Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

14 SVCHOST.exe,CPU 99, random files booting as.exe*32


  • Please log in to reply
11 replies to this topic

#1 deathdoc

deathdoc

  • Members
  • 10 posts
  • OFFLINE
  •  

Posted 14 June 2015 - 07:38 AM

Ok, First post. I searched  and searched these forums and many others to no avail. My problem seems a common one. From what I gather 2 My computers (Both Hp windows 7 64-bit. 1 desktop 1 laptop) are infected with a trojan that overwrites itself as system and HK_ files and the copies itself to other programs. These programs will then Boot themselves as to do who knows what. I also have my System Idle Process  at 24k memory and 99 CPU and i cannot end the System Idle process as right click in task mgr does nothing. Facory Reset from recovery drive did nothing to the these symptoms as these .EXE*32 files booted immidately and Im quite certain the hidden trojan or malwaare file used  windows update to Download and install more of its files. Many if not all folders are stuck on read only. after changing in preferences folders revert Iimmediately to read only. In my Laptop My CPU fan simply does not activate anymore and I often have to turn it off just to let it cool down. Simple processes such as iexplore.exe are running are use incredible amounts of memory drastically slowing my computer speed. I can think of two possible sources: 1 Step Dads downloading inscrupulously. or 2 me foolishly plugging in my friends phone to my laptop to attempt to rid his phone of the FBI ransom scam. Phone is back to working condition but laptop is sluggish slow and overheating.   Help would be awesome. thank you fro reading.

Attached Files


Edited by hamluis, 14 June 2015 - 08:05 AM.
Moved from Win 7 to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,815 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:02:21 PM

Posted 14 June 2015 - 09:07 AM

I will not download anything to my computer unless I know exactly what is contained in it.

 

Any logs which are requested need to be posted in your topic, not at  a host website where the content will have to be downloaded.

 

Do not wrap these logs ins quotes or code. 

 

You do not need to quote my posts.

 

Please run Malwarebytes AntiMalware
 
Please download Malwarebytes Anti-Malware.  After clicking on the link the download will start automatically.
 
1)  Double-click on mbam-setup.exe, then click on Run to install the application, follow the prompts through the installation.
 
2)  Malwarebytes will automatically open.  If this is the first time you have run this version of Malwarbytes you will see an image like the one below.
 
mbam1_zps95cc812c.png
 
Click on Update Now, after Malwarebytes is updated click on Scan.
 
If this isn't the first time you have run this version, then you will see an image like the one below.  Click on Scan
 
mbam1_zps98e7fba9.png
 
You will be prompted to update Malwarebytes, to do so click on Update Now.
 
 mbam2_zps85f38f0c.png
 
3)  The scan will automatically run now.
 
malwarerun_zps9abd4ef1.png
 
4)  When the scan is complete the results will be displayed.  Click on Delete All.
 
malwarenew_zps34b58fdc.png
 
5)  Please post the Malwarebytes log.
 
To find your Malwarebytes log,download mbam-check.exe from here and save it to your desktop.
 
To open the log double click on mbam-check.exe on your desktop.  Copy and paste the log in your topic.
 
=====================
 

 
Please run TDSSKiller.
 
Please download TDSSKiller from here and save it to your Desktop.
 
The log for the TDSSKiller can be very long.  If you go to the bottom of the log to where you find Scan finished you will see the results of the scan.  If it shows Detected object count: 0 and Actual detected object count: 0, this means that nothing malicious was found and you will not need to post the log.
 
1.  Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
 
tdss1_zps90132559.png
 
2.  Check Loaded Modules, Verify Driver Digital Signature, and Detect TDLFS file system.
 
If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now.
 
tdsskillermultiple_zps472c18eb.png
 
3.  Click Start Scan and allow the scan process to run.
 
tdss4_zps6792a13c.png
 
4.  If threats are detected select Cure (if available) for all of them unless otherwise instructed.
 
***Do NOT select Delete!
 
Click on Continue.
 
tdss5_zps98fc5887.png
 
5.  Click on Reboot computer.
 
Please copy the TDSSKiller.[Version]_[Date]_[Time]_log.txt file found in your root directory (typically c:\) and paste it into your next reply.
 
Note:  The log may be very long.  You may need to break it into parts to post the whole log.
 
 
 
 

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#3 deathdoc

deathdoc
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  

Posted 16 June 2015 - 03:41 PM

I have seen your reply and will complete the tasks you have mentioned when I get home. I am currently on my grandfathers old 32-bit Vista com-p right now. ..Which is showing very similar problems. Im only focused on solving one computer's problem at a time, (my own being first and foremost) but still, this problem seems to be be going around. Something seems to be causing machines to be running duplicate processes, one with significantly higher Memory usage in Task Manager than the other. Svchost.exe running 14 different insances on this VIsta, the same as on my windows 7 laptop. As well as System Idle Process running at 95 CPU, with ranom programs popping up on task manager. But, as far as your instructions you have given regarding my laptop  ill have them done by the end of the night/ next morningn.                  .                                  



#4 Sintharius

Sintharius

    Bleepin' Sniper


  • Members
  • 5,639 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:The Netherlands
  • Local time:11:21 PM

Posted 16 June 2015 - 04:07 PM

Hi there,

There is nothing wrong with multiple svchost.exe processes running on your machine... Svchost.exe is a process used by Windows to manage its various services, with one svchost.exe typically managing multiple services. If you are curious about what svchost.exe manages which services, download Process Explorer from Sysinternals, launch it and point at one of the svchost.exe process. This will show you what services that svchost is managing.

System Idle Process is a reflection of how much CPU is idle, so when your computer isn't doing anything then a high number in System Idle Process is normal.

So I would say that your machine might not be infected. You can still follow the instructions from dc3 though if you want a checkup.

Regards,
Alex

#5 deathdoc

deathdoc
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  

Posted 18 June 2015 - 12:29 AM

Malwarebytes scan:

mbam-check result log version:     2.1.1.1001
========================================

User Account type:                 Administrator
OS:                                Windows 7  64 bit Operating System
Current Version and Build:         6.1.7600.0
Malwarebytes Anti-Malware:         2.1.6.1022
Installed On:                      2015/06/18
Malware Database:                  2015.06.18.01
Rootkit Database:                  2015.06.15.01
Remediation Database:              2015.06.15.01
IP Database:                       2015.06.12.01
Domain Database:                   2015.06.12.01
License:                           Trial
Malware Protection:                4 (The service is running.)
Malicious Website Protection:      4 (The service is running.)
Chameleon:                         0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMChameleon
Log Created:                       2015/06/18 06:28:14
Compatibility Flag Settings:
=================================





Malwarebytes Anti-Malware Shell Extension Block Check:
======================================================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Blocked:

MBAM Startup Entries:
=====================
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce

Malwarebytes Anti-Malware Service and Driver Status:
=======================================================

--------------Driver File Info:--------------
C:\Windows\system32\drivers\mbam.sys
File Size:     25816 BYTES    FileVersion: 0.1.15.0    MD5: [1e9e32aec3e1eb1b31b8169f33168b56]
C:\Windows\system32\drivers\mwac.sys
File Size:     63704 BYTES    FileVersion: 1.0.6.0    MD5: [f49fb3c88e263ae9a246593b0bb29294]
C:\Windows\system32\drivers\mbamswissarmy.sys
File Size:    136408 BYTES    FileVersion: 0.2.21.0    MD5: [e9cd058c79ea15b4aa93e259fa713b07]
C:\Windows\system32\drivers\mbamchameleon.sys
File Size:    107736 BYTES    FileVersion: 1.1.13.0    MD5: [54d70409de6932e9efa117779611e7a9]

--------------MBAMProtector:--------------
Type:                   2
State:                  4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0


--------------MBAMService:--------------
Type:                   16
State:                  4 (The service is running.)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0


--------------MBAMScheduler:--------------
Type:                   16
State:                  4 (The service is running.)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0


--------------MBAMChameleon:--------------
Type:                   N/A
State:                  0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMChameleon
WIN32_EXIT_CODE:        N/A
SERVICE_EXIT_CODE:      N/A
CHECKPOINT:             N/A
WAIT_HINT:              N/A


--------------MBAMWebAccessControl:--------------
Type:                   2
State:                  4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0


Required Dependencies:
======================

--------------BFE:--------------
Type:                   32
State:                  4 (The service is running.)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0


HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE
    DisplayName                   REG_SZ        @%SystemRoot%\system32\bfe.dll,-1001
    Group                         REG_SZ        NetworkProvider
    ImagePath                     REG_EXPAND_SZ    %systemroot%\system32\svchost.exe -k LocalServiceNoNetwork
    Description                   REG_SZ        @%SystemRoot%\system32\bfe.dll,-1002
    ObjectName                    REG_SZ        NT AUTHORITY\LocalService
    ErrorControl                  REG_DWORD        1
    Start                         REG_DWORD        4
    Type                          REG_DWORD        32
    DependOnService               REG_MULTI_SZ    RpcSs

    ServiceSidType                REG_DWORD        3
    RequiredPrivileges            REG_MULTI_SZ    SeAuditPrivilege

    FailureActions                REG_BINARY    Binary Data

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters
    ServiceDll                    REG_EXPAND_SZ    %SystemRoot%\System32\bfe.dll
    ServiceDllUnloadOnStop        REG_DWORD        1
    ServiceMain                   REG_SZ        BfeServiceMain
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\BootTime
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\BootTime\Filter
    {dc95b53e-01cf-4058-821d-350b3d0d4676}REG_BINARY    Binary Data

    {0c41d586-9c19-4e01-9d66-b5b98a97576e}REG_BINARY    Binary Data

    {12c38916-82ac-4737-8f38-b6957ffebad6}REG_BINARY    Binary Data

    {c970a45d-57f9-4e32-a5bd-886a9662641e}REG_BINARY    Binary Data

    {0c3be01b-fe70-4cc4-89dc-c07996b67e6d}REG_BINARY    Binary Data

    {074f7f68-ee10-428a-89d1-ba78f6c327ca}REG_BINARY    Binary Data

    {c016105c-eb34-4519-a5fd-5f4e4ad4d18e}REG_BINARY    Binary Data

    {a47525e2-725b-4888-8af1-ba5a60c04f4d}REG_BINARY    Binary Data

    {0ccc96a3-8c5c-45e2-b80e-7e37b16cc1ad}REG_BINARY    Binary Data

    {2dd96961-5757-434f-b617-34e732517c0e}REG_BINARY    Binary Data

    {2db25e6c-f07a-44f4-b6c8-50a330d2790b}REG_BINARY    Binary Data

    {c42f1cd6-3a95-4ae2-a513-793c3ae610c7}REG_BINARY    Binary Data

    {935b7f48-0ede-44dd-9bc2-e00bb635cda3}REG_BINARY    Binary Data

    {941dad9d-7b1a-4354-997b-00cf1aa9b35c}REG_BINARY    Binary Data

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Callout
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Filter
    {dc95b53e-01cf-4058-821d-350b3d0d4676}REG_BINARY    Binary Data

    {f444c576-6e60-4ea2-9faa-80d57ed12cd2}REG_BINARY    Binary Data

    {0c41d586-9c19-4e01-9d66-b5b98a97576e}REG_BINARY    Binary Data

    {12c38916-82ac-4737-8f38-b6957ffebad6}REG_BINARY    Binary Data

    {c970a45d-57f9-4e32-a5bd-886a9662641e}REG_BINARY    Binary Data

    {0c3be01b-fe70-4cc4-89dc-c07996b67e6d}REG_BINARY    Binary Data

    {4d9581d2-aef8-4993-84cd-b986ced80d42}REG_BINARY    Binary Data

    {be7cbdf4-b192-4aa5-94f8-1fb5c5ee07bc}REG_BINARY    Binary Data

    {716b48eb-0a35-4a76-92ab-1d987230d288}REG_BINARY    Binary Data

    {1165065e-4996-4338-abaf-4b8556b4d431}REG_BINARY    Binary Data

    {07a24961-a760-4e80-b263-6d275e1b09cb}REG_BINARY    Binary Data

    {5b0cb2e2-ab87-4974-9f1c-2f22a654eeb9}REG_BINARY    Binary Data

    {b6b2ca61-fb98-4422-adc2-e7cf56b3680c}REG_BINARY    Binary Data

    {0aa7fff8-919f-453c-928c-28a12122ba38}REG_BINARY    Binary Data

    {074f7f68-ee10-428a-89d1-ba78f6c327ca}REG_BINARY    Binary Data

    {c016105c-eb34-4519-a5fd-5f4e4ad4d18e}REG_BINARY    Binary Data

    {a47525e2-725b-4888-8af1-ba5a60c04f4d}REG_BINARY    Binary Data

    {0ccc96a3-8c5c-45e2-b80e-7e37b16cc1ad}REG_BINARY    Binary Data

    {91ffecf0-0a9e-4572-95f1-a7111af86967}REG_BINARY    Binary Data

    {64e55933-15a5-495d-a928-ccca43d44875}REG_BINARY    Binary Data

    {13bfd422-6f75-4408-8924-9400ec0cb19c}REG_BINARY    Binary Data

    {cbfb56db-3c85-4543-9bc2-76ea28cdd74e}REG_BINARY    Binary Data

    {2dd96961-5757-434f-b617-34e732517c0e}REG_BINARY    Binary Data

    {375fb39b-08c6-40f2-bdf2-08fa63f970a2}REG_BINARY    Binary Data

    {2db25e6c-f07a-44f4-b6c8-50a330d2790b}REG_BINARY    Binary Data

    {c42f1cd6-3a95-4ae2-a513-793c3ae610c7}REG_BINARY    Binary Data

    {b6fdab6b-dcc6-43e3-99ce-7aeca65063a4}REG_BINARY    Binary Data

    {3697a558-3ed3-49be-a4c1-c1a4448653b4}REG_BINARY    Binary Data

    {935b7f48-0ede-44dd-9bc2-e00bb635cda3}REG_BINARY    Binary Data

    {941dad9d-7b1a-4354-997b-00cf1aa9b35c}REG_BINARY    Binary Data

    {b02a4013-b6b5-4859-9168-1e3299e43b24}REG_BINARY    Binary Data

    {d870c96c-75ee-46a6-8a02-8e4401a73423}REG_BINARY    Binary Data

    {8b50e2ec-7cf0-4b71-b42e-5b0536f6cab8}REG_BINARY    Binary Data

    {4137b143-2770-43d4-91a2-55bb0a069830}REG_BINARY    Binary Data

    {3180114b-8338-4740-9a16-444134ad62f4}REG_BINARY    Binary Data

    {17043d46-fac2-4561-bca1-0c7a05e95f5f}REG_BINARY    Binary Data

    {567d3836-3f5b-4067-b9c4-952f677010a2}REG_BINARY    Binary Data

    {4e718c57-c397-4221-9fbb-14fd51701d6a}REG_BINARY    Binary Data

    {3a90a266-1519-4d23-911b-e84cd0f02ab8}REG_BINARY    Binary Data

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Provider
    {decc16ca-3f33-4346-be1e-8fb4ae0f3d62}REG_BINARY    Binary Data

    {4b153735-1049-4480-aab4-d1b9bdc03710}REG_BINARY    Binary Data

    {1bebc969-61a5-4732-a177-847a0817862a}REG_BINARY    Binary Data

    {aa6a7d87-7f8f-4d2a-be53-fda555cd5fe3}REG_BINARY    Binary Data

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\SubLayer
    {b3cdd441-af90-41ba-a745-7c6008ff2300}REG_BINARY    Binary Data

    {b3cdd441-af90-41ba-a745-7c6008ff2301}REG_BINARY    Binary Data

    {b3cdd441-af90-41ba-a745-7c6008ff2302}REG_BINARY    Binary Data

    {9ba30013-c84e-47e5-ac6e-1e1aed72fa69}REG_BINARY    Binary Data

--------------fltmgr:--------------
Type:                   2
State:                  4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0


HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr
    AttachWhenLoaded              REG_DWORD        1
    DisplayName                   REG_SZ        @%SystemRoot%\system32\drivers\fltmgr.sys,-10001
    Group                         REG_SZ        FSFilter Infrastructure
    ImagePath                     REG_EXPAND_SZ    system32\drivers\fltmgr.sys
    Description                   REG_SZ        @%SystemRoot%\system32\drivers\fltmgr.sys,-10000
    ErrorControl                  REG_DWORD        3
    Start                         REG_DWORD        0
    Tag                           REG_DWORD        1
    Type                          REG_DWORD        2
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr\Enum
    0                             REG_SZ        Root\LEGACY_FLTMGR\0000
    Count                         REG_DWORD        1
    NextInstance                  REG_DWORD        1


C:\Windows\system32\drivers\fltmgr.sys
File Size: 290368    BYTES    FileVersion: 6.1.7600.16385    MD5: [f7866af72abbaf84b1fa5aa195378c59]
C:\Windows\SysWOW64\olepro32.dll
File Size: 90112     BYTES    FileVersion: 6.1.7600.16385    MD5: [c10459dbdc2099c5a8428cb7d87db85f]


MBAM Registry Settings and License Info:
========================================
--------------Settings:--------------
Advanced:
    AutomaticQuarantine:                                       true
    AutostartProtection:                                       true
    LimitedMode:                                               false
    StartSilentMode:                                           false
    StartupDelay:                                              -15
ApplicationState:
    First-Run-After-Installation:                              false
General:
    DaysUntilNotifyExpiration:                                 5
    Language:                                                  en
    RightClickAccess:                                          false
    SilentErrors:                                              false
Logging:
    ExportLog:                                                 true
Marketing:
    LastPostScanMarketingIndex:                                1
Notification:
ProtectionTray:
    DisplayMilliseconds:                                       3000
ScanHistory:
    Duration_Complete:                                         106675
    Duration_Driver:                                           0
    Duration_Filesystem:                                       190
    Duration_Heuristics:                                       395053
    Duration_Loading:                                          0
    Duration_MasterBootRecord:                                 0
    Duration_Memory:                                           40000
    Duration_PreScan:                                          16412
    Duration_Registry:                                         19365
    Duration_Sector:                                           0
    Duration_Startup:                                          15820
    ItemCount_Complete:                                        286566
    ItemCount_Driver:                                          0
    ItemCount_Filesystem:                                      48071
    ItemCount_Heuristics:                                      9460
    ItemCount_Loading:                                         0
    ItemCount_MasterBootRecord:                                0
    ItemCount_Memory:                                          2797
    ItemCount_PreScan:                                         0
    ItemCount_Registry:                                        546
    ItemCount_Sector:                                          0
    ItemCount_Startup:                                         749
    LastScanDateEpoch:                                         1434633205934
    LastScanType:                                              1 (Threat Scan)
Update:
    LastUpdate:                                                2015-06-18T13:12:49
    NotifyInstallReady:                                        true
    NotifyOutdatedDatabase:                                    7
    ProxyPassword:                                              
    ProxyPort:                                                 0
    ProxyServer:                                                
    ProxyUsername:                                              
    UseProxy:                                                  false
    UseProxyAuthentication:                                    false
--------------Account:--------------
  Account Status:                                              Trial
  Expiration Time:                                             2015/07/02 05:12:20
  Activation Time:                                             2015/06/18 06:12:21
  Trial Used:                                                  true
--------------Access Policies:--------------

Scheduler Queue:
================

tasks:
    68396759-bd29-42bd-8494-741f55caa14e:                       
      parameters:                                               
        AutoDelete:                                            false
        CheckForUpdatesBeforeScanStart:                        true
        ScanConfig:                                             
          ExitWhenQuarantineCompletes:                         false
          ExportLog:                                           true
          FileSystemOption:                                    true
          Quarantine:                                          Prompt
          RebootSystemWhenMalwareDetected:                     false
          ScanArchives:                                        true
          ScanExtra:                                           true
          ScanHeuristic:                                       true
          ScanMemoryObjects:                                   true
          ScanPUM:                                             2
          ScanPUP:                                             2
          ScanRegistry:                                        true
          ScanRootkits:                                        false
          ScanSource:                                          1
          ScanStartup:                                         true
          ScanTargets:                                          
          ScanType:                                            1 (Threat Scan)
          Silent:                                              true
        StartTaskFromSystemAccount:                            false
        TaskType:                                              0
      triggers:                                                 
        07492cfa-23e2-43ab-9d76-588efa7e77e1:                   
          dateinterval:                                        1:0:0
          lastscheduled:                                        
          lasttriggered:                                        
          nextscheduled:                                       Fri, 19 Jun 2015 02:35:39 -0700
          recovery:                                            23:00:00
          start:                                               Fri, 19 Jun 2015 02:39:50 -0700
          timeinterval:                                        00:00:00
          type:                                                4
          uuid:                                                07492cfa-23e2-43ab-9d76-588efa7e77e1
      type:                                                    scan
      uuid:                                                    68396759-bd29-42bd-8494-741f55caa14e
    be124c25-9dfe-4f54-bfa1-a6cdd8b92d47:                       
      parameters:                                               
        TaskType:                                              3
      triggers:                                                 
        e2eb8ecd-46a4-46a1-b23f-924e9c1deba9:                   
          dateinterval:                                        0:0:0
          lastscheduled:                                        
          lasttriggered:                                        
          nextscheduled:                                       Thu, 18 Jun 2015 06:52:22.156424 -0700
          recovery:                                            00:00:00
          start:                                               Thu, 18 Jun 2015 06:58:50.156424 -0700
          timeinterval:                                        01:00:00
          type:                                                3
          uuid:                                                e2eb8ecd-46a4-46a1-b23f-924e9c1deba9
      type:                                                    update
      uuid:                                                    be124c25-9dfe-4f54-bfa1-a6cdd8b92d47

Pending File Rename Operations:
================================
If any Malwarebytes Anti-Malware items are listed below, the user must reboot to complete a Malwarebytes Anti-Malware upgrade installation.
Pending File Rename Operations:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\
    PendingFileRenameOperations    REG_MULTI_SZ    \??\c:\6fc409e57df1efb85fa77596b9c70654



MBAMProtector Registry Values:
==============================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector
    Type                          REG_DWORD        2
    Start                         REG_DWORD        3
    ErrorControl                  REG_DWORD        1
    ImagePath                     REG_EXPAND_SZ    \??\C:\Windows\system32\drivers\mbam.sys
    Group                         REG_SZ        FSFilter Anti-Virus
    DependOnService               REG_MULTI_SZ    FltMgr

    WOW64                         REG_DWORD        1
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Instances
    DefaultInstance               REG_SZ        MBAMProtector Instance
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Instances\MBAMProtector Instance
    Altitude                      REG_SZ        328800
    Flags                         REG_DWORD        0
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Parameters
    PassThruFile                  REG_SZ        mbampt.exe
    ProductPath                   REG_SZ        C:\Program Files (x86)\Malwarebytes Anti-Malware
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Enum
    0                             REG_SZ        Root\LEGACY_MBAMPROTECTOR\0000
    Count                         REG_DWORD        1
    NextInstance                  REG_DWORD        1

MBAMService Registry Values:
============================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMService
    Type                          REG_DWORD        16
    Start                         REG_DWORD        2
    ErrorControl                  REG_DWORD        1
    ImagePath                     REG_EXPAND_SZ    "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
    DependOnService               REG_MULTI_SZ    MBAMProtector

    WOW64                         REG_DWORD        1
    ObjectName                    REG_SZ        LocalSystem
    Description                   REG_SZ        Malwarebytes Anti-Malware service
    DelayedAutostart              REG_DWORD        0

MBAMScheduler Registry Values:
==============================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMScheduler
    Type                          REG_DWORD        16
    Start                         REG_DWORD        2
    ErrorControl                  REG_DWORD        1
    ImagePath                     REG_EXPAND_SZ    "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
    WOW64                         REG_DWORD        1
    ObjectName                    REG_SZ        LocalSystem
    Description                   REG_SZ        Malwarebytes Anti-Malware scheduler

Terminal Services Status for (null) entries in PM logs and GetUserToken errors:
===============================================================================

--------------TERMService:--------------
Type:                   32
State:                  1 (The service is not running.) (State is stopped)
WIN32_EXIT_CODE:        1077
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0


TermService Start is set to: 4 (Disabled)         <-- TERMSERVICE SHOULD NOT BE DISABLED

Proxy Status: No proxy is Set

LAN Settings:
=============

only 'Automatically detect settings' is selected

SystemPartition:
================

HKEY_LOCAL_MACHINE\SYSTEM\Setup\
    SystemPartition    REG_SZ        \Device\HarddiskVolume1

Balloon Tips Status:
====================

Enabled

Time Format Settings:
=====================

Should be:
        h:mm:ss tt
        AM
        PM
        :

Currently:
REG_SZ        h:mm:ss tt
REG_SZ        AM
REG_SZ        PM
REG_SZ        :

Language and Regional Settings:
===============================

ACP:     Language is English (United States)
MACCP:     Language is English (United States)
OEMCP:     Language is English (United States)

Startup Folders for Error_Expanding_Variables Check:
====================================================

All Users Startup Folder Exists.
Current User's Startup Folder Exists.


Context Menu Entries:
=====================
















List of MBAM Related Directories:
=================================

C:\Program Files (x86)\Malwarebytes Anti-Malware\
7z.dll                                      File Size: 920888    BYTES    FileVersion:  9.20.0.0       MD5: [3c88cad475b8b4b30b62199e40b2498c]
changes.txt                                 File Size: 577       BYTES    FileVersion:  N/A            MD5: [58354dbb59bc2955d070559338f970a4]
license.rtf                                 File Size: 42936     BYTES    FileVersion:  N/A            MD5: [b22cb49aa8d1359b08eb9e4a4e13899b]
master.conf                                 File Size: 1258      BYTES    FileVersion:  N/A            MD5: [9702ca5e82d3756c6d8af34a2ababaea]
mbam.dll                                    File Size: 602936    BYTES    FileVersion:  1.0.35.0       MD5: [296e2ee79be1a6cf197ad38ae3bd58d9]
mbam.exe                                    File Size: 6212920   BYTES    FileVersion:  1.0.2.929      MD5: [7e212e742bf06bf678ae35e9c1b74b8f]
mbamcore.dll                                File Size: 1971000   BYTES    FileVersion:  1.2.0.0        MD5: [043835a4a31239fe57b891ec960e6075]
mbamdor.exe                                 File Size: 54072     BYTES    FileVersion:  1.0.1.0        MD5: [b83bd7a2c8c2c03d06859c9c46358de7]
mbamext.dll                                 File Size: 310584    BYTES    FileVersion:  3.0.6.0        MD5: [2f3e8b9ee709180e01b197929b3dd4eb]
mbampt.exe                                  File Size: 39736     BYTES    FileVersion:  1.0.0.0        MD5: [416c41110833b3e1c14c7188b71ae70f]
mbamscheduler.exe                           File Size: 1871160   BYTES    FileVersion:  3.1.2.0        MD5: [516e29ad03bdf610cc36a95ae692fe42]
mbamservice.exe                             File Size: 1080120   BYTES    FileVersion:  3.1.0.0        MD5: [2b983f067aee3f9eb4df5e97f45d21d1]
mbamsrv.dll                                 File Size: 3847992   BYTES    FileVersion:  1.2.7.0        MD5: [22c7bd320a5c2ae3ae24c529768702f9]
msvcp100.dll                                File Size: 421688    BYTES    FileVersion:  10.0.40219.325 MD5: [83c628fb6b293d61f7bfbbc3d8f88ac9]
msvcr100.dll                                File Size: 774456    BYTES    FileVersion:  10.0.40219.325 MD5: [e8115316a914da20529e984f0c52828d]
QtCore4.dll                                 File Size: 2582840   BYTES    FileVersion:  4.8.5.0        MD5: [f8e05dc5365f07d0337ef56be17b3e04]
QtGui4.dll                                  File Size: 8420152   BYTES    FileVersion:  4.8.5.0        MD5: [fd1d67dd57309ffe4ae508c14b71b561]
QtNetwork4.dll                              File Size: 909112    BYTES    FileVersion:  4.8.5.0        MD5: [d966279de7fa2193eb84cfb859e704a6]
unins000.dat                                File Size: 27850     BYTES    FileVersion:  N/A            MD5: [f0fd27bf80cf0a43b9e29e9226554a1f]
unins000.exe                                File Size: 718037    BYTES    FileVersion:  51.52.0.0      MD5: [d2796ecf50731e696f0c065d24c0827a]

C:\Program Files (x86)\Malwarebytes Anti-Malware\\accessible
qtaccessiblewidgets4.dll                    File Size: 198968    BYTES    FileVersion:  4.8.4.0        MD5: [9ba27dab5412b71cb8238740d6619d1d]

C:\Program Files (x86)\Malwarebytes Anti-Malware\\Chameleon

C:\Program Files (x86)\Malwarebytes Anti-Malware\\Chameleon\Windows
chameleon.chm                               File Size: 235882    BYTES    FileVersion:  N/A            MD5: [c4190b71f037714aa77aba294434ba5b]
firefox.com                                 File Size: 878392    BYTES    FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
firefox.exe                                 File Size: 878392    BYTES    FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
firefox.pif                                 File Size: 878392    BYTES    FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
firefox.scr                                 File Size: 878392    BYTES    FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
iexplore.exe                                File Size: 878392    BYTES    FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
mbam-chameleon.com                          File Size: 878392    BYTES    FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
mbam-chameleon.exe                          File Size: 878392    BYTES    FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
mbam-chameleon.pif                          File Size: 878392    BYTES    FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
mbam-chameleon.scr                          File Size: 878392    BYTES    FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
mbam-killer.exe                             File Size: 1445176   BYTES    FileVersion:  3.0.9.0        MD5: [99345356e450a5a403488280d3520550]
rundll32.exe                                File Size: 878392    BYTES    FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
svchost.exe                                 File Size: 878392    BYTES    FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
windows.exe                                 File Size: 878392    BYTES    FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
winlogon.exe                                File Size: 878392    BYTES    FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]

C:\Program Files (x86)\Malwarebytes Anti-Malware\\imageformats
qgif4.dll                                   File Size: 32568     BYTES    FileVersion:  4.8.4.0        MD5: [769d18b10c86186dc31a389979d33c27]

C:\Program Files (x86)\Malwarebytes Anti-Malware\\Languages
lang_ar.qm                                  File Size: 102066    BYTES    FileVersion:  N/A            MD5: [1601bc6ef4bec7d2ab9ba68a7f989a37]
lang_bg.qm                                  File Size: 124167    BYTES    FileVersion:  N/A            MD5: [1353a08c12f1de3f9daf8d4accf005de]
lang_ca.qm                                  File Size: 107459    BYTES    FileVersion:  N/A            MD5: [5549692fe8f9e43e0012a088f6a94450]
lang_cs.qm                                  File Size: 119884    BYTES    FileVersion:  N/A            MD5: [585ff91200e8e356bc713f5ee7dd78a5]
lang_da.qm                                  File Size: 102643    BYTES    FileVersion:  N/A            MD5: [ef3261171bcaebac883893f374ad4024]
lang_de.qm                                  File Size: 130017    BYTES    FileVersion:  N/A            MD5: [7558ad2d9a5f23f95bcb9d50f7458250]
lang_el.qm                                  File Size: 128427    BYTES    FileVersion:  N/A            MD5: [4450767b6eaaa6869ee410d389a5e9ed]
lang_en.qm                                  File Size: 100191    BYTES    FileVersion:  N/A            MD5: [2b85d8e24659bf96f2c8a666bead54c4]
lang_es.qm                                  File Size: 129307    BYTES    FileVersion:  N/A            MD5: [74e57ce8c0dc024d7c5fcb068debb3a0]
lang_et.qm                                  File Size: 122063    BYTES    FileVersion:  N/A            MD5: [ff11420bba00002307e14b288c4ce19f]
lang_fi.qm                                  File Size: 103951    BYTES    FileVersion:  N/A            MD5: [89d33b2b7175fb7b3924d9864cdf2230]
lang_fr.qm                                  File Size: 131783    BYTES    FileVersion:  N/A            MD5: [d2b1267fbbb51c39e79f975fbe2182a7]
lang_he.qm                                  File Size: 112817    BYTES    FileVersion:  N/A            MD5: [a2614d9a5d9aba7817fbae878a92de2c]
lang_hu.qm                                  File Size: 123254    BYTES    FileVersion:  N/A            MD5: [c64b7919827df30fd55d9e9f40cf87a7]
lang_id.qm                                  File Size: 120134    BYTES    FileVersion:  N/A            MD5: [dffed4516bf61605021d9e8861c01951]
lang_it.qm                                  File Size: 126353    BYTES    FileVersion:  N/A            MD5: [4736f333e32d0c8f091ca9afe3fa4e71]
lang_ja.qm                                  File Size: 87363     BYTES    FileVersion:  N/A            MD5: [d982d5194aaa6e24e7191ee908491f9d]
lang_ko.qm                                  File Size: 99039     BYTES    FileVersion:  N/A            MD5: [5211e95dd40ea3b4cde5c831490822c9]
lang_lt.qm                                  File Size: 105352    BYTES    FileVersion:  N/A            MD5: [d610679ecb6929ee3ce82cac8f8d00a1]
lang_lv.qm                                  File Size: 105344    BYTES    FileVersion:  N/A            MD5: [985309298c683a35571fdb9486708287]
lang_nl.qm                                  File Size: 125821    BYTES    FileVersion:  N/A            MD5: [018c55baa051080bb012e63cb446b203]
lang_no.qm                                  File Size: 120529    BYTES    FileVersion:  N/A            MD5: [c2ee34817e0dfed9d5a5a85bc667e73c]
lang_pl.qm                                  File Size: 125910    BYTES    FileVersion:  N/A            MD5: [56e9a207bf8f4b564fd71e9defa96d4b]
lang_pt_BR.qm                               File Size: 124022    BYTES    FileVersion:  N/A            MD5: [46a048872f4091a6a9862a54457c3a2c]
lang_pt_PT.qm                               File Size: 129551    BYTES    FileVersion:  N/A            MD5: [99eb0c042faad4ee276f267a870a7abf]
lang_ro.qm                                  File Size: 104981    BYTES    FileVersion:  N/A            MD5: [0cbdb05b7927831d8331eb14d4638f32]
lang_ru.qm                                  File Size: 126972    BYTES    FileVersion:  N/A            MD5: [0febf393c35f2f1a3cd914b838da66dc]
lang_sk.qm                                  File Size: 103656    BYTES    FileVersion:  N/A            MD5: [d3fd5aa90bdae21984139a21058f4d71]
lang_sl.qm                                  File Size: 122126    BYTES    FileVersion:  N/A            MD5: [59911addc36e105cc55ba2ee31d09b7a]
lang_sv.qm                                  File Size: 121593    BYTES    FileVersion:  N/A            MD5: [f96d43155d3c98e43d7682983c0a9898]
lang_tr.qm                                  File Size: 103127    BYTES    FileVersion:  N/A            MD5: [12b05f94c8e397c62f324485e3059b07]
lang_vi.qm                                  File Size: 119896    BYTES    FileVersion:  N/A            MD5: [651b66fb4a9cfa95b640876670be7a27]

C:\Program Files (x86)\Malwarebytes Anti-Malware\\Plugins
fixdamage.exe                               File Size: 821560    BYTES    FileVersion:  1.1.0.1010     MD5: [796973043d5b665178150dd1cfb41a43]

C:\Users\Al\AppData\Roaming\Malwarebytes\Malwarebytes Anti-Malware

C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware
actions.ref                                 File Size: 1541      BYTES    FileVersion:  N/A            MD5: [f5005452931cd5f79cd12743a43b4e41]
domains.ref                                 File Size: 92        BYTES    FileVersion:  N/A            MD5: [643b11322d78d9f4f46f030869ecfc49]
exclusions.dat                              File Size: 0         BYTES    FileVersion:  N/A            MD5: [d41d8cd98f00b204e9800998ecf8427e]
ips.ref                                     File Size: 80        BYTES    FileVersion:  N/A            MD5: [2ec9c118caec1ae4b78c6ea95da0539f]
rules.ref                                   File Size: 12500138  BYTES    FileVersion:  N/A            MD5: [51d6d73fbbdf7b99451278288c50b274]
swissarmy.ref                               File Size: 25181     BYTES    FileVersion:  N/A            MD5: [b22dbd230bd676c96fb02fd392b2c687]

C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Configuration
build.conf                                  File Size: 4594      BYTES    FileVersion:  N/A            MD5: [6bcd09db77b7f9c344218d10ba4f39b3]
database.conf                               File Size: 4         BYTES    FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
gatekeeper.conf                             File Size: 4         BYTES    FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
license.conf                                File Size: 1085      BYTES    FileVersion:  N/A            MD5: [4bf04e3f693655837a3125dfc45b1697]
manifest.conf                               File Size: 2433      BYTES    FileVersion:  N/A            MD5: [850f374929360e9fefcd6df54195c8b7]
marketing.conf                              File Size: 11163     BYTES    FileVersion:  N/A            MD5: [5ae2d2735ac9e32afd2ddbab1d604496]
net.conf                                    File Size: 6891      BYTES    FileVersion:  N/A            MD5: [67d1df94ce3cc4740279a2d06485234e]
notifications.conf                          File Size: 4         BYTES    FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
scheduler.conf                              File Size: 1979      BYTES    FileVersion:  N/A            MD5: [6eff35d1945e2e5adf76c44ca2e61e37]
settings.conf                               File Size: 2037      BYTES    FileVersion:  N/A            MD5: [3a87f632ffe4a5bf50744b7d4b63fb31]
statistics.conf                             File Size: 513       BYTES    FileVersion:  N/A            MD5: [17f5d54755415f9edb5c452bfde0d38d]

C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Configuration\Restore
build.conf                                  File Size: 4182      BYTES    FileVersion:  N/A            MD5: [a6f4892a9a602a54ecfc8681294103bb]
database.conf                               File Size: 4         BYTES    FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
gatekeeper.conf                             File Size: 4         BYTES    FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
license.conf                                File Size: 23        BYTES    FileVersion:  N/A            MD5: [0ec01df616b565180556881d8042255b]
manifest.conf                               File Size: 1576      BYTES    FileVersion:  N/A            MD5: [af6de7a6ee83d328eb7211c854c57c67]
marketing.conf                              File Size: 11163     BYTES    FileVersion:  N/A            MD5: [5ae2d2735ac9e32afd2ddbab1d604496]
net.conf                                    File Size: 6085      BYTES    FileVersion:  N/A            MD5: [2e9986b0f3babad30e41fd2468197e94]
notifications.conf                          File Size: 4         BYTES    FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
scheduler.conf                              File Size: 4         BYTES    FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
settings.conf                               File Size: 1725      BYTES    FileVersion:  N/A            MD5: [5454026126dac24f6e96eeb0c64123d3]
statistics.conf                             File Size: 4         BYTES    FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]

C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Logs
mbam-log-2015-06-18 (06-13-24).xml          File Size: 2460      BYTES    FileVersion:  N/A            MD5: [7adb022195b1e0544eb7db373f3e0501]
protection-log-2015-06-18.xml               File Size: 4786      BYTES    FileVersion:  N/A            MD5: [365ce80b94361083830691623592ded4]

C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Quarantine

Malware Exclusions:
===================
Web Exclusions:
================
Quarantined Items:
===================
===============================================================
END OF FILE
 

 

 

Doing Kaspersky scan now.



#6 deathdoc

deathdoc
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  

Posted 18 June 2015 - 10:58 AM

I used the TDSSKiller program, Unfortunately, when I checked the box for Loaded Modules and hit reboot, The updates I had postponed (it was really getting rediculous.)  started, Failed, and then I could only start my computer in safe mode (which it did on its own, regardless of what I did) so I did a Factory Reset with all my files gone and everything, Im still having the .exe*32 problems with the astronomical Memory usage.  I logged a very long very detailed journal of what I've done since that happened. I might start it in a new topic. Anyway, Im restarting the scans I was instructed to do right now. 



#7 deathdoc

deathdoc
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  

Posted 18 June 2015 - 11:17 AM

Ok, once again, Malwarebytes found no Updates and detected nothing.

I will now redownload TDSSKiller and follow your instructions.

Here is Log:

mbam-check result log version:     2.1.1.1001
========================================

User Account type:                 Administrator
OS:                                Windows 7  64 bit Operating System
Current Version and Build:         6.1.7600.0
Malwarebytes Anti-Malware:         2.1.6.1022
Installed On:                      2015/06/18
Malware Database:                  2015.06.18.04
Rootkit Database:                  2015.06.15.01
Remediation Database:              2015.06.15.01
IP Database:                       2015.06.12.01
Domain Database:                   2015.06.12.01
License:                           Trial
Malware Protection:                4 (The service is running.)
Malicious Website Protection:      4 (The service is running.)
Chameleon:                         0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMChameleon
Log Created:                       2015/06/18 09:15:04
Compatibility Flag Settings:
=================================

 

 

Malwarebytes Anti-Malware Shell Extension Block Check:
======================================================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Blocked:

MBAM Startup Entries:
=====================
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce

Malwarebytes Anti-Malware Service and Driver Status:
=======================================================

--------------Driver File Info:--------------
C:\Windows\system32\drivers\mbam.sys
File Size:     25816 BYTES FileVersion: 0.1.15.0 MD5: [6a990ac8404f18f34016328843513afc]
C:\Windows\system32\drivers\mwac.sys
File Size:     63704 BYTES FileVersion: 1.0.6.0 MD5: [705140252f25c647fcda87078700e0a3]
C:\Windows\system32\drivers\mbamswissarmy.sys
File Size:    136408 BYTES FileVersion: 0.2.21.0 MD5: [e9cd058c79ea15b4aa93e259fa713b07]
C:\Windows\system32\drivers\mbamchameleon.sys
File Size:    107736 BYTES FileVersion: 1.1.13.0 MD5: [4b08727f965676a5b35e8c1378073b9c]

--------------MBAMProtector:--------------
Type:                   2
State:                  4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0

--------------MBAMService:--------------
Type:                   16
State:                  4 (The service is running.)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0

--------------MBAMScheduler:--------------
Type:                   16
State:                  4 (The service is running.)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0

--------------MBAMChameleon:--------------
Type:                   N/A
State:                  0 <--CAN NOT OPEN SC_HANDLE, SERVICE IS NOT RUNNING FOR: MBAMChameleon
WIN32_EXIT_CODE:        N/A
SERVICE_EXIT_CODE:      N/A
CHECKPOINT:             N/A
WAIT_HINT:              N/A

--------------MBAMWebAccessControl:--------------
Type:                   2
State:                  4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0

Required Dependencies:
======================

--------------BFE:--------------
Type:                   32
State:                  4 (The service is running.)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE
 DisplayName                   REG_SZ  @%SystemRoot%\system32\bfe.dll,-1001
 Group                         REG_SZ  NetworkProvider
 ImagePath                     REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k LocalServiceNoNetwork
 Description                   REG_SZ  @%SystemRoot%\system32\bfe.dll,-1002
 ObjectName                    REG_SZ  NT AUTHORITY\LocalService
 ErrorControl                  REG_DWORD  1
 Start                         REG_DWORD  2
 Type                          REG_DWORD  32
 DependOnService               REG_MULTI_SZ RpcSs

 ServiceSidType                REG_DWORD  3
 RequiredPrivileges            REG_MULTI_SZ SeAuditPrivilege

 FailureActions                REG_BINARY Binary Data

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters
 ServiceDll                    REG_EXPAND_SZ %SystemRoot%\System32\bfe.dll
 ServiceDllUnloadOnStop        REG_DWORD  1
 ServiceMain                   REG_SZ  BfeServiceMain
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\BootTime
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\BootTime\Filter
 {dc95b53e-01cf-4058-821d-350b3d0d4676}REG_BINARY Binary Data

 {2dd96961-5757-434f-b617-34e732517c0e}REG_BINARY Binary Data

 {2db25e6c-f07a-44f4-b6c8-50a330d2790b}REG_BINARY Binary Data

 {c42f1cd6-3a95-4ae2-a513-793c3ae610c7}REG_BINARY Binary Data

 {0c41d586-9c19-4e01-9d66-b5b98a97576e}REG_BINARY Binary Data

 {12c38916-82ac-4737-8f38-b6957ffebad6}REG_BINARY Binary Data

 {c970a45d-57f9-4e32-a5bd-886a9662641e}REG_BINARY Binary Data

 {0c3be01b-fe70-4cc4-89dc-c07996b67e6d}REG_BINARY Binary Data

 {074f7f68-ee10-428a-89d1-ba78f6c327ca}REG_BINARY Binary Data

 {c016105c-eb34-4519-a5fd-5f4e4ad4d18e}REG_BINARY Binary Data

 {a47525e2-725b-4888-8af1-ba5a60c04f4d}REG_BINARY Binary Data

 {0ccc96a3-8c5c-45e2-b80e-7e37b16cc1ad}REG_BINARY Binary Data

 {935b7f48-0ede-44dd-9bc2-e00bb635cda3}REG_BINARY Binary Data

 {941dad9d-7b1a-4354-997b-00cf1aa9b35c}REG_BINARY Binary Data

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Filter
 {dc95b53e-01cf-4058-821d-350b3d0d4676}REG_BINARY Binary Data

 {f444c576-6e60-4ea2-9faa-80d57ed12cd2}REG_BINARY Binary Data

 {0c41d586-9c19-4e01-9d66-b5b98a97576e}REG_BINARY Binary Data

 {12c38916-82ac-4737-8f38-b6957ffebad6}REG_BINARY Binary Data

 {c970a45d-57f9-4e32-a5bd-886a9662641e}REG_BINARY Binary Data

 {0c3be01b-fe70-4cc4-89dc-c07996b67e6d}REG_BINARY Binary Data

 {4d9581d2-aef8-4993-84cd-b986ced80d42}REG_BINARY Binary Data

 {be7cbdf4-b192-4aa5-94f8-1fb5c5ee07bc}REG_BINARY Binary Data

 {716b48eb-0a35-4a76-92ab-1d987230d288}REG_BINARY Binary Data

 {1165065e-4996-4338-abaf-4b8556b4d431}REG_BINARY Binary Data

 {07a24961-a760-4e80-b263-6d275e1b09cb}REG_BINARY Binary Data

 {5b0cb2e2-ab87-4974-9f1c-2f22a654eeb9}REG_BINARY Binary Data

 {b6b2ca61-fb98-4422-adc2-e7cf56b3680c}REG_BINARY Binary Data

 {0aa7fff8-919f-453c-928c-28a12122ba38}REG_BINARY Binary Data

 {074f7f68-ee10-428a-89d1-ba78f6c327ca}REG_BINARY Binary Data

 {c016105c-eb34-4519-a5fd-5f4e4ad4d18e}REG_BINARY Binary Data

 {a47525e2-725b-4888-8af1-ba5a60c04f4d}REG_BINARY Binary Data

 {0ccc96a3-8c5c-45e2-b80e-7e37b16cc1ad}REG_BINARY Binary Data

 {91ffecf0-0a9e-4572-95f1-a7111af86967}REG_BINARY Binary Data

 {64e55933-15a5-495d-a928-ccca43d44875}REG_BINARY Binary Data

 {13bfd422-6f75-4408-8924-9400ec0cb19c}REG_BINARY Binary Data

 {cbfb56db-3c85-4543-9bc2-76ea28cdd74e}REG_BINARY Binary Data

 {2dd96961-5757-434f-b617-34e732517c0e}REG_BINARY Binary Data

 {375fb39b-08c6-40f2-bdf2-08fa63f970a2}REG_BINARY Binary Data

 {2db25e6c-f07a-44f4-b6c8-50a330d2790b}REG_BINARY Binary Data

 {c42f1cd6-3a95-4ae2-a513-793c3ae610c7}REG_BINARY Binary Data

 {b6fdab6b-dcc6-43e3-99ce-7aeca65063a4}REG_BINARY Binary Data

 {3697a558-3ed3-49be-a4c1-c1a4448653b4}REG_BINARY Binary Data

 {935b7f48-0ede-44dd-9bc2-e00bb635cda3}REG_BINARY Binary Data

 {941dad9d-7b1a-4354-997b-00cf1aa9b35c}REG_BINARY Binary Data

 {b02a4013-b6b5-4859-9168-1e3299e43b24}REG_BINARY Binary Data

 {d870c96c-75ee-46a6-8a02-8e4401a73423}REG_BINARY Binary Data

 {8b50e2ec-7cf0-4b71-b42e-5b0536f6cab8}REG_BINARY Binary Data

 {4137b143-2770-43d4-91a2-55bb0a069830}REG_BINARY Binary Data

 {3180114b-8338-4740-9a16-444134ad62f4}REG_BINARY Binary Data

 {17043d46-fac2-4561-bca1-0c7a05e95f5f}REG_BINARY Binary Data

 {567d3836-3f5b-4067-b9c4-952f677010a2}REG_BINARY Binary Data

 {4e718c57-c397-4221-9fbb-14fd51701d6a}REG_BINARY Binary Data

 {3a90a266-1519-4d23-911b-e84cd0f02ab8}REG_BINARY Binary Data

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Provider
 {decc16ca-3f33-4346-be1e-8fb4ae0f3d62}REG_BINARY Binary Data

 {4b153735-1049-4480-aab4-d1b9bdc03710}REG_BINARY Binary Data

 {1bebc969-61a5-4732-a177-847a0817862a}REG_BINARY Binary Data

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\SubLayer
 {b3cdd441-af90-41ba-a745-7c6008ff2300}REG_BINARY Binary Data

 {b3cdd441-af90-41ba-a745-7c6008ff2301}REG_BINARY Binary Data

 {b3cdd441-af90-41ba-a745-7c6008ff2302}REG_BINARY Binary Data

 {9ba30013-c84e-47e5-ac6e-1e1aed72fa69}REG_BINARY Binary Data

--------------fltmgr:--------------
Type:                   2
State:                  4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr
 AttachWhenLoaded              REG_DWORD  1
 DisplayName                   REG_SZ  @%SystemRoot%\system32\drivers\fltmgr.sys,-10001
 Group                         REG_SZ  FSFilter Infrastructure
 ImagePath                     REG_EXPAND_SZ system32\drivers\fltmgr.sys
 Description                   REG_SZ  @%SystemRoot%\system32\drivers\fltmgr.sys,-10000
 ErrorControl                  REG_DWORD  3
 Start                         REG_DWORD  0
 Tag                           REG_DWORD  1
 Type                          REG_DWORD  2
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr\Enum
 0                             REG_SZ  Root\LEGACY_FLTMGR\0000
 Count                         REG_DWORD  1
 NextInstance                  REG_DWORD  1

C:\Windows\system32\drivers\fltmgr.sys
File Size: 290368    BYTES FileVersion: 6.1.7600.16385 MD5: [f7866af72abbaf84b1fa5aa195378c59]
C:\Windows\SysWOW64\olepro32.dll
File Size: 90112     BYTES FileVersion: 6.1.7600.16385 MD5: [c10459dbdc2099c5a8428cb7d87db85f]

MBAM Registry Settings and License Info:
========================================
--------------Settings:--------------
Advanced:
    AutomaticQuarantine:                                       true
    AutostartProtection:                                       false
    LimitedMode:                                               false
    StartSilentMode:                                           false
    StartupDelay:                                              15
ApplicationState:
    First-Run-After-Installation:                              false
General:
    DaysUntilNotifyExpiration:                                 5
    Language:                                                  en
    RightClickAccess:                                          false
    SilentErrors:                                              false
Logging:
    ExportLog:                                                 true
Marketing:
    LastPostScanMarketingIndex:                                1
Notification:
ProtectionTray:
    DisplayMilliseconds:                                       3000
ScanHistory:
    Duration_Complete:                                         188573
    Duration_Driver:                                           0
    Duration_Filesystem:                                       52
    Duration_Heuristics:                                       280613
    Duration_Loading:                                          0
    Duration_MasterBootRecord:                                 0
    Duration_Memory:                                           40000
    Duration_PreScan:                                          17243
    Duration_Registry:                                         15710
    Duration_Sector:                                           0
    Duration_Startup:                                          6082
    ItemCount_Complete:                                        283269
    ItemCount_Driver:                                          0
    ItemCount_Filesystem:                                      37613
    ItemCount_Heuristics:                                      7738
    ItemCount_Loading:                                         0
    ItemCount_MasterBootRecord:                                0
    ItemCount_Memory:                                          2797
    ItemCount_PreScan:                                         0
    ItemCount_Registry:                                        525
    ItemCount_Sector:                                          0
    ItemCount_Startup:                                         308
    LastScanDateEpoch:                                         1434643425324
    LastScanType:                                              1 (Threat Scan)
Update:
    LastUpdate:                                                2015-06-18T16:03:32
    NotifyInstallReady:                                        true
    NotifyOutdatedDatabase:                                    7
    ProxyPassword:                                             
    ProxyPort:                                                 0
    ProxyServer:                                               
    ProxyUsername:                                             
    UseProxy:                                                  false
    UseProxyAuthentication:                                    false
--------------Account:--------------
  Account Status:                                              Trial
  Expiration Time:                                             2015/07/02 16:03:17
  Activation Time:                                             2015/06/18 09:03:09
  Trial Used:                                                  true
--------------Access Policies:--------------

Scheduler Queue:
================

tasks:
    0c168ca3-ee66-44b7-9898-b0ed40333596:                      
      parameters:                                              
        TaskType:                                              3
      triggers:                                                
        623daf59-aca8-401d-999c-311fdea35d79:                  
          dateinterval:                                        0:0:0
          lastscheduled:                                       
          lasttriggered:                                       
          nextscheduled:                                       Thu, 18 Jun 2015 09:20:31.070118 -0700
          recovery:                                            00:00:00
          start:                                               Thu, 18 Jun 2015 09:08:52.070118 -0700
          timeinterval:                                        01:00:00
          type:                                                3
          uuid:                                                623daf59-aca8-401d-999c-311fdea35d79
      type:                                                    update
      uuid:                                                    0c168ca3-ee66-44b7-9898-b0ed40333596
    fad00fb9-d070-448b-8b4c-16f100c556dc:                      
      parameters:                                              
        AutoDelete:                                            false
        CheckForUpdatesBeforeScanStart:                        true
        ScanConfig:                                            
          ExitWhenQuarantineCompletes:                         false
          ExportLog:                                           true
          FileSystemOption:                                    true
          Quarantine:                                          Prompt
          RebootSystemWhenMalwareDetected:                     false
          ScanArchives:                                        true
          ScanExtra:                                           true
          ScanHeuristic:                                       true
          ScanMemoryObjects:                                   true
          ScanPUM:                                             2
          ScanPUP:                                             2
          ScanRegistry:                                        true
          ScanRootkits:                                        false
          ScanSource:                                          1
          ScanStartup:                                         true
          ScanTargets:                                         
          ScanType:                                            1 (Threat Scan)
          Silent:                                              true
        StartTaskFromSystemAccount:                            false
        TaskType:                                              0
      triggers:                                                
        9b6da8b9-9e66-47a6-bb46-c7d7dedeb2e8:                  
          dateinterval:                                        1:0:0
          lastscheduled:                                       
          lasttriggered:                                       
          nextscheduled:                                       Fri, 19 Jun 2015 03:33:45 -0700
          recovery:                                            23:00:00
          start:                                               Fri, 19 Jun 2015 03:21:10 -0700
          timeinterval:                                        00:00:00
          type:                                                4
          uuid:                                                9b6da8b9-9e66-47a6-bb46-c7d7dedeb2e8
      type:                                                    scan
      uuid:                                                    fad00fb9-d070-448b-8b4c-16f100c556dc

Pending File Rename Operations:
================================
If any Malwarebytes Anti-Malware items are listed below, the user must reboot to complete a Malwarebytes Anti-Malware upgrade installation.
Pending File Rename Operations:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\
 PendingFileRenameOperations REG_MULTI_SZ \??\C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll.old

 

MBAMProtector Registry Values:
==============================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector
 Type                          REG_DWORD  2
 Start                         REG_DWORD  3
 ErrorControl                  REG_DWORD  1
 ImagePath                     REG_EXPAND_SZ \??\C:\Windows\system32\drivers\mbam.sys
 Group                         REG_SZ  FSFilter Anti-Virus
 DependOnService               REG_MULTI_SZ FltMgr

 WOW64                         REG_DWORD  1
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Instances
 DefaultInstance               REG_SZ  MBAMProtector Instance
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Instances\MBAMProtector Instance
 Altitude                      REG_SZ  328800
 Flags                         REG_DWORD  0
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Parameters
 PassThruFile                  REG_SZ  mbampt.exe
 ProductPath                   REG_SZ  C:\Program Files (x86)\Malwarebytes Anti-Malware
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Enum
 0                             REG_SZ  Root\LEGACY_MBAMPROTECTOR\0000
 Count                         REG_DWORD  1
 NextInstance                  REG_DWORD  1

MBAMService Registry Values:
============================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMService
 Type                          REG_DWORD  16
 Start                         REG_DWORD  2
 ErrorControl                  REG_DWORD  1
 ImagePath                     REG_EXPAND_SZ "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
 DependOnService               REG_MULTI_SZ MBAMProtector

 WOW64                         REG_DWORD  1
 ObjectName                    REG_SZ  LocalSystem
 Description                   REG_SZ  Malwarebytes Anti-Malware service
 DelayedAutostart              REG_DWORD  0

MBAMScheduler Registry Values:
==============================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMScheduler
 Type                          REG_DWORD  16
 Start                         REG_DWORD  4
 ErrorControl                  REG_DWORD  1
 ImagePath                     REG_EXPAND_SZ "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
 WOW64                         REG_DWORD  1
 ObjectName                    REG_SZ  LocalSystem
 Description                   REG_SZ  Malwarebytes Anti-Malware scheduler

Terminal Services Status for (null) entries in PM logs and GetUserToken errors:
===============================================================================

--------------TERMService:--------------
Type:                   32
State:                  1 (The service is not running.) (State is stopped)
WIN32_EXIT_CODE:        1077
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0

TermService Start is set to: 3 (Manual Startup)

Proxy Status: No proxy is Set

LAN Settings:
=============

only 'Automatically detect settings' is selected

SystemPartition:
================

HKEY_LOCAL_MACHINE\SYSTEM\Setup\
 SystemPartition REG_SZ  \Device\HarddiskVolume1

Balloon Tips Status:
====================

Enabled

Time Format Settings:
=====================

Should be:
  h:mm:ss tt
  AM
  PM
  :

Currently:
REG_SZ  h:mm:ss tt
REG_SZ  AM
REG_SZ  PM
REG_SZ  :

Language and Regional Settings:
===============================

ACP:  Language is English (United States)
MACCP:  Language is English (United States)
OEMCP:  Language is English (United States)

Startup Folders for Error_Expanding_Variables Check:
====================================================

All Users Startup Folder Exists.
Current User's Startup Folder Exists.

Context Menu Entries:
=====================

 

 

 

 

 

 

 

List of MBAM Related Directories:
=================================

C:\Program Files (x86)\Malwarebytes Anti-Malware\
7z.dll                                   File Size: 920888    BYTES FileVersion:  9.20.0.0       MD5: [b79f928aaeaf6150ec42e9c92361c4ea]
changes.txt                              File Size: 577       BYTES FileVersion:  N/A            MD5: [58354dbb59bc2955d070559338f970a4]
license.rtf                              File Size: 42936     BYTES FileVersion:  N/A            MD5: [b22cb49aa8d1359b08eb9e4a4e13899b]
master.conf                              File Size: 1258      BYTES FileVersion:  N/A            MD5: [9702ca5e82d3756c6d8af34a2ababaea]
mbam.dll                                 File Size: 602936    BYTES FileVersion:  1.0.35.0       MD5: [1ddd64f2661aa53d5eaee7b486e012c5]
mbam.exe                                 File Size: 6212920   BYTES FileVersion:  1.0.2.929      MD5: [0ab18d0b3cb242d89f41e3efdaac1664]
mbamcore.dll                             File Size: 1971000   BYTES FileVersion:  1.2.0.0        MD5: [251d5bd37fb81dbdbf3653d81d6caac6]
mbamdor.exe                              File Size: 54072     BYTES FileVersion:  1.0.1.0        MD5: [a115315e799cd7abd91fd1d28f8a0fad]
mbamext.dll                              File Size: 310584    BYTES FileVersion:  3.0.6.0        MD5: [3ea66c0dc70900c4c2b5c96e39ce9423]
mbampt.exe                               File Size: 39736     BYTES FileVersion:  1.0.0.0        MD5: [8b44b87a0b8c6d7614295bf213bf138e]
mbamscheduler.exe                        File Size: 1871160   BYTES FileVersion:  3.1.2.0        MD5: [a71b4cf0d3f763208ec0de01290245d8]
mbamservice.exe                          File Size: 1080120   BYTES FileVersion:  3.1.0.0        MD5: [eb043b24d856465a2a21a59e53eea9cd]
mbamsrv.dll                              File Size: 3847992   BYTES FileVersion:  1.2.7.0        MD5: [1b53cd7fac0d513a4e827294eb385b7d]
msvcp100.dll                             File Size: 421688    BYTES FileVersion:  10.0.40219.325 MD5: [0b6d151c261b24ca0e8935873f0f23d6]
msvcr100.dll                             File Size: 774456    BYTES FileVersion:  10.0.40219.325 MD5: [4e2d4d6dc12983cb8e3e517aade48e34]
QtCore4.dll                              File Size: 2582840   BYTES FileVersion:  4.8.5.0        MD5: [10a2f213b3a9dd13809f3b20f16042e0]
QtGui4.dll                               File Size: 8420152   BYTES FileVersion:  4.8.5.0        MD5: [e85cf42d05153679757cc87b9ea61a86]
QtNetwork4.dll                           File Size: 909112    BYTES FileVersion:  4.8.5.0        MD5: [82e2c42ec6e8dcfa8642dbcc6e8c35df]
unins000.dat                             File Size: 26825     BYTES FileVersion:  N/A            MD5: [0a40455e369a608e5e9326e2a9bfc3c7]
unins000.exe                             File Size: 718037    BYTES FileVersion:  51.52.0.0      MD5: [d2796ecf50731e696f0c065d24c0827a]

C:\Program Files (x86)\Malwarebytes Anti-Malware\\accessible
qtaccessiblewidgets4.dll                 File Size: 198968    BYTES FileVersion:  4.8.4.0        MD5: [7fce63d59e2daf79ad82f824b7ce7eb5]

C:\Program Files (x86)\Malwarebytes Anti-Malware\\Chameleon

C:\Program Files (x86)\Malwarebytes Anti-Malware\\Chameleon\Windows
chameleon.chm                            File Size: 235882    BYTES FileVersion:  N/A            MD5: [c4190b71f037714aa77aba294434ba5b]
firefox.com                              File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [0435da50bcab798541717d52d8c283e6]
firefox.exe                              File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [0435da50bcab798541717d52d8c283e6]
firefox.pif                              File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [0435da50bcab798541717d52d8c283e6]
firefox.scr                              File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [0435da50bcab798541717d52d8c283e6]
iexplore.exe                             File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [0435da50bcab798541717d52d8c283e6]
mbam-chameleon.com                       File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [0435da50bcab798541717d52d8c283e6]
mbam-chameleon.exe                       File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [0435da50bcab798541717d52d8c283e6]
mbam-chameleon.pif                       File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [0435da50bcab798541717d52d8c283e6]
mbam-chameleon.scr                       File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [0435da50bcab798541717d52d8c283e6]
mbam-killer.exe                          File Size: 1445176   BYTES FileVersion:  3.0.9.0        MD5: [41683147c3ae633679fda99b9e5e676e]
rundll32.exe                             File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [0435da50bcab798541717d52d8c283e6]
svchost.exe                              File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [0435da50bcab798541717d52d8c283e6]
windows.exe                              File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [0435da50bcab798541717d52d8c283e6]
winlogon.exe                             File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [0435da50bcab798541717d52d8c283e6]

C:\Program Files (x86)\Malwarebytes Anti-Malware\\imageformats
qgif4.dll                                File Size: 32568     BYTES FileVersion:  4.8.4.0        MD5: [5a677f0c816964efb5ed7dac7e92cfde]

C:\Program Files (x86)\Malwarebytes Anti-Malware\\Languages
lang_ar.qm                               File Size: 102066    BYTES FileVersion:  N/A            MD5: [1601bc6ef4bec7d2ab9ba68a7f989a37]
lang_bg.qm                               File Size: 124167    BYTES FileVersion:  N/A            MD5: [1353a08c12f1de3f9daf8d4accf005de]
lang_ca.qm                               File Size: 107459    BYTES FileVersion:  N/A            MD5: [5549692fe8f9e43e0012a088f6a94450]
lang_cs.qm                               File Size: 119884    BYTES FileVersion:  N/A            MD5: [585ff91200e8e356bc713f5ee7dd78a5]
lang_da.qm                               File Size: 102643    BYTES FileVersion:  N/A            MD5: [ef3261171bcaebac883893f374ad4024]
lang_de.qm                               File Size: 130017    BYTES FileVersion:  N/A            MD5: [7558ad2d9a5f23f95bcb9d50f7458250]
lang_el.qm                               File Size: 128427    BYTES FileVersion:  N/A            MD5: [4450767b6eaaa6869ee410d389a5e9ed]
lang_en.qm                               File Size: 100191    BYTES FileVersion:  N/A            MD5: [2b85d8e24659bf96f2c8a666bead54c4]
lang_es.qm                               File Size: 129307    BYTES FileVersion:  N/A            MD5: [74e57ce8c0dc024d7c5fcb068debb3a0]
lang_et.qm                               File Size: 122063    BYTES FileVersion:  N/A            MD5: [ff11420bba00002307e14b288c4ce19f]
lang_fi.qm                               File Size: 103951    BYTES FileVersion:  N/A            MD5: [89d33b2b7175fb7b3924d9864cdf2230]
lang_fr.qm                               File Size: 131783    BYTES FileVersion:  N/A            MD5: [d2b1267fbbb51c39e79f975fbe2182a7]
lang_he.qm                               File Size: 112817    BYTES FileVersion:  N/A            MD5: [a2614d9a5d9aba7817fbae878a92de2c]
lang_hu.qm                               File Size: 123254    BYTES FileVersion:  N/A            MD5: [c64b7919827df30fd55d9e9f40cf87a7]
lang_id.qm                               File Size: 120134    BYTES FileVersion:  N/A            MD5: [dffed4516bf61605021d9e8861c01951]
lang_it.qm                               File Size: 126353    BYTES FileVersion:  N/A            MD5: [4736f333e32d0c8f091ca9afe3fa4e71]
lang_ja.qm                               File Size: 87363     BYTES FileVersion:  N/A            MD5: [d982d5194aaa6e24e7191ee908491f9d]
lang_ko.qm                               File Size: 99039     BYTES FileVersion:  N/A            MD5: [5211e95dd40ea3b4cde5c831490822c9]
lang_lt.qm                               File Size: 105352    BYTES FileVersion:  N/A            MD5: [d610679ecb6929ee3ce82cac8f8d00a1]
lang_lv.qm                               File Size: 105344    BYTES FileVersion:  N/A            MD5: [985309298c683a35571fdb9486708287]
lang_nl.qm                               File Size: 125821    BYTES FileVersion:  N/A            MD5: [018c55baa051080bb012e63cb446b203]
lang_no.qm                               File Size: 120529    BYTES FileVersion:  N/A            MD5: [c2ee34817e0dfed9d5a5a85bc667e73c]
lang_pl.qm                               File Size: 125910    BYTES FileVersion:  N/A            MD5: [56e9a207bf8f4b564fd71e9defa96d4b]
lang_pt_BR.qm                            File Size: 124022    BYTES FileVersion:  N/A            MD5: [46a048872f4091a6a9862a54457c3a2c]
lang_pt_PT.qm                            File Size: 129551    BYTES FileVersion:  N/A            MD5: [99eb0c042faad4ee276f267a870a7abf]
lang_ro.qm                               File Size: 104981    BYTES FileVersion:  N/A            MD5: [0cbdb05b7927831d8331eb14d4638f32]
lang_ru.qm                               File Size: 126972    BYTES FileVersion:  N/A            MD5: [0febf393c35f2f1a3cd914b838da66dc]
lang_sk.qm                               File Size: 103656    BYTES FileVersion:  N/A            MD5: [d3fd5aa90bdae21984139a21058f4d71]
lang_sl.qm                               File Size: 122126    BYTES FileVersion:  N/A            MD5: [59911addc36e105cc55ba2ee31d09b7a]
lang_sv.qm                               File Size: 121593    BYTES FileVersion:  N/A            MD5: [f96d43155d3c98e43d7682983c0a9898]
lang_tr.qm                               File Size: 103127    BYTES FileVersion:  N/A            MD5: [12b05f94c8e397c62f324485e3059b07]
lang_vi.qm                               File Size: 119896    BYTES FileVersion:  N/A            MD5: [651b66fb4a9cfa95b640876670be7a27]

C:\Program Files (x86)\Malwarebytes Anti-Malware\\Plugins
fixdamage.exe                            File Size: 821560    BYTES FileVersion:  1.1.0.1010     MD5: [deff256c0393e100e7b00318e4b20b26]

C:\Users\DeathDoc\AppData\Roaming\Malwarebytes\Malwarebytes Anti-Malware

C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware
actions.ref                              File Size: 1541      BYTES FileVersion:  N/A            MD5: [f5005452931cd5f79cd12743a43b4e41]
domains.ref                              File Size: 92        BYTES FileVersion:  N/A            MD5: [643b11322d78d9f4f46f030869ecfc49]
exclusions.dat                           File Size: 0         BYTES FileVersion:  N/A            MD5: [d41d8cd98f00b204e9800998ecf8427e]
ips.ref                                  File Size: 80        BYTES FileVersion:  N/A            MD5: [2ec9c118caec1ae4b78c6ea95da0539f]
rules.ref                                File Size: 12506656  BYTES FileVersion:  N/A            MD5: [903bcc8110e58b8687d889676075bcb8]
swissarmy.ref                            File Size: 25181     BYTES FileVersion:  N/A            MD5: [b22dbd230bd676c96fb02fd392b2c687]

C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Configuration
build.conf                               File Size: 4633      BYTES FileVersion:  N/A            MD5: [caf2a4acd8b146717f7b4d1abc5f4aa0]
database.conf                            File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
gatekeeper.conf                          File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
license.conf                             File Size: 1094      BYTES FileVersion:  N/A            MD5: [250e02ac14e0003d3381dc34c12042fa]
manifest.conf                            File Size: 2433      BYTES FileVersion:  N/A            MD5: [4a9bdb17f11775b6ab2e7ec6317aaa4e]
marketing.conf                           File Size: 11163     BYTES FileVersion:  N/A            MD5: [5ae2d2735ac9e32afd2ddbab1d604496]
net.conf                                 File Size: 6902      BYTES FileVersion:  N/A            MD5: [d07091d98104d2601a7648bf602773eb]
notifications.conf                       File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
scheduler.conf                           File Size: 1979      BYTES FileVersion:  N/A            MD5: [d4e97f254eb818f5c127ae247fe75928]
settings.conf                            File Size: 2034      BYTES FileVersion:  N/A            MD5: [c9e703d17c822309cf0c8e7fcf464b9d]
statistics.conf                          File Size: 513       BYTES FileVersion:  N/A            MD5: [881b3a2651b2fa094b0f0a980d65a46e]

C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Configuration\Restore
build.conf                               File Size: 4221      BYTES FileVersion:  N/A            MD5: [464a691e519c5959f1a86003f4b2dc49]
database.conf                            File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
gatekeeper.conf                          File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
license.conf                             File Size: 23        BYTES FileVersion:  N/A            MD5: [0ec01df616b565180556881d8042255b]
manifest.conf                            File Size: 1576      BYTES FileVersion:  N/A            MD5: [af6de7a6ee83d328eb7211c854c57c67]
marketing.conf                           File Size: 11163     BYTES FileVersion:  N/A            MD5: [5ae2d2735ac9e32afd2ddbab1d604496]
net.conf                                 File Size: 6085      BYTES FileVersion:  N/A            MD5: [2e9986b0f3babad30e41fd2468197e94]
notifications.conf                       File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
scheduler.conf                           File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
settings.conf                            File Size: 1725      BYTES FileVersion:  N/A            MD5: [5454026126dac24f6e96eeb0c64123d3]
statistics.conf                          File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]

C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Logs
mbam-log-2015-06-18 (09-03-43).xml       File Size: 2472      BYTES FileVersion:  N/A            MD5: [161a1a9f9b70ef8e1e6846c04a35195d]
protection-log-2015-06-18.xml            File Size: 4930      BYTES FileVersion:  N/A            MD5: [ea74c7b7e0e201bb764f558be303a6b9]

C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Quarantine

Malware Exclusions:
===================
Web Exclusions:
================
Quarantined Items:
===================
===============================================================
END OF FILE



#8 deathdoc

deathdoc
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  

Posted 18 June 2015 - 11:51 AM

09:25:00.0772 0x092c TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
09:25:01.0084 0x092c ============================================================
09:25:01.0084 0x092c Current date / time: 2015/06/18 09:25:01.0084
09:25:01.0084 0x092c SystemInfo:
09:25:01.0084 0x092c
09:25:01.0084 0x092c OS Version: 6.1.7600 ServicePack: 0.0
09:25:01.0084 0x092c Product type: Workstation
09:25:01.0084 0x092c ComputerName: THEDEATHDOCTOR
09:25:01.0084 0x092c UserName: DeathDoc
09:25:01.0084 0x092c Windows directory: C:\Windows
09:25:01.0084 0x092c System windows directory: C:\Windows
09:25:01.0084 0x092c Running under WOW64
09:25:01.0084 0x092c Processor architecture: Intel x64
09:25:01.0084 0x092c Number of processors: 2
09:25:01.0084 0x092c Page size: 0x1000
09:25:01.0084 0x092c Boot type: Normal boot
09:25:01.0084 0x092c ============================================================
09:25:01.0084 0x092c BG loaded
09:25:01.0645 0x092c System UUID: {4EE1285B-964A-43F0-D6E4-ED63FB8162A5}
09:25:03.0183 0x092c Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:25:03.0193 0x092c ============================================================
09:25:03.0193 0x092c \Device\Harddisk0\DR0:
09:25:03.0193 0x092c MBR partitions:
09:25:03.0193 0x092c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
09:25:03.0193 0x092c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x23A43800
09:25:03.0193 0x092c \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x23AA7800, BlocksNum 0x1986800
09:25:03.0193 0x092c ============================================================
09:25:03.0263 0x092c C: <-> \Device\Harddisk0\DR0\Partition2
09:25:03.0393 0x092c D: <-> \Device\Harddisk0\DR0\Partition3
09:25:03.0393 0x092c ============================================================
09:25:03.0393 0x092c Initialize success
09:25:03.0393 0x092c ============================================================
09:25:09.0437 0x0bec ============================================================
09:25:09.0437 0x0bec Scan started
09:25:09.0437 0x0bec Mode: Manual;
09:25:09.0437 0x0bec ============================================================
09:25:09.0437 0x0bec KSN ping started
09:25:12.0479 0x0bec KSN ping finished: true
09:25:18.0173 0x0bec ================ Scan system memory ========================
09:25:18.0173 0x0bec System memory - ok
09:25:18.0173 0x0bec ================ Scan services =============================
09:25:18.0516 0x0bec [ 1B00662092F9F9568B995902F0CC40D5, D345014CF146FA57B2682C189D5E7F27D4C78F321F2723D912D623E777C2BB70 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
09:25:18.0532 0x0bec 1394ohci - ok
09:25:18.0578 0x0bec [ 1CFFE9C06E66A57DAE1452E449A58240, F337852EEF9DCF33FB1B85EEF61FA8D28A780B13488B144DFAD2234FC24CB430 ] Accelerometer C:\Windows\system32\DRIVERS\Accelerometer.sys
09:25:18.0578 0x0bec Accelerometer - ok
09:25:18.0610 0x0bec [ 6F11E88748CDEFD2F76AA215F97DDFE5, BD0B3561EDCDE5EFD89372793CFD09DF879709BF469542F4A049705CBA9FD060 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
09:25:18.0610 0x0bec ACPI - ok
09:25:18.0625 0x0bec [ 63B05A0420CE4BF0E4AF6DCC7CADA254, 56BCC219D6B886FD42B7D335B4A7BBA3C9BC148220CBD99F8583FB505DAE63BF ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
09:25:18.0625 0x0bec AcpiPmi - ok
09:25:18.0656 0x0bec [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
09:25:18.0672 0x0bec adp94xx - ok
09:25:18.0688 0x0bec [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
09:25:18.0703 0x0bec adpahci - ok
09:25:18.0719 0x0bec [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
09:25:18.0734 0x0bec adpu320 - ok
09:25:18.0781 0x0bec [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
09:25:18.0781 0x0bec AeLookupSvc - ok
09:25:18.0906 0x0bec [ A6FB9DB8F1A86861D955FD6975977AE0, 788C6EE50719227D7A9B7F08C8D5E1289FCD0E8AC23A1021A5093D2E8368F696 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
09:25:18.0906 0x0bec AESTFilters - ok
09:25:18.0937 0x0bec [ B9384E03479D2506BC924C16A3DB87BC, AB5FD2BC1F005E7D664F5DE3D5CB54499024A83B716DD52C56582DB7EFB4F01B ] AFD C:\Windows\system32\drivers\afd.sys
09:25:18.0937 0x0bec AFD - ok
09:25:19.0000 0x0bec [ 98022774D9930ECBB292E70DB7601DF6, BE64A40B9BE997D73C0FC14D97E204C9D886EDA07EC4C9391A70CE477084E5F1 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
09:25:19.0031 0x0bec AgereSoftModem - ok
09:25:19.0062 0x0bec [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
09:25:19.0062 0x0bec agp440 - ok
09:25:19.0093 0x0bec [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
09:25:19.0109 0x0bec ALG - ok
09:25:19.0124 0x0bec [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
09:25:19.0124 0x0bec aliide - ok
09:25:19.0187 0x0bec [ D0D8877969011D1B0ED9C3C55A9A9108, DFF41D12EA353DFACDF5C1C227D2D44D659EB8C484829651C90F8684CE2B9E49 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
09:25:19.0187 0x0bec AMD External Events Utility - ok
09:25:19.0187 0x0bec [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\DRIVERS\amdide.sys
09:25:19.0187 0x0bec amdide - ok
09:25:19.0202 0x0bec [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
09:25:19.0202 0x0bec AmdK8 - ok
09:25:19.0218 0x0bec [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
09:25:19.0218 0x0bec AmdPPM - ok
09:25:19.0234 0x0bec [ 7A4B413614C055935567CF88A9734D38, A3BB7CDF3EE0EEF67F89263E81145E73C7142EF5F0AF265375C2ECCE74F932C4 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
09:25:19.0234 0x0bec amdsata - ok
09:25:19.0234 0x0bec [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
09:25:19.0249 0x0bec amdsbs - ok
09:25:19.0249 0x0bec [ B4AD0CACBAB298671DD6F6EF7E20679D, FB566C892D0A3DC0A523AE20F35011996958D670937DD5C1A1FCCD36AAC714D7 ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
09:25:19.0249 0x0bec amdxata - ok
09:25:19.0265 0x0bec [ 42FD751B27FA0E9C69BB39F39E409594, DE349CAA570957868CA1CB0BE0FAF551CD4D44FD53EBC4391B9C1C7B9CF295D2 ] AppID C:\Windows\system32\drivers\appid.sys
09:25:19.0265 0x0bec AppID - ok
09:25:19.0280 0x0bec [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
09:25:19.0280 0x0bec AppIDSvc - ok
09:25:19.0296 0x0bec [ D065BE66822847B7F127D1F90158376E, 20F911F390FF23C2C42361A449C4344DB59F1DC21EDD1E7EBC4E80914DEF7824 ] Appinfo C:\Windows\System32\appinfo.dll
09:25:19.0296 0x0bec Appinfo - ok
09:25:19.0312 0x0bec [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
09:25:19.0312 0x0bec arc - ok
09:25:19.0312 0x0bec [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
09:25:19.0327 0x0bec arcsas - ok
09:25:19.0327 0x0bec [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
09:25:19.0327 0x0bec AsyncMac - ok
09:25:19.0327 0x0bec [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\DRIVERS\atapi.sys
09:25:19.0343 0x0bec atapi - ok
09:25:19.0374 0x0bec [ 04A5815DF7E8B037DF674D3CCACC0C31, BC49D6C135C50254BF952B790046BE364DFDDA786F1EACEE4CC8880B764B7A92 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
09:25:19.0374 0x0bec AtiHdmiService - ok
09:25:19.0592 0x0bec [ C5758BF1DFD762A5B17041FF061B7750, BA732E670536C73523DA0880485E5028C682FBEAF048F564EB626DA61364CAAD ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
09:25:19.0717 0x0bec atikmdag - ok
09:25:19.0780 0x0bec [ 07721A77180EDD4D39CCB865BF63C7FD, 9E8117E747C86154F98F2686D805A981029CC5D11AFB115A529429C9A4579BE5 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
09:25:19.0795 0x0bec AudioEndpointBuilder - ok
09:25:19.0811 0x0bec [ 07721A77180EDD4D39CCB865BF63C7FD, 9E8117E747C86154F98F2686D805A981029CC5D11AFB115A529429C9A4579BE5 ] AudioSrv C:\Windows\System32\Audiosrv.dll
09:25:19.0826 0x0bec AudioSrv - ok
09:25:19.0858 0x0bec [ B20B5FA5CA050E9926E4D1DB81501B32, 91B9038349BA07E32DE809E6798167EE44087809EB1174B84EC16580040F1BE0 ] AxInstSV C:\Windows\System32\AxInstSV.dll
09:25:19.0858 0x0bec AxInstSV - ok
09:25:19.0904 0x0bec [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
09:25:19.0920 0x0bec b06bdrv - ok
09:25:19.0967 0x0bec [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
09:25:19.0967 0x0bec b57nd60a - ok
09:25:20.0092 0x0bec [ F99C7AE4BB91BD1506B3572F944307BB, 66513B353D44F5F057BFF6E5DA0607F0DBF702783A2EAE95E8CE69946E78B8D7 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
09:25:20.0154 0x0bec BCM43XX - ok
09:25:20.0185 0x0bec [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
09:25:20.0201 0x0bec BDESVC - ok
09:25:20.0201 0x0bec [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
09:25:20.0201 0x0bec Beep - ok
09:25:20.0248 0x0bec [ 4992C609A6315671463E30F6512BC022, 3020034556EAC25CD90F41D3BFFDD0BB2C3D1C5BAC4359F4B71B84A9FC404495 ] BFE C:\Windows\System32\bfe.dll
09:25:20.0263 0x0bec BFE - ok
09:25:20.0326 0x0bec [ 7F0C323FE3DA28AA4AA1BDA3F575707F, 7FF09CBC16A9E5F357A76FF79A3F0DD047957D474031F51A6BB4916C7911F005 ] BITS C:\Windows\System32\qmgr.dll
09:25:20.0341 0x0bec BITS - ok
09:25:20.0357 0x0bec [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
09:25:20.0357 0x0bec blbdrive - ok
09:25:20.0372 0x0bec [ 91CE0D3DC57DD377E690A2D324022B08, 61874463956C0BCA5139522F34E974E5F638A092E0FD5C59DD30DE61D9AB8B0E ] bowser C:\Windows\system32\DRIVERS\bowser.sys
09:25:20.0372 0x0bec bowser - ok
09:25:20.0388 0x0bec [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
09:25:20.0388 0x0bec BrFiltLo - ok
09:25:20.0388 0x0bec [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
09:25:20.0388 0x0bec BrFiltUp - ok
09:25:20.0419 0x0bec [ 94FBC06F294D58D02361918418F996E3, 62C7CC2AF8F5A0BB0C262DACDE3F72C6AC318C3840CE60E46EE2064B32BDA5EF ] Browser C:\Windows\System32\browser.dll
09:25:20.0419 0x0bec Browser - ok
09:25:20.0435 0x0bec [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
09:25:20.0435 0x0bec Brserid - ok
09:25:20.0450 0x0bec [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
09:25:20.0450 0x0bec BrSerWdm - ok
09:25:20.0450 0x0bec [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
09:25:20.0450 0x0bec BrUsbMdm - ok
09:25:20.0466 0x0bec [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
09:25:20.0466 0x0bec BrUsbSer - ok
09:25:20.0466 0x0bec [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
09:25:20.0466 0x0bec BTHMODEM - ok
09:25:20.0497 0x0bec [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
09:25:20.0497 0x0bec bthserv - ok
09:25:20.0513 0x0bec [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
09:25:20.0513 0x0bec cdfs - ok
09:25:20.0528 0x0bec [ 83D2D75E1EFB81B3450C18131443F7DB, F2C686C980D818E797818E75B808E1E0B51B2045840A4BFC32D860B7DB4DFA22 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
09:25:20.0528 0x0bec cdrom - ok
09:25:20.0560 0x0bec [ 312E2F82AF11E79906898AC3E3D58A1F, F6CB7D8B204B94F749D5DBEFD552150AAB16A34D629F87F73823A7504465F106 ] CertPropSvc C:\Windows\System32\certprop.dll
09:25:20.0560 0x0bec CertPropSvc - ok
09:25:20.0575 0x0bec [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
09:25:20.0575 0x0bec circlass - ok
09:25:20.0591 0x0bec [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
09:25:20.0606 0x0bec CLFS - ok
09:25:20.0731 0x0bec [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:25:20.0747 0x0bec clr_optimization_v2.0.50727_32 - ok
09:25:20.0809 0x0bec [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
09:25:20.0809 0x0bec clr_optimization_v2.0.50727_64 - ok
09:25:20.0840 0x0bec [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
09:25:20.0840 0x0bec CmBatt - ok
09:25:20.0856 0x0bec [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
09:25:20.0856 0x0bec cmdide - ok
09:25:20.0887 0x0bec [ F95FD4CB7DA00BA2A63CE9F6B5C053E1, D1FBCA0416D38B9CA510FB01CF251E60B244D38080E6668948ED927D2350ED49 ] CNG C:\Windows\system32\Drivers\cng.sys
09:25:20.0887 0x0bec CNG - ok
09:25:20.0950 0x0bec Com4QLBEx - ok
09:25:20.0950 0x0bec [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
09:25:20.0950 0x0bec Compbatt - ok
09:25:20.0965 0x0bec [ F26B3A86F6FA87CA360B879581AB4123, 723904362614FE47F6CC0EA0656BA1B47EA32D73BAFB61688A5E5CAE4340B1BF ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
09:25:20.0965 0x0bec CompositeBus - ok
09:25:20.0965 0x0bec COMSysApp - ok
09:25:20.0981 0x0bec [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
09:25:20.0981 0x0bec crcdisk - ok
09:25:21.0012 0x0bec [ 8C57411B66282C01533CB776F98AD384, 65BCF1B0BA521CBE39E974C7ACAEA9C9E3F89D86754275C6B2616E7691876AEE ] CryptSvc C:\Windows\system32\cryptsvc.dll
09:25:21.0028 0x0bec CryptSvc - ok
09:25:21.0059 0x0bec [ 7266972E86890E2B30C0C322E906B027, BFA30E85F5BD3AA933913BD7C6D2B5993DB7AFB0C98349B61A6BEF0BDC8A3680 ] DcomLaunch C:\Windows\system32\rpcss.dll
09:25:21.0074 0x0bec DcomLaunch - ok
09:25:21.0121 0x0bec [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
09:25:21.0121 0x0bec defragsvc - ok
09:25:21.0137 0x0bec [ 3F1DC527070ACB87E40AFE46EF6DA749, 5CB9CB94854AF06BEA02AF3E0562B8ECF72B2B23ED657A3F5E17CD3552F3EF84 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
09:25:21.0137 0x0bec DfsC - ok
09:25:21.0168 0x0bec [ CE3B9562D997F69B330D181A8875960F, 6FEE6622859198C5C13545867EF7CFE8EDC991360E976F792313DAA9C82CC5C8 ] Dhcp C:\Windows\system32\dhcpcore.dll
09:25:21.0184 0x0bec Dhcp - ok
09:25:21.0199 0x0bec [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
09:25:21.0199 0x0bec discache - ok
09:25:21.0199 0x0bec [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
09:25:21.0215 0x0bec Disk - ok
09:25:21.0230 0x0bec [ 676108C4E3AA6F6B34633748BD0BEBD9, 953286126E482EF3A9A1833680EFF86D657BD6C5411B9AEC2D7828ADE63D25AD ] Dnscache C:\Windows\System32\dnsrslvr.dll
09:25:21.0246 0x0bec Dnscache - ok
09:25:21.0262 0x0bec [ 14452ACDB09B70964C8C21BF80A13ACB, DA0AAAC04626EFF4256D7095FF1DDA1F1B17676E26990C418BDF5090476F2AB4 ] dot3svc C:\Windows\System32\dot3svc.dll
09:25:21.0277 0x0bec dot3svc - ok
09:25:21.0293 0x0bec [ 8C2BA6BEA949EE6E68385F5692BAFB94, 1047F473DCE0FB56BEA5C1B7929752C1FBAB5983C8202ABB4EEA48FCD60A353A ] DPS C:\Windows\system32\dps.dll
09:25:21.0293 0x0bec DPS - ok
09:25:21.0308 0x0bec [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
09:25:21.0308 0x0bec drmkaud - ok
09:25:21.0355 0x0bec [ 7CB7D2B73813CE05C7BC0F5F95D27CEC, F80AD7E946B8C8C27A0EB8A99B3A61C3F09E5442372D64EB4886D86B8D0AFCFD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
09:25:21.0386 0x0bec DXGKrnl - ok
09:25:21.0418 0x0bec [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
09:25:21.0418 0x0bec EapHost - ok
09:25:21.0542 0x0bec [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
09:25:21.0636 0x0bec ebdrv - ok
09:25:21.0667 0x0bec [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] EFS C:\Windows\System32\lsass.exe
09:25:21.0667 0x0bec EFS - ok
09:25:21.0745 0x0bec [ B91D81B3B54A54CCAFC03733DBC2E29E, B08CFD3136F678CF902722B32CA55C4983EEE5AEBDCEE036BEB746914742141C ] ehRecvr C:\Windows\ehome\ehRecvr.exe
09:25:21.0761 0x0bec ehRecvr - ok
09:25:21.0776 0x0bec [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
09:25:21.0776 0x0bec ehSched - ok
09:25:21.0808 0x0bec [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
09:25:21.0823 0x0bec elxstor - ok
09:25:21.0854 0x0bec [ 524C79054636D2E5751169005006460B, 1EBA5972E13C5BB07BBD94D6647B86469B4910F60A3C8BDDC6BB5736EF99C9C3 ] enecir C:\Windows\system32\DRIVERS\enecir.sys
09:25:21.0870 0x0bec enecir - ok
09:25:21.0870 0x0bec [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
09:25:21.0870 0x0bec ErrDev - ok
09:25:21.0917 0x0bec [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
09:25:21.0932 0x0bec EventSystem - ok
09:25:21.0964 0x0bec [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
09:25:21.0964 0x0bec exfat - ok
09:25:21.0979 0x0bec [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
09:25:21.0979 0x0bec fastfat - ok
09:25:22.0042 0x0bec [ D607B2F1BEE3992AA6C2C92C0A2F0855, E22301C8F01DBF0A38A85165959BB070647C996CB1BCD50FDFE3DDDCA427DF2A ] Fax C:\Windows\system32\fxssvc.exe
09:25:22.0042 0x0bec Fax - ok
09:25:22.0057 0x0bec [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
09:25:22.0057 0x0bec fdc - ok
09:25:22.0073 0x0bec [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
09:25:22.0073 0x0bec fdPHost - ok
09:25:22.0088 0x0bec [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
09:25:22.0088 0x0bec FDResPub - ok
09:25:22.0088 0x0bec [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
09:25:22.0104 0x0bec FileInfo - ok
09:25:22.0104 0x0bec [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
09:25:22.0104 0x0bec Filetrace - ok
09:25:22.0120 0x0bec [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
09:25:22.0120 0x0bec flpydisk - ok
09:25:22.0135 0x0bec [ F7866AF72ABBAF84B1FA5AA195378C59, 9D522044FE9C18FB3EC327E675737C01F2A8231DDE900421D3A431596946A7F8 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
09:25:22.0135 0x0bec FltMgr - ok
09:25:22.0198 0x0bec [ 8AC4CB4EA61E41009FAE9AE7B2B5DA3A, 6587B22ED91F98D3E3614967F62D7A58F42C12F45F8E1D47835D195CD350BC54 ] FontCache C:\Windows\system32\FntCache.dll
09:25:22.0229 0x0bec FontCache - ok
09:25:22.0276 0x0bec [ 8D89E3131C27FDD6932189CB785E1B7A, AC7DA4C5E6D2E41D1A1DE146E46F034FAF0FB11AD801F070F2D5CD08166E9EB7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:25:22.0276 0x0bec FontCache3.0.0.0 - ok
09:25:22.0307 0x0bec [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
09:25:22.0307 0x0bec FsDepends - ok
09:25:22.0322 0x0bec [ E95EF8547DE20CF0603557C0CF7A9462, 55540B06B7B380CA2DA6EEE2D76C6CD6131ADB02B2D0B172A36536863A0C57B6 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
09:25:22.0322 0x0bec Fs_Rec - ok
09:25:22.0354 0x0bec [ B8B2A6E1558F8F5DE5CE431C5B2C7B09, 24A9F04A0622681A4E4B6BCC47C45016787C6036EAD828920812D9FAD49A71E3 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
09:25:22.0369 0x0bec fvevol - ok
09:25:22.0385 0x0bec [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
09:25:22.0385 0x0bec gagp30kx - ok
09:25:22.0447 0x0bec [ FE5AB4525BC2EC68B9119A6E5D40128B, 088DE37982CEE78A0C1181389A3BFF1E352DF504074B3E8F3EA244DB271BF216 ] gpsvc C:\Windows\System32\gpsvc.dll
09:25:22.0463 0x0bec gpsvc - ok
09:25:22.0494 0x0bec [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
09:25:22.0510 0x0bec hcw85cir - ok
09:25:22.0541 0x0bec [ 6410F6F415B2A5A9037224C41DA8BF12, 5B8452BC49FDA2215281D27B22FA9BE46B0460F51C4DC70E58B687CFB541F3A5 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
09:25:22.0556 0x0bec HdAudAddService - ok
09:25:22.0572 0x0bec [ 0A49913402747A0B67DE940FB42CBDBB, 61A45DBDCEB4A2D5C3C28F6BC8C5ADC51D0240A7553DF44BCC4355FC06F72B83 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
09:25:22.0572 0x0bec HDAudBus - ok
09:25:22.0588 0x0bec [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
09:25:22.0588 0x0bec HidBatt - ok
09:25:22.0588 0x0bec [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
09:25:22.0588 0x0bec HidBth - ok
09:25:22.0619 0x0bec [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
09:25:22.0619 0x0bec HidIr - ok
09:25:22.0634 0x0bec [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
09:25:22.0634 0x0bec hidserv - ok
09:25:22.0650 0x0bec [ B3BF6B5B50006DEF50B66306D99FCF6F, D39A1DEBE7C464922919826D15199ED25E263BF58633593DD412D78F98921417 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
09:25:22.0650 0x0bec HidUsb - ok
09:25:22.0666 0x0bec [ EFA58EDE58DD74388FFD04CB32681518, 76D81F9BC1A4D85A779B79DEC23B79F1568AA236CD49247414093CDC1FCC150F ] hkmsvc C:\Windows\system32\kmsvc.dll
09:25:22.0681 0x0bec hkmsvc - ok
09:25:22.0697 0x0bec [ 046B2673767CA626E2CFB7FDF735E9E8, 9C932DCC5DE9B1919AB38C01D76AD7BBAF491DE6D158662407974748BC0B4C6C ] HomeGroupListener C:\Windows\system32\ListSvc.dll
09:25:22.0712 0x0bec HomeGroupListener - ok
09:25:22.0744 0x0bec [ 06A7422224D9865A5613710A089987DF, EF604B4B6918D3FDC8E90ED9004E6E7340E0F399C214C65CCE3A7C8C576FA1C0 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
09:25:22.0744 0x0bec HomeGroupProvider - ok
09:25:22.0759 0x0bec HP Health Check Service - ok
09:25:22.0775 0x0bec [ 05712FDDBD45A5864EB326FAABC6A4E3, 8BACA990971A331E6EC7F896EF2404F09E381DAA3519FC6E3027C0DBD991BA7F ] hpdskflt C:\Windows\system32\DRIVERS\hpdskflt.sys
09:25:22.0775 0x0bec hpdskflt - ok
09:25:22.0806 0x0bec [ 9AF482D058BE59CC28BCE52E7C4B747C, 2D150CD0C82B575CDE2E1B3941FD72EFCB254850D6FF1D7C40D3B29643018EFF ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
09:25:22.0806 0x0bec HpqKbFiltr - ok
09:25:22.0822 0x0bec hpqwmiex - ok
09:25:22.0853 0x0bec [ 0886D440058F203EBA0E1825E4355914, BC49C4CEFE324A08C864A4BF4FEA9A70151FAB7CC30BDC28344F3FFD2F500070 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
09:25:22.0853 0x0bec HpSAMD - ok
09:25:22.0868 0x0bec hpsrv - ok
09:25:22.0900 0x0bec [ CEE049CAC4EFA7F4E1E4AD014414A5D4, 433AE2D845850F1D7A48275BBD87B3F0E7DD48F2282C727C4B777ECD92CC331D ] HTTP C:\Windows\system32\drivers\HTTP.sys
09:25:22.0915 0x0bec HTTP - ok
09:25:22.0931 0x0bec [ F17766A19145F111856378DF337A5D79, FC1633FB865A5324EBCBE5F97D297B899FABBDD965D862C2EFC743CD36F47E62 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
09:25:22.0931 0x0bec hwpolicy - ok
09:25:22.0946 0x0bec [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
09:25:22.0946 0x0bec i8042prt - ok
09:25:22.0962 0x0bec [ D83EFB6FD45DF9D55E9A1AFC63640D50, 0494F8F7CB3ED11FD8D0B838CB71271AF7A3CBFCB7F2CB043A9392B5106A3C7B ] iaStorV C:\Windows\system32\DRIVERS\iaStorV.sys
09:25:22.0978 0x0bec iaStorV - ok
09:25:23.0040 0x0bec [ 2F2BE70D3E02B6FA877921AB9516D43C, E04255EE4BD95FC1539EB1EB9F702B039F65993D31A4531DA487274543EF5226 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
09:25:23.0087 0x0bec idsvc - ok
09:25:23.0430 0x0bec [ A87261EF1546325B559374F5689CF5BC, 8DE48A8A13A32AAAC54CDDF58F3F61BE3E2802C1D9CA1CA98E57EB0D65FB6002 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
09:25:23.0648 0x0bec igfx - ok
09:25:23.0680 0x0bec [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
09:25:23.0680 0x0bec iirsp - ok
09:25:23.0742 0x0bec [ C5B4683680DF085B57BC53E5EF34861F, 9C06517DFCB3ED7BB1166F7EB6CCC8713E6B68283C75420C0EDC182094AA1B8F ] IKEEXT C:\Windows\System32\ikeext.dll
09:25:23.0773 0x0bec IKEEXT - ok
09:25:23.0789 0x0bec [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\DRIVERS\intelide.sys
09:25:23.0789 0x0bec intelide - ok
09:25:23.0804 0x0bec [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
09:25:23.0804 0x0bec intelppm - ok
09:25:23.0820 0x0bec [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
09:25:23.0820 0x0bec IPBusEnum - ok
09:25:23.0836 0x0bec [ 722DD294DF62483CECAAE6E094B4D695, 41ABB42EF969EA8A84B546908EBBDC2411D964DE101CE6DD3D7ECF109085E0C0 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:25:23.0836 0x0bec IpFilterDriver - ok
09:25:23.0867 0x0bec [ F8E058D17363EC580E4B7232778B6CB5, 02352919F349C57930A0B032FBDC45327FB473D310DE7AC721F4694FDE7D21FB ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
09:25:23.0882 0x0bec iphlpsvc - ok
09:25:23.0898 0x0bec [ E2B4A4494DB7CB9B89B55CA268C337C5, C59BC4AA03D10647641EC7533F78BC7E2EA6FC48B8B2CF1A49B5148EF40A90FB ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
09:25:23.0898 0x0bec IPMIDRV - ok
09:25:23.0898 0x0bec [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
09:25:23.0914 0x0bec IPNAT - ok
09:25:23.0929 0x0bec [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
09:25:23.0929 0x0bec IRENUM - ok
09:25:23.0929 0x0bec [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
09:25:23.0929 0x0bec isapnp - ok
09:25:23.0945 0x0bec [ FA4D2557DE56D45B0A346F93564BE6E1, 2827EC3582FF59FFD55BBD4A4F0DDFFEAD4F2537FA043B3A69904FE920B1619C ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
09:25:23.0960 0x0bec iScsiPrt - ok
09:25:24.0023 0x0bec [ F8844B00C10E386C704C610E95A9847D, 3E3CFDDD0DD9E98542BAE07ED9CF922D98370C94BE364BA84F677EAA01ED775A ] JMCR C:\Windows\system32\DRIVERS\jmcr.sys
09:25:24.0023 0x0bec JMCR - ok
09:25:24.0023 0x0bec [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
09:25:24.0023 0x0bec kbdclass - ok
09:25:24.0038 0x0bec [ 6DEF98F8541E1B5DCEB2C822A11F7323, F6EE4A7A6A7A1F243D32CA9241CA4816C92EB7BF2AADDD09234968C2CAAE6C0D ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
09:25:24.0038 0x0bec kbdhid - ok
09:25:24.0054 0x0bec [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] KeyIso C:\Windows\system32\lsass.exe
09:25:24.0054 0x0bec KeyIso - ok
09:25:24.0070 0x0bec [ E8B6FCC9C83535C67F835D407620BD27, 74B63F3BFB756FF0B0AD6A6C1535C0A1A0630295ECCBC078B00F2449718B0870 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
09:25:24.0085 0x0bec KSecDD - ok
09:25:24.0101 0x0bec [ BBE1BF6D9B661C354D4857D5FADB943B, D2F6E52CCD0DF07B3D92669B941CEB9A59E16D3518226F11028A70DBDEFABBCF ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
09:25:24.0116 0x0bec KSecPkg - ok
09:25:24.0116 0x0bec [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
09:25:24.0116 0x0bec ksthunk - ok
09:25:24.0148 0x0bec [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
09:25:24.0163 0x0bec KtmRm - ok
09:25:24.0210 0x0bec [ C926920B8978DE6ACFE9E15C709E9B57, 33B8002ABC30372B1CA8B6EC046757794CD7C9DA3CA4715B515B6894DC7E45CA ] LanmanServer C:\Windows\system32\srvsvc.dll
09:25:24.0210 0x0bec LanmanServer - ok
09:25:24.0241 0x0bec [ 27026EAC8818E8A6C00A1CAD2F11D29A, A12858CCB3B2419D66C667A46B106DA7A7BA97FFFA9634BFAE95DDF193C430D5 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
09:25:24.0241 0x0bec LanmanWorkstation - ok
09:25:24.0272 0x0bec [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
09:25:24.0272 0x0bec lltdio - ok
09:25:24.0319 0x0bec [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
09:25:24.0319 0x0bec lltdsvc - ok
09:25:24.0319 0x0bec [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
09:25:24.0335 0x0bec lmhosts - ok
09:25:24.0350 0x0bec [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
09:25:24.0350 0x0bec LSI_FC - ok
09:25:24.0366 0x0bec [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
09:25:24.0366 0x0bec LSI_SAS - ok
09:25:24.0382 0x0bec [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
09:25:24.0382 0x0bec LSI_SAS2 - ok
09:25:24.0397 0x0bec [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
09:25:24.0397 0x0bec LSI_SCSI - ok
09:25:24.0413 0x0bec [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
09:25:24.0413 0x0bec luafv - ok
09:25:24.0444 0x0bec [ 6A990AC8404F18F34016328843513AFC, 5B63CCF831B9806ED7ED509BAAF2EBFB7D261587FCC19749C3360CE5CE620910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
09:25:24.0444 0x0bec MBAMProtector - ok
09:25:24.0553 0x0bec [ A71B4CF0D3F763208EC0DE01290245D8, 7F9357DB9481366429689BA2103323E0F2D6DFD1BD437031BE09EC921497F4B7 ] MBAMScheduler C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
09:25:24.0600 0x0bec MBAMScheduler - ok
09:25:24.0662 0x0bec [ EB043B24D856465A2A21A59E53EEA9CD, B510E32A115444ECC6113BC3B4FFF1A262745C2319E56536B04B59E60951A3A5 ] MBAMService C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
09:25:24.0678 0x0bec MBAMService - ok
09:25:24.0709 0x0bec [ E9CD058C79EA15B4AA93E259FA713B07, 2B09F65188D8782F9C797545F2F791EC7EAB85D8914B2C0B30BD869C412E3980 ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys
09:25:24.0709 0x0bec MBAMSwissArmy - ok
09:25:24.0725 0x0bec [ 705140252F25C647FCDA87078700E0A3, 61C029674B61AF03705A036B3D2B26FDE1CD61552AE6CDB9B5A2480EEE93B014 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
09:25:24.0740 0x0bec MBAMWebAccessControl - ok
09:25:24.0787 0x0bec [ F84C8F1000BC11E3B7B23CBD3BAFF111, BB4C4FFE3F6C9E5C16C06F6F666F177B94E1CF878397BCC0BDAF6EB3341AAED8 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
09:25:24.0803 0x0bec Mcx2Svc - ok
09:25:24.0818 0x0bec [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
09:25:24.0818 0x0bec megasas - ok
09:25:24.0850 0x0bec [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
09:25:24.0850 0x0bec MegaSR - ok
09:25:24.0881 0x0bec [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
09:25:24.0881 0x0bec MMCSS - ok
09:25:24.0881 0x0bec [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
09:25:24.0896 0x0bec Modem - ok
09:25:24.0896 0x0bec [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
09:25:24.0896 0x0bec monitor - ok
09:25:24.0912 0x0bec [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
09:25:24.0912 0x0bec mouclass - ok
09:25:24.0928 0x0bec [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
09:25:24.0928 0x0bec mouhid - ok
09:25:24.0943 0x0bec [ 791AF66C4D0E7C90A3646066386FB571, BF67643099494AEADDDC85E4D97AFF1017806A1DF554F9BE6C864FFECC9EAF42 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
09:25:24.0943 0x0bec mountmgr - ok
09:25:24.0959 0x0bec [ 609D1D87649ECC19796F4D76D4C15CEA, 5369F4C83FBAE9C4CFB9ACD36F07479E3F3FD784D79B82AE8D95B818B9F9CE00 ] mpio C:\Windows\system32\DRIVERS\mpio.sys
09:25:24.0959 0x0bec mpio - ok
09:25:24.0974 0x0bec [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
09:25:24.0974 0x0bec mpsdrv - ok
09:25:25.0021 0x0bec [ AECAB449567D1846DAD63ECE49E893E3, 7A67A16A3E04574B7CAD097632ABA9B361BBEFDD6B36B7B8E3A1996EC529C2DC ] MpsSvc C:\Windows\system32\mpssvc.dll
09:25:25.0037 0x0bec MpsSvc - ok
09:25:25.0037 0x0bec [ 30524261BB51D96D6FCBAC20C810183C, 19598A9CD0EAAE4ACBF1069E721AB2853452F33FCFB3B5113F023A88A90BF42D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
09:25:25.0052 0x0bec MRxDAV - ok
09:25:25.0068 0x0bec [ CFDCD8CA87C2A657DEBC150AC35B5E08, 8870DCC8CF4E452E25BFE38113ADBDBC4014036B25E567FC262178DAA808049A ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
09:25:25.0068 0x0bec mrxsmb - ok
09:25:25.0084 0x0bec [ 1BEE517B220B7F024F411AEC1571DD5A, 6DC7638D056DFDE36803BCD691BF73A4AAFD59DE63C0ACD7EA860997FFA3C6E7 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:25:25.0084 0x0bec mrxsmb10 - ok
09:25:25.0099 0x0bec [ 6B2D5FEF385828B6E485C1C90AFB8195, A960CC0351F200FA56FAC0534C0F9D7F79AAC9CF18A4390CDCA7EA4EE22ED6B6 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:25:25.0099 0x0bec mrxsmb20 - ok
09:25:25.0115 0x0bec [ 5C37497276E3B3A5488B23A326A754B7, 9982FCDAFB963868EB93A4DEF811A3167488EB5246BAC3F4AE960506FDF63967 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
09:25:25.0115 0x0bec msahci - ok
09:25:25.0115 0x0bec [ 8D27B597229AED79430FB9DB3BCBFBD0, 3D58E08B47E8AE419D405BF263929DFA6F2F5F0C2D79FD8D6F2CED6452F6F248 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
09:25:25.0130 0x0bec msdsm - ok
09:25:25.0146 0x0bec [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
09:25:25.0146 0x0bec MSDTC - ok
09:25:25.0162 0x0bec [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
09:25:25.0162 0x0bec Msfs - ok
09:25:25.0177 0x0bec [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
09:25:25.0177 0x0bec mshidkmdf - ok
09:25:25.0193 0x0bec [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
09:25:25.0193 0x0bec msisadrv - ok
09:25:25.0224 0x0bec [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
09:25:25.0224 0x0bec MSiSCSI - ok
09:25:25.0224 0x0bec msiserver - ok
09:25:25.0255 0x0bec [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
09:25:25.0255 0x0bec MSKSSRV - ok
09:25:25.0255 0x0bec [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
09:25:25.0255 0x0bec MSPCLOCK - ok
09:25:25.0255 0x0bec [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
09:25:25.0255 0x0bec MSPQM - ok
09:25:25.0286 0x0bec [ 89CB141AA8616D8C6A4610FA26C60964, 76E72F6A0348EDC58A8E6F88C7F024B8B077670400BD5A833811DAFCF9F517CC ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
09:25:25.0302 0x0bec MsRPC - ok
09:25:25.0302 0x0bec [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
09:25:25.0302 0x0bec mssmbios - ok
09:25:25.0318 0x0bec [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
09:25:25.0318 0x0bec MSTEE - ok
09:25:25.0318 0x0bec [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
09:25:25.0318 0x0bec MTConfig - ok
09:25:25.0333 0x0bec [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
09:25:25.0333 0x0bec Mup - ok
09:25:25.0364 0x0bec [ 4987E079A4530FA737A128BE54B63B12, 27E51CC7D4D90DC4397575491DE7EFE15808709F097E2828E46AA73C771A47A4 ] napagent C:\Windows\system32\qagentRT.dll
09:25:25.0396 0x0bec napagent - ok
09:25:25.0427 0x0bec [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
09:25:25.0427 0x0bec NativeWifiP - ok
09:25:25.0474 0x0bec [ CAD515DBD07D082BB317D9928CE8962C, 7AFA6D6154AC68F9FCC37B7B3324F7A170AE91035805026445F24F6EB4FB7F2E ] NDIS C:\Windows\system32\drivers\ndis.sys
09:25:25.0505 0x0bec NDIS - ok
09:25:25.0505 0x0bec [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
09:25:25.0520 0x0bec NdisCap - ok
09:25:25.0520 0x0bec [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
09:25:25.0520 0x0bec NdisTapi - ok
09:25:25.0536 0x0bec [ F105BA1E22BF1F2EE8F005D4305E4BEC, 723DA09E13D0F50634D9F114590B837D16F7B36AA0DA2AB8F8C2D9991624EA8F ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
09:25:25.0536 0x0bec Ndisuio - ok
09:25:25.0552 0x0bec [ 557DFAB9CA1FCB036AC77564C010DAD3, 8A21B342AFE5B498FB62EDDC81A3ADA9570677B7A382666090E0ABB1F85FEF29 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
09:25:25.0552 0x0bec NdisWan - ok
09:25:25.0552 0x0bec [ 659B74FB74B86228D6338D643CD3E3CF, 83D741B7A2A204A661A80C226212749F514800060D05E217FA6DC14D62F38F80 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
09:25:25.0552 0x0bec NDProxy - ok
09:25:25.0567 0x0bec [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
09:25:25.0567 0x0bec NetBIOS - ok
09:25:25.0583 0x0bec [ 9162B273A44AB9DCE5B44362731D062A, 5A1BA6DBFEBB2618DC9D4CC55FA071C170A5D22FFB24CE62DD5B3210D8B45F39 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
09:25:25.0583 0x0bec NetBT - ok
09:25:25.0598 0x0bec [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] Netlogon C:\Windows\system32\lsass.exe
09:25:25.0598 0x0bec Netlogon - ok
09:25:25.0645 0x0bec [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
09:25:25.0661 0x0bec Netman - ok
09:25:25.0723 0x0bec [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
09:25:25.0739 0x0bec netprofm - ok
09:25:25.0786 0x0bec [ 3E5A36127E201DDF663176B66828FAFE, 5A08BA9EFB1A72DF1DD839BA5FA2B8994012BA62A515588FF62333B33B60045B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
09:25:25.0786 0x0bec NetTcpPortSharing - ok
09:25:26.0004 0x0bec [ 64428DFDAF6E88366CB51F45A79C5F69, 31187D38C1AB52120A3CB7AC3CE47ED9682AC37B0F06B9A9610C0065DD4E7B13 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
09:25:26.0144 0x0bec netw5v64 - ok
09:25:26.0160 0x0bec [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
09:25:26.0176 0x0bec nfrd960 - ok
09:25:26.0207 0x0bec [ D9A0CE66046D6EFA0C61BAA885CBA0A8, 06C3331C7F3EE0E0B95E8302CB80315E965587C4D6231785B8ACF3FAE4731FAF ] NlaSvc C:\Windows\System32\nlasvc.dll
09:25:26.0207 0x0bec NlaSvc - ok
09:25:26.0238 0x0bec [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
09:25:26.0238 0x0bec Npfs - ok
09:25:26.0300 0x0bec [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
09:25:26.0300 0x0bec nsi - ok
09:25:26.0300 0x0bec [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
09:25:26.0300 0x0bec nsiproxy - ok
09:25:26.0378 0x0bec [ 356698A13C4630D5B31C37378D469196, BF5704AADE5C3DA370501747F12ED6E9C3349E342CCF89005AAE132B570BB42B ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
09:25:26.0425 0x0bec Ntfs - ok
09:25:26.0441 0x0bec [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
09:25:26.0441 0x0bec Null - ok
09:25:26.0456 0x0bec [ 3E38712941E9BB4DDBEE00AFFE3FED3D, 03F27CC0EF0A86D0B2DAAB6F72838CB2AB57FE5D40074828D5B7F118CD5CBEE7 ] nvraid C:\Windows\system32\DRIVERS\nvraid.sys
09:25:26.0456 0x0bec nvraid - ok
09:25:26.0472 0x0bec [ 477DC4D6DEB99BE37084C9AC6D013DA1, E58C4D621CAAB1C68FB4A056576F48BC87913A5EBF0B511EFFB8F38C7D3E516E ] nvstor C:\Windows\system32\DRIVERS\nvstor.sys
09:25:26.0472 0x0bec nvstor - ok
09:25:26.0488 0x0bec [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
09:25:26.0488 0x0bec nv_agp - ok
09:25:26.0503 0x0bec [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
09:25:26.0503 0x0bec ohci1394 - ok
09:25:26.0519 0x0bec [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
09:25:26.0534 0x0bec p2pimsvc - ok
09:25:26.0566 0x0bec [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
09:25:26.0581 0x0bec p2psvc - ok
09:25:26.0581 0x0bec [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
09:25:26.0597 0x0bec Parport - ok
09:25:26.0597 0x0bec [ 7DAA117143316C4A1537E074A5A9EAF0, D4F31F67BE09B6904C1B9702DC042BC0DAB628055B956C79FF760A9027679E6B ] partmgr C:\Windows\system32\drivers\partmgr.sys
09:25:26.0597 0x0bec partmgr - ok
09:25:26.0612 0x0bec [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll
09:25:26.0612 0x0bec PcaSvc - ok
09:25:26.0628 0x0bec [ F36F6504009F2FB0DFD1B17A116AD74B, 33A4C217F7DC5E5B7E1B6CF335327C8FE6CC5D6D048D420252965574CAD83918 ] pci C:\Windows\system32\DRIVERS\pci.sys
09:25:26.0628 0x0bec pci - ok
09:25:26.0628 0x0bec [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\DRIVERS\pciide.sys
09:25:26.0644 0x0bec pciide - ok
09:25:26.0659 0x0bec [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
09:25:26.0675 0x0bec pcmcia - ok
09:25:26.0690 0x0bec [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
09:25:26.0690 0x0bec pcw - ok
09:25:26.0722 0x0bec [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
09:25:26.0737 0x0bec PEAUTH - ok
09:25:27.0002 0x0bec [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
09:25:27.0002 0x0bec PerfHost - ok
09:25:27.0080 0x0bec [ 557E9A86F65F0DE18C9B6751DFE9D3F1, 630EE5A80335929517A22D130C75CBCE882B92978372A6F36C30B9D353C7BB07 ] pla C:\Windows\system32\pla.dll
09:25:27.0127 0x0bec pla - ok
09:25:27.0158 0x0bec [ 23157D583244400E1D7FBAEE2E4B31B7, 4E8D93F746C727CE1A89B53FEFFCFB080AC3CC8F3CF2F8613E692E989794C52F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
09:25:27.0174 0x0bec PlugPlay - ok
09:25:27.0190 0x0bec [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
09:25:27.0190 0x0bec PNRPAutoReg - ok
09:25:27.0205 0x0bec [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
09:25:27.0205 0x0bec PNRPsvc - ok
09:25:27.0268 0x0bec [ 166EB40D1F5B47E615DE3D0FFFE5F243, E32BCCA0D25CD631C221986EBE9F6C54BF2F12DE1672D69CCC4E22AD07D0525A ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
09:25:27.0283 0x0bec PolicyAgent - ok
09:25:27.0283 0x0bec [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
09:25:27.0299 0x0bec Power - ok
09:25:27.0330 0x0bec [ 27CC19E81BA5E3403C48302127BDA717, C580FC552DDF9C163FC325B38B05C06FFD696495E4C01514BCD6346CFE4F0B40 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
09:25:27.0330 0x0bec PptpMiniport - ok
09:25:27.0346 0x0bec [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
09:25:27.0346 0x0bec Processor - ok
09:25:27.0377 0x0bec [ F381975E1F4346DE875CB07339CE8D3A, 867BFC2E9A08E026289794019B8DE651A8604D06DD6A9BF166C29AFC24B6D26E ] ProfSvc C:\Windows\system32\profsvc.dll
09:25:27.0377 0x0bec ProfSvc - ok
09:25:27.0392 0x0bec [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] ProtectedStorage C:\Windows\system32\lsass.exe
09:25:27.0392 0x0bec ProtectedStorage - ok
09:25:27.0424 0x0bec [ EE992183BD8EAEFD9973F352E587A299, 6B28930FAA0A54FAADDAF2231553D7F5D45C7227454C6D49A86DFC9EF6BC9043 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
09:25:27.0424 0x0bec Psched - ok
09:25:27.0470 0x0bec [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
09:25:27.0517 0x0bec ql2300 - ok
09:25:27.0548 0x0bec [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
09:25:27.0548 0x0bec ql40xx - ok
09:25:27.0564 0x0bec [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
09:25:27.0580 0x0bec QWAVE - ok
09:25:27.0580 0x0bec [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
09:25:27.0580 0x0bec QWAVEdrv - ok
09:25:27.0595 0x0bec [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
09:25:27.0595 0x0bec RasAcd - ok
09:25:27.0626 0x0bec [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
09:25:27.0626 0x0bec RasAgileVpn - ok
09:25:27.0642 0x0bec [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
09:25:27.0642 0x0bec RasAuto - ok
09:25:27.0673 0x0bec [ 87A6E852A22991580D6D39ADC4790463, 0F757C6E5B57DFC239CE1BEC88EF16C07E7F1A40D629A9A6DF3CB6B88FB9E642 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
09:25:27.0673 0x0bec Rasl2tp - ok
09:25:27.0704 0x0bec [ 47394ED3D16D053F5906EFE5AB51CC83, FE5D1249788DB6D85C55769251B0AED738D3BBA04DF57124E03397D3C0599286 ] RasMan C:\Windows\System32\rasmans.dll
09:25:27.0720 0x0bec RasMan - ok
09:25:27.0720 0x0bec [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
09:25:27.0720 0x0bec RasPppoe - ok
09:25:27.0751 0x0bec [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
09:25:27.0751 0x0bec RasSstp - ok
09:25:27.0767 0x0bec [ 3BAC8142102C15D59A87757C1D41DCE5, C0C2C6887EA5A439E69221196348382ACE3E1942C9C6E0A970E153890F71724C ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
09:25:27.0767 0x0bec rdbss - ok
09:25:27.0782 0x0bec [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
09:25:27.0782 0x0bec rdpbus - ok
09:25:27.0798 0x0bec [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
09:25:27.0798 0x0bec RDPCDD - ok
09:25:27.0814 0x0bec [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
09:25:27.0814 0x0bec RDPENCDD - ok
09:25:27.0814 0x0bec [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
09:25:27.0814 0x0bec RDPREFMP - ok
09:25:27.0829 0x0bec [ 8A3E6BEA1C53EA6177FE2B6EBA2C80D7, 02179089E0816AD544F370A8A3557498D09981F60CC94E497DC4A5A2BBBE1E48 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
09:25:27.0829 0x0bec RDPWD - ok
09:25:27.0860 0x0bec [ 634B9A2181D98F15941236886164EC8B, 15C55F05FD3CD751F619F18E2ADF91552AE82146501CD031402277F496A5B7D8 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
09:25:27.0860 0x0bec rdyboost - ok
09:25:27.0892 0x0bec [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
09:25:27.0892 0x0bec RemoteAccess - ok
09:25:27.0923 0x0bec [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
09:25:27.0938 0x0bec RemoteRegistry - ok
09:25:27.0938 0x0bec RichVideo - ok
09:25:27.0954 0x0bec [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
09:25:27.0954 0x0bec RpcEptMapper - ok
09:25:27.0970 0x0bec [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
09:25:27.0970 0x0bec RpcLocator - ok
09:25:28.0001 0x0bec [ 7266972E86890E2B30C0C322E906B027, BFA30E85F5BD3AA933913BD7C6D2B5993DB7AFB0C98349B61A6BEF0BDC8A3680 ] RpcSs C:\Windows\system32\rpcss.dll
09:25:28.0016 0x0bec RpcSs - ok
09:25:28.0032 0x0bec [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
09:25:28.0032 0x0bec rspndr - ok
09:25:28.0079 0x0bec [ 91296F0B2653281B2F11E0FCE56AA427, 242B6049480F62673D79E822EC7AD83DBFA1D203F2519E765DD36ECF156A962A ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
09:25:28.0079 0x0bec RTL8167 - ok
09:25:28.0094 0x0bec [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] SamSs C:\Windows\system32\lsass.exe
09:25:28.0094 0x0bec SamSs - ok
09:25:28.0126 0x0bec [ E3BBB89983DAF5622C1D50CF49F28227, 49370DC142D577D657BF5755AA9B8625C35D3DDAF1F9466B4888507FB8E6FF07 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
09:25:28.0141 0x0bec sbp2port - ok
09:25:28.0157 0x0bec [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
09:25:28.0172 0x0bec SCardSvr - ok
09:25:28.0172 0x0bec [ C94DA20C7E3BA1DCA269BC8460D98387, E1A5629728A79233B62BA87B4354BC3A332A853CC36A60E77B34923F4BCA8A61 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
09:25:28.0172 0x0bec scfilter - ok
09:25:28.0219 0x0bec [ EC56B171F85C7E855E7B0588AC503EEA, EDBC0E52DF00D73356F4B886D6CA2397B571A9D2245FEDC347A6D52A5467EA5D ] Schedule C:\Windows\system32\schedsvc.dll
09:25:28.0250 0x0bec Schedule - ok
09:25:28.0266 0x0bec [ 312E2F82AF11E79906898AC3E3D58A1F, F6CB7D8B204B94F749D5DBEFD552150AAB16A34D629F87F73823A7504465F106 ] SCPolicySvc C:\Windows\System32\certprop.dll
09:25:28.0266 0x0bec SCPolicySvc - ok
09:25:28.0282 0x0bec [ 54E47AD086782D3AE9417C155CDCEB9B, 5143DC43B89F9143A56505FA20841AF15E7785A87F88195B08B3E09B87472A07 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
09:25:28.0297 0x0bec sdbus - ok
09:25:28.0328 0x0bec [ 765A27C3279CE11D14CB9E4F5869FCA5, B6C2EFFBA938828FEF7FE992A4C88B3154D053763C38762DCE13252FE9571FA1 ] SDRSVC C:\Windows\System32\SDRSVC.dll
09:25:28.0344 0x0bec SDRSVC - ok
09:25:28.0344 0x0bec [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
09:25:28.0344 0x0bec secdrv - ok
09:25:28.0360 0x0bec [ 463B386EBC70F98DA5DFF85F7E654346, 8E27B18B04AF587719D1DAE75A042DB998E06CAE112BD68626EF046036D2DCDC ] seclogon C:\Windows\system32\seclogon.dll
09:25:28.0360 0x0bec seclogon - ok
09:25:28.0375 0x0bec [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
09:25:28.0391 0x0bec SENS - ok
09:25:28.0406 0x0bec [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
09:25:28.0406 0x0bec SensrSvc - ok
09:25:28.0406 0x0bec [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
09:25:28.0406 0x0bec Serenum - ok
09:25:28.0422 0x0bec [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
09:25:28.0422 0x0bec Serial - ok
09:25:28.0438 0x0bec [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
09:25:28.0438 0x0bec sermouse - ok
09:25:28.0453 0x0bec [ C3BC61CE47FF6F4E88AB8A3B429A36AF, 6CA53AD0CB7215BAE3467EC1FD490E3A18504BD6CD4F0FABF9BD37516AB9DFE0 ] SessionEnv C:\Windows\system32\sessenv.dll
09:25:28.0469 0x0bec SessionEnv - ok
09:25:28.0469 0x0bec [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
09:25:28.0469 0x0bec sffdisk - ok
09:25:28.0469 0x0bec [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
09:25:28.0484 0x0bec sffp_mmc - ok
09:25:28.0484 0x0bec [ 5588B8C6193EB1522490C122EB94DFFA, 53AE3597D3305F2839130A2F3567F1690564B922035503EB418B9DE1586AEA43 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
09:25:28.0484 0x0bec sffp_sd - ok
09:25:28.0484 0x0bec [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
09:25:28.0484 0x0bec sfloppy - ok
09:25:28.0516 0x0bec [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
09:25:28.0531 0x0bec SharedAccess - ok
09:25:28.0547 0x0bec [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF, 1C1D17301A4D37DBF906955CCABD2A3FDA47AFB24CBA978CF851123762249848 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
09:25:28.0562 0x0bec ShellHWDetection - ok
09:25:28.0578 0x0bec [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
09:25:28.0578 0x0bec SiSRaid2 - ok
09:25:28.0578 0x0bec [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
09:25:28.0594 0x0bec SiSRaid4 - ok
09:25:28.0609 0x0bec [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
09:25:28.0609 0x0bec Smb - ok
09:25:28.0625 0x0bec [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
09:25:28.0625 0x0bec SNMPTRAP - ok
09:25:28.0625 0x0bec [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
09:25:28.0625 0x0bec spldr - ok
09:25:28.0656 0x0bec [ 89E8550C5862999FCF482EA562B0E98E, 11BC94FD879DCD22E80DB8FA73CEBD0F072917C546AD9C8B92CCFBF4E0B83056 ] Spooler C:\Windows\System32\spoolsv.exe
09:25:28.0672 0x0bec Spooler - ok
09:25:28.0812 0x0bec [ 913D843498553A1BC8F8DBAD6358E49F, F8B931FDABF669D642CBDCD2FF31E07F8A5E2D5F72E11D4A8FF219CCFB5825E9 ] sppsvc C:\Windows\system32\sppsvc.exe
09:25:28.0906 0x0bec sppsvc - ok
09:25:28.0921 0x0bec [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
09:25:28.0921 0x0bec sppuinotify - ok
09:25:28.0952 0x0bec [ EC8F67289105BF270498095F14963464, 454031C8AE06511DD13DBAA613B983516AF937590FB2B8C6ADC273D018D30858 ] srv C:\Windows\system32\DRIVERS\srv.sys
09:25:28.0968 0x0bec srv - ok
09:25:28.0999 0x0bec [ F773D2ED090B7BAA1C1A034F3CA476C8, C8DD8BE37CFEA0DB1B7FC94946381B60553848002E6170E0BEC3FEE40295DF1F ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
09:25:28.0999 0x0bec srv2 - ok
09:25:29.0030 0x0bec [ 0C4540311E11664B245A263E1154CEF8, 63376322BFFAFF2F166AF3FDD3F1A346C21FAE21F406F659F8630779D1D6525D ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
09:25:29.0046 0x0bec SrvHsfHDA - ok
09:25:29.0108 0x0bec [ 02071D207A9858FBE3A48CBFD59C4A04, FEA4DEBAEC3465E0C7C1E8B721805922F6BBCB96A60A193B11688F4252F4B89E ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
09:25:29.0155 0x0bec SrvHsfV92 - ok
09:25:29.0202 0x0bec [ 18E40C245DBFAF36FD0134A7EF2DF396, 0138A68958112101A5D3BD94114F320CE80B0C9A93E009AC78DE7415FCCC7DE7 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
09:25:29.0233 0x0bec SrvHsfWinac - ok
09:25:29.0233 0x0bec [ 26E84D3649019C3244622E654DFCD75B, 49BD7345AF744298698629E0D7C0C373AB2F75F542281268BCF91A6D2B278AA8 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
09:25:29.0249 0x0bec srvnet - ok
09:25:29.0280 0x0bec [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
09:25:29.0280 0x0bec SSDPSRV - ok
09:25:29.0311 0x0bec [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
09:25:29.0327 0x0bec SstpSvc - ok
09:25:29.0498 0x0bec [ 810199DCC3BDC38304D7D649992EA7BC, B72D88A9F03D2BE65D45691AB643D11EC306E654AEB74C6610DC7331FE440110 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe
09:25:29.0498 0x0bec STacSV - ok
09:25:29.0514 0x0bec [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
09:25:29.0530 0x0bec stexstor - ok
09:25:29.0576 0x0bec [ ED1722F43CE61409EF68340402D6267D, 2FC14738C8F268DE4539064DE6D8954B6C9CD4ADE1139E2C74BD3486BF9A0861 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
09:25:29.0592 0x0bec STHDA - ok
09:25:29.0654 0x0bec [ 52D0E33B681BD0F33FDC08812FEE4F7D, BBEBC0773402F6697D2F14F63E5E4FDC2180466E7FDBD306E408535B10160249 ] stisvc C:\Windows\System32\wiaservc.dll
09:25:29.0670 0x0bec stisvc - ok
09:25:29.0686 0x0bec [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
09:25:29.0686 0x0bec swenum - ok
09:25:29.0717 0x0bec [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
09:25:29.0732 0x0bec swprv - ok
09:25:29.0826 0x0bec [ 929C9FA0B18AD2EBC8340591C4BF00FF, 710704028A069EEC918F67D9776AF1367005E3EF8536F2516CB5A12163AFDE8E ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
09:25:29.0842 0x0bec SynTP - ok
09:25:29.0951 0x0bec [ 3C1284516A62078FB68F768DE4F1A7BE, 67ECD462335EF88773E4BAEAB230A68EC92A25F8CD8F115873F669205AE6A1A9 ] SysMain C:\Windows\system32\sysmain.dll
09:25:29.0982 0x0bec SysMain - ok
09:25:30.0013 0x0bec [ 238935C3CF2854886DC7CBB2A0E2CC66, BBF7A70BF218A544CC1A6FB81F75EAD29D418794162936BE197D6D61FE0DB1C4 ] TabletInputService C:\Windows\System32\TabSvc.dll
09:25:30.0013 0x0bec TabletInputService - ok
09:25:30.0044 0x0bec [ 884264AC597B690C5707C89723BB8E7B, 9BF209A4128019421F7EC4AFF71103C5F411DB6CFB32AAC1633E789AD7A30708 ] TapiSrv C:\Windows\System32\tapisrv.dll
09:25:30.0076 0x0bec TapiSrv - ok
09:25:30.0091 0x0bec [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
09:25:30.0091 0x0bec TBS - ok
09:25:30.0185 0x0bec [ 912107716BAB424C7870E8E6AF5E07E1, BE6B1C9468B882347A908A753DC7185C3371A78E81DEE5BEC3DD6E2B81FD4FB9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
09:25:30.0232 0x0bec Tcpip - ok
09:25:30.0294 0x0bec [ 912107716BAB424C7870E8E6AF5E07E1, BE6B1C9468B882347A908A753DC7185C3371A78E81DEE5BEC3DD6E2B81FD4FB9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
09:25:30.0341 0x0bec TCPIP6 - ok
09:25:30.0372 0x0bec [ 76D078AF6F587B162D50210F761EB9ED, 3813171036B4036306CADC29F877ADAE44B241DDF65B3699C352B7CDA9EC68C9 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
09:25:30.0372 0x0bec tcpipreg - ok
09:25:30.0388 0x0bec [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
09:25:30.0388 0x0bec TDPIPE - ok
09:25:30.0403 0x0bec [ E4245BDA3190A582D55ED09E137401A9, F59C983882997D68CC7B1B2080AEE9EBE2AE90D478F877559BD2AAA97158A116 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
09:25:30.0403 0x0bec TDTCP - ok
09:25:30.0403 0x0bec [ 079125C4B17B01FCAEEBCE0BCB290C0F, B2DF1F2317EF5DCF0A89327332E9F2770ED604005B3138C095FF01AA63B91437 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
09:25:30.0419 0x0bec tdx - ok
09:25:30.0434 0x0bec [ C448651339196C0E869A355171875522, C12441CF21D7D47804952B968689D78E3BA0323A90C4C811B54A6B2E6260BAD4 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
09:25:30.0434 0x0bec TermDD - ok
09:25:30.0481 0x0bec [ 0F05EC2887BFE197AD82A13287D2F404, 78C8A8FE9B1101430CA79875DA34413C35B6D7A5EE1932E454C50731335437A6 ] TermService C:\Windows\System32\termsrv.dll
09:25:30.0528 0x0bec TermService - ok
09:25:30.0544 0x0bec [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
09:25:30.0544 0x0bec Themes - ok
09:25:30.0575 0x0bec [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
09:25:30.0590 0x0bec THREADORDER - ok
09:25:30.0606 0x0bec [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
09:25:30.0622 0x0bec TrkWks - ok
09:25:30.0668 0x0bec [ 840F7FB849F5887A49BA18C13B2DA920, A59C40A090E03C0136A865FC54508BA938E7B467C8198BC009FE263E6C275781 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
09:25:30.0668 0x0bec TrustedInstaller - ok
09:25:30.0684 0x0bec [ 61B96C26131E37B24E93327A0BD1FB95, 7C551B6FD0447258BC3FDED72D8D41A0E8B731562170C264295592D45F85D9FF ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
09:25:30.0684 0x0bec tssecsrv - ok
09:25:30.0715 0x0bec [ 3836171A2CDF3AF8EF10856DB9835A70, 74CD0A21B4E5B47E8D762CC28282CA8D512D424EC591D90099B9F8D034AA2FC2 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
09:25:30.0715 0x0bec tunnel - ok
09:25:30.0715 0x0bec [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
09:25:30.0715 0x0bec uagp35 - ok
09:25:30.0746 0x0bec [ D47BAEAD86C65D4F4069D7CE0A4EDCEB, DBAEA010F11A5EFD961B1841308EA3F220A9FFB01F364BA9B8F72200DA2BBCD8 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
09:25:30.0762 0x0bec udfs - ok
09:25:30.0778 0x0bec [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
09:25:30.0778 0x0bec UI0Detect - ok
09:25:30.0809 0x0bec [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
09:25:30.0824 0x0bec uliagpkx - ok
09:25:30.0824 0x0bec [ EAB6C35E62B1B0DB0D1B48B671D3A117, E65034BF757AE4D21F69D7A91A7990E326A29A0CE9F871FD704B5E6CCC821FF0 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
09:25:30.0824 0x0bec umbus - ok
09:25:30.0840 0x0bec [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
09:25:30.0840 0x0bec UmPass - ok
09:25:30.0871 0x0bec [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
09:25:30.0871 0x0bec upnphost - ok
09:25:30.0887 0x0bec [ B26AFB54A534D634523C4FB66765B026, A219C9AE32D040BEA4DD69C2C826B1C52BACE26BEBFEE799BD56DFD442C5E0D8 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
09:25:30.0887 0x0bec usbccgp - ok
09:25:30.0902 0x0bec [ AF0892A803FDDA7492F595368E3B68E7, F263346DEB4D742EB436CF578F187AC8521D84CED52E98475E6198EC52244F07 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
09:25:30.0918 0x0bec usbcir - ok
09:25:30.0918 0x0bec [ 2EA4AFF7BE7EB4632E3AA8595B0803B5, CBECE7CEC0EFA4B283C63E9B6A270D595F5F3D006306DA5E5121BBFDCAB16376 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
09:25:30.0918 0x0bec usbehci - ok
09:25:30.0934 0x0bec [ 4C9042B8DF86C1E8E6240C218B99B39B, D286633311C047B9C4FB1AA89D7B02B9F943FDDCE473255DC8E14DD07CC9B292 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
09:25:30.0949 0x0bec usbhub - ok
09:25:30.0949 0x0bec [ 58E546BBAF87664FC57E0F6081E4F609, 1DD99D57369A0069654432AB5325AFD8F7D422D531E053EA05FF664BA6BDAEF9 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
09:25:30.0949 0x0bec usbohci - ok
09:25:30.0965 0x0bec [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
09:25:30.0965 0x0bec usbprint - ok
09:25:30.0980 0x0bec [ 080D3820DA6C046BE82FC8B45A893E83, EF4829A2D5B8D47AA7E06093EC85244042ED1CCFF43CC80DC44EF018B434197A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:25:30.0980 0x0bec USBSTOR - ok
09:25:30.0980 0x0bec [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
09:25:30.0980 0x0bec usbuhci - ok
09:25:30.0996 0x0bec [ D501E12614B00A3252073101D6A1A74B, DFA3A83978125B3CE45C71DD9069E8A7938366D0F4B4B2401CDD07251253FA8C ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
09:25:31.0012 0x0bec usbvideo - ok
09:25:31.0043 0x0bec [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
09:25:31.0058 0x0bec UxSms - ok
09:25:31.0058 0x0bec [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] VaultSvc C:\Windows\system32\lsass.exe
09:25:31.0058 0x0bec VaultSvc - ok
09:25:31.0074 0x0bec [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
09:25:31.0074 0x0bec vdrvroot - ok
09:25:31.0105 0x0bec [ 44D73E0BBC1D3C8981304BA15135C2F2, 2849387BBCFB0189AF5604D2F7A631BD5D6BBB2CA73AF6E870069AF382A74DED ] vds C:\Windows\System32\vds.exe
09:25:31.0121 0x0bec vds - ok
09:25:31.0136 0x0bec [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
09:25:31.0136 0x0bec vga - ok
09:25:31.0136 0x0bec [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
09:25:31.0136 0x0bec VgaSave - ok
09:25:31.0152 0x0bec [ C82E748660F62A242B2DFAC1442F22A4, 24AD6CAA918C5AB6F461D88825885C8637C224001AAD7A80BDC240368CDB0B7E ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
09:25:31.0168 0x0bec vhdmp - ok
09:25:31.0183 0x0bec [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
09:25:31.0183 0x0bec viaide - ok
09:25:31.0199 0x0bec [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3, 91F2B935E1E88C5542650F7D679A75D0562F4A5812179D1EC146D4B6351361E2 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
09:25:31.0199 0x0bec volmgr - ok
09:25:31.0214 0x0bec [ 99B0CBB569CA79ACAED8C91461D765FB, 5BE394A39A941DE2AA1212E66B7068F90D423FA816238657CB9B2DA8BBE69B9B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
09:25:31.0230 0x0bec volmgrx - ok
09:25:31.0246 0x0bec [ 58F82EED8CA24B461441F9C3E4F0BF5C, 40B8C9C9D1BEDD1507138273A3C000C753C8765E1873F2170DE63555A042928C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
09:25:31.0261 0x0bec volsnap - ok
09:25:31.0261 0x0bec [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
09:25:31.0277 0x0bec vsmraid - ok
09:25:31.0355 0x0bec [ 787898BF9FB6D7BD87A36E2D95C899BA, A6C0C7402B1A198E7B3D6D7D283FCB5815AC429DA68FC9B54C67707F3233CCB5 ] VSS C:\Windows\system32\vssvc.exe
09:25:31.0402 0x0bec VSS - ok
09:25:31.0417 0x0bec [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
09:25:31.0417 0x0bec vwifibus - ok
09:25:31.0433 0x0bec [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
09:25:31.0433 0x0bec vwififlt - ok
09:25:31.0448 0x0bec [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
09:25:31.0464 0x0bec W32Time - ok
09:25:31.0464 0x0bec [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
09:25:31.0464 0x0bec WacomPen - ok
09:25:31.0480 0x0bec [ 47CA49400643EFFD3F1C9A27E1D69324, 7EFD3405282264F7987172B226882FCDD223F771959B9CEBEBF9ECEA317D85B0 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
09:25:31.0495 0x0bec WANARP - ok
09:25:31.0495 0x0bec [ 47CA49400643EFFD3F1C9A27E1D69324, 7EFD3405282264F7987172B226882FCDD223F771959B9CEBEBF9ECEA317D85B0 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
09:25:31.0495 0x0bec Wanarpv6 - ok
09:25:31.0573 0x0bec [ 5AB1BB85BD8B5089CC5D64200DEDAE68, 28777D4F3CD07C8E3465B6DA0FCA994E0B93071A3A0D4D1D64C1DF633DD1C64F ] wbengine C:\Windows\system32\wbengine.exe
09:25:31.0620 0x0bec wbengine - ok
09:25:31.0636 0x0bec [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
09:25:31.0651 0x0bec WbioSrvc - ok
09:25:31.0667 0x0bec [ 8321C2CA3B62B61B293CDA3451984468, 856A079C2CCC75D633EA23E410D7F3ECDF368EAAAFF634CB82DDA545FD3A2F9C ] wcncsvc C:\Windows\System32\wcncsvc.dll
09:25:31.0682 0x0bec wcncsvc - ok
09:25:31.0698 0x0bec [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
09:25:31.0714 0x0bec WcsPlugInService - ok
09:25:31.0729 0x0bec [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
09:25:31.0729 0x0bec Wd - ok
09:25:31.0760 0x0bec [ 441BD2D7B4F98134C3A4F9FA570FD250, FF20815273014C5A27C2B75E2C70FE674809293627056199F502DFDF4CECFCA1 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
09:25:31.0776 0x0bec Wdf01000 - ok
09:25:31.0807 0x0bec [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
09:25:31.0807 0x0bec WdiServiceHost - ok
09:25:31.0807 0x0bec [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
09:25:31.0823 0x0bec WdiSystemHost - ok
09:25:31.0838 0x0bec [ 8A438CBB8C032A0C798B0C642FFBE572, 3200B9B6A7B87C1C47295FA416C99DE1FBB2DBBA3DA78D5CC88C26DCC4189D45 ] WebClient C:\Windows\System32\webclnt.dll
09:25:31.0854 0x0bec WebClient - ok
09:25:31.0870 0x0bec [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
09:25:31.0885 0x0bec Wecsvc - ok
09:25:31.0901 0x0bec [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
09:25:31.0901 0x0bec wercplsupport - ok
09:25:31.0916 0x0bec [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
09:25:31.0932 0x0bec WerSvc - ok
09:25:31.0932 0x0bec [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
09:25:31.0932 0x0bec WfpLwf - ok
09:25:31.0948 0x0bec [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
09:25:31.0948 0x0bec WIMMount - ok
09:25:31.0963 0x0bec WinDefend - ok
09:25:31.0963 0x0bec WinHttpAutoProxySvc - ok
09:25:32.0119 0x0bec [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
09:25:32.0119 0x0bec Winmgmt - ok
09:25:32.0197 0x0bec [ 41FBB751936B387F9179E7F03A74FE29, 7A73D887BEC19DFC485ED42B4E6ABEBF824555139B81EA30731A00773E707464 ] WinRM C:\Windows\system32\WsmSvc.dll
09:25:32.0260 0x0bec WinRM - ok
09:25:32.0322 0x0bec [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
09:25:32.0353 0x0bec Wlansvc - ok
09:25:32.0353 0x0bec [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
09:25:32.0353 0x0bec WmiAcpi - ok
09:25:32.0384 0x0bec [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
09:25:32.0400 0x0bec wmiApSrv - ok
09:25:32.0416 0x0bec WMPNetworkSvc - ok
09:25:32.0431 0x0bec [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
09:25:32.0431 0x0bec WPCSvc - ok
09:25:32.0447 0x0bec [ 2E57DDF2880A7E52E76F41C7E96D327B, D24E19B6091C197D77D71BC044CE2E5A57BE0A2F00D1BB0732E380A398230E63 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
09:25:32.0447 0x0bec WPDBusEnum - ok
09:25:32.0462 0x0bec [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
09:25:32.0462 0x0bec ws2ifsl - ok
09:25:32.0478 0x0bec [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
09:25:32.0478 0x0bec wscsvc - ok
09:25:32.0494 0x0bec WSearch - ok
09:25:32.0603 0x0bec [ 38340204A2D0228F1E87740FC5E554A7, 57181ED34E73DD17B590803C770A086C57754F229C6F587637B8FBB5D6519603 ] wuauserv C:\Windows\system32\wuaueng.dll
09:25:32.0665 0x0bec wuauserv - ok
09:25:32.0696 0x0bec [ 7CADC74271DD6461C452C271B30BD378, D58C2094C36FC665C03A6A269EED80DC71F330C3DCF40A27A3C8F56AB7A96861 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
09:25:32.0696 0x0bec WudfPf - ok
09:25:32.0728 0x0bec [ B551D6637AA0E132C18AC6E504F7B79B, FA6495533A14E01ABB0F6689AB7503B1B439D3ADA7457DFCB7D81714A9817327 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
09:25:32.0728 0x0bec wudfsvc - ok
09:25:32.0759 0x0bec [ 9A3452B3C2A46C073166C5CF49FAD1AE, D6F95F51D8E37BA4CF403965EC08CCFEEA9EEFDBFC7752432EAEC19925BDA115 ] WwanSvc C:\Windows\System32\wwansvc.dll
09:25:32.0759 0x0bec WwanSvc - ok
09:25:32.0790 0x0bec [ B3EEACF62445E24FBB2CD4B0FB4DB026, 2E5B6220094C47754233EDA59E6514CE47AC6C6879F367C72B2C02330EABE8E0 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
09:25:32.0806 0x0bec yukonw7 - ok
09:25:32.0821 0x0bec ================ Scan global ===============================
09:25:32.0852 0x0bec [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
09:25:32.0884 0x0bec [ 457B44AB6D502E55F64A867D4F35C76C, 95FEC45E28DF394E778DA37719F7D579920531AD568E1C290B7F42CB03BEAA2C ] C:\Windows\system32\winsrv.dll
09:25:32.0899 0x0bec [ 457B44AB6D502E55F64A867D4F35C76C, 95FEC45E28DF394E778DA37719F7D579920531AD568E1C290B7F42CB03BEAA2C ] C:\Windows\system32\winsrv.dll
09:25:32.0930 0x0bec [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
09:25:33.0024 0x0bec [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
09:25:33.0024 0x0bec [ Global ] - ok
09:25:33.0024 0x0bec ================ Scan MBR ==================================
09:25:33.0040 0x0bec [ D8E1D44D38D41E802CF7F861A14C4048 ] \Device\Harddisk0\DR0
09:25:33.0461 0x0bec \Device\Harddisk0\DR0 - ok
09:25:33.0461 0x0bec ================ Scan VBR ==================================
09:25:33.0461 0x0bec [ 3A7D3C08E97A13221D57D7BBF37E3C0E ] \Device\Harddisk0\DR0\Partition1
09:25:33.0461 0x0bec \Device\Harddisk0\DR0\Partition1 - ok
09:25:33.0476 0x0bec [ 54DE0359E3675E886A3F61AFFE10C58E ] \Device\Harddisk0\DR0\Partition2
09:25:33.0476 0x0bec \Device\Harddisk0\DR0\Partition2 - ok
09:25:33.0476 0x0bec [ D3DB1C6495BAE9A086BCA48ABE647CA2 ] \Device\Harddisk0\DR0\Partition3
09:25:33.0476 0x0bec \Device\Harddisk0\DR0\Partition3 - ok
09:25:33.0492 0x0bec ================ Scan active images ========================
09:25:33.0492 0x0bec [ 3E588B60EC061686BA05D33574A344C6, 19D2D863F95CCC4493A2328B6BEB04248B6A80F957532E58C1D1D868C19FDCCB ] C:\Windows\System32\drivers\crashdmp.sys
09:25:33.0492 0x0bec C:\Windows\System32\drivers\crashdmp.sys - ok
09:25:33.0492 0x0bec [ 839B5FE3D48E9F35B22C21A3D5103F6C, A9CEA695E43092B72B0E988063E00A7C0BCE90095344E9A2F380218482BCE77F ] C:\Windows\System32\drivers\Dumpata.sys
09:25:33.0492 0x0bec C:\Windows\System32\drivers\Dumpata.sys - ok
09:25:33.0508 0x0bec [ 5C37497276E3B3A5488B23A326A754B7, 9982FCDAFB963868EB93A4DEF811A3167488EB5246BAC3F4AE960506FDF63967 ] C:\Windows\System32\drivers\msahci.sys
09:25:33.0508 0x0bec C:\Windows\System32\drivers\msahci.sys - ok
09:25:33.0508 0x0bec [ 814DB88F2641691575A455CF25354098, 79C50F0CD72612733217A0316BEFEA0B6D819C3159D9452EAB89AC26A18A0F89 ] C:\Windows\System32\drivers\dumpfve.sys
09:25:33.0508 0x0bec C:\Windows\System32\drivers\dumpfve.sys - ok
09:25:33.0508 0x0bec [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] C:\Windows\System32\drivers\beep.sys
09:25:33.0508 0x0bec C:\Windows\System32\drivers\beep.sys - ok
09:25:33.0523 0x0bec [ 83D2D75E1EFB81B3450C18131443F7DB, F2C686C980D818E797818E75B808E1E0B51B2045840A4BFC32D860B7DB4DFA22 ] C:\Windows\System32\drivers\cdrom.sys
09:25:33.0523 0x0bec C:\Windows\System32\drivers\cdrom.sys - ok
09:25:33.0523 0x0bec [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] C:\Windows\System32\drivers\null.sys
09:25:33.0523 0x0bec C:\Windows\System32\drivers\null.sys - ok
09:25:33.0539 0x0bec [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] C:\Windows\System32\drivers\vga.sys
09:25:33.0539 0x0bec C:\Windows\System32\drivers\vga.sys - ok
09:25:33.0539 0x0bec [ E7353D59C9842BC7299FAEB7E7E09340, C37ED1025E07BAC2F535DCFED6C6C509515D95722EADE5AF94F1FC5D8B1DC783 ] C:\Windows\System32\drivers\videoprt.sys
09:25:33.0539 0x0bec C:\Windows\System32\drivers\videoprt.sys - ok
09:25:33.0539 0x0bec [ FC438D1430B28618E2D0C7C332A710AD, 873957B202E454E2C8F625E5799F278CAC16EC5EEAEE2C33E2FE5D1FF0408CB2 ] C:\Windows\System32\drivers\watchdog.sys
09:25:33.0539 0x0bec C:\Windows\System32\drivers\watchdog.sys - ok
09:25:33.0554 0x0bec [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] C:\Windows\System32\drivers\msfs.sys
09:25:33.0554 0x0bec C:\Windows\System32\drivers\msfs.sys - ok
09:25:33.0554 0x0bec [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] C:\Windows\System32\drivers\npfs.sys
09:25:33.0554 0x0bec C:\Windows\System32\drivers\npfs.sys - ok
09:25:33.0554 0x0bec [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] C:\Windows\System32\drivers\RDPCDD.sys
09:25:33.0554 0x0bec C:\Windows\System32\drivers\RDPCDD.sys - ok
09:25:33.0570 0x0bec [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] C:\Windows\System32\drivers\RDPENCDD.sys
09:25:33.0570 0x0bec C:\Windows\System32\drivers\RDPENCDD.sys - ok
09:25:33.0570 0x0bec [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] C:\Windows\System32\drivers\RDPREFMP.sys
09:25:33.0570 0x0bec C:\Windows\System32\drivers\RDPREFMP.sys - ok
09:25:33.0586 0x0bec [ 0CA6FE26ACC7FFEE1BD0463F40835F32, 22D29762CED22BBDA3D89D9AFFDEA2F3DAF91524D7A7524BE45578F17781F376 ] C:\Windows\System32\drivers\tdi.sys
09:25:33.0586 0x0bec C:\Windows\System32\drivers\tdi.sys - ok
09:25:33.0586 0x0bec [ 079125C4B17B01FCAEEBCE0BCB290C0F, B2DF1F2317EF5DCF0A89327332E9F2770ED604005B3138C095FF01AA63B91437 ] C:\Windows\System32\drivers\tdx.sys
09:25:33.0586 0x0bec C:\Windows\System32\drivers\tdx.sys - ok
09:25:33.0601 0x0bec [ B9384E03479D2506BC924C16A3DB87BC, AB5FD2BC1F005E7D664F5DE3D5CB54499024A83B716DD52C56582DB7EFB4F01B ] C:\Windows\System32\drivers\afd.sys
09:25:33.0601 0x0bec C:\Windows\System32\drivers\afd.sys - ok
09:25:33.0601 0x0bec [ 9162B273A44AB9DCE5B44362731D062A, 5A1BA6DBFEBB2618DC9D4CC55FA071C170A5D22FFB24CE62DD5B3210D8B45F39 ] C:\Windows\System32\drivers\netbt.sys
09:25:33.0601 0x0bec C:\Windows\System32\drivers\netbt.sys - ok
09:25:33.0601 0x0bec [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] C:\Windows\System32\drivers\wfplwf.sys
09:25:33.0601 0x0bec C:\Windows\System32\drivers\wfplwf.sys - ok
09:25:33.0617 0x0bec [ EE992183BD8EAEFD9973F352E587A299, 6B28930FAA0A54FAADDAF2231553D7F5D45C7227454C6D49A86DFC9EF6BC9043 ] C:\Windows\System32\drivers\pacer.sys
09:25:33.0617 0x0bec C:\Windows\System32\drivers\pacer.sys - ok
09:25:33.0617 0x0bec [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] C:\Windows\System32\drivers\vwififlt.sys
09:25:33.0617 0x0bec C:\Windows\System32\drivers\vwififlt.sys - ok
09:25:33.0632 0x0bec [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] C:\Windows\System32\drivers\netbios.sys
09:25:33.0632 0x0bec C:\Windows\System32\drivers\netbios.sys - ok
09:25:33.0632 0x0bec [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] C:\Windows\System32\drivers\serial.sys
09:25:33.0632 0x0bec C:\Windows\System32\drivers\serial.sys - ok

#9 deathdoc

deathdoc
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  

Posted 18 June 2015 - 11:54 AM

TDSSKILLER continued Page 2
09:25:33.0632 0x0bec [ 47CA49400643EFFD3F1C9A27E1D69324, 7EFD3405282264F7987172B226882FCDD223F771959B9CEBEBF9ECEA317D85B0 ] C:\Windows\System32\drivers\wanarp.sys
09:25:33.0632 0x0bec C:\Windows\System32\drivers\wanarp.sys - ok
09:25:33.0648 0x0bec [ C448651339196C0E869A355171875522, C12441CF21D7D47804952B968689D78E3BA0323A90C4C811B54A6B2E6260BAD4 ] C:\Windows\System32\drivers\termdd.sys
09:25:33.0648 0x0bec C:\Windows\System32\drivers\termdd.sys - ok
09:25:33.0648 0x0bec [ 3BAC8142102C15D59A87757C1D41DCE5, C0C2C6887EA5A439E69221196348382ACE3E1942C9C6E0A970E153890F71724C ] C:\Windows\System32\drivers\rdbss.sys
09:25:33.0648 0x0bec C:\Windows\System32\drivers\rdbss.sys - ok
09:25:33.0648 0x0bec [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] C:\Windows\System32\drivers\nsiproxy.sys
09:25:33.0648 0x0bec C:\Windows\System32\drivers\nsiproxy.sys - ok
09:25:33.0664 0x0bec [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] C:\Windows\System32\drivers\mssmbios.sys
09:25:33.0664 0x0bec C:\Windows\System32\drivers\mssmbios.sys - ok
09:25:33.0664 0x0bec [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] C:\Windows\System32\drivers\discache.sys
09:25:33.0664 0x0bec C:\Windows\System32\drivers\discache.sys - ok
09:25:33.0664 0x0bec [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] C:\Windows\System32\drivers\blbdrive.sys
09:25:33.0664 0x0bec C:\Windows\System32\drivers\blbdrive.sys - ok
09:25:33.0679 0x0bec [ 3F1DC527070ACB87E40AFE46EF6DA749, 5CB9CB94854AF06BEA02AF3E0562B8ECF72B2B23ED657A3F5E17CD3552F3EF84 ] C:\Windows\System32\drivers\dfsc.sys
09:25:33.0679 0x0bec C:\Windows\System32\drivers\dfsc.sys - ok
09:25:33.0679 0x0bec [ 3836171A2CDF3AF8EF10856DB9835A70, 74CD0A21B4E5B47E8D762CC28282CA8D512D424EC591D90099B9F8D034AA2FC2 ] C:\Windows\System32\drivers\tunnel.sys
09:25:33.0679 0x0bec C:\Windows\System32\drivers\tunnel.sys - ok
09:25:33.0695 0x0bec [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] C:\Windows\System32\drivers\intelppm.sys
09:25:33.0695 0x0bec C:\Windows\System32\drivers\intelppm.sys - ok
09:25:33.0695 0x0bec [ 1911A3356FA3F77CCC825CCBAC038C2A, 6ED135B792C81D78B33A57F0F4770DB6105C9ED3E2193629CB3EC38BFD5B7E1B ] C:\Windows\System32\smss.exe
09:25:33.0695 0x0bec C:\Windows\System32\smss.exe - ok
09:25:33.0695 0x0bec [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] C:\Windows\System32\drivers\CmBatt.sys
09:25:33.0695 0x0bec C:\Windows\System32\drivers\CmBatt.sys - ok
09:25:33.0710 0x0bec [ BC8E5D3038E2CA27AFE8B692907BFD9A, 9B0189298D69DED3220574F6C57C0DEB39EF081E0DA9D7891820F2F834561955 ] C:\Windows\System32\ntdll.dll
09:25:33.0710 0x0bec C:\Windows\System32\ntdll.dll - ok
09:25:33.0710 0x0bec [ 8B7F8E882A649D81CEA1EDE9BBB68FFF, 3BDA2C1F922EC672353CB2F296720FC75F3D573A6FCF879B220EB793611CF82E ] C:\Windows\System32\autochk.exe
09:25:33.0710 0x0bec C:\Windows\System32\autochk.exe - ok
09:25:33.0726 0x0bec [ C5758BF1DFD762A5B17041FF061B7750, BA732E670536C73523DA0880485E5028C682FBEAF048F564EB626DA61364CAAD ] C:\Windows\System32\drivers\atikmdag.sys
09:25:33.0726 0x0bec C:\Windows\System32\drivers\atikmdag.sys - ok
09:25:33.0726 0x0bec [ 7CB7D2B73813CE05C7BC0F5F95D27CEC, F80AD7E946B8C8C27A0EB8A99B3A61C3F09E5442372D64EB4886D86B8D0AFCFD ] C:\Windows\System32\drivers\dxgkrnl.sys
09:25:33.0726 0x0bec C:\Windows\System32\drivers\dxgkrnl.sys - ok
09:25:33.0726 0x0bec [ DDB7AD1BA01005521010DB3E30ADC972, F1B7376F1A348D7073AB3E7C4629F13E10AAF2B37E68F01D145C8C01CA1BFDCB ] C:\Windows\System32\drivers\dxgmms1.sys
09:25:33.0726 0x0bec C:\Windows\System32\drivers\dxgmms1.sys - ok
09:25:33.0742 0x0bec [ 0A49913402747A0B67DE940FB42CBDBB, 61A45DBDCEB4A2D5C3C28F6BC8C5ADC51D0240A7553DF44BCC4355FC06F72B83 ] C:\Windows\System32\drivers\hdaudbus.sys
09:25:33.0742 0x0bec C:\Windows\System32\drivers\hdaudbus.sys - ok
09:25:33.0742 0x0bec [ A91291136D1E70966645252F6B828711, 4BED45CBE78748A81F1EAAE8C7446207414EF1FC79F13E24EF426531AD8BD836 ] C:\Windows\System32\drivers\usbport.sys
09:25:33.0742 0x0bec C:\Windows\System32\drivers\usbport.sys - ok
09:25:33.0742 0x0bec [ 2EA4AFF7BE7EB4632E3AA8595B0803B5, CBECE7CEC0EFA4B283C63E9B6A270D595F5F3D006306DA5E5121BBFDCAB16376 ] C:\Windows\System32\drivers\usbehci.sys
09:25:33.0742 0x0bec C:\Windows\System32\drivers\usbehci.sys - ok
09:25:33.0757 0x0bec [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] C:\Windows\System32\drivers\usbuhci.sys
09:25:33.0757 0x0bec C:\Windows\System32\drivers\usbuhci.sys - ok
09:25:33.0757 0x0bec [ F99C7AE4BB91BD1506B3572F944307BB, 66513B353D44F5F057BFF6E5DA0607F0DBF702783A2EAE95E8CE69946E78B8D7 ] C:\Windows\System32\drivers\BCMWL664.SYS
09:25:33.0757 0x0bec C:\Windows\System32\drivers\BCMWL664.SYS - ok
09:25:33.0773 0x0bec [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] C:\Windows\System32\drivers\vwifibus.sys
09:25:33.0773 0x0bec C:\Windows\System32\drivers\vwifibus.sys - ok
09:25:33.0773 0x0bec [ 91296F0B2653281B2F11E0FCE56AA427, 242B6049480F62673D79E822EC7AD83DBFA1D203F2519E765DD36ECF156A962A ] C:\Windows\System32\drivers\Rt64win7.sys
09:25:33.0773 0x0bec C:\Windows\System32\drivers\Rt64win7.sys - ok
09:25:33.0773 0x0bec [ 1B00662092F9F9568B995902F0CC40D5, D345014CF146FA57B2682C189D5E7F27D4C78F321F2723D912D623E777C2BB70 ] C:\Windows\System32\drivers\1394ohci.sys
09:25:33.0773 0x0bec C:\Windows\System32\drivers\1394ohci.sys - ok
09:25:33.0788 0x0bec [ F8844B00C10E386C704C610E95A9847D, 3E3CFDDD0DD9E98542BAE07ED9CF922D98370C94BE364BA84F677EAA01ED775A ] C:\Windows\System32\drivers\jmcr.sys
09:25:33.0788 0x0bec C:\Windows\System32\drivers\jmcr.sys - ok
09:25:33.0788 0x0bec [ AD3A6838A059D65FB55D2F61CF0A6C1F, 37696365FB0710096DD0654A87EBF7EEDEF31AF4717FA861D9F688A15C9CA2E5 ] C:\Windows\System32\drivers\scsiport.sys
09:25:33.0788 0x0bec C:\Windows\System32\drivers\scsiport.sys - ok
09:25:33.0788 0x0bec [ 9AF482D058BE59CC28BCE52E7C4B747C, 2D150CD0C82B575CDE2E1B3941FD72EFCB254850D6FF1D7C40D3B29643018EFF ] C:\Windows\System32\drivers\HpqKbFiltr.sys
09:25:33.0788 0x0bec C:\Windows\System32\drivers\HpqKbFiltr.sys - ok
09:25:33.0804 0x0bec [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] C:\Windows\System32\drivers\i8042prt.sys
09:25:33.0804 0x0bec C:\Windows\System32\drivers\i8042prt.sys - ok
09:25:33.0804 0x0bec [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] C:\Windows\System32\drivers\kbdclass.sys
09:25:33.0804 0x0bec C:\Windows\System32\drivers\kbdclass.sys - ok
09:25:33.0804 0x0bec [ 63C8D74BED9F80F4DD0AA7A3101EB639, EA2CE29025259E9DE945CE52C80A41C33024D7C2907AA1928480EC11FC852B08 ] C:\Windows\System32\drivers\usbd.sys
09:25:33.0804 0x0bec C:\Windows\System32\drivers\usbd.sys - ok
09:25:33.0820 0x0bec [ 929C9FA0B18AD2EBC8340591C4BF00FF, 710704028A069EEC918F67D9776AF1367005E3EF8536F2516CB5A12163AFDE8E ] C:\Windows\System32\drivers\SynTP.sys
09:25:33.0820 0x0bec C:\Windows\System32\drivers\SynTP.sys - ok
09:25:33.0820 0x0bec [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] C:\Windows\System32\drivers\mouclass.sys
09:25:33.0820 0x0bec C:\Windows\System32\drivers\mouclass.sys - ok
09:25:33.0820 0x0bec [ 524C79054636D2E5751169005006460B, 1EBA5972E13C5BB07BBD94D6647B86469B4910F60A3C8BDDC6BB5736EF99C9C3 ] C:\Windows\System32\drivers\enecir.sys
09:25:33.0820 0x0bec C:\Windows\System32\drivers\enecir.sys - ok
09:25:33.0835 0x0bec [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] C:\Windows\System32\drivers\wmiacpi.sys
09:25:33.0835 0x0bec C:\Windows\System32\drivers\wmiacpi.sys - ok
09:25:33.0835 0x0bec [ 1CFFE9C06E66A57DAE1452E449A58240, F337852EEF9DCF33FB1B85EEF61FA8D28A780B13488B144DFAD2234FC24CB430 ] C:\Windows\System32\drivers\Accelerometer.sys
09:25:33.0835 0x0bec C:\Windows\System32\drivers\Accelerometer.sys - ok
09:25:33.0835 0x0bec [ F26B3A86F6FA87CA360B879581AB4123, 723904362614FE47F6CC0EA0656BA1B47EA32D73BAFB61688A5E5CAE4340B1BF ] C:\Windows\System32\drivers\CompositeBus.sys
09:25:33.0835 0x0bec C:\Windows\System32\drivers\CompositeBus.sys - ok
09:25:33.0851 0x0bec [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] C:\Windows\System32\drivers\agilevpn.sys
09:25:33.0851 0x0bec C:\Windows\System32\drivers\agilevpn.sys - ok
09:25:33.0851 0x0bec [ 87A6E852A22991580D6D39ADC4790463, 0F757C6E5B57DFC239CE1BEC88EF16C07E7F1A40D629A9A6DF3CB6B88FB9E642 ] C:\Windows\System32\drivers\rasl2tp.sys
09:25:33.0851 0x0bec C:\Windows\System32\drivers\rasl2tp.sys - ok
09:25:33.0851 0x0bec [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] C:\Windows\System32\drivers\ndistapi.sys
09:25:33.0851 0x0bec C:\Windows\System32\drivers\ndistapi.sys - ok
09:25:33.0866 0x0bec [ 557DFAB9CA1FCB036AC77564C010DAD3, 8A21B342AFE5B498FB62EDDC81A3ADA9570677B7A382666090E0ABB1F85FEF29 ] C:\Windows\System32\drivers\ndiswan.sys
09:25:33.0866 0x0bec C:\Windows\System32\drivers\ndiswan.sys - ok
09:25:33.0866 0x0bec [ 4B25DDE615AC2CABAB73169CA7DA96E6, 1A6694D99AED32D8F9629294E7DC6885C2B148249E0358AABCFE34590996E0BF ] C:\Windows\System32\ole32.dll
09:25:33.0866 0x0bec C:\Windows\System32\ole32.dll - ok
09:25:33.0866 0x0bec [ 25983DE69B57142039AC8D95E71CD9C9, A677DA7EBCBCB6073D27E8A38809F51E971E83ED379BC599AAAD6EF4216348DA ] C:\Windows\System32\clbcatq.dll
09:25:33.0866 0x0bec C:\Windows\System32\clbcatq.dll - ok
09:25:33.0882 0x0bec [ 83404DCBCE4925B6A5A77C5170F46D86, D669614D0B4461DB244AD99FBE1BA92CEB9B4ED5EC8E987E23764E77D9AC7074 ] C:\Windows\System32\sechost.dll
09:25:33.0882 0x0bec C:\Windows\System32\sechost.dll - ok
09:25:33.0882 0x0bec [ 5F2BDCA5FA0F20A6F452CF0EE2A2B18C, 91523F6E2227847A0BFDE7265C704602DF4D9455FC02AC5C7409450FE46720E2 ] C:\Windows\System32\usp10.dll
09:25:33.0882 0x0bec C:\Windows\System32\usp10.dll - ok
09:25:33.0882 0x0bec [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] C:\Windows\System32\drivers\raspppoe.sys
09:25:33.0882 0x0bec C:\Windows\System32\drivers\raspppoe.sys - ok
09:25:33.0898 0x0bec [ 4EE609BFBD4D5316F662832680828FA6, 21E1DAEC14E1AE657B7C66E29F84C67C1DB56BEFF17ED1758C2BA22C4F637B16 ] C:\Windows\System32\shell32.dll
09:25:33.0898 0x0bec C:\Windows\System32\shell32.dll - ok
09:25:33.0898 0x0bec [ 27CC19E81BA5E3403C48302127BDA717, C580FC552DDF9C163FC325B38B05C06FFD696495E4C01514BCD6346CFE4F0B40 ] C:\Windows\System32\drivers\raspptp.sys
09:25:33.0898 0x0bec C:\Windows\System32\drivers\raspptp.sys - ok
09:25:33.0898 0x0bec [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] C:\Windows\System32\drivers\rassstp.sys
09:25:33.0898 0x0bec C:\Windows\System32\drivers\rassstp.sys - ok
09:25:33.0913 0x0bec [ 15BDC173EB5FA4F92B67D9FFB269A6EA, 3AD223CEA07093E42D37FDB81D0E045FFD724D7DEDDCC5A70631481A49D3D7A0 ] C:\Windows\System32\shlwapi.dll
09:25:33.0913 0x0bec C:\Windows\System32\shlwapi.dll - ok
09:25:33.0913 0x0bec [ 39570395292A4702FDE94C345DF0C39E, B75C8AE52B1A22E6FEEAE392B77506500AA0DFE86167941AAA1E68F262CE7106 ] C:\Windows\System32\iertutil.dll
09:25:33.0913 0x0bec C:\Windows\System32\iertutil.dll - ok
09:25:33.0913 0x0bec [ 6DF46D2BD74E3DA1B45F08F10D172732, 2DC945F6F2C4A82189BC7DA2FCBB7D9A0E2588A909539249E55BA82468E0C677 ] C:\Windows\System32\advapi32.dll
09:25:33.0929 0x0bec C:\Windows\System32\advapi32.dll - ok
09:25:33.0929 0x0bec [ 3E099CC843C4233E5AF147C8EA8BA32B, 238EEFDB5B98A15439BC2192BCD36F46A976D1CB56C51B9B9D9D2E010C61A5DA ] C:\Windows\System32\drivers\ks.sys
09:25:33.0929 0x0bec C:\Windows\System32\drivers\ks.sys - ok
09:25:33.0929 0x0bec [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] C:\Windows\System32\drivers\swenum.sys
09:25:33.0929 0x0bec C:\Windows\System32\drivers\swenum.sys - ok
09:25:33.0944 0x0bec [ 72D7B3EA16946E8F0CF7458150031CC6, 350ED7B07948C716D2CE51F324171942C534E875FBF5492250A5385B75176374 ] C:\Windows\System32\user32.dll
09:25:33.0944 0x0bec C:\Windows\System32\user32.dll - ok
09:25:33.0944 0x0bec [ D87E1E59C73C1F98D5DED5B3850C40F5, 536419BFF9F877D4314B5D0C045D9A6E729489C389863FADF07E382050BC84FD ] C:\Windows\System32\psapi.dll
09:25:33.0944 0x0bec C:\Windows\System32\psapi.dll - ok
09:25:33.0944 0x0bec [ 690637129A0DD2DB8DED8B6B17EED0AB, D0B85C3674FC83964E97B0352D4F30A49D89F2BD1C76B7FAEC4991EDD94227FF ] C:\Windows\System32\urlmon.dll
09:25:33.0944 0x0bec C:\Windows\System32\urlmon.dll - ok
09:25:33.0960 0x0bec [ F94B8644F3AFE040EC6E1B6FBC9EFAA9, 5BEC7DBD63AA8AC19FCA7AF6AD751C683911964FE5268D2C73DF42C3C48147A7 ] C:\Windows\System32\comdlg32.dll
09:25:33.0960 0x0bec C:\Windows\System32\comdlg32.dll - ok
09:25:33.0960 0x0bec [ 7083F463788CB34FCC42F565D56F89E8, 43876B0BD4D8E94D9234D9726B0B492C9EB0F66A6951861DF7148C16AF7EA09D ] C:\Windows\System32\ws2_32.dll
09:25:33.0960 0x0bec C:\Windows\System32\ws2_32.dll - ok
09:25:33.0960 0x0bec [ 5B4B379AD10DEDA4EDA01B8C6961B193, 48EEBACBC5C8E1C12B72D0D5698BC33AE5F49D80C0E9C437AC6B0FCA4FBD7231 ] C:\Windows\System32\kernel32.dll
09:25:33.0960 0x0bec C:\Windows\System32\kernel32.dll - ok
09:25:33.0976 0x0bec [ 7319BB10FA1F86E49E3DCF4136F6C957, 60DE43AB267FD41C9804369B569139ADD30ED4E295C425F44FC04D3FCC95FCA2 ] C:\Windows\System32\msvcrt.dll
09:25:33.0976 0x0bec C:\Windows\System32\msvcrt.dll - ok
09:25:33.0976 0x0bec [ 044FE45FFD6AD40E3BBBE60B7F41BABE, A1688A5E6E0F7037C850699462C2655006A7D873C97F9AB406C59D81749B6F09 ] C:\Windows\System32\nsi.dll
09:25:33.0976 0x0bec C:\Windows\System32\nsi.dll - ok
09:25:33.0976 0x0bec [ AA2C08CE85653B1A0D2E4AB407FA176C, 83DFD0C119B20AEDB07114C9D1CF9CE2DFA938D0F1070256B0591A9E2C3997FA ] C:\Windows\System32\imm32.dll
09:25:33.0976 0x0bec C:\Windows\System32\imm32.dll - ok
09:25:33.0991 0x0bec [ E5CBF5F8623BBD1DB7B8148A66F6EBA4, 533021C8FAB7C6FA34F57350308F30B55620AFFABCBA9A624039A1B07AD3E94F ] C:\Windows\System32\Wldap32.dll
09:25:33.0991 0x0bec C:\Windows\System32\Wldap32.dll - ok
09:25:33.0991 0x0bec [ 48C903068B6BDAB5EF650B9CBEE85295, 69FF82F689ABBDD66E48D27F40DEE69F96C4E1E8193F78A12911C8DB5D0D1939 ] C:\Windows\System32\rpcrt4.dll
09:25:33.0991 0x0bec C:\Windows\System32\rpcrt4.dll - ok
09:25:33.0991 0x0bec [ 28C0B5024F5C5A438E78B188CFC81B7F, AB81FB63F2908CE316B45609077ACBD85F4B2AAD1606B1E9030F06DB82EDDFAD ] C:\Windows\System32\normaliz.dll
09:25:33.0991 0x0bec C:\Windows\System32\normaliz.dll - ok
09:25:34.0007 0x0bec [ 2EC1645863B2C0598227D99C13E231DB, 408734C69913DDC48C2413E76E602863C26A64FE315329AC6FE42B21CDBECA81 ] C:\Windows\System32\oleaut32.dll
09:25:34.0007 0x0bec C:\Windows\System32\oleaut32.dll - ok
09:25:34.0007 0x0bec [ E1B1255D3A4B3367FE4E9C71E62E3B5A, DBFE4268D8365D97ED948BC56EBC886B4BF2684F6A31FAC7ECEA3B289F13906D ] C:\Windows\System32\gdi32.dll
09:25:34.0007 0x0bec C:\Windows\System32\gdi32.dll - ok
09:25:34.0022 0x0bec [ F7CE0C81C545364020ED8203CF0A633E, 24B47A7492B7048096AF87E26786E8108455ADBD1A374B6A0466DE008505B8A9 ] C:\Windows\System32\difxapi.dll
09:25:34.0022 0x0bec C:\Windows\System32\difxapi.dll - ok
09:25:34.0022 0x0bec [ A655878D5E5F1D14B006313CBB58A041, B984CEF944140322952985CD6E79F92383D328BB5483CA779E526E54BEA4FD2A ] C:\Windows\System32\imagehlp.dll
09:25:34.0022 0x0bec C:\Windows\System32\imagehlp.dll - ok
09:25:34.0022 0x0bec [ C431EAF5CAA1C82CAC2534A2EAB348A3, ADDF850128DC675E67FABA9A3D0D27E684F01F733962CA22927BB94503549E44 ] C:\Windows\System32\msctf.dll
09:25:34.0022 0x0bec C:\Windows\System32\msctf.dll - ok
09:25:34.0038 0x0bec [ B1037F0131C9A010D611F6914E03CD92, E0FC5DBFBDE4FDEEEE9FE24AF05A0DCE1BD83B091F4C252FD0F2DF6890977E05 ] C:\Windows\System32\wininet.dll
09:25:34.0038 0x0bec C:\Windows\System32\wininet.dll - ok
09:25:34.0038 0x0bec [ D202223587518B13D72D68937B7E3F70, 9DB971B866D058ADBB518DD99B87C5DB8DD1E7C9073755B989AE7E9FB62901E8 ] C:\Windows\System32\lpk.dll
09:25:34.0038 0x0bec C:\Windows\System32\lpk.dll - ok
09:25:34.0054 0x0bec [ 6A4EA4C29FBF78112AE20013FB71E9C1, 2FA53B8F98F2E8AEF50880AF1C64664A4FD1F38F47779DC6476F50907B685FF2 ] C:\Windows\System32\setupapi.dll
09:25:34.0054 0x0bec C:\Windows\System32\setupapi.dll - ok
09:25:34.0054 0x0bec [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] C:\Windows\System32\drivers\circlass.sys
09:25:34.0054 0x0bec C:\Windows\System32\drivers\circlass.sys - ok
09:25:34.0054 0x0bec [ EAB6C35E62B1B0DB0D1B48B671D3A117, E65034BF757AE4D21F69D7A91A7990E326A29A0CE9F871FD704B5E6CCC821FF0 ] C:\Windows\System32\drivers\umbus.sys
09:25:34.0054 0x0bec C:\Windows\System32\drivers\umbus.sys - ok
09:25:34.0069 0x0bec [ 7E8AB50AB7F2F81F30DCC8A98025B73A, EA684B86B6C268D95FDB775E4E42EA00BB253F75F44477F6D7761EF6DA315AF4 ] C:\Windows\System32\comctl32.dll
09:25:34.0069 0x0bec C:\Windows\System32\comctl32.dll - ok
09:25:34.0069 0x0bec [ 4D7D93115F537B2E2814AC8E7F1F06B4, E88D9B56B7D3D7242636AD47A28981D106782C80A8689215375D1A8DA1AC2C8B ] C:\Windows\System32\wintrust.dll
09:25:34.0069 0x0bec C:\Windows\System32\wintrust.dll - ok
09:25:34.0069 0x0bec [ D1598B80C58017A7DCABCF7F0787289D, 2B8126DADD7CAAD0CA951700CF1F1E62E5468F4456EB092CBEF5D53F875ED2A6 ] C:\Windows\System32\KernelBase.dll
09:25:34.0069 0x0bec C:\Windows\System32\KernelBase.dll - ok
09:25:34.0085 0x0bec [ 15B740D94BAD25467A297E75124D7EE2, 7535F154267573CEC7C5ADCF101F2F42F258B202E7D0FE71660E8516478B258B ] C:\Windows\System32\crypt32.dll
09:25:34.0085 0x0bec C:\Windows\System32\crypt32.dll - ok
09:25:34.0085 0x0bec [ D05E03C1B2824236531F5E37334B6A8A, 4C79F02AA9F4C36B5A463B71A715523B5D4860B28A40840E54C1C4C5685018C6 ] C:\Windows\System32\cfgmgr32.dll
09:25:34.0085 0x0bec C:\Windows\System32\cfgmgr32.dll - ok
09:25:34.0085 0x0bec [ 06FEC9E8117103BB1141A560E98077DA, C5E61B11DDBBBBBA3D9488970524F0975EA5FBDF16E2FA31F579F8BFA48353B1 ] C:\Windows\System32\devobj.dll
09:25:34.0085 0x0bec C:\Windows\System32\devobj.dll - ok
09:25:34.0100 0x0bec [ E53F0B4AEF9C87A7EBEB9D380CA148FD, 581FDAECA43EED2FC72272710E65EECB59FD0B85960DE92BBE95720D2B494112 ] C:\Windows\System32\msasn1.dll
09:25:34.0100 0x0bec C:\Windows\System32\msasn1.dll - ok
09:25:34.0100 0x0bec [ 4C9042B8DF86C1E8E6240C218B99B39B, D286633311C047B9C4FB1AA89D7B02B9F943FDDCE473255DC8E14DD07CC9B292 ] C:\Windows\System32\drivers\usbhub.sys
09:25:34.0100 0x0bec C:\Windows\System32\drivers\usbhub.sys - ok
09:25:34.0100 0x0bec [ 9C278785347BCC991F8EA2999D90F58D, EA680C3642A6ABF627415AEE019956FAC702DC6A8F4B4D0FC8A4FB21EADD3896 ] C:\Windows\SysWOW64\normaliz.dll
09:25:34.0100 0x0bec C:\Windows\SysWOW64\normaliz.dll - ok
09:25:34.0116 0x0bec [ 659B74FB74B86228D6338D643CD3E3CF, 83D741B7A2A204A661A80C226212749F514800060D05E217FA6DC14D62F38F80 ] C:\Windows\System32\drivers\ndproxy.sys
09:25:34.0116 0x0bec C:\Windows\System32\drivers\ndproxy.sys - ok
09:25:34.0116 0x0bec [ 21D26064AEDB4988F785BB4A3A2C051E, F6FA2CA351B24DA19645EB542596C82F9A68D84CC7CCFE6F9FC15CE2CE4D1961 ] C:\Windows\System32\drivers\drmk.sys
09:25:34.0116 0x0bec C:\Windows\System32\drivers\drmk.sys - ok
09:25:34.0116 0x0bec [ 04A5815DF7E8B037DF674D3CCACC0C31, BC49D6C135C50254BF952B790046BE364DFDDA786F1EACEE4CC8880B764B7A92 ] C:\Windows\System32\drivers\AtiHdmi.sys
09:25:34.0116 0x0bec C:\Windows\System32\drivers\AtiHdmi.sys - ok
09:25:34.0132 0x0bec [ 32E11315B5126921FFD9074840EF13D3, FC7C0E1CC447FDD89C0FA5EBFD04CCEABFB27751AB57A7176F12BD0D35306E1C ] C:\Windows\System32\drivers\portcls.sys
09:25:34.0132 0x0bec C:\Windows\System32\drivers\portcls.sys - ok
09:25:34.0132 0x0bec [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] C:\Windows\System32\drivers\ksthunk.sys
09:25:34.0132 0x0bec C:\Windows\System32\drivers\ksthunk.sys - ok
09:25:34.0147 0x0bec [ ED1722F43CE61409EF68340402D6267D, 2FC14738C8F268DE4539064DE6D8954B6C9CD4ADE1139E2C74BD3486BF9A0861 ] C:\Windows\System32\drivers\stwrt64.sys
09:25:34.0147 0x0bec C:\Windows\System32\drivers\stwrt64.sys - ok
09:25:34.0147 0x0bec [ 49EE2E52E6CD03947DAD72F65367BE06, 933097B903B13767DD49192E7BF8EAABC5BADFDAF8B31B806AA65C533F24B686 ] C:\Windows\System32\drivers\hidparse.sys
09:25:34.0147 0x0bec C:\Windows\System32\drivers\hidparse.sys - ok
09:25:34.0147 0x0bec [ 685FEC2407FC121EB937CB658B3C0F35, 9357476FB5722A15B109FAC45F8110BD17BEBFB941BB2770808882805935B9C1 ] C:\Windows\System32\drivers\hidclass.sys
09:25:34.0147 0x0bec C:\Windows\System32\drivers\hidclass.sys - ok
09:25:34.0163 0x0bec [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] C:\Windows\System32\drivers\hidir.sys
09:25:34.0163 0x0bec C:\Windows\System32\drivers\hidir.sys - ok
09:25:34.0163 0x0bec [ 6DEF98F8541E1B5DCEB2C822A11F7323, F6EE4A7A6A7A1F243D32CA9241CA4816C92EB7BF2AADDD09234968C2CAAE6C0D ] C:\Windows\System32\drivers\kbdhid.sys
09:25:34.0163 0x0bec C:\Windows\System32\drivers\kbdhid.sys - ok
09:25:34.0178 0x0bec [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] C:\Windows\System32\drivers\mouhid.sys
09:25:34.0178 0x0bec C:\Windows\System32\drivers\mouhid.sys - ok
09:25:34.0178 0x0bec [ BF24D6F2ED97FE830BFD52B246F98E67, 6BBF4C4221A245462EF653798F6B416EEB12594AD1CB4E8BC8908A8CB2F53384 ] C:\Windows\System32\drivers\dxapi.sys
09:25:34.0178 0x0bec C:\Windows\System32\drivers\dxapi.sys - ok
09:25:34.0178 0x0bec [ CBEF2EB83438ED9FC39411CC8378B0E7, C96B771D75A971301275496185E3E6CF7F68240CC78925631F72B78252F0FDB6 ] C:\Windows\System32\win32k.sys
09:25:34.0178 0x0bec C:\Windows\System32\win32k.sys - ok
09:25:34.0194 0x0bec [ 60C2862B4BF0FD9F582EF344C2B1EC72, CB1C6018FC5C15483AC5BB96E5C2E2E115BB0C0E1314837D77201BAB37E8C03A ] C:\Windows\System32\csrss.exe
09:25:34.0194 0x0bec C:\Windows\System32\csrss.exe - ok
09:25:34.0194 0x0bec [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\System32\basesrv.dll
09:25:34.0194 0x0bec C:\Windows\System32\basesrv.dll - ok
09:25:34.0194 0x0bec [ 0D7598360DF6C8637E6D678C20B5C47C, 0EC86D578C0B1703B89C24AE0FEE2CD91DD869BD4A97949A4B29AE57D490F890 ] C:\Windows\System32\csrsrv.dll
09:25:34.0194 0x0bec C:\Windows\System32\csrsrv.dll - ok
09:25:34.0210 0x0bec [ 457B44AB6D502E55F64A867D4F35C76C, 95FEC45E28DF394E778DA37719F7D579920531AD568E1C290B7F42CB03BEAA2C ] C:\Windows\System32\winsrv.dll
09:25:34.0210 0x0bec C:\Windows\System32\winsrv.dll - ok
09:25:34.0210 0x0bec [ B3BF6B5B50006DEF50B66306D99FCF6F, D39A1DEBE7C464922919826D15199ED25E263BF58633593DD412D78F98921417 ] C:\Windows\System32\drivers\hidusb.sys
09:25:34.0210 0x0bec C:\Windows\System32\drivers\hidusb.sys - ok
09:25:34.0225 0x0bec [ B26AFB54A534D634523C4FB66765B026, A219C9AE32D040BEA4DD69C2C826B1C52BACE26BEBFEE799BD56DFD442C5E0D8 ] C:\Windows\System32\drivers\usbccgp.sys
09:25:34.0225 0x0bec C:\Windows\System32\drivers\usbccgp.sys - ok
09:25:34.0225 0x0bec [ D501E12614B00A3252073101D6A1A74B, DFA3A83978125B3CE45C71DD9069E8A7938366D0F4B4B2401CDD07251253FA8C ] C:\Windows\System32\drivers\usbvideo.sys
09:25:34.0225 0x0bec C:\Windows\System32\drivers\usbvideo.sys - ok
09:25:34.0225 0x0bec [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] C:\Windows\System32\drivers\monitor.sys
09:25:34.0225 0x0bec C:\Windows\System32\drivers\monitor.sys - ok
09:25:34.0241 0x0bec [ F29FE765E1448EF371CFE05BFAC74ADB, F251581222D78543272FD4B14A6A59F4B0E0CC44A5FCBCF56DE4CA5783F78A75 ] C:\Windows\System32\tsddd.dll
09:25:34.0241 0x0bec C:\Windows\System32\tsddd.dll - ok
09:25:34.0241 0x0bec [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\System32\sxssrv.dll
09:25:34.0241 0x0bec C:\Windows\System32\sxssrv.dll - ok
09:25:34.0256 0x0bec [ 94355C28C1970635A31B3FE52EB7CEBA, C4E98F07170CEC69CACDD5CEDB8927E48A2A299CB1B8CDA87526E768AF6174F0 ] C:\Windows\System32\wininit.exe
09:25:34.0256 0x0bec C:\Windows\System32\wininit.exe - ok
09:25:34.0256 0x0bec [ 2C942733A5983DD4502219FF37C7EBC7, 34B20B6B0D7274E4B5B783F1D2345BC3DD9888964D5C2C65712F041A00CF5B45 ] C:\Windows\System32\profapi.dll
09:25:34.0256 0x0bec C:\Windows\System32\profapi.dll - ok
09:25:34.0256 0x0bec [ C03E117AA19C7D59B9783C06DB9DE79C, 07C8F607B677557A6F197D406CE8B2AE9D69FE4716AE7071C3A56ECE101DDB66 ] C:\Windows\System32\cdd.dll
09:25:34.0256 0x0bec C:\Windows\System32\cdd.dll - ok
09:25:34.0272 0x0bec [ F4389DA7DBDA2E7D292D360CF8E400C7, EBB50703FA573932727FBDCB407D9D5945BDC052CEFADED8237185063DD3A4AE ] C:\Windows\System32\RpcRtRemote.dll
09:25:34.0272 0x0bec C:\Windows\System32\RpcRtRemote.dll - ok
09:25:34.0272 0x0bec [ B9A047D231D32FDF5AF2F281E4326A9D, 814DC543DBBA137D478C51248A99ACC2485744F7BDC7A382B03B8912C0EB73EE ] C:\Windows\System32\KBDUS.DLL
09:25:34.0272 0x0bec C:\Windows\System32\KBDUS.DLL - ok
09:25:34.0272 0x0bec [ B26B1801356760841C3BC69F9F91537F, 83B9DF333E36C09E81D44E12AE5BE14650126FDA0CF4A0EA853BF40C5780EF81 ] C:\Windows\System32\WlS0WndH.dll
09:25:34.0272 0x0bec C:\Windows\System32\WlS0WndH.dll - ok
09:25:34.0288 0x0bec [ 456C92A9D8DB51B9938A6234BBC65FC9, A20EF19E25384B34D3FE997099DD71EA595F3ACDA0F7C56695DC48ADFA54F5B8 ] C:\Windows\System32\sxs.dll
09:25:34.0288 0x0bec C:\Windows\System32\sxs.dll - ok
09:25:34.0288 0x0bec [ 784FA3DF338E2E8F5F0389D6FAC428AF, 9C8AA0CFDEB9E38AAF8EB08626070E0F0364F4F8A793CFE3532EC6C007980C34 ] C:\Windows\System32\cryptbase.dll
09:25:34.0288 0x0bec C:\Windows\System32\cryptbase.dll - ok
09:25:34.0303 0x0bec [ 01A465AC251BCCF6037DF2EF28AA4292, 49C0E1B5B0B7FAACF226C8DA15F518BEAE6B868AB079023B9181A5039DD5E456 ] C:\Windows\System32\apphelp.dll
09:25:34.0303 0x0bec C:\Windows\System32\apphelp.dll - ok
09:25:34.0303 0x0bec [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\System32\services.exe
09:25:34.0303 0x0bec C:\Windows\System32\services.exe - ok
09:25:34.0319 0x0bec [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] C:\Windows\System32\lsass.exe
09:25:34.0319 0x0bec C:\Windows\System32\lsass.exe - ok
09:25:34.0319 0x0bec [ 04FCA22B77A2E37332CC8226187AF87B, 6B085DB5C2EC21D2ED7BE842E7842FCC3530D1828FBE28C16E61F7E12B27833B ] C:\Windows\System32\lsm.exe
09:25:34.0319 0x0bec C:\Windows\System32\lsm.exe - ok
09:25:34.0319 0x0bec [ 18367866684A72C5188D50AC1174F1B7, C51505160876F1D7D7004CB5CE8FBB74E21E4675933629BD7C2B8D6F361A2D97 ] C:\Windows\System32\sspisrv.dll
09:25:34.0319 0x0bec C:\Windows\System32\sspisrv.dll - ok
09:25:34.0334 0x0bec [ DC4350DBB5307A503ED3858938A1B1EE, A0C02BC9413AACEEFA1583643FA823C3DD9AE720828E8B67F9AA707D897956A3 ] C:\Windows\System32\lsasrv.dll
09:25:34.0334 0x0bec C:\Windows\System32\lsasrv.dll - ok
09:25:34.0334 0x0bec [ 2A0EA951A326C2E78AF86E2F9704327E, 2224C1A97F2FAE0B307DFDAFC5BB2BB051A747939A2EA7AB19820D6537F9555F ] C:\Windows\System32\sspicli.dll
09:25:34.0334 0x0bec C:\Windows\System32\sspicli.dll - ok
09:25:34.0350 0x0bec [ E914A50A151DFFE63D3935226DB5E2C1, 7DCCE4060344E1C771679F1C20378A0BEB3C1F06DB684072F07B98921A62A299 ] C:\Windows\System32\scext.dll
09:25:34.0350 0x0bec C:\Windows\System32\scext.dll - ok
09:25:34.0350 0x0bec [ 68083118797CAF30FB2EA3E71494D67E, 5F1BCDFCB00A20CD60CBC70A2FD97405EF0F7173DD0E404BBA7B06D39DB37364 ] C:\Windows\System32\sysntfy.dll
09:25:34.0350 0x0bec C:\Windows\System32\sysntfy.dll - ok
09:25:34.0350 0x0bec [ 9F5225F41D5474A651384C088D9FF502, 75EC20BFB470EA1F1ECC6111E4893C0C34CCA859AEBAC8B3A88F4CEF53E11C99 ] C:\Windows\System32\secur32.dll
09:25:34.0350 0x0bec C:\Windows\System32\secur32.dll - ok
09:25:34.0366 0x0bec [ DEE7267C5D232A3B816866872CE199E6, A1994FD37667C52E7CBF873514C190DA61A3D1349786D187BFAE0006F61799AE ] C:\Windows\System32\wmsgapi.dll
09:25:34.0366 0x0bec C:\Windows\System32\wmsgapi.dll - ok
09:25:34.0366 0x0bec [ 941AF3C8B0DE1B359BE22DD3288A8C8E, 8D1081C58097C68939955E3C700B1B9764212A6A70BEEE353985512F39DE2EBF ] C:\Windows\System32\scesrv.dll
09:25:34.0366 0x0bec C:\Windows\System32\scesrv.dll - ok
09:25:34.0381 0x0bec [ D23371AB9607651937C7641A38CD52BC, 00ED1F9EC0B57A3E970F707C3B91CC68F874C0F0073CEA9FAD09EA2515B751C0 ] C:\Windows\System32\srvcli.dll
09:25:34.0381 0x0bec C:\Windows\System32\srvcli.dll - ok
09:25:34.0381 0x0bec [ B160ADAEFC76031D92C4FBAC0918B033, A3A0D5AE3F15D6275005EA104D992A3A84B0AC0CA2E629716065DB715CCA856B ] C:\Windows\System32\samsrv.dll
09:25:34.0381 0x0bec C:\Windows\System32\samsrv.dll - ok
09:25:34.0397 0x0bec [ 3A061472B38233BAFF9CFEFF2E49C46B, DF29B14C8D22A8A16AA336A09A6152E2C7FCA6CAF4E76F0C5DCB55BEF9D00515 ] C:\Windows\System32\cryptdll.dll
09:25:34.0397 0x0bec C:\Windows\System32\cryptdll.dll - ok
09:25:34.0397 0x0bec [ 3C073B0C596A0AF84933E7406766B040, 4698BBA678F553E15AD4B07AD7FB236281F872DEFEE97BFD637114476C8F97B3 ] C:\Windows\System32\wevtapi.dll
09:25:34.0397 0x0bec C:\Windows\System32\wevtapi.dll - ok
09:25:34.0412 0x0bec [ 86FE1B1F8FD42CD0DB641AB1CDB13093, 8C4BB4415105CE82FFFE658879EAE9D259A24C0F6DFC7D25507352DC99241BE2 ] C:\Windows\System32\cngaudit.dll
09:25:34.0412 0x0bec C:\Windows\System32\cngaudit.dll - ok
09:25:34.0412 0x0bec [ 7FBEBD2229EA5FD48D41B199EC2D541C, A465975D445A8D50CAF3EF29BD33354B320D11173C127BE30D5EBBFF7008CDCE ] C:\Windows\System32\authz.dll
09:25:34.0412 0x0bec C:\Windows\System32\authz.dll - ok
09:25:34.0428 0x0bec [ 2E8C52A0EC788D90FA35D9507D828771, DD5AAA10E075F209D9827C7A192AD5645D1156C149DB9B5AC1EF7B5E0B5F11DE ] C:\Windows\System32\ncrypt.dll
09:25:34.0428 0x0bec C:\Windows\System32\ncrypt.dll - ok
09:25:34.0428 0x0bec [ B9A95365E52F421A20E1501935FADDA5, DDB4CB575139233EFAF2C59B7E9B04AF36BBCCC63190181F3B2A7E6BFC86E77E ] C:\Windows\System32\bcrypt.dll
09:25:34.0428 0x0bec C:\Windows\System32\bcrypt.dll - ok
09:25:34.0444 0x0bec [ 02B64609F865A39365FF88580DF11738, 2F676B93898E1B6131AF6227BB7AB731EB9C29477F9BD4C2C60F0FC1E35CD968 ] C:\Windows\System32\msprivs.dll
09:25:34.0444 0x0bec C:\Windows\System32\msprivs.dll - ok
09:25:34.0444 0x0bec [ B561B451320B0B40908A8BFD81705262, D9E6B0C33B03D7648A8229FB5FE06332141F1F8E9F73790D4D7D621DC53EF9D3 ] C:\Windows\System32\netjoin.dll
09:25:34.0444 0x0bec C:\Windows\System32\netjoin.dll - ok
09:25:34.0459 0x0bec [ 50532FCD7ECF02DD169CE5C485F02534, 8EE5D9D0EA53DC72BCC300692E521ACADD56AB09BFA3E78149D8B5A90648512C ] C:\Windows\System32\negoexts.dll
09:25:34.0459 0x0bec C:\Windows\System32\negoexts.dll - ok
09:25:34.0459 0x0bec [ F5D06621DF3311120C778935D3219021, FCB711351F7795A2541C82F20285C1D11A576641EB8C5E31D125C2EB929992D0 ] C:\Windows\System32\kerberos.dll
09:25:34.0459 0x0bec C:\Windows\System32\kerberos.dll - ok
09:25:34.0475 0x0bec [ 132328DF455B0028F13BF0ABEE51A63A, 09AB627A6155BD80FB63960182550FD0A58BA27C29187958082264F21FA35F38 ] C:\Windows\System32\winlogon.exe
09:25:34.0475 0x0bec C:\Windows\System32\winlogon.exe - ok
09:25:34.0475 0x0bec [ D0C2FBB6D97416B0166478FC7AE2B212, 7EAB6C37F0A845E645CA44CC060AC6C56E386C7EF7A64716C6786C9602AD8C9D ] C:\Windows\System32\cryptsp.dll
09:25:34.0475 0x0bec C:\Windows\System32\cryptsp.dll - ok
09:25:34.0490 0x0bec [ D8C88512BA9544AE1CC2034F50ECFA12, 99CFB478DF31214E98CAB81EFF7346500579AE262100BD418F3C9D47437F4413 ] C:\Windows\System32\winsta.dll
09:25:34.0490 0x0bec C:\Windows\System32\winsta.dll - ok
09:25:34.0490 0x0bec [ FC76FE3C1E1FDB761244D4F74EF560FD, 85D7BD8887E53F7E1C37D2EC3964D714C0939ED5D45F95332F425341AA181C19 ] C:\Windows\System32\mswsock.dll
09:25:34.0490 0x0bec C:\Windows\System32\mswsock.dll - ok
09:25:34.0506 0x0bec [ EC7CBFF96B05ECF3D366355B3C64ADCF, F69ED45EBEDCA9CF000AC03281F0EC2C351F98513FBA90E63394E4E561D6C7A2 ] C:\Windows\System32\wship6.dll
09:25:34.0506 0x0bec C:\Windows\System32\wship6.dll - ok
09:25:34.0506 0x0bec [ B2A020ADF96AB10EF3EF269849A726C8, 0F1B0027FA118A51891952D8ED1C0A8BEDBA3E2E18BCFC267A4402FD051FA942 ] C:\Windows\System32\msv1_0.dll
09:25:34.0506 0x0bec C:\Windows\System32\msv1_0.dll - ok
09:25:34.0522 0x0bec [ 956D030D375F207B22FB111E06EF9C35, D2C6B0C0C9E951F6715252C54A620CF6AF1A3845014035334C92B3DDDEFD52E5 ] C:\Windows\System32\netlogon.dll
09:25:34.0522 0x0bec C:\Windows\System32\netlogon.dll - ok
09:25:34.0522 0x0bec [ 05A2D26ACF0939A4E97160315F1FA12E, 0F387E5719020F7E25EF58E71576397CBF61A3712093AD433E58BBB905577EAD ] C:\Windows\System32\dnsapi.dll
09:25:34.0522 0x0bec C:\Windows\System32\dnsapi.dll - ok
09:25:34.0537 0x0bec [ 8CE22E63F08613036DF8C7B00FBDF36B, 442DDE1C1F1073BFB1730D3B258D249DD6FFAED7D2452493C2E1D4CF48F5376C ] C:\Windows\System32\logoncli.dll
09:25:34.0537 0x0bec C:\Windows\System32\logoncli.dll - ok
09:25:34.0537 0x0bec [ 5A148B1574BE77742D337EC81C23FC7A, 12FFD0093228C39999A1A360CD2B743660D254AF4423E2884BDEC814EBB7783B ] C:\Windows\System32\schannel.dll
09:25:34.0537 0x0bec C:\Windows\System32\schannel.dll - ok
09:25:34.0553 0x0bec [ 95FB6CA4374E343DDD653FCC43F9D26B, 911A240F9C1DD155C2B1CD85FE4A8044EB2816AF166CD8CB66EEB905CA352881 ] C:\Windows\System32\wdigest.dll
09:25:34.0553 0x0bec C:\Windows\System32\wdigest.dll - ok
09:25:34.0553 0x0bec [ 5D8874A8C11DDDDE29E12DE0E2013493, 3E9A57137BF622AF83E3E4D58971E2C0200559CCA7545D16CF263AA03EE9C7D2 ] C:\Windows\System32\rsaenh.dll
09:25:34.0553 0x0bec C:\Windows\System32\rsaenh.dll - ok
09:25:34.0553 0x0bec [ 0DEFD5FBF801DD8F83BC0ED09861A8EC, A00E0CCDE4270452139C37E1599F3ED3ACCF02BEE371F5534E17E93DB46ED082 ] C:\Windows\System32\TSpkg.dll
09:25:34.0568 0x0bec C:\Windows\System32\TSpkg.dll - ok
09:25:34.0568 0x0bec [ E08088A97F95345E181C3DFCE2C615EF, DEF3B087DF5E10E4F8418029DB6E82546E62FEFA39694B7BD6A48CE8AAFD1B96 ] C:\Windows\System32\pku2u.dll
09:25:34.0568 0x0bec C:\Windows\System32\pku2u.dll - ok
09:25:34.0568 0x0bec [ DA090E97E57DCB48888015B5D3C749CD, 9C351013A7791CB0998E3E2519A460CBC6EED5E595EEA7A3394DA74738A7132E ] C:\Windows\System32\bcryptprimitives.dll
09:25:34.0568 0x0bec C:\Windows\System32\bcryptprimitives.dll - ok
09:25:34.0584 0x0bec [ 90BDEFC5DF334E5100EAA781D798DE1A, F48B650D811B6D57D2252E326C0C9CC74534BE9D510E7D3403F91D1C5C36281E ] C:\Windows\System32\efslsaext.dll
09:25:34.0584 0x0bec C:\Windows\System32\efslsaext.dll - ok
09:25:34.0584 0x0bec [ 9301B8810B2DA4EB6AD55DB75FC1E339, 765D23BD3D5D8768550D82CFDBD26365E2AE896DE9E5F123CE4045BDF8E838BB ] C:\Windows\System32\credssp.dll
09:25:34.0584 0x0bec C:\Windows\System32\credssp.dll - ok
09:25:34.0584 0x0bec [ 7CC7DF5B654DA579613F811D8C637E29, 70EAC059C1ED814810C75DBB9F4D188428CB942FFD8869D692158D384EB6BB35 ] C:\Windows\System32\ubpm.dll
09:25:34.0584 0x0bec C:\Windows\System32\ubpm.dll - ok
09:25:34.0600 0x0bec [ 398712DDDAEFB85EDF61DF6A07B65C79, 08732BF5C5FFAF953FF4065AA5D35CFF797590E1C2CD12E4E923E932B5722A20 ] C:\Windows\System32\scecli.dll
09:25:34.0600 0x0bec C:\Windows\System32\scecli.dll - ok
09:25:34.0600 0x0bec [ C78655BC80301D76ED4FEF1C1EA40A7D, 93B2ED4004ED5F7F3039DD7ECBD22C7E4E24B6373B4D9EF8D6E45A179B13A5E8 ] C:\Windows\System32\svchost.exe
09:25:34.0600 0x0bec C:\Windows\System32\svchost.exe - ok
09:25:34.0600 0x0bec [ 23157D583244400E1D7FBAEE2E4B31B7, 4E8D93F746C727CE1A89B53FEFFCFB080AC3CC8F3CF2F8613E692E989794C52F ] C:\Windows\System32\umpnpmgr.dll
09:25:34.0600 0x0bec C:\Windows\System32\umpnpmgr.dll - ok
09:25:34.0615 0x0bec [ CD1B5AD07E5F7FEF30E055DCC9E96180, 63C58551F32B0B09377F64A6AE1FA81AF93B8A707A57A8C18722086906AD3046 ] C:\Windows\System32\devrtl.dll
09:25:34.0615 0x0bec C:\Windows\System32\devrtl.dll - ok
09:25:34.0615 0x0bec [ E6EB44ABAAF1F330119F854856C53EBE, 77279972FFBFA984578DD4F17EB615F5D2D93590AF3A9FEFEFDB9128206C9887 ] C:\Windows\System32\SPInf.dll
09:25:34.0615 0x0bec C:\Windows\System32\SPInf.dll - ok
09:25:34.0615 0x0bec [ 0776CF79590BDEF0A2728B0B9A813B96, 8205E0F3CC3DD8605769EC4DD85E6ACE89B219F62379C8FD74C62047BD339F22 ] C:\Windows\System32\userenv.dll
09:25:34.0615 0x0bec C:\Windows\System32\userenv.dll - ok
09:25:34.0631 0x0bec [ 9C9307C95671AC962F3D6EB3A4A89BAE, D1433791C9B8BCEEAD8937EC18D33E89E4E2012B5975228A8500FD141BC30078 ] C:\Windows\System32\gpapi.dll
09:25:34.0631 0x0bec C:\Windows\System32\gpapi.dll - ok
09:25:34.0631 0x0bec [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] C:\Windows\System32\umpo.dll
09:25:34.0631 0x0bec C:\Windows\System32\umpo.dll - ok
09:25:34.0631 0x0bec [ F6C011B46FAEEF33536B2E80F48B5CBE, BDD149D3D6F9F6C8F6F34C311219BE5618CEEFBC7D35E37473A47F1D5D015067 ] C:\Windows\System32\pcwum.dll
09:25:34.0631 0x0bec C:\Windows\System32\pcwum.dll - ok
09:25:34.0646 0x0bec [ 716175021BDA290504CE434273F666BC, FA18CA2D8A5F4335E051E2933147D3C1E7308F7D446E2AEB6596CDEF6E2AFC88 ] C:\Windows\System32\powrprof.dll
09:25:34.0646 0x0bec C:\Windows\System32\powrprof.dll - ok
09:25:34.0646 0x0bec [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] C:\Windows\System32\drivers\luafv.sys
09:25:34.0646 0x0bec C:\Windows\System32\drivers\luafv.sys - ok
09:25:34.0646 0x0bec [ 6A990AC8404F18F34016328843513AFC, 5B63CCF831B9806ED7ED509BAAF2EBFB7D261587FCC19749C3360CE5CE620910 ] C:\Windows\System32\drivers\mbam.sys
09:25:34.0646 0x0bec C:\Windows\System32\drivers\mbam.sys - ok
09:25:34.0662 0x0bec [ 7266972E86890E2B30C0C322E906B027, BFA30E85F5BD3AA933913BD7C6D2B5993DB7AFB0C98349B61A6BEF0BDC8A3680 ] C:\Windows\System32\rpcss.dll
09:25:34.0662 0x0bec C:\Windows\System32\rpcss.dll - ok
09:25:34.0662 0x0bec [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] C:\Windows\System32\RpcEpMap.dll
09:25:34.0662 0x0bec C:\Windows\System32\RpcEpMap.dll - ok
09:25:34.0662 0x0bec [ 16E964ABF6D1E0F0CC7822FCA9BA754D, 0E461387ACFD641DA22EE542A3C68AF5F7D3A7F967D974E3B198143D461ABE39 ] C:\Windows\System32\wshqos.dll
09:25:34.0662 0x0bec C:\Windows\System32\wshqos.dll - ok
09:25:34.0678 0x0bec [ 31559F3244C6BC00A52030CAA83B6B91, B2025742B5F0025ACE9821D5722DE3F997EEEAB21D2F381C9E307882DF422579 ] C:\Windows\System32\WSHTCPIP.DLL
09:25:34.0678 0x0bec C:\Windows\System32\WSHTCPIP.DLL - ok
09:25:34.0678 0x0bec [ 9AD9E06F8656F296D91FAE8EE5B95A27, 53384747D5864D699BCC4F48E0A5E656430EDAA65DCDAB4B11EA68FC7106459E ] C:\Windows\System32\FirewallAPI.dll
09:25:34.0678 0x0bec C:\Windows\System32\FirewallAPI.dll - ok
09:25:34.0678 0x0bec [ D0D8877969011D1B0ED9C3C55A9A9108, DFF41D12EA353DFACDF5C1C227D2D44D659EB8C484829651C90F8684CE2B9E49 ] C:\Windows\System32\atiesrxx.exe
09:25:34.0678 0x0bec C:\Windows\System32\atiesrxx.exe - ok
09:25:34.0693 0x0bec [ 93E6A39B1DB898F7C949FA5567E774CF, 914F12718CEF019DE2AB18776DD23C669F218B4FA2292BECFE34A95872040789 ] C:\Windows\System32\LogonUI.exe
09:25:34.0693 0x0bec C:\Windows\System32\LogonUI.exe - ok
09:25:34.0693 0x0bec [ BD3674BE7FC9D8D3732C83E8499576ED, E6716A5895D629263A4D21959F48840429AB6F4B55A5FA2663EE5E86C9CA2BF1 ] C:\Windows\System32\wtsapi32.dll
09:25:34.0693 0x0bec C:\Windows\System32\wtsapi32.dll - ok
09:25:34.0693 0x0bec [ BCF0A980D21711E47D0803BDB0E99CAD, CBC125C6F043584416BC20CB1F12B2BFDC6D99DAC942EDDA90754779C947E31A ] C:\Windows\System32\authui.dll
09:25:34.0693 0x0bec C:\Windows\System32\authui.dll - ok
09:25:34.0709 0x0bec [ 94E026870A55AAEAFF7853C1754091E9, B2F5D5629D12BDFA98DBED3898368F37D9009C7531B6909C7285A2C11C9A0F93 ] C:\Windows\System32\version.dll
09:25:34.0709 0x0bec C:\Windows\System32\version.dll - ok
09:25:34.0709 0x0bec [ 99ABDA9C92EC76CBAF52F00239D909C9, 2959EFBF1C597BABD5D934667255E7B8E098C4C7FEE9DED65C9D04ECA852D7A3 ] C:\Windows\System32\wevtsvc.dll
09:25:34.0709 0x0bec C:\Windows\System32\wevtsvc.dll - ok
09:25:34.0709 0x0bec [ DBA90306A721FB922FDACED9E9728C28, 9D1F36D8A17DABED318B3AC4940FF537FFF9C77F6E8CF0EB799A68F5B7B34EB8 ] C:\Windows\System32\cryptui.dll
09:25:34.0709 0x0bec C:\Windows\System32\cryptui.dll - ok
09:25:34.0724 0x0bec [ 07721A77180EDD4D39CCB865BF63C7FD, 9E8117E747C86154F98F2686D805A981029CC5D11AFB115A529429C9A4579BE5 ] C:\Windows\System32\audiosrv.dll
09:25:34.0724 0x0bec C:\Windows\System32\audiosrv.dll - ok
09:25:34.0724 0x0bec [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] C:\Windows\System32\mmcss.dll
09:25:34.0724 0x0bec C:\Windows\System32\mmcss.dll - ok
09:25:34.0724 0x0bec [ 78A1E65207484B7F8D3217507745F47C, 35F413ADB9D157F3666DD15DD58104D629CD9143198A1AB914B73A4A3C9903DD ] C:\Windows\System32\avrt.dll
09:25:34.0724 0x0bec C:\Windows\System32\avrt.dll - ok
09:25:34.0740 0x0bec [ F381975E1F4346DE875CB07339CE8D3A, 867BFC2E9A08E026289794019B8DE651A8604D06DD6A9BF166C29AFC24B6D26E ] C:\Windows\System32\profsvc.dll
09:25:34.0740 0x0bec C:\Windows\System32\profsvc.dll - ok
09:25:34.0740 0x0bec [ 810199DCC3BDC38304D7D649992EA7BC, B72D88A9F03D2BE65D45691AB643D11EC306E654AEB74C6610DC7331FE440110 ] C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\stacsv64.exe
09:25:34.0740 0x0bec C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\stacsv64.exe - ok
09:25:34.0740 0x0bec [ 227E2C382A1E02F8D4965E664D3BBE43, 1CFF20A8BF87ACE4FA4935EBEED72BFB1A1FE902A754899E2F50798D67DF5642 ] C:\Windows\System32\MMDevAPI.dll
09:25:34.0740 0x0bec C:\Windows\System32\MMDevAPI.dll - ok
09:25:34.0756 0x0bec [ 9110FFAD124283F37D38771BB60556AF, BB495FDF86B7C3DD7878C496090A624CE8FE68F61166C91A4C99EF1140F0AD23 ] C:\Windows\System32\dsound.dll
09:25:34.0756 0x0bec C:\Windows\System32\dsound.dll - ok
09:25:34.0756 0x0bec [ 588CD0C78A7FAAE4186B5EEA0AF3ED67, E957E4463D318A44BA5109EE3428624DE901C5FF2BA358986DF6C6F059DDBCC2 ] C:\Windows\System32\adtschema.dll
09:25:34.0756 0x0bec C:\Windows\System32\adtschema.dll - ok
09:25:34.0756 0x0bec [ C093E7835C1372D6D70A6675EDAA97B5, 644AC8EE600CD6A16BB6EE0C79EE128385E0C55FBD13CA18867D984F91B4ED99 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6\comctl32.dll
09:25:34.0756 0x0bec C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6\comctl32.dll - ok
09:25:34.0771 0x0bec [ B27EA141A7E748B607600A8551A44D5A, 551636B1E4A4D6CB21E243E2C01DDEA7CF5BACDD290B3A618DDD0055729F0F5E ] C:\Windows\System32\propsys.dll
09:25:34.0771 0x0bec C:\Windows\System32\propsys.dll - ok
09:25:34.0771 0x0bec [ EF2AE43BCD46ABB13FC3E5B2B1935C73, 81FC06F306F620845D7DD8D06E706309E70BC89B589C81F3478302A3F5F73431 ] C:\Windows\System32\winmm.dll
09:25:34.0771 0x0bec C:\Windows\System32\winmm.dll - ok
09:25:34.0787 0x0bec [ FE05D03B73000CFF476E1D29109F3A84, 7880B025413338A7B114BECB5DC67605FC7A97142C26FD12F765A64A21805842 ] C:\Program Files\Windows Defender\MpEvMsg.dll
09:25:34.0787 0x0bec C:\Program Files\Windows Defender\MpEvMsg.dll - ok
09:25:34.0787 0x0bec [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] C:\Windows\System32\netprofm.dll
09:25:34.0787 0x0bec C:\Windows\System32\netprofm.dll - ok
09:25:34.0787 0x0bec [ 06CA6CB594D4F56EA23311DD3C86E551, 2DA3FC4F1E5DC104EAA46EEEFD66B3845B360CA7A4E3394C02830223C37A88A0 ] C:\Windows\System32\stapi64.dll
09:25:34.0787 0x0bec C:\Windows\System32\stapi64.dll - ok
09:25:34.0787 0x0bec [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] C:\Windows\System32\wlansvc.dll
09:25:34.0787 0x0bec C:\Windows\System32\wlansvc.dll - ok
09:25:34.0802 0x0bec [ 84F8C8B9FB1F12532999D25F5DD7E77C, D3442C2091D35A1483D3C317ED45B77F64BFE882992105DA97A6BF67E265B0D9 ] C:\Windows\System32\shacct.dll
09:25:34.0802 0x0bec C:\Windows\System32\shacct.dll - ok
09:25:34.0802 0x0bec [ AECAB449567D1846DAD63ECE49E893E3, 7A67A16A3E04574B7CAD097632ABA9B361BBEFDD6B36B7B8E3A1996EC529C2DC ] C:\Windows\System32\MPSSVC.dll
09:25:34.0802 0x0bec C:\Windows\System32\MPSSVC.dll - ok
09:25:34.0802 0x0bec [ 5B3EBFC3DA142324B388DDCC4465E1FF, 5D58642305311F9BC9B779C9598BFC4E7433B3EA58404BF1FF9466838A2328C7 ] C:\Windows\System32\samlib.dll
09:25:34.0802 0x0bec C:\Windows\System32\samlib.dll - ok
09:25:34.0818 0x0bec [ 81D64E8D70E5FBF9F7ABF2D41154F54D, 878E5A32AF0E7633830FE313CF9319DE3EBE0A9AA78DCDD525C0A3500A698CB6 ] C:\Windows\System32\AudioSes.dll
09:25:34.0818 0x0bec C:\Windows\System32\AudioSes.dll - ok
09:25:34.0818 0x0bec [ D29E998E8277666982B4F0303BF4E7AF, 4F19AB5DC173E278EBE45832F6CEAA40E2DF6A2EDDC81B2828122442FE5D376C ] C:\Windows\System32\uxtheme.dll
09:25:34.0818 0x0bec C:\Windows\System32\uxtheme.dll - ok
09:25:34.0818 0x0bec [ D152EBC32A23069F8AA1D1F24B15E3F9, B032CC7CBD715196BEC3B0B7C2DFD1D6169B66CC1770DD4B708951CC87DD871B ] C:\Windows\System32\audiodg.exe
09:25:34.0818 0x0bec C:\Windows\System32\audiodg.exe - ok
09:25:34.0834 0x0bec [ F5C26453CC452B5A3CB561195BDE4CF8, 9ECDC2A6B5955D563127E63DF07A39E9450B86982B04C4AC83A26A1098D0E91B ] C:\Windows\System32\stapo64.dll
09:25:34.0834 0x0bec C:\Windows\System32\stapo64.dll - ok
09:25:34.0834 0x0bec [ 50544D04AD845C43130B70212EC05CCD, B2E6B558DE7D273512226685FF53ED17C9B4BF81B739FBCA5D3FC82DF8D2BCF7 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
09:25:34.0834 0x0bec C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
09:25:34.0849 0x0bec [ 01F92AA50D03D67A88579D496311B4B6, 8548A90EE2F755485A39F019641FA837335D536655442FEDAAA99EF0F20553C9 ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_2b4f45e87195fcc4\GdiPlus.dll
09:25:34.0849 0x0bec C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_2b4f45e87195fcc4\GdiPlus.dll - ok
09:25:34.0849 0x0bec [ F7866AF72ABBAF84B1FA5AA195378C59, 9D522044FE9C18FB3EC327E675737C01F2A8231DDE900421D3A431596946A7F8 ] C:\Windows\System32\drivers\fltMgr.sys
09:25:34.0849 0x0bec C:\Windows\System32\drivers\fltMgr.sys - ok
09:25:34.0849 0x0bec [ 1F4492FE41767CDB8B89D17655847CDD, 184547FAC0C3D7148FAA3F601929A7089DE393BD19929A137DAD743331DD3F77 ] C:\Windows\System32\ntmarta.dll
09:25:34.0849 0x0bec C:\Windows\System32\ntmarta.dll - ok
09:25:34.0865 0x0bec [ A3DB3C17EE6CAE65D53602B4E80BCCBC, D802A7C6161F937DC42A6E45FE1BB2C8272819F92C294C180EBCDF8FF72CBFDC ] C:\Windows\System32\PSHED.DLL
09:25:34.0865 0x0bec C:\Windows\System32\PSHED.DLL - ok
09:25:34.0865 0x0bec [ B0945E538CF906BBDDC5A11C8EE868CC, 5F3459F6512918835F7C9400905EC7C1FAEAA7114E0D28C522040C359E3B93F7 ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
09:25:34.0865 0x0bec C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
09:25:34.0865 0x0bec [ 5EDBB34736DD7AC1A73CF8792A835E10, 15E87C449AAF2095273341DD9355D8DF2690340D1DEFAF0DFF034F1CDF4316F8 ] C:\Windows\System32\AudioEng.dll
09:25:34.0865 0x0bec C:\Windows\System32\AudioEng.dll - ok
09:25:34.0880 0x0bec [ 3CB6A7286422C72C34DAB54A5DFF1A34, 98D21EFFF511E407336A226420701E82554DA01FA05661303836B6860D63749D ] C:\Windows\System32\dui70.dll
09:25:34.0880 0x0bec C:\Windows\System32\dui70.dll - ok
09:25:34.0880 0x0bec [ 6F3C559B82F2912354BE5B098744CC8C, EB64E5C02C81588921A65194E1256E80699A1317E7D9A57395CD38C2639C8B08 ] C:\Windows\System32\WMALFXGFXDSP.dll
09:25:34.0880 0x0bec C:\Windows\System32\WMALFXGFXDSP.dll - ok
09:25:34.0880 0x0bec [ 8CCDE014A4CDF84564E03ACE064CA753, DD663029B2EB7B12FDB00FCE403D8326141E540E3B9CE84CD5871473D3E2E2CF ] C:\Windows\System32\duser.dll
09:25:34.0880 0x0bec C:\Windows\System32\duser.dll - ok
09:25:34.0896 0x0bec [ 54B5DCD55B223BC5DF50B82E1E9E86B1, 025294DD69A421FE4EACAA463F8CB797610D8F3A7A3C61656AE83D0CEE07A9BF ] C:\Windows\System32\mfplat.dll
09:25:34.0896 0x0bec C:\Windows\System32\mfplat.dll - ok
09:25:34.0896 0x0bec [ B2E3D4BB3389817FB5E4CD9378BC8791, 827432B830552DE87D44B0B3D298CC9E17A81C352803D439753135B35F7AAD67 ] C:\Windows\System32\SndVolSSO.dll
09:25:34.0896 0x0bec C:\Windows\System32\SndVolSSO.dll - ok
09:25:34.0896 0x0bec [ C469893743E18BA547DB3C7ED98B32F5, CD6FA1900174AF013D312C51753173A39691F0EE5799D1E7AD2604A220D64C2E ] C:\Windows\System32\AESTAR64.dll
09:25:34.0896 0x0bec C:\Windows\System32\AESTAR64.dll - ok
09:25:34.0912 0x0bec [ 896F15A6434D93EDB42519D5E18E6B50, 9263F0CEC58D45EBE3FB9C3061FB9392C55A7933B84B4592E6EE13CFC86D5A50 ] C:\Windows\System32\hid.dll
09:25:34.0912 0x0bec C:\Windows\System32\hid.dll - ok
09:25:34.0912 0x0bec [ DA1B7075260F3872585BFCDD668C648B, 3E10EF6E1A5C341B478322CB78A0AB7BFC70AD8023779B8B4542A7CB4CA756AB ] C:\Windows\System32\dwmapi.dll
09:25:34.0912 0x0bec C:\Windows\System32\dwmapi.dll - ok
09:25:34.0912 0x0bec [ 3D9FC44CA93001B423F89876369F1348, C538E2502402A66415D0591A97E17BA6FB020A5E7031BC54BB0931D94B4F879F ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll
09:25:34.0912 0x0bec C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll - ok
09:25:34.0927 0x0bec [ D6F630C1FD7F436316093AE500363B19, 73A94B4938430396EA4240B1A6676B4E6C19CFAF8C52EFB9A69B4B2175A86307 ] C:\Windows\System32\xmllite.dll
09:25:34.0927 0x0bec C:\Windows\System32\xmllite.dll - ok
09:25:34.0927 0x0bec [ 58775492FFD419248B08325E583C527F, DBB013971F5894F25C222C2D4D50A29DB6DF3C413792EE9CCC1A9E6D85469093 ] C:\Windows\System32\atl.dll
09:25:34.0927 0x0bec C:\Windows\System32\atl.dll - ok
09:25:34.0927 0x0bec [ EA99F234843BBDDA1ABD2767111ADE25, EF578F52BB359DA01465A754EAB6289232F80661774E6C0E1E1469573006CD72 ] C:\Windows\System32\WindowsCodecs.dll
09:25:34.0927 0x0bec C:\Windows\System32\WindowsCodecs.dll - ok
09:25:34.0943 0x0bec [ FE5AB4525BC2EC68B9119A6E5D40128B, 088DE37982CEE78A0C1181389A3BFF1E352DF504074B3E8F3EA244DB271BF216 ] C:\Windows\System32\gpsvc.dll
09:25:34.0943 0x0bec C:\Windows\System32\gpsvc.dll - ok
09:25:34.0943 0x0bec [ 86E3822A34D454032D8E88C72AE8CF2D, 3A8DA946AFAC023254E9D260BFB796FF356A3978F28DA1FC6B939B0E234C9A64 ] C:\Windows\System32\nlaapi.dll
09:25:34.0943 0x0bec C:\Windows\System32\nlaapi.dll - ok
09:25:34.0943 0x0bec [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] C:\Windows\System32\themeservice.dll
09:25:34.0943 0x0bec C:\Windows\System32\themeservice.dll - ok
09:25:34.0958 0x0bec [ A77BE7CB3222B4FB0AC6C71D1C2698D4, 73566223914BF670DF6B5931FA213E546713531B10391ED65B5256BBD7ABDE7F ] C:\Windows\System32\dsrole.dll
09:25:34.0958 0x0bec C:\Windows\System32\dsrole.dll - ok
09:25:34.0958 0x0bec [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] C:\Windows\System32\es.dll
09:25:34.0958 0x0bec C:\Windows\System32\es.dll - ok
09:25:34.0958 0x0bec [ BE097F5BB10F9079FCEB2DC4E7E20F02, 90A88986C8C5F30FB153EC803FEDA6572B2C2630A6C9578FCC017800692694D5 ] C:\Windows\System32\slc.dll
09:25:34.0958 0x0bec C:\Windows\System32\slc.dll - ok
09:25:34.0974 0x0bec [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D, 19959D18601712901F03B83150D15E34EBCAB355BB4692C9A28511A72F57FC66 ] C:\Windows\System32\winbrand.dll
09:25:34.0974 0x0bec C:\Windows\System32\winbrand.dll - ok
09:25:34.0974 0x0bec [ C2762A57DF0EE85E63CE4893C5215313, DDE22212D78353633CEDE27D7210469DE674563991105563CF64CCCE2D0743BD ] C:\Windows\System32\VaultCredProvider.dll
09:25:34.0974 0x0bec C:\Windows\System32\VaultCredProvider.dll - ok
09:25:34.0974 0x0bec [ 2A381A9740165D7A1405148B6DFB3E38, 885241B9ED8A6074D428FDE0B326B2E1A59254CE779B884EE61716F45CDF2712 ] C:\Windows\System32\SmartcardCredentialProvider.dll
09:25:34.0974 0x0bec C:\Windows\System32\SmartcardCredentialProvider.dll - ok
09:25:34.0990 0x0bec [ 1A47D52E303B7543E4E6026595B95422, C577CD3837546A7CED5D2E8E97FA2EDACA133B4A8595770EF96CAE519BFE280F ] C:\Windows\System32\comres.dll
09:25:34.0990 0x0bec C:\Windows\System32\comres.dll - ok
09:25:34.0990 0x0bec [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] C:\Windows\System32\Sens.dll
09:25:34.0990 0x0bec C:\Windows\System32\Sens.dll - ok
09:25:34.0990 0x0bec [ BF352E73615F5461AA6884472435A544, 4B059E79325C5F08CD6FBBE6352E17ADB64B9608CC9EDB36A2DF4D148060C309 ] C:\Windows\System32\BioCredProv.dll
09:25:34.0990 0x0bec C:\Windows\System32\BioCredProv.dll - ok
09:25:35.0005 0x0bec [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] C:\Windows\System32\uxsms.dll
09:25:35.0005 0x0bec C:\Windows\System32\uxsms.dll - ok
09:25:35.0005 0x0bec [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] C:\Windows\System32\drivers\lltdio.sys
09:25:35.0005 0x0bec C:\Windows\System32\drivers\lltdio.sys - ok
09:25:35.0005 0x0bec [ 796B8123A7859AFD3A4AE10514DBAEB5, E76F69FAFEC3D66263ED95F3FA9EE309BDDACB287E30583A147DC97F6EEB8844 ] C:\Windows\System32\winbio.dll
09:25:35.0005 0x0bec C:\Windows\System32\winbio.dll - ok
09:25:35.0021 0x0bec [ 97D38371502AA797DB14EB1FA5FCE4CD, 6F71EF6DE07C2A34339726775FF8D8A64254A287B5D1972B55D9874EC9E6912F ] C:\Windows\System32\credui.dll
09:25:35.0021 0x0bec C:\Windows\System32\credui.dll - ok
09:25:35.0021 0x0bec [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] C:\Windows\System32\drivers\nwifi.sys
09:25:35.0021 0x0bec C:\Windows\System32\drivers\nwifi.sys - ok
09:25:35.0021 0x0bec [ 44B9C66177651F3F53C87B665D58D17A, 3FC426115FF87570889DB28D71970B82B525D2A4B9A00EDD273BF083B77A05CE ] C:\Windows\System32\vaultcli.dll
09:25:35.0021 0x0bec C:\Windows\System32\vaultcli.dll - ok
09:25:35.0036 0x0bec [ 1C10772935D67F74ABDFE542ECE7551D, A42095C09C1827203DD2A271B116010E8DCBFBB8C21779425018AF92DF4F2C93 ] C:\Windows\System32\netapi32.dll
09:25:35.0036 0x0bec C:\Windows\System32\netapi32.dll - ok
09:25:35.0036 0x0bec [ F105BA1E22BF1F2EE8F005D4305E4BEC, 723DA09E13D0F50634D9F114590B837D16F7B36AA0DA2AB8F8C2D9991624EA8F ] C:\Windows\System32\drivers\ndisuio.sys
09:25:35.0036 0x0bec C:\Windows\System32\drivers\ndisuio.sys - ok
09:25:35.0036 0x0bec [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] C:\Windows\System32\drivers\rspndr.sys
09:25:35.0036 0x0bec C:\Windows\System32\drivers\rspndr.sys - ok
09:25:35.0052 0x0bec [ 4C8C2F987FC397DCE98874D6C9C0736A, 005D2CF9311799E8151B7154469D10D9346AFC2E0BF88358E54A091D5D14B970 ] C:\Windows\System32\netutils.dll
09:25:35.0052 0x0bec C:\Windows\System32\netutils.dll - ok
09:25:35.0052 0x0bec [ B33CBD1A8C2A33121321D0FEBD7DD870, 248E01B3E88D0243AF4771A18AFCDE3DB04475EFB7D0E426CA1D00358C84A465 ] C:\Windows\System32\wkscli.dll
09:25:35.0052 0x0bec C:\Windows\System32\wkscli.dll - ok
09:25:35.0052 0x0bec [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] C:\Windows\System32\nsisvc.dll
09:25:35.0052 0x0bec C:\Windows\System32\nsisvc.dll - ok
09:25:35.0068 0x0bec [ A87205FE194B239D8D96E4972B779CC1, F392004842E291097385A0C1DC9143356CA195B18638E58E552BA20F386489AC ] C:\Windows\System32\samcli.dll
09:25:35.0068 0x0bec C:\Windows\System32\samcli.dll - ok
09:25:35.0068 0x0bec [ F9EC845C5EECF20E9A67F9F805F2EF1F, C3DBA8CF93DBF50954B1BF6D7EF3F6F5DD1A56DC62B7EB2749C54D9B65D9BB43 ] C:\Windows\System32\keyiso.dll
09:25:35.0068 0x0bec C:\Windows\System32\keyiso.dll - ok
09:25:35.0068 0x0bec [ 676108C4E3AA6F6B34633748BD0BEBD9, 953286126E482EF3A9A1833680EFF86D657BD6C5411B9AEC2D7828ADE63D25AD ] C:\Windows\System32\dnsrslvr.dll
09:25:35.0068 0x0bec C:\Windows\System32\dnsrslvr.dll - ok
09:25:35.0083 0x0bec [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] C:\Windows\System32\lmhsvc.dll
09:25:35.0083 0x0bec C:\Windows\System32\lmhsvc.dll - ok
09:25:35.0083 0x0bec [ 972C3301DB3DA91AE06A95F6B4160B1B, 678B533A06C306295FE97DC26CE9BAFFC8EAF1FB7405ACB040719099717744D5 ] C:\Windows\System32\certCredProvider.dll
09:25:35.0083 0x0bec C:\Windows\System32\certCredProvider.dll - ok
09:25:35.0083 0x0bec [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] C:\Windows\System32\eapsvc.dll
09:25:35.0083 0x0bec C:\Windows\System32\eapsvc.dll - ok
09:25:35.0099 0x0bec [ 57FE2CFC2F25C200499D5D934EA24EB5, 4802E9A2AE7849AAF1103113A9DB3647CFD7EA7472E712D3A1E768DA81A24F74 ] C:\Windows\System32\IPHLPAPI.DLL
09:25:35.0099 0x0bec C:\Windows\System32\IPHLPAPI.DLL - ok
09:25:35.0099 0x0bec [ 4C9210E8F4E052F6A4EB87716DA0C24C, 460F7990BDADB7D58D6DC95B094D30A2EFDC4CEED444B18A2F36E8D9076FB8B9 ] C:\Windows\System32\winnsi.dll
09:25:35.0114 0x0bec C:\Windows\System32\winnsi.dll - ok
09:25:35.0114 0x0bec [ 87FA0C48C3B2E9FEE518818FE26B15B5, DA4042DE9897397AEDCEFF9F69746726237305DDE64464309B6DCC45E05E42F4 ] C:\Windows\System32\rasplap.dll
09:25:35.0114 0x0bec C:\Windows\System32\rasplap.dll - ok
09:25:35.0114 0x0bec [ 982F5395AD181179320083A4FA7E7CA8, A54205CF9D5C0CE01D1BA079508BABF80F5B35D7DADBB1D64699E9E1D7CF37E8 ] C:\Windows\System32\eapphost.dll
09:25:35.0114 0x0bec C:\Windows\System32\eapphost.dll - ok
09:25:35.0130 0x0bec [ FD5BA198F7190DFE9BE1947EB8710396, DF901E8704FE4EFA7E386D0B432BDAF5129C8BBAF635921CEF16A2E016151B80 ] C:\Windows\System32\nrpsrv.dll
09:25:35.0130 0x0bec C:\Windows\System32\nrpsrv.dll - ok
09:25:35.0130 0x0bec [ 0040C486584A8E582C861CFB57AB5387, 5EE17B55CB702D14AE75B19226DE21CD2498BDA6C6EF5872FDB8A718F401FED1 ] C:\Windows\System32\FWPUCLNT.DLL
09:25:35.0130 0x0bec C:\Windows\System32\FWPUCLNT.DLL - ok
09:25:35.0130 0x0bec [ CE3B9562D997F69B330D181A8875960F, 6FEE6622859198C5C13545867EF7CFE8EDC991360E976F792313DAA9C82CC5C8 ] C:\Windows\System32\dhcpcore.dll
09:25:35.0130 0x0bec C:\Windows\System32\dhcpcore.dll - ok
09:25:35.0146 0x0bec [ 885D0942E0F28DB90919BE3129ECF279, 5A10D90EE656ECE3DCA174D6F924641509819FC20CB6EF46B5E1723E52DE85BE ] C:\Windows\System32\dnsext.dll
09:25:35.0146 0x0bec C:\Windows\System32\dnsext.dll - ok
09:25:35.0146 0x0bec [ 019CD868461B646E09BDF04474C19341, 01837EFACB02E52BC6E90C90C4CB01B11D56E449A37EA4FC2695507FF85EA9FE ] C:\Windows\System32\rasapi32.dll
09:25:35.0146 0x0bec C:\Windows\System32\rasapi32.dll - ok
09:25:35.0146 0x0bec [ 71C7B65B6557B75B99907E76956AE4B8, 38AD0E96D6AD36C0643761D5F5DB7A2802E059008C0984ABF61F4D8703DE4B3B ] C:\Windows\System32\dhcpcore6.dll
09:25:35.0146 0x0bec C:\Windows\System32\dhcpcore6.dll - ok
09:25:35.0161 0x0bec [ 2017BFE87CAB3D7EF632CFD2AA08D3F0, 8A03D1EB5091E1C1DBD909CDC401DA2E876B0EA9893126840B8B87426C211992 ] C:\Windows\System32\umb.dll
09:25:35.0161 0x0bec C:\Windows\System32\umb.dll - ok
09:25:35.0161 0x0bec [ F568F7C08458D69E4FCD8675BBB107E4, A5FA25ECF248999A68CCECFBB508BFA1ADD18A23E20A9A9081A87C41CAAA36C0 ] C:\Windows\System32\dhcpcsvc.dll
09:25:35.0161 0x0bec C:\Windows\System32\dhcpcsvc.dll - ok
09:25:35.0161 0x0bec [ 4CBCC37856EA2039C27A2FB661DDA0E5, 74CBFAB3092A9564BDDFCB84DB3E3F8BCFD1492938ADF187423D3355D73D21C6 ] C:\Windows\System32\dhcpcsvc6.dll
09:25:35.0161 0x0bec C:\Windows\System32\dhcpcsvc6.dll - ok
09:25:35.0177 0x0bec [ 48A31B7CF046702059A86836DC21D786, 6876FA74DEBC66D2FA4FCB3009C29ECCD2107F1E103FCE90BC8C29C7360A9168 ] C:\Windows\System32\wlanmsm.dll
09:25:35.0177 0x0bec C:\Windows\System32\wlanmsm.dll - ok
09:25:35.0177 0x0bec [ B28DEEC597C8DEB70C744C7CF9210E3E, E777F192D822990CA6301B3FEA2AEA213FA7901438EB3328914ADF02B6C39DB9 ] C:\Windows\System32\rasman.dll
09:25:35.0177 0x0bec C:\Windows\System32\rasman.dll - ok
09:25:35.0177 0x0bec [ C1F1090BC239590DF6CAE1807A373DAB, B52D14840CB473EBB12031BE36D62841DB67C07558ECFD556631A4CDA7657D5C ] C:\Windows\System32\rtutils.dll
09:25:35.0177 0x0bec C:\Windows\System32\rtutils.dll - ok
09:25:35.0192 0x0bec [ 06A1386B6E3A0CBC368665C1840906F4, C10BCA5092A0B3F9435CE4D65C7449528C89F5C5243B410878D2EBF516DA2FB2 ] C:\Windows\System32\wlansec.dll
09:25:35.0192 0x0bec C:\Windows\System32\wlansec.dll - ok
09:25:35.0192 0x0bec [ D2B0D1C2BE5ECA80387F7CB8626DCAFE, 14A269EB190CCF290BECEAC4A7B63B1312ED208F839A6C7B8E4BF74A786CE271 ] C:\Windows\System32\onex.dll
09:25:35.0192 0x0bec C:\Windows\System32\onex.dll - ok
09:25:35.0192 0x0bec [ 65522E77A1360DBC8D199DA3BF5EFFE4, E9D748070FA478A3D37F15049F998D340885C0DC5FCE03BFCE5D521C9EBA7350 ] C:\Windows\System32\eappprxy.dll
09:25:35.0192 0x0bec C:\Windows\System32\eappprxy.dll - ok
09:25:35.0208 0x0bec [ E2289369AA64C5A2EA496568DB85CF8E, 1BA03017ABF8E957CD3526E7924EDFF5964C639561CD850A4ED53DA8028B52F3 ] C:\Windows\System32\atieclxx.exe
09:25:35.0208 0x0bec C:\Windows\System32\atieclxx.exe - ok
09:25:35.0208 0x0bec [ 9BC8610C32C96A2983A65DC21CAFA921, 2A4195F663C9D55939E3D8FEAA208090FDB0B8801A60164A7325B53104797CBC ] C:\Windows\System32\UXInit.dll
09:25:35.0208 0x0bec C:\Windows\System32\UXInit.dll - ok
09:25:35.0208 0x0bec [ 0D753307D274F3688BD21C377B616700, 5DD08E77A11F2561FB96BA212FDDFE21D4394C69C34C3EB88F7F5CD068EE55BF ] C:\Windows\System32\eappcfg.dll
09:25:35.0208 0x0bec C:\Windows\System32\eappcfg.dll - ok
09:25:35.0224 0x0bec [ 730BF204A595D5B6D7DC57A247CC741C, 264C6901F4A49B738BBD04BCA1783DEE892885BADE9085B0AEA40BAE7CC0A218 ] C:\Windows\System32\wlgpclnt.dll
09:25:35.0224 0x0bec C:\Windows\System32\wlgpclnt.dll - ok
09:25:35.0224 0x0bec [ 97E43F324BE1503CB2FFB058534688DA, 50C781DF38D0D38C9A5420AB1FFF8672DC13FD1ED8E9F5432B4BA3077A7435D5 ] C:\Windows\System32\l2gpstore.dll
09:25:35.0224 0x0bec C:\Windows\System32\l2gpstore.dll - ok
09:25:35.0239 0x0bec [ 7F1B4C6FF3B85F9ADF74055187B8A22C, CC95DA5662638AACBE9643DCB236464C2C2095A8D5CDC8A747045870BE9D0E7D ] C:\Windows\System32\wlanutil.dll
09:25:35.0239 0x0bec C:\Windows\System32\wlanutil.dll - ok
09:25:35.0239 0x0bec [ 22E7431E7DAE8463AF94A79A054276E5, 980EA547B86D3F2DF698FCB6A90200CC993DF4B7EE23BDB749D9179E0DD46944 ] C:\Windows\System32\WinSCard.dll
09:25:35.0239 0x0bec C:\Windows\System32\WinSCard.dll - ok
09:25:35.0239 0x0bec [ 3DB79E65E83EEA0601B6F2FF83E76CB0, 54E3259AD54CA535F04722DB7BE548FBB854A60CDC48B0382E0E5047D7F3E1E8 ] C:\Windows\System32\atiadlxx.dll
09:25:35.0239 0x0bec C:\Windows\System32\atiadlxx.dll - ok
09:25:35.0255 0x0bec [ 74FFD39A69774524F1FB6A6E7E781494, 31494F12D836704CE039DCAA1A61D78751ADAEFF9B7A1539D0BE1FA576BE7BD4 ] C:\Windows\System32\msxml6.dll
09:25:35.0255 0x0bec C:\Windows\System32\msxml6.dll - ok
09:25:35.0255 0x0bec [ 8C6A5A0D335327EA91FF22481E7068C0, AB15FF84E64CFC608C2E3B54731EDB92DC1C7CC39199636B08FFA45CD289975B ] C:\Windows\System32\atimuixx.dll
09:25:35.0255 0x0bec C:\Windows\System32\atimuixx.dll - ok
09:25:35.0255 0x0bec [ 5AA945234E9D4CCE4F715276B9AA712C, 65165BD131056816F009D987FC78AC86FFE0C3C38A27E73F873586B7FF4D59CF ] C:\Windows\System32\imageres.dll
09:25:35.0255 0x0bec C:\Windows\System32\imageres.dll - ok
09:25:35.0270 0x0bec [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF, 1C1D17301A4D37DBF906955CCABD2A3FDA47AFB24CBA978CF851123762249848 ] C:\Windows\System32\shsvcs.dll
09:25:35.0270 0x0bec C:\Windows\System32\shsvcs.dll - ok
09:25:35.0270 0x0bec [ 43FAB56AE5F639AD59D7209693F4C4C2, C64155944DA774A80D443A0E6DCC40A3405D9C69CA3EBC95CA46BFD65C7A4908 ] C:\Windows\System32\wlanext.exe
09:25:35.0270 0x0bec C:\Windows\System32\wlanext.exe - ok
09:25:35.0270 0x0bec [ F64E8258351E501AA065AC499530367C, BE33C8A82E6EC9A65EAFEF72420EEB2C81ED7F2B217B3C6DED5CEA042E832487 ] C:\Windows\System32\conhost.exe
09:25:35.0270 0x0bec C:\Windows\System32\conhost.exe - ok
09:25:35.0286 0x0bec [ EC56B171F85C7E855E7B0588AC503EEA, EDBC0E52DF00D73356F4B886D6CA2397B571A9D2245FEDC347A6D52A5467EA5D ] C:\Windows\System32\schedsvc.dll
09:25:35.0286 0x0bec C:\Windows\System32\schedsvc.dll - ok
09:25:35.0286 0x0bec [ CA9D70EC7139D20C6A53F820F27A8BAF, 59EE787EA98E19CF3E063E13566D3498CBDE621BEA338AF317F0AA2986A8D9C9 ] C:\Windows\System32\bcmihvsrv64.dll
09:25:35.0286 0x0bec C:\Windows\System32\bcmihvsrv64.dll - ok
09:25:35.0286 0x0bec [ BC414631876B2F28B8DAB08E849C12C5, 5973654AA3E90E6B699B0A43F645B893D95BAA803129B6967D746C8239AB26E3 ] C:\Windows\System32\ktmw32.dll
09:25:35.0286 0x0bec C:\Windows\System32\ktmw32.dll - ok
09:25:35.0302 0x0bec [ 1B38A0F123FCF1546FACEAF1EFAFAA00, CC3972B3011078568E548D97202973F374F7BA5BD23B4A52786D23D881281E10 ] C:\Windows\System32\fveapi.dll
09:25:35.0302 0x0bec C:\Windows\System32\fveapi.dll - ok
09:25:35.0302 0x0bec [ 694865362F0965779F92BCFE97712323, 825EB75E37AFE9B738869FB5D95020D4F44AD419C2F6C5A658F82A5242FDEF6C ] C:\Windows\System32\tbs.dll
09:25:35.0302 0x0bec C:\Windows\System32\tbs.dll - ok
09:25:35.0302 0x0bec [ 891ECFD08E2C538B7948CBC45106D697, 628D0D618FF3A70E9FBE3B2C7206C9365ED2297784A5F10FFA05BD2C56657013 ] C:\Windows\System32\fvecerts.dll
09:25:35.0302 0x0bec C:\Windows\System32\fvecerts.dll - ok
09:25:35.0317 0x0bec [ AEFBD8D2C9CE363F84AE0F89036412A6, 9C6749E8827E74E58BEC64092F8F686B83F768CBAC6171F574D5687BC0857F3C ] C:\Windows\System32\taskcomp.dll
09:25:35.0317 0x0bec C:\Windows\System32\taskcomp.dll - ok
09:25:35.0317 0x0bec [ 8269210DAF3B12BC8300631B28A2A442, EABEB792C2EA8D4A1A7B13281CF557C194D5667AE0BA2A2D5664908D8269113D ] C:\Windows\System32\wiarpc.dll
09:25:35.0317 0x0bec C:\Windows\System32\wiarpc.dll - ok
09:25:35.0317 0x0bec [ 357BE883C5236BFC7341CB9E82308908, 4DDB697FD9B7C516CF99D73C8799EA35BB97E2431216CD7C1045F17B06109FBF ] C:\Windows\System32\wlanapi.dll
09:25:35.0317 0x0bec C:\Windows\System32\wlanapi.dll - ok
09:25:35.0317 0x0bec [ 8F6D9A20F1FB06F0602A7D5A82840DBF, 2BC5D14472205C1593D8153DEC48E42A5B5FD27A710DE091052152E0AE6A850E ] C:\Windows\System32\netcfgx.dll
09:25:35.0317 0x0bec C:\Windows\System32\netcfgx.dll - ok
09:25:35.0333 0x0bec [ CEE049CAC4EFA7F4E1E4AD014414A5D4, 433AE2D845850F1D7A48275BBD87B3F0E7DD48F2282C727C4B777ECD92CC331D ] C:\Windows\System32\drivers\http.sys
09:25:35.0333 0x0bec C:\Windows\System32\drivers\http.sys - ok
09:25:35.0333 0x0bec [ A8EDB86FC2A4D6D1285E4C70384AC35A, 61B8955CE0A2AA9D0719920B30216717B349B6FBE11C697C31CFA84F859CC1AE ] C:\Windows\System32\dllhost.exe
09:25:35.0333 0x0bec C:\Windows\System32\dllhost.exe - ok
09:25:35.0333 0x0bec [ A0A2C1D812C231C9BFE119FDC68E341B, F94446594EE17505956A715DFB28B51D09F00A7A65E56950661B889A57DE8FA8 ] C:\Windows\System32\IDStore.dll
09:25:35.0333 0x0bec C:\Windows\System32\IDStore.dll - ok
09:25:35.0348 0x0bec [ 3EEFB971D61EF9638FD21F14C703CA11, A01BCD7E884E407C82DEB84D5B31F517F32A4FA2CF143372BAC896CC9478BE0E ] C:\Windows\System32\taskhost.exe
09:25:35.0348 0x0bec C:\Windows\System32\taskhost.exe - ok
09:25:35.0348 0x0bec [ 89E8550C5862999FCF482EA562B0E98E, 11BC94FD879DCD22E80DB8FA73CEBD0F072917C546AD9C8B92CCFBF4E0B83056 ] C:\Windows\System32\spoolsv.exe
09:25:35.0348 0x0bec C:\Windows\System32\spoolsv.exe - ok
09:25:35.0348 0x0bec [ 23566F9723771108D2E6CD768AC27407, FAC0293DD1061B151E779BF4B245E6652C951FEDEBC602A166156DFBD38B5D67 ] C:\Windows\System32\AtBroker.exe
09:25:35.0348 0x0bec C:\Windows\System32\AtBroker.exe - ok
09:25:35.0364 0x0bec [ 94EEAC26F57811BD1AEFC164412F7FCE, 7390BCD7709D48DE75D7D6E06AA7356D1C58EE63F3CC2E07ABCD2E2FF6CC81CF ] C:\Windows\System32\PlaySndSrv.dll
09:25:35.0364 0x0bec C:\Windows\System32\PlaySndSrv.dll - ok
09:25:35.0364 0x0bec [ 6CEF7856A3EFAC59470F6208F0F585CE, 0F7A80DB821FDE6580E9481B6DA44844F717DDB4983B0E3D562BE43726153951 ] C:\Windows\System32\mpr.dll
09:25:35.0364 0x0bec C:\Windows\System32\mpr.dll - ok
09:25:35.0364 0x0bec [ 6F8F1376A13114CC10C0E69274F5A4DE, 8EFD33E1C5A40C231BCB8ED73277F645BE87AE03FCDBA8134FAC053E90290A9C ] C:\Windows\System32\userinit.exe
09:25:35.0364 0x0bec C:\Windows\System32\userinit.exe - ok
09:25:35.0380 0x0bec [ 7F37322A489E285CFBCC02F6A53B3F1B, 7A64799611A5A1B251C4136AC486A4D3D9145E3F95D6056ED0FEE24C7E050472 ] C:\Windows\System32\HotStartUserAgent.dll
09:25:35.0380 0x0bec C:\Windows\System32\HotStartUserAgent.dll - ok
09:25:35.0380 0x0bec [ F162D5F5E845B9DC352DD1BAD8CEF1BC, 8A7B7528DB30AB123B060D8E41954D95913C07BB40CDAE32E97F9EDB0BAF79C7 ] C:\Windows\System32\dwm.exe
09:25:35.0380 0x0bec C:\Windows\System32\dwm.exe - ok
09:25:35.0380 0x0bec [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA, 8A6ACEFAB95E5275CBFBE6CCB5A6C3A6A471260B279B9063E86B9C7765E18656 ] C:\Windows\System32\MsCtfMonitor.dll
09:25:35.0380 0x0bec C:\Windows\System32\MsCtfMonitor.dll - ok
09:25:35.0395 0x0bec [ F09A9A1AD21FE618C4C8B0A0D830C886, 29831DDAB2AB105358FBC067CDF96428220B6743CD6019F6FE74BAC7AF325E7E ] C:\Windows\System32\msutb.dll
09:25:35.0395 0x0bec C:\Windows\System32\msutb.dll - ok
09:25:35.0395 0x0bec [ EF184066A851E7838D5BF8C8FAE66CC4, 813247114C5AA374585F669ADA5DFD25615D1B15B14518A195995D5BF7A8FA25 ] C:\Windows\System32\dwmredir.dll
09:25:35.0395 0x0bec C:\Windows\System32\dwmredir.dll - ok
09:25:35.0395 0x0bec [ 4992C609A6315671463E30F6512BC022, 3020034556EAC25CD90F41D3BFFDD0BB2C3D1C5BAC4359F4B71B84A9FC404495 ] C:\Windows\System32\BFE.DLL
09:25:35.0395 0x0bec C:\Windows\System32\BFE.DLL - ok
09:25:35.0411 0x0bec [ 9D8AB964CE511AF81207DF0E1205184C, 35DCB9F5DD59F97337B293EC55C5FADAA41806BA050592790338E34D843DA4B1 ] C:\Windows\System32\dwmcore.dll
09:25:35.0411 0x0bec C:\Windows\System32\dwmcore.dll - ok
09:25:35.0411 0x0bec [ 6D4F9E4B640B413C6F73414327484C80, AF3B1DDE1F1A5DE925396924DF9CAB040054DD589533B3976CB3E2963B2C8B0E ] C:\Windows\explorer.exe
09:25:35.0411 0x0bec C:\Windows\explorer.exe - ok
09:25:35.0426 0x0bec [ 91CE0D3DC57DD377E690A2D324022B08, 61874463956C0BCA5139522F34E974E5F638A092E0FD5C59DD30DE61D9AB8B0E ] C:\Windows\System32\drivers\bowser.sys
09:25:35.0426 0x0bec C:\Windows\System32\drivers\bowser.sys - ok
09:25:35.0426 0x0bec [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] C:\Windows\System32\drivers\mpsdrv.sys
09:25:35.0426 0x0bec C:\Windows\System32\drivers\mpsdrv.sys - ok
09:25:35.0426 0x0bec [ C67F8A962B2534224D5908D16D2AD3CE, CAC1821F5E867285638AEE7AE33CE574BCCF16277AC5AD805650B48F7759B4B4 ] C:\Windows\System32\wfapigp.dll
09:25:35.0426 0x0bec C:\Windows\System32\wfapigp.dll - ok
09:25:35.0442 0x0bec [ CFDCD8CA87C2A657DEBC150AC35B5E08, 8870DCC8CF4E452E25BFE38113ADBDBC4014036B25E567FC262178DAA808049A ] C:\Windows\System32\drivers\mrxsmb.sys
09:25:35.0442 0x0bec C:\Windows\System32\drivers\mrxsmb.sys - ok
09:25:35.0442 0x0bec [ 961036B3C6282C646B9ADBC8BB32C983, 47757F19EB8F6E23602A1E2FF34C4BAC2DC1D28B0D63588C5056FE655116F9EB ] C:\Windows\System32\mscms.dll
09:25:35.0442 0x0bec C:\Windows\System32\mscms.dll - ok
09:25:35.0442 0x0bec [ D63BEE2A8B22482F7080A8D3F2E1A733, 20E2CC793E55548CA8F6EB7F02D51EEA7632E16302C9213705F3A9684AD9F41F ] C:\Windows\System32\d3d10_1.dll
09:25:35.0442 0x0bec C:\Windows\System32\d3d10_1.dll - ok
09:25:35.0458 0x0bec [ 91D8BEFA67DCD56721A02EDEA423EAF8, 7A4E81E1F2DF02409566B51B09B77E31DA61E5B35A4BE65267C6457546A5AC38 ] C:\Windows\System32\d3d10_1core.dll
09:25:35.0458 0x0bec C:\Windows\System32\d3d10_1core.dll - ok
09:25:35.0458 0x0bec [ 1BEE517B220B7F024F411AEC1571DD5A, 6DC7638D056DFDE36803BCD691BF73A4AAFD59DE63C0ACD7EA860997FFA3C6E7 ] C:\Windows\System32\drivers\mrxsmb10.sys
09:25:35.0458 0x0bec C:\Windows\System32\drivers\mrxsmb10.sys - ok
09:25:35.0458 0x0bec [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] C:\Windows\System32\pcasvc.dll
09:25:35.0458 0x0bec C:\Windows\System32\pcasvc.dll - ok
09:25:35.0473 0x0bec [ D95DB5C915C001F78709C17285109BDC, 2A538725F8E2E0A394CA58CD262C5159BCA59B12C591EC59F2E052FDAA21F99F ] C:\Windows\System32\dxgi.dll
09:25:35.0473 0x0bec C:\Windows\System32\dxgi.dll - ok
09:25:35.0473 0x0bec [ 6B2D5FEF385828B6E485C1C90AFB8195, A960CC0351F200FA56FAC0534C0F9D7F79AAC9CF18A4390CDCA7EA4EE22ED6B6 ] C:\Windows\System32\drivers\mrxsmb20.sys
09:25:35.0473 0x0bec C:\Windows\System32\drivers\mrxsmb20.sys - ok
09:25:35.0473 0x0bec [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] C:\Windows\System32\snmptrap.exe
09:25:35.0473 0x0bec C:\Windows\System32\snmptrap.exe - ok
09:25:35.0489 0x0bec [ 27026EAC8818E8A6C00A1CAD2F11D29A, A12858CCB3B2419D66C667A46B106DA7A7BA97FFFA9634BFAE95DDF193C430D5 ] C:\Windows\System32\wkssvc.dll
09:25:35.0489 0x0bec C:\Windows\System32\wkssvc.dll - ok
09:25:35.0489 0x0bec [ A6FB9DB8F1A86861D955FD6975977AE0, 788C6EE50719227D7A9B7F08C8D5E1289FCD0E8AC23A1021A5093D2E8368F696 ] C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
09:25:35.0489 0x0bec C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe - ok
09:25:35.0489 0x0bec [ 06A7422224D9865A5613710A089987DF, EF604B4B6918D3FDC8E90ED9004E6E7340E0F399C214C65CCE3A7C8C576FA1C0 ] C:\Windows\System32\provsvc.dll
09:25:35.0489 0x0bec C:\Windows\System32\provsvc.dll - ok
09:25:35.0504 0x0bec [ 8C57411B66282C01533CB776F98AD384, 65BCF1B0BA521CBE39E974C7ACAEA9C9E3F89D86754275C6B2616E7691876AEE ] C:\Windows\System32\cryptsvc.dll
09:25:35.0504 0x0bec C:\Windows\System32\cryptsvc.dll - ok
09:25:35.0504 0x0bec [ 8C2BA6BEA949EE6E68385F5692BAFB94, 1047F473DCE0FB56BEA5C1B7929752C1FBAB5983C8202ABB4EEA48FCD60A353A ] C:\Windows\System32\dps.dll
09:25:35.0504 0x0bec C:\Windows\System32\dps.dll - ok
09:25:35.0504 0x0bec [ 40C000910366003F005D60F8148BC55E, 5B6CD0DD0F447E4823EE53D13BF57AFD71659B09B2911F1298D461FC4DB66A2B ] C:\Windows\System32\atidxx64.dll
09:25:35.0504 0x0bec C:\Windows\System32\atidxx64.dll - ok
09:25:35.0520 0x0bec [ 862789547AF9694B48BA0D040BF246BC, 19D12AA135127C56FF431299510AF63E1399A03D2BCC9255AE9F34E60C556F8F ] C:\Windows\System32\taskschd.dll
09:25:35.0520 0x0bec C:\Windows\System32\taskschd.dll - ok
09:25:35.0520 0x0bec [ A261AD1FDC6D6A658A82B81AF81B215F, 1E967BD93AEC90A68E1B376A6433F0BAF659E7DFEED39EDA34BAF8E4B88FA2D2 ] C:\Windows\System32\vssapi.dll
09:25:35.0520 0x0bec C:\Windows\System32\vssapi.dll - ok
09:25:35.0520 0x0bec [ 2DBB169F798F233BC0815A797F5FCE31, A3780732A2BDF4AA821B133BD1482396916BAAC1FD90741832801C65FAA868CD ] C:\Windows\System32\ExplorerFrame.dll
09:25:35.0520 0x0bec C:\Windows\System32\ExplorerFrame.dll - ok
09:25:35.0536 0x0bec [ EB043B24D856465A2A21A59E53EEA9CD, B510E32A115444ECC6113BC3B4FFF1A262745C2319E56536B04B59E60951A3A5 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
09:25:35.0536 0x0bec C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe - ok
09:25:35.0536 0x0bec [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] C:\Windows\System32\sstpsvc.dll
09:25:35.0536 0x0bec C:\Windows\System32\sstpsvc.dll - ok
09:25:35.0536 0x0bec [ 287923557447D7E4BDD7E65B1F0F5428, 14D85A0F036F28D77AA9723C3D7E8C4DA9BDFF8A1AD9BEA6FE5756DBF5D00F08 ] C:\Windows\System32\vsstrace.dll
09:25:35.0536 0x0bec C:\Windows\System32\vsstrace.dll - ok
09:25:35.0551 0x0bec [ D0B2C365CAB344F1BED8A0DADD507D96, 5963088A25A0B980148CFDED7718F342E5C1CAD6CDBC40BF2186A90437AE5211 ] C:\Windows\SysWOW64\ntdll.dll
09:25:35.0551 0x0bec C:\Windows\SysWOW64\ntdll.dll - ok
09:25:35.0551 0x0bec [ 024352FEEC9042260BB4CFB4D79A206B, 60CB39086E10C5B66EBC15E4DF219620B344B4358D2918AB6BB3448A0AC8BE36 ] C:\Windows\System32\EhStorShell.dll
09:25:35.0551 0x0bec C:\Windows\System32\EhStorShell.dll - ok
09:25:35.0551 0x0bec [ 0DFBB6B13ACFBDEE0E7DF0FD145614AC, C731F0179720DADA521C26CAB0F13FE1E7BA5D86BA390D6015A418DD94FBC4B2 ] C:\Windows\System32\ntshrui.dll
09:25:35.0551 0x0bec C:\Windows\System32\ntshrui.dll - ok
09:25:35.0567 0x0bec [ BFEBE1E4B301F44CEA7C1B4021BD0264, F6984FC40F1731A936A1671A422FF750056418199576EDCD5F9373A23D0D0221 ] C:\Windows\System32\cscapi.dll
09:25:35.0567 0x0bec C:\Windows\System32\cscapi.dll - ok
09:25:35.0567 0x0bec [ F99A7E8B9DD9E511769C550E2174E4ED, 207773B827EA8FD675E99414D9975B08E828BC0984F464EB62A3F4FF02D49FFF ] C:\Windows\System32\wow64.dll
09:25:35.0567 0x0bec C:\Windows\System32\wow64.dll - ok
09:25:35.0567 0x0bec [ 49E5753D923F1AC63B22D3DCB0B47E00, 14CEC0BF5F625FF839A8D79B4A6B7C4AC0CBB705FD197C6B7FF8617C6C3E34FE ] C:\Windows\System32\uDWM.dll
09:25:35.0567 0x0bec C:\Windows\System32\uDWM.dll - ok
09:25:35.0582 0x0bec [ 1D63F4366288B8A7595397E27010FD44, 99EA4DDD88D9C4A4CC9B238F533CB4D2C062D46239173997E8594D8A75811A01 ] C:\Windows\System32\IconCodecService.dll
09:25:35.0582 0x0bec C:\Windows\System32\IconCodecService.dll - ok
09:25:35.0582 0x0bec [ 982A28EE7BADBF30B6BC774035DD318F, F818DC2E6696D6518F4DA1A2AA7A10FFF825733B8C48F72451C9D0411CF6EC5B ] C:\Windows\System32\wow64win.dll
09:25:35.0582 0x0bec C:\Windows\System32\wow64win.dll - ok
09:25:35.0582 0x0bec [ 5E39878945C109AC68AC81A96DF4EC77, A27F6F6AA2A463B4DDC33996F1CE9C9E9F7B7DB09247B11CB401EF9E11F62320 ] C:\Windows\System32\wow64cpu.dll
09:25:35.0582 0x0bec C:\Windows\System32\wow64cpu.dll - ok
09:25:35.0598 0x0bec [ 606ECB76A424CC535407E7A24E2A34BC, 2F579AF0D0F50235CD95DCF4CFA91426F169A75503B1FD5A81D7E0CFC9AA2277 ] C:\Windows\SysWOW64\kernel32.dll
09:25:35.0598 0x0bec C:\Windows\SysWOW64\kernel32.dll - ok
09:25:35.0598 0x0bec [ E553135C97982EDACDECDE48D3E38458, 7F530357C47102EA1E6F33281724C702CB785A72A0F412FFC7238EE9F593E8BB ] C:\Windows\SysWOW64\KernelBase.dll
09:25:35.0598 0x0bec C:\Windows\SysWOW64\KernelBase.dll - ok
09:25:35.0598 0x0bec [ 6095266CAAF5E75F394CFD4844CC4C25, 99C10DDD9F86D6FC10F5417F7FDE7A48909CDEF53F47D8A2DBFB0B656F89FCA6 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
09:25:35.0598 0x0bec C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
09:25:35.0614 0x0bec [ E46D48A7FE961401F1CBF85531CDF05D, 24CA38641020FF9E07E16CE3992212E2BFD2759E902D12744D4989ADF11995BF ] C:\Windows\SysWOW64\msvcrt.dll
09:25:35.0614 0x0bec C:\Windows\SysWOW64\msvcrt.dll - ok
09:25:35.0614 0x0bec [ 6377051C63D5552A311935C67E9FDFDC, 3FB82988AAB66813567E8DB951D4EE87F156201070F005FDBF52EF998A323E65 ] C:\Windows\SysWOW64\nsi.dll
09:25:35.0614 0x0bec C:\Windows\SysWOW64\nsi.dll - ok
09:25:35.0614 0x0bec [ 90385551B6B3793E949DF310A11D64E7, 11AF8D1723F6C57781B200CD78A93686BF26B645ACEEF336FAC7E7E53C4E0946 ] C:\Windows\SysWOW64\rpcrt4.dll
09:25:35.0614 0x0bec C:\Windows\SysWOW64\rpcrt4.dll - ok
09:25:35.0629 0x0bec [ CFF35B879D1618D42C86644C717BA947, 1837275202628D3320867A3BF8CFDA15491730C4B74215F7C0D7E140BF01AC3C ] C:\Windows\SysWOW64\winnsi.dll
09:25:35.0629 0x0bec C:\Windows\SysWOW64\winnsi.dll - ok
09:25:35.0629 0x0bec [ F08F6FCD09F9BE94C37ACC1B344685FF, DE48D766258B46EFEAB16579421C4BD97ACC6883F782D00E9857F4A0CE7E8A34 ] C:\Windows\SysWOW64\cryptbase.dll
09:25:35.0629 0x0bec C:\Windows\SysWOW64\cryptbase.dll - ok
09:25:35.0629 0x0bec [ CFC97F07904067A1E5FAE195D534DA3A, EB4D2D127312EB09E2ACCA3276779E80F90FAF77322684BABF72B8EC6E1F906C ] C:\Windows\SysWOW64\sechost.dll
09:25:35.0629 0x0bec C:\Windows\SysWOW64\sechost.dll - ok
09:25:35.0645 0x0bec [ FF5417CED6D8364082E32EFA487A5CE9, 7385D44B6A7283EC555FAA9BCADBAA2D2F85080F9CA6A5198BA1813E9F21362E ] C:\Windows\SysWOW64\sspicli.dll
09:25:35.0645 0x0bec C:\Windows\SysWOW64\sspicli.dll - ok
09:25:35.0645 0x0bec [ E8B0FFC209E504CB7E79FC24E6C085F0, 7F756B1DA060D5764C81F8D099E34265186B7E5E6B0FCA08E7FB3989EF4ED0E4 ] C:\Windows\SysWOW64\user32.dll
09:25:35.0645 0x0bec C:\Windows\SysWOW64\user32.dll - ok
09:25:35.0645 0x0bec [ E30E5BB0DBA49EFE5BBBAFEA440CFBD9, 70D11382A242DB280FC121DBB95D2810E9139DAB6B66BA5FD58F115E3572649B ] C:\Windows\SysWOW64\wtsapi32.dll
09:25:35.0645 0x0bec C:\Windows\SysWOW64\wtsapi32.dll - ok
09:25:35.0660 0x0bec [ FBE1E0B9EF53B5BB7C36763AA6A685CF, E999D53365387DCE50BE8A0FBD5E05222636D8CDDB309A529380076BE778729D ] C:\Windows\SysWOW64\gdi32.dll
09:25:35.0660 0x0bec C:\Windows\SysWOW64\gdi32.dll - ok
09:25:35.0660 0x0bec [ 384721EF4024890092625E20CADFAF85, 32FB012437C271CA4408EC60E6858485C2F9489107BBDB7011F728A0D2A26D2C ] C:\Windows\SysWOW64\lpk.dll
09:25:35.0660 0x0bec C:\Windows\SysWOW64\lpk.dll - ok
09:25:35.0660 0x0bec [ 0BA19F3198C40AC4E8CC66EE02EDA6C6, 4555FB6ED0F286DF94FEACFEC36BF23E0F586CFA80DEE45C5EA7A0760C967E84 ] C:\Windows\SysWOW64\usp10.dll
09:25:35.0660 0x0bec C:\Windows\SysWOW64\usp10.dll - ok
09:25:35.0676 0x0bec [ 0C65FA8214D6F8378D1D3BA1CA46AF0A, C8D0226F39A9DE3B871E84BB6B14975CBBE16A34ADAACBC33ACF726EE6E17104 ] C:\Windows\SysWOW64\advapi32.dll
09:25:35.0676 0x0bec C:\Windows\SysWOW64\advapi32.dll - ok
09:25:35.0676 0x0bec [ 1B53CD7FAC0D513A4E827294EB385B7D, 7985B547F17A6E6E7C8D51D0312CADA8D4A1CAC814B0665B1F58098AB7092418 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamsrv.dll
09:25:35.0676 0x0bec C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamsrv.dll - ok
09:25:35.0676 0x0bec [ DAAE8A9B8C0ACC7F858454132553C30D, 668A2FF7C4774A73D19E06D0E32B070C3B58FA66D273E647A01EE502A0CEE026 ] C:\Windows\SysWOW64\ws2_32.dll
09:25:35.0676 0x0bec C:\Windows\SysWOW64\ws2_32.dll - ok
09:25:35.0692 0x0bec [ 10A2F213B3A9DD13809F3B20F16042E0, 4C07743B50820E89CA1736EF67455B692BC5453472DB189525CD32B10BF15FC4 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\QtCore4.dll
09:25:35.0692 0x0bec C:\Program Files (x86)\Malwarebytes Anti-Malware\QtCore4.dll - ok
09:25:35.0692 0x0bec [ 4ACB903AD1693858A918907358CBD9E4, F7A5F4F958EB9A79C842A35CB4EE3947CC1F4F2DB4FCB5C90F8C99EF386009D3 ] C:\Windows\SysWOW64\ole32.dll
09:25:35.0692 0x0bec C:\Windows\SysWOW64\ole32.dll - ok
09:25:35.0692 0x0bec [ 0B6D151C261B24CA0E8935873F0F23D6, 1A43056A586A6812F6EEC53E6DF52FD69AC7B98E6920C9CF88AA04F1BCBBF76F ] C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcp100.dll
09:25:35.0692 0x0bec C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcp100.dll - ok
09:25:35.0707 0x0bec [ 4E2D4D6DC12983CB8E3E517AADE48E34, 9B728E98A1B09A08D8288F6A5A7E60CFF23A04120E60CC582C73AC577A280F78 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcr100.dll
09:25:35.0707 0x0bec C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcr100.dll - ok
09:25:35.0707 0x0bec [ E6B5DE86ABF68D7D67E451C29287B5C5, AFE45D233FFBC190B3F13D357C973D20122B3C08A06BFF1CE70C0D46E44C5532 ] C:\Windows\SysWOW64\crypt32.dll
09:25:35.0707 0x0bec C:\Windows\SysWOW64\crypt32.dll - ok
09:25:35.0723 0x0bec [ F5777C29E38E4BF12C6F93A0B2F1B2D7, 9565A1D3BEDECE70CE711A8A975886F3B0BBD9CFC3CBE6654372942EAF61773E ] C:\Windows\SysWOW64\msasn1.dll
09:25:35.0723 0x0bec C:\Windows\SysWOW64\msasn1.dll - ok
09:25:35.0723 0x0bec [ A543AC1F7138376D778D630A35FCBC4C, 2D824C66A97FC8C39DAFA397CC47495B712D175EEF393486946DA8936BDD466A ] C:\Windows\SysWOW64\psapi.dll
09:25:35.0723 0x0bec C:\Windows\SysWOW64\psapi.dll - ok
09:25:35.0723 0x0bec [ 518C6116079414E7074E726925D07A41, 419DB5CB061EAA5DCC4E6C91E02889C3681DA9F69D663A891FBDC3DF591A9247 ] C:\Windows\SysWOW64\shell32.dll
09:25:35.0723 0x0bec C:\Windows\SysWOW64\shell32.dll - ok
09:25:35.0738 0x0bec [ F037DB14CF6165C62F4A64D12A25B07C, 26CE06C858F59691F6D6D41E0031D9CD1ACB9AF24569FC3A0E869C08AA5225B5 ] C:\Windows\SysWOW64\shlwapi.dll
09:25:35.0738 0x0bec C:\Windows\SysWOW64\shlwapi.dll - ok
09:25:35.0738 0x0bec [ FADBB267FE9846233ED486DE6EEAAEB9, 7F038884CA763BBEB6E2ACADB4B58DBC5EE9D6A4FDC6C59B5AC8556850E1468E ] C:\Windows\SysWOW64\oleaut32.dll
09:25:35.0738 0x0bec C:\Windows\SysWOW64\oleaut32.dll - ok
09:25:35.0738 0x0bec [ 251D5BD37FB81DBDBF3653D81D6CAAC6, E219935C8FD333A2199800DEB957EFC2EC9F4A3225446F46A0448F77C671C37F ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamcore.dll
09:25:35.0738 0x0bec C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamcore.dll - ok
09:25:35.0754 0x0bec [ 9C0DC1DAAD14D443DD5A0D1EE78D775E, 73BA5BDF50EB78FA8BF479ADE0F1826FBB161CA70AF1405E06B64F4D2254B42C ] C:\Windows\SysWOW64\userenv.dll
09:25:35.0754 0x0bec C:\Windows\SysWOW64\userenv.dll - ok
09:25:35.0754 0x0bec [ C733D233B623B7FFCE5031E4B756EE26, 33CC8B140B0E4A9B702E3468BE2646AEE4273F20C6EA5BAC6C3D8FC8EDEF0881 ] C:\Windows\SysWOW64\profapi.dll
09:25:35.0754 0x0bec C:\Windows\SysWOW64\profapi.dll - ok
09:25:35.0754 0x0bec [ 61DA1DD85F7A9A8F8DEA8771931FAAF6, 0712A1EDD6F20FA4C52189A721D4A78B67FA4B7F1BD3AC70C7BA6689CB2D376F ] C:\Windows\SysWOW64\imagehlp.dll
09:25:35.0754 0x0bec C:\Windows\SysWOW64\imagehlp.dll - ok
09:25:35.0770 0x0bec [ B9A8CBCFCD3EC9D2EA4740AF347BF108, 97FA304E3880BC863D999F441AE47CB8ADF00D2DEC2A52ACD8FBD02CC096786A ] C:\Windows\SysWOW64\mpr.dll
09:25:35.0770 0x0bec C:\Windows\SysWOW64\mpr.dll - ok
09:25:35.0770 0x0bec [ 702254574E7E52052DE39408457B7149, 645CA9E88DA21C63710A04A0F54421018DF415A3D612112C71A255C49325C082 ] C:\Windows\SysWOW64\version.dll
09:25:35.0770 0x0bec C:\Windows\SysWOW64\version.dll - ok
09:25:35.0770 0x0bec [ 27CBC636ABCE09CDB5227A872BE7A79C, 3CB803AAC96DD766843DD6D0F5A0EF37A1447240A24E754049AA645AACCEC5E4 ] C:\Windows\SysWOW64\wintrust.dll
09:25:35.0770 0x0bec C:\Windows\SysWOW64\wintrust.dll - ok
09:25:35.0785 0x0bec [ 6D5A49D6479EB753C7879F73A4C35E0F, A6009398E643051A8CC3943EDF9B7974F15867720246EFE52EDB09B5B3A30B83 ] C:\Windows\SysWOW64\dnsapi.dll
09:25:35.0785 0x0bec C:\Windows\SysWOW64\dnsapi.dll - ok
09:25:35.0785 0x0bec [ 0DE3069D6E09BA262856EF31C941BEFE, 5F73305B7910B486882AFA838F1A0F0104B8FB1C2EAC14623D2028D23A704CA7 ] C:\Windows\SysWOW64\imm32.dll
09:25:35.0785 0x0bec C:\Windows\SysWOW64\imm32.dll - ok
09:25:35.0785 0x0bec [ C9618BC9B2B0FD7C1138D8774795A79B, 0AC170669C2626519FA7A745C56BFBA6B83B8537488F5B9EB7BA72448E5E7A43 ] C:\Windows\SysWOW64\msctf.dll
09:25:35.0785 0x0bec C:\Windows\SysWOW64\msctf.dll - ok
09:25:35.0801 0x0bec [ 7321F18D1F820612ED0E9F2D4B578A7E, 612BD7DE1DFBD100BD6ACB37A38565D88C39842D990D296B9B8E1FB75C3A94E7 ] C:\Windows\SysWOW64\cryptsp.dll
09:25:35.0801 0x0bec C:\Windows\SysWOW64\cryptsp.dll - ok
09:25:35.0801 0x0bec [ ED8EC63F7522DF4852147C84EC62C36A, 75633011CD28DCBD4834211A9D415F17DE15BFCD80FB9FF6CE25CBBD4E9899AF ] C:\Windows\SysWOW64\rsaenh.dll
09:25:35.0801 0x0bec C:\Windows\SysWOW64\rsaenh.dll - ok
09:25:35.0801 0x0bec [ D9A0CE66046D6EFA0C61BAA885CBA0A8, 06C3331C7F3EE0E0B95E8302CB80315E965587C4D6231785B8ACF3FAE4731FAF ] C:\Windows\System32\nlasvc.dll
09:25:35.0801 0x0bec C:\Windows\System32\nlasvc.dll - ok
09:25:35.0816 0x0bec [ 1727B2A2F379A32B864C096FA794AADC, 87B77A5DF95F3A1C5ED6DEF820C7E384BEFCBAA2FE1BB4781AC6F777A081E5CC ] C:\Windows\System32\aepic.dll
09:25:35.0816 0x0bec C:\Windows\System32\aepic.dll - ok
09:25:35.0816 0x0bec [ C6DCD1D11ED6827F05C00773C3E7053C, EA23BE261C9C04F44215D254D7A80FD0AEE84C6F192D0FEE49A7CF74ED3CB1A6 ] C:\Windows\System32\sfc.dll
09:25:35.0816 0x0bec C:\Windows\System32\sfc.dll - ok
09:25:35.0816 0x0bec [ 895C9AB0A855547445C4181195230757, 89BDA385D8CCB75C3D7B1BDFA567AC441A931F4E499C0835FEE9D010343FABB6 ] C:\Windows\System32\sfc_os.dll
09:25:35.0816 0x0bec C:\Windows\System32\sfc_os.dll - ok
09:25:35.0832 0x0bec [ 107F279517E2A04DB4AC1B1FAF1D573B, 487F505E97288ACA23229D1D421FD62E3A8FE59FA3A504F6C125854DF8BEDE5B ] C:\Windows\System32\ncsi.dll
09:25:35.0832 0x0bec C:\Windows\System32\ncsi.dll - ok
09:25:35.0832 0x0bec [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] C:\Windows\System32\drivers\PEAuth.sys
09:25:35.0832 0x0bec C:\Windows\System32\drivers\PEAuth.sys - ok
09:25:35.0832 0x0bec [ 4552F2FF1FF3720A65619F92965E1ACC, 0CAA315B0871DD822BBB5E5896E5C2B8F71D2DA488951C89E8C37A93204C5223 ] C:\Windows\System32\winhttp.dll
09:25:35.0832 0x0bec C:\Windows\System32\winhttp.dll - ok
09:25:35.0848 0x0bec [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] C:\Windows\System32\drivers\secdrv.sys
09:25:35.0848 0x0bec C:\Windows\System32\drivers\secdrv.sys - ok
09:25:35.0848 0x0bec [ FF604B2C8B39E14421C9DF2D1D3887BD, 55F49D32640B3E2363957616422B0818934C01173972ECC57375DD82769C144F ] C:\Windows\System32\webio.dll
09:25:35.0848 0x0bec C:\Windows\System32\webio.dll - ok
09:25:35.0848 0x0bec [ 210FCACAF902B2CD47CF9FD17D846146, 3F77AC721E084864C5966FF5337A90185F62203DC19C685328675500D629CB87 ] C:\Windows\System32\aeevts.dll
09:25:35.0848 0x0bec C:\Windows\System32\aeevts.dll - ok
09:25:35.0848 0x0bec [ 26E84D3649019C3244622E654DFCD75B, 49BD7345AF744298698629E0D7C0C373AB2F75F542281268BCF91A6D2B278AA8 ] C:\Windows\System32\drivers\srvnet.sys
09:25:35.0863 0x0bec C:\Windows\System32\drivers\srvnet.sys - ok
09:25:35.0863 0x0bec [ 76D078AF6F587B162D50210F761EB9ED, 3813171036B4036306CADC29F877ADAE44B241DDF65B3699C352B7CDA9EC68C9 ] C:\Windows\System32\drivers\tcpipreg.sys
09:25:35.0863 0x0bec C:\Windows\System32\drivers\tcpipreg.sys - ok
09:25:35.0863 0x0bec [ 2BBF3FDB70B8965DFA0258CBAB41ECCE, 4EFA41765E46E90C6CBDB0DC1E0CD375D7AB3307C477171EBAA6A16AC32E5211 ] C:\Windows\System32\ssdpapi.dll
09:25:35.0863 0x0bec C:\Windows\System32\ssdpapi.dll - ok
09:25:35.0879 0x0bec [ 3C1284516A62078FB68F768DE4F1A7BE, 67ECD462335EF88773E4BAEAB230A68EC92A25F8CD8F115873F669205AE6A1A9 ] C:\Windows\System32\sysmain.dll
09:25:35.0879 0x0bec C:\Windows\System32\sysmain.dll - ok
09:25:35.0879 0x0bec [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] C:\Windows\System32\wbem\WMIsvc.dll
09:25:35.0879 0x0bec C:\Windows\System32\wbem\WMIsvc.dll - ok
09:25:35.0879 0x0bec [ F773D2ED090B7BAA1C1A034F3CA476C8, C8DD8BE37CFEA0DB1B7FC94946381B60553848002E6170E0BEC3FEE40295DF1F ] C:\Windows\System32\drivers\srv2.sys
09:25:35.0879 0x0bec C:\Windows\System32\drivers\srv2.sys - ok
09:25:35.0894 0x0bec [ FAF9BA81FB0543CB4B7EFFD24CFA815F, DC876993FDAEE449C228D23942E3CA8C116AEA5F64D55A7C45F5EA0AB61CD62F ] C:\Windows\System32\wbemcomn.dll
09:25:35.0894 0x0bec C:\Windows\System32\wbemcomn.dll - ok
09:25:35.0894 0x0bec [ 0255C22D99602534F15CBB8D9B6F152F, 43CD89D6CA56E0B633142F7C86DA9E072EE0723B5EBC4CE8CCBCA58C396ECF54 ] C:\Windows\System32\wbem\WinMgmtR.dll
09:25:35.0894 0x0bec C:\Windows\System32\wbem\WinMgmtR.dll - ok
09:25:35.0894 0x0bec [ A7582A70802D5B9F28ED3940F6A3E9ED, 18BA69BF8386610F5EDA4430991C22D895477EA8911B855C951F70AE03CEA8AB ] C:\Windows\System32\wbem\WmiDcPrv.dll
09:25:35.0894 0x0bec C:\Windows\System32\wbem\WmiDcPrv.dll - ok
09:25:35.0910 0x0bec [ A3F5E8EC1316C3E2562B82694A251C9E, F3DC6AA6A9D3B5BBC730668FC52C1D4BB5D515D404578BDDD3D4869A7ED58822 ] C:\Windows\System32\wbem\fastprox.dll
09:25:35.0910 0x0bec C:\Windows\System32\wbem\fastprox.dll - ok
09:25:35.0910 0x0bec [ EC8F67289105BF270498095F14963464, 454031C8AE06511DD13DBAA613B983516AF937590FB2B8C6ADC273D018D30858 ] C:\Windows\System32\drivers\srv.sys
09:25:35.0910 0x0bec C:\Windows\System32\drivers\srv.sys - ok
09:25:35.0910 0x0bec [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] C:\Windows\System32\trkwks.dll
09:25:35.0910 0x0bec C:\Windows\System32\trkwks.dll - ok
09:25:35.0926 0x0bec [ F8E058D17363EC580E4B7232778B6CB5, 02352919F349C57930A0B032FBDC45327FB473D310DE7AC721F4694FDE7D21FB ] C:\Windows\System32\iphlpsvc.dll
09:25:35.0926 0x0bec C:\Windows\System32\iphlpsvc.dll - ok
09:25:35.0926 0x0bec [ EE26D130808D16C0E417BBBED0451B34, 4886DCE4FAEF146A40BABD492A8000A2022FEA542A6135A9BAFD4CD09297B4E5 ] C:\Windows\System32\ntdsapi.dll
09:25:35.0926 0x0bec C:\Windows\System32\ntdsapi.dll - ok
09:25:35.0926 0x0bec [ 48A6CA43A5C921C465F70D9B42B3EF1A, A618BCB175D46C0C088CEA98DC4DA8CB255F1D3B0ED72BBCC168AECD07B9F03F ] C:\Windows\System32\sqmapi.dll
09:25:35.0926 0x0bec C:\Windows\System32\sqmapi.dll - ok
09:25:35.0941 0x0bec [ 666A60F6F5E719856FF6254E0966EFF7, 58C072E7E215991E19C1CA062C476081982F7B9F039714539AE7FEB4981C200F ] C:\Windows\System32\wbem\wbemprox.dll
09:25:35.0941 0x0bec C:\Windows\System32\wbem\wbemprox.dll - ok
09:25:35.0941 0x0bec [ 7B38D7916A7CD058C16A0A6CA5077901, 3F6DD990E2DA5D3BD6D65A72CBFB0FE79EB30B118A8AD71B6C9BB5581A622DCE ] C:\Windows\System32\wdscore.dll
09:25:35.0941 0x0bec C:\Windows\System32\wdscore.dll - ok
09:25:35.0941 0x0bec [ C926920B8978DE6ACFE9E15C709E9B57, 33B8002ABC30372B1CA8B6EC046757794CD7C9DA3CA4715B515B6894DC7E45CA ] C:\Windows\System32\srvsvc.dll
09:25:35.0941 0x0bec C:\Windows\System32\srvsvc.dll - ok
09:25:35.0957 0x0bec [ 94FBC06F294D58D02361918418F996E3, 62C7CC2AF8F5A0BB0C262DACDE3F72C6AC318C3840CE60E46EE2064B32BDA5EF ] C:\Windows\System32\browser.dll
09:25:35.0957 0x0bec C:\Windows\System32\browser.dll - ok
09:25:35.0957 0x0bec [ CFEFA40DDE34659BE5211966EAD86437, AC0A3AD8AA47012C40785013E2273FC571F416BC9C9FFDA418FE72B3123C1FB0 ] C:\Windows\System32\netmsg.dll
09:25:35.0957 0x0bec C:\Windows\System32\netmsg.dll - ok
09:25:35.0957 0x0bec [ 836892094209E5D9CF403B4CF2829B5C, C8CB0FCCBF4C7E5E64E1B4225B559E049A25792F99A880DEEC5C66243B6EC2CA ] C:\Windows\System32\sscore.dll
09:25:35.0957 0x0bec C:\Windows\System32\sscore.dll - ok
09:25:35.0972 0x0bec [ 4EAE37133B78A26A84EA1649D9B21A1E, 832FE4BCF5E3721267E5E30392C29FC96976F2ABFF5B0BED768F8D97606D8D98 ] C:\Windows\System32\clusapi.dll
09:25:35.0972 0x0bec C:\Windows\System32\clusapi.dll - ok
09:25:35.0972 0x0bec [ 344FCC9850C3A8A3B4D3C65151AF8E4C, C38853454E153B1AB4AEAE1AAFB7CB4B2E6234208CF24C09F3B2AFE25E271C5C ] C:\Windows\System32\resutils.dll
09:25:35.0972 0x0bec C:\Windows\System32\resutils.dll - ok
09:25:35.0972 0x0bec [ 3B367397320C26DBA890B260F80D1B1B, 50BBE71B4380B5E86E197AF86F5C08266DD6B12344BA4ABDEA604B8C774C4147 ] C:\Windows\System32\hnetcfg.dll
09:25:35.0972 0x0bec C:\Windows\System32\hnetcfg.dll - ok
09:25:35.0988 0x0bec [ 6E03C9E362389A768E6C240933352D11, 7A08805635262E0F104DC0E8C3D7CC7E0C941F45EE5C5DC6DD05FC7F2BAD7E91 ] C:\Windows\System32\nci.dll
09:25:35.0988 0x0bec C:\Windows\System32\nci.dll - ok
09:25:35.0988 0x0bec [ 3B9665D4B8C587A6014B9B8DFF5974A0, C616EB39D923954B484CEA863CA840E525366916286962D737D04FCCBD3610B8 ] C:\Windows\System32\wbem\wbemcore.dll
09:25:35.0988 0x0bec C:\Windows\System32\wbem\wbemcore.dll - ok
09:25:35.0988 0x0bec [ 087D8668C71634A3A3761135ABF16EEE, B7348A63299CFF4FFBF375E645A4850AE0F108D48D13AB25434CFAE7CF3D61FD ] C:\Windows\System32\wbem\esscli.dll
09:25:35.0988 0x0bec C:\Windows\System32\wbem\esscli.dll - ok
09:25:36.0004 0x0bec [ 718B6F51AB7F6FE2988A36868F9AD3AB, 76141B4E94C2766E2C34CEF523092948771A7893212EFADBE88D2171B85FF012 ] C:\Windows\System32\wbem\wbemsvc.dll
09:25:36.0004 0x0bec C:\Windows\System32\wbem\wbemsvc.dll - ok
09:25:36.0004 0x0bec [ 0143DB80DACFB7C2B5B7009ED9063353, 252885CF7C1BAB89B86908373546E5F5D674BEF7AACBDDCF321AD877CB9150A9 ] C:\Windows\System32\wbem\wmiutils.dll
09:25:36.0004 0x0bec C:\Windows\System32\wbem\wmiutils.dll - ok
09:25:36.0004 0x0bec [ 0AB34456654C283DAA13B8D2BA21439B, 4B70FC5195DE39564E951C8542020BA3D4257E3D4488F69825F67A6099CB7549 ] C:\Windows\System32\wbem\repdrvfs.dll
09:25:36.0004 0x0bec C:\Windows\System32\wbem\repdrvfs.dll - ok
09:25:36.0019 0x0bec [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] C:\Windows\System32\hidserv.dll
09:25:36.0019 0x0bec C:\Windows\System32\hidserv.dll - ok
09:25:36.0019 0x0bec [ 88351B29B622B30962D2FEB6CA8D860B, A16CAD7D94C1C9807083BB36E9B4C3C14E6482C4CA2BDFACBCC86E737DDCE42E ] C:\Windows\System32\rasadhlp.dll
09:25:36.0019 0x0bec C:\Windows\System32\rasadhlp.dll - ok
09:25:36.0019 0x0bec [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] C:\Windows\System32\wdi.dll
09:25:36.0019 0x0bec C:\Windows\System32\wdi.dll - ok
09:25:36.0035 0x0bec [ D065BE66822847B7F127D1F90158376E, 20F911F390FF23C2C42361A449C4344DB59F1DC21EDD1E7EBC4E80914DEF7824 ] C:\Windows\System32\appinfo.dll
09:25:36.0035 0x0bec C:\Windows\System32\appinfo.dll - ok
09:25:36.0035 0x0bec [ 2E57DDF2880A7E52E76F41C7E96D327B, D24E19B6091C197D77D71BC044CE2E5A57BE0A2F00D1BB0732E380A398230E63 ] C:\Windows\System32\wpdbusenum.dll
09:25:36.0035 0x0bec C:\Windows\System32\wpdbusenum.dll - ok
09:25:36.0035 0x0bec [ D891293880F2F00AB7BA959910300EF7, 2C974D3BE5E762694B5270330211D761C35C25C495EA173FC22DCD8820FDAF0A ] C:\Windows\System32\diagperf.dll
09:25:36.0035 0x0bec C:\Windows\System32\diagperf.dll - ok
09:25:36.0050 0x0bec [ F7073C962C4FB7C415565DDE109DE49F, 781E7088DCEFBC34A808C3E7DA41A56112B3F23ABE9F54B5EF4D5CD9CD016B1D ] C:\Windows\System32\npmproxy.dll
09:25:36.0050 0x0bec C:\Windows\System32\npmproxy.dll - ok
09:25:36.0050 0x0bec [ BF4AC709BE5BF64F331F5D67773A0C82, 96E5A2A12D386B8A7976FEC76FD350E6A3EEBDF5763F4BBF4AB18880E9F269E0 ] C:\Windows\System32\perftrack.dll
09:25:36.0050 0x0bec C:\Windows\System32\perftrack.dll - ok
09:25:36.0050 0x0bec [ 5DA7D8934F7AB0884A6A8FC02E8B2AA7, A0B8795965A10B045A6316FCEB48DF389E35E8739EEE4358789A18A7B8140E7A ] C:\Windows\System32\PortableDeviceApi.dll
09:25:36.0050 0x0bec C:\Windows\System32\PortableDeviceApi.dll - ok
09:25:36.0066 0x0bec [ 6AB6D4DF10EC784CF4A66CBFAF417A11, 7DD59A6A686736D4CCA4D486BD2FE0A0743AFBA838DBCBDBFF3078080BFA1CF3 ] C:\Windows\System32\runonce.exe
09:25:36.0066 0x0bec C:\Windows\System32\runonce.exe - ok
09:25:36.0066 0x0bec [ AFA79C343F9D1555F7E5D5FA70BB2A14, 440EF3ADC1F5C7A5ED3E872C8D8DFA61B039454C3CA67F8A51CA8BDCFDC4BA4A ] C:\Windows\System32\PortableDeviceConnectApi.dll
09:25:36.0066 0x0bec C:\Windows\System32\PortableDeviceConnectApi.dll - ok
09:25:36.0066 0x0bec [ 9689A9C7F7C2A1A423CDA2C3B43FFF65, 914AD22D98975578BC14D821F72E8DFCE24F2092F9C299D24EBBAF5408FE8B8B ] C:\Windows\System32\wer.dll
09:25:36.0066 0x0bec C:\Windows\System32\wer.dll - ok
09:25:36.0082 0x0bec [ 169F916EFEAA44487E65305B7D2D754B, E87069D36E05133A58638A1CBD765AE3122917B3E0AFA06C8644C861B3ED5A16 ] C:\Windows\SysWOW64\runonce.exe
09:25:36.0082 0x0bec C:\Windows\SysWOW64\runonce.exe - ok
09:25:36.0082 0x0bec [ E1B22739C933BE33F53DB58C5393ADD3, 26EE0DD091D2E00DECC774DC1EEDFFDE69AF74B0C769CCBE091AFC32C66E4207 ] C:\Windows\System32\Apphlpdm.dll
09:25:36.0082 0x0bec C:\Windows\System32\Apphlpdm.dll - ok
09:25:36.0082 0x0bec [ 9719E3D834F5C8C43F56A93DFA497023, 4D78D4BD4835C0A237821967156C19DF4B90384A6BCB1F48CEAF35D003A0099A ] C:\Windows\System32\pnpts.dll
09:25:36.0082 0x0bec C:\Windows\System32\pnpts.dll - ok
09:25:36.0097 0x0bec [ 82BC97E5793DEF69691AAD5AB953A200, E589D638C8FEAA88EA9149E463C675C36FEA4310923C47C095B1EA50B2DC52F6 ] C:\Windows\System32\wbem\WmiPrvSD.dll
09:25:36.0097 0x0bec C:\Windows\System32\wbem\WmiPrvSD.dll - ok
09:25:36.0097 0x0bec [ 46863C4CC5B68EB09EA2D5EEF0F1193A, 9B5593E1F484AC8F96F89A5995FB1FE9C51CB2F0F545607F6850751191150CFE ] C:\Windows\System32\radardt.dll
09:25:36.0097 0x0bec C:\Windows\System32\radardt.dll - ok
09:25:36.0097 0x0bec [ 0FA436A553408CBEBA070E3182658DE3, 304DA948021759DB08AB37DB9719CAF1BF671AACA1C6497C7CC784FE4EFF9550 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll
09:25:36.0097 0x0bec C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll - ok
09:25:36.0113 0x0bec [ 65AF044B5570D355124DCD1E099AA98F, 84165B4C2F7EA6DCC52442C50610F363D319B7768A62A7E8B4920D459A3024CD ] C:\Windows\System32\wdiasqmmodule.dll
09:25:36.0113 0x0bec C:\Windows\System32\wdiasqmmodule.dll - ok
09:25:36.0113 0x0bec [ D41FEBD098234F02485A4EA98D4730A4, 462DC8168C444F35B43BA3B8F7D77734665D84F1C6D25CAD7391C0145961628F ] C:\Windows\System32\ncobjapi.dll
09:25:36.0113 0x0bec C:\Windows\System32\ncobjapi.dll - ok
09:25:36.0113 0x0bec [ 6F40D6FB05E0C1E5402812B426971AF0, E41F138F0F2DB057F8DBB1587237C6FA8A2059B3D64EC894D1DC492A18DBBDED ] C:\Windows\System32\wbem\wbemess.dll
09:25:36.0113 0x0bec C:\Windows\System32\wbem\wbemess.dll - ok
09:25:36.0128 0x0bec [ E629F1A051C82795DDFFD3E8D4855811, 6E4DFFEAB2795C98EA6DCAF10EA6D97413D0F8CA0C04869CB20B74FF4D6FE679 ] C:\Windows\System32\dimsjob.dll
09:25:36.0128 0x0bec C:\Windows\System32\dimsjob.dll - ok
09:25:36.0128 0x0bec [ 35CB97CBC3EDC463418ED4997AAB29B6, EE60EABE2D87CEDD68FB8985B6C5D70930015FB2B8DB9FDCB4044587BC6ECA4C ] C:\Windows\System32\pautoenr.dll
09:25:36.0128 0x0bec C:\Windows\System32\pautoenr.dll - ok
09:25:36.0128 0x0bec [ 43964FA89CCF97BA6BE34D69455AC65F, 10E3B89A5470E1BB6F73382135DD2352F5073C1EE8485D7476CFB5122D4AAA2F ] C:\Windows\SysWOW64\uxtheme.dll
09:25:36.0128 0x0bec C:\Windows\SysWOW64\uxtheme.dll - ok
09:25:36.0144 0x0bec [ AAA6D0DF7356BBA706BD67385A103AAB, 4A483A9EEC0F3881C0252E975852A8D96D81DA0CC35C5E2E4F00947E6C2B0A69 ] C:\Windows\System32\certcli.dll
09:25:36.0144 0x0bec C:\Windows\System32\certcli.dll - ok
09:25:36.0144 0x0bec [ 41323AB614A2B66AD77B1121D24AC895, 3B441E113365F597F5AA18979AFFD5F7F37F75EBFBBA0AE821ACEE550E3EEC05 ] C:\Windows\SysWOW64\setupapi.dll
09:25:36.0144 0x0bec C:\Windows\SysWOW64\setupapi.dll - ok
09:25:36.0144 0x0bec [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C, 78889511D6F471009674CC958F8BB77B4A79C952634B18E8AFF4A75AA6A60E87 ] C:\Windows\System32\ndiscapCfg.dll
09:25:36.0144 0x0bec C:\Windows\System32\ndiscapCfg.dll - ok
09:25:36.0160 0x0bec [ C178E912A4C491864D78E4F56EC3E27A, 28800DAA944A9F1350081A0D9555913274162247CA5608BF2F834812E2B6D321 ] C:\Windows\System32\CertEnroll.dll
09:25:36.0160 0x0bec C:\Windows\System32\CertEnroll.dll - ok
09:25:36.0160 0x0bec [ 3D6AF45673C4B31CDECD7F80AF09D443, 7D711D138C107816155AFA5E5FDC6892734074BEFF604B5904177B5D9ACE4670 ] C:\Windows\System32\rascfg.dll
09:25:36.0160 0x0bec C:\Windows\System32\rascfg.dll - ok
09:25:36.0160 0x0bec [ 114429A77D935053E13A9BF98A8B8CA1, 6120CF8EC6D2F262A3FCB0C0BB185DA8BE5F4D5FF6A114D8F54CC13535C31EE5 ] C:\Windows\System32\mprapi.dll
09:25:36.0160 0x0bec C:\Windows\System32\mprapi.dll - ok
09:25:36.0175 0x0bec [ 1CF21800E337F4039AAD4C94B4280EE4, EF434CEF6E62A202B85E8EC7916EB998E20B10675437CDE90084CDA938C0AA3F ] C:\Windows\System32\mprmsg.dll
09:25:36.0175 0x0bec C:\Windows\System32\mprmsg.dll - ok
09:25:36.0175 0x0bec [ 1FCD619D8542A248D4E1FF72FFB0E56B, FFF35156138B5178F094AE5735EEBFF2AB3E0F71B23FEE24EEEC980C2B2EBF35 ] C:\Windows\System32\tcpipcfg.dll
09:25:36.0175 0x0bec C:\Windows\System32\tcpipcfg.dll - ok
09:25:36.0175 0x0bec [ 15B94E4AC75C9295275BDC9A1D7054C3, 1B478C2A60B3CFC066B7FE9A388BC2E29974B4B8A664AFEFA59FD8F18B39DE36 ] C:\Windows\SysWOW64\cfgmgr32.dll
09:25:36.0175 0x0bec C:\Windows\SysWOW64\cfgmgr32.dll - ok
09:25:36.0191 0x0bec [ FF5688D309347F2720911D8796912834, 3B0D73C50D40A6F42629B7750F99F656BF5C1C50237D5F98B6C0F2CE5E2DA359 ] C:\Windows\SysWOW64\clbcatq.dll
09:25:36.0191 0x0bec C:\Windows\SysWOW64\clbcatq.dll - ok
09:25:36.0191 0x0bec [ CC4ED8BEA78B0DCA6F217E014C3291A7, 01104182E4E6FB3CF6397936D30B2CE3486967586D1B94187B59A8232DAE39FF ] C:\Windows\SysWOW64\devobj.dll
09:25:36.0191 0x0bec C:\Windows\SysWOW64\devobj.dll - ok
09:25:36.0191 0x0bec [ 26EAEE08CAF82AA7F03C5020F51DA541, 5541193DD9A16E27339225E6BA4F2664B0B166E9A13D2FFF267F6E15211B5794 ] C:\Windows\SysWOW64\propsys.dll
09:25:36.0191 0x0bec C:\Windows\SysWOW64\propsys.dll - ok
09:25:36.0206 0x0bec [ 4AF9FD44342A024B867E1950EE46FCB8, 6A35F91AA62B40D55DBFFF451D68117704066E2990DBD2B654E4B69ED1A305F0 ] C:\Windows\SysWOW64\urlmon.dll
09:25:36.0206 0x0bec C:\Windows\SysWOW64\urlmon.dll - ok
09:25:36.0206 0x0bec [ 13D1F490AF6C7649F51BA29F9CCBB778, 2A389A84E14CE601203CED3283B3345A74B040C670BCDF8C2AE22652E314D17C ] C:\Windows\SysWOW64\iertutil.dll
09:25:36.0206 0x0bec C:\Windows\SysWOW64\iertutil.dll - ok
09:25:36.0206 0x0bec [ 3FD15B4611D9BDA3F8013548C0ECAECA, B47A8D9985D9B71EB870816A0AB2B6403D394CCBDF7DE5378D5721D58D68D28D ] C:\Windows\SysWOW64\ntmarta.dll
09:25:36.0206 0x0bec C:\Windows\SysWOW64\ntmarta.dll - ok
09:25:36.0222 0x0bec [ BFA70A99AD1434263F2DFBBA103BDEF8, 5A0E73D48824C23E2C221EAC369A906FEDECE0E047E8C7E5F012242E74AFAF9E ] C:\Windows\SysWOW64\Wldap32.dll
09:25:36.0222 0x0bec C:\Windows\SysWOW64\Wldap32.dll - ok
09:25:36.0222 0x0bec [ 2E2072EB48238FCA8FBB7A9F5FABAC45, AC70B9FC24847EEC2E18008F2894DCDAC19A9C90D5D88729326E493CA524F5C3 ] C:\Windows\System32\winrnr.dll
09:25:36.0222 0x0bec C:\Windows\System32\winrnr.dll - ok
09:25:36.0222 0x0bec [ 58A0CDABEA255616827B1C22C9994466, 4FE1140AA8D3995579DE8CDF4ECAD1978804D05351EABB4079A63B303EF1B451 ] C:\Windows\System32\NapiNSP.dll
09:25:36.0222 0x0bec C:\Windows\System32\NapiNSP.dll - ok
09:25:36.0238 0x0bec [ C02E3CE20E7776C922B5C8938350B5F1, 4BA2250230BC496ACF5709AD54E99BAC858C298BF09DBC574F8CA365A33E5FFC ] C:\Windows\SysWOW64\apphelp.dll
09:25:36.0238 0x0bec C:\Windows\SysWOW64\apphelp.dll - ok
09:25:36.0238 0x0bec [ 613C8CE10A5FDE582BA5FA64C4D56AAA, 30507B6BA79E1A271B07BBA58B4FF463678BE0960266A1D5E88031E932D768B6 ] C:\Windows\System32\pnrpnsp.dll
09:25:36.0238 0x0bec C:\Windows\System32\pnrpnsp.dll - ok
09:25:36.0238 0x0bec [ 8AE6DD9A6D246004DA047F704F0CC487, 8DEAB32F7297BCBC22CAA7BAEB2DDB6BF36E73D9A7F68B6737C1E4C75E213CB9 ] C:\Windows\SysWOW64\cmd.exe
09:25:36.0238 0x0bec C:\Windows\SysWOW64\cmd.exe - ok
09:25:36.0253 0x0bec [ AC0C9CEA1218DAB1994AF8B28E680BD9, 7C79144AD91C5B578B48DD6412884A58F4E6C23732612655A73486FC7BCE68A0 ] C:\Windows\System32\wlaninst.dll
09:25:36.0253 0x0bec C:\Windows\System32\wlaninst.dll - ok
09:25:36.0253 0x0bec [ 5A406C9C8E0880D3EABADC5DFD1ACDAE, D3228D81B30A37DDDBF2E9FECC8885404FB95DBD11C5F55A425B27BD361BC2C1 ] C:\Windows\System32\wwaninst.dll
09:25:36.0253 0x0bec C:\Windows\System32\wwaninst.dll - ok
09:25:36.0253 0x0bec [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\System32\rundll32.exe
09:25:36.0253 0x0bec C:\Windows\System32\rundll32.exe - ok
09:25:36.0269 0x0bec [ 1E4BDDBD5A63059A97063339B4F8986F, 0EFBD43CEB83B4D72EDD7CE58F81504DFFB6C8E78A185DE1437CFC39E7EB90C0 ] C:\Windows\System32\actxprxy.dll
09:25:36.0269 0x0bec C:\Windows\System32\actxprxy.dll - ok
09:25:36.0269 0x0bec [ 326C7F76A29897A892AA7726E91C1C67, 64305346B06EC14976130B0B80F14B4D5AB63E5B2A6A7B872EC9CE2BF8FADCD2 ] C:\Windows\SysWOW64\winbrand.dll
09:25:36.0269 0x0bec C:\Windows\SysWOW64\winbrand.dll - ok
09:25:36.0269 0x0bec [ 672ECBB050F17BF90FE00758596F38CA, 692CA91D62B65E562A931BC1437B639658CE65C5290A013B73F051A948AE17F9 ] C:\Windows\SysWOW64\ieframe.dll
09:25:36.0269 0x0bec C:\Windows\SysWOW64\ieframe.dll - ok
09:25:36.0284 0x0bec [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] C:\Windows\System32\aelupsvc.dll
09:25:36.0284 0x0bec C:\Windows\System32\aelupsvc.dll - ok
09:25:36.0284 0x0bec [ CBD010BFBED9657C3813400AAD03CF8A, 2DD60A291D8F4A44D7D638C83A46CFA618525A72B9D975FB81F8F403699B9AE6 ] C:\Windows\SysWOW64\oleacc.dll
09:25:36.0284 0x0bec C:\Windows\SysWOW64\oleacc.dll - ok
09:25:36.0284 0x0bec [ E07B77C3BDC82A024E294FB67ABFEDA0, B7ADCD536544F4C59748562504824B252B503E0C6DFF8D94512A88EE4A38B0E0 ] C:\Windows\SysWOW64\shdocvw.dll
09:25:36.0284 0x0bec C:\Windows\SysWOW64\shdocvw.dll - ok
09:25:36.0300 0x0bec [ 9C5DAAED3B3C06DBC95228CC407B8B70, E306E5C4A1C0D4B63840E38098B9FF2F4267FA4F519C7841E5A0C25A8DFF96D8 ] C:\Users\DeathDoc\AppData\Local\Temp\{13DD688B-EF8F-47C4-AC04-2F5E8D1FF237}.exe
09:25:36.0300 0x0bec C:\Users\DeathDoc\AppData\Local\Temp\{13DD688B-EF8F-47C4-AC04-2F5E8D1FF237}.exe - ok
09:25:36.0300 0x0bec [ C20FF1A17726C357461A7AC5B3BFC3AD, 970558642CC14837B77B48257E3171ACC84466888875927314ACD6D79176F967 ] C:\Windows\SysWOW64\ncrypt.dll
09:25:36.0300 0x0bec C:\Windows\SysWOW64\ncrypt.dll - ok
09:25:36.0300 0x0bec [ CE71B9119A258EDD0A05B37D7B0F92E3, D9310C5BBFE089B8C81E259C462EC1E6D7A7A87FA59FC1F174ED5C58D409AE7A ] C:\Windows\SysWOW64\bcrypt.dll
09:25:36.0300 0x0bec C:\Windows\SysWOW64\bcrypt.dll - ok
09:25:36.0316 0x0bec [ E8449FE262D7406BCB2AC2A45C53EC5F, 6C118C9FB26404D1943824CF3990F36E12986547FFACB7CC0DF975A913065D78 ] C:\Windows\SysWOW64\bcryptprimitives.dll
09:25:36.0316 0x0bec C:\Windows\SysWOW64\bcryptprimitives.dll - ok
09:25:36.0316 0x0bec [ 1097F3035BAF46CED8B332B3564C5108, C69781683CA963A1335780DABBBC60E2C3CEF0888738D3425D358D12E8D0AF58 ] C:\Windows\SysWOW64\gpapi.dll
09:25:36.0316 0x0bec C:\Windows\SysWOW64\gpapi.dll - ok
09:25:36.0316 0x0bec [ 04D16553664796613FE98D441A0C35D7, EC9D4B3B8F8B0C3EE01D18CDF5BE9EF216AC9BBB1FB64A63D5013BD9AFB2A606 ] C:\Windows\SysWOW64\cryptnet.dll
09:25:36.0316 0x0bec C:\Windows\SysWOW64\cryptnet.dll - ok
09:25:36.0331 0x0bec [ 6F8E3B7B70E1BBA871212940C1FBDF60, 3F9D4EE64E4210340C6FEE0DE81BFE3C613DDBE608EC09D63817D24CE24BFC5E ] C:\Windows\SysWOW64\SensApi.dll
09:25:36.0331 0x0bec C:\Windows\SysWOW64\SensApi.dll - ok
09:25:36.0331 0x0bec [ DEF30CBEA881149C2AFFDF9A059FB759, F0F4DFBD8B6B80FFE3F019380E44EFD276FBD1A99E6135088E042E78EC2C6515 ] C:\Windows\SysWOW64\cabinet.dll
09:25:36.0331 0x0bec C:\Windows\SysWOW64\cabinet.dll - ok
09:25:36.0331 0x0bec [ FD07F21E0A19C27ED4E1EEC2B07452B3, DF54C00B021AF64BB04EDEBCA6F41CCF48F1959DD53ADE545FAFC565F1243392 ] C:\Windows\SysWOW64\devrtl.dll
09:25:36.0331 0x0bec C:\Windows\SysWOW64\devrtl.dll - ok
09:25:36.0347 0x0bec [ D757F59EED634C595727534B60E640B8, 58ECD28FB62DB9F2302E21E00F253542FA6D450D36685A11012C827324D0C00D ] C:\Windows\SysWOW64\winhttp.dll
09:25:36.0347 0x0bec C:\Windows\SysWOW64\winhttp.dll - ok
09:25:36.0347 0x0bec [ 7F739F89F7F60221740DA9DE1B1DABB6, 7FB3E2DF211826B097FEDB8335DB2CC0206823B440897478C1E77169E4033D66 ] C:\Windows\SysWOW64\webio.dll
09:25:36.0347 0x0bec C:\Windows\SysWOW64\webio.dll - ok
09:25:36.0347 0x0bec [ BF591B5C2CC38314518467E883AE37C5, AE87A8812B9836440094558D198B15C1EBD333E1F739295BE80F8D7BA23B05DF ] C:\Windows\SysWOW64\credssp.dll
09:25:36.0347 0x0bec C:\Windows\SysWOW64\credssp.dll - ok
09:25:36.0362 0x0bec [ 11A41F17527ED75D6B758FDD7F4FD00D, A646BA0BAA992A7B98C813AD8D834D57F27DB6F7F0F3200F68CB8B99F4C5D731 ] C:\Windows\SysWOW64\mswsock.dll
09:25:36.0362 0x0bec C:\Windows\SysWOW64\mswsock.dll - ok
09:25:36.0362 0x0bec [ EE5C8E27C37B79CB54A2FCEEED2DC262, 0A5E200FD65A491756B951A4A0ED39B88B7B313E97C2BBF3C91AC4C290772BB7 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
09:25:36.0362 0x0bec C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
09:25:36.0362 0x0bec [ 73E8667A19FEEDD856DF2695E9E511D4, 68D66C36D1F293D10ADCC6A33C870F989A29743537592CF172F02E794BEAFD1C ] C:\Windows\SysWOW64\wship6.dll
09:25:36.0362 0x0bec C:\Windows\SysWOW64\wship6.dll - ok
09:25:36.0378 0x0bec [ 9A85ABCE0FDD1AF8E79E731EB0B679F3, 2A610BEB16610FE2F2E9A50477A62A05481E8A5843A814955A0EDFF45D0304B3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
09:25:36.0378 0x0bec C:\Windows\SysWOW64\dhcpcsvc.dll - ok
09:25:36.0378 0x0bec [ 29CA5974FAB0E8AE4AA7814FE05CF832, ADE54D406AAB7C364851AAD278A569426C9ADD4F7FB543BB08428CED963BF541 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
09:25:36.0378 0x0bec C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
09:25:36.0378 0x0bec [ ED6EE83D61EBC683C2CD8E899EA6FEBE, F82592908D038C44D9F2E5C5B7BC663A2D370FC565F40420E1138A9E55F0E7EB ] C:\Windows\SysWOW64\rasadhlp.dll
09:25:36.0378 0x0bec C:\Windows\SysWOW64\rasadhlp.dll - ok
09:25:36.0394 0x0bec [ 158117F3CF278F01C6F24E89E2141E81, F8178F093F09A6DB981019D2D0D514145B170D1377FE3C2479028D915663E28F ] C:\Windows\SysWOW64\FWPUCLNT.DLL
09:25:36.0394 0x0bec C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
09:25:36.0394 0x0bec [ 39C5F32747B3414D1BB216FDB1DEFC58, 6FAE64CB9748304090113903A5AE9E7154BE16BA2EEA7AB3EF04AB9D79B81380 ] C:\Windows\SysWOW64\dwmapi.dll
09:25:36.0394 0x0bec C:\Windows\SysWOW64\dwmapi.dll - ok
09:25:36.0394 0x0bec [ 691C8DFB208227F0CBB5C0897C742ACE, 3240EAFF8182D1E8C8EA4642D2BF7A6EF19DCA2618E0C20B1FC6E81C277B8649 ] C:\Windows\SysWOW64\WindowsCodecs.dll
09:25:36.0394 0x0bec C:\Windows\SysWOW64\WindowsCodecs.dll - ok
09:25:36.0409 0x0bec [ 846D0E4DB261CFAF363902E41498E961, D7E5591B7604FD583AF7FDA19E30928B24A6145318A3944E7D207F0CCEEB30D0 ] C:\Windows\SysWOW64\EhStorShell.dll
09:25:36.0409 0x0bec C:\Windows\SysWOW64\EhStorShell.dll - ok
09:25:36.0409 0x0bec [ 36333D345062E42E849C0AF00CBEFC97, 3E375720C5A3E116CC22416BAFD61F06BD508ED0A628DD393FB8F065F0F1EAA5 ] C:\Windows\SysWOW64\ntshrui.dll
09:25:36.0409 0x0bec C:\Windows\SysWOW64\ntshrui.dll - ok
09:25:36.0425 0x0bec [ 89D840773C9C4358A5031DCC860449EC, F6C241D73E05A95B7C81C12979FF625BFD89C12CDD13193AA137E02A8C0046F2 ] C:\Windows\SysWOW64\srvcli.dll
09:25:36.0425 0x0bec C:\Windows\SysWOW64\srvcli.dll - ok
09:25:36.0425 0x0bec [ ADD9D33D685DFADDFAD5AFB42CF31A70, 8E0D2D0CEFC59548BED08D36D55865D8633E1512AE81D93F728F3D9631A3CC6F ] C:\Windows\SysWOW64\cscapi.dll
09:25:36.0425 0x0bec C:\Windows\SysWOW64\cscapi.dll - ok
09:25:36.0425 0x0bec [ 8B74CEC6980D4816B0037AE9A27E538F, 8721EDB4C51BF6020002FA5DDB1987C68590F9F433A2F18D9756B2DAC7542CB6 ] C:\Windows\SysWOW64\slc.dll
09:25:36.0425 0x0bec C:\Windows\SysWOW64\slc.dll - ok
09:25:36.0440 0x0bec [ 827CB0D6C3F8057EA037FF271F8E9795, 82760DBDDD38D2A31CAAF51D065DF4E7E1D0F0C22733A0AF653776EBF7B79470 ] C:\Windows\SysWOW64\imageres.dll
09:25:36.0440 0x0bec C:\Windows\SysWOW64\imageres.dll - ok
09:25:36.0440 0x0bec [ 198803E5E93E29967DFB0BCFD0186151, 72C3B0FA35578A71E9988FA31A7AD91A9CF31A6BA6EC00EA1F153E99277807BF ] C:\Windows\System32\spfileq.dll
09:25:36.0440 0x0bec C:\Windows\System32\spfileq.dll - ok
09:25:36.0440 0x0bec [ C1BDC97E8C9404245DE87F1EF08D1764, 537043D7EF12C518198B70012A01D323A192F4416C6A37F490123DF0BE4CD18B ] C:\Windows\System32\taskeng.exe
09:25:36.0440 0x0bec C:\Windows\System32\taskeng.exe - ok
09:25:36.0456 0x0bec [ 805A52C5AE26C28E88FDD9BCCFE6F312, 4FF28D3658C31722B7DD036DED9D544B14841C0E0B94D31A8EC5AB92128DA020 ] C:\Windows\System32\TSChannel.dll
09:25:36.0456 0x0bec C:\Windows\System32\TSChannel.dll - ok
09:25:36.0456 0x0bec [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9, E18D66455D00A6D2A2D7CC0833C233FE8A6DD910B59D6B5B5F82EF91450858DF ] C:\Windows\SysWOW64\sfc.dll
09:25:36.0456 0x0bec C:\Windows\SysWOW64\sfc.dll - ok
09:25:36.0456 0x0bec [ 84799328D87B3091A3BDD251E1AD31F9, F85521215924388830DBB13580688DB70B46AF4C7D82D549D09086438F8D237B ] C:\Windows\SysWOW64\sfc_os.dll
09:25:36.0456 0x0bec C:\Windows\SysWOW64\sfc_os.dll - ok
09:25:36.0472 0x0bec [ C6BB27D9A8AC13D4A44486F528B5C884, 9624D886A3EBA94E61F90F62BD9A823B799C3A3B9C0E4C59E49824FEBBB18D77 ] C:\Windows\SysWOW64\netutils.dll
09:25:36.0472 0x0bec C:\Windows\SysWOW64\netutils.dll - ok
09:25:36.0472 0x0bec [ 03FDE416C235A3FBF32C196ED62FCF8A, 3FA8D9E7868B92EDC60A6384B9A4F4DDA5636F62B5141A5BB5088656B65F67D8 ] C:\Windows\System32\iedkcs32.dll
09:25:36.0472 0x0bec C:\Windows\System32\iedkcs32.dll - ok
09:25:36.0472 0x0bec [ 6D220604AA4240303DD8DEAEAB428377, 0AC013CFA8F8040017969B3110BBD3B9A4827E0DFC4BE65F334F607248DF9550 ] C:\Windows\System32\ie4uinit.exe
09:25:36.0472 0x0bec C:\Windows\System32\ie4uinit.exe - ok
09:25:36.0487 0x0bec [ 740304CDCAA54E4312DEDA7F288CEB06, D25865623A9EC30ED9007ABAE7100ED4668100D5136E3B99EEB97F6FF2D96623 ] C:\Windows\System32\themeui.dll
09:25:36.0487 0x0bec C:\Windows\System32\themeui.dll - ok
09:25:36.0487 0x0bec [ C3C32FE6F59BF9863C924C7ED7328834, 98717226EE8D26E952C2FA8E9272D80911B60FBA6C9D20932CC99082D8D9D2C5 ] C:\Windows\System32\timedate.cpl
09:25:36.0487 0x0bec C:\Windows\System32\timedate.cpl - ok
09:25:36.0487 0x0bec [ FBE8EBF528DC49B3DEB186CA9545D97E, 9A5BFB1975822B09C453DC62B241A6F4FC1F1F98D67506FB08A136AC4FA904F3 ] C:\Windows\System32\shdocvw.dll
09:25:36.0487 0x0bec C:\Windows\System32\shdocvw.dll - ok
09:25:36.0503 0x0bec [ A0A65D306A5490D2EB8E7DE66898ECFD, CE5DA408F4EDD5E81CE0925867F03C9A35172CF1571FE4C4C052E45AB69822BB ] C:\Windows\System32\linkinfo.dll
09:25:36.0503 0x0bec C:\Windows\System32\linkinfo.dll - ok
09:25:36.0503 0x0bec [ 14F5C0DB4B2C47874D6C937A5A1B367C, B59C4FB22138F8F0C9B85337D79B8353C9A6722F83CF9DC16F0CDC289379F14A ] C:\Windows\System32\gameux.dll
09:25:36.0503 0x0bec C:\Windows\System32\gameux.dll - ok
09:25:36.0503 0x0bec [ 46EDD0A6B42BA5D2044FA0909BE4BE95, 0007398C004C9AB40DA086A712AFAF1FB6C8D1D23821628F185ED49B2AD95EF5 ] C:\Windows\System32\msftedit.dll
09:25:36.0503 0x0bec C:\Windows\System32\msftedit.dll - ok
09:25:36.0518 0x0bec [ 7CB3ACB163DE051169095DC6507B8977, 45D4DEB0695440D8B5E959945B3F7A773E02E2AB305E316123A1064FC1905402 ] C:\Windows\System32\msls31.dll
09:25:36.0518 0x0bec C:\Windows\System32\msls31.dll - ok
09:25:36.0518 0x0bec [ 435AFCEBC01BE92CF988F86A64DE5B4E, 4C0244F183F304BAD355131BA9FEE606EF9704A0FE758F719ADE9552206A057F ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
09:25:36.0518 0x0bec C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
09:25:36.0518 0x0bec [ 7A2C26459B599A2D6D5401F73ACA1981, EABDE03BE7F10A3A1CF9E0A38B834F9B48A14D921C63121645DF0906526BB661 ] C:\Program Files\IDT\WDM\sttray64.exe
09:25:36.0518 0x0bec C:\Program Files\IDT\WDM\sttray64.exe - ok
09:25:36.0534 0x0bec [ DD76912E8D165C68659D9875256710A3, 0DDD342EBCC2EE2D023FF6E94A2DB2822A5CC38C747A9226B253BF99F8BCF639 ] C:\Windows\System32\DeviceCenter.dll
09:25:36.0534 0x0bec C:\Windows\System32\DeviceCenter.dll - ok
09:25:36.0534 0x0bec [ A09533A0395A06F47143CAFB6DCED04A, 8872EA7DE924FF5AF7579D38898D7C4AA9980B879115BFEE827693E67A51D1A5 ] C:\Windows\System32\mfc42u.dll
09:25:36.0534 0x0bec C:\Windows\System32\mfc42u.dll - ok
09:25:36.0534 0x0bec [ CABF1DF6108BDE0EA1FDFAA67FA02760, 2CEB8E3C2A222C7542B5108DE8280956A12496497FA65709E3830AF8B8141DD5 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
09:25:36.0534 0x0bec C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe - ok
09:25:36.0550 0x0bec [ F468C806267D46B68DB7EB32FBF0A103, 6454E84A39E4B6E11BEC99357ADBD1CA039F7BBDDF9036ACD8F3B0AB6608A60B ] C:\Windows\System32\thumbcache.dll
09:25:36.0550 0x0bec C:\Windows\System32\thumbcache.dll - ok
09:25:36.0550 0x0bec [ C586EE2DAB4BF42A291B8A6B6EE928F0, C11C1F8689ECB9A5F4C4570AB512965DDA93F89BBB441A2E7147BA27D6037611 ] C:\Windows\System32\odbc32.dll
09:25:36.0550 0x0bec C:\Windows\System32\odbc32.dll - ok
09:25:36.0550 0x0bec [ D50B225D4B6462994A898D1F53346DDD, 76C04E13539C20A633593CFE1CF8A0A72B5402F40012713984ECCDB277A941C0 ] C:\Windows\System32\SynCOM.dll
09:25:36.0550 0x0bec C:\Windows\System32\SynCOM.dll - ok
09:25:36.0565 0x0bec [ 8BC7AE7E16458355508ECF5EC3A04E72, 39FE3D8E0D42D51809E33160DEA291E732615DB1C6EA24558B3731349F6F9A2E ] C:\Windows\System32\networkexplorer.dll
09:25:36.0565 0x0bec C:\Windows\System32\networkexplorer.dll - ok
09:25:36.0565 0x0bec [ 157D03CB68A888128E0F7205F0222B31, 1301E6B81BD066BAF2FBE105A6D9E8AA5CE69EFE673CEE6F7CDB4347F8ADFD48 ] C:\Windows\SysWOW64\atiadlxy.dll
09:25:36.0565 0x0bec C:\Windows\SysWOW64\atiadlxy.dll - ok
09:25:36.0565 0x0bec [ 579FAC74640BE728403021975AD73C89, CA151472961E6718C995A65A896B934FF1C0F8D92BDD4104340EADE5AB98F35F ] C:\Windows\System32\SynTPAPI.dll
09:25:36.0565 0x0bec C:\Windows\System32\SynTPAPI.dll - ok
09:25:36.0581 0x0bec [ 31FF084BFAA35307DBAB4FA60CF7DBB7, E66395F85479060E8C686B7B96060D68058962EDD08236992BAA0AF15D4AA774 ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
09:25:36.0581 0x0bec C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
09:25:36.0581 0x0bec [ A018C8A668A4CC53EFF1070F84061800, FF9A9603097384E4FD5621E0099A06F29B539B2E676B6114943364B85A1F5BFE ] C:\Windows\System32\consent.exe
09:25:36.0581 0x0bec C:\Windows\System32\consent.exe - ok
09:25:36.0581 0x0bec [ E424B3EF666B184CEE0B6871AAA8C9F6, D182D9B3A813C75F88CA16A9C236AB6167DF5861D155B5DC016B90918C4BD579 ] C:\Windows\System32\msimg32.dll
09:25:36.0581 0x0bec C:\Windows\System32\msimg32.dll - ok
09:25:36.0596 0x0bec [ 1737183424D10E716D4035C5CA2ECAB4, 73DA5DC00DB761396955A8C5FB3F9B75CD27EF4061E620B7326FB40BC6EADEC9 ] C:\Windows\System32\cryptnet.dll
09:25:36.0596 0x0bec C:\Windows\System32\cryptnet.dll - ok
09:25:36.0596 0x0bec [ B837D1528CE2E3CB79F09496BC08DDC6, ACD54CE61CFE94F23DC283537AD8FFBEB3D6041BD30317B60BA7A10FCB240A27 ] C:\Windows\System32\SensApi.dll
09:25:36.0596 0x0bec C:\Windows\System32\SensApi.dll - ok
09:25:36.0596 0x0bec [ 8CCAC20D08D0B5B3717F211D12C38D35, E73F8A43EE0514813D002B823C4A23B476579969EC7EA9258720AACFEF177D49 ] C:\Program Files\IDT\WDM\stlang64.dll
09:25:36.0596 0x0bec C:\Program Files\IDT\WDM\stlang64.dll - ok
09:25:36.0612 0x0bec [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{FBC7D07A-53D1-48F2-9D65-B3994D293E51}.tmp
09:25:36.0612 0x0bec C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{FBC7D07A-53D1-48F2-9D65-B3994D293E51}.tmp - ok
09:25:36.0612 0x0bec [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{0A9977FB-C4E7-4CC3-9320-A8A232ADF46A}.tmp
09:25:36.0612 0x0bec C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{0A9977FB-C4E7-4CC3-9320-A8A232ADF46A}.tmp - ok
09:25:36.0612 0x0bec [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{254BC179-198B-487F-942C-00EDC2A20C95}.tmp
09:25:36.0612 0x0bec C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{254BC179-198B-487F-942C-00EDC2A20C95}.tmp - ok
09:25:36.0628 0x0bec [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{1F147A01-CAD3-4CBF-A780-69D9FDA38ABC}.tmp
09:25:36.0628 0x0bec C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{1F147A01-CAD3-4CBF-A780-69D9FDA38ABC}.tmp - ok
09:25:36.0628 0x0bec [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{2E136EA3-3538-47F1-92F7-CFC16C8FDD6F}.tmp
09:25:36.0628 0x0bec C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{2E136EA3-3538-47F1-92F7-CFC16C8FDD6F}.tmp - ok
09:25:36.0643 0x0bec [ 64E6A44177ACF348D68255A37F4723DA, 5D66D94A347BC43D0D8157CC5A24ABAF2F60B5DBEB2B1527C251452128E00EE2 ] C:\Windows\System32\cabinet.dll
09:25:36.0643 0x0bec C:\Windows\System32\cabinet.dll - ok
09:25:36.0643 0x0bec [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{68033921-3839-4574-B916-545EC3725694}.tmp
09:25:36.0643 0x0bec C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{68033921-3839-4574-B916-545EC3725694}.tmp - ok
09:25:36.0643 0x0bec [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{0351BCEF-43DA-4FCC-99F2-67F88F6E4FB4}.tmp
09:25:36.0643 0x0bec C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{0351BCEF-43DA-4FCC-99F2-67F88F6E4FB4}.tmp - ok
09:25:36.0659 0x0bec [ 30F9BACA07F8251D7DD1805A9E919CE0, 7B6569B744EA9700957510CDDC8F02E7F47B99564B03E4784AA44EA89B750288 ] C:\Windows\System32\wdmaud.drv
09:25:36.0659 0x0bec C:\Windows\System32\wdmaud.drv - ok
09:25:36.0659 0x0bec [ 033CA30E335588E243C42D715BF48DDF, 6D40C9D48374D09494CFA04CCF1015CC097457BFA8B460DCD33513F2BC113597 ] C:\Windows\SysWOW64\secur32.dll
09:25:36.0659 0x0bec C:\Windows\SysWOW64\secur32.dll - ok
09:25:36.0659 0x0bec [ 8560FFFC8EB3A806DCD4F82252CFC8C6, CC27BC092369A89D6147B16568FEDEB68B584D5738CD686C31F7FAE22ED17B3B ] C:\Windows\System32\ksuser.dll
09:25:36.0659 0x0bec C:\Windows\System32\ksuser.dll - ok
09:25:36.0674 0x0bec [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{114BA80A-A2E0-43FC-88B0-550455653C6F}.tmp
09:25:36.0674 0x0bec C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{114BA80A-A2E0-43FC-88B0-550455653C6F}.tmp - ok
09:25:36.0674 0x0bec [ 1B7C3A37362C7B2890168C5FC61C8D9B, 03727930E5BB5F9D91BAB901FC9A2E3B795D68E2AEE6A2CC3477F356C45A9C54 ] C:\Windows\System32\msacm32.drv
09:25:36.0674 0x0bec C:\Windows\System32\msacm32.drv - ok
09:25:36.0674 0x0bec [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{F83450D8-BAB7-4EC3-9F6A-9F98BA9EB2C3}.tmp
09:25:36.0674 0x0bec C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{F83450D8-BAB7-4EC3-9F6A-9F98BA9EB2C3}.tmp - ok
09:25:36.0690 0x0bec [ 10AC5CE9F78DC281A1BBD9B8CC587B8A, 72288C0A88916D3C3828DBD948DBDB0928F26106319F8E60102D6C9004514D60 ] C:\Windows\System32\msacm32.dll
09:25:36.0690 0x0bec C:\Windows\System32\msacm32.dll - ok
09:25:36.0690 0x0bec [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{4E22AB71-39E2-4670-A35B-7750D1BEE2D4}.tmp
09:25:36.0690 0x0bec C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{4E22AB71-39E2-4670-A35B-7750D1BEE2D4}.tmp - ok
09:25:36.0690 0x0bec [ CA2A0750ED830678997695FF61B04C30, E84860CD97AA3C4565ABB2D5D406A5C42B1AD2D8BA1B8CF81FE564D91F15F976 ] C:\Windows\System32\midimap.dll
09:25:36.0690 0x0bec C:\Windows\System32\midimap.dll - ok
09:25:36.0706 0x0bec [ 3E466073C3B1033FF92ADE9031E3D4A2, 2B26096A6BA2EE8C496D3252248F21D214E8C41ECF79A60A60E52D3BC4135C03 ] C:\Windows\System32\odbcint.dll
09:25:36.0706 0x0bec C:\Windows\System32\odbcint.dll - ok
09:25:36.0706 0x0bec [ C1395286B822E306B4FE1568A8A77813, 0642B6C793BE0EED5E7D1D2533FC5A01417C50040FC60A8E89BD97CE4A119388 ] C:\Windows\System32\AUDIOKSE.dll
09:25:36.0706 0x0bec C:\Windows\System32\AUDIOKSE.dll - ok
09:25:36.0706 0x0bec [ B6F0676FC23D543452FE81D8B71D24E7, 6D17CEEC23D616A181457A1041F7BC5E33453C511A59A661CA0A091386E30336 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll
09:25:36.0721 0x0bec C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll - ok
09:25:36.0721 0x0bec [ F7BA79CEFBD9DF4AF781E00356FBF48E, 6A1BD3054136FA031CCA0361F52D61A2B91B5FCD87BC0FFBCB99FDF9932A785F ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll
09:25:36.0721 0x0bec C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll - ok
09:25:36.0721 0x0bec [ 79E25E0628A2FF7A74356EAEF5011C26, 7DCA0461C070C31B8DB433797A5D6D4C76530ED3DFC5EAE9E35C123929C8B04C ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll
09:25:36.0721 0x0bec C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll - ok
09:25:36.0737 0x0bec [ C3DBF7DFF5A38136E26BADB7AB4E2972, EA7484034B14F9F1082F8FA802560D61740DD030F008B59CED204ED55B7C437B ] C:\Windows\SysWOW64\netapi32.dll
09:25:36.0737 0x0bec C:\Windows\SysWOW64\netapi32.dll - ok
09:25:36.0737 0x0bec [ 7AD12703039056D2A0815F85960E1FA1, 22C9E953D499555F8BD7719786F3450EF5619672F4FF91082758BAB3FD8A288D ] C:\Windows\SysWOW64\wkscli.dll
09:25:36.0737 0x0bec C:\Windows\SysWOW64\wkscli.dll - ok
09:25:36.0737 0x0bec [ AE6AF014B616F53BA762F0BCFD8F7F21, 95C8E3CA3DBEE48621A6A159BEA04A323339A876C8B64EEBC76CBD5872BC32F2 ] C:\Windows\SysWOW64\msi.dll
09:25:36.0737 0x0bec C:\Windows\SysWOW64\msi.dll - ok
09:25:36.0752 0x0bec [ E7704CBF568815C1CAA6E513387BD3F2, E289A7D966787DEE258699AC7863D0AA53B91DBED1B3C9C289342253073EE2EC ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
09:25:36.0752 0x0bec C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe - ok
09:25:36.0752 0x0bec [ E57022A90673A3C9183C50C90EC349D7, EDDA652390A2127651FEDFA9766282D9A12AB6414FAC476880120C5B88F617D3 ] C:\Windows\System32\mscoree.dll
09:25:36.0752 0x0bec C:\Windows\System32\mscoree.dll - ok
09:25:36.0752 0x0bec [ 5C737BD60843F5233815DA5286E18A4F, FC35C8D44A470E5B78562A12C8E5D2102EF970F0478910EF86532E95079D98FB ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
09:25:36.0752 0x0bec C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
09:25:36.0768 0x0bec [ 6EC594AB7EFA45EACDE65FD4040F53D9, A2119AFC55B1231A838C9FD98F50DA9AA85E26EAF1991E8EFF27ADB7C7C3D250 ] C:\Windows\SysWOW64\riched20.dll
09:25:36.0768 0x0bec C:\Windows\SysWOW64\riched20.dll - ok
09:25:36.0768 0x0bec [ FD13400115D3D0D70E087AB826DF593A, E36E027D5411CB76057FFE68471C0656D3EE0F27E957C661B655168D8C9D6A79 ] C:\Windows\SysWOW64\ExplorerFrame.dll
09:25:36.0768 0x0bec C:\Windows\SysWOW64\ExplorerFrame.dll - ok
09:25:36.0768 0x0bec [ 6E1F8165C365D35C8E3C045AF0CDD481, B861360D0A014265A0BEB4CC2FE31EA05AE95120E8B07820C13A044D64C00E2B ] C:\Windows\SysWOW64\duser.dll
09:25:36.0768 0x0bec C:\Windows\SysWOW64\duser.dll - ok
09:25:36.0784 0x0bec [ EE06B85BC69F18826302348A2AD089E0, 417205797CC9F6C986A863A61179784D9ADCAF1961EF8A4D9042D73C5A86509A ] C:\Windows\SysWOW64\dui70.dll
09:25:36.0784 0x0bec C:\Windows\SysWOW64\dui70.dll - ok
09:25:36.0784 0x0bec [ 3819AD4329303EAC88480CA16A650735, FBE665BEE15A334851AF4BF9969C8BC21B3F0254CAA5E21E67D7843D4171E675 ] C:\Windows\System32\UIAnimation.dll
09:25:36.0784 0x0bec C:\Windows\System32\UIAnimation.dll - ok
09:25:36.0784 0x0bec [ 7B8F7848D3C65DD9589A4898CFF3757D, 48A95DD4C848F60D2C6559E045A976F665CFC13C587629F027AEAAF1E2A46E6F ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcr80.dll
09:25:36.0784 0x0bec C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcr80.dll - ok
09:25:36.0799 0x0bec [ E210DCF3B22A958F696DA7414FFEB33F, 632E4480EBB9D73FB06AA067C18E4F39F562286449D22AB30E58F5EE00C64352 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\9a017aa8d51322f18a40f414fa35872d\mscorlib.ni.dll
09:25:36.0799 0x0bec C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\9a017aa8d51322f18a40f414fa35872d\mscorlib.ni.dll - ok
09:25:36.0799 0x0bec [ 60CC15392FF14DCB9C29C69B3233741B, 458FB3DCDC4828D5C5625517D074795A706A545FB8D0FF46C5981A118D846A66 ] C:\Windows\System32\stobject.dll
09:25:36.0799 0x0bec C:\Windows\System32\stobject.dll - ok
09:25:36.0815 0x0bec [ 86B6AC0FD2881B3D20B80F51C7152AE0, BF1A04E0B00159925E716CD3A72CD40FD4BDD7D05684932A91629373CE524186 ] C:\Windows\System32\batmeter.dll
09:25:36.0815 0x0bec C:\Windows\System32\batmeter.dll - ok
09:25:36.0815 0x0bec [ 651F169718CC46C8A9264880C538D5FF, D93EB53F909EA1120D647BA672481E0150CD3EC3C86D4B80BDC0E4670D34D2D9 ] C:\Windows\System32\prnfldr.dll
09:25:36.0815 0x0bec C:\Windows\System32\prnfldr.dll - ok
09:25:36.0815 0x0bec [ 02CDEB5D8B3DD5F6770DEFFBBC0CFAD0, A67878B5CC9109AA8513C0307EEDCB17840288509BF80838E2A753C632B47521 ] C:\Windows\System32\winspool.drv
09:25:36.0815 0x0bec C:\Windows\System32\winspool.drv - ok
09:25:36.0830 0x0bec [ 913C2E4A03201644FC986EDEB5F8A390, C635EE4A2A309EB8C550F6F0B1A0723AA7317C9B3396641D9EA9231255944C6F ] C:\Windows\System32\DXP.dll
09:25:36.0830 0x0bec C:\Windows\System32\DXP.dll - ok
09:25:36.0830 0x0bec [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891, 0A82A475301202791A7C10F978F952EAB7DB146A702D4EA67E24E2C98BC19638 ] C:\Windows\System32\Syncreg.dll
09:25:36.0830 0x0bec C:\Windows\System32\Syncreg.dll - ok
09:25:36.0830 0x0bec [ C836175870E00ACC546066632E15BD10, 4347F3319C26DA1C38F395C74DBD67AF886149C8F29EDE765DD96C8480A3054A ] C:\Windows\ehome\ehSSO.dll
09:25:36.0830 0x0bec C:\Windows\ehome\ehSSO.dll - ok
09:25:36.0830 0x0bec [ 66920354B984D4A3848A84B4E66745EA, 3F98352A38512C81FAF2C3FE6F00D766B33111A0EA5F7B43B0DBF5A2952B5F79 ] C:\Windows\System32\netshell.dll
09:25:36.0830 0x0bec C:\Windows\System32\netshell.dll - ok
09:25:36.0846 0x0bec [ E7368F0A8D19445EAF5C5D0DBB8B8DAB, CF9082360E32A7C3E13A67AC2C6192F4A76870D43DA9FF2936993A637F712761 ] C:\Windows\System32\AltTab.dll
09:25:36.0846 0x0bec C:\Windows\System32\AltTab.dll - ok
09:25:36.0846 0x0bec [ AB01C36BCC34CCFE5B0BB5FFB2605135, 214D133CE85504AF924D1CE00FC10DD80E8397C6E1994841EAE78008FAAAE661 ] C:\Windows\System32\WPDShServiceObj.dll
09:25:36.0846 0x0bec C:\Windows\System32\WPDShServiceObj.dll - ok
09:25:36.0862 0x0bec [ 4F3CD1C59EA71401E155C432BCECE180, 6D4118A627CAE509E43D0CC0062EECAA0990C955BB15AE24834460551B2F51A2 ] C:\Windows\System32\PortableDeviceTypes.dll
09:25:36.0862 0x0bec C:\Windows\System32\PortableDeviceTypes.dll - ok
09:25:36.0862 0x0bec [ AD31942BDF3D594C404874613BC2FE4D, 704F4A48FA91B8A22604FF740B506C3B28766F8DFADB9D11814602FAA00EDFAB ] C:\Windows\System32\SearchIndexer.exe
09:25:36.0862 0x0bec C:\Windows\System32\SearchIndexer.exe - ok
09:25:36.0862 0x0bec [ F87A7BB428E4AC68D348DF600F1EA1A2, 83A4A7871F9D314348CFFA0DF73ADCD77C2CA8F8D227D75604AC23AD339B5A34 ] C:\Windows\System32\tquery.dll
09:25:36.0862 0x0bec C:\Windows\System32\tquery.dll - ok
09:25:36.0877 0x0bec [ FD4F95ABDE5603478C929B6CB0BDCFFF, 9CDF8BD864CB5714CC2CF7F7A5612FEEDDAE6B92DD14F794946E565F235AA59F ] C:\Windows\System32\pnidui.dll
09:25:36.0877 0x0bec C:\Windows\System32\pnidui.dll - ok
09:25:36.0877 0x0bec [ BD03C64C4B1F34D1F330BF6C4AC8113D, CA229A40A8073BFB067F8110E4FF9ECF398131FB5AE225F9477E79049817B3DD ] C:\Windows\System32\QUTIL.DLL
09:25:36.0877 0x0bec C:\Windows\System32\QUTIL.DLL - ok
09:25:36.0877 0x0bec [ 78A6501E4E37118C568A606623A275BB, 4A3E9FB21F848FF9B679973499A9B2080FBBF1E551A8FD56FC3B777FDD46B999 ] C:\Windows\System32\mssrch.dll
09:25:36.0877 0x0bec C:\Windows\System32\mssrch.dll - ok
09:25:36.0893 0x0bec [ 2C5B8A680A90E96B1EC0D6DA0505E685, 7E81B078A0BB75B1345FF6164D1EA6F6F6784435B92124C99318D6BAB29B3F8B ] C:\Windows\System32\srchadmin.dll
09:25:36.0893 0x0bec C:\Windows\System32\srchadmin.dll - ok
09:25:36.0893 0x0bec [ FE130D15D71AC16EFFDF1397F2AF1653, 36E051C55BF2DDD18E04F75B06A24A68F36C3C24F7DF551A654ABC55595781E4 ] C:\Windows\System32\esent.dll
09:25:36.0893 0x0bec C:\Windows\System32\esent.dll - ok
09:25:36.0893 0x0bec [ 3121A79D13A61562BE9CC902CD46B542, 00A5833A48338A4A9A5530844924AF4F1FAB618DA46D7EBBC6E2165C32ED376C ] C:\Windows\System32\msidle.dll
09:25:36.0893 0x0bec C:\Windows\System32\msidle.dll - ok
09:25:36.0908 0x0bec [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] C:\Windows\System32\netman.dll
09:25:36.0908 0x0bec C:\Windows\System32\netman.dll - ok
09:25:36.0908 0x0bec [ ACE1BB07E0377E37A2C514CD2EC119B1, A9AFA4774DFA875496764D6E541A6333A3ACD3C5D2BBEF753C2D80BA83B4AC15 ] C:\Windows\System32\mssprxy.dll
09:25:36.0908 0x0bec C:\Windows\System32\mssprxy.dll - ok
09:25:36.0908 0x0bec [ D2155709E336C3BC15729EB87FEC6064, 682A84C0F2D892E7A6CEE4E5937B4799E352AAE3B71E7037F2A343373467443C ] C:\Windows\System32\rasdlg.dll
09:25:36.0908 0x0bec C:\Windows\System32\rasdlg.dll - ok
09:25:36.0924 0x0bec [ C9FB9038B15036CA28CF0B4BE2BED9BD, 0F56384E798B3F725FFEFC6E31A980DA31F620DB847F601273EF19E8CE74A226 ] C:\Windows\System32\en-US\tquery.dll.mui
09:25:36.0924 0x0bec C:\Windows\System32\en-US\tquery.dll.mui - ok
09:25:36.0924 0x0bec [ BB68579E181956E37EB11F9083C01CF3, 969920A2137BAC81810A7F635A0C486892D66E95C49E7EC54ABB93FC52071788 ] C:\Windows\System32\dot3api.dll
09:25:36.0924 0x0bec C:\Windows\System32\dot3api.dll - ok
09:25:36.0924 0x0bec [ E4FCA0F99A41E460C84016DEFD31E6EF, 8EB14AF2025EADC7C86280E8417D8F286E8271B4F88B31696E33DFD72B3A0EF2 ] C:\Windows\System32\wlanhlp.dll
09:25:36.0924 0x0bec C:\Windows\System32\wlanhlp.dll - ok
09:25:36.0940 0x0bec [ 6699A112A3BDC9B52338512894EBA9D6, 10888BB9C3799E1E8B010C0F9088CED376AAD63A509FCE1727C457B022CDC717 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
09:25:36.0940 0x0bec C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
09:25:36.0940 0x0bec [ 8BC00C736E67A75D936E5B440917359B, 66809F59D064113763DA75F68F5BD0874CB3A954BD4FF6E28BBF0BF311984E89 ] C:\Windows\System32\ActionCenter.dll
09:25:36.0940 0x0bec C:\Windows\System32\ActionCenter.dll - ok
09:25:36.0940 0x0bec [ C7494C67A6BF6FE914808E42F8265FEF, 3A3871983F2D9A57739C70365DC3F417D9BF02F5C0C4CC3272EA9F3D380EF962 ] C:\Program Files\Windows Media Player\wmpnssci.dll
09:25:36.0940 0x0bec C:\Program Files\Windows Media Player\wmpnssci.dll - ok
09:25:36.0955 0x0bec [ 5DA219F57A9076FB6FBD3C9C3713A672, 274FE616625B336D81841FDC752C8053D4CD6926565B899760D298D145CBA1A3 ] C:\Windows\System32\WWanAPI.dll
09:25:36.0955 0x0bec C:\Windows\System32\WWanAPI.dll - ok
09:25:36.0955 0x0bec [ 0B9F7D42D745038437FAE70D97F9AD5A, D690FC5DC287D29A2FA4C2AA820E09D57B5B513C2B1FB07BFBC7E59577887DB0 ] C:\Windows\System32\QAGENT.DLL
09:25:36.0955 0x0bec C:\Windows\System32\QAGENT.DLL - ok
09:25:36.0955 0x0bec [ 62C7AACC746C9723468A8F2169ED3E85, 40E901F3EAFE52DF11D6BC4EF0E79F666EBDACE0B3C090CAD2358076E893EA47 ] C:\Windows\System32\wwapi.dll
09:25:36.0955 0x0bec C:\Windows\System32\wwapi.dll - ok
09:25:36.0971 0x0bec [ 92AAF75C3EB344A098DC026BC9DDF42A, 1E47DCB47C9543452013E98B457E6A4DA21FF6F38BA551A87D8A42C5645F35CA ] C:\Windows\System32\bthprops.cpl
09:25:36.0971 0x0bec C:\Windows\System32\bthprops.cpl - ok
09:25:36.0971 0x0bec [ 9BF014C20F91D97055532F2F5496E7BD, DD3CF54F729504F6A30920CC83CC32EE6165B59668291D772FDA49C37CFF08C1 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
09:25:36.0971 0x0bec C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
09:25:36.0971 0x0bec [ 777CC5D91FBD3FF640D0A589D4975FC5, B2C91043952657352FE390F15228F008EA8BB59AA415EC31B12348920630CCD0 ] C:\Windows\System32\ieframe.dll
09:25:36.0971 0x0bec C:\Windows\System32\ieframe.dll - ok
09:25:36.0986 0x0bec [ E36112A8A6C7F840169A7E92C12F4203, 52795B2E6ECCE751EEF5074AF52FDE376A382D0A1C43B90DD4F77A397C00FBC5 ] C:\Windows\System32\wsock32.dll
09:25:36.0986 0x0bec C:\Windows\System32\wsock32.dll - ok
09:25:36.0986 0x0bec [ 302B93586DFA480545C320EBA5BA6572, 78DF6FBD3B37F753156D0372C514AB20CA5EF2CACE6A32E983FE2E956AF99791 ] C:\Windows\System32\wmdrmdev.dll
09:25:36.0986 0x0bec C:\Windows\System32\wmdrmdev.dll - ok
09:25:36.0986 0x0bec [ 2C1055E2C6D42753241FB2A129136994, A8E858B4CB8E1E13C7574330C703E0060AEE8B7B19B682F9AE5B4A02BDC659E2 ] C:\Windows\System32\drmv2clt.dll
09:25:36.0986 0x0bec C:\Windows\System32\drmv2clt.dll - ok
09:25:37.0002 0x0bec [ 9869A4A10B90546DBD56947839FB4B87, 66C84DCF39D9F6896D55B1623184A028891A0A98ABE6044DE1D4BAD60C3C8D72 ] C:\Windows\System32\oleacc.dll
09:25:37.0002 0x0bec C:\Windows\System32\oleacc.dll - ok
09:25:37.0002 0x0bec [ D7D7EB64B7DE14A783329805E5AC0031, 37B69D3EBB7A26B67261AF6ABDB74329A38F2012CCDF44F75901B8E1D3BC323E ] C:\Windows\System32\webcheck.dll
09:25:37.0002 0x0bec C:\Windows\System32\webcheck.dll - ok
09:25:37.0002 0x0bec [ 8494E126F0B10180F3293AF861CE1F7A, 538B1F30423DB2398E611BC46C80150C090698E633BABF7362F7060DBF0C3064 ] C:\Windows\System32\mlang.dll
09:25:37.0002 0x0bec C:\Windows\System32\mlang.dll - ok
09:25:37.0018 0x0bec [ E6F66F31422C44EDC00D9C9329E7DF60, 81DB3B830F100ACEC5538840D73713FD3C530227886B6CEF250A48A3697729FE ] C:\Windows\System32\SyncCenter.dll
09:25:37.0018 0x0bec C:\Windows\System32\SyncCenter.dll - ok
09:25:37.0018 0x0bec [ 48FB4DC45A3D6A1D9DA1D81D224BF6F5, E99329971B9F408B2823F2CA86A68CD9BA70846822750E9F4FFCD08B47B055D7 ] C:\Windows\System32\wmp.dll
09:25:37.0018 0x0bec C:\Windows\System32\wmp.dll - ok
09:25:37.0018 0x0bec [ 8B886A0AC14EAA8599142887991A5A2E, 5CD23A0F7DC53B1F4E8D33E2FD5C3C6E375EE5F542EBCEE2989400F352815462 ] C:\Windows\System32\imapi2.dll
09:25:37.0018 0x0bec C:\Windows\System32\imapi2.dll - ok
09:25:37.0033 0x0bec [ F0AAB2A76A7AF04C70A818E96BAF3E64, 44E7D7A0D1F35D02D627D449EE773177AEE026B6D6C787B1463362E73670CB77 ] C:\Windows\System32\hgcpl.dll
09:25:37.0033 0x0bec C:\Windows\System32\hgcpl.dll - ok
09:25:37.0033 0x0bec [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] C:\Windows\System32\fdPHost.dll
09:25:37.0033 0x0bec C:\Windows\System32\fdPHost.dll - ok
09:25:37.0033 0x0bec [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] C:\Windows\System32\FDResPub.dll
09:25:37.0033 0x0bec C:\Windows\System32\FDResPub.dll - ok
09:25:37.0049 0x0bec [ 171D7DB433314A868507C4326E8209DC, 254E0D9F99CE47104CF21D8E968D89D6A09B9CE47168E760BAB28AD5A1E9E6A3 ] C:\Windows\System32\fdWSD.dll
09:25:37.0049 0x0bec C:\Windows\System32\fdWSD.dll - ok
09:25:37.0049 0x0bec [ 05FE4A30177E858B51F5E1E970FE9925, 83711861B648EBC744BDC846DBF043C9D6ED8324E5768A40338C6161613C2E70 ] C:\Windows\System32\WSDApi.dll
09:25:37.0049 0x0bec C:\Windows\System32\WSDApi.dll - ok
09:25:37.0049 0x0bec [ A3EA403D2B74C5F71B7E8B3DAE92DE1E, DF91A8D06EA27D4CF7D61A8EF488D4F42DE88629CC2BC9F4A72B66FF2D6CEE4B ] C:\Windows\System32\webservices.dll
09:25:37.0049 0x0bec C:\Windows\System32\webservices.dll - ok
09:25:37.0064 0x0bec [ 045DB4EAB4FBD23210E85ECC3F464A2E, 506D7FAABE12470263502F99D86C81E0EE21C8789132FE1B24774ABDB4484468 ] C:\Windows\SysWOW64\nlaapi.dll
09:25:37.0064 0x0bec C:\Windows\SysWOW64\nlaapi.dll - ok
09:25:37.0064 0x0bec [ A2E5B2D20954210DCE1A75A1FC8CC36D, 1EA240AC37ECA4EC3E542F9E6DF72753EBA1DF76CBA8691EC61ABCC51EE6FCB2 ] C:\Windows\System32\fdSSDP.dll
09:25:37.0064 0x0bec C:\Windows\System32\fdSSDP.dll - ok
09:25:37.0064 0x0bec [ B5055B51BAA0FD0A736A88653DA3C1C0, A3BD057C7E8C926930BA7E9D11427D26FB37267026A0B72AB4021101EE424F74 ] C:\Windows\System32\fundisc.dll
09:25:37.0064 0x0bec C:\Windows\System32\fundisc.dll - ok
09:25:37.0080 0x0bec [ 5DF5D8CFD9B9573FA3B2C89D9061A240, 990EA273B640DF2D7E800C0CFF18550259C605A4951CD82CD9F1E7B6FF0C9533 ] C:\Windows\SysWOW64\winrnr.dll
09:25:37.0080 0x0bec C:\Windows\SysWOW64\winrnr.dll - ok
09:25:37.0080 0x0bec [ 0B7E85364CB878E2AD531DB7B601A9E5, F5AD3018427F1CD68450EE5CB55AA9572546322580E0FB1E7888702A291C2380 ] C:\Windows\SysWOW64\NapiNSP.dll
09:25:37.0080 0x0bec C:\Windows\SysWOW64\NapiNSP.dll - ok
09:25:37.0080 0x0bec [ 5CF640EDDB1E40A5AB1BB743BCDEC610, 0313AA3F713C9F5B84DBB0B4DE78A96B173E9F7B4CF61C10FDC7DAE952DB04E5 ] C:\Windows\SysWOW64\pnrpnsp.dll
09:25:37.0080 0x0bec C:\Windows\SysWOW64\pnrpnsp.dll - ok
09:25:37.0096 0x0bec [ D8134F0DB2BD7BB39AB91453E6374BB5, B3698C5AA75A833AFC74F89213DAE7A4E822B98366A23D55B609BD83A0A0E707 ] C:\Windows\System32\wmploc.DLL
09:25:37.0127 0x0bec C:\Windows\System32\wmploc.DLL - ok
09:25:37.0127 0x0bec [ 4509387963DF66A6401752A0C631F6E8, B160BD61BEC4D4566442106CCF48182481DF55F937DE5A816436D202630145DC ] C:\Windows\System32\httpapi.dll
09:25:37.0127 0x0bec C:\Windows\System32\httpapi.dll - ok
09:25:37.0142 0x0bec [ DB8BF64BE3932ADC407505D21C4F2C2C, 416DB653C86C9808FE8903B8A861E16AC38DF9239FF5382059421DBB48632924 ] C:\Windows\System32\fdProxy.dll
09:25:37.0142 0x0bec C:\Windows\System32\fdProxy.dll - ok

#10 deathdoc

deathdoc
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  

Posted 18 June 2015 - 11:56 AM

TDSKILLER CONTINUED PAGE 3
09:25:37.0142 0x0bec [ 5B7EF79233382D0DF3D2C28DB453AEE9, 1184EFFEF1D8614D8C148EA49ED013BCE7CF99C30A811D5065EECF9B4C8B1630 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
09:25:37.0142 0x0bec C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
09:25:37.0142 0x0bec [ C746F3BF98E92FB137B5BD2B8B5925BD, 67A8990F3D491D149E65C90042909259793C65E671DC953FDA1F7590FAC23D9E ] C:\Windows\System32\FXSST.dll
09:25:37.0142 0x0bec C:\Windows\System32\FXSST.dll - ok
09:25:37.0158 0x0bec [ 1513633A692F3AE39E693653624E2E88, 9DAC1F64C7FC55AF584BFB865DF03B9606535B2DB668613AB8362574CEB25C67 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\247913fa7ae6fcf04ea33d28d24ab611\System.ni.dll
09:25:37.0158 0x0bec C:\Windows\assembly\NativeImages_v2.0.50727_64\System\247913fa7ae6fcf04ea33d28d24ab611\System.ni.dll - ok
09:25:37.0158 0x0bec [ 34E6D8C67E7FD7C917BECFECA326B168, 23A0BD68C969E795DA55041982672550DC1557BC64D3C42D76AFD6A3F83AD33F ] C:\Windows\System32\FXSAPI.dll
09:25:37.0158 0x0bec C:\Windows\System32\FXSAPI.dll - ok
09:25:37.0158 0x0bec [ C8E8B8239FCF17BEA10E751BE5854631, CB869195E78AB613CEF50AE3B247F0E4E42F233A7AAF5B2BFC5ADEA2C45C5F8D ] C:\Windows\System32\FXSRESM.dll
09:25:37.0158 0x0bec C:\Windows\System32\FXSRESM.dll - ok
09:25:37.0174 0x0bec [ 74C560085FD533E9C26729D360E885A3, 2CBA58837E73DEAFA86D69A657D0E705598E43F8F7BE90C3E351C259321778DB ] C:\Program Files\Internet Explorer\ieproxy.dll
09:25:37.0174 0x0bec C:\Program Files\Internet Explorer\ieproxy.dll - ok
09:25:37.0174 0x0bec [ D607B2F1BEE3992AA6C2C92C0A2F0855, E22301C8F01DBF0A38A85165959BB070647C996CB1BCD50FDFE3DDDCA427DF2A ] C:\Windows\System32\FXSSVC.exe
09:25:37.0174 0x0bec C:\Windows\System32\FXSSVC.exe - ok
09:25:37.0174 0x0bec [ 6F743071BA9C86EFE805152B45B9EC35, 9558A70ECFFB9D5220CA38AE34A7F934F92226A013216A6940FDFE629154B7EE ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\10f1e1ffca16e550af8a8fd7685a48ef\System.Drawing.ni.dll
09:25:37.0174 0x0bec C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\10f1e1ffca16e550af8a8fd7685a48ef\System.Drawing.ni.dll - ok
09:25:37.0189 0x0bec [ 8D8D9023C280E2D7D778F368E701F7B9, 9BB88E437E76679EF87ECB4369DA2A934138EC49391516BD970D57748538741D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\2e0044fa7cabadce65fa8964fe2c90dd\System.Windows.Forms.ni.dll
09:25:37.0189 0x0bec C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\2e0044fa7cabadce65fa8964fe2c90dd\System.Windows.Forms.ni.dll - ok
09:25:37.0189 0x0bec [ BCCD898EF0815E8E8795F7F3906888B4, EF18C7892BA97E6445FA171C5286A76D9799BB673C53B1897A0F3A89EE070F83 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\28b3698c0e8eac7c31e65542ece11346\System.Runtime.Remoting.ni.dll
09:25:37.0189 0x0bec C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\28b3698c0e8eac7c31e65542ece11346\System.Runtime.Remoting.ni.dll - ok
09:25:37.0189 0x0bec [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8, C0B22B8C402EEEAF68F5380BC265C15418934D2F702F0A43674EC93853E26040 ] C:\Windows\System32\shfolder.dll
09:25:37.0189 0x0bec C:\Windows\System32\shfolder.dll - ok
09:25:37.0205 0x0bec [ 74EF310FAC89341CE2897B7F2C4A7B0F, F75D632A58FFF2DE2DB40ADA8F207792105A5DA4B4F6BF53BCDE5083436FBCDC ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
09:25:37.0205 0x0bec C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe - ok
09:25:37.0205 0x0bec [ 4F20D081F9C9B91730EE5CB84E9AC8C4, 8A8DE5D3519715ABF13A9F276FD6B3816C0B7DE79B8F0406A601B0CAAF274F7D ] C:\Windows\System32\blackbox.dll
09:25:37.0205 0x0bec C:\Windows\System32\blackbox.dll - ok
09:25:37.0205 0x0bec [ 96B3C33B03798A8722887BD5437A9010, A90F3F164CBB41C8DBC3DEAD25E0FCC7AEB1BAE87A44DDD66E89110D524FBD1E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\d753bba0990df9a19883f05d5b681d3b\System.Web.ni.dll
09:25:37.0205 0x0bec C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\d753bba0990df9a19883f05d5b681d3b\System.Web.ni.dll - ok
09:25:37.0220 0x0bec [ 46EA507EE79269C0272F10BFBE9316C9, EC56301725056F70AE146189EE72191150D5F5FFBA7FA7E1EFC4745AA73DE32A ] C:\Windows\System32\upnp.dll
09:25:37.0220 0x0bec C:\Windows\System32\upnp.dll - ok
09:25:37.0220 0x0bec [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] C:\Windows\System32\ssdpsrv.dll
09:25:37.0220 0x0bec C:\Windows\System32\ssdpsrv.dll - ok
09:25:37.0220 0x0bec [ 2D444C361F758D6CC4B2F51655ECF528, DC54D594B9D5FC27C29C5B843D03E618086E5E070E03ED911C6A8E506C6F2020 ] C:\Windows\System32\wmpps.dll
09:25:37.0220 0x0bec C:\Windows\System32\wmpps.dll - ok
09:25:37.0236 0x0bec [ 9B7221AA291A7BCB581E5A601BFCA8C3, 53206F655E823A969524C845911B629248D431C3914418B9C4E76C43918B723A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\1fb1b14199d6aec70df1a0626a3ae5f2\System.Xml.ni.dll
09:25:37.0236 0x0bec C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\1fb1b14199d6aec70df1a0626a3ae5f2\System.Xml.ni.dll - ok
09:25:37.0236 0x0bec [ 1FDFC4E9E7405E08FCFF224B49359D61, 31F84D2EF17B9C52B826F94866EF62C52A83A568EF603731790D3BEDF236FD29 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\907b2b3dae591e0484acfc0ea63e8caa\System.Configuration.ni.dll
09:25:37.0236 0x0bec C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\907b2b3dae591e0484acfc0ea63e8caa\System.Configuration.ni.dll - ok
09:25:37.0236 0x0bec [ A435F53E8509C3F392CEE3F571FDEC77, A4B2E6429D42D937AFE9E246D8872A47D54B15EC498914F37BCCAC88520E91B2 ] C:\Windows\System32\atipdl64.dll
09:25:37.0236 0x0bec C:\Windows\System32\atipdl64.dll - ok
09:25:37.0252 0x0bec ================ Scan generic autorun ======================
09:25:37.0267 0x0bec SynTPEnh - ok
09:25:37.0376 0x0bec [ 7A2C26459B599A2D6D5401F73ACA1981, EABDE03BE7F10A3A1CF9E0A38B834F9B48A14D921C63121645DF0906526BB661 ] C:\Program Files\IDT\WDM\sttray64.exe
09:25:37.0392 0x0bec SysTrayApp - ok
09:25:37.0423 0x0bec SunJavaUpdateSched - ok
09:25:37.0517 0x0bec [ CABF1DF6108BDE0EA1FDFAA67FA02760, 2CEB8E3C2A222C7542B5108DE8280956A12496497FA65709E3830AF8B8141DD5 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
09:25:37.0517 0x0bec StartCCC - ok
09:25:37.0532 0x0bec UpdatePRCShortCut - ok
09:25:37.0532 0x0bec SunJavaUpdateSched - ok
09:25:37.0548 0x0bec WirelessAssistant - ok
09:25:37.0642 0x0bec [ EA6EADF6314E43783BA8EEE79F93F73C, 1A4BC2D8DFBDC37AF85C73DEE76A6EE901EBA188D43856BD2FFA96B79A126F73 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
09:25:37.0673 0x0bec Sidebar - ok
09:25:37.0704 0x0bec [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
09:25:37.0704 0x0bec mctadmin - ok
09:25:37.0735 0x0bec [ EA6EADF6314E43783BA8EEE79F93F73C, 1A4BC2D8DFBDC37AF85C73DEE76A6EE901EBA188D43856BD2FFA96B79A126F73 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
09:25:37.0766 0x0bec Sidebar - ok
09:25:37.0766 0x0bec [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
09:25:37.0782 0x0bec mctadmin - ok
09:25:37.0782 0x0bec HPADVISOR - ok
09:25:37.0782 0x0bec LightScribe Control Panel - ok
09:25:37.0798 0x0bec Waiting for KSN requests completion. In queue: 304
09:25:38.0812 0x0bec Waiting for KSN requests completion. In queue: 304
09:25:39.0826 0x0bec Waiting for KSN requests completion. In queue: 6
09:25:41.0136 0x0bec Win FW state via NFP2: enabled
09:25:44.0006 0x0bec ============================================================
09:25:44.0006 0x0bec Scan finished
09:25:44.0006 0x0bec ============================================================
09:25:44.0006 0x0be4 Detected object count: 0
09:25:44.0006 0x0be4 Actual detected object count: 0
09:25:52.0805 0x0b38 ============================================================
09:25:52.0805 0x0b38 Scan started
09:25:52.0805 0x0b38 Mode: Manual; SigCheck; TDLFS;
09:25:52.0805 0x0b38 ============================================================
09:25:52.0805 0x0b38 KSN ping started
09:25:55.0551 0x0b38 KSN ping finished: true
09:25:56.0533 0x0b38 ================ Scan system memory ========================
09:25:56.0533 0x0b38 System memory - ok
09:25:56.0533 0x0b38 ================ Scan services =============================
09:25:56.0830 0x0b38 [ 1B00662092F9F9568B995902F0CC40D5, D345014CF146FA57B2682C189D5E7F27D4C78F321F2723D912D623E777C2BB70 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys
09:25:56.0923 0x0b38 1394ohci - ok
09:25:56.0955 0x0b38 [ 1CFFE9C06E66A57DAE1452E449A58240, F337852EEF9DCF33FB1B85EEF61FA8D28A780B13488B144DFAD2234FC24CB430 ] Accelerometer C:\Windows\system32\DRIVERS\Accelerometer.sys
09:25:56.0986 0x0b38 Accelerometer - ok
09:25:57.0017 0x0b38 [ 6F11E88748CDEFD2F76AA215F97DDFE5, BD0B3561EDCDE5EFD89372793CFD09DF879709BF469542F4A049705CBA9FD060 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys
09:25:57.0033 0x0b38 ACPI - ok
09:25:57.0033 0x0b38 [ 63B05A0420CE4BF0E4AF6DCC7CADA254, 56BCC219D6B886FD42B7D335B4A7BBA3C9BC148220CBD99F8583FB505DAE63BF ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys
09:25:57.0079 0x0b38 AcpiPmi - ok
09:25:57.0126 0x0b38 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
09:25:57.0142 0x0b38 adp94xx - ok
09:25:57.0157 0x0b38 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
09:25:57.0173 0x0b38 adpahci - ok
09:25:57.0189 0x0b38 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
09:25:57.0204 0x0b38 adpu320 - ok
09:25:57.0235 0x0b38 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
09:25:57.0360 0x0b38 AeLookupSvc - ok
09:25:57.0485 0x0b38 [ A6FB9DB8F1A86861D955FD6975977AE0, 788C6EE50719227D7A9B7F08C8D5E1289FCD0E8AC23A1021A5093D2E8368F696 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
09:25:57.0547 0x0b38 AESTFilters - ok
09:25:57.0594 0x0b38 [ B9384E03479D2506BC924C16A3DB87BC, AB5FD2BC1F005E7D664F5DE3D5CB54499024A83B716DD52C56582DB7EFB4F01B ] AFD C:\Windows\system32\drivers\afd.sys
09:25:57.0657 0x0b38 AFD - ok
09:25:57.0719 0x0b38 [ 98022774D9930ECBB292E70DB7601DF6, BE64A40B9BE997D73C0FC14D97E204C9D886EDA07EC4C9391A70CE477084E5F1 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
09:25:57.0781 0x0b38 AgereSoftModem - ok
09:25:57.0797 0x0b38 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\DRIVERS\agp440.sys
09:25:57.0797 0x0b38 agp440 - ok
09:25:57.0828 0x0b38 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
09:25:57.0875 0x0b38 ALG - ok
09:25:57.0891 0x0b38 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\DRIVERS\aliide.sys
09:25:57.0906 0x0b38 aliide - ok
09:25:57.0937 0x0b38 [ D0D8877969011D1B0ED9C3C55A9A9108, DFF41D12EA353DFACDF5C1C227D2D44D659EB8C484829651C90F8684CE2B9E49 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
09:25:57.0984 0x0b38 AMD External Events Utility - ok
09:25:58.0000 0x0b38 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\DRIVERS\amdide.sys
09:25:58.0000 0x0b38 amdide - ok
09:25:58.0031 0x0b38 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
09:25:58.0047 0x0b38 AmdK8 - ok
09:25:58.0062 0x0b38 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
09:25:58.0078 0x0b38 AmdPPM - ok
09:25:58.0093 0x0b38 [ 7A4B413614C055935567CF88A9734D38, A3BB7CDF3EE0EEF67F89263E81145E73C7142EF5F0AF265375C2ECCE74F932C4 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys
09:25:58.0109 0x0b38 amdsata - ok
09:25:58.0125 0x0b38 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
09:25:58.0125 0x0b38 amdsbs - ok
09:25:58.0140 0x0b38 [ B4AD0CACBAB298671DD6F6EF7E20679D, FB566C892D0A3DC0A523AE20F35011996958D670937DD5C1A1FCCD36AAC714D7 ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys
09:25:58.0140 0x0b38 amdxata - ok
09:25:58.0156 0x0b38 [ 42FD751B27FA0E9C69BB39F39E409594, DE349CAA570957868CA1CB0BE0FAF551CD4D44FD53EBC4391B9C1C7B9CF295D2 ] AppID C:\Windows\system32\drivers\appid.sys
09:25:58.0187 0x0b38 AppID - ok
09:25:58.0203 0x0b38 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll
09:25:58.0249 0x0b38 AppIDSvc - ok
09:25:58.0249 0x0b38 [ D065BE66822847B7F127D1F90158376E, 20F911F390FF23C2C42361A449C4344DB59F1DC21EDD1E7EBC4E80914DEF7824 ] Appinfo C:\Windows\System32\appinfo.dll
09:25:58.0296 0x0b38 Appinfo - ok
09:25:58.0312 0x0b38 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
09:25:58.0312 0x0b38 arc - ok
09:25:58.0327 0x0b38 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
09:25:58.0343 0x0b38 arcsas - ok
09:25:58.0343 0x0b38 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
09:25:58.0405 0x0b38 AsyncMac - ok
09:25:58.0405 0x0b38 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\DRIVERS\atapi.sys
09:25:58.0421 0x0b38 atapi - ok
09:25:58.0437 0x0b38 [ 04A5815DF7E8B037DF674D3CCACC0C31, BC49D6C135C50254BF952B790046BE364DFDDA786F1EACEE4CC8880B764B7A92 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
09:25:58.0437 0x0b38 AtiHdmiService - ok
09:25:58.0686 0x0b38 [ C5758BF1DFD762A5B17041FF061B7750, BA732E670536C73523DA0880485E5028C682FBEAF048F564EB626DA61364CAAD ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys
09:25:58.0858 0x0b38 atikmdag - ok
09:25:58.0936 0x0b38 [ 07721A77180EDD4D39CCB865BF63C7FD, 9E8117E747C86154F98F2686D805A981029CC5D11AFB115A529429C9A4579BE5 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
09:25:59.0014 0x0b38 AudioEndpointBuilder - ok
09:25:59.0045 0x0b38 [ 07721A77180EDD4D39CCB865BF63C7FD, 9E8117E747C86154F98F2686D805A981029CC5D11AFB115A529429C9A4579BE5 ] AudioSrv C:\Windows\System32\Audiosrv.dll
09:25:59.0092 0x0b38 AudioSrv - ok
09:25:59.0107 0x0b38 [ B20B5FA5CA050E9926E4D1DB81501B32, 91B9038349BA07E32DE809E6798167EE44087809EB1174B84EC16580040F1BE0 ] AxInstSV C:\Windows\System32\AxInstSV.dll
09:25:59.0201 0x0b38 AxInstSV - ok
09:25:59.0232 0x0b38 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
09:25:59.0263 0x0b38 b06bdrv - ok
09:25:59.0295 0x0b38 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
09:25:59.0310 0x0b38 b57nd60a - ok
09:25:59.0466 0x0b38 [ F99C7AE4BB91BD1506B3572F944307BB, 66513B353D44F5F057BFF6E5DA0607F0DBF702783A2EAE95E8CE69946E78B8D7 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl664.sys
09:25:59.0529 0x0b38 BCM43XX - ok
09:25:59.0607 0x0b38 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
09:25:59.0638 0x0b38 BDESVC - ok
09:25:59.0653 0x0b38 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
09:25:59.0716 0x0b38 Beep - ok
09:25:59.0747 0x0b38 [ 4992C609A6315671463E30F6512BC022, 3020034556EAC25CD90F41D3BFFDD0BB2C3D1C5BAC4359F4B71B84A9FC404495 ] BFE C:\Windows\System32\bfe.dll
09:25:59.0809 0x0b38 BFE - ok
09:25:59.0872 0x0b38 [ 7F0C323FE3DA28AA4AA1BDA3F575707F, 7FF09CBC16A9E5F357A76FF79A3F0DD047957D474031F51A6BB4916C7911F005 ] BITS C:\Windows\System32\qmgr.dll
09:25:59.0934 0x0b38 BITS - ok
09:25:59.0950 0x0b38 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
09:25:59.0965 0x0b38 blbdrive - ok
09:25:59.0981 0x0b38 [ 91CE0D3DC57DD377E690A2D324022B08, 61874463956C0BCA5139522F34E974E5F638A092E0FD5C59DD30DE61D9AB8B0E ] bowser C:\Windows\system32\DRIVERS\bowser.sys
09:26:00.0012 0x0b38 bowser - ok
09:26:00.0028 0x0b38 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
09:26:00.0059 0x0b38 BrFiltLo - ok
09:26:00.0059 0x0b38 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
09:26:00.0075 0x0b38 BrFiltUp - ok
09:26:00.0106 0x0b38 [ 94FBC06F294D58D02361918418F996E3, 62C7CC2AF8F5A0BB0C262DACDE3F72C6AC318C3840CE60E46EE2064B32BDA5EF ] Browser C:\Windows\System32\browser.dll
09:26:00.0168 0x0b38 Browser - ok
09:26:00.0199 0x0b38 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
09:26:00.0215 0x0b38 Brserid - ok
09:26:00.0215 0x0b38 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
09:26:00.0231 0x0b38 BrSerWdm - ok
09:26:00.0246 0x0b38 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
09:26:00.0262 0x0b38 BrUsbMdm - ok
09:26:00.0277 0x0b38 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
09:26:00.0277 0x0b38 BrUsbSer - ok
09:26:00.0293 0x0b38 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
09:26:00.0309 0x0b38 BTHMODEM - ok
09:26:00.0324 0x0b38 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
09:26:00.0371 0x0b38 bthserv - ok
09:26:00.0387 0x0b38 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
09:26:00.0418 0x0b38 cdfs - ok
09:26:00.0433 0x0b38 [ 83D2D75E1EFB81B3450C18131443F7DB, F2C686C980D818E797818E75B808E1E0B51B2045840A4BFC32D860B7DB4DFA22 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
09:26:00.0449 0x0b38 cdrom - ok
09:26:00.0465 0x0b38 [ 312E2F82AF11E79906898AC3E3D58A1F, F6CB7D8B204B94F749D5DBEFD552150AAB16A34D629F87F73823A7504465F106 ] CertPropSvc C:\Windows\System32\certprop.dll
09:26:00.0496 0x0b38 CertPropSvc - ok
09:26:00.0511 0x0b38 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
09:26:00.0527 0x0b38 circlass - ok
09:26:00.0558 0x0b38 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys
09:26:00.0574 0x0b38 CLFS - ok
09:26:00.0699 0x0b38 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:26:00.0714 0x0b38 clr_optimization_v2.0.50727_32 - ok
09:26:00.0792 0x0b38 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
09:26:00.0808 0x0b38 clr_optimization_v2.0.50727_64 - ok
09:26:00.0823 0x0b38 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
09:26:00.0855 0x0b38 CmBatt - ok
09:26:00.0855 0x0b38 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys
09:26:00.0870 0x0b38 cmdide - ok
09:26:00.0886 0x0b38 [ F95FD4CB7DA00BA2A63CE9F6B5C053E1, D1FBCA0416D38B9CA510FB01CF251E60B244D38080E6668948ED927D2350ED49 ] CNG C:\Windows\system32\Drivers\cng.sys
09:26:00.0917 0x0b38 CNG - ok
09:26:00.0964 0x0b38 Com4QLBEx - ok
09:26:00.0964 0x0b38 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
09:26:00.0979 0x0b38 Compbatt - ok
09:26:00.0979 0x0b38 [ F26B3A86F6FA87CA360B879581AB4123, 723904362614FE47F6CC0EA0656BA1B47EA32D73BAFB61688A5E5CAE4340B1BF ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
09:26:00.0995 0x0b38 CompositeBus - ok
09:26:01.0011 0x0b38 COMSysApp - ok
09:26:01.0011 0x0b38 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
09:26:01.0026 0x0b38 crcdisk - ok
09:26:01.0057 0x0b38 [ 8C57411B66282C01533CB776F98AD384, 65BCF1B0BA521CBE39E974C7ACAEA9C9E3F89D86754275C6B2616E7691876AEE ] CryptSvc C:\Windows\system32\cryptsvc.dll
09:26:01.0104 0x0b38 CryptSvc - ok
09:26:01.0151 0x0b38 [ 7266972E86890E2B30C0C322E906B027, BFA30E85F5BD3AA933913BD7C6D2B5993DB7AFB0C98349B61A6BEF0BDC8A3680 ] DcomLaunch C:\Windows\system32\rpcss.dll
09:26:01.0198 0x0b38 DcomLaunch - ok
09:26:01.0245 0x0b38 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
09:26:01.0291 0x0b38 defragsvc - ok
09:26:01.0307 0x0b38 [ 3F1DC527070ACB87E40AFE46EF6DA749, 5CB9CB94854AF06BEA02AF3E0562B8ECF72B2B23ED657A3F5E17CD3552F3EF84 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
09:26:01.0354 0x0b38 DfsC - ok
09:26:01.0369 0x0b38 [ CE3B9562D997F69B330D181A8875960F, 6FEE6622859198C5C13545867EF7CFE8EDC991360E976F792313DAA9C82CC5C8 ] Dhcp C:\Windows\system32\dhcpcore.dll
09:26:01.0432 0x0b38 Dhcp - ok
09:26:01.0447 0x0b38 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
09:26:01.0494 0x0b38 discache - ok
09:26:01.0510 0x0b38 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
09:26:01.0510 0x0b38 Disk - ok
09:26:01.0525 0x0b38 [ 676108C4E3AA6F6B34633748BD0BEBD9, 953286126E482EF3A9A1833680EFF86D657BD6C5411B9AEC2D7828ADE63D25AD ] Dnscache C:\Windows\System32\dnsrslvr.dll
09:26:01.0572 0x0b38 Dnscache - ok
09:26:01.0603 0x0b38 [ 14452ACDB09B70964C8C21BF80A13ACB, DA0AAAC04626EFF4256D7095FF1DDA1F1B17676E26990C418BDF5090476F2AB4 ] dot3svc C:\Windows\System32\dot3svc.dll
09:26:01.0650 0x0b38 dot3svc - ok
09:26:01.0681 0x0b38 [ 8C2BA6BEA949EE6E68385F5692BAFB94, 1047F473DCE0FB56BEA5C1B7929752C1FBAB5983C8202ABB4EEA48FCD60A353A ] DPS C:\Windows\system32\dps.dll
09:26:01.0728 0x0b38 DPS - ok
09:26:01.0728 0x0b38 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
09:26:01.0744 0x0b38 drmkaud - ok
09:26:01.0775 0x0b38 [ 7CB7D2B73813CE05C7BC0F5F95D27CEC, F80AD7E946B8C8C27A0EB8A99B3A61C3F09E5442372D64EB4886D86B8D0AFCFD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
09:26:01.0853 0x0b38 DXGKrnl - ok
09:26:01.0884 0x0b38 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
09:26:01.0931 0x0b38 EapHost - ok
09:26:02.0071 0x0b38 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
09:26:02.0196 0x0b38 ebdrv - ok
09:26:02.0227 0x0b38 [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] EFS C:\Windows\System32\lsass.exe
09:26:02.0243 0x0b38 EFS - ok
09:26:02.0321 0x0b38 [ B91D81B3B54A54CCAFC03733DBC2E29E, B08CFD3136F678CF902722B32CA55C4983EEE5AEBDCEE036BEB746914742141C ] ehRecvr C:\Windows\ehome\ehRecvr.exe
09:26:02.0383 0x0b38 ehRecvr - ok
09:26:02.0399 0x0b38 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
09:26:02.0415 0x0b38 ehSched - ok
09:26:02.0461 0x0b38 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
09:26:02.0477 0x0b38 elxstor - ok
09:26:02.0508 0x0b38 [ 524C79054636D2E5751169005006460B, 1EBA5972E13C5BB07BBD94D6647B86469B4910F60A3C8BDDC6BB5736EF99C9C3 ] enecir C:\Windows\system32\DRIVERS\enecir.sys
09:26:02.0539 0x0b38 enecir - ok
09:26:02.0539 0x0b38 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys
09:26:02.0571 0x0b38 ErrDev - ok
09:26:02.0602 0x0b38 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
09:26:02.0664 0x0b38 EventSystem - ok
09:26:02.0695 0x0b38 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
09:26:02.0742 0x0b38 exfat - ok
09:26:02.0742 0x0b38 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
09:26:02.0789 0x0b38 fastfat - ok
09:26:02.0836 0x0b38 [ D607B2F1BEE3992AA6C2C92C0A2F0855, E22301C8F01DBF0A38A85165959BB070647C996CB1BCD50FDFE3DDDCA427DF2A ] Fax C:\Windows\system32\fxssvc.exe
09:26:02.0883 0x0b38 Fax - ok
09:26:02.0914 0x0b38 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
09:26:02.0929 0x0b38 fdc - ok
09:26:02.0945 0x0b38 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
09:26:02.0992 0x0b38 fdPHost - ok
09:26:02.0992 0x0b38 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
09:26:03.0023 0x0b38 FDResPub - ok
09:26:03.0039 0x0b38 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
09:26:03.0054 0x0b38 FileInfo - ok
09:26:03.0054 0x0b38 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
09:26:03.0101 0x0b38 Filetrace - ok
09:26:03.0101 0x0b38 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
09:26:03.0117 0x0b38 flpydisk - ok
09:26:03.0132 0x0b38 [ F7866AF72ABBAF84B1FA5AA195378C59, 9D522044FE9C18FB3EC327E675737C01F2A8231DDE900421D3A431596946A7F8 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
09:26:03.0148 0x0b38 FltMgr - ok
09:26:03.0210 0x0b38 [ 8AC4CB4EA61E41009FAE9AE7B2B5DA3A, 6587B22ED91F98D3E3614967F62D7A58F42C12F45F8E1D47835D195CD350BC54 ] FontCache C:\Windows\system32\FntCache.dll
09:26:03.0288 0x0b38 FontCache - ok
09:26:03.0335 0x0b38 [ 8D89E3131C27FDD6932189CB785E1B7A, AC7DA4C5E6D2E41D1A1DE146E46F034FAF0FB11AD801F070F2D5CD08166E9EB7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:26:03.0335 0x0b38 FontCache3.0.0.0 - ok
09:26:03.0351 0x0b38 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
09:26:03.0366 0x0b38 FsDepends - ok
09:26:03.0366 0x0b38 [ E95EF8547DE20CF0603557C0CF7A9462, 55540B06B7B380CA2DA6EEE2D76C6CD6131ADB02B2D0B172A36536863A0C57B6 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
09:26:03.0382 0x0b38 Fs_Rec - ok
09:26:03.0382 0x0b38 [ B8B2A6E1558F8F5DE5CE431C5B2C7B09, 24A9F04A0622681A4E4B6BCC47C45016787C6036EAD828920812D9FAD49A71E3 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
09:26:03.0397 0x0b38 fvevol - ok
09:26:03.0429 0x0b38 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
09:26:03.0429 0x0b38 gagp30kx - ok
09:26:03.0491 0x0b38 [ FE5AB4525BC2EC68B9119A6E5D40128B, 088DE37982CEE78A0C1181389A3BFF1E352DF504074B3E8F3EA244DB271BF216 ] gpsvc C:\Windows\System32\gpsvc.dll
09:26:03.0553 0x0b38 gpsvc - ok
09:26:03.0569 0x0b38 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
09:26:03.0600 0x0b38 hcw85cir - ok
09:26:03.0616 0x0b38 [ 6410F6F415B2A5A9037224C41DA8BF12, 5B8452BC49FDA2215281D27B22FA9BE46B0460F51C4DC70E58B687CFB541F3A5 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
09:26:03.0647 0x0b38 HdAudAddService - ok
09:26:03.0663 0x0b38 [ 0A49913402747A0B67DE940FB42CBDBB, 61A45DBDCEB4A2D5C3C28F6BC8C5ADC51D0240A7553DF44BCC4355FC06F72B83 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
09:26:03.0678 0x0b38 HDAudBus - ok
09:26:03.0694 0x0b38 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
09:26:03.0709 0x0b38 HidBatt - ok
09:26:03.0725 0x0b38 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
09:26:03.0741 0x0b38 HidBth - ok
09:26:03.0772 0x0b38 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
09:26:03.0787 0x0b38 HidIr - ok
09:26:03.0803 0x0b38 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll
09:26:03.0850 0x0b38 hidserv - ok
09:26:03.0865 0x0b38 [ B3BF6B5B50006DEF50B66306D99FCF6F, D39A1DEBE7C464922919826D15199ED25E263BF58633593DD412D78F98921417 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
09:26:03.0865 0x0b38 HidUsb - ok
09:26:03.0897 0x0b38 [ EFA58EDE58DD74388FFD04CB32681518, 76D81F9BC1A4D85A779B79DEC23B79F1568AA236CD49247414093CDC1FCC150F ] hkmsvc C:\Windows\system32\kmsvc.dll
09:26:03.0943 0x0b38 hkmsvc - ok
09:26:03.0959 0x0b38 [ 046B2673767CA626E2CFB7FDF735E9E8, 9C932DCC5DE9B1919AB38C01D76AD7BBAF491DE6D158662407974748BC0B4C6C ] HomeGroupListener C:\Windows\system32\ListSvc.dll
09:26:03.0975 0x0b38 HomeGroupListener - ok
09:26:04.0006 0x0b38 [ 06A7422224D9865A5613710A089987DF, EF604B4B6918D3FDC8E90ED9004E6E7340E0F399C214C65CCE3A7C8C576FA1C0 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
09:26:04.0037 0x0b38 HomeGroupProvider - ok
09:26:04.0037 0x0b38 HP Health Check Service - ok
09:26:04.0053 0x0b38 [ 05712FDDBD45A5864EB326FAABC6A4E3, 8BACA990971A331E6EC7F896EF2404F09E381DAA3519FC6E3027C0DBD991BA7F ] hpdskflt C:\Windows\system32\DRIVERS\hpdskflt.sys
09:26:04.0068 0x0b38 hpdskflt - ok
09:26:04.0084 0x0b38 [ 9AF482D058BE59CC28BCE52E7C4B747C, 2D150CD0C82B575CDE2E1B3941FD72EFCB254850D6FF1D7C40D3B29643018EFF ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
09:26:04.0084 0x0b38 HpqKbFiltr - ok
09:26:04.0099 0x0b38 hpqwmiex - ok
09:26:04.0146 0x0b38 [ 0886D440058F203EBA0E1825E4355914, BC49C4CEFE324A08C864A4BF4FEA9A70151FAB7CC30BDC28344F3FFD2F500070 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys
09:26:04.0146 0x0b38 HpSAMD - ok
09:26:04.0162 0x0b38 hpsrv - ok
09:26:04.0333 0x0b38 [ CEE049CAC4EFA7F4E1E4AD014414A5D4, 433AE2D845850F1D7A48275BBD87B3F0E7DD48F2282C727C4B777ECD92CC331D ] HTTP C:\Windows\system32\drivers\HTTP.sys
09:26:04.0396 0x0b38 HTTP - ok
09:26:04.0427 0x0b38 [ F17766A19145F111856378DF337A5D79, FC1633FB865A5324EBCBE5F97D297B899FABBDD965D862C2EFC743CD36F47E62 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
09:26:04.0443 0x0b38 hwpolicy - ok
09:26:04.0474 0x0b38 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
09:26:04.0489 0x0b38 i8042prt - ok
09:26:04.0583 0x0b38 [ D83EFB6FD45DF9D55E9A1AFC63640D50, 0494F8F7CB3ED11FD8D0B838CB71271AF7A3CBFCB7F2CB043A9392B5106A3C7B ] iaStorV C:\Windows\system32\DRIVERS\iaStorV.sys
09:26:04.0614 0x0b38 iaStorV - ok
09:26:04.0848 0x0b38 [ 2F2BE70D3E02B6FA877921AB9516D43C, E04255EE4BD95FC1539EB1EB9F702B039F65993D31A4531DA487274543EF5226 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
09:26:04.0895 0x0b38 idsvc - ok
09:26:05.0191 0x0b38 [ A87261EF1546325B559374F5689CF5BC, 8DE48A8A13A32AAAC54CDDF58F3F61BE3E2802C1D9CA1CA98E57EB0D65FB6002 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
09:26:05.0394 0x0b38 igfx - ok
09:26:05.0410 0x0b38 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
09:26:05.0425 0x0b38 iirsp - ok
09:26:05.0488 0x0b38 [ C5B4683680DF085B57BC53E5EF34861F, 9C06517DFCB3ED7BB1166F7EB6CCC8713E6B68283C75420C0EDC182094AA1B8F ] IKEEXT C:\Windows\System32\ikeext.dll
09:26:05.0550 0x0b38 IKEEXT - ok
09:26:05.0581 0x0b38 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\DRIVERS\intelide.sys
09:26:05.0597 0x0b38 intelide - ok
09:26:05.0597 0x0b38 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
09:26:05.0613 0x0b38 intelppm - ok
09:26:05.0628 0x0b38 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
09:26:05.0675 0x0b38 IPBusEnum - ok
09:26:05.0675 0x0b38 [ 722DD294DF62483CECAAE6E094B4D695, 41ABB42EF969EA8A84B546908EBBDC2411D964DE101CE6DD3D7ECF109085E0C0 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:26:05.0722 0x0b38 IpFilterDriver - ok
09:26:05.0753 0x0b38 [ F8E058D17363EC580E4B7232778B6CB5, 02352919F349C57930A0B032FBDC45327FB473D310DE7AC721F4694FDE7D21FB ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
09:26:05.0815 0x0b38 iphlpsvc - ok
09:26:05.0815 0x0b38 [ E2B4A4494DB7CB9B89B55CA268C337C5, C59BC4AA03D10647641EC7533F78BC7E2EA6FC48B8B2CF1A49B5148EF40A90FB ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys
09:26:05.0831 0x0b38 IPMIDRV - ok
09:26:05.0831 0x0b38 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
09:26:05.0878 0x0b38 IPNAT - ok
09:26:05.0878 0x0b38 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
09:26:05.0893 0x0b38 IRENUM - ok
09:26:05.0909 0x0b38 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys
09:26:05.0909 0x0b38 isapnp - ok
09:26:05.0925 0x0b38 [ FA4D2557DE56D45B0A346F93564BE6E1, 2827EC3582FF59FFD55BBD4A4F0DDFFEAD4F2537FA043B3A69904FE920B1619C ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
09:26:05.0940 0x0b38 iScsiPrt - ok
09:26:05.0971 0x0b38 [ F8844B00C10E386C704C610E95A9847D, 3E3CFDDD0DD9E98542BAE07ED9CF922D98370C94BE364BA84F677EAA01ED775A ] JMCR C:\Windows\system32\DRIVERS\jmcr.sys
09:26:06.0003 0x0b38 JMCR - ok
09:26:06.0003 0x0b38 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
09:26:06.0018 0x0b38 kbdclass - ok
09:26:06.0018 0x0b38 [ 6DEF98F8541E1B5DCEB2C822A11F7323, F6EE4A7A6A7A1F243D32CA9241CA4816C92EB7BF2AADDD09234968C2CAAE6C0D ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
09:26:06.0034 0x0b38 kbdhid - ok
09:26:06.0034 0x0b38 [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] KeyIso C:\Windows\system32\lsass.exe
09:26:06.0049 0x0b38 KeyIso - ok
09:26:06.0065 0x0b38 [ E8B6FCC9C83535C67F835D407620BD27, 74B63F3BFB756FF0B0AD6A6C1535C0A1A0630295ECCBC078B00F2449718B0870 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
09:26:06.0065 0x0b38 KSecDD - ok
09:26:06.0081 0x0b38 [ BBE1BF6D9B661C354D4857D5FADB943B, D2F6E52CCD0DF07B3D92669B941CEB9A59E16D3518226F11028A70DBDEFABBCF ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
09:26:06.0096 0x0b38 KSecPkg - ok
09:26:06.0096 0x0b38 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
09:26:06.0127 0x0b38 ksthunk - ok
09:26:06.0174 0x0b38 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
09:26:06.0221 0x0b38 KtmRm - ok
09:26:06.0252 0x0b38 [ C926920B8978DE6ACFE9E15C709E9B57, 33B8002ABC30372B1CA8B6EC046757794CD7C9DA3CA4715B515B6894DC7E45CA ] LanmanServer C:\Windows\system32\srvsvc.dll
09:26:06.0315 0x0b38 LanmanServer - ok
09:26:06.0346 0x0b38 [ 27026EAC8818E8A6C00A1CAD2F11D29A, A12858CCB3B2419D66C667A46B106DA7A7BA97FFFA9634BFAE95DDF193C430D5 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
09:26:06.0393 0x0b38 LanmanWorkstation - ok
09:26:06.0424 0x0b38 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
09:26:06.0455 0x0b38 lltdio - ok
09:26:06.0486 0x0b38 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
09:26:06.0517 0x0b38 lltdsvc - ok
09:26:06.0533 0x0b38 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
09:26:06.0564 0x0b38 lmhosts - ok
09:26:06.0580 0x0b38 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
09:26:06.0595 0x0b38 LSI_FC - ok
09:26:06.0595 0x0b38 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
09:26:06.0611 0x0b38 LSI_SAS - ok
09:26:06.0627 0x0b38 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
09:26:06.0627 0x0b38 LSI_SAS2 - ok
09:26:06.0642 0x0b38 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
09:26:06.0642 0x0b38 LSI_SCSI - ok
09:26:06.0658 0x0b38 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
09:26:06.0705 0x0b38 luafv - ok
09:26:06.0736 0x0b38 [ 6A990AC8404F18F34016328843513AFC, 5B63CCF831B9806ED7ED509BAAF2EBFB7D261587FCC19749C3360CE5CE620910 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
09:26:06.0751 0x0b38 MBAMProtector - ok
09:26:06.0861 0x0b38 [ A71B4CF0D3F763208EC0DE01290245D8, 7F9357DB9481366429689BA2103323E0F2D6DFD1BD437031BE09EC921497F4B7 ] MBAMScheduler C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
09:26:06.0907 0x0b38 MBAMScheduler - ok
09:26:06.0970 0x0b38 [ EB043B24D856465A2A21A59E53EEA9CD, B510E32A115444ECC6113BC3B4FFF1A262745C2319E56536B04B59E60951A3A5 ] MBAMService C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
09:26:07.0001 0x0b38 MBAMService - ok
09:26:07.0032 0x0b38 [ E9CD058C79EA15B4AA93E259FA713B07, 2B09F65188D8782F9C797545F2F791EC7EAB85D8914B2C0B30BD869C412E3980 ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys
09:26:07.0032 0x0b38 MBAMSwissArmy - ok
09:26:07.0048 0x0b38 [ 705140252F25C647FCDA87078700E0A3, 61C029674B61AF03705A036B3D2B26FDE1CD61552AE6CDB9B5A2480EEE93B014 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
09:26:07.0063 0x0b38 MBAMWebAccessControl - ok
09:26:07.0079 0x0b38 [ F84C8F1000BC11E3B7B23CBD3BAFF111, BB4C4FFE3F6C9E5C16C06F6F666F177B94E1CF878397BCC0BDAF6EB3341AAED8 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
09:26:07.0110 0x0b38 Mcx2Svc - ok
09:26:07.0157 0x0b38 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
09:26:07.0173 0x0b38 megasas - ok
09:26:07.0219 0x0b38 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
09:26:07.0235 0x0b38 MegaSR - ok
09:26:07.0266 0x0b38 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
09:26:07.0313 0x0b38 MMCSS - ok
09:26:07.0313 0x0b38 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
09:26:07.0360 0x0b38 Modem - ok
09:26:07.0360 0x0b38 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
09:26:07.0391 0x0b38 monitor - ok
09:26:07.0391 0x0b38 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
09:26:07.0407 0x0b38 mouclass - ok
09:26:07.0407 0x0b38 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
09:26:07.0422 0x0b38 mouhid - ok
09:26:07.0422 0x0b38 [ 791AF66C4D0E7C90A3646066386FB571, BF67643099494AEADDDC85E4D97AFF1017806A1DF554F9BE6C864FFECC9EAF42 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
09:26:07.0438 0x0b38 mountmgr - ok
09:26:07.0453 0x0b38 [ 609D1D87649ECC19796F4D76D4C15CEA, 5369F4C83FBAE9C4CFB9ACD36F07479E3F3FD784D79B82AE8D95B818B9F9CE00 ] mpio C:\Windows\system32\DRIVERS\mpio.sys
09:26:07.0469 0x0b38 mpio - ok
09:26:07.0469 0x0b38 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
09:26:07.0500 0x0b38 mpsdrv - ok
09:26:07.0547 0x0b38 [ AECAB449567D1846DAD63ECE49E893E3, 7A67A16A3E04574B7CAD097632ABA9B361BBEFDD6B36B7B8E3A1996EC529C2DC ] MpsSvc C:\Windows\system32\mpssvc.dll
09:26:07.0609 0x0b38 MpsSvc - ok
09:26:07.0609 0x0b38 [ 30524261BB51D96D6FCBAC20C810183C, 19598A9CD0EAAE4ACBF1069E721AB2853452F33FCFB3B5113F023A88A90BF42D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
09:26:07.0625 0x0b38 MRxDAV - ok
09:26:07.0656 0x0b38 [ CFDCD8CA87C2A657DEBC150AC35B5E08, 8870DCC8CF4E452E25BFE38113ADBDBC4014036B25E567FC262178DAA808049A ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
09:26:07.0703 0x0b38 mrxsmb - ok
09:26:07.0719 0x0b38 [ 1BEE517B220B7F024F411AEC1571DD5A, 6DC7638D056DFDE36803BCD691BF73A4AAFD59DE63C0ACD7EA860997FFA3C6E7 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:26:07.0765 0x0b38 mrxsmb10 - ok
09:26:07.0765 0x0b38 [ 6B2D5FEF385828B6E485C1C90AFB8195, A960CC0351F200FA56FAC0534C0F9D7F79AAC9CF18A4390CDCA7EA4EE22ED6B6 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:26:07.0812 0x0b38 mrxsmb20 - ok
09:26:07.0812 0x0b38 [ 5C37497276E3B3A5488B23A326A754B7, 9982FCDAFB963868EB93A4DEF811A3167488EB5246BAC3F4AE960506FDF63967 ] msahci C:\Windows\system32\DRIVERS\msahci.sys
09:26:07.0828 0x0b38 msahci - ok
09:26:07.0843 0x0b38 [ 8D27B597229AED79430FB9DB3BCBFBD0, 3D58E08B47E8AE419D405BF263929DFA6F2F5F0C2D79FD8D6F2CED6452F6F248 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys
09:26:07.0843 0x0b38 msdsm - ok
09:26:07.0859 0x0b38 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
09:26:07.0875 0x0b38 MSDTC - ok
09:26:07.0890 0x0b38 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
09:26:07.0921 0x0b38 Msfs - ok
09:26:07.0921 0x0b38 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
09:26:07.0968 0x0b38 mshidkmdf - ok
09:26:07.0968 0x0b38 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys
09:26:07.0968 0x0b38 msisadrv - ok
09:26:07.0999 0x0b38 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
09:26:08.0062 0x0b38 MSiSCSI - ok
09:26:08.0062 0x0b38 msiserver - ok
09:26:08.0093 0x0b38 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
09:26:08.0124 0x0b38 MSKSSRV - ok
09:26:08.0124 0x0b38 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
09:26:08.0171 0x0b38 MSPCLOCK - ok
09:26:08.0171 0x0b38 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
09:26:08.0218 0x0b38 MSPQM - ok
09:26:08.0233 0x0b38 [ 89CB141AA8616D8C6A4610FA26C60964, 76E72F6A0348EDC58A8E6F88C7F024B8B077670400BD5A833811DAFCF9F517CC ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
09:26:08.0249 0x0b38 MsRPC - ok
09:26:08.0265 0x0b38 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
09:26:08.0280 0x0b38 mssmbios - ok
09:26:08.0280 0x0b38 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
09:26:08.0327 0x0b38 MSTEE - ok
09:26:08.0327 0x0b38 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
09:26:08.0343 0x0b38 MTConfig - ok
09:26:08.0358 0x0b38 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
09:26:08.0358 0x0b38 Mup - ok
09:26:08.0405 0x0b38 [ 4987E079A4530FA737A128BE54B63B12, 27E51CC7D4D90DC4397575491DE7EFE15808709F097E2828E46AA73C771A47A4 ] napagent C:\Windows\system32\qagentRT.dll
09:26:08.0452 0x0b38 napagent - ok
09:26:08.0483 0x0b38 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
09:26:08.0514 0x0b38 NativeWifiP - ok
09:26:08.0561 0x0b38 [ CAD515DBD07D082BB317D9928CE8962C, 7AFA6D6154AC68F9FCC37B7B3324F7A170AE91035805026445F24F6EB4FB7F2E ] NDIS C:\Windows\system32\drivers\ndis.sys
09:26:08.0592 0x0b38 NDIS - ok
09:26:08.0592 0x0b38 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
09:26:08.0639 0x0b38 NdisCap - ok
09:26:08.0639 0x0b38 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
09:26:08.0686 0x0b38 NdisTapi - ok
09:26:08.0701 0x0b38 [ F105BA1E22BF1F2EE8F005D4305E4BEC, 723DA09E13D0F50634D9F114590B837D16F7B36AA0DA2AB8F8C2D9991624EA8F ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
09:26:08.0748 0x0b38 Ndisuio - ok
09:26:08.0764 0x0b38 [ 557DFAB9CA1FCB036AC77564C010DAD3, 8A21B342AFE5B498FB62EDDC81A3ADA9570677B7A382666090E0ABB1F85FEF29 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
09:26:08.0795 0x0b38 NdisWan - ok
09:26:08.0811 0x0b38 [ 659B74FB74B86228D6338D643CD3E3CF, 83D741B7A2A204A661A80C226212749F514800060D05E217FA6DC14D62F38F80 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
09:26:08.0842 0x0b38 NDProxy - ok
09:26:08.0842 0x0b38 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
09:26:08.0889 0x0b38 NetBIOS - ok
09:26:08.0889 0x0b38 [ 9162B273A44AB9DCE5B44362731D062A, 5A1BA6DBFEBB2618DC9D4CC55FA071C170A5D22FFB24CE62DD5B3210D8B45F39 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
09:26:08.0935 0x0b38 NetBT - ok
09:26:08.0951 0x0b38 [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] Netlogon C:\Windows\system32\lsass.exe
09:26:08.0967 0x0b38 Netlogon - ok
09:26:09.0013 0x0b38 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
09:26:09.0060 0x0b38 Netman - ok
09:26:09.0091 0x0b38 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
09:26:09.0138 0x0b38 netprofm - ok
09:26:09.0169 0x0b38 [ 3E5A36127E201DDF663176B66828FAFE, 5A08BA9EFB1A72DF1DD839BA5FA2B8994012BA62A515588FF62333B33B60045B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
09:26:09.0169 0x0b38 NetTcpPortSharing - ok
09:26:09.0372 0x0b38 [ 64428DFDAF6E88366CB51F45A79C5F69, 31187D38C1AB52120A3CB7AC3CE47ED9682AC37B0F06B9A9610C0065DD4E7B13 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys
09:26:09.0559 0x0b38 netw5v64 - ok
09:26:09.0591 0x0b38 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
09:26:09.0591 0x0b38 nfrd960 - ok
09:26:09.0622 0x0b38 [ D9A0CE66046D6EFA0C61BAA885CBA0A8, 06C3331C7F3EE0E0B95E8302CB80315E965587C4D6231785B8ACF3FAE4731FAF ] NlaSvc C:\Windows\System32\nlasvc.dll
09:26:09.0669 0x0b38 NlaSvc - ok
09:26:09.0684 0x0b38 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
09:26:09.0715 0x0b38 Npfs - ok
09:26:09.0747 0x0b38 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
09:26:09.0778 0x0b38 nsi - ok
09:26:09.0793 0x0b38 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
09:26:09.0840 0x0b38 nsiproxy - ok
09:26:09.0903 0x0b38 [ 356698A13C4630D5B31C37378D469196, BF5704AADE5C3DA370501747F12ED6E9C3349E342CCF89005AAE132B570BB42B ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
09:26:09.0949 0x0b38 Ntfs - ok
09:26:09.0949 0x0b38 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
09:26:09.0996 0x0b38 Null - ok
09:26:09.0996 0x0b38 [ 3E38712941E9BB4DDBEE00AFFE3FED3D, 03F27CC0EF0A86D0B2DAAB6F72838CB2AB57FE5D40074828D5B7F118CD5CBEE7 ] nvraid C:\Windows\system32\DRIVERS\nvraid.sys
09:26:10.0012 0x0b38 nvraid - ok
09:26:10.0027 0x0b38 [ 477DC4D6DEB99BE37084C9AC6D013DA1, E58C4D621CAAB1C68FB4A056576F48BC87913A5EBF0B511EFFB8F38C7D3E516E ] nvstor C:\Windows\system32\DRIVERS\nvstor.sys
09:26:10.0027 0x0b38 nvstor - ok
09:26:10.0043 0x0b38 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys
09:26:10.0059 0x0b38 nv_agp - ok
09:26:10.0059 0x0b38 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys
09:26:10.0074 0x0b38 ohci1394 - ok
09:26:10.0090 0x0b38 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
09:26:10.0121 0x0b38 p2pimsvc - ok
09:26:10.0152 0x0b38 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
09:26:10.0183 0x0b38 p2psvc - ok
09:26:10.0183 0x0b38 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
09:26:10.0199 0x0b38 Parport - ok
09:26:10.0215 0x0b38 [ 7DAA117143316C4A1537E074A5A9EAF0, D4F31F67BE09B6904C1B9702DC042BC0DAB628055B956C79FF760A9027679E6B ] partmgr C:\Windows\system32\drivers\partmgr.sys
09:26:10.0215 0x0b38 partmgr - ok
09:26:10.0230 0x0b38 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll
09:26:10.0261 0x0b38 PcaSvc - ok
09:26:10.0277 0x0b38 [ F36F6504009F2FB0DFD1B17A116AD74B, 33A4C217F7DC5E5B7E1B6CF335327C8FE6CC5D6D048D420252965574CAD83918 ] pci C:\Windows\system32\DRIVERS\pci.sys
09:26:10.0293 0x0b38 pci - ok
09:26:10.0293 0x0b38 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\DRIVERS\pciide.sys
09:26:10.0308 0x0b38 pciide - ok
09:26:10.0308 0x0b38 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
09:26:10.0324 0x0b38 pcmcia - ok
09:26:10.0339 0x0b38 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
09:26:10.0339 0x0b38 pcw - ok
09:26:10.0386 0x0b38 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
09:26:10.0433 0x0b38 PEAUTH - ok
09:26:10.0605 0x0b38 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
09:26:10.0636 0x0b38 PerfHost - ok
09:26:10.0714 0x0b38 [ 557E9A86F65F0DE18C9B6751DFE9D3F1, 630EE5A80335929517A22D130C75CBCE882B92978372A6F36C30B9D353C7BB07 ] pla C:\Windows\system32\pla.dll
09:26:10.0792 0x0b38 pla - ok
09:26:10.0823 0x0b38 [ 23157D583244400E1D7FBAEE2E4B31B7, 4E8D93F746C727CE1A89B53FEFFCFB080AC3CC8F3CF2F8613E692E989794C52F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
09:26:10.0870 0x0b38 PlugPlay - ok
09:26:10.0885 0x0b38 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
09:26:10.0901 0x0b38 PNRPAutoReg - ok
09:26:10.0932 0x0b38 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
09:26:10.0948 0x0b38 PNRPsvc - ok
09:26:10.0995 0x0b38 [ 166EB40D1F5B47E615DE3D0FFFE5F243, E32BCCA0D25CD631C221986EBE9F6C54BF2F12DE1672D69CCC4E22AD07D0525A ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
09:26:11.0041 0x0b38 PolicyAgent - ok
09:26:11.0057 0x0b38 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
09:26:11.0104 0x0b38 Power - ok
09:26:11.0135 0x0b38 [ 27CC19E81BA5E3403C48302127BDA717, C580FC552DDF9C163FC325B38B05C06FFD696495E4C01514BCD6346CFE4F0B40 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
09:26:11.0182 0x0b38 PptpMiniport - ok
09:26:11.0197 0x0b38 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
09:26:11.0213 0x0b38 Processor - ok
09:26:11.0244 0x0b38 [ F381975E1F4346DE875CB07339CE8D3A, 867BFC2E9A08E026289794019B8DE651A8604D06DD6A9BF166C29AFC24B6D26E ] ProfSvc C:\Windows\system32\profsvc.dll
09:26:11.0291 0x0b38 ProfSvc - ok
09:26:11.0307 0x0b38 [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] ProtectedStorage C:\Windows\system32\lsass.exe
09:26:11.0322 0x0b38 ProtectedStorage - ok
09:26:11.0338 0x0b38 [ EE992183BD8EAEFD9973F352E587A299, 6B28930FAA0A54FAADDAF2231553D7F5D45C7227454C6D49A86DFC9EF6BC9043 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
09:26:11.0369 0x0b38 Psched - ok
09:26:11.0463 0x0b38 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
09:26:11.0509 0x0b38 ql2300 - ok
09:26:11.0525 0x0b38 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
09:26:11.0525 0x0b38 ql40xx - ok
09:26:11.0556 0x0b38 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
09:26:11.0572 0x0b38 QWAVE - ok
09:26:11.0587 0x0b38 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
09:26:11.0603 0x0b38 QWAVEdrv - ok
09:26:11.0619 0x0b38 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
09:26:11.0650 0x0b38 RasAcd - ok
09:26:11.0681 0x0b38 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
09:26:11.0712 0x0b38 RasAgileVpn - ok
09:26:11.0728 0x0b38 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
09:26:11.0759 0x0b38 RasAuto - ok
09:26:11.0790 0x0b38 [ 87A6E852A22991580D6D39ADC4790463, 0F757C6E5B57DFC239CE1BEC88EF16C07E7F1A40D629A9A6DF3CB6B88FB9E642 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
09:26:11.0821 0x0b38 Rasl2tp - ok
09:26:11.0853 0x0b38 [ 47394ED3D16D053F5906EFE5AB51CC83, FE5D1249788DB6D85C55769251B0AED738D3BBA04DF57124E03397D3C0599286 ] RasMan C:\Windows\System32\rasmans.dll
09:26:11.0899 0x0b38 RasMan - ok
09:26:11.0899 0x0b38 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
09:26:11.0946 0x0b38 RasPppoe - ok
09:26:11.0962 0x0b38 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
09:26:11.0993 0x0b38 RasSstp - ok
09:26:12.0009 0x0b38 [ 3BAC8142102C15D59A87757C1D41DCE5, C0C2C6887EA5A439E69221196348382ACE3E1942C9C6E0A970E153890F71724C ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
09:26:12.0040 0x0b38 rdbss - ok
09:26:12.0055 0x0b38 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
09:26:12.0071 0x0b38 rdpbus - ok
09:26:12.0071 0x0b38 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
09:26:12.0102 0x0b38 RDPCDD - ok
09:26:12.0118 0x0b38 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
09:26:12.0149 0x0b38 RDPENCDD - ok
09:26:12.0165 0x0b38 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
09:26:12.0196 0x0b38 RDPREFMP - ok
09:26:12.0196 0x0b38 [ 8A3E6BEA1C53EA6177FE2B6EBA2C80D7, 02179089E0816AD544F370A8A3557498D09981F60CC94E497DC4A5A2BBBE1E48 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
09:26:12.0258 0x0b38 RDPWD - ok
09:26:12.0258 0x0b38 [ 634B9A2181D98F15941236886164EC8B, 15C55F05FD3CD751F619F18E2ADF91552AE82146501CD031402277F496A5B7D8 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
09:26:12.0274 0x0b38 rdyboost - ok
09:26:12.0305 0x0b38 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
09:26:12.0352 0x0b38 RemoteAccess - ok
09:26:12.0383 0x0b38 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
09:26:12.0414 0x0b38 RemoteRegistry - ok
09:26:12.0430 0x0b38 RichVideo - ok
09:26:12.0445 0x0b38 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
09:26:12.0477 0x0b38 RpcEptMapper - ok
09:26:12.0492 0x0b38 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
09:26:12.0508 0x0b38 RpcLocator - ok
09:26:12.0523 0x0b38 [ 7266972E86890E2B30C0C322E906B027, BFA30E85F5BD3AA933913BD7C6D2B5993DB7AFB0C98349B61A6BEF0BDC8A3680 ] RpcSs C:\Windows\system32\rpcss.dll
09:26:12.0570 0x0b38 RpcSs - ok
09:26:12.0586 0x0b38 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
09:26:12.0633 0x0b38 rspndr - ok
09:26:12.0664 0x0b38 [ 91296F0B2653281B2F11E0FCE56AA427, 242B6049480F62673D79E822EC7AD83DBFA1D203F2519E765DD36ECF156A962A ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
09:26:12.0695 0x0b38 RTL8167 - ok
09:26:12.0711 0x0b38 [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] SamSs C:\Windows\system32\lsass.exe
09:26:12.0726 0x0b38 SamSs - ok
09:26:12.0757 0x0b38 [ E3BBB89983DAF5622C1D50CF49F28227, 49370DC142D577D657BF5755AA9B8625C35D3DDAF1F9466B4888507FB8E6FF07 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys
09:26:12.0773 0x0b38 sbp2port - ok
09:26:12.0789 0x0b38 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
09:26:12.0835 0x0b38 SCardSvr - ok
09:26:12.0835 0x0b38 [ C94DA20C7E3BA1DCA269BC8460D98387, E1A5629728A79233B62BA87B4354BC3A332A853CC36A60E77B34923F4BCA8A61 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
09:26:12.0882 0x0b38 scfilter - ok
09:26:12.0960 0x0b38 [ EC56B171F85C7E855E7B0588AC503EEA, EDBC0E52DF00D73356F4B886D6CA2397B571A9D2245FEDC347A6D52A5467EA5D ] Schedule C:\Windows\system32\schedsvc.dll
09:26:13.0023 0x0b38 Schedule - ok
09:26:13.0054 0x0b38 [ 312E2F82AF11E79906898AC3E3D58A1F, F6CB7D8B204B94F749D5DBEFD552150AAB16A34D629F87F73823A7504465F106 ] SCPolicySvc C:\Windows\System32\certprop.dll
09:26:13.0085 0x0b38 SCPolicySvc - ok
09:26:13.0101 0x0b38 [ 54E47AD086782D3AE9417C155CDCEB9B, 5143DC43B89F9143A56505FA20841AF15E7785A87F88195B08B3E09B87472A07 ] sdbus C:\Windows\system32\DRIVERS\sdbus.sys
09:26:13.0147 0x0b38 sdbus - ok
09:26:13.0163 0x0b38 [ 765A27C3279CE11D14CB9E4F5869FCA5, B6C2EFFBA938828FEF7FE992A4C88B3154D053763C38762DCE13252FE9571FA1 ] SDRSVC C:\Windows\System32\SDRSVC.dll
09:26:13.0194 0x0b38 SDRSVC - ok
09:26:13.0225 0x0b38 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
09:26:13.0272 0x0b38 secdrv - ok
09:26:13.0288 0x0b38 [ 463B386EBC70F98DA5DFF85F7E654346, 8E27B18B04AF587719D1DAE75A042DB998E06CAE112BD68626EF046036D2DCDC ] seclogon C:\Windows\system32\seclogon.dll
09:26:13.0319 0x0b38 seclogon - ok
09:26:13.0350 0x0b38 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll
09:26:13.0381 0x0b38 SENS - ok
09:26:13.0428 0x0b38 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
09:26:13.0444 0x0b38 SensrSvc - ok
09:26:13.0459 0x0b38 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
09:26:13.0475 0x0b38 Serenum - ok
09:26:13.0491 0x0b38 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
09:26:13.0506 0x0b38 Serial - ok
09:26:13.0506 0x0b38 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
09:26:13.0522 0x0b38 sermouse - ok
09:26:13.0553 0x0b38 [ C3BC61CE47FF6F4E88AB8A3B429A36AF, 6CA53AD0CB7215BAE3467EC1FD490E3A18504BD6CD4F0FABF9BD37516AB9DFE0 ] SessionEnv C:\Windows\system32\sessenv.dll
09:26:13.0584 0x0b38 SessionEnv - ok
09:26:13.0584 0x0b38 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys
09:26:13.0615 0x0b38 sffdisk - ok
09:26:13.0615 0x0b38 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys
09:26:13.0631 0x0b38 sffp_mmc - ok
09:26:13.0647 0x0b38 [ 5588B8C6193EB1522490C122EB94DFFA, 53AE3597D3305F2839130A2F3567F1690564B922035503EB418B9DE1586AEA43 ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys
09:26:13.0662 0x0b38 sffp_sd - ok
09:26:13.0662 0x0b38 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
09:26:13.0678 0x0b38 sfloppy - ok
09:26:13.0709 0x0b38 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
09:26:13.0756 0x0b38 SharedAccess - ok
09:26:13.0771 0x0b38 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF, 1C1D17301A4D37DBF906955CCABD2A3FDA47AFB24CBA978CF851123762249848 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
09:26:13.0803 0x0b38 ShellHWDetection - ok
09:26:13.0818 0x0b38 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
09:26:13.0834 0x0b38 SiSRaid2 - ok
09:26:13.0834 0x0b38 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
09:26:13.0849 0x0b38 SiSRaid4 - ok
09:26:13.0849 0x0b38 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
09:26:13.0896 0x0b38 Smb - ok
09:26:13.0896 0x0b38 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
09:26:13.0912 0x0b38 SNMPTRAP - ok
09:26:13.0927 0x0b38 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
09:26:13.0943 0x0b38 spldr - ok
09:26:13.0974 0x0b38 [ 89E8550C5862999FCF482EA562B0E98E, 11BC94FD879DCD22E80DB8FA73CEBD0F072917C546AD9C8B92CCFBF4E0B83056 ] Spooler C:\Windows\System32\spoolsv.exe
09:26:14.0005 0x0b38 Spooler - ok
09:26:14.0161 0x0b38 [ 913D843498553A1BC8F8DBAD6358E49F, F8B931FDABF669D642CBDCD2FF31E07F8A5E2D5F72E11D4A8FF219CCFB5825E9 ] sppsvc C:\Windows\system32\sppsvc.exe
09:26:14.0286 0x0b38 sppsvc - ok
09:26:14.0302 0x0b38 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
09:26:14.0349 0x0b38 sppuinotify - ok
09:26:14.0380 0x0b38 [ EC8F67289105BF270498095F14963464, 454031C8AE06511DD13DBAA613B983516AF937590FB2B8C6ADC273D018D30858 ] srv C:\Windows\system32\DRIVERS\srv.sys
09:26:14.0427 0x0b38 srv - ok
09:26:14.0442 0x0b38 [ F773D2ED090B7BAA1C1A034F3CA476C8, C8DD8BE37CFEA0DB1B7FC94946381B60553848002E6170E0BEC3FEE40295DF1F ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
09:26:14.0505 0x0b38 srv2 - ok
09:26:14.0536 0x0b38 [ 0C4540311E11664B245A263E1154CEF8, 63376322BFFAFF2F166AF3FDD3F1A346C21FAE21F406F659F8630779D1D6525D ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS
09:26:14.0551 0x0b38 SrvHsfHDA - ok
09:26:14.0598 0x0b38 [ 02071D207A9858FBE3A48CBFD59C4A04, FEA4DEBAEC3465E0C7C1E8B721805922F6BBCB96A60A193B11688F4252F4B89E ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS
09:26:14.0661 0x0b38 SrvHsfV92 - ok
09:26:14.0692 0x0b38 [ 18E40C245DBFAF36FD0134A7EF2DF396, 0138A68958112101A5D3BD94114F320CE80B0C9A93E009AC78DE7415FCCC7DE7 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
09:26:14.0723 0x0b38 SrvHsfWinac - ok
09:26:14.0754 0x0b38 [ 26E84D3649019C3244622E654DFCD75B, 49BD7345AF744298698629E0D7C0C373AB2F75F542281268BCF91A6D2B278AA8 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
09:26:14.0801 0x0b38 srvnet - ok
09:26:14.0832 0x0b38 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
09:26:14.0879 0x0b38 SSDPSRV - ok
09:26:14.0895 0x0b38 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
09:26:14.0926 0x0b38 SstpSvc - ok
09:26:15.0066 0x0b38 [ 810199DCC3BDC38304D7D649992EA7BC, B72D88A9F03D2BE65D45691AB643D11EC306E654AEB74C6610DC7331FE440110 ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\STacSV64.exe
09:26:15.0113 0x0b38 STacSV - ok
09:26:15.0113 0x0b38 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
09:26:15.0129 0x0b38 stexstor - ok
09:26:15.0175 0x0b38 [ ED1722F43CE61409EF68340402D6267D, 2FC14738C8F268DE4539064DE6D8954B6C9CD4ADE1139E2C74BD3486BF9A0861 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
09:26:15.0191 0x0b38 STHDA - ok
09:26:15.0253 0x0b38 [ 52D0E33B681BD0F33FDC08812FEE4F7D, BBEBC0773402F6697D2F14F63E5E4FDC2180466E7FDBD306E408535B10160249 ] stisvc C:\Windows\System32\wiaservc.dll
09:26:15.0285 0x0b38 stisvc - ok
09:26:15.0347 0x0b38 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
09:26:15.0363 0x0b38 swenum - ok
09:26:15.0409 0x0b38 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
09:26:15.0472 0x0b38 swprv - ok
09:26:15.0519 0x0b38 [ 929C9FA0B18AD2EBC8340591C4BF00FF, 710704028A069EEC918F67D9776AF1367005E3EF8536F2516CB5A12163AFDE8E ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
09:26:15.0519 0x0b38 SynTP - ok
09:26:15.0628 0x0b38 [ 3C1284516A62078FB68F768DE4F1A7BE, 67ECD462335EF88773E4BAEAB230A68EC92A25F8CD8F115873F669205AE6A1A9 ] SysMain C:\Windows\system32\sysmain.dll
09:26:15.0690 0x0b38 SysMain - ok
09:26:15.0768 0x0b38 [ 238935C3CF2854886DC7CBB2A0E2CC66, BBF7A70BF218A544CC1A6FB81F75EAD29D418794162936BE197D6D61FE0DB1C4 ] TabletInputService C:\Windows\System32\TabSvc.dll
09:26:15.0799 0x0b38 TabletInputService - ok
09:26:15.0846 0x0b38 [ 884264AC597B690C5707C89723BB8E7B, 9BF209A4128019421F7EC4AFF71103C5F411DB6CFB32AAC1633E789AD7A30708 ] TapiSrv C:\Windows\System32\tapisrv.dll
09:26:15.0924 0x0b38 TapiSrv - ok
09:26:15.0940 0x0b38 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
09:26:15.0971 0x0b38 TBS - ok
09:26:16.0080 0x0b38 [ 912107716BAB424C7870E8E6AF5E07E1, BE6B1C9468B882347A908A753DC7185C3371A78E81DEE5BEC3DD6E2B81FD4FB9 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
09:26:16.0143 0x0b38 Tcpip - ok
09:26:16.0205 0x0b38 [ 912107716BAB424C7870E8E6AF5E07E1, BE6B1C9468B882347A908A753DC7185C3371A78E81DEE5BEC3DD6E2B81FD4FB9 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
09:26:16.0252 0x0b38 TCPIP6 - ok
09:26:16.0267 0x0b38 [ 76D078AF6F587B162D50210F761EB9ED, 3813171036B4036306CADC29F877ADAE44B241DDF65B3699C352B7CDA9EC68C9 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
09:26:16.0299 0x0b38 tcpipreg - ok
09:26:16.0314 0x0b38 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
09:26:16.0361 0x0b38 TDPIPE - ok
09:26:16.0361 0x0b38 [ E4245BDA3190A582D55ED09E137401A9, F59C983882997D68CC7B1B2080AEE9EBE2AE90D478F877559BD2AAA97158A116 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
09:26:16.0392 0x0b38 TDTCP - ok
09:26:16.0408 0x0b38 [ 079125C4B17B01FCAEEBCE0BCB290C0F, B2DF1F2317EF5DCF0A89327332E9F2770ED604005B3138C095FF01AA63B91437 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
09:26:16.0439 0x0b38 tdx - ok
09:26:16.0455 0x0b38 [ C448651339196C0E869A355171875522, C12441CF21D7D47804952B968689D78E3BA0323A90C4C811B54A6B2E6260BAD4 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
09:26:16.0455 0x0b38 TermDD - ok
09:26:16.0501 0x0b38 [ 0F05EC2887BFE197AD82A13287D2F404, 78C8A8FE9B1101430CA79875DA34413C35B6D7A5EE1932E454C50731335437A6 ] TermService C:\Windows\System32\termsrv.dll
09:26:16.0564 0x0b38 TermService - ok
09:26:16.0579 0x0b38 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
09:26:16.0595 0x0b38 Themes - ok
09:26:16.0611 0x0b38 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
09:26:16.0657 0x0b38 THREADORDER - ok
09:26:16.0657 0x0b38 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
09:26:16.0704 0x0b38 TrkWks - ok
09:26:16.0735 0x0b38 [ 840F7FB849F5887A49BA18C13B2DA920, A59C40A090E03C0136A865FC54508BA938E7B467C8198BC009FE263E6C275781 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
09:26:16.0751 0x0b38 TrustedInstaller - ok
09:26:16.0767 0x0b38 [ 61B96C26131E37B24E93327A0BD1FB95, 7C551B6FD0447258BC3FDED72D8D41A0E8B731562170C264295592D45F85D9FF ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
09:26:16.0813 0x0b38 tssecsrv - ok
09:26:16.0813 0x0b38 [ 3836171A2CDF3AF8EF10856DB9835A70, 74CD0A21B4E5B47E8D762CC28282CA8D512D424EC591D90099B9F8D034AA2FC2 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
09:26:16.0860 0x0b38 tunnel - ok
09:26:16.0860 0x0b38 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
09:26:16.0876 0x0b38 uagp35 - ok
09:26:16.0891 0x0b38 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB, DBAEA010F11A5EFD961B1841308EA3F220A9FFB01F364BA9B8F72200DA2BBCD8 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
09:26:16.0954 0x0b38 udfs - ok
09:26:16.0969 0x0b38 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
09:26:16.0985 0x0b38 UI0Detect - ok
09:26:16.0985 0x0b38 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys
09:26:17.0001 0x0b38 uliagpkx - ok
09:26:17.0001 0x0b38 [ EAB6C35E62B1B0DB0D1B48B671D3A117, E65034BF757AE4D21F69D7A91A7990E326A29A0CE9F871FD704B5E6CCC821FF0 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
09:26:17.0016 0x0b38 umbus - ok
09:26:17.0016 0x0b38 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
09:26:17.0032 0x0b38 UmPass - ok
09:26:17.0047 0x0b38 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
09:26:17.0094 0x0b38 upnphost - ok
09:26:17.0110 0x0b38 [ B26AFB54A534D634523C4FB66765B026, A219C9AE32D040BEA4DD69C2C826B1C52BACE26BEBFEE799BD56DFD442C5E0D8 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
09:26:17.0125 0x0b38 usbccgp - ok
09:26:17.0141 0x0b38 [ AF0892A803FDDA7492F595368E3B68E7, F263346DEB4D742EB436CF578F187AC8521D84CED52E98475E6198EC52244F07 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys
09:26:17.0157 0x0b38 usbcir - ok
09:26:17.0172 0x0b38 [ 2EA4AFF7BE7EB4632E3AA8595B0803B5, CBECE7CEC0EFA4B283C63E9B6A270D595F5F3D006306DA5E5121BBFDCAB16376 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
09:26:17.0172 0x0b38 usbehci - ok
09:26:17.0203 0x0b38 [ 4C9042B8DF86C1E8E6240C218B99B39B, D286633311C047B9C4FB1AA89D7B02B9F943FDDCE473255DC8E14DD07CC9B292 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
09:26:17.0219 0x0b38 usbhub - ok
09:26:17.0235 0x0b38 [ 58E546BBAF87664FC57E0F6081E4F609, 1DD99D57369A0069654432AB5325AFD8F7D422D531E053EA05FF664BA6BDAEF9 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys
09:26:17.0235 0x0b38 usbohci - ok
09:26:17.0250 0x0b38 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
09:26:17.0266 0x0b38 usbprint - ok
09:26:17.0281 0x0b38 [ 080D3820DA6C046BE82FC8B45A893E83, EF4829A2D5B8D47AA7E06093EC85244042ED1CCFF43CC80DC44EF018B434197A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:26:17.0281 0x0b38 USBSTOR - ok
09:26:17.0297 0x0b38 [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
09:26:17.0313 0x0b38 usbuhci - ok
09:26:17.0313 0x0b38 [ D501E12614B00A3252073101D6A1A74B, DFA3A83978125B3CE45C71DD9069E8A7938366D0F4B4B2401CDD07251253FA8C ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
09:26:17.0328 0x0b38 usbvideo - ok
09:26:17.0359 0x0b38 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
09:26:17.0391 0x0b38 UxSms - ok
09:26:17.0406 0x0b38 [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] VaultSvc C:\Windows\system32\lsass.exe
09:26:17.0422 0x0b38 VaultSvc - ok
09:26:17.0437 0x0b38 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys
09:26:17.0453 0x0b38 vdrvroot - ok
09:26:17.0469 0x0b38 [ 44D73E0BBC1D3C8981304BA15135C2F2, 2849387BBCFB0189AF5604D2F7A631BD5D6BBB2CA73AF6E870069AF382A74DED ] vds C:\Windows\System32\vds.exe
09:26:17.0500 0x0b38 vds - ok
09:26:17.0515 0x0b38 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
09:26:17.0515 0x0b38 vga - ok
09:26:17.0531 0x0b38 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
09:26:17.0578 0x0b38 VgaSave - ok
09:26:17.0593 0x0b38 [ C82E748660F62A242B2DFAC1442F22A4, 24AD6CAA918C5AB6F461D88825885C8637C224001AAD7A80BDC240368CDB0B7E ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys
09:26:17.0593 0x0b38 vhdmp - ok
09:26:17.0609 0x0b38 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\DRIVERS\viaide.sys
09:26:17.0609 0x0b38 viaide - ok
09:26:17.0625 0x0b38 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3, 91F2B935E1E88C5542650F7D679A75D0562F4A5812179D1EC146D4B6351361E2 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys
09:26:17.0625 0x0b38 volmgr - ok
09:26:17.0656 0x0b38 [ 99B0CBB569CA79ACAED8C91461D765FB, 5BE394A39A941DE2AA1212E66B7068F90D423FA816238657CB9B2DA8BBE69B9B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
09:26:17.0671 0x0b38 volmgrx - ok
09:26:17.0687 0x0b38 [ 58F82EED8CA24B461441F9C3E4F0BF5C, 40B8C9C9D1BEDD1507138273A3C000C753C8765E1873F2170DE63555A042928C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys
09:26:17.0703 0x0b38 volsnap - ok
09:26:17.0718 0x0b38 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
09:26:17.0734 0x0b38 vsmraid - ok
09:26:17.0796 0x0b38 [ 787898BF9FB6D7BD87A36E2D95C899BA, A6C0C7402B1A198E7B3D6D7D283FCB5815AC429DA68FC9B54C67707F3233CCB5 ] VSS C:\Windows\system32\vssvc.exe
09:26:17.0859 0x0b38 VSS - ok
09:26:17.0874 0x0b38 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
09:26:17.0890 0x0b38 vwifibus - ok
09:26:17.0905 0x0b38 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
09:26:17.0937 0x0b38 vwififlt - ok
09:26:17.0952 0x0b38 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
09:26:17.0999 0x0b38 W32Time - ok
09:26:17.0999 0x0b38 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
09:26:18.0015 0x0b38 WacomPen - ok
09:26:18.0015 0x0b38 [ 47CA49400643EFFD3F1C9A27E1D69324, 7EFD3405282264F7987172B226882FCDD223F771959B9CEBEBF9ECEA317D85B0 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
09:26:18.0061 0x0b38 WANARP - ok
09:26:18.0061 0x0b38 [ 47CA49400643EFFD3F1C9A27E1D69324, 7EFD3405282264F7987172B226882FCDD223F771959B9CEBEBF9ECEA317D85B0 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
09:26:18.0093 0x0b38 Wanarpv6 - ok
09:26:18.0171 0x0b38 [ 5AB1BB85BD8B5089CC5D64200DEDAE68, 28777D4F3CD07C8E3465B6DA0FCA994E0B93071A3A0D4D1D64C1DF633DD1C64F ] wbengine C:\Windows\system32\wbengine.exe
09:26:18.0233 0x0b38 wbengine - ok
09:26:18.0264 0x0b38 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
09:26:18.0280 0x0b38 WbioSrvc - ok
09:26:18.0295 0x0b38 [ 8321C2CA3B62B61B293CDA3451984468, 856A079C2CCC75D633EA23E410D7F3ECDF368EAAAFF634CB82DDA545FD3A2F9C ] wcncsvc C:\Windows\System32\wcncsvc.dll
09:26:18.0327 0x0b38 wcncsvc - ok
09:26:18.0327 0x0b38 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
09:26:18.0358 0x0b38 WcsPlugInService - ok
09:26:18.0358 0x0b38 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
09:26:18.0373 0x0b38 Wd - ok
09:26:18.0405 0x0b38 [ 441BD2D7B4F98134C3A4F9FA570FD250, FF20815273014C5A27C2B75E2C70FE674809293627056199F502DFDF4CECFCA1 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
09:26:18.0436 0x0b38 Wdf01000 - ok
09:26:18.0451 0x0b38 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
09:26:18.0467 0x0b38 WdiServiceHost - ok
09:26:18.0483 0x0b38 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll
09:26:18.0498 0x0b38 WdiSystemHost - ok
09:26:18.0529 0x0b38 [ 8A438CBB8C032A0C798B0C642FFBE572, 3200B9B6A7B87C1C47295FA416C99DE1FBB2DBBA3DA78D5CC88C26DCC4189D45 ] WebClient C:\Windows\System32\webclnt.dll
09:26:18.0561 0x0b38 WebClient - ok
09:26:18.0576 0x0b38 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
09:26:18.0623 0x0b38 Wecsvc - ok
09:26:18.0639 0x0b38 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
09:26:18.0685 0x0b38 wercplsupport - ok
09:26:18.0701 0x0b38 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
09:26:18.0732 0x0b38 WerSvc - ok
09:26:18.0748 0x0b38 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
09:26:18.0779 0x0b38 WfpLwf - ok
09:26:18.0779 0x0b38 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
09:26:18.0795 0x0b38 WIMMount - ok
09:26:18.0810 0x0b38 WinDefend - ok
09:26:18.0810 0x0b38 WinHttpAutoProxySvc - ok
09:26:18.0904 0x0b38 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
09:26:18.0982 0x0b38 Winmgmt - ok
09:26:19.0075 0x0b38 [ 41FBB751936B387F9179E7F03A74FE29, 7A73D887BEC19DFC485ED42B4E6ABEBF824555139B81EA30731A00773E707464 ] WinRM C:\Windows\system32\WsmSvc.dll
09:26:19.0185 0x0b38 WinRM - ok
09:26:19.0247 0x0b38 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
09:26:19.0278 0x0b38 Wlansvc - ok
09:26:19.0294 0x0b38 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
09:26:19.0309 0x0b38 WmiAcpi - ok
09:26:19.0341 0x0b38 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
09:26:19.0356 0x0b38 wmiApSrv - ok
09:26:19.0387 0x0b38 WMPNetworkSvc - ok
09:26:19.0403 0x0b38 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
09:26:19.0450 0x0b38 WPCSvc - ok
09:26:19.0465 0x0b38 [ 2E57DDF2880A7E52E76F41C7E96D327B, D24E19B6091C197D77D71BC044CE2E5A57BE0A2F00D1BB0732E380A398230E63 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
09:26:19.0481 0x0b38 WPDBusEnum - ok
09:26:19.0497 0x0b38 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
09:26:19.0528 0x0b38 ws2ifsl - ok
09:26:19.0543 0x0b38 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll
09:26:19.0575 0x0b38 wscsvc - ok
09:26:19.0575 0x0b38 WSearch - ok
09:26:19.0668 0x0b38 [ 38340204A2D0228F1E87740FC5E554A7, 57181ED34E73DD17B590803C770A086C57754F229C6F587637B8FBB5D6519603 ] wuauserv C:\Windows\system32\wuaueng.dll
09:26:19.0762 0x0b38 wuauserv - ok
09:26:19.0855 0x0b38 [ 7CADC74271DD6461C452C271B30BD378, D58C2094C36FC665C03A6A269EED80DC71F330C3DCF40A27A3C8F56AB7A96861 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
09:26:19.0918 0x0b38 WudfPf - ok
09:26:19.0933 0x0b38 [ B551D6637AA0E132C18AC6E504F7B79B, FA6495533A14E01ABB0F6689AB7503B1B439D3ADA7457DFCB7D81714A9817327 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
09:26:19.0980 0x0b38 wudfsvc - ok
09:26:20.0011 0x0b38 [ 9A3452B3C2A46C073166C5CF49FAD1AE, D6F95F51D8E37BA4CF403965EC08CCFEEA9EEFDBFC7752432EAEC19925BDA115 ] WwanSvc C:\Windows\System32\wwansvc.dll
09:26:20.0043 0x0b38 WwanSvc - ok
09:26:20.0074 0x0b38 [ B3EEACF62445E24FBB2CD4B0FB4DB026, 2E5B6220094C47754233EDA59E6514CE47AC6C6879F367C72B2C02330EABE8E0 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys
09:26:20.0089 0x0b38 yukonw7 - ok
09:26:20.0105 0x0b38 ================ Scan global ===============================
09:26:20.0136 0x0b38 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
09:26:20.0152 0x0b38 [ 457B44AB6D502E55F64A867D4F35C76C, 95FEC45E28DF394E778DA37719F7D579920531AD568E1C290B7F42CB03BEAA2C ] C:\Windows\system32\winsrv.dll
09:26:20.0167 0x0b38 [ 457B44AB6D502E55F64A867D4F35C76C, 95FEC45E28DF394E778DA37719F7D579920531AD568E1C290B7F42CB03BEAA2C ] C:\Windows\system32\winsrv.dll
09:26:20.0199 0x0b38 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
09:26:20.0230 0x0b38 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
09:26:20.0245 0x0b38 [ Global ] - ok
09:26:20.0245 0x0b38 ================ Scan MBR ==================================
09:26:20.0261 0x0b38 [ D8E1D44D38D41E802CF7F861A14C4048 ] \Device\Harddisk0\DR0
09:26:20.0589 0x0b38 \Device\Harddisk0\DR0 - ok
09:26:20.0589 0x0b38 ================ Scan VBR ==================================
09:26:20.0589 0x0b38 [ 3A7D3C08E97A13221D57D7BBF37E3C0E ] \Device\Harddisk0\DR0\Partition1
09:26:20.0589 0x0b38 \Device\Harddisk0\DR0\Partition1 - ok
09:26:20.0589 0x0b38 [ 54DE0359E3675E886A3F61AFFE10C58E ] \Device\Harddisk0\DR0\Partition2
09:26:20.0589 0x0b38 \Device\Harddisk0\DR0\Partition2 - ok
09:26:20.0604 0x0b38 [ D3DB1C6495BAE9A086BCA48ABE647CA2 ] \Device\Harddisk0\DR0\Partition3
09:26:20.0604 0x0b38 \Device\Harddisk0\DR0\Partition3 - ok
09:26:20.0604 0x0b38 ================ Scan active images ========================
09:26:20.0604 0x0b38 [ 3E588B60EC061686BA05D33574A344C6, 19D2D863F95CCC4493A2328B6BEB04248B6A80F957532E58C1D1D868C19FDCCB ] C:\Windows\System32\drivers\crashdmp.sys
09:26:20.0604 0x0b38 C:\Windows\System32\drivers\crashdmp.sys - ok
09:26:20.0620 0x0b38 [ 839B5FE3D48E9F35B22C21A3D5103F6C, A9CEA695E43092B72B0E988063E00A7C0BCE90095344E9A2F380218482BCE77F ] C:\Windows\System32\drivers\Dumpata.sys
09:26:20.0620 0x0b38 C:\Windows\System32\drivers\Dumpata.sys - ok
09:26:20.0620 0x0b38 [ 5C37497276E3B3A5488B23A326A754B7, 9982FCDAFB963868EB93A4DEF811A3167488EB5246BAC3F4AE960506FDF63967 ] C:\Windows\System32\drivers\msahci.sys
09:26:20.0620 0x0b38 C:\Windows\System32\drivers\msahci.sys - ok
09:26:20.0635 0x0b38 [ 814DB88F2641691575A455CF25354098, 79C50F0CD72612733217A0316BEFEA0B6D819C3159D9452EAB89AC26A18A0F89 ] C:\Windows\System32\drivers\dumpfve.sys
09:26:20.0635 0x0b38 C:\Windows\System32\drivers\dumpfve.sys - ok
09:26:20.0635 0x0b38 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] C:\Windows\System32\drivers\beep.sys
09:26:20.0635 0x0b38 C:\Windows\System32\drivers\beep.sys - ok
09:26:20.0635 0x0b38 [ 83D2D75E1EFB81B3450C18131443F7DB, F2C686C980D818E797818E75B808E1E0B51B2045840A4BFC32D860B7DB4DFA22 ] C:\Windows\System32\drivers\cdrom.sys
09:26:20.0635 0x0b38 C:\Windows\System32\drivers\cdrom.sys - ok
09:26:20.0651 0x0b38 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] C:\Windows\System32\drivers\null.sys
09:26:20.0651 0x0b38 C:\Windows\System32\drivers\null.sys - ok
09:26:20.0651 0x0b38 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] C:\Windows\System32\drivers\vga.sys
09:26:20.0651 0x0b38 C:\Windows\System32\drivers\vga.sys - ok
09:26:20.0651 0x0b38 [ E7353D59C9842BC7299FAEB7E7E09340, C37ED1025E07BAC2F535DCFED6C6C509515D95722EADE5AF94F1FC5D8B1DC783 ] C:\Windows\System32\drivers\videoprt.sys
09:26:20.0651 0x0b38 C:\Windows\System32\drivers\videoprt.sys - ok
09:26:20.0667 0x0b38 [ FC438D1430B28618E2D0C7C332A710AD, 873957B202E454E2C8F625E5799F278CAC16EC5EEAEE2C33E2FE5D1FF0408CB2 ] C:\Windows\System32\drivers\watchdog.sys
09:26:20.0667 0x0b38 C:\Windows\System32\drivers\watchdog.sys - ok
09:26:20.0667 0x0b38 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] C:\Windows\System32\drivers\msfs.sys
09:26:20.0667 0x0b38 C:\Windows\System32\drivers\msfs.sys - ok
09:26:20.0667 0x0b38 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] C:\Windows\System32\drivers\npfs.sys
09:26:20.0667 0x0b38 C:\Windows\System32\drivers\npfs.sys - ok
09:26:20.0682 0x0b38 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] C:\Windows\System32\drivers\RDPCDD.sys
09:26:20.0682 0x0b38 C:\Windows\System32\drivers\RDPCDD.sys - ok
09:26:20.0682 0x0b38 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] C:\Windows\System32\drivers\RDPENCDD.sys
09:26:20.0682 0x0b38 C:\Windows\System32\drivers\RDPENCDD.sys - ok
09:26:20.0682 0x0b38 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] C:\Windows\System32\drivers\RDPREFMP.sys
09:26:20.0682 0x0b38 C:\Windows\System32\drivers\RDPREFMP.sys - ok
09:26:20.0698 0x0b38 [ 0CA6FE26ACC7FFEE1BD0463F40835F32, 22D29762CED22BBDA3D89D9AFFDEA2F3DAF91524D7A7524BE45578F17781F376 ] C:\Windows\System32\drivers\tdi.sys
09:26:20.0698 0x0b38 C:\Windows\System32\drivers\tdi.sys - ok
09:26:20.0698 0x0b38 [ 079125C4B17B01FCAEEBCE0BCB290C0F, B2DF1F2317EF5DCF0A89327332E9F2770ED604005B3138C095FF01AA63B91437 ] C:\Windows\System32\drivers\tdx.sys
09:26:20.0698 0x0b38 C:\Windows\System32\drivers\tdx.sys - ok
09:26:20.0698 0x0b38 [ B9384E03479D2506BC924C16A3DB87BC, AB5FD2BC1F005E7D664F5DE3D5CB54499024A83B716DD52C56582DB7EFB4F01B ] C:\Windows\System32\drivers\afd.sys
09:26:20.0698 0x0b38 C:\Windows\System32\drivers\afd.sys - ok
09:26:20.0713 0x0b38 [ 9162B273A44AB9DCE5B44362731D062A, 5A1BA6DBFEBB2618DC9D4CC55FA071C170A5D22FFB24CE62DD5B3210D8B45F39 ] C:\Windows\System32\drivers\netbt.sys
09:26:20.0713 0x0b38 C:\Windows\System32\drivers\netbt.sys - ok
09:26:20.0713 0x0b38 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] C:\Windows\System32\drivers\wfplwf.sys
09:26:20.0713 0x0b38 C:\Windows\System32\drivers\wfplwf.sys - ok
09:26:20.0713 0x0b38 [ EE992183BD8EAEFD9973F352E587A299, 6B28930FAA0A54FAADDAF2231553D7F5D45C7227454C6D49A86DFC9EF6BC9043 ] C:\Windows\System32\drivers\pacer.sys
09:26:20.0713 0x0b38 C:\Windows\System32\drivers\pacer.sys - ok
09:26:20.0729 0x0b38 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] C:\Windows\System32\drivers\vwififlt.sys
09:26:20.0729 0x0b38 C:\Windows\System32\drivers\vwififlt.sys - ok
09:26:20.0729 0x0b38 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] C:\Windows\System32\drivers\netbios.sys
09:26:20.0729 0x0b38 C:\Windows\System32\drivers\netbios.sys - ok
09:26:20.0729 0x0b38 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] C:\Windows\System32\drivers\serial.sys
09:26:20.0729 0x0b38 C:\Windows\System32\drivers\serial.sys - ok
09:26:20.0745 0x0b38 [ 47CA49400643EFFD3F1C9A27E1D69324, 7EFD3405282264F7987172B226882FCDD223F771959B9CEBEBF9ECEA317D85B0 ] C:\Windows\System32\drivers\wanarp.sys
09:26:20.0745 0x0b38 C:\Windows\System32\drivers\wanarp.sys - ok
09:26:20.0745 0x0b38 [ C448651339196C0E869A355171875522, C12441CF21D7D47804952B968689D78E3BA0323A90C4C811B54A6B2E6260BAD4 ] C:\Windows\System32\drivers\termdd.sys
09:26:20.0745 0x0b38 C:\Windows\System32\drivers\termdd.sys - ok
09:26:20.0745 0x0b38 [ 3BAC8142102C15D59A87757C1D41DCE5, C0C2C6887EA5A439E69221196348382ACE3E1942C9C6E0A970E153890F71724C ] C:\Windows\System32\drivers\rdbss.sys
09:26:20.0745 0x0b38 C:\Windows\System32\drivers\rdbss.sys - ok
09:26:20.0760 0x0b38 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] C:\Windows\System32\drivers\nsiproxy.sys
09:26:20.0760 0x0b38 C:\Windows\System32\drivers\nsiproxy.sys - ok
09:26:20.0760 0x0b38 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] C:\Windows\System32\drivers\mssmbios.sys
09:26:20.0760 0x0b38 C:\Windows\System32\drivers\mssmbios.sys - ok
09:26:20.0760 0x0b38 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] C:\Windows\System32\drivers\discache.sys
09:26:20.0760 0x0b38 C:\Windows\System32\drivers\discache.sys - ok
09:26:20.0776 0x0b38 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] C:\Windows\System32\drivers\blbdrive.sys
09:26:20.0776 0x0b38 C:\Windows\System32\drivers\blbdrive.sys - ok
09:26:20.0776 0x0b38 [ 3F1DC527070ACB87E40AFE46EF6DA749, 5CB9CB94854AF06BEA02AF3E0562B8ECF72B2B23ED657A3F5E17CD3552F3EF84 ] C:\Windows\System32\drivers\dfsc.sys
09:26:20.0776 0x0b38 C:\Windows\System32\drivers\dfsc.sys - ok
09:26:20.0776 0x0b38 [ 3836171A2CDF3AF8EF10856DB9835A70, 74CD0A21B4E5B47E8D762CC28282CA8D512D424EC591D90099B9F8D034AA2FC2 ] C:\Windows\System32\drivers\tunnel.sys
09:26:20.0776 0x0b38 C:\Windows\System32\drivers\tunnel.sys - ok
09:26:20.0791 0x0b38 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] C:\Windows\System32\drivers\intelppm.sys
09:26:20.0791 0x0b38 C:\Windows\System32\drivers\intelppm.sys - ok
09:26:20.0791 0x0b38 [ 1911A3356FA3F77CCC825CCBAC038C2A, 6ED135B792C81D78B33A57F0F4770DB6105C9ED3E2193629CB3EC38BFD5B7E1B ] C:\Windows\System32\smss.exe
09:26:20.0791 0x0b38 C:\Windows\System32\smss.exe - ok
09:26:20.0791 0x0b38 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] C:\Windows\System32\drivers\CmBatt.sys
09:26:20.0791 0x0b38 C:\Windows\System32\drivers\CmBatt.sys - ok
09:26:20.0807 0x0b38 [ BC8E5D3038E2CA27AFE8B692907BFD9A, 9B0189298D69DED3220574F6C57C0DEB39EF081E0DA9D7891820F2F834561955 ] C:\Windows\System32\ntdll.dll
09:26:20.0807 0x0b38 C:\Windows\System32\ntdll.dll - ok
09:26:20.0807 0x0b38 [ 8B7F8E882A649D81CEA1EDE9BBB68FFF, 3BDA2C1F922EC672353CB2F296720FC75F3D573A6FCF879B220EB793611CF82E ] C:\Windows\System32\autochk.exe
09:26:20.0807 0x0b38 C:\Windows\System32\autochk.exe - ok
09:26:20.0807 0x0b38 [ C5758BF1DFD762A5B17041FF061B7750, BA732E670536C73523DA0880485E5028C682FBEAF048F564EB626DA61364CAAD ] C:\Windows\System32\drivers\atikmdag.sys
09:26:20.0807 0x0b38 C:\Windows\System32\drivers\atikmdag.sys - ok
09:26:20.0823 0x0b38 [ 7CB7D2B73813CE05C7BC0F5F95D27CEC, F80AD7E946B8C8C27A0EB8A99B3A61C3F09E5442372D64EB4886D86B8D0AFCFD ] C:\Windows\System32\drivers\dxgkrnl.sys
09:26:20.0823 0x0b38 C:\Windows\System32\drivers\dxgkrnl.sys - ok
09:26:20.0823 0x0b38 [ DDB7AD1BA01005521010DB3E30ADC972, F1B7376F1A348D7073AB3E7C4629F13E10AAF2B37E68F01D145C8C01CA1BFDCB ] C:\Windows\System32\drivers\dxgmms1.sys
09:26:20.0823 0x0b38 C:\Windows\System32\drivers\dxgmms1.sys - ok
09:26:20.0838 0x0b38 [ 0A49913402747A0B67DE940FB42CBDBB, 61A45DBDCEB4A2D5C3C28F6BC8C5ADC51D0240A7553DF44BCC4355FC06F72B83 ] C:\Windows\System32\drivers\hdaudbus.sys
09:26:20.0838 0x0b38 C:\Windows\System32\drivers\hdaudbus.sys - ok
09:26:20.0838 0x0b38 [ A91291136D1E70966645252F6B828711, 4BED45CBE78748A81F1EAAE8C7446207414EF1FC79F13E24EF426531AD8BD836 ] C:\Windows\System32\drivers\usbport.sys
09:26:20.0838 0x0b38 C:\Windows\System32\drivers\usbport.sys - ok
09:26:20.0838 0x0b38 [ 2EA4AFF7BE7EB4632E3AA8595B0803B5, CBECE7CEC0EFA4B283C63E9B6A270D595F5F3D006306DA5E5121BBFDCAB16376 ] C:\Windows\System32\drivers\usbehci.sys
09:26:20.0838 0x0b38 C:\Windows\System32\drivers\usbehci.sys - ok
09:26:20.0854 0x0b38 [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] C:\Windows\System32\drivers\usbuhci.sys
09:26:20.0854 0x0b38 C:\Windows\System32\drivers\usbuhci.sys - ok
09:26:20.0854 0x0b38 [ F99C7AE4BB91BD1506B3572F944307BB, 66513B353D44F5F057BFF6E5DA0607F0DBF702783A2EAE95E8CE69946E78B8D7 ] C:\Windows\System32\drivers\BCMWL664.SYS
09:26:20.0854 0x0b38 C:\Windows\System32\drivers\BCMWL664.SYS - ok
09:26:20.0854 0x0b38 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] C:\Windows\System32\drivers\vwifibus.sys
09:26:20.0854 0x0b38 C:\Windows\System32\drivers\vwifibus.sys - ok
09:26:20.0869 0x0b38 [ 91296F0B2653281B2F11E0FCE56AA427, 242B6049480F62673D79E822EC7AD83DBFA1D203F2519E765DD36ECF156A962A ] C:\Windows\System32\drivers\Rt64win7.sys
09:26:20.0869 0x0b38 C:\Windows\System32\drivers\Rt64win7.sys - ok
09:26:20.0869 0x0b38 [ 1B00662092F9F9568B995902F0CC40D5, D345014CF146FA57B2682C189D5E7F27D4C78F321F2723D912D623E777C2BB70 ] C:\Windows\System32\drivers\1394ohci.sys
09:26:20.0869 0x0b38 C:\Windows\System32\drivers\1394ohci.sys - ok
09:26:20.0869 0x0b38 [ F8844B00C10E386C704C610E95A9847D, 3E3CFDDD0DD9E98542BAE07ED9CF922D98370C94BE364BA84F677EAA01ED775A ] C:\Windows\System32\drivers\jmcr.sys
09:26:20.0869 0x0b38 C:\Windows\System32\drivers\jmcr.sys - ok
09:26:20.0885 0x0b38 [ AD3A6838A059D65FB55D2F61CF0A6C1F, 37696365FB0710096DD0654A87EBF7EEDEF31AF4717FA861D9F688A15C9CA2E5 ] C:\Windows\System32\drivers\scsiport.sys
09:26:20.0885 0x0b38 C:\Windows\System32\drivers\scsiport.sys - ok
09:26:20.0885 0x0b38 [ 9AF482D058BE59CC28BCE52E7C4B747C, 2D150CD0C82B575CDE2E1B3941FD72EFCB254850D6FF1D7C40D3B29643018EFF ] C:\Windows\System32\drivers\HpqKbFiltr.sys
09:26:20.0885 0x0b38 C:\Windows\System32\drivers\HpqKbFiltr.sys - ok
09:26:20.0885 0x0b38 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] C:\Windows\System32\drivers\i8042prt.sys
09:26:20.0885 0x0b38 C:\Windows\System32\drivers\i8042prt.sys - ok
09:26:20.0901 0x0b38 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] C:\Windows\System32\drivers\kbdclass.sys
09:26:20.0901 0x0b38 C:\Windows\System32\drivers\kbdclass.sys - ok
09:26:20.0901 0x0b38 [ 63C8D74BED9F80F4DD0AA7A3101EB639, EA2CE29025259E9DE945CE52C80A41C33024D7C2907AA1928480EC11FC852B08 ] C:\Windows\System32\drivers\usbd.sys
09:26:20.0901 0x0b38 C:\Windows\System32\drivers\usbd.sys - ok
09:26:20.0901 0x0b38 [ 929C9FA0B18AD2EBC8340591C4BF00FF, 710704028A069EEC918F67D9776AF1367005E3EF8536F2516CB5A12163AFDE8E ] C:\Windows\System32\drivers\SynTP.sys
09:26:20.0901 0x0b38 C:\Windows\System32\drivers\SynTP.sys - ok
09:26:20.0916 0x0b38 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] C:\Windows\System32\drivers\mouclass.sys
09:26:20.0916 0x0b38 C:\Windows\System32\drivers\mouclass.sys - ok
09:26:20.0916 0x0b38 [ 524C79054636D2E5751169005006460B, 1EBA5972E13C5BB07BBD94D6647B86469B4910F60A3C8BDDC6BB5736EF99C9C3 ] C:\Windows\System32\drivers\enecir.sys
09:26:20.0916 0x0b38 C:\Windows\System32\drivers\enecir.sys - ok
09:26:20.0916 0x0b38 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] C:\Windows\System32\drivers\wmiacpi.sys
09:26:20.0916 0x0b38 C:\Windows\System32\drivers\wmiacpi.sys - ok
09:26:20.0932 0x0b38 [ 1CFFE9C06E66A57DAE1452E449A58240, F337852EEF9DCF33FB1B85EEF61FA8D28A780B13488B144DFAD2234FC24CB430 ] C:\Windows\System32\drivers\Accelerometer.sys
09:26:20.0932 0x0b38 C:\Windows\System32\drivers\Accelerometer.sys - ok
09:26:20.0932 0x0b38 [ F26B3A86F6FA87CA360B879581AB4123, 723904362614FE47F6CC0EA0656BA1B47EA32D73BAFB61688A5E5CAE4340B1BF ] C:\Windows\System32\drivers\CompositeBus.sys
09:26:20.0932 0x0b38 C:\Windows\System32\drivers\CompositeBus.sys - ok
09:26:20.0932 0x0b38 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] C:\Windows\System32\drivers\agilevpn.sys
09:26:20.0932 0x0b38 C:\Windows\System32\drivers\agilevpn.sys - ok
09:26:20.0947 0x0b38 [ 87A6E852A22991580D6D39ADC4790463, 0F757C6E5B57DFC239CE1BEC88EF16C07E7F1A40D629A9A6DF3CB6B88FB9E642 ] C:\Windows\System32\drivers\rasl2tp.sys
09:26:20.0947 0x0b38 C:\Windows\System32\drivers\rasl2tp.sys - ok
09:26:20.0947 0x0b38 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] C:\Windows\System32\drivers\ndistapi.sys
09:26:20.0947 0x0b38 C:\Windows\System32\drivers\ndistapi.sys - ok
09:26:20.0947 0x0b38 [ 557DFAB9CA1FCB036AC77564C010DAD3, 8A21B342AFE5B498FB62EDDC81A3ADA9570677B7A382666090E0ABB1F85FEF29 ] C:\Windows\System32\drivers\ndiswan.sys
09:26:20.0947 0x0b38 C:\Windows\System32\drivers\ndiswan.sys - ok
09:26:20.0963 0x0b38 [ 4B25DDE615AC2CABAB73169CA7DA96E6, 1A6694D99AED32D8F9629294E7DC6885C2B148249E0358AABCFE34590996E0BF ] C:\Windows\System32\ole32.dll
09:26:20.0963 0x0b38 C:\Windows\System32\ole32.dll - ok
09:26:20.0963 0x0b38 [ 25983DE69B57142039AC8D95E71CD9C9, A677DA7EBCBCB6073D27E8A38809F51E971E83ED379BC599AAAD6EF4216348DA ] C:\Windows\System32\clbcatq.dll
09:26:20.0963 0x0b38 C:\Windows\System32\clbcatq.dll - ok
09:26:20.0963 0x0b38 [ 83404DCBCE4925B6A5A77C5170F46D86, D669614D0B4461DB244AD99FBE1BA92CEB9B4ED5EC8E987E23764E77D9AC7074 ] C:\Windows\System32\sechost.dll
09:26:20.0963 0x0b38 C:\Windows\System32\sechost.dll - ok
09:26:20.0979 0x0b38 [ 5F2BDCA5FA0F20A6F452CF0EE2A2B18C, 91523F6E2227847A0BFDE7265C704602DF4D9455FC02AC5C7409450FE46720E2 ] C:\Windows\System32\usp10.dll
09:26:20.0979 0x0b38 C:\Windows\System32\usp10.dll - ok
09:26:20.0979 0x0b38 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] C:\Windows\System32\drivers\raspppoe.sys
09:26:20.0979 0x0b38 C:\Windows\System32\drivers\raspppoe.sys - ok
09:26:20.0979 0x0b38 [ 4EE609BFBD4D5316F662832680828FA6, 21E1DAEC14E1AE657B7C66E29F84C67C1DB56BEFF17ED1758C2BA22C4F637B16 ] C:\Windows\System32\shell32.dll
09:26:20.0979 0x0b38 C:\Windows\System32\shell32.dll - ok
09:26:20.0994 0x0b38 [ 27CC19E81BA5E3403C48302127BDA717, C580FC552DDF9C163FC325B38B05C06FFD696495E4C01514BCD6346CFE4F0B40 ] C:\Windows\System32\drivers\raspptp.sys
09:26:20.0994 0x0b38 C:\Windows\System32\drivers\raspptp.sys - ok
09:26:20.0994 0x0b38 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] C:\Windows\System32\drivers\rassstp.sys
09:26:20.0994 0x0b38 C:\Windows\System32\drivers\rassstp.sys - ok
09:26:20.0994 0x0b38 [ 15BDC173EB5FA4F92B67D9FFB269A6EA, 3AD223CEA07093E42D37FDB81D0E045FFD724D7DEDDCC5A70631481A49D3D7A0 ] C:\Windows\System32\shlwapi.dll
09:26:20.0994 0x0b38 C:\Windows\System32\shlwapi.dll - ok
09:26:21.0010 0x0b38 [ 39570395292A4702FDE94C345DF0C39E, B75C8AE52B1A22E6FEEAE392B77506500AA0DFE86167941AAA1E68F262CE7106 ] C:\Windows\System32\iertutil.dll
09:26:21.0010 0x0b38 C:\Windows\System32\iertutil.dll - ok
09:26:21.0010 0x0b38 [ 6DF46D2BD74E3DA1B45F08F10D172732, 2DC945F6F2C4A82189BC7DA2FCBB7D9A0E2588A909539249E55BA82468E0C677 ] C:\Windows\System32\advapi32.dll
09:26:21.0010 0x0b38 C:\Windows\System32\advapi32.dll - ok
09:26:21.0010 0x0b38 [ 3E099CC843C4233E5AF147C8EA8BA32B, 238EEFDB5B98A15439BC2192BCD36F46A976D1CB56C51B9B9D9D2E010C61A5DA ] C:\Windows\System32\drivers\ks.sys
09:26:21.0010 0x0b38 C:\Windows\System32\drivers\ks.sys - ok
09:26:21.0025 0x0b38 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] C:\Windows\System32\drivers\swenum.sys
09:26:21.0025 0x0b38 C:\Windows\System32\drivers\swenum.sys - ok
09:26:21.0025 0x0b38 [ 72D7B3EA16946E8F0CF7458150031CC6, 350ED7B07948C716D2CE51F324171942C534E875FBF5492250A5385B75176374 ] C:\Windows\System32\user32.dll
09:26:21.0025 0x0b38 C:\Windows\System32\user32.dll - ok
09:26:21.0025 0x0b38 [ D87E1E59C73C1F98D5DED5B3850C40F5, 536419BFF9F877D4314B5D0C045D9A6E729489C389863FADF07E382050BC84FD ] C:\Windows\System32\psapi.dll
09:26:21.0025 0x0b38 C:\Windows\System32\psapi.dll - ok
09:26:21.0041 0x0b38 [ 690637129A0DD2DB8DED8B6B17EED0AB, D0B85C3674FC83964E97B0352D4F30A49D89F2BD1C76B7FAEC4991EDD94227FF ] C:\Windows\System32\urlmon.dll
09:26:21.0041 0x0b38 C:\Windows\System32\urlmon.dll - ok
09:26:21.0041 0x0b38 [ F94B8644F3AFE040EC6E1B6FBC9EFAA9, 5BEC7DBD63AA8AC19FCA7AF6AD751C683911964FE5268D2C73DF42C3C48147A7 ] C:\Windows\System32\comdlg32.dll
09:26:21.0041 0x0b38 C:\Windows\System32\comdlg32.dll - ok
09:26:21.0041 0x0b38 [ 7083F463788CB34FCC42F565D56F89E8, 43876B0BD4D8E94D9234D9726B0B492C9EB0F66A6951861DF7148C16AF7EA09D ] C:\Windows\System32\ws2_32.dll
09:26:21.0041 0x0b38 C:\Windows\System32\ws2_32.dll - ok
09:26:21.0057 0x0b38 [ 5B4B379AD10DEDA4EDA01B8C6961B193, 48EEBACBC5C8E1C12B72D0D5698BC33AE5F49D80C0E9C437AC6B0FCA4FBD7231 ] C:\Windows\System32\kernel32.dll
09:26:21.0057 0x0b38 C:\Windows\System32\kernel32.dll - ok
09:26:21.0057 0x0b38 [ 7319BB10FA1F86E49E3DCF4136F6C957, 60DE43AB267FD41C9804369B569139ADD30ED4E295C425F44FC04D3FCC95FCA2 ] C:\Windows\System32\msvcrt.dll
09:26:21.0057 0x0b38 C:\Windows\System32\msvcrt.dll - ok
09:26:21.0057 0x0b38 [ 044FE45FFD6AD40E3BBBE60B7F41BABE, A1688A5E6E0F7037C850699462C2655006A7D873C97F9AB406C59D81749B6F09 ] C:\Windows\System32\nsi.dll
09:26:21.0057 0x0b38 C:\Windows\System32\nsi.dll - ok
09:26:21.0072 0x0b38 [ AA2C08CE85653B1A0D2E4AB407FA176C, 83DFD0C119B20AEDB07114C9D1CF9CE2DFA938D0F1070256B0591A9E2C3997FA ] C:\Windows\System32\imm32.dll
09:26:21.0072 0x0b38 C:\Windows\System32\imm32.dll - ok
09:26:21.0072 0x0b38 [ E5CBF5F8623BBD1DB7B8148A66F6EBA4, 533021C8FAB7C6FA34F57350308F30B55620AFFABCBA9A624039A1B07AD3E94F ] C:\Windows\System32\Wldap32.dll
09:26:21.0072 0x0b38 C:\Windows\System32\Wldap32.dll - ok
09:26:21.0072 0x0b38 [ 48C903068B6BDAB5EF650B9CBEE85295, 69FF82F689ABBDD66E48D27F40DEE69F96C4E1E8193F78A12911C8DB5D0D1939 ] C:\Windows\System32\rpcrt4.dll
09:26:21.0072 0x0b38 C:\Windows\System32\rpcrt4.dll - ok
09:26:21.0088 0x0b38 [ 28C0B5024F5C5A438E78B188CFC81B7F, AB81FB63F2908CE316B45609077ACBD85F4B2AAD1606B1E9030F06DB82EDDFAD ] C:\Windows\System32\normaliz.dll
09:26:21.0088 0x0b38 C:\Windows\System32\normaliz.dll - ok
09:26:21.0088 0x0b38 [ 2EC1645863B2C0598227D99C13E231DB, 408734C69913DDC48C2413E76E602863C26A64FE315329AC6FE42B21CDBECA81 ] C:\Windows\System32\oleaut32.dll
09:26:21.0088 0x0b38 C:\Windows\System32\oleaut32.dll - ok
09:26:21.0088 0x0b38 [ E1B1255D3A4B3367FE4E9C71E62E3B5A, DBFE4268D8365D97ED948BC56EBC886B4BF2684F6A31FAC7ECEA3B289F13906D ] C:\Windows\System32\gdi32.dll
09:26:21.0088 0x0b38 C:\Windows\System32\gdi32.dll - ok
09:26:21.0103 0x0b38 [ F7CE0C81C545364020ED8203CF0A633E, 24B47A7492B7048096AF87E26786E8108455ADBD1A374B6A0466DE008505B8A9 ] C:\Windows\System32\difxapi.dll
09:26:21.0103 0x0b38 C:\Windows\System32\difxapi.dll - ok
09:26:21.0103 0x0b38 [ A655878D5E5F1D14B006313CBB58A041, B984CEF944140322952985CD6E79F92383D328BB5483CA779E526E54BEA4FD2A ] C:\Windows\System32\imagehlp.dll
09:26:21.0103 0x0b38 C:\Windows\System32\imagehlp.dll - ok
09:26:21.0103 0x0b38 [ C431EAF5CAA1C82CAC2534A2EAB348A3, ADDF850128DC675E67FABA9A3D0D27E684F01F733962CA22927BB94503549E44 ] C:\Windows\System32\msctf.dll
09:26:21.0103 0x0b38 C:\Windows\System32\msctf.dll - ok
09:26:21.0119 0x0b38 [ B1037F0131C9A010D611F6914E03CD92, E0FC5DBFBDE4FDEEEE9FE24AF05A0DCE1BD83B091F4C252FD0F2DF6890977E05 ] C:\Windows\System32\wininet.dll
09:26:21.0119 0x0b38 C:\Windows\System32\wininet.dll - ok
09:26:21.0119 0x0b38 [ D202223587518B13D72D68937B7E3F70, 9DB971B866D058ADBB518DD99B87C5DB8DD1E7C9073755B989AE7E9FB62901E8 ] C:\Windows\System32\lpk.dll
09:26:21.0119 0x0b38 C:\Windows\System32\lpk.dll - ok
09:26:21.0119 0x0b38 [ 6A4EA4C29FBF78112AE20013FB71E9C1, 2FA53B8F98F2E8AEF50880AF1C64664A4FD1F38F47779DC6476F50907B685FF2 ] C:\Windows\System32\setupapi.dll
09:26:21.0119 0x0b38 C:\Windows\System32\setupapi.dll - ok
09:26:21.0135 0x0b38 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] C:\Windows\System32\drivers\circlass.sys
09:26:21.0135 0x0b38 C:\Windows\System32\drivers\circlass.sys - ok
09:26:21.0135 0x0b38 [ EAB6C35E62B1B0DB0D1B48B671D3A117, E65034BF757AE4D21F69D7A91A7990E326A29A0CE9F871FD704B5E6CCC821FF0 ] C:\Windows\System32\drivers\umbus.sys
09:26:21.0135 0x0b38 C:\Windows\System32\drivers\umbus.sys - ok
09:26:21.0135 0x0b38 [ 7E8AB50AB7F2F81F30DCC8A98025B73A, EA684B86B6C268D95FDB775E4E42EA00BB253F75F44477F6D7761EF6DA315AF4 ] C:\Windows\System32\comctl32.dll
09:26:21.0135 0x0b38 C:\Windows\System32\comctl32.dll - ok
09:26:21.0150 0x0b38 [ 4D7D93115F537B2E2814AC8E7F1F06B4, E88D9B56B7D3D7242636AD47A28981D106782C80A8689215375D1A8DA1AC2C8B ] C:\Windows\System32\wintrust.dll
09:26:21.0150 0x0b38 C:\Windows\System32\wintrust.dll - ok
09:26:21.0150 0x0b38 [ D1598B80C58017A7DCABCF7F0787289D, 2B8126DADD7CAAD0CA951700CF1F1E62E5468F4456EB092CBEF5D53F875ED2A6 ] C:\Windows\System32\KernelBase.dll
09:26:21.0150 0x0b38 C:\Windows\System32\KernelBase.dll - ok
09:26:21.0150 0x0b38 [ 15B740D94BAD25467A297E75124D7EE2, 7535F154267573CEC7C5ADCF101F2F42F258B202E7D0FE71660E8516478B258B ] C:\Windows\System32\crypt32.dll
09:26:21.0150 0x0b38 C:\Windows\System32\crypt32.dll - ok
09:26:21.0166 0x0b38 [ D05E03C1B2824236531F5E37334B6A8A, 4C79F02AA9F4C36B5A463B71A715523B5D4860B28A40840E54C1C4C5685018C6 ] C:\Windows\System32\cfgmgr32.dll
09:26:21.0166 0x0b38 C:\Windows\System32\cfgmgr32.dll - ok
09:26:21.0166 0x0b38 [ 06FEC9E8117103BB1141A560E98077DA, C5E61B11DDBBBBBA3D9488970524F0975EA5FBDF16E2FA31F579F8BFA48353B1 ] C:\Windows\System32\devobj.dll
09:26:21.0166 0x0b38 C:\Windows\System32\devobj.dll - ok
09:26:21.0166 0x0b38 [ E53F0B4AEF9C87A7EBEB9D380CA148FD, 581FDAECA43EED2FC72272710E65EECB59FD0B85960DE92BBE95720D2B494112 ] C:\Windows\System32\msasn1.dll
09:26:21.0166 0x0b38 C:\Windows\System32\msasn1.dll - ok
09:26:21.0181 0x0b38 [ 4C9042B8DF86C1E8E6240C218B99B39B, D286633311C047B9C4FB1AA89D7B02B9F943FDDCE473255DC8E14DD07CC9B292 ] C:\Windows\System32\drivers\usbhub.sys
09:26:21.0181 0x0b38 C:\Windows\System32\drivers\usbhub.sys - ok
09:26:21.0181 0x0b38 [ 9C278785347BCC991F8EA2999D90F58D, EA680C3642A6ABF627415AEE019956FAC702DC6A8F4B4D0FC8A4FB21EADD3896 ] C:\Windows\SysWOW64\normaliz.dll
09:26:21.0181 0x0b38 C:\Windows\SysWOW64\normaliz.dll - ok
09:26:21.0181 0x0b38 [ 659B74FB74B86228D6338D643CD3E3CF, 83D741B7A2A204A661A80C226212749F514800060D05E217FA6DC14D62F38F80 ] C:\Windows\System32\drivers\ndproxy.sys
09:26:21.0181 0x0b38 C:\Windows\System32\drivers\ndproxy.sys - ok
09:26:21.0197 0x0b38 [ 21D26064AEDB4988F785BB4A3A2C051E, F6FA2CA351B24DA19645EB542596C82F9A68D84CC7CCFE6F9FC15CE2CE4D1961 ] C:\Windows\System32\drivers\drmk.sys
09:26:21.0197 0x0b38 C:\Windows\System32\drivers\drmk.sys - ok
09:26:21.0197 0x0b38 [ 04A5815DF7E8B037DF674D3CCACC0C31, BC49D6C135C50254BF952B790046BE364DFDDA786F1EACEE4CC8880B764B7A92 ] C:\Windows\System32\drivers\AtiHdmi.sys
09:26:21.0197 0x0b38 C:\Windows\System32\drivers\AtiHdmi.sys - ok
09:26:21.0197 0x0b38 [ 32E11315B5126921FFD9074840EF13D3, FC7C0E1CC447FDD89C0FA5EBFD04CCEABFB27751AB57A7176F12BD0D35306E1C ] C:\Windows\System32\drivers\portcls.sys
09:26:21.0197 0x0b38 C:\Windows\System32\drivers\portcls.sys - ok
09:26:21.0213 0x0b38 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] C:\Windows\System32\drivers\ksthunk.sys
09:26:21.0213 0x0b38 C:\Windows\System32\drivers\ksthunk.sys - ok
09:26:21.0213 0x0b38 [ ED1722F43CE61409EF68340402D6267D, 2FC14738C8F268DE4539064DE6D8954B6C9CD4ADE1139E2C74BD3486BF9A0861 ] C:\Windows\System32\drivers\stwrt64.sys
09:26:21.0213 0x0b38 C:\Windows\System32\drivers\stwrt64.sys - ok
09:26:21.0228 0x0b38 [ 49EE2E52E6CD03947DAD72F65367BE06, 933097B903B13767DD49192E7BF8EAABC5BADFDAF8B31B806AA65C533F24B686 ] C:\Windows\System32\drivers\hidparse.sys
09:26:21.0228 0x0b38 C:\Windows\System32\drivers\hidparse.sys - ok
09:26:21.0228 0x0b38 [ 685FEC2407FC121EB937CB658B3C0F35, 9357476FB5722A15B109FAC45F8110BD17BEBFB941BB2770808882805935B9C1 ] C:\Windows\System32\drivers\hidclass.sys
09:26:21.0228 0x0b38 C:\Windows\System32\drivers\hidclass.sys - ok
09:26:21.0228 0x0b38 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] C:\Windows\System32\drivers\hidir.sys
09:26:21.0228 0x0b38 C:\Windows\System32\drivers\hidir.sys - ok
09:26:21.0244 0x0b38 [ 6DEF98F8541E1B5DCEB2C822A11F7323, F6EE4A7A6A7A1F243D32CA9241CA4816C92EB7BF2AADDD09234968C2CAAE6C0D ] C:\Windows\System32\drivers\kbdhid.sys
09:26:21.0244 0x0b38 C:\Windows\System32\drivers\kbdhid.sys - ok
09:26:21.0244 0x0b38 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] C:\Windows\System32\drivers\mouhid.sys
09:26:21.0244 0x0b38 C:\Windows\System32\drivers\mouhid.sys - ok
09:26:21.0244 0x0b38 [ BF24D6F2ED97FE830BFD52B246F98E67, 6BBF4C4221A245462EF653798F6B416EEB12594AD1CB4E8BC8908A8CB2F53384 ] C:\Windows\System32\drivers\dxapi.sys
09:26:21.0244 0x0b38 C:\Windows\System32\drivers\dxapi.sys - ok
09:26:21.0259 0x0b38 [ CBEF2EB83438ED9FC39411CC8378B0E7, C96B771D75A971301275496185E3E6CF7F68240CC78925631F72B78252F0FDB6 ] C:\Windows\System32\win32k.sys
09:26:21.0259 0x0b38 C:\Windows\System32\win32k.sys - ok
09:26:21.0259 0x0b38 [ 60C2862B4BF0FD9F582EF344C2B1EC72, CB1C6018FC5C15483AC5BB96E5C2E2E115BB0C0E1314837D77201BAB37E8C03A ] C:\Windows\System32\csrss.exe
09:26:21.0259 0x0b38 C:\Windows\System32\csrss.exe - ok
09:26:21.0259 0x0b38 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\System32\basesrv.dll
09:26:21.0259 0x0b38 C:\Windows\System32\basesrv.dll - ok
09:26:21.0275 0x0b38 [ 0D7598360DF6C8637E6D678C20B5C47C, 0EC86D578C0B1703B89C24AE0FEE2CD91DD869BD4A97949A4B29AE57D490F890 ] C:\Windows\System32\csrsrv.dll
09:26:21.0275 0x0b38 C:\Windows\System32\csrsrv.dll - ok
09:26:21.0275 0x0b38 [ 457B44AB6D502E55F64A867D4F35C76C, 95FEC45E28DF394E778DA37719F7D579920531AD568E1C290B7F42CB03BEAA2C ] C:\Windows\System32\winsrv.dll
09:26:21.0275 0x0b38 C:\Windows\System32\winsrv.dll - ok
09:26:21.0275 0x0b38 [ B3BF6B5B50006DEF50B66306D99FCF6F, D39A1DEBE7C464922919826D15199ED25E263BF58633593DD412D78F98921417 ] C:\Windows\System32\drivers\hidusb.sys
09:26:21.0275 0x0b38 C:\Windows\System32\drivers\hidusb.sys - ok
09:26:21.0291 0x0b38 [ B26AFB54A534D634523C4FB66765B026, A219C9AE32D040BEA4DD69C2C826B1C52BACE26BEBFEE799BD56DFD442C5E0D8 ] C:\Windows\System32\drivers\usbccgp.sys
09:26:21.0291 0x0b38 C:\Windows\System32\drivers\usbccgp.sys - ok
09:26:21.0291 0x0b38 [ D501E12614B00A3252073101D6A1A74B, DFA3A83978125B3CE45C71DD9069E8A7938366D0F4B4B2401CDD07251253FA8C ] C:\Windows\System32\drivers\usbvideo.sys
09:26:21.0291 0x0b38 C:\Windows\System32\drivers\usbvideo.sys - ok
09:26:21.0291 0x0b38 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] C:\Windows\System32\drivers\monitor.sys
09:26:21.0291 0x0b38 C:\Windows\System32\drivers\monitor.sys - ok
09:26:21.0306 0x0b38 [ F29FE765E1448EF371CFE05BFAC74ADB, F251581222D78543272FD4B14A6A59F4B0E0CC44A5FCBCF56DE4CA5783F78A75 ] C:\Windows\System32\tsddd.dll
09:26:21.0306 0x0b38 C:\Windows\System32\tsddd.dll - ok
09:26:21.0306 0x0b38 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\System32\sxssrv.dll
09:26:21.0306 0x0b38 C:\Windows\System32\sxssrv.dll - ok
09:26:21.0306 0x0b38 [ 94355C28C1970635A31B3FE52EB7CEBA, C4E98F07170CEC69CACDD5CEDB8927E48A2A299CB1B8CDA87526E768AF6174F0 ] C:\Windows\System32\wininit.exe
09:26:21.0306 0x0b38 C:\Windows\System32\wininit.exe - ok
09:26:21.0322 0x0b38 [ 2C942733A5983DD4502219FF37C7EBC7, 34B20B6B0D7274E4B5B783F1D2345BC3DD9888964D5C2C65712F041A00CF5B45 ] C:\Windows\System32\profapi.dll
09:26:21.0322 0x0b38 C:\Windows\System32\profapi.dll - ok
09:26:21.0322 0x0b38 [ C03E117AA19C7D59B9783C06DB9DE79C, 07C8F607B677557A6F197D406CE8B2AE9D69FE4716AE7071C3A56ECE101DDB66 ] C:\Windows\System32\cdd.dll
09:26:21.0322 0x0b38 C:\Windows\System32\cdd.dll - ok
09:26:21.0322 0x0b38 [ F4389DA7DBDA2E7D292D360CF8E400C7, EBB50703FA573932727FBDCB407D9D5945BDC052CEFADED8237185063DD3A4AE ] C:\Windows\System32\RpcRtRemote.dll
09:26:21.0322 0x0b38 C:\Windows\System32\RpcRtRemote.dll - ok
09:26:21.0337 0x0b38 [ B9A047D231D32FDF5AF2F281E4326A9D, 814DC543DBBA137D478C51248A99ACC2485744F7BDC7A382B03B8912C0EB73EE ] C:\Windows\System32\KBDUS.DLL
09:26:21.0337 0x0b38 C:\Windows\System32\KBDUS.DLL - ok
09:26:21.0337 0x0b38 [ B26B1801356760841C3BC69F9F91537F, 83B9DF333E36C09E81D44E12AE5BE14650126FDA0CF4A0EA853BF40C5780EF81 ] C:\Windows\System32\WlS0WndH.dll
09:26:21.0337 0x0b38 C:\Windows\System32\WlS0WndH.dll - ok
09:26:21.0337 0x0b38 [ 456C92A9D8DB51B9938A6234BBC65FC9, A20EF19E25384B34D3FE997099DD71EA595F3ACDA0F7C56695DC48ADFA54F5B8 ] C:\Windows\System32\sxs.dll
09:26:21.0337 0x0b38 C:\Windows\System32\sxs.dll - ok
09:26:21.0353 0x0b38 [ 784FA3DF338E2E8F5F0389D6FAC428AF, 9C8AA0CFDEB9E38AAF8EB08626070E0F0364F4F8A793CFE3532EC6C007980C34 ] C:\Windows\System32\cryptbase.dll
09:26:21.0353 0x0b38 C:\Windows\System32\cryptbase.dll - ok
09:26:21.0353 0x0b38 [ 01A465AC251BCCF6037DF2EF28AA4292, 49C0E1B5B0B7FAACF226C8DA15F518BEAE6B868AB079023B9181A5039DD5E456 ] C:\Windows\System32\apphelp.dll
09:26:21.0353 0x0b38 C:\Windows\System32\apphelp.dll - ok
09:26:21.0353 0x0b38 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\System32\services.exe
09:26:21.0353 0x0b38 C:\Windows\System32\services.exe - ok
09:26:21.0369 0x0b38 [ 0793F40B9B8A1BDD266296409DBD91EA, 8A383FC9A66A327905C340D06138980F9E489479535A2C2AAE5E8BB14A74826E ] C:\Windows\System32\lsass.exe
09:26:21.0369 0x0b38 C:\Windows\System32\lsass.exe - ok
09:26:21.0369 0x0b38 [ 04FCA22B77A2E37332CC8226187AF87B, 6B085DB5C2EC21D2ED7BE842E7842FCC3530D1828FBE28C16E61F7E12B27833B ] C:\Windows\System32\lsm.exe
09:26:21.0369 0x0b38 C:\Windows\System32\lsm.exe - ok
09:26:21.0369 0x0b38 [ 18367866684A72C5188D50AC1174F1B7, C51505160876F1D7D7004CB5CE8FBB74E21E4675933629BD7C2B8D6F361A2D97 ] C:\Windows\System32\sspisrv.dll
09:26:21.0369 0x0b38 C:\Windows\System32\sspisrv.dll - ok
09:26:21.0384 0x0b38 [ DC4350DBB5307A503ED3858938A1B1EE, A0C02BC9413AACEEFA1583643FA823C3DD9AE720828E8B67F9AA707D897956A3 ] C:\Windows\System32\lsasrv.dll
09:26:21.0384 0x0b38 C:\Windows\System32\lsasrv.dll - ok
09:26:21.0384 0x0b38 [ 2A0EA951A326C2E78AF86E2F9704327E, 2224C1A97F2FAE0B307DFDAFC5BB2BB051A747939A2EA7AB19820D6537F9555F ] C:\Windows\System32\sspicli.dll
09:26:21.0384 0x0b38 C:\Windows\System32\sspicli.dll - ok
09:26:21.0384 0x0b38 [ E914A50A151DFFE63D3935226DB5E2C1, 7DCCE4060344E1C771679F1C20378A0BEB3C1F06DB684072F07B98921A62A299 ] C:\Windows\System32\scext.dll
09:26:21.0384 0x0b38 C:\Windows\System32\scext.dll - ok
09:26:21.0400 0x0b38 [ 68083118797CAF30FB2EA3E71494D67E, 5F1BCDFCB00A20CD60CBC70A2FD97405EF0F7173DD0E404BBA7B06D39DB37364 ] C:\Windows\System32\sysntfy.dll
09:26:21.0400 0x0b38 C:\Windows\System32\sysntfy.dll - ok
09:26:21.0400 0x0b38 [ 9F5225F41D5474A651384C088D9FF502, 75EC20BFB470EA1F1ECC6111E4893C0C34CCA859AEBAC8B3A88F4CEF53E11C99 ] C:\Windows\System32\secur32.dll
09:26:21.0400 0x0b38 C:\Windows\System32\secur32.dll - ok
09:26:21.0400 0x0b38 [ DEE7267C5D232A3B816866872CE199E6, A1994FD37667C52E7CBF873514C190DA61A3D1349786D187BFAE0006F61799AE ] C:\Windows\System32\wmsgapi.dll
09:26:21.0400 0x0b38 C:\Windows\System32\wmsgapi.dll - ok
09:26:21.0415 0x0b38 [ 941AF3C8B0DE1B359BE22DD3288A8C8E, 8D1081C58097C68939955E3C700B1B9764212A6A70BEEE353985512F39DE2EBF ] C:\Windows\System32\scesrv.dll
09:26:21.0415 0x0b38 C:\Windows\System32\scesrv.dll - ok
09:26:21.0415 0x0b38 [ D23371AB9607651937C7641A38CD52BC, 00ED1F9EC0B57A3E970F707C3B91CC68F874C0F0073CEA9FAD09EA2515B751C0 ] C:\Windows\System32\srvcli.dll
09:26:21.0415 0x0b38 C:\Windows\System32\srvcli.dll - ok
09:26:21.0415 0x0b38 [ B160ADAEFC76031D92C4FBAC0918B033, A3A0D5AE3F15D6275005EA104D992A3A84B0AC0CA2E629716065DB715CCA856B ] C:\Windows\System32\samsrv.dll
09:26:21.0415 0x0b38 C:\Windows\System32\samsrv.dll - ok
09:26:21.0431 0x0b38 [ 3A061472B38233BAFF9CFEFF2E49C46B, DF29B14C8D22A8A16AA336A09A6152E2C7FCA6CAF4E76F0C5DCB55BEF9D00515 ] C:\Windows\System32\cryptdll.dll
09:26:21.0431 0x0b38 C:\Windows\System32\cryptdll.dll - ok
09:26:21.0431 0x0b38 [ 3C073B0C596A0AF84933E7406766B040, 4698BBA678F553E15AD4B07AD7FB236281F872DEFEE97BFD637114476C8F97B3 ] C:\Windows\System32\wevtapi.dll
09:26:21.0431 0x0b38 C:\Windows\System32\wevtapi.dll - ok
09:26:21.0431 0x0b38 [ 86FE1B1F8FD42CD0DB641AB1CDB13093, 8C4BB4415105CE82FFFE658879EAE9D259A24C0F6DFC7D25507352DC99241BE2 ] C:\Windows\System32\cngaudit.dll
09:26:21.0431 0x0b38 C:\Windows\System32\cngaudit.dll - ok
09:26:21.0447 0x0b38 [ 7FBEBD2229EA5FD48D41B199EC2D541C, A465975D445A8D50CAF3EF29BD33354B320D11173C127BE30D5EBBFF7008CDCE ] C:\Windows\System32\authz.dll
09:26:21.0447 0x0b38 C:\Windows\System32\authz.dll - ok
09:26:21.0447 0x0b38 [ 2E8C52A0EC788D90FA35D9507D828771, DD5AAA10E075F209D9827C7A192AD5645D1156C149DB9B5AC1EF7B5E0B5F11DE ] C:\Windows\System32\ncrypt.dll
09:26:21.0447 0x0b38 C:\Windows\System32\ncrypt.dll - ok
09:26:21.0447 0x0b38 [ B9A95365E52F421A20E1501935FADDA5, DDB4CB575139233EFAF2C59B7E9B04AF36BBCCC63190181F3B2A7E6BFC86E77E ] C:\Windows\System32\bcrypt.dll
09:26:21.0447 0x0b38 C:\Windows\System32\bcrypt.dll - ok
09:26:21.0462 0x0b38 [ 02B64609F865A39365FF88580DF11738, 2F676B93898E1B6131AF6227BB7AB731EB9C29477F9BD4C2C60F0FC1E35CD968 ] C:\Windows\System32\msprivs.dll
09:26:21.0462 0x0b38 C:\Windows\System32\msprivs.dll - ok
09:26:21.0462 0x0b38 [ B561B451320B0B40908A8BFD81705262, D9E6B0C33B03D7648A8229FB5FE06332141F1F8E9F73790D4D7D621DC53EF9D3 ] C:\Windows\System32\netjoin.dll
09:26:21.0462 0x0b38 C:\Windows\System32\netjoin.dll - ok
09:26:21.0462 0x0b38 [ 50532FCD7ECF02DD169CE5C485F02534, 8EE5D9D0EA53DC72BCC300692E521ACADD56AB09BFA3E78149D8B5A90648512C ] C:\Windows\System32\negoexts.dll
09:26:21.0462 0x0b38 C:\Windows\System32\negoexts.dll - ok
09:26:21.0478 0x0b38 [ F5D06621DF3311120C778935D3219021, FCB711351F7795A2541C82F20285C1D11A576641EB8C5E31D125C2EB929992D0 ] C:\Windows\System32\kerberos.dll
09:26:21.0478 0x0b38 C:\Windows\System32\kerberos.dll - ok
09:26:21.0478 0x0b38 [ 132328DF455B0028F13BF0ABEE51A63A, 09AB627A6155BD80FB63960182550FD0A58BA27C29187958082264F21FA35F38 ] C:\Windows\System32\winlogon.exe
09:26:21.0478 0x0b38 C:\Windows\System32\winlogon.exe - ok
09:26:21.0478 0x0b38 [ D0C2FBB6D97416B0166478FC7AE2B212, 7EAB6C37F0A845E645CA44CC060AC6C56E386C7EF7A64716C6786C9602AD8C9D ] C:\Windows\System32\cryptsp.dll
09:26:21.0478 0x0b38 C:\Windows\System32\cryptsp.dll - ok
09:26:21.0493 0x0b38 [ D8C88512BA9544AE1CC2034F50ECFA12, 99CFB478DF31214E98CAB81EFF7346500579AE262100BD418F3C9D47437F4413 ] C:\Windows\System32\winsta.dll
09:26:21.0493 0x0b38 C:\Windows\System32\winsta.dll - ok
09:26:21.0493 0x0b38 [ FC76FE3C1E1FDB761244D4F74EF560FD, 85D7BD8887E53F7E1C37D2EC3964D714C0939ED5D45F95332F425341AA181C19 ] C:\Windows\System32\mswsock.dll
09:26:21.0493 0x0b38 C:\Windows\System32\mswsock.dll - ok
09:26:21.0493 0x0b38 [ EC7CBFF96B05ECF3D366355B3C64ADCF, F69ED45EBEDCA9CF000AC03281F0EC2C351F98513FBA90E63394E4E561D6C7A2 ] C:\Windows\System32\wship6.dll
09:26:21.0493 0x0b38 C:\Windows\System32\wship6.dll - ok
09:26:21.0509 0x0b38 [ B2A020ADF96AB10EF3EF269849A726C8, 0F1B0027FA118A51891952D8ED1C0A8BEDBA3E2E18BCFC267A4402FD051FA942 ] C:\Windows\System32\msv1_0.dll
09:26:21.0509 0x0b38 C:\Windows\System32\msv1_0.dll - ok
09:26:21.0509 0x0b38 [ 956D030D375F207B22FB111E06EF9C35, D2C6B0C0C9E951F6715252C54A620CF6AF1A3845014035334C92B3DDDEFD52E5 ] C:\Windows\System32\netlogon.dll
09:26:21.0509 0x0b38 C:\Windows\System32\netlogon.dll - ok
09:26:21.0509 0x0b38 [ 05A2D26ACF0939A4E97160315F1FA12E, 0F387E5719020F7E25EF58E71576397CBF61A3712093AD433E58BBB905577EAD ] C:\Windows\System32\dnsapi.dll
09:26:21.0509 0x0b38 C:\Windows\System32\dnsapi.dll - ok
09:26:21.0525 0x0b38 [ 8CE22E63F08613036DF8C7B00FBDF36B, 442DDE1C1F1073BFB1730D3B258D249DD6FFAED7D2452493C2E1D4CF48F5376C ] C:\Windows\System32\logoncli.dll
09:26:21.0525 0x0b38 C:\Windows\System32\logoncli.dll - ok
09:26:21.0525 0x0b38 [ 5A148B1574BE77742D337EC81C23FC7A, 12FFD0093228C39999A1A360CD2B743660D254AF4423E2884BDEC814EBB7783B ] C:\Windows\System32\schannel.dll
09:26:21.0525 0x0b38 C:\Windows\System32\schannel.dll - ok
09:26:21.0525 0x0b38 [ 95FB6CA4374E343DDD653FCC43F9D26B, 911A240F9C1DD155C2B1CD85FE4A8044EB2816AF166CD8CB66EEB905CA352881 ] C:\Windows\System32\wdigest.dll
09:26:21.0525 0x0b38 C:\Windows\System32\wdigest.dll - ok
09:26:21.0540 0x0b38 [ 5D8874A8C11DDDDE29E12DE0E2013493, 3E9A57137BF622AF83E3E4D58971E2C0200559CCA7545D16CF263AA03EE9C7D2 ] C:\Windows\System32\rsaenh.dll
09:26:21.0540 0x0b38 C:\Windows\System32\rsaenh.dll - ok
09:26:21.0540 0x0b38 [ 0DEFD5FBF801DD8F83BC0ED09861A8EC, A00E0CCDE4270452139C37E1599F3ED3ACCF02BEE371F5534E17E93DB46ED082 ] C:\Windows\System32\TSpkg.dll
09:26:21.0540 0x0b38 C:\Windows\System32\TSpkg.dll - ok
09:26:21.0540 0x0b38 [ E08088A97F95345E181C3DFCE2C615EF, DEF3B087DF5E10E4F8418029DB6E82546E62FEFA39694B7BD6A48CE8AAFD1B96 ] C:\Windows\System32\pku2u.dll
09:26:21.0540 0x0b38 C:\Windows\System32\pku2u.dll - ok
09:26:21.0556 0x0b38 [ DA090E97E57DCB48888015B5D3C749CD, 9C351013A7791CB0998E3E2519A460CBC6EED5E595EEA7A3394DA74738A7132E ] C:\Windows\System32\bcryptprimitives.dll
09:26:21.0556 0x0b38 C:\Windows\System32\bcryptprimitives.dll - ok
09:26:21.0556 0x0b38 [ 90BDEFC5DF334E5100EAA781D798DE1A, F48B650D811B6D57D2252E326C0C9CC74534BE9D510E7D3403F91D1C5C36281E ] C:\Windows\System32\efslsaext.dll
09:26:21.0556 0x0b38 C:\Windows\System32\efslsaext.dll - ok
09:26:21.0556 0x0b38 [ 9301B8810B2DA4EB6AD55DB75FC1E339, 765D23BD3D5D8768550D82CFDBD26365E2AE896DE9E5F123CE4045BDF8E838BB ] C:\Windows\System32\credssp.dll
09:26:21.0556 0x0b38 C:\Windows\System32\credssp.dll - ok
09:26:21.0571 0x0b38 [ 7CC7DF5B654DA579613F811D8C637E29, 70EAC059C1ED814810C75DBB9F4D188428CB942FFD8869D692158D384EB6BB35 ] C:\Windows\System32\ubpm.dll
09:26:21.0571 0x0b38 C:\Windows\System32\ubpm.dll - ok
09:26:21.0571 0x0b38 [ 398712DDDAEFB85EDF61DF6A07B65C79, 08732BF5C5FFAF953FF4065AA5D35CFF797590E1C2CD12E4E923E932B5722A20 ] C:\Windows\System32\scecli.dll
09:26:21.0571 0x0b38 C:\Windows\System32\scecli.dll - ok
09:26:21.0571 0x0b38 [ C78655BC80301D76ED4FEF1C1EA40A7D, 93B2ED4004ED5F7F3039DD7ECBD22C7E4E24B6373B4D9EF8D6E45A179B13A5E8 ] C:\Windows\System32\svchost.exe
09:26:21.0571 0x0b38 C:\Windows\System32\svchost.exe - ok
09:26:21.0587 0x0b38 [ 23157D583244400E1D7FBAEE2E4B31B7, 4E8D93F746C727CE1A89B53FEFFCFB080AC3CC8F3CF2F8613E692E989794C52F ] C:\Windows\System32\umpnpmgr.dll
09:26:21.0587 0x0b38 C:\Windows\System32\umpnpmgr.dll - ok
09:26:21.0587 0x0b38 [ CD1B5AD07E5F7FEF30E055DCC9E96180, 63C58551F32B0B09377F64A6AE1FA81AF93B8A707A57A8C18722086906AD3046 ] C:\Windows\System32\devrtl.dll
09:26:21.0587 0x0b38 C:\Windows\System32\devrtl.dll - ok
09:26:21.0587 0x0b38 [ E6EB44ABAAF1F330119F854856C53EBE, 77279972FFBFA984578DD4F17EB615F5D2D93590AF3A9FEFEFDB9128206C9887 ] C:\Windows\System32\SPInf.dll
09:26:21.0587 0x0b38 C:\Windows\System32\SPInf.dll - ok
09:26:21.0603 0x0b38 [ 0776CF79590BDEF0A2728B0B9A813B96, 8205E0F3CC3DD8605769EC4DD85E6ACE89B219F62379C8FD74C62047BD339F22 ] C:\Windows\System32\userenv.dll
09:26:21.0603 0x0b38 C:\Windows\System32\userenv.dll - ok
09:26:21.0603 0x0b38 [ 9C9307C95671AC962F3D6EB3A4A89BAE, D1433791C9B8BCEEAD8937EC18D33E89E4E2012B5975228A8500FD141BC30078 ] C:\Windows\System32\gpapi.dll
09:26:21.0603 0x0b38 C:\Windows\System32\gpapi.dll - ok
09:26:21.0603 0x0b38 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] C:\Windows\System32\umpo.dll
09:26:21.0603 0x0b38 C:\Windows\System32\umpo.dll - ok
09:26:21.0618 0x0b38 [ F6C011B46FAEEF33536B2E80F48B5CBE, BDD149D3D6F9F6C8F6F34C311219BE5618CEEFBC7D35E37473A47F1D5D015067 ] C:\Windows\System32\pcwum.dll
09:26:21.0618 0x0b38 C:\Windows\System32\pcwum.dll - ok
09:26:21.0618 0x0b38 [ 716175021BDA290504CE434273F666BC, FA18CA2D8A5F4335E051E2933147D3C1E7308F7D446E2AEB6596CDEF6E2AFC88 ] C:\Windows\System32\powrprof.dll
09:26:21.0618 0x0b38 C:\Windows\System32\powrprof.dll - ok
09:26:21.0618 0x0b38 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] C:\Windows\System32\drivers\luafv.sys
09:26:21.0618 0x0b38 C:\Windows\System32\drivers\luafv.sys - ok
09:26:21.0634 0x0b38 [ 6A990AC8404F18F34016328843513AFC, 5B63CCF831B9806ED7ED509BAAF2EBFB7D261587FCC19749C3360CE5CE620910 ] C:\Windows\System32\drivers\mbam.sys
09:26:21.0634 0x0b38 C:\Windows\System32\drivers\mbam.sys - ok
09:26:21.0634 0x0b38 [ 7266972E86890E2B30C0C322E906B027, BFA30E85F5BD3AA933913BD7C6D2B5993DB7AFB0C98349B61A6BEF0BDC8A3680 ] C:\Windows\System32\rpcss.dll
09:26:21.0634 0x0b38 C:\Windows\System32\rpcss.dll - ok
09:26:21.0634 0x0b38 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] C:\Windows\System32\RpcEpMap.dll
09:26:21.0634 0x0b38 C:\Windows\System32\RpcEpMap.dll - ok
09:26:21.0649 0x0b38 [ 16E964ABF6D1E0F0CC7822FCA9BA754D, 0E461387ACFD641DA22EE542A3C68AF5F7D3A7F967D974E3B198143D461ABE39 ] C:\Windows\System32\wshqos.dll
09:26:21.0649 0x0b38 C:\Windows\System32\wshqos.dll - ok
09:26:21.0649 0x0b38 [ 31559F3244C6BC00A52030CAA83B6B91, B2025742B5F0025ACE9821D5722DE3F997EEEAB21D2F381C9E307882DF422579 ] C:\Windows\System32\WSHTCPIP.DLL
09:26:21.0649 0x0b38 C:\Windows\System32\WSHTCPIP.DLL - ok
09:26:21.0649 0x0b38 [ 9AD9E06F8656F296D91FAE8EE5B95A27, 53384747D5864D699BCC4F48E0A5E656430EDAA65DCDAB4B11EA68FC7106459E ] C:\Windows\System32\FirewallAPI.dll
09:26:21.0649 0x0b38 C:\Windows\System32\FirewallAPI.dll - ok
09:26:21.0665 0x0b38 [ D0D8877969011D1B0ED9C3C55A9A9108, DFF41D12EA353DFACDF5C1C227D2D44D659EB8C484829651C90F8684CE2B9E49 ] C:\Windows\System32\atiesrxx.exe
09:26:21.0665 0x0b38 C:\Windows\System32\atiesrxx.exe - ok
09:26:21.0665 0x0b38 [ 93E6A39B1DB898F7C949FA5567E774CF, 914F12718CEF019DE2AB18776DD23C669F218B4FA2292BECFE34A95872040789 ] C:\Windows\System32\LogonUI.exe
09:26:21.0665 0x0b38 C:\Windows\System32\LogonUI.exe - ok
09:26:21.0665 0x0b38 [ BD3674BE7FC9D8D3732C83E8499576ED, E6716A5895D629263A4D21959F48840429AB6F4B55A5FA2663EE5E86C9CA2BF1 ] C:\Windows\System32\wtsapi32.dll
09:26:21.0665 0x0b38 C:\Windows\System32\wtsapi32.dll - ok
09:26:21.0681 0x0b38 [ BCF0A980D21711E47D0803BDB0E99CAD, CBC125C6F043584416BC20CB1F12B2BFDC6D99DAC942EDDA90754779C947E31A ] C:\Windows\System32\authui.dll
09:26:21.0681 0x0b38 C:\Windows\System32\authui.dll - ok
09:26:21.0681 0x0b38 [ 94E026870A55AAEAFF7853C1754091E9, B2F5D5629D12BDFA98DBED3898368F37D9009C7531B6909C7285A2C11C9A0F93 ] C:\Windows\System32\version.dll
09:26:21.0681 0x0b38 C:\Windows\System32\version.dll - ok
09:26:21.0681 0x0b38 [ 99ABDA9C92EC76CBAF52F00239D909C9, 2959EFBF1C597BABD5D934667255E7B8E098C4C7FEE9DED65C9D04ECA852D7A3 ] C:\Windows\System32\wevtsvc.dll
09:26:21.0681 0x0b38 C:\Windows\System32\wevtsvc.dll - ok
09:26:21.0696 0x0b38 [ DBA90306A721FB922FDACED9E9728C28, 9D1F36D8A17DABED318B3AC4940FF537FFF9C77F6E8CF0EB799A68F5B7B34EB8 ] C:\Windows\System32\cryptui.dll
09:26:21.0696 0x0b38 C:\Windows\System32\cryptui.dll - ok
09:26:21.0696 0x0b38 [ 07721A77180EDD4D39CCB865BF63C7FD, 9E8117E747C86154F98F2686D805A981029CC5D11AFB115A529429C9A4579BE5 ] C:\Windows\System32\audiosrv.dll
09:26:21.0696 0x0b38 C:\Windows\System32\audiosrv.dll - ok
09:26:21.0696 0x0b38 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] C:\Windows\System32\mmcss.dll
09:26:21.0696 0x0b38 C:\Windows\System32\mmcss.dll - ok
09:26:21.0712 0x0b38 [ 78A1E65207484B7F8D3217507745F47C, 35F413ADB9D157F3666DD15DD58104D629CD9143198A1AB914B73A4A3C9903DD ] C:\Windows\System32\avrt.dll
09:26:21.0712 0x0b38 C:\Windows\System32\avrt.dll - ok
09:26:21.0712 0x0b38 [ F381975E1F4346DE875CB07339CE8D3A, 867BFC2E9A08E026289794019B8DE651A8604D06DD6A9BF166C29AFC24B6D26E ] C:\Windows\System32\profsvc.dll
09:26:21.0712 0x0b38 C:\Windows\System32\profsvc.dll - ok
09:26:21.0712 0x0b38 [ 810199DCC3BDC38304D7D649992EA7BC, B72D88A9F03D2BE65D45691AB643D11EC306E654AEB74C6610DC7331FE440110 ] C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\stacsv64.exe
09:26:21.0712 0x0b38 C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\stacsv64.exe - ok
09:26:21.0727 0x0b38 [ 227E2C382A1E02F8D4965E664D3BBE43, 1CFF20A8BF87ACE4FA4935EBEED72BFB1A1FE902A754899E2F50798D67DF5642 ] C:\Windows\System32\MMDevAPI.dll
09:26:21.0727 0x0b38 C:\Windows\System32\MMDevAPI.dll - ok
09:26:21.0727 0x0b38 [ 9110FFAD124283F37D38771BB60556AF, BB495FDF86B7C3DD7878C496090A624CE8FE68F61166C91A4C99EF1140F0AD23 ] C:\Windows\System32\dsound.dll
09:26:21.0727 0x0b38 C:\Windows\System32\dsound.dll - ok
09:26:21.0727 0x0b38 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67, E957E4463D318A44BA5109EE3428624DE901C5FF2BA358986DF6C6F059DDBCC2 ] C:\Windows\System32\adtschema.dll
09:26:21.0727 0x0b38 C:\Windows\System32\adtschema.dll - ok

#11 deathdoc

deathdoc
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  

Posted 18 June 2015 - 11:57 AM

TDSKILLER Conclusion PAGE 4
09:26:21.0743 0x0b38 [ C093E7835C1372D6D70A6675EDAA97B5, 644AC8EE600CD6A16BB6EE0C79EE128385E0C55FBD13CA18867D984F91B4ED99 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6\comctl32.dll
09:26:21.0743 0x0b38 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_fa645303170382f6\comctl32.dll - ok
09:26:21.0743 0x0b38 [ B27EA141A7E748B607600A8551A44D5A, 551636B1E4A4D6CB21E243E2C01DDEA7CF5BACDD290B3A618DDD0055729F0F5E ] C:\Windows\System32\propsys.dll
09:26:21.0743 0x0b38 C:\Windows\System32\propsys.dll - ok
09:26:21.0743 0x0b38 [ EF2AE43BCD46ABB13FC3E5B2B1935C73, 81FC06F306F620845D7DD8D06E706309E70BC89B589C81F3478302A3F5F73431 ] C:\Windows\System32\winmm.dll
09:26:21.0743 0x0b38 C:\Windows\System32\winmm.dll - ok
09:26:21.0759 0x0b38 [ FE05D03B73000CFF476E1D29109F3A84, 7880B025413338A7B114BECB5DC67605FC7A97142C26FD12F765A64A21805842 ] C:\Program Files\Windows Defender\MpEvMsg.dll
09:26:21.0759 0x0b38 C:\Program Files\Windows Defender\MpEvMsg.dll - ok
09:26:21.0759 0x0b38 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] C:\Windows\System32\netprofm.dll
09:26:21.0759 0x0b38 C:\Windows\System32\netprofm.dll - ok
09:26:21.0759 0x0b38 [ 06CA6CB594D4F56EA23311DD3C86E551, 2DA3FC4F1E5DC104EAA46EEEFD66B3845B360CA7A4E3394C02830223C37A88A0 ] C:\Windows\System32\stapi64.dll
09:26:21.0759 0x0b38 C:\Windows\System32\stapi64.dll - ok
09:26:21.0774 0x0b38 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] C:\Windows\System32\wlansvc.dll
09:26:21.0774 0x0b38 C:\Windows\System32\wlansvc.dll - ok
09:26:21.0774 0x0b38 [ 84F8C8B9FB1F12532999D25F5DD7E77C, D3442C2091D35A1483D3C317ED45B77F64BFE882992105DA97A6BF67E265B0D9 ] C:\Windows\System32\shacct.dll
09:26:21.0774 0x0b38 C:\Windows\System32\shacct.dll - ok
09:26:21.0774 0x0b38 [ AECAB449567D1846DAD63ECE49E893E3, 7A67A16A3E04574B7CAD097632ABA9B361BBEFDD6B36B7B8E3A1996EC529C2DC ] C:\Windows\System32\MPSSVC.dll
09:26:21.0774 0x0b38 C:\Windows\System32\MPSSVC.dll - ok
09:26:21.0790 0x0b38 [ 5B3EBFC3DA142324B388DDCC4465E1FF, 5D58642305311F9BC9B779C9598BFC4E7433B3EA58404BF1FF9466838A2328C7 ] C:\Windows\System32\samlib.dll
09:26:21.0790 0x0b38 C:\Windows\System32\samlib.dll - ok
09:26:21.0790 0x0b38 [ 81D64E8D70E5FBF9F7ABF2D41154F54D, 878E5A32AF0E7633830FE313CF9319DE3EBE0A9AA78DCDD525C0A3500A698CB6 ] C:\Windows\System32\AudioSes.dll
09:26:21.0790 0x0b38 C:\Windows\System32\AudioSes.dll - ok
09:26:21.0805 0x0b38 [ D29E998E8277666982B4F0303BF4E7AF, 4F19AB5DC173E278EBE45832F6CEAA40E2DF6A2EDDC81B2828122442FE5D376C ] C:\Windows\System32\uxtheme.dll
09:26:21.0805 0x0b38 C:\Windows\System32\uxtheme.dll - ok
09:26:21.0805 0x0b38 [ D152EBC32A23069F8AA1D1F24B15E3F9, B032CC7CBD715196BEC3B0B7C2DFD1D6169B66CC1770DD4B708951CC87DD871B ] C:\Windows\System32\audiodg.exe
09:26:21.0805 0x0b38 C:\Windows\System32\audiodg.exe - ok
09:26:21.0805 0x0b38 [ F5C26453CC452B5A3CB561195BDE4CF8, 9ECDC2A6B5955D563127E63DF07A39E9450B86982B04C4AC83A26A1098D0E91B ] C:\Windows\System32\stapo64.dll
09:26:21.0805 0x0b38 C:\Windows\System32\stapo64.dll - ok
09:26:21.0821 0x0b38 [ 50544D04AD845C43130B70212EC05CCD, B2E6B558DE7D273512226685FF53ED17C9B4BF81B739FBCA5D3FC82DF8D2BCF7 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
09:26:21.0821 0x0b38 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
09:26:21.0821 0x0b38 [ 01F92AA50D03D67A88579D496311B4B6, 8548A90EE2F755485A39F019641FA837335D536655442FEDAAA99EF0F20553C9 ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_2b4f45e87195fcc4\GdiPlus.dll
09:26:21.0821 0x0b38 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7600.16385_none_2b4f45e87195fcc4\GdiPlus.dll - ok
09:26:21.0821 0x0b38 [ F7866AF72ABBAF84B1FA5AA195378C59, 9D522044FE9C18FB3EC327E675737C01F2A8231DDE900421D3A431596946A7F8 ] C:\Windows\System32\drivers\fltMgr.sys
09:26:21.0821 0x0b38 C:\Windows\System32\drivers\fltMgr.sys - ok
09:26:21.0837 0x0b38 [ 1F4492FE41767CDB8B89D17655847CDD, 184547FAC0C3D7148FAA3F601929A7089DE393BD19929A137DAD743331DD3F77 ] C:\Windows\System32\ntmarta.dll
09:26:21.0837 0x0b38 C:\Windows\System32\ntmarta.dll - ok
09:26:21.0837 0x0b38 [ A3DB3C17EE6CAE65D53602B4E80BCCBC, D802A7C6161F937DC42A6E45FE1BB2C8272819F92C294C180EBCDF8FF72CBFDC ] C:\Windows\System32\PSHED.DLL
09:26:21.0837 0x0b38 C:\Windows\System32\PSHED.DLL - ok
09:26:21.0837 0x0b38 [ B0945E538CF906BBDDC5A11C8EE868CC, 5F3459F6512918835F7C9400905EC7C1FAEAA7114E0D28C522040C359E3B93F7 ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
09:26:21.0837 0x0b38 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
09:26:21.0852 0x0b38 [ 5EDBB34736DD7AC1A73CF8792A835E10, 15E87C449AAF2095273341DD9355D8DF2690340D1DEFAF0DFF034F1CDF4316F8 ] C:\Windows\System32\AudioEng.dll
09:26:21.0852 0x0b38 C:\Windows\System32\AudioEng.dll - ok
09:26:21.0852 0x0b38 [ 3CB6A7286422C72C34DAB54A5DFF1A34, 98D21EFFF511E407336A226420701E82554DA01FA05661303836B6860D63749D ] C:\Windows\System32\dui70.dll
09:26:21.0852 0x0b38 C:\Windows\System32\dui70.dll - ok
09:26:21.0852 0x0b38 [ 6F3C559B82F2912354BE5B098744CC8C, EB64E5C02C81588921A65194E1256E80699A1317E7D9A57395CD38C2639C8B08 ] C:\Windows\System32\WMALFXGFXDSP.dll
09:26:21.0852 0x0b38 C:\Windows\System32\WMALFXGFXDSP.dll - ok
09:26:21.0868 0x0b38 [ 8CCDE014A4CDF84564E03ACE064CA753, DD663029B2EB7B12FDB00FCE403D8326141E540E3B9CE84CD5871473D3E2E2CF ] C:\Windows\System32\duser.dll
09:26:21.0868 0x0b38 C:\Windows\System32\duser.dll - ok
09:26:21.0868 0x0b38 [ 54B5DCD55B223BC5DF50B82E1E9E86B1, 025294DD69A421FE4EACAA463F8CB797610D8F3A7A3C61656AE83D0CEE07A9BF ] C:\Windows\System32\mfplat.dll
09:26:21.0868 0x0b38 C:\Windows\System32\mfplat.dll - ok
09:26:21.0868 0x0b38 [ B2E3D4BB3389817FB5E4CD9378BC8791, 827432B830552DE87D44B0B3D298CC9E17A81C352803D439753135B35F7AAD67 ] C:\Windows\System32\SndVolSSO.dll
09:26:21.0868 0x0b38 C:\Windows\System32\SndVolSSO.dll - ok
09:26:21.0883 0x0b38 [ C469893743E18BA547DB3C7ED98B32F5, CD6FA1900174AF013D312C51753173A39691F0EE5799D1E7AD2604A220D64C2E ] C:\Windows\System32\AESTAR64.dll
09:26:21.0883 0x0b38 C:\Windows\System32\AESTAR64.dll - ok
09:26:21.0883 0x0b38 [ 896F15A6434D93EDB42519D5E18E6B50, 9263F0CEC58D45EBE3FB9C3061FB9392C55A7933B84B4592E6EE13CFC86D5A50 ] C:\Windows\System32\hid.dll
09:26:21.0883 0x0b38 C:\Windows\System32\hid.dll - ok
09:26:21.0883 0x0b38 [ DA1B7075260F3872585BFCDD668C648B, 3E10EF6E1A5C341B478322CB78A0AB7BFC70AD8023779B8B4542A7CB4CA756AB ] C:\Windows\System32\dwmapi.dll
09:26:21.0883 0x0b38 C:\Windows\System32\dwmapi.dll - ok
09:26:21.0899 0x0b38 [ 3D9FC44CA93001B423F89876369F1348, C538E2502402A66415D0591A97E17BA6FB020A5E7031BC54BB0931D94B4F879F ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll
09:26:21.0899 0x0b38 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sluapo64.dll - ok
09:26:21.0899 0x0b38 [ D6F630C1FD7F436316093AE500363B19, 73A94B4938430396EA4240B1A6676B4E6C19CFAF8C52EFB9A69B4B2175A86307 ] C:\Windows\System32\xmllite.dll
09:26:21.0899 0x0b38 C:\Windows\System32\xmllite.dll - ok
09:26:21.0899 0x0b38 [ 58775492FFD419248B08325E583C527F, DBB013971F5894F25C222C2D4D50A29DB6DF3C413792EE9CCC1A9E6D85469093 ] C:\Windows\System32\atl.dll
09:26:21.0899 0x0b38 C:\Windows\System32\atl.dll - ok
09:26:21.0915 0x0b38 [ EA99F234843BBDDA1ABD2767111ADE25, EF578F52BB359DA01465A754EAB6289232F80661774E6C0E1E1469573006CD72 ] C:\Windows\System32\WindowsCodecs.dll
09:26:21.0915 0x0b38 C:\Windows\System32\WindowsCodecs.dll - ok
09:26:21.0915 0x0b38 [ FE5AB4525BC2EC68B9119A6E5D40128B, 088DE37982CEE78A0C1181389A3BFF1E352DF504074B3E8F3EA244DB271BF216 ] C:\Windows\System32\gpsvc.dll
09:26:21.0915 0x0b38 C:\Windows\System32\gpsvc.dll - ok
09:26:21.0915 0x0b38 [ 86E3822A34D454032D8E88C72AE8CF2D, 3A8DA946AFAC023254E9D260BFB796FF356A3978F28DA1FC6B939B0E234C9A64 ] C:\Windows\System32\nlaapi.dll
09:26:21.0915 0x0b38 C:\Windows\System32\nlaapi.dll - ok
09:26:21.0930 0x0b38 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] C:\Windows\System32\themeservice.dll
09:26:21.0930 0x0b38 C:\Windows\System32\themeservice.dll - ok
09:26:21.0930 0x0b38 [ A77BE7CB3222B4FB0AC6C71D1C2698D4, 73566223914BF670DF6B5931FA213E546713531B10391ED65B5256BBD7ABDE7F ] C:\Windows\System32\dsrole.dll
09:26:21.0930 0x0b38 C:\Windows\System32\dsrole.dll - ok
09:26:21.0930 0x0b38 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] C:\Windows\System32\es.dll
09:26:21.0930 0x0b38 C:\Windows\System32\es.dll - ok
09:26:21.0946 0x0b38 [ BE097F5BB10F9079FCEB2DC4E7E20F02, 90A88986C8C5F30FB153EC803FEDA6572B2C2630A6C9578FCC017800692694D5 ] C:\Windows\System32\slc.dll
09:26:21.0946 0x0b38 C:\Windows\System32\slc.dll - ok
09:26:21.0946 0x0b38 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D, 19959D18601712901F03B83150D15E34EBCAB355BB4692C9A28511A72F57FC66 ] C:\Windows\System32\winbrand.dll
09:26:21.0946 0x0b38 C:\Windows\System32\winbrand.dll - ok
09:26:21.0946 0x0b38 [ C2762A57DF0EE85E63CE4893C5215313, DDE22212D78353633CEDE27D7210469DE674563991105563CF64CCCE2D0743BD ] C:\Windows\System32\VaultCredProvider.dll
09:26:21.0946 0x0b38 C:\Windows\System32\VaultCredProvider.dll - ok
09:26:21.0961 0x0b38 [ 2A381A9740165D7A1405148B6DFB3E38, 885241B9ED8A6074D428FDE0B326B2E1A59254CE779B884EE61716F45CDF2712 ] C:\Windows\System32\SmartcardCredentialProvider.dll
09:26:21.0961 0x0b38 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
09:26:21.0961 0x0b38 [ 1A47D52E303B7543E4E6026595B95422, C577CD3837546A7CED5D2E8E97FA2EDACA133B4A8595770EF96CAE519BFE280F ] C:\Windows\System32\comres.dll
09:26:21.0961 0x0b38 C:\Windows\System32\comres.dll - ok
09:26:21.0961 0x0b38 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] C:\Windows\System32\Sens.dll
09:26:21.0961 0x0b38 C:\Windows\System32\Sens.dll - ok
09:26:21.0977 0x0b38 [ BF352E73615F5461AA6884472435A544, 4B059E79325C5F08CD6FBBE6352E17ADB64B9608CC9EDB36A2DF4D148060C309 ] C:\Windows\System32\BioCredProv.dll
09:26:21.0977 0x0b38 C:\Windows\System32\BioCredProv.dll - ok
09:26:21.0977 0x0b38 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] C:\Windows\System32\uxsms.dll
09:26:21.0977 0x0b38 C:\Windows\System32\uxsms.dll - ok
09:26:21.0977 0x0b38 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] C:\Windows\System32\drivers\lltdio.sys
09:26:21.0977 0x0b38 C:\Windows\System32\drivers\lltdio.sys - ok
09:26:21.0993 0x0b38 [ 796B8123A7859AFD3A4AE10514DBAEB5, E76F69FAFEC3D66263ED95F3FA9EE309BDDACB287E30583A147DC97F6EEB8844 ] C:\Windows\System32\winbio.dll
09:26:21.0993 0x0b38 C:\Windows\System32\winbio.dll - ok
09:26:21.0993 0x0b38 [ 97D38371502AA797DB14EB1FA5FCE4CD, 6F71EF6DE07C2A34339726775FF8D8A64254A287B5D1972B55D9874EC9E6912F ] C:\Windows\System32\credui.dll
09:26:21.0993 0x0b38 C:\Windows\System32\credui.dll - ok
09:26:21.0993 0x0b38 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] C:\Windows\System32\drivers\nwifi.sys
09:26:21.0993 0x0b38 C:\Windows\System32\drivers\nwifi.sys - ok
09:26:22.0008 0x0b38 [ 44B9C66177651F3F53C87B665D58D17A, 3FC426115FF87570889DB28D71970B82B525D2A4B9A00EDD273BF083B77A05CE ] C:\Windows\System32\vaultcli.dll
09:26:22.0008 0x0b38 C:\Windows\System32\vaultcli.dll - ok
09:26:22.0008 0x0b38 [ 1C10772935D67F74ABDFE542ECE7551D, A42095C09C1827203DD2A271B116010E8DCBFBB8C21779425018AF92DF4F2C93 ] C:\Windows\System32\netapi32.dll
09:26:22.0008 0x0b38 C:\Windows\System32\netapi32.dll - ok
09:26:22.0008 0x0b38 [ F105BA1E22BF1F2EE8F005D4305E4BEC, 723DA09E13D0F50634D9F114590B837D16F7B36AA0DA2AB8F8C2D9991624EA8F ] C:\Windows\System32\drivers\ndisuio.sys
09:26:22.0008 0x0b38 C:\Windows\System32\drivers\ndisuio.sys - ok
09:26:22.0024 0x0b38 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] C:\Windows\System32\drivers\rspndr.sys
09:26:22.0024 0x0b38 C:\Windows\System32\drivers\rspndr.sys - ok
09:26:22.0024 0x0b38 [ 4C8C2F987FC397DCE98874D6C9C0736A, 005D2CF9311799E8151B7154469D10D9346AFC2E0BF88358E54A091D5D14B970 ] C:\Windows\System32\netutils.dll
09:26:22.0024 0x0b38 C:\Windows\System32\netutils.dll - ok
09:26:22.0024 0x0b38 [ B33CBD1A8C2A33121321D0FEBD7DD870, 248E01B3E88D0243AF4771A18AFCDE3DB04475EFB7D0E426CA1D00358C84A465 ] C:\Windows\System32\wkscli.dll
09:26:22.0024 0x0b38 C:\Windows\System32\wkscli.dll - ok
09:26:22.0039 0x0b38 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] C:\Windows\System32\nsisvc.dll
09:26:22.0039 0x0b38 C:\Windows\System32\nsisvc.dll - ok
09:26:22.0039 0x0b38 [ A87205FE194B239D8D96E4972B779CC1, F392004842E291097385A0C1DC9143356CA195B18638E58E552BA20F386489AC ] C:\Windows\System32\samcli.dll
09:26:22.0039 0x0b38 C:\Windows\System32\samcli.dll - ok
09:26:22.0039 0x0b38 [ F9EC845C5EECF20E9A67F9F805F2EF1F, C3DBA8CF93DBF50954B1BF6D7EF3F6F5DD1A56DC62B7EB2749C54D9B65D9BB43 ] C:\Windows\System32\keyiso.dll
09:26:22.0039 0x0b38 C:\Windows\System32\keyiso.dll - ok
09:26:22.0055 0x0b38 [ 676108C4E3AA6F6B34633748BD0BEBD9, 953286126E482EF3A9A1833680EFF86D657BD6C5411B9AEC2D7828ADE63D25AD ] C:\Windows\System32\dnsrslvr.dll
09:26:22.0055 0x0b38 C:\Windows\System32\dnsrslvr.dll - ok
09:26:22.0055 0x0b38 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] C:\Windows\System32\lmhsvc.dll
09:26:22.0055 0x0b38 C:\Windows\System32\lmhsvc.dll - ok
09:26:22.0055 0x0b38 [ 972C3301DB3DA91AE06A95F6B4160B1B, 678B533A06C306295FE97DC26CE9BAFFC8EAF1FB7405ACB040719099717744D5 ] C:\Windows\System32\certCredProvider.dll
09:26:22.0055 0x0b38 C:\Windows\System32\certCredProvider.dll - ok
09:26:22.0071 0x0b38 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] C:\Windows\System32\eapsvc.dll
09:26:22.0071 0x0b38 C:\Windows\System32\eapsvc.dll - ok
09:26:22.0071 0x0b38 [ 57FE2CFC2F25C200499D5D934EA24EB5, 4802E9A2AE7849AAF1103113A9DB3647CFD7EA7472E712D3A1E768DA81A24F74 ] C:\Windows\System32\IPHLPAPI.DLL
09:26:22.0071 0x0b38 C:\Windows\System32\IPHLPAPI.DLL - ok
09:26:22.0071 0x0b38 [ 4C9210E8F4E052F6A4EB87716DA0C24C, 460F7990BDADB7D58D6DC95B094D30A2EFDC4CEED444B18A2F36E8D9076FB8B9 ] C:\Windows\System32\winnsi.dll
09:26:22.0071 0x0b38 C:\Windows\System32\winnsi.dll - ok
09:26:22.0086 0x0b38 [ 87FA0C48C3B2E9FEE518818FE26B15B5, DA4042DE9897397AEDCEFF9F69746726237305DDE64464309B6DCC45E05E42F4 ] C:\Windows\System32\rasplap.dll
09:26:22.0086 0x0b38 C:\Windows\System32\rasplap.dll - ok
09:26:22.0086 0x0b38 [ 982F5395AD181179320083A4FA7E7CA8, A54205CF9D5C0CE01D1BA079508BABF80F5B35D7DADBB1D64699E9E1D7CF37E8 ] C:\Windows\System32\eapphost.dll
09:26:22.0086 0x0b38 C:\Windows\System32\eapphost.dll - ok
09:26:22.0086 0x0b38 [ FD5BA198F7190DFE9BE1947EB8710396, DF901E8704FE4EFA7E386D0B432BDAF5129C8BBAF635921CEF16A2E016151B80 ] C:\Windows\System32\nrpsrv.dll
09:26:22.0086 0x0b38 C:\Windows\System32\nrpsrv.dll - ok
09:26:22.0102 0x0b38 [ 0040C486584A8E582C861CFB57AB5387, 5EE17B55CB702D14AE75B19226DE21CD2498BDA6C6EF5872FDB8A718F401FED1 ] C:\Windows\System32\FWPUCLNT.DLL
09:26:22.0102 0x0b38 C:\Windows\System32\FWPUCLNT.DLL - ok
09:26:22.0102 0x0b38 [ CE3B9562D997F69B330D181A8875960F, 6FEE6622859198C5C13545867EF7CFE8EDC991360E976F792313DAA9C82CC5C8 ] C:\Windows\System32\dhcpcore.dll
09:26:22.0102 0x0b38 C:\Windows\System32\dhcpcore.dll - ok
09:26:22.0102 0x0b38 [ 885D0942E0F28DB90919BE3129ECF279, 5A10D90EE656ECE3DCA174D6F924641509819FC20CB6EF46B5E1723E52DE85BE ] C:\Windows\System32\dnsext.dll
09:26:22.0102 0x0b38 C:\Windows\System32\dnsext.dll - ok
09:26:22.0117 0x0b38 [ 019CD868461B646E09BDF04474C19341, 01837EFACB02E52BC6E90C90C4CB01B11D56E449A37EA4FC2695507FF85EA9FE ] C:\Windows\System32\rasapi32.dll
09:26:22.0117 0x0b38 C:\Windows\System32\rasapi32.dll - ok
09:26:22.0117 0x0b38 [ 71C7B65B6557B75B99907E76956AE4B8, 38AD0E96D6AD36C0643761D5F5DB7A2802E059008C0984ABF61F4D8703DE4B3B ] C:\Windows\System32\dhcpcore6.dll
09:26:22.0117 0x0b38 C:\Windows\System32\dhcpcore6.dll - ok
09:26:22.0117 0x0b38 [ 2017BFE87CAB3D7EF632CFD2AA08D3F0, 8A03D1EB5091E1C1DBD909CDC401DA2E876B0EA9893126840B8B87426C211992 ] C:\Windows\System32\umb.dll
09:26:22.0117 0x0b38 C:\Windows\System32\umb.dll - ok
09:26:22.0133 0x0b38 [ F568F7C08458D69E4FCD8675BBB107E4, A5FA25ECF248999A68CCECFBB508BFA1ADD18A23E20A9A9081A87C41CAAA36C0 ] C:\Windows\System32\dhcpcsvc.dll
09:26:22.0133 0x0b38 C:\Windows\System32\dhcpcsvc.dll - ok
09:26:22.0133 0x0b38 [ 4CBCC37856EA2039C27A2FB661DDA0E5, 74CBFAB3092A9564BDDFCB84DB3E3F8BCFD1492938ADF187423D3355D73D21C6 ] C:\Windows\System32\dhcpcsvc6.dll
09:26:22.0133 0x0b38 C:\Windows\System32\dhcpcsvc6.dll - ok
09:26:22.0133 0x0b38 [ 48A31B7CF046702059A86836DC21D786, 6876FA74DEBC66D2FA4FCB3009C29ECCD2107F1E103FCE90BC8C29C7360A9168 ] C:\Windows\System32\wlanmsm.dll
09:26:22.0133 0x0b38 C:\Windows\System32\wlanmsm.dll - ok
09:26:22.0149 0x0b38 [ B28DEEC597C8DEB70C744C7CF9210E3E, E777F192D822990CA6301B3FEA2AEA213FA7901438EB3328914ADF02B6C39DB9 ] C:\Windows\System32\rasman.dll
09:26:22.0149 0x0b38 C:\Windows\System32\rasman.dll - ok
09:26:22.0149 0x0b38 [ C1F1090BC239590DF6CAE1807A373DAB, B52D14840CB473EBB12031BE36D62841DB67C07558ECFD556631A4CDA7657D5C ] C:\Windows\System32\rtutils.dll
09:26:22.0149 0x0b38 C:\Windows\System32\rtutils.dll - ok
09:26:22.0149 0x0b38 [ 06A1386B6E3A0CBC368665C1840906F4, C10BCA5092A0B3F9435CE4D65C7449528C89F5C5243B410878D2EBF516DA2FB2 ] C:\Windows\System32\wlansec.dll
09:26:22.0149 0x0b38 C:\Windows\System32\wlansec.dll - ok
09:26:22.0164 0x0b38 [ D2B0D1C2BE5ECA80387F7CB8626DCAFE, 14A269EB190CCF290BECEAC4A7B63B1312ED208F839A6C7B8E4BF74A786CE271 ] C:\Windows\System32\onex.dll
09:26:22.0164 0x0b38 C:\Windows\System32\onex.dll - ok
09:26:22.0164 0x0b38 [ 65522E77A1360DBC8D199DA3BF5EFFE4, E9D748070FA478A3D37F15049F998D340885C0DC5FCE03BFCE5D521C9EBA7350 ] C:\Windows\System32\eappprxy.dll
09:26:22.0164 0x0b38 C:\Windows\System32\eappprxy.dll - ok
09:26:22.0164 0x0b38 [ E2289369AA64C5A2EA496568DB85CF8E, 1BA03017ABF8E957CD3526E7924EDFF5964C639561CD850A4ED53DA8028B52F3 ] C:\Windows\System32\atieclxx.exe
09:26:22.0164 0x0b38 C:\Windows\System32\atieclxx.exe - ok
09:26:22.0180 0x0b38 [ 9BC8610C32C96A2983A65DC21CAFA921, 2A4195F663C9D55939E3D8FEAA208090FDB0B8801A60164A7325B53104797CBC ] C:\Windows\System32\UXInit.dll
09:26:22.0180 0x0b38 C:\Windows\System32\UXInit.dll - ok
09:26:22.0180 0x0b38 [ 0D753307D274F3688BD21C377B616700, 5DD08E77A11F2561FB96BA212FDDFE21D4394C69C34C3EB88F7F5CD068EE55BF ] C:\Windows\System32\eappcfg.dll
09:26:22.0180 0x0b38 C:\Windows\System32\eappcfg.dll - ok
09:26:22.0180 0x0b38 [ 730BF204A595D5B6D7DC57A247CC741C, 264C6901F4A49B738BBD04BCA1783DEE892885BADE9085B0AEA40BAE7CC0A218 ] C:\Windows\System32\wlgpclnt.dll
09:26:22.0180 0x0b38 C:\Windows\System32\wlgpclnt.dll - ok
09:26:22.0195 0x0b38 [ 97E43F324BE1503CB2FFB058534688DA, 50C781DF38D0D38C9A5420AB1FFF8672DC13FD1ED8E9F5432B4BA3077A7435D5 ] C:\Windows\System32\l2gpstore.dll
09:26:22.0195 0x0b38 C:\Windows\System32\l2gpstore.dll - ok
09:26:22.0195 0x0b38 [ 7F1B4C6FF3B85F9ADF74055187B8A22C, CC95DA5662638AACBE9643DCB236464C2C2095A8D5CDC8A747045870BE9D0E7D ] C:\Windows\System32\wlanutil.dll
09:26:22.0195 0x0b38 C:\Windows\System32\wlanutil.dll - ok
09:26:22.0195 0x0b38 [ 22E7431E7DAE8463AF94A79A054276E5, 980EA547B86D3F2DF698FCB6A90200CC993DF4B7EE23BDB749D9179E0DD46944 ] C:\Windows\System32\WinSCard.dll
09:26:22.0195 0x0b38 C:\Windows\System32\WinSCard.dll - ok
09:26:22.0211 0x0b38 [ 3DB79E65E83EEA0601B6F2FF83E76CB0, 54E3259AD54CA535F04722DB7BE548FBB854A60CDC48B0382E0E5047D7F3E1E8 ] C:\Windows\System32\atiadlxx.dll
09:26:22.0211 0x0b38 C:\Windows\System32\atiadlxx.dll - ok
09:26:22.0211 0x0b38 [ 74FFD39A69774524F1FB6A6E7E781494, 31494F12D836704CE039DCAA1A61D78751ADAEFF9B7A1539D0BE1FA576BE7BD4 ] C:\Windows\System32\msxml6.dll
09:26:22.0211 0x0b38 C:\Windows\System32\msxml6.dll - ok
09:26:22.0211 0x0b38 [ 8C6A5A0D335327EA91FF22481E7068C0, AB15FF84E64CFC608C2E3B54731EDB92DC1C7CC39199636B08FFA45CD289975B ] C:\Windows\System32\atimuixx.dll
09:26:22.0211 0x0b38 C:\Windows\System32\atimuixx.dll - ok
09:26:22.0227 0x0b38 [ 5AA945234E9D4CCE4F715276B9AA712C, 65165BD131056816F009D987FC78AC86FFE0C3C38A27E73F873586B7FF4D59CF ] C:\Windows\System32\imageres.dll
09:26:22.0227 0x0b38 C:\Windows\System32\imageres.dll - ok
09:26:22.0227 0x0b38 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF, 1C1D17301A4D37DBF906955CCABD2A3FDA47AFB24CBA978CF851123762249848 ] C:\Windows\System32\shsvcs.dll
09:26:22.0227 0x0b38 C:\Windows\System32\shsvcs.dll - ok
09:26:22.0227 0x0b38 [ 43FAB56AE5F639AD59D7209693F4C4C2, C64155944DA774A80D443A0E6DCC40A3405D9C69CA3EBC95CA46BFD65C7A4908 ] C:\Windows\System32\wlanext.exe
09:26:22.0227 0x0b38 C:\Windows\System32\wlanext.exe - ok
09:26:22.0242 0x0b38 [ F64E8258351E501AA065AC499530367C, BE33C8A82E6EC9A65EAFEF72420EEB2C81ED7F2B217B3C6DED5CEA042E832487 ] C:\Windows\System32\conhost.exe
09:26:22.0242 0x0b38 C:\Windows\System32\conhost.exe - ok
09:26:22.0242 0x0b38 [ EC56B171F85C7E855E7B0588AC503EEA, EDBC0E52DF00D73356F4B886D6CA2397B571A9D2245FEDC347A6D52A5467EA5D ] C:\Windows\System32\schedsvc.dll
09:26:22.0242 0x0b38 C:\Windows\System32\schedsvc.dll - ok
09:26:22.0242 0x0b38 [ CA9D70EC7139D20C6A53F820F27A8BAF, 59EE787EA98E19CF3E063E13566D3498CBDE621BEA338AF317F0AA2986A8D9C9 ] C:\Windows\System32\bcmihvsrv64.dll
09:26:22.0242 0x0b38 C:\Windows\System32\bcmihvsrv64.dll - ok
09:26:22.0258 0x0b38 [ BC414631876B2F28B8DAB08E849C12C5, 5973654AA3E90E6B699B0A43F645B893D95BAA803129B6967D746C8239AB26E3 ] C:\Windows\System32\ktmw32.dll
09:26:22.0258 0x0b38 C:\Windows\System32\ktmw32.dll - ok
09:26:22.0258 0x0b38 [ 1B38A0F123FCF1546FACEAF1EFAFAA00, CC3972B3011078568E548D97202973F374F7BA5BD23B4A52786D23D881281E10 ] C:\Windows\System32\fveapi.dll
09:26:22.0258 0x0b38 C:\Windows\System32\fveapi.dll - ok
09:26:22.0258 0x0b38 [ 694865362F0965779F92BCFE97712323, 825EB75E37AFE9B738869FB5D95020D4F44AD419C2F6C5A658F82A5242FDEF6C ] C:\Windows\System32\tbs.dll
09:26:22.0258 0x0b38 C:\Windows\System32\tbs.dll - ok
09:26:22.0273 0x0b38 [ 891ECFD08E2C538B7948CBC45106D697, 628D0D618FF3A70E9FBE3B2C7206C9365ED2297784A5F10FFA05BD2C56657013 ] C:\Windows\System32\fvecerts.dll
09:26:22.0273 0x0b38 C:\Windows\System32\fvecerts.dll - ok
09:26:22.0273 0x0b38 [ AEFBD8D2C9CE363F84AE0F89036412A6, 9C6749E8827E74E58BEC64092F8F686B83F768CBAC6171F574D5687BC0857F3C ] C:\Windows\System32\taskcomp.dll
09:26:22.0273 0x0b38 C:\Windows\System32\taskcomp.dll - ok
09:26:22.0273 0x0b38 [ 8269210DAF3B12BC8300631B28A2A442, EABEB792C2EA8D4A1A7B13281CF557C194D5667AE0BA2A2D5664908D8269113D ] C:\Windows\System32\wiarpc.dll
09:26:22.0273 0x0b38 C:\Windows\System32\wiarpc.dll - ok
09:26:22.0289 0x0b38 [ 357BE883C5236BFC7341CB9E82308908, 4DDB697FD9B7C516CF99D73C8799EA35BB97E2431216CD7C1045F17B06109FBF ] C:\Windows\System32\wlanapi.dll
09:26:22.0289 0x0b38 C:\Windows\System32\wlanapi.dll - ok
09:26:22.0289 0x0b38 [ 8F6D9A20F1FB06F0602A7D5A82840DBF, 2BC5D14472205C1593D8153DEC48E42A5B5FD27A710DE091052152E0AE6A850E ] C:\Windows\System32\netcfgx.dll
09:26:22.0289 0x0b38 C:\Windows\System32\netcfgx.dll - ok
09:26:22.0289 0x0b38 [ CEE049CAC4EFA7F4E1E4AD014414A5D4, 433AE2D845850F1D7A48275BBD87B3F0E7DD48F2282C727C4B777ECD92CC331D ] C:\Windows\System32\drivers\http.sys
09:26:22.0289 0x0b38 C:\Windows\System32\drivers\http.sys - ok
09:26:22.0305 0x0b38 [ A8EDB86FC2A4D6D1285E4C70384AC35A, 61B8955CE0A2AA9D0719920B30216717B349B6FBE11C697C31CFA84F859CC1AE ] C:\Windows\System32\dllhost.exe
09:26:22.0305 0x0b38 C:\Windows\System32\dllhost.exe - ok
09:26:22.0305 0x0b38 [ A0A2C1D812C231C9BFE119FDC68E341B, F94446594EE17505956A715DFB28B51D09F00A7A65E56950661B889A57DE8FA8 ] C:\Windows\System32\IDStore.dll
09:26:22.0305 0x0b38 C:\Windows\System32\IDStore.dll - ok
09:26:22.0305 0x0b38 [ 3EEFB971D61EF9638FD21F14C703CA11, A01BCD7E884E407C82DEB84D5B31F517F32A4FA2CF143372BAC896CC9478BE0E ] C:\Windows\System32\taskhost.exe
09:26:22.0305 0x0b38 C:\Windows\System32\taskhost.exe - ok
09:26:22.0320 0x0b38 [ 89E8550C5862999FCF482EA562B0E98E, 11BC94FD879DCD22E80DB8FA73CEBD0F072917C546AD9C8B92CCFBF4E0B83056 ] C:\Windows\System32\spoolsv.exe
09:26:22.0320 0x0b38 C:\Windows\System32\spoolsv.exe - ok
09:26:22.0320 0x0b38 [ 23566F9723771108D2E6CD768AC27407, FAC0293DD1061B151E779BF4B245E6652C951FEDEBC602A166156DFBD38B5D67 ] C:\Windows\System32\AtBroker.exe
09:26:22.0320 0x0b38 C:\Windows\System32\AtBroker.exe - ok
09:26:22.0320 0x0b38 [ 94EEAC26F57811BD1AEFC164412F7FCE, 7390BCD7709D48DE75D7D6E06AA7356D1C58EE63F3CC2E07ABCD2E2FF6CC81CF ] C:\Windows\System32\PlaySndSrv.dll
09:26:22.0320 0x0b38 C:\Windows\System32\PlaySndSrv.dll - ok
09:26:22.0336 0x0b38 [ 6CEF7856A3EFAC59470F6208F0F585CE, 0F7A80DB821FDE6580E9481B6DA44844F717DDB4983B0E3D562BE43726153951 ] C:\Windows\System32\mpr.dll
09:26:22.0336 0x0b38 C:\Windows\System32\mpr.dll - ok
09:26:22.0336 0x0b38 [ 6F8F1376A13114CC10C0E69274F5A4DE, 8EFD33E1C5A40C231BCB8ED73277F645BE87AE03FCDBA8134FAC053E90290A9C ] C:\Windows\System32\userinit.exe
09:26:22.0336 0x0b38 C:\Windows\System32\userinit.exe - ok
09:26:22.0336 0x0b38 [ 7F37322A489E285CFBCC02F6A53B3F1B, 7A64799611A5A1B251C4136AC486A4D3D9145E3F95D6056ED0FEE24C7E050472 ] C:\Windows\System32\HotStartUserAgent.dll
09:26:22.0336 0x0b38 C:\Windows\System32\HotStartUserAgent.dll - ok
09:26:22.0351 0x0b38 [ F162D5F5E845B9DC352DD1BAD8CEF1BC, 8A7B7528DB30AB123B060D8E41954D95913C07BB40CDAE32E97F9EDB0BAF79C7 ] C:\Windows\System32\dwm.exe
09:26:22.0351 0x0b38 C:\Windows\System32\dwm.exe - ok
09:26:22.0351 0x0b38 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA, 8A6ACEFAB95E5275CBFBE6CCB5A6C3A6A471260B279B9063E86B9C7765E18656 ] C:\Windows\System32\MsCtfMonitor.dll
09:26:22.0351 0x0b38 C:\Windows\System32\MsCtfMonitor.dll - ok
09:26:22.0351 0x0b38 [ F09A9A1AD21FE618C4C8B0A0D830C886, 29831DDAB2AB105358FBC067CDF96428220B6743CD6019F6FE74BAC7AF325E7E ] C:\Windows\System32\msutb.dll
09:26:22.0351 0x0b38 C:\Windows\System32\msutb.dll - ok
09:26:22.0367 0x0b38 [ EF184066A851E7838D5BF8C8FAE66CC4, 813247114C5AA374585F669ADA5DFD25615D1B15B14518A195995D5BF7A8FA25 ] C:\Windows\System32\dwmredir.dll
09:26:22.0367 0x0b38 C:\Windows\System32\dwmredir.dll - ok
09:26:22.0367 0x0b38 [ 4992C609A6315671463E30F6512BC022, 3020034556EAC25CD90F41D3BFFDD0BB2C3D1C5BAC4359F4B71B84A9FC404495 ] C:\Windows\System32\BFE.DLL
09:26:22.0367 0x0b38 C:\Windows\System32\BFE.DLL - ok
09:26:22.0367 0x0b38 [ 9D8AB964CE511AF81207DF0E1205184C, 35DCB9F5DD59F97337B293EC55C5FADAA41806BA050592790338E34D843DA4B1 ] C:\Windows\System32\dwmcore.dll
09:26:22.0367 0x0b38 C:\Windows\System32\dwmcore.dll - ok
09:26:22.0383 0x0b38 [ 6D4F9E4B640B413C6F73414327484C80, AF3B1DDE1F1A5DE925396924DF9CAB040054DD589533B3976CB3E2963B2C8B0E ] C:\Windows\explorer.exe
09:26:22.0383 0x0b38 C:\Windows\explorer.exe - ok
09:26:22.0383 0x0b38 [ 91CE0D3DC57DD377E690A2D324022B08, 61874463956C0BCA5139522F34E974E5F638A092E0FD5C59DD30DE61D9AB8B0E ] C:\Windows\System32\drivers\bowser.sys
09:26:22.0383 0x0b38 C:\Windows\System32\drivers\bowser.sys - ok
09:26:22.0383 0x0b38 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] C:\Windows\System32\drivers\mpsdrv.sys
09:26:22.0383 0x0b38 C:\Windows\System32\drivers\mpsdrv.sys - ok
09:26:22.0398 0x0b38 [ C67F8A962B2534224D5908D16D2AD3CE, CAC1821F5E867285638AEE7AE33CE574BCCF16277AC5AD805650B48F7759B4B4 ] C:\Windows\System32\wfapigp.dll
09:26:22.0398 0x0b38 C:\Windows\System32\wfapigp.dll - ok
09:26:22.0398 0x0b38 [ CFDCD8CA87C2A657DEBC150AC35B5E08, 8870DCC8CF4E452E25BFE38113ADBDBC4014036B25E567FC262178DAA808049A ] C:\Windows\System32\drivers\mrxsmb.sys
09:26:22.0398 0x0b38 C:\Windows\System32\drivers\mrxsmb.sys - ok
09:26:22.0398 0x0b38 [ 961036B3C6282C646B9ADBC8BB32C983, 47757F19EB8F6E23602A1E2FF34C4BAC2DC1D28B0D63588C5056FE655116F9EB ] C:\Windows\System32\mscms.dll
09:26:22.0398 0x0b38 C:\Windows\System32\mscms.dll - ok
09:26:22.0414 0x0b38 [ D63BEE2A8B22482F7080A8D3F2E1A733, 20E2CC793E55548CA8F6EB7F02D51EEA7632E16302C9213705F3A9684AD9F41F ] C:\Windows\System32\d3d10_1.dll
09:26:22.0414 0x0b38 C:\Windows\System32\d3d10_1.dll - ok
09:26:22.0414 0x0b38 [ 91D8BEFA67DCD56721A02EDEA423EAF8, 7A4E81E1F2DF02409566B51B09B77E31DA61E5B35A4BE65267C6457546A5AC38 ] C:\Windows\System32\d3d10_1core.dll
09:26:22.0414 0x0b38 C:\Windows\System32\d3d10_1core.dll - ok
09:26:22.0414 0x0b38 [ 1BEE517B220B7F024F411AEC1571DD5A, 6DC7638D056DFDE36803BCD691BF73A4AAFD59DE63C0ACD7EA860997FFA3C6E7 ] C:\Windows\System32\drivers\mrxsmb10.sys
09:26:22.0414 0x0b38 C:\Windows\System32\drivers\mrxsmb10.sys - ok
09:26:22.0429 0x0b38 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] C:\Windows\System32\pcasvc.dll
09:26:22.0429 0x0b38 C:\Windows\System32\pcasvc.dll - ok
09:26:22.0429 0x0b38 [ D95DB5C915C001F78709C17285109BDC, 2A538725F8E2E0A394CA58CD262C5159BCA59B12C591EC59F2E052FDAA21F99F ] C:\Windows\System32\dxgi.dll
09:26:22.0429 0x0b38 C:\Windows\System32\dxgi.dll - ok
09:26:22.0429 0x0b38 [ 6B2D5FEF385828B6E485C1C90AFB8195, A960CC0351F200FA56FAC0534C0F9D7F79AAC9CF18A4390CDCA7EA4EE22ED6B6 ] C:\Windows\System32\drivers\mrxsmb20.sys
09:26:22.0429 0x0b38 C:\Windows\System32\drivers\mrxsmb20.sys - ok
09:26:22.0445 0x0b38 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] C:\Windows\System32\snmptrap.exe
09:26:22.0445 0x0b38 C:\Windows\System32\snmptrap.exe - ok
09:26:22.0445 0x0b38 [ 27026EAC8818E8A6C00A1CAD2F11D29A, A12858CCB3B2419D66C667A46B106DA7A7BA97FFFA9634BFAE95DDF193C430D5 ] C:\Windows\System32\wkssvc.dll
09:26:22.0445 0x0b38 C:\Windows\System32\wkssvc.dll - ok
09:26:22.0445 0x0b38 [ A6FB9DB8F1A86861D955FD6975977AE0, 788C6EE50719227D7A9B7F08C8D5E1289FCD0E8AC23A1021A5093D2E8368F696 ] C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe
09:26:22.0445 0x0b38 C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_ccf0dd3cb081af84\AESTSr64.exe - ok
09:26:22.0461 0x0b38 [ 06A7422224D9865A5613710A089987DF, EF604B4B6918D3FDC8E90ED9004E6E7340E0F399C214C65CCE3A7C8C576FA1C0 ] C:\Windows\System32\provsvc.dll
09:26:22.0461 0x0b38 C:\Windows\System32\provsvc.dll - ok
09:26:22.0461 0x0b38 [ 8C57411B66282C01533CB776F98AD384, 65BCF1B0BA521CBE39E974C7ACAEA9C9E3F89D86754275C6B2616E7691876AEE ] C:\Windows\System32\cryptsvc.dll
09:26:22.0461 0x0b38 C:\Windows\System32\cryptsvc.dll - ok
09:26:22.0476 0x0b38 [ 8C2BA6BEA949EE6E68385F5692BAFB94, 1047F473DCE0FB56BEA5C1B7929752C1FBAB5983C8202ABB4EEA48FCD60A353A ] C:\Windows\System32\dps.dll
09:26:22.0476 0x0b38 C:\Windows\System32\dps.dll - ok
09:26:22.0476 0x0b38 [ 40C000910366003F005D60F8148BC55E, 5B6CD0DD0F447E4823EE53D13BF57AFD71659B09B2911F1298D461FC4DB66A2B ] C:\Windows\System32\atidxx64.dll
09:26:22.0476 0x0b38 C:\Windows\System32\atidxx64.dll - ok
09:26:22.0476 0x0b38 [ 862789547AF9694B48BA0D040BF246BC, 19D12AA135127C56FF431299510AF63E1399A03D2BCC9255AE9F34E60C556F8F ] C:\Windows\System32\taskschd.dll
09:26:22.0476 0x0b38 C:\Windows\System32\taskschd.dll - ok
09:26:22.0492 0x0b38 [ A261AD1FDC6D6A658A82B81AF81B215F, 1E967BD93AEC90A68E1B376A6433F0BAF659E7DFEED39EDA34BAF8E4B88FA2D2 ] C:\Windows\System32\vssapi.dll
09:26:22.0492 0x0b38 C:\Windows\System32\vssapi.dll - ok
09:26:22.0492 0x0b38 [ 2DBB169F798F233BC0815A797F5FCE31, A3780732A2BDF4AA821B133BD1482396916BAAC1FD90741832801C65FAA868CD ] C:\Windows\System32\ExplorerFrame.dll
09:26:22.0492 0x0b38 C:\Windows\System32\ExplorerFrame.dll - ok
09:26:22.0492 0x0b38 [ EB043B24D856465A2A21A59E53EEA9CD, B510E32A115444ECC6113BC3B4FFF1A262745C2319E56536B04B59E60951A3A5 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
09:26:22.0492 0x0b38 C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe - ok
09:26:22.0492 0x0b38 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] C:\Windows\System32\sstpsvc.dll
09:26:22.0492 0x0b38 C:\Windows\System32\sstpsvc.dll - ok
09:26:22.0507 0x0b38 [ 287923557447D7E4BDD7E65B1F0F5428, 14D85A0F036F28D77AA9723C3D7E8C4DA9BDFF8A1AD9BEA6FE5756DBF5D00F08 ] C:\Windows\System32\vsstrace.dll
09:26:22.0507 0x0b38 C:\Windows\System32\vsstrace.dll - ok
09:26:22.0507 0x0b38 [ D0B2C365CAB344F1BED8A0DADD507D96, 5963088A25A0B980148CFDED7718F342E5C1CAD6CDBC40BF2186A90437AE5211 ] C:\Windows\SysWOW64\ntdll.dll
09:26:22.0507 0x0b38 C:\Windows\SysWOW64\ntdll.dll - ok
09:26:22.0507 0x0b38 [ 024352FEEC9042260BB4CFB4D79A206B, 60CB39086E10C5B66EBC15E4DF219620B344B4358D2918AB6BB3448A0AC8BE36 ] C:\Windows\System32\EhStorShell.dll
09:26:22.0507 0x0b38 C:\Windows\System32\EhStorShell.dll - ok
09:26:22.0523 0x0b38 [ 0DFBB6B13ACFBDEE0E7DF0FD145614AC, C731F0179720DADA521C26CAB0F13FE1E7BA5D86BA390D6015A418DD94FBC4B2 ] C:\Windows\System32\ntshrui.dll
09:26:22.0523 0x0b38 C:\Windows\System32\ntshrui.dll - ok
09:26:22.0523 0x0b38 [ BFEBE1E4B301F44CEA7C1B4021BD0264, F6984FC40F1731A936A1671A422FF750056418199576EDCD5F9373A23D0D0221 ] C:\Windows\System32\cscapi.dll
09:26:22.0523 0x0b38 C:\Windows\System32\cscapi.dll - ok
09:26:22.0523 0x0b38 [ F99A7E8B9DD9E511769C550E2174E4ED, 207773B827EA8FD675E99414D9975B08E828BC0984F464EB62A3F4FF02D49FFF ] C:\Windows\System32\wow64.dll
09:26:22.0523 0x0b38 C:\Windows\System32\wow64.dll - ok
09:26:22.0539 0x0b38 [ 49E5753D923F1AC63B22D3DCB0B47E00, 14CEC0BF5F625FF839A8D79B4A6B7C4AC0CBB705FD197C6B7FF8617C6C3E34FE ] C:\Windows\System32\uDWM.dll
09:26:22.0539 0x0b38 C:\Windows\System32\uDWM.dll - ok
09:26:22.0539 0x0b38 [ 1D63F4366288B8A7595397E27010FD44, 99EA4DDD88D9C4A4CC9B238F533CB4D2C062D46239173997E8594D8A75811A01 ] C:\Windows\System32\IconCodecService.dll
09:26:22.0539 0x0b38 C:\Windows\System32\IconCodecService.dll - ok
09:26:22.0539 0x0b38 [ 982A28EE7BADBF30B6BC774035DD318F, F818DC2E6696D6518F4DA1A2AA7A10FFF825733B8C48F72451C9D0411CF6EC5B ] C:\Windows\System32\wow64win.dll
09:26:22.0539 0x0b38 C:\Windows\System32\wow64win.dll - ok
09:26:22.0554 0x0b38 [ 5E39878945C109AC68AC81A96DF4EC77, A27F6F6AA2A463B4DDC33996F1CE9C9E9F7B7DB09247B11CB401EF9E11F62320 ] C:\Windows\System32\wow64cpu.dll
09:26:22.0554 0x0b38 C:\Windows\System32\wow64cpu.dll - ok
09:26:22.0554 0x0b38 [ 606ECB76A424CC535407E7A24E2A34BC, 2F579AF0D0F50235CD95DCF4CFA91426F169A75503B1FD5A81D7E0CFC9AA2277 ] C:\Windows\SysWOW64\kernel32.dll
09:26:22.0554 0x0b38 C:\Windows\SysWOW64\kernel32.dll - ok
09:26:22.0554 0x0b38 [ E553135C97982EDACDECDE48D3E38458, 7F530357C47102EA1E6F33281724C702CB785A72A0F412FFC7238EE9F593E8BB ] C:\Windows\SysWOW64\KernelBase.dll
09:26:22.0554 0x0b38 C:\Windows\SysWOW64\KernelBase.dll - ok
09:26:22.0570 0x0b38 [ 6095266CAAF5E75F394CFD4844CC4C25, 99C10DDD9F86D6FC10F5417F7FDE7A48909CDEF53F47D8A2DBFB0B656F89FCA6 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
09:26:22.0570 0x0b38 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
09:26:22.0570 0x0b38 [ E46D48A7FE961401F1CBF85531CDF05D, 24CA38641020FF9E07E16CE3992212E2BFD2759E902D12744D4989ADF11995BF ] C:\Windows\SysWOW64\msvcrt.dll
09:26:22.0570 0x0b38 C:\Windows\SysWOW64\msvcrt.dll - ok
09:26:22.0570 0x0b38 [ 6377051C63D5552A311935C67E9FDFDC, 3FB82988AAB66813567E8DB951D4EE87F156201070F005FDBF52EF998A323E65 ] C:\Windows\SysWOW64\nsi.dll
09:26:22.0570 0x0b38 C:\Windows\SysWOW64\nsi.dll - ok
09:26:22.0585 0x0b38 [ 90385551B6B3793E949DF310A11D64E7, 11AF8D1723F6C57781B200CD78A93686BF26B645ACEEF336FAC7E7E53C4E0946 ] C:\Windows\SysWOW64\rpcrt4.dll
09:26:22.0585 0x0b38 C:\Windows\SysWOW64\rpcrt4.dll - ok
09:26:22.0585 0x0b38 [ CFF35B879D1618D42C86644C717BA947, 1837275202628D3320867A3BF8CFDA15491730C4B74215F7C0D7E140BF01AC3C ] C:\Windows\SysWOW64\winnsi.dll
09:26:22.0585 0x0b38 C:\Windows\SysWOW64\winnsi.dll - ok
09:26:22.0585 0x0b38 [ F08F6FCD09F9BE94C37ACC1B344685FF, DE48D766258B46EFEAB16579421C4BD97ACC6883F782D00E9857F4A0CE7E8A34 ] C:\Windows\SysWOW64\cryptbase.dll
09:26:22.0585 0x0b38 C:\Windows\SysWOW64\cryptbase.dll - ok
09:26:22.0601 0x0b38 [ CFC97F07904067A1E5FAE195D534DA3A, EB4D2D127312EB09E2ACCA3276779E80F90FAF77322684BABF72B8EC6E1F906C ] C:\Windows\SysWOW64\sechost.dll
09:26:22.0601 0x0b38 C:\Windows\SysWOW64\sechost.dll - ok
09:26:22.0601 0x0b38 [ FF5417CED6D8364082E32EFA487A5CE9, 7385D44B6A7283EC555FAA9BCADBAA2D2F85080F9CA6A5198BA1813E9F21362E ] C:\Windows\SysWOW64\sspicli.dll
09:26:22.0601 0x0b38 C:\Windows\SysWOW64\sspicli.dll - ok
09:26:22.0601 0x0b38 [ E8B0FFC209E504CB7E79FC24E6C085F0, 7F756B1DA060D5764C81F8D099E34265186B7E5E6B0FCA08E7FB3989EF4ED0E4 ] C:\Windows\SysWOW64\user32.dll
09:26:22.0601 0x0b38 C:\Windows\SysWOW64\user32.dll - ok
09:26:22.0617 0x0b38 [ E30E5BB0DBA49EFE5BBBAFEA440CFBD9, 70D11382A242DB280FC121DBB95D2810E9139DAB6B66BA5FD58F115E3572649B ] C:\Windows\SysWOW64\wtsapi32.dll
09:26:22.0617 0x0b38 C:\Windows\SysWOW64\wtsapi32.dll - ok
09:26:22.0617 0x0b38 [ FBE1E0B9EF53B5BB7C36763AA6A685CF, E999D53365387DCE50BE8A0FBD5E05222636D8CDDB309A529380076BE778729D ] C:\Windows\SysWOW64\gdi32.dll
09:26:22.0617 0x0b38 C:\Windows\SysWOW64\gdi32.dll - ok
09:26:22.0617 0x0b38 [ 384721EF4024890092625E20CADFAF85, 32FB012437C271CA4408EC60E6858485C2F9489107BBDB7011F728A0D2A26D2C ] C:\Windows\SysWOW64\lpk.dll
09:26:22.0617 0x0b38 C:\Windows\SysWOW64\lpk.dll - ok
09:26:22.0632 0x0b38 [ 0BA19F3198C40AC4E8CC66EE02EDA6C6, 4555FB6ED0F286DF94FEACFEC36BF23E0F586CFA80DEE45C5EA7A0760C967E84 ] C:\Windows\SysWOW64\usp10.dll
09:26:22.0632 0x0b38 C:\Windows\SysWOW64\usp10.dll - ok
09:26:22.0632 0x0b38 [ 0C65FA8214D6F8378D1D3BA1CA46AF0A, C8D0226F39A9DE3B871E84BB6B14975CBBE16A34ADAACBC33ACF726EE6E17104 ] C:\Windows\SysWOW64\advapi32.dll
09:26:22.0632 0x0b38 C:\Windows\SysWOW64\advapi32.dll - ok
09:26:22.0632 0x0b38 [ 1B53CD7FAC0D513A4E827294EB385B7D, 7985B547F17A6E6E7C8D51D0312CADA8D4A1CAC814B0665B1F58098AB7092418 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamsrv.dll
09:26:22.0648 0x0b38 C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamsrv.dll - ok
09:26:22.0648 0x0b38 [ DAAE8A9B8C0ACC7F858454132553C30D, 668A2FF7C4774A73D19E06D0E32B070C3B58FA66D273E647A01EE502A0CEE026 ] C:\Windows\SysWOW64\ws2_32.dll
09:26:22.0648 0x0b38 C:\Windows\SysWOW64\ws2_32.dll - ok
09:26:22.0648 0x0b38 [ 10A2F213B3A9DD13809F3B20F16042E0, 4C07743B50820E89CA1736EF67455B692BC5453472DB189525CD32B10BF15FC4 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\QtCore4.dll
09:26:22.0648 0x0b38 C:\Program Files (x86)\Malwarebytes Anti-Malware\QtCore4.dll - ok
09:26:22.0663 0x0b38 [ 4ACB903AD1693858A918907358CBD9E4, F7A5F4F958EB9A79C842A35CB4EE3947CC1F4F2DB4FCB5C90F8C99EF386009D3 ] C:\Windows\SysWOW64\ole32.dll
09:26:22.0663 0x0b38 C:\Windows\SysWOW64\ole32.dll - ok
09:26:22.0663 0x0b38 [ 0B6D151C261B24CA0E8935873F0F23D6, 1A43056A586A6812F6EEC53E6DF52FD69AC7B98E6920C9CF88AA04F1BCBBF76F ] C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcp100.dll
09:26:22.0663 0x0b38 C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcp100.dll - ok
09:26:22.0663 0x0b38 [ 4E2D4D6DC12983CB8E3E517AADE48E34, 9B728E98A1B09A08D8288F6A5A7E60CFF23A04120E60CC582C73AC577A280F78 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcr100.dll
09:26:22.0663 0x0b38 C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcr100.dll - ok
09:26:22.0679 0x0b38 [ E6B5DE86ABF68D7D67E451C29287B5C5, AFE45D233FFBC190B3F13D357C973D20122B3C08A06BFF1CE70C0D46E44C5532 ] C:\Windows\SysWOW64\crypt32.dll
09:26:22.0679 0x0b38 C:\Windows\SysWOW64\crypt32.dll - ok
09:26:22.0679 0x0b38 [ F5777C29E38E4BF12C6F93A0B2F1B2D7, 9565A1D3BEDECE70CE711A8A975886F3B0BBD9CFC3CBE6654372942EAF61773E ] C:\Windows\SysWOW64\msasn1.dll
09:26:22.0679 0x0b38 C:\Windows\SysWOW64\msasn1.dll - ok
09:26:22.0679 0x0b38 [ A543AC1F7138376D778D630A35FCBC4C, 2D824C66A97FC8C39DAFA397CC47495B712D175EEF393486946DA8936BDD466A ] C:\Windows\SysWOW64\psapi.dll
09:26:22.0679 0x0b38 C:\Windows\SysWOW64\psapi.dll - ok
09:26:22.0695 0x0b38 [ 518C6116079414E7074E726925D07A41, 419DB5CB061EAA5DCC4E6C91E02889C3681DA9F69D663A891FBDC3DF591A9247 ] C:\Windows\SysWOW64\shell32.dll
09:26:22.0695 0x0b38 C:\Windows\SysWOW64\shell32.dll - ok
09:26:22.0695 0x0b38 [ F037DB14CF6165C62F4A64D12A25B07C, 26CE06C858F59691F6D6D41E0031D9CD1ACB9AF24569FC3A0E869C08AA5225B5 ] C:\Windows\SysWOW64\shlwapi.dll
09:26:22.0695 0x0b38 C:\Windows\SysWOW64\shlwapi.dll - ok
09:26:22.0695 0x0b38 [ FADBB267FE9846233ED486DE6EEAAEB9, 7F038884CA763BBEB6E2ACADB4B58DBC5EE9D6A4FDC6C59B5AC8556850E1468E ] C:\Windows\SysWOW64\oleaut32.dll
09:26:22.0695 0x0b38 C:\Windows\SysWOW64\oleaut32.dll - ok
09:26:22.0710 0x0b38 [ 251D5BD37FB81DBDBF3653D81D6CAAC6, E219935C8FD333A2199800DEB957EFC2EC9F4A3225446F46A0448F77C671C37F ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamcore.dll
09:26:22.0710 0x0b38 C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamcore.dll - ok
09:26:22.0710 0x0b38 [ 9C0DC1DAAD14D443DD5A0D1EE78D775E, 73BA5BDF50EB78FA8BF479ADE0F1826FBB161CA70AF1405E06B64F4D2254B42C ] C:\Windows\SysWOW64\userenv.dll
09:26:22.0710 0x0b38 C:\Windows\SysWOW64\userenv.dll - ok
09:26:22.0710 0x0b38 [ C733D233B623B7FFCE5031E4B756EE26, 33CC8B140B0E4A9B702E3468BE2646AEE4273F20C6EA5BAC6C3D8FC8EDEF0881 ] C:\Windows\SysWOW64\profapi.dll
09:26:22.0710 0x0b38 C:\Windows\SysWOW64\profapi.dll - ok
09:26:22.0726 0x0b38 [ 61DA1DD85F7A9A8F8DEA8771931FAAF6, 0712A1EDD6F20FA4C52189A721D4A78B67FA4B7F1BD3AC70C7BA6689CB2D376F ] C:\Windows\SysWOW64\imagehlp.dll
09:26:22.0726 0x0b38 C:\Windows\SysWOW64\imagehlp.dll - ok
09:26:22.0726 0x0b38 [ B9A8CBCFCD3EC9D2EA4740AF347BF108, 97FA304E3880BC863D999F441AE47CB8ADF00D2DEC2A52ACD8FBD02CC096786A ] C:\Windows\SysWOW64\mpr.dll
09:26:22.0726 0x0b38 C:\Windows\SysWOW64\mpr.dll - ok
09:26:22.0726 0x0b38 [ 702254574E7E52052DE39408457B7149, 645CA9E88DA21C63710A04A0F54421018DF415A3D612112C71A255C49325C082 ] C:\Windows\SysWOW64\version.dll
09:26:22.0726 0x0b38 C:\Windows\SysWOW64\version.dll - ok
09:26:22.0741 0x0b38 [ 27CBC636ABCE09CDB5227A872BE7A79C, 3CB803AAC96DD766843DD6D0F5A0EF37A1447240A24E754049AA645AACCEC5E4 ] C:\Windows\SysWOW64\wintrust.dll
09:26:22.0741 0x0b38 C:\Windows\SysWOW64\wintrust.dll - ok
09:26:22.0741 0x0b38 [ 6D5A49D6479EB753C7879F73A4C35E0F, A6009398E643051A8CC3943EDF9B7974F15867720246EFE52EDB09B5B3A30B83 ] C:\Windows\SysWOW64\dnsapi.dll
09:26:22.0741 0x0b38 C:\Windows\SysWOW64\dnsapi.dll - ok
09:26:22.0741 0x0b38 [ 0DE3069D6E09BA262856EF31C941BEFE, 5F73305B7910B486882AFA838F1A0F0104B8FB1C2EAC14623D2028D23A704CA7 ] C:\Windows\SysWOW64\imm32.dll
09:26:22.0741 0x0b38 C:\Windows\SysWOW64\imm32.dll - ok
09:26:22.0757 0x0b38 [ C9618BC9B2B0FD7C1138D8774795A79B, 0AC170669C2626519FA7A745C56BFBA6B83B8537488F5B9EB7BA72448E5E7A43 ] C:\Windows\SysWOW64\msctf.dll
09:26:22.0757 0x0b38 C:\Windows\SysWOW64\msctf.dll - ok
09:26:22.0757 0x0b38 [ 7321F18D1F820612ED0E9F2D4B578A7E, 612BD7DE1DFBD100BD6ACB37A38565D88C39842D990D296B9B8E1FB75C3A94E7 ] C:\Windows\SysWOW64\cryptsp.dll
09:26:22.0757 0x0b38 C:\Windows\SysWOW64\cryptsp.dll - ok
09:26:22.0757 0x0b38 [ ED8EC63F7522DF4852147C84EC62C36A, 75633011CD28DCBD4834211A9D415F17DE15BFCD80FB9FF6CE25CBBD4E9899AF ] C:\Windows\SysWOW64\rsaenh.dll
09:26:22.0757 0x0b38 C:\Windows\SysWOW64\rsaenh.dll - ok
09:26:22.0773 0x0b38 [ D9A0CE66046D6EFA0C61BAA885CBA0A8, 06C3331C7F3EE0E0B95E8302CB80315E965587C4D6231785B8ACF3FAE4731FAF ] C:\Windows\System32\nlasvc.dll
09:26:22.0773 0x0b38 C:\Windows\System32\nlasvc.dll - ok
09:26:22.0773 0x0b38 [ 1727B2A2F379A32B864C096FA794AADC, 87B77A5DF95F3A1C5ED6DEF820C7E384BEFCBAA2FE1BB4781AC6F777A081E5CC ] C:\Windows\System32\aepic.dll
09:26:22.0773 0x0b38 C:\Windows\System32\aepic.dll - ok
09:26:22.0773 0x0b38 [ C6DCD1D11ED6827F05C00773C3E7053C, EA23BE261C9C04F44215D254D7A80FD0AEE84C6F192D0FEE49A7CF74ED3CB1A6 ] C:\Windows\System32\sfc.dll
09:26:22.0773 0x0b38 C:\Windows\System32\sfc.dll - ok
09:26:22.0788 0x0b38 [ 895C9AB0A855547445C4181195230757, 89BDA385D8CCB75C3D7B1BDFA567AC441A931F4E499C0835FEE9D010343FABB6 ] C:\Windows\System32\sfc_os.dll
09:26:22.0788 0x0b38 C:\Windows\System32\sfc_os.dll - ok
09:26:22.0788 0x0b38 [ 107F279517E2A04DB4AC1B1FAF1D573B, 487F505E97288ACA23229D1D421FD62E3A8FE59FA3A504F6C125854DF8BEDE5B ] C:\Windows\System32\ncsi.dll
09:26:22.0788 0x0b38 C:\Windows\System32\ncsi.dll - ok
09:26:22.0788 0x0b38 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] C:\Windows\System32\drivers\PEAuth.sys
09:26:22.0788 0x0b38 C:\Windows\System32\drivers\PEAuth.sys - ok
09:26:22.0804 0x0b38 [ 4552F2FF1FF3720A65619F92965E1ACC, 0CAA315B0871DD822BBB5E5896E5C2B8F71D2DA488951C89E8C37A93204C5223 ] C:\Windows\System32\winhttp.dll
09:26:22.0804 0x0b38 C:\Windows\System32\winhttp.dll - ok
09:26:22.0804 0x0b38 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] C:\Windows\System32\drivers\secdrv.sys
09:26:22.0804 0x0b38 C:\Windows\System32\drivers\secdrv.sys - ok
09:26:22.0804 0x0b38 [ FF604B2C8B39E14421C9DF2D1D3887BD, 55F49D32640B3E2363957616422B0818934C01173972ECC57375DD82769C144F ] C:\Windows\System32\webio.dll
09:26:22.0804 0x0b38 C:\Windows\System32\webio.dll - ok
09:26:22.0819 0x0b38 [ 210FCACAF902B2CD47CF9FD17D846146, 3F77AC721E084864C5966FF5337A90185F62203DC19C685328675500D629CB87 ] C:\Windows\System32\aeevts.dll
09:26:22.0819 0x0b38 C:\Windows\System32\aeevts.dll - ok
09:26:22.0819 0x0b38 [ 26E84D3649019C3244622E654DFCD75B, 49BD7345AF744298698629E0D7C0C373AB2F75F542281268BCF91A6D2B278AA8 ] C:\Windows\System32\drivers\srvnet.sys
09:26:22.0819 0x0b38 C:\Windows\System32\drivers\srvnet.sys - ok
09:26:22.0819 0x0b38 [ 76D078AF6F587B162D50210F761EB9ED, 3813171036B4036306CADC29F877ADAE44B241DDF65B3699C352B7CDA9EC68C9 ] C:\Windows\System32\drivers\tcpipreg.sys
09:26:22.0819 0x0b38 C:\Windows\System32\drivers\tcpipreg.sys - ok
09:26:22.0835 0x0b38 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE, 4EFA41765E46E90C6CBDB0DC1E0CD375D7AB3307C477171EBAA6A16AC32E5211 ] C:\Windows\System32\ssdpapi.dll
09:26:22.0835 0x0b38 C:\Windows\System32\ssdpapi.dll - ok
09:26:22.0835 0x0b38 [ 3C1284516A62078FB68F768DE4F1A7BE, 67ECD462335EF88773E4BAEAB230A68EC92A25F8CD8F115873F669205AE6A1A9 ] C:\Windows\System32\sysmain.dll
09:26:22.0835 0x0b38 C:\Windows\System32\sysmain.dll - ok
09:26:22.0835 0x0b38 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] C:\Windows\System32\wbem\WMIsvc.dll
09:26:22.0835 0x0b38 C:\Windows\System32\wbem\WMIsvc.dll - ok
09:26:22.0851 0x0b38 [ F773D2ED090B7BAA1C1A034F3CA476C8, C8DD8BE37CFEA0DB1B7FC94946381B60553848002E6170E0BEC3FEE40295DF1F ] C:\Windows\System32\drivers\srv2.sys
09:26:22.0851 0x0b38 C:\Windows\System32\drivers\srv2.sys - ok
09:26:22.0851 0x0b38 [ FAF9BA81FB0543CB4B7EFFD24CFA815F, DC876993FDAEE449C228D23942E3CA8C116AEA5F64D55A7C45F5EA0AB61CD62F ] C:\Windows\System32\wbemcomn.dll
09:26:22.0851 0x0b38 C:\Windows\System32\wbemcomn.dll - ok
09:26:22.0851 0x0b38 [ 0255C22D99602534F15CBB8D9B6F152F, 43CD89D6CA56E0B633142F7C86DA9E072EE0723B5EBC4CE8CCBCA58C396ECF54 ] C:\Windows\System32\wbem\WinMgmtR.dll
09:26:22.0851 0x0b38 C:\Windows\System32\wbem\WinMgmtR.dll - ok
09:26:22.0866 0x0b38 [ A7582A70802D5B9F28ED3940F6A3E9ED, 18BA69BF8386610F5EDA4430991C22D895477EA8911B855C951F70AE03CEA8AB ] C:\Windows\System32\wbem\WmiDcPrv.dll
09:26:22.0866 0x0b38 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
09:26:22.0866 0x0b38 [ A3F5E8EC1316C3E2562B82694A251C9E, F3DC6AA6A9D3B5BBC730668FC52C1D4BB5D515D404578BDDD3D4869A7ED58822 ] C:\Windows\System32\wbem\fastprox.dll
09:26:22.0866 0x0b38 C:\Windows\System32\wbem\fastprox.dll - ok
09:26:22.0866 0x0b38 [ EC8F67289105BF270498095F14963464, 454031C8AE06511DD13DBAA613B983516AF937590FB2B8C6ADC273D018D30858 ] C:\Windows\System32\drivers\srv.sys
09:26:22.0866 0x0b38 C:\Windows\System32\drivers\srv.sys - ok
09:26:22.0882 0x0b38 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] C:\Windows\System32\trkwks.dll
09:26:22.0882 0x0b38 C:\Windows\System32\trkwks.dll - ok
09:26:22.0882 0x0b38 [ F8E058D17363EC580E4B7232778B6CB5, 02352919F349C57930A0B032FBDC45327FB473D310DE7AC721F4694FDE7D21FB ] C:\Windows\System32\iphlpsvc.dll
09:26:22.0882 0x0b38 C:\Windows\System32\iphlpsvc.dll - ok
09:26:22.0882 0x0b38 [ EE26D130808D16C0E417BBBED0451B34, 4886DCE4FAEF146A40BABD492A8000A2022FEA542A6135A9BAFD4CD09297B4E5 ] C:\Windows\System32\ntdsapi.dll
09:26:22.0882 0x0b38 C:\Windows\System32\ntdsapi.dll - ok
09:26:22.0897 0x0b38 [ 48A6CA43A5C921C465F70D9B42B3EF1A, A618BCB175D46C0C088CEA98DC4DA8CB255F1D3B0ED72BBCC168AECD07B9F03F ] C:\Windows\System32\sqmapi.dll
09:26:22.0897 0x0b38 C:\Windows\System32\sqmapi.dll - ok
09:26:22.0897 0x0b38 [ 666A60F6F5E719856FF6254E0966EFF7, 58C072E7E215991E19C1CA062C476081982F7B9F039714539AE7FEB4981C200F ] C:\Windows\System32\wbem\wbemprox.dll
09:26:22.0897 0x0b38 C:\Windows\System32\wbem\wbemprox.dll - ok
09:26:22.0897 0x0b38 [ 7B38D7916A7CD058C16A0A6CA5077901, 3F6DD990E2DA5D3BD6D65A72CBFB0FE79EB30B118A8AD71B6C9BB5581A622DCE ] C:\Windows\System32\wdscore.dll
09:26:22.0897 0x0b38 C:\Windows\System32\wdscore.dll - ok
09:26:22.0913 0x0b38 [ C926920B8978DE6ACFE9E15C709E9B57, 33B8002ABC30372B1CA8B6EC046757794CD7C9DA3CA4715B515B6894DC7E45CA ] C:\Windows\System32\srvsvc.dll
09:26:22.0913 0x0b38 C:\Windows\System32\srvsvc.dll - ok
09:26:22.0913 0x0b38 [ 94FBC06F294D58D02361918418F996E3, 62C7CC2AF8F5A0BB0C262DACDE3F72C6AC318C3840CE60E46EE2064B32BDA5EF ] C:\Windows\System32\browser.dll
09:26:22.0913 0x0b38 C:\Windows\System32\browser.dll - ok
09:26:22.0913 0x0b38 [ CFEFA40DDE34659BE5211966EAD86437, AC0A3AD8AA47012C40785013E2273FC571F416BC9C9FFDA418FE72B3123C1FB0 ] C:\Windows\System32\netmsg.dll
09:26:22.0913 0x0b38 C:\Windows\System32\netmsg.dll - ok
09:26:22.0929 0x0b38 [ 836892094209E5D9CF403B4CF2829B5C, C8CB0FCCBF4C7E5E64E1B4225B559E049A25792F99A880DEEC5C66243B6EC2CA ] C:\Windows\System32\sscore.dll
09:26:22.0929 0x0b38 C:\Windows\System32\sscore.dll - ok
09:26:22.0929 0x0b38 [ 4EAE37133B78A26A84EA1649D9B21A1E, 832FE4BCF5E3721267E5E30392C29FC96976F2ABFF5B0BED768F8D97606D8D98 ] C:\Windows\System32\clusapi.dll
09:26:22.0929 0x0b38 C:\Windows\System32\clusapi.dll - ok
09:26:22.0929 0x0b38 [ 344FCC9850C3A8A3B4D3C65151AF8E4C, C38853454E153B1AB4AEAE1AAFB7CB4B2E6234208CF24C09F3B2AFE25E271C5C ] C:\Windows\System32\resutils.dll
09:26:22.0929 0x0b38 C:\Windows\System32\resutils.dll - ok
09:26:22.0944 0x0b38 [ 3B367397320C26DBA890B260F80D1B1B, 50BBE71B4380B5E86E197AF86F5C08266DD6B12344BA4ABDEA604B8C774C4147 ] C:\Windows\System32\hnetcfg.dll
09:26:22.0944 0x0b38 C:\Windows\System32\hnetcfg.dll - ok
09:26:22.0944 0x0b38 [ 6E03C9E362389A768E6C240933352D11, 7A08805635262E0F104DC0E8C3D7CC7E0C941F45EE5C5DC6DD05FC7F2BAD7E91 ] C:\Windows\System32\nci.dll
09:26:22.0944 0x0b38 C:\Windows\System32\nci.dll - ok
09:26:22.0944 0x0b38 [ 3B9665D4B8C587A6014B9B8DFF5974A0, C616EB39D923954B484CEA863CA840E525366916286962D737D04FCCBD3610B8 ] C:\Windows\System32\wbem\wbemcore.dll
09:26:22.0944 0x0b38 C:\Windows\System32\wbem\wbemcore.dll - ok
09:26:22.0960 0x0b38 [ 087D8668C71634A3A3761135ABF16EEE, B7348A63299CFF4FFBF375E645A4850AE0F108D48D13AB25434CFAE7CF3D61FD ] C:\Windows\System32\wbem\esscli.dll
09:26:22.0960 0x0b38 C:\Windows\System32\wbem\esscli.dll - ok
09:26:22.0960 0x0b38 [ 718B6F51AB7F6FE2988A36868F9AD3AB, 76141B4E94C2766E2C34CEF523092948771A7893212EFADBE88D2171B85FF012 ] C:\Windows\System32\wbem\wbemsvc.dll
09:26:22.0960 0x0b38 C:\Windows\System32\wbem\wbemsvc.dll - ok
09:26:22.0960 0x0b38 [ 0143DB80DACFB7C2B5B7009ED9063353, 252885CF7C1BAB89B86908373546E5F5D674BEF7AACBDDCF321AD877CB9150A9 ] C:\Windows\System32\wbem\wmiutils.dll
09:26:22.0960 0x0b38 C:\Windows\System32\wbem\wmiutils.dll - ok
09:26:22.0975 0x0b38 [ 0AB34456654C283DAA13B8D2BA21439B, 4B70FC5195DE39564E951C8542020BA3D4257E3D4488F69825F67A6099CB7549 ] C:\Windows\System32\wbem\repdrvfs.dll
09:26:22.0975 0x0b38 C:\Windows\System32\wbem\repdrvfs.dll - ok
09:26:22.0975 0x0b38 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] C:\Windows\System32\hidserv.dll
09:26:22.0975 0x0b38 C:\Windows\System32\hidserv.dll - ok
09:26:22.0975 0x0b38 [ 88351B29B622B30962D2FEB6CA8D860B, A16CAD7D94C1C9807083BB36E9B4C3C14E6482C4CA2BDFACBCC86E737DDCE42E ] C:\Windows\System32\rasadhlp.dll
09:26:22.0975 0x0b38 C:\Windows\System32\rasadhlp.dll - ok
09:26:22.0991 0x0b38 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] C:\Windows\System32\wdi.dll
09:26:22.0991 0x0b38 C:\Windows\System32\wdi.dll - ok
09:26:22.0991 0x0b38 [ D065BE66822847B7F127D1F90158376E, 20F911F390FF23C2C42361A449C4344DB59F1DC21EDD1E7EBC4E80914DEF7824 ] C:\Windows\System32\appinfo.dll
09:26:22.0991 0x0b38 C:\Windows\System32\appinfo.dll - ok
09:26:22.0991 0x0b38 [ 2E57DDF2880A7E52E76F41C7E96D327B, D24E19B6091C197D77D71BC044CE2E5A57BE0A2F00D1BB0732E380A398230E63 ] C:\Windows\System32\wpdbusenum.dll
09:26:22.0991 0x0b38 C:\Windows\System32\wpdbusenum.dll - ok
09:26:23.0007 0x0b38 [ D891293880F2F00AB7BA959910300EF7, 2C974D3BE5E762694B5270330211D761C35C25C495EA173FC22DCD8820FDAF0A ] C:\Windows\System32\diagperf.dll
09:26:23.0007 0x0b38 C:\Windows\System32\diagperf.dll - ok
09:26:23.0007 0x0b38 [ F7073C962C4FB7C415565DDE109DE49F, 781E7088DCEFBC34A808C3E7DA41A56112B3F23ABE9F54B5EF4D5CD9CD016B1D ] C:\Windows\System32\npmproxy.dll
09:26:23.0007 0x0b38 C:\Windows\System32\npmproxy.dll - ok
09:26:23.0007 0x0b38 [ BF4AC709BE5BF64F331F5D67773A0C82, 96E5A2A12D386B8A7976FEC76FD350E6A3EEBDF5763F4BBF4AB18880E9F269E0 ] C:\Windows\System32\perftrack.dll
09:26:23.0007 0x0b38 C:\Windows\System32\perftrack.dll - ok
09:26:23.0022 0x0b38 [ 5DA7D8934F7AB0884A6A8FC02E8B2AA7, A0B8795965A10B045A6316FCEB48DF389E35E8739EEE4358789A18A7B8140E7A ] C:\Windows\System32\PortableDeviceApi.dll
09:26:23.0022 0x0b38 C:\Windows\System32\PortableDeviceApi.dll - ok
09:26:23.0022 0x0b38 [ 6AB6D4DF10EC784CF4A66CBFAF417A11, 7DD59A6A686736D4CCA4D486BD2FE0A0743AFBA838DBCBDBFF3078080BFA1CF3 ] C:\Windows\System32\runonce.exe
09:26:23.0022 0x0b38 C:\Windows\System32\runonce.exe - ok
09:26:23.0022 0x0b38 [ AFA79C343F9D1555F7E5D5FA70BB2A14, 440EF3ADC1F5C7A5ED3E872C8D8DFA61B039454C3CA67F8A51CA8BDCFDC4BA4A ] C:\Windows\System32\PortableDeviceConnectApi.dll
09:26:23.0022 0x0b38 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
09:26:23.0038 0x0b38 [ 9689A9C7F7C2A1A423CDA2C3B43FFF65, 914AD22D98975578BC14D821F72E8DFCE24F2092F9C299D24EBBAF5408FE8B8B ] C:\Windows\System32\wer.dll
09:26:23.0038 0x0b38 C:\Windows\System32\wer.dll - ok
09:26:23.0038 0x0b38 [ 169F916EFEAA44487E65305B7D2D754B, E87069D36E05133A58638A1CBD765AE3122917B3E0AFA06C8644C861B3ED5A16 ] C:\Windows\SysWOW64\runonce.exe
09:26:23.0038 0x0b38 C:\Windows\SysWOW64\runonce.exe - ok
09:26:23.0038 0x0b38 [ E1B22739C933BE33F53DB58C5393ADD3, 26EE0DD091D2E00DECC774DC1EEDFFDE69AF74B0C769CCBE091AFC32C66E4207 ] C:\Windows\System32\Apphlpdm.dll
09:26:23.0038 0x0b38 C:\Windows\System32\Apphlpdm.dll - ok
09:26:23.0053 0x0b38 [ 9719E3D834F5C8C43F56A93DFA497023, 4D78D4BD4835C0A237821967156C19DF4B90384A6BCB1F48CEAF35D003A0099A ] C:\Windows\System32\pnpts.dll
09:26:23.0053 0x0b38 C:\Windows\System32\pnpts.dll - ok
09:26:23.0053 0x0b38 [ 82BC97E5793DEF69691AAD5AB953A200, E589D638C8FEAA88EA9149E463C675C36FEA4310923C47C095B1EA50B2DC52F6 ] C:\Windows\System32\wbem\WmiPrvSD.dll
09:26:23.0053 0x0b38 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
09:26:23.0053 0x0b38 [ 46863C4CC5B68EB09EA2D5EEF0F1193A, 9B5593E1F484AC8F96F89A5995FB1FE9C51CB2F0F545607F6850751191150CFE ] C:\Windows\System32\radardt.dll
09:26:23.0053 0x0b38 C:\Windows\System32\radardt.dll - ok
09:26:23.0069 0x0b38 [ 0FA436A553408CBEBA070E3182658DE3, 304DA948021759DB08AB37DB9719CAF1BF671AACA1C6497C7CC784FE4EFF9550 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll
09:26:23.0069 0x0b38 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll - ok
09:26:23.0069 0x0b38 [ 65AF044B5570D355124DCD1E099AA98F, 84165B4C2F7EA6DCC52442C50610F363D319B7768A62A7E8B4920D459A3024CD ] C:\Windows\System32\wdiasqmmodule.dll
09:26:23.0069 0x0b38 C:\Windows\System32\wdiasqmmodule.dll - ok
09:26:23.0069 0x0b38 [ D41FEBD098234F02485A4EA98D4730A4, 462DC8168C444F35B43BA3B8F7D77734665D84F1C6D25CAD7391C0145961628F ] C:\Windows\System32\ncobjapi.dll
09:26:23.0069 0x0b38 C:\Windows\System32\ncobjapi.dll - ok
09:26:23.0085 0x0b38 [ 6F40D6FB05E0C1E5402812B426971AF0, E41F138F0F2DB057F8DBB1587237C6FA8A2059B3D64EC894D1DC492A18DBBDED ] C:\Windows\System32\wbem\wbemess.dll
09:26:23.0085 0x0b38 C:\Windows\System32\wbem\wbemess.dll - ok
09:26:23.0085 0x0b38 [ E629F1A051C82795DDFFD3E8D4855811, 6E4DFFEAB2795C98EA6DCAF10EA6D97413D0F8CA0C04869CB20B74FF4D6FE679 ] C:\Windows\System32\dimsjob.dll
09:26:23.0085 0x0b38 C:\Windows\System32\dimsjob.dll - ok
09:26:23.0085 0x0b38 [ 35CB97CBC3EDC463418ED4997AAB29B6, EE60EABE2D87CEDD68FB8985B6C5D70930015FB2B8DB9FDCB4044587BC6ECA4C ] C:\Windows\System32\pautoenr.dll
09:26:23.0085 0x0b38 C:\Windows\System32\pautoenr.dll - ok
09:26:23.0100 0x0b38 [ 43964FA89CCF97BA6BE34D69455AC65F, 10E3B89A5470E1BB6F73382135DD2352F5073C1EE8485D7476CFB5122D4AAA2F ] C:\Windows\SysWOW64\uxtheme.dll
09:26:23.0100 0x0b38 C:\Windows\SysWOW64\uxtheme.dll - ok
09:26:23.0100 0x0b38 [ AAA6D0DF7356BBA706BD67385A103AAB, 4A483A9EEC0F3881C0252E975852A8D96D81DA0CC35C5E2E4F00947E6C2B0A69 ] C:\Windows\System32\certcli.dll
09:26:23.0100 0x0b38 C:\Windows\System32\certcli.dll - ok
09:26:23.0100 0x0b38 [ 41323AB614A2B66AD77B1121D24AC895, 3B441E113365F597F5AA18979AFFD5F7F37F75EBFBBA0AE821ACEE550E3EEC05 ] C:\Windows\SysWOW64\setupapi.dll
09:26:23.0100 0x0b38 C:\Windows\SysWOW64\setupapi.dll - ok
09:26:23.0116 0x0b38 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C, 78889511D6F471009674CC958F8BB77B4A79C952634B18E8AFF4A75AA6A60E87 ] C:\Windows\System32\ndiscapCfg.dll
09:26:23.0116 0x0b38 C:\Windows\System32\ndiscapCfg.dll - ok
09:26:23.0116 0x0b38 [ C178E912A4C491864D78E4F56EC3E27A, 28800DAA944A9F1350081A0D9555913274162247CA5608BF2F834812E2B6D321 ] C:\Windows\System32\CertEnroll.dll
09:26:23.0116 0x0b38 C:\Windows\System32\CertEnroll.dll - ok
09:26:23.0116 0x0b38 [ 3D6AF45673C4B31CDECD7F80AF09D443, 7D711D138C107816155AFA5E5FDC6892734074BEFF604B5904177B5D9ACE4670 ] C:\Windows\System32\rascfg.dll
09:26:23.0116 0x0b38 C:\Windows\System32\rascfg.dll - ok
09:26:23.0131 0x0b38 [ 114429A77D935053E13A9BF98A8B8CA1, 6120CF8EC6D2F262A3FCB0C0BB185DA8BE5F4D5FF6A114D8F54CC13535C31EE5 ] C:\Windows\System32\mprapi.dll
09:26:23.0131 0x0b38 C:\Windows\System32\mprapi.dll - ok
09:26:23.0131 0x0b38 [ 1CF21800E337F4039AAD4C94B4280EE4, EF434CEF6E62A202B85E8EC7916EB998E20B10675437CDE90084CDA938C0AA3F ] C:\Windows\System32\mprmsg.dll
09:26:23.0131 0x0b38 C:\Windows\System32\mprmsg.dll - ok
09:26:23.0131 0x0b38 [ 1FCD619D8542A248D4E1FF72FFB0E56B, FFF35156138B5178F094AE5735EEBFF2AB3E0F71B23FEE24EEEC980C2B2EBF35 ] C:\Windows\System32\tcpipcfg.dll
09:26:23.0131 0x0b38 C:\Windows\System32\tcpipcfg.dll - ok
09:26:23.0147 0x0b38 [ 15B94E4AC75C9295275BDC9A1D7054C3, 1B478C2A60B3CFC066B7FE9A388BC2E29974B4B8A664AFEFA59FD8F18B39DE36 ] C:\Windows\SysWOW64\cfgmgr32.dll
09:26:23.0147 0x0b38 C:\Windows\SysWOW64\cfgmgr32.dll - ok
09:26:23.0147 0x0b38 [ FF5688D309347F2720911D8796912834, 3B0D73C50D40A6F42629B7750F99F656BF5C1C50237D5F98B6C0F2CE5E2DA359 ] C:\Windows\SysWOW64\clbcatq.dll
09:26:23.0147 0x0b38 C:\Windows\SysWOW64\clbcatq.dll - ok
09:26:23.0147 0x0b38 [ CC4ED8BEA78B0DCA6F217E014C3291A7, 01104182E4E6FB3CF6397936D30B2CE3486967586D1B94187B59A8232DAE39FF ] C:\Windows\SysWOW64\devobj.dll
09:26:23.0147 0x0b38 C:\Windows\SysWOW64\devobj.dll - ok
09:26:23.0163 0x0b38 [ 26EAEE08CAF82AA7F03C5020F51DA541, 5541193DD9A16E27339225E6BA4F2664B0B166E9A13D2FFF267F6E15211B5794 ] C:\Windows\SysWOW64\propsys.dll
09:26:23.0163 0x0b38 C:\Windows\SysWOW64\propsys.dll - ok
09:26:23.0163 0x0b38 [ 4AF9FD44342A024B867E1950EE46FCB8, 6A35F91AA62B40D55DBFFF451D68117704066E2990DBD2B654E4B69ED1A305F0 ] C:\Windows\SysWOW64\urlmon.dll
09:26:23.0163 0x0b38 C:\Windows\SysWOW64\urlmon.dll - ok
09:26:23.0163 0x0b38 [ 13D1F490AF6C7649F51BA29F9CCBB778, 2A389A84E14CE601203CED3283B3345A74B040C670BCDF8C2AE22652E314D17C ] C:\Windows\SysWOW64\iertutil.dll
09:26:23.0163 0x0b38 C:\Windows\SysWOW64\iertutil.dll - ok
09:26:23.0178 0x0b38 [ 3FD15B4611D9BDA3F8013548C0ECAECA, B47A8D9985D9B71EB870816A0AB2B6403D394CCBDF7DE5378D5721D58D68D28D ] C:\Windows\SysWOW64\ntmarta.dll
09:26:23.0178 0x0b38 C:\Windows\SysWOW64\ntmarta.dll - ok
09:26:23.0178 0x0b38 [ BFA70A99AD1434263F2DFBBA103BDEF8, 5A0E73D48824C23E2C221EAC369A906FEDECE0E047E8C7E5F012242E74AFAF9E ] C:\Windows\SysWOW64\Wldap32.dll
09:26:23.0178 0x0b38 C:\Windows\SysWOW64\Wldap32.dll - ok
09:26:23.0178 0x0b38 [ 2E2072EB48238FCA8FBB7A9F5FABAC45, AC70B9FC24847EEC2E18008F2894DCDAC19A9C90D5D88729326E493CA524F5C3 ] C:\Windows\System32\winrnr.dll
09:26:23.0178 0x0b38 C:\Windows\System32\winrnr.dll - ok
09:26:23.0194 0x0b38 [ 58A0CDABEA255616827B1C22C9994466, 4FE1140AA8D3995579DE8CDF4ECAD1978804D05351EABB4079A63B303EF1B451 ] C:\Windows\System32\NapiNSP.dll
09:26:23.0194 0x0b38 C:\Windows\System32\NapiNSP.dll - ok
09:26:23.0194 0x0b38 [ C02E3CE20E7776C922B5C8938350B5F1, 4BA2250230BC496ACF5709AD54E99BAC858C298BF09DBC574F8CA365A33E5FFC ] C:\Windows\SysWOW64\apphelp.dll
09:26:23.0194 0x0b38 C:\Windows\SysWOW64\apphelp.dll - ok
09:26:23.0194 0x0b38 [ 613C8CE10A5FDE582BA5FA64C4D56AAA, 30507B6BA79E1A271B07BBA58B4FF463678BE0960266A1D5E88031E932D768B6 ] C:\Windows\System32\pnrpnsp.dll
09:26:23.0194 0x0b38 C:\Windows\System32\pnrpnsp.dll - ok
09:26:23.0209 0x0b38 [ 8AE6DD9A6D246004DA047F704F0CC487, 8DEAB32F7297BCBC22CAA7BAEB2DDB6BF36E73D9A7F68B6737C1E4C75E213CB9 ] C:\Windows\SysWOW64\cmd.exe
09:26:23.0209 0x0b38 C:\Windows\SysWOW64\cmd.exe - ok
09:26:23.0209 0x0b38 [ AC0C9CEA1218DAB1994AF8B28E680BD9, 7C79144AD91C5B578B48DD6412884A58F4E6C23732612655A73486FC7BCE68A0 ] C:\Windows\System32\wlaninst.dll
09:26:23.0209 0x0b38 C:\Windows\System32\wlaninst.dll - ok
09:26:23.0209 0x0b38 [ 5A406C9C8E0880D3EABADC5DFD1ACDAE, D3228D81B30A37DDDBF2E9FECC8885404FB95DBD11C5F55A425B27BD361BC2C1 ] C:\Windows\System32\wwaninst.dll
09:26:23.0209 0x0b38 C:\Windows\System32\wwaninst.dll - ok
09:26:23.0225 0x0b38 [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\System32\rundll32.exe
09:26:23.0225 0x0b38 C:\Windows\System32\rundll32.exe - ok
09:26:23.0225 0x0b38 [ 1E4BDDBD5A63059A97063339B4F8986F, 0EFBD43CEB83B4D72EDD7CE58F81504DFFB6C8E78A185DE1437CFC39E7EB90C0 ] C:\Windows\System32\actxprxy.dll
09:26:23.0225 0x0b38 C:\Windows\System32\actxprxy.dll - ok
09:26:23.0225 0x0b38 [ 326C7F76A29897A892AA7726E91C1C67, 64305346B06EC14976130B0B80F14B4D5AB63E5B2A6A7B872EC9CE2BF8FADCD2 ] C:\Windows\SysWOW64\winbrand.dll
09:26:23.0225 0x0b38 C:\Windows\SysWOW64\winbrand.dll - ok
09:26:23.0241 0x0b38 [ 672ECBB050F17BF90FE00758596F38CA, 692CA91D62B65E562A931BC1437B639658CE65C5290A013B73F051A948AE17F9 ] C:\Windows\SysWOW64\ieframe.dll
09:26:23.0241 0x0b38 C:\Windows\SysWOW64\ieframe.dll - ok
09:26:23.0241 0x0b38 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] C:\Windows\System32\aelupsvc.dll
09:26:23.0241 0x0b38 C:\Windows\System32\aelupsvc.dll - ok
09:26:23.0256 0x0b38 [ CBD010BFBED9657C3813400AAD03CF8A, 2DD60A291D8F4A44D7D638C83A46CFA618525A72B9D975FB81F8F403699B9AE6 ] C:\Windows\SysWOW64\oleacc.dll
09:26:23.0256 0x0b38 C:\Windows\SysWOW64\oleacc.dll - ok
09:26:23.0256 0x0b38 [ E07B77C3BDC82A024E294FB67ABFEDA0, B7ADCD536544F4C59748562504824B252B503E0C6DFF8D94512A88EE4A38B0E0 ] C:\Windows\SysWOW64\shdocvw.dll
09:26:23.0256 0x0b38 C:\Windows\SysWOW64\shdocvw.dll - ok
09:26:23.0256 0x0b38 [ 9C5DAAED3B3C06DBC95228CC407B8B70, E306E5C4A1C0D4B63840E38098B9FF2F4267FA4F519C7841E5A0C25A8DFF96D8 ] C:\Users\DeathDoc\AppData\Local\Temp\{13DD688B-EF8F-47C4-AC04-2F5E8D1FF237}.exe
09:26:23.0256 0x0b38 C:\Users\DeathDoc\AppData\Local\Temp\{13DD688B-EF8F-47C4-AC04-2F5E8D1FF237}.exe - ok
09:26:23.0272 0x0b38 [ C20FF1A17726C357461A7AC5B3BFC3AD, 970558642CC14837B77B48257E3171ACC84466888875927314ACD6D79176F967 ] C:\Windows\SysWOW64\ncrypt.dll
09:26:23.0272 0x0b38 C:\Windows\SysWOW64\ncrypt.dll - ok
09:26:23.0272 0x0b38 [ CE71B9119A258EDD0A05B37D7B0F92E3, D9310C5BBFE089B8C81E259C462EC1E6D7A7A87FA59FC1F174ED5C58D409AE7A ] C:\Windows\SysWOW64\bcrypt.dll
09:26:23.0272 0x0b38 C:\Windows\SysWOW64\bcrypt.dll - ok
09:26:23.0272 0x0b38 [ E8449FE262D7406BCB2AC2A45C53EC5F, 6C118C9FB26404D1943824CF3990F36E12986547FFACB7CC0DF975A913065D78 ] C:\Windows\SysWOW64\bcryptprimitives.dll
09:26:23.0272 0x0b38 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
09:26:23.0287 0x0b38 [ 1097F3035BAF46CED8B332B3564C5108, C69781683CA963A1335780DABBBC60E2C3CEF0888738D3425D358D12E8D0AF58 ] C:\Windows\SysWOW64\gpapi.dll
09:26:23.0287 0x0b38 C:\Windows\SysWOW64\gpapi.dll - ok
09:26:23.0287 0x0b38 [ 04D16553664796613FE98D441A0C35D7, EC9D4B3B8F8B0C3EE01D18CDF5BE9EF216AC9BBB1FB64A63D5013BD9AFB2A606 ] C:\Windows\SysWOW64\cryptnet.dll
09:26:23.0287 0x0b38 C:\Windows\SysWOW64\cryptnet.dll - ok
09:26:23.0287 0x0b38 [ 6F8E3B7B70E1BBA871212940C1FBDF60, 3F9D4EE64E4210340C6FEE0DE81BFE3C613DDBE608EC09D63817D24CE24BFC5E ] C:\Windows\SysWOW64\SensApi.dll
09:26:23.0287 0x0b38 C:\Windows\SysWOW64\SensApi.dll - ok
09:26:23.0287 0x0b38 [ DEF30CBEA881149C2AFFDF9A059FB759, F0F4DFBD8B6B80FFE3F019380E44EFD276FBD1A99E6135088E042E78EC2C6515 ] C:\Windows\SysWOW64\cabinet.dll
09:26:23.0287 0x0b38 C:\Windows\SysWOW64\cabinet.dll - ok
09:26:23.0303 0x0b38 [ FD07F21E0A19C27ED4E1EEC2B07452B3, DF54C00B021AF64BB04EDEBCA6F41CCF48F1959DD53ADE545FAFC565F1243392 ] C:\Windows\SysWOW64\devrtl.dll
09:26:23.0303 0x0b38 C:\Windows\SysWOW64\devrtl.dll - ok
09:26:23.0303 0x0b38 [ D757F59EED634C595727534B60E640B8, 58ECD28FB62DB9F2302E21E00F253542FA6D450D36685A11012C827324D0C00D ] C:\Windows\SysWOW64\winhttp.dll
09:26:23.0303 0x0b38 C:\Windows\SysWOW64\winhttp.dll - ok
09:26:23.0303 0x0b38 [ 7F739F89F7F60221740DA9DE1B1DABB6, 7FB3E2DF211826B097FEDB8335DB2CC0206823B440897478C1E77169E4033D66 ] C:\Windows\SysWOW64\webio.dll
09:26:23.0303 0x0b38 C:\Windows\SysWOW64\webio.dll - ok
09:26:23.0319 0x0b38 [ BF591B5C2CC38314518467E883AE37C5, AE87A8812B9836440094558D198B15C1EBD333E1F739295BE80F8D7BA23B05DF ] C:\Windows\SysWOW64\credssp.dll
09:26:23.0319 0x0b38 C:\Windows\SysWOW64\credssp.dll - ok
09:26:23.0319 0x0b38 [ 11A41F17527ED75D6B758FDD7F4FD00D, A646BA0BAA992A7B98C813AD8D834D57F27DB6F7F0F3200F68CB8B99F4C5D731 ] C:\Windows\SysWOW64\mswsock.dll
09:26:23.0319 0x0b38 C:\Windows\SysWOW64\mswsock.dll - ok
09:26:23.0319 0x0b38 [ EE5C8E27C37B79CB54A2FCEEED2DC262, 0A5E200FD65A491756B951A4A0ED39B88B7B313E97C2BBF3C91AC4C290772BB7 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
09:26:23.0319 0x0b38 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
09:26:23.0334 0x0b38 [ 73E8667A19FEEDD856DF2695E9E511D4, 68D66C36D1F293D10ADCC6A33C870F989A29743537592CF172F02E794BEAFD1C ] C:\Windows\SysWOW64\wship6.dll
09:26:23.0334 0x0b38 C:\Windows\SysWOW64\wship6.dll - ok
09:26:23.0334 0x0b38 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3, 2A610BEB16610FE2F2E9A50477A62A05481E8A5843A814955A0EDFF45D0304B3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
09:26:23.0334 0x0b38 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
09:26:23.0334 0x0b38 [ 29CA5974FAB0E8AE4AA7814FE05CF832, ADE54D406AAB7C364851AAD278A569426C9ADD4F7FB543BB08428CED963BF541 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
09:26:23.0334 0x0b38 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
09:26:23.0350 0x0b38 [ ED6EE83D61EBC683C2CD8E899EA6FEBE, F82592908D038C44D9F2E5C5B7BC663A2D370FC565F40420E1138A9E55F0E7EB ] C:\Windows\SysWOW64\rasadhlp.dll
09:26:23.0350 0x0b38 C:\Windows\SysWOW64\rasadhlp.dll - ok
09:26:23.0350 0x0b38 [ 158117F3CF278F01C6F24E89E2141E81, F8178F093F09A6DB981019D2D0D514145B170D1377FE3C2479028D915663E28F ] C:\Windows\SysWOW64\FWPUCLNT.DLL
09:26:23.0350 0x0b38 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
09:26:23.0350 0x0b38 [ 39C5F32747B3414D1BB216FDB1DEFC58, 6FAE64CB9748304090113903A5AE9E7154BE16BA2EEA7AB3EF04AB9D79B81380 ] C:\Windows\SysWOW64\dwmapi.dll
09:26:23.0350 0x0b38 C:\Windows\SysWOW64\dwmapi.dll - ok
09:26:23.0365 0x0b38 [ 691C8DFB208227F0CBB5C0897C742ACE, 3240EAFF8182D1E8C8EA4642D2BF7A6EF19DCA2618E0C20B1FC6E81C277B8649 ] C:\Windows\SysWOW64\WindowsCodecs.dll
09:26:23.0365 0x0b38 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
09:26:23.0365 0x0b38 [ 846D0E4DB261CFAF363902E41498E961, D7E5591B7604FD583AF7FDA19E30928B24A6145318A3944E7D207F0CCEEB30D0 ] C:\Windows\SysWOW64\EhStorShell.dll
09:26:23.0365 0x0b38 C:\Windows\SysWOW64\EhStorShell.dll - ok
09:26:23.0381 0x0b38 [ 36333D345062E42E849C0AF00CBEFC97, 3E375720C5A3E116CC22416BAFD61F06BD508ED0A628DD393FB8F065F0F1EAA5 ] C:\Windows\SysWOW64\ntshrui.dll
09:26:23.0381 0x0b38 C:\Windows\SysWOW64\ntshrui.dll - ok
09:26:23.0381 0x0b38 [ 89D840773C9C4358A5031DCC860449EC, F6C241D73E05A95B7C81C12979FF625BFD89C12CDD13193AA137E02A8C0046F2 ] C:\Windows\SysWOW64\srvcli.dll
09:26:23.0381 0x0b38 C:\Windows\SysWOW64\srvcli.dll - ok
09:26:23.0381 0x0b38 [ ADD9D33D685DFADDFAD5AFB42CF31A70, 8E0D2D0CEFC59548BED08D36D55865D8633E1512AE81D93F728F3D9631A3CC6F ] C:\Windows\SysWOW64\cscapi.dll
09:26:23.0381 0x0b38 C:\Windows\SysWOW64\cscapi.dll - ok
09:26:23.0397 0x0b38 [ 8B74CEC6980D4816B0037AE9A27E538F, 8721EDB4C51BF6020002FA5DDB1987C68590F9F433A2F18D9756B2DAC7542CB6 ] C:\Windows\SysWOW64\slc.dll
09:26:23.0397 0x0b38 C:\Windows\SysWOW64\slc.dll - ok
09:26:23.0397 0x0b38 [ 827CB0D6C3F8057EA037FF271F8E9795, 82760DBDDD38D2A31CAAF51D065DF4E7E1D0F0C22733A0AF653776EBF7B79470 ] C:\Windows\SysWOW64\imageres.dll
09:26:23.0397 0x0b38 C:\Windows\SysWOW64\imageres.dll - ok
09:26:23.0397 0x0b38 [ 198803E5E93E29967DFB0BCFD0186151, 72C3B0FA35578A71E9988FA31A7AD91A9CF31A6BA6EC00EA1F153E99277807BF ] C:\Windows\System32\spfileq.dll
09:26:23.0397 0x0b38 C:\Windows\System32\spfileq.dll - ok
09:26:23.0412 0x0b38 [ C1BDC97E8C9404245DE87F1EF08D1764, 537043D7EF12C518198B70012A01D323A192F4416C6A37F490123DF0BE4CD18B ] C:\Windows\System32\taskeng.exe
09:26:23.0412 0x0b38 C:\Windows\System32\taskeng.exe - ok
09:26:23.0412 0x0b38 [ 805A52C5AE26C28E88FDD9BCCFE6F312, 4FF28D3658C31722B7DD036DED9D544B14841C0E0B94D31A8EC5AB92128DA020 ] C:\Windows\System32\TSChannel.dll
09:26:23.0412 0x0b38 C:\Windows\System32\TSChannel.dll - ok
09:26:23.0412 0x0b38 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9, E18D66455D00A6D2A2D7CC0833C233FE8A6DD910B59D6B5B5F82EF91450858DF ] C:\Windows\SysWOW64\sfc.dll
09:26:23.0412 0x0b38 C:\Windows\SysWOW64\sfc.dll - ok
09:26:23.0428 0x0b38 [ 84799328D87B3091A3BDD251E1AD31F9, F85521215924388830DBB13580688DB70B46AF4C7D82D549D09086438F8D237B ] C:\Windows\SysWOW64\sfc_os.dll
09:26:23.0428 0x0b38 C:\Windows\SysWOW64\sfc_os.dll - ok
09:26:23.0428 0x0b38 [ C6BB27D9A8AC13D4A44486F528B5C884, 9624D886A3EBA94E61F90F62BD9A823B799C3A3B9C0E4C59E49824FEBBB18D77 ] C:\Windows\SysWOW64\netutils.dll
09:26:23.0428 0x0b38 C:\Windows\SysWOW64\netutils.dll - ok
09:26:23.0428 0x0b38 [ 03FDE416C235A3FBF32C196ED62FCF8A, 3FA8D9E7868B92EDC60A6384B9A4F4DDA5636F62B5141A5BB5088656B65F67D8 ] C:\Windows\System32\iedkcs32.dll
09:26:23.0428 0x0b38 C:\Windows\System32\iedkcs32.dll - ok
09:26:23.0443 0x0b38 [ 6D220604AA4240303DD8DEAEAB428377, 0AC013CFA8F8040017969B3110BBD3B9A4827E0DFC4BE65F334F607248DF9550 ] C:\Windows\System32\ie4uinit.exe
09:26:23.0443 0x0b38 C:\Windows\System32\ie4uinit.exe - ok
09:26:23.0443 0x0b38 [ 740304CDCAA54E4312DEDA7F288CEB06, D25865623A9EC30ED9007ABAE7100ED4668100D5136E3B99EEB97F6FF2D96623 ] C:\Windows\System32\themeui.dll
09:26:23.0443 0x0b38 C:\Windows\System32\themeui.dll - ok
09:26:23.0443 0x0b38 [ C3C32FE6F59BF9863C924C7ED7328834, 98717226EE8D26E952C2FA8E9272D80911B60FBA6C9D20932CC99082D8D9D2C5 ] C:\Windows\System32\timedate.cpl
09:26:23.0443 0x0b38 C:\Windows\System32\timedate.cpl - ok
09:26:23.0459 0x0b38 [ FBE8EBF528DC49B3DEB186CA9545D97E, 9A5BFB1975822B09C453DC62B241A6F4FC1F1F98D67506FB08A136AC4FA904F3 ] C:\Windows\System32\shdocvw.dll
09:26:23.0459 0x0b38 C:\Windows\System32\shdocvw.dll - ok
09:26:23.0459 0x0b38 [ A0A65D306A5490D2EB8E7DE66898ECFD, CE5DA408F4EDD5E81CE0925867F03C9A35172CF1571FE4C4C052E45AB69822BB ] C:\Windows\System32\linkinfo.dll
09:26:23.0459 0x0b38 C:\Windows\System32\linkinfo.dll - ok
09:26:23.0459 0x0b38 [ 14F5C0DB4B2C47874D6C937A5A1B367C, B59C4FB22138F8F0C9B85337D79B8353C9A6722F83CF9DC16F0CDC289379F14A ] C:\Windows\System32\gameux.dll
09:26:23.0459 0x0b38 C:\Windows\System32\gameux.dll - ok
09:26:23.0475 0x0b38 [ 46EDD0A6B42BA5D2044FA0909BE4BE95, 0007398C004C9AB40DA086A712AFAF1FB6C8D1D23821628F185ED49B2AD95EF5 ] C:\Windows\System32\msftedit.dll
09:26:23.0475 0x0b38 C:\Windows\System32\msftedit.dll - ok
09:26:23.0475 0x0b38 [ 7CB3ACB163DE051169095DC6507B8977, 45D4DEB0695440D8B5E959945B3F7A773E02E2AB305E316123A1064FC1905402 ] C:\Windows\System32\msls31.dll
09:26:23.0475 0x0b38 C:\Windows\System32\msls31.dll - ok
09:26:23.0475 0x0b38 [ 435AFCEBC01BE92CF988F86A64DE5B4E, 4C0244F183F304BAD355131BA9FEE606EF9704A0FE758F719ADE9552206A057F ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
09:26:23.0475 0x0b38 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe - ok
09:26:23.0490 0x0b38 [ 7A2C26459B599A2D6D5401F73ACA1981, EABDE03BE7F10A3A1CF9E0A38B834F9B48A14D921C63121645DF0906526BB661 ] C:\Program Files\IDT\WDM\sttray64.exe
09:26:23.0490 0x0b38 C:\Program Files\IDT\WDM\sttray64.exe - ok
09:26:23.0490 0x0b38 [ DD76912E8D165C68659D9875256710A3, 0DDD342EBCC2EE2D023FF6E94A2DB2822A5CC38C747A9226B253BF99F8BCF639 ] C:\Windows\System32\DeviceCenter.dll
09:26:23.0490 0x0b38 C:\Windows\System32\DeviceCenter.dll - ok
09:26:23.0490 0x0b38 [ A09533A0395A06F47143CAFB6DCED04A, 8872EA7DE924FF5AF7579D38898D7C4AA9980B879115BFEE827693E67A51D1A5 ] C:\Windows\System32\mfc42u.dll
09:26:23.0490 0x0b38 C:\Windows\System32\mfc42u.dll - ok
09:26:23.0506 0x0b38 [ CABF1DF6108BDE0EA1FDFAA67FA02760, 2CEB8E3C2A222C7542B5108DE8280956A12496497FA65709E3830AF8B8141DD5 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
09:26:23.0506 0x0b38 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe - ok
09:26:23.0506 0x0b38 [ F468C806267D46B68DB7EB32FBF0A103, 6454E84A39E4B6E11BEC99357ADBD1CA039F7BBDDF9036ACD8F3B0AB6608A60B ] C:\Windows\System32\thumbcache.dll
09:26:23.0506 0x0b38 C:\Windows\System32\thumbcache.dll - ok
09:26:23.0506 0x0b38 [ C586EE2DAB4BF42A291B8A6B6EE928F0, C11C1F8689ECB9A5F4C4570AB512965DDA93F89BBB441A2E7147BA27D6037611 ] C:\Windows\System32\odbc32.dll
09:26:23.0506 0x0b38 C:\Windows\System32\odbc32.dll - ok
09:26:23.0521 0x0b38 [ D50B225D4B6462994A898D1F53346DDD, 76C04E13539C20A633593CFE1CF8A0A72B5402F40012713984ECCDB277A941C0 ] C:\Windows\System32\SynCOM.dll
09:26:23.0521 0x0b38 C:\Windows\System32\SynCOM.dll - ok
09:26:23.0521 0x0b38 [ 8BC7AE7E16458355508ECF5EC3A04E72, 39FE3D8E0D42D51809E33160DEA291E732615DB1C6EA24558B3731349F6F9A2E ] C:\Windows\System32\networkexplorer.dll
09:26:23.0521 0x0b38 C:\Windows\System32\networkexplorer.dll - ok
09:26:23.0521 0x0b38 [ 157D03CB68A888128E0F7205F0222B31, 1301E6B81BD066BAF2FBE105A6D9E8AA5CE69EFE673CEE6F7CDB4347F8ADFD48 ] C:\Windows\SysWOW64\atiadlxy.dll
09:26:23.0521 0x0b38 C:\Windows\SysWOW64\atiadlxy.dll - ok
09:26:23.0537 0x0b38 [ 579FAC74640BE728403021975AD73C89, CA151472961E6718C995A65A896B934FF1C0F8D92BDD4104340EADE5AB98F35F ] C:\Windows\System32\SynTPAPI.dll
09:26:23.0537 0x0b38 C:\Windows\System32\SynTPAPI.dll - ok
09:26:23.0537 0x0b38 [ 31FF084BFAA35307DBAB4FA60CF7DBB7, E66395F85479060E8C686B7B96060D68058962EDD08236992BAA0AF15D4AA774 ] C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
09:26:23.0537 0x0b38 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe - ok
09:26:23.0537 0x0b38 [ A018C8A668A4CC53EFF1070F84061800, FF9A9603097384E4FD5621E0099A06F29B539B2E676B6114943364B85A1F5BFE ] C:\Windows\System32\consent.exe
09:26:23.0537 0x0b38 C:\Windows\System32\consent.exe - ok
09:26:23.0553 0x0b38 [ E424B3EF666B184CEE0B6871AAA8C9F6, D182D9B3A813C75F88CA16A9C236AB6167DF5861D155B5DC016B90918C4BD579 ] C:\Windows\System32\msimg32.dll
09:26:23.0553 0x0b38 C:\Windows\System32\msimg32.dll - ok
09:26:23.0553 0x0b38 [ 1737183424D10E716D4035C5CA2ECAB4, 73DA5DC00DB761396955A8C5FB3F9B75CD27EF4061E620B7326FB40BC6EADEC9 ] C:\Windows\System32\cryptnet.dll
09:26:23.0553 0x0b38 C:\Windows\System32\cryptnet.dll - ok
09:26:23.0553 0x0b38 [ B837D1528CE2E3CB79F09496BC08DDC6, ACD54CE61CFE94F23DC283537AD8FFBEB3D6041BD30317B60BA7A10FCB240A27 ] C:\Windows\System32\SensApi.dll
09:26:23.0553 0x0b38 C:\Windows\System32\SensApi.dll - ok
09:26:23.0568 0x0b38 [ 8CCAC20D08D0B5B3717F211D12C38D35, E73F8A43EE0514813D002B823C4A23B476579969EC7EA9258720AACFEF177D49 ] C:\Program Files\IDT\WDM\stlang64.dll
09:26:23.0568 0x0b38 C:\Program Files\IDT\WDM\stlang64.dll - ok
09:26:23.0568 0x0b38 [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{FBC7D07A-53D1-48F2-9D65-B3994D293E51}.tmp
09:26:23.0568 0x0b38 C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{FBC7D07A-53D1-48F2-9D65-B3994D293E51}.tmp - ok
09:26:23.0568 0x0b38 [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{0A9977FB-C4E7-4CC3-9320-A8A232ADF46A}.tmp
09:26:23.0568 0x0b38 C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{0A9977FB-C4E7-4CC3-9320-A8A232ADF46A}.tmp - ok
09:26:23.0584 0x0b38 [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{254BC179-198B-487F-942C-00EDC2A20C95}.tmp
09:26:23.0584 0x0b38 C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{254BC179-198B-487F-942C-00EDC2A20C95}.tmp - ok
09:26:23.0584 0x0b38 [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{1F147A01-CAD3-4CBF-A780-69D9FDA38ABC}.tmp
09:26:23.0584 0x0b38 C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{1F147A01-CAD3-4CBF-A780-69D9FDA38ABC}.tmp - ok
09:26:23.0584 0x0b38 [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{2E136EA3-3538-47F1-92F7-CFC16C8FDD6F}.tmp
09:26:23.0584 0x0b38 C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{2E136EA3-3538-47F1-92F7-CFC16C8FDD6F}.tmp - ok
09:26:23.0599 0x0b38 [ 64E6A44177ACF348D68255A37F4723DA, 5D66D94A347BC43D0D8157CC5A24ABAF2F60B5DBEB2B1527C251452128E00EE2 ] C:\Windows\System32\cabinet.dll
09:26:23.0599 0x0b38 C:\Windows\System32\cabinet.dll - ok
09:26:23.0599 0x0b38 [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{68033921-3839-4574-B916-545EC3725694}.tmp
09:26:23.0599 0x0b38 C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{68033921-3839-4574-B916-545EC3725694}.tmp - ok
09:26:23.0599 0x0b38 [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{0351BCEF-43DA-4FCC-99F2-67F88F6E4FB4}.tmp
09:26:23.0599 0x0b38 C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{0351BCEF-43DA-4FCC-99F2-67F88F6E4FB4}.tmp - ok
09:26:23.0615 0x0b38 [ 30F9BACA07F8251D7DD1805A9E919CE0, 7B6569B744EA9700957510CDDC8F02E7F47B99564B03E4784AA44EA89B750288 ] C:\Windows\System32\wdmaud.drv
09:26:23.0615 0x0b38 C:\Windows\System32\wdmaud.drv - ok
09:26:23.0615 0x0b38 [ 033CA30E335588E243C42D715BF48DDF, 6D40C9D48374D09494CFA04CCF1015CC097457BFA8B460DCD33513F2BC113597 ] C:\Windows\SysWOW64\secur32.dll
09:26:23.0615 0x0b38 C:\Windows\SysWOW64\secur32.dll - ok
09:26:23.0615 0x0b38 [ 8560FFFC8EB3A806DCD4F82252CFC8C6, CC27BC092369A89D6147B16568FEDEB68B584D5738CD686C31F7FAE22ED17B3B ] C:\Windows\System32\ksuser.dll
09:26:23.0615 0x0b38 C:\Windows\System32\ksuser.dll - ok
09:26:23.0631 0x0b38 [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{114BA80A-A2E0-43FC-88B0-550455653C6F}.tmp
09:26:23.0631 0x0b38 C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{114BA80A-A2E0-43FC-88B0-550455653C6F}.tmp - ok
09:26:23.0631 0x0b38 [ 1B7C3A37362C7B2890168C5FC61C8D9B, 03727930E5BB5F9D91BAB901FC9A2E3B795D68E2AEE6A2CC3477F356C45A9C54 ] C:\Windows\System32\msacm32.drv
09:26:23.0631 0x0b38 C:\Windows\System32\msacm32.drv - ok
09:26:23.0646 0x0b38 [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{F83450D8-BAB7-4EC3-9F6A-9F98BA9EB2C3}.tmp
09:26:23.0646 0x0b38 C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{F83450D8-BAB7-4EC3-9F6A-9F98BA9EB2C3}.tmp - ok
09:26:23.0646 0x0b38 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A, 72288C0A88916D3C3828DBD948DBDB0928F26106319F8E60102D6C9004514D60 ] C:\Windows\System32\msacm32.dll
09:26:23.0646 0x0b38 C:\Windows\System32\msacm32.dll - ok
09:26:23.0646 0x0b38 [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{4E22AB71-39E2-4670-A35B-7750D1BEE2D4}.tmp
09:26:23.0646 0x0b38 C:\Users\DeathDoc\AppData\Local\Temp\{CD77B541-9584-4480-BE84-9FAC62883371}\{4E22AB71-39E2-4670-A35B-7750D1BEE2D4}.tmp - ok
09:26:23.0662 0x0b38 [ CA2A0750ED830678997695FF61B04C30, E84860CD97AA3C4565ABB2D5D406A5C42B1AD2D8BA1B8CF81FE564D91F15F976 ] C:\Windows\System32\midimap.dll
09:26:23.0662 0x0b38 C:\Windows\System32\midimap.dll - ok
09:26:23.0662 0x0b38 [ 3E466073C3B1033FF92ADE9031E3D4A2, 2B26096A6BA2EE8C496D3252248F21D214E8C41ECF79A60A60E52D3BC4135C03 ] C:\Windows\System32\odbcint.dll
09:26:23.0662 0x0b38 C:\Windows\System32\odbcint.dll - ok
09:26:23.0662 0x0b38 [ C1395286B822E306B4FE1568A8A77813, 0642B6C793BE0EED5E7D1D2533FC5A01417C50040FC60A8E89BD97CE4A119388 ] C:\Windows\System32\AUDIOKSE.dll
09:26:23.0662 0x0b38 C:\Windows\System32\AUDIOKSE.dll - ok
09:26:23.0677 0x0b38 [ B6F0676FC23D543452FE81D8B71D24E7, 6D17CEEC23D616A181457A1041F7BC5E33453C511A59A661CA0A091386E30336 ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll
09:26:23.0677 0x0b38 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slcshp64.dll - ok
09:26:23.0677 0x0b38 [ F7BA79CEFBD9DF4AF781E00356FBF48E, 6A1BD3054136FA031CCA0361F52D61A2B91B5FCD87BC0FFBCB99FDF9932A785F ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll
09:26:23.0677 0x0b38 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\slh36064.dll - ok
09:26:23.0677 0x0b38 [ 79E25E0628A2FF7A74356EAEF5011C26, 7DCA0461C070C31B8DB433797A5D6D4C76530ED3DFC5EAE9E35C123929C8B04C ] C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll
09:26:23.0677 0x0b38 C:\Windows\System32\SRSLabs\{176F4E15-8F7C-4833-ADED-81FAE8CCD186}\sltshd64.dll - ok
09:26:23.0693 0x0b38 [ C3DBF7DFF5A38136E26BADB7AB4E2972, EA7484034B14F9F1082F8FA802560D61740DD030F008B59CED204ED55B7C437B ] C:\Windows\SysWOW64\netapi32.dll
09:26:23.0693 0x0b38 C:\Windows\SysWOW64\netapi32.dll - ok
09:26:23.0693 0x0b38 [ 7AD12703039056D2A0815F85960E1FA1, 22C9E953D499555F8BD7719786F3450EF5619672F4FF91082758BAB3FD8A288D ] C:\Windows\SysWOW64\wkscli.dll
09:26:23.0693 0x0b38 C:\Windows\SysWOW64\wkscli.dll - ok
09:26:23.0693 0x0b38 [ AE6AF014B616F53BA762F0BCFD8F7F21, 95C8E3CA3DBEE48621A6A159BEA04A323339A876C8B64EEBC76CBD5872BC32F2 ] C:\Windows\SysWOW64\msi.dll
09:26:23.0693 0x0b38 C:\Windows\SysWOW64\msi.dll - ok
09:26:23.0709 0x0b38 [ E7704CBF568815C1CAA6E513387BD3F2, E289A7D966787DEE258699AC7863D0AA53B91DBED1B3C9C289342253073EE2EC ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
09:26:23.0709 0x0b38 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe - ok
09:26:23.0709 0x0b38 [ E57022A90673A3C9183C50C90EC349D7, EDDA652390A2127651FEDFA9766282D9A12AB6414FAC476880120C5B88F617D3 ] C:\Windows\System32\mscoree.dll
09:26:23.0709 0x0b38 C:\Windows\System32\mscoree.dll - ok
09:26:23.0709 0x0b38 [ 5C737BD60843F5233815DA5286E18A4F, FC35C8D44A470E5B78562A12C8E5D2102EF970F0478910EF86532E95079D98FB ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
09:26:23.0709 0x0b38 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
09:26:23.0724 0x0b38 [ 6EC594AB7EFA45EACDE65FD4040F53D9, A2119AFC55B1231A838C9FD98F50DA9AA85E26EAF1991E8EFF27ADB7C7C3D250 ] C:\Windows\SysWOW64\riched20.dll
09:26:23.0724 0x0b38 C:\Windows\SysWOW64\riched20.dll - ok
09:26:23.0724 0x0b38 [ FD13400115D3D0D70E087AB826DF593A, E36E027D5411CB76057FFE68471C0656D3EE0F27E957C661B655168D8C9D6A79 ] C:\Windows\SysWOW64\ExplorerFrame.dll
09:26:23.0724 0x0b38 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
09:26:23.0724 0x0b38 [ 6E1F8165C365D35C8E3C045AF0CDD481, B861360D0A014265A0BEB4CC2FE31EA05AE95120E8B07820C13A044D64C00E2B ] C:\Windows\SysWOW64\duser.dll
09:26:23.0724 0x0b38 C:\Windows\SysWOW64\duser.dll - ok
09:26:23.0740 0x0b38 [ EE06B85BC69F18826302348A2AD089E0, 417205797CC9F6C986A863A61179784D9ADCAF1961EF8A4D9042D73C5A86509A ] C:\Windows\SysWOW64\dui70.dll
09:26:23.0740 0x0b38 C:\Windows\SysWOW64\dui70.dll - ok
09:26:23.0740 0x0b38 [ 3819AD4329303EAC88480CA16A650735, FBE665BEE15A334851AF4BF9969C8BC21B3F0254CAA5E21E67D7843D4171E675 ] C:\Windows\System32\UIAnimation.dll
09:26:23.0740 0x0b38 C:\Windows\System32\UIAnimation.dll - ok
09:26:23.0740 0x0b38 [ 7B8F7848D3C65DD9589A4898CFF3757D, 48A95DD4C848F60D2C6559E045A976F665CFC13C587629F027AEAAF1E2A46E6F ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcr80.dll
09:26:23.0740 0x0b38 C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.4927_none_88dce9872fb18caf\msvcr80.dll - ok
09:26:23.0755 0x0b38 [ E210DCF3B22A958F696DA7414FFEB33F, 632E4480EBB9D73FB06AA067C18E4F39F562286449D22AB30E58F5EE00C64352 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\9a017aa8d51322f18a40f414fa35872d\mscorlib.ni.dll
09:26:23.0755 0x0b38 C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\9a017aa8d51322f18a40f414fa35872d\mscorlib.ni.dll - ok
09:26:23.0755 0x0b38 [ 60CC15392FF14DCB9C29C69B3233741B, 458FB3DCDC4828D5C5625517D074795A706A545FB8D0FF46C5981A118D846A66 ] C:\Windows\System32\stobject.dll
09:26:23.0755 0x0b38 C:\Windows\System32\stobject.dll - ok
09:26:23.0771 0x0b38 [ 86B6AC0FD2881B3D20B80F51C7152AE0, BF1A04E0B00159925E716CD3A72CD40FD4BDD7D05684932A91629373CE524186 ] C:\Windows\System32\batmeter.dll
09:26:23.0771 0x0b38 C:\Windows\System32\batmeter.dll - ok
09:26:23.0771 0x0b38 [ 651F169718CC46C8A9264880C538D5FF, D93EB53F909EA1120D647BA672481E0150CD3EC3C86D4B80BDC0E4670D34D2D9 ] C:\Windows\System32\prnfldr.dll
09:26:23.0771 0x0b38 C:\Windows\System32\prnfldr.dll - ok
09:26:23.0771 0x0b38 [ 02CDEB5D8B3DD5F6770DEFFBBC0CFAD0, A67878B5CC9109AA8513C0307EEDCB17840288509BF80838E2A753C632B47521 ] C:\Windows\System32\winspool.drv
09:26:23.0771 0x0b38 C:\Windows\System32\winspool.drv - ok
09:26:23.0787 0x0b38 [ 913C2E4A03201644FC986EDEB5F8A390, C635EE4A2A309EB8C550F6F0B1A0723AA7317C9B3396641D9EA9231255944C6F ] C:\Windows\System32\DXP.dll
09:26:23.0787 0x0b38 C:\Windows\System32\DXP.dll - ok
09:26:23.0787 0x0b38 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891, 0A82A475301202791A7C10F978F952EAB7DB146A702D4EA67E24E2C98BC19638 ] C:\Windows\System32\Syncreg.dll
09:26:23.0787 0x0b38 C:\Windows\System32\Syncreg.dll - ok
09:26:23.0787 0x0b38 [ C836175870E00ACC546066632E15BD10, 4347F3319C26DA1C38F395C74DBD67AF886149C8F29EDE765DD96C8480A3054A ] C:\Windows\ehome\ehSSO.dll
09:26:23.0787 0x0b38 C:\Windows\ehome\ehSSO.dll - ok
09:26:23.0802 0x0b38 [ 66920354B984D4A3848A84B4E66745EA, 3F98352A38512C81FAF2C3FE6F00D766B33111A0EA5F7B43B0DBF5A2952B5F79 ] C:\Windows\System32\netshell.dll
09:26:23.0802 0x0b38 C:\Windows\System32\netshell.dll - ok
09:26:23.0802 0x0b38 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB, CF9082360E32A7C3E13A67AC2C6192F4A76870D43DA9FF2936993A637F712761 ] C:\Windows\System32\AltTab.dll
09:26:23.0802 0x0b38 C:\Windows\System32\AltTab.dll - ok
09:26:23.0802 0x0b38 [ AB01C36BCC34CCFE5B0BB5FFB2605135, 214D133CE85504AF924D1CE00FC10DD80E8397C6E1994841EAE78008FAAAE661 ] C:\Windows\System32\WPDShServiceObj.dll
09:26:23.0802 0x0b38 C:\Windows\System32\WPDShServiceObj.dll - ok
09:26:23.0818 0x0b38 [ 4F3CD1C59EA71401E155C432BCECE180, 6D4118A627CAE509E43D0CC0062EECAA0990C955BB15AE24834460551B2F51A2 ] C:\Windows\System32\PortableDeviceTypes.dll
09:26:23.0818 0x0b38 C:\Windows\System32\PortableDeviceTypes.dll - ok
09:26:23.0818 0x0b38 [ AD31942BDF3D594C404874613BC2FE4D, 704F4A48FA91B8A22604FF740B506C3B28766F8DFADB9D11814602FAA00EDFAB ] C:\Windows\System32\SearchIndexer.exe
09:26:23.0818 0x0b38 C:\Windows\System32\SearchIndexer.exe - ok
09:26:23.0818 0x0b38 [ F87A7BB428E4AC68D348DF600F1EA1A2, 83A4A7871F9D314348CFFA0DF73ADCD77C2CA8F8D227D75604AC23AD339B5A34 ] C:\Windows\System32\tquery.dll
09:26:23.0818 0x0b38 C:\Windows\System32\tquery.dll - ok
09:26:23.0818 0x0b38 [ FD4F95ABDE5603478C929B6CB0BDCFFF, 9CDF8BD864CB5714CC2CF7F7A5612FEEDDAE6B92DD14F794946E565F235AA59F ] C:\Windows\System32\pnidui.dll
09:26:23.0818 0x0b38 C:\Windows\System32\pnidui.dll - ok
09:26:23.0833 0x0b38 [ BD03C64C4B1F34D1F330BF6C4AC8113D, CA229A40A8073BFB067F8110E4FF9ECF398131FB5AE225F9477E79049817B3DD ] C:\Windows\System32\QUTIL.DLL
09:26:23.0833 0x0b38 C:\Windows\System32\QUTIL.DLL - ok
09:26:23.0833 0x0b38 [ 78A6501E4E37118C568A606623A275BB, 4A3E9FB21F848FF9B679973499A9B2080FBBF1E551A8FD56FC3B777FDD46B999 ] C:\Windows\System32\mssrch.dll
09:26:23.0833 0x0b38 C:\Windows\System32\mssrch.dll - ok
09:26:23.0833 0x0b38 [ 2C5B8A680A90E96B1EC0D6DA0505E685, 7E81B078A0BB75B1345FF6164D1EA6F6F6784435B92124C99318D6BAB29B3F8B ] C:\Windows\System32\srchadmin.dll
09:26:23.0833 0x0b38 C:\Windows\System32\srchadmin.dll - ok
09:26:23.0849 0x0b38 [ FE130D15D71AC16EFFDF1397F2AF1653, 36E051C55BF2DDD18E04F75B06A24A68F36C3C24F7DF551A654ABC55595781E4 ] C:\Windows\System32\esent.dll
09:26:23.0849 0x0b38 C:\Windows\System32\esent.dll - ok
09:26:23.0849 0x0b38 [ 3121A79D13A61562BE9CC902CD46B542, 00A5833A48338A4A9A5530844924AF4F1FAB618DA46D7EBBC6E2165C32ED376C ] C:\Windows\System32\msidle.dll
09:26:23.0849 0x0b38 C:\Windows\System32\msidle.dll - ok
09:26:23.0849 0x0b38 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] C:\Windows\System32\netman.dll
09:26:23.0849 0x0b38 C:\Windows\System32\netman.dll - ok
09:26:23.0865 0x0b38 [ ACE1BB07E0377E37A2C514CD2EC119B1, A9AFA4774DFA875496764D6E541A6333A3ACD3C5D2BBEF753C2D80BA83B4AC15 ] C:\Windows\System32\mssprxy.dll
09:26:23.0865 0x0b38 C:\Windows\System32\mssprxy.dll - ok
09:26:23.0865 0x0b38 [ D2155709E336C3BC15729EB87FEC6064, 682A84C0F2D892E7A6CEE4E5937B4799E352AAE3B71E7037F2A343373467443C ] C:\Windows\System32\rasdlg.dll
09:26:23.0865 0x0b38 C:\Windows\System32\rasdlg.dll - ok
09:26:23.0865 0x0b38 [ C9FB9038B15036CA28CF0B4BE2BED9BD, 0F56384E798B3F725FFEFC6E31A980DA31F620DB847F601273EF19E8CE74A226 ] C:\Windows\System32\en-US\tquery.dll.mui
09:26:23.0865 0x0b38 C:\Windows\System32\en-US\tquery.dll.mui - ok
09:26:23.0880 0x0b38 [ BB68579E181956E37EB11F9083C01CF3, 969920A2137BAC81810A7F635A0C486892D66E95C49E7EC54ABB93FC52071788 ] C:\Windows\System32\dot3api.dll
09:26:23.0880 0x0b38 C:\Windows\System32\dot3api.dll - ok
09:26:23.0880 0x0b38 [ E4FCA0F99A41E460C84016DEFD31E6EF, 8EB14AF2025EADC7C86280E8417D8F286E8271B4F88B31696E33DFD72B3A0EF2 ] C:\Windows\System32\wlanhlp.dll
09:26:23.0880 0x0b38 C:\Windows\System32\wlanhlp.dll - ok
09:26:23.0880 0x0b38 [ 6699A112A3BDC9B52338512894EBA9D6, 10888BB9C3799E1E8B010C0F9088CED376AAD63A509FCE1727C457B022CDC717 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
09:26:23.0880 0x0b38 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
09:26:23.0896 0x0b38 [ 8BC00C736E67A75D936E5B440917359B, 66809F59D064113763DA75F68F5BD0874CB3A954BD4FF6E28BBF0BF311984E89 ] C:\Windows\System32\ActionCenter.dll
09:26:23.0896 0x0b38 C:\Windows\System32\ActionCenter.dll - ok
09:26:23.0896 0x0b38 [ C7494C67A6BF6FE914808E42F8265FEF, 3A3871983F2D9A57739C70365DC3F417D9BF02F5C0C4CC3272EA9F3D380EF962 ] C:\Program Files\Windows Media Player\wmpnssci.dll
09:26:23.0896 0x0b38 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
09:26:23.0911 0x0b38 [ 5DA219F57A9076FB6FBD3C9C3713A672, 274FE616625B336D81841FDC752C8053D4CD6926565B899760D298D145CBA1A3 ] C:\Windows\System32\WWanAPI.dll
09:26:23.0911 0x0b38 C:\Windows\System32\WWanAPI.dll - ok
09:26:23.0911 0x0b38 [ 0B9F7D42D745038437FAE70D97F9AD5A, D690FC5DC287D29A2FA4C2AA820E09D57B5B513C2B1FB07BFBC7E59577887DB0 ] C:\Windows\System32\QAGENT.DLL
09:26:23.0911 0x0b38 C:\Windows\System32\QAGENT.DLL - ok
09:26:23.0911 0x0b38 [ 62C7AACC746C9723468A8F2169ED3E85, 40E901F3EAFE52DF11D6BC4EF0E79F666EBDACE0B3C090CAD2358076E893EA47 ] C:\Windows\System32\wwapi.dll
09:26:23.0911 0x0b38 C:\Windows\System32\wwapi.dll - ok
09:26:23.0927 0x0b38 [ 92AAF75C3EB344A098DC026BC9DDF42A, 1E47DCB47C9543452013E98B457E6A4DA21FF6F38BA551A87D8A42C5645F35CA ] C:\Windows\System32\bthprops.cpl
09:26:23.0927 0x0b38 C:\Windows\System32\bthprops.cpl - ok
09:26:23.0927 0x0b38 [ 9BF014C20F91D97055532F2F5496E7BD, DD3CF54F729504F6A30920CC83CC32EE6165B59668291D772FDA49C37CFF08C1 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
09:26:23.0927 0x0b38 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
09:26:23.0927 0x0b38 [ 777CC5D91FBD3FF640D0A589D4975FC5, B2C91043952657352FE390F15228F008EA8BB59AA415EC31B12348920630CCD0 ] C:\Windows\System32\ieframe.dll
09:26:23.0927 0x0b38 C:\Windows\System32\ieframe.dll - ok
09:26:23.0943 0x0b38 [ E36112A8A6C7F840169A7E92C12F4203, 52795B2E6ECCE751EEF5074AF52FDE376A382D0A1C43B90DD4F77A397C00FBC5 ] C:\Windows\System32\wsock32.dll
09:26:23.0943 0x0b38 C:\Windows\System32\wsock32.dll - ok
09:26:23.0943 0x0b38 [ 302B93586DFA480545C320EBA5BA6572, 78DF6FBD3B37F753156D0372C514AB20CA5EF2CACE6A32E983FE2E956AF99791 ] C:\Windows\System32\wmdrmdev.dll
09:26:23.0943 0x0b38 C:\Windows\System32\wmdrmdev.dll - ok
09:26:23.0943 0x0b38 [ 2C1055E2C6D42753241FB2A129136994, A8E858B4CB8E1E13C7574330C703E0060AEE8B7B19B682F9AE5B4A02BDC659E2 ] C:\Windows\System32\drmv2clt.dll
09:26:23.0943 0x0b38 C:\Windows\System32\drmv2clt.dll - ok
09:26:23.0958 0x0b38 [ 9869A4A10B90546DBD56947839FB4B87, 66C84DCF39D9F6896D55B1623184A028891A0A98ABE6044DE1D4BAD60C3C8D72 ] C:\Windows\System32\oleacc.dll
09:26:23.0958 0x0b38 C:\Windows\System32\oleacc.dll - ok
09:26:23.0958 0x0b38 [ D7D7EB64B7DE14A783329805E5AC0031, 37B69D3EBB7A26B67261AF6ABDB74329A38F2012CCDF44F75901B8E1D3BC323E ] C:\Windows\System32\webcheck.dll
09:26:23.0958 0x0b38 C:\Windows\System32\webcheck.dll - ok
09:26:23.0958 0x0b38 [ 8494E126F0B10180F3293AF861CE1F7A, 538B1F30423DB2398E611BC46C80150C090698E633BABF7362F7060DBF0C3064 ] C:\Windows\System32\mlang.dll
09:26:23.0958 0x0b38 C:\Windows\System32\mlang.dll - ok
09:26:23.0974 0x0b38 [ E6F66F31422C44EDC00D9C9329E7DF60, 81DB3B830F100ACEC5538840D73713FD3C530227886B6CEF250A48A3697729FE ] C:\Windows\System32\SyncCenter.dll
09:26:23.0974 0x0b38 C:\Windows\System32\SyncCenter.dll - ok
09:26:23.0974 0x0b38 [ 48FB4DC45A3D6A1D9DA1D81D224BF6F5, E99329971B9F408B2823F2CA86A68CD9BA70846822750E9F4FFCD08B47B055D7 ] C:\Windows\System32\wmp.dll
09:26:23.0974 0x0b38 C:\Windows\System32\wmp.dll - ok
09:26:23.0974 0x0b38 [ 8B886A0AC14EAA8599142887991A5A2E, 5CD23A0F7DC53B1F4E8D33E2FD5C3C6E375EE5F542EBCEE2989400F352815462 ] C:\Windows\System32\imapi2.dll
09:26:23.0974 0x0b38 C:\Windows\System32\imapi2.dll - ok
09:26:23.0989 0x0b38 [ F0AAB2A76A7AF04C70A818E96BAF3E64, 44E7D7A0D1F35D02D627D449EE773177AEE026B6D6C787B1463362E73670CB77 ] C:\Windows\System32\hgcpl.dll
09:26:23.0989 0x0b38 C:\Windows\System32\hgcpl.dll - ok
09:26:23.0989 0x0b38 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] C:\Windows\System32\fdPHost.dll
09:26:23.0989 0x0b38 C:\Windows\System32\fdPHost.dll - ok
09:26:23.0989 0x0b38 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] C:\Windows\System32\FDResPub.dll
09:26:23.0989 0x0b38 C:\Windows\System32\FDResPub.dll - ok
09:26:24.0005 0x0b38 [ 171D7DB433314A868507C4326E8209DC, 254E0D9F99CE47104CF21D8E968D89D6A09B9CE47168E760BAB28AD5A1E9E6A3 ] C:\Windows\System32\fdWSD.dll
09:26:24.0005 0x0b38 C:\Windows\System32\fdWSD.dll - ok
09:26:24.0005 0x0b38 [ 05FE4A30177E858B51F5E1E970FE9925, 83711861B648EBC744BDC846DBF043C9D6ED8324E5768A40338C6161613C2E70 ] C:\Windows\System32\WSDApi.dll
09:26:24.0005 0x0b38 C:\Windows\System32\WSDApi.dll - ok
09:26:24.0005 0x0b38 [ A3EA403D2B74C5F71B7E8B3DAE92DE1E, DF91A8D06EA27D4CF7D61A8EF488D4F42DE88629CC2BC9F4A72B66FF2D6CEE4B ] C:\Windows\System32\webservices.dll
09:26:24.0005 0x0b38 C:\Windows\System32\webservices.dll - ok
09:26:24.0021 0x0b38 [ 045DB4EAB4FBD23210E85ECC3F464A2E, 506D7FAABE12470263502F99D86C81E0EE21C8789132FE1B24774ABDB4484468 ] C:\Windows\SysWOW64\nlaapi.dll
09:26:24.0021 0x0b38 C:\Windows\SysWOW64\nlaapi.dll - ok
09:26:24.0021 0x0b38 [ A2E5B2D20954210DCE1A75A1FC8CC36D, 1EA240AC37ECA4EC3E542F9E6DF72753EBA1DF76CBA8691EC61ABCC51EE6FCB2 ] C:\Windows\System32\fdSSDP.dll
09:26:24.0021 0x0b38 C:\Windows\System32\fdSSDP.dll - ok
09:26:24.0021 0x0b38 [ B5055B51BAA0FD0A736A88653DA3C1C0, A3BD057C7E8C926930BA7E9D11427D26FB37267026A0B72AB4021101EE424F74 ] C:\Windows\System32\fundisc.dll
09:26:24.0021 0x0b38 C:\Windows\System32\fundisc.dll - ok
09:26:24.0036 0x0b38 [ 5DF5D8CFD9B9573FA3B2C89D9061A240, 990EA273B640DF2D7E800C0CFF18550259C605A4951CD82CD9F1E7B6FF0C9533 ] C:\Windows\SysWOW64\winrnr.dll
09:26:24.0036 0x0b38 C:\Windows\SysWOW64\winrnr.dll - ok
09:26:24.0036 0x0b38 [ 0B7E85364CB878E2AD531DB7B601A9E5, F5AD3018427F1CD68450EE5CB55AA9572546322580E0FB1E7888702A291C2380 ] C:\Windows\SysWOW64\NapiNSP.dll
09:26:24.0036 0x0b38 C:\Windows\SysWOW64\NapiNSP.dll - ok
09:26:24.0036 0x0b38 [ 5CF640EDDB1E40A5AB1BB743BCDEC610, 0313AA3F713C9F5B84DBB0B4DE78A96B173E9F7B4CF61C10FDC7DAE952DB04E5 ] C:\Windows\SysWOW64\pnrpnsp.dll
09:26:24.0036 0x0b38 C:\Windows\SysWOW64\pnrpnsp.dll - ok
09:26:24.0052 0x0b38 [ D8134F0DB2BD7BB39AB91453E6374BB5, B3698C5AA75A833AFC74F89213DAE7A4E822B98366A23D55B609BD83A0A0E707 ] C:\Windows\System32\wmploc.DLL
09:26:24.0052 0x0b38 C:\Windows\System32\wmploc.DLL - ok
09:26:24.0052 0x0b38 [ 4509387963DF66A6401752A0C631F6E8, B160BD61BEC4D4566442106CCF48182481DF55F937DE5A816436D202630145DC ] C:\Windows\System32\httpapi.dll
09:26:24.0052 0x0b38 C:\Windows\System32\httpapi.dll - ok
09:26:24.0052 0x0b38 [ DB8BF64BE3932ADC407505D21C4F2C2C, 416DB653C86C9808FE8903B8A861E16AC38DF9239FF5382059421DBB48632924 ] C:\Windows\System32\fdProxy.dll
09:26:24.0052 0x0b38 C:\Windows\System32\fdProxy.dll - ok
09:26:24.0067 0x0b38 [ 5B7EF79233382D0DF3D2C28DB453AEE9, 1184EFFEF1D8614D8C148EA49ED013BCE7CF99C30A811D5065EECF9B4C8B1630 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
09:26:24.0067 0x0b38 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
09:26:24.0067 0x0b38 [ C746F3BF98E92FB137B5BD2B8B5925BD, 67A8990F3D491D149E65C90042909259793C65E671DC953FDA1F7590FAC23D9E ] C:\Windows\System32\FXSST.dll
09:26:24.0067 0x0b38 C:\Windows\System32\FXSST.dll - ok
09:26:24.0067 0x0b38 [ 1513633A692F3AE39E693653624E2E88, 9DAC1F64C7FC55AF584BFB865DF03B9606535B2DB668613AB8362574CEB25C67 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\247913fa7ae6fcf04ea33d28d24ab611\System.ni.dll
09:26:24.0067 0x0b38 C:\Windows\assembly\NativeImages_v2.0.50727_64\System\247913fa7ae6fcf04ea33d28d24ab611\System.ni.dll - ok
09:26:24.0083 0x0b38 [ 34E6D8C67E7FD7C917BECFECA326B168, 23A0BD68C969E795DA55041982672550DC1557BC64D3C42D76AFD6A3F83AD33F ] C:\Windows\System32\FXSAPI.dll
09:26:24.0083 0x0b38 C:\Windows\System32\FXSAPI.dll - ok
09:26:24.0083 0x0b38 [ C8E8B8239FCF17BEA10E751BE5854631, CB869195E78AB613CEF50AE3B247F0E4E42F233A7AAF5B2BFC5ADEA2C45C5F8D ] C:\Windows\System32\FXSRESM.dll
09:26:24.0083 0x0b38 C:\Windows\System32\FXSRESM.dll - ok
09:26:24.0083 0x0b38 [ 74C560085FD533E9C26729D360E885A3, 2CBA58837E73DEAFA86D69A657D0E705598E43F8F7BE90C3E351C259321778DB ] C:\Program Files\Internet Explorer\ieproxy.dll
09:26:24.0083 0x0b38 C:\Program Files\Internet Explorer\ieproxy.dll - ok
09:26:24.0099 0x0b38 [ D607B2F1BEE3992AA6C2C92C0A2F0855, E22301C8F01DBF0A38A85165959BB070647C996CB1BCD50FDFE3DDDCA427DF2A ] C:\Windows\System32\FXSSVC.exe
09:26:24.0099 0x0b38 C:\Windows\System32\FXSSVC.exe - ok
09:26:24.0099 0x0b38 [ 6F743071BA9C86EFE805152B45B9EC35, 9558A70ECFFB9D5220CA38AE34A7F934F92226A013216A6940FDFE629154B7EE ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\10f1e1ffca16e550af8a8fd7685a48ef\System.Drawing.ni.dll
09:26:24.0099 0x0b38 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\10f1e1ffca16e550af8a8fd7685a48ef\System.Drawing.ni.dll - ok
09:26:24.0099 0x0b38 [ 8D8D9023C280E2D7D778F368E701F7B9, 9BB88E437E76679EF87ECB4369DA2A934138EC49391516BD970D57748538741D ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\2e0044fa7cabadce65fa8964fe2c90dd\System.Windows.Forms.ni.dll
09:26:24.0099 0x0b38 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\2e0044fa7cabadce65fa8964fe2c90dd\System.Windows.Forms.ni.dll - ok
09:26:24.0114 0x0b38 [ BCCD898EF0815E8E8795F7F3906888B4, EF18C7892BA97E6445FA171C5286A76D9799BB673C53B1897A0F3A89EE070F83 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\28b3698c0e8eac7c31e65542ece11346\System.Runtime.Remoting.ni.dll
09:26:24.0114 0x0b38 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Runtime.Remo#\28b3698c0e8eac7c31e65542ece11346\System.Runtime.Remoting.ni.dll - ok
09:26:24.0114 0x0b38 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8, C0B22B8C402EEEAF68F5380BC265C15418934D2F702F0A43674EC93853E26040 ] C:\Windows\System32\shfolder.dll
09:26:24.0114 0x0b38 C:\Windows\System32\shfolder.dll - ok
09:26:24.0114 0x0b38 [ 74EF310FAC89341CE2897B7F2C4A7B0F, F75D632A58FFF2DE2DB40ADA8F207792105A5DA4B4F6BF53BCDE5083436FBCDC ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
09:26:24.0114 0x0b38 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe - ok
09:26:24.0130 0x0b38 [ 4F20D081F9C9B91730EE5CB84E9AC8C4, 8A8DE5D3519715ABF13A9F276FD6B3816C0B7DE79B8F0406A601B0CAAF274F7D ] C:\Windows\System32\blackbox.dll
09:26:24.0130 0x0b38 C:\Windows\System32\blackbox.dll - ok
09:26:24.0130 0x0b38 [ 96B3C33B03798A8722887BD5437A9010, A90F3F164CBB41C8DBC3DEAD25E0FCC7AEB1BAE87A44DDD66E89110D524FBD1E ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\d753bba0990df9a19883f05d5b681d3b\System.Web.ni.dll
09:26:24.0130 0x0b38 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Web\d753bba0990df9a19883f05d5b681d3b\System.Web.ni.dll - ok
09:26:24.0130 0x0b38 [ 46EA507EE79269C0272F10BFBE9316C9, EC56301725056F70AE146189EE72191150D5F5FFBA7FA7E1EFC4745AA73DE32A ] C:\Windows\System32\upnp.dll
09:26:24.0130 0x0b38 C:\Windows\System32\upnp.dll - ok
09:26:24.0145 0x0b38 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] C:\Windows\System32\ssdpsrv.dll
09:26:24.0145 0x0b38 C:\Windows\System32\ssdpsrv.dll - ok
09:26:24.0145 0x0b38 [ 2D444C361F758D6CC4B2F51655ECF528, DC54D594B9D5FC27C29C5B843D03E618086E5E070E03ED911C6A8E506C6F2020 ] C:\Windows\System32\wmpps.dll
09:26:24.0145 0x0b38 C:\Windows\System32\wmpps.dll - ok
09:26:24.0145 0x0b38 [ 9B7221AA291A7BCB581E5A601BFCA8C3, 53206F655E823A969524C845911B629248D431C3914418B9C4E76C43918B723A ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\1fb1b14199d6aec70df1a0626a3ae5f2\System.Xml.ni.dll
09:26:24.0145 0x0b38 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Xml\1fb1b14199d6aec70df1a0626a3ae5f2\System.Xml.ni.dll - ok
09:26:24.0161 0x0b38 [ 1FDFC4E9E7405E08FCFF224B49359D61, 31F84D2EF17B9C52B826F94866EF62C52A83A568EF603731790D3BEDF236FD29 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\907b2b3dae591e0484acfc0ea63e8caa\System.Configuration.ni.dll
09:26:24.0161 0x0b38 C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Configuration\907b2b3dae591e0484acfc0ea63e8caa\System.Configuration.ni.dll - ok
09:26:24.0161 0x0b38 [ A435F53E8509C3F392CEE3F571FDEC77, A4B2E6429D42D937AFE9E246D8872A47D54B15EC498914F37BCCAC88520E91B2 ] C:\Windows\System32\atipdl64.dll
09:26:24.0161 0x0b38 C:\Windows\System32\atipdl64.dll - ok
09:26:24.0177 0x0b38 [ D64D99EC088B54FFE8EE67A480386C20, A6D1E4CA40843B0B9B32019E69479457D46CA99A2804E937CDC385C9DEDFDE62 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll
09:26:24.0177 0x0b38 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\Culture.dll - ok
09:26:24.0177 0x0b38 [ C5B0324DB461559ADD070E632A6919FA, AB09CACB5B7DD372B27921A5E01220552A611CECA27EF87961001FA467FDED45 ] C:\Windows\SysWOW64\wbem\wbemprox.dll
09:26:24.0177 0x0b38 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
09:26:24.0177 0x0b38 [ 96F3F676B4D0DF4DA9C4081358C4662F, 99EC65A61B88DFEFB2F02C3E3D01638FCBC41773AB40268F9CB2C72FD288CF62 ] C:\Windows\SysWOW64\wbemcomn.dll
09:26:24.0177 0x0b38 C:\Windows\SysWOW64\wbemcomn.dll - ok
09:26:24.0192 0x0b38 [ 6C0BD9D59C7E97DEE2FB3407D17BF697, C77DF45B0969DC9D99C1B0F14BECF95403679B912B26B66039A408921613499B ] C:\Windows\SysWOW64\RpcRtRemote.dll
09:26:24.0192 0x0b38 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
09:26:24.0192 0x0b38 [ 776AE0564F8B1C282E331FD95A1BDC5F, 601CFCA3922FFEA46A54AD323845A76A12FC6AF9FF64E9B0AE294FBB1AFCF4CB ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
09:26:24.0192 0x0b38 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
09:26:24.0192 0x0b38 [ 1CEDFE91F527858CACA1B08B04666BC0, B29D4545DAEBF28C07DF684C9AF0C5EE8DE5C723E81B8832188FA27106F1FC50 ] C:\Windows\SysWOW64\wbem\fastprox.dll
09:26:24.0192 0x0b38 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
09:26:24.0208 0x0b38 [ E3E811471DE781900FF21C1FD84E941E, 2A47FF52D1D6480AAD1919382E783EA184BF926311F8C7E466FEBE9F6FB88FD6 ] C:\Windows\SysWOW64\ntdsapi.dll
09:26:24.0208 0x0b38 C:\Windows\SysWOW64\ntdsapi.dll - ok
09:26:24.0208 0x0b38 [ 3F50200237961034FACE602373838980, F97D72CC75D921CF8F8E0544614407358AEFF97A8F48E4A89F82689EE8F2FC86 ] C:\Windows\SysWOW64\FirewallAPI.dll
09:26:24.0208 0x0b38 C:\Windows\SysWOW64\FirewallAPI.dll - ok
09:26:24.0208 0x0b38 [ 220159496484D34009DE71CA1A68E0D4, 94BD3DEB4E84F95D80BE5775E5A612EFF181ECB212FB668674C67AD19194DE69 ] C:\Windows\System32\wbem\NCProv.dll
09:26:24.0208 0x0b38 C:\Windows\System32\wbem\NCProv.dll - ok
09:26:24.0208 0x0b38 ================ Scan generic autorun ======================
09:26:24.0239 0x0b38 SynTPEnh - ok
09:26:24.0333 0x0b38 [ 7A2C26459B599A2D6D5401F73ACA1981, EABDE03BE7F10A3A1CF9E0A38B834F9B48A14D921C63121645DF0906526BB661 ] C:\Program Files\IDT\WDM\sttray64.exe
09:26:24.0364 0x0b38 SysTrayApp - ok
09:26:24.0379 0x0b38 SunJavaUpdateSched - ok
09:26:24.0473 0x0b38 [ CABF1DF6108BDE0EA1FDFAA67FA02760, 2CEB8E3C2A222C7542B5108DE8280956A12496497FA65709E3830AF8B8141DD5 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
09:26:24.0489 0x0b38 StartCCC - detected UnsignedFile.Multi.Generic ( 1 )
09:26:24.0489 0x0b38 Detect skipped due to KSN trusted
09:26:24.0489 0x0b38 StartCCC - ok
09:26:24.0489 0x0b38 UpdatePRCShortCut - ok
09:26:24.0489 0x0b38 SunJavaUpdateSched - ok
09:26:24.0504 0x0b38 WirelessAssistant - ok
09:26:24.0598 0x0b38 [ EA6EADF6314E43783BA8EEE79F93F73C, 1A4BC2D8DFBDC37AF85C73DEE76A6EE901EBA188D43856BD2FFA96B79A126F73 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
09:26:24.0660 0x0b38 Sidebar - ok
09:26:24.0691 0x0b38 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
09:26:24.0707 0x0b38 mctadmin - ok
09:26:24.0738 0x0b38 [ EA6EADF6314E43783BA8EEE79F93F73C, 1A4BC2D8DFBDC37AF85C73DEE76A6EE901EBA188D43856BD2FFA96B79A126F73 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
09:26:24.0785 0x0b38 Sidebar - ok
09:26:24.0785 0x0b38 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
09:26:24.0801 0x0b38 mctadmin - ok
09:26:24.0801 0x0b38 HPADVISOR - ok
09:26:24.0816 0x0b38 LightScribe Control Panel - ok
09:26:24.0832 0x0b38 Win FW state via NFP2: enabled
09:26:27.0687 0x0b38 ============================================================
09:26:27.0687 0x0b38 Scan finished
09:26:27.0687 0x0b38 ============================================================
09:26:27.0687 0x0bac Detected object count: 0
09:26:27.0687 0x0bac Actual detected object count: 0
09:31:40.0072 0x0900 Deinitialize success

#12 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,815 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:02:21 PM

Posted 18 June 2015 - 12:42 PM

At this point it looks like this is not infected.


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users