Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Crashing after Possible Malicious Attack


  • Please log in to reply
128 replies to this topic

#1 Gary's Girl

Gary's Girl

  • Members
  • 343 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Kentucky
  • Local time:08:30 PM

Posted 14 July 2015 - 12:39 PM

Greetings,
 
HP G72, Windows 7 Home Premium 64 Bit, Intel Pentium CPU P6100 @ 2.00GHz, 6 GB RAM. 300 GB HDD. It's about 4 1/2 years old.
 
Several days ago, I Googled a song looking for chords (which I've down thousands of times) - noticed a site in the search results I had not seen and it had a green WOT circle, so I went to the site. Immediately a window popped us saying, "Warning! This site is downloading files onto your computer. Turned the unit off immediately. Later rebooted and it worked normally. So, I concluded all was well.
 
A couple days later, got a Facebook message that looked as if a close friend sent it, saying to watch the video of a news report about a roller coaster accident @ Universal Studios. Opened it. Oops...not from my friend...malware. I shut it completely down. Minutes later booted up and it worked normally. Until a day or two later. Crashed and couldn't start Windows. Got in through Bios and everything again worked normally. For a day or two until day before yesterday.
 
Working on music chord sheets and had to leave off for a while to cook dinner, but left it running because I was coming back to it in a couple hours. When I returned to work on the music - black screen with white letters saying, "No bootable disk, insert boot disk". Shut it down and rebooted and it's working now; however, Chrome is running slowly and it's usually fast - everything is fast on this unit.
 
Concerned about being infected. Ran Microsoft SE, Superantispyware Professional, Malwarebytes, CCleaner, and then defragged with Defraggler. Uninstalled programs I didn't need anymore, deleted a lot of music, put a lot of pictures into the cloud, etc. because the harddrive was over 1/2 full. Ran Superantispyware's tool that let's you see what's running on the computer, as well as looking through Task Manager Processes and Services and have been Googling files and processes and services one by one but haven't found anything suspicious yet. Very slow and tedious work.
 
My son, a webmaster, suspects the memory may be going bad, but I find it suspicious that I had two incidents within a day or two that I feared threatened my unit and then in just another day or two the computer began goofing up. Anyhow, any advice? I work online and cannot afford for my only computer to go down. Thanks in advance for any suggestions anyone can give.
 
S.

Edited by Queen-Evie, 14 July 2015 - 01:56 PM.
moved from Windows Crashes, BSOD, and Hangs Help and Support to Am I Infected


BC AdBot (Login to Remove)

 


#2 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,804 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:05:30 PM

Posted 14 July 2015 - 12:49 PM

Let's run a few scans and see if there is any malware or a virus.
 
Please run Malwarebytes AntiMalware
 
Please download Malwarebytes Anti-Malware.  After clicking on the link the download will start automatically.
 
1)  Double-click on mbam-setup.exe, then click on Run to install the application, follow the prompts through the installation.
 
2)  Malwarebytes will automatically open.  If this is the first time you have run this version of Malwarbytes you will see an image like the one below.
 
mbam1_zps95cc812c.png
 
Click on Update Now, after Malwarebytes is updated click on Scan.
 
If this isn't the first time you have run this version, then you will see an image like the one below.  Click on Scan
 
mbam1_zps98e7fba9.png
 
You will be prompted to update Malwarebytes, to do so click on Update Now.
 
 mbam2_zps85f38f0c.png
 
3)  The scan will automatically run now.
 
malwarerun_zps9abd4ef1.png
 
4)  When the scan is complete the results will be displayed.  Click on Delete All.
 
malwarenew_zps34b58fdc.png
 
5)  Please post the Malwarebytes log.
 
To find your Malwarebytes log,download mbam-check.exe from here and save it to your desktop.
 
To open the log double click on mbam-check.exe on your desktop.  Copy and paste the log in your topic.
 
================
 

Please run TDSSKiller.
 
Please download TDSSKiller from here and save it to your Desktop.
 
The log for the TDSSKiller can be very long.  If you go to the bottom of the log to where you find Scan finished you will see the results of the scan.  If it shows Detected object count: 0 and Actual detected object count: 0, this means that nothing malicious was found and you will not need to post the log.
 
1.  Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
 
tdss1_zps90132559.png
 
2.  Check Loaded Modules, Verify Driver Digital Signature, and Detect TDLFS file system.
 
If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now.
 
tdsskillermultiple_zps472c18eb.png
 
3.  Click Start Scan and allow the scan process to run.
 
tdss4_zps6792a13c.png
 
4.  If threats are detected select Cure (if available) for all of them unless otherwise instructed.
 
***Do NOT select Delete!
 
Click on Continue.
 
tdss5_zps98fc5887.png
 
5.  Click on Reboot computer.
 
Please copy the TDSSKiller.[Version]_[Date]_[Time]_log.txt file found in your root directory (typically c:\) and paste it into your next reply.
 
Note:  The log may be very long.  You may need to break it into parts to post the whole log.

================

Please run the ESET OnlineScan

This scan takes quite a long time to run, so be prepared to allow this to run till it is completed.

***Please note. If you run this scan using Internet Explorer you won't need to download the Eset Smartinstaller.***

ESET Online Scanner

  • Click here to download the installer for ESET Online Scanner and save it to your Desktop.
  • Disable all your antivirus and antimalware software - see how to do that here.
  • Right click on esetsmartinstaller_enu.exe and select Run as Administrator.
  • Place a checkmark in YES, I accept the Terms of Use, then click Start. Wait for ESET Online Scanner to load its components.
  • Select Enable detection of potentially unwanted applications.
  • Click Advanced Settings, then place a checkmark in the following:
    • Remove found threats
    • Scan archives
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • Click Start to begin scanning.
  • ESET Online Scanner will start downloading signatures and scan. Please be patient, as this scan can take quite some time.
  • When the scan is done, click List threats (only available if ESET Online Scanner found something).
  • Click Export, then save the file to your desktop.
  • Click Back, then Finish to exit ESET Online Scanner.

Edited by dc3, 14 July 2015 - 12:50 PM.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#3 Gary's Girl

Gary's Girl
  • Topic Starter

  • Members
  • 343 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Kentucky
  • Local time:08:30 PM

Posted 14 July 2015 - 01:01 PM

Thank you. Will do. 



#4 Gary's Girl

Gary's Girl
  • Topic Starter

  • Members
  • 343 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Kentucky
  • Local time:08:30 PM

Posted 14 July 2015 - 02:30 PM

Already had MBam (paid subscription) and ran it a couple days ago. But, per your request I just ran it again and am posting the log. It didn't find any malware the other day or today but the log has lots of information. Will post the Kaspersky TDSSKiller log soon as it finishes. Thanks again for helping me out. I really appreciate it so, so much! Here's the MBam log (It's really long):

 

mbam-check result log version:     2.1.1.1001
========================================
 
User Account type:                 Administrator
OS:                                Windows 7 Service Pack 1 Service Pack 1 64 bit Operating System
Current Version and Build:         6.1.7601.0 
Malwarebytes Anti-Malware:         2.1.6.1022
Installed On:                      2015/05/21
Malware Database:                  2015.07.14.05
Rootkit Database:                  2015.07.14.01
Remediation Database:              2015.07.14.01
IP Database:                       2015.06.12.01
Domain Database:                   2015.06.12.01
License:                           Premium
Malware Protection:                4 (The service is running.)
Malicious Website Protection:      4 (The service is running.)
Chameleon:                         4 (The service is running.)
Log Created:                       2015/07/14 14:22:52
Compatibility Flag Settings:
=================================
 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\appCompatFlags\Layers
SIGN.MEDIA=3D904 Setup.exe    REG_SZ WINXPSP2
SIGN.MEDIA=254C03 start.exe   REG_SZ WINXPSP2
C:\New E-Sword Setup 2011\abs.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\allgrace.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\bounds.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\bunyan.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\cev.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\classic.exeREG_SZ VISTARTM
C:\New E-Sword Setup 2011\darbycom.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\deeper.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\emtv.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\gnt.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\gnt-wh+.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\harmony.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\historical.exeREG_SZ VISTARTM
C:\New E-Sword Setup 2011\hot.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\illustrations.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\imitation.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\jps.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\kjv.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\kjva.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\kjvr.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\liberty.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\meyer-1.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\newton.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\pink-1.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\presence.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\psalms.exeREG_SZ VISTARTM
C:\New E-Sword Setup 2011\pursuit.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\reformed.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\Robertson, Sketches of Church History.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\rv.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\ryle.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\sheldon.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\sonlight.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\surrender.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\systematic.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\thayer.exeREG_SZ VISTARTM
C:\New E-Sword Setup 2011\training.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\tutorial.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\webster-az.exeREG_SZ WINXPSP2
C:\New E-Sword Setup 2011\wesleyan-4.exeREG_SZ WINXPSP2
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\appCompatFlags\Layers
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\appCompatFlags\Layers
 
Malwarebytes Anti-Malware Shell Extension Block Check:
======================================================
 
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Blocked:
 
MBAM Startup Entries: 
=====================
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
 
Malwarebytes Anti-Malware Service and Driver Status:
=======================================================
 
--------------Driver File Info:--------------
C:\Windows\system32\drivers\mbam.sys
File Size: 25816     BYTES FileVersion: 0.1.15.0 MD5: [1e9e32aec3e1eb1b31b8169f33168b56]
C:\Windows\system32\drivers\mwac.sys
File Size: 63704     BYTES FileVersion: 1.0.6.0 MD5: [f49fb3c88e263ae9a246593b0bb29294]
C:\Windows\system32\drivers\mbamswissarmy.sys
File Size: 136408    BYTES FileVersion: 0.2.21.0 MD5: [e9cd058c79ea15b4aa93e259fa713b07]
C:\Windows\system32\drivers\mbamchameleon.sys
File Size: 107736    BYTES FileVersion: 1.1.13.0 MD5: [54d70409de6932e9efa117779611e7a9]
 
--------------MBAMProtector:--------------
Type:                   2
State:                  4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
--------------MBAMService:--------------
Type:                   16
State:                  4 (The service is running.)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
--------------MBAMScheduler:--------------
Type:                   16
State:                  4 (The service is running.)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
--------------MBAMChameleon:--------------
Type:                   2
State:                  4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
--------------MBAMWebAccessControl:--------------
Type:                   2
State:                  4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
Required Dependencies:
======================
 
--------------BFE:--------------
Type:                   32
State:                  4 (The service is running.)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE
DisplayName                   REG_SZ @%SystemRoot%\system32\bfe.dll,-1001
Group                         REG_SZ NetworkProvider
ImagePath                     REG_EXPAND_SZ %systemroot%\system32\svchost.exe -k LocalServiceNoNetwork
Description                   REG_SZ @%SystemRoot%\system32\bfe.dll,-1002
ObjectName                    REG_SZ NT AUTHORITY\LocalService
ErrorControl                  REG_DWORD 1
Start                         REG_DWORD 2
Type                          REG_DWORD 32
DependOnService               REG_MULTI_SZ RpcSs
 
ServiceSidType                REG_DWORD 3
RequiredPrivileges            REG_MULTI_SZ SeAuditPrivilege
 
FailureActions                REG_BINARY Binary Data
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters
ServiceDll                    REG_EXPAND_SZ %SystemRoot%\System32\bfe.dll
ServiceDllUnloadOnStop        REG_DWORD 1
ServiceMain                   REG_SZ BfeServiceMain
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\BootTime
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\BootTime\Filter
{16c04f09-ba2e-45ca-ad52-eaa343a63b28}REG_BINARY Binary Data
 
{38bb07b1-faaf-4d09-9339-f6e6c5be9dcd}REG_BINARY Binary Data
 
{14c6023a-63b1-4eac-8ea6-3a8adab0df3c}REG_BINARY Binary Data
 
{ef61153c-4364-48e4-80a2-60b6b58f2ca6}REG_BINARY Binary Data
 
{7ac5ae95-d93c-4e5e-8fd7-55f1f3c7def2}REG_BINARY Binary Data
 
{a537c927-5a99-47a0-a0ff-a2fd865017d2}REG_BINARY Binary Data
 
{2b764d5a-5f08-4725-8385-5114390daa54}REG_BINARY Binary Data
 
{e56807d9-d3e9-4e66-b2d0-57966a22eb25}REG_BINARY Binary Data
 
{d2158fbc-4b62-460e-b485-e2b997322c36}REG_BINARY Binary Data
 
{fce63342-6768-4f4f-983e-4cef739ff970}REG_BINARY Binary Data
 
{63c1d42e-3df2-4415-89ff-cef93b85e4c6}REG_BINARY Binary Data
 
{836146e7-bd0f-4942-b721-c81eb9d9e533}REG_BINARY Binary Data
 
{e8a8f060-4f4c-45e8-92fd-a15ab205899e}REG_BINARY Binary Data
 
{de035fe6-98d1-42eb-80c6-d5ab25bf2152}REG_BINARY Binary Data
 
{a3978a53-c3db-420b-b021-36c33847e832}REG_BINARY Binary Data
 
{dd6247ba-f2b4-43a3-9e73-2f3abc75a115}REG_BINARY Binary Data
 
{c370a63b-9fc3-4fdd-b6a5-a38a26fc02a9}REG_BINARY Binary Data
 
{4e5a0283-3f07-447a-8dba-c625e90d8eba}REG_BINARY Binary Data
 
{9cfbbacc-1aef-4ab0-936d-eea21d129440}REG_BINARY Binary Data
 
{6fc25324-f69e-4b53-bd78-60e2fc18cfc7}REG_BINARY Binary Data
 
{b3644a53-12e6-4618-90da-5cab555ee321}REG_BINARY Binary Data
 
{28af3bc7-6e76-410b-9de3-40b0a84625b9}REG_BINARY Binary Data
 
{01a6b2fc-2c6a-416b-9939-f50589e6d1c5}REG_BINARY Binary Data
 
{93e4135a-1959-445c-bafd-39e1144e69c3}REG_BINARY Binary Data
 
{20f5befe-1bc7-4b49-abd5-d1c998eb5b5d}REG_BINARY Binary Data
 
{5df14e6f-658e-490b-b574-08bc1bf6fb48}REG_BINARY Binary Data
 
{973ff2c3-19cf-4712-a5f8-ec55ca252c78}REG_BINARY Binary Data
 
{19e50d88-8549-43f5-9030-4a37b4144980}REG_BINARY Binary Data
 
{fdf26f6b-4934-4a2f-bc11-16c48fba7332}REG_BINARY Binary Data
 
{bf66dce3-a2dd-40d3-b3b0-317cfadd142f}REG_BINARY Binary Data
 
{757cca30-6db5-45b7-8b3a-42162eef127d}REG_BINARY Binary Data
 
{fbf5cec7-db5f-4580-a4a7-4241a0cab202}REG_BINARY Binary Data
 
{5cf01a0a-14cf-4bb0-a976-fac3a91ffb3e}REG_BINARY Binary Data
 
{565c6648-b525-4aaf-9146-34d0fd86c094}REG_BINARY Binary Data
 
{7998164e-fb83-4941-be0a-5e26ff5a6941}REG_BINARY Binary Data
 
{efa1f30e-1517-4ce8-b03a-5ea61cb6ef74}REG_BINARY Binary Data
 
{2e032542-e89b-4694-add4-d4d0b9b392dc}REG_BINARY Binary Data
 
{7329e35c-3bdc-4051-8167-f518c5c0f411}REG_BINARY Binary Data
 
{d02ffedb-a669-44ff-a01f-f573fe72c8a2}REG_BINARY Binary Data
 
{727a561c-5169-47bc-bb38-276fe1a0a9dd}REG_BINARY Binary Data
 
{dc95b53e-01cf-4058-821d-350b3d0d4676}REG_BINARY Binary Data
 
{0c41d586-9c19-4e01-9d66-b5b98a97576e}REG_BINARY Binary Data
 
{12c38916-82ac-4737-8f38-b6957ffebad6}REG_BINARY Binary Data
 
{c970a45d-57f9-4e32-a5bd-886a9662641e}REG_BINARY Binary Data
 
{0c3be01b-fe70-4cc4-89dc-c07996b67e6d}REG_BINARY Binary Data
 
{074f7f68-ee10-428a-89d1-ba78f6c327ca}REG_BINARY Binary Data
 
{c016105c-eb34-4519-a5fd-5f4e4ad4d18e}REG_BINARY Binary Data
 
{a47525e2-725b-4888-8af1-ba5a60c04f4d}REG_BINARY Binary Data
 
{0ccc96a3-8c5c-45e2-b80e-7e37b16cc1ad}REG_BINARY Binary Data
 
{2dd96961-5757-434f-b617-34e732517c0e}REG_BINARY Binary Data
 
{2db25e6c-f07a-44f4-b6c8-50a330d2790b}REG_BINARY Binary Data
 
{c42f1cd6-3a95-4ae2-a513-793c3ae610c7}REG_BINARY Binary Data
 
{935b7f48-0ede-44dd-9bc2-e00bb635cda3}REG_BINARY Binary Data
 
{941dad9d-7b1a-4354-997b-00cf1aa9b35c}REG_BINARY Binary Data
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Callout
{b3bc6cff-e419-423b-bd53-af49346a4297}REG_BINARY Binary Data
 
{d790f9bc-eb45-4f76-a7e4-b4d60c5f9f80}REG_BINARY Binary Data
 
{2ada48a5-2347-425e-9fda-20bb2ab9e2e0}REG_BINARY Binary Data
 
{ff6e51ec-e164-4952-97b9-ab29ed735748}REG_BINARY Binary Data
 
{15b14baa-1c53-4bce-ad4e-024a83230a3f}REG_BINARY Binary Data
 
{7efcf696-ea96-46f5-8160-3e28a80912d1}REG_BINARY Binary Data
 
{06054d89-cb25-41d7-bbd7-4c5b51f146d6}REG_BINARY Binary Data
 
{377c1a94-b4db-47b9-b371-0908118249bc}REG_BINARY Binary Data
 
{0602ac30-ceee-4418-90cd-3f02af787de7}REG_BINARY Binary Data
 
{ab9c2180-73d4-4c0f-9fe8-8fda4fc594f1}REG_BINARY Binary Data
 
{1b5d8d57-3b04-48e9-9e53-7c2d5b1733d0}REG_BINARY Binary Data
 
{77ddbe65-020d-49b8-88fa-12b97d23d480}REG_BINARY Binary Data
 
{7aa156ce-5dd9-4dba-a960-c25214e6cac3}REG_BINARY Binary Data
 
{3cbae5c7-221f-4550-ab16-080a220043a2}REG_BINARY Binary Data
 
{d06cbec8-dc8e-4549-b777-c64d9136ee5a}REG_BINARY Binary Data
 
{6787296f-a2d9-4b12-8507-a6d333bc39ba}REG_BINARY Binary Data
 
{0ae61601-f654-4cdb-9402-1a21939c3d28}REG_BINARY Binary Data
 
{455a92cb-989b-434c-a111-bc957a5cac01}REG_BINARY Binary Data
 
{f8b2c139-1e63-416a-a543-7e1e430582aa}REG_BINARY Binary Data
 
{be9db63e-2765-44d0-af12-8b92f34d5c9d}REG_BINARY Binary Data
 
{92e09976-023d-4bf3-a118-82f4d522c31a}REG_BINARY Binary Data
 
{caad6c0e-5249-4658-b286-3fe6b6ba395b}REG_BINARY Binary Data
 
{60e6ae3c-5f79-46d3-a0d4-c2b0e5032edd}REG_BINARY Binary Data
 
{6930a178-7cd8-4d65-a72c-dee0629be664}REG_BINARY Binary Data
 
{f30794f9-c117-47e7-b3cd-ea447a0b9ab7}REG_BINARY Binary Data
 
{62d99d61-bbbb-4e9c-8a53-f0b24c557e43}REG_BINARY Binary Data
 
{310adb06-1f60-43d1-882e-73bc59ba6d44}REG_BINARY Binary Data
 
{278b4af8-6e0b-483e-859f-26ac38c1572a}REG_BINARY Binary Data
 
{0b64d917-e7d5-4c8b-bcda-1cdf2188bdc0}REG_BINARY Binary Data
 
{b5364a4b-8bf2-4a5c-9873-ebd57d2ec70a}REG_BINARY Binary Data
 
{a8ca3325-ce41-4399-8cec-9efdccd424d4}REG_BINARY Binary Data
 
{a831c1cd-fa9c-4433-88f9-622fc3f56b0e}REG_BINARY Binary Data
 
{a8adbca7-29a8-4379-9817-482b57dbdf5e}REG_BINARY Binary Data
 
{d07cff88-7d87-4209-a679-4262a5768bc7}REG_BINARY Binary Data
 
{8cc17cd6-6867-4752-b2a0-6050ad34dd31}REG_BINARY Binary Data
 
{524d4606-0465-4ef3-8d86-a7c2c49c98bc}REG_BINARY Binary Data
 
{4117c439-18ea-451c-873f-20def4ff4d7e}REG_BINARY Binary Data
 
{b2d6408d-f720-4316-9bba-526dce3b93f5}REG_BINARY Binary Data
 
{1c6aa294-ef7d-4e4f-a627-0a11861f0f0b}REG_BINARY Binary Data
 
{c1c0abe6-9098-4779-8f52-7bd90dee493f}REG_BINARY Binary Data
 
{aa85db34-ccf9-4b6c-9d6b-0b3ab71e76b3}REG_BINARY Binary Data
 
{8958aad8-252e-431d-973a-9edee84bc0eb}REG_BINARY Binary Data
 
{596470f7-eb01-47b0-a469-757ba4703f16}REG_BINARY Binary Data
 
{bc356a2e-9ea6-4db7-954c-22977f06acbd}REG_BINARY Binary Data
 
{ad0353fb-5995-480c-a406-4941c6e09183}REG_BINARY Binary Data
 
{670843e7-ac70-45a7-ba5b-1712e1b61992}REG_BINARY Binary Data
 
{4c833259-7db3-48d9-9676-0074e085a05f}REG_BINARY Binary Data
 
{aa3b760f-8494-4a4c-9a53-fd69a125f181}REG_BINARY Binary Data
 
{22390787-a3ad-4503-a9b5-76c6b8611405}REG_BINARY Binary Data
 
{1b43db1c-2543-4e54-81fc-6805c99ae4fe}REG_BINARY Binary Data
 
{22001ee0-8e87-4f75-ba58-248f5918a63a}REG_BINARY Binary Data
 
{79f2a265-b693-4cc9-b480-cbcd87bd4747}REG_BINARY Binary Data
 
{c4b50f21-503e-4d7a-abd4-ed0a823a2453}REG_BINARY Binary Data
 
{91e902db-2cef-4040-b8e2-02fe4fd49c25}REG_BINARY Binary Data
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Filter
{16c04f09-ba2e-45ca-ad52-eaa343a63b28}REG_BINARY Binary Data
 
{30f9c4ca-71f4-4bae-9d78-a1646895a1f7}REG_BINARY Binary Data
 
{38bb07b1-faaf-4d09-9339-f6e6c5be9dcd}REG_BINARY Binary Data
 
{b7d3a213-b2b4-42b2-82fa-400d738247fd}REG_BINARY Binary Data
 
{14c6023a-63b1-4eac-8ea6-3a8adab0df3c}REG_BINARY Binary Data
 
{c27c078a-cb24-4bed-a483-44511ac07cc2}REG_BINARY Binary Data
 
{ef61153c-4364-48e4-80a2-60b6b58f2ca6}REG_BINARY Binary Data
 
{b2850bbb-519e-486c-a37e-5243d4a6b447}REG_BINARY Binary Data
 
{7ac5ae95-d93c-4e5e-8fd7-55f1f3c7def2}REG_BINARY Binary Data
 
{183093f0-3e40-47e6-94e2-62ea05292aac}REG_BINARY Binary Data
 
{a537c927-5a99-47a0-a0ff-a2fd865017d2}REG_BINARY Binary Data
 
{6c96fbd5-23d7-4885-a33d-867af5df42a4}REG_BINARY Binary Data
 
{2b764d5a-5f08-4725-8385-5114390daa54}REG_BINARY Binary Data
 
{22badffc-c9d4-48c0-96d0-c90116f7ce74}REG_BINARY Binary Data
 
{e56807d9-d3e9-4e66-b2d0-57966a22eb25}REG_BINARY Binary Data
 
{73f2d525-fd23-40cd-bd9c-33290f244800}REG_BINARY Binary Data
 
{d2158fbc-4b62-460e-b485-e2b997322c36}REG_BINARY Binary Data
 
{013044d3-c2dd-419d-912a-d8d0111b5211}REG_BINARY Binary Data
 
{fce63342-6768-4f4f-983e-4cef739ff970}REG_BINARY Binary Data
 
{5f7ab6d3-949d-41dd-828f-92843cc9f310}REG_BINARY Binary Data
 
{63c1d42e-3df2-4415-89ff-cef93b85e4c6}REG_BINARY Binary Data
 
{15ef6192-d847-4bae-9693-54f94ed1a183}REG_BINARY Binary Data
 
{836146e7-bd0f-4942-b721-c81eb9d9e533}REG_BINARY Binary Data
 
{9008d898-f515-417b-b5ea-7857caec18ea}REG_BINARY Binary Data
 
{e8a8f060-4f4c-45e8-92fd-a15ab205899e}REG_BINARY Binary Data
 
{61e6ef34-0cb1-43fa-b81f-e0be4fe3b4e3}REG_BINARY Binary Data
 
{de035fe6-98d1-42eb-80c6-d5ab25bf2152}REG_BINARY Binary Data
 
{958ab155-3c8f-4cea-b69a-07f79ea78859}REG_BINARY Binary Data
 
{a3978a53-c3db-420b-b021-36c33847e832}REG_BINARY Binary Data
 
{243ee495-0068-4950-8a53-8dded199865e}REG_BINARY Binary Data
 
{dd6247ba-f2b4-43a3-9e73-2f3abc75a115}REG_BINARY Binary Data
 
{31c7c3ef-5a9b-4663-97c1-0c6427d9f37a}REG_BINARY Binary Data
 
{c370a63b-9fc3-4fdd-b6a5-a38a26fc02a9}REG_BINARY Binary Data
 
{1f8919b1-277a-4b12-ba13-1e9361c36ea7}REG_BINARY Binary Data
 
{4e5a0283-3f07-447a-8dba-c625e90d8eba}REG_BINARY Binary Data
 
{5c736566-3260-4be5-b46f-e0f686ed781b}REG_BINARY Binary Data
 
{9cfbbacc-1aef-4ab0-936d-eea21d129440}REG_BINARY Binary Data
 
{1b9e4099-2ca1-4d9c-b132-63d63bd543fd}REG_BINARY Binary Data
 
{6fc25324-f69e-4b53-bd78-60e2fc18cfc7}REG_BINARY Binary Data
 
{ccfbc54d-c3e4-489c-bef2-602db6240762}REG_BINARY Binary Data
 
{b3644a53-12e6-4618-90da-5cab555ee321}REG_BINARY Binary Data
 
{02c6e8ee-2290-451c-b148-62cb7b09a75c}REG_BINARY Binary Data
 
{28af3bc7-6e76-410b-9de3-40b0a84625b9}REG_BINARY Binary Data
 
{672d83e5-8278-4c07-8f01-524763b038f2}REG_BINARY Binary Data
 
{01a6b2fc-2c6a-416b-9939-f50589e6d1c5}REG_BINARY Binary Data
 
{a9d4e3bf-dfe8-4999-9181-8ce9a61f427a}REG_BINARY Binary Data
 
{93e4135a-1959-445c-bafd-39e1144e69c3}REG_BINARY Binary Data
 
{1527ccd4-8ec1-491b-9674-12461967a807}REG_BINARY Binary Data
 
{20f5befe-1bc7-4b49-abd5-d1c998eb5b5d}REG_BINARY Binary Data
 
{c651501d-59f6-4414-b61b-72a0b7ce1b76}REG_BINARY Binary Data
 
{5df14e6f-658e-490b-b574-08bc1bf6fb48}REG_BINARY Binary Data
 
{06cec6e2-6ceb-4036-8f00-f0e12fa34a89}REG_BINARY Binary Data
 
{973ff2c3-19cf-4712-a5f8-ec55ca252c78}REG_BINARY Binary Data
 
{0b0285d9-460c-4192-9b52-6cd16f0f39a3}REG_BINARY Binary Data
 
{19e50d88-8549-43f5-9030-4a37b4144980}REG_BINARY Binary Data
 
{bc776f71-935b-48da-9902-537ee4f90cad}REG_BINARY Binary Data
 
{200ca180-f317-432b-80cc-b2a23c49b7bc}REG_BINARY Binary Data
 
{63106929-1d25-4a48-a539-ef75f5eaa513}REG_BINARY Binary Data
 
{a7dc1ec5-8928-4b8c-808b-88bbdc2caee4}REG_BINARY Binary Data
 
{7894ed42-cda9-44a0-a9df-b34072f79904}REG_BINARY Binary Data
 
{612c99de-c96b-4182-8fab-f6342c868dc1}REG_BINARY Binary Data
 
{5278704a-019d-4265-90fb-675755b1c56f}REG_BINARY Binary Data
 
{fdf26f6b-4934-4a2f-bc11-16c48fba7332}REG_BINARY Binary Data
 
{637d749a-b3bd-4108-b92e-cccc1ac065d7}REG_BINARY Binary Data
 
{bf66dce3-a2dd-40d3-b3b0-317cfadd142f}REG_BINARY Binary Data
 
{783680e4-3fe9-4087-9586-55e24f6c80fc}REG_BINARY Binary Data
 
{757cca30-6db5-45b7-8b3a-42162eef127d}REG_BINARY Binary Data
 
{ead69ec6-327b-4077-966c-929f7ac818b3}REG_BINARY Binary Data
 
{fbf5cec7-db5f-4580-a4a7-4241a0cab202}REG_BINARY Binary Data
 
{b0c8db7c-facb-438f-bb7f-5ce9683dbc58}REG_BINARY Binary Data
 
{5cf01a0a-14cf-4bb0-a976-fac3a91ffb3e}REG_BINARY Binary Data
 
{0a72f410-8a72-43c9-954c-2908a4c22501}REG_BINARY Binary Data
 
{565c6648-b525-4aaf-9146-34d0fd86c094}REG_BINARY Binary Data
 
{f50bdaf3-856e-40ce-adbc-f8110dd9e7e1}REG_BINARY Binary Data
 
{7998164e-fb83-4941-be0a-5e26ff5a6941}REG_BINARY Binary Data
 
{2f9cf593-12e0-4314-965e-772396e5d851}REG_BINARY Binary Data
 
{efa1f30e-1517-4ce8-b03a-5ea61cb6ef74}REG_BINARY Binary Data
 
{ef8c5ce9-abd8-4b24-aaf9-512b3fce817e}REG_BINARY Binary Data
 
{2e032542-e89b-4694-add4-d4d0b9b392dc}REG_BINARY Binary Data
 
{c8f103fb-f7bb-4820-a746-0814d2a8ce64}REG_BINARY Binary Data
 
{7329e35c-3bdc-4051-8167-f518c5c0f411}REG_BINARY Binary Data
 
{713b6130-059e-4b8d-8497-280c83b4c3e7}REG_BINARY Binary Data
 
{767e9914-0137-4894-b816-1a81b299c040}REG_BINARY Binary Data
 
{8cf6ab89-8aa2-421f-b9f6-c523f444ffaa}REG_BINARY Binary Data
 
{47037f82-55aa-4a7b-82d8-b5aaa60661bd}REG_BINARY Binary Data
 
{2f75424f-f13f-472f-84f7-4ee635a7dc3c}REG_BINARY Binary Data
 
{d02ffedb-a669-44ff-a01f-f573fe72c8a2}REG_BINARY Binary Data
 
{b4890a24-9efe-4ab0-9bf7-5f8e93f890d2}REG_BINARY Binary Data
 
{727a561c-5169-47bc-bb38-276fe1a0a9dd}REG_BINARY Binary Data
 
{390eab0d-8f86-468b-80bc-8d4669118175}REG_BINARY Binary Data
 
{dc95b53e-01cf-4058-821d-350b3d0d4676}REG_BINARY Binary Data
 
{f444c576-6e60-4ea2-9faa-80d57ed12cd2}REG_BINARY Binary Data
 
{0c41d586-9c19-4e01-9d66-b5b98a97576e}REG_BINARY Binary Data
 
{12c38916-82ac-4737-8f38-b6957ffebad6}REG_BINARY Binary Data
 
{c970a45d-57f9-4e32-a5bd-886a9662641e}REG_BINARY Binary Data
 
{0c3be01b-fe70-4cc4-89dc-c07996b67e6d}REG_BINARY Binary Data
 
{4d9581d2-aef8-4993-84cd-b986ced80d42}REG_BINARY Binary Data
 
{be7cbdf4-b192-4aa5-94f8-1fb5c5ee07bc}REG_BINARY Binary Data
 
{716b48eb-0a35-4a76-92ab-1d987230d288}REG_BINARY Binary Data
 
{1165065e-4996-4338-abaf-4b8556b4d431}REG_BINARY Binary Data
 
{07a24961-a760-4e80-b263-6d275e1b09cb}REG_BINARY Binary Data
 
{5b0cb2e2-ab87-4974-9f1c-2f22a654eeb9}REG_BINARY Binary Data
 
{b6b2ca61-fb98-4422-adc2-e7cf56b3680c}REG_BINARY Binary Data
 
{0aa7fff8-919f-453c-928c-28a12122ba38}REG_BINARY Binary Data
 
{074f7f68-ee10-428a-89d1-ba78f6c327ca}REG_BINARY Binary Data
 
{c016105c-eb34-4519-a5fd-5f4e4ad4d18e}REG_BINARY Binary Data
 
{a47525e2-725b-4888-8af1-ba5a60c04f4d}REG_BINARY Binary Data
 
{0ccc96a3-8c5c-45e2-b80e-7e37b16cc1ad}REG_BINARY Binary Data
 
{91ffecf0-0a9e-4572-95f1-a7111af86967}REG_BINARY Binary Data
 
{64e55933-15a5-495d-a928-ccca43d44875}REG_BINARY Binary Data
 
{13bfd422-6f75-4408-8924-9400ec0cb19c}REG_BINARY Binary Data
 
{cbfb56db-3c85-4543-9bc2-76ea28cdd74e}REG_BINARY Binary Data
 
{2dd96961-5757-434f-b617-34e732517c0e}REG_BINARY Binary Data
 
{375fb39b-08c6-40f2-bdf2-08fa63f970a2}REG_BINARY Binary Data
 
{2db25e6c-f07a-44f4-b6c8-50a330d2790b}REG_BINARY Binary Data
 
{c42f1cd6-3a95-4ae2-a513-793c3ae610c7}REG_BINARY Binary Data
 
{b6fdab6b-dcc6-43e3-99ce-7aeca65063a4}REG_BINARY Binary Data
 
{3697a558-3ed3-49be-a4c1-c1a4448653b4}REG_BINARY Binary Data
 
{935b7f48-0ede-44dd-9bc2-e00bb635cda3}REG_BINARY Binary Data
 
{941dad9d-7b1a-4354-997b-00cf1aa9b35c}REG_BINARY Binary Data
 
{b02a4013-b6b5-4859-9168-1e3299e43b24}REG_BINARY Binary Data
 
{d870c96c-75ee-46a6-8a02-8e4401a73423}REG_BINARY Binary Data
 
{8b50e2ec-7cf0-4b71-b42e-5b0536f6cab8}REG_BINARY Binary Data
 
{4137b143-2770-43d4-91a2-55bb0a069830}REG_BINARY Binary Data
 
{3180114b-8338-4740-9a16-444134ad62f4}REG_BINARY Binary Data
 
{17043d46-fac2-4561-bca1-0c7a05e95f5f}REG_BINARY Binary Data
 
{567d3836-3f5b-4067-b9c4-952f677010a2}REG_BINARY Binary Data
 
{4e718c57-c397-4221-9fbb-14fd51701d6a}REG_BINARY Binary Data
 
{3a90a266-1519-4d23-911b-e84cd0f02ab8}REG_BINARY Binary Data
 
{56b4fdc4-bb4e-4c42-a9d8-f627ee15ac21}REG_BINARY Binary Data
 
{1ba41ed8-151d-4577-9272-317856bc637c}REG_BINARY Binary Data
 
{9248d57e-f843-4159-807d-3813173e2096}REG_BINARY Binary Data
 
{4658cd86-525d-44ed-98a5-791a7b8655f1}REG_BINARY Binary Data
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\Provider
{decc16ca-3f33-4346-be1e-8fb4ae0f3d62}REG_BINARY Binary Data
 
{4b153735-1049-4480-aab4-d1b9bdc03710}REG_BINARY Binary Data
 
{1bebc969-61a5-4732-a177-847a0817862a}REG_BINARY Binary Data
 
{06e9d64c-15e9-4615-a862-1f0dc2674c6a}REG_BINARY Binary Data
 
{aa6a7d87-7f8f-4d2a-be53-fda555cd5fe3}REG_BINARY Binary Data
 
{42ff0794-3627-44c1-9886-765010075254}REG_BINARY Binary Data
 
{839cd73f-1907-49ea-9aa5-0e6be9048087}REG_BINARY Binary Data
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE\Parameters\Policy\Persistent\SubLayer
{b3cdd441-af90-41ba-a745-7c6008ff2300}REG_BINARY Binary Data
 
{b3cdd441-af90-41ba-a745-7c6008ff2301}REG_BINARY Binary Data
 
{b3cdd441-af90-41ba-a745-7c6008ff2302}REG_BINARY Binary Data
 
{9ba30013-c84e-47e5-ac6e-1e1aed72fa69}REG_BINARY Binary Data
 
{3f15ff23-0393-499c-a09d-aafd7c7bbd98}REG_BINARY Binary Data
 
{fe3ddaea-f31a-408c-82ed-165f88c04a51}REG_BINARY Binary Data
 
{f276dc14-3156-40d4-8ebf-fa7955d1a01e}REG_BINARY Binary Data
 
{01551535-cf70-46ae-a57e-bea2cb9a02b3}REG_BINARY Binary Data
 
{1a4ebdd2-97d3-4485-91ad-b16a10998e48}REG_BINARY Binary Data
 
{b7a7d35a-c4a3-4476-b7d7-da169ee6ee1a}REG_BINARY Binary Data
 
{15364db8-d563-4ecc-9540-be6c5296453d}REG_BINARY Binary Data
 
{012e3ec2-826d-4fe2-b723-0403c2fdc604}REG_BINARY Binary Data
 
{4b94b142-669e-4d13-8ef3-611e073c8373}REG_BINARY Binary Data
 
{4224eab7-7d61-4fe0-9264-6d6568d2ddff}REG_BINARY Binary Data
 
{8c36b346-4e0c-4049-8b55-5295ac35567c}REG_BINARY Binary Data
 
--------------fltmgr:--------------
Type:                   2
State:                  4 (The service is running.) (STOPPABLE, NOT_PAUSABLE, IGNORES_SHUTDOWN)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr
AttachWhenLoaded              REG_DWORD 1
DisplayName                   REG_SZ @%SystemRoot%\system32\drivers\fltmgr.sys,-10001
Group                         REG_SZ FSFilter Infrastructure
ImagePath                     REG_EXPAND_SZ system32\drivers\fltmgr.sys
Description                   REG_SZ @%SystemRoot%\system32\drivers\fltmgr.sys,-10000
ErrorControl                  REG_DWORD 3
Start                         REG_DWORD 0
Tag                           REG_DWORD 1
Type                          REG_DWORD 2
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\FltMgr\Enum
0                             REG_SZ Root\LEGACY_FLTMGR\0000
Count                         REG_DWORD 1
NextInstance                  REG_DWORD 1
 
 
C:\Windows\system32\drivers\fltmgr.sys
File Size: 289664    BYTES FileVersion: 6.1.7601.17514 MD5: [da6b67270fd9db3697b20fce94950741]
C:\Windows\SysWOW64\comctl32.ocx
File Size: 608448    BYTES FileVersion: 6.0.81.5 MD5: [eb5f811c1f78005b3c147599a0cccf51]
C:\Windows\SysWOW64\mscomctl.ocx
File Size: 1066176   BYTES FileVersion: 6.0.88.62 MD5: [714cf24fc19a20ae0dc701b48ded2cf6]
C:\Windows\SysWOW64\olepro32.dll
File Size: 90112     BYTES FileVersion: 6.1.7601.17514 MD5: [703ffd301ab900b047337c5d40fd6f96]
 
 
MBAM Registry Settings and License Info:
========================================
--------------Settings:--------------
Advanced: 
    AutomaticQuarantine:                                       true 
    AutostartProtection:                                       false 
    EarlyStartSelfProtection:                                  true 
    LimitedMode:                                               false 
    LowPriorityScans:                                          true 
    SelfProtection:                                            true 
    StartSilentMode:                                           false 
    StartupDelay:                                              -15 
ApplicationState: 
    First-Run-After-Installation:                              false 
General: 
    DaysUntilNotifyExpiration:                                 5 
    Language:                                                  en 
    RightClickAccess:                                          true 
    SilentErrors:                                              false 
Logging: 
    ExportLog:                                                 true 
Marketing: 
    LastPostScanMarketingIndex:                                3 
Notification: 
ProtectionTray: 
    DisplayMilliseconds:                                       3000 
ScanHistory: 
    Duration_Complete:                                         905962 
    Duration_Driver:                                           24590 
    Duration_Filesystem:                                       2612 
    Duration_Heuristics:                                       1671632 
    Duration_Loading:                                          0 
    Duration_MasterBootRecord:                                 206 
    Duration_Memory:                                           40000 
    Duration_PreScan:                                          28067 
    Duration_Registry:                                         20159 
    Duration_Sector:                                           0 
    Duration_SectorMemory:                                     1000 
    Duration_Startup:                                          32147 
    ItemCount_Complete:                                        336329 
    ItemCount_Driver:                                          332 
    ItemCount_Filesystem:                                      59765 
    ItemCount_Heuristics:                                      21160 
    ItemCount_Loading:                                         0 
    ItemCount_MasterBootRecord:                                1 
    ItemCount_Memory:                                          2797 
    ItemCount_PreScan:                                         28000 
    ItemCount_Registry:                                        609 
    ItemCount_Sector:                                          0 
    ItemCount_SectorMemory:                                    221 
    ItemCount_Startup:                                         1527 
    LastScanDateEpoch:                                         1436896968491 
    LastScanType:                                              1 (Threat Scan)
Update: 
    LastUpdate:                                                2015-07-14T18:02:18 
    NotifyInstallReady:                                        true 
    NotifyOutdatedDatabase:                                    1 
    ProxyPassword:                                              
    ProxyPort:                                                 0 
    ProxyServer:                                                
    ProxyUsername:                                              
    UseProxy:                                                  false 
    UseProxyAuthentication:                                    false 
--------------Account:--------------
  Account Status:                                              Premium 
  Expiration Time:                                             2034/09/04 13:04:54 
  Activation Time:                                             2014/09/04 13:04:54 
  Trial Used:                                                  false 
--------------Access Policies:--------------
 
Scheduler Queue:
================
 
tasks: 
    70b1bc20-4338-4035-b8f5-9cc8ab9d477b:                       
      parameters:                                               
        CheckForUpdatesBeforeScanStart:                        true 
        ProcessLaunchedFromScheduler:                          true 
        ScanConfig:                                             
          ExitWhenNoMalwareDetected:                           false 
          FileSystemOption:                                    true 
          RebootSystemWhenMalwareDetected:                     true 
          RemoveMalwareAutomaticallyWhenScanEnds:              true 
          ScanArchives:                                        true 
          ScanHeuristic:                                       true 
          ScanMemoryObjects:                                   true 
          ScanPUM:                                             2 
          ScanPUP:                                             1 
          ScanRegistry:                                        true 
          ScanRootkits:                                        true 
          ScanStartup:                                         true 
          ScanTargets:                                          
          ScanType:                                            1 (Threat Scan)
          Silent:                                              true 
        StartTaskFromSystemAccount:                            false 
        TaskType:                                              0 
      triggers:                                                 
        39429d97-55b7-4e9a-819b-6f108a7cf793:                   
          dateinterval:                                        1:0:0 
          lastscheduled:                                       Tue, 14 Jul 2015 10:55:42 +0000 
          lasttriggered:                                       Fri, 22 May 2015 05:55:42.012555 -0500 
          nextscheduled:                                       Wed, 15 Jul 2015 10:55:42 +0000 
          recovery:                                            04:00:00 
          start:                                               Tue, 09 Sep 2014 10:55:42 +0000 
          timeinterval:                                        00:00:00 
          type:                                                4 
          uuid:                                                39429d97-55b7-4e9a-819b-6f108a7cf793 
      type:                                                    scan 
      uuid:                                                    70b1bc20-4338-4035-b8f5-9cc8ab9d477b 
    f6a9b089-db95-4eb6-8b6c-f27e6575a8d7:                       
      parameters:                                               
        ProcessLaunchedFromScheduler:                          true 
        TaskType:                                              3 
      triggers:                                                 
        93101e29-6441-4177-a77e-30d8c2c7c0c8:                   
          dateinterval:                                        0:0:0 
          lastscheduled:                                       Tue, 14 Jul 2015 14:08:43.725552 -0500 
          lasttriggered:                                       Tue, 14 Jul 2015 14:08:43.725552 -0500 
          nextscheduled:                                       Tue, 14 Jul 2015 14:23:56.700227 -0500 
          recovery:                                            00:00:00 
          start:                                               Thu, 04 Sep 2014 13:09:54.700227 -0500 
          timeinterval:                                        01:00:00 
          type:                                                3 
          uuid:                                                93101e29-6441-4177-a77e-30d8c2c7c0c8 
      type:                                                    update 
      uuid:                                                    f6a9b089-db95-4eb6-8b6c-f27e6575a8d7 
 
Pending File Rename Operations: 
================================
If any Malwarebytes Anti-Malware items are listed below, the user must reboot to complete a Malwarebytes Anti-Malware upgrade installation.
 
MBAMProtector Registry Values:
==============================
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector
Type                          REG_DWORD 2
Start                         REG_DWORD 3
ErrorControl                  REG_DWORD 1
ImagePath                     REG_EXPAND_SZ \??\C:\Windows\system32\drivers\mbam.sys
Group                         REG_SZ FSFilter Anti-Virus
DependOnService               REG_MULTI_SZ FltMgr
 
WOW64                         REG_DWORD 1
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Instances
DefaultInstance               REG_SZ MBAMProtector Instance
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Instances\MBAMProtector Instance
Altitude                      REG_SZ 328800
Flags                         REG_DWORD 0
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Parameters
PassThruFile                  REG_SZ mbampt.exe
ProductPath                   REG_SZ C:\Program Files (x86)\Malwarebytes Anti-Malware
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMProtector\Enum
0                             REG_SZ Root\LEGACY_MBAMPROTECTOR\0000
Count                         REG_DWORD 1
NextInstance                  REG_DWORD 1
 
MBAMService Registry Values:
============================
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMService
Type                          REG_DWORD 16
Start                         REG_DWORD 2
ErrorControl                  REG_DWORD 1
ImagePath                     REG_EXPAND_SZ "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe"
DependOnService               REG_MULTI_SZ MBAMProtector
 
WOW64                         REG_DWORD 1
ObjectName                    REG_SZ LocalSystem
Description                   REG_SZ Malwarebytes Anti-Malware service
DelayedAutostart              REG_DWORD 0
 
MBAMScheduler Registry Values:
==============================
 
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MBAMScheduler
Type                          REG_DWORD 16
Start                         REG_DWORD 2
ErrorControl                  REG_DWORD 1
ImagePath                     REG_EXPAND_SZ "C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe"
WOW64                         REG_DWORD 1
ObjectName                    REG_SZ LocalSystem
Description                   REG_SZ Malwarebytes Anti-Malware scheduler
 
Terminal Services Status for (null) entries in PM logs and GetUserToken errors:
===============================================================================
 
--------------TERMService:--------------
Type:                   32
State:                  4 (The service is running.)
WIN32_EXIT_CODE:        0
SERVICE_EXIT_CODE:      0
CHECKPOINT:             0
WAIT_HINT:              0
 
 
TermService Start is set to: 3 (Manual Startup)
 
Proxy Status: No proxy is Set
 
Proxy Override: 
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\
ProxyOverride REG_SZ <local>;192.168.*.*
 
LAN Settings:
=============
 
only 'Automatically detect settings' is selected
 
SystemPartition:
================
 
HKEY_LOCAL_MACHINE\SYSTEM\Setup\
SystemPartition REG_SZ \Device\HarddiskVolume1
 
Balloon Tips Status:
====================
 
Enabled
 
Time Format Settings:
=====================
 
Should be:
h:mm:ss tt
AM 
PM 
:
 
Currently:
REG_SZ h:mm:ss tt
REG_SZ AM
REG_SZ PM
REG_SZ :
 
Language and Regional Settings:
===============================
 
ACP: Language is English (United States)
MACCP: Language is English (United States)
OEMCP: Language is English (United States)
 
Startup Folders for Error_Expanding_Variables Check:
====================================================
 
All Users Startup Folder Exists.
Current User's Startup Folder Exists.
 
 
Context Menu Entries:
=====================
 
HKEY_CLASSES_ROOT\AllFilesystemObjects\shellex\ContextMenuHandlers\MBAMShlExt
(Default):                    REG_SZ [CC]{57CE581A-0CB6-4266-9CA0-19364C90A0B3}
 
HKEY_CLASSES_ROOT\Folder\shellex\ContextMenuHandlers\MBAMShlExt
(Default):                    REG_SZ [CC]{57CE581A-0CB6-4266-9CA0-19364C90A0B3}
 
HKEY_CLASSES_ROOT\MBAMExt.MBAMShlExt
(Default):                    REG_SZ MBAMShlExt Class
HKEY_CLASSES_ROOT\MBAMExt.MBAMShlExt\CLSID
(Default):                    REG_SZ {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
HKEY_CLASSES_ROOT\MBAMExt.MBAMShlExt\CurVer
(Default):                    REG_SZ MBAMExt.MBAMShlExt.1
HKEY_CLASSES_ROOT\MBAMExt.MBAMShlExt.1
(Default):                    REG_SZ MBAMShlExt Class
HKEY_CLASSES_ROOT\MBAMExt.MBAMShlExt.1\CLSID
(Default):                    REG_SZ {57CE581A-0CB6-4266-9CA0-19364C90A0B3}
 
 
HKEY_CLASSES_ROOT\Interface\{015FAC74-0374-494A-A02D-316D562C0FCE}
(Default):                    REG_SZ IMBAMShlExt
HKEY_CLASSES_ROOT\Interface\{015FAC74-0374-494A-A02D-316D562C0FCE}\ProxyStubClsid32
(Default):                    REG_SZ {00020424-0000-0000-C000-000000000046}
HKEY_CLASSES_ROOT\Interface\{015FAC74-0374-494A-A02D-316D562C0FCE}\TypeLib
(Default):                    REG_SZ {AFF1A83B-6C83-4342-8E68-1648DE06CB65}
Version                       REG_SZ 1.0
HKEY_CLASSES_ROOT\CLSID\{57CE581A-0CB6-4266-9CA0-19364C90A0B3}
(Default):                    REG_SZ MBAMShlExt Class
HKEY_CLASSES_ROOT\CLSID\{57CE581A-0CB6-4266-9CA0-19364C90A0B3}\InprocServer32
(Default):                    REG_SZ C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll
ThreadingModel                REG_SZ Apartment
HKEY_CLASSES_ROOT\CLSID\{57CE581A-0CB6-4266-9CA0-19364C90A0B3}\ProgID
(Default):                    REG_SZ MBAMExt.MBAMShlExt.1
HKEY_CLASSES_ROOT\CLSID\{57CE581A-0CB6-4266-9CA0-19364C90A0B3}\TypeLib
(Default):                    REG_SZ {AFF1A83B-6C83-4342-8E68-1648DE06CB65}
HKEY_CLASSES_ROOT\CLSID\{57CE581A-0CB6-4266-9CA0-19364C90A0B3}\VersionIndependentProgID
(Default):                    REG_SZ MBAMExt.MBAMShlExt
 
HKEY_CLASSES_ROOT\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}
HKEY_CLASSES_ROOT\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0
(Default):                    REG_SZ MBAMExt 1.0 Type Library
HKEY_CLASSES_ROOT\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\0
HKEY_CLASSES_ROOT\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\0\win32
(Default):                    REG_SZ C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll
HKEY_CLASSES_ROOT\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\FLAGS
(Default):                    REG_SZ 0
HKEY_CLASSES_ROOT\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\HELPDIR
(Default):                    REG_SZ C:\Program Files (x86)\Malwarebytes' Anti-Malware
HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}
HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0
(Default):                    REG_SZ MBAMExt 1.0 Type Library
HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\0
HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\0\win32
(Default):                    REG_SZ C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll
HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\FLAGS
(Default):                    REG_SZ 0
HKEY_CLASSES_ROOT\Wow6432Node\TypeLib\{AFF1A83B-6C83-4342-8E68-1648DE06CB65}\1.0\HELPDIR
(Default):                    REG_SZ C:\Program Files (x86)\Malwarebytes' Anti-Malware
 
 
List of MBAM Related Directories:
=================================
 
C:\Program Files (x86)\Malwarebytes Anti-Malware\
7z.dll                                   File Size: 920888    BYTES FileVersion:  9.20.0.0       MD5: [3c88cad475b8b4b30b62199e40b2498c]
changes.txt                             File Size: 577       BYTES FileVersion:  N/A            MD5: [58354dbb59bc2955d070559338f970a4]
license.rtf                             File Size: 42936     BYTES FileVersion:  N/A            MD5: [b22cb49aa8d1359b08eb9e4a4e13899b]
master.conf                             File Size: 1258      BYTES FileVersion:  N/A            MD5: [9702ca5e82d3756c6d8af34a2ababaea]
mbam.dll                                 File Size: 602936    BYTES FileVersion:  1.0.35.0       MD5: [296e2ee79be1a6cf197ad38ae3bd58d9]
mbam.exe                                 File Size: 6212920   BYTES FileVersion:  1.0.2.929      MD5: [7e212e742bf06bf678ae35e9c1b74b8f]
mbamcore.dll                             File Size: 1971000   BYTES FileVersion:  1.2.0.0        MD5: [043835a4a31239fe57b891ec960e6075]
mbamdor.exe                             File Size: 54072     BYTES FileVersion:  1.0.1.0        MD5: [b83bd7a2c8c2c03d06859c9c46358de7]
mbamext.dll                             File Size: 310584    BYTES FileVersion:  3.0.6.0        MD5: [2f3e8b9ee709180e01b197929b3dd4eb]
mbampt.exe                               File Size: 39736     BYTES FileVersion:  1.0.0.0        MD5: [416c41110833b3e1c14c7188b71ae70f]
mbamscheduler.exe                       File Size: 1871160   BYTES FileVersion:  3.1.2.0        MD5: [516e29ad03bdf610cc36a95ae692fe42]
mbamservice.exe                         File Size: 1080120   BYTES FileVersion:  3.1.0.0        MD5: [2b983f067aee3f9eb4df5e97f45d21d1]
mbamsrv.dll                             File Size: 3847992   BYTES FileVersion:  1.2.7.0        MD5: [22c7bd320a5c2ae3ae24c529768702f9]
msvcp100.dll                             File Size: 421688    BYTES FileVersion:  10.0.40219.325 MD5: [83c628fb6b293d61f7bfbbc3d8f88ac9]
msvcr100.dll                             File Size: 774456    BYTES FileVersion:  10.0.40219.325 MD5: [e8115316a914da20529e984f0c52828d]
QtCore4.dll                             File Size: 2582840   BYTES FileVersion:  4.8.5.0        MD5: [f8e05dc5365f07d0337ef56be17b3e04]
QtGui4.dll                               File Size: 8420152   BYTES FileVersion:  4.8.5.0        MD5: [fd1d67dd57309ffe4ae508c14b71b561]
QtNetwork4.dll                           File Size: 909112    BYTES FileVersion:  4.8.5.0        MD5: [d966279de7fa2193eb84cfb859e704a6]
unins000.dat                             File Size: 150990    BYTES FileVersion:  N/A            MD5: [7c74695e623144e0d16059d1df968b71]
unins000.exe                             File Size: 718037    BYTES FileVersion:  51.52.0.0      MD5: [d2796ecf50731e696f0c065d24c0827a]
 
C:\Program Files (x86)\Malwarebytes Anti-Malware\\accessible
qtaccessiblewidgets4.dll                 File Size: 198968    BYTES FileVersion:  4.8.4.0        MD5: [9ba27dab5412b71cb8238740d6619d1d]
 
C:\Program Files (x86)\Malwarebytes Anti-Malware\\Chameleon
 
C:\Program Files (x86)\Malwarebytes Anti-Malware\\Chameleon\Windows
chameleon.chm                           File Size: 235882    BYTES FileVersion:  N/A            MD5: [c4190b71f037714aa77aba294434ba5b]
firefox.com                             File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
firefox.exe                             File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
firefox.pif                             File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
firefox.scr                             File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
iexplore.exe                             File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
mbam-chameleon.com                       File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
mbam-chameleon.exe                       File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
mbam-chameleon.pif                       File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
mbam-chameleon.scr                       File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
mbam-killer.exe                         File Size: 1445176   BYTES FileVersion:  3.0.9.0        MD5: [99345356e450a5a403488280d3520550]
rundll32.exe                             File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
svchost.exe                             File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
windows.exe                             File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
winlogon.exe                             File Size: 878392    BYTES FileVersion:  3.1.16.0       MD5: [4518dd9a09b4fef7db3b13f0ddddd36e]
 
C:\Program Files (x86)\Malwarebytes Anti-Malware\\imageformats
qgif4.dll                               File Size: 32568     BYTES FileVersion:  4.8.4.0        MD5: [769d18b10c86186dc31a389979d33c27]
 
C:\Program Files (x86)\Malwarebytes Anti-Malware\\Languages
lang_ar.qm                               File Size: 102066    BYTES FileVersion:  N/A            MD5: [1601bc6ef4bec7d2ab9ba68a7f989a37]
lang_bg.qm                               File Size: 124167    BYTES FileVersion:  N/A            MD5: [1353a08c12f1de3f9daf8d4accf005de]
lang_bs.qm                               File Size: 145523    BYTES FileVersion:  N/A            MD5: [6ab7a6274d4f9f7553c944f5c66201ba]
lang_ca.qm                               File Size: 107459    BYTES FileVersion:  N/A            MD5: [5549692fe8f9e43e0012a088f6a94450]
lang_cs.qm                               File Size: 119884    BYTES FileVersion:  N/A            MD5: [585ff91200e8e356bc713f5ee7dd78a5]
lang_da.qm                               File Size: 102643    BYTES FileVersion:  N/A            MD5: [ef3261171bcaebac883893f374ad4024]
lang_de.qm                               File Size: 130017    BYTES FileVersion:  N/A            MD5: [7558ad2d9a5f23f95bcb9d50f7458250]
lang_el.qm                               File Size: 128427    BYTES FileVersion:  N/A            MD5: [4450767b6eaaa6869ee410d389a5e9ed]
lang_en.qm                               File Size: 100191    BYTES FileVersion:  N/A            MD5: [2b85d8e24659bf96f2c8a666bead54c4]
lang_es.qm                               File Size: 129307    BYTES FileVersion:  N/A            MD5: [74e57ce8c0dc024d7c5fcb068debb3a0]
lang_et.qm                               File Size: 122063    BYTES FileVersion:  N/A            MD5: [ff11420bba00002307e14b288c4ce19f]
lang_fi.qm                               File Size: 103951    BYTES FileVersion:  N/A            MD5: [89d33b2b7175fb7b3924d9864cdf2230]
lang_fr.qm                               File Size: 131783    BYTES FileVersion:  N/A            MD5: [d2b1267fbbb51c39e79f975fbe2182a7]
lang_he.qm                               File Size: 112817    BYTES FileVersion:  N/A            MD5: [a2614d9a5d9aba7817fbae878a92de2c]
lang_hr.qm                               File Size: 139841    BYTES FileVersion:  N/A            MD5: [3e3737fe86eb595c5f6817eebf731aa7]
lang_hu.qm                               File Size: 123254    BYTES FileVersion:  N/A            MD5: [c64b7919827df30fd55d9e9f40cf87a7]
lang_id.qm                               File Size: 120134    BYTES FileVersion:  N/A            MD5: [dffed4516bf61605021d9e8861c01951]
lang_it.qm                               File Size: 126353    BYTES FileVersion:  N/A            MD5: [4736f333e32d0c8f091ca9afe3fa4e71]
lang_ja.qm                               File Size: 87363     BYTES FileVersion:  N/A            MD5: [d982d5194aaa6e24e7191ee908491f9d]
lang_ko.qm                               File Size: 99039     BYTES FileVersion:  N/A            MD5: [5211e95dd40ea3b4cde5c831490822c9]
lang_lt.qm                               File Size: 105352    BYTES FileVersion:  N/A            MD5: [d610679ecb6929ee3ce82cac8f8d00a1]
lang_lv.qm                               File Size: 105344    BYTES FileVersion:  N/A            MD5: [985309298c683a35571fdb9486708287]
lang_nl.qm                               File Size: 125821    BYTES FileVersion:  N/A            MD5: [018c55baa051080bb012e63cb446b203]
lang_no.qm                               File Size: 120529    BYTES FileVersion:  N/A            MD5: [c2ee34817e0dfed9d5a5a85bc667e73c]
lang_pl.qm                               File Size: 125910    BYTES FileVersion:  N/A            MD5: [56e9a207bf8f4b564fd71e9defa96d4b]
lang_pt_BR.qm                           File Size: 124022    BYTES FileVersion:  N/A            MD5: [46a048872f4091a6a9862a54457c3a2c]
lang_pt_PT.qm                           File Size: 129551    BYTES FileVersion:  N/A            MD5: [99eb0c042faad4ee276f267a870a7abf]
lang_ro.qm                               File Size: 104981    BYTES FileVersion:  N/A            MD5: [0cbdb05b7927831d8331eb14d4638f32]
lang_ru.qm                               File Size: 126972    BYTES FileVersion:  N/A            MD5: [0febf393c35f2f1a3cd914b838da66dc]
lang_sk.qm                               File Size: 103656    BYTES FileVersion:  N/A            MD5: [d3fd5aa90bdae21984139a21058f4d71]
lang_sl.qm                               File Size: 122126    BYTES FileVersion:  N/A            MD5: [59911addc36e105cc55ba2ee31d09b7a]
lang_sr.qm                               File Size: 143261    BYTES FileVersion:  N/A            MD5: [377d15c0da0249f4a7a58978b6307d81]
lang_sv.qm                               File Size: 121593    BYTES FileVersion:  N/A            MD5: [f96d43155d3c98e43d7682983c0a9898]
lang_th.qm                               File Size: 137957    BYTES FileVersion:  N/A            MD5: [6a24ece552172d805cd428853255d294]
lang_tr.qm                               File Size: 103127    BYTES FileVersion:  N/A            MD5: [12b05f94c8e397c62f324485e3059b07]
lang_vi.qm                               File Size: 119896    BYTES FileVersion:  N/A            MD5: [651b66fb4a9cfa95b640876670be7a27]
lang_zh_tr.qm                           File Size: 110870    BYTES FileVersion:  N/A            MD5: [f223d83580b1ee35edea13293cb2c80d]
 
C:\Program Files (x86)\Malwarebytes Anti-Malware\\Plugins
fixdamage.exe                           File Size: 821560    BYTES FileVersion:  1.1.0.1010     MD5: [796973043d5b665178150dd1cfb41a43]
 
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware
actions.ref                             File Size: 1297      BYTES FileVersion:  N/A            MD5: [bf994186725bbc09436247ec78eacba1]
cleanup.old                             File Size: 1971000   BYTES FileVersion:  1.2.0.0        MD5: [043835a4a31239fe57b891ec960e6075]
domains.ref                             File Size: 92        BYTES FileVersion:  N/A            MD5: [643b11322d78d9f4f46f030869ecfc49]
exclusions.dat                           File Size: 2         BYTES FileVersion:  N/A            MD5: [cf056a8f13f792f4413a75a30a5cdd95]
ips.ref                                 File Size: 80        BYTES FileVersion:  N/A            MD5: [2ec9c118caec1ae4b78c6ea95da0539f]
mbam-setup.exe                           File Size: 21546080  BYTES FileVersion:  2.1.6.1022     MD5: [6cdeac78e5677e304477fb36351c3195]
mbamdor.old                             File Size: 54072     BYTES FileVersion:  1.0.1.0        MD5: [b83bd7a2c8c2c03d06859c9c46358de7]
rules.ref                               File Size: 9761481   BYTES FileVersion:  N/A            MD5: [ad0270de6dbaf43f0fefe1038bcbe7ee]
swissarmy.ref                           File Size: 25586     BYTES FileVersion:  N/A            MD5: [494f439dd9702cf5eb4bf1d132e5d034]
 
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Configuration
build.conf                               File Size: 4623      BYTES FileVersion:  N/A            MD5: [df0a93bde46b7e2a5b0baa2a1f59c2c3]
database.conf                           File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
gatekeeper.conf                         File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
license.conf                             File Size: 1140      BYTES FileVersion:  N/A            MD5: [8ac7a0d3a0a32b2753a418f715100196]
manifest.conf                           File Size: 2439      BYTES FileVersion:  N/A            MD5: [49705cd8c479a8830a945bf9b499c3b9]
marketing.conf                           File Size: 11163     BYTES FileVersion:  N/A            MD5: [5ae2d2735ac9e32afd2ddbab1d604496]
net.conf                                 File Size: 6920      BYTES FileVersion:  N/A            MD5: [41c01b0143937b2ad80bc55064be941f]
notifications.conf                       File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
scheduler.conf                           File Size: 2021      BYTES FileVersion:  N/A            MD5: [dd5eb8e5fcba738b2fcf47b1cb0666e1]
settings.conf                           File Size: 2193      BYTES FileVersion:  N/A            MD5: [85bc8a0afa8b54a409be791b7002ba67]
statistics.conf                         File Size: 597       BYTES FileVersion:  N/A            MD5: [0246244424e575be619d8d52b6623dbb]
 
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Configuration\Restore
build.conf                               File Size: 4182      BYTES FileVersion:  N/A            MD5: [a6f4892a9a602a54ecfc8681294103bb]
database.conf                           File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
gatekeeper.conf                         File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
license.conf                             File Size: 23        BYTES FileVersion:  N/A            MD5: [0ec01df616b565180556881d8042255b]
manifest.conf                           File Size: 1576      BYTES FileVersion:  N/A            MD5: [af6de7a6ee83d328eb7211c854c57c67]
marketing.conf                           File Size: 11163     BYTES FileVersion:  N/A            MD5: [5ae2d2735ac9e32afd2ddbab1d604496]
net.conf                                 File Size: 6085      BYTES FileVersion:  N/A            MD5: [2e9986b0f3babad30e41fd2468197e94]
notifications.conf                       File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
scheduler.conf                           File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
settings.conf                           File Size: 1725      BYTES FileVersion:  N/A            MD5: [5454026126dac24f6e96eeb0c64123d3]
statistics.conf                         File Size: 4         BYTES FileVersion:  N/A            MD5: [2261e7eca4cd0615a97263c0ad5045c2]
 
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Logs
mbam-log-2014-09-04 (13-05-26).xml       File Size: 21480     BYTES FileVersion:  N/A            MD5: [5bdab8d18723e1369ebba2e98e9902db]
mbam-log-2014-09-04 (19-41-52).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [f0c9ed6b0f864d43530cf332829b5008]
mbam-log-2014-09-05 (03-56-43).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [6f995be21e083ae505243738557cc2ba]
mbam-log-2014-09-06 (03-44-35).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [0fccd4d70113d48856af25d30413ee55]
mbam-log-2014-09-07 (03-50-51).xml       File Size: 2512      BYTES FileVersion:  N/A            MD5: [f4f878f0a02d295f1b7b6790f9c6f9b9]
mbam-log-2014-09-08 (03-40-45).xml       File Size: 2512      BYTES FileVersion:  N/A            MD5: [8b2f55acd06b613b033601002fb7c9a5]
mbam-log-2014-09-10 (23-51-43).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [db342322d627a38a5c870a78a79eb215]
mbam-log-2014-09-29 (00-59-57).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [143f9c92c00675cb2b5f1c30063ca6bd]
mbam-log-2014-09-29 (19-30-04).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [b690fc2abbd07098cea54f226c7ec81e]
mbam-log-2014-09-30 (19-41-24).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [a48555b9b1230c771f86c14f6dd9ccaa]
mbam-log-2014-10-01 (19-41-46).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [28f9a0bc8e79bdc1a1059e74a6d16af3]
mbam-log-2014-10-02 (20-25-20).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [6896456756403c361753bc5129401a02]
mbam-log-2014-10-03 (20-13-44).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [cd1ed3584a4b5768f1eedab8f3246e02]
mbam-log-2014-10-04 (20-07-09).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [f1d61fe45a1a5758aed3f00b777176ee]
mbam-log-2014-10-05 (20-17-48).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [64232a08b984571ec8e4be6af946b8b0]
mbam-log-2014-10-08 (14-45-39).xml       File Size: 2514      BYTES FileVersion:  N/A            MD5: [0b592eb017e1da496c3ed64a3b5f2aef]
mbam-log-2014-10-12 (12-57-40).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [aadf2b32ffeac8ccb6a19c15930cf119]
mbam-log-2014-10-13 (12-49-00).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [eac1576ff499144aec30f9d67a2d5ca0]
mbam-log-2014-10-14 (12-37-12).xml       File Size: 2494      BYTES FileVersion:  N/A            MD5: [9f3e163c35a6a38df179f0a494598554]
mbam-log-2014-10-15 (05-52-56).xml       File Size: 2512      BYTES FileVersion:  N/A            MD5: [5822d20f64f29f55070f2d613aacc75a]
mbam-log-2014-10-21 (05-55-42).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [b1ffc4041e7561053c6b0c90bdfe8870]
mbam-log-2014-10-25 (13-00-03).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [2ff665aae0800b4a2991e2dbffe2c4fd]
mbam-log-2014-10-26 (06-09-58).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [c838000f64582b4c4e51acfacdd8e99c]
mbam-log-2014-10-28 (05-55-42).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [99e4281716713148531eef4575a71337]
mbam-log-2014-10-29 (05-44-26).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [e4c2aa64f9633e09a0a4ebed5bfd0a55]
mbam-log-2014-10-30 (05-55-07).xml       File Size: 2514      BYTES FileVersion:  N/A            MD5: [b2278f78af7332d249904dc70bc2e5e2]
mbam-log-2014-11-01 (21-07-20).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [977100b29303c7762161cbcf67bf8fec]
mbam-log-2014-11-02 (19-20-26).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [05a1067a6ba202bf2d1d14baf52b4d89]
mbam-log-2014-11-03 (17-52-33).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [3a530a88d8ff2370836b072553fff88f]
mbam-log-2014-11-05 (05-05-45).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [b18b2a1303be1ab94406099167003d3a]
mbam-log-2014-11-06 (04-54-44).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [70bdf05d210ff6d185caf90b3b41eb3c]
mbam-log-2014-11-07 (05-10-00).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [fffb8f6465e1b95b5a4455baecce2f3b]
mbam-log-2014-11-08 (04-52-24).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [b4d747ea57e71a2ac0af6fa238d58bbe]
mbam-log-2014-11-09 (04-43-03).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [7c9c39ca4d05efcbe407e0deb3966e83]
mbam-log-2014-11-10 (05-02-00).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [a47e2adce078bf07a3242b20d6072df4]
mbam-log-2014-11-11 (05-03-29).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [32480d8188fa30ff79fbf93a9f1c265d]
mbam-log-2014-11-12 (12-17-35).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [83102221fa38c4e564a74bfe18c9a245]
mbam-log-2014-11-13 (04-49-45).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [075bdb6c64ddce8d551cb990ca514acc]
mbam-log-2014-11-14 (05-06-21).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [84d9613330cb9c7a7c0a4b1e63cbfaf0]
mbam-log-2014-11-15 (05-03-35).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [b85464ae04c6356d736a3365b857414b]
mbam-log-2014-11-16 (05-04-54).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [1378bfbeb787726f72852be4c94c9515]
mbam-log-2014-11-18 (22-13-06).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [93b064db0f0ad1826d1fe52335c7405b]
mbam-log-2014-11-19 (05-02-47).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [2133168288b7e3f0b68637956db2bc90]
mbam-log-2014-11-26 (14-55-13).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [f9f797f0c7400b8b42237533e9f8fb59]
mbam-log-2014-11-27 (04-53-47).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [4401a2f48e88ae88b75684781ae6e2f8]
mbam-log-2014-11-28 (04-58-48).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [3a14ff2802b282fea4179267461488f0]
mbam-log-2014-11-29 (04-52-46).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [0aa15267423054490eadfc5ab44adb92]
mbam-log-2014-11-30 (04-57-26).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [0d756655047936e0db3ad9b1acc0ec3c]
mbam-log-2014-12-01 (04-59-27).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [d061477304a823a547ca7c4ab0f0c9c1]
mbam-log-2014-12-02 (05-09-28).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [9cd2714d693c82444392e7d53a956c07]
mbam-log-2014-12-03 (05-10-30).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [b7b5a9260b77d4beb6462f41a8b59edd]
mbam-log-2014-12-04 (04-48-42).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [a799445e0440df0e3964478ec6767629]
mbam-log-2014-12-05 (04-58-37).xml       File Size: 2510      BYTES FileVersion:  N/A            MD5: [8c629029fe6001ca91952c2dea97f73a]
mbam-log-2014-12-06 (04-42-37).xml       File Size: 2988      BYTES FileVersion:  N/A            MD5: [d2047359dc08588656576ec568df321b]
mbam-log-2014-12-07 (04-45-58).xml       File Size: 2988      BYTES FileVersion:  N/A            MD5: [5ffef63d06c22626ea926ce66ce70095]
mbam-log-2014-12-08 (05-08-09).xml       File Size: 2988      BYTES FileVersion:  N/A            MD5: [21b50fb0f4fbefe82155fb017f97d222]
mbam-log-2014-12-09 (05-04-20).xml       File Size: 2988      BYTES FileVersion:  N/A            MD5: [655c17cb1358e95e90670bfe7d7ad93d]
mbam-log-2014-12-10 (05-05-10).xml       File Size: 3324      BYTES FileVersion:  N/A            MD5: [5eefd6fccdc9492925dd3a986b01dc0a]
mbam-log-2014-12-11 (04-55-03).xml       File Size: 3324      BYTES FileVersion:  N/A            MD5: [c894ddfde9713074387bb77732803520]
mbam-log-2014-12-17 (05-03-45).xml       File Size: 3324      BYTES FileVersion:  N/A            MD5: [544fd727cead69d5586200e2eb9e2605]
mbam-log-2014-12-18 (05-04-41).xml       File Size: 3324      BYTES FileVersion:  N/A            MD5: [f630af4dec515338ee2e8e49f22be793]
mbam-log-2014-12-19 (05-08-15).xml       File Size: 3324      BYTES FileVersion:  N/A            MD5: [439e23f4e2559d826a5ab3ef4aba07f9]
mbam-log-2014-12-20 (04-52-10).xml       File Size: 3324      BYTES FileVersion:  N/A            MD5: [866f6c1db7e577cb1d0f01797229618a]
mbam-log-2014-12-21 (04-56-57).xml       File Size: 3324      BYTES FileVersion:  N/A            MD5: [9e2c9a208fac58e9028cc114285311d7]
mbam-log-2014-12-22 (04-45-38).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [2a3755fdffd314cf92769f96050034fb]
mbam-log-2014-12-23 (05-01-37).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [9e7fcbc0df6e3415dc65554be258df90]
mbam-log-2014-12-24 (04-44-36).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [2155124f84e8bde47203c2c5fc4b89b6]
mbam-log-2014-12-25 (04-55-42).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [7e9e7bd75917430c2cc32a701ed4c0dc]
mbam-log-2014-12-30 (04-52-29).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [8cd5ec6425a7da5a44f3b2302b290b6a]
mbam-log-2014-12-31 (09-03-01).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [a2a2269a1d62d2e1bf235adcbbab3422]
mbam-log-2015-01-01 (05-05-56).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [39d8f85d6436d4fb6361f23c8090420f]
mbam-log-2015-01-07 (04-55-42).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [22a94b71d0cf0057bd6a1d0e5407ce02]
mbam-log-2015-01-08 (04-54-47).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [2c53c00a54afa2fa69220768256607f1]
mbam-log-2015-01-09 (05-08-10).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [e8cef6e9e6fa227662a5d6bce787a43c]
mbam-log-2015-01-13 (20-03-21).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [7d67902924d89006d92fc972b9e52ed8]
mbam-log-2015-01-18 (14-06-04).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [24a65d2d9dd0e66a560b2dffdd91a336]
mbam-log-2015-01-19 (22-33-26).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [13729a1746f04a394a23daa23cbd36b4]
mbam-log-2015-01-20 (04-44-39).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [ba8746c344c39797d7105b7e97bcd06b]
mbam-log-2015-01-21 (10-49-12).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [d7bec16bab2f24cd3ee77c87f51e3f3f]
mbam-log-2015-01-22 (05-00-23).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [d61c6ccb3e36a3bc4e0107f7ad6da576]
mbam-log-2015-01-23 (05-07-30).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [50d3f07d4f7fd2b4cf1a54c82f8ec3f0]
mbam-log-2015-01-24 (07-41-57).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [10a16300236af4ff8e1ddadbf0d85164]
mbam-log-2015-01-28 (05-44-21).xml       File Size: 2850      BYTES FileVersion:  N/A            MD5: [cb3a99e7b0604ced35497c7453ffdecf]
mbam-log-2015-02-01 (12-07-15).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [6c5783e271523c0a6a6bdacbb066a2cb]
mbam-log-2015-02-03 (15-25-21).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [e1dc4590b0298117d6687a404b7455a9]
mbam-log-2015-02-05 (16-00-18).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [d3b2f03386e86d1395945077478c5eac]
mbam-log-2015-02-06 (04-42-50).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [2e48840be24cef83863d21ba45865c60]
mbam-log-2015-02-07 (04-52-07).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [bc5522b339fdee8c54f039ba155aff10]
mbam-log-2015-02-08 (04-46-59).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [87528a679a6d64416c87c02ec1ea68e7]
mbam-log-2015-02-09 (05-03-12).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [6e8a85a765918e4f3344016bdb03e00b]
mbam-log-2015-02-10 (14-22-01).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [c90fc3b1750e5b653886bdf5ccad4d8b]
mbam-log-2015-02-11 (06-01-38).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [e59c4023e69c022b1ee5d52a476ccb30]
mbam-log-2015-02-12 (10-20-22).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [997a29ae2630e7b5bf8e1d39aea694c1]
mbam-log-2015-02-13 (07-22-52).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [f99bfe8c159904fb3f607d61a115179a]
mbam-log-2015-02-14 (08-46-54).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [ae09654b32bc2b331ed7960427aa6f13]
mbam-log-2015-02-16 (10-35-53).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [72a9e13662d100f255a7b5038d7ccc4a]
mbam-log-2015-02-17 (04-57-24).xml       File Size: 2846      BYTES FileVersion:  N/A            MD5: [8344ec08da1e774644455fefbc5f44f9]
mbam-log-2015-02-19 (13-31-05).xml       File Size: 3686      BYTES FileVersion:  N/A            MD5: [3e4995e2455db918fe5b1e5fe81b3043]
mbam-log-2015-02-20 (05-06-37).xml       File Size: 3686      BYTES FileVersion:  N/A            MD5: [08e21d85ee1a00e8cb4b4502da4c8889]
mbam-log-2015-02-21 (05-09-19).xml       File Size: 3686      BYTES FileVersion:  N/A            MD5: [a4f7fe48158e0fe038551cb8ee746913]
mbam-log-2015-02-22 (05-07-58).xml       File Size: 3686      BYTES FileVersion:  N/A            MD5: [30a1087e53d287142c21b397e381f932]
mbam-log-2015-02-24 (09-48-33).xml       File Size: 3686      BYTES FileVersion:  N/A            MD5: [1c5a8d3d367ab578d8b320f8830759d9]
mbam-log-2015-02-25 (05-08-05).xml       File Size: 3686      BYTES FileVersion:  N/A            MD5: [5d484f7635f3aa6cecfa72e5efd07b52]
mbam-log-2015-02-26 (04-59-25).xml       File Size: 3686      BYTES FileVersion:  N/A            MD5: [94b134aedbfa1e3311b95590c0ee58ab]
mbam-log-2015-03-02 (14-00-41).xml       File Size: 3706      BYTES FileVersion:  N/A            MD5: [45ab315fbe66e1cc5c9fa3d575c4156d]
mbam-log-2015-03-04 (04-51-37).xml       File Size: 2512      BYTES FileVersion:  N/A            MD5: [d56aabece54e8d24857d368618c1fad6]
mbam-log-2015-03-06 (13-17-20).xml       File Size: 2514      BYTES FileVersion:  N/A            MD5: [e6921de6aab114fddab3375c3cc7cc56]
mbam-log-2015-03-07 (14-58-43).xml       File Size: 2516      BYTES FileVersion:  N/A            MD5: [56776d7b84e20f89e548c7b4524c146a]
mbam-log-2015-03-10 (12-02-02).xml       File Size: 2514      BYTES FileVersion:  N/A            MD5: [746f876242a599ff7deca46f7da8d69b]
mbam-log-2015-03-11 (06-06-40).xml       File Size: 2514      BYTES FileVersion:  N/A            MD5: [ff4935014a8ce9b15d0adce3f53bacb8]
mbam-log-2015-03-12 (06-01-22).xml       File Size: 2512      BYTES FileVersion:  N/A            MD5: [50e49a516ec42d963d03ed329b7f03ba]
mbam-log-2015-03-14 (16-10-56).xml       File Size: 2512      BYTES FileVersion:  N/A            MD5: [4d4044aeef4aed96007cda172823ff69]
mbam-log-2015-03-15 (15-15-40).xml       File Size: 2512      BYTES FileVersion:  N/A            MD5: [494d68ef042f7db1a850f501ccc87c3a]
mbam-log-2015-03-16 (05-53-50).xml       File Size: 2512      BYTES FileVersion:  N/A            MD5: [9d63973faf3eb0c368c906a4fd05b635]
mbam-log-2015-03-17 (05-55-59).xml       File Size: 2512      BYTES FileVersion:  N/A            MD5: [bfe943b0b50fc5b00085ba412dd57247]
mbam-log-2015-03-18 (05-45-01).xml       File Size: 2512      BYTES FileVersion:  N/A            MD5: [7007df6b5d634c309eadf8985ab9ca45]
mbam-log-2015-03-19 (06-07-56).xml       File Size: 2512      BYTES FileVersion:  N/A            MD5: [b5ae40ff9ac1f8b4cc30e5d7c78927bd]
mbam-log-2015-03-20 (05-58-10).xml       File Size: 2512      BYTES FileVersion:  N/A            MD5: [625fa8425587c23fdd14f7ae110d1ab9]
mbam-log-2015-03-21 (10-26-34).xml       File Size: 2512      BYTES FileVersion:  N/A            MD5: [e4d862df767a00688860983420c2dcd3]
mbam-log-2015-03-22 (19-32-24).xml       File Size: 2512      BYTES FileVersion:  N/A            MD5: [8f720953c1bd0e8ae89a1f619af7247d]
mbam-log-2015-03-27 (18-07-54).xml       File Size: 2516      BYTES FileVersion:  N/A            MD5: [c587839c99c5f7cdc1a78105668b698c]
mbam-log-2015-04-19 (14-51-33).xml       File Size: 4214      BYTES FileVersion:  N/A            MD5: [a614a452a3a6505e15156bddb8c0af74]
mbam-log-2015-05-21 (14-13-42).xml       File Size: 2512      BYTES FileVersion:  N/A            MD5: [7dbdaa728f1a73de8e1e84e3341f7e9f]
mbam-log-2015-05-21 (17-58-52).xml       File Size: 2508      BYTES FileVersion:  N/A            MD5: [c689044a46149e82558d2db229015453]
mbam-log-2015-05-22 (05-55-42).xml       File Size: 2508      BYTES FileVersion:  N/A            MD5: [f56f83a002819a518adb4991ce878587]
mbam-log-2015-05-22 (19-02-57).xml       File Size: 2508      BYTES FileVersion:  N/A            MD5: [ca3006cefea01349a1d5c9f5a7335120]
mbam-log-2015-07-06 (13-54-33).xml       File Size: 2504      BYTES FileVersion:  N/A            MD5: [0f9dc311d50e40b3f5527f959e821880]
mbam-log-2015-07-10 (14-09-46).xml       File Size: 3218      BYTES FileVersion:  N/A            MD5: [d616d6789a357610b2ae945140efd49f]
mbam-log-2015-07-14 (13-02-46).xml       File Size: 2508      BYTES FileVersion:  N/A            MD5: [49549fc90fe5e950e269d69db861f288]
protection-log-2014-09-04.xml           File Size: 7007      BYTES FileVersion:  N/A            MD5: [b6c50e5f2b51fe5dfafb266d7e7fe380]
protection-log-2014-09-05.xml           File Size: 18456     BYTES FileVersion:  N/A            MD5: [11a9772a3dd21adc9056d57edea2b142]
protection-log-2014-09-06.xml           File Size: 12322     BYTES FileVersion:  N/A            MD5: [5d5e9c96e819d4b4c01cb23f807d1ccb]
protection-log-2014-09-07.xml           File Size: 14366     BYTES FileVersion:  N/A            MD5: [05bc099b1755871a9d6298b06b6e0915]
protection-log-2014-09-08.xml           File Size: 18455     BYTES FileVersion:  N/A            MD5: [fb9fc6b241d1f89c569777574cc3c76f]
protection-log-2014-09-09.xml           File Size: 4147      BYTES FileVersion:  N/A            MD5: [b03cc83a21d076d0359169bddd792b7e]
protection-log-2014-09-10.xml           File Size: 4732      BYTES FileVersion:  N/A            MD5: [39e7aa13cf5af518cb4df8b3c103a9eb]
protection-log-2014-09-16.xml           File Size: 2117      BYTES FileVersion:  N/A            MD5: [e9cd0e1571768b76e8f27c46b5bf7ab3]
protection-log-2014-09-22.xml           File Size: 2703      BYTES FileVersion:  N/A            MD5: [c1163d6b676929e208ff3cab5edf83c7]
protection-log-2014-09-27.xml           File Size: 7833      BYTES FileVersion:  N/A            MD5: [cd6e892dbbd94212258e9b14b2f0c011]
protection-log-2014-09-28.xml           File Size: 5314      BYTES FileVersion:  N/A            MD5: [83b7992cc759f4189d50e47b907406a1]
protection-log-2014-09-29.xml           File Size: 24618     BYTES FileVersion:  N/A            MD5: [7f6279841991270923a3706e423026a5]
protection-log-2014-09-30.xml           File Size: 20522     BYTES FileVersion:  N/A            MD5: [6838025757169b399e716f5ced0f07cf]
protection-log-2014-10-01.xml           File Size: 20522     BYTES FileVersion:  N/A            MD5: [2583ec5988762fbb7fe673543d2d22f1]
protection-log-2014-10-02.xml           File Size: 15548     BYTES FileVersion:  N/A            MD5: [a2133edcf35424c3441d55775cc41a09]
protection-log-2014-10-03.xml           File Size: 16426     BYTES FileVersion:  N/A            MD5: [b84bfd53c3372f31a9193eddc0d409f3]
protection-log-2014-10-04.xml           File Size: 22572     BYTES FileVersion:  N/A            MD5: [40b72fc0b16bd39ea54c4872f4701cde]
protection-log-2014-10-05.xml           File Size: 12334     BYTES FileVersion:  N/A            MD5: [bcd72bca72dec1238954ed3212956c66]
protection-log-2014-10-06.xml           File Size: 3270      BYTES FileVersion:  N/A            MD5: [7678417120ddf40d8a3d38683f9c7fae]
protection-log-2014-10-07.xml           File Size: 2104      BYTES FileVersion:  N/A            MD5: [feb6fbe913fa0e920086db0d0726de9f]
protection-log-2014-10-08.xml           File Size: 2413      BYTES FileVersion:  N/A            MD5: [9083078dbb35d2241e73a7499b8e80e1]
protection-log-2014-10-10.xml           File Size: 2105      BYTES FileVersion:  N/A            MD5: [1e7ed7ee787c62b5b2046d8bd3e2dae5]
protection-log-2014-10-11.xml           File Size: 11778     BYTES FileVersion:  N/A            MD5: [6433070465ffc1ecaa9bbde5950f6159]
protection-log-2014-10-12.xml           File Size: 16442     BYTES FileVersion:  N/A            MD5: [10ec70951d3c84c2a7ef3f49f9b75659]
protection-log-2014-10-13.xml           File Size: 30002     BYTES FileVersion:  N/A            MD5: [2fdee557b2e7a46b208eecbe9354bfbd]
protection-log-2014-10-14.xml           File Size: 9636      BYTES FileVersion:  N/A            MD5: [9a89eec294c395327cc50481713fbd04]
protection-log-2014-10-15.xml           File Size: 8189      BYTES FileVersion:  N/A            MD5: [db7578771ef26f61c74b15a7f8a03711]
protection-log-2014-10-18.xml           File Size: 1804      BYTES FileVersion:  N/A            MD5: [af96f6efff38a7032e6a429dc92ccc01]
protection-log-2014-10-20.xml           File Size: 7368      BYTES FileVersion:  N/A            MD5: [869697353453983632d6ffa4b4fdd050]
protection-log-2014-10-21.xml           File Size: 6574      BYTES FileVersion:  N/A            MD5: [86d05a0131af2af0c7291c34864536cc]
protection-log-2014-10-25.xml           File Size: 8051      BYTES FileVersion:  N/A            MD5: [f28d53e1e92da99b2d88459106bb9e51]
protection-log-2014-10-26.xml           File Size: 4526      BYTES FileVersion:  N/A            MD5: [3189632d1a4988c190198f686262d1c6]
protection-log-2014-10-27.xml           File Size: 7368      BYTES FileVersion:  N/A            MD5: [528eabfb28a358e9c507f941a135cc3e]
protection-log-2014-10-28.xml           File Size: 19152     BYTES FileVersion:  N/A            MD5: [e99f58b5eacd0a8b83b71d81f4992e33]
protection-log-2014-10-29.xml           File Size: 18862     BYTES FileVersion:  N/A            MD5: [d24be98553f090667e06ce50f61e6883]
protection-log-2014-10-30.xml           File Size: 2106      BYTES FileVersion:  N/A            MD5: [0f08dc552947c83cf9a34dd5b14c7910]
protection-log-2014-10-31.xml           File Size: 2481      BYTES FileVersion:  N/A            MD5: [78a9c69e202a2b9a780291368dfd239d]
protection-log-2014-11-01.xml           File Size: 3368      BYTES FileVersion:  N/A            MD5: [0796b3c36fb358c206f523632eaabc7a]
protection-log-2014-11-02.xml           File Size: 4812      BYTES FileVersion:  N/A            MD5: [3fd4fa5e0d03fa790cdcd08d2be46b9f]
protection-log-2014-11-03.xml           File Size: 4814      BYTES FileVersion:  N/A            MD5: [ae2cb0a964d0d9010dd088191eea518c]
protection-log-2014-11-04.xml           File Size: 12620     BYTES FileVersion:  N/A            MD5: [b86ee3bd1575056e3d7b563e0d06aaa9]
protection-log-2014-11-05.xml           File Size: 20896     BYTES FileVersion:  N/A            MD5: [7247aedc693c9976325a10858f8fd1f8]
protection-log-2014-11-06.xml           File Size: 18846     BYTES FileVersion:  N/A            MD5: [9357e48feb6976d9a9eb02334ee85a84]
protection-log-2014-11-07.xml           File Size: 14752     BYTES FileVersion:  N/A            MD5: [040bb7e2384d47fcf9867aa171f01ce1]
protection-log-2014-11-08.xml           File Size: 15061     BYTES FileVersion:  N/A            MD5: [4563ab85b49d5da928714e9bd0844f08]
protection-log-2014-11-09.xml           File Size: 16801     BYTES FileVersion:  N/A            MD5: [e8708c911c9309fd41e930eec4b9bf2b]
protection-log-2014-11-10.xml           File Size: 21222     BYTES FileVersion:  N/A            MD5: [cc28553340995ed11f51e0d1978a83d0]
protection-log-2014-11-11.xml           File Size: 21221     BYTES FileVersion:  N/A            MD5: [257a96ef1f1fd8f4c296fb26048e0ab9]
protection-log-2014-11-12.xml           File Size: 10101     BYTES FileVersion:  N/A            MD5: [f34abbf2dcb7705fbfbf952911b9b8be]
protection-log-2014-11-13.xml           File Size: 18866     BYTES FileVersion:  N/A            MD5: [4109024654a1c1cb2d40170f67939c59]
protection-log-2014-11-14.xml           File Size: 20912     BYTES FileVersion:  N/A            MD5: [5f39cfb0e491d576dc69bcbf9fb1b723]
protection-log-2014-11-15.xml           File Size: 14766     BYTES FileVersion:  N/A            MD5: [b5c611dc3bc442ccf63c778f18807667]
protection-log-2014-11-16.xml           File Size: 14766     BYTES FileVersion:  N/A            MD5: [28a3dd1ca76718d40431548abdb6fb3a]
protection-log-2014-11-18.xml           File Size: 3079      BYTES FileVersion:  N/A            MD5: [d077487d472ae2b4083f70d10e13bcf9]
protection-log-2014-11-19.xml           File Size: 7740      BYTES FileVersion:  N/A            MD5: [fc9938c0e41c47c17ebe20e2a07a51f0]
protection-log-2014-11-26.xml           File Size: 8933      BYTES FileVersion:  N/A            MD5: [cc6dc0869c0e5f049ee1fca6a494af17]
protection-log-2014-11-27.xml           File Size: 16814     BYTES FileVersion:  N/A            MD5: [228556633c07d344a3f684bbffe03994]
protection-log-2014-11-28.xml           File Size: 14767     BYTES FileVersion:  N/A            MD5: [36d4c8439a56f43708d5a258fab9730e]
protection-log-2014-11-29.xml           File Size: 20911     BYTES FileVersion:  N/A            MD5: [4ecfd10255eec4e9a0437f2686943b8b]
protection-log-2014-11-30.xml           File Size: 18865     BYTES FileVersion:  N/A            MD5: [2241226d7a47bc79751a3ec792c2ae68]
protection-log-2014-12-01.xml           File Size: 19465     BYTES FileVersion:  N/A            MD5: [d9e3b13ea9a5e92fe5c2a8ca0c2af0bb]
protection-log-2014-12-02.xml           File Size: 20042     BYTES FileVersion:  N/A            MD5: [36a68d9500d47b957b690d51cd7ff9ef]
protection-log-2014-12-03.xml           File Size: 25299     BYTES FileVersion:  N/A            MD5: [ce6e064812c58432359ee8d6303af2fb]
protection-log-2014-12-04.xml           File Size: 20894     BYTES FileVersion:  N/A            MD5: [3b91edcf7c29d9f09d7f14dfe11ac9cb]
protection-log-2014-12-05.xml           File Size: 33176     BYTES FileVersion:  N/A            MD5: [56dee3ab7e95ba31b651f722b95fdd39]
protection-log-2014-12-06.xml           File Size: 23254     BYTES FileVersion:  N/A            MD5: [5b1df6b8aa7f1f056e090a3acdf10b43]
protection-log-2014-12-07.xml           File Size: 18848     BYTES FileVersion:  N/A            MD5: [1dd9434ac5bed8058c04e6f5cf8b41be]
protection-log-2014-12-08.xml           File Size: 25602     BYTES FileVersion:  N/A            MD5: [e9d8b03a212da4f2aabd21d93047f3f0]
protection-log-2014-12-09.xml           File Size: 16803     BYTES FileVersion:  N/A            MD5: [ed6e69500172dacfcbf1a744df1ffbfb]
protection-log-2014-12-10.xml           File Size: 15933     BYTES FileVersion:  N/A            MD5: [d7c06da92be18bb0af7b0c558372584f]
protection-log-2014-12-11.xml           File Size: 8907      BYTES FileVersion:  N/A            MD5: [e69cbdaec91e340290b6ee5605211671]
protection-log-2014-12-15.xml           File Size: 3582      BYTES FileVersion:  N/A            MD5: [cd545bd8ac84e6ef899473d57cf4bf8f]
protection-log-2014-12-16.xml           File Size: 3272      BYTES FileVersion:  N/A            MD5: [9b73efdee572ad3c3ffe4c88227b9a35]
protection-log-2014-12-17.xml           File Size: 10670     BYTES FileVersion:  N/A            MD5: [bdcecdf625ece718162865561255df79]
protection-log-2014-12-18.xml           File Size: 14766     BYTES FileVersion:  N/A            MD5: [c94379b36b09f4cad474da43116eb9ae]
protection-log-2014-12-19.xml           File Size: 12718     BYTES FileVersion:  N/A            MD5: [0d777e26c0a49d397cf3bbd6d6bd4ecb]
protection-log-2014-12-20.xml           File Size: 16814     BYTES FileVersion:  N/A            MD5: [28d1ecf94b736107523104f64f94d8da]
protection-log-2014-12-21.xml           File Size: 10670     BYTES FileVersion:  N/A            MD5: [2c422c1e1b4a25821325e28f88a4c190]
protection-log-2014-12-22.xml           File Size: 22962     BYTES FileVersion:  N/A            MD5: [a70f10a58de5e5a35e60649341f90a01]
protection-log-2014-12-23.xml           File Size: 18291     BYTES FileVersion:  N/A            MD5: [4e739b3fdf82eca264e8a73af812ff1f]
protection-log-2014-12-24.xml           File Size: 22964     BYTES FileVersion:  N/A            MD5: [f65f8981abe18ae8ac6227575a2e6919]
protection-log-2014-12-25.xml           File Size: 14769     BYTES FileVersion:  N/A            MD5: [671b73b102628f1c7974fe18b2c8db9f]
protection-log-2014-12-27.xml           File Size: 10583     BYTES FileVersion:  N/A            MD5: [4bd20c41c90eac3308b9eb254220f4db]
protection-log-2014-12-28.xml           File Size: 9419      BYTES FileVersion:  N/A            MD5: [581bb40f30293fe8b0af0cc66d95420f]
protection-log-2014-12-29.xml           File Size: 12942     BYTES FileVersion:  N/A            MD5: [05b85ecb8f524f6148ab8d3e87c8afa6]
protection-log-2014-12-30.xml           File Size: 18862     BYTES FileVersion:  N/A            MD5: [1ba8fe00ff3aca4cdbf1472855741d5e]
protection-log-2014-12-31.xml           File Size: 10960     BYTES FileVersion:  N/A            MD5: [689fc55d0502bf120a123de39b153b27]
protection-log-2015-01-01.xml           File Size: 10652     BYTES FileVersion:  N/A            MD5: [f76649ae95cc58059d25f8c8e9c0cf30]
protection-log-2015-01-06.xml           File Size: 13803     BYTES FileVersion:  N/A            MD5: [4d7f0e74a59d05dc7c96eac56e12140d]
protection-log-2015-01-07.xml           File Size: 27016     BYTES FileVersion:  N/A            MD5: [cea4b35287d955bde675dad2dfaca566]
protection-log-2015-01-08.xml           File Size: 29346     BYTES FileVersion:  N/A            MD5: [4ee59295c575b5b81965545be354000e]
protection-log-2015-01-09.xml           File Size: 12695     BYTES FileVersion:  N/A            MD5: [e0dcf7aad3f549d5df159be2b91cec37]
protection-log-2015-01-13.xml           File Size: 6860      BYTES FileVersion:  N/A            MD5: [1b09f9624850bfd9d661176b23cf7d2e]
protection-log-2015-01-18.xml           File Size: 14184     BYTES FileVersion:  N/A            MD5: [ba81bfe796e0ee52c94daba6f5ca27b7]
protection-log-2015-01-19.xml           File Size: 1898      BYTES FileVersion:  N/A            MD5: [1c563dcc6abde5a64cdab87e138616ae]
protection-log-2015-01-20.xml           File Size: 3951      BYTES FileVersion:  N/A            MD5: [d5d6f80e2a44bdff3785e50c14b2434d]
protection-log-2015-01-21.xml           File Size: 9190      BYTES FileVersion:  N/A            MD5: [d0f42b84580b59664a31daed187ebc23]
protection-log-2015-01-22.xml           File Size: 21186     BYTES FileVersion:  N/A            MD5: [6825ab4544d4e16a4e0262ef26003ba3]
protection-log-2015-01-23.xml           File Size: 12707     BYTES FileVersion:  N/A            MD5: [8792a62c856948229dd7bb65b705e15c]
protection-log-2015-01-24.xml           File Size: 18855     BYTES FileVersion:  N/A            MD5: [8096ba54ae67845fa1138672df660d4d]
protection-log-2015-01-25.xml           File Size: 1224      BYTES FileVersion:  N/A            MD5: [b858173847c4f8f555eb120e4119c5ef]
protection-log-2015-01-28.xml           File Size: 348       BYTES FileVersion:  N/A            MD5: [02a0a32790af78b6b961f221904eaa96]
protection-log-2015-01-29.xml           File Size: 4526      BYTES FileVersion:  N/A            MD5: [b6dd326f72b88edb30dc3697895f7d19]
protection-log-2015-02-01.xml           File Size: 2475      BYTES FileVersion:  N/A            MD5: [e4e2b525a945811b6f7b3777ba6e9b09]
protection-log-2015-02-02.xml           File Size: 3268      BYTES FileVersion:  N/A            MD5: [bdaffd0890d5ce8253b40417d0db678d]
protection-log-2015-02-03.xml           File Size: 11248     BYTES FileVersion:  N/A            MD5: [a46fc754614a357de189c681e7ffaf5c]
protection-log-2015-02-05.xml           File Size: 10654     BYTES FileVersion:  N/A            MD5: [65a0836a5567dc21d5247fb789bfda53]
protection-log-2015-02-06.xml           File Size: 19114     BYTES FileVersion:  N/A            MD5: [18b78ff096316e0e4b09518a25f6e84a]
protection-log-2015-02-07.xml           File Size: 17639     BYTES FileVersion:  N/A            MD5: [dd29b53d91216f59aece4cce82fea67f]
protection-log-2015-02-08.xml           File Size: 14393     BYTES FileVersion:  N/A            MD5: [8938b3ddd4e6a213d931d8fe7c0bd99c]
protection-log-2015-02-09.xml           File Size: 27011     BYTES FileVersion:  N/A            MD5: [853617f7cfaec77ab1b8a5f554bc6902]
protection-log-2015-02-10.xml           File Size: 10956     BYTES FileVersion:  N/A            MD5: [fd319371c6ea7e453c82d319326a1804]
protection-log-2015-02-11.xml           File Size: 10360     BYTES FileVersion:  N/A            MD5: [165910371306235318a9cd835ed4f103]
protection-log-2015-02-12.xml           File Size: 17374     BYTES FileVersion:  N/A            MD5: [24d82a385001c582ba0a9d7b86468406]
protection-log-2015-02-13.xml           File Size: 10660     BYTES FileVersion:  N/A            MD5: [7ae8d380c688e5365f456594dca13bcf]
protection-log-2015-02-14.xml           File Size: 10660     BYTES FileVersion:  N/A            MD5: [2fc742898ad2b1be6f1ea138c353a572]
protection-log-2015-02-16.xml           File Size: 14452     BYTES FileVersion:  N/A            MD5: [6c8b20a9b98361c8cb4ec7b57bcb9c24]
protection-log-2015-02-17.xml           File Size: 22944     BYTES FileVersion:  N/A            MD5: [c5dcc91f375559e38eb60aa02f50918b]
protection-log-2015-02-19.xml           File Size: 10662     BYTES FileVersion:  N/A            MD5: [7d644e74ca87130c7922496fadca5cbe]
protection-log-2015-02-20.xml           File Size: 14751     BYTES FileVersion:  N/A            MD5: [5e5e4d0d123cee2f9e32aed00c77898e]
protection-log-2015-02-21.xml           File Size: 27030     BYTES FileVersion:  N/A            MD5: [0aa24edd68f055a707ba7edd13283390]
protection-log-2015-02-22.xml           File Size: 4812      BYTES FileVersion:  N/A            MD5: [6152723c3a2e574a114ec6c3b4be8c5b]
protection-log-2015-02-24.xml           File Size: 12996     BYTES FileVersion:  N/A            MD5: [d3543289dffb625c3c249cbdcd1098fa]
protection-log-2015-02-25.xml           File Size: 16798     BYTES FileVersion:  N/A            MD5: [003bff00e08b080deb8e6f6bf6adf055]
protection-log-2015-02-26.xml           File Size: 11240     BYTES FileVersion:  N/A            MD5: [1938da85b2eb438ced29a16e9caa3200]
protection-log-2015-03-02.xml           File Size: 4244      BYTES FileVersion:  N/A            MD5: [3aef36554b167409b4ac066831f14115]
protection-log-2015-03-04.xml           File Size: 7155      BYTES FileVersion:  N/A            MD5: [77d08930d01777796eddea9b91482b99]
protection-log-2015-03-05.xml           File Size: 4739      BYTES FileVersion:  N/A            MD5: [d927a5317d4bd09a681327d1c3160353]
protection-log-2015-03-06.xml           File Size: 6563      BYTES FileVersion:  N/A            MD5: [5929f8d6a990a862a1ebdc23a72ce87d]
protection-log-2015-03-07.xml           File Size: 2392      BYTES FileVersion:  N/A            MD5: [31432eac88b17b1355b0f5800cc76bec]
protection-log-2015-03-09.xml           File Size: 4833      BYTES FileVersion:  N/A            MD5: [59b089347f85b90fb0caab2a4e3a023d]
protection-log-2015-03-10.xml           File Size: 7439      BYTES FileVersion:  N/A            MD5: [d94743e22b45890570c245404e048ebc]
protection-log-2015-03-11.xml           File Size: 9208      BYTES FileVersion:  N/A            MD5: [6fd7dc3907e1b75502b24375127e4fc0]
protection-log-2015-03-12.xml           File Size: 7148      BYTES FileVersion:  N/A            MD5: [b69b1c10faa1a4d7974fccc9b8bcdc69]
protection-log-2015-03-13.xml           File Size: 2697      BYTES FileVersion:  N/A            MD5: [95165478edb2295840a1f32d10afd3d3]
protection-log-2015-03-14.xml           File Size: 4812      BYTES FileVersion:  N/A            MD5: [501deceadffdfd41a6f3859cddbb0297]
protection-log-2015-03-15.xml           File Size: 6858      BYTES FileVersion:  N/A            MD5: [9e3efedf7b775c267c87f02a7e515971]
protection-log-2015-03-16.xml           File Size: 11543     BYTES FileVersion:  N/A            MD5: [196bb89e7d14a3f39e3bb9624e6b3037]
protection-log-2015-03-17.xml           File Size: 10660     BYTES FileVersion:  N/A            MD5: [bdbb70fdf48128d8c164a00fce71ce4b]
protection-log-2015-03-18.xml           File Size: 10950     BYTES FileVersion:  N/A            MD5: [b45d42b3de9861152282826cd2bd5bfd]
protection-log-2015-03-19.xml           File Size: 16799     BYTES FileVersion:  N/A            MD5: [87c2ff4eae1ac9fcc57d4bff25609d52]
protection-log-2015-03-20.xml           File Size: 13300     BYTES FileVersion:  N/A            MD5: [b190e3bdbd744c367814ce9b09226b69]
protection-log-2015-03-21.xml           File Size: 4522      BYTES FileVersion:  N/A            MD5: [9686a95682f3a11939ecb68dc09012a7]
protection-log-2015-03-22.xml           File Size: 4522      BYTES FileVersion:  N/A            MD5: [b1a78b334494a325bdfe61ea72c1849f]
protection-log-2015-03-23.xml           File Size: 19072     BYTES FileVersion:  N/A            MD5: [19ac4000a75f512b998fb138ebd69fda]
protection-log-2015-03-24.xml           File Size: 4150      BYTES FileVersion:  N/A            MD5: [16e97b9dba483eb23b0192c93c560fe7]
protection-log-2015-03-27.xml           File Size: 1546      BYTES FileVersion:  N/A            MD5: [5a4ac457a060bf16e51bc87df2115e02]
protection-log-2015-04-01.xml           File Size: 7747      BYTES FileVersion:  N/A            MD5: [fad597a00dd0f36554f0781007b28c76]
protection-log-2015-04-19.xml           File Size: 5420      BYTES FileVersion:  N/A            MD5: [f508a46330dc0fcbec4ce8d814e977f7]
protection-log-2015-05-21.xml           File Size: 9050      BYTES FileVersion:  N/A            MD5: [7842a0f36fe076df1bc3f5326dbd08d3]
protection-log-2015-05-22.xml           File Size: 14528     BYTES FileVersion:  N/A            MD5: [e78cd4946bc340902de5db088d6b04ba]
protection-log-2015-07-06.xml           File Size: 1881      BYTES FileVersion:  N/A            MD5: [a82b06df7bf971492f76166bf4033292]
protection-log-2015-07-10.xml           File Size: 6898      BYTES FileVersion:  N/A            MD5: [951ee9d034aee64adb538bb785d6b8b8]
protection-log-2015-07-11.xml           File Size: 1224      BYTES FileVersion:  N/A            MD5: [2ba1c257aef06aaa9418485b23339f94]
protection-log-2015-07-14.xml           File Size: 4254      BYTES FileVersion:  N/A            MD5: [4110b790e01f779244f4f152e0128674]
 
C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Quarantine
5778885892.data                         File Size: 706       BYTES FileVersion:  N/A            MD5: [6db735fb6ab60d00095c323b92be16bc]
5778885892.quar                         File Size: 666       BYTES FileVersion:  N/A            MD5: [8f8aad9d91b706064f6767e38d1a3d9d]
6995443434.quar                         File Size: 640       BYTES FileVersion:  N/A            MD5: [9578b7d225309d4af571f5bd0b0f1d20]
8978574941.data                         File Size: 699       BYTES FileVersion:  N/A            MD5: [fb8d95880448c623bc738b801812fdf1]
9633131260.quar                         File Size: 664       BYTES FileVersion:  N/A            MD5: [db860567c805a4deb348db000e5252ce]
 
Malware Exclusions:
===================
Web Exclusions:
================
Quarantined Items:
===================
Vendor: PUP.Optional.APNToolBar.Gen, Date: 2015/07/10 19:09:48, Type: Registry Key, Location: HKU\S-1-5-18\SOFTWARE\AskPartnerNetwork
Vendor: PUP.Optional.APNToolBar.Gen, Date: 2015/07/10 19:09:48, Type: Folder, Location: C:\ProgramData\AskPartnerNetwork
===============================================================
END OF FILE


#5 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,804 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:05:30 PM

Posted 14 July 2015 - 03:19 PM

HomesickInTexas.  I sent you a PM regarding your desire to change your user name.


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#6 Gary's Girl

Gary's Girl
  • Topic Starter

  • Members
  • 343 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Kentucky
  • Local time:08:30 PM

Posted 14 July 2015 - 03:33 PM

I ran Kaspersky and it has stopped and says two threats were found; however, there's no option for "Cure". The options are: Copy all to quarantine, restore default actions (both at the top of the Threats Detected window) and a drop down menu with: skip, copy to quarantine, or delete. I wasn't sure what you'd like for me to do, so I'll wait for you to send instructions before I proceed. Thanks!


Oh, thanks also for the PM!



#7 Gary's Girl

Gary's Girl
  • Topic Starter

  • Members
  • 343 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Kentucky
  • Local time:08:30 PM

Posted 14 July 2015 - 03:36 PM

Oops! Forgot to say - the threats are named:

Unsigned file              

Service: hpqcxs08

Suspicious object, medium risk

 

and

Unsigned file              

Service: RtVOsdService

Suspicious object, medium risk



#8 Gary's Girl

Gary's Girl
  • Topic Starter

  • Members
  • 343 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Kentucky
  • Local time:08:30 PM

Posted 14 July 2015 - 10:09 PM

Good evening! The Kaspersky results look as if one is for my printer and the other my audio manager?  Anyhow, I will leave it open but I haven't done anything with it until I hear back from you. The ESet scan found 39 things and says it fixed them. I've now turned MSE back on - hope that's OK. Here's the scan log:



#9 Gary's Girl

Gary's Girl
  • Topic Starter

  • Members
  • 343 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Kentucky
  • Local time:08:30 PM

Posted 14 July 2015 - 10:10 PM

Ooops - it didn't copy! Trying again:

 

C:\Users\Sharon Wright\Documents\ccsetup502 (1).exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Documents\ccsetup502 (2).exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Documents\ccsetup502.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Documents\ccsetup504.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Documents\ccsetup506.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Documents\Downloads\ccsetup324.exe Win32/Bundled.Toolbar.Google.E potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Documents\Family Tree Maker\Family Tree Maker 2011 (2).msi a variant of Win32/HiddenStart.A potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Documents\Family Tree Maker\Family Tree Maker 2011.msi a variant of Win32/HiddenStart.A potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Downloads\cbsidlm-cbsi188-Free_File_Viewer-SEO-76091568.exe a variant of Win32/CNETInstaller.B potentially unwanted application cleaned by deleting - quarantined
C:\Users\Sharon Wright\Downloads\ccsetup325.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Downloads\ccsetup327.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Downloads\ccsetup402.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Downloads\ccsetup403.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Downloads\ccsetup409.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Downloads\ccsetup418 (1).exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Downloads\ccsetup418.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Downloads\ccsetup500.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Downloads\ccsetup501.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Downloads\ccsetup503.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Downloads\ccsetup507 (1).exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Downloads\ccsetup507.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Downloads\dfsetup212.exe Win32/Bundled.Toolbar.Google.E potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Downloads\dfsetup219.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Downloads\DJ2540_188.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Downloads\HP Downloads\HP Deskjet 2540 All-in-One Printer series Full Feature Software and Drivers - DJ2540_188.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\OneDrive\#01 Water Valley Campmeeting\ccsetup417.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\OneDrive\01 Websites\ccsetup505.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\OneDrive\Documents 2\Documents\ccsetup502 (1).exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\OneDrive\Documents 2\Documents\ccsetup502 (2).exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\OneDrive\Documents 2\Documents\ccsetup502.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\OneDrive\Documents 2\Documents\ccsetup504.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\OneDrive\Documents 2\Documents\ccsetup506.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\OneDrive\Documents 2\Documents\Downloads\ccsetup324.exe Win32/Bundled.Toolbar.Google.E potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\OneDrive\Documents 2\Documents\Family Tree Maker\Family Tree Maker 2011 (2).msi a variant of Win32/HiddenStart.A potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\OneDrive\Documents 2\Documents\Family Tree Maker\Family Tree Maker 2011.msi a variant of Win32/HiddenStart.A potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\OneDrive\EBay Pics\wpsetup.exe a variant of Win32/Bundled.Toolbar.Google.C potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\OneDrive\Hair\ccsetup408.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Users\Sharon Wright\Pictures\#01 GalaxyS5Pics\ccsetup504.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
C:\Windows\Installer\3c95ef7.msi a variant of Win32/HiddenStart.A potentially unsafe application deleted - quarantined


#10 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,804 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:05:30 PM

Posted 15 July 2015 - 08:38 AM



Oops! Forgot to say - the threats are named:

             

1.  Service: hpqcxs08

             

2.  Service: RtVOsdService

1.  This is a HP dll, it is safe.

 

2.  This is related to your Realtek audio.

 

Malwarebytes didn't find anything.

 

The Eset scan didn't find anything malicious.

 

Please post the TDSSKiller log.  I know it is a long one, you may need to break it into smaller parts.  

 

When you highlight a sections to copy it, leave it high lighted.  This will provide you with a quick reference to where you stopped.

 

================

 

Please download and install Emsisoft.
 
1.  When Emsisoft opens click on Update.
 
emsisoft6_zpsace019ac.png
 
2.  Click on Full Scan.
 
emsisoft7_zps9186dacd.png
 
3.  After the scan has completed the results will be displayed.  Make sure there is a check in the box of each item found, then click on Quarantine.
 
emsisoft9_zpsf493a30a.png
 
4.  After the items have been quarantined click on OK.
 
emsisoft10_zpscd89d5de.png
 
5.  After the quarantine has been completed click on Logs.
 
emsisoft11_zps7f976399.png
 
6.  Click on Export and save the log to a location which you will be able to find and open.  Open the log, copy and then paste the log in your topic.
 
emsisoft12_zpsb7365391.png
 
================
 

Please run AdwCleaner
 
Please download AdwCleaner and install it.
 
When AdwCleaner opens you will see an image like the one below.
 
adwcleaner11_zps48314883.png
 
Click on Scan to start the scan.
 
Once the search is complete a list of the pending items will be displayed.  If you see any which you do not want removed, remove the check mark next to it.  
 
Click on Clean to remove the selected items.  If you have any questions about any items in the list please copy and paste the list in your topic so we can review it.  
 
You will receive a message telling you that all programs will be closed so that the infections can be removed.  Click on OK.  The computer will be restarted to complete the cleaning process.
 
When the cleaning process is complete a log of what was removed will be presented.  Please copy and the paste this log in your topic.
 
================
 

Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

  • Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

     

     

     

     


    #11 Gary's Girl

    Gary's Girl
    • Topic Starter

    • Members
    • 343 posts
    • OFFLINE
    •  
    • Gender:Female
    • Location:Kentucky
    • Local time:08:30 PM

    Posted 15 July 2015 - 12:23 PM

    Greetings...I have 4 jobs, so I just got back to my computer. Still waiting for instructions about the TDSSKiller scan. There was no "Cure" option. Just: skip, copy to quarantine, or delete. Which one do I choose? Also, will follow your next instructions now and get back to you. Thanks again for helping me out.


    Sorry, I just reread your post. I'll choose skip and send you the scan now...



    #12 Gary's Girl

    Gary's Girl
    • Topic Starter

    • Members
    • 343 posts
    • OFFLINE
    •  
    • Gender:Female
    • Location:Kentucky
    • Local time:08:30 PM

    Posted 15 July 2015 - 12:26 PM

    Here's part 1 of the TDSSKiller report:

     

    14:37:31.0830 0x0ac8  TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
    14:37:32.0719 0x0ac8  ============================================================
    14:37:32.0719 0x0ac8  Current date / time: 2015/07/14 14:37:32.0719
    14:37:32.0719 0x0ac8  SystemInfo:
    14:37:32.0719 0x0ac8  
    14:37:32.0719 0x0ac8  OS Version: 6.1.7601 ServicePack: 1.0
    14:37:32.0719 0x0ac8  Product type: Workstation
    14:37:32.0719 0x0ac8  ComputerName: SHARON-HP
    14:37:32.0719 0x0ac8  UserName: Sharon Wright
    14:37:32.0719 0x0ac8  Windows directory: C:\Windows
    14:37:32.0719 0x0ac8  System windows directory: C:\Windows
    14:37:32.0719 0x0ac8  Running under WOW64
    14:37:32.0719 0x0ac8  Processor architecture: Intel x64
    14:37:32.0719 0x0ac8  Number of processors: 2
    14:37:32.0719 0x0ac8  Page size: 0x1000
    14:37:32.0719 0x0ac8  Boot type: Normal boot
    14:37:32.0719 0x0ac8  ============================================================
    14:37:32.0719 0x0ac8  BG loaded
    14:37:35.0168 0x0ac8  System UUID: {5B691F28-0BAB-FE61-57F3-2DE09AAF2B5F}
    14:37:37.0165 0x0ac8  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
    14:37:38.0101 0x0ac8  ============================================================
    14:37:38.0101 0x0ac8  \Device\Harddisk0\DR0:
    14:37:38.0132 0x0ac8  MBR partitions:
    14:37:38.0132 0x0ac8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
    14:37:38.0132 0x0ac8  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x2338C800
    14:37:38.0132 0x0ac8  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x233F0800, BlocksNum 0x200A000
    14:37:38.0132 0x0ac8  \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x253FA800, BlocksNum 0x33AB0
    14:37:38.0132 0x0ac8  ============================================================
    14:37:38.0257 0x0ac8  C: <-> \Device\Harddisk0\DR0\Partition2
    14:37:39.0349 0x0ac8  D: <-> \Device\Harddisk0\DR0\Partition3
    14:37:39.0349 0x0ac8  ============================================================
    14:37:39.0349 0x0ac8  Initialize success
    14:37:39.0349 0x0ac8  ============================================================
    14:39:18.0248 0x0d50  ============================================================
    14:39:18.0248 0x0d50  Scan started
    14:39:18.0248 0x0d50  Mode: Manual; SigCheck; TDLFS; 
    14:39:18.0248 0x0d50  ============================================================
    14:39:18.0248 0x0d50  KSN ping started
    14:39:32.0391 0x0d50  KSN ping finished: true
    14:39:36.0012 0x0d50  ================ Scan system memory ========================
    14:39:36.0012 0x0d50  System memory - ok
    14:39:36.0012 0x0d50  ================ Scan services =============================
    14:39:36.0246 0x0d50  [ 970C70F6B2953ED43822D3797855D84C, CB22723678B514277BC6E6DDDD206F3B2377CD889C9D473A47A7056BE597BC6B ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
    14:39:36.0371 0x0d50  !SASCORE - ok
    14:39:37.0620 0x0d50  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
    14:39:37.0745 0x0d50  1394ohci - ok
    14:39:38.0041 0x0d50  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
    14:39:38.0104 0x0d50  ACPI - ok
    14:39:38.0150 0x0d50  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
    14:39:38.0478 0x0d50  AcpiPmi - ok
    14:39:39.0227 0x0d50  [ 00CC35F515079F5F94FABC3AC5C7D363, 7CE8B1715009602059DEDD6CBCA9C18EF079EDA344E7809813D6C0A395622B82 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
    14:39:39.0274 0x0d50  AdobeFlashPlayerUpdateSvc - ok
    14:39:39.0476 0x0d50  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
    14:39:39.0539 0x0d50  adp94xx - ok
    14:39:39.0649 0x0d50  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
    14:39:39.0696 0x0d50  adpahci - ok
    14:39:39.0758 0x0d50  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
    14:39:39.0789 0x0d50  adpu320 - ok
    14:39:39.0836 0x0d50  [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
    14:39:39.0977 0x0d50  AeLookupSvc - ok
    14:39:40.0039 0x0d50  [ D1E343BC00136CE03C4D403194D06A80, 94F2543164A2CEA179EDE53E1294EE24391A59CAEFF83BA5CE9385E8E686E89C ] AERTFilters     C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
    14:39:40.0055 0x0d50  AERTFilters - ok
    14:39:40.0179 0x0d50  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
    14:39:40.0335 0x0d50  AFD - ok
    14:39:40.0538 0x0d50  [ 98022774D9930ECBB292E70DB7601DF6, BE64A40B9BE997D73C0FC14D97E204C9D886EDA07EC4C9391A70CE477084E5F1 ] AgereSoftModem  C:\Windows\system32\DRIVERS\agrsm64.sys
    14:39:40.0725 0x0d50  AgereSoftModem - ok
    14:39:40.0772 0x0d50  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
    14:39:40.0803 0x0d50  agp440 - ok
    14:39:40.0881 0x0d50  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
    14:39:40.0959 0x0d50  ALG - ok
    14:39:41.0022 0x0d50  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
    14:39:41.0037 0x0d50  aliide - ok
    14:39:41.0459 0x0d50  [ 5EE5E5DF9E92B3A5581B9DE7DCC05972, 6AD4D98F00C2B454807450EDB9ED3545BA91B608A853A59BDE7282808CBFF6B0 ] AllShare Framework DMS C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe
    14:39:41.0537 0x0d50  AllShare Framework DMS - detected UnsignedFile.Multi.Generic ( 1 )
    14:39:44.0362 0x0d50  Detect skipped due to KSN trusted
    14:39:44.0362 0x0d50  AllShare Framework DMS - ok
    14:39:44.0425 0x0d50  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
    14:39:44.0456 0x0d50  amdide - ok
    14:39:44.0565 0x0d50  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
    14:39:44.0721 0x0d50  AmdK8 - ok
    14:39:44.0815 0x0d50  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
    14:39:44.0894 0x0d50  AmdPPM - ok
    14:39:44.0940 0x0d50  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
    14:39:44.0972 0x0d50  amdsata - ok
    14:39:45.0003 0x0d50  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
    14:39:45.0034 0x0d50  amdsbs - ok
    14:39:45.0050 0x0d50  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
    14:39:45.0081 0x0d50  amdxata - ok
    14:39:45.0192 0x0d50  [ 90C53BD47979FB8814F465A08B885102, 5EDFC1909FC1FF9133A534DFCC5408CF3A777AC41FB21FAD375436E3D86C02EC ] AppID           C:\Windows\system32\drivers\appid.sys
    14:39:45.0390 0x0d50  AppID - ok
    14:39:45.0828 0x0d50  [ 72D4757510FDA69D729169C00AFC211E, FB9686D0D94EE7C19A3994C29E8331A6EC3020B2980B2CC75F72F3AB25512C15 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
    14:39:45.0875 0x0d50  AppIDSvc - ok
    14:39:45.0984 0x0d50  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
    14:39:46.0046 0x0d50  Appinfo - ok
    14:39:46.0140 0x0d50  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
    14:39:46.0156 0x0d50  arc - ok
    14:39:46.0202 0x0d50  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
    14:39:46.0234 0x0d50  arcsas - ok
    14:39:46.0748 0x0d50  [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
    14:39:48.0374 0x0d50  aspnet_state - ok
    14:39:48.0421 0x0d50  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
    14:39:49.0310 0x0d50  AsyncMac - ok
    14:39:49.0403 0x0d50  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
    14:39:49.0419 0x0d50  atapi - ok
    14:39:49.0748 0x0d50  [ E857EEE6B92AAA473EBB3465ADD8F7E7, 1C7E4737E649A025B3C4974A4F7D1353EAB85561FC8ED54E5C22A777E1A189B3 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
    14:39:50.0443 0x0d50  athr - ok
    14:39:50.0646 0x0d50  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
    14:39:50.0724 0x0d50  AudioEndpointBuilder - ok
    14:39:50.0818 0x0d50  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv        C:\Windows\System32\Audiosrv.dll
    14:39:50.0849 0x0d50  AudioSrv - ok
    14:39:50.0896 0x0d50  AVGIDSHA - ok
    14:39:50.0974 0x0d50  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
    14:39:51.0036 0x0d50  AxInstSV - ok
    14:39:51.0099 0x0d50  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
    14:39:51.0161 0x0d50  b06bdrv - ok
    14:39:51.0270 0x0d50  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
    14:39:51.0442 0x0d50  b57nd60a - ok
    14:39:51.0989 0x0d50  [ 0E7A9264576B40638A3FBC804DE1FF76, D307179E6FA5D39E03175F37D297E4D0DA86CF0FC6EFA6CFCFAA0E8713489BC5 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
    14:39:52.0098 0x0d50  BCM43XX - ok
    14:39:52.0145 0x0d50  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
    14:39:52.0301 0x0d50  BDESVC - ok
    14:39:52.0441 0x0d50  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
    14:39:52.0504 0x0d50  Beep - ok
    14:39:52.0722 0x0d50  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
    14:39:52.0878 0x0d50  BFE - ok
    14:39:53.0003 0x0d50  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
    14:39:53.0690 0x0d50  BITS - ok
    14:39:53.0737 0x0d50  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
    14:39:53.0799 0x0d50  blbdrive - ok
    14:39:54.0065 0x0d50  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
    14:39:54.0127 0x0d50  bowser - ok
    14:39:54.0158 0x0d50  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
    14:39:54.0205 0x0d50  BrFiltLo - ok
    14:39:54.0205 0x0d50  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
    14:39:54.0267 0x0d50  BrFiltUp - ok
    14:39:54.0345 0x0d50  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
    14:39:54.0392 0x0d50  Browser - ok
    14:39:54.0470 0x0d50  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
    14:39:54.0517 0x0d50  Brserid - ok
    14:39:54.0579 0x0d50  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
    14:39:54.0626 0x0d50  BrSerWdm - ok
    14:39:54.0642 0x0d50  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
    14:39:54.0689 0x0d50  BrUsbMdm - ok
    14:39:54.0735 0x0d50  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
    14:39:54.0767 0x0d50  BrUsbSer - ok
    14:39:55.0016 0x0d50  [ 38E83A80EFFE66DBD337EC844355B8CF, 4D58CB3D3DC25F38C48CCF23BEBD7305E05D5A1DD42E548FC8D509E3DF25C045 ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
    14:39:55.0141 0x0d50  BstHdAndroidSvc - ok
    14:39:55.0297 0x0d50  [ 0E92FB0F359BCAFA4984A3ABED4890C4, 95A616E827F6268BC2514BBF02CC1FF0FF34923A3A87C7D5D87B36D7735386D9 ] BstHdDrv        C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
    14:39:55.0391 0x0d50  BstHdDrv - ok
    14:39:55.0484 0x0d50  [ 74ADBBD8CFBF70B029F0D6D1A1FBEC2A, 781E7318285F7843AB08DBAD611D8DFBFAE7900E5D56AC0FDD9A4AE44517ABDF ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
    14:39:55.0547 0x0d50  BstHdLogRotatorSvc - ok
    14:39:55.0750 0x0d50  [ 3BEBD81F03FE5686BD6A0AFD574332D0, 02E8A61B65FEF0AD398E24AED092B7E643F97D05E38ED907CEB54F72BAD39620 ] BstHdUpdaterSvc C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
    14:39:56.0031 0x0d50  BstHdUpdaterSvc - ok
    14:39:56.0156 0x0d50  [ 21A583678FD814794BC3E8E32E5A6BD3, 4EC67E35BAC69A66B480DA50FBB176104C7294744B3F7B7F4C05F2B351FE62DE ] BTCFilterService C:\Windows\system32\DRIVERS\motfilt.sys
    14:39:56.0562 0x0d50  BTCFilterService - ok
    14:39:56.0905 0x0d50  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
    14:39:58.0325 0x0d50  BthEnum - ok
    14:39:58.0466 0x0d50  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
    14:40:02.0118 0x0d50  BTHMODEM - ok
    14:40:02.0227 0x0d50  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
    14:40:03.0023 0x0d50  BthPan - ok
    14:40:03.0460 0x0d50  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
    14:40:03.0694 0x0d50  BTHPORT - ok
    14:40:03.0804 0x0d50  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
    14:40:03.0929 0x0d50  bthserv - ok
    14:40:03.0976 0x0d50  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
    14:40:04.0039 0x0d50  BTHUSB - ok
    14:40:04.0648 0x0d50  [ FECA9F830A5C6BAB9978E6781A26AE2B, CA1681A2F4FA849815B8E823805E078DB9C050CEE86E9E394B2A37B57CC474A6 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
    14:40:04.0695 0x0d50  c2cautoupdatesvc - ok
    14:40:05.0366 0x0d50  [ 5B33709F7FE59BB625F113EED86AFC5C, 8D29FE242D55526FDEB2CB4009B5DE19C93972E872BE6328AD3305E360A3D44B ] c2cpnrsvc       C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
    14:40:05.0444 0x0d50  c2cpnrsvc - ok
    14:40:05.0584 0x0d50  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
    14:40:06.0007 0x0d50  cdfs - ok
    14:40:06.0116 0x0d50  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
    14:40:06.0147 0x0d50  cdrom - ok
    14:40:06.0459 0x0d50  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
    14:40:06.0787 0x0d50  CertPropSvc - ok
    14:40:07.0036 0x0d50  [ 533328A3D9A9C286682525842547540C, 56BFE3213244E66555AC509140D5512430BE40E196DB3DA45BBC52687393B770 ] CinemaNow Service C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemanowSvc.exe
    14:40:07.0099 0x0d50  CinemaNow Service - ok
    14:40:07.0223 0x0d50  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
    14:40:07.0239 0x0d50  circlass - ok
    14:40:07.0348 0x0d50  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\Windows\system32\CLFS.sys
    14:40:07.0411 0x0d50  CLFS - ok
    14:40:07.0769 0x0d50  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
    14:40:08.0004 0x0d50  clr_optimization_v2.0.50727_32 - ok
    14:40:08.0129 0x0d50  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
    14:40:08.0192 0x0d50  clr_optimization_v2.0.50727_64 - ok
    14:40:11.0157 0x0d50  [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
    14:40:15.0919 0x0d50  clr_optimization_v4.0.30319_32 - ok
    14:40:15.0965 0x0d50  [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
    14:40:19.0010 0x0d50  clr_optimization_v4.0.30319_64 - ok
    14:40:19.0244 0x0d50  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
    14:40:19.0385 0x0d50  CmBatt - ok
    14:40:19.0556 0x0d50  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
    14:40:19.0572 0x0d50  cmdide - ok
    14:40:19.0728 0x0d50  [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG             C:\Windows\system32\Drivers\cng.sys
    14:40:19.0806 0x0d50  CNG - ok
    14:40:20.0181 0x0d50  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
    14:40:20.0197 0x0d50  Compbatt - ok
    14:40:20.0291 0x0d50  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
    14:40:20.0369 0x0d50  CompositeBus - ok
    14:40:20.0415 0x0d50  COMSysApp - ok
    14:40:20.0464 0x0d50  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
    14:40:20.0480 0x0d50  crcdisk - ok
    14:40:21.0494 0x0d50  [ 1CD76A83B9E8E9A5A3519B39E28354D9, F9931743B99820FFBFB13136DFFD92F86802D543F9D8478648CDC554FB38899D ] CryptSvc        C:\Windows\system32\cryptsvc.dll
    14:40:22.0384 0x0d50  CryptSvc - ok
    14:40:24.0039 0x0d50  dbupdate - ok
    14:40:24.0226 0x0d50  dbupdatem - ok
    14:40:24.0444 0x0d50  [ 15C2AFD86D8A58354FC100434C78B621, 08E049A0A8A62EB9E2039D72D4F0039D2A1612B94DE468D312EA5C8C1EA63538 ] dc3d            C:\Windows\system32\DRIVERS\dc3d.sys
    14:40:25.0505 0x0d50  dc3d - ok
    14:40:26.0036 0x0d50  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
    14:40:26.0848 0x0d50  DcomLaunch - ok
    14:40:27.0004 0x0d50  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
    14:40:27.0269 0x0d50  defragsvc - ok
    14:40:27.0378 0x0d50  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
    14:40:27.0503 0x0d50  DfsC - ok
    14:40:28.0175 0x0d50  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
    14:40:28.0627 0x0d50  Dhcp - ok
    14:40:29.0610 0x0d50  [ AA5319FA8602676B5D3A2B4A1355896D, 57532E16FF0DDE3D62B6B6DC35E2598DD453140E9277247965A1E835645E588A ] DiagTrack       C:\Windows\system32\diagtrack.dll
    14:40:29.0781 0x0d50  DiagTrack - ok
    14:40:30.0344 0x0d50  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
    14:40:30.0984 0x0d50  discache - ok
    14:40:31.0171 0x0d50  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
    14:40:31.0186 0x0d50  Disk - ok
    14:40:31.0420 0x0d50  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
    14:40:31.0452 0x0d50  Dnscache - ok
    14:40:31.0623 0x0d50  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
    14:40:31.0888 0x0d50  dot3svc - ok
    14:40:31.0951 0x0d50  [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
    14:40:32.0170 0x0d50  Dot4 - ok
    14:40:32.0435 0x0d50  [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
    14:40:32.0513 0x0d50  Dot4Print - ok
    14:40:32.0607 0x0d50  [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
    14:40:32.0857 0x0d50  dot4usb - ok
    14:40:33.0637 0x0d50  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
    14:40:34.0405 0x0d50  DPS - ok
    14:40:34.0670 0x0d50  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
    14:40:34.0904 0x0d50  drmkaud - ok
    14:40:35.0216 0x0d50  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
    14:40:35.0263 0x0d50  DXGKrnl - ok
    14:40:35.0341 0x0d50  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
    14:40:35.0700 0x0d50  EapHost - ok
    14:40:37.0620 0x0d50  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
    14:40:37.0947 0x0d50  ebdrv - ok
    14:40:39.0259 0x0d50  [ 17A6A9AAD04CCC6EE53290585BFC43AF, E4901D86C6470D21ABA0F6D9615A613E5C74A3FEF931E497F51B6AFA5715332B ] EFS             C:\Windows\System32\lsass.exe
    14:40:39.0274 0x0d50  EFS - ok
    14:40:39.0571 0x0d50  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
    14:40:40.0007 0x0d50  ehRecvr - ok
    14:40:40.0054 0x0d50  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
    14:40:40.0475 0x0d50  ehSched - ok
    14:40:40.0617 0x0d50  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
    14:40:40.0851 0x0d50  elxstor - ok
    14:40:41.0303 0x0d50  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
    14:40:41.0646 0x0d50  ErrDev - ok
    14:40:41.0943 0x0d50  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
    14:40:42.0099 0x0d50  EventSystem - ok
    14:40:42.0192 0x0d50  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
    14:40:42.0255 0x0d50  exfat - ok
    14:40:42.0286 0x0d50  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
    14:40:42.0426 0x0d50  fastfat - ok
    14:40:42.0817 0x0d50  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
    14:40:42.0849 0x0d50  Fax - ok
    14:40:42.0958 0x0d50  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
    14:40:42.0989 0x0d50  fdc - ok
    14:40:43.0129 0x0d50  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
    14:40:43.0441 0x0d50  fdPHost - ok
    14:40:43.0473 0x0d50  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
    14:40:43.0551 0x0d50  FDResPub - ok
    14:40:43.0613 0x0d50  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
    14:40:43.0660 0x0d50  FileInfo - ok
    14:40:43.0816 0x0d50  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
    14:40:43.0925 0x0d50  Filetrace - ok
    14:40:44.0034 0x0d50  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
    14:40:44.0050 0x0d50  flpydisk - ok
    14:40:44.0159 0x0d50  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
    14:40:44.0175 0x0d50  FltMgr - ok
    14:40:44.0471 0x0d50  [ E612E86FA15EA1EF9A52433A2743C447, 8A66164541D2EE2334B6DE3995C31138EA85E3A06BC7FD901E60D345E4E1E8A8 ] FontCache       C:\Windows\system32\FntCache.dll
    14:40:44.0627 0x0d50  FontCache - ok
    14:40:44.0862 0x0d50  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
    14:40:44.0878 0x0d50  FontCache3.0.0.0 - ok
    14:40:45.0002 0x0d50  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
    14:40:45.0018 0x0d50  FsDepends - ok
    14:40:45.0127 0x0d50  [ 6C06701BF1DB05405804D7EB610991CE, 75DEB2204D9AC338ED7C4742BEFAFA0AFC7E42B2C1B54A57DF8A1AD097D9EC3E ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
    14:40:45.0158 0x0d50  fssfltr - ok
    14:40:45.0533 0x0d50  [ 4CE9DAC1518FF7E77BD213E6394B9D77, D7D0D29DF93AC7DC5F85E385EEB45306C7BD87ACA7AAC5A8D47893D120C32C03 ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
    14:40:45.0642 0x0d50  fsssvc - ok
    14:40:45.0751 0x0d50  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
    14:40:45.0782 0x0d50  Fs_Rec - ok
    14:40:45.0970 0x0d50  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
    14:40:46.0001 0x0d50  fvevol - ok
    14:40:46.0048 0x0d50  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
    14:40:46.0079 0x0d50  gagp30kx - ok
    14:40:46.0375 0x0d50  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
    14:40:46.0484 0x0d50  gpsvc - ok
    14:40:46.0678 0x0d50  [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    14:40:46.0693 0x0d50  gupdate - ok
    14:40:46.0849 0x0d50  [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    14:40:46.0865 0x0d50  gupdatem - ok
    14:40:46.0990 0x0d50  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
    14:40:47.0021 0x0d50  gusvc - ok
    14:40:47.0052 0x0d50  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
    14:40:47.0068 0x0d50  hcw85cir - ok
    14:40:47.0302 0x0d50  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
    14:40:47.0395 0x0d50  HdAudAddService - ok
    14:40:47.0426 0x0d50  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
    14:40:47.0473 0x0d50  HDAudBus - ok
    14:40:47.0629 0x0d50  [ B6AC71AAA2B10848F57FC49D55A651AF, 4FAD833654E86F9FAF972AC8AF87FD4A9A765B26B96F096BBD63506B5D521A91 ] HECIx64         C:\Windows\system32\DRIVERS\HECIx64.sys
    14:40:47.0645 0x0d50  HECIx64 - ok
    14:40:47.0770 0x0d50  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
    14:40:47.0848 0x0d50  HidBatt - ok
    14:40:47.0959 0x0d50  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
    14:40:47.0990 0x0d50  HidBth - ok
    14:40:48.0052 0x0d50  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
    14:40:48.0162 0x0d50  HidIr - ok
    14:40:48.0271 0x0d50  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
    14:40:48.0364 0x0d50  hidserv - ok
    14:40:48.0552 0x0d50  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
    14:40:48.0583 0x0d50  HidUsb - ok
    14:40:48.0724 0x0d50  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
    14:40:48.0818 0x0d50  hkmsvc - ok
    14:40:48.0989 0x0d50  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
    14:40:49.0255 0x0d50  HomeGroupListener - ok
    14:40:49.0317 0x0d50  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
    14:40:49.0364 0x0d50  HomeGroupProvider - ok
    14:40:49.0691 0x0d50  [ F50F7984FDD151EDD8A70A8DBD9E2A44, 45E7ECA40298B233D124993D6C9D4FBBF05E9A843F4DE089317342B3D8A83696 ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
    14:40:51.0286 0x0d50  hpqcxs08 - detected UnsignedFile.Multi.Generic ( 1 )
    14:41:01.0619 0x0d50  hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning
    14:41:01.0619 0x0d50  Force sending object to P2P due to detect: hpqcxs08
    14:41:05.0447 0x0d50  Object send P2P result: true
    14:41:08.0490 0x0d50  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
    14:41:08.0521 0x0d50  HpSAMD - ok
    14:41:08.0739 0x0d50  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
    14:41:08.0865 0x0d50  HTTP - ok
    14:41:08.0943 0x0d50  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
    14:41:08.0959 0x0d50  hwpolicy - ok
    14:41:09.0208 0x0d50  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
    14:41:09.0224 0x0d50  i8042prt - ok
    14:41:09.0630 0x0d50  [ 1384872112E8E7FD5786ECEB8BDDF4C9, DC7844691740805A94F2901F8CB56F1591AF4F0F9C6D92D6B8595F89E6FA5F02 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
    14:41:17.0565 0x0d50  iaStor - ok
    14:41:17.0877 0x0d50  [ 6B24D1C3096DE796D15571079EA5E98C, 89566A7BDEDA7A663110F72B6301998651937E1E3E541EAB054169CEC8C7353F ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
    14:41:17.0893 0x0d50  IAStorDataMgrSvc - ok
    14:41:18.0114 0x0d50  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
    14:41:18.0161 0x0d50  iaStorV - ok
    14:41:18.0520 0x0d50  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
    14:41:18.0660 0x0d50  idsvc - ok
    14:41:19.0098 0x0d50  IEEtwCollectorService - ok
    14:41:20.0502 0x0d50  [ 1BE8D9CA4F2363B8E8015621878E0043, 695B5F88A6F6943156D033DAA86188F50308AD71FCF26CF0AEDF7E23F774FB56 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
    14:41:21.0162 0x0d50  igfx - ok
    14:41:21.0240 0x0d50  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
    14:41:21.0303 0x0d50  iirsp - ok
    14:41:21.0630 0x0d50  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
    14:41:22.0192 0x0d50  IKEEXT - ok
    14:41:22.0941 0x0d50  [ 028E40182A6F0374978C755F85B9F07C, 747B5B4E56076A77C7936B71CE20FD413A1869ACF9E4218A1B8EF8D4E8C82A3B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
    14:41:23.0159 0x0d50  IntcAzAudAddService - ok
    14:41:23.0471 0x0d50  [ FC727061C0F47C8059E88E05D5C8E381, C7A3782F5D86C7FDE57AA1F2EE81638C5FC3072ACC6E572BA2EC7B3CFF389800 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
    14:41:23.0565 0x0d50  IntcDAud - ok
    14:41:23.0627 0x0d50  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
    14:41:23.0643 0x0d50  intelide - ok
    14:41:23.0737 0x0d50  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
    14:41:24.0127 0x0d50  intelppm - ok
    14:41:24.0205 0x0d50  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
    14:41:24.0251 0x0d50  IPBusEnum - ok
    14:41:24.0314 0x0d50  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
    14:41:24.0501 0x0d50  IpFilterDriver - ok
    14:41:24.0657 0x0d50  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
    14:41:25.0173 0x0d50  iphlpsvc - ok
    14:41:25.0220 0x0d50  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
    14:41:25.0329 0x0d50  IPMIDRV - ok
    14:41:25.0422 0x0d50  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
    14:41:25.0547 0x0d50  IPNAT - ok
    14:41:25.0672 0x0d50  [ 02DEF37AB75E0032C50724646F708DE8, 1504041F6751A93F7AA0C8FDE287DD7500D85CC93B1969D0EFC82C023F69AA6C ] iPodDrv         C:\Windows\system32\drivers\iPodDrv.sys
    14:41:25.0703 0x0d50  iPodDrv - ok
    14:41:25.0797 0x0d50  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
    14:41:26.0218 0x0d50  IRENUM - ok
    14:41:26.0296 0x0d50  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
    14:41:26.0312 0x0d50  isapnp - ok
    14:41:26.0483 0x0d50  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
    14:41:26.0530 0x0d50  iScsiPrt - ok
    14:41:26.0639 0x0d50  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
    14:41:26.0670 0x0d50  kbdclass - ok
    14:41:26.0733 0x0d50  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
    14:41:26.0811 0x0d50  kbdhid - ok
    14:41:26.0873 0x0d50  [ 17A6A9AAD04CCC6EE53290585BFC43AF, E4901D86C6470D21ABA0F6D9615A613E5C74A3FEF931E497F51B6AFA5715332B ] KeyIso          C:\Windows\system32\lsass.exe
    14:41:26.0904 0x0d50  KeyIso - ok
    14:41:26.0983 0x0d50  [ BF69D973523D539A35807946C6DA7E16, 38F2C59B0857131961DBEA48C4A5DFA9BE7B564941935086B8DC8DBEF896F3EC ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
    14:41:26.0999 0x0d50  KSecDD - ok
    14:41:27.0030 0x0d50  [ 272C27711C8AA6E7815EE33F8ACA9C66, 0A5A10A7A3E87DB92E06395A6676B94FE8B7AD6704864075D443CDC9BABDB4DF ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
    14:41:27.0061 0x0d50  KSecPkg - ok
    14:41:27.0155 0x0d50  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
    14:41:27.0233 0x0d50  ksthunk - ok
    14:41:27.0295 0x0d50  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
    14:41:27.0576 0x0d50  KtmRm - ok
    14:41:27.0623 0x0d50  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
    14:41:27.0717 0x0d50  LanmanServer - ok
    14:41:27.0904 0x0d50  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
    14:41:27.0997 0x0d50  LanmanWorkstation - ok
    14:41:28.0153 0x0d50  [ 6E7B4E75E8A226EDC8A9A8B1C3510F9B, 56F7D92C803EF433339AE197E10BF821FAED2EDEBA49845F8942DAB19F2F2062 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
    14:41:28.0263 0x0d50  LightScribeService - detected UnsignedFile.Multi.Generic ( 1 )
    14:41:31.0119 0x0d50  Detect skipped due to KSN trusted
    14:41:31.0119 0x0d50  LightScribeService - ok
    14:41:31.0166 0x0d50  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
    14:41:31.0291 0x0d50  lltdio - ok
    14:41:31.0400 0x0d50  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
    14:41:31.0525 0x0d50  lltdsvc - ok
    14:41:31.0603 0x0d50  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
    14:41:31.0697 0x0d50  lmhosts - ok
    14:41:31.0853 0x0d50  [ DBC1136A62BD4DECC3632DF650284C2E, 2D6344357D21A9062019C7DDF3DB440ABC724CDA925471BBFA8CCAC65E6A2C80 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
    14:41:31.0868 0x0d50  LMS - ok
    14:41:31.0993 0x0d50  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
    14:41:32.0009 0x0d50  LSI_FC - ok
    14:41:32.0071 0x0d50  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
    14:41:32.0087 0x0d50  LSI_SAS - ok
    14:41:32.0180 0x0d50  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
    14:41:32.0196 0x0d50  LSI_SAS2 - ok
    14:41:32.0289 0x0d50  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
    14:41:32.0305 0x0d50  LSI_SCSI - ok
    14:41:32.0336 0x0d50  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
    14:41:32.0414 0x0d50  luafv - ok
    14:41:32.0586 0x0d50  [ 54D70409DE6932E9EFA117779611E7A9, 4FF4328CEB222160664633D361D06EAEF4B27E2A5AE515CF7D425650A6A23136 ] mbamchameleon   C:\Windows\system32\drivers\mbamchameleon.sys
    14:41:32.0601 0x0d50  mbamchameleon - ok
    14:41:32.0851 0x0d50  [ 1E9E32AEC3E1EB1B31B8169F33168B56, 39114585E1FDBBA31E1F781C6A627281907183F94626EB347B08D1F78992ED2A ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
    14:41:32.0882 0x0d50  MBAMProtector - ok
    14:41:33.0320 0x0d50  [ 516E29AD03BDF610CC36A95AE692FE42, 09F913B169AD775FF587AE59AEC5DD2A2D8646803F48BF616C74EEC0DE3BE7A2 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
    14:41:33.0429 0x0d50  MBAMScheduler - ok
    14:41:34.0022 0x0d50  [ 2B983F067AEE3F9EB4DF5E97F45D21D1, 0B9ED0E91FF01A5445927650113E320C3C0EA16F1401AA55A509DDBF704DF22F ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
    14:41:34.0069 0x0d50  MBAMService - ok
    14:41:34.0272 0x0d50  [ E9CD058C79EA15B4AA93E259FA713B07, 2B09F65188D8782F9C797545F2F791EC7EAB85D8914B2C0B30BD869C412E3980 ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
    14:41:34.0287 0x0d50  MBAMSwissArmy - ok
    14:41:34.0414 0x0d50  [ F49FB3C88E263AE9A246593B0BB29294, FB53D6FA4A98B98334DCFF81E40712265256D31A9E9FF36022887BABD50F39EB ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
    14:41:34.0447 0x0d50  MBAMWebAccessControl - ok
    14:41:34.0510 0x0d50  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
    14:41:34.0541 0x0d50  Mcx2Svc - ok
    14:41:34.0572 0x0d50  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
    14:41:34.0588 0x0d50  megasas - ok
    14:41:34.0666 0x0d50  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
    14:41:34.0744 0x0d50  MegaSR - ok
    14:41:34.0884 0x0d50  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
    14:41:34.0978 0x0d50  MMCSS - ok
    14:41:35.0024 0x0d50  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
    14:41:35.0103 0x0d50  Modem - ok
    14:41:35.0213 0x0d50  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
    14:41:35.0259 0x0d50  monitor - ok
    14:41:35.0353 0x0d50  [ 4BD239A90FAFC80CA91AF2DD644D719A, D26D48AB392426544C9E57593BB72F9416E7EFF73769C94A9A4614099EA31E18 ] motandroidusb   C:\Windows\system32\Drivers\motoandroid.sys
    14:41:35.0369 0x0d50  motandroidusb - ok
    14:41:35.0571 0x0d50  [ 12588483F1A69AB2970D36D96B07F71B, CDC044F2FDAD3B22B295528A117D93B7DF464DE63E421DAE9C19E7A1535E3743 ] motccgp         C:\Windows\system32\DRIVERS\motccgp.sys
    14:41:35.0618 0x0d50  motccgp - ok
    14:41:35.0727 0x0d50  [ 7ED3A9C3763725BD700946971215EE77, 6150D52945E10B69CFA5E3E637DCEBA67158092C6350B4AFE456EA846CA90C18 ] Motorola Device Manager C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
    14:41:35.0821 0x0d50  Motorola Device Manager - ok
    14:41:35.0883 0x0d50  [ 19BC2161C3FCCED802F1BCD9B78C3466, 2EA39F23C49191A4651CD785A742554801A4AC59AACE1993B3A30EA137B4A321 ] MotoSwitchService C:\Windows\system32\DRIVERS\motswch.sys
    14:41:35.0915 0x0d50  MotoSwitchService - ok
    14:41:35.0961 0x0d50  [ 6A3C0B01551B614B6C6BC9743DEF60D9, 9144C0149A764355045711B36C12F87B2F914B76809407F46FB7BA72F83DDB9D ] Motousbnet      C:\Windows\system32\DRIVERS\Motousbnet.sys
    14:41:36.0086 0x0d50  Motousbnet - ok
    14:41:36.0117 0x0d50  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
    14:41:36.0133 0x0d50  mouclass - ok
    14:41:36.0180 0x0d50  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
    14:41:36.0227 0x0d50  mouhid - ok
    14:41:36.0289 0x0d50  [ 87BCD1034CBF33537D4D4C251D39BA26, CB9DD235B62B79383F99873D75E26EEA5EE7914CA89E4B75992207F83420437F ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
    14:41:36.0320 0x0d50  mountmgr - ok
    14:41:36.0429 0x0d50  [ 73150F67D20270FF95A021A22E64F28A, A8878DEFBE437FB453F8E9243FB5C787D07AC7415A4475388D479C10417C524F ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
    14:41:36.0461 0x0d50  MpFilter - ok
    14:41:36.0507 0x0d50  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
    14:41:36.0539 0x0d50  mpio - ok
    14:41:36.0570 0x0d50  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
    14:41:36.0632 0x0d50  mpsdrv - ok
    14:41:36.0773 0x0d50  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
    14:41:36.0851 0x0d50  MpsSvc - ok
    14:41:36.0897 0x0d50  mrtRate - ok
    14:41:36.0960 0x0d50  [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
    14:41:36.0991 0x0d50  MRxDAV - ok
    14:41:37.0054 0x0d50  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
    14:41:37.0132 0x0d50  mrxsmb - ok
    14:41:37.0195 0x0d50  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
    14:41:37.0320 0x0d50  mrxsmb10 - ok
    14:41:37.0351 0x0d50  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
    14:41:37.0398 0x0d50  mrxsmb20 - ok
    14:41:37.0429 0x0d50  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
    14:41:37.0444 0x0d50  msahci - ok
    14:41:37.0476 0x0d50  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
    14:41:37.0507 0x0d50  msdsm - ok
    14:41:37.0585 0x0d50  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
    14:41:37.0632 0x0d50  MSDTC - ok
    14:41:37.0663 0x0d50  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
    14:41:37.0725 0x0d50  Msfs - ok
    14:41:37.0741 0x0d50  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
    14:41:37.0819 0x0d50  mshidkmdf - ok
    14:41:37.0912 0x0d50  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
    14:41:37.0959 0x0d50  msisadrv - ok
    14:41:38.0022 0x0d50  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
    14:41:38.0084 0x0d50  MSiSCSI - ok
    14:41:38.0100 0x0d50  msiserver - ok
    14:41:38.0193 0x0d50  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
    14:41:38.0256 0x0d50  MSKSSRV - ok
    14:41:38.0380 0x0d50  [ CE996C1821021ADF8E28E80A54E846A8, 99042E895B6C2EA80F3BA65563A12C8EBA882E3AD6A21DD8E799B0112C75DDD2 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
    14:41:38.0396 0x0d50  MsMpSvc - ok
    14:41:38.0427 0x0d50  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
    14:41:38.0521 0x0d50  MSPCLOCK - ok
    14:41:38.0568 0x0d50  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
    14:41:38.0630 0x0d50  MSPQM - ok
    14:41:38.0677 0x0d50  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
    14:41:38.0724 0x0d50  MsRPC - ok
    14:41:38.0755 0x0d50  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
    14:41:38.0770 0x0d50  mssmbios - ok
    14:41:38.0817 0x0d50  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
    14:41:38.0895 0x0d50  MSTEE - ok
    14:41:39.0004 0x0d50  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
    14:41:39.0099 0x0d50  MTConfig - ok
    14:41:39.0146 0x0d50  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
    14:41:39.0193 0x0d50  Mup - ok
    14:41:39.0317 0x0d50  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
    14:41:39.0427 0x0d50  napagent - ok
    14:41:39.0458 0x0d50  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
    14:41:39.0520 0x0d50  NativeWifiP - ok
    14:41:39.0645 0x0d50  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
    14:41:39.0707 0x0d50  NDIS - ok
    14:41:39.0785 0x0d50  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
    14:41:39.0848 0x0d50  NdisCap - ok
    14:41:39.0895 0x0d50  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
    14:41:39.0973 0x0d50  NdisTapi - ok
    14:41:40.0035 0x0d50  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
    14:41:40.0097 0x0d50  Ndisuio - ok
    14:41:40.0175 0x0d50  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
    14:41:40.0222 0x0d50  NdisWan - ok
    14:41:40.0269 0x0d50  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
    14:41:40.0347 0x0d50  NDProxy - ok
    14:41:40.0378 0x0d50  [ 59267D2F0328599AA3B5408C2E06126F, 54D59079F04F9F08F980C1F1A8F8973ACF9C344218818A15A762287EE6F22F02 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
    14:41:40.0456 0x0d50  Net Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
    14:41:43.0703 0x0d50  Detect skipped due to KSN trusted
    14:41:43.0703 0x0d50  Net Driver HPZ12 - ok
    14:41:43.0765 0x0d50  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
    14:41:43.0859 0x0d50  NetBIOS - ok
    14:41:43.0987 0x0d50  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
    14:41:44.0080 0x0d50  NetBT - ok
    14:41:44.0127 0x0d50  [ 17A6A9AAD04CCC6EE53290585BFC43AF, E4901D86C6470D21ABA0F6D9615A613E5C74A3FEF931E497F51B6AFA5715332B ] Netlogon        C:\Windows\system32\lsass.exe
    14:41:44.0143 0x0d50  Netlogon - ok
    14:41:44.0190 0x0d50  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
    14:41:44.0268 0x0d50  Netman - ok
    14:41:44.0408 0x0d50  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
    14:41:44.0455 0x0d50  NetMsmqActivator - ok
    14:41:44.0486 0x0d50  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
    14:41:44.0502 0x0d50  NetPipeActivator - ok
    14:41:44.0611 0x0d50  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
    14:41:44.0751 0x0d50  netprofm - ok
    14:41:44.0860 0x0d50  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
    14:41:44.0892 0x0d50  NetTcpActivator - ok
    14:41:44.0892 0x0d50  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
    14:41:44.0923 0x0d50  NetTcpPortSharing - ok
    14:41:45.0626 0x0d50  [ 64428DFDAF6E88366CB51F45A79C5F69, 31187D38C1AB52120A3CB7AC3CE47ED9682AC37B0F06B9A9610C0065DD4E7B13 ] netw5v64        C:\Windows\system32\DRIVERS\netw5v64.sys
    14:41:45.0938 0x0d50  netw5v64 - ok
    14:41:46.0000 0x0d50  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
    14:41:46.0016 0x0d50  nfrd960 - ok
    14:41:46.0281 0x0d50  [ 4774AD83C650001B337B92E5E5DA337B, 138ECC7F556D8A12AE58B78B68F6515BE4C00F9F062596B48B6CA6C010F13035 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
    14:41:46.0297 0x0d50  NisDrv - ok
    14:41:46.0328 0x0d50  [ 96B7D15161A778B359E707796CCEA646, 9E4A25D9848FAECC517474EAD548E7975CBE3F41AAA964E5245E78F2A723925E ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
    14:41:46.0359 0x0d50  NisSrv - ok
    14:41:46.0593 0x0d50  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
    14:41:46.0640 0x0d50  NlaSvc - ok
    14:41:46.0687 0x0d50  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
    14:41:46.0733 0x0d50  Npfs - ok
    14:41:46.0780 0x0d50  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
    14:41:46.0858 0x0d50  nsi - ok
    14:41:46.0874 0x0d50  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
    14:41:46.0952 0x0d50  nsiproxy - ok
    14:41:47.0218 0x0d50  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
    14:41:47.0343 0x0d50  Ntfs - ok
    14:41:47.0390 0x0d50  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
    14:41:47.0452 0x0d50  Null - ok
    14:41:47.0514 0x0d50  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
    14:41:47.0546 0x0d50  nvraid - ok
    14:41:47.0577 0x0d50  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
    14:41:47.0592 0x0d50  nvstor - ok
    14:41:47.0608 0x0d50  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
    14:41:47.0639 0x0d50  nv_agp - ok
    14:41:47.0686 0x0d50  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
    14:41:47.0733 0x0d50  ohci1394 - ok
    14:41:47.0826 0x0d50  [ 7A56CF3E3F12E8AF599963B16F50FB6A, 882C82BAE96D263138D4C0D6C425458B770B7B9C8E9C1D28AC918BF6BE94A5C2 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
    14:41:47.0842 0x0d50  ose - ok
    14:41:47.0904 0x0d50  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
    14:41:47.0951 0x0d50  p2pimsvc - ok
    14:41:47.0998 0x0d50  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
    14:41:48.0029 0x0d50  p2psvc - ok
    14:41:48.0076 0x0d50  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
    14:41:48.0092 0x0d50  Parport - ok
    14:41:48.0154 0x0d50  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
    14:41:48.0170 0x0d50  partmgr - ok
    14:41:48.0250 0x0d50  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc          C:\Windows\System32\pcasvc.dll
    14:41:48.0265 0x0d50  PcaSvc - ok
    14:41:48.0312 0x0d50  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
    14:41:48.0328 0x0d50  pci - ok
    14:41:48.0374 0x0d50  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
    14:41:48.0390 0x0d50  pciide - ok
    14:41:48.0671 0x0d50  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
    14:41:48.0936 0x0d50  pcmcia - ok
    14:41:48.0983 0x0d50  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
    14:41:48.0998 0x0d50  pcw - ok
    14:41:49.0265 0x0d50  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
    14:41:49.0296 0x0d50  PEAUTH - ok
    14:41:50.0060 0x0d50  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
    14:41:50.0091 0x0d50  PerfHost - ok
    14:41:50.0263 0x0d50  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
    14:41:50.0637 0x0d50  pla - ok
    14:41:50.0700 0x0d50  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
    14:41:50.0778 0x0d50  PlugPlay - ok
    14:41:50.0858 0x0d50  [ 2B85237F904C5BDF7AD386F0EDE19BD3, 19492AEF03206F3875D875274AE9780075EA85968D586A296B4ED01E0455062B ] PMEM            C:\Windows\SysWOW64\drivers\pmemnt.sys
    14:41:50.0889 0x0d50  PMEM - detected UnsignedFile.Multi.Generic ( 1 )
    14:41:53.0886 0x0d50  Detect skipped due to KSN trusted
    14:41:53.0886 0x0d50  PMEM - ok
    14:41:53.0949 0x0d50  [ 5261A2FD55183AC6993145AB6662CDDF, 996358C80674B1310B3C42BB45254AFC7FF90F12176FE76EF3C930D6D3C647FE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
    14:41:53.0949 0x0d50  Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic ( 1 )
    14:41:56.0929 0x0d50  Detect skipped due to KSN trusted
    14:41:56.0929 0x0d50  Pml Driver HPZ12 - ok
    14:41:56.0992 0x0d50  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
    14:41:57.0007 0x0d50  PNRPAutoReg - ok
    14:41:57.0101 0x0d50  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
    14:41:57.0132 0x0d50  PNRPsvc - ok
    14:41:57.0195 0x0d50  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
    14:41:57.0289 0x0d50  PolicyAgent - ok
    14:41:57.0367 0x0d50  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
    14:41:57.0445 0x0d50  Power - ok
    14:41:57.0507 0x0d50  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
    14:41:57.0570 0x0d50  PptpMiniport - ok
    14:41:57.0617 0x0d50  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
    14:41:57.0632 0x0d50  Processor - ok
    14:41:57.0695 0x0d50  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
    14:41:57.0726 0x0d50  ProfSvc - ok
    14:41:57.0773 0x0d50  [ 17A6A9AAD04CCC6EE53290585BFC43AF, E4901D86C6470D21ABA0F6D9615A613E5C74A3FEF931E497F51B6AFA5715332B ] ProtectedStorage C:\Windows\system32\lsass.exe
    14:41:57.0788 0x0d50  ProtectedStorage - ok
    14:41:57.0929 0x0d50  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
    14:41:58.0022 0x0d50  Psched - ok
    14:41:58.0116 0x0d50  [ EA735BF6DF13A857A83C99BF27A422AD, 026A57155FB9E01CFAFD8613980CDF0F3D744ABBBC66EFDC6C20B89980FB45CF ] PST Service     C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
    14:41:58.0147 0x0d50  PST Service - detected UnsignedFile.Multi.Generic ( 1 )
    14:42:00.0987 0x0d50  Detect skipped due to KSN trusted
    14:42:00.0987 0x0d50  PST Service - ok
    14:42:01.0128 0x0d50  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
    14:42:01.0269 0x0d50  ql2300 - ok
    14:42:01.0316 0x0d50  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
    14:42:01.0331 0x0d50  ql40xx - ok
    14:42:01.0519 0x0d50  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
    14:42:02.0127 0x0d50  QWAVE - ok
    14:42:02.0236 0x0d50  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
    14:42:02.0283 0x0d50  QWAVEdrv - ok
    14:42:02.0299 0x0d50  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
    14:42:02.0377 0x0d50  RasAcd - ok
    14:42:02.0564 0x0d50  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
    14:42:02.0626 0x0d50  RasAgileVpn - ok
    14:42:02.0720 0x0d50  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
    14:42:02.0798 0x0d50  RasAuto - ok
    14:42:02.0923 0x0d50  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
    14:42:03.0063 0x0d50  Rasl2tp - ok
    14:42:03.0579 0x0d50  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
    14:42:03.0672 0x0d50  RasMan - ok
    14:42:03.0875 0x0d50  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
    14:42:03.0969 0x0d50  RasPppoe - ok
    14:42:04.0047 0x0d50  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
    14:42:04.0094 0x0d50  RasSstp - ok
    14:42:04.0172 0x0d50  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
    14:42:04.0250 0x0d50  rdbss - ok
    14:42:04.0328 0x0d50  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
    14:42:04.0390 0x0d50  rdpbus - ok
    14:42:04.0515 0x0d50  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
    14:42:04.0564 0x0d50  RDPCDD - ok
    14:42:04.0628 0x0d50  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
    14:42:04.0722 0x0d50  RDPENCDD - ok
    14:42:04.0737 0x0d50  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
    14:42:04.0862 0x0d50  RDPREFMP - ok
    14:42:05.0236 0x0d50  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
    14:42:05.0331 0x0d50  RdpVideoMiniport - ok
    14:42:05.0440 0x0d50  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
    14:42:05.0503 0x0d50  RDPWD - ok
    14:42:05.0581 0x0d50  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
    14:42:05.0612 0x0d50  rdyboost - ok
    14:42:05.0674 0x0d50  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
    14:42:05.0721 0x0d50  RemoteAccess - ok
    14:42:05.0768 0x0d50  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
    14:42:05.0861 0x0d50  RemoteRegistry - ok
    14:42:05.0986 0x0d50  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
    14:42:06.0017 0x0d50  RFCOMM - ok
    14:42:06.0111 0x0d50  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
    14:42:06.0205 0x0d50  RpcEptMapper - ok
    14:42:06.0236 0x0d50  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
    14:42:06.0267 0x0d50  RpcLocator - ok
    14:42:06.0329 0x0d50  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
    14:42:06.0392 0x0d50  RpcSs - ok
    14:42:06.0485 0x0d50  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
    14:42:06.0579 0x0d50  rspndr - ok
    14:42:06.0641 0x0d50  [ 483DF0B58CA532E5240E59DC41F30AA2, 3A5AC91E5B57B671072A40F38DA1F804ECDE30FB4D9042FB3FE7B7CA10C0D0BC ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
    14:42:06.0782 0x0d50  RSUSBSTOR - ok
    14:42:06.0907 0x0d50  [ 20A466B9EA2BD828C0EC723F99B8CFE7, E05AD3C273EC1D3EB2257E565775AB2FE5C797777FCF90FDB714979F8D78C514 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
    14:42:06.0938 0x0d50  RTL8167 - ok
    14:42:07.0187 0x0d50  [ 4EA7E5DF0CB237156176FA0349E6E87F, 542C5291369009FD9B52B5939E3B55E4CC37056E03815986CA1C1EFCFB52F5D6 ] RtVOsdService   C:\Program Files\Realtek\RtVOsd\RtVOsdService.exe
    14:42:07.0266 0x0d50  RtVOsdService - detected UnsignedFile.Multi.Generic ( 1 )
    14:42:17.0272 0x0d50  RtVOsdService ( UnsignedFile.Multi.Generic ) - warning
    14:42:21.0366 0x0d50  [ 17A6A9AAD04CCC6EE53290585BFC43AF, E4901D86C6470D21ABA0F6D9615A613E5C74A3FEF931E497F51B6AFA5715332B ] SamSs           C:\Windows\system32\lsass.exe
    14:42:21.0397 0x0d50  SamSs - ok
    14:42:22.0146 0x0d50  [ 73031850BC68F3379096C032006A416B, 78657D0B476C817DE829CB3FC89BC1B1F5645532A2082546B594E380AB7F6983 ] Samsung Link Service C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
    14:42:22.0162 0x0d50  Samsung Link Service - ok
    14:42:22.0271 0x0d50  [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
    14:42:22.0287 0x0d50  SASDIFSV - ok
    14:42:22.0333 0x0d50  [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
    14:42:22.0349 0x0d50  SASKUTIL - ok
    14:42:22.0396 0x0d50  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
    14:42:22.0474 0x0d50  sbp2port - ok
    14:42:22.0521 0x0d50  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
    14:42:22.0614 0x0d50  SCardSvr - ok
    14:42:22.0661 0x0d50  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
    14:42:22.0739 0x0d50  scfilter - ok
    14:42:22.0817 0x0d50  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
    14:42:22.0895 0x0d50  Schedule - ok
    14:42:22.0942 0x0d50  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
    14:42:22.0989 0x0d50  SCPolicySvc - ok
    14:42:23.0067 0x0d50  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus           C:\Windows\system32\drivers\sdbus.sys
    14:42:23.0129 0x0d50  sdbus - ok
    14:42:23.0176 0x0d50  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
    14:42:23.0207 0x0d50  SDRSVC - ok
    14:42:23.0707 0x0d50  [ D358E077A0A05D9B12DA22D137EE8464, 7B6493B199DEF411596B1A6F479F57838202B102C3324333B620E212E0AE9053 ] SeaPort         C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    14:42:23.0723 0x0d50  SeaPort - ok
    14:42:23.0785 0x0d50  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
    14:42:23.0848 0x0d50  secdrv - ok
    14:42:23.0910 0x0d50  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
    14:42:23.0957 0x0d50  seclogon - ok
    14:42:23.0988 0x0d50  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
    14:42:24.0082 0x0d50  SENS - ok
    14:42:24.0191 0x0d50  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
    14:42:24.0487 0x0d50  SensrSvc - ok
    14:42:24.0534 0x0d50  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
    14:42:24.0659 0x0d50  Serenum - ok
    14:42:24.0674 0x0d50  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
    14:42:24.0721 0x0d50  Serial - ok
    14:42:24.0768 0x0d50  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
    14:42:24.0862 0x0d50  sermouse - ok
    14:42:24.0940 0x0d50  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
    14:42:25.0064 0x0d50  SessionEnv - ok
    14:42:25.0096 0x0d50  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
    14:42:25.0111 0x0d50  sffdisk - ok
    14:42:25.0127 0x0d50  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
    14:42:25.0174 0x0d50  sffp_mmc - ok
    14:42:25.0220 0x0d50  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
    14:42:25.0283 0x0d50  sffp_sd - ok
    14:42:25.0314 0x0d50  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
    14:42:25.0345 0x0d50  sfloppy - ok
    14:42:25.0393 0x0d50  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
    14:42:25.0471 0x0d50  SharedAccess - ok
    14:42:25.0502 0x0d50  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
    14:42:25.0565 0x0d50  ShellHWDetection - ok
    14:42:25.0736 0x0d50  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
    14:42:25.0752 0x0d50  SiSRaid2 - ok
    14:42:25.0845 0x0d50  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
    14:42:25.0861 0x0d50  SiSRaid4 - ok
    14:42:25.0986 0x0d50  [ F6EF225A23D336CA30001E5007644C24, B0A4B1256C1074F1B4F73E3BBA16FD4683D6EEA583DEEF8E11EFD29BA7541F2A ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
    14:42:26.0017 0x0d50  SkypeUpdate - ok
    14:42:26.0157 0x0d50  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
    14:42:26.0220 0x0d50  Smb - ok
    14:42:26.0282 0x0d50  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
    14:42:26.0423 0x0d50  SNMPTRAP - ok
    14:42:26.0438 0x0d50  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
    14:42:26.0454 0x0d50  spldr - ok
    14:42:26.0844 0x0d50  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
    14:42:26.0922 0x0d50  Spooler - ok
    14:42:28.0062 0x0d50  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
    14:42:28.0218 0x0d50  sppsvc - ok
    14:42:28.0264 0x0d50  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
    14:42:28.0467 0x0d50  sppuinotify - ok
    14:42:28.0545 0x0d50  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
    14:42:28.0748 0x0d50  srv - ok
    14:42:28.0779 0x0d50  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
    14:42:28.0842 0x0d50  srv2 - ok
    14:42:28.0888 0x0d50  [ 0C4540311E11664B245A263E1154CEF8, 63376322BFFAFF2F166AF3FDD3F1A346C21FAE21F406F659F8630779D1D6525D ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL6.SYS
    14:42:28.0935 0x0d50  SrvHsfHDA - ok
    14:42:29.0247 0x0d50  [ 02071D207A9858FBE3A48CBFD59C4A04, FEA4DEBAEC3465E0C7C1E8B721805922F6BBCB96A60A193B11688F4252F4B89E ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV6.SYS
    14:42:29.0341 0x0d50  SrvHsfV92 - ok
    14:42:29.0560 0x0d50  [ 18E40C245DBFAF36FD0134A7EF2DF396, 0138A68958112101A5D3BD94114F320CE80B0C9A93E009AC78DE7415FCCC7DE7 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
    14:42:29.0669 0x0d50  SrvHsfWinac - ok
    14:42:29.0701 0x0d50  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
    14:42:29.0732 0x0d50  srvnet - ok
    14:42:29.0763 0x0d50  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
    14:42:29.0825 0x0d50  SSDPSRV - ok
    14:42:29.0888 0x0d50  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
    14:42:30.0028 0x0d50  SstpSvc - ok
    14:42:30.0059 0x0d50  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
    14:42:30.0075 0x0d50  stexstor - ok
    14:42:30.0106 0x0d50  [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
    14:42:30.0169 0x0d50  StillCam - ok
    14:42:30.0215 0x0d50  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
    14:42:30.0278 0x0d50  stisvc - ok
    14:42:30.0325 0x0d50  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
    14:42:30.0340 0x0d50  swenum - ok
    14:42:30.0403 0x0d50  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
    14:42:30.0481 0x0d50  swprv - ok
    14:42:30.0574 0x0d50  [ AC3CC98B1BDB6540021D3FFB105AC2B9, 671146CC16139AECE0BCCC44983807E045A930E262F64461D0D882A0A0B77E4F ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
    14:42:30.0621 0x0d50  SynTP - ok
    14:42:30.0855 0x0d50  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
    14:42:30.0980 0x0d50  SysMain - ok
    14:42:31.0027 0x0d50  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
    14:42:31.0058 0x0d50  TabletInputService - ok
    14:42:31.0089 0x0d50  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
    14:42:31.0167 0x0d50  TapiSrv - ok
    14:42:31.0229 0x0d50  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
    14:42:31.0323 0x0d50  TBS - ok
    14:42:31.0558 0x0d50  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
    14:42:31.0683 0x0d50  Tcpip - ok
    14:42:31.0964 0x0d50  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
    14:42:32.0042 0x0d50  TCPIP6 - ok
    14:42:32.0182 0x0d50  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
    14:42:32.0229 0x0d50  tcpipreg - ok
    14:42:32.0276 0x0d50  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
    14:42:32.0400 0x0d50  TDPIPE - ok
    14:42:32.0416 0x0d50  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
    14:42:32.0463 0x0d50  TDTCP - ok
    14:42:32.0494 0x0d50  [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
    14:42:32.0556 0x0d50  tdx - ok
    14:42:32.0572 0x0d50  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
    14:42:32.0588 0x0d50  TermDD - ok
    14:42:32.0759 0x0d50  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
    14:42:32.0822 0x0d50  TermService - ok
    14:42:32.0900 0x0d50  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
    14:42:32.0915 0x0d50  Themes - ok
    14:42:32.0978 0x0d50  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
    14:42:33.0024 0x0d50  THREADORDER - ok
    14:42:33.0227 0x0d50  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
    14:42:33.0321 0x0d50  TrkWks - ok
    14:42:33.0383 0x0d50  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
    14:42:33.0447 0x0d50  TrustedInstaller - ok
    14:42:33.0509 0x0d50  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
    14:42:33.0525 0x0d50  tssecsrv - ok
    14:42:33.0649 0x0d50  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
    14:42:33.0696 0x0d50  TsUsbFlt - ok
    14:42:33.0805 0x0d50  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
    14:42:33.0868 0x0d50  tunnel - ok
    14:42:33.0977 0x0d50  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
    14:42:33.0993 0x0d50  uagp35 - ok
    14:42:34.0195 0x0d50  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
    14:42:34.0289 0x0d50  udfs - ok
    14:42:34.0383 0x0d50  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
    14:42:34.0398 0x0d50  UI0Detect - ok
    14:42:34.0445 0x0d50  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
    14:42:34.0461 0x0d50  uliagpkx - ok
    14:42:34.0539 0x0d50  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
    14:42:34.0617 0x0d50  umbus - ok
    14:42:34.0663 0x0d50  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
    14:42:34.0695 0x0d50  UmPass - ok
    14:42:35.0151 0x0d50  [ 7466809E6DA561D60C2F1CE8EDE3C73F, A3185049282A51B17C3DA839AF7E90F1CD395B2FB5587514EB2D65CB22854E2C ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
    14:42:35.0291 0x0d50  UNS - ok
    14:42:35.0463 0x0d50  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
    14:42:35.0542 0x0d50  upnphost - ok
    14:42:35.0604 0x0d50  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
    14:42:35.0620 0x0d50  usbccgp - ok
    14:42:35.0667 0x0d50  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
    14:42:35.0682 0x0d50  usbcir - ok
    14:42:35.0745 0x0d50  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
    14:42:35.0776 0x0d50  usbehci - ok
    14:42:35.0823 0x0d50  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
    14:42:35.0854 0x0d50  usbhub - ok
    14:42:35.0916 0x0d50  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
    14:42:36.0057 0x0d50  usbohci - ok
    14:42:36.0088 0x0d50  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
    14:42:36.0150 0x0d50  usbprint - ok
    14:42:36.0197 0x0d50  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
    14:42:36.0291 0x0d50  usbscan - ok
    14:42:36.0322 0x0d50  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
    14:42:36.0369 0x0d50  USBSTOR - ok
    14:42:36.0400 0x0d50  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
    14:42:36.0431 0x0d50  usbuhci - ok
    14:42:36.0478 0x0d50  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
    14:42:36.0509 0x0d50  usbvideo - ok
    14:42:36.0556 0x0d50  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
    14:42:36.0634 0x0d50  UxSms - ok
    14:42:36.0650 0x0d50  [ 17A6A9AAD04CCC6EE53290585BFC43AF, E4901D86C6470D21ABA0F6D9615A613E5C74A3FEF931E497F51B6AFA5715332B ] VaultSvc        C:\Windows\system32\lsass.exe
    14:42:36.0681 0x0d50  VaultSvc - ok
    14:42:36.0728 0x0d50  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
    14:42:36.0743 0x0d50  vdrvroot - ok
    14:42:36.0821 0x0d50  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
    14:42:36.0915 0x0d50  vds - ok
    14:42:37.0086 0x0d50  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
    14:42:37.0118 0x0d50  vga - ok
    14:42:37.0180 0x0d50  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
    14:42:37.0274 0x0d50  VgaSave - ok
    14:42:37.0430 0x0d50  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
    14:42:37.0524 0x0d50  vhdmp - ok
    14:42:37.0571 0x0d50  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
    14:42:37.0587 0x0d50  viaide - ok
    14:42:37.0602 0x0d50  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
    14:42:37.0633 0x0d50  volmgr - ok
    14:42:37.0680 0x0d50  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
    14:42:37.0711 0x0d50  volmgrx - ok
    14:42:37.0774 0x0d50  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
    14:42:37.0805 0x0d50  volsnap - ok
    14:42:37.0852 0x0d50  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
    14:42:37.0867 0x0d50  vsmraid - ok
    14:42:38.0023 0x0d50  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
    14:42:38.0179 0x0d50  VSS - ok
    14:42:38.0211 0x0d50  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
    14:42:38.0273 0x0d50  vwifibus - ok
    14:42:38.0304 0x0d50  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
    14:42:38.0335 0x0d50  vwififlt - ok
    14:42:38.0367 0x0d50  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
    14:42:38.0413 0x0d50  vwifimp - ok
    14:42:38.0507 0x0d50  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
    14:42:38.0585 0x0d50  W32Time - ok
    14:42:38.0632 0x0d50  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
    14:42:38.0663 0x0d50  WacomPen - ok
    14:42:38.0803 0x0d50  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
    14:42:38.0881 0x0d50  WANARP - ok
    14:42:38.0913 0x0d50  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
    14:42:38.0959 0x0d50  Wanarpv6 - ok
    14:42:39.0772 0x0d50  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
    14:42:39.0881 0x0d50  WatAdminSvc - ok
    14:42:40.0115 0x0d50  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
    14:42:40.0240 0x0d50  wbengine - ok
    14:42:40.0286 0x0d50  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
    14:42:40.0318 0x0d50  WbioSrvc - ok
    14:42:40.0380 0x0d50  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
    14:42:40.0442 0x0d50  wcncsvc - ok
    14:42:40.0489 0x0d50  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
    14:42:40.0536 0x0d50  WcsPlugInService - ok
    14:42:40.0567 0x0d50  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
    14:42:40.0583 0x0d50  Wd - ok
    14:42:40.0692 0x0d50  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
    14:42:40.0770 0x0d50  Wdf01000 - ok
    14:42:40.0801 0x0d50  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
    14:42:40.0864 0x0d50  WdiServiceHost - ok
    14:42:40.0864 0x0d50  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
    14:42:40.0895 0x0d50  WdiSystemHost - ok
    14:42:40.0988 0x0d50  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
    14:42:41.0020 0x0d50  WebClient - ok
    14:42:41.0082 0x0d50  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
    14:42:41.0160 0x0d50  Wecsvc - ok
    14:42:41.0176 0x0d50  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
    14:42:41.0254 0x0d50  wercplsupport - ok
    14:42:41.0300 0x0d50  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
    14:42:41.0378 0x0d50  WerSvc - ok
    14:42:41.0441 0x0d50  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
    14:42:41.0503 0x0d50  WfpLwf - ok
    14:42:41.0519 0x0d50  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
    14:42:41.0550 0x0d50  WIMMount - ok
    14:42:41.0581 0x0d50  WinDefend - ok
    14:42:41.0597 0x0d50  WinHttpAutoProxySvc - ok
    14:42:41.0893 0x0d50  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
    14:42:41.0956 0x0d50  Winmgmt - ok
    14:42:42.0408 0x0d50  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
    14:42:42.0611 0x0d50  WinRM - ok
    14:42:42.0689 0x0d50  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\drivers\WinUsb.sys
    14:42:42.0720 0x0d50  WinUsb - ok
    14:42:42.0892 0x0d50  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
    14:42:42.0938 0x0d50  Wlansvc - ok
    14:42:43.0063 0x0d50  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
    14:42:43.0079 0x0d50  wlcrasvc - ok
    14:42:43.0563 0x0d50  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    14:42:43.0641 0x0d50  wlidsvc - ok
    14:42:43.0688 0x0d50  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
    14:42:43.0735 0x0d50  WmiAcpi - ok
    14:42:43.0844 0x0d50  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
    14:42:43.0969 0x0d50  wmiApSrv - ok
    14:42:44.0000 0x0d50  WMPNetworkSvc - ok
    14:42:44.0031 0x0d50  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
    14:42:44.0078 0x0d50  WPCSvc - ok
    14:42:44.0109 0x0d50  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
    14:42:44.0141 0x0d50  WPDBusEnum - ok
    14:42:44.0187 0x0d50  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
    14:42:44.0267 0x0d50  ws2ifsl - ok
    14:42:44.0314 0x0d50  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
    14:42:44.0361 0x0d50  wscsvc - ok
    14:42:44.0408 0x0d50  [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
    14:42:44.0611 0x0d50  WSDPrintDevice - ok
    14:42:44.0657 0x0d50  [ 4A2A5C50DD1A63577D3ACA94269FBC7F, F75C1906D431CF871AD954218DF32A0F206E45FF49332DEF9F13C0A36A407047 ] WSDScan         C:\Windows\system32\DRIVERS\WSDScan.sys
    14:42:44.0704 0x0d50  WSDScan - ok
    14:42:44.0704 0x0d50  WSearch - ok
    14:42:45.0281 0x0d50  [ 0814A74C853F50B354F08F83DDA9F7FB, 0A63BAA8DE451B8C2C71FEF961718E769B9BAC305C76D24048C664CB27D0DF28 ] wuauserv        C:\Windows\system32\wuaueng.dll
    14:42:45.0375 0x0d50  wuauserv - ok
    14:42:45.0406 0x0d50  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
    14:42:45.0453 0x0d50  WudfPf - ok
    14:42:45.0500 0x0d50  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\drivers\WUDFRd.sys
    14:42:45.0532 0x0d50  WUDFRd - ok
    14:42:45.0563 0x0d50  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
    14:42:45.0594 0x0d50  wudfsvc - ok
    14:42:45.0657 0x0d50  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
    14:42:45.0719 0x0d50  WwanSvc - ok
    14:42:45.0782 0x0d50  [ B3EEACF62445E24FBB2CD4B0FB4DB026, 2E5B6220094C47754233EDA59E6514CE47AC6C6879F367C72B2C02330EABE8E0 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
    14:42:45.0844 0x0d50  yukonw7 - ok
    14:42:45.0906 0x0d50  ================ Scan global ===============================
    14:42:45.0953 0x0d50  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
    14:42:46.0016 0x0d50  [ 2313AF8D5A9CEB4A55400A01DD311A95, A5779FE967EA2703E86BEDC32CD736617AF278C72048228F038DFC628E1E0AA2 ] C:\Windows\system32\winsrv.dll
    14:42:46.0031 0x0d50  [ 2313AF8D5A9CEB4A55400A01DD311A95, A5779FE967EA2703E86BEDC32CD736617AF278C72048228F038DFC628E1E0AA2 ] C:\Windows\system32\winsrv.dll
    14:42:46.0094 0x0d50  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
    14:42:46.0125 0x0d50  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
    14:42:46.0140 0x0d50  [ Global ] - ok
    14:42:46.0140 0x0d50  ================ Scan MBR ==================================
    14:42:46.0172 0x0d50  [ EEF13E2BDA2BA09DD680ED9A6E19C5C2 ] \Device\Harddisk0\DR0
    14:42:48.0357 0x0d50  \Device\Harddisk0\DR0 - ok
    14:42:48.0357 0x0d50  ================ Scan VBR ==================================
    14:42:48.0388 0x0d50  [ 352883E946E4673DEBCAFD1AA13E00BE ] \Device\Harddisk0\DR0\Partition1
    14:42:48.0403 0x0d50  \Device\Harddisk0\DR0\Partition1 - ok
    14:42:48.0497 0x0d50  [ 8E7F6D3CCC700D8D1754163378B4EE2B ] \Device\Harddisk0\DR0\Partition2
    14:42:48.0497 0x0d50  \Device\Harddisk0\DR0\Partition2 - ok
    14:42:49.0654 0x0d50  [ C1984C14AA60451301E57BF598D9542A ] \Device\Harddisk0\DR0\Partition3
    14:42:49.0654 0x0d50  \Device\Harddisk0\DR0\Partition3 - ok
    14:42:49.0904 0x0d50  [ E7E67669A60F9B2A9885B91B34486CC7 ] \Device\Harddisk0\DR0\Partition4
    14:42:49.0904 0x0d50  \Device\Harddisk0\DR0\Partition4 - ok
    14:42:49.0904 0x0d50  ================ Scan active images ========================
    14:42:49.0904 0x0d50  [ 3E588B60EC061686BA05D33574A344C6, 19D2D863F95CCC4493A2328B6BEB04248B6A80F957532E58C1D1D868C19FDCCB ] C:\Windows\System32\drivers\crashdmp.sys
    14:42:49.0920 0x0d50  C:\Windows\System32\drivers\crashdmp.sys - ok
    14:42:49.0920 0x0d50  [ 1384872112E8E7FD5786ECEB8BDDF4C9, DC7844691740805A94F2901F8CB56F1591AF4F0F9C6D92D6B8595F89E6FA5F02 ] C:\Windows\System32\drivers\iaStor.sys
    14:42:49.0920 0x0d50  C:\Windows\System32\drivers\iaStor.sys - ok
    14:42:49.0920 0x0d50  [ 814DB88F2641691575A455CF25354098, 79C50F0CD72612733217A0316BEFEA0B6D819C3159D9452EAB89AC26A18A0F89 ] C:\Windows\System32\drivers\dumpfve.sys
    14:42:49.0920 0x0d50  C:\Windows\System32\drivers\dumpfve.sys - ok
    14:42:49.0920 0x0d50  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] C:\Windows\System32\drivers\cdrom.sys
    14:42:49.0920 0x0d50  C:\Windows\System32\drivers\cdrom.sys - ok
    14:42:49.0935 0x0d50  [ 54D70409DE6932E9EFA117779611E7A9, 4FF4328CEB222160664633D361D06EAEF4B27E2A5AE515CF7D425650A6A23136 ] C:\Windows\System32\drivers\mbamchameleon.sys
    14:42:49.0935 0x0d50  C:\Windows\System32\drivers\mbamchameleon.sys - ok
    14:42:49.0935 0x0d50  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] C:\Windows\System32\drivers\null.sys
    14:42:49.0935 0x0d50  C:\Windows\System32\drivers\null.sys - ok
    14:42:49.0935 0x0d50  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] C:\Windows\System32\drivers\beep.sys
    14:42:49.0935 0x0d50  C:\Windows\System32\drivers\beep.sys - ok
    14:42:49.0935 0x0d50  [ E7353D59C9842BC7299FAEB7E7E09340, C37ED1025E07BAC2F535DCFED6C6C509515D95722EADE5AF94F1FC5D8B1DC783 ] C:\Windows\System32\drivers\videoprt.sys
    14:42:49.0935 0x0d50  C:\Windows\System32\drivers\videoprt.sys - ok
    14:42:49.0951 0x0d50  [ FC438D1430B28618E2D0C7C332A710AD, 873957B202E454E2C8F625E5799F278CAC16EC5EEAEE2C33E2FE5D1FF0408CB2 ] C:\Windows\System32\drivers\watchdog.sys
    14:42:49.0951 0x0d50  C:\Windows\System32\drivers\watchdog.sys - ok
    14:42:49.0951 0x0d50  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] C:\Windows\System32\drivers\vga.sys
    14:42:49.0951 0x0d50  C:\Windows\System32\drivers\vga.sys - ok
    14:42:49.0951 0x0d50  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] C:\Windows\System32\drivers\RDPCDD.sys
    14:42:49.0951 0x0d50  C:\Windows\System32\drivers\RDPCDD.sys - ok
    14:42:49.0951 0x0d50  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] C:\Windows\System32\drivers\RDPENCDD.sys
    14:42:49.0951 0x0d50  C:\Windows\System32\drivers\RDPENCDD.sys - ok
    14:42:49.0966 0x0d50  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] C:\Windows\System32\drivers\RDPREFMP.sys
    14:42:49.0966 0x0d50  C:\Windows\System32\drivers\RDPREFMP.sys - ok
    14:42:49.0966 0x0d50  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] C:\Windows\System32\drivers\msfs.sys
    14:42:49.0966 0x0d50  C:\Windows\System32\drivers\msfs.sys - ok
    14:42:49.0966 0x0d50  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] C:\Windows\System32\drivers\npfs.sys
    14:42:49.0966 0x0d50  C:\Windows\System32\drivers\npfs.sys - ok
    14:42:49.0966 0x0d50  [ 6F020A220388ECA0AB6062DC27BD16B6, 48655230E482DEB7B4B50EF05818EBB29CA61E780AEFCD9D31B02DE4DF9D9540 ] C:\Windows\System32\drivers\tdi.sys
    14:42:49.0966 0x0d50  C:\Windows\System32\drivers\tdi.sys - ok
    14:42:49.0982 0x0d50  [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] C:\Windows\System32\drivers\tdx.sys
    14:42:49.0982 0x0d50  C:\Windows\System32\drivers\tdx.sys - ok
    14:42:49.0982 0x0d50  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] C:\Windows\System32\drivers\netbt.sys
    14:42:49.0982 0x0d50  C:\Windows\System32\drivers\netbt.sys - ok
    14:42:49.0982 0x0d50  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] C:\Windows\System32\drivers\afd.sys
    14:42:49.0982 0x0d50  C:\Windows\System32\drivers\afd.sys - ok
    14:42:49.0998 0x0d50  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] C:\Windows\System32\drivers\wfplwf.sys
    14:42:49.0998 0x0d50  C:\Windows\System32\drivers\wfplwf.sys - ok
    14:42:49.0998 0x0d50  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] C:\Windows\System32\drivers\pacer.sys
    14:42:49.0998 0x0d50  C:\Windows\System32\drivers\pacer.sys - ok
    14:42:49.0998 0x0d50  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] C:\Windows\System32\drivers\vwififlt.sys
    14:42:49.0998 0x0d50  C:\Windows\System32\drivers\vwififlt.sys - ok
    14:42:49.0998 0x0d50  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] C:\Windows\System32\drivers\netbios.sys
    14:42:49.0998 0x0d50  C:\Windows\System32\drivers\netbios.sys - ok
    14:42:50.0013 0x0d50  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] C:\Windows\System32\drivers\wanarp.sys
    14:42:50.0013 0x0d50  C:\Windows\System32\drivers\wanarp.sys - ok
    14:42:50.0013 0x0d50  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] C:\Windows\System32\drivers\termdd.sys
    14:42:50.0013 0x0d50  C:\Windows\System32\drivers\termdd.sys - ok
    14:42:50.0013 0x0d50  [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] C:\Program Files\SUPERAntiSpyware\saskutil64.sys
    14:42:50.0013 0x0d50  C:\Program Files\SUPERAntiSpyware\saskutil64.sys - ok
    14:42:50.0013 0x0d50  [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys
    14:42:50.0013 0x0d50  C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys - ok
    14:42:50.0029 0x0d50  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] C:\Windows\System32\drivers\rdbss.sys
    14:42:50.0029 0x0d50  C:\Windows\System32\drivers\rdbss.sys - ok
    14:42:50.0029 0x0d50  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] C:\Windows\System32\drivers\nsiproxy.sys
    14:42:50.0029 0x0d50  C:\Windows\System32\drivers\nsiproxy.sys - ok
    14:42:50.0029 0x0d50  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] C:\Windows\System32\drivers\mssmbios.sys
    14:42:50.0029 0x0d50  C:\Windows\System32\drivers\mssmbios.sys - ok
    14:42:50.0029 0x0d50  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] C:\Windows\System32\drivers\discache.sys
    14:42:50.0029 0x0d50  C:\Windows\System32\drivers\discache.sys - ok
    14:42:50.0044 0x0d50  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] C:\Windows\System32\drivers\dfsc.sys
    14:42:50.0044 0x0d50  C:\Windows\System32\drivers\dfsc.sys - ok
    14:42:50.0044 0x0d50  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] C:\Windows\System32\drivers\blbdrive.sys
    14:42:50.0044 0x0d50  C:\Windows\System32\drivers\blbdrive.sys - ok
    14:42:50.0044 0x0d50  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] C:\Windows\System32\drivers\tunnel.sys
    14:42:50.0044 0x0d50  C:\Windows\System32\drivers\tunnel.sys - ok
    14:42:50.0060 0x0d50  [ 53042708C242959B3924242FBBE297B1, 310554913AEA3D0FE0026BC7FDAE74F69AB01A20DCAD51BC966D7E74633ACAE3 ] C:\Windows\System32\ntdll.dll
    14:42:50.0060 0x0d50  C:\Windows\System32\ntdll.dll - ok
    14:42:50.0060 0x0d50  [ 9BBEA639884C0338DD78654277BD188A, 976F2D52473B958160FB6FF60C592BE8DFD5BEE45B958B1642F285C0C303291A ] C:\Windows\System32\smss.exe
    14:42:50.0060 0x0d50  C:\Windows\System32\smss.exe - ok
    14:42:50.0060 0x0d50  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93, 7BC847CE6C2D29C334F0D1600BBBDE3933FF45F6BEE5186F442E6270A3F9EC4E ] C:\Windows\System32\autochk.exe
    14:42:50.0060 0x0d50  C:\Windows\System32\autochk.exe - ok
    14:42:50.0060 0x0d50  [ 1BE8D9CA4F2363B8E8015621878E0043, 695B5F88A6F6943156D033DAA86188F50308AD71FCF26CF0AEDF7E23F774FB56 ] C:\Windows\System32\drivers\igdkmd64.sys
    14:42:50.0060 0x0d50  C:\Windows\System32\drivers\igdkmd64.sys - ok
    14:42:50.0076 0x0d50  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] C:\Windows\System32\drivers\fastfat.sys
    14:42:50.0076 0x0d50  C:\Windows\System32\drivers\fastfat.sys - ok
    14:42:50.0076 0x0d50  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] C:\Windows\System32\drivers\dxgkrnl.sys
    14:42:50.0076 0x0d50  C:\Windows\System32\drivers\dxgkrnl.sys - ok
    14:42:50.0076 0x0d50  [ 1F04CFB79DD5FB7694468CE3FB3DCC31, A40C0BF6D1EC6C4281611A830EA7B22FEF523A3E197E5A8F59332D64E90376B6 ] C:\Windows\System32\drivers\dxgmms1.sys
    14:42:50.0076 0x0d50  C:\Windows\System32\drivers\dxgmms1.sys - ok
    14:42:50.0076 0x0d50  [ B6AC71AAA2B10848F57FC49D55A651AF, 4FAD833654E86F9FAF972AC8AF87FD4A9A765B26B96F096BBD63506B5D521A91 ] C:\Windows\System32\drivers\HECIx64.sys
    14:42:50.0076 0x0d50  C:\Windows\System32\drivers\HECIx64.sys - ok
    14:42:50.0091 0x0d50  [ 12FEB33791920678F8433701C822BCFD, 7D1AD944CF0532D5AF951ACCE064EA9288F068964603674854CD7658D2B96039 ] C:\Windows\System32\drivers\usbport.sys
    14:42:50.0091 0x0d50  C:\Windows\System32\drivers\usbport.sys - ok
    14:42:50.0091 0x0d50  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] C:\Windows\System32\drivers\usbehci.sys
    14:42:50.0091 0x0d50  C:\Windows\System32\drivers\usbehci.sys - ok
    14:42:50.0091 0x0d50  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] C:\Windows\System32\drivers\hdaudbus.sys
    14:42:50.0091 0x0d50  C:\Windows\System32\drivers\hdaudbus.sys - ok
    14:42:50.0107 0x0d50  [ 20A466B9EA2BD828C0EC723F99B8CFE7, E05AD3C273EC1D3EB2257E565775AB2FE5C797777FCF90FDB714979F8D78C514 ] C:\Windows\System32\drivers\Rt64win7.sys
    14:42:50.0107 0x0d50  C:\Windows\System32\drivers\Rt64win7.sys - ok
    14:42:50.0107 0x0d50  [ AA2C08CE85653B1A0D2E4AB407FA176C, 83DFD0C119B20AEDB07114C9D1CF9CE2DFA938D0F1070256B0591A9E2C3997FA ] C:\Windows\System32\imm32.dll
    14:42:50.0107 0x0d50  C:\Windows\System32\imm32.dll - ok
    14:42:50.0107 0x0d50  [ 6ABFC5736EC920C4436F32111F5CBCEE, 66285C5A6FD9FABE2FDCFA54F1B9A880FC954BA5B904E1F03039884819AF6EFE ] C:\Windows\System32\urlmon.dll
    14:42:50.0107 0x0d50  C:\Windows\System32\urlmon.dll - ok
    14:42:50.0107 0x0d50  [ 0E7A9264576B40638A3FBC804DE1FF76, D307179E6FA5D39E03175F37D297E4D0DA86CF0FC6EFA6CFCFAA0E8713489BC5 ] C:\Windows\System32\drivers\BCMWL664.SYS
    14:42:50.0107 0x0d50  C:\Windows\System32\drivers\BCMWL664.SYS - ok
    14:42:50.0122 0x0d50  [ 01F9FEB7F0C84EA1AC6A9B4D7C6B0435, F1B6177A8FDC97C397A6438B791C358BB1EA1A422A92817063338F906E243943 ] C:\Windows\System32\shell32.dll
    14:42:50.0122 0x0d50  C:\Windows\System32\shell32.dll - ok
    14:42:50.0122 0x0d50  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] C:\Windows\System32\drivers\vwifibus.sys
    14:42:50.0122 0x0d50  C:\Windows\System32\drivers\vwifibus.sys - ok
    14:42:50.0122 0x0d50  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] C:\Windows\System32\drivers\i8042prt.sys
    14:42:50.0122 0x0d50  C:\Windows\System32\drivers\i8042prt.sys - ok
    14:42:50.0122 0x0d50  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] C:\Windows\System32\drivers\kbdclass.sys
    14:42:50.0122 0x0d50  C:\Windows\System32\drivers\kbdclass.sys - ok
    14:42:50.0138 0x0d50  [ FFA06EF43987ED0DD42AD59B260C0C78, 260518D5E077E55E0F2099037DBEFA93016FD4D4655456DDB3147AF9CBE7BF6B ] C:\Windows\System32\drivers\usbd.sys
    14:42:50.0138 0x0d50  C:\Windows\System32\drivers\usbd.sys - ok
    14:42:50.0138 0x0d50  [ AC3CC98B1BDB6540021D3FFB105AC2B9, 671146CC16139AECE0BCCC44983807E045A930E262F64461D0D882A0A0B77E4F ] C:\Windows\System32\drivers\SynTP.sys
    14:42:50.0138 0x0d50  C:\Windows\System32\drivers\SynTP.sys - ok
    14:42:50.0138 0x0d50  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] C:\Windows\System32\drivers\mouclass.sys
    14:42:50.0138 0x0d50  C:\Windows\System32\drivers\mouclass.sys - ok
    14:42:50.0138 0x0d50  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] C:\Windows\System32\drivers\CmBatt.sys
    14:42:50.0138 0x0d50  C:\Windows\System32\drivers\CmBatt.sys - ok
    14:42:50.0154 0x0d50  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] C:\Windows\System32\drivers\wmiacpi.sys
    14:42:50.0154 0x0d50  C:\Windows\System32\drivers\wmiacpi.sys - ok
    14:42:50.0154 0x0d50  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] C:\Windows\System32\drivers\intelppm.sys
    14:42:50.0154 0x0d50  C:\Windows\System32\drivers\intelppm.sys - ok
    14:42:50.0154 0x0d50  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] C:\Windows\System32\drivers\CompositeBus.sys
    14:42:50.0154 0x0d50  C:\Windows\System32\drivers\CompositeBus.sys - ok
    14:42:50.0154 0x0d50  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] C:\Windows\System32\drivers\agilevpn.sys
    14:42:50.0154 0x0d50  C:\Windows\System32\drivers\agilevpn.sys - ok
    14:42:50.0169 0x0d50  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] C:\Windows\System32\drivers\rasl2tp.sys
    14:42:50.0169 0x0d50  C:\Windows\System32\drivers\rasl2tp.sys - ok
    14:42:50.0169 0x0d50  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] C:\Windows\System32\drivers\ndistapi.sys
    14:42:50.0169 0x0d50  C:\Windows\System32\drivers\ndistapi.sys - ok
    14:42:50.0169 0x0d50  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] C:\Windows\System32\drivers\ndiswan.sys
    14:42:50.0169 0x0d50  C:\Windows\System32\drivers\ndiswan.sys - ok
    14:42:50.0169 0x0d50  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] C:\Windows\System32\drivers\raspppoe.sys
    14:42:50.0169 0x0d50  C:\Windows\System32\drivers\raspppoe.sys - ok
    14:42:50.0185 0x0d50  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] C:\Windows\System32\drivers\raspptp.sys
    14:42:50.0185 0x0d50  C:\Windows\System32\drivers\raspptp.sys - ok
    14:42:50.0185 0x0d50  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] C:\Windows\System32\drivers\rassstp.sys
    14:42:50.0185 0x0d50  C:\Windows\System32\drivers\rassstp.sys - ok
    14:42:50.0185 0x0d50  [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] C:\Windows\System32\drivers\serscan.sys
    14:42:50.0185 0x0d50  C:\Windows\System32\drivers\serscan.sys - ok
    14:42:50.0200 0x0d50  [ 24FBF5CC5C04150073C315A7C83521EE, 581BD5F15B5E57B3BAA762E421FFD859FDA46DDB8515C2A7AAFF208D784E906C ] C:\Windows\System32\drivers\ks.sys
    14:42:50.0200 0x0d50  C:\Windows\System32\drivers\ks.sys - ok
    14:42:50.0200 0x0d50  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] C:\Windows\System32\drivers\ksthunk.sys
    14:42:50.0200 0x0d50  C:\Windows\System32\drivers\ksthunk.sys - ok
    14:42:50.0200 0x0d50  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] C:\Windows\System32\drivers\swenum.sys
    14:42:50.0200 0x0d50  C:\Windows\System32\drivers\swenum.sys - ok
    14:42:50.0200 0x0d50  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] C:\Windows\System32\drivers\umbus.sys
    14:42:50.0200 0x0d50  C:\Windows\System32\drivers\umbus.sys - ok
    14:42:50.0216 0x0d50  [ FE70103391A64039A921DBFFF9C7AB1B, F7D219D75037BC98F6C69143B00AB6000A31F8B5E211E0AF514F4F4B681522A0 ] C:\Windows\System32\user32.dll
    14:42:50.0216 0x0d50  C:\Windows\System32\user32.dll - ok
    14:42:50.0216 0x0d50  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] C:\Windows\System32\drivers\usbhub.sys
    14:42:50.0216 0x0d50  C:\Windows\System32\drivers\usbhub.sys - ok
    14:42:50.0216 0x0d50  [ EAF32CB8C1F810E4715B4DFBE785C7FF, DB6AD07FDED42433E669508AB73FAFF6DAFF04575D6F1D016FE3EB6ECEC4DD5D ] C:\Windows\System32\shlwapi.dll
    14:42:50.0216 0x0d50  C:\Windows\System32\shlwapi.dll - ok
    14:42:50.0216 0x0d50  [ D87E1E59C73C1F98D5DED5B3850C40F5, 536419BFF9F877D4314B5D0C045D9A6E729489C389863FADF07E382050BC84FD ] C:\Windows\System32\psapi.dll
    14:42:50.0216 0x0d50  C:\Windows\System32\psapi.dll - ok
    14:42:50.0232 0x0d50  [ 4E4FFB09D895AA000DD56D1404F69A7E, D999E04BB35780088480EAB322176570591A21E311D204BDCAB010A63B34D24C ] C:\Windows\System32\Wldap32.dll
    14:42:50.0232 0x0d50  C:\Windows\System32\Wldap32.dll - ok
    14:42:50.0232 0x0d50  [ AE4FEDD98096C09A8A86E021FC5E9D67, 211F62C48BA8A5C98DE03EB7CCC7AD53A3CC849B9D893C546087CB76C635C863 ] C:\Windows\System32\oleaut32.dll
    14:42:50.0232 0x0d50  C:\Windows\System32\oleaut32.dll - ok
    14:42:50.0232 0x0d50  [ 9835E63E09F824D22B689D2BB789BAB9, 5BCFFAFB894D69FBCDDB91E64D30A356F4BD57098E8B4C51B98AFAF6581BDB63 ] C:\Windows\System32\comdlg32.dll
    14:42:50.0232 0x0d50  C:\Windows\System32\comdlg32.dll - ok
    14:42:50.0232 0x0d50  [ 6FDF03A3B110C5264F52F979335AE301, 804D0C1A46AB0CC7C3D054630069B42A432A2C162E58BE44A7CBFFA073776EF3 ] C:\Windows\System32\kernel32.dll
    14:42:50.0232 0x0d50  C:\Windows\System32\kernel32.dll - ok
    14:42:50.0247 0x0d50  [ 4BBFA57F594F7E8A8EDC8F377184C3F0, 9F3AC5DEA5A6250C3DBB97AF79C81C0A48429486521F807355A1D7D3D861B75F ] C:\Windows\System32\ws2_32.dll
    14:42:50.0247 0x0d50  C:\Windows\System32\ws2_32.dll - ok
    14:42:50.0247 0x0d50  [ B4F29F65AD3114051F01E9403346047F, 7EB58545211C51E95B3F45C47C1F7CCE05B707D168E7C20F46D36E19EE3D8DFC ] C:\Windows\System32\imagehlp.dll
    14:42:50.0247 0x0d50  C:\Windows\System32\imagehlp.dll - ok
    14:42:50.0247 0x0d50  [ 417F80E4AFBA1AA9EBBD618F1C6D9165, 6ACE42ECED960666AC7A2D4C71A2C87C7CB8A30D1FD815AC4D174F2D264CB35A ] C:\Windows\System32\wininet.dll
    14:42:50.0247 0x0d50  C:\Windows\System32\wininet.dll - ok
    14:42:50.0247 0x0d50  [ 044FE45FFD6AD40E3BBBE60B7F41BABE, A1688A5E6E0F7037C850699462C2655006A7D873C97F9AB406C59D81749B6F09 ] C:\Windows\System32\nsi.dll
    14:42:50.0247 0x0d50  C:\Windows\System32\nsi.dll - ok
    14:42:50.0263 0x0d50  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5, 12130837D7F89A2C7E9D25747A8E5B9001E0A38D545178B49B450C23AE62664A ] C:\Windows\System32\setupapi.dll
    14:42:50.0263 0x0d50  C:\Windows\System32\setupapi.dll - ok
    14:42:50.0263 0x0d50  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] C:\Windows\System32\drivers\ndproxy.sys
    14:42:50.0263 0x0d50  C:\Windows\System32\drivers\ndproxy.sys - ok
    14:42:50.0263 0x0d50  [ 088CF6AFCD5CDD44E40C0ACDE3C1A5E0, AC6AFCAE3A58AAABC972B3D6A1ED383A59910C689F38D9D4A059A0A535BA1039 ] C:\Windows\System32\usp10.dll
    14:42:50.0263 0x0d50  C:\Windows\System32\usp10.dll - ok
    14:42:50.0263 0x0d50  [ 4FFD08A01047EF6B58F6EB4E6D001A8D, 35F80E412839DA0CC31895ADC56F7C037D7B2D34E6EA4312AD4868492DCE6910 ] C:\Windows\System32\advapi32.dll
    14:42:50.0263 0x0d50  C:\Windows\System32\advapi32.dll - ok
    14:42:50.0278 0x0d50  [ F7CE0C81C545364020ED8203CF0A633E, 24B47A7492B7048096AF87E26786E8108455ADBD1A374B6A0466DE008505B8A9 ] C:\Windows\System32\difxapi.dll
    14:42:50.0278 0x0d50  C:\Windows\System32\difxapi.dll - ok
    14:42:50.0278 0x0d50  [ F947D57534E01E3CA597BCF2AD8AE65B, 498A87443CE3344F82B19D4903F128337B5B3DA49D3C208F796394DA6B3A8946 ] C:\Windows\System32\rpcrt4.dll
    14:42:50.0278 0x0d50  C:\Windows\System32\rpcrt4.dll - ok
    14:42:50.0278 0x0d50  [ E0D3CD5841E5C7BE7B94BA946AF1E498, 4EAE1B226255623DA41A047633994D6902F6D4CA5757BF5D85E227378336227F ] C:\Windows\System32\drivers\drmk.sys
    14:42:50.0278 0x0d50  C:\Windows\System32\drivers\drmk.sys - ok
    14:42:50.0294 0x0d50  [ 1E0B4CBBA91C6B041A14ECC2186F7E24, 63039A317F906454A0652704DA2D646658A148B9B55BFB5D2F4B27997F357DF9 ] C:\Windows\System32\drivers\portcls.sys
    14:42:50.0294 0x0d50  C:\Windows\System32\drivers\portcls.sys - ok
    14:42:50.0294 0x0d50  [ 028E40182A6F0374978C755F85B9F07C, 747B5B4E56076A77C7936B71CE20FD413A1869ACF9E4218A1B8EF8D4E8C82A3B ] C:\Windows\System32\drivers\RTKVHD64.sys
    14:42:50.0294 0x0d50  C:\Windows\System32\drivers\RTKVHD64.sys - ok
    14:42:50.0294 0x0d50  [ 6C60B5ACA7442EFB794082CDACFC001C, FC1D9124856A70FF232EF3057D66BEE803295847624CE23B4D0217F23AF52C75 ] C:\Windows\System32\ole32.dll
    14:42:50.0294 0x0d50  C:\Windows\System32\ole32.dll - ok
    14:42:50.0294 0x0d50  [ FC727061C0F47C8059E88E05D5C8E381, C7A3782F5D86C7FDE57AA1F2EE81638C5FC3072ACC6E572BA2EC7B3CFF389800 ] C:\Windows\System32\drivers\IntcDAud.sys
    14:42:50.0294 0x0d50  C:\Windows\System32\drivers\IntcDAud.sys - ok
    14:42:50.0310 0x0d50  [ E88A78273D429554B6B2D2BDA945ED9B, B090BB1E1EE7F3386491C39699D61458E8F9146C7AB86D41B9E39F2C04CDDF58 ] C:\Windows\System32\msctf.dll
    14:42:50.0310 0x0d50  C:\Windows\System32\msctf.dll - ok
    14:42:50.0310 0x0d50  [ 6E295C7364DAEB151CC0E98434B6AC92, 4C2601934D5B34FAF0101211C79E1B40E20098F5DFCF78F78E93EFE6CF161C53 ] C:\Windows\System32\iertutil.dll
    14:42:50.0310 0x0d50  C:\Windows\System32\iertutil.dll - ok
    14:42:50.0310 0x0d50  [ F351B0E520502552734BE70AA5940784, BFB7F7104430DCD404329FD5D551C9DC90A6D51E8141C662E11FAEB6EBD1F853 ] C:\Windows\System32\lpk.dll


    #13 Gary's Girl

    Gary's Girl
    • Topic Starter

    • Members
    • 343 posts
    • OFFLINE
    •  
    • Gender:Female
    • Location:Kentucky
    • Local time:08:30 PM

    Posted 15 July 2015 - 12:28 PM

    Here's part 2 of the TDSSKiller report - you sure were correct - it is REALLY long!

     

    14:42:50.0310 0x0d50  C:\Windows\System32\lpk.dll - ok
    14:42:50.0310 0x0d50  [ 28C0B5024F5C5A438E78B188CFC81B7F, AB81FB63F2908CE316B45609077ACBD85F4B2AAD1606B1E9030F06DB82EDDFAD ] C:\Windows\System32\normaliz.dll
    14:42:50.0310 0x0d50  C:\Windows\System32\normaliz.dll - ok
    14:42:50.0325 0x0d50  [ 4F90A7A0FCBC0ED18E573917860062FF, D0CAA6A1335824C4D6416D7077B143FBF8C7E5AEE0A338BC345C27A10C3F519C ] C:\Windows\System32\sechost.dll
    14:42:50.0325 0x0d50  C:\Windows\System32\sechost.dll - ok
    14:42:50.0325 0x0d50  [ C391FC68282A000CDF953F8B6B55D2EF, 1CB0DAB84545D9FDEA5A7865A1E7132CEAC91DECF8B100285B63098D7B09E584 ] C:\Windows\System32\msvcrt.dll
    14:42:50.0325 0x0d50  C:\Windows\System32\msvcrt.dll - ok
    14:42:50.0325 0x0d50  [ 72098048AB8AE2CAFA4ECE35D5051D62, 966F4B1211BE43EBAB2B452C3DB75936C7C0C58BCC67A01D852C742EA4D5904F ] C:\Windows\System32\gdi32.dll
    14:42:50.0325 0x0d50  C:\Windows\System32\gdi32.dll - ok
    14:42:50.0325 0x0d50  [ 25983DE69B57142039AC8D95E71CD9C9, A677DA7EBCBCB6073D27E8A38809F51E971E83ED379BC599AAAD6EF4216348DA ] C:\Windows\System32\clbcatq.dll
    14:42:50.0325 0x0d50  C:\Windows\System32\clbcatq.dll - ok
    14:42:50.0341 0x0d50  [ 51F89CE2D0FEC66070354504E6C4C3E4, 565CC85156C39FB89762757EF6A935FC42DB2599A5E49643447D30C8B9371133 ] C:\Windows\System32\comctl32.dll
    14:42:50.0341 0x0d50  C:\Windows\System32\comctl32.dll - ok
    14:42:50.0341 0x0d50  [ 3FECBED0EACABD22E024EF4E50CF987B, 9E2F4DA1F96C3D02D1125E4A695478CEF53C7327C997D12038FEDB3141721643 ] C:\Windows\System32\crypt32.dll
    14:42:50.0341 0x0d50  C:\Windows\System32\crypt32.dll - ok
    14:42:50.0341 0x0d50  [ 7A17485DC7D8A7AC81321A42CD034519, 88D8705FA901793FC8C1CFD0175E49A6502BF0FC94A066BA573D2FD13AA5F04A ] C:\Windows\System32\userenv.dll
    14:42:50.0341 0x0d50  C:\Windows\System32\userenv.dll - ok
    14:42:50.0341 0x0d50  [ 577D0B947B49DB83E2054FA169B2ECBF, 339187FE8E03C877AF4E26C9581121D70624F47CABC601E331365846A68CF1E5 ] C:\Windows\System32\wintrust.dll
    14:42:50.0341 0x0d50  C:\Windows\System32\wintrust.dll - ok
    14:42:50.0356 0x0d50  [ 2477A28081BDAEE622CF045ACF8EE124, 00A09CAF9129E84FEEA98FA03CE9012C9F961B64FEE15C4F268822C0F82ACC3C ] C:\Windows\System32\cfgmgr32.dll
    14:42:50.0356 0x0d50  C:\Windows\System32\cfgmgr32.dll - ok
    14:42:50.0356 0x0d50  [ 9094039A00485F71C4DE64BF51F64C46, 4ACFEF4C747ADF806A4FDEDDFD9CC48168DFB05075306C77D3F3927749DD7484 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
    14:42:50.0356 0x0d50  C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
    14:42:50.0356 0x0d50  [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A, 445C2857398252756FD25BB94DAFCCEFF573DE55F1F8BF9094C191F409FE6437 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
    14:42:50.0356 0x0d50  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
    14:42:50.0356 0x0d50  [ F49E92B50CED5C9F1725D3C0329FD933, 6155FA4D8242F07FC578FF746890C2EE19FC3D6A20ED8AE4C6F021DB2DAC184F ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
    14:42:50.0356 0x0d50  C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
    14:42:50.0372 0x0d50  [ 8DCA1C70AF170C3FBCE47A4F49BFC887, 310881CCCD837C2DE4C5BF0B3D24A4846DE328FF58D501F51C01C77DD33A403A ] C:\Windows\System32\KernelBase.dll
    14:42:50.0372 0x0d50  C:\Windows\System32\KernelBase.dll - ok
    14:42:50.0372 0x0d50  [ 72723D3E4781BADC62C3180C137E7B23, 0BDA5292928578C5DA79C761E15B8A892B9D4A3DA26D3635E714797C653CF492 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
    14:42:50.0372 0x0d50  C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
    14:42:50.0372 0x0d50  [ 06FEC9E8117103BB1141A560E98077DA, C5E61B11DDBBBBBA3D9488970524F0975EA5FBDF16E2FA31F579F8BFA48353B1 ] C:\Windows\System32\devobj.dll
    14:42:50.0372 0x0d50  C:\Windows\System32\devobj.dll - ok
    14:42:50.0388 0x0d50  [ 0E6FBF19D9DFBB77316C23DF91F8A101, 680F88E1BC55EA3342AACE6F2E3511BF877AC8F03276D028FEE84EEFE8B5611A ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
    14:42:50.0388 0x0d50  C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
    14:42:50.0388 0x0d50  [ 64A4AB126E24FD3F58EBE64852773DB5, ED425BBC91EB8BEF54C363036A770C551C97EF324F1AE31049CA750D0E2D6776 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
    14:42:50.0388 0x0d50  C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
    14:42:50.0388 0x0d50  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] C:\Windows\System32\drivers\usbccgp.sys
    14:42:50.0388 0x0d50  C:\Windows\System32\drivers\usbccgp.sys - ok
    14:42:50.0388 0x0d50  [ 884415BD4269C02EAF8E2613BF85500D, EFE771709EC942694FD206AC8D0A48ED7DCD35036F074268E4AECD68AC982CEA ] C:\Windows\System32\msasn1.dll
    14:42:50.0388 0x0d50  C:\Windows\System32\msasn1.dll - ok
    14:42:50.0403 0x0d50  [ 2C942733A5983DD4502219FF37C7EBC7, 34B20B6B0D7274E4B5B783F1D2345BC3DD9888964D5C2C65712F041A00CF5B45 ] C:\Windows\System32\profapi.dll
    14:42:50.0403 0x0d50  C:\Windows\System32\profapi.dll - ok
    14:42:50.0403 0x0d50  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] C:\Windows\System32\drivers\usbvideo.sys
    14:42:50.0403 0x0d50  C:\Windows\System32\drivers\usbvideo.sys - ok
    14:42:50.0403 0x0d50  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] C:\Windows\System32\drivers\bthport.sys
    14:42:50.0403 0x0d50  C:\Windows\System32\drivers\bthport.sys - ok
    14:42:50.0419 0x0d50  [ 9C278785347BCC991F8EA2999D90F58D, EA680C3642A6ABF627415AEE019956FAC702DC6A8F4B4D0FC8A4FB21EADD3896 ] C:\Windows\SysWOW64\normaliz.dll
    14:42:50.0419 0x0d50  C:\Windows\SysWOW64\normaliz.dll - ok
    14:42:50.0419 0x0d50  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] C:\Windows\System32\drivers\BTHUSB.SYS
    14:42:50.0419 0x0d50  C:\Windows\System32\drivers\BTHUSB.SYS - ok
    14:42:50.0419 0x0d50  [ BF24D6F2ED97FE830BFD52B246F98E67, 6BBF4C4221A245462EF653798F6B416EEB12594AD1CB4E8BC8908A8CB2F53384 ] C:\Windows\System32\drivers\dxapi.sys
    14:42:50.0419 0x0d50  C:\Windows\System32\drivers\dxapi.sys - ok
    14:42:50.0419 0x0d50  [ 1EE2DBA5AD2E5EB618C7FB187C2CFDF4, 50D7E638987BBDFF893C9BD6C17C1779852CAC0EDA8EDB0E27573A7CB897130A ] C:\Windows\System32\win32k.sys
    14:42:50.0419 0x0d50  C:\Windows\System32\win32k.sys - ok
    14:42:50.0434 0x0d50  [ 60C2862B4BF0FD9F582EF344C2B1EC72, CB1C6018FC5C15483AC5BB96E5C2E2E115BB0C0E1314837D77201BAB37E8C03A ] C:\Windows\System32\csrss.exe
    14:42:50.0434 0x0d50  C:\Windows\System32\csrss.exe - ok
    14:42:50.0434 0x0d50  [ 13DE715D959DD502CFD52DC920408B33, 1E03745ABD7D412CD71F681C0CC5A59BCDB7118B6AF9E50F80D2E4DE2D583821 ] C:\Windows\System32\csrsrv.dll
    14:42:50.0434 0x0d50  C:\Windows\System32\csrsrv.dll - ok
    14:42:50.0434 0x0d50  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\System32\basesrv.dll
    14:42:50.0434 0x0d50  C:\Windows\System32\basesrv.dll - ok
    14:42:50.0434 0x0d50  [ 2313AF8D5A9CEB4A55400A01DD311A95, A5779FE967EA2703E86BEDC32CD736617AF278C72048228F038DFC628E1E0AA2 ] C:\Windows\System32\winsrv.dll
    14:42:50.0434 0x0d50  C:\Windows\System32\winsrv.dll - ok
    14:42:50.0450 0x0d50  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] C:\Windows\System32\drivers\monitor.sys
    14:42:50.0450 0x0d50  C:\Windows\System32\drivers\monitor.sys - ok
    14:42:50.0450 0x0d50  [ F29FE765E1448EF371CFE05BFAC74ADB, F251581222D78543272FD4B14A6A59F4B0E0CC44A5FCBCF56DE4CA5783F78A75 ] C:\Windows\System32\tsddd.dll
    14:42:50.0450 0x0d50  C:\Windows\System32\tsddd.dll - ok
    14:42:50.0450 0x0d50  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\System32\sxssrv.dll
    14:42:50.0450 0x0d50  C:\Windows\System32\sxssrv.dll - ok
    14:42:50.0450 0x0d50  [ 94355C28C1970635A31B3FE52EB7CEBA, C4E98F07170CEC69CACDD5CEDB8927E48A2A299CB1B8CDA87526E768AF6174F0 ] C:\Windows\System32\wininit.exe
    14:42:50.0450 0x0d50  C:\Windows\System32\wininit.exe - ok
    14:42:50.0466 0x0d50  [ C2A8CB1275ECB85D246A9ECC02A728E3, 3603FADCA0060BD201148F9D59E4E2627F024609A6463AB525B5D1AD17BDCD10 ] C:\Windows\System32\RpcRtRemote.dll
    14:42:50.0466 0x0d50  C:\Windows\System32\RpcRtRemote.dll - ok
    14:42:50.0466 0x0d50  [ 78523A26F5604C0568FE9D1CE86E36F4, 534A7228BF69719106F581616A32EAEF0B770DDB36DCE94F84E7D52FDB1382B5 ] C:\Windows\System32\KBDUS.DLL
    14:42:50.0466 0x0d50  C:\Windows\System32\KBDUS.DLL - ok
    14:42:50.0466 0x0d50  [ 943F527DF79E6B400104341AA7023C75, 53C7B9426181D3D172E6B1A07E6DF8A0CB8FCA27D3A03CE5F544D3209B5F4651 ] C:\Windows\System32\cdd.dll
    14:42:50.0466 0x0d50  C:\Windows\System32\cdd.dll - ok
    14:42:50.0466 0x0d50  [ 8CEBD9D0A0A879CDE9F36F4383B7CAEA, 7AA73B8E7D4D700C164D0410DCF84EA1CCCB0F7DD513E47A2EF0DAE5F16CAE45 ] C:\Windows\System32\winlogon.exe
    14:42:50.0466 0x0d50  C:\Windows\System32\winlogon.exe - ok
    14:42:50.0481 0x0d50  [ C23B6D9D16FD86F446BE607CA18389D9, 331FA37B5A059FE85C5D1368A42293A7BAE2581F3F1F15B48364644136066C14 ] C:\Windows\System32\winsta.dll
    14:42:50.0481 0x0d50  C:\Windows\System32\winsta.dll - ok
    14:42:50.0481 0x0d50  [ B26B1801356760841C3BC69F9F91537F, 83B9DF333E36C09E81D44E12AE5BE14650126FDA0CF4A0EA853BF40C5780EF81 ] C:\Windows\System32\WlS0WndH.dll
    14:42:50.0481 0x0d50  C:\Windows\System32\WlS0WndH.dll - ok
    14:42:50.0481 0x0d50  [ 9CEAD32E79A62150FE9F8557E58E008B, AFE4C1725EE94D7DE0749AE1495A4E5CC33C369F29B2A589DA66FFE27FF9777E ] C:\Windows\System32\sxs.dll
    14:42:50.0481 0x0d50  C:\Windows\System32\sxs.dll - ok
    14:42:50.0481 0x0d50  [ 784FA3DF338E2E8F5F0389D6FAC428AF, 9C8AA0CFDEB9E38AAF8EB08626070E0F0364F4F8A793CFE3532EC6C007980C34 ] C:\Windows\System32\cryptbase.dll
    14:42:50.0481 0x0d50  C:\Windows\System32\cryptbase.dll - ok
    14:42:50.0497 0x0d50  [ 31D260ADAF1CCFEFC49DB9FBCE9986DA, EB7BC32C938C921C8B77779D2603BC7BD64500ADC67BAFE29423544E331A5F14 ] C:\Windows\System32\apphelp.dll
    14:42:50.0497 0x0d50  C:\Windows\System32\apphelp.dll - ok
    14:42:50.0497 0x0d50  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\System32\services.exe
    14:42:50.0497 0x0d50  C:\Windows\System32\services.exe - ok
    14:42:50.0497 0x0d50  [ 17A6A9AAD04CCC6EE53290585BFC43AF, E4901D86C6470D21ABA0F6D9615A613E5C74A3FEF931E497F51B6AFA5715332B ] C:\Windows\System32\lsass.exe
    14:42:50.0497 0x0d50  C:\Windows\System32\lsass.exe - ok
    14:42:50.0512 0x0d50  [ A929B9ABA1083AF35ECE7BD63AF3E42F, A051E92C9055E51B318B9780522C86C8DC3F351F7690BC016BC638E233D3F690 ] C:\Windows\System32\sspicli.dll
    14:42:50.0512 0x0d50  C:\Windows\System32\sspicli.dll - ok
    14:42:50.0512 0x0d50  [ 5EC57AC6DC16CB8A058CA019AA2C188D, 1A5A922F09C6FBDDD3BF10A355504C6E2C6C17C783F75FA46A8C1D37EB5903C9 ] C:\Windows\System32\sspisrv.dll
    14:42:50.0512 0x0d50  C:\Windows\System32\sspisrv.dll - ok
    14:42:50.0512 0x0d50  [ 93A05407F8E53BC731C42AAD56163F80, 24A5E52D817C6C1BEEA1BAF2EAEF9D91D9A1B21D5B69B779A3794D7AF5132B6F ] C:\Windows\System32\lsasrv.dll
    14:42:50.0512 0x0d50  C:\Windows\System32\lsasrv.dll - ok
    14:42:50.0512 0x0d50  [ 9662EE182644511439F1C53745DC1C88, D205B2C163E78AB42A5D67D7664EF6B75EA0374FF0924467D624F9DB0611F0AD ] C:\Windows\System32\lsm.exe
    14:42:50.0512 0x0d50  C:\Windows\System32\lsm.exe - ok
    14:42:50.0528 0x0d50  [ E914A50A151DFFE63D3935226DB5E2C1, 7DCCE4060344E1C771679F1C20378A0BEB3C1F06DB684072F07B98921A62A299 ] C:\Windows\System32\scext.dll
    14:42:50.0528 0x0d50  C:\Windows\System32\scext.dll - ok
    14:42:50.0528 0x0d50  [ 6ACD3C75BE449F039E1A4E43424D5B6F, 43583FD65CFA8C076AD5002701F4C413E2D87DFCD4FACF573C2EF92763676618 ] C:\Windows\System32\secur32.dll
    14:42:50.0528 0x0d50  C:\Windows\System32\secur32.dll - ok
    14:42:50.0528 0x0d50  [ 68083118797CAF30FB2EA3E71494D67E, 5F1BCDFCB00A20CD60CBC70A2FD97405EF0F7173DD0E404BBA7B06D39DB37364 ] C:\Windows\System32\sysntfy.dll
    14:42:50.0528 0x0d50  C:\Windows\System32\sysntfy.dll - ok
    14:42:50.0528 0x0d50  [ FE72C89986E1BA32AD926A820491F23F, 610A51FB6934A33EA15B1C00EB77B39A21B877BE30D424280DFAC47F3BF3365B ] C:\Windows\System32\scesrv.dll
    14:42:50.0528 0x0d50  C:\Windows\System32\scesrv.dll - ok
    14:42:50.0544 0x0d50  [ DEE7267C5D232A3B816866872CE199E6, A1994FD37667C52E7CBF873514C190DA61A3D1349786D187BFAE0006F61799AE ] C:\Windows\System32\wmsgapi.dll
    14:42:50.0544 0x0d50  C:\Windows\System32\wmsgapi.dll - ok
    14:42:50.0544 0x0d50  [ 3A9C9BAF610B0DD4967086040B3B62A9, E8E9A0F42B1EE7806EDCEED08AA024D037215D06CA317E3678BD5364AD513D23 ] C:\Windows\System32\srvcli.dll
    14:42:50.0544 0x0d50  C:\Windows\System32\srvcli.dll - ok
    14:42:50.0544 0x0d50  [ A744BA6E04C8AA4592818178DBF89521, 9E7C85D842DF16F9B8FED7B06AF309B5ECCBFD465F5552347D4C3F1FEFDC6F7A ] C:\Windows\System32\samsrv.dll
    14:42:50.0544 0x0d50  C:\Windows\System32\samsrv.dll - ok
    14:42:50.0544 0x0d50  [ 3A061472B38233BAFF9CFEFF2E49C46B, DF29B14C8D22A8A16AA336A09A6152E2C7FCA6CAF4E76F0C5DCB55BEF9D00515 ] C:\Windows\System32\cryptdll.dll
    14:42:50.0544 0x0d50  C:\Windows\System32\cryptdll.dll - ok
    14:42:50.0559 0x0d50  [ 3C073B0C596A0AF84933E7406766B040, 4698BBA678F553E15AD4B07AD7FB236281F872DEFEE97BFD637114476C8F97B3 ] C:\Windows\System32\wevtapi.dll
    14:42:50.0559 0x0d50  C:\Windows\System32\wevtapi.dll - ok
    14:42:50.0559 0x0d50  [ 86FE1B1F8FD42CD0DB641AB1CDB13093, 8C4BB4415105CE82FFFE658879EAE9D259A24C0F6DFC7D25507352DC99241BE2 ] C:\Windows\System32\cngaudit.dll
    14:42:50.0559 0x0d50  C:\Windows\System32\cngaudit.dll - ok
    14:42:50.0575 0x0d50  [ 7FBEBD2229EA5FD48D41B199EC2D541C, A465975D445A8D50CAF3EF29BD33354B320D11173C127BE30D5EBBFF7008CDCE ] C:\Windows\System32\authz.dll
    14:42:50.0575 0x0d50  C:\Windows\System32\authz.dll - ok
    14:42:50.0575 0x0d50  [ 7C5E375F20F639607376351A8BCC0647, 877B33602636E085D293E4AD9CD188341FFEFD9015DBAC01086D8A2318FB4D83 ] C:\Windows\System32\ncrypt.dll
    14:42:50.0575 0x0d50  C:\Windows\System32\ncrypt.dll - ok
    14:42:50.0575 0x0d50  [ B9A95365E52F421A20E1501935FADDA5, DDB4CB575139233EFAF2C59B7E9B04AF36BBCCC63190181F3B2A7E6BFC86E77E ] C:\Windows\System32\bcrypt.dll
    14:42:50.0575 0x0d50  C:\Windows\System32\bcrypt.dll - ok
    14:42:50.0575 0x0d50  [ 02B64609F865A39365FF88580DF11738, 2F676B93898E1B6131AF6227BB7AB731EB9C29477F9BD4C2C60F0FC1E35CD968 ] C:\Windows\System32\msprivs.dll
    14:42:50.0575 0x0d50  C:\Windows\System32\msprivs.dll - ok
    14:42:50.0590 0x0d50  [ C6505DE3561537BA1004D638C2F93F2F, 3E4FDF374B1A9E43A8F61FD2D79E0515390ECABFDAF72C4BD44A7B6429039AF6 ] C:\Windows\System32\netjoin.dll
    14:42:50.0590 0x0d50  C:\Windows\System32\netjoin.dll - ok
    14:42:50.0590 0x0d50  [ 50532FCD7ECF02DD169CE5C485F02534, 8EE5D9D0EA53DC72BCC300692E521ACADD56AB09BFA3E78149D8B5A90648512C ] C:\Windows\System32\negoexts.dll
    14:42:50.0590 0x0d50  C:\Windows\System32\negoexts.dll - ok
    14:42:50.0590 0x0d50  [ 6ECD6D92F43C2DC55099F892978D5BE7, 19E030AC888A8E8111B676B3320DB2CA6ED5EF50AD23BAC9087E85CDA853EA62 ] C:\Windows\System32\kerberos.dll
    14:42:50.0590 0x0d50  C:\Windows\System32\kerberos.dll - ok
    14:42:50.0590 0x0d50  [ 94BC902494AFC9F5EBC5FBB61445D73F, 3CDC171E39A480120F3CAF6EE85569B226DBAD17EB52940D3EBBE1084B551ED2 ] C:\Windows\System32\cryptsp.dll
    14:42:50.0590 0x0d50  C:\Windows\System32\cryptsp.dll - ok
    14:42:50.0606 0x0d50  [ 9A9F9F1A77D6A80EE28B57664F00013E, 0D441638E086EF1342FCDC43E826BF9E9CC6B2E8AE100D89BFC70163F987DE91 ] C:\Windows\System32\mswsock.dll
    14:42:50.0606 0x0d50  C:\Windows\System32\mswsock.dll - ok
    14:42:50.0606 0x0d50  [ EC7CBFF96B05ECF3D366355B3C64ADCF, F69ED45EBEDCA9CF000AC03281F0EC2C351F98513FBA90E63394E4E561D6C7A2 ] C:\Windows\System32\wship6.dll
    14:42:50.0606 0x0d50  C:\Windows\System32\wship6.dll - ok
    14:42:50.0606 0x0d50  [ 996EE6571ADB880A60846DD02C8D5869, 1624112523AA5D4419B86E6A1AAB2E0219DDC3D4678AE7805C46A72FF7F135AF ] C:\Windows\System32\msv1_0.dll
    14:42:50.0606 0x0d50  C:\Windows\System32\msv1_0.dll - ok
    14:42:50.0622 0x0d50  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] C:\Windows\System32\drivers\rfcomm.sys
    14:42:50.0622 0x0d50  C:\Windows\System32\drivers\rfcomm.sys - ok
    14:42:50.0622 0x0d50  [ AA339DD8BB128EF66660DFBBB59043D3, 76D9F849AFDDA38E04549EB67B4163478776F1B6EF46434168278F84FEB8FC5C ] C:\Windows\System32\netlogon.dll
    14:42:50.0622 0x0d50  C:\Windows\System32\netlogon.dll - ok
    14:42:50.0622 0x0d50  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] C:\Windows\System32\drivers\bthenum.sys
    14:42:50.0622 0x0d50  C:\Windows\System32\drivers\bthenum.sys - ok
    14:42:50.0622 0x0d50  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] C:\Windows\System32\drivers\bthpan.sys
    14:42:50.0622 0x0d50  C:\Windows\System32\drivers\bthpan.sys - ok
    14:42:50.0637 0x0d50  [ 492D07D79E7024CA310867B526D9636D, F2FE647AB85C6C3C1AA3DF4BCE6E4D42B9676C9D837E11388C235AE8DB20044F ] C:\Windows\System32\dnsapi.dll
    14:42:50.0637 0x0d50  C:\Windows\System32\dnsapi.dll - ok
    14:42:50.0637 0x0d50  [ 8FFE297B8449386E7B6851458B6E474E, E149B37E11091D69D926242517E5655596594A6F01FEF06EB65D6BA5B354E326 ] C:\Windows\System32\logoncli.dll
    14:42:50.0637 0x0d50  C:\Windows\System32\logoncli.dll - ok
    14:42:50.0637 0x0d50  [ 37DFCC91E419952772E02F2B3BBB2E2B, C7ACF45F68008416978113FC8CD6213B49CB09C0E60CD31BB983C6FD8A7E18D8 ] C:\Windows\System32\schannel.dll
    14:42:50.0637 0x0d50  C:\Windows\System32\schannel.dll - ok
    14:42:50.0637 0x0d50  [ AD54856A16B635720B0BE5FAF44526FC, 12D26D999C94A88B8E39A059175790902BB74C07FAC17533936ECD6D84866EDC ] C:\Windows\System32\wdigest.dll
    14:42:50.0637 0x0d50  C:\Windows\System32\wdigest.dll - ok
    14:42:50.0653 0x0d50  [ 5D8874A8C11DDDDE29E12DE0E2013493, 3E9A57137BF622AF83E3E4D58971E2C0200559CCA7545D16CF263AA03EE9C7D2 ] C:\Windows\System32\rsaenh.dll
    14:42:50.0653 0x0d50  C:\Windows\System32\rsaenh.dll - ok
    14:42:50.0653 0x0d50  [ A5F57F4866C2DC7F8215058D7D56BD21, 0B5FBBCEAB1D298F495FC68FAB73E30C737383ABA1AD71B95F422C711A0720F8 ] C:\Windows\System32\TSpkg.dll
    14:42:50.0653 0x0d50  C:\Windows\System32\TSpkg.dll - ok
    14:42:50.0653 0x0d50  [ 1306E6A1BF4D506CD687DF9F947270F2, 3ED566F618D90BCCB3C76BA976911536FFC5631F7A6A91BF322628F8AAE498B4 ] C:\Windows\System32\pku2u.dll
    14:42:50.0653 0x0d50  C:\Windows\System32\pku2u.dll - ok
    14:42:50.0668 0x0d50  [ 55C892560C1B42BC57FB61AEFCED2F22, 9A15D6559B4FD2FE3A5C5CE13F3C1AD01D9576F6023BDBD12336A1654D33EC63 ] C:\Windows\System32\LIVESSP.DLL
    14:42:50.0668 0x0d50  C:\Windows\System32\LIVESSP.DLL - ok
    14:42:50.0668 0x0d50  [ D6C7780A364C6BBACFA796BAB9F1B374, 3B5ED1A030BFD0BB73D4FFCD67A6A0B8501EF70293F223EFAA12F430ADF270F9 ] C:\Windows\System32\bcryptprimitives.dll
    14:42:50.0668 0x0d50  C:\Windows\System32\bcryptprimitives.dll - ok
    14:42:50.0668 0x0d50  [ 90BDEFC5DF334E5100EAA781D798DE1A, F48B650D811B6D57D2252E326C0C9CC74534BE9D510E7D3403F91D1C5C36281E ] C:\Windows\System32\efslsaext.dll
    14:42:50.0668 0x0d50  C:\Windows\System32\efslsaext.dll - ok
    14:42:50.0668 0x0d50  [ 289D99B0879C6ED5C6D1B3A856CA6DA3, 8C72528C920623FC5DEEE696F7A2AA2BF670ACBDDE9A6861EAA7C1150AAB3D5C ] C:\Windows\System32\credssp.dll
    14:42:50.0668 0x0d50  C:\Windows\System32\credssp.dll - ok
    14:42:50.0684 0x0d50  [ ED78427259134C63ED69804D2132B86C, F6F51B8B35881ABCA5580ED111AAC80E466E6474ABAE31EC8BE46C23EDCA77B2 ] C:\Windows\System32\scecli.dll
    14:42:50.0684 0x0d50  C:\Windows\System32\scecli.dll - ok
    14:42:50.0684 0x0d50  [ 1FB81632476857E8451DDA8A456EF3CE, 29D672F0D642D601FD0AC0BB406423AE71039556A882122BBEE3F4F6F61F3C89 ] C:\Windows\System32\ubpm.dll
    14:42:50.0684 0x0d50  C:\Windows\System32\ubpm.dll - ok
    14:42:50.0684 0x0d50  [ C78655BC80301D76ED4FEF1C1EA40A7D, 93B2ED4004ED5F7F3039DD7ECBD22C7E4E24B6373B4D9EF8D6E45A179B13A5E8 ] C:\Windows\System32\svchost.exe
    14:42:50.0684 0x0d50  C:\Windows\System32\svchost.exe - ok
    14:42:50.0684 0x0d50  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] C:\Windows\System32\umpnpmgr.dll
    14:42:50.0684 0x0d50  C:\Windows\System32\umpnpmgr.dll - ok
    14:42:50.0700 0x0d50  [ E6EB44ABAAF1F330119F854856C53EBE, 77279972FFBFA984578DD4F17EB615F5D2D93590AF3A9FEFEFDB9128206C9887 ] C:\Windows\System32\SPInf.dll
    14:42:50.0700 0x0d50  C:\Windows\System32\SPInf.dll - ok
    14:42:50.0700 0x0d50  [ CD1B5AD07E5F7FEF30E055DCC9E96180, 63C58551F32B0B09377F64A6AE1FA81AF93B8A707A57A8C18722086906AD3046 ] C:\Windows\System32\devrtl.dll
    14:42:50.0700 0x0d50  C:\Windows\System32\devrtl.dll - ok
    14:42:50.0700 0x0d50  [ 9C9307C95671AC962F3D6EB3A4A89BAE, D1433791C9B8BCEEAD8937EC18D33E89E4E2012B5975228A8500FD141BC30078 ] C:\Windows\System32\gpapi.dll
    14:42:50.0700 0x0d50  C:\Windows\System32\gpapi.dll - ok
    14:42:50.0700 0x0d50  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] C:\Windows\System32\umpo.dll
    14:42:50.0700 0x0d50  C:\Windows\System32\umpo.dll - ok
    14:42:50.0715 0x0d50  [ F6C011B46FAEEF33536B2E80F48B5CBE, BDD149D3D6F9F6C8F6F34C311219BE5618CEEFBC7D35E37473A47F1D5D015067 ] C:\Windows\System32\pcwum.dll
    14:42:50.0715 0x0d50  C:\Windows\System32\pcwum.dll - ok
    14:42:50.0715 0x0d50  [ 716175021BDA290504CE434273F666BC, FA18CA2D8A5F4335E051E2933147D3C1E7308F7D446E2AEB6596CDEF6E2AFC88 ] C:\Windows\System32\powrprof.dll
    14:42:50.0715 0x0d50  C:\Windows\System32\powrprof.dll - ok
    14:42:50.0715 0x0d50  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] C:\Windows\System32\drivers\luafv.sys
    14:42:50.0715 0x0d50  C:\Windows\System32\drivers\luafv.sys - ok
    14:42:50.0731 0x0d50  [ 1E9E32AEC3E1EB1B31B8169F33168B56, 39114585E1FDBBA31E1F781C6A627281907183F94626EB347B08D1F78992ED2A ] C:\Windows\System32\drivers\mbam.sys
    14:42:50.0731 0x0d50  C:\Windows\System32\drivers\mbam.sys - ok
    14:42:50.0731 0x0d50  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] C:\Windows\System32\rpcss.dll
    14:42:50.0731 0x0d50  C:\Windows\System32\rpcss.dll - ok
    14:42:50.0731 0x0d50  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] C:\Windows\System32\RpcEpMap.dll
    14:42:50.0731 0x0d50  C:\Windows\System32\RpcEpMap.dll - ok
    14:42:50.0731 0x0d50  [ 31559F3244C6BC00A52030CAA83B6B91, B2025742B5F0025ACE9821D5722DE3F997EEEAB21D2F381C9E307882DF422579 ] C:\Windows\System32\WSHTCPIP.DLL
    14:42:50.0731 0x0d50  C:\Windows\System32\WSHTCPIP.DLL - ok
    14:42:50.0746 0x0d50  [ 16E964ABF6D1E0F0CC7822FCA9BA754D, 0E461387ACFD641DA22EE542A3C68AF5F7D3A7F967D974E3B198143D461ABE39 ] C:\Windows\System32\wshqos.dll
    14:42:50.0746 0x0d50  C:\Windows\System32\wshqos.dll - ok
    14:42:50.0746 0x0d50  [ 9AD9E06F8656F296D91FAE8EE5B95A27, 53384747D5864D699BCC4F48E0A5E656430EDAA65DCDAB4B11EA68FC7106459E ] C:\Windows\System32\FirewallAPI.dll
    14:42:50.0746 0x0d50  C:\Windows\System32\FirewallAPI.dll - ok
    14:42:50.0746 0x0d50  [ CE996C1821021ADF8E28E80A54E846A8, 99042E895B6C2EA80F3BA65563A12C8EBA882E3AD6A21DD8E799B0112C75DDD2 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
    14:42:50.0746 0x0d50  C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
    14:42:50.0762 0x0d50  [ 8259DE91393E708FDBCD9F55E1FB74D0, 4929E27A5A54CA53FE49D3CB2836E6FFB85AB5BBF2383E72ED54399EB5FA505C ] C:\Program Files\Microsoft Security Client\MpSvc.dll
    14:42:50.0762 0x0d50  C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
    14:42:50.0762 0x0d50  [ 1F4492FE41767CDB8B89D17655847CDD, 184547FAC0C3D7148FAA3F601929A7089DE393BD19929A137DAD743331DD3F77 ] C:\Windows\System32\ntmarta.dll
    14:42:50.0762 0x0d50  C:\Windows\System32\ntmarta.dll - ok
    14:42:50.0762 0x0d50  [ 94E026870A55AAEAFF7853C1754091E9, B2F5D5629D12BDFA98DBED3898368F37D9009C7531B6909C7285A2C11C9A0F93 ] C:\Windows\System32\version.dll
    14:42:50.0762 0x0d50  C:\Windows\System32\version.dll - ok
    14:42:50.0762 0x0d50  [ 715F03B4C7223349768013EA95D9E5B7, 09AB0535A54C2E2962F0FD06988D99060F8CECA39B07AC00A63204C773B95893 ] C:\Windows\System32\LogonUI.exe
    14:42:50.0762 0x0d50  C:\Windows\System32\LogonUI.exe - ok
    14:42:50.0778 0x0d50  [ 5DFFC12BF7DB53BDB401804A3C3A475E, DEACB4BFF904AD77389A8326BFCF12A490E1A7A10B68049D253552F1FC630FA3 ] C:\Windows\System32\authui.dll
    14:42:50.0778 0x0d50  C:\Windows\System32\authui.dll - ok
    14:42:50.0778 0x0d50  [ BD3674BE7FC9D8D3732C83E8499576ED, E6716A5895D629263A4D21959F48840429AB6F4B55A5FA2663EE5E86C9CA2BF1 ] C:\Windows\System32\wtsapi32.dll
    14:42:50.0778 0x0d50  C:\Windows\System32\wtsapi32.dll - ok
    14:42:50.0778 0x0d50  [ CAE3B1733BD9AD379D5EEA9A7322082E, F7276852408E078291DE9A229D7FFB86863C102CEEF2B6B9EB0404781649C879 ] C:\Program Files\Microsoft Security Client\MpClient.dll
    14:42:50.0778 0x0d50  C:\Program Files\Microsoft Security Client\MpClient.dll - ok
    14:42:50.0778 0x0d50  [ 410F6B1BE785F3630B4782F8E3D85A24, 8DBCBC1A4EA684A973E259873589304485F95FCD7B04F345BE77AD107426B11E ] C:\Windows\System32\cryptui.dll
    14:42:50.0778 0x0d50  C:\Windows\System32\cryptui.dll - ok
    14:42:50.0793 0x0d50  [ 271DC9A33422D9A85E3790A0AF0A91EF, DFF1B06D2F095AE766C1C67E8DF97268C8D194FC39B23F1A8BB963EACB0BFE1F ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757\comctl32.dll
    14:42:50.0793 0x0d50  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757\comctl32.dll - ok
    14:42:50.0793 0x0d50  [ 4E9C2DB10F7E6AE91BF761139D4B745B, 8F63F78294F5585D599A114AF449DCC447CCB239D0F0B490BFE6B34A2146E730 ] C:\Windows\System32\shacct.dll
    14:42:50.0793 0x0d50  C:\Windows\System32\shacct.dll - ok
    14:42:50.0793 0x0d50  [ 5B3EBFC3DA142324B388DDCC4465E1FF, 5D58642305311F9BC9B779C9598BFC4E7433B3EA58404BF1FF9466838A2328C7 ] C:\Windows\System32\samlib.dll
    14:42:50.0793 0x0d50  C:\Windows\System32\samlib.dll - ok
    14:42:50.0809 0x0d50  [ F06BB4E336EA57511FDBAFAFCC47DE62, BE43EC62548E9FF89A9495A1722E22DBB76EEC3764F86E64057B636F27D15765 ] C:\Windows\System32\propsys.dll
    14:42:50.0809 0x0d50  C:\Windows\System32\propsys.dll - ok
    14:42:50.0809 0x0d50  [ D29E998E8277666982B4F0303BF4E7AF, 4F19AB5DC173E278EBE45832F6CEAA40E2DF6A2EDDC81B2828122442FE5D376C ] C:\Windows\System32\uxtheme.dll
    14:42:50.0809 0x0d50  C:\Windows\System32\uxtheme.dll - ok
    14:42:50.0809 0x0d50  [ 9861BD70267A5B3627B90071AED7CE0D, 56D73EC41E25D934DA9E912701AF180FC37C4D73600380E9124A850B405C5684 ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18834_none_2b26557a71eb7442\GdiPlus.dll
    14:42:50.0809 0x0d50  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18834_none_2b26557a71eb7442\GdiPlus.dll - ok
    14:42:50.0809 0x0d50  [ 3CB6A7286422C72C34DAB54A5DFF1A34, 98D21EFFF511E407336A226420701E82554DA01FA05661303836B6860D63749D ] C:\Windows\System32\dui70.dll
    14:42:50.0809 0x0d50  C:\Windows\System32\dui70.dll - ok
    14:42:50.0824 0x0d50  [ 8CCDE014A4CDF84564E03ACE064CA753, DD663029B2EB7B12FDB00FCE403D8326141E540E3B9CE84CD5871473D3E2E2CF ] C:\Windows\System32\duser.dll
    14:42:50.0824 0x0d50  C:\Windows\System32\duser.dll - ok
    14:42:50.0824 0x0d50  [ D7F1EF374A90709B31591823B002F918, 05FD2837C9B03D14BB2A969C1AD77CAEF047D93DC5D0F6C2ACBF0888E8F7B359 ] C:\Windows\System32\SndVolSSO.dll
    14:42:50.0824 0x0d50  C:\Windows\System32\SndVolSSO.dll - ok
    14:42:50.0824 0x0d50  [ 896F15A6434D93EDB42519D5E18E6B50, 9263F0CEC58D45EBE3FB9C3061FB9392C55A7933B84B4592E6EE13CFC86D5A50 ] C:\Windows\System32\hid.dll
    14:42:50.0824 0x0d50  C:\Windows\System32\hid.dll - ok
    14:42:50.0824 0x0d50  [ 227E2C382A1E02F8D4965E664D3BBE43, 1CFF20A8BF87ACE4FA4935EBEED72BFB1A1FE902A754899E2F50798D67DF5642 ] C:\Windows\System32\MMDevAPI.dll
    14:42:50.0824 0x0d50  C:\Windows\System32\MMDevAPI.dll - ok
    14:42:50.0840 0x0d50  [ DDFCECAADEE51EFB82A0548BE5EBD8AC, DDB2FEB4B4FF6407EA7461968DA94B9D241BBE63B8F8F88A2C051FABD5922D90 ] C:\Windows\System32\dwmapi.dll
    14:42:50.0840 0x0d50  C:\Windows\System32\dwmapi.dll - ok
    14:42:50.0840 0x0d50  [ 6F8B48F3D343E4B186AB6A9E302B7E16, 54DB52FC56509E61DF68BD251B3286E6CBE1A91D9BC4D950940A61FE2DA04DF8 ] C:\Windows\System32\xmllite.dll
    14:42:50.0840 0x0d50  C:\Windows\System32\xmllite.dll - ok
    14:42:50.0840 0x0d50  [ 0A4D03A4C0F908B15B8A4C48FB18F197, C84534817005245E6AC225D2197761D25D3117F3A9FAA841BD7B4B51AC4740DA ] C:\Windows\System32\WindowsCodecs.dll
    14:42:50.0840 0x0d50  C:\Windows\System32\WindowsCodecs.dll - ok
    14:42:50.0856 0x0d50  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D, 19959D18601712901F03B83150D15E34EBCAB355BB4692C9A28511A72F57FC66 ] C:\Windows\System32\winbrand.dll
    14:42:50.0856 0x0d50  C:\Windows\System32\winbrand.dll - ok
    14:42:50.0856 0x0d50  [ C2762A57DF0EE85E63CE4893C5215313, DDE22212D78353633CEDE27D7210469DE674563991105563CF64CCCE2D0743BD ] C:\Windows\System32\VaultCredProvider.dll
    14:42:50.0856 0x0d50  C:\Windows\System32\VaultCredProvider.dll - ok
    14:42:50.0856 0x0d50  [ 8563BA40DF4F1E93A61B70E2C8B60CF8, E5CAA520CBE61FAF3EAA784A51ED30E0CB2FD78EFD8AE1D5C6B0FE43A1009F39 ] C:\Windows\System32\SmartcardCredentialProvider.dll
    14:42:50.0856 0x0d50  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
    14:42:50.0856 0x0d50  [ BF352E73615F5461AA6884472435A544, 4B059E79325C5F08CD6FBBE6352E17ADB64B9608CC9EDB36A2DF4D148060C309 ] C:\Windows\System32\BioCredProv.dll
    14:42:50.0856 0x0d50  C:\Windows\System32\BioCredProv.dll - ok
    14:42:50.0871 0x0d50  [ 796B8123A7859AFD3A4AE10514DBAEB5, E76F69FAFEC3D66263ED95F3FA9EE309BDDACB287E30583A147DC97F6EEB8844 ] C:\Windows\System32\winbio.dll
    14:42:50.0871 0x0d50  C:\Windows\System32\winbio.dll - ok
    14:42:50.0871 0x0d50  [ 4403D5ECE7D8323CAF1207D1AA38FA01, BD0B34DCF658D3CB91C1B55E9E730C5F7C571AFC2BFA09270C377B72B6830D48 ] C:\Windows\System32\credui.dll
    14:42:50.0871 0x0d50  C:\Windows\System32\credui.dll - ok
    14:42:50.0871 0x0d50  [ 44B9C66177651F3F53C87B665D58D17A, 3FC426115FF87570889DB28D71970B82B525D2A4B9A00EDD273BF083B77A05CE ] C:\Windows\System32\vaultcli.dll
    14:42:50.0871 0x0d50  C:\Windows\System32\vaultcli.dll - ok
    14:42:50.0871 0x0d50  [ EEEA40F0EDB0A6E5359E539E15D0BC77, BFCBF777239C29C6AC4BC5B59591308571647B7C7FDB5571903F7403DD241E8E ] C:\Windows\System32\netapi32.dll
    14:42:50.0871 0x0d50  C:\Windows\System32\netapi32.dll - ok
    14:42:50.0887 0x0d50  [ 6CECA4C6A489C9B2E6073AFDAAE3F607, 127506D1DB38275614CBEB047C133718EF9D03266BA9C98BE55EC7847CFC9C3D ] C:\Windows\System32\netutils.dll
    14:42:50.0887 0x0d50  C:\Windows\System32\netutils.dll - ok
    14:42:50.0887 0x0d50  [ 3C91392D448F6E5D525A85B7550D8BA9, 6FD0DC73DBE7519E2C643554C2A7F8FBE4F9A678C4241BB54B3C6E65D2ABCF3A ] C:\Windows\System32\wkscli.dll
    14:42:50.0887 0x0d50  C:\Windows\System32\wkscli.dll - ok
    14:42:50.0887 0x0d50  [ FC51229C7D4AFA0D6F186133728B95AB, 37E58C8E1C8437D1981725A5DCDACA7316CEFBB570370CEFC8D122F523B96AC0 ] C:\Windows\System32\samcli.dll
    14:42:50.0887 0x0d50  C:\Windows\System32\samcli.dll - ok
    14:42:50.0887 0x0d50  [ 972C3301DB3DA91AE06A95F6B4160B1B, 678B533A06C306295FE97DC26CE9BAFFC8EAF1FB7405ACB040719099717744D5 ] C:\Windows\System32\certCredProvider.dll
    14:42:50.0887 0x0d50  C:\Windows\System32\certCredProvider.dll - ok
    14:42:50.0902 0x0d50  [ 7097425051CE67B450EBF2B1390AE492, 45354BA04E383B65D13A073F63EA5EA185D8B0C1E208B6671ED8EBC64711D109 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
    14:42:50.0902 0x0d50  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
    14:42:50.0902 0x0d50  [ 87FA0C48C3B2E9FEE518818FE26B15B5, DA4042DE9897397AEDCEFF9F69746726237305DDE64464309B6DCC45E05E42F4 ] C:\Windows\System32\rasplap.dll
    14:42:50.0902 0x0d50  C:\Windows\System32\rasplap.dll - ok
    14:42:50.0902 0x0d50  [ 019CD868461B646E09BDF04474C19341, 01837EFACB02E52BC6E90C90C4CB01B11D56E449A37EA4FC2695507FF85EA9FE ] C:\Windows\System32\rasapi32.dll
    14:42:50.0902 0x0d50  C:\Windows\System32\rasapi32.dll - ok
    14:42:50.0918 0x0d50  [ B28DEEC597C8DEB70C744C7CF9210E3E, E777F192D822990CA6301B3FEA2AEA213FA7901438EB3328914ADF02B6C39DB9 ] C:\Windows\System32\rasman.dll
    14:42:50.0918 0x0d50  C:\Windows\System32\rasman.dll - ok
    14:42:50.0918 0x0d50  [ B53C4B69B695EDA1B7E41D35CA4244E2, 3D98E9B263CADA576E4057E059AFC867F6E3F1001F3B73C8BCF9066763A45D9D ] C:\Windows\System32\rtutils.dll
    14:42:50.0918 0x0d50  C:\Windows\System32\rtutils.dll - ok
    14:42:50.0918 0x0d50  [ 8C0873EE3BFF42DEA72CA59D2C1AC265, F579743539E469853C25F93ECF3C42B80E4C12D231651160EC04161A7586C565 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
    14:42:50.0918 0x0d50  C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
    14:42:50.0918 0x0d50  [ 6011714C8C5C55CBFFAD24D61E879FBD, 75D615082A1C71C6ED3ABB49EDAF660EE538D112CF79B9C8AF0A583D1CE1BBB0 ] C:\Windows\System32\wevtsvc.dll
    14:42:50.0918 0x0d50  C:\Windows\System32\wevtsvc.dll - ok
    14:42:50.0934 0x0d50  [ F30EE66C9CAD443171D60D1D0E3B95E0, CE69E6F8573D1280426F31219072133B3C5E93718534F6EDB70682050C3685E5 ] C:\Program Files\Microsoft Security Client\MpCommu.dll
    14:42:50.0934 0x0d50  C:\Program Files\Microsoft Security Client\MpCommu.dll - ok
    14:42:50.0934 0x0d50  [ 58F4493BF748A3A89689997B7BD00E95, EC5DEEC73E357C7C87B001275C4E635011A9CF39419F2B86E2C2B8D7E388C551 ] C:\Windows\System32\winhttp.dll
    14:42:50.0934 0x0d50  C:\Windows\System32\winhttp.dll - ok
    14:42:50.0934 0x0d50  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] C:\Windows\System32\audiosrv.dll
    14:42:50.0934 0x0d50  C:\Windows\System32\audiosrv.dll - ok
    14:42:50.0949 0x0d50  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] C:\Windows\System32\mmcss.dll
    14:42:50.0949 0x0d50  C:\Windows\System32\mmcss.dll - ok
    14:42:50.0949 0x0d50  [ 78A1E65207484B7F8D3217507745F47C, 35F413ADB9D157F3666DD15DD58104D629CD9143198A1AB914B73A4A3C9903DD ] C:\Windows\System32\avrt.dll
    14:42:50.0949 0x0d50  C:\Windows\System32\avrt.dll - ok
    14:42:50.0949 0x0d50  [ E612E86FA15EA1EF9A52433A2743C447, 8A66164541D2EE2334B6DE3995C31138EA85E3A06BC7FD901E60D345E4E1E8A8 ] C:\Windows\System32\FntCache.dll
    14:42:50.0949 0x0d50  C:\Windows\System32\FntCache.dll - ok
    14:42:50.0965 0x0d50  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] C:\Windows\System32\netprofm.dll
    14:42:50.0965 0x0d50  C:\Windows\System32\netprofm.dll - ok
    14:42:50.0965 0x0d50  [ 603EBD34E216C5654A2D774EAC98D278, ACE0171BB780DB2C1B1A8BF6FA8CF51C529D7E09141FA504C7199AF764FD9A36 ] C:\Windows\System32\webio.dll
    14:42:50.0965 0x0d50  C:\Windows\System32\webio.dll - ok
    14:42:50.0965 0x0d50  [ 7D2BE9D3B98D669A6357C2EA6B1C14A7, 6946854F67F00FF95619E8042C2011538F2F22F23BC7F1D6C4F394F6F46F1144 ] C:\Program Files\Microsoft Security Client\MpRTP.dll
    14:42:50.0965 0x0d50  C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
    14:42:50.0980 0x0d50  [ 6E974F1C384615DEB0710E44F4847351, C4480AAB7DF230D4AD4277DC6312069E75E44BCCDADBE313551DA17581CBD17F ] C:\Windows\System32\audiodg.exe
    14:42:50.0980 0x0d50  C:\Windows\System32\audiodg.exe - ok
    14:42:50.0980 0x0d50  [ F3D202F53A222D5F6944D459B73CF967, E9F1D48EB333D32331BCFD0348FE07BEE7D5352292E6020571DA395F596AFFE7 ] C:\Windows\System32\fltLib.dll
    14:42:50.0980 0x0d50  C:\Windows\System32\fltLib.dll - ok
    14:42:50.0996 0x0d50  [ 6C13B5D54BF9852D7761C18C6E3FEC5A, 36E2C4BC7FAD7A8605821F881174C163D3E03C0BC94D17ADD124A7843685E8EB ] C:\Program Files\Microsoft Security Client\MsMpLics.dll
    14:42:50.0996 0x0d50  C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok
    14:42:50.0996 0x0d50  [ 6ACFCC28E4D60B5A931D8749332A14E2, 1D427C4DE4FC38F4A87C247E8F5437EA04E1FB4F7ECA09F88A1C95FDDA0C1DAB ] C:\Windows\System32\adtschema.dll
    14:42:50.0996 0x0d50  C:\Windows\System32\adtschema.dll - ok
    14:42:50.0996 0x0d50  [ 73150F67D20270FF95A021A22E64F28A, A8878DEFBE437FB453F8E9243FB5C787D07AC7415A4475388D479C10417C524F ] C:\Windows\System32\drivers\MpFilter.sys
    14:42:50.0996 0x0d50  C:\Windows\System32\drivers\MpFilter.sys - ok
    14:42:50.0996 0x0d50  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] C:\Windows\System32\wlansvc.dll
    14:42:50.0996 0x0d50  C:\Windows\System32\wlansvc.dll - ok
    14:42:51.0012 0x0d50  [ F112A9DCFF8E2A34D15F45CB6127EF1C, 57D82783740D11FB8F965A7E6F547988261D5D8B2A45C13E0A21199C7252E11F ] C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll
    14:42:51.0012 0x0d50  C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll - ok
    14:42:51.0012 0x0d50  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] C:\Windows\System32\profsvc.dll
    14:42:51.0012 0x0d50  C:\Windows\System32\profsvc.dll - ok
    14:42:51.0012 0x0d50  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] C:\Windows\System32\gpsvc.dll
    14:42:51.0012 0x0d50  C:\Windows\System32\gpsvc.dll - ok
    14:42:51.0027 0x0d50  [ 50544D04AD845C43130B70212EC05CCD, B2E6B558DE7D273512226685FF53ED17C9B4BF81B739FBCA5D3FC82DF8D2BCF7 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
    14:42:51.0027 0x0d50  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
    14:42:51.0027 0x0d50  [ 58775492FFD419248B08325E583C527F, DBB013971F5894F25C222C2D4D50A29DB6DF3C413792EE9CCC1A9E6D85469093 ] C:\Windows\System32\atl.dll
    14:42:51.0027 0x0d50  C:\Windows\System32\atl.dll - ok
    14:42:51.0027 0x0d50  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] C:\Windows\System32\themeservice.dll
    14:42:51.0027 0x0d50  C:\Windows\System32\themeservice.dll - ok
    14:42:51.0027 0x0d50  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] C:\Windows\System32\es.dll
    14:42:51.0027 0x0d50  C:\Windows\System32\es.dll - ok
    14:42:51.0043 0x0d50  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] C:\Windows\System32\MPSSVC.dll
    14:42:51.0043 0x0d50  C:\Windows\System32\MPSSVC.dll - ok
    14:42:51.0043 0x0d50  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] C:\Windows\System32\Sens.dll
    14:42:51.0043 0x0d50  C:\Windows\System32\Sens.dll - ok
    14:42:51.0043 0x0d50  [ 46BB91A169B9B31FF44EB04C48EC1D41, 8115B533D3A5BE07633FA54FA8847E3DEC00C5BEB193CF2FBE88428D23E2B3D6 ] C:\Windows\System32\nlaapi.dll
    14:42:51.0043 0x0d50  C:\Windows\System32\nlaapi.dll - ok
    14:42:51.0043 0x0d50  [ A77BE7CB3222B4FB0AC6C71D1C2698D4, 73566223914BF670DF6B5931FA213E546713531B10391ED65B5256BBD7ABDE7F ] C:\Windows\System32\dsrole.dll
    14:42:51.0043 0x0d50  C:\Windows\System32\dsrole.dll - ok
    14:42:51.0058 0x0d50  [ 1A47D52E303B7543E4E6026595B95422, C577CD3837546A7CED5D2E8E97FA2EDACA133B4A8595770EF96CAE519BFE280F ] C:\Windows\System32\comres.dll
    14:42:51.0058 0x0d50  C:\Windows\System32\comres.dll - ok
    14:42:51.0058 0x0d50  [ BE097F5BB10F9079FCEB2DC4E7E20F02, 90A88986C8C5F30FB153EC803FEDA6572B2C2630A6C9578FCC017800692694D5 ] C:\Windows\System32\slc.dll
    14:42:51.0058 0x0d50  C:\Windows\System32\slc.dll - ok
    14:42:51.0058 0x0d50  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] C:\Windows\System32\uxsms.dll
    14:42:51.0058 0x0d50  C:\Windows\System32\uxsms.dll - ok
    14:42:51.0074 0x0d50  [ 9BC8610C32C96A2983A65DC21CAFA921, 2A4195F663C9D55939E3D8FEAA208090FDB0B8801A60164A7325B53104797CBC ] C:\Windows\System32\UXInit.dll
    14:42:51.0074 0x0d50  C:\Windows\System32\UXInit.dll - ok
    14:42:51.0074 0x0d50  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] C:\Windows\System32\drivers\lltdio.sys
    14:42:51.0074 0x0d50  C:\Windows\System32\drivers\lltdio.sys - ok
    14:42:51.0074 0x0d50  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] C:\Windows\System32\drivers\fltMgr.sys
    14:42:51.0074 0x0d50  C:\Windows\System32\drivers\fltMgr.sys - ok
    14:42:51.0074 0x0d50  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] C:\Windows\System32\drivers\nwifi.sys
    14:42:51.0074 0x0d50  C:\Windows\System32\drivers\nwifi.sys - ok
    14:42:51.0090 0x0d50  [ A3DB3C17EE6CAE65D53602B4E80BCCBC, D802A7C6161F937DC42A6E45FE1BB2C8272819F92C294C180EBCDF8FF72CBFDC ] C:\Windows\System32\PSHED.DLL
    14:42:51.0090 0x0d50  C:\Windows\System32\PSHED.DLL - ok
    14:42:51.0090 0x0d50  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] C:\Windows\System32\drivers\ndisuio.sys
    14:42:51.0090 0x0d50  C:\Windows\System32\drivers\ndisuio.sys - ok
    14:42:51.0090 0x0d50  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] C:\Windows\System32\termsrv.dll
    14:42:51.0090 0x0d50  C:\Windows\System32\termsrv.dll - ok
    14:42:51.0090 0x0d50  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] C:\Windows\System32\drivers\rspndr.sys
    14:42:51.0090 0x0d50  C:\Windows\System32\drivers\rspndr.sys - ok
    14:42:51.0105 0x0d50  [ 5AA945234E9D4CCE4F715276B9AA712C, 65165BD131056816F009D987FC78AC86FFE0C3C38A27E73F873586B7FF4D59CF ] C:\Windows\System32\imageres.dll
    14:42:51.0105 0x0d50  C:\Windows\System32\imageres.dll - ok
    14:42:51.0105 0x0d50  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] C:\Windows\System32\nsisvc.dll
    14:42:51.0105 0x0d50  C:\Windows\System32\nsisvc.dll - ok
    14:42:51.0105 0x0d50  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] C:\Windows\System32\lmhsvc.dll
    14:42:51.0105 0x0d50  C:\Windows\System32\lmhsvc.dll - ok
    14:42:51.0121 0x0d50  [ F9EC845C5EECF20E9A67F9F805F2EF1F, C3DBA8CF93DBF50954B1BF6D7EF3F6F5DD1A56DC62B7EB2749C54D9B65D9BB43 ] C:\Windows\System32\keyiso.dll
    14:42:51.0121 0x0d50  C:\Windows\System32\keyiso.dll - ok
    14:42:51.0121 0x0d50  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] C:\Windows\System32\dnsrslvr.dll
    14:42:51.0121 0x0d50  C:\Windows\System32\dnsrslvr.dll - ok
    14:42:51.0121 0x0d50  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] C:\Windows\System32\eapsvc.dll
    14:42:51.0121 0x0d50  C:\Windows\System32\eapsvc.dll - ok
    14:42:51.0121 0x0d50  [ 2B81776DA02017A37FE26C662827470E, A656353C50EE08422145D00DB9CFD9F6D3E664753B3C454B171E2A56A8AA94DC ] C:\Windows\System32\IPHLPAPI.DLL
    14:42:51.0121 0x0d50  C:\Windows\System32\IPHLPAPI.DLL - ok
    14:42:51.0136 0x0d50  [ 87356377F31DA5F20A833811CD59499C, 4FEC1FD3AC4E4E34DCBC0109B248952604F438C84B1604EB9E2359FA721E23C4 ] C:\Windows\System32\eapphost.dll
    14:42:51.0136 0x0d50  C:\Windows\System32\eapphost.dll - ok
    14:42:51.0136 0x0d50  [ 4C9210E8F4E052F6A4EB87716DA0C24C, 460F7990BDADB7D58D6DC95B094D30A2EFDC4CEED444B18A2F36E8D9076FB8B9 ] C:\Windows\System32\winnsi.dll
    14:42:51.0136 0x0d50  C:\Windows\System32\winnsi.dll - ok
    14:42:51.0136 0x0d50  [ D07EB640618F96490DB88C3CE58DB608, 0C553971259632031E6856A94EEB937D571627FC7CF061CCFC040F4BF0CFF259 ] C:\Windows\System32\FWPUCLNT.DLL
    14:42:51.0136 0x0d50  C:\Windows\System32\FWPUCLNT.DLL - ok
    14:42:51.0152 0x0d50  [ B73A6E4B319AFFE64582AC5C1801BB3F, 274EEA0743DC659180E691654CBB17136E9E9D83B07E302B47EA5B103EA57710 ] C:\Windows\System32\nrpsrv.dll
    14:42:51.0152 0x0d50  C:\Windows\System32\nrpsrv.dll - ok
    14:42:51.0152 0x0d50  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] C:\Windows\System32\dhcpcore.dll
    14:42:51.0152 0x0d50  C:\Windows\System32\dhcpcore.dll - ok
    14:42:51.0152 0x0d50  [ 885D0942E0F28DB90919BE3129ECF279, 5A10D90EE656ECE3DCA174D6F924641509819FC20CB6EF46B5E1723E52DE85BE ] C:\Windows\System32\dnsext.dll
    14:42:51.0152 0x0d50  C:\Windows\System32\dnsext.dll - ok
    14:42:51.0168 0x0d50  [ 3CC16A849E6092E43909F48EF0E60306, 610B576654A69415E4F2FEDB6BA384C77715944E4F89BD2821B311968CA8D810 ] C:\Windows\System32\dhcpcore6.dll
    14:42:51.0168 0x0d50  C:\Windows\System32\dhcpcore6.dll - ok
    14:42:51.0168 0x0d50  [ F568F7C08458D69E4FCD8675BBB107E4, A5FA25ECF248999A68CCECFBB508BFA1ADD18A23E20A9A9081A87C41CAAA36C0 ] C:\Windows\System32\dhcpcsvc.dll
    14:42:51.0168 0x0d50  C:\Windows\System32\dhcpcsvc.dll - ok
    14:42:51.0168 0x0d50  [ A648C4A06DE367065B24056D067B4460, 2412487D65A833DDD9AB17D039515CC08DA22D006259EC4B03E42475FAFFD2AD ] C:\Windows\System32\wlanmsm.dll
    14:42:51.0168 0x0d50  C:\Windows\System32\wlanmsm.dll - ok
    14:42:51.0168 0x0d50  [ 9FCA3A84338ADEF2AFF67CDA46EF8539, 087DF72096852AE98C56990EE6E68835BE95E7E49ECDDE8B54DAC11C9E07FE94 ] C:\Windows\System32\umb.dll
    14:42:51.0168 0x0d50  C:\Windows\System32\umb.dll - ok
    14:42:51.0183 0x0d50  [ 06A1386B6E3A0CBC368665C1840906F4, C10BCA5092A0B3F9435CE4D65C7449528C89F5C5243B410878D2EBF516DA2FB2 ] C:\Windows\System32\wlansec.dll
    14:42:51.0183 0x0d50  C:\Windows\System32\wlansec.dll - ok
    14:42:51.0183 0x0d50  [ 3C06D5A929B798D0B13F6481242A0FD2, CE6127A31AB09E21A912CA16E4BDF663E9D05C254CCF9090A8B5A9A2E055EFF3 ] C:\Windows\System32\dhcpcsvc6.dll
    14:42:51.0183 0x0d50  C:\Windows\System32\dhcpcsvc6.dll - ok
    14:42:51.0183 0x0d50  [ B0945E538CF906BBDDC5A11C8EE868CC, 5F3459F6512918835F7C9400905EC7C1FAEAA7114E0D28C522040C359E3B93F7 ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
    14:42:51.0183 0x0d50  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
    14:42:51.0199 0x0d50  [ 73FCB7919DEE80EE556F2E498594EBAE, D0F7A0AD3BC33263E9C2CF9787DD326436F9E0C9F5031D769F8A43C64C08A762 ] C:\Windows\System32\onex.dll
    14:42:51.0199 0x0d50  C:\Windows\System32\onex.dll - ok
    14:42:51.0199 0x0d50  [ 65522E77A1360DBC8D199DA3BF5EFFE4, E9D748070FA478A3D37F15049F998D340885C0DC5FCE03BFCE5D521C9EBA7350 ] C:\Windows\System32\eappprxy.dll
    14:42:51.0199 0x0d50  C:\Windows\System32\eappprxy.dll - ok
    14:42:51.0199 0x0d50  [ 0D753307D274F3688BD21C377B616700, 5DD08E77A11F2561FB96BA212FDDFE21D4394C69C34C3EB88F7F5CD068EE55BF ] C:\Windows\System32\eappcfg.dll
    14:42:51.0199 0x0d50  C:\Windows\System32\eappcfg.dll - ok
    14:42:51.0199 0x0d50  [ 730BF204A595D5B6D7DC57A247CC741C, 264C6901F4A49B738BBD04BCA1783DEE892885BADE9085B0AEA40BAE7CC0A218 ] C:\Windows\System32\wlgpclnt.dll
    14:42:51.0199 0x0d50  C:\Windows\System32\wlgpclnt.dll - ok
    14:42:51.0214 0x0d50  [ 97E43F324BE1503CB2FFB058534688DA, 50C781DF38D0D38C9A5420AB1FFF8672DC13FD1ED8E9F5432B4BA3077A7435D5 ] C:\Windows\System32\l2gpstore.dll
    14:42:51.0214 0x0d50  C:\Windows\System32\l2gpstore.dll - ok
    14:42:51.0214 0x0d50  [ 7F1B4C6FF3B85F9ADF74055187B8A22C, CC95DA5662638AACBE9643DCB236464C2C2095A8D5CDC8A747045870BE9D0E7D ] C:\Windows\System32\wlanutil.dll
    14:42:51.0214 0x0d50  C:\Windows\System32\wlanutil.dll - ok
    14:42:51.0214 0x0d50  [ 7D5645EE0EA77D539828433D9B95F5EB, EEF81E9B2205FC456DB6095AD0AEAB38BB131D3BCD090EA6CD91D5568ACAFB7F ] C:\Windows\System32\WinSCard.dll
    14:42:51.0214 0x0d50  C:\Windows\System32\WinSCard.dll - ok
    14:42:51.0230 0x0d50  [ 0E3A7EC2B9590EA7767BBB1823630DEA, 6858B7050465DB8505CF9E932868B123B925376C05363EA5A9198B2AE15CF728 ] C:\Windows\System32\msxml6.dll
    14:42:51.0230 0x0d50  C:\Windows\System32\msxml6.dll - ok
    14:42:51.0230 0x0d50  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] C:\Windows\System32\shsvcs.dll
    14:42:51.0230 0x0d50  C:\Windows\System32\shsvcs.dll - ok
    14:42:51.0230 0x0d50  [ 43FAB56AE5F639AD59D7209693F4C4C2, C64155944DA774A80D443A0E6DCC40A3405D9C69CA3EBC95CA46BFD65C7A4908 ] C:\Windows\System32\wlanext.exe
    14:42:51.0230 0x0d50  C:\Windows\System32\wlanext.exe - ok
    14:42:51.0230 0x0d50  [ 48C30C54194142910FB6B86D308220ED, 51E6B2149751E646E85078A4B24D6ED4696C5F379801273796259C72640F4F42 ] C:\Windows\System32\conhost.exe
    14:42:51.0230 0x0d50  C:\Windows\System32\conhost.exe - ok
    14:42:51.0230 0x0d50  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] C:\Windows\System32\schedsvc.dll
    14:42:51.0230 0x0d50  C:\Windows\System32\schedsvc.dll - ok
    14:42:51.0246 0x0d50  [ BC414631876B2F28B8DAB08E849C12C5, 5973654AA3E90E6B699B0A43F645B893D95BAA803129B6967D746C8239AB26E3 ] C:\Windows\System32\ktmw32.dll
    14:42:51.0246 0x0d50  C:\Windows\System32\ktmw32.dll - ok
    14:42:51.0246 0x0d50  [ D7C4197F40DC7F877F975D329F036322, 10BB44E1CAC5E5B1E6288CBC01C726FCCDB7197F4B264198B477415559EBE63F ] C:\Windows\System32\bcmihvsrv64.dll
    14:42:51.0246 0x0d50  C:\Windows\System32\bcmihvsrv64.dll - ok
    14:42:51.0246 0x0d50  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7, 4BC5A1279885EEFBEB27333AF719622A5FCDD9606697692C1978E434CE264D80 ] C:\Windows\System32\taskcomp.dll
    14:42:51.0246 0x0d50  C:\Windows\System32\taskcomp.dll - ok
    14:42:51.0262 0x0d50  [ 945E54F23C72D37B8CD1987AF0DB63BF, C2B217C94DBCA0A31ED834B9D492B53B25B235DDD02B1D1200E76609D32772EA ] C:\Windows\System32\fveapi.dll
    14:42:51.0262 0x0d50  C:\Windows\System32\fveapi.dll - ok
    14:42:51.0263 0x0d50  [ 694865362F0965779F92BCFE97712323, 825EB75E37AFE9B738869FB5D95020D4F44AD419C2F6C5A658F82A5242FDEF6C ] C:\Windows\System32\tbs.dll
    14:42:51.0263 0x0d50  C:\Windows\System32\tbs.dll - ok
    14:42:51.0263 0x0d50  [ 891ECFD08E2C538B7948CBC45106D697, 628D0D618FF3A70E9FBE3B2C7206C9365ED2297784A5F10FFA05BD2C56657013 ] C:\Windows\System32\fvecerts.dll
    14:42:51.0263 0x0d50  C:\Windows\System32\fvecerts.dll - ok
    14:42:51.0263 0x0d50  [ 8269210DAF3B12BC8300631B28A2A442, EABEB792C2EA8D4A1A7B13281CF557C194D5667AE0BA2A2D5664908D8269113D ] C:\Windows\System32\wiarpc.dll
    14:42:51.0263 0x0d50  C:\Windows\System32\wiarpc.dll - ok
    14:42:51.0263 0x0d50  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] C:\Windows\System32\drivers\http.sys
    14:42:51.0263 0x0d50  C:\Windows\System32\drivers\http.sys - ok
    14:42:51.0279 0x0d50  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] C:\Windows\System32\spoolsv.exe
    14:42:51.0279 0x0d50  C:\Windows\System32\spoolsv.exe - ok
    14:42:51.0279 0x0d50  [ 357BE883C5236BFC7341CB9E82308908, 4DDB697FD9B7C516CF99D73C8799EA35BB97E2431216CD7C1045F17B06109FBF ] C:\Windows\System32\wlanapi.dll
    14:42:51.0279 0x0d50  C:\Windows\System32\wlanapi.dll - ok
    14:42:51.0279 0x0d50  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] C:\Windows\System32\BFE.DLL
    14:42:51.0279 0x0d50  C:\Windows\System32\BFE.DLL - ok
    14:42:51.0294 0x0d50  [ A8EDB86FC2A4D6D1285E4C70384AC35A, 61B8955CE0A2AA9D0719920B30216717B349B6FBE11C697C31CFA84F859CC1AE ] C:\Windows\System32\dllhost.exe
    14:42:51.0294 0x0d50  C:\Windows\System32\dllhost.exe - ok
    14:42:51.0294 0x0d50  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] C:\Windows\System32\drivers\bowser.sys
    14:42:51.0294 0x0d50  C:\Windows\System32\drivers\bowser.sys - ok
    14:42:51.0294 0x0d50  [ 51F89CE2D0FEC66070354504E6C4C3E4, 565CC85156C39FB89762757EF6A935FC42DB2599A5E49643447D30C8B9371133 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18837_none_a4d981ff711297b6\comctl32.dll
    14:42:51.0294 0x0d50  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18837_none_a4d981ff711297b6\comctl32.dll - ok
    14:42:51.0294 0x0d50  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] C:\Windows\System32\drivers\mpsdrv.sys
    14:42:51.0294 0x0d50  C:\Windows\System32\drivers\mpsdrv.sys - ok
    14:42:51.0310 0x0d50  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] C:\Windows\System32\drivers\mrxsmb.sys
    14:42:51.0310 0x0d50  C:\Windows\System32\drivers\mrxsmb.sys - ok
    14:42:51.0310 0x0d50  [ C67F8A962B2534224D5908D16D2AD3CE, CAC1821F5E867285638AEE7AE33CE574BCCF16277AC5AD805650B48F7759B4B4 ] C:\Windows\System32\wfapigp.dll
    14:42:51.0310 0x0d50  C:\Windows\System32\wfapigp.dll - ok
    14:42:51.0310 0x0d50  [ A0A2C1D812C231C9BFE119FDC68E341B, F94446594EE17505956A715DFB28B51D09F00A7A65E56950661B889A57DE8FA8 ] C:\Windows\System32\IDStore.dll
    14:42:51.0310 0x0d50  C:\Windows\System32\IDStore.dll - ok
    14:42:51.0326 0x0d50  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] C:\Windows\System32\drivers\mrxsmb10.sys
    14:42:51.0326 0x0d50  C:\Windows\System32\drivers\mrxsmb10.sys - ok
    14:42:51.0326 0x0d50  [ 03706015DB44368375AEBE6339490E66, 02EB28B5156E320C1EBABC03D37E94EB770A721B99E1DD276F8DC2A50D76C381 ] C:\Windows\System32\netcfgx.dll
    14:42:51.0326 0x0d50  C:\Windows\System32\netcfgx.dll - ok
    14:42:51.0326 0x0d50  [ 639774C9ACD063F028F6084ABF5593AD, 9DFD80610CBBC9188F6C6BC85C87016B0AE42254FC289C2B578E85282BDD9C23 ] C:\Windows\System32\taskhost.exe
    14:42:51.0326 0x0d50  C:\Windows\System32\taskhost.exe - ok
    14:42:51.0341 0x0d50  [ 1834B31C749B86DAC233BBBA1C03BC48, 27FCA9196842C0BB53CCAD895870A0EB10D2F8ED67E5486A4437067BD4BC4448 ] C:\Windows\System32\mscms.dll
    14:42:51.0341 0x0d50  C:\Windows\System32\mscms.dll - ok
    14:42:51.0341 0x0d50  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] C:\Windows\System32\drivers\mrxsmb20.sys
    14:42:51.0341 0x0d50  C:\Windows\System32\drivers\mrxsmb20.sys - ok
    14:42:51.0341 0x0d50  [ 23566F9723771108D2E6CD768AC27407, FAC0293DD1061B151E779BF4B245E6652C951FEDEBC602A166156DFBD38B5D67 ] C:\Windows\System32\AtBroker.exe
    14:42:51.0341 0x0d50  C:\Windows\System32\AtBroker.exe - ok
    14:42:51.0341 0x0d50  [ 9BB99503D6A4DD62569EDE9E5E2672A5, 6F4EA5BC50B1F929735246485263078BEF1B3BEB33F78CB1F483F13AA226C27E ] C:\Windows\System32\HotStartUserAgent.dll
    14:42:51.0341 0x0d50  C:\Windows\System32\HotStartUserAgent.dll - ok
    14:42:51.0357 0x0d50  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] C:\Windows\System32\pcasvc.dll
    14:42:51.0357 0x0d50  C:\Windows\System32\pcasvc.dll - ok
    14:42:51.0357 0x0d50  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA, 8A6ACEFAB95E5275CBFBE6CCB5A6C3A6A471260B279B9063E86B9C7765E18656 ] C:\Windows\System32\MsCtfMonitor.dll
    14:42:51.0357 0x0d50  C:\Windows\System32\MsCtfMonitor.dll - ok
    14:42:51.0357 0x0d50  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] C:\Windows\System32\wkssvc.dll
    14:42:51.0357 0x0d50  C:\Windows\System32\wkssvc.dll - ok
    14:42:51.0372 0x0d50  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] C:\Windows\System32\drivers\vwifimp.sys
    14:42:51.0372 0x0d50  C:\Windows\System32\drivers\vwifimp.sys - ok
    14:42:51.0372 0x0d50  [ 6CEF7856A3EFAC59470F6208F0F585CE, 0F7A80DB821FDE6580E9481B6DA44844F717DDB4983B0E3D562BE43726153951 ] C:\Windows\System32\mpr.dll
    14:42:51.0372 0x0d50  C:\Windows\System32\mpr.dll - ok
    14:42:51.0372 0x0d50  [ F09A9A1AD21FE618C4C8B0A0D830C886, 29831DDAB2AB105358FBC067CDF96428220B6743CD6019F6FE74BAC7AF325E7E ] C:\Windows\System32\msutb.dll
    14:42:51.0372 0x0d50  C:\Windows\System32\msutb.dll - ok
    14:42:51.0388 0x0d50  [ 28AD5E311996A34025CFB07E131058DD, 89C8B29105DE5917A33A7682C8A62CB543609F1227A4890D7130646A0F54D946 ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
    14:42:51.0388 0x0d50  C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
    14:42:51.0388 0x0d50  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] C:\Windows\System32\snmptrap.exe
    14:42:51.0388 0x0d50  C:\Windows\System32\snmptrap.exe - ok
    14:42:51.0388 0x0d50  [ D1E343BC00136CE03C4D403194D06A80, 94F2543164A2CEA179EDE53E1294EE24391A59CAEFF83BA5CE9385E8E686E89C ] C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
    14:42:51.0388 0x0d50  C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe - ok
    14:42:51.0404 0x0d50  [ 94EEAC26F57811BD1AEFC164412F7FCE, 7390BCD7709D48DE75D7D6E06AA7356D1C58EE63F3CC2E07ABCD2E2FF6CC81CF ] C:\Windows\System32\PlaySndSrv.dll
    14:42:51.0404 0x0d50  C:\Windows\System32\PlaySndSrv.dll - ok
    14:42:51.0404 0x0d50  [ 88351B29B622B30962D2FEB6CA8D860B, A16CAD7D94C1C9807083BB36E9B4C3C14E6482C4CA2BDFACBCC86E737DDCE42E ] C:\Windows\System32\rasadhlp.dll
    14:42:51.0404 0x0d50  C:\Windows\System32\rasadhlp.dll - ok
    14:42:51.0404 0x0d50  [ BAFE84E637BF7388C96EF48D4D3FDD53, 11C194D9ADCE90027272C627D7FBF3BA5025FF0F7B26A8333F764E11E1382CF9 ] C:\Windows\System32\userinit.exe
    14:42:51.0404 0x0d50  C:\Windows\System32\userinit.exe - ok
    14:42:51.0404 0x0d50  [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051, 8EFD0A6DE6F4E335D342782190008FB5AC84A6ADE49170B310DEC9AC48E623E8 ] C:\Windows\System32\localspl.dll
    14:42:51.0404 0x0d50  C:\Windows\System32\localspl.dll - ok
    14:42:51.0419 0x0d50  [ F5CEF064C7E6D95DA86B9D064A56A969, F118CD4364690F37A07AE458E043E8CFBA98F332DC9E7228C83409CF26F6EF6D ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
    14:42:51.0419 0x0d50  C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
    14:42:51.0419 0x0d50  [ F162D5F5E845B9DC352DD1BAD8CEF1BC, 8A7B7528DB30AB123B060D8E41954D95913C07BB40CDAE32E97F9EDB0BAF79C7 ] C:\Windows\System32\dwm.exe
    14:42:51.0419 0x0d50  C:\Windows\System32\dwm.exe - ok
    14:42:51.0419 0x0d50  [ 522B0466ED967A0762E9AF5B37D8F40A, B14C62D059BC7CF430E1B0F6E18E31EFD1959EFB3025A2B0EBB11751F38DD6D4 ] C:\Windows\System32\esent.dll
    14:42:51.0419 0x0d50  C:\Windows\System32\esent.dll - ok
    14:42:51.0435 0x0d50  [ FCFCD1101C5DA23B4B95F93D02B2C169, 040A086875B6C5475490A2F8B0CF4FF20DDB4FEDFE5FCABBA49692AA05F40527 ] C:\Windows\System32\dwmredir.dll
    14:42:51.0435 0x0d50  C:\Windows\System32\dwmredir.dll - ok
    14:42:51.0435 0x0d50  [ 3285481F5C12305CA104A6C493CA5A0B, ADB39B15D26A954B0F347C7BAFCC76DE5E3CF3CF05736E8987E0832AA7F8563C ] C:\Windows\System32\spoolss.dll
    14:42:51.0435 0x0d50  C:\Windows\System32\spoolss.dll - ok
    14:42:51.0435 0x0d50  [ 332FEAB1435662FC6C672E25BEB37BE3, 6BED1A3A956A859EF4420FEB2466C040800EAF01EF53214EF9DAB53AEFF1CFF0 ] C:\Windows\explorer.exe
    14:42:51.0435 0x0d50  C:\Windows\explorer.exe - ok
    14:42:51.0435 0x0d50  [ 0015ACFBBDD164A8A730009908868CA7, E1FF243AD2CF959FAB81EFE701592414991C03416FF296ADC93906E76B707C4D ] C:\Windows\System32\winspool.drv
    14:42:51.0435 0x0d50  C:\Windows\System32\winspool.drv - ok
    14:42:51.0450 0x0d50  [ 20E761A4D203D5F403B6EC2FB95B7A6B, C26EFD2AEC43F74D09F0DF726B0E5450B482291C1D4388022B9DCDF50E530A24 ] C:\Windows\System32\dwmcore.dll
    14:42:51.0450 0x0d50  C:\Windows\System32\dwmcore.dll - ok
    14:42:51.0450 0x0d50  [ C5AC93CF3BA30D367FB49148A2B673B9, 07B556039BBA841BC9F28979C3AD5D238B55391F921C9C805F3AFC9EFB437766 ] C:\Windows\System32\PrintIsolationProxy.dll
    14:42:51.0450 0x0d50  C:\Windows\System32\PrintIsolationProxy.dll - ok
    14:42:51.0450 0x0d50  [ FA132E1DAB518B28F4B20DB154A647FC, 94D8A253EAC963470E77162830958F67EE6992341DB6FCE81DAE1592AD8582B8 ] C:\Windows\System32\CNMLMB8.DLL
    14:42:51.0450 0x0d50  C:\Windows\System32\CNMLMB8.DLL - ok
    14:42:51.0466 0x0d50  [ 8031E3B568E30BAA5F8193284D508F8A, 943713A1DD60E84EE31F7186E83BEBFCF8AA76740E5C07023A71B7C3382FC026 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{498B7FD5-3431-4E01-B0F6-E873EF80F174}\mpengine.dll
    14:42:51.0466 0x0d50  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{498B7FD5-3431-4E01-B0F6-E873EF80F174}\mpengine.dll - ok
    14:42:51.0466 0x0d50  [ 225399AEA05354FFC1AC4B41711ADD13, FF89EEB081A882CECC53ED44C5A1C86234BA5635DCDF281F4BD2B460DC753775 ] C:\Windows\System32\CNMN6PPM.DLL
    14:42:51.0466 0x0d50  C:\Windows\System32\CNMN6PPM.DLL - ok
    14:42:51.0466 0x0d50  [ 10EAB90C1AE8271B5FE5A8930987EE5C, 53E72964AA75526B161F859A509CB046809AE47C65DC998F0E49AC8AED9066EA ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
    14:42:51.0466 0x0d50  C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
    14:42:51.0466 0x0d50  [ 9AE80F6A66B30E3ED8CDF858CF28B11B, A93E470DC54E3C74C10979D49CABB9A34893F9E847F88491F935DB44EEC3541A ] C:\Windows\System32\d3d10_1.dll
    14:42:51.0466 0x0d50  C:\Windows\System32\d3d10_1.dll - ok
    14:42:51.0482 0x0d50  [ 35308B0F821CE1E8EDC2FAB96F3073F3, 75E4BD6130BC5AA859B9EF2EF44FF0CC81F60D4F17363F4BBDFBA43F479540A6 ] C:\Windows\System32\RdpGroupPolicyExtension.dll
    14:42:51.0482 0x0d50  C:\Windows\System32\RdpGroupPolicyExtension.dll - ok
    14:42:51.0482 0x0d50  [ EED05D42D91835064703E2318552ED25, E9EE1E2253445B207B76F5D3073C612ED979A982522C1515E0FE8FA9641AE568 ] C:\Windows\System32\ExplorerFrame.dll
    14:42:51.0482 0x0d50  C:\Windows\System32\ExplorerFrame.dll - ok
    14:42:51.0482 0x0d50  [ F2ECF5EDE603902244BA5808F0861E69, FBB65426FB1ECC50F374ABA25F09EB319696DF2DE84CBEC7D7330D48F6849D67 ] C:\Windows\System32\hpinksts8811LM.dll
    14:42:51.0482 0x0d50  C:\Windows\System32\hpinksts8811LM.dll - ok
    14:42:51.0497 0x0d50  [ 5EE5E5DF9E92B3A5581B9DE7DCC05972, 6AD4D98F00C2B454807450EDB9ED3545BA91B608A853A59BDE7282808CBFF6B0 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe
    14:42:51.0497 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkManagerDMS.exe - ok
    14:42:51.0497 0x0d50  [ 241AF87821FDA0F5792037B779F49BE0, B3F4FDA27430ACC6D6BC1C3CBD518B9CAE5BA0F22AB8917578A7F16270F94C8B ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll
    14:42:51.0497 0x0d50  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcp90.dll - ok
    14:42:51.0497 0x0d50  [ 63F72417CA38D8FC8F53709649B589E3, 39AE8AFFCFB8A9E345FC4C6F11926F25552C464380F88CDECD299FD27AF7866B ] C:\Windows\System32\d3d10_1core.dll
    14:42:51.0497 0x0d50  C:\Windows\System32\d3d10_1core.dll - ok
    14:42:51.0513 0x0d50  [ D233C7FEAE3FAA25F93A9E6B46815ADC, 5330682AE9C08E5F2E30C5E256B91028389BBBDDAA8C38950DF76616FCA854FF ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
    14:42:51.0513 0x0d50  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
    14:42:51.0513 0x0d50  [ 8DFB5752FCE145A6B295093C0A8BE131, F38029C8B36EFD46B1F6CCA0089FF4EFB0AB246497E38EDFF6A67FAC804D4A97 ] C:\Windows\System32\dxgi.dll
    14:42:51.0513 0x0d50  C:\Windows\System32\dxgi.dll - ok
    14:42:51.0513 0x0d50  [ EF7AD800D464599B9D6753BC201BAC61, E30A7DF2CEDED06517D976220DBC53CAFF477FD2934F8AEAFF2F91001BFD8D3A ] C:\Windows\System32\hpinkstsC211LM.dll
    14:42:51.0513 0x0d50  C:\Windows\System32\hpinkstsC211LM.dll - ok
    14:42:51.0528 0x0d50  [ EF2AE43BCD46ABB13FC3E5B2B1935C73, 81FC06F306F620845D7DD8D06E706309E70BC89B589C81F3478302A3F5F73431 ] C:\Windows\System32\winmm.dll
    14:42:51.0528 0x0d50  C:\Windows\System32\winmm.dll - ok
    14:42:51.0528 0x0d50  [ F071761F49982BA98C47CF610D3FD4C6, 5E4A31AAD6356759A17E8060DA1DF0C306594E8043DA60C8750557B175AB75E4 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
    14:42:51.0528 0x0d50  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
    14:42:51.0528 0x0d50  [ 284C729FC820FF7F7904A0B81E378897, DB0238024887AD374502D5D8AB2B89873D0B003F1B3D1AF77A8AC0A9B85D9DC1 ] C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.dll
    14:42:51.0528 0x0d50  C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.dll - ok
    14:42:51.0528 0x0d50  [ 4C92EB7535CAA1681A77D928FBF9771F, 7D02B2357CA02393CA711C3C499AAD86B792EEFFDC67F2CE52F7F7BB8A28DE79 ] C:\Windows\System32\d3d11.dll
    14:42:51.0528 0x0d50  C:\Windows\System32\d3d11.dll - ok
    14:42:51.0544 0x0d50  [ 0E92FB0F359BCAFA4984A3ABED4890C4, 95A616E827F6268BC2514BBF02CC1FF0FF34923A3A87C7D5D87B36D7735386D9 ] C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
    14:42:51.0544 0x0d50  C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys - ok
    14:42:51.0544 0x0d50  [ A8E5E190C85A6B3FC9BA5DE42A9497E2, 0134405520D157C0EC65947524FE31DB6B3AAECE8C2CA9DCDB11D8697D7C2D1B ] C:\Users\Sharon Wright\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll
    14:42:51.0544 0x0d50  C:\Users\Sharon Wright\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\FileSyncShell64.dll - ok
    14:42:51.0544 0x0d50  [ D5D9ADE778937C4866D9AEBAF1E8FFFE, 03CEC83975E08203E2AA4A0B221D8EBFBFE67860C20CA8F746DB07DF9E59CA4F ] C:\Windows\System32\HPDiscoPMC211.dll
    14:42:51.0544 0x0d50  C:\Windows\System32\HPDiscoPMC211.dll - ok
    14:42:51.0560 0x0d50  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] C:\Windows\System32\provsvc.dll
    14:42:51.0560 0x0d50  C:\Windows\System32\provsvc.dll - ok
    14:42:51.0560 0x0d50  [ 349B1D5D8D1B5A7B10BCD01470BD5F64, F0502E3D58713044F62F539B8738694E4CE9C619C665515F5ED2500C843C0C46 ] C:\Users\Sharon Wright\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\msvcp110.dll
    14:42:51.0560 0x0d50  C:\Users\Sharon Wright\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\msvcp110.dll - ok
    14:42:51.0560 0x0d50  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] C:\Windows\System32\sstpsvc.dll
    14:42:51.0560 0x0d50  C:\Windows\System32\sstpsvc.dll - ok
    14:42:51.0576 0x0d50  [ FFF9D00CF16397C64317F213484F94BD, 94D0584E14BDB27F61F59A7BCEA529A1594261BE0CE74502C13E8865843BA414 ] C:\Windows\System32\wsnmp32.dll
    14:42:51.0576 0x0d50  C:\Windows\System32\wsnmp32.dll - ok
    14:42:51.0576 0x0d50  [ C72ABC6B7B90A61364B6DD889B5435F3, 0CBBD9691F08434DA3617874F99C6DD87538CBD65B5D8BC39FCE378D4ED29EED ] C:\Users\Sharon Wright\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\msvcr110.dll
    14:42:51.0576 0x0d50  C:\Users\Sharon Wright\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\amd64\msvcr110.dll - ok
    14:42:51.0576 0x0d50  [ 962C6ACDC23AB92ABC5EC4A237DABBCE, 993915C9BF2A30F5E7A3C61BC4418D3DC5D6E5E6837F19706D6C9CFCB4F8D948 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{498B7FD5-3431-4E01-B0F6-E873EF80F174}\mpasbase.vdm
    14:42:51.0576 0x0d50  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{498B7FD5-3431-4E01-B0F6-E873EF80F174}\mpasbase.vdm - ok
    14:42:51.0592 0x0d50  [ 19E41CCCEE697CC9465396B370929792, A9FC4C33C71C3677FE57779380E55FDE2AC0B0C70A9DBCBA0D0B6FA92C709A7F ] C:\Windows\System32\FXSMON.dll
    14:42:51.0592 0x0d50  C:\Windows\System32\FXSMON.dll - ok
    14:42:51.0592 0x0d50  [ 27F995E727DEF2B492260C18943EDA9F, 57BC4138E995D1140FD6814EE10097DBD9DCEA76AF77F73464169C09BCB606E7 ] C:\Windows\System32\hpz3l5mu.dll
    14:42:51.0592 0x0d50  C:\Windows\System32\hpz3l5mu.dll - ok
    14:42:51.0592 0x0d50  [ BC8A3EC1BAE3D18256C09DDE1082D0F3, 8331C2C619DD2414FAD11BEC751A05927D106AE1767E207912C78BE0B9FA9CC0 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe
    14:42:51.0592 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe - ok
    14:42:51.0592 0x0d50  [ FECA9F830A5C6BAB9978E6781A26AE2B, CA1681A2F4FA849815B8E823805E078DB9C050CEE86E9E394B2A37B57CC474A6 ] C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
    14:42:51.0592 0x0d50  C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe - ok
    14:42:51.0607 0x0d50  [ 1D63F4366288B8A7595397E27010FD44, 99EA4DDD88D9C4A4CC9B238F533CB4D2C062D46239173997E8594D8A75811A01 ] C:\Windows\System32\IconCodecService.dll
    14:42:51.0607 0x0d50  C:\Windows\System32\IconCodecService.dll - ok
    14:42:51.0607 0x0d50  [ 32A3C8600AF124CBAAD845F13CFAE3CB, F36FE9E57D5C509FEECE890F9F8717F9CC6F762E32AE0B7DB7E0153370CE0B9D ] C:\Windows\System32\tcpmon.dll
    14:42:51.0607 0x0d50  C:\Windows\System32\tcpmon.dll - ok
    14:42:51.0607 0x0d50  [ 8C7635292CFF4901F058269454A1D64E, 67519BCF5CF856C149A69E11E0BAAEA3402DC3678FCB7B7FAC00E91A75C24BF8 ] C:\Windows\SysWOW64\ntdll.dll
    14:42:51.0607 0x0d50  C:\Windows\SysWOW64\ntdll.dll - ok
    14:42:51.0607 0x0d50  [ 93518C6EDE0B61BCBD02BDB02BD05FEE, 3637F5E5F15093AFB501EE910368CF900B422AC22669391FFA4198BBAE6F8FCB ] C:\Windows\System32\snmpapi.dll
    14:42:51.0607 0x0d50  C:\Windows\System32\snmpapi.dll - ok
    14:42:51.0623 0x0d50  [ 7DED1B3E4FFB15E33C07EF0ACAE172B6, CD1FB1AC9A9D4CF713F7F06C0BF8BEAD6EC7D741E444A046942C08EF545244F6 ] C:\Windows\System32\igd10umd64.dll
    14:42:51.0623 0x0d50  C:\Windows\System32\igd10umd64.dll - ok
    14:42:51.0623 0x0d50  [ FF9BBFAE899091C1FF0D1A3F2C587911, 846C5D31CDFB0768D38D55D10FE940EDFEA5B68E9FE846BC66AF49556C868140 ] C:\Windows\System32\wow64.dll
    14:42:51.0623 0x0d50  C:\Windows\System32\wow64.dll - ok
    14:42:51.0623 0x0d50  [ 025E7DBDB98866ED3CB2D4DDA70B364D, 78962F23F066E362AF1A4B98FA7D5E30AF30C561307438503031D30C944B6A6E ] C:\Windows\System32\runonce.exe
    14:42:51.0623 0x0d50  C:\Windows\System32\runonce.exe - ok
    14:42:51.0623 0x0d50  [ DF72A9936D0C3F517083119648814B09, 6BA4DCAC2F55A393A266ED0B2AF92B38141654D1666E3E143D85BBAF21663E1E ] C:\Windows\System32\usbmon.dll
    14:42:51.0623 0x0d50  C:\Windows\System32\usbmon.dll - ok
    14:42:51.0639 0x0d50  [ 5A17FF38EDE95B2313E428BF444126D7, 5FDF5C36218B02F81B2B2297FB79EC2E43BFB7DFCB0F9CEF9D9FF6C6D45E0987 ] C:\Windows\System32\wow64win.dll
    14:42:51.0639 0x0d50  C:\Windows\System32\wow64win.dll - ok
    14:42:51.0639 0x0d50  [ A1D7E3ADCDB07DDB6F423862DCB1A52B, 6191C33D2AE090F6F055D6AE211096CE8F003EC5518A5333EE1E376052176BAB ] C:\Windows\System32\WSDMon.dll
    14:42:51.0639 0x0d50  C:\Windows\System32\WSDMon.dll - ok
    14:42:51.0639 0x0d50  [ 20BD408AC3F8576997D6A47F48A1C5B2, 72D1A73583B02F78D3E7C3C0D589221D12B3358387D8CE1501F4530A764E0AD6 ] C:\Windows\System32\wow64cpu.dll
    14:42:51.0639 0x0d50  C:\Windows\System32\wow64cpu.dll - ok
    14:42:51.0639 0x0d50  [ F81920ADB15012CF4E9FF8238C85686A, 791646E626D54F1C1D0D6BE8EB29B13AFE968413B36608B98AE70D106AE56DA9 ] C:\Windows\SysWOW64\kernel32.dll
    14:42:51.0639 0x0d50  C:\Windows\SysWOW64\kernel32.dll - ok
    14:42:51.0654 0x0d50  [ F1B205F932F62F94506A5F332C895DAF, F02F01F20F655DD919C71AE814E4C3DD43330AAD1425FC5B1497F1613917CCDE ] C:\Windows\System32\WSDApi.dll
    14:42:51.0654 0x0d50  C:\Windows\System32\WSDApi.dll - ok
    14:42:51.0654 0x0d50  [ D877133532CE090502B1166B360E9516, CE3DAAE887E16861CCC2E9D2446FF4F25C257D8F3285B119F4EE74A421060E84 ] C:\Windows\SysWOW64\KernelBase.dll
    14:42:51.0654 0x0d50  C:\Windows\SysWOW64\KernelBase.dll - ok
    14:42:51.0654 0x0d50  [ D44741F65A1D71F65814A12CF6E2400A, C6721F830675ADC7E7FDE2B5E822E56F6A063146F5066F1E25EBFE86F0A87136 ] C:\Windows\SysWOW64\runonce.exe
    14:42:51.0654 0x0d50  C:\Windows\SysWOW64\runonce.exe - ok
    14:42:51.0670 0x0d50  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3, 01EB95FA3943CF3C6B1A21E473A5C3CB9FCBCE46913B15C96CAC14E4F04075B4 ] C:\Windows\SysWOW64\user32.dll
    14:42:51.0670 0x0d50  C:\Windows\SysWOW64\user32.dll - ok
    14:42:51.0670 0x0d50  [ C55516D98DD5D8F0153C2A9B4227DA86, DBC62B776CF06D0873A4C7CFCDF5B6F5C6E6C41917C326C090BCE58DC66EE09C ] C:\Windows\System32\webservices.dll
    14:42:51.0670 0x0d50  C:\Windows\System32\webservices.dll - ok
    14:42:51.0670 0x0d50  [ 2B381229CCACA02AFF9D27B09073E523, 050B4757290650BECF0849ED835392E26A60C496B2E39FF113D34BD1EC1E5A6C ] C:\Windows\SysWOW64\gdi32.dll
    14:42:51.0670 0x0d50  C:\Windows\SysWOW64\gdi32.dll - ok
    14:42:51.0670 0x0d50  [ 9E68E1BDEBD85FC8803707370BE0FC6E, D89254229FC07D10193D91A7DE08E9E789E862A0452168A5EF92006659148C5D ] C:\Windows\SysWOW64\advapi32.dll
    14:42:51.0670 0x0d50  C:\Windows\SysWOW64\advapi32.dll - ok
    14:42:51.0685 0x0d50  [ 01D9C9A70323BC7E5835B92442DD7EC2, 67D788F1F34A16483A8AD9A712A772D2A7B7687DEF899F87D48C013C4731B727 ] C:\Windows\SysWOW64\lpk.dll
    14:42:51.0685 0x0d50  C:\Windows\SysWOW64\lpk.dll - ok
    14:42:51.0685 0x0d50  [ 49E5753D923F1AC63B22D3DCB0B47E00, 14CEC0BF5F625FF839A8D79B4A6B7C4AC0CBB705FD197C6B7FF8617C6C3E34FE ] C:\Windows\System32\uDWM.dll
    14:42:51.0685 0x0d50  C:\Windows\System32\uDWM.dll - ok
    14:42:51.0685 0x0d50  [ A5F833506BF6A1B5D693E1499DEE2444, 045874B7D37F49216E37D551076FF440E29DB5196564E714207DF753DF7FDDEE ] C:\Windows\SysWOW64\usp10.dll
    14:42:51.0685 0x0d50  C:\Windows\SysWOW64\usp10.dll - ok
    14:42:51.0685 0x0d50  [ EBB3A3F91A55FE3AC8B813D305ED0615, 808721D22E1046AD2F5082B9F77DF839421E809E4FFDE402CE8EE9851252E3B7 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DMSManager.dll
    14:42:51.0685 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DMSManager.dll - ok
    14:42:51.0701 0x0d50  [ 9DC80A8AAAAAC397BDAB3C67165A824E, 051636BFDFF7AB0E4191354E846BD0DACCA1A01FCC13C1AFED91D8DBFE17127A ] C:\Windows\SysWOW64\msvcrt.dll
    14:42:51.0701 0x0d50  C:\Windows\SysWOW64\msvcrt.dll - ok
    14:42:51.0701 0x0d50  [ 65A5E27C2217D606E212B6088CCD6104, 3D2E4CB0956D30307FE6440E4FCA0E327DCD2643113860BE526383E7934A495C ] C:\Windows\SysWOW64\sechost.dll
    14:42:51.0701 0x0d50  C:\Windows\SysWOW64\sechost.dll - ok
    14:42:51.0701 0x0d50  [ D8BED6BA298DBAAF6F3D746739FCD333, 83A40845EC448943F4737B730F95860983919677D84922E44EED4BECDFA71A31 ] C:\Windows\SysWOW64\rpcrt4.dll
    14:42:51.0701 0x0d50  C:\Windows\SysWOW64\rpcrt4.dll - ok
    14:42:51.0717 0x0d50  [ F72A9953199EF5807D595AE3694B5D01, 081420056EDB5F5A4F7B7286D3A6A27427B58DB2194A52815FBFA91B8175FF09 ] C:\Windows\SysWOW64\sspicli.dll
    14:42:51.0717 0x0d50  C:\Windows\SysWOW64\sspicli.dll - ok
    14:42:51.0717 0x0d50  [ F08F6FCD09F9BE94C37ACC1B344685FF, DE48D766258B46EFEAB16579421C4BD97ACC6883F782D00E9857F4A0CE7E8A34 ] C:\Windows\SysWOW64\cryptbase.dll
    14:42:51.0717 0x0d50  C:\Windows\SysWOW64\cryptbase.dll - ok
    14:42:51.0717 0x0d50  [ 8CC3C111D653E96F3EA1590891491D71, 1D326D7D116D76876EE2B14A5BFB7B4328E21DB9B5AAAB9CB67F8EFB93924230 ] C:\Windows\SysWOW64\shlwapi.dll
    14:42:51.0717 0x0d50  C:\Windows\SysWOW64\shlwapi.dll - ok
    14:42:51.0717 0x0d50  [ CA9F7888B524D8100B977C81F44C3234, 57F3353F89724147D8AC8B69B12C1303DF26978309776F5F8CCF074526A915D3 ] C:\Windows\SysWOW64\winhttp.dll
    14:42:51.0717 0x0d50  C:\Windows\SysWOW64\winhttp.dll - ok
    14:42:51.0732 0x0d50  [ 440F7D64EFA44BAD118E3B4E734A389B, 35F0B890C4F39E8F58906A460C036D07320F7B86923EF904730B959E66142D45 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ContentDirectoryPresenter.dll
    14:42:51.0732 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ContentDirectoryPresenter.dll - ok
    14:42:51.0732 0x0d50  [ B5055B51BAA0FD0A736A88653DA3C1C0, A3BD057C7E8C926930BA7E9D11427D26FB37267026A0B72AB4021101EE424F74 ] C:\Windows\System32\fundisc.dll
    14:42:51.0732 0x0d50  C:\Windows\System32\fundisc.dll - ok
    14:42:51.0732 0x0d50  [ A208DAC2932649CFF82A6A684D8BB1F6, 849A82E9BEA587E8221935F5132443F298412CF4D983C23C396510C7776CED41 ] C:\Windows\SysWOW64\oleaut32.dll
    14:42:51.0732 0x0d50  C:\Windows\SysWOW64\oleaut32.dll - ok
    14:42:51.0732 0x0d50  [ FB19FC5951A88F3C523E35C2C98D23C0, FF0DB8BF0C68DA0D09272E8181D2B5409C8850BB2F31AEA3AC4CD14C5A420A59 ] C:\Windows\SysWOW64\webio.dll
    14:42:51.0732 0x0d50  C:\Windows\SysWOW64\webio.dll - ok
    14:42:51.0748 0x0d50  [ 4581716B4BF76ACFD8E167EB0B26D82A, 39D822527114EEED68044CCE4D542767F53978D9E0A7F72638F1CA9A016DE13B ] C:\Windows\System32\fdPnp.dll
    14:42:51.0748 0x0d50  C:\Windows\System32\fdPnp.dll - ok
    14:42:51.0748 0x0d50  [ D5EC42139D6A6158CF188975C50B6A60, C3551F8FC9DC58483B3AF4F80163C7A187F879FA89A7E36C28FD462FC24478FC ] C:\Windows\SysWOW64\wintrust.dll
    14:42:51.0748 0x0d50  C:\Windows\SysWOW64\wintrust.dll - ok
    14:42:51.0748 0x0d50  [ 74264B7F57A16D25CB581C07964D324A, AA91EE0910ECBD7D190A05EBA48F1D348756C2D4B217B7FE2DF3AF92AD4A176D ] C:\Windows\SysWOW64\crypt32.dll
    14:42:51.0748 0x0d50  C:\Windows\SysWOW64\crypt32.dll - ok
    14:42:51.0748 0x0d50  [ 4C1244FEF74C60A4B1B151C76609CBE2, 3E500204A9232D5B332BE16C281A32B957D03BBA836851BE7754F030872FAC83 ] C:\Windows\System32\wsdchngr.dll
    14:42:51.0748 0x0d50  C:\Windows\System32\wsdchngr.dll - ok
    14:42:51.0763 0x0d50  [ 928CF7268086631F54C3D8E17238C6DD, F058FAFB04E7EBD5CADE9B48195B7AA7C3508F332A89F5E6E5F3F071E8CADD4A ] C:\Windows\SysWOW64\ole32.dll
    14:42:51.0763 0x0d50  C:\Windows\SysWOW64\ole32.dll - ok
    14:42:51.0763 0x0d50  [ 7B375C10CACC2FEBEC978D023ADBAB9C, 72A082FD19E5540C894F2A1A32C90EFF25BE731D64043D6DF69B1170BB5492AF ] C:\Windows\System32\GWX\GWX.exe
    14:42:51.0763 0x0d50  C:\Windows\System32\GWX\GWX.exe - ok
    14:42:51.0763 0x0d50  [ 1D626FE2E13C1CE49CA0136CFF214E93, 4F02DD92045CF244979FFD074B2BDE6925A909227A474C60DCABE4384D916218 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
    14:42:51.0763 0x0d50  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
    14:42:51.0763 0x0d50  [ 885E18B2D0A445FB637850282530EB72, 005BE9EC30390E88C429622EEEE4E2D2840CC3C75992C4A7F0E8A69756B0A2FD ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d\comctl32.dll
    14:42:51.0763 0x0d50  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d\comctl32.dll - ok
    14:42:51.0779 0x0d50  [ CDBE9690CF2B8409FACAD94FAC9479C9, 8E7FE1A1F3550C479FFD86A77BC9D10686D47F8727025BB891D8F4F0259354C8 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
    14:42:51.0779 0x0d50  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
    14:42:51.0779 0x0d50  [ 938F39B50BAFE13D6F58C7790682C010, 902000EE51EFEABAF6A4B30F880AA37083D2232C6FC622CA513C4A823390FEDA ] C:\Windows\SysWOW64\msasn1.dll
    14:42:51.0779 0x0d50  C:\Windows\SysWOW64\msasn1.dll - ok
    14:42:51.0779 0x0d50  [ 4C39358EBDD2FFCD9132A30E1EC31E16, 06918CF99AD26CD6CF106881C0D5BDB212DC0BAC4549805C9F5906E3D03D152C ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
    14:42:51.0779 0x0d50  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
    14:42:51.0795 0x0d50  [ 4FB01397DEBE38C59B51D031C144F0DA, D066EBC897A118CF31BCE3B3A4EA4304E634BDF427035B8CCE12A20B528012C6 ] C:\Windows\System32\spool\prtprocs\x64\CNMPDB8.DLL
    14:42:51.0795 0x0d50  C:\Windows\System32\spool\prtprocs\x64\CNMPDB8.DLL - ok
    14:42:51.0795 0x0d50  [ 97792D877E0FFB4345ABFFBA52C53D38, C4607E35000E97E341423EB4464AA1DA1BB54CC20999F42AFD19328FE95C090E ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DCMCDP.dll
    14:42:51.0795 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DCMCDP.dll - ok
    14:42:51.0795 0x0d50  [ CB55B9AAB060C803BE4AD229AA0FEC28, 58CF3D7BC275E4460766A5FC1B5D871C1F8995071AB81BB04BFB7BF98E0C9866 ] C:\Windows\SysWOW64\msi.dll
    14:42:51.0795 0x0d50  C:\Windows\SysWOW64\msi.dll - ok
    14:42:51.0795 0x0d50  [ 74847AA7A032CCC65888F810F94AF4D1, E513B25E10E1318CAC0B061F59207F755B08004DFD03B1567ABC76433E82B1AF ] C:\Windows\System32\spool\prtprocs\x64\hpzpp5mu.dll
    14:42:51.0795 0x0d50  C:\Windows\System32\spool\prtprocs\x64\hpzpp5mu.dll - ok
    14:42:51.0810 0x0d50  [ 67CF11E00D026A5C0C88EA5F84D501E5, 5081A87466116232CF07F58229967B6C0CD3738B64A56EFC6BB3EBDA62E378F6 ] C:\Windows\System32\win32spl.dll
    14:42:51.0810 0x0d50  C:\Windows\System32\win32spl.dll - ok
    14:42:51.0810 0x0d50  [ 507D5567A0A4EE86C4B0CE2CE1777025, 408770B00CED498BF7782054F17A5CB361CF65429B0C816403D70E416E0EEF23 ] C:\Windows\System32\inetpp.dll
    14:42:51.0810 0x0d50  C:\Windows\System32\inetpp.dll - ok
    14:42:51.0810 0x0d50  [ B3D931A539741C57F11C1DF051B372C5, 5F29BDAAF63A479E2E1FA7F9811CAAAF0BA8A975DA59DD8BF6EAC5C9861893D7 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\FolderCDP.dll
    14:42:51.0810 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\FolderCDP.dll - ok
    14:42:51.0826 0x0d50  [ 848CEB1C5BFC98EA7B1BD7EE4E533A5D, 70C176CF95A6DA272D8A643B5F56AECC1397A0EACCAF6E1F27FFABE434FDB35A ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{498B7FD5-3431-4E01-B0F6-E873EF80F174}\mpasdlta.vdm
    14:42:51.0826 0x0d50  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{498B7FD5-3431-4E01-B0F6-E873EF80F174}\mpasdlta.vdm - ok
    14:42:51.0826 0x0d50  [ 340EECB781E6C06A6171B3068DA208AD, C3368488DFA5AAC05CAF9D636430111A0DDFB3EBFE6D69F10366F1C22890A99B ] C:\Windows\SysWOW64\shell32.dll
    14:42:51.0826 0x0d50  C:\Windows\SysWOW64\shell32.dll - ok
    14:42:51.0826 0x0d50  [ 7F26113AD35A861CBF00623BCF93D55B, 2860F922EBE996FC82630ABAC4471B9EA7607B37C31AEE3B7064CF7B21018C74 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\MetadataFramework.dll
    14:42:51.0826 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\MetadataFramework.dll - ok
    14:42:51.0841 0x0d50  [ 0AB7D0E87F3843F8104B3670F5A9AF62, 8AECAB563B3C629E8F9DCD525DC2D6B1903F6C600637E63B1EFE05E3C64D757B ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\pthreadVC2.dll
    14:42:51.0841 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\pthreadVC2.dll - ok
    14:42:51.0841 0x0d50  [ A6F09E5669D9A19035F6D942CAA15882, 68C8AF0CC1923E3A7245392F2480EE665D265DF300A609D2540BF7C6D9C1A1BE ] C:\Windows\SysWOW64\imm32.dll
    14:42:51.0841 0x0d50  C:\Windows\SysWOW64\imm32.dll - ok
    14:42:51.0841 0x0d50  [ 65EA57712340C09B1B0C427B4848AE05, 5FDCF73191BFF9DBB03886755FFCF0BC15849F0E216884A5A8B9BB375FA7C1A5 ] C:\Windows\System32\taskeng.exe
    14:42:51.0841 0x0d50  C:\Windows\System32\taskeng.exe - ok
    14:42:51.0857 0x0d50  [ 84B460BB65567ED42DD605FA044DB370, 4CA82B2581F417D8D6D81F446F81283D3DE91C8E8E0BC2DC3DA4CF8D55E765F5 ] C:\Windows\SysWOW64\msctf.dll
    14:42:51.0857 0x0d50  C:\Windows\SysWOW64\msctf.dll - ok
    14:42:51.0857 0x0d50  [ 7FF15A4F092CD4A96055BA69F903E3E9, 1B594E6D057C632ABB3A8CF838157369024BD6B9F515CA8E774B22FE71A11627 ] C:\Windows\SysWOW64\ws2_32.dll
    14:42:51.0857 0x0d50  C:\Windows\SysWOW64\ws2_32.dll - ok
    14:42:51.0857 0x0d50  [ DF13A51A5C591887D2EC6AE64CEED0FA, DFD503AEBCAA056B2B0E669ACA52F6D26F4E6892F2DCFCCD902752C23A621653 ] C:\Windows\SysWOW64\wsock32.dll
    14:42:51.0857 0x0d50  C:\Windows\SysWOW64\wsock32.dll - ok
    14:42:51.0857 0x0d50  [ 6377051C63D5552A311935C67E9FDFDC, 3FB82988AAB66813567E8DB951D4EE87F156201070F005FDBF52EF998A323E65 ] C:\Windows\SysWOW64\nsi.dll
    14:42:51.0857 0x0d50  C:\Windows\SysWOW64\nsi.dll - ok
    14:42:51.0873 0x0d50  [ DB76DB15EFC6E4D1153A6C5BC895948D, 71DDF02C7EE2DF66A08F1A2A08DA39802C354624880A2BE93A706EA7476422A3 ] C:\Windows\System32\sppc.dll
    14:42:51.0873 0x0d50  C:\Windows\System32\sppc.dll - ok
    14:42:51.0873 0x0d50  [ 0F66E8E2340569FB17E774DAC2010E31, DE818C832308B82C2FABD5D3D4339C489E6F4E9D32BB8152C0DCD8359392695F ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\sqlite3.dll
    14:42:51.0873 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\sqlite3.dll - ok
    14:42:51.0873 0x0d50  [ 1BF0CB861A48FEB1638228760750F3CB, 37C781A8C546EAD8B4D28BD7D730B9AC78EB799599AD69DAD9054B6F9F1DD6BD ] C:\Windows\System32\cscapi.dll
    14:42:51.0873 0x0d50  C:\Windows\System32\cscapi.dll - ok
    14:42:51.0888 0x0d50  [ 00000000000000000000000000000000, 0000000000000000000000000000000000000000000000000000000000000000 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{498B7FD5-3431-4E01-B0F6-E873EF80F174}\mpavbase.vdm
    14:42:51.0888 0x0d50  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{498B7FD5-3431-4E01-B0F6-E873EF80F174}\mpavbase.vdm - ok
    14:42:51.0888 0x0d50  [ F6FC73383473B1F3E8C185B61478C303, 07F84D886978F5DB7DCF7AB8BEEF19422A939BB4238EE78AA0A89CCAFFC25A7E ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\MoodExtractor.dll
    14:42:51.0888 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\MoodExtractor.dll - ok
    14:42:51.0888 0x0d50  [ 43964FA89CCF97BA6BE34D69455AC65F, 10E3B89A5470E1BB6F73382135DD2352F5073C1EE8485D7476CFB5122D4AAA2F ] C:\Windows\SysWOW64\uxtheme.dll
    14:42:51.0888 0x0d50  C:\Windows\SysWOW64\uxtheme.dll - ok
    14:42:51.0904 0x0d50  [ 805A52C5AE26C28E88FDD9BCCFE6F312, 4FF28D3658C31722B7DD036DED9D544B14841C0E0B94D31A8EC5AB92128DA020 ] C:\Windows\System32\TSChannel.dll
    14:42:51.0904 0x0d50  C:\Windows\System32\TSChannel.dll - ok
    14:42:51.0904 0x0d50  [ 10FB16B50AFFDA6D44588F3C445DC273, 6CDA17DA9B44D11E69F7C6682FA633EA75731623BB21B429A0FE2086ED4495A7 ] C:\Windows\SysWOW64\setupapi.dll
    14:42:51.0904 0x0d50  C:\Windows\SysWOW64\setupapi.dll - ok
    14:42:51.0904 0x0d50  [ 5B33709F7FE59BB625F113EED86AFC5C, 8D29FE242D55526FDEB2CB4009B5DE19C93972E872BE6328AD3305E360A3D44B ] C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
    14:42:51.0904 0x0d50  C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe - ok
    14:42:51.0904 0x0d50  [ 2B0C4364C0110478B49833A099F71AFE, 3A0737610131DE9708983A6C0F1D9D035959BD319971E40F1614AD38774AF8AA ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{498B7FD5-3431-4E01-B0F6-E873EF80F174}\mpavdlta.vdm
    14:42:51.0904 0x0d50  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{498B7FD5-3431-4E01-B0F6-E873EF80F174}\mpavdlta.vdm - ok
    14:42:51.0919 0x0d50  [ 8CD1DEE212E52B9C22E66DBA44991D32, 7FCD0E7964368616434E3B3B080E783658B86524C26F3DB57503414204713E6D ] C:\Windows\SysWOW64\httpapi.dll
    14:42:51.0919 0x0d50  C:\Windows\SysWOW64\httpapi.dll - ok
    14:42:51.0919 0x0d50  [ 9CA96539152CCF6D95AB9F991862D226, 7E53A8B47AF7B9F6A2AE2AFFFD1569A8AF7A09BFAD9E35DB4B2B6F929C22FE73 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DCMImgExtractor.dll
    14:42:51.0919 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DCMImgExtractor.dll - ok
    14:42:51.0919 0x0d50  [ 5893EBDCE371174AC89ECD7731DD6D77, 31CC55F4724CFD95E48954B38C0A04D674399FD243083A816893ED5E5A770086 ] C:\Windows\SysWOW64\pcwum.dll
    14:42:51.0919 0x0d50  C:\Windows\SysWOW64\pcwum.dll - ok
    14:42:51.0935 0x0d50  [ 1CD76A83B9E8E9A5A3519B39E28354D9, F9931743B99820FFBFB13136DFFD92F86802D543F9D8478648CDC554FB38899D ] C:\Windows\System32\cryptsvc.dll
    14:42:51.0935 0x0d50  C:\Windows\System32\cryptsvc.dll - ok
    14:42:51.0935 0x0d50  [ F436E847FA799ECD75AD8C313673F450, 3C8BF3F0C08C7FA8DE5CD9C60AD9D00B742E84EB1FEBEEBA0F7159844BAAA471 ] C:\Windows\SysWOW64\cfgmgr32.dll
    14:42:51.0935 0x0d50  C:\Windows\SysWOW64\cfgmgr32.dll - ok
    14:42:51.0935 0x0d50  [ AA5319FA8602676B5D3A2B4A1355896D, 57532E16FF0DDE3D62B6B6DC35E2598DD453140E9277247965A1E835645E588A ] C:\Windows\System32\diagtrack.dll
    14:42:51.0935 0x0d50  C:\Windows\System32\diagtrack.dll - ok
    14:42:51.0935 0x0d50  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] C:\Windows\System32\dps.dll
    14:42:51.0935 0x0d50  C:\Windows\System32\dps.dll - ok
    14:42:51.0951 0x0d50  [ 0C043B0ABBB5E14E68906AB80365395B, A57A6FAF713EA4F46566A941DE7C2273ED4EB50F9E30B70276E810873AF6900B ] C:\Windows\System32\efssvc.dll
    14:42:51.0951 0x0d50  C:\Windows\System32\efssvc.dll - ok
    14:42:51.0951 0x0d50  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] C:\Windows\System32\fdPHost.dll
    14:42:51.0951 0x0d50  C:\Windows\System32\fdPHost.dll - ok
    14:42:51.0951 0x0d50  [ 02DEF37AB75E0032C50724646F708DE8, 1504041F6751A93F7AA0C8FDE287DD7500D85CC93B1969D0EFC82C023F69AA6C ] C:\Windows\System32\drivers\iPodDrv.sys
    14:42:51.0951 0x0d50  C:\Windows\System32\drivers\iPodDrv.sys - ok
    14:42:51.0951 0x0d50  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] C:\Windows\System32\IKEEXT.DLL
    14:42:51.0966 0x0d50  C:\Windows\System32\IKEEXT.DLL - ok
    14:42:51.0966 0x0d50  [ 2EEFF4502F5E13B1BED4A04CCAD64C08, 209FF1B6D46D1AC99518FCF54F2F726143B2DBF2C5FDA90212FBEF7526F7CBF5 ] C:\Windows\SysWOW64\devobj.dll
    14:42:51.0966 0x0d50  C:\Windows\SysWOW64\devobj.dll - ok
    14:42:51.0966 0x0d50  [ FF5688D309347F2720911D8796912834, 3B0D73C50D40A6F42629B7750F99F656BF5C1C50237D5F98B6C0F2CE5E2DA359 ] C:\Windows\SysWOW64\clbcatq.dll
    14:42:51.0966 0x0d50  C:\Windows\SysWOW64\clbcatq.dll - ok
    14:42:51.0966 0x0d50  [ 7F8E83B9466A0A002D4AB15C104062A7, D2D64B95079243F04479A7950AFB9DD086C43BF0236E72E74FC45C6945A765E4 ] C:\Windows\System32\efscore.dll
    14:42:51.0966 0x0d50  C:\Windows\System32\efscore.dll - ok
    14:42:51.0982 0x0d50  [ 171D7DB433314A868507C4326E8209DC, 254E0D9F99CE47104CF21D8E968D89D6A09B9CE47168E760BAB28AD5A1E9E6A3 ] C:\Windows\System32\fdWSD.dll
    14:42:51.0982 0x0d50  C:\Windows\System32\fdWSD.dll - ok
    14:42:51.0982 0x0d50  [ 12C45E3CB6D65F73209549E2D02ECA7A, 9DFD9C58B90257C34D52B7156C1D2566BE32EE7BD4699DDE164A5F190EC4D44A ] C:\Windows\SysWOW64\propsys.dll
    14:42:51.0982 0x0d50  C:\Windows\SysWOW64\propsys.dll - ok
    14:42:51.0982 0x0d50  [ 6E7B4E75E8A226EDC8A9A8B1C3510F9B, 56F7D92C803EF433339AE197E10BF821FAED2EDEBA49845F8942DAB19F2F2062 ] C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
    14:42:51.0982 0x0d50  C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe - ok
    14:42:51.0982 0x0d50  [ 7C6D524C78A1722AD987B9E47AC1FEE2, FFDC6C92ABB547D0DCD2621EC423C755A78079B061A41FA1751A56799D1A79A5 ] C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
    14:42:51.0982 0x0d50  C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe - ok
    14:42:51.0997 0x0d50  [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
    14:42:51.0997 0x0d50  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
    14:42:51.0997 0x0d50  [ 1BE9877B199184D7657BC4CFCB7B4A99, 69A99CB1B006CBAA2481795D228D4394B48BEEDC7D22FEF7B982E81CC52E6FCD ] C:\Windows\System32\cryptnet.dll
    14:42:51.0997 0x0d50  C:\Windows\System32\cryptnet.dll - ok
    14:42:51.0997 0x0d50  [ 58283053C781AD3A579C95D7765C1FA0, 9F7641C9B5E64797E14A2E307D94E31D6F51A721964BD5CE8CEFF6B523A69DB8 ] C:\Windows\System32\efsutil.dll
    14:42:51.0997 0x0d50  C:\Windows\System32\efsutil.dll - ok
    14:42:52.0013 0x0d50  [ FDC385A0F7D7DD880C4622D1DF08ABE9, D9596264D98B09A5C44DD63B69B7253377B5FF237B6F2C4F97258E86FFAD055A ] C:\Windows\System32\ntprint.dll
    14:42:52.0013 0x0d50  C:\Windows\System32\ntprint.dll - ok
    14:42:52.0013 0x0d50  [ 219B41AA107F86B93544568D1180CC68, F336577A9C90DA749D343C1CD8571B19373D42E873E7D644155CDE80D3C7A826 ] C:\Windows\System32\spool\drivers\x64\3\CNMCPB8.DLL
    14:42:52.0013 0x0d50  C:\Windows\System32\spool\drivers\x64\3\CNMCPB8.DLL - ok
    14:42:52.0013 0x0d50  [ B1316E0ED3A7F63F62BEFE451C0032F8, D5E78791AE5F012000C73CBF84F240BCE9B4EBD27FCE53F389C0F1FCE4F55DC8 ] C:\Program Files (x86)\Common Files\LightScribe\LSSProxy.dll
    14:42:52.0013 0x0d50  C:\Program Files (x86)\Common Files\LightScribe\LSSProxy.dll - ok
    14:42:52.0013 0x0d50  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB, 018CB95A43CEA2063EA24691C71D51EF60D522C21502ABA8AD93876363D4B857 ] C:\Windows\System32\taskschd.dll
    14:42:52.0013 0x0d50  C:\Windows\System32\taskschd.dll - ok
    14:42:52.0029 0x0d50  [ 3B0A49488BD5BD0C47A289482E34993A, EE73F5BA7B89354F6D3098490E2D48E7F0B4222EB1D84EB43F62499D5C39DB8A ] C:\Windows\System32\spool\drivers\x64\3\CNMLHB8.DLL
    14:42:52.0029 0x0d50  C:\Windows\System32\spool\drivers\x64\3\CNMLHB8.DLL - ok
    14:42:52.0029 0x0d50  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567, 426FB40A065FEF61980C803EF72D0D326C623340C3AE99CA8AFFDEFB81E8D49D ] C:\Windows\System32\vssapi.dll
    14:42:52.0029 0x0d50  C:\Windows\System32\vssapi.dll - ok
    14:42:52.0029 0x0d50  [ 3FD15B4611D9BDA3F8013548C0ECAECA, B47A8D9985D9B71EB870816A0AB2B6403D394CCBDF7DE5378D5721D58D68D28D ] C:\Windows\SysWOW64\ntmarta.dll
    14:42:52.0029 0x0d50  C:\Windows\SysWOW64\ntmarta.dll - ok
    14:42:52.0044 0x0d50  [ A8BB45F9ECAD993461E0FEF8E2A99152, ACB756EA54E71F124D928829666B5B439785593877FF7C0C76ADCF954F4E6C94 ] C:\Windows\SysWOW64\Wldap32.dll
    14:42:52.0044 0x0d50  C:\Windows\SysWOW64\Wldap32.dll - ok
    14:42:52.0044 0x0d50  [ 4CFE6EEB44D35C7B16693A97FBC9F368, 9FF8F7D81A6C2A25035E19DCCEF86972774187ED4EA774B9BDA709B02ADF6596 ] C:\Program Files (x86)\Google\Update\1.3.27.5\goopdate.dll
    14:42:52.0044 0x0d50  C:\Program Files (x86)\Google\Update\1.3.27.5\goopdate.dll - ok
    14:42:52.0044 0x0d50  [ 8494E126F0B10180F3293AF861CE1F7A, 538B1F30423DB2398E611BC46C80150C090698E633BABF7362F7060DBF0C3064 ] C:\Windows\System32\mlang.dll
    14:42:52.0044 0x0d50  C:\Windows\System32\mlang.dll - ok
    14:42:52.0044 0x0d50  [ A543AC1F7138376D778D630A35FCBC4C, 2D824C66A97FC8C39DAFA397CC47495B712D175EEF393486946DA8936BDD466A ] C:\Windows\SysWOW64\psapi.dll
    14:42:52.0044 0x0d50  C:\Windows\SysWOW64\psapi.dll - ok
    14:42:52.0060 0x0d50  [ C3AA1E6DBD17F58E348D49423B46C053, 6430C636CA48CE4D3CE46CC44169BD751594378CF72ACF88148C50818F613B36 ] C:\Program Files (x86)\Common Files\LightScribe\LSLog.dll
    14:42:52.0060 0x0d50  C:\Program Files (x86)\Common Files\LightScribe\LSLog.dll - ok
    14:42:52.0060 0x0d50  [ 77B5035BC6EDF4D1B6265391AECEE4C0, FE69B715F04446BD42AF1B672E6AC54E954CFE0C847BFD2056CB11CF017B1844 ] C:\Windows\System32\vpnikeapi.dll
    14:42:52.0060 0x0d50  C:\Windows\System32\vpnikeapi.dll - ok
    14:42:52.0060 0x0d50  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8, B1A9B2EF000917214C0198958CBD239D1D91B1720EC40DF041262A34D302AD74 ] C:\Windows\SysWOW64\winspool.drv
    14:42:52.0060 0x0d50  C:\Windows\SysWOW64\winspool.drv - ok
    14:42:52.0075 0x0d50  [ A2E5B2D20954210DCE1A75A1FC8CC36D, 1EA240AC37ECA4EC3E542F9E6DF72753EBA1DF76CBA8691EC61ABCC51EE6FCB2 ] C:\Windows\System32\fdSSDP.dll
    14:42:52.0075 0x0d50  C:\Windows\System32\fdSSDP.dll - ok
    14:42:52.0075 0x0d50  [ C733D233B623B7FFCE5031E4B756EE26, 33CC8B140B0E4A9B702E3468BE2646AEE4273F20C6EA5BAC6C3D8FC8EDEF0881 ] C:\Windows\SysWOW64\profapi.dll
    14:42:52.0075 0x0d50  C:\Windows\SysWOW64\profapi.dll - ok
    14:42:52.0075 0x0d50  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE, 4EFA41765E46E90C6CBDB0DC1E0CD375D7AB3307C477171EBAA6A16AC32E5211 ] C:\Windows\System32\ssdpapi.dll
    14:42:52.0075 0x0d50  C:\Windows\System32\ssdpapi.dll - ok
    14:42:52.0075 0x0d50  [ 53E9614ADFA6A40A452BA014CEF6F261, ADFE56BF01631E531557C6085DC92C17B1F4ED9B8825AB7AF0B0A173EF72EEA6 ] C:\Windows\SysWOW64\urlmon.dll
    14:42:52.0075 0x0d50  C:\Windows\SysWOW64\urlmon.dll - ok
    14:42:52.0091 0x0d50  [ D1DE1EAFDE97BE41CF6585027FF3E732, 76F17D4DF440D6734DC8157092D94EB18C2A73A0A49BEEA289E7B3EDE30E86A2 ] C:\Windows\SysWOW64\comdlg32.dll
    14:42:52.0091 0x0d50  C:\Windows\SysWOW64\comdlg32.dll - ok
    14:42:52.0091 0x0d50  [ 58788565442368B0615DDAF1D452B843, 4D7A635EB64179A9EF6506189C380CA9710ACE27136D5CA0D25B63575401682B ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18837_none_ec86b8d6858ec0bc\comctl32.dll
    14:42:52.0091 0x0d50  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18837_none_ec86b8d6858ec0bc\comctl32.dll - ok
    14:42:52.0091 0x0d50  [ C9564CF4976E7E96B4052737AA2492B4, C3AC989C8489A23BB96400B1856F5325FFC67E844F04651EA5D61BC20A991C6D ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
    14:42:52.0091 0x0d50  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
    14:42:52.0091 0x0d50  [ 287923557447D7E4BDD7E65B1F0F5428, 14D85A0F036F28D77AA9723C3D7E8C4DA9BDFF8A1AD9BEA6FE5756DBF5D00F08 ] C:\Windows\System32\vsstrace.dll
    14:42:52.0091 0x0d50  C:\Windows\System32\vsstrace.dll - ok
    14:42:52.0107 0x0d50  [ 8E01332CC4B68BC6B5B7EFFE374442AA, A4AD1D2FD3EC2F26949DBBC388F9FFF3713AD7EB4E9220AF817EBB5223E467C6 ] C:\Windows\SysWOW64\oleacc.dll
    14:42:52.0107 0x0d50  C:\Windows\SysWOW64\oleacc.dll - ok
    14:42:52.0107 0x0d50  [ 934A8EB549A5F8BF4D051142FF575F8A, ABB8F24A04A5570004708682CF1B816EAAA4EF0E987985461BFEB1E94EA7EBBF ] C:\Program Files (x86)\Dropbox\Update\1.3.27.29\goopdate.dll
    14:42:52.0107 0x0d50  C:\Program Files (x86)\Dropbox\Update\1.3.27.29\goopdate.dll - ok
    14:42:52.0107 0x0d50  [ 1C60E09CA1C3A045BC4D367F67C915B7, DF1ED88CB57DA1AB1A4245AE0D5B42AFA3396EBF67B99411FFFB0DD06DE1AEAF ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
    14:42:52.0107 0x0d50  C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
    14:42:52.0122 0x0d50  [ A90DC9ABD65DB1A8902F361103029952, 26798758976CE53251AC342B966BE0363AE1794BD965C452F5DEBC33E18969F0 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
    14:42:52.0122 0x0d50  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
    14:42:52.0122 0x0d50  [ 6951562DC4625EEFC6EACD52AD165866, 44A0B3EA0232D613A5B4115492DF2A7CEF25B35300E6A3E3E50C9544C5D1049E ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
    14:42:52.0122 0x0d50  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
    14:42:52.0122 0x0d50  [ CFF35B879D1618D42C86644C717BA947, 1837275202628D3320867A3BF8CFDA15491730C4B74215F7C0D7E140BF01AC3C ] C:\Windows\SysWOW64\winnsi.dll
    14:42:52.0122 0x0d50  C:\Windows\SysWOW64\winnsi.dll - ok
    14:42:52.0138 0x0d50  [ 6A13B4F3B3F575F1E24B877B9359AABA, 676AD5F8F709D4A9DCE9938D82DEEE329C9A385A6969C169B3DF37AA75F1E4C7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
    14:42:52.0138 0x0d50  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
    14:42:52.0138 0x0d50  [ 2FCA0D2C59A855C54BAFA22AA329DF0F, ED9D26F539065D62FCCEDEEC8E509B30F4D15F8DA586C1F657ACEFE9DABAACD0 ] C:\Windows\SysWOW64\netapi32.dll
    14:42:52.0138 0x0d50  C:\Windows\SysWOW64\netapi32.dll - ok
    14:42:52.0138 0x0d50  [ 589CBC4989F750E1DA35625AB481CF43, B93E1B8C3775F9C995FD5451C685A06DEFD24AE1DF0DD99D19D5E4B9AC0010F9 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
    14:42:52.0138 0x0d50  C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
    14:42:52.0153 0x0d50  [ A0BCFE9678E99FD149535A1BC83D427B, F4344A8471305A771E5515EFC00CC914057B60562150C9A324722D25CCE61E02 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AutoChaptering.dll
    14:42:52.0153 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AutoChaptering.dll - ok
    14:42:52.0153 0x0d50  [ E87D4371B24BC9E5BAE95AEA60FFD959, 2EBF01C6D75E235E0E3D2D3F6327757A095E3CC21E83930269E822B695016B2F ] C:\Windows\System32\aepic.dll
    14:42:52.0153 0x0d50  C:\Windows\System32\aepic.dll - ok
    14:42:52.0153 0x0d50  [ 3BE0D923AA45A4DBE091C2D84F0B4FE7, 603EEC55D6F646150FC3F0F2C939CFE434C02FC7A7AB23B1FEC8B5C77E4C8381 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
    14:42:52.0153 0x0d50  C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
    14:42:52.0169 0x0d50  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC, 372AF797353F9335915CD06D4076BAB8410775DCAF2DAC0593197D7C41BBFFB2 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
    14:42:52.0169 0x0d50  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
    14:42:52.0169 0x0d50  [ 20B3934DB73EABA2B49B7177873CB81F, 492EAC5C51472B43DE11825358AEC4B9E3A081DACFD7513C696D6FE40F302EE5 ] C:\Windows\SysWOW64\netutils.dll
    14:42:52.0169 0x0d50  C:\Windows\SysWOW64\netutils.dll - ok
    14:42:52.0169 0x0d50  [ 5CCDCD40E732D54E0F7451AC66AC1C87, 66F4DA105BD72E41250CD59E2B3CD931B47AC9FDB6C784B9E33C5EE1AC29841F ] C:\Windows\SysWOW64\srvcli.dll
    14:42:52.0169 0x0d50  C:\Windows\SysWOW64\srvcli.dll - ok
    14:42:52.0185 0x0d50  [ 2E33DFD10F28F86C3FC40EE123CC3904, 57C65671A04EFCA437A69E8E97B2FCA17897EE4608C7DB69F77D44FBD3490B50 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
    14:42:52.0185 0x0d50  C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
    14:42:52.0185 0x0d50  [ 702254574E7E52052DE39408457B7149, 645CA9E88DA21C63710A04A0F54421018DF415A3D612112C71A255C49325C082 ] C:\Windows\SysWOW64\version.dll
    14:42:52.0185 0x0d50  C:\Windows\SysWOW64\version.dll - ok
    14:42:52.0185 0x0d50  [ 927E38A35E4DFC4E294BD130BAA6F759, E64380201E7F65645AC70802C5E545A4300C6B1B84294C3E87FFD05975F05ED9 ] C:\Windows\SysWOW64\iertutil.dll
    14:42:52.0185 0x0d50  C:\Windows\SysWOW64\iertutil.dll - ok
    14:42:52.0185 0x0d50  [ 895C9AB0A855547445C4181195230757, 89BDA385D8CCB75C3D7B1BDFA567AC441A931F4E499C0835FEE9D010343FABB6 ] C:\Windows\System32\sfc_os.dll
    14:42:52.0185 0x0d50  C:\Windows\System32\sfc_os.dll - ok
    14:42:52.0200 0x0d50  [ E5A4A1326A02F8E7B59E6C3270CE7202, DCB76016F9AC47E631540874DA208A089F9D529DA9628705A2869B954526BFE0 ] C:\Windows\SysWOW64\wkscli.dll
    14:42:52.0200 0x0d50  C:\Windows\SysWOW64\wkscli.dll - ok
    14:42:52.0200 0x0d50  [ E4EB138060BAE0DBAB1A3B71A3141FE7, D7441D2EA9096362722E12E92E5065E30B5F0B0126DF0ABC91F854E19CEA5848 ] C:\Windows\SysWOW64\wininet.dll
    14:42:52.0200 0x0d50  C:\Windows\SysWOW64\wininet.dll - ok
    14:42:52.0200 0x0d50  [ 839F96DBAAFD3353E0B248A5E0BD2A51, 11DA5AD3EA5FF4766C12B99FB520B3CBE08581ECAF1A2FD1DC5AC835CA78FAC2 ] C:\Windows\SysWOW64\rasapi32.dll
    14:42:52.0200 0x0d50  C:\Windows\SysWOW64\rasapi32.dll - ok
    14:42:52.0200 0x0d50  [ FFA7172354B9256DBB2CDD75F16F33FE, 85B2F014C67C2E52540F17D561793C6633C9E98F12639CCD3854EB1EC34DD035 ] C:\Windows\SysWOW64\rasman.dll
    14:42:52.0200 0x0d50  C:\Windows\SysWOW64\rasman.dll - ok
    14:42:52.0216 0x0d50  [ DBC1136A62BD4DECC3632DF650284C2E, 2D6344357D21A9062019C7DDF3DB440ABC724CDA925471BBFA8CCAC65E6A2C80 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
    14:42:52.0216 0x0d50  C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe - ok
    14:42:52.0216 0x0d50  [ D15618A0FF8DBC2C5BF3726BACC75A0B, ADD81EA1D208907D67802F0E96EC0327BA89021F870BA22B9C7E3A19013A6AE7 ] C:\Windows\SysWOW64\userenv.dll
    14:42:52.0216 0x0d50  C:\Windows\SysWOW64\userenv.dll - ok
    14:42:52.0216 0x0d50  [ 6A6B2EE4565A178035BE2A4FF6F2C968, E2E231F1C2E2CE19583483ACC53318651FA7CA2DE46BCB89B4CBF97CA0525122 ] C:\Windows\SysWOW64\wtsapi32.dll
    14:42:52.0216 0x0d50  C:\Windows\SysWOW64\wtsapi32.dll - ok
    14:42:52.0231 0x0d50  [ B40420876B9288E0A1C8CCA8A84E5DC9, 0D3C73B45BC708D7B1E26DFB6D4F64031A998548FEA0FB5CE198ED716F7DC9A0 ] C:\Windows\SysWOW64\dnsapi.dll
    14:42:52.0231 0x0d50  C:\Windows\SysWOW64\dnsapi.dll - ok
    14:42:52.0231 0x0d50  [ 18AB2E5A40064ED5F7791AC5946A90F3, B7536CE56702C23B1CEC3E1B6C78866E0A76808B85A92AF3733D9ED9429E004C ] C:\Windows\SysWOW64\msimg32.dll
    14:42:52.0231 0x0d50  C:\Windows\SysWOW64\msimg32.dll - ok
    14:42:52.0231 0x0d50  [ 2D23A10FBFA09DC1B61799128BBA91A2, B8752B933A2DC6C8A1B169785DA9018147C8F4492D1D34A60E934697CDE0DB4B ] C:\Windows\SysWOW64\secur32.dll
    14:42:52.0231 0x0d50  C:\Windows\SysWOW64\secur32.dll - ok
    14:42:52.0231 0x0d50  [ D5518F78EF709065BFD68A3F575397D7, 0E724AD6EB6594890E05828648F9604B10FD6781ADE2A8C5CA19CD65E302BFD9 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libexpat.dll
    14:42:52.0231 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libexpat.dll - ok
    14:42:52.0247 0x0d50  [ 49ACA548B2423F1C67898E6AC719A9A6, 23D84137EAB9AFDD31CBB6776B6B25AD135A120AF7F7885EB5BBF9E0A2CCC4C1 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
    14:42:52.0247 0x0d50  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
    14:42:52.0247 0x0d50  [ B54FD1991E659FD61EF1D34EC27AAECD, 4BB2F43322093F02B2FBCC4B2456437356555DA48DC6DA67FC55A1B457D32149 ] C:\Windows\SysWOW64\cryptsp.dll
    14:42:52.0247 0x0d50  C:\Windows\SysWOW64\cryptsp.dll - ok
    14:42:52.0247 0x0d50  [ 465BEA35F7ED4A4A57686DEA7EA10F47, 7F1B3CA09AB045F805DA5765BE7DD270F5DDACE3073017F7386FF1E2FA82D6FB ] C:\Windows\SysWOW64\cscapi.dll
    14:42:52.0247 0x0d50  C:\Windows\SysWOW64\cscapi.dll - ok
    14:42:52.0263 0x0d50  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8, B07A12E3ECD5E418A3F99F00C56E7F482F68CADE330E7C079DCCDFFAD2E21299 ] C:\Windows\SysWOW64\dbghelp.dll
    14:42:52.0263 0x0d50  C:\Windows\SysWOW64\dbghelp.dll - ok
    14:42:52.0263 0x0d50  [ 349B30E799117B4B6A0BF13195FB44FB, FC1C76B1DA1149A71F1F423788DE694F82ADB8552BDBD52E55F5A364116F0D63 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoThumb.dll
    14:42:52.0263 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoThumb.dll - ok
    14:42:52.0263 0x0d50  [ ED8EC63F7522DF4852147C84EC62C36A, 75633011CD28DCBD4834211A9D415F17DE15BFCD80FB9FF6CE25CBBD4E9899AF ] C:\Windows\SysWOW64\rsaenh.dll
    14:42:52.0263 0x0d50  C:\Windows\SysWOW64\rsaenh.dll - ok
    14:42:52.0278 0x0d50  [ D3E8C7FADB758E5D222C639CC65790AD, 5B0A8007FC613DA5F447C4368A683AFBF420E151F7AB5703CA15579DE04F699A ] C:\Windows\SysWOW64\apphelp.dll
    14:42:52.0278 0x0d50  C:\Windows\SysWOW64\apphelp.dll - ok
    14:42:52.0278 0x0d50  [ EC032D15B26F5AEE5F166CD0E702E733, 4FB40D5517C38811DCEA95B4F08320EF62FED02D13ED13B7EFA5B308A5002DCC ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\bgd.dll
    14:42:52.0278 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\bgd.dll - ok
    14:42:52.0278 0x0d50  [ AD7B9C14083B52BC532FBA5948342B98, 17F746D82695FA9B35493B41859D39D786D32B23A9D2E00F4011DEC7A02402AE ] C:\Windows\SysWOW64\cmd.exe
    14:42:52.0278 0x0d50  C:\Windows\SysWOW64\cmd.exe - ok
    14:42:52.0294 0x0d50  [ 2B983F067AEE3F9EB4DF5E97F45D21D1, 0B9ED0E91FF01A5445927650113E320C3C0EA16F1401AA55A509DDBF704DF22F ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
    14:42:52.0294 0x0d50  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe - ok
    14:42:52.0294 0x0d50  [ 526605222F50A2A6E89834DC33ED8BAE, 2BA370CBD57E40A4B391F467091A38BA43A724CAADA1B06C06F3D6347C434983 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avcodec-52.dll
    14:42:52.0294 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avcodec-52.dll - ok
    14:42:52.0294 0x0d50  [ E4CD3659AAF13F96230C51F7D0DAD54B, 44CECF9573122686DFCD4046AB3694300C8D10A4074CF11A8C23C8CA257570E0 ] C:\Program Files (x86)\Dropbox\Update\1.3.27.29\DropboxCrashHandler.exe
    14:42:52.0294 0x0d50  C:\Program Files (x86)\Dropbox\Update\1.3.27.29\DropboxCrashHandler.exe - ok
    14:42:52.0294 0x0d50  [ C5A99A4C0DC9F0F5A95BA0C83D30A549, F99CCCE303F0FC07D82D3BBA223E8CCE41FB7FA8FB5C2A9214C161826537C7C9 ] C:\Windows\SysWOW64\mstask.dll
    14:42:52.0294 0x0d50  C:\Windows\SysWOW64\mstask.dll - ok
    14:42:52.0309 0x0d50  [ 326C7F76A29897A892AA7726E91C1C67, 64305346B06EC14976130B0B80F14B4D5AB63E5B2A6A7B872EC9CE2BF8FADCD2 ] C:\Windows\SysWOW64\winbrand.dll
    14:42:52.0309 0x0d50  C:\Windows\SysWOW64\winbrand.dll - ok
    14:42:52.0309 0x0d50  [ A29BAFC1543F9D2234AFFFEA9BCE76C8, 134CFC2FEFA81233BC04AD81394E64F5FF5F0FE0991DD7E7003DE28EFCFB0F39 ] C:\Windows\System32\mshtml.dll
    14:42:52.0309 0x0d50  C:\Windows\System32\mshtml.dll - ok
    14:42:52.0309 0x0d50  [ 22C7BD320A5C2AE3AE24C529768702F9, EA2C694C9B4D3C28A7BBDAF7016804BD961A36CAEDCDE7882283BD0E268D7F2C ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamsrv.dll
    14:42:52.0309 0x0d50  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamsrv.dll - ok
    14:42:52.0325 0x0d50  [ 8715A0D10CFFC8DEE923957F07DAA042, 90E4352F8A248FA64EA71B8AB07141142B809B384E9F7D1CB7C3DFBF4003BFAE ] C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler.exe
    14:42:52.0325 0x0d50  C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler.exe - ok
    14:42:52.0325 0x0d50  [ A2637F7468ECBA25FE7065FC194908AD, A94DBEF658B0E63495A3ACE2FA86BE1EDD75A5E80D9AF0C53FDB4E49392A7825 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avutil-50.dll
    14:42:52.0325 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avutil-50.dll - ok
    14:42:52.0325 0x0d50  [ B10F3134F9334CBE3DAE0D17DA009AE3, AE889247A88B2A72A6D423A025B306590B495D5C96652057A6C9B64FDF0AA062 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avformat-52.dll
    14:42:52.0325 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\avformat-52.dll - ok
    14:42:52.0341 0x0d50  [ FD67683FBA9B2C4BB551780BD8846F64, 4BB7C956EA8D2CE63F5BF80FAE652F98416A7635202AEE04FC8D81000E6363DF ] C:\Windows\SysWOW64\winsta.dll
    14:42:52.0341 0x0d50  C:\Windows\SysWOW64\winsta.dll - ok
    14:42:52.0341 0x0d50  [ F8E05DC5365F07D0337EF56BE17B3E04, F3DB3D20862DABE059A468FC9E6CFD546EA7C20F0FC64965444F563F2DCB267A ] C:\Program Files (x86)\Malwarebytes Anti-Malware\QtCore4.dll
    14:42:52.0341 0x0d50  C:\Program Files (x86)\Malwarebytes Anti-Malware\QtCore4.dll - ok
    14:42:52.0341 0x0d50  [ 344F22718258E351396E729F8298D5C9, 325270E755DA7DE7A49DC3241C3A06C50ADD15A5764FF0914E811B46DAFA37E3 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\swscale-0.dll
    14:42:52.0341 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\swscale-0.dll - ok
    14:42:52.0356 0x0d50  [ DB254D50B4527C2821C537E0587B44E8, 77DC14828FA882E30FDE46D7CBFD62D5F1765A3AE24275507A5613C4CC8CC11F ] C:\Windows\SysWOW64\ieframe.dll
    14:42:52.0356 0x0d50  C:\Windows\SysWOW64\ieframe.dll - ok
    14:42:52.0356 0x0d50  [ 6509A96DAE25340772B51AC020CB1094, 8B20005C4DA2C385F4AA499B21A7A78569F69B69B067E8E2D4D463425BDE8422 ] C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler64.exe
    14:42:52.0356 0x0d50  C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler64.exe - ok
    14:42:52.0356 0x0d50  [ A7A8CA53D9C9FD90C07AB0EB38E5316B, B98722E76601A98F038F40703C4B8BD21B5EC3B65DC1B07B7C367C06448F8A0E ] C:\Windows\System32\dbghelp.dll
    14:42:52.0356 0x0d50  C:\Windows\System32\dbghelp.dll - ok
    14:42:52.0356 0x0d50  [ 7A9F94E0F53C8F6E09405351AC104A3C, 76FCC877DB1E69C5B8228164B5F277F8E7625BFE965BF8F00DCC7FBBE141573F ] C:\Windows\SysWOW64\credssp.dll
    14:42:52.0356 0x0d50  C:\Windows\SysWOW64\credssp.dll - ok
    14:42:52.0372 0x0d50  [ 5997D769CDB108390DCFAEBF442BF816, 0E25CA984C0EEB629184423FAA9BC6D4356DF9A93F281E06DC83B4AC638AEC4A ] C:\Windows\SysWOW64\RpcRtRemote.dll
    14:42:52.0372 0x0d50  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
    14:42:52.0372 0x0d50  [ 177EC4DD0F7D63835B6570E086D7EF9C, 4D10C9FD5505E7A5B1BEBAF4DEA28429FB2D1C78DC86DDC737329660C66AEC9F ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AudioExtractor.dll
    14:42:52.0372 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AudioExtractor.dll - ok
    14:42:52.0372 0x0d50  [ 83C628FB6B293D61F7BFBBC3D8F88AC9, 9A6B940FE9F5BA0ABA86754F20F2C3642FCA1870B18D8787CA4BDB07C3F02A7E ] C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcp100.dll
    14:42:52.0372 0x0d50  C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcp100.dll - ok
    14:42:52.0387 0x0d50  [ E8115316A914DA20529E984F0C52828D, 4E2AC5EA8FD6E7E6607C13EA3598B136C6765BEEC9120872E93A18F28B65A61A ] C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcr100.dll
    14:42:52.0387 0x0d50  C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcr100.dll - ok
    14:42:52.0387 0x0d50  [ 043835A4A31239FE57B891EC960E6075, C8FB0A023F368BCB1C922913B8C5A6BB56A5F65F4881612D724A23490C59ECA7 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamcore.dll
    14:42:52.0387 0x0d50  C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamcore.dll - ok
    14:42:52.0387 0x0d50  [ B9A8CBCFCD3EC9D2EA4740AF347BF108, 97FA304E3880BC863D999F441AE47CB8ADF00D2DEC2A52ACD8FBD02CC096786A ] C:\Windows\SysWOW64\mpr.dll
    14:42:52.0387 0x0d50  C:\Windows\SysWOW64\mpr.dll - ok
    14:42:52.0387 0x0d50  [ E7B9D5FF20FFDD4AAE2EF1D1B8C27A37, 689D126B1B42140D5049015E3E324268E6542D4BC6CC14E31D8B89A25B94BAA5 ] C:\Windows\SysWOW64\imagehlp.dll
    14:42:52.0387 0x0d50  C:\Windows\SysWOW64\imagehlp.dll - ok
    14:42:52.0403 0x0d50  [ 728CC4C36BB5DEB206EED0F13F0D3B25, 837355D42D710FECD13D2C384981B783D382E07B2266FC4AA08C42FC1D9709F1 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ID3Driver.dll
    14:42:52.0403 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ID3Driver.dll - ok
    14:42:52.0403 0x0d50  [ 30E8320D8CAB0471B618887A856567C5, 59A7A6E5E09A2BF547A6EB88AAF1FFDB1379A86FD11B9EE67FB921ABB47C82FB ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\tag.dll
    14:42:52.0403 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\tag.dll - ok
    14:42:52.0403 0x0d50  [ 60F4AEFA103D421EA4A40E31409B4756, 037A8605CA504A4FF43E9D4DE9017CEA1E26D3556C975872C747E24D8B0835EF ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
    14:42:52.0403 0x0d50  C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
    14:42:52.0419 0x0d50  [ 49B07EF81EECFEA99B46C179E8FC3FE0, C06A2790F1D694A5FA58009A283C0333616738A977363C3C4B10450558CCD441 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libThumbnail.dll
    14:42:52.0419 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libThumbnail.dll - ok
    14:42:52.0419 0x0d50  [ 1A5EB7931FDC2ADD1B1C6FE0886FE8A6, BD653D2ECDE87A80C91228C3D869377EFFBFFF0F18F53330F72B38464C6299A1 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\RichInfoDriver.dll
    14:42:52.0419 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\RichInfoDriver.dll - ok
    14:42:52.0419 0x0d50  [ DC15A4F6423511A23E760D69973A1F12, 4C94F0B7D2D1425B2EBBF630330260A1513A8DEA941562F51D7153A337866169 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoExtractor.dll
    14:42:52.0419 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoExtractor.dll - ok
    14:42:52.0419 0x0d50  [ 27BAC1450DAED59DE58B15ACB9B93F0C, BA3B4B28288C2BDDB51B39E2AD1841BB979FCBC5FDAD771963551D771D3FD35B ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ThumbnailMaker.dll
    14:42:52.0434 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ThumbnailMaker.dll - ok
    14:42:52.0434 0x0d50  [ 7ED3A9C3763725BD700946971215EE77, 6150D52945E10B69CFA5E3E637DCEBA67158092C6350B4AFE456EA846CA90C18 ] C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
    14:42:52.0434 0x0d50  C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe - ok
    14:42:52.0434 0x0d50  [ C1985BD968C9AFD75A7113DC0DBB68CB, AB271A826002557F25E8D9EE522E0A12D51A9FDB887A3DFE67419BFB58CCD773 ] C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\css_core.dll
    14:42:52.0434 0x0d50  C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\css_core.dll - ok
    14:42:52.0434 0x0d50  [ C605E502ECD23BB5C5310AEAE019EACB, DF0468B7E2C570A48B6D5076AB14286E293C79A4D5888DD408CA4E6636BB0AE5 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ImageMagickWrapper.dll
    14:42:52.0434 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ImageMagickWrapper.dll - ok
    14:42:52.0450 0x0d50  [ D5AEFAD57C08349A4393D987DF7C715D, C36A45BC2448DF30CD17BD2F8A17FC196FAFB685612CACCEB22DC7B58515C201 ] C:\Windows\SysWOW64\winmm.dll
    14:42:52.0450 0x0d50  C:\Windows\SysWOW64\winmm.dll - ok
    14:42:52.0450 0x0d50  [ DC6612A9EE015A36BA2A27BC9CC12537, F4456A3E4028BE3BDE46363290CCC1E8420034A122596D86272CE4B554C78DB5 ] C:\Windows\SysWOW64\mfc42.dll
    14:42:52.0450 0x0d50  C:\Windows\SysWOW64\mfc42.dll - ok
    14:42:52.0450 0x0d50  [ 2C4A87CA8C00E98EFDCFA2E8EC9A3503, DA59CE662E98E56D89E2894D2AC8B9F324C16DA23C860640EDC2C82E0AD06097 ] C:\Windows\SysWOW64\shdocvw.dll
    14:42:52.0450 0x0d50  C:\Windows\SysWOW64\shdocvw.dll - ok
    14:42:52.0450 0x0d50  [ 9C5DAAED3B3C06DBC95228CC407B8B70, E306E5C4A1C0D4B63840E38098B9FF2F4267FA4F519C7841E5A0C25A8DFF96D8 ] C:\Users\Sharon Wright\AppData\Local\Temp\{818789BA-8980-4CBF-9EAD-EEEF984AB149}.exe
    14:42:52.0450 0x0d50  C:\Users\Sharon Wright\AppData\Local\Temp\{818789BA-8980-4CBF-9EAD-EEEF984AB149}.exe - ok
    14:42:52.0465 0x0d50  [ EE4FABA9C7E541ABAFBC977D71E0DF62, 6A8C456A46095A907767E6FE1BD7568A778A447723E4ACB3C1DC8264B166F498 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoMetadataDriver.dll
    14:42:52.0465 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\VideoMetadataDriver.dll - ok
    14:42:52.0465 0x0d50  [ 7D34AF98A706230CC2DEDFE0CABF87AB, 93237B839C2BC6E84C2C675BB211CA0FB781B348A033EF648A9AA5BDAC1EFDAE ] C:\Windows\SysWOW64\odbc32.dll
    14:42:52.0465 0x0d50  C:\Windows\SysWOW64\odbc32.dll - ok
    14:42:52.0465 0x0d50  [ 01B0B11FB93B7B95893DB65FECF41295, 1E6E58F2B3D4ABCED7DA146C00F42BAB763A7CBF7748E1D37FB621C663575325 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libKeyFrame.dll
    14:42:52.0465 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libKeyFrame.dll - ok
    14:42:52.0481 0x0d50  [ 46B97C3EFEF00992FE9AF84A81CA0C65, 08ACC372DBA05DE05776EE88E1956B191B2F1033216DC958D489A0792F2217AB ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\SECMetaDriver.dll
    14:42:52.0481 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\SECMetaDriver.dll - ok
    14:42:52.0481 0x0d50  [ 1F5AFD468EB5E09E9ED75A087529EAB5, 8204DBCC054C1E54B6065BACB78C55716681AD91759E25111B4E4797E51D0AA3 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll
    14:42:52.0481 0x0d50  C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll - ok
    14:42:52.0481 0x0d50  [ 564734B0A011CC3A4BE33C94B12EC4FE, BB68F0AF0A0FFF4ECEB457F5CACE5837FBB5CAFE83769B86B5EAF11EB9E2B77B ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ImageExtractor.dll
    14:42:52.0481 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\ImageExtractor.dll - ok
    14:42:52.0481 0x0d50  [ F2923FD87C7A88F28BE66B95D3579BEB, 557CE991949B135A3D98C354F20C118AD3C30CB752810630FC60D6DE5DCB23EC ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\photoDriver.dll
    14:42:52.0481 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\photoDriver.dll - ok
    14:42:52.0497 0x0d50  [ 04DDA60A9E91E7BF7F207E6D6A2D0041, 505A53564B663770FD2876BADB68A0F8059CBED92AD56E08BB8CDF96ABE53815 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libexif-12.dll.dll
    14:42:52.0497 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\libexif-12.dll.dll - ok
    14:42:52.0497 0x0d50  [ ABA457BFC7EC0B5E130B2F1E0F549DFF, C944C75C351A276952D0A869F9ED3DF8674E9479797EE7B03D13E8FDCDEB2DC4 ] C:\Windows\SysWOW64\odbcint.dll
    14:42:52.0497 0x0d50  C:\Windows\SysWOW64\odbcint.dll - ok
    14:42:52.0497 0x0d50  [ 28A09777D2D952122567A8A82F1A2C7B, 772260DF36AE85A0619C51402DE416E0C329976B724C8E9C4F8C013CBB7C7289 ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
    14:42:52.0497 0x0d50  C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
    14:42:52.0512 0x0d50  [ 68DC8CCB92C57952E866AC90062D3B8C, E4DBAF4B60F3C3C285A17333E41F3A4C065F1E2AA49B9338D014E1EB86CC5ACF ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\TextExtractor.dll
    14:42:52.0512 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\TextExtractor.dll - ok
    14:42:52.0512 0x0d50  [ E6C55BEAB2DFDC2FBCA20522166D0C61, 2D16B019E2DCF7D335CA3647CA7DB9C4080742F9FD1E1277BA8BC035C7CB9D43 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DirectoryScanner.dll
    14:42:52.0512 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\DirectoryScanner.dll - ok
    14:42:52.0512 0x0d50  [ 24D7BBCB3051CD0398A10DEB0817C4EA, 01397527A5DFDAFE1572CB4F2F442EC6A6DFC8E1540FF3CDDBAC08E8B98AC58A ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\Autobackup.dll
    14:42:52.0512 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\Autobackup.dll - ok
    14:42:52.0528 0x0d50  [ E94C583CDE2348950155F2AF2876F34D, D00C7E0D665E467B712C68A446CC5BE14FDA743A2301878B3CEB72CDD0A8B8E7 ] C:\Windows\SysWOW64\mswsock.dll
    14:42:52.0528 0x0d50  C:\Windows\SysWOW64\mswsock.dll - ok
    14:42:52.0528 0x0d50  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] C:\Windows\System32\netman.dll
    14:42:52.0528 0x0d50  C:\Windows\System32\netman.dll - ok
    14:42:52.0528 0x0d50  [ 59267D2F0328599AA3B5408C2E06126F, 54D59079F04F9F08F980C1F1A8F8973ACF9C344218818A15A762287EE6F22F02 ] C:\Windows\System32\HPZinw12.dll
    14:42:52.0528 0x0d50  C:\Windows\System32\HPZinw12.dll - ok
    14:42:52.0528 0x0d50  [ EE5C8E27C37B79CB54A2FCEEED2DC262, 0A5E200FD65A491756B951A4A0ED39B88B7B313E97C2BBF3C91AC4C290772BB7 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
    14:42:52.0528 0x0d50  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
    14:42:52.0543 0x0d50  [ 4774AD83C650001B337B92E5E5DA337B, 138ECC7F556D8A12AE58B78B68F6515BE4C00F9F062596B48B6CA6C010F13035 ] C:\Windows\System32\drivers\NisDrvWFP.sys
    14:42:52.0543 0x0d50  C:\Windows\System32\drivers\NisDrvWFP.sys - ok
    14:42:52.0543 0x0d50  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] C:\Windows\System32\nlasvc.dll
    14:42:52.0543 0x0d50  C:\Windows\System32\nlasvc.dll - ok
    14:42:52.0543 0x0d50  [ C6DCD1D11ED6827F05C00773C3E7053C, EA23BE261C9C04F44215D254D7A80FD0AEE84C6F192D0FEE49A7CF74ED3CB1A6 ] C:\Windows\System32\sfc.dll
    14:42:52.0543 0x0d50  C:\Windows\System32\sfc.dll - ok
    14:42:52.0543 0x0d50  [ E36112A8A6C7F840169A7E92C12F4203, 52795B2E6ECCE751EEF5074AF52FDE376A382D0A1C43B90DD4F77A397C00FBC5 ] C:\Windows\System32\wsock32.dll
    14:42:52.0543 0x0d50  C:\Windows\System32\wsock32.dll - ok
    14:42:52.0559 0x0d50  [ 9B03984E140151B347233914594D2346, F517E52DDAE6B05F6BE862267B8BE54EB6E25B745409E60666C1014119F06498 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\RosettaAllShare.dll
    14:42:52.0559 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\RosettaAllShare.dll - ok
    14:42:52.0559 0x0d50  [ D4FAC263861BAE06971C7F7D0A8EBF15, D494DEF0024288B9CC56EC6B500FF5828144BE9B8E7033340509EC5E68F8DED0 ] C:\Windows\System32\ncsi.dll
    14:42:52.0559 0x0d50  C:\Windows\System32\ncsi.dll - ok
    14:42:52.0559 0x0d50  [ 507CE15E7A7A23B84637D8F0B3E2432C, EC12B510BFC0A61D3B96EE9E3F0F9CCE1ACB7CE01E1A6D2FFA9BF4566C289EF1 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_serialization-vc90-mt-1_47.dll
    14:42:52.0559 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_serialization-vc90-mt-1_47.dll - ok
    14:42:52.0575 0x0d50  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] C:\Windows\System32\drivers\PEAuth.sys
    14:42:52.0575 0x0d50  C:\Windows\System32\drivers\PEAuth.sys - ok
    14:42:52.0575 0x0d50  [ CEF59F69A998E5FB13E8B5171776549D, 286A370CB723BD3D974CC8CF5B888790182911844FF42A4BE8EDC16CBBB5541D ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_date_time-vc90-mt-1_47.dll
    14:42:52.0575 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_date_time-vc90-mt-1_47.dll - ok
    14:42:52.0575 0x0d50  [ 5E49A473642D0506201C26B48C88156B, B9378B002D7F4BDF235E5D7AD7F44629621E4A7DFC86DA8AD1A4A8AD5D695A20 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_system-vc90-mt-1_47.dll
    14:42:52.0575 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_system-vc90-mt-1_47.dll - ok
    14:42:52.0590 0x0d50  [ 6B1CE57809004238AA1FD82D3E39C3C3, 7C6A8BA1DD8DB68D2B6B15C3D64504605C0691AFDEF786D93B8B90BB45464769 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_thread-vc90-mt-1_47.dll
    14:42:52.0590 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\boost_thread-vc90-mt-1_47.dll - ok
    14:42:52.0590 0x0d50  [ 210FCACAF902B2CD47CF9FD17D846146, 3F77AC721E084864C5966FF5337A90185F62203DC19C685328675500D629CB87 ] C:\Windows\System32\aeevts.dll
    14:42:52.0590 0x0d50  C:\Windows\System32\aeevts.dll - ok
    14:42:52.0590 0x0d50  [ CAA0C16ADCCE6142A43AD83BFA20B38B, 03E87060097C4D52BEF11A33105A60154BA29B05D620740EB4A093DF249D5808 ] C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
    14:42:52.0590 0x0d50  C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe - ok
    14:42:52.0590 0x0d50  [ DA5B856A037872BE089CA6967C7050C5, 89E4B83D31B9DF83DA31749DC535BC1E24CE947FDF7571ECBD8856B981319EBC ] C:\Windows\SysWOW64\msxml3.dll
    14:42:52.0590 0x0d50  C:\Windows\SysWOW64\msxml3.dll - ok
    14:42:52.0606 0x0d50  [ 03F9008D7ABB6C4166205E68CBF23785, 18A04FCFF9CFCA4E14EB6997B3C2F8532903F641661D2FDF8701A032C3062052 ] C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\us.dll
    14:42:52.0606 0x0d50  C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\us.dll - ok
    14:42:52.0606 0x0d50  [ F7F135F7702E0FB3EFE89283E2BE2EBB, 594DC3C51699530D71AE1BA99FAE63A9A127FE8D9772338B9256CB10D964F7A0 ] C:\Windows\SysWOW64\dwmapi.dll
    14:42:52.0606 0x0d50  C:\Windows\SysWOW64\dwmapi.dll - ok
    14:42:52.0606 0x0d50  [ 007863E45F25AA47A4C30D0930BBFD85, 60F2ABA40D520FCA2C57FA2DB72E111C14F21821DA17F662837506B80C269634 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
    14:42:52.0606 0x0d50  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
    14:42:52.0621 0x0d50  [ 9A50B2567918BF7DDD600ECE5DB5ED76, 8372E9F8DD88B7C4FBA7EBB16A39D780DE70B81DAC0CE62932CD02601618389A ] C:\Windows\SysWOW64\ncrypt.dll
    14:42:52.0621 0x0d50  C:\Windows\SysWOW64\ncrypt.dll - ok
    14:42:52.0621 0x0d50  [ CE71B9119A258EDD0A05B37D7B0F92E3, D9310C5BBFE089B8C81E259C462EC1E6D7A7A87FA59FC1F174ED5C58D409AE7A ] C:\Windows\SysWOW64\bcrypt.dll
    14:42:52.0621 0x0d50  C:\Windows\SysWOW64\bcrypt.dll - ok
    14:42:52.0621 0x0d50  [ E8449FE262D7406BCB2AC2A45C53EC5F, 6C118C9FB26404D1943824CF3990F36E12986547FFACB7CC0DF975A913065D78 ] C:\Windows\SysWOW64\bcryptprimitives.dll
    14:42:52.0621 0x0d50  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
    14:42:52.0621 0x0d50  [ 1097F3035BAF46CED8B332B3564C5108, C69781683CA963A1335780DABBBC60E2C3CEF0888738D3425D358D12E8D0AF58 ] C:\Windows\SysWOW64\gpapi.dll
    14:42:52.0621 0x0d50  C:\Windows\SysWOW64\gpapi.dll - ok
    14:42:52.0637 0x0d50  [ 3BAA4BAE71460C5CEB40D5E9339A61BC, AC4212DFDB69B9A9D7A35C94FB6681643C66BB720630F70E3B49010FC746D690 ] C:\Windows\SysWOW64\cryptnet.dll
    14:42:52.0637 0x0d50  C:\Windows\SysWOW64\cryptnet.dll - ok
    14:42:52.0637 0x0d50  [ 6F8E3B7B70E1BBA871212940C1FBDF60, 3F9D4EE64E4210340C6FEE0DE81BFE3C613DDBE608EC09D63817D24CE24BFC5E ] C:\Windows\SysWOW64\SensApi.dll
    14:42:52.0637 0x0d50  C:\Windows\SysWOW64\SensApi.dll - ok
    14:42:52.0637 0x0d50  [ 5F3628DCF926C4499BE1DC74431DFBC8, 66AC303AA71A703B844055CFAE66EB06A8E2BED7A1388C95C7A8263D23EAE25C ] C:\Windows\SysWOW64\WindowsCodecs.dll
    14:42:52.0637 0x0d50  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
    14:42:52.0653 0x0d50  [ A1917689D0E3C8AB2459CDB3D6A3EEAC, E7D756456F85806575744B783B0B5B5CDA1A1BCA8FCF09FD7DC5E1923914ADD8 ] C:\Program Files (x86)\Dropbox\Client\DropboxExt.26.dll
    14:42:52.0653 0x0d50  C:\Program Files (x86)\Dropbox\Client\DropboxExt.26.dll - ok
    14:42:52.0653 0x0d50  [ 50493813E7EBEAF605D2C5DF19FC6B6B, 8EA21218BC0C5ECF296985672BD8B865258AD03169DB4D01784689F60C069A2C ] C:\Users\Sharon Wright\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll
    14:42:52.0653 0x0d50  C:\Users\Sharon Wright\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\FileSyncShell.dll - ok
    14:42:52.0653 0x0d50  [ AB09CE954C647F3C2B4328B57D519996, 0DE1E28796F709D24758DDC6BC2C779F6FF4B20C51B163E2BA77FA7E52942070 ] C:\Users\Sharon Wright\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\msvcp110.dll
    14:42:52.0653 0x0d50  C:\Users\Sharon Wright\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\msvcp110.dll - ok
    14:42:52.0668 0x0d50  [ 80E987DBE08677E2EC09615CD4358607, 8A06500612CE1BB0AECF052DCCCCE619C85BE7732CBAEAC4D6B26B6AE2CC7F7B ] C:\Users\Sharon Wright\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\msvcr110.dll
    14:42:52.0668 0x0d50  C:\Users\Sharon Wright\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\msvcr110.dll - ok
    14:42:52.0668 0x0d50  [ 6A1874347807B8CBB56FF562A73F8C71, F5AA07AC3217455989321FB31110A6AF615041FA50FCEA135616D1F339676306 ] C:\Users\Sharon Wright\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\Telemetry.dll
    14:42:52.0668 0x0d50  C:\Users\Sharon Wright\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\Telemetry.dll - ok
    14:42:52.0668 0x0d50  [ 0FCD3442E8AA76EFFEAE77F44ECCC3BB, B46AA80FFC1DC506573011FCF5C86450885D420F86B6FDB8D8D5211B650B48AC ] C:\Users\Sharon Wright\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\LoggingPlatform.dll
    14:42:52.0668 0x0d50  C:\Users\Sharon Wright\AppData\Local\Microsoft\OneDrive\17.3.4726.0226\LoggingPlatform.dll - ok
    14:42:52.0684 0x0d50  [ 7A6986DD659B96398A11AF5173892715, FB7818952B9015F433418E7DC656A2C20CD682056AB981A55C1722020142D578 ] C:\Windows\SysWOW64\cabinet.dll
    14:42:52.0684 0x0d50  C:\Windows\SysWOW64\cabinet.dll - ok
    14:42:52.0684 0x0d50  [ EDF2A5E96BEC469DA3F64E9BDD386111, 63C91BBDFA2E087293B010A4E45625FBD1BFCAF655BFADE2F8B1C36CF804B118 ] C:\Windows\SysWOW64\xmllite.dll
    14:42:52.0684 0x0d50  C:\Windows\SysWOW64\xmllite.dll - ok
    14:42:52.0684 0x0d50  [ 827CB0D6C3F8057EA037FF271F8E9795, 82760DBDDD38D2A31CAAF51D065DF4E7E1D0F0C22733A0AF653776EBF7B79470 ] C:\Windows\SysWOW64\imageres.dll
    14:42:52.0684 0x0d50  C:\Windows\SysWOW64\imageres.dll - ok
    14:42:52.0684 0x0d50  [ 1307814243F21EB129852D59B5AB37FB, 4A7B0792621A2375D9C53111E6E979FB70770825DDA0ABE2FE15034A3D3653E0 ] C:\Windows\System32\atmfd.dll
    14:42:52.0684 0x0d50  C:\Windows\System32\atmfd.dll - ok
    14:42:52.0699 0x0d50  [ 6E83A1665A1A6A30443176FDE3304390, 7C503303F35DE1041399DF7FCEBDD928FB228A2F6434D934E79880FCB6D60FC1 ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll
    14:42:52.0699 0x0d50  C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok
    14:42:52.0699 0x0d50  [ 218A400108F280428FA22282D3268BBC, 7712687ABAEF6616E90AE5A321044C102E79EC23F4A1EAFB4278C93724873CB3 ] C:\Windows\System32\wscapi.dll
    14:42:52.0699 0x0d50  C:\Windows\System32\wscapi.dll - ok
    14:42:52.0699 0x0d50  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9, E18D66455D00A6D2A2D7CC0833C233FE8A6DD910B59D6B5B5F82EF91450858DF ] C:\Windows\SysWOW64\sfc.dll
    14:42:52.0699 0x0d50  C:\Windows\SysWOW64\sfc.dll - ok
    14:42:52.0715 0x0d50  [ 84799328D87B3091A3BDD251E1AD31F9, F85521215924388830DBB13580688DB70B46AF4C7D82D549D09086438F8D237B ] C:\Windows\SysWOW64\sfc_os.dll
    14:42:52.0715 0x0d50  C:\Windows\SysWOW64\sfc_os.dll - ok
    14:42:52.0715 0x0d50  [ 162D247E995EAEBF3EF4289069E1111C, 19E858E9902E2D570FFD24AE2CB4165273F5BAB1FF7B04758B11AB5CD41FD752 ] C:\Windows\SysWOW64\devrtl.dll
    14:42:52.0715 0x0d50  C:\Windows\SysWOW64\devrtl.dll - ok
    14:42:52.0715 0x0d50  [ FB10715E4099AF9FA389C71873245226, 6A4CB43880B822A0C4714D6E52EB3EB2CE1E69C3AA9CA65EAAD6B131AE43F274 ] C:\Windows\System32\timedate.cpl
    14:42:52.0715 0x0d50  C:\Windows\System32\timedate.cpl - ok
    14:42:52.0715 0x0d50  [ E6F0F82788E8BD0F7A616350EFA0761C, 13091DCB3E3F4F52C3FF210E93AAF1DCE142CFC09F671AEAC5B922393B23E67B ] C:\Windows\System32\actxprxy.dll
    14:42:52.0715 0x0d50  C:\Windows\System32\actxprxy.dll - ok
    14:42:52.0731 0x0d50  [ 23B001185B7C3CB1F4BDEB143E6B45B7, AB3A5AB346F6353B43B06FBE20B7785DA988975E2C8B73A6588F107FFAAACC47 ] C:\Windows\System32\shdocvw.dll
    14:42:52.0731 0x0d50  C:\Windows\System32\shdocvw.dll - ok
    14:42:52.0731 0x0d50  [ A0A65D306A5490D2EB8E7DE66898ECFD, CE5DA408F4EDD5E81CE0925867F03C9A35172CF1571FE4C4C052E45AB69822BB ] C:\Windows\System32\linkinfo.dll
    14:42:52.0731 0x0d50  C:\Windows\System32\linkinfo.dll - ok
    14:42:52.0731 0x0d50  [ 73E8667A19FEEDD856DF2695E9E511D4, 68D66C36D1F293D10ADCC6A33C870F989A29743537592CF172F02E794BEAFD1C ] C:\Windows\SysWOW64\wship6.dll
    14:42:52.0731 0x0d50  C:\Windows\SysWOW64\wship6.dll - ok
    14:42:52.0731 0x0d50  [ 9D4A1690AF93F233E15380398BEC7431, 8CC99491880DBC444651EB7D245EEE46FE77F4FA74FECFCD29E734AA21AF9D75 ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
    14:42:52.0731 0x0d50  C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
    14:42:52.0746 0x0d50  [ FF9877ABCA06D539264275321C97BB07, 27D4637A4E2D85BBE152AE5DF1DE9B311E58CC173B7941CC16AF9319D182DEA9 ] C:\Program Files\Internet Explorer\iexplore.exe
    14:42:52.0746 0x0d50  C:\Program Files\Internet Explorer\iexplore.exe - ok
    14:42:52.0746 0x0d50  [ ED6EE83D61EBC683C2CD8E899EA6FEBE, F82592908D038C44D9F2E5C5B7BC663A2D370FC565F40420E1138A9E55F0E7EB ] C:\Windows\SysWOW64\rasadhlp.dll
    14:42:52.0746 0x0d50  C:\Windows\SysWOW64\rasadhlp.dll - ok
    14:42:52.0746 0x0d50  [ F0D0E883EBBDC7615DC9EDEA0FFB2817, 58F1395445018CB16ED4D3710443FB5B0E087043F6A69F7B10D72D0455958954 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
    14:42:52.0746 0x0d50  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
    14:42:52.0762 0x0d50  [ 69754747274B76E7FAF287239333D7E6, A0BAEC1E56E4B1A17C0D41B317526AF5BB11E7E488C7016067A6229346A23B16 ] C:\Windows\System32\msiltcfg.dll
    14:42:52.0762 0x0d50  C:\Windows\System32\msiltcfg.dll - ok
    14:42:52.0762 0x0d50  [ 2720C94ADCC1727A66365CCB1CE456C4, 7A6978A117406E39CEE7ED051F02DE04E76EC51AA65B3F4774712C1C317F410C ] C:\Windows\System32\msi.dll
    14:42:52.0762 0x0d50  C:\Windows\System32\msi.dll - ok
    14:42:52.0762 0x0d50  [ 732E668096B1A37B7BFD4B9021E69A8E, D6302B8DAE374569AD49FE2FC40AA5F485E5D9DD50167F9395D282B5D3EF8F0B ] C:\Windows\System32\oleres.dll
    14:42:52.0762 0x0d50  C:\Windows\System32\oleres.dll - ok
    14:42:52.0777 0x0d50  [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\SHARON~1\AppData\Local\Temp\{C9C1E501-142D-477D-9DF0-5D7CCD2F575D}\{D4754518-1F7B-4455-8FA4-4604E4EB75F2}.tmp
    14:42:52.0777 0x0d50  C:\Users\SHARON~1\AppData\Local\Temp\{C9C1E501-142D-477D-9DF0-5D7CCD2F575D}\{D4754518-1F7B-4455-8FA4-4604E4EB75F2}.tmp - ok
    14:42:52.0777 0x0d50  [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\SHARON~1\AppData\Local\Temp\{C9C1E501-142D-477D-9DF0-5D7CCD2F575D}\{DAB94A8A-78CB-4452-94EC-65FF063AC8D1}.tmp
    14:42:52.0777 0x0d50  C:\Users\SHARON~1\AppData\Local\Temp\{C9C1E501-142D-477D-9DF0-5D7CCD2F575D}\{DAB94A8A-78CB-4452-94EC-65FF063AC8D1}.tmp - ok
    14:42:52.0777 0x0d50  [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\Users\SHARON~1\AppData\Local\Temp\{C9C1E501-142D-477D-9DF0-5D7CCD2F575D}\{605797C3-36C0-440C-88C2-777A0D0A024E}.tmp
    14:42:52.0777 0x0d50  C:\Users\SHARON~1\AppData\Local\Temp\{C9C1E501-142D-477D-9DF0-5D7CCD2F575D}\{605797C3-36C0-440C-88C2-777A0D0A024E}.tmp - ok
    14:42:52.0777 0x0d50  [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\SHARON~1\AppData\Local\Temp\{C9C1E501-142D-477D-9DF0-5D7CCD2F575D}\{9218EC1A-3023-40C0-8A63-1048C1374535}.tmp
    14:42:52.0777 0x0d50  C:\Users\SHARON~1\AppData\Local\Temp\{C9C1E501-142D-477D-9DF0-5D7CCD2F575D}\{9218EC1A-3023-40C0-8A63-1048C1374535}.tmp - ok
    14:42:52.0793 0x0d50  [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\SHARON~1\AppData\Local\Temp\{C9C1E501-142D-477D-9DF0-5D7CCD2F575D}\{9C570931-45F4-4AC1-89C2-4FB98276B86B}.tmp
    14:42:52.0793 0x0d50  C:\Users\SHARON~1\AppData\Local\Temp\{C9C1E501-142D-477D-9DF0-5D7CCD2F575D}\{9C570931-45F4-4AC1-89C2-4FB98276B86B}.tmp - ok
    14:42:52.0793 0x0d50  [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\SHARON~1\AppData\Local\Temp\{C9C1E501-142D-477D-9DF0-5D7CCD2F575D}\{9D3134DF-6A2D-4421-88DB-CC64CA64EE3C}.tmp
    14:42:52.0793 0x0d50  C:\Users\SHARON~1\AppData\Local\Temp\{C9C1E501-142D-477D-9DF0-5D7CCD2F575D}\{9D3134DF-6A2D-4421-88DB-CC64CA64EE3C}.tmp - ok
    14:42:52.0793 0x0d50  [ 2BCBA6052374959A30BD7948444DBB79, 46224A2B729026FEEBC3C6A09E69919D477097848DB2CA0C2F5B166CDF379660 ] C:\Windows\System32\gameux.dll
    14:42:52.0793 0x0d50  C:\Windows\System32\gameux.dll - ok
    14:42:52.0809 0x0d50  [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\SHARON~1\AppData\Local\Temp\{C9C1E501-142D-477D-9DF0-5D7CCD2F575D}\{A403D92E-B1CC-4EEE-A2B1-52F9D3897D36}.tmp
    14:42:52.0809 0x0d50  C:\Users\SHARON~1\AppData\Local\Temp\{C9C1E501-142D-477D-9DF0-5D7CCD2F575D}\{A403D92E-B1CC-4EEE-A2B1-52F9D3897D36}.tmp - ok
    14:42:52.0809 0x0d50  [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\SHARON~1\AppData\Local\Temp\{C9C1E501-142D-477D-9DF0-5D7CCD2F575D}\{4CA49713-F192-4290-AE68-455782BF8334}.tmp
    14:42:52.0809 0x0d50  C:\Users\SHARON~1\AppData\Local\Temp\{C9C1E501-142D-477D-9DF0-5D7CCD2F575D}\{4CA49713-F192-4290-AE68-455782BF8334}.tmp - ok
    14:42:52.0809 0x0d50  [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\SHARON~1\AppData\Local\Temp\{C9C1E501-142D-477D-9DF0-5D7CCD2F575D}\{8E13D007-EDEC-41C4-8235-FED13CCF63B8}.tmp
    14:42:52.0809 0x0d50  C:\Users\SHARON~1\AppData\Local\Temp\{C9C1E501-142D-477D-9DF0-5D7CCD2F575D}\{8E13D007-EDEC-41C4-8235-FED13CCF63B8}.tmp - ok
    14:42:52.0809 0x0d50  [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\SHARON~1\AppData\Local\Temp\{C9C1E501-142D-477D-9DF0-5D7CCD2F575D}\{3CC4267A-77F6-4C82-BE55-9DD657BB32D4}.tmp
    14:42:52.0809 0x0d50  C:\Users\SHARON~1\AppData\Local\Temp\{C9C1E501-142D-477D-9DF0-5D7CCD2F575D}\{3CC4267A-77F6-4C82-BE55-9DD657BB32D4}.tmp - ok
    14:42:52.0824 0x0d50  [ 1075AB2C077B415760C0E948856B5126, D67804B4A038FC06BD84CBF9C047DD4C13073622027F825371DB98867EF4E9B9 ] C:\Windows\System32\wer.dll
    14:42:52.0824 0x0d50  C:\Windows\System32\wer.dll - ok
    14:42:52.0824 0x0d50  [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86, E15ED4FEFC3010C213694331DDFDC03767682325C898D773AB243E2DC8B08461 ] C:\Windows\System32\msftedit.dll
    14:42:52.0824 0x0d50  C:\Windows\System32\msftedit.dll - ok
    14:42:52.0824 0x0d50  [ FA752544EE1EE59E8AD938CBB43CAC93, EA633416EF79F5FC1C841D46F3AAEC6A56BD09D2FD8B9CD8584E4AF65B890974 ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
    14:42:52.0824 0x0d50  C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
    14:42:52.0840 0x0d50  [ 2EBD0C5B090125AECF017C57344C45AB, 4FF8F2460115C60AD164EE0DC2079E1601B8AA21A1BA8033B7B731FAF85411B6 ] C:\Windows\System32\msls31.dll
    14:42:52.0840 0x0d50  C:\Windows\System32\msls31.dll - ok
    14:42:52.0840 0x0d50  [ 4C2C4640BF23AAFCF90519E0F34436CE, 8ACCDA77C2DC5BE2DAED05134310122AFECC872A8D118612E55DD229BFE4D844 ] C:\Windows\System32\DeviceCenter.dll
    14:42:52.0840 0x0d50  C:\Windows\System32\DeviceCenter.dll - ok
    14:42:52.0840 0x0d50  [ 405F4D32D2185F1F1BD753D8EEAFFB3A, CAC42C3E09C43BE96592B670D70821386014DB22D8239A9CFB9E33E54FB5C3D5 ] C:\Windows\System32\networkexplorer.dll
    14:42:52.0840 0x0d50  C:\Windows\System32\networkexplorer.dll - ok
    14:42:52.0840 0x0d50  [ 13AC765ED7515E95B17037D7C3CBB9BD, B43E5FF4E622556E226918B87473457D79FAF247D8FD64D486A189B52620E8C6 ] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
    14:42:52.0840 0x0d50  C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE - ok
    14:42:52.0855 0x0d50  [ 102CF6879887BBE846A00C459E6D4ABC, A4C51C79CF95D5C79DCEFB02946A09A987FEAF83CE2EE1BA7677EBA90869AC80 ] C:\Windows\SysWOW64\riched20.dll
    14:42:52.0855 0x0d50  C:\Windows\SysWOW64\riched20.dll - ok
    14:42:52.0855 0x0d50  [ E2A17BCC08D92F42E08AF6BA2F93ABA7, 5FC9D47BF4B1094BECC0C0DDCD5CD4318DD3E4495D982F8785331616D5B82599 ] C:\Windows\SysWOW64\ExplorerFrame.dll
    14:42:52.0855 0x0d50  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
    14:42:52.0855 0x0d50  [ 6E1F8165C365D35C8E3C045AF0CDD481, B861360D0A014265A0BEB4CC2FE31EA05AE95120E8B07820C13A044D64C00E2B ] C:\Windows\SysWOW64\duser.dll
    14:42:52.0855 0x0d50  C:\Windows\SysWOW64\duser.dll - ok
    14:42:52.0871 0x0d50  [ EE06B85BC69F18826302348A2AD089E0, 417205797CC9F6C986A863A61179784D9ADCAF1961EF8A4D9042D73C5A86509A ] C:\Windows\SysWOW64\dui70.dll
    14:42:52.0871 0x0d50  C:\Windows\SysWOW64\dui70.dll - ok
    14:42:52.0871 0x0d50  [ 5F639198C4137075DA50E61C23963C11, 3D03B3BF62B3469069AD6BE2AAEE152CB6722D36C001B8197FEBC2F3EB9ADBE0 ] C:\Windows\System32\drprov.dll
    14:42:52.0871 0x0d50  C:\Windows\System32\drprov.dll - ok
    14:42:52.0871 0x0d50  [ 35BA4E6632BA690EA6421C1E03537D0E, 99D6B4DB12ABE3A7F44AB1B2D626978E85231185AE280D9516986027BC8385CB ] C:\Program Files\Microsoft Security Client\msseces.exe
    14:42:52.0871 0x0d50  C:\Program Files\Microsoft Security Client\msseces.exe - ok
    14:42:52.0887 0x0d50  [ BC566D17914B07ABAAB3A5A385CC3300, DCE0A1D26312AA6441FB7122C6EED980AE350D58B2B4B166CB62F983306268E9 ] C:\Windows\System32\ntlanman.dll
    14:42:52.0887 0x0d50  C:\Windows\System32\ntlanman.dll - ok
    14:42:52.0887 0x0d50  [ B32AB94A432289AC2DF77A3DCAD32EED, B1021C78F940E6FA7A8992B2733B593B89DA57325A0A0D13D2767F193A78D90F ] C:\Windows\System32\davclnt.dll
    14:42:52.0887 0x0d50  C:\Windows\System32\davclnt.dll - ok
    14:42:52.0887 0x0d50  [ 45B24A357C801CE62052FE0CDC8BD4D2, 00602E41B78473825253F6B2557A5C43FBDDCCF713D806929AE7C039FF8F185C ] C:\Windows\System32\davhlpr.dll
    14:42:52.0887 0x0d50  C:\Windows\System32\davhlpr.dll - ok
    14:42:52.0887 0x0d50  [ 0B85F3551337FE233477DA31545DC45C, B89D1373CD632E6EE6EDB9A2FC938D874C6B1DEB472DD5ED27D103010026BDF9 ] C:\Windows\System32\msxml3.dll
    14:42:52.0887 0x0d50  C:\Windows\System32\msxml3.dll - ok
    14:42:52.0902 0x0d50  [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] C:\Users\Sharon Wright\AppData\Local\Google\Update\GoogleUpdate.exe
    14:42:52.0902 0x0d50  C:\Users\Sharon Wright\AppData\Local\Google\Update\GoogleUpdate.exe - ok
    14:42:52.0902 0x0d50  [ AE5A2843B4A2E1E558B9EE13EF62CCE5, C484CF7EF7C0346783BA8771BD621FABDFB24A49ECE3DAA687EBB559C78F73D7 ] C:\Windows\System32\ieframe.dll
    14:42:52.0902 0x0d50  C:\Windows\System32\ieframe.dll - ok
    14:42:52.0902 0x0d50  [ 64C8207CF8D277B9C9CC7FE18775F794, 9F012DF5A5C0B1E6BAE68919EBB53F6C66E77CAE55189D470DD111A3DBF06D07 ] C:\Program Files\Microsoft Security Client\MsMpRes.dll
    14:42:52.0902 0x0d50  C:\Program Files\Microsoft Security Client\MsMpRes.dll - ok
    14:42:52.0918 0x0d50  [ 4CFE6EEB44D35C7B16693A97FBC9F368, 9FF8F7D81A6C2A25035E19DCCEF86972774187ED4EA774B9BDA709B02ADF6596 ] C:\Users\Sharon Wright\AppData\Local\Google\Update\1.3.27.5\goopdate.dll
    14:42:52.0918 0x0d50  C:\Users\Sharon Wright\AppData\Local\Google\Update\1.3.27.5\goopdate.dll - ok
    14:42:52.0918 0x0d50  [ 8715A0D10CFFC8DEE923957F07DAA042, 90E4352F8A248FA64EA71B8AB07141142B809B384E9F7D1CB7C3DFBF4003BFAE ] C:\Users\Sharon Wright\AppData\Local\Google\Update\1.3.27.5\GoogleCrashHandler.exe
    14:42:52.0918 0x0d50  C:\Users\Sharon Wright\AppData\Local\Google\Update\1.3.27.5\GoogleCrashHandler.exe - ok
    14:42:52.0918 0x0d50  [ 6509A96DAE25340772B51AC020CB1094, 8B20005C4DA2C385F4AA499B21A7A78569F69B69B067E8E2D4D463425BDE8422 ] C:\Users\Sharon Wright\AppData\Local\Google\Update\1.3.27.5\GoogleCrashHandler64.exe
    14:42:52.0918 0x0d50  C:\Users\Sharon Wright\AppData\Local\Google\Update\1.3.27.5\GoogleCrashHandler64.exe - ok
    14:42:52.0933 0x0d50  [ 9108540E866F75C7AF2B91DD921A8091, 7208C8E05E818781D7F2703B86848FC90651E0D8BE10362863250F2283CEC511 ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
    14:42:52.0933 0x0d50  C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
    14:42:52.0933 0x0d50  [ 2E570D03FA146EB4B1A40164B3873C7D, 7D3BE64F366B5D84CAD0B90A46B6D7746DA9A2BA6141FBC61792F8E34735C85D ] C:\Program Files (x86)\CCleaner\CCleaner64.exe
    14:42:52.0933 0x0d50  C:\Program Files (x86)\CCleaner\CCleaner64.exe - ok
    14:42:52.0933 0x0d50  [ C3761661C17C2248A9379A8FB89E3DE1, CE3477FA2B4058EB80739E0161FE957545F13CF86D313F6422732901D35F75F2 ] C:\Windows\System32\stobject.dll
    14:42:52.0933 0x0d50  C:\Windows\System32\stobject.dll - ok
    14:42:52.0933 0x0d50  [ F832EEEA97CDDA1AF577E721F652A0D1, EBBB7CA199BA4DF231123922BD310D43DE0104C6185B70FE0281B938D5336F2E ] C:\Windows\System32\batmeter.dll
    14:42:52.0933 0x0d50  C:\Windows\System32\batmeter.dll - ok
    14:42:52.0949 0x0d50  [ FB4045578F5180BDB1963AB352B78548, 8E645A63436EE6CDDB78E6064AEB04ECE39208F760A3EF13A3F49FDF41505E21 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
    14:42:52.0949 0x0d50  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
    14:42:52.0949 0x0d50  [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122, E7EA375A3BDE8FC764CB09524344370B9EE25F98AD6C83E6F37A569EB8D277D6 ] C:\Windows\System32\prnfldr.dll
    14:42:52.0949 0x0d50  C:\Windows\System32\prnfldr.dll - ok
    14:42:52.0949 0x0d50  [ F288DAF124DD1329BDE302D5D88DB85C, EFDEC20C797C996174D0E98ADAFB35DED239D2564C02CB789021CB418AD1D4B4 ] C:\Users\Sharon Wright\AppData\Local\Google\Chrome\Application\chrome.exe
    14:42:52.0949 0x0d50  C:\Users\Sharon Wright\AppData\Local\Google\Chrome\Application\chrome.exe - ok
    14:42:52.0965 0x0d50  [ 2A436796758BF2555A26C770FE8A6FEE, 9E42AF3A3CB05E323CBB7F93FE7C454CD251672C5D9F5E94909131A5D8F9204A ] C:\Windows\System32\fdProxy.dll
    14:42:52.0965 0x0d50  C:\Windows\System32\fdProxy.dll - ok
    14:42:52.0965 0x0d50  [ 24F4B480F335A6C724AF352253C5D98B, 011413B236CAD7B78CE0A0EEC3E3085D48C7576A3205D025BA6EBFDF590538E4 ] C:\Windows\System32\thumbcache.dll
    14:42:52.0965 0x0d50  C:\Windows\System32\thumbcache.dll - ok
    14:42:52.0965 0x0d50  [ 42A9CB6906D9A8BEDC83B57163E62924, E18522D3137653140757829EFBFCE624A5BAA5842E2BBA10B9E5AB6C84BE49E1 ] C:\Windows\System32\DXP.dll
    14:42:52.0965 0x0d50  C:\Windows\System32\DXP.dll - ok
    14:42:52.0965 0x0d50  [ E424B3EF666B184CEE0B6871AAA8C9F6, D182D9B3A813C75F88CA16A9C236AB6167DF5861D155B5DC016B90918C4BD579 ] C:\Windows\System32\msimg32.dll
    14:42:52.0965 0x0d50  C:\Windows\System32\msimg32.dll - ok
    14:42:52.0980 0x0d50  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891, 0A82A475301202791A7C10F978F952EAB7DB146A702D4EA67E24E2C98BC19638 ] C:\Windows\System32\Syncreg.dll
    14:42:52.0980 0x0d50  C:\Windows\System32\Syncreg.dll - ok
    14:42:52.0980 0x0d50  [ C836175870E00ACC546066632E15BD10, 4347F3319C26DA1C38F395C74DBD67AF886149C8F29EDE765DD96C8480A3054A ] C:\Windows\ehome\ehSSO.dll
    14:42:52.0980 0x0d50  C:\Windows\ehome\ehSSO.dll - ok
    14:42:52.0980 0x0d50  [ 92DBF0A4C9239169010FC6E07859C82E, 00FB2CF4420F0FFEF519AFE732A708CF249640121E2A891CAA164313ABD7F804 ] C:\Windows\System32\ActionCenter.dll
    14:42:52.0980 0x0d50  C:\Windows\System32\ActionCenter.dll - ok
    14:42:52.0980 0x0d50  [ C9F093E7B7C6F1F7320EB7EE27003825, AD1DB9DD5D836AE63C6AA4F59B9322CCEA18D9C62A4E031026B0CE07812531F8 ] C:\Users\Sharon Wright\AppData\Local\Google\Chrome\Application\43.0.2357.132\chrome_elf.dll
    14:42:52.0980 0x0d50  C:\Users\Sharon Wright\AppData\Local\Google\Chrome\Application\43.0.2357.132\chrome_elf.dll - ok
    14:42:52.0996 0x0d50  [ A42F2C1EB3B66C54FB3C7B79D30C1A6D, A63836DB3B01835DC1311526A95198D6EBCCB1DC9DDAFBC38EC36C128CDB98B9 ] C:\Windows\System32\netshell.dll
    14:42:52.0996 0x0d50  C:\Windows\System32\netshell.dll - ok
    14:42:52.0996 0x0d50  [ BBCD2A6FE1C0DF9B841C92D236BA4B07, 92D5CBA5778DD55DC35F640D5A5A105793F95B75F811EB8A381725EF7A1EE6F8 ] C:\Users\Sharon Wright\AppData\Local\Google\Chrome\Application\43.0.2357.132\chrome.dll
    14:42:52.0996 0x0d50  C:\Users\Sharon Wright\AppData\Local\Google\Chrome\Application\43.0.2357.132\chrome.dll - ok
    14:42:52.0996 0x0d50  [ 04CB7C8FDC6D9640DD82A527208F72C4, 0F8A327B0234A29EAB1F03D9102A3DF7DB4515BF580163198C5A8C174C98DE4F ] C:\Windows\System32\UIAnimation.dll
    14:42:52.0996 0x0d50  C:\Windows\System32\UIAnimation.dll - ok
    14:42:53.0011 0x0d50  [ C8FDF0FA9E97E2FAAF3F814716AAA881, DD24A1CAB44D943B0E1A795A347AD25D9305FC7F012A2566A6A14BD47221831F ] C:\Windows\System32\WPDShServiceObj.dll
    14:42:53.0011 0x0d50  C:\Windows\System32\WPDShServiceObj.dll - ok
    14:42:53.0011 0x0d50  [ 68ECCA523ED760AAFC03C5D587569859, CDD734279C8F9F24EA2538BAD8E91EB8C3DD74C33032DB6B2D85C19576B42707 ] C:\Windows\SysWOW64\samcli.dll
    14:42:53.0011 0x0d50  C:\Windows\SysWOW64\samcli.dll - ok
    14:42:53.0011 0x0d50  [ C0AE7ABD87254B2789C8CB34AF274A65, AD2ACECAB8D76C05582762CF4F9C9E72DF6B780DFF40256F402DA3774D88B0CA ] C:\Windows\System32\AudioSes.dll
    14:42:53.0011 0x0d50  C:\Windows\System32\AudioSes.dll - ok
    14:42:53.0011 0x0d50  [ 63DF770DF74ACB370EF5A16727069AAF, B8F96336BF87F1153C245D19606CBD10FBE7CF2795BCC762F2A1B57CB7C39116 ] C:\Windows\SysWOW64\hid.dll
    14:42:53.0011 0x0d50  C:\Windows\SysWOW64\hid.dll - ok
    14:42:53.0027 0x0d50  [ E9BB0CD09DA17C71FD1B9954D75AEEF7, FF5E2F04F1FD56FDD19368150B5750275F0A44E9EA9820C8087E84ECBBF45286 ] C:\Windows\SysWOW64\credui.dll
    14:42:53.0027 0x0d50  C:\Windows\SysWOW64\credui.dll - ok
    14:42:53.0027 0x0d50  [ 4F3CD1C59EA71401E155C432BCECE180, 6D4118A627CAE509E43D0CC0062EECAA0990C955BB15AE24834460551B2F51A2 ] C:\Windows\System32\PortableDeviceTypes.dll
    14:42:53.0027 0x0d50  C:\Windows\System32\PortableDeviceTypes.dll - ok
    14:42:53.0027 0x0d50  [ C746F3BF98E92FB137B5BD2B8B5925BD, 67A8990F3D491D149E65C90042909259793C65E671DC953FDA1F7590FAC23D9E ] C:\Windows\System32\FXSST.dll
    14:42:53.0027 0x0d50  C:\Windows\System32\FXSST.dll - ok
    14:42:53.0043 0x0d50  [ E3E811471DE781900FF21C1FD84E941E, 2A47FF52D1D6480AAD1919382E783EA184BF926311F8C7E466FEBE9F6FB88FD6 ] C:\Windows\SysWOW64\ntdsapi.dll
    14:42:53.0043 0x0d50  C:\Windows\SysWOW64\ntdsapi.dll - ok
    14:42:53.0043 0x0d50  [ 71C4F42DC8DB668E826DA79462EA741E, 69452DBC1CD4E09B27A42A535827B359FA9A2762A106E91653DDB7BF00A9C029 ] C:\Windows\SysWOW64\KBDUS.DLL
    14:42:53.0043 0x0d50  C:\Windows\SysWOW64\KBDUS.DLL - ok
    14:42:53.0043 0x0d50  [ C22AB1781BC6F0BB1C9B352CF66DBFFC, 4B813DBD4D9A85502F0B58A956AE89EA22278E82B50485DFAF2C4D3B5CDBB8B1 ] C:\Windows\SysWOW64\DWrite.dll
    14:42:53.0043 0x0d50  C:\Windows\SysWOW64\DWrite.dll - ok
    14:42:53.0043 0x0d50  [ 650CAEA856943E29F25A25D31E004B18, DCA63D2AF4C6F14B27EA006F200E58A5C13AC940A51947A40F668908A446CC4E ] C:\Windows\System32\FXSAPI.dll
    14:42:53.0043 0x0d50  C:\Windows\System32\FXSAPI.dll - ok
    14:42:53.0058 0x0d50  [ C8E8B8239FCF17BEA10E751BE5854631, CB869195E78AB613CEF50AE3B247F0E4E42F233A7AAF5B2BFC5ADEA2C45C5F8D ] C:\Windows\System32\FXSRESM.dll
    14:42:53.0058 0x0d50  C:\Windows\System32\FXSRESM.dll - ok
    14:42:53.0058 0x0d50  [ 43C9CF6825CEA58F1815B7C3DBBB385C, C79DB405D588C77E4ACAE3BC26080213BEEB604C0A109AFDF88031FC46B4CBC0 ] C:\Windows\SysWOW64\Wpc.dll
    14:42:53.0058 0x0d50  C:\Windows\SysWOW64\Wpc.dll - ok
    14:42:53.0058 0x0d50  [ E64D9EC8018C55873B40FDEE9DBEF5B3, 2DB11E7C631A9887CB75AFEAD2C79EC65F82C51F5F073CEFC8CDDF664EFF29C1 ] C:\Windows\System32\PortableDeviceApi.dll
    14:42:53.0058 0x0d50  C:\Windows\System32\PortableDeviceApi.dll - ok
    14:42:53.0074 0x0d50  [ 82C089EA2A3EEFADF3588EA71E8BDADA, 2F3BB32EE2C0673058A74DEEB2D405E5E79F833F33C4D289A93EB3C618A86E75 ] C:\Windows\SysWOW64\wevtapi.dll
    14:42:53.0074 0x0d50  C:\Windows\SysWOW64\wevtapi.dll - ok
    14:42:53.0074 0x0d50  [ C30A3E5DEEEBA22E782AC54C5AF5F352, 80939A7B5354032256706C6CA0C3CCC7E67CD1C1C81EAEA2CBC74997C0863662 ] C:\Windows\SysWOW64\samlib.dll
    14:42:53.0074 0x0d50  C:\Windows\SysWOW64\samlib.dll - ok
    14:42:53.0074 0x0d50  [ 1473768973453DE50DC738C2955FC4DD, 14BC5DA2442CB726ACC1F277DDBECCF5D61E3A0A3E083A55A0BB610191E35220 ] C:\Windows\System32\wdmaud.drv
    14:42:53.0074 0x0d50  C:\Windows\System32\wdmaud.drv - ok
    14:42:53.0074 0x0d50  [ FE48346938C1CDDDF4E4097DB9B99764, AC01FE84504B863DFA19D38BE854F518521072AB697DF51C888545CFBC839F4F ] C:\Windows\SysWOW64\nlaapi.dll
    14:42:53.0074 0x0d50  C:\Windows\SysWOW64\nlaapi.dll - ok
    14:42:53.0089 0x0d50  [ 8560FFFC8EB3A806DCD4F82252CFC8C6, CC27BC092369A89D6147B16568FEDEB68B584D5738CD686C31F7FAE22ED17B3B ] C:\Windows\System32\ksuser.dll
    14:42:53.0089 0x0d50  C:\Windows\System32\ksuser.dll - ok
    14:42:53.0089 0x0d50  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB, CF9082360E32A7C3E13A67AC2C6192F4A76870D43DA9FF2936993A637F712761 ] C:\Windows\System32\AltTab.dll
    14:42:53.0089 0x0d50  C:\Windows\System32\AltTab.dll - ok
    14:42:53.0089 0x0d50  [ 8569E35D00F45972E506502EEE622BA4, 01FE851C03DB88C8373099C279F995A559D962B08932E193032FA3EAD522FB01 ] C:\Windows\System32\srchadmin.dll
    14:42:53.0089 0x0d50  C:\Windows\System32\srchadmin.dll - ok
    14:42:53.0105 0x0d50  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] C:\Windows\System32\FXSSVC.exe
    14:42:53.0105 0x0d50  C:\Windows\System32\FXSSVC.exe - ok
    14:42:53.0105 0x0d50  [ 50B8937A81360D16A5C772302BD32CFE, F38E9FE868D769CA59E899F0ADAE4112396CD06AB44F13306CD175670859A4C3 ] C:\Windows\SysWOW64\AudioSes.dll
    14:42:53.0105 0x0d50  C:\Windows\SysWOW64\AudioSes.dll - ok
    14:42:53.0105 0x0d50  [ 243974EC02F7AE49E4179C54624143AB, 755FA67F7BF10E3C6336788D297FBAA70F28F630852A43A78D3F7D7E3A7ECED0 ] C:\Windows\SysWOW64\MMDevAPI.dll
    14:42:53.0105 0x0d50  C:\Windows\SysWOW64\MMDevAPI.dll - ok
    14:42:53.0121 0x0d50  [ 10F815BE90A66AAFC6C713D1BD626064, 01139FC04BC53594296F6A0E16B8D20B940F64BC8119FE7705C03C4947958F39 ] C:\Windows\System32\pnidui.dll
    14:42:53.0121 0x0d50  C:\Windows\System32\pnidui.dll - ok
    14:42:53.0121 0x0d50  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3, 2A610BEB16610FE2F2E9A50477A62A05481E8A5843A814955A0EDFF45D0304B3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
    14:42:53.0121 0x0d50  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
    14:42:53.0121 0x0d50  [ 81F6C1AE23B1C493D9E996C3103915D7, E22408B4D2EDE2F89E686A4FDCD4057BE27B86D050E9CB489F0FFB39C72AEC1D ] C:\Windows\SysWOW64\dhcpcsvc6.dll
    14:42:53.0121 0x0d50  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
    14:42:53.0136 0x0d50  [ B9F0A4020AA98B7A20287BF7FE99A1FD, 21138F161EEEA46198890C7A2D073F2C82829E15676131BDAD9F237EDC7477CD ] C:\Windows\System32\QUTIL.DLL
    14:42:53.0136 0x0d50  C:\Windows\System32\QUTIL.DLL - ok
    14:42:53.0136 0x0d50  [ F7A256EC899C72B4ECDD2C02CB592EFD, 9C1AA9322E83CABB94AEA4375EAEB0C44700E1F33B8BE98649BA1DF4DDFAD326 ] C:\Windows\System32\bthprops.cpl
    14:42:53.0136 0x0d50  C:\Windows\System32\bthprops.cpl - ok
    14:42:53.0136 0x0d50  [ 1B7C3A37362C7B2890168C5FC61C8D9B, 03727930E5BB5F9D91BAB901FC9A2E3B795D68E2AEE6A2CC3477F356C45A9C54 ] C:\Windows\System32\msacm32.drv
    14:42:53.0136 0x0d50  C:\Windows\System32\msacm32.drv - ok
    14:42:53.0136 0x0d50  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A, 72288C0A88916D3C3828DBD948DBDB0928F26106319F8E60102D6C9004514D60 ] C:\Windows\System32\msacm32.dll
    14:42:53.0136 0x0d50  C:\Windows\System32\msacm32.dll - ok
    14:42:53.0152 0x0d50  [ CA2A0750ED830678997695FF61B04C30, E84860CD97AA3C4565ABB2D5D406A5C42B1AD2D8BA1B8CF81FE564D91F15F976 ] C:\Windows\System32\midimap.dll
    14:42:53.0152 0x0d50  C:\Windows\System32\midimap.dll - ok
    14:42:53.0152 0x0d50  [ B0F69B9DE0AEBFD7E4CEADE6758DF627, 60235E6D0614ED72CDF05E9A62B2B264614CAB29C47246ED408B85BEBE602CCD ] C:\Windows\System32\SearchFolder.dll
    14:42:53.0152 0x0d50  C:\Windows\System32\SearchFolder.dll - ok
    14:42:53.0152 0x0d50  [ 4E81439902079C348B61D7FF027FE147, E652C9EC77745504689532B3C394959F9B5BC29E9C008CB9EE09CDA818514FA9 ] C:\Windows\System32\StructuredQuery.dll
    14:42:53.0152 0x0d50  C:\Windows\System32\StructuredQuery.dll - ok
    14:42:53.0152 0x0d50  [ 3A7BC2DC99D3C5B172465E890B3C3B14, F7D4792B818460903899E948DA1B445D3ADE7D8A32B791782B4E5038949827CB ] C:\Windows\System32\AudioEng.dll
    14:42:53.0152 0x0d50  C:\Windows\System32\AudioEng.dll - ok
    14:42:53.0167 0x0d50  [ 7BC64DEEFD0E6812E21DE89F0CF50A49, 5B2C0C3C03E897AC104809DB3F3688CC95CC07F34893438ED43E0E071CB0B3F4 ] C:\Windows\System32\AUDIOKSE.dll
    14:42:53.0167 0x0d50  C:\Windows\System32\AUDIOKSE.dll - ok
    14:42:53.0167 0x0d50  [ F954C05026733043C6EC83CE3EF51C48, F87C695B85B71901D2DD4FF024CF18AF3234FC0ECA6D0989B766D24EE2B94E2E ] C:\Windows\System32\RtkAPO64.dll
    14:42:53.0167 0x0d50  C:\Windows\System32\RtkAPO64.dll - ok
    14:42:53.0167 0x0d50  [ B010CF886420EE29C2C276646721D255, CBCD032D679ADE3A9942A1D116648D6A9ECC71F66F8630629E724E5EE23F9F73 ] C:\Windows\SysWOW64\wlanapi.dll
    14:42:53.0167 0x0d50  C:\Windows\SysWOW64\wlanapi.dll - ok
    14:42:53.0183 0x0d50  [ 1D6A771D1D702AE07919DB52C889A249, E5F3378AC40AEE6114EEAF3BF11DC1059466891CAE353E80C08622A60485C954 ] C:\Windows\SysWOW64\wlanutil.dll
    14:42:53.0183 0x0d50  C:\Windows\SysWOW64\wlanutil.dll - ok
    14:42:53.0183 0x0d50  [ 973ADB6AD47AC047F900C0D760AB6BE2, 5F2F5B069973725FF94CF8C0D595F23FD3149115223D61C97D94784D84AC5E09 ] C:\Windows\System32\AERTAR64.dll
    14:42:53.0183 0x0d50  C:\Windows\System32\AERTAR64.dll - ok
    14:42:53.0183 0x0d50  [ 6F3C559B82F2912354BE5B098744CC8C, EB64E5C02C81588921A65194E1256E80699A1317E7D9A57395CD38C2639C8B08 ] C:\Windows\System32\WMALFXGFXDSP.dll
    14:42:53.0183 0x0d50  C:\Windows\System32\WMALFXGFXDSP.dll - ok
    14:42:53.0199 0x0d50  [ F2C7BB8ACC97F92E987A2D4087D021B1, 142E1D688EF0568370C37187FD9F2351D7DDEDA574F8BFA9B0FA4EF42DB85AA2 ] C:\Windows\System32\notepad.exe
    14:42:53.0199 0x0d50  C:\Windows\System32\notepad.exe - ok
    14:42:53.0199 0x0d50  [ 49B3F2AA15C59729F86489C3ABAA1315, AA5ABB71F0D5F2E9230D12668AEE326F9EE0D3D5E5D29FA7F7F1375A307C3D2F ] C:\Windows\System32\fsquirt.exe
    14:42:53.0199 0x0d50  C:\Windows\System32\fsquirt.exe - ok
    14:42:53.0199 0x0d50  [ 7F8678C59F188528D60104E697C2361E, 9B4D262B10CB09543ACA9A78482F4EDD905791D2C8C518B574EBA440A71A85B7 ] C:\Windows\SysWOW64\mscms.dll
    14:42:53.0199 0x0d50  C:\Windows\SysWOW64\mscms.dll - ok
    14:42:53.0214 0x0d50  [ 0BC72EA80234382701EAFC1BE0ECD7E4, 542A1F0D17708A9E31F6E4BC9AB7A4BB6113D94C9F31238FCE686E78D8E215A3 ] C:\Windows\System32\mfplat.dll
    14:42:53.0214 0x0d50  C:\Windows\System32\mfplat.dll - ok
    14:42:53.0214 0x0d50  [ 852D67A27E454BD389FA7F02A8CBE23F, A8FDBA9DF15E41B6F5C69C79F66A26A9D48E174F9E7018A371600B866867DAB8 ] C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
    14:42:53.0214 0x0d50  C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe - ok
    14:42:53.0214 0x0d50  [ 267D31C2D02EB36F4542617FB8F78D78, A7CE04951A92505CD153B2F222984AC7775B0205F35B70A1FD12E7B0D39DD419 ] C:\Users\Sharon Wright\AppData\Local\Google\Chrome\Application\43.0.2357.132\chrome_child.dll
    14:42:53.0214 0x0d50  C:\Users\Sharon Wright\AppData\Local\Google\Chrome\Application\43.0.2357.132\chrome_child.dll - ok
    14:42:53.0230 0x0d50  [ 80D74616DBD984F8EDAC2E641E5120AE, D35E2EA23F4AC7EF9E7D16FDBBB390DD00F81B5AADD49A9E595A38029C1B6571 ] C:\Program Files\Defraggler\Defraggler64.exe
    14:42:53.0230 0x0d50  C:\Program Files\Defraggler\Defraggler64.exe - ok
    14:42:53.0230 0x0d50  [ C5B362BCE86BB0AD3149C4540201331D, EFBDBBCD0D954F8FDC53467DE5D89AD525E4E4A9CFFF8A15D07C6FDB350C407F ] C:\Users\Sharon Wright\AppData\Local\Google\Chrome\Application\43.0.2357.132\d3dcompiler_47.dll
    14:42:53.0230 0x0d50  C:\Users\Sharon Wright\AppData\Local\Google\Chrome\Application\43.0.2357.132\d3dcompiler_47.dll - ok
    14:42:53.0230 0x0d50  [ E3D5E244807AD655787FCD25477CC1BC, 8A378249C936914DBFEDAE310D6ACB93D488C8F490EC4AAB435861C413A5BB0F ] C:\Windows\SysWOW64\bthprops.cpl
    14:42:53.0230 0x0d50  C:\Windows\SysWOW64\bthprops.cpl - ok
    14:42:53.0230 0x0d50  [ D9A10B0A79E5026DADF1652AB7AE114D, 500783CC4272CCD43219F2D3C47444BAB775056B7985F6D2F2DD6239B7215119 ] C:\Users\Sharon Wright\AppData\Local\Google\Chrome\Application\43.0.2357.132\libglesv2.dll
    14:42:53.0230 0x0d50  C:\Users\Sharon Wright\AppData\Local\Google\Chrome\Application\43.0.2357.132\libglesv2.dll - ok
    14:42:53.0245 0x0d50  [ 10E4A1D2132CCB5C6759F038CDB6F3C9, C6A91CBA00BF87CDB064C49ADAAC82255CBEC6FDD48FD21F9B3B96ABF019916B ] C:\Windows\System32\calc.exe
    14:42:53.0245 0x0d50  C:\Windows\System32\calc.exe - ok
    14:42:53.0245 0x0d50  [ 6EF5F3F18413C367195F06E503AB86A6, 6F8B87FB4D67F9E76A51EF759B58A95D903C4AAC9C789A65A3FA1FC4F253D978 ] C:\Windows\SysWOW64\d3d9.dll
    14:42:53.0245 0x0d50  C:\Windows\SysWOW64\d3d9.dll - ok
    14:42:53.0245 0x0d50  [ 77B1471A490B53B24EFE136F09F76550, A650C3A244306F8E605BDA8E74BFE438356BA4403B0CB61E980D3183E3F0A7C7 ] C:\Windows\SysWOW64\d3d8thk.dll
    14:42:53.0245 0x0d50  C:\Windows\SysWOW64\d3d8thk.dll - ok
    14:42:53.0245 0x0d50  [ 9EA9FB5C61D9CF9D4427A7AD83845ECB, 029BB3EBBEC19DA537485380EF7C658C9CE2E7EA9F3FCB1340825CADDED3CD14 ] C:\Users\Sharon Wright\AppData\Local\Google\Chrome\Application\43.0.2357.132\libegl.dll
    14:42:53.0245 0x0d50  C:\Users\Sharon Wright\AppData\Local\Google\Chrome\Application\43.0.2357.132\libegl.dll - ok
    14:42:53.0261 0x0d50  [ 0B149FE13EB1EA719E249D2E88D55FD2, EEC2D3C79A76ECFF7D67D2D139233C8D5EF0C4B9FC9B588957B6B9608D904BDA ] C:\Windows\SysWOW64\igdumdx32.dll
    14:42:53.0261 0x0d50  C:\Windows\SysWOW64\igdumdx32.dll - ok
    14:42:53.0261 0x0d50  [ 808538BBB53F34580765DDFB29B3FA58, 0541CE6981787347BBC028B03D2754CBCEDA73CA8AD3D82F02BA656D83163CC2 ] C:\Windows\SysWOW64\igdumd32.dll
    14:42:53.0261 0x0d50  C:\Windows\SysWOW64\igdumd32.dll - ok
    14:42:53.0261 0x0d50  [ 08DFDBD2FD4EA951DC46B1C7661ED35A, D926530C659DDAF80770663F46F1EFD94FFB4AAB475C4E3367CB531AF4A734E1 ] C:\Windows\SysWOW64\powrprof.dll
    14:42:53.0261 0x0d50  C:\Windows\SysWOW64\powrprof.dll - ok
    14:42:53.0277 0x0d50  [ F3B306179F1840C0813DC6771B018358, DCAEB590394B42D180E23E3CEF4DD135513395B026E0ED489AEC49848B85B8F0 ] C:\Windows\System32\recdisc.exe
    14:42:53.0277 0x0d50  C:\Windows\System32\recdisc.exe - ok
    14:42:53.0277 0x0d50  [ B795E6138E29A37508285FC31E92BD78, 01A9733871BAA8518092BADE3FCE62DCCA14CDF6FC55B98218253580B38D7659 ] C:\Windows\System32\DisplaySwitch.exe
    14:42:53.0277 0x0d50  C:\Windows\System32\DisplaySwitch.exe - ok
    14:42:53.0277 0x0d50  [ A56300692B0EFCB327D13744E98A78E6, B207A3A876C36FF50C7B614A04F0E65E96C4EF5E64AE17D65807A68126F9E257 ] C:\Users\Sharon Wright\AppData\Local\Google\Chrome\Application\43.0.2357.132\libexif.dll
    14:42:53.0277 0x0d50  C:\Users\Sharon Wright\AppData\Local\Google\Chrome\Application\43.0.2357.132\libexif.dll - ok
    14:42:53.0277 0x0d50  [ 055E40EEAD7CB10ACDE0755C1667B136, FB387531C72E303BB0148260D6BF06CB167E07962E5D1D1E3296AF8405EC28AE ] C:\Users\Sharon Wright\AppData\Local\Google\Chrome\Application\43.0.2357.132\ffmpegsumo.dll
    14:42:53.0277 0x0d50  C:\Users\Sharon Wright\AppData\Local\Google\Chrome\Application\43.0.2357.132\ffmpegsumo.dll - ok
    14:42:53.0292 0x0d50  [ 5987EA8A82C53359BCD2C29D6588583E, 59E2DF91F8DA9E33DE65FA67A6A49A7C3F524618A87EAEFC8A28C5304E7FAB85 ] C:\Windows\SysWOW64\linkinfo.dll
    14:42:53.0292 0x0d50  C:\Windows\SysWOW64\linkinfo.dll - ok
    14:42:53.0292 0x0d50  [ 6581B52E133CC6D00661C58968C7E212, 2376CE4A4EC96CD71CE177E19C90AEA1D93F790124DF78F4AC5EAE8FE562F36B ] C:\Windows\SysWOW64\SearchFolder.dll
    14:42:53.0292 0x0d50  C:\Windows\SysWOW64\SearchFolder.dll - ok
    14:42:53.0292 0x0d50  [ 6A1E8DEB746912DF47CF651E138401D7, F0DEEBAB4B1827A502B05F5C18E0A7480C3C8EDDAB306575AC40FD7048827FC4 ] C:\Windows\SysWOW64\StructuredQuery.dll
    14:42:53.0292 0x0d50  C:\Windows\SysWOW64\StructuredQuery.dll - ok
    14:42:53.0308 0x0d50  [ 5BACFD51D926774C8DD8028BEC9B4374, FD8A8FCF5C1D869864145FBBED7C2DABADD368E4E5B755821FFC4812C0EACF9F ] C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe
    14:42:53.0308 0x0d50  C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe - ok
    14:42:53.0308 0x0d50  [ 820087CDD437E0307D94BF1E05B49422, C4092F860F681A85D5CC99D99D83E28B450A9FF94B322FFA397ACACF0D63CBDC ] C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
    14:42:53.0308 0x0d50  C:\Program Files (x86)\Dropbox\Client\Dropbox.exe - ok
    14:42:53.0308 0x0d50  [ 4F6E72B34ED3DC53DCC5E8708E60B61F, CB79F4EBCE11ECCFA167498F329F95D545F8D4E5CCE4006B2A03B595733AEBC2 ] C:\Windows\SysWOW64\security.dll
    14:42:53.0308 0x0d50  C:\Windows\SysWOW64\security.dll - ok
    14:42:53.0308 0x0d50  [ 8EA53101FF2B15BDFF934B62A8FB326D, E28536A4AC6764C2480EF047AF2312AE2600819899C3E33B486CFE19F25AC464 ] C:\Windows\SysWOW64\logoncli.dll
    14:42:53.0308 0x0d50  C:\Windows\SysWOW64\logoncli.dll - ok
    14:42:53.0323 0x0d50  [ 244C6722289F4869068992FD7D8A8832, 8644D0A55C46C3F081F0AB43D253D13E56E77D89336A87108DB8C47D6EDC3A64 ] C:\Windows\SysWOW64\wbem\wbemdisp.dll
    14:42:53.0323 0x0d50  C:\Windows\SysWOW64\wbem\wbemdisp.dll - ok
    14:42:53.0323 0x0d50  [ 704314FD398C81D5F342CAA5DF7B7F21, CDA660E1E8AAE0789780B6B9604B138E67B2BDD1404A5E4C2354B35879D43085 ] C:\Windows\SysWOW64\wbemcomn.dll
    14:42:53.0323 0x0d50  C:\Windows\SysWOW64\wbemcomn.dll - ok
    14:42:53.0323 0x0d50  [ C5B0324DB461559ADD070E632A6919FA, AB09CACB5B7DD372B27921A5E01220552A611CECA27EF87961001FA467FDED45 ] C:\Windows\SysWOW64\wbem\wbemprox.dll
    14:42:53.0323 0x0d50  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
    14:42:53.0323 0x0d50  [ 5610B0425518D185331CB8E968D060E6, E235186C3BF266EE9EC733D2CFF35E3A65DE039C19B14260F4054F34B5E8AD41 ] C:\Windows\SysWOW64\wbem\wmiutils.dll
    14:42:53.0323 0x0d50  C:\Windows\SysWOW64\wbem\wmiutils.dll - ok
    14:42:53.0339 0x0d50  [ 0B7E85364CB878E2AD531DB7B601A9E5, F5AD3018427F1CD68450EE5CB55AA9572546322580E0FB1E7888702A291C2380 ] C:\Windows\SysWOW64\NapiNSP.dll
    14:42:53.0339 0x0d50  C:\Windows\SysWOW64\NapiNSP.dll - ok
    14:42:53.0339 0x0d50  [ 5CF640EDDB1E40A5AB1BB743BCDEC610, 0313AA3F713C9F5B84DBB0B4DE78A96B173E9F7B4CF61C10FDC7DAE952DB04E5 ] C:\Windows\SysWOW64\pnrpnsp.dll
    14:42:53.0339 0x0d50  C:\Windows\SysWOW64\pnrpnsp.dll - ok
    14:42:53.0339 0x0d50  [ 5DF5D8CFD9B9573FA3B2C89D9061A240, 990EA273B640DF2D7E800C0CFF18550259C605A4951CD82CD9F1E7B6FF0C9533 ] C:\Windows\SysWOW64\winrnr.dll
    14:42:53.0339 0x0d50  C:\Windows\SysWOW64\winrnr.dll - ok
    14:42:53.0355 0x0d50  [ AC122407B29378FF9646F03404AC7C54, 01F03A11C4419665557C3CB7E712B8AD59B13703115CB10C9F39FBE82D177BE6 ] C:\Windows\SysWOW64\wshbth.dll
    14:42:53.0355 0x0d50  C:\Windows\SysWOW64\wshbth.dll - ok
    14:42:53.0355 0x0d50  ================ Scan generic autorun ======================
    14:42:53.0542 0x0d50  [ 35BA4E6632BA690EA6421C1E03537D0E, 99D6B4DB12ABE3A7F44AB1B2D626978E85231185AE280D9516986027BC8385CB ] c:\Program Files\Microsoft Security Client\msseces.exe
    14:42:53.0605 0x0d50  MSC - ok
    14:42:53.0605 0x0d50  SynTPEnh - ok
    14:42:53.0683 0x0d50  Dropbox - ok
    14:42:53.0886 0x0d50  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
    14:42:53.0980 0x0d50  Sidebar - ok
    14:42:54.0011 0x0d50  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
    14:42:54.0058 0x0d50  mctadmin - ok
    14:42:54.0229 0x0d50  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
    14:42:54.0276 0x0d50  Sidebar - ok
    14:42:54.0307 0x0d50  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
    14:42:54.0323 0x0d50  mctadmin - ok
    14:42:54.0728 0x0d50  [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] C:\Users\Sharon Wright\AppData\Local\Google\Update\GoogleUpdate.exe
    14:42:54.0744 0x0d50  Google Update - ok
    14:42:55.0681 0x0d50  [ 2E570D03FA146EB4B1A40164B3873C7D, 7D3BE64F366B5D84CAD0B90A46B6D7746DA9A2BA6141FBC61792F8E34735C85D ] C:\Program Files (x86)\CCleaner\CCleaner64.exe
    14:42:55.0931 0x0d50  CCleaner Monitoring - ok
    14:42:56.0149 0x0d50  [ F288DAF124DD1329BDE302D5D88DB85C, EFDEC20C797C996174D0E98ADAFB35DED239D2564C02CB789021CB418AD1D4B4 ] C:\Users\Sharon Wright\AppData\Local\Google\Chrome\Application\chrome.exe
    14:42:56.0196 0x0d50  GoogleChromeAutoLaunch_259D73772C820FDD8FED2A42E2499E2B - ok
    14:42:56.0196 0x0d50  Waiting for KSN requests completion. In queue: 7
    14:42:57.0210 0x0d50  Waiting for KSN requests completion. In queue: 7
    14:42:58.0225 0x0d50  Waiting for KSN requests completion. In queue: 7
    14:42:59.0254 0x0d50  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Essentials\msseces.exe (  ), 0x61000 ( enabled : updated )
    14:42:59.0270 0x0d50  Win FW state via NFP2: enabled
    14:43:02.0189 0x0d50  ============================================================
    14:43:02.0189 0x0d50  Scan finished
    14:43:02.0189 0x0d50  ============================================================
    14:43:02.0189 0x0d48  Detected object count: 2
    14:43:02.0189 0x0d48  Actual detected object count: 2
    12:23:25.0576 0x0d48  hpqcxs08 ( UnsignedFile.Multi.Generic ) - skipped by user
    12:23:25.0576 0x0d48  hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
    12:23:25.0576 0x0d48  RtVOsdService ( UnsignedFile.Multi.Generic ) - skipped by user
    12:23:25.0576 0x0d48  RtVOsdService ( UnsignedFile.Multi.Generic ) - User select action: Skip 


    #14 dc3

    dc3

      Bleeping Treehugger


    • Members
    • 30,804 posts
    • OFFLINE
    •  
    • Gender:Male
    • Location:Sierra Foothills of Northern Ca.
    • Local time:05:30 PM

    Posted 15 July 2015 - 12:36 PM

    Those are the same files I addressed previously.  They should be fine where they are now.


    Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

     

     

     

     


    #15 dc3

    dc3

      Bleeping Treehugger


    • Members
    • 30,804 posts
    • OFFLINE
    •  
    • Gender:Male
    • Location:Sierra Foothills of Northern Ca.
    • Local time:05:30 PM

    Posted 15 July 2015 - 12:51 PM

    I don't have a problem with your schedule, you work at this at your own pace.  There is a three hour difference between our locations, so we will just have to catch as catch can.

     

     

     

    I told my wife that I was helping a member from Kentucky, she replied "she's from the land of beautiful horses and fast women"?

     

    I reversed the tables on her by asking how the capitol of Kentucky was pronounced, Louisville or Louasville.  She replied "Louisville".  I told her "nope"... Frankfort.


    Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

     

     

     

     





    0 user(s) are reading this topic

    0 members, 0 guests, 0 anonymous users