Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Disconnected Network Drive


  • Please log in to reply
12 replies to this topic

#1 Notorious

Notorious

  • Members
  • 345 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Amsterdam
  • Local time:07:47 PM

Posted 26 November 2017 - 11:34 AM

Hi gang, :)

I see in Network Location Disconnected Network Drive (A:) but when I click Disconnect, I get message This network connection does not exsist.
Now, I did all sorts of scans with JRT,  and Adwcleaner but Malwarebytes scans, show everytime one registry entry that keeps coming back as,

Registry Data: 1
PUM.Optional.NoDrives, HKU\S-1-5-21-435613400-1741014372-946562228-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER|NODRIVES, Replaced, [15849], [293339],1.0.3349

I'm not that keen to go modify registry and I also suspect that Cybereason RansomFree "planted" a wild directory on my computer in order to mislead ransomware installation.

OS data;

Win. 7 Ultimate SP 1 64bit

I don't think it's malicious thing, but I'm curious how to get rid of it.

Greetz, Notorious


Edited by Notorious, 26 November 2017 - 03:47 PM.

Posted Image

Down in the bayou, Bubba called an attorney and asked, "Is it true they're suin' the cigarette companies for causing people to get cancer?
"Sure is Bubba. But why you asking?"
"Cause what I want to know is, I was thinking, can I sue Budweiser for all them ugly women I've slept with?"

BC AdBot (Login to Remove)

 


m

#2 hamluis

hamluis

    Moderator


  • Moderator
  • 54,644 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:06:47 PM

Posted 26 November 2017 - 05:19 PM

Do you have a drive labeled A:?

 

Worth A Look.

 

Louis



#3 Notorious

Notorious
  • Topic Starter

  • Members
  • 345 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Amsterdam
  • Local time:07:47 PM

Posted 26 November 2017 - 09:16 PM

Hi Louis, no..  Just C and D drive..


Posted Image

Down in the bayou, Bubba called an attorney and asked, "Is it true they're suin' the cigarette companies for causing people to get cancer?
"Sure is Bubba. But why you asking?"
"Cause what I want to know is, I was thinking, can I sue Budweiser for all them ugly women I've slept with?"

#4 Notorious

Notorious
  • Topic Starter

  • Members
  • 345 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Amsterdam
  • Local time:07:47 PM

Posted 04 December 2017 - 09:13 PM

I understand you guys are bussy folx but,you could at least mention that instead of leaving people wait for your assistance!
Posted Image

Down in the bayou, Bubba called an attorney and asked, "Is it true they're suin' the cigarette companies for causing people to get cancer?
"Sure is Bubba. But why you asking?"
"Cause what I want to know is, I was thinking, can I sue Budweiser for all them ugly women I've slept with?"

#5 hamluis

hamluis

    Moderator


  • Moderator
  • 54,644 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:06:47 PM

Posted 05 December 2017 - 10:15 AM

Moved to Am I Infected.

 

Louis



#6 dc3

dc3

    Bleeping Treehugger


  • Members
  • 29,757 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:04:47 PM

Posted 05 December 2017 - 11:00 AM

Please run the scans suggested below in the order that they are requested, this is a must for RKill.  Post the logs generated by these scans in your topic in the order they were run.  Please do not wrap your logs in quotes or code brackets or use use spoilers.

 

 

Please run the scans suggested below in the order that they are requested, this is a must for RKill.  Post the logs generated by these scans in your topic in the order they were run.  Please do not wrap your logs in quotes or code brackets or use use spoilers.


Please download and run RKill

RKill attempts to terminate known malware processes so that your normal security software can then run and clean your computer of infections.  RKill will not remove any of the processes it stops, you will need to run security scans to remove any malware found.  These settings will remain until the computer is rebooted, for this reason you must run your security applications before the computer is rebooted.  

Please download RKill and install it.

When RKill is run it will display a console screen similar to the one below:

icHPxaT.png

After this has run you will see another image explaining that RKill has finished running and you should be able to run the scan.  You need to click/tap on OK.

2Q1rnlf.png

When RKill has finished running a log will be displayed showing all of the processes that were terminated by RKill.

AttentionAt this time you need to run your security applications listed below.  When the scan has finished running a lot will be posted in Notepad.  Copy and paste this log in your topic.

Importanat: There is a possibility that malware may recognize RKill and keep it from running, if this is the case do the following.

If while RKill is running you may see a message from the malware stating that the program could not be run because it is a virus or is infected.  This is the malware trying to protect itself.  Two methods that you can try to get past this and allow RKill to run are:

1)  Rename Rkill so that it has a .com extension.

2)  Download a version that is already renamed as files that are commonly white-listed by malware. The main Rkill download page contains individual links to renamed versions.  

After the application has run successfully and you have run the requested scans you should reboot the computer to restore the processes and Windows Registry entries.


Please run TDSSKiller.
 
Please download TDSSKiller from here and save it to your Desktop.

The log for the TDSSKiller can be very long.  If you go to the bottom of the log to where you find Scan finished you will see the results of the scan.  If it shows Detected object count: 0 and Actual detected object count: 0, this means that nothing malicious was found and you will not need to post the log.
 
1.  Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
 
2.  Check Loaded Modules, Verify Driver Digital Signature, and Detect TDLFS file system.
 
If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now.
 
3.  Click Start Scan and allow the scan process to run.

yEt9i3P.png
 
4.  If threats are detected select Cure (if available) for all of them unless otherwise instructed.  If threats are found you will see a screen like the one below.

I4wmZOI.png
 
***Do NOT select Delete!

Click on Continue.
 
5.  Click on Reboot computer.
 
Please copy the TDSSKiller.[Version]_[Date]_[Time]_log.txt file found in your root directory (in most cases this is c: Drive) and paste it into your next reply.

Note:  The log may be very long.  You may need to break it into parts to post the whole log in your topic.



Please run Malwarebytes AntiMalware

Please download Malwarebytes Anti-Malware 2.2.

1)  Double-click on mbam-setup.exe, then click on Run to install the application, follow the prompts through the installation.

2)  Malwarebytes will automatically open.  You will see an image like the one below, click on Update Now.  

4YSU8ND.png

3)  Click on Settings, you will see a image like the one below.

35AFYEE.png

When Settings opens click on Detection and Protection, then under Non-Malware Protection, click on the down arrow for PUP (Potentially Unwanted Programs) detections and select Treat detections as malware.  Under Detection Options place a check in the box for Scan for rootkits

4)  Click on Scan (next to Settings), then click on Scan Now.  The scan will automatically run now.

5)  When the scan is complete the results will be displayed.  Click on Delete All.

jEVtTTK.png

6)  Please post the Malwarebytes log.

To find the Malwarebytes log do the following.  Copy and paste the log in your topic.

*Open Malwarebytes Anti-Malware.
*Click the Scan Tab at the top.
*Click the View detailed log link on the right.
*Click Copy to Clipboard at the bottom...come back to this thread, click Add Reply, then right-click and choose Paste.
*Alternatively, you can click Export and save the log as a .txt file on yout Desktop or another location.
*Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.


Please download AdwCleaner and install it.

When AdwCleaner opens click on Scan to start the scan.

ZQk62WV.png

Once the search is complete a list of the pending items will be displayed.  If you see any which you do not want removed, remove the check mark next to it.

If there are no malicious programs are found you will receive a message informing you of this.  
 
Click on Clean to remove the selected items.  If you have any questions about any items in the list please copy and paste the list in your topic so we can review it.  

CsqnoTW.png
 
You will receive a message telling you that all programs will be closed so that the infections can be removed.  Click on OK.  The computer will be restarted to complete the cleaning process.
 
When the cleaning process is complete a log of what was removed will be presented.  Please copy and the paste this log in your topic.


Please run the ESET OnlineScan

This scan takes quite a long time to run, so be prepared to allow this to run
till it is completed.

***Please note. If you run this scan using Internet Explorer you won't need
to download the Eset Smartinstaller.***

ESET Online Scanner

  • Click here to download the installer for ESET Online Scanner and save it to your Desktop.
  • Disable all your antivirus and antimalware software - see how to do that
    here
    .
  • Right click on esetsmartinstaller_enu.exe and select Run as Administrator.
  • Place a checkmark in YES, I accept the Terms of Use, then click Start. Wait for ESET Online Scanner to load its components.
  • Select Enable detection of potentially unwanted applications.
  • Click Advanced Settings, then place a checkmark in the following:
    • Remove found threats
    • Scan archives
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology

  • Click Start to begin scanning.
  • ESET Online Scanner will start downloading signatures and scan. Please be patient, as this scan can take quite some time.
  • If threats are found click on Save to text file in Documents.
  • Open Documents, find the report, copy and paste it in your topic.







 


Edited by dc3, 05 December 2017 - 11:44 AM.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#7 Notorious

Notorious
  • Topic Starter

  • Members
  • 345 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Amsterdam
  • Local time:07:47 PM

Posted 06 December 2017 - 08:01 AM

Hi guys, seems like I picked up few PUP's with free programs. Here are scannig results. :)

 

 

Rkill 2.9.1 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2017 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 12/06/2017 02:49:36 AM in x64 mode.
Windows Version: Windows 7 Ultimate Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * No malware processes found to kill.

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * No issues found.

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * No issues found.

Program finished at: 12/06/2017 02:58:57 AM
Execution time: 0 hours(s), 9 minute(s), and 20 seconds(s)
 

----------------------------------------------------------------

 

TDSSKiller.3.1.0.15_06.12.2017_03.00.10_log

 

03:00:10.0212 0x0828  TDSS rootkit removing tool 3.1.0.15 Apr 18 2017 11:34:02
03:00:35.0577 0x0828  ============================================================
03:00:35.0577 0x0828  Current date / time: 2017/12/06 03:00:35.0577
03:00:35.0577 0x0828  SystemInfo:
03:00:35.0577 0x0828  
03:00:35.0577 0x0828  OS Version: 6.1.7601 ServicePack: 1.0
03:00:35.0577 0x0828  Product type: Workstation
03:00:35.0577 0x0828  ComputerName: *****-PC
03:00:35.0577 0x0828  UserName: *****
03:00:35.0577 0x0828  Windows directory: C:\Windows
03:00:35.0577 0x0828  System windows directory: C:\Windows
03:00:35.0577 0x0828  Running under WOW64
03:00:35.0577 0x0828  Processor architecture: Intel x64
03:00:35.0577 0x0828  Number of processors: 2
03:00:35.0577 0x0828  Page size: 0x1000
03:00:35.0577 0x0828  Boot type: Normal boot
03:00:35.0577 0x0828  CodeIntegrityOptions = 0x00000001
03:00:35.0577 0x0828  ============================================================
03:00:42.0051 0x0828  KLMD registered as C:\Windows\system32\drivers\32701214.sys
03:00:42.0051 0x0828  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23915, osProperties = 0x1
03:00:42.0706 0x0828  System UUID: {8173DEB0-FD55-DE28-2FED-017A9F8B776E}
03:00:44.0188 0x0828  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
03:00:44.0204 0x0828  ============================================================
03:00:44.0204 0x0828  \Device\Harddisk0\DR0:
03:00:44.0204 0x0828  MBR partitions:
03:00:44.0204 0x0828  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1D1C5000
03:00:44.0204 0x0828  ============================================================
03:00:44.0220 0x0828  C: <-> \Device\Harddisk0\DR0\Partition1
03:00:44.0220 0x0828  ============================================================
03:00:44.0220 0x0828  Initialize success
03:00:44.0220 0x0828  ============================================================
03:02:04.0591 0x1124  KLMD registered as C:\Windows\system32\drivers\41499579.sys
03:02:09.0443 0x1124  Deinitialize success
 

________________________


Posted Image

Down in the bayou, Bubba called an attorney and asked, "Is it true they're suin' the cigarette companies for causing people to get cancer?
"Sure is Bubba. But why you asking?"
"Cause what I want to know is, I was thinking, can I sue Budweiser for all them ugly women I've slept with?"

#8 Notorious

Notorious
  • Topic Starter

  • Members
  • 345 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Amsterdam
  • Local time:07:47 PM

Posted 06 December 2017 - 08:07 AM

Part 2.1

 

 

TDSSKiller.3.1.0.15_06.12.2017_03.05.11_log

 

03:05:11.

0312 0x0858  TDSS rootkit removing tool 3.1.0.15 Apr 18 2017 11:34:02
03:05:11.0327 0x0858  ============================================================
03:05:11.0327 0x0858  Current date / time: 2017/12/06 03:05:11.0327
03:05:11.0327 0x0858  SystemInfo:
03:05:11.0327 0x0858  
03:05:11.0327 0x0858  OS Version: 6.1.7601 ServicePack: 1.0
03:05:11.0327 0x0858  Product type: Workstation
03:05:11.0327 0x0858  ComputerName: ****-PC
03:05:11.0327 0x0858  UserName: ****
03:05:11.0327 0x0858  Windows directory: C:\Windows
03:05:11.0327 0x0858  System windows directory: C:\Windows
03:05:11.0327 0x0858  Running under WOW64
03:05:11.0327 0x0858  Processor architecture: Intel x64
03:05:11.0327 0x0858  Number of processors: 2
03:05:11.0327 0x0858  Page size: 0x1000
03:05:11.0327 0x0858  Boot type: Normal boot
03:05:11.0327 0x0858  CodeIntegrityOptions = 0x00000001
03:05:11.0327 0x0858  ============================================================
03:05:11.0327 0x0858  KLMD ARK init status: drvProperties = 0xFFFF00, osBuild = 7601.23915, osProperties = 0x1
03:05:11.0327 0x0858  KLMD BG init status: drvProperties = 0xFFFF00, osBuild = 7601.23915, osProperties = 0x1
03:05:11.0327 0x0858  BG loaded
03:05:13.0355 0x0858  System UUID: {8173DEB0-FD55-DE28-2FED-017A9F8B776E}
03:05:17.0241 0x0858  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
03:05:17.0334 0x0858  ============================================================
03:05:17.0334 0x0858  \Device\Harddisk0\DR0:
03:05:17.0849 0x0858  MBR partitions:
03:05:17.0849 0x0858  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x1D1C5000
03:05:17.0849 0x0858  ============================================================
03:05:18.0208 0x0858  C: <-> \Device\Harddisk0\DR0\Partition1
03:05:18.0208 0x0858  ============================================================
03:05:18.0208 0x0858  Initialize success
03:05:18.0208 0x0858  ============================================================
03:05:29.0579 0x0ddc  ============================================================
03:05:29.0579 0x0ddc  Scan started
03:05:29.0579 0x0ddc  Mode: Manual;
03:05:29.0579 0x0ddc  ============================================================
03:05:29.0579 0x0ddc  KSN ping started
03:05:30.0679 0x0ddc  KSN ping finished: true
03:06:21.0936 0x0ddc  ================ Scan system memory ========================
03:06:21.0936 0x0ddc  System memory - ok
03:06:21.0951 0x0ddc  ================ Scan services =============================
03:06:22.0185 0x0ddc  [ 98E06CAC2C508118450095E581202230, 8FC6C08487F2A481A28F1E5E500B61A21B7A0D44B342F9F887017D6FAE4F87F4 ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
03:06:22.0201 0x0ddc  !SASCORE - ok
03:06:23.0386 0x0ddc  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
03:06:23.0402 0x0ddc  1394ohci - ok
03:06:24.0276 0x0ddc  [ 54E768A53311639403A55D1261428703, 8273444DFFB3B0986E0C9E1C2A3E9D688B7E8A8728EF42926B40D31A97BB9068 ] a2AntiMalware   C:\Program Files\Emsisoft Anti-Malware\a2service.exe
03:06:24.0541 0x0ddc  a2AntiMalware - ok
03:06:24.0712 0x0ddc  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
03:06:24.0728 0x0ddc  ACPI - ok
03:06:24.0790 0x0ddc  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
03:06:24.0806 0x0ddc  AcpiPmi - ok
03:06:25.0742 0x0ddc  [ 1E849825D45BF597E82F86D6E99C42D2, 59103BC49849112BF2923E773B85FFA3405DF75589D3F23480B60E70933EFAA5 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
03:06:25.0773 0x0ddc  AdobeFlashPlayerUpdateSvc - ok
03:06:26.0584 0x0ddc  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
03:06:26.0678 0x0ddc  adp94xx - ok
03:06:26.0740 0x0ddc  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
03:06:26.0787 0x0ddc  adpahci - ok
03:06:26.0850 0x0ddc  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
03:06:26.0850 0x0ddc  adpu320 - ok
03:06:26.0990 0x0ddc  [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
03:06:27.0006 0x0ddc  AeLookupSvc - ok
03:06:27.0115 0x0ddc  [ 0DC2A9882540DEA4A55B08785E09D8FC, 69B15724B0034F9915AACE109A6C596D6AF2DA350FC18C9A0CD98C81CB7EDEE3 ] AFD             C:\Windows\system32\drivers\afd.sys
03:06:27.0130 0x0ddc  AFD - ok
03:06:27.0333 0x0ddc  [ B65F8DBA54F251906BBE8611B5A0E7AB, 9ADE347CB4E7C33D668DAC79A316C97C78D94D296B158F481F3E32F9DA4D647E ] AgereModemAudio C:\Program Files\LSI SoftModem\agr64svc.exe
03:06:27.0364 0x0ddc  AgereModemAudio - ok
03:06:27.0645 0x0ddc  [ C98356D813B581E9C425B42A5D146CE0, F78919616CB275008FFF2DB57C03F86132C52A257C4ED00FF289C57035A89CE7 ] AgereSoftModem  C:\Windows\system32\DRIVERS\agrsm64.sys
03:06:27.0676 0x0ddc  AgereSoftModem - ok
03:06:27.0754 0x0ddc  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
03:06:27.0770 0x0ddc  agp440 - ok
03:06:27.0848 0x0ddc  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
03:06:27.0864 0x0ddc  ALG - ok
03:06:27.0895 0x0ddc  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
03:06:27.0910 0x0ddc  aliide - ok
03:06:27.0942 0x0ddc  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
03:06:27.0942 0x0ddc  amdide - ok
03:06:27.0988 0x0ddc  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
03:06:28.0020 0x0ddc  AmdK8 - ok
03:06:28.0082 0x0ddc  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
03:06:28.0082 0x0ddc  AmdPPM - ok
03:06:28.0160 0x0ddc  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
03:06:28.0160 0x0ddc  amdsata - ok
03:06:28.0254 0x0ddc  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
03:06:28.0285 0x0ddc  amdsbs - ok
03:06:28.0300 0x0ddc  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
03:06:28.0300 0x0ddc  amdxata - ok
03:06:28.0441 0x0ddc  [ F785BB54A725623283CA6C980627CF62, F2CEC11906B9EADB98E39727AAA10E45477A6B89B4CCF826A439A3CD6F243153 ] ApfiltrService  C:\Windows\system32\DRIVERS\Apfiltr.sys
03:06:28.0456 0x0ddc  ApfiltrService - ok
03:06:28.0550 0x0ddc  [ C16B5B379A2A79702CC5FF923EAAE3FD, FD6A1E3C46282CF77AFA9FB4B4ACE2DB6295DFB0C69EA07BE7160538041CDB2F ] AppID           C:\Windows\system32\drivers\appid.sys
03:06:28.0566 0x0ddc  AppID - ok
03:06:28.0628 0x0ddc  [ 5152D6B29C61EF59537DBDA92BFE2978, 6D426A0FEE016A8899ADE864DD84BE019C5B5DB7E1DB295ED720239877FCB3EF ] AppIDSvc        C:\Windows\System32\appidsvc.dll
03:06:28.0628 0x0ddc  AppIDSvc - ok
03:06:28.0690 0x0ddc  [ DE23E052E557580674785CDF45B613F3, A955ADC6CC7D816BA7CE1065F911E7A3295A1908C22BE0A3C506C38CFEE8DE0D ] Appinfo         C:\Windows\System32\appinfo.dll
03:06:28.0706 0x0ddc  Appinfo - ok
03:06:28.0924 0x0ddc  [ B749BF5425909FB17FFE1DB64F4D386C, A9D0B0D78D0C8EAC97D155711D181998D9486ECF13D347134B061640F2B02ECE ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
03:06:28.0924 0x0ddc  Apple Mobile Device Service - ok
03:06:29.0018 0x0ddc  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
03:06:29.0034 0x0ddc  AppMgmt - ok
03:06:29.0127 0x0ddc  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
03:06:29.0127 0x0ddc  arc - ok
03:06:29.0158 0x0ddc  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
03:06:29.0190 0x0ddc  arcsas - ok
03:06:29.0408 0x0ddc  [ 8637F3119057178364D200F2462E625C, 40CAE47AA6C6B23FEB95961FD06BB3EB075CA63BB91B54CB26215A368371B343 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
03:06:29.0533 0x0ddc  aspnet_state - ok
03:06:29.0642 0x0ddc  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
03:06:29.0658 0x0ddc  AsyncMac - ok
03:06:29.0720 0x0ddc  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
03:06:29.0720 0x0ddc  atapi - ok
03:06:29.0829 0x0ddc  [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
03:06:29.0860 0x0ddc  AudioEndpointBuilder - ok
03:06:30.0063 0x0ddc  [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
03:06:30.0079 0x0ddc  AudioSrv - ok
03:06:30.0172 0x0ddc  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
03:06:30.0188 0x0ddc  AxInstSV - ok
03:06:30.0391 0x0ddc  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
03:06:30.0422 0x0ddc  b06bdrv - ok
03:06:30.0547 0x0ddc  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
03:06:30.0578 0x0ddc  b57nd60a - ok
03:06:30.0703 0x0ddc  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
03:06:30.0718 0x0ddc  BDESVC - ok
03:06:30.0843 0x0ddc  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
03:06:30.0843 0x0ddc  Beep - ok
03:06:31.0015 0x0ddc  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
03:06:31.0030 0x0ddc  BFE - ok
03:06:31.0358 0x0ddc  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
03:06:31.0436 0x0ddc  BITS - ok
03:06:31.0483 0x0ddc  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
03:06:31.0483 0x0ddc  blbdrive - ok
03:06:31.0871 0x0ddc  [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
03:06:31.0940 0x0ddc  Bonjour Service - ok
03:06:31.0983 0x0ddc  [ ABA3984C822E4D3F889699912D85D6C5, 2251FA135CC290DA13DAE4743F393C7CC9E6A737C054707CB8D72C369D1FFACB ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
03:06:31.0986 0x0ddc  bowser - ok
03:06:32.0042 0x0ddc  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
03:06:32.0061 0x0ddc  BrFiltLo - ok
03:06:32.0082 0x0ddc  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
03:06:32.0084 0x0ddc  BrFiltUp - ok
03:06:32.0186 0x0ddc  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
03:06:32.0191 0x0ddc  Browser - ok
03:06:32.0234 0x0ddc  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
03:06:32.0253 0x0ddc  Brserid - ok
03:06:32.0288 0x0ddc  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
03:06:32.0299 0x0ddc  BrSerWdm - ok
03:06:32.0325 0x0ddc  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
03:06:32.0326 0x0ddc  BrUsbMdm - ok
03:06:32.0344 0x0ddc  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
03:06:32.0346 0x0ddc  BrUsbSer - ok
03:06:32.0590 0x0ddc  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
03:06:32.0622 0x0ddc  BthEnum - ok
03:06:32.0739 0x0ddc  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
03:06:32.0750 0x0ddc  BTHMODEM - ok
03:06:32.0842 0x0ddc  [ 5A8951D195AFEF979C4AB02A129EBC37, 48FD4A921E51B6DD306A1248EB9A1A6AEC5F59E49528423BF2F40600B3AF1D08 ] BthPan          C:\Windows\system32\drivers\bthpan.sys
03:06:32.0853 0x0ddc  BthPan - ok
03:06:32.0940 0x0ddc  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
03:06:32.0974 0x0ddc  BTHPORT - ok
03:06:33.0075 0x0ddc  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
03:06:33.0098 0x0ddc  bthserv - ok
03:06:33.0325 0x0ddc  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
03:06:33.0328 0x0ddc  BTHUSB - ok
03:06:33.0355 0x0ddc  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
03:06:33.0360 0x0ddc  cdfs - ok
03:06:33.0412 0x0ddc  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\drivers\cdrom.sys
03:06:33.0417 0x0ddc  cdrom - ok
03:06:33.0602 0x0ddc  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
03:06:33.0606 0x0ddc  CertPropSvc - ok
03:06:33.0627 0x0ddc  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
03:06:33.0629 0x0ddc  circlass - ok
03:06:33.0694 0x0ddc  [ 3963FEC1892368DD500E6ED1F5C286CE, A04689CB07AF1C1B4B1032B0ACAD88DA3EB03D89A575C59FE602A65E8C246138 ] CLFS            C:\Windows\system32\CLFS.sys
03:06:33.0718 0x0ddc  CLFS - ok
03:06:33.0965 0x0ddc  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
03:06:34.0080 0x0ddc  clr_optimization_v2.0.50727_32 - ok
03:06:34.0595 0x0ddc  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
03:06:34.0600 0x0ddc  clr_optimization_v2.0.50727_64 - ok
03:06:35.0712 0x0ddc  [ 2BA609641FA64BAB02ACD3C0095672F5, FD1FE403864F0564CA4A2F1D7415649B8FFE16F8ED33C4B44ACB21767118AD5F ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
03:06:36.0959 0x0ddc  clr_optimization_v4.0.30319_32 - ok
03:06:37.0158 0x0ddc  [ 7C7502CD2A2CFAB399D0D8DA95DB03E7, 4AE53B468CF597FCFD912A6EEE27E87EE4D9BC73F2A794FB5DF5DA46C1DD1289 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
03:06:37.0984 0x0ddc  clr_optimization_v4.0.30319_64 - ok
03:06:38.0074 0x0ddc  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
03:06:38.0075 0x0ddc  CmBatt - ok
03:06:38.0176 0x0ddc  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
03:06:38.0190 0x0ddc  cmdide - ok
03:06:38.0451 0x0ddc  [ A98CED39AD91B445E2E442A9BD67E8B4, B4189DEEF1C0EE22AE983119047B1A40FFDD8F3E163DFFABD7C2706231B0B1B0 ] CNG             C:\Windows\system32\Drivers\cng.sys
03:06:38.0486 0x0ddc  CNG - ok
03:06:38.0782 0x0ddc  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
03:06:38.0783 0x0ddc  Compbatt - ok
03:06:38.0910 0x0ddc  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
03:06:38.0912 0x0ddc  CompositeBus - ok
03:06:38.0968 0x0ddc  COMSysApp - ok
03:06:39.0358 0x0ddc  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
03:06:39.0399 0x0ddc  crcdisk - ok
03:06:39.0743 0x0ddc  [ 48FEDBE324F1EA9417BA1D62AE863011, 2C3D84F0842237A3BF2838DDB4126807977EB36588FA669B1E6671077584EF18 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
03:06:39.0865 0x0ddc  CryptSvc - ok
03:06:40.0036 0x0ddc  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
03:06:40.0052 0x0ddc  CSC - ok
03:06:40.0773 0x0ddc  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
03:06:40.0806 0x0ddc  CscService - ok
03:06:41.0702 0x0ddc  [ 807935024E2CCCF9D13BD5E3A8592204, B26B7C031C1B3A411166F80469A81B196C5A9DA8B684A0C176FFB4B17D6F7B78 ] CybereasonRansomFree C:\Program Files (x86)\Cybereason\RansomFree\CybereasonRansomFreeServiceHost.exe
03:06:41.0704 0x0ddc  CybereasonRansomFree - ok
03:06:42.0059 0x0ddc  [ 3F1A199859B4F3F8357B2A0AF5666A54, B0ACE9384088B7D0E54CF82BF48D4FEAA518BDEF98A294BA8F5A37DFF0E45328 ] DcomLaunch      C:\Windows\system32\rpcss.dll
03:06:42.0136 0x0ddc  DcomLaunch - ok
03:06:42.0351 0x0ddc  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
03:06:42.0377 0x0ddc  defragsvc - ok
03:06:42.0534 0x0ddc  [ 9B38580063D281A99E68EF5813022A5F, D91676B0E0A8E2A090E3E5DD340ABCFC20AE0F55B4C82869D6CFB34239BD27DA ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
03:06:42.0540 0x0ddc  DfsC - ok
03:06:43.0462 0x0ddc  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
03:06:43.0477 0x0ddc  Dhcp - ok
03:06:45.0063 0x0ddc  [ EE9954237F15BE4DD9304D12E4D305ED, F295C9BAF20F0E669B673AFCC16B4969EE31B6A3808980DAB93D9B0F167DA3C0 ] DiagTrack       C:\Windows\system32\diagtrack.dll
03:06:45.0101 0x0ddc  DiagTrack - ok
03:06:45.0435 0x0ddc  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
03:06:45.0438 0x0ddc  discache - ok
03:06:45.0594 0x0ddc  [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk            C:\Windows\system32\drivers\disk.sys
03:06:45.0695 0x0ddc  Disk - ok
03:06:45.0987 0x0ddc  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
03:06:45.0997 0x0ddc  Dnscache - ok
03:06:46.0128 0x0ddc  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
03:06:46.0162 0x0ddc  dot3svc - ok
03:06:46.0244 0x0ddc  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
03:06:46.0253 0x0ddc  DPS - ok
03:06:46.0406 0x0ddc  [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
03:06:46.0433 0x0ddc  drmkaud - ok
03:06:46.0830 0x0ddc  [ 5CEF80AE869336376F550ECAE91E424A, 49152AC35556A5629AE7A4A762FDB2112FAD1C9CDB91E6196172809F74A3149A ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
03:06:46.0865 0x0ddc  DXGKrnl - ok
03:06:47.0107 0x0ddc  [ BAB7E45E6C6B92B2C71423D1EC376F38, CB9A1765FE60B683363225B9CD85CE5F5D6CE45BB665AE41113A3DD5806C27EC ] e1express       C:\Windows\system32\DRIVERS\e1e6232e.sys
03:06:47.0120 0x0ddc  e1express - ok
03:06:47.0169 0x0ddc  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
03:06:47.0174 0x0ddc  EapHost - ok
03:06:48.0603 0x0ddc  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
03:06:48.0830 0x0ddc  ebdrv - ok
03:06:48.0971 0x0ddc  [ 62056ADD38513A86C4866E912371B56B, 9465E65EB4303BF87483B9621D402E848A50E6D22B05846A621A2761B9516A57 ] EFS             C:\Windows\System32\lsass.exe
03:06:49.0020 0x0ddc  EFS - ok
03:06:50.0221 0x0ddc  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
03:06:50.0247 0x0ddc  ehRecvr - ok
03:06:50.0352 0x0ddc  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
03:06:50.0359 0x0ddc  ehSched - ok
03:06:50.0898 0x0ddc  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
03:06:51.0059 0x0ddc  elxstor - ok
03:06:52.0097 0x0ddc  [ 0E840AA66CAB02CBA9730C772BBE305B, 8862583E653D13D1D10A1A4A33704E4F70576E80370943AAFD1EAED6657A0104 ] epp             C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\epp.sys
03:06:52.0104 0x0ddc  epp - ok
03:06:52.0431 0x0ddc  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
03:06:52.0619 0x0ddc  ErrDev - ok
03:06:53.0151 0x0ddc  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
03:06:53.0242 0x0ddc  EventSystem - ok
03:06:53.0475 0x0ddc  [ 7E45F8B117419ABA3BB26579F6E70324, 03FE86519860153E1BE571F10ACC9BA58FFB5A661C5C3EBDF3B77973BCD96C84 ] exfat           C:\Windows\system32\drivers\exfat.sys
03:06:53.0545 0x0ddc  exfat - ok
03:06:53.0683 0x0ddc  [ 6EDFA237D25433C03F42FBFDB16BDD24, A30F89A40F7AFC475D3C2D3591FB9AFC06AE3FEBC915FDCB24ED77946FBA4E2C ] fastfat         C:\Windows\system32\drivers\fastfat.sys
03:06:53.0768 0x0ddc  fastfat - ok
03:06:54.0380 0x0ddc  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
03:06:54.0400 0x0ddc  Fax - ok
03:06:54.0452 0x0ddc  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
03:06:54.0493 0x0ddc  fdc - ok
03:06:54.0701 0x0ddc  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
03:06:54.0705 0x0ddc  fdPHost - ok
03:06:54.0894 0x0ddc  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
03:06:54.0898 0x0ddc  FDResPub - ok
03:06:55.0072 0x0ddc  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
03:06:55.0167 0x0ddc  FileInfo - ok
03:06:55.0288 0x0ddc  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
03:06:55.0346 0x0ddc  Filetrace - ok
03:06:55.0425 0x0ddc  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
03:06:55.0481 0x0ddc  flpydisk - ok
03:06:55.0664 0x0ddc  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
03:06:55.0711 0x0ddc  FltMgr - ok
03:06:56.0361 0x0ddc  [ 785F474FB5E67E448E1931C98E8D0ABC, 911697D580CBF508A6F4A52D4F95A6976CF9A0EC3549076A8D0B5C8BD947C989 ] FontCache       C:\Windows\system32\FntCache.dll
03:06:56.0442 0x0ddc  FontCache - ok
03:06:56.0534 0x0ddc  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
03:06:56.0556 0x0ddc  FontCache3.0.0.0 - ok
03:06:56.0628 0x0ddc  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
03:06:56.0637 0x0ddc  FsDepends - ok
03:06:56.0666 0x0ddc  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
03:06:56.0689 0x0ddc  Fs_Rec - ok
03:06:56.0782 0x0ddc  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
03:06:56.0809 0x0ddc  fvevol - ok
03:06:56.0846 0x0ddc  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
03:06:56.0867 0x0ddc  gagp30kx - ok
03:06:56.0908 0x0ddc  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
03:06:56.0910 0x0ddc  GEARAspiWDM - ok
03:06:57.0062 0x0ddc  [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc           C:\Windows\System32\gpsvc.dll
03:06:57.0098 0x0ddc  gpsvc - ok
03:06:57.0272 0x0ddc  [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
03:06:57.0279 0x0ddc  gupdate - ok
03:06:57.0308 0x0ddc  [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
03:06:57.0313 0x0ddc  gupdatem - ok
03:06:57.0374 0x0ddc  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
03:06:57.0386 0x0ddc  hcw85cir - ok
03:06:57.0563 0x0ddc  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
03:06:57.0616 0x0ddc  HdAudAddService - ok
03:06:57.0697 0x0ddc  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
03:06:57.0704 0x0ddc  HDAudBus - ok
03:06:57.0763 0x0ddc  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
03:06:57.0820 0x0ddc  HidBatt - ok
03:06:57.0917 0x0ddc  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
03:06:57.0934 0x0ddc  HidBth - ok
03:06:58.0045 0x0ddc  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
03:06:58.0108 0x0ddc  HidIr - ok
03:06:58.0239 0x0ddc  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
03:06:58.0266 0x0ddc  hidserv - ok
03:06:58.0407 0x0ddc  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
03:06:58.0410 0x0ddc  HidUsb - ok
03:06:58.0477 0x0ddc  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
03:06:58.0500 0x0ddc  hkmsvc - ok
03:06:58.0578 0x0ddc  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
03:06:58.0591 0x0ddc  HomeGroupListener - ok
03:06:58.0697 0x0ddc  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
03:06:58.0707 0x0ddc  HomeGroupProvider - ok
03:06:58.0742 0x0ddc  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
03:06:58.0753 0x0ddc  HpSAMD - ok
03:06:58.0890 0x0ddc  [ CF5C9BD985120781200D35FD445D0BD5, 91B37F595A196542458CBBCDAD80779721D228A7030A34E55995DDBB06649248 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
03:06:58.0919 0x0ddc  HTTP - ok
03:07:02.0102 0x0ddc  [ EF558A02D734A1403583E95CCEEC2487, F0D052DAF48A62E4A90D067BFCB5EE9563804DE68D0EA82E0E11C8D16AD19D29 ] HWiNFO32        C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS
03:07:02.0104 0x0ddc  HWiNFO32 - ok
03:07:05.0732 0x0ddc  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
03:07:05.0734 0x0ddc  hwpolicy - ok
03:07:05.0822 0x0ddc  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
03:07:05.0829 0x0ddc  i8042prt - ok
03:07:06.0073 0x0ddc  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
03:07:06.0131 0x0ddc  iaStorV - ok
03:07:06.0696 0x0ddc  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
03:07:06.0807 0x0ddc  idsvc - ok
03:07:06.0890 0x0ddc  IEEtwCollectorService - ok
03:07:08.0375 0x0ddc  [ 24CC43ECDEEFD4C19FBBEE4951B647F1, 416799965E6602F8F03E2A92E8BB42B1D5643C65EF09815FC5A56A2FA73E6773 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
03:07:08.0669 0x0ddc  igfx - ok
03:07:08.0751 0x0ddc  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
03:07:08.0756 0x0ddc  iirsp - ok
03:07:09.0051 0x0ddc  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
03:07:09.0076 0x0ddc  IKEEXT - ok
03:07:09.0889 0x0ddc  [ EA243345FB4E3E8453E95F787CE974B4, 27BA8822C448F5305BA64A0BFD613A2C0924B83501603D78C5526F6E5F3266DF ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
03:07:10.0192 0x0ddc  IntcAzAudAddService - ok
03:07:10.0310 0x0ddc  [ FE098EF3DB8E8064CF6BE4CA6DD1FDF0, 4C391F44A70EF529038EC9770A5E2CA6A19084D2507E87C05729693F9EAE4F04 ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
03:07:10.0325 0x0ddc  Intel® PROSet Monitoring Service - ok
03:07:10.0348 0x0ddc  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
03:07:10.0350 0x0ddc  intelide - ok
03:07:10.0396 0x0ddc  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
03:07:10.0399 0x0ddc  intelppm - ok
03:07:10.0619 0x0ddc  [ 689D9CDD33B5524035532918E2799488, 5367DF987C4DA6F36512DDFD482C6E537C9FFF1B138274680A6E5D817EF38328 ] IObitUnSvr      C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe
03:07:10.0629 0x0ddc  IObitUnSvr - ok
03:07:10.0685 0x0ddc  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
03:07:10.0708 0x0ddc  IPBusEnum - ok
03:07:10.0796 0x0ddc  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
03:07:10.0836 0x0ddc  IpFilterDriver - ok
03:07:11.0168 0x0ddc  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
03:07:11.0189 0x0ddc  iphlpsvc - ok
03:07:11.0229 0x0ddc  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
03:07:11.0253 0x0ddc  IPMIDRV - ok
03:07:11.0309 0x0ddc  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
03:07:11.0330 0x0ddc  IPNAT - ok
03:07:12.0942 0x0ddc  [ 45BCB17875BE42FE49116A965DD2C518, 69BF4B79EDC77C1CC22B5BD42E1CFC7233043593ACC6EA47C000B0F691AC298B ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
03:07:12.0962 0x0ddc  iPod Service - ok
03:07:13.0218 0x0ddc  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
03:07:13.0249 0x0ddc  IRENUM - ok
03:07:13.0340 0x0ddc  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
03:07:13.0364 0x0ddc  isapnp - ok
03:07:13.0628 0x0ddc  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
03:07:13.0660 0x0ddc  iScsiPrt - ok
03:07:14.0158 0x0ddc  [ 84F3F4E640E3BA75E8E6CBF1D88B3CA4, 438AF2CF428C628AC8E27F952AFD6F905A1D25BB3CBCB613BD2E3A0B91B27B4A ] IUFileFilter    C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IUFileFilter.sys
03:07:14.0181 0x0ddc  IUFileFilter - ok
03:07:14.0320 0x0ddc  [ E52DCC2FD6A34056E3B759E5DA695F96, 8920DF26204EFCE20F0B62E556C1B3765E8B9E0443A62D3E0BFF772A8B900198 ] IURegProcessFilter C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win7_amd64\IURegProcessFilter.sys
03:07:14.0321 0x0ddc  IURegProcessFilter - ok
03:07:14.0367 0x0ddc  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
03:07:14.0370 0x0ddc  kbdclass - ok
03:07:14.0439 0x0ddc  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
03:07:14.0442 0x0ddc  kbdhid - ok
03:07:14.0484 0x0ddc  [ 62056ADD38513A86C4866E912371B56B, 9465E65EB4303BF87483B9621D402E848A50E6D22B05846A621A2761B9516A57 ] KeyIso          C:\Windows\system32\lsass.exe
03:07:14.0488 0x0ddc  KeyIso - ok
03:07:14.0613 0x0ddc  [ DFE85B031220F8E0271716BBB3C4C8FF, 531AB0851AE2F2B25D751605529C483B4734E5D26F94F56DEC0191730DD6A9A4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
03:07:14.0620 0x0ddc  KSecDD - ok
03:07:14.0675 0x0ddc  [ 70D7302DD70B979637179BFD8295C924, 7A3498C8A90AC5D7A070E9BCAF1BC0D16F478A7160A9333C58247034C5B3B59F ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
03:07:14.0699 0x0ddc  KSecPkg - ok
03:07:14.0731 0x0ddc  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
03:07:14.0732 0x0ddc  ksthunk - ok
03:07:14.0862 0x0ddc  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
03:07:14.0936 0x0ddc  KtmRm - ok
03:07:15.0036 0x0ddc  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
03:07:15.0047 0x0ddc  LanmanServer - ok
03:07:15.0122 0x0ddc  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
03:07:15.0134 0x0ddc  LanmanWorkstation - ok
03:07:15.0222 0x0ddc  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
03:07:15.0225 0x0ddc  lltdio - ok
03:07:15.0371 0x0ddc  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
03:07:15.0388 0x0ddc  lltdsvc - ok
03:07:15.0420 0x0ddc  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
03:07:15.0426 0x0ddc  lmhosts - ok
03:07:15.0476 0x0ddc  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
03:07:15.0488 0x0ddc  LSI_FC - ok
03:07:15.0542 0x0ddc  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
03:07:15.0577 0x0ddc  LSI_SAS - ok
03:07:15.0669 0x0ddc  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
03:07:15.0673 0x0ddc  LSI_SAS2 - ok
03:07:15.0725 0x0ddc  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
03:07:15.0734 0x0ddc  LSI_SCSI - ok
03:07:15.0817 0x0ddc  [ 5416CEB2916BBE635288C4D1075B045E, BEFF99052206C0D774CFFF14AC3305C397726B289B17666C2AD2706C261F2FF0 ] luafv           C:\Windows\system32\drivers\luafv.sys
03:07:15.0821 0x0ddc  luafv - ok
03:07:16.0754 0x0ddc  [ 734B435E1693386213EEFD4D17A70DEB, EC6288CB37BD420DA071E800FBEF25BCCF22F2A40F98DB22F1C86D87157EF1AA ] MBAMService     C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
03:07:16.0944 0x0ddc  MBAMService - ok
03:07:17.0538 0x0ddc  MBAMSwissArmy - ok
03:07:17.0592 0x0ddc  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
03:07:17.0598 0x0ddc  Mcx2Svc - ok
03:07:17.0691 0x0ddc  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
03:07:17.0695 0x0ddc  megasas - ok
03:07:17.0751 0x0ddc  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
03:07:17.0769 0x0ddc  MegaSR - ok
03:07:17.0864 0x0ddc  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
03:07:17.0869 0x0ddc  MMCSS - ok
03:07:17.0933 0x0ddc  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
03:07:17.0933 0x0ddc  Modem - ok
03:07:17.0980 0x0ddc  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
03:07:17.0995 0x0ddc  monitor - ok
03:07:18.0089 0x0ddc  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
03:07:18.0089 0x0ddc  mouclass - ok
03:07:18.0182 0x0ddc  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
03:07:18.0182 0x0ddc  mouhid - ok
03:07:18.0292 0x0ddc  [ 072D8646E23ECF8A3F5F0157017B4DB6, EBFB1459ECC5AF94C94FB49CEBC724542612680F0777E24B5AA6E062C0EE5D94 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
03:07:18.0292 0x0ddc  mountmgr - ok
03:07:18.0541 0x0ddc  [ 187AEEEC657A4B6FC26B383E9E786D6C, 98871BE45B16CBC037EF05176A99275CB25DE03DF182063B8302AEDFEE00D8E4 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
03:07:18.0572 0x0ddc  MozillaMaintenance - ok
03:07:19.0056 0x0ddc  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
03:07:19.0134 0x0ddc  mpio - ok
03:07:19.0181 0x0ddc  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
03:07:19.0181 0x0ddc  mpsdrv - ok
03:07:19.0618 0x0ddc  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
03:07:19.0649 0x0ddc  MpsSvc - ok
03:07:19.0789 0x0ddc  [ 98DB1790F0A584E0A2528B92B052417F, 9AA04CA73AFE599810CD233B9CEC212E16D44DCEDF5C7D0181C7257F498068B5 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
03:07:19.0805 0x0ddc  MRxDAV - ok
03:07:19.0930 0x0ddc  [ 767C6DF04C5758B9F0790D400541B44F, BFC38D7BCF19F7246BCAD3E04273A403F6B973432EE0EF6E25B16BA3826A21B7 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
03:07:19.0930 0x0ddc  mrxsmb - ok
03:07:20.0164 0x0ddc  [ BD55F604FFABC911F8E5500186AE70E5, 3719EDB070E6FFE9781337A05CA0309C3CD5CD38A292DF091E05C9BA3D5A479F ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
03:07:20.0164 0x0ddc  mrxsmb10 - ok
03:07:20.0476 0x0ddc  [ 92EECFB046D4706A4B8D699A4069B6EC, 3B3E232DABA913A500CE55AD8600D8DD8F28E32B0276B9B6C8FD6239688833A4 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
03:07:20.0476 0x0ddc  mrxsmb20 - ok
03:07:20.0585 0x0ddc  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
03:07:20.0632 0x0ddc  msahci - ok
03:07:20.0710 0x0ddc  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
03:07:20.0788 0x0ddc  msdsm - ok
03:07:20.0928 0x0ddc  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
03:07:20.0944 0x0ddc  MSDTC - ok
03:07:21.0037 0x0ddc  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
03:07:21.0037 0x0ddc  Msfs - ok
03:07:21.0053 0x0ddc  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
03:07:21.0053 0x0ddc  mshidkmdf - ok
03:07:21.0100 0x0ddc  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
03:07:21.0100 0x0ddc  msisadrv - ok
03:07:21.0178 0x0ddc  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
03:07:21.0209 0x0ddc  MSiSCSI - ok
03:07:21.0209 0x0ddc  msiserver - ok
03:07:21.0256 0x0ddc  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
03:07:21.0256 0x0ddc  MSKSSRV - ok
03:07:21.0334 0x0ddc  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
03:07:21.0334 0x0ddc  MSPCLOCK - ok
03:07:21.0380 0x0ddc  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
03:07:21.0396 0x0ddc  MSPQM - ok
03:07:21.0427 0x0ddc  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
03:07:21.0443 0x0ddc  MsRPC - ok
03:07:21.0505 0x0ddc  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
03:07:21.0505 0x0ddc  mssmbios - ok
03:07:21.0568 0x0ddc  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
03:07:21.0583 0x0ddc  MSTEE - ok
03:07:21.0614 0x0ddc  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
03:07:21.0630 0x0ddc  MTConfig - ok
03:07:21.0677 0x0ddc  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
03:07:21.0677 0x0ddc  Mup - ok
03:07:21.0895 0x0ddc  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
03:07:21.0958 0x0ddc  napagent - ok
03:07:22.0145 0x0ddc  [ 9FB2A095B1166CB3C9A06651863B3452, 808105C59C2D28C390FDE0CA48690A5CD052DE3D7F7327864EB45F80187D5BE9 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
03:07:22.0160 0x0ddc  NativeWifiP - ok
03:07:22.0488 0x0ddc  [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS            C:\Windows\system32\drivers\ndis.sys
03:07:22.0628 0x0ddc  NDIS - ok
03:07:22.0894 0x0ddc  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
03:07:22.0909 0x0ddc  NdisCap - ok
03:07:23.0003 0x0ddc  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
03:07:23.0003 0x0ddc  NdisTapi - ok
03:07:23.0065 0x0ddc  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
03:07:23.0065 0x0ddc  Ndisuio - ok
03:07:23.0143 0x0ddc  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
03:07:23.0159 0x0ddc  NdisWan - ok
03:07:23.0206 0x0ddc  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
03:07:23.0206 0x0ddc  NDProxy - ok
03:07:23.0268 0x0ddc  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
03:07:23.0284 0x0ddc  NetBIOS - ok
03:07:23.0377 0x0ddc  [ 734837208CAFD6E0959A7A0333C95C9D, 0B7CD6E3CE43ABE021DBE6516492E326265EC0273F2F4297187CE70602CB8CE1 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
03:07:23.0393 0x0ddc  NetBT - ok
03:07:23.0580 0x0ddc  [ 62056ADD38513A86C4866E912371B56B, 9465E65EB4303BF87483B9621D402E848A50E6D22B05846A621A2761B9516A57 ] Netlogon        C:\Windows\system32\lsass.exe
03:07:23.0580 0x0ddc  Netlogon - ok
03:07:23.0861 0x0ddc  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
03:07:23.0876 0x0ddc  Netman - ok
03:07:24.0797 0x0ddc  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
03:07:26.0450 0x0ddc  NetMsmqActivator - ok
03:07:27.0059 0x0ddc  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
03:07:27.0059 0x0ddc  NetPipeActivator - ok
03:07:27.0385 0x0ddc  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
03:07:27.0401 0x0ddc  netprofm - ok
03:07:27.0525 0x0ddc  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
03:07:27.0525 0x0ddc  NetTcpActivator - ok
03:07:27.0557 0x0ddc  [ 10D5997E2F5F16FE3BC3BD1A4BF31EA8, 0DDC4855C00A581A35AB2A11D2AAACC844C460F13F524DD9B92B8F00C31173A7 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
03:07:27.0557 0x0ddc  NetTcpPortSharing - ok
03:07:29.0897 0x0ddc  [ 64428DFDAF6E88366CB51F45A79C5F69, 31187D38C1AB52120A3CB7AC3CE47ED9682AC37B0F06B9A9610C0065DD4E7B13 ] netw5v64        C:\Windows\system32\DRIVERS\netw5v64.sys
03:07:30.0380 0x0ddc  netw5v64 - ok
03:07:31.0129 0x0ddc  [ 54762E37F65C20652532DBDAC53698F6, 5A01ABAEEBC3DDA182227B8DEAA2DD3372F3AC2FBD72D5E0385AABDB3E08A182 ] NETwLv64        C:\Windows\system32\DRIVERS\NETwLv64.sys
03:07:31.0597 0x0ddc  NETwLv64 - ok
03:07:32.0564 0x0ddc  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
03:07:32.0627 0x0ddc  nfrd960 - ok
03:07:32.0798 0x0ddc  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
03:07:32.0829 0x0ddc  NlaSvc - ok
03:07:33.0001 0x0ddc  [ DE7FCC77F4A503AF4CA6A47D49B3713D, 4BFAA99393F635CD05D91A64DE73EDB5639412C129E049F0FE34F88517A10FC6 ] npf             C:\Windows\system32\drivers\npf.sys
03:07:33.0017 0x0ddc  npf - ok
03:07:33.0048 0x0ddc  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
03:07:33.0048 0x0ddc  Npfs - ok
03:07:33.0126 0x0ddc  [ 668B9EFF5CCA4542F435D2CD9CE3C778, 7409EF35D1DC0DE2BAB752694981FFA1F1855C7F11310366B80BD1EC3513262E ] nsi             C:\Windows\system32\nsisvc.dll
03:07:33.0141 0x0ddc  nsi - ok
03:07:33.0297 0x0ddc  [ BE313E566EEA2A4B7F9AAC9782A567D4, 377C624737B1A4FBC1DFF988F029B8ED9A368827C33A4FEEBA1B7937A87C2B47 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
03:07:33.0297 0x0ddc  nsiproxy - ok
03:07:33.0921 0x0ddc  [ 1065D9AFE491706EB00AD3CBB76C9E54, 7014029663FC61932EACC07682A66EE5483F11968EF58DE9766A9D77238C6812 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
03:07:34.0077 0x0ddc  Ntfs - ok
03:07:34.0187 0x0ddc  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
03:07:34.0187 0x0ddc  Null - ok
03:07:34.0358 0x0ddc  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
03:07:34.0389 0x0ddc  nvraid - ok
03:07:34.0608 0x0ddc  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
03:07:34.0717 0x0ddc  nvstor - ok
03:07:34.0764 0x0ddc  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
03:07:34.0795 0x0ddc  nv_agp - ok
03:07:34.0857 0x0ddc  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
03:07:34.0889 0x0ddc  ohci1394 - ok
03:07:35.0201 0x0ddc  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
03:07:35.0216 0x0ddc  p2pimsvc - ok
03:07:35.0419 0x0ddc  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
03:07:35.0435 0x0ddc  p2psvc - ok
03:07:35.0481 0x0ddc  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
03:07:35.0481 0x0ddc  Parport - ok
03:07:35.0669 0x0ddc  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
03:07:35.0700 0x0ddc  partmgr - ok
03:07:35.0825 0x0ddc  [ 3CD83692C43D87088E85E3C916146FFB, 9E812535E8FBA045FDA30F68E9EB2031132C37721D542A2DC9D4C33E2B137FCF ] PcaSvc          C:\Windows\System32\pcasvc.dll
03:07:35.0840 0x0ddc  PcaSvc - ok
03:07:35.0871 0x0ddc  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
03:07:35.0918 0x0ddc  pci - ok
03:07:35.0981 0x0ddc  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\DRIVERS\pciide.sys
03:07:35.0981 0x0ddc  pciide - ok
03:07:36.0105 0x0ddc  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
03:07:36.0121 0x0ddc  pcmcia - ok
03:07:36.0215 0x0ddc  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
03:07:36.0246 0x0ddc  pcw - ok
03:07:36.0402 0x0ddc  [ EA4D67448BE493D543F1730D6CD04694, 24717C5E41B7CA522F3330EF2228B6685E710A5259396E9887A1C1E7A413F8CA ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
03:07:36.0417 0x0ddc  PEAUTH - ok
03:07:37.0135 0x0ddc  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
03:07:37.0244 0x0ddc  PeerDistSvc - ok
03:07:43.0266 0x0ddc  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
03:07:43.0281 0x0ddc  PerfHost - ok
03:07:44.0545 0x0ddc  [ BC5F8C5C7ACCD0B884FCB8B67616F537, 5C99E9D7E7095CED52B1F5F4A569E54F124602C573DD2B25731E0D57FDA22A27 ] pla             C:\Windows\system32\pla.dll
03:07:44.0763 0x0ddc  pla - ok
03:07:44.0857 0x0ddc  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
03:07:44.0873 0x0ddc  PlugPlay - ok
03:07:44.0919 0x0ddc  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
03:07:44.0919 0x0ddc  PNRPAutoReg - ok
03:07:44.0951 0x0ddc  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
03:07:44.0966 0x0ddc  PNRPsvc - ok
03:07:45.0075 0x0ddc  [ E4799B87675C59AA1F620DE5C6F113BB, 094EE16D4CEC68DB316002994482344A6BFCFDE399131F7FA11BB46C2DCBF218 ] Point64         C:\Windows\system32\DRIVERS\point64.sys
03:07:45.0075 0x0ddc  Point64 - ok
03:07:45.0138 0x0ddc  [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
03:07:45.0200 0x0ddc  PolicyAgent - ok
03:07:45.0231 0x0ddc  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
03:07:45.0231 0x0ddc  Power - ok
03:07:45.0294 0x0ddc  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
03:07:45.0294 0x0ddc  PptpMiniport - ok
03:07:45.0325 0x0ddc  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
03:07:45.0341 0x0ddc  Processor - ok
03:07:45.0403 0x0ddc  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
03:07:45.0419 0x0ddc  ProfSvc - ok
03:07:45.0465 0x0ddc  [ 62056ADD38513A86C4866E912371B56B, 9465E65EB4303BF87483B9621D402E848A50E6D22B05846A621A2761B9516A57 ] ProtectedStorage C:\Windows\system32\lsass.exe
03:07:45.0465 0x0ddc  ProtectedStorage - ok
03:07:45.0606 0x0ddc  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
03:07:45.0606 0x0ddc  Psched - ok
03:07:45.0793 0x0ddc  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
03:07:45.0902 0x0ddc  ql2300 - ok
03:07:45.0949 0x0ddc  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
03:07:45.0949 0x0ddc  ql40xx - ok
03:07:46.0089 0x0ddc  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
03:07:46.0105 0x0ddc  QWAVE - ok
03:07:46.0121 0x0ddc  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
03:07:46.0136 0x0ddc  QWAVEdrv - ok
03:07:46.0152 0x0ddc  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
03:07:46.0152 0x0ddc  RasAcd - ok
03:07:46.0214 0x0ddc  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
03:07:46.0214 0x0ddc  RasAgileVpn - ok
03:07:46.0245 0x0ddc  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
03:07:46.0261 0x0ddc  RasAuto - ok
03:07:46.0308 0x0ddc  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
03:07:46.0308 0x0ddc  Rasl2tp - ok
03:07:46.0355 0x0ddc  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
03:07:46.0417 0x0ddc  RasMan - ok
03:07:46.0448 0x0ddc  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
03:07:46.0448 0x0ddc  RasPppoe - ok
03:07:46.0479 0x0ddc  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
03:07:46.0479 0x0ddc  RasSstp - ok
03:07:46.0557 0x0ddc  [ FB45727105E27756B3252572A138FA19, B11A375C7377C2DD02175921F5A3BBD23191207DE76DB220ACF72BD5CF74E09A ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
03:07:46.0557 0x0ddc  rdbss - ok
03:07:46.0667 0x0ddc  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
03:07:46.0667 0x0ddc  rdpbus - ok
03:07:46.0713 0x0ddc  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
03:07:46.0713 0x0ddc  RDPCDD - ok
03:07:46.0776 0x0ddc  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
03:07:46.0791 0x0ddc  RDPDR - ok
03:07:46.0823 0x0ddc  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
03:07:46.0823 0x0ddc  RDPENCDD - ok
03:07:46.0869 0x0ddc  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
03:07:46.0869 0x0ddc  RDPREFMP - ok
03:07:47.0025 0x0ddc  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
03:07:47.0025 0x0ddc  RdpVideoMiniport - ok
03:07:47.0088 0x0ddc  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
03:07:47.0088 0x0ddc  RDPWD - ok
03:07:47.0228 0x0ddc  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
03:07:47.0259 0x0ddc  rdyboost - ok
03:07:47.0337 0x0ddc  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
03:07:47.0337 0x0ddc  RemoteAccess - ok
03:07:47.0415 0x0ddc  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
03:07:47.0415 0x0ddc  RemoteRegistry - ok
03:07:47.0509 0x0ddc  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
03:07:47.0525 0x0ddc  RFCOMM - ok
03:07:47.0665 0x0ddc  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
03:07:47.0681 0x0ddc  RpcEptMapper - ok
03:07:47.0759 0x0ddc  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
03:07:47.0759 0x0ddc  RpcLocator - ok
03:07:47.0868 0x0ddc  [ 3F1A199859B4F3F8357B2A0AF5666A54, B0ACE9384088B7D0E54CF82BF48D4FEAA518BDEF98A294BA8F5A37DFF0E45328 ] RpcSs           C:\Windows\system32\rpcss.dll
03:07:47.0883 0x0ddc  RpcSs - ok
03:07:47.0993 0x0ddc  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
03:07:48.0008 0x0ddc  rspndr - ok
03:07:48.0039 0x0ddc  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
03:07:48.0039 0x0ddc  s3cap - ok
03:07:48.0071 0x0ddc  [ 62056ADD38513A86C4866E912371B56B, 9465E65EB4303BF87483B9621D402E848A50E6D22B05846A621A2761B9516A57 ] SamSs           C:\Windows\system32\lsass.exe
03:07:48.0071 0x0ddc  SamSs - ok
03:07:48.0227 0x0ddc  [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
03:07:48.0227 0x0ddc  SASDIFSV - ok
03:07:48.0305 0x0ddc  [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
03:07:48.0305 0x0ddc  SASKUTIL - ok
03:07:48.0336 0x0ddc  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
03:07:48.0351 0x0ddc  sbp2port - ok
03:07:48.0398 0x0ddc  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
03:07:48.0429 0x0ddc  SCardSvr - ok
03:07:48.0445 0x0ddc  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
03:07:48.0461 0x0ddc  scfilter - ok
03:07:48.0539 0x0ddc  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\Windows\system32\schedsvc.dll
03:07:48.0632 0x0ddc  Schedule - ok
03:07:48.0695 0x0ddc  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
03:07:48.0695 0x0ddc  SCPolicySvc - ok
03:07:48.0741 0x0ddc  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus           C:\Windows\system32\drivers\sdbus.sys
03:07:48.0757 0x0ddc  sdbus - ok
03:07:48.0788 0x0ddc  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
03:07:48.0804 0x0ddc  SDRSVC - ok
03:07:48.0835 0x0ddc  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
03:07:48.0835 0x0ddc  secdrv - ok
03:07:48.0866 0x0ddc  [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon        C:\Windows\system32\seclogon.dll
03:07:48.0866 0x0ddc  seclogon - ok
03:07:48.0897 0x0ddc  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
03:07:48.0897 0x0ddc  SENS - ok
03:07:48.0929 0x0ddc  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
03:07:48.0944 0x0ddc  SensrSvc - ok
03:07:48.0975 0x0ddc  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
03:07:48.0991 0x0ddc  Serenum - ok
03:07:49.0038 0x0ddc  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
03:07:49.0038 0x0ddc  Serial - ok
03:07:49.0085 0x0ddc  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
03:07:49.0100 0x0ddc  sermouse - ok
03:07:49.0147 0x0ddc  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
03:07:49.0209 0x0ddc  SessionEnv - ok
03:07:49.0256 0x0ddc  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys
03:07:49.0256 0x0ddc  sffdisk - ok
03:07:49.0272 0x0ddc  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
03:07:49.0303 0x0ddc  sffp_mmc - ok
03:07:49.0443 0x0ddc  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys
03:07:49.0459 0x0ddc  sffp_sd - ok
03:07:49.0475 0x0ddc  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
03:07:49.0475 0x0ddc  sfloppy - ok
03:07:49.0693 0x0ddc  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
03:07:49.0724 0x0ddc  SharedAccess - ok
03:07:49.0896 0x0ddc  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
03:07:49.0911 0x0ddc  ShellHWDetection - ok
03:07:49.0943 0x0ddc  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
03:07:49.0974 0x0ddc  SiSRaid2 - ok
03:07:50.0021 0x0ddc  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
03:07:50.0036 0x0ddc  SiSRaid4 - ok
03:07:50.0161 0x0ddc  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
03:07:50.0161 0x0ddc  Smb - ok
03:07:50.0223 0x0ddc  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
03:07:50.0239 0x0ddc  SNMPTRAP - ok
03:07:50.0270 0x0ddc  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
03:07:50.0270 0x0ddc  spldr - ok
03:07:50.0379 0x0ddc  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
03:07:50.0395 0x0ddc  Spooler - ok
03:07:51.0144 0x0ddc  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
03:07:51.0315 0x0ddc  sppsvc - ok
03:07:51.0378 0x0ddc  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
03:07:51.0409 0x0ddc  sppuinotify - ok
03:07:51.0518 0x0ddc  [ 72E6A150A8C8530B201832D1C801CDE6, EFBDD5D1FB924979E63D829A6970CB5552A746BEBB7C4D41066684CA16A374E0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
03:07:51.0565 0x0ddc  srv - ok
03:07:51.0690 0x0ddc  [ C4F67ABCC5033D334613F28F9E782809, A19E32E2EF790E88E7013C298AF0A34A9957A7CE55DF19FBD7BDF688D3767BA5 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
03:07:51.0737 0x0ddc  srv2 - ok
03:07:51.0815 0x0ddc  [ C53CB62B0E57488AAE41FDA0FF8A0AB9, 93614C72C578E348B66690585F8AC2B53C0C19D2C96AAD3E776D3389CA5E43B6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
03:07:51.0846 0x0ddc  srvnet - ok
03:07:51.0893 0x0ddc  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
03:07:51.0893 0x0ddc  SSDPSRV - ok
03:07:51.0924 0x0ddc  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
03:07:51.0939 0x0ddc  SstpSvc - ok
03:07:52.0002 0x0ddc  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
03:07:52.0033 0x0ddc  stexstor - ok
03:07:52.0173 0x0ddc  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
03:07:52.0205 0x0ddc  stisvc - ok
03:07:52.0220 0x0ddc  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
03:07:52.0220 0x0ddc  storflt - ok
03:07:52.0251 0x0ddc  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
03:07:52.0251 0x0ddc  storvsc - ok
03:07:52.0298 0x0ddc  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
03:07:52.0298 0x0ddc  swenum - ok
03:07:52.0485 0x0ddc  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
03:07:52.0517 0x0ddc  SwitchBoard - ok
03:07:52.0688 0x0ddc  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
03:07:52.0704 0x0ddc  swprv - ok
03:07:52.0735 0x0ddc  Synth3dVsc - ok
03:07:52.0860 0x0ddc  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll
03:07:53.0031 0x0ddc  SysMain - ok
03:07:53.0094 0x0ddc  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
03:07:53.0094 0x0ddc  TabletInputService - ok
03:07:53.0141 0x0ddc  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
03:07:53.0156 0x0ddc  TapiSrv - ok
03:07:53.0421 0x0ddc  [ 7FB36A0A036ADDACE0A868E4A43C1C27, AFDCD57C49D06F31C02F37C81B67BA148CDC9B62AD62B771925D31339DDA9012 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
03:07:53.0577 0x0ddc  Tcpip - ok
03:07:53.0733 0x0ddc  [ 7FB36A0A036ADDACE0A868E4A43C1C27, AFDCD57C49D06F31C02F37C81B67BA148CDC9B62AD62B771925D31339DDA9012 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
03:07:53.0796 0x0ddc  TCPIP6 - ok
03:07:53.0827 0x0ddc  [ 7FE5586314EE7D6AA8483264A089E5AF, 4E3EA68713A45C22F1B9A1AA125E15D06D0C5E637B815537431ADFB6D7563879 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
03:07:53.0843 0x0ddc  tcpipreg - ok
03:07:53.0936 0x0ddc  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
03:07:53.0936 0x0ddc  TDPIPE - ok
03:07:53.0967 0x0ddc  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
03:07:53.0999 0x0ddc  TDTCP - ok
03:07:54.0045 0x0ddc  [ 4DD986720F7CB7A8A5D1226793097B9A, 9020375B45E9C966BF44CF425C127D7E0EC82EB99C7047F225C25402FF97743D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
03:07:54.0045 0x0ddc  tdx - ok
03:07:54.0092 0x0ddc  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
03:07:54.0092 0x0ddc  TermDD - ok
03:07:54.0217 0x0ddc  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
03:07:54.0248 0x0ddc  TermService - ok
03:07:54.0279 0x0ddc  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
03:07:54.0295 0x0ddc  Themes - ok
03:07:54.0389 0x0ddc  [ DA4084C3D84BC2688A680BFD46A63B87, 99AA144560ECF07DC130BBA56CAE8C3B1DB7916C11D3E196F18D78C321B19034 ] Thpdrv          C:\Windows\system32\DRIVERS\thpdrv.sys
03:07:54.0404 0x0ddc  Thpdrv - ok
03:07:54.0467 0x0ddc  [ D6704940A79831B4FA271D7A73D291D8, 9F6088AE2E4F4058D4414C32ACC2E3D9707BA90587B8611F4416DDDCD1717762 ] Thpevm          C:\Windows\system32\DRIVERS\Thpevm.SYS
03:07:54.0482 0x0ddc  Thpevm - ok
03:07:54.0545 0x0ddc  [ 91980BDC842D0FDB7F718781B63127D5, 737C6F4EDCFF04FCA1A570775ECD2D0260B2F7349F995DCC1A758559530794CA ] Thpsrv          C:\Windows\system32\ThpSrv.exe
03:07:54.0560 0x0ddc  Thpsrv - ok
03:07:54.0638 0x0ddc  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
03:07:54.0638 0x0ddc  THREADORDER - ok
03:07:54.0857 0x0ddc  [ 06C61275ADC64F1E36240A2287998A5E, 3131EBB14C3297037EBB68DC4AD97FF68AC3F6393C01C7E604A392B277DD480A ] TosCoSrv        C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
03:07:54.0888 0x0ddc  TosCoSrv - ok
03:07:54.0950 0x0ddc  [ 8021F63311797085949FA387F7C83583, 7781994B9F06784807D32FD5A93C5406A441908870B1328BBDA9D15C5DD98C1B ] tosporte        C:\Windows\system32\DRIVERS\tosporte.sys
03:07:54.0950 0x0ddc  tosporte - ok
03:07:54.0997 0x0ddc  [ 58E3F35AECD7BD5FCC1BD198B4AD354F, 2822DA60CF4967804ECC9D02A3DA5771AD75BCB76B2721EA500B27193BC20B26 ] Tosrfbd         C:\Windows\system32\DRIVERS\tosrfbd.sys
03:07:55.0013 0x0ddc  Tosrfbd - ok
03:07:55.0059 0x0ddc  [ 90F0B1745ABF13F44C2A6ED79F7CE9FB, B705B0ADD6965CF63D3FCD039DBC80EEB8B3860608367D248C7350BB16D83337 ] tosrfbnp        C:\Windows\system32\Drivers\tosrfbnp.sys
03:07:55.0059 0x0ddc  tosrfbnp - ok
03:07:55.0106 0x0ddc  [ 9E4E65EA51E34647340BD6007467AC54, D4FD658250298AE52959009C7DB031A7D82E48088DB5D94E6D3F990058B9D75E ] Tosrfcom        C:\Windows\system32\Drivers\tosrfcom.sys
03:07:55.0122 0x0ddc  Tosrfcom - ok
03:07:55.0137 0x0ddc  [ 7D2467D3EB9BAA4B69AE4A28C83DE57A, 38D2C64559EF4598025474643EC0D506F0107822AC6205E8C4D26B76EB28177D ] Tosrfhid        C:\Windows\system32\DRIVERS\Tosrfhid.sys
03:07:55.0153 0x0ddc  Tosrfhid - ok
03:07:55.0200 0x0ddc  [ B6FDC3C76FFE9C5171EEA9C37EA367C2, 4F8D4E2E37164DB91F396B836BD888CF221010103CF3FBECE00B747155819374 ] tosrfnds        C:\Windows\system32\DRIVERS\tosrfnds.sys
03:07:55.0231 0x0ddc  tosrfnds - ok
03:07:55.0293 0x0ddc  [ 7052B10E54B48AF12BD5606596A8E039, 530862CFF482B279CCF320B6941C7C8BFAA95F04561BE5F0FDB3E0C042FE6BDA ] TosRfSnd        C:\Windows\system32\drivers\tosrfsnd.sys
03:07:55.0309 0x0ddc  TosRfSnd - ok
03:07:55.0371 0x0ddc  [ 7A0048693F98460FF537BE31C741B927, 6CD73974D8A9215A5B538C7F32E1C85F6912D38A0B70DB10015621C4E1670980 ] Tosrfusb        C:\Windows\system32\DRIVERS\tosrfusb.sys
03:07:55.0403 0x0ddc  Tosrfusb - ok
03:07:55.0481 0x0ddc  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
03:07:57.0493 0x0ddc  TrkWks - ok
03:07:57.0602 0x0ddc  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
03:07:57.0618 0x0ddc  TrustedInstaller - ok
03:07:57.0680 0x0ddc  [ 2CF58216424757ED29605B4F18EC443C, 9D523FC075F7F41A17F60617670A976A8F2F2943444515DC3834720BDC37DFA0 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
03:07:57.0696 0x0ddc  tssecsrv - ok
03:07:57.0743 0x0ddc  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
03:07:57.0743 0x0ddc  TsUsbFlt - ok
03:07:57.0758 0x0ddc  tsusbhub - ok
03:07:57.0805 0x0ddc  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
03:07:57.0805 0x0ddc  tunnel - ok
03:07:57.0836 0x0ddc  [ EFFCE6E033EBDD0F3C0F14A413558F65, 576E7C8F1FBE874A0F8F7AA97FC19F472474CFD4A6F663034341E98FF5A28BB5 ] TVALZ           C:\Windows\system32\DRIVERS\TVALZ.SYS
03:07:57.0836 0x0ddc  TVALZ - ok
03:07:57.0868 0x0ddc  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
03:07:57.0883 0x0ddc  uagp35 - ok
03:07:57.0914 0x0ddc  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
03:07:57.0946 0x0ddc  udfs - ok
03:07:58.0008 0x0ddc  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
03:07:58.0024 0x0ddc  UI0Detect - ok
03:07:58.0055 0x0ddc  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
03:07:58.0055 0x0ddc  uliagpkx - ok
03:07:58.0102 0x0ddc  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\drivers\umbus.sys
03:07:58.0102 0x0ddc  umbus - ok
03:07:58.0164 0x0ddc  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
03:07:58.0180 0x0ddc  UmPass - ok
03:07:58.0382 0x0ddc  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
03:07:58.0398 0x0ddc  UmRdpService - ok
03:07:58.0445 0x0ddc  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
03:07:58.0476 0x0ddc  upnphost - ok
03:07:58.0523 0x0ddc  [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
03:07:58.0523 0x0ddc  USBAAPL64 - ok
03:07:58.0570 0x0ddc  [ 9E68E917FB4B5C983438969643F53BEF, 7148BF1E7AFAFA025A51AA9A26B90ED85328B41C7F7791CB3460D9CF53245985 ] usbccgp         C:\Windows\system32\drivers\usbccgp.sys
03:07:58.0585 0x0ddc  usbccgp - ok
03:07:58.0601 0x0ddc  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
03:07:58.0632 0x0ddc  usbcir - ok
03:07:58.0648 0x0ddc  [ 3F9D3902CE931E2A28DD8452AE915B67, C8BF042DD84FB2E3AE7FCDBA65923611FCBDAFD6410E42A5E58F8995D99AE16C ] usbehci         C:\Windows\system32\drivers\usbehci.sys
03:07:58.0648 0x0ddc  usbehci - ok
03:07:58.0726 0x0ddc  [ 86B65EEBC03B936DE8B26E5A18D98FA2, 2981CF5A0FB6B6FE0A38363EA4804DB743C45E3E6E72DC3A2260F583377717C8 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
03:07:58.0726 0x0ddc  usbhub - ok
03:07:58.0772 0x0ddc  [ 099C2931C6F73EB1B9E13C560F61B50D, 83B64A52173243526E380C8FA0D913C7B07C2AF1806ECC4EC0D0B5523A7CBFAA ] usbohci         C:\Windows\system32\drivers\usbohci.sys
03:07:58.0788 0x0ddc  usbohci - ok
03:07:58.0819 0x0ddc  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
03:07:58.0819 0x0ddc  usbprint - ok
03:07:58.0850 0x0ddc  [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
03:07:58.0850 0x0ddc  USBSTOR - ok
03:07:58.0866 0x0ddc  [ 5D7651347C7D702F4A5DE53603DC024F, F55532D13AB2FF6D4B6058113AF2710AC5C87059C9000942CF517198BABCD6F5 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
03:07:58.0883 0x0ddc  usbuhci - ok
03:07:58.0931 0x0ddc  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
03:07:58.0931 0x0ddc  UxSms - ok
03:07:58.0978 0x0ddc  [ 62056ADD38513A86C4866E912371B56B, 9465E65EB4303BF87483B9621D402E848A50E6D22B05846A621A2761B9516A57 ] VaultSvc        C:\Windows\system32\lsass.exe
03:07:58.0994 0x0ddc  VaultSvc - ok
03:07:59.0056 0x0ddc  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
03:07:59.0056 0x0ddc  vdrvroot - ok
03:07:59.0197 0x0ddc  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
03:07:59.0228 0x0ddc  vds - ok
03:07:59.0259 0x0ddc  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
03:07:59.0259 0x0ddc  vga - ok
03:07:59.0290 0x0ddc  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
03:07:59.0290 0x0ddc  VgaSave - ok
03:07:59.0321 0x0ddc  VGPU - ok
03:07:59.0353 0x0ddc  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
03:07:59.0353 0x0ddc  vhdmp - ok
03:07:59.0384 0x0ddc  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
03:07:59.0384 0x0ddc  viaide - ok
03:07:59.0415 0x0ddc  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
03:07:59.0415 0x0ddc  vmbus - ok
03:07:59.0431 0x0ddc  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
03:07:59.0446 0x0ddc  VMBusHID - ok
03:07:59.0477 0x0ddc  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
03:07:59.0477 0x0ddc  volmgr - ok
03:07:59.0509 0x0ddc  [ 85C5468BC395819AE2A0C747334BA14C, 75EB4751F90F3347229442A5622539383CE0B1834EE7B995260D0D433BA2E25F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
03:07:59.0540 0x0ddc  volmgrx - ok
03:07:59.0649 0x0ddc  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
03:07:59.0665 0x0ddc  volsnap - ok
03:07:59.0696 0x0ddc  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
03:07:59.0711 0x0ddc  vsmraid - ok
03:07:59.0883 0x0ddc  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
03:07:59.0945 0x0ddc  VSS - ok
03:08:00.0039 0x0ddc  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
03:08:00.0055 0x0ddc  vwifibus - ok
03:08:00.0133 0x0ddc  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
03:08:00.0164 0x0ddc  W32Time - ok
03:08:00.0211 0x0ddc  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
03:08:00.0242 0x0ddc  WacomPen - ok
03:08:00.0320 0x0ddc  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
03:08:00.0320 0x0ddc  WANARP - ok
03:08:00.0351 0x0ddc  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
03:08:00.0351 0x0ddc  Wanarpv6 - ok
03:08:00.0538 0x0ddc  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
03:08:00.0616 0x0ddc  WatAdminSvc - ok
03:08:00.0850 0x0ddc  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
03:08:00.0975 0x0ddc  wbengine - ok
03:08:01.0022 0x0ddc  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
03:08:01.0053 0x0ddc  WbioSrvc - ok
03:08:01.0100 0x0ddc  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
03:08:01.0115 0x0ddc  wcncsvc - ok
03:08:01.0193 0x0ddc  [ BC00873272B3771CCDA38336AF2B4D4B, 3E412DEC5F172B4C5FD5C227CD790EE56B90A00A8B538704E8F973D230BE2289 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
03:08:01.0209 0x0ddc  WcsPlugInService - ok
03:08:01.0256 0x0ddc  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
03:08:01.0287 0x0ddc  Wd - ok
03:08:01.0303 0x0ddc  [ A3D04EBF5227886029B4532F20D026F7, D90F7B9C176008675DA0B5FD7E4973CBC2A04172CEDF8FB7D3B3B4F27B5440D7 ] WDC_SAM         C:\Windows\system32\DRIVERS\wdcsam64.sys
03:08:01.0318 0x0ddc  WDC_SAM - ok
03:08:01.0427 0x0ddc  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
03:08:01.0490 0x0ddc  Wdf01000 - ok
03:08:01.0521 0x0ddc  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
03:08:01.0537 0x0ddc  WdiServiceHost - ok
03:08:01.0552 0x0ddc  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
03:08:01.0568 0x0ddc  WdiSystemHost - ok
03:08:01.0677 0x0ddc  [ EE841B6D1F2B9508D3ABAE52AC05A94F, F1AE981FCDBFC4672A4EABABD41382E93762EFC2EDAD96E75530E7ACA5AF1FD8 ] WebClient       C:\Windows\System32\webclnt.dll
03:08:01.0708 0x0ddc  WebClient - ok
03:08:01.0786 0x0ddc  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
03:08:01.0802 0x0ddc  Wecsvc - ok
03:08:01.0833 0x0ddc  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
03:08:01.0833 0x0ddc  wercplsupport - ok
03:08:01.0864 0x0ddc  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
03:08:01.0880 0x0ddc  WerSvc - ok
03:08:01.0958 0x0ddc  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
03:08:01.0958 0x0ddc  WfpLwf - ok
03:08:02.0005 0x0ddc  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
03:08:02.0005 0x0ddc  WIMMount - ok
03:08:02.0051 0x0ddc  WinDefend - ok
03:08:02.0083 0x0ddc  WinHttpAutoProxySvc - ok
03:08:02.0270 0x0ddc  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
03:08:04.0313 0x0ddc  Winmgmt - ok
03:08:04.0610 0x0ddc  [ EBDA1B0F15CB9B2CBCC6C94824E4E054, C51314F7D611E4903DA00EFA8EB99365414436324D256083CE0B5A8E055E8E06 ] WinRM           C:\Windows\system32\WsmSvc.dll
03:08:04.0688 0x0ddc  WinRM - ok
03:08:04.0859 0x0ddc  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
03:08:04.0906 0x0ddc  WinUsb - ok
03:08:05.0031 0x0ddc  [ 4B7912EB80820EAC543EE54806EFCAF0, 4D9186F9FE80F03C85C4DC73342EE5870DF1021BD29974BE33557CEA0D524667 ] Wlansvc         C:\Windows\System32\wlansvc.dll
03:08:05.0078 0x0ddc  Wlansvc - ok
03:08:05.0109 0x0ddc  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
03:08:05.0109 0x0ddc  WmiAcpi - ok
03:08:05.0203 0x0ddc  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
03:08:05.0218 0x0ddc  wmiApSrv - ok
03:08:05.0281 0x0ddc  WMPNetworkSvc - ok
03:08:05.0327 0x0ddc  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
03:08:05.0343 0x0ddc  WPCSvc - ok
03:08:05.0374 0x0ddc  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
03:08:05.0390 0x0ddc  WPDBusEnum - ok
03:08:05.0452 0x0ddc  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
03:08:05.0452 0x0ddc  ws2ifsl - ok
03:08:05.0530 0x0ddc  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
03:08:07.0574 0x0ddc  wscsvc - ok
03:08:07.0589 0x0ddc  WSearch - ok
03:08:08.0042 0x0ddc  [ 88009DB9E1166B6B6713A858C176FECD, CBF4C63D3C5D14AF3C3F0D9C48E5AC9E7A4323BFB0363E9948FD801963BE1467 ] wuauserv        C:\Windows\system32\wuaueng.dll
03:08:08.0135 0x0ddc  wuauserv - ok
03:08:08.0213 0x0ddc  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
03:08:08.0229 0x0ddc  WudfPf - ok
03:08:08.0307 0x0ddc  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
03:08:08.0338 0x0ddc  WUDFRd - ok
03:08:08.0385 0x0ddc  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
03:08:08.0401 0x0ddc  wudfsvc - ok
03:08:08.0432 0x0ddc  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
03:08:08.0447 0x0ddc  WwanSvc - ok
03:08:08.0494 0x0ddc  ================ Scan global ===============================
03:08:08.0572 0x0ddc  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
03:08:08.0697 0x0ddc  [ 66A8A9412337B08E1735204B8ADEE58C, 766429FBB014A9CA6AEFD39579C3F33625335A3DFD88AB324E4534978695B887 ] C:\Windows\system32\winsrv.dll
03:08:08.0759 0x0ddc  [ 66A8A9412337B08E1735204B8ADEE58C, 766429FBB014A9CA6AEFD39579C3F33625335A3DFD88AB324E4534978695B887 ] C:\Windows\system32\winsrv.dll
03:08:08.0822 0x0ddc  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
03:08:08.0915 0x0ddc  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
03:08:08.0931 0x0ddc  [ Global ] - ok
03:08:08.0931 0x0ddc  ================ Scan MBR ==================================
03:08:08.0947 0x0ddc  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
03:08:14.0017 0x0ddc  \Device\Harddisk0\DR0 - ok
03:08:14.0017 0x0ddc  ================ Scan VBR ==================================
03:08:14.0079 0x0ddc  [ EB074CD116499E16E065DF84918A6ECA ] \Device\Harddisk0\DR0\Partition1
03:08:14.0251 0x0ddc  \Device\Harddisk0\DR0\Partition1 - ok
03:08:14.0251 0x0ddc  ================ Scan active images ========================
03:08:14.0266 0x0ddc  [ 3E588B60EC061686BA05D33574A344C6, 19D2D863F95CCC4493A2328B6BEB04248B6A80F957532E58C1D1D868C19FDCCB ] C:\Windows\System32\drivers\crashdmp.sys
03:08:14.0266 0x0ddc  C:\Windows\System32\drivers\crashdmp.sys - ok
03:08:14.0266 0x0ddc  [ 839B5FE3D48E9F35B22C21A3D5103F6C, A9CEA695E43092B72B0E988063E00A7C0BCE90095344E9A2F380218482BCE77F ] C:\Windows\System32\drivers\Dumpata.sys
03:08:14.0266 0x0ddc  C:\Windows\System32\drivers\Dumpata.sys - ok
03:08:14.0282 0x0ddc  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] C:\Windows\System32\drivers\atapi.sys
03:08:14.0282 0x0ddc  C:\Windows\System32\drivers\atapi.sys - ok
03:08:14.0298 0x0ddc  [ 814DB88F2641691575A455CF25354098, 79C50F0CD72612733217A0316BEFEA0B6D819C3159D9452EAB89AC26A18A0F89 ] C:\Windows\System32\drivers\dumpfve.sys
03:08:14.0298 0x0ddc  C:\Windows\System32\drivers\dumpfve.sys - ok
03:08:14.0298 0x0ddc  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] C:\Windows\System32\drivers\cdrom.sys
03:08:14.0298 0x0ddc  C:\Windows\System32\drivers\cdrom.sys - ok
03:08:14.0313 0x0ddc  [ 0E840AA66CAB02CBA9730C772BBE305B, 8862583E653D13D1D10A1A4A33704E4F70576E80370943AAFD1EAED6657A0104 ] C:\Program Files\Emsisoft Anti-Malware\epp.sys
03:08:14.0313 0x0ddc  C:\Program Files\Emsisoft Anti-Malware\epp.sys - ok
03:08:14.0313 0x0ddc  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] C:\Windows\System32\drivers\null.sys
03:08:14.0313 0x0ddc  C:\Windows\System32\drivers\null.sys - ok
03:08:14.0329 0x0ddc  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] C:\Windows\System32\drivers\beep.sys
03:08:14.0329 0x0ddc  C:\Windows\System32\drivers\beep.sys - ok
03:08:14.0329 0x0ddc  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] C:\Windows\System32\drivers\RDPCDD.sys
03:08:14.0329 0x0ddc  C:\Windows\System32\drivers\RDPCDD.sys - ok
03:08:14.0344 0x0ddc  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] C:\Windows\System32\drivers\vga.sys
03:08:14.0344 0x0ddc  C:\Windows\System32\drivers\vga.sys - ok
03:08:14.0344 0x0ddc  [ E7353D59C9842BC7299FAEB7E7E09340, C37ED1025E07BAC2F535DCFED6C6C509515D95722EADE5AF94F1FC5D8B1DC783 ] C:\Windows\System32\drivers\videoprt.sys
03:08:14.0344 0x0ddc  C:\Windows\System32\drivers\videoprt.sys - ok
03:08:14.0360 0x0ddc  [ FC438D1430B28618E2D0C7C332A710AD, 873957B202E454E2C8F625E5799F278CAC16EC5EEAEE2C33E2FE5D1FF0408CB2 ] C:\Windows\System32\drivers\watchdog.sys
03:08:14.0360 0x0ddc  C:\Windows\System32\drivers\watchdog.sys - ok
03:08:14.0360 0x0ddc  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] C:\Windows\System32\drivers\msfs.sys
03:08:14.0360 0x0ddc  C:\Windows\System32\drivers\msfs.sys - ok
03:08:14.0376 0x0ddc  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] C:\Windows\System32\drivers\npfs.sys
03:08:14.0376 0x0ddc  C:\Windows\System32\drivers\npfs.sys - ok
03:08:14.0376 0x0ddc  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] C:\Windows\System32\drivers\RDPENCDD.sys
03:08:14.0376 0x0ddc  C:\Windows\System32\drivers\RDPENCDD.sys - ok
03:08:14.0391 0x0ddc  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] C:\Windows\System32\drivers\RDPREFMP.sys
03:08:14.0391 0x0ddc  C:\Windows\System32\drivers\RDPREFMP.sys - ok
03:08:14.0391 0x0ddc  [ 6F020A220388ECA0AB6062DC27BD16B6, 48655230E482DEB7B4B50EF05818EBB29CA61E780AEFCD9D31B02DE4DF9D9540 ] C:\Windows\System32\drivers\tdi.sys
03:08:14.0391 0x0ddc  C:\Windows\System32\drivers\tdi.sys - ok
03:08:14.0407 0x0ddc  [ 4DD986720F7CB7A8A5D1226793097B9A, 9020375B45E9C966BF44CF425C127D7E0EC82EB99C7047F225C25402FF97743D ] C:\Windows\System32\drivers\tdx.sys
03:08:14.0407 0x0ddc  C:\Windows\System32\drivers\tdx.sys - ok
03:08:14.0407 0x0ddc  [ 0DC2A9882540DEA4A55B08785E09D8FC, 69B15724B0034F9915AACE109A6C596D6AF2DA350FC18C9A0CD98C81CB7EDEE3 ] C:\Windows\System32\drivers\afd.sys
03:08:14.0407 0x0ddc  C:\Windows\System32\drivers\afd.sys - ok
03:08:14.0422 0x0ddc  [ 734837208CAFD6E0959A7A0333C95C9D, 0B7CD6E3CE43ABE021DBE6516492E326265EC0273F2F4297187CE70602CB8CE1 ] C:\Windows\System32\drivers\netbt.sys
03:08:14.0422 0x0ddc  C:\Windows\System32\drivers\netbt.sys - ok
03:08:14.0422 0x0ddc  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] C:\Windows\System32\drivers\pacer.sys
03:08:14.0422 0x0ddc  C:\Windows\System32\drivers\pacer.sys - ok
03:08:14.0438 0x0ddc  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] C:\Windows\System32\drivers\wfplwf.sys
03:08:14.0438 0x0ddc  C:\Windows\System32\drivers\wfplwf.sys - ok
03:08:14.0438 0x0ddc  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] C:\Windows\System32\drivers\netbios.sys
03:08:14.0438 0x0ddc  C:\Windows\System32\drivers\netbios.sys - ok
03:08:14.0454 0x0ddc  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] C:\Windows\System32\drivers\serial.sys
03:08:14.0454 0x0ddc  C:\Windows\System32\drivers\serial.sys - ok
03:08:14.0454 0x0ddc  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] C:\Windows\System32\drivers\wanarp.sys
03:08:14.0454 0x0ddc  C:\Windows\System32\drivers\wanarp.sys - ok
03:08:14.0469 0x0ddc  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] C:\Windows\System32\drivers\termdd.sys
03:08:14.0469 0x0ddc  C:\Windows\System32\drivers\termdd.sys - ok
03:08:14.0469 0x0ddc  [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys
03:08:14.0469 0x0ddc  C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys - ok
03:08:14.0485 0x0ddc  [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] C:\Program Files\SUPERAntiSpyware\saskutil64.sys
03:08:14.0485 0x0ddc  C:\Program Files\SUPERAntiSpyware\saskutil64.sys - ok
03:08:14.0485 0x0ddc  [ FB45727105E27756B3252572A138FA19, B11A375C7377C2DD02175921F5A3BBD23191207DE76DB220ACF72BD5CF74E09A ] C:\Windows\System32\drivers\rdbss.sys
03:08:14.0485 0x0ddc  C:\Windows\System32\drivers\rdbss.sys - ok
03:08:14.0500 0x0ddc  [ BE313E566EEA2A4B7F9AAC9782A567D4, 377C624737B1A4FBC1DFF988F029B8ED9A368827C33A4FEEBA1B7937A87C2B47 ] C:\Windows\System32\drivers\nsiproxy.sys
03:08:14.0500 0x0ddc  C:\Windows\System32\drivers\nsiproxy.sys - ok
03:08:14.0500 0x0ddc  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] C:\Windows\System32\drivers\mssmbios.sys
03:08:14.0500 0x0ddc  C:\Windows\System32\drivers\mssmbios.sys - ok
03:08:14.0516 0x0ddc  [ EF558A02D734A1403583E95CCEEC2487, F0D052DAF48A62E4A90D067BFCB5EE9563804DE68D0EA82E0E11C8D16AD19D29 ] C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS
03:08:14.0516 0x0ddc  C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS - ok
03:08:14.0516 0x0ddc  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] C:\Windows\System32\drivers\discache.sys
03:08:14.0516 0x0ddc  C:\Windows\System32\drivers\discache.sys - ok
03:08:14.0532 0x0ddc  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] C:\Windows\System32\drivers\csc.sys
03:08:14.0532 0x0ddc  C:\Windows\System32\drivers\csc.sys - ok
03:08:14.0532 0x0ddc  [ 9B38580063D281A99E68EF5813022A5F, D91676B0E0A8E2A090E3E5DD340ABCFC20AE0F55B4C82869D6CFB34239BD27DA ] C:\Windows\System32\drivers\dfsc.sys
03:08:14.0532 0x0ddc  C:\Windows\System32\drivers\dfsc.sys - ok
03:08:14.0547 0x0ddc  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] C:\Windows\System32\drivers\blbdrive.sys
03:08:14.0547 0x0ddc  C:\Windows\System32\drivers\blbdrive.sys - ok
03:08:14.0547 0x0ddc  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] C:\Windows\System32\drivers\tunnel.sys
03:08:14.0547 0x0ddc  C:\Windows\System32\drivers\tunnel.sys - ok
03:08:14.0563 0x0ddc  [ F438B2497CD1E99FDB8C68B3AAD81FEB, FC9D996F052B37B30D2BB08AD9F0C9897711CC94BC71C54F38F9C60D4B39DC52 ] C:\Windows\System32\ntdll.dll
03:08:14.0563 0x0ddc  C:\Windows\System32\ntdll.dll - ok
03:08:14.0563 0x0ddc  [ 29638BE09EC6357A24B074EA2075434D, 1D37511A466B563384996E056F4FD214804A7F4F7BB2C8AA9449A4A13A9ACA7C ] C:\Windows\System32\smss.exe
03:08:14.0563 0x0ddc  C:\Windows\System32\smss.exe - ok
03:08:14.0578 0x0ddc  [ 24CC43ECDEEFD4C19FBBEE4951B647F1, 416799965E6602F8F03E2A92E8BB42B1D5643C65EF09815FC5A56A2FA73E6773 ] C:\Windows\System32\drivers\igdkmd64.sys
03:08:14.0578 0x0ddc  C:\Windows\System32\drivers\igdkmd64.sys - ok
03:08:14.0578 0x0ddc  [ 5CEF80AE869336376F550ECAE91E424A, 49152AC35556A5629AE7A4A762FDB2112FAD1C9CDB91E6196172809F74A3149A ] C:\Windows\System32\drivers\dxgkrnl.sys
03:08:14.0578 0x0ddc  C:\Windows\System32\drivers\dxgkrnl.sys - ok
03:08:14.0594 0x0ddc  [ 1792FCF97D2420514F9102C18B015B29, 6829D00401F0D510FDEA01EF6D06C8A6C43E6D0822CE4837CA4FD21E46E7E0DA ] C:\Windows\System32\drivers\dxgmms1.sys
03:08:14.0594 0x0ddc  C:\Windows\System32\drivers\dxgmms1.sys - ok
03:08:14.0594 0x0ddc  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] C:\Windows\System32\drivers\hdaudbus.sys
03:08:14.0594 0x0ddc  C:\Windows\System32\drivers\hdaudbus.sys - ok
03:08:14.0610 0x0ddc  [ BAB7E45E6C6B92B2C71423D1EC376F38, CB9A1765FE60B683363225B9CD85CE5F5D6CE45BB665AE41113A3DD5806C27EC ] C:\Windows\System32\drivers\e1e6232e.sys
03:08:14.0610 0x0ddc  C:\Windows\System32\drivers\e1e6232e.sys - ok
03:08:14.0610 0x0ddc  [ 54762E37F65C20652532DBDAC53698F6, 5A01ABAEEBC3DDA182227B8DEAA2DD3372F3AC2FBD72D5E0385AABDB3E08A182 ] C:\Windows\System32\drivers\NETwLv64.sys
03:08:14.0610 0x0ddc  C:\Windows\System32\drivers\NETwLv64.sys - ok
03:08:14.0625 0x0ddc  [ 03BE4B07FADA1FEA51480453EA229642, 8B8A32B85E09865F1AB68513872B54040AE16348E935ED6F060E0DE2E1AD4D50 ] C:\Windows\System32\drivers\usbport.sys
03:08:14.0625 0x0ddc  C:\Windows\System32\drivers\usbport.sys - ok
03:08:14.0625 0x0ddc  [ 5D7651347C7D702F4A5DE53603DC024F, F55532D13AB2FF6D4B6058113AF2710AC5C87059C9000942CF517198BABCD6F5 ] C:\Windows\System32\drivers\usbuhci.sys
03:08:14.0625 0x0ddc  C:\Windows\System32\drivers\usbuhci.sys - ok
03:08:14.0625 0x0ddc  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] C:\Windows\System32\drivers\1394ohci.sys
03:08:14.0625 0x0ddc  C:\Windows\System32\drivers\1394ohci.sys - ok
03:08:14.0641 0x0ddc  [ 3F9D3902CE931E2A28DD8452AE915B67, C8BF042DD84FB2E3AE7FCDBA65923611FCBDAFD6410E42A5E58F8995D99AE16C ] C:\Windows\System32\drivers\usbehci.sys
03:08:14.0641 0x0ddc  C:\Windows\System32\drivers\usbehci.sys - ok
03:08:14.0656 0x0ddc  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] C:\Windows\System32\drivers\sdbus.sys
03:08:14.0656 0x0ddc  C:\Windows\System32\drivers\sdbus.sys - ok
03:08:14.0656 0x0ddc  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] C:\Windows\System32\drivers\i8042prt.sys
03:08:14.0656 0x0ddc  C:\Windows\System32\drivers\i8042prt.sys - ok
03:08:14.0672 0x0ddc  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] C:\Windows\System32\drivers\kbdclass.sys
03:08:14.0672 0x0ddc  C:\Windows\System32\drivers\kbdclass.sys - ok
03:08:14.0672 0x0ddc  [ F785BB54A725623283CA6C980627CF62, F2CEC11906B9EADB98E39727AAA10E45477A6B89B4CCF826A439A3CD6F243153 ] C:\Windows\System32\drivers\Apfiltr.sys
03:08:14.0672 0x0ddc  C:\Windows\System32\drivers\Apfiltr.sys - ok
03:08:14.0688 0x0ddc  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] C:\Windows\System32\drivers\mouclass.sys
03:08:14.0688 0x0ddc  C:\Windows\System32\drivers\mouclass.sys - ok
03:08:14.0688 0x0ddc  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] C:\Windows\System32\drivers\parport.sys
03:08:14.0688 0x0ddc  C:\Windows\System32\drivers\parport.sys - ok
03:08:14.0703 0x0ddc  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] C:\Windows\System32\drivers\serenum.sys
03:08:14.0703 0x0ddc  C:\Windows\System32\drivers\serenum.sys - ok
03:08:14.0703 0x0ddc  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] C:\Windows\System32\drivers\CmBatt.sys
03:08:14.0703 0x0ddc  C:\Windows\System32\drivers\CmBatt.sys - ok
03:08:14.0719 0x0ddc  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] C:\Windows\System32\drivers\CompositeBus.sys
03:08:14.0719 0x0ddc  C:\Windows\System32\drivers\CompositeBus.sys - ok
03:08:14.0719 0x0ddc  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] C:\Windows\System32\drivers\GEARAspiWDM.sys
03:08:14.0719 0x0ddc  C:\Windows\System32\drivers\GEARAspiWDM.sys - ok
03:08:14.0734 0x0ddc  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] C:\Windows\System32\drivers\intelppm.sys
03:08:14.0734 0x0ddc  C:\Windows\System32\drivers\intelppm.sys - ok
03:08:14.0734 0x0ddc  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] C:\Windows\System32\drivers\agilevpn.sys
03:08:14.0734 0x0ddc  C:\Windows\System32\drivers\agilevpn.sys - ok
03:08:14.0750 0x0ddc  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] C:\Windows\System32\drivers\rasl2tp.sys
03:08:14.0750 0x0ddc  C:\Windows\System32\drivers\rasl2tp.sys - ok
03:08:14.0750 0x0ddc  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] C:\Windows\System32\drivers\ndistapi.sys
03:08:14.0750 0x0ddc  C:\Windows\System32\drivers\ndistapi.sys - ok
03:08:14.0766 0x0ddc  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] C:\Windows\System32\drivers\ndiswan.sys
03:08:14.0766 0x0ddc  C:\Windows\System32\drivers\ndiswan.sys - ok
03:08:14.0766 0x0ddc  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] C:\Windows\System32\drivers\raspppoe.sys
03:08:14.0766 0x0ddc  C:\Windows\System32\drivers\raspppoe.sys - ok
03:08:14.0781 0x0ddc  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] C:\Windows\System32\drivers\raspptp.sys
03:08:14.0781 0x0ddc  C:\Windows\System32\drivers\raspptp.sys - ok
03:08:14.0797 0x0ddc  [ 24FBF5CC5C04150073C315A7C83521EE, 581BD5F15B5E57B3BAA762E421FFD859FDA46DDB8515C2A7AAFF208D784E906C ] C:\Windows\System32\drivers\ks.sys
03:08:14.0797 0x0ddc  C:\Windows\System32\drivers\ks.sys - ok
03:08:14.0797 0x0ddc  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] C:\Windows\System32\drivers\rassstp.sys
03:08:14.0797 0x0ddc  C:\Windows\System32\drivers\rassstp.sys - ok
03:08:14.0797 0x0ddc  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] C:\Windows\System32\drivers\rdpbus.sys
03:08:14.0812 0x0ddc  C:\Windows\System32\drivers\rdpbus.sys - ok
03:08:14.0812 0x0ddc  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] C:\Windows\System32\drivers\swenum.sys
03:08:14.0812 0x0ddc  C:\Windows\System32\drivers\swenum.sys - ok
03:08:14.0828 0x0ddc  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] C:\Windows\System32\drivers\umbus.sys
03:08:14.0828 0x0ddc  C:\Windows\System32\drivers\umbus.sys - ok
03:08:14.0828 0x0ddc  [ 86B65EEBC03B936DE8B26E5A18D98FA2, 2981CF5A0FB6B6FE0A38363EA4804DB743C45E3E6E72DC3A2260F583377717C8 ] C:\Windows\System32\drivers\usbhub.sys
03:08:14.0828 0x0ddc  C:\Windows\System32\drivers\usbhub.sys - ok
03:08:14.0844 0x0ddc  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] C:\Windows\System32\drivers\ndproxy.sys
03:08:14.0844 0x0ddc  C:\Windows\System32\drivers\ndproxy.sys - ok
03:08:14.0844 0x0ddc  [ C51B07394A087DA666A410DBFD26663A, 962656610FB78A0392518AF282FD3AE96BD4B0BB438DE23E1B6890DA52B60362 ] C:\Windows\System32\drivers\drmk.sys
03:08:14.0844 0x0ddc  C:\Windows\System32\drivers\drmk.sys - ok
03:08:14.0859 0x0ddc  [ 647599CAE8CA0EF2FB09C4B150BC97FF, E29DB684530746214D845777982CE9B156E8DB2056F8B66DCF7241B351D9BB4C ] C:\Windows\System32\drivers\portcls.sys
03:08:14.0859 0x0ddc  C:\Windows\System32\drivers\portcls.sys - ok
03:08:14.0859 0x0ddc  [ EA243345FB4E3E8453E95F787CE974B4, 27BA8822C448F5305BA64A0BFD613A2C0924B83501603D78C5526F6E5F3266DF ] C:\Windows\System32\drivers\RTKVHD64.sys
03:08:14.0859 0x0ddc  C:\Windows\System32\drivers\RTKVHD64.sys - ok
03:08:14.0875 0x0ddc  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] C:\Windows\System32\drivers\ksthunk.sys
03:08:14.0875 0x0ddc  C:\Windows\System32\drivers\ksthunk.sys - ok
03:08:14.0875 0x0ddc  [ D017EED379FFE7CCFF0F825D53AB8096, 8C1958F947D24809D1B50BB0B022C7D528E942CA6D19B3566B83B44C76987FE6 ] C:\Windows\System32\drivers\usbd.sys
03:08:14.0875 0x0ddc  C:\Windows\System32\drivers\usbd.sys - ok
03:08:14.0890 0x0ddc  [ C98356D813B581E9C425B42A5D146CE0, F78919616CB275008FFF2DB57C03F86132C52A257C4ED00FF289C57035A89CE7 ] C:\Windows\System32\drivers\agrsm64.sys
03:08:14.0890 0x0ddc  C:\Windows\System32\drivers\agrsm64.sys - ok
03:08:14.0890 0x0ddc  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] C:\Windows\System32\drivers\modem.sys
03:08:14.0890 0x0ddc  C:\Windows\System32\drivers\modem.sys - ok
03:08:14.0906 0x0ddc  [ 597C3699384E53CC59587ED50CCE5CA2, 4F61E9B5BEB3BD1634D733983381E516664BD7E250DF4B0150B168E05EFD652A ] C:\Windows\System32\drivers\hidclass.sys
03:08:14.0906 0x0ddc  C:\Windows\System32\drivers\hidclass.sys - ok
03:08:14.0906 0x0ddc  [ 856E76B3641746ABBC2946BED1372098, FD93CC7F72560F72CA49AD5609C079E25B8A3A4802E72B127B63A9E7B4884710 ] C:\Windows\System32\drivers\hidparse.sys
03:08:14.0906 0x0ddc  C:\Windows\System32\drivers\hidparse.sys - ok
03:08:14.0922 0x0ddc  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] C:\Windows\System32\drivers\hidusb.sys
03:08:14.0922 0x0ddc  C:\Windows\System32\drivers\hidusb.sys - ok
03:08:14.0922 0x0ddc  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] C:\Windows\System32\drivers\mouhid.sys
03:08:14.0922 0x0ddc  C:\Windows\System32\drivers\mouhid.sys - ok
03:08:14.0937 0x0ddc  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93, 7BC847CE6C2D29C334F0D1600BBBDE3933FF45F6BEE5186F442E6270A3F9EC4E ] C:\Windows\System32\autochk.exe
03:08:14.0937 0x0ddc  C:\Windows\System32\autochk.exe - ok
03:08:14.0953 0x0ddc  [ 0A162AB63BA77CA14D1C73967853FC6C, AB15FE635CEE90E3BE628620709DD6270388D1C3299E1136A1738CCC41B174D4 ] C:\Windows\System32\SmartDefragBootTime.exe
03:08:14.0953 0x0ddc  C:\Windows\System32\SmartDefragBootTime.exe - ok
03:08:14.0968 0x0ddc  [ 04841947C5F9A7E31EFB0914A056AD62, 153EE2C3E6B8276D1AECC4682F65D64E5F4EF58C5503F63A28E5D2443FEAC22E ] C:\Windows\System32\msctf.dll
03:08:15.0078 0x0ddc  C:\Windows\System32\msctf.dll - ok
03:08:15.0078 0x0ddc  [ D13A0397ED940C071FD5ABB76BC974CF, 765E9F2CC5F788BF0897D881D1428505D8E7B8D55D770E61C5E24CAFB4BB01C0 ] C:\Windows\System32\wininet.dll
03:08:15.0078 0x0ddc  C:\Windows\System32\wininet.dll - ok
03:08:15.0093 0x0ddc  [ C5AA76BE7645EECE0C34562FA96C7B38, 431869E32F2D9C86DD860914F1BBE7E389238EF443731099CAE726DCD84C0CA7 ] C:\Windows\System32\nsi.dll
03:08:15.0093 0x0ddc  C:\Windows\System32\nsi.dll - ok
03:08:15.0093 0x0ddc  [ EAF32CB8C1F810E4715B4DFBE785C7FF, DB6AD07FDED42433E669508AB73FAFF6DAFF04575D6F1D016FE3EB6ECEC4DD5D ] C:\Windows\System32\shlwapi.dll
03:08:15.0093 0x0ddc  C:\Windows\System32\shlwapi.dll - ok
03:08:15.0109 0x0ddc  [ DB37A2BECFE33E19AAE9E5C77032759C, 9C6D9DF229A32F9DD51637A7B06B696BB86378E52F0A8FA8B3226CA14C94B23C ] C:\Windows\System32\iertutil.dll
03:08:15.0109 0x0ddc  C:\Windows\System32\iertutil.dll - ok
03:08:15.0109 0x0ddc  [ B7B43DA7393544D6ECC57DCB860116C3, C3CD930E7E65A4D2ED1604B0444EBD3CBEA2441ABDE28C19A41401C7089ECE85 ] C:\Windows\System32\ole32.dll
03:08:15.0109 0x0ddc  C:\Windows\System32\ole32.dll - ok
03:08:15.0124 0x0ddc  [ B4F29F65AD3114051F01E9403346047F, 7EB58545211C51E95B3F45C47C1F7CCE05B707D168E7C20F46D36E19EE3D8DFC ] C:\Windows\System32\imagehlp.dll
03:08:15.0124 0x0ddc  C:\Windows\System32\imagehlp.dll - ok
03:08:15.0124 0x0ddc  [ 28C0B5024F5C5A438E78B188CFC81B7F, AB81FB63F2908CE316B45609077ACBD85F4B2AAD1606B1E9030F06DB82EDDFAD ] C:\Windows\System32\normaliz.dll
03:08:15.0124 0x0ddc  C:\Windows\System32\normaliz.dll - ok
03:08:15.0140 0x0ddc  [ B70D802A1B5AFD0E8C42A1B7A17DF9ED, 2530DD34456225377EC3AB0E7779526D6D90CDADA41FD96E8073772F3A4AEDF6 ] C:\Windows\System32\rpcrt4.dll
03:08:15.0140 0x0ddc  C:\Windows\System32\rpcrt4.dll - ok
03:08:15.0156 0x0ddc  [ 25983DE69B57142039AC8D95E71CD9C9, A677DA7EBCBCB6073D27E8A38809F51E971E83ED379BC599AAAD6EF4216348DA ] C:\Windows\System32\clbcatq.dll
03:08:15.0156 0x0ddc  C:\Windows\System32\clbcatq.dll - ok
03:08:15.0156 0x0ddc  [ C391FC68282A000CDF953F8B6B55D2EF, 1CB0DAB84545D9FDEA5A7865A1E7132CEAC91DECF8B100285B63098D7B09E584 ] C:\Windows\System32\msvcrt.dll
03:08:15.0156 0x0ddc  C:\Windows\System32\msvcrt.dll - ok
03:08:15.0171 0x0ddc  [ 34BA256FBF83457F9D5E51A56DB54542, 935D99FF23F559ACBA51971AC342D2EE12B1D3E9F698F9E6ACED614A2F4C287B ] C:\Windows\System32\user32.dll
03:08:15.0171 0x0ddc  C:\Windows\System32\user32.dll - ok
03:08:15.0171 0x0ddc  [ 1F7BDC85BF2A1723815F4228467E7F97, 082AE4223DCB0747324294C44B68B32ADFD2524110DF9802804609932F4A1AC1 ] C:\Windows\System32\oleaut32.dll
03:08:15.0171 0x0ddc  C:\Windows\System32\oleaut32.dll - ok
03:08:15.0187 0x0ddc  [ 1D5FA50D903984E4E00CCC4650FAAD2A, A4A16E3AED8DB1FB3C7AF85EA6CB4AD2A439212F70ADB606869759F6641775BB ] C:\Windows\System32\advapi32.dll
03:08:15.0187 0x0ddc  C:\Windows\System32\advapi32.dll - ok
03:08:15.0187 0x0ddc  [ 6C2E6C1AD1476BABC6F303678BB144FE, 4FB4A459BC00FF1B8BD80D96E3031997DBF052EFB29614CE4C212570FE205C38 ] C:\Windows\System32\Wldap32.dll
03:08:15.0187 0x0ddc  C:\Windows\System32\Wldap32.dll - ok
03:08:15.0202 0x0ddc  [ 4F90A7A0FCBC0ED18E573917860062FF, D0CAA6A1335824C4D6416D7077B143FBF8C7E5AEE0A338BC345C27A10C3F519C ] C:\Windows\System32\sechost.dll
03:08:15.0202 0x0ddc  C:\Windows\System32\sechost.dll - ok
03:08:15.0218 0x0ddc  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5, 12130837D7F89A2C7E9D25747A8E5B9001E0A38D545178B49B450C23AE62664A ] C:\Windows\System32\setupapi.dll
03:08:15.0218 0x0ddc  C:\Windows\System32\setupapi.dll - ok
03:08:15.0218 0x0ddc  [ 908CED9BB774A4AFFA0BB6E2F3802227, FF72857E94A3F0CE84C8DFDD90ECAF85815ABDDEC6E4783E8621EA93BAE2036F ] C:\Windows\System32\lpk.dll
03:08:15.0218 0x0ddc  C:\Windows\System32\lpk.dll - ok
03:08:15.0234 0x0ddc  [ F7CE0C81C545364020ED8203CF0A633E, 24B47A7492B7048096AF87E26786E8108455ADBD1A374B6A0466DE008505B8A9 ] C:\Windows\System32\difxapi.dll
03:08:15.0234 0x0ddc  C:\Windows\System32\difxapi.dll - ok
03:08:15.0249 0x0ddc  [ 7C510B22EEF336697780B33B74802BFD, 38D61C268A9237DDA9B84B048B921B41E18ACDD5053735CFE3722944C82F3697 ] C:\Windows\System32\usp10.dll
03:08:15.0249 0x0ddc  C:\Windows\System32\usp10.dll - ok
03:08:15.0249 0x0ddc  [ FBE1086227040618A569C27F74A12F3D, 1631C78ED9C35EB62FC66ECBB536B251329134A866A783875AEE7D85C7DD0E02 ] C:\Windows\System32\ws2_32.dll
03:08:15.0249 0x0ddc  C:\Windows\System32\ws2_32.dll - ok
03:08:15.0265 0x0ddc  [ 9835E63E09F824D22B689D2BB789BAB9, 5BCFFAFB894D69FBCDDB91E64D30A356F4BD57098E8B4C51B98AFAF6581BDB63 ] C:\Windows\System32\comdlg32.dll
03:08:15.0265 0x0ddc  C:\Windows\System32\comdlg32.dll - ok
03:08:15.0265 0x0ddc  [ AA2C08CE85653B1A0D2E4AB407FA176C, 83DFD0C119B20AEDB07114C9D1CF9CE2DFA938D0F1070256B0591A9E2C3997FA ] C:\Windows\System32\imm32.dll
03:08:15.0265 0x0ddc  C:\Windows\System32\imm32.dll - ok
03:08:15.0280 0x0ddc  [ D87E1E59C73C1F98D5DED5B3850C40F5, 536419BFF9F877D4314B5D0C045D9A6E729489C389863FADF07E382050BC84FD ] C:\Windows\System32\psapi.dll
03:08:15.0280 0x0ddc  C:\Windows\System32\psapi.dll - ok
03:08:15.0280 0x0ddc  [ D6AC76621D74E415113D83F03E7AF8D4, 7C8610554D1584597C678F9896BD2C8928B3A4923D2D9B13CE6180115B13DA28 ] C:\Windows\System32\gdi32.dll
03:08:15.0280 0x0ddc  C:\Windows\System32\gdi32.dll - ok
03:08:15.0296 0x0ddc  [ DFBB8D70152995D249D687A3A4A239C3, 6C09D2878ED993DB4A7BBC09F134052EF2268341CB380087DA8FFC061788D357 ] C:\Windows\System32\kernel32.dll
03:08:15.0296 0x0ddc  C:\Windows\System32\kernel32.dll - ok
03:08:15.0296 0x0ddc  [ 80CCC1EA6B61FB4217EDDE43E9D640DF, 2A6819F235145474AF107E7195027F5D38C0DCD3BE7136CE318C3DCB9523E938 ] C:\Windows\System32\urlmon.dll
03:08:15.0296 0x0ddc  C:\Windows\System32\urlmon.dll - ok
03:08:15.0312 0x0ddc  [ E09BB3E24EBE86816B09B5AEAF991378, 0ADAB91E3E6C95BA62D92C35E6BD05E129C1E15A3BAED3F1DBDEF7FFEE8463C2 ] C:\Windows\System32\shell32.dll
03:08:15.0312 0x0ddc  C:\Windows\System32\shell32.dll - ok
03:08:15.0312 0x0ddc  [ AD60A1C4D7DD5A6FC122B8DB0CDDA206, 0B4E215BB6639D35217A74AA1BEFEC80948714FD021E559F96838A5A582BA2E7 ] C:\Windows\System32\KernelBase.dll
03:08:15.0312 0x0ddc  C:\Windows\System32\KernelBase.dll - ok
03:08:15.0327 0x0ddc  [ 9BD7B79E00A02EA420170EE752D37A80, 0BEC2197DFA1A0227A854454061894B04DE0017880E52BA18594B16B26C7C8C8 ] C:\Windows\System32\wintrust.dll
03:08:15.0327 0x0ddc  C:\Windows\System32\wintrust.dll - ok
03:08:15.0327 0x0ddc  [ 2477A28081BDAEE622CF045ACF8EE124, 00A09CAF9129E84FEEA98FA03CE9012C9F961B64FEE15C4F268822C0F82ACC3C ] C:\Windows\System32\cfgmgr32.dll
03:08:15.0327 0x0ddc  C:\Windows\System32\cfgmgr32.dll - ok
03:08:15.0343 0x0ddc  [ 0E6FBF19D9DFBB77316C23DF91F8A101, 680F88E1BC55EA3342AACE6F2E3511BF877AC8F03276D028FEE84EEFE8B5611A ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
03:08:15.0343 0x0ddc  C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
03:08:15.0343 0x0ddc  [ 84FF66AE12FF94E126D309896839A8A9, 72D584C247C772B2E06336CB8BBA27CCEC56AC45AD27B2247E5A4E1145B88DB1 ] C:\Windows\System32\crypt32.dll
03:08:15.0343 0x0ddc  C:\Windows\System32\crypt32.dll - ok
03:08:15.0358 0x0ddc  [ 7A17485DC7D8A7AC81321A42CD034519, 88D8705FA901793FC8C1CFD0175E49A6502BF0FC94A066BA573D2FD13AA5F04A ] C:\Windows\System32\userenv.dll
03:08:15.0358 0x0ddc  C:\Windows\System32\userenv.dll - ok
03:08:15.0374 0x0ddc  [ 51F89CE2D0FEC66070354504E6C4C3E4, 565CC85156C39FB89762757EF6A935FC42DB2599A5E49643447D30C8B9371133 ] C:\Windows\System32\comctl32.dll
03:08:15.0374 0x0ddc  C:\Windows\System32\comctl32.dll - ok
03:08:15.0374 0x0ddc  [ 06FEC9E8117103BB1141A560E98077DA, C5E61B11DDBBBBBA3D9488970524F0975EA5FBDF16E2FA31F579F8BFA48353B1 ] C:\Windows\System32\devobj.dll
03:08:15.0374 0x0ddc  C:\Windows\System32\devobj.dll - ok
03:08:15.0390 0x0ddc  [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A, 445C2857398252756FD25BB94DAFCCEFF573DE55F1F8BF9094C191F409FE6437 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
03:08:15.0390 0x0ddc  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
03:08:15.0390 0x0ddc  [ 72723D3E4781BADC62C3180C137E7B23, 0BDA5292928578C5DA79C761E15B8A892B9D4A3DA26D3635E714797C653CF492 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
03:08:15.0390 0x0ddc  C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
03:08:15.0405 0x0ddc  [ 9094039A00485F71C4DE64BF51F64C46, 4ACFEF4C747ADF806A4FDEDDFD9CC48168DFB05075306C77D3F3927749DD7484 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
03:08:15.0405 0x0ddc  C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
03:08:15.0405 0x0ddc  [ F49E92B50CED5C9F1725D3C0329FD933, 6155FA4D8242F07FC578FF746890C2EE19FC3D6A20ED8AE4C6F021DB2DAC184F ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
03:08:15.0405 0x0ddc  C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
03:08:15.0421 0x0ddc  [ 64A4AB126E24FD3F58EBE64852773DB5, ED425BBC91EB8BEF54C363036A770C551C97EF324F1AE31049CA750D0E2D6776 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
03:08:15.0421 0x0ddc  C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
03:08:15.0421 0x0ddc  [ 884415BD4269C02EAF8E2613BF85500D, EFE771709EC942694FD206AC8D0A48ED7DCD35036F074268E4AECD68AC982CEA ] C:\Windows\System32\msasn1.dll
03:08:15.0421 0x0ddc  C:\Windows\System32\msasn1.dll - ok
03:08:15.0436 0x0ddc  [ 2C942733A5983DD4502219FF37C7EBC7, 34B20B6B0D7274E4B5B783F1D2345BC3DD9888964D5C2C65712F041A00CF5B45 ] C:\Windows\System32\profapi.dll
03:08:15.0436 0x0ddc  C:\Windows\System32\profapi.dll - ok
03:08:15.0452 0x0ddc  [ 9C278785347BCC991F8EA2999D90F58D, EA680C3642A6ABF627415AEE019956FAC702DC6A8F4B4D0FC8A4FB21EADD3896 ] C:\Windows\SysWOW64\normaliz.dll
03:08:15.0452 0x0ddc  C:\Windows\SysWOW64\normaliz.dll - ok
03:08:15.0452 0x0ddc  [ BF24D6F2ED97FE830BFD52B246F98E67, 6BBF4C4221A245462EF653798F6B416EEB12594AD1CB4E8BC8908A8CB2F53384 ] C:\Windows\System32\drivers\dxapi.sys
03:08:15.0452 0x0ddc  C:\Windows\System32\drivers\dxapi.sys - ok
03:08:15.0468 0x0ddc  [ 2C42B64EA1A855AAF175E8A6C43A03FD, 33899CD765F121719C4C0B58D717D0AE85CB277EBEE1ABD44EE93229321060FB ] C:\Windows\System32\win32k.sys
03:08:15.0468 0x0ddc  C:\Windows\System32\win32k.sys - ok
03:08:15.0483 0x0ddc  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\System32\basesrv.dll
03:08:15.0483 0x0ddc  C:\Windows\System32\basesrv.dll - ok
03:08:15.0483 0x0ddc  [ 479557E324B53B47F25F482BDC63E534, 51970200D18C035AC5C2F9D5C778ECC85D928DE7EFE9858B6517CF01AF2BDA36 ] C:\Windows\System32\csrsrv.dll
03:08:15.0483 0x0ddc  C:\Windows\System32\csrsrv.dll - ok
03:08:15.0499 0x0ddc  [ 60C2862B4BF0FD9F582EF344C2B1EC72, CB1C6018FC5C15483AC5BB96E5C2E2E115BB0C0E1314837D77201BAB37E8C03A ] C:\Windows\System32\csrss.exe
03:08:15.0499 0x0ddc  C:\Windows\System32\csrss.exe - ok
03:08:15.0499 0x0ddc  [ 66A8A9412337B08E1735204B8ADEE58C, 766429FBB014A9CA6AEFD39579C3F33625335A3DFD88AB324E4534978695B887 ] C:\Windows\System32\winsrv.dll
03:08:15.0499 0x0ddc  C:\Windows\System32\winsrv.dll - ok
03:08:15.0514 0x0ddc  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] C:\Windows\System32\drivers\monitor.sys
03:08:15.0514 0x0ddc  C:\Windows\System32\drivers\monitor.sys - ok
03:08:15.0514 0x0ddc  [ F29FE765E1448EF371CFE05BFAC74ADB, F251581222D78543272FD4B14A6A59F4B0E0CC44A5FCBCF56DE4CA5783F78A75 ] C:\Windows\System32\tsddd.dll
03:08:15.0514 0x0ddc  C:\Windows\System32\tsddd.dll - ok
03:08:15.0530 0x0ddc  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\System32\sxssrv.dll
03:08:15.0530 0x0ddc  C:\Windows\System32\sxssrv.dll - ok
03:08:15.0546 0x0ddc  [ 94355C28C1970635A31B3FE52EB7CEBA, C4E98F07170CEC69CACDD5CEDB8927E48A2A299CB1B8CDA87526E768AF6174F0 ] C:\Windows\System32\wininit.exe
03:08:15.0546 0x0ddc  C:\Windows\System32\wininit.exe - ok
03:08:15.0561 0x0ddc  [ 78523A26F5604C0568FE9D1CE86E36F4, 534A7228BF69719106F581616A32EAEF0B770DDB36DCE94F84E7D52FDB1382B5 ] C:\Windows\System32\KBDUS.DLL
03:08:15.0561 0x0ddc  C:\Windows\System32\KBDUS.DLL - ok
03:08:15.0561 0x0ddc  [ C2A8CB1275ECB85D246A9ECC02A728E3, 3603FADCA0060BD201148F9D59E4E2627F024609A6463AB525B5D1AD17BDCD10 ] C:\Windows\System32\RpcRtRemote.dll
03:08:15.0561 0x0ddc  C:\Windows\System32\RpcRtRemote.dll - ok
03:08:15.0577 0x0ddc  [ 62379E30C5842B0751E84D99881A5C31, D70E39C64F46AC5A1065034AB55B60B375A149FC721CFBF6B6AAF17AC6080EE3 ] C:\Windows\System32\cdd.dll
03:08:15.0577 0x0ddc  C:\Windows\System32\cdd.dll - ok
03:08:15.0577 0x0ddc  [ 9CEAD32E79A62150FE9F8557E58E008B, AFE4C1725EE94D7DE0749AE1495A4E5CC33C369F29B2A589DA66FFE27FF9777E ] C:\Windows\System32\sxs.dll
03:08:15.0577 0x0ddc  C:\Windows\System32\sxs.dll - ok
03:08:15.0592 0x0ddc  [ B26B1801356760841C3BC69F9F91537F, 83B9DF333E36C09E81D44E12AE5BE14650126FDA0CF4A0EA853BF40C5780EF81 ] C:\Windows\System32\WlS0WndH.dll
03:08:15.0592 0x0ddc  C:\Windows\System32\WlS0WndH.dll - ok
03:08:15.0608 0x0ddc  [ D2DAA9F25E4FD2A8C67AC43D8610FEE9, 97C5759C9C37614AD01DAEC6FD1557594819B25ADC517F7403D53D6F648EF659 ] C:\Windows\System32\cryptbase.dll
03:08:15.0608 0x0ddc  C:\Windows\System32\cryptbase.dll - ok
03:08:15.0608 0x0ddc  [ 8CEBD9D0A0A879CDE9F36F4383B7CAEA, 7AA73B8E7D4D700C164D0410DCF84EA1CCCB0F7DD513E47A2EF0DAE5F16CAE45 ] C:\Windows\System32\winlogon.exe
03:08:15.0608 0x0ddc  C:\Windows\System32\winlogon.exe - ok
03:08:15.0624 0x0ddc  [ 07EAEA9D3E09340E64918EED526A5FFE, A1AFD2FD6DA5968F6D83733C98D301C82BA33988D28EBFCF2F50EB3B40EF5611 ] C:\Windows\System32\apphelp.dll
03:08:15.0624 0x0ddc  C:\Windows\System32\apphelp.dll - ok
03:08:15.0624 0x0ddc  [ 62056ADD38513A86C4866E912371B56B, 9465E65EB4303BF87483B9621D402E848A50E6D22B05846A621A2761B9516A57 ] C:\Windows\System32\lsass.exe
03:08:15.0624 0x0ddc  C:\Windows\System32\lsass.exe - ok
03:08:15.0639 0x0ddc  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\System32\services.exe
03:08:15.0639 0x0ddc  C:\Windows\System32\services.exe - ok
03:08:15.0655 0x0ddc  [ C23B6D9D16FD86F446BE607CA18389D9, 331FA37B5A059FE85C5D1368A42293A7BAE2581F3F1F15B48364644136066C14 ] C:\Windows\System32\winsta.dll
03:08:15.0655 0x0ddc  C:\Windows\System32\winsta.dll - ok
03:08:15.0655 0x0ddc  [ 9662EE182644511439F1C53745DC1C88, D205B2C163E78AB42A5D67D7664EF6B75EA0374FF0924467D624F9DB0611F0AD ] C:\Windows\System32\lsm.exe
03:08:15.0655 0x0ddc  C:\Windows\System32\lsm.exe - ok
03:08:15.0670 0x0ddc  [ E914A50A151DFFE63D3935226DB5E2C1, 7DCCE4060344E1C771679F1C20378A0BEB3C1F06DB684072F07B98921A62A299 ] C:\Windows\System32\scext.dll
03:08:15.0670 0x0ddc  C:\Windows\System32\scext.dll - ok
03:08:15.0670 0x0ddc  [ D65E1BF0FC6DB2B744E4E585D1A76DE8, 2FF68B08833DE029F9619F6E4CD801B3F0877CE3B84291945A36EBE3F6049149 ] C:\Windows\System32\sspicli.dll
03:08:15.0670 0x0ddc  C:\Windows\System32\sspicli.dll - ok
03:08:15.0686 0x0ddc  [ D64EF47143B64ED4AA2E007D04465AF0, 57A074ADF028D694A31C00C597D5C6F68A8F7F6380EDF9224C77F8C8411588BB ] C:\Windows\System32\sspisrv.dll
03:08:15.0686 0x0ddc  C:\Windows\System32\sspisrv.dll - ok
03:08:15.0702 0x0ddc  [ 3AC0FA84D21E51213491186D27F10C9A, EC99D9CDB54B1BC4A4AE5233018D8A105E2489F2465FAF617866182112690323 ] C:\Windows\System32\lsasrv.dll
03:08:15.0702 0x0ddc  C:\Windows\System32\lsasrv.dll - ok
03:08:15.0702 0x0ddc  [ FE72C89986E1BA32AD926A820491F23F, 610A51FB6934A33EA15B1C00EB77B39A21B877BE30D424280DFAC47F3BF3365B ] C:\Windows\System32\scesrv.dll
03:08:15.0702 0x0ddc  C:\Windows\System32\scesrv.dll - ok
03:08:15.0717 0x0ddc  [ 44F658D2AA2CC79C3E35AB2204A89E21, ACB026D0EA06EBC11F11B95A83A3323993ACFD1A7811A8D4EA8C555BC1EE145B ] C:\Windows\System32\secur32.dll
03:08:15.0717 0x0ddc  C:\Windows\System32\secur32.dll - ok
03:08:15.0717 0x0ddc  [ 3A9C9BAF610B0DD4967086040B3B62A9, E8E9A0F42B1EE7806EDCEED08AA024D037215D06CA317E3678BD5364AD513D23 ] C:\Windows\System32\srvcli.dll
03:08:15.0717 0x0ddc  C:\Windows\System32\srvcli.dll - ok
03:08:15.0733 0x0ddc  [ 68083118797CAF30FB2EA3E71494D67E, 5F1BCDFCB00A20CD60CBC70A2FD97405EF0F7173DD0E404BBA7B06D39DB37364 ] C:\Windows\System32\sysntfy.dll
03:08:15.0733 0x0ddc  C:\Windows\System32\sysntfy.dll - ok
03:08:15.0748 0x0ddc  [ 1BB87BFFCB8F38C3F05A76031585B64E, A0E911760D73570F76CCF84CA656A355002E74F35E2742E1D715AAF99A0EE298 ] C:\Windows\System32\samsrv.dll
03:08:15.0748 0x0ddc  C:\Windows\System32\samsrv.dll - ok
03:08:15.0748 0x0ddc  [ DEE7267C5D232A3B816866872CE199E6, A1994FD37667C52E7CBF873514C190DA61A3D1349786D187BFAE0006F61799AE ] C:\Windows\System32\wmsgapi.dll
03:08:15.0748 0x0ddc  C:\Windows\System32\wmsgapi.dll - ok
03:08:15.0764 0x0ddc  [ 3A061472B38233BAFF9CFEFF2E49C46B, DF29B14C8D22A8A16AA336A09A6152E2C7FCA6CAF4E76F0C5DCB55BEF9D00515 ] C:\Windows\System32\cryptdll.dll
03:08:15.0764 0x0ddc  C:\Windows\System32\cryptdll.dll - ok
03:08:15.0780 0x0ddc  [ 3C073B0C596A0AF84933E7406766B040, 4698BBA678F553E15AD4B07AD7FB236281F872DEFEE97BFD637114476C8F97B3 ] C:\Windows\System32\wevtapi.dll
03:08:15.0780 0x0ddc  C:\Windows\System32\wevtapi.dll - ok
03:08:15.0795 0x0ddc  [ 7FBEBD2229EA5FD48D41B199EC2D541C, A465975D445A8D50CAF3EF29BD33354B320D11173C127BE30D5EBBFF7008CDCE ] C:\Windows\System32\authz.dll
03:08:15.0795 0x0ddc  C:\Windows\System32\authz.dll - ok
03:08:15.0795 0x0ddc  [ 86FE1B1F8FD42CD0DB641AB1CDB13093, 8C4BB4415105CE82FFFE658879EAE9D259A24C0F6DFC7D25507352DC99241BE2 ] C:\Windows\System32\cngaudit.dll
03:08:15.0795 0x0ddc  C:\Windows\System32\cngaudit.dll - ok
03:08:15.0811 0x0ddc  [ C3C365D1BF7EB36B8736A7D2015E3219, 60452A69102691A4C1A6A909CE90B26D7042B2BB5EA6FCB867C214BBC02D700A ] C:\Windows\System32\ncrypt.dll
03:08:15.0811 0x0ddc  C:\Windows\System32\ncrypt.dll - ok
03:08:15.0826 0x0ddc  [ 1E1AF26C5730B2918C880F8C653789B4, 5E2DC9561A8C22BA3DCEEB9EA0EA92FACAB06390C6A22FF8330A537738D39E19 ] C:\Windows\System32\bcrypt.dll
03:08:15.0826 0x0ddc  C:\Windows\System32\bcrypt.dll - ok
03:08:15.0951 0x0ddc  [ 02B64609F865A39365FF88580DF11738, 2F676B93898E1B6131AF6227BB7AB731EB9C29477F9BD4C2C60F0FC1E35CD968 ] C:\Windows\System32\msprivs.dll
03:08:15.0951 0x0ddc  C:\Windows\System32\msprivs.dll - ok
03:08:16.0123 0x0ddc  [ C6505DE3561537BA1004D638C2F93F2F, 3E4FDF374B1A9E43A8F61FD2D79E0515390ECABFDAF72C4BD44A7B6429039AF6 ] C:\Windows\System32\netjoin.dll
03:08:16.0123 0x0ddc  C:\Windows\System32\netjoin.dll - ok
03:08:16.0123 0x0ddc  [ 206245EB623113DD89B495E6882B56C6, 98C2B1D638AB7333719F55181CBFA0F77155E5345EE0F8FD5E6B64CB155EDA90 ] C:\Windows\System32\kerberos.dll
03:08:16.0123 0x0ddc  C:\Windows\System32\kerberos.dll - ok
03:08:16.0138 0x0ddc  [ 50532FCD7ECF02DD169CE5C485F02534, 8EE5D9D0EA53DC72BCC300692E521ACADD56AB09BFA3E78149D8B5A90648512C ] C:\Windows\System32\negoexts.dll
03:08:16.0138 0x0ddc  C:\Windows\System32\negoexts.dll - ok
03:08:16.0138 0x0ddc  [ E75C0FEF3E9DF899A58657C2D1115DB7, 806FE8342388EA3EAA86905DFCB84F328F058240AE2AA091E7DB84B7A2495406 ] C:\Windows\System32\cryptsp.dll
03:08:16.0138 0x0ddc  C:\Windows\System32\cryptsp.dll - ok
03:08:16.0154 0x0ddc  [ 963D7FA2110EB9E03AB0D200E6AE2614, 5FE5AE6EFB5D47EF867A6E4F635EF707122FF3A5B34C7CDFE8F019D321B9971D ] C:\Windows\System32\mswsock.dll
03:08:16.0154 0x0ddc  C:\Windows\System32\mswsock.dll - ok
03:08:16.0154 0x0ddc  [ 94E026870A55AAEAFF7853C1754091E9, B2F5D5629D12BDFA98DBED3898368F37D9009C7531B6909C7285A2C11C9A0F93 ] C:\Windows\System32\version.dll
03:08:16.0154 0x0ddc  C:\Windows\System32\version.dll - ok
03:08:16.0185 0x0ddc  [ FDA837A1D5CF4AE57270BEEEA4658101, DF56051CA7EF448727F63F37488F9FBAEA6A2D7F63319399C9AFF20C58B7B5BA ] C:\Windows\System32\atmfd.dll
03:08:16.0185 0x0ddc  C:\Windows\System32\atmfd.dll - ok
03:08:16.0185 0x0ddc  [ 774FB26968286AE73250DF0909AE830F, 070241F798D77C1A65B732D14845043C9C8E2473571A990E50A21E9A5F44E2F0 ] C:\Windows\System32\msv1_0.dll
03:08:16.0185 0x0ddc  C:\Windows\System32\msv1_0.dll - ok
03:08:16.0201 0x0ddc  [ EC7CBFF96B05ECF3D366355B3C64ADCF, F69ED45EBEDCA9CF000AC03281F0EC2C351F98513FBA90E63394E4E561D6C7A2 ] C:\Windows\System32\wship6.dll
03:08:16.0201 0x0ddc  C:\Windows\System32\wship6.dll - ok
03:08:16.0216 0x0ddc  [ AA339DD8BB128EF66660DFBBB59043D3, 76D9F849AFDDA38E04549EB67B4163478776F1B6EF46434168278F84FEB8FC5C ] C:\Windows\System32\netlogon.dll
03:08:16.0216 0x0ddc  C:\Windows\System32\netlogon.dll - ok
03:08:16.0216 0x0ddc  [ 492D07D79E7024CA310867B526D9636D, F2FE647AB85C6C3C1AA3DF4BCE6E4D42B9676C9D837E11388C235AE8DB20044F ] C:\Windows\System32\dnsapi.dll
03:08:16.0216 0x0ddc  C:\Windows\System32\dnsapi.dll - ok
03:08:16.0232 0x0ddc  [ 8FFE297B8449386E7B6851458B6E474E, E149B37E11091D69D926242517E5655596594A6F01FEF06EB65D6BA5B354E326 ] C:\Windows\System32\logoncli.dll
03:08:16.0232 0x0ddc  C:\Windows\System32\logoncli.dll - ok
03:08:16.0232 0x0ddc  [ 65D9B22221C0A92EB6AFF857BD7A9345, 815BCAD4621F4E5645DB625F134D72B938DE461ADDFC7C3D7331F344F8388EF8 ] C:\Windows\System32\schannel.dll
03:08:16.0232 0x0ddc  C:\Windows\System32\schannel.dll - ok
03:08:16.0248 0x0ddc  [ 80742AC02AB4BB7FFA2E80FF8FC93D45, 5DD1DCF9ABD265B33D943DDFFB21FE473AF2AB53DF835EFCD6AF0BAECE2D9911 ] C:\Windows\System32\wdigest.dll
03:08:16.0248 0x0ddc  C:\Windows\System32\wdigest.dll - ok
03:08:16.0263 0x0ddc  [ 5D8874A8C11DDDDE29E12DE0E2013493, 3E9A57137BF622AF83E3E4D58971E2C0200559CCA7545D16CF263AA03EE9C7D2 ] C:\Windows\System32\rsaenh.dll
03:08:16.0263 0x0ddc  C:\Windows\System32\rsaenh.dll - ok
03:08:16.0263 0x0ddc  [ EC3FF62FA582F1F14549BF68EEC14F66, BB1C5078BBAFD93C6303CBE36C7653B2040A9CB44DFF331287EE1C1D858F1F8E ] C:\Windows\System32\TSpkg.dll
03:08:16.0263 0x0ddc  C:\Windows\System32\TSpkg.dll - ok
03:08:16.0279 0x0ddc  [ CDA14CCE4D7495BB2FC4D7D664C4FD93, 715977E616E206724F91660EF5BD0C4F2C6D66E3891F03C28A864419102CE5B6 ] C:\Windows\System32\bcryptprimitives.dll
03:08:16.0279 0x0ddc  C:\Windows\System32\bcryptprimitives.dll - ok
03:08:16.0279 0x0ddc  [ 1306E6A1BF4D506CD687DF9F947270F2, 3ED566F618D90BCCB3C76BA976911536FFC5631F7A6A91BF322628F8AAE498B4 ] C:\Windows\System32\pku2u.dll
03:08:16.0279 0x0ddc  C:\Windows\System32\pku2u.dll - ok
03:08:16.0294 0x0ddc  [ 90BDEFC5DF334E5100EAA781D798DE1A, F48B650D811B6D57D2252E326C0C9CC74534BE9D510E7D3403F91D1C5C36281E ] C:\Windows\System32\efslsaext.dll
03:08:16.0294 0x0ddc  C:\Windows\System32\efslsaext.dll - ok
03:08:16.0326 0x0ddc  [ 9F4ADA00321D328391AAF5AF0F132E9B, 7DD3AD6AB9F077B6F79453DE0854A4D2D9846A84DBA916AE351993A94056198F ] C:\Windows\System32\credssp.dll
03:08:16.0326 0x0ddc  C:\Windows\System32\credssp.dll - ok
03:08:16.0341 0x0ddc  [ ED78427259134C63ED69804D2132B86C, F6F51B8B35881ABCA5580ED111AAC80E466E6474ABAE31EC8BE46C23EDCA77B2 ] C:\Windows\System32\scecli.dll
03:08:16.0341 0x0ddc  C:\Windows\System32\scecli.dll - ok
03:08:16.0357 0x0ddc  [ 1FB81632476857E8451DDA8A456EF3CE, 29D672F0D642D601FD0AC0BB406423AE71039556A882122BBEE3F4F6F61F3C89 ] C:\Windows\System32\ubpm.dll
03:08:16.0357 0x0ddc  C:\Windows\System32\ubpm.dll - ok
03:08:16.0357 0x0ddc  [ C78655BC80301D76ED4FEF1C1EA40A7D, 93B2ED4004ED5F7F3039DD7ECBD22C7E4E24B6373B4D9EF8D6E45A179B13A5E8 ] C:\Windows\System32\svchost.exe
03:08:16.0357 0x0ddc  C:\Windows\System32\svchost.exe - ok
03:08:16.0372 0x0ddc  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] C:\Windows\System32\umpnpmgr.dll
03:08:16.0372 0x0ddc  C:\Windows\System32\umpnpmgr.dll - ok
03:08:16.0372 0x0ddc  [ CD1B5AD07E5F7FEF30E055DCC9E96180, 63C58551F32B0B09377F64A6AE1FA81AF93B8A707A57A8C18722086906AD3046 ] C:\Windows\System32\devrtl.dll
03:08:16.0372 0x0ddc  C:\Windows\System32\devrtl.dll - ok
03:08:16.0388 0x0ddc  [ E6EB44ABAAF1F330119F854856C53EBE, 77279972FFBFA984578DD4F17EB615F5D2D93590AF3A9FEFEFDB9128206C9887 ] C:\Windows\System32\SPInf.dll
03:08:16.0388 0x0ddc  C:\Windows\System32\SPInf.dll - ok
03:08:16.0404 0x0ddc  [ B0759657CB9718C2CA21A7C239C93676, 82EBEB5DDD3D2E8D8877B5645868DF8E2F0B07E6CE943D36CEF05205905AE835 ] C:\Windows\System32\gpapi.dll
03:08:16.0404 0x0ddc  C:\Windows\System32\gpapi.dll - ok
03:08:16.0404 0x0ddc  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] C:\Windows\System32\umpo.dll
03:08:16.0404 0x0ddc  C:\Windows\System32\umpo.dll - ok
03:08:16.0419 0x0ddc  [ F6C011B46FAEEF33536B2E80F48B5CBE, BDD149D3D6F9F6C8F6F34C311219BE5618CEEFBC7D35E37473A47F1D5D015067 ] C:\Windows\System32\pcwum.dll
03:08:16.0419 0x0ddc  C:\Windows\System32\pcwum.dll - ok
03:08:16.0435 0x0ddc  [ 716175021BDA290504CE434273F666BC, FA18CA2D8A5F4335E051E2933147D3C1E7308F7D446E2AEB6596CDEF6E2AFC88 ] C:\Windows\System32\powrprof.dll
03:08:16.0435 0x0ddc  C:\Windows\System32\powrprof.dll - ok
03:08:16.0435 0x0ddc  [ 5416CEB2916BBE635288C4D1075B045E, BEFF99052206C0D774CFFF14AC3305C397726B289B17666C2AD2706C261F2FF0 ] C:\Windows\System32\drivers\luafv.sys
03:08:16.0435 0x0ddc  C:\Windows\System32\drivers\luafv.sys - ok
03:08:16.0450 0x0ddc  [ 54E768A53311639403A55D1261428703, 8273444DFFB3B0986E0C9E1C2A3E9D688B7E8A8728EF42926B40D31A97BB9068 ] C:\Program Files\Emsisoft Anti-Malware\a2service.exe
03:08:16.0450 0x0ddc  C:\Program Files\Emsisoft Anti-Malware\a2service.exe - ok
03:08:16.0466 0x0ddc  [ EEEA40F0EDB0A6E5359E539E15D0BC77, BFCBF777239C29C6AC4BC5B59591308571647B7C7FDB5571903F7403DD241E8E ] C:\Windows\System32\netapi32.dll
03:08:16.0466 0x0ddc  C:\Windows\System32\netapi32.dll - ok
03:08:16.0466 0x0ddc  [ 6CECA4C6A489C9B2E6073AFDAAE3F607, 127506D1DB38275614CBEB047C133718EF9D03266BA9C98BE55EC7847CFC9C3D ] C:\Windows\System32\netutils.dll
03:08:16.0466 0x0ddc  C:\Windows\System32\netutils.dll - ok
03:08:16.0482 0x0ddc  [ 2B81776DA02017A37FE26C662827470E, A656353C50EE08422145D00DB9CFD9F6D3E664753B3C454B171E2A56A8AA94DC ] C:\Windows\System32\IPHLPAPI.DLL
03:08:16.0482 0x0ddc  C:\Windows\System32\IPHLPAPI.DLL - ok
03:08:16.0482 0x0ddc  [ C6DCD1D11ED6827F05C00773C3E7053C, EA23BE261C9C04F44215D254D7A80FD0AEE84C6F192D0FEE49A7CF74ED3CB1A6 ] C:\Windows\System32\sfc.dll
03:08:16.0482 0x0ddc  C:\Windows\System32\sfc.dll - ok
03:08:16.0497 0x0ddc  [ 895C9AB0A855547445C4181195230757, 89BDA385D8CCB75C3D7B1BDFA567AC441A931F4E499C0835FEE9D010343FABB6 ] C:\Windows\System32\sfc_os.dll
03:08:16.0497 0x0ddc  C:\Windows\System32\sfc_os.dll - ok
03:08:16.0513 0x0ddc  [ 730153373C28F016B84D7F717775954D, 5D487E311401138ECE73C734DDA7B4F8D9D9058BB9E03589CF796652214C47C4 ] C:\Windows\System32\winnsi.dll
03:08:16.0513 0x0ddc  C:\Windows\System32\winnsi.dll - ok
03:08:16.0513 0x0ddc  [ 3C91392D448F6E5D525A85B7550D8BA9, 6FD0DC73DBE7519E2C643554C2A7F8FBE4F9A678C4241BB54B3C6E65D2ABCF3A ] C:\Windows\System32\wkscli.dll
03:08:16.0513 0x0ddc  C:\Windows\System32\wkscli.dll - ok
03:08:16.0528 0x0ddc  [ A7A8CA53D9C9FD90C07AB0EB38E5316B, B98722E76601A98F038F40703C4B8BD21B5EC3B65DC1B07B7C367C06448F8A0E ] C:\Windows\System32\dbghelp.dll
03:08:16.0528 0x0ddc  C:\Windows\System32\dbghelp.dll - ok
03:08:16.0528 0x0ddc  [ EFCBFC0704FB6937F94EA3653969AC1C, E90760B584B0A8D2B16B776D66998E9A58757CD574F56A34AAD6E737DAF3745B ] C:\Program Files\Emsisoft Anti-Malware\a2wsc.dll
03:08:16.0528 0x0ddc  C:\Program Files\Emsisoft Anti-Malware\a2wsc.dll - ok
03:08:16.0544 0x0ddc  [ 2BEC3D41535D3625B63EFEED793FC762, FE709C7CEFEDD82C7BFAC9C70F2E9DD8571A926EC005477F3A1978721C875518 ] C:\Windows\System32\api-ms-win-core-synch-l1-2-0.dll
03:08:16.0544 0x0ddc  C:\Windows\System32\api-ms-win-core-synch-l1-2-0.dll - ok
03:08:16.0560 0x0ddc  [ FC51229C7D4AFA0D6F186133728B95AB, 37E58C8E1C8437D1981725A5DCDACA7316CEFBB570370CEFC8D122F523B96AC0 ] C:\Windows\System32\samcli.dll
03:08:16.0560 0x0ddc  C:\Windows\System32\samcli.dll - ok
03:08:16.0560 0x0ddc  [ D2A068807B68C5103398B621344E8171, CF43C4B785EE2F4A814354BB4F3F60C61323C242154ADE39A2CE4A4812063F29 ] C:\Program Files\Emsisoft Anti-Malware\libeay32.dll
03:08:16.0560 0x0ddc  C:\Program Files\Emsisoft Anti-Malware\libeay32.dll - ok
03:08:16.0575 0x0ddc  [ BD3674BE7FC9D8D3732C83E8499576ED, E6716A5895D629263A4D21959F48840429AB6F4B55A5FA2663EE5E86C9CA2BF1 ] C:\Windows\System32\wtsapi32.dll
03:08:16.0575 0x0ddc  C:\Windows\System32\wtsapi32.dll - ok
03:08:16.0575 0x0ddc  [ 2ECECBA5E5370998AA17EA0D3537E51E, 219DF50C56A47ECDA3B03D6E37B099CAFDABFC9B05AE11DADA2985D133F477FF ] C:\Program Files\Emsisoft Anti-Malware\ssleay32.dll
03:08:16.0575 0x0ddc  C:\Program Files\Emsisoft Anti-Malware\ssleay32.dll - ok
03:08:16.0591 0x0ddc  [ 0D893F8D145D3B125B0226727C243A69, B344A18C5D5324A891B6E2121EC375AFB9E83D4C59D64EDD2E63854ABEC5D734 ] C:\Windows\System32\security.dll
03:08:16.0591 0x0ddc  C:\Windows\System32\security.dll - ok
03:08:16.0606 0x0ddc  [ 1F4492FE41767CDB8B89D17655847CDD, 184547FAC0C3D7148FAA3F601929A7089DE393BD19929A137DAD743331DD3F77 ] C:\Windows\System32\ntmarta.dll

 


Posted Image

Down in the bayou, Bubba called an attorney and asked, "Is it true they're suin' the cigarette companies for causing people to get cancer?
"Sure is Bubba. But why you asking?"
"Cause what I want to know is, I was thinking, can I sue Budweiser for all them ugly women I've slept with?"

#9 Notorious

Notorious
  • Topic Starter

  • Members
  • 345 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Amsterdam
  • Local time:07:47 PM

Posted 06 December 2017 - 08:08 AM

Part 2.2

 

03:08:16.0606 0x0ddc  C:\Windows\System32\ntmarta.dll - ok
03:08:16.0606 0x0ddc  [ 73947CA50E7FFE02BAFD8FCA4B840A61, 2F9822E6245203438E394FF27FFAFE2DCD10B41C8EEA7313CB5BFA4EB4912B87 ] C:\Program Files\Emsisoft Anti-Malware\emutils.dll
03:08:16.0606 0x0ddc  C:\Program Files\Emsisoft Anti-Malware\emutils.dll - ok
03:08:16.0622 0x0ddc  [ D6577D07FC5D52C99AB35BAC82DA3515, F745CD5740F22F0B5DF5DBB272EDF5D986A8949DDF4859C56C8AA06AAD6B1943 ] C:\Program Files\Emsisoft Anti-Malware\a2update.dll
03:08:16.0622 0x0ddc  C:\Program Files\Emsisoft Anti-Malware\a2update.dll - ok
03:08:16.0638 0x0ddc  [ 271DC9A33422D9A85E3790A0AF0A91EF, DFF1B06D2F095AE766C1C67E8DF97268C8D194FC39B23F1A8BB963EACB0BFE1F ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757\comctl32.dll
03:08:16.0638 0x0ddc  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757\comctl32.dll - ok
03:08:16.0638 0x0ddc  [ 0015ACFBBDD164A8A730009908868CA7, E1FF243AD2CF959FAB81EFE701592414991C03416FF296ADC93906E76B707C4D ] C:\Windows\System32\winspool.drv
03:08:16.0638 0x0ddc  C:\Windows\System32\winspool.drv - ok
03:08:16.0653 0x0ddc  [ A27F85C7222E3814BDB414AE7698AE37, A3B512D49AFF4FCEF2151E5922B1575F3C2637B0FDBBBDBB9481EDC1C0AECFF0 ] C:\Program Files\Emsisoft Anti-Malware\evcdiff.dll
03:08:16.0653 0x0ddc  C:\Program Files\Emsisoft Anti-Malware\evcdiff.dll - ok
03:08:16.0653 0x0ddc  [ E14E529BF8F3F36E0AA05E318C563980, 26FB4FFE90D00929E63E24A95C8929936964DAF93325E66F7173964CA6478A97 ] C:\Program Files\Emsisoft Anti-Malware\bdcore.dll
03:08:16.0653 0x0ddc  C:\Program Files\Emsisoft Anti-Malware\bdcore.dll - ok
03:08:16.0669 0x0ddc  [ F3E8754A7386773D6FF8576197F171A5, 3A71F528780C078D4B143A9B80C67D41AC047735F755056F7A17372AF18A0B60 ] C:\Program Files\Emsisoft Anti-Malware\epplib.dll
03:08:16.0669 0x0ddc  C:\Program Files\Emsisoft Anti-Malware\epplib.dll - ok
03:08:16.0669 0x0ddc  [ 3F1A199859B4F3F8357B2A0AF5666A54, B0ACE9384088B7D0E54CF82BF48D4FEAA518BDEF98A294BA8F5A37DFF0E45328 ] C:\Windows\System32\rpcss.dll
03:08:16.0684 0x0ddc  C:\Windows\System32\rpcss.dll - ok
03:08:16.0684 0x0ddc  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] C:\Windows\System32\RpcEpMap.dll
03:08:16.0684 0x0ddc  C:\Windows\System32\RpcEpMap.dll - ok
03:08:16.0700 0x0ddc  [ F3D202F53A222D5F6944D459B73CF967, E9F1D48EB333D32331BCFD0348FE07BEE7D5352292E6020571DA395F596AFFE7 ] C:\Windows\System32\fltLib.dll
03:08:16.0700 0x0ddc  C:\Windows\System32\fltLib.dll - ok
03:08:16.0700 0x0ddc  [ 5450E5342CDADA9374BB8607055B7CA4, BB9024546B39DC9C378A88F8639E96465C17208FB1F8820B14AF29ABCB62218E ] C:\Program Files\Emsisoft Anti-Malware\a2engine.dll
03:08:16.0700 0x0ddc  C:\Program Files\Emsisoft Anti-Malware\a2engine.dll - ok
03:08:16.0716 0x0ddc  [ 16E964ABF6D1E0F0CC7822FCA9BA754D, 0E461387ACFD641DA22EE542A3C68AF5F7D3A7F967D974E3B198143D461ABE39 ] C:\Windows\System32\wshqos.dll
03:08:16.0716 0x0ddc  C:\Windows\System32\wshqos.dll - ok
03:08:16.0716 0x0ddc  [ 31559F3244C6BC00A52030CAA83B6B91, B2025742B5F0025ACE9821D5722DE3F997EEEAB21D2F381C9E307882DF422579 ] C:\Windows\System32\WSHTCPIP.DLL
03:08:16.0716 0x0ddc  C:\Windows\System32\WSHTCPIP.DLL - ok
03:08:16.0731 0x0ddc  [ 9AD9E06F8656F296D91FAE8EE5B95A27, 53384747D5864D699BCC4F48E0A5E656430EDAA65DCDAB4B11EA68FC7106459E ] C:\Windows\System32\FirewallAPI.dll
03:08:16.0731 0x0ddc  C:\Windows\System32\FirewallAPI.dll - ok
03:08:16.0731 0x0ddc  [ 715F03B4C7223349768013EA95D9E5B7, 09AB0535A54C2E2962F0FD06988D99060F8CECA39B07AC00A63204C773B95893 ] C:\Windows\System32\LogonUI.exe
03:08:16.0731 0x0ddc  C:\Windows\System32\LogonUI.exe - ok
03:08:16.0747 0x0ddc  [ C44560F142B85256707D688EEA23AC61, 1B52631B1998E9A0C7B3F5533D4DED5E0D72AE51C35CA5CE199E60ABF0079CEA ] C:\Windows\System32\authui.dll
03:08:16.0747 0x0ddc  C:\Windows\System32\authui.dll - ok
03:08:16.0747 0x0ddc  [ 6011714C8C5C55CBFFAD24D61E879FBD, 75D615082A1C71C6ED3ABB49EDAF660EE538D112CF79B9C8AF0A583D1CE1BBB0 ] C:\Windows\System32\wevtsvc.dll
03:08:16.0747 0x0ddc  C:\Windows\System32\wevtsvc.dll - ok
03:08:16.0762 0x0ddc  [ 3B5411975BE627B9A705F76B82E0DA87, 321164575BB1751D7099A24CFD6C03C144BF54467E30F717212827B0DE20C6CC ] C:\Windows\System32\cryptui.dll
03:08:16.0762 0x0ddc  C:\Windows\System32\cryptui.dll - ok
03:08:16.0778 0x0ddc  [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] C:\Windows\System32\audiosrv.dll
03:08:16.0778 0x0ddc  C:\Windows\System32\audiosrv.dll - ok
03:08:16.0778 0x0ddc  [ 227E2C382A1E02F8D4965E664D3BBE43, 1CFF20A8BF87ACE4FA4935EBEED72BFB1A1FE902A754899E2F50798D67DF5642 ] C:\Windows\System32\MMDevAPI.dll
03:08:16.0778 0x0ddc  C:\Windows\System32\MMDevAPI.dll - ok
03:08:16.0794 0x0ddc  [ 4E9C2DB10F7E6AE91BF761139D4B745B, 8F63F78294F5585D599A114AF449DCC447CCB239D0F0B490BFE6B34A2146E730 ] C:\Windows\System32\shacct.dll
03:08:16.0794 0x0ddc  C:\Windows\System32\shacct.dll - ok
03:08:16.0794 0x0ddc  [ F06BB4E336EA57511FDBAFAFCC47DE62, BE43EC62548E9FF89A9495A1722E22DBB76EEC3764F86E64057B636F27D15765 ] C:\Windows\System32\propsys.dll
03:08:16.0794 0x0ddc  C:\Windows\System32\propsys.dll - ok
03:08:16.0809 0x0ddc  [ 8BC6CAA37159AE5F3BECD8FB96EC30F4, D1E9A67772108FFF9083E31ED8CE8A8805AD43465AD4A21B93BC86045212C813 ] C:\Windows\System32\samlib.dll
03:08:16.0809 0x0ddc  C:\Windows\System32\samlib.dll - ok
03:08:16.0809 0x0ddc  [ 78A1E65207484B7F8D3217507745F47C, 35F413ADB9D157F3666DD15DD58104D629CD9143198A1AB914B73A4A3C9903DD ] C:\Windows\System32\avrt.dll
03:08:16.0809 0x0ddc  C:\Windows\System32\avrt.dll - ok
03:08:16.0825 0x0ddc  [ D29E998E8277666982B4F0303BF4E7AF, 4F19AB5DC173E278EBE45832F6CEAA40E2DF6A2EDDC81B2828122442FE5D376C ] C:\Windows\System32\uxtheme.dll
03:08:16.0825 0x0ddc  C:\Windows\System32\uxtheme.dll - ok
03:08:16.0825 0x0ddc  [ 802D0CECFBB59B3FB81B22B74667AA8E, 04A1A42EB9552AC8763B05A0513399A184DA7C0DEC833992AF8EDED6C8964317 ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.23894_none_145eb2808b8d6928\GdiPlus.dll
03:08:16.0825 0x0ddc  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.23894_none_145eb2808b8d6928\GdiPlus.dll - ok
03:08:16.0840 0x0ddc  [ 3CB6A7286422C72C34DAB54A5DFF1A34, 98D21EFFF511E407336A226420701E82554DA01FA05661303836B6860D63749D ] C:\Windows\System32\dui70.dll
03:08:16.0840 0x0ddc  C:\Windows\System32\dui70.dll - ok
03:08:16.0840 0x0ddc  [ 8CCDE014A4CDF84564E03ACE064CA753, DD663029B2EB7B12FDB00FCE403D8326141E540E3B9CE84CD5871473D3E2E2CF ] C:\Windows\System32\duser.dll
03:08:16.0840 0x0ddc  C:\Windows\System32\duser.dll - ok
03:08:16.0856 0x0ddc  [ D7F1EF374A90709B31591823B002F918, 05FD2837C9B03D14BB2A969C1AD77CAEF047D93DC5D0F6C2ACBF0888E8F7B359 ] C:\Windows\System32\SndVolSSO.dll
03:08:16.0856 0x0ddc  C:\Windows\System32\SndVolSSO.dll - ok
03:08:16.0856 0x0ddc  [ 896F15A6434D93EDB42519D5E18E6B50, 9263F0CEC58D45EBE3FB9C3061FB9392C55A7933B84B4592E6EE13CFC86D5A50 ] C:\Windows\System32\hid.dll
03:08:16.0856 0x0ddc  C:\Windows\System32\hid.dll - ok
03:08:16.0872 0x0ddc  [ B8542140074D2B51FDC55E6907996CC4, A1ABD4DCF2CC8623AF6E18F1449BF144342D49176FD25501E0F33EE4C41FC5A6 ] C:\Windows\System32\dwmapi.dll
03:08:16.0872 0x0ddc  C:\Windows\System32\dwmapi.dll - ok
03:08:16.0872 0x0ddc  [ 6F8B48F3D343E4B186AB6A9E302B7E16, 54DB52FC56509E61DF68BD251B3286E6CBE1A91D9BC4D950940A61FE2DA04DF8 ] C:\Windows\System32\xmllite.dll
03:08:16.0872 0x0ddc  C:\Windows\System32\xmllite.dll - ok
03:08:16.0887 0x0ddc  [ 7B1377FEF37A1A05B964660025D6FC76, 01C818C45400352E9437E5484F3DD89D2189D3ED11F635F32B845B5A8B1E1703 ] C:\Windows\System32\WindowsCodecs.dll
03:08:16.0887 0x0ddc  C:\Windows\System32\WindowsCodecs.dll - ok
03:08:16.0903 0x0ddc  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D, 19959D18601712901F03B83150D15E34EBCAB355BB4692C9A28511A72F57FC66 ] C:\Windows\System32\winbrand.dll
03:08:16.0903 0x0ddc  C:\Windows\System32\winbrand.dll - ok
03:08:16.0903 0x0ddc  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] C:\Windows\System32\mmcss.dll
03:08:16.0903 0x0ddc  C:\Windows\System32\mmcss.dll - ok
03:08:16.0918 0x0ddc  [ D204193AE858F18F901EF2B004A01CD6, 0A8EB4FD5ED38CDC5401BF61E6A9A25E7F26ADDFC83DF95A20D58B2BFC9F7ECE ] C:\Windows\System32\audiodg.exe
03:08:16.0918 0x0ddc  C:\Windows\System32\audiodg.exe - ok
03:08:16.0918 0x0ddc  [ 2F2F838617E7ED5107E233C2E0D1FF21, C70BDF04EF1FE396E813E262240BAD18ABDF28DD4D0CD402AD6232289BF34DBB ] C:\Windows\System32\adtschema.dll
03:08:16.0918 0x0ddc  C:\Windows\System32\adtschema.dll - ok
03:08:16.0918 0x0ddc  [ C2762A57DF0EE85E63CE4893C5215313, DDE22212D78353633CEDE27D7210469DE674563991105563CF64CCCE2D0743BD ] C:\Windows\System32\VaultCredProvider.dll
03:08:16.0918 0x0ddc  C:\Windows\System32\VaultCredProvider.dll - ok
03:08:16.0934 0x0ddc  [ 8563BA40DF4F1E93A61B70E2C8B60CF8, E5CAA520CBE61FAF3EAA784A51ED30E0CB2FD78EFD8AE1D5C6B0FE43A1009F39 ] C:\Windows\System32\SmartcardCredentialProvider.dll
03:08:16.0934 0x0ddc  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
03:08:16.0934 0x0ddc  [ BF352E73615F5461AA6884472435A544, 4B059E79325C5F08CD6FBBE6352E17ADB64B9608CC9EDB36A2DF4D148060C309 ] C:\Windows\System32\BioCredProv.dll
03:08:16.0934 0x0ddc  C:\Windows\System32\BioCredProv.dll - ok
03:08:16.0950 0x0ddc  [ 796B8123A7859AFD3A4AE10514DBAEB5, E76F69FAFEC3D66263ED95F3FA9EE309BDDACB287E30583A147DC97F6EEB8844 ] C:\Windows\System32\winbio.dll
03:08:16.0950 0x0ddc  C:\Windows\System32\winbio.dll - ok
03:08:16.0950 0x0ddc  [ 4403D5ECE7D8323CAF1207D1AA38FA01, BD0B34DCF658D3CB91C1B55E9E730C5F7C571AFC2BFA09270C377B72B6830D48 ] C:\Windows\System32\credui.dll
03:08:16.0950 0x0ddc  C:\Windows\System32\credui.dll - ok
03:08:16.0965 0x0ddc  [ 972C3301DB3DA91AE06A95F6B4160B1B, 678B533A06C306295FE97DC26CE9BAFFC8EAF1FB7405ACB040719099717744D5 ] C:\Windows\System32\certCredProvider.dll
03:08:16.0981 0x0ddc  C:\Windows\System32\certCredProvider.dll - ok
03:08:16.0996 0x0ddc  [ 44B9C66177651F3F53C87B665D58D17A, 3FC426115FF87570889DB28D71970B82B525D2A4B9A00EDD273BF083B77A05CE ] C:\Windows\System32\vaultcli.dll
03:08:16.0996 0x0ddc  C:\Windows\System32\vaultcli.dll - ok
03:08:16.0996 0x0ddc  [ 785F474FB5E67E448E1931C98E8D0ABC, 911697D580CBF508A6F4A52D4F95A6976CF9A0EC3549076A8D0B5C8BD947C989 ] C:\Windows\System32\FntCache.dll
03:08:16.0996 0x0ddc  C:\Windows\System32\FntCache.dll - ok
03:08:17.0012 0x0ddc  [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] C:\Windows\System32\gpsvc.dll
03:08:17.0012 0x0ddc  C:\Windows\System32\gpsvc.dll - ok
03:08:17.0012 0x0ddc  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] C:\Windows\System32\profsvc.dll
03:08:17.0012 0x0ddc  C:\Windows\System32\profsvc.dll - ok
03:08:17.0028 0x0ddc  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] C:\Windows\System32\themeservice.dll
03:08:17.0028 0x0ddc  C:\Windows\System32\themeservice.dll - ok
03:08:17.0043 0x0ddc  [ 58775492FFD419248B08325E583C527F, DBB013971F5894F25C222C2D4D50A29DB6DF3C413792EE9CCC1A9E6D85469093 ] C:\Windows\System32\atl.dll
03:08:17.0043 0x0ddc  C:\Windows\System32\atl.dll - ok
03:08:17.0043 0x0ddc  [ A77BE7CB3222B4FB0AC6C71D1C2698D4, 73566223914BF670DF6B5931FA213E546713531B10391ED65B5256BBD7ABDE7F ] C:\Windows\System32\dsrole.dll
03:08:17.0043 0x0ddc  C:\Windows\System32\dsrole.dll - ok
03:08:17.0059 0x0ddc  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] C:\Windows\System32\es.dll
03:08:17.0059 0x0ddc  C:\Windows\System32\es.dll - ok
03:08:17.0121 0x0ddc  [ 46BB91A169B9B31FF44EB04C48EC1D41, 8115B533D3A5BE07633FA54FA8847E3DEC00C5BEB193CF2FBE88428D23E2B3D6 ] C:\Windows\System32\nlaapi.dll
03:08:17.0121 0x0ddc  C:\Windows\System32\nlaapi.dll - ok
03:08:17.0121 0x0ddc  [ 87FA0C48C3B2E9FEE518818FE26B15B5, DA4042DE9897397AEDCEFF9F69746726237305DDE64464309B6DCC45E05E42F4 ] C:\Windows\System32\rasplap.dll
03:08:17.0121 0x0ddc  C:\Windows\System32\rasplap.dll - ok
03:08:17.0137 0x0ddc  [ BE097F5BB10F9079FCEB2DC4E7E20F02, 90A88986C8C5F30FB153EC803FEDA6572B2C2630A6C9578FCC017800692694D5 ] C:\Windows\System32\slc.dll
03:08:17.0137 0x0ddc  C:\Windows\System32\slc.dll - ok
03:08:17.0137 0x0ddc  [ 019CD868461B646E09BDF04474C19341, 01837EFACB02E52BC6E90C90C4CB01B11D56E449A37EA4FC2695507FF85EA9FE ] C:\Windows\System32\rasapi32.dll
03:08:17.0137 0x0ddc  C:\Windows\System32\rasapi32.dll - ok
03:08:17.0152 0x0ddc  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] C:\Windows\System32\Sens.dll
03:08:17.0152 0x0ddc  C:\Windows\System32\Sens.dll - ok
03:08:17.0168 0x0ddc  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] C:\Windows\System32\drivers\lltdio.sys
03:08:17.0168 0x0ddc  C:\Windows\System32\drivers\lltdio.sys - ok
03:08:17.0168 0x0ddc  [ 9FB2A095B1166CB3C9A06651863B3452, 808105C59C2D28C390FDE0CA48690A5CD052DE3D7F7327864EB45F80187D5BE9 ] C:\Windows\System32\drivers\nwifi.sys
03:08:17.0168 0x0ddc  C:\Windows\System32\drivers\nwifi.sys - ok
03:08:17.0184 0x0ddc  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] C:\Windows\System32\uxsms.dll
03:08:17.0184 0x0ddc  C:\Windows\System32\uxsms.dll - ok
03:08:17.0184 0x0ddc  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] C:\Windows\System32\drivers\ndisuio.sys
03:08:17.0184 0x0ddc  C:\Windows\System32\drivers\ndisuio.sys - ok
03:08:17.0199 0x0ddc  [ B28DEEC597C8DEB70C744C7CF9210E3E, E777F192D822990CA6301B3FEA2AEA213FA7901438EB3328914ADF02B6C39DB9 ] C:\Windows\System32\rasman.dll
03:08:17.0199 0x0ddc  C:\Windows\System32\rasman.dll - ok
03:08:17.0199 0x0ddc  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] C:\Windows\System32\drivers\rspndr.sys
03:08:17.0199 0x0ddc  C:\Windows\System32\drivers\rspndr.sys - ok
03:08:17.0215 0x0ddc  [ B53C4B69B695EDA1B7E41D35CA4244E2, 3D98E9B263CADA576E4057E059AFC867F6E3F1001F3B73C8BCF9066763A45D9D ] C:\Windows\System32\rtutils.dll
03:08:17.0215 0x0ddc  C:\Windows\System32\rtutils.dll - ok
03:08:17.0215 0x0ddc  [ 1A47D52E303B7543E4E6026595B95422, C577CD3837546A7CED5D2E8E97FA2EDACA133B4A8595770EF96CAE519BFE280F ] C:\Windows\System32\comres.dll
03:08:17.0215 0x0ddc  C:\Windows\System32\comres.dll - ok
03:08:17.0230 0x0ddc  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] C:\Windows\System32\lmhsvc.dll
03:08:17.0230 0x0ddc  C:\Windows\System32\lmhsvc.dll - ok
03:08:17.0246 0x0ddc  [ B73A6E4B319AFFE64582AC5C1801BB3F, 274EEA0743DC659180E691654CBB17136E9E9D83B07E302B47EA5B103EA57710 ] C:\Windows\System32\nrpsrv.dll
03:08:17.0246 0x0ddc  C:\Windows\System32\nrpsrv.dll - ok
03:08:17.0246 0x0ddc  [ 668B9EFF5CCA4542F435D2CD9CE3C778, 7409EF35D1DC0DE2BAB752694981FFA1F1855C7F11310366B80BD1EC3513262E ] C:\Windows\System32\nsisvc.dll
03:08:17.0246 0x0ddc  C:\Windows\System32\nsisvc.dll - ok
03:08:17.0262 0x0ddc  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] C:\Windows\System32\dhcpcore.dll
03:08:17.0262 0x0ddc  C:\Windows\System32\dhcpcore.dll - ok
03:08:17.0262 0x0ddc  [ 3CC16A849E6092E43909F48EF0E60306, 610B576654A69415E4F2FEDB6BA384C77715944E4F89BD2821B311968CA8D810 ] C:\Windows\System32\dhcpcore6.dll
03:08:17.0262 0x0ddc  C:\Windows\System32\dhcpcore6.dll - ok
03:08:17.0277 0x0ddc  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] C:\Windows\System32\eapsvc.dll
03:08:17.0277 0x0ddc  C:\Windows\System32\eapsvc.dll - ok
03:08:17.0277 0x0ddc  [ F9EC845C5EECF20E9A67F9F805F2EF1F, C3DBA8CF93DBF50954B1BF6D7EF3F6F5DD1A56DC62B7EB2749C54D9B65D9BB43 ] C:\Windows\System32\keyiso.dll
03:08:17.0308 0x0ddc  C:\Windows\System32\keyiso.dll - ok
03:08:17.0308 0x0ddc  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] C:\Windows\System32\MPSSVC.dll
03:08:17.0308 0x0ddc  C:\Windows\System32\MPSSVC.dll - ok
03:08:17.0324 0x0ddc  [ 50544D04AD845C43130B70212EC05CCD, B2E6B558DE7D273512226685FF53ED17C9B4BF81B739FBCA5D3FC82DF8D2BCF7 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
03:08:17.0324 0x0ddc  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
03:08:17.0324 0x0ddc  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] C:\Windows\System32\drivers\fltMgr.sys
03:08:17.0324 0x0ddc  C:\Windows\System32\drivers\fltMgr.sys - ok
03:08:17.0340 0x0ddc  [ 1473768973453DE50DC738C2955FC4DD, 14BC5DA2442CB726ACC1F277DDBECCF5D61E3A0A3E083A55A0BB610191E35220 ] C:\Windows\System32\wdmaud.drv
03:08:17.0340 0x0ddc  C:\Windows\System32\wdmaud.drv - ok
03:08:17.0340 0x0ddc  [ EF2AE43BCD46ABB13FC3E5B2B1935C73, 81FC06F306F620845D7DD8D06E706309E70BC89B589C81F3478302A3F5F73431 ] C:\Windows\System32\winmm.dll
03:08:17.0340 0x0ddc  C:\Windows\System32\winmm.dll - ok
03:08:17.0418 0x0ddc  [ 6D21051C8EA17C1DD0A6FD07CCAB8232, 72F1C48EC0860101249577ADC4734F43BFC9A528E6B730E0B043CC1B8BA4DBD3 ] C:\Windows\System32\ksuser.dll
03:08:17.0418 0x0ddc  C:\Windows\System32\ksuser.dll - ok
03:08:17.0418 0x0ddc  [ A3DB3C17EE6CAE65D53602B4E80BCCBC, D802A7C6161F937DC42A6E45FE1BB2C8272819F92C294C180EBCDF8FF72CBFDC ] C:\Windows\System32\PSHED.DLL
03:08:17.0418 0x0ddc  C:\Windows\System32\PSHED.DLL - ok
03:08:17.0433 0x0ddc  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] C:\Windows\System32\termsrv.dll
03:08:17.0433 0x0ddc  C:\Windows\System32\termsrv.dll - ok
03:08:17.0449 0x0ddc  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] C:\Windows\System32\dnsrslvr.dll
03:08:17.0449 0x0ddc  C:\Windows\System32\dnsrslvr.dll - ok
03:08:17.0449 0x0ddc  [ 9BC8610C32C96A2983A65DC21CAFA921, 2A4195F663C9D55939E3D8FEAA208090FDB0B8801A60164A7325B53104797CBC ] C:\Windows\System32\UXInit.dll
03:08:17.0449 0x0ddc  C:\Windows\System32\UXInit.dll - ok
03:08:17.0464 0x0ddc  [ B0945E538CF906BBDDC5A11C8EE868CC, 5F3459F6512918835F7C9400905EC7C1FAEAA7114E0D28C522040C359E3B93F7 ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
03:08:17.0464 0x0ddc  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
03:08:17.0464 0x0ddc  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] C:\Windows\System32\nlasvc.dll
03:08:17.0464 0x0ddc  C:\Windows\System32\nlasvc.dll - ok
03:08:17.0480 0x0ddc  [ F568F7C08458D69E4FCD8675BBB107E4, A5FA25ECF248999A68CCECFBB508BFA1ADD18A23E20A9A9081A87C41CAAA36C0 ] C:\Windows\System32\dhcpcsvc.dll
03:08:17.0480 0x0ddc  C:\Windows\System32\dhcpcsvc.dll - ok
03:08:17.0496 0x0ddc  [ D4FAC263861BAE06971C7F7D0A8EBF15, D494DEF0024288B9CC56EC6B500FF5828144BE9B8E7033340509EC5E68F8DED0 ] C:\Windows\System32\ncsi.dll
03:08:17.0496 0x0ddc  C:\Windows\System32\ncsi.dll - ok
03:08:17.0496 0x0ddc  [ B2ED0DC061D3C83A1AF47626E1F23B78, 07F820E462885E671023074EBF69C99A87352BF5F00A47B9EFBE164463F8DBA9 ] C:\Windows\System32\winhttp.dll
03:08:17.0496 0x0ddc  C:\Windows\System32\winhttp.dll - ok
03:08:17.0511 0x0ddc  [ 774A965EE0932641E0ABE88EB3FE7D12, 159A872DE38FEE5E7DE3C88FBDC9F6FCB2E034600614B8D12BC0147D835FC911 ] C:\Windows\System32\AudioSes.dll
03:08:17.0511 0x0ddc  C:\Windows\System32\AudioSes.dll - ok
03:08:17.0511 0x0ddc  [ 87356377F31DA5F20A833811CD59499C, 4FEC1FD3AC4E4E34DCBC0109B248952604F438C84B1604EB9E2359FA721E23C4 ] C:\Windows\System32\eapphost.dll
03:08:17.0511 0x0ddc  C:\Windows\System32\eapphost.dll - ok
03:08:17.0527 0x0ddc  [ 1B7C3A37362C7B2890168C5FC61C8D9B, 03727930E5BB5F9D91BAB901FC9A2E3B795D68E2AEE6A2CC3477F356C45A9C54 ] C:\Windows\System32\msacm32.drv
03:08:17.0527 0x0ddc  C:\Windows\System32\msacm32.drv - ok
03:08:17.0542 0x0ddc  [ 4B7912EB80820EAC543EE54806EFCAF0, 4D9186F9FE80F03C85C4DC73342EE5870DF1021BD29974BE33557CEA0D524667 ] C:\Windows\System32\wlansvc.dll
03:08:17.0542 0x0ddc  C:\Windows\System32\wlansvc.dll - ok
03:08:17.0542 0x0ddc  [ 10AC5CE9F78DC281A1BBD9B8CC587B8A, 72288C0A88916D3C3828DBD948DBDB0928F26106319F8E60102D6C9004514D60 ] C:\Windows\System32\msacm32.dll
03:08:17.0542 0x0ddc  C:\Windows\System32\msacm32.dll - ok
03:08:17.0558 0x0ddc  [ CA2A0750ED830678997695FF61B04C30, E84860CD97AA3C4565ABB2D5D406A5C42B1AD2D8BA1B8CF81FE564D91F15F976 ] C:\Windows\System32\midimap.dll
03:08:17.0558 0x0ddc  C:\Windows\System32\midimap.dll - ok
03:08:17.0558 0x0ddc  [ 1351A63BEC87BF81E540251966648C5D, D3B888B3FCD2E345B11374868BB4C99DD7A8D1DEF9DD923D8B7CF5F4B97AA49F ] C:\Windows\System32\webio.dll
03:08:17.0574 0x0ddc  C:\Windows\System32\webio.dll - ok
03:08:17.0620 0x0ddc  [ D07EB640618F96490DB88C3CE58DB608, 0C553971259632031E6856A94EEB937D571627FC7CF061CCFC040F4BF0CFF259 ] C:\Windows\System32\FWPUCLNT.DLL
03:08:17.0620 0x0ddc  C:\Windows\System32\FWPUCLNT.DLL - ok
03:08:17.0620 0x0ddc  [ 885D0942E0F28DB90919BE3129ECF279, 5A10D90EE656ECE3DCA174D6F924641509819FC20CB6EF46B5E1723E52DE85BE ] C:\Windows\System32\dnsext.dll
03:08:17.0620 0x0ddc  C:\Windows\System32\dnsext.dll - ok
03:08:17.0636 0x0ddc  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE, 4EFA41765E46E90C6CBDB0DC1E0CD375D7AB3307C477171EBAA6A16AC32E5211 ] C:\Windows\System32\ssdpapi.dll
03:08:17.0636 0x0ddc  C:\Windows\System32\ssdpapi.dll - ok
03:08:17.0652 0x0ddc  [ 9FCA3A84338ADEF2AFF67CDA46EF8539, 087DF72096852AE98C56990EE6E68835BE95E7E49ECDDE8B54DAC11C9E07FE94 ] C:\Windows\System32\umb.dll
03:08:17.0652 0x0ddc  C:\Windows\System32\umb.dll - ok
03:08:17.0652 0x0ddc  [ E3960944590EC8350C7049BC5ECC709D, 8556F5FB9CE3E6D4A4153175F32ACC1CBF1298E3F474673A68C7E49854E4DF1A ] C:\Windows\System32\wlanmsm.dll
03:08:17.0652 0x0ddc  C:\Windows\System32\wlanmsm.dll - ok
03:08:17.0667 0x0ddc  [ 1CD1341FCBEA8E5E057D555CA94C9B77, 23675EAC305F5FECA43A938CB8859330B9069956CECCF9E9A606B6A95686ED1C ] C:\Windows\System32\wlansec.dll
03:08:17.0667 0x0ddc  C:\Windows\System32\wlansec.dll - ok
03:08:17.0667 0x0ddc  [ 65522E77A1360DBC8D199DA3BF5EFFE4, E9D748070FA478A3D37F15049F998D340885C0DC5FCE03BFCE5D521C9EBA7350 ] C:\Windows\System32\eappprxy.dll
03:08:17.0667 0x0ddc  C:\Windows\System32\eappprxy.dll - ok
03:08:17.0683 0x0ddc  [ 73FCB7919DEE80EE556F2E498594EBAE, D0F7A0AD3BC33263E9C2CF9787DD326436F9E0C9F5031D769F8A43C64C08A762 ] C:\Windows\System32\onex.dll
03:08:17.0683 0x0ddc  C:\Windows\System32\onex.dll - ok
03:08:17.0683 0x0ddc  [ 0D753307D274F3688BD21C377B616700, 5DD08E77A11F2561FB96BA212FDDFE21D4394C69C34C3EB88F7F5CD068EE55BF ] C:\Windows\System32\eappcfg.dll
03:08:17.0683 0x0ddc  C:\Windows\System32\eappcfg.dll - ok
03:08:17.0698 0x0ddc  [ 730BF204A595D5B6D7DC57A247CC741C, 264C6901F4A49B738BBD04BCA1783DEE892885BADE9085B0AEA40BAE7CC0A218 ] C:\Windows\System32\wlgpclnt.dll
03:08:17.0698 0x0ddc  C:\Windows\System32\wlgpclnt.dll - ok
03:08:17.0714 0x0ddc  [ 97E43F324BE1503CB2FFB058534688DA, 50C781DF38D0D38C9A5420AB1FFF8672DC13FD1ED8E9F5432B4BA3077A7435D5 ] C:\Windows\System32\l2gpstore.dll
03:08:17.0714 0x0ddc  C:\Windows\System32\l2gpstore.dll - ok
03:08:17.0714 0x0ddc  [ 7D5645EE0EA77D539828433D9B95F5EB, EEF81E9B2205FC456DB6095AD0AEAB38BB131D3BCD090EA6CD91D5568ACAFB7F ] C:\Windows\System32\WinSCard.dll
03:08:17.0714 0x0ddc  C:\Windows\System32\WinSCard.dll - ok
03:08:17.0714 0x0ddc  [ 7F1B4C6FF3B85F9ADF74055187B8A22C, CC95DA5662638AACBE9643DCB236464C2C2095A8D5CDC8A747045870BE9D0E7D ] C:\Windows\System32\wlanutil.dll
03:08:17.0714 0x0ddc  C:\Windows\System32\wlanutil.dll - ok
03:08:17.0730 0x0ddc  [ FDE5C7F271A8424B019EEFDAFD8CBD75, C58ABF814490343374F6F248F0F8671D87673BB504DEB402DC270A7ADD49B422 ] C:\Windows\System32\msxml6.dll
03:08:17.0730 0x0ddc  C:\Windows\System32\msxml6.dll - ok
03:08:17.0745 0x0ddc  [ FBE484A6F52433170CAE73EC61A6018E, 2C526F0E2CE2DADA0F491EFB3D0680FE895BD43A18C6BC77BBAB6FAA25F70CB6 ] C:\Windows\System32\AudioEng.dll
03:08:17.0745 0x0ddc  C:\Windows\System32\AudioEng.dll - ok
03:08:17.0745 0x0ddc  [ 3C06D5A929B798D0B13F6481242A0FD2, CE6127A31AB09E21A912CA16E4BDF663E9D05C254CCF9090A8B5A9A2E055EFF3 ] C:\Windows\System32\dhcpcsvc6.dll
03:08:17.0745 0x0ddc  C:\Windows\System32\dhcpcsvc6.dll - ok
03:08:17.0761 0x0ddc  [ 5AA945234E9D4CCE4F715276B9AA712C, 65165BD131056816F009D987FC78AC86FFE0C3C38A27E73F873586B7FF4D59CF ] C:\Windows\System32\imageres.dll
03:08:17.0761 0x0ddc  C:\Windows\System32\imageres.dll - ok
03:08:17.0761 0x0ddc  [ C6F9222F39A035540D6D53C139C5740C, F08DC783F61EE4CCFDB37CFB5424DBE982133421327458544B8E2106715CC054 ] C:\Windows\System32\AUDIOKSE.dll
03:08:17.0761 0x0ddc  C:\Windows\System32\AUDIOKSE.dll - ok
03:08:17.0870 0x0ddc  [ C00DB14550E4BD49737F311C644E45FF, 7085C47DADEED82B6F98ED3903197D76B648E9D6CC67D40C789E236264D9A0DC ] C:\Windows\System32\wmi.dll
03:08:17.0870 0x0ddc  C:\Windows\System32\wmi.dll - ok
03:08:17.0870 0x0ddc  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] C:\Windows\System32\wwansvc.dll
03:08:17.0870 0x0ddc  C:\Windows\System32\wwansvc.dll - ok
03:08:17.0870 0x0ddc  [ E4C1F5298548CC2E1E8B75DBD9687565, 8D8C4F1A6C8CEDEE9261EEE4E3BD62AB116E28DC766573F941C488EECCB0FD41 ] C:\Windows\System32\RltkAPO64.dll
03:08:17.0870 0x0ddc  C:\Windows\System32\RltkAPO64.dll - ok
03:08:17.0886 0x0ddc  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] C:\Windows\System32\shsvcs.dll
03:08:17.0886 0x0ddc  C:\Windows\System32\shsvcs.dll - ok
03:08:17.0901 0x0ddc  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] C:\Windows\System32\schedsvc.dll
03:08:17.0901 0x0ddc  C:\Windows\System32\schedsvc.dll - ok
03:08:17.0901 0x0ddc  [ BC414631876B2F28B8DAB08E849C12C5, 5973654AA3E90E6B699B0A43F645B893D95BAA803129B6967D746C8239AB26E3 ] C:\Windows\System32\ktmw32.dll
03:08:17.0901 0x0ddc  C:\Windows\System32\ktmw32.dll - ok
03:08:17.0964 0x0ddc  [ 03706015DB44368375AEBE6339490E66, 02EB28B5156E320C1EBABC03D37E94EB770A721B99E1DD276F8DC2A50D76C381 ] C:\Windows\System32\netcfgx.dll
03:08:17.0964 0x0ddc  C:\Windows\System32\netcfgx.dll - ok
03:08:17.0995 0x0ddc  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7, 4BC5A1279885EEFBEB27333AF719622A5FCDD9606697692C1978E434CE264D80 ] C:\Windows\System32\taskcomp.dll
03:08:17.0995 0x0ddc  C:\Windows\System32\taskcomp.dll - ok
03:08:17.0995 0x0ddc  [ D1035B8EFC83165612F7AAB1816A81B4, CF8DC9349DE9B787BB8D1E15B39397B356BAF7A3098A6A12EF6E0235EF8A58C9 ] C:\Windows\System32\fveapi.dll
03:08:17.0995 0x0ddc  C:\Windows\System32\fveapi.dll - ok
03:08:18.0010 0x0ddc  [ EF7F85527404DF16DEE0ADC611155F0B, 30132BF984CB7BFE95BA4E6C278293D460F7770D570A6F1A13BD28A982481D16 ] C:\Windows\System32\WMALFXGFXDSP.dll
03:08:18.0010 0x0ddc  C:\Windows\System32\WMALFXGFXDSP.dll - ok
03:08:18.0010 0x0ddc  [ 891ECFD08E2C538B7948CBC45106D697, 628D0D618FF3A70E9FBE3B2C7206C9365ED2297784A5F10FFA05BD2C56657013 ] C:\Windows\System32\fvecerts.dll
03:08:18.0010 0x0ddc  C:\Windows\System32\fvecerts.dll - ok
03:08:18.0026 0x0ddc  [ 8F39E301AD8B219DADF83BD7DBE9842E, AB214857E10822EB71652463BD2F595DDD45AEE02E569CEB80BA1BDC3C1D685A ] C:\Windows\System32\tbs.dll
03:08:18.0026 0x0ddc  C:\Windows\System32\tbs.dll - ok
03:08:18.0026 0x0ddc  [ 8269210DAF3B12BC8300631B28A2A442, EABEB792C2EA8D4A1A7B13281CF557C194D5667AE0BA2A2D5664908D8269113D ] C:\Windows\System32\wiarpc.dll
03:08:18.0026 0x0ddc  C:\Windows\System32\wiarpc.dll - ok
03:08:18.0042 0x0ddc  [ CF5C9BD985120781200D35FD445D0BD5, 91B37F595A196542458CBBCDAD80779721D228A7030A34E55995DDBB06649248 ] C:\Windows\System32\drivers\http.sys
03:08:18.0042 0x0ddc  C:\Windows\System32\drivers\http.sys - ok
03:08:18.0042 0x0ddc  [ 2188DE5FA5C741FB2B81EB9F37D26BA7, 81C13718B01E698DDC31D13F60335CC6182C9F4CEF9E29ECE2A5BA5A4F138A1C ] C:\Windows\System32\mfplat.dll
03:08:18.0042 0x0ddc  C:\Windows\System32\mfplat.dll - ok
03:08:18.0057 0x0ddc  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] C:\Windows\System32\spoolsv.exe
03:08:18.0057 0x0ddc  C:\Windows\System32\spoolsv.exe - ok
03:08:18.0057 0x0ddc  [ C07D5582F2107ACAB4564E1DAE977C64, A9AE53F7D23DDC96A05F3B93F547ABD1896233F3D835C6B07AD9E9781788BC32 ] C:\Windows\ehome\ehprivjob.exe
03:08:18.0057 0x0ddc  C:\Windows\ehome\ehprivjob.exe - ok
03:08:18.0073 0x0ddc  [ F2C7A4E92DD0AB0D232067DCC38DA22F, 81872A98FB58F5D70BA57DA70D296F8C6EAFBA9BBFFECA4659835F0663C79008 ] C:\Windows\System32\conhost.exe
03:08:18.0073 0x0ddc  C:\Windows\System32\conhost.exe - ok
03:08:18.0088 0x0ddc  [ DB76DB15EFC6E4D1153A6C5BC895948D, 71DDF02C7EE2DF66A08F1A2A08DA39802C354624880A2BE93A706EA7476422A3 ] C:\Windows\System32\sppc.dll
03:08:18.0088 0x0ddc  C:\Windows\System32\sppc.dll - ok
03:08:18.0088 0x0ddc  [ 9E0FF5DDD8B908DA5611445C35D6CD24, 2BA7EDFE35EA4CAE6A920541566F0A8359C223F055183710D549E2EA83166790 ] C:\Windows\System32\slcext.dll
03:08:18.0088 0x0ddc  C:\Windows\System32\slcext.dll - ok
03:08:18.0104 0x0ddc  [ 6F5BE3F67D7F66FFA861ABBFC6A8C973, 0D01568C0ABE1682DE8AFDCB1D5421E1AA9AFBC11714B801FE886455B4F76385 ] C:\Windows\System32\sppcext.dll
03:08:18.0104 0x0ddc  C:\Windows\System32\sppcext.dll - ok
03:08:18.0104 0x0ddc  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] C:\Windows\System32\BFE.DLL
03:08:18.0104 0x0ddc  C:\Windows\System32\BFE.DLL - ok
03:08:18.0120 0x0ddc  [ ABA3984C822E4D3F889699912D85D6C5, 2251FA135CC290DA13DAE4743F393C7CC9E6A737C054707CB8D72C369D1FFACB ] C:\Windows\System32\drivers\bowser.sys
03:08:18.0120 0x0ddc  C:\Windows\System32\drivers\bowser.sys - ok
03:08:18.0135 0x0ddc  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] C:\Windows\System32\drivers\mpsdrv.sys
03:08:18.0135 0x0ddc  C:\Windows\System32\drivers\mpsdrv.sys - ok
03:08:18.0135 0x0ddc  [ 767C6DF04C5758B9F0790D400541B44F, BFC38D7BCF19F7246BCAD3E04273A403F6B973432EE0EF6E25B16BA3826A21B7 ] C:\Windows\System32\drivers\mrxsmb.sys
03:08:18.0135 0x0ddc  C:\Windows\System32\drivers\mrxsmb.sys - ok
03:08:18.0151 0x0ddc  [ BD55F604FFABC911F8E5500186AE70E5, 3719EDB070E6FFE9781337A05CA0309C3CD5CD38A292DF091E05C9BA3D5A479F ] C:\Windows\System32\drivers\mrxsmb10.sys
03:08:18.0151 0x0ddc  C:\Windows\System32\drivers\mrxsmb10.sys - ok
03:08:18.0151 0x0ddc  [ 92EECFB046D4706A4B8D699A4069B6EC, 3B3E232DABA913A500CE55AD8600D8DD8F28E32B0276B9B6C8FD6239688833A4 ] C:\Windows\System32\drivers\mrxsmb20.sys
03:08:18.0151 0x0ddc  C:\Windows\System32\drivers\mrxsmb20.sys - ok
03:08:18.0166 0x0ddc  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] C:\Windows\System32\wkssvc.dll
03:08:18.0166 0x0ddc  C:\Windows\System32\wkssvc.dll - ok
03:08:18.0166 0x0ddc  [ C67F8A962B2534224D5908D16D2AD3CE, CAC1821F5E867285638AEE7AE33CE574BCCF16277AC5AD805650B48F7759B4B4 ] C:\Windows\System32\wfapigp.dll
03:08:18.0166 0x0ddc  C:\Windows\System32\wfapigp.dll - ok
03:08:18.0182 0x0ddc  [ 192B3B21FDDBC21AA3E8ADFE8ADBC9AA, 7C8324F496092CA2591198DE766F8E1099026A960156B20C1AD2A748498A8AD4 ] C:\Windows\System32\mscms.dll
03:08:18.0182 0x0ddc  C:\Windows\System32\mscms.dll - ok
03:08:18.0182 0x0ddc  [ B749BF5425909FB17FFE1DB64F4D386C, A9D0B0D78D0C8EAC97D155711D181998D9486ECF13D347134B061640F2B02ECE ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
03:08:18.0182 0x0ddc  C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe - ok
03:08:18.0198 0x0ddc  [ D029339C0F59CF662094EDDF8C42B2B5, 934D882EFD3C0F3F1EFBC238EF87708F3879F5BB456D30AF62F3368D58B6AA4C ] C:\Windows\System32\msvcp100.dll
03:08:18.0198 0x0ddc  C:\Windows\System32\msvcp100.dll - ok
03:08:18.0198 0x0ddc  [ 366FD6F3A451351B5DF2D7C4ECF4C73A, AE3CB6C6AFBA9A4AA5C85F66023C35338CA579B30326DD02918F9D55259503D5 ] C:\Windows\System32\msvcr100.dll
03:08:18.0198 0x0ddc  C:\Windows\System32\msvcr100.dll - ok
03:08:18.0213 0x0ddc  [ 1803DB9B0009477597FFC436C81078A7, 51471FA46AD6A2A7C9DA62E083A82B716587126975C5ADEE04B413459B8BD3E2 ] C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll
03:08:18.0213 0x0ddc  C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
03:08:18.0229 0x0ddc  [ D0CFBFC5B83B32D876547AAAF2746076, 1D39F82C4AA798E7CAC25F8E474B48C25285FFBF71274675732B241B0A111961 ] C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll
03:08:18.0229 0x0ddc  C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
03:08:18.0229 0x0ddc  [ 6C74389E58BB6B601313C99316241C2E, 3E00B42F255482748D786814031848D74BCB6F1AC2257A73B26C9FEB2A37EA7A ] C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
03:08:18.0229 0x0ddc  C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
03:08:18.0244 0x0ddc  [ 3CD83692C43D87088E85E3C916146FFB, 9E812535E8FBA045FDA30F68E9EB2031132C37721D542A2DC9D4C33E2B137FCF ] C:\Windows\System32\pcasvc.dll
03:08:18.0244 0x0ddc  C:\Windows\System32\pcasvc.dll - ok
03:08:18.0244 0x0ddc  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] C:\Windows\System32\snmptrap.exe
03:08:18.0244 0x0ddc  C:\Windows\System32\snmptrap.exe - ok
03:08:18.0260 0x0ddc  [ 1080AFA8B42F9542CBB13BD5A53F0443, 961B2A56988EC277D8AA843C722ACBD84E2AEAC3B83DE549FB9CD8C571B4E614 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
03:08:18.0260 0x0ddc  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
03:08:18.0260 0x0ddc  [ 78C731752C27A9A0CC3EC95C3A7FB3D1, 4412036CB4BC8592C777881C8EA6F5FAA363552DBACB5F0606E87A86A8A40AC6 ] C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
03:08:18.0260 0x0ddc  C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll - ok
03:08:18.0276 0x0ddc  [ 6C54351BE6949FBADD4ECF2EB48E7919, CF3867AC46D5EE172D36920F2FAE5F12E88ACEDDD1E4679034F4CE2A26C79F11 ] C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
03:08:18.0276 0x0ddc  C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll - ok
03:08:18.0276 0x0ddc  [ 4D40E898F1167763E41AA9944A99790F, 269B43FF040FE6D772A02D11C103253B2664FFD6D38D85991CC7F2FA355C7B2D ] C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
03:08:18.0276 0x0ddc  C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
03:08:18.0291 0x0ddc  [ F11F8589FB574B65F226BC20A7B0D39E, 0DA2C532C1E06DA63A2196910860E8E1E09E7C32BBE274CA71F095E93EFE4953 ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll
03:08:18.0291 0x0ddc  C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll - ok
03:08:18.0291 0x0ddc  [ DC1BC5F2B1C54EA6725734BF4C0E5454, 5E9A1491118037F77356F18C6DE20495C302CC944A8400CC87DC0C67C6AAE9A7 ] C:\Windows\System32\RdpGroupPolicyExtension.dll
03:08:18.0291 0x0ddc  C:\Windows\System32\RdpGroupPolicyExtension.dll - ok
03:08:18.0307 0x0ddc  [ 91A8E32B00BF7899EDAB6783287DDDA6, 49451722317AB42B3DE407EFCB9CC560C1455217AC3E2F11F74D08C1708473C5 ] C:\Windows\System32\PeerDistSh.dll
03:08:18.0307 0x0ddc  C:\Windows\System32\PeerDistSh.dll - ok
03:08:18.0307 0x0ddc  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] C:\Windows\System32\provsvc.dll
03:08:18.0307 0x0ddc  C:\Windows\System32\provsvc.dll - ok
03:08:18.0322 0x0ddc  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] C:\Windows\System32\sstpsvc.dll
03:08:18.0322 0x0ddc  C:\Windows\System32\sstpsvc.dll - ok
03:08:18.0338 0x0ddc  [ 3A970502DEE87B874DBB8B32ACAE3141, 0C5942E9BF432877B4DFE89400DC5A6674BEBA41329C0B8185D854F7895B6120 ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll
03:08:18.0338 0x0ddc  C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
03:08:18.0338 0x0ddc  [ 84657EBC51EA861208EEF2422C5B5DD0, BA35B27BF779EF65DF512ECA349E5E3439E394DD9259AEC677C87DF350D3368C ] C:\Program Files\Common Files\Apple\Apple Application Support\icudt55.dll
03:08:18.0338 0x0ddc  C:\Program Files\Common Files\Apple\Apple Application Support\icudt55.dll - ok
03:08:18.0354 0x0ddc  [ 8170DC98A586807273E2B8AE4353B91D, 4A114282640F4144E8D563871C35C2DDB19AC52B5599E84219E7ACF6B58FA0EC ] C:\Windows\System32\wmdrmsdk.dll
03:08:18.0354 0x0ddc  C:\Windows\System32\wmdrmsdk.dll - ok
03:08:18.0354 0x0ddc  [ 22927747AF3B89F1E68F4D35EF2DDB4A, EBC25E8FBE40A29D8C15882AF4DC7994A964D7D9BA9055DE0BAB81FFA73E5844 ] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll
03:08:18.0354 0x0ddc  C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService_main.dll - ok
03:08:18.0369 0x0ddc  [ B6007E246A75102EF6B7A8B9F15A09AF, 48CE4BF3CA578D7EA01E5825C8F0CA53CE0F4BC001279B355F0CEC0548CD339B ] C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
03:08:18.0369 0x0ddc  C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
03:08:18.0369 0x0ddc  [ E36112A8A6C7F840169A7E92C12F4203, 52795B2E6ECCE751EEF5074AF52FDE376A382D0A1C43B90DD4F77A397C00FBC5 ] C:\Windows\System32\wsock32.dll
03:08:18.0369 0x0ddc  C:\Windows\System32\wsock32.dll - ok
03:08:18.0385 0x0ddc  [ 6A2B52668B8E46B78BD8B907169661D7, 4E49F4EF499D7593379995D7C06C2CCACEDFF9141C93DD21B009295340270864 ] C:\Windows\System32\dnssd.dll
03:08:18.0385 0x0ddc  C:\Windows\System32\dnssd.dll - ok
03:08:18.0400 0x0ddc  [ 4D842C5081F06E61BFF461CF87D13525, DAEAAC69D12DCC86891E88B22D130900F2AD4AA8D3CABA6F6059C38D4BF03498 ] C:\Windows\ehome\ehtrace.dll
03:08:18.0400 0x0ddc  C:\Windows\ehome\ehtrace.dll - ok
03:08:18.0400 0x0ddc  [ 48FEDBE324F1EA9417BA1D62AE863011, 2C3D84F0842237A3BF2838DDB4126807977EB36588FA669B1E6671077584EF18 ] C:\Windows\System32\cryptsvc.dll
03:08:18.0400 0x0ddc  C:\Windows\System32\cryptsvc.dll - ok
03:08:18.0416 0x0ddc  [ A1E41E09424E90F4A059776F30520465, BD968BDEE067B54BB2E63EE459538DC6B7127B6832BE5F5AA046E87753A95DE8 ] C:\Windows\System32\cryptnet.dll
03:08:18.0416 0x0ddc  C:\Windows\System32\cryptnet.dll - ok
03:08:18.0416 0x0ddc  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567, 426FB40A065FEF61980C803EF72D0D326C623340C3AE99CA8AFFDEFB81E8D49D ] C:\Windows\System32\vssapi.dll
03:08:18.0416 0x0ddc  C:\Windows\System32\vssapi.dll - ok
03:08:18.0432 0x0ddc  [ 4D30F14748E6D71A57D7689720EDB4DC, 587C2732CC538FB84ACC1C8F0B561EDA008C877F271D9A83B77339115618E791 ] C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll
03:08:18.0432 0x0ddc  C:\Program Files\Common Files\Apple\Mobile Device Support\MobileDevice.dll - ok
03:08:18.0432 0x0ddc  [ 287923557447D7E4BDD7E65B1F0F5428, 14D85A0F036F28D77AA9723C3D7E8C4DA9BDFF8A1AD9BEA6FE5756DBF5D00F08 ] C:\Windows\System32\vsstrace.dll
03:08:18.0447 0x0ddc  C:\Windows\System32\vsstrace.dll - ok
03:08:18.0447 0x0ddc  [ 807935024E2CCCF9D13BD5E3A8592204, B26B7C031C1B3A411166F80469A81B196C5A9DA8B684A0C176FFB4B17D6F7B78 ] C:\Program Files (x86)\Cybereason\RansomFree\CybereasonRansomFreeServiceHost.exe
03:08:18.0447 0x0ddc  C:\Program Files (x86)\Cybereason\RansomFree\CybereasonRansomFreeServiceHost.exe - ok
03:08:18.0463 0x0ddc  [ 3AF3C9D98E5020E55DA67E3BD468D59D, 3A98D10A2792713D8368920CB139323AAE576BEE3CA70F5AB23F91AF4F2BB244 ] C:\Windows\SysWOW64\ntdll.dll
03:08:18.0463 0x0ddc  C:\Windows\SysWOW64\ntdll.dll - ok
03:08:18.0463 0x0ddc  [ 616EC66D028ECF7242CF8503252FA4A7, F2710ED70919125C17610F6B910540C6405C674620DAB7B419348DCD8A852664 ] C:\Windows\System32\wow64.dll
03:08:18.0463 0x0ddc  C:\Windows\System32\wow64.dll - ok
03:08:18.0478 0x0ddc  [ 73397A9CEED7DC377DE27E49D9C3FDEE, 8395DEBA25C66543C4A156F118AD65DFB732CF6050A25901F4BA8C15234EDE88 ] C:\Windows\System32\wow64win.dll
03:08:18.0478 0x0ddc  C:\Windows\System32\wow64win.dll - ok
03:08:18.0478 0x0ddc  [ 1A5C6A10C34F38D12F121B3A175DE3A6, 5F48D5E37BD0B2F3F4901A8500F4317B312264FAFF40F62A64EF3670CB9C8F8B ] C:\Windows\System32\wow64cpu.dll
03:08:18.0478 0x0ddc  C:\Windows\System32\wow64cpu.dll - ok
03:08:18.0494 0x0ddc  [ 461E66E464906659438E351F90DC2F07, DD280407B0A3FC390E48DBE3D166BF0C6BB1727A01BF50BF5042AE72466FA5BC ] C:\Windows\SysWOW64\kernel32.dll
03:08:18.0494 0x0ddc  C:\Windows\SysWOW64\kernel32.dll - ok
03:08:18.0494 0x0ddc  [ D83947A58613E9091B4C9CC0F1546A8D, C71DF6E18E2099FC462717B8658D39C607A62C7E7A1E5CD0E258C17434535AD0 ] C:\Windows\SysWOW64\mscoree.dll
03:08:18.0494 0x0ddc  C:\Windows\SysWOW64\mscoree.dll - ok
03:08:18.0510 0x0ddc  [ 0E66441D514C6CE6E3F8E0BFE368A561, A921643DBC10A5ED10A6600275A355C9CAE983420122EA0B2CA8D8093A7EE48F ] C:\Windows\SysWOW64\KernelBase.dll
03:08:18.0510 0x0ddc  C:\Windows\SysWOW64\KernelBase.dll - ok
03:08:18.0510 0x0ddc  [ DF132F0CDEF8B997EEE1FA016DBA2007, 65F8B8E40DD002723A3D77C11EC69737790B2884D6D3263068EDCE3DF1E1CA04 ] C:\Windows\SysWOW64\advapi32.dll
03:08:18.0510 0x0ddc  C:\Windows\SysWOW64\advapi32.dll - ok
03:08:18.0525 0x0ddc  [ 9DC80A8AAAAAC397BDAB3C67165A824E, 051636BFDFF7AB0E4191354E846BD0DACCA1A01FCC13C1AFED91D8DBFE17127A ] C:\Windows\SysWOW64\msvcrt.dll
03:08:18.0525 0x0ddc  C:\Windows\SysWOW64\msvcrt.dll - ok
03:08:18.0525 0x0ddc  [ 65A5E27C2217D606E212B6088CCD6104, 3D2E4CB0956D30307FE6440E4FCA0E327DCD2643113860BE526383E7934A495C ] C:\Windows\SysWOW64\sechost.dll
03:08:18.0525 0x0ddc  C:\Windows\SysWOW64\sechost.dll - ok
03:08:18.0541 0x0ddc  [ 05EEAB5333915AC5FC14923348699767, EF96F6240D4BDA1BA4AE38EEFFBF564C64EB2E90EDEFE4CABD1C56BB31ED78F9 ] C:\Windows\SysWOW64\rpcrt4.dll
03:08:18.0541 0x0ddc  C:\Windows\SysWOW64\rpcrt4.dll - ok
03:08:18.0541 0x0ddc  [ DE62FC01C84E8BE6939FC0861C7B5E65, 96B080C2F66588AD1C77D649281BCB86163E5AED4C1A5F876B8A5635F0C4419D ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
03:08:18.0541 0x0ddc  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
03:08:18.0556 0x0ddc  [ 04C83F9778935F4B8053B60FAECD00F8, B3AA5E25FE55EF904CC705EE0571FD8567F7FD1FAEE43A82C1B4493DE9E922A2 ] C:\Windows\SysWOW64\cryptbase.dll
03:08:18.0556 0x0ddc  C:\Windows\SysWOW64\cryptbase.dll - ok
03:08:18.0556 0x0ddc  [ 664AAEAD250E379B8EA659E6FBA88FB7, 68313423BB44906EE95C3CFF64EFFD16362ED7FF9C0D0BAE57652BD74543C02C ] C:\Windows\SysWOW64\sspicli.dll
03:08:18.0556 0x0ddc  C:\Windows\SysWOW64\sspicli.dll - ok
03:08:18.0572 0x0ddc  [ 8CC3C111D653E96F3EA1590891491D71, 1D326D7D116D76876EE2B14A5BFB7B4328E21DB9B5AAAB9CB67F8EFB93924230 ] C:\Windows\SysWOW64\shlwapi.dll
03:08:18.0572 0x0ddc  C:\Windows\SysWOW64\shlwapi.dll - ok
03:08:18.0588 0x0ddc  [ E069A3B525828F055D9BF71A1B3DBC1E, 8A6F581D598768C4A9EEAD68C88365A440756C7D9391343B179FDCDD74ECF4DB ] C:\Windows\SysWOW64\gdi32.dll
03:08:18.0588 0x0ddc  C:\Windows\SysWOW64\gdi32.dll - ok
03:08:18.0588 0x0ddc  [ 3CB074875AC88A7C1010A2A7F9881A8C, 186B5BFE4601BFBBF6612EAE1276D0FB91E2B4FADBD84FC23148D79E2D8D88CD ] C:\Windows\SysWOW64\user32.dll
03:08:18.0588 0x0ddc  C:\Windows\SysWOW64\user32.dll - ok
03:08:18.0603 0x0ddc  [ 39A7A83537FB505CE49F7370E5FFE051, 8AE4A53D551EDC72244ECA267F5AF9EB5DAB7251C39BB766A32CCE451D3D9E54 ] C:\Windows\SysWOW64\lpk.dll
03:08:18.0603 0x0ddc  C:\Windows\SysWOW64\lpk.dll - ok
03:08:18.0603 0x0ddc  [ F8C7346CE9939F2E67887E2300F25694, F2564D76BDF08619545643F7ED58B31E776D1658D07131B289563051EEBB8B83 ] C:\Windows\SysWOW64\usp10.dll
03:08:18.0603 0x0ddc  C:\Windows\SysWOW64\usp10.dll - ok
03:08:18.0619 0x0ddc  [ A6F09E5669D9A19035F6D942CAA15882, 68C8AF0CC1923E3A7245392F2480EE665D265DF300A609D2540BF7C6D9C1A1BE ] C:\Windows\SysWOW64\imm32.dll
03:08:18.0619 0x0ddc  C:\Windows\SysWOW64\imm32.dll - ok
03:08:18.0619 0x0ddc  [ AF40FDAB98B0FF209632C3403DB6C39F, 6C16547B62EFF941F840E23F23A653D607F701390DFB7B845764F40DE70B66CE ] C:\Windows\SysWOW64\msctf.dll
03:08:18.0619 0x0ddc  C:\Windows\SysWOW64\msctf.dll - ok
03:08:18.0634 0x0ddc  [ 702254574E7E52052DE39408457B7149, 645CA9E88DA21C63710A04A0F54421018DF415A3D612112C71A255C49325C082 ] C:\Windows\SysWOW64\version.dll
03:08:18.0634 0x0ddc  C:\Windows\SysWOW64\version.dll - ok
03:08:18.0650 0x0ddc  [ F0E8C1B0348B24E57D86EBC3CDB57701, 9525D767F2C621B97BBB4016C8303FD22B645FD72BAFF38B13B72235D8BC882D ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
03:08:18.0650 0x0ddc  C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll - ok
03:08:18.0650 0x0ddc  [ 05D721CABA1C90ACDA8A780DA97602E2, DC18CC80C68D13EF9030730688AE15FE7D9AA8D9273AE299EAD5C49766E4FCE1 ] C:\Windows\SysWOW64\msvcr120_clr0400.dll
03:08:18.0650 0x0ddc  C:\Windows\SysWOW64\msvcr120_clr0400.dll - ok
03:08:18.0666 0x0ddc  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB, 018CB95A43CEA2063EA24691C71D51EF60D522C21502ABA8AD93876363D4B857 ] C:\Windows\System32\taskschd.dll
03:08:18.0666 0x0ddc  C:\Windows\System32\taskschd.dll - ok
03:08:18.0666 0x0ddc  [ 7E8A51CD2F96851AFC0FB492307194CF, 001A658343FDB054F076F93A6843EB0303BEAB5DB2773DC2509889C30D65DBD7 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\22478b54e1cc995a45aafd8e6482de96\mscorlib.ni.dll
03:08:18.0666 0x0ddc  C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\22478b54e1cc995a45aafd8e6482de96\mscorlib.ni.dll - ok
03:08:18.0681 0x0ddc  [ 3023B8536E746F9F1BBCD9A466F73126, CD76D8BFF8A68EDAC1F9D74475E22B2BBF655F8F582C302F79390881D02949D3 ] C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll
03:08:18.0681 0x0ddc  C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
03:08:18.0697 0x0ddc  [ 9C89AB070A58C2F4E1EDC582A367F5E4, BF9B95A65BB45F7E3EE04266C50A3B8FB1C3B32F14F251FD26DF41062505C11F ] C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
03:08:18.0697 0x0ddc  C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll - ok
03:08:18.0697 0x0ddc  [ AEB29CCC27E16C4FD223A00189B44524, D28C7AB34842B6149609BD4E6B566DDAB8B891F0D5062480A253EF20A6A2CAAA ] C:\Windows\System32\msvcr120.dll
03:08:18.0697 0x0ddc  C:\Windows\System32\msvcr120.dll - ok
03:08:18.0712 0x0ddc  [ BA2415151C3D23E514D882948B860437, EF93C9C7C6FE9AC31F3960133FAB73DA9DB283A09086C554AB9EF8D2824ADBE5 ] C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll
03:08:18.0712 0x0ddc  C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
03:08:18.0712 0x0ddc  [ 62D6C213F934913DC3225AEDE151954B, A16B9E73AD1EC119BEF35A64B5534690721E7BCB6BDC02E03D4F49FF51C52895 ] C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
03:08:18.0712 0x0ddc  C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll - ok
03:08:18.0728 0x0ddc  [ 56C419D44417BED424A155213F77919E, 5C0E21C7104BCF9C4BBAF4C1198D73B4B33847862D2EB46F2DE9B6F1803E266F ] C:\Windows\SysWOW64\ole32.dll
03:08:18.0728 0x0ddc  C:\Windows\SysWOW64\ole32.dll - ok
03:08:18.0744 0x0ddc  [ 3F57E008E7770A0B1F8E0E4D20DEBE2C, 13F132C050875F009913CD97192A32446A2CD219FF76CF4F2ED1D6B7D04E9FFC ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
03:08:18.0744 0x0ddc  C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll - ok
03:08:18.0744 0x0ddc  [ 94E1C3A20358DB82B31677318BBEB120, 5BAD3AB85AA076E6F28FA117E6CE07F2FF533A8BDF03253CE5C92FDFBA4A94AD ] C:\Windows\SysWOW64\oleaut32.dll
03:08:18.0744 0x0ddc  C:\Windows\SysWOW64\oleaut32.dll - ok
03:08:18.0759 0x0ddc  [ 7CA0CF8F8220F542970CDB93AABE6616, 702694E378A52B9C04E029A571315AF4793CEBD5D0999B262851EF553A01808B ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System\fa56ed44f40dcc8511432234235cf02a\System.ni.dll
03:08:18.0759 0x0ddc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System\fa56ed44f40dcc8511432234235cf02a\System.ni.dll - ok
03:08:18.0775 0x0ddc  [ 2F7D7FD24B4348E35B14009654A3D2E3, 3BD68BCA7AFB9D4DCDA18BED336E61ADCFE5019E8F480A5CC38D1F4E15D97449 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Serv759bfb78#\03cd7bbe5ebd7a3f55864dde93aa0461\System.ServiceProcess.ni.dll
03:08:18.0775 0x0ddc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Serv759bfb78#\03cd7bbe5ebd7a3f55864dde93aa0461\System.ServiceProcess.ni.dll - ok
03:08:18.0775 0x0ddc  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] C:\Windows\System32\dps.dll
03:08:18.0775 0x0ddc  C:\Windows\System32\dps.dll - ok
03:08:18.0790 0x0ddc  [ 6126453092FA569A3BE85B39586A845C, FE7F15F322667B064EBF17EC0B2F62B983F091D4E51AD47626ECAF53DB1E887A ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\1bda562ed7c258d4bb471509de189a1a\System.Core.ni.dll
03:08:18.0790 0x0ddc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\1bda562ed7c258d4bb471509de189a1a\System.Core.ni.dll - ok
03:08:18.0790 0x0ddc  [ EE9954237F15BE4DD9304D12E4D305ED, F295C9BAF20F0E669B673AFCC16B4969EE31B6A3808980DAB93D9B0F167DA3C0 ] C:\Windows\System32\diagtrack.dll
03:08:18.0790 0x0ddc  C:\Windows\System32\diagtrack.dll - ok
03:08:18.0806 0x0ddc  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] C:\Windows\System32\wdi.dll
03:08:18.0806 0x0ddc  C:\Windows\System32\wdi.dll - ok
03:08:18.0806 0x0ddc  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] C:\Windows\ehome\ehrecvr.exe
03:08:18.0806 0x0ddc  C:\Windows\ehome\ehrecvr.exe - ok
03:08:18.0822 0x0ddc  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] C:\Windows\ehome\ehsched.exe
03:08:18.0822 0x0ddc  C:\Windows\ehome\ehsched.exe - ok
03:08:18.0822 0x0ddc  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] C:\Windows\System32\fdPHost.dll
03:08:18.0822 0x0ddc  C:\Windows\System32\fdPHost.dll - ok
03:08:18.0837 0x0ddc  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] C:\Windows\System32\IKEEXT.DLL
03:08:18.0837 0x0ddc  C:\Windows\System32\IKEEXT.DLL - ok
03:08:18.0837 0x0ddc  [ A5AE40808B72A25379A5499AD9977743, A38E9E93BB5A43D14E21DC9F2FE2C6A7C4A6599EDDA9D6E4B6C35908EDADEAB2 ] C:\Windows\System32\sbe.dll
03:08:18.0837 0x0ddc  C:\Windows\System32\sbe.dll - ok
03:08:18.0853 0x0ddc  [ 6CCAD181B5120CD5822D91A5583907F1, 3EE6A23EC39C8E5768190676544A32C0E58D595ABD89880990E72EFD8D7ABCB6 ] C:\Windows\System32\MSVidCtl.dll
03:08:18.0853 0x0ddc  C:\Windows\System32\MSVidCtl.dll - ok
03:08:18.0853 0x0ddc  [ 54886CBED71B55553C0566A804DF60B1, A986F150F2914C5CEAA0F05814FE9E56DF6851E03438018A929271E7BCAC3485 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\ed4e0e85b3eada108684683e4f34a043\System.ServiceModel.ni.dll
03:08:18.0853 0x0ddc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\ed4e0e85b3eada108684683e4f34a043\System.ServiceModel.ni.dll - ok
03:08:18.0868 0x0ddc  [ DF279B2A0A71E3A0B6ED623D98BBEB20, FBDB24129E7C9553EF755FE006661A857473225BDDB9D2B3315A82A2CBFB0EB4 ] C:\Windows\System32\aepic.dll
03:08:18.0868 0x0ddc  C:\Windows\System32\aepic.dll - ok
03:08:18.0868 0x0ddc  [ 32AAD3594896C718117613B0DC0E07FF, 1B6D47AD5D8578395E7FD8B5BE501F5EFAAD552627E15DD025104A37B91D3B91 ] C:\Program Files (x86)\Cybereason\RansomFree\CommonLib.dll
03:08:18.0868 0x0ddc  C:\Program Files (x86)\Cybereason\RansomFree\CommonLib.dll - ok
03:08:18.0884 0x0ddc  [ 0311CCFAB41A3684EA5DBC680F4CBB4F, A561ED38DB5D2365709674795C70815E6301772CF7EF137D73CF67671BF0D270 ] C:\Program Files (x86)\Cybereason\RansomFree\ServiceLib.dll
03:08:18.0884 0x0ddc  C:\Program Files (x86)\Cybereason\RansomFree\ServiceLib.dll - ok
03:08:18.0884 0x0ddc  [ 6D16E9DB9569E82F09E5037C361BD0FC, 6D2B442B355D1D3D3417D71145E859F2A9F384ED5FBEE9E2C509C7B79B01952E ] C:\Windows\SysWOW64\shell32.dll
03:08:18.0884 0x0ddc  C:\Windows\SysWOW64\shell32.dll - ok
03:08:18.0900 0x0ddc  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] C:\Windows\System32\FDResPub.dll
03:08:18.0900 0x0ddc  C:\Windows\System32\FDResPub.dll - ok
03:08:18.0915 0x0ddc  [ C733D233B623B7FFCE5031E4B756EE26, 33CC8B140B0E4A9B702E3468BE2646AEE4273F20C6EA5BAC6C3D8FC8EDEF0881 ] C:\Windows\SysWOW64\profapi.dll
03:08:18.0915 0x0ddc  C:\Windows\SysWOW64\profapi.dll - ok
03:08:18.0915 0x0ddc  [ 171D7DB433314A868507C4326E8209DC, 254E0D9F99CE47104CF21D8E968D89D6A09B9CE47168E760BAB28AD5A1E9E6A3 ] C:\Windows\System32\fdWSD.dll
03:08:18.0915 0x0ddc  C:\Windows\System32\fdWSD.dll - ok
03:08:18.0931 0x0ddc  [ 76E9F52E190F3CD41C820751B961C398, CEC81C3262047B31E02EFD867921C7F3D2EC1F1B0913BF3E1FA52C966810B2D1 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll
03:08:18.0931 0x0ddc  C:\Windows\Microsoft.NET\Framework\v4.0.30319\nlssorting.dll - ok
03:08:18.0931 0x0ddc  [ FF0C034BCEA42C4FAA05A75F8AECB461, 9693669A4B2EAD4651BA048571EABD915B96105F938E766D6F487CB74A086854 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\fd39cc80d745839b391885f6dee39013\System.Configuration.ni.dll
03:08:18.0931 0x0ddc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\fd39cc80d745839b391885f6dee39013\System.Configuration.ni.dll - ok
03:08:18.0946 0x0ddc  [ CB137DA11800E75AB670C2BA660CB39C, 36D12B58A19B5ADDDF74A08086050494BE1794089D125EE5AB840640BD4BD452 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\d8bf4cfed7f00881cc3dbccb8956b3d6\System.Xml.ni.dll
03:08:18.0946 0x0ddc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\d8bf4cfed7f00881cc3dbccb8956b3d6\System.Xml.ni.dll - ok
03:08:18.0946 0x0ddc  [ F1B205F932F62F94506A5F332C895DAF, F02F01F20F655DD919C71AE814E4C3DD43330AAD1425FC5B1497F1613917CCDE ] C:\Windows\System32\WSDApi.dll
03:08:18.0946 0x0ddc  C:\Windows\System32\WSDApi.dll - ok
03:08:18.0962 0x0ddc  [ 05AF16BC5D380658CEC1AA6FE0BD947A, 8748CCA806E6D003D5500F1A0896DC1B360B4768FE3CDFBFF85B0A6FAB6A40C5 ] C:\Windows\SysWOW64\urlmon.dll
03:08:18.0962 0x0ddc  C:\Windows\SysWOW64\urlmon.dll - ok
03:08:18.0978 0x0ddc  [ 1C60E09CA1C3A045BC4D367F67C915B7, DF1ED88CB57DA1AB1A4245AE0D5B42AFA3396EBF67B99411FFFB0DD06DE1AEAF ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
03:08:18.0978 0x0ddc  C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
03:08:18.0978 0x0ddc  [ 6951562DC4625EEFC6EACD52AD165866, 44A0B3EA0232D613A5B4115492DF2A7CEF25B35300E6A3E3E50C9544C5D1049E ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
03:08:18.0978 0x0ddc  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
03:08:18.0993 0x0ddc  [ 6A13B4F3B3F575F1E24B877B9359AABA, 676AD5F8F709D4A9DCE9938D82DEEE329C9A385A6969C169B3DF37AA75F1E4C7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
03:08:18.0993 0x0ddc  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
03:08:18.0993 0x0ddc  [ 2E33DFD10F28F86C3FC40EE123CC3904, 57C65671A04EFCA437A69E8E97B2FCA17897EE4608C7DB69F77D44FBD3490B50 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
03:08:18.0993 0x0ddc  C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
03:08:19.0009 0x0ddc  [ 589CBC4989F750E1DA35625AB481CF43, B93E1B8C3775F9C995FD5451C685A06DEFD24AE1DF0DD99D19D5E4B9AC0010F9 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
03:08:19.0009 0x0ddc  C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
03:08:19.0009 0x0ddc  [ 3BE0D923AA45A4DBE091C2D84F0B4FE7, 603EEC55D6F646150FC3F0F2C939CFE434C02FC7A7AB23B1FEC8B5C77E4C8381 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
03:08:19.0009 0x0ddc  C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
03:08:19.0024 0x0ddc  [ 223D206D7D220462BF15BD46E817735B, 21D2EFAAEF7AC255D47397944FF150588DD11240FDF0B5E60AC0AC8A545AFF79 ] C:\Windows\SysWOW64\iertutil.dll
03:08:19.0024 0x0ddc  C:\Windows\SysWOW64\iertutil.dll - ok
03:08:19.0024 0x0ddc  [ 35A2EB134341DA91D80ED9D82B3AC460, B8E62BECF7F68C6CA716D1FF61CF8713B21D55091446DA1E9A802CC6575D4C7B ] C:\Windows\SysWOW64\wininet.dll
03:08:19.0024 0x0ddc  C:\Windows\SysWOW64\wininet.dll - ok
03:08:19.0040 0x0ddc  [ D15618A0FF8DBC2C5BF3726BACC75A0B, ADD81EA1D208907D67802F0E96EC0327BA89021F870BA22B9C7E3A19013A6AE7 ] C:\Windows\SysWOW64\userenv.dll
03:08:19.0040 0x0ddc  C:\Windows\SysWOW64\userenv.dll - ok
03:08:19.0040 0x0ddc  [ D72B4A7B7ED6A419D9573D9DC402E278, 5B53E654E7360631CC3C071AA80329B96BE11AC8EC5128956AE13CB8758ED5D7 ] C:\Windows\SysWOW64\secur32.dll
03:08:19.0040 0x0ddc  C:\Windows\SysWOW64\secur32.dll - ok
03:08:19.0040 0x0ddc  [ 893C44082C97F7AED3E7C180FA1F93D8, E09740D26A0C9723DE55173134DBBEB663A34085297AB14D7AEACD2BD594E55B ] C:\Windows\System32\mpnotify.exe
03:08:19.0040 0x0ddc  C:\Windows\System32\mpnotify.exe - ok
03:08:19.0056 0x0ddc  [ 49ACA548B2423F1C67898E6AC719A9A6, 23D84137EAB9AFDD31CBB6776B6B25AD135A120AF7F7885EB5BBF9E0A2CCC4C1 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
03:08:19.0056 0x0ddc  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
03:08:19.0056 0x0ddc  [ D161CB594609D47C8E9B7599F3195E56, C073AA83C47D9BAF76874EFB3F822A54A63A95A015C05A444ED662005C2A39B6 ] C:\Windows\SysWOW64\cryptsp.dll
03:08:19.0056 0x0ddc  C:\Windows\SysWOW64\cryptsp.dll - ok
03:08:19.0071 0x0ddc  [ ED8EC63F7522DF4852147C84EC62C36A, 75633011CD28DCBD4834211A9D415F17DE15BFCD80FB9FF6CE25CBBD4E9899AF ] C:\Windows\SysWOW64\rsaenh.dll
03:08:19.0071 0x0ddc  C:\Windows\SysWOW64\rsaenh.dll - ok
03:08:19.0087 0x0ddc  [ E484D054974407C42F19A7F167390510, 9ECAAAD0341EEF794059EA28C5767A178DA503A13C4160F508FE8C9C0A17B7EA ] C:\Program Files (x86)\Cybereason\RansomFree\AWSSDK.S3.dll
03:08:19.0087 0x0ddc  C:\Program Files (x86)\Cybereason\RansomFree\AWSSDK.S3.dll - ok
03:08:19.0087 0x0ddc  [ 4BB3366E2807AA61C34F340AA113B599, 0E292CB75BAA197C17DF2210880DA9603A0ED9F7EFDE93850C7ACD6D146B2E57 ] C:\Program Files (x86)\Cybereason\RansomFree\AWSSDK.Core.dll
03:08:19.0087 0x0ddc  C:\Program Files (x86)\Cybereason\RansomFree\AWSSDK.Core.dll - ok
03:08:19.0102 0x0ddc  [ 76F8314938C89995ED5FABEB6D9983DA, C05A147489D73FD1A2F60CE8A42E2A9EFCB1225B60FDEB8ED0808B243122B31F ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\883da993c9ce76ed802dd3124f9f6e18\System.Xml.Linq.ni.dll
03:08:19.0102 0x0ddc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\883da993c9ce76ed802dd3124f9f6e18\System.Xml.Linq.ni.dll - ok
03:08:19.0102 0x0ddc  [ 3FD15B4611D9BDA3F8013548C0ECAECA, B47A8D9985D9B71EB870816A0AB2B6403D394CCBDF7DE5378D5721D58D68D28D ] C:\Windows\SysWOW64\ntmarta.dll
03:08:19.0102 0x0ddc  C:\Windows\SysWOW64\ntmarta.dll - ok
03:08:19.0118 0x0ddc  [ 2F929C103155EE98EFB649FE9AF21740, A4358DA50F7C28C7A44D7FC06DE523849DAFF9C9D4EEA8E98609428CFA65535E ] C:\Windows\SysWOW64\Wldap32.dll
03:08:19.0118 0x0ddc  C:\Windows\SysWOW64\Wldap32.dll - ok
03:08:19.0118 0x0ddc  [ 627ABE4821ABA9655D0FD2127E692ADD, 02E0F6A23591B50B1009583733EE6D6A4B33E8C554FCAF37E40492D1FC444B00 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\43e4de0bf73c2ce5b33a8d694d49f639\System.ServiceModel.Internals.ni.dll
03:08:19.0118 0x0ddc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\43e4de0bf73c2ce5b33a8d694d49f639\System.ServiceModel.Internals.ni.dll - ok
03:08:19.0134 0x0ddc  [ 24B39B75D70BBAC5C288CB900F5408D2, AB64A619FE5015DCCFB72211BE130B24A8B13C32D44CBA66E00CF35EA3452C56 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\c969df8eb17423483adda1576401e06d\SMDiagnostics.ni.dll
03:08:19.0134 0x0ddc  C:\Windows\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\c969df8eb17423483adda1576401e06d\SMDiagnostics.ni.dll - ok
03:08:19.0134 0x0ddc  [ E19BF6AD352D3DE64A11C50DE4A95D18, 183B6319E591941E7B8A7394E21181187D8393DC0A828975247B9E822B5EE179 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\3baf132c36d199308140b8a0efdc89f5\System.Runtime.Serialization.ni.dll
03:08:19.0134 0x0ddc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\3baf132c36d199308140b8a0efdc89f5\System.Runtime.Serialization.ni.dll - ok
03:08:19.0149 0x0ddc  [ C55516D98DD5D8F0153C2A9B4227DA86, DBC62B776CF06D0873A4C7CFCDF5B6F5C6E6C41917C326C090BCE58DC66EE09C ] C:\Windows\System32\webservices.dll
03:08:19.0149 0x0ddc  C:\Windows\System32\webservices.dll - ok
03:08:19.0149 0x0ddc  [ 5893EBDCE371174AC89ECD7731DD6D77, 31CC55F4724CFD95E48954B38C0A04D674399FD243083A816893ED5E5A770086 ] C:\Windows\SysWOW64\pcwum.dll
03:08:19.0149 0x0ddc  C:\Windows\SysWOW64\pcwum.dll - ok
03:08:19.0165 0x0ddc  [ B755B402D20A893D4A53AF2DB555B20B, B6AA2A5A133C36AD282185A077ED735FF316609D2C95AEE988B0516D30267CD0 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\f87a777c285fb4bf231841a4c6a86012\System.IdentityModel.ni.dll
03:08:19.0165 0x0ddc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\f87a777c285fb4bf231841a4c6a86012\System.IdentityModel.ni.dll - ok
03:08:19.0165 0x0ddc  [ 59EA5753EBDAE42CF92FD5B6E7AE4D53, D99C852E324D2ABE6B1DBD9A11F3BAAFEF50E955D17EB97DBE9C528AD8740C0E ] C:\Windows\SysWOW64\ws2_32.dll
03:08:19.0165 0x0ddc  C:\Windows\SysWOW64\ws2_32.dll - ok
03:08:19.0180 0x0ddc  [ 0723A00C740A0D1B5460FBFE048C3E68, 97FC7478E135EA3F5E7A9579DD4AC0D6553FE8F0664203B25C15721519C9E5C3 ] C:\Windows\SysWOW64\nsi.dll
03:08:19.0180 0x0ddc  C:\Windows\SysWOW64\nsi.dll - ok
03:08:19.0180 0x0ddc  [ A88241C2A519AFD2C99A40000F9113E6, 9E3E7A4AF64A0173E61A2D6464ED1CEBB128EFA72E8FE57683EBA3505934A894 ] C:\Windows\SysWOW64\mswsock.dll
03:08:19.0180 0x0ddc  C:\Windows\SysWOW64\mswsock.dll - ok
03:08:19.0196 0x0ddc  [ EE5C8E27C37B79CB54A2FCEEED2DC262, 0A5E200FD65A491756B951A4A0ED39B88B7B313E97C2BBF3C91AC4C290772BB7 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
03:08:19.0196 0x0ddc  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
03:08:19.0196 0x0ddc  [ 4DA800357B4566010AF85194B2E55783, B66ABAE28098D21DBE02B08D8F9B2BBBABA107EB4B029B84066FC890FE99CF3C ] C:\Program Files (x86)\Cybereason\RansomFree\crsdll.dll
03:08:19.0196 0x0ddc  C:\Program Files (x86)\Cybereason\RansomFree\crsdll.dll - ok
03:08:19.0212 0x0ddc  [ 73E8667A19FEEDD856DF2695E9E511D4, 68D66C36D1F293D10ADCC6A33C870F989A29743537592CF172F02E794BEAFD1C ] C:\Windows\SysWOW64\wship6.dll
03:08:19.0212 0x0ddc  C:\Windows\SysWOW64\wship6.dll - ok
03:08:19.0212 0x0ddc  [ 6CEF7856A3EFAC59470F6208F0F585CE, 0F7A80DB821FDE6580E9481B6DA44844F717DDB4983B0E3D562BE43726153951 ] C:\Windows\System32\mpr.dll
03:08:19.0212 0x0ddc  C:\Windows\System32\mpr.dll - ok
03:08:19.0227 0x0ddc  [ 9F466EF69389A8A3DCBAC655A4CA2D85, 6A572F5557E5CB85DEDAF9D8694006B4DE4EDBA34F53FE1C930BA9BDBA2437F3 ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.23894_none_5c0be957a009922e\GdiPlus.dll
03:08:19.0227 0x0ddc  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.23894_none_5c0be957a009922e\GdiPlus.dll - ok
03:08:19.0227 0x0ddc  [ 2FCA0D2C59A855C54BAFA22AA329DF0F, ED9D26F539065D62FCCEDEEC8E509B30F4D15F8DA586C1F657ACEFE9DABAACD0 ] C:\Windows\SysWOW64\netapi32.dll
03:08:19.0227 0x0ddc  C:\Windows\SysWOW64\netapi32.dll - ok
03:08:19.0243 0x0ddc  [ 20B3934DB73EABA2B49B7177873CB81F, 492EAC5C51472B43DE11825358AEC4B9E3A081DACFD7513C696D6FE40F302EE5 ] C:\Windows\SysWOW64\netutils.dll
03:08:19.0243 0x0ddc  C:\Windows\SysWOW64\netutils.dll - ok
03:08:19.0243 0x0ddc  [ 6A6B2EE4565A178035BE2A4FF6F2C968, E2E231F1C2E2CE19583483ACC53318651FA7CA2DE46BCB89B4CBF97CA0525122 ] C:\Windows\SysWOW64\wtsapi32.dll
03:08:19.0243 0x0ddc  C:\Windows\SysWOW64\wtsapi32.dll - ok
03:08:19.0258 0x0ddc  [ 5CCDCD40E732D54E0F7451AC66AC1C87, 66F4DA105BD72E41250CD59E2B3CD931B47AC9FDB6C784B9E33C5EE1AC29841F ] C:\Windows\SysWOW64\srvcli.dll
03:08:19.0258 0x0ddc  C:\Windows\SysWOW64\srvcli.dll - ok
03:08:19.0258 0x0ddc  [ 09E512220E90ADDA6E818120BB528B0A, 3C15E136748D3AC6E9641C93C79A0C447F300E0770EF228FB2ECE4DFA07D85BA ] C:\Windows\SysWOW64\wintrust.dll
03:08:19.0258 0x0ddc  C:\Windows\SysWOW64\wintrust.dll - ok
03:08:19.0274 0x0ddc  [ E5A4A1326A02F8E7B59E6C3270CE7202, DCB76016F9AC47E631540874DA208A089F9D529DA9628705A2869B954526BFE0 ] C:\Windows\SysWOW64\wkscli.dll
03:08:19.0274 0x0ddc  C:\Windows\SysWOW64\wkscli.dll - ok
03:08:19.0274 0x0ddc  [ 6B1E1D3D3DB1C1FAD675E01C6FBEF330, 2D90E7DFBBA8ACE01A6D97642A57F6DA869B96BE2C255881913891459D42FB36 ] C:\Windows\SysWOW64\crypt32.dll
03:08:19.0274 0x0ddc  C:\Windows\SysWOW64\crypt32.dll - ok
03:08:19.0290 0x0ddc  [ 77B5035BC6EDF4D1B6265391AECEE4C0, FE69B715F04446BD42AF1B672E6AC54E954CFE0C847BFD2056CB11CF017B1844 ] C:\Windows\System32\vpnikeapi.dll
03:08:19.0290 0x0ddc  C:\Windows\System32\vpnikeapi.dll - ok
03:08:19.0290 0x0ddc  [ 938F39B50BAFE13D6F58C7790682C010, 902000EE51EFEABAF6A4B30F880AA37083D2232C6FC622CA513C4A823390FEDA ] C:\Windows\SysWOW64\msasn1.dll
03:08:19.0290 0x0ddc  C:\Windows\SysWOW64\msasn1.dll - ok
03:08:19.0305 0x0ddc  [ 8494E126F0B10180F3293AF861CE1F7A, 538B1F30423DB2398E611BC46C80150C090698E633BABF7362F7060DBF0C3064 ] C:\Windows\System32\mlang.dll
03:08:19.0305 0x0ddc  C:\Windows\System32\mlang.dll - ok
03:08:19.0305 0x0ddc  [ B5055B51BAA0FD0A736A88653DA3C1C0, A3BD057C7E8C926930BA7E9D11427D26FB37267026A0B72AB4021101EE424F74 ] C:\Windows\System32\fundisc.dll
03:08:19.0305 0x0ddc  C:\Windows\System32\fundisc.dll - ok
03:08:19.0321 0x0ddc  [ 689D9CDD33B5524035532918E2799488, 5367DF987C4DA6F36512DDFD482C6E537C9FFF1B138274680A6E5D817EF38328 ] C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe
03:08:19.0321 0x0ddc  C:\Program Files (x86)\IObit\IObit Uninstaller\IUService.exe - ok
03:08:19.0321 0x0ddc  [ A832C6AF6A812F838C993ABAE53FC1AE, 200C2ADFDC59C139E266EE71EB45091C53D5C3F592F01345AE388498A86B8972 ] C:\Program Files (x86)\IObit\IObit Uninstaller\rtl120.bpl
03:08:19.0321 0x0ddc  C:\Program Files (x86)\IObit\IObit Uninstaller\rtl120.bpl - ok
03:08:19.0336 0x0ddc  [ FFE6670F3E359484E6B62841203571E0, 082034D7D027B243F3743BD435D124DE8B95F0ADAF4EE0C7709891D626CC5325 ] C:\Windows\System32\quartz.dll
03:08:19.0336 0x0ddc  C:\Windows\System32\quartz.dll - ok
03:08:19.0336 0x0ddc  [ E7B9D5FF20FFDD4AAE2EF1D1B8C27A37, 689D126B1B42140D5049015E3E324268E6542D4BC6CC14E31D8B89A25B94BAA5 ] C:\Windows\SysWOW64\imagehlp.dll
03:08:19.0336 0x0ddc  C:\Windows\SysWOW64\imagehlp.dll - ok
03:08:19.0352 0x0ddc  [ B9A8CBCFCD3EC9D2EA4740AF347BF108, 97FA304E3880BC863D999F441AE47CB8ADF00D2DEC2A52ACD8FBD02CC096786A ] C:\Windows\SysWOW64\mpr.dll
03:08:19.0352 0x0ddc  C:\Windows\SysWOW64\mpr.dll - ok
03:08:19.0368 0x0ddc  [ 8E01332CC4B68BC6B5B7EFFE374442AA, A4AD1D2FD3EC2F26949DBBC388F9FFF3713AD7EB4E9220AF817EBB5223E467C6 ] C:\Windows\SysWOW64\oleacc.dll
03:08:19.0368 0x0ddc  C:\Windows\SysWOW64\oleacc.dll - ok
03:08:19.0368 0x0ddc  [ DF13A51A5C591887D2EC6AE64CEED0FA, DFD503AEBCAA056B2B0E669ACA52F6D26F4E6892F2DCFCCD902752C23A621653 ] C:\Windows\SysWOW64\wsock32.dll
03:08:19.0368 0x0ddc  C:\Windows\SysWOW64\wsock32.dll - ok
03:08:19.0383 0x0ddc  [ 81BD3BB0D33C8E85BF6F3A6D1D9E2B57, 8E2B9101F82489D849FAF58093D0D4981EEE97B6788F4297493908D08FA665CA ] C:\Program Files (x86)\IObit\IObit Uninstaller\madexcept_.bpl
03:08:19.0383 0x0ddc  C:\Program Files (x86)\IObit\IObit Uninstaller\madexcept_.bpl - ok
03:08:19.0399 0x0ddc  [ 8FF75C46B2F3F7E97F5E155D8668DB44, C8A1C448E8B0216FE47B80B86D45749DC0F3BF0BC857784CC27B0B7AC5D2CC50 ] C:\Program Files (x86)\IObit\IObit Uninstaller\madbasic_.bpl
03:08:19.0399 0x0ddc  C:\Program Files (x86)\IObit\IObit Uninstaller\madbasic_.bpl - ok
03:08:19.0399 0x0ddc  [ 66D58568C14B24AE248A15319C6EB12F, 9EB1544D62FC3BF683B3E71C663F55444816CBF1C9A65D0EC5FAEFBC9170FAD8 ] C:\Program Files (x86)\IObit\IObit Uninstaller\vcl120.bpl
03:08:19.0399 0x0ddc  C:\Program Files (x86)\IObit\IObit Uninstaller\vcl120.bpl - ok
03:08:19.0414 0x0ddc  [ BCEA9AB347E53BC03B2E36BE0B8BA0EF, 868DEFB78767E91694E83F931725257DF3FF79A4BFED3B914D27F3493EB7A8D0 ] C:\Windows\System32\httpapi.dll
03:08:19.0414 0x0ddc  C:\Windows\System32\httpapi.dll - ok
03:08:19.0430 0x0ddc  [ 18AB2E5A40064ED5F7791AC5946A90F3, B7536CE56702C23B1CEC3E1B6C78866E0A76808B85A92AF3733D9ED9429E004C ] C:\Windows\SysWOW64\msimg32.dll
03:08:19.0430 0x0ddc  C:\Windows\SysWOW64\msimg32.dll - ok
03:08:19.0430 0x0ddc  [ 58788565442368B0615DDAF1D452B843, 4D7A635EB64179A9EF6506189C380CA9710ACE27136D5CA0D25B63575401682B ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18837_none_ec86b8d6858ec0bc\comctl32.dll
03:08:19.0430 0x0ddc  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18837_none_ec86b8d6858ec0bc\comctl32.dll - ok
03:08:19.0446 0x0ddc  [ 885E18B2D0A445FB637850282530EB72, 005BE9EC30390E88C429622EEEE4E2D2840CC3C75992C4A7F0E8A69756B0A2FD ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d\comctl32.dll
03:08:19.0446 0x0ddc  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d\comctl32.dll - ok
03:08:19.0461 0x0ddc  [ D1DE1EAFDE97BE41CF6585027FF3E732, 76F17D4DF440D6734DC8157092D94EB18C2A73A0A49BEEA289E7B3EDE30E86A2 ] C:\Windows\SysWOW64\comdlg32.dll
03:08:19.0461 0x0ddc  C:\Windows\SysWOW64\comdlg32.dll - ok
03:08:19.0461 0x0ddc  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8, B1A9B2EF000917214C0198958CBD239D1D91B1720EC40DF041262A34D302AD74 ] C:\Windows\SysWOW64\winspool.drv
03:08:19.0461 0x0ddc  C:\Windows\SysWOW64\winspool.drv - ok
03:08:19.0477 0x0ddc  [ 936F728E04ACCF3F38801CFFCF1E3F40, 59CA86096F4B928E364B6A3C0408615F068BB8BC02DCFC5EAF4873EC6D6E0797 ] C:\Windows\SysWOW64\oledlg.dll
03:08:19.0477 0x0ddc  C:\Windows\SysWOW64\oledlg.dll - ok
03:08:19.0477 0x0ddc  [ B40420876B9288E0A1C8CCA8A84E5DC9, 0D3C73B45BC708D7B1E26DFB6D4F64031A998548FEA0FB5CE198ED716F7DC9A0 ] C:\Windows\SysWOW64\dnsapi.dll
03:08:19.0477 0x0ddc  C:\Windows\SysWOW64\dnsapi.dll - ok
03:08:19.0492 0x0ddc  [ EFD53F01CC780F01B4079FE58C80BD1E, 635B752EBDF334AC3CC3FEA2573F6B7C0F285CCED5187EBD49178643A014631A ] C:\Program Files (x86)\IObit\IObit Uninstaller\maddisAsm_.bpl
03:08:19.0492 0x0ddc  C:\Program Files (x86)\IObit\IObit Uninstaller\maddisAsm_.bpl - ok
03:08:19.0492 0x0ddc  [ A90DC9ABD65DB1A8902F361103029952, 26798758976CE53251AC342B966BE0363AE1794BD965C452F5DEBC33E18969F0 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
03:08:19.0492 0x0ddc  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
03:08:19.0508 0x0ddc  [ 1E8D06AAE74FED674C1156B3FEA911C2, C1999BA9E436F9E0B9302DC82DF8B214E66372899FD4C0C60C56EE5340BADB9F ] C:\Windows\SysWOW64\Faultrep.dll
03:08:19.0508 0x0ddc  C:\Windows\SysWOW64\Faultrep.dll - ok
03:08:19.0508 0x0ddc  [ F05F26DD4B8640CB71F8C40BD6530FD1, 38AC0E1E7EF6163ECBFDD0A203305B95DDB77C6E8ABA201249B25B6C0769BAD7 ] C:\Windows\SysWOW64\winnsi.dll
03:08:19.0508 0x0ddc  C:\Windows\SysWOW64\winnsi.dll - ok
03:08:19.0524 0x0ddc  [ ED6EE83D61EBC683C2CD8E899EA6FEBE, F82592908D038C44D9F2E5C5B7BC663A2D370FC565F40420E1138A9E55F0E7EB ] C:\Windows\SysWOW64\rasadhlp.dll
03:08:19.0524 0x0ddc  C:\Windows\SysWOW64\rasadhlp.dll - ok
03:08:19.0524 0x0ddc  [ F0D0E883EBBDC7615DC9EDEA0FFB2817, 58F1395445018CB16ED4D3710443FB5B0E087043F6A69F7B10D72D0455958954 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
03:08:19.0524 0x0ddc  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
03:08:19.0539 0x0ddc  [ DE7FCC77F4A503AF4CA6A47D49B3713D, 4BFAA99393F635CD05D91A64DE73EDB5639412C129E049F0FE34F88517A10FC6 ] C:\Windows\System32\drivers\npf.sys
03:08:19.0539 0x0ddc  C:\Windows\System32\drivers\npf.sys - ok
03:08:19.0555 0x0ddc  [ 525B93B761DCCB2D33A58ED603178228, D033B7A05BB35738471E4CFC48249061F7433DF010C3A32C181541EB2E41B41D ] C:\Windows\SysWOW64\WindowsCodecs.dll
03:08:19.0555 0x0ddc  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
03:08:19.0555 0x0ddc  [ EA4D67448BE493D543F1730D6CD04694, 24717C5E41B7CA522F3330EF2228B6685E710A5259396E9887A1C1E7A413F8CA ] C:\Windows\System32\drivers\PEAuth.sys
03:08:19.0555 0x0ddc  C:\Windows\System32\drivers\PEAuth.sys - ok
03:08:19.0570 0x0ddc  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] C:\Windows\System32\sppsvc.exe
03:08:19.0570 0x0ddc  C:\Windows\System32\sppsvc.exe - ok
03:08:19.0570 0x0ddc  [ C53CB62B0E57488AAE41FDA0FF8A0AB9, 93614C72C578E348B66690585F8AC2B53C0C19D2C96AAD3E776D3389CA5E43B6 ] C:\Windows\System32\drivers\srvnet.sys
03:08:19.0570 0x0ddc  C:\Windows\System32\drivers\srvnet.sys - ok
03:08:19.0586 0x0ddc  [ 7FE5586314EE7D6AA8483264A089E5AF, 4E3EA68713A45C22F1B9A1AA125E15D06D0C5E637B815537431ADFB6D7563879 ] C:\Windows\System32\drivers\tcpipreg.sys
03:08:19.0586 0x0ddc  C:\Windows\System32\drivers\tcpipreg.sys - ok
03:08:19.0586 0x0ddc  [ 6A118B401CF3AB7F22B67029FC3A7F4F, F529C402F7D853DD6D4B71655CD45F26AB567DA73187C2C91E153F15C5B63FF4 ] C:\Windows\System32\icaapi.dll
03:08:19.0586 0x0ddc  C:\Windows\System32\icaapi.dll - ok
03:08:19.0602 0x0ddc  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] C:\Windows\System32\wiaservc.dll
03:08:19.0602 0x0ddc  C:\Windows\System32\wiaservc.dll - ok
03:08:19.0602 0x0ddc  [ 91980BDC842D0FDB7F718781B63127D5, 737C6F4EDCFF04FCA1A570775ECD2D0260B2F7349F995DCC1A758559530794CA ] C:\Windows\System32\ThpSrv.exe
03:08:19.0602 0x0ddc  C:\Windows\System32\ThpSrv.exe - ok
03:08:19.0617 0x0ddc  [ FFF95479C7AB1550F0750A5D01744211, FF67F892AABCE1C2B695FF4C0816339566F5745C1498D48FAC050E5196C1CE09 ] C:\Windows\System32\drivers\spsys.sys
03:08:19.0617 0x0ddc  C:\Windows\System32\drivers\spsys.sys - ok
03:08:19.0617 0x0ddc  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5, BDA403E6CACC249C467671FB1FAF7B77FB019326BC18F9F6CF377104520E2654 ] C:\Windows\System32\wiatrace.dll
03:08:19.0617 0x0ddc  C:\Windows\System32\wiatrace.dll - ok
03:08:19.0633 0x0ddc  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] C:\Windows\System32\trkwks.dll
03:08:19.0633 0x0ddc  C:\Windows\System32\trkwks.dll - ok
03:08:19.0633 0x0ddc  [ 7CBB1D4D13DC62D7F529D87151FD3CD3, DA75C5E64777F6ACE6F77A72D3362A40F8BE59DF3E6BC83550A81D9E20730401 ] C:\Program Files\Windows Defender\MpSvc.dll
03:08:19.0633 0x0ddc  C:\Program Files\Windows Defender\MpSvc.dll - ok
03:08:19.0648 0x0ddc  [ F6F22291024906E43D135A4B1705FEAC, C1B66012799D247033E8AB8386B51BC86A4E2255E6D0B163AC000B215C51B42A ] C:\Windows\System32\sppwinob.dll
03:08:19.0648 0x0ddc  C:\Windows\System32\sppwinob.dll - ok
03:08:19.0648 0x0ddc  [ 662BA98309818AF2C17D4E48BF4021C4, 57B3FFAECE3DF5E22B6764A95D2B8523AA02CCCB4BD0779025C11D02EEBF4B1E ] C:\Program Files\Windows Defender\MpClient.dll
03:08:19.0648 0x0ddc  C:\Program Files\Windows Defender\MpClient.dll - ok
03:08:19.0664 0x0ddc  [ A2E5B2D20954210DCE1A75A1FC8CC36D, 1EA240AC37ECA4EC3E542F9E6DF72753EBA1DF76CBA8691EC61ABCC51EE6FCB2 ] C:\Windows\System32\fdSSDP.dll
03:08:19.0664 0x0ddc  C:\Windows\System32\fdSSDP.dll - ok
03:08:19.0680 0x0ddc  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] C:\Windows\System32\w32time.dll
03:08:19.0680 0x0ddc  C:\Windows\System32\w32time.dll - ok
03:08:19.0680 0x0ddc  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] C:\Windows\System32\netprofm.dll
03:08:19.0680 0x0ddc  C:\Windows\System32\netprofm.dll - ok
03:08:19.0695 0x0ddc  [ 210FCACAF902B2CD47CF9FD17D846146, 3F77AC721E084864C5966FF5337A90185F62203DC19C685328675500D629CB87 ] C:\Windows\System32\aeevts.dll
03:08:19.0695 0x0ddc  C:\Windows\System32\aeevts.dll - ok
03:08:19.0695 0x0ddc  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] C:\Windows\System32\wbem\WMIsvc.dll
03:08:19.0695 0x0ddc  C:\Windows\System32\wbem\WMIsvc.dll - ok
03:08:19.0711 0x0ddc  [ F7073C962C4FB7C415565DDE109DE49F, 781E7088DCEFBC34A808C3E7DA41A56112B3F23ABE9F54B5EF4D5CD9CD016B1D ] C:\Windows\System32\npmproxy.dll
03:08:19.0711 0x0ddc  C:\Windows\System32\npmproxy.dll - ok
03:08:19.0711 0x0ddc  [ 9A9174065781052CF8822E13FA105738, D12774CA3E340E7EDE31061E93F5D22FCC59E9C9FDF79263B3BE77DF2CE4E63C ] C:\Windows\System32\SearchIndexer.exe
03:08:19.0711 0x0ddc  C:\Windows\System32\SearchIndexer.exe - ok
03:08:19.0726 0x0ddc  [ 2B373B5F7E36B5ED5DA176D4400EF091, A7E220CC3661429D786693B277A7F39D5D9E24284B1D9E55DB6295AF7D97D104 ] C:\Windows\System32\sppobjs.dll
03:08:19.0726 0x0ddc  C:\Windows\System32\sppobjs.dll - ok
03:08:19.0726 0x0ddc  [ 7961AAD46149CD5510DD405FA5DE1D3F, 6D7929A62323CA5FA93991BD54E37503F94A80ADEE49CE8347CE626BBEA2A6C4 ] C:\Windows\System32\vmictimeprovider.dll
03:08:19.0726 0x0ddc  C:\Windows\System32\vmictimeprovider.dll - ok
03:08:19.0742 0x0ddc  [ 7DB5AA22A8A8E5C2D335F44853C1F6DE, A734A20357026C42950394682A52CBC3AF956D09F1949E1B4E95467E999BC428 ] C:\Windows\System32\wbemcomn.dll
03:08:19.0742 0x0ddc  C:\Windows\System32\wbemcomn.dll - ok
03:08:19.0742 0x0ddc  [ 9A8C61802DBE935B29375ECD9DDC99BD, 8CB81BC5C3F71FEF15B456C8CB1B5AE44291E946D96B627BE9A1F01F8D887D98 ] C:\Program Files (x86)\Cybereason\RansomFree\RestSharp.dll
03:08:19.0742 0x0ddc  C:\Program Files (x86)\Cybereason\RansomFree\RestSharp.dll - ok
03:08:19.0758 0x0ddc  [ 89B1F9A2A9A872906C113803CA3B0361, B6545AA114B2E44AC38E87EB8E27D8434A7491E85FF93238894C59EC904D53DF ] C:\Windows\System32\tquery.dll
03:08:19.0758 0x0ddc  C:\Windows\System32\tquery.dll - ok
03:08:19.0758 0x0ddc  [ 0B7E85364CB878E2AD531DB7B601A9E5, F5AD3018427F1CD68450EE5CB55AA9572546322580E0FB1E7888702A291C2380 ] C:\Windows\SysWOW64\NapiNSP.dll
03:08:19.0758 0x0ddc  C:\Windows\SysWOW64\NapiNSP.dll - ok
03:08:19.0773 0x0ddc  [ FE48346938C1CDDDF4E4097DB9B99764, AC01FE84504B863DFA19D38BE854F518521072AB697DF51C888545CFBC839F4F ] C:\Windows\SysWOW64\nlaapi.dll
03:08:19.0773 0x0ddc  C:\Windows\SysWOW64\nlaapi.dll - ok
03:08:19.0773 0x0ddc  [ 5CF640EDDB1E40A5AB1BB743BCDEC610, 0313AA3F713C9F5B84DBB0B4DE78A96B173E9F7B4CF61C10FDC7DAE952DB04E5 ] C:\Windows\SysWOW64\pnrpnsp.dll
03:08:19.0773 0x0ddc  C:\Windows\SysWOW64\pnrpnsp.dll - ok
03:08:19.0789 0x0ddc  [ 5DF5D8CFD9B9573FA3B2C89D9061A240, 990EA273B640DF2D7E800C0CFF18550259C605A4951CD82CD9F1E7B6FF0C9533 ] C:\Windows\SysWOW64\winrnr.dll
03:08:19.0789 0x0ddc  C:\Windows\SysWOW64\winrnr.dll - ok
03:08:19.0789 0x0ddc  [ 0255C22D99602534F15CBB8D9B6F152F, 43CD89D6CA56E0B633142F7C86DA9E072EE0723B5EBC4CE8CCBCA58C396ECF54 ] C:\Windows\System32\wbem\WinMgmtR.dll
03:08:19.0789 0x0ddc  C:\Windows\System32\wbem\WinMgmtR.dll - ok
03:08:19.0804 0x0ddc  [ 0C52762C606BCF6A377D5E4688191A6B, C58C9A73AD07E3B93AB186D0D47C5F1CB7197771DBEE40646C3B801645BB388F ] C:\Windows\System32\wbem\WmiDcPrv.dll
03:08:19.0804 0x0ddc  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
03:08:19.0804 0x0ddc  [ AC122407B29378FF9646F03404AC7C54, 01F03A11C4419665557C3CB7E712B8AD59B13703115CB10C9F39FBE82D177BE6 ] C:\Windows\SysWOW64\wshbth.dll
03:08:19.0804 0x0ddc  C:\Windows\SysWOW64\wshbth.dll - ok
03:08:19.0820 0x0ddc  [ A3F5E8EC1316C3E2562B82694A251C9E, F3DC6AA6A9D3B5BBC730668FC52C1D4BB5D515D404578BDDD3D4869A7ED58822 ] C:\Windows\System32\wbem\fastprox.dll
03:08:19.0820 0x0ddc  C:\Windows\System32\wbem\fastprox.dll - ok
03:08:19.0820 0x0ddc  [ 2FD5F55A00EC548DF812C08238717EDB, 77C3C3DAF9CAF084D9D820D173D8F3601F4D4FED6B700AE3CEFF4B8877752234 ] C:\Windows\SysWOW64\bcrypt.dll
03:08:19.0820 0x0ddc  C:\Windows\SysWOW64\bcrypt.dll - ok
03:08:19.0836 0x0ddc  [ 839F96DBAAFD3353E0B248A5E0BD2A51, 11DA5AD3EA5FF4766C12B99FB520B3CBE08581ECAF1A2FD1DC5AC835CA78FAC2 ] C:\Windows\SysWOW64\rasapi32.dll
03:08:19.0836 0x0ddc  C:\Windows\SysWOW64\rasapi32.dll - ok
03:08:19.0836 0x0ddc  [ EE26D130808D16C0E417BBBED0451B34, 4886DCE4FAEF146A40BABD492A8000A2022FEA542A6135A9BAFD4CD09297B4E5 ] C:\Windows\System32\ntdsapi.dll
03:08:19.0836 0x0ddc  C:\Windows\System32\ntdsapi.dll - ok
03:08:19.0851 0x0ddc  [ FFA7172354B9256DBB2CDD75F16F33FE, 85B2F014C67C2E52540F17D561793C6633C9E98F12639CCD3854EB1EC34DD035 ] C:\Windows\SysWOW64\rasman.dll
03:08:19.0851 0x0ddc  C:\Windows\SysWOW64\rasman.dll - ok
03:08:19.0851 0x0ddc  [ 666A60F6F5E719856FF6254E0966EFF7, 58C072E7E215991E19C1CA062C476081982F7B9F039714539AE7FEB4981C200F ] C:\Windows\System32\wbem\wbemprox.dll
03:08:19.0851 0x0ddc  C:\Windows\System32\wbem\wbemprox.dll - ok
03:08:19.0867 0x0ddc  [ 0915C4DB6DBC3BB9E11B7ECBBE4B7159, ACE7F85685EB92FC3AB4215122B0469E32F23B196C49F08CDA7791D3122C45DC ] C:\Windows\SysWOW64\rtutils.dll
03:08:19.0867 0x0ddc  C:\Windows\SysWOW64\rtutils.dll - ok
03:08:19.0882 0x0ddc  [ 5EB55F661DEBF156E126160BCD4D89F8, 948D1F627AA55D55FB3B558BA61B8366C5481A6041820631F24408F75EA5D2CC ] C:\Windows\System32\wbem\wbemcore.dll
03:08:19.0882 0x0ddc  C:\Windows\System32\wbem\wbemcore.dll - ok
03:08:19.0882 0x0ddc  [ EAD314F2142162AE4DE91355580F6607, AA0628AFBCF56678B14E2617F4596379BE67E1CE91AEE2A23DDBB3CFDA36F8C4 ] C:\Windows\SysWOW64\winhttp.dll
03:08:19.0882 0x0ddc  C:\Windows\SysWOW64\winhttp.dll - ok
03:08:19.0898 0x0ddc  [ CB52DEF1B1E1B9950F29548F2F19115A, 42A60BC707DB0B42214A8C679E0A15AE46944D9D97C35D8293AB294DC759A800 ] C:\Windows\SysWOW64\webio.dll
03:08:19.0898 0x0ddc  C:\Windows\SysWOW64\webio.dll - ok
03:08:19.0898 0x0ddc  [ B37049F67D49A88EA7D74E74D00DF6C6, 9CD7233AFA3796E3693CAE404B906C732E78C31D3AA59B710ECBD05FCC270D31 ] C:\Windows\System32\mssrch.dll
03:08:19.0898 0x0ddc  C:\Windows\System32\mssrch.dll - ok
03:08:19.0914 0x0ddc  [ 209AF147F8E7A8D780621E893B6409F1, 2250219F865AF0A4476588D2AF7F25AD3489B69FCA430489CE6DEE7774462FE4 ] C:\Windows\SysWOW64\credssp.dll
03:08:19.0914 0x0ddc  C:\Windows\SysWOW64\credssp.dll - ok
03:08:19.0914 0x0ddc  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3, 2A610BEB16610FE2F2E9A50477A62A05481E8A5843A814955A0EDFF45D0304B3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
03:08:19.0914 0x0ddc  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
03:08:19.0929 0x0ddc  [ 81F6C1AE23B1C493D9E996C3103915D7, E22408B4D2EDE2F89E686A4FDCD4057BE27B86D050E9CB489F0FFB39C72AEC1D ] C:\Windows\SysWOW64\dhcpcsvc6.dll
03:08:19.0929 0x0ddc  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
03:08:19.0929 0x0ddc  [ 087D8668C71634A3A3761135ABF16EEE, B7348A63299CFF4FFBF375E645A4850AE0F108D48D13AB25434CFAE7CF3D61FD ] C:\Windows\System32\wbem\esscli.dll
03:08:19.0929 0x0ddc  C:\Windows\System32\wbem\esscli.dll - ok
03:08:19.0945 0x0ddc  [ 718B6F51AB7F6FE2988A36868F9AD3AB, 76141B4E94C2766E2C34CEF523092948771A7893212EFADBE88D2171B85FF012 ] C:\Windows\System32\wbem\wbemsvc.dll
03:08:19.0945 0x0ddc  C:\Windows\System32\wbem\wbemsvc.dll - ok
03:08:19.0960 0x0ddc  [ FD67683FBA9B2C4BB551780BD8846F64, 4BB7C956EA8D2CE63F5BF80FAE652F98416A7635202AEE04FC8D81000E6363DF ] C:\Windows\SysWOW64\winsta.dll
03:08:19.0960 0x0ddc  C:\Windows\SysWOW64\winsta.dll - ok
03:08:19.0960 0x0ddc  [ A8EDB86FC2A4D6D1285E4C70384AC35A, 61B8955CE0A2AA9D0719920B30216717B349B6FBE11C697C31CFA84F859CC1AE ] C:\Windows\System32\dllhost.exe
03:08:19.0960 0x0ddc  C:\Windows\System32\dllhost.exe - ok
03:08:19.0976 0x0ddc  [ 51F89CE2D0FEC66070354504E6C4C3E4, 565CC85156C39FB89762757EF6A935FC42DB2599A5E49643447D30C8B9371133 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18837_none_a4d981ff711297b6\comctl32.dll
03:08:19.0976 0x0ddc  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18837_none_a4d981ff711297b6\comctl32.dll - ok
03:08:19.0992 0x0ddc  [ 0143DB80DACFB7C2B5B7009ED9063353, 252885CF7C1BAB89B86908373546E5F5D674BEF7AACBDDCF321AD877CB9150A9 ] C:\Windows\System32\wbem\wmiutils.dll
03:08:19.0992 0x0ddc  C:\Windows\System32\wbem\wmiutils.dll - ok
03:08:19.0992 0x0ddc  [ 0AB34456654C283DAA13B8D2BA21439B, 4B70FC5195DE39564E951C8542020BA3D4257E3D4488F69825F67A6099CB7549 ] C:\Windows\System32\wbem\repdrvfs.dll
03:08:19.0992 0x0ddc  C:\Windows\System32\wbem\repdrvfs.dll - ok
03:08:20.0007 0x0ddc  [ A0A2C1D812C231C9BFE119FDC68E341B, F94446594EE17505956A715DFB28B51D09F00A7A65E56950661B889A57DE8FA8 ] C:\Windows\System32\IDStore.dll
03:08:20.0007 0x0ddc  C:\Windows\System32\IDStore.dll - ok
03:08:20.0023 0x0ddc  [ 639774C9ACD063F028F6084ABF5593AD, 9DFD80610CBBC9188F6C6BC85C87016B0AE42254FC289C2B578E85282BDD9C23 ] C:\Windows\System32\taskhost.exe
03:08:20.0023 0x0ddc  C:\Windows\System32\taskhost.exe - ok
03:08:20.0023 0x0ddc  [ F5CEF064C7E6D95DA86B9D064A56A969, F118CD4364690F37A07AE458E043E8CFBA98F332DC9E7228C83409CF26F6EF6D ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
03:08:20.0023 0x0ddc  C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
03:08:20.0038 0x0ddc  [ BAFE84E637BF7388C96EF48D4D3FDD53, 11C194D9ADCE90027272C627D7FBF3BA5025FF0F7B26A8333F764E11E1382CF9 ] C:\Windows\System32\userinit.exe
03:08:20.0038 0x0ddc  C:\Windows\System32\userinit.exe - ok
03:08:20.0038 0x0ddc  [ F162D5F5E845B9DC352DD1BAD8CEF1BC, 8A7B7528DB30AB123B060D8E41954D95913C07BB40CDAE32E97F9EDB0BAF79C7 ] C:\Windows\System32\dwm.exe
03:08:20.0038 0x0ddc  C:\Windows\System32\dwm.exe - ok
03:08:20.0054 0x0ddc  [ FCFCD1101C5DA23B4B95F93D02B2C169, 040A086875B6C5475490A2F8B0CF4FF20DDB4FEDFE5FCABBA49692AA05F40527 ] C:\Windows\System32\dwmredir.dll
03:08:20.0054 0x0ddc  C:\Windows\System32\dwmredir.dll - ok
03:08:20.0054 0x0ddc  [ FE05D03B73000CFF476E1D29109F3A84, 7880B025413338A7B114BECB5DC67605FC7A97142C26FD12F765A64A21805842 ] C:\Program Files\Windows Defender\MpEvMsg.dll
03:08:20.0054 0x0ddc  C:\Program Files\Windows Defender\MpEvMsg.dll - ok
03:08:20.0070 0x0ddc  [ 88351B29B622B30962D2FEB6CA8D860B, A16CAD7D94C1C9807083BB36E9B4C3C14E6482C4CA2BDFACBCC86E737DDCE42E ] C:\Windows\System32\rasadhlp.dll
03:08:20.0070 0x0ddc  C:\Windows\System32\rasadhlp.dll - ok
03:08:20.0070 0x0ddc  [ 627D80A5F4604E5623BF647C27596B69, 6395BCA228EE57191811DF8736D74C894C82CD4B0A596480D788333350B9D7CA ] C:\Windows\System32\localspl.dll
03:08:20.0070 0x0ddc  C:\Windows\System32\localspl.dll - ok
03:08:20.0085 0x0ddc  [ 65EA57712340C09B1B0C427B4848AE05, 5FDCF73191BFF9DBB03886755FFCF0BC15849F0E216884A5A8B9BB375FA7C1A5 ] C:\Windows\System32\taskeng.exe
03:08:20.0085 0x0ddc  C:\Windows\System32\taskeng.exe - ok
03:08:20.0085 0x0ddc  [ 3285481F5C12305CA104A6C493CA5A0B, ADB39B15D26A954B0F347C7BAFCC76DE5E3CF3CF05736E8987E0832AA7F8563C ] C:\Windows\System32\spoolss.dll
03:08:20.0085 0x0ddc  C:\Windows\System32\spoolss.dll - ok
03:08:20.0101 0x0ddc  [ 38AE1B3C38FAEF56FE4907922F0385BA, D5BC504277172BE5C54B60AD5C13209DC1F729131DEF084DE3EC8C72E54C58EF ] C:\Windows\explorer.exe
03:08:20.0101 0x0ddc  C:\Windows\explorer.exe - ok
03:08:20.0101 0x0ddc  [ DDD0357A92FA843EFF8915ED17253D6C, 0C78B1D41F0A7821186ADF653504F2BFF067CB512CB0E932047C301378BBADB6 ] C:\Windows\System32\wbem\WmiPrvSD.dll
03:08:20.0101 0x0ddc  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
03:08:20.0116 0x0ddc  [ D41FEBD098234F02485A4EA98D4730A4, 462DC8168C444F35B43BA3B8F7D77734665D84F1C6D25CAD7391C0145961628F ] C:\Windows\System32\ncobjapi.dll
03:08:20.0116 0x0ddc  C:\Windows\System32\ncobjapi.dll - ok
03:08:20.0116 0x0ddc  [ 6F40D6FB05E0C1E5402812B426971AF0, E41F138F0F2DB057F8DBB1587237C6FA8A2059B3D64EC894D1DC492A18DBBDED ] C:\Windows\System32\wbem\wbemess.dll
03:08:20.0116 0x0ddc  C:\Windows\System32\wbem\wbemess.dll - ok
03:08:20.0132 0x0ddc  [ 805A52C5AE26C28E88FDD9BCCFE6F312, 4FF28D3658C31722B7DD036DED9D544B14841C0E0B94D31A8EC5AB92128DA020 ] C:\Windows\System32\TSChannel.dll
03:08:20.0132 0x0ddc  C:\Windows\System32\TSChannel.dll - ok
03:08:20.0148 0x0ddc  [ 8231BB88B07A216CCE3758B4B2D01E4C, 9E348726EBB4E1E28EA9FE32F2D435C59FAE5D8775683BA50FFE40FB1FAC47A0 ] C:\Program Files (x86)\Cybereason\RansomFree\CybereasonRansomFree.exe
03:08:20.0148 0x0ddc  C:\Program Files (x86)\Cybereason\RansomFree\CybereasonRansomFree.exe - ok
03:08:20.0148 0x0ddc  [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
03:08:20.0148 0x0ddc  C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
03:08:20.0163 0x0ddc  [ 4A99680CA599A5C36B2D7182F3131E3B, EF5E21015663365E049021980973AB144202AB50F3EC23AA78979E353AEB4E76 ] C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe
03:08:20.0163 0x0ddc  C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe - ok
03:08:20.0163 0x0ddc  [ 2A8FB43F59128572BC2D118A481A9A56, 67E1083EB58173C187F758EE15FD937EA993C2492DB9BCB788C80A097D8D3A70 ] C:\Program Files (x86)\Google\Update\1.3.33.7\goopdate.dll
03:08:20.0163 0x0ddc  C:\Program Files (x86)\Google\Update\1.3.33.7\goopdate.dll - ok
03:08:20.0179 0x0ddc  [ 502237267638281B1365D1F20082AECF, 723C43ABD722F848A0DA8F0CB831FCE66E447B5EAA356E66A5031DDF83ADCADC ] C:\Windows\System32\dwmcore.dll
03:08:20.0179 0x0ddc  C:\Windows\System32\dwmcore.dll - ok
03:08:20.0179 0x0ddc  [ 43964FA89CCF97BA6BE34D69455AC65F, 10E3B89A5470E1BB6F73382135DD2352F5073C1EE8485D7476CFB5122D4AAA2F ] C:\Windows\SysWOW64\uxtheme.dll
03:08:20.0194 0x0ddc  C:\Windows\SysWOW64\uxtheme.dll - ok
03:08:20.0194 0x0ddc  [ 5997D769CDB108390DCFAEBF442BF816, 0E25CA984C0EEB629184423FAA9BC6D4356DF9A93F281E06DC83B4AC638AEC4A ] C:\Windows\SysWOW64\RpcRtRemote.dll
03:08:20.0194 0x0ddc  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
03:08:20.0210 0x0ddc  [ 9C11D851979D4E8BF71091580AA073C2, F733E7C110AC288BAF25DD49D779C508E3AE22BFAFE2CE1B33CFB0E536AF2C61 ] C:\Windows\SysWOW64\msi.dll
03:08:20.0210 0x0ddc  C:\Windows\SysWOW64\msi.dll - ok
03:08:20.0210 0x0ddc  [ 52213D271F6804AAA44F57AEFD2B778A, 3409EA885C9C332A997C81B3CA60352AEEA30950304CDD128F29043D2CF7D194 ] C:\Windows\SysWOW64\dwmapi.dll
03:08:20.0210 0x0ddc  C:\Windows\SysWOW64\dwmapi.dll - ok
03:08:20.0226 0x0ddc  [ C463AEDDECA88E934ADE53610E1A4B8D, 88666BA0FEF92E8E3D01BE1EEE45A4DC625EBB2E1D9E7E7C23E67F0FF60003E5 ] C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
03:08:20.0226 0x0ddc  C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll - ok
03:08:20.0226 0x0ddc  [ A543AC1F7138376D778D630A35FCBC4C, 2D824C66A97FC8C39DAFA397CC47495B712D175EEF393486946DA8936BDD466A ] C:\Windows\SysWOW64\psapi.dll
03:08:20.0226 0x0ddc  C:\Windows\SysWOW64\psapi.dll - ok
03:08:20.0241 0x0ddc  [ 465BEA35F7ED4A4A57686DEA7EA10F47, 7F1B3CA09AB045F805DA5765BE7DD270F5DDACE3073017F7386FF1E2FA82D6FB ] C:\Windows\SysWOW64\cscapi.dll
03:08:20.0241 0x0ddc  C:\Windows\SysWOW64\cscapi.dll - ok
03:08:20.0257 0x0ddc  [ D683B1FCF32133C8CD65EFEED19EC244, 8E972102BD872C493D98615138CBD3FD83AB267589F258F9DDDCDE20BC68ADE0 ] C:\Program Files (x86)\IObit\Smart Defrag\RegisterCom.dll
03:08:20.0257 0x0ddc  C:\Program Files (x86)\IObit\Smart Defrag\RegisterCom.dll - ok
03:08:20.0257 0x0ddc  [ 53223B673A3FA2F9A4D1C31C8D3F6CD8, B07A12E3ECD5E418A3F99F00C56E7F482F68CADE330E7C079DCCDFFAD2E21299 ] C:\Windows\SysWOW64\dbghelp.dll
03:08:20.0257 0x0ddc  C:\Windows\SysWOW64\dbghelp.dll - ok
03:08:20.0257 0x0ddc  [ 297EBB543AC3EAC28DB5D02722A3FD0C, 62E7DF2E08ED4446220FC882E90D3993E2F4350887167445DE16840128C2435E ] C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe
03:08:20.0257 0x0ddc  C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe - ok
03:08:20.0272 0x0ddc  [ A26D02C711875D4F6680D04D6DAE4482, 86C412801FB0E6BDB00BBC4FF2A5A2071EF73F154601262D1145737F7D7A5A67 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\78f35bb5674861abfaac13791ed2aa45\System.Drawing.ni.dll
03:08:20.0272 0x0ddc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\78f35bb5674861abfaac13791ed2aa45\System.Drawing.ni.dll - ok
03:08:20.0288 0x0ddc  [ D5AFC3A476925CE740B7079D9BD2D269, 201313175BEA013DE47B00F9F563614641959FCAD937FB873B587B7F8C87166C ] C:\Windows\SysWOW64\apphelp.dll
03:08:20.0288 0x0ddc  C:\Windows\SysWOW64\apphelp.dll - ok
03:08:20.0288 0x0ddc  [ 900236357482B00944826354EEC6B93F, 996CAE130528D585BF4C1D60123272B7EBAAD73BD005DBED96C3C95E198A2B42 ] C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe
03:08:20.0288 0x0ddc  C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler.exe - ok
03:08:20.0304 0x0ddc  [ F107219B133E7E574DA052C5C88FFBF3, 72253B7A0D3B27437BA87F0B24DEB5D653BD2F9310C18C19D4BC5B2BB66182BF ] C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe
03:08:20.0304 0x0ddc  C:\Program Files (x86)\Google\Update\1.3.33.7\GoogleCrashHandler64.exe - ok
03:08:20.0304 0x0ddc  [ FF5688D309347F2720911D8796912834, 3B0D73C50D40A6F42629B7750F99F656BF5C1C50237D5F98B6C0F2CE5E2DA359 ] C:\Windows\SysWOW64\clbcatq.dll
03:08:20.0304 0x0ddc  C:\Windows\SysWOW64\clbcatq.dll - ok
03:08:20.0319 0x0ddc  [ 544EFF88AC6C85DF5A4D6F18DFE08CFC, D688381F42062FD5D868E7770857C5951C41BA20A1B6E6F60B5D9536C02CD293 ] C:\Windows\SysWOW64\taskschd.dll
03:08:20.0319 0x0ddc  C:\Windows\SysWOW64\taskschd.dll - ok
03:08:20.0319 0x0ddc  [ 1485799512D30323185EDB4F239CF223, 23DF02BD507D2EFA28F60D5DC557289E6203BF2DCD5598B8187478991C1CD7F2 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\371a03a90f03340ddd50a25a784c00b6\System.Windows.Forms.ni.dll
03:08:20.0319 0x0ddc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\371a03a90f03340ddd50a25a784c00b6\System.Windows.Forms.ni.dll - ok
03:08:20.0335 0x0ddc  [ C5AC93CF3BA30D367FB49148A2B673B9, 07B556039BBA841BC9F28979C3AD5D238B55391F921C9C805F3AFC9EFB437766 ] C:\Windows\System32\PrintIsolationProxy.dll
03:08:20.0335 0x0ddc  C:\Windows\System32\PrintIsolationProxy.dll - ok
03:08:20.0350 0x0ddc  [ 12C45E3CB6D65F73209549E2D02ECA7A, 9DFD9C58B90257C34D52B7156C1D2566BE32EE7BD4699DDE164A5F190EC4D44A ] C:\Windows\SysWOW64\propsys.dll
03:08:20.0350 0x0ddc  C:\Windows\SysWOW64\propsys.dll - ok
03:08:20.0350 0x0ddc  [ C4FA699FDC4CA51802C78CBDC0E67223, B172F2600DBC1DC254DADC5C65C98CC715FC316114497A07D50DB3E931AA0550 ] C:\Windows\System32\ExplorerFrame.dll
03:08:20.0350 0x0ddc  C:\Windows\System32\ExplorerFrame.dll - ok
03:08:20.0366 0x0ddc  [ B28E94AF239ECB2DDFF613A912728099, 04FB4B31E3CB373BDDA22F7D6D00C9B66BE4BB9D1BE576010A8500AF4008F26C ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Deployment\de45097822f5277e21a74b55ffbcb166\System.Deployment.ni.dll
03:08:20.0366 0x0ddc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Deployment\de45097822f5277e21a74b55ffbcb166\System.Deployment.ni.dll - ok
03:08:20.0366 0x0ddc  [ 522B0466ED967A0762E9AF5B37D8F40A, B14C62D059BC7CF430E1B0F6E18E31EFD1959EFB3025A2B0EBB11751F38DD6D4 ] C:\Windows\System32\esent.dll
03:08:20.0366 0x0ddc  C:\Windows\System32\esent.dll - ok
03:08:20.0382 0x0ddc  [ 10FB16B50AFFDA6D44588F3C445DC273, 6CDA17DA9B44D11E69F7C6682FA633EA75731623BB21B429A0FE2086ED4495A7 ] C:\Windows\SysWOW64\setupapi.dll
03:08:20.0382 0x0ddc  C:\Windows\SysWOW64\setupapi.dll - ok
03:08:20.0382 0x0ddc  [ F436E847FA799ECD75AD8C313673F450, 3C8BF3F0C08C7FA8DE5CD9C60AD9D00B742E84EB1FEBEEBA0F7159844BAAA471 ] C:\Windows\SysWOW64\cfgmgr32.dll
03:08:20.0382 0x0ddc  C:\Windows\SysWOW64\cfgmgr32.dll - ok
03:08:20.0397 0x0ddc  [ 2EEFF4502F5E13B1BED4A04CCAD64C08, 209FF1B6D46D1AC99518FCF54F2F726143B2DBF2C5FDA90212FBEF7526F7CBF5 ] C:\Windows\SysWOW64\devobj.dll
03:08:20.0397 0x0ddc  C:\Windows\SysWOW64\devobj.dll - ok
03:08:20.0397 0x0ddc  [ 3A16EA01FCFAAB40882DB5BFEE632322, 04ED66BEFDB822181EBD1D84CBF0B17AAADF8455AE742F44D7ADCB26AB07BDAD ] C:\Windows\SysWOW64\msftedit.dll
03:08:20.0397 0x0ddc  C:\Windows\SysWOW64\msftedit.dll - ok
03:08:20.0413 0x0ddc  [ 5D732EE28636A5FE013A170AA172E5F9, 273725010C2810F37B86AC7A889322BC7B3EE0E88075E7EF01AE60FFB8406994 ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
03:08:20.0413 0x0ddc  C:\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - ok
03:08:20.0413 0x0ddc  [ 6C6CF29B05DBCA772AED1551AF0DF6DF, 09DF6BA79CDA7655658BB3EF4BBF9AC1D7D759594F0C9A3DFC3D47F64E75170F ] C:\Windows\System32\devenum.dll
03:08:20.0413 0x0ddc  C:\Windows\System32\devenum.dll - ok
03:08:20.0444 0x0ddc  [ 558C42D165DB5799B4072DC0A9C27C0B, 2385E16ACF07252D5567EC091C1B39D39BB8199F60854D5A91EDC948C57B3A3F ] C:\Windows\System32\msdmo.dll
03:08:20.0444 0x0ddc  C:\Windows\System32\msdmo.dll - ok
03:08:20.0444 0x0ddc  [ D38535978F93F9FC9F28BE6093A87DBE, AD56F5A81C0D046C473D666D2CE7C5A49EA2ACAE937E7DC8924D17800C91B5D7 ] C:\Windows\System32\msdri.dll
03:08:20.0444 0x0ddc  C:\Windows\System32\msdri.dll - ok
03:08:20.0460 0x0ddc  [ 96DB78C9C50CEED9DA5050EFFEE272A2, 51CF3E1F96555A4E4B5BC0DE2598CE5A0199F495644A91C2105F25A5A4CF10E3 ] C:\Windows\System32\upnp.dll
03:08:20.0460 0x0ddc  C:\Windows\System32\upnp.dll - ok
03:08:20.0460 0x0ddc  [ 919001D2BB17DF06CA3F8AC16AD039F6, 5169ACFBE9E9D4C4012773ECDD28231C952675EF0C272A40F226E7B5D671B18B ] C:\Windows\SysWOW64\sxs.dll
03:08:20.0460 0x0ddc  C:\Windows\SysWOW64\sxs.dll - ok
03:08:20.0475 0x0ddc  [ 244C6722289F4869068992FD7D8A8832, 8644D0A55C46C3F081F0AB43D253D13E56E77D89336A87108DB8C47D6EDC3A64 ] C:\Windows\SysWOW64\wbem\wbemdisp.dll
03:08:20.0475 0x0ddc  C:\Windows\SysWOW64\wbem\wbemdisp.dll - ok
03:08:20.0475 0x0ddc  [ 704314FD398C81D5F342CAA5DF7B7F21, CDA660E1E8AAE0789780B6B9604B138E67B2BDD1404A5E4C2354B35879D43085 ] C:\Windows\SysWOW64\wbemcomn.dll
03:08:20.0475 0x0ddc  C:\Windows\SysWOW64\wbemcomn.dll - ok
03:08:20.0491 0x0ddc  [ C5B0324DB461559ADD070E632A6919FA, AB09CACB5B7DD372B27921A5E01220552A611CECA27EF87961001FA467FDED45 ] C:\Windows\SysWOW64\wbem\wbemprox.dll
03:08:20.0491 0x0ddc  C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
03:08:20.0491 0x0ddc  [ 5610B0425518D185331CB8E968D060E6, E235186C3BF266EE9EC733D2CFF35E3A65DE039C19B14260F4054F34B5E8AD41 ] C:\Windows\SysWOW64\wbem\wmiutils.dll
03:08:20.0491 0x0ddc  C:\Windows\SysWOW64\wbem\wmiutils.dll - ok
03:08:20.0506 0x0ddc  [ 776AE0564F8B1C282E331FD95A1BDC5F, 601CFCA3922FFEA46A54AD323845A76A12FC6AF9FF64E9B0AE294FBB1AFCF4CB ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
03:08:20.0506 0x0ddc  C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
03:08:20.0522 0x0ddc  [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A, 61B4D669C692775EF361445293163E84FAD8636AC49C8047BE806DB4E4093291 ] C:\Windows\SysWOW64\wbem\fastprox.dll
03:08:20.0522 0x0ddc  C:\Windows\SysWOW64\wbem\fastprox.dll - ok
03:08:20.0522 0x0ddc  [ E3E811471DE781900FF21C1FD84E941E, 2A47FF52D1D6480AAD1919382E783EA184BF926311F8C7E466FEBE9F6FB88FD6 ] C:\Windows\SysWOW64\ntdsapi.dll
03:08:20.0522 0x0ddc  C:\Windows\SysWOW64\ntdsapi.dll - ok
03:08:20.0538 0x0ddc  [ 19E41CCCEE697CC9465396B370929792, A9FC4C33C71C3677FE57779380E55FDE2AC0B0C70A9DBCBA0D0B6FA92C709A7F ] C:\Windows\System32\FXSMON.dll
03:08:20.0538 0x0ddc  C:\Windows\System32\FXSMON.dll - ok
03:08:20.0538 0x0ddc  [ 32A3C8600AF124CBAAD845F13CFAE3CB, F36FE9E57D5C509FEECE890F9F8717F9CC6F762E32AE0B7DB7E0153370CE0B9D ] C:\Windows\System32\tcpmon.dll
03:08:20.0538 0x0ddc  C:\Windows\System32\tcpmon.dll - ok
03:08:20.0553 0x0ddc  [ 93518C6EDE0B61BCBD02BDB02BD05FEE, 3637F5E5F15093AFB501EE910368CF900B422AC22669391FFA4198BBAE6F8FCB ] C:\Windows\System32\snmpapi.dll
03:08:20.0553 0x0ddc  C:\Windows\System32\snmpapi.dll - ok
03:08:20.0553 0x0ddc  [ FFF9D00CF16397C64317F213484F94BD, 94D0584E14BDB27F61F59A7BCEA529A1594261BE0CE74502C13E8865843BA414 ] C:\Windows\System32\wsnmp32.dll
03:08:20.0553 0x0ddc  C:\Windows\System32\wsnmp32.dll - ok
03:08:20.0569 0x0ddc  [ 619A67C9F617B7E69315BB28ECD5E1DF, F34F231D117CCDFEBB9CB35C8D6FDFA7051DA27FDC1204FCCFF361FC0B13A0FF ] C:\Windows\System32\wbem\WmiPrvSE.exe
03:08:20.0569 0x0ddc  C:\Windows\System32\wbem\WmiPrvSE.exe - ok
03:08:20.0569 0x0ddc  [ 5EA9A0950F322BFA382AF277801C0307, A2C00A3E22A484A00620FF801E0B6EB475C9593C80AF321564E5A0DD2B1C38B7 ] C:\Windows\System32\wbem\wmipcima.dll
03:08:20.0569 0x0ddc  C:\Windows\System32\wbem\wmipcima.dll - ok
03:08:20.0584 0x0ddc  [ 1484B9EBF567346582DE571B0E164AE0, 9862BF22B2E32DABE7A82ACEE5B4EA1F0A93BDC3C71B20A6A4E568CCCD76A7A6 ] C:\Windows\System32\framedynos.dll
03:08:20.0584 0x0ddc  C:\Windows\System32\framedynos.dll - ok
03:08:20.0584 0x0ddc  [ EBB8EE89883C7B09830AC41DDB2C8558, A2F8E4C05A222243EF205E9EBAF961840E50A7A63E7868A41B8F7BFF87BE6976 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\ca4e77634d95bc67b8bb5983b62e812c\WindowsBase.ni.dll
03:08:20.0584 0x0ddc  C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\ca4e77634d95bc67b8bb5983b62e812c\WindowsBase.ni.dll - ok
03:08:20.0600 0x0ddc  [ E7CE012B34BCC2B4E70F9C8AC4F74D61, D7CB8BB8CC28B3C8F3D5A2488816ECC51D9551BB9900BCA5B91EE39C9624E1DF ] C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\8f60f287a302618931fadffc35cacedd\PresentationCore.ni.dll
03:08:20.0600 0x0ddc  C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\8f60f287a302618931fadffc35cacedd\PresentationCore.ni.dll - ok
03:08:20.0616 0x0ddc  [ 1DEFD05FC7817D2D2B96015C982541D1, 75E8AABC3BC5126798C6F78FEA27CB5471A3375ACE977C78606998CAE9794894 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\fee5f11727a19a2cd4f620393558b01d\PresentationFramework.ni.dll
03:08:20.0616 0x0ddc  C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\fee5f11727a19a2cd4f620393558b01d\PresentationFramework.ni.dll - ok
03:08:20.0616 0x0ddc  [ 007863E45F25AA47A4C30D0930BBFD85, 60F2ABA40D520FCA2C57FA2DB72E111C14F21821DA17F662837506B80C269634 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
03:08:20.0616 0x0ddc  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
03:08:20.0631 0x0ddc  [ 024352FEEC9042260BB4CFB4D79A206B, 60CB39086E10C5B66EBC15E4DF219620B344B4358D2918AB6BB3448A0AC8BE36 ] C:\Windows\System32\EhStorShell.dll
03:08:20.0631 0x0ddc  C:\Windows\System32\EhStorShell.dll - ok
03:08:20.0631 0x0ddc  [ 32802C0F6FC7C8F561B9D91F52A46421, EE02CF54FC3626D85849EF14D9B7B57419F12D1DD0735C25ECBD987EE53F634B ] C:\Windows\System32\cscui.dll
03:08:20.0631 0x0ddc  C:\Windows\System32\cscui.dll - ok
03:08:20.0647 0x0ddc  [ 7EE5F17A21D9A9101207DF4BC37B085D, C07A56D52449B9F126B617FB4EFDC22EFE043C9B257B01967EA2FCCCA6216763 ] C:\Windows\System32\cscdll.dll
03:08:20.0647 0x0ddc  C:\Windows\System32\cscdll.dll - ok
03:08:20.0647 0x0ddc  [ 1BF0CB861A48FEB1638228760750F3CB, 37C781A8C546EAD8B4D28BD7D730B9AC78EB799599AD69DAD9054B6F9F1DD6BD ] C:\Windows\System32\cscapi.dll
03:08:20.0647 0x0ddc  C:\Windows\System32\cscapi.dll - ok
03:08:20.0662 0x0ddc  [ 037A719DAD50603202C978CD802623E4, BD4C222913D32D7CF5FE0201FEBE7BD67FC39DF47A7A672C2D6C228A6E13B5DE ] C:\Windows\System32\ntshrui.dll
03:08:20.0662 0x0ddc  C:\Windows\System32\ntshrui.dll - ok
03:08:20.0662 0x0ddc  [ 1D63F4366288B8A7595397E27010FD44, 99EA4DDD88D9C4A4CC9B238F533CB4D2C062D46239173997E8594D8A75811A01 ] C:\Windows\System32\IconCodecService.dll
03:08:20.0662 0x0ddc  C:\Windows\System32\IconCodecService.dll - ok
03:08:20.0678 0x0ddc  [ 025E7DBDB98866ED3CB2D4DDA70B364D, 78962F23F066E362AF1A4B98FA7D5E30AF30C561307438503031D30C944B6A6E ] C:\Windows\System32\runonce.exe
03:08:20.0678 0x0ddc  C:\Windows\System32\runonce.exe - ok
03:08:20.0694 0x0ddc  [ D44741F65A1D71F65814A12CF6E2400A, C6721F830675ADC7E7FDE2B5E822E56F6A063146F5066F1E25EBFE86F0A87136 ] C:\Windows\SysWOW64\runonce.exe
03:08:20.0694 0x0ddc  C:\Windows\SysWOW64\runonce.exe - ok
03:08:20.0709 0x0ddc  [ AD7B9C14083B52BC532FBA5948342B98, 17F746D82695FA9B35493B41859D39D786D32B23A9D2E00F4011DEC7A02402AE ] C:\Windows\SysWOW64\cmd.exe
03:08:20.0709 0x0ddc  C:\Windows\SysWOW64\cmd.exe - ok
03:08:20.0709 0x0ddc  [ 326C7F76A29897A892AA7726E91C1C67, 64305346B06EC14976130B0B80F14B4D5AB63E5B2A6A7B872EC9CE2BF8FADCD2 ] C:\Windows\SysWOW64\winbrand.dll
03:08:20.0709 0x0ddc  C:\Windows\SysWOW64\winbrand.dll - ok
03:08:20.0725 0x0ddc  [ DF72A9936D0C3F517083119648814B09, 6BA4DCAC2F55A393A266ED0B2AF92B38141654D1666E3E143D85BBAF21663E1E ] C:\Windows\System32\usbmon.dll
03:08:20.0725 0x0ddc  C:\Windows\System32\usbmon.dll - ok
03:08:20.0725 0x0ddc  [ A1D7E3ADCDB07DDB6F423862DCB1A52B, 6191C33D2AE090F6F055D6AE211096CE8F003EC5518A5333EE1E376052176BAB ] C:\Windows\System32\WSDMon.dll
03:08:20.0725 0x0ddc  C:\Windows\System32\WSDMon.dll - ok
03:08:20.0740 0x0ddc  [ 4581716B4BF76ACFD8E167EB0B26D82A, 39D822527114EEED68044CCE4D542767F53978D9E0A7F72638F1CA9A016DE13B ] C:\Windows\System32\fdPnp.dll
03:08:20.0740 0x0ddc  C:\Windows\System32\fdPnp.dll - ok
03:08:20.0740 0x0ddc  [ 4F4DA37A34A33116F8D36FAA770D86EA, C3FE5B85935C7B6D44F2BD28C338D9E89BF9A8DC4F91FDDEC9E3308F75797A37 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
03:08:20.0740 0x0ddc  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
03:08:20.0756 0x0ddc  [ 35C5E6E7A0DA988845D082485D439979, 0A88A058B91913426B6390EB736185E0A40CFAE1E7CD7DC59EAD8156CEC2DEBF ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\1f0588570b81838ccbe73b736d4f0bba\System.Xaml.ni.dll
03:08:20.0756 0x0ddc  C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\1f0588570b81838ccbe73b736d4f0bba\System.Xaml.ni.dll - ok
03:08:20.0756 0x0ddc  [ C2E787F8373A8287B06ECFA373B88CC2, 75AF0E2BF98EBCC64F8D9CACDE2C226F5A5784406523A5D3241495F7E007BC83 ] C:\Windows\SysWOW64\DWrite.dll
03:08:20.0756 0x0ddc  C:\Windows\SysWOW64\DWrite.dll - ok
03:08:20.0772 0x0ddc  [ 6FB8EF88A3427A9E11A3F751D0D659BE, E55EC25669512ED229E971E2AE390A419E016369AF8F6FD72B2EC2CBF5276F26 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll
03:08:20.0772 0x0ddc  C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll - ok
03:08:20.0787 0x0ddc  [ 2737D2D6DD6DCE9FD51EAA026E3ED0C0, 6411B98C6500D2E6BA5546A0F141AB7A4D185DBD6CE626C76DB4BE59514340A3 ] C:\Windows\SysWOW64\msvcp120_clr0400.dll
03:08:20.0787 0x0ddc  C:\Windows\SysWOW64\msvcp120_clr0400.dll - ok
03:08:20.0787 0x0ddc  [ 960AE99A15B1C8C9FBDDDE97606478F9, E3009E3738FAB1F7CD685567C5AA1EB0A408AC51D0CDA5DA788841174D7625B1 ] C:\Windows\SysWOW64\D3DCompiler_47.dll
03:08:20.0787 0x0ddc  C:\Windows\SysWOW64\D3DCompiler_47.dll - ok
03:08:20.0803 0x0ddc  [ A4A2BCD2BB0CDCB51B185BF8743FEFBC, 8C2B5E41B64F7FECECA5234840865A82F7B8AAA1F90415E64E60FCEB6B82A672 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll
03:08:20.0803 0x0ddc  C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll - ok
03:08:20.0803 0x0ddc  [ 9BB99503D6A4DD62569EDE9E5E2672A5, 6F4EA5BC50B1F929735246485263078BEF1B3BEB33F78CB1F483F13AA226C27E ] C:\Windows\System32\HotStartUserAgent.dll
03:08:20.0803 0x0ddc  C:\Windows\System32\HotStartUserAgent.dll - ok
03:08:20.0818 0x0ddc  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA, 8A6ACEFAB95E5275CBFBE6CCB5A6C3A6A471260B279B9063E86B9C7765E18656 ] C:\Windows\System32\MsCtfMonitor.dll
03:08:20.0818 0x0ddc  C:\Windows\System32\MsCtfMonitor.dll - ok
03:08:20.0818 0x0ddc  [ F09A9A1AD21FE618C4C8B0A0D830C886, 29831DDAB2AB105358FBC067CDF96428220B6743CD6019F6FE74BAC7AF325E7E ] C:\Windows\System32\msutb.dll
03:08:20.0818 0x0ddc  C:\Windows\System32\msutb.dll - ok
03:08:20.0834 0x0ddc  [ 94EEAC26F57811BD1AEFC164412F7FCE, 7390BCD7709D48DE75D7D6E06AA7356D1C58EE63F3CC2E07ABCD2E2FF6CC81CF ] C:\Windows\System32\PlaySndSrv.dll
03:08:20.0834 0x0ddc  C:\Windows\System32\PlaySndSrv.dll - ok
03:08:20.0850 0x0ddc  [ 3121A79D13A61562BE9CC902CD46B542, 00A5833A48338A4A9A5530844924AF4F1FAB618DA46D7EBBC6E2165C32ED376C ] C:\Windows\System32\msidle.dll
03:08:20.0850 0x0ddc  C:\Windows\System32\msidle.dll - ok
03:08:20.0850 0x0ddc  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] C:\Windows\System32\iphlpsvc.dll
03:08:20.0850 0x0ddc  C:\Windows\System32\iphlpsvc.dll - ok
03:08:20.0865 0x0ddc  [ 734B435E1693386213EEFD4D17A70DEB, EC6288CB37BD420DA071E800FBEF25BCCF22F2A40F98DB22F1C86D87157EF1AA ] C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
03:08:20.0865 0x0ddc  C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe - ok
03:08:20.0865 0x0ddc  [ 27B9E163740A226B65E4B9E186117911, 17411C6A6C1E699BC4B0C04D782FD9AA09CF577DBA41E743F7588904D489CB9F ] C:\Windows\System32\sqmapi.dll
03:08:20.0865 0x0ddc  C:\Windows\System32\sqmapi.dll - ok
03:08:20.0881 0x0ddc  [ 7B38D7916A7CD058C16A0A6CA5077901, 3F6DD990E2DA5D3BD6D65A72CBFB0FE79EB30B118A8AD71B6C9BB5581A622DCE ] C:\Windows\System32\wdscore.dll
03:08:20.0881 0x0ddc  C:\Windows\System32\wdscore.dll - ok
03:08:20.0881 0x0ddc  [ FEB91B4DA0D540865260A33838654FA3, 8636B008BA329D3E6CC235D08BA4C914EFF45DBFCB9297C893CCDA8D907BA946 ] C:\Windows\System32\nci.dll
03:08:20.0881 0x0ddc  C:\Windows\System32\nci.dll - ok
03:08:20.0896 0x0ddc  [ C9FB9038B15036CA28CF0B4BE2BED9BD, 0F56384E798B3F725FFEFC6E31A980DA31F620DB847F601273EF19E8CE74A226 ] C:\Windows\System32\en-US\tquery.dll.mui
03:08:20.0896 0x0ddc  C:\Windows\System32\en-US\tquery.dll.mui - ok
03:08:20.0896 0x0ddc  [ 2067F48D026667923B7BC7184E0D234C, B91D6366979FF3B1A4BA0C112253A965DD1A655355729CD5B25B7E647B8FD04D ] C:\Windows\System32\win32spl.dll
03:08:20.0896 0x0ddc  C:\Windows\System32\win32spl.dll - ok
03:08:20.0912 0x0ddc  [ 9AE80F6A66B30E3ED8CDF858CF28B11B, A93E470DC54E3C74C10979D49CABB9A34893F9E847F88491F935DB44EEC3541A ] C:\Windows\System32\d3d10_1.dll
03:08:20.0912 0x0ddc  C:\Windows\System32\d3d10_1.dll - ok
03:08:20.0912 0x0ddc  [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C, 78889511D6F471009674CC958F8BB77B4A79C952634B18E8AFF4A75AA6A60E87 ] C:\Windows\System32\ndiscapCfg.dll
03:08:20.0912 0x0ddc  C:\Windows\System32\ndiscapCfg.dll - ok
03:08:20.0928 0x0ddc  [ 3D6AF45673C4B31CDECD7F80AF09D443, 7D711D138C107816155AFA5E5FDC6892734074BEFF604B5904177B5D9ACE4670 ] C:\Windows\System32\rascfg.dll
03:08:20.0928 0x0ddc  C:\Windows\System32\rascfg.dll - ok
03:08:20.0928 0x0ddc  [ 2DF29664ED261F0FC448E58F338F0671, 4EFE79C383D0AF126FC4EE668D822563F8F037B1E61D73747A35FE11AAFDB8CE ] C:\Windows\System32\mprapi.dll
03:08:20.0928 0x0ddc  C:\Windows\System32\mprapi.dll - ok
03:08:20.0943 0x0ddc  [ 1CF21800E337F4039AAD4C94B4280EE4, EF434CEF6E62A202B85E8EC7916EB998E20B10675437CDE90084CDA938C0AA3F ] C:\Windows\System32\mprmsg.dll
03:08:20.0943 0x0ddc  C:\Windows\System32\mprmsg.dll - ok
03:08:20.0959 0x0ddc  [ 55DE45B116711881C852D2841E4C84DD, 18E5021530BB44042C85087BAE4FEDA633E01CDCBA09C90A5941B74C75133A35 ] C:\Windows\System32\tcpipcfg.dll
03:08:20.0959 0x0ddc  C:\Windows\System32\tcpipcfg.dll - ok
03:08:20.0959 0x0ddc  [ C4F67ABCC5033D334613F28F9E782809, A19E32E2EF790E88E7013C298AF0A34A9957A7CE55DF19FBD7BDF688D3767BA5 ] C:\Windows\System32\drivers\srv2.sys
03:08:20.0959 0x0ddc  C:\Windows\System32\drivers\srv2.sys - ok
03:08:20.0974 0x0ddc  [ A109A31CCA0013DC2039DD0F33CA4A42, B74936D3201616079D762BAC4E786A2C6B0055A846C6F70B8A8CF3A90C86E5ED ] C:\Program Files\Malwarebytes\Anti-Malware\PoliciesControllerImpl.dll
03:08:20.0974 0x0ddc  C:\Program Files\Malwarebytes\Anti-Malware\PoliciesControllerImpl.dll - ok
03:08:20.0990 0x0ddc  [ 153E323D54B5B8299CD89191DAB1024D, B65507719AB05BCEAD72264F797D792248FE9EC731FC327858C5213B88AD9F0B ] C:\Program Files\Malwarebytes\Anti-Malware\LicenseControllerImpl.dll
03:08:20.0990 0x0ddc  C:\Program Files\Malwarebytes\Anti-Malware\LicenseControllerImpl.dll - ok
03:08:20.0990 0x0ddc  [ E86D9281183F4ECAE901BF7FFA96DC03, 2F704BF155C7A30D20231725E7DD489BA6A474E6D06FABAF08BFB34A6BEF7E92 ] C:\Program Files\Malwarebytes\Anti-Malware\UpdateControllerImpl.dll
03:08:20.0990 0x0ddc  C:\Program Files\Malwarebytes\Anti-Malware\UpdateControllerImpl.dll - ok
03:08:21.0006 0x0ddc  [ 72E6A150A8C8530B201832D1C801CDE6, EFBDD5D1FB924979E63D829A6970CB5552A746BEBB7C4D41066684CA16A374E0 ] C:\Windows\System32\drivers\srv.sys
03:08:21.0006 0x0ddc  C:\Windows\System32\drivers\srv.sys - ok
03:08:21.0021 0x0ddc  [ 64F1047AE7FD3EB8694E5CA97693B190, 85572878BC24234EDAE9E6F0A0DA1009DB93351E736611C368A50C4661CD05D1 ] C:\Windows\SysWOW64\ieframe.dll
03:08:21.0021 0x0ddc  C:\Windows\SysWOW64\ieframe.dll - ok
03:08:21.0037 0x0ddc  [ 63F72417CA38D8FC8F53709649B589E3, 39AE8AFFCFB8A9E345FC4C6F11926F25552C464380F88CDECD299FD27AF7866B ] C:\Windows\System32\d3d10_1core.dll
03:08:21.0037 0x0ddc  C:\Windows\System32\d3d10_1core.dll - ok
03:08:21.0224 0x0ddc  [ 60F4AEFA103D421EA4A40E31409B4756, 037A8605CA504A4FF43E9D4DE9017CEA1E26D3556C975872C747E24D8B0835EF ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
03:08:21.0224 0x0ddc  C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
03:08:21.0224 0x0ddc  [ 6607C2182C6A53ED983813AFE2F85768, FC9E718ABC4E0FBC7B0DD145F9C377A1800A7776AD832AB645796E13B1E15A1F ] C:\Windows\System32\wbem\cimwin32.dll
03:08:21.0224 0x0ddc  C:\Windows\System32\wbem\cimwin32.dll - ok
03:08:21.0240 0x0ddc  [ 8E91E0F429D18017ED00F096EE8CE994, F2A021AAFDE3DAEFDBC89B2145B0281DF633A66DCBBC64492471F7BFCD6AEB32 ] C:\Windows\SysWOW64\shdocvw.dll
03:08:21.0240 0x0ddc  C:\Windows\SysWOW64\shdocvw.dll - ok
03:08:21.0240 0x0ddc  [ 510FB616264FE12BC3B4561AF35CCBC7, 1D410CA508264C971B2E9D2A9EC6E87DC09597EF3A3C383E86A009E5A1DA9CF8 ] C:\Users\Atho\AppData\Local\Temp\{312B79AB-8CE5-40BB-801E-7D09C7442111}\{E0EC7381-2E87-4554-8711-CCBBB32B031F}.exe
03:08:21.0240 0x0ddc  C:\Users\Atho\AppData\Local\Temp\{312B79AB-8CE5-40BB-801E-7D09C7442111}\{E0EC7381-2E87-4554-8711-CCBBB32B031F}.exe - ok
03:08:21.0255 0x0ddc  [ 1DD375A8607A64F53406607195A5BA32, 720485DA21B7B1BD6032F540E995214A45C043B2622D7233DD2D6AE93590DE7F ] C:\Windows\System32\inetpp.dll
03:08:21.0255 0x0ddc  C:\Windows\System32\inetpp.dll - ok
03:08:21.0271 0x0ddc  [ 7FB61DA3AD3DB35EEEB7F6ECB14F4030, 70DA1CC1C1FE15A70E198C5D2421783D36BE1AA13D1CBD2A950D61E922239844 ] C:\Program Files\Malwarebytes\Anti-Malware\CloudControllerImpl.dll
03:08:21.0271 0x0ddc  C:\Program Files\Malwarebytes\Anti-Malware\CloudControllerImpl.dll - ok
03:08:21.0271 0x0ddc  [ 26DC695A8D549D1C9137C14E6D3B8B4D, 9ED007AA82E440CEB39A6E105BB1D602A9BC59A4946267BA8DE2F220AA15BC06 ] C:\Program Files\Malwarebytes\Anti-Malware\7z.dll
03:08:21.0271 0x0ddc  C:\Program Files\Malwarebytes\Anti-Malware\7z.dll - ok
03:08:21.0286 0x0ddc  [ 8DFB5752FCE145A6B295093C0A8BE131, F38029C8B36EFD46B1F6CCA0089FF4EFB0AB246497E38EDFF6A67FAC804D4A97 ] C:\Windows\System32\dxgi.dll
03:08:21.0286 0x0ddc  C:\Windows\System32\dxgi.dll - ok
03:08:21.0286 0x0ddc  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9, E18D66455D00A6D2A2D7CC0833C233FE8A6DD910B59D6B5B5F82EF91450858DF ] C:\Windows\SysWOW64\sfc.dll
03:08:21.0318 0x0ddc  C:\Windows\SysWOW64\sfc.dll - ok
03:08:21.0333 0x0ddc  [ 84799328D87B3091A3BDD251E1AD31F9, F85521215924388830DBB13580688DB70B46AF4C7D82D549D09086438F8D237B ] C:\Windows\SysWOW64\sfc_os.dll
03:08:21.0333 0x0ddc  C:\Windows\SysWOW64\sfc_os.dll - ok
03:08:21.0333 0x0ddc  [ 162D247E995EAEBF3EF4289069E1111C, 19E858E9902E2D570FFD24AE2CB4165273F5BAB1FF7B04758B11AB5CD41FD752 ] C:\Windows\SysWOW64\devrtl.dll
03:08:21.0333 0x0ddc  C:\Windows\SysWOW64\devrtl.dll - ok
03:08:21.0349 0x0ddc  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] C:\Windows\System32\srvsvc.dll
03:08:21.0349 0x0ddc  C:\Windows\System32\srvsvc.dll - ok
03:08:21.0349 0x0ddc  [ 3A5A8A94B88C8FD0D8819F82136A5F8A, 0E9C9A1126039B072C2BAE04C3B731139035082A5FCE91E89248963E40571905 ] C:\Windows\System32\SearchProtocolHost.exe
03:08:21.0349 0x0ddc  C:\Windows\System32\SearchProtocolHost.exe - ok
03:08:21.0364 0x0ddc  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] C:\Windows\System32\browser.dll
03:08:21.0364 0x0ddc  C:\Windows\System32\browser.dll - ok
03:08:21.0427 0x0ddc  [ CFEFA40DDE34659BE5211966EAD86437, AC0A3AD8AA47012C40785013E2273FC571F416BC9C9FFDA418FE72B3123C1FB0 ] C:\Windows\System32\netmsg.dll
03:08:21.0427 0x0ddc  C:\Windows\System32\netmsg.dll - ok
03:08:21.0442 0x0ddc  [ 158E32C297632CA1733A31FC3917DD6C, 4036DBAA2797C13DDFDFA8CD6EF50599598FEE10C4E581996E218BE00DA04CCE ] C:\Windows\System32\msshooks.dll
03:08:21.0442 0x0ddc  C:\Windows\System32\msshooks.dll - ok
03:08:21.0458 0x0ddc  [ FF80CAD87555E8E4D2CFD7B9058343F8, 07653773FBEC1996408B8507B08E0E1E812830063F932F897F4B39EE63DDCDC4 ] C:\Windows\System32\sscore.dll
03:08:21.0458 0x0ddc  C:\Windows\System32\sscore.dll - ok
03:08:21.0458 0x0ddc  [ 21F7875DF5DD6FB0C1B961B40336129D, 037A83ADA0848CDAACEE39B6CE9B1F2473097A19CBF695A8A3344E35D8486E60 ] C:\Windows\System32\SearchFilterHost.exe
03:08:21.0458 0x0ddc  C:\Windows\System32\SearchFilterHost.exe - ok
03:08:21.0474 0x0ddc  [ BBB85BBEDE3D56F2F93772B5238B7485, 4AF2DA612DA77A17A2FE9B044B35B8A0E68F3850B1AFD918BEF0F3009133B366 ] C:\Program Files\Malwarebytes\Anti-Malware\TelemetryControllerImpl.dll
03:08:21.0474 0x0ddc  C:\Program Files\Malwarebytes\Anti-Malware\TelemetryControllerImpl.dll - ok
03:08:21.0474 0x0ddc  [ A08C010D859F8EB42BDD7E1D55B8CA27, F86EAFBF7AA41D8425156C07398EDC3BD42F1690BD3E15D27AEF2EDA86549F15 ] C:\Windows\System32\mscoree.dll
03:08:21.0474 0x0ddc  C:\Windows\System32\mscoree.dll - ok
03:08:21.0489 0x0ddc  [ 81749E073AC5857B044A686B406E5244, 3884EE705CA34235B29942FEDA8FEA654A21139B8C2A1D5E009C7D07D6E6ADF1 ] C:\Windows\System32\clusapi.dll
03:08:21.0489 0x0ddc  C:\Windows\System32\clusapi.dll - ok
03:08:21.0489 0x0ddc  [ 4C92EB7535CAA1681A77D928FBF9771F, 7D02B2357CA02393CA711C3C499AAD86B792EEFFDC67F2CE52F7F7BB8A28DE79 ] C:\Windows\System32\d3d11.dll
03:08:21.0489 0x0ddc  C:\Windows\System32\d3d11.dll - ok
03:08:21.0520 0x0ddc  [ DC4EEBF548FDF3DDD6A3A7AD4293A61B, 4B19DDB99EA49673297A175A2E616895BB848B5EFF65253AA705D06AC54E1732 ] C:\Windows\System32\themeui.dll
03:08:21.0520 0x0ddc  C:\Windows\System32\themeui.dll - ok
03:08:21.0536 0x0ddc  [ 7146413FF84E00168B95DE4145B51F5A, CFFE7617BE91DC9C043A2708B3F2AC2BF007A1D8298DD48F7D2A68AA4B022D39 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
03:08:21.0536 0x0ddc  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
03:08:21.0536 0x0ddc  [ 3275A5E45969E818A8AFE5D809D09180, B095DD520BE77CEBD1E95571115B6ABA11EBF6C7C4224FF23F331DA810FC5514 ] C:\Program Files\Malwarebytes\Anti-Malware\CleanControllerImpl.dll
03:08:21.0536 0x0ddc  C:\Program Files\Malwarebytes\Anti-Malware\CleanControllerImpl.dll - ok
03:08:21.0552 0x0ddc  [ 344FCC9850C3A8A3B4D3C65151AF8E4C, C38853454E153B1AB4AEAE1AAFB7CB4B2E6234208CF24C09F3B2AFE25E271C5C ] C:\Windows\System32\resutils.dll
03:08:21.0552 0x0ddc  C:\Windows\System32\resutils.dll - ok
03:08:21.0552 0x0ddc  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] C:\Windows\System32\ListSvc.dll
03:08:21.0552 0x0ddc  C:\Windows\System32\ListSvc.dll - ok
03:08:21.0567 0x0ddc  [ E6F0F82788E8BD0F7A616350EFA0761C, 13091DCB3E3F4F52C3FF210E93AAF1DCE142CFC09F671AEAC5B922393B23E67B ] C:\Windows\System32\actxprxy.dll
03:08:21.0567 0x0ddc  C:\Windows\System32\actxprxy.dll - ok
03:08:21.0567 0x0ddc  [ 4A82EA2807B16FF577AEAF8ADB8779FF, C7F9A45FF80DFDE804D81BEE23C748A465AEB729DF2C9E327374CDD94E300547 ] C:\Windows\System32\IdListen.dll
03:08:21.0567 0x0ddc  C:\Windows\System32\IdListen.dll - ok
03:08:21.0583 0x0ddc  [ F620E0E9919B0F09AEDD0988414F4B26, 97D14ED28181C04FBCC98DCC12ED611F723431F5094DF503AF8B0E9D793B99EF ] C:\Program Files\Malwarebytes\Anti-Malware\ScanControllerImpl.dll
03:08:21.0583 0x0ddc  C:\Program Files\Malwarebytes\Anti-Malware\ScanControllerImpl.dll - ok
03:08:21.0583 0x0ddc  [ 21CA3FEC7A49BEE4CCC39BC59F5D2FA9, 0AD95081D2AA531A081DAEF06ADBB7117A15FC4056DA00C51CA17922C68B7F7D ] C:\Windows\System32\mssprxy.dll
03:08:21.0583 0x0ddc  C:\Windows\System32\mssprxy.dll - ok
03:08:21.0598 0x0ddc  [ F2E9222A20D87ED9127195EDCADD6BC1, E15B8E8E73E8CE7BE78D076DBBD82CE436AB45FF70AEAC84C7BC5D9E57CDFD5A ] C:\Windows\SysWOW64\mshtml.dll
03:08:21.0598 0x0ddc  C:\Windows\SysWOW64\mshtml.dll - ok
03:08:21.0614 0x0ddc  [ A2992AD7198E05C9EEFD561B49568137, 6452EC840D0118D3F7A12FED36D3D9CE9D85D4ED18CC2B440AEE4FF6B79A9C6E ] C:\Program Files\Malwarebytes\Anti-Malware\ActionsShim.dll
03:08:21.0614 0x0ddc  C:\Program Files\Malwarebytes\Anti-Malware\ActionsShim.dll - ok
03:08:21.0614 0x0ddc  [ C8584E8773E541BAC251CAA92DEBCE7D, BCA947350EF931A1ED640EA82C3B13A8D0BD890016BB6F141AD2C8817C74DBC9 ] C:\Windows\System32\mssph.dll
03:08:21.0614 0x0ddc  C:\Windows\System32\mssph.dll - ok
03:08:21.0630 0x0ddc  [ A0524499F4C63CADA7E1529FC77F5DC1, DCAF3C89B7363139EB128C6240CA2B301090BF18C57688B0990FC2BBF680752F ] C:\Windows\System32\hgprint.dll
03:08:21.0630 0x0ddc  C:\Windows\System32\hgprint.dll - ok
03:08:21.0630 0x0ddc  [ 8E53F18F137F806CBD523ADD2A6DEEFA, 1510EC1B013343EAF921D12155533154B8BBCDA93306F7FD619160DDB1ADED4F ] C:\Program Files\Malwarebytes\Anti-Malware\MBAMShim.dll
03:08:21.0630 0x0ddc  C:\Program Files\Malwarebytes\Anti-Malware\MBAMShim.dll - ok
03:08:21.0645 0x0ddc  [ B0906BC6F78D95480932DA54FCB2CFCE, D75C93778CFCD375D162F277EB49433A037EF787D191E27CB032CE498F5D66BF ] C:\Program Files\Malwarebytes\Anti-Malware\Actions.dll
03:08:21.0645 0x0ddc  C:\Program Files\Malwarebytes\Anti-Malware\Actions.dll - ok
03:08:21.0645 0x0ddc  [ BEFCB17A838F9D71DADFB6D6378D5CFB, E76E61838384E15EEA52FD16E3FBC6DE4321978E88C6E7EFDA266EC0BEA9D0C6 ] C:\Program Files\Malwarebytes\Anti-Malware\SwissarmyShim.dll
03:08:21.0645 0x0ddc  C:\Program Files\Malwarebytes\Anti-Malware\SwissarmyShim.dll - ok
03:08:21.0661 0x0ddc  [ E027A6E99EF709AFD195FD6329224C47, B31B85BF369DC36363B0E527AE3B8E95B33699D17D09C6313C43E7373A3E6874 ] C:\Users\Atho\AppData\Local\Temp\{4610F922-0F83-4932-B332-C44C3A943804}\{36D505D2-9DA5-4E7F-B618-64E7DDD42DE1}.tmp
03:08:21.0661 0x0ddc  C:\Users\Atho\AppData\Local\Temp\{4610F922-0F83-4932-B332-C44C3A943804}\{36D505D2-9DA5-4E7F-B618-64E7DDD42DE1}.tmp - ok
03:08:21.0661 0x0ddc  [ AB67816718E5C65CC326BE56AC0B9E73, D6F19026CB87C9BB5521D668B13347B68F297FCE34C5F1BFE530574B16ADB2D5 ] C:\Users\Atho\AppData\Local\Temp\{4610F922-0F83-4932-B332-C44C3A943804}\{0714C2A6-627F-4F62-BDE5-4941EAF18526}.tmp
03:08:21.0661 0x0ddc  C:\Users\Atho\AppData\Local\Temp\{4610F922-0F83-4932-B332-C44C3A943804}\{0714C2A6-627F-4F62-BDE5-4941EAF18526}.tmp - ok
03:08:21.0676 0x0ddc  [ 321FF1DF7F4CEF3FA690419110BEE55A, 41243293C9876D8B94F83B28C98F1797CD217140153DDEE631C2EEB8E102C6A0 ] C:\Users\Atho\AppData\Local\Temp\{4610F922-0F83-4932-B332-C44C3A943804}\{C5D648D7-5C30-476A-A7A1-ED1A889520E0}.tmp
03:08:21.0676 0x0ddc  C:\Users\Atho\AppData\Local\Temp\{4610F922-0F83-4932-B332-C44C3A943804}\{C5D648D7-5C30-476A-A7A1-ED1A889520E0}.tmp - ok
03:08:21.0692 0x0ddc  [ 73DC9840FE246158ECCBC8270847CCBC, 1C64CE16FBFD47D9D4E439BA0076DA71269C9E249FC7A474463592948F3A96D7 ] C:\Windows\System32\mapi32.dll
03:08:21.0692 0x0ddc  C:\Windows\System32\mapi32.dll - ok
03:08:21.0692 0x0ddc  [ EC37F0FC946903F60952EF8AA6A52EFC, 05A8CAA685DF98B24BF0EE7BF31E7D9B55F908437B34B960FC0B98D43617030B ] C:\Program Files\Malwarebytes\Anti-Malware\Swissarmy.dll
03:08:21.0692 0x0ddc  C:\Program Files\Malwarebytes\Anti-Malware\Swissarmy.dll - ok
03:08:21.0708 0x0ddc  [ FB10715E4099AF9FA389C71873245226, 6A4CB43880B822A0C4714D6E52EB3EB2CE1E69C3AA9CA65EAAD6B131AE43F274 ] C:\Windows\System32\timedate.cpl
03:08:21.0708 0x0ddc  C:\Windows\System32\timedate.cpl - ok
03:08:21.0708 0x0ddc  [ 7FA39F97E70048CF087AB8C5D201A680, 55B234AC2D40F9BA736D1C2FA4F40C8F8E4C89CA08B07749C2009735BED8ECEC ] C:\Windows\System32\shdocvw.dll
03:08:21.0708 0x0ddc  C:\Windows\System32\shdocvw.dll - ok
03:08:21.0723 0x0ddc  [ DC6DB08D85337C9675F94B01043279AE, B09E491113F9E95F4EE00BB51BB21D4967BAC333C0DCD030A10AEA9B9E52032B ] C:\Users\Atho\AppData\Local\Temp\{4610F922-0F83-4932-B332-C44C3A943804}\{B78B0753-C2AB-4C92-93E0-1997B859AA72}.tmp
03:08:21.0723 0x0ddc  C:\Users\Atho\AppData\Local\Temp\{4610F922-0F83-4932-B332-C44C3A943804}\{B78B0753-C2AB-4C92-93E0-1997B859AA72}.tmp - ok
03:08:21.0723 0x0ddc  [ C74D46C1F542F5FEB9B7E1A8EC04986D, FA83733A81BA8D96EDFD15C1914D5A6056D73C61540C8747E9AE1343DA47A63D ] C:\Users\Atho\AppData\Local\Temp\{4610F922-0F83-4932-B332-C44C3A943804}\{46A73CDD-95F7-45B2-9E69-57545AFF930C}.tmp
03:08:21.0723 0x0ddc  C:\Users\Atho\AppData\Local\Temp\{4610F922-0F83-4932-B332-C44C3A943804}\{46A73CDD-95F7-45B2-9E69-57545AFF930C}.tmp - ok
03:08:21.0739 0x0ddc  [ 517ECD823EB9A03368294C6C33A695D0, 7BA4EF2C5E9D15A4EE8ACC169CA233010DF8D1BC7088665E06C9E71BBA0CD40C ] C:\Users\Atho\AppData\Local\Temp\{4610F922-0F83-4932-B332-C44C3A943804}\{B1481CD8-45C6-4116-9D57-9F34169BC619}.tmp
03:08:21.0739 0x0ddc  C:\Users\Atho\AppData\Local\Temp\{4610F922-0F83-4932-B332-C44C3A943804}\{B1481CD8-45C6-4116-9D57-9F34169BC619}.tmp - ok
03:08:21.0754 0x0ddc  [ 198803E5E93E29967DFB0BCFD0186151, 72C3B0FA35578A71E9988FA31A7AD91A9CF31A6BA6EC00EA1F153E99277807BF ] C:\Windows\System32\spfileq.dll
03:08:21.0754 0x0ddc  C:\Windows\System32\spfileq.dll - ok
03:08:21.0754 0x0ddc  [ FF6E04A942AB95C3CAD6C111B730102E, C90AF0E8E849C9102D748E1CDF79308BE3E5146821833D7E0E4908E0B9679797 ] C:\Windows\System32\Query.dll
03:08:21.0754 0x0ddc  C:\Windows\System32\Query.dll - ok
03:08:21.0754 0x0ddc  [ 3428F170E1953B4C4EA10A5F58B55908, B554E04021472C3C2BBDED2B4BBB4F6648932356F8DA409A2A7F6AC02E54B306 ] C:\Users\Atho\AppData\Local\Temp\{4610F922-0F83-4932-B332-C44C3A943804}\{26B110B1-3003-46A9-B312-74B771DE541F}.tmp
03:08:21.0754 0x0ddc  C:\Users\Atho\AppData\Local\Temp\{4610F922-0F83-4932-B332-C44C3A943804}\{26B110B1-3003-46A9-B312-74B771DE541F}.tmp - ok
03:08:21.0770 0x0ddc  [ 96D681B7DE0BA6BFA1DC55915003CD05, 26CDA6A9A67F20A494F0EF3577D14F5DDA1F0D4428891DBD271A757833285939 ] C:\Users\Atho\AppData\Local\Temp\{4610F922-0F83-4932-B332-C44C3A943804}\{9F248DEF-F145-404D-AD57-F5E46E7D2A20}.tmp
03:08:21.0770 0x0ddc  C:\Users\Atho\AppData\Local\Temp\{4610F922-0F83-4932-B332-C44C3A943804}\{9F248DEF-F145-404D-AD57-F5E46E7D2A20}.tmp - ok
03:08:21.0786 0x0ddc  [ 85D8D497E3CFCD66607DAD332378DE8B, FEB2FF9315B41A7D13C9F3EB4CFDD612C951CA02330BC5A9129881E148769C7F ] C:\Users\Atho\AppData\Local\Temp\{4610F922-0F83-4932-B332-C44C3A943804}\{B2C406F4-92DB-4136-A3AF-47876F841E37}.tmp
03:08:21.0786 0x0ddc  C:\Users\Atho\AppData\Local\Temp\{4610F922-0F83-4932-B332-C44C3A943804}\{B2C406F4-92DB-4136-A3AF-47876F841E37}.tmp - ok
03:08:21.0786 0x0ddc  [ CD0DAF878147B723108C428370FF0355, A5C3D8A516FD0A15DAAB442DA424E996112C355239B985413EAA4DC1FAB76303 ] C:\Users\Atho\AppData\Local\Temp\{4610F922-0F83-4932-B332-C44C3A943804}\{8C2E2787-84B5-46BC-BA74-80660259BA5E}.tmp
03:08:21.0786 0x0ddc  C:\Users\Atho\AppData\Local\Temp\{4610F922-0F83-4932-B332-C44C3A943804}\{8C2E2787-84B5-46BC-BA74-80660259BA5E}.tmp - ok
03:08:21.0801 0x0ddc  [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86, E15ED4FEFC3010C213694331DDFDC03767682325C898D773AB243E2DC8B08461 ] C:\Windows\System32\msftedit.dll
03:08:21.0801 0x0ddc  C:\Windows\System32\msftedit.dll - ok
03:08:21.0801 0x0ddc  [ 2EBD0C5B090125AECF017C57344C45AB, 4FF8F2460115C60AD164EE0DC2079E1601B8AA21A1BA8033B7B731FAF85411B6 ] C:\Windows\System32\msls31.dll
03:08:21.0801 0x0ddc  C:\Windows\System32\msls31.dll - ok
03:08:21.0817 0x0ddc  [ 01528EBF3709CC32B9563BB4495E2E44, 62B8D0C8063FA170FD5A02BCEA1AC80DFA662425192D6ACA100FC23CF177A849 ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
03:08:21.0817 0x0ddc  C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
03:08:21.0832 0x0ddc  [ A0A65D306A5490D2EB8E7DE66898ECFD, CE5DA408F4EDD5E81CE0925867F03C9A35172CF1571FE4C4C052E45AB69822BB ] C:\Windows\System32\linkinfo.dll
03:08:21.0832 0x0ddc  C:\Windows\System32\linkinfo.dll - ok
03:08:21.0832 0x0ddc  [ 5EAA1901853DC60B64C657C5EA049BF6, 687494A6C50E37F8AFD887B81BBDB9CD19A321B93E82720244A9C74956B5186A ] C:\Program Files\Apoint2K\Apoint.exe
03:08:21.0832 0x0ddc  C:\Program Files\Apoint2K\Apoint.exe - ok
03:08:21.0848 0x0ddc  [ 4C2C4640BF23AAFCF90519E0F34436CE, 8ACCDA77C2DC5BE2DAED05134310122AFECC872A8D118612E55DD229BFE4D844 ] C:\Windows\System32\DeviceCenter.dll
03:08:21.0848 0x0ddc  C:\Windows\System32\DeviceCenter.dll - ok
03:08:21.0848 0x0ddc  [ F5B3FF99933D8450C1CA1F663FCA2ACC, 22FA006BFAB77EB537E67BAE0167F3C840B4827BDFD95C969E1AE19C6198233B ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
03:08:21.0848 0x0ddc  C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
03:08:21.0864 0x0ddc  [ 24F4B480F335A6C724AF352253C5D98B, 011413B236CAD7B78CE0A0EEC3E3085D48C7576A3205D025BA6EBFDF590538E4 ] C:\Windows\System32\thumbcache.dll
03:08:21.0864 0x0ddc  C:\Windows\System32\thumbcache.dll - ok
03:08:21.0864 0x0ddc  [ 0291CDA835C89BE940DB51AF7EDA802F, 7EE4AF6EB85DB71658A7408DDF97E3BEBC5017DF8960F0F7267956360D7D7016 ] C:\Program Files\iTunes\iTunesHelper.exe
03:08:21.0864 0x0ddc  C:\Program Files\iTunes\iTunesHelper.exe - ok
03:08:21.0879 0x0ddc  [ 3B367397320C26DBA890B260F80D1B1B, 50BBE71B4380B5E86E197AF86F5C08266DD6B12344BA4ABDEA604B8C774C4147 ] C:\Windows\System32\hnetcfg.dll
03:08:21.0879 0x0ddc  C:\Windows\System32\hnetcfg.dll - ok
03:08:21.0879 0x0ddc  [ 405F4D32D2185F1F1BD753D8EEAFFB3A, CAC42C3E09C43BE96592B670D70821386014DB22D8239A9CFB9E33E54FB5C3D5 ] C:\Windows\System32\networkexplorer.dll
03:08:21.0879 0x0ddc  C:\Windows\System32\networkexplorer.dll - ok
03:08:21.0895 0x0ddc  [ 00569776DB4CF221DD520728D477F134, 471DE3AE7850EC61A0F3E6881C213206FA1852B072322BBE3AA1919242095693 ] C:\Program Files\Apoint2K\ApCLP.exe
03:08:21.0895 0x0ddc  C:\Program Files\Apoint2K\ApCLP.exe - ok
03:08:21.0895 0x0ddc  [ 102CF6879887BBE846A00C459E6D4ABC, A4C51C79CF95D5C79DCEFB02946A09A987FEAF83CE2EE1BA7677EBA90869AC80 ] C:\Windows\SysWOW64\riched20.dll
03:08:21.0895 0x0ddc  C:\Windows\SysWOW64\riched20.dll - ok
03:08:21.0910 0x0ddc  [ 3656E26B7CF2517F126D05F143ED1298, 1A00385661D88E471909D5F9FB03B466FD2315D88E1402A703CAFFC620980AD8 ] C:\Program Files\Emsisoft Anti-Malware\a2guard.exe
03:08:21.0910 0x0ddc  C:\Program Files\Emsisoft Anti-Malware\a2guard.exe - ok
03:08:21.0910 0x0ddc  [ 6C74389E58BB6B601313C99316241C2E, 3E00B42F255482748D786814031848D74BCB6F1AC2257A73B26C9FEB2A37EA7A ] C:\Program Files\iTunes\CoreFoundation.dll
03:08:21.0910 0x0ddc  C:\Program Files\iTunes\CoreFoundation.dll - ok
03:08:21.0926 0x0ddc  [ C0C52C67FF8B65B6C98AA8B9136E2E47, 0992177D06F98D053BB930119F5C9BA3B34091D8A47218238A4FB8494B0E242F ] C:\Windows\SysWOW64\ExplorerFrame.dll
03:08:21.0926 0x0ddc  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
03:08:21.0926 0x0ddc  [ 5CC78C7D785E3D123F59698DD2134EA2, 0DC3C70904D89E809C46ADC6C8BFC651C55C1D4553F6B470A2AC05450537F9AE ] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
03:08:21.0926 0x0ddc  C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE - ok
03:08:21.0942 0x0ddc  [ 624B74CD2ECDC36E71636CDBC937C475, 4C2439B88835E93074CBE5D56BF33E9C10096175C7EA1199550FC688C87F0B11 ] C:\Program Files\CCleaner\CCleaner64.exe
03:08:21.0942 0x0ddc  C:\Program Files\CCleaner\CCleaner64.exe - ok
03:08:21.0957 0x0ddc  [ 6E1F8165C365D35C8E3C045AF0CDD481, B861360D0A014265A0BEB4CC2FE31EA05AE95120E8B07820C13A044D64C00E2B ] C:\Windows\SysWOW64\duser.dll
03:08:21.0957 0x0ddc  C:\Windows\SysWOW64\duser.dll - ok
03:08:21.0957 0x0ddc  [ 984A9C23C7F93D948D094DB8747CC84C, 2D024D31BBBC38C77A18A9C554558949103BAC67BB84C7108670CECE550B8FC9 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
03:08:21.0957 0x0ddc  C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe - ok
03:08:21.0973 0x0ddc  [ C3761661C17C2248A9379A8FB89E3DE1, CE3477FA2B4058EB80739E0161FE957545F13CF86D313F6422732901D35F75F2 ] C:\Windows\System32\stobject.dll
03:08:21.0973 0x0ddc  C:\Windows\System32\stobject.dll - ok
03:08:21.0973 0x0ddc  [ EE06B85BC69F18826302348A2AD089E0, 417205797CC9F6C986A863A61179784D9ADCAF1961EF8A4D9042D73C5A86509A ] C:\Windows\SysWOW64\dui70.dll
03:08:21.0973 0x0ddc  C:\Windows\SysWOW64\dui70.dll - ok
03:08:21.0988 0x0ddc  [ F832EEEA97CDDA1AF577E721F652A0D1, EBBB7CA199BA4DF231123922BD310D43DE0104C6185B70FE0281B938D5336F2E ] C:\Windows\System32\batmeter.dll
03:08:21.0988 0x0ddc  C:\Windows\System32\batmeter.dll - ok
03:08:21.0988 0x0ddc  [ 78C731752C27A9A0CC3EC95C3A7FB3D1, 4412036CB4BC8592C777881C8EA6F5FAA363552DBACB5F0606E87A86A8A40AC6 ] C:\Program Files\iTunes\objc.dll
03:08:21.0988 0x0ddc  C:\Program Files\iTunes\objc.dll - ok
03:08:22.0004 0x0ddc  [ 9110FFAD124283F37D38771BB60556AF, BB495FDF86B7C3DD7878C496090A624CE8FE68F61166C91A4C99EF1140F0AD23 ] C:\Windows\System32\dsound.dll
03:08:22.0004 0x0ddc  C:\Windows\System32\dsound.dll - ok
03:08:22.0004 0x0ddc  [ BC83108B18756547013ED443B8CDB31B, B2AD109C15EAA92079582787B7772BA0A2F034F7D075907FF87028DF0EAEA671 ] C:\Windows\SysWOW64\msvcp100.dll
03:08:22.0004 0x0ddc  C:\Windows\SysWOW64\msvcp100.dll - ok
03:08:22.0020 0x0ddc  [ 6C54351BE6949FBADD4ECF2EB48E7919, CF3867AC46D5EE172D36920F2FAE5F12E88ACEDDD1E4679034F4CE2A26C79F11 ] C:\Program Files\iTunes\ASL.dll
03:08:22.0020 0x0ddc  C:\Program Files\iTunes\ASL.dll - ok
03:08:22.0020 0x0ddc  [ 4D40E898F1167763E41AA9944A99790F, 269B43FF040FE6D772A02D11C103253B2664FFD6D38D85991CC7F2FA355C7B2D ] C:\Program Files\iTunes\libdispatch.dll
03:08:22.0020 0x0ddc  C:\Program Files\iTunes\libdispatch.dll - ok
03:08:22.0035 0x0ddc  [ 2A907103A350A20AB5EFE25F43DBEAE3, 171181FAD872B69916764B8AD9F8335099DC28C1AE4F6301F4A8B214A07BD433 ] C:\Program Files\iTunes\libicuin.dll
03:08:22.0035 0x0ddc  C:\Program Files\iTunes\libicuin.dll - ok
03:08:22.0035 0x0ddc  [ E424B3EF666B184CEE0B6871AAA8C9F6, D182D9B3A813C75F88CA16A9C236AB6167DF5861D155B5DC016B90918C4BD579 ] C:\Windows\System32\msimg32.dll
03:08:22.0035 0x0ddc  C:\Windows\System32\msimg32.dll - ok
03:08:22.0051 0x0ddc  [ 263E9A047D17CD50BAA9D3C02910D18D, F526648358AD121001D2776E0ACC333EC4AC168CA07B40A3D3C06C5CE6A361C3 ] C:\Windows\System32\oledlg.dll
03:08:22.0051 0x0ddc  C:\Windows\System32\oledlg.dll - ok
03:08:22.0066 0x0ddc  [ 0E37FBFA79D349D672456923EC5FBBE3, 8793353461826FBD48F25EA8B835BE204B758CE7510DB2AF631B28850355BD18 ] C:\Windows\SysWOW64\msvcr100.dll
03:08:22.0066 0x0ddc  C:\Windows\SysWOW64\msvcr100.dll - ok
03:08:22.0066 0x0ddc  [ A6E1379EBE20E0BFA119DAA11D764008, 06117EEC4C68FEECB4520509FE9A2D2F2E7738672C3396CF4AFF2F921392EAC2 ] C:\Windows\System32\Vxdif.dll
03:08:22.0066 0x0ddc  C:\Windows\System32\Vxdif.dll - ok
03:08:22.0082 0x0ddc  [ 5046E55184021406C27E8D48A1B2C9D2, DA592E05F2BA21A540B409FD2156A5BDF253EB3B50B30EEDCAE325DD026993D7 ] C:\Windows\System32\l3codeca.acm
03:08:22.0082 0x0ddc  C:\Windows\System32\l3codeca.acm - ok
03:08:22.0082 0x0ddc  [ 2A436796758BF2555A26C770FE8A6FEE, 9E42AF3A3CB05E323CBB7F93FE7C454CD251672C5D9F5E94909131A5D8F9204A ] C:\Windows\System32\fdProxy.dll
03:08:22.0082 0x0ddc  C:\Windows\System32\fdProxy.dll - ok
03:08:22.0098 0x0ddc  [ AF1C14B6527F7E4ADFD2D3D7FC8AB4CB, 80D66821C345FC818EED0E4636E68536BD0235492E17C6F4A6678E939EDC2E68 ] C:\Program Files\Apoint2K\Apoint.dll
03:08:22.0098 0x0ddc  C:\Program Files\Apoint2K\Apoint.dll - ok
03:08:22.0098 0x0ddc  [ DD957A143AB26B457967B80752968681, 8B09465EE0DF9C197038CB35B9D30D42AD916A8F84B0CDABAF164C5D18B105A0 ] C:\Windows\System32\RtkApi64.dll
03:08:22.0098 0x0ddc  C:\Windows\System32\RtkApi64.dll - ok
03:08:22.0113 0x0ddc  [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122, E7EA375A3BDE8FC764CB09524344370B9EE25F98AD6C83E6F37A569EB8D277D6 ] C:\Windows\System32\prnfldr.dll
03:08:22.0113 0x0ddc  C:\Windows\System32\prnfldr.dll - ok
03:08:22.0113 0x0ddc  [ C6A02AC4BBAED894BFBCDAF89292BFB3, 0328081C84695FF8B53FF9C3FF826F1F8C7D32E96B19E432C86699778C15D08B ] C:\Program Files\Internet Explorer\ieproxy.dll
03:08:22.0113 0x0ddc  C:\Program Files\Internet Explorer\ieproxy.dll - ok
03:08:22.0129 0x0ddc  [ A6C09924C6730DE8DEED9890A12AA691, 46EACBC27D15FD43431812D6CA770982178C07246AF3A1C2E0D40D745A1D5758 ] C:\Windows\System32\ddraw.dll
03:08:22.0129 0x0ddc  C:\Windows\System32\ddraw.dll - ok
03:08:22.0129 0x0ddc  [ 42A9CB6906D9A8BEDC83B57163E62924, E18522D3137653140757829EFBFCE624A5BAA5842E2BBA10B9E5AB6C84BE49E1 ] C:\Windows\System32\DXP.dll
03:08:22.0129 0x0ddc  C:\Windows\System32\DXP.dll - ok
03:08:22.0144 0x0ddc  [ 80B77F6AFCEBA95733C22F2945D3E95B, 545F3CE3BB34E0E1CF55F9C8EC9C2660EF7624F75310E29E43FC379DB6B8E8EB ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll
03:08:22.0144 0x0ddc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
03:08:22.0160 0x0ddc  [ 4F288AB1AC7482A949604CAFCF973B9B, 76FDB7FD797CB0CF364250A99F91966E02EFC19A95829C5C8CB9600150FF3162 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll
03:08:22.0160 0x0ddc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
03:08:22.0160 0x0ddc  [ 99851AEF40CCC89527358327FA3AC645, 89861E803E5281D4BA890CE1FF997F5BF2B7E2B61E37D56AF8B0CD89408D4616 ] C:\Program Files\SUPERAntiSpyware\SSUPDATE64.EXE
03:08:22.0160 0x0ddc  C:\Program Files\SUPERAntiSpyware\SSUPDATE64.EXE - ok
03:08:22.0176 0x0ddc  [ 6E4B873F25F9F677A147C0BD8B413BB4, 0B17761170206AA72A6D72556848FE270157126C2C88CE071C4FD3839C017729 ] C:\Program Files\iTunes\libicuuc.dll
03:08:22.0176 0x0ddc  C:\Program Files\iTunes\libicuuc.dll - ok
03:08:22.0191 0x0ddc  [ 7E4355201ACA2DA7C90BF6F81B5BAB37, 78611FB3E12E07BD8E497B2EA0AA4B1FD3D56390B08540772E76A4B2244C55C8 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll
03:08:22.0191 0x0ddc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
03:08:22.0191 0x0ddc  [ 22A19C5D955B8977F50E684F58027F90, 5413074A58B5E44A3CCD504D6F5D31C15A7BA49CE351B34AB28905682DAAB626 ] C:\Windows\System32\dciman32.dll
03:08:22.0191 0x0ddc  C:\Windows\System32\dciman32.dll - ok
03:08:22.0207 0x0ddc  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891, 0A82A475301202791A7C10F978F952EAB7DB146A702D4EA67E24E2C98BC19638 ] C:\Windows\System32\Syncreg.dll
03:08:22.0207 0x0ddc  C:\Windows\System32\Syncreg.dll - ok
03:08:22.0207 0x0ddc  [ 67611DEA70471375E1913A4CFC6A6575, A176C6DFCFB69D053FEC446D81AAF67E2BB713C00A5D87BEBE21D3AEE5C7A227 ] C:\Program Files\Apoint2K\EzAuto.dll
03:08:22.0207 0x0ddc  C:\Program Files\Apoint2K\EzAuto.dll - ok
03:08:22.0238 0x0ddc  [ CF636C92B762B26F0B39B38E92380A09, F7B8B0EA4536CE3BA33EE1BD0783F6AAD8C0EF69714E874D4A30B720A04C7A18 ] C:\Windows\System32\oleacc.dll
03:08:22.0238 0x0ddc  C:\Windows\System32\oleacc.dll - ok
03:08:22.0254 0x0ddc  [ 2DC317539B7904CF7815982BA3913651, A01978E2FA1FA14BFBADC74D7A37275D2532C179E0586495F14C857991EF217B ] C:\Program Files\Apoint2K\ApOffice.dll
03:08:22.0254 0x0ddc  C:\Program Files\Apoint2K\ApOffice.dll - ok
03:08:22.0254 0x0ddc  [ 92DBF0A4C9239169010FC6E07859C82E, 00FB2CF4420F0FFEF519AFE732A708CF249640121E2A891CAA164313ABD7F804 ] C:\Windows\System32\ActionCenter.dll
03:08:22.0254 0x0ddc  C:\Windows\System32\ActionCenter.dll - ok
03:08:22.0269 0x0ddc  [ FB4045578F5180BDB1963AB352B78548, 8E645A63436EE6CDDB78E6064AEB04ECE39208F760A3EF13A3F49FDF41505E21 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
03:08:22.0269 0x0ddc  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
03:08:22.0269 0x0ddc  [ 08044B47D14CAE12EAF445F539E7E889, 259097371647E48897DFD595FF1EBE2D351576BFBCAC8E7599AC64BDF5C0DE57 ] C:\Program Files\Emsisoft Anti-Malware\a2framework.dll
03:08:22.0269 0x0ddc  C:\Program Files\Emsisoft Anti-Malware\a2framework.dll - ok
03:08:22.0285 0x0ddc  [ B6411CED931AFD059E48C52DBFBA95B4, 4E275A691E6A1C07D72DC8DA16B58B6634286A5058C3F4AC0ABD92B9A57FB5D5 ] C:\Windows\System32\P2P.dll
03:08:22.0285 0x0ddc  C:\Windows\System32\P2P.dll - ok
03:08:22.0285 0x0ddc  [ 8BC7F8F0B7AE856D910B3FDD895EC50E, CEBE62829BD416D961F9A779A60ED60366095F557DDE5350ADB09C53B3A23A8D ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
03:08:22.0285 0x0ddc  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
03:08:22.0300 0x0ddc  [ E86AC7E04662BCB844D838A756A3D5EC, 5EED4F5BE2F21619FC5E44C2DDAF003C441DE3C81ACF6D1F0599D8A05A96D880 ] C:\Windows\System32\RtkCfg64.dll
03:08:22.0300 0x0ddc  C:\Windows\System32\RtkCfg64.dll - ok
03:08:22.0316 0x0ddc  [ 92E0508D924512F63FFEEFE498CBD11F, 1158011E4A1298DEC79133B40888AA87B06F5B64BA2AB461B58C22F5F9211D0C ] C:\Windows\System32\p2pcollab.dll
03:08:22.0316 0x0ddc  C:\Windows\System32\p2pcollab.dll - ok
03:08:22.0316 0x0ddc  [ 65324E87F3FE03B1CF1649729B2135FE, AB832A2C2F612F6D5C8C4F170E1168ECD86463583ABAAA26265FC0CCBD9087C7 ] C:\Program Files (x86)\IObit\IObit Uninstaller\SpecUTool.exe
03:08:22.0316 0x0ddc  C:\Program Files (x86)\IObit\IObit Uninstaller\SpecUTool.exe - ok
03:08:22.0332 0x0ddc  [ C746F3BF98E92FB137B5BD2B8B5925BD, 67A8990F3D491D149E65C90042909259793C65E671DC953FDA1F7590FAC23D9E ] C:\Windows\System32\FXSST.dll
03:08:22.0332 0x0ddc  C:\Windows\System32\FXSST.dll - ok
03:08:22.0332 0x0ddc  [ DD05D7A73A0661CE2F80FDAD989BECD5, 5509299B32A9064ED6BB1BFEDF23FAC1AD8F5FCB684404AA8E1A7D33BB272CF0 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll
03:08:22.0332 0x0ddc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\objc.dll - ok
03:08:22.0347 0x0ddc  [ C60488312F538AB7FA26386A93291C5D, 422B44ACBEB2A63DD958EAEAE10A1B64324CE401E1D7D08BDA479506DD234766 ] C:\Program Files\iTunes\icudt55.dll
03:08:22.0347 0x0ddc  C:\Program Files\iTunes\icudt55.dll - ok
03:08:22.0347 0x0ddc  [ D7B191577D466FEC2FC62EC31F85E498, F506DE33951EFB04F5F346078202AAF39762AEA2FA1F18F5F06A992D2016BD6E ] C:\Program Files\Apoint2K\ApMsgFwd.exe
03:08:22.0347 0x0ddc  C:\Program Files\Apoint2K\ApMsgFwd.exe - ok
03:08:22.0363 0x0ddc  [ 0E0ED59F3B1426D714B9DE6E5007FE84, 58AC3FEF55E35BFFC0319F37434BDA136AE506EC4A984DBB5FE1B7F24852A16E ] C:\Program Files\Internet Explorer\iexplore.exe
03:08:22.0363 0x0ddc  C:\Program Files\Internet Explorer\iexplore.exe - ok
03:08:22.0363 0x0ddc  [ D3015AA6C65068E00EB07F442D0EB2A6, A76C22E8936270178D6B2BBB9F4719E20BA5E3A97A2F4B011449B6D7D0D34354 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll
03:08:22.0363 0x0ddc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ASL.dll - ok
03:08:22.0378 0x0ddc  [ 8D2FD9BC3A80E7FC5AA472071856923A, 94BB3C79F1E5F262585840FBC99D278854A508C5AF82676EE36AE5854B496208 ] C:\Program Files (x86)\IObit\IObit Uninstaller\forcedelctl.dll
03:08:22.0378 0x0ddc  C:\Program Files (x86)\IObit\IObit Uninstaller\forcedelctl.dll - ok
03:08:22.0378 0x0ddc  [ 25721223C771C327A3516F055D310432, 89A10D156BBB6CB58825C5F2D06C073ECEEBC7C5B612593CAD7D43415CF24BFC ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll
03:08:22.0378 0x0ddc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
03:08:22.0394 0x0ddc  [ D5AEFAD57C08349A4393D987DF7C715D, C36A45BC2448DF30CD17BD2F8A17FC196FAFB685612CACCEB22DC7B58515C201 ] C:\Windows\SysWOW64\winmm.dll
03:08:22.0394 0x0ddc  C:\Windows\SysWOW64\winmm.dll - ok
03:08:22.0394 0x0ddc  [ 650CAEA856943E29F25A25D31E004B18, DCA63D2AF4C6F14B27EA006F200E58A5C13AC940A51947A40F668908A446CC4E ] C:\Windows\System32\FXSAPI.dll
03:08:22.0394 0x0ddc  C:\Windows\System32\FXSAPI.dll - ok
03:08:22.0410 0x0ddc  [ 9FCE2F8DFB2901358FBE958574EC32E5, 8E489CC51B5C00C75446B296CF3DE237E78ADA41E43EA47B1F6D06F5861103F6 ] C:\Program Files (x86)\IObit\IObit Uninstaller\webres.dll
03:08:22.0410 0x0ddc  C:\Program Files (x86)\IObit\IObit Uninstaller\webres.dll - ok
03:08:22.0410 0x0ddc  [ 0F7BC00FB8A08E077F2695F9C7A13A7C, 55216F56D3BEF5310D33815927241C98D92A56ABE7A136909A7DC7BE4FBF3B34 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll
03:08:22.0410 0x0ddc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuin.dll - ok
03:08:22.0425 0x0ddc  [ FD97807051658AE27799BE3A557D3776, 114E111F1E195BE203BF35B12B2C1442B6708E12D0B68E9577D31A778B116D25 ] C:\Program Files\Apoint2K\ApntEx.exe
03:08:22.0425 0x0ddc  C:\Program Files\Apoint2K\ApntEx.exe - ok
03:08:22.0425 0x0ddc  [ 1B0E5412AB8F30B8ED2AEAC2C530EB90, C3EA2387C1C8BD0FBBB72F825612CCE2B78F1B20216214EF431C37E652CCA404 ] C:\Program Files\Apoint2K\hidfind.exe
03:08:22.0425 0x0ddc  C:\Program Files\Apoint2K\hidfind.exe - ok
03:08:22.0441 0x0ddc  [ C8E8B8239FCF17BEA10E751BE5854631, CB869195E78AB613CEF50AE3B247F0E4E42F233A7AAF5B2BFC5ADEA2C45C5F8D ] C:\Windows\System32\FXSRESM.dll
03:08:22.0441 0x0ddc  C:\Windows\System32\FXSRESM.dll - ok
03:08:22.0441 0x0ddc  [ CFA501AEA42EFD78088F4D8781317655, 8CC9500E2045A68C99EDB2C6EEC69F806ED6F9F56880810C599DEFAA98D9C497 ] C:\Program Files (x86)\IObit\IObit Uninstaller\vclx120.bpl
03:08:22.0441 0x0ddc  C:\Program Files (x86)\IObit\IObit Uninstaller\vclx120.bpl - ok
03:08:22.0456 0x0ddc  [ 02F4D7164C708C10EE0C10F660245C95, 3386AA57E230F96C925C3609CB255FF10DF158FD340B0D29C7DF5D4328C51DAE ] C:\Program Files\Internet Explorer\sqmapi.dll
03:08:22.0456 0x0ddc  C:\Program Files\Internet Explorer\sqmapi.dll - ok
03:08:22.0456 0x0ddc  [ 307A6D4F7CD94E384ECFF05AFA30B42C, A7026F0E37C5E8508F58415263411685E311DC0A783D123E2CD033BDE84D817E ] C:\Windows\SysWOW64\olepro32.dll
03:08:22.0456 0x0ddc  C:\Windows\SysWOW64\olepro32.dll - ok
03:08:22.0472 0x0ddc  [ 850BD2D2D9CB5894935C3B6333CAD6FD, AB1EE5FD5E2F1CC927C3EA92E71C91ACA566E69622D47AE780DA391B7C30DDD6 ] C:\Windows\System32\riched20.dll
03:08:22.0472 0x0ddc  C:\Windows\System32\riched20.dll - ok
03:08:22.0488 0x0ddc  [ B750FF233258C74A4CAC418DC293FD5A, 92B611779E2C84747821FF57EE24BFC2AC3865F0C30B6FBB4523AD24DAF42BCC ] C:\Program Files\Emsisoft Anti-Malware\clean.dll
03:08:22.0488 0x0ddc  C:\Program Files\Emsisoft Anti-Malware\clean.dll - ok
03:08:22.0488 0x0ddc  [ 220159496484D34009DE71CA1A68E0D4, 94BD3DEB4E84F95D80BE5775E5A612EFF181ECB212FB668674C67AD19194DE69 ] C:\Windows\System32\wbem\NCProv.dll
03:08:22.0488 0x0ddc  C:\Windows\System32\wbem\NCProv.dll - ok
03:08:22.0503 0x0ddc  [ C836175870E00ACC546066632E15BD10, 4347F3319C26DA1C38F395C74DBD67AF886149C8F29EDE765DD96C8480A3054A ] C:\Windows\ehome\ehSSO.dll
03:08:22.0503 0x0ddc  C:\Windows\ehome\ehSSO.dll - ok
03:08:22.0503 0x0ddc  [ 16AE65AC9C9DA5A2BB649A2322AF16CC, 7F9FC3542D98392BBEFF89EABA767B1EEADE812149A1A30FFCC93A915A923FA3 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll
03:08:22.0503 0x0ddc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
03:08:22.0519 0x0ddc  [ A42F2C1EB3B66C54FB3C7B79D30C1A6D, A63836DB3B01835DC1311526A95198D6EBCCB1DC9DDAFBC38EC36C128CDB98B9 ] C:\Windows\System32\netshell.dll
03:08:22.0519 0x0ddc  C:\Windows\System32\netshell.dll - ok
03:08:22.0519 0x0ddc  [ E4396C20417C8EC1AA059885697BD99C, 69521EFF03A4F0641A97023AF7214BC443007D8EF9708FA47E0E15C8AD4D2656 ] C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll
03:08:22.0519 0x0ddc  C:\Program Files\Common Files\Apple\Mobile Device Support\iTunesMobileDevice.dll - ok
03:08:22.0534 0x0ddc  [ FF4AEE63FAF02198B5BF9135B0AF366B, 2024B14591008F1FBB5AA3673899771F2A2E358DCAD4D8D13CFE6FF1A3D41FCC ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt55.dll
03:08:22.0534 0x0ddc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\icudt55.dll - ok
03:08:22.0550 0x0ddc  [ B837D1528CE2E3CB79F09496BC08DDC6, ACD54CE61CFE94F23DC283537AD8FFBEB3D6041BD30317B60BA7A10FCB240A27 ] C:\Windows\System32\SensApi.dll
03:08:22.0550 0x0ddc  C:\Windows\System32\SensApi.dll - ok
03:08:22.0550 0x0ddc  [ 748849C42DEA24C723048E24BCA1BD55, 517DDE70E7CB8E94C6E8B9B05CCD4BC6490A8837FD8BB874C9E1186D8EF07659 ] C:\Windows\System32\wshbth.dll
03:08:22.0550 0x0ddc  C:\Windows\System32\wshbth.dll - ok
03:08:22.0566 0x0ddc  [ 4FDFA3F219692D17011BF1B428857C1E, 0422101F9D47633DFF47DF022031C4221B9D395F3E23C0C6E0A54CE55D76565D ] C:\Program Files\Windows Defender\MpRTP.dll
03:08:22.0566 0x0ddc  C:\Program Files\Windows Defender\MpRTP.dll - ok
03:08:22.0566 0x0ddc  [ 3B5D6CAC765E86BE07AA7959A35D553C, A774DE8D3E67561360E911DBBAA5D001D8DF57A327A6BACC372C6A8B78018B6A ] C:\Windows\System32\tdh.dll
03:08:22.0566 0x0ddc  C:\Windows\System32\tdh.dll - ok
03:08:22.0581 0x0ddc  [ 1D1EAA16D193C6A2D45981ED3914D22A, 587228942AA867FBA0D2A04F52A3431F33453B2C2735E4C45D621A4358BB9BB0 ] C:\Windows\SysWOW64\msimtf.dll
03:08:22.0581 0x0ddc  C:\Windows\SysWOW64\msimtf.dll - ok
03:08:22.0581 0x0ddc  [ 298FDE634538B62CEEEC266D8773B21A, E6E445282D17CEAFEAB66A5A1E0124DD50F2438205BCE5649DB998BDAED06CB7 ] C:\Windows\SysWOW64\msls31.dll
03:08:22.0581 0x0ddc  C:\Windows\SysWOW64\msls31.dll - ok
03:08:22.0597 0x0ddc  [ 14800BD31701A5047AC3145BB1E698AE, 05B4E33B14B9623EE065634708D9C4CDC7226146F9614C4F374E6B097BB35A50 ] C:\Windows\SysWOW64\d2d1.dll
03:08:22.0597 0x0ddc  C:\Windows\SysWOW64\d2d1.dll - ok
03:08:22.0597 0x0ddc  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] C:\Windows\System32\FXSSVC.exe
03:08:22.0597 0x0ddc  C:\Windows\System32\FXSSVC.exe - ok
03:08:22.0612 0x0ddc  [ 3023B8536E746F9F1BBCD9A466F73126, CD76D8BFF8A68EDAC1F9D74475E22B2BBF655F8F582C302F79390881D02949D3 ] C:\Program Files\iTunes\CFNetwork.dll
03:08:22.0612 0x0ddc  C:\Program Files\iTunes\CFNetwork.dll - ok
03:08:22.0628 0x0ddc  [ C8FDF0FA9E97E2FAAF3F814716AAA881, DD24A1CAB44D943B0E1A795A347AD25D9305FC7F012A2566A6A14BD47221831F ] C:\Windows\System32\WPDShServiceObj.dll
03:08:22.0628 0x0ddc  C:\Windows\System32\WPDShServiceObj.dll - ok
03:08:22.0628 0x0ddc  [ 4F3CD1C59EA71401E155C432BCECE180, 6D4118A627CAE509E43D0CC0062EECAA0990C955BB15AE24834460551B2F51A2 ] C:\Windows\System32\PortableDeviceTypes.dll
03:08:22.0628 0x0ddc  C:\Windows\System32\PortableDeviceTypes.dll - ok
03:08:22.0644 0x0ddc  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB, CF9082360E32A7C3E13A67AC2C6192F4A76870D43DA9FF2936993A637F712761 ] C:\Windows\System32\AltTab.dll
03:08:22.0644 0x0ddc  C:\Windows\System32\AltTab.dll - ok
03:08:22.0644 0x0ddc  [ 10F815BE90A66AAFC6C713D1BD626064, 01139FC04BC53594296F6A0E16B8D20B940F64BC8119FE7705C03C4947958F39 ] C:\Windows\System32\pnidui.dll
03:08:22.0644 0x0ddc  C:\Windows\System32\pnidui.dll - ok
03:08:22.0659 0x0ddc  [ 3067B34529550727AB349BD0B86BD9C3, 7BC6E9DDD5E76921E5A32FFB00C434F1B6307DF422A6CA0DD0F0E4D37C2A3C2D ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices_main.dll
03:08:22.0659 0x0ddc  C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices_main.dll - ok
03:08:22.0659 0x0ddc  [ D5967E799B764ED62A3FEC66B9FBDE0C, 6C0E4306A7E8EBE30BC8383E7A8F38799179EA9F61384FCCFE8E26BB9EFEC206 ] C:\Program Files (x86)\IObit\IObit Uninstaller\IObitLiveUpdate.exe
03:08:22.0659 0x0ddc  C:\Program Files (x86)\IObit\IObit Uninstaller\IObitLiveUpdate.exe - ok
03:08:22.0675 0x0ddc  [ 4F25D51642EFC446C883AAB6F46D171C, DDB3C49D8CBF17C97BD403B10742D09E22C52262E96791F678A2997D1FEE3074 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\AOSKit.dll
03:08:22.0675 0x0ddc  C:\Program Files (x86)\Common Files\Apple\Internet Services\AOSKit.dll - ok
03:08:22.0690 0x0ddc  [ 9C89AB070A58C2F4E1EDC582A367F5E4, BF9B95A65BB45F7E3EE04266C50A3B8FB1C3B32F14F251FD26DF41062505C11F ] C:\Program Files\iTunes\libxml2.dll
03:08:22.0690 0x0ddc  C:\Program Files\iTunes\libxml2.dll - ok
03:08:22.0690 0x0ddc  [ 7D6F50412D50CA3F0764AE2242AC2C4F, D41747C2CA85B40CBD48A149CB3BB2D4339F4304FE05CDBF082041CB65AC9596 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll
03:08:22.0690 0x0ddc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
03:08:22.0706 0x0ddc  [ D4F264FE23F8953D840904418220C15E, 72EAF30265A0CC88DEC0FCA7869734D8C93572457C61A2BF1BDFFB20C061DBCD ] C:\Windows\SysWOW64\dxgi.dll
03:08:22.0706 0x0ddc  C:\Windows\SysWOW64\dxgi.dll - ok
03:08:22.0706 0x0ddc  [ B9F0A4020AA98B7A20287BF7FE99A1FD, 21138F161EEEA46198890C7A2D073F2C82829E15676131BDAD9F237EDC7477CD ] C:\Windows\System32\QUTIL.DLL
03:08:22.0706 0x0ddc  C:\Windows\System32\QUTIL.DLL - ok
03:08:22.0722 0x0ddc  [ 1329930C7246A2A2179E5E51359390CC, 0960E76E8B3811FA7900F893D2BDAED933A7B68EE2183BB28309493BF45950E5 ] C:\Program Files (x86)\Mozilla Firefox\firefox.exe
03:08:22.0722 0x0ddc  C:\Program Files (x86)\Mozilla Firefox\firefox.exe - ok
03:08:22.0722 0x0ddc  [ E64D9EC8018C55873B40FDEE9DBEF5B3, 2DB11E7C631A9887CB75AFEAD2C79EC65F82C51F5F073CEFC8CDDF664EFF29C1 ] C:\Windows\System32\PortableDeviceApi.dll
03:08:22.0722 0x0ddc  C:\Windows\System32\PortableDeviceApi.dll - ok
03:08:22.0737 0x0ddc  [ 952F4749D35E67A905EBF68C5AB6EA97, 978F5A4FEE69BDC59C9EEDB377539B97D14B6069DEC6A180405AA010C9563A01 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F5A05411-52B7-4169-B078-1080CF3EEBD5}\mpengine.dll
03:08:22.0737 0x0ddc  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F5A05411-52B7-4169-B078-1080CF3EEBD5}\mpengine.dll - ok
03:08:22.0737 0x0ddc  [ BA2415151C3D23E514D882948B860437, EF93C9C7C6FE9AC31F3960133FAB73DA9DB283A09086C554AB9EF8D2824ADBE5 ] C:\Program Files\iTunes\SQLite3.dll
03:08:22.0737 0x0ddc  C:\Program Files\iTunes\SQLite3.dll - ok
03:08:22.0753 0x0ddc  [ 39C3B2EEBEE102ADDA573C346FF5F3B7, F73D8780E40BF2CCE9CB6A36255BE3254237C331EC98928C4EEC05183DACDA23 ] C:\Windows\SysWOW64\igdumd32.dll
03:08:22.0753 0x0ddc  C:\Windows\SysWOW64\igdumd32.dll - ok
03:08:22.0753 0x0ddc  [ 2BCBA6052374959A30BD7948444DBB79, 46224A2B729026FEEBC3C6A09E69919D477097848DB2CA0C2F5B166CDF379660 ] C:\Windows\System32\gameux.dll
03:08:22.0753 0x0ddc  C:\Windows\System32\gameux.dll - ok
03:08:22.0768 0x0ddc  [ DF1D2F062B9D41650221C3786DB7EFDE, D6D520E704F4CC3E86F7E3E04ADC07B6193C3D42B9D9C3B28560638738CC4543 ] C:\Windows\System32\d3d10level9.dll
03:08:22.0768 0x0ddc  C:\Windows\System32\d3d10level9.dll - ok
03:08:22.0768 0x0ddc  [ 24243180DBFC3A63B816A2E4F4DE063A, 12C641A9C0B9202D2D460C8F80AE52F5EF2B24670BBA7806E93055F4E4D67201 ] C:\Program Files\iTunes\zlib1.dll
03:08:22.0768 0x0ddc  C:\Program Files\iTunes\zlib1.dll - ok
03:08:22.0784 0x0ddc  [ 458585DF67BE700D886890B27DC7A311, 9531DDB68A64B635BEF438E6DB1CE1EFE16DB4773B50E3EDDA21A9BD0A398BBD ] C:\Program Files\iTunes\pthreadVC2.dll
03:08:22.0784 0x0ddc  C:\Program Files\iTunes\pthreadVC2.dll - ok
03:08:22.0784 0x0ddc  [ D55A6842A7B9AF46DFE1990FAA802BED, 8FEC89D853C16C2044BE5BBDFD1AD0B4BDD5455BEF5A812B0076DAEB6503D774 ] C:\Windows\SysWOW64\cryptui.dll
03:08:22.0784 0x0ddc  C:\Windows\SysWOW64\cryptui.dll - ok
03:08:22.0800 0x0ddc  [ B8D9E7E27C8D86F72A5754582F1BBC3E, 202EC059793F256E723D412F7F52D0B9676E0368481F2120590EE214A1694FF6 ] C:\Program Files\iTunes\dnssd.dll
03:08:22.0800 0x0ddc  C:\Program Files\iTunes\dnssd.dll - ok
03:08:22.0800 0x0ddc  [ E099C43E48910DD840BEC58C8D2FCBFB, C10FC336A7906EB275732C5C9D9C1D5A2452B7D8616EDC70B405F7AAD3EBF944 ] C:\Program Files\iTunes\mDNSResponderDLL.dll
03:08:22.0815 0x0ddc  C:\Program Files\iTunes\mDNSResponderDLL.dll - ok
03:08:22.0815 0x0ddc  [ 3FF8D5691CCFB6DF18B19E9CBF40C9A7, 54E0B41FB454922EB541223FF155534DADACEF37F7DA0F16D5685BA27AE13EF6 ] C:\Windows\System32\api-ms-win-crt-runtime-l1-1-0.dll
03:08:22.0815 0x0ddc  C:\Windows\System32\api-ms-win-crt-runtime-l1-1-0.dll - ok
03:08:22.0815 0x0ddc  [ 9CEF848DD7026D2626B35032A7B21E6D, 56DE253172B2FF70BA89CC0544E09C6DD34D6793231C09AA6DFAAC755535F45F ] C:\Windows\System32\vcruntime140.dll
03:08:22.0815 0x0ddc  C:\Windows\System32\vcruntime140.dll - ok
03:08:22.0831 0x0ddc  [ DB193BC981EE6B08A733775140B64361, E2EB3F31F771BD53A4E9F3954F73771D80020744A37A6E3781CAC5FD955B1E9E ] C:\Windows\System32\ucrtbase.dll
03:08:22.0831 0x0ddc  C:\Windows\System32\ucrtbase.dll - ok
03:08:22.0846 0x0ddc  [ 996AC54A4C92266D4D670DD3061EA54A, 07E3DB07D4531E31E005BA1773766C816B7CCF3EE58C14B1E2ACB81A27D44018 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
03:08:22.0846 0x0ddc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll - ok
03:08:22.0846 0x0ddc  [ 4F6E72B34ED3DC53DCC5E8708E60B61F, CB79F4EBCE11ECCFA167498F329F95D545F8D4E5CCE4006B2A03B595733AEBC2 ] C:\Windows\SysWOW64\security.dll
03:08:22.0846 0x0ddc  C:\Windows\SysWOW64\security.dll - ok
03:08:22.0862 0x0ddc  [ B21AADD4AD9385C95BA6EA4F31C60BE3, CD0C701CB806CDC05FD4376026A63B1164EDF8DDECA3B683275B4CBFAD60A8ED ] C:\Windows\System32\api-ms-win-core-file-l2-1-0.dll
03:08:22.0862 0x0ddc  C:\Windows\System32\api-ms-win-core-file-l2-1-0.dll - ok
03:08:22.0862 0x0ddc  [ B0C8140885296119DD19EF8F152F3189, 3F787D0E045D41F6202C439079C7AEF19D13AC5BB79EDF54A5055B90DE3853B0 ] C:\Windows\System32\api-ms-win-core-localization-l1-2-0.dll
03:08:22.0862 0x0ddc  C:\Windows\System32\api-ms-win-core-localization-l1-2-0.dll - ok
03:08:22.0878 0x0ddc  [ F524543B76862E055B571EDE044E7A66, EA42D9023FF676A1D656E4EB6E571FB8D26E0688901977856581968214C8D0E7 ] C:\Windows\System32\api-ms-win-core-timezone-l1-1-0.dll
03:08:22.0878 0x0ddc  C:\Windows\System32\api-ms-win-core-timezone-l1-1-0.dll - ok
03:08:22.0878 0x0ddc  [ 59FCF8E5808F9AF4B0E75CDFADE6B26B, EF5FC371BBDD7D2B27E7E9FB61246E190DE237FABB208DE0C73A6BA392C3903E ] C:\Windows\System32\api-ms-win-core-processthreads-l1-1-1.dll
03:08:22.0878 0x0ddc  C:\Windows\System32\api-ms-win-core-processthreads-l1-1-1.dll - ok
03:08:22.0893 0x0ddc  [ 8A841DD4C9A7FBD7B0CE28C89164CF5D, 0BACB383C16CB9A579C362A2538AABC0F13722DC3D3B1D4554D24DE47F6A2CC8 ] C:\Windows\System32\api-ms-win-core-file-l1-2-0.dll
03:08:22.0893 0x0ddc  C:\Windows\System32\api-ms-win-core-file-l1-2-0.dll - ok
03:08:22.0909 0x0ddc  [ 94C070298F2B99B1804A9D658DA502DE, BB10975C006F02F6B4837784425BCEE846899896EB1EBC11373D67F18A62A49A ] C:\Windows\System32\api-ms-win-crt-heap-l1-1-0.dll
03:08:22.0909 0x0ddc  C:\Windows\System32\api-ms-win-crt-heap-l1-1-0.dll - ok
03:08:22.0909 0x0ddc  [ F2284B143D4AB8DBFA15FBCD6B162DEC, 156B19FEEC303B5EA5755969B9E652ED946F46E173F13987FE8AB6CA558B9BCF ] C:\Windows\System32\api-ms-win-crt-stdio-l1-1-0.dll
03:08:22.0909 0x0ddc  C:\Windows\System32\api-ms-win-crt-stdio-l1-1-0.dll - ok
03:08:22.0924 0x0ddc  [ 13156EBD3B32DB18BDADE26FE6230205, 84C3BF49D25E33F5C2CC0EFC73F7BEB9791D1E969D5512591EC6CC8E8678E2DE ] C:\Windows\System32\api-ms-win-crt-string-l1-1-0.dll
03:08:22.0924 0x0ddc  C:\Windows\System32\api-ms-win-crt-string-l1-1-0.dll - ok
03:08:22.0924 0x0ddc  [ C0EAB1B65BF0DFE39FA445E8917201A8, 32043F7EDD059C818E4C095EFC6BDFB23ADD74EBF3439B1AE0E499986BE6633D ] C:\Windows\System32\api-ms-win-crt-convert-l1-1-0.dll
03:08:22.0924 0x0ddc  C:\Windows\System32\api-ms-win-crt-convert-l1-1-0.dll - ok
03:08:22.0940 0x0ddc  [ 6F14CB391767A3BB45CE9AA5E36B8B15, 9F4C9879EFA6518DEA07115B66D21D98C2F94A50F1649F8786B7CB1C9D1F915F ] C:\Windows\System32\wer.dll
03:08:22.0940 0x0ddc  C:\Windows\System32\wer.dll - ok
03:08:22.0956 0x0ddc  [ 11532383C4B0958646430586746C6991, 7DFDBE5DBE3B944D1B8D6D722C90877292231508FC6C2BD6730588207230D322 ] C:\Windows\System32\api-ms-win-crt-utility-l1-1-0.dll
03:08:22.0956 0x0ddc  C:\Windows\System32\api-ms-win-crt-utility-l1-1-0.dll - ok
03:08:22.0971 0x0ddc  [ 16E8B82153C6C7790E252B9F73902AE5, 98F2A63522C117AAE07BB6527A03D356400FFFA3E62B61BC87F698CD6D1BCDC5 ] C:\Windows\System32\api-ms-win-crt-time-l1-1-0.dll
03:08:22.0971 0x0ddc  C:\Windows\System32\api-ms-win-crt-time-l1-1-0.dll - ok
03:08:22.0971 0x0ddc  [ 2FB20C782C237F8B23DF112326048479, E0305AA54823E6F39D847F8B651B7BD08C085F1DBBCB5C3C1CE1942C0FA1E9FA ] C:\Windows\SysWOW64\msvcr120.dll
03:08:22.0971 0x0ddc  C:\Windows\SysWOW64\msvcr120.dll - ok
03:08:22.0987 0x0ddc  [ 5746BD7E255DD6A8AFA06F7C42C1BA41, DB06C3534964E3FC79D2763144BA53742D7FA250CA336F4A0FE724B75AAFF386 ] C:\Windows\System32\cmd.exe
03:08:22.0987 0x0ddc  C:\Windows\System32\cmd.exe - ok
03:08:22.0987 0x0ddc  [ 881882CDCFF8FA534A8363BF8B310C04, C4C68DCCAAABFA6A3D6D9DCA6983E08FC17D3075D70BC43B6D227CB332614205 ] C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
03:08:22.0987 0x0ddc  C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe - ok
03:08:23.0002 0x0ddc  [ F7A256EC899C72B4ECDD2C02CB592EFD, 9C1AA9322E83CABB94AEA4375EAEB0C44700E1F33B8BE98649BA1DF4DDFAD326 ] C:\Windows\System32\bthprops.cpl
03:08:23.0002 0x0ddc  C:\Windows\System32\bthprops.cpl - ok
03:08:23.0002 0x0ddc  [ 6DE66FE7C526637E74CD066461C7C871, 7E8980A3751762180D795EAC38458303BEAF8D1F85AB5F2D10D9CE7013090CBE ] C:\Windows\SysWOW64\d3d11.dll
03:08:23.0002 0x0ddc  C:\Windows\SysWOW64\d3d11.dll - ok
03:08:23.0018 0x0ddc  [ 546D585CF95AC46C152256719FFF04A9, 6064C9E57FE04A33DA0ADE0F18DD11C9B67190EC325D6684DC5BB9E41B6F6CC1 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll
03:08:23.0018 0x0ddc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
03:08:23.0018 0x0ddc  [ 90BBCA33171FC834BB0D5065DB2D6891, 1370F509D66E99D173A6293BA61A19240247C5B616EAF99D59388816038ADDD9 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F5A05411-52B7-4169-B078-1080CF3EEBD5}\mpasbase.vdm
03:08:23.0018 0x0ddc  C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F5A05411-52B7-4169-B078-1080CF3EEBD5}\mpasbase.vdm - ok
03:08:23.0034 0x0ddc  [ 8569E35D00F45972E506502EEE622BA4, 01FE851C03DB88C8373099C279F995A559D962B08932E193032FA3EAD522FB01 ] C:\Windows\System32\srchadmin.dll
03:08:23.0034 0x0ddc  C:\Windows\System32\srchadmin.dll - ok
03:08:23.0034 0x0ddc  [ 69754747274B76E7FAF287239333D7E6, A0BAEC1E56E4B1A17C0D41B317526AF5BB11E7E488C7016067A6229346A23B16 ] C:\Windows\System32\msiltcfg.dll
03:08:23.0034 0x0ddc  C:\Windows\System32\msiltcfg.dll - ok
03:08:23.0049 0x0ddc  [ 9EC1D8A9D53D5888B452C5CF75765136, 661CDABB9E688E9019B86B6F8A582BEBCDE0F7EAE0FFCAF96685312FEA7A3A6A ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
03:08:23.0049 0x0ddc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll - ok
03:08:23.0049 0x0ddc  [ 439B0973C025FF5663A07D76FAB85EE2, 7A358CC2F2527CB19AB4DBC59AD3A810F3650AF646CD34822E408CA8237D857F ] C:\Windows\System32\msi.dll
03:08:23.0049 0x0ddc  C:\Windows\System32\msi.dll - ok
03:08:23.0065 0x0ddc  [ D67DAA3998EFC0982B051A16A83FDE14, 7C0FA323C97A05B204E4236CC774B60D468FB2B87E7FBA5132AEEC14DA78A5A6 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll
03:08:23.0065 0x0ddc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
03:08:23.0065 0x0ddc  [ 753582BA3A889DAFB09DBD13018DCFB2, 732EA29A36772B3CE5F88DD0C60CA889CCDC30E441B01B844D12227AF72E1163 ] C:\Program Files\Emsisoft Anti-Malware\a2start.exe
03:08:23.0065 0x0ddc  C:\Program Files\Emsisoft Anti-Malware\a2start.exe - ok
03:08:23.0080 0x0ddc  [ 6A9F1A1BDB426E842A58255916E14CBF, 2EDB1BD9AFB9B4F467382D4307E9B1F3573C4A31BC88A91FA348ED7CEC415F93 ] C:\Program Files (x86)\IObit\IObit Uninstaller\rgfpctl.dll
03:08:23.0080 0x0ddc  C:\Program Files (x86)\IObit\IObit Uninstaller\rgfpctl.dll - ok
03:08:23.0080 0x0ddc  [ 965CFC7687F0D188F215DC142FC8F6A1, BFCF5E4660D49033EF95AD22CCC9832A205068652EEF9988E70058FF06204BCC ] C:\Windows\SysWOW64\d3d10warp.dll
03:08:23.0080 0x0ddc  C:\Windows\SysWOW64\d3d10warp.dll - ok
03:08:23.0096 0x0ddc  [ AC33819578AF85CEFCFD73CBD99821F4, 63ED2A1C8F49336A005428FB59C3304CB69C073D60E497E83E81AD7EF23F9F37 ] C:\Program Files (x86)\IObit\IObit Uninstaller\filectl.dll
03:08:23.0096 0x0ddc  C:\Program Files (x86)\IObit\IObit Uninstaller\filectl.dll - ok
03:08:23.0096 0x0ddc  [ 114A674F140B4D52B2899220C88C47B6, 3B2372C99F652E01C99AD593ADAD778C8D2D083569A2EDF03125F40D02149DBB ] C:\Program Files (x86)\IObit\IObit Uninstaller\ExtPkg.dll
03:08:23.0096 0x0ddc  C:\Program Files (x86)\IObit\IObit Uninstaller\ExtPkg.dll - ok
03:08:23.0112 0x0ddc  [ E8332020BA38C645C0B3878C6A8B076C, C5D0CCDCAF3460365A98F3C387DDB0D20847C4D26C2A20033C3BD0589D796898 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\Foundation.dll
03:08:23.0112 0x0ddc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\Foundation.dll - ok
03:08:23.0112 0x0ddc  [ 1EBE9524683C7C4EED8B8BC93FB6FBCC, 78AF098E270EDE62466557091F14B2D37BDAB488F02E7CC769251FD17C02BA4A ] C:\Windows\SysWOW64\fltLib.dll
03:08:23.0112 0x0ddc  C:\Windows\SysWOW64\fltLib.dll - ok
03:08:23.0127 0x0ddc  [ A96E078FC22E70791F851FC9DAC214E6, 1B88AC43BD6C522331FC4ACD7FA5F1D490A0071C63832C23DF23FCAAE54032D4 ] C:\Program Files (x86)\IObit\IObit Uninstaller\ProductStatistics.dll
03:08:23.0127 0x0ddc  C:\Program Files (x86)\IObit\IObit Uninstaller\ProductStatistics.dll - ok
03:08:23.0127 0x0ddc  [ 7F0729442EADB6425634505B743398F0, E4B397E8191F7EEB8E6E971250C5CC988B92E7A3C42AB86E8067F70B8B24FC24 ] C:\Windows\System32\UIAnimation.dll
03:08:23.0127 0x0ddc  C:\Windows\System32\UIAnimation.dll - ok
03:08:23.0143 0x0ddc  [ 1FC3DBBFF9900B6AB84257210639DCCF, 46A07CE6654180634D36B7DB158815B0A72E1F683B5369B3B28FCB9335C4F747 ] C:\Windows\System32\webcheck.dll
03:08:23.0143 0x0ddc  C:\Windows\System32\webcheck.dll - ok
03:08:23.0158 0x0ddc  [ 5987EA8A82C53359BCD2C29D6588583E, 59E2DF91F8DA9E33DE65FA67A6A49A7C3F524618A87EAEFC8A28C5304E7FAB85 ] C:\Windows\SysWOW64\linkinfo.dll
03:08:23.0158 0x0ddc  C:\Windows\SysWOW64\linkinfo.dll - ok
03:08:23.0158 0x0ddc  [ 68ECCA523ED760AAFC03C5D587569859, CDD734279C8F9F24EA2538BAD8E91EB8C3DD74C33032DB6B2D85C19576B42707 ] C:\Windows\SysWOW64\samcli.dll
03:08:23.0158 0x0ddc  C:\Windows\SysWOW64\samcli.dll - ok
03:08:23.0174 0x0ddc  [ 5107ADD65968CC9BCFC4A7E1CB9601F9, 64D0E069CEFBFEEE6CB3E7CE8CAF6BF586262953F22103CBBC1DCCCC123BD5A8 ] C:\PROGRA~2\COMMON~1\ADOBEA~1\Versions\1.0\RESOUR~1\ADOBEA~1.EXE
03:08:23.0174 0x0ddc  C:\PROGRA~2\COMMON~1\ADOBEA~1\Versions\1.0\RESOUR~1\ADOBEA~1.EXE - ok
03:08:23.0174 0x0ddc  [ 9096CD354C2AE8A1592BA323B3673DFB, F86BB7C7C5BDC22B9C8B42954AAA49FCBAB69BC04644FEE4C07B0E9BF22651D6 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libtidy.dll
03:08:23.0174 0x0ddc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libtidy.dll - ok
03:08:23.0190 0x0ddc  [ C5A340F54D39E4848789512115E09A20, 8E68054DBB301DC04E086CD6CBD1BA09EA065C29620BED95A1B0F7D81532E5FC ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ApplePushService.dll
03:08:23.0190 0x0ddc  C:\Program Files (x86)\Common Files\Apple\Apple Application Support\ApplePushService.dll - ok
03:08:23.0190 0x0ddc  [ A883C95684EFF25E71C3B644912C73A5, D672FB07A05FB53CC821DA0FDE823FDFD46071854FE8C6C5EA83D7450B978ECB ] C:\Windows\SysWOW64\msvcp120.dll
03:08:23.0190 0x0ddc  C:\Windows\SysWOW64\msvcp120.dll - ok
03:08:23.0205 0x0ddc  ================ Scan generic autorun ======================
03:08:23.0361 0x0ddc  [ 5EAA1901853DC60B64C657C5EA049BF6, 687494A6C50E37F8AFD887B81BBDB9CD19A321B93E82720244A9C74956B5186A ] C:\Program Files\Apoint2K\Apoint.exe
03:08:23.0377 0x0ddc  Apoint - ok
03:08:26.0076 0x0ddc  [ F5B3FF99933D8450C1CA1F663FCA2ACC, 22FA006BFAB77EB537E67BAE0167F3C840B4827BDFD95C969E1AE19C6198233B ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
03:08:26.0871 0x0ddc  RTHDVCPL - ok
03:08:26.0996 0x0ddc  [ 0291CDA835C89BE940DB51AF7EDA802F, 7EE4AF6EB85DB71658A7408DDF97E3BEBC5017DF8960F0F7267956360D7D7016 ] C:\Program Files\iTunes\iTunesHelper.exe
03:08:27.0012 0x0ddc  iTunesHelper - ok
03:08:27.0979 0x0ddc  [ 3656E26B7CF2517F126D05F143ED1298, 1A00385661D88E471909D5F9FB03B466FD2315D88E1402A703CAFFC620980AD8 ] c:\program files\emsisoft anti-malware\a2guard.exe
03:08:28.0384 0x0ddc  emsisoft anti-malware - ok
03:08:29.0040 0x0ddc  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
03:08:29.0133 0x0ddc  Sidebar - ok
03:08:29.0164 0x0ddc  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
03:08:29.0180 0x0ddc  mctadmin - ok
03:08:29.0274 0x0ddc  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
03:08:29.0305 0x0ddc  Sidebar - ok
03:08:29.0320 0x0ddc  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
03:08:29.0320 0x0ddc  mctadmin - ok
03:08:30.0646 0x0ddc  [ 5CC78C7D785E3D123F59698DD2134EA2, 0DC3C70904D89E809C46ADC6C8BFC651C55C1D4553F6B470A2AC05450537F9AE ] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
03:08:30.0990 0x0ddc  SUPERAntiSpyware - ok
03:08:32.0206 0x0ddc  [ 5CC78C7D785E3D123F59698DD2134EA2, 0DC3C70904D89E809C46ADC6C8BFC651C55C1D4553F6B470A2AC05450537F9AE ] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
03:08:32.0409 0x0ddc  SUPERAntiSpyware - ok
03:08:33.0532 0x0ddc  [ 624B74CD2ECDC36E71636CDBC937C475, 4C2439B88835E93074CBE5D56BF33E9C10096175C7EA1199550FC688C87F0B11 ] C:\Program Files\CCleaner\CCleaner64.exe
03:08:33.0969 0x0ddc  CCleaner Monitoring - ok
03:08:34.0188 0x0ddc  [ 984A9C23C7F93D948D094DB8747CC84C, 2D024D31BBBC38C77A18A9C554558949103BAC67BB84C7108670CECE550B8FC9 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
03:08:34.0203 0x0ddc  iCloudServices - ok
03:08:34.0203 0x0ddc  Waiting for KSN requests completion. In queue: 2
03:08:43.0501 0x0ddc  AV detected via SS2: Emsisoft Anti-Malware, C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\a2start.exe ( 2017.11.0.8247 ), 0x40000 ( disabled : updated )
03:08:50.0755 0x0ddc  Win FW state via NFP2: enabled ( trusted )
03:08:51.0535 0x0ddc  ============================================================
03:08:51.0535 0x0ddc  Scan finished
03:08:51.0535 0x0ddc  ============================================================
03:08:51.0550 0x0dd4  Detected object count: 0
03:08:51.0550 0x0dd4  Actual detected object count: 0
03:10:04.0480 0x0bf0  Deinitialize success


Posted Image

Down in the bayou, Bubba called an attorney and asked, "Is it true they're suin' the cigarette companies for causing people to get cancer?
"Sure is Bubba. But why you asking?"
"Cause what I want to know is, I was thinking, can I sue Budweiser for all them ugly women I've slept with?"

#10 Notorious

Notorious
  • Topic Starter

  • Members
  • 345 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Amsterdam
  • Local time:07:47 PM

Posted 06 December 2017 - 08:12 AM

Malwarebytes
www.malwarebytes.com

-Log Details-
Scan Date: 12/6/17
Scan Time: 3:25 AM
Log File: abfdb1d2-da2c-11e7-957c-0015b76fd85f.json
Administrator: Yes

-Software Information-
Version: 3.3.1.2183
Components Version: 1.0.262
Update Package Version: 1.0.3419
License: Free

-System Information-
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Viking-PC\Atho

-Scan Summary-
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 273282
Threats Detected: 1
Threats Quarantined: 1
Time Elapsed: 16 min, 51 sec

-Scan Options-
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Detect
PUM: Detect

-Scan Details-
Process: 0
(No malicious items detected)

Module: 0
(No malicious items detected)

Registry Key: 0
(No malicious items detected)

Registry Value: 0
(No malicious items detected)

Registry Data: 1
PUM.Optional.NoDrives, HKU\S-1-5-21-435613400-1741014372-946562228-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER|NODRIVES, Replaced, [14294], [293339],1.0.3419

Data Stream: 0
(No malicious items detected)

Folder: 0
(No malicious items detected)

File: 0
(No malicious items detected)

Physical Sector: 0
(No malicious items detected)


(end)


# AdwCleaner 7.0.5.0 - Logfile created on Wed Dec 06 03:03:58 2017
# Updated on 2017/29/11 by Malwarebytes
# Running on Windows 7 Ultimate (X64)
# Mode: clean
# Support: https://www.malwarebytes.com/support

***** [ Services ] *****

No malicious services deleted.

***** [ Folders ] *****

No malicious folders deleted.

***** [ Files ] *****

No malicious files deleted.

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks deleted.

***** [ Registry ] *****

Deleted: [Key] - HKU\S-1-5-21-435613400-1741014372-946562228-1001\Software\IObit\Advanced SystemCare
Deleted: [Key] - HKCU\Software\IObit\Advanced SystemCare


***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries deleted.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries deleted.

*************************

::Tracing keys deleted
::Winsock settings cleared
::Additional Actions: 0



*************************

C:/AdwCleaner/AdwCleaner[C1].txt - [3963 B] - [2016/7/10 10:11:40]
C:/AdwCleaner/AdwCleaner[C2].txt - [2437 B] - [2016/7/13 16:52:35]
C:/AdwCleaner/AdwCleaner[S0].txt - [3581 B] - [2014/1/7 11:33:52]
C:/AdwCleaner/AdwCleaner[S10].txt - [2729 B] - [2014/10/22 11:25:20]
C:/AdwCleaner/AdwCleaner[S11].txt - [3999 B] - [2017/10/15 23:12:9]
C:/AdwCleaner/AdwCleaner[S12].txt - [3431 B] - [2017/10/16 13:3:53]
C:/AdwCleaner/AdwCleaner[S13].txt - [2188 B] - [2017/10/24 12:58:39]
C:/AdwCleaner/AdwCleaner[S14].txt - [2034 B] - [2017/10/25 15:45:30]
C:/AdwCleaner/AdwCleaner[S15].txt - [2291 B] - [2017/11/20 16:39:25]
C:/AdwCleaner/AdwCleaner[S16].txt - [2300 B] - [2017/11/26 4:19:29]
C:/AdwCleaner/AdwCleaner[S17].txt - [2243 B] - [2017/11/28 4:10:40]
C:/AdwCleaner/AdwCleaner[S18].txt - [2484 B] - [2017/12/6 3:2:57]
C:/AdwCleaner/AdwCleaner[S1].txt - [5504 B] - [2014/1/7 11:40:49]
C:/AdwCleaner/AdwCleaner[S2].txt - [4284 B] - [2014/2/7 16:25:44]
C:/AdwCleaner/AdwCleaner[S3].txt - [2067 B] - [2014/2/20 15:1:9]
C:/AdwCleaner/AdwCleaner[S4].txt - [1603 B] - [2014/2/25 15:41:57]
C:/AdwCleaner/AdwCleaner[S5].txt - [1723 B] - [2014/3/18 11:19:26]
C:/AdwCleaner/AdwCleaner[S6].txt - [1716 B] - [2014/3/21 9:50:55]
C:/AdwCleaner/AdwCleaner[S7].txt - [2120 B] - [2014/8/1 16:17:33]
C:/AdwCleaner/AdwCleaner[S8].txt - [2515 B] - [2014/8/22 23:33:9]
C:/AdwCleaner/AdwCleaner[S9].txt - [2389 B] - [2014/9/5 19:29:43]


########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt ##########


Posted Image

Down in the bayou, Bubba called an attorney and asked, "Is it true they're suin' the cigarette companies for causing people to get cancer?
"Sure is Bubba. But why you asking?"
"Cause what I want to know is, I was thinking, can I sue Budweiser for all them ugly women I've slept with?"

#11 Notorious

Notorious
  • Topic Starter

  • Members
  • 345 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Amsterdam
  • Local time:07:47 PM

Posted 06 December 2017 - 08:14 AM

Eset Log

 

C:\Program Files (x86)\Magical Jelly Bean\keyfinder.exe    a variant of Win32/MagicalJellyBean.B potentially unsafe application    cleaned by deleting
C:\Users\*****\Desktop\Driver Talent\DriverTalent_setup.exe    a variant of Win32/Deceptor.DriverTalent.A application    deleted
C:\Users\*****\Desktop\Driver Talent\DriverTalent{by TECHFNF]\DriverTalent{by TECHFNF].zip    a variant of Win32/Deceptor.DriverTalent.A application    deleted
C:\Users\*****\Desktop\Driver Talent\DriverTalent{by TECHFNF]\DriverTalent{by TECHFNF]\DriverTalent_setup{by TECHFNF].exe    a variant of Win32/Deceptor.DriverTalent.A application    deleted
C:\Users\*****\Desktop\USB Drive\toshiba\toshiba stuff\NewApps\FoxitReader531.0606_enu_Setup.exe    a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application    cleaned by deleting
C:\Users\*****\Desktop\USB Drive\toshiba\toshiba stuff\NewApps\CCleaner Professional Plus v5.0.5 Full Version (2015)\ccsetup507pro.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    cleaned by deleting
C:\Users\*****\Downloads\CCleaner 5.25.5902\ccsetup535.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    cleaned by deleting
C:\Users\*****\Downloads\CCleaner 5.25.5902\ccsetup536.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    cleaned by deleting
C:\Users\*****o\Downloads\CCleaner 5.25.5902\ccsetup537.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    cleaned by deleting
C:\Users\*****\Downloads\CCleaner 5.25.5902\Download CCleaner 5.25.5902 - Download - FileHippo.com.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    cleaned by deleting
C:\Users\*****\AppData\Local\Adobe\GTB.exe    Win32/Bundled.Toolbar.Google.D potentially unsafe application    cleaned by deleting
 


Edited by Notorious, 06 December 2017 - 08:15 AM.

Posted Image

Down in the bayou, Bubba called an attorney and asked, "Is it true they're suin' the cigarette companies for causing people to get cancer?
"Sure is Bubba. But why you asking?"
"Cause what I want to know is, I was thinking, can I sue Budweiser for all them ugly women I've slept with?"

#12 dc3

dc3

    Bleeping Treehugger


  • Members
  • 29,757 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:04:47 PM

Posted 06 December 2017 - 10:57 AM

The scans didn't produce any evidence of a infection.  All that was found were a few PUPs (Potentially Unwanted Program) which weren't what of the types I would be concerned about.

 

Looking at the PUPs I see that you are using DriverTalent which scans for outdated drivers and replaces them.  This is a nice idea, but it has a problem.  When you go to replace a driver you should go to the website of the manufacturer who sold the product and download any drivers from their website.  DriverTalent finds outdated driver and will search for new drivers.  Unfortunately these programs don't bother searching for the manufacturer website, this means that you could be given drivers which effectively don't work on your device.  The following is an example of what happens when the wrong driver is installled:  The Windows 10 fall Authors update included a graphics driver which when installed disabled a large number of AMD graphics drivers.  

 

There is a common practice where the author of a programs with a fee download will allow other third party author's to bundle their software in the authors download.  If you use the "Suggested" method to install the author's program the bundled third party software is automatically installed.  These may include unwanted toolbars, software which can change your homepage, or change your default search engine, and Adware.
 

This can be avoided quite easily by using the Custom installation option.  This will take a little more time because you will need to read through the download information to see where the third party software is.  A lot of these will have a box to select the software which will usually already have a check in the box.  These are easy to spot.  There is another way that these a presented, this is a written description of the software which initially looks like it is describing the author's software.  These usually will have the option to decline the installation.  It is well worth taking the time to read and recognize what is being offered.

 

Is this disconnected network drive causing problems, or can you live with it?


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#13 Notorious

Notorious
  • Topic Starter

  • Members
  • 345 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Amsterdam
  • Local time:07:47 PM

Posted 06 December 2017 - 03:44 PM

Thank you for quick reply Tree Hugger. :)

I noticed day before yesterday that Disconnected Network Drive was already gone from Admin account and was never present on other account.

About Driver Talent, it was my own stupid fault. I went looking for WiFi driver because I couldn't connect to wireless internet, but I forgot WiFi switch on my laptop was off. :rolleyes:

Only when I wanted to update drivers, I found out I had to buy the license (and found out about the switch :lmao:) . So I uninstalled the program, run AdwCleaner, JRT and Malwarebytes just to be sure I got rid of all crap.

I was surprised to see it back in scan tho. As well as Ccleaner remains and PUM.Optional.NoDrives, HKU\S-1-5-21-435613400-1741014372-946562228-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER|NODRIVES, Replaced, [14294], [293339],1.0.3419
Malwarebytes keeps deleting.

Again, thank you for your assistance.. :)


Edited by Notorious, 06 December 2017 - 03:53 PM.

Posted Image

Down in the bayou, Bubba called an attorney and asked, "Is it true they're suin' the cigarette companies for causing people to get cancer?
"Sure is Bubba. But why you asking?"
"Cause what I want to know is, I was thinking, can I sue Budweiser for all them ugly women I've slept with?"




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users