Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Possible ZeroAccess or hacker? Could use some expert advice? [Solved]

Started by Kman4488 , Jan 10 2014 09:10 PM

This topic is locked

#1
Kman4488

Posted 10 January 2014 - 09:10 PM

Member

Member
40 posts

I have notices some things that seem fish on my computer Asus k55n windows 8 64 bit , have been trying to. Read up and learn more but the more I read the more I think I might be dealing with some sort of root kit. There has been Fishy drivers and processes running and I've found weird logs . Could someone advice me I. Where to start?

#2
emeraldnzl

Posted 10 January 2014 - 09:15 PM

GeekU Instructor

GeekU Moderator
20,051 posts

Hello Kman4488,

Welcome to Geekstogo.

Let's see if we can find what is going on with your machine.

Please download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

Right click to run as administrator. When the tool opens click Yes to disclaimer.
Press Scan button.
It will produce a log called (FRST.txt) in the same directory the tool is run from.
Please copy and paste log back here.
The first time the tool is run, it makes also another log (Addition.txt). Please also paste that into your reply.

#3
Kman4488

Posted 10 January 2014 - 09:30 PM

Member

Topic Starter
Member
40 posts

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-01-2014 01
Ran by Karl (administrator) on NEWOS8 on 10-01-2014 23:26:29
Running from C:\Users\Karl\Desktop
Windows 8 (X64) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\APRP\aprp.exe
(McAfee, Inc.) C:\Program Files\mcafee.com\agent\mcagent.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(Trend Micro Inc.) C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12936848 2012-07-13] (Realtek Semiconductor)
HKLM\...\Run: [ACMON] - C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [107192 2012-09-11] (ASUS)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe [35736 2010-11-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ASUSPRP] - C:\Program Files (x86)\ASUS\APRP\aprp.exe [3187360 2012-11-23] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ASUSWebStorage] - C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\AsusWSPanel.exe [3423104 2012-08-30] (ASUS Cloud Corporation)
HKLM-x32\...\Run: [mcui_exe] - C:\Program Files\mcafee.com\agent\mcagent.exe [1527896 2012-06-21] (McAfee, Inc.)
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)
HKLM-x32\...\Run: [AvastUI.exe] - "D:\AvastUI.exe" /nogui

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus13.msn.com
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...R&pc=ASU2JS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...R&pc=ASU2JS
SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...R&pc=ASU2JS
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...R&pc=ASU2JS
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\mcafee\msc\McSnIePl64.dll (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\msc\McSnIePl.dll (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

==================== Services (Whitelisted) =================

U2 ASUS InstantOn; C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [277120 2012-04-13] (ASUS)
U2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [109352 2014-01-10] (SurfRight B.V.)
U2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
U2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
U3 McAWFwk; C:\Program Files\mcafee\msc\McAWFwk.exe [332080 2012-01-26] (McAfee, Inc.)
U2 McMPFSvc; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U2 mcmscsvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U2 McNaiAnn; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U2 McNASvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [383608 2012-05-22] (McAfee, Inc.)
U2 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U2 McProxy; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [237920 2012-06-22] (McAfee, Inc.)
U2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [218320 2012-06-22] (McAfee, Inc.)
U2 mfevtp; C:\windows\system32\mfevtps.exe [177144 2012-06-22] (McAfee, Inc.)
U2 MSK80Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [15440 2012-07-25] (Microsoft Corporation)
U2 avast! Antivirus; "D:\AvastSvc.exe" [x]

==================== Drivers (Whitelisted) ====================

U2 APXACC; C:\Windows\system32\DRIVERS\appexDrv.sys [199008 2012-06-23] (AppEx Networks Corporation)
U2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [78648 2014-01-10] (AVAST Software)
U1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [92544 2014-01-10] (AVAST Software)
U0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-01-10] ()
U1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [1034464 2014-01-10] (AVAST Software)
U1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [422216 2014-01-10] (AVAST Software)
U3 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [82744 2014-01-10] (AVAST Software)
U0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [207904 2014-01-10] ()
U3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [98472 2012-07-16] (Advanced Micro Devices)
U3 ATP; C:\Windows\System32\drivers\AsusTP.sys [61824 2012-10-31] (ASUS Corporation)
U3 cfwids; C:\Windows\System32\drivers\cfwids.sys [69672 2012-06-22] (McAfee, Inc.)
U3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [196440 2012-04-20] (McAfee, Inc.)
U3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-01] ( )
U3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
U3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [169320 2012-06-22] (McAfee, Inc.)
U3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [300392 2012-06-22] (McAfee, Inc.)
U3 mfeavfk01; No ImagePath
U0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [66712 2012-06-18] (McAfee, Inc.)
U3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [513456 2012-06-22] (McAfee, Inc.)
U0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [752672 2012-06-22] (McAfee, Inc.)
U3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [106112 2012-06-22] (McAfee, Inc.)
U0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [335784 2012-06-22] (McAfee, Inc.)
U3 MFE_RR; \??\C:\Users\Karl\AppData\Local\Temp\mfe_rr.sys [x]
U0 msahci;

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-01-10 23:26 - 2014-01-10 23:26 - 00009394 _____ C:\Users\Karl\Desktop\FRST.txt
2014-01-10 23:26 - 2014-01-10 23:26 - 00000000 ____D C:\FRST
2014-01-10 23:25 - 2014-01-10 23:25 - 02076160 _____ (Farbar) C:\Users\Karl\Desktop\FRST64.exe
2014-01-10 23:20 - 2014-01-10 23:20 - 00000000 _____ C:\Users\Karl\Documents\'hosts'.txt
2014-01-10 22:58 - 2014-01-10 22:58 - 00007706 _____ C:\Users\Karl\Desktop\hijackthis.log
2014-01-10 22:56 - 2014-01-10 22:57 - 06229392 _____ (Trend Micro, Inc. ) C:\Users\Karl\Downloads\RUBottedSetup.exe
2014-01-10 22:55 - 2014-01-10 22:56 - 14685208 _____ (Trend Micro Inc.) C:\Users\Karl\Downloads\RootkitBusterV5.0-1129x64.exe
2014-01-10 22:54 - 2014-01-10 22:54 - 00001400 _____ C:\Users\Karl\Desktop\HitmanPro_20140110_2254.log
2014-01-10 22:50 - 2014-01-10 22:50 - 00001368 _____ C:\Users\Karl\Desktop\HitmanPro_20140110_2250.log
2014-01-10 22:38 - 2014-01-10 22:38 - 00001895 _____ C:\Users\Public\Desktop\HitmanPro.lnk
2014-01-10 22:38 - 2014-01-10 22:38 - 00000000 ____D C:\Program Files\HitmanPro
2014-01-10 22:37 - 2014-01-10 22:51 - 00000000 ____D C:\ProgramData\HitmanPro
2014-01-10 22:37 - 2014-01-10 22:37 - 00002971 _____ C:\Users\Karl\Desktop\HiJackThis.lnk
2014-01-10 22:37 - 2014-01-10 22:37 - 00000000 ____D C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
2014-01-10 22:37 - 2014-01-10 22:37 - 00000000 ____D C:\Program Files (x86)\Trend Micro
2014-01-10 22:35 - 2014-01-10 22:35 - 00125405 _____ C:\Users\Karl\Desktop\Vba32ArkitLog.html
2014-01-10 22:35 - 2014-01-10 22:35 - 00014534 _____ C:\Users\Karl\Desktop\Vba32ArkitLog.zip
2014-01-10 22:33 - 2014-01-10 22:33 - 00000000 ____D C:\Users\Karl\Desktop\vba32arkit
2014-01-10 22:25 - 2014-01-10 22:25 - 00000000 ____D C:\Users\Karl\Documents\New folder
2014-01-10 22:24 - 2014-01-10 22:24 - 00000296 _____ C:\Users\Karl\Downloads\RootkitRemover_20140110_222446.log
2014-01-10 22:24 - 2014-01-10 22:24 - 00000296 _____ C:\Users\Karl\Downloads\RootkitRemover_20140110_222400.log
2014-01-10 22:20 - 2014-01-10 22:20 - 00782640 _____ (McAfee, Inc.) C:\Users\Karl\Downloads\rootkitremover.exe
2014-01-10 22:19 - 2014-01-10 22:19 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Karl\Downloads\rkill.com
2014-01-10 22:17 - 2014-01-10 22:17 - 01472131 _____ C:\Users\Karl\Desktop\vba32arkit.zip
2014-01-10 22:16 - 2014-01-10 22:16 - 01402880 _____ C:\Users\Karl\Downloads\HiJackThis.msi
2014-01-10 22:14 - 2014-01-10 22:14 - 03810304 _____ C:\Users\Karl\Downloads\RogueKiller.exe
2014-01-10 22:13 - 2014-01-10 22:13 - 09741664 _____ (SurfRight B.V.) C:\Users\Karl\Downloads\HitmanPro_x64.exe
2014-01-10 22:13 - 2014-01-10 22:13 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Karl\Desktop\rkill.com
2014-01-10 22:12 - 2014-01-10 22:12 - 05162489 _____ (Swearware) C:\Users\Karl\Desktop\ComboFix.exe
2014-01-10 22:11 - 2014-01-10 22:11 - 04101441 _____ C:\Users\Karl\Desktop\tdsskiller.zip
2014-01-10 21:17 - 2014-01-10 21:17 - 00000000 ____D C:\sources
2014-01-10 21:10 - 2014-01-10 21:10 - 00000000 ____D C:\Users\Karl\AppData\Roaming\AVAST Software
2014-01-10 21:09 - 2014-01-10 21:09 - 00003854 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2014-01-10 21:08 - 2014-01-10 21:07 - 01034464 ____N (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2014-01-10 21:08 - 2014-01-10 21:07 - 00422216 ____N (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2014-01-10 21:08 - 2014-01-10 21:07 - 00334136 ____N (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-01-10 21:08 - 2014-01-10 21:07 - 00207904 ____N C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-01-10 21:08 - 2014-01-10 21:07 - 00092544 ____N (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2014-01-10 21:08 - 2014-01-10 21:07 - 00082744 ____N (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2014-01-10 21:08 - 2014-01-10 21:07 - 00078648 ____N (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2014-01-10 21:08 - 2014-01-10 21:07 - 00065776 ____N C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-01-10 21:07 - 2014-01-10 21:07 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-01-10 21:04 - 2014-01-10 21:04 - 00000000 ____D C:\ProgramData\AVAST Software
2014-01-10 19:58 - 2014-01-10 20:54 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-01-10 19:57 - 2014-01-10 20:54 - 00000000 ____D C:\Users\Karl\Desktop\mbar
2014-01-10 19:57 - 2014-01-10 19:57 - 00089304 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-01-10 19:10 - 2014-01-10 23:11 - 00003104 _____ C:\WINDOWS\System32\Tasks\Malwarebytes Anti-Exploit
2014-01-10 19:10 - 2014-01-10 23:11 - 00000508 _____ C:\WINDOWS\Tasks\Malwarebytes Anti-Exploit.job
2014-01-10 19:08 - 2014-01-10 19:08 - 00000000 ___RD C:\Users\Karl\SkyDrive
2014-01-10 19:04 - 2014-01-10 23:26 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Exploit
2014-01-10 19:04 - 2014-01-10 19:10 - 00000909 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Exploit.lnk
2014-01-10 19:04 - 2013-07-16 05:41 - 01858896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100d.dll
2014-01-10 19:04 - 2013-07-16 05:41 - 01498960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100d.dll
2014-01-10 19:04 - 2013-07-16 05:41 - 01014096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp100d.dll
2014-01-10 19:04 - 2013-07-16 05:41 - 00743248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp100d.dll
2014-01-10 18:40 - 2014-01-10 18:40 - 12582688 _____ (Malwarebytes Corp.) C:\Users\Karl\Downloads\mbar-1.07.0.1008 (1).exe
2014-01-10 18:39 - 2014-01-10 18:39 - 12582688 _____ (Malwarebytes Corp.) C:\Users\Karl\Downloads\mbar-1.07.0.1008.exe
2014-01-10 18:39 - 2014-01-10 18:39 - 01768696 _____ (Malwarebytes ) C:\Users\Karl\Downloads\mbae-setup-0.09.5.0250.exe
2014-01-10 18:39 - 2014-01-10 18:39 - 00167034 _____ C:\Users\Karl\Downloads\fileassassin-setup-1.06.exe
2014-01-10 18:39 - 2014-01-10 18:39 - 00065232 _____ (Malwarebytes) C:\Users\Karl\Downloads\regassassin-setup-1.03.exe
2014-01-10 18:33 - 2014-01-10 18:33 - 00000000 ____D C:\Users\Karl\AppData\Roaming\Malwarebytes
2014-01-10 18:32 - 2014-01-10 18:32 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Karl\Downloads\mbam-setup-1.75.0.1300 (1).exe
2014-01-10 18:32 - 2014-01-10 18:32 - 00001111 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-01-10 18:32 - 2014-01-10 18:32 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-10 18:32 - 2014-01-10 18:32 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-10 18:32 - 2013-04-04 16:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-01-10 18:31 - 2014-01-10 18:31 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Karl\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-10 18:31 - 2014-01-10 18:31 - 00000000 ____D C:\Users\Karl\AppData\Roaming\Macromedia
2014-01-10 18:27 - 2014-01-10 23:16 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-650591080-1347685863-2250508542-1001
2014-01-10 18:22 - 2014-01-10 23:11 - 00000401 _____ C:\Users\Karl\AppData\Roaming\sp_data.sys
2014-01-10 18:22 - 2014-01-10 18:22 - 00000000 ___RD C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-10 18:22 - 2014-01-10 18:22 - 00000000 ___RD C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-10 18:22 - 2014-01-10 18:22 - 00000000 ____D C:\Users\Karl\AppData\Roaming\ASUS WebStorage
2014-01-10 18:21 - 2014-01-10 18:21 - 00001432 _____ C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-10 18:21 - 2014-01-10 18:21 - 00000196 _____ C:\WINDOWS\FixPatch.log
2014-01-10 18:21 - 2014-01-10 18:21 - 00000134 _____ C:\WINDOWS\SysWOW64\mcmarkclean.log
2014-01-10 18:21 - 2014-01-10 18:21 - 00000000 __RSD C:\Users\Public\Desktop\ASUS
2014-01-10 18:21 - 2014-01-10 18:21 - 00000000 ____D C:\Users\Karl\AppData\Roaming\Adobe
2014-01-10 18:21 - 2014-01-10 18:21 - 00000000 ____D C:\ProgramData\FolderView
2014-01-10 18:19 - 2014-01-10 23:09 - 00233539 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-10 18:19 - 2014-01-10 22:57 - 00000000 ____D C:\Users\Karl\AppData\Local\VirtualStore
2014-01-10 18:19 - 2014-01-10 19:08 - 00002117 _____ C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-01-10 18:19 - 2014-01-10 19:08 - 00000000 ____D C:\Users\Karl
2014-01-10 18:19 - 2014-01-10 18:21 - 00000000 ____D C:\Users\Karl\AppData\Local\Packages
2014-01-10 18:19 - 2014-01-10 18:20 - 00000000 ____D C:\Users\Karl\AppData\Local\ASUS
2014-01-10 18:19 - 2014-01-10 18:19 - 00000020 ___SH C:\Users\Karl\ntuser.ini
2014-01-10 18:19 - 2012-07-26 02:13 - 00000000 ___RD C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-10 18:19 - 2012-07-26 02:13 - 00000000 ___RD C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-10 18:19 - 2012-07-26 02:13 - 00000000 ___RD C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-01-10 18:19 - 2012-07-26 02:13 - 00000000 ____D C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-10 18:17 - 2014-01-10 18:17 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf

==================== One Month Modified Files and Folders =======

2014-01-10 23:26 - 2014-01-10 23:26 - 00009394 _____ C:\Users\Karl\Desktop\FRST.txt
2014-01-10 23:26 - 2014-01-10 23:26 - 00000000 ____D C:\FRST
2014-01-10 23:26 - 2014-01-10 19:04 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Exploit
2014-01-10 23:25 - 2014-01-10 23:25 - 02076160 _____ (Farbar) C:\Users\Karl\Desktop\FRST64.exe
2014-01-10 23:20 - 2014-01-10 23:20 - 00000000 _____ C:\Users\Karl\Documents\'hosts'.txt
2014-01-10 23:16 - 2014-01-10 18:27 - 00003596 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-650591080-1347685863-2250508542-1001
2014-01-10 23:11 - 2014-01-10 19:10 - 00003104 _____ C:\WINDOWS\System32\Tasks\Malwarebytes Anti-Exploit
2014-01-10 23:11 - 2014-01-10 19:10 - 00000508 _____ C:\WINDOWS\Tasks\Malwarebytes Anti-Exploit.job
2014-01-10 23:11 - 2014-01-10 18:22 - 00000401 _____ C:\Users\Karl\AppData\Roaming\sp_data.sys
2014-01-10 23:11 - 2012-07-26 01:28 - 00848230 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-10 23:10 - 2012-07-25 23:26 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2014-01-10 23:09 - 2014-01-10 18:19 - 00233539 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-10 23:07 - 2012-07-26 01:22 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-10 23:00 - 2012-07-26 02:12 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-10 22:58 - 2014-01-10 22:58 - 00007706 _____ C:\Users\Karl\Desktop\hijackthis.log
2014-01-10 22:57 - 2014-01-10 22:56 - 06229392 _____ (Trend Micro, Inc. ) C:\Users\Karl\Downloads\RUBottedSetup.exe
2014-01-10 22:57 - 2014-01-10 18:19 - 00000000 ____D C:\Users\Karl\AppData\Local\VirtualStore
2014-01-10 22:56 - 2014-01-10 22:55 - 14685208 _____ (Trend Micro Inc.) C:\Users\Karl\Downloads\RootkitBusterV5.0-1129x64.exe
2014-01-10 22:54 - 2014-01-10 22:54 - 00001400 _____ C:\Users\Karl\Desktop\HitmanPro_20140110_2254.log
2014-01-10 22:51 - 2014-01-10 22:37 - 00000000 ____D C:\ProgramData\HitmanPro
2014-01-10 22:50 - 2014-01-10 22:50 - 00001368 _____ C:\Users\Karl\Desktop\HitmanPro_20140110_2250.log
2014-01-10 22:38 - 2014-01-10 22:38 - 00001895 _____ C:\Users\Public\Desktop\HitmanPro.lnk
2014-01-10 22:38 - 2014-01-10 22:38 - 00000000 ____D C:\Program Files\HitmanPro
2014-01-10 22:37 - 2014-01-10 22:37 - 00002971 _____ C:\Users\Karl\Desktop\HiJackThis.lnk
2014-01-10 22:37 - 2014-01-10 22:37 - 00000000 ____D C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
2014-01-10 22:37 - 2014-01-10 22:37 - 00000000 ____D C:\Program Files (x86)\Trend Micro
2014-01-10 22:35 - 2014-01-10 22:35 - 00125405 _____ C:\Users\Karl\Desktop\Vba32ArkitLog.html
2014-01-10 22:35 - 2014-01-10 22:35 - 00014534 _____ C:\Users\Karl\Desktop\Vba32ArkitLog.zip
2014-01-10 22:33 - 2014-01-10 22:33 - 00000000 ____D C:\Users\Karl\Desktop\vba32arkit
2014-01-10 22:26 - 2012-07-25 23:26 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2014-01-10 22:25 - 2014-01-10 22:25 - 00000000 ____D C:\Users\Karl\Documents\New folder
2014-01-10 22:24 - 2014-01-10 22:24 - 00000296 _____ C:\Users\Karl\Downloads\RootkitRemover_20140110_222446.log
2014-01-10 22:24 - 2014-01-10 22:24 - 00000296 _____ C:\Users\Karl\Downloads\RootkitRemover_20140110_222400.log
2014-01-10 22:20 - 2014-01-10 22:20 - 00782640 _____ (McAfee, Inc.) C:\Users\Karl\Downloads\rootkitremover.exe
2014-01-10 22:19 - 2014-01-10 22:19 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Karl\Downloads\rkill.com
2014-01-10 22:18 - 2012-11-23 10:34 - 00000000 ____D C:\ProgramData\McAfee
2014-01-10 22:17 - 2014-01-10 22:17 - 01472131 _____ C:\Users\Karl\Desktop\vba32arkit.zip
2014-01-10 22:16 - 2014-01-10 22:16 - 01402880 _____ C:\Users\Karl\Downloads\HiJackThis.msi
2014-01-10 22:14 - 2014-01-10 22:14 - 03810304 _____ C:\Users\Karl\Downloads\RogueKiller.exe
2014-01-10 22:13 - 2014-01-10 22:13 - 09741664 _____ (SurfRight B.V.) C:\Users\Karl\Downloads\HitmanPro_x64.exe
2014-01-10 22:13 - 2014-01-10 22:13 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Karl\Desktop\rkill.com
2014-01-10 22:12 - 2014-01-10 22:12 - 05162489 _____ (Swearware) C:\Users\Karl\Desktop\ComboFix.exe
2014-01-10 22:11 - 2014-01-10 22:11 - 04101441 _____ C:\Users\Karl\Desktop\tdsskiller.zip
2014-01-10 21:34 - 2012-07-26 02:12 - 00000000 ____D C:\WINDOWS\rescache
2014-01-10 21:30 - 2012-08-01 19:20 - 00120992 _____ C:\WINDOWS\PFRO.log
2014-01-10 21:26 - 2012-07-26 02:12 - 00000000 ____D C:\WINDOWS\WinStore
2014-01-10 21:26 - 2012-07-26 02:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2014-01-10 21:26 - 2012-07-26 02:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2014-01-10 21:26 - 2012-07-26 01:52 - 00000000 ____D C:\Program Files\Windows Journal
2014-01-10 21:25 - 2012-07-26 02:12 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2014-01-10 21:25 - 2012-07-26 02:12 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2014-01-10 21:25 - 2012-07-26 02:12 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2014-01-10 21:25 - 2012-07-26 02:12 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2014-01-10 21:25 - 2012-07-26 02:12 - 00000000 ____D C:\WINDOWS\system32\migwiz
2014-01-10 21:25 - 2012-07-26 01:49 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2014-01-10 21:25 - 2012-07-26 01:49 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2014-01-10 21:25 - 2012-07-26 01:49 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2014-01-10 21:25 - 2012-07-26 01:49 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2014-01-10 21:25 - 2012-07-26 01:49 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2014-01-10 21:25 - 2012-07-26 01:49 - 00000000 ____D C:\WINDOWS\system32\winrm
2014-01-10 21:25 - 2012-07-25 23:38 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2014-01-10 21:25 - 2012-07-25 23:38 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2014-01-10 21:23 - 2012-07-26 01:49 - 00000000 ____D C:\WINDOWS\system32\WCN
2014-01-10 21:23 - 2012-07-26 01:49 - 00000000 ____D C:\WINDOWS\system32\slmgr
2014-01-10 21:23 - 2012-07-26 01:49 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2014-01-10 21:23 - 2012-07-25 23:38 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2014-01-10 21:23 - 2012-07-25 23:38 - 00000000 ____D C:\WINDOWS\system32\oobe
2014-01-10 21:23 - 2012-07-25 23:38 - 00000000 ____D C:\WINDOWS\system32\Dism
2014-01-10 21:22 - 2012-07-26 02:12 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2014-01-10 21:22 - 2012-07-26 02:12 - 00000000 ____D C:\WINDOWS\system32\Com
2014-01-10 21:21 - 2012-07-26 02:12 - 00000000 ____D C:\Program Files\Windows Defender
2014-01-10 21:21 - 2012-07-26 02:12 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2014-01-10 21:21 - 2012-07-25 23:37 - 00000000 ____D C:\WINDOWS\servicing
2014-01-10 21:17 - 2014-01-10 21:17 - 00000000 ____D C:\sources
2014-01-10 21:10 - 2014-01-10 21:10 - 00000000 ____D C:\Users\Karl\AppData\Roaming\AVAST Software
2014-01-10 21:09 - 2014-01-10 21:09 - 00003854 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2014-01-10 21:07 - 2014-01-10 21:08 - 01034464 ____N (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2014-01-10 21:07 - 2014-01-10 21:08 - 00422216 ____N (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2014-01-10 21:07 - 2014-01-10 21:08 - 00334136 ____N (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-01-10 21:07 - 2014-01-10 21:08 - 00207904 ____N C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-01-10 21:07 - 2014-01-10 21:08 - 00092544 ____N (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2014-01-10 21:07 - 2014-01-10 21:08 - 00082744 ____N (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2014-01-10 21:07 - 2014-01-10 21:08 - 00078648 ____N (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2014-01-10 21:07 - 2014-01-10 21:08 - 00065776 ____N C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-01-10 21:07 - 2014-01-10 21:07 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-01-10 21:04 - 2014-01-10 21:04 - 00000000 ____D C:\ProgramData\AVAST Software
2014-01-10 20:54 - 2014-01-10 19:58 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-01-10 20:54 - 2014-01-10 19:57 - 00000000 ____D C:\Users\Karl\Desktop\mbar
2014-01-10 19:57 - 2014-01-10 19:57 - 00089304 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-01-10 19:12 - 2012-07-26 02:12 - 00000000 ____D C:\WINDOWS\system32\restore
2014-01-10 19:10 - 2014-01-10 19:04 - 00000909 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Exploit.lnk
2014-01-10 19:08 - 2014-01-10 19:08 - 00000000 ___RD C:\Users\Karl\SkyDrive
2014-01-10 19:08 - 2014-01-10 18:19 - 00002117 _____ C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-01-10 19:08 - 2014-01-10 18:19 - 00000000 ____D C:\Users\Karl
2014-01-10 18:40 - 2014-01-10 18:40 - 12582688 _____ (Malwarebytes Corp.) C:\Users\Karl\Downloads\mbar-1.07.0.1008 (1).exe
2014-01-10 18:39 - 2014-01-10 18:39 - 12582688 _____ (Malwarebytes Corp.) C:\Users\Karl\Downloads\mbar-1.07.0.1008.exe
2014-01-10 18:39 - 2014-01-10 18:39 - 01768696 _____ (Malwarebytes ) C:\Users\Karl\Downloads\mbae-setup-0.09.5.0250.exe
2014-01-10 18:39 - 2014-01-10 18:39 - 00167034 _____ C:\Users\Karl\Downloads\fileassassin-setup-1.06.exe
2014-01-10 18:39 - 2014-01-10 18:39 - 00065232 _____ (Malwarebytes) C:\Users\Karl\Downloads\regassassin-setup-1.03.exe
2014-01-10 18:33 - 2014-01-10 18:33 - 00000000 ____D C:\Users\Karl\AppData\Roaming\Malwarebytes
2014-01-10 18:32 - 2014-01-10 18:32 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Karl\Downloads\mbam-setup-1.75.0.1300 (1).exe
2014-01-10 18:32 - 2014-01-10 18:32 - 00001111 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-01-10 18:32 - 2014-01-10 18:32 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-10 18:32 - 2014-01-10 18:32 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-10 18:31 - 2014-01-10 18:31 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Karl\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-10 18:31 - 2014-01-10 18:31 - 00000000 ____D C:\Users\Karl\AppData\Roaming\Macromedia
2014-01-10 18:24 - 2012-11-23 10:33 - 00000000 ____D C:\ProgramData\ChangeFolderView
2014-01-10 18:22 - 2014-01-10 18:22 - 00000000 ___RD C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-10 18:22 - 2014-01-10 18:22 - 00000000 ___RD C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-10 18:22 - 2014-01-10 18:22 - 00000000 ____D C:\Users\Karl\AppData\Roaming\ASUS WebStorage
2014-01-10 18:21 - 2014-01-10 18:21 - 00001432 _____ C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-10 18:21 - 2014-01-10 18:21 - 00000196 _____ C:\WINDOWS\FixPatch.log
2014-01-10 18:21 - 2014-01-10 18:21 - 00000134 _____ C:\WINDOWS\SysWOW64\mcmarkclean.log
2014-01-10 18:21 - 2014-01-10 18:21 - 00000000 __RSD C:\Users\Public\Desktop\ASUS
2014-01-10 18:21 - 2014-01-10 18:21 - 00000000 ____D C:\Users\Karl\AppData\Roaming\Adobe
2014-01-10 18:21 - 2014-01-10 18:21 - 00000000 ____D C:\ProgramData\FolderView
2014-01-10 18:21 - 2014-01-10 18:19 - 00000000 ____D C:\Users\Karl\AppData\Local\Packages
2014-01-10 18:21 - 2012-11-23 10:32 - 05881414 _____ C:\WINDOWS\AsDebug.log
2014-01-10 18:21 - 2012-11-23 10:32 - 00963228 _____ C:\WINDOWS\AsCDProc.log
2014-01-10 18:21 - 2012-08-01 19:36 - 00000000 ____D C:\WINDOWS\Log
2014-01-10 18:20 - 2014-01-10 18:19 - 00000000 ____D C:\Users\Karl\AppData\Local\ASUS
2014-01-10 18:19 - 2014-01-10 18:19 - 00000020 ___SH C:\Users\Karl\ntuser.ini
2014-01-10 18:17 - 2014-01-10 18:17 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-01-10 18:17 - 2012-07-26 01:21 - 00032476 _____ C:\WINDOWS\setupact.log
2014-01-10 18:03 - 2012-07-26 02:13 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template

Files to move or delete:
====================
C:\ProgramData\SetStretch.exe
C:\ProgramData\SetStretch.VBS

Some content of TEMP:
====================
C:\Users\Karl\AppData\Local\Temp\HitmanPro_x64.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2012-08-01 19:20

==================== End Of Log ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 11-01-2014 01
Ran by Karl at 2014-01-10 23:26:59
Running from C:\Users\Karl\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

AV: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: McAfee Anti-Virus and Anti-Spyware (Enabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: McAfee Firewall (Enabled) {959DA8E2-3527-57D1-4915-924367AD4FE9}

==================== Installed Programs ======================

Adobe Reader X MUI (x32 Version: 10.0.0 - Adobe Systems Incorporated)
AMD Accelerated Video Transcoding (Version: 12.5.100.20808 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.938.2 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
AMD Quick Stream (Version: 3.3.26.0 - AppEx Networks)
AMD VISION Engine Control Center (x32 Version: 2012.0808.1024.16666 - Advanced Micro Devices, Inc.) Hidden
ASUS Instant Connect (x32 Version: 1.2.8 - ASUS)
ASUS InstantOn (x32 Version: 3.0.4 - ASUS)
ASUS LifeFrame3 (x32 Version: 3.1.9 - ASUS)
ASUS Live Update (x32 Version: 3.1.8 - ASUS)
ASUS Power4Gear Hybrid (Version: 2.0.4 - ASUS)
ASUS Product Demo Movie (x32 Version: 1.0.3 - ASUS )
ASUS Smart Gesture (x32 Version: 1.0.35 - ASUS)
ASUS Splendid Video Enhancement Technology (x32 Version: 1.03.0005 - ASUS)
ASUS Tutor (x32 Version: 1.0.8 - ASUS)
ASUS USB Charger Plus (x32 Version: 2.1.5 - ASUS)
ASUS WebStorage Sync Agent (x32 Version: 1.1.10.123 - ASUS Cloud Corporation)
ASUSDVD (x32 Version: 10.0.4126.52 - CyberLink Corp.)
ASUSDVD (x32 Version: 10.0.4126.52 - CyberLink Corp.) Hidden
ATK Package (x32 Version: 1.0.0025 - ASUS)
Catalyst Control Center Graphics Previews Common (x32 Version: 2012.0808.1024.16666 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2012.0808.1024.16666 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2012.0808.1024.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2012.0808.1023.16666 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2012.0808.1024.16666 - Advanced Micro Devices, Inc.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Galería de fotos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
HiJackThis (x32 Version: 1.0.0 - Trend Micro)
HitmanPro 3.7 (Version: 3.7.8.208 - SurfRight B.V.)
Malwarebytes Anti-Exploit version 0.09.5.0250 (Version: 0.09.5.0250 - Malwarebytes)
Malwarebytes Anti-Malware version 1.75.0.1300 (x32 Version: 1.75.0.1300 - Malwarebytes Corporation)
McAfee Internet Security (x32 Version: 11.6.385 - McAfee, Inc.)
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office (x32 Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft SkyDrive (HKCU Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (x32 Version: 10.0.30319 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
MyBitCast 2.0 (x32 Version: 2.0 - ASUS)
Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Qualcomm Atheros Client Installation Program (x32 Version: 10.0 - Qualcomm Atheros)
Realtek Ethernet Controller Driver (x32 Version: 8.3.730.2012 - Realtek)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6690 - Realtek Semiconductor Corp.)
Shared C Run-time for x64 (Version: 10.0.0 - McAfee)
Windows Driver Package - ASUS (ATP) Mouse (10/29/2012 1.0.0.148) (Version: 10/29/2012 1.0.0.148 - ASUS)
Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
WinFlash (x32 Version: 2.41.1 - ASUS)

==================== Restore Points =========================

11-01-2014 01:12:59 newos

==================== Hosts content: ==========================

2012-07-25 23:26 - 2012-07-25 23:26 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {35F7DA0F-2F04-4DA6-A13E-D99782E356AE} - System32\Tasks\ASUS Touchpad Launcher (x64) => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2012-10-31] (AsusTek)
Task: {5293FDAD-FC78-478E-A9DB-B18CE208D248} - System32\Tasks\avast! Emergency Update => D:\AvastEmUpdate.exe
Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {AB15CBFF-5D98-45A9-8912-05684F8FC41E} - System32\Tasks\ASUS InstantOn Config => C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe [2012-09-24] (ASUS)
Task: {AB96B97B-39C2-46A2-876A-EEB6AE199033} - System32\Tasks\Microsoft\Windows\Servicing\StartComponentCleanup => C:\Windows\System32\Dism.exe [2012-07-25] (Microsoft Corporation)
Task: {B0590487-6431-4D7E-A05D-9C97A0AD6CE1} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-08-24] (ASUS)
Task: {B8D1F6E4-E28D-453D-81F9-47205714F002} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-09-18] (ASUSTek Computer Inc.)
Task: {C1796B76-3074-4A10-AFF3-E8B05231A2B9} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2012-07-25] (ASUSTeK Computer Inc.)
Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {EB199903-1DC8-40CC-A4FA-E7AEFA341A1C} - System32\Tasks\Malwarebytes Anti-Exploit => C:\Program Files\Malwarebytes Anti-Exploit\mbae-loader.exe [2013-12-17] (Malwarebytes Corporation)
Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: C:\WINDOWS\Tasks\Malwarebytes Anti-Exploit.job => C:\Program Files\Malwarebytes Anti-Exploit\mbae.exe

==================== Loaded Modules (whitelisted) =============

2012-08-24 19:26 - 2012-08-24 19:26 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2012-09-11 16:01 - 2012-09-11 16:01 - 00009216 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll

==================== Alternate Data Streams (whitelisted) =========

==================== Safe Mode (whitelisted) ===================

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\76057316.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\76057316.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcmscsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"

==================== Faulty Device Manager Devices =============

Name: Microsoft ISATAP Adapter
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Fax
Description: Local Print Queue
Class Guid: {1ed2bbf9-11f0-4084-b21f-ad83a8e6dcdc}
Manufacturer: Microsoft
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Event log errors: =========================

Could not start eventlog service, could not read events.

The requested service has already been started.

Alright here it is

More help is available by typing NET HELPMSG 2182.

==================== Memory info ===========================

Percentage of memory in use: 18%
Total physical RAM: 7636.32 MB
Available physical RAM: 6186.74 MB
Total Pagefile: 12244.32 MB
Available Pagefile: 10634.25 MB
Total Virtual: 8192 MB
Available Virtual: 8191.77 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:444.11 GB) (Free:413.39 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (SDKard) (Removable) (Total:0.92 GB) (Free:0.89 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 466 GB) (Disk ID: 01A8A7C0)

Partition: GPT Partition Type
========================================================
Disk: 1 (Size: 942 MB) (Disk ID: 00000000)
Partition 1: (Not Active) - (Size=942 MB) - (Type=07 NTFS)

==================== End Of Log ============================

#4
Kman4488

Posted 10 January 2014 - 09:39 PM

Member

Topic Starter
Member
40 posts

I downloaded combo fix and a few other anti malware type applications but have not run combo fix due to my lack of knowledge

#5
emeraldnzl

Posted 10 January 2014 - 09:54 PM

GeekU Instructor

GeekU Moderator
20,051 posts

Hello Kman4488,

There are remnants of a program that sometimes comes with a Zero Access rootkit type infection. There are also security leftovers from Hitman pro, Avast and the McAfee Rootkit program. Some of the Avast stuff may still be active.

Running two or more real-time anti-virus, anti-spyware and firewall monitors at the same time can cause a conflict. That conflict can result in slow computer performance, error messages, crashes of the programs or other types of failure. You will very likely end up with little or no protection.

Please uninstall Hitman Pro.

Step 2

To uninstall Avast completely download and run aswClear tool from here
.

Next

Download the attached fixlist.txt file and save it to the Desktop.

NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Run FRST/FRST64 and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.

After that

Please run FRST again and post back the FRST.txt log it generates.

So when you return please post
Fixlog.txt
FRST.txt

#6
emeraldnzl

Posted 10 January 2014 - 10:04 PM

GeekU Instructor

GeekU Moderator
20,051 posts

I downloaded combo fix and a few other anti malware type applications but have not run combo fix due to my lack of knowledge

Leave ComboFix for now. We can look at that later if we need to.

For now, just follow the instructions at my last post please.

#7
Kman4488

Posted 10 January 2014 - 10:19 PM

Member

Topic Starter
Member
40 posts

blabk

Edited by Kman4488, 10 January 2014 - 10:29 PM.

#8
Kman4488

Posted 10 January 2014 - 10:20 PM

Member

Topic Starter
Member
40 posts

Im sorry I paisted the rong text here it is

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 11-01-2014 01
Ran by Karl at 2014-01-11 00:20:01 Run:1
Running from C:\Users\Karl\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
U3 MFE_RR; \??\C:\Users\Karl\AppData\Local\Temp\mfe_rr.sys [x]
C:\ProgramData\SetStretch.exe
C:\ProgramData\SetStretch.VBS

*****************

MFE_RR => Service deleted successfully.
C:\ProgramData\SetStretch.exe => Moved successfully.
C:\ProgramData\SetStretch.VBS => Moved successfully.

==== End of Fixlog ====

#9
emeraldnzl

Posted 10 January 2014 - 10:25 PM

GeekU Instructor

GeekU Moderator
20,051 posts

Im sorry I paisted the rong text here it is

Yep, that is one of the ones I was looking for.

I also asked for another scan (after the fix) with FRST.

Any chance of that?

#10
Kman4488

Posted 10 January 2014 - 10:27 PM

Member

Topic Starter
Member
40 posts

and frst

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-01-2014 01
Ran by Karl (administrator) on NEWOS8 on 11-01-2014 00:24:50
Running from C:\Users\Karl\Desktop
Windows 8 (X64) OS Language: English(US)
Internet Explorer Version 10
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\APRP\aprp.exe
(McAfee, Inc.) C:\Program Files\mcafee.com\agent\mcagent.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12936848 2012-07-13] (Realtek Semiconductor)
HKLM\...\Run: [ACMON] - C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [107192 2012-09-11] (ASUS)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe [35736 2010-11-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [932288 2010-11-15] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ASUSPRP] - C:\Program Files (x86)\ASUS\APRP\aprp.exe [3187360 2012-11-23] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ASUSWebStorage] - C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\AsusWSPanel.exe [3423104 2012-08-30] (ASUS Cloud Corporation)
HKLM-x32\...\Run: [mcui_exe] - C:\Program Files\mcafee.com\agent\mcagent.exe [1527896 2012-06-21] (McAfee, Inc.)
HKLM-x32\...\Run: [RemoteControl10] - C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [91432 2012-03-28] (CyberLink Corp.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://asus13.msn.com
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...R&pc=ASU2JS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...R&pc=ASU2JS
SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...R&pc=ASU2JS
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...R&pc=ASU2JS
SearchScopes: HKCU - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\mcafee\msc\McSnIePl64.dll (McAfee, Inc.)
Filter-x32: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files (x86)\McAfee\msc\McSnIePl.dll (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

==================== Services (Whitelisted) =================

U2 ASUS InstantOn; C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [277120 2012-04-13] (ASUS)
U2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
U2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
U3 McAWFwk; C:\Program Files\mcafee\msc\McAWFwk.exe [332080 2012-01-26] (McAfee, Inc.)
U2 McMPFSvc; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U2 mcmscsvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U2 McNaiAnn; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U2 McNASvc; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U3 McODS; C:\Program Files\mcafee\VirusScan\mcods.exe [383608 2012-05-22] (McAfee, Inc.)
U2 McOobeSv; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U2 McProxy; C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [237920 2012-06-22] (McAfee, Inc.)
U2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [218320 2012-06-22] (McAfee, Inc.)
U2 mfevtp; C:\windows\system32\mfevtps.exe [177144 2012-06-22] (McAfee, Inc.)
U2 MSK80Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [200728 2012-05-11] (McAfee, Inc.)
U3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [15440 2012-07-25] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

U2 APXACC; C:\Windows\system32\DRIVERS\appexDrv.sys [199008 2012-06-23] (AppEx Networks Corporation)
U3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [98472 2012-07-16] (Advanced Micro Devices)
U3 ATP; C:\Windows\System32\drivers\AsusTP.sys [61824 2012-10-31] (ASUS Corporation)
U3 cfwids; C:\Windows\System32\drivers\cfwids.sys [69672 2012-06-22] (McAfee, Inc.)
U3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [196440 2012-04-20] (McAfee, Inc.)
U3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-01] ( )
U3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
U3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [169320 2012-06-22] (McAfee, Inc.)
U3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [300392 2012-06-22] (McAfee, Inc.)
U3 mfeavfk01; No ImagePath
U0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [66712 2012-06-18] (McAfee, Inc.)
U3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [513456 2012-06-22] (McAfee, Inc.)
U0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [752672 2012-06-22] (McAfee, Inc.)
U3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [106112 2012-06-22] (McAfee, Inc.)
U0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [335784 2012-06-22] (McAfee, Inc.)
U0 msahci;

==================== NetSvcs (Whitelisted) ===================

==================== One Month Created Files and Folders ========

2014-01-11 00:04 - 2014-01-11 00:04 - 00000000 _____ C:\WINDOWS\SysWOW64\config.nt
2014-01-10 23:42 - 2014-01-10 23:43 - 00000000 ____D C:\Users\Karl\Desktop\Tool
2014-01-10 23:26 - 2014-01-11 00:24 - 00008459 _____ C:\Users\Karl\Desktop\FRST.txt
2014-01-10 23:26 - 2014-01-10 23:27 - 00013613 _____ C:\Users\Karl\Desktop\Addition.txt
2014-01-10 23:26 - 2014-01-10 23:26 - 00000000 ____D C:\FRST
2014-01-10 23:25 - 2014-01-10 23:25 - 02076160 _____ (Farbar) C:\Users\Karl\Desktop\FRST64.exe
2014-01-10 23:20 - 2014-01-10 23:20 - 00000000 _____ C:\Users\Karl\Documents\'hosts'.txt
2014-01-10 22:58 - 2014-01-10 22:58 - 00007706 _____ C:\Users\Karl\Desktop\hijackthis.log
2014-01-10 22:56 - 2014-01-10 22:57 - 06229392 _____ (Trend Micro, Inc. ) C:\Users\Karl\Downloads\RUBottedSetup.exe
2014-01-10 22:55 - 2014-01-10 22:56 - 14685208 _____ (Trend Micro Inc.) C:\Users\Karl\Downloads\RootkitBusterV5.0-1129x64.exe
2014-01-10 22:54 - 2014-01-10 22:54 - 00001400 _____ C:\Users\Karl\Desktop\HitmanPro_20140110_2254.log
2014-01-10 22:37 - 2014-01-10 22:51 - 00000000 ____D C:\ProgramData\HitmanPro
2014-01-10 22:37 - 2014-01-10 22:37 - 00000000 ____D C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
2014-01-10 22:37 - 2014-01-10 22:37 - 00000000 ____D C:\Program Files (x86)\Trend Micro
2014-01-10 22:35 - 2014-01-10 22:35 - 00125405 _____ C:\Users\Karl\Desktop\Vba32ArkitLog.html
2014-01-10 22:25 - 2014-01-10 22:25 - 00000000 ____D C:\Users\Karl\Documents\New folder
2014-01-10 22:24 - 2014-01-10 22:24 - 00000296 _____ C:\Users\Karl\Downloads\RootkitRemover_20140110_222446.log
2014-01-10 22:24 - 2014-01-10 22:24 - 00000296 _____ C:\Users\Karl\Downloads\RootkitRemover_20140110_222400.log
2014-01-10 22:20 - 2014-01-10 22:20 - 00782640 _____ (McAfee, Inc.) C:\Users\Karl\Downloads\rootkitremover.exe
2014-01-10 22:19 - 2014-01-10 22:19 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Karl\Downloads\rkill.com
2014-01-10 22:16 - 2014-01-10 22:16 - 01402880 _____ C:\Users\Karl\Downloads\HiJackThis.msi
2014-01-10 22:14 - 2014-01-10 22:14 - 03810304 _____ C:\Users\Karl\Downloads\RogueKiller.exe
2014-01-10 22:13 - 2014-01-10 22:13 - 09741664 _____ (SurfRight B.V.) C:\Users\Karl\Downloads\HitmanPro_x64.exe
2014-01-10 22:12 - 2014-01-10 22:12 - 05162489 _____ (Swearware) C:\Users\Karl\Desktop\ComboFix.exe
2014-01-10 21:17 - 2014-01-10 21:17 - 00000000 ____D C:\sources
2014-01-10 21:10 - 2014-01-11 00:04 - 00000000 ____D C:\Users\Karl\AppData\Roaming\AVAST Software
2014-01-10 21:09 - 2014-01-10 21:09 - 00003854 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2014-01-10 19:58 - 2014-01-10 20:54 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-01-10 19:57 - 2014-01-10 20:54 - 00000000 ____D C:\Users\Karl\Desktop\mbar
2014-01-10 19:57 - 2014-01-10 19:57 - 00089304 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-01-10 19:10 - 2014-01-11 00:06 - 00003104 _____ C:\WINDOWS\System32\Tasks\Malwarebytes Anti-Exploit
2014-01-10 19:10 - 2014-01-11 00:06 - 00000508 _____ C:\WINDOWS\Tasks\Malwarebytes Anti-Exploit.job
2014-01-10 19:08 - 2014-01-10 19:08 - 00000000 ___RD C:\Users\Karl\SkyDrive
2014-01-10 19:04 - 2014-01-11 00:06 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Exploit
2014-01-10 19:04 - 2013-07-16 05:41 - 01858896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr100d.dll
2014-01-10 19:04 - 2013-07-16 05:41 - 01498960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr100d.dll
2014-01-10 19:04 - 2013-07-16 05:41 - 01014096 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp100d.dll
2014-01-10 19:04 - 2013-07-16 05:41 - 00743248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp100d.dll
2014-01-10 18:40 - 2014-01-10 18:40 - 12582688 _____ (Malwarebytes Corp.) C:\Users\Karl\Downloads\mbar-1.07.0.1008 (1).exe
2014-01-10 18:39 - 2014-01-10 18:39 - 12582688 _____ (Malwarebytes Corp.) C:\Users\Karl\Downloads\mbar-1.07.0.1008.exe
2014-01-10 18:39 - 2014-01-10 18:39 - 01768696 _____ (Malwarebytes ) C:\Users\Karl\Downloads\mbae-setup-0.09.5.0250.exe
2014-01-10 18:39 - 2014-01-10 18:39 - 00167034 _____ C:\Users\Karl\Downloads\fileassassin-setup-1.06.exe
2014-01-10 18:39 - 2014-01-10 18:39 - 00065232 _____ (Malwarebytes) C:\Users\Karl\Downloads\regassassin-setup-1.03.exe
2014-01-10 18:33 - 2014-01-10 18:33 - 00000000 ____D C:\Users\Karl\AppData\Roaming\Malwarebytes
2014-01-10 18:32 - 2014-01-10 18:32 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Karl\Downloads\mbam-setup-1.75.0.1300 (1).exe
2014-01-10 18:32 - 2014-01-10 18:32 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-10 18:32 - 2014-01-10 18:32 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-10 18:32 - 2013-04-04 16:50 - 00025928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-01-10 18:31 - 2014-01-10 18:31 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Karl\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-10 18:31 - 2014-01-10 18:31 - 00000000 ____D C:\Users\Karl\AppData\Roaming\Macromedia
2014-01-10 18:27 - 2014-01-10 23:34 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-650591080-1347685863-2250508542-1001
2014-01-10 18:22 - 2014-01-11 00:06 - 00000401 _____ C:\Users\Karl\AppData\Roaming\sp_data.sys
2014-01-10 18:22 - 2014-01-10 18:22 - 00000000 ___RD C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-10 18:22 - 2014-01-10 18:22 - 00000000 ___RD C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-10 18:22 - 2014-01-10 18:22 - 00000000 ____D C:\Users\Karl\AppData\Roaming\ASUS WebStorage
2014-01-10 18:21 - 2014-01-10 18:21 - 00001432 _____ C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-10 18:21 - 2014-01-10 18:21 - 00000196 _____ C:\WINDOWS\FixPatch.log
2014-01-10 18:21 - 2014-01-10 18:21 - 00000134 _____ C:\WINDOWS\SysWOW64\mcmarkclean.log
2014-01-10 18:21 - 2014-01-10 18:21 - 00000000 __RSD C:\Users\Public\Desktop\ASUS
2014-01-10 18:21 - 2014-01-10 18:21 - 00000000 ____D C:\Users\Karl\AppData\Roaming\Adobe
2014-01-10 18:21 - 2014-01-10 18:21 - 00000000 ____D C:\ProgramData\FolderView
2014-01-10 18:19 - 2014-01-11 00:18 - 00238570 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-10 18:19 - 2014-01-10 22:57 - 00000000 ____D C:\Users\Karl\AppData\Local\VirtualStore
2014-01-10 18:19 - 2014-01-10 19:08 - 00002117 _____ C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-01-10 18:19 - 2014-01-10 19:08 - 00000000 ____D C:\Users\Karl
2014-01-10 18:19 - 2014-01-10 18:21 - 00000000 ____D C:\Users\Karl\AppData\Local\Packages
2014-01-10 18:19 - 2014-01-10 18:20 - 00000000 ____D C:\Users\Karl\AppData\Local\ASUS
2014-01-10 18:19 - 2014-01-10 18:19 - 00000020 ___SH C:\Users\Karl\ntuser.ini
2014-01-10 18:19 - 2012-07-26 02:13 - 00000000 ___RD C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-01-10 18:19 - 2012-07-26 02:13 - 00000000 ___RD C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-01-10 18:19 - 2012-07-26 02:13 - 00000000 ___RD C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-01-10 18:19 - 2012-07-26 02:13 - 00000000 ____D C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-01-10 18:17 - 2014-01-10 18:17 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf

==================== One Month Modified Files and Folders =======

2014-01-11 00:24 - 2014-01-10 23:26 - 00008459 _____ C:\Users\Karl\Desktop\FRST.txt
2014-01-11 00:18 - 2014-01-10 18:19 - 00238570 _____ C:\WINDOWS\WindowsUpdate.log
2014-01-11 00:10 - 2012-07-26 01:28 - 00848230 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-11 00:09 - 2012-07-25 23:26 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM
2014-01-11 00:06 - 2014-01-10 19:10 - 00003104 _____ C:\WINDOWS\System32\Tasks\Malwarebytes Anti-Exploit
2014-01-11 00:06 - 2014-01-10 19:10 - 00000508 _____ C:\WINDOWS\Tasks\Malwarebytes Anti-Exploit.job
2014-01-11 00:06 - 2014-01-10 19:04 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Exploit
2014-01-11 00:06 - 2014-01-10 18:22 - 00000401 _____ C:\Users\Karl\AppData\Roaming\sp_data.sys
2014-01-11 00:05 - 2012-07-26 01:22 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2014-01-11 00:04 - 2014-01-11 00:04 - 00000000 _____ C:\WINDOWS\SysWOW64\config.nt
2014-01-11 00:04 - 2014-01-10 21:10 - 00000000 ____D C:\Users\Karl\AppData\Roaming\AVAST Software
2014-01-10 23:43 - 2014-01-10 23:42 - 00000000 ____D C:\Users\Karl\Desktop\Tool
2014-01-10 23:34 - 2014-01-10 18:27 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-650591080-1347685863-2250508542-1001
2014-01-10 23:27 - 2014-01-10 23:26 - 00013613 _____ C:\Users\Karl\Desktop\Addition.txt
2014-01-10 23:26 - 2014-01-10 23:26 - 00000000 ____D C:\FRST
2014-01-10 23:25 - 2014-01-10 23:25 - 02076160 _____ (Farbar) C:\Users\Karl\Desktop\FRST64.exe
2014-01-10 23:20 - 2014-01-10 23:20 - 00000000 _____ C:\Users\Karl\Documents\'hosts'.txt
2014-01-10 23:00 - 2012-07-26 02:12 - 00000000 ____D C:\WINDOWS\system32\sru
2014-01-10 22:58 - 2014-01-10 22:58 - 00007706 _____ C:\Users\Karl\Desktop\hijackthis.log
2014-01-10 22:57 - 2014-01-10 22:56 - 06229392 _____ (Trend Micro, Inc. ) C:\Users\Karl\Downloads\RUBottedSetup.exe
2014-01-10 22:57 - 2014-01-10 18:19 - 00000000 ____D C:\Users\Karl\AppData\Local\VirtualStore
2014-01-10 22:56 - 2014-01-10 22:55 - 14685208 _____ (Trend Micro Inc.) C:\Users\Karl\Downloads\RootkitBusterV5.0-1129x64.exe
2014-01-10 22:54 - 2014-01-10 22:54 - 00001400 _____ C:\Users\Karl\Desktop\HitmanPro_20140110_2254.log
2014-01-10 22:51 - 2014-01-10 22:37 - 00000000 ____D C:\ProgramData\HitmanPro
2014-01-10 22:37 - 2014-01-10 22:37 - 00000000 ____D C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
2014-01-10 22:37 - 2014-01-10 22:37 - 00000000 ____D C:\Program Files (x86)\Trend Micro
2014-01-10 22:35 - 2014-01-10 22:35 - 00125405 _____ C:\Users\Karl\Desktop\Vba32ArkitLog.html
2014-01-10 22:26 - 2012-07-25 23:26 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2014-01-10 22:25 - 2014-01-10 22:25 - 00000000 ____D C:\Users\Karl\Documents\New folder
2014-01-10 22:24 - 2014-01-10 22:24 - 00000296 _____ C:\Users\Karl\Downloads\RootkitRemover_20140110_222446.log
2014-01-10 22:24 - 2014-01-10 22:24 - 00000296 _____ C:\Users\Karl\Downloads\RootkitRemover_20140110_222400.log
2014-01-10 22:20 - 2014-01-10 22:20 - 00782640 _____ (McAfee, Inc.) C:\Users\Karl\Downloads\rootkitremover.exe
2014-01-10 22:19 - 2014-01-10 22:19 - 01933048 _____ (Bleeping Computer, LLC) C:\Users\Karl\Downloads\rkill.com
2014-01-10 22:18 - 2012-11-23 10:34 - 00000000 ____D C:\ProgramData\McAfee
2014-01-10 22:16 - 2014-01-10 22:16 - 01402880 _____ C:\Users\Karl\Downloads\HiJackThis.msi
2014-01-10 22:14 - 2014-01-10 22:14 - 03810304 _____ C:\Users\Karl\Downloads\RogueKiller.exe
2014-01-10 22:13 - 2014-01-10 22:13 - 09741664 _____ (SurfRight B.V.) C:\Users\Karl\Downloads\HitmanPro_x64.exe
2014-01-10 22:12 - 2014-01-10 22:12 - 05162489 _____ (Swearware) C:\Users\Karl\Desktop\ComboFix.exe
2014-01-10 21:34 - 2012-07-26 02:12 - 00000000 ____D C:\WINDOWS\rescache
2014-01-10 21:31 - 2012-11-23 10:34 - 00000000 ____D C:\Program Files (x86)\McAfee
2014-01-10 21:30 - 2012-08-01 19:20 - 00120992 _____ C:\WINDOWS\PFRO.log
2014-01-10 21:26 - 2012-07-26 02:12 - 00000000 ____D C:\WINDOWS\WinStore
2014-01-10 21:26 - 2012-07-26 02:12 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2014-01-10 21:26 - 2012-07-26 02:12 - 00000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2014-01-10 21:26 - 2012-07-26 01:52 - 00000000 ____D C:\Program Files\Windows Journal
2014-01-10 21:25 - 2012-07-26 02:12 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2014-01-10 21:25 - 2012-07-26 02:12 - 00000000 ____D C:\WINDOWS\SysWOW64\MUI
2014-01-10 21:25 - 2012-07-26 02:12 - 00000000 ____D C:\WINDOWS\SysWOW64\migwiz
2014-01-10 21:25 - 2012-07-26 02:12 - 00000000 ____D C:\WINDOWS\SysWOW64\Com
2014-01-10 21:25 - 2012-07-26 02:12 - 00000000 ____D C:\WINDOWS\system32\migwiz
2014-01-10 21:25 - 2012-07-26 01:49 - 00000000 ____D C:\WINDOWS\SysWOW64\winrm
2014-01-10 21:25 - 2012-07-26 01:49 - 00000000 ____D C:\WINDOWS\SysWOW64\WCN
2014-01-10 21:25 - 2012-07-26 01:49 - 00000000 ____D C:\WINDOWS\SysWOW64\sysprep
2014-01-10 21:25 - 2012-07-26 01:49 - 00000000 ____D C:\WINDOWS\SysWOW64\slmgr
2014-01-10 21:25 - 2012-07-26 01:49 - 00000000 ____D C:\WINDOWS\SysWOW64\Printing_Admin_Scripts
2014-01-10 21:25 - 2012-07-26 01:49 - 00000000 ____D C:\WINDOWS\system32\winrm
2014-01-10 21:25 - 2012-07-25 23:38 - 00000000 ____D C:\WINDOWS\SysWOW64\oobe
2014-01-10 21:25 - 2012-07-25 23:38 - 00000000 ____D C:\WINDOWS\SysWOW64\Dism
2014-01-10 21:23 - 2012-07-26 01:49 - 00000000 ____D C:\WINDOWS\system32\WCN
2014-01-10 21:23 - 2012-07-26 01:49 - 00000000 ____D C:\WINDOWS\system32\slmgr
2014-01-10 21:23 - 2012-07-26 01:49 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2014-01-10 21:23 - 2012-07-25 23:38 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2014-01-10 21:23 - 2012-07-25 23:38 - 00000000 ____D C:\WINDOWS\system32\oobe
2014-01-10 21:23 - 2012-07-25 23:38 - 00000000 ____D C:\WINDOWS\system32\Dism
2014-01-10 21:22 - 2012-07-26 02:12 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2014-01-10 21:22 - 2012-07-26 02:12 - 00000000 ____D C:\WINDOWS\system32\Com
2014-01-10 21:21 - 2012-07-26 02:12 - 00000000 ____D C:\Program Files\Windows Defender
2014-01-10 21:21 - 2012-07-26 02:12 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2014-01-10 21:21 - 2012-07-25 23:37 - 00000000 ____D C:\WINDOWS\servicing
2014-01-10 21:17 - 2014-01-10 21:17 - 00000000 ____D C:\sources
2014-01-10 21:09 - 2014-01-10 21:09 - 00003854 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2014-01-10 20:54 - 2014-01-10 19:58 - 00000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-01-10 20:54 - 2014-01-10 19:57 - 00000000 ____D C:\Users\Karl\Desktop\mbar
2014-01-10 19:57 - 2014-01-10 19:57 - 00089304 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-01-10 19:12 - 2012-07-26 02:12 - 00000000 ____D C:\WINDOWS\system32\restore
2014-01-10 19:08 - 2014-01-10 19:08 - 00000000 ___RD C:\Users\Karl\SkyDrive
2014-01-10 19:08 - 2014-01-10 18:19 - 00002117 _____ C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SkyDrive.lnk
2014-01-10 19:08 - 2014-01-10 18:19 - 00000000 ____D C:\Users\Karl
2014-01-10 18:40 - 2014-01-10 18:40 - 12582688 _____ (Malwarebytes Corp.) C:\Users\Karl\Downloads\mbar-1.07.0.1008 (1).exe
2014-01-10 18:39 - 2014-01-10 18:39 - 12582688 _____ (Malwarebytes Corp.) C:\Users\Karl\Downloads\mbar-1.07.0.1008.exe
2014-01-10 18:39 - 2014-01-10 18:39 - 01768696 _____ (Malwarebytes ) C:\Users\Karl\Downloads\mbae-setup-0.09.5.0250.exe
2014-01-10 18:39 - 2014-01-10 18:39 - 00167034 _____ C:\Users\Karl\Downloads\fileassassin-setup-1.06.exe
2014-01-10 18:39 - 2014-01-10 18:39 - 00065232 _____ (Malwarebytes) C:\Users\Karl\Downloads\regassassin-setup-1.03.exe
2014-01-10 18:33 - 2014-01-10 18:33 - 00000000 ____D C:\Users\Karl\AppData\Roaming\Malwarebytes
2014-01-10 18:32 - 2014-01-10 18:32 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Karl\Downloads\mbam-setup-1.75.0.1300 (1).exe
2014-01-10 18:32 - 2014-01-10 18:32 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-10 18:32 - 2014-01-10 18:32 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-10 18:31 - 2014-01-10 18:31 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Karl\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-10 18:31 - 2014-01-10 18:31 - 00000000 ____D C:\Users\Karl\AppData\Roaming\Macromedia
2014-01-10 18:24 - 2012-11-23 10:33 - 00000000 ____D C:\ProgramData\ChangeFolderView
2014-01-10 18:22 - 2014-01-10 18:22 - 00000000 ___RD C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-10 18:22 - 2014-01-10 18:22 - 00000000 ___RD C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-01-10 18:22 - 2014-01-10 18:22 - 00000000 ____D C:\Users\Karl\AppData\Roaming\ASUS WebStorage
2014-01-10 18:21 - 2014-01-10 18:21 - 00001432 _____ C:\Users\Karl\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-01-10 18:21 - 2014-01-10 18:21 - 00000196 _____ C:\WINDOWS\FixPatch.log
2014-01-10 18:21 - 2014-01-10 18:21 - 00000134 _____ C:\WINDOWS\SysWOW64\mcmarkclean.log
2014-01-10 18:21 - 2014-01-10 18:21 - 00000000 __RSD C:\Users\Public\Desktop\ASUS
2014-01-10 18:21 - 2014-01-10 18:21 - 00000000 ____D C:\Users\Karl\AppData\Roaming\Adobe
2014-01-10 18:21 - 2014-01-10 18:21 - 00000000 ____D C:\ProgramData\FolderView
2014-01-10 18:21 - 2014-01-10 18:19 - 00000000 ____D C:\Users\Karl\AppData\Local\Packages
2014-01-10 18:21 - 2012-11-23 10:32 - 05881414 _____ C:\WINDOWS\AsDebug.log
2014-01-10 18:21 - 2012-11-23 10:32 - 00963228 _____ C:\WINDOWS\AsCDProc.log
2014-01-10 18:21 - 2012-08-01 19:36 - 00000000 ____D C:\WINDOWS\Log
2014-01-10 18:20 - 2014-01-10 18:19 - 00000000 ____D C:\Users\Karl\AppData\Local\ASUS
2014-01-10 18:19 - 2014-01-10 18:19 - 00000020 ___SH C:\Users\Karl\ntuser.ini
2014-01-10 18:17 - 2014-01-10 18:17 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-01-10 18:17 - 2012-07-26 01:21 - 00032476 _____ C:\WINDOWS\setupact.log
2014-01-10 18:03 - 2012-07-26 02:13 - 00262144 _____ C:\WINDOWS\system32\config\BCD-Template

Some content of TEMP:
====================
C:\Users\Karl\AppData\Local\Temp\HitmanPro.exe
C:\Users\Karl\AppData\Local\Temp\HitmanPro_x64.exe

==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

LastRegBack: 2012-08-01 19:20

==================== End Of Log ============================

#11
Kman4488

Posted 10 January 2014 - 10:33 PM

Member

Topic Starter
Member
40 posts

I'm sorry FRST will not run it says my system isn't compatible . do I try to run in compatibility settings ?

#12
emeraldnzl

Posted 10 January 2014 - 10:35 PM

GeekU Instructor

GeekU Moderator
20,051 posts

I'm sorry FRST will not run it says my system isn't compatible . do I try to run in compatibility settings ?

Am I missing something?

It looks to me that you just posted the log from FRST. I am just in the process of analyzing it. Have I got that wrong?

#13
Kman4488

Posted 10 January 2014 - 10:38 PM

Member

Topic Starter
Member
40 posts

That was from running FRST64, After I did the fix list .

Edited by Kman4488, 10 January 2014 - 10:39 PM.

#14
emeraldnzl

Posted 10 January 2014 - 10:43 PM

GeekU Instructor

GeekU Moderator
20,051 posts

Hello Kman4488,

That was from running FRST64

Correct. That is what I wanted; seems there was a misunderstanding. FRST 32-bit won't run on your machine.

I wanted another look at your machine with a FRST scan (FRST 64-bit) after the changes we made after you followed my instructions at post #5.

Now

Please download and run TFC.exe (Vista and above users right click and run as Administrator).

You may be asked to reboot when it is finished. Please do so.

After that

Please download the latest version of TDSSKiller from here and save it to your Desktop.

Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
Put a checkmark beside loaded modules.
A reboot will be needed to apply the changes. Do it.
TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
Then click on Change parameters in TDSSKiller.
Check all boxes then click OK.
Click the Start Scan button.
The scan should take no longer than 2 minutes.
If a suspicious object is detected, the default action will be Skip, click on Continue.
If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.

Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

#15
Kman4488

Posted 10 January 2014 - 11:06 PM

Member

Topic Starter
Member
40 posts

it looks like nothing has been detected?

01:00:41.0874 0x0ca8 TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
01:00:41.0874 0x0ca8 UEFI system
01:00:42.0607 0x0ca8 ============================================================
01:00:42.0607 0x0ca8 Current date / time: 2014/01/11 01:00:42.0607
01:00:42.0607 0x0ca8 SystemInfo:
01:00:42.0607 0x0ca8
01:00:42.0607 0x0ca8 OS Version: 6.2.9200 ServicePack: 0.0
01:00:42.0607 0x0ca8 Product type: Workstation
01:00:42.0607 0x0ca8 ComputerName: NEWOS8
01:00:42.0607 0x0ca8 UserName: Karl
01:00:42.0607 0x0ca8 Windows directory: C:\WINDOWS
01:00:42.0607 0x0ca8 System windows directory: C:\WINDOWS
01:00:42.0607 0x0ca8 Running under WOW64
01:00:42.0607 0x0ca8 Processor architecture: Intel x64
01:00:42.0607 0x0ca8 Number of processors: 4
01:00:42.0607 0x0ca8 Page size: 0x1000
01:00:42.0607 0x0ca8 Boot type: Normal boot
01:00:42.0607 0x0ca8 ============================================================
01:00:42.0607 0x0ca8 BG loaded
01:00:43.0122 0x0ca8 System UUID: {1B9D1B86-4DAB-C999-A438-71CE0AA50E81}
01:00:44.0417 0x0ca8 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
01:00:44.0417 0x0ca8 Drive \Device\Harddisk1\DR1 - Size: 0x3AE00000 (0.92 Gb), SectorSize: 0x200, Cylinders: 0x78, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
01:00:44.0417 0x0ca8 ============================================================
01:00:44.0417 0x0ca8 \Device\Harddisk0\DR0:
01:00:44.0417 0x0ca8 GPT partitions:
01:00:44.0417 0x0ca8 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {6B139546-F3E4-423C-8A5A-5429389899B4}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x96000
01:00:44.0417 0x0ca8 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {1ECA3787-605B-4E4E-947E-603B155F5389}, Name: Basic data partition, StartLBA 0x96800, BlocksNum 0x1C2000
01:00:44.0417 0x0ca8 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {453316B9-F18D-4E99-9434-C5F0B6DD80A8}, Name: Microsoft reserved partition, StartLBA 0x258800, BlocksNum 0x40000
01:00:44.0417 0x0ca8 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {A5DC35F6-5A5E-47F9-97D2-207DDF78489E}, Name: Basic data partition, StartLBA 0x298800, BlocksNum 0x37839800
01:00:44.0417 0x0ca8 \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {297B2F4A-1D68-4536-A576-883CC01C92E2}, Name: , StartLBA 0x37AD2000, BlocksNum 0xAF000
01:00:44.0417 0x0ca8 \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {14FA438D-4143-4E70-923A-F3A4F971CEB9}, Name: Basic data partition, StartLBA 0x37B81000, BlocksNum 0x2805000
01:00:44.0417 0x0ca8 MBR partitions:
01:00:44.0417 0x0ca8 \Device\Harddisk1\DR1:
01:00:44.0417 0x0ca8 Can't read MBR
01:00:44.0417 0x0ca8 ============================================================
01:00:44.0541 0x0ca8 C: <-> \Device\Harddisk0\DR0\Partition4
01:00:44.0541 0x0ca8 ============================================================
01:00:44.0541 0x0ca8 Initialize success
01:00:44.0541 0x0ca8 ============================================================
01:01:48.0511 0x11c8 ============================================================
01:01:48.0511 0x11c8 Scan started
01:01:48.0511 0x11c8 Mode: Manual; SigCheck; TDLFS;
01:01:48.0511 0x11c8 ============================================================
01:01:48.0511 0x11c8 KSN ping started
01:01:51.0086 0x11c8 KSN ping finished: true
01:01:52.0193 0x11c8 ================ Scan system memory ========================
01:01:52.0193 0x11c8 System memory - ok
01:01:52.0193 0x11c8 ================ Scan services =============================
01:01:52.0318 0x11c8 [ E890C46E4754F0DF51BAFCC8D2E07498, E620D03030F3B65442E0A5CB8B59016A6E8DB3BCA52741977B8897B34438E902 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
01:01:52.0412 0x11c8 1394ohci - ok
01:01:52.0458 0x11c8 [ 4F18D4C7EA14F11A7211F60D553C03DB, 09AB6D2D8E9B7B6D6A97708551C0E4B34538947A15EA2A69C11764D7BC0BB7F6 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
01:01:52.0474 0x11c8 3ware - ok
01:01:52.0505 0x11c8 [ 975AABEB243B800C23626D6B652C5A9C, FB02336F26AF10BA2A0D1B97C33CB1D78BB90CA51EF008A613A0274779798FAD ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
01:01:52.0536 0x11c8 ACPI - ok
01:01:52.0536 0x11c8 [ DC968C37822117E576B933F34A2D130C, 4C94E00ADC242296D7CBBFC7346D5F9AE5FE1B0C616ECA3BDE10A7B34FD2040B ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
01:01:52.0552 0x11c8 acpiex - ok
01:01:52.0567 0x11c8 [ 0CA9F7C3A78227C21A0A7854E245CFB2, D54147C9C1EE2F0098B863B0852E027DB89D6FA67F6B7FD54F609D9715A11442 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
01:01:52.0599 0x11c8 acpipagr - ok
01:01:52.0630 0x11c8 [ 8EB8DA03B142D3DD1EB9ED8107A76C43, 24B9B24F9A5BDF3AAD13C4EE0638497D9CA4A100096C6EAE403E0215EA89C439 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
01:01:52.0677 0x11c8 AcpiPmi - ok
01:01:52.0677 0x11c8 [ CBCE725C5D86ABA7D2604E22951AA9B8, DE0440F0E943F057EBCD01DB4B1E12DBC241FBF03C42021306D322AB88FF8F21 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
01:01:52.0708 0x11c8 acpitime - ok
01:01:52.0755 0x11c8 [ 93C6388592B99925C1D1576E465BC80F, 4C48BE5471DA4788357D71E90DFEA20FE320C7AAE1F4C55AFBE2E46FEA5CF8FB ] adp94xx C:\WINDOWS\system32\drivers\adp94xx.sys
01:01:52.0786 0x11c8 adp94xx - ok
01:01:52.0817 0x11c8 [ D27763E0247292654E7F7D16444C7C72, 0314C713D31E2B34F215B52F804F014D876E6ED92DC656CC3E27920CCD36CF0E ] adpahci C:\WINDOWS\system32\drivers\adpahci.sys
01:01:52.0848 0x11c8 adpahci - ok
01:01:52.0848 0x11c8 [ 67B90070FF48F794AF19F9FCF0080D75, 5D0D352606D58D2CA0814F38EF7B1774C030BE44353DF5910CBFAAF4FDE64ED6 ] adpu320 C:\WINDOWS\system32\drivers\adpu320.sys
01:01:52.0864 0x11c8 adpu320 - ok
01:01:52.0911 0x11c8 [ 974AE60BF5B90E31412D93596C968E5B, 092B59C2B67C4618E7B1800615D1DF7199482F60D0D27BD91763F7F8D7FC883F ] AeLookupSvc C:\WINDOWS\System32\aelupsvc.dll
01:01:53.0051 0x11c8 AeLookupSvc - ok
01:01:53.0082 0x11c8 [ 9E975BDC89C83900B2C534C4E1B018F8, 5413577284FDD7840915CC29C3DD78E514F0E6227384636695CF8B46FAA541DC ] AFD C:\WINDOWS\system32\drivers\afd.sys
01:01:53.0160 0x11c8 AFD - ok
01:01:53.0223 0x11c8 [ 98022774D9930ECBB292E70DB7601DF6, BE64A40B9BE997D73C0FC14D97E204C9D886EDA07EC4C9391A70CE477084E5F1 ] AgereSoftModem C:\WINDOWS\system32\DRIVERS\agrsm64.sys
01:01:53.0301 0x11c8 AgereSoftModem - ok
01:01:53.0332 0x11c8 [ 01590377A5AB19E792528C628A2A68F9, F3A4B6CA4E8D4436E44E36D7F7EEF3DC861D1EE50D41F4273226C4ED95674B84 ] agp440 C:\WINDOWS\system32\drivers\agp440.sys
01:01:53.0332 0x11c8 agp440 - ok
01:01:53.0363 0x11c8 [ 16F6F6B7903B913AB41AB848C8BB5658, 7304257048CB42E5274B3F6400F4A053A38E3B70A157662FE9D2B7C5979DE851 ] AiCharger C:\WINDOWS\system32\DRIVERS\AiCharger.sys
01:01:53.0394 0x11c8 AiCharger - ok
01:01:53.0410 0x11c8 [ D1BE8E6E5B3AF23A4393AF1BF867977A, B3AE97D35A9304198715D76F6C3F0545AA176FDEBA6C2055782558B11DFA14EB ] ALG C:\WINDOWS\System32\alg.exe
01:01:53.0472 0x11c8 ALG - ok
01:01:53.0519 0x11c8 [ 025E8C755BE293E50854D26D1BBE5133, 4373639689306A3D8FE0F862072711BAD5DBAA45E105CD3129586439A90EE070 ] AllUserInstallAgent C:\WINDOWS\system32\AUInstallAgent.dll
01:01:53.0566 0x11c8 AllUserInstallAgent - ok
01:01:53.0597 0x11c8 [ 15223ECAD7D688273DADA63ADA8B6BBA, 4E6261A8E89CF0491FAE680C9A842D46E4C693300D7DA7412AF02728486CDFFF ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
01:01:53.0660 0x11c8 AMD External Events Utility - ok
01:01:53.0675 0x11c8 [ FB88D16B55F788EEB7590584FE2D8F1A, 96DDFF3D0139FC268E43C5CB2F1455BC1EAD99883453933B4B639166AAB0ED38 ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
01:01:53.0722 0x11c8 AmdK8 - ok
01:01:54.0112 0x11c8 [ 8EEBE772FA7D2A6436D6DBDE5EC7191B, B6108A3DF9348D5500FC741AEACFD94044AE4AA5314DEDCF4A4B491F12E7AC15 ] amdkmdag C:\WINDOWS\system32\DRIVERS\atikmdag.sys
01:01:54.0533 0x11c8 amdkmdag - ok
01:01:54.0596 0x11c8 [ 9B08F939F313CC8D57789C528F6B4C4B, 3CC2E9BC7EAF7F193DB53A91B706369077CAD769F3585823389564235FCD09EE ] amdkmdap C:\WINDOWS\system32\DRIVERS\atikmpag.sys
01:01:54.0642 0x11c8 amdkmdap - ok
01:01:54.0658 0x11c8 [ 81402FF3373CE4DF77D5C874E369A985, 83F2091A6D97314CD3216176365ABD1D0FB74686BA457022712DE8F355AD1D90 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
01:01:54.0689 0x11c8 AmdPPM - ok
01:01:54.0736 0x11c8 [ 35A0EB5AECB0FA3C41A2FB514A562304, 737783ABF348288471AC7051D4DC6CB336D686C94EC7B8938DCA74AFE9BECB1C ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
01:01:54.0752 0x11c8 amdsata - ok
01:01:54.0752 0x11c8 [ 00452671904F5EE94B50BF0219C97164, 99F9B86D3DB3E10B014120A63CD43CBAAB22C8E38851090ABE37D89ABD61F7B6 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
01:01:54.0783 0x11c8 amdsbs - ok
01:01:54.0783 0x11c8 [ EA3FFE53E92E59C87E3ECA9BEB20D9B7, DC0B8B798720F5F75F8AFD3383CF69194282AEEE84DCACB97382F4C86E1D3E49 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
01:01:54.0798 0x11c8 amdxata - ok
01:01:54.0830 0x11c8 [ A2EFE3869B976296E097DEF368280F95, 121CD4A16146A9DF59D6E415181F48CA0D1DCD4D2B6BC4CBDABC2F3D296E28C6 ] amd_sata C:\WINDOWS\system32\drivers\amd_sata.sys
01:01:54.0845 0x11c8 amd_sata - ok
01:01:54.0845 0x11c8 [ 625396421C29FB305C6C6235D01130B8, 3FAF8D3B530F1B74B2C9B0ED3377836746CE2D0A4008E1BC454095671AC9E1AF ] amd_xata C:\WINDOWS\system32\drivers\amd_xata.sys
01:01:54.0861 0x11c8 amd_xata - ok
01:01:54.0861 0x11c8 [ 83B3682CE922FB0F415734B26D9D6233, 9102E8B410BB1AE426770896B6AB584D1F02830337FBB2DEC182F3F19832F35F ] AppID C:\WINDOWS\system32\drivers\appid.sys
01:01:54.0923 0x11c8 AppID - ok
01:01:54.0954 0x11c8 [ CE2BEAD7F31816FF0AC490D048C969F9, 7D24C5A9E8F7C21CC6D8BF2CA29A8B79DDE7EEDE2F37D36B9071ECE1CF61371F ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
01:01:54.0986 0x11c8 AppIDSvc - ok
01:01:55.0001 0x11c8 [ D64C4AFEE8277F35EF729A2B924666B0, 543AA2B2CD09820437646CFE01AFDBA6B764AA588E663759DEB93CB4F25E09D7 ] Appinfo C:\WINDOWS\System32\appinfo.dll
01:01:55.0048 0x11c8 Appinfo - ok
01:01:55.0064 0x11c8 [ 44695679881DEB85CAD7C249B151066E, A44413ACA911DDB5757DE9F9ECC3968979C47617CF9DF81B24E7ECDE7E0D54BC ] APXACC C:\WINDOWS\system32\DRIVERS\appexDrv.sys
01:01:55.0079 0x11c8 APXACC - ok
01:01:55.0110 0x11c8 [ E933401B392387F4BE34DE8BAF1722A7, 57CC6DE31E2C82D2B12509F0A5EC9EC70DD2EF6A1F31A66ADF62DC6AE0A67323 ] arc C:\WINDOWS\system32\drivers\arc.sys
01:01:55.0126 0x11c8 arc - ok
01:01:55.0142 0x11c8 [ 07CA323EF2E8247A568AB0F3662AD644, 1224B41193F0E9B164732BA5BF707A13427C82C1D8C3EDC2AAE5C5C75454B9F6 ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
01:01:55.0157 0x11c8 arcsas - ok
01:01:55.0220 0x11c8 [ E40AF754F43E3B44E2D6DE829267AD52, 5F9427E595A56464807D071205FB4DFD6BB21B68058E67529DC1727D32FAB0AD ] ASLDRService C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
01:01:55.0220 0x11c8 ASLDRService - ok
01:01:55.0235 0x11c8 [ 4C016FD76ED5C05E84CA8CAB77993961, 025E7BE9FCEFD6A83F4471BBA0C11F1C11BD5047047D26626DA24EE9A419CDC4 ] ASMMAP64 C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
01:01:55.0235 0x11c8 ASMMAP64 - ok
01:01:55.0266 0x11c8 [ 6A122B4F0E5293CACFA8A5F2CBA9B356, 9D69076B697BEE8742E32EBEF1802D829DEA6B1D93AF485D11CC89A08CA4D809 ] ASUS InstantOn C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
01:01:55.0282 0x11c8 ASUS InstantOn - ok
01:01:55.0313 0x11c8 [ 74DBAEC35366C4EE7670428808715A6A, 3B3A7A81CD8038C4750560B94A9247C4409410780B312BA71EDF2E393DCA7474 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
01:01:55.0344 0x11c8 AsyncMac - ok
01:01:55.0360 0x11c8 [ A721FF570C2387E383BDDEA9632863C9, 45DD7787F44A2C742560FEB03AB66910C2F0002D95BB02C55EEDE973AA92AD24 ] atapi C:\WINDOWS\system32\drivers\atapi.sys
01:01:55.0360 0x11c8 atapi - ok
01:01:55.0516 0x11c8 [ BD0CA4F831A9DAFC2D0393431A497593, 2084EC0DB12E84E645D1C4A1F4D10FDE36B008C98C44E8F4D10BCFE8F0199F97 ] athr C:\WINDOWS\system32\DRIVERS\athw8x.sys
01:01:55.0703 0x11c8 athr - ok
01:01:55.0750 0x11c8 [ 506907D2E7F3A5B67DBD39C00A788B7C, 618C91FB9F49C69F88A993F164D7E9E4B7CAD0F34DCF77CF0C6F259A28448171 ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdW86.sys
01:01:55.0766 0x11c8 AtiHDAudioService - ok
01:01:55.0781 0x11c8 [ DBC598E47E7A382E60E2A4745D41FEF9, A810AC197CA456B0285E2CAE6986D38B31F4ADA32BEB47EC7A48A2B2196BA639 ] ATKGFNEXSrv C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
01:01:55.0797 0x11c8 ATKGFNEXSrv - ok
01:01:55.0828 0x11c8 [ 41CEAFFCF3550785E59E3EC9BEE8D97A, 89FE604088B65B82AA794E1DA8429033CD2F05FFB2D7EFAAC7B967C7A83D1B1E ] ATKWMIACPIIO C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
01:01:55.0828 0x11c8 ATKWMIACPIIO - ok
01:01:55.0859 0x11c8 [ 437EB91CB20144375DDE145149778405, 5E76CDE2B3C852755F6E54AF774E9BECDF472103D83B815899333DE268536B98 ] ATP C:\WINDOWS\System32\drivers\AsusTP.sys
01:01:55.0875 0x11c8 ATP - ok
01:01:55.0906 0x11c8 [ 8A814F4CBF6AA28A8F0212592824C927, 9688BA88E744B231CC13F28CE40AE64AA121F943BADE4D0BA5A83487AF6C01CF ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
01:01:55.0953 0x11c8 AudioEndpointBuilder - ok
01:01:56.0000 0x11c8 [ 01E8E96251900BCEFAB34FBC1FCEB552, 63D4B17967545586BEFD76FCB507AFDE3F7454CAADAE1EDE615D81204AF275CE ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
01:01:56.0046 0x11c8 Audiosrv - ok
01:01:56.0093 0x11c8 [ 89491EF71D5EA011127832C588002853, 05620E4235956D8446FB9604F930738C8AA97E3A74C907E37F7CC08B8EDA0461 ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
01:01:56.0140 0x11c8 AxInstSV - ok
01:01:56.0187 0x11c8 [ 87AB5BB072A3F128541D5B815F82FFDD, 186AF33D3DE90638C3E165CAC3DA17295E8A80CDB523F9BE4AF7D38CA6954905 ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
01:01:56.0234 0x11c8 b06bdrv - ok
01:01:56.0265 0x11c8 [ 81703BC5D68DEDBB086C2368FBE7B334, CFD4A55C8045C482F8D410514F3211AEFA00097AB395F5A04BFE983ED6254F6B ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
01:01:56.0296 0x11c8 BasicDisplay - ok
01:01:56.0312 0x11c8 [ 5EC68164E14D25675C98BBB5F09E8606, 1D7EDB21C87039FC5F39F46460AD852BC4EC6B179B1C205D189DD3C397343435 ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
01:01:56.0343 0x11c8 BasicRender - ok
01:01:56.0405 0x11c8 [ 558F6EEF46EC2642C8F72D34CBB5612E, DA192AB0C645200E7135C994866589DB6ACA451CC3F2BC903C95E5ABCD7391CC ] BDESVC C:\WINDOWS\System32\bdesvc.dll
01:01:56.0468 0x11c8 BDESVC - ok
01:01:56.0514 0x11c8 [ 9E7AEA59776D904607985AFFE7E5E183, C3DB745A9F4DA7CB9628A7913DD52B2444B14FEB9D588FF6558CF52CEB8955EB ] Beep C:\WINDOWS\system32\drivers\Beep.sys
01:01:56.0546 0x11c8 Beep - ok
01:01:56.0577 0x11c8 [ 407F85D5387EDBB665A7969DF4D4712B, 56E103CDCDFB07E54ABF7F7AD898E7E989B0D9CD73352E6AB89D7AE52AA46C9D ] BFE C:\WINDOWS\System32\bfe.dll
01:01:56.0639 0x11c8 BFE - ok
01:01:56.0686 0x11c8 [ D598C44A7072D3108D8D8102EC5E07F7, D7472E9BAAB7B6E1D30F4E153412E2A16EE5C08DE2BF8BFF4D65089825226FE0 ] BITS C:\WINDOWS\System32\qmgr.dll
01:01:56.0780 0x11c8 BITS - ok
01:01:56.0811 0x11c8 [ B17AC10B47C7FCB44D22A1F06415840E, 990D6F629D93F4F913D218ACE5187A26DCB762BAFB2BB279CCE8CAF2755D85A5 ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
01:01:56.0842 0x11c8 bowser - ok
01:01:56.0889 0x11c8 [ 975398A3D2C1FEA73FC93931978DF354, 623E66E79BF16AC82E5DD579B1D50AA1A884FAFC042C3C8A1B503C97A84098DF ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
01:01:56.0920 0x11c8 BrokerInfrastructure - ok
01:01:56.0951 0x11c8 [ 310068BDA80B1D55C36580FD8A873FAF, A75412FF1F483461F526E9A359DCEECA5E683441514464D5ED82D1A9740D583E ] Browser C:\WINDOWS\System32\browser.dll
01:01:57.0014 0x11c8 Browser - ok
01:01:57.0045 0x11c8 [ FC79BE6D8FBC8699E9980F657D281BE9, 02D3233719E1DB059ABFB0F5D534114E70208D1339BC53EADC5C78424A3E7117 ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
01:01:57.0076 0x11c8 BthAvrcpTg - ok
01:01:57.0092 0x11c8 [ 8DE53C3B497D58C7D3E52F54D28E7D86, 1063973F6B0125E1209AE012E218AD9E7AABA5DBB03D883050F25C9D4F68B99B ] BthEnum C:\WINDOWS\system32\DRIVERS\BthEnum.sys
01:01:57.0123 0x11c8 BthEnum - ok
01:01:57.0123 0x11c8 [ 616EB8748C988AEE98D93DA141C3D3B4, 15A055B0496BDB29CBCF6EEBF112D4BA1C7A2FF39124728830D0FD1FD7A404CB ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
01:01:57.0185 0x11c8 BthHFEnum - ok
01:01:57.0201 0x11c8 [ 6F7368071FCDDB96C0527A6E5D7C1906, 0406CDEC064D644F38950FF26234F006D59F5E3265614D50F5D9C7CEC8475B48 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys
01:01:57.0232 0x11c8 bthhfhid - ok
01:01:57.0263 0x11c8 [ 033916CE8784A848B9A3D686B7F66D97, B4D0514D59646CF6B70D4FA488CF95C38EA38CC5C509329CC8753E897C640AFA ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
01:01:57.0294 0x11c8 BTHMODEM - ok
01:01:57.0326 0x11c8 [ 091BB978E9504D0AD14586929431A957, ACED02B879026A228E35F40847C210BC30A5AFC948FFE922DB21663E4A8DFF1D ] BthPan C:\WINDOWS\system32\DRIVERS\bthpan.sys
01:01:57.0372 0x11c8 BthPan - ok
01:01:57.0435 0x11c8 [ 427510B95603B24A0E1DDB47EFC4BA44, D90ED0D0313FB1517D3645AA01E5422351AE2BB3778325EFD6D0A0ACD1DC7E7C ] BTHPORT C:\WINDOWS\System32\Drivers\BTHport.sys
01:01:57.0497 0x11c8 BTHPORT - ok
01:01:57.0544 0x11c8 [ A4387C3D271959313E2577DB7BE8BA7A, C71474802102102EBE04DF036EEB2F5FB3380BE288E3842F19F234EFAE977D70 ] bthserv C:\WINDOWS\system32\bthserv.dll
01:01:57.0575 0x11c8 bthserv - ok
01:01:57.0606 0x11c8 [ 0BB16201253AA87015EFFECAF157225F, 1B5B38275828B82B06D24018A8965DA58866C05E3847AA1B55BFF6F13FD9E235 ] BTHUSB C:\WINDOWS\System32\Drivers\BTHUSB.sys
01:01:57.0622 0x11c8 BTHUSB - ok
01:01:57.0653 0x11c8 [ 990B1BABE6E81FB18E65A87EBEFB1772, 1820D4AC57E1D4B7FB5AA89C277B16910ED73712878D2B43FE542CE16DFE16C3 ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
01:01:57.0684 0x11c8 cdfs - ok
01:01:57.0716 0x11c8 [ 339BFF85D788268752DA8C9644B188EE, C2279F1A39AED39865A5027D2FD087F8E82F3ED8C94BA4D922855B98E792AFC5 ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
01:01:57.0762 0x11c8 cdrom - ok
01:01:57.0794 0x11c8 [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
01:01:57.0825 0x11c8 CertPropSvc - ok
01:01:57.0887 0x11c8 [ 45B5A89DC41577282E5BF41B1165EA71, 533CFE2169B6150D9B6FE61F85DF97D7A143B9F5FDCABBD5A515ED38CDE180C7 ] cfwids C:\WINDOWS\system32\drivers\cfwids.sys
01:01:57.0887 0x11c8 cfwids - ok
01:01:57.0903 0x11c8 [ F64B7D1A37CC1D5F421D5359EEC81E2E, 2B4879DD32B2C20B94847755E22B1BCBE2B567B3989C57A9BA2DD783307EFFDB ] circlass C:\WINDOWS\System32\drivers\circlass.sys
01:01:57.0950 0x11c8 circlass - ok
01:01:57.0981 0x11c8 [ 9905168708DB68849B879B5548F68AB3, B7A495E57B9398704988DC472126CBC5B8D76761A34F51732FBF6CC88E3AB79A ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
01:01:57.0996 0x11c8 CLFS - ok
01:01:58.0012 0x11c8 [ 2DC8538A2260647484A6C921CA837313, 094059DD66B0C50A1CAE288F920107B0B6AD1AA5758284E35B92C131EDEA30EA ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
01:01:58.0059 0x11c8 CmBatt - ok
01:01:58.0090 0x11c8 [ 1894FD2D5966A81D3B07A7C4D8724D59, 18DCE6DF0DE39DFD1358A1E061AD97099699CE430BCB906AFB7F51277681461D ] CNG C:\WINDOWS\system32\Drivers\cng.sys
01:01:58.0137 0x11c8 CNG - ok
01:01:58.0137 0x11c8 [ 0E5B1E9E7122EDAAF1F6CE047965CA92, 803E585B92D1E2E5B6BF67BE511E88DC2629A12407C3E30F7AEFB544D390A9B8 ] CompositeBus C:\WINDOWS\System32\drivers\CompositeBus.sys
01:01:58.0168 0x11c8 CompositeBus - ok
01:01:58.0184 0x11c8 COMSysApp - ok
01:01:58.0215 0x11c8 [ D9CB0782AF819548072AA45B70F8B22D, 04796F39ABB88759A534DE3D0C51F684BF2A8DE1F4028B657CCFDBDD39A6618C ] condrv C:\WINDOWS\system32\drivers\condrv.sys
01:01:58.0230 0x11c8 condrv - ok
01:01:58.0262 0x11c8 [ F0E78B119D12BA81F163D48C0FF30B9A, 9622A2F36F03A33E7D145C439BD62D5AEFD53064D60BCC787555D1AF8CB936A9 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
01:01:58.0293 0x11c8 CryptSvc - ok
01:01:58.0308 0x11c8 [ A4CCA7289C1A6223D61FD27BF2FC413F, DCDA516FE602690802A8D2A854E607FFCB0BCFDFCDB1F1AC6B30CBAED2663726 ] dam C:\WINDOWS\system32\drivers\dam.sys
01:01:58.0324 0x11c8 dam - ok
01:01:58.0386 0x11c8 [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
01:01:58.0464 0x11c8 DcomLaunch - ok
01:01:58.0496 0x11c8 [ C8650D1F61149AA546BDBC99172EBBC1, D9592ED1B6F23B6EC76A0B93635B6E38702311B0A6982F0F9DEC37FCDAF1288B ] defragsvc C:\WINDOWS\System32\defragsvc.dll
01:01:58.0574 0x11c8 defragsvc - ok
01:01:58.0620 0x11c8 [ 5EAEF67AE2AF4D2DC664B649DB7B2E16, ADAC7FD6AC12B50F4998C5EB0BD770DD4B80A94C4CC1B9376AD77648E48D012D ] DeviceAssociationService C:\WINDOWS\system32\das.dll
01:01:58.0667 0x11c8 DeviceAssociationService - ok
01:01:58.0698 0x11c8 [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
01:01:58.0730 0x11c8 DeviceInstall - ok
01:01:58.0745 0x11c8 [ 09D9EB9E7898F8E6561473A20CC808B9, 0F511593D36084843E5138AF6D55FE08D77803968AE12A236A02368DB364347E ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
01:01:58.0776 0x11c8 Dfsc - ok
01:01:58.0808 0x11c8 [ CFB72DF4B2364AF6D4D685DCD310E942, 89C72E1008B92B85A275B9F37D96481C3EFCABE9ACD28B698D5A04E0DDA0DF8F ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
01:01:58.0839 0x11c8 Dhcp - ok
01:01:58.0854 0x11c8 [ 3C736FAE17BA6F91BA37594AAB139CD0, 34304A194105B19E7ADD80108DC85C3B7AA9E942C84A7EF93C475CE1D9AE4615 ] discache C:\WINDOWS\system32\drivers\discache.sys
01:01:58.0870 0x11c8 discache - ok
01:01:58.0901 0x11c8 [ 560495FF4CA22E1D9B1972FA18F43B6F, 41FFDD4C1097AA857A8177E34F101A1A9C1429A4E8DEC3D395C6135A9E112CD6 ] disk C:\WINDOWS\system32\drivers\disk.sys
01:01:58.0917 0x11c8 disk - ok
01:01:58.0932 0x11c8 [ 82A7C72593793FE1EADA7A305BD1567A, 75F432E4C75AE9EFF553BD860B3B250853BDDA85C17DBD9B7242D74593506A86 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
01:01:58.0979 0x11c8 dmvsc - ok
01:01:59.0010 0x11c8 [ 066B9710B36AB550E01EEFCA52155968, DCA9F3F4856A6866D3F5A2EEE34E96A83F40198DB0B5AC6381A7568DE1F56FAB ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
01:01:59.0042 0x11c8 Dnscache - ok
01:01:59.0073 0x11c8 [ 9949AD2ABA168A618D46C799D6CC898C, DFAC86A0AEE83C9EFE1BEE9EC15C8CAF1D619D55AF3ACC3986057A5AC985D06A ] dot3svc C:\WINDOWS\System32\dot3svc.dll
01:01:59.0120 0x11c8 dot3svc - ok
01:01:59.0135 0x11c8 [ 109FC3F80BF4F4DC5A071058074F13C1, F30736F45BA1811D59E9CB1C172D8D1EA9F5A7D36DCFFBFC9E7E02448C1CF851 ] DPS C:\WINDOWS\system32\dps.dll
01:01:59.0166 0x11c8 DPS - ok
01:01:59.0198 0x11c8 [ 84D07E4E4FBE72DA3EC1C1E77C49B53C, 81846E3E91080EA3E21FDC1120B5CC2265258AC78AF654DCD1A05E3966AA923A ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
01:01:59.0244 0x11c8 drmkaud - ok
01:01:59.0260 0x11c8 [ BF48F32EE248C3D371DA5DC93BBEADA7, C8E9B685A8F2F99140382557F11E362D899E7EC6693ADEFE762F0A3850585C63 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
01:01:59.0322 0x11c8 DsmSvc - ok
01:01:59.0385 0x11c8 [ 898BF1647BBF012B38EF45C7F9F7A67E, 800EF0CF107B5F29702FA50D448E20D3EB19984C38D1AA0197636A80629A3160 ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
01:01:59.0463 0x11c8 DXGKrnl - ok
01:01:59.0478 0x11c8 [ 651FBD69A9713D623D456A240F96179C, 22A1F306B454EF9C84D25EF266F3ED0E1D896B1F5BE60170E79F37F2DBCA59F4 ] e1iexpress C:\WINDOWS\system32\DRIVERS\e1i63x64.sys
01:01:59.0541 0x11c8 e1iexpress - ok
01:01:59.0572 0x11c8 [ 58BA473DD88F5FC1932282BA683AA03E, B8A4407D3006D91BE88F9C5389AC1CACC73BEBF6F66433A1E5EB8E58E8836C12 ] Eaphost C:\WINDOWS\System32\eapsvc.dll
01:01:59.0603 0x11c8 Eaphost - ok
01:01:59.0728 0x11c8 [ 5AB97B3282D7D6114949D1EB5C8598E4, FB9449CC1CDC12C12AA0469BB6ACC770CB011250EDFD86E9600E754610608EFD ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
01:01:59.0868 0x11c8 ebdrv - ok
01:01:59.0900 0x11c8 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] EFS C:\WINDOWS\System32\lsass.exe
01:01:59.0946 0x11c8 EFS - ok
01:01:59.0978 0x11c8 [ 66D60BD9A4C05616ABECA2A901475098, 8111550DB03FFD72F1822F47B16F075DA92874B64F19342D7CF60B0EE648AFEF ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
01:01:59.0993 0x11c8 EhStorClass - ok
01:02:00.0009 0x11c8 [ A61D0F543024E458C0FE32352E1978E2, BDE6BC140300EAF790F16466C28897CE0BD7D94DCED13FDE20AA4AACA0F6A4FD ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
01:02:00.0024 0x11c8 EhStorTcgDrv - ok
01:02:00.0024 0x11c8 [ D790D058D67582DB9C84C2D33695FE6B, A5763D7F6D191EA4B290B3E92D842AC36FD46DF598472E70B46E45D8CCD2F912 ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
01:02:00.0040 0x11c8 ErrDev - ok
01:02:00.0102 0x11c8 [ F9E01C2D9F8BC049E04CF5DC24A5F638, CB6CCB59C77D4A59DDA846608AABEF1DFEC24C8422712AB8D59E27C13D731D2E ] EventSystem C:\WINDOWS\system32\es.dll
01:02:00.0165 0x11c8 EventSystem - ok
01:02:00.0196 0x11c8 [ 7A4D6FEB8C52B3FE855E4DCDF9107E03, 6B0146A4C9AD32DCDC2DEE8E8C5A29F687665458486449E0D37B151ED63B8ADC ] exfat C:\WINDOWS\system32\drivers\exfat.sys
01:02:00.0212 0x11c8 exfat - ok
01:02:00.0243 0x11c8 [ 60996602A7111FD2D086E803F33E4282, E62A91C90F8542990BEA4E6A5D9DD3D070F4EB23B4C13414C5DA2B0219509749 ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
01:02:00.0258 0x11c8 fastfat - ok
01:02:00.0305 0x11c8 [ F0E7F8382ED5E138B0DFA4CB5058BCFE, 6247C7B75F975F5AB080FFB9881EF58A6F360219F7AF2DE871F38E80CAF3B62C ] Fax C:\WINDOWS\system32\fxssvc.exe
01:02:00.0352 0x11c8 Fax - ok
01:02:00.0368 0x11c8 [ 73B2D11DF0B6E03A0CB0323218ACB3E4, BA9256919BAA2E0760F6A658B557FDC389ACE8F9820D1A41FD995FC5613F5AA6 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
01:02:00.0383 0x11c8 fdc - ok
01:02:00.0414 0x11c8 [ 0828E3E7BD77C89149EAD3232BFD38DB, A6A296647A4EDBFF59124E3A9C0AB48759AA1738615ACFA5A454FF6BD3C31BA2 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
01:02:00.0446 0x11c8 fdPHost - ok
01:02:00.0461 0x11c8 [ 872506AAB591E8908DF4461475AF92DF, 772F2D08CB95775E438822B9EA005CBA92ED4071ADAB2C0101156A7D037D4704 ] FDResPub C:\WINDOWS\system32\fdrespub.dll
01:02:00.0492 0x11c8 FDResPub - ok
01:02:00.0524 0x11c8 [ 0588950D93A426F97C7AAADB1A9B0458, ABCB3619BD58CAC438FC032495AE45A7B6FFDD4BD33C1B3D1BC7F9F13FCB727A ] fhsvc C:\WINDOWS\system32\fhsvc.dll
01:02:00.0539 0x11c8 fhsvc - ok
01:02:00.0570 0x11c8 [ 88A9EBACD1058ABB237A6B4E96E7F397, 263D25D33B679EB01D97763701347C31B2F72E28CE2C7EC8013EA77756D98BE1 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
01:02:00.0586 0x11c8 FileInfo - ok
01:02:00.0602 0x11c8 [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02, 1D7BFB00D74A28AC13ECBA1E0036D50EE79266AC02CEDB2632466BF9DD46F211 ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
01:02:00.0633 0x11c8 Filetrace - ok
01:02:00.0633 0x11c8 [ B1D4C168FF7B8579E3745888658FFB1D, 1A5C13E902A0C788A8B995ADD2FBC3303005911C0AA3F3F4497D3016AA0EF583 ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
01:02:00.0664 0x11c8 flpydisk - ok
01:02:00.0680 0x11c8 [ B33EC133AE4E6C1881D2302D93D2467D, 77E3A16257EA3698B3FCD947D004144E8D1EEE48EF5C82DF49B1B9B2B3C61DB2 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
01:02:00.0711 0x11c8 FltMgr - ok
01:02:00.0789 0x11c8 [ 305CB1E16576F436BC8797E629A3D46D, E3644AE3FA8F755D306D9C4177262CEC451B33731074508B139F3F86AC1B5AE6 ] FontCache C:\WINDOWS\system32\FntCache.dll
01:02:00.0898 0x11c8 FontCache - ok
01:02:00.0960 0x11c8 [ 0B56259F5611787222A04A8F254E51D4, F77AEC0ACBFAF9154E32223B84B613229DACCD953AEBC3E96C27570F9AB10FD0 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
01:02:00.0976 0x11c8 FontCache3.0.0.0 - ok
01:02:01.0007 0x11c8 [ A5F7873A39E4E9FAAAE59B7E9E36B705, 32036109F5A50E9F3BEF97C5B28AE8179B3A5E22517868A83CADE4671FF90DEC ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
01:02:01.0023 0x11c8 FsDepends - ok
01:02:01.0038 0x11c8 [ A6DD7D491F587F4BC13FB972977DC8E8, B86F97F17F6F443EC16DEF67CCA4EF78AFE56078D2877838A982FECB19557C87 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
01:02:01.0038 0x11c8 Fs_Rec - ok
01:02:01.0070 0x11c8 [ FA228F4BB10DC7ED7E7D131C034E2331, 0463B1DB8BB2B5AF95EAD988EA9DEB5483D9E78C07E07BAC1E3CC46C086B3BB0 ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
01:02:01.0101 0x11c8 fvevol - ok
01:02:01.0116 0x11c8 [ 3EF3FCCC0E70EEC5C2AD996F32BBA642, AC452FD68519DD1EFC971D223CBB3702F38146CB4203E2F6A4302EE3F76144EB ] FxPPM C:\WINDOWS\System32\drivers\fxppm.sys
01:02:01.0132 0x11c8 FxPPM - ok
01:02:01.0163 0x11c8 [ 52BC441E07A827EBAB70CDC7EAEDB28D, 8DECBD8E12EA52039742599CFBBF0D3B6610B57EF8D9DAEEEA33D202A478D286 ] gagp30kx C:\WINDOWS\system32\drivers\gagp30kx.sys
01:02:01.0179 0x11c8 gagp30kx - ok
01:02:01.0194 0x11c8 [ 721F8EEF5E9747F32670DEFF7FB92541, E0A8EF70753E260C2C7D93D316B5EF9589DB086FDF829BDA2958C6A09CE471A6 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
01:02:01.0210 0x11c8 gencounter - ok
01:02:01.0241 0x11c8 [ CA18ECFCFFDD638ECE80799A9056B238, FEA6778443253CBAA9FF43A980D576A3F449B036151F91495F04CE0C54F02254 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
01:02:01.0272 0x11c8 GPIOClx0101 - ok
01:02:01.0319 0x11c8 [ 5358678C6370F2ADC5291849F6503262, 841633D7A936C3889690C67E189BAD4C6B294C196FFFE5B564FCECDFE46A9E52 ] gpsvc C:\WINDOWS\System32\gpsvc.dll
01:02:01.0382 0x11c8 gpsvc - ok
01:02:01.0413 0x11c8 [ 9FC1F11D4D19F61DFE5CC878B4557D3A, 17A0EC253D04FBD25C2113FD96FBF9D822E8295623C1B1DDA712FB102D42E956 ] HdAudAddService C:\WINDOWS\system32\drivers\HdAudio.sys
01:02:01.0475 0x11c8 HdAudAddService - ok
01:02:01.0491 0x11c8 [ 7D87B5B6C7188D553E11B59DC7F0B111, FC633DB71E1D72E8AD8F89BBB54324CC6ED17F5594EF55DD0BDB58EE1F601FF5 ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
01:02:01.0522 0x11c8 HDAudBus - ok
01:02:01.0522 0x11c8 [ 3F76BBA53D65E85A7F53E7A71082082C, D1E18815BB19CD11007C4A66162C76F55D4FE6B09B34ED45969C7ECC29D394AD ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
01:02:01.0553 0x11c8 HidBatt - ok
01:02:01.0553 0x11c8 [ A25BAE8C1F2830C8E5625EC7E4E968BE, 81D441B6616094C604453D8EC289C29D9B84A323B5C7C312C96C8380D51538DA ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
01:02:01.0584 0x11c8 HidBth - ok
01:02:01.0616 0x11c8 [ AC0526C4E3A7954F750B8F8D95EFB340, BE5180F60761F513B3CD5FC395BB8BCF6EAB6D7A910E0C824FFBEC128285F7A7 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
01:02:01.0662 0x11c8 hidi2c - ok
01:02:01.0662 0x11c8 [ DC96F7DACB777CDEAEF9958A50BFDA06, 7CE79F32D5EE65C0178CFF56523825D3EE01095B2CE8C67634A6604A821A9086 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
01:02:01.0709 0x11c8 HidIr - ok
01:02:01.0740 0x11c8 [ FAC37D7B3D6354A5A5E19A45B50B4008, 2962B552A1DA545DFDEF0886582E82596FE8A3A19AAF989B025AFDA84D16D4EC ] hidserv C:\WINDOWS\system32\hidserv.dll
01:02:01.0756 0x11c8 hidserv - ok
01:02:01.0772 0x11c8 [ A9F2301B8D28BB4D887F5AEBB55ACB3A, 886B04224CA0A90B4FD0B9F8D243EED4FBA367D078FB1CAF99EE671FE1FCEC27 ] HIDSwitch C:\WINDOWS\System32\drivers\AsHIDSwitch64.sys
01:02:01.0787 0x11c8 HIDSwitch - ok
01:02:01.0818 0x11c8 [ 590B6F71BCDA4368B4BF7D8DF22B60F7, 5CED8ACCBBF373607A8CEC81E9F9856C450A73A969E07DF3218B85F444CA7D3F ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
01:02:01.0834 0x11c8 HidUsb - ok
01:02:01.0865 0x11c8 [ A894FB2CAE6A29F5D9C8EDA47B074623, F39014379B6F546CF3D3F56A343A7173B600A350715638040AE93E03EAB81CAC ] HipShieldK C:\WINDOWS\system32\drivers\HipShieldK.sys
01:02:01.0881 0x11c8 HipShieldK - ok
01:02:01.0896 0x11c8 [ 43F884B61A24377567CD0FEB35236334, B3BA36B527C8D6D83DE2FBCD8D503B87FD2611BF15B07A7BC138DC8BAE6A50C1 ] hkmsvc C:\WINDOWS\system32\kmsvc.dll
01:02:01.0928 0x11c8 hkmsvc - ok
01:02:02.0006 0x11c8 [ 6CC1AD7B0E071C317B7FB8FC6AEF0EDA, 2A907E87E491F76B75F13CD921962EA4D1FF4C705E393F8FA3F48EC701E668F5 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
01:02:02.0037 0x11c8 HomeGroupListener - ok
01:02:02.0068 0x11c8 [ E0D9F6FE18FA7F53ADD29AF719CE2B7E, B965DCC72625188F3B896CB447B7696F22687266EAFC5AA270E2AD53DD9F324D ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
01:02:02.0099 0x11c8 HomeGroupProvider - ok
01:02:02.0115 0x11c8 [ 64DB7A8D97CA53DCCF93D0A1E08342CF, 02CAB7F28D3830C482683425C60044239C6F1562556688A274CA2C237C846E76 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
01:02:02.0130 0x11c8 HpSAMD - ok
01:02:02.0162 0x11c8 [ 47DBBF38E00C3F7404B71F6509241EF1, CBB3B3F46F702605DD47F12C318984937D7E8384C0A6B62556A6961F74305292 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
01:02:02.0240 0x11c8 HTTP - ok
01:02:02.0271 0x11c8 [ 2A98301068801700906C06649860FE94, 664394A52326289DCA0828B0041A105653F4FEF3E3DCCC3787AAE0F6FDC73A14 ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
01:02:02.0286 0x11c8 hwpolicy - ok
01:02:02.0302 0x11c8 [ DC76901D82097C9E297F20C287CB9A27, 01A412D0D8A65050BE4250A7C4B9F98A4C43FD891827761E0C830369A5F9F09C ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
01:02:02.0318 0x11c8 hyperkbd - ok
01:02:02.0333 0x11c8 [ 716413AB3CA12DE0A7222D28C1C9352C, B82B586BD9DBD70DDA19A02504E8CB00DA53677703AB848B53387601C5BAD3D3 ] HyperVideo C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
01:02:02.0333 0x11c8 HyperVideo - ok
01:02:02.0349 0x11c8 [ C9E9CBF73AFFBFE3E801EFB516787BA3, 1A850D614BDA6AA4195CC657702BC6242BA51B90131717743182AA160F65E72C ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
01:02:02.0380 0x11c8 i8042prt - ok
01:02:02.0427 0x11c8 [ 6C91E425ACE29594BD574DE38AC9B76D, 697784E4C7AF08B1F35662D8AD871E6890CECE22B6E64985B7C1A66C10DA390D ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
01:02:02.0458 0x11c8 iaStorA - ok
01:02:02.0489 0x11c8 [ 5E394EBD26FD68AA9300332C46BEDD62, 56A5DA7CE08C07B519E55D0A46AA9D10B640349808EFE02B3278267B75B5F603 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
01:02:02.0520 0x11c8 iaStorV - ok
01:02:03.0035 0x11c8 [ E5272DDF2C9043411809171715B4633D, B98E6565E7EA912E32746E1D35AD29C2EB9F3A21ACA8CB145C9F503B66AF0AFB ] igfx C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
01:02:03.0628 0x11c8 igfx - ok
01:02:03.0675 0x11c8 [ 24847A06B84339FEEDE5CABF3D27D320, 7727B1DAD0D4A1D474FBBEFCEBDF36A1F07D1AA300869AE57A24ED91BF84B6B4 ] iirsp C:\WINDOWS\system32\drivers\iirsp.sys
01:02:03.0690 0x11c8 iirsp - ok
01:02:03.0768 0x11c8 [ 45EACE8D94B9CEC746A85154892C4FDC, F2507F1AA4C5D54EC8151B44CD033B231C708B57761432E5EDEE6219122301C2 ] IKEEXT C:\WINDOWS\System32\ikeext.dll
01:02:03.0846 0x11c8 IKEEXT - ok
01:02:04.0018 0x11c8 [ 6BDCC85422817FA53CD705ADE312CE6A, 2EBEDF34493B4AE34442A89ACBCDB2C39447F21FBB015BDD7935DE95DD217CD0 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
01:02:04.0190 0x11c8 IntcAzAudAddService - ok
01:02:04.0205 0x11c8 [ 4F37726CF764CA18A8A84F85EF3A7F24, 6212B23917526E127CE641A11A58DA93651FFE70829C4079FE465DBDC81CF470 ] intelide C:\WINDOWS\system32\drivers\intelide.sys
01:02:04.0221 0x11c8 intelide - ok
01:02:04.0236 0x11c8 [ F9E126AA767E2E6E3128434A43C9F713, 1BF023083158DB1D76E89C77D383C082F1CA19F00C8FC3B0C30A93263A32BCEA ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
01:02:04.0268 0x11c8 intelppm - ok
01:02:04.0283 0x11c8 [ 8FCA66234A0933D796BB780B7953BAB9, 7DD677F5EE09A8D7A75C9E475B5E6B3DCA49D1E846C7D160B839D7029B1C5B6D ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
01:02:04.0299 0x11c8 IpFilterDriver - ok
01:02:04.0361 0x11c8 [ CAC5202757EF68C4849B0DFFA75F6D3C, D68EDCED68DB7755AA8BE5EC2784C124888BA4ED33B3E366FD83C3E64E42B770 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
01:02:04.0424 0x11c8 iphlpsvc - ok
01:02:04.0455 0x11c8 [ 6E98A046A12AA113F8898AA5D612BD6E, 28816CC1F03F2BFBF099C087C0BB6949E959F44C888DD2D0528FF7ED5D665ECF ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
01:02:04.0486 0x11c8 IPMIDRV - ok
01:02:04.0502 0x11c8 [ 3969B9C218DD3FAA9F4ED2FFC3651C02, 93447F124CC55FB17055126432194153E1BB8F0FD95A47608494B6834A5F7089 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
01:02:04.0517 0x11c8 IPNAT - ok
01:02:04.0533 0x11c8 [ 25CD7C4BB2863FFC2B0B311F0AEBF77C, 4099BAA2DB4ADB93B878D71E241B7D9EB7E0EE7ED0FE2450CCB9E4718B3726EB ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
01:02:04.0548 0x11c8 IRENUM - ok
01:02:04.0548 0x11c8 [ D940C5BB9DC92E588533C19ABCC3D2C2, D1442854CEDE86F2C187A35851E74C873D34B772C60BC118FA1577F79C03364D ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
01:02:04.0564 0x11c8 isapnp - ok
01:02:04.0580 0x11c8 [ F5F0DE1B7F256997501EECECE9648108, F9B602EA6B278980A299BB7A393ED09388761DE56162AC998398AB95B5A4EC3E ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
01:02:04.0611 0x11c8 iScsiPrt - ok
01:02:04.0642 0x11c8 [ 8FBD94B69D6423E20ABCD59D86368B21, 218EF992095E365EC917413749856A64D55D8129D77098E24D670843233377F4 ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
01:02:04.0658 0x11c8 kbdclass - ok
01:02:04.0689 0x11c8 [ E88C932ABDF8185A62C8F2FC7B051FB6, 67F9AF58237A11F0BF3D15AA5B32E5CE66B7AA039B999D938F7F6E63DCEA7A6E ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
01:02:04.0720 0x11c8 kbdhid - ok
01:02:04.0736 0x11c8 [ A8080BEBCDB7A16495CE1205921DCAC5, D4B0EF97B75BF75934A0BEEE48CACD20E8F505600C3A07243DF7627680EE8552 ] kbfiltr C:\WINDOWS\System32\drivers\kbfiltr.sys
01:02:04.0751 0x11c8 kbfiltr - ok
01:02:04.0782 0x11c8 [ FB6C185092E18011EF49989425C2AA87, 043524409E0A764201DD221C48B7DEEA0D161945EB37D4B88313BAB2299949DF ] kdnic C:\WINDOWS\system32\DRIVERS\kdnic.sys
01:02:04.0798 0x11c8 kdnic - ok
01:02:04.0814 0x11c8 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] KeyIso C:\WINDOWS\system32\lsass.exe
01:02:04.0829 0x11c8 KeyIso - ok
01:02:04.0845 0x11c8 [ DFA480F6DED551464F3A5B959F437800, C07AB6F28A09FCBE11EECAD03B06CEAE1016EC24031FCA0C092639E90FBA84CF ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
01:02:04.0860 0x11c8 KSecDD - ok
01:02:04.0860 0x11c8 [ E427D299CFE267A2465D3AAF81440ED9, 78F2649FDFF78C358E4FF8EB9772F726A23457658C1CCEABA4D4DEF6927A0423 ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
01:02:04.0876 0x11c8 KSecPkg - ok
01:02:04.0907 0x11c8 [ 81492FEEBF2F26455B00EE8DBAE8A1B0, E33AA2DFB2D3BB30B02CDADA2EC290F86329DA3198327A653F39A843D86390B9 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
01:02:04.0923 0x11c8 ksthunk - ok
01:02:04.0985 0x11c8 [ 5825DBACEDC3812B5CF8D40B997BF210, 1C2997BCC707C1029B21876E093038CE3BBF6E6694B4CCF7EEDD47172ED9A541 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
01:02:05.0016 0x11c8 KtmRm - ok
01:02:05.0048 0x11c8 [ 256EE31588257E8A555DBFAA13F1908E, B6817F632EDEA483E35BF26846DCDD4E95E860620959179B2A5D8AD7EEDDB126 ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
01:02:05.0094 0x11c8 LanmanServer - ok
01:02:05.0110 0x11c8 [ 16650912BE5A94B40E0B3B4C39652B56, 908C2C9367AE0AC9AECB5D91514BB33ACD746D99F19C1A8DD6A9550E9CAD9E00 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
01:02:05.0141 0x11c8 LanmanWorkstation - ok
01:02:05.0172 0x11c8 [ CEEFD29FC551F289810B0B9381B321DC, 900F206B487B2190D9363F28AA4BA0CD7DCFE1D005BE05A48AF74B1B81194691 ] lltdio C:\WINDOWS\system32\DRIVERS\lltdio.sys
01:02:05.0204 0x11c8 lltdio - ok
01:02:05.0250 0x11c8 [ BCF53485E0A94722CDE3C4A93CD8EB8C, D24E1066EB102245A89A5D17D608DB9DF6B71C99F1C77E070B95EFD17D268141 ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
01:02:05.0297 0x11c8 lltdsvc - ok
01:02:05.0313 0x11c8 [ 5A2F7F1CBC2E631A497DAD16164E06D2, 35274FC6C386380B01B5E8F467E71A2C4E2FB2AD701554F9B1A9B036B0340142 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
01:02:05.0344 0x11c8 lmhosts - ok
01:02:05.0360 0x11c8 [ 022CDD12161B063D7852B1075BF3FFF2, E21267243AF2FC208D27E67827B1264A762C99AECEDB7AD2C48A04F421A6B2F0 ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
01:02:05.0375 0x11c8 LSI_SAS - ok
01:02:05.0391 0x11c8 [ 07AD59D669B996F29F91817F0ECFA34F, 026F332F862D142BFFC9D169CCD17A35BFB6B301EEC72AA13E16369B3520919C ] LSI_SAS2 C:\WINDOWS\system32\drivers\lsi_sas2.sys
01:02:05.0406 0x11c8 LSI_SAS2 - ok
01:02:05.0438 0x11c8 [ 216FB796AA4E252ACCE93B1BCB80B5EC, 5B1E49B5F7B9C7A778198D27F8EE500FE35DC32D40B22A3D6ED67560BEB04212 ] LSI_SCSI C:\WINDOWS\system32\drivers\lsi_scsi.sys
01:02:05.0453 0x11c8 LSI_SCSI - ok
01:02:05.0453 0x11c8 [ 5E80530AF37102488EE980B4A92AF99F, 364E18EAD9AC22F8A306B24C6C43E58224F6BE2744EFEAA2484696B8D9880851 ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
01:02:05.0469 0x11c8 LSI_SSS - ok
01:02:05.0516 0x11c8 [ 8FEFDCEE40B75FD23B4BC60DA6576113, 1C3B690B00D95F6A4DB9225A42B1E5BF5A586785A3E097A9D46D35D580490924 ] LSM C:\WINDOWS\System32\lsm.dll
01:02:05.0562 0x11c8 LSM - ok
01:02:05.0594 0x11c8 [ 2BDC5D711FA61307CE6190D47C956368, 6BCDC6CBB9783F1ABE8957BDA94AF977DFB2A310BB6D19085EFC8609C97FD180 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
01:02:05.0625 0x11c8 luafv - ok
01:02:05.0656 0x11c8 [ 0BB97D43299910CBFBA59C461B99B910, 27C22D9D9EE8A410D7396960DA93E9E260D4DCDD38DCE06E85E45C5E24C067DE ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
01:02:05.0672 0x11c8 MBAMProtector - ok
01:02:05.0718 0x11c8 [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
01:02:05.0734 0x11c8 MBAMScheduler - ok
01:02:05.0781 0x11c8 [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
01:02:05.0796 0x11c8 MBAMService - ok
01:02:05.0859 0x11c8 [ 1E3AF124A3405EEE594BB9FFD4640F48, 7916D86433A6A305CC9699A8901795E74A22C99A2C6B091BAC951E30F7510FF7 ] McAWFwk c:\PROGRA~1\mcafee\msc\mcawfwk.exe
01:02:05.0874 0x11c8 McAWFwk - ok
01:02:05.0921 0x11c8 [ C121367D21599367F2ADB9C11B7BABAA, 752993437AB2C797B5C0FFD397BC8FAC575886857C61BCCCCF169DA54BEE911C ] McMPFSvc C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
01:02:05.0937 0x11c8 McMPFSvc - ok
01:02:05.0937 0x11c8 [ C121367D21599367F2ADB9C11B7BABAA, 752993437AB2C797B5C0FFD397BC8FAC575886857C61BCCCCF169DA54BEE911C ] mcmscsvc C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
01:02:05.0952 0x11c8 mcmscsvc - ok
01:02:05.0968 0x11c8 [ C121367D21599367F2ADB9C11B7BABAA, 752993437AB2C797B5C0FFD397BC8FAC575886857C61BCCCCF169DA54BEE911C ] McNaiAnn C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
01:02:05.0984 0x11c8 McNaiAnn - ok
01:02:05.0984 0x11c8 [ C121367D21599367F2ADB9C11B7BABAA, 752993437AB2C797B5C0FFD397BC8FAC575886857C61BCCCCF169DA54BEE911C ] McNASvc C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
01:02:05.0999 0x11c8 McNASvc - ok
01:02:06.0030 0x11c8 [ B26B99CE6218CC586B727CBA7C923233, DB5DD733BF81AB70F0EB9D1E8A6244531D22D96FA79FE4AC524E5C2B0564E639 ] McODS C:\Program Files\mcafee\VirusScan\mcods.exe
01:02:06.0062 0x11c8 McODS - ok
01:02:06.0062 0x11c8 [ C121367D21599367F2ADB9C11B7BABAA, 752993437AB2C797B5C0FFD397BC8FAC575886857C61BCCCCF169DA54BEE911C ] McOobeSv C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
01:02:06.0077 0x11c8 McOobeSv - ok
01:02:06.0093 0x11c8 [ C121367D21599367F2ADB9C11B7BABAA, 752993437AB2C797B5C0FFD397BC8FAC575886857C61BCCCCF169DA54BEE911C ] McProxy C:\Program Files\Common Files\mcafee\McSvcHost\McSvHost.exe
01:02:06.0108 0x11c8 McProxy - ok
01:02:06.0140 0x11c8 [ 4DEC9B5BEDAA97B1FF6A3923E1C4F58A, F048949C6C2D7D4E6F667D6E9AF1574BD7F522A9505D92B7DAF956F105ADE2DF ] McShield C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe
01:02:06.0155 0x11c8 McShield - ok
01:02:06.0186 0x11c8 [ 9B0D829C3BE4E7472DB9DD2B79908E3C, ACED5806FFF39E84007B5A3DCB16315329DC53007F46B1BEEDC391CC659F7DD3 ] megasas C:\WINDOWS\system32\drivers\megasas.sys
01:02:06.0186 0x11c8 megasas - ok
01:02:06.0202 0x11c8 [ ECC3F54C7AFC318271C4F0B4606D8DB0, FD1ACB18B8C912C7A57DABCD5460800DD0721A82E09C8D79C47B3392D61CBEA6 ] MegaSR C:\WINDOWS\system32\drivers\MegaSR.sys
01:02:06.0233 0x11c8 MegaSR - ok
01:02:06.0280 0x11c8 [ B574522827D94126C03975FD53F0B26B, AC8AD3FFFCAE94F4F03AD08C97C70FCCB71B001940AAC14FE30EB123C6261E76 ] mfeapfk C:\WINDOWS\system32\drivers\mfeapfk.sys
01:02:06.0296 0x11c8 mfeapfk - ok
01:02:06.0327 0x11c8 [ B393753ECE9A9E2307CB1984ACF3DA9D, FE6B7A417E40C5D420A0F57619ECB31349C862EE5EDADF262BD27111964A943A ] mfeavfk C:\WINDOWS\system32\drivers\mfeavfk.sys
01:02:06.0342 0x11c8 mfeavfk - ok
01:02:06.0389 0x11c8 [ FC3A202C302AFECDC9F14F28A29080A8, 5440732D908561A98C374A972E31EC1BD5BDCB335C72D3734F7BA4B0C74209DE ] mfeelamk C:\WINDOWS\system32\drivers\mfeelamk.sys
01:02:06.0405 0x11c8 mfeelamk - ok
01:02:06.0436 0x11c8 [ 97C398750C8E80A48EB63999546F796E, 75A7F556366A048B6A834B4979E4FC0ADBE504B1D23A5A7E55FE96A20143475A ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
01:02:06.0452 0x11c8 mfefire - ok
01:02:06.0498 0x11c8 [ C52A1ABF03DD219375EA0F6A8BE941C3, CDE46E1BDDFB3D49AD2C1F246F186C8E8DCCC2866C5F2F2693B9484AF64501A2 ] mfefirek C:\WINDOWS\system32\drivers\mfefirek.sys
01:02:06.0545 0x11c8 mfefirek - ok
01:02:06.0592 0x11c8 [ 7092A6C6158FC4F5AA39EBEB9D5AF03D, 0595F3ECA563636019A6138BE9E2D275D4A44F361ED6C7A2D4290B7E1D961766 ] mfehidk C:\WINDOWS\system32\drivers\mfehidk.sys
01:02:06.0623 0x11c8 mfehidk - ok
01:02:06.0639 0x11c8 [ D2A941C82A0A9227CD6F47AD40A40F69, CDB6BED989C45C3D15131AD43FB7A072117C327BAC5A691C2FE8B1F4A6FC2705 ] mferkdet C:\WINDOWS\system32\drivers\mferkdet.sys
01:02:06.0654 0x11c8 mferkdet - ok
01:02:06.0670 0x11c8 [ 04D48692EFF181DA46DD8EA8BE9FFB2B, D2F2AFB22C7A1499CB48008A036BE0239266B7DE07530DA768D7B1305518C108 ] mfevtp C:\windows\system32\mfevtps.exe
01:02:06.0686 0x11c8 mfevtp - ok
01:02:06.0701 0x11c8 [ 1631E2DA6C4B47D97ECA94842836592E, BFFC42314DBD332C4C4C777994766D91B859B72483F961B2C98FF25BFDE073A9 ] mfewfpk C:\WINDOWS\system32\drivers\mfewfpk.sys
01:02:06.0732 0x11c8 mfewfpk - ok
01:02:06.0764 0x11c8 [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] MMCSS C:\WINDOWS\system32\mmcss.dll
01:02:06.0810 0x11c8 MMCSS - ok
01:02:06.0826 0x11c8 [ 780098AD5DA8A4822E2563984C85EF7B, 29312970774E944B5ED388316CF3D350DCABF721F9695737B0AC56BE878B0446 ] Modem C:\WINDOWS\system32\drivers\modem.sys
01:02:06.0873 0x11c8 Modem - ok
01:02:06.0888 0x11c8 [ 83EB0BF7E6EBD5B1AAC97F9DBD5EB935, CC3F4E09F8834C7293B607446FECFE3CBB9B9151E65AAD38E2A4A8B30244DE14 ] monitor C:\WINDOWS\system32\DRIVERS\monitor.sys
01:02:06.0920 0x11c8 monitor - ok
01:02:06.0935 0x11c8 [ 618446B98C79776654340CE27C73485E, EFE7169FDD545933B5949DA2D09266971C0C3E6894E7BD8AFE29E41567C72B16 ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
01:02:06.0951 0x11c8 mouclass - ok
01:02:06.0966 0x11c8 [ CB2527B8B87D83E56FBF3944BBB6F606, F8DA5AF97B91099C58E14D1DACBCA02AF8F193E53A88DDC8CC4C0655A2E4F90B ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
01:02:06.0998 0x11c8 mouhid - ok
01:02:07.0029 0x11c8 [ 89D263DBF08119CE16273991C120D6DD, 9771EDAD266F0E234E71DFB6792F396710E051F2ADCA5CDADEBBD2790D0E6054 ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
01:02:07.0044 0x11c8 mountmgr - ok
01:02:07.0060 0x11c8 [ 36BF4D86F166ACBC14F0B8B8F90CBCEA, 9127DB0ABCCF57DEEB6447EEE33C5F4724472763DB1941D6FA74C745512D0DA2 ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
01:02:07.0091 0x11c8 mpsdrv - ok
01:02:07.0154 0x11c8 [ 411EA973A1961C287927DF13891EB41E, 1DA42631346FF8B43443A4DCE838AEB3C7166FBB272FC47740B09A1A1CE5CCBC ] MpsSvc C:\WINDOWS\system32\mpssvc.dll
01:02:07.0200 0x11c8 MpsSvc - ok
01:02:07.0232 0x11c8 [ 3D70147F55F1EC84EB9139ED7FFE48BC, 12429C2FDDDA13815F0E18F9009011AA5360955759A23A38175543F480CB92EF ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
01:02:07.0247 0x11c8 MRxDAV - ok
01:02:07.0325 0x11c8 [ 1EEAA5A62E8C49DDF58798F06F78BFFA, D5F37463EC4E4E5F538DCB4B98BFE1415A7CCFA9641BED0621B5BCEBEA91E184 ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
01:02:07.0372 0x11c8 mrxsmb - ok
01:02:07.0388 0x11c8 [ 06D5F2FA3C61E8EA91648EA8E9F99FD3, C665B7896501D42C73955F4EAF4FA3C6B2C9286957D6023C235AFBF9BFB761C6 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
01:02:07.0450 0x11c8 mrxsmb10 - ok
01:02:07.0466 0x11c8 [ BFBE1EA55ECC15733933D429E384BCA4, 01B2C5B5D92E8F33F5F86A372AE0AFF22779E70377B0C904BEFD0998906DD8B7 ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
01:02:07.0512 0x11c8 mrxsmb20 - ok
01:02:07.0575 0x11c8 [ 98487487D6B3797CA927E9D7B030AE13, 05840AF0DD2E3CB596DA768DBD0728B52210EC05B55AB5921E697AD8956938DD ] MsBridge C:\WINDOWS\system32\DRIVERS\bridge.sys
01:02:07.0622 0x11c8 MsBridge - ok
01:02:07.0668 0x11c8 [ 4A07458EB4F17573BD39F22029A991C1, 74D7A1882EA4D19B8F090C2813489E5D3F759BF4AF2D88AE852EC6510C405B5E ] MSDTC C:\WINDOWS\System32\msdtc.exe
01:02:07.0700 0x11c8 MSDTC - ok
01:02:07.0715 0x11c8 [ 3886F1F2A4D2900ABAA7E4486BEEE6A2, ECCA22985838A914EDC866C491DEB64B9FF5110EFA9BEE541F634AC5EC3081F9 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
01:02:07.0731 0x11c8 Msfs - ok
01:02:07.0746 0x11c8 [ C9BFB0353099B071E70299549C18C8AE, 5BEB200A6B824F63E2F39BA4F0693DBAC948BEA3B5A56AC9715716F1CE387566 ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
01:02:07.0762 0x11c8 msgpiowin32 - ok
01:02:07.0778 0x11c8 [ D3857A767B91A061B408CCAB02DA4F40, A4D780772086AD8717EE6DC2B6189F796939FB5E5AA08FD9D1984101998FBECF ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
01:02:07.0793 0x11c8 mshidkmdf - ok
01:02:07.0809 0x11c8 [ 839B48910FB1E887635C48F3EC11A05E, F8CFD99911500CC1B6A90C8E2A1697BD5A6E5776A62A62FE5B342FE204C936B1 ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
01:02:07.0809 0x11c8 mshidumdf - ok
01:02:07.0840 0x11c8 [ 55C0DB741E3AB7463242B185B1C2997C, D2E2A5B48A64EA0EC2A6566C08E65A38D11CEA64BCA7B57793BA0D009E4D974A ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
01:02:07.0856 0x11c8 msisadrv - ok
01:02:07.0887 0x11c8 [ 216C6B035A4BA5560E1255BD8E5BB89F, A14E038604B9A5506DB145A4D9F51E2751AC825240D2744924F39C332B5DE00B ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
01:02:07.0918 0x11c8 MSiSCSI - ok
01:02:07.0918 0x11c8 msiserver - ok
01:02:07.0949 0x11c8 [ C121367D21599367F2ADB9C11B7BABAA, 752993437AB2C797B5C0FFD397BC8FAC575886857C61BCCCCF169DA54BEE911C ] MSK80Service C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe
01:02:07.0949 0x11c8 MSK80Service - ok
01:02:07.0965 0x11c8 [ 509809566E49F4411055864EA8D437CD, 70F37BF9C759E8BCA1C6AC8FB9805950925E1C648ED37E8561A0F7A407DFDC28 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
01:02:07.0996 0x11c8 MSKSSRV - ok
01:02:08.0012 0x11c8 [ 63145201D6458E4958E572E7D6FC2604, EDD4A8A3BBE94B983554B1117734E66A2647B867269C5F0567C47EDE6F3FACCB ] MsLldp C:\WINDOWS\system32\DRIVERS\mslldp.sys
01:02:08.0027 0x11c8 MsLldp - ok
01:02:08.0043 0x11c8 [ 99D526E803DB6D7FF290FD98B6204641, 4AFAA3B1186621AEAD19E12D3DBE104DD8FCD5C106F9EC3ADA4AD1BC7093E61F ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
01:02:08.0058 0x11c8 MSPCLOCK - ok
01:02:08.0074 0x11c8 [ 06FA77C3E2A491ADCD704C5E73006269, 465A7EE5387E6C11398A554F73437278F5BF110356E7F49F315905C1F2459278 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
01:02:08.0105 0x11c8 MSPQM - ok
01:02:08.0136 0x11c8 [ E134EC4DE11CF78CB01432D180710D84, BB111F97AEEFDCA5866B157E9957599CD7A4952B5BCCA0B0BCA9EDFCD17E61FE ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
01:02:08.0152 0x11c8 MsRPC - ok
01:02:08.0183 0x11c8 [ B5AECF12F09DEE97C9FCAA5BA016CE1E, F5305C4CE6C93A3A3481BD13BE0C23FE26571E11029ACFFE75FB78913681FCFC ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
01:02:08.0199 0x11c8 mssmbios - ok
01:02:08.0214 0x11c8 [ 72D66A05E0F99F2528F6C6204FD22AA1, B14D433BC5795F1DC4C672302285E665DC012693E75574F60664AAD8874DE562 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
01:02:08.0246 0x11c8 MSTEE - ok
01:02:08.0261 0x11c8 [ 8AAAE399FC255FA105D4158CBA289001, 2F55C02605B4A3406B289FF9D46C76260B9138E3DE96AFAEA0E0522E5A2A746C ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
01:02:08.0355 0x11c8 MTConfig - ok
01:02:08.0402 0x11c8 [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A, 00D33A4AB3E7C5F65F59C63F8E2FD27EF38D5484595F785D5632E9414E29352C ] Mup C:\WINDOWS\system32\Drivers\mup.sys
01:02:08.0417 0x11c8 Mup - ok
01:02:08.0433 0x11c8 [ 3A1E095277BBD406CEA8EA6B76950664, 47838F307A6354E77C19A7B1F3F3E22726EF60403B611F358AD6FFE81D7214E7 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
01:02:08.0448 0x11c8 mvumis - ok
01:02:08.0511 0x11c8 [ 4B18840511D720BA118D3017E8165875, 724458A69269A5AE57E8DAB74FF3C198A79B6F7A9602BF38A70B4A40543ED167 ] napagent C:\WINDOWS\system32\qagentRT.dll
01:02:08.0558 0x11c8 napagent - ok
01:02:08.0604 0x11c8 [ 43D7388A90A4C6EA346A4D6FF0377479, DFDCFA448B49C8A577056070AF516F08CD2E452706A3CF9173195ABA4256F35D ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
01:02:08.0651 0x11c8 NativeWifiP - ok
01:02:08.0714 0x11c8 [ 6A0C3996DA7DAE6D6939676D786EEEC4, 6E8A4C6234FD3040BC889E92016A4D5AC7BCAF5059521E50C733966163A546A0 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
01:02:08.0729 0x11c8 NcaSvc - ok
01:02:08.0745 0x11c8 [ C982FE4CC91DECE2259F494FCEB4030F, 4C285407E6F9FBBA92180F4063AEFB736ED142D802F0151002F0CC20AB7BB4E5 ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
01:02:08.0792 0x11c8 NcdAutoSetup - ok
01:02:08.0854 0x11c8 [ FE6463C1574610E26ED8DE2054DF59A4, 736680A9B567709A32D668D84A1AD630AD5CE048BBC3005826EB8F7E40C6ABA2 ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
01:02:08.0932 0x11c8 NDIS - ok
01:02:08.0948 0x11c8 [ 39C8A1D9D46F5E83A016BCAB72455284, 80DBED610E0818C2C7122FBC5BC8C15BCE981538AE48DC48F464A86389AF3F68 ] NdisCap C:\WINDOWS\system32\DRIVERS\ndiscap.sys
01:02:08.0979 0x11c8 NdisCap - ok
01:02:09.0010 0x11c8 [ 762941932B7E4C588E48A577BA9D6440, 71FA1870E398CB848D8294FEF6C60E0499CAB9A16EC3F487564C41072590E4F3 ] NdisImPlatform C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
01:02:09.0026 0x11c8 NdisImPlatform - ok
01:02:09.0041 0x11c8 [ 7A6F8A6D0E01432EBA294EF29CDD0FA7, D902AE15194A9F8A2198914FC76184FE7E2B589747275952A04A52853128FDB8 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
01:02:09.0088 0x11c8 NdisTapi - ok
01:02:09.0104 0x11c8 [ 79AB68BB3FFF974AD4F41FA559F4EC67, 1745EC6520B48E325C56D98A1F4DB9CE135FE3E097B3D66E6598791132CAD7BD ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
01:02:09.0119 0x11c8 Ndisuio - ok
01:02:09.0135 0x11c8 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
01:02:09.0182 0x11c8 NdisWan - ok
01:02:09.0182 0x11c8 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] NDISWANLEGACY C:\WINDOWS\system32\DRIVERS\ndiswan.sys
01:02:09.0213 0x11c8 NDISWANLEGACY - ok
01:02:09.0213 0x11c8 [ CE6EBC0AD38CC6482D8FBB744FF15CE2, B8712DB2E574ECFBC840FAAFB874644AB56909382BA2A5A8BC599874BBEAA543 ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
01:02:09.0228 0x11c8 NDProxy - ok
01:02:09.0260 0x11c8 [ D3F60A4345FCA9C1BE68AD7D0D6DE770, 214AF09F4B021C2F8655FBC8AC8C801E89CD9115CDE690FAEBDA69D63D660EDD ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
01:02:09.0291 0x11c8 Ndu - ok
01:02:09.0322 0x11c8 [ 7C203A76394F9AE68F69EEE5F9612C4A, 2222654915913BDC9367A2075714906A10CF22C047A7494CD59CB71834ED1B62 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
01:02:09.0338 0x11c8 NetBIOS - ok
01:02:09.0353 0x11c8 [ 7CEC25C682D319D484630B3952C31A11, 025C46B367E0570E9E3F9DF1564C3E47B1524E9E9A180BBDF0E9C684838F5E42 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
01:02:09.0400 0x11c8 NetBT - ok
01:02:09.0416 0x11c8 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] Netlogon C:\WINDOWS\system32\lsass.exe
01:02:09.0431 0x11c8 Netlogon - ok
01:02:09.0494 0x11c8 [ 89519D29CBEC2121CA65CC29C4D345E0, F3BA7BCAFEC8DD8B29837458D1B2B1DEE748AEAAAE0575FD3AAE65CFC72A04CD ] Netman C:\WINDOWS\System32\netman.dll
01:02:09.0540 0x11c8 Netman - ok
01:02:09.0556 0x11c8 [ 20F6FD63E6D456114BC8056D62792786, 12EDB8DD4D647F8CF680ABD1A36704EE9BEBE5F65C821E6D76F798441AF2C199 ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
01:02:09.0618 0x11c8 netprofm - ok
01:02:09.0681 0x11c8 [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:02:09.0728 0x11c8 NetTcpPortSharing - ok
01:02:10.0211 0x11c8 [ 57B9C04D673F236D41FAB03842C8640B, 898DCBBBF94875059CD328B0FC75BE36A4E3DD471C6E28BFAE064BCF84349518 ] NETwNs64 C:\WINDOWS\system32\DRIVERS\NETwNs64.sys
01:02:10.0586 0x11c8 NETwNs64 - ok
01:02:10.0632 0x11c8 [ 12DD2800E4EEA37DC9AE256AD62423B4, 34740469EEA8740CBACD881CB232C9ABB9AB180DE5F45336BC6DBE154259F29B ] nfrd960 C:\WINDOWS\system32\drivers\nfrd960.sys
01:02:10.0648 0x11c8 nfrd960 - ok
01:02:10.0695 0x11c8 [ 80ABCD4C2DE9FD832477303AE0CA3BE5, 98F3958E650CEB1006D92980503E1B176D2CA55D2A6742C1C27CDE829D137DA9 ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
01:02:10.0757 0x11c8 NlaSvc - ok
01:02:10.0835 0x11c8 [ 17E19A742FB30C002F8B43575451DBE1, 59D226A4A5B5281C399BE96C694915E38EEAF335D31F346B0C65D8F469D7C9C3 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
01:02:10.0913 0x11c8 Npfs - ok
01:02:10.0944 0x11c8 [ 8ED299C30792544264E558BEA79F0947, 8A03FDA9AADB79ECBCBCDC988B7D8CF0672689C9DF673A2ECFE0D2D88A9C6A6B ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
01:02:11.0007 0x11c8 npsvctrig - ok
01:02:11.0054 0x11c8 [ 832B5FDF0B5577713FD7F2465FCD0ACE, 4A551CDBACED47DD781EC59F8B59A13D66EFD85DCF636BCFCBACFE5972A78E93 ] nsi C:\WINDOWS\system32\nsisvc.dll
01:02:11.0069 0x11c8 nsi - ok
01:02:11.0100 0x11c8 [ 689B3B1E95C70ABF7AFF29F9406EF1E0, 8B62D8AE53E1B3218158FADC0075682AB06D18998CF5DE82C920A9CD91C0652F ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
01:02:11.0178 0x11c8 nsiproxy - ok
01:02:11.0319 0x11c8 [ 4A7EEA9C4AD5CBFDA3C0E5B821C99CAD, 4F9872ACF27D9C7D52256CAB09AEEC760402B69088789018D0736F16236C1FE3 ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
01:02:11.0412 0x11c8 Ntfs - ok
01:02:11.0428 0x11c8 [ 4163ADE07DB51843AE31F65B94F5398D, 4349E7EF1EE1E71E1F436BA42F5B58871D82B987D513BA2D6E1CEB8A21BD1B20 ] Null C:\WINDOWS\system32\drivers\Null.sys
01:02:11.0490 0x11c8 Null - ok
01:02:11.0568 0x11c8 [ D6D34118263412D3AAA8348A9572B7F2, 66106A25BC5A4CA7697A23ED67CEDB5C0BF678EA70FD967A405D2DF76F4CA3A4 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
01:02:11.0600 0x11c8 nvraid - ok
01:02:11.0615 0x11c8 [ 27AFC428D1D32ABD04A86763A4EDDEA9, 0920866013A8C8CFEE00E6AECDD41736F5501C49837E2D785998734F087F6B98 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
01:02:11.0646 0x11c8 nvstor - ok
01:02:11.0678 0x11c8 [ 051CFB5107BAAE510419BDC41F8C4036, 9990906F17A3886EF301D2AA6556263B52A1C0554C6BD18331AF44ECECAEE4B5 ] nv_agp C:\WINDOWS\system32\drivers\nv_agp.sys
01:02:11.0693 0x11c8 nv_agp - ok
01:02:11.0771 0x11c8 [ AB76700D764A342D7475FB8F47CAB18C, ECDF705D3E69EF6E7044C98A462A7281D0E7D0D85769C0815555D934B0B69C8D ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
01:02:11.0834 0x11c8 p2pimsvc - ok
01:02:11.0880 0x11c8 [ 4319FD931DCD796435ECB5DB4A04FBA5, 20185B2F359EEC202B37019A4E4F5B914ADCF78B97AF0CBD91EECED2259FC6DE ] p2psvc C:\WINDOWS\system32\p2psvc.dll
01:02:11.0927 0x11c8 p2psvc - ok
01:02:11.0974 0x11c8 [ 4563DAF8C6A740AD7F501E219BD10766, 7A1212DDAE2D66A9C2041262796904E36036CDC4C5B75C2F66B8DF9D89F7C25D ] Parport C:\WINDOWS\System32\drivers\parport.sys
01:02:11.0990 0x11c8 Parport - ok
01:02:12.0021 0x11c8 [ C1D7BA7F0DE487DFEEB51BF8D3EC5562, 72F38D6C6FD1ED6E1BC47B781A06FFBE29C99A70382D38759B53A184F61B6643 ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
01:02:12.0036 0x11c8 partmgr - ok
01:02:12.0068 0x11c8 [ 19E41F140A6ADBD38943710DA7FF0E38, AF9FDBEB0E519B7EA034C76077E514FE27138204E9874F4DDEA0B1CB26A45BA0 ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
01:02:12.0114 0x11c8 PcaSvc - ok
01:02:12.0146 0x11c8 [ 4A003E8F718C1E6A2050CA98CD53E3E2, BCC3BE1EC3FA4967353371D85094D096940A7B5944A6FFCA31E8FBE83D92CC6C ] pci C:\WINDOWS\system32\drivers\pci.sys
01:02:12.0177 0x11c8 pci - ok
01:02:12.0192 0x11c8 [ F9908D274D458220F91E89B54D78D837, 1E89ABFA6B375383E0297CEE5AF66E37F90E16DD21ABA5C91777A86CDF013B4D ] pciide C:\WINDOWS\system32\drivers\pciide.sys
01:02:12.0208 0x11c8 pciide - ok
01:02:12.0224 0x11c8 [ 84D19CB6102627932DCB5DFDF89FE269, 2F9C47E076645B35877D9ACA77968EFFCDA8794D76265CD9A4AAA239C4B33C5F ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
01:02:12.0239 0x11c8 pcmcia - ok
01:02:12.0270 0x11c8 [ CEBBAD5391C2644560C55628A40BFD27, 8AAA6EBD8D89FC91AECCCF1452F53C5650A1A17027FF4E64D224371404CE4C8B ] pcw C:\WINDOWS\system32\drivers\pcw.sys
01:02:12.0286 0x11c8 pcw - ok
01:02:12.0302 0x11c8 [ A192B9FC67F181A78B05175EE0A244FA, CC62F12062066AAF0BD96163448FA5599F3B468E7DFE5704FF5288F32F01391B ] pdc C:\WINDOWS\system32\drivers\pdc.sys
01:02:12.0317 0x11c8 pdc - ok
01:02:12.0349 0x11c8 [ 70DBB6A8B52B3830922F1C5789E1BEEB, 30288885789753FE19B51A200137E916E10BCD4211EFF50931C19E88824EADC0 ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
01:02:12.0395 0x11c8 PEAUTH - ok
01:02:12.0598 0x11c8 [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A, 459CF99D5243C4ACAA38C7B426ADC52F1044C759D06A925D475DF6213AEB85CD ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
01:02:12.0723 0x11c8 PerfHost - ok
01:02:12.0801 0x11c8 [ 6E84BFF58F7643499277F29DFA2F8C8D, 401CCF137F35D9690C7B56B2BFEDB2DB72709EBE38626D787904B67640EF6F14 ] pla C:\WINDOWS\system32\pla.dll
01:02:12.0879 0x11c8 pla - ok
01:02:12.0926 0x11c8 [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
01:02:12.0941 0x11c8 PlugPlay - ok
01:02:12.0988 0x11c8 [ 8E2414E818C26C4A9C70CB2B8567F04F, A16B22AE143BA070C562FBE5DEF32F7E228F50B302B66E46B46C44C0F50A4461 ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
01:02:13.0019 0x11c8 PNRPAutoReg - ok
01:02:13.0035 0x11c8 [ AB76700D764A342D7475FB8F47CAB18C, ECDF705D3E69EF6E7044C98A462A7281D0E7D0D85769C0815555D934B0B69C8D ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
01:02:13.0051 0x11c8 PNRPsvc - ok
01:02:13.0113 0x11c8 [ 0108C8E5176D590F242701EF5A62CC26, 3A72F5D4402663B7445F6B3C55F01E83A619B6192F7D3CC2DE3C57F9F50D5A2D ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
01:02:13.0160 0x11c8 PolicyAgent - ok
01:02:13.0206 0x11c8 [ F1E067F56373F11EA4B785CAE823740A, 69BD30E64DA17595FF29C9C9FF9AD4F2F4BE29B688FBAC9DABB2FA9D13A47FF0 ] Power C:\WINDOWS\system32\umpo.dll
01:02:13.0238 0x11c8 Power - ok
01:02:13.0269 0x11c8 [ 362D47E5B4D67270DE4B8606036F4ADD, 716E229C68D91AEA5B5629F60133D5CBDC0C95ABA54D9DC6264E923CAF4DC6C0 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
01:02:13.0284 0x11c8 PptpMiniport - ok
01:02:13.0456 0x11c8 [ CC0B8655E4B2A5BBB215CDA8FC3BE4DE, 878E46E308BC3AC689CFC401BAA12D217BFB9911C29A10DB5DFFAC250A58CE55 ] PrintNotify C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
01:02:13.0628 0x11c8 PrintNotify - ok
01:02:13.0659 0x11c8 [ 8DA167F8967AB35A2487095CB1B879A0, 78FD1D87F0A52254DFD71B76BEEA4179CECF830D1CF623A12FBD991B7C1CDDC1 ] Processor C:\WINDOWS\System32\drivers\processr.sys
01:02:13.0690 0x11c8 Processor - ok
01:02:13.0721 0x11c8 [ 429E8502AD2227CF88F8840FC5BD590D, A186DA46C083580ACEDE9C7E3156865034302CD803140EEEC8E1DE16DA4BC99B ] ProfSvc C:\WINDOWS\system32\profsvc.dll
01:02:13.0737 0x11c8 ProfSvc - ok
01:02:13.0799 0x11c8 [ EB8034147D4820CD31BFCB11A2A652DF, B10B5E16B7A05D2DB2D5D1945B6146DE15EEDE2C778772A59F104706B5145E46 ] Psched C:\WINDOWS\system32\DRIVERS\pacer.sys
01:02:13.0830 0x11c8 Psched - ok
01:02:13.0877 0x11c8 [ 0AFBF333B6F87A2F598EAB379AF100B8, D11F3A4D7E4463B62E2DBDE5FC61425B1FDFB07DD1A19BC001D479CA1F554510 ] QWAVE C:\WINDOWS\system32\qwave.dll
01:02:13.0908 0x11c8 QWAVE - ok
01:02:13.0924 0x11c8 [ 13D47BB0CCA2FC51BD15F8E85C6A078E, EA832A9511007C9E8599C3066E1FA66BE869E8A27886D9A9AC590BD4DFBD1A15 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
01:02:13.0955 0x11c8 QWAVEdrv - ok
01:02:13.0971 0x11c8 [ 873C60F8178100557740A832FCE10B5F, 400EF60CB2C98E2AFE122AF3D01CCE56A1548AF865345EE2194AB74DBCBF4C48 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
01:02:14.0002 0x11c8 RasAcd - ok
01:02:14.0033 0x11c8 [ 69B93F623B130976243ECA3D84CC99CA, F27617E651EADFAEE479619AAB01CDAA98111BA63E204D5C44A1256732CB0100 ] RasAgileVpn C:\WINDOWS\system32\DRIVERS\AgileVpn.sys
01:02:14.0049 0x11c8 RasAgileVpn - ok
01:02:14.0080 0x11c8 [ 005F6E54C4A2DA4EBF68FB0392CE8BB0, 2F3C90A04964D4D906238BD557D90F7AC05DF86FE9729C4378B39431F54DDAE3 ] RasAuto C:\WINDOWS\System32\rasauto.dll
01:02:14.0111 0x11c8 RasAuto - ok
01:02:14.0174 0x11c8 [ A14D625C5AEE5FFE0F47D1A1D419FAAE, 1229B81C23340AD5B436B1FD227876EB41715CE6BD270BA367F18879D26B8F04 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
01:02:14.0205 0x11c8 Rasl2tp - ok
01:02:14.0236 0x11c8 [ C923C785A2DE0B396AD6D13ACAFF2DE9, 4F950DA776FBABEC7D546983D6F3018733F61268A4BF95C01D4836AD000BD073 ] RasMan C:\WINDOWS\System32\rasmans.dll
01:02:14.0283 0x11c8 RasMan - ok
01:02:14.0330 0x11c8 [ 00695B9C2DB6111064499C529E90C042, 3CD4DF4D8001C2BBF52EEEB1F0D587209878BEAC339D268892477AD840D490F1 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
01:02:14.0345 0x11c8 RasPppoe - ok
01:02:14.0377 0x11c8 [ A7F24D8CD1956B0A1FDCB86CC5114DE4, 30489D235362DF62B105378597168B13F4BAC74A8EDDBDA25237E3C017B69FEE ] RasSstp C:\WINDOWS\system32\DRIVERS\rassstp.sys
01:02:14.0408 0x11c8 RasSstp - ok
01:02:14.0455 0x11c8 [ B72C33DBD5326B3864CF2091AF8B906B, 85A22311FA870CE43CF70F69D7D101D96B9095A992DCF5FA1587886F6D4282DC ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
01:02:14.0501 0x11c8 rdbss - ok
01:02:14.0533 0x11c8 [ CA7DF5EC95D8DE0DD24BE7FF97369F68, 153E6F716CA935DBCACB8FF1BB8DE5F5551CE3D18878225470E45893CA69BDB8 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
01:02:14.0626 0x11c8 rdpbus - ok
01:02:14.0657 0x11c8 [ B2A3AD74FF2E2FFA73AF2567108231B3, DF8CEA6215F75C634D56F6B8AE11ECCEEB5F8CBC091AC3D6D9F7DE214B00A439 ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
01:02:14.0751 0x11c8 RDPDR - ok
01:02:14.0766 0x11c8 [ 3B4F32CA8B37584ECF98BCE136E38B96, 2B39224FEF5C0AE000FF667B3D6C3C279DBEE8EABAE2F5C40BBCF6DDFFD4DE3C ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
01:02:14.0782 0x11c8 RdpVideoMiniport - ok
01:02:14.0798 0x11c8 [ B3CB0721E81E30419CE7D837EF4EA151, EC9410818661BF77E4A19694E3A3030E1D983B36F49C72E27F92A1424E0729C2 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
01:02:14.0844 0x11c8 RDPWD - ok
01:02:14.0876 0x11c8 [ 62C1F8A0685FE07E998AA296C4F697C4, C636AB2D0F139003A6AD7A12E9DC13EE4485A62F30DA59AF842FF02FE07442EE ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
01:02:14.0891 0x11c8 rdyboost - ok
01:02:14.0922 0x11c8 [ 3663CCF243EE0C04E9F6F91ED1737273, 31D06445996F99A7F6B32004D1BA63A21C61DE125373F860BA9A9DE5278E8293 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
01:02:14.0954 0x11c8 RemoteAccess - ok
01:02:15.0001 0x11c8 [ E80DD61E52EDFFF9DA1ED7260A68855B, 97909F42AE35E28B8F98C01A1D8BAD80A949CDCA0C88FB4ACF0A655DC7C10E45 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
01:02:15.0032 0x11c8 RemoteRegistry - ok
01:02:15.0094 0x11c8 [ 17EF582CBC4809F96B9E6D0543480763, 7097ACDC565A50C7F3F8659693356EE9CAA6B922124C27C4F9D7C89526A87481 ] RFCOMM C:\WINDOWS\system32\DRIVERS\rfcomm.sys
01:02:15.0156 0x11c8 RFCOMM - ok
01:02:15.0203 0x11c8 [ 73F2E030B5C24E4E41401B5F0D59E6FD, FAA8B5E3159684E0836900C6EAF63857B445F7F180169B56D5790F097EDAA38B ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
01:02:15.0219 0x11c8 RpcEptMapper - ok
01:02:15.0250 0x11c8 [ 10B21284B3D964AB3DC45490E57D422E, 12D5E3A7785F21C99C5EAD14A88EB7A86A058E26C091991339356D99D196CC13 ] RpcLocator C:\WINDOWS\system32\locator.exe
01:02:15.0266 0x11c8 RpcLocator - ok
01:02:15.0297 0x11c8 [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] RpcSs C:\WINDOWS\system32\rpcss.dll
01:02:15.0359 0x11c8 RpcSs - ok
01:02:15.0390 0x11c8 [ E04E770DD198B9399640717145E79EBF, 2F9BECB7E4B0A522C6370FD39CFD7DFD3FB5D0A779AECCED2EE855629FA3C952 ] rspndr C:\WINDOWS\system32\DRIVERS\rspndr.sys
01:02:15.0406 0x11c8 rspndr - ok
01:02:15.0453 0x11c8 [ 34DA0D14F5C3F1883A331AFB975AB434, BB5D580C1DCAE59CC1DB75C411A5A4DDF435931469E7EBFF5DFDADBFE07ADEBF ] RTL8168 C:\WINDOWS\system32\DRIVERS\Rt630x64.sys
01:02:15.0484 0x11c8 RTL8168 - ok
01:02:15.0500 0x11c8 [ 752EC7DCD2F96871A3857EEE6AFE965A, 1D0640966B9147A06ED0E733711773E6B4AB8AC6D962D5B369ECB04170D18AD8 ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
01:02:15.0531 0x11c8 s3cap - ok
01:02:15.0546 0x11c8 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] SamSs C:\WINDOWS\system32\lsass.exe
01:02:15.0562 0x11c8 SamSs - ok
01:02:15.0593 0x11c8 [ 9C7B28CE0D136DB226E24DB3BC817F92, E9DE55D6432ADD08EC75F99F2B5D2BD1F553F4EE55991B1767B1578351EE0BF2 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
01:02:15.0609 0x11c8 sbp2port - ok
01:02:15.0640 0x11c8 [ 14316954FCE79C9DE5A0AFF9D42C83AA, B60FB1FAC0299F9560761411711E86EDFA2F8D27B58230E2E4BB37736FAB2287 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
01:02:15.0671 0x11c8 SCardSvr - ok
01:02:15.0687 0x11c8 [ 5D7733A12756B267FCA021672B26BC9E, 01CE5B5F49914B9E099BD909A66296F3A40644AE47BA1D5EBFFB30CD33C70A4A ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
01:02:15.0702 0x11c8 scfilter - ok
01:02:15.0765 0x11c8 [ EDCDF4DB82EF825B94B190D544C8C58B, 65E316CB66893FBA852D44F6ACE0F1DA415DBADADCA838B31DF3AB6B681E33B6 ] Schedule C:\WINDOWS\system32\schedsvc.dll
01:02:15.0827 0x11c8 Schedule - ok
01:02:15.0859 0x11c8 [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
01:02:15.0874 0x11c8 SCPolicySvc - ok
01:02:15.0968 0x11c8 [ A27CF856218B1B1442A7A3B5CF94B4B9, A3BBF36034BBF92E81FDDB9E22370D9AF132997593452BEAAEDCBA43BC5F5D79 ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
01:02:15.0999 0x11c8 sdbus - ok
01:02:16.0077 0x11c8 [ 92968277ED491E4B3DDA361E3952361E, 71C50853BB2126A34C7CD014EE44D4B8B39F589E2E8E8E8F4C982E07498E3899 ] SDRSVC C:\WINDOWS\System32\SDRSVC.dll
01:02:16.0124 0x11c8 SDRSVC - ok
01:02:16.0139 0x11c8 [ 74369A913837FB46C3B27373DA2ADF4E, 30CB6AD90520D410D914C5D654C8838DF13B2FC850EB7F0BFB2B937F9BC14E2E ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
01:02:16.0155 0x11c8 sdstor - ok
01:02:16.0171 0x11c8 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\WINDOWS\system32\drivers\secdrv.sys
01:02:16.0202 0x11c8 secdrv - ok
01:02:16.0233 0x11c8 [ CD282626738B6BC92B6E7CD0AAE95B63, 1A56567C781786C85C63E24E79186EE5C82D3EB2679061B21BA0571A3A6CB7F5 ] seclogon C:\WINDOWS\system32\seclogon.dll
01:02:16.0264 0x11c8 seclogon - ok
01:02:16.0295 0x11c8 [ 9C51620998F0763039DFA6BF68E475ED, 9E496ADE7CE9A446BE8A2C2FC61B462D966778A94A4C147AABBD25C4821C2BCE ] SENS C:\WINDOWS\System32\sens.dll
01:02:16.0326 0x11c8 SENS - ok
01:02:16.0358 0x11c8 [ 0D50B4B860DAB65241628D04CD33ACAE, 2AA897C3F9ED076AB9244A32745D18489B076F3ED28A35B868C472131C5B5B46 ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
01:02:16.0389 0x11c8 SensrSvc - ok
01:02:16.0405 0x11c8 [ 87C46B239A7EEF30FDFDD5E9BD46130C, F36FB5B20AC58FBD31F7E636059D2D865B751E178E51A03B94ABE0BBD1AB1EC9 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
01:02:16.0420 0x11c8 SerCx - ok
01:02:16.0436 0x11c8 [ 7A1F9347C85FD55E39B8A76B3A25C5AD, 03AF3B23285278A38F4CBEAB7FD326A48FA1EC7F8D044C059CE5403C6D225639 ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
01:02:16.0467 0x11c8 Serenum - ok
01:02:16.0467 0x11c8 [ F640A0A218BBF857F1D04A15D7D939F6, 948C13886281FE7947E10FB7B34D5CCFE512FB632F1132B6062AC85149F79950 ] Serial C:\WINDOWS\System32\drivers\serial.sys
01:02:16.0482 0x11c8 Serial - ok
01:02:16.0498 0x11c8 [ F1A5F56B2620B862CC28FF96A0A6DAAB, E5367212B2CADF3820D657CFC27CD961547E28DAB950C68E1380CF97FB68F3F4 ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
01:02:16.0514 0x11c8 sermouse - ok
01:02:16.0561 0x11c8 [ CB60A60340788C8D6DE2A269D28086AB, 2D8948E59BB9B00E16D20E425F80E7B862957DBAC9A4D1484E5191FAF333B60D ] SessionEnv C:\WINDOWS\system32\sessenv.dll
01:02:16.0592 0x11c8 SessionEnv - ok
01:02:16.0592 0x11c8 [ 7EE65419B29302C795714FF8073969A1, E28D89A5423E3A5062030EB2418E9435DD5D8B9D16570046E782D3FCFDA2E79A ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
01:02:16.0607 0x11c8 sfloppy - ok
01:02:16.0654 0x11c8 [ 090AE16F79C8EAD04E6031F863DA85F3, 3F27BE46DF602B53940414A6E9FEB23B36CFFB8E9A7F41440C3315B8E27D0029 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
01:02:16.0701 0x11c8 SharedAccess - ok
01:02:16.0748 0x11c8 [ A77F3ABE13FCC698511E5DEC7ACEBD5F, 78A43FDA9F770FD8BA107605DB44BC71D8B89D7E75560DA783AA6356C1873C15 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
01:02:16.0873 0x11c8 ShellHWDetection - ok
01:02:16.0919 0x11c8 [ 2560721D6F16D5B611C36A3A9D28C1B2, 15C30404902654ABA5DB5367FC5BD31343B12A3FC22B4BC5A26B09016447B5ED ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
01:02:16.0951 0x11c8 SiSRaid2 - ok
01:02:16.0966 0x11c8 [ 3AA8FDE1DBF65BB8B88B053529554A0D, 8060D946344D043D336F4735363C23C37C91A6DB3F81E575C267B2EC2BECB0EC ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
01:02:16.0982 0x11c8 SiSRaid4 - ok
01:02:17.0013 0x11c8 [ E660156A4588A84305CB772FD2C0DB21, 9492EB6578D4A689945E1FC2440EFA77D461049CDB2D00A645969A71B7DA68E1 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
01:02:17.0044 0x11c8 SNMPTRAP - ok
01:02:17.0075 0x11c8 [ 465F3C355CE5ED2779B8F460F14C5A78, 4CDFBACBC2C228D6655DFE151249725D72D58DAE3299E15EAAEBC26FE0F712DC ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
01:02:17.0106 0x11c8 spaceport - ok
01:02:17.0138 0x11c8 [ 3D8679C8DF52EB26EB7583A4E0A29202, DCD9B69299275857712AB200C014AE820C8A9F7E53C4A335A84518FBE4BB56BB ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
01:02:17.0169 0x11c8 SpbCx - ok
01:02:17.0247 0x11c8 [ 3F215BF2D4D8D6756298B25B579772C2, 744192D1635E5D296BFD399E870B70592202CEAF95C31C2D2B226A868D33A3FD ] Spooler C:\WINDOWS\System32\spoolsv.exe
01:02:17.0372 0x11c8 Spooler - ok
01:02:17.0574 0x11c8 [ EC84D961501054F87A6878EC5D53388F, C69F3542B182BED4260EE1906361B72B9FFDE47FD92A161850E28BC6ED7505CC ] sppsvc C:\WINDOWS\system32\sppsvc.exe
01:02:17.0793 0x11c8 sppsvc - ok
01:02:17.0871 0x11c8 [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6, 61EEB1349489CB85204F1B4E398BE24EDC01FB914120C9DD0487F8EE1EDA055E ] srv C:\WINDOWS\system32\DRIVERS\srv.sys
01:02:17.0980 0x11c8 srv - ok
01:02:18.0042 0x11c8 [ 0DE224F7B8041B17AA53D00327A86396, 283AD5E9EE8F0C2F47B81FF246BC42ED0656026DA760CAB9EA25611785BBFED8 ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
01:02:18.0089 0x11c8 srv2 - ok
01:02:18.0214 0x11c8 [ 9400C71F5A1A380B494B6922F007D485, 66C293974BA4A61A06DC26EF48D5FA5E75377F66AD1CD774AA6827FA20A5F46E ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
01:02:18.0245 0x11c8 srvnet - ok
01:02:18.0308 0x11c8 [ 7A20882D76D4A78240A5AC9F2C2EBA21, ACA05211EE542999A118BBD2CD051038A7DC8C40C4B8971DC6514BA90E90EC61 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
01:02:18.0339 0x11c8 SSDPSRV - ok
01:02:18.0448 0x11c8 [ D233B16999A8E626F6004BD7814C57EC, 5BBFE5DDF1269617ABD1BDBED85A79D99BB52EA29C2BB3A8F4A1827BFAA1A747 ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
01:02:18.0479 0x11c8 SstpSvc - ok
01:02:18.0526 0x11c8 [ 4E85355B94CFCB67C135F6521A4895A7, AC4FC65C1E62A54B3834E7FE0A2B1ECC48A2AA563AE5BD508326EE68FFFBBEEE ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
01:02:18.0542 0x11c8 stexstor - ok
01:02:18.0589 0x11c8 [ BAC8A721736AECC55A4F71523AEAB65F, B52E1303B13A961A5FC190829E55B6F28ACA409A6EEF44B358D1D210558FE1D8 ] stisvc C:\WINDOWS\System32\wiaservc.dll
01:02:18.0667 0x11c8 stisvc - ok
01:02:18.0729 0x11c8 [ C588BBD37B432CE3204E5765B459E6B2, 6A30570C82390C4D6668137D05C7EFBE243CAC243CBE405D308E3F7B2BC5729D ] storahci C:\WINDOWS\system32\drivers\storahci.sys
01:02:18.0745 0x11c8 storahci - ok
01:02:18.0838 0x11c8 [ F74DBC95A57B1EE866D3732EB5F79BE2, E4FE9D5CD0A385ACB60D5D5E8D969F26C3A6BC0C08FF0838DBE9CA106229C8DE ] storflt C:\WINDOWS\system32\DRIVERS\vmstorfl.sys
01:02:18.0869 0x11c8 storflt - ok
01:02:18.0932 0x11c8 [ 5337E138B49ED1F44CCBA4073BC35C20, 2B296973215E3865A56C46DC3D27F1460D96BC321558CE7A911B05B0E7BF397F ] StorSvc C:\WINDOWS\system32\storsvc.dll
01:02:18.0994 0x11c8 StorSvc - ok
01:02:19.0088 0x11c8 [ 543CD3CC0E05B8D8815E0D4F040B6F59, 4B57C9534E94A0A67FC82DBD4FAECACA180BEC281FB477550A37C0A04777E09E ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
01:02:19.0119 0x11c8 storvsc - ok
01:02:19.0166 0x11c8 [ 8BC1C1ED6EF9C985A3FAA6A72F41679A, 82CC77030D23013572B4A64A64B6156789F253BF56268B790093CE3D345410A0 ] svsvc C:\WINDOWS\system32\svsvc.dll
01:02:19.0213 0x11c8 svsvc - ok
01:02:19.0275 0x11c8 [ 4AFD66AAE74FFB5986BC240744DC5FC9, 0C9347614E3FD3B4D3B29FA4A5DA23FF6EE4CD9A1FFC378B855B8DE61B2876CF ] swenum C:\WINDOWS\System32\drivers\swenum.sys
01:02:19.0291 0x11c8 swenum - ok
01:02:19.0368 0x11c8 [ 502F9488540051F3E6C39889ECFA76BB, 22ABD681BE4CF8A1F484C6363C1334B1EF7A6C074D837B0121DE1896887B84C6 ] swprv C:\WINDOWS\System32\swprv.dll
01:02:19.0447 0x11c8 swprv - ok
01:02:19.0618 0x11c8 [ DC21E1F06343773D7E24362DCEF7944B, E5C13A2D4DEEBEDC6E0E4882FFC56322EA0474A3BD8B1C8A077293F433854F9B ] SysMain C:\WINDOWS\system32\sysmain.dll
01:02:19.0727 0x11c8 SysMain - ok
01:02:19.0821 0x11c8 [ 079244F281621FEDCC161D3923E858FE, A9997FF335B2A81CD9C1DFF8177FBBD4E36360BC1F3E7CD260144806EB12BC5E ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
01:02:19.0946 0x11c8 SystemEventsBroker - ok
01:02:20.0024 0x11c8 [ A6C06C45C44AD06C70AF8899AEC15BDC, AC2CCCDBA6B94BA85A6D41B47343193D175786D4ECF71AE9C7766ADD63A1273F ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
01:02:20.0133 0x11c8 TabletInputService - ok
01:02:20.0242 0x11c8 [ 88B7721AB551C4325036B25A34A2BF7B, 2817CC6294542524EC373A674535F913440736BEBE81233CA91D5ECD93620B02 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
01:02:20.0429 0x11c8 TapiSrv - ok
01:02:20.0570 0x11c8 [ 1D644E2D0FC395A055AB1C23C3B43631, 2AF96480449756C76C2466E546912D1EBB2847490BF611FEBE842CC25EA98765 ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
01:02:20.0726 0x11c8 Tcpip - ok
01:02:20.0851 0x11c8 [ 1D644E2D0FC395A055AB1C23C3B43631, 2AF96480449756C76C2466E546912D1EBB2847490BF611FEBE842CC25EA98765 ] TCPIP6 C:\WINDOWS\system32\DRIVERS\tcpip.sys
01:02:20.0944 0x11c8 TCPIP6 - ok
01:02:20.0975 0x11c8 [ 8F2A13A5DF99D72FDDE87F502A66F989, 2228C62ACDB4CBBFDD2BE705E604E0B9A8AEA7146F65F2D8B9B2A2FB49ACFAE1 ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
01:02:21.0006 0x11c8 tcpipreg - ok
01:02:21.0053 0x11c8 [ 73DC722CE5DF26D7638CE2446F2655C7, 9B8E6F6DEA5E0C2AEAC24A31897D2E73F86EF44F1C25FEF82D2C860353793817 ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
01:02:21.0085 0x11c8 tdx - ok
01:02:21.0116 0x11c8 [ F7C8AB5D8AFFAA318D6A21093D139BF4, 0A35052EF7DC8615783A23897358D8C579BE694363615C9563FF629E7B719991 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
01:02:21.0131 0x11c8 terminpt - ok
01:02:21.0194 0x11c8 [ 541EE228D0DEF392F7B2DFD885DD021B, 594D6538FA4DB5EF4D130007D7C29051EC2EDCA39EBB119695B58E9CBB0EB728 ] TermService C:\WINDOWS\System32\termsrv.dll
01:02:21.0256 0x11c8 TermService - ok
01:02:21.0303 0x11c8 [ 519A6F672FFF56B7D8EE8C730CEC8ECD, 2B36F10C0AE16A261DC0887B1050808BA1F0568F3879E4ABC3D370F08C3FADB7 ] Themes C:\WINDOWS\system32\themeservice.dll
01:02:21.0350 0x11c8 Themes - ok
01:02:21.0428 0x11c8 [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] THREADORDER C:\WINDOWS\system32\mmcss.dll
01:02:21.0443 0x11c8 THREADORDER - ok
01:02:21.0490 0x11c8 [ 52066C139CC189468845D5BE557B25EB, 65A6828240CC06435C1A5FD48B443C3023CE2E8A0A6BDEF67795612457B0CF60 ] TimeBroker C:\WINDOWS\System32\TimeBrokerServer.dll
01:02:21.0521 0x11c8 TimeBroker - ok
01:02:21.0553 0x11c8 [ B44EFE254C0B3719E4037088D24FE4B5, 5AC07658A599470C2BCB2813E644B132DDF886510470F5CC636113CEC48DC0F3 ] TPM C:\WINDOWS\system32\drivers\tpm.sys
01:02:21.0584 0x11c8 TPM - ok
01:02:21.0631 0x11c8 [ 8C8CF3041B27E7657ADD0EE17F6DBFCA, A6846478B9E7B0A509E5A28C6C7B66ED39F0247F9AFF01E3C3CADC0DBEF3CA00 ] TrkWks C:\WINDOWS\System32\trkwks.dll
01:02:21.0646 0x11c8 TrkWks - ok
01:02:21.0740 0x11c8 [ 8D516AEF3C1DF980664CF17BB1FF6093, D68A82D7DE647EAD68D5B8F3E8174B520C7FC6387EC68C8685B3E161C6020488 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
01:02:21.0787 0x11c8 TrustedInstaller - ok
01:02:21.0802 0x11c8 [ 4E7C5FB10A50435523DE0CAA37DE2BD3, D6206DF61950F2541FB754E57C4D9EF9FA0CC1EDD6F6FA4E45F02B47958493F7 ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys
01:02:21.0833 0x11c8 TsUsbFlt - ok
01:02:21.0849 0x11c8 [ 16D684A820872EE54F6370703AC0B513, 795E20484358424CE9FA766937DD99413025A8AF967D03490392E8E02A382D0B ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
01:02:21.0880 0x11c8 TsUsbGD - ok
01:02:21.0943 0x11c8 [ 78C9EE193AC2B4CBDBC48B620314D740, 41523E47D321BFF5778F5E453545B928C0A469C3BBA51578E74D6721D7DF9273 ] tunnel C:\WINDOWS\system32\DRIVERS\tunnel.sys
01:02:21.0989 0x11c8 tunnel - ok
01:02:22.0005 0x11c8 [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A, AA7DA2207C0236F47859A4791F9D7301E7ADB50A59D831DC859ECC7CA70D3E1D ] uagp35 C:\WINDOWS\system32\drivers\uagp35.sys
01:02:22.0021 0x11c8 uagp35 - ok
01:02:22.0052 0x11c8 [ 6FD6D03B7752C78712E5CFF29A305026, F09C5188AAFCF4C77B05BA1E604F9912782A9F1371F72F959288EBC2725407ED ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
01:02:22.0083 0x11c8 UASPStor - ok
01:02:22.0145 0x11c8 [ 1ED222DFE6C13DA50FE081ABF90CAFE1, B3DFAE29D2E08E2A5ABEF8B4D2C03CD25EE22B11D6E0B6BFCAC2D09B8D73AD49 ] UCX01000 C:\WINDOWS\System32\drivers\ucx01000.sys
01:02:22.0192 0x11c8 UCX01000 - ok
01:02:22.0239 0x11c8 [ DC5A461591C71AF7F19DC048A81E3F88, C6689C70B6CDE5A5707C06ABDC9CABF87CCE549BD23B96969EF3AA177A889320 ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
01:02:22.0364 0x11c8 udfs - ok
01:02:22.0442 0x11c8 [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D, 16DE6E0894C356A58AF12BEC2FE9B188F147DD4B16CB2414DE600CE4127F929D ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe
01:02:22.0613 0x11c8 UI0Detect - ok
01:02:22.0629 0x11c8 [ 07FEBCDF24FABA0D47B635D85A0FFB7A, 452C04B14681EBCE8B1B25B75A1B7CC978722B7DDE54D624E17841B14ACCF65D ] uliagpkx C:\WINDOWS\system32\drivers\uliagpkx.sys
01:02:22.0645 0x11c8 uliagpkx - ok
01:02:22.0691 0x11c8 [ 02CEB3FE6152668A7BA420B93B664860, 613F27540FD1EFE2442E326F507DACD5A25691C8481937022B7E1104F3E6E9E2 ] umbus C:\WINDOWS\System32\drivers\umbus.sys
01:02:22.0723 0x11c8 umbus - ok
01:02:22.0738 0x11c8 [ 991EE6B5FC41EAEF99C8AF5B92F2CA09, 30AAD7D18FF5962CEC7180359D148EED5A1BF193DDB2B34508897FC3EBA692C3 ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
01:02:22.0754 0x11c8 UmPass - ok
01:02:22.0832 0x11c8 [ 43FEFB040A0CC30F795FBF544169594D, F2A730C0F7C883321C378D4564120A40428D7F8E393F02C8D6A08934795A35C7 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
01:02:22.0863 0x11c8 UmRdpService - ok
01:02:22.0941 0x11c8 [ 14D22C411854AA2560AFC94CD2D5E61F, BB376734733671C02319E6DB1800D41212694446FD65465498C92D4ECBFE7458 ] upnphost C:\WINDOWS\System32\upnphost.dll
01:02:22.0988 0x11c8 upnphost - ok
01:02:23.0097 0x11c8 [ 2AF9F0E16D75B8F783A1ACE74EF51C9B, AADB8991174CCDA3ADE14AF3EFB3A9826EC17A0F989F449FF43010A99D8CAA1F ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
01:02:23.0144 0x11c8 usbccgp - ok
01:02:23.0206 0x11c8 [ B395B62B62F28106218FA6FB17F4C797, 231CA3512B02BBE70E630A6304E899BCB741CE411FB10C2B3DE48E52034F24BB ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
01:02:23.0284 0x11c8 usbcir - ok
01:02:23.0362 0x11c8 [ 52F267AEE8CA5AA5CEB88C6A71EE1E86, 93E2CC1D4A56A3BBDD85020A8F4AD1B9B119953DB83A155C56D667924D5D8A02 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
01:02:23.0393 0x11c8 usbehci - ok
01:02:23.0456 0x11c8 [ 4875DC63E548812C75D4FDEF84970C89, 6A29306BAB6F95F0384E16533A9588A654A6E3CFC35D55A4CEB2B14EF34EEE19 ] usbfilter C:\WINDOWS\system32\DRIVERS\usbfilter.sys
01:02:23.0487 0x11c8 usbfilter - ok
01:02:23.0534 0x11c8 [ FBB6794E3BBAD92D66D59D206C1F849F, CEA5B07518699F09B2ABA372312FF0769B913DC4C43CC142BDB25274B52825DA ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
01:02:23.0565 0x11c8 usbhub - ok
01:02:23.0627 0x11c8 [ 7B886003CEEBF3C8E4FDF3586DCB3787, 7206C2F264EE3339460D5E1218B0A83E222CB670AB100A4FEB67AAF2FD6CC6C9 ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
01:02:23.0659 0x11c8 USBHUB3 - ok
01:02:23.0674 0x11c8 [ EC1303E3DBF312B846377A84C0D15F27, D710EA9DC98FD157DF6B312AF5D716DD0AD2F3DF2351571DEA399642BC023EDD ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
01:02:23.0705 0x11c8 usbohci - ok
01:02:23.0737 0x11c8 [ BA3ABE0CD1C14B3295BAD0F076B84CAC, 19E0679D44A9BD9DDCC336C7DE784147D6CFC3DE4250D5CA31CE49867D51A414 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
01:02:23.0799 0x11c8 usbprint - ok
01:02:23.0986 0x11c8 [ F77177F6C95B2116EE7AD23B5EF57007, 646E345DE5AFF26B338E17BC9D03D0EDA5608DF77D7685DE7AFF6E4113B9EB87 ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
01:02:24.0033 0x11c8 USBSTOR - ok
01:02:24.0064 0x11c8 [ D25EF4A6EC244C5DE85D88A05B7C149D, A08793945D5FDC2CCCB2C621853A69941F1A108DF6CB559F3E8A21A047A8CCB3 ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
01:02:24.0095 0x11c8 usbuhci - ok
01:02:24.0173 0x11c8 [ 09799E701B4327097E9F63D3FE221083, CF2B97D5B3D434D8E5547B2A86771C69A6F7F4857CAD70865B50462A04A27A48 ] usbvideo C:\WINDOWS\System32\Drivers\usbvideo.sys
01:02:24.0205 0x11c8 usbvideo - ok
01:02:24.0220 0x11c8 [ 9CD4259AD15F84DE27B94A956C978D6C, F3289BBB1C52E49D8F76D07877541A74DFB7AD3E950C2E58A2C6CDC443F824CF ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
01:02:24.0267 0x11c8 USBXHCI - ok
01:02:24.0283 0x11c8 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] VaultSvc C:\WINDOWS\system32\lsass.exe
01:02:24.0298 0x11c8 VaultSvc - ok
01:02:24.0361 0x11c8 [ BACECBFF9C97F7627A60B0E0F1FE7EE8, DC82F767D066B93A48A090DC7146EBCCDC54B43C6CD9DF29A160E09E3A531DC8 ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
01:02:24.0376 0x11c8 vdrvroot - ok
01:02:24.0439 0x11c8 [ 00FBA165A1167738802DA5D0EE78EF10, 3BA85214F881AB2629CAD73BA0F8D7B1BD18831344FE4A56476B97591602B99B ] vds C:\WINDOWS\System32\vds.exe
01:02:24.0501 0x11c8 vds - ok
01:02:24.0517 0x11c8 [ 74FA2D4368DE6F6CE14393EDF1F342BE, C5CE4164B2C3D583A7FB8687ADEADCDB08D36A5AB1965E5FC6949AEED15881C8 ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
01:02:24.0548 0x11c8 VerifierExt - ok
01:02:24.0595 0x11c8 [ 8628FA679F0EC4B709CCD1F6B6A3233B, E8A99795BB7956BFB9FDF6D24209280917FE6500E52F82F50C9FAD2EA6EDFA88 ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
01:02:24.0641 0x11c8 vhdmp - ok
01:02:24.0657 0x11c8 [ F5B4A14B00E89250C50982AC762DDD1D, 581CD97DD42E74A82F06BFB827DFC82618B4A8667ACA7E93C628BB0D056CE8F0 ] viaide C:\WINDOWS\system32\drivers\viaide.sys
01:02:24.0673 0x11c8 viaide - ok
01:02:24.0719 0x11c8 [ 78DB50F7329F6D1311658DABFFFC8BE0, 8CB0C831608033C4BC1D2DA7FAA7D429333A3654E76A989F7AF85BFC5F086BE9 ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
01:02:24.0735 0x11c8 vmbus - ok
01:02:24.0766 0x11c8 [ ECFEE2F2BA3932C7880D1A8F67D68F91, 57DCD55A518A9FBDEF72B511C643B1062C3F7BD339F4B0FC19E9D84C615B968D ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
01:02:24.0797 0x11c8 VMBusHID - ok
01:02:24.0844 0x11c8 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicheartbeat C:\WINDOWS\System32\ICSvc.dll
01:02:24.0891 0x11c8 vmicheartbeat - ok
01:02:24.0922 0x11c8 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
01:02:24.0953 0x11c8 vmickvpexchange - ok
01:02:24.0985 0x11c8 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicrdv C:\WINDOWS\System32\ICSvc.dll
01:02:25.0016 0x11c8 vmicrdv - ok
01:02:25.0031 0x11c8 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicshutdown C:\WINDOWS\System32\ICSvc.dll
01:02:25.0063 0x11c8 vmicshutdown - ok
01:02:25.0203 0x11c8 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmictimesync C:\WINDOWS\System32\ICSvc.dll
01:02:25.0234 0x11c8 vmictimesync - ok
01:02:25.0265 0x11c8 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicvss C:\WINDOWS\System32\ICSvc.dll
01:02:25.0281 0x11c8 vmicvss - ok
01:02:25.0312 0x11c8 [ CB60FAAED8B49B812EBBF77EB87D9B18, ADA7C68D4C4981555ED48981E8B7ACBEEF5C39F902EB98782FC3DFF495FE0C33 ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
01:02:25.0343 0x11c8 volmgr - ok
01:02:25.0375 0x11c8 [ A74101DA9809251BCD0E5A26BAE0F824, 15A3A7CC31A13C5882812C344D0937A8A4503D12DB07B9F7F2A8191B739CDBF7 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
01:02:25.0406 0x11c8 volmgrx - ok
01:02:25.0437 0x11c8 [ 2FB3CDFD5EAF4CD9D4AFAF96877D13AE, 26FD9DBCFAEDE0F945D80B11769741A3A837F84461263217A43C458B674566EE ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
01:02:25.0468 0x11c8 volsnap - ok
01:02:25.0484 0x11c8 [ A8DA1C1B52ECEA3726DEBED4FF1B700D, 75C024EC3858DF24FB82FE105BDD1E37900D53EFE9D72F42CDDFFD0742525586 ] vpci C:\WINDOWS\System32\drivers\vpci.sys
01:02:25.0499 0x11c8 vpci - ok
01:02:25.0546 0x11c8 [ 38A60CD9C009C55C6D3B5586F8E6A353, 7F7E2AE39F1A0A5245650911E310E0948BC22A18262A16FA76B44A042D66312D ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
01:02:25.0577 0x11c8 vsmraid - ok
01:02:25.0655 0x11c8 [ EA658570314042C914964FC72AB50E6B, 0B10E16D5136BF71EAF68F0D9A8B25F92F6D686BF9F80FEEB9F291221C6B8284 ] VSS C:\WINDOWS\system32\vssvc.exe
01:02:25.0780 0x11c8 VSS - ok
01:02:25.0811 0x11c8 [ A0F6FE0FC2F647C22BBFD6BD4249DBCC, AC2F3C70EDCA0AFBB2606267DFE6D3E8E7B0772140153BAD6B0A9EDE6A1D2F29 ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
01:02:25.0858 0x11c8 VSTXRAID - ok
01:02:25.0874 0x11c8 [ 62460A45435A26A334907E3F2EA45611, FEF86E05117CC0AAB8211CA1542776EB620BD4699BD590D91F16621ED35B9824 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
01:02:25.0889 0x11c8 vwifibus - ok
01:02:25.0905 0x11c8 [ 095E943D27025E4D588AF0A72CC2318F, 3CE406A202F93EF8C4BC7317621A672670D734C69166393CA7256D5E5E667041 ] vwififlt C:\WINDOWS\system32\DRIVERS\vwififlt.sys
01:02:25.0936 0x11c8 vwififlt - ok
01:02:25.0967 0x11c8 [ 73FA1A41A97A5C34ADC03B3577FF1A86, CBA4BC0DA837C163587BBB4BF2AC1549C72440307C984D3CDF8995023718136C ] vwifimp C:\WINDOWS\system32\DRIVERS\vwifimp.sys
01:02:25.0999 0x11c8 vwifimp - ok
01:02:26.0092 0x11c8 [ F690B6EEAA94576727B24376D7ED3601, A61EE96024C8FC4058481DFB1E7F0AD746565368672FA3B6BA8F9E23D0F47E4C ] W32Time C:\WINDOWS\system32\w32time.dll
01:02:26.0139 0x11c8 W32Time - ok
01:02:26.0186 0x11c8 [ 6B806E893714019969E2B50D7EF6A4D9, 38FE2B01082DC4C2A0C11A292016A727F48C3DF1293DC3A0216B2254A452263F ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
01:02:26.0201 0x11c8 WacomPen - ok
01:02:26.0217 0x11c8 [ 6081CEC9EF9EB145D8B46655C7708D51, 34E421501185BDE9049AC68F0604F4AD694AF6DA1D52A7D75C2BD050B5817ADF ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
01:02:26.0248 0x11c8 Wanarp - ok
01:02:26.0264 0x11c8 [ 6081CEC9EF9EB145D8B46655C7708D51, 34E421501185BDE9049AC68F0604F4AD694AF6DA1D52A7D75C2BD050B5817ADF ] Wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
01:02:26.0279 0x11c8 Wanarpv6 - ok
01:02:26.0389 0x11c8 [ 42DF22F8C448E7CD219F6D63743505E2, 063F4280C7BD20CE1360436B76A17DFE17FF611F75337A47373D098CC6C263BF ] wbengine C:\WINDOWS\system32\wbengine.exe
01:02:26.0513 0x11c8 wbengine - ok
01:02:26.0560 0x11c8 [ 31D37B2F6069C631EF0557D322924812, 6E18A1060F3C8F4BF220E286C44327866A8F9109E74928AA2D8C2DA9C452038B ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
01:02:26.0591 0x11c8 WbioSrvc - ok
01:02:26.0623 0x11c8 [ D9C1E82651BF19C6FF69CEC6FD400124, 93B96481A5B26F5617B16DD775AF0F8CE9001B30251FFF58D6EF9044D5EE91CD ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
01:02:26.0638 0x11c8 Wcmsvc - ok
01:02:26.0701 0x11c8 [ 4507D89FA9E4283100948C91E867D130, 7DEEE18C903752A46D9B23B8C8F50A0028E6682321B365EC87F87D1E7EFB8621 ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
01:02:26.0794 0x11c8 wcncsvc - ok
01:02:26.0841 0x11c8 [ E19556D414332E2BEBA1F368229006B4, AB3454EC85D7B6E62D44C4510C1547AE7F736558588E54B0E265F7B3A5810E15 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
01:02:26.0872 0x11c8 WcsPlugInService - ok
01:02:26.0903 0x11c8 [ B3A4D918DAB90505B6BC7B70632913CB, ECC19DCD7902C29D0682C70B9546CF8B82477A32147EE30EB6750D8499605B46 ] Wd C:\WINDOWS\system32\drivers\wd.sys
01:02:26.0919 0x11c8 Wd - ok
01:02:26.0919 0x11c8 [ 260F8DFC4D5748F4CCB9B19CFB0E58EA, 36A6B264677A8A5A4E4785C9BE49E39C82B552460C46026964B700CCBA51FBB0 ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys
01:02:26.0935 0x11c8 WdBoot - ok
01:02:26.0997 0x11c8 [ 442783E2CB0DA19873B7A63833FF4CB4, 09254970265476214F3187CC22A4F9C7C2769D419600E83FBE302C3A103E527F ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
01:02:27.0044 0x11c8 Wdf01000 - ok
01:02:27.0106 0x11c8 [ 880FFFC4D5BBBB4187B6B04AB2E8C32A, 406363087976285481A8401FC5A8BBAF0DDCCC8D9228F39702D5B80ADC61EEA9 ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys
01:02:27.0122 0x11c8 WdFilter - ok
01:02:27.0169 0x11c8 [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
01:02:27.0200 0x11c8 WdiServiceHost - ok
01:02:27.0215 0x11c8 [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
01:02:27.0247 0x11c8 WdiSystemHost - ok
01:02:27.0387 0x11c8 [ F2002DA5E6B78C15B2CD48CFF8F0FBB6, 4281100271761521F75F4D5A3D2E9FF40A9C7D81CEDAFD2EDD95788534090CA6 ] WebClient C:\WINDOWS\System32\webclnt.dll
01:02:27.0418 0x11c8 WebClient - ok
01:02:27.0449 0x11c8 [ F2002DA5E6B78C15B2CD48CFF8F0FBB6, 4281100271761521F75F4D5A3D2E9FF40A9C7D81CEDAFD2EDD95788534090CA6 ] WebClient C:\WINDOWS\System32\webclnt.dll
01:02:27.0465 0x11c8 WebClient - ok
01:02:27.0512 0x11c8 [ 35FD720943D4FCD75C3275BF062FF140, 9D8345E6DE1AE23F93AD0B52D27D1CCFD69EF7EE50654F92CA999BEC4570A773 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
01:02:27.0559 0x11c8 Wecsvc - ok
01:02:27.0590 0x11c8 [ 4D2612E3C462B68F499D840B1133263E, 4DDAEB4480AEC31A8184838588E0D3DFA31CE6D2FA6E906926860C75F52DC7B7 ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
01:02:27.0637 0x11c8 wercplsupport - ok
01:02:27.0652 0x11c8 [ 8E2426162ED6749A127B35D235F21E11, 3B92CE177DE926CC801B71EACC2901DB11BDBF4A1269A004BFFECB3047E17E4C ] WerSvc C:\WINDOWS\System32\WerSvc.dll
01:02:27.0683 0x11c8 WerSvc - ok
01:02:27.0715 0x11c8 [ FE762D3498719C3A23471BBA62F747B4, 7F9390D5B0133BF1FA66BFC5FD933E17AADEB7845F141948EE4A52AB779A69F8 ] WFPLWFS C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
01:02:27.0746 0x11c8 WFPLWFS - ok
01:02:27.0793 0x11c8 [ 60E0C220593DA4F7C289CB909D2DBAE0, 057CA7727F748600CC155043081AB9E3244763CF4913F317D13226A515F6FDB6 ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
01:02:27.0839 0x11c8 WiaRpc - ok
01:02:27.0855 0x11c8 [ A3C7624A42A3447EF5EDD1ED37FE4E60, BD8BDF0A571873FA8277878AF7AED11196CFF1B4DF1EA6BA13BD4887D7B63B94 ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
01:02:27.0871 0x11c8 WIMMount - ok
01:02:27.0902 0x11c8 WinDefend - ok
01:02:27.0964 0x11c8 [ 1369928779943B5C7AABA263E6E2BBC1, 5DB4E77912051839B842F43B01933A07D72BD9E772F129573B1504361A9AA6A4 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
01:02:28.0027 0x11c8 WinHttpAutoProxySvc - ok
01:02:28.0167 0x11c8 [ 3D6B518B71C75C8FA4115A33615C107A, ED7A266013D29D3B1A462464735C3632BEA121D1B32553907AEAA0B00595C3DF ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
01:02:28.0198 0x11c8 Winmgmt - ok
01:02:28.0370 0x11c8 [ 8E212A627F33F6FC3B5F3BB47212F66E, 9BBFE26ABFA14F346FE3711D13D959523EEA23608A33C16F3D750D66CA511911 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
01:02:28.0526 0x11c8 WinRM - ok
01:02:28.0573 0x11c8 [ BB20956C424531003F7FA6CD36F11D5D, 2C55F1C7553A527A7C4C34E730BE943269AE23928731C64D3DC945E07AE1771E ] WinUsb C:\WINDOWS\system32\DRIVERS\WinUSB.sys
01:02:28.0619 0x11c8 WinUsb - ok
01:02:28.0697 0x11c8 [ 19B3CFB1D6516AB2C54772CB75426AD4, 9DB10D2BE984AC665562FB6095F32E0A9E7FDCCF1580C87A7F5DCEAA3EC4C463 ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
01:02:28.0807 0x11c8 WlanSvc - ok
01:02:28.0947 0x11c8 [ 08EFA13A2234C8C3B8A99E4B88BE7E9B, 460ACD1687A2E5443A1B0E1786A517E67DB876403AC3498555848BD16DA08929 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
01:02:29.0056 0x11c8 wlidsvc - ok
01:02:29.0087 0x11c8 [ E2A596CACFC6504306CDB7B593B90084, DF89CF57249553CE922C841F18B99A213185FA1099C053B9BB8C0F6E5BC3FEC0 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
01:02:29.0103 0x11c8 WmiAcpi - ok
01:02:29.0165 0x11c8 [ D113499052C5E541906B727779F0F959, 05FB51086C0A0CE3812A7E6098C5A454ECCFE8553669CFA715153564F2226DB0 ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
01:02:29.0212 0x11c8 wmiApSrv - ok
01:02:29.0228 0x11c8 WMPNetworkSvc - ok
01:02:29.0275 0x11c8 [ C6FF953D5D6F2EAE3B8883474D5076B3, 001CBB7FBC30209C892869258E5ABD3F0932886E156ECB10DCA599F6D32648BE ] wpcfltr C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
01:02:29.0321 0x11c8 wpcfltr - ok
01:02:29.0337 0x11c8 [ A6ED163169876BFD2437E872FE2F1509, C13E8676800EEEF690F51C4DEA660B36C8734AE2CCAAC48054E10D74B98949B8 ] WPCSvc C:\WINDOWS\System32\wpcsvc.dll
01:02:29.0368 0x11c8 WPCSvc - ok
01:02:29.0399 0x11c8 [ 94AA5150E35B3ABB7191FE641E3C2473, 48CC776E92579188FF75BADFABF7BDBED0092AF5EE2BDBDEF9C3834A01E39CAB ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
01:02:29.0431 0x11c8 WPDBusEnum - ok
01:02:29.0446 0x11c8 [ 0346CAFC181C91C6E2330332EB332ED6, D46F44C339399CAAE13CD71C53A169E95065208E07E5420DE00A4509D6CB056F ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
01:02:29.0477 0x11c8 WpdUpFltr - ok
01:02:29.0493 0x11c8 [ BC8B5CB336E63BB25EAD1CE8EDD34B81, A42759956EDCCC6D0688240AA4F833FB9CA132D42D2D901CDCBB24DCE1788C1D ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
01:02:29.0524 0x11c8 ws2ifsl - ok
01:02:29.0555 0x11c8 [ FB0C1B7F94FA08E72F19F6F2CE7210E1, DC5475E9172BD732A654838CDB8057FCD83A02060C0C79B141F74A74D4C77555 ] wscsvc C:\WINDOWS\System32\wscsvc.dll
01:02:29.0602 0x11c8 wscsvc - ok
01:02:29.0618 0x11c8 WSearch - ok
01:02:29.0727 0x11c8 [ C10BFFEE7E0D7A1366E84F251796C51D, E1FD1DF5F5C5934F9A8584D54F35720655AC4F5D4CFD69CD1E063C0BBEC4D33D ] WSService C:\WINDOWS\System32\WSService.dll
01:02:29.0867 0x11c8 WSService - ok
01:02:30.0086 0x11c8 [ 69DDDAF7BB4D39A4CC928EA434A3E258, 3C3335682C53C283E9C2C42EBB557944C4808F8C0F1781A8B2C4CA24D1677531 ] wuauserv C:\WINDOWS\system32\wuaueng.dll
01:02:30.0242 0x11c8 wuauserv - ok
01:02:30.0273 0x11c8 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
01:02:30.0304 0x11c8 WudfPf - ok
01:02:30.0335 0x11c8 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys
01:02:30.0367 0x11c8 WUDFRd - ok
01:02:30.0398 0x11c8 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll
01:02:30.0429 0x11c8 wudfsvc - ok
01:02:30.0460 0x11c8 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
01:02:30.0476 0x11c8 WUDFWpdFs - ok
01:02:30.0538 0x11c8 [ F9D8D2E6ECE08B278621D5BF3A7240A6, 99EEEE51EA6CE8909713CA81A2AFA5102774AE9C8554F422F4D9A1D8B0ABDB09 ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
01:02:30.0569 0x11c8 WwanSvc - ok
01:02:30.0585 0x11c8 ================ Scan global ===============================
01:02:30.0647 0x11c8 [ DDC1AFBF9DDF880CE9BD3896114D8DED, E2406231EA4D2689A5EDFA9BD1A1BC064359D8D23B37F113A18B5EAE3E2D4050 ] C:\WINDOWS\system32\basesrv.dll
01:02:30.0679 0x11c8 [ E9343076AE704D20BB0D01F3AF3EFFEF, FF2CE4146945976F9480690505CECD3C7C719BAF0F633E6192C8272C75EF295D ] C:\WINDOWS\system32\winsrv.dll
01:02:30.0725 0x11c8 [ BD7C6949984D19AAA609896B675E7357, 5B46538B27BC70F5A3805AA63F6AACDC780C7168468FB535F2D35CF26B9DEE06 ] C:\WINDOWS\system32\sxssrv.dll
01:02:30.0757 0x11c8 [ 8F226143046435C75C033B0C52E90FFE, 54FA316485B57D7B8104FE621F5F40DEC35E3D57C3DF46B5F7EACF57445FE7CA ] C:\WINDOWS\system32\services.exe
01:02:30.0757 0x11c8 [ Global ] - ok
01:02:30.0757 0x11c8 ================ Scan MBR ==================================
01:02:30.0772 0x11c8 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
01:02:30.0866 0x11c8 \Device\Harddisk0\DR0 - ok
01:02:30.0881 0x11c8 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
01:02:30.0991 0x11c8 \Device\Harddisk1\DR1 - ok
01:02:30.0991 0x11c8 ================ Scan VBR ==================================
01:02:31.0037 0x11c8 [ B8F069E2D483B43E857DC15B1E052A8D ] \Device\Harddisk0\DR0\Partition1
01:02:31.0037 0x11c8 \Device\Harddisk0\DR0\Partition1 - ok
01:02:31.0037 0x11c8 [ D51B264373F707DD420F0E452603725D ] \Device\Harddisk0\DR0\Partition2
01:02:31.0037 0x11c8 \Device\Harddisk0\DR0\Partition2 - ok
01:02:31.0069 0x11c8 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
01:02:31.0069 0x11c8 \Device\Harddisk0\DR0\Partition3 - ok
01:02:31.0069 0x11c8 [ A9A02579523051CE0E24C6B714DA52A1 ] \Device\Harddisk0\DR0\Partition4
01:02:31.0084 0x11c8 \Device\Harddisk0\DR0\Partition4 - ok
01:02:31.0115 0x11c8 [ 49BF568CE38EF2798886CDF975C888C9 ] \Device\Harddisk0\DR0\Partition5
01:02:31.0115 0x11c8 \Device\Harddisk0\DR0\Partition5 - ok
01:02:31.0131 0x11c8 [ 96BE788D53F74506713C6120F12E7A36 ] \Device\Harddisk0\DR0\Partition6
01:02:31.0131 0x11c8 \Device\Harddisk0\DR0\Partition6 - ok
01:02:31.0131 0x11c8 ================ Scan active images ========================
01:02:31.0131 0x11c8 [ 48753C871A12B9E2201E71D01B32F6EF, 5821370556C2EB9556A67E09E3779BFCED5991961FE4A8C0D48074FFE84A38CE ] C:\Windows\System32\Drivers\crashdmp.sys
01:02:31.0131 0x11c8 C:\Windows\System32\Drivers\crashdmp.sys - ok
01:02:31.0147 0x11c8 [ AAF40EB125BED7271F05289873EC4EDB, 4FD912F0BEFD5A16270686BF56BDD8F12A9CAB5E3636E2A3860815B1CA6DD8B3 ] C:\Windows\System32\Drivers\Diskdump.sys
01:02:31.0147 0x11c8 C:\Windows\System32\Drivers\Diskdump.sys - ok
01:02:31.0147 0x11c8 [ A2EFE3869B976296E097DEF368280F95, 121CD4A16146A9DF59D6E415181F48CA0D1DCD4D2B6BC4CBDABC2F3D296E28C6 ] C:\Windows\System32\Drivers\amd_sata.sys
01:02:31.0147 0x11c8 C:\Windows\System32\Drivers\amd_sata.sys - ok
01:02:31.0147 0x11c8 [ CB9EAD11F3312C77CE9B7F29B59C3A39, E71B768CD85068A5D22697BC1670EBE70885740AC347F52E604CFA8C481995D0 ] C:\Windows\System32\Drivers\dumpfve.sys
01:02:31.0147 0x11c8 C:\Windows\System32\Drivers\dumpfve.sys - ok
01:02:31.0162 0x11c8 [ 339BFF85D788268752DA8C9644B188EE, C2279F1A39AED39865A5027D2FD087F8E82F3ED8C94BA4D922855B98E792AFC5 ] C:\Windows\System32\Drivers\cdrom.sys
01:02:31.0162 0x11c8 C:\Windows\System32\Drivers\cdrom.sys - ok
01:02:31.0162 0x11c8 [ 5EC68164E14D25675C98BBB5F09E8606, 1D7EDB21C87039FC5F39F46460AD852BC4EC6B179B1C205D189DD3C397343435 ] C:\Windows\System32\Drivers\BasicRender.sys
01:02:31.0162 0x11c8 C:\Windows\System32\Drivers\BasicRender.sys - ok
01:02:31.0162 0x11c8 [ 9E7AEA59776D904607985AFFE7E5E183, C3DB745A9F4DA7CB9628A7913DD52B2444B14FEB9D588FF6558CF52CEB8955EB ] C:\Windows\System32\Drivers\beep.sys
01:02:31.0162 0x11c8 C:\Windows\System32\Drivers\beep.sys - ok
01:02:31.0178 0x11c8 [ 4163ADE07DB51843AE31F65B94F5398D, 4349E7EF1EE1E71E1F436BA42F5B58871D82B987D513BA2D6E1CEB8A21BD1B20 ] C:\Windows\System32\Drivers\null.sys
01:02:31.0178 0x11c8 C:\Windows\System32\Drivers\null.sys - ok
01:02:31.0178 0x11c8 [ 898BF1647BBF012B38EF45C7F9F7A67E, 800EF0CF107B5F29702FA50D448E20D3EB19984C38D1AA0197636A80629A3160 ] C:\Windows\System32\Drivers\dxgkrnl.sys
01:02:31.0178 0x11c8 C:\Windows\System32\Drivers\dxgkrnl.sys - ok
01:02:31.0178 0x11c8 [ B9FF5E13079ADB858ED5C0B1E4CAB225, 56D58A7622618B53E8384AD4A2D62370E0E4368E35BFAD344B2C37FF9ACAE9EE ] C:\Windows\System32\Drivers\watchdog.sys
01:02:31.0178 0x11c8 C:\Windows\System32\Drivers\watchdog.sys - ok
01:02:31.0193 0x11c8 [ 728DFAEEF8E52E793DE8EB0423F4E948, 41DBE2BFBCEA58456986C2ED9982E89DAD219F69475938A021FF5408429AD548 ] C:\Windows\System32\Drivers\dxgmms1.sys
01:02:31.0193 0x11c8 C:\Windows\System32\Drivers\dxgmms1.sys - ok
01:02:31.0193 0x11c8 [ 81703BC5D68DEDBB086C2368FBE7B334, CFD4A55C8045C482F8D410514F3211AEFA00097AB395F5A04BFE983ED6254F6B ] C:\Windows\System32\Drivers\BasicDisplay.sys
01:02:31.0193 0x11c8 C:\Windows\System32\Drivers\BasicDisplay.sys - ok
01:02:31.0193 0x11c8 [ 3886F1F2A4D2900ABAA7E4486BEEE6A2, ECCA22985838A914EDC866C491DEB64B9FF5110EFA9BEE541F634AC5EC3081F9 ] C:\Windows\System32\Drivers\msfs.sys
01:02:31.0193 0x11c8 C:\Windows\System32\Drivers\msfs.sys - ok
01:02:31.0209 0x11c8 [ 17E19A742FB30C002F8B43575451DBE1, 59D226A4A5B5281C399BE96C694915E38EEAF335D31F346B0C65D8F469D7C9C3 ] C:\Windows\System32\Drivers\npfs.sys
01:02:31.0209 0x11c8 C:\Windows\System32\Drivers\npfs.sys - ok
01:02:31.0209 0x11c8 [ 7CEC25C682D319D484630B3952C31A11, 025C46B367E0570E9E3F9DF1564C3E47B1524E9E9A180BBDF0E9C684838F5E42 ] C:\Windows\System32\Drivers\netbt.sys
01:02:31.0209 0x11c8 C:\Windows\System32\Drivers\netbt.sys - ok
01:02:31.0209 0x11c8 [ 749AFA28C01233E93F59BD31B2B088B1, 38D4E4DAFE79F28F67CAED64243689CCD9C9D79E4E9B8D76F6F0C8D36EFA13C7 ] C:\Windows\System32\Drivers\tdi.sys
01:02:31.0209 0x11c8 C:\Windows\System32\Drivers\tdi.sys - ok
01:02:31.0209 0x11c8 [ 73DC722CE5DF26D7638CE2446F2655C7, 9B8E6F6DEA5E0C2AEAC24A31897D2E73F86EF44F1C25FEF82D2C860353793817 ] C:\Windows\System32\Drivers\tdx.sys
01:02:31.0209 0x11c8 C:\Windows\System32\Drivers\tdx.sys - ok
01:02:31.0225 0x11c8 [ 9E975BDC89C83900B2C534C4E1B018F8, 5413577284FDD7840915CC29C3DD78E514F0E6227384636695CF8B46FAA541DC ] C:\Windows\System32\Drivers\afd.sys
01:02:31.0225 0x11c8 C:\Windows\System32\Drivers\afd.sys - ok
01:02:31.0225 0x11c8 [ EB8034147D4820CD31BFCB11A2A652DF, B10B5E16B7A05D2DB2D5D1945B6146DE15EEDE2C778772A59F104706B5145E46 ] C:\Windows\System32\Drivers\pacer.sys
01:02:31.0225 0x11c8 C:\Windows\System32\Drivers\pacer.sys - ok
01:02:31.0225 0x11c8 [ 7C203A76394F9AE68F69EEE5F9612C4A, 2222654915913BDC9367A2075714906A10CF22C047A7494CD59CB71834ED1B62 ] C:\Windows\System32\Drivers\netbios.sys
01:02:31.0225 0x11c8 C:\Windows\System32\Drivers\netbios.sys - ok
01:02:31.0240 0x11c8 [ B72C33DBD5326B3864CF2091AF8B906B, 85A22311FA870CE43CF70F69D7D101D96B9095A992DCF5FA1587886F6D4282DC ] C:\Windows\System32\Drivers\rdbss.sys
01:02:31.0240 0x11c8 C:\Windows\System32\Drivers\rdbss.sys - ok
01:02:31.0240 0x11c8 [ 095E943D27025E4D588AF0A72CC2318F, 3CE406A202F93EF8C4BC7317621A672670D734C69166393CA7256D5E5E667041 ] C:\Windows\System32\Drivers\vwififlt.sys
01:02:31.0240 0x11c8 C:\Windows\System32\Drivers\vwififlt.sys - ok
01:02:31.0240 0x11c8 [ 6081CEC9EF9EB145D8B46655C7708D51, 34E421501185BDE9049AC68F0604F4AD694AF6DA1D52A7D75C2BD050B5817ADF ] C:\Windows\System32\Drivers\wanarp.sys
01:02:31.0240 0x11c8 C:\Windows\System32\Drivers\wanarp.sys - ok
01:02:31.0256 0x11c8 [ B5AECF12F09DEE97C9FCAA5BA016CE1E, F5305C4CE6C93A3A3481BD13BE0C23FE26571E11029ACFFE75FB78913681FCFC ] C:\Windows\System32\Drivers\mssmbios.sys
01:02:31.0256 0x11c8 C:\Windows\System32\Drivers\mssmbios.sys - ok
01:02:31.0256 0x11c8 [ 8ED299C30792544264E558BEA79F0947, 8A03FDA9AADB79ECBCBCDC988B7D8CF0672689C9DF673A2ECFE0D2D88A9C6A6B ] C:\Windows\System32\Drivers\npsvctrig.sys
01:02:31.0256 0x11c8 C:\Windows\System32\Drivers\npsvctrig.sys - ok
01:02:31.0256 0x11c8 [ 689B3B1E95C70ABF7AFF29F9406EF1E0, 8B62D8AE53E1B3218158FADC0075682AB06D18998CF5DE82C920A9CD91C0652F ] C:\Windows\System32\Drivers\nsiproxy.sys
01:02:31.0256 0x11c8 C:\Windows\System32\Drivers\nsiproxy.sys - ok
01:02:31.0271 0x11c8 [ A4CCA7289C1A6223D61FD27BF2FC413F, DCDA516FE602690802A8D2A854E607FFCB0BCFDFCDB1F1AC6B30CBAED2663726 ] C:\Windows\System32\Drivers\dam.sys
01:02:31.0271 0x11c8 C:\Windows\System32\Drivers\dam.sys - ok
01:02:31.0271 0x11c8 [ 09D9EB9E7898F8E6561473A20CC808B9, 0F511593D36084843E5138AF6D55FE08D77803968AE12A236A02368DB364347E ] C:\Windows\System32\Drivers\dfsc.sys
01:02:31.0271 0x11c8 C:\Windows\System32\Drivers\dfsc.sys - ok
01:02:31.0271 0x11c8 [ 3C736FAE17BA6F91BA37594AAB139CD0, 34304A194105B19E7ADD80108DC85C3B7AA9E942C84A7EF93C475CE1D9AE4615 ] C:\Windows\System32\Drivers\discache.sys
01:02:31.0271 0x11c8 C:\Windows\System32\Drivers\discache.sys - ok
01:02:31.0287 0x11c8 [ 41CEAFFCF3550785E59E3EC9BEE8D97A, 89FE604088B65B82AA794E1DA8429033CD2F05FFB2D7EFAAC7B967C7A83D1B1E ] C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
01:02:31.0287 0x11c8 C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys - ok
01:02:31.0287 0x11c8 [ 7A6F8A6D0E01432EBA294EF29CDD0FA7, D902AE15194A9F8A2198914FC76184FE7E2B589747275952A04A52853128FDB8 ] C:\Windows\System32\Drivers\ndistapi.sys
01:02:31.0287 0x11c8 C:\Windows\System32\Drivers\ndistapi.sys - ok
01:02:31.0287 0x11c8 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] C:\Windows\System32\Drivers\ndiswan.sys
01:02:31.0287 0x11c8 C:\Windows\System32\Drivers\ndiswan.sys - ok
01:02:31.0303 0x11c8 [ A7F24D8CD1956B0A1FDCB86CC5114DE4, 30489D235362DF62B105378597168B13F4BAC74A8EDDBDA25237E3C017B69FEE ] C:\Windows\System32\Drivers\rassstp.sys
01:02:31.0303 0x11c8 C:\Windows\System32\Drivers\rassstp.sys - ok
01:02:31.0303 0x11c8 [ 69B93F623B130976243ECA3D84CC99CA, F27617E651EADFAEE479619AAB01CDAA98111BA63E204D5C44A1256732CB0100 ] C:\Windows\System32\Drivers\agilevpn.sys
01:02:31.0303 0x11c8 C:\Windows\System32\Drivers\agilevpn.sys - ok
01:02:31.0303 0x11c8 [ F1B8276F58969BD87683D33066DFE442, 8266A55A9B578C37E52F835CB6F198AB9BAFB660BFF2ED87F3E07308AF070836 ] C:\Windows\System32\ntdll.dll
01:02:31.0303 0x11c8 C:\Windows\System32\ntdll.dll - ok
01:02:31.0318 0x11c8 [ 08F850FEBDBDE7C89017B6B0CA0D1CD2, 04B671CF2F269A12B996633E83B397F2924EBBAC425919D74E2BBC3013A238B5 ] C:\Windows\System32\smss.exe
01:02:31.0318 0x11c8 C:\Windows\System32\smss.exe - ok
01:02:31.0318 0x11c8 [ 0E5B1E9E7122EDAAF1F6CE047965CA92, 803E585B92D1E2E5B6BF67BE511E88DC2629A12407C3E30F7AEFB544D390A9B8 ] C:\Windows\System32\Drivers\CompositeBus.sys
01:02:31.0318 0x11c8 C:\Windows\System32\Drivers\CompositeBus.sys - ok
01:02:31.0318 0x11c8 [ 78C9EE193AC2B4CBDBC48B620314D740, 41523E47D321BFF5778F5E453545B928C0A469C3BBA51578E74D6721D7DF9273 ] C:\Windows\System32\Drivers\tunnel.sys
01:02:31.0318 0x11c8 C:\Windows\System32\Drivers\tunnel.sys - ok
01:02:31.0318 0x11c8 [ 490B7921C6DC58022FAA908E6310CF24, 0B1D7AF23D787FC8E7BC972DDB4EC7BB5E11581B113A92B4507DF1352ABB4FA0 ] C:\Windows\System32\autochk.exe
01:02:31.0318 0x11c8 C:\Windows\System32\autochk.exe - ok
01:02:31.0334 0x11c8 [ FB6C185092E18011EF49989425C2AA87, 043524409E0A764201DD221C48B7DEEA0D161945EB37D4B88313BAB2299949DF ] C:\Windows\System32\Drivers\kdnic.sys
01:02:31.0334 0x11c8 C:\Windows\System32\Drivers\kdnic.sys - ok
01:02:31.0334 0x11c8 [ 02CEB3FE6152668A7BA420B93B664860, 613F27540FD1EFE2442E326F507DACD5A25691C8481937022B7E1104F3E6E9E2 ] C:\Windows\System32\Drivers\umbus.sys
01:02:31.0334 0x11c8 C:\Windows\System32\Drivers\umbus.sys - ok
01:02:31.0334 0x11c8 [ 9B08F939F313CC8D57789C528F6B4C4B, 3CC2E9BC7EAF7F193DB53A91B706369077CAD769F3585823389564235FCD09EE ] C:\Windows\System32\Drivers\atikmpag.sys
01:02:31.0334 0x11c8 C:\Windows\System32\Drivers\atikmpag.sys - ok
01:02:31.0349 0x11c8 [ 60996602A7111FD2D086E803F33E4282, E62A91C90F8542990BEA4E6A5D9DD3D070F4EB23B4C13414C5DA2B0219509749 ] C:\Windows\System32\Drivers\fastfat.sys
01:02:31.0349 0x11c8 C:\Windows\System32\Drivers\fastfat.sys - ok
01:02:31.0349 0x11c8 [ 8EEBE772FA7D2A6436D6DBDE5EC7191B, B6108A3DF9348D5500FC741AEACFD94044AE4AA5314DEDCF4A4B491F12E7AC15 ] C:\Windows\System32\Drivers\atikmdag.sys
01:02:31.0349 0x11c8 C:\Windows\System32\Drivers\atikmdag.sys - ok
01:02:31.0349 0x11c8 [ 16F6F6B7903B913AB41AB848C8BB5658, 7304257048CB42E5274B3F6400F4A053A38E3B70A157662FE9D2B7C5979DE851 ] C:\Windows\System32\Drivers\AiCharger.sys
01:02:31.0349 0x11c8 C:\Windows\System32\Drivers\AiCharger.sys - ok
01:02:31.0365 0x11c8 [ 7D87B5B6C7188D553E11B59DC7F0B111, FC633DB71E1D72E8AD8F89BBB54324CC6ED17F5594EF55DD0BDB58EE1F601FF5 ] C:\Windows\System32\Drivers\hdaudbus.sys
01:02:31.0365 0x11c8 C:\Windows\System32\Drivers\hdaudbus.sys - ok
01:02:31.0365 0x11c8 [ 9CD4259AD15F84DE27B94A956C978D6C, F3289BBB1C52E49D8F76D07877541A74DFB7AD3E950C2E58A2C6CDC443F824CF ] C:\Windows\System32\Drivers\USBXHCI.SYS
01:02:31.0365 0x11c8 C:\Windows\System32\Drivers\USBXHCI.SYS - ok
01:02:31.0365 0x11c8 [ 1ED222DFE6C13DA50FE081ABF90CAFE1, B3DFAE29D2E08E2A5ABEF8B4D2C03CD25EE22B11D6E0B6BFCAC2D09B8D73AD49 ] C:\Windows\System32\Drivers\UCX01000.SYS
01:02:31.0365 0x11c8 C:\Windows\System32\Drivers\UCX01000.SYS - ok
01:02:31.0381 0x11c8 [ 4875DC63E548812C75D4FDEF84970C89, 6A29306BAB6F95F0384E16533A9588A654A6E3CFC35D55A4CEB2B14EF34EEE19 ] C:\Windows\System32\Drivers\usbfilter.sys
01:02:31.0381 0x11c8 C:\Windows\System32\Drivers\usbfilter.sys - ok
01:02:31.0381 0x11c8 [ 169629C36CB835A36E23BBC37664401E, 127154A2F45E91444BF272B05B5FF887895438CC650F309997123FF83B6B1ABA ] C:\Windows\System32\Drivers\usbport.sys
01:02:31.0381 0x11c8 C:\Windows\System32\Drivers\usbport.sys - ok
01:02:31.0381 0x11c8 [ 52F267AEE8CA5AA5CEB88C6A71EE1E86, 93E2CC1D4A56A3BBDD85020A8F4AD1B9B119953DB83A155C56D667924D5D8A02 ] C:\Windows\System32\Drivers\usbehci.sys
01:02:31.0381 0x11c8 C:\Windows\System32\Drivers\usbehci.sys - ok
01:02:31.0396 0x11c8 [ EC1303E3DBF312B846377A84C0D15F27, D710EA9DC98FD157DF6B312AF5D716DD0AD2F3DF2351571DEA399642BC023EDD ] C:\Windows\System32\Drivers\usbohci.sys
01:02:31.0396 0x11c8 C:\Windows\System32\Drivers\usbohci.sys - ok
01:02:31.0396 0x11c8 [ 437EB91CB20144375DDE145149778405, 5E76CDE2B3C852755F6E54AF774E9BECDF472103D83B815899333DE268536B98 ] C:\Windows\System32\Drivers\AsusTP.sys
01:02:31.0396 0x11c8 C:\Windows\System32\Drivers\AsusTP.sys - ok
01:02:31.0396 0x11c8 [ C9E9CBF73AFFBFE3E801EFB516787BA3, 1A850D614BDA6AA4195CC657702BC6242BA51B90131717743182AA160F65E72C ] C:\Windows\System32\Drivers\i8042prt.sys
01:02:31.0396 0x11c8 C:\Windows\System32\Drivers\i8042prt.sys - ok
01:02:31.0396 0x11c8 [ 618446B98C79776654340CE27C73485E, EFE7169FDD545933B5949DA2D09266971C0C3E6894E7BD8AFE29E41567C72B16 ] C:\Windows\System32\Drivers\mouclass.sys
01:02:31.0396 0x11c8 C:\Windows\System32\Drivers\mouclass.sys - ok
01:02:31.0412 0x11c8 [ 8FBD94B69D6423E20ABCD59D86368B21, 218EF992095E365EC917413749856A64D55D8129D77098E24D670843233377F4 ] C:\Windows\System32\Drivers\kbdclass.sys
01:02:31.0412 0x11c8 C:\Windows\System32\Drivers\kbdclass.sys - ok
01:02:31.0412 0x11c8 [ A8080BEBCDB7A16495CE1205921DCAC5, D4B0EF97B75BF75934A0BEEE48CACD20E8F505600C3A07243DF7627680EE8552 ] C:\Windows\System32\Drivers\kbfiltr.sys
01:02:31.0412 0x11c8 C:\Windows\System32\Drivers\kbfiltr.sys - ok
01:02:31.0412 0x11c8 [ A27CF856218B1B1442A7A3B5CF94B4B9, A3BBF36034BBF92E81FDDB9E22370D9AF132997593452BEAAEDCBA43BC5F5D79 ] C:\Windows\System32\Drivers\sdbus.sys
01:02:31.0412 0x11c8 C:\Windows\System32\Drivers\sdbus.sys - ok
01:02:31.0427 0x11c8 [ BD0CA4F831A9DAFC2D0393431A497593, 2084EC0DB12E84E645D1C4A1F4D10FDE36B008C98C44E8F4D10BCFE8F0199F97 ] C:\Windows\System32\Drivers\athw8x.sys
01:02:31.0427 0x11c8 C:\Windows\System32\Drivers\athw8x.sys - ok
01:02:31.0427 0x11c8 [ 2E5B349ACDA36C20612795754DB93312, 323A623FEF29F20E364528B58CF5C188B550F2CD38E9ED64B34071C74B9BC391 ] C:\Windows\System32\ws2_32.dll
01:02:31.0427 0x11c8 C:\Windows\System32\ws2_32.dll - ok
01:02:31.0427 0x11c8 [ 62460A45435A26A334907E3F2EA45611, FEF86E05117CC0AAB8211CA1542776EB620BD4699BD590D91F16621ED35B9824 ] C:\Windows\System32\Drivers\vwifibus.sys
01:02:31.0427 0x11c8 C:\Windows\System32\Drivers\vwifibus.sys - ok
01:02:31.0443 0x11c8 [ 34DA0D14F5C3F1883A331AFB975AB434, BB5D580C1DCAE59CC1DB75C411A5A4DDF435931469E7EBFF5DFDADBFE07ADEBF ] C:\Windows\System32\Drivers\Rt630x64.sys
01:02:31.0443 0x11c8 C:\Windows\System32\Drivers\Rt630x64.sys - ok
01:02:31.0443 0x11c8 [ 81402FF3373CE4DF77D5C874E369A985, 83F2091A6D97314CD3216176365ABD1D0FB74686BA457022712DE8F355AD1D90 ] C:\Windows\System32\Drivers\amdppm.sys
01:02:31.0443 0x11c8 C:\Windows\System32\Drivers\amdppm.sys - ok
01:02:31.0443 0x11c8 [ 6326DA7A97801E86B6E9A33B3EEFC561, 1ED99784D1D3E034661115A6AA87A59359AFECF70C8A2124C64B587623A48F44 ] C:\Windows\System32\Drivers\battc.sys
01:02:31.0443 0x11c8 C:\Windows\System32\Drivers\battc.sys - ok
01:02:31.0459 0x11c8 [ 2DC8538A2260647484A6C921CA837313, 094059DD66B0C50A1CAE288F920107B0B6AD1AA5758284E35B92C131EDEA30EA ] C:\Windows\System32\Drivers\CmBatt.sys
01:02:31.0459 0x11c8 C:\Windows\System32\Drivers\CmBatt.sys - ok
01:02:31.0459 0x11c8 [ E2A596CACFC6504306CDB7B593B90084, DF89CF57249553CE922C841F18B99A213185FA1099C053B9BB8C0F6E5BC3FEC0 ] C:\Windows\System32\Drivers\wmiacpi.sys
01:02:31.0459 0x11c8 C:\Windows\System32\Drivers\wmiacpi.sys - ok
01:02:31.0459 0x11c8 [ A9F2301B8D28BB4D887F5AEBB55ACB3A, 886B04224CA0A90B4FD0B9F8D243EED4FBA367D078FB1CAF99EE671FE1FCEC27 ] C:\Windows\System32\Drivers\AsHIDSwitch64.sys
01:02:31.0459 0x11c8 C:\Windows\System32\Drivers\AsHIDSwitch64.sys - ok
01:02:31.0459 0x11c8 [ EB7FACE654E463774C9DEDD1C7B67F91, C890C0B95035B08552478459877FB22A62529A4F361055716BDF0FD651F13996 ] C:\Windows\System32\Drivers\hidclass.sys
01:02:31.0459 0x11c8 C:\Windows\System32\Drivers\hidclass.sys - ok
01:02:31.0474 0x11c8 [ 436188BB139D51E4A763D1D356C90EE3, 2E3504B78C96B535AFC5CED3D162E5FFFD70AF572196CDBC45EB8FF126F17DC9 ] C:\Windows\System32\Drivers\hidparse.sys
01:02:31.0474 0x11c8 C:\Windows\System32\Drivers\hidparse.sys - ok
01:02:31.0474 0x11c8 [ 362D47E5B4D67270DE4B8606036F4ADD, 716E229C68D91AEA5B5629F60133D5CBDC0C95ABA54D9DC6264E923CAF4DC6C0 ] C:\Windows\System32\Drivers\raspptp.sys
01:02:31.0474 0x11c8 C:\Windows\System32\Drivers\raspptp.sys - ok
01:02:31.0474 0x11c8 [ A14D625C5AEE5FFE0F47D1A1D419FAAE, 1229B81C23340AD5B436B1FD227876EB41715CE6BD270BA367F18879D26B8F04 ] C:\Windows\System32\Drivers\rasl2tp.sys
01:02:31.0474 0x11c8 C:\Windows\System32\Drivers\rasl2tp.sys - ok
01:02:31.0490 0x11c8 [ 00695B9C2DB6111064499C529E90C042, 3CD4DF4D8001C2BBF52EEEB1F0D587209878BEAC339D268892477AD840D490F1 ] C:\Windows\System32\Drivers\raspppoe.sys
01:02:31.0490 0x11c8 C:\Windows\System32\Drivers\raspppoe.sys - ok
01:02:31.0490 0x11c8 [ 48258ED8A46D0F39ACBF891336250E89, C286E95C64A5B561699A3AEE64F4C11FEF9BF2070D72C90E68C13C15C150AA92 ] C:\Windows\System32\Drivers\ks.sys
01:02:31.0490 0x11c8 C:\Windows\System32\Drivers\ks.sys - ok
01:02:31.0490 0x11c8 [ CA7DF5EC95D8DE0DD24BE7FF97369F68, 153E6F716CA935DBCACB8FF1BB8DE5F5551CE3D18878225470E45893CA69BDB8 ] C:\Windows\System32\Drivers\rdpbus.sys
01:02:31.0490 0x11c8 C:\Windows\System32\Drivers\rdpbus.sys - ok
01:02:31.0505 0x11c8 [ 4AFD66AAE74FFB5986BC240744DC5FC9, 0C9347614E3FD3B4D3B29FA4A5DA23FF6EE4CD9A1FFC378B855B8DE61B2876CF ] C:\Windows\System32\Drivers\swenum.sys
01:02:31.0505 0x11c8 C:\Windows\System32\Drivers\swenum.sys - ok
01:02:31.0505 0x11c8 [ CE6EBC0AD38CC6482D8FBB744FF15CE2, B8712DB2E574ECFBC840FAAFB874644AB56909382BA2A5A8BC599874BBEAA543 ] C:\Windows\System32\Drivers\ndproxy.sys
01:02:31.0505 0x11c8 C:\Windows\System32\Drivers\ndproxy.sys - ok
01:02:31.0505 0x11c8 [ 3FA129BFC7808A2BB7681BEAF339FACD, C6CC494F3EF03318C8063D96EE4A7E361F05E440729A2CD59E2553260988473F ] C:\Windows\System32\Drivers\usbd.sys
01:02:31.0505 0x11c8 C:\Windows\System32\Drivers\usbd.sys - ok
01:02:31.0521 0x11c8 [ FBB6794E3BBAD92D66D59D206C1F849F, CEA5B07518699F09B2ABA372312FF0769B913DC4C43CC142BDB25274B52825DA ] C:\Windows\System32\Drivers\usbhub.sys
01:02:31.0521 0x11c8 C:\Windows\System32\Drivers\usbhub.sys - ok
01:02:31.0521 0x11c8 [ 2693E8A75E402CA705C99F1C84CC5F95, 036D272EFB447087C080F84F22D5D00CABC3DF2A6F1AF9B210E566DBCA5C54ED ] C:\Windows\System32\iertutil.dll
01:02:31.0521 0x11c8 C:\Windows\System32\iertutil.dll - ok
01:02:31.0521 0x11c8 [ 46501A8D9CF0383A104120810E1BABA6, 8062AB1FC35F61448D08E26919FD7DA3F91D807C912E41321918F24C4ADBBA1D ] C:\Windows\System32\shlwapi.dll
01:02:31.0521 0x11c8 C:\Windows\System32\shlwapi.dll - ok
01:02:31.0521 0x11c8 [ A521325EB5667478229712EB22F5326A, EDC702BB1982360FA3FF886F756E1EBE9111DF8EC572F9DEDBFC70BC51668587 ] C:\Windows\System32\gdi32.dll
01:02:31.0521 0x11c8 C:\Windows\System32\gdi32.dll - ok
01:02:31.0537 0x11c8 [ C3D51000E8FBEF76BC91E145B0D7FC67, 5B7F37042B51C6321D8AC3E31385E2A6742523EB74A23BA43662738AFF14C09C ] C:\Windows\System32\comdlg32.dll
01:02:31.0537 0x11c8 C:\Windows\System32\comdlg32.dll - ok
01:02:31.0537 0x11c8 [ 6B3F1596000CB33F73E14B6F7D5CFF82, 4DA1A14B39413F19D507B8371C99F9265E3FC17DC7F0842057B254C9D5ADD69D ] C:\Windows\System32\difxapi.dll
01:02:31.0537 0x11c8 C:\Windows\System32\difxapi.dll - ok
01:02:31.0537 0x11c8 [ AF34578AB034D1FD4906FDBEE7755CAF, 0F390306224752A5E4CD8422F5A21B0734FF227FE17DDBE978B62D691AA98289 ] C:\Windows\System32\shell32.dll
01:02:31.0537 0x11c8 C:\Windows\System32\shell32.dll - ok
01:02:31.0552 0x11c8 [ 7B886003CEEBF3C8E4FDF3586DCB3787, 7206C2F264EE3339460D5E1218B0A83E222CB670AB100A4FEB67AAF2FD6CC6C9 ] C:\Windows\System32\Drivers\USBHUB3.SYS
01:02:31.0552 0x11c8 C:\Windows\System32\Drivers\USBHUB3.SYS - ok
01:02:31.0552 0x11c8 [ 0E408E92811094970B2AF0C18D7489FC, B3A58546DD570B9AA48022DB810C8E9D4BF1B13974030B6FB7E024F64F166638 ] C:\Windows\System32\msctf.dll
01:02:31.0552 0x11c8 C:\Windows\System32\msctf.dll - ok
01:02:31.0552 0x11c8 [ 7926AE6B470E5BA7CC521280DB6B0760, 30F70B57753DAF870B42C11AFE9583CDBA91D84102F3C29A1E5C6FFAD532B034 ] C:\Windows\System32\ole32.dll
01:02:31.0552 0x11c8 C:\Windows\System32\ole32.dll - ok
01:02:31.0568 0x11c8 [ 61431B843615EA92C9AD8B041BDB2803, 3F2E67794DAE6633AB20894F6716B349983C2C4EEA73F362BD078A6B6B6B2346 ] C:\Windows\System32\urlmon.dll
01:02:31.0568 0x11c8 C:\Windows\System32\urlmon.dll - ok
01:02:31.0568 0x11c8 [ AECED95ACFDCF96757EDD8D0CFFE34B8, A76487C0572BC588BA0B87A15B1341674EA54C55AE95565086927007FF1EDFB6 ] C:\Windows\System32\msvcrt.dll
01:02:31.0568 0x11c8 C:\Windows\System32\msvcrt.dll - ok
01:02:31.0568 0x11c8 [ 75CB0458521FFA420E4230A931E4517B, 319B06970F31528A81C86BD965BE901D602158CA9822F6EAE7C3A51BE68EAD2E ] C:\Windows\System32\normaliz.dll
01:02:31.0568 0x11c8 C:\Windows\System32\normaliz.dll - ok
01:02:31.0568 0x11c8 [ A99AD14F26BDA7D7F27F76BC91B7EED7, 98491CFA2524A9650367BEF87814A58B198F467335C6AB7A446004A9D0320EC6 ] C:\Windows\System32\user32.dll
01:02:31.0568 0x11c8 C:\Windows\System32\user32.dll - ok
01:02:31.0583 0x11c8 [ B3FB7D980FE7F6FB78D83B87C0D2F7F3, F50630386DF512A6D5EED136E8C2921D3DAB0711F2DFF3381B09544F8E8F382B ] C:\Windows\System32\imagehlp.dll
01:02:31.0583 0x11c8 C:\Windows\System32\imagehlp.dll - ok
01:02:31.0583 0x11c8 [ 8B51BBAE42176AAB95026C2D07D13FDC, 1275E1C59D550D853C6366D9C4D610487B6C402F7375640D819B4F3EAE8C03F8 ] C:\Windows\System32\lpk.dll
01:02:31.0583 0x11c8 C:\Windows\System32\lpk.dll - ok
01:02:31.0583 0x11c8 [ 2AE813F005223E5B39E0C4D7B8314732, 3F24D78F2F0B61B9ED24A06D6792CF7732E3A17B94A8F71ACB29D04A8918113F ] C:\Windows\System32\wow64win.dll
01:02:31.0583 0x11c8 C:\Windows\System32\wow64win.dll - ok
01:02:31.0599 0x11c8 [ CE1C66AD4D56FCD7301E1EFEA71340EC, F03A1AD492DC7B2238914E65B5B9C6B0BCCC59ED2435BBAD8B78DDD82D34A011 ] C:\Windows\System32\oleaut32.dll
01:02:31.0599 0x11c8 C:\Windows\System32\oleaut32.dll - ok
01:02:31.0599 0x11c8 [ A74C6A6DA5A35686D7639ACDBD458BFB, FEC49FE822C462F6C2FE1B8480C119C0C524CD9BC800B5CD0524507461D5FEDC ] C:\Windows\System32\nsi.dll
01:02:31.0599 0x11c8 C:\Windows\System32\nsi.dll - ok
01:02:31.0599 0x11c8 [ 85B5B3797315F714A62AC986FFB2B17E, DF6590235BA33AFF42F7153646DA70C600EC607C1E01BBB58C468A54E0E795EF ] C:\Windows\System32\sechost.dll
01:02:31.0599 0x11c8 C:\Windows\System32\sechost.dll - ok
01:02:31.0615 0x11c8 [ DA66D6D4A0B77D57F5CF449B1231010F, 4F590109EC31F8761FDFD5C4149165B36B2A93C423F577FEF85B221DE8CE47C2 ] C:\Windows\System32\imm32.dll
01:02:31.0615 0x11c8 C:\Windows\System32\imm32.dll - ok
01:02:31.0615 0x11c8 [ 93FA1A230C11C8568DE3624263C35D39, BCE4F3C8BFE9458B81B53EA96EFC75287FED5F8C19BDF8190F3ACAF35C6BFB33 ] C:\Windows\System32\GdiPlus.dll
01:02:31.0615 0x11c8 C:\Windows\System32\GdiPlus.dll - ok
01:02:31.0615 0x11c8 [ E1B2751640FA7840CC5EB6E78513A632, 2F81762EDA6B2FCA88F4D78D3696E856A2D1F4809C9A53702D8069D9B643BF20 ] C:\Windows\System32\Wldap32.dll
01:02:31.0615 0x11c8 C:\Windows\System32\Wldap32.dll - ok
01:02:31.0615 0x11c8 [ 41AC2B1335317D2F8700E17328F71E0C, E570C6D2FD54BF5B0BBD321FBF4C9AAB115A5A92D6F7EF7FDF53F5F75088E1DD ] C:\Windows\System32\psapi.dll
01:02:31.0615 0x11c8 C:\Windows\System32\psapi.dll - ok
01:02:31.0630 0x11c8 [ DF8663D43AAA1289DE7E32961722BBBA, D3D02B1745EE6260F370EA5CBB88BAC239B68A831E77E18CFE68CEEEC9CA40CB ] C:\Windows\System32\setupapi.dll
01:02:31.0630 0x11c8 C:\Windows\System32\setupapi.dll - ok
01:02:31.0630 0x11c8 [ 2E3EDE81672653E0C759F0A1135F704F, DD670B8F3997D5C9B36968CD1E1EDCD5292E3EA553C2EAFCA8A0D5F88964D7A6 ] C:\Windows\System32\clbcatq.dll
01:02:31.0630 0x11c8 C:\Windows\System32\clbcatq.dll - ok
01:02:31.0630 0x11c8 [ 3A30E09AAA2BB060D39C8FA5E20D4FA3, F172A0F7194D73AD4A11A4B1C12459385C64F334E471C25E3471B8B57EED6E5C ] C:\Windows\System32\advapi32.dll
01:02:31.0630 0x11c8 C:\Windows\System32\advapi32.dll - ok
01:02:31.0646 0x11c8 [ B74C50954E234506548CBBF3933AF391, 50A1C0704069AAD9E7158689C521442CE8F29F47F247A6E3FCBCBB107E665ADA ] C:\Windows\System32\wow64.dll
01:02:31.0646 0x11c8 C:\Windows\System32\wow64.dll - ok
01:02:31.0646 0x11c8 [ 1E2E99B4FA9A5F0D9934F8B99B528A62, 89CE514C386A78D656E97AD2100A949A129D7B1EBBFF9500753C423C37D3EB33 ] C:\Windows\System32\wow64cpu.dll
01:02:31.0646 0x11c8 C:\Windows\System32\wow64cpu.dll - ok
01:02:31.0646 0x11c8 [ 652467DC0E67CF738972117C09D05571, 2C0902FEE71E9C13B9BDF4FBB4D84090725262746BA82BD2B79FD5B1D8650395 ] C:\Windows\System32\rpcrt4.dll
01:02:31.0646 0x11c8 C:\Windows\System32\rpcrt4.dll - ok
01:02:31.0661 0x11c8 [ 3C6933B638BB812F4084CF44AE698704, B2AA7FB2CEE9954E44574863DDDC830287EE77A2EC3D5BBF9A9278184ADB7059 ] C:\Windows\System32\kernel32.dll
01:02:31.0661 0x11c8 C:\Windows\System32\kernel32.dll - ok
01:02:31.0661 0x11c8 [ FD0F320A1C7C16A1A20F78BCA4F9D730, D1F1AFECAF2D94FBB0E2E72E8C325E21E53929412C657F8D8378D2AB00705874 ] C:\Windows\System32\wininet.dll
01:02:31.0661 0x11c8 C:\Windows\System32\wininet.dll - ok
01:02:31.0661 0x11c8 [ 0341C9184C252000D1AD396C71CFD860, 910155B34763EDA22EC7D63625B4177B00F8B3AA2F68B807E26B10BCB0540547 ] C:\Windows\System32\combase.dll
01:02:31.0661 0x11c8 C:\Windows\System32\combase.dll - ok
01:02:31.0677 0x11c8 [ C26780F936820DBB3A1323FC1C09E05F, A7F38B8959C668D02CED78306917FE8F7740CB199129DB5F9408FB728A66CC5F ] C:\Windows\System32\cfgmgr32.dll
01:02:31.0677 0x11c8 C:\Windows\System32\cfgmgr32.dll - ok
01:02:31.0677 0x11c8 [ 996604E515ACE3775D645A4FE0D66D4A, 6732BA3E1B0C899CE3A37874E1ED395273BCB11A99D5A5B9A76F9C5D4238FA3D ] C:\Windows\System32\wintrust.dll
01:02:31.0677 0x11c8 C:\Windows\System32\wintrust.dll - ok
01:02:31.0677 0x11c8 [ 03E223CC4AE2D2B55E400AD9C55449F6, D591ED45FD259EEC6FFDFBC8B2719C9B0D317FC289D07FF221205561671CD7AE ] C:\Windows\System32\comctl32.dll
01:02:31.0677 0x11c8 C:\Windows\System32\comctl32.dll - ok
01:02:31.0677 0x11c8 [ 51B6CB1852B49E150F7E8B8C2F4CB0F7, C069D14E79F01468521EE466AE5DC5757E53765B7A05567F9D8E3DE21EC1E7B5 ] C:\Windows\System32\devobj.dll
01:02:31.0677 0x11c8 C:\Windows\System32\devobj.dll - ok
01:02:31.0693 0x11c8 [ 3E1E4F7450830E92C58CA7B512213931, 10CC486808179751DA4A11ACAA89775D04FEDE19821BD03E36D48AC8DF1B72F7 ] C:\Windows\System32\KernelBase.dll
01:02:31.0693 0x11c8 C:\Windows\System32\KernelBase.dll - ok
01:02:31.0693 0x11c8 [ 9CFF2ACF6EF5A3456CA1FB5AF5CF8CEE, AE05F86530EB12355EE5B3A83C5B2BD0F9C9D69E48FBC04CD6C05DAA87971554 ] C:\Windows\System32\Drivers\drmk.sys
01:02:31.0693 0x11c8 C:\Windows\System32\Drivers\drmk.sys - ok
01:02:31.0693 0x11c8 [ 77A7112AA6BC03043705E3F4F62ECB12, F9388C5D750384466872098FAD463F7CC3DFB9E04E6A315F16005FA24A729159 ] C:\Windows\System32\Drivers\portcls.sys
01:02:31.0693 0x11c8 C:\Windows\System32\Drivers\portcls.sys - ok
01:02:31.0708 0x11c8 [ 6BDCC85422817FA53CD705ADE312CE6A, 2EBEDF34493B4AE34442A89ACBCDB2C39447F21FBB015BDD7935DE95DD217CD0 ] C:\Windows\System32\Drivers\RTKVHD64.sys
01:02:31.0708 0x11c8 C:\Windows\System32\Drivers\RTKVHD64.sys - ok
01:02:31.0708 0x11c8 [ 81492FEEBF2F26455B00EE8DBAE8A1B0, E33AA2DFB2D3BB30B02CDADA2EC290F86329DA3198327A653F39A843D86390B9 ] C:\Windows\System32\Drivers\ksthunk.sys
01:02:31.0708 0x11c8 C:\Windows\System32\Drivers\ksthunk.sys - ok
01:02:31.0708 0x11c8 [ 506907D2E7F3A5B67DBD39C00A788B7C, 618C91FB9F49C69F88A993F164D7E9E4B7CAD0F34DCF77CF0C6F259A28448171 ] C:\Windows\System32\Drivers\AtihdW86.sys
01:02:31.0708 0x11c8 C:\Windows\System32\Drivers\AtihdW86.sys - ok
01:02:31.0724 0x11c8 [ 74369A913837FB46C3B27373DA2ADF4E, 30CB6AD90520D410D914C5D654C8838DF13B2FC850EB7F0BFB2B937F9BC14E2E ] C:\Windows\System32\Drivers\sdstor.sys
01:02:31.0724 0x11c8 C:\Windows\System32\Drivers\sdstor.sys - ok
01:02:31.0724 0x11c8 [ B393753ECE9A9E2307CB1984ACF3DA9D, FE6B7A417E40C5D420A0F57619ECB31349C862EE5EDADF262BD27111964A943A ] C:\Windows\System32\Drivers\mfeavfk.sys
01:02:31.0724 0x11c8 C:\Windows\System32\Drivers\mfeavfk.sys - ok
01:02:31.0724 0x11c8 [ C52A1ABF03DD219375EA0F6A8BE941C3, CDE46E1BDDFB3D49AD2C1F246F186C8E8DCCC2866C5F2F2693B9484AF64501A2 ] C:\Windows\System32\Drivers\mfefirek.sys
01:02:31.0724 0x11c8 C:\Windows\System32\Drivers\mfefirek.sys - ok
01:02:31.0739 0x11c8 [ 2AF9F0E16D75B8F783A1ACE74EF51C9B, AADB8991174CCDA3ADE14AF3EFB3A9826EC17A0F989F449FF43010A99D8CAA1F ] C:\Windows\System32\Drivers\usbccgp.sys
01:02:31.0739 0x11c8 C:\Windows\System32\Drivers\usbccgp.sys - ok
01:02:31.0739 0x11c8 [ EFD55F2C466663F37412B843F6CC55F5, 0EF49FD60341B8B29749E73F825C6BEBCA1BFC5CC3E16FC5139E7D69CDF86CC2 ] C:\Windows\System32\crypt32.dll
01:02:31.0739 0x11c8 C:\Windows\System32\crypt32.dll - ok
01:02:31.0739 0x11c8 [ C763F7DC50C70E657DCB164FA9D92085, 9006A11034F128250DE9B918F478AB5B3AAD1685FA9B5BEC5FA259439DCFFAA1 ] C:\Windows\System32\msasn1.dll
01:02:31.0739 0x11c8 C:\Windows\System32\msasn1.dll - ok
01:02:31.0739 0x11c8 [ 562CAFDB2B2B004CDF4A3A97390CE18D, 0BDC4A37DB61B5B62CFFB3950E7E4C0C5082C2A695358414CF54E3388C52045A ] C:\Windows\SysWOW64\lpk.dll
01:02:31.0739 0x11c8 C:\Windows\SysWOW64\lpk.dll - ok
01:02:31.0755 0x11c8 [ BD321B58C0CC6C8196F8CF4EE226E830, 592D62425AFCF37E10088202B9DD01C22C20A9D4F5F562006D407B8B26CDBB3F ] C:\Windows\SysWOW64\normaliz.dll
01:02:31.0755 0x11c8 C:\Windows\SysWOW64\normaliz.dll - ok
01:02:31.0755 0x11c8 [ 810C46D7C3D5C94B056FF825E21B1D2E, CDEA74BB4F60CE9E4BFD2AED513615BCDC6222F47577E66BC430FD5FF28BAA4B ] C:\Windows\System32\win32k.sys
01:02:31.0755 0x11c8 C:\Windows\System32\win32k.sys - ok
01:02:31.0755 0x11c8 [ 1C510F9C2DB7393468EB789A96DAAFA8, ED20E82B4754BA3B93F70E85890505E6C3177C72B7F5BDC3AA465DB236CF0834 ] C:\Windows\System32\csrsrv.dll
01:02:31.0755 0x11c8 C:\Windows\System32\csrsrv.dll - ok
01:02:31.0771 0x11c8 [ 0D9F14739D05F8B8B028B539FC6F1F29, 07751B8D090F4E159C0E38FB569B3C781DC8AAF0CE5A9505AC4F37265B5F4654 ] C:\Windows\System32\csrss.exe
01:02:31.0771 0x11c8 C:\Windows\System32\csrss.exe - ok
01:02:31.0771 0x11c8 [ 09799E701B4327097E9F63D3FE221083, CF2B97D5B3D434D8E5547B2A86771C69A6F7F4857CAD70865B50462A04A27A48 ] C:\Windows\System32\Drivers\usbvideo.sys
01:02:31.0771 0x11c8 C:\Windows\System32\Drivers\usbvideo.sys - ok
01:02:31.0771 0x11c8 [ DDC1AFBF9DDF880CE9BD3896114D8DED, E2406231EA4D2689A5EDFA9BD1A1BC064359D8D23B37F113A18B5EAE3E2D4050 ] C:\Windows\System32\basesrv.dll
01:02:31.0771 0x11c8 C:\Windows\System32\basesrv.dll - ok
01:02:31.0771 0x11c8 [ E9343076AE704D20BB0D01F3AF3EFFEF, FF2CE4146945976F9480690505CECD3C7C719BAF0F633E6192C8272C75EF295D ] C:\Windows\System32\winsrv.dll
01:02:31.0771 0x11c8 C:\Windows\System32\winsrv.dll - ok
01:02:31.0786 0x11c8 [ 590B6F71BCDA4368B4BF7D8DF22B60F7, 5CED8ACCBBF373607A8CEC81E9F9856C450A73A969E07DF3218B85F444CA7D3F ] C:\Windows\System32\Drivers\hidusb.sys
01:02:31.0786 0x11c8 C:\Windows\System32\Drivers\hidusb.sys - ok
01:02:31.0786 0x11c8 [ CB2527B8B87D83E56FBF3944BBB6F606, F8DA5AF97B91099C58E14D1DACBCA02AF8F193E53A88DDC8CC4C0655A2E4F90B ] C:\Windows\System32\Drivers\mouhid.sys
01:02:31.0786 0x11c8 C:\Windows\System32\Drivers\mouhid.sys - ok
01:02:31.0786 0x11c8 [ 83EB0BF7E6EBD5B1AAC97F9DBD5EB935, CC3F4E09F8834C7293B607446FECFE3CBB9B9151E65AAD38E2A4A8B30244DE14 ] C:\Windows\System32\Drivers\monitor.sys
01:02:31.0786 0x11c8 C:\Windows\System32\Drivers\monitor.sys - ok
01:02:31.0802 0x11c8 [ BD7C6949984D19AAA609896B675E7357, 5B46538B27BC70F5A3805AA63F6AACDC780C7168468FB535F2D35CF26B9DEE06 ] C:\Windows\System32\sxssrv.dll
01:02:31.0802 0x11c8 C:\Windows\System32\sxssrv.dll - ok
01:02:31.0802 0x11c8 [ F14D77B1B3347ED08272B65A3F80B4CE, 355875455F744C2E02C7C9934636F8CD82ACB22DD86A81B05D093A0DFB562A4E ] C:\Windows\System32\tsddd.dll
01:02:31.0802 0x11c8 C:\Windows\System32\tsddd.dll - ok
01:02:31.0802 0x11c8 [ 4C7303709714F589A0809AC82F03CA84, 6D2BF13F52831C48A26A74FEB6458EDB4C578292C1B79AF419BF0BE9CA9A88FA ] C:\Windows\System32\profapi.dll
01:02:31.0802 0x11c8 C:\Windows\System32\profapi.dll - ok
01:02:31.0817 0x11c8 [ FE9AB232B56A12224E8A3F3F9878C9A3, 09326E764DAF190D1A888E6E4786FAE471EF93BEFB03ABB405357F6DED5F9ABC ] C:\Windows\System32\wininit.exe
01:02:31.0817 0x11c8 C:\Windows\System32\wininit.exe - ok
01:02:31.0817 0x11c8 [ 8144BCD1736C3C76978B8378556CA746, 4E1FE0847716C697360E3601CB6D842599DCD46C853C06D480BB66463D95F0D2 ] C:\Windows\System32\wininitext.dll
01:02:31.0817 0x11c8 C:\Windows\System32\wininitext.dll - ok
01:02:31.0817 0x11c8 [ 3491660B47A7CE7BC1B63C4E71E1E251, D80A462852D76AB1CA3D615FEA4B32951A55F9A75D21E66C92CA68494766C04D ] C:\Windows\System32\cdd.dll
01:02:31.0817 0x11c8 C:\Windows\System32\cdd.dll - ok
01:02:31.0833 0x11c8 [ FD777FE5B879BC921ED01A647143D709, 215DC626F3DEA5CA4C60D87CAD8B3167ED0C82A5316177B052A51DE9A494020A ] C:\Windows\System32\KBDUS.DLL
01:02:31.0833 0x11c8 C:\Windows\System32\KBDUS.DLL - ok
01:02:31.0833 0x11c8 [ 1F84B5F8DBDFFD36DF143C61CE25F12A, 915979FE0ABC6D6817564019CB02258183AD4CA74E709EEF5B3BFBB241AF638B ] C:\Windows\System32\winlogon.exe
01:02:31.0833 0x11c8 C:\Windows\System32\winlogon.exe - ok
01:02:31.0833 0x11c8 [ EF72CFB67C73A8751F3BC4F4C98EAD4C, 47A0E97C24FBBEA83954C32FCA98D69B5DF1CC59DA020030018CB9E23E7A8F69 ] C:\Windows\System32\powrprof.dll
01:02:31.0833 0x11c8 C:\Windows\System32\powrprof.dll - ok
01:02:31.0833 0x11c8 [ 10564D7D4FBAABDB826E9D607679C85F, 1E85B8F5A24CB9261A55BF9D16B365D1DC5F36EC409E6086481F736FD60AB08C ] C:\Windows\System32\WlS0WndH.dll
01:02:31.0833 0x11c8 C:\Windows\System32\WlS0WndH.dll - ok
01:02:31.0849 0x11c8 [ 7679414791657155EDF45D388325BEFE, 70467B3284BF0E85E4BD25E702D60C6299621B2FEE2CBB764BC1D4F78285EA67 ] C:\Windows\System32\sxs.dll
01:02:31.0849 0x11c8 C:\Windows\System32\sxs.dll - ok
01:02:31.0849 0x11c8 [ C0FAB7DDA13CE5593A48B40056AA278D, 7CDA1C4A43E25A284B8DE20E6065199BC6569EF6BAB5D034A73DA3B559D65ABF ] C:\Windows\System32\samcli.dll
01:02:31.0849 0x11c8 C:\Windows\System32\samcli.dll - ok
01:02:31.0849 0x11c8 [ 9D7EAFBAD213566D70BAE9A14B847666, 9E181A029835789C449D6D756F5CDFCA3712A393DEEA96831DB2AAC12B1169D1 ] C:\Windows\System32\winsta.dll
01:02:31.0849 0x11c8 C:\Windows\System32\winsta.dll - ok
01:02:31.0864 0x11c8 [ 7F4E2FB897E35952C5B22BE48047FCA8, 68E1AA815C667C0CBAA931D27746F8544943E51398D798D027C24A44EA2A64A2 ] C:\Windows\System32\bcryptprimitives.dll
01:02:31.0864 0x11c8 C:\Windows\System32\bcryptprimitives.dll - ok
01:02:31.0864 0x11c8 [ 2577AEA213B0B70FF5B4E3D180E66B11, A5C6D937BF2FE09FE63FD87528F853567A40C94AEC492E9F9B9CA9D9121B07D2 ] C:\Windows\System32\cryptbase.dll
01:02:31.0864 0x11c8 C:\Windows\System32\cryptbase.dll - ok
01:02:31.0864 0x11c8 [ E8001E0F56F0B0F5D204EF865F47372B, 6B1A23443F4F9737CB654AD7257968C080958C1AA5C0615DCD2A00BA9278259F ] C:\Windows\System32\wtsapi32.dll
01:02:31.0864 0x11c8 C:\Windows\System32\wtsapi32.dll - ok
01:02:31.0880 0x11c8 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] C:\Windows\System32\lsass.exe
01:02:31.0880 0x11c8 C:\Windows\System32\lsass.exe - ok
01:02:31.0880 0x11c8 [ 8F226143046435C75C033B0C52E90FFE, 54FA316485B57D7B8104FE621F5F40DEC35E3D57C3DF46B5F7EACF57445FE7CA ] C:\Windows\System32\services.exe
01:02:31.0880 0x11c8 C:\Windows\System32\services.exe - ok
01:02:31.0880 0x11c8 [ F0DBBD4BA994A4FD44AC2BFB43A2C622, 7496D3E6837E0CCECCA0D9F59FCDBCF153286DBE2A5D2CCEA2A92B561503BF44 ] C:\Windows\System32\lsasrv.dll
01:02:31.0880 0x11c8 C:\Windows\System32\lsasrv.dll - ok
01:02:31.0895 0x11c8 [ D1AEFA79EE1EE089D03249BE581D5DD6, E8A41BB6004F10AA829F7DD348F3349FB891B28F7CCE6E6AFC237D9A21EB07F3 ] C:\Windows\System32\sspicli.dll
01:02:31.0895 0x11c8 C:\Windows\System32\sspicli.dll - ok
01:02:31.0895 0x11c8 [ 90BEE4B9728DDCF9787100CB8A04815C, 036D94C59ECF3A9C1EF193AA66CEFC384B628D1F36BBE1648FDF8F1778659AE2 ] C:\Windows\System32\sspisrv.dll
01:02:31.0895 0x11c8 C:\Windows\System32\sspisrv.dll - ok
01:02:31.0895 0x11c8 [ ECFC9AF8D1A6E16223E1B17EA732FA08, BF74E48E2F14DCBA257473FCCEC3E512C7283335610205E3B84CB16449E86335 ] C:\Windows\System32\scext.dll
01:02:31.0895 0x11c8 C:\Windows\System32\scext.dll - ok
01:02:31.0911 0x11c8 [ 4B5CB620A0C4EE8E56546FCE8F28E083, C7A89FCFE27DAA88A0017427CF60508BFA6C70DE19BF84AB063175708144C3E8 ] C:\Windows\System32\ubpm.dll
01:02:31.0911 0x11c8 C:\Windows\System32\ubpm.dll - ok
01:02:31.0911 0x11c8 [ 1B5B5563C5008911D77398B8FDC6F757, 405BEE5000DA6B968BFAB700CA623389FA4F334827268BD5582DBFAB35C5C2F5 ] C:\Windows\System32\samsrv.dll
01:02:31.0911 0x11c8 C:\Windows\System32\samsrv.dll - ok
01:02:31.0911 0x11c8 [ DF8111BDC2F35006F0CD471A2CC65665, 9469D6E40D6F66E3171CD1C7765DC2E6CC0D62699B64A68AD04C6CED21CA126A ] C:\Windows\System32\SPInf.dll
01:02:31.0911 0x11c8 C:\Windows\System32\SPInf.dll - ok
01:02:31.0927 0x11c8 [ D71A882FE7A74F01B92F6A2C74305E45, B8E7A987B58DED89CC6423E286E052A110B0448EC9E15B9E00FD8303C192A5D2 ] C:\Windows\System32\srvcli.dll
01:02:31.0927 0x11c8 C:\Windows\System32\srvcli.dll - ok
01:02:31.0927 0x11c8 [ E3D5F59826899393970533A8E6AB34EE, 1FE5E545C1CDE06843B8E79FA378A7D6DFAF438CBEEF886D8035E56B45A45FA5 ] C:\Windows\System32\bcrypt.dll
01:02:31.0927 0x11c8 C:\Windows\System32\bcrypt.dll - ok
01:02:31.0927 0x11c8 [ EA697BA99655FA048BB297EE9A3CCBC7, 1AD4B8717B41AA79D5AAC5E49619DAB3FBFA528B4B20A037317B5C465F78F040 ] C:\Windows\System32\ncrypt.dll
01:02:31.0927 0x11c8 C:\Windows\System32\ncrypt.dll - ok
01:02:31.0927 0x11c8 [ A6FE1FCAB4AC686D6BD7884B317935F7, 08B3BD92505F781E23AA823E9F34D4F49033EAE13FD75A4C47DD81BBA7BA385C ] C:\Windows\System32\ntasn1.dll
01:02:31.0942 0x11c8 C:\Windows\System32\ntasn1.dll - ok
01:02:31.0942 0x11c8 [ 39084062AB7B7CA19DBF0AA4581D833B, F70757667060222A94037D4B62FA236B6EFC5D4CD72559F8F21F562002D93B83 ] C:\Windows\System32\msprivs.dll
01:02:31.0942 0x11c8 C:\Windows\System32\msprivs.dll - ok
01:02:31.0942 0x11c8 [ 21AA2C2564DDB9F3B83CE322D9E97F9C, 492B583B3182DF3B80C2E237DD77656711FACFB97A19F8F3E52A9E34E6F2D1DB ] C:\Windows\System32\netjoin.dll
01:02:31.0942 0x11c8 C:\Windows\System32\netjoin.dll - ok
01:02:31.0942 0x11c8 [ 058B0CDA8E19AF2A7E6CFA7604BB8D14, D0F645CB1F43A998C97FAEFAE511A752DECF5C82588A1E8EDB29DE96618DA0AE ] C:\Windows\System32\cryptdll.dll
01:02:31.0942 0x11c8 C:\Windows\System32\cryptdll.dll - ok
01:02:31.0958 0x11c8 [ 2C8551E2AD2E2C1E7F18D68D90917DAD, 30E89B48399C59FBAD63269269F6C9D63E262A7133904AAB69B0D38F63E2F872 ] C:\Windows\System32\kerberos.dll
01:02:31.0958 0x11c8 C:\Windows\System32\kerberos.dll - ok
01:02:31.0958 0x11c8 [ 016EDF8CF3BC0428F9A910637E918808, AC099B0BC04A6F4A2599E3305FA1E1FB3B90E4B4D71F37C616AE8B9C3A20B12A ] C:\Windows\System32\negoexts.dll
01:02:31.0958 0x11c8 C:\Windows\System32\negoexts.dll - ok
01:02:31.0958 0x11c8 [ 8F9F55C4B857E35552D78A2AAF1BADF9, D5F17DEB76C4B96177798C15C81A34FC0A7EB9DBF70A92395BBF5083FCF215E7 ] C:\Windows\System32\cryptsp.dll
01:02:31.0958 0x11c8 C:\Windows\System32\cryptsp.dll - ok
01:02:31.0973 0x11c8 [ F4948E3A3CC52364B6583B74A4239A38, 9F6C8C2A097E6D3B3CFE77A124DF63CDA09339FF705A834957B0825D822BB339 ] C:\Windows\System32\mswsock.dll
01:02:31.0973 0x11c8 C:\Windows\System32\mswsock.dll - ok
01:02:31.0973 0x11c8 [ 4543E23FF678CA9D2C943A45B5B82A17, 1025FEF57E115A84217BE0F0DAFE0F2FA65F69F1C7FF0103FAE82816696B419B ] C:\Windows\System32\msv1_0.dll
01:02:31.0973 0x11c8 C:\Windows\System32\msv1_0.dll - ok
01:02:31.0973 0x11c8 [ FDC70965F0FC9DFEBC919627DED5DDFF, 54ED1E203720963982706F0D402449059A0C6057A771A72903122A3C41BF5E14 ] C:\Windows\System32\netlogon.dll
01:02:31.0973 0x11c8 C:\Windows\System32\netlogon.dll - ok
01:02:31.0989 0x11c8 [ B16A14270DB26838B48A06835FDBBFB4, E12D0314E4F09FBA9CC85D7191ADDFE70F6419AA120FFC6C14E0F3B5FFB68195 ] C:\Windows\System32\dnsapi.dll
01:02:31.0989 0x11c8 C:\Windows\System32\dnsapi.dll - ok
01:02:31.0989 0x11c8 [ 113E9BB020461D5F9D0C0C6EA29C513F, BA8F05244F9F500026D647C3329FE965119DE9E6E20AEF20ED6A806CC9AACC17 ] C:\Windows\System32\logoncli.dll
01:02:31.0989 0x11c8 C:\Windows\System32\logoncli.dll - ok
01:02:31.0989 0x11c8 [ 72FCEDD4EEE5F1C38F84F0947A26950E, 9B9A14632160346B69973CDAA38D8EC6D5648E161C3ABE984159CB9EADD74093 ] C:\Windows\System32\userenv.dll
01:02:31.0989 0x11c8 C:\Windows\System32\userenv.dll - ok
01:02:32.0005 0x11c8 [ 6847834F846A4CF1CD4FC86334B4879D, 217B27867A0BAB98814CD6F66C281147D33492D39DFEDBDF0552CAC624C1F0A9 ] C:\Windows\System32\schannel.dll
01:02:32.0005 0x11c8 C:\Windows\System32\schannel.dll - ok
01:02:32.0005 0x11c8 [ 0DFEBCD834EF05A112BF90F8A7993212, 0059B928F19C832DE87B515D64E4D51DA5D8A4E221444CDA2AC0EA6356E1B2D1 ] C:\Windows\System32\wdigest.dll
01:02:32.0005 0x11c8 C:\Windows\System32\wdigest.dll - ok
01:02:32.0005 0x11c8 [ BB4FCE5019D973A8BA038A03C7ECECDD, 2981F6E626C582965CBED2D9DFD6C9D575D4298DB4DA67DFDDCD860F49AE3700 ] C:\Windows\System32\rsaenh.dll
01:02:32.0005 0x11c8 C:\Windows\System32\rsaenh.dll - ok
01:02:32.0005 0x11c8 [ CC6D17EDB5B1C73523E4B7D6EB7BBC09, BBFC18708273C7D2E34FFD4F63A7D86C3E0BA3BE3A35CB2C773440EE77E67CAE ] C:\Windows\System32\TSpkg.dll
01:02:32.0005 0x11c8 C:\Windows\System32\TSpkg.dll - ok
01:02:32.0020 0x11c8 [ 0059D2032BCA18EBBC03D6D1308892F6, AE1C8DBCBAE564D9814C6AFB52C2B9A493FCC9BC9E789DAD080132828FD09280 ] C:\Windows\System32\pku2u.dll
01:02:32.0020 0x11c8 C:\Windows\System32\pku2u.dll - ok
01:02:32.0020 0x11c8 [ 5B92CE37EBE65A5424074E50C48AA52E, 1B8679051E25E06E76B539AECFAD4E700A8A2ADDE9C2E6EC949FE68FC456E09A ] C:\Windows\System32\livessp.dll
01:02:32.0020 0x11c8 C:\Windows\System32\livessp.dll - ok
01:02:32.0020 0x11c8 [ 2F5E3751FAB4AE994262E2FB9CEDC885, 6B2429CF621D05D72CBF38163C92BC9508D72EB5D4951382321A16859CE871FA ] C:\Windows\System32\dpapisrv.dll
01:02:32.0020 0x11c8 C:\Windows\System32\dpapisrv.dll - ok
01:02:32.0036 0x11c8 [ D8BEFDDADA7125E5A4DD37EA5AC620D9, E91E26353E2151C755C5D5B4F25084F0CEF688A9F1CA7FF309C57C607BCF9DF4 ] C:\Windows\System32\efslsaext.dll
01:02:32.0036 0x11c8 C:\Windows\System32\efslsaext.dll - ok
01:02:32.0036 0x11c8 [ 8EA33056071F6EB7A97C68E978F01573, 0A3FEF2C7B00CB6DE1CA6216BE06C6F3D61B15CC3A06F9B0F1BCB8C1443A25EA ] C:\Windows\System32\credssp.dll
01:02:32.0036 0x11c8 C:\Windows\System32\credssp.dll - ok
01:02:32.0036 0x11c8 [ 4F6E1CA672370A9BCAC049CE3AB7F666, E984A9803615B2C90933694B65A7D9B95919680F29354B9E93126889BE2BF5B4 ] C:\Windows\System32\scecli.dll
01:02:32.0036 0x11c8 C:\Windows\System32\scecli.dll - ok
01:02:32.0051 0x11c8 [ C0D0F60B47079C2AAD30B836326313F4, 0EB155BCA65D4B7FBE3DCB12832DEE555449ED21D403EBE6CED1F1B9B81A7FE4 ] C:\Windows\System32\scesrv.dll
01:02:32.0051 0x11c8 C:\Windows\System32\scesrv.dll - ok
01:02:32.0051 0x11c8 [ 0D7B278E91F0F07BBC4DFDF634BEFDB5, 3EC751DE5364FB5F4B965338A4F741625C5EB85187419B7242EA9678C6250148 ] C:\Windows\System32\authz.dll
01:02:32.0051 0x11c8 C:\Windows\System32\authz.dll - ok
01:02:32.0051 0x11c8 [ E17EA93682D88F1CE94CCE2A804FA691, DDD2A8EB5100EA96983FFBC38097EC5C4BEB9E3335D3A124261776A2E4981FDC ] C:\Windows\System32\netutils.dll
01:02:32.0051 0x11c8 C:\Windows\System32\netutils.dll - ok
01:02:32.0051 0x11c8 [ EDE27EACE742EE2888C5DD36400A2EC0, 4AE0C5191FE9D93E1BE2B99C0C64BF3CA43272CD66003139476192F946F0BEC4 ] C:\Windows\System32\svchost.exe
01:02:32.0051 0x11c8 C:\Windows\System32\svchost.exe - ok
01:02:32.0067 0x11c8 [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] C:\Windows\System32\umpnpmgr.dll
01:02:32.0067 0x11c8 C:\Windows\System32\umpnpmgr.dll - ok
01:02:32.0067 0x11c8 [ 0CE9A21C24E62DFD77E273B56B11C2C7, 5380B306AAE6BE15472874994DA013D43D10F3BF637C81DA2E5AD05C0DC7EECA ] C:\Windows\System32\devrtl.dll
01:02:32.0067 0x11c8 C:\Windows\System32\devrtl.dll - ok
01:02:32.0083 0x11c8 [ F1E067F56373F11EA4B785CAE823740A, 69BD30E64DA17595FF29C9C9FF9AD4F2F4BE29B688FBAC9DABB2FA9D13A47FF0 ] C:\Windows\System32\umpo.dll
01:02:32.0083 0x11c8 C:\Windows\System32\umpo.dll - ok
01:02:32.0083 0x11c8 [ 5C2758C697F6EC1C3771902D5FDF8079, 1A1BC2B91181D4B9F6B05A7A25E73FAF86C89DE6C246D75C6497CCB784D53C78 ] C:\Windows\System32\gpapi.dll
01:02:32.0083 0x11c8 C:\Windows\System32\gpapi.dll - ok
01:02:32.0083 0x11c8 [ 2BA42F109B70D10E2F12072AD5BFFE27, ACB02141234D0D83899602F192AF55BDEACC33D14362A97CDDEC971F9B2EB59A ] C:\Windows\System32\hid.dll
01:02:32.0083 0x11c8 C:\Windows\System32\hid.dll - ok
01:02:32.0098 0x11c8 [ 61A8BF961A244C60697814D8CC2741FA, 1F67DEC687A6FDBDC62E5CB52CC177673A601676605949B6F2132AC3BCEFA054 ] C:\Windows\System32\pcwum.dll
01:02:32.0098 0x11c8 C:\Windows\System32\pcwum.dll - ok
01:02:32.0098 0x11c8 [ 58CE8F135CC6F3271603A8BB094B1967, A47AD0441433A583766A90117176C8ECB42D9ACE4AA6B593010C2140395A8A8F ] C:\Windows\System32\umpoext.dll
01:02:32.0098 0x11c8 C:\Windows\System32\umpoext.dll - ok
01:02:32.0098 0x11c8 [ 2BDC5D711FA61307CE6190D47C956368, 6BCDC6CBB9783F1ABE8957BDA94AF977DFB2A310BB6D19085EFC8609C97FD180 ] C:\Windows\System32\Drivers\luafv.sys
01:02:32.0098 0x11c8 C:\Windows\System32\Drivers\luafv.sys - ok
01:02:32.0114 0x11c8 [ 0BB97D43299910CBFBA59C461B99B910, 27C22D9D9EE8A410D7396960DA93E9E260D4DCDD38DCE06E85E45C5E24C067DE ] C:\Windows\System32\Drivers\mbam.sys
01:02:32.0114 0x11c8 C:\Windows\System32\Drivers\mbam.sys - ok
01:02:32.0114 0x11c8 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] C:\Windows\System32\Drivers\WUDFPf.sys
01:02:32.0114 0x11c8 C:\Windows\System32\Drivers\WUDFPf.sys - ok
01:02:32.0129 0x11c8 [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] C:\Windows\System32\rpcss.dll
01:02:32.0129 0x11c8 C:\Windows\System32\rpcss.dll - ok
01:02:32.0129 0x11c8 [ 73F2E030B5C24E4E41401B5F0D59E6FD, FAA8B5E3159684E0836900C6EAF63857B445F7F180169B56D5790F097EDAA38B ] C:\Windows\System32\RpcEpMap.dll
01:02:32.0129 0x11c8 C:\Windows\System32\RpcEpMap.dll - ok
01:02:32.0129 0x11c8 [ 587089B7A93F3DE43832F3DBDD8F4653, 9A026D63576454ECF009E09809E09B75874E43B78C031F64C31012A871CAF91D ] C:\Windows\System32\RpcRtRemote.dll
01:02:32.0129 0x11c8 C:\Windows\System32\RpcRtRemote.dll - ok
01:02:32.0145 0x11c8 [ 975398A3D2C1FEA73FC93931978DF354, 623E66E79BF16AC82E5DD579B1D50AA1A884FAFC042C3C8A1B503C97A84098DF ] C:\Windows\System32\bisrv.dll
01:02:32.0145 0x11c8 C:\Windows\System32\bisrv.dll - ok
01:02:32.0145 0x11c8 [ C93B779EED6E0EBD0254AFB01C8EE22F, 24B5AEA62B01818C5617E62B00FCB72408B82DBA12C8A28BF44A1BE9C54B3A0B ] C:\Windows\System32\FirewallAPI.dll
01:02:32.0145 0x11c8 C:\Windows\System32\FirewallAPI.dll - ok
01:02:32.0145 0x11c8 [ 066FE80AE0AC570822EB37970E27EA1D, C621030A577AFCF3246811DF9BFA6A9937082B75C7B025169205A456D6D1064C ] C:\Windows\System32\psmsrv.dll
01:02:32.0145 0x11c8 C:\Windows\System32\psmsrv.dll - ok
01:02:32.0161 0x11c8 [ 8FEFDCEE40B75FD23B4BC60DA6576113, 1C3B690B00D95F6A4DB9225A42B1E5BF5A586785A3E097A9D46D35D580490924 ] C:\Windows\System32\lsm.dll
01:02:32.0161 0x11c8 C:\Windows\System32\lsm.dll - ok
01:02:32.0161 0x11c8 [ 2383FFF04B78586DB2F78E82583F630A, 35081F9BDC2D1FFECAAF9DF974D75416A769722643650F2752BB32DA6F9D84FF ] C:\Windows\System32\sysntfy.dll
01:02:32.0161 0x11c8 C:\Windows\System32\sysntfy.dll - ok
01:02:32.0176 0x11c8 [ E5D1CB25AB7050FE4A4397089BE2AA09, 4806EC7A712E28FF8B473EE71E22CD8B73CA5249C51640F58B4A9A683350CBD4 ] C:\Windows\System32\wmsgapi.dll
01:02:32.0176 0x11c8 C:\Windows\System32\wmsgapi.dll - ok
01:02:32.0176 0x11c8 [ 15F977F1880FA80143699EE42F7A42FB, FBF2E9F8613CC2D8A5F8FEC2F61AB44F4889769170EB9EEBAF5F93028313FB10 ] C:\Windows\System32\UXInit.dll
01:02:32.0176 0x11c8 C:\Windows\System32\UXInit.dll - ok
01:02:32.0176 0x11c8 [ F7B5418B7CE7B4AF2FAD5216A988E5BE, 285C3D08CF542A716C23E5AC816A63F565E737930C4E56126640E64157A930AA ] C:\Windows\System32\uxtheme.dll
01:02:32.0176 0x11c8 C:\Windows\System32\uxtheme.dll - ok
01:02:32.0192 0x11c8 [ 15223ECAD7D688273DADA63ADA8B6BBA, 4E6261A8E89CF0491FAE680C9A842D46E4C693300D7DA7412AF02728486CDFFF ] C:\Windows\System32\atiesrxx.exe
01:02:32.0192 0x11c8 C:\Windows\System32\atiesrxx.exe - ok
01:02:32.0192 0x11c8 [ 52576C623E5877D6CD73479610A532C2, 58D8596659AFF4E68F1C8D21042D4DB00227A4B07BB3470B3CF5BE1B5950D3BD ] C:\Windows\System32\dpapi.dll
01:02:32.0192 0x11c8 C:\Windows\System32\dpapi.dll - ok
01:02:32.0207 0x11c8 [ 11EA2B2C58E38BDBBEC4298BCEE40A59, BE7EB8717B6E82879398058E85F4B58969C469B4FC14EE4B8B174B13D7F0487B ] C:\Windows\System32\wevtsvc.dll
01:02:32.0207 0x11c8 C:\Windows\System32\wevtsvc.dll - ok
01:02:32.0207 0x11c8 [ 0CBF0748B3F6C978233BBDD1D9D6A023, 7AE78B94A0D3974A3B4C3EB6C4F08C3A8003E6961B4A1175EC6A7788C148692F ] C:\Windows\System32\dwm.exe
01:02:32.0207 0x11c8 C:\Windows\System32\dwm.exe - ok
01:02:32.0207 0x11c8 [ FAD009934DE5E8FA2511109B2349B9B1, DBAA161E24CD91DD15F135469556E8569DCCC47A8AC52F5196996F72EDACAC54 ] C:\Windows\System32\LogonUI.exe
01:02:32.0207 0x11c8 C:\Windows\System32\LogonUI.exe - ok
01:02:32.0223 0x11c8 [ F96F2A8ACB386B549306FE4C70AC77F5, 6F58BB2967CA3FADE16E00FAD94AA395288032B7C12ACEA300108B56A1BA3D73 ] C:\Windows\System32\authui.dll
01:02:32.0223 0x11c8 C:\Windows\System32\authui.dll - ok
01:02:32.0223 0x11c8 [ C12B0B3CF30CB7E1DACE2DAFF7B976E3, 00F10EFCA4DC22FAB0EE1FC4209DD9929DAF1B50EB06E55EA78318F07064EB3B ] C:\Windows\System32\dwmcore.dll
01:02:32.0223 0x11c8 C:\Windows\System32\dwmcore.dll - ok
01:02:32.0223 0x11c8 [ 849958533A0CB20B5B738CA963A81EAF, C4A3A04076CB0B47F3D6FE5A87EABB7BF3856AD8E691284E0D61157B45E9CCA0 ] C:\Windows\System32\dwmredir.dll
01:02:32.0223 0x11c8 C:\Windows\System32\dwmredir.dll - ok
01:02:32.0239 0x11c8 [ 429E8502AD2227CF88F8840FC5BD590D, A186DA46C083580ACEDE9C7E3156865034302CD803140EEEC8E1DE16DA4BC99B ] C:\Windows\System32\profsvc.dll
01:02:32.0239 0x11c8 C:\Windows\System32\profsvc.dll - ok
01:02:32.0239 0x11c8 [ 5358678C6370F2ADC5291849F6503262, 841633D7A936C3889690C67E189BAD4C6B294C196FFFE5B564FCECDFE46A9E52 ] C:\Windows\System32\gpsvc.dll
01:02:32.0239 0x11c8 C:\Windows\System32\gpsvc.dll - ok
01:02:32.0254 0x11c8 [ 05F8C32005A602E9E1CA127A1EB11E34, BAA4C654DF4EC4DA6D0EA19D5D90B8F551F24E8CB4CC2FC2232A8FAE49E56076 ] C:\Windows\System32\SHCore.dll
01:02:32.0254 0x11c8 C:\Windows\System32\SHCore.dll - ok
01:02:32.0254 0x11c8 [ B1256D36D6D415FB924A26957A83C2CB, 24058235181F322D76D138BC0413474FD399DED2FE522F843DF5611A2A75364F ] C:\Windows\System32\dcomp.dll
01:02:32.0254 0x11c8 C:\Windows\System32\dcomp.dll - ok
01:02:32.0254 0x11c8 [ C6D71F42C6CB7F3AECFEDC1C0DDE8232, FEC69FDA873BEBF409108A3CDED953C8174AAA494512CA366713C4C52C633A71 ] C:\Windows\System32\WindowsCodecs.dll
01:02:32.0254 0x11c8 C:\Windows\System32\WindowsCodecs.dll - ok
01:02:32.0270 0x11c8 [ 80E5C64479952266CCFCF52CBBBE84DC, A6A94784396A7DB55C2239D02C5D315022FE67F0E8EA1A4107756DEDBCA6CBAE ] C:\Windows\System32\dui70.dll
01:02:32.0270 0x11c8 C:\Windows\System32\dui70.dll - ok
01:02:32.0270 0x11c8 [ F0C56FAF38A244599CBC173D581E27FC, 6F2A2DDB435E52450C60B4432D1020088ABFAFCD2D06697FC24D39CC6CA08509 ] C:\Windows\System32\nlaapi.dll
01:02:32.0270 0x11c8 C:\Windows\System32\nlaapi.dll - ok
01:02:32.0270 0x11c8 [ 519A6F672FFF56B7D8EE8C730CEC8ECD, 2B36F10C0AE16A261DC0887B1050808BA1F0568F3879E4ABC3D370F08C3FADB7 ] C:\Windows\System32\themeservice.dll
01:02:32.0270 0x11c8 C:\Windows\System32\themeservice.dll - ok
01:02:32.0285 0x11c8 [ 91E1A704990CEE32FFFBDF8AB8C258E4, 7FAC1A8A21E7C4F15F54F882CA2166B4C2BD92C52D691824F54F37D7A9283B00 ] C:\Windows\System32\dsrole.dll
01:02:32.0285 0x11c8 C:\Windows\System32\dsrole.dll - ok
01:02:32.0285 0x11c8 [ 91F2CB5172B120F7BE0645882D4427C8, 6C7BD71AAC26C4244C96EDEBB47CF93638D2C28C8A85012814A31A31173D081F ] C:\Windows\System32\profsvcext.dll
01:02:32.0285 0x11c8 C:\Windows\System32\profsvcext.dll - ok
01:02:32.0285 0x11c8 [ F9E01C2D9F8BC049E04CF5DC24A5F638, CB6CCB59C77D4A59DDA846608AABEF1DFEC24C8422712AB8D59E27C13D731D2E ] C:\Windows\System32\es.dll
01:02:32.0285 0x11c8 C:\Windows\System32\es.dll - ok
01:02:32.0301 0x11c8 [ BB6591EA99CBCD17989CBF04214DD7E8, 860ED35BE8697B7ED89E8BC1A6AECE5F40FBF9CD2B0C10B4E510C88DB6795661 ] C:\Windows\System32\ntdsapi.dll
01:02:32.0301 0x11c8 C:\Windows\System32\ntdsapi.dll - ok
01:02:32.0301 0x11c8 [ 6CB5B0F8F835B0E69857436405BA6E28, 8D166C6C9340F8E0785A24751AC52C83E1BA3E2A6C48F6513676B40364C0080F ] C:\Windows\System32\d3d10_1.dll
01:02:32.0301 0x11c8 C:\Windows\System32\d3d10_1.dll - ok
01:02:32.0317 0x11c8 [ F235600515AD6CBE06DB440FBB7C8E01, F5241F9388EC8D7C470DCEC07E4B307B80CB55DC9FF5638A2EB5AE32D79A6E20 ] C:\Windows\System32\atl.dll
01:02:32.0317 0x11c8 C:\Windows\System32\atl.dll - ok
01:02:32.0317 0x11c8 [ 3951ECF063787EB40CD33D2961B39E23, 40818482DF1EB61A0E077A0EC8B7D9B024BBC4BBD6509E985C40B3575FDCBCC0 ] C:\Windows\System32\d3d10_1core.dll
01:02:32.0317 0x11c8 C:\Windows\System32\d3d10_1core.dll - ok
01:02:32.0317 0x11c8 [ 4A945F0177124D653B5EF975D11DA9F8, 15ABE16F232F34E8539AD9E9A926067E7829AC9BAABE925F03F12029247AE56E ] C:\Windows\System32\dfscli.dll
01:02:32.0317 0x11c8 C:\Windows\System32\dfscli.dll - ok
01:02:32.0332 0x11c8 [ 38082C25FC60B10977AC729127A4463D, 4F6D3DCD33C6DA86E8AF74DADDBB78B87AB09627EAFF5193EA94C84747A8BF5A ] C:\Windows\System32\dwmapi.dll
01:02:32.0332 0x11c8 C:\Windows\System32\dwmapi.dll - ok
01:02:32.0332 0x11c8 [ D70E930E67968D0F849333841DDBA02B, D671D8176E9AB24A294F6389D4CDB08C795D3C4E63186600412AF88EA3112CED ] C:\Windows\System32\netapi32.dll
01:02:32.0332 0x11c8 C:\Windows\System32\netapi32.dll - ok
01:02:32.0348 0x11c8 [ FC414C8C91848FACFD6514AEF88A5ABA, E00EF2380FEAD83A23A8720BDA16FB7218C1B8D5C5EE6FDA3B446D75364CC7A1 ] C:\Windows\System32\wkscli.dll
01:02:32.0348 0x11c8 C:\Windows\System32\wkscli.dll - ok
01:02:32.0348 0x11c8 [ 4B249FD266D2FF17EE8809EB46A173A6, 7DA4CBC84F905BE6E76C9554642549A3D98C1BED4D3AA41E3D36FA5B27BF3E38 ] C:\Windows\System32\taskschd.dll
01:02:32.0348 0x11c8 C:\Windows\System32\taskschd.dll - ok
01:02:32.0348 0x11c8 [ ABA350274707D09D91826ED8EAF886B5, 2C16EBF9FCD61780CBE24A8FF342F508CA8A2828891F44E10C0388BDEB3D0AA6 ] C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f\comctl32.dll
01:02:32.0348 0x11c8 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f\comctl32.dll - ok
01:02:32.0363 0x11c8 [ 02DF949C584B02FAB05868502C578D42, 18ED0FAC5DDA7B1A77B003B48D58BC41679ECC32F48CB1A180C0710E6963C30A ] C:\Windows\System32\dxgi.dll
01:02:32.0363 0x11c8 C:\Windows\System32\dxgi.dll - ok
01:02:32.0363 0x11c8 [ EAE1E802E8DBA1A8562652A29D520BEF, 65E1283775BCFBA12ADC50BBE7DA8BE26789BC1801E7136B936C2197A986EFDB ] C:\Windows\System32\d3d11.dll
01:02:32.0363 0x11c8 C:\Windows\System32\d3d11.dll - ok
01:02:32.0379 0x11c8 [ 46F09D226A9F0676932657A6761CEB82, EDB5AC9597817FC9F30655BF4EF441D4A7CFAFEC8AC6D1DAC39D4A2FB79E0935 ] C:\Windows\System32\d3d10warp.dll
01:02:32.0379 0x11c8 C:\Windows\System32\d3d10warp.dll - ok
01:02:32.0379 0x11c8 [ 18EB7BBD18BAB5520988E41D69501ADB, FF2534F6CE90F9A088FC33922FC6A879757EB24A1E6CAEBC2CCB67D2AF5BB3A3 ] C:\Windows\System32\aticfx64.dll
01:02:32.0379 0x11c8 C:\Windows\System32\aticfx64.dll - ok
01:02:32.0379 0x11c8 [ 5264BDA0ACE3D560336AC2EAD0728D41, 95DA9352536ACBE64335D85B9B719B2205B98147A5AF5A49BFA88BF1DB0E361A ] C:\Windows\System32\duser.dll
01:02:32.0379 0x11c8 C:\Windows\System32\duser.dll - ok
01:02:32.0395 0x11c8 [ E4410DCE9BD5904BE8992E9AD17FB1CC, 439332E200639A4D95E2D7D227377F3E7775E1F6EE856FB1870A8CDE98CCE6D0 ] C:\Windows\System32\atieclxx.exe
01:02:32.0395 0x11c8 C:\Windows\System32\atieclxx.exe - ok
01:02:32.0395 0x11c8 [ D39F1714D8944A0AC590B08F5A2DD0E7, 2A642B28DBE1B855D3A1E35E08C07DA4A57EA643C33EA8519611B483AF091D40 ] C:\Windows\System32\SndVolSSO.dll
01:02:32.0395 0x11c8 C:\Windows\System32\SndVolSSO.dll - ok
01:02:32.0395 0x11c8 [ B5FEAE9A8C299EB6D1B6D810CDB4A9A7, 583C67C3A72BB444D9B5E0515E8AE86875331454A28403218388507DA263691A ] C:\Windows\System32\MMDevAPI.dll
01:02:32.0395 0x11c8 C:\Windows\System32\MMDevAPI.dll - ok
01:02:32.0410 0x11c8 [ 9C51620998F0763039DFA6BF68E475ED, 9E496ADE7CE9A446BE8A2C2FC61B462D966778A94A4C147AABBD25C4821C2BCE ] C:\Windows\System32\Sens.dll
01:02:32.0410 0x11c8 C:\Windows\System32\Sens.dll - ok
01:02:32.0410 0x11c8 [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] C:\Windows\System32\mmcss.dll
01:02:32.0410 0x11c8 C:\Windows\System32\mmcss.dll - ok
01:02:32.0426 0x11c8 [ 411DF2BD73FADE38352CCC5396D7A458, C072C5D64162A73E0931E930E7AEAF07107F2B2C37CF1285C68B71FC45235E8E ] C:\Windows\System32\atiadlxx.dll
01:02:32.0426 0x11c8 C:\Windows\System32\atiadlxx.dll - ok
01:02:32.0426 0x11c8 [ D3F63550DCDA80A2AFB218A86A4EC5F0, E135CCE750A0D78DE392A146B07C35CBDF72F6FAFC58630CB793EBBE6AFA103C ] C:\Windows\System32\BCP47Langs.dll
01:02:32.0426 0x11c8 C:\Windows\System32\BCP47Langs.dll - ok
01:02:32.0426 0x11c8 [ 721CAFC7474688EFB2961726DBBF1C78, 5659D84310D783D0E36F3B5A89D70079DB355F76DEE52F43B08EEECD62B30B09 ] C:\Windows\System32\wsock32.dll
01:02:32.0426 0x11c8 C:\Windows\System32\wsock32.dll - ok
01:02:32.0441 0x11c8 [ 156B8769D44187090781DFA9FED1AE18, E78130BD3771344D15785D4F73012E107EAE8350D203C9DD6147993A36A548F6 ] C:\Windows\System32\SmartcardCredentialProvider.dll
01:02:32.0441 0x11c8 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
01:02:32.0441 0x11c8 [ C98F6286818474AB284144A73EC7BA6D, 34FBB46A9F1676FC977C9E624C0568589F8869D9B3CAAF7101FFCBAD91DD58EB ] C:\Windows\System32\cngcredui.dll
01:02:32.0441 0x11c8 C:\Windows\System32\cngcredui.dll - ok
01:02:32.0457 0x11c8 [ 439580916E49358F8BE33005E98E4B1F, 88C7E7EB90FAD41CBDADAC2CEF0A174DB2D295F2E509A492ABEDB70FDB242C79 ] C:\Windows\System32\BioCredProv.dll
01:02:32.0457 0x11c8 C:\Windows\System32\BioCredProv.dll - ok
01:02:32.0457 0x11c8 [ 8A814F4CBF6AA28A8F0212592824C927, 9688BA88E744B231CC13F28CE40AE64AA121F943BADE4D0BA5A83487AF6C01CF ] C:\Windows\System32\AudioEndpointBuilder.dll
01:02:32.0457 0x11c8 C:\Windows\System32\AudioEndpointBuilder.dll - ok
01:02:32.0457 0x11c8 [ 305CB1E16576F436BC8797E629A3D46D, E3644AE3FA8F755D306D9C4177262CEC451B33731074508B139F3F86AC1B5AE6 ] C:\Windows\System32\FntCache.dll
01:02:32.0457 0x11c8 C:\Windows\System32\FntCache.dll - ok
01:02:32.0473 0x11c8 [ 37843E6888569097918544F0338BC19D, C9FCBE51494225FBEFDC8A7D863CE5FD7318E454F13D066D719F415D9F3786A4 ] C:\Windows\System32\avrt.dll
01:02:32.0473 0x11c8 C:\Windows\System32\avrt.dll - ok
01:02:32.0473 0x11c8 [ 77DA2B3F012A1F0D88F29C612F606F28, 0D98A159E1D8985D2E041456F08ED268AB18C3CBF1635BC80F006C356A4F17DA ] C:\Windows\System32\winbio.dll
01:02:32.0473 0x11c8 C:\Windows\System32\winbio.dll - ok
01:02:32.0473 0x11c8 [ 01E8E96251900BCEFAB34FBC1FCEB552, 63D4B17967545586BEFD76FCB507AFDE3F7454CAADAE1EDE615D81204AF275CE ] C:\Windows\System32\audiosrv.dll
01:02:32.0473 0x11c8 C:\Windows\System32\audiosrv.dll - ok
01:02:32.0473 0x11c8 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] C:\Windows\System32\WUDFSvc.dll
01:02:32.0473 0x11c8 C:\Windows\System32\WUDFSvc.dll - ok
01:02:32.0488 0x11c8 [ B1DF2D87DC8BF6072699AC8301B37796, D5A6FD1EDB627324DFA1A0555F1777A3313EF29DDE29982C3CE59DAF1ED0D105 ] C:\Windows\System32\WUDFPlatform.dll
01:02:32.0488 0x11c8 C:\Windows\System32\WUDFPlatform.dll - ok
01:02:32.0488 0x11c8 [ 5DCBA1A3AE7150D2B71347BDD08639ED, 1F95863F935EA963AF10D6E0A66E57F222E1ABCFAE7A9EBFD64028B7B34B8E02 ] C:\Windows\System32\version.dll
01:02:32.0488 0x11c8 C:\Windows\System32\version.dll - ok
01:02:32.0488 0x11c8 [ 44695679881DEB85CAD7C249B151066E, A44413ACA911DDB5757DE9F9ECC3968979C47617CF9DF81B24E7ECDE7E0D54BC ] C:\Windows\System32\Drivers\appexDrv.sys
01:02:32.0488 0x11c8 C:\Windows\System32\Drivers\appexDrv.sys - ok
01:02:32.0504 0x11c8 [ CEEFD29FC551F289810B0B9381B321DC, 900F206B487B2190D9363F28AA4BA0CD7DCFE1D005BE05A48AF74B1B81194691 ] C:\Windows\System32\Drivers\lltdio.sys
01:02:32.0504 0x11c8 C:\Windows\System32\Drivers\lltdio.sys - ok
01:02:32.0504 0x11c8 [ 38FFA3E7A7E37B06FFEC571C2E25AF89, 2B398025C161019C5D54081B90168D5697989F20D6D33809123EFCB8E15B8294 ] C:\Windows\System32\DWrite.dll
01:02:32.0504 0x11c8 C:\Windows\System32\DWrite.dll - ok
01:02:32.0504 0x11c8 [ F842B1014FF639584F14CC23869DCCC4, 789110829BA061D872DD71E047AB6FE83EA3C7FAB195F9D998A39ECE2E942CC9 ] C:\Windows\System32\atimuixx.dll
01:02:32.0504 0x11c8 C:\Windows\System32\atimuixx.dll - ok
01:02:32.0519 0x11c8 [ 7FA8C13A62CAEB2D84A731030DC1B866, CDDD1F4E96D215BC07FEEC79E54D42BBA8F9C3D5490A9CCB7A5F8098F45483C0 ] C:\Windows\System32\oleacc.dll
01:02:32.0519 0x11c8 C:\Windows\System32\oleacc.dll - ok
01:02:32.0519 0x11c8 [ CE0884D5E82E48F0959BEE3006BEA0E1, 4D6E115B40FBEE9A11F3E989C996CD403D356B88F27DE2A5521D6A7C7F615945 ] C:\Windows\System32\certCredProvider.dll
01:02:32.0519 0x11c8 C:\Windows\System32\certCredProvider.dll - ok
01:02:32.0519 0x11c8 [ 1D03DD2BA438D4B3E1A0289738619056, 598DD04E851566E38496A7BC671BB0AF2D8C88BFAE1A6734AD570516AEE9F050 ] C:\Windows\System32\wlidcredprov.dll
01:02:32.0519 0x11c8 C:\Windows\System32\wlidcredprov.dll - ok
01:02:32.0535 0x11c8 [ 855D7BA4DC79E4157651FF5B23B41FD0, 81CDD8271D5C82B847BAFD3AA26565ECF918EE5DE1B13845FC5A3626ABD42665 ] C:\Windows\System32\UIAnimation.dll
01:02:32.0535 0x11c8 C:\Windows\System32\UIAnimation.dll - ok
01:02:32.0535 0x11c8 [ 21E796CF2D1B8A6FAA2347B0070316CE, 6E6B2441FA1B7D64B6A26E19472686F58627AAC5D65D23A753D9DD46624C1146 ] C:\Windows\System32\winbrand.dll
01:02:32.0535 0x11c8 C:\Windows\System32\winbrand.dll - ok
01:02:32.0535 0x11c8 [ EC7C1F9882A5E2F4C5391DDC43582110, AECFDC57EEFE492749B5167C16AF7773F8E19227EEDD5F5822AED494C2F49204 ] C:\Windows\System32\rasplap.dll
01:02:32.0535 0x11c8 C:\Windows\System32\rasplap.dll - ok
01:02:32.0551 0x11c8 [ 6E578460E165F14D9BA473ED54E3299B, 9C479BFC6D6D06509233A47513563E614909DE550D67BDD249B1D1BFB81CA4EA ] C:\Windows\System32\rasapi32.dll
01:02:32.0551 0x11c8 C:\Windows\System32\rasapi32.dll - ok
01:02:32.0551 0x11c8 [ 4E251FE2729D6A3FCCC87DC13F823DC2, 70F2D7A4EC3E6CDAC4D644FDBCB2DB3019FF0860E336C52F9CC821DED0AA8221 ] C:\Windows\System32\rtutils.dll
01:02:32.0551 0x11c8 C:\Windows\System32\rtutils.dll - ok
01:02:32.0551 0x11c8 [ 8C988C29CFB9B3673E882B4DA5EEC81D, 93C6FC9ECC08DB44FF1CE1EEB19B9C8A7D58A2B89D467EEE9223B86B55409DE1 ] C:\Windows\System32\rasman.dll
01:02:32.0551 0x11c8 C:\Windows\System32\rasman.dll - ok
01:02:32.0566 0x11c8 [ F2CDA4A446FD4BA2D8BAF456219C6964, A629715162FDE1E4B612436756784BCF36FEFC77270980F6A321363E462BC9C5 ] C:\Windows\System32\UIAutomationCore.dll
01:02:32.0566 0x11c8 C:\Windows\System32\UIAutomationCore.dll - ok
01:02:32.0566 0x11c8 [ 103E609A08474C43C04FB064440FCAE7, 5621577B397F656273FF71DA7DD50B2AD40C83B2AD14FB41F91BDC92E0F70A75 ] C:\Windows\System32\shacct.dll
01:02:32.0566 0x11c8 C:\Windows\System32\shacct.dll - ok
01:02:32.0566 0x11c8 [ A22411CA36466FC676D6805B3196726E, D92974F89C61C7CCA0B1FEC4983E8D9FF107C5BE0D60251C5D37718AB952CCC1 ] C:\Windows\System32\samlib.dll
01:02:32.0566 0x11c8 C:\Windows\System32\samlib.dll - ok
01:02:32.0582 0x11c8 [ 43D7388A90A4C6EA346A4D6FF0377479, DFDCFA448B49C8A577056070AF516F08CD2E452706A3CF9173195ABA4256F35D ] C:\Windows\System32\Drivers\nwifi.sys
01:02:32.0582 0x11c8 C:\Windows\System32\Drivers\nwifi.sys - ok
01:02:32.0582 0x11c8 [ 79AB68BB3FFF974AD4F41FA559F4EC67, 1745EC6520B48E325C56D98A1F4DB9CE135FE3E097B3D66E6598791132CAD7BD ] C:\Windows\System32\Drivers\ndisuio.sys
01:02:32.0582 0x11c8 C:\Windows\System32\Drivers\ndisuio.sys - ok
01:02:32.0582 0x11c8 [ CFB72DF4B2364AF6D4D685DCD310E942, 89C72E1008B92B85A275B9F37D96481C3EFCABE9ACD28B698D5A04E0DDA0DF8F ] C:\Windows\System32\dhcpcore.dll
01:02:32.0582 0x11c8 C:\Windows\System32\dhcpcore.dll - ok
01:02:32.0597 0x11c8 [ E04E770DD198B9399640717145E79EBF, 2F9BECB7E4B0A522C6370FD39CFD7DFD3FB5D0A779AECCED2EE855629FA3C952 ] C:\Windows\System32\Drivers\rspndr.sys
01:02:32.0597 0x11c8 C:\Windows\System32\Drivers\rspndr.sys - ok
01:02:32.0597 0x11c8 [ 04A9D55BDCD79EBB2F32D91FE5946C28, A295750E156760FD28E02ED83E8DBA0731BD90C9374F3D735A80D7472D2FE95A ] C:\Windows\System32\IPHLPAPI.DLL
01:02:32.0597 0x11c8 C:\Windows\System32\IPHLPAPI.DLL - ok
01:02:32.0597 0x11c8 [ 5A2F7F1CBC2E631A497DAD16164E06D2, 35274FC6C386380B01B5E8F467E71A2C4E2FB2AD701554F9B1A9B036B0340142 ] C:\Windows\System32\lmhsvc.dll
01:02:32.0597 0x11c8 C:\Windows\System32\lmhsvc.dll - ok
01:02:32.0613 0x11c8 [ F28C7A1A04C73FD099CBA2441B07842D, 2680D367DF0FDEDAF88DEE6D177225701682742E8702125D8E85C4BFA520BD75 ] C:\Windows\System32\nrpsrv.dll
01:02:32.0613 0x11c8 C:\Windows\System32\nrpsrv.dll - ok
01:02:32.0613 0x11c8 [ 832B5FDF0B5577713FD7F2465FCD0ACE, 4A551CDBACED47DD781EC59F8B59A13D66EFD85DCF636BCFCBACFE5972A78E93 ] C:\Windows\System32\nsisvc.dll
01:02:32.0613 0x11c8 C:\Windows\System32\nsisvc.dll - ok
01:02:32.0613 0x11c8 [ 0911A3B2DE545EA2498E560D745B7E71, 9A32494AD2D8B9166B81543A2D602AFA15944CC25084CC3F704ED93C52227FD0 ] C:\Windows\System32\winnsi.dll
01:02:32.0613 0x11c8 C:\Windows\System32\winnsi.dll - ok
01:02:32.0629 0x11c8 [ 066B9710B36AB550E01EEFCA52155968, DCA9F3F4856A6866D3F5A2EEE34E96A83F40198DB0B5AC6381A7568DE1F56FAB ] C:\Windows\System32\dnsrslvr.dll
01:02:32.0629 0x11c8 C:\Windows\System32\dnsrslvr.dll - ok
01:02:32.0629 0x11c8 [ D9C1E82651BF19C6FF69CEC6FD400124, 93B96481A5B26F5617B16DD775AF0F8CE9001B30251FFF58D6EF9044D5EE91CD ] C:\Windows\System32\wcmsvc.dll
01:02:32.0629 0x11c8 C:\Windows\System32\wcmsvc.dll - ok
01:02:32.0629 0x11c8 [ 028A5E6B0ABDD7B2D32745C5F1D8F711, 216B96048343D0991E4F7B1EF81D39B499129EA83E6DB5E84602682C0207561C ] C:\Windows\System32\wcmcsp.dll
01:02:32.0629 0x11c8 C:\Windows\System32\wcmcsp.dll - ok
01:02:32.0644 0x11c8 [ 808B0E186C5EF8B9EC398C2C8B0B6919, A1D71DF553FE733AEBF3B9D0EB5887AEB4443FA17EF3F5F60FD6CC71D7722A79 ] C:\Windows\System32\dhcpcore6.dll
01:02:32.0644 0x11c8 C:\Windows\System32\dhcpcore6.dll - ok
01:02:32.0644 0x11c8 [ 19B3CFB1D6516AB2C54772CB75426AD4, 9DB10D2BE984AC665562FB6095F32E0A9E7FDCCF1580C87A7F5DCEAA3EC4C463 ] C:\Windows\System32\wlansvc.dll
01:02:32.0644 0x11c8 C:\Windows\System32\wlansvc.dll - ok
01:02:32.0644 0x11c8 [ E2B8F9FE6FA401AEB0BDFF8ED61A7568, AF1866C4DB5904BCA4CFBA4CECA6AE478BEAE24DC83D8B13414E7B4139C9FFDE ] C:\Windows\System32\wmiclnt.dll
01:02:32.0644 0x11c8 C:\Windows\System32\wmiclnt.dll - ok
01:02:32.0660 0x11c8 [ DB656577B67B9C603AD996EF2CD825E6, EB20E043341AF5826E024F8F6A5AA50828B141B47255F1FC67C7076AD555642B ] C:\Windows\System32\FWPUCLNT.DLL
01:02:32.0660 0x11c8 C:\Windows\System32\FWPUCLNT.DLL - ok
01:02:32.0660 0x11c8 [ 137BBCFB2080C5F6F4E5C4EB6314D97A, 6152A78B2E7782B502045AA94C230948340FD6720A25E44BE2F9F398F1548646 ] C:\Windows\System32\dnsext.dll
01:02:32.0660 0x11c8 C:\Windows\System32\dnsext.dll - ok
01:02:32.0660 0x11c8 [ EDA64C8A525D5CEBE120EC5466B73C0D, A8048653FFECE004193C0F8D45BC67F423728E41D56FFA2DBE72B42FDFE05471 ] C:\Windows\System32\dhcpcsvc6.dll
01:02:32.0660 0x11c8 C:\Windows\System32\dhcpcsvc6.dll - ok
01:02:32.0675 0x11c8 [ 5B4EE778AF3B9398FF07EE5F2EBDCE09, FCC36D3D8B2C3969ED9231366E948CE900B10C4318D9C018B174E488FCA588EB ] C:\Windows\System32\dhcpcsvc.dll
01:02:32.0675 0x11c8 C:\Windows\System32\dhcpcsvc.dll - ok
01:02:32.0675 0x11c8 [ 72EC1DEF102304EE8C2E47566328F035, A16B5CBCBE9D31661FFC725D3FE28F97EF6AA5AA2FF894F43082E3447EF8EBA2 ] C:\Windows\System32\onex.dll
01:02:32.0675 0x11c8 C:\Windows\System32\onex.dll - ok
01:02:32.0691 0x11c8 [ 3300E37709128C490950D1E29D8A0201, BC8D00A0EE3107ACB519EEC957F273900E59B8DBCD6826D2A1B4B5CC9C0BE549 ] C:\Windows\System32\wlanmsm.dll
01:02:32.0691 0x11c8 C:\Windows\System32\wlanmsm.dll - ok
01:02:32.0691 0x11c8 [ 62C4D317CC1ED6C56DA21CB5F55518A7, BBDE4C36FDB5D7581665BB37B24693904B79E910463979E165E23DC18A8D36C1 ] C:\Windows\System32\wlansec.dll
01:02:32.0691 0x11c8 C:\Windows\System32\wlansec.dll - ok
01:02:32.0691 0x11c8 [ 6684C72C745F0E5E385EEAFF3C15538F, 9EEEB59D28417C45CDDFD46566234C352D456929B8819B0D3273987F81359B19 ] C:\Windows\System32\eappprxy.dll
01:02:32.0691 0x11c8 C:\Windows\System32\eappprxy.dll - ok
01:02:32.0707 0x11c8 [ 961BC183E2E526BEB0B70A70ECD4F7B8, 7971C2B8E4977760C5B2CF078881B9BF60A50369B7BC088AF04769558189DB02 ] C:\Windows\System32\msxml6.dll
01:02:32.0707 0x11c8 C:\Windows\System32\msxml6.dll - ok
01:02:32.0707 0x11c8 [ BA47A3E78521EC9EA4341F6FA8A75EC9, 4605269D80E7336CF56A7C95453C170E8A62EFC2CAA8B679696160D06CEAF0D7 ] C:\Windows\System32\propsys.dll
01:02:32.0707 0x11c8 C:\Windows\System32\propsys.dll - ok
01:02:32.0707 0x11c8 [ 2C71C009DFAC4C6EE7795C6C042090B4, F4BA7EA954F735E9B61CCFF99D319F618FA16688191CC8ECC5D923B4DE29E554 ] C:\Windows\System32\slc.dll
01:02:32.0707 0x11c8 C:\Windows\System32\slc.dll - ok
01:02:32.0722 0x11c8 [ 9C09F1D54C7F391B1C3D7440AF30720A, 2CB74FE80A8AD9C05C50E2D989C0B7CBAF6C34C6FF09F61479E817503885BB04 ] C:\Windows\System32\InputSwitch.dll
01:02:32.0722 0x11c8 C:\Windows\System32\InputSwitch.dll - ok
01:02:32.0722 0x11c8 [ 1F843D301D9829244DCB423A09EE050C, C3A695B2540F6546568DD4D851A36AC71FCCEE53590B5F90CBA61E1A6E1A5FC5 ] C:\Windows\System32\wuaext.dll
01:02:32.0722 0x11c8 C:\Windows\System32\wuaext.dll - ok
01:02:32.0722 0x11c8 [ 3C076057F15735DDBE20415F714C3CB6, 29B00355A5D290355526B75D50A8483478639A4B9352B8D78BAFC840E9339A03 ] C:\Windows\System32\atiuxp64.dll
01:02:32.0722 0x11c8 C:\Windows\System32\atiuxp64.dll - ok
01:02:32.0738 0x11c8 [ EF630FAA4252832FD7A24BF7C756D0E9, F03A4E1EE235E063BA5F0F05266696869384E4585B69DD9634678A51A188DC0E ] C:\Windows\System32\atidxx64.dll
01:02:32.0738 0x11c8 C:\Windows\System32\atidxx64.dll - ok
01:02:32.0738 0x11c8 [ FE6B563E88700C0DA81B33ACA78579AE, 9406D9A6EA761820D69C27522EED520B97C7953483973A66ECD3E0A935F64061 ] C:\Windows\System32\Windows.UI.Immersive.dll
01:02:32.0738 0x11c8 C:\Windows\System32\Windows.UI.Immersive.dll - ok
01:02:32.0738 0x11c8 [ F0E5C2AACB8DFD8EF2F7A67A12CCDA5D, 8A5801FCDECF5735DC150498E7C68F4E598DDD75A9B96A1E42043E390C1B7916 ] C:\Windows\System32\IDStore.dll
01:02:32.0738 0x11c8 C:\Windows\System32\IDStore.dll - ok
01:02:32.0753 0x11c8 [ 2640C2240F9B6529AE779D83E8FF2127, E962AF0EC3C1257156D6D7ED9B8FB9D32975361A7AC0CDC32B90DE03DED82179 ] C:\Windows\System32\apphelp.dll
01:02:32.0753 0x11c8 C:\Windows\System32\apphelp.dll - ok
01:02:32.0753 0x11c8 [ F38DD05686AC8597BCD38C2F324900B9, 65FFDC35E1487950844CBC5194D0ECB1FFA99B2C425DE034930D0587409CFA1A ] C:\Windows\System32\AuthExt.dll
01:02:32.0753 0x11c8 C:\Windows\System32\AuthExt.dll - ok
01:02:32.0753 0x11c8 [ BC484B89C153942BF5D8BFBE832274E1, 3F46D93C5B1A6A10BAE3D75E5E385C9E6F3B2121423260F76B60EFE037C71AF8 ] C:\Windows\System32\batmeter.dll
01:02:32.0753 0x11c8 C:\Windows\System32\batmeter.dll - ok
01:02:32.0769 0x11c8 [ 81ECD8768D3E4AD61DB7EE27401A25E9, 32166BA146CE840FC89BDDF8E4C36189637C897D0C0FC6CFB0B7AB24E94A3291 ] C:\Windows\System32\wevtapi.dll
01:02:32.0769 0x11c8 C:\Windows\System32\wevtapi.dll - ok
01:02:32.0769 0x11c8 [ AB74105622BBE9EE069AC56666DBC696, 32E832E776822DFE285423444DF24839E1D47B97CF4B142B144013258BBB888E ] C:\Windows\System32\Windows.Globalization.dll
01:02:32.0769 0x11c8 C:\Windows\System32\Windows.Globalization.dll - ok
01:02:32.0769 0x11c8 [ 185C71A41C02724A56BA625578651817, 0C0C41CBEE1887EDAFE00F17EDE00156206083791F6B50CFC96AC49C4ED15BA8 ] C:\Windows\System32\NetworkStatus.dll
01:02:32.0769 0x11c8 C:\Windows\System32\NetworkStatus.dll - ok
01:02:32.0785 0x11c8 [ 5C32C180AB29655EFDFF6B7F91271775, 0588E0B818627949BA3A51273C0B022CE5F77F4131138593A63403519173E1A4 ] C:\Windows\System32\msftedit.dll
01:02:32.0785 0x11c8 C:\Windows\System32\msftedit.dll - ok
01:02:32.0785 0x11c8 [ 47AC075FC4DE7DCF690E861B9B2C22A9, 8ADCC665167D46C52D70DD142495C71C86EE75AABBDF32E51011096681CD39D9 ] C:\Windows\System32\ninput.dll
01:02:32.0785 0x11c8 C:\Windows\System32\ninput.dll - ok
01:02:32.0785 0x11c8 [ D9AEEA13463C68BC9506342A7D15CBDA, 9E41E7937C26C5C23D167B12822891DAD3CA92A4213631DD8E62A98DFB96C6A5 ] C:\Windows\System32\wlgpclnt.dll
01:02:32.0785 0x11c8 C:\Windows\System32\wlgpclnt.dll - ok
01:02:32.0800 0x11c8 [ 193F8B5C8E94D2F4512868135CDB3B1A, DC548C8D0F37073E01A798AE44DD51CFB82DD7F32DBC0F046EE7E25DA3964469 ] C:\Windows\System32\l2gpstore.dll
01:02:32.0800 0x11c8 C:\Windows\System32\l2gpstore.dll - ok
01:02:32.0800 0x11c8 [ 999DFDA9B177B1D4A349F80B0E9F7608, 87C92850F707CF3D0C089C207166C60C131BFC7D658197F342614D641451AC07 ] C:\Windows\System32\wlanapi.dll
01:02:32.0800 0x11c8 C:\Windows\System32\wlanapi.dll - ok
01:02:32.0800 0x11c8 [ 3E5177CAE5C4325C49345B4D48626856, 5162866034888429584464245B3782FB48C1183D7AAE87DAC2ABB79F475BFC83 ] C:\Windows\System32\SubscriptionMgr.dll
01:02:32.0800 0x11c8 C:\Windows\System32\SubscriptionMgr.dll - ok
01:02:32.0816 0x11c8 [ 79C2FC0FAC4642C455554E72DD23848E, F292A78A307841F758B9C554B7EA9B8E42EE49450C12AE74E444DD1E0CE3AF3B ] C:\Windows\System32\wlanhlp.dll
01:02:32.0816 0x11c8 C:\Windows\System32\wlanhlp.dll - ok
01:02:32.0831 0x11c8 [ E40AF754F43E3B44E2D6DE829267AD52, 5F9427E595A56464807D071205FB4DFD6BB21B68058E67529DC1727D32FAB0AD ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
01:02:32.0831 0x11c8 C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe - ok
01:02:32.0831 0x11c8 [ 0F38E5BAB0E4CEBB57987967F5505CD7, A62D430A6A5FE31091FEB210F3D9B2FFE4F55A3068462C3764DEBEDC3096C9ED ] C:\Windows\SysWOW64\ntdll.dll
01:02:32.0831 0x11c8 C:\Windows\SysWOW64\ntdll.dll - ok
01:02:32.0847 0x11c8 [ 1C5F50F98291B7545391BB57C406E615, A811AC0ECC9C2E37612711924F95E2CC57E77DDAAEA0336E06F85ACF1373ACC1 ] C:\Windows\SysWOW64\kernel32.dll
01:02:32.0847 0x11c8 C:\Windows\SysWOW64\kernel32.dll - ok
01:02:32.0863 0x11c8 [ 6FB123ED73C7EF0A5F8C8570C9952676, 2C94E124CFD548ECE31BBD15CE9B462D04E0A398AEF4BB556B2E68FA948BAC11 ] C:\Windows\SysWOW64\KernelBase.dll
01:02:32.0863 0x11c8 C:\Windows\SysWOW64\KernelBase.dll - ok
01:02:32.0863 0x11c8 [ BA1C3ACD929A71E88B49C2B6E38F92B3, A6087A8AE0C1440BC7C315D7A3AB40CBDC642AA5FB26B528CBC54FBB168839B8 ] C:\Windows\SysWOW64\user32.dll
01:02:32.0863 0x11c8 C:\Windows\SysWOW64\user32.dll - ok
01:02:32.0894 0x11c8 [ BFEF608CD713A4CD3165D72E2AEB23F2, EBB4D0DC1F695A8A0B4C34AD7FB8099E5A769019FF838EFF1671DC23F048B717 ] C:\Windows\SysWOW64\advapi32.dll
01:02:32.0894 0x11c8 C:\Windows\SysWOW64\advapi32.dll - ok
01:02:32.0909 0x11c8 [ 024B76FAD711EFECD6DD0FBD87265444, 6ADB35650F31AD53FA5F83FE270411306B76E675862946AFF26C47C9D54F6655 ] C:\Windows\SysWOW64\setupapi.dll
01:02:32.0909 0x11c8 C:\Windows\SysWOW64\setupapi.dll - ok
01:02:32.0925 0x11c8 [ 94EA89E72707CF5613D30A1F1C92DB2F, D2D5F47E71FEE9A51C7750DA6AF1C5BF682F9A0A3D4F551A2B6FF92925483DBC ] C:\Windows\SysWOW64\gdi32.dll
01:02:32.0925 0x11c8 C:\Windows\SysWOW64\gdi32.dll - ok
01:02:32.0941 0x11c8 [ 58EE457D0D49A95A1E981F6F67FB560F, D02158F903713EC4B8CC5A8C8ACC340637150EE61FD89BD12E202B0C1242B0EB ] C:\Windows\SysWOW64\userenv.dll
01:02:32.0941 0x11c8 C:\Windows\SysWOW64\userenv.dll - ok
01:02:32.0941 0x11c8 [ 715A1F4D2A064DA1DDCAC2533FAF780F, DE0D0C6B373910CCAC4BCDBAEDB3EE8FFC69DF2A07BED383986242B73F348618 ] C:\Windows\SysWOW64\wtsapi32.dll
01:02:32.0941 0x11c8 C:\Windows\SysWOW64\wtsapi32.dll - ok
01:02:32.0972 0x11c8 [ B59E9810F8A416B9E5354834F26969D4, 266896E8A1807D899633F7EB8A07B262A59B956368F1C42F0D7E933B21C60CF0 ] C:\Windows\SysWOW64\msvcrt.dll
01:02:32.0972 0x11c8 C:\Windows\SysWOW64\msvcrt.dll - ok
01:02:32.0972 0x11c8 [ E64021308A378207B317A97950B47413, 560B60E7D416C6F4BA48567F4F4C4887F2A2EC411D860A6783942777B77E1AC0 ] C:\Windows\SysWOW64\rpcrt4.dll
01:02:32.0972 0x11c8 C:\Windows\SysWOW64\rpcrt4.dll - ok
01:02:32.0972 0x11c8 [ 496E036F16467D7B7D12E0794E9FB85D, 33A26F4DD38AEE725E03B3E88D762D4D6171E52E91CE787930EC47045A1B28DC ] C:\Windows\SysWOW64\sechost.dll
01:02:32.0972 0x11c8 C:\Windows\SysWOW64\sechost.dll - ok
01:02:32.0987 0x11c8 [ 04E866855FC3282BFEC25E8B6703FFEE, C26F167EB158C72458AE90BF0B54EC9346F29C73872719D2B481F8C409B4B8D3 ] C:\Windows\System32\netcfgx.dll
01:02:32.0987 0x11c8 C:\Windows\System32\netcfgx.dll - ok
01:02:33.0034 0x11c8 [ 73FA1A41A97A5C34ADC03B3577FF1A86, CBA4BC0DA837C163587BBB4BF2AC1549C72440307C984D3CDF8995023718136C ] C:\Windows\System32\Drivers\vwifimp.sys
01:02:33.0034 0x11c8 C:\Windows\System32\Drivers\vwifimp.sys - ok
01:02:33.0050 0x11c8 [ 467497DF10CF8D4014BD25CCE987EA84, D7FDACE671E3F6697EE9901849F5B2369E0F303E2F0A218514782224487350CE ] C:\Windows\System32\wcmapi.dll
01:02:33.0050 0x11c8 C:\Windows\System32\wcmapi.dll - ok
01:02:33.0065 0x11c8 [ D142894EBEFD276A5CFE876884A6E3F9, 23C70855328491916519D9193CE066BE08BAC4ACD3486CBF4239DDD38AC3CFFA ] C:\Windows\System32\uDWM.dll
01:02:33.0065 0x11c8 C:\Windows\System32\uDWM.dll - ok
01:02:33.0065 0x11c8 [ DC774C3671FBD6FD176864AF0EBA404E, AD95E442134EC6727AF0B8EA6DF47A56196B431C88C31ECA6FDD3BDE5ED8C68D ] C:\Windows\System32\d2d1.dll
01:02:33.0065 0x11c8 C:\Windows\System32\d2d1.dll - ok
01:02:33.0081 0x11c8 [ 567612D556BBC4FC98169EA98F6EA480, 2B76C6CEB61177DF590FA4B589C448205B543958F691073EFA8248F0245EE75B ] C:\Windows\SysWOW64\cfgmgr32.dll
01:02:33.0081 0x11c8 C:\Windows\SysWOW64\cfgmgr32.dll - ok
01:02:33.0081 0x11c8 [ B2A25F2C3DCCD9858701E0AF13E5EE4D, 623221CB1610C150AE1F952680118DB42F93A5B3E4B8487552286A6BF4B3853B ] C:\Windows\SysWOW64\devobj.dll
01:02:33.0081 0x11c8 C:\Windows\SysWOW64\devobj.dll - ok
01:02:33.0081 0x11c8 [ 7D2306701584AE7B77B8622314B55F78, 89E250231402D7C3685E3A120BAE1F2D4280CE44F2760F8658144ADDB7D86882 ] C:\Windows\SysWOW64\profapi.dll
01:02:33.0081 0x11c8 C:\Windows\SysWOW64\profapi.dll - ok
01:02:33.0097 0x11c8 [ 39B721A0FB5F3E9880EE247F04012D8C, FB0DF4CD6A130E2A40F3EDC7C1D8079F1C677D62952E7790C4853FC5E1EF4090 ] C:\Windows\SysWOW64\sspicli.dll
01:02:33.0097 0x11c8 C:\Windows\SysWOW64\sspicli.dll - ok
01:02:33.0097 0x11c8 [ 7DFC3FCD0D5B7FC2F60C344BB384607C, B034A9B7D348C4C438F50E0A5616C2F538F29C6B520C74F17A7154FF2819ACEA ] C:\Windows\SysWOW64\bcryptprimitives.dll
01:02:33.0097 0x11c8 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
01:02:33.0112 0x11c8 [ 0D3C6E1A7EBD401F46E00EDBD61D1A72, 54375377F13A2F686B605812319715523868E978D427C296AD3B74E05BDC0B55 ] C:\Windows\SysWOW64\cryptbase.dll
01:02:33.0112 0x11c8 C:\Windows\SysWOW64\cryptbase.dll - ok
01:02:33.0112 0x11c8 [ 4C016FD76ED5C05E84CA8CAB77993961, 025E7BE9FCEFD6A83F4471BBA0C11F1C11BD5047047D26626DA24EE9A419CDC4 ] C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
01:02:33.0112 0x11c8 C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys - ok
01:02:33.0112 0x11c8 [ DBC598E47E7A382E60E2A4745D41FEF9, A810AC197CA456B0285E2CAE6986D38B31F4ADA32BEB47EC7A48A2B2196BA639 ] C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
01:02:33.0112 0x11c8 C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe - ok
01:02:33.0128 0x11c8 [ 83C4E13852335E1EAC12AA62A2F01E52, 3647F74F779F7298E08117EEA7C7C03AB99AA2177649E8FE7C9DDC4ECC9A2380 ] C:\Windows\SysWOW64\winsta.dll
01:02:33.0128 0x11c8 C:\Windows\SysWOW64\winsta.dll - ok
01:02:33.0128 0x11c8 [ A77F3ABE13FCC698511E5DEC7ACEBD5F, 78A43FDA9F770FD8BA107605DB44BC71D8B89D7E75560DA783AA6356C1873C15 ] C:\Windows\System32\shsvcs.dll
01:02:33.0128 0x11c8 C:\Windows\System32\shsvcs.dll - ok
01:02:33.0143 0x11c8 [ C28F010F8C6AB4341749E2DEDEAC5D06, CB2A4D9361E1505792F3108A57AC7422CDA7ABD9DEB22E30E8388BAC7012AEBE ] C:\Windows\SysWOW64\wintrust.dll
01:02:33.0143 0x11c8 C:\Windows\SysWOW64\wintrust.dll - ok
01:02:33.0143 0x11c8 [ 7BB3FE507D7143CD54293DA3FB5DF3AB, C919DAD8338A0FF78E0386735E81C4A9408D740475E0F286D8724BF86DF2B72D ] C:\Windows\SysWOW64\crypt32.dll
01:02:33.0143 0x11c8 C:\Windows\SysWOW64\crypt32.dll - ok
01:02:33.0159 0x11c8 [ EDCDF4DB82EF825B94B190D544C8C58B, 65E316CB66893FBA852D44F6ACE0F1DA415DBADADCA838B31DF3AB6B681E33B6 ] C:\Windows\System32\schedsvc.dll
01:02:33.0159 0x11c8 C:\Windows\System32\schedsvc.dll - ok
01:02:33.0159 0x11c8 [ AFAACBE85092FBD8EE7F54CA7FF3F0F1, BD79E678B1FAA611A9855507B3C02175448D8EA335D52FF93520F1865FF88523 ] C:\Windows\SysWOW64\msasn1.dll
01:02:33.0159 0x11c8 C:\Windows\SysWOW64\msasn1.dll - ok
01:02:33.0175 0x11c8 [ D058F369A791DD5B4DF8E7C18C0EB282, B710758473B752A6D21E93778255192F5E1C541A939D7505C1F6C417A9027FBF ] C:\Windows\System32\ktmw32.dll
01:02:33.0175 0x11c8 C:\Windows\System32\ktmw32.dll - ok
01:02:33.0175 0x11c8 [ 15E300200794A8FC38589B44A0B314D6, 5083ABE1F777938FB310EA7A584BE2DBFC2B74C780DDA54A6B32D71591D11F42 ] C:\Windows\System32\xmllite.dll
01:02:33.0175 0x11c8 C:\Windows\System32\xmllite.dll - ok
01:02:33.0175 0x11c8 [ AA221DD533C7B0897B90B92AFFA45A7E, 411611DC8AD56EB92DD9D2AADE9C30E5DB33D200B9A3083BBC458D4E30C0331B ] C:\Windows\System32\taskcomp.dll
01:02:33.0175 0x11c8 C:\Windows\System32\taskcomp.dll - ok
01:02:33.0190 0x11c8 [ 3DB7FFC313BD190D0E64931302776BAF, E7F12568729DBF43323C47B4AE12F231A05B4E57D677D339E98555B01E2498B8 ] C:\Windows\System32\ntmarta.dll
01:02:33.0190 0x11c8 C:\Windows\System32\ntmarta.dll - ok
01:02:33.0190 0x11c8 [ EB4EE894AF86408776C6FD03376DEA29, 7DDBC722E40C502887A574516C1DD7BA2CC16EF0475508C35CC61036B3266420 ] C:\Windows\System32\fveapi.dll
01:02:33.0190 0x11c8 C:\Windows\System32\fveapi.dll - ok
01:02:33.0190 0x11c8 [ 47DBBF38E00C3F7404B71F6509241EF1, CBB3B3F46F702605DD47F12C318984937D7E8384C0A6B62556A6961F74305292 ] C:\Windows\System32\Drivers\http.sys
01:02:33.0190 0x11c8 C:\Windows\System32\Drivers\http.sys - ok
01:02:33.0471 0x11c8 [ 8FF250BD9B3AC4D9D3F325570F901F36, B9324A54D9C6074E7A9AE0A985CFF43755FE10C310BB6E5B71A2693FDEEF19D7 ] C:\Windows\System32\fvecerts.dll
01:02:33.0471 0x11c8 C:\Windows\System32\fvecerts.dll - ok
01:02:33.0471 0x11c8 [ 3F215BF2D4D8D6756298B25B579772C2, 744192D1635E5D296BFD399E870B70592202CEAF95C31C2D2B226A868D33A3FD ] C:\Windows\System32\spoolsv.exe
01:02:33.0471 0x11c8 C:\Windows\System32\spoolsv.exe - ok
01:02:33.0487 0x11c8 [ 599FCE13B819BA7D2D4D4E9C5AD08002, 5D4E9721F691DFFA9F4B5CD2BD0B0756F75A3633BBE6DEC36318034E95BCF271 ] C:\Windows\System32\ProximityService.dll
01:02:33.0487 0x11c8 C:\Windows\System32\ProximityService.dll - ok
01:02:33.0487 0x11c8 [ 14316954FCE79C9DE5A0AFF9D42C83AA, B60FB1FAC0299F9560761411711E86EDFA2F8D27B58230E2E4BB37736FAB2287 ] C:\Windows\System32\SCardSvr.dll
01:02:33.0487 0x11c8 C:\Windows\System32\SCardSvr.dll - ok
01:02:33.0487 0x11c8 [ 407F85D5387EDBB665A7969DF4D4712B, 56E103CDCDFB07E54ABF7F7AD898E7E989B0D9CD73352E6AB89D7AE52AA46C9D ] C:\Windows\System32\BFE.DLL
01:02:33.0487 0x11c8 C:\Windows\System32\BFE.DLL - ok
01:02:33.0487 0x11c8 [ 406388E840C631E3C338F4E3551F791C, DA74B2340C156F83F4D999774B77DD58E682304482340E4A2D69E721E8F3F163 ] C:\Windows\System32\ProximityCommon.dll
01:02:33.0487 0x11c8 C:\Windows\System32\ProximityCommon.dll - ok
01:02:33.0487 0x11c8 [ B17AC10B47C7FCB44D22A1F06415840E, 990D6F629D93F4F913D218ACE5187A26DCB762BAFB2BB279CCE8CAF2755D85A5 ] C:\Windows\System32\Drivers\bowser.sys
01:02:33.0487 0x11c8 C:\Windows\System32\Drivers\bowser.sys - ok
01:02:33.0487 0x11c8 [ 36BF4D86F166ACBC14F0B8B8F90CBCEA, 9127DB0ABCCF57DEEB6447EEE33C5F4724472763DB1941D6FA74C745512D0DA2 ] C:\Windows\System32\Drivers\mpsdrv.sys
01:02:33.0487 0x11c8 C:\Windows\System32\Drivers\mpsdrv.sys - ok
01:02:33.0487 0x11c8 [ 1EEAA5A62E8C49DDF58798F06F78BFFA, D5F37463EC4E4E5F538DCB4B98BFE1415A7CCFA9641BED0621B5BCEBEA91E184 ] C:\Windows\System32\Drivers\mrxsmb.sys
01:02:33.0487 0x11c8 C:\Windows\System32\Drivers\mrxsmb.sys - ok
01:02:33.0487 0x11c8 [ 411EA973A1961C287927DF13891EB41E, 1DA42631346FF8B43443A4DCE838AEB3C7166FBB272FC47740B09A1A1CE5CCBC ] C:\Windows\System32\MPSSVC.dll
01:02:33.0487 0x11c8 C:\Windows\System32\MPSSVC.dll - ok
01:02:33.0487 0x11c8 [ 06D5F2FA3C61E8EA91648EA8E9F99FD3, C665B7896501D42C73955F4EAF4FA3C6B2C9286957D6023C235AFBF9BFB761C6 ] C:\Windows\System32\Drivers\mrxsmb10.sys
01:02:33.0487 0x11c8 C:\Windows\System32\Drivers\mrxsmb10.sys - ok
01:02:33.0487 0x11c8 [ BFBE1EA55ECC15733933D429E384BCA4, 01B2C5B5D92E8F33F5F86A372AE0AFF22779E70377B0C904BEFD0998906DD8B7 ] C:\Windows\System32\Drivers\mrxsmb20.sys
01:02:33.0487 0x11c8 C:\Windows\System32\Drivers\mrxsmb20.sys - ok
01:02:33.0487 0x11c8 [ D8F969B29E087A860156E4FFDB04138D, BDA5A043FF4C7524B6FC9EB3FCEFA51294E93F71AAF8E20F7DE7C6A92FADC29E ] C:\Windows\System32\adhapi.dll
01:02:33.0487 0x11c8 C:\Windows\System32\adhapi.dll - ok
01:02:33.0487 0x11c8 [ 16650912BE5A94B40E0B3B4C39652B56, 908C2C9367AE0AC9AECB5D91514BB33ACD746D99F19C1A8DD6A9550E9CAD9E00 ] C:\Windows\System32\wkssvc.dll
01:02:33.0487 0x11c8 C:\Windows\System32\wkssvc.dll - ok
01:02:33.0487 0x11c8 [ 4979996403A8A7B1B254982F7E44A8CA, DC983DC9F18CB285689A34B116881E4DCEFD38E1A943CE55979330B0D8C04F2D ] C:\Windows\System32\wfapigp.dll
01:02:33.0487 0x11c8 C:\Windows\System32\wfapigp.dll - ok
01:02:33.0487 0x11c8 [ 6A122B4F0E5293CACFA8A5F2CBA9B356, 9D69076B697BEE8742E32EBEF1802D829DEA6B1D93AF485D11CC89A08CA4D809 ] C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
01:02:33.0487 0x11c8 C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe - ok
01:02:33.0487 0x11c8 [ BA6C3BC7A3823E371FF43AA6C6BEDBC6, 08EC8E3B9E1D129B465843E744A3F2455CB923070F6AD81EAC772AA86F24BA18 ] C:\Windows\SysWOW64\shell32.dll
01:02:33.0487 0x11c8 C:\Windows\SysWOW64\shell32.dll - ok
01:02:33.0487 0x11c8 [ ABE4B349D12138772B0D3B1B55C5F2A8, 524BD0CAD64C89F265C349D11F703535111D4DC8DB2A9CA7E17C5C5DFACCABF5 ] C:\Windows\System32\MrmCoreR.dll
01:02:33.0487 0x11c8 C:\Windows\System32\MrmCoreR.dll - ok
01:02:33.0487 0x11c8 [ D141284E5C4C9C17E8711C8C1C3595F6, 3CF63AE8CEEB650D4F746A19CEB181177F4E1BF2E868CC380D09964D0352C8B1 ] C:\Windows\SysWOW64\ole32.dll
01:02:33.0487 0x11c8 C:\Windows\SysWOW64\ole32.dll - ok
01:02:33.0487 0x11c8 [ EA35B404D87B3A61E7A5FBF6CDA1CF94, 48BE19A9D827F248DA3FF163A9B372E4534C3C35DD2BB063DBBCA36F1FA96556 ] C:\Windows\SysWOW64\oleaut32.dll
01:02:33.0487 0x11c8 C:\Windows\SysWOW64\oleaut32.dll - ok
01:02:33.0487 0x11c8 [ B8ECF8A56EEF75468F9ABFECE70AF555, 0B0F821595664D1B6671B4981025E151326CF24ACE433FAA5BF882E633B1CC2D ] C:\Windows\SysWOW64\shlwapi.dll
01:02:33.0487 0x11c8 C:\Windows\SysWOW64\shlwapi.dll - ok
01:02:33.0487 0x11c8 [ 41E843174754F87D86EF0FBF7F60DB0D, C5FEC9110FE8B7587787987AF858097324B0FC8978D6548CB0084C1870BE116D ] C:\Windows\SysWOW64\oleacc.dll
01:02:33.0487 0x11c8 C:\Windows\SysWOW64\oleacc.dll - ok
01:02:33.0502 0x11c8 [ 6C20BD6E46D606CB40A13C22D52B90C7, 3AC55198B0DEEDF8CDC818D76466B3600FE03EDCCC57AF7A4E2DCAAC053089A4 ] C:\Windows\SysWOW64\powrprof.dll
01:02:33.0502 0x11c8 C:\Windows\SysWOW64\powrprof.dll - ok
01:02:33.0502 0x11c8 [ 4F583ABEF86D3B9DD2C0D24C9E41138E, 0CF8059493DF2AA7E56BDC0791A328FBBFC670423ADF6D8BB810D899FEBF293A ] C:\Windows\SysWOW64\winspool.drv
01:02:33.0502 0x11c8 C:\Windows\SysWOW64\winspool.drv - ok
01:02:33.0502 0x11c8 [ 828CFD406E60311A9E5414685FA7EEDF, 2561C970B9DF4E1BBD701866D6FD77509B18E0063DC250E61B868C5C7CCB4759 ] C:\Windows\SysWOW64\combase.dll
01:02:33.0502 0x11c8 C:\Windows\SysWOW64\combase.dll - ok
01:02:33.0502 0x11c8 [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] C:\Windows\System32\certprop.dll
01:02:33.0502 0x11c8 C:\Windows\System32\certprop.dll - ok
01:02:33.0502 0x11c8 [ F0E78B119D12BA81F163D48C0FF30B9A, 9622A2F36F03A33E7D145C439BD62D5AEFD53064D60BCC787555D1AF8CB936A9 ] C:\Windows\System32\cryptsvc.dll
01:02:33.0502 0x11c8 C:\Windows\System32\cryptsvc.dll - ok
01:02:33.0502 0x11c8 [ 109FC3F80BF4F4DC5A071058074F13C1, F30736F45BA1811D59E9CB1C172D8D1EA9F5A7D36DCFFBFC9E7E02448C1CF851 ] C:\Windows\System32\dps.dll
01:02:33.0502 0x11c8 C:\Windows\System32\dps.dll - ok
01:02:33.0502 0x11c8 [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
01:02:33.0502 0x11c8 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe - ok
01:02:33.0502 0x11c8 [ 3C5846581F329FD6768E5E7C1780151E, 1C55CB41A1A19C38091739FE96D26BBBA40B0FB3CCE00DCA368DFEF89861BB13 ] C:\Windows\System32\cryptcatsvc.dll
01:02:33.0502 0x11c8 C:\Windows\System32\cryptcatsvc.dll - ok
01:02:33.0502 0x11c8 [ 9C2CB23B77E539D87B4652FA68A6C275, D927888766B5197DF5CAB0A3D2373774BFC00C0A5BEA92495D20C38B5D25FF55 ] C:\Windows\System32\vssapi.dll
01:02:33.0502 0x11c8 C:\Windows\System32\vssapi.dll - ok
01:02:33.0502 0x11c8 [ C32EFB3575BEC798FC5D27092497892B, 05EDE387197D58ADCC69EEFB3C992B8FC49D0536F24445A0FC3C911336DC7E4C ] C:\Windows\System32\WinSCard.dll
01:02:33.0502 0x11c8 C:\Windows\System32\WinSCard.dll - ok
01:02:33.0502 0x11c8 [ EF39CCCC9AD927A25334AE0B41A8A343, EC5FB376F84697F42B632BC9775D362CF6C54A68E26A0CF027D90F5A419BEA74 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll
01:02:33.0502 0x11c8 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.dll - ok
01:02:33.0502 0x11c8 [ 45EACE8D94B9CEC746A85154892C4FDC, F2507F1AA4C5D54EC8151B44CD033B231C708B57761432E5EDEE6219122301C2 ] C:\Windows\System32\IKEEXT.DLL
01:02:33.0502 0x11c8 C:\Windows\System32\IKEEXT.DLL - ok
01:02:33.0502 0x11c8 [ FA6C8E59B74908550607EBEDCD7BA1E2, BCD5847CA9C6E781E20C4377DF097BC30A32F5D911BFC365BD1329EEB751862A ] C:\Windows\System32\secur32.dll
01:02:33.0502 0x11c8 C:\Windows\System32\secur32.dll - ok
01:02:33.0502 0x11c8 [ 9275F02BEA644F43A459E316A932658F, A4B9A716BEF1ADFDDA4C44D4838EC57BD77DEE29C4B4737B58A9375C2366A87F ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll
01:02:33.0502 0x11c8 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamnet.dll - ok
01:02:33.0502 0x11c8 [ 39CEA8232B92B33F1BB6AFA8C163EFC3, 687F72DB286A5A00F28993C162221133C01BFBA7E02BF7E0947575E6CA061288 ] C:\Windows\System32\taskhost.exe
01:02:33.0502 0x11c8 C:\Windows\System32\taskhost.exe - ok
01:02:33.0502 0x11c8 [ 75B2D5E65DE399AD3B0E03FE5C426F5E, F09CBD27657054165BDB3C6D8ECA9F3148B91769D086898DF152902F6879C0C3 ] C:\Windows\System32\lpksetup.exe
01:02:33.0502 0x11c8 C:\Windows\System32\lpksetup.exe - ok
01:02:33.0502 0x11c8 [ C37508B16F7C26CDF20BAD5646034670, 81F8D1510CBBA5C9B008C77B87D2C2541387F4F6339C3B63F9D4910586C9C8B0 ] C:\Windows\System32\vpnikeapi.dll
01:02:33.0502 0x11c8 C:\Windows\System32\vpnikeapi.dll - ok
01:02:33.0502 0x11c8 [ 5579A2CE7756B59F4BB778AFDCAF2096, BD3B9A39DC077EA64502915A5E71593402D2555A04D9979B28DA86678F1D2A7F ] C:\Windows\System32\vsstrace.dll
01:02:33.0502 0x11c8 C:\Windows\System32\vsstrace.dll - ok
01:02:33.0502 0x11c8 [ 8B70B0C422715563B90FAD1E360A0E2A, 717E08BEC241510BAD9D846824BD5AA11BED193E80F15BCAD98C05E4923BC923 ] C:\Windows\System32\dpx.dll
01:02:33.0502 0x11c8 C:\Windows\System32\dpx.dll - ok
01:02:33.0502 0x11c8 [ BD483C1AE32D5B21A22CABE74A9D4798, 02EDAA1C8AEB28E8E9547EF5A455B14A683851CDAA79CA58A2C909DFF04D098D ] C:\Windows\SysWOW64\IPHLPAPI.DLL
01:02:33.0502 0x11c8 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
01:02:33.0518 0x11c8 [ 682C3D4982B5375732A4273809365A0A, FA62EB00740311D631C8237DB40E2503B1C9FBAB050AA17970339995C54845BE ] C:\Windows\SysWOW64\version.dll
01:02:33.0518 0x11c8 C:\Windows\SysWOW64\version.dll - ok
01:02:33.0518 0x11c8 [ B3CC9EDFD97F7087013A9A47089DF571, D9D13A76621FFDBBAD5298C8FB5BFE136443FDE264977567839337EC21A9190D ] C:\Windows\SysWOW64\ws2_32.dll
01:02:33.0518 0x11c8 C:\Windows\SysWOW64\ws2_32.dll - ok
01:02:33.0518 0x11c8 [ 1AFB56F8A39455ACBAB16A29A45C30AC, 2EF2A0DECC9654EE6D265CE6D03DE72C3BB559401731091B97C1962241134CEC ] C:\Windows\SysWOW64\nsi.dll
01:02:33.0518 0x11c8 C:\Windows\SysWOW64\nsi.dll - ok
01:02:33.0518 0x11c8 [ 77ADCD16CCEB8A9AD1FD81FC464B1A6B, E066AAC7AD4E3EB3AC59475CD186074D431C743139F6CBB9211391011445C5EC ] C:\Windows\SysWOW64\winnsi.dll
01:02:33.0518 0x11c8 C:\Windows\SysWOW64\winnsi.dll - ok
01:02:33.0518 0x11c8 [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
01:02:33.0518 0x11c8 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe - ok
01:02:33.0533 0x11c8 [ E4FA071AD67265E66899471CF6519408, 5C9D2A1FF8C4F84A0FBA01E77E571C95F96D2E9B6BC79710FD2A0FC1903A4B46 ] C:\Windows\SysWOW64\SHCore.dll
01:02:33.0533 0x11c8 C:\Windows\SysWOW64\SHCore.dll - ok
01:02:33.0533 0x11c8 [ 48E42483A6516E48586A2133CA1AB035, 79C1EB86C8D5DCC51E3FEFA78459F468497C6495DF2EAEA7EBEAFA6DCB55D193 ] C:\Windows\System32\comsvcs.dll
01:02:33.0533 0x11c8 C:\Windows\System32\comsvcs.dll - ok
01:02:33.0533 0x11c8 [ 80D8679BF84A9383BFF33E07D5D9FC35, 0986806F2504C8A66FA8DEF7923A69E90A2390DD447BE53AD1824240CE68EC1E ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll
01:02:33.0533 0x11c8 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamcore.dll - ok
01:02:33.0533 0x11c8 [ 7D20883F79FF846AEE49678238BE8A7A, B0C8752AA25FA32E4D313C041BC9869FC076E971ABCCF14CFCBF685F47B0456D ] C:\Windows\SysWOW64\cryptsp.dll
01:02:33.0533 0x11c8 C:\Windows\SysWOW64\cryptsp.dll - ok
01:02:33.0549 0x11c8 [ 46211947C1F1953B74C33FC80ECD3C6A, EC2DD37028783F77DF1CC4B0BEF4E44F86D938994909D263AA56189B2F1FC489 ] C:\Windows\SysWOW64\rsaenh.dll
01:02:33.0549 0x11c8 C:\Windows\SysWOW64\rsaenh.dll - ok
01:02:33.0549 0x11c8 [ 785838B984563D12D4612256D2C78B48, 70537173C440F0CA903153AD2F9CF158F54DC94D4650E418D5D2408238E7BAFE ] C:\Windows\SysWOW64\mpr.dll
01:02:33.0549 0x11c8 C:\Windows\SysWOW64\mpr.dll - ok
01:02:33.0549 0x11c8 [ 3588D5D12FF7BFEBF2A4955C36B38EB0, A5B4531EF91F32A02CA13AA0ABD0A32DADB2B979876F2E2B2E7FCB116ABDF3C6 ] C:\Windows\SysWOW64\psapi.dll
01:02:33.0549 0x11c8 C:\Windows\SysWOW64\psapi.dll - ok
01:02:33.0565 0x11c8 [ C121367D21599367F2ADB9C11B7BABAA, 752993437AB2C797B5C0FFD397BC8FAC575886857C61BCCCCF169DA54BEE911C ] C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
01:02:33.0565 0x11c8 C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe - ok
01:02:33.0565 0x11c8 [ DF3CA8D16BDED6A54977B30E66864D33, 1D1A1AE540BA132F998D60D3622F0297B6E86AE399332C3B47462D7C0F560A36 ] C:\Windows\System32\msvcr100.dll
01:02:33.0565 0x11c8 C:\Windows\System32\msvcr100.dll - ok
01:02:33.0565 0x11c8 [ C5880549A5F07E5F43C51F7F74046EBA, 5F43F9BF0556C4638C114A02212CA98D75049C69DF8CA14D26DF12FD6D887609 ] C:\Program Files\Common Files\mcafee\msc\LogCntrl.dll
01:02:33.0565 0x11c8 C:\Program Files\Common Files\mcafee\msc\LogCntrl.dll - ok
01:02:33.0565 0x11c8 [ 04D48692EFF181DA46DD8EA8BE9FFB2B, D2F2AFB22C7A1499CB48008A036BE0239266B7DE07530DA768D7B1305518C108 ] C:\Windows\System32\mfevtps.exe
01:02:33.0565 0x11c8 C:\Windows\System32\mfevtps.exe - ok
01:02:33.0580 0x11c8 [ 872E8400C9F8BBFE6B8EA1EE5C70080C, 22F5062F9C438DEA1C35379618AADBF0CCFB99DF3291003666661D9075E8E6E2 ] C:\PROGRA~1\mcafee\msc\McOobeSv.dll
01:02:33.0580 0x11c8 C:\PROGRA~1\mcafee\msc\McOobeSv.dll - ok
01:02:33.0580 0x11c8 [ B1E63281081B64BB570EA5B3EC5146C5, CB9C7EF52393702EFA13E13DB38B74B99610429E1C4CBBF995358872E40917F8 ] C:\Windows\System32\sfc.dll
01:02:33.0580 0x11c8 C:\Windows\System32\sfc.dll - ok
01:02:33.0580 0x11c8 [ C954FE5796A0BFCDCDD8A9C210E9D2C3, B935E2E16F20CBE4172509EB7A71C1CCF52EBFFF629CE64D1F6698A7AE6CFDBA ] C:\Windows\System32\sfc_os.dll
01:02:33.0580 0x11c8 C:\Windows\System32\sfc_os.dll - ok
01:02:33.0596 0x11c8 [ 5192F9A06BC32684ADF938EE16E118D9, 36BBC1B76E3A027DCE485761567A8BB606C86160783E8D9EC3E52F1B316006AD ] C:\Windows\SysWOW64\ntmarta.dll
01:02:33.0596 0x11c8 C:\Windows\SysWOW64\ntmarta.dll - ok
01:02:33.0596 0x11c8 [ D3F60A4345FCA9C1BE68AD7D0D6DE770, 214AF09F4B021C2F8655FBC8AC8C801E89CD9115CDE690FAEBDA69D63D660EDD ] C:\Windows\System32\Drivers\Ndu.sys
01:02:33.0596 0x11c8 C:\Windows\System32\Drivers\Ndu.sys - ok
01:02:33.0596 0x11c8 [ 19E41F140A6ADBD38943710DA7FF0E38, AF9FDBEB0E519B7EA034C76077E514FE27138204E9874F4DDEA0B1CB26A45BA0 ] C:\Windows\System32\pcasvc.dll
01:02:33.0596 0x11c8 C:\Windows\System32\pcasvc.dll - ok
01:02:33.0596 0x11c8 [ 1580A33C6CD8E0117247A48C31825D6E, 3A5E9B2A65B8DFCA700AA7C85B2E0CF9EEDA582D479F51CF08C79A13FDEC42C1 ] C:\Windows\System32\aepic.dll
01:02:33.0596 0x11c8 C:\Windows\System32\aepic.dll - ok
01:02:33.0611 0x11c8 [ D0398301E7E94D2B7DFE6D12DE77E809, 7350C112380778B6C1C065F3C5469ECEE70F8BF41492CD9E40ABAB6AC87802F9 ] C:\Windows\System32\cryptnet.dll
01:02:33.0611 0x11c8 C:\Windows\System32\cryptnet.dll - ok
01:02:33.0611 0x11c8 [ 80ABCD4C2DE9FD832477303AE0CA3BE5, 98F3958E650CEB1006D92980503E1B176D2CA55D2A6742C1C27CDE829D137DA9 ] C:\Windows\System32\nlasvc.dll
01:02:33.0611 0x11c8 C:\Windows\System32\nlasvc.dll - ok
01:02:33.0611 0x11c8 [ D47794FC9B672034F4932B47016A4998, C4521A4980B783423F9F809E65AAF281399E66016A0D2B81D85FC71075EE3AAF ] C:\Windows\System32\ncsi.dll
01:02:33.0611 0x11c8 C:\Windows\System32\ncsi.dll - ok
01:02:33.0627 0x11c8 [ 1369928779943B5C7AABA263E6E2BBC1, 5DB4E77912051839B842F43B01933A07D72BD9E772F129573B1504361A9AA6A4 ] C:\Windows\System32\winhttp.dll
01:02:33.0627 0x11c8 C:\Windows\System32\winhttp.dll - ok
01:02:33.0627 0x11c8 [ 5858AA1B5AF20C37B186971A21460A4E, 5BD4708E4E6AFC22B3AAFE592A7800C9621BFC3833585F00F00FFE6294A42915 ] C:\Windows\System32\ssdpapi.dll
01:02:33.0627 0x11c8 C:\Windows\System32\ssdpapi.dll - ok
01:02:33.0627 0x11c8 [ 70DBB6A8B52B3830922F1C5789E1BEEB, 30288885789753FE19B51A200137E916E10BCD4211EFF50931C19E88824EADC0 ] C:\Windows\System32\Drivers\PEAuth.sys
01:02:33.0627 0x11c8 C:\Windows\System32\Drivers\PEAuth.sys - ok
01:02:33.0627 0x11c8 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] C:\Windows\System32\Drivers\secdrv.sys
01:02:33.0627 0x11c8 C:\Windows\System32\Drivers\secdrv.sys - ok
01:02:33.0643 0x11c8 [ 9400C71F5A1A380B494B6922F007D485, 66C293974BA4A61A06DC26EF48D5FA5E75377F66AD1CD774AA6827FA20A5F46E ] C:\Windows\System32\Drivers\srvnet.sys
01:02:33.0643 0x11c8 C:\Windows\System32\Drivers\srvnet.sys - ok
01:02:33.0643 0x11c8 [ 8F2A13A5DF99D72FDDE87F502A66F989, 2228C62ACDB4CBBFDD2BE705E604E0B9A8AEA7146F65F2D8B9B2A2FB49ACFAE1 ] C:\Windows\System32\Drivers\tcpipreg.sys
01:02:33.0643 0x11c8 C:\Windows\System32\Drivers\tcpipreg.sys - ok
01:02:33.0643 0x11c8 [ 8C8CF3041B27E7657ADD0EE17F6DBFCA, A6846478B9E7B0A509E5A28C6C7B66ED39F0247F9AFF01E3C3CADC0DBEF3CA00 ] C:\Windows\System32\trkwks.dll
01:02:33.0643 0x11c8 C:\Windows\System32\trkwks.dll - ok
01:02:33.0643 0x11c8 [ 3D6B518B71C75C8FA4115A33615C107A, ED7A266013D29D3B1A462464735C3632BEA121D1B32553907AEAA0B00595C3DF ] C:\Windows\System32\wbem\WMIsvc.dll
01:02:33.0643 0x11c8 C:\Windows\System32\wbem\WMIsvc.dll - ok
01:02:33.0643 0x11c8 [ 97C398750C8E80A48EB63999546F796E, 75A7F556366A048B6A834B4979E4FC0ADBE504B1D23A5A7E55FE96A20143475A ] C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
01:02:33.0643 0x11c8 C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe - ok
01:02:33.0658 0x11c8 [ B3455B5D864BD1E4F48D4E76FAFD8163, EF9FF2F4BCF9DC2FC5B29D7FEF912CCA00A55A83BA60F078CA9593857922EE3C ] C:\Program Files\Common Files\mcafee\systemcore\mfehida.dll
01:02:33.0658 0x11c8 C:\Program Files\Common Files\mcafee\systemcore\mfehida.dll - ok
01:02:33.0658 0x11c8 [ DC21E1F06343773D7E24362DCEF7944B, E5C13A2D4DEEBEDC6E0E4882FFC56322EA0474A3BD8B1C8A077293F433854F9B ] C:\Windows\System32\sysmain.dll
01:02:33.0658 0x11c8 C:\Windows\System32\sysmain.dll - ok
01:02:33.0658 0x11c8 [ 21CA3869D0EA99C902B26ED697BD78E5, C18AC7A07EF12C3242FEC2E68952F8B91F365ADF755E6E7D1ADE9319C0041CDC ] C:\Windows\System32\wbemcomn.dll
01:02:33.0658 0x11c8 C:\Windows\System32\wbemcomn.dll - ok
01:02:33.0674 0x11c8 [ 0DE224F7B8041B17AA53D00327A86396, 283AD5E9EE8F0C2F47B81FF246BC42ED0656026DA760CAB9EA25611785BBFED8 ] C:\Windows\System32\Drivers\srv2.sys
01:02:33.0674 0x11c8 C:\Windows\System32\Drivers\srv2.sys - ok
01:02:33.0674 0x11c8 [ CAC5202757EF68C4849B0DFFA75F6D3C, D68EDCED68DB7755AA8BE5EC2784C124888BA4ED33B3E366FD83C3E64E42B770 ] C:\Windows\System32\iphlpsvc.dll
01:02:33.0674 0x11c8 C:\Windows\System32\iphlpsvc.dll - ok
01:02:33.0674 0x11c8 [ B1E1452C0DE1249BB22ADCA48B280AC7, 0F2CC0389EB8EB706CEB60DB89094B0781CC6342A75F3DEACACA3E91E6977984 ] C:\Windows\System32\httpprxm.dll
01:02:33.0674 0x11c8 C:\Windows\System32\httpprxm.dll - ok
01:02:33.0674 0x11c8 [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6, 61EEB1349489CB85204F1B4E398BE24EDC01FB914120C9DD0487F8EE1EDA055E ] C:\Windows\System32\Drivers\srv.sys
01:02:33.0674 0x11c8 C:\Windows\System32\Drivers\srv.sys - ok
01:02:33.0689 0x11c8 [ 648EDA660D32C7B80F62EF74B6B392D5, 0330D176EC6F73F1C53C9B37DB16CB3CE3FFC1C71AB04ED8215030361C4C86CC ] C:\Windows\System32\adhsvc.dll
01:02:33.0689 0x11c8 C:\Windows\System32\adhsvc.dll - ok
01:02:33.0689 0x11c8 [ 47F7B9DF32E259FC7B8D9ED34EA4E0BF, 3C96374C48AA6BB56D6081D968B92331BA213FF12F382F5E67C360883E016B17 ] C:\Windows\System32\ncbservice.dll
01:02:33.0689 0x11c8 C:\Windows\System32\ncbservice.dll - ok
01:02:33.0689 0x11c8 [ D86F25F0AD6CA6E77A9F67641EEB6722, 15066B624C54A3FEDEEB840330E45B7F24A411941DB39DFB75177225409C57B4 ] C:\Windows\System32\sqmapi.dll
01:02:33.0689 0x11c8 C:\Windows\System32\sqmapi.dll - ok
01:02:33.0689 0x11c8 [ C9DA260FC97E22905A97FFC3D5F42B18, E424CB675532C7323E3628DA0D498FCD34CB636ECC05C6D7F449F61C78606CE9 ] C:\Windows\System32\bi.dll
01:02:33.0689 0x11c8 C:\Windows\System32\bi.dll - ok
01:02:33.0705 0x11c8 [ 3A729A258006D813FCB2D3CEE8733878, 7FD4F1F37CF24C98CE619BC0C75B2FDFA1C912AD1EC1A3F4CF45FD45AD00ED14 ] C:\Windows\System32\netprofm.dll
01:02:33.0705 0x11c8 C:\Windows\System32\netprofm.dll - ok
01:02:33.0705 0x11c8 [ 5C51484B4D2211FBE88DEB472588B5DF, C67B371351DF5627B6E2F23B768F3D1743CD2E248FFE0B9A945E1FF05839B14B ] C:\Windows\System32\wdscore.dll
01:02:33.0705 0x11c8 C:\Windows\System32\wdscore.dll - ok
01:02:33.0705 0x11c8 [ 310068BDA80B1D55C36580FD8A873FAF, A75412FF1F483461F526E9A359DCEECA5E683441514464D5ED82D1A9740D583E ] C:\Windows\System32\browser.dll
01:02:33.0705 0x11c8 C:\Windows\System32\browser.dll - ok
01:02:33.0705 0x11c8 [ 256EE31588257E8A555DBFAA13F1908E, B6817F632EDEA483E35BF26846DCDD4E95E860620959179B2A5D8AD7EEDDB126 ] C:\Windows\System32\srvsvc.dll
01:02:33.0705 0x11c8 C:\Windows\System32\srvsvc.dll - ok
01:02:33.0721 0x11c8 [ 547D152592C3B4960DD80D9C61F7C8A9, 391730B171A4BE09B6C2C89614ED39B3750529DF43AE652E79CE3E463466611B ] C:\Windows\System32\mi.dll
01:02:33.0721 0x11c8 C:\Windows\System32\mi.dll - ok
01:02:33.0721 0x11c8 [ 58D768B03F3C7FF919004634C29E7843, A8D1ADB08CE993C6F83F27FDEF6B5491E63FF41E37C64E0B56FDAB8CE3C54CB7 ] C:\Windows\System32\nci.dll
01:02:33.0721 0x11c8 C:\Windows\System32\nci.dll - ok
01:02:33.0721 0x11c8 [ 3C14BC7A5590DFDD754CA7A15CED0A9A, ABC82F9D02A6BD0B90459BD8300F4CEA39AA40D1705CAA34A145FBCADF54F3E2 ] C:\Windows\System32\sscore.dll
01:02:33.0721 0x11c8 C:\Windows\System32\sscore.dll - ok
01:02:33.0736 0x11c8 [ C5D0659CEA9A87C4C4E82B0464683F19, 8F789FB1E65A1BD5CD1F44FDD3B6ED1CDE1BAFE2A320E95B3401AE25BCD7BF12 ] C:\Windows\System32\sscoreext.dll
01:02:33.0736 0x11c8 C:\Windows\System32\sscoreext.dll - ok
01:02:33.0736 0x11c8 [ 8CABB7DB418AA58CEC8A00E43368EAA7, 1BFD20A806FE6FD4E00240D2940C1CC8D368F312254CF4AF9EFE06780797A1C8 ] C:\Windows\System32\miutils.dll
01:02:33.0736 0x11c8 C:\Windows\System32\miutils.dll - ok
01:02:33.0736 0x11c8 [ 08AF5B64DA03D206508CBACAEB9E1FF3, 3254D0AE75D14E0B46885DBDB64C3A3043C6C450F80B0E172FEE05F9C5018732 ] C:\Windows\System32\ndiscapCfg.dll
01:02:33.0736 0x11c8 C:\Windows\System32\ndiscapCfg.dll - ok
01:02:33.0736 0x11c8 [ 52EF3A32EC17D3E9580A79A23B712917, 1A5C013334E48AB404BA958CEDF346B10CDDE823332B357416BC5F45CB79CF63 ] C:\Windows\System32\brdgcfg.dll
01:02:33.0736 0x11c8 C:\Windows\System32\brdgcfg.dll - ok
01:02:33.0752 0x11c8 [ DD35092F11DCED777EF8621D4EE2505A, 92A6FA9989834632986DAAD9A7F168BD85673C9D51AAC4F55F6CA723C92E4156 ] C:\Windows\System32\rascfg.dll
01:02:33.0752 0x11c8 C:\Windows\System32\rascfg.dll - ok
01:02:33.0752 0x11c8 [ 909EBA9AF43AF0E70EA7FFC352484424, 7C028D773E9B2CEB2ADD0ACA8ADD038C470D98C3CCC3DBC80C06F4BC64C3E967 ] C:\Windows\System32\mprapi.dll
01:02:33.0752 0x11c8 C:\Windows\System32\mprapi.dll - ok
01:02:33.0752 0x11c8 [ 11F0834544D68B955E6C44DFFB272122, B02C18C530033B413FA5FB72AF2AAC4B14CA179FC150BC004A28B8C951520E84 ] C:\Windows\System32\mprmsg.dll
01:02:33.0752 0x11c8 C:\Windows\System32\mprmsg.dll - ok
01:02:33.0752 0x11c8 [ 91E352ACB49DF3388C960A09243E5616, E1B8668849C3F890C0CE47627D0391C2C3DA39224E52A51F72F8233362C622B2 ] C:\Windows\System32\NdisImPlatform.dll
01:02:33.0752 0x11c8 C:\Windows\System32\NdisImPlatform.dll - ok
01:02:33.0767 0x11c8 [ F6BB843AFC93AEE9E928CFE4BB5B743C, 82AFF0865BF7292CCC862F18FB19A8A1D4408C7468402C4536BC560D8C3176ED ] C:\Windows\System32\LldpNotify.dll
01:02:33.0767 0x11c8 C:\Windows\System32\LldpNotify.dll - ok
01:02:33.0767 0x11c8 [ AF56A8936DF2F7031D4311C81D065CE9, 788E138D579E71616AB3E10AF0959674BF59165505FB031795D71BAD0213198E ] C:\Windows\System32\tcpipcfg.dll
01:02:33.0767 0x11c8 C:\Windows\System32\tcpipcfg.dll - ok
01:02:33.0767 0x11c8 [ E09A3A37634A2F23A2184839BC31FD54, 2F0B854F09A92760CB1443E7DDEFF64DA4AE1E2A7EE1639814E92CE6D29E9A96 ] C:\Windows\System32\wshbth.dll
01:02:33.0767 0x11c8 C:\Windows\System32\wshbth.dll - ok
01:02:33.0767 0x11c8 [ CA4FAFFA957C71C006B59E29DFE3EB8B, 2144DD4B49D61CFB49A52439BE8F76AE9468A101627287B11328370B00A22C44 ] C:\Windows\System32\pnrpnsp.dll
01:02:33.0767 0x11c8 C:\Windows\System32\pnrpnsp.dll - ok
01:02:33.0767 0x11c8 [ 768B5A538A11E9C6F8EDD9AFDFA16936, 6CBFA8E69BB3CE9148C141EE060D5DE88C08F964C1E21EF2F2A825E10ADD47FB ] C:\Windows\System32\winrnr.dll
01:02:33.0767 0x11c8 C:\Windows\System32\winrnr.dll - ok
01:02:33.0783 0x11c8 [ 149FEE067A002D75B7714C300D019C9E, CA50C77FEF5B87228266437B9439B8FDB479D8B2E95768C3ABE98D4A9E47B544 ] C:\Windows\System32\NapiNSP.dll
01:02:33.0783 0x11c8 C:\Windows\System32\NapiNSP.dll - ok
01:02:33.0783 0x11c8 [ 0AEF3F58E05D5BBCD8A3CF2B393FE465, F9697AA818175E2F07936B90C0FE6C8436A5DFB759D0E5A4CD9B0E5CEE53C563 ] C:\Windows\System32\wmidcom.dll
01:02:33.0783 0x11c8 C:\Windows\System32\wmidcom.dll - ok
01:02:33.0783 0x11c8 [ 95AB131067CD1695B62DEE20ADDD5071, D9583A13D8F724D5117AEE30EA8FDDA391D4B8F1CEA11D8C995E31A875147D30 ] C:\Windows\System32\resutils.dll
01:02:33.0783 0x11c8 C:\Windows\System32\resutils.dll - ok
01:02:33.0799 0x11c8 [ 32550CE9B5AFB962A1BB8D995E76688D, 4378B49FFB61233B31AB660B5CB878E3369C2D53CBFA8633DAA8F4423AA12904 ] C:\Windows\System32\clusapi.dll
01:02:33.0799 0x11c8 C:\Windows\System32\clusapi.dll - ok
01:02:33.0799 0x11c8 [ 04C84B41AD7BC0C663A613CA9E3D3FC5, 3E588C77AC9F2396DDD624F9DB34601728AF417FDED4DC757165A15DEF51B9BD ] C:\Windows\System32\rasadhlp.dll
01:02:33.0799 0x11c8 C:\Windows\System32\rasadhlp.dll - ok
01:02:33.0799 0x11c8 [ 49C4B8CF23D8DCE075C8F7D1FFC7C654, EC5872CCA1CAECAB7B1E8BDEB717447750E6C6070706BA8AF25C78B9D3989411 ] C:\PROGRA~1\mcafee\msk\msksrvr.dll
01:02:33.0799 0x11c8 C:\PROGRA~1\mcafee\msk\msksrvr.dll - ok
01:02:33.0799 0x11c8 [ 5A55E3E6F53592F8170623DEFA2B7954, B524543192E78A2C97D3EC9AA0CFCBBAA308439D3A33F9A1F4EDFBD3181D7919 ] C:\Windows\System32\atl100.dll
01:02:33.0799 0x11c8 C:\Windows\System32\atl100.dll - ok
01:02:33.0799 0x11c8 [ B3342F73CEEF2A6C0A1707060A53F00E, 33B181103BA06B6BA60AFE8253D960F8BBFC4276E7B8D461C964FE541283129E ] C:\Program Files\Common Files\mcafee\mcproxy\McProxy.dll
01:02:33.0799 0x11c8 C:\Program Files\Common Files\mcafee\mcproxy\McProxy.dll - ok
01:02:33.0814 0x11c8 [ 4F096D96285E06CD51AEF7D2D3DE04DA, 5BB420FBE28315F2117376052BB8488CE84A3398DDA65005B8AE1F792017E9A8 ] C:\Windows\System32\msvcp100.dll
01:02:33.0814 0x11c8 C:\Windows\System32\msvcp100.dll - ok
01:02:33.0814 0x11c8 [ 4235CDAB88103D0AAF494B9932FBF49D, 75768D7598F68BFD37A99B28BB77EE8FBCBC2BCA1CE2F16E4BE888E4E49CA020 ] C:\PROGRA~1\mcafee\mpf\MpfSvc.dll
01:02:33.0814 0x11c8 C:\PROGRA~1\mcafee\mpf\MpfSvc.dll - ok
01:02:33.0814 0x11c8 [ 17880C5A11373D67993FA652358DC306, 91CC148FB9D02B5EC1DE7434579E64BB1F3EFC97322EE3916CAA0A3CAF5A9589 ] C:\Program Files\Common Files\mcafee\systemcore\mfefwctl.dll
01:02:33.0814 0x11c8 C:\Program Files\Common Files\mcafee\systemcore\mfefwctl.dll - ok
01:02:33.0830 0x11c8 [ 70240CBB92FE5191A2705801F9AF3ABC, DDA5F8B6A48557C01727F8F9EA30AD11690E436DA5BF48D3B3981FAE4132FD36 ] C:\Program Files\Common Files\mcafee\msc\McRTMui.dll
01:02:33.0830 0x11c8 C:\Program Files\Common Files\mcafee\msc\McRTMui.dll - ok
01:02:33.0830 0x11c8 [ FAC37D7B3D6354A5A5E19A45B50B4008, 2962B552A1DA545DFDEF0886582E82596FE8A3A19AAF989B025AFDA84D16D4EC ] C:\Windows\System32\hidserv.dll
01:02:33.0830 0x11c8 C:\Windows\System32\hidserv.dll - ok
01:02:33.0830 0x11c8 [ 20F6FD63E6D456114BC8056D62792786, 12EDB8DD4D647F8CF680ABD1A36704EE9BEBE5F65C821E6D76F798441AF2C199 ] C:\Windows\System32\netprofmsvc.dll
01:02:33.0830 0x11c8 C:\Windows\System32\netprofmsvc.dll - ok
01:02:33.0830 0x11c8 [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] C:\Windows\System32\wdi.dll
01:02:33.0830 0x11c8 C:\Windows\System32\wdi.dll - ok
01:02:33.0845 0x11c8 [ C756BDE6A6D10EE00A9127FEB1D7FFF5, 1799D331CFA3306D23FC747AAADCFE56FD60C53BFBACF658E7435D2FEE4BC49E ] C:\Program Files\Common Files\mcafee\msc\LangSel.dll
01:02:33.0845 0x11c8 C:\Program Files\Common Files\mcafee\msc\LangSel.dll - ok
01:02:33.0845 0x11c8 [ 0108C8E5176D590F242701EF5A62CC26, 3A72F5D4402663B7445F6B3C55F01E83A619B6192F7D3CC2DE3C57F9F50D5A2D ] C:\Windows\System32\IPSECSVC.DLL
01:02:33.0845 0x11c8 C:\Windows\System32\IPSECSVC.DLL - ok
01:02:33.0845 0x11c8 [ 26D38C1391CD81ADDD791DE136E2FEA7, 56B794F554E223FC4D0827652B84AAC28106DBCE2BF33D83AF1AE2BEDCB6C3FD ] C:\Windows\System32\npmproxy.dll
01:02:33.0845 0x11c8 C:\Windows\System32\npmproxy.dll - ok
01:02:33.0845 0x11c8 [ ACA7A882A6CAD94A08632868AA2EE64A, 73AA41960A4A39BCA960743083ADCFC494B19FADCBADD53FD7386934D6141E69 ] C:\Windows\System32\FwRemoteSvr.dll
01:02:33.0845 0x11c8 C:\Windows\System32\FwRemoteSvr.dll - ok
01:02:33.0861 0x11c8 [ 94AA5150E35B3ABB7191FE641E3C2473, 48CC776E92579188FF75BADFABF7BDBED0092AF5EE2BDBDEF9C3834A01E39CAB ] C:\Windows\System32\wpdbusenum.dll
01:02:33.0861 0x11c8 C:\Windows\System32\wpdbusenum.dll - ok
01:02:33.0861 0x11c8 [ 96769AA6F1428DB554F9BBBA21D8B5E8, A6B49CAB9545D584AD5F66388977967840A538D22130B081DF9C2846C82FA31A ] C:\Windows\System32\msxml3.dll
01:02:33.0861 0x11c8 C:\Windows\System32\msxml3.dll - ok
01:02:33.0861 0x11c8 [ CEB35EB551BE4F216691255D38867346, DD4F2492DAA55452E4CA4B5753FF003E2DC3AC4EA7155D98A25A4A28F38DE91E ] C:\Windows\System32\activeds.dll
01:02:33.0861 0x11c8 C:\Windows\System32\activeds.dll - ok
01:02:33.0877 0x11c8 [ 54A59A152C795E4FD51FB247841F57D6, 07DD8A9E518E52A1826399A5DA280F5A523301E6DC3ACFDE1533E1438A1F3C9C ] C:\Windows\System32\diagperf.dll
01:02:33.0877 0x11c8 C:\Windows\System32\diagperf.dll - ok
01:02:33.0877 0x11c8 [ 64F6AFD2F4F8D0DB5B8770EC59103778, A681B1D160BC2E4855B0C907110870D0FC0BB917C89B35C8327679E0DEC5E1FB ] C:\Windows\System32\PortableDeviceApi.dll
01:02:33.0877 0x11c8 C:\Windows\System32\PortableDeviceApi.dll - ok
01:02:33.0877 0x11c8 [ D1A04DC07552A12553D64404CDBAB3A1, CD6765C36FAF2E7DC61A869B6CB164448C6765F34A70437B9F0B54FD5A617F26 ] C:\Windows\System32\perftrack.dll
01:02:33.0877 0x11c8 C:\Windows\System32\perftrack.dll - ok
01:02:33.0877 0x11c8 [ 6AE7DC415EFF4840512E5354CE99F4A5, 1067A1A802EE5C11ED0D8B54662548604570C498EEA680F18886C76E435F7ADE ] C:\Windows\System32\adsldpc.dll
01:02:33.0877 0x11c8 C:\Windows\System32\adsldpc.dll - ok
01:02:33.0892 0x11c8 [ 11A9C08F39F929B0D04FEE7C743CE8D9, 7EAA4CC06E5F63D81609DADA3A7135C1199E20FE02B89A6BCA60B1A67CE71268 ] C:\Windows\System32\adsldp.dll
01:02:33.0892 0x11c8 C:\Windows\System32\adsldp.dll - ok
01:02:33.0892 0x11c8 [ D64C4AFEE8277F35EF729A2B924666B0, 543AA2B2CD09820437646CFE01AFDBA6B764AA588E663759DEB93CB4F25E09D7 ] C:\Windows\System32\appinfo.dll
01:02:33.0892 0x11c8 C:\Windows\System32\appinfo.dll - ok
01:02:33.0892 0x11c8 [ 55955FB63C2E045AA9915184880B4F27, 19731B1D96A58B58E53BB1A52171C4469DD74B2B3FA27058ECF931FD0FAFC44D ] C:\Windows\System32\cscapi.dll
01:02:33.0892 0x11c8 C:\Windows\System32\cscapi.dll - ok
01:02:33.0892 0x11c8 [ 8B5D475B48506471669B9B46945138B0, 88956FDA549DA91BFE914955450AAE973460BC72870EA3C76B0A0C370B2D3D83 ] C:\Windows\System32\wer.dll
01:02:33.0892 0x11c8 C:\Windows\System32\wer.dll - ok
01:02:33.0908 0x11c8 [ 0F57DEA30340B49B06DCB8B077BEF072, B48D794036B68C9E2F2AFBC0D2B2A848445CBE3A325E07010FD70DC9285F4D54 ] C:\Windows\System32\PortableDeviceConnectApi.dll
01:02:33.0908 0x11c8 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
01:02:33.0908 0x11c8 [ 829562D41F5359BCA0ABC9DBE51B8723, 62ED1EBCD2636219C0BDD3F78895D69B486CAF40E86BA726988623886BD12B07 ] C:\Windows\System32\umb.dll
01:02:33.0908 0x11c8 C:\Windows\System32\umb.dll - ok
01:02:33.0908 0x11c8 [ 335C4488A14AC4B52B3E1CDF6D6F7780, E5DAF500A18952F9D64116A8025B19E34B18CCE4C1069D8505253FE64932E153 ] C:\Windows\System32\hnetcfg.dll
01:02:33.0908 0x11c8 C:\Windows\System32\hnetcfg.dll - ok
01:02:33.0923 0x11c8 [ B6191C2187460A0568A9F510188DE2ED, 2F948A82E885FD9E78FAEE152A79C05B8B64305D1EDACA8C5A2B6618F6FFBF46 ] C:\Windows\System32\wbem\wbemprox.dll
01:02:33.0923 0x11c8 C:\Windows\System32\wbem\wbemprox.dll - ok
01:02:33.0923 0x11c8 [ 7417B004B5BD4B9EC1140890131CD41D, 717212F4628B211803BCA98FF8936DE242127FB94278D5C6CCE9AA309A5C1594 ] C:\Windows\System32\pnpts.dll
01:02:33.0923 0x11c8 C:\Windows\System32\pnpts.dll - ok
01:02:33.0923 0x11c8 [ 5C96F30D1144AB5D8F03DFF045B8C791, EB2705DB5BDA2BFC458635194EF914B26B9E31FD969F4206EACFB61B29261096 ] C:\Windows\SysWOW64\netapi32.dll
01:02:33.0923 0x11c8 C:\Windows\SysWOW64\netapi32.dll - ok
01:02:33.0923 0x11c8 [ CC5512FC3FCCEA164F01592B5979F1BE, E06EA0DDB51EA49775FD102382719700142D124F102F221AB790C9B70A662B94 ] C:\Windows\System32\srumsvc.dll
01:02:33.0923 0x11c8 C:\Windows\System32\srumsvc.dll - ok
01:02:33.0939 0x11c8 [ A18100201E7477BB47C72711E092A8F0, 0545B25423FCC5ED3B1B09052D331261559EC1D5C0A6E0FDB063C5151AA070C0 ] C:\Windows\System32\esent.dll
01:02:33.0939 0x11c8 C:\Windows\System32\esent.dll - ok
01:02:33.0939 0x11c8 [ 789422243073568AE49BC1FC3A3D964C, B77F4E1847B3021CFEE2C93B5A7E705895DDEEA4369AD3FDB602DBFD9E4A08D1 ] C:\Windows\System32\lpksetupproxyserv.dll
01:02:33.0939 0x11c8 C:\Windows\System32\lpksetupproxyserv.dll - ok
01:02:33.0939 0x11c8 [ 9E2E7FE5237CFE3A0529B54C53021CA0, 0FF7EDCB907C08BF1A9422A8EC93F82D93D3A1AED2A1CA05450AB7113F580153 ] C:\Windows\System32\appsruprov.dll
01:02:33.0939 0x11c8 C:\Windows\System32\appsruprov.dll - ok
01:02:33.0939 0x11c8 [ 2D7BB53EA2BB3F213CE558A79EC8448D, B1BF16715C45329B184D0B0DADBB078EE08EF33FCB10C815909F96EBA004C8BA ] C:\Windows\System32\nduprov.dll
01:02:33.0939 0x11c8 C:\Windows\System32\nduprov.dll - ok
01:02:33.0939 0x11c8 [ 0D97A065E85D59B8F0EE2BD31A679456, 63F2E92CEECDB48E865B44C95F47502E98156A94D52D8D9E520D8227BB8A8AFA ] C:\Windows\System32\wdiasqmmodule.dll
01:02:33.0939 0x11c8 C:\Windows\System32\wdiasqmmodule.dll - ok
01:02:33.0955 0x11c8 [ D0A82052050909677C648B2496C0909E, 52F3FA666A33CBF1622084D8B894A8E280FC30948AC7191661491D860DEF1E87 ] C:\Windows\System32\wpnsruprov.dll
01:02:33.0955 0x11c8 C:\Windows\System32\wpnsruprov.dll - ok
01:02:33.0955 0x11c8 [ 71697EDF104E5EACD75822E588FA8149, AEC6646D74CD1419D252017CF3FDD36B63E7EC12BF7A793C0AA1A023E94CAF23 ] C:\Windows\System32\energyprov.dll
01:02:33.0955 0x11c8 C:\Windows\System32\energyprov.dll - ok
01:02:33.0955 0x11c8 [ AE03E9CBFFB8EDE81B3DA7603E546F56, F8DEB21B67CBD41D0BB8BD8B772C6546D21876CACAFB04ACE807E29E1123CFC5 ] C:\Windows\System32\srumapi.dll
01:02:33.0955 0x11c8 C:\Windows\System32\srumapi.dll - ok
01:02:33.0955 0x11c8 [ 1E9CD654E4E05D7A412C21884F47AA3C, CBECC920597B6616507D9272C662BD84F0D9374FA440F05A39700A06BC5E7877 ] C:\PROGRA~1\mcafee\mps\mps.dll
01:02:33.0955 0x11c8 C:\PROGRA~1\mcafee\mps\mps.dll - ok
01:02:33.0970 0x11c8 [ 7A297DF177E0ABB164F44B1DC387B1CC, D9E064057E08FE5E257EEE3A6373B0E4B987DB0E806FEE47FBD81E29DC916FC4 ] C:\PROGRA~1\mcafee\mps\mpscfg.dll
01:02:33.0970 0x11c8 C:\PROGRA~1\mcafee\mps\mpscfg.dll - ok
01:02:33.0970 0x11c8 [ 5366F3C1954683EABBFDF90065A5F40A, BE348F14E621F5CD2FCF9CF9D37FE6DF7FAF4D81C7D345EB47BDF09315272DEC ] C:\PROGRA~1\mcafee\msk\mskengn.dll
01:02:33.0970 0x11c8 C:\PROGRA~1\mcafee\msk\mskengn.dll - ok
01:02:33.0970 0x11c8 [ 8D516AEF3C1DF980664CF17BB1FF6093, D68A82D7DE647EAD68D5B8F3E8174B520C7FC6387EC68C8685B3E161C6020488 ] C:\Windows\servicing\TrustedInstaller.exe
01:02:33.0970 0x11c8 C:\Windows\servicing\TrustedInstaller.exe - ok
01:02:33.0970 0x11c8 [ 735D4C58ADC1F4DE5A59850078910218, BBBE7A15C1078F6BC7045BCC0C216F6C0203F66C3D921D84334EB80F8D94FF13 ] C:\Windows\System32\wbem\wbemcore.dll
01:02:33.0970 0x11c8 C:\Windows\System32\wbem\wbemcore.dll - ok
01:02:33.0970 0x11c8 [ E54F732758B5BB7405C2F4E05A64D6E1, 072FE1A984150196D02FED1D88D380DE000211EB396E2C6388B55A6EA72BC301 ] C:\Windows\System32\wbem\esscli.dll
01:02:33.0970 0x11c8 C:\Windows\System32\wbem\esscli.dll - ok
01:02:33.0986 0x11c8 [ 0E5A4985EB366D4977191CF0D9A64308, D88F09DBD523D9E78244EDB21FE005C0CA443D51DA25788D378015CD1569F61D ] C:\PROGRA~1\mcafee\msk\mskupd.dll
01:02:33.0986 0x11c8 C:\PROGRA~1\mcafee\msk\mskupd.dll - ok
01:02:33.0986 0x11c8 [ 19304E66115DD1400182211B4FD7E73A, 5E15C03A18B56142DC243125BB7EE1F66A5FD1DAE08B0DC5B5871A2C2035BB5D ] C:\Windows\System32\wbem\fastprox.dll
01:02:33.0986 0x11c8 C:\Windows\System32\wbem\fastprox.dll - ok
01:02:33.0986 0x11c8 [ B0CDDEE0592F3F8D34358E4A779D019B, 457D996AA8DBE58F32AF71DC28008FBA28A34C483F99C6402C90308565E09872 ] C:\PROGRA~1\mcafee\msc\mclwapi.dll
01:02:33.0986 0x11c8 C:\PROGRA~1\mcafee\msc\mclwapi.dll - ok
01:02:33.0986 0x11c8 [ 9B7280BAF510CE8AA3E712BC63EE50E3, 1A1AA6B665F162823AB5E88688B1C9042099B10E359D328966B068DD6CCEA837 ] C:\Windows\System32\wbem\wbemsvc.dll
01:02:33.0986 0x11c8 C:\Windows\System32\wbem\wbemsvc.dll - ok
01:02:34.0001 0x11c8 [ 4811A86C4CA6EDC58D316A29E56629F6, EEED60D7D8BC534CF9A2F782FB01A22C6DA2606104937E1A1548105D84EF4DE8 ] C:\Windows\System32\wbem\wmiutils.dll
01:02:34.0001 0x11c8 C:\Windows\System32\wbem\wmiutils.dll - ok
01:02:34.0001 0x11c8 [ 616285E00B6B7F2DE84891F6D094528B, 7B71CA5D755FBC9E46A8CEECE364768AFF8B8BE64A73A27D690853D1F2CD763F ] C:\Windows\System32\wbem\repdrvfs.dll
01:02:34.0001 0x11c8 C:\Windows\System32\wbem\repdrvfs.dll - ok
01:02:34.0001 0x11c8 [ A4D2C99E36EAD85BF095D7190E088921, A51726BD4F1D8B0C144C4DFD8CB213C591CD40B2646654E13A2025DF38832049 ] C:\PROGRA~1\COMMON~1\mcafee\msc\mcutil\11_6_2~1\mcutil.dll
01:02:34.0001 0x11c8 C:\PROGRA~1\COMMON~1\mcafee\msc\mcutil\11_6_2~1\mcutil.dll - ok
01:02:34.0001 0x11c8 [ 535D4CAE2F5EBC7047B802C17A02F69C, A64DC2B40D0EB20C873BED860EB976C5563F2F9C94DA633CDC07B5B89550CFEE ] C:\PROGRA~1\mcafee\msk\mskwm.dll
01:02:34.0001 0x11c8 C:\PROGRA~1\mcafee\msk\mskwm.dll - ok
01:02:34.0017 0x11c8 [ 1C3408D47FE946E6D445EC905E1F36BD, E083F56369FF69C480AD1D87D130F68C717771EFED62882F05B68188F393AAD3 ] C:\PROGRA~1\mcafee\msk\mskxaif.dll
01:02:34.0017 0x11c8 C:\PROGRA~1\mcafee\msk\mskxaif.dll - ok
01:02:34.0017 0x11c8 [ 04ED9A5B39FFDDDD8314E8F34049022F, 669B87FEABE0BB5BF31AD705D1ED9B3B57306C3C470BD941AD2D5670D97A752F ] C:\Windows\System32\dbghelp.dll
01:02:34.0017 0x11c8 C:\Windows\System32\dbghelp.dll - ok
01:02:34.0017 0x11c8 [ 27A11B538671C09604698302F4A01C63, 5095B36FA8F0C70AB6DCBDE0BE6157B7B276CA97D685DD8ADFA77C2030B4B9A0 ] C:\Windows\servicing\CbsApi.dll
01:02:34.0017 0x11c8 C:\Windows\servicing\CbsApi.dll - ok
01:02:34.0017 0x11c8 [ D4906F341F79C601A4C9D964351C3ED3, 925E6374C53676CF61FA49735DF32DD62717C1660A78A35EF288FD10C6B91D82 ] C:\Windows\System32\HelpPaneProxy.dll
01:02:34.0017 0x11c8 C:\Windows\System32\HelpPaneProxy.dll - ok
01:02:34.0017 0x11c8 [ E6C7752237B3A615A190D9EE23ECF152, 25198F8092C93695EA947DAD2BEE644BB0B51BA51C30E69B4B47CB182A1941BC ] C:\Windows\System32\wbem\WmiPrvSD.dll
01:02:34.0017 0x11c8 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
01:02:34.0033 0x11c8 [ 54482D83FF8501A46BB0B349FED0DAEB, 3506E8039D63F737F6858E1E63EBBC669EE19F2B6B6EC033E89F3BE05A0231D1 ] C:\Windows\System32\ncobjapi.dll
01:02:34.0033 0x11c8 C:\Windows\System32\ncobjapi.dll - ok
01:02:34.0033 0x11c8 [ E296B0D7842DD5478605B6C86573E52F, D03A634475192424ECC266301E36E47DF3632A5BA075DC449BB9DC8B4F3CEAE1 ] C:\Windows\System32\wbem\wbemess.dll
01:02:34.0033 0x11c8 C:\Windows\System32\wbem\wbemess.dll - ok
01:02:34.0033 0x11c8 [ 08F2794372C528FC524CC7F6F4471C60, 90A99ED2BFDD0235EF7D202DCC04272A7C7A54A171FEA05681EC9AE26BB29EA1 ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16384_none_622908ad510eb05b\TiWorker.exe
01:02:34.0033 0x11c8 C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16384_none_622908ad510eb05b\TiWorker.exe - ok
01:02:34.0048 0x11c8 [ 5C51484B4D2211FBE88DEB472588B5DF, C67B371351DF5627B6E2F23B768F3D1743CD2E248FFE0B9A945E1FF05839B14B ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16384_none_622908ad510eb05b\wdscore.dll
01:02:34.0048 0x11c8 C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16384_none_622908ad510eb05b\wdscore.dll - ok
01:02:34.0048 0x11c8 [ 993AF3428EE1E57591FFE6088668205E, 001AF5AF3D5374A9EA2D599FA61BE5B03D74A3346E33BA107612570FF4D057A0 ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16384_none_622908ad510eb05b\CbsCore.dll
01:02:34.0048 0x11c8 C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16384_none_622908ad510eb05b\CbsCore.dll - ok
01:02:34.0048 0x11c8 [ 4F50E60100B23A72BF4AFA016DEA924E, 3F390E6C39B070671EBECE4B4946CADC59238A30023D1BF149139C3F3A4A82C4 ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16384_none_622908ad510eb05b\wcp.dll
01:02:34.0048 0x11c8 C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16384_none_622908ad510eb05b\wcp.dll - ok
01:02:34.0048 0x11c8 [ 78F2A2B6BC3D3103E65F5DAA5422660E, 5FA277B1386471798A8ABA4DFD475D1A4ED9A11088B79C7138F745B25B7BF752 ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16384_none_622908ad510eb05b\DrUpdate.dll
01:02:34.0048 0x11c8 C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.2.9200.16384_none_622908ad510eb05b\DrUpdate.dll - ok
01:02:34.0064 0x11c8 [ 98D9EC5E81ECFCCEEB94894D19AA9F7E, FBE4C9179B2119C80C7A26C5F7D692E0042F9ACCF6FD26C330F6473C8404CEEB ] C:\Windows\System32\mpr.dll
01:02:34.0064 0x11c8 C:\Windows\System32\mpr.dll - ok
01:02:34.0064 0x11c8 [ A069FB34FDEECB7F17BA2B44A3E67966, 626944DB512B10CF16F285A7423A6AB3BA4CDE9035A513C9CD4FBAD088F3CB19 ] C:\Windows\System32\srclient.dll
01:02:34.0064 0x11c8 C:\Windows\System32\srclient.dll - ok
01:02:34.0064 0x11c8 [ 4D7CACEB878FA78458541617DB25667A, C42472E6B89A657C7CFC705725D3F4B45ECC8AE504E5F5A6DADC3AF3E331CEDE ] C:\Windows\System32\spp.dll
01:02:34.0064 0x11c8 C:\Windows\System32\spp.dll - ok
01:02:34.0064 0x11c8 [ 534E6B1B0A662E2896F8B5C5899D651F, 6642F6D2042CBD3C0FF4417EDB79F19BAE8AAC43188D3187AC20B085D412EEF5 ] C:\Windows\System32\SensApi.dll
01:02:34.0064 0x11c8 C:\Windows\System32\SensApi.dll - ok
01:02:34.0079 0x11c8 [ C84B51243DF6A6C5835FF6CAEC5C6B97, 37B1A02E3561FB7296CA899EC9E124D206B801002653B1B6E0C10B9F38A69BDA ] C:\Windows\System32\webio.dll
01:02:34.0079 0x11c8 C:\Windows\System32\webio.dll - ok
01:02:34.0079 0x11c8 [ 7FFC244DFE77909A13F52CF54B1FE475, 5994B8747CBF82E7BA54ECB370D6E66A4FC941775A09FE56A1EA70C4BCB8DE85 ] C:\Windows\SysWOW64\netutils.dll
01:02:34.0079 0x11c8 C:\Windows\SysWOW64\netutils.dll - ok
01:02:34.0079 0x11c8 [ D8533AF2AAE712047A3CCAC9AC98EDC4, F9AE92E0C151020C6219FAC30B7A303AE7C494199795A7B88B23CB52A0FA9F31 ] C:\Windows\SysWOW64\srvcli.dll
01:02:34.0079 0x11c8 C:\Windows\SysWOW64\srvcli.dll - ok
01:02:34.0079 0x11c8 [ 182DD861AD25CD72AE6F3B54AE7AA8AD, 4AC95A181AE344B243FE8E90E5A1076BE6F20B8B5258219451AE144203568B02 ] C:\Windows\SysWOW64\wkscli.dll
01:02:34.0079 0x11c8 C:\Windows\SysWOW64\wkscli.dll - ok
01:02:34.0095 0x11c8 [ 2BE692B452C67A122DA1857D13184173, 8E7F1952F92475B982E60BA74FE13BE71D76CBB5434619435FFE92DABCFB4DD8 ] C:\PROGRA~1\mcafee\mpf\MpfEvt.dll
01:02:34.0095 0x11c8 C:\PROGRA~1\mcafee\mpf\MpfEvt.dll - ok
01:02:34.0095 0x11c8 [ B213F11E2508DE9D1B8105AA61AF0890, 31E243055E9D5CE8FBD5C83AE37478EE2528666F73A86A5AE71AFF2110F5A4A0 ] C:\PROGRA~1\COMMON~1\mcafee\HACKER~1\HWAPI.dll
01:02:34.0095 0x11c8 C:\PROGRA~1\COMMON~1\mcafee\HACKER~1\HWAPI.dll - ok
01:02:34.0095 0x11c8 [ 4839D66499ACE8B218361B0668FC0E68, 3C68502A72CD7F9CDC5A6B5B86D2EDEC599C20ADF89A5A1DED17F8CA9889A12A ] C:\PROGRA~1\COMMON~1\mcafee\core\McEvtBrk.dll
01:02:34.0095 0x11c8 C:\PROGRA~1\COMMON~1\mcafee\core\McEvtBrk.dll - ok
01:02:34.0111 0x11c8 [ 6BFDC58CEACB90417FCE6BBBD7F3C660, 12976F283A816168203A06EC4C05F5C1E39B8FFC424C7360153EF77EBA464016 ] C:\Program Files\Common Files\mcafee\vscore\lockdown.dll
01:02:34.0111 0x11c8 C:\Program Files\Common Files\mcafee\vscore\lockdown.dll - ok
01:02:34.0111 0x11c8 [ 91A885DCA0639D555AB26132BFFC0785, 7C5BF8204F9C46244EB626811595A9C36911EBF37FF3B01C5CC148F84F10B24A ] C:\Windows\SysWOW64\mswsock.dll
01:02:34.0111 0x11c8 C:\Windows\SysWOW64\mswsock.dll - ok
01:02:34.0111 0x11c8 [ BB3717D6FC27A22D0403C825A93BC068, DC7B070DA7FDD78099E00C5D2576D878B09C58F61A94968479C2C1BAF14944FD ] C:\Windows\SysWOW64\dnsapi.dll
01:02:34.0111 0x11c8 C:\Windows\SysWOW64\dnsapi.dll - ok
01:02:34.0111 0x11c8 [ 7CD424F005ED71204DCB14CF11F1EB0C, 728BF0EDF925815E575583D601F8C53FE6F041257B15FFCE41CB8D6A6ECACBE1 ] C:\Windows\SysWOW64\rasadhlp.dll
01:02:34.0111 0x11c8 C:\Windows\SysWOW64\rasadhlp.dll - ok
01:02:34.0126 0x11c8 [ C46491F34C62D6A4FBDBE947D9EF0E44, 95DDBDD319C4E209F0D7675BE8A23B2BD56406B242B880DF15F7737271A1FD20 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
01:02:34.0126 0x11c8 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
01:02:34.0126 0x11c8 [ F6F1B55FC775E6F096AD400030E9D0B8, A49A0EE8DD53DB8040B46116B55FF0013597B7A1C7DD28AACA124A1BC0F25281 ] C:\Windows\System32\dimsjob.dll
01:02:34.0126 0x11c8 C:\Windows\System32\dimsjob.dll - ok
01:02:34.0126 0x11c8 [ A6E506E122DF3244443BE6113404EB96, 56A08FC40BB7ECBDAF5A89E6AF92500C96E22EBCE4667A4F995164F94E7AECDA ] C:\Windows\System32\pautoenr.dll
01:02:34.0126 0x11c8 C:\Windows\System32\pautoenr.dll - ok
01:02:34.0126 0x11c8 [ 54FF81F98F99F4DC13589D1A4D7A64B3, 10B484C2A522E10E2FC352CB744D85B45B0B6D5A0C20001953E49456DF43F906 ] C:\Windows\System32\keymgr.dll
01:02:34.0126 0x11c8 C:\Windows\System32\keymgr.dll - ok
01:02:34.0142 0x11c8 [ 37814A36DBAF1AE9D42BE89889ECB4B7, 7ADB5D36C24191B8968350C11225A43EFE9611A2F555D1BFFEB8045F67B5D5AA ] C:\Windows\System32\certca.dll
01:02:34.0142 0x11c8 C:\Windows\System32\certca.dll - ok
01:02:34.0142 0x11c8 [ 15E174928C1ABD23B3647270F2632D6C, EFDEE7EBF1EDBA828EB2EEF237A7737232363C12DA74DA75D16505BFFAED14C2 ] C:\Windows\System32\CertEnroll.dll
01:02:34.0142 0x11c8 C:\Windows\System32\CertEnroll.dll - ok
01:02:34.0142 0x11c8 [ 41D760CACEE0E2547876DA531E8572EC, 202779AAC2DEC1B65FFC37389E9CF2913092B2D16CEBFC896D7F5FD5081F9087 ] C:\Program Files\mcafee\msc\oemui.dll
01:02:34.0142 0x11c8 C:\Program Files\mcafee\msc\oemui.dll - ok
01:02:34.0157 0x11c8 [ 783DF76997303657A9A5E2795F36E8B0, 0A609DA7F406CDF915C11A39EDCFE65D13AB39DA7A2F0B6386B56A2A8AFC2AC4 ] C:\Program Files\mcafee\mpf\L10N.dll
01:02:34.0157 0x11c8 C:\Program Files\mcafee\mpf\L10N.dll - ok
01:02:34.0157 0x11c8 [ 3A4DE678E4E709C0794DA57C198AA7E3, 0BA37D0DB6D5D74E9B1D8EBC540C1ACD4A471386D683E5392360F06E06E60DE4 ] C:\Windows\System32\wbem\WmiPrvSE.exe
01:02:34.0157 0x11c8 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
01:02:34.0157 0x11c8 [ D93DF255633D351F6F3450EA79C10480, 4F6FFF05CF09FF1317313AFD3D81A0792621C524ED36D959C3B54A35C086E45E ] C:\Windows\System32\wbem\cimwin32.dll
01:02:34.0157 0x11c8 C:\Windows\System32\wbem\cimwin32.dll - ok
01:02:34.0157 0x11c8 [ 9913A96B7A27DF38A8AA3B2A949F4008, 26B3876F1F7E060CA4D3F01DB5D6B7A756CB341B77D00AC3534FDBA10749F134 ] C:\Windows\System32\framedynos.dll
01:02:34.0157 0x11c8 C:\Windows\System32\framedynos.dll - ok
01:02:34.0173 0x11c8 [ 203BEA6A8C2C2FA22A05C3FA9D01E222, 5E0E9D666AB10EE3E1FA4E202C975DC576981C2B2E700384704E77931A058363 ] C:\Windows\System32\wmi.dll
01:02:34.0173 0x11c8 C:\Windows\System32\wmi.dll - ok
01:02:34.0173 0x11c8 [ 45B5A89DC41577282E5BF41B1165EA71, 533CFE2169B6150D9B6FE61F85DF97D7A143B9F5FDCABBD5A515ED38CDE180C7 ] C:\Windows\System32\Drivers\cfwids.sys
01:02:34.0173 0x11c8 C:\Windows\System32\Drivers\cfwids.sys - ok
01:02:34.0173 0x11c8 [ 1D7604CE269CB6FEFDD5465ECE6D27BE, 074DBF067C5DA5CB840AD3FDC693395AF88796A18471B3435E1EF6402C0073EE ] C:\Program Files\mcafee\gkp\Gkp.dll
01:02:34.0173 0x11c8 C:\Program Files\mcafee\gkp\Gkp.dll - ok
01:02:34.0189 0x11c8 [ AC05F13B53A43F7B1DD8DA851D600093, 9CB533FD6E75B04510699F1C13AC8878A10340B3CC3DC4023D3D0FA81D064D51 ] C:\Program Files\mcafee\gkp\HipShield.dll
01:02:34.0189 0x11c8 C:\Program Files\mcafee\gkp\HipShield.dll - ok
01:02:34.0189 0x11c8 [ 11E08B784FE3098E72C02766078CFB95, F1EC6D3EC52DA667D90BFB94FB55BAD747717A5D94B156DA7CCE3D1697B693D7 ] C:\Program Files\mcafee\gkp\HipRc.dll
01:02:34.0189 0x11c8 C:\Program Files\mcafee\gkp\HipRc.dll - ok
01:02:34.0189 0x11c8 [ A894FB2CAE6A29F5D9C8EDA47B074623, F39014379B6F546CF3D3F56A343A7173B600A350715638040AE93E03EAB81CAC ] C:\Windows\System32\Drivers\HipShieldK.sys
01:02:34.0189 0x11c8 C:\Windows\System32\Drivers\HipShieldK.sys - ok
01:02:34.0189 0x11c8 [ 4B54ABBAFD5E5FF492FF78A91BCDB1C9, 029D704893F916C35619100121EA96ABD723A34199915A54DE22F3D6090FD6D2 ] C:\Program Files\mcafee\gkp\HcApi.dll
01:02:34.0189 0x11c8 C:\Program Files\mcafee\gkp\HcApi.dll - ok
01:02:34.0204 0x11c8 [ B519210EB8E869676857A335C40321AA, 20F4BE745661B5E250AC78BFDC8967B266B22D76218D25B92F3FF9028435AEE2 ] C:\Program Files\mcafee\gkp\HcThe.dll
01:02:34.0204 0x11c8 C:\Program Files\mcafee\gkp\HcThe.dll - ok
01:02:34.0204 0x11c8 [ 9054EBEBC22EBFF0D36BACA14FC32EBE, 72790A936F864923B49123A6EC006E25F3C2DE027B4B1A54BDE48409C15EAE56 ] C:\Windows\System32\vaultcli.dll
01:02:34.0204 0x11c8 C:\Windows\System32\vaultcli.dll - ok
01:02:34.0204 0x11c8 [ 372728B11E8AB1BB94CB850F727427B5, D15DC0E0355730427F47674DEB6DF0DD5FEEBB2FA85323E36783C0A303FFB759 ] C:\Windows\System32\vaultsvc.dll
01:02:34.0204 0x11c8 C:\Windows\System32\vaultsvc.dll - ok
01:02:34.0220 0x11c8 [ 93962D7FBE16AA0566A9C90E444C51A9, C87005EECA96680C9360C0439326590E46BBE4AA039A01F5CEBFE3B487589325 ] C:\Windows\System32\SettingSyncInfo.dll
01:02:34.0220 0x11c8 C:\Windows\System32\SettingSyncInfo.dll - ok
01:02:34.0220 0x11c8 [ B617F2E83951A9A4F495BBA58CF492B2, 7EFB78957D73DEF36264E0C941A442DF7B0B4DB2ADCB9E3602627C2B1F7C88F2 ] C:\Windows\System32\dllhost.exe
01:02:34.0220 0x11c8 C:\Windows\System32\dllhost.exe - ok
01:02:34.0220 0x11c8 [ 855E7E347893BDB93245120E137577FB, 893EB173BFA795EDA7211228AFDEE3B74948E458A88BFAEA028EAEDE2D379417 ] C:\Windows\System32\radardt.dll
01:02:34.0220 0x11c8 C:\Windows\System32\radardt.dll - ok
01:02:34.0220 0x11c8 [ CF4C61AA3C69DAE12EED93B94A208BF6, D04D3D2D6ECD2AE51BF3C12521A8B471103F8B30723802785EF5EC37E1D7C6FC ] C:\PROGRA~1\mcafee\mps\mpsevh.dll
01:02:34.0220 0x11c8 C:\PROGRA~1\mcafee\mps\mpsevh.dll - ok
01:02:34.0235 0x11c8 [ 8969286F44A62758AACBD38F27D59BF5, 0B3550195E8F3E2EF943F4D9A204F8C1DE591D23EBFDF0150354D3F0D47ADB82 ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
01:02:34.0235 0x11c8 C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe - ok
01:02:34.0235 0x11c8 [ A855655622421C874F1DD929EF4E236F, 794FBA8806C8E6A3FC554193BF606FC12FAF7D88BB2894D7FFD18B09FDD68525 ] C:\PROGRA~1\mcafee\mps\MPSMisp.dll
01:02:34.0235 0x11c8 C:\PROGRA~1\mcafee\mps\MPSMisp.dll - ok
01:02:34.0235 0x11c8 [ 0BC5A4142F38A6BB35DECD01A2BC2ED7, 938381068588A347AD4246C53BFED6B9E1AA8DE03C76B2931B45A18DB72BC3D8 ] C:\Program Files\ASUS\P4G\BatteryLife.exe
01:02:34.0235 0x11c8 C:\Program Files\ASUS\P4G\BatteryLife.exe - ok
01:02:34.0251 0x11c8 [ 3BCB17DC9584A9A37E2187089FFDC2E7, 48D211965A41C76DBB4262990089843A03DC7C58552261D8D879E264746A722E ] C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe
01:02:34.0251 0x11c8 C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe - ok
01:02:34.0251 0x11c8 [ 97432AB9F1B3B3E63E778C1E69E71E91, 17CD59665E783164DFF416E45E0AD623087E7225744C6DE84EA8594EA922F14A ] C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
01:02:34.0251 0x11c8 C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe - ok
01:02:34.0251 0x11c8 [ 90CFAEF0B5A1FC92264CB0E9BF325AE8, 10B58435A8DEBDDCBA55A01DB7EF64A32C43F18B3528E151E0F0698E9901046D ] C:\Windows\System32\taskhostex.exe
01:02:34.0251 0x11c8 C:\Windows\System32\taskhostex.exe - ok
01:02:34.0251 0x11c8 [ 8E902EE869004D40F350C02C4E63B0CA, 74890562563FAC9C6B59405D08DA21CC67EA43F7FC7F71D462FECC547B42D8DB ] C:\Windows\SysWOW64\winmm.dll
01:02:34.0251 0x11c8 C:\Windows\SysWOW64\winmm.dll - ok
01:02:34.0267 0x11c8 [ 3A8D1E216D2F16551B37234E6E7341CB, 58F622CC26A36712A24C306253AE3C55B408D05D32C5BFD82C74E5DFD818E4DB ] C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
01:02:34.0267 0x11c8 C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe - ok
01:02:34.0267 0x11c8 [ 3547F00F9FF626DE831FC1F99BE1E4CE, 394173E90781A019B8A6D54A23B0BB2BB66A2BDBCA21CB858F97662E43F8CA81 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe
01:02:34.0267 0x11c8 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe - ok
01:02:34.0267 0x11c8 [ 969FB844B6F634C3806E57B00A3E2413, A92D8EC264369DC4270663588E8403B2E53812C90274508E32917A470A6BD236 ] C:\PROGRA~1\mcafee\msc\mcmscsub.dll
01:02:34.0267 0x11c8 C:\PROGRA~1\mcafee\msc\mcmscsub.dll - ok
01:02:34.0267 0x11c8 [ 0E925F7BA032920D58DD284B6181A247, BEB43ECDCC0F56A477F59E03B7E4D3C8274FE88AFBE095F1E55DDF4BFA21798D ] C:\Windows\System32\userinit.exe
01:02:34.0267 0x11c8 C:\Windows\System32\userinit.exe - ok
01:02:34.0282 0x11c8 [ D1D5DAB39DCB4BE0359943738D87409B, 0BA45FE28568E852502879AE83C081517BB8103359BD5783328833EC59A54681 ] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
01:02:34.0282 0x11c8 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe - ok
01:02:34.0282 0x11c8 [ CDEDA6B4B275EA3B73C2C6B8A323CC2B, 158EBE9712013DFA73B706BE866D6A16BF283FFFDE934AAE687D2525237FEFDA ] C:\Program Files\mcafee\msc\mcoemres.dll
01:02:34.0282 0x11c8 C:\Program Files\mcafee\msc\mcoemres.dll - ok
01:02:34.0282 0x11c8 [ 3344DDDCC1F6F5B5C8EB282DEDE91DF9, 6BBD156679EC62AE0CB8EAEFE5231C8E952DBD893C5C3B595C09AA9A9E8D7448 ] C:\PROGRA~1\COMMON~1\mcafee\core\mccoreps.dll
01:02:34.0282 0x11c8 C:\PROGRA~1\COMMON~1\mcafee\core\mccoreps.dll - ok
01:02:34.0298 0x11c8 [ CD09341CCD92DA45EA5A0C725270FA51, E171F1724BAA5557720CEB45211F5D59069511467DBBEF0E545D0B94C270FA97 ] C:\Windows\System32\userinitext.dll
01:02:34.0298 0x11c8 C:\Windows\System32\userinitext.dll - ok
01:02:34.0298 0x11c8 [ A9A3C26CD4B7644A873F47E3E8189209, 9EA8A6A2EE0FE1F4E47CD990C6580FEE19C3DD3ECCD1C9BEB11C2BCC85766423 ] C:\Program Files\mcafee\msc\mcprlres.dll
01:02:34.0298 0x11c8 C:\Program Files\mcafee\msc\mcprlres.dll - ok
01:02:34.0298 0x11c8 [ 4E743FA4D61A2EF8CA1642F49DC4784D, 7DD986E828266350B2211429FE35165F4B70A5159D947F8AD1CF03E6656B97BF ] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985\comctl32.dll
01:02:34.0298 0x11c8 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985\comctl32.dll - ok
01:02:34.0298 0x11c8 [ 7E5F5E64C91FEDFE72E4C1728094BA69, 32B5FA995F1AB895341D28BE0E51B54E16EB79EE9BF5FC81CB37750293CA10E7 ] C:\Program Files\ASUS\P4G\DevMng.dll
01:02:34.0298 0x11c8 C:\Program Files\ASUS\P4G\DevMng.dll - ok
01:02:34.0313 0x11c8 [ 5C539C92A7704C80EDB45BFD8D7F600F, FE46487489C58F85D46875A4856220C40A1543204B29E8778EA16D45F116DE24 ] C:\Windows\SysWOW64\winmmbase.dll
01:02:34.0313 0x11c8 C:\Windows\SysWOW64\winmmbase.dll - ok
01:02:34.0313 0x11c8 [ 51E886381803D55926A6D50643B9436C, B4AB1D1E7740DE87D7FE5229A43D22546FCEA27F9A92286DE6B2AFE35F15A761 ] C:\Windows\SysWOW64\imm32.dll
01:02:34.0313 0x11c8 C:\Windows\SysWOW64\imm32.dll - ok
01:02:34.0313 0x11c8 [ 5922DAA67BD1BFABA80B8CFB13361FFF, F9D63AE5A2F790BE7640439FF4AFC65BFC8DF978874BD7D8D62CEC57D761F8FF ] C:\Windows\SysWOW64\msctf.dll
01:02:34.0313 0x11c8 C:\Windows\SysWOW64\msctf.dll - ok
01:02:34.0313 0x11c8 [ 8AF694C6104A55EDE017C87D89E01E58, CD65E3AAA8AB455FB6885E6FEEF86194CEBD25C4C08690833689ACF34082AB08 ] C:\PROGRA~1\COMMON~1\mcafee\msc\sqlite3.dll
01:02:34.0313 0x11c8 C:\PROGRA~1\COMMON~1\mcafee\msc\sqlite3.dll - ok
01:02:34.0329 0x11c8 [ 29C9FCC196C71DADE00F407042288A68, B1EBC8060E9ED79244C7BFC62B85A8F4DA30B2C3F1E0657ADD5D77DF264B4DC5 ] C:\Windows\SysWOW64\uxtheme.dll
01:02:34.0329 0x11c8 C:\Windows\SysWOW64\uxtheme.dll - ok
01:02:34.0329 0x11c8 [ AED6D63CFA5A3EF7021AF9C457FEE994, B4BFA27F677295B00A1DF9A7E14DB4B75CAC2DD41B898D4E9A378ECCCE3699F0 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\msvcr100.dll
01:02:34.0329 0x11c8 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\msvcr100.dll - ok
01:02:34.0329 0x11c8 [ 928791755FDDEA721B053535EF84FA17, 6B488C65C11BD30AD69BB12BAD78D39025C7CA4A3A744CFD17857E34D7B57BD2 ] C:\Windows\explorer.exe
01:02:34.0329 0x11c8 C:\Windows\explorer.exe - ok
01:02:34.0329 0x11c8 [ F3DE10AABD5C7A1A186C9966F037D0C0, BC50848AEEF466DFF4A3D8C386BF0D0EC35B8E5B438031AE885AA5371F2E1A42 ] C:\Program Files (x86)\ASUS\USBChargerPlus\mfc100u.dll
01:02:34.0329 0x11c8 C:\Program Files (x86)\ASUS\USBChargerPlus\mfc100u.dll - ok
01:02:34.0345 0x11c8 [ 50E6288786474CC1275108D33FCC9488, 47ECF37F86B3DC26ED1F0BA092F4B157F3AEEFFFB2B1F65C0F73D80BCEAFB4C1 ] C:\Program Files\ASUS\P4G\OvrClk.dll
01:02:34.0345 0x11c8 C:\Program Files\ASUS\P4G\OvrClk.dll - ok
01:02:34.0345 0x11c8 [ 341ADCBB9A744F559C3CF3CA5D3D8934, F08D9693FB24CE50256F9F0FE67C8F79099A7E99AF55DF01346791A1C2453E4E ] C:\Windows\SysWOW64\dwmapi.dll
01:02:34.0345 0x11c8 C:\Windows\SysWOW64\dwmapi.dll - ok
01:02:34.0345 0x11c8 [ 4597E07BC81426015B9BB8DEF62524A2, 5C35B56B8F829E7C85FDF20A5F438DCBA41419EC896F367F27B89B488E389D14 ] C:\Windows\SysWOW64\GdiPlus.dll
01:02:34.0345 0x11c8 C:\Windows\SysWOW64\GdiPlus.dll - ok
01:02:34.0345 0x11c8 [ 62F46FB1AED31B289F6A64718A3E5ECF, F1E8D1610CD22685C378286E46FE68CF2A05588A3A447DD0988B03F7B86AEE83 ] C:\Windows\SysWOW64\clbcatq.dll
01:02:34.0345 0x11c8 C:\Windows\SysWOW64\clbcatq.dll - ok
01:02:34.0345 0x11c8 [ 3126A761946ADC65C6BA511971EF033D, A5F6B1BFD5562FC34ADC9EEE49D6DAD52401B55D691B1427A5AEBC94BD46E9B9 ] C:\Windows\SysWOW64\MMDevAPI.dll
01:02:34.0345 0x11c8 C:\Windows\SysWOW64\MMDevAPI.dll - ok
01:02:34.0360 0x11c8 [ A572A1F193C14D7C17AB2BF3029A52BB, 9671A07BB27FF76FD346E5EABB8FDD660631627E665AFBA8CC0D01940DD82439 ] C:\Windows\System32\MsCtfMonitor.dll
01:02:34.0360 0x11c8 C:\Windows\System32\MsCtfMonitor.dll - ok
01:02:34.0360 0x11c8 [ 047B36A37086659135B6F46BD0827012, DF115ACC8C74BF1FDB8F1EAFBBDADA3F71A3535DF8BD092021C8C94448F8D68F ] C:\Windows\SysWOW64\AudioSes.dll
01:02:34.0360 0x11c8 C:\Windows\SysWOW64\AudioSes.dll - ok
01:02:34.0360 0x11c8 [ 42CE4017883CE7E119C55A6813E57110, 5749CCC1C0344AC8BA0A60B1960C46A54DE758AFD2D05EF8E6F1C1F7E121F3DF ] C:\Windows\SysWOW64\WindowsCodecs.dll
01:02:34.0360 0x11c8 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
01:02:34.0360 0x11c8 [ 2BD1447ECF8A9697AFCF4D7C71D45AA7, 976579652DBAFDB22D4431C071000D904C30CDC8C2AE84CA987F931374EAD379 ] C:\Windows\SysWOW64\wbem\wbemprox.dll
01:02:34.0360 0x11c8 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
01:02:34.0360 0x11c8 [ FA0672B09ED377939BB9F3D39895B404, DF571CC82DADD5B41F9E460111FB73B2AB6E4E255CDE9069D89F0AADFA8C38D9 ] C:\Windows\SysWOW64\wbemcomn.dll
01:02:34.0376 0x11c8 C:\Windows\SysWOW64\wbemcomn.dll - ok
01:02:34.0376 0x11c8 [ 14A940000E8E699F5052DC1D7F727AE8, BFF1168587D3D6F9A852210333B590730FC1C394AD1D3842B1F7C75428268464 ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimUserExec.exe
01:02:34.0376 0x11c8 C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimUserExec.exe - ok
01:02:34.0376 0x11c8 [ 7139C54E7282804745F9991F588FE506, F8693CF2A6B5C6D2D6EF6CBF0241B7DABE33E546383D8144601F2DF9D73EC8C5 ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
01:02:34.0376 0x11c8 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
01:02:34.0376 0x11c8 [ 992BD101F370B0D93A1131227BA342F6, 9034637756768BFD687E9CE569059FACA3BCAAFD998BC990C84D94AA7CE82CC5 ] C:\Windows\SysWOW64\wbem\fastprox.dll
01:02:34.0376 0x11c8 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
01:02:34.0376 0x11c8 [ 8BC5E1F477761F75B26E66746828915D, D8163F93274B68E8CC87086566EAA256C0AF3AA5C919B98773650536F0F54E0B ] C:\Windows\System32\HotStartUserAgent.dll
01:02:34.0376 0x11c8 C:\Windows\System32\HotStartUserAgent.dll - ok
01:02:34.0392 0x11c8 [ AFE9464D80CFE0B0ECFE906C8A5996A0, 15F76F5F035286209B2BBF95A6959E1AE44C9EFED649F91346FA3BE371100709 ] C:\Windows\System32\winspool.drv
01:02:34.0392 0x11c8 C:\Windows\System32\winspool.drv - ok
01:02:34.0392 0x11c8 [ B6A5F92A417ED4BDE54BE170AF0A9E31, 75B8D2D19A74468867913443F3E457E34F445396BE78733E4F9A47A77597AC64 ] C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6910_none_d089c358442de345\msvcr80.dll
01:02:34.0392 0x11c8 C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6910_none_d089c358442de345\msvcr80.dll - ok
01:02:34.0392 0x11c8 [ 1A196FE539A6F81977805B6CE4F90BDC, C7E4BCDC4DCBC69C6850B3EE7BFB948F83E2C023B8AC75983E9A2EA43A5B640D ] C:\Windows\System32\msutb.dll
01:02:34.0392 0x11c8 C:\Windows\System32\msutb.dll - ok
01:02:34.0392 0x11c8 [ BFDD523AB06AB9932B6327E52C6E9AE6, 7EA9BE9F33ED3B25D519235391B574FFF0110AB1E78D893E397B745CADC9858A ] C:\Windows\SysWOW64\propsys.dll
01:02:34.0392 0x11c8 C:\Windows\SysWOW64\propsys.dll - ok
01:02:34.0407 0x11c8 [ 38E669E49C35B6A02A9AF0737C526C0F, 6F1DB7CE5AF490EB700B61388F994CD4D73BA16535CA28FFEDC44A224965EB69 ] C:\Windows\System32\PlaySndSrv.dll
01:02:34.0407 0x11c8 C:\Windows\System32\PlaySndSrv.dll - ok
01:02:34.0407 0x11c8 [ 9E435BA84F1D0E7A390418581882B330, 5E5F1A2244AB430EA9C741C9E87BAE1645AB7153D59C629E3893136E8C581DBA ] C:\Windows\System32\wbem\wmiprov.dll
01:02:34.0407 0x11c8 C:\Windows\System32\wbem\wmiprov.dll - ok
01:02:34.0407 0x11c8 [ BDA044D8AC409C8F12941D552B7A53C7, 338C39C4856FA270B4192EAD2F98F3C164797BB29962C49976B96E1A2620536C ] C:\Windows\SysWOW64\urlmon.dll
01:02:34.0407 0x11c8 C:\Windows\SysWOW64\urlmon.dll - ok
01:02:34.0423 0x11c8 [ DD16E185D2BC54604B50569F341BF26C, 86672255A794D934D1A756A68D40D8A2514A317BA6E1F30CD000C78029C85E62 ] C:\Windows\SysWOW64\iertutil.dll
01:02:34.0423 0x11c8 C:\Windows\SysWOW64\iertutil.dll - ok
01:02:34.0423 0x11c8 [ 0E37FBFA79D349D672456923EC5FBBE3, 8793353461826FBD48F25EA8B835BE204B758CE7510DB2AF631B28850355BD18 ] C:\Program Files (x86)\ASUS\USBChargerPlus\msvcr100.dll
01:02:34.0423 0x11c8 C:\Program Files (x86)\ASUS\USBChargerPlus\msvcr100.dll - ok
01:02:34.0423 0x11c8 [ 892AD406F3C57897E6015A959ACF447C, D391169232367EB2831034806C2E159ECE7EA6722703035618FC776B68376ADF ] C:\Windows\SysWOW64\wininet.dll
01:02:34.0423 0x11c8 C:\Windows\SysWOW64\wininet.dll - ok
01:02:34.0423 0x11c8 [ DDF8C39C085D2E98BD030B3E8A1F40B8, 10EC29D288CD416D7E4D04171E820210B661BE99A4EC00567D7C986901257681 ] C:\Windows\SysWOW64\secur32.dll
01:02:34.0423 0x11c8 C:\Windows\SysWOW64\secur32.dll - ok
01:02:34.0438 0x11c8 [ 0E658D67C4A79294BC7BBBF4656F0794, 32E4D5728249B40F522C534702D53FDB4B178B9E1DC81B7CF9CBBFF036B3A951 ] C:\Windows\System32\winmm.dll
01:02:34.0438 0x11c8 C:\Windows\System32\winmm.dll - ok
01:02:34.0438 0x11c8 [ 2D43B15DA25E6CDC39C733730D48F110, 69B08A736A04B0D9B352788F90B9D716EA816B1A460B373F8FF60DA35D594A06 ] C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6910_none_88dc8c812fb1ba3f\msvcr80.dll
01:02:34.0438 0x11c8 C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6910_none_88dc8c812fb1ba3f\msvcr80.dll - ok
01:02:34.0438 0x11c8 [ 4DFDD4885114950F46582A6EA7A38D03, B21732341323C987DA1AE51036DD22C5A2721ABF6F65B91FCA4922BE99F4AD43 ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsusTPCfg64.exe
01:02:34.0438 0x11c8 C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsusTPCfg64.exe - ok
01:02:34.0454 0x11c8 [ 8411147754C00B3B096C5C0ED95B3CFC, 8FBE93CBCAECDB7CC05F41B68140668EEA08A0165484DACE6E7CD8EF933BA709 ] C:\Windows\System32\runonce.exe
01:02:34.0454 0x11c8 C:\Windows\System32\runonce.exe - ok
01:02:34.0454 0x11c8 [ 6FA9D09428E56C11E01066CAF2FB5031, 20F3914606813346D58A0843383CAF0D887DAA856E7A8C6A2774B2615BB2D0CB ] C:\Windows\SysWOW64\msimg32.dll
01:02:34.0454 0x11c8 C:\Windows\SysWOW64\msimg32.dll - ok
01:02:34.0454 0x11c8 [ 15343AA01C41F7AB4FE549499159DB6F, 9166E1F688667BB8E59E52BBB62BECD41C765EE5069A633835639FA5F18471C5 ] C:\Windows\System32\winmmbase.dll
01:02:34.0454 0x11c8 C:\Windows\System32\winmmbase.dll - ok
01:02:34.0454 0x11c8 [ 2D32F0EF950AED6AD007D042676FD39E, 397B1FBDBCE64CA6B34206CC6DA6A484177C94C84C87FB9A5C457B24C7FAA03F ] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
01:02:34.0454 0x11c8 C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe - ok
01:02:34.0469 0x11c8 [ 4F870EF9292559AB9DE6F31527A1DCBF, 45C14E74FCCC647688FCDA280B04D884532D1D51AC93FCAA671141776973314C ] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
01:02:34.0469 0x11c8 C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe - ok
01:02:34.0469 0x11c8 [ C3DD1A60AC4FF18658B35ACE28F5370F, 673336EF2A16835DF7D68DB006CA00FEFD97A23366E37B947A186B293FD78D06 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
01:02:34.0469 0x11c8 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe - ok
01:02:34.0469 0x11c8 [ 1AA5E810CD5CDE5693A4B1DA5E200C12, 33D2D6B9CA7912D177A0AFB49256B967E96A247604EE894179F246369262B6C2 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPApi.dll
01:02:34.0469 0x11c8 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPApi.dll - ok
01:02:34.0485 0x11c8 [ F057E82CD46AE7F4AAC1C041BBCC2ADC, A0FAFA586601EF54591D5A057D185D3DA99B4730F03EC5562814B0845EEC62B2 ] C:\Windows\SysWOW64\DWrite.dll
01:02:34.0485 0x11c8 C:\Windows\SysWOW64\DWrite.dll - ok
01:02:34.0485 0x11c8 [ 3AC898E2B7C02CC26CD4ED52C68D870E, A3390AEAC2E77A11496D4F6E73969E1B043348FD474A224648D5FD89EEFED898 ] C:\Windows\System32\consent.exe
01:02:34.0485 0x11c8 C:\Windows\System32\consent.exe - ok
01:02:34.0485 0x11c8 [ AF433565E5E02857C5D0AFFD932AF150, F87E322C81988EC00EAF0EB0A7327614676CE7B0BD243C74831508E820CC3210 ] C:\Windows\System32\msimg32.dll
01:02:34.0485 0x11c8 C:\Windows\System32\msimg32.dll - ok
01:02:34.0501 0x11c8 [ F0408DB6F94E3F0D5ED94B16C097A622, 5DF9FEABA1258882966C3FD59488F6CCDF5D6A1F153176C801C153DFB3CA47D4 ] C:\Windows\SysWOW64\runonce.exe
01:02:34.0501 0x11c8 C:\Windows\SysWOW64\runonce.exe - ok
01:02:34.0501 0x11c8 [ 0B50F07E63EE15383CDFDC26D7A3D3E3, B92316DA431BAF125F80A1B012337D84FBA9260D0C890A6B7BE9E5A8A461A1DA ] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
01:02:34.0501 0x11c8 C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe - ok
01:02:34.0501 0x11c8 [ 5996C79FB52BDE3FA10F77396654AE42, 910D521315B83BB0D805EACEAC3C83169AA791D1D1E64B417077C01AE21FEB66 ] C:\Windows\SysWOW64\cmd.exe
01:02:34.0501 0x11c8 C:\Windows\SysWOW64\cmd.exe - ok
01:02:34.0501 0x11c8 [ D9CB0782AF819548072AA45B70F8B22D, 04796F39ABB88759A534DE3D0C51F684BF2A8DE1F4028B657CCFDBDD39A6618C ] C:\Windows\System32\Drivers\condrv.sys
01:02:34.0501 0x11c8 C:\Windows\System32\Drivers\condrv.sys - ok
01:02:34.0516 0x11c8 [ 3E30EF769BC47B9B16515EB66EFF1E2F, 89AF9C53085D234B1102F066FD321EEBC8121670ADA2B845642064EEFB3CA8D4 ] C:\Windows\System32\conhost.exe
01:02:34.0516 0x11c8 C:\Windows\System32\conhost.exe - ok
01:02:34.0516 0x11c8 [ F8DE2E949B135BA7E45AE18DC82BF262, 195918BB87110095D2A73A325CF971B0FFA926ED75873E36E24146154D4DD525 ] C:\Windows\SysWOW64\pcacli.dll
01:02:34.0516 0x11c8 C:\Windows\SysWOW64\pcacli.dll - ok
01:02:34.0516 0x11c8 [ 6A0C81508755C7F8EA5C5A4BC0E922CB, EABC691A8BEC3F85E8FA4F3FA72AB1D5D4FF466DCEDCD3B0C419C54EECFEC489 ] C:\Windows\SysWOW64\apphelp.dll
01:02:34.0516 0x11c8 C:\Windows\SysWOW64\apphelp.dll - ok
01:02:34.0532 0x11c8 [ F2E12B5B7EEDE6854104E5AF8AC841A8, 733DD36D212A4793475F917E92755290CFE3942D1751CFC60A94B223F88043EE ] C:\Windows\SysWOW64\cmdext.dll
01:02:34.0532 0x11c8 C:\Windows\SysWOW64\cmdext.dll - ok
01:02:34.0532 0x11c8 [ 0313A5DFA5966E31220C26A6167FD479, 3B5ADB421CEEA9AEFBCA49DC47059EB9C15530323A4FBCCD246488866503006E ] C:\Windows\SysWOW64\sfc_os.dll
01:02:34.0532 0x11c8 C:\Windows\SysWOW64\sfc_os.dll - ok
01:02:34.0532 0x11c8 [ 4E1278D5040A2D2D274EB98661CBF07E, 16BCFB3D1CD6A2F0C8D6456877E2643DD3AEED7D31027E84DB6BC5675883A97C ] C:\Windows\SysWOW64\devrtl.dll
01:02:34.0532 0x11c8 C:\Windows\SysWOW64\devrtl.dll - ok
01:02:34.0532 0x11c8 [ 6C3286861FFBCFD7B47E6CFAA0802CB7, 9E5C1E7CFE9572E1D9AB98F1A2E6399A1311E3804226E1298C2272922816738A ] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\MetroInfo.dll
01:02:34.0532 0x11c8 C:\Program Files (x86)\ASUS\ATK Package\ATK Media\MetroInfo.dll - ok
01:02:34.0548 0x11c8 [ 9DA86B80AE1339F19CD5D290787EB7B3, 6A9ADE376C135997BA66D911752A2780AC11F88147C76DB8502F254C307F011B ] C:\Windows\SysWOW64\shdocvw.dll
01:02:34.0548 0x11c8 C:\Windows\SysWOW64\shdocvw.dll - ok
01:02:34.0548 0x11c8 [ BA690F1006781ACEB6CFCAF449A7661A, A1CF4425CB660A39AE9850B9E04529D790EEE0D519F23ED2702FA83A6D32E137 ] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\WaveThemeRes.dll
01:02:34.0548 0x11c8 C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\WaveThemeRes.dll - ok
01:02:34.0548 0x11c8 [ C9560BBB239E0EA21EF4BEA39DD85F69, F30A82724F35BBFF445058AF46B86A7BFEA8E51813B72206A3EFA9D3CA7F3DCD ] C:\Users\Karl\AppData\Local\Temp\{978DE5CF-A3DA-494A-AC93-DFCE203379F2}.exe
01:02:34.0548 0x11c8 C:\Users\Karl\AppData\Local\Temp\{978DE5CF-A3DA-494A-AC93-DFCE203379F2}.exe - ok
01:02:34.0563 0x11c8 [ 4F72C8B661DEC62F4DF0F15D33106372, AB1121DD2657FA58BC8CC2C8B05FC6041D1AB6B3EC097FF75D12EC2F600056FD ] C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\AGFNEX64.dll
01:02:34.0563 0x11c8 C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\AGFNEX64.dll - ok
01:02:34.0563 0x11c8 [ 80C91C7CAC9DC9FFE2E6B8427CE06D9A, 8B4D30684341B0EF472DD83E30715321A16017246302C1C53B9E5F11BB6B4FFD ] C:\Windows\SysWOW64\winhttp.dll
01:02:34.0563 0x11c8 C:\Windows\SysWOW64\winhttp.dll - ok
01:02:34.0563 0x11c8 [ 974AE60BF5B90E31412D93596C968E5B, 092B59C2B67C4618E7B1800615D1DF7199482F60D0D27BD91763F7F8D7FC883F ] C:\Windows\System32\aelupsvc.dll
01:02:34.0563 0x11c8 C:\Windows\System32\aelupsvc.dll - ok
01:02:34.0563 0x11c8 [ 9A777EDE50D61A30265C4448A67F80E9, FB694F98E2825517028C6F47853FD92CDC095124D65B2650E5E71920ACD02E6E ] C:\Windows\System32\themeui.dll
01:02:34.0563 0x11c8 C:\Windows\System32\themeui.dll - ok
01:02:34.0579 0x11c8 [ 1760F66E1D8D47F0B895984AC0F6FB7D, 8DD9D4C5FED9A31033DC663896C74298441445789A29C476B93A98ECF7D76C58 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe
01:02:34.0579 0x11c8 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.exe - ok
01:02:34.0579 0x11c8 [ 18D61C0822414ACDBD88EB8AD6319D70, 5D2258330D71B212D1E0FA85FA7A443D69FF7622C9C7AF349F2270B322EEA329 ] C:\Windows\System32\ExplorerFrame.dll
01:02:34.0579 0x11c8 C:\Windows\System32\ExplorerFrame.dll - ok
01:02:34.0579 0x11c8 [ BD7849649C6E85118802010F442F67A8, BDD4BCE48CC70229F8DA63A8B3A8023EB8BD90099AE5DD068D5FFE1CF73A3B26 ] C:\Windows\SysWOW64\webio.dll
01:02:34.0579 0x11c8 C:\Windows\SysWOW64\webio.dll - ok
01:02:34.0594 0x11c8 [ 7ECD8DF63A762BDE3F481BC4239FB9AB, FDBBC7F277C89B53A4D6C52708137B6C80464F0A296C9447FD9E68ADC319887A ] C:\Windows\System32\shdocvw.dll
01:02:34.0594 0x11c8 C:\Windows\System32\shdocvw.dll - ok
01:02:34.0594 0x11c8 [ 75D6CFFF24DCF64C1322AA6FEBC75FC4, A122BA81D736C7FD3D61040B7201013F902D87F5824FE52CE5D3FED6FED18D7B ] C:\Windows\System32\actxprxy.dll
01:02:34.0594 0x11c8 C:\Windows\System32\actxprxy.dll - ok
01:02:34.0594 0x11c8 [ 29769215DEB6E8418EF3656B0423776E, 789E59FE4A552730F77E2A9B76ACB8269E5B0D8C7315E8396FE583038EAC1D84 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe
01:02:34.0594 0x11c8 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.exe - ok
01:02:34.0594 0x11c8 [ 205F6A4E954D82C361E4BAB829AB382A, D1A39E65A0C2745CFB83B14501EC42F4C5AB8BCC939F46361522F8C719E10B30 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.dll
01:02:34.0594 0x11c8 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\QuickGesture.dll - ok
01:02:34.0610 0x11c8 [ 5EFD801A12FB267405B24945012F5E1A, D4E5535FEC97DEF597E443C3CEFF70C5A8301C1DD4FE235F4B239C8B88446694 ] C:\Windows\System32\linkinfo.dll
01:02:34.0610 0x11c8 C:\Windows\System32\linkinfo.dll - ok
01:02:34.0610 0x11c8 [ 51187F2413CDB487542290E046B6378E, E5435609622A944E1D2FEB157A20EEFE86ECAE19C3089C2A6DAE703C1BEFF89A ] C:\Windows\System32\twinapi.dll
01:02:34.0610 0x11c8 C:\Windows\System32\twinapi.dll - ok
01:02:34.0610 0x11c8 [ C4729C10C3D9E1517EFF2C7AAE72E819, A3F9267805D9F14FA23EA8EB6011D11D6651748B2A80F4FAF613793A06F9C399 ] C:\Windows\System32\gameux.dll
01:02:34.0610 0x11c8 C:\Windows\System32\gameux.dll - ok
01:02:34.0626 0x11c8 [ 64355CE6B84B19063E1E529E8D23D0DF, 22A780E5798F00EE8B612581140DBDC84CE515D60316B940042412E00AC88C84 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.dll
01:02:34.0626 0x11c8 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\QuickGesture64.dll - ok
01:02:34.0626 0x11c8 [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\Karl\AppData\Local\Temp\{2B6A4DE6-DF7C-4488-9E9A-1CFC35BB730B}\{5A52ECA0-378A-40EB-B573-A6DA53D21B72}.tmp
01:02:34.0626 0x11c8 C:\Users\Karl\AppData\Local\Temp\{2B6A4DE6-DF7C-4488-9E9A-1CFC35BB730B}\{5A52ECA0-378A-40EB-B573-A6DA53D21B72}.tmp - ok
01:02:34.0626 0x11c8 [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\Karl\AppData\Local\Temp\{2B6A4DE6-DF7C-4488-9E9A-1CFC35BB730B}\{2344AD01-C561-46FF-A32C-917023FD8BB7}.tmp
01:02:34.0626 0x11c8 C:\Users\Karl\AppData\Local\Temp\{2B6A4DE6-DF7C-4488-9E9A-1CFC35BB730B}\{2344AD01-C561-46FF-A32C-917023FD8BB7}.tmp - ok
01:02:34.0641 0x11c8 [ EFD9F27C19FF619B97CC3274939320F3, 60EED6F4CF68E7775D8E3FD25D0AA5CCABB45EC863F70C29DA4DEA6BE564FBA8 ] C:\Windows\System32\twinui.dll
01:02:34.0641 0x11c8 C:\Windows\System32\twinui.dll - ok
01:02:34.0641 0x11c8 [ 67EC459E42D3081DD8FD34356F7CAFC1, 1221A09484964A6F38AF5E34EE292B9AFEFCCB3DC6E55435FD3AAF7C235D9067 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\msvcr100.dll
01:02:34.0641 0x11c8 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\msvcr100.dll - ok
01:02:34.0641 0x11c8 [ 55C11301579A42639736EA3B17A3A588, CBEBDD7C883EF47DB86060AF0F09FD2218161D5FEB0CECEB4A068B9CC63499F8 ] C:\Users\Karl\AppData\Local\Temp\{2B6A4DE6-DF7C-4488-9E9A-1CFC35BB730B}\{71DF1DE7-2230-443B-8E7E-1F4875AC8752}.tmp
01:02:34.0641 0x11c8 C:\Users\Karl\AppData\Local\Temp\{2B6A4DE6-DF7C-4488-9E9A-1CFC35BB730B}\{71DF1DE7-2230-443B-8E7E-1F4875AC8752}.tmp - ok
01:02:34.0641 0x11c8 [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\Karl\AppData\Local\Temp\{2B6A4DE6-DF7C-4488-9E9A-1CFC35BB730B}\{2DEFF9AD-E738-4CC3-9C39-CC078B25A247}.tmp
01:02:34.0641 0x11c8 C:\Users\Karl\AppData\Local\Temp\{2B6A4DE6-DF7C-4488-9E9A-1CFC35BB730B}\{2DEFF9AD-E738-4CC3-9C39-CC078B25A247}.tmp - ok
01:02:34.0657 0x11c8 [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\Karl\AppData\Local\Temp\{2B6A4DE6-DF7C-4488-9E9A-1CFC35BB730B}\{CD3B8A36-02ED-4B21-97C6-661E35886D75}.tmp
01:02:34.0657 0x11c8 C:\Users\Karl\AppData\Local\Temp\{2B6A4DE6-DF7C-4488-9E9A-1CFC35BB730B}\{CD3B8A36-02ED-4B21-97C6-661E35886D75}.tmp - ok
01:02:34.0657 0x11c8 [ 70C3B722AE97E6C6A144EC20E5D7C080, 395F03942442A3EF9B929203E266E1D9A60AB9DA66A27E276896A786ABFC9726 ] C:\Windows\System32\windows.immersiveshell.serviceprovider.dll
01:02:34.0657 0x11c8 C:\Windows\System32\windows.immersiveshell.serviceprovider.dll - ok
01:02:34.0657 0x11c8 [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\Karl\AppData\Local\Temp\{2B6A4DE6-DF7C-4488-9E9A-1CFC35BB730B}\{B715879C-3CD0-4D01-B588-96AE08827B95}.tmp
01:02:34.0657 0x11c8 C:\Users\Karl\AppData\Local\Temp\{2B6A4DE6-DF7C-4488-9E9A-1CFC35BB730B}\{B715879C-3CD0-4D01-B588-96AE08827B95}.tmp - ok
01:02:34.0672 0x11c8 [ AED6D63CFA5A3EF7021AF9C457FEE994, B4BFA27F677295B00A1DF9A7E14DB4B75CAC2DD41B898D4E9A378ECCCE3699F0 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\msvcr100.dll
01:02:34.0672 0x11c8 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x64\msvcr100.dll - ok
01:02:34.0672 0x11c8 [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\Karl\AppData\Local\Temp\{2B6A4DE6-DF7C-4488-9E9A-1CFC35BB730B}\{71B1E477-B7DE-4BFB-B820-22B121DBE103}.tmp
01:02:34.0672 0x11c8 C:\Users\Karl\AppData\Local\Temp\{2B6A4DE6-DF7C-4488-9E9A-1CFC35BB730B}\{71B1E477-B7DE-4BFB-B820-22B121DBE103}.tmp - ok
01:02:34.0672 0x11c8 [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\Karl\AppData\Local\Temp\{2B6A4DE6-DF7C-4488-9E9A-1CFC35BB730B}\{A2DFA19D-CB1D-465C-B417-E9B27CFCD63A}.tmp
01:02:34.0672 0x11c8 C:\Users\Karl\AppData\Local\Temp\{2B6A4DE6-DF7C-4488-9E9A-1CFC35BB730B}\{A2DFA19D-CB1D-465C-B417-E9B27CFCD63A}.tmp - ok
01:02:34.0688 0x11c8 [ 1D2BF8A373546ADA00F09DC7496B86AB, 9DFC30F715FE85435FB5468B48CFD52CAC7E54EB9E9B8E6968A017405D8217E3 ] C:\Windows\System32\wpncore.dll
01:02:34.0688 0x11c8 C:\Windows\System32\wpncore.dll - ok
01:02:34.0688 0x11c8 [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\Karl\AppData\Local\Temp\{2B6A4DE6-DF7C-4488-9E9A-1CFC35BB730B}\{03C33B64-6627-44D8-817F-F53C2C54AB6C}.tmp
01:02:34.0688 0x11c8 C:\Users\Karl\AppData\Local\Temp\{2B6A4DE6-DF7C-4488-9E9A-1CFC35BB730B}\{03C33B64-6627-44D8-817F-F53C2C54AB6C}.tmp - ok
01:02:34.0688 0x11c8 [ F0814D492176F8A4FD49D852D2AD748E, 6516FDA7A1EAE035C920947D288B1EA86D309BE1B861F64F664FCC8202D239B7 ] C:\Windows\System32\sppc.dll
01:02:34.0688 0x11c8 C:\Windows\System32\sppc.dll - ok
01:02:34.0688 0x11c8 [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\Karl\AppData\Local\Temp\{2B6A4DE6-DF7C-4488-9E9A-1CFC35BB730B}\{316C7475-04B4-4AC8-B787-A3BD81EF836A}.tmp
01:02:34.0688 0x11c8 C:\Users\Karl\AppData\Local\Temp\{2B6A4DE6-DF7C-4488-9E9A-1CFC35BB730B}\{316C7475-04B4-4AC8-B787-A3BD81EF836A}.tmp - ok
01:02:34.0704 0x11c8 [ A42870D2784D8D552097C25F798F2B42, 57ED4553ED73F74E2144B1D5E08932A296A7654EDFE6BC024BF25DD580F7877E ] C:\Windows\SysWOW64\UIAutomationCore.dll
01:02:34.0704 0x11c8 C:\Windows\SysWOW64\UIAutomationCore.dll - ok
01:02:34.0704 0x11c8 [ C82020F726F659478ACB95051C054CB5, 7288E990448132BCD752CB9DCAF25F7E4EF0F5B61B63E7F1F12D9C79B8D2E425 ] C:\Windows\SysWOW64\sxs.dll
01:02:34.0704 0x11c8 C:\Windows\SysWOW64\sxs.dll - ok
01:02:34.0704 0x11c8 [ FCD59C405ADFADAC1B0729C580F7F70C, DDF1EECFF48A448E56A693EC31895BE9B97445022CC1CF344EF4BCD56B6C8886 ] C:\Windows\System32\wlidprov.dll
01:02:34.0704 0x11c8 C:\Windows\System32\wlidprov.dll - ok
01:02:34.0719 0x11c8 [ 09D886BA5A4BCC31079A2B12980CCF50, 92FD2987877E84E5DC4D4343B2A2DDBF01B46EB5CDC29E68739099FE37D8273E ] C:\Windows\SysWOW64\msi.dll
01:02:34.0719 0x11c8 C:\Windows\SysWOW64\msi.dll - ok
01:02:34.0719 0x11c8 [ 9314C83DE37182685C788FCA3CEC43A4, BD068BD8C8A82B5C36E40656B6ED9247BBF6089FBB5695BAD5788E3FCFA9A683 ] C:\Windows\System32\thumbcache.dll
01:02:34.0719 0x11c8 C:\Windows\System32\thumbcache.dll - ok
01:02:34.0719 0x11c8 [ 52066C139CC189468845D5BE557B25EB, 65A6828240CC06435C1A5FD48B443C3023CE2E8A0A6BDEF67795612457B0CF60 ] C:\Windows\System32\TimeBrokerServer.dll
01:02:34.0719 0x11c8 C:\Windows\System32\TimeBrokerServer.dll - ok
01:02:34.0719 0x11c8 [ 079244F281621FEDCC161D3923E858FE, A9997FF335B2A81CD9C1DFF8177FBBD4E36360BC1F3E7CD260144806EB12BC5E ] C:\Windows\System32\SystemEventsBrokerServer.dll
01:02:34.0719 0x11c8 C:\Windows\System32\SystemEventsBrokerServer.dll - ok
01:02:34.0735 0x11c8 [ 38175536133BDC9324910582250CB8DD, 1116D08BADDC34B647D587750697444DAC76AE1068A43C4812577A2FD44266A7 ] C:\Windows\System32\taskeng.exe
01:02:34.0735 0x11c8 C:\Windows\System32\taskeng.exe - ok
01:02:34.0735 0x11c8 [ D28D7137DA307C1BFD3625B5A3FAE1E0, 4101ED6FDD0DA6B4D02E1DB8B58C64B06FDA9F9B50584DC98A19F20B431F954F ] C:\PROGRA~1\mcafee\msc\mcoemmgr.exe
01:02:34.0735 0x11c8 C:\PROGRA~1\mcafee\msc\mcoemmgr.exe - ok
01:02:34.0735 0x11c8 [ 15AC3A854C3DD59DFD11EEE2FF63C79A, A9BEB4537A886325E8DC937824ABA8A7FDCCE23AB59EEC381BEFA42A702EC796 ] C:\Windows\SysWOW64\riched20.dll
01:02:34.0735 0x11c8 C:\Windows\SysWOW64\riched20.dll - ok
01:02:34.0735 0x11c8 [ BC9503A901A545FAD807909F8C86B286, EBF9E2E10CE69D90E6020B45ACD3F5711E28B3B79919A489E85EB61ED7AFC1CB ] C:\Windows\SysWOW64\usp10.dll
01:02:34.0735 0x11c8 C:\Windows\SysWOW64\usp10.dll - ok
01:02:34.0750 0x11c8 [ C4A6771ABE5F9B2B9B5876175F14E61A, 620D90F024F3C8B16BB2105F6D163A3758C5FE442C2F706C837D72E9844DAADC ] C:\Windows\SysWOW64\msls31.dll
01:02:34.0750 0x11c8 C:\Windows\SysWOW64\msls31.dll - ok
01:02:34.0750 0x11c8 [ 074223C4D8109C016B5864DEBF356BD8, 8301009C38244CB8457E94ED30456341E5A61469F442D6BC59FD1BD75C178E29 ] C:\Windows\SysWOW64\ExplorerFrame.dll
01:02:34.0750 0x11c8 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
01:02:34.0750 0x11c8 [ 48067CB53E31B98A394CB12024F26D1B, 9E26CDC31DC57E0DD5CCB2E84C55714475A4B4326A62A339B0F41227CA90529C ] C:\Windows\System32\Windows.Globalization.Fontgroups.dll
01:02:34.0750 0x11c8 C:\Windows\System32\Windows.Globalization.Fontgroups.dll - ok
01:02:34.0766 0x11c8 [ FE4D3F3C0F40B9CF957091847704D22E, FC13B33BE3635DBF6718E7A5825D2939649CEC0E77C8822A19254885B0B1B73B ] C:\Windows\SysWOW64\duser.dll
01:02:34.0766 0x11c8 C:\Windows\SysWOW64\duser.dll - ok
01:02:34.0766 0x11c8 [ FB11241B62F07C9FFE664610E262C528, 0DECFD4C293D2E5D361B33FFA27C6D231A065BA5D772C82DDDA7378D17CCD5F2 ] C:\Windows\SysWOW64\dui70.dll
01:02:34.0766 0x11c8 C:\Windows\SysWOW64\dui70.dll - ok
01:02:34.0766 0x11c8 [ 4E6C0D003B381CC109A50794A2F1A222, C65C0D5D0B42775539FD89BD08244789381AED33EA2BDB73114E3663CEF3C1E6 ] C:\Windows\System32\stobject.dll
01:02:34.0766 0x11c8 C:\Windows\System32\stobject.dll - ok
01:02:34.0766 0x11c8 [ CAC6AB22921FF896E2CD6127C8364191, 7383BC3B7F54BA17A247694D7F6AC90E5DE55082C555C3B2D8FAA1F5AD31A7AE ] C:\Windows\System32\Windows.Networking.Connectivity.dll
01:02:34.0766 0x11c8 C:\Windows\System32\Windows.Networking.Connectivity.dll - ok
01:02:34.0781 0x11c8 [ BC61E429D78796F292D5E9A71C3A967F, A030CA80039C0057822881C1577B0B6276228A9541C79165113979342999528A ] C:\Windows\System32\TSChannel.dll
01:02:34.0781 0x11c8 C:\Windows\System32\TSChannel.dll - ok
01:02:34.0781 0x11c8 [ CCE6B3A2040D26BFFD00CAE539B72C15, 2F6D159E3E37AEC742102448587CEDFB3FAD7278029BB7093A21E015C3269A66 ] C:\Program Files\Malwarebytes Anti-Exploit\mbae-loader.exe
01:02:34.0781 0x11c8 C:\Program Files\Malwarebytes Anti-Exploit\mbae-loader.exe - ok
01:02:34.0781 0x11c8 [ F7C576B31DD1D18E8C45A43AE807C5F5, ED9A370F3C1C0EA9A8F40FBD3BFC9B68809FEC6323FD1136F0AE254FF89AA2A5 ] C:\Windows\System32\ThumbnailExtractionHost.exe
01:02:34.0781 0x11c8 C:\Windows\System32\ThumbnailExtractionHost.exe - ok
01:02:34.0797 0x11c8 [ 5981F68715966CA53B5905B146525D42, 092F3A5B4173C00C56E958C9A775C9CAC09DCF32D2DCC7BCB26C53F4AD246C3C ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
01:02:34.0797 0x11c8 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe - ok
01:02:34.0797 0x11c8 [ D12BEB5E114701442F1FAA92A739E60E, 0C65F1545DA31F228F87125E5CD14D97F61D030C1EB5A454B37A4E5D79F4DD5F ] C:\Windows\System32\prnfldr.dll
01:02:34.0797 0x11c8 C:\Windows\System32\prnfldr.dll - ok
01:02:34.0797 0x11c8 [ 0A985B934A0475A991A1781F80952AA3, 46BABF3E9CEAE4963239BD5770462260DB18138B0F1C93CED361179CB4ED10F9 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPStrike.dll
01:02:34.0797 0x11c8 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPStrike.dll - ok
01:02:34.0797 0x11c8 [ ACB4573209FC9F335E242017C3064E5C, C9FFF0B1022356E563929CCDC89936F6A2C0E39A5550C3D12E3D08CD784013E6 ] C:\Windows\System32\msvcr100d.dll
01:02:34.0797 0x11c8 C:\Windows\System32\msvcr100d.dll - ok
01:02:34.0813 0x11c8 [ DCB7509F83B2A2089DBE07DDEDB52017, 4DD79932C95C74E4A54B3CF255DF3858A97DF10C3396FF6B2A4620C9C9379E8C ] C:\Windows\System32\WinTypes.dll
01:02:34.0813 0x11c8 C:\Windows\System32\WinTypes.dll - ok
01:02:34.0813 0x11c8 [ 13B32B8042780001460D2CD0D9EB9295, CE6A76D0AB2A46EE09E90391F36A72802688F7300DC133BC08682FCABFF3B709 ] C:\Windows\System32\AudioSes.dll
01:02:34.0813 0x11c8 C:\Windows\System32\AudioSes.dll - ok
01:02:34.0813 0x11c8 [ 043B150DA8B3559BD7AE701D3496D232, 77C16D0F380E4ECE02020B0ADE20ED07F06E4DC1264DA4F1AA9E458420D8E960 ] C:\Windows\System32\DXP.dll
01:02:34.0813 0x11c8 C:\Windows\System32\DXP.dll - ok
01:02:34.0813 0x11c8 [ 7FB5B7BD3A65370A0937E285AC38BF9F, 70671CDD408C96AD36459C73F56A6E29799C6851F4AF1E482295F0AF525CF7FA ] C:\Program Files\Malwarebytes Anti-Exploit\mbae.exe
01:02:34.0813 0x11c8 C:\Program Files\Malwarebytes Anti-Exploit\mbae.exe - ok
01:02:34.0828 0x11c8 [ 6C3286861FFBCFD7B47E6CFAA0802CB7, 9E5C1E7CFE9572E1D9AB98F1A2E6399A1311E3804226E1298C2272922816738A ] C:\Program Files (x86)\ASUS\ASUS InstantOn\MetroInfo.dll
01:02:34.0828 0x11c8 C:\Program Files (x86)\ASUS\ASUS InstantOn\MetroInfo.dll - ok
01:02:34.0828 0x11c8 [ 5BBFFBB4E84EA80B941DF0CF59A595BB, 45858A6E360BA1A79B67D629DFF8DE271624722A956DCBC7D499827239DCB3E4 ] C:\Windows\SysWOW64\twinapi.dll
01:02:34.0828 0x11c8 C:\Windows\SysWOW64\twinapi.dll - ok
01:02:34.0828 0x11c8 [ AE216A0329FAC7804DC4DFEA49254F0D, 5242ED8D536A05073213BB60AA6F02BAC07B0C7B626D842D03B677249F7C82A0 ] C:\Windows\System32\ntshrui.dll
01:02:34.0828 0x11c8 C:\Windows\System32\ntshrui.dll - ok
01:02:34.0844 0x11c8 [ 5A5E57A0E1D3674AE9ADBC9CAD80428D, AADCCEC98FE2F4CE21CFB1DAD4876EC3B70E8658C50664E538E5135411C244D5 ] C:\Windows\System32\Syncreg.dll
01:02:34.0844 0x11c8 C:\Windows\System32\Syncreg.dll - ok
01:02:34.0844 0x11c8 [ DD236E26397C1C79D55684F5A72E1C3C, 17EB26C3ED2D4BBAF1D6CF85F60DD5B11181F483FE5DCFBF6C17354469C0C4C8 ] C:\Windows\System32\PhotoMetadataHandler.dll
01:02:34.0844 0x11c8 C:\Windows\System32\PhotoMetadataHandler.dll - ok
01:02:34.0844 0x11c8 [ D86F25F0AD6CA6E77A9F67641EEB6722, 15066B624C54A3FEDEEB840330E45B7F24A411941DB39DFB75177225409C57B4 ] C:\Program Files\Internet Explorer\sqmapi.dll
01:02:34.0844 0x11c8 C:\Program Files\Internet Explorer\sqmapi.dll - ok
01:02:34.0844 0x11c8 [ 923260FAA0F64A90FA63F7EAC08881AF, E3CA4F7D24C3F489D7E95EC992BA76082A6FBCE5F936B1187BBD95D6445849EF ] C:\Windows\System32\AltTab.dll
01:02:34.0844 0x11c8 C:\Windows\System32\AltTab.dll - ok
01:02:34.0860 0x11c8 [ 56C91F36ADE867F0EDFE0BC6179AC2BC, 4DA83009D6BCA72B3C4DBCB7171980815E4A76C8358B51015AC20DDDD62D7151 ] C:\Windows\System32\WPDShServiceObj.dll
01:02:34.0860 0x11c8 C:\Windows\System32\WPDShServiceObj.dll - ok
01:02:34.0860 0x11c8 [ AC89ADD10CDAC8D5647928FBE5B94621, 2670131BA80D4729499042EDC5E6AD31DF1DEB3B3A7C30094327BA079C268066 ] C:\Windows\System32\PortableDeviceTypes.dll
01:02:34.0860 0x11c8 C:\Windows\System32\PortableDeviceTypes.dll - ok
01:02:34.0860 0x11c8 [ A084CB0B1898CE603EEF210DF7C13C2D, 7C333124881D25D4315071BD45F4CE6AC159D7DD2A1999CC23A2041E55CE6DFE ] C:\Windows\System32\pnidui.dll
01:02:34.0860 0x11c8 C:\Windows\System32\pnidui.dll - ok
01:02:34.0875 0x11c8 [ 4B5A42E0FDD2012B6940CC14F447E8D8, EE6BD4C910C4DF5A519AC9B4FC6E05BECC8BC73CDFC28C6884D1125DC767E55C ] C:\Windows\System32\NcaApi.dll
01:02:34.0875 0x11c8 C:\Windows\System32\NcaApi.dll - ok
01:02:34.0875 0x11c8 [ 4681211F6D66604F34646FA6EB84D989, 6FDBE1002BA2A10904423DF7C75E51F2655D95E2B12F8DD91A65AA3BFFCAFF23 ] C:\Program Files\Windows Portable Devices\sqmapi.dll
01:02:34.0875 0x11c8 C:\Program Files\Windows Portable Devices\sqmapi.dll - ok
01:02:34.0875 0x11c8 [ D598C44A7072D3108D8D8102EC5E07F7, D7472E9BAAB7B6E1D30F4E153412E2A16EE5C08DE2BF8BFF4D65089825226FE0 ] C:\Windows\System32\qmgr.dll
01:02:34.0875 0x11c8 C:\Windows\System32\qmgr.dll - ok
01:02:34.0875 0x11c8 [ 0208CAE5E09FA01DA2649702AE9616F6, 8321F929353905A2AE4E78D86AB1EFEDB133917F05FF9B433F1DD4E45E737765 ] C:\Windows\System32\srchadmin.dll
01:02:34.0875 0x11c8 C:\Windows\System32\srchadmin.dll - ok
01:02:34.0891 0x11c8 [ 7CD252214BC8C4004FB0814B1DBB1E0F, BBF848E833A4BFBB7BFD6F107BAB3F506C4A65D3F70E4A1BAAD9915604DC5D7B ] C:\Windows\System32\bitsperf.dll
01:02:34.0891 0x11c8 C:\Windows\System32\bitsperf.dll - ok
01:02:34.0891 0x11c8 [ 357CA105C57C860526342C3F35A7C4E6, A5A09E844B649826C7C21054D982F7EF20C2B57391FBA5EB5348C0A076E4E386 ] C:\Windows\System32\bitsigd.dll
01:02:34.0891 0x11c8 C:\Windows\System32\bitsigd.dll - ok
01:02:34.0891 0x11c8 [ 7CEE52B25CA677E5B62DC00E3BD3BBCE, 1252B4F2FAEBC587750E7E5935465B5C4EF7329AF77B4CC3AD622F3A02F362B2 ] C:\Windows\System32\ActionCenter.dll
01:02:34.0891 0x11c8 C:\Windows\System32\ActionCenter.dll - ok
01:02:34.0906 0x11c8 [ 9E83DC8533D369C4663A65FA57F675F2, DBA14D4F3C4199CCB528C200F7EDA1211BFD10748A67EF831058B4E8D6112251 ] C:\Windows\System32\SearchIndexer.exe
01:02:34.0906 0x11c8 C:\Windows\System32\SearchIndexer.exe - ok
01:02:34.0906 0x11c8 [ E9B9C28A237D8FEF1FCD2C0D08E7D3C4, 52841100F7EC2E6A85825CA2EDCCF00705FF3AD3B52AD445276B5FC1215FEEA0 ] C:\Windows\System32\upnp.dll
01:02:34.0906 0x11c8 C:\Windows\System32\upnp.dll - ok
01:02:34.0906 0x11c8 [ F724A7238E4FB9C02D4FE918EFD150E0, 811B96E67E3A34B49AF974A869E0B62A07766DB018A2D8552EE4642974CF69E7 ] C:\Windows\System32\bthprops.cpl
01:02:34.0906 0x11c8 C:\Windows\System32\bthprops.cpl - ok
01:02:34.0906 0x11c8 [ D8DCEE270674DDB6503730CC4C2F1691, AC58EB378CA65642487F8660637A9F4A2E9CAADED71D71D8020F1D7CE94EF03F ] C:\Windows\System32\BluetoothApis.dll
01:02:34.0906 0x11c8 C:\Windows\System32\BluetoothApis.dll - ok
01:02:34.0922 0x11c8 [ DA5E5A6C7EB4CDD9221B9A61306BD689, 3C70C175B3B871785C4CB85A08DC998BF581A8E31A2BCD45EDF6AB246CED2C68 ] C:\Windows\System32\msvcp100d.dll
01:02:34.0922 0x11c8 C:\Windows\System32\msvcp100d.dll - ok
01:02:34.0922 0x11c8 [ 902F4F9135FF2BFF4EF797BCEF10D2EA, E9DDB2A670F063C1624EE37F432328778734D68213B0E60C40A8E25DFDFED969 ] C:\Windows\System32\ncryptsslp.dll
01:02:34.0922 0x11c8 C:\Windows\System32\ncryptsslp.dll - ok
01:02:34.0922 0x11c8 [ 0F2C0040E2111B2D9FCC4603C2D8C876, 947342EBDEFADBEEE0309A9625D83EB507D583DC598B0F211DFD8FBE0F51114A ] C:\Windows\System32\tquery.dll
01:02:34.0922 0x11c8 C:\Windows\System32\tquery.dll - ok
01:02:34.0922 0x11c8 [ 7F81942E5269D4079BC77A60E2A08A24, 4F6B134FA47417F58908370C06688FBAB0ABBC00A371A42197518E118C89D7A4 ] C:\Windows\System32\dlnashext.dll
01:02:34.0922 0x11c8 C:\Windows\System32\dlnashext.dll - ok
01:02:34.0938 0x11c8 [ F6E06380D717875F6AEFC2B0694B9E9D, 2ED566322CD7A90EB7C39C139C5B138808E0220A2FB48DFFC2EB52373F0CD225 ] C:\Windows\System32\ncryptprov.dll
01:02:34.0938 0x11c8 C:\Windows\System32\ncryptprov.dll - ok
01:02:34.0938 0x11c8 [ F60C2D5371591F779128D46A313DF239, 8F607CB952145FB72E197B1DDFD1783FA3607C9A860514AE909529E9F552CD1A ] C:\Windows\System32\mssrch.dll
01:02:34.0938 0x11c8 C:\Windows\System32\mssrch.dll - ok
01:02:34.0938 0x11c8 [ 0515FF4F49057EDE5FAAB6537D26D5EB, CB6076A36C8109AC2E99422F8B1A495EBD13AA7A0F3ECCEFCFD791228811F6E7 ] C:\Windows\System32\dssenh.dll
01:02:34.0938 0x11c8 C:\Windows\System32\dssenh.dll - ok
01:02:34.0953 0x11c8 [ 22841396DDA983B3FE9B9B1A39213105, 6A30B7F88B284B231CA55D960860F14CF48D2F37776E0F0697E7B07EB7B349FD ] C:\Windows\System32\Windows.Media.Streaming.dll
01:02:34.0953 0x11c8 C:\Windows\System32\Windows.Media.Streaming.dll - ok
01:02:34.0953 0x11c8 [ 94F97611FFCFF810BF8CB0D467BADA60, 890E3A39E0A65027A093BF0A209D2A55B25E857CAF61D939D96E47F3BF7BAE32 ] C:\Windows\System32\msidle.dll
01:02:34.0953 0x11c8 C:\Windows\System32\msidle.dll - ok
01:02:34.0953 0x11c8 [ D46AA09CDA82CAF193922677397605A9, B7612C555688C4C8652710D3043A225B34559579EF9C233F1098CDCDF7C656C6 ] C:\Windows\System32\mssprxy.dll
01:02:34.0953 0x11c8 C:\Windows\System32\mssprxy.dll - ok
01:02:34.0953 0x11c8 [ 7A20882D76D4A78240A5AC9F2C2EBA21, ACA05211EE542999A118BBD2CD051038A7DC8C40C4B8971DC6514BA90E90EC61 ] C:\Windows\System32\ssdpsrv.dll
01:02:34.0953 0x11c8 C:\Windows\System32\ssdpsrv.dll - ok
01:02:34.0969 0x11c8 [ 171B29C3081AD1B2EA5A6CC21B4363A0, 1CF21FFB26A99030D1CF7B47B1B76EC43E35F0A7557241F7862D9EAE9C4546B7 ] C:\Windows\System32\DevDispItemProvider.dll
01:02:34.0969 0x11c8 C:\Windows\System32\DevDispItemProvider.dll - ok
01:02:34.0969 0x11c8 [ BA2BA6F87720AB2486C0E5D84C6E5ED1, 90762D98CA57497BF8BB9AEA05447A53A05F968C03316749498647F65158E5A9 ] C:\Windows\System32\wpdshext.dll
01:02:34.0969 0x11c8 C:\Windows\System32\wpdshext.dll - ok
01:02:34.0969 0x11c8 [ B24AA0AC52483A412107B5B246A1C427, 693339A4C54835ADA129E04420B0700BFBFBC7809820419FFDABE4C7BE617F10 ] C:\Windows\System32\qmgrprxy.dll
01:02:34.0969 0x11c8 C:\Windows\System32\qmgrprxy.dll - ok
01:02:34.0984 0x11c8 [ 4A62D39EFBD3AA5E7ECE5E0082B32DA1, ABEABB6342CBDD74028EE5C76A945677C1E3D562C49CA94DEF23E436366F3535 ] C:\Windows\System32\bitsprx7.dll
01:02:34.0984 0x11c8 C:\Windows\System32\bitsprx7.dll - ok
01:02:34.0984 0x11c8 [ 066FCDCBFF294CFD6B8F74863DDA72EC, E747A5150CACBA2A8629C0CE036CE89E4FFD4F61C8378CACCDB3320098952DBB ] C:\Windows\System32\bitsprx5.dll
01:02:34.0984 0x11c8 C:\Windows\System32\bitsprx5.dll - ok
01:02:34.0984 0x11c8 [ 9C5C6526AA212D84EB1A291DE63ED4EE, 87DFB8FC517A33E9D00AECEB0629D51E6CE55B008AFCE723C030AE6296E996C2 ] C:\Windows\System32\bitsprx3.dll
01:02:34.0984 0x11c8 C:\Windows\System32\bitsprx3.dll - ok
01:02:34.0984 0x11c8 [ F3F9FB5F953B2DEB36565F8EEB35784F, 8A51EC1760E0D0523F3848363D1A17E92C289A7FF5D97D9F41FA5D33CA9C2C4B ] C:\Windows\System32\bitsprx2.dll
01:02:34.0984 0x11c8 C:\Windows\System32\bitsprx2.dll - ok
01:02:35.0000 0x11c8 [ 360C65D810655A2FB6D545308996D9FA, 55B69C3EB30E312399DE75093929E274B52395968F498DA02E54E468B50C6FB5 ] C:\Windows\System32\SearchProtocolHost.exe
01:02:35.0000 0x11c8 C:\Windows\System32\SearchProtocolHost.exe - ok
01:02:35.0000 0x11c8 [ 5F0849B64B014098A84813D6653009A8, 75015D54D935EDFE7CD09E1EA2D29C51EA71B05E2D2FFC375B11B02B204ED1AF ] C:\Windows\System32\bitsprx6.dll
01:02:35.0000 0x11c8 C:\Windows\System32\bitsprx6.dll - ok
01:02:35.0000 0x11c8 [ 16B0D0C1D0CFDB8F5F3DE9849487B509, 6B449796A7B1611C6C7FA6A3535B57E7C351FED057494E1FE0ABE3F44F133084 ] C:\Windows\System32\SyncCenter.dll
01:02:35.0000 0x11c8 C:\Windows\System32\SyncCenter.dll - ok
01:02:35.0016 0x11c8 [ 50A64AA1DBAEC9D4A6F7D5944E546DE0, 460909A4EA511336F94C78FC2561CA8F7FD5E73E1196B349898AC41140F52D90 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
01:02:35.0016 0x11c8 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe - ok
01:02:35.0016 0x11c8 [ 144FB4C179B2BCE64757B7EE583C8372, D8619DC93D57064FDC1D5A45F9B902E551C91084F7441BD47F7A35DB68C3A6B4 ] C:\Windows\System32\msshooks.dll
01:02:35.0016 0x11c8 C:\Windows\System32\msshooks.dll - ok
01:02:35.0016 0x11c8 [ DC83BD0D3A236CF3A0F9D6F5C7A4078B, 6FAD15FD6D9DAABCA07D614FC16684BBD72A87D0E564ED0313A49AAB18FBA170 ] C:\Windows\System32\SearchFilterHost.exe
01:02:35.0016 0x11c8 C:\Windows\System32\SearchFilterHost.exe - ok
01:02:35.0016 0x11c8 [ D0D3846F09A8783F3F07AFC29CC3AEF4, 0352DEFE90F846B9B959FB1690F0B1466608A59C21C03E16598C67DEE6A93C2B ] C:\Windows\System32\WindowsCodecsExt.dll
01:02:35.0016 0x11c8 C:\Windows\System32\WindowsCodecsExt.dll - ok
01:02:35.0016 0x11c8 [ 805AD714EF4126BE2D2390D446CA4280, 31F647818E9D2F9C4FF4805839D103652EDB361A661E38144EE59FE849B6E935 ] C:\Windows\System32\imapi2.dll
01:02:35.0031 0x11c8 C:\Windows\System32\imapi2.dll - ok
01:02:35.0031 0x11c8 [ A2418204EBFA6F41DE3DF2FBB46B7F3F, 18BF0FDF8EF215F73C5ED7E13ED8D0C662BA1313FB9928545A2BC50AC88B719B ] C:\Windows\System32\pcacli.dll
01:02:35.0031 0x11c8 C:\Windows\System32\pcacli.dll - ok
01:02:35.0031 0x11c8 [ 520C138EB08059060D30C92BE5F817FE, 9A27DAFD99D9D352B72E510561B15138659A6074FCE5EAB9DFE66403405F9D49 ] C:\Windows\System32\msiltcfg.dll
01:02:35.0031 0x11c8 C:\Windows\System32\msiltcfg.dll - ok
01:02:35.0031 0x11c8 [ DA3021EFAC1D185AC725AFCCD3398521, 7FBA9E570984C0A9C96C5D39FCC63533F5019663D12830F0A83E15604775F999 ] C:\Windows\System32\msi.dll
01:02:35.0031 0x11c8 C:\Windows\System32\msi.dll - ok
01:02:35.0047 0x11c8 [ 54C52E0FB41FA10BB06ABBD8AFF29D49, 2BFDED8048B69AEA1F7C18F968A5F85E8111EE341025391F643085790F2157C3 ] C:\Windows\System32\mssph.dll
01:02:35.0047 0x11c8 C:\Windows\System32\mssph.dll - ok
01:02:35.0047 0x11c8 [ B16BA8C18B51D0FDF120B1ED4E07C399, 2B6BF47C9205CC6D36FE53741943B0CA6219422C331552B98AE11CC2AF1C4551 ] C:\Windows\System32\hgcpl.dll
01:02:35.0047 0x11c8 C:\Windows\System32\hgcpl.dll - ok
01:02:35.0047 0x11c8 [ D7507B2F96098C43D1BC835F8B8E5E8E, AD420B10879407FF6D636407861020007043D6538C4E20783A91C9CFD3BB4CF0 ] C:\Windows\System32\mapi32.dll
01:02:35.0047 0x11c8 C:\Windows\System32\mapi32.dll - ok
01:02:35.0047 0x11c8 [ E0D9F6FE18FA7F53ADD29AF719CE2B7E, B965DCC72625188F3B896CB447B7696F22687266EAFC5AA270E2AD53DD9F324D ] C:\Windows\System32\provsvc.dll
01:02:35.0047 0x11c8 C:\Windows\System32\provsvc.dll - ok
01:02:35.0062 0x11c8 [ B447650079883B58626DD6BBAE857877, F765672DC2895038E7C270DFAF13C1355C9D64B73F8D847BDEC82DD559584AE3 ] C:\Windows\System32\NaturalLanguage6.dll
01:02:35.0062 0x11c8 C:\Windows\System32\NaturalLanguage6.dll - ok
01:02:35.0062 0x11c8 [ 49E2346A397A7512DD9D12E1D6D9A174, C8C3EB34920C7382236F294A450AF7A852AF52C2960EBACB1B0E698032A0C125 ] C:\Windows\System32\NlsData0009.dll
01:02:35.0062 0x11c8 C:\Windows\System32\NlsData0009.dll - ok
01:02:35.0062 0x11c8 [ 47DCA6F50C1D1E93F4DB5248557ED63C, 0F1ECE190C65BC7471A73DA78497CF18BE8694E861EC996EFEF0E6AD5FC47465 ] C:\Windows\System32\NlsLexicons0009.dll
01:02:35.0062 0x11c8 C:\Windows\System32\NlsLexicons0009.dll - ok
01:02:35.0078 0x11c8 [ 9C0502C5E747C8011D700DCA681A55A1, 44829A5B251A07AD032C3C9ADECEEA335A2C70B3D17C0A0E2B73BC328BC726A8 ] C:\Windows\System32\ELSCore.dll
01:02:35.0078 0x11c8 C:\Windows\System32\ELSCore.dll - ok
01:02:35.0078 0x11c8 [ A0F844B0E9ADACA064B832CAF0AEE338, 2EC9D69B0D5D4B03B3636152CC25C0E8990B96CDFC62B344C909E82091EACA3A ] C:\Windows\System32\elsTrans.dll
01:02:35.0078 0x11c8 C:\Windows\System32\elsTrans.dll - ok
01:02:35.0078 0x11c8 [ F6F335A35D54FF8A55D15FA35E0F7671, B30CBA2DB4B087FED5E3EC86E56D30261BC91A08FF387DCB6E226884F6FEAD3C ] C:\Windows\System32\elslad.dll
01:02:35.0078 0x11c8 C:\Windows\System32\elslad.dll - ok
01:02:35.0078 0x11c8 [ ADBA8A211DEB8EE1B2AC332F05378B1C, 41765501CDBF5EA1161C0320C52287FAADCFA868AFD49E6FB12D280572949E18 ] C:\Users\Karl\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
01:02:35.0078 0x11c8 C:\Users\Karl\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll - ok
01:02:35.0093 0x11c8 [ 349B1D5D8D1B5A7B10BCD01470BD5F64, F0502E3D58713044F62F539B8738694E4CE9C619C665515F5ED2500C843C0C46 ] C:\Users\Karl\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\msvcp110.dll
01:02:35.0093 0x11c8 C:\Users\Karl\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\msvcp110.dll - ok
01:02:35.0093 0x11c8 [ C72ABC6B7B90A61364B6DD889B5435F3, 0CBBD9691F08434DA3617874F99C6DD87538CBD65B5D8BC39FCE378D4ED29EED ] C:\Users\Karl\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\msvcr110.dll
01:02:35.0093 0x11c8 C:\Users\Karl\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\msvcr110.dll - ok
01:02:35.0093 0x11c8 [ F086AD1BA9B1413E41C09C3FD7E212A7, 9705FAC63F9E9AF3EA9579431A04B3BB83A3E274AB7CCA46411DFCA8021CA37A ] C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\AsusWSShellExt64.dll
01:02:35.0093 0x11c8 C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\AsusWSShellExt64.dll - ok
01:02:35.0093 0x11c8 [ 8F6A65D15A0CB3653E2CA3A3B937F6B6, 96E9299A311C5499BE3EDB1855AF2F0637ED52F2CF64940E02714EDEA34A9E86 ] C:\Windows\System32\EhStorShell.dll
01:02:35.0093 0x11c8 C:\Windows\System32\EhStorShell.dll - ok
01:02:35.0109 0x11c8 [ 23DE163660895D178A2A6FCF785FF040, 69C4DF34D5A20D24F61E4BBE5AEC57D345EF700F944A21523C45069564A3B9C1 ] C:\Program Files\Malwarebytes Anti-Exploit\mbae.sys
01:02:35.0109 0x11c8 C:\Program Files\Malwarebytes Anti-Exploit\mbae.sys - ok
01:02:35.0109 0x11c8 [ 9AFF71FCC5424D72DB0E2D3E4804ABF0, A8541E419A8732ED19E0C8366507EF28B6B722BA8392FC71DCACFD741B7FDBF4 ] C:\Windows\System32\apprepapi.dll
01:02:35.0109 0x11c8 C:\Windows\System32\apprepapi.dll - ok
01:02:35.0109 0x11c8 [ 9AC062437035B077C0F3B1BD738EC82A, DAC42AA903C3A6F7CB196D3D738FFDDADC8BD2138F0703F1DB035337540D53B7 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
01:02:35.0109 0x11c8 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
01:02:35.0125 0x11c8 [ B7BCA8A30CE13A283CDBDECEF5616C39, C734A8C3633653E0C903E7F14F574DEED763613F9E6A5CE7862D547CAE9AEDDB ] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
01:02:35.0125 0x11c8 C:\Program Files (x86)\ASUS\Splendid\ACMON.exe - ok
01:02:35.0125 0x11c8 [ BBFFB477EA4470766227D00C6B01E715, D7F2C3BABACD80D8BF88E14BC4269DC119116AC291CC2C6AB7ECC0F23FFE6C4F ] C:\Windows\System32\dsound.dll
01:02:35.0125 0x11c8 C:\Windows\System32\dsound.dll - ok
01:02:35.0125 0x11c8 [ A797EED94B22B29D3974CB20B66BE6C6, 35FDF101515380823F1AEC8683720BFFC93BE43C666CE68C6DE3E9C176A326FB ] C:\Windows\System32\CONEQMSAPOGUILibrary.dll
01:02:35.0125 0x11c8 C:\Windows\System32\CONEQMSAPOGUILibrary.dll - ok
01:02:35.0125 0x11c8 [ 765C51D25C0441944542D49E408E224B, 607A0162CACD953787F46E07271B5EF8D2D2E3648DD45FD6F22C4DD0AE3517FC ] C:\Windows\System32\oledlg.dll
01:02:35.0125 0x11c8 C:\Windows\System32\oledlg.dll - ok
01:02:35.0140 0x11c8 [ BD59EB5148E62D227DB2509F06634D50, BFB37A85D7DDA0368813823E6325C6B3BE73C223AF11D1ABB438DAF0A1C7BD3C ] C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
01:02:35.0140 0x11c8 C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll - ok
01:02:35.0140 0x11c8 [ 85C57CD47F292E248E56A41E7E7A19C6, DAEC5A85A33651F1B6A0991B9FF502CA01931FFCC3556A16961EE3C073F59AA6 ] C:\Program Files (x86)\ASUS\Splendid\OVS.dll
01:02:35.0140 0x11c8 C:\Program Files (x86)\ASUS\Splendid\OVS.dll - ok
01:02:35.0140 0x11c8 [ 85C7C5235460AC05CDEB7205861331EB, 94E2B339BABE3E7A5B2E022DF4D688FA71068DD23F5F683AB8855D86D2752E38 ] C:\Program Files (x86)\ASUS\Splendid\Alb_ASUSLib.dll
01:02:35.0140 0x11c8 C:\Program Files (x86)\ASUS\Splendid\Alb_ASUSLib.dll - ok
01:02:35.0156 0x11c8 [ D8076E195F532526174ADD1B15A8A465, CC97DE6C15316023966920D32E7A07FDDDA54AF95FDD4606AEF51EF3F528FF66 ] C:\Program Files (x86)\ASUS\Splendid\Chameleon.dll
01:02:35.0156 0x11c8 C:\Program Files (x86)\ASUS\Splendid\Chameleon.dll - ok
01:02:35.0156 0x11c8 [ 7A3B96DE45ED3AB1B6BAA1D0B7B9869B, EC0CC328C6D37B80F5CDFF1D71CEB5C874F3178EB7BE7F08B6571D88569C9975 ] C:\Windows\SysWOW64\comctl32.dll
01:02:35.0156 0x11c8 C:\Windows\SysWOW64\comctl32.dll - ok
01:02:35.0156 0x11c8 [ C2C86942ED94D1CD81F61BEFB3036AF6, CD2E2243AF04D7E7A3E3F78D9B39C7049CD53F1992BF691A1EC4C5CA5FE17C5C ] C:\Windows\SysWOW64\comdlg32.dll
01:02:35.0156 0x11c8 C:\Windows\SysWOW64\comdlg32.dll - ok
01:02:35.0156 0x11c8 [ 0805289E121F3E3C458C970B08314EB2, D9B448A04C09F525F599D0369CF9A197F471AABDA0A97201760C46D2EB8F3CDE ] C:\Windows\System32\RtkCfg64.dll
01:02:35.0156 0x11c8 C:\Windows\System32\RtkCfg64.dll - ok
01:02:35.0172 0x11c8 [ 2762306CD6A8AAC96D4D965EE939D00E, 31A993AEA3AAC20022543C90BC486C29DFBC2D13812958EABB98B0F44EA0932A ] C:\Windows\System32\RtkAPO64.dll
01:02:35.0172 0x11c8 C:\Windows\System32\RtkAPO64.dll - ok
01:02:35.0172 0x11c8 [ E97140424C378ACBD47DF493A6AB7235, 00F26F670AD6B03C465C4FC834DC993B551B8A8E73B603FE7B9CFFA893094A3D ] C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe
01:02:35.0172 0x11c8 C:\Program Files (x86)\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
01:02:35.0172 0x11c8 [ 97202E9C0D86387888435470CCAF45BE, AA6C25CD62A478F1F5361CA7A8F9B2CB22A8550B2B16F8BB54648B602931DF03 ] C:\Windows\SysWOW64\ACEngSvr.exe
01:02:35.0172 0x11c8 C:\Windows\SysWOW64\ACEngSvr.exe - ok
01:02:35.0187 0x11c8 [ D0DCD54147C44EAE13CE8535452521DC, 304D9DF454CA1A82E8FF06D09A1B1E8564113BDC5FDCEE89CBFF4E4F273FED0C ] C:\Windows\System32\AudioEng.dll
01:02:35.0187 0x11c8 C:\Windows\System32\AudioEng.dll - ok
01:02:35.0187 0x11c8 [ 874C8B1317C58FFE62D4D6AA591EABE2, A928241B03B0106F57625C78811EBD65262A695401E921C1425AB6596D5DC202 ] C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6871_none_50944e7cbcb706e5\msvcp90.dll
01:02:35.0187 0x11c8 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6871_none_50944e7cbcb706e5\msvcp90.dll - ok
01:02:35.0187 0x11c8 [ F1F9EEEF647CFA62A7104C054CE0999B, E77C7BB47F927865E7B4D689172321CDB70E296BD9A77CB64FF5C405AEDC6973 ] C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6871_none_50944e7cbcb706e5\msvcr90.dll
01:02:35.0187 0x11c8 C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6871_none_50944e7cbcb706e5\msvcr90.dll - ok
01:02:35.0203 0x11c8 [ 5C7CCB3652B0CCEC978C2D37DED40AD6, F29B8169AD0F104CF023041C08494EDF8645716AD4C98F94E90B83282B968433 ] C:\Windows\SysWOW64\mscms.dll
01:02:35.0203 0x11c8 C:\Windows\SysWOW64\mscms.dll - ok
01:02:35.0203 0x11c8 [ FC320B910DFBDFE314D6321ADCC8D8C7, D42990922E0D6330E2B3C8A372BACD4BFCBBC55094F73761A4981C6EC455F1F0 ] C:\Windows\SysWOW64\ddraw.dll
01:02:35.0203 0x11c8 C:\Windows\SysWOW64\ddraw.dll - ok
01:02:35.0203 0x11c8 [ 66E4494D2B127DD1D285D5D5C59B35EB, 633CE95B41023AFCF791C842DA87684F66AB0C82B25887390580734BCEDE8289 ] C:\Windows\SysWOW64\dciman32.dll
01:02:35.0203 0x11c8 C:\Windows\SysWOW64\dciman32.dll - ok
01:02:35.0203 0x11c8 [ 8A1C4821EDA0A1E31F160049548E7C71, B740A9BCF9FAAD62EE0B136F0CFF576075332ADBB9328D1865D7B53905F16D9F ] C:\Windows\System32\pcadm.dll
01:02:35.0203 0x11c8 C:\Windows\System32\pcadm.dll - ok
01:02:35.0218 0x11c8 [ E8C88BBBDBE4F42B3B60411D9E8A81A9, C423ABE532E829FFE94A171A979210803A7804865C40EC67264E2DA76A53E858 ] C:\Windows\SysWOW64\aticfx32.dll
01:02:35.0218 0x11c8 C:\Windows\SysWOW64\aticfx32.dll - ok
01:02:35.0218 0x11c8 [ 38ABF593173F8B255BFDEAA984DD7630, 8185F5532A3AD86E15DE5F13705635329494FE8EF31AE8C67E26393D329CF3E7 ] C:\Windows\SysWOW64\atiu9pag.dll
01:02:35.0218 0x11c8 C:\Windows\SysWOW64\atiu9pag.dll - ok
01:02:35.0218 0x11c8 [ 726BA31E42CC48006EC693366ECDFB5C, 1C8E9FF16C8EB31C5AD7EFD8955F1FD0C45A5B47B7206BBCBEDA51EEB573CDD5 ] C:\Windows\SysWOW64\atiumdag.dll
01:02:35.0218 0x11c8 C:\Windows\SysWOW64\atiumdag.dll - ok
01:02:35.0218 0x11c8 [ BAD6BEA0DE1F69C82BDB74378CE0C20A, ADA84B75173E9D03C180B527E31475ACA16CB19532C3EDA11357BD37049927E3 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
01:02:35.0234 0x11c8 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
01:02:35.0234 0x11c8 [ C2E7171F4B4144912ACDC7790AA19020, C99712C2655A3F49A52BEDB8B9A7AB18873A88EDCCFE51012B6A4DD8EDD4042D ] C:\Windows\SysWOW64\atiumdva.dll
01:02:35.0234 0x11c8 C:\Windows\SysWOW64\atiumdva.dll - ok
01:02:35.0234 0x11c8 [ F6104D2DBF254FE23928F978F6CABE35, FCE28A41334707A4990698DA1571EACBC574B28E20DF044169B051B30D3BAD42 ] C:\Windows\SysWOW64\oledlg.dll
01:02:35.0234 0x11c8 C:\Windows\SysWOW64\oledlg.dll - ok
01:02:35.0234 0x11c8 [ 2362B857693DA580E04ECE28F7D67E7E, EABF4B6502A06B94D07E25D78D8CEF8862B7FE5D117F7F145268B95688A02E62 ] C:\Program Files (x86)\ASUS\APRP\aprp.exe
01:02:35.0234 0x11c8 C:\Program Files (x86)\ASUS\APRP\aprp.exe - ok
01:02:35.0250 0x11c8 [ 7D04542E843AFA1A33D38C31D3FB5FEC, 1B37D88FD020C7F9AC172F4BF7747E97610AEF2E471E215F931BE4E4EE144A7A ] C:\Windows\SysWOW64\security.dll
01:02:35.0250 0x11c8 C:\Windows\SysWOW64\security.dll - ok
01:02:35.0250 0x11c8 [ C81AFE7FD0AC8BBF02485733EEE19840, A0320BC6AE9B90EC6A6BC0EE8779C3E71158B0104B8C1FBF3BDCCD54BEE5699F ] C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\AsusWSPanel.exe
01:02:35.0250 0x11c8 C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.10.123\AsusWSPanel.exe - ok
01:02:35.0250 0x11c8 [ B1149BA904BD455A96EEFB771974B8C5, BD7DF2B7DC6EAE6BC11233AD97635F2FA0E7AD5935054ECEEAD1ADF2D908035A ] C:\Program Files (x86)\ASUS\Splendid\ACOVS.exe
01:02:35.0250 0x11c8 C:\Program Files (x86)\ASUS\Splendid\ACOVS.exe - ok
01:02:35.0265 0x11c8 [ B6DEEB171382DEB54EA7D9F9F29F3DFB, DFADAFA02E1F1A49D0461CABF82ACA8FEEEF450370E4CB4D131D50F9C02826B5 ] C:\Program Files\mcafee.com\agent\mcagent.exe
01:02:35.0265 0x11c8 C:\Program Files\mcafee.com\agent\mcagent.exe - ok
01:02:35.0265 0x11c8 [ CCA14076376D8D0161BA4EDC5A2CA81C, 7709325BF3EDDB45EADEF356A0C2E66A06BC6E9E14F8E81DE1B543C05AA129CB ] C:\Windows\System32\mscoree.dll
01:02:35.0265 0x11c8 C:\Windows\System32\mscoree.dll - ok
01:02:35.0265 0x11c8 [ B7995C675014EEBE77A0BEB7AFCCFC08, 41D186C63273301CF0A1C1EE7B6EB0BB75A251DD441532C5CEB7A4095FB103CD ] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
01:02:35.0265 0x11c8 C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe - ok
01:02:35.0265 0x11c8 [ 4D5603F6B051946ED911D7F9D27C40D6, 22AFA110D8AD00CC84ABB48A57A42078D6896B421B20F85D740B8DCF7C7BD19B ] C:\Program Files\Internet Explorer\ieproxy.dll
01:02:35.0265 0x11c8 C:\Program Files\Internet Explorer\ieproxy.dll - ok
01:02:35.0281 0x11c8 [ DE6B73AA8A3F29CA02977D6CC938F685, E9E2ABD061581C618F129D2D34DA9E899921B848F9B885ADCB080A01A96BA334 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
01:02:35.0281 0x11c8 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
01:02:35.0281 0x11c8 [ 29CD24D8CA72FDB986B39277E70A48B6, CB3668497BB7D8BCAB040227083A2A7B9A67215493A6A6C714C303F520F9C967 ] C:\Program Files\Internet Explorer\iexplore.exe
01:02:35.0281 0x11c8 C:\Program Files\Internet Explorer\iexplore.exe - ok
01:02:35.0281 0x11c8 [ 004D1D9A6FA07E489B4A58736BCBD2AF, 0BFA096A5D6B4EFFF676A23503F7555C896BE0A01D6FCA1A2A38046118F5DD29 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll
01:02:35.0281 0x11c8 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll - ok
01:02:35.0281 0x11c8 [ 809A1EC7868924B5E92421F018587AC9, ED35819B78C452D9A7DB07686F828A2353C07EAEBB3EA185301C47EC647B7681 ] C:\Program Files (x86)\CyberLink\PowerDVD10\CLRCEngine3.dll
01:02:35.0296 0x11c8 C:\Program Files (x86)\CyberLink\PowerDVD10\CLRCEngine3.dll - ok
01:02:35.0296 0x11c8 [ 86F1895AE8C5E8B17D99ECE768A70732, 8094AF5EE310714CAEBCCAEEE7769FFB08048503BA478B879EDFEF5F1A24FEFE ] C:\Program Files (x86)\CyberLink\PowerDVD10\msvcr71.dll
01:02:35.0296 0x11c8 C:\Program Files (x86)\CyberLink\PowerDVD10\msvcr71.dll - ok
01:02:35.0296 0x11c8 [ 92FAA9C660F1F73D944C88F26AD3DD4F, D1FE5BB3BB405BD98CA72A722950DE5E6433CDAC2DAB9A15EAC2F5CDBD0FEC69 ] C:\Windows\System32\ieframe.dll
01:02:35.0296 0x11c8 C:\Windows\System32\ieframe.dll - ok
01:02:35.0296 0x11c8 [ ACA30B753EF16345AE2100E40603BF14, FCEA9D8CAA29DAB6C8956373F9B3CBFBBC8F0BEE201BE5F7695E679586F3D599 ] C:\Windows\System32\msvcr110_clr0400.dll
01:02:35.0296 0x11c8 C:\Windows\System32\msvcr110_clr0400.dll - ok
01:02:35.0312 0x11c8 [ 7F9CE2E9F66A18BA9052C9F179993399, 5F1662832DC15A422B57889271852158E4370237192C0B9869B7978DA66BA619 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\36bdca19b5e894e99f1723acd37ef442\mscorlib.ni.dll
01:02:35.0312 0x11c8 C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\36bdca19b5e894e99f1723acd37ef442\mscorlib.ni.dll - ok
01:02:35.0312 0x11c8 [ D41136A4C1AEA0749103CAFBFDFF8CFD, 1B5FC62C8866E39BA0A11CB7CD530AAE028EA98ABBF49E6FF4FCA8F0B2754A94 ] C:\Program Files\Internet Explorer\IEShims.dll
01:02:35.0312 0x11c8 C:\Program Files\Internet Explorer\IEShims.dll - ok
01:02:35.0312 0x11c8 [ 1249974F2A658D07E2647DD9C3592B9E, BE96CC9766D16E3059B521E464689EF47C0DA2B4071C9AD9F936C267BF518759 ] C:\Program Files (x86)\Internet Explorer\iexplore.exe
01:02:35.0312 0x11c8 C:\Program Files (x86)\Internet Explorer\iexplore.exe - ok
01:02:35.0312 0x11c8 [ 61B27F40309DA5760AB49956E0F75656, 0D546A9C9B099FE2B2E576DC1AFFC09C10D8D361B28CCD25E70E5E136E1716B2 ] C:\Windows\System32\ieui.dll
01:02:35.0312 0x11c8 C:\Windows\System32\ieui.dll - ok
01:02:35.0327 0x11c8 [ 5DA46042E4E8FAE64F30213530137002, FE3DC09986FC22EEBD2219D7F610E4ACC34786B49722DCB9AAC6B2F3E8D2EA48 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll
01:02:35.0327 0x11c8 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll - ok
01:02:35.0327 0x11c8 [ D59B8947123DB904DB5EAE89952BA223, 2E4C57FAC1F31EFD633F7A1B5975B3713751B922DE3521679B6AE6E84FEFCFF5 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System\cd7e5efbca71dae812e0fe72a64fd11c\System.ni.dll
01:02:35.0327 0x11c8 C:\Windows\assembly\NativeImages_v4.0.30319_64\System\cd7e5efbca71dae812e0fe72a64fd11c\System.ni.dll - ok
01:02:35.0327 0x11c8 [ E998B40F923A602E317234BCD7852A37, A3E811232C9C7FE0F04D94572AB598BAEDCA1BE474C89B0E83F22B9F8DAB8ED6 ] C:\Program Files (x86)\McAfee\gkp\HcApi.dll
01:02:35.0327 0x11c8 C:\Program Files (x86)\McAfee\gkp\HcApi.dll - ok
01:02:35.0327 0x11c8 [ 40887BDDE10BA2BD854599AB86E50CD9, 2E0AC98A2380814FF40272EEA1A5E4530A775D2BC00649F6E798CBA5EE1CA464 ] C:\Program Files (x86)\McAfee\gkp\HcThe.dll
01:02:35.0327 0x11c8 C:\Program Files (x86)\McAfee\gkp\HcThe.dll - ok
01:02:35.0327 0x11c8 [ BCA76B7228E6021EE8780A374DEBD6C5, 26141ADF00CCF4BCB05F2B58EE70B9A2501E43764FE449D03FC5FDF188C55BA1 ] C:\Windows\SysWOW64\ieframe.dll
01:02:35.0327 0x11c8 C:\Windows\SysWOW64\ieframe.dll - ok
01:02:35.0343 0x11c8 [ 35A232B4AB36326EDC9BDAA7F1D44C0D, 20A8E99775D8E5572010DFCD3418CBFD939655FFD4DBE3FB1E2D8D5183AF78D0 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\571ddebc7831d750f620cbcc69a8a162\System.Core.ni.dll
01:02:35.0343 0x11c8 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\571ddebc7831d750f620cbcc69a8a162\System.Core.ni.dll - ok
01:02:35.0343 0x11c8 [ AA29E28D388A4C2B2675500CDCCF3CC0, A3C8ABCD9FAD77ECA28706952A1D34EFDC76E407DD3286D0C8D3A13BAB897EB3 ] C:\Program Files (x86)\Internet Explorer\IEShims.dll
01:02:35.0343 0x11c8 C:\Program Files (x86)\Internet Explorer\IEShims.dll - ok
01:02:35.0343 0x11c8 [ C517DBB3764CE63715265636C92FC37A, 787564A3024C87B5396EAD98EEA8D67723C02C5612623DAC87F232AD7EE3A76A ] C:\Program Files (x86)\Internet Explorer\ieproxy.dll
01:02:35.0343 0x11c8 C:\Program Files (x86)\Internet Explorer\ieproxy.dll - ok
01:02:35.0359 0x11c8 [ 5A5B8182CBF5E5B21C19F119724C207B, A86A04E7AA7F1AB7F48DCE5A02B0C7423025C196BA5AE09AC21685DE7A13E465 ] C:\Windows\SysWOW64\mshtml.dll
01:02:35.0359 0x11c8 C:\Windows\SysWOW64\mshtml.dll - ok
01:02:35.0359 0x11c8 [ 2A048C77115108E1E902400DFEE69D65, B4EE81C09D4FE9B69439776C681F21AE786C8EA2D5E9DAB88BB9D1AF11F80C6C ] C:\Windows\assembly\NativeImages_v4.0.30319_64\Microsoft.V9921e851#\8b4d17380cd1e60b81f62664550ce077\Microsoft.VisualBasic.ni.dll
01:02:35.0359 0x11c8 C:\Windows\assembly\NativeImages_v4.0.30319_64\Microsoft.V9921e851#\8b4d17380cd1e60b81f62664550ce077\Microsoft.VisualBasic.ni.dll - ok
01:02:35.0359 0x11c8 [ BBE82F643191E2B391DAA5D972D5E702, 5C2174B16BF0D50B0FC6B3C226F79FDCCFDCDB979EB37DCAA4D6533723E71212 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Drawing\927737d5c2ed4b3bb3fe7f0d87cd4b9f\System.Drawing.ni.dll
01:02:35.0359 0x11c8 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Drawing\927737d5c2ed4b3bb3fe7f0d87cd4b9f\System.Drawing.ni.dll - ok
01:02:35.0359 0x11c8 [ 353DC9FBCF230E5347E0BDFCC6F02B1D, A71A802EF8CF4D4A64716173EA8AB7CC84605628F9CA5E61661B7469260F2B90 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Windows.Forms\d9604d83289032cd203249e501cbe849\System.Windows.Forms.ni.dll
01:02:35.0359 0x11c8 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Windows.Forms\d9604d83289032cd203249e501cbe849\System.Windows.Forms.ni.dll - ok
01:02:35.0374 0x11c8 [ 57B0CCA3CDD1110FAA0E0688CE11BB3A, 3850630F399AE5B836673ED3BE994102EFFB5CB128FABF8696F308C51061491C ] C:\Windows\SysWOW64\ieui.dll
01:02:35.0374 0x11c8 C:\Windows\SysWOW64\ieui.dll - ok
01:02:35.0374 0x11c8 [ EFAAA955B7D44729B250160A3DDDB6C5, A7C4B20E28E5CCCE0D30CA248720E44C934CDD5740A821E03C0BC93E74090173 ] C:\Windows\SysWOW64\mlang.dll
01:02:35.0374 0x11c8 C:\Windows\SysWOW64\mlang.dll - ok
01:02:35.0374 0x11c8 [ 9FD2CEC87F35C41A357EBF03F3C7DED5, 9FC035333EAD0F99298376931A627809632FD36078EE8C454FD14F700EA7CA97 ] C:\Windows\SysWOW64\d2d1.dll
01:02:35.0374 0x11c8 C:\Windows\SysWOW64\d2d1.dll - ok
01:02:35.0374 0x11c8 [ 6650784C028585B4E78E12C71A8BFFAE, F72471509B67E132F62B9398D0F26C1E61A519EDE757BA41AC49C673774ECD4B ] C:\Program Files (x86)\Internet Explorer\sqmapi.dll
01:02:35.0374 0x11c8 C:\Program Files (x86)\Internet Explorer\sqmapi.dll - ok
01:02:35.0390 0x11c8 [ 4D77A4ECFAFCCE6CEE0F8FEE88E637A8, 35E8CA22F77D91E5C0E010CE1027E4129F5DAB74430DC4CEAE06D317F3FB9A88 ] C:\Windows\SysWOW64\dxgi.dll
01:02:35.0390 0x11c8 C:\Windows\SysWOW64\dxgi.dll - ok
01:02:35.0390 0x11c8 [ 90631B0DB654DC4D54F4D51752623E73, 0056ACF5B78C592404E044F8B300200D78DC929B3ECEF6D06BB82747A3373AEF ] C:\Windows\SysWOW64\d3d11.dll
01:02:35.0390 0x11c8 C:\Windows\SysWOW64\d3d11.dll - ok
01:02:35.0390 0x11c8 [ B3AA5668DF2F3079678C1DC7A1302387, 7A3DE12A85AB6DA00BF46F79622C56882F16700A62D75B6F055FED7BBCB050A7 ] C:\Windows\SysWOW64\atiuxpag.dll
01:02:35.0390 0x11c8 C:\Windows\SysWOW64\atiuxpag.dll - ok
01:02:35.0390 0x11c8 [ F1151CF5FEF79C30F764486C911B5FBA, 80A42034F58E2B9AE2A09525C4401D32121819443B34E4BF146B714EF4BE94BD ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuration\3966fc70455b54fac8291eac9d7d1b81\System.Configuration.ni.dll
01:02:35.0390 0x11c8 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuration\3966fc70455b54fac8291eac9d7d1b81\System.Configuration.ni.dll - ok
01:02:35.0405 0x11c8 [ A022CAC324F89C8753102093F9527F8D, BD66975F4CBFDAA617BBB0E34EAAFD7813D70E34D03CC2E060BB0557FA045F16 ] C:\Windows\SysWOW64\atidxx32.dll
01:02:35.0405 0x11c8 C:\Windows\SysWOW64\atidxx32.dll - ok
01:02:35.0405 0x11c8 [ 0F0B81BE06D2DBB769BE188C8BC30912, 3B62907BA97B732392C3FBD67B0B07A2AB99644F044A7D633AFEA9396BCC35C0 ] C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\9a1d36041dbc47573a3d2bd4b0eae2c6\System.Xml.ni.dll
01:02:35.0405 0x11c8 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\9a1d36041dbc47573a3d2bd4b0eae2c6\System.Xml.ni.dll - ok
01:02:35.0405 0x11c8 [ E19BA2307108A176D38EA6BBE53572AF, BB8184AEA9CE80F625527536D4AB95DD77B3211A31892F459DABE241885542B3 ] C:\Windows\SysWOW64\actxprxy.dll
01:02:35.0405 0x11c8 C:\Windows\SysWOW64\actxprxy.dll - ok
01:02:35.0405 0x11c8 [ 5B5878314B78A6827BA4431C4C3379EB, 88D85CC882FE132B83370F3969D1455B0C6CCB850714E10205D1689BB3F0CE5F ] C:\Windows\System32\mlang.dll
01:02:35.0405 0x11c8 C:\Windows\System32\mlang.dll - ok
01:02:35.0421 0x11c8 [ 78F03A640A06DB6B76507565B73789EE, 0EF13C329CB10141F7D6C2B684FA7378861D69095CCD5C9AF3B2ED703C1950F3 ] C:\Windows\SysWOW64\schannel.dll
01:02:35.0421 0x11c8 C:\Windows\SysWOW64\schannel.dll - ok
01:02:35.0421 0x11c8 [ 10EB888ED897F031B9BFAC5867F5B290, D77BE722C98557737D4CEB4F6D6AD688EBD1F761ED9F32CA038C39D08CCE94D1 ] C:\Windows\SysWOW64\bcrypt.dll
01:02:35.0421 0x11c8 C:\Windows\SysWOW64\bcrypt.dll - ok
01:02:35.0421 0x11c8 [ B7CFDB21D7E98B462EB1AF3112F9293C, 5550C3B3DB370397B7435AC9BC2C9441517951DE2E7E7B3FCA073FCA60F7CBD2 ] C:\Windows\SysWOW64\ncrypt.dll
01:02:35.0421 0x11c8 C:\Windows\SysWOW64\ncrypt.dll - ok
01:02:35.0437 0x11c8 [ 52BC4A3AFF77B5D5B956FAA322751220, A64A37AB79A476D644D9F30975F8B0BEC86EDA5BFA9412C4C832402497F63155 ] C:\Windows\SysWOW64\ncryptsslp.dll
01:02:35.0437 0x11c8 C:\Windows\SysWOW64\ncryptsslp.dll - ok
01:02:35.0437 0x11c8 [ D12DE9350321CF21238FCA4ED76B12A7, CBD5849728671E7998AE9BCDA6E521EF8F21F1D0F7CDFA2BCB30D49F1F92C4A8 ] C:\Windows\SysWOW64\ntasn1.dll
01:02:35.0437 0x11c8 C:\Windows\SysWOW64\ntasn1.dll - ok
01:02:35.0437 0x11c8 [ D97ED8735E58E646D64C96AF1E2999DB, EE2D85E77CAB8A20198841C716E9538C803A78CC9560A096A0D9579DC099C213 ] C:\Windows\SysWOW64\gpapi.dll
01:02:35.0437 0x11c8 C:\Windows\SysWOW64\gpapi.dll - ok
01:02:35.0437 0x11c8 [ C56D713D0C3148B893FEEA4B0B7A23B9, 5607DD1B66B1CDC786408ADD14ACFED127FE3BA4961F40E6707905A69819DBF4 ] C:\Windows\SysWOW64\cryptnet.dll
01:02:35.0437 0x11c8 C:\Windows\SysWOW64\cryptnet.dll - ok
01:02:35.0452 0x11c8 [ 1496430C99C30396065A0A7050D9C7B6, B6FE3AA6FD681FB137B18ADDE907D3C1836FA9881DA54F5F884F83B5D60BB535 ] C:\Windows\SysWOW64\Wldap32.dll
01:02:35.0452 0x11c8 C:\Windows\SysWOW64\Wldap32.dll - ok
01:02:35.0452 0x11c8 [ 166BB06F3010C26A7AC243F5D7FD3D6A, FDCC6E417DCA24471E8F4ECB02203A702AF60CA068F2AC11611C0A5FE22C3560 ] C:\Windows\SysWOW64\ninput.dll
01:02:35.0452 0x11c8 C:\Windows\SysWOW64\ninput.dll - ok
01:02:35.0452 0x11c8 [ FBC7FC9868442501B1E715F95ACBDE7C, 038569158EE1291762E0D5B8C20AA0004DC59080ED5B64CC148B6B8B19A0E7D9 ] C:\Windows\SysWOW64\jscript9.dll
01:02:35.0452 0x11c8 C:\Windows\SysWOW64\jscript9.dll - ok
01:02:35.0452 0x11c8 [ EB305463E87F8C30FCAD899DD3A8A3DC, 58D4477D3E518E1ABA10BF096186C1DDAF764CC7BC3A8477F6A433F00FD5B322 ] C:\Windows\SysWOW64\ieapfltr.dll
01:02:35.0452 0x11c8 C:\Windows\SysWOW64\ieapfltr.dll - ok
01:02:35.0468 0x11c8 [ 73AF7AD0C9FD76981865219563D884CC, D69DD72E0945080C483D72218A533D1E4C32611E38BA00C1CC4B25405BA59C46 ] C:\Windows\SysWOW64\msimtf.dll
01:02:35.0468 0x11c8 C:\Windows\SysWOW64\msimtf.dll - ok
01:02:35.0468 0x11c8 [ 414F437841EF94C4946CB9AD748C9E0B, BA785507B3AD26DBB5522249F984BA341F46E1E26D2F9419361549BD847B4734 ] C:\Windows\SysWOW64\dcomp.dll
01:02:35.0468 0x11c8 C:\Windows\SysWOW64\dcomp.dll - ok
01:02:35.0468 0x11c8 [ FBB5EBE65BA1E5F31AF908B8BBC0F2FC, 943A31AE85A82B105038615518F65E0DAFEF23D46446101BE93C70F9C915455D ] C:\Windows\SysWOW64\imgutil.dll
01:02:35.0468 0x11c8 C:\Windows\SysWOW64\imgutil.dll - ok
01:02:35.0468 0x11c8 [ D251BA2F7B051730D1A796A5D91EAC75, 37A66762D1C2F4A96E8B8F231FF2548E1BDD4BA10B987606323E580FB72146E3 ] C:\Windows\SysWOW64\WindowsCodecsExt.dll
01:02:35.0468 0x11c8 C:\Windows\SysWOW64\WindowsCodecsExt.dll - ok
01:02:35.0468 0x11c8 [ 164DE117D9644BE222A0169E2BA10937, 37F5074A4A7F73F430576E4D8D090C531F23AE2DEE86C34E6A87E9C41484914C ] C:\Windows\SysWOW64\msxml6.dll
01:02:35.0468 0x11c8 C:\Windows\SysWOW64\msxml6.dll - ok
01:02:35.0483 0x11c8 [ 6F8D2E652A65FA254A56D05296EE72C0, 54F7C6B447AD213EBE021DB4CD5DAB86F8DD3D05A213CA254A4437C75C2AA62C ] C:\Windows\SysWOW64\elshyph.dll
01:02:35.0483 0x11c8 C:\Windows\SysWOW64\elshyph.dll - ok
01:02:35.0483 0x11c8 [ BE60D681C8D3C6A78E861300415360A6, EC1C92D7E2919D3B70CD59AFE95D7C91CE1D3C30860495955AEFC046D7A44186 ] C:\Windows\SysWOW64\vbscript.dll
01:02:35.0483 0x11c8 C:\Windows\SysWOW64\vbscript.dll - ok
01:02:35.0483 0x11c8 [ BD138F09F9CAD9714659636F739077C0, 5A2E0E70ED79D584347AF440E8C110D389D97C44C81F920F66E32F417F3EB8D1 ] C:\Windows\SysWOW64\Macromed\Flash\Flash.ocx
01:02:35.0483 0x11c8 C:\Windows\SysWOW64\Macromed\Flash\Flash.ocx - ok
01:02:35.0483 0x11c8 [ A97542F6C1B3C99E739E6D2A79C1E1A3, 6BF04694F04E486B7A17EA0CC82B83AC6CA614C8970F660E9A2C39DE9D4B0395 ] C:\Windows\SysWOW64\dsound.dll
01:02:35.0483 0x11c8 C:\Windows\SysWOW64\dsound.dll - ok
01:02:35.0499 0x11c8 [ 35DA96C2112AA1F7F6E8208C9A423C5F, E766AE7DAAD8A570538C73310C8C90AA7CE24F9BBFD2B3E7EEE0A0ED16FB8D5D ] C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
01:02:35.0499 0x11c8 C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe - ok
01:02:35.0499 0x11c8 [ 94C17410F8A3E6BD1B1AF59539D2437E, B96076DE4903A081CA572D442C8091ED5FBCCA3FEC917F200924CB16D2A7615E ] C:\Windows\System32\d3d9.dll
01:02:35.0499 0x11c8 C:\Windows\System32\d3d9.dll - ok
01:02:35.0499 0x11c8 [ 83F6BC056C12CF4559B0DDC77D22807E, 5CB2BD577388226588980127DBC531340F7A9409478D114A3706B80E21A2C5C6 ] C:\Windows\System32\d3d8thk.dll
01:02:35.0499 0x11c8 C:\Windows\System32\d3d8thk.dll - ok
01:02:35.0515 0x11c8 [ D90968F95B7304F28988572C3877330B, B4C585C8E502493E4CB812D6FEF3B30DE885652D4EDCC52CD81FD405715F0577 ] C:\Windows\System32\mscms.dll
01:02:35.0515 0x11c8 C:\Windows\System32\mscms.dll - ok
01:02:35.0515 0x11c8 [ 3572A4160F799D62CB517D0E30040E49, CC2D09FAEB1F8D5B86F45F7F70DCF6593B27758F15EB4176D2C2FFBA2DB76E63 ] C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.dll
01:02:35.0515 0x11c8 C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.dll - ok
01:02:35.0530 0x11c8 [ 19CE22554AF70EEB663BB49B7A906457, D69915DFA6AD094A9107628767ABCAB8F6DE111600308353B9495F36B766EFD8 ] C:\Windows\System32\oleaccrc.dll
01:02:35.0530 0x11c8 C:\Windows\System32\oleaccrc.dll - ok
01:02:35.0530 0x11c8 [ 057C6FF5F82C6F9285C44544DD1D502C, 1D9ADDB700A512A3F2FFAC5D6B8A8569A9446B33A886E60B3DFB62D856F41CF2 ] C:\Windows\System32\WMALFXGFXDSP.dll
01:02:35.0530 0x11c8 C:\Windows\System32\WMALFXGFXDSP.dll - ok
01:02:35.0530 0x11c8 [ 39F88D0466D47BD255C4BFE55139038D, 6FAA9589C02141BB202BA3268F764AB54024204A4502D3A45796320F3460F144 ] C:\Windows\System32\mfplat.dll
01:02:35.0530 0x11c8 C:\Windows\System32\mfplat.dll - ok
01:02:35.0530 0x11c8 [ 1E793AF13733E6DDED7329643023D1C8, C4054A6DB9AD746E704B5136B92DFC30CB0E6BB0E395D488CC9BDC5DF48F4CE8 ] C:\Windows\System32\audiodg.exe
01:02:35.0530 0x11c8 C:\Windows\System32\audiodg.exe - ok
01:02:35.0546 0x11c8 [ C69D0CC78CBDB79D5D8B9DB475B02728, AB2FC8CA7C3C3C859D315B763DABE863E3D14B23647E85F54CA02A25F377D740 ] C:\Windows\System32\AUDIOKSE.dll
01:02:35.0546 0x11c8 C:\Windows\System32\AUDIOKSE.dll - ok
01:02:35.0546 0x11c8 [ 151A9FFA90027B9E636F99295D9672AB, CF5C43A392E54380699C8C5D1DBFD3934033D5CB30DFFE14CC0CDFA3A7042A1A ] C:\Windows\System32\deviceaccess.dll
01:02:35.0546 0x11c8 C:\Windows\System32\deviceaccess.dll - ok
01:02:35.0546 0x11c8 [ A4880ACBE5EE130FCDFB80FDC11BD243, F35334C5FF3B65FB86BE1C870E323734E1C2FBA4E17ACAB3D3A6FCE22DE7A215 ] C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\MinUser.dll
01:02:35.0546 0x11c8 C:\Program Files (x86)\ASUS\ASUS Smart Gesture\QuickGesture\x86\MinUser.dll - ok
01:02:35.0546 0x11c8 [ E3C817F7FE44CC870ECDBCBC3EA36132, D769FAFA2B3232DE9FA7153212BA287F68E745257F1C00FAFB511E7A02DE7ADF ] C:\Windows\SysWOW64\msvcp100.dll
01:02:35.0546 0x11c8 C:\Windows\SysWOW64\msvcp100.dll - ok
01:02:35.0561 0x11c8 [ 07EA926DC98356ED9434B5853FA9D84A, D3FE2ECABE896BCE13C8D032FA05D6C1D789F5B4C2DC311C24E6782F161DFA8D ] C:\Windows\SysWOW64\UIAnimation.dll
01:02:35.0561 0x11c8 C:\Windows\SysWOW64\UIAnimation.dll - ok
01:02:35.0561 0x11c8 [ 5DDA32B037AF601D80574E73F862B455, DCBBC113B89E97C9CB495AACAF22A7EEE716C0B3AFF9D65F81568EBD51961D07 ] C:\Program Files\mcafee\msk\MskSet64.dll
01:02:35.0561 0x11c8 C:\Program Files\mcafee\msk\MskSet64.dll - ok
01:02:35.0561 0x11c8 [ EF8DF6997B13C25DE1D0F3D15A797818, 960F2399DAC61F4AE587BE12E2E0B510DC76510C6030C68BCCEFC0ABD4D543DA ] C:\Windows\SysWOW64\dxtrans.dll
01:02:35.0561 0x11c8 C:\Windows\SysWOW64\dxtrans.dll - ok
01:02:35.0561 0x11c8 [ 916A341C23C8A1D7CB2D338CBD95D41F, 98DC223F630CD26A348AEDE8B1F0BD181878AA519A28B9E061A0AFF62EC81863 ] C:\Windows\SysWOW64\atl.dll
01:02:35.0561 0x11c8 C:\Windows\SysWOW64\atl.dll - ok
01:02:35.0561 0x11c8 [ 9432326D23CE7F1F41CA60A2AFC26F22, 7EE39ECE3E3FCF694CC4C861412D9C26411D23DABB133609D958B6589224FDA8 ] C:\Windows\SysWOW64\ddrawex.dll
01:02:35.0561 0x11c8 C:\Windows\SysWOW64\ddrawex.dll - ok
01:02:35.0577 0x11c8 [ B21D175787AA381A6E4C6065C5E1984B, F28525F62CA7F06C0DEEC6A6DB1470EC852F46E1E50E074665E431F834FB5DA6 ] C:\Windows\SysWOW64\dxtmsft.dll
01:02:35.0577 0x11c8 C:\Windows\SysWOW64\dxtmsft.dll - ok
01:02:35.0577 0x11c8 [ 078E0DD99212DBC2E20004AE0D8E1BD8, DEC8D38844D3BB157476622FA0EB95A9EB3CE2B05B7E7539AEFD5306DA1B0EDC ] C:\Windows\System32\RMapi.dll
01:02:35.0577 0x11c8 C:\Windows\System32\RMapi.dll - ok
01:02:35.0577 0x11c8 [ 8246D6B66CC5116BDE735BC319BBBCDE, 00E778D6E5442BC3FCB3C8FD81993E27070D563B55D9AE6AAE287E878F405A4D ] C:\Windows\System32\WwanRadioManager.dll
01:02:35.0577 0x11c8 C:\Windows\System32\WwanRadioManager.dll - ok
01:02:35.0577 0x11c8 [ DC12FF4A1B00CAE279D5744F36B74873, C3F35377E81112AD42B60D94325B79BB53D6C77C915CF69C541FED660B1A5D6A ] C:\Windows\System32\wwapi.dll
01:02:35.0577 0x11c8 C:\Windows\System32\wwapi.dll - ok
01:02:35.0593 0x11c8 [ CD9C070D0E5EE7B8861E247ADF6B939B, 102EDED265DA81EF9F46FF886F1AA897B4CD8CFDE24FB16A47858B13B0DA1777 ] C:\Windows\System32\BthRadioMedia.dll
01:02:35.0593 0x11c8 C:\Windows\System32\BthRadioMedia.dll - ok
01:02:35.0593 0x11c8 [ F516A105BA52628BCD11957510ADB4D2, FDC315B76D44B0DB5151A464096491B9701F55AF0FFEE1E22FE1993BCD7A35E3 ] C:\Windows\System32\WlanRadioManager.dll
01:02:35.0593 0x11c8 C:\Windows\System32\WlanRadioManager.dll - ok
01:02:35.0593 0x11c8 [ EB65EAC36E3750AF09DD4F91F98EB3A3, 4527182B1DA46DA73CBC49196F1EF1DF7045B31EA4643B8C42A241917F009309 ] C:\Windows\SysWOW64\d3d10warp.dll
01:02:35.0593 0x11c8 C:\Windows\SysWOW64\d3d10warp.dll - ok
01:02:35.0593 0x11c8 [ 25A51D18D48F1E144ABEC667E98C6261, FF1E42CCF677BAAEE5469E6F2C39067DBC16C48BA23AFCF0356AE1658D9B4132 ] C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
01:02:35.0593 0x11c8 C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe - ok
01:02:35.0593 0x11c8 [ 2837C8A01729407765CBCD4EC0645063, DDFF421808DE5F4DD5CA5FAE6B914673E45C8357667AD69C2D7B5575E844087F ] C:\Windows\SysWOW64\mscoree.dll
01:02:35.0593 0x11c8 C:\Windows\SysWOW64\mscoree.dll - ok
01:02:35.0608 0x11c8 [ AB22BFF47D0C26749E4951680F64349C, 0B295EAB16F0538E1F7803C378F71134EAA1FC034E2B7CE356B81954C1967F22 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
01:02:35.0608 0x11c8 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
01:02:35.0608 0x11c8 [ 02E123AE9697DBF78F3C4F7E5A625E49, 18744D350DEC481F647B92D468F873E0D698C0BCCAE8E0C490A28A38C380CC2D ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
01:02:35.0608 0x11c8 C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll - ok
01:02:35.0608 0x11c8 [ 956B6ACA4EFF31046403F0DD6235332E, B6D3F5375A7131E33D6D9EE0C73198BF7EAD4F198D86FFF2BB7B658330D8AE90 ] C:\Windows\SysWOW64\msvcr110_clr0400.dll
01:02:35.0608 0x11c8 C:\Windows\SysWOW64\msvcr110_clr0400.dll - ok
01:02:35.0608 0x11c8 [ 819CFA9CF610B6D1824C38BB3210B944, 140261C9C5C31B641294BAE68FF96C9BA5F57605D88B1EF7ABDCC9FBC442FCEB ] C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\939f2968bc3436f588bb23c6c7cee671\mscorlib.ni.dll
01:02:35.0608 0x11c8 C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\939f2968bc3436f588bb23c6c7cee671\mscorlib.ni.dll - ok
01:02:35.0624 0x11c8 [ E30D70792230E9ABCF287F66F17E7287, 9EE6B475E839BE8F74D93A8D8FDA219FB7392A8AE148787F56769865DC5EE3CE ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System\c0a96107dfc55d74bbc2f775d1a0f1c2\System.ni.dll
01:02:35.0624 0x11c8 C:\Windows\assembly\NativeImages_v4.0.30319_32\System\c0a96107dfc55d74bbc2f775d1a0f1c2\System.ni.dll - ok
01:02:35.0624 0x11c8 [ 92B3A2E4218CE8086DE45E5653467DD2, 59F65241D7ABA533D0BF8384E4442A59FDB12FC7A0782287F3619EC0D17EF7B4 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\eb4ed929faee7cf40b37764ae81a746a\WindowsBase.ni.dll
01:02:35.0624 0x11c8 C:\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\eb4ed929faee7cf40b37764ae81a746a\WindowsBase.ni.dll - ok
01:02:35.0624 0x11c8 [ F39F220EB36C3C904D20E4C328519F94, 34AA8C750CB3556B151CD368D6B49B62713BAA9496CFCFD4DD9F16AB0B434253 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\3339c2c1baa40368c090208661c96837\PresentationCore.ni.dll
01:02:35.0624 0x11c8 C:\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\3339c2c1baa40368c090208661c96837\PresentationCore.ni.dll - ok
01:02:35.0624 0x11c8 [ EB18C2A534DEA4649D15F652FC2B5DCF, DE416BE018069DFFE97C33ADEA34819CD87C6F990C01E2B162AEAF5EA0188CF7 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\eb8a57f736d1925ba51b971fe81b98a3\PresentationFramework.ni.dll
01:02:35.0624 0x11c8 C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\eb8a57f736d1925ba51b971fe81b98a3\PresentationFramework.ni.dll - ok
01:02:35.0640 0x11c8 [ E456B7CC2787EB6DC04D40BF59470084, C482C050F326DE4B7F2D0F1AE49224BAACC7C6809822D3E8F66A07E93263B8D9 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\8712c260ae8a3132866fc3e4f6b3f2dd\System.Xaml.ni.dll
01:02:35.0640 0x11c8 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\8712c260ae8a3132866fc3e4f6b3f2dd\System.Xaml.ni.dll - ok
01:02:35.0640 0x11c8 [ 29E5DEC64C7C1ADD558564FF10D4182E, 6BB5FC0E9208FDF05ED0C9B84CFB7229EE0BBEA2D6D98B256B2B7F1026B3CCDB ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\cb85807f06e14f7b2f44dcb2f6c132a4\System.Drawing.ni.dll
01:02:35.0640 0x11c8 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\cb85807f06e14f7b2f44dcb2f6c132a4\System.Drawing.ni.dll - ok
01:02:35.0640 0x11c8 [ 3C3B035B793E0405F7466A2C9B45F128, E7D86BF0A46D8E4C6DDDF09B7C7165305440A68261F9E72C8FBF29D0609E0FAB ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\3025fa0dfaa01937615642985b21cc3b\System.Windows.Forms.ni.dll
01:02:35.0640 0x11c8 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\3025fa0dfaa01937615642985b21cc3b\System.Windows.Forms.ni.dll - ok
01:02:35.0640 0x11c8 [ B6BC66FFA803179E94F3AC5A080EAABD, 20B8D8861ACF23C10B708A4BC2424A1B4A7D78657C59ED204544365F1EA81637 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll
01:02:35.0640 0x11c8 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll - ok
01:02:35.0655 0x11c8 [ BEDA0DCDD857D44926E031CD019FBF0F, 0A39158C67A786D18D470BEAC8A66814CE100AB61EA2637B85CF872A555AD59F ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll
01:02:35.0655 0x11c8 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll - ok
01:02:35.0655 0x11c8 [ B9E6D72A141D7EA428AEBFDE75802F98, A86890B7519C3442DF1F3AEFA28FD569F0B1B564B94D3111D24216C7C2F2C5DE ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
01:02:35.0655 0x11c8 C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll - ok
01:02:35.0655 0x11c8 [ B47E4805C27ECA323372F5E1CD0276D7, 2A2CE41A72DF1C04B56096A903C7F48390090D1CA9EE61E7F22C229F940C2E00 ] C:\Program Files (x86)\ASUS\ASUS Live Update\alvupdt.dll
01:02:35.0655 0x11c8 C:\Program Files (x86)\ASUS\ASUS Live Update\alvupdt.dll - ok
01:02:35.0671 0x11c8 [ 118BA3061B4040BDC17432B775F3A292, 7C10B57FA298AFBB48F471D4C277C3678819ED6E9E33B0ADE492AF9B04DD05B3 ] C:\Windows\SysWOW64\d3d9.dll
01:02:35.0671 0x11c8 C:\Windows\SysWOW64\d3d9.dll - ok
01:02:35.0671 0x11c8 [ 152F3DCF90D714D078CEB5B14D895047, E70EFFACCDAD26A63522B4D2FE67E8B99E0B0075F1636FAB1DA3C1CCDF54FC1D ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\706fd0ae4e6906a398010738d98ae675\System.Xml.ni.dll
01:02:35.0671 0x11c8 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\706fd0ae4e6906a398010738d98ae675\System.Xml.ni.dll - ok
01:02:35.0671 0x11c8 [ A6582E91853C4A09105A12DD1ACE6D0E, 91AB4F5E19E3EC3D26C8F7255F6103B2898B5F2F026F4C76F96B75C92A438949 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\d5aff4168e8ba07f0f39dbabff3bbf6b\System.Configuration.ni.dll
01:02:35.0671 0x11c8 C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\d5aff4168e8ba07f0f39dbabff3bbf6b\System.Configuration.ni.dll - ok
01:02:35.0671 0x11c8 [ 0C611C45EAF33CB6CDB793AB12053D33, C938AD94E4A39F44CCDF286AF27ABDA079AE4D333ED0D7984729E0C6618FED05 ] C:\Windows\SysWOW64\icm32.dll
01:02:35.0671 0x11c8 C:\Windows\SysWOW64\icm32.dll - ok
01:02:35.0686 0x11c8 [ 028AF32AD07D7EF9FB0CC3D605A3E41D, 1EAC0759D40B1D0F5BA23D9D55A33712D268C2F200C089F1627056636477FED9 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatioaec034ca#\88bdcb3023876575b068688249000c83\PresentationFramework.Aero2.ni.dll
01:02:35.0686 0x11c8 C:\Windows\assembly\NativeImages_v4.0.30319_32\Presentatioaec034ca#\88bdcb3023876575b068688249000c83\PresentationFramework.Aero2.ni.dll - ok
01:02:35.0686 0x11c8 [ 6290075BBE5A9B3E9AAEE264B0DC8382, 139922F4B65C7DCDAF0835362C82A6967C9A536AEA1445D09624669B8AC023D1 ] C:\Windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework-SystemXml\v4.0_4.0.0.0__b77a5c561934e089\PresentationFramework-SystemXml.dll
01:02:35.0686 0x11c8 C:\Windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework-SystemXml\v4.0_4.0.0.0__b77a5c561934e089\PresentationFramework-SystemXml.dll - ok
01:02:35.0686 0x11c8 [ 621ADB99018B338A6A733890210F4146, 5F23541D58F450091B2FB56FA22D8ECE7DBC2FD1A130F392B5D8DF1300E0D277 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\ab11a4ea70fc07fe397d4b849cabed8c\UIAutomationTypes.ni.dll
01:02:35.0686 0x11c8 C:\Windows\assembly\NativeImages_v4.0.30319_32\UIAutomationTypes\ab11a4ea70fc07fe397d4b849cabed8c\UIAutomationTypes.ni.dll - ok
01:02:35.0702 0x11c8 [ 9F781C881A9813CDF37B5E2F96097BAA, D9710A438020D1E51D9EEB5283C8DD1665DBA759E43EA7C166C830F33E7D3711 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsecimpl.dll
01:02:35.0702 0x11c8 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsecimpl.dll - ok
01:02:35.0702 0x11c8 [ FF3AA70595B26BD3DC0DDB00B90B1B57, 2ECF7D0E7604E03B49372434DD0A27A5B1548456C8A32B547E48E8D0E7513C8E ] C:\Windows\SysWOW64\imagehlp.dll
01:02:35.0702 0x11c8 C:\Windows\SysWOW64\imagehlp.dll - ok
01:02:35.0702 0x11c8 [ F179BD32626DEF83FD7F4A0CD85B1B53, E741AE8E669968B42950A3CCA3EB992F55937C343E7BED98B36833B25BC9114E ] C:\Windows\SysWOW64\dhcpcsvc.dll
01:02:35.0702 0x11c8 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
01:02:35.0702 0x11c8 [ E8054F26014D8747BB3F868ACED52321, DF0FD3A9A6324F383346E1489E4D534F90312DACFD408291227395EB21FB0B90 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
01:02:35.0702 0x11c8 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
01:02:35.0717 0x11c8 [ 53DF0737B189966B6A58878E370A67BF, 7879EC24CAE7784EEA57F08DFE13E7C68E0C8049B624881D84D09C0BDEEBF729 ] C:\Windows\SysWOW64\msctfui.dll
01:02:35.0717 0x11c8 C:\Windows\SysWOW64\msctfui.dll - ok
01:02:35.0717 0x11c8 [ E1F5ACD2E86DFC938AD781EC162B745D, 576B4326B5F4AE66BA92DE0B892492558AC5997CAB61AE0966AF2839AED57922 ] C:\Windows\System32\wbem\NCProv.dll
01:02:35.0717 0x11c8 C:\Windows\System32\wbem\NCProv.dll - ok
01:02:35.0780 0x11c8 AV detected via SS2: McAfee Anti-Virus and Anti-Spyware, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 11.6.0.0 ), 0x50000 ( disabled : updated )
01:02:35.0858 0x11c8 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.0.9200.16384 ), 0x60100 ( disabled : updated )
01:02:35.0858 0x11c8 FW detected via SS2: McAfee Firewall, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 11.6.0.0 ), 0x50010 ( disabled )
01:02:35.0873 0x11c8 Win FW state via NFP2: enabled
01:02:38.0447 0x11c8 ============================================================
01:02:38.0447 0x11c8 Scan finished
01:02:38.0447 0x11c8 ============================================================
01:02:38.0447 0x11c0 Detected object count: 0
01:02:38.0447 0x11c0 Actual detected object count: 0