\Program Files (x86)\blueconnect\ConfigFilePlugin.dll
21:01:47.0544 0x0098  C:\Program Files (x86)\blueconnect\ConfigFilePlugin.dll - ok
21:01:47.0546 0x0098  [ 26C43960C99EE861A5D0EDC4DCF3B1C3, 6238FB8E785652040CCE3E7044EA52066CE1BF173A1467474D64A3AB214B6BCD ] C:\Windows\System32\drivers\MBAMSwissArmy.sys
21:01:47.0546 0x0098  C:\Windows\System32\drivers\MBAMSwissArmy.sys - ok
21:01:47.0549 0x0098  [ CE5BAB535BFA98530DDAC4661A751DFE, 2034001AD8C8B39889349D96437696FC0C924725D2ECE4FF74FEA8466E60E1A3 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\7z.dll
21:01:47.0549 0x0098  C:\Program Files (x86)\Malwarebytes Anti-Malware\7z.dll - ok
21:01:47.0551 0x0098  [ 2EAA4F04AE16F4801E73750376632963, E11FD2F5A7B5298F25CC838BA444F42375D3423CC572499A410EF95C15CC362B ] C:\Program Files (x86)\blueconnect\NetInfoPlugin.dll
21:01:47.0551 0x0098  C:\Program Files (x86)\blueconnect\NetInfoPlugin.dll - ok
21:01:47.0555 0x0098  [ 839F96DBAAFD3353E0B248A5E0BD2A51, 11DA5AD3EA5FF4766C12B99FB520B3CBE08581ECAF1A2FD1DC5AC835CA78FAC2 ] C:\Windows\SysWOW64\rasapi32.dll
21:01:47.0556 0x0098  C:\Windows\SysWOW64\rasapi32.dll - ok
21:01:47.0558 0x0098  [ FFA7172354B9256DBB2CDD75F16F33FE, 85B2F014C67C2E52540F17D561793C6633C9E98F12639CCD3854EB1EC34DD035 ] C:\Windows\SysWOW64\rasman.dll
21:01:47.0558 0x0098  C:\Windows\SysWOW64\rasman.dll - ok
21:01:47.0560 0x0098  [ C68094AC62743AE350AB0FB17EC6AA3E, 5B0407AEA948750342158E3B4B2ACEABCCED48D6EA7CAEEEFAEFFD8C050B2EB2 ] C:\Program Files (x86)\blueconnect\NetConnectPlugin.dll
21:01:47.0560 0x0098  C:\Program Files (x86)\blueconnect\NetConnectPlugin.dll - ok
21:01:47.0563 0x0098  [ 428E93C11AB425386DEC1F8B65C82DC0, E6A6679D01A4FFE2D985B66DC6F4BF7AFDA248C476B9D5B4E51E59E876349277 ] C:\Program Files (x86)\blueconnect\DialUpPlugin.dll
21:01:47.0563 0x0098  C:\Program Files (x86)\blueconnect\DialUpPlugin.dll - ok
21:01:47.0565 0x0098  [ D2273267A1F18C2D3D3AE34BB08DAB1F, 708E51B479FA8D1D7E58EB6EF1572F4B69577BAA60E37934DAF45761CF67B3B2 ] C:\Program Files (x86)\blueconnect\TracePlugin.dll
21:01:47.0565 0x0098  C:\Program Files (x86)\blueconnect\TracePlugin.dll - ok
21:01:47.0568 0x0098  [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159, ACE7F85685EB92FC3AB4215122B0469E32F23B196C49F08CDA7791D3122C45DC ] C:\Windows\SysWOW64\rtutils.dll
21:01:47.0568 0x0098  C:\Windows\SysWOW64\rtutils.dll - ok
21:01:47.0570 0x0098  [ DE8AD266952C4E8A0F5F9EC4F2291524, 4BBC3FBFCD7EE0D76932399231A280FB3DFD052E88C1AD97CB958B8D8303BC32 ] C:\Program Files (x86)\blueconnect\CryptPlugin.dll
21:01:47.0570 0x0098  C:\Program Files (x86)\blueconnect\CryptPlugin.dll - ok
21:01:47.0573 0x0098  [ 5C91ABA75BA32797DB5B536C354DF616, E4C98EDF18D8B45CA703EDB7D988686706BD7509251EDA4F6864844DC6E77E57 ] C:\Program Files (x86)\blueconnect\NDISPlugin.dll
21:01:47.0573 0x0098  C:\Program Files (x86)\blueconnect\NDISPlugin.dll - ok
21:01:47.0575 0x0098  [ 84F22128ABCDA63E57078353A5EC9750, 9713D0C44F56233EBDB7B793AB58D8EBDFF0CB163EF9F8274AB4FAD923B2EFCB ] C:\Program Files (x86)\blueconnect\NDISAPI.dll
21:01:47.0575 0x0098  C:\Program Files (x86)\blueconnect\NDISAPI.dll - ok
21:01:47.0578 0x0098  [ C3EA93FAFF6BD7B5778F7C1B9EA72F7D, 2B9981B36A17D76F096AFF834DA1CE726F868D792731A6D02E80C2FE0C5CE382 ] C:\Program Files (x86)\blueconnect\NetInfoUIExPlugin.dll
21:01:47.0578 0x0098  C:\Program Files (x86)\blueconnect\NetInfoUIExPlugin.dll - ok
21:01:47.0581 0x0098  [ 0029EBA325F2FC9B6BA46BEE33F32A09, C07A936009FB275D56DC451C7D05B5F5A3F4DCD985C7F02DEE57D674034C602B ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\GdiPlus.dll
21:01:47.0581 0x0098  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17514_none_72d18a4386696c80\GdiPlus.dll - ok
21:01:47.0583 0x0098  [ D8CE9B84897DBD57B988F62595AEEB09, 4D11A452760A8F47CD2BCC48D406D5BC31A81EF83C1FF8CC3731734DAB977FCA ] C:\Program Files (x86)\blueconnect\QuickLinkUIPlugin.dll
21:01:47.0583 0x0098  C:\Program Files (x86)\blueconnect\QuickLinkUIPlugin.dll - ok
21:01:47.0586 0x0098  [ 5FCF8573F9E1DA2CD680F6C9C3334CE3, 4A0DF69FF92B6BFBED5F112D0B55168353D332A2B6028B9B1B904DFC72FCF3EB ] C:\Program Files (x86)\blueconnect\XFramePlugin.dll
21:01:47.0587 0x0098  C:\Program Files (x86)\blueconnect\XFramePlugin.dll - ok
21:01:47.0589 0x0098  [ B3F446D1C1D3363015C539DFE114863B, F5D1A738E35B66DE1D3F08A85625531F343B18F9B306ECCF03C198DFB8A7DD3E ] C:\Program Files (x86)\blueconnect\MenuMgrPlugin.dll
21:01:47.0589 0x0098  C:\Program Files (x86)\blueconnect\MenuMgrPlugin.dll - ok
21:01:47.0592 0x0098  [ 801CB805C9086457A589F94BE6396A36, CB01155D61CA116B6180683A35EC96F0D32F9BD9E24876582403B35F792175B5 ] C:\Program Files (x86)\blueconnect\LocaleMgrPlugin.dll
21:01:47.0592 0x0098  C:\Program Files (x86)\blueconnect\LocaleMgrPlugin.dll - ok
21:01:47.0594 0x0098  [ 32E4018BF98CB368ED187CFFF73B7191, 0FB6CA15E4BF3B3C6C8DD45B947C880F8B77EEA6953540BC97B33B23866D5EEE ] C:\Program Files (x86)\blueconnect\NotifyServicePlugin.dll
21:01:47.0594 0x0098  C:\Program Files (x86)\blueconnect\NotifyServicePlugin.dll - ok
21:01:47.0597 0x0098  [ 4DD3BF01094BEA8C0629FBDD65C63CB3, F91491A3B2004ABB7C43CBAC49B7A0B8C8E3A7A79D55C26C94AE7412B63B8A15 ] C:\Program Files (x86)\blueconnect\StatusBarMgrPlugin.dll
21:01:47.0597 0x0098  C:\Program Files (x86)\blueconnect\StatusBarMgrPlugin.dll - ok
21:01:47.0600 0x0098  [ 54D362FDFF10D6576A074DC6CE6BA246, 11E8FF5ECAF1D6101538BC4DBF2B324DD429BC892E40937AAE105AE54017E1D6 ] C:\Program Files (x86)\blueconnect\ToolBarMgrPlugin.dll
21:01:47.0600 0x0098  C:\Program Files (x86)\blueconnect\ToolBarMgrPlugin.dll - ok
21:01:47.0603 0x0098  [ A35DCF5320BF2D4A1374FADB8F1D0F66, AE80AFA27E9E6787AB12FDD8DD01ED64CB9BD4CAF02A922ABF7B52111B69EB3A ] C:\Program Files (x86)\blueconnect\LayoutPlugin.dll
21:01:47.0603 0x0098  C:\Program Files (x86)\blueconnect\LayoutPlugin.dll - ok
21:01:47.0606 0x0098  [ 07BDC7D0A36D3258ABAC98D4D250BAEB, DEAE8E62279978A25B0FAD70596B96DD0168544736C842488090E45861A4C86B ] C:\Program Files (x86)\blueconnect\SkinMagicExU.dll
21:01:47.0606 0x0098  C:\Program Files (x86)\blueconnect\SkinMagicExU.dll - ok
21:01:47.0609 0x0098  [ 98D3C7878237FE3EC0A47D87E369750A, 3F9A575A0735265BC802FA3BF81552ECD3603A2BBA47BF091EAEA311ABB11138 ] C:\Program Files (x86)\blueconnect\SMSUIPlugin.dll
21:01:47.0609 0x0098  C:\Program Files (x86)\blueconnect\SMSUIPlugin.dll - ok
21:01:47.0612 0x0098  [ B4DADE20D77C00A736EC773CEBC9F201, ED59C16C18C3B5F227FE5CEA2BD14E3294878E4E25775530EBC68E37B9C16253 ] C:\Program Files (x86)\blueconnect\AddrBookPlugin.dll
21:01:47.0612 0x0098  C:\Program Files (x86)\blueconnect\AddrBookPlugin.dll - ok
21:01:47.0616 0x0098  [ 3D1A8BCDF3FB0FE1CDEC74BF29EA62B7, 0177C89845445C32773F17A15120FE4E3EDC8CF5B38BD117DF38E552044B7808 ] C:\Program Files (x86)\blueconnect\FileManager.dll
21:01:47.0616 0x0098  C:\Program Files (x86)\blueconnect\FileManager.dll - ok
21:01:47.0619 0x0098  [ DE79CE92A53F54147BF82476CBF47914, 4D093E11C77B630118C169C6E74D4EC4318BE2A020ECAD1C3600454EFB5F9F1E ] C:\Program Files (x86)\blueconnect\SMSPlugin.dll
21:01:47.0619 0x0098  C:\Program Files (x86)\blueconnect\SMSPlugin.dll - ok
21:01:47.0621 0x0098  [ A7F91DF2651A8E91E7108DEE3CC51521, A0DC06CDFBEA4E205A4615D3CE3421FB47CED1287D4CD39807FA2D99AF136652 ] C:\Program Files (x86)\blueconnect\USSDUIPlugin.dll
21:01:47.0621 0x0098  C:\Program Files (x86)\blueconnect\USSDUIPlugin.dll - ok
21:01:47.0624 0x0098  [ B5506B451BFE7148ECA7056BDA2970BD, 4E8E031342E5EA7DD24B5EFCE04B7FB96BAF0B600F548F8FB2414F0E02C54613 ] C:\Windows\SysWOW64\riched32.dll
21:01:47.0624 0x0098  C:\Windows\SysWOW64\riched32.dll - ok
21:01:47.0627 0x0098  [ 102CF6879887BBE846A00C459E6D4ABC, A4C51C79CF95D5C79DCEFB02946A09A987FEAF83CE2EE1BA7677EBA90869AC80 ] C:\Windows\SysWOW64\riched20.dll
21:01:47.0627 0x0098  C:\Windows\SysWOW64\riched20.dll - ok
21:01:47.0629 0x0098  [ B3EEDF54A701B1879F6FC412EDAF67F5, AA904BE37F020C139A9772A35110B4D4FD6F348898BA1046DDCBFEAA79B48A65 ] C:\Program Files (x86)\blueconnect\DeviceMgrUIPlugin.dll
21:01:47.0629 0x0098  C:\Program Files (x86)\blueconnect\DeviceMgrUIPlugin.dll - ok
21:01:47.0632 0x0098  [ D56C13F26ADCB3BC0455DB42883F6E7D, D4FED452DB714614EC362DCC56EFA66777FBCFB49037D9B3C1FFE09A91ADA2D0 ] C:\Windows\System32\iedkcs32.dll
21:01:47.0632 0x0098  C:\Windows\System32\iedkcs32.dll - ok
21:01:47.0634 0x0098  [ 6D220604AA4240303DD8DEAEAB428377, 0AC013CFA8F8040017969B3110BBD3B9A4827E0DFC4BE65F334F607248DF9550 ] C:\Windows\System32\ie4uinit.exe
21:01:47.0634 0x0098  C:\Windows\System32\ie4uinit.exe - ok
21:01:47.0639 0x0098  [ 2C647ABE9A424E55B5F3DAE4629B4277, 7B33009D253BAFFF87535C075E75498B6A06F334035DDC0DF51E10A142B4DF9E ] C:\Windows\System32\themeui.dll
21:01:47.0639 0x0098  C:\Windows\System32\themeui.dll - ok
21:01:47.0641 0x0098  [ 1FCB1A72BF5C784F7358E6BEF38E4571, 12DA4240F8C964EDA6223257BD9723FD9372E63AE86F00509163B1DE12A5F6C5 ] C:\Windows\System32\timedate.cpl
21:01:47.0641 0x0098  C:\Windows\System32\timedate.cpl - ok
21:01:47.0643 0x0098  [ 73E8667A19FEEDD856DF2695E9E511D4, 68D66C36D1F293D10ADCC6A33C870F989A29743537592CF172F02E794BEAFD1C ] C:\Windows\SysWOW64\wship6.dll
21:01:47.0643 0x0098  C:\Windows\SysWOW64\wship6.dll - ok
21:01:47.0646 0x0098  [ ED6EE83D61EBC683C2CD8E899EA6FEBE, F82592908D038C44D9F2E5C5B7BC663A2D370FC565F40420E1138A9E55F0E7EB ] C:\Windows\SysWOW64\rasadhlp.dll
21:01:47.0646 0x0098  C:\Windows\SysWOW64\rasadhlp.dll - ok
21:01:47.0648 0x0098  [ C4F40F6CACD796A8E16671D0E9A2F319, 44853C645915D910ED0CC6D38F68B6C222528EC5FCBE990E238010F41204E682 ] C:\Windows\System32\shdocvw.dll
21:01:47.0648 0x0098  C:\Windows\System32\shdocvw.dll - ok
21:01:47.0651 0x0098  [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{B0B27853-B141-46C1-840B-9CBAE21CC8E8}.tmp
21:01:47.0651 0x0098  C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{B0B27853-B141-46C1-840B-9CBAE21CC8E8}.tmp - ok
21:01:47.0654 0x0098  [ A0A65D306A5490D2EB8E7DE66898ECFD, CE5DA408F4EDD5E81CE0925867F03C9A35172CF1571FE4C4C052E45AB69822BB ] C:\Windows\System32\linkinfo.dll
21:01:47.0654 0x0098  C:\Windows\System32\linkinfo.dll - ok
21:01:47.0656 0x0098  [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{BE19E0CB-CCA6-4289-83FC-3C682D7953EE}.tmp
 
21:01:47.0656 0x0098  C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{BE19E0CB-CCA6-4289-83FC-3C682D7953EE}.tmp - ok
21:01:47.0659 0x0098  [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{1476CB00-C22E-444A-B5AA-6BE563F405DA}.tmp
21:01:47.0659 0x0098  C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{1476CB00-C22E-444A-B5AA-6BE563F405DA}.tmp - ok
21:01:47.0662 0x0098  [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{A18D1272-22DD-4618-93D1-D7B68170EDAB}.tmp
21:01:47.0662 0x0098  C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{A18D1272-22DD-4618-93D1-D7B68170EDAB}.tmp - ok
21:01:47.0665 0x0098  [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{8D31FCF9-E9D8-49F3-A9BC-C31B92423083}.tmp
21:01:47.0665 0x0098  C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{8D31FCF9-E9D8-49F3-A9BC-C31B92423083}.tmp - ok
21:01:47.0670 0x0098  [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86, E15ED4FEFC3010C213694331DDFDC03767682325C898D773AB243E2DC8B08461 ] C:\Windows\System32\msftedit.dll
21:01:47.0670 0x0098  C:\Windows\System32\msftedit.dll - ok
21:01:47.0672 0x0098  [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{75DFD031-CEDA-4B68-A621-530DE24EE23C}.tmp
21:01:47.0672 0x0098  C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{75DFD031-CEDA-4B68-A621-530DE24EE23C}.tmp - ok
21:01:47.0675 0x0098  [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{C0980AA2-7888-4A42-B819-C3EF9FD85CAF}.tmp
21:01:47.0675 0x0098  C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{C0980AA2-7888-4A42-B819-C3EF9FD85CAF}.tmp - ok
21:01:47.0678 0x0098  [ 7CB3ACB163DE051169095DC6507B8977, 45D4DEB0695440D8B5E959945B3F7A773E02E2AB305E316123A1064FC1905402 ] C:\Windows\System32\msls31.dll
21:01:47.0678 0x0098  C:\Windows\System32\msls31.dll - ok
21:01:47.0680 0x0098  [ 7DBA84667DC18877AEF693E3543DFAD7, 499306CE72EB8B873C547C600FD1093B7A79122D656407E69879041690AE588F ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
21:01:47.0680 0x0098  C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
21:01:47.0683 0x0098  [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{C12DF315-3036-488A-83E5-8DEF83CF50AD}.tmp
21:01:47.0683 0x0098  C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{C12DF315-3036-488A-83E5-8DEF83CF50AD}.tmp - ok
21:01:47.0686 0x0098  [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{5A2E0D29-563B-4F93-B71D-30EBB4FD924D}.tmp
21:01:47.0686 0x0098  C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{5A2E0D29-563B-4F93-B71D-30EBB4FD924D}.tmp - ok
21:01:47.0690 0x0098  [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{4BFACA7F-387E-4C75-B92F-77AFD96A50DC}.tmp
21:01:47.0690 0x0098  C:\Users\xblee\AppData\Local\Temp\{39DCD795-ACBF-4830-BE6C-08D0E2C3EFD0}\{4BFACA7F-387E-4C75-B92F-77AFD96A50DC}.tmp - ok
21:01:47.0697 0x0098  [ 4C2C4640BF23AAFCF90519E0F34436CE, 8ACCDA77C2DC5BE2DAED05134310122AFECC872A8D118612E55DD229BFE4D844 ] C:\Windows\System32\DeviceCenter.dll
21:01:47.0697 0x0098  C:\Windows\System32\DeviceCenter.dll - ok
21:01:47.0701 0x0098  [ 24F4B480F335A6C724AF352253C5D98B, 011413B236CAD7B78CE0A0EEC3E3085D48C7576A3205D025BA6EBFDF590538E4 ] C:\Windows\System32\thumbcache.dll
21:01:47.0701 0x0098  C:\Windows\System32\thumbcache.dll - ok
21:01:47.0704 0x0098  [ 64D94F1ED2DCB199948F614367CD2636, 49C28D44658683F234F6F59FA10EA0957A2BF75421C0846E64DC0D359FB6D410 ] C:\Program Files (x86)\blueconnect\UpdateDog\ouc.exe
21:01:47.0704 0x0098  C:\Program Files (x86)\blueconnect\UpdateDog\ouc.exe - ok
21:01:47.0707 0x0098  [ 405F4D32D2185F1F1BD753D8EEAFFB3A, CAC42C3E09C43BE96592B670D70821386014DB22D8239A9CFB9E33E54FB5C3D5 ] C:\Windows\System32\networkexplorer.dll
21:01:47.0707 0x0098  C:\Windows\System32\networkexplorer.dll - ok
21:01:47.0710 0x0098  [ B9B1DA9C6A463114CC52DD293643DA6D, AD3DC4D57AB20E4E4A34BD586B4D8CE72968D1028E090001584AD04884B3006B ] C:\Program Files (x86)\GlassWire\GlassWire.exe
21:01:47.0710 0x0098  C:\Program Files (x86)\GlassWire\GlassWire.exe - ok
21:01:47.0713 0x0098  [ 1473768973453DE50DC738C2955FC4DD, 14BC5DA2442CB726ACC1F277DDBECCF5D61E3A0A3E083A55A0BB610191E35220 ] C:\Windows\System32\wdmaud.drv
21:01:47.0713 0x0098  C:\Windows\System32\wdmaud.drv - ok
21:01:47.0715 0x0098  [ 8560FFFC8EB3A806DCD4F82252CFC8C6, CC27BC092369A89D6147B16568FEDEB68B584D5738CD686C31F7FAE22ED17B3B ] C:\Windows\System32\ksuser.dll
21:01:47.0715 0x0098  C:\Windows\System32\ksuser.dll - ok
21:01:47.0717 0x0098  [ E2A17BCC08D92F42E08AF6BA2F93ABA7, 5FC9D47BF4B1094BECC0C0DDCD5CD4318DD3E4495D982F8785331616D5B82599 ] C:\Windows\SysWOW64\ExplorerFrame.dll
21:01:47.0717 0x0098  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
21:01:47.0722 0x0098  [ 783EF0BC461DF3EB545E742EA7139048, 906BDF3F3FA22323548D041DA8C4A5D1E36AE8F085AEC2479AF3CA50396FA9C3 ] C:\Program Files (x86)\GlassWire\Qt5Core.dll
21:01:47.0722 0x0098  C:\Program Files (x86)\GlassWire\Qt5Core.dll - ok
21:01:47.0724 0x0098  [ 316663537A203220F15B9D426D5B44F8, DA8137486BD7A599F39286D71C04BB1AFD9C101E628311C2999D2630FD9AE035 ] C:\Windows\System32\apisetschema.dll
21:01:47.0724 0x0098  C:\Windows\System32\apisetschema.dll - ok
21:01:47.0727 0x0098  [ DC220AE6F64819099F7EBD6F137E32E7, B8FE13B859FA83500DD95637FA6D4A5B8392C2A363E41D014D3B5374F636E1DE ] C:\Windows\System32\AudioSes.dll
21:01:47.0727 0x0098  C:\Windows\System32\AudioSes.dll - ok
21:01:47.0729 0x0098  [ 6E1F8165C365D35C8E3C045AF0CDD481, B861360D0A014265A0BEB4CC2FE31EA05AE95120E8B07820C13A044D64C00E2B ] C:\Windows\SysWOW64\duser.dll
21:01:47.0729 0x0098  C:\Windows\SysWOW64\duser.dll - ok
21:01:47.0732 0x0098  [ A5A5C69F11899A81BEEBBBF51C827393, 8FD9EDA86516B2FA9613F32A88A2D2C0E63B5E05B12FD0447D2045D69EA8A649 ] C:\Program Files (x86)\GlassWire\icuin52.dll
21:01:47.0732 0x0098  C:\Program Files (x86)\GlassWire\icuin52.dll - ok
21:01:47.0735 0x0098  [ 1B7C3A37362C7B2890168C5FC61C8D9B, 03727930E5BB5F9D91BAB901FC9A2E3B795D68E2AEE6A2CC3477F356C45A9C54 ] C:\Windows\System32\msacm32.drv
21:01:47.0735 0x0098  C:\Windows\System32\msacm32.drv - ok
21:01:47.0739 0x0098  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A, 72288C0A88916D3C3828DBD948DBDB0928F26106319F8E60102D6C9004514D60 ] C:\Windows\System32\msacm32.dll
21:01:47.0739 0x0098  C:\Windows\System32\msacm32.dll - ok
21:01:47.0742 0x0098  [ EE06B85BC69F18826302348A2AD089E0, 417205797CC9F6C986A863A61179784D9ADCAF1961EF8A4D9042D73C5A86509A ] C:\Windows\SysWOW64\dui70.dll
21:01:47.0742 0x0098  C:\Windows\SysWOW64\dui70.dll - ok
21:01:47.0745 0x0098  [ CA2A0750ED830678997695FF61B04C30, E84860CD97AA3C4565ABB2D5D406A5C42B1AD2D8BA1B8CF81FE564D91F15F976 ] C:\Windows\System32\midimap.dll
21:01:47.0745 0x0098  C:\Windows\System32\midimap.dll - ok
21:01:47.0748 0x0098  [ 4D2E41F6A2F322156A8EE96519411A37, 037841209A8551C4748767AE6AF6B7CA9C6739E72D74878224A0242D265166BC ] C:\Program Files (x86)\GlassWire\icuuc52.dll
21:01:47.0748 0x0098  C:\Program Files (x86)\GlassWire\icuuc52.dll - ok
21:01:47.0751 0x0098  [ 88A59F393DFB73F15A95E8F913CD3211, BC0D37DC0288D725F91392F7EAADB5744DF577186F56AF1ED363E17E12914FAC ] C:\Program Files (x86)\blueconnect\DataCardMonitor.exe
21:01:47.0751 0x0098  C:\Program Files (x86)\blueconnect\DataCardMonitor.exe - ok
21:01:47.0753 0x0098  [ 9A7C4816F97035F34B5E9EFE9897828F, BA500ADC247EBA085D5FAA0C701C465A77C82660FD3D326F09070D0CD01BBBEF ] C:\Program Files (x86)\GlassWire\icudt52.dll
21:01:47.0753 0x0098  C:\Program Files (x86)\GlassWire\icudt52.dll - ok
21:01:47.0756 0x0098  [ 5EDBB34736DD7AC1A73CF8792A835E10, 15E87C449AAF2095273341DD9355D8DF2690340D1DEFAF0DFF034F1CDF4316F8 ] C:\Windows\System32\AudioEng.dll
21:01:47.0756 0x0098  C:\Windows\System32\AudioEng.dll - ok
21:01:47.0758 0x0098  [ 887CAA31048EB8ED09A0CBD0E6F46F09, BBCED0BD4EB00C3FECFC9448223D4C441A868787877291F5489B07B43FAB65A4 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
21:01:47.0758 0x0098  C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe - ok
21:01:47.0761 0x0098  [ 3504B34CD2DE00BA3CC1A195F1B739BD, C08B5AD0C59FF393658CB08130A138CDBC16C1BF2672611CD2C5C93ED40EBA21 ] C:\Windows\System32\gameux.dll
21:01:47.0761 0x0098  C:\Windows\System32\gameux.dll - ok
21:01:47.0764 0x0098  [ F7F0714EF964652CAF1CA177722AC6DD, 06C8F8AC796F218473BA002A21AD947B13BE5E235CBAC684B209FA6E8C2DC2DE ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe
21:01:47.0764 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\a2guard.exe - ok
21:01:47.0766 0x0098  [ D02CCF48FA62EA551E83AF6E4D5C2F43, B8A4E6CA02A4D98C484B316737435A568B7F9E538DD3B15FDB9634DD27C1F9B0 ] C:\Program Files (x86)\GlassWire\Qt5Widgets.dll
21:01:47.0766 0x0098  C:\Program Files (x86)\GlassWire\Qt5Widgets.dll - ok
21:01:47.0769 0x0098  [ C1395286B822E306B4FE1568A8A77813, 0642B6C793BE0EED5E7D1D2533FC5A01417C50040FC60A8E89BD97CE4A119388 ] C:\Windows\System32\AUDIOKSE.dll
21:01:47.0769 0x0098  C:\Windows\System32\AUDIOKSE.dll - ok
21:01:47.0771 0x0098  [ 3819AD4329303EAC88480CA16A650735, FBE665BEE15A334851AF4BF9969C8BC21B3F0254CAA5E21E67D7843D4171E675 ] C:\Windows\System32\UIAnimation.dll
21:01:47.0771 0x0098  C:\Windows\System32\UIAnimation.dll - ok
21:01:47.0774 0x0098  [ F6DE549039CCF8DB36A60DB15080E78A, D4F2CA9846012155068145BDA9D1A506155DD4C177171E2DB63BD555C4B0CB10 ] C:\Program Files (x86)\GlassWire\Qt5Gui.dll
21:01:47.0774 0x0098  C:\Program Files (x86)\GlassWire\Qt5Gui.dll - ok
21:01:47.0776 0x0098  [ D1BBE227367ED791D5FCF08E132D2956, 34349B7FB46BB89D59CC9CC6CD3F790870AB96642254C0374D97AFAC6121B945 ] C:\Windows\SysWOW64\opengl32.dll
21:01:47.0776 0x0098  C:\Windows\SysWOW64\opengl32.dll - ok
21:01:47.0778 0x0098  [ DE3897365B04C4DA1CF8FF725577C082, 44703E2D6C7219714C929D8ED096C8E044A3EDCA73198870A5CC4EF5CE16C397 ] C:\Windows\SysWOW64\glu32.dll
21:01:47.0778 0x0098  C:\Windows\SysWOW64\glu32.dll - ok
21:01:47.0781 0x0098  [ 64D94F1ED2DCB199948F614367CD2636, 49C28D44658683F234F6F59FA10EA0957A2BF75421C0846E64DC0D359FB6D410 ] C:\Users\xblee\AppData\Roaming\blueconnect\ouc.exe
21:01:47.0782 0x0098  C:\Users\xblee\AppData\Roaming\blueconnect\ouc.exe - ok
21:01:47.0785 0x0098  [ 198552AEFECA69D646867EC8D792DE95, 6978D5205387391748EE7E9FACF1AE607C37FBFD83B77CB632DD772F8D71A165 ] C:\Windows\SysWOW64\ddraw.dll
21:01:47.0785 0x0098  C:\Windows\SysWOW64\ddraw.dll - ok
21:01:47.0789 0x0098  [ 6F3C559B82F2912354BE5B098744CC8C, EB64E5C02C81588921A65194E1256E80699A1317E7D9A57395CD38C2639C8B08 ] C:\Windows\System32\WMALFXGFXDSP.dll
21:01:47.0789 0x0098  C:\Windows\System32\WMALFXGFXDSP.dll - ok
21:01:47.0792 0x0098  [ 55E5B32AE8D1F51A63C82919656FD275, 1E32D9471902F0743BF234466E44A7ECCF7B55618A2D42F9B0902AD591133700 ] C:\Windows\SysWOW64\dciman32.dll
21:01:47.0792 0x0098  C:\Windows\SysWOW64\dciman32.dll - ok
21:01:47.0794 0x0098  [ 48C566013F2B20F0BABCAD98079EEC05, C1D5F2CE9A6844BFB2C560E55BCC27364AB902CD14F1BD517551862DCB77B3D7 ] C:\Windows\SysWOW64\tzres.dll
21:01:47.0794 0x0098  C:\Windows\SysWOW64\tzres.dll - ok
21:01:47.0796 0x0098  [ 54B5DCD55B223BC5DF50B82E1E9E86B1, 025294DD69A421FE4EACAA463F8CB797610D8F3A7A3C61656AE83D0CEE07A9BF ] C:\Windows\System32\mfplat.dll
21:01:47.0797 0x0098  C:\Windows\System32\mfplat.dll - ok
21:01:47.0799 0x0098  [ 26DDA8F0DC1B9E5F92A89ABE454E3F5D, 111AEB51CC0130BE50351150FD47B922EF02548032FCAA798193EF8277584027 ] C:\Program Files (x86)\GlassWire\Qt5Svg.dll
21:01:47.0799 0x0098  C:\Program Files (x86)\GlassWire\Qt5Svg.dll - ok
21:01:47.0802 0x0098  [ 9F044AC925A9DCB79C743A95392C4E06, 8BFD982F1417E6D224B8E2C0F8718C45BC6435D082E066C6F59E9A80660C8696 ] C:\Program Files (x86)\GlassWire\Qt5WinExtras.dll
21:01:47.0802 0x0098  C:\Program Files (x86)\GlassWire\Qt5WinExtras.dll - ok
21:01:47.0806 0x0098  [ FCCC8EC36B98EAAB050F302DA6E27531, F7E5E4597BE2DE0B53FF13C704C5D6A849A0AE4912E6C81448ACB4DCC88E416C ] C:\Program Files (x86)\GlassWire\platforms\qwindows.dll
21:01:47.0806 0x0098  C:\Program Files (x86)\GlassWire\platforms\qwindows.dll - ok
21:01:47.0808 0x0098  [ B0129FA6E4C16D53EFF3754D85F37C4D, 1A348EA22A818593F4B891ACB352994A10A2CCE348D96150CEB386106EDE74B6 ] C:\Program Files (x86)\GlassWire\imageformats\qico.dll
21:01:47.0808 0x0098  C:\Program Files (x86)\GlassWire\imageformats\qico.dll - ok
21:01:47.0811 0x0098  [ 9F40F5F88CDE50488F637B60B3F751D2, 009BFFEE2BA90C09FB67E53A0F61C28E24B0E6F3818BF7CF7A0637181CB08D7A ] C:\Program Files (x86)\GlassWire\imageformats\qjpeg.dll
21:01:47.0811 0x0098  C:\Program Files (x86)\GlassWire\imageformats\qjpeg.dll - ok
21:01:47.0814 0x0098  [ 88D358DB551268ED10CB4E71678F85AA, 6275D111CEB4C85EF29E4934F256181027E9C9E4918E67D87BE6E70CB069D53A ] C:\Program Files (x86)\blueconnect\UpdateDog\LiveUpdate.exe
21:01:47.0814 0x0098  C:\Program Files (x86)\blueconnect\UpdateDog\LiveUpdate.exe - ok
21:01:47.0817 0x0098  [ C3761661C17C2248A9379A8FB89E3DE1, CE3477FA2B4058EB80739E0161FE957545F13CF86D313F6422732901D35F75F2 ] C:\Windows\System32\stobject.dll
21:01:47.0817 0x0098  C:\Windows\System32\stobject.dll - ok
21:01:47.0820 0x0098  [ F832EEEA97CDDA1AF577E721F652A0D1, EBBB7CA199BA4DF231123922BD310D43DE0104C6185B70FE0281B938D5336F2E ] C:\Windows\System32\batmeter.dll
21:01:47.0821 0x0098  C:\Windows\System32\batmeter.dll - ok
21:01:47.0822 0x0098  [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122, E7EA375A3BDE8FC764CB09524344370B9EE25F98AD6C83E6F37A569EB8D277D6 ] C:\Windows\System32\prnfldr.dll
21:01:47.0823 0x0098  C:\Windows\System32\prnfldr.dll - ok
21:01:47.0826 0x0098  [ 0015ACFBBDD164A8A730009908868CA7, E1FF243AD2CF959FAB81EFE701592414991C03416FF296ADC93906E76B707C4D ] C:\Windows\System32\winspool.drv
21:01:47.0826 0x0098  C:\Windows\System32\winspool.drv - ok
21:01:47.0829 0x0098  [ FCD0DC8C463CCE283AFE7E71332948AB, 8736715FB402C2DDF45D78D10CE0FC2758C22C22181701FF2CA5493846A70029 ] C:\Program Files (x86)\Emsisoft Anti-Malware\clean32.dll
21:01:47.0829 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\clean32.dll - ok
21:01:47.0832 0x0098  [ 725E5A19B34061BDD5A5F5720A4D9022, 538B6209E15DFBEBE238B6F13029DFCA3A8803CFCDB5B38B1668961C9CE5A9E8 ] C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp32.dll
21:01:47.0832 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp32.dll - ok
21:01:47.0834 0x0098  [ 1E370D588367AE396EAFF9D34BD15149, F23F879657ADA63008F7E10B84F60CDF69FCA01FA7D5B9E7212974DE4E3EFD77 ] C:\Program Files (x86)\Emsisoft Anti-Malware\frme32.dll
21:01:47.0834 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\frme32.dll - ok
21:01:47.0836 0x0098  [ 42A9CB6906D9A8BEDC83B57163E62924, E18522D3137653140757829EFBFCE624A5BAA5842E2BBA10B9E5AB6C84BE49E1 ] C:\Windows\System32\DXP.dll
21:01:47.0836 0x0098  C:\Windows\System32\DXP.dll - ok
21:01:47.0839 0x0098  [ B794DCF38C965FA2F93C45A7C3D582C5, 0E483EAF835B85AA4B6F449F9BB68AF0A3EE4192D29CD72F4B812F1E4D9E9A7C ] C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys
21:01:47.0839 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys - ok
21:01:47.0841 0x0098  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891, 0A82A475301202791A7C10F978F952EAB7DB146A702D4EA67E24E2C98BC19638 ] C:\Windows\System32\Syncreg.dll
21:01:47.0841 0x0098  C:\Windows\System32\Syncreg.dll - ok
21:01:47.0844 0x0098  [ C836175870E00ACC546066632E15BD10, 4347F3319C26DA1C38F395C74DBD67AF886149C8F29EDE765DD96C8480A3054A ] C:\Windows\ehome\ehSSO.dll
21:01:47.0844 0x0098  C:\Windows\ehome\ehSSO.dll - ok
21:01:47.0846 0x0098  [ C8FDF0FA9E97E2FAAF3F814716AAA881, DD24A1CAB44D943B0E1A795A347AD25D9305FC7F012A2566A6A14BD47221831F ] C:\Windows\System32\WPDShServiceObj.dll
21:01:47.0846 0x0098  C:\Windows\System32\WPDShServiceObj.dll - ok
21:01:47.0848 0x0098  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB, CF9082360E32A7C3E13A67AC2C6192F4A76870D43DA9FF2936993A637F712761 ] C:\Windows\System32\AltTab.dll
21:01:47.0848 0x0098  C:\Windows\System32\AltTab.dll - ok
21:01:47.0851 0x0098  [ 10F815BE90A66AAFC6C713D1BD626064, 01139FC04BC53594296F6A0E16B8D20B940F64BC8119FE7705C03C4947958F39 ] C:\Windows\System32\pnidui.dll
21:01:47.0851 0x0098  C:\Windows\System32\pnidui.dll - ok
21:01:47.0853 0x0098  [ B9F0A4020AA98B7A20287BF7FE99A1FD, 21138F161EEEA46198890C7A2D073F2C82829E15676131BDAD9F237EDC7477CD ] C:\Windows\System32\QUTIL.DLL
21:01:47.0853 0x0098  C:\Windows\System32\QUTIL.DLL - ok
21:01:47.0856 0x0098  [ D9435DA6B31A7D552EA8B4CDAF2980C2, 43A6BAAE0BEF203FFAAE5B4E0656B7ABA0FBBCA04DE05EE500365F29813A8A35 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2acc.dll
21:01:47.0856 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\a2acc.dll - ok
21:01:47.0858 0x0098  [ 73C035299E3044636104CA7A7634A6AC, ED1D4904E2D1D1C72ED9697297AE1B64860098BA2F6F63F7A1426413007DF138 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2accx64.sys
21:01:47.0859 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\a2accx64.sys - ok
21:01:47.0861 0x0098  [ 92DBF0A4C9239169010FC6E07859C82E, 00FB2CF4420F0FFEF519AFE732A708CF249640121E2A891CAA164313ABD7F804 ] C:\Windows\System32\ActionCenter.dll
21:01:47.0861 0x0098  C:\Windows\System32\ActionCenter.dll - ok
21:01:47.0864 0x0098  [ F7A256EC899C72B4ECDD2C02CB592EFD, 9C1AA9322E83CABB94AEA4375EAEB0C44700E1F33B8BE98649BA1DF4DDFAD326 ] C:\Windows\System32\bthprops.cpl
21:01:47.0864 0x0098  C:\Windows\System32\bthprops.cpl - ok
21:01:47.0868 0x0098  [ F1115299B9F4C983BC4523B33E3A506C, 01A1D8B3E5CF727F92F4A43D5C5F81022127D58A850D29D3F084AD411EFBC9DD ] C:\Windows\System32\ieframe.dll
21:01:47.0868 0x0098  C:\Windows\System32\ieframe.dll - ok
21:01:47.0870 0x0098  [ 0B7E85364CB878E2AD531DB7B601A9E5, F5AD3018427F1CD68450EE5CB55AA9572546322580E0FB1E7888702A291C2380 ] C:\Windows\SysWOW64\NapiNSP.dll
21:01:47.0870 0x0098  C:\Windows\SysWOW64\NapiNSP.dll - ok
21:01:47.0874 0x0098  [ 5CF640EDDB1E40A5AB1BB743BCDEC610, 0313AA3F713C9F5B84DBB0B4DE78A96B173E9F7B4CF61C10FDC7DAE952DB04E5 ] C:\Windows\SysWOW64\pnrpnsp.dll
21:01:47.0874 0x0098  C:\Windows\SysWOW64\pnrpnsp.dll - ok
21:01:47.0876 0x0098  [ 5DF5D8CFD9B9573FA3B2C89D9061A240, 990EA273B640DF2D7E800C0CFF18550259C605A4951CD82CD9F1E7B6FF0C9533 ] C:\Windows\SysWOW64\winrnr.dll
21:01:47.0876 0x0098  C:\Windows\SysWOW64\winrnr.dll - ok
21:01:47.0878 0x0098  [ C746F3BF98E92FB137B5BD2B8B5925BD, 67A8990F3D491D149E65C90042909259793C65E671DC953FDA1F7590FAC23D9E ] C:\Windows\System32\FXSST.dll
21:01:47.0878 0x0098  C:\Windows\System32\FXSST.dll - ok
21:01:47.0881 0x0098  [ 650CAEA856943E29F25A25D31E004B18, DCA63D2AF4C6F14B27EA006F200E58A5C13AC940A51947A40F668908A446CC4E ] C:\Windows\System32\FXSAPI.dll
21:01:47.0881 0x0098  C:\Windows\System32\FXSAPI.dll - ok
21:01:47.0883 0x0098  [ 234AFA322624B3203A2E720F08292B03, 0C0ACDD63FD82EDD34442E9E0763872BA6BF6AC73AB89147EA5FDD1E0229CC0A ] C:\Windows\System32\cscobj.dll
21:01:47.0883 0x0098  C:\Windows\System32\cscobj.dll - ok
21:01:47.0885 0x0098  [ AD31942BDF3D594C404874613BC2FE4D, 704F4A48FA91B8A22604FF740B506C3B28766F8DFADB9D11814602FAA00EDFAB ] C:\Windows\System32\SearchIndexer.exe
21:01:47.0885 0x0098  C:\Windows\System32\SearchIndexer.exe - ok
21:01:47.0888 0x0098  [ C8E8B8239FCF17BEA10E751BE5854631, CB869195E78AB613CEF50AE3B247F0E4E42F233A7AAF5B2BFC5ADEA2C45C5F8D ] C:\Windows\System32\FXSRESM.dll
21:01:47.0888 0x0098  C:\Windows\System32\FXSRESM.dll - ok
21:01:47.0890 0x0098  [ 8569E35D00F45972E506502EEE622BA4, 01FE851C03DB88C8373099C279F995A559D962B08932E193032FA3EAD522FB01 ] C:\Windows\System32\srchadmin.dll
21:01:47.0890 0x0098  C:\Windows\System32\srchadmin.dll - ok
21:01:47.0893 0x0098  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] C:\Windows\System32\FXSSVC.exe
21:01:47.0893 0x0098  C:\Windows\System32\FXSSVC.exe - ok
21:01:47.0895 0x0098  [ 6C597496AB646EB9F31C68241050F771, 4107FC16395C80443B999DB547EA6DA5D511D70B49901F97E29858B35C046E8F ] C:\Windows\System32\tquery.dll
21:01:47.0895 0x0098  C:\Windows\System32\tquery.dll - ok
21:01:47.0899 0x0098  [ 017F5CE9BC2333FE0FB738B0A9C13C2F, AA4F0C8AE81E9FA9FB198D9EDB3BBBF1FC4C0FB03388089C0F7E96D496038218 ] C:\Windows\System32\mssrch.dll
21:01:47.0899 0x0098  C:\Windows\System32\mssrch.dll - ok
21:01:47.0902 0x0098  [ B8A0F9C2BFD380E5642456FDF2F1AFD5, 15C04979306DA2B1F0842133300A447271BEFA95CC8A19477FC66E781CE023E1 ] C:\Windows\System32\pl-PL\SearchIndexer.exe.mui
21:01:47.0902 0x0098  C:\Windows\System32\pl-PL\SearchIndexer.exe.mui - ok
21:01:47.0906 0x0098  [ D2155709E336C3BC15729EB87FEC6064, 682A84C0F2D892E7A6CEE4E5937B4799E352AAE3B71E7037F2A343373467443C ] C:\Windows\System32\rasdlg.dll
21:01:47.0906 0x0098  C:\Windows\System32\rasdlg.dll - ok
21:01:47.0910 0x0098  [ 3121A79D13A61562BE9CC902CD46B542, 00A5833A48338A4A9A5530844924AF4F1FAB618DA46D7EBBC6E2165C32ED376C ] C:\Windows\System32\msidle.dll
21:01:47.0910 0x0098  C:\Windows\System32\msidle.dll - ok
21:01:47.0912 0x0098  [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2, E8ACB693B1A78FAEF292111BE3F9B10BA95C76833C06C931A08EAAAE39A21334 ] C:\Windows\System32\dot3api.dll
21:01:47.0912 0x0098  C:\Windows\System32\dot3api.dll - ok
21:01:47.0917 0x0098  [ E4FCA0F99A41E460C84016DEFD31E6EF, 8EB14AF2025EADC7C86280E8417D8F286E8271B4F88B31696E33DFD72B3A0EF2 ] C:\Windows\System32\wlanhlp.dll
21:01:47.0917 0x0098  C:\Windows\System32\wlanhlp.dll - ok
21:01:47.0920 0x0098  [ 357BE883C5236BFC7341CB9E82308908, 4DDB697FD9B7C516CF99D73C8799EA35BB97E2431216CD7C1045F17B06109FBF ] C:\Windows\System32\wlanapi.dll
21:01:47.0920 0x0098  C:\Windows\System32\wlanapi.dll - ok
21:01:47.0923 0x0098  [ ACE1BB07E0377E37A2C514CD2EC119B1, A9AFA4774DFA875496764D6E541A6333A3ACD3C5D2BBEF753C2D80BA83B4AC15 ] C:\Windows\System32\mssprxy.dll
21:01:47.0923 0x0098  C:\Windows\System32\mssprxy.dll - ok
21:01:47.0925 0x0098  [ 5DA219F57A9076FB6FBD3C9C3713A672, 274FE616625B336D81841FDC752C8053D4CD6926565B899760D298D145CBA1A3 ] C:\Windows\System32\WWanAPI.dll
21:01:47.0925 0x0098  C:\Windows\System32\WWanAPI.dll - ok
21:01:47.0927 0x0098  [ 62C7AACC746C9723468A8F2169ED3E85, 40E901F3EAFE52DF11D6BC4EF0E79F666EBDACE0B3C090CAD2358076E893EA47 ] C:\Windows\System32\wwapi.dll
21:01:47.0927 0x0098  C:\Windows\System32\wwapi.dll - ok
21:01:47.0930 0x0098  [ 6B851E682A36453E1B1EE297FFB6E2AB, A641D3FD9463C4788B45B8B5584EA4489C1F63A71B4B595AE85FF3482CD5EDA6 ] C:\Windows\System32\QAGENT.DLL
21:01:47.0930 0x0098  C:\Windows\System32\QAGENT.DLL - ok
21:01:47.0933 0x0098  [ 47B8DEBEC68FACCD026F99CAE8698C93, 99EEFC2B43402E59A48BEC326A811B25E25DCDA3ECA12D5C2D9B529DA74564DA ] C:\Windows\System32\webcheck.dll
21:01:47.0933 0x0098  C:\Windows\System32\webcheck.dll - ok
21:01:47.0936 0x0098  [ 8494E126F0B10180F3293AF861CE1F7A, 538B1F30423DB2398E611BC46C80150C090698E633BABF7362F7060DBF0C3064 ] C:\Windows\System32\mlang.dll
21:01:47.0936 0x0098  C:\Windows\System32\mlang.dll - ok
21:01:47.0938 0x0098  [ 101797BA603D227946B4B5109867EB19, EBF2B48D1A4FE148F455EA32023ABC0D479215D48C7CE76E765F199CD3C80AF8 ] C:\Windows\System32\SyncCenter.dll
21:01:47.0938 0x0098  C:\Windows\System32\SyncCenter.dll - ok
21:01:47.0941 0x0098  [ 8130391F82D52D36C0441F714136957F, 1FD4FEE7CAF63E450F27729E07EA2A2F09288629FD872DBB6E8710B16D8DBD5D ] C:\Windows\System32\imapi2.dll
21:01:47.0941 0x0098  C:\Windows\System32\imapi2.dll - ok
21:01:47.0943 0x0098  [ 6A5C1A8AC0B572679361026D0E900420, B5E693B48B462E97738A3D4E58B60846159649EB15F4D11074B4BC107CC88562 ] C:\Windows\System32\hgcpl.dll
21:01:47.0943 0x0098  C:\Windows\System32\hgcpl.dll - ok
21:01:47.0946 0x0098  [ BF9C2547806408FA6E3D67A30D971826, A1A0A0A0E38567D772B6221AA032B3DF868E4B7E59D7F3A4BADB66592FA2BDC6 ] C:\Program Files (x86)\Emsisoft Anti-Malware\a2start.exe
21:01:47.0946 0x0098  C:\Program Files (x86)\Emsisoft Anti-Malware\a2start.exe - ok
21:01:47.0948 0x0098  [ 220159496484D34009DE71CA1A68E0D4, 94BD3DEB4E84F95D80BE5775E5A612EFF181ECB212FB668674C67AD19194DE69 ] C:\Windows\System32\wbem\NCProv.dll
21:01:47.0948 0x0098  C:\Windows\System32\wbem\NCProv.dll - ok
21:01:47.0951 0x0098  [ C5B0324DB461559ADD070E632A6919FA, AB09CACB5B7DD372B27921A5E01220552A611CECA27EF87961001FA467FDED45 ] C:\Windows\SysWOW64\wbem\wbemprox.dll
21:01:47.0951 0x0098  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
21:01:47.0954 0x0098  [ 704314FD398C81D5F342CAA5DF7B7F21, CDA660E1E8AAE0789780B6B9604B138E67B2BDD1404A5E4C2354B35879D43085 ] C:\Windows\SysWOW64\wbemcomn.dll
21:01:47.0954 0x0098  C:\Windows\SysWOW64\wbemcomn.dll - ok
21:01:47.0957 0x0098  [ 776AE0564F8B1C282E331FD95A1BDC5F, 601CFCA3922FFEA46A54AD323845A76A12FC6AF9FF64E9B0AE294FBB1AFCF4CB ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
21:01:47.0957 0x0098  C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
21:01:47.0960 0x0098  [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A, 61B4D669C692775EF361445293163E84FAD8636AC49C8047BE806DB4E4093291 ] C:\Windows\SysWOW64\wbem\fastprox.dll
21:01:47.0960 0x0098  C:\Windows\SysWOW64\wbem\fastprox.dll - ok
21:01:47.0962 0x0098  [ E3E811471DE781900FF21C1FD84E941E, 2A47FF52D1D6480AAD1919382E783EA184BF926311F8C7E466FEBE9F6FB88FD6 ] C:\Windows\SysWOW64\ntdsapi.dll
21:01:47.0962 0x0098  C:\Windows\SysWOW64\ntdsapi.dll - ok
21:01:47.0965 0x0098  [ 77A8A1791145710C7EFE76EA82BF0763, 9488B96E065299D273F9DCC82AA1203B48F0038D4F27324DA19E9BFD925CA737 ] C:\Program Files\Internet Explorer\ieproxy.dll
21:01:47.0965 0x0098  C:\Program Files\Internet Explorer\ieproxy.dll - ok
21:01:47.0968 0x0098  [ 539C49CEBB3C50957AC8A09D95ECD880, 49E75CDB556FBCE72C44648F8930CF2209C1360F9311C5B4CEB19E13B11E6B75 ] C:\Windows\SysWOW64\shfolder.dll
21:01:47.0968 0x0098  C:\Windows\SysWOW64\shfolder.dll - ok
21:01:47.0970 0x0098  [ 44DAF0A410AB80E7CAB7C12EDE5FFB34, 3493630EE740508D0DB760A7648470F2987752D9B205CCCA805A66C3524E2B58 ] C:\Windows\SysWOW64\drvinst.exe
21:01:47.0970 0x0098  C:\Windows\SysWOW64\drvinst.exe - ok
21:01:47.0972 0x0098  [ A6154A954F08E99D27CEA4D3B9563172, 11D6FA5C15B7E1E03449A910E58AAE52EFE97AA1989A8A1D9B3E2EB715FFC58A ] C:\Windows\SysWOW64\newdev.dll
21:01:47.0972 0x0098  C:\Windows\SysWOW64\newdev.dll - ok
21:01:47.0975 0x0098  [ 268F8E62DFAE227234E7E9D0A658FB37, 77506276979A939157BE416B050C8DFFAB6B7894140B13A3BFC436F76FA45AEC ] C:\Program Files (x86)\blueconnect\LiveUpdateInterface.dll
21:01:47.0975 0x0098  C:\Program Files (x86)\blueconnect\LiveUpdateInterface.dll - ok
21:01:47.0977 0x0098  [ 12FC5B66D338AD70602AC9F96EC7DD4E, FC21448AF484C7C1DD53FF6A9747BF4184A4E80ACC9142503C246ED82709783D ] C:\Program Files (x86)\blueconnect\SpeedManagerPlugin.dll
21:01:47.0977 0x0098  C:\Program Files (x86)\blueconnect\SpeedManagerPlugin.dll - ok
21:01:47.0980 0x0098  [ DEA314D9CCFF1AD4A0EAC4E4BFB27513, E1553981CEFA0BC0DCAA87D9FB392BB604238EF1B6902E6ED4DD6581977E0862 ] C:\Program Files (x86)\blueconnect\bmapi.dll
21:01:47.0980 0x0098  C:\Program Files (x86)\blueconnect\bmapi.dll - ok
21:01:47.0984 0x0098  [ 2AD2A302D89E05F96F52F69268657C7F, D962DC4BACFEFC0CCFD2F562BD9EC79B0ABC8563FF0A688E68B8AA08264AAC4C ] C:\Program Files (x86)\blueconnect\XMessageBox.dll
21:01:47.0984 0x0098  C:\Program Files (x86)\blueconnect\XMessageBox.dll - ok
21:01:47.0985 0x0098  ================ Scan generic autorun ======================
21:01:48.0076 0x0098  [ 88A59F393DFB73F15A95E8F913CD3211, BC0D37DC0288D725F91392F7EAADB5744DF577186F56AF1ED363E17E12914FAC ] C:\Program Files (x86)\blueconnect\DataCardMonitor.exe
21:01:48.0091 0x0098  DataCardMonitor - ok
21:01:48.0135 0x0098  [ 887CAA31048EB8ED09A0CBD0E6F46F09, BBCED0BD4EB00C3FECFC9448223D4C441A868787877291F5489B07B43FAB65A4 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
21:01:48.0156 0x0098  SunJavaUpdateSched - ok
21:01:48.0411 0x0098  [ F7F0714EF964652CAF1CA177722AC6DD, 06C8F8AC796F218473BA002A21AD947B13BE5E235CBAC684B209FA6E8C2DC2DE ] c:\program files (x86)\emsisoft anti-malware\a2guard.exe
21:01:48.0531 0x0098  emsisoft anti-malware - ok
21:01:48.0616 0x0098  [ 64D94F1ED2DCB199948F614367CD2636, 49C28D44658683F234F6F59FA10EA0957A2BF75421C0846E64DC0D359FB6D410 ] C:\Program Files (x86)\blueconnect\UpdateDog\ouc.exe
21:01:48.0629 0x0098  HW_OPENEYE_OUC_blueconnect - ok
21:01:49.0265 0x0098  [ B9B1DA9C6A463114CC52DD293643DA6D, AD3DC4D57AB20E4E4A34BD586B4D8CE72968D1028E090001584AD04884B3006B ] C:\Program Files (x86)\GlassWire\glasswire.exe
21:01:49.0486 0x0098  GlassWire - ok
21:01:49.0515 0x0098  AV detected via SS2: Emsisoft Anti-Malware, C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2start.exe ( 9.0.0.4570 ), 0x41000 ( enabled : updated )
21:01:49.0520 0x0098  Win FW state via NFP2: enabled
21:01:49.0521 0x0098  ============================================================
21:01:49.0521 0x0098  Scan finished
21:01:49.0521 0x0098  ============================================================
21:01:49.0526 0x00c8  Detected object count: 0
21:01:49.0526 0x00c8  Actual detected object count: 0


#11 Xblee

Xblee
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  

Posted 13 November 2014 - 04:34 PM

eset says nothing found



#12 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,690 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:12:34 PM

Posted 14 November 2014 - 09:44 AM

I'm beginning to suspect that your problem isn't malware or virus related, especially in view of the fact that this is occurring in both Windows and Linux.

 

Please download and install Speccy to provide us with information about your computer.  When  FileHippo opens, click on Download latest version in the upper right pane.
 
When Speccy opens you will see a screen similar to the one below.
 
speccy9_zps2d9cdedc.png
 
Click on File which is outlined in red in the screen above, and then click on Publish Snapshot.
 
The following screen will appear, click on Yes.
 
speccy7_zpsfa02105f.png
 
The following screen will appear, click on Copy to Clipboard.
 
speccy3_zps1791b093.png
 
In your next post right click inside the Reply to Topic box, then click on Paste.  This will load a link to the Speccy log.
 
 

Please download MiniToolBox, save it to your desktop and run it.
 
Checkmark the following checkboxes:
 
• List last 10 Event Viewer log
• List Installed Programs
• List Users, Partitions and Memory size.
• List Minidump Files
 
Click on Go to start the scan.  Once it is finished highlight the text, copy it and paste it in your next post.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#13 Xblee

Xblee
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  

Posted 14 November 2014 - 11:24 AM

http://speccy.piriform.com/results/XofgjhNPbzKm6daaPIAYCgJ

 

MiniToolBox by Farbar  Version: 21-07-2014
Ran by xblee (administrator) on 14-11-2014 at 17:23:12
Running from "C:\Users\xblee\Desktop"
Microsoft Windows 7 Professional  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (11/14/2014 05:12:41 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/14/2014 01:57:58 PM) (Source: Application Hang) (User: )
Description: .The HxD.exe version 1.7.7.0 stopped interacting with Windows and was closed. To see if more information is available about this issue, check the problem history in the Action Center control panel
 
Process ID: 18c0
 
Start time: 01d0000a4f8dd4f8
 
End Time: 0
 
The application path: C: \ Program Files (x86) \ HxD \ HxD.exe
 
Report ID: da11cc2c-6bfd-11e4-afa0-0023546769c7
 
Error: (11/14/2014 1:53:46 PM) (Source: Application Hang) (User:)
Description: The program HxD.exe version 1.7.7.0 stopped interacting with Windows and was closed. To see if more information is available about this issue, check the problem history in the Action Center control panel.
 
Process ID: 18c0
 
Start time: 01d000098abbf212
 
End Time: 10
 
The application path: C: \ Program Files (x86) \ HxD \ HxD.exe
 
Report ID: 4235cd2b-6bfd-11e4-afa0-0023546769c7
 
Error: (11/14/2014 0:28:10 PM) (Source: WinMgmt) (User:)
Description: //./root/CIMV2SELECT * FROM WITHIN 60 WHERE __InstanceModificationEvent TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage> 990x80041003
 
Error: (11/14/2014 4:03:11 AM) (Source: Application Error) (User:)
Description: The name of the application causing the error: a2start.exe Version: 9.0.0.4570, time stamp: 0x543c0095
The name of the module causing the error: KERNELBASE.dll, version: 6.1.7601.17514, time stamp: 0x4ce7bafa
Exception code: 0xc0000005
Offset error: 0x00035ef7
The process ID causing the error: 0xb00
Time to run the application causing the error: 0xa2start.exe0
The application path causing the error: a2start.exe1
The path of the module causing the error: a2start.exe2
Report ID: a2start.exe3
 
Error: (11/13/2014 11:28:42 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/13/2014 11:23:11 PM) (Source: Application Error) (User: )
Description: The name of the application causing the error: RootkitRevealer.exe Version: 1.71.0.0, timestamp: 0x44e255aa
The name of the module causing the error: RootkitRevealer.exe Version: 1.71.0.0, timestamp: 0x44e255aa
Exception code: 0xc0000005
Offset error: 0x000040cd
The process ID causing the error: 0x3d0
Time to run the application causing the error: 0xRootkitRevealer.exe0
The application path causing the error: RootkitRevealer.exe1
The path of the module causing the error: RootkitRevealer.exe2
Report ID: RootkitRevealer.exe3
 
Error: (11/13/2014 11:22:41 PM) (Source: Application Error) (User:)
Description: The name of the application causing the error: RootkitRevealer.exe Version: 1.71.0.0, timestamp: 0x44e255aa
The name of the module causing the error: RootkitRevealer.exe Version: 1.71.0.0, timestamp: 0x44e255aa
Exception code: 0xc0000005
Offset error: 0x000040cd
The process ID causing the error: 0x450
Time to run the application causing the error: 0xRootkitRevealer.exe0
The application path causing the error: RootkitRevealer.exe1
The path of the module causing the error: RootkitRevealer.exe2
Report ID: RootkitRevealer.exe3
 
Error: (11/13/2014 11:07:20 PM) (Source: WinMgmt) (User:)
Description: //./root/CIMV2SELECT * FROM WITHIN 60 WHERE __InstanceModificationEvent TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage> 990x80041003
 
Error: (11/13/2014 11:06:04 PM) (Source: SideBySide) (User:)
Description: Unable to generate the activation context for„C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1”. Error in manifest or policy file„C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2” in a rowC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Component version required by the application conflicts with another component version, which is already active.
Ingredients conflicting:
Component 1:C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2:C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
 
System errors:
=============
Error: (11/14/2014 5:12:07 PM) (Source: Service Control Manager) (User:)
Description: Unable to start services AvastVBox COM Service with the following error:
%% 1053
 
Error: (11/14/2014 5:12:06 PM) (Source: Service Control Manager) (User:)
Description: Timeout (30000 milliseconds) while waiting for the connection to the service AvastVBox COM Service.
 
Error: (11/14/2014 5:12:07 PM) (Source: DCOM) (User:)
Description: 1053AvastVBoxSvc {F319F1B8-7587-4146-AF9C-0D6D77819BF1}
 
Error: (11/14/2014 4:52:44 PM) (Source: DCOM) (User:)
Description: {E579AB5F-1CC4-44B4-BED9-DE0991FF0623}
 
Error: (11/14/2014 0:31:59 PM) (Source: Application Popup) (User:)
Description: Load the driver \ ?? \ C: \ Windows \ System32 \ drivers \ TrueSight.sys been blocked due to incompatibility with this system. Contact your software vendor to obtain a compatible version of the driver.
 
Error: (11/14/2014 0:28:13 PM) (Source: DCOM) (User:)
Description: 1053AvastVBoxSvc {F319F1B8-7587-4146-AF9C-0D6D77819BF1}
 
Error: (11/14/2014 0:28:12 PM) (Source: Service Control Manager) (User:)
Description: Unable to start services AvastVBox COM Service with the following error:
%% 1053
 
Error: (11/14/2014 0:28:11 PM) (Source: Service Control Manager) (User:)
Description: Timeout (30000 milliseconds) while waiting for the connection to the service AvastVBox COM Service.
 
Error: (11/13/2014 11:27:00 PM) (Source: EventLog) (User:)
Description: The previous system shutdown at 11:24:47 p.m. on 2014- 11- 13 was unexpected.
 
Error: (11/13/2014 11:06:11 PM) (Source: DCOM) (User:)
Description: 1084WSearch {9E175B6D-F52A-11D8-B9A5-505054503030}
 
 
Microsoft Office Sessions:
=========================
Error: (11/14/2014 5:12:41 PM) (Source: WinMgmt) (User:)
Description: //./root/CIMV2SELECT * FROM WITHIN 60 WHERE __InstanceModificationEvent TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage> 990x80041003
 
Error: (11/14/2014 1:57:58 PM) (Source: Application Hang) (User:)
Description: HxD.exe1.7.7.018c001d0000a4f8dd4f80C: \ Program Files (x86) \ HxD \ HxD.exeda11cc2c-6bfd-11e4-afa0-0023546769c7
 
Error: (11/14/2014 1:53:46 PM) (Source: Application Hang) (User:)
Description: HxD.exe1.7.7.018c001d000098abbf21210C: \ Program Files (x86) \ HxD \ HxD.exe4235cd2b-6bfd-11e4-afa0-0023546769c7
 
Error: (11/14/2014 0:28:10 PM) (Source: WinMgmt) (User:)
Description: //./root/CIMV2SELECT * FROM WITHIN 60 WHERE __InstanceModificationEvent TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage> 990x80041003
 
Error: (11/14/2014 4:03:11 AM) (Source: Application Error) (User:)
Description:a2start.exe9.0.0.4570543c0095KERNELBASE.dll6.1.7601.175144ce7bafac000000500035ef7b0001cfff911c4352adC:\Program Files (x86) \ Emsisoft Anti-Malware \ a2start.exeC: \ Windows \ syswow64 \ KERNELBASE.dllc40f5089-6baa-11e4-a73a-0023546769c7
 
Error: (11/13/2014 11:28:42 PM) (Source: WinMgmt) (User:)
Description: //./root/CIMV2SELECT * FROM WITHIN 60 WHERE __InstanceModificationEvent TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage> 990x80041003
 
Error: (11/13/2014 11:23:11 PM) (Source: Application Error) (User:)
Description:RootkitRevealer.exe1.71.0.044e255aaRootkitRevealer.exe1.71.0.044e255aac0000005000040cd3d001cfff905fd119e3C:\Users\xblee\Desktop\RootkitRevealer\RootkitRevealer.exeC:\Users\xblee\Desktop\RootkitRevealer\RootkitRevealer.exea66fa08b-6b83-11e4-8433-0023546769c7
 
Error: (11/13/2014 11:22:41 PM) (Source: Application Error) (User:)
Description:RootkitRevealer.exe1.71.0.044e255aaRootkitRevealer.exe1.71.0.044e255aac0000005000040cd45001cfff904d906ca9C:\Users\xblee\AppData\Local\Temp\Temp1_RootkitRevealer.zip\RootkitRevealer.exeC:\Users\xblee\AppData\Local\Temp\Temp1_RootkitRevealer.zip\RootkitRevealer.exe9446b114-6b83-11e4-8433-0023546769c7
 
Error: (11/13/2014 11:07:20 PM) (Source: WinMgmt) (User:)
Description: //./root/CIMV2SELECT * FROM WITHIN 60 WHERE __InstanceModificationEvent TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage> 990x80041003
 
Error: (11/13/2014 11:06:04 PM) (Source: SideBySide) (User:)
Description:C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\xblee\Desktop\esetsmartinstaller_enu.exe
 
 
CodeIntegrity Errors:
===================================
   Date: 2014-11-14 17: 21: 33.088
   Description: Code Integrity is unable to verify the image integrity of the file \ Device \ HarddiskVolume2 \ Windows \ System32 \ nvapo64v.dll because the set of per-page image hashes could not be found on the system.
 
   Date: 2014-11-14 17: 18: 29.693
   Description: Code Integrity is unable to verify the image integrity of the file \ Device \ HarddiskVolume2 \ Windows \ System32 \ nvapo64v.dll because the set of per-page image hashes could not be found on the system.
 
   Date: 2014-11-14 17: 18: 00.625
   Description: Code Integrity is unable to verify the image integrity of the file \ Device \ HarddiskVolume2 \ Windows \ System32 \ nvapo64v.dll because the set of per-page image hashes could not be found on the system.
 
   Date: 2014-11-14 17: 17: 52.136
   Description: Code Integrity is unable to verify the image integrity of the file \ Device \ HarddiskVolume2 \ Windows \ System32 \ nvapo64v.dll because the set of per-page image hashes could not be found on the system.
 
   Date: 2014-11-14 17: 13: 03.813
   Description: Code Integrity is unable to verify the image integrity of the file \ Device \ HarddiskVolume2 \ Windows \ System32 \ nvapo64v.dll because the set of per-page image hashes could not be found on the system.
 
   Date: 2014-11-14 17: 13: 01.658
   Description: Code Integrity is unable to verify the image integrity of the file \ Device \ HarddiskVolume2 \ Windows \ System32 \ nvapo64v.dll because the set of per-page image hashes could not be found on the system.
 
   Date: 2014-11-14 17: 12: 55.008
   Description: Code Integrity is unable to verify the image integrity of the file \ Device \ HarddiskVolume2 \ Windows \ System32 \ nvapo64v.dll because the set of per-page image hashes could not be found on the system.
 
   Date: 2014-11-14 17: 12: 28.943
   Description: Code Integrity is unable to verify the image integrity of the file \ Device \ HarddiskVolume2 \ Windows \ System32 \ nvapo64v.dll because the set of per-page image hashes could not be found on the system.
 
   Date: 2014-11-14 17: 11: 31.133
   Description: Code Integrity is unable to verify the image integrity of the file \ Device \ HarddiskVolume2 \ Windows \ System32 \ nvapo64v.dll because the set of per-page image hashes could not be found on the system.
 
 
 
=========================== Installed Programs ===================== =======
Adobe Flash Player 15 ActiveX (x32-HKLM \ ... \ Adobe Flash Player ActiveX) (Version: 15.0.0.223 - Adobe Systems Incorporated)
Adobe Flash Player 15 Pepper (x32-HKLM \ ... \ Adobe Flash Player Pepper) (Version: 15.0.0.215 - Adobe Systems Incorporated)
Avast Internet Security (x32-HKLM \ ... \ Avast) (Version: 10.0.2208 - AVAST Software)
blueconnect (x32-HKLM \ ... \ blueconnect) (Version: 11.302.09.27.49 - Huawei Technologies Co., Ltd)
Emsisoft Anti-Malware (x32-HKLM \ ... \ {5502032C-88C1-4303-99FE-B5CBD7684CEA} _is1) (Version: 9.0 - Emsisoft GmbH)
ESET Online Scanner v3 (x32-HKLM \ ... \ ESET Online Scanner) (Version: -)
GlassWire 1.0 (remove only) (x32-HKLM \ ... \ GlassWire 1.0) (Version: 1.0.30 - SecureMix LLC)
Google Chrome (x32-HKLM \ ... \ Chrome) (Version: 38.0.2125.122 - Google Inc.)
Google Toolbar for Internet Explorer (x32-HKLM \ ... \ {2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
HxD Hex Editor version 1.7.7.0 (x32-HKLM \ ... \ HxD Hex Editor_is1) (Version: 1.7.7.0 - Maël Hörz)
Java 8 Update 25 (x32-HKLM \ ... \ {26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
Java Auto Updater (x32 Version: 2.8.25.18 - Oracle Corporation) Hidden
Malwarebytes Anti-Malware version 2.0.3.1025 (x32-HKLM \ ... \ Malwarebytes' Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
NVIDIA Install Application (Version: 2.1002.157.1165 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.13.1220 (HKLM \ ... \ {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} _Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA 3D Vision Driver 340.52 (HKLM \ ... \ {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} _Display.3DVision) (Version: 340.52 - NVIDIA Corporation)
NVIDIA HD Audio driver 1.3.30.1 (HKLM \ ... \ {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} _HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Graphics Driver 340.52 (HKLM \ ... \ {B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} _Display.Driver) (Version: 340.52 - NVIDIA Corporation)
Opera Stable 25.0.1614.68 (x32-HKLM \ ... \ Opera 25.0.1614.68) (Version: 25.0.1614.68 - Opera Software ASA)
NVIDIA Control Panel 340.52 (Version: 340.52 - NVIDIA Corporation) Hidden
Realtek High Definition Audio Driver (x32-HKLM \ ... \ {F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5951 - Realtek Semiconductor Corp.)
Speccy (HKLM \ ... \ Speccy) (Version: 1.26 - Piriform)
VT Hash Check 1.47 (x32-HKLM \ ... \ {1E579B65-503B-4184-B481-5138124BEE1D} _is1) (Version: 1.47 - Boredom Software)
 
========================= Memory info: ====================== =============
 
Percentage of memory in use: 47%
Total physical RAM: 4095.11 MB
Available physical RAM: 2166.81 MB
Total PAGEFILE: 8188.43 MB
Available PAGEFILE: 5380.05 MB
Virtual Total: 4095.88 MB
Available Virtual: 3983.44 MB
 
========================= Partitions: ======================= ==============
 
1 Drive c: () (Fixed) (Total: 465.66 GB) (Free: 442.01 GB) NTFS
3 Drive E: (blueconnect) (CDROM) (Total: 0.03 GB) (Free: 0 GB) CDFS
 
========================= Users: ======================= =================
 
Uľytkownik˘w accounts for \\ XBLEE-COMPUTER
 
Administrator Go † xblee
command completed successfully.
 
========================= Minidump Files ==================================
 
No minidump file found
 
 
**** End of log ****

Edited by Xblee, 14 November 2014 - 02:54 PM.


#14 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,690 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:12:34 PM

Posted 14 November 2014 - 02:44 PM

I don't speak Polish. <_<


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#15 Xblee

Xblee
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  

Posted 18 November 2014 - 02:41 AM

Hello. What to do to get rid of it?






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users