Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Frequent BSOD - Suspected Malware [Solved]

BSOD Malware Godawgs

  • This topic is locked This topic is locked

#1
Daniel Christmas Lee

Daniel Christmas Lee

    Member

  • Member
  • PipPipPip
  • 208 posts

Hello,

 

I've been a member since 2012 and have been helped by Godawgs ever since (Essexboy has jumped in a few times too), but Godawgs! If you're out there, please help me again!

 

I'm running Windows 7 64-Bit and in this week alone I've experienced 3 Blue Screen of Deaths. On a daily basis I would get "explorer has crashed whatever needs to restart."

 

I've posted requesting assistance for the explorer.exe thing and was helped by phillpower2.

 

The problem is that these issues have resurfaced all of a sudden and I personally suspect it's malware due to recent internets.

 

I'm very familiar with procedures and would appreciate it if a member could walk with me through analyzing an OTL and perhaps running all the other fun scanners.

 

I know for sure my system is compromised. My PC has not changed (much) since 2012. It's the same computer that Godawgs, Essexboy, Phillpower2, etc. have once looked at and resolved previous problems.

 

I'm returning again because "out of the blue" I'm experiencing BSODs.

 

I've run Spybot, MBAM, and MSSE scans, but they show nothing special. I know that running all the other fun scanners available through this forum would be very helpful, just that it takes extra technical knowledge that unfortunately, even though I've been coming back time and time again since 2012, have not had the chance to attend Geek U.

 

Anyway, I am expecting my thread will be backlogged and if so I'll head to the Waiting Room.

 

PS: I've recently taken up a tech support position for an online backup service; at least I'm doing my part somewhere else! :D


  • 0

Advertisements


#2
BrianDrab

BrianDrab

    Trusted Helper

  • Malware Removal
  • 3,583 posts

Hi. My name is Brian, and I will be helping you with Malware Removal.

 

I am currently in training and my posts will need to be reviewed by an expert, so expect a slight delay between posts.
 


- General Instructions -

  • Please read all instructions and fixes thoroughly. Read the ENTIRE post BEFORE performing any steps so you understand all that needs to be done.
  • I would advise printing any instructions for easy reference as some of the fixes may require you to boot in Safe mode. Access to these instructions may not be available in Safe Mode.
  • Any fixes provided by myself are for this log file only and should not be used on any other systems.
  • Do not run any other removal software or perform updates other than the ones I provide, as it will complicate the cleaning process.
  • You have 4 days to reply to each post or the topic will be closed. You will be able to request that the topic be re-opened by sending me a PM (Personal Message) or PM a moderator.
  • Please feel free to ask any questions, especially if you are having problems with my instructions.


- Save ALL Tools to your Desktop-

 

All tools that I have you download should be placed on the desktop unless otherwise stated. If you are familiar with how to save files to the desktop then you can skip this step.

 

Since you are continuing with this step then I assume you are unfamiliar with saving files to your desktop. As a result it's easiest if you configure your browser(s) to download any tools to the desktop by default. Please use the appropriate instructions below depending on the browser you are using.

Chrome.JPGGoogle Chrome - Click the "Customize and control Google Chrome" button in the upper right-corner of the browser.Settings.JPG Choose Settings. at the bottom of the screen click the
"Show advanced settings..." link. Scroll down to find the Downloads section and click the Change... button. Select your desktop and click OK.

Firefox.JPGMozilla Firefox - Click the "Open Menu" button in the upper right-corner of the browser. Settings.JPG Choose Options. In the downloads section, click the Browse button, click on the Desktop folder
and the click the "Select Folder" button. Click OK to get out of the Options menu.

IE.jpgInternet Explorer - Click the Tools menu in the upper right-corner of the browser. Tools.JPG Select View downloads. Select the Options link in the lower left of the window. Click Browse and
select the Desktop and then choose the Select Folder button. Click OK to get out of the download options screen and then click Close to get out of the View Downloads screen.

NOTE: IE8 Does not support changing download locations in this manner. You will need to download the tool(s) to the default folder, usually Downloads, then copy them to the desktop.

 

- Finally Before We Start-

 

Removing malware is a complicated multiple step process, Please stay with me until I have declared your system clean. I strongly recommend you backup your personal files and folders. Although rare, attempting to remove malware can render your machine unbootable or cause data loss. Having backups of your data is your responsibility. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.

 

 

 

OK, let's take a look. Please follow the instructions below.

 

Step#1 - FRST Scan
 
1. Please download Farbar Recovery Scan Tool and save it to your Desktop.
    Note: You need to run the 64-bit Version so please ensure you download that one.
2. Right click to run as administrator. When the tool opens click Yes to disclaimer.
3. Press Scan button.
4. It will produce a log called FRST.txt in the same directory the tool is run from (which should now be the desktop)
5. Please copy and paste log back here.
6. The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe). Please also paste that along with the FRST.txt into your reply.

 

 

 

 

Items for your next post

1. Contents of the FRST and Addition log files.

 

 


  • 0

#3
Daniel Christmas Lee

Daniel Christmas Lee

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 208 posts

Hey BrianDrab,

 

Thanks for responding to my request. I am very busy with new work this first part of the week and might be only able to follow up by the end of the week. Just letting you know.


  • 0

#4
Daniel Christmas Lee

Daniel Christmas Lee

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 208 posts

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-09-2014
Ran by DLee (administrator) on ARMOR on 11-09-2014 21:43:30
Running from E:\Users\DLee\Desktop
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
() C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe
() E:\Program Files (x86)\ASUS\ASWLCCSVC.exe
(Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
(Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
() C:\Windows\SysWOW64\PSIService.exe
(Motorola) C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Motorola Mobility LLC) C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(ASUSTeK Computer Inc.) E:\Program Files\ASUS\TurboV EVO\TurboVHelp.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ASUSTeK Computer Inc.) E:\Program Files (x86)\ASUS\AI Suite\QFan4\FanHelp.exe
(Mozilla Corporation) E:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) E:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_179.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_179.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1331288 2014-08-22] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10038304 2010-01-29] (Realtek Semiconductor)
HKLM-x32\...\Run: [QFan Help] => E:\Program Files (x86)\ASUS\AI Suite\QFan4\FanHelp.exe [888960 2010-03-25] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-80866519-203923749-430787433-1000\...\MountPoints2: {07ca8828-3f49-11e2-9ee4-bcaec54ce1d6} - H:\MotoCastSetup.exe -a
HKU\S-1-5-21-80866519-203923749-430787433-1000\...\MountPoints2: {41189d8f-0438-11e2-98c9-f7d387e36a36} - H:\MotoCastSetup.exe -a
HKU\S-1-5-21-80866519-203923749-430787433-1000\...\MountPoints2: {726e2053-07a8-11e2-b8b6-bcaec54ce1d6} - F:\Setup.exe
HKU\S-1-5-21-80866519-203923749-430787433-1000\...\MountPoints2: {c0634394-38f0-11e3-8f55-bcaec54ce1d6} - H:\MotoCastSetup.exe -a
ShellIconOverlayIdentifiers: 01ElephantIconOverlay -> {AFA39CBB-DF66-47f9-A047-47ED25FE655E} => E:\Program Files (x86)\ElephantDrive\ElephantDrive\IconOverlay-64bit.dll (TODO: <Company name>)
ShellIconOverlayIdentifiers: 02ElephantIconOverlay -> {1E519A85-494E-4706-AC87-1CC8BB9CC5DA} => E:\Program Files (x86)\ElephantDrive\ElephantDrive\IconOverlay-64bit.dll (TODO: <Company name>)
ShellIconOverlayIdentifiers: 03ElephantIconOverlay -> {0E2DD711-458A-4b39-8211-3F5FDAA0539E} => E:\Program Files (x86)\ElephantDrive\ElephantDrive\IconOverlay-64bit.dll (TODO: <Company name>)
ShellIconOverlayIdentifiers: 04ElephantIconOverlay -> {2E28D71B-2733-46CD-B61B-49926AC3FD6F} => E:\Program Files (x86)\ElephantDrive\ElephantDrive\IconOverlay-64bit.dll (TODO: <Company name>)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft...=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x38B84B00BBF3CB01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKLM-x32 - DefaultScope value is missing.
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> E:\Program Files\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - No Name - {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} -  No File
Toolbar: HKCU - No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File
DPF: HKLM-x32 {0E5F0222-96B9-11D3-8997-00104BD12D94} http://www.pcpitstop...t/PCPitStop.CAB
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel
FF DefaultSearchEngine: Answers.com
FF SelectedSearchEngine: Answers.com
FF Homepage: hxxp://www.google.com/
FF Keyword.URL: hxxp://www.google.com/search?q=
FF NetworkProxy: "type", 4
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_179.dll ()
FF Plugin: @java.com/DTPlugin,version=10.15.2 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> E:\PROGRA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: Adobe Acrobat -> X:\Program Files\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll No File
FF Plugin HKCU: @citrixonline.com/appdetectorplugin -> E:\Users\DLee\AppData\Local\Citrix\Plugins\104\npappdetector.dll (Citrix Online)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin -> E:\Users\DLee\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll No File
FF Plugin HKCU: @talk.google.com/GoogleTalkPlugin -> C:\Users\DLee\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF Plugin HKCU: @talk.google.com/O1DPlugin -> C:\Users\DLee\AppData\Roaming\Mozilla\plugins\npo1d.dll No File
FF Plugin HKCU: @tools.google.com/Google Update;version=3 -> E:\Users\DLee\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 -> E:\Users\DLee\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin ProgramFiles/Appdata: E:\Users\DLee\AppData\Roaming\mozilla\plugins\npo1d.dll (Google)
FF SearchPlugin: E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\searchplugins\answerscom.xml
FF SearchPlugin: E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\searchplugins\espn.xml
FF SearchPlugin: E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\searchplugins\facebook.xml
FF SearchPlugin: E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\searchplugins\mozilla-add-ons.xml
FF SearchPlugin: E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\searchplugins\weathercom.xml
FF SearchPlugin: E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\searchplugins\yahoo-answers.xml
FF Extension: Show Picture - E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\Extensions\[email protected] [2014-08-24]
FF Extension: Multi Links - E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\Extensions\multi[email protected] [2014-08-24]
FF Extension: Define Word - E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\Extensions\{1395baf2-3aa6-4d0f-83d6-1d9b66a9420d} [2014-08-24]
FF Extension: Print/Print Preview - E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\Extensions\{19EB90DC-A456-458b-8AAC-616D91AAFCE1} [2014-08-24]
FF Extension: Old Location Bar - E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\Extensions\{3205B348-523A-4fac-9BC4-9939CBF583B0} [2014-08-24]
FF Extension: oldbar - E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\Extensions\{46868735-c3fa-47ce-8ce7-cce51a66aceb} [2014-08-24]
FF Extension: Gmail Manager - E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\Extensions\{582195F5-92E7-40a0-A127-DB71295901D7} [2014-08-24]
FF Extension: DownloadHelper - E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-08-24]
FF Extension: Add to Amazon Wish List Button - E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\Extensions\[email protected] [2014-08-24]
FF Extension: Element Hiding Helper for Adblock Plus - E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\Extensions\[email protected] [2014-08-24]
FF Extension: Save Images - E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\Extensions\[email protected] [2014-08-24]
FF Extension: Restart Button - E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\Extensions\[email protected] [2014-08-24]
FF Extension: Save File to - E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\Extensions\[email protected] [2014-08-24]
FF Extension: Status-4-Evar - E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\Extensions\[email protected] [2014-08-24]
FF Extension: Status-bar Scientific Calculator - E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\Extensions\[email protected] [2014-08-24]
FF Extension: Session Manager - E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2014-08-24]
FF Extension: Image Zoom - E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\Extensions\{1A2D0EC4-75F5-4c91-89C4-3656F6E44B68}.xpi [2014-08-24]
FF Extension: Download Status Bar - E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\Extensions\{6c28e999-e900-4635-a39d-b1ec90ba0c0f}.xpi [2014-08-24]
FF Extension: Adblock Plus - E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-08-24]
FF Extension: Tab Mix Plus - E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles\tlw3ic70.Daniel\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2014-08-24]
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - X:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - X:\Program Files\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2013-03-25]
FF StartMenuInternet: FIREFOX.EXE - E:\Program Files (x86)\Mozilla Firefox\firefox.exe

Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/"
CHR DefaultSearchKeyword: Default -> EA344939FB524CFE44177D06DB878BA45C7FCDD7ABC4B81644143D0A0DFC9D3D
CHR DefaultSearchURL: Default -> https://www.google.c...r/render?cid=%s
CHR Profile: E:\Users\DLee\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Voice Search Hotword (Beta)) - E:\Users\DLee\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-05-31]
CHR Extension: (YouTube) - E:\Users\DLee\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2011-12-30]
CHR Extension: (Google Search) - E:\Users\DLee\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2011-12-30]
CHR Extension: (LastPass: Free Password Manager) - E:\Users\DLee\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd [2014-08-29]
CHR Extension: (YouTube Downloader: MP3 / HD Video Download) - E:\Users\DLee\AppData\Local\Google\Chrome\User Data\Default\Extensions\jkkeahicimadnjhdamcladhobabaafbg [2012-07-24]
CHR Extension: (Google Wallet) - E:\Users\DLee\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-20]
CHR Extension: (Media Player) - E:\Users\DLee\AppData\Local\Google\Chrome\User Data\Default\Extensions\ofgcaekibnhngdlffnlaknlciggicekp [2012-07-24]
CHR Extension: (Gmail) - E:\Users\DLee\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2011-12-30]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-08-11] (Advanced Micro Devices, Inc.) [File not signed]
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe [109056 2010-06-24] () [File not signed]
R2 ASWLCCSvc; E:\Program Files (x86)\ASUS\ASWLCCSVC.exe [172032 2009-05-21] () [File not signed]
S3 ElephantDrive-MappedDrive.exe; E:\Program Files (x86)\ElephantDrive\ElephantDrive\ElephantDrive-MappedDrive.exe [125136 2012-08-13] (ElephantDrive)
S3 ElephantDrive-Service.exe; E:\Program Files (x86)\ElephantDrive\ElephantDrive\ElephantDrive-Service.exe [125136 2012-08-13] (ElephantDrive)
R2 iprip; C:\Windows\System32\iprip.dll [35328 2009-07-13] (Microsoft Corporation)
R2 Motorola Device Manager; C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [137528 2013-11-15] (Motorola Mobility LLC)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23784 2014-08-22] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [368624 2014-08-22] (Microsoft Corporation)
R2 ProtexisLicensing; C:\Windows\SysWOW64\PSIService.exe [177704 2007-06-05] ()
R2 PST Service; C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [65657 2011-09-02] (Motorola) [File not signed]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 AODDriver4.0; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R2 AODDriver4.3; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-04-22] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [13368 2009-07-06] ()
S3 BEHRINGER_2902; C:\Windows\System32\Drivers\BUSB2902.sys [460864 2009-10-30] (BEHRINGER)
R3 BrSerIf; C:\Windows\System32\DRIVERS\BrSerIf.sys [97280 2006-09-03] (Brother Industries Ltd.)
S3 BUSB_AUDIO_WDM; C:\Windows\System32\drivers\busbwdm.sys [49728 2009-10-30] (BEHRINGER)
S3 Cam5603D; C:\Windows\System32\Drivers\BisonCam.sys [739760 2007-04-23] (Bison Electronics. Inc. )
R3 clwvd6; C:\Windows\System32\DRIVERS\clwvd6.sys [41704 2013-10-29] (CyberLink Corporation)
S3 cpuz136; E:\Users\DLee\PC WIZARD 2013\pcwiz_x64.sys [25320 2013-08-24] (CPUID)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [254528 2012-09-26] (DT Soft Ltd)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [269008 2014-07-17] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [125584 2014-07-17] (Microsoft Corporation)
S3 PCASp50; C:\Windows\System32\Drivers\PCASp50.sys [45752 2009-10-28] (Printing Communications Assoc., Inc. (PCAUSA))
S3 PCASp50; C:\Windows\SysWOW64\Drivers\PCASp50.sys [45752 2009-10-28] (Printing Communications Assoc., Inc. (PCAUSA))
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-13] (Brother Industries Ltd.)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [17720 2010-11-26] ()
S3 BTCFilterService; system32\DRIVERS\motfilt.sys [X]
S3 cpuz135; \??\E:\Program Files (x86)\CPUID\PC Wizard 2012\pcwiz_x64.sys [X]
S3 ESEADriver2; \??\E:\Users\DLee\AppData\Local\Temp\ESEADriver2.sys [X]
S3 motandroidusb; System32\Drivers\motoandroid.sys [X]
S3 motccgp; system32\DRIVERS\motccgp.sys [X]
S3 motccgpfl; system32\DRIVERS\motccgpfl.sys [X]
S3 MotoSwitchService; system32\DRIVERS\motswch.sys [X]
S3 Motousbnet; system32\DRIVERS\Motousbnet.sys [X]
S3 PCANDIS4; \??\E:\PROGRA~1\Ugutil\program\PCANDIS4.SYS [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-11 21:43 - 2014-09-11 21:43 - 00020262 _____ () E:\Users\DLee\Desktop\FRST.txt
2014-09-11 21:43 - 2014-09-11 21:43 - 00000000 ___DC () C:\FRST
2014-09-11 21:42 - 2014-09-11 21:43 - 02105856 _____ (Farbar) E:\Users\DLee\Desktop\FRST64.exe
2014-09-10 00:02 - 2014-08-18 15:05 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-09-10 00:02 - 2014-08-18 14:37 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-09-10 00:01 - 2014-08-19 11:05 - 00374968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-09-10 00:01 - 2014-08-19 10:39 - 00327872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-09-10 00:01 - 2014-08-18 16:01 - 23591424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-10 00:01 - 2014-08-18 15:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-10 00:01 - 2014-08-18 15:29 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-09-10 00:01 - 2014-08-18 15:26 - 17455104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-09-10 00:01 - 2014-08-18 15:20 - 02793984 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-09-10 00:01 - 2014-08-18 15:19 - 05833728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-09-10 00:01 - 2014-08-18 15:15 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-09-10 00:01 - 2014-08-18 15:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-09-10 00:01 - 2014-08-18 15:14 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-09-10 00:01 - 2014-08-18 15:14 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-09-10 00:01 - 2014-08-18 15:08 - 04232704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-09-10 00:01 - 2014-08-18 15:08 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-09-10 00:01 - 2014-08-18 15:08 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-09-10 00:01 - 2014-08-18 15:03 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-09-10 00:01 - 2014-08-18 15:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-09-10 00:01 - 2014-08-18 15:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-09-10 00:01 - 2014-08-18 14:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-09-10 00:01 - 2014-08-18 14:56 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-09-10 00:01 - 2014-08-18 14:51 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-09-10 00:01 - 2014-08-18 14:46 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-09-10 00:01 - 2014-08-18 14:45 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-09-10 00:01 - 2014-08-18 14:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-09-10 00:01 - 2014-08-18 14:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-09-10 00:01 - 2014-08-18 14:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-09-10 00:01 - 2014-08-18 14:42 - 02185728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-09-10 00:01 - 2014-08-18 14:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-09-10 00:01 - 2014-08-18 14:39 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-09-10 00:01 - 2014-08-18 14:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-09-10 00:01 - 2014-08-18 14:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-09-10 00:01 - 2014-08-18 14:38 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-09-10 00:01 - 2014-08-18 14:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-09-10 00:01 - 2014-08-18 14:35 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-09-10 00:01 - 2014-08-18 14:27 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-09-10 00:01 - 2014-08-18 14:25 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-09-10 00:01 - 2014-08-18 14:25 - 00707072 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-09-10 00:01 - 2014-08-18 14:23 - 02104832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-09-10 00:01 - 2014-08-18 14:23 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-09-10 00:01 - 2014-08-18 14:22 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-10 00:01 - 2014-08-18 14:19 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-09-10 00:01 - 2014-08-18 14:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-09-10 00:01 - 2014-08-18 14:17 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-09-10 00:01 - 2014-08-18 14:16 - 13588480 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-09-10 00:01 - 2014-08-18 14:15 - 11769856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-09-10 00:01 - 2014-08-18 14:15 - 02310656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-09-10 00:01 - 2014-08-18 14:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-09-10 00:01 - 2014-08-18 14:08 - 02014208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-09-10 00:01 - 2014-08-18 14:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-09-10 00:01 - 2014-08-18 13:55 - 01447424 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-09-10 00:01 - 2014-08-18 13:46 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-09-10 00:01 - 2014-08-18 13:38 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-09-10 00:01 - 2014-08-18 13:38 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-09-10 00:01 - 2014-08-18 13:36 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-09-09 23:59 - 2014-06-26 19:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-09-09 23:59 - 2014-06-26 18:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-09-09 23:58 - 2014-09-04 19:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-09 23:58 - 2014-09-04 19:05 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-09-09 23:58 - 2014-08-01 04:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-09-09 23:58 - 2014-08-01 04:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-09-09 23:58 - 2014-07-06 19:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-09 23:58 - 2014-07-06 19:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-09 23:58 - 2014-07-06 18:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-09-09 23:58 - 2014-07-06 18:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-09-09 23:58 - 2014-07-06 18:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-09-09 23:58 - 2014-06-23 20:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-09-09 23:58 - 2014-06-23 19:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-09-07 15:04 - 2014-09-07 15:04 - 00001156 _____ () E:\Users\DLee\Desktop\cmd.exe - Shortcut.lnk
2014-09-07 15:04 - 2014-09-07 15:04 - 00001156 _____ () C:\Windows\system32\cmd.exe - Shortcut.lnk
2014-09-07 14:21 - 2014-09-07 14:22 - 00040960 _____ () E:\Users\DLee\Desktop\tftp2.exe
2014-09-07 14:21 - 2014-09-07 14:21 - 01765376 _____ () E:\Users\DLee\Desktop\dd-wrt.v24_micro_generic.bin
2014-09-07 14:21 - 2014-09-07 14:21 - 00045456 _____ () E:\Users\DLee\Desktop\tftp.exe
2014-09-07 13:55 - 1998-10-29 16:45 - 00306688 _____ (InstallShield Software Corporation) C:\Windows\IsUninst.exe
2014-09-07 12:25 - 2014-09-07 12:25 - 00003108 _____ () C:\Windows\System32\Tasks\{2C9578E6-E69F-4155-A18E-58E356D72B46}
2014-09-06 23:33 - 2014-09-06 23:33 - 02031616 _____ () E:\Users\DLee\Desktop\F5D7231-4_v2000_sercomm_dd-wrt.bin
2014-09-06 21:32 - 2014-09-07 22:38 - 00000624 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-09-06 19:13 - 2014-09-06 19:13 - 00288329 _____ () C:\Windows\Minidump\090614-17160-01.dmp
2014-09-06 01:54 - 2014-09-06 01:54 - 00358329 _____ () C:\Windows\Minidump\090614-14554-01.dmp
2014-09-05 16:04 - 2014-09-05 16:06 - 00000000 ____D () E:\Users\DLee\.yawcam
2014-09-05 16:04 - 2014-09-05 16:04 - 00000887 _____ () E:\Users\DLee\Desktop\Yawcam.lnk
2014-09-05 16:04 - 2014-09-05 16:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yawcam
2014-09-05 16:00 - 2014-09-05 16:00 - 04675501 _____ (Magnus Lundvall ) E:\Users\DLee\Desktop\yawcam_install.exe
2014-09-04 23:38 - 2014-09-04 23:39 - 00000000 ____D () E:\Users\DLee\Auto
2014-08-30 15:55 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-08-30 15:53 - 2014-08-30 15:53 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-08-30 15:53 - 2014-08-30 15:53 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-08-30 15:53 - 2014-08-30 15:53 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-08-30 15:53 - 2014-08-30 15:53 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-08-30 15:53 - 2014-08-30 15:53 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-08-30 15:53 - 2014-08-30 15:53 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-08-30 15:53 - 2014-08-30 15:53 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-08-30 15:53 - 2014-08-30 15:53 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-08-30 15:53 - 2014-08-30 15:53 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-08-30 15:53 - 2014-08-30 15:53 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-08-30 15:53 - 2014-08-30 15:53 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-08-30 15:53 - 2014-08-30 15:53 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-08-30 15:53 - 2014-08-30 15:53 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-08-30 15:53 - 2014-08-30 15:53 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-08-30 15:53 - 2014-08-30 15:53 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-08-30 15:53 - 2014-08-30 15:53 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-08-30 15:53 - 2014-08-30 15:53 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-08-30 15:53 - 2014-08-30 15:53 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-08-30 15:51 - 2014-08-30 15:55 - 00007479 _____ () C:\Windows\IE11_main.log
2014-08-29 19:57 - 2014-08-29 19:57 - 00000000 ____D () C:\ProgramData\ATI
2014-08-29 19:56 - 2014-08-29 19:56 - 00061880 _____ () C:\Windows\SysWOW64\CCCInstall_201408291956017482.log
2014-08-29 19:56 - 2014-08-29 19:56 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-08-29 19:56 - 2014-02-16 09:23 - 00060640 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\usbfilter.sys
2014-08-29 19:55 - 2014-08-29 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-08-29 19:05 - 2014-08-29 19:05 - 00288329 _____ () C:\Windows\Minidump\082914-15631-01.dmp
2014-08-27 20:24 - 2014-08-22 19:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-27 20:24 - 2014-08-22 18:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-27 20:24 - 2014-08-22 17:59 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-26 20:22 - 2014-08-26 20:22 - 00000000 ____D () E:\Users\DLee\AppData\Local\Skype
2014-08-26 20:22 - 2014-08-26 20:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-08-25 22:57 - 2014-08-26 00:04 - 00000000 ____D () E:\Users\DLee\Tax 2014
2014-08-25 08:35 - 2014-08-25 08:35 - 00000000 ____D () E:\Users\DLee\Desktop\tlw3ic70.Daniel
2014-08-25 08:33 - 2014-08-25 08:33 - 00000817 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-08-24 21:51 - 2014-08-24 21:51 - 00000000 ____D () E:\Users\DLee\Desktop\b0pajpvg.Daniel
2014-08-24 20:49 - 2014-08-24 20:49 - 24654088 _____ (Mozilla) E:\Users\DLee\Desktop\Firefox Setup 27.0.1.exe
2014-08-20 22:18 - 2014-08-22 00:22 - 00000000 ____D () E:\Users\DLee\Desktop\ED Work Folder
2014-08-20 20:33 - 2014-08-20 22:28 - 00000000 ___SD () E:\Users\DLee\Desktop\My ElephantDrive
2014-08-19 21:03 - 2014-08-19 21:03 - 00024178 _____ () E:\Users\DLee\Desktop\the-railway-man-english-yify-12002.zip
2014-08-18 16:38 - 2014-08-18 16:38 - 00066392 _____ () E:\Users\DLee\Desktop\Displacement.psd
2014-08-18 15:06 - 2014-09-11 21:26 - 00000536 _____ () C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-80866519-203923749-430787433-1000.job
2014-08-18 15:06 - 2014-08-18 15:06 - 00003558 _____ () C:\Windows\System32\Tasks\G2MUpdateTask-S-1-5-21-80866519-203923749-430787433-1000
2014-08-18 15:06 - 2014-08-18 15:06 - 00002335 _____ () E:\Users\DLee\Desktop\GoToMeeting Quick Connect.lnk
2014-08-18 15:06 - 2014-08-18 15:06 - 00000000 ____D () E:\Users\DLee\AppData\Local\Citrix
2014-08-18 12:36 - 2014-08-18 17:08 - 00000000 ____D () E:\Users\DLee\AppData\Local\Adobe
2014-08-17 22:29 - 2014-08-17 22:29 - 00047145 _____ () E:\Users\DLee\Desktop\the-amazing-spider-man-2-english-yify-19058.zip
2014-08-16 20:33 - 2014-08-16 20:33 - 00036973 _____ () E:\Users\DLee\Desktop\locke-english-yify-18617.zip
2014-08-14 11:58 - 2014-08-14 12:00 - 189138358 _____ () E:\Users\DLee\Desktop\Is_There_Anybody_Out_There_Guitar_Lesson_Performance_-_Pink_Floyd.mp4
2014-08-13 18:04 - 2014-08-13 18:04 - 00004162 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_67-b01.log
2014-08-13 18:04 - 2014-08-13 18:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-13 18:03 - 2014-08-13 18:02 - 00918952 _____ (Oracle Corporation) E:\Users\DLee\Desktop\jxpiinstall.exe
2014-08-12 11:01 - 2014-09-05 19:19 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-12 11:01 - 2014-08-12 11:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-12 11:01 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-08-12 11:01 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-08-12 10:38 - 2014-06-30 15:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-12 10:38 - 2014-06-30 15:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-08-12 10:38 - 2014-03-09 14:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-12 10:38 - 2014-03-09 14:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-12 10:38 - 2014-03-09 14:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-08-12 10:38 - 2014-03-09 14:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-08-12 10:37 - 2014-06-05 23:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-12 10:37 - 2014-06-05 23:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-12 10:36 - 2014-07-15 20:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-12 10:36 - 2014-07-15 19:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-08-12 10:36 - 2014-07-13 19:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-12 10:36 - 2014-07-13 18:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-08-12 10:36 - 2014-07-08 19:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-08-12 10:36 - 2014-07-08 19:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-08-12 10:36 - 2014-07-08 19:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-08-12 10:36 - 2014-07-08 19:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-08-12 10:36 - 2014-07-08 19:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-08-12 10:36 - 2014-07-08 18:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2014-08-12 10:36 - 2014-07-08 18:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2014-08-12 10:36 - 2014-07-08 18:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2014-08-12 10:36 - 2014-07-08 18:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2014-08-12 10:36 - 2014-07-08 18:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2014-08-12 10:36 - 2014-07-08 15:38 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-08-12 10:36 - 2014-07-08 15:30 - 00419992 _____ () C:\Windows\SysWOW64\locale.nls
2014-08-12 10:36 - 2014-06-15 19:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-12 10:36 - 2014-06-03 03:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-12 10:36 - 2014-06-03 03:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-12 10:36 - 2014-06-03 03:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-12 10:36 - 2014-06-03 03:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-12 10:36 - 2014-06-03 02:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-08-12 10:36 - 2014-06-03 02:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-08-12 10:36 - 2014-06-03 02:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-08-12 10:35 - 2014-06-24 19:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-12 10:35 - 2014-06-24 18:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-09-11 21:43 - 2014-09-11 21:43 - 00020262 _____ () E:\Users\DLee\Desktop\FRST.txt
2014-09-11 21:43 - 2014-09-11 21:43 - 00000000 ___DC () C:\FRST
2014-09-11 21:43 - 2014-09-11 21:42 - 02105856 _____ (Farbar) E:\Users\DLee\Desktop\FRST64.exe
2014-09-11 21:41 - 2012-12-12 23:21 - 00000924 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-80866519-203923749-430787433-1000UA.job
2014-09-11 21:29 - 2012-09-21 15:16 - 00000904 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-80866519-203923749-430787433-1000UA.job
2014-09-11 21:28 - 2012-09-21 03:41 - 01385926 _____ () C:\Windows\WindowsUpdate.log
2014-09-11 21:26 - 2014-08-18 15:06 - 00000536 _____ () C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-80866519-203923749-430787433-1000.job
2014-09-11 21:06 - 2009-07-13 20:20 - 00000000 ____D () C:\Windows\rescache
2014-09-11 19:47 - 2014-05-06 19:13 - 00000000 ____D () E:\Users\DLee\SS
2014-09-11 19:24 - 2011-03-20 02:03 - 00000000 ____D () E:\Users\DLee\AppData\Roaming\Skype
2014-09-11 18:41 - 2012-12-12 23:21 - 00000902 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-80866519-203923749-430787433-1000Core.job
2014-09-11 18:18 - 2009-07-13 22:13 - 00782470 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-09-11 16:54 - 2009-07-13 21:45 - 00022592 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-09-11 16:54 - 2009-07-13 21:45 - 00022592 _____ () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-09-11 16:49 - 2009-07-13 20:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-09-11 16:47 - 2014-02-25 16:43 - 00033097 _____ () C:\Windows\setupact.log
2014-09-11 16:47 - 2012-09-24 20:21 - 00000000 ____D () C:\Temp
2014-09-11 16:47 - 2009-07-13 22:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-09-10 22:29 - 2012-09-21 15:16 - 00000852 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-80866519-203923749-430787433-1000Core.job
2014-09-10 00:01 - 2012-09-24 23:10 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-09-10 00:00 - 2012-09-22 11:55 - 00001945 _____ () C:\Windows\epplauncher.mif
2014-09-10 00:00 - 2012-09-22 11:53 - 00774592 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-09-10 00:00 - 2012-09-22 11:53 - 00002120 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2014-09-10 00:00 - 2012-09-22 11:53 - 00000000 ____D () C:\Program Files\Microsoft Security Client
2014-09-10 00:00 - 2012-09-22 11:53 - 00000000 ____D () C:\Program Files (x86)\Microsoft Security Client
2014-09-09 23:59 - 2014-04-22 11:09 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-09-07 22:38 - 2014-09-06 21:32 - 00000624 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-09-07 15:33 - 2013-06-24 16:09 - 00000000 ____D () C:\ProgramData\Sonos,_Inc
2014-09-07 15:33 - 2011-04-13 20:53 - 00000000 ____D () E:\Users\DLee\Documents\Youcam
2014-09-07 15:11 - 2014-07-26 22:18 - 00000000 ____D () E:\Users\DLee\Desktop\MTGO
2014-09-07 15:04 - 2014-09-07 15:04 - 00001156 _____ () E:\Users\DLee\Desktop\cmd.exe - Shortcut.lnk
2014-09-07 15:04 - 2014-09-07 15:04 - 00001156 _____ () C:\Windows\system32\cmd.exe - Shortcut.lnk
2014-09-07 14:22 - 2014-09-07 14:21 - 00040960 _____ () E:\Users\DLee\Desktop\tftp2.exe
2014-09-07 14:21 - 2014-09-07 14:21 - 01765376 _____ () E:\Users\DLee\Desktop\dd-wrt.v24_micro_generic.bin
2014-09-07 14:21 - 2014-09-07 14:21 - 00045456 _____ () E:\Users\DLee\Desktop\tftp.exe
2014-09-07 12:54 - 2012-09-21 15:24 - 00000000 ____D () C:\Windows\Minidump
2014-09-07 12:26 - 2009-07-13 22:32 - 00000000 ____D () C:\Program Files (x86)\MSBuild
2014-09-07 12:25 - 2014-09-07 12:25 - 00003108 _____ () C:\Windows\System32\Tasks\{2C9578E6-E69F-4155-A18E-58E356D72B46}
2014-09-06 23:33 - 2014-09-06 23:33 - 02031616 _____ () E:\Users\DLee\Desktop\F5D7231-4_v2000_sercomm_dd-wrt.bin
2014-09-06 21:48 - 2012-10-26 21:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sonos
2014-09-06 21:48 - 2011-03-19 21:40 - 00000000 ____D () E:\Users\DLee\AppData\Local\Downloaded Installations
2014-09-06 19:13 - 2014-09-06 19:13 - 00288329 _____ () C:\Windows\Minidump\090614-17160-01.dmp
2014-09-06 18:42 - 2011-06-21 20:05 - 00000000 ___RD () E:\Users\DLee\My Pictures 2
2014-09-06 01:54 - 2014-09-06 01:54 - 00358329 _____ () C:\Windows\Minidump\090614-14554-01.dmp
2014-09-05 19:19 - 2014-08-12 11:01 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-05 16:31 - 2011-05-09 02:30 - 00000000 ____D () E:\Users\DLee\AppData\Roaming\vlc
2014-09-05 16:06 - 2014-09-05 16:04 - 00000000 ____D () E:\Users\DLee\.yawcam
2014-09-05 16:04 - 2014-09-05 16:04 - 00000887 _____ () E:\Users\DLee\Desktop\Yawcam.lnk
2014-09-05 16:04 - 2014-09-05 16:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Yawcam
2014-09-05 16:04 - 2011-03-19 21:12 - 00000000 ____D () E:\Users\DLee
2014-09-05 16:00 - 2014-09-05 16:00 - 04675501 _____ (Magnus Lundvall ) E:\Users\DLee\Desktop\yawcam_install.exe
2014-09-05 13:32 - 2012-09-28 19:03 - 00002322 _____ () E:\Users\DLee\Desktop\Google Chrome.lnk
2014-09-04 23:39 - 2014-09-04 23:38 - 00000000 ____D () E:\Users\DLee\Auto
2014-09-04 19:10 - 2014-09-09 23:58 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-04 19:05 - 2014-09-09 23:58 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-31 18:06 - 2009-07-13 20:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-08-31 08:05 - 2013-03-23 15:25 - 00001274 _____ () E:\Users\DLee\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-08-31 08:04 - 2012-09-21 17:23 - 00217194 _____ () C:\Windows\PFRO.log
2014-08-30 17:09 - 2009-07-13 19:34 - 00000567 _____ () C:\Windows\win.ini
2014-08-30 17:08 - 2011-03-21 00:31 - 00000000 ____D () E:\Users\DLee\Asus Wireless Win7x64
2014-08-30 15:55 - 2014-08-30 15:51 - 00007479 _____ () C:\Windows\IE11_main.log
2014-08-30 15:53 - 2014-08-30 15:53 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-08-30 15:53 - 2014-08-30 15:53 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-08-30 15:53 - 2014-08-30 15:53 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-08-30 15:53 - 2014-08-30 15:53 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-08-30 15:53 - 2014-08-30 15:53 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-08-30 15:53 - 2014-08-30 15:53 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-08-30 15:53 - 2014-08-30 15:53 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-08-30 15:53 - 2014-08-30 15:53 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-08-30 15:53 - 2014-08-30 15:53 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-08-30 15:53 - 2014-08-30 15:53 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-08-30 15:53 - 2014-08-30 15:53 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-08-30 15:53 - 2014-08-30 15:53 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-08-30 15:53 - 2014-08-30 15:53 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-08-30 15:53 - 2014-08-30 15:53 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-08-30 15:53 - 2014-08-30 15:53 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-08-30 15:53 - 2014-08-30 15:53 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-08-30 15:53 - 2014-08-30 15:53 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-08-30 15:53 - 2014-08-30 15:53 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-08-30 15:53 - 2014-08-30 15:53 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-08-29 19:57 - 2014-08-29 19:57 - 00000000 ____D () C:\ProgramData\ATI
2014-08-29 19:56 - 2014-08-29 19:56 - 00061880 _____ () C:\Windows\SysWOW64\CCCInstall_201408291956017482.log
2014-08-29 19:56 - 2014-08-29 19:56 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-08-29 19:56 - 2012-09-21 15:14 - 00000000 ____D () C:\ProgramData\AMD
2014-08-29 19:55 - 2014-08-29 19:55 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-08-29 19:55 - 2013-03-20 19:29 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-08-29 19:49 - 2013-02-11 00:30 - 00000000 ___DC () C:\AMD
2014-08-29 19:05 - 2014-08-29 19:05 - 00288329 _____ () C:\Windows\Minidump\082914-15631-01.dmp
2014-08-29 17:51 - 2014-08-04 10:27 - 00000000 ____D () E:\Users\DLee\Housing
2014-08-29 11:22 - 2013-09-17 20:54 - 00000000 ____D () E:\Users\DLee\Loans
2014-08-28 23:04 - 2012-01-26 22:23 - 00000000 ____D () E:\Users\DLee\Job
2014-08-27 23:10 - 2012-02-09 20:13 - 00000000 ____D () E:\Users\DLee\AppData\Roaming\uTorrent
2014-08-27 20:36 - 2009-07-13 21:45 - 04963808 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-26 20:22 - 2014-08-26 20:22 - 00000000 ____D () E:\Users\DLee\AppData\Local\Skype
2014-08-26 20:22 - 2014-08-26 20:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-08-26 20:22 - 2012-12-13 14:34 - 00000000 ____D () C:\ProgramData\Skype
2014-08-26 00:04 - 2014-08-25 22:57 - 00000000 ____D () E:\Users\DLee\Tax 2014
2014-08-25 08:53 - 2012-10-21 01:25 - 00002620 ___SH () C:\Windows\SysWOW64\KGyGaAvL.sys
2014-08-25 08:53 - 2011-08-20 21:18 - 00000000 ____D () E:\Users\DLee\AppData\Local\Corel
2014-08-25 08:53 - 2011-08-20 21:17 - 00000000 ____D () E:\Users\DLee\Documents\My PSP Files
2014-08-25 08:40 - 2011-03-20 00:19 - 00000000 ____D () E:\Users\DLee\AppData\Local\Mozilla
2014-08-25 08:35 - 2014-08-25 08:35 - 00000000 ____D () E:\Users\DLee\Desktop\tlw3ic70.Daniel
2014-08-25 08:33 - 2014-08-25 08:33 - 00000817 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-08-24 21:57 - 2011-03-20 00:19 - 00000000 ____D () E:\Users\DLee\AppData\Roaming\Mozilla
2014-08-24 21:51 - 2014-08-24 21:51 - 00000000 ____D () E:\Users\DLee\Desktop\b0pajpvg.Daniel
2014-08-24 20:49 - 2014-08-24 20:49 - 24654088 _____ (Mozilla) E:\Users\DLee\Desktop\Firefox Setup 27.0.1.exe
2014-08-22 21:04 - 2012-08-07 16:51 - 00000000 ____D () E:\Users\DLee\dwhelper
2014-08-22 19:07 - 2014-08-27 20:24 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-22 18:45 - 2014-08-27 20:24 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-08-22 17:59 - 2014-08-27 20:24 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-22 00:22 - 2014-08-20 22:18 - 00000000 ____D () E:\Users\DLee\Desktop\ED Work Folder
2014-08-21 21:30 - 2013-09-19 10:02 - 00000000 ____D () E:\Users\DLee\Health
2014-08-20 22:28 - 2014-08-20 20:33 - 00000000 ___SD () E:\Users\DLee\Desktop\My ElephantDrive
2014-08-19 21:03 - 2014-08-19 21:03 - 00024178 _____ () E:\Users\DLee\Desktop\the-railway-man-english-yify-12002.zip
2014-08-19 11:05 - 2014-09-10 00:01 - 00374968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-19 10:39 - 2014-09-10 00:01 - 00327872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-18 17:08 - 2014-08-18 12:36 - 00000000 ____D () E:\Users\DLee\AppData\Local\Adobe
2014-08-18 17:06 - 2012-07-26 15:33 - 00001456 _____ () E:\Users\DLee\AppData\Local\Adobe Save for Web 13.0 Prefs
2014-08-18 16:38 - 2014-08-18 16:38 - 00066392 _____ () E:\Users\DLee\Desktop\Displacement.psd
2014-08-18 16:01 - 2014-09-10 00:01 - 23591424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-18 15:29 - 2014-09-10 00:01 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-18 15:29 - 2014-09-10 00:01 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-18 15:26 - 2014-09-10 00:01 - 17455104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-18 15:20 - 2014-09-10 00:01 - 02793984 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-18 15:19 - 2014-09-10 00:01 - 05833728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-18 15:15 - 2014-09-10 00:01 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-18 15:15 - 2014-09-10 00:01 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-18 15:14 - 2014-09-10 00:01 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-18 15:14 - 2014-09-10 00:01 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-18 15:08 - 2014-09-10 00:01 - 04232704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-18 15:08 - 2014-09-10 00:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-18 15:08 - 2014-09-10 00:01 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-18 15:06 - 2014-08-18 15:06 - 00003558 _____ () C:\Windows\System32\Tasks\G2MUpdateTask-S-1-5-21-80866519-203923749-430787433-1000
2014-08-18 15:06 - 2014-08-18 15:06 - 00002335 _____ () E:\Users\DLee\Desktop\GoToMeeting Quick Connect.lnk
2014-08-18 15:06 - 2014-08-18 15:06 - 00000000 ____D () E:\Users\DLee\AppData\Local\Citrix
2014-08-18 15:06 - 2012-10-17 09:30 - 00000000 ____D () C:\Program Files (x86)\Citrix
2014-08-18 15:05 - 2014-09-10 00:02 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-18 15:03 - 2014-09-10 00:01 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-18 15:03 - 2014-09-10 00:01 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-18 15:03 - 2014-09-10 00:01 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-18 14:57 - 2014-09-10 00:01 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-18 14:56 - 2014-09-10 00:01 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-18 14:51 - 2014-09-10 00:01 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-18 14:46 - 2014-09-10 00:01 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-18 14:45 - 2014-09-10 00:01 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-18 14:45 - 2014-09-10 00:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-18 14:44 - 2014-09-10 00:01 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-18 14:44 - 2014-09-10 00:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-18 14:42 - 2014-09-10 00:01 - 02185728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-18 14:40 - 2014-09-10 00:01 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-18 14:39 - 2014-09-10 00:01 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-18 14:39 - 2014-09-10 00:01 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-18 14:39 - 2014-09-10 00:01 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-18 14:38 - 2014-09-10 00:01 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-18 14:37 - 2014-09-10 00:02 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-18 14:36 - 2014-09-10 00:01 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-18 14:35 - 2014-09-10 00:01 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-18 14:27 - 2014-09-10 00:01 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-18 14:25 - 2014-09-10 00:01 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-18 14:25 - 2014-09-10 00:01 - 00707072 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-18 14:23 - 2014-09-10 00:01 - 02104832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-18 14:23 - 2014-09-10 00:01 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-18 14:22 - 2014-09-10 00:01 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-18 14:19 - 2014-09-10 00:01 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-18 14:17 - 2014-09-10 00:01 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-18 14:17 - 2014-09-10 00:01 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-18 14:16 - 2014-09-10 00:01 - 13588480 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-18 14:15 - 2014-09-10 00:01 - 11769856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-18 14:15 - 2014-09-10 00:01 - 02310656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-18 14:09 - 2014-09-10 00:01 - 00603136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-18 14:08 - 2014-09-10 00:01 - 02014208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-18 14:07 - 2014-09-10 00:01 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-18 13:55 - 2014-09-10 00:01 - 01447424 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-18 13:46 - 2014-09-10 00:01 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-18 13:38 - 2014-09-10 00:01 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-18 13:38 - 2014-09-10 00:01 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-18 13:36 - 2014-09-10 00:01 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-17 22:29 - 2014-08-17 22:29 - 00047145 _____ () E:\Users\DLee\Desktop\the-amazing-spider-man-2-english-yify-19058.zip
2014-08-16 20:39 - 2013-03-16 16:37 - 00699568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-08-16 20:39 - 2013-03-16 16:37 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-08-16 20:33 - 2014-08-16 20:33 - 00036973 _____ () E:\Users\DLee\Desktop\locke-english-yify-18617.zip
2014-08-14 12:00 - 2014-08-14 11:58 - 189138358 _____ () E:\Users\DLee\Desktop\Is_There_Anybody_Out_There_Guitar_Lesson_Performance_-_Pink_Floyd.mp4
2014-08-13 18:07 - 2014-07-01 18:34 - 00000000 ____D () C:\ProgramData\Oracle
2014-08-13 18:04 - 2014-08-13 18:04 - 00004162 _____ () C:\Windows\SysWOW64\jupdate-1.7.0_67-b01.log
2014-08-13 18:04 - 2014-08-13 18:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-08-13 18:04 - 2013-03-04 18:23 - 00000000 ____D () C:\Program Files (x86)\Java
2014-08-13 18:02 - 2014-08-13 18:03 - 00918952 _____ (Oracle Corporation) E:\Users\DLee\Desktop\jxpiinstall.exe
2014-08-12 11:01 - 2014-08-12 11:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-12 11:01 - 2013-02-04 19:25 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-12 11:01 - 2012-01-31 23:20 - 00000000 ____D () E:\Users\DLee\AppData\Roaming\Malwarebytes

Files to move or delete:
====================
E:\Users\DLee\cc_20120922_115907.reg
E:\Users\DLee\flv.reg
E:\Users\DLee\MicrosoftFixit.Search.RNP.10728952160632807.2.1.Run.exe


Some content of TEMP:
====================
E:\Users\DLee\AppData\Local\Temp\tmpE83C.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-09-06 00:48

==================== End Of Log ============================

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10-09-2014
Ran by DLee at 2014-09-11 21:44:00
Running from E:\Users\DLee\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {4F35CFC4-45A3-FC37-EF17-759A02E39AB1}
AS: Microsoft Security Essentials (Enabled - Up to date) {F4542E20-6399-F3B9-D5A7-4EE87964D00C}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 4.57 (HKLM-x32\...\7-Zip) (Version:  - )
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.2 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.6.0.6090 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 3.6.0.6090 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated)
Adobe Flash Player 11 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 11.6.602.180 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.179 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Help Manager (x32 Version: 4.0.244 - Adobe Systems Incorporated) Hidden
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Adobe Widget Browser (x32 Version: 2.0.348 - Adobe Systems Incorporated.) Hidden
AI Suite (HKLM-x32\...\{310BC5E2-31AF-49BB-904D-E71EB93645DC}) (Version: 1.06.20 - )
Aimersoft DRM Media Converter(Build 1.4.7.2) (HKLM-x32\...\Aimersoft DRM Media Converter_is1) (Version:  - Aimersoft Software)
Amazon Music Importer (HKLM-x32\...\com.amazon.music.uploader) (Version: 2.0.1 - Amazon Services LLC)
Amazon Music Importer (x32 Version: 2.0.1 - Amazon Services LLC) Hidden
AMD Accelerated Video Transcoding (Version: 13.30.100.40811 - Advanced Micro Devices, Inc.) Hidden
AMD APP SDK Runtime (Version: 10.0.873.1 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Control Center (x32 Version: 2014.0811.2303.39561 - Advanced Micro Devices, Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{5A53DBA6-9B15-450F-EDF3-C01E12E9C61F}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AMD Drag and Drop Transcoding (Version: 2.00.0000 - Advanced Micro Devices, Inc.) Hidden
AMD Fuel (Version: 2014.0811.2303.39561 - Advanced Micro Devices, Inc.) Hidden
AMD Media Foundation Decoders (Version: 1.0.81008.0920 - Advanced Micro Devices, Inc.) Hidden
AMD Wireless Display v3.0 (Version: 1.0.0.15 - Advanced Micro Devices, Inc.) Hidden
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
ASUS USB2.0 Webcam (HKLM-x32\...\{4A57592C-FF92-4083-97A9-92783BD5AFB4}) (Version: 6.96.2.2a - ASUS USB2.0 Webcam)
ASUS WLAN Card Utilities/Driver (HKLM-x32\...\{8F722FA9-B994-4C9B-B292-FD32D6206EDF}) (Version: 4.3.1.0 - ASUS)
ASUSUpdate (HKLM-x32\...\{587178E7-B1DF-494E-9838-FA4DD36E873C}) (Version: 7.18.03 - ASUSTeK Computer Inc.)
AVS Update Manager 1.0 (HKLM-x32\...\AVS Update Manager_is1) (Version:  - Online Media Technologies Ltd.)
AVS Video Converter 7 (HKLM-x32\...\AVS4YOU Video Converter 7_is1) (Version:  - Online Media Technologies Ltd.)
AVS4YOU Software Navigator 1.4 (HKLM-x32\...\AVS4YOU Software Navigator_is1) (Version:  - Online Media Technologies Ltd.)
BEHRINGER USB AUDIO DRIVER (HKLM\...\USB_AUDIO_DEusb-audio.deBehringer2902) (Version:  - )
Brother MFL-Pro Suite MFC-440CN (HKLM-x32\...\{7E48AFD3-F28A-4E54-99A8-9F3A4A27DBC4}) (Version: 1.0.3.0 - Brother Industries, Ltd.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Graphics Previews Common (x32 Version: 2014.0811.2303.39561 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2014.0811.2303.39561 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2014.0811.2303.39561 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Standard (x32 Version: 2014.0811.2302.39561 - Advanced Micro Devices, Inc.) Hidden
CCC Help Chinese Traditional (x32 Version: 2014.0811.2302.39561 - Advanced Micro Devices, Inc.) Hidden
CCC Help Czech (x32 Version: 2014.0811.2302.39561 - Advanced Micro Devices, Inc.) Hidden
CCC Help Danish (x32 Version: 2014.0811.2302.39561 - Advanced Micro Devices, Inc.) Hidden
CCC Help Dutch (x32 Version: 2014.0811.2302.39561 - Advanced Micro Devices, Inc.) Hidden
CCC Help English (x32 Version: 2014.0811.2302.39561 - Advanced Micro Devices, Inc.) Hidden
CCC Help Finnish (x32 Version: 2014.0811.2302.39561 - Advanced Micro Devices, Inc.) Hidden
CCC Help French (x32 Version: 2014.0811.2302.39561 - Advanced Micro Devices, Inc.) Hidden
CCC Help German (x32 Version: 2014.0811.2302.39561 - Advanced Micro Devices, Inc.) Hidden
CCC Help Greek (x32 Version: 2014.0811.2302.39561 - Advanced Micro Devices, Inc.) Hidden
CCC Help Hungarian (x32 Version: 2014.0811.2302.39561 - Advanced Micro Devices, Inc.) Hidden
CCC Help Italian (x32 Version: 2014.0811.2302.39561 - Advanced Micro Devices, Inc.) Hidden
CCC Help Japanese (x32 Version: 2014.0811.2302.39561 - Advanced Micro Devices, Inc.) Hidden
CCC Help Korean (x32 Version: 2014.0811.2302.39561 - Advanced Micro Devices, Inc.) Hidden
CCC Help Norwegian (x32 Version: 2014.0811.2302.39561 - Advanced Micro Devices, Inc.) Hidden
CCC Help Polish (x32 Version: 2014.0811.2302.39561 - Advanced Micro Devices, Inc.) Hidden
CCC Help Portuguese (x32 Version: 2014.0811.2302.39561 - Advanced Micro Devices, Inc.) Hidden
CCC Help Russian (x32 Version: 2014.0811.2302.39561 - Advanced Micro Devices, Inc.) Hidden
CCC Help Spanish (x32 Version: 2014.0811.2302.39561 - Advanced Micro Devices, Inc.) Hidden
CCC Help Swedish (x32 Version: 2014.0811.2302.39561 - Advanced Micro Devices, Inc.) Hidden
CCC Help Thai (x32 Version: 2014.0811.2302.39561 - Advanced Micro Devices, Inc.) Hidden
CCC Help Turkish (x32 Version: 2014.0811.2302.39561 - Advanced Micro Devices, Inc.) Hidden
ccc-utility64 (Version: 2014.0811.2303.39561 - Advanced Micro Devices, Inc.) Hidden
Citrix Online Launcher (HKLM-x32\...\{3D5F07C3-1B93-47F8-9F8A-DE8E47BF1669}) (Version: 1.0.209 - Citrix)
Cool & Quiet (HKLM-x32\...\{1ADE1AA0-7F82-4BB1-B1BD-727DE438057B}) (Version:  - )
Corel Paint Shop Pro Photo X2 (HKLM-x32\...\{64E72FB1-2343-4977-B4A8-262CD53D0BD3}) (Version: 12.001.0000 - Corel Corporation)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - )
CyberLink YouCam 6 (HKLM-x32\...\{A9CEDD6E-4792-493e-BB35-D86D2E188A5A}) (Version: 6.0.2326.0 - CyberLink Corp.)
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{42CBCE27-DE9B-4094-B9EB-D4C4C135FFA8}) (Version:  - Microsoft)
Don't Starve (HKLM-x32\...\Steam App 219740) (Version:  - Klei Entertainment)
ElephantDrive (HKLM-x32\...\{6B4990B0-BE17-4B48-BA38-A8EE35E09EE1}) (Version: 5.1.0 - ElephantDrive)
Facebook Video Calling 2.0.0.447 (HKLM-x32\...\{8DF41A9F-FE13-43E8-A003-5F9B55A011EE}) (Version: 2.0.447 - Skype Limited)
FastStone Image Viewer 4.9 (HKLM-x32\...\FastStone Image Viewer) (Version: 4.9 - FastStone Soft)
Garry's Mod (HKLM-x32\...\Steam App 4000) (Version:  - Facepunch Studios)
Google Chrome (HKCU\...\Google Chrome) (Version: 37.0.2062.103 - Google Inc.)
GoToMeeting 6.3.0.1468 (HKCU\...\GoToMeeting) (Version: 6.3.0.1468 - CitrixOnline)
Guitar Pro 6 (HKLM-x32\...\{14A487F2-1259-4E6C-AE3C-3C888DDBCB60}_is1) (Version:  - Arobas Music)
Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217060FF}) (Version: 7.0.600 - Oracle)
Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden
League of Legends (HKLM-x32\...\{92606477-9366-4D3B-8AE3-6BE4B29727AB}) (Version: 1.3 - Riot Games)
Magic Online (HKLM-x32\...\{AF7733C1-FB0B-4FED-9730-E0433AF7A2EF}) (Version: 3.00.0000 - Wizards of the Coast)
Magic Set Editor 2.0.0 (HKLM-x32\...\Magic Set Editor 2_is1) (Version:  - )
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.1.177.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (Version: 2.1.177.0 - Microsoft Corporation) Hidden
Microsoft Office 2010 Service Pack 1 (SP1) (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{7BC9B5EB-125A-4E9B-97E1-8D85B5E960B8}) (Version:  - Microsoft)
Microsoft Office 2010 Service Pack 1 (SP1) (Version:  - Microsoft) Hidden
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2010 (HKLM\...\Office14.SingleImage) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Security Client (Version: 4.6.0305.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.6.305.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Microsoft_VC80_CRT_x86 (x32 Version: 8.0.50727.4053 - Adobe) Hidden
Microsoft_VC90_CRT_x86 (x32 Version: 1.00.0000 - Adobe) Hidden
Motorola Device Manager (HKLM-x32\...\{28DB8373-C1BB-444F-A427-A55585A12ED7}) (Version: 2.4.5 - Motorola Mobility)
Motorola Device Software Update (x32 Version: 13.09.3001 - Motorola Mobility) Hidden
Motorola Mobile Drivers Installation 6.3.0 (HKLM\...\{759E6A2F-1F01-45EF-A0C4-22F1B56CB975}) (Version: 6.3.0 - Motorola Mobility LLC)
Mozilla Firefox 27.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 27.0.1 (x86 en-US)) (Version: 27.0.1 - Mozilla)
MPC-HC 1.7.5 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.5 - MPC-HC Team)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Mumble 1.2.5 (HKLM-x32\...\{C7BC557D-8C8B-4F5F-83AB-D20C58CF4575}) (Version: 1.2.5 - Thorvald Natvig)
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version:  - Native Instruments)
Native Instruments Controller Editor (Version: 1.5.1.1124 - Native Instruments) Hidden
Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version:  - Native Instruments)
Native Instruments Guitar Rig 5 (Version: 5.1.1.2673 - Native Instruments) Hidden
Native Instruments Guitar Rig Mobile I/O (HKLM-x32\...\Native Instruments Guitar Rig Mobile I/O) (Version:  - Native Instruments)
Native Instruments Guitar Rig Mobile I/O (Version: 3.0.0.625 - Native Instruments) Hidden
Native Instruments Guitar Rig Session I/O (HKLM-x32\...\Native Instruments Guitar Rig Session I/O) (Version:  - Native Instruments)
Native Instruments Guitar Rig Session I/O (Version: 3.0.0.625 - Native Instruments) Hidden
Native Instruments Rig Kontrol 3 (HKLM-x32\...\Native Instruments Rig Kontrol 3) (Version:  - Native Instruments)
Native Instruments Rig Kontrol 3 (Version: 3.0.0.625 - Native Instruments) Hidden
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version:  - Native Instruments)
Native Instruments Service Center (Version: 2.3.2.926 - Native Instruments) Hidden
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.17.0 - NEC Electronics Corporation)
NEC Electronics USB 3.0 Host Controller Driver (x32 Version: 1.0.17.0 - NEC Electronics Corporation) Hidden
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
PAYDAY 2 (HKLM-x32\...\Steam App 218620) (Version:  - OVERKILL - a Starbreeze Studio.)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
QuickTime (HKLM-x32\...\{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}) (Version: 7.73.80.64 - Apple Inc.)
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.21.531.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6037 - Realtek Semiconductor Corp.)
Realtek PC Camera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.1.7600.0095 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.4.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.0.4.0 - Renesas Electronics Corporation) Hidden
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.106 - Skype Technologies S.A.)
Sonos Controller (HKLM-x32\...\{7BBA9BF8-05DF-47D8-8880-82A9B99505B9}) (Version: 27.2.79231 - Sonos, Inc.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version:  - )
Star Trek Online (HKLM-x32\...\Steam App 9900) (Version:  - Cryptic Studios)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
STO Keybinds (HKCU\...\bdb72a49df691b00) (Version: 1.0.0.105 - Federation Emergency Services)
Team Fortress 2 (HKLM-x32\...\Steam App 440) (Version:  - Valve)
The Walking Dead 400 Days (HKLM-x32\...\VGhlV2Fsa2luZ0RlYWQ=_is1) (Version: 1 - )
TurboV EVO (HKLM-x32\...\{491D92A9-69CA-4EB4-81D3-0106F9337957}) (Version: 1.02.32 - )
Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{FEF4C57D-0975-4D3C-ACC7-DCD038C3788F}) (Version:  - Microsoft)
Update for Microsoft Excel 2010 (KB2889836) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{AC36E3B7-5095-43B9-9A74-928420F88714}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{84B191B5-5319-463A-A305-8C4D53B1D20A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553267) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{3E381AC3-30C3-41D7-9B27-B3F3E17BDCB8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2553310) 64-Bit Edition (HKLM\...\{90140000-006E-0409-1000-0000000FF1CE}_Office14.SingleImage_{D9CF6D64-9342-4C83-A9C1-F45DE139F2A7}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2566458) (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{A6C194EA-C6CB-4314-9E43-AD1F4A1E9D74}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{79C725A1-3964-421C-A528-78C1C083C7C7}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{95BE5D45-A3DD-4CB1-8C35-D75DD7B4D862}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{95BE5D45-A3DD-4CB1-8C35-D75DD7B4D862}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{EBD18DE5-BC84-4B57-9A30-097044871F9A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{4AD36582-256B-433D-8593-F31773A15CA4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{4AD36582-256B-433D-8593-F31773A15CA4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2687502) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.SingleImage_{B114A387-8A14-4C43-AE51-82F17EB81D49}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{F216169C-2B40-429B-8370-B5BA06EC5423}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{F216169C-2B40-429B-8370-B5BA06EC5423}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{B6AD7E27-012A-4B63-82BA-AF62893E5435}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{07DC9C6C-E916-4F42-8677-716930ED0393}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{6E760BBA-B83F-4C2D-918F-5F91EF6C9861}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837581) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{D1F3B526-7EB2-4701-92DB-0784988D78DE}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2837606) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{52BEF8AE-9324-40A1-9A92-E5A8FB63A475}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{56551B9F-2FE1-4705-ACF0-8FA920535E18}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878252) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{56551B9F-2FE1-4705-ACF0-8FA920535E18}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 64-Bit Edition (HKLM\...\{90140000-001F-040C-1000-0000000FF1CE}_Office14.SingleImage_{4B9B2BAF-EE1F-4B60-A4D9-17B7BEEB13A1}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2881028) 64-Bit Edition (HKLM\...\{90140000-001F-0C0A-1000-0000000FF1CE}_Office14.SingleImage_{860EE8B1-0B9F-4A8A-91FE-649CD3C6754C}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2553290) 64-Bit Edition (HKLM\...\{90140000-00A1-0409-1000-0000000FF1CE}_Office14.SingleImage_{8D07F876-D93A-4CF7-B801-1D41AB2BF60B}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2810072) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{1C381677-BE03-49CC-AFCA-242AA6094621}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2810072) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{1C381677-BE03-49CC-AFCA-242AA6094621}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687623) 64-Bit Edition (HKLM\...\{90140000-001A-0409-1000-0000000FF1CE}_Office14.SingleImage_{0B6EF241-90CC-4AC7-B36F-2EECB12E61CF}) (Version:  - Microsoft)
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 64-Bit Edition (HKLM\...\{90140000-001A-0409-1000-0000000FF1CE}_Office14.SingleImage_{4C975BB2-B3EE-4F66-A8E7-5C917B7C439D}) (Version:  - Microsoft)
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{7861C766-2AA2-4A50-AB75-A57D451CEA76}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 64-Bit Edition (HKLM\...\{90140000-0018-0409-1000-0000000FF1CE}_Office14.SingleImage_{393B360E-62F8-463D-B914-1ECDC1359A46}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{A20A650C-F820-4CE4-AEA5-EC140192FAFB}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.SingleImage_{E1757044-ECB2-4551-B1D5-5E39F7E109CE}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{F6F342A1-530B-4D48-A468-1E3F70928984}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{C950A55F-82E3-4CC8-8FA2-E8A2A0F651F3}) (Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2880529) 64-Bit Edition (HKLM\...\{90140000-003D-0000-1000-0000000FF1CE}_Office14.SingleImage_{89FDC8D9-FB84-4EFE-950D-AF4EECC3B64C}) (Version:  - Microsoft)
VirtuaGirl version 1.1.0.70 (HKCU\...\VirtuaGirl_is1) (Version: 1.1.0.70 - Totem Entertainment)
VLC media player 2.1.2 (HKLM-x32\...\VLC media player) (Version: 2.1.2 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.63  - Nullsoft, Inc)
Winamp Detector Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Yawcam 0.4.1 (HKLM-x32\...\{8FE96B14-E1F9-47BF-8BA1-A81467CD259B}_is1) (Version:  - )

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-80866519-203923749-430787433-1000_Classes\CLSID\{18707c5c-c2e7-4ff1-94af-2ee9807e6f0d}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-80866519-203923749-430787433-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> E:\Users\DLee\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-80866519-203923749-430787433-1000_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Program Files (x86)\Citrix\GoToMeeting\1468\G2MOutlookAddin64.dll (Citrix Online, a division of Citrix Systems, Inc.)
CustomCLSID: HKU\S-1-5-21-80866519-203923749-430787433-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> E:\Users\DLee\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-80866519-203923749-430787433-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> E:\Users\DLee\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-80866519-203923749-430787433-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> E:\Users\DLee\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll No File

==================== Restore Points  =========================

30-08-2014 22:52:41 Windows Modules Installer
01-09-2014 00:18:43 Windows Update
04-09-2014 14:55:44 Windows Update
05-09-2014 06:16:22 Spybot-S&D Spyware removal
06-09-2014 02:42:20 Spybot-S&D Spyware removal
07-09-2014 03:56:37 Spybot-S&D Spyware removal
07-09-2014 21:23:14 Windows Modules Installer
08-09-2014 14:48:56 Windows Update
10-09-2014 06:59:08 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 19:34 - 2014-08-29 19:22 - 00450890 ____R C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 3dns.adobe.com 3dns-1.adobe.com 3dns-2.adobe.com 3dns-3.adobe.com 3dns-4.adobe.com activate.adobe.com activate-sea.adobe.com activate-sjc0.adobe.com activate.wip.adobe.com
127.0.0.1 activate.wip1.adobe.com activate.wip2.adobe.com activate.wip3.adobe.com activate.wip4.adobe.com adobe-dns.adobe.com adobe-dns-1.adobe.com adobe-dns-2.adobe.com adobe-dns-3.adobe.com adobe-dns-4.adobe.com
127.0.0.1 adobeereg.com practivate.adobe practivate.adobe.com practivate.adobe.newoa practivate.adobe.ntp practivate.adobe.ipp ereg.adobe.com ereg.wip.adobe.com ereg.wip1.adobe.com
127.0.0.1 ereg.wip2.adobe.com ereg.wip3.adobe.com ereg.wip4.adobe.com hl2rcv.adobe.com wip.adobe.com wip1.adobe.com wip2.adobe.com wip3.adobe.com wip4.adobe.com
127.0.0.1 www.adobeereg.com wwis-dubc1-vip60.adobe.com www.wip.adobe.com www.wip1.adobe.com
127.0.0.1 www.wip2.adobe.com www.wip3.adobe.com www.wip4.adobe.com wwis-dubc1-vip60.adobe.com crl.verisign.net CRL.VERISIGN.NET ood.opsource.net
127.0.0.1    www.007guard.com
127.0.0.1    007guard.com
127.0.0.1    008i.com
127.0.0.1    www.008k.com
127.0.0.1    008k.com
127.0.0.1    www.00hq.com
127.0.0.1    00hq.com
127.0.0.1    010402.com
127.0.0.1    www.032439.com
127.0.0.1    032439.com
127.0.0.1    www.0scan.com
127.0.0.1    0scan.com
127.0.0.1    www.1000gratisproben.com
127.0.0.1    1000gratisproben.com
127.0.0.1    1001namen.com
127.0.0.1    www.1001namen.com
127.0.0.1    100888290cs.com
127.0.0.1    www.100888290cs.com
127.0.0.1    www.100sexlinks.com
127.0.0.1    100sexlinks.com
127.0.0.1    www.10sek.com
127.0.0.1    10sek.com

There are 1000 more lines.


==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {12DD8DC0-5E66-4EE3-A2DC-F18B37838C6D} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-01-29] (Microsoft Corporation)
Task: {1F550FD6-77E7-43B4-A065-0580279D7D56} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-80866519-203923749-430787433-1000UA => E:\Users\DLee\AppData\Local\Google\Update\GoogleUpdate.exe [2011-03-20] (Google Inc.)
Task: {457FFDE4-41D6-4490-9098-4E19EFB7CECA} - System32\Tasks\ASUS\TurboVHelp => E:\Program Files\ASUS\TurboV EVO\TurboVHELP.exe [2010-07-07] (ASUSTeK Computer Inc.)
Task: {654C4496-63F8-4B24-B1AF-0D1E9C17E5B2} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Device Center\itype.exe
Task: {68216C4C-76D1-41DE-BE35-AF271E487178} - System32\Tasks\G2MUpdateTask-S-1-5-21-80866519-203923749-430787433-1000 => C:\Program Files (x86)\Citrix\GoToMeeting\1468\g2mupdate.exe [2014-08-18] (Citrix Online, a division of Citrix Systems, Inc.)
Task: {688DAE9A-11EE-4AC1-A58E-E062C350A523} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-80866519-203923749-430787433-1000UA => E:\Users\DLee\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {785E5907-EF25-4383-AE4F-F6AEE72BDC12} - System32\Tasks\Motorola Device Manager Initial Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-10-31] ()
Task: {8DFBEFC3-E3B3-4200-AB6A-A10815F1CDB2} - System32\Tasks\ASUS\ASUS Update Checker => E:\Program Files (x86)\ASUS\ASUSUpdate\UpdateChecker\UpdateChecker.exe [2009-12-28] (ASUSTeK Computer Inc.)
Task: {8EAC7C11-D6DF-4E65-8F69-036CC7FDA474} - System32\Tasks\ASUS\ASUS RegRun Loader => C:\Program Files (x86)\ASUS\AASP\1.01.05\AsLoader.exe [2010-01-13] (ASUSTeK Computer Inc.)
Task: {8FEBC456-05EA-4261-A5B0-1485F92A5D85} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-80866519-203923749-430787433-1000Core => E:\Users\DLee\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {A1523DAA-D60F-45DC-942B-97EC5F4DA7EE} - System32\Tasks\Microsoft_Hardware_Launch_devicecenter_exe => C:\Program Files\Microsoft Device Center\devicecenter.exe
Task: {A5028A0D-104D-4B7E-A8AD-303BCD76F8EC} - System32\Tasks\Motorola Device Manager Update => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-10-31] ()
Task: {A77C337D-61C6-4371-B9EE-CA2F497402B0} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Device Center\ipoint.exe
Task: {B037A57E-5898-43F1-A757-2EFCE5C48B17} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-01-29] (Microsoft Corporation)
Task: {C224EC8E-93C0-45CB-A895-9EFCBF4F4E38} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-80866519-203923749-430787433-1000Core => E:\Users\DLee\AppData\Local\Google\Update\GoogleUpdate.exe [2011-03-20] (Google Inc.)
Task: {CE1CF273-A82D-480C-9A54-34F07C873E1D} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {E6342053-AE33-49BB-BA3E-6C0CB85334C1} - System32\Tasks\Motorola Device Manager Engine => C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotorolaDeviceManagerUpdate.exe [2013-10-31] ()
Task: {EB8BC2C2-A0CC-48E8-8CC6-67C4673F404A} - System32\Tasks\{8D7A625B-87B7-4AF2-A334-F321F8D0A824} => Firefox.exe http://www.skype.com...8;LastError=404
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-80866519-203923749-430787433-1000Core.job => E:\Users\DLee\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-80866519-203923749-430787433-1000UA.job => E:\Users\DLee\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-80866519-203923749-430787433-1000.job => C:\Program Files (x86)\Citrix\GoToMeeting\1468\g2mupdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-80866519-203923749-430787433-1000Core.job => E:\Users\DLee\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-80866519-203923749-430787433-1000UA.job => E:\Users\DLee\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2012-09-23 22:15 - 2010-06-24 14:19 - 00109056 _____ () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe
2013-02-11 00:07 - 2009-05-21 16:09 - 00172032 _____ () E:\Program Files (x86)\ASUS\ASWLCCSVC.exe
2007-06-05 13:20 - 2007-06-05 13:20 - 00177704 _____ () C:\Windows\SysWOW64\PSIService.exe
2012-07-25 00:23 - 2012-07-25 00:23 - 00886784 _____ () E:\Program Files (x86)\ElephantDrive\ElephantDrive\RightClickMenu-64bit.dll
2014-08-11 23:06 - 2014-08-11 23:06 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2013-10-31 08:05 - 2013-10-31 08:05 - 00172032 _____ () C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\css_core.dll
2012-09-25 23:39 - 2010-02-08 17:19 - 00053248 _____ () E:\Program Files\ASUS\TurboV EVO\HookKey32.dll
2012-09-25 23:39 - 2010-06-01 10:38 - 00253952 _____ () E:\Program Files\ASUS\TurboV EVO\pngio.dll
2014-08-25 08:33 - 2014-02-12 17:36 - 03578992 _____ () E:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-08-16 20:39 - 2014-08-16 20:39 - 17048240 _____ () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Program Files\Common Files\Microsoft Shared:Jz77p2Ukdsg0XTfpG6QUTcgjxkYEv
AlternateDataStreams: C:\ProgramData\Microsoft:0W3Y9k6estow6ZALHWQL
AlternateDataStreams: C:\ProgramData\Microsoft:ERZSStxkCfV7Yyk5ZTJYcx
AlternateDataStreams: C:\ProgramData\Microsoft:WircfwojjIUmYtMlSVdd
AlternateDataStreams: E:\Users\DLee\AppData\Local:f64If7TziAcEGSohO6rTOwDeyE
AlternateDataStreams: E:\Users\DLee\AppData\Local:uBYnK1DzTupy9y35mL2Khs0d
AlternateDataStreams: E:\Users\DLee\AppData\Local\Temp:wBe2A7x8Je6bxzPhuS

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Shortcut to ElephantDrive.exe.lnk => C:\Windows\pss\Shortcut to ElephantDrive.exe.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Status Monitor.lnk => C:\Windows\pss\Status Monitor.lnk.CommonStartup
MSCONFIG\startupfolder: E:^Users^DLee^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^DesktopVideoPlayer.lnk => C:\Windows\pss\DesktopVideoPlayer.lnk.Startup
MSCONFIG\startupreg: Acrobat Assistant 8.0 => "X:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: Adobe Acrobat Speed Launcher => "X:\Program Files\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe"
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: Akamai NetSession Interface => "E:\Users\DLee\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
MSCONFIG\startupreg: BrMfcWnd => C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
MSCONFIG\startupreg: Control Center => E:\Program Files (x86)\ASUS\CenterAgent.exe
MSCONFIG\startupreg: ControlCenter3 => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun
MSCONFIG\startupreg: Corel Photo Downloader => "C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe" -startup
MSCONFIG\startupreg: DAEMON Tools Lite => "E:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: Facebook Update => "E:\Users\DLee\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: Google Update => "E:\Users\DLee\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: NUSB3MON => "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
MSCONFIG\startupreg: Pando Media Booster => C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
MSCONFIG\startupreg: QuickTime Task => "E:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: Skype => "E:\Program Files (x86)\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
MSCONFIG\startupreg: Steam => "U:\Steam\Steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: TurboV EVO => "E:\Program Files\ASUS\TurboV EVO\TurboV_EVO.exe" -b
MSCONFIG\startupreg: YouCam Service6 => "E:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe" /s

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/11/2014 05:29:49 PM) (Source: MsiInstaller) (EventID: 11714) (User: ARMOR)
Description: Product: Google Talk Plugin -- Error 1714. The older version of Google Talk Plugin cannot be removed.  Contact your technical support group.  System Error 1612.

Error: (09/10/2014 09:29:12 PM) (Source: MsiInstaller) (EventID: 11714) (User: ARMOR)
Description: Product: Google Talk Plugin -- Error 1714. The older version of Google Talk Plugin cannot be removed.  Contact your technical support group.  System Error 1612.

Error: (09/10/2014 08:29:53 AM) (Source: MsiInstaller) (EventID: 11714) (User: ARMOR)
Description: Product: Google Talk Plugin -- Error 1714. The older version of Google Talk Plugin cannot be removed.  Contact your technical support group.  System Error 1612.

Error: (09/10/2014 00:31:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: MotoHelperService.exe, version: 2.3.8.0, time stamp: 0x52862eb0
Faulting module name: MotoHelperService.exe, version: 2.3.8.0, time stamp: 0x52862eb0
Exception code: 0xc0000005
Fault offset: 0x00010612
Faulting process id: 0x71c
Faulting application start time: 0xMotoHelperService.exe0
Faulting application path: MotoHelperService.exe1
Faulting module path: MotoHelperService.exe2
Report Id: MotoHelperService.exe3

Error: (09/09/2014 09:29:17 PM) (Source: MsiInstaller) (EventID: 11714) (User: ARMOR)
Description: Product: Google Talk Plugin -- Error 1714. The older version of Google Talk Plugin cannot be removed.  Contact your technical support group.  System Error 1612.

Error: (09/09/2014 08:29:33 AM) (Source: MsiInstaller) (EventID: 11714) (User: ARMOR)
Description: Product: Google Talk Plugin -- Error 1714. The older version of Google Talk Plugin cannot be removed.  Contact your technical support group.  System Error 1612.

Error: (09/08/2014 11:20:34 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 90080108

Error: (09/08/2014 09:29:50 PM) (Source: MsiInstaller) (EventID: 11714) (User: ARMOR)
Description: Product: Google Talk Plugin -- Error 1714. The older version of Google Talk Plugin cannot be removed.  Contact your technical support group.  System Error 1612.

Error: (09/08/2014 08:29:22 AM) (Source: MsiInstaller) (EventID: 11714) (User: ARMOR)
Description: Product: Google Talk Plugin -- Error 1714. The older version of Google Talk Plugin cannot be removed.  Contact your technical support group.  System Error 1612.

Error: (09/07/2014 08:29:30 PM) (Source: MsiInstaller) (EventID: 11714) (User: ARMOR)
Description: Product: Google Talk Plugin -- Error 1714. The older version of Google Talk Plugin cannot be removed.  Contact your technical support group.  System Error 1612.


System errors:
=============
Error: (09/11/2014 04:47:29 PM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: This computer is configured as a member of a workgroup, not as
a member of a domain. The Netlogon service does not need to run in this
configuration.

Error: (09/11/2014 07:33:02 AM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: This computer is configured as a member of a workgroup, not as
a member of a domain. The Netlogon service does not need to run in this
configuration.

Error: (09/10/2014 08:46:30 PM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: This computer is configured as a member of a workgroup, not as
a member of a domain. The Netlogon service does not need to run in this
configuration.

Error: (09/10/2014 07:51:02 AM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: This computer is configured as a member of a workgroup, not as
a member of a domain. The Netlogon service does not need to run in this
configuration.

Error: (09/10/2014 00:31:33 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Motorola Device Manager Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 1000 milliseconds: Restart the service.

Error: (09/09/2014 09:25:48 PM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: This computer is configured as a member of a workgroup, not as
a member of a domain. The Netlogon service does not need to run in this
configuration.

Error: (09/09/2014 07:53:15 AM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: This computer is configured as a member of a workgroup, not as
a member of a domain. The Netlogon service does not need to run in this
configuration.

Error: (09/08/2014 08:44:55 PM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: This computer is configured as a member of a workgroup, not as
a member of a domain. The Netlogon service does not need to run in this
configuration.

Error: (09/08/2014 07:36:42 AM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: This computer is configured as a member of a workgroup, not as
a member of a domain. The Netlogon service does not need to run in this
configuration.

Error: (09/07/2014 10:41:05 PM) (Source: BridgeMP) (EventID: 14702) (User: )
Description: Bridge [Adapter ASUS 802.11n Network Adapter]:
The bridge could not modify the network adapter's packet filter. The network adapter will not function correctly.


Microsoft Office Sessions:
=========================
Error: (09/11/2014 05:29:49 PM) (Source: MsiInstaller) (EventID: 11714) (User: ARMOR)
Description: Product: Google Talk Plugin -- Error 1714. The older version of Google Talk Plugin cannot be removed.  Contact your technical support group.  System Error 1612.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (09/10/2014 09:29:12 PM) (Source: MsiInstaller) (EventID: 11714) (User: ARMOR)
Description: Product: Google Talk Plugin -- Error 1714. The older version of Google Talk Plugin cannot be removed.  Contact your technical support group.  System Error 1612.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (09/10/2014 08:29:53 AM) (Source: MsiInstaller) (EventID: 11714) (User: ARMOR)
Description: Product: Google Talk Plugin -- Error 1714. The older version of Google Talk Plugin cannot be removed.  Contact your technical support group.  System Error 1612.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (09/10/2014 00:31:32 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: MotoHelperService.exe2.3.8.052862eb0MotoHelperService.exe2.3.8.052862eb0c00000050001061271c01cfccaf4c6c621eC:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exeC:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe7bffabfa-38bc-11e4-a833-bcaec54ce1d6

Error: (09/09/2014 09:29:17 PM) (Source: MsiInstaller) (EventID: 11714) (User: ARMOR)
Description: Product: Google Talk Plugin -- Error 1714. The older version of Google Talk Plugin cannot be removed.  Contact your technical support group.  System Error 1612.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (09/09/2014 08:29:33 AM) (Source: MsiInstaller) (EventID: 11714) (User: ARMOR)
Description: Product: Google Talk Plugin -- Error 1714. The older version of Google Talk Plugin cannot be removed.  Contact your technical support group.  System Error 1612.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (09/08/2014 11:20:34 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 90080108

Error: (09/08/2014 09:29:50 PM) (Source: MsiInstaller) (EventID: 11714) (User: ARMOR)
Description: Product: Google Talk Plugin -- Error 1714. The older version of Google Talk Plugin cannot be removed.  Contact your technical support group.  System Error 1612.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (09/08/2014 08:29:22 AM) (Source: MsiInstaller) (EventID: 11714) (User: ARMOR)
Description: Product: Google Talk Plugin -- Error 1714. The older version of Google Talk Plugin cannot be removed.  Contact your technical support group.  System Error 1612.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (09/07/2014 08:29:30 PM) (Source: MsiInstaller) (EventID: 11714) (User: ARMOR)
Description: Product: Google Talk Plugin -- Error 1714. The older version of Google Talk Plugin cannot be removed.  Contact your technical support group.  System Error 1612.(NULL)(NULL)(NULL)(NULL)(NULL)


CodeIntegrity Errors:
===================================
  Date: 2014-09-07 14:14:32.621
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\PROGRA~1\Ugutil\program\PCANDIS4.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-09-07 14:14:32.558
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\PROGRA~1\Ugutil\program\PCANDIS4.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-09-07 14:14:32.496
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\PROGRA~1\Ugutil\program\PCANDIS4.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-09-07 14:14:32.433
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\PROGRA~1\Ugutil\program\PCANDIS4.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-09-07 14:13:36.448
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\PROGRA~1\Ugutil\program\PCANDIS4.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-09-07 14:13:36.370
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\PROGRA~1\Ugutil\program\PCANDIS4.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-09-07 14:13:36.307
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\PROGRA~1\Ugutil\program\PCANDIS4.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-09-07 14:13:36.245
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\PROGRA~1\Ugutil\program\PCANDIS4.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-09-07 14:10:37.255
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\PROGRA~1\Ugutil\program\PCANDIS4.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-09-07 14:10:37.193
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\PROGRA~1\Ugutil\program\PCANDIS4.SYS because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: AMD Phenom™ II X6 1075T Processor
Percentage of memory in use: 17%
Total physical RAM: 16382.14 MB
Available physical RAM: 13593.29 MB
Total Pagefile: 49144.61 MB
Available Pagefile: 46372.38 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: (SSD) (Fixed) (Total:59.62 GB) (Free:19.85 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive e: (Old C) (Fixed) (Total:465.65 GB) (Free:304.93 GB) NTFS ==>[System with boot components (obtained from reading drive)]
ATTENTION: Malware custom entry on BCD on drive e: detected.
Drive g: (Phantom G) (Fixed) (Total:465.76 GB) (Free:260.13 GB) NTFS
Drive k: (Phantom K) (Fixed) (Total:465.76 GB) (Free:269.06 GB) NTFS
Drive u: (Unique) (Fixed) (Total:931.51 GB) (Free:364.1 GB) NTFS
Drive x: (Falcon X) (Fixed) (Total:465.86 GB) (Free:268.85 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: F72B7564)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 59.6 GB) (Disk ID: 9A4048C5)
Partition 1: (Active) - (Size=59.6 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: BAA5BAA5)
Partition 1: (Active) - (Size=465.7 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.9 GB) - (Type=07 NTFS)

========================================================
Disk: 4 (MBR Code: Windows XP) (Size: 465.8 GB) (Disk ID: F87B4C9A)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

========================================================
Disk: 5 (Size: 465.8 GB) (Disk ID: 000098EC)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End Of Log ============================


  • 0

#5
Daniel Christmas Lee

Daniel Christmas Lee

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 208 posts

Extra Info That Might Be Helpful

 

My "C" drive is an SSD, and since it's < 64 GB, I try to not to install any non-essential programs on it.

My "E" was my C drive before I installed my OS onto my SSD. I've modified environmental variables so Windows know that my "E" drive was my old C drive and it's the default drive for most things, especially "temp" stuff.


  • 0

#6
BrianDrab

BrianDrab

    Trusted Helper

  • Malware Removal
  • 3,583 posts

Thank you for the logs and thank you for the information. Please follow the steps below.

 

 

Step#1 - BSOD Log

1. Please download the 64-bit version of Bluescreenview from here and save it to your desktop.
2. Right-click on the downloaded file (bluescreenview-x64.zip) and select Extract All. Click the Extract button and a folder will open with the contents that were extracted.

3. Right-click on BlueScreenView.exe and select Run as administrator. If prompted to Allow, please answer yes.

4. Once the program opens and finishes scanning, click on the Edit menu and choose Select All.

5. Then click on the file menu...Save selected Items...and save it to your desktop named BSOD.txt.

6. Open the BSOD.txt file in notepad (you can simply double-click on the file from the desktop to do this) and copy/paste the contents of this in your next reply.

 

 

Step#2 - Adware Scan
 
1. Please download AdwCleaner by Xplode onto your desktop.
2. Close all open programs and internet browsers.
3. Right-Click on AdwCleaner.exe and select Run as administrator to run the tool. Click Yes if asked to allow the program from an unknown publisher.
4. Click I Agree on the Terms of Use screen.
5. Click on Scan.
6. After the scan is complete click on "Clean"
7. Confirm each time with Ok on the messages that follow.
8. Your computer will be rebooted automatically. A text file will open after the restart.
9. Please post the content of that logfile with your next answer.
10. You can find the logfile at C:\AdwCleaner[S0].txt as well.

 

 

Step#3 - TDSSKiller - Check for Infected MBR/BCD Entries

 

Please download the latest version of TDSSKiller from here and save it to your Desktop.

  1. Right-click on TDSSKiller.exe and select Run as administrator. Allow to run if prompted.
  2. Accept the End User License Agreement & KSN Statement
  3. Click on Change parameters.
  4. Another window will appear.
  5. Check "Verify file digital signatures" and "Detect TDLFS file system".
  6. Check "Loaded modules" under the Objects to scan section. You will be prompted to reboot. Please do so.
  7. Reboot.JPG
  8. Once the computer is rebooted, TDDSKiller will open again.
  9. Click the Start Scan button.
  10. The scan should only take a few minutes.
  11. If a suspicious object is detected, the default action will be Skip, click on Continue.
  12. If malicious objects are found, they will show in the Scan results.
  13. Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process. Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed
  14. A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here. If there are multiple logs, please post the most current.

 

   

 

Items for your Next Post

1. BSOD Log file

2. AdwCleaner log

3. TDSS Log

 


  • 0

#7
Daniel Christmas Lee

Daniel Christmas Lee

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 208 posts

Doing this step by step and I might get distracted and miss a step so bear with me.

 

This is Step #1.

 

==================================================
Dump File         : 090614-17160-01.dmp
Crash Time        : 9/6/2014 7:12:29 PM
Bug Check String  : SYSTEM_SERVICE_EXCEPTION
Bug Check Code    : 0x0000003b
Parameter 1       : 00000000`c0000005
Parameter 2       : fffff880`130e229c
Parameter 3       : fffff880`0b1bea90
Parameter 4       : 00000000`00000000
Caused By Driver  : RDPCDD.sys
Caused By Address : RDPCDD.sys+11c8229c
File Description  : RDP Miniport
Product Name      : Microsoft® Windows® Operating System
Company           : Microsoft Corporation
File Version      : 6.1.7600.16385 (win7_rtm.090713-1255)
Processor         : x64
Crash Address     : ntoskrnl.exe+75bc0
Stack Address 1   :
Stack Address 2   :
Stack Address 3   :
Computer Name     :
Full Path         : C:\Windows\Minidump\090614-17160-01.dmp
Processors Count  : 6
Major Version     : 15
Minor Version     : 7601
Dump File Size    : 288,329
Dump File Time    : 9/6/2014 7:13:32 PM
==================================================

==================================================
Dump File         : 090614-14554-01.dmp
Crash Time        : 9/6/2014 1:53:22 AM
Bug Check String  : BUGCODE_USB_DRIVER
Bug Check Code    : 0x000000fe
Parameter 1       : 00000000`00000008
Parameter 2       : 00000000`00000006
Parameter 3       : 00000000`00000005
Parameter 4       : fffffa80`0d33e000
Caused By Driver  : dfsc.sys
Caused By Address : dfsc.sys+ae6a5c
File Description  : DFS Namespace Client Driver
Product Name      : Microsoft® Windows® Operating System
Company           : Microsoft Corporation
File Version      : 6.1.7601.17514 (win7sp1_rtm.101119-1850)
Processor         : x64
Crash Address     : ntoskrnl.exe+75bc0
Stack Address 1   :
Stack Address 2   :
Stack Address 3   :
Computer Name     :
Full Path         : C:\Windows\Minidump\090614-14554-01.dmp
Processors Count  : 6
Major Version     : 15
Minor Version     : 7601
Dump File Size    : 358,329
Dump File Time    : 9/6/2014 1:54:18 AM
==================================================

==================================================
Dump File         : 082914-15631-01.dmp
Crash Time        : 8/29/2014 7:02:50 PM
Bug Check String  : SYSTEM_THREAD_EXCEPTION_NOT_HANDLED
Bug Check Code    : 0x1000007e
Parameter 1       : ffffffff`c0000005
Parameter 2       : fffff880`130d0dbb
Parameter 3       : fffff880`081bb368
Parameter 4       : fffff880`081babc0
Caused By Driver  : netr28ux.sys
Caused By Address : netr28ux.sys+b125a0
File Description  : Ralink 802.11n Wireless Adapter Driver
Product Name      : Ralink 802.11n Wireless Adapters
Company           : Ralink Technology Corp.
File Version      : 3.01.00.0000 built by: WinDDK
Processor         : x64
Crash Address     : crashdmp.sys+a66edbb
Stack Address 1   :
Stack Address 2   :
Stack Address 3   :
Computer Name     :
Full Path         : C:\Windows\Minidump\082914-15631-01.dmp
Processors Count  : 6
Major Version     : 15
Minor Version     : 7601
Dump File Size    : 288,329
Dump File Time    : 8/29/2014 7:05:10 PM
==================================================
 


Edited by Daniel Christmas Lee, 12 September 2014 - 11:56 PM.

  • 0

#8
Daniel Christmas Lee

Daniel Christmas Lee

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 208 posts

Totally gonna do Step #2 and #3 tomorrow. I need my programs and browsers running at the moment.


  • 0

#9
Daniel Christmas Lee

Daniel Christmas Lee

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 208 posts

Here is Step #2

 

# AdwCleaner v3.310 - Report created 13/09/2014 at 12:01:47
# Updated 12/09/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64

bits)
# Username : DLee - ARMOR
# Running from : E:\Users\DLee\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : E:\Users\DLee\AppData\Local\vghd
Folder Deleted : E:\Users\DLee\AppData\Roaming\vghd
Folder Deleted : E:\Users\DLee\AppData\Roaming\Mozilla\Firefox

\Profiles\bpz41sfe.Work\Extensions\{1280606b-2510-4fe0-97ef-

9b5a22eafe30}
File Deleted : E:\Users\DLee\AppData\Roaming\Mozilla\Firefox

\Profiles\bpz41sfe.Work\.autoreg

***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1663C10B-0D55-438D-

8496-19A3DBAEC0E4}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A1CCCE0D-AE21-42A2-

BE58-8E6109410995}
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\SOFTWARE\systweak

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17280


-\\ Mozilla Firefox v27.0.1 (en-US)

[ File : E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles

\b0pajpvg.Daniel\prefs.js ]

Line Deleted : user_pref("extensions.seoquake.webalta-mode", 1);

[ File : E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles

\bpz41sfe.Work\prefs.js ]

Line Deleted : user_pref("extensions.seoquake.webalta-mode", 1);

[ File : E:\Users\DLee\AppData\Roaming\Mozilla\Firefox\Profiles

\tlw3ic70.Daniel\prefs.js ]

Line Deleted : user_pref("extensions.seoquake.webalta-mode", 1);

-\\ Google Chrome v

[ File : E:\Users\DLee\AppData\Local\Google\Chrome\User Data

\Default\preferences ]

Deleted [Search Provider] : hxxp://movies.netflix.com/WiSearch?

raw_query=kill+the+messenger&ac_category_type=none&ac_rel_posn=-

1&ac_abs_posn=-1&v1={searchTerms}&search_submit=
Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q=

{searchTerms}
Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}

*************************

AdwCleaner[R0].txt - [2362 octets] - [13/09/2014 11:59:39]
AdwCleaner[S0].txt - [2262 octets] - [13/09/2014 12:01:47]

########## EOF - E:\AdwCleaner\AdwCleaner[S0].txt - [2322 octets]

##########
 


  • 0

#10
Daniel Christmas Lee

Daniel Christmas Lee

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 208 posts

Step #3 with Screenshots Attached Because Windows Explorer Stopped Working Right Before Scan.

 

12:09:29.0179 0x09ac  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
12:09:29.0569 0x09ac  ============================================================
12:09:29.0569 0x09ac  Current date / time: 2014/09/13 12:09:29.0569
12:09:29.0569 0x09ac  SystemInfo:
12:09:29.0569 0x09ac  
12:09:29.0569 0x09ac  OS Version: 6.1.7601 ServicePack: 1.0
12:09:29.0569 0x09ac  Product type: Workstation
12:09:29.0569 0x09ac  ComputerName: ARMOR
12:09:29.0569 0x09ac  UserName: DLee
12:09:29.0569 0x09ac  Windows directory: C:\Windows
12:09:29.0569 0x09ac  System windows directory: C:\Windows
12:09:29.0569 0x09ac  Running under WOW64
12:09:29.0569 0x09ac  Processor architecture: Intel x64
12:09:29.0569 0x09ac  Number of processors: 6
12:09:29.0569 0x09ac  Page size: 0x1000
12:09:29.0569 0x09ac  Boot type: Normal boot
12:09:29.0569 0x09ac  ============================================================
12:09:29.0569 0x09ac  BG loaded
12:09:29.0944 0x09ac  System UUID: {4FB44B7E-9EC3-2033-7BCA-40FFDE522FE9}
12:09:30.0427 0x09ac  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:09:30.0427 0x09ac  Drive \Device\Harddisk1\DR1 - Size: 0xEE8156000 ( 59.63 Gb ), SectorSize: 0x200, Cylinders: 0x1E67, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:09:30.0443 0x09ac  Drive \Device\Harddisk2\DR2 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:09:33.0469 0x09ac  Drive \Device\Harddisk4\DR4 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
12:09:33.0485 0x09ac  Drive \Device\Harddisk5\DR5 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
12:09:33.0485 0x09ac  ============================================================
12:09:33.0485 0x09ac  \Device\Harddisk0\DR0:
12:09:33.0485 0x09ac  MBR partitions:
12:09:33.0485 0x09ac  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
12:09:33.0485 0x09ac  \Device\Harddisk1\DR1:
12:09:33.0485 0x09ac  MBR partitions:
12:09:33.0485 0x09ac  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x773F800
12:09:33.0485 0x09ac  \Device\Harddisk2\DR2:
12:09:33.0485 0x09ac  MBR partitions:
12:09:33.0485 0x09ac  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A34D800
12:09:33.0485 0x09ac  \Device\Harddisk2\DR2\Partition2: MBR, Type 0x7, StartLBA 0x3A34E000, BlocksNum 0x3A3B7800
12:09:33.0485 0x09ac  \Device\Harddisk4\DR4:
12:09:33.0485 0x09ac  MBR partitions:
12:09:33.0485 0x09ac  \Device\Harddisk4\DR4\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
12:09:33.0485 0x09ac  \Device\Harddisk5\DR5:
12:09:33.0485 0x09ac  MBR partitions:
12:09:33.0485 0x09ac  \Device\Harddisk5\DR5\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
12:09:33.0485 0x09ac  ============================================================
12:09:33.0485 0x09ac  C: <-> \Device\Harddisk1\DR1\Partition1
12:09:33.0516 0x09ac  K: <-> \Device\Harddisk5\DR5\Partition1
12:09:33.0532 0x09ac  U: <-> \Device\Harddisk0\DR0\Partition1
12:09:33.0578 0x09ac  X: <-> \Device\Harddisk2\DR2\Partition2
12:09:33.0594 0x09ac  E: <-> \Device\Harddisk2\DR2\Partition1
12:09:33.0610 0x09ac  G: <-> \Device\Harddisk4\DR4\Partition1
12:09:33.0610 0x09ac  ============================================================
12:09:33.0610 0x09ac  Initialize success
12:09:33.0610 0x09ac  ============================================================
12:10:34.0325 0x0c9c  ============================================================
12:10:34.0325 0x0c9c  Scan started
12:10:34.0325 0x0c9c  Mode: Manual; SigCheck; TDLFS;
12:10:34.0325 0x0c9c  ============================================================
12:10:34.0325 0x0c9c  KSN ping started
12:10:47.0881 0x0c9c  KSN ping finished: true
12:10:48.0459 0x0c9c  ================ Scan system memory ========================
12:10:48.0459 0x0c9c  System memory - ok
12:10:48.0459 0x0c9c  ================ Scan services =============================
12:10:48.0490 0x0c9c  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
12:10:48.0568 0x0c9c  1394ohci - ok
12:10:48.0583 0x0c9c  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
12:10:48.0599 0x0c9c  ACPI - ok
12:10:48.0599 0x0c9c  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
12:10:48.0615 0x0c9c  AcpiPmi - ok
12:10:48.0630 0x0c9c  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
12:10:48.0646 0x0c9c  adp94xx - ok
12:10:48.0661 0x0c9c  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
12:10:48.0677 0x0c9c  adpahci - ok
12:10:48.0677 0x0c9c  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
12:10:48.0693 0x0c9c  adpu320 - ok
12:10:48.0708 0x0c9c  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
12:10:48.0739 0x0c9c  AeLookupSvc - ok
12:10:48.0755 0x0c9c  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
12:10:48.0771 0x0c9c  AFD - ok
12:10:48.0771 0x0c9c  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
12:10:48.0786 0x0c9c  agp440 - ok
12:10:48.0786 0x0c9c  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
12:10:48.0802 0x0c9c  ALG - ok
12:10:48.0802 0x0c9c  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
12:10:48.0817 0x0c9c  aliide - ok
12:10:48.0817 0x0c9c  [ E9269C2B132B1DF1EAFC0DD57B6F8A7D, AEE7E528E87237F8CBC749A6A84367E21183C1764328209D5A662CA6CB328317 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
12:10:48.0849 0x0c9c  AMD External Events Utility - ok
12:10:48.0849 0x0c9c  AMD FUEL Service - ok
12:10:48.0849 0x0c9c  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
12:10:48.0864 0x0c9c  amdide - ok
12:10:48.0864 0x0c9c  [ 6A2EEB0C4133B20773BB3DD0B7B377B4, E4CB35C6937C70A145A13E5AE5B34A271B49101DA623171ACBFDA8601E5A70EA ] amdiox64        C:\Windows\system32\DRIVERS\amdiox64.sys
12:10:48.0864 0x0c9c  amdiox64 - ok
12:10:48.0880 0x0c9c  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
12:10:48.0880 0x0c9c  AmdK8 - ok
12:10:49.0207 0x0c9c  [ 13566D265888EA814CFB3D64430F74F0, BA9C0105BE1ED9FB49B59CDA53AB5B69AAC34B91E33C46A2A5360DFC565A7940 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
12:10:50.0206 0x0c9c  amdkmdag - ok
12:10:50.0237 0x0c9c  [ 62B88833AB7B678E9790117ED01E096F, 01E7A8A504F558B065B4A3B01EA5DF0480B721CE2EFF37EA5C0C7BC934D7A229 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
12:10:50.0268 0x0c9c  amdkmdap - ok
12:10:50.0268 0x0c9c  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
12:10:50.0284 0x0c9c  AmdPPM - ok
12:10:50.0284 0x0c9c  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
12:10:50.0299 0x0c9c  amdsata - ok
12:10:50.0299 0x0c9c  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
12:10:50.0315 0x0c9c  amdsbs - ok
12:10:50.0315 0x0c9c  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
12:10:50.0331 0x0c9c  amdxata - ok
12:10:50.0331 0x0c9c  [ 033D09CD953C40B4AFBA9DCB1D1DFB8E, 629BE54E64C8B3FFE9F52820F6BF2802D50F719F63A621C998865FFD61C9F84E ] amd_sata        C:\Windows\system32\DRIVERS\amd_sata.sys
12:10:50.0331 0x0c9c  amd_sata - ok
12:10:50.0346 0x0c9c  [ F32F762E54137925E185E5FDA5F73826, A9CC747C0886628F8A5145FBE09FFCA6B5E4EFC0F4457E4824E004A329DFC765 ] amd_xata        C:\Windows\system32\DRIVERS\amd_xata.sys
12:10:50.0346 0x0c9c  amd_xata - ok
12:10:50.0346 0x0c9c  [ C3D487827E48CC5EC17994FEC5BDFF87, 5FCEA3EEA583755D0C9F6005ED3032E9DFECB57F504DC67701AE7D2D2631C30E ] AODDriver4.0    C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
12:10:50.0362 0x0c9c  AODDriver4.0 - ok
12:10:50.0362 0x0c9c  [ C3D487827E48CC5EC17994FEC5BDFF87, 5FCEA3EEA583755D0C9F6005ED3032E9DFECB57F504DC67701AE7D2D2631C30E ] AODDriver4.3    C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
12:10:50.0362 0x0c9c  AODDriver4.3 - ok
12:10:50.0377 0x0c9c  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
12:10:50.0424 0x0c9c  AppID - ok
12:10:50.0424 0x0c9c  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
12:10:50.0455 0x0c9c  AppIDSvc - ok
12:10:50.0455 0x0c9c  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
12:10:50.0455 0x0c9c  Appinfo - ok
12:10:50.0471 0x0c9c  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
12:10:50.0471 0x0c9c  arc - ok
12:10:50.0487 0x0c9c  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
12:10:50.0487 0x0c9c  arcsas - ok
12:10:50.0502 0x0c9c  [ F6BDA026E4157DC4E321CA391E9D9BC6, D38774B8F812816DA43A0C52EEC566BBC44F57A6614BC84F1417C4227286B594 ] AsIO            C:\Windows\syswow64\drivers\AsIO.sys
12:10:50.0518 0x0c9c  AsIO - ok
12:10:50.0518 0x0c9c  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:10:50.0533 0x0c9c  aspnet_state - ok
12:10:50.0549 0x0c9c  [ 8C1FD73CC27EDD8D3344C632571C224C, 52023B9D578C4EB49238B7F6390D508C48012CEA52B7042F21B7065718C7C14E ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe
12:10:50.0580 0x0c9c  AsSysCtrlService - detected UnsignedFile.Multi.Generic ( 1 )
12:10:53.0341 0x0c9c  Detect skipped due to KSN trusted
12:10:53.0341 0x0c9c  AsSysCtrlService - ok
12:10:53.0341 0x0c9c  [ 26D66E32E78D3059715B3A17BC679CD9, 5039CB81CE0829C5F3DED16A4005FEB10141C6C9B473CC319E81BAF6D1DA33E3 ] AsUpIO          C:\Windows\syswow64\drivers\AsUpIO.sys
12:10:53.0357 0x0c9c  AsUpIO - ok
12:10:53.0451 0x0c9c  [ 28DC376662EB61492BB33D98CD80CA5C, 62B98E091F9CFB8A9A934FC51C76E68DC9EB27E9832BF6FAC136EAEED4395286 ] ASWLCCSvc       E:\Program Files (x86)\ASUS\ASWLCCSVC.exe
12:10:53.0482 0x0c9c  ASWLCCSvc - detected UnsignedFile.Multi.Generic ( 1 )
12:10:56.0165 0x0c9c  Detect skipped due to KSN trusted
12:10:56.0165 0x0c9c  ASWLCCSvc - ok
12:10:56.0165 0x0c9c  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
12:10:56.0196 0x0c9c  AsyncMac - ok
12:10:56.0196 0x0c9c  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
12:10:56.0196 0x0c9c  atapi - ok
12:10:56.0212 0x0c9c  [ 33497249626E7787AA5CEA99B226CCA6, EF6213B79F83334CD95E4A58A4FE64190AA3FEFF590E41C4BF302FC4A8F6D6D6 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
12:10:56.0227 0x0c9c  AtiHDAudioService - ok
12:10:56.0243 0x0c9c  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:10:56.0274 0x0c9c  AudioEndpointBuilder - ok
12:10:56.0290 0x0c9c  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
12:10:56.0337 0x0c9c  AudioSrv - ok
12:10:56.0337 0x0c9c  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
12:10:56.0352 0x0c9c  AxInstSV - ok
12:10:56.0368 0x0c9c  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
12:10:56.0383 0x0c9c  b06bdrv - ok
12:10:56.0399 0x0c9c  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
12:10:56.0415 0x0c9c  b57nd60a - ok
12:10:56.0415 0x0c9c  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
12:10:56.0430 0x0c9c  BDESVC - ok
12:10:56.0430 0x0c9c  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
12:10:56.0461 0x0c9c  Beep - ok
12:10:56.0477 0x0c9c  [ B62ABDC39B36184B6B8B9E71A8685F52, 2B9FD036B110CBA232219F592E6B4C8A2E9F47CC86605B3682B1FD4F34BE6E94 ] BEHRINGER_2902  C:\Windows\system32\Drivers\BUSB2902.sys
12:10:56.0508 0x0c9c  BEHRINGER_2902 - ok
12:10:56.0524 0x0c9c  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
12:10:56.0539 0x0c9c  BFE - ok
12:10:56.0571 0x0c9c  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
12:10:56.0617 0x0c9c  BITS - ok
12:10:56.0617 0x0c9c  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
12:10:56.0617 0x0c9c  blbdrive - ok
12:10:56.0633 0x0c9c  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
12:10:56.0633 0x0c9c  bowser - ok
12:10:56.0649 0x0c9c  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:10:56.0649 0x0c9c  BrFiltLo - ok
12:10:56.0649 0x0c9c  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:10:56.0664 0x0c9c  BrFiltUp - ok
12:10:56.0664 0x0c9c  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] Bridge          C:\Windows\system32\DRIVERS\bridge.sys
12:10:56.0695 0x0c9c  Bridge - ok
12:10:56.0695 0x0c9c  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
12:10:56.0727 0x0c9c  BridgeMP - ok
12:10:56.0727 0x0c9c  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
12:10:56.0742 0x0c9c  Browser - ok
12:10:56.0758 0x0c9c  [ E5E9B1625A767CEB6F319C12D33EAB78, F49FF610C0712FAE4B69BD300C78D7DEA7C72DFC076323295779272D1E23D7CE ] BrSerIb         C:\Windows\system32\DRIVERS\BrSerIb.sys
12:10:56.0773 0x0c9c  BrSerIb - ok
12:10:56.0773 0x0c9c  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
12:10:56.0789 0x0c9c  Brserid - ok
12:10:56.0805 0x0c9c  [ 80E52EF092F3DAD03E0EE15E64F97245, D3BAFEBA95C9FC96945F47134F617695B48F5C67E26526D99D8D85DC39737F8A ] BrSerIf         C:\Windows\system32\DRIVERS\BrSerIf.sys
12:10:56.0805 0x0c9c  BrSerIf - ok
12:10:56.0820 0x0c9c  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
12:10:56.0820 0x0c9c  BrSerWdm - ok
12:10:56.0836 0x0c9c  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
12:10:56.0836 0x0c9c  BrUsbMdm - ok
12:10:56.0836 0x0c9c  [ 601CB966FFFEBC6806626DC8E7AA0EF2, 34208A23F48C60C52144C02D4E157D3057E9DE7D46ECB4246A521BEBB261F446 ] BrUsbSer        C:\Windows\system32\DRIVERS\BrUsbSer.sys
12:10:56.0851 0x0c9c  BrUsbSer - ok
12:10:56.0851 0x0c9c  [ D9F6B30AD93CBD165EC71FADF51DF25E, 9E38846451650F4F320CB1DEA9C010653A54D7419591719936BF53BEE269F1A8 ] BrUsbSIb        C:\Windows\system32\DRIVERS\BrUsbSIb.sys
12:10:56.0867 0x0c9c  BrUsbSIb - ok
12:10:56.0867 0x0c9c  BTCFilterService - ok
12:10:56.0867 0x0c9c  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
12:10:56.0883 0x0c9c  BTHMODEM - ok
12:10:56.0883 0x0c9c  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
12:10:56.0914 0x0c9c  bthserv - ok
12:10:56.0914 0x0c9c  [ AEC85FF9A00DD9EE7605AFC66949F228, BD6EDF76A11276E46E776AA183D4BE627F8A9E065AE07B8B54FFDBBC231D104F ] BUSB_AUDIO_WDM  C:\Windows\system32\drivers\busbwdm.sys
12:10:56.0929 0x0c9c  BUSB_AUDIO_WDM - ok
12:10:56.0961 0x0c9c  [ AB134791E7F68B34C33431494FB75E51, 1FA8E48A4A4566B909F981009A4608EF689C1D944A922CE2374C3A51F58CE426 ] Cam5603D        C:\Windows\system32\Drivers\BisonCam.sys
12:10:56.0992 0x0c9c  Cam5603D - ok
12:10:56.0992 0x0c9c  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
12:10:57.0023 0x0c9c  cdfs - ok
12:10:57.0039 0x0c9c  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
12:10:57.0039 0x0c9c  cdrom - ok
12:10:57.0054 0x0c9c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
12:10:57.0070 0x0c9c  CertPropSvc - ok
12:10:57.0070 0x0c9c  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
12:10:57.0085 0x0c9c  circlass - ok
12:10:57.0101 0x0c9c  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
12:10:57.0117 0x0c9c  CLFS - ok
12:10:57.0117 0x0c9c  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:10:57.0132 0x0c9c  clr_optimization_v2.0.50727_32 - ok
12:10:57.0132 0x0c9c  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:10:57.0148 0x0c9c  clr_optimization_v2.0.50727_64 - ok
12:10:57.0148 0x0c9c  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:10:57.0179 0x0c9c  clr_optimization_v4.0.30319_32 - ok
12:10:57.0179 0x0c9c  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:10:57.0195 0x0c9c  clr_optimization_v4.0.30319_64 - ok
12:10:57.0195 0x0c9c  [ B9DCEA6D9EC0E9192B2C44C5454E6FED, AAEB904884598F8F878F6CDAF3A068A98417D05D17D6D29E7403609B48D537C8 ] clwvd6          C:\Windows\system32\DRIVERS\clwvd6.sys
12:10:57.0210 0x0c9c  clwvd6 - ok
12:10:57.0210 0x0c9c  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
12:10:57.0210 0x0c9c  CmBatt - ok
12:10:57.0226 0x0c9c  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
12:10:57.0226 0x0c9c  cmdide - ok
12:10:57.0241 0x0c9c  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
12:10:57.0257 0x0c9c  CNG - ok
12:10:57.0273 0x0c9c  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
12:10:57.0273 0x0c9c  Compbatt - ok
12:10:57.0273 0x0c9c  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
12:10:57.0288 0x0c9c  CompositeBus - ok
12:10:57.0288 0x0c9c  COMSysApp - ok
12:10:57.0304 0x0c9c  cpuz135 - ok
12:10:57.0397 0x0c9c  [ A453083B8F4CA7CB60CAC327E97EDBE2, C50F8AB8538C557963252B702C1BD3CEE4604B5FC2497705D2A6A3FD87E3CC26 ] cpuz136         E:\Users\DLee\PC WIZARD 2013\pcwiz_x64.sys
12:10:57.0413 0x0c9c  cpuz136 - ok
12:10:57.0413 0x0c9c  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
12:10:57.0413 0x0c9c  crcdisk - ok
12:10:57.0429 0x0c9c  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
12:10:57.0444 0x0c9c  CryptSvc - ok
12:10:57.0444 0x0c9c  [ C6E1C081C0849E08FECEC18DF73B10C4, B5E552F4744C91836CBAF3F62CB861C1D9422721870D11B5CCE21B45E384985A ] dc3d            C:\Windows\system32\DRIVERS\dc3d.sys
12:10:57.0460 0x0c9c  dc3d - ok
12:10:57.0475 0x0c9c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
12:10:57.0507 0x0c9c  DcomLaunch - ok
12:10:57.0507 0x0c9c  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
12:10:57.0553 0x0c9c  defragsvc - ok
12:10:57.0553 0x0c9c  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
12:10:57.0585 0x0c9c  DfsC - ok
12:10:57.0585 0x0c9c  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
12:10:57.0600 0x0c9c  Dhcp - ok
12:10:57.0600 0x0c9c  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
12:10:57.0631 0x0c9c  discache - ok
12:10:57.0631 0x0c9c  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
12:10:57.0647 0x0c9c  Disk - ok
12:10:57.0647 0x0c9c  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
12:10:57.0663 0x0c9c  Dnscache - ok
12:10:57.0678 0x0c9c  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
12:10:57.0709 0x0c9c  dot3svc - ok
12:10:57.0709 0x0c9c  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
12:10:57.0741 0x0c9c  DPS - ok
12:10:57.0741 0x0c9c  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
12:10:57.0756 0x0c9c  drmkaud - ok
12:10:57.0756 0x0c9c  [ FB9BEF3401EE5ECC2603311B9C64F44A, 33F8B6C9593677A360F580554D4F95B9F580C4E28F8187FBB27D96AFBFA8C7C1 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
12:10:57.0772 0x0c9c  dtsoftbus01 - ok
12:10:57.0787 0x0c9c  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
12:10:57.0819 0x0c9c  DXGKrnl - ok
12:10:57.0834 0x0c9c  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
12:10:57.0850 0x0c9c  EapHost - ok
12:10:57.0928 0x0c9c  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
12:10:58.0021 0x0c9c  ebdrv - ok
12:10:58.0021 0x0c9c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
12:10:58.0037 0x0c9c  EFS - ok
12:10:58.0084 0x0c9c  [ 8DDD21AA573259EDE85A298FB8FEA906, 9388D35B1964BB04F45866D10CDBC7F1846019F5BDECD0320636DA2F691A140F ] ElephantDrive-MappedDrive.exe E:\Program Files (x86)\ElephantDrive\ElephantDrive\ElephantDrive-MappedDrive.exe
12:10:58.0131 0x0c9c  ElephantDrive-MappedDrive.exe - ok
12:10:58.0162 0x0c9c  [ 56623786824FCD0CEF354EFAD75FEAD3, 4CDD5069CE1D11839E0F8A8709896B634FBE462AC7AF3578B30EC6EA504B5359 ] ElephantDrive-Service.exe E:\Program Files (x86)\ElephantDrive\ElephantDrive\ElephantDrive-Service.exe
12:10:58.0224 0x0c9c  ElephantDrive-Service.exe - ok
12:10:58.0224 0x0c9c  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
12:10:58.0255 0x0c9c  elxstor - ok
12:10:58.0255 0x0c9c  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
12:10:58.0255 0x0c9c  ErrDev - ok
12:10:58.0318 0x0c9c  ESEADriver2 - ok
12:10:58.0333 0x0c9c  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
12:10:58.0365 0x0c9c  EventSystem - ok
12:10:58.0365 0x0c9c  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
12:10:58.0396 0x0c9c  exfat - ok
12:10:58.0411 0x0c9c  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
12:10:58.0443 0x0c9c  fastfat - ok
12:10:58.0458 0x0c9c  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
12:10:58.0474 0x0c9c  Fax - ok
12:10:58.0474 0x0c9c  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
12:10:58.0489 0x0c9c  fdc - ok
12:10:58.0489 0x0c9c  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
12:10:58.0521 0x0c9c  fdPHost - ok
12:10:58.0521 0x0c9c  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
12:10:58.0552 0x0c9c  FDResPub - ok
12:10:58.0552 0x0c9c  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
12:10:58.0567 0x0c9c  FileInfo - ok
12:10:58.0567 0x0c9c  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
12:10:58.0599 0x0c9c  Filetrace - ok
12:10:58.0599 0x0c9c  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
12:10:58.0614 0x0c9c  flpydisk - ok
12:10:58.0614 0x0c9c  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
12:10:58.0630 0x0c9c  FltMgr - ok
12:10:58.0661 0x0c9c  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
12:10:58.0692 0x0c9c  FontCache - ok
12:10:58.0692 0x0c9c  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:10:58.0708 0x0c9c  FontCache3.0.0.0 - ok
12:10:58.0708 0x0c9c  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
12:10:58.0723 0x0c9c  FsDepends - ok
12:10:58.0723 0x0c9c  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
12:10:58.0739 0x0c9c  Fs_Rec - ok
12:10:58.0739 0x0c9c  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
12:10:58.0755 0x0c9c  fvevol - ok
12:10:58.0755 0x0c9c  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
12:10:58.0770 0x0c9c  gagp30kx - ok
12:10:58.0786 0x0c9c  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
12:10:58.0833 0x0c9c  gpsvc - ok
12:10:58.0833 0x0c9c  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
12:10:58.0848 0x0c9c  hcw85cir - ok
12:10:58.0848 0x0c9c  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:10:58.0879 0x0c9c  HdAudAddService - ok
12:10:58.0879 0x0c9c  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
12:10:58.0895 0x0c9c  HDAudBus - ok
12:10:58.0895 0x0c9c  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
12:10:58.0911 0x0c9c  HidBatt - ok
12:10:58.0911 0x0c9c  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
12:10:58.0926 0x0c9c  HidBth - ok
12:10:58.0926 0x0c9c  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
12:10:58.0942 0x0c9c  HidIr - ok
12:10:58.0942 0x0c9c  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
12:10:58.0973 0x0c9c  hidserv - ok
12:10:58.0973 0x0c9c  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
12:10:58.0989 0x0c9c  HidUsb - ok
12:10:58.0989 0x0c9c  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
12:10:59.0020 0x0c9c  hkmsvc - ok
12:10:59.0020 0x0c9c  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:10:59.0035 0x0c9c  HomeGroupListener - ok
12:10:59.0035 0x0c9c  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:10:59.0051 0x0c9c  HomeGroupProvider - ok
12:10:59.0067 0x0c9c  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
12:10:59.0067 0x0c9c  HpSAMD - ok
12:10:59.0082 0x0c9c  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
12:10:59.0129 0x0c9c  HTTP - ok
12:10:59.0129 0x0c9c  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
12:10:59.0145 0x0c9c  hwpolicy - ok
12:10:59.0145 0x0c9c  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
12:10:59.0160 0x0c9c  i8042prt - ok
12:10:59.0176 0x0c9c  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
12:10:59.0191 0x0c9c  iaStorV - ok
12:10:59.0207 0x0c9c  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:10:59.0238 0x0c9c  idsvc - ok
12:10:59.0238 0x0c9c  IEEtwCollectorService - ok
12:10:59.0254 0x0c9c  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
12:10:59.0254 0x0c9c  iirsp - ok
12:10:59.0285 0x0c9c  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
12:10:59.0316 0x0c9c  IKEEXT - ok
12:10:59.0363 0x0c9c  [ A3BCBD0F710580A07D1B929D787D36CE, D7608C1C2B2FF4DD0C4CEBC75594ADA35A6911A541ED5FF93AAB8610108E168A ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
12:10:59.0425 0x0c9c  IntcAzAudAddService - ok
12:10:59.0425 0x0c9c  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
12:10:59.0441 0x0c9c  intelide - ok
12:10:59.0441 0x0c9c  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
12:10:59.0457 0x0c9c  intelppm - ok
12:10:59.0457 0x0c9c  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
12:10:59.0488 0x0c9c  IPBusEnum - ok
12:10:59.0488 0x0c9c  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:10:59.0519 0x0c9c  IpFilterDriver - ok
12:10:59.0535 0x0c9c  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
12:10:59.0550 0x0c9c  iphlpsvc - ok
12:10:59.0566 0x0c9c  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
12:10:59.0566 0x0c9c  IPMIDRV - ok
12:10:59.0581 0x0c9c  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
12:10:59.0613 0x0c9c  IPNAT - ok
12:10:59.0613 0x0c9c  [ 11FE7637A49B67D9B1F895B2AD4D982F, D448DA9083044E0B2627042D9FA5DC65C74A34AB09FF627777634B254260F4FB ] iprip           C:\Windows\System32\iprip.dll
12:10:59.0613 0x0c9c  iprip - ok
12:10:59.0628 0x0c9c  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
12:10:59.0628 0x0c9c  IRENUM - ok
12:10:59.0644 0x0c9c  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
12:10:59.0644 0x0c9c  isapnp - ok
12:10:59.0659 0x0c9c  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
12:10:59.0675 0x0c9c  iScsiPrt - ok
12:10:59.0675 0x0c9c  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
12:10:59.0691 0x0c9c  kbdclass - ok
12:10:59.0691 0x0c9c  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
12:10:59.0691 0x0c9c  kbdhid - ok
12:10:59.0706 0x0c9c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
12:10:59.0706 0x0c9c  KeyIso - ok
12:10:59.0706 0x0c9c  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
12:10:59.0722 0x0c9c  KSecDD - ok
12:10:59.0722 0x0c9c  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
12:10:59.0737 0x0c9c  KSecPkg - ok
12:10:59.0737 0x0c9c  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
12:10:59.0769 0x0c9c  ksthunk - ok
12:10:59.0784 0x0c9c  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
12:10:59.0815 0x0c9c  KtmRm - ok
12:10:59.0815 0x0c9c  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
12:10:59.0847 0x0c9c  LanmanServer - ok
12:10:59.0862 0x0c9c  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:10:59.0878 0x0c9c  LanmanWorkstation - ok
12:10:59.0893 0x0c9c  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
12:10:59.0909 0x0c9c  lltdio - ok
12:10:59.0925 0x0c9c  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
12:10:59.0956 0x0c9c  lltdsvc - ok
12:10:59.0956 0x0c9c  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
12:10:59.0987 0x0c9c  lmhosts - ok
12:10:59.0987 0x0c9c  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
12:11:00.0003 0x0c9c  LSI_FC - ok
12:11:00.0003 0x0c9c  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
12:11:00.0018 0x0c9c  LSI_SAS - ok
12:11:00.0018 0x0c9c  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:11:00.0034 0x0c9c  LSI_SAS2 - ok
12:11:00.0034 0x0c9c  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:11:00.0049 0x0c9c  LSI_SCSI - ok
12:11:00.0049 0x0c9c  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
12:11:00.0081 0x0c9c  luafv - ok
12:11:00.0081 0x0c9c  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
12:11:00.0096 0x0c9c  megasas - ok
12:11:00.0096 0x0c9c  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
12:11:00.0112 0x0c9c  MegaSR - ok
12:11:00.0127 0x0c9c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
12:11:00.0143 0x0c9c  MMCSS - ok
12:11:00.0143 0x0c9c  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
12:11:00.0174 0x0c9c  Modem - ok
12:11:00.0174 0x0c9c  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
12:11:00.0190 0x0c9c  monitor - ok
12:11:00.0190 0x0c9c  motandroidusb - ok
12:11:00.0190 0x0c9c  motccgp - ok
12:11:00.0190 0x0c9c  motccgpfl - ok
12:11:00.0205 0x0c9c  [ 7ED3A9C3763725BD700946971215EE77, 6150D52945E10B69CFA5E3E637DCEBA67158092C6350B4AFE456EA846CA90C18 ] Motorola Device Manager C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
12:11:00.0252 0x0c9c  Motorola Device Manager - ok
12:11:00.0252 0x0c9c  MotoSwitchService - ok
12:11:00.0252 0x0c9c  Motousbnet - ok
12:11:00.0252 0x0c9c  [ 1D19770F88FA22DACB7F488EA8F8EE6B, AD100C774058CF878B6006518F3DCDBDEE475F3C9808FC5D844947D9C305FAE5 ] motusbdevice    C:\Windows\system32\DRIVERS\motusbdevice.sys
12:11:00.0268 0x0c9c  motusbdevice - ok
12:11:00.0268 0x0c9c  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
12:11:00.0283 0x0c9c  mouclass - ok
12:11:00.0283 0x0c9c  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
12:11:00.0299 0x0c9c  mouhid - ok
12:11:00.0299 0x0c9c  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
12:11:00.0315 0x0c9c  mountmgr - ok
12:11:00.0315 0x0c9c  [ 6439D1E559D08BD8A1465A8943357053, 0E300508C22D12FBA3BE566B722F574CBE1B4A1A305356B92B8EA8B86267071B ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
12:11:00.0330 0x0c9c  MpFilter - ok
12:11:00.0330 0x0c9c  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
12:11:00.0346 0x0c9c  mpio - ok
12:11:00.0361 0x0c9c  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
12:11:00.0377 0x0c9c  mpsdrv - ok
12:11:00.0408 0x0c9c  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
12:11:00.0439 0x0c9c  MpsSvc - ok
12:11:00.0455 0x0c9c  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
12:11:00.0471 0x0c9c  MRxDAV - ok
12:11:00.0471 0x0c9c  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
12:11:00.0486 0x0c9c  mrxsmb - ok
12:11:00.0486 0x0c9c  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:11:00.0502 0x0c9c  mrxsmb10 - ok
12:11:00.0517 0x0c9c  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:11:00.0517 0x0c9c  mrxsmb20 - ok
12:11:00.0533 0x0c9c  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
12:11:00.0533 0x0c9c  msahci - ok
12:11:00.0549 0x0c9c  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
12:11:00.0549 0x0c9c  msdsm - ok
12:11:00.0564 0x0c9c  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
12:11:00.0580 0x0c9c  MSDTC - ok
12:11:00.0580 0x0c9c  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
12:11:00.0611 0x0c9c  Msfs - ok
12:11:00.0611 0x0c9c  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
12:11:00.0627 0x0c9c  mshidkmdf - ok
12:11:00.0642 0x0c9c  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
12:11:00.0642 0x0c9c  msisadrv - ok
12:11:00.0658 0x0c9c  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
12:11:00.0673 0x0c9c  MSiSCSI - ok
12:11:00.0689 0x0c9c  msiserver - ok
12:11:00.0689 0x0c9c  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
12:11:00.0705 0x0c9c  MSKSSRV - ok
12:11:00.0720 0x0c9c  [ F0D5494D8B177C37E16966262F5D0F68, DD63427DFFD9DD2BEC8336F6AD1BEFE347012331631DC5FEC65E83B1EACDBC67 ] MsMpSvc         C:\Program Files\Microsoft Security Client\MsMpEng.exe
12:11:00.0720 0x0c9c  MsMpSvc - ok
12:11:00.0720 0x0c9c  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
12:11:00.0751 0x0c9c  MSPCLOCK - ok
12:11:00.0751 0x0c9c  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
12:11:00.0783 0x0c9c  MSPQM - ok
12:11:00.0798 0x0c9c  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
12:11:00.0814 0x0c9c  MsRPC - ok
12:11:00.0814 0x0c9c  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
12:11:00.0814 0x0c9c  mssmbios - ok
12:11:00.0829 0x0c9c  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
12:11:00.0845 0x0c9c  MSTEE - ok
12:11:00.0845 0x0c9c  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
12:11:00.0861 0x0c9c  MTConfig - ok
12:11:00.0861 0x0c9c  [ 19B006B181E3875FD254F7B67ACF1E7C, 1D68D19522E71F16B8B50F8CCFBC9D884CF2DAC40CC409BD5A40A4D4223ABC61 ] MTsensor        C:\Windows\system32\DRIVERS\ASACPI.sys
12:11:00.0876 0x0c9c  MTsensor - ok
12:11:00.0876 0x0c9c  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
12:11:00.0892 0x0c9c  Mup - ok
12:11:00.0892 0x0c9c  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
12:11:00.0939 0x0c9c  napagent - ok
12:11:00.0939 0x0c9c  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
12:11:00.0970 0x0c9c  NativeWifiP - ok
12:11:00.0985 0x0c9c  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
12:11:01.0017 0x0c9c  NDIS - ok
12:11:01.0017 0x0c9c  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
12:11:01.0048 0x0c9c  NdisCap - ok
12:11:01.0048 0x0c9c  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
12:11:01.0079 0x0c9c  NdisTapi - ok
12:11:01.0079 0x0c9c  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
12:11:01.0110 0x0c9c  Ndisuio - ok
12:11:01.0110 0x0c9c  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
12:11:01.0141 0x0c9c  NdisWan - ok
12:11:01.0141 0x0c9c  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
12:11:01.0173 0x0c9c  NDProxy - ok
12:11:01.0173 0x0c9c  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
12:11:01.0204 0x0c9c  NetBIOS - ok
12:11:01.0204 0x0c9c  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
12:11:01.0235 0x0c9c  NetBT - ok
12:11:01.0251 0x0c9c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
12:11:01.0251 0x0c9c  Netlogon - ok
12:11:01.0266 0x0c9c  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
12:11:01.0297 0x0c9c  Netman - ok
12:11:01.0297 0x0c9c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:11:01.0313 0x0c9c  NetMsmqActivator - ok
12:11:01.0329 0x0c9c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:11:01.0329 0x0c9c  NetPipeActivator - ok
12:11:01.0344 0x0c9c  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
12:11:01.0375 0x0c9c  netprofm - ok
12:11:01.0407 0x0c9c  [ 476E9E53452E9F1EE82E75F2BC7B2AE3, 21C936E9B08D63F8CD3EA18DE1B88103BEB427EC0C0CE30632801F011869162A ] netr28ux        C:\Windows\system32\DRIVERS\netr28ux.sys
12:11:01.0438 0x0c9c  netr28ux - ok
12:11:01.0453 0x0c9c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:11:01.0469 0x0c9c  NetTcpActivator - ok
12:11:01.0469 0x0c9c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:11:01.0485 0x0c9c  NetTcpPortSharing - ok
12:11:01.0485 0x0c9c  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
12:11:01.0500 0x0c9c  nfrd960 - ok
12:11:01.0625 0x0c9c  [ 93F304DEB07095BCF33BD1C17C2DB2A7, DCD4A810512BE0D86E019DB19C4317AB3FD2FEEE1166162155F6B5BA7D0EFF4F ] NIHardwareService C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
12:11:01.0750 0x0c9c  NIHardwareService - ok
12:11:01.0765 0x0c9c  [ F9EEFFC65C68A45001D1349E652B8B6F, E5F223129416083A12A85D48C65B2C8D1BF1124110399938E144308C89F9241D ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
12:11:01.0781 0x0c9c  NisDrv - ok
12:11:01.0797 0x0c9c  [ 9690F420A99364C1E5C439914B0DE25C, 6C6E0B27C4255001FE5F1EAD911DE1A8BF922C405B0C8031A6BD253CEB1D02A6 ] NisSrv          C:\Program Files\Microsoft Security Client\NisSrv.exe
12:11:01.0812 0x0c9c  NisSrv - ok
12:11:01.0812 0x0c9c  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
12:11:01.0828 0x0c9c  NlaSvc - ok
12:11:01.0843 0x0c9c  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
12:11:01.0859 0x0c9c  Npfs - ok
12:11:01.0859 0x0c9c  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
12:11:01.0890 0x0c9c  nsi - ok
12:11:01.0890 0x0c9c  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
12:11:01.0921 0x0c9c  nsiproxy - ok
12:11:01.0968 0x0c9c  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
12:11:02.0015 0x0c9c  Ntfs - ok
12:11:02.0015 0x0c9c  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
12:11:02.0046 0x0c9c  Null - ok
12:11:02.0046 0x0c9c  [ 285ACEC1B13A15BA520AAE06BACB9CFF, A6F576763818D4EAB2CDA3857F2963F61FDA67D7B581C52E1EB1DDB32FD642C3 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
12:11:02.0062 0x0c9c  nusb3hub - ok
12:11:02.0077 0x0c9c  [ F6D625FF7B56BB6EA063F0D3A5BBC996, 830196E96C120367BDA8C0EC9D7B85A642D41E8108189B1A72193299A6C005B1 ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
12:11:02.0093 0x0c9c  nusb3xhc - ok
12:11:02.0093 0x0c9c  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
12:11:02.0109 0x0c9c  nvraid - ok
12:11:02.0109 0x0c9c  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
12:11:02.0124 0x0c9c  nvstor - ok
12:11:02.0140 0x0c9c  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
12:11:02.0140 0x0c9c  nv_agp - ok
12:11:02.0155 0x0c9c  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
12:11:02.0155 0x0c9c  ohci1394 - ok
12:11:02.0171 0x0c9c  [ 4965B005492CBA7719E82B71E3245495, 52AD72C05FACC1E0E416A1FA25F34FDD3CB274FAB973BEAAE911A2FACA42B650 ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:11:02.0171 0x0c9c  ose64 - ok
12:11:02.0280 0x0c9c  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
12:11:02.0405 0x0c9c  osppsvc - ok
12:11:02.0421 0x0c9c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
12:11:02.0436 0x0c9c  p2pimsvc - ok
12:11:02.0452 0x0c9c  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
12:11:02.0467 0x0c9c  p2psvc - ok
12:11:02.0483 0x0c9c  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
12:11:02.0483 0x0c9c  Parport - ok
12:11:02.0499 0x0c9c  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
12:11:02.0514 0x0c9c  partmgr - ok
12:11:02.0530 0x0c9c  PCANDIS4 - ok
12:11:02.0530 0x0c9c  [ 6AE2D4CC74B93D4892F5A5BAFA34F834, 26FBBEDD8CC4E00FF664220EB58CCE5FA5008DF2E9881072A8552EE02DA56C94 ] PCASp50         C:\Windows\system32\Drivers\PCASp50.sys
12:11:02.0545 0x0c9c  PCASp50 - ok
12:11:02.0561 0x0c9c  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
12:11:02.0577 0x0c9c  PcaSvc - ok
12:11:02.0577 0x0c9c  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
12:11:02.0592 0x0c9c  pci - ok
12:11:02.0608 0x0c9c  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
12:11:02.0608 0x0c9c  pciide - ok
12:11:02.0623 0x0c9c  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
12:11:02.0639 0x0c9c  pcmcia - ok
12:11:02.0655 0x0c9c  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
12:11:02.0670 0x0c9c  pcw - ok
12:11:02.0686 0x0c9c  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
12:11:02.0717 0x0c9c  PEAUTH - ok
12:11:02.0748 0x0c9c  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
12:11:02.0748 0x0c9c  PerfHost - ok
12:11:02.0795 0x0c9c  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
12:11:02.0857 0x0c9c  pla - ok
12:11:02.0889 0x0c9c  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
12:11:02.0904 0x0c9c  PlugPlay - ok
12:11:02.0920 0x0c9c  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
12:11:02.0920 0x0c9c  PNRPAutoReg - ok
12:11:02.0951 0x0c9c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
12:11:02.0967 0x0c9c  PNRPsvc - ok
12:11:02.0967 0x0c9c  [ 34A8FAE065249F85A67A3215FF5ECB34, 913297755C1046BA004E79660B7DA5BBE5E92B96AAA83D78AE3FF379371950D5 ] Point64         C:\Windows\system32\DRIVERS\point64.sys
12:11:02.0967 0x0c9c  Point64 - ok
12:11:02.0982 0x0c9c  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
12:11:03.0029 0x0c9c  PolicyAgent - ok
12:11:03.0029 0x0c9c  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
12:11:03.0060 0x0c9c  Power - ok
12:11:03.0076 0x0c9c  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
12:11:03.0107 0x0c9c  PptpMiniport - ok
12:11:03.0107 0x0c9c  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
12:11:03.0123 0x0c9c  Processor - ok
12:11:03.0123 0x0c9c  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
12:11:03.0138 0x0c9c  ProfSvc - ok
12:11:03.0138 0x0c9c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
12:11:03.0154 0x0c9c  ProtectedStorage - ok
12:11:03.0154 0x0c9c  [ F115AF58ABE5605D7D709CBFBD83F418, 4855FCD6E455D6E374CE92E5B37D61E7E6D8A861BA76521E7CC2542621853471 ] ProtexisLicensing C:\Windows\SysWOW64\PSIService.exe
12:11:03.0169 0x0c9c  ProtexisLicensing - ok
12:11:03.0169 0x0c9c  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
12:11:03.0201 0x0c9c  Psched - ok
12:11:03.0201 0x0c9c  [ EA735BF6DF13A857A83C99BF27A422AD, 026A57155FB9E01CFAFD8613980CDF0F3D744ABBBC66EFDC6C20B89980FB45CF ] PST Service     C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
12:11:05.0260 0x0c9c  PST Service - detected UnsignedFile.Multi.Generic ( 1 )
12:11:08.0021 0x0c9c  Detect skipped due to KSN trusted
12:11:08.0021 0x0c9c  PST Service - ok
12:11:08.0052 0x0c9c  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
12:11:08.0099 0x0c9c  ql2300 - ok
12:11:08.0115 0x0c9c  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
12:11:08.0115 0x0c9c  ql40xx - ok
12:11:08.0130 0x0c9c  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
12:11:08.0146 0x0c9c  QWAVE - ok
12:11:08.0146 0x0c9c  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
12:11:08.0161 0x0c9c  QWAVEdrv - ok
12:11:08.0161 0x0c9c  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
12:11:08.0193 0x0c9c  RasAcd - ok
12:11:08.0193 0x0c9c  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
12:11:08.0224 0x0c9c  RasAgileVpn - ok
12:11:08.0224 0x0c9c  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
12:11:08.0255 0x0c9c  RasAuto - ok
12:11:08.0255 0x0c9c  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
12:11:08.0286 0x0c9c  Rasl2tp - ok
12:11:08.0302 0x0c9c  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
12:11:08.0333 0x0c9c  RasMan - ok
12:11:08.0333 0x0c9c  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
12:11:08.0364 0x0c9c  RasPppoe - ok
12:11:08.0364 0x0c9c  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
12:11:08.0395 0x0c9c  RasSstp - ok
12:11:08.0411 0x0c9c  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
12:11:08.0442 0x0c9c  rdbss - ok
12:11:08.0442 0x0c9c  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
12:11:08.0458 0x0c9c  rdpbus - ok
12:11:08.0458 0x0c9c  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
12:11:08.0473 0x0c9c  RDPCDD - ok
12:11:08.0489 0x0c9c  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
12:11:08.0505 0x0c9c  RDPENCDD - ok
12:11:08.0520 0x0c9c  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
12:11:08.0536 0x0c9c  RDPREFMP - ok
12:11:08.0551 0x0c9c  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
12:11:08.0551 0x0c9c  RDPWD - ok
12:11:08.0567 0x0c9c  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
12:11:08.0583 0x0c9c  rdyboost - ok
12:11:08.0583 0x0c9c  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
12:11:08.0614 0x0c9c  RemoteAccess - ok
12:11:08.0614 0x0c9c  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
12:11:08.0645 0x0c9c  RemoteRegistry - ok
12:11:08.0661 0x0c9c  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
12:11:08.0676 0x0c9c  RpcEptMapper - ok
12:11:08.0676 0x0c9c  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
12:11:08.0692 0x0c9c  RpcLocator - ok
12:11:08.0707 0x0c9c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
12:11:08.0739 0x0c9c  RpcSs - ok
12:11:08.0754 0x0c9c  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
12:11:08.0770 0x0c9c  rspndr - ok
12:11:08.0785 0x0c9c  [ EE082E06A82FF630351D1E0EBBD3D8D0, 537F1A4108BDA72E8DD271466E7B7FCF39D4D55E4129AB35A409AB7AF2E7D219 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
12:11:08.0801 0x0c9c  RTL8167 - ok
12:11:08.0817 0x0c9c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
12:11:08.0817 0x0c9c  SamSs - ok
12:11:08.0817 0x0c9c  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
12:11:08.0832 0x0c9c  sbp2port - ok
12:11:08.0848 0x0c9c  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
12:11:08.0879 0x0c9c  SCardSvr - ok
12:11:08.0879 0x0c9c  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
12:11:08.0895 0x0c9c  scfilter - ok
12:11:08.0926 0x0c9c  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
12:11:08.0973 0x0c9c  Schedule - ok
12:11:08.0988 0x0c9c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
12:11:09.0004 0x0c9c  SCPolicySvc - ok
12:11:09.0019 0x0c9c  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
12:11:09.0019 0x0c9c  SDRSVC - ok
12:11:09.0035 0x0c9c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
12:11:09.0051 0x0c9c  secdrv - ok
12:11:09.0066 0x0c9c  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
12:11:09.0082 0x0c9c  seclogon - ok
12:11:09.0082 0x0c9c  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
12:11:09.0113 0x0c9c  SENS - ok
12:11:09.0113 0x0c9c  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
12:11:09.0129 0x0c9c  SensrSvc - ok
12:11:09.0129 0x0c9c  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
12:11:09.0144 0x0c9c  Serenum - ok
12:11:09.0144 0x0c9c  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
12:11:09.0160 0x0c9c  Serial - ok
12:11:09.0160 0x0c9c  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
12:11:09.0175 0x0c9c  sermouse - ok
12:11:09.0175 0x0c9c  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
12:11:09.0207 0x0c9c  SessionEnv - ok
12:11:09.0207 0x0c9c  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
12:11:09.0222 0x0c9c  sffdisk - ok
12:11:09.0222 0x0c9c  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
12:11:09.0238 0x0c9c  sffp_mmc - ok
12:11:09.0238 0x0c9c  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
12:11:09.0253 0x0c9c  sffp_sd - ok
12:11:09.0253 0x0c9c  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
12:11:09.0269 0x0c9c  sfloppy - ok
12:11:09.0269 0x0c9c  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
12:11:09.0316 0x0c9c  SharedAccess - ok
12:11:09.0316 0x0c9c  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:11:09.0363 0x0c9c  ShellHWDetection - ok
12:11:09.0363 0x0c9c  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:11:09.0363 0x0c9c  SiSRaid2 - ok
12:11:09.0378 0x0c9c  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
12:11:09.0378 0x0c9c  SiSRaid4 - ok
12:11:09.0394 0x0c9c  [ DD0443BC6CC78A19FD399817F8C51401, 06D945DB1E2C45C01D9900A4C9A557269CCD7F0AD5F1864E31E03879BC4CDF7F ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
12:11:09.0394 0x0c9c  SmartDefragDriver - ok
12:11:09.0394 0x0c9c  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
12:11:09.0425 0x0c9c  Smb - ok
12:11:09.0441 0x0c9c  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
12:11:09.0441 0x0c9c  SNMPTRAP - ok
12:11:09.0456 0x0c9c  [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan        C:\Windows\syswow64\speedfan.sys
12:11:09.0472 0x0c9c  speedfan - ok
12:11:09.0472 0x0c9c  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
12:11:09.0472 0x0c9c  spldr - ok
12:11:09.0487 0x0c9c  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
12:11:09.0519 0x0c9c  Spooler - ok
12:11:09.0581 0x0c9c  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
12:11:09.0690 0x0c9c  sppsvc - ok
12:11:09.0706 0x0c9c  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
12:11:09.0721 0x0c9c  sppuinotify - ok
12:11:09.0737 0x0c9c  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
12:11:09.0768 0x0c9c  srv - ok
12:11:09.0768 0x0c9c  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
12:11:09.0784 0x0c9c  srv2 - ok
12:11:09.0799 0x0c9c  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
12:11:09.0815 0x0c9c  srvnet - ok
12:11:09.0815 0x0c9c  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
12:11:09.0846 0x0c9c  SSDPSRV - ok
12:11:09.0846 0x0c9c  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
12:11:09.0877 0x0c9c  SstpSvc - ok
12:11:09.0893 0x0c9c  [ 6E1A473DD2A4714EAF7D11E2315DF794, 4460546191072C7DF8B2E5A00577BA8E4FF5A1B2EA399DDF65EBE1AE4A5A5C84 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
12:11:10.0314 0x0c9c  Steam Client Service - ok
12:11:10.0314 0x0c9c  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
12:11:10.0330 0x0c9c  stexstor - ok
12:11:10.0345 0x0c9c  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
12:11:10.0377 0x0c9c  stisvc - ok
12:11:10.0377 0x0c9c  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
12:11:10.0377 0x0c9c  swenum - ok
12:11:10.0392 0x0c9c  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
12:11:10.0423 0x0c9c  SwitchBoard - detected UnsignedFile.Multi.Generic ( 1 )
12:11:13.0231 0x0c9c  SwitchBoard ( UnsignedFile.Multi.Generic ) - warning
12:11:15.0790 0x0c9c  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
12:11:15.0837 0x0c9c  swprv - ok
12:11:15.0883 0x0c9c  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
12:11:15.0930 0x0c9c  SysMain - ok
12:11:15.0946 0x0c9c  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:11:15.0961 0x0c9c  TabletInputService - ok
12:11:15.0961 0x0c9c  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
12:11:15.0993 0x0c9c  TapiSrv - ok
12:11:16.0008 0x0c9c  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
12:11:16.0024 0x0c9c  TBS - ok
12:11:16.0071 0x0c9c  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
12:11:16.0133 0x0c9c  Tcpip - ok
12:11:16.0164 0x0c9c  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
12:11:16.0211 0x0c9c  TCPIP6 - ok
12:11:16.0227 0x0c9c  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
12:11:16.0227 0x0c9c  tcpipreg - ok
12:11:16.0242 0x0c9c  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
12:11:16.0242 0x0c9c  TDPIPE - ok
12:11:16.0258 0x0c9c  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
12:11:16.0258 0x0c9c  TDTCP - ok
12:11:16.0258 0x0c9c  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
12:11:16.0289 0x0c9c  tdx - ok
12:11:16.0289 0x0c9c  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
12:11:16.0305 0x0c9c  TermDD - ok
12:11:16.0320 0x0c9c  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
12:11:16.0367 0x0c9c  TermService - ok
12:11:16.0367 0x0c9c  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
12:11:16.0383 0x0c9c  Themes - ok
12:11:16.0383 0x0c9c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
12:11:16.0414 0x0c9c  THREADORDER - ok
12:11:16.0414 0x0c9c  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
12:11:16.0445 0x0c9c  TrkWks - ok
12:11:16.0445 0x0c9c  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:11:16.0476 0x0c9c  TrustedInstaller - ok
12:11:16.0492 0x0c9c  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
12:11:16.0492 0x0c9c  tssecsrv - ok
12:11:16.0507 0x0c9c  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
12:11:16.0507 0x0c9c  TsUsbFlt - ok
12:11:16.0523 0x0c9c  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
12:11:16.0539 0x0c9c  tunnel - ok
12:11:16.0554 0x0c9c  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
12:11:16.0554 0x0c9c  uagp35 - ok
12:11:16.0570 0x0c9c  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
12:11:16.0601 0x0c9c  udfs - ok
12:11:16.0601 0x0c9c  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
12:11:16.0617 0x0c9c  UI0Detect - ok
12:11:16.0617 0x0c9c  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
12:11:16.0632 0x0c9c  uliagpkx - ok
12:11:16.0632 0x0c9c  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\drivers\umbus.sys
12:11:16.0648 0x0c9c  umbus - ok
12:11:16.0648 0x0c9c  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
12:11:16.0663 0x0c9c  UmPass - ok
12:11:16.0663 0x0c9c  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
12:11:16.0710 0x0c9c  upnphost - ok
12:11:16.0710 0x0c9c  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
12:11:16.0726 0x0c9c  usbaudio - ok
12:11:16.0726 0x0c9c  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
12:11:16.0741 0x0c9c  usbccgp - ok
12:11:16.0741 0x0c9c  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
12:11:16.0757 0x0c9c  usbcir - ok
12:11:16.0757 0x0c9c  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
12:11:16.0773 0x0c9c  usbehci - ok
12:11:16.0773 0x0c9c  [ 5A4AC5D05A7C97C68596416C05D6F2B4, 1CDE5172B763D2D65379B9F3ABACC080AF676DB9354EC98A455E620C4CE3E18A ] usbfilter       C:\Windows\system32\DRIVERS\usbfilter.sys
12:11:16.0773 0x0c9c  usbfilter - ok
12:11:16.0788 0x0c9c  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
12:11:16.0804 0x0c9c  usbhub - ok
12:11:16.0804 0x0c9c  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
12:11:16.0819 0x0c9c  usbohci - ok
12:11:16.0819 0x0c9c  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
12:11:16.0835 0x0c9c  usbprint - ok
12:11:16.0835 0x0c9c  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
12:11:16.0835 0x0c9c  usbscan - ok
12:11:16.0851 0x0c9c  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:11:16.0851 0x0c9c  USBSTOR - ok
12:11:16.0866 0x0c9c  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
12:11:16.0866 0x0c9c  usbuhci - ok
12:11:16.0882 0x0c9c  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
12:11:16.0882 0x0c9c  usbvideo - ok
12:11:16.0897 0x0c9c  [ 7B28E2FBE75115660FAB31079C0A9F29, 81BB5A3E64B652A672A0782A88ABF6DDD729D38712D0706CE0FB9DE6D1EE1515 ] usb_rndisx      C:\Windows\system32\drivers\usb8023x.sys
12:11:16.0897 0x0c9c  usb_rndisx - ok
12:11:16.0897 0x0c9c  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
12:11:16.0929 0x0c9c  UxSms - ok
12:11:16.0929 0x0c9c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
12:11:16.0944 0x0c9c  VaultSvc - ok
12:11:16.0944 0x0c9c  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
12:11:16.0960 0x0c9c  vdrvroot - ok
12:11:16.0975 0x0c9c  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
12:11:17.0007 0x0c9c  vds - ok
12:11:17.0007 0x0c9c  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
12:11:17.0022 0x0c9c  vga - ok
12:11:17.0022 0x0c9c  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
12:11:17.0053 0x0c9c  VgaSave - ok
12:11:17.0053 0x0c9c  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
12:11:17.0069 0x0c9c  vhdmp - ok
12:11:17.0085 0x0c9c  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
12:11:17.0085 0x0c9c  viaide - ok
12:11:17.0085 0x0c9c  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
12:11:17.0100 0x0c9c  volmgr - ok
12:11:17.0116 0x0c9c  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
12:11:17.0131 0x0c9c  volmgrx - ok
12:11:17.0131 0x0c9c  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
12:11:17.0147 0x0c9c  volsnap - ok
12:11:17.0163 0x0c9c  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
12:11:17.0163 0x0c9c  vsmraid - ok
12:11:17.0209 0x0c9c  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
12:11:17.0272 0x0c9c  VSS - ok
12:11:17.0272 0x0c9c  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
12:11:17.0287 0x0c9c  vwifibus - ok
12:11:17.0287 0x0c9c  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
12:11:17.0303 0x0c9c  vwififlt - ok
12:11:17.0303 0x0c9c  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
12:11:17.0319 0x0c9c  vwifimp - ok
12:11:17.0334 0x0c9c  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
12:11:17.0365 0x0c9c  W32Time - ok
12:11:17.0365 0x0c9c  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
12:11:17.0381 0x0c9c  WacomPen - ok
12:11:17.0381 0x0c9c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
12:11:17.0412 0x0c9c  WANARP - ok
12:11:17.0412 0x0c9c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
12:11:17.0443 0x0c9c  Wanarpv6 - ok
12:11:17.0475 0x0c9c  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
12:11:17.0506 0x0c9c  WatAdminSvc - ok
12:11:17.0553 0x0c9c  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
12:11:17.0599 0x0c9c  wbengine - ok
12:11:17.0599 0x0c9c  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
12:11:17.0631 0x0c9c  WbioSrvc - ok
12:11:17.0631 0x0c9c  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
12:11:17.0662 0x0c9c  wcncsvc - ok
12:11:17.0662 0x0c9c  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:11:17.0677 0x0c9c  WcsPlugInService - ok
12:11:17.0677 0x0c9c  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
12:11:17.0677 0x0c9c  Wd - ok
12:11:17.0709 0x0c9c  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
12:11:17.0724 0x0c9c  Wdf01000 - ok
12:11:17.0740 0x0c9c  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
12:11:17.0755 0x0c9c  WdiServiceHost - ok
12:11:17.0755 0x0c9c  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
12:11:17.0771 0x0c9c  WdiSystemHost - ok
12:11:17.0787 0x0c9c  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
12:11:17.0802 0x0c9c  WebClient - ok
12:11:17.0818 0x0c9c  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
12:11:17.0849 0x0c9c  Wecsvc - ok
12:11:17.0849 0x0c9c  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
12:11:17.0880 0x0c9c  wercplsupport - ok
12:11:17.0880 0x0c9c  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
12:11:17.0911 0x0c9c  WerSvc - ok
12:11:17.0911 0x0c9c  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
12:11:17.0943 0x0c9c  WfpLwf - ok
12:11:17.0943 0x0c9c  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
12:11:17.0943 0x0c9c  WIMMount - ok
12:11:17.0958 0x0c9c  WinDefend - ok
12:11:17.0958 0x0c9c  WinHttpAutoProxySvc - ok
12:11:17.0974 0x0c9c  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
12:11:18.0005 0x0c9c  Winmgmt - ok
12:11:18.0036 0x0c9c  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
12:11:18.0114 0x0c9c  WinRM - ok
12:11:18.0130 0x0c9c  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
12:11:18.0145 0x0c9c  WinUsb - ok
12:11:18.0161 0x0c9c  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
12:11:18.0192 0x0c9c  Wlansvc - ok
12:11:18.0192 0x0c9c  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
12:11:18.0208 0x0c9c  WmiAcpi - ok
12:11:18.0208 0x0c9c  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
12:11:18.0223 0x0c9c  wmiApSrv - ok
12:11:18.0239 0x0c9c  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
12:11:18.0239 0x0c9c  WPCSvc - ok
12:11:18.0255 0x0c9c  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
12:11:18.0255 0x0c9c  WPDBusEnum - ok
12:11:18.0270 0x0c9c  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
12:11:18.0286 0x0c9c  ws2ifsl - ok
12:11:18.0301 0x0c9c  [ AD12F5C7251BB8D575D560894E73CBBA, FAAA1440CBBDC889C0B8917065B932A9CC86E5C0FD5845D8830482915AF83F40 ] WsAudio_DeviceS(1) C:\Windows\system32\drivers\WsAudio_DeviceS(1).sys
12:11:18.0317 0x0c9c  WsAudio_DeviceS(1) - ok
12:11:18.0317 0x0c9c  [ AD12F5C7251BB8D575D560894E73CBBA, FAAA1440CBBDC889C0B8917065B932A9CC86E5C0FD5845D8830482915AF83F40 ] WsAudio_DeviceS(2) C:\Windows\system32\drivers\WsAudio_DeviceS(2).sys
12:11:18.0333 0x0c9c  WsAudio_DeviceS(2) - ok
12:11:18.0333 0x0c9c  [ AD12F5C7251BB8D575D560894E73CBBA, FAAA1440CBBDC889C0B8917065B932A9CC86E5C0FD5845D8830482915AF83F40 ] WsAudio_DeviceS(3) C:\Windows\system32\drivers\WsAudio_DeviceS(3).sys
12:11:18.0348 0x0c9c  WsAudio_DeviceS(3) - ok
12:11:18.0348 0x0c9c  [ AD12F5C7251BB8D575D560894E73CBBA, FAAA1440CBBDC889C0B8917065B932A9CC86E5C0FD5845D8830482915AF83F40 ] WsAudio_DeviceS(4) C:\Windows\system32\drivers\WsAudio_DeviceS(4).sys
12:11:18.0364 0x0c9c  WsAudio_DeviceS(4) - ok
12:11:18.0379 0x0c9c  [ AD12F5C7251BB8D575D560894E73CBBA, FAAA1440CBBDC889C0B8917065B932A9CC86E5C0FD5845D8830482915AF83F40 ] WsAudio_DeviceS(5) C:\Windows\system32\drivers\WsAudio_DeviceS(5).sys
12:11:18.0395 0x0c9c  WsAudio_DeviceS(5) - ok
12:11:18.0395 0x0c9c  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
12:11:18.0411 0x0c9c  wscsvc - ok
12:11:18.0411 0x0c9c  WSearch - ok
12:11:18.0473 0x0c9c  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll
12:11:18.0535 0x0c9c  wuauserv - ok
12:11:18.0535 0x0c9c  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
12:11:18.0551 0x0c9c  WudfPf - ok
12:11:18.0551 0x0c9c  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
12:11:18.0567 0x0c9c  WUDFRd - ok
12:11:18.0567 0x0c9c  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
12:11:18.0582 0x0c9c  wudfsvc - ok
12:11:18.0598 0x0c9c  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
12:11:18.0613 0x0c9c  WwanSvc - ok
12:11:18.0613 0x0c9c  ================ Scan global ===============================
12:11:18.0613 0x0c9c  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
12:11:18.0629 0x0c9c  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
12:11:18.0629 0x0c9c  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
12:11:18.0645 0x0c9c  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
12:11:18.0645 0x0c9c  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
12:11:18.0660 0x0c9c  [ Global ] - ok
12:11:18.0660 0x0c9c  ================ Scan MBR ==================================
12:11:18.0660 0x0c9c  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
12:11:18.0754 0x0c9c  \Device\Harddisk0\DR0 - ok
12:11:18.0754 0x0c9c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
12:11:18.0816 0x0c9c  \Device\Harddisk1\DR1 - ok
12:11:18.0832 0x0c9c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
12:11:19.0035 0x0c9c  \Device\Harddisk2\DR2 - detected TDSS File System ( 1 )
12:11:19.0035 0x0c9c  \Device\Harddisk2\DR2 ( TDSS File System ) - warning
12:11:21.0577 0x0c9c  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk4\DR4
12:11:21.0671 0x0c9c  \Device\Harddisk4\DR4 - ok
12:11:21.0671 0x0c9c  [ E5D1BF267A130BC345536D79674242AB ] \Device\Harddisk5\DR5
12:11:22.0139 0x0c9c  \Device\Harddisk5\DR5 - ok
12:11:22.0139 0x0c9c  ================ Scan VBR ==================================
12:11:22.0139 0x0c9c  [ C31001C9C54082D0ACD79611C34E3E6B ] \Device\Harddisk0\DR0\Partition1
12:11:22.0170 0x0c9c  \Device\Harddisk0\DR0\Partition1 - ok
12:11:22.0170 0x0c9c  [ CE4122B54B0B434609C91CE3277F89A3 ] \Device\Harddisk1\DR1\Partition1
12:11:22.0170 0x0c9c  \Device\Harddisk1\DR1\Partition1 - ok
12:11:22.0170 0x0c9c  [ 8233F3877224E402FFF44EEA7B7592D5 ] \Device\Harddisk2\DR2\Partition1
12:11:22.0217 0x0c9c  \Device\Harddisk2\DR2\Partition1 - ok
12:11:22.0233 0x0c9c  [ 08A2300FC4F0A955DE6CB8D77F737739 ] \Device\Harddisk2\DR2\Partition2
12:11:22.0233 0x0c9c  \Device\Harddisk2\DR2\Partition2 - ok
12:11:22.0233 0x0c9c  [ DD2E6F9BF244BBC1AADEEB9F2EF7AAC0 ] \Device\Harddisk4\DR4\Partition1
12:11:22.0279 0x0c9c  \Device\Harddisk4\DR4\Partition1 - ok
12:11:22.0279 0x0c9c  [ B6B05107272B80ECDDFB11FD229A717A ] \Device\Harddisk5\DR5\Partition1
12:11:22.0342 0x0c9c  \Device\Harddisk5\DR5\Partition1 - ok
12:11:22.0342 0x0c9c  ================ Scan active images ========================
12:11:22.0342 0x0c9c  [ 3E588B60EC061686BA05D33574A344C6, 19D2D863F95CCC4493A2328B6BEB04248B6A80F957532E58C1D1D868C19FDCCB ] C:\Windows\System32\drivers\crashdmp.sys
12:11:22.0342 0x0c9c  C:\Windows\System32\drivers\crashdmp.sys - ok
12:11:22.0342 0x0c9c  [ B3222734D80013D2C73841B0C549FA63, F712A301B74F4E55E37189B989E02E845B15BFAF70749DA4000DA26E40CCFC90 ] C:\Windows\System32\drivers\Diskdump.sys
12:11:22.0342 0x0c9c  C:\Windows\System32\drivers\Diskdump.sys - ok
12:11:22.0342 0x0c9c  [ 033D09CD953C40B4AFBA9DCB1D1DFB8E, 629BE54E64C8B3FFE9F52820F6BF2802D50F719F63A621C998865FFD61C9F84E ] C:\Windows\System32\drivers\amd_sata.sys
12:11:22.0342 0x0c9c  C:\Windows\System32\drivers\amd_sata.sys - ok
12:11:22.0357 0x0c9c  [ 814DB88F2641691575A455CF25354098, 79C50F0CD72612733217A0316BEFEA0B6D819C3159D9452EAB89AC26A18A0F89 ] C:\Windows\System32\drivers\dumpfve.sys
12:11:22.0357 0x0c9c  C:\Windows\System32\drivers\dumpfve.sys - ok
12:11:22.0357 0x0c9c  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] C:\Windows\System32\drivers\beep.sys
12:11:22.0357 0x0c9c  C:\Windows\System32\drivers\beep.sys - ok
12:11:22.0357 0x0c9c  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] C:\Windows\System32\drivers\cdrom.sys
12:11:22.0357 0x0c9c  C:\Windows\System32\drivers\cdrom.sys - ok
12:11:22.0357 0x0c9c  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] C:\Windows\System32\drivers\null.sys
12:11:22.0357 0x0c9c  C:\Windows\System32\drivers\null.sys - ok
12:11:22.0357 0x0c9c  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] C:\Windows\System32\drivers\RDPCDD.sys
12:11:22.0357 0x0c9c  C:\Windows\System32\drivers\RDPCDD.sys - ok
12:11:22.0373 0x0c9c  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] C:\Windows\System32\drivers\RDPENCDD.sys
12:11:22.0373 0x0c9c  C:\Windows\System32\drivers\RDPENCDD.sys - ok
12:11:22.0373 0x0c9c  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] C:\Windows\System32\drivers\RDPREFMP.sys
12:11:22.0373 0x0c9c  C:\Windows\System32\drivers\RDPREFMP.sys - ok
12:11:22.0373 0x0c9c  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] C:\Windows\System32\drivers\vga.sys
12:11:22.0373 0x0c9c  C:\Windows\System32\drivers\vga.sys - ok
12:11:22.0373 0x0c9c  [ E7353D59C9842BC7299FAEB7E7E09340, C37ED1025E07BAC2F535DCFED6C6C509515D95722EADE5AF94F1FC5D8B1DC783 ] C:\Windows\System32\drivers\videoprt.sys
12:11:22.0373 0x0c9c  C:\Windows\System32\drivers\videoprt.sys - ok
12:11:22.0373 0x0c9c  [ FC438D1430B28618E2D0C7C332A710AD, 873957B202E454E2C8F625E5799F278CAC16EC5EEAEE2C33E2FE5D1FF0408CB2 ] C:\Windows\System32\drivers\watchdog.sys
12:11:22.0373 0x0c9c  C:\Windows\System32\drivers\watchdog.sys - ok
12:11:22.0373 0x0c9c  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] C:\Windows\System32\drivers\msfs.sys
12:11:22.0373 0x0c9c  C:\Windows\System32\drivers\msfs.sys - ok
12:11:22.0389 0x0c9c  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] C:\Windows\System32\drivers\npfs.sys
12:11:22.0389 0x0c9c  C:\Windows\System32\drivers\npfs.sys - ok
12:11:22.0389 0x0c9c  [ 6F020A220388ECA0AB6062DC27BD16B6, 48655230E482DEB7B4B50EF05818EBB29CA61E780AEFCD9D31B02DE4DF9D9540 ] C:\Windows\System32\drivers\tdi.sys
12:11:22.0389 0x0c9c  C:\Windows\System32\drivers\tdi.sys - ok
12:11:22.0389 0x0c9c  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] C:\Windows\System32\drivers\tdx.sys
12:11:22.0389 0x0c9c  C:\Windows\System32\drivers\tdx.sys - ok
12:11:22.0389 0x0c9c  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] C:\Windows\System32\drivers\afd.sys
12:11:22.0389 0x0c9c  C:\Windows\System32\drivers\afd.sys - ok
12:11:22.0389 0x0c9c  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] C:\Windows\System32\drivers\netbt.sys
12:11:22.0389 0x0c9c  C:\Windows\System32\drivers\netbt.sys - ok
12:11:22.0404 0x0c9c  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] C:\Windows\System32\drivers\netbios.sys
12:11:22.0404 0x0c9c  C:\Windows\System32\drivers\netbios.sys - ok
12:11:22.0404 0x0c9c  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] C:\Windows\System32\drivers\pacer.sys
12:11:22.0404 0x0c9c  C:\Windows\System32\drivers\pacer.sys - ok
12:11:22.0404 0x0c9c  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] C:\Windows\System32\drivers\vwififlt.sys
12:11:22.0404 0x0c9c  C:\Windows\System32\drivers\vwififlt.sys - ok
12:11:22.0404 0x0c9c  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] C:\Windows\System32\drivers\wfplwf.sys
12:11:22.0404 0x0c9c  C:\Windows\System32\drivers\wfplwf.sys - ok
12:11:22.0404 0x0c9c  [ FB9BEF3401EE5ECC2603311B9C64F44A, 33F8B6C9593677A360F580554D4F95B9F580C4E28F8187FBB27D96AFBFA8C7C1 ] C:\Windows\System32\drivers\dtsoftbus01.sys
12:11:22.0404 0x0c9c  C:\Windows\System32\drivers\dtsoftbus01.sys - ok
12:11:22.0420 0x0c9c  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] C:\Windows\System32\drivers\serial.sys
12:11:22.0420 0x0c9c  C:\Windows\System32\drivers\serial.sys - ok
12:11:22.0420 0x0c9c  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] C:\Windows\System32\drivers\termdd.sys
12:11:22.0420 0x0c9c  C:\Windows\System32\drivers\termdd.sys - ok
12:11:22.0420 0x0c9c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] C:\Windows\System32\drivers\wanarp.sys
12:11:22.0420 0x0c9c  C:\Windows\System32\drivers\wanarp.sys - ok
12:11:22.0420 0x0c9c  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] C:\Windows\System32\drivers\mssmbios.sys
12:11:22.0420 0x0c9c  C:\Windows\System32\drivers\mssmbios.sys - ok
12:11:22.0420 0x0c9c  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] C:\Windows\System32\drivers\nsiproxy.sys
12:11:22.0420 0x0c9c  C:\Windows\System32\drivers\nsiproxy.sys - ok
12:11:22.0435 0x0c9c  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] C:\Windows\System32\drivers\rdbss.sys
12:11:22.0435 0x0c9c  C:\Windows\System32\drivers\rdbss.sys - ok
12:11:22.0435 0x0c9c  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] C:\Windows\System32\drivers\blbdrive.sys
12:11:22.0435 0x0c9c  C:\Windows\System32\drivers\blbdrive.sys - ok
12:11:22.0435 0x0c9c  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] C:\Windows\System32\drivers\dfsc.sys
12:11:22.0435 0x0c9c  C:\Windows\System32\drivers\dfsc.sys - ok
12:11:22.0435 0x0c9c  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] C:\Windows\System32\drivers\discache.sys
12:11:22.0435 0x0c9c  C:\Windows\System32\drivers\discache.sys - ok
12:11:22.0435 0x0c9c  [ F6BDA026E4157DC4E321CA391E9D9BC6, D38774B8F812816DA43A0C52EEC566BBC44F57A6614BC84F1417C4227286B594 ] C:\Windows\SysWOW64\drivers\AsIO.sys
12:11:22.0435 0x0c9c  C:\Windows\SysWOW64\drivers\AsIO.sys - ok
12:11:22.0451 0x0c9c  [ 26D66E32E78D3059715B3A17BC679CD9, 5039CB81CE0829C5F3DED16A4005FEB10141C6C9B473CC319E81BAF6D1DA33E3 ] C:\Windows\SysWOW64\drivers\AsUpIO.sys
12:11:22.0451 0x0c9c  C:\Windows\SysWOW64\drivers\AsUpIO.sys - ok
12:11:22.0451 0x0c9c  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] C:\Windows\System32\drivers\amdppm.sys
12:11:22.0451 0x0c9c  C:\Windows\System32\drivers\amdppm.sys - ok
12:11:22.0451 0x0c9c  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] C:\Windows\System32\drivers\tunnel.sys
12:11:22.0451 0x0c9c  C:\Windows\System32\drivers\tunnel.sys - ok
12:11:22.0451 0x0c9c  [ CAAAC014C5C56A69F710B5F1B836DE22, DA98EF2EBF9A7F180344A88CC2C74F69101E17BBAB58B1C46176FD6EE7AA2E6A ] C:\Windows\System32\ntdll.dll
12:11:22.0451 0x0c9c  C:\Windows\System32\ntdll.dll - ok
12:11:22.0451 0x0c9c  [ F0970A4BC8395659C22BF53D0FADF16F, 23BE3066D89A5ACBF8130899640D377476E78B6C3D19E2D13C32238464A83E21 ] C:\Windows\System32\smss.exe
12:11:22.0451 0x0c9c  C:\Windows\System32\smss.exe - ok
12:11:22.0451 0x0c9c  [ 62B88833AB7B678E9790117ED01E096F, 01E7A8A504F558B065B4A3B01EA5DF0480B721CE2EFF37EA5C0C7BC934D7A229 ] C:\Windows\System32\drivers\atikmpag.sys
12:11:22.0451 0x0c9c  C:\Windows\System32\drivers\atikmpag.sys - ok
12:11:22.0467 0x0c9c  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93, 7BC847CE6C2D29C334F0D1600BBBDE3933FF45F6BEE5186F442E6270A3F9EC4E ] C:\Windows\System32\autochk.exe
12:11:22.0467 0x0c9c  C:\Windows\System32\autochk.exe - ok
12:11:22.0467 0x0c9c  [ 13566D265888EA814CFB3D64430F74F0, BA9C0105BE1ED9FB49B59CDA53AB5B69AAC34B91E33C46A2A5360DFC565A7940 ] C:\Windows\System32\drivers\atikmdag.sys
12:11:22.0467 0x0c9c  C:\Windows\System32\drivers\atikmdag.sys - ok
12:11:22.0467 0x0c9c  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] C:\Windows\System32\drivers\dxgkrnl.sys
12:11:22.0467 0x0c9c  C:\Windows\System32\drivers\dxgkrnl.sys - ok
12:11:22.0467 0x0c9c  [ 1F04CFB79DD5FB7694468CE3FB3DCC31, A40C0BF6D1EC6C4281611A830EA7B22FEF523A3E197E5A8F59332D64E90376B6 ] C:\Windows\System32\drivers\dxgmms1.sys
12:11:22.0467 0x0c9c  C:\Windows\System32\drivers\dxgmms1.sys - ok
12:11:22.0467 0x0c9c  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] C:\Windows\System32\drivers\hdaudbus.sys
12:11:22.0467 0x0c9c  C:\Windows\System32\drivers\hdaudbus.sys - ok
12:11:22.0482 0x0c9c  [ F6D625FF7B56BB6EA063F0D3A5BBC996, 830196E96C120367BDA8C0EC9D7B85A642D41E8108189B1A72193299A6C005B1 ] C:\Windows\System32\drivers\nusb3xhc.sys
12:11:22.0482 0x0c9c  C:\Windows\System32\drivers\nusb3xhc.sys - ok
12:11:22.0482 0x0c9c  [ FFA06EF43987ED0DD42AD59B260C0C78, 260518D5E077E55E0F2099037DBEFA93016FD4D4655456DDB3147AF9CBE7BF6B ] C:\Windows\System32\drivers\usbd.sys
12:11:22.0482 0x0c9c  C:\Windows\System32\drivers\usbd.sys - ok
12:11:22.0482 0x0c9c  [ 5A4AC5D05A7C97C68596416C05D6F2B4, 1CDE5172B763D2D65379B9F3ABACC080AF676DB9354EC98A455E620C4CE3E18A ] C:\Windows\System32\drivers\usbfilter.sys
12:11:22.0482 0x0c9c  C:\Windows\System32\drivers\usbfilter.sys - ok
12:11:22.0482 0x0c9c  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] C:\Windows\System32\drivers\usbohci.sys
12:11:22.0482 0x0c9c  C:\Windows\System32\drivers\usbohci.sys - ok
12:11:22.0482 0x0c9c  [ 12FEB33791920678F8433701C822BCFD, 7D1AD944CF0532D5AF951ACCE064EA9288F068964603674854CD7658D2B96039 ] C:\Windows\System32\drivers\usbport.sys
12:11:22.0482 0x0c9c  C:\Windows\System32\drivers\usbport.sys - ok
12:11:22.0498 0x0c9c  [ 19B006B181E3875FD254F7B67ACF1E7C, 1D68D19522E71F16B8B50F8CCFBC9D884CF2DAC40CC409BD5A40A4D4223ABC61 ] C:\Windows\System32\drivers\ASACPI.sys
12:11:22.0498 0x0c9c  C:\Windows\System32\drivers\ASACPI.sys - ok
12:11:22.0498 0x0c9c  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] C:\Windows\System32\drivers\serenum.sys
12:11:22.0498 0x0c9c  C:\Windows\System32\drivers\serenum.sys - ok
12:11:22.0498 0x0c9c  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] C:\Windows\System32\drivers\usbehci.sys
12:11:22.0498 0x0c9c  C:\Windows\System32\drivers\usbehci.sys - ok
12:11:22.0498 0x0c9c  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] C:\Windows\System32\drivers\1394ohci.sys
12:11:22.0498 0x0c9c  C:\Windows\System32\drivers\1394ohci.sys - ok
12:11:22.0498 0x0c9c  [ EE082E06A82FF630351D1E0EBBD3D8D0, 537F1A4108BDA72E8DD271466E7B7FCF39D4D55E4129AB35A409AB7AF2E7D219 ] C:\Windows\System32\drivers\Rt64win7.sys
12:11:22.0498 0x0c9c  C:\Windows\System32\drivers\Rt64win7.sys - ok
12:11:22.0513 0x0c9c  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] C:\Windows\System32\drivers\CompositeBus.sys
12:11:22.0513 0x0c9c  C:\Windows\System32\drivers\CompositeBus.sys - ok
12:11:22.0513 0x0c9c  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] C:\Windows\System32\drivers\wmiacpi.sys
12:11:22.0513 0x0c9c  C:\Windows\System32\drivers\wmiacpi.sys - ok
12:11:22.0513 0x0c9c  [ E0D3CD5841E5C7BE7B94BA946AF1E498, 4EAE1B226255623DA41A047633994D6902F6D4CA5757BF5D85E227378336227F ] C:\Windows\System32\drivers\drmk.sys
12:11:22.0513 0x0c9c  C:\Windows\System32\drivers\drmk.sys - ok
12:11:22.0513 0x0c9c  [ 24FBF5CC5C04150073C315A7C83521EE, 581BD5F15B5E57B3BAA762E421FFD859FDA46DDB8515C2A7AAFF208D784E906C ] C:\Windows\System32\drivers\ks.sys
12:11:22.0513 0x0c9c  C:\Windows\System32\drivers\ks.sys - ok
12:11:22.0513 0x0c9c  [ 1E0B4CBBA91C6B041A14ECC2186F7E24, 63039A317F906454A0652704DA2D646658A148B9B55BFB5D2F4B27997F357DF9 ] C:\Windows\System32\drivers\portcls.sys
12:11:22.0513 0x0c9c  C:\Windows\System32\drivers\portcls.sys - ok
12:11:22.0529 0x0c9c  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] C:\Windows\System32\drivers\ksthunk.sys
12:11:22.0529 0x0c9c  C:\Windows\System32\drivers\ksthunk.sys - ok
12:11:22.0529 0x0c9c  [ AD12F5C7251BB8D575D560894E73CBBA, FAAA1440CBBDC889C0B8917065B932A9CC86E5C0FD5845D8830482915AF83F40 ] C:\Windows\System32\drivers\WsAudio_DeviceS(1).sys
12:11:22.0529 0x0c9c  C:\Windows\System32\drivers\WsAudio_DeviceS(1).sys - ok
12:11:22.0529 0x0c9c  [ AD12F5C7251BB8D575D560894E73CBBA, FAAA1440CBBDC889C0B8917065B932A9CC86E5C0FD5845D8830482915AF83F40 ] C:\Windows\System32\drivers\WsAudio_DeviceS(2).sys
12:11:22.0529 0x0c9c  C:\Windows\System32\drivers\WsAudio_DeviceS(2).sys - ok
12:11:22.0529 0x0c9c  [ AD12F5C7251BB8D575D560894E73CBBA, FAAA1440CBBDC889C0B8917065B932A9CC86E5C0FD5845D8830482915AF83F40 ] C:\Windows\System32\drivers\WsAudio_DeviceS(3).sys
12:11:22.0529 0x0c9c  C:\Windows\System32\drivers\WsAudio_DeviceS(3).sys - ok
12:11:22.0529 0x0c9c  [ AD12F5C7251BB8D575D560894E73CBBA, FAAA1440CBBDC889C0B8917065B932A9CC86E5C0FD5845D8830482915AF83F40 ] C:\Windows\System32\drivers\WsAudio_DeviceS(4).sys
12:11:22.0529 0x0c9c  C:\Windows\System32\drivers\WsAudio_DeviceS(4).sys - ok
12:11:22.0529 0x0c9c  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] C:\Windows\System32\drivers\agilevpn.sys
12:11:22.0529 0x0c9c  C:\Windows\System32\drivers\agilevpn.sys - ok
12:11:22.0545 0x0c9c  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] C:\Windows\System32\drivers\bridge.sys
12:11:22.0545 0x0c9c  C:\Windows\System32\drivers\bridge.sys - ok
12:11:22.0545 0x0c9c  [ B9DCEA6D9EC0E9192B2C44C5454E6FED, AAEB904884598F8F878F6CDAF3A068A98417D05D17D6D29E7403609B48D537C8 ] C:\Windows\System32\drivers\clwvd6.sys
12:11:22.0545 0x0c9c  C:\Windows\System32\drivers\clwvd6.sys - ok
12:11:22.0545 0x0c9c  [ AD12F5C7251BB8D575D560894E73CBBA, FAAA1440CBBDC889C0B8917065B932A9CC86E5C0FD5845D8830482915AF83F40 ] C:\Windows\System32\drivers\WsAudio_DeviceS(5).sys
12:11:22.0545 0x0c9c  C:\Windows\System32\drivers\WsAudio_DeviceS(5).sys - ok
12:11:22.0545 0x0c9c  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] C:\Windows\System32\drivers\ndistapi.sys
12:11:22.0545 0x0c9c  C:\Windows\System32\drivers\ndistapi.sys - ok
12:11:22.0545 0x0c9c  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] C:\Windows\System32\drivers\ndiswan.sys
12:11:22.0545 0x0c9c  C:\Windows\System32\drivers\ndiswan.sys - ok
12:11:22.0560 0x0c9c  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] C:\Windows\System32\drivers\rasl2tp.sys
12:11:22.0560 0x0c9c  C:\Windows\System32\drivers\rasl2tp.sys - ok
12:11:22.0560 0x0c9c  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] C:\Windows\System32\drivers\raspppoe.sys
12:11:22.0560 0x0c9c  C:\Windows\System32\drivers\raspppoe.sys - ok
12:11:22.0560 0x0c9c  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] C:\Windows\System32\drivers\raspptp.sys
12:11:22.0560 0x0c9c  C:\Windows\System32\drivers\raspptp.sys - ok
12:11:22.0560 0x0c9c  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] C:\Windows\System32\drivers\rassstp.sys
12:11:22.0560 0x0c9c  C:\Windows\System32\drivers\rassstp.sys - ok
12:11:22.0560 0x0c9c  [ 6A2EEB0C4133B20773BB3DD0B7B377B4, E4CB35C6937C70A145A13E5AE5B34A271B49101DA623171ACBFDA8601E5A70EA ] C:\Windows\System32\drivers\amdiox64.sys
12:11:22.0560 0x0c9c  C:\Windows\System32\drivers\amdiox64.sys - ok
12:11:22.0576 0x0c9c  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] C:\Windows\System32\drivers\kbdclass.sys
12:11:22.0576 0x0c9c  C:\Windows\System32\drivers\kbdclass.sys - ok
12:11:22.0576 0x0c9c  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] C:\Windows\System32\drivers\mouclass.sys
12:11:22.0576 0x0c9c  C:\Windows\System32\drivers\mouclass.sys - ok
12:11:22.0576 0x0c9c  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] C:\Windows\System32\drivers\swenum.sys
12:11:22.0576 0x0c9c  C:\Windows\System32\drivers\swenum.sys - ok
12:11:22.0576 0x0c9c  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] C:\Windows\System32\drivers\umbus.sys
12:11:22.0576 0x0c9c  C:\Windows\System32\drivers\umbus.sys - ok
12:11:22.0576 0x0c9c  [ 285ACEC1B13A15BA520AAE06BACB9CFF, A6F576763818D4EAB2CDA3857F2963F61FDA67D7B581C52E1EB1DDB32FD642C3 ] C:\Windows\System32\drivers\nusb3hub.sys
12:11:22.0576 0x0c9c  C:\Windows\System32\drivers\nusb3hub.sys - ok
12:11:22.0591 0x0c9c  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] C:\Windows\System32\drivers\usbhub.sys
12:11:22.0591 0x0c9c  C:\Windows\System32\drivers\usbhub.sys - ok
12:11:22.0591 0x0c9c  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] C:\Windows\System32\drivers\ndproxy.sys
12:11:22.0591 0x0c9c  C:\Windows\System32\drivers\ndproxy.sys - ok
12:11:22.0591 0x0c9c  [ 33497249626E7787AA5CEA99B226CCA6, EF6213B79F83334CD95E4A58A4FE64190AA3FEFF590E41C4BF302FC4A8F6D6D6 ] C:\Windows\System32\drivers\AtihdW76.sys
12:11:22.0591 0x0c9c  C:\Windows\System32\drivers\AtihdW76.sys - ok
12:11:22.0591 0x0c9c  [ A3BCBD0F710580A07D1B929D787D36CE, D7608C1C2B2FF4DD0C4CEBC75594ADA35A6911A541ED5FF93AAB8610108E168A ] C:\Windows\System32\drivers\RTKVHD64.sys
12:11:22.0591 0x0c9c  C:\Windows\System32\drivers\RTKVHD64.sys - ok
12:11:22.0591 0x0c9c  [ F7CE0C81C545364020ED8203CF0A633E, 24B47A7492B7048096AF87E26786E8108455ADBD1A374B6A0466DE008505B8A9 ] C:\Windows\System32\difxapi.dll
12:11:22.0591 0x0c9c  C:\Windows\System32\difxapi.dll - ok
12:11:22.0591 0x0c9c  [ D87E1E59C73C1F98D5DED5B3850C40F5, 536419BFF9F877D4314B5D0C045D9A6E729489C389863FADF07E382050BC84FD ] C:\Windows\System32\psapi.dll
12:11:22.0591 0x0c9c  C:\Windows\System32\psapi.dll - ok
12:11:22.0607 0x0c9c  [ 83404DCBCE4925B6A5A77C5170F46D86, D669614D0B4461DB244AD99FBE1BA92CEB9B4ED5EC8E987E23764E77D9AC7074 ] C:\Windows\System32\sechost.dll
12:11:22.0607 0x0c9c  C:\Windows\System32\sechost.dll - ok
12:11:22.0607 0x0c9c  [ 4E4FFB09D895AA000DD56D1404F69A7E, D999E04BB35780088480EAB322176570591A21E311D204BDCAB010A63B34D24C ] C:\Windows\System32\Wldap32.dll
12:11:22.0607 0x0c9c  C:\Windows\System32\Wldap32.dll - ok
12:11:22.0607 0x0c9c  [ EAF32CB8C1F810E4715B4DFBE785C7FF, DB6AD07FDED42433E669508AB73FAFF6DAFF04575D6F1D016FE3EB6ECEC4DD5D ] C:\Windows\System32\shlwapi.dll
12:11:22.0607 0x0c9c  C:\Windows\System32\shlwapi.dll - ok
12:11:22.0607 0x0c9c  [ 044FE45FFD6AD40E3BBBE60B7F41BABE, A1688A5E6E0F7037C850699462C2655006A7D873C97F9AB406C59D81749B6F09 ] C:\Windows\System32\nsi.dll
12:11:22.0607 0x0c9c  C:\Windows\System32\nsi.dll - ok
12:11:22.0607 0x0c9c  [ 6C60B5ACA7442EFB794082CDACFC001C, FC1D9124856A70FF232EF3057D66BEE803295847624CE23B4D0217F23AF52C75 ] C:\Windows\System32\ole32.dll
12:11:22.0607 0x0c9c  C:\Windows\System32\ole32.dll - ok
12:11:22.0623 0x0c9c  [ 75498A52C2AE248DEE5BDF5209768963, F200077B40B1B75004EE5436939C9E7F50871E824DDCC8403A6BA3823A2717D0 ] C:\Windows\System32\iertutil.dll
12:11:22.0623 0x0c9c  C:\Windows\System32\iertutil.dll - ok
12:11:22.0623 0x0c9c  [ 9835E63E09F824D22B689D2BB789BAB9, 5BCFFAFB894D69FBCDDB91E64D30A356F4BD57098E8B4C51B98AFAF6581BDB63 ] C:\Windows\System32\comdlg32.dll
12:11:22.0623 0x0c9c  C:\Windows\System32\comdlg32.dll - ok
12:11:22.0623 0x0c9c  [ D2A513EE880D71BDE7F0257F38B9D019, 7BDBFEA312061C0498E4C09EF5E4B3AAA23309E7448028F67EAA6F8F7188E871 ] C:\Windows\System32\kernel32.dll
12:11:22.0623 0x0c9c  C:\Windows\System32\kernel32.dll - ok
12:11:22.0623 0x0c9c  [ AA2C08CE85653B1A0D2E4AB407FA176C, 83DFD0C119B20AEDB07114C9D1CF9CE2DFA938D0F1070256B0591A9E2C3997FA ] C:\Windows\System32\imm32.dll
12:11:22.0623 0x0c9c  C:\Windows\System32\imm32.dll - ok
12:11:22.0623 0x0c9c  [ 63A580C88CFAF72A92550940054569EF, A66C89123D1833446ACC31D5CF536B0D0EC24D2F805C022A637596CF98429D9F ] C:\Windows\System32\advapi32.dll
12:11:22.0623 0x0c9c  C:\Windows\System32\advapi32.dll - ok
12:11:22.0638 0x0c9c  [ 796B47A4B82EF1C39F13435B88834C48, AFC3E89476BAAD8A71663F0DB8D15E00FF9D131F1306A2F69D728E3AD1184602 ] C:\Windows\System32\lpk.dll
12:11:22.0638 0x0c9c  C:\Windows\System32\lpk.dll - ok
12:11:22.0638 0x0c9c  [ 28C0B5024F5C5A438E78B188CFC81B7F, AB81FB63F2908CE316B45609077ACBD85F4B2AAD1606B1E9030F06DB82EDDFAD ] C:\Windows\System32\normaliz.dll
12:11:22.0638 0x0c9c  C:\Windows\System32\normaliz.dll - ok
12:11:22.0638 0x0c9c  [ FE70103391A64039A921DBFFF9C7AB1B, F7D219D75037BC98F6C69143B00AB6000A31F8B5E211E0AF514F4F4B681522A0 ] C:\Windows\System32\user32.dll
12:11:22.0638 0x0c9c  C:\Windows\System32\user32.dll - ok
12:11:22.0638 0x0c9c  [ AE57F6C7AB3ED244B5F14151C4EA0057, 60BAF0909C60B2387E2972EBBC77140E9E982549F0746EE26AF4EFB4E9FD77A4 ] C:\Windows\System32\shell32.dll
12:11:22.0638 0x0c9c  C:\Windows\System32\shell32.dll - ok
12:11:22.0638 0x0c9c  [ 4BBFA57F594F7E8A8EDC8F377184C3F0, 9F3AC5DEA5A6250C3DBB97AF79C81C0A48429486521F807355A1D7D3D861B75F ] C:\Windows\System32\ws2_32.dll
12:11:22.0638 0x0c9c  C:\Windows\System32\ws2_32.dll - ok
12:11:22.0638 0x0c9c  [ 39EBB9708453036A74C30C9A294023FF, 2158C48C046F2FBDFEC2F449F8EBA376ED9086E427A4BEDE8033A29F7415753E ] C:\Windows\System32\wininet.dll
12:11:22.0638 0x0c9c  C:\Windows\System32\wininet.dll - ok
12:11:22.0654 0x0c9c  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5, 12130837D7F89A2C7E9D25747A8E5B9001E0A38D545178B49B450C23AE62664A ] C:\Windows\System32\setupapi.dll
12:11:22.0654 0x0c9c  C:\Windows\System32\setupapi.dll - ok
12:11:22.0654 0x0c9c  [ C391FC68282A000CDF953F8B6B55D2EF, 1CB0DAB84545D9FDEA5A7865A1E7132CEAC91DECF8B100285B63098D7B09E584 ] C:\Windows\System32\msvcrt.dll
12:11:22.0654 0x0c9c  C:\Windows\System32\msvcrt.dll - ok
12:11:22.0654 0x0c9c  [ F947D57534E01E3CA597BCF2AD8AE65B, 498A87443CE3344F82B19D4903F128337B5B3DA49D3C208F796394DA6B3A8946 ] C:\Windows\System32\rpcrt4.dll
12:11:22.0654 0x0c9c  C:\Windows\System32\rpcrt4.dll - ok
12:11:22.0654 0x0c9c  [ FECA80905D551074E1A9298BD98103B7, 5655D56CDDE306CB350EAF90CEFCAC645D13A6E0BF78DE9372039205AA9C7BD0 ] C:\Windows\System32\urlmon.dll
12:11:22.0654 0x0c9c  C:\Windows\System32\urlmon.dll - ok
12:11:22.0654 0x0c9c  [ 088CF6AFCD5CDD44E40C0ACDE3C1A5E0, AC6AFCAE3A58AAABC972B3D6A1ED383A59910C689F38D9D4A059A0A535BA1039 ] C:\Windows\System32\usp10.dll
12:11:22.0654 0x0c9c  C:\Windows\System32\usp10.dll - ok
12:11:22.0669 0x0c9c  [ 860528C9E50AB84935843B23A80E665E, 1BBC4FC384A2C9B2E30DC8D84C435A6A8E1993F074CDBF0A6A3AC774A3E62AD4 ] C:\Windows\System32\gdi32.dll
12:11:22.0669 0x0c9c  C:\Windows\System32\gdi32.dll - ok
12:11:22.0669 0x0c9c  [ C431EAF5CAA1C82CAC2534A2EAB348A3, ADDF850128DC675E67FABA9A3D0D27E684F01F733962CA22927BB94503549E44 ] C:\Windows\System32\msctf.dll
12:11:22.0669 0x0c9c  C:\Windows\System32\msctf.dll - ok
12:11:22.0669 0x0c9c  [ 25983DE69B57142039AC8D95E71CD9C9, A677DA7EBCBCB6073D27E8A38809F51E971E83ED379BC599AAAD6EF4216348DA ] C:\Windows\System32\clbcatq.dll
12:11:22.0669 0x0c9c  C:\Windows\System32\clbcatq.dll - ok
12:11:22.0669 0x0c9c  [ B4F29F65AD3114051F01E9403346047F, 7EB58545211C51E95B3F45C47C1F7CCE05B707D168E7C20F46D36E19EE3D8DFC ] C:\Windows\System32\imagehlp.dll
12:11:22.0669 0x0c9c  C:\Windows\System32\imagehlp.dll - ok
12:11:22.0669 0x0c9c  [ C06B32165E23A72A898B7A89679AD754, 721405158F6E9F1A7FE7BB33EF642D91332726629D0D3B07DF3CF3152A91C85D ] C:\Windows\System32\oleaut32.dll
12:11:22.0669 0x0c9c  C:\Windows\System32\oleaut32.dll - ok
12:11:22.0669 0x0c9c  [ 780F6ECC4F55D76C9730E6B6C9B31913, 1AEA642AFA210A672A92AAA49CFDE52D9E48ED41248F7644FAADE760E8A0E72E ] C:\Windows\System32\crypt32.dll
12:11:22.0669 0x0c9c  C:\Windows\System32\crypt32.dll - ok
12:11:22.0685 0x0c9c  [ 0E6FBF19D9DFBB77316C23DF91F8A101, 680F88E1BC55EA3342AACE6F2E3511BF877AC8F03276D028FEE84EEFE8B5611A ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
12:11:22.0685 0x0c9c  C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
12:11:22.0685 0x0c9c  [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A, 445C2857398252756FD25BB94DAFCCEFF573DE55F1F8BF9094C191F409FE6437 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
12:11:22.0685 0x0c9c  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
12:11:22.0685 0x0c9c  [ 2477A28081BDAEE622CF045ACF8EE124, 00A09CAF9129E84FEEA98FA03CE9012C9F961B64FEE15C4F268822C0F82ACC3C ] C:\Windows\System32\cfgmgr32.dll
12:11:22.0685 0x0c9c  C:\Windows\System32\cfgmgr32.dll - ok
12:11:22.0685 0x0c9c  [ 9028D1621C43DF8DFBD1C76860412A11, A1D48D9B33180BDE50D2FA9BB07E9520B7B7788C39B3AABB4A06AE4B1AACA755 ] C:\Windows\System32\comctl32.dll
12:11:22.0685 0x0c9c  C:\Windows\System32\comctl32.dll - ok
12:11:22.0685 0x0c9c  [ 959041D7014C97133D859B45BCA0FC58, 282D34828DA7404470949483CB9789A8B4861D188093F0FBD07138A37F60B94B ] C:\Windows\System32\wintrust.dll
12:11:22.0685 0x0c9c  C:\Windows\System32\wintrust.dll - ok
12:11:22.0701 0x0c9c  [ F49E92B50CED5C9F1725D3C0329FD933, 6155FA4D8242F07FC578FF746890C2EE19FC3D6A20ED8AE4C6F021DB2DAC184F ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
12:11:22.0701 0x0c9c  C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
12:11:22.0701 0x0c9c  [ 06FEC9E8117103BB1141A560E98077DA, C5E61B11DDBBBBBA3D9488970524F0975EA5FBDF16E2FA31F579F8BFA48353B1 ] C:\Windows\System32\devobj.dll
12:11:22.0701 0x0c9c  C:\Windows\System32\devobj.dll - ok
12:11:22.0701 0x0c9c  [ 851BB346CD59D9B3BC8854384C7DD5C3, 0CA1BCBDA6CB8CAC1186B3BE13C3937EDF46264FDFFCEBDF94C7EB10DE957DC6 ] C:\Windows\System32\KernelBase.dll
12:11:22.0701 0x0c9c  C:\Windows\System32\KernelBase.dll - ok
12:11:22.0701 0x0c9c  [ 64A4AB126E24FD3F58EBE64852773DB5, ED425BBC91EB8BEF54C363036A770C551C97EF324F1AE31049CA750D0E2D6776 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
12:11:22.0701 0x0c9c  C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
12:11:22.0701 0x0c9c  [ 72723D3E4781BADC62C3180C137E7B23, 0BDA5292928578C5DA79C761E15B8A892B9D4A3DA26D3635E714797C653CF492 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
12:11:22.0701 0x0c9c  C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
12:11:22.0716 0x0c9c  [ 9094039A00485F71C4DE64BF51F64C46, 4ACFEF4C747ADF806A4FDEDDFD9CC48168DFB05075306C77D3F3927749DD7484 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
12:11:22.0716 0x0c9c  C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
12:11:22.0716 0x0c9c  [ 884415BD4269C02EAF8E2613BF85500D, EFE771709EC942694FD206AC8D0A48ED7DCD35036F074268E4AECD68AC982CEA ] C:\Windows\System32\msasn1.dll
12:11:22.0716 0x0c9c  C:\Windows\System32\msasn1.dll - ok
12:11:22.0716 0x0c9c  [ 2C942733A5983DD4502219FF37C7EBC7, 34B20B6B0D7274E4B5B783F1D2345BC3DD9888964D5C2C65712F041A00CF5B45 ] C:\Windows\System32\profapi.dll
12:11:22.0716 0x0c9c  C:\Windows\System32\profapi.dll - ok
12:11:22.0716 0x0c9c  [ 7A17485DC7D8A7AC81321A42CD034519, 88D8705FA901793FC8C1CFD0175E49A6502BF0FC94A066BA573D2FD13AA5F04A ] C:\Windows\System32\userenv.dll
12:11:22.0716 0x0c9c  C:\Windows\System32\userenv.dll - ok
12:11:22.0716 0x0c9c  [ 9C278785347BCC991F8EA2999D90F58D, EA680C3642A6ABF627415AEE019956FAC702DC6A8F4B4D0FC8A4FB21EADD3896 ] C:\Windows\SysWOW64\normaliz.dll
12:11:22.0716 0x0c9c  C:\Windows\SysWOW64\normaliz.dll - ok
12:11:22.0732 0x0c9c  [ BF24D6F2ED97FE830BFD52B246F98E67, 6BBF4C4221A245462EF653798F6B416EEB12594AD1CB4E8BC8908A8CB2F53384 ] C:\Windows\System32\drivers\dxapi.sys
12:11:22.0732 0x0c9c  C:\Windows\System32\drivers\dxapi.sys - ok
12:11:22.0732 0x0c9c  [ A347EF56B7CD8360B3EF7772FEA597B9, 29FD47110ED21C4F0178C065AD05789A8387B6704CE1BA94C851C9785662CF95 ] C:\Windows\System32\win32k.sys
12:11:22.0732 0x0c9c  C:\Windows\System32\win32k.sys - ok
12:11:22.0732 0x0c9c  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\System32\basesrv.dll
12:11:22.0732 0x0c9c  C:\Windows\System32\basesrv.dll - ok
12:11:22.0732 0x0c9c  [ 216BABD555BC550952320EEA89C25DDF, 1BBB92415280032CD18F361382A69D0D91266AAD56FC88A99C804B0053743D72 ] C:\Windows\System32\csrsrv.dll
12:11:22.0732 0x0c9c  C:\Windows\System32\csrsrv.dll - ok
12:11:22.0732 0x0c9c  [ 60C2862B4BF0FD9F582EF344C2B1EC72, CB1C6018FC5C15483AC5BB96E5C2E2E115BB0C0E1314837D77201BAB37E8C03A ] C:\Windows\System32\csrss.exe
12:11:22.0732 0x0c9c  C:\Windows\System32\csrss.exe - ok
12:11:22.0732 0x0c9c  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\System32\winsrv.dll
12:11:22.0732 0x0c9c  C:\Windows\System32\winsrv.dll - ok
12:11:22.0747 0x0c9c  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] C:\Windows\System32\drivers\monitor.sys
12:11:22.0747 0x0c9c  C:\Windows\System32\drivers\monitor.sys - ok
12:11:22.0747 0x0c9c  [ F29FE765E1448EF371CFE05BFAC74ADB, F251581222D78543272FD4B14A6A59F4B0E0CC44A5FCBCF56DE4CA5783F78A75 ] C:\Windows\System32\tsddd.dll
12:11:22.0747 0x0c9c  C:\Windows\System32\tsddd.dll - ok
12:11:22.0747 0x0c9c  [ C2A8CB1275ECB85D246A9ECC02A728E3, 3603FADCA0060BD201148F9D59E4E2627F024609A6463AB525B5D1AD17BDCD10 ] C:\Windows\System32\RpcRtRemote.dll
12:11:22.0747 0x0c9c  C:\Windows\System32\RpcRtRemote.dll - ok
12:11:22.0747 0x0c9c  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\System32\sxssrv.dll
12:11:22.0747 0x0c9c  C:\Windows\System32\sxssrv.dll - ok
12:11:22.0747 0x0c9c  [ 94355C28C1970635A31B3FE52EB7CEBA, C4E98F07170CEC69CACDD5CEDB8927E48A2A299CB1B8CDA87526E768AF6174F0 ] C:\Windows\System32\wininit.exe
12:11:22.0747 0x0c9c  C:\Windows\System32\wininit.exe - ok
12:11:22.0763 0x0c9c  [ 78523A26F5604C0568FE9D1CE86E36F4, 534A7228BF69719106F581616A32EAEF0B770DDB36DCE94F84E7D52FDB1382B5 ] C:\Windows\System32\KBDUS.DLL
12:11:22.0763 0x0c9c  C:\Windows\System32\KBDUS.DLL - ok
12:11:22.0763 0x0c9c  [ 943F527DF79E6B400104341AA7023C75, 53C7B9426181D3D172E6B1A07E6DF8A0CB8FCA27D3A03CE5F544D3209B5F4651 ] C:\Windows\System32\cdd.dll
12:11:22.0763 0x0c9c  C:\Windows\System32\cdd.dll - ok
12:11:22.0763 0x0c9c  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] C:\Windows\System32\drivers\usbccgp.sys
12:11:22.0763 0x0c9c  C:\Windows\System32\drivers\usbccgp.sys - ok
12:11:22.0763 0x0c9c  [ B26B1801356760841C3BC69F9F91537F, 83B9DF333E36C09E81D44E12AE5BE14650126FDA0CF4A0EA853BF40C5780EF81 ] C:\Windows\System32\WlS0WndH.dll
12:11:22.0763 0x0c9c  C:\Windows\System32\WlS0WndH.dll - ok
12:11:22.0763 0x0c9c  [ 80E52EF092F3DAD03E0EE15E64F97245, D3BAFEBA95C9FC96945F47134F617695B48F5C67E26526D99D8D85DC39737F8A ] C:\Windows\System32\drivers\BrSerIf.sys
12:11:22.0763 0x0c9c  C:\Windows\System32\drivers\BrSerIf.sys - ok
12:11:22.0779 0x0c9c  [ 601CB966FFFEBC6806626DC8E7AA0EF2, 34208A23F48C60C52144C02D4E157D3057E9DE7D46ECB4246A521BEBB261F446 ] C:\Windows\System32\drivers\BrUsbSer.sys
12:11:22.0779 0x0c9c  C:\Windows\System32\drivers\BrUsbSer.sys - ok
12:11:22.0779 0x0c9c  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] C:\Windows\System32\drivers\usbprint.sys
12:11:22.0779 0x0c9c  C:\Windows\System32\drivers\usbprint.sys - ok
12:11:22.0779 0x0c9c  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] C:\Windows\System32\drivers\usbscan.sys
12:11:22.0779 0x0c9c  C:\Windows\System32\drivers\usbscan.sys - ok
12:11:22.0779 0x0c9c  [ 9CEAD32E79A62150FE9F8557E58E008B, AFE4C1725EE94D7DE0749AE1495A4E5CC33C369F29B2A589DA66FFE27FF9777E ] C:\Windows\System32\sxs.dll
12:11:22.0779 0x0c9c  C:\Windows\System32\sxs.dll - ok
12:11:22.0779 0x0c9c  [ 784FA3DF338E2E8F5F0389D6FAC428AF, 9C8AA0CFDEB9E38AAF8EB08626070E0F0364F4F8A793CFE3532EC6C007980C34 ] C:\Windows\System32\cryptbase.dll
12:11:22.0779 0x0c9c  C:\Windows\System32\cryptbase.dll - ok
12:11:22.0794 0x0c9c  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] C:\Windows\System32\drivers\USBSTOR.SYS
12:11:22.0794 0x0c9c  C:\Windows\System32\drivers\USBSTOR.SYS - ok
12:11:22.0794 0x0c9c  [ 90499F3163A9F815CF196A205EA3CD5D, 29B4ED3795CEC1177EB367132914CE21C194CDEC5DB9DC923FD928C85E94D821 ] C:\Windows\System32\apphelp.dll
12:11:22.0794 0x0c9c  C:\Windows\System32\apphelp.dll - ok
12:11:22.0794 0x0c9c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] C:\Windows\System32\lsass.exe
12:11:22.0794 0x0c9c  C:\Windows\System32\lsass.exe - ok
12:11:22.0794 0x0c9c  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\System32\services.exe
12:11:22.0794 0x0c9c  C:\Windows\System32\services.exe - ok
12:11:22.0794 0x0c9c  [ EE4B105F1DBE1E864AFC72E7F0315432, 0E69A25BA7ED920B3103F219D3BF117D8CEFBD4DC74C762945AE291D24772FAD ] C:\Windows\System32\lsasrv.dll
12:11:22.0794 0x0c9c  C:\Windows\System32\lsasrv.dll - ok
12:11:22.0794 0x0c9c  [ 9662EE182644511439F1C53745DC1C88, D205B2C163E78AB42A5D67D7664EF6B75EA0374FF0924467D624F9DB0611F0AD ] C:\Windows\System32\lsm.exe
12:11:22.0794 0x0c9c  C:\Windows\System32\lsm.exe - ok
12:11:22.0810 0x0c9c  [ E914A50A151DFFE63D3935226DB5E2C1, 7DCCE4060344E1C771679F1C20378A0BEB3C1F06DB684072F07B98921A62A299 ] C:\Windows\System32\scext.dll
12:11:22.0810 0x0c9c  C:\Windows\System32\scext.dll - ok
12:11:22.0810 0x0c9c  [ 39312B37C5FE5138F99680A49ACD3AEA, B9566B4117FBBECF77A0D3F49E9DF302088B9D483F817720B22E4F9C5754264A ] C:\Windows\System32\secur32.dll
12:11:22.0810 0x0c9c  C:\Windows\System32\secur32.dll - ok
12:11:22.0810 0x0c9c  [ C072064F95579C0D6D86AF5B3DC53192, CF4A088DF97F4D4963BEAB9CBDBF69FEA2D4773159054A0AF8B8DFFDF83E18DA ] C:\Windows\System32\sspicli.dll
12:11:22.0810 0x0c9c  C:\Windows\System32\sspicli.dll - ok
12:11:22.0810 0x0c9c  [ 8098627D0AA1706D69C5AF3F74332ABB, 9582F6162A8405DC568FFBEA08A9090FE92FE2C9DB640077BD7F23AC4FABF700 ] C:\Windows\System32\sspisrv.dll
12:11:22.0810 0x0c9c  C:\Windows\System32\sspisrv.dll - ok
12:11:22.0810 0x0c9c  [ 68083118797CAF30FB2EA3E71494D67E, 5F1BCDFCB00A20CD60CBC70A2FD97405EF0F7173DD0E404BBA7B06D39DB37364 ] C:\Windows\System32\sysntfy.dll
12:11:22.0810 0x0c9c  C:\Windows\System32\sysntfy.dll - ok
12:11:22.0825 0x0c9c  [ DEE7267C5D232A3B816866872CE199E6, A1994FD37667C52E7CBF873514C190DA61A3D1349786D187BFAE0006F61799AE ] C:\Windows\System32\wmsgapi.dll
12:11:22.0825 0x0c9c  C:\Windows\System32\wmsgapi.dll - ok
12:11:22.0825 0x0c9c  [ BBCDF350817BA86416C0F06B6981BE8D, D064438F97852B9BD6015C8B19377C61C671E0969E09506B8359FE7B1F373A61 ] C:\Windows\System32\scesrv.dll
12:11:22.0825 0x0c9c  C:\Windows\System32\scesrv.dll - ok
12:11:22.0825 0x0c9c  [ 3A9C9BAF610B0DD4967086040B3B62A9, E8E9A0F42B1EE7806EDCEED08AA024D037215D06CA317E3678BD5364AD513D23 ] C:\Windows\System32\srvcli.dll
12:11:22.0825 0x0c9c  C:\Windows\System32\srvcli.dll - ok
12:11:22.0825 0x0c9c  [ A744BA6E04C8AA4592818178DBF89521, 9E7C85D842DF16F9B8FED7B06AF309B5ECCBFD465F5552347D4C3F1FEFDC6F7A ] C:\Windows\System32\samsrv.dll
12:11:22.0825 0x0c9c  C:\Windows\System32\samsrv.dll - ok
12:11:22.0825 0x0c9c  [ 3A061472B38233BAFF9CFEFF2E49C46B, DF29B14C8D22A8A16AA336A09A6152E2C7FCA6CAF4E76F0C5DCB55BEF9D00515 ] C:\Windows\System32\cryptdll.dll
12:11:22.0825 0x0c9c  C:\Windows\System32\cryptdll.dll - ok
12:11:22.0841 0x0c9c  [ 3C073B0C596A0AF84933E7406766B040, 4698BBA678F553E15AD4B07AD7FB236281F872DEFEE97BFD637114476C8F97B3 ] C:\Windows\System32\wevtapi.dll
12:11:22.0841 0x0c9c  C:\Windows\System32\wevtapi.dll - ok
12:11:22.0841 0x0c9c  [ 7FBEBD2229EA5FD48D41B199EC2D541C, A465975D445A8D50CAF3EF29BD33354B320D11173C127BE30D5EBBFF7008CDCE ] C:\Windows\System32\authz.dll
12:11:22.0841 0x0c9c  C:\Windows\System32\authz.dll - ok
12:11:22.0841 0x0c9c  [ B9A95365E52F421A20E1501935FADDA5, DDB4CB575139233EFAF2C59B7E9B04AF36BBCCC63190181F3B2A7E6BFC86E77E ] C:\Windows\System32\bcrypt.dll
12:11:22.0841 0x0c9c  C:\Windows\System32\bcrypt.dll - ok
12:11:22.0841 0x0c9c  [ 86FE1B1F8FD42CD0DB641AB1CDB13093, 8C4BB4415105CE82FFFE658879EAE9D259A24C0F6DFC7D25507352DC99241BE2 ] C:\Windows\System32\cngaudit.dll
12:11:22.0841 0x0c9c  C:\Windows\System32\cngaudit.dll - ok
12:11:22.0841 0x0c9c  [ E23BA7A7BD97FC6B8AB5EA32A46D05CD, 593564F84B36451A5CDCA9B04DCFC7886DB124F7CA95464B67B1E65E041A1EC6 ] C:\Windows\System32\ncrypt.dll
12:11:22.0841 0x0c9c  C:\Windows\System32\ncrypt.dll - ok
12:11:22.0841 0x0c9c  [ 02B64609F865A39365FF88580DF11738, 2F676B93898E1B6131AF6227BB7AB731EB9C29477F9BD4C2C60F0FC1E35CD968 ] C:\Windows\System32\msprivs.dll
12:11:22.0841 0x0c9c  C:\Windows\System32\msprivs.dll - ok
12:11:22.0857 0x0c9c  [ 50532FCD7ECF02DD169CE5C485F02534, 8EE5D9D0EA53DC72BCC300692E521ACADD56AB09BFA3E78149D8B5A90648512C ] C:\Windows\System32\negoexts.dll
12:11:22.0857 0x0c9c  C:\Windows\System32\negoexts.dll - ok
12:11:22.0857 0x0c9c  [ C6505DE3561537BA1004D638C2F93F2F, 3E4FDF374B1A9E43A8F61FD2D79E0515390ECABFDAF72C4BD44A7B6429039AF6 ] C:\Windows\System32\netjoin.dll
12:11:22.0857 0x0c9c  C:\Windows\System32\netjoin.dll - ok
12:11:22.0857 0x0c9c  [ 33EF550DCCC58C93F5B65FD75BAD9832, 904DA99D4CBE5904E8D2580077FBB8909A44147F95492929D9A7A581C06645A8 ] C:\Windows\System32\kerberos.dll
12:11:22.0857 0x0c9c  C:\Windows\System32\kerberos.dll - ok
12:11:22.0857 0x0c9c  [ D0C2FBB6D97416B0166478FC7AE2B212, 7EAB6C37F0A845E645CA44CC060AC6C56E386C7EF7A64716C6786C9602AD8C9D ] C:\Windows\System32\cryptsp.dll
12:11:22.0857 0x0c9c  C:\Windows\System32\cryptsp.dll - ok
12:11:22.0857 0x0c9c  [ 9A9F9F1A77D6A80EE28B57664F00013E, 0D441638E086EF1342FCDC43E826BF9E9CC6B2E8AE100D89BFC70163F987DE91 ] C:\Windows\System32\mswsock.dll
12:11:22.0857 0x0c9c  C:\Windows\System32\mswsock.dll - ok
12:11:22.0872 0x0c9c  [ 94E026870A55AAEAFF7853C1754091E9, B2F5D5629D12BDFA98DBED3898368F37D9009C7531B6909C7285A2C11C9A0F93 ] C:\Windows\System32\version.dll
12:11:22.0872 0x0c9c  C:\Windows\System32\version.dll - ok
12:11:22.0872 0x0c9c  [ EC7CBFF96B05ECF3D366355B3C64ADCF, F69ED45EBEDCA9CF000AC03281F0EC2C351F98513FBA90E63394E4E561D6C7A2 ] C:\Windows\System32\wship6.dll
12:11:22.0872 0x0c9c  C:\Windows\System32\wship6.dll - ok
12:11:22.0872 0x0c9c  [ 7D1017ED11B7C3B162628069742B5E58, 0553ABF5C84469370748CA2496BA82655039E5048980C675742A88B761DED967 ] C:\Windows\System32\msv1_0.dll
12:11:22.0872 0x0c9c  C:\Windows\System32\msv1_0.dll - ok
12:11:22.0872 0x0c9c  [ AA339DD8BB128EF66660DFBBB59043D3, 76D9F849AFDDA38E04549EB67B4163478776F1B6EF46434168278F84FEB8FC5C ] C:\Windows\System32\netlogon.dll
12:11:22.0872 0x0c9c  C:\Windows\System32\netlogon.dll - ok
12:11:22.0872 0x0c9c  [ E1BB958681BE311E7CFF06CFEC5F1F2B, C2FDFC6C7350788A07DCB99A6A54FB9A96A6A578013DF46D0E5094A3CBF6E862 ] C:\Windows\System32\atmfd.dll
12:11:22.0872 0x0c9c  C:\Windows\System32\atmfd.dll - ok
12:11:22.0872 0x0c9c  [ 492D07D79E7024CA310867B526D9636D, F2FE647AB85C6C3C1AA3DF4BCE6E4D42B9676C9D837E11388C235AE8DB20044F ] C:\Windows\System32\dnsapi.dll
12:11:22.0872 0x0c9c  C:\Windows\System32\dnsapi.dll - ok
12:11:22.0888 0x0c9c  [ 8FFE297B8449386E7B6851458B6E474E, E149B37E11091D69D926242517E5655596594A6F01FEF06EB65D6BA5B354E326 ] C:\Windows\System32\logoncli.dll
12:11:22.0888 0x0c9c  C:\Windows\System32\logoncli.dll - ok
12:11:22.0888 0x0c9c  [ E8E98B3B7A6E1250F4AA7AF8FA17D5BB, 36EA8779A04E40B93961C8F4B1B6FF7E26254D38B30EA9B1031066B3FC02A776 ] C:\Windows\System32\schannel.dll
12:11:22.0888 0x0c9c  C:\Windows\System32\schannel.dll - ok
12:11:22.0888 0x0c9c  [ BFC98590EAB40C785D6134B1FA818A62, 3A0136DE59815C36ADD2E960D610371733B119635D2EBA15588DB62A05B928C8 ] C:\Windows\System32\wdigest.dll
12:11:22.0888 0x0c9c  C:\Windows\System32\wdigest.dll - ok
12:11:22.0888 0x0c9c  [ 5D8874A8C11DDDDE29E12DE0E2013493, 3E9A57137BF622AF83E3E4D58971E2C0200559CCA7545D16CF263AA03EE9C7D2 ] C:\Windows\System32\rsaenh.dll
12:11:22.0888 0x0c9c  C:\Windows\System32\rsaenh.dll - ok
12:11:22.0888 0x0c9c  [ 79EE13A5A406E4603874686B8005DA72, 3FC9C9463AFF70D9778C9CEDFCE6CEFDEE342A13BDE8EF2FF0420FE48421412B ] C:\Windows\System32\TSpkg.dll
12:11:22.0888 0x0c9c  C:\Windows\System32\TSpkg.dll - ok
12:11:22.0903 0x0c9c  [ 88AB9B72B4BF3963A0DE0820B4B0B06C, 29EFEADCB26E408CD41492FCEC6D411A018099D6FF5ECA9526ED59564975F3E6 ] C:\Windows\System32\winlogon.exe
12:11:22.0903 0x0c9c  C:\Windows\System32\winlogon.exe - ok
12:11:22.0903 0x0c9c  [ D6C7780A364C6BBACFA796BAB9F1B374, 3B5ED1A030BFD0BB73D4FFCD67A6A0B8501EF70293F223EFAA12F430ADF270F9 ] C:\Windows\System32\bcryptprimitives.dll
12:11:22.0903 0x0c9c  C:\Windows\System32\bcryptprimitives.dll - ok
12:11:22.0903 0x0c9c  [ E08088A97F95345E181C3DFCE2C615EF, DEF3B087DF5E10E4F8418029DB6E82546E62FEFA39694B7BD6A48CE8AAFD1B96 ] C:\Windows\System32\pku2u.dll
12:11:22.0903 0x0c9c  C:\Windows\System32\pku2u.dll - ok
12:11:22.0903 0x0c9c  [ 0D9764D58C5EFD672B7184854B152E5E, 9827B43DABBEC39AB2E2294408D9C5304EF27A684903C5234C6070387723D49E ] C:\Windows\System32\winsta.dll
12:11:22.0903 0x0c9c  C:\Windows\System32\winsta.dll - ok
12:11:22.0903 0x0c9c  [ C9DD5C0D5AF2D7A54BA32E8FBD3B67F1, 1EDB25297A9C8A87A7F33A9E9C5148F476D74BBDBF272036E5ACA46355D4A866 ] C:\Windows\System32\credssp.dll
12:11:22.0903 0x0c9c  C:\Windows\System32\credssp.dll - ok
12:11:22.0919 0x0c9c  [ 90BDEFC5DF334E5100EAA781D798DE1A, F48B650D811B6D57D2252E326C0C9CC74534BE9D510E7D3403F91D1C5C36281E ] C:\Windows\System32\efslsaext.dll
12:11:22.0919 0x0c9c  C:\Windows\System32\efslsaext.dll - ok
12:11:22.0919 0x0c9c  [ ED78427259134C63ED69804D2132B86C, F6F51B8B35881ABCA5580ED111AAC80E466E6474ABAE31EC8BE46C23EDCA77B2 ] C:\Windows\System32\scecli.dll
12:11:22.0919 0x0c9c  C:\Windows\System32\scecli.dll - ok
12:11:22.0919 0x0c9c  [ 7CC7DF5B654DA579613F811D8C637E29, 70EAC059C1ED814810C75DBB9F4D188428CB942FFD8869D692158D384EB6BB35 ] C:\Windows\System32\ubpm.dll
12:11:22.0919 0x0c9c  C:\Windows\System32\ubpm.dll - ok
12:11:22.0919 0x0c9c  [ E6EB44ABAAF1F330119F854856C53EBE, 77279972FFBFA984578DD4F17EB615F5D2D93590AF3A9FEFEFDB9128206C9887 ] C:\Windows\System32\SPInf.dll
12:11:22.0919 0x0c9c  C:\Windows\System32\SPInf.dll - ok
12:11:22.0919 0x0c9c  [ C78655BC80301D76ED4FEF1C1EA40A7D, 93B2ED4004ED5F7F3039DD7ECBD22C7E4E24B6373B4D9EF8D6E45A179B13A5E8 ] C:\Windows\System32\svchost.exe
12:11:22.0919 0x0c9c  C:\Windows\System32\svchost.exe - ok
12:11:22.0919 0x0c9c  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] C:\Windows\System32\umpnpmgr.dll
12:11:22.0919 0x0c9c  C:\Windows\System32\umpnpmgr.dll - ok
12:11:22.0935 0x0c9c  [ CD1B5AD07E5F7FEF30E055DCC9E96180, 63C58551F32B0B09377F64A6AE1FA81AF93B8A707A57A8C18722086906AD3046 ] C:\Windows\System32\devrtl.dll
12:11:22.0935 0x0c9c  C:\Windows\System32\devrtl.dll - ok
12:11:22.0935 0x0c9c  [ 9C9307C95671AC962F3D6EB3A4A89BAE, D1433791C9B8BCEEAD8937EC18D33E89E4E2012B5975228A8500FD141BC30078 ] C:\Windows\System32\gpapi.dll
12:11:22.0935 0x0c9c  C:\Windows\System32\gpapi.dll - ok
12:11:22.0935 0x0c9c  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] C:\Windows\System32\umpo.dll
12:11:22.0935 0x0c9c  C:\Windows\System32\umpo.dll - ok
12:11:22.0935 0x0c9c  [ F6C011B46FAEEF33536B2E80F48B5CBE, BDD149D3D6F9F6C8F6F34C311219BE5618CEEFBC7D35E37473A47F1D5D015067 ] C:\Windows\System32\pcwum.dll
12:11:22.0935 0x0c9c  C:\Windows\System32\pcwum.dll - ok
12:11:22.0935 0x0c9c  [ 716175021BDA290504CE434273F666BC, FA18CA2D8A5F4335E051E2933147D3C1E7308F7D446E2AEB6596CDEF6E2AFC88 ] C:\Windows\System32\powrprof.dll
12:11:22.0935 0x0c9c  C:\Windows\System32\powrprof.dll - ok
12:11:22.0950 0x0c9c  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] C:\Windows\System32\drivers\luafv.sys
12:11:22.0950 0x0c9c  C:\Windows\System32\drivers\luafv.sys - ok
12:11:22.0950 0x0c9c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] C:\Windows\System32\rpcss.dll
12:11:22.0950 0x0c9c  C:\Windows\System32\rpcss.dll - ok
12:11:22.0950 0x0c9c  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] C:\Windows\System32\RpcEpMap.dll
12:11:22.0950 0x0c9c  C:\Windows\System32\RpcEpMap.dll - ok
12:11:22.0950 0x0c9c  [ F0D5494D8B177C37E16966262F5D0F68, DD63427DFFD9DD2BEC8336F6AD1BEFE347012331631DC5FEC65E83B1EACDBC67 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
12:11:22.0950 0x0c9c  C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
12:11:22.0950 0x0c9c  [ 16E964ABF6D1E0F0CC7822FCA9BA754D, 0E461387ACFD641DA22EE542A3C68AF5F7D3A7F967D974E3B198143D461ABE39 ] C:\Windows\System32\wshqos.dll
12:11:22.0950 0x0c9c  C:\Windows\System32\wshqos.dll - ok
12:11:22.0966 0x0c9c  [ 31559F3244C6BC00A52030CAA83B6B91, B2025742B5F0025ACE9821D5722DE3F997EEEAB21D2F381C9E307882DF422579 ] C:\Windows\System32\WSHTCPIP.DLL
12:11:22.0966 0x0c9c  C:\Windows\System32\WSHTCPIP.DLL - ok
12:11:22.0966 0x0c9c  [ 19A47185AE12414F918A074048CB9EBC, DFEA9E3F74CDF4216E08C3C72A04F8217B0025E6026E9098645F6C2659906015 ] C:\Program Files\Microsoft Security Client\MpSvc.dll
12:11:22.0966 0x0c9c  C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
12:11:22.0966 0x0c9c  [ 9AD9E06F8656F296D91FAE8EE5B95A27, 53384747D5864D699BCC4F48E0A5E656430EDAA65DCDAB4B11EA68FC7106459E ] C:\Windows\System32\FirewallAPI.dll
12:11:22.0966 0x0c9c  C:\Windows\System32\FirewallAPI.dll - ok
12:11:22.0966 0x0c9c  [ 715F03B4C7223349768013EA95D9E5B7, 09AB0535A54C2E2962F0FD06988D99060F8CECA39B07AC00A63204C773B95893 ] C:\Windows\System32\LogonUI.exe
12:11:22.0966 0x0c9c  C:\Windows\System32\LogonUI.exe - ok
12:11:22.0966 0x0c9c  [ 5DFFC12BF7DB53BDB401804A3C3A475E, DEACB4BFF904AD77389A8326BFCF12A490E1A7A10B68049D253552F1FC630FA3 ] C:\Windows\System32\authui.dll
12:11:22.0966 0x0c9c  C:\Windows\System32\authui.dll - ok
12:11:22.0966 0x0c9c  [ 685D87C61FEA48ADDAE4C5352B30E27D, 7CDEB3D277EAECBCE436C06BA9813ECE2223ABEFF8B61D53D5272339B57851D4 ] C:\Program Files\Microsoft Security Client\MpClient.dll
12:11:22.0966 0x0c9c  C:\Program Files\Microsoft Security Client\MpClient.dll - ok
12:11:22.0981 0x0c9c  [ BD3674BE7FC9D8D3732C83E8499576ED, E6716A5895D629263A4D21959F48840429AB6F4B55A5FA2663EE5E86C9CA2BF1 ] C:\Windows\System32\wtsapi32.dll
12:11:22.0981 0x0c9c  C:\Windows\System32\wtsapi32.dll - ok
12:11:22.0981 0x0c9c  [ B3BFBD758506ECB50C5804AAA76318F9, 34E079A6AB2D41D1E0B3887B6AE31C43941061B7176FFF2801C3F465C2C89578 ] C:\Windows\System32\cryptui.dll
12:11:22.0981 0x0c9c  C:\Windows\System32\cryptui.dll - ok
12:11:22.0981 0x0c9c  [ 1F4492FE41767CDB8B89D17655847CDD, 184547FAC0C3D7148FAA3F601929A7089DE393BD19929A137DAD743331DD3F77 ] C:\Windows\System32\ntmarta.dll
12:11:22.0981 0x0c9c  C:\Windows\System32\ntmarta.dll - ok
12:11:22.0981 0x0c9c  [ 7FA8FDC2C2A27817FD0F624E78D3B50C, 7B63F6AA2CD6D4D07EA3C595B868B1A0749BB11620027A2BD9B935E3055481E4 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
12:11:22.0981 0x0c9c  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
12:11:22.0981 0x0c9c  [ 856E76B3641746ABBC2946BED1372098, FD93CC7F72560F72CA49AD5609C079E25B8A3A4802E72B127B63A9E7B4884710 ] C:\Windows\System32\drivers\hidparse.sys
12:11:22.0981 0x0c9c  C:\Windows\System32\drivers\hidparse.sys - ok
12:11:22.0997 0x0c9c  [ C6E1C081C0849E08FECEC18DF73B10C4, B5E552F4744C91836CBAF3F62CB861C1D9422721870D11B5CCE21B45E384985A ] C:\Windows\System32\drivers\dc3d.sys
12:11:22.0997 0x0c9c  C:\Windows\System32\drivers\dc3d.sys - ok
12:11:22.0997 0x0c9c  [ E6737687B7587339D1A6473117159F40, 9F2FAA2A729F98C8633C147ABD333B8EECB5A37A45E5D5ED469140222CB189D6 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
12:11:22.0997 0x0c9c  C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
12:11:22.0997 0x0c9c  [ E9269C2B132B1DF1EAFC0DD57B6F8A7D, AEE7E528E87237F8CBC749A6A84367E21183C1764328209D5A662CA6CB328317 ] C:\Windows\System32\atiesrxx.exe
12:11:22.0997 0x0c9c  C:\Windows\System32\atiesrxx.exe - ok
12:11:22.0997 0x0c9c  [ 5B3EBFC3DA142324B388DDCC4465E1FF, 5D58642305311F9BC9B779C9598BFC4E7433B3EA58404BF1FF9466838A2328C7 ] C:\Windows\System32\samlib.dll
12:11:22.0997 0x0c9c  C:\Windows\System32\samlib.dll - ok
12:11:22.0997 0x0c9c  [ 4E9C2DB10F7E6AE91BF761139D4B745B, 8F63F78294F5585D599A114AF449DCC447CCB239D0F0B490BFE6B34A2146E730 ] C:\Windows\System32\shacct.dll
12:11:22.0997 0x0c9c  C:\Windows\System32\shacct.dll - ok
12:11:23.0013 0x0c9c  [ F06BB4E336EA57511FDBAFAFCC47DE62, BE43EC62548E9FF89A9495A1722E22DBB76EEC3764F86E64057B636F27D15765 ] C:\Windows\System32\propsys.dll
12:11:23.0013 0x0c9c  C:\Windows\System32\propsys.dll - ok
12:11:23.0013 0x0c9c  [ 79B27F0DB10D1FF517F02F792830E538, 703025147FFBA95B865993F0AA7A1EFD769535FEDEFD305005ADFCCFAFDB61BC ] C:\Program Files\Microsoft Security Client\MpCommu.dll
12:11:23.0013 0x0c9c  C:\Program Files\Microsoft Security Client\MpCommu.dll - ok
12:11:23.0013 0x0c9c  [ 6011714C8C5C55CBFFAD24D61E879FBD, 75D615082A1C71C6ED3ABB49EDAF660EE538D112CF79B9C8AF0A583D1CE1BBB0 ] C:\Windows\System32\wevtsvc.dll
12:11:23.0013 0x0c9c  C:\Windows\System32\wevtsvc.dll - ok
12:11:23.0013 0x0c9c  [ D29E998E8277666982B4F0303BF4E7AF, 4F19AB5DC173E278EBE45832F6CEAA40E2DF6A2EDDC81B2828122442FE5D376C ] C:\Windows\System32\uxtheme.dll
12:11:23.0013 0x0c9c  C:\Windows\System32\uxtheme.dll - ok
12:11:23.0013 0x0c9c  [ 603EBD34E216C5654A2D774EAC98D278, ACE0171BB780DB2C1B1A8BF6FA8CF51C529D7E09141FA504C7199AF764FD9A36 ] C:\Windows\System32\webio.dll
12:11:23.0013 0x0c9c  C:\Windows\System32\webio.dll - ok
12:11:23.0028 0x0c9c  [ 58F4493BF748A3A89689997B7BD00E95, EC5DEEC73E357C7C87B001275C4E635011A9CF39419F2B86E2C2B8D7E388C551 ] C:\Windows\System32\winhttp.dll
12:11:23.0028 0x0c9c  C:\Windows\System32\winhttp.dll - ok
12:11:23.0028 0x0c9c  [ 1AAA3704C352767FA96FBCB2F44420FA, C492CA0D7CCEE0D0A69CC9632C67EEABD08A77FB1E1522DFA3F7303E09983FE0 ] C:\Program Files\Microsoft Security Client\MpRTP.dll
12:11:23.0028 0x0c9c  C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
12:11:23.0028 0x0c9c  [ A9A87481B1A6589898C1DAB37C03E4AB, 803DB46E9FEE4E45B63A13A8CE3E589D7498532B8A7D8C3424E210E6A9AAC61F ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_2b283fd671e9bf4d\GdiPlus.dll
12:11:23.0028 0x0c9c  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_2b283fd671e9bf4d\GdiPlus.dll - ok
12:11:23.0028 0x0c9c  [ 5DD8C3863757690D38BA3A487559CA5A, 062AF2721E1847FD000E1D8AD71A1F0EF4B830506E4680D3BF79FFE4BB3C0ACA ] C:\Program Files\Microsoft Security Client\MsMpLics.dll
12:11:23.0028 0x0c9c  C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok
12:11:23.0028 0x0c9c  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] C:\Windows\System32\audiosrv.dll
12:11:23.0028 0x0c9c  C:\Windows\System32\audiosrv.dll - ok
12:11:23.0044 0x0c9c  [ 6439D1E559D08BD8A1465A8943357053, 0E300508C22D12FBA3BE566B722F574CBE1B4A1A305356B92B8EA8B86267071B ] C:\Windows\System32\drivers\MpFilter.sys
12:11:23.0044 0x0c9c  C:\Windows\System32\drivers\MpFilter.sys - ok
12:11:23.0044 0x0c9c  [ F3D202F53A222D5F6944D459B73CF967, E9F1D48EB333D32331BCFD0348FE07BEE7D5352292E6020571DA395F596AFFE7 ] C:\Windows\System32\fltLib.dll
12:11:23.0044 0x0c9c  C:\Windows\System32\fltLib.dll - ok
12:11:23.0044 0x0c9c  [ 49BEBD78216688B48976981587AE9293, 0AFF7318D86B222F566FBCEEACEB8B3E4A4C9D9C5418AEC1B494540AB1D71588 ] C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll
12:11:23.0044 0x0c9c  C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll - ok
12:11:23.0044 0x0c9c  [ 3CB6A7286422C72C34DAB54A5DFF1A34, 98D21EFFF511E407336A226420701E82554DA01FA05661303836B6860D63749D ] C:\Windows\System32\dui70.dll
12:11:23.0044 0x0c9c  C:\Windows\System32\dui70.dll - ok
12:11:23.0044 0x0c9c  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] C:\Windows\System32\FntCache.dll
12:11:23.0044 0x0c9c  C:\Windows\System32\FntCache.dll - ok
12:11:23.0044 0x0c9c  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] C:\Windows\System32\wlansvc.dll
12:11:23.0044 0x0c9c  C:\Windows\System32\wlansvc.dll - ok
12:11:23.0059 0x0c9c  [ 6F391A20728B092E0E6D09F0AA05DA7D, 72A3167E947675849FECAC6FEABE23DCA1B482F8EE5117C3CC916921A99EBB41 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E08D0144-76BB-41F7-818B-2C28BA5DB9D9}\mpengine.dll
12:11:23.0059 0x0c9c  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E08D0144-76BB-41F7-818B-2C28BA5DB9D9}\mpengine.dll - ok
12:11:23.0059 0x0c9c  [ 78A1E65207484B7F8D3217507745F47C, 35F413ADB9D157F3666DD15DD58104D629CD9143198A1AB914B73A4A3C9903DD ] C:\Windows\System32\avrt.dll
12:11:23.0059 0x0c9c  C:\Windows\System32\avrt.dll - ok
12:11:23.0059 0x0c9c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] C:\Windows\System32\mmcss.dll
12:11:23.0059 0x0c9c  C:\Windows\System32\mmcss.dll - ok
12:11:23.0059 0x0c9c  [ 227E2C382A1E02F8D4965E664D3BBE43, 1CFF20A8BF87ACE4FA4935EBEED72BFB1A1FE902A754899E2F50798D67DF5642 ] C:\Windows\System32\MMDevAPI.dll
12:11:23.0059 0x0c9c  C:\Windows\System32\MMDevAPI.dll - ok
12:11:23.0059 0x0c9c  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67, E957E4463D318A44BA5109EE3428624DE901C5FF2BA358986DF6C6F059DDBCC2 ] C:\Windows\System32\adtschema.dll
12:11:23.0059 0x0c9c  C:\Windows\System32\adtschema.dll - ok
12:11:23.0075 0x0c9c  [ 8CCDE014A4CDF84564E03ACE064CA753, DD663029B2EB7B12FDB00FCE403D8326141E540E3B9CE84CD5871473D3E2E2CF ] C:\Windows\System32\duser.dll
12:11:23.0075 0x0c9c  C:\Windows\System32\duser.dll - ok
12:11:23.0075 0x0c9c  [ 896F15A6434D93EDB42519D5E18E6B50, 9263F0CEC58D45EBE3FB9C3061FB9392C55A7933B84B4592E6EE13CFC86D5A50 ] C:\Windows\System32\hid.dll
12:11:23.0075 0x0c9c  C:\Windows\System32\hid.dll - ok
12:11:23.0075 0x0c9c  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] C:\Windows\System32\netprofm.dll
12:11:23.0075 0x0c9c  C:\Windows\System32\netprofm.dll - ok
12:11:23.0075 0x0c9c  [ D7F1EF374A90709B31591823B002F918, 05FD2837C9B03D14BB2A969C1AD77CAEF047D93DC5D0F6C2ACBF0888E8F7B359 ] C:\Windows\System32\SndVolSSO.dll
12:11:23.0075 0x0c9c  C:\Windows\System32\SndVolSSO.dll - ok
12:11:23.0075 0x0c9c  [ DA1B7075260F3872585BFCDD668C648B, 3E10EF6E1A5C341B478322CB78A0AB7BFC70AD8023779B8B4542A7CB4CA756AB ] C:\Windows\System32\dwmapi.dll
12:11:23.0075 0x0c9c  C:\Windows\System32\dwmapi.dll - ok
12:11:23.0091 0x0c9c  [ 50544D04AD845C43130B70212EC05CCD, B2E6B558DE7D273512226685FF53ED17C9B4BF81B739FBCA5D3FC82DF8D2BCF7 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
12:11:23.0091 0x0c9c  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
12:11:23.0091 0x0c9c  [ 6F8B48F3D343E4B186AB6A9E302B7E16, 54DB52FC56509E61DF68BD251B3286E6CBE1A91D9BC4D950940A61FE2DA04DF8 ] C:\Windows\System32\xmllite.dll
12:11:23.0091 0x0c9c  C:\Windows\System32\xmllite.dll - ok
12:11:23.0091 0x0c9c  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] C:\Windows\System32\MPSSVC.dll
12:11:23.0091 0x0c9c  C:\Windows\System32\MPSSVC.dll - ok
12:11:23.0091 0x0c9c  [ AFCA5C1ECEAF948FC815178BC077680E, D052C18EF455E1A272332F2E11FD4F36DA071FAB3B81CA312FB75BF8702ED72D ] C:\Windows\System32\WindowsCodecs.dll
12:11:23.0091 0x0c9c  C:\Windows\System32\WindowsCodecs.dll - ok
12:11:23.0091 0x0c9c  [ B1DF2D87DC8BF6072699AC8301B37796, D5A6FD1EDB627324DFA1A0555F1777A3313EF29DDE29982C3CE59DAF1ED0D105 ] C:\Windows\System32\WUDFPlatform.dll
12:11:23.0091 0x0c9c  C:\Windows\System32\WUDFPlatform.dll - ok
12:11:23.0106 0x0c9c  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] C:\Windows\System32\drivers\fltMgr.sys
12:11:23.0106 0x0c9c  C:\Windows\System32\drivers\fltMgr.sys - ok
12:11:23.0106 0x0c9c  [ B0945E538CF906BBDDC5A11C8EE868CC, 5F3459F6512918835F7C9400905EC7C1FAEAA7114E0D28C522040C359E3B93F7 ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
12:11:23.0106 0x0c9c  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
12:11:23.0106 0x0c9c  [ A3DB3C17EE6CAE65D53602B4E80BCCBC, D802A7C6161F937DC42A6E45FE1BB2C8272819F92C294C180EBCDF8FF72CBFDC ] C:\Windows\System32\PSHED.DLL
12:11:23.0106 0x0c9c  C:\Windows\System32\PSHED.DLL - ok
12:11:23.0106 0x0c9c  [ 597C3699384E53CC59587ED50CCE5CA2, 4F61E9B5BEB3BD1634D733983381E516664BD7E250DF4B0150B168E05EFD652A ] C:\Windows\System32\drivers\hidclass.sys
12:11:23.0106 0x0c9c  C:\Windows\System32\drivers\hidclass.sys - ok
12:11:23.0106 0x0c9c  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] C:\Windows\System32\drivers\hidusb.sys
12:11:23.0106 0x0c9c  C:\Windows\System32\drivers\hidusb.sys - ok
12:11:23.0106 0x0c9c  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] C:\Windows\System32\drivers\kbdhid.sys
12:11:23.0122 0x0c9c  C:\Windows\System32\drivers\kbdhid.sys - ok
12:11:23.0122 0x0c9c  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] C:\Windows\System32\drivers\mouhid.sys
12:11:23.0122 0x0c9c  C:\Windows\System32\drivers\mouhid.sys - ok
12:11:23.0122 0x0c9c  [ 34A8FAE065249F85A67A3215FF5ECB34, 913297755C1046BA004E79660B7DA5BBE5E92B96AAA83D78AE3FF379371950D5 ] C:\Windows\System32\drivers\point64.sys
12:11:23.0122 0x0c9c  C:\Windows\System32\drivers\point64.sys - ok
12:11:23.0122 0x0c9c  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D, 19959D18601712901F03B83150D15E34EBCAB355BB4692C9A28511A72F57FC66 ] C:\Windows\System32\winbrand.dll
12:11:23.0122 0x0c9c  C:\Windows\System32\winbrand.dll - ok
12:11:23.0122 0x0c9c  [ A021CC1D5F73CDB0D022D43AADBAB933, 1B220C905677D4DEE6FDF9860BAC367784684C685D75243B246E854ACEDBBB4D ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E08D0144-76BB-41F7-818B-2C28BA5DB9D9}\mpasbase.vdm
12:11:23.0122 0x0c9c  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E08D0144-76BB-41F7-818B-2C28BA5DB9D9}\mpasbase.vdm - ok
12:11:23.0122 0x0c9c  [ 8563BA40DF4F1E93A61B70E2C8B60CF8, E5CAA520CBE61FAF3EAA784A51ED30E0CB2FD78EFD8AE1D5C6B0FE43A1009F39 ] C:\Windows\System32\SmartcardCredentialProvider.dll
12:11:23.0137 0x0c9c  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
12:11:23.0137 0x0c9c  [ C2762A57DF0EE85E63CE4893C5215313, DDE22212D78353633CEDE27D7210469DE674563991105563CF64CCCE2D0743BD ] C:\Windows\System32\VaultCredProvider.dll
12:11:23.0137 0x0c9c  C:\Windows\System32\VaultCredProvider.dll - ok
12:11:23.0137 0x0c9c  [ BF352E73615F5461AA6884472435A544, 4B059E79325C5F08CD6FBBE6352E17ADB64B9608CC9EDB36A2DF4D148060C309 ] C:\Windows\System32\BioCredProv.dll
12:11:23.0137 0x0c9c  C:\Windows\System32\BioCredProv.dll - ok
12:11:23.0137 0x0c9c  [ 4403D5ECE7D8323CAF1207D1AA38FA01, BD0B34DCF658D3CB91C1B55E9E730C5F7C571AFC2BFA09270C377B72B6830D48 ] C:\Windows\System32\credui.dll
12:11:23.0137 0x0c9c  C:\Windows\System32\credui.dll - ok
12:11:23.0137 0x0c9c  [ 476E9E53452E9F1EE82E75F2BC7B2AE3, 21C936E9B08D63F8CD3EA18DE1B88103BEB427EC0C0CE30632801F011869162A ] C:\Windows\System32\drivers\netr28ux.sys
12:11:23.0137 0x0c9c  C:\Windows\System32\drivers\netr28ux.sys - ok
12:11:23.0137 0x0c9c  [ EEEA40F0EDB0A6E5359E539E15D0BC77, BFCBF777239C29C6AC4BC5B59591308571647B7C7FDB5571903F7403DD241E8E ] C:\Windows\System32\netapi32.dll
12:11:23.0137 0x0c9c  C:\Windows\System32\netapi32.dll - ok
12:11:23.0153 0x0c9c  [ 44B9C66177651F3F53C87B665D58D17A, 3FC426115FF87570889DB28D71970B82B525D2A4B9A00EDD273BF083B77A05CE ] C:\Windows\System32\vaultcli.dll
12:11:23.0153 0x0c9c  C:\Windows\System32\vaultcli.dll - ok
12:11:23.0153 0x0c9c  [ 796B8123A7859AFD3A4AE10514DBAEB5, E76F69FAFEC3D66263ED95F3FA9EE309BDDACB287E30583A147DC97F6EEB8844 ] C:\Windows\System32\winbio.dll
12:11:23.0153 0x0c9c  C:\Windows\System32\winbio.dll - ok
12:11:23.0153 0x0c9c  [ 972C3301DB3DA91AE06A95F6B4160B1B, 678B533A06C306295FE97DC26CE9BAFFC8EAF1FB7405ACB040719099717744D5 ] C:\Windows\System32\certCredProvider.dll
12:11:23.0153 0x0c9c  C:\Windows\System32\certCredProvider.dll - ok
12:11:23.0153 0x0c9c  [ 6CECA4C6A489C9B2E6073AFDAAE3F607, 127506D1DB38275614CBEB047C133718EF9D03266BA9C98BE55EC7847CFC9C3D ] C:\Windows\System32\netutils.dll
12:11:23.0153 0x0c9c  C:\Windows\System32\netutils.dll - ok
12:11:23.0153 0x0c9c  [ FC51229C7D4AFA0D6F186133728B95AB, 37E58C8E1C8437D1981725A5DCDACA7316CEFBB570370CEFC8D122F523B96AC0 ] C:\Windows\System32\samcli.dll
12:11:23.0153 0x0c9c  C:\Windows\System32\samcli.dll - ok
12:11:23.0169 0x0c9c  [ 3C91392D448F6E5D525A85B7550D8BA9, 6FD0DC73DBE7519E2C643554C2A7F8FBE4F9A678C4241BB54B3C6E65D2ABCF3A ] C:\Windows\System32\wkscli.dll
12:11:23.0169 0x0c9c  C:\Windows\System32\wkscli.dll - ok
12:11:23.0169 0x0c9c  [ C8DF6DD042E7FB471FC9BFBE3F60C38D, 5EB11A8728E3393AF8CF3C9C22D10D663B057EF317FD248022B9B1D625C4C0F0 ] E:\Program Files (x86)\CyberLink\YouCam6\CLCredProv\x64\CLCredProv.dll
12:11:23.0169 0x0c9c  E:\Program Files (x86)\CyberLink\YouCam6\CLCredProv\x64\CLCredProv.dll - ok
12:11:23.0169 0x0c9c  [ 019CD868461B646E09BDF04474C19341, 01837EFACB02E52BC6E90C90C4CB01B11D56E449A37EA4FC2695507FF85EA9FE ] C:\Windows\System32\rasapi32.dll
12:11:23.0169 0x0c9c  C:\Windows\System32\rasapi32.dll - ok
12:11:23.0169 0x0c9c  [ 87FA0C48C3B2E9FEE518818FE26B15B5, DA4042DE9897397AEDCEFF9F69746726237305DDE64464309B6DCC45E05E42F4 ] C:\Windows\System32\rasplap.dll
12:11:23.0169 0x0c9c  C:\Windows\System32\rasplap.dll - ok
12:11:23.0169 0x0c9c  [ B28DEEC597C8DEB70C744C7CF9210E3E, E777F192D822990CA6301B3FEA2AEA213FA7901438EB3328914ADF02B6C39DB9 ] C:\Windows\System32\rasman.dll
12:11:23.0169 0x0c9c  C:\Windows\System32\rasman.dll - ok
12:11:23.0184 0x0c9c  [ B53C4B69B695EDA1B7E41D35CA4244E2, 3D98E9B263CADA576E4057E059AFC867F6E3F1001F3B73C8BCF9066763A45D9D ] C:\Windows\System32\rtutils.dll
12:11:23.0184 0x0c9c  C:\Windows\System32\rtutils.dll - ok
12:11:23.0184 0x0c9c  [ D5CCA1453B98A5801E6D5FF0FF89DC6C, 85F2C2480AAC31B6092187B431A562D79D4CFB1324F925C85055ABAB2483264B ] C:\Windows\System32\audiodg.exe
12:11:23.0184 0x0c9c  C:\Windows\System32\audiodg.exe - ok
12:11:23.0184 0x0c9c  [ 5AD2A2B5813CA78AFA69A076639E04EA, B8154554E9E2CF7DDC06DB75DB923AEE796F69BC1BE8AE20E507D74462A16970 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E08D0144-76BB-41F7-818B-2C28BA5DB9D9}\mpasdlta.vdm
12:11:23.0184 0x0c9c  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E08D0144-76BB-41F7-818B-2C28BA5DB9D9}\mpasdlta.vdm - ok
12:11:23.0184 0x0c9c  [ 00000000000000000000000000000000, 0000000000000000000000000000000000000000000000000000000000000000 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E08D0144-76BB-41F7-818B-2C28BA5DB9D9}\mpavbase.vdm
12:11:23.0184 0x0c9c  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E08D0144-76BB-41F7-818B-2C28BA5DB9D9}\mpavbase.vdm - ok
12:11:23.0184 0x0c9c  [ 85587372BE5A11F6B1D4AD246DA5AB6A, 7947C3D84F5686C84FFCB92FBED526FF1EC4F8A51CBB8F39F83B5C60D06B2271 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E08D0144-76BB-41F7-818B-2C28BA5DB9D9}\mpavdlta.vdm
12:11:23.0184 0x0c9c  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E08D0144-76BB-41F7-818B-2C28BA5DB9D9}\mpavdlta.vdm - ok
12:11:23.0200 0x0c9c  [ 58775492FFD419248B08325E583C527F, DBB013971F5894F25C222C2D4D50A29DB6DF3C413792EE9CCC1A9E6D85469093 ] C:\Windows\System32\atl.dll
12:11:23.0200 0x0c9c  C:\Windows\System32\atl.dll - ok
12:11:23.0200 0x0c9c  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] C:\Windows\System32\gpsvc.dll
12:11:23.0200 0x0c9c  C:\Windows\System32\gpsvc.dll - ok
12:11:23.0200 0x0c9c  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] C:\Windows\System32\profsvc.dll
12:11:23.0200 0x0c9c  C:\Windows\System32\profsvc.dll - ok
12:11:23.0200 0x0c9c  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] C:\Windows\System32\themeservice.dll
12:11:23.0200 0x0c9c  C:\Windows\System32\themeservice.dll - ok
12:11:23.0200 0x0c9c  [ A77BE7CB3222B4FB0AC6C71D1C2698D4, 73566223914BF670DF6B5931FA213E546713531B10391ED65B5256BBD7ABDE7F ] C:\Windows\System32\dsrole.dll
12:11:23.0200 0x0c9c  C:\Windows\System32\dsrole.dll - ok
12:11:23.0200 0x0c9c  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] C:\Windows\System32\es.dll
12:11:23.0200 0x0c9c  C:\Windows\System32\es.dll - ok
12:11:23.0215 0x0c9c  [ 46BB91A169B9B31FF44EB04C48EC1D41, 8115B533D3A5BE07633FA54FA8847E3DEC00C5BEB193CF2FBE88428D23E2B3D6 ] C:\Windows\System32\nlaapi.dll
12:11:23.0215 0x0c9c  C:\Windows\System32\nlaapi.dll - ok
12:11:23.0215 0x0c9c  [ 1A47D52E303B7543E4E6026595B95422, C577CD3837546A7CED5D2E8E97FA2EDACA133B4A8595770EF96CAE519BFE280F ] C:\Windows\System32\comres.dll
12:11:23.0215 0x0c9c  C:\Windows\System32\comres.dll - ok
12:11:23.0215 0x0c9c  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] C:\Windows\System32\Sens.dll
12:11:23.0215 0x0c9c  C:\Windows\System32\Sens.dll - ok
12:11:23.0215 0x0c9c  [ BE097F5BB10F9079FCEB2DC4E7E20F02, 90A88986C8C5F30FB153EC803FEDA6572B2C2630A6C9578FCC017800692694D5 ] C:\Windows\System32\slc.dll
12:11:23.0215 0x0c9c  C:\Windows\System32\slc.dll - ok
12:11:23.0215 0x0c9c  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] C:\Windows\System32\drivers\lltdio.sys
12:11:23.0215 0x0c9c  C:\Windows\System32\drivers\lltdio.sys - ok
12:11:23.0231 0x0c9c  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] C:\Windows\System32\uxsms.dll
12:11:23.0231 0x0c9c  C:\Windows\System32\uxsms.dll - ok
12:11:23.0231 0x0c9c  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] C:\Windows\System32\drivers\ndisuio.sys
12:11:23.0231 0x0c9c  C:\Windows\System32\drivers\ndisuio.sys - ok
12:11:23.0231 0x0c9c  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] C:\Windows\System32\drivers\nwifi.sys
12:11:23.0231 0x0c9c  C:\Windows\System32\drivers\nwifi.sys - ok
12:11:23.0231 0x0c9c  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] C:\Windows\System32\dhcpcore.dll
12:11:23.0231 0x0c9c  C:\Windows\System32\dhcpcore.dll - ok
12:11:23.0231 0x0c9c  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] C:\Windows\System32\drivers\rspndr.sys
12:11:23.0231 0x0c9c  C:\Windows\System32\drivers\rspndr.sys - ok
12:11:23.0247 0x0c9c  [ 2B81776DA02017A37FE26C662827470E, A656353C50EE08422145D00DB9CFD9F6D3E664753B3C454B171E2A56A8AA94DC ] C:\Windows\System32\IPHLPAPI.DLL
12:11:23.0247 0x0c9c  C:\Windows\System32\IPHLPAPI.DLL - ok
12:11:23.0247 0x0c9c  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] C:\Windows\System32\lmhsvc.dll
12:11:23.0247 0x0c9c  C:\Windows\System32\lmhsvc.dll - ok
12:11:23.0247 0x0c9c  [ B73A6E4B319AFFE64582AC5C1801BB3F, 274EEA0743DC659180E691654CBB17136E9E9D83B07E302B47EA5B103EA57710 ] C:\Windows\System32\nrpsrv.dll
12:11:23.0247 0x0c9c  C:\Windows\System32\nrpsrv.dll - ok
12:11:23.0247 0x0c9c  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] C:\Windows\System32\nsisvc.dll
12:11:23.0247 0x0c9c  C:\Windows\System32\nsisvc.dll - ok
12:11:23.0247 0x0c9c  [ 4C9210E8F4E052F6A4EB87716DA0C24C, 460F7990BDADB7D58D6DC95B094D30A2EFDC4CEED444B18A2F36E8D9076FB8B9 ] C:\Windows\System32\winnsi.dll
12:11:23.0247 0x0c9c  C:\Windows\System32\winnsi.dll - ok
12:11:23.0247 0x0c9c  [ 3CC16A849E6092E43909F48EF0E60306, 610B576654A69415E4F2FEDB6BA384C77715944E4F89BD2821B311968CA8D810 ] C:\Windows\System32\dhcpcore6.dll
12:11:23.0247 0x0c9c  C:\Windows\System32\dhcpcore6.dll - ok
12:11:23.0262 0x0c9c  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] C:\Windows\System32\dnsrslvr.dll
12:11:23.0262 0x0c9c  C:\Windows\System32\dnsrslvr.dll - ok
12:11:23.0262 0x0c9c  [ 87356377F31DA5F20A833811CD59499C, 4FEC1FD3AC4E4E34DCBC0109B248952604F438C84B1604EB9E2359FA721E23C4 ] C:\Windows\System32\eapphost.dll
12:11:23.0262 0x0c9c  C:\Windows\System32\eapphost.dll - ok
12:11:23.0262 0x0c9c  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] C:\Windows\System32\eapsvc.dll
12:11:23.0262 0x0c9c  C:\Windows\System32\eapsvc.dll - ok
12:11:23.0262 0x0c9c  [ D07EB640618F96490DB88C3CE58DB608, 0C553971259632031E6856A94EEB937D571627FC7CF061CCFC040F4BF0CFF259 ] C:\Windows\System32\FWPUCLNT.DLL
12:11:23.0262 0x0c9c  C:\Windows\System32\FWPUCLNT.DLL - ok
12:11:23.0262 0x0c9c  [ F9EC845C5EECF20E9A67F9F805F2EF1F, C3DBA8CF93DBF50954B1BF6D7EF3F6F5DD1A56DC62B7EB2749C54D9B65D9BB43 ] C:\Windows\System32\keyiso.dll
12:11:23.0262 0x0c9c  C:\Windows\System32\keyiso.dll - ok
12:11:23.0278 0x0c9c  [ F568F7C08458D69E4FCD8675BBB107E4, A5FA25ECF248999A68CCECFBB508BFA1ADD18A23E20A9A9081A87C41CAAA36C0 ] C:\Windows\System32\dhcpcsvc.dll
12:11:23.0278 0x0c9c  C:\Windows\System32\dhcpcsvc.dll - ok
12:11:23.0278 0x0c9c  [ 885D0942E0F28DB90919BE3129ECF279, 5A10D90EE656ECE3DCA174D6F924641509819FC20CB6EF46B5E1723E52DE85BE ] C:\Windows\System32\dnsext.dll
12:11:23.0278 0x0c9c  C:\Windows\System32\dnsext.dll - ok
12:11:23.0278 0x0c9c  [ 9FCA3A84338ADEF2AFF67CDA46EF8539, 087DF72096852AE98C56990EE6E68835BE95E7E49ECDDE8B54DAC11C9E07FE94 ] C:\Windows\System32\umb.dll
12:11:23.0278 0x0c9c  C:\Windows\System32\umb.dll - ok
12:11:23.0278 0x0c9c  [ 3C06D5A929B798D0B13F6481242A0FD2, CE6127A31AB09E21A912CA16E4BDF663E9D05C254CCF9090A8B5A9A2E055EFF3 ] C:\Windows\System32\dhcpcsvc6.dll
12:11:23.0278 0x0c9c  C:\Windows\System32\dhcpcsvc6.dll - ok
12:11:23.0278 0x0c9c  [ 920BD93A0B64657A20CA66C2EBB167EA, F0E058D770418D94BAD473285720D079E9B1ED64C0E2DAF99187B8931EBC10F3 ] C:\Windows\System32\mshtml.dll
12:11:23.0278 0x0c9c  C:\Windows\System32\mshtml.dll - ok
12:11:23.0278 0x0c9c  [ A648C4A06DE367065B24056D067B4460, 2412487D65A833DDD9AB17D039515CC08DA22D006259EC4B03E42475FAFFD2AD ] C:\Windows\System32\wlanmsm.dll
12:11:23.0278 0x0c9c  C:\Windows\System32\wlanmsm.dll - ok
12:11:23.0293 0x0c9c  [ 06A1386B6E3A0CBC368665C1840906F4, C10BCA5092A0B3F9435CE4D65C7449528C89F5C5243B410878D2EBF516DA2FB2 ] C:\Windows\System32\wlansec.dll
12:11:23.0293 0x0c9c  C:\Windows\System32\wlansec.dll - ok
12:11:23.0293 0x0c9c  [ 0D753307D274F3688BD21C377B616700, 5DD08E77A11F2561FB96BA212FDDFE21D4394C69C34C3EB88F7F5CD068EE55BF ] C:\Windows\System32\eappcfg.dll
12:11:23.0293 0x0c9c  C:\Windows\System32\eappcfg.dll - ok
12:11:23.0293 0x0c9c  [ 65522E77A1360DBC8D199DA3BF5EFFE4, E9D748070FA478A3D37F15049F998D340885C0DC5FCE03BFCE5D521C9EBA7350 ] C:\Windows\System32\eappprxy.dll
12:11:23.0293 0x0c9c  C:\Windows\System32\eappprxy.dll - ok
12:11:23.0293 0x0c9c  [ 73FCB7919DEE80EE556F2E498594EBAE, D0F7A0AD3BC33263E9C2CF9787DD326436F9E0C9F5031D769F8A43C64C08A762 ] C:\Windows\System32\onex.dll
12:11:23.0293 0x0c9c  C:\Windows\System32\onex.dll - ok
12:11:23.0293 0x0c9c  [ 97E43F324BE1503CB2FFB058534688DA, 50C781DF38D0D38C9A5420AB1FFF8672DC13FD1ED8E9F5432B4BA3077A7435D5 ] C:\Windows\System32\l2gpstore.dll
12:11:23.0293 0x0c9c  C:\Windows\System32\l2gpstore.dll - ok
12:11:23.0309 0x0c9c  [ 7D5645EE0EA77D539828433D9B95F5EB, EEF81E9B2205FC456DB6095AD0AEAB38BB131D3BCD090EA6CD91D5568ACAFB7F ] C:\Windows\System32\WinSCard.dll
12:11:23.0309 0x0c9c  C:\Windows\System32\WinSCard.dll - ok
12:11:23.0309 0x0c9c  [ 7F1B4C6FF3B85F9ADF74055187B8A22C, CC95DA5662638AACBE9643DCB236464C2C2095A8D5CDC8A747045870BE9D0E7D ] C:\Windows\System32\wlanutil.dll
12:11:23.0309 0x0c9c  C:\Windows\System32\wlanutil.dll - ok
12:11:23.0309 0x0c9c  [ 730BF204A595D5B6D7DC57A247CC741C, 264C6901F4A49B738BBD04BCA1783DEE892885BADE9085B0AEA40BAE7CC0A218 ] C:\Windows\System32\wlgpclnt.dll
12:11:23.0309 0x0c9c  C:\Windows\System32\wlgpclnt.dll - ok
12:11:23.0309 0x0c9c  [ 63316A8E10D243D087038FAEC2D80065, 5A82ED4266D73725315607D8FC4BB6597EEF0A32E1244747B25268469874E427 ] C:\Windows\System32\atieclxx.exe
12:11:23.0309 0x0c9c  C:\Windows\System32\atieclxx.exe - ok
12:11:23.0309 0x0c9c  [ 0E3A7EC2B9590EA7767BBB1823630DEA, 6858B7050465DB8505CF9E932868B123B925376C05363EA5A9198B2AE15CF728 ] C:\Windows\System32\msxml6.dll
12:11:23.0309 0x0c9c  C:\Windows\System32\msxml6.dll - ok
12:11:23.0325 0x0c9c  [ 9BC8610C32C96A2983A65DC21CAFA921, 2A4195F663C9D55939E3D8FEAA208090FDB0B8801A60164A7325B53104797CBC ] C:\Windows\System32\UXInit.dll
12:11:23.0325 0x0c9c  C:\Windows\System32\UXInit.dll - ok
12:11:23.0325 0x0c9c  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] C:\Windows\System32\schedsvc.dll
12:11:23.0325 0x0c9c  C:\Windows\System32\schedsvc.dll - ok
12:11:23.0325 0x0c9c  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] C:\Windows\System32\shsvcs.dll
12:11:23.0325 0x0c9c  C:\Windows\System32\shsvcs.dll - ok
12:11:23.0325 0x0c9c  [ BC414631876B2F28B8DAB08E849C12C5, 5973654AA3E90E6B699B0A43F645B893D95BAA803129B6967D746C8239AB26E3 ] C:\Windows\System32\ktmw32.dll
12:11:23.0325 0x0c9c  C:\Windows\System32\ktmw32.dll - ok
12:11:23.0325 0x0c9c  [ 945E54F23C72D37B8CD1987AF0DB63BF, C2B217C94DBCA0A31ED834B9D492B53B25B235DDD02B1D1200E76609D32772EA ] C:\Windows\System32\fveapi.dll
12:11:23.0325 0x0c9c  C:\Windows\System32\fveapi.dll - ok
12:11:23.0325 0x0c9c  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7, 4BC5A1279885EEFBEB27333AF719622A5FCDD9606697692C1978E434CE264D80 ] C:\Windows\System32\taskcomp.dll
12:11:23.0325 0x0c9c  C:\Windows\System32\taskcomp.dll - ok
12:11:23.0340 0x0c9c  [ 891ECFD08E2C538B7948CBC45106D697, 628D0D618FF3A70E9FBE3B2C7206C9365ED2297784A5F10FFA05BD2C56657013 ] C:\Windows\System32\fvecerts.dll
12:11:23.0340 0x0c9c  C:\Windows\System32\fvecerts.dll - ok
12:11:23.0340 0x0c9c  [ 694865362F0965779F92BCFE97712323, 825EB75E37AFE9B738869FB5D95020D4F44AD419C2F6C5A658F82A5242FDEF6C ] C:\Windows\System32\tbs.dll
12:11:23.0340 0x0c9c  C:\Windows\System32\tbs.dll - ok
12:11:23.0340 0x0c9c  [ 8269210DAF3B12BC8300631B28A2A442, EABEB792C2EA8D4A1A7B13281CF557C194D5667AE0BA2A2D5664908D8269113D ] C:\Windows\System32\wiarpc.dll
12:11:23.0340 0x0c9c  C:\Windows\System32\wiarpc.dll - ok
12:11:23.0340 0x0c9c  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] C:\Windows\System32\drivers\http.sys
12:11:23.0340 0x0c9c  C:\Windows\System32\drivers\http.sys - ok
12:11:23.0340 0x0c9c  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] C:\Windows\System32\spoolsv.exe
12:11:23.0340 0x0c9c  C:\Windows\System32\spoolsv.exe - ok
12:11:23.0356 0x0c9c  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] C:\Windows\System32\BFE.DLL
12:11:23.0356 0x0c9c  C:\Windows\System32\BFE.DLL - ok
12:11:23.0356 0x0c9c  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] C:\Windows\System32\drivers\bowser.sys
12:11:23.0356 0x0c9c  C:\Windows\System32\drivers\bowser.sys - ok
12:11:23.0356 0x0c9c  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] C:\Windows\System32\drivers\mpsdrv.sys
12:11:23.0356 0x0c9c  C:\Windows\System32\drivers\mpsdrv.sys - ok
12:11:23.0356 0x0c9c  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] C:\Windows\System32\drivers\mrxsmb.sys
12:11:23.0356 0x0c9c  C:\Windows\System32\drivers\mrxsmb.sys - ok
12:11:23.0356 0x0c9c  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] C:\Windows\System32\drivers\mrxsmb10.sys
12:11:23.0356 0x0c9c  C:\Windows\System32\drivers\mrxsmb10.sys - ok
12:11:23.0371 0x0c9c  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] C:\Windows\System32\drivers\mrxsmb20.sys
12:11:23.0371 0x0c9c  C:\Windows\System32\drivers\mrxsmb20.sys - ok
12:11:23.0371 0x0c9c  [ C67F8A962B2534224D5908D16D2AD3CE, CAC1821F5E867285638AEE7AE33CE574BCCF16277AC5AD805650B48F7759B4B4 ] C:\Windows\System32\wfapigp.dll
12:11:23.0371 0x0c9c  C:\Windows\System32\wfapigp.dll - ok
12:11:23.0371 0x0c9c  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] C:\Windows\System32\wkssvc.dll
12:11:23.0371 0x0c9c  C:\Windows\System32\wkssvc.dll - ok
12:11:23.0371 0x0c9c  [ AA9A06FBF753CAFDE0748244B58663A6, F62D2710085E0D2F8FBE405CAEB03558E6113362D74B10029DBF7A517AA4473A ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
12:11:23.0371 0x0c9c  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe - ok
12:11:23.0371 0x0c9c  [ 40CB28DC346D03A6B78C9B3E932488F0, AFBD10AA9A9BAB794AD5ED1E8E125BA39E6BAAF588E310DD260FF560A15556C6 ] C:\Windows\System32\atiadlxx.dll
12:11:23.0371 0x0c9c  C:\Windows\System32\atiadlxx.dll - ok
12:11:23.0371 0x0c9c  [ 349B1D5D8D1B5A7B10BCD01470BD5F64, F0502E3D58713044F62F539B8738694E4CE9C619C665515F5ED2500C843C0C46 ] C:\Windows\System32\msvcp110.dll
12:11:23.0371 0x0c9c  C:\Windows\System32\msvcp110.dll - ok
12:11:23.0387 0x0c9c  [ C72ABC6B7B90A61364B6DD889B5435F3, 0CBBD9691F08434DA3617874F99C6DD87538CBD65B5D8BC39FCE378D4ED29EED ] C:\Windows\System32\msvcr110.dll
12:11:23.0387 0x0c9c  C:\Windows\System32\msvcr110.dll - ok
12:11:23.0387 0x0c9c  [ C3D487827E48CC5EC17994FEC5BDFF87, 5FCEA3EEA583755D0C9F6005ED3032E9DFECB57F504DC67701AE7D2D2631C30E ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys
12:11:23.0387 0x0c9c  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys - ok
12:11:23.0387 0x0c9c  [ 1834B31C749B86DAC233BBBA1C03BC48, 27FCA9196842C0BB53CCAD895870A0EB10D2F8ED67E5486A4437067BD4BC4448 ] C:\Windows\System32\mscms.dll
12:11:23.0387 0x0c9c  C:\Windows\System32\mscms.dll - ok
12:11:23.0387 0x0c9c  [ C35448FA3C43DA8530D80BD0962A6EBB, 0DBF39B17AE4D6A4D269E7CA24577B407823A403BD5112223D3D9D0F7ECEE9E4 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\device.dll
12:11:23.0387 0x0c9c  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\device.dll - ok
12:11:23.0387 0x0c9c  [ 1B8714609585FAFC70671F391818C1AE, F6E66847B25A36AD120604D0F7D9AA2221EC0937412AA179FC5C687402A82690 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
12:11:23.0387 0x0c9c  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll - ok
12:11:23.0403 0x0c9c  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] C:\Windows\System32\pcasvc.dll
12:11:23.0403 0x0c9c  C:\Windows\System32\pcasvc.dll - ok
12:11:23.0403 0x0c9c  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] C:\Windows\System32\snmptrap.exe
12:11:23.0403 0x0c9c  C:\Windows\System32\snmptrap.exe - ok
12:11:23.0403 0x0c9c  [ 11FE7637A49B67D9B1F895B2AD4D982F, D448DA9083044E0B2627042D9FA5DC65C74A34AB09FF627777634B254260F4FB ] C:\Windows\System32\iprip.dll
12:11:23.0403 0x0c9c  C:\Windows\System32\iprip.dll - ok
12:11:23.0403 0x0c9c  [ 4004299B7AF4CBFF6540F1798899A11F, 5DD3AE149B7228A769F2FE95355795AC98ACD8CDFB78954A423A357F717203C3 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
12:11:23.0403 0x0c9c  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
12:11:23.0403 0x0c9c  [ A8704A10FFDE468F4AB18EBF82A9A86F, 40F6502679CEE0B657B0005278FBE7213BDDA6DEAACF868058E17737C182E1B4 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll
12:11:23.0403 0x0c9c  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll - ok
12:11:23.0418 0x0c9c  [ 8C1FD73CC27EDD8D3344C632571C224C, 52023B9D578C4EB49238B7F6390D508C48012CEA52B7042F21B7065718C7C14E ] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe
12:11:23.0418 0x0c9c  C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe - ok
12:11:23.0418 0x0c9c  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] C:\Windows\System32\provsvc.dll
12:11:23.0418 0x0c9c  C:\Windows\System32\provsvc.dll - ok
12:11:23.0418 0x0c9c  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] C:\Windows\System32\sstpsvc.dll
12:11:23.0418 0x0c9c  C:\Windows\System32\sstpsvc.dll - ok
12:11:23.0418 0x0c9c  [ A2B0924D50F4435FD389499047CE553A, 8D16D5CAAD71AAAAA1479F8477D2928B66581C79932A49A21EDF93DB2803AB9C ] C:\Windows\SysWOW64\ntdll.dll
12:11:23.0418 0x0c9c  C:\Windows\SysWOW64\ntdll.dll - ok
12:11:23.0418 0x0c9c  [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7, 690F12C490BEE2BF17AB7B6804E6E9B96F51C304350CCDE80FE5C7EEFA89720E ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
12:11:23.0418 0x0c9c  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
12:11:23.0434 0x0c9c  [ D3F27BC412760F184619B492C7998547, BC78C295FB0C400F07A1F085FBB6F84E7553497E04DEED24041F8DF83C2E0475 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\platform.dll
12:11:23.0434 0x0c9c  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\platform.dll - ok
12:11:23.0434 0x0c9c  [ 2A107B611C91CD256466C58C0D776E9D, 58EA4F6E0FE7EFB8D3024AE71EE16848C2A00BA5224C8054C80134F99D9A72AB ] C:\Windows\System32\wow64.dll
12:11:23.0434 0x0c9c  C:\Windows\System32\wow64.dll - ok
12:11:23.0434 0x0c9c  [ 7434E01FBCA3CB86539C39412A31D5E1, E40D5AEBB3A5D8F53C76E3FBF0C07B9C0227914C869F57622EA44A212383EE6D ] C:\Windows\System32\wow64win.dll
12:11:23.0434 0x0c9c  C:\Windows\System32\wow64win.dll - ok
12:11:23.0434 0x0c9c  [ 4DAC56FA0F599553F41B8CCB5E6F5F6B, CBCD4B0A375347BE6462E074190A2C4B538C8939413FEA55697B79B56A63D4A8 ] E:\Program Files (x86)\CyberLink\YouCam6\CLWFLService6.exe
12:11:23.0434 0x0c9c  E:\Program Files (x86)\CyberLink\YouCam6\CLWFLService6.exe - ok
12:11:23.0434 0x0c9c  [ 0F090A77E664CB0F70AB8D3B230B760C, A08EA0409B3BF88AB12792F721FA3A692BBE640DF2A06641E142843A7044EC5E ] C:\Windows\System32\wow64cpu.dll
12:11:23.0434 0x0c9c  C:\Windows\System32\wow64cpu.dll - ok
12:11:23.0434 0x0c9c  [ 76161B9D78A275F8F28DD67436013110, E4AE9648BDED9035D39DF20C3A6F453F67D49D7899038B21D88FFD4EFFCC4C08 ] C:\Windows\SysWOW64\kernel32.dll
12:11:23.0434 0x0c9c  C:\Windows\SysWOW64\kernel32.dll - ok
12:11:23.0449 0x0c9c  [ D67472125471784DE7147946EDA25FEB, F41960118F412B6CA5E80AE5E8DB9AECDD043A7DB34388FF57C6F9C5A0056F91 ] C:\Windows\SysWOW64\advapi32.dll
12:11:23.0449 0x0c9c  C:\Windows\SysWOW64\advapi32.dll - ok
12:11:23.0449 0x0c9c  [ 461B713DE7F353C6447B744F1A049930, 3551C57128DAFA009C9DB3EE0D798D94B269D1605F74897566D7E79E5FDD437B ] C:\Windows\SysWOW64\KernelBase.dll
12:11:23.0449 0x0c9c  C:\Windows\SysWOW64\KernelBase.dll - ok
12:11:23.0449 0x0c9c  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3, 01EB95FA3943CF3C6B1A21E473A5C3CB9FCBCE46913B15C96CAC14E4F04075B4 ] C:\Windows\SysWOW64\user32.dll
12:11:23.0449 0x0c9c  C:\Windows\SysWOW64\user32.dll - ok
12:11:23.0449 0x0c9c  [ 9DC80A8AAAAAC397BDAB3C67165A824E, 051636BFDFF7AB0E4191354E846BD0DACCA1A01FCC13C1AFED91D8DBFE17127A ] C:\Windows\SysWOW64\msvcrt.dll
12:11:23.0449 0x0c9c  C:\Windows\SysWOW64\msvcrt.dll - ok
12:11:23.0449 0x0c9c  [ 980305AC3AF53C1964A11190451ABB32, D0FE0845F9FB51B1F556E3A1D327F30603033A1FAFC17DFA3D5047B93C7D4D82 ] C:\Windows\SysWOW64\gdi32.dll
12:11:23.0449 0x0c9c  C:\Windows\SysWOW64\gdi32.dll - ok
12:11:23.0465 0x0c9c  [ CC23295DA8F7B5C53F93804D2F5D30EB, B290D96C40FBA934DE6CFF82D9BBA6780922CC5012C61599BD5006DAEDC82DDB ] C:\Windows\SysWOW64\lpk.dll
12:11:23.0465 0x0c9c  C:\Windows\SysWOW64\lpk.dll - ok
12:11:23.0465 0x0c9c  [ D8BED6BA298DBAAF6F3D746739FCD333, 83A40845EC448943F4737B730F95860983919677D84922E44EED4BECDFA71A31 ] C:\Windows\SysWOW64\rpcrt4.dll
12:11:23.0465 0x0c9c  C:\Windows\SysWOW64\rpcrt4.dll - ok
12:11:23.0465 0x0c9c  [ CFC97F07904067A1E5FAE195D534DA3A, EB4D2D127312EB09E2ACCA3276779E80F90FAF77322684BABF72B8EC6E1F906C ] C:\Windows\SysWOW64\sechost.dll
12:11:23.0465 0x0c9c  C:\Windows\SysWOW64\sechost.dll - ok
12:11:23.0465 0x0c9c  [ A5F833506BF6A1B5D693E1499DEE2444, 045874B7D37F49216E37D551076FF440E29DB5196564E714207DF753DF7FDDEE ] C:\Windows\SysWOW64\usp10.dll
12:11:23.0465 0x0c9c  C:\Windows\SysWOW64\usp10.dll - ok
12:11:23.0465 0x0c9c  [ D41D31D5B0C9B0CB2A34B878E84E7B6A, CFB009637B9BB5C52B0682DBC754399B3BAAEE9CBE65A590841F9D014C6E70E3 ] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsAcpi.dll
12:11:23.0465 0x0c9c  C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsAcpi.dll - ok
12:11:23.0481 0x0c9c  [ F08F6FCD09F9BE94C37ACC1B344685FF, DE48D766258B46EFEAB16579421C4BD97ACC6883F782D00E9857F4A0CE7E8A34 ] C:\Windows\SysWOW64\cryptbase.dll
12:11:23.0481 0x0c9c  C:\Windows\SysWOW64\cryptbase.dll - ok
12:11:23.0481 0x0c9c  [ 10826DA2FC073702AEAB93AF3D73B066, 1B55FE13B52109F1E427FCE6F64A02CF37AB6732BE4C968479BD871DE1D38A06 ] C:\Windows\SysWOW64\sspicli.dll
12:11:23.0481 0x0c9c  C:\Windows\SysWOW64\sspicli.dll - ok
12:11:23.0481 0x0c9c  [ D40CFBCF6E9960EA0F7090BCB26F2AD2, BEF2F399C6D9B39C10338055D5374C30411B415F03AC4369BEEA8D3A19B97A04 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
12:11:23.0481 0x0c9c  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll - ok
12:11:23.0481 0x0c9c  [ 386BF6FD9FC562B1A5558C49E1C3A6FB, 6ED5A61C911845027D0A67B2473603D87E79DB88F0C0C699CBB2D1639C1DFDA5 ] C:\Windows\SysWOW64\shell32.dll
12:11:23.0481 0x0c9c  C:\Windows\SysWOW64\shell32.dll - ok
12:11:23.0481 0x0c9c  [ 6A6B2EE4565A178035BE2A4FF6F2C968, E2E231F1C2E2CE19583483ACC53318651FA7CA2DE46BCB89B4CBF97CA0525122 ] C:\Windows\SysWOW64\wtsapi32.dll
12:11:23.0481 0x0c9c  C:\Windows\SysWOW64\wtsapi32.dll - ok
12:11:23.0496 0x0c9c  [ A6F09E5669D9A19035F6D942CAA15882, 68C8AF0CC1923E3A7245392F2480EE665D265DF300A609D2540BF7C6D9C1A1BE ] C:\Windows\SysWOW64\imm32.dll
12:11:23.0496 0x0c9c  C:\Windows\SysWOW64\imm32.dll - ok
12:11:23.0496 0x0c9c  [ C9618BC9B2B0FD7C1138D8774795A79B, 0AC170669C2626519FA7A745C56BFBA6B83B8537488F5B9EB7BA72448E5E7A43 ] C:\Windows\SysWOW64\msctf.dll
12:11:23.0496 0x0c9c  C:\Windows\SysWOW64\msctf.dll - ok
12:11:23.0496 0x0c9c  [ C733D233B623B7FFCE5031E4B756EE26, 33CC8B140B0E4A9B702E3468BE2646AEE4273F20C6EA5BAC6C3D8FC8EDEF0881 ] C:\Windows\SysWOW64\profapi.dll
12:11:23.0496 0x0c9c  C:\Windows\SysWOW64\profapi.dll - ok
12:11:23.0496 0x0c9c  [ D15618A0FF8DBC2C5BF3726BACC75A0B, ADD81EA1D208907D67802F0E96EC0327BA89021F870BA22B9C7E3A19013A6AE7 ] C:\Windows\SysWOW64\userenv.dll
12:11:23.0496 0x0c9c  C:\Windows\SysWOW64\userenv.dll - ok
12:11:23.0496 0x0c9c  [ 357BE883C5236BFC7341CB9E82308908, 4DDB697FD9B7C516CF99D73C8799EA35BB97E2431216CD7C1045F17B06109FBF ] C:\Windows\System32\wlanapi.dll
12:11:23.0496 0x0c9c  C:\Windows\System32\wlanapi.dll - ok
12:11:23.0496 0x0c9c  [ 8CC3C111D653E96F3EA1590891491D71, 1D326D7D116D76876EE2B14A5BFB7B4328E21DB9B5AAAB9CB67F8EFB93924230 ] C:\Windows\SysWOW64\shlwapi.dll
12:11:23.0496 0x0c9c  C:\Windows\SysWOW64\shlwapi.dll - ok
12:11:23.0512 0x0c9c  [ 28DC376662EB61492BB33D98CD80CA5C, 62B98E091F9CFB8A9A934FC51C76E68DC9EB27E9832BF6FAC136EAEED4395286 ] E:\Program Files (x86)\ASUS\ASWLCCSVC.exe
12:11:23.0512 0x0c9c  E:\Program Files (x86)\ASUS\ASWLCCSVC.exe - ok
12:11:23.0512 0x0c9c  [ 6C765E82B57F2E66CE9C54AC238471D9, 97F410023F5C08B4BC5DBF89A642200E76F4025ADD9707C24FD89D673675BB43 ] C:\Windows\SysWOW64\oleaut32.dll
12:11:23.0512 0x0c9c  C:\Windows\SysWOW64\oleaut32.dll - ok
12:11:23.0512 0x0c9c  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8, B1A9B2EF000917214C0198958CBD239D1D91B1720EC40DF041262A34D302AD74 ] C:\Windows\SysWOW64\winspool.drv
12:11:23.0512 0x0c9c  C:\Windows\SysWOW64\winspool.drv - ok
12:11:23.0512 0x0c9c  [ 928CF7268086631F54C3D8E17238C6DD, F058FAFB04E7EBD5CADE9B48195B7AA7C3508F332A89F5E6E5F3F071E8CADD4A ] C:\Windows\SysWOW64\ole32.dll
12:11:23.0512 0x0c9c  C:\Windows\SysWOW64\ole32.dll - ok
12:11:23.0512 0x0c9c  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] C:\Windows\System32\cryptsvc.dll
12:11:23.0512 0x0c9c  C:\Windows\System32\cryptsvc.dll - ok
12:11:23.0527 0x0c9c  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] C:\Windows\System32\dps.dll
12:11:23.0527 0x0c9c  C:\Windows\System32\dps.dll - ok
12:11:23.0527 0x0c9c  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] C:\Windows\System32\IKEEXT.DLL
12:11:23.0527 0x0c9c  C:\Windows\System32\IKEEXT.DLL - ok
12:11:23.0527 0x0c9c  [ F436E847FA799ECD75AD8C313673F450, 3C8BF3F0C08C7FA8DE5CD9C60AD9D00B742E84EB1FEBEEBA0F7159844BAAA471 ] C:\Windows\SysWOW64\cfgmgr32.dll
12:11:23.0527 0x0c9c  C:\Windows\SysWOW64\cfgmgr32.dll - ok
12:11:23.0527 0x0c9c  [ A6B726DCA228F7878E38368A1BDC68BE, 30E8300B09B876E3D4B2A9215C9CC070EADF915E1268F425B6F8E0596A0D3539 ] C:\Windows\System32\cryptnet.dll
12:11:23.0527 0x0c9c  C:\Windows\System32\cryptnet.dll - ok
12:11:23.0527 0x0c9c  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB, 018CB95A43CEA2063EA24691C71D51EF60D522C21502ABA8AD93876363D4B857 ] C:\Windows\System32\taskschd.dll
12:11:23.0527 0x0c9c  C:\Windows\System32\taskschd.dll - ok
12:11:23.0543 0x0c9c  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567, 426FB40A065FEF61980C803EF72D0D326C623340C3AE99CA8AFFDEFB81E8D49D ] C:\Windows\System32\vssapi.dll
12:11:23.0543 0x0c9c  C:\Windows\System32\vssapi.dll - ok
12:11:23.0543 0x0c9c  [ C1985BD968C9AFD75A7113DC0DBB68CB, AB271A826002557F25E8D9EE522E0A12D51A9FDB887A3DFE67419BFB58CCD773 ] C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\css_core.dll
12:11:23.0543 0x0c9c  C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\css_core.dll - ok
12:11:23.0543 0x0c9c  [ 7ED3A9C3763725BD700946971215EE77, 6150D52945E10B69CFA5E3E637DCEBA67158092C6350B4AFE456EA846CA90C18 ] C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
12:11:23.0543 0x0c9c  C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe - ok
12:11:23.0543 0x0c9c  [ A543AC1F7138376D778D630A35FCBC4C, 2D824C66A97FC8C39DAFA397CC47495B712D175EEF393486946DA8936BDD466A ] C:\Windows\SysWOW64\psapi.dll
12:11:23.0543 0x0c9c  C:\Windows\SysWOW64\psapi.dll - ok
12:11:23.0543 0x0c9c  [ 77B5035BC6EDF4D1B6265391AECEE4C0, FE69B715F04446BD42AF1B672E6AC54E954CFE0C847BFD2056CB11CF017B1844 ] C:\Windows\System32\vpnikeapi.dll
12:11:23.0543 0x0c9c  C:\Windows\System32\vpnikeapi.dll - ok
12:11:23.0559 0x0c9c  [ 10FB16B50AFFDA6D44588F3C445DC273, 6CDA17DA9B44D11E69F7C6682FA633EA75731623BB21B429A0FE2086ED4495A7 ] C:\Windows\SysWOW64\setupapi.dll
12:11:23.0559 0x0c9c  C:\Windows\SysWOW64\setupapi.dll - ok
12:11:23.0559 0x0c9c  [ 287923557447D7E4BDD7E65B1F0F5428, 14D85A0F036F28D77AA9723C3D7E8C4DA9BDFF8A1AD9BEA6FE5756DBF5D00F08 ] C:\Windows\System32\vsstrace.dll
12:11:23.0559 0x0c9c  C:\Windows\System32\vsstrace.dll - ok
12:11:23.0559 0x0c9c  [ EE19C85CA685A275BE346EC41F1870F9, F071D88C38C62E9D88DDE29F451B2B581499758A7E60BDA6DED3376280C5A635 ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_72d576ad8665e853\GdiPlus.dll
12:11:23.0559 0x0c9c  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_72d576ad8665e853\GdiPlus.dll - ok
12:11:23.0559 0x0c9c  [ 2EEFF4502F5E13B1BED4A04CCAD64C08, 209FF1B6D46D1AC99518FCF54F2F726143B2DBF2C5FDA90212FBEF7526F7CBF5 ] C:\Windows\SysWOW64\devobj.dll
12:11:23.0559 0x0c9c  C:\Windows\SysWOW64\devobj.dll - ok
12:11:23.0559 0x0c9c  [ D5AEFAD57C08349A4393D987DF7C715D, C36A45BC2448DF30CD17BD2F8A17FC196FAFB685612CACCEB22DC7B58515C201 ] C:\Windows\SysWOW64\winmm.dll
12:11:23.0559 0x0c9c  C:\Windows\SysWOW64\winmm.dll - ok
12:11:23.0574 0x0c9c  [ 7FF15A4F092CD4A96055BA69F903E3E9, 1B594E6D057C632ABB3A8CF838157369024BD6B9F515CA8E774B22FE71A11627 ] C:\Windows\SysWOW64\ws2_32.dll
12:11:23.0574 0x0c9c  C:\Windows\SysWOW64\ws2_32.dll - ok
12:11:23.0574 0x0c9c  [ DF13A51A5C591887D2EC6AE64CEED0FA, DFD503AEBCAA056B2B0E669ACA52F6D26F4E6892F2DCFCCD902752C23A621653 ] C:\Windows\SysWOW64\wsock32.dll
12:11:23.0574 0x0c9c  C:\Windows\SysWOW64\wsock32.dll - ok
12:11:23.0574 0x0c9c  [ CC09E0C9A2D89C6E71D093DC8BD121B7, 5F92457E27D817541EBA92FED984D2E6C1E35AD4E4E4CAE0F0778B795C260FAA ] C:\Windows\SysWOW64\crypt32.dll
12:11:23.0574 0x0c9c  C:\Windows\SysWOW64\crypt32.dll - ok
12:11:23.0574 0x0c9c  [ A90DC9ABD65DB1A8902F361103029952, 26798758976CE53251AC342B966BE0363AE1794BD965C452F5DEBC33E18969F0 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
12:11:23.0574 0x0c9c  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
12:11:23.0574 0x0c9c  [ DC6612A9EE015A36BA2A27BC9CC12537, F4456A3E4028BE3BDE46363290CCC1E8420034A122596D86272CE4B554C78DB5 ] C:\Windows\SysWOW64\mfc42.dll
12:11:23.0574 0x0c9c  C:\Windows\SysWOW64\mfc42.dll - ok
12:11:23.0574 0x0c9c  [ 6377051C63D5552A311935C67E9FDFDC, 3FB82988AAB66813567E8DB951D4EE87F156201070F005FDBF52EF998A323E65 ] C:\Windows\SysWOW64\nsi.dll
12:11:23.0574 0x0c9c  C:\Windows\SysWOW64\nsi.dll - ok
12:11:23.0590 0x0c9c  [ CFF35B879D1618D42C86644C717BA947, 1837275202628D3320867A3BF8CFDA15491730C4B74215F7C0D7E140BF01AC3C ] C:\Windows\SysWOW64\winnsi.dll
12:11:23.0590 0x0c9c  C:\Windows\SysWOW64\winnsi.dll - ok
12:11:23.0590 0x0c9c  [ 938F39B50BAFE13D6F58C7790682C010, 902000EE51EFEABAF6A4B30F880AA37083D2232C6FC622CA513C4A823390FEDA ] C:\Windows\SysWOW64\msasn1.dll
12:11:23.0590 0x0c9c  C:\Windows\SysWOW64\msasn1.dll - ok
12:11:23.0590 0x0c9c  [ 7D34AF98A706230CC2DEDFE0CABF87AB, 93237B839C2BC6E84C2C675BB211CA0FB781B348A033EF648A9AA5BDAC1EFDAE ] C:\Windows\SysWOW64\odbc32.dll
12:11:23.0590 0x0c9c  C:\Windows\SysWOW64\odbc32.dll - ok
12:11:23.0590 0x0c9c  [ 43964FA89CCF97BA6BE34D69455AC65F, 10E3B89A5470E1BB6F73382135DD2352F5073C1EE8485D7476CFB5122D4AAA2F ] C:\Windows\SysWOW64\uxtheme.dll
12:11:23.0590 0x0c9c  C:\Windows\SysWOW64\uxtheme.dll - ok
12:11:23.0590 0x0c9c  [ 03706015DB44368375AEBE6339490E66, 02EB28B5156E320C1EBABC03D37E94EB770A721B99E1DD276F8DC2A50D76C381 ] C:\Windows\System32\netcfgx.dll
12:11:23.0590 0x0c9c  C:\Windows\System32\netcfgx.dll - ok
12:11:23.0605 0x0c9c  [ FF5688D309347F2720911D8796912834, 3B0D73C50D40A6F42629B7750F99F656BF5C1C50237D5F98B6C0F2CE5E2DA359 ] C:\Windows\SysWOW64\clbcatq.dll
12:11:23.0605 0x0c9c  C:\Windows\SysWOW64\clbcatq.dll - ok
12:11:23.0605 0x0c9c  [ 7321F18D1F820612ED0E9F2D4B578A7E, 612BD7DE1DFBD100BD6ACB37A38565D88C39842D990D296B9B8E1FB75C3A94E7 ] C:\Windows\SysWOW64\cryptsp.dll
12:11:23.0605 0x0c9c  C:\Windows\SysWOW64\cryptsp.dll - ok
12:11:23.0605 0x0c9c  [ 1F5AFD468EB5E09E9ED75A087529EAB5, 8204DBCC054C1E54B6065BACB78C55716681AD91759E25111B4E4797E51D0AA3 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll
12:11:23.0605 0x0c9c  C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll - ok
12:11:23.0605 0x0c9c  [ 5997D769CDB108390DCFAEBF442BF816, 0E25CA984C0EEB629184423FAA9BC6D4356DF9A93F281E06DC83B4AC638AEC4A ] C:\Windows\SysWOW64\RpcRtRemote.dll
12:11:23.0605 0x0c9c  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
12:11:23.0605 0x0c9c  [ ED8EC63F7522DF4852147C84EC62C36A, 75633011CD28DCBD4834211A9D415F17DE15BFCD80FB9FF6CE25CBBD4E9899AF ] C:\Windows\SysWOW64\rsaenh.dll
12:11:23.0605 0x0c9c  C:\Windows\SysWOW64\rsaenh.dll - ok
12:11:23.0621 0x0c9c  [ C9564CF4976E7E96B4052737AA2492B4, C3AC989C8489A23BB96400B1856F5325FFC67E844F04651EA5D61BC20A991C6D ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
12:11:23.0621 0x0c9c  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
12:11:23.0621 0x0c9c  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC, 372AF797353F9335915CD06D4076BAB8410775DCAF2DAC0593197D7C41BBFFB2 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
12:11:23.0621 0x0c9c  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
12:11:23.0621 0x0c9c  [ ABA457BFC7EC0B5E130B2F1E0F549DFF, C944C75C351A276952D0A869F9ED3DF8674E9479797EE7B03D13E8FDCDEB2DC4 ] C:\Windows\SysWOW64\odbcint.dll
12:11:23.0621 0x0c9c  C:\Windows\SysWOW64\odbcint.dll - ok
12:11:23.0621 0x0c9c  [ CCE3B423254296E4E1C3C52AB504108F, 045EE134F1A1A6C00628F964DDB882A6E3893017025ECA291B01C2870579EDA9 ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll
12:11:23.0621 0x0c9c  C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok
12:11:23.0621 0x0c9c  [ 28A09777D2D952122567A8A82F1A2C7B, 772260DF36AE85A0619C51402DE416E0C329976B724C8E9C4F8C013CBB7C7289 ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
12:11:23.0621 0x0c9c  C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
12:11:23.0637 0x0c9c  [ 93F304DEB07095BCF33BD1C17C2DB2A7, DCD4A810512BE0D86E019DB19C4317AB3FD2FEEE1166162155F6B5BA7D0EFF4F ] C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
12:11:23.0637 0x0c9c  C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe - ok
12:11:23.0637 0x0c9c  [ F5CEF064C7E6D95DA86B9D064A56A969, F118CD4364690F37A07AE458E043E8CFBA98F332DC9E7228C83409CF26F6EF6D ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
12:11:23.0637 0x0c9c  C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
12:11:23.0637 0x0c9c  [ 218A400108F280428FA22282D3268BBC, 7712687ABAEF6616E90AE5A321044C102E79EC23F4A1EAFB4278C93724873CB3 ] C:\Windows\System32\wscapi.dll
12:11:23.0637 0x0c9c  C:\Windows\System32\wscapi.dll - ok
12:11:23.0637 0x0c9c  [ E94C583CDE2348950155F2AF2876F34D, D00C7E0D665E467B712C68A446CC5BE14FDA743A2301878B3CEB72CDD0A8B8E7 ] C:\Windows\SysWOW64\mswsock.dll
12:11:23.0637 0x0c9c  C:\Windows\SysWOW64\mswsock.dll - ok
12:11:23.0637 0x0c9c  [ 702254574E7E52052DE39408457B7149, 645CA9E88DA21C63710A04A0F54421018DF415A3D612112C71A255C49325C082 ] C:\Windows\SysWOW64\version.dll
12:11:23.0637 0x0c9c  C:\Windows\SysWOW64\version.dll - ok
12:11:23.0652 0x0c9c  [ EE5C8E27C37B79CB54A2FCEEED2DC262, 0A5E200FD65A491756B951A4A0ED39B88B7B313E97C2BBF3C91AC4C290772BB7 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
12:11:23.0652 0x0c9c  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
12:11:23.0652 0x0c9c  [ 586B7EC1604986F4DD4EEBB54818D3E9, 2F5FAFDF72C9543E082B63DA0952DB7121320A5EE06D45C9622A3DB64232B20E ] E:\Program Files (x86)\CyberLink\YouCam6\subsys\PyFaceLogin\CLWFL.dll
12:11:23.0652 0x0c9c  E:\Program Files (x86)\CyberLink\YouCam6\subsys\PyFaceLogin\CLWFL.dll - ok
12:11:23.0652 0x0c9c  [ 7069AAB8536F29ED7323140973A2894B, 04B7FB6C64BFA3B80549F35CEF36D5DAE5D19A40E42444B3665B6BEFDF98EB5F ] C:\Windows\SysWOW64\msdmo.dll
12:11:23.0652 0x0c9c  C:\Windows\SysWOW64\msdmo.dll - ok
12:11:23.0652 0x0c9c  [ 919001D2BB17DF06CA3F8AC16AD039F6, 5169ACFBE9E9D4C4012773ECDD28231C952675EF0C272A40F226E7B5D671B18B ] C:\Windows\SysWOW64\sxs.dll
12:11:23.0652 0x0c9c  C:\Windows\SysWOW64\sxs.dll - ok
12:11:23.0652 0x0c9c  [ A7A8CA53D9C9FD90C07AB0EB38E5316B, B98722E76601A98F038F40703C4B8BD21B5EC3B65DC1B07B7C367C06448F8A0E ] C:\Windows\System32\dbghelp.dll
12:11:23.0652 0x0c9c  C:\Windows\System32\dbghelp.dll - ok
12:11:23.0652 0x0c9c  [ 1727B2A2F379A32B864C096FA794AADC, 87B77A5DF95F3A1C5ED6DEF820C7E384BEFCBAA2FE1BB4781AC6F777A081E5CC ] C:\Windows\System32\aepic.dll
12:11:23.0652 0x0c9c  C:\Windows\System32\aepic.dll - ok
12:11:23.0668 0x0c9c  [ F9EEFFC65C68A45001D1349E652B8B6F, E5F223129416083A12A85D48C65B2C8D1BF1124110399938E144308C89F9241D ] C:\Windows\System32\drivers\NisDrvWFP.sys
12:11:23.0668 0x0c9c  C:\Windows\System32\drivers\NisDrvWFP.sys - ok
12:11:23.0668 0x0c9c  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] C:\Windows\System32\nlasvc.dll
12:11:23.0668 0x0c9c  C:\Windows\System32\nlasvc.dll - ok
12:11:23.0668 0x0c9c  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] C:\Windows\System32\drivers\PEAuth.sys
12:11:23.0668 0x0c9c  C:\Windows\System32\drivers\PEAuth.sys - ok
12:11:23.0668 0x0c9c  [ D4FAC263861BAE06971C7F7D0A8EBF15, D494DEF0024288B9CC56EC6B500FF5828144BE9B8E7033340509EC5E68F8DED0 ] C:\Windows\System32\ncsi.dll
12:11:23.0668 0x0c9c  C:\Windows\System32\ncsi.dll - ok
12:11:23.0668 0x0c9c  [ C6DCD1D11ED6827F05C00773C3E7053C, EA23BE261C9C04F44215D254D7A80FD0AEE84C6F192D0FEE49A7CF74ED3CB1A6 ] C:\Windows\System32\sfc.dll
12:11:23.0668 0x0c9c  C:\Windows\System32\sfc.dll - ok
12:11:23.0683 0x0c9c  [ 895C9AB0A855547445C4181195230757, 89BDA385D8CCB75C3D7B1BDFA567AC441A931F4E499C0835FEE9D010343FABB6 ] C:\Windows\System32\sfc_os.dll
12:11:23.0683 0x0c9c  C:\Windows\System32\sfc_os.dll - ok
12:11:23.0683 0x0c9c  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE, 4EFA41765E46E90C6CBDB0DC1E0CD375D7AB3307C477171EBAA6A16AC32E5211 ] C:\Windows\System32\ssdpapi.dll
12:11:23.0683 0x0c9c  C:\Windows\System32\ssdpapi.dll - ok
12:11:23.0683 0x0c9c  [ F115AF58ABE5605D7D709CBFBD83F418, 4855FCD6E455D6E374CE92E5B37D61E7E6D8A861BA76521E7CC2542621853471 ] C:\Windows\SysWOW64\PSIService.exe
12:11:23.0683 0x0c9c  C:\Windows\SysWOW64\PSIService.exe - ok
12:11:23.0683 0x0c9c  [ 8FDA02E3E944E203E118F3DABA7C026D, A63DE68159B73FA9951E89F64471AA0734E8BBB3CF4A785F84162DF8670E3D40 ] C:\Windows\SysWOW64\PSIKey.dll
12:11:23.0683 0x0c9c  C:\Windows\SysWOW64\PSIKey.dll - ok
12:11:23.0683 0x0c9c  [ E7B9D5FF20FFDD4AAE2EF1D1B8C27A37, 689D126B1B42140D5049015E3E324268E6542D4BC6CC14E31D8B89A25B94BAA5 ] C:\Windows\SysWOW64\imagehlp.dll
12:11:23.0683 0x0c9c  C:\Windows\SysWOW64\imagehlp.dll - ok
12:11:23.0683 0x0c9c  [ 8E01332CC4B68BC6B5B7EFFE374442AA, A4AD1D2FD3EC2F26949DBBC388F9FFF3713AD7EB4E9220AF817EBB5223E467C6 ] C:\Windows\SysWOW64\oleacc.dll
12:11:23.0683 0x0c9c  C:\Windows\SysWOW64\oleacc.dll - ok
12:11:23.0699 0x0c9c  [ 75F5E1FE8D55CF8E577E0EC5F2290D3F, F4E2C81F0834018052A481AE8D7DF4780302A6844160CCDC09F7D82D3B992BDE ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll
12:11:23.0699 0x0c9c  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll - ok
12:11:23.0699 0x0c9c  [ D1DE1EAFDE97BE41CF6585027FF3E732, 76F17D4DF440D6734DC8157092D94EB18C2A73A0A49BEEA289E7B3EDE30E86A2 ] C:\Windows\SysWOW64\comdlg32.dll
12:11:23.0699 0x0c9c  C:\Windows\SysWOW64\comdlg32.dll - ok
12:11:23.0699 0x0c9c  [ A054EA8FBE16D4D34F06D81A4F0088E2, 1CD4EECFDA374C8A7B8AD4E664DC057B9C75813AF776A616DC6D845905567CBD ] C:\Windows\SysWOW64\WindowsCodecs.dll
12:11:23.0699 0x0c9c  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
12:11:23.0699 0x0c9c  [ 39C5F32747B3414D1BB216FDB1DEFC58, 6FAE64CB9748304090113903A5AE9E7154BE16BA2EEA7AB3EF04AB9D79B81380 ] C:\Windows\SysWOW64\dwmapi.dll
12:11:23.0699 0x0c9c  C:\Windows\SysWOW64\dwmapi.dll - ok
12:11:23.0699 0x0c9c  [ CC5BF60E9D3F181C0B62AC91AD8634B8, AFF680E62D989A62CBDEC2BF70B6D17F7615F9826EAEE0C8A524AF80F9FF862D ] C:\Windows\SysWOW64\qcap.dll
12:11:23.0699 0x0c9c  C:\Windows\SysWOW64\qcap.dll - ok
12:11:23.0715 0x0c9c  [ C335EC1182AC10B188705554E0BC1186, 963CD11CEF7A79559361134FDF9C07B8EA829A40D3996D77E95C291DD17AAD2B ] C:\Windows\SysWOW64\msvfw32.dll
12:11:23.0715 0x0c9c  C:\Windows\SysWOW64\msvfw32.dll - ok
12:11:23.0715 0x0c9c  [ 0AE0C4955E1DE29CCDC9DA1B816FE5EE, 93FDF0B256BCF62FEF1BF64775F5C19460D0269C1F4A11FBC3FF118851E75033 ] C:\Windows\SysWOW64\quartz.dll
12:11:23.0715 0x0c9c  C:\Windows\SysWOW64\quartz.dll - ok
12:11:23.0715 0x0c9c  [ 5BB8C06EB5EA4BA22EE8A678F2D79B25, 019E9274DE2F5BAB16B4632B8A2E93DFC8DF0C08EC4EEA947B337FD29EB2E0CC ] C:\Windows\SysWOW64\devenum.dll
12:11:23.0715 0x0c9c  C:\Windows\SysWOW64\devenum.dll - ok
12:11:23.0715 0x0c9c  [ 3FD15B4611D9BDA3F8013548C0ECAECA, B47A8D9985D9B71EB870816A0AB2B6403D394CCBDF7DE5378D5721D58D68D28D ] C:\Windows\SysWOW64\ntmarta.dll
12:11:23.0715 0x0c9c  C:\Windows\SysWOW64\ntmarta.dll - ok
12:11:23.0715 0x0c9c  [ 68EAAEDF0365168B804E8728368FA946, 1FA25087E8B247B099B729F780DBF24F77FD34F58186A1C94329261CF3D18B8E ] C:\Windows\SysWOW64\wintrust.dll
12:11:23.0715 0x0c9c  C:\Windows\SysWOW64\wintrust.dll - ok
12:11:23.0730 0x0c9c  [ A8BB45F9ECAD993461E0FEF8E2A99152, ACB756EA54E71F124D928829666B5B439785593877FF7C0C76ADCF954F4E6C94 ] C:\Windows\SysWOW64\Wldap32.dll
12:11:23.0730 0x0c9c  C:\Windows\SysWOW64\Wldap32.dll - ok
12:11:23.0730 0x0c9c  [ E24FE90E9DE8D8AE70E59F7B01675DEF, DDB0691488DB424CC203505E27364B24E4410E599A972CF2C1AFF4E2F3E3C04F ] C:\Windows\SysWOW64\avicap32.dll
12:11:23.0730 0x0c9c  C:\Windows\SysWOW64\avicap32.dll - ok
12:11:23.0730 0x0c9c  [ 24498D084FAA7A459C91066EC241E1CE, 5214A26D8B441F7A55414DC2935AF6C76DB8C8D55F8677DA97D19943C69D765E ] C:\Windows\SysWOW64\vfwwdm32.dll
12:11:23.0730 0x0c9c  C:\Windows\SysWOW64\vfwwdm32.dll - ok
12:11:23.0730 0x0c9c  [ 4BAA953BC60216E3C7531C45B1F1190F, 6FD5102660E28F218C55C0CA40C81066856B16A50F8B3959850190DE82D98148 ] E:\Program Files (x86)\CyberLink\YouCam6\Custom\Lang\ENU\IM.dll
12:11:23.0730 0x0c9c  E:\Program Files (x86)\CyberLink\YouCam6\Custom\Lang\ENU\IM.dll - ok
12:11:23.0730 0x0c9c  [ 6EF5F3F18413C367195F06E503AB86A6, 6F8B87FB4D67F9E76A51EF759B58A95D903C4AAC9C789A65A3FA1FC4F253D978 ] C:\Windows\SysWOW64\d3d9.dll
12:11:23.0730 0x0c9c  C:\Windows\SysWOW64\d3d9.dll - ok
12:11:23.0730 0x0c9c  [ C140F86932B5B61F54A4D836E2D34AB2, 94821597EC70F27BF11A747D5EED474C57F389F20A2E0C3F1D0CB3F00974A53B ] C:\Windows\SysWOW64\ksproxy.ax
12:11:23.0730 0x0c9c  C:\Windows\SysWOW64\ksproxy.ax - ok
12:11:23.0746 0x0c9c  [ 9C67F6BBDA3881CFD02095160CF91576, 6CE97C6F0AD8BE183DE935A7AAB7D46821E8DE9E55A4BFF54ACB49D056826A94 ] C:\Windows\SysWOW64\ksuser.dll
12:11:23.0746 0x0c9c  C:\Windows\SysWOW64\ksuser.dll - ok
12:11:23.0746 0x0c9c  [ 77B1471A490B53B24EFE136F09F76550, A650C3A244306F8E605BDA8E74BFE438356BA4403B0CB61E980D3183E3F0A7C7 ] C:\Windows\SysWOW64\d3d8thk.dll
12:11:23.0746 0x0c9c  C:\Windows\SysWOW64\d3d8thk.dll - ok
12:11:23.0746 0x0c9c  [ 4DDACA8A66B95ABA02812FF3C13DE198, FC14FA85367B29A5DA6479D198B9FA1D9A41C965685F51D5F0166D72A9F4668E ] C:\Windows\SysWOW64\vidcap.ax
12:11:23.0746 0x0c9c  C:\Windows\SysWOW64\vidcap.ax - ok
12:11:23.0746 0x0c9c  [ 5AA945234E9D4CCE4F715276B9AA712C, 65165BD131056816F009D987FC78AC86FFE0C3C38A27E73F873586B7FF4D59CF ] C:\Windows\System32\imageres.dll
12:11:23.0746 0x0c9c  C:\Windows\System32\imageres.dll - ok
12:11:23.0746 0x0c9c  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] C:\Windows\System32\drivers\mspqm.sys
12:11:23.0746 0x0c9c  C:\Windows\System32\drivers\mspqm.sys - ok
12:11:23.0761 0x0c9c  [ 418E881201583A3039D81F43E39E6C78, C96AAC161E09BE12815A4E931E65F66DB1A456C03253EF1111AE66F44B1515FF ] C:\Windows\SysWOW64\winsta.dll
12:11:23.0761 0x0c9c  C:\Windows\SysWOW64\winsta.dll - ok
12:11:23.0761 0x0c9c  [ 210FCACAF902B2CD47CF9FD17D846146, 3F77AC721E084864C5966FF5337A90185F62203DC19C685328675500D629CB87 ] C:\Windows\System32\aeevts.dll
12:11:23.0761 0x0c9c  C:\Windows\System32\aeevts.dll - ok
12:11:23.0761 0x0c9c  [ EA735BF6DF13A857A83C99BF27A422AD, 026A57155FB9E01CFAFD8613980CDF0F3D744ABBBC66EFDC6C20B89980FB45CF ] C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
12:11:23.0761 0x0c9c  C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe - ok
12:11:23.0761 0x0c9c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] C:\Windows\System32\drivers\secdrv.sys
12:11:23.0761 0x0c9c  C:\Windows\System32\drivers\secdrv.sys - ok
12:11:23.0761 0x0c9c  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] C:\Windows\System32\drivers\srvnet.sys
12:11:23.0761 0x0c9c  C:\Windows\System32\drivers\srvnet.sys - ok
12:11:23.0777 0x0c9c  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] C:\Windows\System32\drivers\tcpipreg.sys
12:11:23.0777 0x0c9c  C:\Windows\System32\drivers\tcpipreg.sys - ok
12:11:23.0777 0x0c9c  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] C:\Windows\System32\trkwks.dll
12:11:23.0777 0x0c9c  C:\Windows\System32\trkwks.dll - ok
12:11:23.0777 0x0c9c  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] C:\Windows\System32\wbem\WMIsvc.dll
12:11:23.0777 0x0c9c  C:\Windows\System32\wbem\WMIsvc.dll - ok
12:11:23.0777 0x0c9c  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] C:\Windows\System32\wiaservc.dll
12:11:23.0777 0x0c9c  C:\Windows\System32\wiaservc.dll - ok
12:11:23.0777 0x0c9c  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] C:\Windows\System32\drivers\srv2.sys
12:11:23.0777 0x0c9c  C:\Windows\System32\drivers\srv2.sys - ok
12:11:23.0793 0x0c9c  [ 7DB5AA22A8A8E5C2D335F44853C1F6DE, A734A20357026C42950394682A52CBC3AF956D09F1949E1B4E95467E999BC428 ] C:\Windows\System32\wbemcomn.dll
12:11:23.0793 0x0c9c  C:\Windows\System32\wbemcomn.dll - ok
12:11:23.0793 0x0c9c  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5, BDA403E6CACC249C467671FB1FAF7B77FB019326BC18F9F6CF377104520E2654 ] C:\Windows\System32\wiatrace.dll
12:11:23.0793 0x0c9c  C:\Windows\System32\wiatrace.dll - ok
12:11:23.0793 0x0c9c  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] C:\Windows\System32\drivers\srv.sys
12:11:23.0793 0x0c9c  C:\Windows\System32\drivers\srv.sys - ok
12:11:23.0793 0x0c9c  [ A3F5E8EC1316C3E2562B82694A251C9E, F3DC6AA6A9D3B5BBC730668FC52C1D4BB5D515D404578BDDD3D4869A7ED58822 ] C:\Windows\System32\wbem\fastprox.dll
12:11:23.0793 0x0c9c  C:\Windows\System32\wbem\fastprox.dll - ok
12:11:23.0793 0x0c9c  [ 0255C22D99602534F15CBB8D9B6F152F, 43CD89D6CA56E0B633142F7C86DA9E072EE0723B5EBC4CE8CCBCA58C396ECF54 ] C:\Windows\System32\wbem\WinMgmtR.dll
12:11:23.0793 0x0c9c  C:\Windows\System32\wbem\WinMgmtR.dll - ok
12:11:23.0793 0x0c9c  [ 0C52762C606BCF6A377D5E4688191A6B, C58C9A73AD07E3B93AB186D0D47C5F1CB7197771DBEE40646C3B801645BB388F ] C:\Windows\System32\wbem\WmiDcPrv.dll
12:11:23.0793 0x0c9c  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
12:11:23.0808 0x0c9c  [ B5055B51BAA0FD0A736A88653DA3C1C0, A3BD057C7E8C926930BA7E9D11427D26FB37267026A0B72AB4021101EE424F74 ] C:\Windows\System32\fundisc.dll
12:11:23.0808 0x0c9c  C:\Windows\System32\fundisc.dll - ok
12:11:23.0808 0x0c9c  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] C:\Windows\System32\iphlpsvc.dll
12:11:23.0808 0x0c9c  C:\Windows\System32\iphlpsvc.dll - ok
12:11:23.0808 0x0c9c  [ EE26D130808D16C0E417BBBED0451B34, 4886DCE4FAEF146A40BABD492A8000A2022FEA542A6135A9BAFD4CD09297B4E5 ] C:\Windows\System32\ntdsapi.dll
12:11:23.0808 0x0c9c  C:\Windows\System32\ntdsapi.dll - ok
12:11:23.0808 0x0c9c  [ 4C1244FEF74C60A4B1B151C76609CBE2, 3E500204A9232D5B332BE16C281A32B957D03BBA836851BE7754F030872FAC83 ] C:\Windows\System32\wsdchngr.dll
12:11:23.0808 0x0c9c  C:\Windows\System32\wsdchngr.dll - ok
12:11:23.0808 0x0c9c  [ 4581716B4BF76ACFD8E167EB0B26D82A, 39D822527114EEED68044CCE4D542767F53978D9E0A7F72638F1CA9A016DE13B ] C:\Windows\System32\fdPnp.dll
12:11:23.0808 0x0c9c  C:\Windows\System32\fdPnp.dll - ok
12:11:23.0824 0x0c9c  [ 27B9E163740A226B65E4B9E186117911, 17411C6A6C1E699BC4B0C04D782FD9AA09CF577DBA41E743F7588904D489CB9F ] C:\Windows\System32\sqmapi.dll
12:11:23.0824 0x0c9c  C:\Windows\System32\sqmapi.dll - ok
12:11:23.0824 0x0c9c  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] C:\Windows\System32\srvsvc.dll
12:11:23.0824 0x0c9c  C:\Windows\System32\srvsvc.dll - ok
12:11:23.0824 0x0c9c  [ 666A60F6F5E719856FF6254E0966EFF7, 58C072E7E215991E19C1CA062C476081982F7B9F039714539AE7FEB4981C200F ] C:\Windows\System32\wbem\wbemprox.dll
12:11:23.0824 0x0c9c  C:\Windows\System32\wbem\wbemprox.dll - ok
12:11:23.0824 0x0c9c  [ 7B38D7916A7CD058C16A0A6CA5077901, 3F6DD990E2DA5D3BD6D65A72CBFB0FE79EB30B118A8AD71B6C9BB5581A622DCE ] C:\Windows\System32\wdscore.dll
12:11:23.0824 0x0c9c  C:\Windows\System32\wdscore.dll - ok
12:11:23.0824 0x0c9c  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] C:\Windows\System32\browser.dll
12:11:23.0824 0x0c9c  C:\Windows\System32\browser.dll - ok
12:11:23.0839 0x0c9c  [ CFB89F5FF4D93244C722B4C86152870E, D68850BFA53D9A992A9332784D185368BC75CDAE83D3D6053B324AC921B06CF2 ] C:\Windows\System32\BrWia09b.dll
12:11:23.0839 0x0c9c  C:\Windows\System32\BrWia09b.dll - ok
12:11:23.0839 0x0c9c  [ 3B367397320C26DBA890B260F80D1B1B, 50BBE71B4380B5E86E197AF86F5C08266DD6B12344BA4ABDEA604B8C774C4147 ] C:\Windows\System32\hnetcfg.dll
12:11:23.0839 0x0c9c  C:\Windows\System32\hnetcfg.dll - ok
12:11:23.0839 0x0c9c  [ CFEFA40DDE34659BE5211966EAD86437, AC0A3AD8AA47012C40785013E2273FC571F416BC9C9FFDA418FE72B3123C1FB0 ] C:\Windows\System32\netmsg.dll
12:11:23.0839 0x0c9c  C:\Windows\System32\netmsg.dll - ok
12:11:23.0839 0x0c9c  [ FF80CAD87555E8E4D2CFD7B9058343F8, 07653773FBEC1996408B8507B08E0E1E812830063F932F897F4B39EE63DDCDC4 ] C:\Windows\System32\sscore.dll
12:11:23.0839 0x0c9c  C:\Windows\System32\sscore.dll - ok
12:11:23.0839 0x0c9c  [ 81749E073AC5857B044A686B406E5244, 3884EE705CA34235B29942FEDA8FEA654A21139B8C2A1D5E009C7D07D6E6ADF1 ] C:\Windows\System32\clusapi.dll
12:11:23.0839 0x0c9c  C:\Windows\System32\clusapi.dll - ok
12:11:23.0839 0x0c9c  [ 344FCC9850C3A8A3B4D3C65151AF8E4C, C38853454E153B1AB4AEAE1AAFB7CB4B2E6234208CF24C09F3B2AFE25E271C5C ] C:\Windows\System32\resutils.dll
12:11:23.0839 0x0c9c  C:\Windows\System32\resutils.dll - ok
12:11:23.0855 0x0c9c  [ F7E457984E711DDBBB0BD7F0D8424D5F, EBB33FDE27B2EB9027541998B12D05BFAE4C041B1FA7945475339167CFAD4E02 ] C:\Windows\System32\BrUsi09a.dll
12:11:23.0855 0x0c9c  C:\Windows\System32\BrUsi09a.dll - ok
12:11:23.0855 0x0c9c  [ FEB91B4DA0D540865260A33838654FA3, 8636B008BA329D3E6CC235D08BA4C914EFF45DBFCB9297C893CCDA8D907BA946 ] C:\Windows\System32\nci.dll
12:11:23.0855 0x0c9c  C:\Windows\System32\nci.dll - ok
12:11:23.0855 0x0c9c  [ EF2AE43BCD46ABB13FC3E5B2B1935C73, 81FC06F306F620845D7DD8D06E706309E70BC89B589C81F3478302A3F5F73431 ] C:\Windows\System32\winmm.dll
12:11:23.0855 0x0c9c  C:\Windows\System32\winmm.dll - ok
12:11:23.0855 0x0c9c  [ 5EB55F661DEBF156E126160BCD4D89F8, 948D1F627AA55D55FB3B558BA61B8366C5481A6041820631F24408F75EA5D2CC ] C:\Windows\System32\wbem\wbemcore.dll
12:11:23.0855 0x0c9c  C:\Windows\System32\wbem\wbemcore.dll - ok
12:11:23.0855 0x0c9c  [ 087D8668C71634A3A3761135ABF16EEE, B7348A63299CFF4FFBF375E645A4850AE0F108D48D13AB25434CFAE7CF3D61FD ] C:\Windows\System32\wbem\esscli.dll
12:11:23.0855 0x0c9c  C:\Windows\System32\wbem\esscli.dll - ok
12:11:23.0871 0x0c9c  [ 718B6F51AB7F6FE2988A36868F9AD3AB, 76141B4E94C2766E2C34CEF523092948771A7893212EFADBE88D2171B85FF012 ] C:\Windows\System32\wbem\wbemsvc.dll
12:11:23.0871 0x0c9c  C:\Windows\System32\wbem\wbemsvc.dll - ok
12:11:23.0871 0x0c9c  [ 0AB34456654C283DAA13B8D2BA21439B, 4B70FC5195DE39564E951C8542020BA3D4257E3D4488F69825F67A6099CB7549 ] C:\Windows\System32\wbem\repdrvfs.dll
12:11:23.0871 0x0c9c  C:\Windows\System32\wbem\repdrvfs.dll - ok
12:11:23.0871 0x0c9c  [ 0143DB80DACFB7C2B5B7009ED9063353, 252885CF7C1BAB89B86908373546E5F5D674BEF7AACBDDCF321AD877CB9150A9 ] C:\Windows\System32\wbem\wmiutils.dll
12:11:23.0871 0x0c9c  C:\Windows\System32\wbem\wmiutils.dll - ok
12:11:23.0871 0x0c9c  [ DDD0357A92FA843EFF8915ED17253D6C, 0C78B1D41F0A7821186ADF653504F2BFF067CB512CB0E932047C301378BBADB6 ] C:\Windows\System32\wbem\WmiPrvSD.dll
12:11:23.0871 0x0c9c  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
12:11:23.0871 0x0c9c  [ D41FEBD098234F02485A4EA98D4730A4, 462DC8168C444F35B43BA3B8F7D77734665D84F1C6D25CAD7391C0145961628F ] C:\Windows\System32\ncobjapi.dll
12:11:23.0871 0x0c9c  C:\Windows\System32\ncobjapi.dll - ok
12:11:23.0886 0x0c9c  [ 6F40D6FB05E0C1E5402812B426971AF0, E41F138F0F2DB057F8DBB1587237C6FA8A2059B3D64EC894D1DC492A18DBBDED ] C:\Windows\System32\wbem\wbemess.dll
12:11:23.0886 0x0c9c  C:\Windows\System32\wbem\wbemess.dll - ok
12:11:23.0886 0x0c9c  [ 2DF29664ED261F0FC448E58F338F0671, 4EFE79C383D0AF126FC4EE668D822563F8F037B1E61D73747A35FE11AAFDB8CE ] C:\Windows\System32\mprapi.dll
12:11:23.0886 0x0c9c  C:\Windows\System32\mprapi.dll - ok
12:11:23.0886 0x0c9c  [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C, 78889511D6F471009674CC958F8BB77B4A79C952634B18E8AFF4A75AA6A60E87 ] C:\Windows\System32\ndiscapCfg.dll
12:11:23.0886 0x0c9c  C:\Windows\System32\ndiscapCfg.dll - ok
12:11:23.0886 0x0c9c  [ 3D6AF45673C4B31CDECD7F80AF09D443, 7D711D138C107816155AFA5E5FDC6892734074BEFF604B5904177B5D9ACE4670 ] C:\Windows\System32\rascfg.dll
12:11:23.0886 0x0c9c  C:\Windows\System32\rascfg.dll - ok
12:11:23.0886 0x0c9c  [ C3FFC0992B2D706976B5D4FEA1D01F05, A40EA91A3F254E7E9FA55A8B52438DDF9D557B3ADF3A0A36572D6D5CA2D830CA ] C:\Windows\System32\brdgcfg.dll
12:11:23.0886 0x0c9c  C:\Windows\System32\brdgcfg.dll - ok
12:11:23.0886 0x0c9c  [ 1CF21800E337F4039AAD4C94B4280EE4, EF434CEF6E62A202B85E8EC7916EB998E20B10675437CDE90084CDA938C0AA3F ] C:\Windows\System32\mprmsg.dll
12:11:23.0886 0x0c9c  C:\Windows\System32\mprmsg.dll - ok
12:11:23.0902 0x0c9c  [ 55DE45B116711881C852D2841E4C84DD, 18E5021530BB44042C85087BAE4FEDA633E01CDCBA09C90A5941B74C75133A35 ] C:\Windows\System32\tcpipcfg.dll
12:11:23.0902 0x0c9c  C:\Windows\System32\tcpipcfg.dll - ok
12:11:23.0902 0x0c9c  [ 88351B29B622B30962D2FEB6CA8D860B, A16CAD7D94C1C9807083BB36E9B4C3C14E6482C4CA2BDFACBCC86E737DDCE42E ] C:\Windows\System32\rasadhlp.dll
12:11:23.0902 0x0c9c  C:\Windows\System32\rasadhlp.dll - ok
12:11:23.0902 0x0c9c  [ 9690F420A99364C1E5C439914B0DE25C, 6C6E0B27C4255001FE5F1EAD911DE1A8BF922C405B0C8031A6BD253CEB1D02A6 ] C:\Program Files\Microsoft Security Client\NisSrv.exe
12:11:23.0902 0x0c9c  C:\Program Files\Microsoft Security Client\NisSrv.exe - ok
12:11:23.0902 0x0c9c  [ F7073C962C4FB7C415565DDE109DE49F, 781E7088DCEFBC34A808C3E7DA41A56112B3F23ABE9F54B5EF4D5CD9CD016B1D ] C:\Windows\System32\npmproxy.dll
12:11:23.0902 0x0c9c  C:\Windows\System32\npmproxy.dll - ok
12:11:23.0902 0x0c9c  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] C:\Windows\System32\wdi.dll
12:11:23.0902 0x0c9c  C:\Windows\System32\wdi.dll - ok
12:11:23.0917 0x0c9c  [ 4ED32C3115AC5207F63B2DDB9EF21A6A, 235FB629D206E592BBB13E4452DA4B2590E635D1A2AA5FCE235A54D1E9984269 ] C:\Program Files\Microsoft Security Client\NisLog.dll
12:11:23.0917 0x0c9c  C:\Program Files\Microsoft Security Client\NisLog.dll - ok
12:11:23.0917 0x0c9c  [ 4449D23E8F197862F1B16F1E6C89C36C, 93AF52BF8E870C0381F027D3BB8F6829E449242074472F1593EB8172D7EB6559 ] C:\Windows\System32\diagperf.dll
12:11:23.0917 0x0c9c  C:\Windows\System32\diagperf.dll - ok
12:11:23.0917 0x0c9c  [ BF4AC709BE5BF64F331F5D67773A0C82, 96E5A2A12D386B8A7976FEC76FD350E6A3EEBDF5763F4BBF4AB18880E9F269E0 ] C:\Windows\System32\perftrack.dll
12:11:23.0917 0x0c9c  C:\Windows\System32\perftrack.dll - ok
12:11:23.0917 0x0c9c  [ E64D9EC8018C55873B40FDEE9DBEF5B3, 2DB11E7C631A9887CB75AFEAD2C79EC65F82C51F5F073CEFC8CDDF664EFF29C1 ] C:\Windows\System32\PortableDeviceApi.dll
12:11:23.0917 0x0c9c  C:\Windows\System32\PortableDeviceApi.dll - ok
12:11:23.0917 0x0c9c  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] C:\Windows\System32\wpdbusenum.dll
12:11:23.0917 0x0c9c  C:\Windows\System32\wpdbusenum.dll - ok
12:11:23.0917 0x0c9c  [ 1075AB2C077B415760C0E948856B5126, D67804B4A038FC06BD84CBF9C047DD4C13073622027F825371DB98867EF4E9B9 ] C:\Windows\System32\wer.dll
12:11:23.0917 0x0c9c  C:\Windows\System32\wer.dll - ok
12:11:23.0933 0x0c9c  [ E1B22739C933BE33F53DB58C5393ADD3, 26EE0DD091D2E00DECC774DC1EEDFFDE69AF74B0C769CCBE091AFC32C66E4207 ] C:\Windows\System32\Apphlpdm.dll
12:11:23.0933 0x0c9c  C:\Windows\System32\Apphlpdm.dll - ok
12:11:23.0933 0x0c9c  [ 9719E3D834F5C8C43F56A93DFA497023, 4D78D4BD4835C0A237821967156C19DF4B90384A6BCB1F48CEAF35D003A0099A ] C:\Windows\System32\pnpts.dll
12:11:23.0933 0x0c9c  C:\Windows\System32\pnpts.dll - ok
12:11:23.0933 0x0c9c  [ E811F8510B133E70CF6E509FB809824F, 82541F2B15748250462B67B6C77530D4F7C45A1482237EC49B28F9FA5A414108 ] C:\Windows\System32\wdiasqmmodule.dll
12:11:23.0933 0x0c9c  C:\Windows\System32\wdiasqmmodule.dll - ok
12:11:23.0933 0x0c9c  [ AFA79C343F9D1555F7E5D5FA70BB2A14, 440EF3ADC1F5C7A5ED3E872C8D8DFA61B039454C3CA67F8A51CA8BDCFDC4BA4A ] C:\Windows\System32\PortableDeviceConnectApi.dll
12:11:23.0933 0x0c9c  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
12:11:23.0933 0x0c9c  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] C:\Windows\System32\drivers\WUDFRd.sys
12:11:23.0933 0x0c9c  C:\Windows\System32\drivers\WUDFRd.sys - ok
12:11:23.0949 0x0c9c  [ B1DDE7212AAD17473FCF648AEC8795CD, F6D7D56717CEE18D2B8B3556766C34D8AD011099AF81A58AA94AE914FFA71683 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7249204A-EBEA-423F-B50F-7E580E7F2873}\gapaengine.dll
12:11:23.0949 0x0c9c  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7249204A-EBEA-423F-B50F-7E580E7F2873}\gapaengine.dll - ok
12:11:23.0949 0x0c9c  [ 68F9E433002902D0D8215937C1B501F5, 9F4A66909A57DC155A072D55C21DF5453D7B8BC6F8D86EB5B949F6755B0543E7 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7249204A-EBEA-423F-B50F-7E580E7F2873}\nisfull.vdm
12:11:23.0949 0x0c9c  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7249204A-EBEA-423F-B50F-7E580E7F2873}\nisfull.vdm - ok
12:11:23.0949 0x0c9c  [ 92E0508D924512F63FFEEFE498CBD11F, 1158011E4A1298DEC79133B40888AA87B06F5B64BA2AB461B58C22F5F9211D0C ] C:\Windows\System32\p2pcollab.dll
12:11:23.0949 0x0c9c  C:\Windows\System32\p2pcollab.dll - ok
12:11:23.0949 0x0c9c  [ 506A83A3BEEE9FCA09F0170DE9FC7D1B, 2DFBD792B68F3EBEF0843183CAE5D52B6FA04163808AFACF6C0D738455898C36 ] C:\Windows\System32\fveui.dll
12:11:23.0949 0x0c9c  C:\Windows\System32\fveui.dll - ok
12:11:23.0949 0x0c9c  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] C:\Windows\System32\QAGENTRT.DLL
12:11:23.0949 0x0c9c  C:\Windows\System32\QAGENTRT.DLL - ok
12:11:23.0964 0x0c9c  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] C:\Windows\System32\wuaueng.dll
12:11:23.0964 0x0c9c  C:\Windows\System32\wuaueng.dll - ok
12:11:23.0964 0x0c9c  [ 662BA98309818AF2C17D4E48BF4021C4, 57B3FFAECE3DF5E22B6764A95D2B8523AA02CCCB4BD0779025C11D02EEBF4B1E ] C:\Program Files\Windows Defender\MpClient.dll
12:11:23.0964 0x0c9c  C:\Program Files\Windows Defender\MpClient.dll - ok
12:11:23.0964 0x0c9c  [ 46863C4CC5B68EB09EA2D5EEF0F1193A, 9B5593E1F484AC8F96F89A5995FB1FE9C51CB2F0F545607F6850751191150CFE ] C:\Windows\System32\radardt.dll
12:11:23.0964 0x0c9c  C:\Windows\System32\radardt.dll - ok
12:11:23.0964 0x0c9c  [ A3FCC4F97551087D65F8FEE879FEF736, 000EA00FD2644531F38D215972C22FE2BCE5B01CF483071398053099A342BF74 ] C:\Windows\System32\tdh.dll
12:11:23.0964 0x0c9c  C:\Windows\System32\tdh.dll - ok
12:11:23.0964 0x0c9c  [ 10F815BE90A66AAFC6C713D1BD626064, 01139FC04BC53594296F6A0E16B8D20B940F64BC8119FE7705C03C4947958F39 ] C:\Windows\System32\pnidui.dll
12:11:23.0964 0x0c9c  C:\Windows\System32\pnidui.dll - ok
12:11:23.0980 0x0c9c  [ A8EDB86FC2A4D6D1285E4C70384AC35A, 61B8955CE0A2AA9D0719920B30216717B349B6FBE11C697C31CFA84F859CC1AE ] C:\Windows\System32\dllhost.exe
12:11:23.0980 0x0c9c  C:\Windows\System32\dllhost.exe - ok
12:11:23.0980 0x0c9c  [ 9028D1621C43DF8DFBD1C76860412A11, A1D48D9B33180BDE50D2FA9BB07E9520B7B7788C39B3AABB4A06AE4B1AACA755 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll
12:11:23.0980 0x0c9c  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll - ok
12:11:23.0980 0x0c9c  [ A0A2C1D812C231C9BFE119FDC68E341B, F94446594EE17505956A715DFB28B51D09F00A7A65E56950661B889A57DE8FA8 ] C:\Windows\System32\IDStore.dll
12:11:23.0980 0x0c9c  C:\Windows\System32\IDStore.dll - ok
12:11:23.0980 0x0c9c  [ 639774C9ACD063F028F6084ABF5593AD, 9DFD80610CBBC9188F6C6BC85C87016B0AE42254FC289C2B578E85282BDD9C23 ] C:\Windows\System32\taskhost.exe
12:11:23.0980 0x0c9c  C:\Windows\System32\taskhost.exe - ok
12:11:23.0980 0x0c9c  [ 522B0466ED967A0762E9AF5B37D8F40A, B14C62D059BC7CF430E1B0F6E18E31EFD1959EFB3025A2B0EBB11751F38DD6D4 ] C:\Windows\System32\esent.dll
12:11:23.0980 0x0c9c  C:\Windows\System32\esent.dll - ok
12:11:23.0980 0x0c9c  [ 23566F9723771108D2E6CD768AC27407, FAC0293DD1061B151E779BF4B245E6652C951FEDEBC602A166156DFBD38B5D67 ] C:\Windows\System32\AtBroker.exe
12:11:23.0980 0x0c9c  C:\Windows\System32\AtBroker.exe - ok
12:11:23.0995 0x0c9c  [ 6CEF7856A3EFAC59470F6208F0F585CE, 0F7A80DB821FDE6580E9481B6DA44844F717DDB4983B0E3D562BE43726153951 ] C:\Windows\System32\mpr.dll
12:11:23.0995 0x0c9c  C:\Windows\System32\mpr.dll - ok
12:11:23.0995 0x0c9c  [ BAFE84E637BF7388C96EF48D4D3FDD53, 11C194D9ADCE90027272C627D7FBF3BA5025FF0F7B26A8333F764E11E1382CF9 ] C:\Windows\System32\userinit.exe
12:11:23.0995 0x0c9c  C:\Windows\System32\userinit.exe - ok
12:11:23.0995 0x0c9c  [ F162D5F5E845B9DC352DD1BAD8CEF1BC, 8A7B7528DB30AB123B060D8E41954D95913C07BB40CDAE32E97F9EDB0BAF79C7 ] C:\Windows\System32\dwm.exe
12:11:23.0995 0x0c9c  C:\Windows\System32\dwm.exe - ok
12:11:23.0995 0x0c9c  [ 9BB99503D6A4DD62569EDE9E5E2672A5, 6F4EA5BC50B1F929735246485263078BEF1B3BEB33F78CB1F483F13AA226C27E ] C:\Windows\System32\HotStartUserAgent.dll
12:11:23.0995 0x0c9c  C:\Windows\System32\HotStartUserAgent.dll - ok
12:11:23.0995 0x0c9c  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA, 8A6ACEFAB95E5275CBFBE6CCB5A6C3A6A471260B279B9063E86B9C7765E18656 ] C:\Windows\System32\MsCtfMonitor.dll
12:11:23.0995 0x0c9c  C:\Windows\System32\MsCtfMonitor.dll - ok
12:11:24.0011 0x0c9c  [ F09A9A1AD21FE618C4C8B0A0D830C886, 29831DDAB2AB105358FBC067CDF96428220B6743CD6019F6FE74BAC7AF325E7E ] C:\Windows\System32\msutb.dll
12:11:24.0011 0x0c9c  C:\Windows\System32\msutb.dll - ok
12:11:24.0011 0x0c9c  [ 94EEAC26F57811BD1AEFC164412F7FCE, 7390BCD7709D48DE75D7D6E06AA7356D1C58EE63F3CC2E07ABCD2E2FF6CC81CF ] C:\Windows\System32\PlaySndSrv.dll
12:11:24.0011 0x0c9c  C:\Windows\System32\PlaySndSrv.dll - ok
12:11:24.0011 0x0c9c  [ 4BA77A5EF71C14C764B0ED4701683E3E, 066A064CDBE09BF8BE1DF5B259F30FF6C124A1C3D637800D3E19E8E25EDB950E ] C:\Windows\System32\dwmcore.dll
12:11:24.0011 0x0c9c  C:\Windows\System32\dwmcore.dll - ok
12:11:24.0011 0x0c9c  [ FCFCD1101C5DA23B4B95F93D02B2C169, 040A086875B6C5475490A2F8B0CF4FF20DDB4FEDFE5FCABBA49692AA05F40527 ] C:\Windows\System32\dwmredir.dll
12:11:24.0011 0x0c9c  C:\Windows\System32\dwmredir.dll - ok
12:11:24.0011 0x0c9c  [ B2742EA6ED844D747E2348A504E491CB, 38D2A3B32A77FE2ADCCACB74F7A8EAD6A4589A5E22D2A6E7DFEADACDAE66DA85 ] C:\Windows\System32\dxva2.dll
12:11:24.0011 0x0c9c  C:\Windows\System32\dxva2.dll - ok
12:11:24.0027 0x0c9c  [ 0015ACFBBDD164A8A730009908868CA7, E1FF243AD2CF959FAB81EFE701592414991C03416FF296ADC93906E76B707C4D ] C:\Windows\System32\winspool.drv
12:11:24.0027 0x0c9c  C:\Windows\System32\winspool.drv - ok
12:11:24.0027 0x0c9c  [ 9AE80F6A66B30E3ED8CDF858CF28B11B, A93E470DC54E3C74C10979D49CABB9A34893F9E847F88491F935DB44EEC3541A ] C:\Windows\System32\d3d10_1.dll
12:11:24.0027 0x0c9c  C:\Windows\System32\d3d10_1.dll - ok
12:11:24.0027 0x0c9c  [ 63F72417CA38D8FC8F53709649B589E3, 39AE8AFFCFB8A9E345FC4C6F11926F25552C464380F88CDECD299FD27AF7866B ] C:\Windows\System32\d3d10_1core.dll
12:11:24.0027 0x0c9c  C:\Windows\System32\d3d10_1core.dll - ok
12:11:24.0027 0x0c9c  [ 8DFB5752FCE145A6B295093C0A8BE131, F38029C8B36EFD46B1F6CCA0089FF4EFB0AB246497E38EDFF6A67FAC804D4A97 ] C:\Windows\System32\dxgi.dll
12:11:24.0027 0x0c9c  C:\Windows\System32\dxgi.dll - ok
12:11:24.0027 0x0c9c  [ 4C92EB7535CAA1681A77D928FBF9771F, 7D02B2357CA02393CA711C3C499AAD86B792EEFFDC67F2CE52F7F7BB8A28DE79 ] C:\Windows\System32\d3d11.dll
12:11:24.0027 0x0c9c  C:\Windows\System32\d3d11.dll - ok
12:11:24.0027 0x0c9c  [ 332FEAB1435662FC6C672E25BEB37BE3, 6BED1A3A956A859EF4420FEB2466C040800EAF01EF53214EF9DAB53AEFF1CFF0 ] C:\Windows\explorer.exe
12:11:24.0027 0x0c9c  C:\Windows\explorer.exe - ok
12:11:24.0042 0x0c9c  [ 200D25525651668E6B5D2AD53B04F579, D42F2EAAEF69318F6E4D4F0651821BB90F173DA29FFC151C01138E3C043B5D20 ] C:\Windows\System32\aticfx64.dll
12:11:24.0042 0x0c9c  C:\Windows\System32\aticfx64.dll - ok
12:11:24.0042 0x0c9c  [ EED05D42D91835064703E2318552ED25, E9EE1E2253445B207B76F5D3073C612ED979A982522C1515E0FE8FA9641AE568 ] C:\Windows\System32\ExplorerFrame.dll
12:11:24.0042 0x0c9c  C:\Windows\System32\ExplorerFrame.dll - ok
12:11:24.0042 0x0c9c  [ E16A5EE222ABC03DF6BC5937FD81FDFF, 28A300AEACDDCE7F2377161DF576769E18FC4B42AEFF151AA7F7838329523747 ] C:\Windows\System32\atiuxp64.dll
12:11:24.0042 0x0c9c  C:\Windows\System32\atiuxp64.dll - ok
12:11:24.0042 0x0c9c  [ F411AEFDC4E41806E277DF4A20AFB8E5, 9C73E2E42A02FEE1B0665F57895434D89C75AE0FAE13507126FFEE3E60E61F1D ] C:\Windows\System32\atidxx64.dll
12:11:24.0042 0x0c9c  C:\Windows\System32\atidxx64.dll - ok
12:11:24.0042 0x0c9c  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] C:\Windows\System32\drivers\WUDFPf.sys
12:11:24.0042 0x0c9c  C:\Windows\System32\drivers\WUDFPf.sys - ok
12:11:24.0058 0x0c9c  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] C:\Windows\System32\hidserv.dll
12:11:24.0058 0x0c9c  C:\Windows\System32\hidserv.dll - ok
12:11:24.0058 0x0c9c  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] C:\Windows\System32\WUDFSvc.dll
12:11:24.0058 0x0c9c  C:\Windows\System32\WUDFSvc.dll - ok
12:11:24.0058 0x0c9c  [ 8ABFE00F213F2571498F1B8FD7939A98, B557EC9EFD33612BAFE01FFD304B50EFB8C3C19763470560DA950B5AB4A9AC9C ] C:\Windows\System32\WUDFHost.exe
12:11:24.0058 0x0c9c  C:\Windows\System32\WUDFHost.exe - ok
12:11:24.0058 0x0c9c  [ 25AE683DCB4AE7E6F1B193A0CB9DB35F, 9DC4BE1A51A3E94DB05369222CFCBA2125DA519EAAC46823EAECD738974463EF ] C:\Windows\System32\WUDFx.dll
12:11:24.0058 0x0c9c  C:\Windows\System32\WUDFx.dll - ok
12:11:24.0058 0x0c9c  [ 91D6F0AB79AA36FFB932157865206F35, 5C20EA92737A4409DF4601D6D256DBC7A8D0AE4C31A32F20054E873473B27781 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
12:11:24.0058 0x0c9c  C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
12:11:24.0073 0x0c9c  [ 9864D52F15AD32094A636C6B5281D9E7, 2DBECE721AA11509F6D5005C5FB965EB0DF28729D0B6C524BB35603C1243BA42 ] C:\Windows\System32\WMVCORE.DLL
12:11:24.0073 0x0c9c  C:\Windows\System32\WMVCORE.DLL - ok
12:11:24.0073 0x0c9c  [ D5C9EE4FFE894389F5DBDC3E096FF9C6, 095AD2AF75FA0D6E9D485098A4AE18483FE0E067837DA3EB182CE47465EE6EE9 ] E:\Program Files (x86)\ElephantDrive\ElephantDrive\IconOverlay-64bit.dll
12:11:24.0073 0x0c9c  E:\Program Files (x86)\ElephantDrive\ElephantDrive\IconOverlay-64bit.dll - ok
12:11:24.0073 0x0c9c  [ AACC48FE239F0DF126DA2F28930A5B83, D55E7D9AA79B1875E9074CFFBBCD484024902566B49806A8639B5C04847DFF89 ] C:\Windows\System32\WMASF.DLL
12:11:24.0073 0x0c9c  C:\Windows\System32\WMASF.DLL - ok
12:11:24.0073 0x0c9c  [ 389CA818132C1D7DCF0C791E8D9035DE, 5E54799F92CC604FABEF2F97AFD97F9CAD70D01BCDBC41FAC408D60821927C12 ] C:\Windows\System32\PortableDeviceClassExtension.dll
12:11:24.0073 0x0c9c  C:\Windows\System32\PortableDeviceClassExtension.dll - ok
12:11:24.0073 0x0c9c  [ 4F3CD1C59EA71401E155C432BCECE180, 6D4118A627CAE509E43D0CC0062EECAA0990C955BB15AE24834460551B2F51A2 ] C:\Windows\System32\PortableDeviceTypes.dll
12:11:24.0073 0x0c9c  C:\Windows\System32\PortableDeviceTypes.dll - ok
12:11:24.0089 0x0c9c  [ B54E84F5179D54005EB9CCBFA4C248E2, 79B2C871865EEF40ECBBC1B8F952CFDF6CF49008C8AC5530B08FFE3B8E91FAB8 ] E:\Program Files (x86)\ElephantDrive\ElephantDrive\atl100.dll
12:11:24.0089 0x0c9c  E:\Program Files (x86)\ElephantDrive\ElephantDrive\atl100.dll - ok
12:11:24.0089 0x0c9c  [ AED6D63CFA5A3EF7021AF9C457FEE994, B4BFA27F677295B00A1DF9A7E14DB4B75CAC2DD41B898D4E9A378ECCCE3699F0 ] E:\Program Files (x86)\ElephantDrive\ElephantDrive\msvcr100.dll
12:11:24.0089 0x0c9c  E:\Program Files (x86)\ElephantDrive\ElephantDrive\msvcr100.dll - ok
12:11:24.0089 0x0c9c  [ CAA0C16ADCCE6142A43AD83BFA20B38B, 03E87060097C4D52BEF11A33105A60154BA29B05D620740EB4A093DF249D5808 ] C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
12:11:24.0089 0x0c9c  C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe - ok
12:11:24.0089 0x0c9c  [ 863F793D15B4026B1A5FDECA873D4D84, AF7ABD95BB5467551562F129F03C7AC9D52A021F7E547609F40A80E66932C942 ] C:\Windows\SysWOW64\apphelp.dll
12:11:24.0089 0x0c9c  C:\Windows\SysWOW64\apphelp.dll - ok
12:11:24.0089 0x0c9c  [ D58988722C72D265B51A54103DFC2C6F, AC951AFB047FCA763D9B37DB9FF0D00B6AA67DAA9E2086AD3226BACCF6B910CE ] C:\Windows\SysWOW64\wininet.dll
12:11:24.0089 0x0c9c  C:\Windows\SysWOW64\wininet.dll - ok
12:11:24.0089 0x0c9c  [ 65EA57712340C09B1B0C427B4848AE05, 5FDCF73191BFF9DBB03886755FFCF0BC15849F0E216884A5A8B9BB375FA7C1A5 ] C:\Windows\System32\taskeng.exe
12:11:24.0089 0x0c9c  C:\Windows\System32\taskeng.exe - ok
12:11:24.0105 0x0c9c  [ E6F0F82788E8BD0F7A616350EFA0761C, 13091DCB3E3F4F52C3FF210E93AAF1DCE142CFC09F671AEAC5B922393B23E67B ] C:\Windows\System32\actxprxy.dll
12:11:24.0105 0x0c9c  C:\Windows\System32\actxprxy.dll - ok
12:11:24.0105 0x0c9c  [ 2E33DFD10F28F86C3FC40EE123CC3904, 57C65671A04EFCA437A69E8E97B2FCA17897EE4608C7DB69F77D44FBD3490B50 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
12:11:24.0105 0x0c9c  C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
12:11:24.0105 0x0c9c  [ 6951562DC4625EEFC6EACD52AD165866, 44A0B3EA0232D613A5B4115492DF2A7CEF25B35300E6A3E3E50C9544C5D1049E ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
12:11:24.0105 0x0c9c  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
12:11:24.0105 0x0c9c  [ 589CBC4989F750E1DA35625AB481CF43, B93E1B8C3775F9C995FD5451C685A06DEFD24AE1DF0DD99D19D5E4B9AC0010F9 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
12:11:24.0105 0x0c9c  C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
12:11:24.0105 0x0c9c  [ 3BE0D923AA45A4DBE091C2D84F0B4FE7, 603EEC55D6F646150FC3F0F2C939CFE434C02FC7A7AB23B1FEC8B5C77E4C8381 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
12:11:24.0105 0x0c9c  C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
12:11:24.0120 0x0c9c  [ FD96C05DE700F5FD26273D6DDB6495A7, FED30D3045FA829491BB8FCAE842F6B6034288B679B1A515600A019A821AF916 ] C:\Windows\SysWOW64\iertutil.dll
12:11:24.0120 0x0c9c  C:\Windows\SysWOW64\iertutil.dll - ok
12:11:24.0120 0x0c9c  [ 6A13B4F3B3F575F1E24B877B9359AABA, 676AD5F8F709D4A9DCE9938D82DEEE329C9A385A6969C169B3DF37AA75F1E4C7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
12:11:24.0120 0x0c9c  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
12:11:24.0120 0x0c9c  [ 352B3DC62A0D259A82A052238425C872, 393B24E0D6007C74AEE2FB2EE2C18623D37DF64E279B6767952DCFEE0EACBB10 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
12:11:24.0120 0x0c9c  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
12:11:24.0120 0x0c9c  [ 8B8D1CEF498678CAB9DF17145D34BC64, B833545CC592BBF77F4F3E6BA9961D10673AA3F4E2CF6369F6A3BDAF1BC02026 ] C:\Windows\SysWOW64\msxml3.dll
12:11:24.0120 0x0c9c  C:\Windows\SysWOW64\msxml3.dll - ok
12:11:24.0120 0x0c9c  [ 6C8EB0C50C276FE26DB2058A836D0280, B1AF644851EE7535EC198A99B7FBAE22A2108FE7CB34BBBA2627B22C6632EB9A ] C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
12:11:24.0120 0x0c9c  C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe - ok
12:11:24.0136 0x0c9c  [ 805A52C5AE26C28E88FDD9BCCFE6F312, 4FF28D3658C31722B7DD036DED9D544B14841C0E0B94D31A8EC5AB92128DA020 ] C:\Windows\System32\TSChannel.dll
12:11:24.0136 0x0c9c  C:\Windows\System32\TSChannel.dll - ok
12:11:24.0136 0x0c9c  [ A35B6619C5D1A519EC4B521F665414C1, 6889C9036DBAE214A149E1087B032D4465176EDD1E46B18744957E0FE8A906E4 ] C:\Program Files (x86)\ASUS\AASP\1.01.05\AsLoader.exe
12:11:24.0136 0x0c9c  C:\Program Files (x86)\ASUS\AASP\1.01.05\AsLoader.exe - ok
12:11:24.0136 0x0c9c  [ 4783BC9E09B35489A5384AC5DB074418, A8AD1E89C24BA42649345C14DB826D98528D8CCF01B3E8960AFD6C9F91E60962 ] C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
12:11:24.0136 0x0c9c  C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe - ok
12:11:24.0136 0x0c9c  [ 93812FDC01AA864195816CD814445F95, E5CB2576DA2905177AFD342DBE63E17CF626F93F430DEBC55155C18C60166BEE ] C:\Program Files\Microsoft Mouse and Keyboard Center\SQMAPI.dll
12:11:24.0136 0x0c9c  C:\Program Files\Microsoft Mouse and Keyboard Center\SQMAPI.dll - ok
12:11:24.0136 0x0c9c  [ E424B3EF666B184CEE0B6871AAA8C9F6, D182D9B3A813C75F88CA16A9C236AB6167DF5861D155B5DC016B90918C4BD579 ] C:\Windows\System32\msimg32.dll
12:11:24.0136 0x0c9c  C:\Windows\System32\msimg32.dll - ok
12:11:24.0151 0x0c9c  [ E36112A8A6C7F840169A7E92C12F4203, 52795B2E6ECCE751EEF5074AF52FDE376A382D0A1C43B90DD4F77A397C00FBC5 ] C:\Windows\System32\wsock32.dll
12:11:24.0151 0x0c9c  C:\Windows\System32\wsock32.dll - ok
12:11:24.0151 0x0c9c  [ 41010A88B70A2168F801DC19EBD4CB4F, FDA04D1CCACB83F070166B968B0CE0C7A72B5ADEA975D72D1B5C0E10385716C1 ] C:\Windows\SysWOW64\urlmon.dll
12:11:24.0151 0x0c9c  C:\Windows\SysWOW64\urlmon.dll - ok
12:11:24.0151 0x0c9c  [ 81E7E920312D372CF57A817049AC7C76, FF9A2E7FE46937B34F8E61F58DF1F6108742CCE58505F212E8666CB4AB7B74F9 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
12:11:24.0151 0x0c9c  C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL - ok
12:11:24.0151 0x0c9c  [ 1C60E09CA1C3A045BC4D367F67C915B7, DF1ED88CB57DA1AB1A4245AE0D5B42AFA3396EBF67B99411FFFB0DD06DE1AEAF ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
12:11:24.0151 0x0c9c  C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
12:11:24.0167 0x0c9c  [ 007863E45F25AA47A4C30D0930BBFD85, 60F2ABA40D520FCA2C57FA2DB72E111C14F21821DA17F662837506B80C269634 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
12:11:24.0167 0x0c9c  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
12:11:24.0167 0x0c9c  [ 49ACA548B2423F1C67898E6AC719A9A6, 23D84137EAB9AFDD31CBB6776B6B25AD135A120AF7F7885EB5BBF9E0A2CCC4C1 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
12:11:24.0167 0x0c9c  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
12:11:24.0167 0x0c9c  [ B094390B6B2D0456821384771020870B, 137FEDD0EFBF1CEDA4930D8CE0A012A250CFF4020931846646090BB2C99EE7CE ] C:\Windows\SysWOW64\secur32.dll
12:11:24.0167 0x0c9c  C:\Windows\SysWOW64\secur32.dll - ok
12:11:24.0167 0x0c9c  [ CDBE9690CF2B8409FACAD94FAC9479C9, 8E7FE1A1F3550C479FFD86A77BC9D10686D47F8727025BB891D8F4F0259354C8 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
12:11:24.0167 0x0c9c  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
12:11:24.0183 0x0c9c  [ E629F1A051C82795DDFFD3E8D4855811, 6E4DFFEAB2795C98EA6DCAF10EA6D97413D0F8CA0C04869CB20B74FF4D6FE679 ] C:\Windows\System32\dimsjob.dll
12:11:24.0183 0x0c9c  C:\Windows\System32\dimsjob.dll - ok
12:11:24.0183 0x0c9c  [ F4AD88FF508A573E3EC7C8E0E4760328, A2FD2357706EB8FE7708B7874F3AA507923C2676BDA84055F5903491EDE76C82 ] E:\Program Files (x86)\ASUS\ASUSUpdate\UpdateChecker\UpdateChecker.exe
12:11:24.0183 0x0c9c  E:\Program Files (x86)\ASUS\ASUSUpdate\UpdateChecker\UpdateChecker.exe - ok
12:11:24.0183 0x0c9c  [ 20C19D35588C5E6C55347A3A26F35B85, 34BC92DAE80193F2A7537C7320DF41A4B5B1B5E6F4EAFBA2E26798C68072F5F3 ] E:\Program Files\ASUS\TurboV EVO\TurboVHelp.exe
12:11:24.0183 0x0c9c  E:\Program Files\ASUS\TurboV EVO\TurboVHelp.exe - ok
12:11:24.0183 0x0c9c  [ DD502A2E7B85EA7A3814C1034E6C23D3, 551D6C28DA6116DC65111BFA21E23BA8AE77193BEAF3DF505C343E6DC3CD5304 ] C:\Windows\AppPatch\AcGenral.dll
12:11:24.0183 0x0c9c  C:\Windows\AppPatch\AcGenral.dll - ok
12:11:24.0183 0x0c9c  [ ECA6AC33BD9E441F7B47D173D715D268, 5B9017F80BD8C7823CFE1AB4C21D91388E1B31BF0D77058A98791D2FACA11EB6 ] C:\Windows\System32\msxml3.dll
12:11:24.0183 0x0c9c  C:\Windows\System32\msxml3.dll - ok
12:11:24.0183 0x0c9c  [ 68ECCA523ED760AAFC03C5D587569859, CDD734279C8F9F24EA2538BAD8E91EB8C3DD74C33032DB6B2D85C19576B42707 ] C:\Windows\SysWOW64\samcli.dll
12:11:24.0183 0x0c9c  C:\Windows\SysWOW64\samcli.dll - ok
12:11:24.0198 0x0c9c  [ F0C36D3E30E555FBFDCF4CCDCB9D3F21, 7AE19B41E19A89B16309BB3B09FAC1B678EE863A2AAFADF15453C6E7CCA2CBB9 ] E:\Program Files\ASUS\TurboV EVO\AsAcpi.dll
12:11:24.0198 0x0c9c  E:\Program Files\ASUS\TurboV EVO\AsAcpi.dll - ok
12:11:24.0198 0x0c9c  [ 85683DF1F917E4D7F6BE1A04986BF1C8, D68D9F525D31C1843B6EC8FA950166FA1F34DB71222716E7B22DD33981C152B6 ] C:\Windows\SysWOW64\msacm32.dll
12:11:24.0198 0x0c9c  C:\Windows\SysWOW64\msacm32.dll - ok
12:11:24.0198 0x0c9c  [ 539C49CEBB3C50957AC8A09D95ECD880, 49E75CDB556FBCE72C44648F8930CF2209C1360F9311C5B4CEB19E13B11E6B75 ] C:\Windows\SysWOW64\shfolder.dll
12:11:24.0198 0x0c9c  C:\Windows\SysWOW64\shfolder.dll - ok
12:11:24.0198 0x0c9c  [ 08DFDBD2FD4EA951DC46B1C7661ED35A, D926530C659DDAF80770663F46F1EFD94FFB4AAB475C4E3367CB531AF4A734E1 ] C:\Windows\SysWOW64\powrprof.dll
12:11:24.0198 0x0c9c  C:\Windows\SysWOW64\powrprof.dll - ok
12:11:24.0198 0x0c9c  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9, E18D66455D00A6D2A2D7CC0833C233FE8A6DD910B59D6B5B5F82EF91450858DF ] C:\Windows\SysWOW64\sfc.dll
12:11:24.0198 0x0c9c  C:\Windows\SysWOW64\sfc.dll - ok
12:11:24.0214 0x0c9c  [ 84799328D87B3091A3BDD251E1AD31F9, F85521215924388830DBB13580688DB70B46AF4C7D82D549D09086438F8D237B ] C:\Windows\SysWOW64\sfc_os.dll
12:11:24.0214 0x0c9c  C:\Windows\SysWOW64\sfc_os.dll - ok
12:11:24.0214 0x0c9c  [ 22BD8652E4202EA8F9F54D256244FF5E, 227E0520C15CC82C55A6E2F39F149BC77CCB3099222BBB5C273679C898F7D27A ] E:\Program Files\ASUS\TurboV EVO\HookKey32.dll
12:11:24.0214 0x0c9c  E:\Program Files\ASUS\TurboV EVO\HookKey32.dll - ok
12:11:24.0214 0x0c9c  [ B9A8CBCFCD3EC9D2EA4740AF347BF108, 97FA304E3880BC863D999F441AE47CB8ADF00D2DEC2A52ACD8FBD02CC096786A ] C:\Windows\SysWOW64\mpr.dll
12:11:24.0214 0x0c9c  C:\Windows\SysWOW64\mpr.dll - ok
12:11:24.0214 0x0c9c  [ DB03D0807D6629639B50A3C58458ABE1, CAC0A718959CE78A58B4B7106B90B260CE8CB18A6C401DEC511CCF7DD1BAF2A7 ] E:\Program Files (x86)\ASUS\ASUSUpdate\UpdateChecker\AsMultiLang.dll
12:11:24.0214 0x0c9c  E:\Program Files (x86)\ASUS\ASUSUpdate\UpdateChecker\AsMultiLang.dll - ok
12:11:24.0214 0x0c9c  [ FB4045578F5180BDB1963AB352B78548, 8E645A63436EE6CDDB78E6064AEB04ECE39208F760A3EF13A3F49FDF41505E21 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
12:11:24.0214 0x0c9c  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
12:11:24.0229 0x0c9c  [ B5106A79DD046815332B6E3B6E8D27D1, E85962463A8C5BE4AF589022EC73EAE268F4F3F7081ED0FFA45CF8B782342372 ] E:\Program Files\ASUS\TurboV EVO\pngio.dll
12:11:24.0229 0x0c9c  E:\Program Files\ASUS\TurboV EVO\pngio.dll - ok
12:11:24.0229 0x0c9c  [ 66C87DB880052104808507D6FA84D68E, 46BD5C16225B3D0BF786FDA6461CE9A549DAA9FA38C8BDADAA0AF08FA6A24260 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
12:11:24.0229 0x0c9c  C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL - ok
12:11:24.0229 0x0c9c  [ D233C7FEAE3FAA25F93A9E6B46815ADC, 5330682AE9C08E5F2E30C5E256B91028389BBBDDAA8C38950DF76616FCA854FF ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
12:11:24.0229 0x0c9c  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
12:11:24.0229 0x0c9c  [ A9E7EA6AFC08C0EE00B4E71A7704C646, B47F787050A968B102873314211536143B319EC653717CECDCFE8774FF2EC629 ] C:\Program Files\Microsoft Mouse and Keyboard Center\dpgcmd.dll
12:11:24.0229 0x0c9c  C:\Program Files\Microsoft Mouse and Keyboard Center\dpgcmd.dll - ok
12:11:24.0229 0x0c9c  [ 3B39F9D51E4D8BAABDA6518955B58C13, 64AE407FA65096D5483C31B14AAC7FA691A4736AEA1288DC6D4BCEE3A2CE8A6F ] C:\Windows\System32\msi.dll
12:11:24.0229 0x0c9c  C:\Windows\System32\msi.dll - ok
12:11:24.0245 0x0c9c  [ 94DFBB481BF51158B216E23C5C1C9D6E, 0199086A70B9B63E48A7A15C8AE5442E9C6BC0173BD80A104DE1BE6A6C25F202 ] C:\Windows\System32\certcli.dll
12:11:24.0245 0x0c9c  C:\Windows\System32\certcli.dll - ok
12:11:24.0245 0x0c9c  [ 35CB97CBC3EDC463418ED4997AAB29B6, EE60EABE2D87CEDD68FB8985B6C5D70930015FB2B8DB9FDCB4044587BC6ECA4C ] C:\Windows\System32\pautoenr.dll
12:11:24.0245 0x0c9c  C:\Windows\System32\pautoenr.dll - ok
12:11:24.0245 0x0c9c  [ 263B26106606A010CF877472B535E4BB, 43ECE89E428D2BB34244894BEBA1B946B0767649D15B1C715223E4E471A9E504 ] C:\Windows\System32\CertEnroll.dll
12:11:24.0245 0x0c9c  C:\Windows\System32\CertEnroll.dll - ok
12:11:24.0245 0x0c9c  [ CF636C92B762B26F0B39B38E92380A09, F7B8B0EA4536CE3BA33EE1BD0783F6AAD8C0EF69714E874D4A30B720A04C7A18 ] C:\Windows\System32\oleacc.dll
12:11:24.0245 0x0c9c  C:\Windows\System32\oleacc.dll - ok
12:11:24.0245 0x0c9c  [ 6A83403CDE15B2C7AA7DDB5138E31091, 38C924B575D36466FD729044A2482114E4CBFC2AB1520E629E95B9387A0D6FFE ] C:\Program Files\Microsoft Mouse and Keyboard Center\Components\Commands\DPGHnt\DPGHnt.dll
12:11:24.0245 0x0c9c  C:\Program Files\Microsoft Mouse and Keyboard Center\Components\Commands\DPGHnt\DPGHnt.dll - ok
12:11:24.0245 0x0c9c  [ 024352FEEC9042260BB4CFB4D79A206B, 60CB39086E10C5B66EBC15E4DF219620B344B4358D2918AB6BB3448A0AC8BE36 ] C:\Windows\System32\EhStorShell.dll
12:11:24.0245 0x0c9c  C:\Windows\System32\EhStorShell.dll - ok
12:11:24.0261 0x0c9c  [ 037A719DAD50603202C978CD802623E4, BD4C222913D32D7CF5FE0201FEBE7BD67FC39DF47A7A672C2D6C228A6E13B5DE ] C:\Windows\System32\ntshrui.dll
12:11:24.0261 0x0c9c  C:\Windows\System32\ntshrui.dll - ok
12:11:24.0261 0x0c9c  [ 1BF0CB861A48FEB1638228760750F3CB, 37C781A8C546EAD8B4D28BD7D730B9AC78EB799599AD69DAD9054B6F9F1DD6BD ] C:\Windows\System32\cscapi.dll
12:11:24.0261 0x0c9c  C:\Windows\System32\cscapi.dll - ok
12:11:24.0261 0x0c9c  [ 1D63F4366288B8A7595397E27010FD44, 99EA4DDD88D9C4A4CC9B238F533CB4D2C062D46239173997E8594D8A75811A01 ] C:\Windows\System32\IconCodecService.dll
12:11:24.0261 0x0c9c  C:\Windows\System32\IconCodecService.dll - ok
12:11:24.0261 0x0c9c  [ 025E7DBDB98866ED3CB2D4DDA70B364D, 78962F23F066E362AF1A4B98FA7D5E30AF30C561307438503031D30C944B6A6E ] C:\Windows\System32\runonce.exe
12:11:24.0261 0x0c9c  C:\Windows\System32\runonce.exe - ok
12:11:24.0261 0x0c9c  [ D44741F65A1D71F65814A12CF6E2400A, C6721F830675ADC7E7FDE2B5E822E56F6A063146F5066F1E25EBFE86F0A87136 ] C:\Windows\SysWOW64\runonce.exe
12:11:24.0261 0x0c9c  C:\Windows\SysWOW64\runonce.exe - ok
12:11:24.0276 0x0c9c  [ 12C45E3CB6D65F73209549E2D02ECA7A, 9DFD9C58B90257C34D52B7156C1D2566BE32EE7BD4699DDE164A5F190EC4D44A ] C:\Windows\SysWOW64\propsys.dll
12:11:24.0276 0x0c9c  C:\Windows\SysWOW64\propsys.dll - ok
12:11:24.0276 0x0c9c  [ AD7B9C14083B52BC532FBA5948342B98, 17F746D82695FA9B35493B41859D39D786D32B23A9D2E00F4011DEC7A02402AE ] C:\Windows\SysWOW64\cmd.exe
12:11:24.0276 0x0c9c  C:\Windows\SysWOW64\cmd.exe - ok
12:11:24.0276 0x0c9c  [ BF95EA5809E3BBF55370F7CB309FEBD0, 62ADBA6E1A7DDDEFA971580161F30896DFFC27EB4EB82E3CC72062D57DA66500 ] C:\Windows\System32\conhost.exe
12:11:24.0276 0x0c9c  C:\Windows\System32\conhost.exe - ok
12:11:24.0276 0x0c9c  [ 326C7F76A29897A892AA7726E91C1C67, 64305346B06EC14976130B0B80F14B4D5AB63E5B2A6A7B872EC9CE2BF8FADCD2 ] C:\Windows\SysWOW64\winbrand.dll
12:11:24.0276 0x0c9c  C:\Windows\SysWOW64\winbrand.dll - ok
12:11:24.0276 0x0c9c  [ A3560FAFC1686D5EE9830B33B5C74B66, 192DF588991B88D2F8B60C3D9A2793E869055955F0798DA01AE66C3F3BF70890 ] C:\Windows\SysWOW64\ieframe.dll
12:11:24.0276 0x0c9c  C:\Windows\SysWOW64\ieframe.dll - ok
12:11:24.0292 0x0c9c  [ 60F4AEFA103D421EA4A40E31409B4756, 037A8605CA504A4FF43E9D4DE9017CEA1E26D3556C975872C747E24D8B0835EF ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
12:11:24.0292 0x0c9c  C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
12:11:24.0292 0x0c9c  [ 2C4A87CA8C00E98EFDCFA2E8EC9A3503, DA59CE662E98E56D89E2894D2AC8B9F324C16DA23C860640EDC2C82E0AD06097 ] C:\Windows\SysWOW64\shdocvw.dll
12:11:24.0292 0x0c9c  C:\Windows\SysWOW64\shdocvw.dll - ok
12:11:24.0292 0x0c9c  [ 45757C2E73F514856FEDA6EB3669991D, CAC5EAB360AA1A9C2EBC14254009C0591240349A3BAFE57FC293090A2A0CA3EB ] X:\Program Files\Adobe\Adobe Media Encoder CS6\Adobe Media Encoder.exe
12:11:24.0292 0x0c9c  X:\Program Files\Adobe\Adobe Media Encoder CS6\Adobe Media Encoder.exe - ok
12:11:24.0292 0x0c9c  [ 2551BF4F49F125B775B07210BC6D98A6, 3799CE803759557653BD67D50307B8458CA8A5C6FD60CFA4B0321ED0D123F7F6 ] X:\Program Files\Adobe\Adobe Premiere Pro CS6\Adobe Premiere Pro.exe
12:11:24.0292 0x0c9c  X:\Program Files\Adobe\Adobe Premiere Pro CS6\Adobe Premiere Pro.exe - ok
12:11:24.0292 0x0c9c  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] C:\Windows\System32\aelupsvc.dll
12:11:24.0292 0x0c9c  C:\Windows\System32\aelupsvc.dll - ok
12:11:24.0307 0x0c9c  [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051, 8EFD0A6DE6F4E335D342782190008FB5AC84A6ADE49170B310DEC9AC48E623E8 ] C:\Windows\System32\localspl.dll
12:11:24.0307 0x0c9c  C:\Windows\System32\localspl.dll - ok
12:11:24.0307 0x0c9c  [ D38E5A781E4F4763387AFE0B866DFEE2, C0E6DBCC66CD86336E7711D4E50368B76BB4013FE0F3CFFE27D6010FD96F169B ] C:\Windows\System32\AdobePDF.dll
12:11:24.0307 0x0c9c  C:\Windows\System32\AdobePDF.dll - ok
12:11:24.0307 0x0c9c  [ 19E41CCCEE697CC9465396B370929792, A9FC4C33C71C3677FE57779380E55FDE2AC0B0C70A9DBCBA0D0B6FA92C709A7F ] C:\Windows\System32\FXSMON.dll
12:11:24.0307 0x0c9c  C:\Windows\System32\FXSMON.dll - ok
12:11:24.0307 0x0c9c  [ C5AC93CF3BA30D367FB49148A2B673B9, 07B556039BBA841BC9F28979C3AD5D238B55391F921C9C805F3AFC9EFB437766 ] C:\Windows\System32\PrintIsolationProxy.dll
12:11:24.0307 0x0c9c  C:\Windows\System32\PrintIsolationProxy.dll - ok
12:11:24.0307 0x0c9c  [ 93518C6EDE0B61BCBD02BDB02BD05FEE, 3637F5E5F15093AFB501EE910368CF900B422AC22669391FFA4198BBAE6F8FCB ] C:\Windows\System32\snmpapi.dll
12:11:24.0307 0x0c9c  C:\Windows\System32\snmpapi.dll - ok
12:11:24.0323 0x0c9c  [ 3285481F5C12305CA104A6C493CA5A0B, ADB39B15D26A954B0F347C7BAFCC76DE5E3CF3CF05736E8987E0832AA7F8563C ] C:\Windows\System32\spoolss.dll
12:11:24.0323 0x0c9c  C:\Windows\System32\spoolss.dll - ok
12:11:24.0323 0x0c9c  [ 32A3C8600AF124CBAAD845F13CFAE3CB, F36FE9E57D5C509FEECE890F9F8717F9CC6F762E32AE0B7DB7E0153370CE0B9D ] C:\Windows\System32\tcpmon.dll
12:11:24.0323 0x0c9c  C:\Windows\System32\tcpmon.dll - ok
12:11:24.0323 0x0c9c  [ DF72A9936D0C3F517083119648814B09, 6BA4DCAC2F55A393A266ED0B2AF92B38141654D1666E3E143D85BBAF21663E1E ] C:\Windows\System32\usbmon.dll
12:11:24.0323 0x0c9c  C:\Windows\System32\usbmon.dll - ok
12:11:24.0323 0x0c9c  [ F1B205F932F62F94506A5F332C895DAF, F02F01F20F655DD919C71AE814E4C3DD43330AAD1425FC5B1497F1613917CCDE ] C:\Windows\System32\WSDApi.dll
12:11:24.0323 0x0c9c  C:\Windows\System32\WSDApi.dll - ok
12:11:24.0323 0x0c9c  [ A1D7E3ADCDB07DDB6F423862DCB1A52B, 6191C33D2AE090F6F055D6AE211096CE8F003EC5518A5333EE1E376052176BAB ] C:\Windows\System32\WSDMon.dll
12:11:24.0323 0x0c9c  C:\Windows\System32\WSDMon.dll - ok
12:11:24.0323 0x0c9c  [ FFF9D00CF16397C64317F213484F94BD, 94D0584E14BDB27F61F59A7BCEA529A1594261BE0CE74502C13E8865843BA414 ] C:\Windows\System32\wsnmp32.dll
12:11:24.0323 0x0c9c  C:\Windows\System32\wsnmp32.dll - ok
12:11:24.0339 0x0c9c  [ C55516D98DD5D8F0153C2A9B4227DA86, DBC62B776CF06D0873A4C7CFCDF5B6F5C6E6C41917C326C090BCE58DC66EE09C ] C:\Windows\System32\webservices.dll
12:11:24.0339 0x0c9c  C:\Windows\System32\webservices.dll - ok
12:11:24.0339 0x0c9c  [ 1D626FE2E13C1CE49CA0136CFF214E93, 4F02DD92045CF244979FFD074B2BDE6925A909227A474C60DCABE4384D916218 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
12:11:24.0339 0x0c9c  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
12:11:24.0339 0x0c9c  [ 67CF11E00D026A5C0C88EA5F84D501E5, 5081A87466116232CF07F58229967B6C0CD3738B64A56EFC6BB3EBDA62E378F6 ] C:\Windows\System32\win32spl.dll
12:11:24.0339 0x0c9c  C:\Windows\System32\win32spl.dll - ok
12:11:24.0339 0x0c9c  [ 2E483EC51216B52C711C7EC642798BB7, 98DFAAEA25FE4A450FEA18F36E0B0AA6143A0D1C89CB406857BEE5154D5931BB ] C:\Windows\System32\sti.dll
12:11:24.0339 0x0c9c  C:\Windows\System32\sti.dll - ok
12:11:24.0339 0x0c9c  [ D40E7B5FBB8E0EAA7C5C294389AF95AB, 8EFD521DF1F335AF416DEC15D5C0C6538903803AA1A8ED93AA704B384A29876B ] E:\Users\DLee\AppData\Local\Temp\{12D092B2-2B31-4952-B30D-C4D5F6F14098}.exe
12:11:24.0339 0x0c9c  E:\Users\DLee\AppData\Local\Temp\{12D092B2-2B31-4952-B30D-C4D5F6F14098}.exe - ok
12:11:24.0354 0x0c9c  [ CE71B9119A258EDD0A05B37D7B0F92E3, D9310C5BBFE089B8C81E259C462EC1E6D7A7A87FA59FC1F174ED5C58D409AE7A ] C:\Windows\SysWOW64\bcrypt.dll
12:11:24.0354 0x0c9c  C:\Windows\SysWOW64\bcrypt.dll - ok
12:11:24.0354 0x0c9c  [ C61DDFE40204F3BE3DF111981D91560E, 450D5E608D344B2186A73F5421CAF1792902BFB428182D6C5A971C5E0686842F ] C:\Windows\SysWOW64\ncrypt.dll
12:11:24.0354 0x0c9c  C:\Windows\SysWOW64\ncrypt.dll - ok
12:11:24.0354 0x0c9c  [ E8449FE262D7406BCB2AC2A45C53EC5F, 6C118C9FB26404D1943824CF3990F36E12986547FFACB7CC0DF975A913065D78 ] C:\Windows\SysWOW64\bcryptprimitives.dll
12:11:24.0354 0x0c9c  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
12:11:24.0354 0x0c9c  [ 1097F3035BAF46CED8B332B3564C5108, C69781683CA963A1335780DABBBC60E2C3CEF0888738D3425D358D12E8D0AF58 ] C:\Windows\SysWOW64\gpapi.dll
12:11:24.0354 0x0c9c  C:\Windows\SysWOW64\gpapi.dll - ok
12:11:24.0354 0x0c9c  [ 7B851A8018B1EA00A69707A390004884, DAE654713EF1DC66C8C2D27752B659081794063A7D522D1F680AA9A6E7FBA9FD ] C:\Windows\SysWOW64\cryptnet.dll
12:11:24.0354 0x0c9c  C:\Windows\SysWOW64\cryptnet.dll - ok
12:11:24.0354 0x0c9c  [ 6F8E3B7B70E1BBA871212940C1FBDF60, 3F9D4EE64E4210340C6FEE0DE81BFE3C613DDBE608EC09D63817D24CE24BFC5E ] C:\Windows\SysWOW64\SensApi.dll
12:11:24.0354 0x0c9c  C:\Windows\SysWOW64\SensApi.dll - ok
12:11:24.0370 0x0c9c  [ 846D0E4DB261CFAF363902E41498E961, D7E5591B7604FD583AF7FDA19E30928B24A6145318A3944E7D207F0CCEEB30D0 ] C:\Windows\SysWOW64\EhStorShell.dll
12:11:24.0370 0x0c9c  C:\Windows\SysWOW64\EhStorShell.dll - ok
12:11:24.0370 0x0c9c  [ 03F3B770DFBED6131653CEDA8CA780F0, 77373919DCA647F09851E7E460AE78FBD89F21516B961F84AC4446304E51E09C ] C:\Windows\SysWOW64\ntshrui.dll
12:11:24.0370 0x0c9c  C:\Windows\SysWOW64\ntshrui.dll - ok
12:11:24.0370 0x0c9c  [ 465BEA35F7ED4A4A57686DEA7EA10F47, 7F1B3CA09AB045F805DA5765BE7DD270F5DDACE3073017F7386FF1E2FA82D6FB ] C:\Windows\SysWOW64\cscapi.dll
12:11:24.0370 0x0c9c  C:\Windows\SysWOW64\cscapi.dll - ok
12:11:24.0370 0x0c9c  [ 8B74CEC6980D4816B0037AE9A27E538F, 8721EDB4C51BF6020002FA5DDB1987C68590F9F433A2F18D9756B2DAC7542CB6 ] C:\Windows\SysWOW64\slc.dll
12:11:24.0370 0x0c9c  C:\Windows\SysWOW64\slc.dll - ok
12:11:24.0370 0x0c9c  [ 5CCDCD40E732D54E0F7451AC66AC1C87, 66F4DA105BD72E41250CD59E2B3CD931B47AC9FDB6C784B9E33C5EE1AC29841F ] C:\Windows\SysWOW64\srvcli.dll
12:11:24.0370 0x0c9c  C:\Windows\SysWOW64\srvcli.dll - ok
12:11:24.0385 0x0c9c  [ 827CB0D6C3F8057EA037FF271F8E9795, 82760DBDDD38D2A31CAAF51D065DF4E7E1D0F0C22733A0AF653776EBF7B79470 ] C:\Windows\SysWOW64\imageres.dll
12:11:24.0385 0x0c9c  C:\Windows\SysWOW64\imageres.dll - ok
12:11:24.0385 0x0c9c  [ B0374EF227F086A483324E350787E8A3, 8A1D2F0D3ABF1EBFE1D43B7653C2C98F9D7680A9358F540677142D3221D7DC35 ] E:\Users\DLee\Desktop\BlueScreenView.exe
12:11:24.0385 0x0c9c  E:\Users\DLee\Desktop\BlueScreenView.exe - ok
12:11:24.0385 0x0c9c  [ 7F3717F4DDA68FFF5F8AB2CBEB3EB751, C1C2E5215F48D22F18465D76CD13FB025D629EE76E269F6A602EA9571DC22E21 ] E:\Program Files\Office14\CLVIEW.EXE
12:11:24.0385 0x0c9c  E:\Program Files\Office14\CLVIEW.EXE - ok
12:11:24.0385 0x0c9c  [ BAE9ED9645B4DF7C05C2CD1046A6734F, FEFCFBB106405EEDF9591763EB3AF49EBC3929AF34568917134D4B373645E798 ] E:\Program Files\Office14\EXCEL.EXE
12:11:24.0385 0x0c9c  E:\Program Files\Office14\EXCEL.EXE - ok
12:11:24.0385 0x0c9c  [ D550D174C57FB5F2C2AE928F277A8DFE, 211DB0A3943FD3C7659EAC6560DC76192048B87A8B5831B50234ED01EE376551 ] E:\Program Files\MPC-HC\mpc-hc64.exe
12:11:24.0385 0x0c9c  E:\Program Files\MPC-HC\mpc-hc64.exe - ok
12:11:24.0401 0x0c9c  [ A6AAD37CDCAE75CB62D039E3A4D8F5E3, 4FF763B0D129175BA1B1E794BA313E6C63F7A89D377C786BF5E730AF2A1D95D1 ] C:\Program Files\Microsoft Security Client\msseces.exe
12:11:24.0401 0x0c9c  C:\Program Files\Microsoft Security Client\msseces.exe - ok
12:11:24.0401 0x0c9c  [ 58A0CDABEA255616827B1C22C9994466, 4FE1140AA8D3995579DE8CDF4ECAD1978804D05351EABB4079A63B303EF1B451 ] C:\Windows\System32\NapiNSP.dll
12:11:24.0401 0x0c9c  C:\Windows\System32\NapiNSP.dll - ok
12:11:24.0401 0x0c9c  [ 613C8CE10A5FDE582BA5FA64C4D56AAA, 30507B6BA79E1A271B07BBA58B4FF463678BE0960266A1D5E88031E932D768B6 ] C:\Windows\System32\pnrpnsp.dll
12:11:24.0401 0x0c9c  C:\Windows\System32\pnrpnsp.dll - ok
12:11:24.0401 0x0c9c  [ 2E2072EB48238FCA8FBB7A9F5FABAC45, AC70B9FC24847EEC2E18008F2894DCDAC19A9C90D5D88729326E493CA524F5C3 ] C:\Windows\System32\winrnr.dll
12:11:24.0401 0x0c9c  C:\Windows\System32\winrnr.dll - ok
12:11:24.0401 0x0c9c  [ 00000000000000000000000000000000, 0000000000000000000000000000000000000000000000000000000000000000 ] X:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe
12:11:24.0401 0x0c9c  X:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe - ok
12:11:24.0417 0x0c9c  [ 6D04467A68BFE25748575DF36638418F, 02CB1850D4286C8D6A6716002088D0F97497AFE193405062427657174395D42D ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
12:11:24.0417 0x0c9c  C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
12:11:24.0417 0x0c9c  [ 9DD8B9167F4EA4DAAFAFDA768FB8A3EB, 0C58A824DADC6ACF900DC80D66E970E7719F30C8CAD014B18BEC4B0E1508392A ] E:\Program Files\Recuva\recuva64.exe
12:11:24.0417 0x0c9c  E:\Program Files\Recuva\recuva64.exe - ok
12:11:24.0417 0x0c9c  [ 162D247E995EAEBF3EF4289069E1111C, 19E858E9902E2D570FFD24AE2CB4165273F5BAB1FF7B04758B11AB5CD41FD752 ] C:\Windows\SysWOW64\devrtl.dll
12:11:24.0417 0x0c9c  C:\Windows\SysWOW64\devrtl.dll - ok
12:11:24.0417 0x0c9c  [ 20B3934DB73EABA2B49B7177873CB81F, 492EAC5C51472B43DE11825358AEC4B9E3A081DACFD7513C696D6FE40F302EE5 ] C:\Windows\SysWOW64\netutils.dll
12:11:24.0417 0x0c9c  C:\Windows\SysWOW64\netutils.dll - ok
12:11:24.0417 0x0c9c  [ FB19FC5951A88F3C523E35C2C98D23C0, FF0DB8BF0C68DA0D09272E8181D2B5409C8850BB2F31AEA3AC4CD14C5A420A59 ] C:\Windows\SysWOW64\webio.dll
12:11:24.0417 0x0c9c  C:\Windows\SysWOW64\webio.dll - ok
12:11:24.0417 0x0c9c  [ CA9F7888B524D8100B977C81F44C3234, 57F3353F89724147D8AC8B69B12C1303DF26978309776F5F8CCF074526A915D3 ] C:\Windows\SysWOW64\winhttp.dll
12:11:24.0417 0x0c9c  C:\Windows\SysWOW64\winhttp.dll - ok
12:11:24.0432 0x0c9c  [ 2C647ABE9A424E55B5F3DAE4629B4277, 7B33009D253BAFFF87535C075E75498B6A06F334035DDC0DF51E10A142B4DF9E ] C:\Windows\System32\themeui.dll
12:11:24.0432 0x0c9c  C:\Windows\System32\themeui.dll - ok
12:11:24.0432 0x0c9c  [ FB10715E4099AF9FA389C71873245226, 6A4CB43880B822A0C4714D6E52EB3EB2CE1E69C3AA9CA65EAAD6B131AE43F274 ] C:\Windows\System32\timedate.cpl
12:11:24.0432 0x0c9c  C:\Windows\System32\timedate.cpl - ok
12:11:24.0432 0x0c9c  [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86, E15ED4FEFC3010C213694331DDFDC03767682325C898D773AB243E2DC8B08461 ] C:\Windows\System32\msftedit.dll
12:11:24.0432 0x0c9c  C:\Windows\System32\msftedit.dll - ok
12:11:24.0432 0x0c9c  [ 2EBD0C5B090125AECF017C57344C45AB, 4FF8F2460115C60AD164EE0DC2079E1601B8AA21A1BA8033B7B731FAF85411B6 ] C:\Windows\System32\msls31.dll
12:11:24.0432 0x0c9c  C:\Windows\System32\msls31.dll - ok
12:11:24.0432 0x0c9c  [ A0A65D306A5490D2EB8E7DE66898ECFD, CE5DA408F4EDD5E81CE0925867F03C9A35172CF1571FE4C4C052E45AB69822BB ] C:\Windows\System32\linkinfo.dll
12:11:24.0432 0x0c9c  C:\Windows\System32\linkinfo.dll - ok
12:11:24.0448 0x0c9c  [ 23B001185B7C3CB1F4BDEB143E6B45B7, AB3A5AB346F6353B43B06FBE20B7785DA988975E2C8B73A6588F107FFAAACC47 ] C:\Windows\System32\shdocvw.dll
12:11:24.0448 0x0c9c  C:\Windows\System32\shdocvw.dll - ok
12:11:24.0448 0x0c9c  [ 4C2C4640BF23AAFCF90519E0F34436CE, 8ACCDA77C2DC5BE2DAED05134310122AFECC872A8D118612E55DD229BFE4D844 ] C:\Windows\System32\DeviceCenter.dll
12:11:24.0448 0x0c9c  C:\Windows\System32\DeviceCenter.dll - ok
12:11:24.0448 0x0c9c  [ 9110FFAD124283F37D38771BB60556AF, BB495FDF86B7C3DD7878C496090A624CE8FE68F61166C91A4C99EF1140F0AD23 ] C:\Windows\System32\dsound.dll
12:11:24.0448 0x0c9c  C:\Windows\System32\dsound.dll - ok
12:11:24.0448 0x0c9c  [ 585FED4CDB8034B8B58AEB8008255817, 13D1055929D79598C04A4AB66EF3DBAADD265F9D1C3F43E84531238D2526A1AE ] C:\Windows\System32\opengl32.dll
12:11:24.0448 0x0c9c  C:\Windows\System32\opengl32.dll - ok
12:11:24.0448 0x0c9c  [ F2967C0A97C0EA67D79D7F557213950D, 65516C83DCB3F952CD4454636B61CC2F153AF6BEEBC352463791D92F7F500F52 ] C:\Windows\System32\glu32.dll
12:11:24.0448 0x0c9c  C:\Windows\System32\glu32.dll - ok
12:11:24.0448 0x0c9c  [ E3ECF5FFE3DEDF61DC6877B6A99ACBBF, 2944FE9035882830799F18B7A98112BA66F16994694CA0CFFC77306775F5EDB2 ] C:\Windows\SysWOW64\credssp.dll
12:11:24.0448 0x0c9c  C:\Windows\SysWOW64\credssp.dll - ok
12:11:24.0463 0x0c9c  [ B40420876B9288E0A1C8CCA8A84E5DC9, 0D3C73B45BC708D7B1E26DFB6D4F64031A998548FEA0FB5CE198ED716F7DC9A0 ] C:\Windows\SysWOW64\dnsapi.dll
12:11:24.0463 0x0c9c  C:\Windows\SysWOW64\dnsapi.dll - ok
12:11:24.0463 0x0c9c  [ 73E8667A19FEEDD856DF2695E9E511D4, 68D66C36D1F293D10ADCC6A33C870F989A29743537592CF172F02E794BEAFD1C ] C:\Windows\SysWOW64\wship6.dll
12:11:24.0463 0x0c9c  C:\Windows\SysWOW64\wship6.dll - ok
12:11:24.0463 0x0c9c  [ A5ED9421B8D09ED4F57CDA386307713E, EC2EE043E94A53302A9721220AA42D29BE72AF3448B7AA01F7EB911ECF7DC6AE ] C:\Windows\System32\dciman32.dll
12:11:24.0463 0x0c9c  C:\Windows\System32\dciman32.dll - ok
12:11:24.0463 0x0c9c  [ A6C09924C6730DE8DEED9890A12AA691, 46EACBC27D15FD43431812D6CA770982178C07246AF3A1C2E0D40D745A1D5758 ] C:\Windows\System32\ddraw.dll
12:11:24.0463 0x0c9c  C:\Windows\System32\ddraw.dll - ok
12:11:24.0463 0x0c9c  [ ED6EE83D61EBC683C2CD8E899EA6FEBE, F82592908D038C44D9F2E5C5B7BC663A2D370FC565F40420E1138A9E55F0E7EB ] C:\Windows\SysWOW64\rasadhlp.dll
12:11:24.0463 0x0c9c  C:\Windows\SysWOW64\rasadhlp.dll - ok
12:11:24.0479 0x0c9c  [ 263E9A047D17CD50BAA9D3C02910D18D, F526648358AD121001D2776E0ACC333EC4AC168CA07B40A3D3C06C5CE6A361C3 ] C:\Windows\System32\oledlg.dll
12:11:24.0479 0x0c9c  C:\Windows\System32\oledlg.dll - ok
12:11:24.0479 0x0c9c  [ DC220AE6F64819099F7EBD6F137E32E7, B8FE13B859FA83500DD95637FA6D4A5B8392C2A363E41D014D3B5374F636E1DE ] C:\Windows\System32\AudioSes.dll
12:11:24.0479 0x0c9c  C:\Windows\System32\AudioSes.dll - ok
12:11:24.0479 0x0c9c  [ DD515FF57CCE77FD6A13ECA7F2A98B1A, 84CD8AF9483424147EB24A097A8747D88E264AF8FC0552408825329C36F27746 ] C:\Windows\System32\RtkCfg64.dll
12:11:24.0479 0x0c9c  C:\Windows\System32\RtkCfg64.dll - ok
12:11:24.0479 0x0c9c  [ 653ED63E28C80138FDA2E6D739DBD005, EB2DA34B39AAADE620A431D2818F2F4B21C2D4BA1EB17C8BC64F1E8044FCC78F ] E:\Program Files (x86)\ASUS\AI Suite\QFan4\FanHelp.exe
12:11:24.0479 0x0c9c  E:\Program Files (x86)\ASUS\AI Suite\QFan4\FanHelp.exe - ok
12:11:24.0479 0x0c9c  [ 297F164DF80D84D8B300CB7BB46F6BAE, 6EC9D640F1F5E59BDC702976E19312CD94B3A78D151E0B88447D4BFFFA869639 ] C:\Program Files\Microsoft Security Client\MsMpRes.dll
12:11:24.0479 0x0c9c  C:\Program Files\Microsoft Security Client\MsMpRes.dll - ok
12:11:24.0495 0x0c9c  [ 28B90B154EAB06C22788B04C760AA8B3, D8296E2821564ED6BDA9E72EB24C627E6E7CA0D45C876BA3A5DA6242A14668B9 ] C:\Windows\System32\RtkAPO64.dll
12:11:24.0495 0x0c9c  C:\Windows\System32\RtkAPO64.dll - ok
12:11:24.0495 0x0c9c  [ 93812FDC01AA864195816CD814445F95, E5CB2576DA2905177AFD342DBE63E17CF626F93F430DEBC55155C18C60166BEE ] C:\Program Files\Microsoft Security Client\SqmApi.dll
12:11:24.0495 0x0c9c  C:\Program Files\Microsoft Security Client\SqmApi.dll - ok
12:11:24.0495 0x0c9c  [ B837D1528CE2E3CB79F09496BC08DDC6, ACD54CE61CFE94F23DC283537AD8FFBEB3D6041BD30317B60BA7A10FCB240A27 ] C:\Windows\System32\SensApi.dll
12:11:24.0495 0x0c9c  C:\Windows\System32\SensApi.dll - ok
12:11:24.0495 0x0c9c  [ F0D0E883EBBDC7615DC9EDEA0FFB2817, 58F1395445018CB16ED4D3710443FB5B0E087043F6A69F7B10D72D0455958954 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
12:11:24.0495 0x0c9c  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
12:11:24.0510 0x0c9c  [ F0C36D3E30E555FBFDCF4CCDCB9D3F21, 7AE19B41E19A89B16309BB3B09FAC1B678EE863A2AAFADF15453C6E7CCA2CBB9 ] E:\Program Files (x86)\ASUS\AI Suite\QFan4\AsAcpi.dll
12:11:24.0510 0x0c9c  E:\Program Files (x86)\ASUS\AI Suite\QFan4\AsAcpi.dll - ok
12:11:24.0510 0x0c9c  [ B6296A1E765612688E7E9800CEBF2AC8, 9ECE99DADA4E79FDA642B601D7909606A8215182F4482402BA1E886F62045680 ] C:\Windows\SysWOW64\AsIO.dll
12:11:24.0510 0x0c9c  C:\Windows\SysWOW64\AsIO.dll - ok
12:11:24.0510 0x0c9c  [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] E:\Users\DLee\AppData\Local\Temp\{73E98B6A-445C-402D-A446-269176681E84}\{9C76CE1C-213E-4D59-A2B5-CEB6AE4F6180}.tmp
12:11:24.0510 0x0c9c  E:\Users\DLee\AppData\Local\Temp\{73E98B6A-445C-402D-A446-269176681E84}\{9C76CE1C-213E-4D59-A2B5-CEB6AE4F6180}.tmp - ok
12:11:24.0510 0x0c9c  [ 2BCBA6052374959A30BD7948444DBB79, 46224A2B729026FEEBC3C6A09E69919D477097848DB2CA0C2F5B166CDF379660 ] C:\Windows\System32\gameux.dll
12:11:24.0510 0x0c9c  C:\Windows\System32\gameux.dll - ok
12:11:24.0510 0x0c9c  [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] E:\Users\DLee\AppData\Local\Temp\{73E98B6A-445C-402D-A446-269176681E84}\{8D617812-5B4B-4101-A8CC-E34D2382C9F7}.tmp
12:11:24.0510 0x0c9c  E:\Users\DLee\AppData\Local\Temp\{73E98B6A-445C-402D-A446-269176681E84}\{8D617812-5B4B-4101-A8CC-E34D2382C9F7}.tmp - ok
12:11:24.0526 0x0c9c  [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] E:\Users\DLee\AppData\Local\Temp\{73E98B6A-445C-402D-A446-269176681E84}\{64929CAB-C4D9-417E-8AD3-6B7111BDAAA7}.tmp
12:11:24.0526 0x0c9c  E:\Users\DLee\AppData\Local\Temp\{73E98B6A-445C-402D-A446-269176681E84}\{64929CAB-C4D9-417E-8AD3-6B7111BDAAA7}.tmp - ok
12:11:24.0526 0x0c9c  [ 69754747274B76E7FAF287239333D7E6, A0BAEC1E56E4B1A17C0D41B317526AF5BB11E7E488C7016067A6229346A23B16 ] C:\Windows\System32\msiltcfg.dll
12:11:24.0526 0x0c9c  C:\Windows\System32\msiltcfg.dll - ok
12:11:24.0526 0x0c9c  [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] E:\Users\DLee\AppData\Local\Temp\{73E98B6A-445C-402D-A446-269176681E84}\{246F25DD-FA13-4811-A008-6D553BE0F4F3}.tmp
12:11:24.0526 0x0c9c  E:\Users\DLee\AppData\Local\Temp\{73E98B6A-445C-402D-A446-269176681E84}\{246F25DD-FA13-4811-A008-6D553BE0F4F3}.tmp - ok
12:11:24.0526 0x0c9c  [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] E:\Users\DLee\AppData\Local\Temp\{73E98B6A-445C-402D-A446-269176681E84}\{B2D927D0-9A41-4463-AF9D-77195CE5A729}.tmp
12:11:24.0526 0x0c9c  E:\Users\DLee\AppData\Local\Temp\{73E98B6A-445C-402D-A446-269176681E84}\{B2D927D0-9A41-4463-AF9D-77195CE5A729}.tmp - ok
12:11:24.0541 0x0c9c  [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] E:\Users\DLee\AppData\Local\Temp\{73E98B6A-445C-402D-A446-269176681E84}\{4DDAB56E-7D0C-4527-BE0E-BA881F790FEE}.tmp
12:11:24.0541 0x0c9c  E:\Users\DLee\AppData\Local\Temp\{73E98B6A-445C-402D-A446-269176681E84}\{4DDAB56E-7D0C-4527-BE0E-BA881F790FEE}.tmp - ok
12:11:24.0541 0x0c9c  [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] E:\Users\DLee\AppData\Local\Temp\{73E98B6A-445C-402D-A446-269176681E84}\{7E23A136-A667-4436-A045-88B744194754}.tmp
12:11:24.0541 0x0c9c  E:\Users\DLee\AppData\Local\Temp\{73E98B6A-445C-402D-A446-269176681E84}\{7E23A136-A667-4436-A045-88B744194754}.tmp - ok
12:11:24.0541 0x0c9c  [ BA56C68CCB912C4C08C97DD32C47AD31, 8B70D9BC097C8D1A4E12773B3D57E78E969C7C3ECE1DF0E4576109A4F10E0AA6 ] C:\Windows\System32\ieframe.dll
12:11:24.0541 0x0c9c  C:\Windows\System32\ieframe.dll - ok
12:11:24.0541 0x0c9c  [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] E:\Users\DLee\AppData\Local\Temp\{73E98B6A-445C-402D-A446-269176681E84}\{5B665732-419E-4D0C-A28D-905DED42AC92}.tmp
12:11:24.0541 0x0c9c  E:\Users\DLee\AppData\Local\Temp\{73E98B6A-445C-402D-A446-269176681E84}\{5B665732-419E-4D0C-A28D-905DED42AC92}.tmp - ok
12:11:24.0541 0x0c9c  [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] E:\Users\DLee\AppData\Local\Temp\{73E98B6A-445C-402D-A446-269176681E84}\{82620278-2E97-4DC5-B9EA-7D7FC342331E}.tmp
12:11:24.0541 0x0c9c  E:\Users\DLee\AppData\Local\Temp\{73E98B6A-445C-402D-A446-269176681E84}\{82620278-2E97-4DC5-B9EA-7D7FC342331E}.tmp - ok
12:11:24.0557 0x0c9c  [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] E:\Users\DLee\AppData\Local\Temp\{73E98B6A-445C-402D-A446-269176681E84}\{C1988F41-DB09-4E63-BB05-B8A154FDE272}.tmp
12:11:24.0557 0x0c9c  E:\Users\DLee\AppData\Local\Temp\{73E98B6A-445C-402D-A446-269176681E84}\{C1988F41-DB09-4E63-BB05-B8A154FDE272}.tmp - ok
12:11:24.0557 0x0c9c  [ 9108540E866F75C7AF2B91DD921A8091, 7208C8E05E818781D7F2703B86848FC90651E0D8BE10362863250F2283CEC511 ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
12:11:24.0557 0x0c9c  C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
12:11:24.0557 0x0c9c  [ 2FCA0D2C59A855C54BAFA22AA329DF0F, ED9D26F539065D62FCCEDEEC8E509B30F4D15F8DA586C1F657ACEFE9DABAACD0 ] C:\Windows\SysWOW64\netapi32.dll
12:11:24.0557 0x0c9c  C:\Windows\SysWOW64\netapi32.dll - ok
12:11:24.0557 0x0c9c  [ C212A43AA83A717AD38505F23ACDCB33, 52BFF0FB72D2C4543ECB2C2F6E1DA63E548BAFCE553EECBB18F287AC2CF5EF28 ] C:\Windows\SysWOW64\msi.dll
12:11:24.0557 0x0c9c  C:\Windows\SysWOW64\msi.dll - ok
12:11:24.0557 0x0c9c  [ E5A4A1326A02F8E7B59E6C3270CE7202, DCB76016F9AC47E631540874DA208A089F9D529DA9628705A2869B954526BFE0 ] C:\Windows\SysWOW64\wkscli.dll
12:11:24.0557 0x0c9c  C:\Windows\SysWOW64\wkscli.dll - ok
12:11:24.0573 0x0c9c  [ 24F4B480F335A6C724AF352253C5D98B, 011413B236CAD7B78CE0A0EEC3E3085D48C7576A3205D025BA6EBFDF590538E4 ] C:\Windows\System32\thumbcache.dll
12:11:24.0573 0x0c9c  C:\Windows\System32\thumbcache.dll - ok
12:11:24.0573 0x0c9c  [ 405F4D32D2185F1F1BD753D8EEAFFB3A, CAC42C3E09C43BE96592B670D70821386014DB22D8239A9CFB9E33E54FB5C3D5 ] C:\Windows\System32\networkexplorer.dll
12:11:24.0573 0x0c9c  C:\Windows\System32\networkexplorer.dll - ok
12:11:24.0573 0x0c9c  [ 102CF6879887BBE846A00C459E6D4ABC, A4C51C79CF95D5C79DCEFB02946A09A987FEAF83CE2EE1BA7677EBA90869AC80 ] C:\Windows\SysWOW64\riched20.dll
12:11:24.0573 0x0c9c  C:\Windows\SysWOW64\riched20.dll - ok
12:11:24.0573 0x0c9c  [ E2A17BCC08D92F42E08AF6BA2F93ABA7, 5FC9D47BF4B1094BECC0C0DDCD5CD4318DD3E4495D982F8785331616D5B82599 ] C:\Windows\SysWOW64\ExplorerFrame.dll
12:11:24.0573 0x0c9c  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
12:11:24.0573 0x0c9c  [ EE06B85BC69F18826302348A2AD089E0, 417205797CC9F6C986A863A61179784D9ADCAF1961EF8A4D9042D73C5A86509A ] C:\Windows\SysWOW64\dui70.dll
12:11:24.0573 0x0c9c  C:\Windows\SysWOW64\dui70.dll - ok
12:11:24.0588 0x0c9c  [ 6E1F8165C365D35C8E3C045AF0CDD481, B861360D0A014265A0BEB4CC2FE31EA05AE95120E8B07820C13A044D64C00E2B ] C:\Windows\SysWOW64\duser.dll
12:11:24.0588 0x0c9c  C:\Windows\SysWOW64\duser.dll - ok
12:11:24.0588 0x0c9c  [ F832EEEA97CDDA1AF577E721F652A0D1, EBBB7CA199BA4DF231123922BD310D43DE0104C6185B70FE0281B938D5336F2E ] C:\Windows\System32\batmeter.dll
12:11:24.0588 0x0c9c  C:\Windows\System32\batmeter.dll - ok
12:11:24.0588 0x0c9c  [ C3761661C17C2248A9379A8FB89E3DE1, CE3477FA2B4058EB80739E0161FE957545F13CF86D313F6422732901D35F75F2 ] C:\Windows\System32\stobject.dll
12:11:24.0588 0x0c9c  C:\Windows\System32\stobject.dll - ok
12:11:24.0588 0x0c9c  [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122, E7EA375A3BDE8FC764CB09524344370B9EE25F98AD6C83E6F37A569EB8D277D6 ] C:\Windows\System32\prnfldr.dll
12:11:24.0588 0x0c9c  C:\Windows\System32\prnfldr.dll - ok
12:11:24.0588 0x0c9c  [ 42A9CB6906D9A8BEDC83B57163E62924, E18522D3137653140757829EFBFCE624A5BAA5842E2BBA10B9E5AB6C84BE49E1 ] C:\Windows\System32\DXP.dll
12:11:24.0588 0x0c9c  C:\Windows\System32\DXP.dll - ok
12:11:24.0604 0x0c9c  [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891, 0A82A475301202791A7C10F978F952EAB7DB146A702D4EA67E24E2C98BC19638 ] C:\Windows\System32\Syncreg.dll
12:11:24.0604 0x0c9c  C:\Windows\System32\Syncreg.dll - ok
12:11:24.0604 0x0c9c  [ A42F2C1EB3B66C54FB3C7B79D30C1A6D, A63836DB3B01835DC1311526A95198D6EBCCB1DC9DDAFBC38EC36C128CDB98B9 ] C:\Windows\System32\netshell.dll
12:11:24.0604 0x0c9c  C:\Windows\System32\netshell.dll - ok
12:11:24.0604 0x0c9c  [ F152755F131ADFE452D534F4E9383590, 6E0C52D409203F070B90350EF7405EE38185270E9579F4570DDA53DC65A4653E ] C:\Windows\System32\Faultrep.dll
12:11:24.0604 0x0c9c  C:\Windows\System32\Faultrep.dll - ok
12:11:24.0604 0x0c9c  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] C:\Windows\System32\wersvc.dll
12:11:24.0604 0x0c9c  C:\Windows\System32\wersvc.dll - ok
12:11:24.0604 0x0c9c  [ 8784236EED5079493DA9FC95B28B89F8, E59C349B964F585C27F63FBF7C1B5D7C6CF8CC958BD35100A36D57542DC13972 ] C:\Windows\System32\WerFault.exe
12:11:24.0604 0x0c9c  C:\Windows\System32\WerFault.exe - ok
12:11:24.0604 0x0c9c  [ 990EA3103E06D68CE0E755A9C3D70107, 39AC7F6D2A348BA50C3FBF50E23EAFEDAE232F0FA2F82937F18934E2D7C53CB7 ] C:\Windows\System32\dbgeng.dll
12:11:24.0604 0x0c9c  C:\Windows\System32\dbgeng.dll - ok
12:11:24.0619 0x0c9c  [ 850BD2D2D9CB5894935C3B6333CAD6FD, AB1EE5FD5E2F1CC927C3EA92E71C91ACA566E69622D47AE780DA391B7C30DDD6 ] C:\Windows\System32\riched20.dll
12:11:24.0619 0x0c9c  C:\Windows\System32\riched20.dll - ok
12:11:24.0619 0x0c9c  [ 0819EF7DB96DAB8AC3DACE567ED1B99E, 1489E5BC7F6E7E25665F0ED681A74DC65ADAC331895416F1980BD9D22E79B897 ] C:\Windows\System32\werui.dll
12:11:24.0619 0x0c9c  C:\Windows\System32\werui.dll - ok
12:11:24.0619 0x0c9c  [ EDF4DEC1041EEAF78A0B1E16C1BB4CC4, 72AB0E5499505AC25F4CACAB0C7581979100FAB552A253BB08DCD4643888702F ] C:\Windows\System32\fthsvc.dll
12:11:24.0619 0x0c9c  C:\Windows\System32\fthsvc.dll - ok
12:11:24.0619 0x0c9c  [ 0DB2758CF1BAFE22E0970FDA0785B74C, 325DEABB182FCA8DCB426AD0095B3524C8F77F2A9204E703391F631B2C4A1157 ] C:\Windows\System32\wuapi.dll
12:11:24.0619 0x0c9c  C:\Windows\System32\wuapi.dll - ok
12:11:24.0619 0x0c9c  [ FA43D418BC945D27D0625B697B8442B5, 035DE0FEA440D2E3AD255EE84B388DDA538E778877033FDB54B8A61BB0AADE56 ] C:\Windows\System32\cabinet.dll
12:11:24.0619 0x0c9c  C:\Windows\System32\cabinet.dll - ok
12:11:24.0635 0x0c9c  [ 7EC6617005F76714C7E16605E7A8AB06, 5940168249A9C1791CBD71C8F22FC618E8932808E1478986D89A386A5DA458AC ] C:\Windows\System32\wups.dll
12:11:24.0635 0x0c9c  C:\Windows\System32\wups.dll - ok
12:11:24.0635 0x0c9c  [ 0FAD4CC5E7BB28A3931E578059B9587E, E029EFB5AC48FD7078B00624D9CDF8B77161992C07E5A943A8938B57E25578FC ] E:\Program Files (x86)\TechSmith\SnagIt 9\SnagIt32.exe
12:11:24.0635 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\SnagIt32.exe - ok
12:11:24.0635 0x0c9c  [ 117DB20710C8EF62C52D2B60B77C7050, 67F9FDCBB42BB36A0404F8AD5A1BEFE016ADB8EF8576E8D9340172CE5AE7DEC5 ] E:\Program Files (x86)\TechSmith\SnagIt 9\Ltfil15u.dll
12:11:24.0635 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\Ltfil15u.dll - ok
12:11:24.0635 0x0c9c  [ A45B0390BC36ACAB58D5E28DAD736DCA, 1FE66C02468E6444A637DA9AD5753F446E06CF951E50DB6A86F6CB81F85956BC ] E:\Program Files (x86)\TechSmith\SnagIt 9\Ltkrn15u.dll
12:11:24.0635 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\Ltkrn15u.dll - ok
12:11:24.0635 0x0c9c  [ 3FB7536979AA33D32FC612D2EEBB4FEE, 9ABECEE0B5B3C32DD382E10525C373A8A7C39800FDFB56E5AF2E9DAB20B2FD80 ] E:\Program Files (x86)\TechSmith\SnagIt 9\Ltimgclr15u.dll
12:11:24.0635 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\Ltimgclr15u.dll - ok
12:11:24.0651 0x0c9c  [ E79E25D773366597DB696015A4B57C5A, 1774C7B4ECCAA19A7945F06CF75745CF373DBFBE6499513BD23DB2B46852DAE2 ] E:\Program Files (x86)\TechSmith\SnagIt 9\Ltdis15u.dll
12:11:24.0651 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\Ltdis15u.dll - ok
12:11:24.0651 0x0c9c  [ DF36825FC1701FD842C0FBAE8812F51E, 14F13C36EBEA835DD3BA11318C05BB04CABB9EF48333CC4E85DA875978D71056 ] E:\Program Files (x86)\TechSmith\SnagIt 9\Ltimgutl15u.dll
12:11:24.0651 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\Ltimgutl15u.dll - ok
12:11:24.0651 0x0c9c  [ D745E18BD3734C7ABD6158B22048EF0D, 5CE5FA982BFDFB045EA85248C55272EA374A680E7B08D2FA7D96BABD7B6AA9D4 ] E:\Program Files (x86)\TechSmith\SnagIt 9\Ltimgcor15u.dll
12:11:24.0651 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\Ltimgcor15u.dll - ok
12:11:24.0651 0x0c9c  [ 18AB2E5A40064ED5F7791AC5946A90F3, B7536CE56702C23B1CEC3E1B6C78866E0A76808B85A92AF3733D9ED9429E004C ] C:\Windows\SysWOW64\msimg32.dll
12:11:24.0651 0x0c9c  C:\Windows\SysWOW64\msimg32.dll - ok
12:11:24.0651 0x0c9c  [ 7E86E2A5EEB7E6F6DF366904E0C17EED, F4217F61FDFD0B50C61D5E0F2506D208A85F11A294EC1CF40A7D6987D55BB15A ] E:\Program Files (x86)\TechSmith\SnagIt 9\Ltimgefx15u.dll
12:11:24.0651 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\Ltimgefx15u.dll - ok
12:11:24.0666 0x0c9c  [ 565A30B70BE8A9B171839003F2D69683, 808BFBF2A0EC54417A254FDA0B22472CEA4A50F4C0952A6AB0ADF1119BD2543E ] C:\Windows\SysWOW64\hlink.dll
12:11:24.0666 0x0c9c  C:\Windows\SysWOW64\hlink.dll - ok
12:11:24.0666 0x0c9c  [ 5E3C0E5FFDA48C5DA35BBFB8EFFF8066, E2BBCC111DB1CE6072CB796F21677E4529029CE66DDC471EC793278F81F1FCF6 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
12:11:24.0666 0x0c9c  C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
12:11:24.0666 0x0c9c  [ D83947A58613E9091B4C9CC0F1546A8D, C71DF6E18E2099FC462717B8658D39C607A62C7E7A1E5CD0E258C17434535AD0 ] C:\Windows\SysWOW64\mscoree.dll
12:11:24.0666 0x0c9c  C:\Windows\SysWOW64\mscoree.dll - ok
12:11:24.0666 0x0c9c  [ F2BA5B3F3913F1472E583087AE71938E, 76DBE5CD3C624E6B8E81075D9160DE5E0A37AC288A7C992AAD327A2145C50C6E ] E:\Program Files (x86)\TechSmith\SnagIt 9\SnagItRes.dll
12:11:24.0666 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\SnagItRes.dll - ok
12:11:24.0666 0x0c9c  [ BB50B21FEE2A6F3E5FC92B330ECCF050, FD8A126C7F19267821C5FFC6C8341BBF2E11ADB241C49371BFB8CA00218A5754 ] C:\Windows\SysWOW64\hhctrl.ocx
12:11:24.0666 0x0c9c  C:\Windows\SysWOW64\hhctrl.ocx - ok
12:11:24.0682 0x0c9c  [ DA55DFCB2B78A0D4375A0FC5ABE13381, 0C67EA960F70B3BD6D1EB969FDB0D316F662AE426ABCB698A852AFF0A943E387 ] E:\Program Files (x86)\TechSmith\SnagIt 9\TscHelp.exe
12:11:24.0682 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\TscHelp.exe - ok
12:11:24.0682 0x0c9c  [ 51A8295B8F0E6F4E42EF2D84C7D97E76, 85AAA6941D469CD05EFA1F97D649B4B01456D2AEA85F0B3836991BBD464432DB ] E:\Program Files (x86)\TechSmith\SnagIt 9\SnagPriv.exe
12:11:24.0682 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\SnagPriv.exe - ok
12:11:24.0682 0x0c9c  [ 431297C371359B4FA145D52F63B2B3C5, 90E371257E1EBD6F1BD04ED9CBA8E4046D87B5E5D70FFFA5D5D36BCD9440AFAA ] E:\Program Files (x86)\TechSmith\SnagIt 9\sqlceoledb35.dll
12:11:24.0682 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\sqlceoledb35.dll - ok
12:11:24.0682 0x0c9c  [ 13902E2340FD7826CE52A8382D2797AF, 965F61406E1B900C4B8EDD341CC03A30812ACC607C5861238376C0CEB37976D1 ] E:\Program Files (x86)\TechSmith\SnagIt 9\sqlceer35EN.dll
12:11:24.0682 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\sqlceer35EN.dll - ok
12:11:24.0682 0x0c9c  [ AC694926714DC1BBB2D3CC11C51652F8, 2501F1B4A87D7F49C32AC3821AA8FBEA894A88CE82B4F6DD9B9067F381D08858 ] E:\Program Files (x86)\TechSmith\SnagIt 9\sqlcese35.dll
12:11:24.0682 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\sqlcese35.dll - ok
12:11:24.0697 0x0c9c  [ 6717C6C923897C8E9318060CC1975981, 54C79443D83A099FC68C8CCF7B46A937CED8F728AC4180268248EAD61DA8141C ] E:\Program Files (x86)\TechSmith\SnagIt 9\sqlceqp35.dll
12:11:24.0697 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\sqlceqp35.dll - ok
12:11:24.0697 0x0c9c  [ 127AA81343A7C6F665C22CB1293B0A90, 47CA5C13CABF3A24EF5D115EA181FA5BF94C8946BEC5619A5B910ADDF0616943 ] C:\Windows\splwow64.exe
12:11:24.0697 0x0c9c  C:\Windows\splwow64.exe - ok
12:11:24.0697 0x0c9c  [ 8B973113A003A4A97E53CA54F892917D, 9A7F9EB9716AEB6B91BF3A377D43FFD5FCF3D75C589C7F32CA865B0F526DC8D9 ] C:\Windows\System32\spool\drivers\x64\3\brio06a.dll
12:11:24.0697 0x0c9c  C:\Windows\System32\spool\drivers\x64\3\brio06a.dll - ok
12:11:24.0697 0x0c9c  [ 707F417EB2F72E2A985444C7413CA4E2, F55C762E85514EAAF7E7A1CA362DF743A59BDD971B70CB2268F06BF78111AFE6 ] C:\Windows\System32\spool\drivers\x64\3\briu06a.dll
12:11:24.0697 0x0c9c  C:\Windows\System32\spool\drivers\x64\3\briu06a.dll - ok
12:11:24.0697 0x0c9c  [ 50FF82649C394020B6FC51CB6846D8F6, 571C4FFB8CDE22229F4B0632952484168BED928E15FF78188E8828C2D2B9807A ] C:\Windows\System32\spool\drivers\x64\3\bril06a.dll
12:11:24.0697 0x0c9c  C:\Windows\System32\spool\drivers\x64\3\bril06a.dll - ok
12:11:24.0713 0x0c9c  [ 2342EC9254F4C60CA98441BD65C89E12, 7FDCAEB5D021E291A1C9B94DD4D49913CE363BF94D37518E466DB3DD72C41D05 ] C:\Windows\SysWOW64\dciman32.dll
12:11:24.0713 0x0c9c  C:\Windows\SysWOW64\dciman32.dll - ok
12:11:24.0713 0x0c9c  [ 198552AEFECA69D646867EC8D792DE95, 6978D5205387391748EE7E9FACF1AE607C37FBFD83B77CB632DD772F8D71A165 ] C:\Windows\SysWOW64\ddraw.dll
12:11:24.0713 0x0c9c  C:\Windows\SysWOW64\ddraw.dll - ok
12:11:24.0713 0x0c9c  [ E7368F0A8D19445EAF5C5D0DBB8B8DAB, CF9082360E32A7C3E13A67AC2C6192F4A76870D43DA9FF2936993A637F712761 ] C:\Windows\System32\AltTab.dll
12:11:24.0713 0x0c9c  C:\Windows\System32\AltTab.dll - ok
12:11:24.0713 0x0c9c  [ C8FDF0FA9E97E2FAAF3F814716AAA881, DD24A1CAB44D943B0E1A795A347AD25D9305FC7F012A2566A6A14BD47221831F ] C:\Windows\System32\WPDShServiceObj.dll
12:11:24.0713 0x0c9c  C:\Windows\System32\WPDShServiceObj.dll - ok
12:11:24.0713 0x0c9c  [ E0B340996A41C9A75DFA3B99BBA9C500, D029AD8ABBD2267B1E44DF5172B93C3F832B4C21F930F5512C24E800F5CE4F8B ] C:\Windows\System32\SearchIndexer.exe
12:11:24.0713 0x0c9c  C:\Windows\System32\SearchIndexer.exe - ok
12:11:24.0713 0x0c9c  [ 589DF683A6C81424A6CECE52ABF98A50, 8CE0D07B2FC1F1BF8C07434FAFCDC63FDD3B75007C3B2EED130DB69D2D16E90A ] C:\Windows\System32\tquery.dll
12:11:24.0713 0x0c9c  C:\Windows\System32\tquery.dll - ok
12:11:24.0729 0x0c9c  [ 4334FA63180F295BC3B2FE55987015B0, 1E3E8D3709F064B68A55CB5031ADD291F7F9A58379A4681DDDE7A73CE8451217 ] E:\Program Files (x86)\TechSmith\SnagIt 9\SnagItEditor.exe
12:11:24.0729 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\SnagItEditor.exe - ok
12:11:24.0729 0x0c9c  [ 7568CC720ACE4D03B84AF97817E745EF, 7155144CB0B260B969C398A36BC277C97BEADB5DB137D19A4F7E5AF61C3E24D4 ] C:\Windows\System32\mssrch.dll
12:11:24.0729 0x0c9c  C:\Windows\System32\mssrch.dll - ok
12:11:24.0729 0x0c9c  [ 3121A79D13A61562BE9CC902CD46B542, 00A5833A48338A4A9A5530844924AF4F1FAB618DA46D7EBBC6E2165C32ED376C ] C:\Windows\System32\msidle.dll
12:11:24.0729 0x0c9c  C:\Windows\System32\msidle.dll - ok
12:11:24.0729 0x0c9c  [ B9F0A4020AA98B7A20287BF7FE99A1FD, 21138F161EEEA46198890C7A2D073F2C82829E15676131BDAD9F237EDC7477CD ] C:\Windows\System32\QUTIL.DLL
12:11:24.0729 0x0c9c  C:\Windows\System32\QUTIL.DLL - ok
12:11:24.0729 0x0c9c  [ ACE1BB07E0377E37A2C514CD2EC119B1, A9AFA4774DFA875496764D6E541A6333A3ACD3C5D2BBEF753C2D80BA83B4AC15 ] C:\Windows\System32\mssprxy.dll
12:11:24.0729 0x0c9c  C:\Windows\System32\mssprxy.dll - ok
12:11:24.0744 0x0c9c  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] C:\Windows\System32\netman.dll
12:11:24.0744 0x0c9c  C:\Windows\System32\netman.dll - ok
12:11:24.0744 0x0c9c  [ D2155709E336C3BC15729EB87FEC6064, 682A84C0F2D892E7A6CEE4E5937B4799E352AAE3B71E7037F2A343373467443C ] C:\Windows\System32\rasdlg.dll
12:11:24.0744 0x0c9c  C:\Windows\System32\rasdlg.dll - ok
12:11:24.0744 0x0c9c  [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2, E8ACB693B1A78FAEF292111BE3F9B10BA95C76833C06C931A08EAAAE39A21334 ] C:\Windows\System32\dot3api.dll
12:11:24.0744 0x0c9c  C:\Windows\System32\dot3api.dll - ok
12:11:24.0744 0x0c9c  [ C9FB9038B15036CA28CF0B4BE2BED9BD, 0F56384E798B3F725FFEFC6E31A980DA31F620DB847F601273EF19E8CE74A226 ] C:\Windows\System32\en-US\tquery.dll.mui
12:11:24.0744 0x0c9c  C:\Windows\System32\en-US\tquery.dll.mui - ok
12:11:24.0744 0x0c9c  [ E4FCA0F99A41E460C84016DEFD31E6EF, 8EB14AF2025EADC7C86280E8417D8F286E8271B4F88B31696E33DFD72B3A0EF2 ] C:\Windows\System32\wlanhlp.dll
12:11:24.0744 0x0c9c  C:\Windows\System32\wlanhlp.dll - ok
12:11:24.0744 0x0c9c  [ 8569E35D00F45972E506502EEE622BA4, 01FE851C03DB88C8373099C279F995A559D962B08932E193032FA3EAD522FB01 ] C:\Windows\System32\srchadmin.dll
12:11:24.0744 0x0c9c  C:\Windows\System32\srchadmin.dll - ok
12:11:24.0760 0x0c9c  [ 5DA219F57A9076FB6FBD3C9C3713A672, 274FE616625B336D81841FDC752C8053D4CD6926565B899760D298D145CBA1A3 ] C:\Windows\System32\WWanAPI.dll
12:11:24.0760 0x0c9c  C:\Windows\System32\WWanAPI.dll - ok
12:11:24.0760 0x0c9c  [ 500EFB20483C20266848EFC8C7DE7CD0, 60D4BA282CA30BCC4837D93220293DEE8E52388A5D072F72B45D990657265CCD ] E:\Program Files (x86)\TechSmith\SnagIt 9\Ltefx15u.dll
12:11:24.0760 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\Ltefx15u.dll - ok
12:11:24.0760 0x0c9c  [ 6B851E682A36453E1B1EE297FFB6E2AB, A641D3FD9463C4788B45B8B5584EA4489C1F63A71B4B595AE85FF3482CD5EDA6 ] C:\Windows\System32\QAGENT.DLL
12:11:24.0760 0x0c9c  C:\Windows\System32\QAGENT.DLL - ok
12:11:24.0760 0x0c9c  [ 62C7AACC746C9723468A8F2169ED3E85, 40E901F3EAFE52DF11D6BC4EF0E79F666EBDACE0B3C090CAD2358076E893EA47 ] C:\Windows\System32\wwapi.dll
12:11:24.0760 0x0c9c  C:\Windows\System32\wwapi.dll - ok
12:11:24.0760 0x0c9c  [ E2C48CD0132D4D1DC7D0DF9A6BEF686A, 52D1A8AA992AF2F727DA4B16522D604648D700997B1620CCB67D05838C127674 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll
12:11:24.0760 0x0c9c  C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80u.dll - ok
12:11:24.0775 0x0c9c  [ F949336BA375ED0782EDF1A189044EE3, 23EB611C8C0F52AB02715F5059EEE06AA7678153313856A870CFCC7B00F693BE ] E:\Program Files (x86)\TechSmith\SnagIt 9\SnagItEditorRes.dll
12:11:24.0775 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\SnagItEditorRes.dll - ok
12:11:24.0775 0x0c9c  [ 211A1CFF92CF7F70EB61606ABB729615, 9FE3E91A81F8DF0996063BA3BB24C2F915EAB583035F1D219DF3FCBDADAC8D66 ] C:\Windows\System32\spool\drivers\x64\3\PSCRIPT5.DLL
12:11:24.0775 0x0c9c  C:\Windows\System32\spool\drivers\x64\3\PSCRIPT5.DLL - ok
12:11:24.0775 0x0c9c  [ F7A256EC899C72B4ECDD2C02CB592EFD, 9C1AA9322E83CABB94AEA4375EAEB0C44700E1F33B8BE98649BA1DF4DDFAD326 ] C:\Windows\System32\bthprops.cpl
12:11:24.0775 0x0c9c  C:\Windows\System32\bthprops.cpl - ok
12:11:24.0775 0x0c9c  [ 9699DB0085C06D5E1D03089D88CA13B9, A6D30D8B0E7E05EEBD741208DB189FF791ECB9669BC9D36E28555701B3D51A64 ] C:\Windows\System32\spool\drivers\x64\3\PS5UI.DLL
12:11:24.0775 0x0c9c  C:\Windows\System32\spool\drivers\x64\3\PS5UI.DLL - ok
12:11:24.0775 0x0c9c  [ 26C628B163F3A0FB1FAFF074FE1AC2AC, A07C00092553DD0C8771B98F154347FA022A0D835CDD826FD42FB3D1A0E88312 ] C:\Windows\System32\spool\drivers\x64\3\ADUIGP.DLL
12:11:24.0775 0x0c9c  C:\Windows\System32\spool\drivers\x64\3\ADUIGP.DLL - ok
12:11:24.0791 0x0c9c  [ 92DBF0A4C9239169010FC6E07859C82E, 00FB2CF4420F0FFEF519AFE732A708CF249640121E2A891CAA164313ABD7F804 ] C:\Windows\System32\ActionCenter.dll
12:11:24.0791 0x0c9c  C:\Windows\System32\ActionCenter.dll - ok
12:11:24.0791 0x0c9c  [ D2A5B2B09F2AF5ED13BF494508B09788, 3FA04E84EC5A575E7804E44BA3BF1C4143E53C4ACF6C823CD029711529B0BE2C ] C:\Windows\System32\msshooks.dll
12:11:24.0791 0x0c9c  C:\Windows\System32\msshooks.dll - ok
12:11:24.0791 0x0c9c  [ D9E21CBF9E6A87847AFFD39EA3FA28EE, B2AE0BBF907D4108DE3485E6059DF8D10C39707CD508A55A2D9627A66D01AE78 ] C:\Windows\System32\SearchProtocolHost.exe
12:11:24.0791 0x0c9c  C:\Windows\System32\SearchProtocolHost.exe - ok
12:11:24.0791 0x0c9c  [ F00AE7B953ABEF1B53FBBA187DFC8238, 6FFA160FB6821A725A7D81E1BECE1DE89E3E022B33E56A7468E2E0B4C8B2AE31 ] C:\Windows\System32\webcheck.dll
12:11:24.0791 0x0c9c  C:\Windows\System32\webcheck.dll - ok
12:11:24.0791 0x0c9c  [ 49A3AD5CE578CD77F445F3D244AEAB2D, 1D200547C6277C4A878A9ADD94045F7ACCC583609985C592AAE9B9B9CA7B812A ] C:\Windows\System32\SearchFilterHost.exe
12:11:24.0791 0x0c9c  C:\Windows\System32\SearchFilterHost.exe - ok
12:11:24.0807 0x0c9c  [ 101797BA603D227946B4B5109867EB19, EBF2B48D1A4FE148F455EA32023ABC0D479215D48C7CE76E765F199CD3C80AF8 ] C:\Windows\System32\SyncCenter.dll
12:11:24.0807 0x0c9c  C:\Windows\System32\SyncCenter.dll - ok
12:11:24.0807 0x0c9c  [ D44067027714CC58B8AB0AC38FDA1A0B, 56E96A58B5A53A68485F8D2F7BA286F2B174AB910BD45145258D48251F489F02 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
12:11:24.0807 0x0c9c  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
12:11:24.0807 0x0c9c  [ A08C010D859F8EB42BDD7E1D55B8CA27, F86EAFBF7AA41D8425156C07398EDC3BD42F1690BD3E15D27AEF2EDA86549F15 ] C:\Windows\System32\mscoree.dll
12:11:24.0807 0x0c9c  C:\Windows\System32\mscoree.dll - ok
12:11:24.0807 0x0c9c  [ 8130391F82D52D36C0441F714136957F, 1FD4FEE7CAF63E450F27729E07EA2A2F09288629FD872DBB6E8710B16D8DBD5D ] C:\Windows\System32\imapi2.dll
12:11:24.0807 0x0c9c  C:\Windows\System32\imapi2.dll - ok
12:11:24.0807 0x0c9c  [ 48041BAEB60CE5F34F13CC2A1361E49C, AF82355A4C0D872F1F45261381C23C1510C2C77DD5F040B706FD7A3D63D4BAA4 ] C:\Windows\System32\mssph.dll
12:11:24.0807 0x0c9c  C:\Windows\System32\mssph.dll - ok
12:11:24.0822 0x0c9c  [ 8F4BB0CFECED925D440ABC2481278360, 0A87E7E1B38300E211F2ECA10BFB9831CF79B128DEB9D7AB0AA6A715197FF2DD ] C:\Windows\System32\mapi32.dll
12:11:24.0822 0x0c9c  C:\Windows\System32\mapi32.dll - ok
12:11:24.0822 0x0c9c  [ 6A5C1A8AC0B572679361026D0E900420, B5E693B48B462E97738A3D4E58B60846159649EB15F4D11074B4BC107CC88562 ] C:\Windows\System32\hgcpl.dll
12:11:24.0822 0x0c9c  C:\Windows\System32\hgcpl.dll - ok
12:11:24.0822 0x0c9c  [ C30A3E5DEEEBA22E782AC54C5AF5F352, 80939A7B5354032256706C6CA0C3CCC7E67CD1C1C81EAEA2CBC74997C0863662 ] C:\Windows\SysWOW64\samlib.dll
12:11:24.0822 0x0c9c  C:\Windows\SysWOW64\samlib.dll - ok
12:11:24.0822 0x0c9c  [ 01E2855FB06C422E721D890AF201C2D7, 9CAA197D5CE95AABFC8C09EA2137E73C7A0EF37CE0459508C663F7B2D758E57F ] C:\Windows\System32\NaturalLanguage6.dll
12:11:24.0822 0x0c9c  C:\Windows\System32\NaturalLanguage6.dll - ok
12:11:24.0822 0x0c9c  [ A2F0B6A45EF5B68173AAA2A39690904E, 92B346ACD035D2E6060F5D51F1ABAC3AFE902D3D8742860BD4935A63B9573C9D ] C:\Windows\SysWOW64\zipfldr.dll
12:11:24.0822 0x0c9c  C:\Windows\SysWOW64\zipfldr.dll - ok
12:11:24.0822 0x0c9c  [ 701D9F5F3F21580936638D5C5F86B460, 2F187684F61C72AACF8274EA29B48DAAC6C8377F791843914AABF5DAB3760980 ] C:\Windows\System32\NlsData0009.dll
12:11:24.0822 0x0c9c  C:\Windows\System32\NlsData0009.dll - ok
12:11:24.0838 0x0c9c  [ 148A733B93A2AC104280495DA09D3CC2, 443E46865090C610B84A82DB23DF8D1F22001FEA8B10F5619A10D25D7FEA29CC ] C:\Windows\System32\NlsLexicons0009.dll
12:11:24.0838 0x0c9c  C:\Windows\System32\NlsLexicons0009.dll - ok
12:11:24.0838 0x0c9c  [ 76D86E65FF7D10292886A1F2DB93A911, D83CF27E338FEF4967CE0B1D28FE60CEF986D275781FC013531E54B328C4B9A3 ] C:\Windows\System32\ELSCore.dll
12:11:24.0838 0x0c9c  C:\Windows\System32\ELSCore.dll - ok
12:11:24.0838 0x0c9c  [ AEE087CF7423BA44CC2DE03CC565E399, 8C1C59D438C0C28E1B7B078C3EA030F6C4A7CBC3B1306D673B0A2EA0AAB2B953 ] C:\Windows\System32\elslad.dll
12:11:24.0838 0x0c9c  C:\Windows\System32\elslad.dll - ok
12:11:24.0838 0x0c9c  [ 12929BDE96189F4E968AD035573424F0, 27FBB49F6ED6722A0C43E270E7678EFE9950BD913760DB33D5C10AFAB99417FC ] C:\Windows\System32\elsTrans.dll
12:11:24.0838 0x0c9c  C:\Windows\System32\elsTrans.dll - ok
12:11:24.0838 0x0c9c  [ 164647BBD819458CE5AA8A8C097B83AC, DF3CA7ECE8045B3DEAF963AE9F99170927AB28EC823517DB652AE2CF81B6EA02 ] C:\Windows\System32\NlsData0007.dll
12:11:24.0838 0x0c9c  C:\Windows\System32\NlsData0007.dll - ok
12:11:24.0853 0x0c9c  [ 37A2FBCBD0AF846BEF609CBEB61EEA68, FD686224D7B85F8908487FD5D5318F06B1AA6828B3940EE9F8AFB219AAB280E9 ] C:\Windows\System32\NlsLexicons0007.dll
12:11:24.0853 0x0c9c  C:\Windows\System32\NlsLexicons0007.dll - ok
12:11:24.0853 0x0c9c  [ EAF4712B706936C0B10D3B5319B37E81, 1A356A3AB52DC8A13F41D2B7F26B6B0E23663D7C9DD6DF6E464EF29460EF2602 ] C:\Windows\SysWOW64\davclnt.dll
12:11:24.0853 0x0c9c  C:\Windows\SysWOW64\davclnt.dll - ok
12:11:24.0853 0x0c9c  [ 179BECE8D1A4C488DDB7191FF9BE3FB0, F91ABCB67A2AFD471A9B94AA2B9C46AAEF606266DC2276E81A6D0832566162A5 ] C:\Windows\SysWOW64\davhlpr.dll
12:11:24.0853 0x0c9c  C:\Windows\SysWOW64\davhlpr.dll - ok
12:11:24.0853 0x0c9c  [ D6692338B985D4A0CA52B828314D897D, CB0B7C84C1E2782A95489E2F4D2AF4CFDAC02676B76F49FF7D6A7091739EA25D ] C:\Windows\SysWOW64\drprov.dll
12:11:24.0853 0x0c9c  C:\Windows\SysWOW64\drprov.dll - ok
12:11:24.0853 0x0c9c  [ D7B7159BC8374E87D8C45A30377A3440, 0B68B6E7C35280D502BF05177ADADE2EE35D4D5307C3D1EE2635879BA06D904D ] C:\Windows\SysWOW64\ntlanman.dll
12:11:24.0853 0x0c9c  C:\Windows\SysWOW64\ntlanman.dll - ok
12:11:24.0869 0x0c9c  [ 181F69BC9C406B7FB5C0ADE8031630AC, 4625B362246EC092B4162836BBD4A1748BA2698FC49CAD634A01377FC1BDA29C ] C:\Windows\SysWOW64\wpdshext.dll
12:11:24.0869 0x0c9c  C:\Windows\SysWOW64\wpdshext.dll - ok
12:11:24.0869 0x0c9c  [ E98278865E8DABA21CFE5FE4BE34210A, 3BB431A9F6476EA98C17DF46BA5DFA265E74328D84875E402236ED12E50B6330 ] C:\Windows\SysWOW64\PortableDeviceApi.dll
12:11:24.0869 0x0c9c  C:\Windows\SysWOW64\PortableDeviceApi.dll - ok
12:11:24.0869 0x0c9c  [ ADB45A977BD9E45790CA496DB84BA148, BB251C9A5D2F5C6BDFB22C6BA235748472FC28AF2ADAF1CE7948352301DDE3C1 ] C:\Windows\SysWOW64\PortableDeviceTypes.dll
12:11:24.0869 0x0c9c  C:\Windows\SysWOW64\PortableDeviceTypes.dll - ok
12:11:24.0869 0x0c9c  [ 4634B0EE4098F0F2B972BDAC19A802E7, C2BFA57370D9BD182E3970C1979A3AEBBFC7BC0A6D31AA7814DEE93C93314487 ] C:\Windows\SysWOW64\audiodev.dll
12:11:24.0869 0x0c9c  C:\Windows\SysWOW64\audiodev.dll - ok
12:11:24.0869 0x0c9c  [ 0F416E23DD2EB4DEBE70608020CFD283, 8762F519453F114EC3126698E3DD49F2C5AF79124DDBFC87DF08D1EC2B292235 ] C:\Windows\SysWOW64\WMVCORE.DLL
12:11:24.0869 0x0c9c  C:\Windows\SysWOW64\WMVCORE.DLL - ok
12:11:24.0885 0x0c9c  [ A7DD56261518373F70F23079EB3CD0A2, 4BC8DC1744DA5C062DEA5BE122CBAE948810536116BBA747844556783768F1F6 ] C:\Windows\SysWOW64\WMASF.DLL
12:11:24.0885 0x0c9c  C:\Windows\SysWOW64\WMASF.DLL - ok
12:11:24.0885 0x0c9c  [ 1060D60CCA69A8136A87DBE3C8F4A467, EA246BD5EBA5C593A6D1CB8A300CCA13E575A2E1DF79BCD524B4C84866E4BE8D ] C:\Windows\SysWOW64\EhStorAPI.dll
12:11:24.0885 0x0c9c  C:\Windows\SysWOW64\EhStorAPI.dll - ok
12:11:24.0885 0x0c9c  [ 89BB29E119D9F431F8DCAF833A9516FD, 7A3DBCE13C02801FF2355E17D2F7CA298D59BF5B5B89C62AFEB24243C8865BDF ] E:\Program Files (x86)\TechSmith\SnagIt 9\Lffax15u.dll
12:11:24.0885 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\Lffax15u.dll - ok
12:11:24.0885 0x0c9c  [ 69910B7ECDD234B88152F6EA5CE1891C, 2026322AB170DC36E566E95AA7E922C415452FD4706BC9BD35FE3F72B21AA060 ] E:\Program Files (x86)\TechSmith\SnagIt 9\Lfcmp15u.dll
12:11:24.0885 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\Lfcmp15u.dll - ok
12:11:24.0885 0x0c9c  [ 08A757B5B72214A7355EDF72DEAEF9FD, F5A1F5B9BA890F06FCD6CA30AAF7A9C3D81F46A4CABD81F739B471CB4D535EB5 ] E:\Program Files (x86)\TechSmith\SnagIt 9\Lftif15u.dll
12:11:24.0885 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\Lftif15u.dll - ok
12:11:24.0900 0x0c9c  [ A29CA9AC7978D09B98012AB4E6A121F1, DB347845B593F2CFF4518FE4BDEFA0F4EE4698E7372B212B3A4EBDD0798974C3 ] E:\Program Files (x86)\TechSmith\SnagIt 9\Lfjbg15u.dll
12:11:24.0900 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\Lfjbg15u.dll - ok
12:11:24.0900 0x0c9c  [ 47F727C699E3819ACD375060416DBEE5, F81EDF8AC6A51CEEFB7090ED147FF6904FAD167F4FB1463E6342AA29E8F2E577 ] E:\Program Files (x86)\TechSmith\SnagIt 9\Lfpng15u.dll
12:11:24.0900 0x0c9c  E:\Program Files (x86)\TechSmith\SnagIt 9\Lfpng15u.dll - ok
12:11:24.0900 0x0c9c  [ C746F3BF98E92FB137B5BD2B8B5925BD, 67A8990F3D491D149E65C90042909259793C65E671DC953FDA1F7590FAC23D9E ] C:\Windows\System32\FXSST.dll
12:11:24.0900 0x0c9c  C:\Windows\System32\FXSST.dll - ok
12:11:24.0900 0x0c9c  [ 650CAEA856943E29F25A25D31E004B18, DCA63D2AF4C6F14B27EA006F200E58A5C13AC940A51947A40F668908A446CC4E ] C:\Windows\System32\FXSAPI.dll
12:11:24.0900 0x0c9c  C:\Windows\System32\FXSAPI.dll - ok
12:11:24.0900 0x0c9c  [ C8E8B8239FCF17BEA10E751BE5854631, CB869195E78AB613CEF50AE3B247F0E4E42F233A7AAF5B2BFC5ADEA2C45C5F8D ] C:\Windows\System32\FXSRESM.dll
12:11:24.0900 0x0c9c  C:\Windows\System32\FXSRESM.dll - ok
12:11:24.0900 0x0c9c  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] C:\Windows\System32\FXSSVC.exe
12:11:24.0900 0x0c9c  C:\Windows\System32\FXSSVC.exe - ok
12:11:24.0916 0x0c9c  [ 5FEAB868CAEDBBD1B7A145CA8261E4AA, 08BACE187A0225E10677DE9AA6738A7118BE3E5CAD6DC45FB8D3366A61BB343C ] C:\Windows\SysWOW64\WerFault.exe
12:11:24.0916 0x0c9c  C:\Windows\SysWOW64\WerFault.exe - ok
12:11:24.0916 0x0c9c  [ 220159496484D34009DE71CA1A68E0D4, 94BD3DEB4E84F95D80BE5775E5A612EFF181ECB212FB668674C67AD19194DE69 ] C:\Windows\System32\wbem\NCProv.dll
12:11:24.0916 0x0c9c  C:\Windows\System32\wbem\NCProv.dll - ok
12:11:24.0916 0x0c9c  [ 0B7E85364CB878E2AD531DB7B601A9E5, F5AD3018427F1CD68450EE5CB55AA9572546322580E0FB1E7888702A291C2380 ] C:\Windows\SysWOW64\NapiNSP.dll
12:11:24.0916 0x0c9c  C:\Windows\SysWOW64\NapiNSP.dll - ok
12:11:24.0916 0x0c9c  [ 0BA65122FFA7E37564EE86422DBF7AE8, 3A37FC503D3228D021473AECA285427382518CC36C197E4C9912745BDF3AB757 ] C:\Windows\SysWOW64\nlaapi.dll
12:11:24.0916 0x0c9c  C:\Windows\SysWOW64\nlaapi.dll - ok
12:11:24.0916 0x0c9c  [ 5CF640EDDB1E40A5AB1BB743BCDEC610, 0313AA3F713C9F5B84DBB0B4DE78A96B173E9F7B4CF61C10FDC7DAE952DB04E5 ] C:\Windows\SysWOW64\pnrpnsp.dll
12:11:24.0916 0x0c9c  C:\Windows\SysWOW64\pnrpnsp.dll - ok
12:11:24.0931 0x0c9c  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3, 2A610BEB16610FE2F2E9A50477A62A05481E8A5843A814955A0EDFF45D0304B3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
12:11:24.0931 0x0c9c  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
12:11:24.0931 0x0c9c  [ 81F6C1AE23B1C493D9E996C3103915D7, E22408B4D2EDE2F89E686A4FDCD4057BE27B86D050E9CB489F0FFB39C72AEC1D ] C:\Windows\SysWOW64\dhcpcsvc6.dll
12:11:24.0931 0x0c9c  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
12:11:24.0931 0x0c9c  [ 5DF5D8CFD9B9573FA3B2C89D9061A240, 990EA273B640DF2D7E800C0CFF18550259C605A4951CD82CD9F1E7B6FF0C9533 ] C:\Windows\SysWOW64\winrnr.dll
12:11:24.0931 0x0c9c  C:\Windows\SysWOW64\winrnr.dll - ok
12:11:24.0931 0x0c9c  ================ Scan generic autorun ======================
12:11:24.0963 0x0c9c  [ A6AAD37CDCAE75CB62D039E3A4D8F5E3, 4FF763B0D129175BA1B1E794BA313E6C63F7A89D377C786BF5E730AF2A1D95D1 ] C:\Program Files\Microsoft Security Client\msseces.exe
12:11:24.0994 0x0c9c  MSC - ok
12:11:25.0212 0x0c9c  [ 6D04467A68BFE25748575DF36638418F, 02CB1850D4286C8D6A6716002088D0F97497AFE193405062427657174395D42D ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
12:11:25.0415 0x0c9c  RtHDVCpl - ok
12:11:25.0509 0x0c9c  [ 653ED63E28C80138FDA2E6D739DBD005, EB2DA34B39AAADE620A431D2818F2F4B21C2D4BA1EB17C8BC64F1E8044FCC78F ] E:\Program Files (x86)\ASUS\AI Suite\QFan4\FanHelp.exe
12:11:25.0540 0x0c9c  QFan Help - ok
12:11:25.0540 0x0c9c  Waiting for KSN requests completion. In queue: 3
12:11:26.0554 0x0c9c  Waiting for KSN requests completion. In queue: 3
12:11:27.0568 0x0c9c  Waiting for KSN requests completion. In queue: 3
12:11:28.0613 0x0c9c  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.6.305.0 ), 0x61000 ( enabled : updated )
12:11:28.0613 0x0c9c  Win FW state via NFP2: enabled
12:11:31.0171 0x0c9c  ============================================================
12:11:31.0171 0x0c9c  Scan finished
12:11:31.0171 0x0c9c  ============================================================
12:11:31.0171 0x0c40  Detected object count: 2
12:11:31.0171 0x0c40  Actual detected object count: 2
12:12:36.0647 0x0c40  SwitchBoard ( UnsignedFile.Multi.Generic ) - skipped by user
12:12:36.0647 0x0c40  SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Skip
12:12:36.0647 0x0c40  \Device\Harddisk2\DR2 ( TDSS File System ) - skipped by user
12:12:36.0647 0x0c40  \Device\Harddisk2\DR2 ( TDSS File System ) - User select action: Skip
 

Attached Thumbnails

  • TDSSKiller Before Scan.png
  • TDSSKiller Scanning with Warning Left Open.png
  • TDSSKiller Almost Done.png
  • TDSSKiller End Scan Clicked Report.png

  • 0

Advertisements


#11
BrianDrab

BrianDrab

    Trusted Helper

  • Malware Removal
  • 3,583 posts

Excellent job. There's an MBR infection we need to get rid of.

 

Step#1 - TDSSKiller - Quarantine

 

Please re-run TDSSKiller again using the steps from the previous post. However, when the following line comes up please choose Delete.

 

12:12:36.0647 0x0c40  \Device\Harddisk2\DR2 ( TDSS File System )

 

Please post the new log.

 

Step#2 - FRST Fix
 
NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
1. Download attached file and save it to the Desktop. Attached File  fixlist.txt   1.13KB   51 downloads

    Note. It's important that both files, FRST64 and fixlist.txt are in the same location or the fix will not work (in this case...the desktop).
 
2. Run FRST64 by Right-Clicking on the file and choosing Run as administrator.
3. Press the Fix button just once and wait. If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
4. When finished FRST64 will generate a log on the Desktop (Fixlog.txt). Please post the contents of it in your reply.

 

 

Step#3 - Run Malwarebytes and Post Log

  • Download Malwarebytes to your desktop from here.
  • Double-click on the file that is downloaded to your desktop.
  • Select the appropriate language and click OK.
  • Click Next.
  • Select "I accept the agreement" and click Next.
  • Click Next
  • Change the install path if desired. Normally you will keep this as is. Click Next.
  • Click Next again.
  • Click Next again.
  • Click Install.
  • Uncheck "Enable free trial of Malwarebytes Anti-Malware Premium" since we are going to uninstall when we are done.
  • Click Finish
  • If an update is found you will be prompted to download and install. Go ahead.
  • Click the Scan button at the top of the form and then click Scan Now.
    2.JPG
  • Once the scan completes click the View detailed log link.
    3.JPG
  • Then click the Copy to clipboard button and paste into your next post.
    4.JPG

 

Step#4 - ESET Online Scanner and Post Results
Before running this scan, please temporarily disable your antivirus software to avoid conflicts. You can re-enable once it's done. I believe on the taskbar, you right-click the Norton icon and then click Disable AntiVirus Auto-Protect or something similar. Instructions for doing this on many AVs are here.

 

  • Please go here and click on 1.JPG
  • Note: This site is optimized for Internet Explorer. Please use it for this scan. If you wish to use Firefox or Chrome you will be asked to download the ESET Smart Installer first (esetsmartinstaller_enu.exe). Go ahead and download and run this file.
  • Please accept the ESET Online Scanner EULA and click Start.
  • If prompted, allow the Add-On/Active X to install. If you have problems with this step please see this link.
  • Make sure Enable detection of potentially unwanted applications is selected.
  • Click the Advanced Settings link.
  • Make sure Remove found threats is NOT checked.
  • Make sure Scan archives IS checked.
  • Make sure Scan for potentially unsafe applications IS checked.
  • Make sure Enable Anti-Stealth technology IS checked
  • 2.JPG
     
  • Click on Start
  • The virus signature database will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
  • When completed the Online Scan will begin automatically.
  • Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
  • When completed make sure you first copy the contents of the logfile located at C:\Program Files (x86)\ESET\Eset Online Scanner\log.txt
    Note: Copy/Paste the contents of the log.txt file BEFORE going on to the next step or the log file will be removed.
  • Also be sure to check Uninstall Application on Close before clicking finish.
  • Paste that log as a part of your next post.

 

  
 
 
Items for your next post

1. TDSSKiller log

2. FRST Fix Log

3. Malwarebytes log
4. Contents of the ESET log file

 


  • 0

#12
Daniel Christmas Lee

Daniel Christmas Lee

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 208 posts

Step #1, btw Windows Explorer once again "stopped working" right after reboot after hitting Start Scan.

 

11:23:37.0911 0x09e0  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
11:23:38.0457 0x09e0  ============================================================
11:23:38.0457 0x09e0  Current date / time: 2014/09/14 11:23:38.0457
11:23:38.0457 0x09e0  SystemInfo:
11:23:38.0457 0x09e0  
11:23:38.0457 0x09e0  OS Version: 6.1.7601 ServicePack: 1.0
11:23:38.0457 0x09e0  Product type: Workstation
11:23:38.0457 0x09e0  ComputerName: ARMOR
11:23:38.0457 0x09e0  UserName: DLee
11:23:38.0457 0x09e0  Windows directory: C:\Windows
11:23:38.0457 0x09e0  System windows directory: C:\Windows
11:23:38.0457 0x09e0  Running under WOW64
11:23:38.0457 0x09e0  Processor architecture: Intel x64
11:23:38.0457 0x09e0  Number of processors: 6
11:23:38.0457 0x09e0  Page size: 0x1000
11:23:38.0457 0x09e0  Boot type: Normal boot
11:23:38.0457 0x09e0  ============================================================
11:23:38.0457 0x09e0  BG loaded
11:23:38.0769 0x09e0  System UUID: {4FB44B7E-9EC3-2033-7BCA-40FFDE522FE9}
11:23:39.0393 0x09e0  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:23:39.0393 0x09e0  Drive \Device\Harddisk1\DR1 - Size: 0xEE8156000 ( 59.63 Gb ), SectorSize: 0x200, Cylinders: 0x1E67, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:23:39.0408 0x09e0  Drive \Device\Harddisk2\DR2 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:23:41.0717 0x09e0  Drive \Device\Harddisk4\DR4 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
11:23:41.0748 0x09e0  Drive \Device\Harddisk5\DR5 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
11:23:41.0748 0x09e0  ============================================================
11:23:41.0748 0x09e0  \Device\Harddisk0\DR0:
11:23:41.0764 0x09e0  MBR partitions:
11:23:41.0764 0x09e0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
11:23:41.0764 0x09e0  \Device\Harddisk1\DR1:
11:23:41.0764 0x09e0  MBR partitions:
11:23:41.0764 0x09e0  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x773F800
11:23:41.0764 0x09e0  \Device\Harddisk2\DR2:
11:23:41.0764 0x09e0  MBR partitions:
11:23:41.0764 0x09e0  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A34D800
11:23:41.0764 0x09e0  \Device\Harddisk2\DR2\Partition2: MBR, Type 0x7, StartLBA 0x3A34E000, BlocksNum 0x3A3B7800
11:23:41.0764 0x09e0  \Device\Harddisk4\DR4:
11:23:41.0764 0x09e0  MBR partitions:
11:23:41.0764 0x09e0  \Device\Harddisk4\DR4\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
11:23:41.0764 0x09e0  \Device\Harddisk5\DR5:
11:23:41.0764 0x09e0  MBR partitions:
11:23:41.0764 0x09e0  \Device\Harddisk5\DR5\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
11:23:41.0764 0x09e0  ============================================================
11:23:41.0764 0x09e0  C: <-> \Device\Harddisk1\DR1\Partition1
11:23:41.0780 0x09e0  K: <-> \Device\Harddisk5\DR5\Partition1
11:23:41.0795 0x09e0  U: <-> \Device\Harddisk0\DR0\Partition1
11:23:41.0842 0x09e0  X: <-> \Device\Harddisk2\DR2\Partition2
11:23:41.0858 0x09e0  E: <-> \Device\Harddisk2\DR2\Partition1
11:23:41.0873 0x09e0  G: <-> \Device\Harddisk4\DR4\Partition1
11:23:41.0873 0x09e0  ============================================================
11:23:41.0873 0x09e0  Initialize success
11:23:41.0873 0x09e0  ============================================================
11:23:59.0610 0x0dac  ============================================================
11:23:59.0610 0x0dac  Scan started
11:23:59.0610 0x0dac  Mode: Manual; SigCheck; TDLFS;
11:23:59.0610 0x0dac  ============================================================
11:23:59.0610 0x0dac  KSN ping started
11:24:02.0028 0x0dac  KSN ping finished: true
11:24:02.0668 0x0dac  ================ Scan system memory ========================
11:24:02.0668 0x0dac  System memory - ok
11:24:02.0668 0x0dac  ================ Scan services =============================
11:24:02.0699 0x0dac  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
11:24:03.0214 0x0dac  1394ohci - ok
11:24:03.0230 0x0dac  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
11:24:03.0245 0x0dac  ACPI - ok
11:24:03.0245 0x0dac  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
11:24:03.0261 0x0dac  AcpiPmi - ok
11:24:03.0276 0x0dac  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
11:24:03.0292 0x0dac  adp94xx - ok
11:24:03.0308 0x0dac  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
11:24:03.0323 0x0dac  adpahci - ok
11:24:03.0323 0x0dac  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
11:24:03.0339 0x0dac  adpu320 - ok
11:24:03.0354 0x0dac  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
11:24:03.0386 0x0dac  AeLookupSvc - ok
11:24:03.0401 0x0dac  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
11:24:03.0417 0x0dac  AFD - ok
11:24:03.0432 0x0dac  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
11:24:03.0432 0x0dac  agp440 - ok
11:24:03.0432 0x0dac  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
11:24:03.0448 0x0dac  ALG - ok
11:24:03.0448 0x0dac  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
11:24:03.0464 0x0dac  aliide - ok
11:24:03.0464 0x0dac  [ E9269C2B132B1DF1EAFC0DD57B6F8A7D, AEE7E528E87237F8CBC749A6A84367E21183C1764328209D5A662CA6CB328317 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
11:24:03.0495 0x0dac  AMD External Events Utility - ok
11:24:03.0495 0x0dac  AMD FUEL Service - ok
11:24:03.0495 0x0dac  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
11:24:03.0510 0x0dac  amdide - ok
11:24:03.0510 0x0dac  [ 6A2EEB0C4133B20773BB3DD0B7B377B4, E4CB35C6937C70A145A13E5AE5B34A271B49101DA623171ACBFDA8601E5A70EA ] amdiox64        C:\Windows\system32\DRIVERS\amdiox64.sys
11:24:03.0510 0x0dac  amdiox64 - ok
11:24:03.0526 0x0dac  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
11:24:03.0526 0x0dac  AmdK8 - ok
11:24:03.0854 0x0dac  [ 13566D265888EA814CFB3D64430F74F0, BA9C0105BE1ED9FB49B59CDA53AB5B69AAC34B91E33C46A2A5360DFC565A7940 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
11:24:04.0805 0x0dac  amdkmdag - ok
11:24:04.0836 0x0dac  [ 62B88833AB7B678E9790117ED01E096F, 01E7A8A504F558B065B4A3B01EA5DF0480B721CE2EFF37EA5C0C7BC934D7A229 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
11:24:04.0868 0x0dac  amdkmdap - ok
11:24:04.0868 0x0dac  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
11:24:04.0883 0x0dac  AmdPPM - ok
11:24:04.0883 0x0dac  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
11:24:04.0899 0x0dac  amdsata - ok
11:24:04.0899 0x0dac  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
11:24:04.0914 0x0dac  amdsbs - ok
11:24:04.0914 0x0dac  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
11:24:04.0930 0x0dac  amdxata - ok
11:24:04.0930 0x0dac  [ 033D09CD953C40B4AFBA9DCB1D1DFB8E, 629BE54E64C8B3FFE9F52820F6BF2802D50F719F63A621C998865FFD61C9F84E ] amd_sata        C:\Windows\system32\DRIVERS\amd_sata.sys
11:24:04.0946 0x0dac  amd_sata - ok
11:24:04.0946 0x0dac  [ F32F762E54137925E185E5FDA5F73826, A9CC747C0886628F8A5145FBE09FFCA6B5E4EFC0F4457E4824E004A329DFC765 ] amd_xata        C:\Windows\system32\DRIVERS\amd_xata.sys
11:24:04.0946 0x0dac  amd_xata - ok
11:24:04.0961 0x0dac  [ C3D487827E48CC5EC17994FEC5BDFF87, 5FCEA3EEA583755D0C9F6005ED3032E9DFECB57F504DC67701AE7D2D2631C30E ] AODDriver4.0    C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
11:24:04.0961 0x0dac  AODDriver4.0 - ok
11:24:04.0961 0x0dac  [ C3D487827E48CC5EC17994FEC5BDFF87, 5FCEA3EEA583755D0C9F6005ED3032E9DFECB57F504DC67701AE7D2D2631C30E ] AODDriver4.3    C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
11:24:04.0977 0x0dac  AODDriver4.3 - ok
11:24:04.0977 0x0dac  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
11:24:05.0024 0x0dac  AppID - ok
11:24:05.0024 0x0dac  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
11:24:05.0055 0x0dac  AppIDSvc - ok
11:24:05.0055 0x0dac  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
11:24:05.0070 0x0dac  Appinfo - ok
11:24:05.0070 0x0dac  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
11:24:05.0086 0x0dac  arc - ok
11:24:05.0086 0x0dac  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
11:24:05.0102 0x0dac  arcsas - ok
11:24:05.0117 0x0dac  [ F6BDA026E4157DC4E321CA391E9D9BC6, D38774B8F812816DA43A0C52EEC566BBC44F57A6614BC84F1417C4227286B594 ] AsIO            C:\Windows\syswow64\drivers\AsIO.sys
11:24:05.0117 0x0dac  AsIO - ok
11:24:05.0133 0x0dac  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:24:05.0148 0x0dac  aspnet_state - ok
11:24:05.0148 0x0dac  [ 8C1FD73CC27EDD8D3344C632571C224C, 52023B9D578C4EB49238B7F6390D508C48012CEA52B7042F21B7065718C7C14E ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe
11:24:05.0180 0x0dac  AsSysCtrlService - detected UnsignedFile.Multi.Generic ( 1 )
11:24:07.0925 0x0dac  Detect skipped due to KSN trusted
11:24:07.0925 0x0dac  AsSysCtrlService - ok
11:24:08.0206 0x0dac  [ 26D66E32E78D3059715B3A17BC679CD9, 5039CB81CE0829C5F3DED16A4005FEB10141C6C9B473CC319E81BAF6D1DA33E3 ] AsUpIO          C:\Windows\syswow64\drivers\AsUpIO.sys
11:24:08.0222 0x0dac  AsUpIO - ok
11:24:08.0268 0x0dac  [ 28DC376662EB61492BB33D98CD80CA5C, 62B98E091F9CFB8A9A934FC51C76E68DC9EB27E9832BF6FAC136EAEED4395286 ] ASWLCCSvc       E:\Program Files (x86)\ASUS\ASWLCCSVC.exe
11:24:08.0315 0x0dac  ASWLCCSvc - detected UnsignedFile.Multi.Generic ( 1 )
11:24:10.0827 0x0dac  Detect skipped due to KSN trusted
11:24:10.0827 0x0dac  ASWLCCSvc - ok
11:24:10.0842 0x0dac  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
11:24:10.0858 0x0dac  AsyncMac - ok
11:24:10.0874 0x0dac  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
11:24:10.0874 0x0dac  atapi - ok
11:24:10.0889 0x0dac  [ 33497249626E7787AA5CEA99B226CCA6, EF6213B79F83334CD95E4A58A4FE64190AA3FEFF590E41C4BF302FC4A8F6D6D6 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
11:24:10.0889 0x0dac  AtiHDAudioService - ok
11:24:10.0905 0x0dac  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:24:10.0952 0x0dac  AudioEndpointBuilder - ok
11:24:10.0967 0x0dac  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
11:24:10.0998 0x0dac  AudioSrv - ok
11:24:11.0014 0x0dac  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
11:24:11.0030 0x0dac  AxInstSV - ok
11:24:11.0045 0x0dac  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
11:24:11.0061 0x0dac  b06bdrv - ok
11:24:11.0076 0x0dac  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
11:24:11.0092 0x0dac  b57nd60a - ok
11:24:11.0092 0x0dac  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
11:24:11.0108 0x0dac  BDESVC - ok
11:24:11.0108 0x0dac  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
11:24:11.0139 0x0dac  Beep - ok
11:24:11.0139 0x0dac  [ B62ABDC39B36184B6B8B9E71A8685F52, 2B9FD036B110CBA232219F592E6B4C8A2E9F47CC86605B3682B1FD4F34BE6E94 ] BEHRINGER_2902  C:\Windows\system32\Drivers\BUSB2902.sys
11:24:11.0170 0x0dac  BEHRINGER_2902 - ok
11:24:11.0201 0x0dac  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
11:24:11.0217 0x0dac  BFE - ok
11:24:11.0232 0x0dac  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
11:24:11.0279 0x0dac  BITS - ok
11:24:11.0295 0x0dac  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
11:24:11.0295 0x0dac  blbdrive - ok
11:24:11.0310 0x0dac  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
11:24:11.0310 0x0dac  bowser - ok
11:24:11.0310 0x0dac  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:24:11.0326 0x0dac  BrFiltLo - ok
11:24:11.0326 0x0dac  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:24:11.0342 0x0dac  BrFiltUp - ok
11:24:11.0342 0x0dac  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] Bridge          C:\Windows\system32\DRIVERS\bridge.sys
11:24:11.0373 0x0dac  Bridge - ok
11:24:11.0373 0x0dac  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
11:24:11.0404 0x0dac  BridgeMP - ok
11:24:11.0404 0x0dac  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
11:24:11.0420 0x0dac  Browser - ok
11:24:11.0435 0x0dac  [ E5E9B1625A767CEB6F319C12D33EAB78, F49FF610C0712FAE4B69BD300C78D7DEA7C72DFC076323295779272D1E23D7CE ] BrSerIb         C:\Windows\system32\DRIVERS\BrSerIb.sys
11:24:11.0451 0x0dac  BrSerIb - ok
11:24:11.0451 0x0dac  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
11:24:11.0466 0x0dac  Brserid - ok
11:24:11.0482 0x0dac  [ 80E52EF092F3DAD03E0EE15E64F97245, D3BAFEBA95C9FC96945F47134F617695B48F5C67E26526D99D8D85DC39737F8A ] BrSerIf         C:\Windows\system32\DRIVERS\BrSerIf.sys
11:24:11.0498 0x0dac  BrSerIf - ok
11:24:11.0498 0x0dac  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
11:24:11.0513 0x0dac  BrSerWdm - ok
11:24:11.0513 0x0dac  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
11:24:11.0513 0x0dac  BrUsbMdm - ok
11:24:11.0529 0x0dac  [ 601CB966FFFEBC6806626DC8E7AA0EF2, 34208A23F48C60C52144C02D4E157D3057E9DE7D46ECB4246A521BEBB261F446 ] BrUsbSer        C:\Windows\system32\DRIVERS\BrUsbSer.sys
11:24:11.0529 0x0dac  BrUsbSer - ok
11:24:11.0529 0x0dac  [ D9F6B30AD93CBD165EC71FADF51DF25E, 9E38846451650F4F320CB1DEA9C010653A54D7419591719936BF53BEE269F1A8 ] BrUsbSIb        C:\Windows\system32\DRIVERS\BrUsbSIb.sys
11:24:11.0544 0x0dac  BrUsbSIb - ok
11:24:11.0544 0x0dac  BTCFilterService - ok
11:24:11.0544 0x0dac  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
11:24:11.0560 0x0dac  BTHMODEM - ok
11:24:11.0576 0x0dac  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
11:24:11.0591 0x0dac  bthserv - ok
11:24:11.0607 0x0dac  [ AEC85FF9A00DD9EE7605AFC66949F228, BD6EDF76A11276E46E776AA183D4BE627F8A9E065AE07B8B54FFDBBC231D104F ] BUSB_AUDIO_WDM  C:\Windows\system32\drivers\busbwdm.sys
11:24:11.0622 0x0dac  BUSB_AUDIO_WDM - ok
11:24:11.0638 0x0dac  [ AB134791E7F68B34C33431494FB75E51, 1FA8E48A4A4566B909F981009A4608EF689C1D944A922CE2374C3A51F58CE426 ] Cam5603D        C:\Windows\system32\Drivers\BisonCam.sys
11:24:11.0669 0x0dac  Cam5603D - ok
11:24:11.0685 0x0dac  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
11:24:11.0700 0x0dac  cdfs - ok
11:24:11.0716 0x0dac  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
11:24:11.0716 0x0dac  cdrom - ok
11:24:11.0732 0x0dac  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
11:24:11.0747 0x0dac  CertPropSvc - ok
11:24:11.0763 0x0dac  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
11:24:11.0763 0x0dac  circlass - ok
11:24:11.0778 0x0dac  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
11:24:11.0794 0x0dac  CLFS - ok
11:24:11.0794 0x0dac  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:24:11.0810 0x0dac  clr_optimization_v2.0.50727_32 - ok
11:24:11.0825 0x0dac  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:24:11.0825 0x0dac  clr_optimization_v2.0.50727_64 - ok
11:24:11.0841 0x0dac  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:24:11.0856 0x0dac  clr_optimization_v4.0.30319_32 - ok
11:24:11.0856 0x0dac  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:24:11.0872 0x0dac  clr_optimization_v4.0.30319_64 - ok
11:24:11.0888 0x0dac  [ B9DCEA6D9EC0E9192B2C44C5454E6FED, AAEB904884598F8F878F6CDAF3A068A98417D05D17D6D29E7403609B48D537C8 ] clwvd6          C:\Windows\system32\DRIVERS\clwvd6.sys
11:24:11.0888 0x0dac  clwvd6 - ok
11:24:11.0888 0x0dac  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
11:24:11.0903 0x0dac  CmBatt - ok
11:24:11.0903 0x0dac  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
11:24:11.0919 0x0dac  cmdide - ok
11:24:11.0919 0x0dac  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
11:24:11.0950 0x0dac  CNG - ok
11:24:11.0950 0x0dac  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
11:24:11.0966 0x0dac  Compbatt - ok
11:24:11.0966 0x0dac  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
11:24:11.0981 0x0dac  CompositeBus - ok
11:24:11.0981 0x0dac  COMSysApp - ok
11:24:11.0997 0x0dac  cpuz135 - ok
11:24:12.0059 0x0dac  [ A453083B8F4CA7CB60CAC327E97EDBE2, C50F8AB8538C557963252B702C1BD3CEE4604B5FC2497705D2A6A3FD87E3CC26 ] cpuz136         E:\Users\DLee\PC WIZARD 2013\pcwiz_x64.sys
11:24:12.0075 0x0dac  cpuz136 - ok
11:24:12.0075 0x0dac  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
11:24:12.0090 0x0dac  crcdisk - ok
11:24:12.0090 0x0dac  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
11:24:12.0106 0x0dac  CryptSvc - ok
11:24:12.0106 0x0dac  [ C6E1C081C0849E08FECEC18DF73B10C4, B5E552F4744C91836CBAF3F62CB861C1D9422721870D11B5CCE21B45E384985A ] dc3d            C:\Windows\system32\DRIVERS\dc3d.sys
11:24:12.0122 0x0dac  dc3d - ok
11:24:12.0137 0x0dac  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
11:24:12.0168 0x0dac  DcomLaunch - ok
11:24:12.0184 0x0dac  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
11:24:12.0215 0x0dac  defragsvc - ok
11:24:12.0215 0x0dac  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
11:24:12.0246 0x0dac  DfsC - ok
11:24:12.0262 0x0dac  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
11:24:12.0278 0x0dac  Dhcp - ok
11:24:12.0278 0x0dac  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
11:24:12.0309 0x0dac  discache - ok
11:24:12.0309 0x0dac  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
11:24:12.0309 0x0dac  Disk - ok
11:24:12.0324 0x0dac  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
11:24:12.0340 0x0dac  Dnscache - ok
11:24:12.0340 0x0dac  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
11:24:12.0371 0x0dac  dot3svc - ok
11:24:12.0387 0x0dac  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
11:24:12.0402 0x0dac  DPS - ok
11:24:12.0402 0x0dac  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
11:24:12.0418 0x0dac  drmkaud - ok
11:24:12.0434 0x0dac  [ FB9BEF3401EE5ECC2603311B9C64F44A, 33F8B6C9593677A360F580554D4F95B9F580C4E28F8187FBB27D96AFBFA8C7C1 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
11:24:12.0434 0x0dac  dtsoftbus01 - ok
11:24:12.0465 0x0dac  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
11:24:12.0496 0x0dac  DXGKrnl - ok
11:24:12.0496 0x0dac  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
11:24:12.0527 0x0dac  EapHost - ok
11:24:12.0590 0x0dac  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
11:24:12.0683 0x0dac  ebdrv - ok
11:24:12.0699 0x0dac  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
11:24:12.0699 0x0dac  EFS - ok
11:24:12.0761 0x0dac  [ 8DDD21AA573259EDE85A298FB8FEA906, 9388D35B1964BB04F45866D10CDBC7F1846019F5BDECD0320636DA2F691A140F ] ElephantDrive-MappedDrive.exe E:\Program Files (x86)\ElephantDrive\ElephantDrive\ElephantDrive-MappedDrive.exe
11:24:12.0808 0x0dac  ElephantDrive-MappedDrive.exe - ok
11:24:12.0839 0x0dac  [ 56623786824FCD0CEF354EFAD75FEAD3, 4CDD5069CE1D11839E0F8A8709896B634FBE462AC7AF3578B30EC6EA504B5359 ] ElephantDrive-Service.exe E:\Program Files (x86)\ElephantDrive\ElephantDrive\ElephantDrive-Service.exe
11:24:12.0886 0x0dac  ElephantDrive-Service.exe - ok
11:24:12.0902 0x0dac  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
11:24:12.0933 0x0dac  elxstor - ok
11:24:12.0933 0x0dac  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
11:24:12.0933 0x0dac  ErrDev - ok
11:24:12.0995 0x0dac  ESEADriver2 - ok
11:24:13.0011 0x0dac  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
11:24:13.0042 0x0dac  EventSystem - ok
11:24:13.0058 0x0dac  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
11:24:13.0089 0x0dac  exfat - ok
11:24:13.0089 0x0dac  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
11:24:13.0120 0x0dac  fastfat - ok
11:24:13.0136 0x0dac  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
11:24:13.0167 0x0dac  Fax - ok
11:24:13.0167 0x0dac  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
11:24:13.0182 0x0dac  fdc - ok
11:24:13.0182 0x0dac  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
11:24:13.0214 0x0dac  fdPHost - ok
11:24:13.0214 0x0dac  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
11:24:13.0245 0x0dac  FDResPub - ok
11:24:13.0245 0x0dac  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
11:24:13.0245 0x0dac  FileInfo - ok
11:24:13.0260 0x0dac  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
11:24:13.0276 0x0dac  Filetrace - ok
11:24:13.0292 0x0dac  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
11:24:13.0292 0x0dac  flpydisk - ok
11:24:13.0307 0x0dac  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
11:24:13.0323 0x0dac  FltMgr - ok
11:24:13.0338 0x0dac  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
11:24:13.0385 0x0dac  FontCache - ok
11:24:13.0385 0x0dac  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:24:13.0385 0x0dac  FontCache3.0.0.0 - ok
11:24:13.0401 0x0dac  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
11:24:13.0401 0x0dac  FsDepends - ok
11:24:13.0416 0x0dac  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
11:24:13.0416 0x0dac  Fs_Rec - ok
11:24:13.0432 0x0dac  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
11:24:13.0448 0x0dac  fvevol - ok
11:24:13.0448 0x0dac  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
11:24:13.0463 0x0dac  gagp30kx - ok
11:24:13.0479 0x0dac  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
11:24:13.0510 0x0dac  gpsvc - ok
11:24:13.0526 0x0dac  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
11:24:13.0526 0x0dac  hcw85cir - ok
11:24:13.0541 0x0dac  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:24:13.0557 0x0dac  HdAudAddService - ok
11:24:13.0572 0x0dac  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
11:24:13.0572 0x0dac  HDAudBus - ok
11:24:13.0588 0x0dac  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
11:24:13.0588 0x0dac  HidBatt - ok
11:24:13.0604 0x0dac  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
11:24:13.0604 0x0dac  HidBth - ok
11:24:13.0619 0x0dac  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
11:24:13.0619 0x0dac  HidIr - ok
11:24:13.0635 0x0dac  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
11:24:13.0650 0x0dac  hidserv - ok
11:24:13.0666 0x0dac  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
11:24:13.0666 0x0dac  HidUsb - ok
11:24:13.0666 0x0dac  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
11:24:13.0697 0x0dac  hkmsvc - ok
11:24:13.0713 0x0dac  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:24:13.0728 0x0dac  HomeGroupListener - ok
11:24:13.0728 0x0dac  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:24:13.0744 0x0dac  HomeGroupProvider - ok
11:24:13.0744 0x0dac  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
11:24:13.0760 0x0dac  HpSAMD - ok
11:24:13.0775 0x0dac  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
11:24:13.0806 0x0dac  HTTP - ok
11:24:13.0822 0x0dac  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
11:24:13.0822 0x0dac  hwpolicy - ok
11:24:13.0838 0x0dac  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
11:24:13.0838 0x0dac  i8042prt - ok
11:24:13.0853 0x0dac  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
11:24:13.0869 0x0dac  iaStorV - ok
11:24:13.0900 0x0dac  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:24:13.0916 0x0dac  idsvc - ok
11:24:13.0931 0x0dac  IEEtwCollectorService - ok
11:24:13.0931 0x0dac  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
11:24:13.0947 0x0dac  iirsp - ok
11:24:13.0962 0x0dac  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
11:24:13.0994 0x0dac  IKEEXT - ok
11:24:14.0040 0x0dac  [ A3BCBD0F710580A07D1B929D787D36CE, D7608C1C2B2FF4DD0C4CEBC75594ADA35A6911A541ED5FF93AAB8610108E168A ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
11:24:14.0103 0x0dac  IntcAzAudAddService - ok
11:24:14.0118 0x0dac  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
11:24:14.0118 0x0dac  intelide - ok
11:24:14.0118 0x0dac  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
11:24:14.0134 0x0dac  intelppm - ok
11:24:14.0134 0x0dac  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
11:24:14.0165 0x0dac  IPBusEnum - ok
11:24:14.0165 0x0dac  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:24:14.0196 0x0dac  IpFilterDriver - ok
11:24:14.0212 0x0dac  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
11:24:14.0228 0x0dac  iphlpsvc - ok
11:24:14.0243 0x0dac  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
11:24:14.0259 0x0dac  IPMIDRV - ok
11:24:14.0259 0x0dac  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
11:24:14.0290 0x0dac  IPNAT - ok
11:24:14.0290 0x0dac  [ 11FE7637A49B67D9B1F895B2AD4D982F, D448DA9083044E0B2627042D9FA5DC65C74A34AB09FF627777634B254260F4FB ] iprip           C:\Windows\System32\iprip.dll
11:24:14.0306 0x0dac  iprip - ok
11:24:14.0306 0x0dac  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
11:24:14.0321 0x0dac  IRENUM - ok
11:24:14.0321 0x0dac  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
11:24:14.0321 0x0dac  isapnp - ok
11:24:14.0337 0x0dac  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
11:24:14.0352 0x0dac  iScsiPrt - ok
11:24:14.0352 0x0dac  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
11:24:14.0368 0x0dac  kbdclass - ok
11:24:14.0368 0x0dac  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
11:24:14.0368 0x0dac  kbdhid - ok
11:24:14.0384 0x0dac  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
11:24:14.0384 0x0dac  KeyIso - ok
11:24:14.0384 0x0dac  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
11:24:14.0399 0x0dac  KSecDD - ok
11:24:14.0415 0x0dac  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
11:24:14.0415 0x0dac  KSecPkg - ok
11:24:14.0415 0x0dac  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
11:24:14.0446 0x0dac  ksthunk - ok
11:24:14.0462 0x0dac  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
11:24:14.0493 0x0dac  KtmRm - ok
11:24:14.0508 0x0dac  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
11:24:14.0524 0x0dac  LanmanServer - ok
11:24:14.0540 0x0dac  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:24:14.0571 0x0dac  LanmanWorkstation - ok
11:24:14.0571 0x0dac  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
11:24:14.0602 0x0dac  lltdio - ok
11:24:14.0602 0x0dac  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
11:24:14.0633 0x0dac  lltdsvc - ok
11:24:14.0649 0x0dac  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
11:24:14.0664 0x0dac  lmhosts - ok
11:24:14.0680 0x0dac  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
11:24:14.0680 0x0dac  LSI_FC - ok
11:24:14.0696 0x0dac  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
11:24:14.0696 0x0dac  LSI_SAS - ok
11:24:14.0711 0x0dac  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:24:14.0711 0x0dac  LSI_SAS2 - ok
11:24:14.0727 0x0dac  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:24:14.0727 0x0dac  LSI_SCSI - ok
11:24:14.0742 0x0dac  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
11:24:14.0758 0x0dac  luafv - ok
11:24:14.0774 0x0dac  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
11:24:14.0774 0x0dac  megasas - ok
11:24:14.0789 0x0dac  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
11:24:14.0805 0x0dac  MegaSR - ok
11:24:14.0805 0x0dac  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
11:24:14.0836 0x0dac  MMCSS - ok
11:24:14.0836 0x0dac  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
11:24:14.0867 0x0dac  Modem - ok
11:24:14.0867 0x0dac  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
11:24:14.0867 0x0dac  monitor - ok
11:24:14.0883 0x0dac  motandroidusb - ok
11:24:14.0883 0x0dac  motccgp - ok
11:24:14.0883 0x0dac  motccgpfl - ok
11:24:14.0883 0x0dac  [ 7ED3A9C3763725BD700946971215EE77, 6150D52945E10B69CFA5E3E637DCEBA67158092C6350B4AFE456EA846CA90C18 ] Motorola Device Manager C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
11:24:14.0930 0x0dac  Motorola Device Manager - ok
11:24:14.0930 0x0dac  MotoSwitchService - ok
11:24:14.0945 0x0dac  Motousbnet - ok
11:24:14.0945 0x0dac  [ 1D19770F88FA22DACB7F488EA8F8EE6B, AD100C774058CF878B6006518F3DCDBDEE475F3C9808FC5D844947D9C305FAE5 ] motusbdevice    C:\Windows\system32\DRIVERS\motusbdevice.sys
11:24:14.0961 0x0dac  motusbdevice - ok
11:24:14.0961 0x0dac  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
11:24:14.0976 0x0dac  mouclass - ok
11:24:14.0976 0x0dac  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
11:24:14.0976 0x0dac  mouhid - ok
11:24:14.0992 0x0dac  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
11:24:14.0992 0x0dac  mountmgr - ok
11:24:15.0008 0x0dac  [ 6439D1E559D08BD8A1465A8943357053, 0E300508C22D12FBA3BE566B722F574CBE1B4A1A305356B92B8EA8B86267071B ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
11:24:15.0023 0x0dac  MpFilter - ok
11:24:15.0023 0x0dac  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
11:24:15.0039 0x0dac  mpio - ok
11:24:15.0039 0x0dac  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
11:24:15.0070 0x0dac  mpsdrv - ok
11:24:15.0086 0x0dac  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
11:24:15.0132 0x0dac  MpsSvc - ok
11:24:15.0132 0x0dac  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
11:24:15.0148 0x0dac  MRxDAV - ok
11:24:15.0164 0x0dac  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
11:24:15.0164 0x0dac  mrxsmb - ok
11:24:15.0179 0x0dac  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:24:15.0195 0x0dac  mrxsmb10 - ok
11:24:15.0195 0x0dac  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:24:15.0210 0x0dac  mrxsmb20 - ok
11:24:15.0210 0x0dac  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
11:24:15.0226 0x0dac  msahci - ok
11:24:15.0226 0x0dac  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
11:24:15.0242 0x0dac  msdsm - ok
11:24:15.0242 0x0dac  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
11:24:15.0257 0x0dac  MSDTC - ok
11:24:15.0273 0x0dac  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
11:24:15.0288 0x0dac  Msfs - ok
11:24:15.0288 0x0dac  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
11:24:15.0320 0x0dac  mshidkmdf - ok
11:24:15.0320 0x0dac  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
11:24:15.0335 0x0dac  msisadrv - ok
11:24:15.0335 0x0dac  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
11:24:15.0366 0x0dac  MSiSCSI - ok
11:24:15.0366 0x0dac  msiserver - ok
11:24:15.0366 0x0dac  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
11:24:15.0398 0x0dac  MSKSSRV - ok
11:24:15.0398 0x0dac  [ F0D5494D8B177C37E16966262F5D0F68, DD63427DFFD9DD2BEC8336F6AD1BEFE347012331631DC5FEC65E83B1EACDBC67 ] MsMpSvc         C:\Program Files\Microsoft Security Client\MsMpEng.exe
11:24:15.0413 0x0dac  MsMpSvc - ok
11:24:15.0413 0x0dac  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
11:24:15.0444 0x0dac  MSPCLOCK - ok
11:24:15.0444 0x0dac  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
11:24:15.0460 0x0dac  MSPQM - ok
11:24:15.0476 0x0dac  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
11:24:15.0491 0x0dac  MsRPC - ok
11:24:15.0507 0x0dac  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
11:24:15.0507 0x0dac  mssmbios - ok
11:24:15.0507 0x0dac  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
11:24:15.0538 0x0dac  MSTEE - ok
11:24:15.0538 0x0dac  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
11:24:15.0554 0x0dac  MTConfig - ok
11:24:15.0554 0x0dac  [ 19B006B181E3875FD254F7B67ACF1E7C, 1D68D19522E71F16B8B50F8CCFBC9D884CF2DAC40CC409BD5A40A4D4223ABC61 ] MTsensor        C:\Windows\system32\DRIVERS\ASACPI.sys
11:24:15.0554 0x0dac  MTsensor - ok
11:24:15.0569 0x0dac  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
11:24:15.0569 0x0dac  Mup - ok
11:24:15.0585 0x0dac  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
11:24:15.0616 0x0dac  napagent - ok
11:24:15.0632 0x0dac  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
11:24:15.0647 0x0dac  NativeWifiP - ok
11:24:15.0678 0x0dac  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
11:24:15.0710 0x0dac  NDIS - ok
11:24:15.0710 0x0dac  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
11:24:15.0741 0x0dac  NdisCap - ok
11:24:15.0741 0x0dac  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
11:24:15.0756 0x0dac  NdisTapi - ok
11:24:15.0772 0x0dac  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
11:24:15.0788 0x0dac  Ndisuio - ok
11:24:15.0803 0x0dac  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
11:24:15.0819 0x0dac  NdisWan - ok
11:24:15.0834 0x0dac  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
11:24:15.0850 0x0dac  NDProxy - ok
11:24:15.0866 0x0dac  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
11:24:15.0881 0x0dac  NetBIOS - ok
11:24:15.0897 0x0dac  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
11:24:15.0928 0x0dac  NetBT - ok
11:24:15.0928 0x0dac  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
11:24:15.0928 0x0dac  Netlogon - ok
11:24:15.0944 0x0dac  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
11:24:15.0975 0x0dac  Netman - ok
11:24:15.0990 0x0dac  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:24:16.0006 0x0dac  NetMsmqActivator - ok
11:24:16.0006 0x0dac  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:24:16.0022 0x0dac  NetPipeActivator - ok
11:24:16.0022 0x0dac  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
11:24:16.0068 0x0dac  netprofm - ok
11:24:16.0084 0x0dac  [ 476E9E53452E9F1EE82E75F2BC7B2AE3, 21C936E9B08D63F8CD3EA18DE1B88103BEB427EC0C0CE30632801F011869162A ] netr28ux        C:\Windows\system32\DRIVERS\netr28ux.sys
11:24:16.0131 0x0dac  netr28ux - ok
11:24:16.0131 0x0dac  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:24:16.0146 0x0dac  NetTcpActivator - ok
11:24:16.0146 0x0dac  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:24:16.0162 0x0dac  NetTcpPortSharing - ok
11:24:16.0162 0x0dac  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
11:24:16.0178 0x0dac  nfrd960 - ok
11:24:16.0302 0x0dac  [ 93F304DEB07095BCF33BD1C17C2DB2A7, DCD4A810512BE0D86E019DB19C4317AB3FD2FEEE1166162155F6B5BA7D0EFF4F ] NIHardwareService C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
11:24:16.0443 0x0dac  NIHardwareService - ok
11:24:16.0458 0x0dac  [ F9EEFFC65C68A45001D1349E652B8B6F, E5F223129416083A12A85D48C65B2C8D1BF1124110399938E144308C89F9241D ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
11:24:16.0458 0x0dac  NisDrv - ok
11:24:16.0474 0x0dac  [ 9690F420A99364C1E5C439914B0DE25C, 6C6E0B27C4255001FE5F1EAD911DE1A8BF922C405B0C8031A6BD253CEB1D02A6 ] NisSrv          C:\Program Files\Microsoft Security Client\NisSrv.exe
11:24:16.0490 0x0dac  NisSrv - ok
11:24:16.0505 0x0dac  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
11:24:16.0521 0x0dac  NlaSvc - ok
11:24:16.0521 0x0dac  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
11:24:16.0552 0x0dac  Npfs - ok
11:24:16.0552 0x0dac  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
11:24:16.0583 0x0dac  nsi - ok
11:24:16.0583 0x0dac  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
11:24:16.0599 0x0dac  nsiproxy - ok
11:24:16.0646 0x0dac  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
11:24:16.0692 0x0dac  Ntfs - ok
11:24:16.0708 0x0dac  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
11:24:16.0724 0x0dac  Null - ok
11:24:16.0739 0x0dac  [ 285ACEC1B13A15BA520AAE06BACB9CFF, A6F576763818D4EAB2CDA3857F2963F61FDA67D7B581C52E1EB1DDB32FD642C3 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
11:24:16.0755 0x0dac  nusb3hub - ok
11:24:16.0755 0x0dac  [ F6D625FF7B56BB6EA063F0D3A5BBC996, 830196E96C120367BDA8C0EC9D7B85A642D41E8108189B1A72193299A6C005B1 ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
11:24:16.0770 0x0dac  nusb3xhc - ok
11:24:16.0786 0x0dac  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
11:24:16.0802 0x0dac  nvraid - ok
11:24:16.0802 0x0dac  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
11:24:16.0817 0x0dac  nvstor - ok
11:24:16.0817 0x0dac  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
11:24:16.0833 0x0dac  nv_agp - ok
11:24:16.0833 0x0dac  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
11:24:16.0848 0x0dac  ohci1394 - ok
11:24:16.0848 0x0dac  [ 4965B005492CBA7719E82B71E3245495, 52AD72C05FACC1E0E416A1FA25F34FDD3CB274FAB973BEAAE911A2FACA42B650 ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:24:16.0864 0x0dac  ose64 - ok
11:24:16.0958 0x0dac  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
11:24:17.0082 0x0dac  osppsvc - ok
11:24:17.0098 0x0dac  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
11:24:17.0114 0x0dac  p2pimsvc - ok
11:24:17.0129 0x0dac  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
11:24:17.0145 0x0dac  p2psvc - ok
11:24:17.0160 0x0dac  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
11:24:17.0160 0x0dac  Parport - ok
11:24:17.0176 0x0dac  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
11:24:17.0176 0x0dac  partmgr - ok
11:24:17.0192 0x0dac  PCANDIS4 - ok
11:24:17.0192 0x0dac  [ 6AE2D4CC74B93D4892F5A5BAFA34F834, 26FBBEDD8CC4E00FF664220EB58CCE5FA5008DF2E9881072A8552EE02DA56C94 ] PCASp50         C:\Windows\system32\Drivers\PCASp50.sys
11:24:17.0207 0x0dac  PCASp50 - ok
11:24:17.0207 0x0dac  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
11:24:17.0223 0x0dac  PcaSvc - ok
11:24:17.0238 0x0dac  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
11:24:17.0254 0x0dac  pci - ok
11:24:17.0254 0x0dac  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
11:24:17.0254 0x0dac  pciide - ok
11:24:17.0270 0x0dac  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
11:24:17.0285 0x0dac  pcmcia - ok
11:24:17.0285 0x0dac  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
11:24:17.0301 0x0dac  pcw - ok
11:24:17.0316 0x0dac  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
11:24:17.0348 0x0dac  PEAUTH - ok
11:24:17.0363 0x0dac  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
11:24:17.0379 0x0dac  PerfHost - ok
11:24:17.0410 0x0dac  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
11:24:17.0472 0x0dac  pla - ok
11:24:17.0488 0x0dac  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
11:24:17.0504 0x0dac  PlugPlay - ok
11:24:17.0504 0x0dac  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
11:24:17.0519 0x0dac  PNRPAutoReg - ok
11:24:17.0535 0x0dac  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
11:24:17.0550 0x0dac  PNRPsvc - ok
11:24:17.0550 0x0dac  [ 34A8FAE065249F85A67A3215FF5ECB34, 913297755C1046BA004E79660B7DA5BBE5E92B96AAA83D78AE3FF379371950D5 ] Point64         C:\Windows\system32\DRIVERS\point64.sys
11:24:17.0550 0x0dac  Point64 - ok
11:24:17.0566 0x0dac  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
11:24:17.0613 0x0dac  PolicyAgent - ok
11:24:17.0613 0x0dac  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
11:24:17.0644 0x0dac  Power - ok
11:24:17.0644 0x0dac  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
11:24:17.0675 0x0dac  PptpMiniport - ok
11:24:17.0675 0x0dac  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
11:24:17.0691 0x0dac  Processor - ok
11:24:17.0691 0x0dac  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
11:24:17.0706 0x0dac  ProfSvc - ok
11:24:17.0706 0x0dac  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
11:24:17.0722 0x0dac  ProtectedStorage - ok
11:24:17.0722 0x0dac  [ F115AF58ABE5605D7D709CBFBD83F418, 4855FCD6E455D6E374CE92E5B37D61E7E6D8A861BA76521E7CC2542621853471 ] ProtexisLicensing C:\Windows\SysWOW64\PSIService.exe
11:24:17.0738 0x0dac  ProtexisLicensing - ok
11:24:17.0753 0x0dac  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
11:24:17.0769 0x0dac  Psched - ok
11:24:17.0784 0x0dac  [ EA735BF6DF13A857A83C99BF27A422AD, 026A57155FB9E01CFAFD8613980CDF0F3D744ABBBC66EFDC6C20B89980FB45CF ] PST Service     C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
11:24:20.0156 0x0dac  PST Service - detected UnsignedFile.Multi.Generic ( 1 )
11:24:22.0854 0x0dac  Detect skipped due to KSN trusted
11:24:22.0854 0x0dac  PST Service - ok
11:24:22.0901 0x0dac  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
11:24:22.0948 0x0dac  ql2300 - ok
11:24:22.0948 0x0dac  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
11:24:22.0964 0x0dac  ql40xx - ok
11:24:22.0964 0x0dac  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
11:24:22.0995 0x0dac  QWAVE - ok
11:24:22.0995 0x0dac  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
11:24:23.0010 0x0dac  QWAVEdrv - ok
11:24:23.0010 0x0dac  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
11:24:23.0026 0x0dac  RasAcd - ok
11:24:23.0042 0x0dac  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
11:24:23.0057 0x0dac  RasAgileVpn - ok
11:24:23.0073 0x0dac  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
11:24:23.0104 0x0dac  RasAuto - ok
11:24:23.0104 0x0dac  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
11:24:23.0135 0x0dac  Rasl2tp - ok
11:24:23.0135 0x0dac  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
11:24:23.0166 0x0dac  RasMan - ok
11:24:23.0182 0x0dac  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
11:24:23.0198 0x0dac  RasPppoe - ok
11:24:23.0213 0x0dac  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
11:24:23.0229 0x0dac  RasSstp - ok
11:24:23.0244 0x0dac  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
11:24:23.0276 0x0dac  rdbss - ok
11:24:23.0276 0x0dac  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
11:24:23.0291 0x0dac  rdpbus - ok
11:24:23.0291 0x0dac  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
11:24:23.0322 0x0dac  RDPCDD - ok
11:24:23.0322 0x0dac  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
11:24:23.0354 0x0dac  RDPENCDD - ok
11:24:23.0354 0x0dac  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
11:24:23.0385 0x0dac  RDPREFMP - ok
11:24:23.0385 0x0dac  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
11:24:23.0400 0x0dac  RDPWD - ok
11:24:23.0400 0x0dac  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
11:24:23.0416 0x0dac  rdyboost - ok
11:24:23.0432 0x0dac  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
11:24:23.0447 0x0dac  RemoteAccess - ok
11:24:23.0463 0x0dac  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
11:24:23.0494 0x0dac  RemoteRegistry - ok
11:24:23.0494 0x0dac  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
11:24:23.0525 0x0dac  RpcEptMapper - ok
11:24:23.0525 0x0dac  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
11:24:23.0525 0x0dac  RpcLocator - ok
11:24:23.0541 0x0dac  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
11:24:23.0588 0x0dac  RpcSs - ok
11:24:23.0588 0x0dac  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
11:24:23.0619 0x0dac  rspndr - ok
11:24:23.0634 0x0dac  [ EE082E06A82FF630351D1E0EBBD3D8D0, 537F1A4108BDA72E8DD271466E7B7FCF39D4D55E4129AB35A409AB7AF2E7D219 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
11:24:23.0650 0x0dac  RTL8167 - ok
11:24:23.0650 0x0dac  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
11:24:23.0650 0x0dac  SamSs - ok
11:24:23.0666 0x0dac  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
11:24:23.0666 0x0dac  sbp2port - ok
11:24:23.0681 0x0dac  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
11:24:23.0712 0x0dac  SCardSvr - ok
11:24:23.0712 0x0dac  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
11:24:23.0744 0x0dac  scfilter - ok
11:24:23.0759 0x0dac  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
11:24:23.0806 0x0dac  Schedule - ok
11:24:23.0822 0x0dac  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
11:24:23.0837 0x0dac  SCPolicySvc - ok
11:24:23.0853 0x0dac  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
11:24:23.0868 0x0dac  SDRSVC - ok
11:24:23.0868 0x0dac  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
11:24:23.0900 0x0dac  secdrv - ok
11:24:23.0900 0x0dac  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
11:24:23.0915 0x0dac  seclogon - ok
11:24:23.0931 0x0dac  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
11:24:23.0946 0x0dac  SENS - ok
11:24:23.0962 0x0dac  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
11:24:23.0962 0x0dac  SensrSvc - ok
11:24:23.0978 0x0dac  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
11:24:23.0978 0x0dac  Serenum - ok
11:24:23.0978 0x0dac  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
11:24:23.0993 0x0dac  Serial - ok
11:24:23.0993 0x0dac  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
11:24:24.0009 0x0dac  sermouse - ok
11:24:24.0009 0x0dac  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
11:24:24.0040 0x0dac  SessionEnv - ok
11:24:24.0040 0x0dac  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
11:24:24.0056 0x0dac  sffdisk - ok
11:24:24.0056 0x0dac  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
11:24:24.0071 0x0dac  sffp_mmc - ok
11:24:24.0071 0x0dac  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
11:24:24.0087 0x0dac  sffp_sd - ok
11:24:24.0087 0x0dac  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
11:24:24.0102 0x0dac  sfloppy - ok
11:24:24.0102 0x0dac  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
11:24:24.0149 0x0dac  SharedAccess - ok
11:24:24.0149 0x0dac  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:24:24.0180 0x0dac  ShellHWDetection - ok
11:24:24.0196 0x0dac  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:24:24.0196 0x0dac  SiSRaid2 - ok
11:24:24.0196 0x0dac  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
11:24:24.0212 0x0dac  SiSRaid4 - ok
11:24:24.0212 0x0dac  [ DD0443BC6CC78A19FD399817F8C51401, 06D945DB1E2C45C01D9900A4C9A557269CCD7F0AD5F1864E31E03879BC4CDF7F ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
11:24:24.0227 0x0dac  SmartDefragDriver - ok
11:24:24.0227 0x0dac  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
11:24:24.0258 0x0dac  Smb - ok
11:24:24.0258 0x0dac  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
11:24:24.0274 0x0dac  SNMPTRAP - ok
11:24:24.0274 0x0dac  [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan        C:\Windows\syswow64\speedfan.sys
11:24:24.0290 0x0dac  speedfan - ok
11:24:24.0290 0x0dac  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
11:24:24.0305 0x0dac  spldr - ok
11:24:24.0321 0x0dac  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
11:24:24.0352 0x0dac  Spooler - ok
11:24:24.0430 0x0dac  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
11:24:24.0539 0x0dac  sppsvc - ok
11:24:24.0555 0x0dac  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
11:24:24.0586 0x0dac  sppuinotify - ok
11:24:24.0586 0x0dac  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
11:24:24.0617 0x0dac  srv - ok
11:24:24.0617 0x0dac  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
11:24:24.0633 0x0dac  srv2 - ok
11:24:24.0648 0x0dac  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
11:24:24.0664 0x0dac  srvnet - ok
11:24:24.0664 0x0dac  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
11:24:24.0695 0x0dac  SSDPSRV - ok
11:24:24.0695 0x0dac  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
11:24:24.0726 0x0dac  SstpSvc - ok
11:24:24.0742 0x0dac  [ 6E1A473DD2A4714EAF7D11E2315DF794, 4460546191072C7DF8B2E5A00577BA8E4FF5A1B2EA399DDF65EBE1AE4A5A5C84 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
11:24:25.0163 0x0dac  Steam Client Service - ok
11:24:25.0179 0x0dac  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
11:24:25.0179 0x0dac  stexstor - ok
11:24:25.0194 0x0dac  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
11:24:25.0226 0x0dac  stisvc - ok
11:24:25.0241 0x0dac  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
11:24:25.0241 0x0dac  swenum - ok
11:24:25.0257 0x0dac  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
11:24:25.0272 0x0dac  SwitchBoard - detected UnsignedFile.Multi.Generic ( 1 )
11:24:28.0112 0x0dac  Detect skipped due to KSN trusted
11:24:28.0112 0x0dac  SwitchBoard - ok
11:24:28.0127 0x0dac  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
11:24:28.0158 0x0dac  swprv - ok
11:24:28.0205 0x0dac  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
11:24:28.0268 0x0dac  SysMain - ok
11:24:28.0268 0x0dac  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:24:28.0283 0x0dac  TabletInputService - ok
11:24:28.0299 0x0dac  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
11:24:28.0330 0x0dac  TapiSrv - ok
11:24:28.0330 0x0dac  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
11:24:28.0361 0x0dac  TBS - ok
11:24:28.0408 0x0dac  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
11:24:28.0455 0x0dac  Tcpip - ok
11:24:28.0502 0x0dac  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
11:24:28.0548 0x0dac  TCPIP6 - ok
11:24:28.0548 0x0dac  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
11:24:28.0564 0x0dac  tcpipreg - ok
11:24:28.0564 0x0dac  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
11:24:28.0580 0x0dac  TDPIPE - ok
11:24:28.0580 0x0dac  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
11:24:28.0580 0x0dac  TDTCP - ok
11:24:28.0595 0x0dac  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
11:24:28.0626 0x0dac  tdx - ok
11:24:28.0626 0x0dac  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
11:24:28.0642 0x0dac  TermDD - ok
11:24:28.0658 0x0dac  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
11:24:28.0704 0x0dac  TermService - ok
11:24:28.0704 0x0dac  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
11:24:28.0720 0x0dac  Themes - ok
11:24:28.0720 0x0dac  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
11:24:28.0751 0x0dac  THREADORDER - ok
11:24:28.0751 0x0dac  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
11:24:28.0782 0x0dac  TrkWks - ok
11:24:28.0782 0x0dac  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:24:28.0814 0x0dac  TrustedInstaller - ok
11:24:28.0829 0x0dac  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
11:24:28.0829 0x0dac  tssecsrv - ok
11:24:28.0829 0x0dac  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
11:24:28.0845 0x0dac  TsUsbFlt - ok
11:24:28.0845 0x0dac  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
11:24:28.0876 0x0dac  tunnel - ok
11:24:28.0876 0x0dac  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
11:24:28.0892 0x0dac  uagp35 - ok
11:24:28.0907 0x0dac  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
11:24:28.0938 0x0dac  udfs - ok
11:24:28.0938 0x0dac  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
11:24:28.0954 0x0dac  UI0Detect - ok
11:24:28.0954 0x0dac  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
11:24:28.0970 0x0dac  uliagpkx - ok
11:24:28.0970 0x0dac  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\drivers\umbus.sys
11:24:28.0985 0x0dac  umbus - ok
11:24:28.0985 0x0dac  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
11:24:28.0985 0x0dac  UmPass - ok
11:24:29.0001 0x0dac  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
11:24:29.0032 0x0dac  upnphost - ok
11:24:29.0048 0x0dac  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
11:24:29.0063 0x0dac  usbaudio - ok
11:24:29.0063 0x0dac  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
11:24:29.0079 0x0dac  usbccgp - ok
11:24:29.0079 0x0dac  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
11:24:29.0094 0x0dac  usbcir - ok
11:24:29.0094 0x0dac  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
11:24:29.0094 0x0dac  usbehci - ok
11:24:29.0110 0x0dac  [ 5A4AC5D05A7C97C68596416C05D6F2B4, 1CDE5172B763D2D65379B9F3ABACC080AF676DB9354EC98A455E620C4CE3E18A ] usbfilter       C:\Windows\system32\DRIVERS\usbfilter.sys
11:24:29.0110 0x0dac  usbfilter - ok
11:24:29.0126 0x0dac  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
11:24:29.0141 0x0dac  usbhub - ok
11:24:29.0141 0x0dac  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
11:24:29.0157 0x0dac  usbohci - ok
11:24:29.0157 0x0dac  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
11:24:29.0172 0x0dac  usbprint - ok
11:24:29.0172 0x0dac  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
11:24:29.0172 0x0dac  usbscan - ok
11:24:29.0188 0x0dac  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:24:29.0204 0x0dac  USBSTOR - ok
11:24:29.0204 0x0dac  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
11:24:29.0219 0x0dac  usbuhci - ok
11:24:29.0219 0x0dac  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
11:24:29.0235 0x0dac  usbvideo - ok
11:24:29.0235 0x0dac  [ 7B28E2FBE75115660FAB31079C0A9F29, 81BB5A3E64B652A672A0782A88ABF6DDD729D38712D0706CE0FB9DE6D1EE1515 ] usb_rndisx      C:\Windows\system32\drivers\usb8023x.sys
11:24:29.0250 0x0dac  usb_rndisx - ok
11:24:29.0250 0x0dac  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
11:24:29.0282 0x0dac  UxSms - ok
11:24:29.0282 0x0dac  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
11:24:29.0282 0x0dac  VaultSvc - ok
11:24:29.0297 0x0dac  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
11:24:29.0297 0x0dac  vdrvroot - ok
11:24:29.0313 0x0dac  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
11:24:29.0344 0x0dac  vds - ok
11:24:29.0360 0x0dac  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
11:24:29.0360 0x0dac  vga - ok
11:24:29.0375 0x0dac  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
11:24:29.0391 0x0dac  VgaSave - ok
11:24:29.0406 0x0dac  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
11:24:29.0422 0x0dac  vhdmp - ok
11:24:29.0422 0x0dac  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
11:24:29.0422 0x0dac  viaide - ok
11:24:29.0438 0x0dac  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
11:24:29.0438 0x0dac  volmgr - ok
11:24:29.0453 0x0dac  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
11:24:29.0469 0x0dac  volmgrx - ok
11:24:29.0484 0x0dac  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
11:24:29.0500 0x0dac  volsnap - ok
11:24:29.0500 0x0dac  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
11:24:29.0516 0x0dac  vsmraid - ok
11:24:29.0547 0x0dac  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
11:24:29.0609 0x0dac  VSS - ok
11:24:29.0625 0x0dac  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
11:24:29.0625 0x0dac  vwifibus - ok
11:24:29.0640 0x0dac  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
11:24:29.0640 0x0dac  vwififlt - ok
11:24:29.0656 0x0dac  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
11:24:29.0656 0x0dac  vwifimp - ok
11:24:29.0672 0x0dac  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
11:24:29.0703 0x0dac  W32Time - ok
11:24:29.0718 0x0dac  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
11:24:29.0718 0x0dac  WacomPen - ok
11:24:29.0734 0x0dac  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
11:24:29.0750 0x0dac  WANARP - ok
11:24:29.0765 0x0dac  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
11:24:29.0781 0x0dac  Wanarpv6 - ok
11:24:29.0812 0x0dac  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
11:24:29.0859 0x0dac  WatAdminSvc - ok
11:24:29.0890 0x0dac  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
11:24:29.0937 0x0dac  wbengine - ok
11:24:29.0952 0x0dac  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
11:24:29.0968 0x0dac  WbioSrvc - ok
11:24:29.0984 0x0dac  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
11:24:29.0999 0x0dac  wcncsvc - ok
11:24:29.0999 0x0dac  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:24:30.0015 0x0dac  WcsPlugInService - ok
11:24:30.0015 0x0dac  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
11:24:30.0030 0x0dac  Wd - ok
11:24:30.0046 0x0dac  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
11:24:30.0077 0x0dac  Wdf01000 - ok
11:24:30.0077 0x0dac  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
11:24:30.0108 0x0dac  WdiServiceHost - ok
11:24:30.0108 0x0dac  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
11:24:30.0124 0x0dac  WdiSystemHost - ok
11:24:30.0140 0x0dac  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
11:24:30.0155 0x0dac  WebClient - ok
11:24:30.0155 0x0dac  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
11:24:30.0186 0x0dac  Wecsvc - ok
11:24:30.0202 0x0dac  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
11:24:30.0218 0x0dac  wercplsupport - ok
11:24:30.0233 0x0dac  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
11:24:30.0249 0x0dac  WerSvc - ok
11:24:30.0264 0x0dac  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
11:24:30.0280 0x0dac  WfpLwf - ok
11:24:30.0280 0x0dac  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
11:24:30.0296 0x0dac  WIMMount - ok
11:24:30.0296 0x0dac  WinDefend - ok
11:24:30.0296 0x0dac  WinHttpAutoProxySvc - ok
11:24:30.0311 0x0dac  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
11:24:30.0342 0x0dac  Winmgmt - ok
11:24:30.0389 0x0dac  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
11:24:30.0467 0x0dac  WinRM - ok
11:24:30.0467 0x0dac  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
11:24:30.0483 0x0dac  WinUsb - ok
11:24:30.0514 0x0dac  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
11:24:30.0545 0x0dac  Wlansvc - ok
11:24:30.0545 0x0dac  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
11:24:30.0561 0x0dac  WmiAcpi - ok
11:24:30.0561 0x0dac  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
11:24:30.0576 0x0dac  wmiApSrv - ok
11:24:30.0576 0x0dac  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
11:24:30.0592 0x0dac  WPCSvc - ok
11:24:30.0592 0x0dac  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
11:24:30.0608 0x0dac  WPDBusEnum - ok
11:24:30.0608 0x0dac  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
11:24:30.0639 0x0dac  ws2ifsl - ok
11:24:30.0639 0x0dac  [ AD12F5C7251BB8D575D560894E73CBBA, FAAA1440CBBDC889C0B8917065B932A9CC86E5C0FD5845D8830482915AF83F40 ] WsAudio_DeviceS(1) C:\Windows\system32\drivers\WsAudio_DeviceS(1).sys
11:24:30.0654 0x0dac  WsAudio_DeviceS(1) - ok
11:24:30.0654 0x0dac  [ AD12F5C7251BB8D575D560894E73CBBA, FAAA1440CBBDC889C0B8917065B932A9CC86E5C0FD5845D8830482915AF83F40 ] WsAudio_DeviceS(2) C:\Windows\system32\drivers\WsAudio_DeviceS(2).sys
11:24:30.0670 0x0dac  WsAudio_DeviceS(2) - ok
11:24:30.0686 0x0dac  [ AD12F5C7251BB8D575D560894E73CBBA, FAAA1440CBBDC889C0B8917065B932A9CC86E5C0FD5845D8830482915AF83F40 ] WsAudio_DeviceS(3) C:\Windows\system32\drivers\WsAudio_DeviceS(3).sys
11:24:30.0701 0x0dac  WsAudio_DeviceS(3) - ok
11:24:30.0701 0x0dac  [ AD12F5C7251BB8D575D560894E73CBBA, FAAA1440CBBDC889C0B8917065B932A9CC86E5C0FD5845D8830482915AF83F40 ] WsAudio_DeviceS(4) C:\Windows\system32\drivers\WsAudio_DeviceS(4).sys
11:24:30.0717 0x0dac  WsAudio_DeviceS(4) - ok
11:24:30.0717 0x0dac  [ AD12F5C7251BB8D575D560894E73CBBA, FAAA1440CBBDC889C0B8917065B932A9CC86E5C0FD5845D8830482915AF83F40 ] WsAudio_DeviceS(5) C:\Windows\system32\drivers\WsAudio_DeviceS(5).sys
11:24:30.0732 0x0dac  WsAudio_DeviceS(5) - ok
11:24:30.0748 0x0dac  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
11:24:30.0748 0x0dac  wscsvc - ok
11:24:30.0764 0x0dac  WSearch - ok
11:24:30.0826 0x0dac  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll
11:24:30.0873 0x0dac  wuauserv - ok
11:24:30.0888 0x0dac  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
11:24:30.0904 0x0dac  WudfPf - ok
11:24:30.0904 0x0dac  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
11:24:30.0920 0x0dac  WUDFRd - ok
11:24:30.0920 0x0dac  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
11:24:30.0935 0x0dac  wudfsvc - ok
11:24:30.0935 0x0dac  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
11:24:30.0951 0x0dac  WwanSvc - ok
11:24:30.0966 0x0dac  ================ Scan global ===============================
11:24:30.0966 0x0dac  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
11:24:30.0966 0x0dac  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
11:24:30.0982 0x0dac  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
11:24:30.0998 0x0dac  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
11:24:30.0998 0x0dac  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
11:24:31.0013 0x0dac  [ Global ] - ok
11:24:31.0013 0x0dac  ================ Scan MBR ==================================
11:24:31.0013 0x0dac  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
11:24:31.0107 0x0dac  \Device\Harddisk0\DR0 - ok
11:24:31.0107 0x0dac  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
11:24:31.0169 0x0dac  \Device\Harddisk1\DR1 - ok
11:24:31.0169 0x0dac  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
11:24:31.0388 0x0dac  \Device\Harddisk2\DR2 - detected TDSS File System ( 1 )
11:24:31.0388 0x0dac  \Device\Harddisk2\DR2 ( TDSS File System ) - warning
11:24:34.0086 0x0dac  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk4\DR4
11:24:34.0180 0x0dac  \Device\Harddisk4\DR4 - ok
11:24:34.0180 0x0dac  [ E5D1BF267A130BC345536D79674242AB ] \Device\Harddisk5\DR5
11:24:34.0664 0x0dac  \Device\Harddisk5\DR5 - ok
11:24:34.0664 0x0dac  ================ Scan VBR ==================================
11:24:34.0664 0x0dac  [ C31001C9C54082D0ACD79611C34E3E6B ] \Device\Harddisk0\DR0\Partition1
11:24:34.0695 0x0dac  \Device\Harddisk0\DR0\Partition1 - ok
11:24:34.0695 0x0dac  [ CE4122B54B0B434609C91CE3277F89A3 ] \Device\Harddisk1\DR1\Partition1
11:24:34.0695 0x0dac  \Device\Harddisk1\DR1\Partition1 - ok
11:24:34.0695 0x0dac  [ 8233F3877224E402FFF44EEA7B7592D5 ] \Device\Harddisk2\DR2\Partition1
11:24:34.0742 0x0dac  \Device\Harddisk2\DR2\Partition1 - ok
11:24:34.0742 0x0dac  [ 08A2300FC4F0A955DE6CB8D77F737739 ] \Device\Harddisk2\DR2\Partition2
11:24:34.0742 0x0dac  \Device\Harddisk2\DR2\Partition2 - ok
11:24:34.0742 0x0dac  [ DD2E6F9BF244BBC1AADEEB9F2EF7AAC0 ] \Device\Harddisk4\DR4\Partition1
11:24:34.0804 0x0dac  \Device\Harddisk4\DR4\Partition1 - ok
11:24:34.0804 0x0dac  [ B6B05107272B80ECDDFB11FD229A717A ] \Device\Harddisk5\DR5\Partition1
11:24:34.0866 0x0dac  \Device\Harddisk5\DR5\Partition1 - ok
11:24:34.0866 0x0dac  ================ Scan active images ========================
11:24:34.0866 0x0dac  [ 033D09CD953C40B4AFBA9DCB1D1DFB8E, 629BE54E64C8B3FFE9F52820F6BF2802D50F719F63A621C998865FFD61C9F84E ] C:\Windows\System32\drivers\amd_sata.sys
11:24:34.0866 0x0dac  C:\Windows\System32\drivers\amd_sata.sys - ok
11:24:34.0866 0x0dac  [ 3E588B60EC061686BA05D33574A344C6, 19D2D863F95CCC4493A2328B6BEB04248B6A80F957532E58C1D1D868C19FDCCB ] C:\Windows\System32\drivers\crashdmp.sys
11:24:34.0866 0x0dac  C:\Windows\System32\drivers\crashdmp.sys - ok
11:24:34.0866 0x0dac  [ B3222734D80013D2C73841B0C549FA63, F712A301B74F4E55E37189B989E02E845B15BFAF70749DA4000DA26E40CCFC90 ] C:\Windows\System32\drivers\Diskdump.sys
11:24:34.0866 0x0dac  C:\Windows\System32\drivers\Diskdump.sys - ok
11:24:34.0882 0x0dac  [ 814DB88F2641691575A455CF25354098, 79C50F0CD72612733217A0316BEFEA0B6D819C3159D9452EAB89AC26A18A0F89 ] C:\Windows\System32\drivers\dumpfve.sys
11:24:34.0882 0x0dac  C:\Windows\System32\drivers\dumpfve.sys - ok
11:24:34.0882 0x0dac  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] C:\Windows\System32\drivers\cdrom.sys
11:24:34.0882 0x0dac  C:\Windows\System32\drivers\cdrom.sys - ok
11:24:34.0882 0x0dac  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] C:\Windows\System32\drivers\beep.sys
11:24:34.0882 0x0dac  C:\Windows\System32\drivers\beep.sys - ok
11:24:34.0882 0x0dac  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] C:\Windows\System32\drivers\null.sys
11:24:34.0882 0x0dac  C:\Windows\System32\drivers\null.sys - ok
11:24:34.0882 0x0dac  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] C:\Windows\System32\drivers\RDPCDD.sys
11:24:34.0882 0x0dac  C:\Windows\System32\drivers\RDPCDD.sys - ok
11:24:34.0898 0x0dac  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] C:\Windows\System32\drivers\vga.sys
11:24:34.0898 0x0dac  C:\Windows\System32\drivers\vga.sys - ok
11:24:34.0898 0x0dac  [ E7353D59C9842BC7299FAEB7E7E09340, C37ED1025E07BAC2F535DCFED6C6C509515D95722EADE5AF94F1FC5D8B1DC783 ] C:\Windows\System32\drivers\videoprt.sys
11:24:34.0898 0x0dac  C:\Windows\System32\drivers\videoprt.sys - ok
11:24:34.0898 0x0dac  [ FC438D1430B28618E2D0C7C332A710AD, 873957B202E454E2C8F625E5799F278CAC16EC5EEAEE2C33E2FE5D1FF0408CB2 ] C:\Windows\System32\drivers\watchdog.sys
11:24:34.0898 0x0dac  C:\Windows\System32\drivers\watchdog.sys - ok
11:24:34.0898 0x0dac  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] C:\Windows\System32\drivers\msfs.sys
11:24:34.0898 0x0dac  C:\Windows\System32\drivers\msfs.sys - ok
11:24:34.0898 0x0dac  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] C:\Windows\System32\drivers\npfs.sys
11:24:34.0898 0x0dac  C:\Windows\System32\drivers\npfs.sys - ok
11:24:34.0913 0x0dac  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] C:\Windows\System32\drivers\RDPENCDD.sys
11:24:34.0913 0x0dac  C:\Windows\System32\drivers\RDPENCDD.sys - ok
11:24:34.0913 0x0dac  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] C:\Windows\System32\drivers\RDPREFMP.sys
11:24:34.0913 0x0dac  C:\Windows\System32\drivers\RDPREFMP.sys - ok
11:24:34.0913 0x0dac  [ 6F020A220388ECA0AB6062DC27BD16B6, 48655230E482DEB7B4B50EF05818EBB29CA61E780AEFCD9D31B02DE4DF9D9540 ] C:\Windows\System32\drivers\tdi.sys
11:24:34.0913 0x0dac  C:\Windows\System32\drivers\tdi.sys - ok
11:24:34.0913 0x0dac  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] C:\Windows\System32\drivers\tdx.sys
11:24:34.0913 0x0dac  C:\Windows\System32\drivers\tdx.sys - ok
11:24:34.0913 0x0dac  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] C:\Windows\System32\drivers\afd.sys
11:24:34.0913 0x0dac  C:\Windows\System32\drivers\afd.sys - ok
11:24:34.0913 0x0dac  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] C:\Windows\System32\drivers\netbt.sys
11:24:34.0913 0x0dac  C:\Windows\System32\drivers\netbt.sys - ok
11:24:34.0929 0x0dac  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] C:\Windows\System32\drivers\pacer.sys
11:24:34.0929 0x0dac  C:\Windows\System32\drivers\pacer.sys - ok
11:24:34.0929 0x0dac  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] C:\Windows\System32\drivers\wfplwf.sys
11:24:34.0929 0x0dac  C:\Windows\System32\drivers\wfplwf.sys - ok
11:24:34.0929 0x0dac  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] C:\Windows\System32\drivers\netbios.sys
11:24:34.0929 0x0dac  C:\Windows\System32\drivers\netbios.sys - ok
11:24:34.0929 0x0dac  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] C:\Windows\System32\drivers\serial.sys
11:24:34.0929 0x0dac  C:\Windows\System32\drivers\serial.sys - ok
11:24:34.0929 0x0dac  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] C:\Windows\System32\drivers\vwififlt.sys
11:24:34.0929 0x0dac  C:\Windows\System32\drivers\vwififlt.sys - ok
11:24:34.0944 0x0dac  [ FB9BEF3401EE5ECC2603311B9C64F44A, 33F8B6C9593677A360F580554D4F95B9F580C4E28F8187FBB27D96AFBFA8C7C1 ] C:\Windows\System32\drivers\dtsoftbus01.sys
11:24:34.0944 0x0dac  C:\Windows\System32\drivers\dtsoftbus01.sys - ok
11:24:34.0944 0x0dac  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] C:\Windows\System32\drivers\wanarp.sys
11:24:34.0944 0x0dac  C:\Windows\System32\drivers\wanarp.sys - ok
11:24:34.0944 0x0dac  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] C:\Windows\System32\drivers\rdbss.sys
11:24:34.0944 0x0dac  C:\Windows\System32\drivers\rdbss.sys - ok
11:24:34.0944 0x0dac  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] C:\Windows\System32\drivers\termdd.sys
11:24:34.0944 0x0dac  C:\Windows\System32\drivers\termdd.sys - ok
11:24:34.0944 0x0dac  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] C:\Windows\System32\drivers\blbdrive.sys
11:24:34.0944 0x0dac  C:\Windows\System32\drivers\blbdrive.sys - ok
11:24:34.0960 0x0dac  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] C:\Windows\System32\drivers\dfsc.sys
11:24:34.0960 0x0dac  C:\Windows\System32\drivers\dfsc.sys - ok
11:24:34.0960 0x0dac  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] C:\Windows\System32\drivers\discache.sys
11:24:34.0960 0x0dac  C:\Windows\System32\drivers\discache.sys - ok
11:24:34.0960 0x0dac  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] C:\Windows\System32\drivers\mssmbios.sys
11:24:34.0960 0x0dac  C:\Windows\System32\drivers\mssmbios.sys - ok
11:24:34.0960 0x0dac  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] C:\Windows\System32\drivers\nsiproxy.sys
11:24:34.0960 0x0dac  C:\Windows\System32\drivers\nsiproxy.sys - ok
11:24:34.0960 0x0dac  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] C:\Windows\System32\drivers\amdppm.sys
11:24:34.0960 0x0dac  C:\Windows\System32\drivers\amdppm.sys - ok
11:24:34.0976 0x0dac  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] C:\Windows\System32\drivers\tunnel.sys
11:24:34.0976 0x0dac  C:\Windows\System32\drivers\tunnel.sys - ok
11:24:34.0976 0x0dac  [ CAAAC014C5C56A69F710B5F1B836DE22, DA98EF2EBF9A7F180344A88CC2C74F69101E17BBAB58B1C46176FD6EE7AA2E6A ] C:\Windows\System32\ntdll.dll
11:24:34.0976 0x0dac  C:\Windows\System32\ntdll.dll - ok
11:24:34.0976 0x0dac  [ F0970A4BC8395659C22BF53D0FADF16F, 23BE3066D89A5ACBF8130899640D377476E78B6C3D19E2D13C32238464A83E21 ] C:\Windows\System32\smss.exe
11:24:34.0976 0x0dac  C:\Windows\System32\smss.exe - ok
11:24:34.0976 0x0dac  [ F6BDA026E4157DC4E321CA391E9D9BC6, D38774B8F812816DA43A0C52EEC566BBC44F57A6614BC84F1417C4227286B594 ] C:\Windows\SysWOW64\drivers\AsIO.sys
11:24:34.0976 0x0dac  C:\Windows\SysWOW64\drivers\AsIO.sys - ok
11:24:34.0976 0x0dac  [ 26D66E32E78D3059715B3A17BC679CD9, 5039CB81CE0829C5F3DED16A4005FEB10141C6C9B473CC319E81BAF6D1DA33E3 ] C:\Windows\SysWOW64\drivers\AsUpIO.sys
11:24:34.0976 0x0dac  C:\Windows\SysWOW64\drivers\AsUpIO.sys - ok
11:24:34.0976 0x0dac  [ 62B88833AB7B678E9790117ED01E096F, 01E7A8A504F558B065B4A3B01EA5DF0480B721CE2EFF37EA5C0C7BC934D7A229 ] C:\Windows\System32\drivers\atikmpag.sys
11:24:34.0976 0x0dac  C:\Windows\System32\drivers\atikmpag.sys - ok
11:24:34.0991 0x0dac  [ 3B536A8BEC3B4F23FFDFD78B11A2AB93, 7BC847CE6C2D29C334F0D1600BBBDE3933FF45F6BEE5186F442E6270A3F9EC4E ] C:\Windows\System32\autochk.exe
11:24:34.0991 0x0dac  C:\Windows\System32\autochk.exe - ok
11:24:34.0991 0x0dac  [ 13566D265888EA814CFB3D64430F74F0, BA9C0105BE1ED9FB49B59CDA53AB5B69AAC34B91E33C46A2A5360DFC565A7940 ] C:\Windows\System32\drivers\atikmdag.sys
11:24:34.0991 0x0dac  C:\Windows\System32\drivers\atikmdag.sys - ok
11:24:34.0991 0x0dac  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] C:\Windows\System32\drivers\dxgkrnl.sys
11:24:34.0991 0x0dac  C:\Windows\System32\drivers\dxgkrnl.sys - ok
11:24:34.0991 0x0dac  [ 1F04CFB79DD5FB7694468CE3FB3DCC31, A40C0BF6D1EC6C4281611A830EA7B22FEF523A3E197E5A8F59332D64E90376B6 ] C:\Windows\System32\drivers\dxgmms1.sys
11:24:34.0991 0x0dac  C:\Windows\System32\drivers\dxgmms1.sys - ok
11:24:34.0991 0x0dac  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] C:\Windows\System32\drivers\hdaudbus.sys
11:24:34.0991 0x0dac  C:\Windows\System32\drivers\hdaudbus.sys - ok
11:24:35.0007 0x0dac  [ F6D625FF7B56BB6EA063F0D3A5BBC996, 830196E96C120367BDA8C0EC9D7B85A642D41E8108189B1A72193299A6C005B1 ] C:\Windows\System32\drivers\nusb3xhc.sys
11:24:35.0007 0x0dac  C:\Windows\System32\drivers\nusb3xhc.sys - ok
11:24:35.0007 0x0dac  [ FFA06EF43987ED0DD42AD59B260C0C78, 260518D5E077E55E0F2099037DBEFA93016FD4D4655456DDB3147AF9CBE7BF6B ] C:\Windows\System32\drivers\usbd.sys
11:24:35.0007 0x0dac  C:\Windows\System32\drivers\usbd.sys - ok
11:24:35.0007 0x0dac  [ 5A4AC5D05A7C97C68596416C05D6F2B4, 1CDE5172B763D2D65379B9F3ABACC080AF676DB9354EC98A455E620C4CE3E18A ] C:\Windows\System32\drivers\usbfilter.sys
11:24:35.0007 0x0dac  C:\Windows\System32\drivers\usbfilter.sys - ok
11:24:35.0007 0x0dac  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] C:\Windows\System32\drivers\serenum.sys
11:24:35.0007 0x0dac  C:\Windows\System32\drivers\serenum.sys - ok
11:24:35.0007 0x0dac  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] C:\Windows\System32\drivers\usbehci.sys
11:24:35.0007 0x0dac  C:\Windows\System32\drivers\usbehci.sys - ok
11:24:35.0007 0x0dac  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] C:\Windows\System32\drivers\usbohci.sys
11:24:35.0007 0x0dac  C:\Windows\System32\drivers\usbohci.sys - ok
11:24:35.0022 0x0dac  [ 12FEB33791920678F8433701C822BCFD, 7D1AD944CF0532D5AF951ACCE064EA9288F068964603674854CD7658D2B96039 ] C:\Windows\System32\drivers\usbport.sys
11:24:35.0022 0x0dac  C:\Windows\System32\drivers\usbport.sys - ok
11:24:35.0022 0x0dac  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] C:\Windows\System32\drivers\1394ohci.sys
11:24:35.0022 0x0dac  C:\Windows\System32\drivers\1394ohci.sys - ok
11:24:35.0022 0x0dac  [ 19B006B181E3875FD254F7B67ACF1E7C, 1D68D19522E71F16B8B50F8CCFBC9D884CF2DAC40CC409BD5A40A4D4223ABC61 ] C:\Windows\System32\drivers\ASACPI.sys
11:24:35.0022 0x0dac  C:\Windows\System32\drivers\ASACPI.sys - ok
11:24:35.0022 0x0dac  [ EE082E06A82FF630351D1E0EBBD3D8D0, 537F1A4108BDA72E8DD271466E7B7FCF39D4D55E4129AB35A409AB7AF2E7D219 ] C:\Windows\System32\drivers\Rt64win7.sys
11:24:35.0022 0x0dac  C:\Windows\System32\drivers\Rt64win7.sys - ok
11:24:35.0022 0x0dac  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] C:\Windows\System32\drivers\CompositeBus.sys
11:24:35.0022 0x0dac  C:\Windows\System32\drivers\CompositeBus.sys - ok
11:24:35.0038 0x0dac  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] C:\Windows\System32\drivers\wmiacpi.sys
11:24:35.0038 0x0dac  C:\Windows\System32\drivers\wmiacpi.sys - ok
11:24:35.0038 0x0dac  [ E0D3CD5841E5C7BE7B94BA946AF1E498, 4EAE1B226255623DA41A047633994D6902F6D4CA5757BF5D85E227378336227F ] C:\Windows\System32\drivers\drmk.sys
11:24:35.0038 0x0dac  C:\Windows\System32\drivers\drmk.sys - ok
11:24:35.0038 0x0dac  [ 24FBF5CC5C04150073C315A7C83521EE, 581BD5F15B5E57B3BAA762E421FFD859FDA46DDB8515C2A7AAFF208D784E906C ] C:\Windows\System32\drivers\ks.sys
11:24:35.0038 0x0dac  C:\Windows\System32\drivers\ks.sys - ok
11:24:35.0038 0x0dac  [ 1E0B4CBBA91C6B041A14ECC2186F7E24, 63039A317F906454A0652704DA2D646658A148B9B55BFB5D2F4B27997F357DF9 ] C:\Windows\System32\drivers\portcls.sys
11:24:35.0038 0x0dac  C:\Windows\System32\drivers\portcls.sys - ok
11:24:35.0038 0x0dac  [ AD12F5C7251BB8D575D560894E73CBBA, FAAA1440CBBDC889C0B8917065B932A9CC86E5C0FD5845D8830482915AF83F40 ] C:\Windows\System32\drivers\WsAudio_DeviceS(1).sys
11:24:35.0038 0x0dac  C:\Windows\System32\drivers\WsAudio_DeviceS(1).sys - ok
11:24:35.0054 0x0dac  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] C:\Windows\System32\drivers\ksthunk.sys
11:24:35.0054 0x0dac  C:\Windows\System32\drivers\ksthunk.sys - ok
11:24:35.0054 0x0dac  [ AD12F5C7251BB8D575D560894E73CBBA, FAAA1440CBBDC889C0B8917065B932A9CC86E5C0FD5845D8830482915AF83F40 ] C:\Windows\System32\drivers\WsAudio_DeviceS(2).sys
11:24:35.0054 0x0dac  C:\Windows\System32\drivers\WsAudio_DeviceS(2).sys - ok
11:24:35.0054 0x0dac  [ AD12F5C7251BB8D575D560894E73CBBA, FAAA1440CBBDC889C0B8917065B932A9CC86E5C0FD5845D8830482915AF83F40 ] C:\Windows\System32\drivers\WsAudio_DeviceS(3).sys
11:24:35.0054 0x0dac  C:\Windows\System32\drivers\WsAudio_DeviceS(3).sys - ok
11:24:35.0054 0x0dac  [ AD12F5C7251BB8D575D560894E73CBBA, FAAA1440CBBDC889C0B8917065B932A9CC86E5C0FD5845D8830482915AF83F40 ] C:\Windows\System32\drivers\WsAudio_DeviceS(4).sys
11:24:35.0054 0x0dac  C:\Windows\System32\drivers\WsAudio_DeviceS(4).sys - ok
11:24:35.0054 0x0dac  [ AD12F5C7251BB8D575D560894E73CBBA, FAAA1440CBBDC889C0B8917065B932A9CC86E5C0FD5845D8830482915AF83F40 ] C:\Windows\System32\drivers\WsAudio_DeviceS(5).sys
11:24:35.0054 0x0dac  C:\Windows\System32\drivers\WsAudio_DeviceS(5).sys - ok
11:24:35.0069 0x0dac  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] C:\Windows\System32\drivers\agilevpn.sys
11:24:35.0069 0x0dac  C:\Windows\System32\drivers\agilevpn.sys - ok
11:24:35.0069 0x0dac  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] C:\Windows\System32\drivers\bridge.sys
11:24:35.0069 0x0dac  C:\Windows\System32\drivers\bridge.sys - ok
11:24:35.0069 0x0dac  [ B9DCEA6D9EC0E9192B2C44C5454E6FED, AAEB904884598F8F878F6CDAF3A068A98417D05D17D6D29E7403609B48D537C8 ] C:\Windows\System32\drivers\clwvd6.sys
11:24:35.0069 0x0dac  C:\Windows\System32\drivers\clwvd6.sys - ok
11:24:35.0069 0x0dac  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] C:\Windows\System32\drivers\rasl2tp.sys
11:24:35.0069 0x0dac  C:\Windows\System32\drivers\rasl2tp.sys - ok
11:24:35.0069 0x0dac  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] C:\Windows\System32\drivers\ndistapi.sys
11:24:35.0069 0x0dac  C:\Windows\System32\drivers\ndistapi.sys - ok
11:24:35.0069 0x0dac  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] C:\Windows\System32\drivers\ndiswan.sys
11:24:35.0069 0x0dac  C:\Windows\System32\drivers\ndiswan.sys - ok
11:24:35.0085 0x0dac  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] C:\Windows\System32\drivers\raspppoe.sys
11:24:35.0085 0x0dac  C:\Windows\System32\drivers\raspppoe.sys - ok
11:24:35.0085 0x0dac  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] C:\Windows\System32\drivers\kbdclass.sys
11:24:35.0085 0x0dac  C:\Windows\System32\drivers\kbdclass.sys - ok
11:24:35.0085 0x0dac  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] C:\Windows\System32\drivers\mouclass.sys
11:24:35.0085 0x0dac  C:\Windows\System32\drivers\mouclass.sys - ok
11:24:35.0085 0x0dac  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] C:\Windows\System32\drivers\raspptp.sys
11:24:35.0085 0x0dac  C:\Windows\System32\drivers\raspptp.sys - ok
11:24:35.0085 0x0dac  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] C:\Windows\System32\drivers\rassstp.sys
11:24:35.0085 0x0dac  C:\Windows\System32\drivers\rassstp.sys - ok
11:24:35.0100 0x0dac  [ 6A2EEB0C4133B20773BB3DD0B7B377B4, E4CB35C6937C70A145A13E5AE5B34A271B49101DA623171ACBFDA8601E5A70EA ] C:\Windows\System32\drivers\amdiox64.sys
11:24:35.0100 0x0dac  C:\Windows\System32\drivers\amdiox64.sys - ok
11:24:35.0100 0x0dac  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] C:\Windows\System32\drivers\swenum.sys
11:24:35.0100 0x0dac  C:\Windows\System32\drivers\swenum.sys - ok
11:24:35.0100 0x0dac  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] C:\Windows\System32\drivers\umbus.sys
11:24:35.0100 0x0dac  C:\Windows\System32\drivers\umbus.sys - ok
11:24:35.0100 0x0dac  [ 285ACEC1B13A15BA520AAE06BACB9CFF, A6F576763818D4EAB2CDA3857F2963F61FDA67D7B581C52E1EB1DDB32FD642C3 ] C:\Windows\System32\drivers\nusb3hub.sys
11:24:35.0100 0x0dac  C:\Windows\System32\drivers\nusb3hub.sys - ok
11:24:35.0100 0x0dac  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] C:\Windows\System32\drivers\usbhub.sys
11:24:35.0100 0x0dac  C:\Windows\System32\drivers\usbhub.sys - ok
11:24:35.0116 0x0dac  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] C:\Windows\System32\drivers\ndproxy.sys
11:24:35.0116 0x0dac  C:\Windows\System32\drivers\ndproxy.sys - ok
11:24:35.0116 0x0dac  [ 33497249626E7787AA5CEA99B226CCA6, EF6213B79F83334CD95E4A58A4FE64190AA3FEFF590E41C4BF302FC4A8F6D6D6 ] C:\Windows\System32\drivers\AtihdW76.sys
11:24:35.0116 0x0dac  C:\Windows\System32\drivers\AtihdW76.sys - ok
11:24:35.0116 0x0dac  [ A3BCBD0F710580A07D1B929D787D36CE, D7608C1C2B2FF4DD0C4CEBC75594ADA35A6911A541ED5FF93AAB8610108E168A ] C:\Windows\System32\drivers\RTKVHD64.sys
11:24:35.0116 0x0dac  C:\Windows\System32\drivers\RTKVHD64.sys - ok
11:24:35.0116 0x0dac  [ 6C60B5ACA7442EFB794082CDACFC001C, FC1D9124856A70FF232EF3057D66BEE803295847624CE23B4D0217F23AF52C75 ] C:\Windows\System32\ole32.dll
11:24:35.0116 0x0dac  C:\Windows\System32\ole32.dll - ok
11:24:35.0116 0x0dac  [ B4F29F65AD3114051F01E9403346047F, 7EB58545211C51E95B3F45C47C1F7CCE05B707D168E7C20F46D36E19EE3D8DFC ] C:\Windows\System32\imagehlp.dll
11:24:35.0116 0x0dac  C:\Windows\System32\imagehlp.dll - ok
11:24:35.0116 0x0dac  [ 28C0B5024F5C5A438E78B188CFC81B7F, AB81FB63F2908CE316B45609077ACBD85F4B2AAD1606B1E9030F06DB82EDDFAD ] C:\Windows\System32\normaliz.dll
11:24:35.0116 0x0dac  C:\Windows\System32\normaliz.dll - ok
11:24:35.0132 0x0dac  [ 83404DCBCE4925B6A5A77C5170F46D86, D669614D0B4461DB244AD99FBE1BA92CEB9B4ED5EC8E987E23764E77D9AC7074 ] C:\Windows\System32\sechost.dll
11:24:35.0132 0x0dac  C:\Windows\System32\sechost.dll - ok
11:24:35.0132 0x0dac  [ 088CF6AFCD5CDD44E40C0ACDE3C1A5E0, AC6AFCAE3A58AAABC972B3D6A1ED383A59910C689F38D9D4A059A0A535BA1039 ] C:\Windows\System32\usp10.dll
11:24:35.0132 0x0dac  C:\Windows\System32\usp10.dll - ok
11:24:35.0132 0x0dac  [ 25983DE69B57142039AC8D95E71CD9C9, A677DA7EBCBCB6073D27E8A38809F51E971E83ED379BC599AAAD6EF4216348DA ] C:\Windows\System32\clbcatq.dll
11:24:35.0132 0x0dac  C:\Windows\System32\clbcatq.dll - ok
11:24:35.0132 0x0dac  [ D87E1E59C73C1F98D5DED5B3850C40F5, 536419BFF9F877D4314B5D0C045D9A6E729489C389863FADF07E382050BC84FD ] C:\Windows\System32\psapi.dll
11:24:35.0132 0x0dac  C:\Windows\System32\psapi.dll - ok
11:24:35.0132 0x0dac  [ 860528C9E50AB84935843B23A80E665E, 1BBC4FC384A2C9B2E30DC8D84C435A6A8E1993F074CDBF0A6A3AC774A3E62AD4 ] C:\Windows\System32\gdi32.dll
11:24:35.0132 0x0dac  C:\Windows\System32\gdi32.dll - ok
11:24:35.0147 0x0dac  [ FE70103391A64039A921DBFFF9C7AB1B, F7D219D75037BC98F6C69143B00AB6000A31F8B5E211E0AF514F4F4B681522A0 ] C:\Windows\System32\user32.dll
11:24:35.0147 0x0dac  C:\Windows\System32\user32.dll - ok
11:24:35.0147 0x0dac  [ 39EBB9708453036A74C30C9A294023FF, 2158C48C046F2FBDFEC2F449F8EBA376ED9086E427A4BEDE8033A29F7415753E ] C:\Windows\System32\wininet.dll
11:24:35.0147 0x0dac  C:\Windows\System32\wininet.dll - ok
11:24:35.0147 0x0dac  [ 796B47A4B82EF1C39F13435B88834C48, AFC3E89476BAAD8A71663F0DB8D15E00FF9D131F1306A2F69D728E3AD1184602 ] C:\Windows\System32\lpk.dll
11:24:35.0147 0x0dac  C:\Windows\System32\lpk.dll - ok
11:24:35.0147 0x0dac  [ FECA80905D551074E1A9298BD98103B7, 5655D56CDDE306CB350EAF90CEFCAC645D13A6E0BF78DE9372039205AA9C7BD0 ] C:\Windows\System32\urlmon.dll
11:24:35.0147 0x0dac  C:\Windows\System32\urlmon.dll - ok
11:24:35.0147 0x0dac  [ AE57F6C7AB3ED244B5F14151C4EA0057, 60BAF0909C60B2387E2972EBBC77140E9E982549F0746EE26AF4EFB4E9FD77A4 ] C:\Windows\System32\shell32.dll
11:24:35.0147 0x0dac  C:\Windows\System32\shell32.dll - ok
11:24:35.0147 0x0dac  [ C391FC68282A000CDF953F8B6B55D2EF, 1CB0DAB84545D9FDEA5A7865A1E7132CEAC91DECF8B100285B63098D7B09E584 ] C:\Windows\System32\msvcrt.dll
11:24:35.0147 0x0dac  C:\Windows\System32\msvcrt.dll - ok
11:24:35.0163 0x0dac  [ EAF32CB8C1F810E4715B4DFBE785C7FF, DB6AD07FDED42433E669508AB73FAFF6DAFF04575D6F1D016FE3EB6ECEC4DD5D ] C:\Windows\System32\shlwapi.dll
11:24:35.0163 0x0dac  C:\Windows\System32\shlwapi.dll - ok
11:24:35.0163 0x0dac  [ C431EAF5CAA1C82CAC2534A2EAB348A3, ADDF850128DC675E67FABA9A3D0D27E684F01F733962CA22927BB94503549E44 ] C:\Windows\System32\msctf.dll
11:24:35.0163 0x0dac  C:\Windows\System32\msctf.dll - ok
11:24:35.0163 0x0dac  [ 044FE45FFD6AD40E3BBBE60B7F41BABE, A1688A5E6E0F7037C850699462C2655006A7D873C97F9AB406C59D81749B6F09 ] C:\Windows\System32\nsi.dll
11:24:35.0163 0x0dac  C:\Windows\System32\nsi.dll - ok
11:24:35.0163 0x0dac  [ 4E4FFB09D895AA000DD56D1404F69A7E, D999E04BB35780088480EAB322176570591A21E311D204BDCAB010A63B34D24C ] C:\Windows\System32\Wldap32.dll
11:24:35.0163 0x0dac  C:\Windows\System32\Wldap32.dll - ok
11:24:35.0163 0x0dac  [ F947D57534E01E3CA597BCF2AD8AE65B, 498A87443CE3344F82B19D4903F128337B5B3DA49D3C208F796394DA6B3A8946 ] C:\Windows\System32\rpcrt4.dll
11:24:35.0163 0x0dac  C:\Windows\System32\rpcrt4.dll - ok
11:24:35.0163 0x0dac  [ 9835E63E09F824D22B689D2BB789BAB9, 5BCFFAFB894D69FBCDDB91E64D30A356F4BD57098E8B4C51B98AFAF6581BDB63 ] C:\Windows\System32\comdlg32.dll
11:24:35.0163 0x0dac  C:\Windows\System32\comdlg32.dll - ok
11:24:35.0178 0x0dac  [ D2A513EE880D71BDE7F0257F38B9D019, 7BDBFEA312061C0498E4C09EF5E4B3AAA23309E7448028F67EAA6F8F7188E871 ] C:\Windows\System32\kernel32.dll
11:24:35.0178 0x0dac  C:\Windows\System32\kernel32.dll - ok
11:24:35.0178 0x0dac  [ 63A580C88CFAF72A92550940054569EF, A66C89123D1833446ACC31D5CF536B0D0EC24D2F805C022A637596CF98429D9F ] C:\Windows\System32\advapi32.dll
11:24:35.0178 0x0dac  C:\Windows\System32\advapi32.dll - ok
11:24:35.0178 0x0dac  [ 75498A52C2AE248DEE5BDF5209768963, F200077B40B1B75004EE5436939C9E7F50871E824DDCC8403A6BA3823A2717D0 ] C:\Windows\System32\iertutil.dll
11:24:35.0178 0x0dac  C:\Windows\System32\iertutil.dll - ok
11:24:35.0178 0x0dac  [ 5D8E6C95156ED1F79A63D1EADE6F9ED5, 12130837D7F89A2C7E9D25747A8E5B9001E0A38D545178B49B450C23AE62664A ] C:\Windows\System32\setupapi.dll
11:24:35.0178 0x0dac  C:\Windows\System32\setupapi.dll - ok
11:24:35.0178 0x0dac  [ AA2C08CE85653B1A0D2E4AB407FA176C, 83DFD0C119B20AEDB07114C9D1CF9CE2DFA938D0F1070256B0591A9E2C3997FA ] C:\Windows\System32\imm32.dll
11:24:35.0178 0x0dac  C:\Windows\System32\imm32.dll - ok
11:24:35.0194 0x0dac  [ C06B32165E23A72A898B7A89679AD754, 721405158F6E9F1A7FE7BB33EF642D91332726629D0D3B07DF3CF3152A91C85D ] C:\Windows\System32\oleaut32.dll
11:24:35.0194 0x0dac  C:\Windows\System32\oleaut32.dll - ok
11:24:35.0194 0x0dac  [ F7CE0C81C545364020ED8203CF0A633E, 24B47A7492B7048096AF87E26786E8108455ADBD1A374B6A0466DE008505B8A9 ] C:\Windows\System32\difxapi.dll
11:24:35.0194 0x0dac  C:\Windows\System32\difxapi.dll - ok
11:24:35.0194 0x0dac  [ F49E92B50CED5C9F1725D3C0329FD933, 6155FA4D8242F07FC578FF746890C2EE19FC3D6A20ED8AE4C6F021DB2DAC184F ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
11:24:35.0194 0x0dac  C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
11:24:35.0194 0x0dac  [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A, 445C2857398252756FD25BB94DAFCCEFF573DE55F1F8BF9094C191F409FE6437 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
11:24:35.0194 0x0dac  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
11:24:35.0194 0x0dac  [ 72723D3E4781BADC62C3180C137E7B23, 0BDA5292928578C5DA79C761E15B8A892B9D4A3DA26D3635E714797C653CF492 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
11:24:35.0194 0x0dac  C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
11:24:35.0210 0x0dac  [ 9094039A00485F71C4DE64BF51F64C46, 4ACFEF4C747ADF806A4FDEDDFD9CC48168DFB05075306C77D3F3927749DD7484 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
11:24:35.0210 0x0dac  C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
11:24:35.0210 0x0dac  [ 2477A28081BDAEE622CF045ACF8EE124, 00A09CAF9129E84FEEA98FA03CE9012C9F961B64FEE15C4F268822C0F82ACC3C ] C:\Windows\System32\cfgmgr32.dll
11:24:35.0210 0x0dac  C:\Windows\System32\cfgmgr32.dll - ok
11:24:35.0210 0x0dac  [ 7A17485DC7D8A7AC81321A42CD034519, 88D8705FA901793FC8C1CFD0175E49A6502BF0FC94A066BA573D2FD13AA5F04A ] C:\Windows\System32\userenv.dll
11:24:35.0210 0x0dac  C:\Windows\System32\userenv.dll - ok
11:24:35.0210 0x0dac  [ 4BBFA57F594F7E8A8EDC8F377184C3F0, 9F3AC5DEA5A6250C3DBB97AF79C81C0A48429486521F807355A1D7D3D861B75F ] C:\Windows\System32\ws2_32.dll
11:24:35.0210 0x0dac  C:\Windows\System32\ws2_32.dll - ok
11:24:35.0210 0x0dac  [ 64A4AB126E24FD3F58EBE64852773DB5, ED425BBC91EB8BEF54C363036A770C551C97EF324F1AE31049CA750D0E2D6776 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
11:24:35.0210 0x0dac  C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
11:24:35.0225 0x0dac  [ 0E6FBF19D9DFBB77316C23DF91F8A101, 680F88E1BC55EA3342AACE6F2E3511BF877AC8F03276D028FEE84EEFE8B5611A ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
11:24:35.0225 0x0dac  C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
11:24:35.0225 0x0dac  [ 06FEC9E8117103BB1141A560E98077DA, C5E61B11DDBBBBBA3D9488970524F0975EA5FBDF16E2FA31F579F8BFA48353B1 ] C:\Windows\System32\devobj.dll
11:24:35.0225 0x0dac  C:\Windows\System32\devobj.dll - ok
11:24:35.0225 0x0dac  [ 851BB346CD59D9B3BC8854384C7DD5C3, 0CA1BCBDA6CB8CAC1186B3BE13C3937EDF46264FDFFCEBDF94C7EB10DE957DC6 ] C:\Windows\System32\KernelBase.dll
11:24:35.0225 0x0dac  C:\Windows\System32\KernelBase.dll - ok
11:24:35.0225 0x0dac  [ 9028D1621C43DF8DFBD1C76860412A11, A1D48D9B33180BDE50D2FA9BB07E9520B7B7788C39B3AABB4A06AE4B1AACA755 ] C:\Windows\System32\comctl32.dll
11:24:35.0225 0x0dac  C:\Windows\System32\comctl32.dll - ok
11:24:35.0225 0x0dac  [ 959041D7014C97133D859B45BCA0FC58, 282D34828DA7404470949483CB9789A8B4861D188093F0FBD07138A37F60B94B ] C:\Windows\System32\wintrust.dll
11:24:35.0225 0x0dac  C:\Windows\System32\wintrust.dll - ok
11:24:35.0225 0x0dac  [ 780F6ECC4F55D76C9730E6B6C9B31913, 1AEA642AFA210A672A92AAA49CFDE52D9E48ED41248F7644FAADE760E8A0E72E ] C:\Windows\System32\crypt32.dll
11:24:35.0225 0x0dac  C:\Windows\System32\crypt32.dll - ok
11:24:35.0241 0x0dac  [ 884415BD4269C02EAF8E2613BF85500D, EFE771709EC942694FD206AC8D0A48ED7DCD35036F074268E4AECD68AC982CEA ] C:\Windows\System32\msasn1.dll
11:24:35.0241 0x0dac  C:\Windows\System32\msasn1.dll - ok
11:24:35.0241 0x0dac  [ 2C942733A5983DD4502219FF37C7EBC7, 34B20B6B0D7274E4B5B783F1D2345BC3DD9888964D5C2C65712F041A00CF5B45 ] C:\Windows\System32\profapi.dll
11:24:35.0241 0x0dac  C:\Windows\System32\profapi.dll - ok
11:24:35.0241 0x0dac  [ 9C278785347BCC991F8EA2999D90F58D, EA680C3642A6ABF627415AEE019956FAC702DC6A8F4B4D0FC8A4FB21EADD3896 ] C:\Windows\SysWOW64\normaliz.dll
11:24:35.0241 0x0dac  C:\Windows\SysWOW64\normaliz.dll - ok
11:24:35.0241 0x0dac  [ BF24D6F2ED97FE830BFD52B246F98E67, 6BBF4C4221A245462EF653798F6B416EEB12594AD1CB4E8BC8908A8CB2F53384 ] C:\Windows\System32\drivers\dxapi.sys
11:24:35.0241 0x0dac  C:\Windows\System32\drivers\dxapi.sys - ok
11:24:35.0241 0x0dac  [ A347EF56B7CD8360B3EF7772FEA597B9, 29FD47110ED21C4F0178C065AD05789A8387B6704CE1BA94C851C9785662CF95 ] C:\Windows\System32\win32k.sys
11:24:35.0241 0x0dac  C:\Windows\System32\win32k.sys - ok
11:24:35.0256 0x0dac  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\System32\basesrv.dll
11:24:35.0256 0x0dac  C:\Windows\System32\basesrv.dll - ok
11:24:35.0256 0x0dac  [ 216BABD555BC550952320EEA89C25DDF, 1BBB92415280032CD18F361382A69D0D91266AAD56FC88A99C804B0053743D72 ] C:\Windows\System32\csrsrv.dll
11:24:35.0256 0x0dac  C:\Windows\System32\csrsrv.dll - ok
11:24:35.0256 0x0dac  [ 60C2862B4BF0FD9F582EF344C2B1EC72, CB1C6018FC5C15483AC5BB96E5C2E2E115BB0C0E1314837D77201BAB37E8C03A ] C:\Windows\System32\csrss.exe
11:24:35.0256 0x0dac  C:\Windows\System32\csrss.exe - ok
11:24:35.0256 0x0dac  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\System32\winsrv.dll
11:24:35.0256 0x0dac  C:\Windows\System32\winsrv.dll - ok
11:24:35.0256 0x0dac  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] C:\Windows\System32\drivers\monitor.sys
11:24:35.0256 0x0dac  C:\Windows\System32\drivers\monitor.sys - ok
11:24:35.0256 0x0dac  [ F29FE765E1448EF371CFE05BFAC74ADB, F251581222D78543272FD4B14A6A59F4B0E0CC44A5FCBCF56DE4CA5783F78A75 ] C:\Windows\System32\tsddd.dll
11:24:35.0256 0x0dac  C:\Windows\System32\tsddd.dll - ok
11:24:35.0272 0x0dac  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\System32\sxssrv.dll
11:24:35.0272 0x0dac  C:\Windows\System32\sxssrv.dll - ok
11:24:35.0272 0x0dac  [ 94355C28C1970635A31B3FE52EB7CEBA, C4E98F07170CEC69CACDD5CEDB8927E48A2A299CB1B8CDA87526E768AF6174F0 ] C:\Windows\System32\wininit.exe
11:24:35.0272 0x0dac  C:\Windows\System32\wininit.exe - ok
11:24:35.0272 0x0dac  [ 78523A26F5604C0568FE9D1CE86E36F4, 534A7228BF69719106F581616A32EAEF0B770DDB36DCE94F84E7D52FDB1382B5 ] C:\Windows\System32\KBDUS.DLL
11:24:35.0272 0x0dac  C:\Windows\System32\KBDUS.DLL - ok
11:24:35.0272 0x0dac  [ C2A8CB1275ECB85D246A9ECC02A728E3, 3603FADCA0060BD201148F9D59E4E2627F024609A6463AB525B5D1AD17BDCD10 ] C:\Windows\System32\RpcRtRemote.dll
11:24:35.0272 0x0dac  C:\Windows\System32\RpcRtRemote.dll - ok
11:24:35.0272 0x0dac  [ 943F527DF79E6B400104341AA7023C75, 53C7B9426181D3D172E6B1A07E6DF8A0CB8FCA27D3A03CE5F544D3209B5F4651 ] C:\Windows\System32\cdd.dll
11:24:35.0272 0x0dac  C:\Windows\System32\cdd.dll - ok
11:24:35.0288 0x0dac  [ 9CEAD32E79A62150FE9F8557E58E008B, AFE4C1725EE94D7DE0749AE1495A4E5CC33C369F29B2A589DA66FFE27FF9777E ] C:\Windows\System32\sxs.dll
11:24:35.0288 0x0dac  C:\Windows\System32\sxs.dll - ok
11:24:35.0288 0x0dac  [ B26B1801356760841C3BC69F9F91537F, 83B9DF333E36C09E81D44E12AE5BE14650126FDA0CF4A0EA853BF40C5780EF81 ] C:\Windows\System32\WlS0WndH.dll
11:24:35.0288 0x0dac  C:\Windows\System32\WlS0WndH.dll - ok
11:24:35.0288 0x0dac  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] C:\Windows\System32\drivers\usbccgp.sys
11:24:35.0288 0x0dac  C:\Windows\System32\drivers\usbccgp.sys - ok
11:24:35.0288 0x0dac  [ 784FA3DF338E2E8F5F0389D6FAC428AF, 9C8AA0CFDEB9E38AAF8EB08626070E0F0364F4F8A793CFE3532EC6C007980C34 ] C:\Windows\System32\cryptbase.dll
11:24:35.0288 0x0dac  C:\Windows\System32\cryptbase.dll - ok
11:24:35.0288 0x0dac  [ 80E52EF092F3DAD03E0EE15E64F97245, D3BAFEBA95C9FC96945F47134F617695B48F5C67E26526D99D8D85DC39737F8A ] C:\Windows\System32\drivers\BrSerIf.sys
11:24:35.0288 0x0dac  C:\Windows\System32\drivers\BrSerIf.sys - ok
11:24:35.0288 0x0dac  [ 601CB966FFFEBC6806626DC8E7AA0EF2, 34208A23F48C60C52144C02D4E157D3057E9DE7D46ECB4246A521BEBB261F446 ] C:\Windows\System32\drivers\BrUsbSer.sys
11:24:35.0288 0x0dac  C:\Windows\System32\drivers\BrUsbSer.sys - ok
11:24:35.0303 0x0dac  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] C:\Windows\System32\drivers\usbprint.sys
11:24:35.0303 0x0dac  C:\Windows\System32\drivers\usbprint.sys - ok
11:24:35.0303 0x0dac  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] C:\Windows\System32\drivers\usbscan.sys
11:24:35.0303 0x0dac  C:\Windows\System32\drivers\usbscan.sys - ok
11:24:35.0303 0x0dac  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] C:\Windows\System32\drivers\USBSTOR.SYS
11:24:35.0303 0x0dac  C:\Windows\System32\drivers\USBSTOR.SYS - ok
11:24:35.0303 0x0dac  [ 90499F3163A9F815CF196A205EA3CD5D, 29B4ED3795CEC1177EB367132914CE21C194CDEC5DB9DC923FD928C85E94D821 ] C:\Windows\System32\apphelp.dll
11:24:35.0303 0x0dac  C:\Windows\System32\apphelp.dll - ok
11:24:35.0303 0x0dac  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] C:\Windows\System32\lsass.exe
11:24:35.0303 0x0dac  C:\Windows\System32\lsass.exe - ok
11:24:35.0319 0x0dac  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\System32\services.exe
11:24:35.0319 0x0dac  C:\Windows\System32\services.exe - ok
11:24:35.0319 0x0dac  [ EE4B105F1DBE1E864AFC72E7F0315432, 0E69A25BA7ED920B3103F219D3BF117D8CEFBD4DC74C762945AE291D24772FAD ] C:\Windows\System32\lsasrv.dll
11:24:35.0319 0x0dac  C:\Windows\System32\lsasrv.dll - ok
11:24:35.0319 0x0dac  [ 9662EE182644511439F1C53745DC1C88, D205B2C163E78AB42A5D67D7664EF6B75EA0374FF0924467D624F9DB0611F0AD ] C:\Windows\System32\lsm.exe
11:24:35.0319 0x0dac  C:\Windows\System32\lsm.exe - ok
11:24:35.0319 0x0dac  [ E914A50A151DFFE63D3935226DB5E2C1, 7DCCE4060344E1C771679F1C20378A0BEB3C1F06DB684072F07B98921A62A299 ] C:\Windows\System32\scext.dll
11:24:35.0319 0x0dac  C:\Windows\System32\scext.dll - ok
11:24:35.0319 0x0dac  [ C072064F95579C0D6D86AF5B3DC53192, CF4A088DF97F4D4963BEAB9CBDBF69FEA2D4773159054A0AF8B8DFFDF83E18DA ] C:\Windows\System32\sspicli.dll
11:24:35.0319 0x0dac  C:\Windows\System32\sspicli.dll - ok
11:24:35.0319 0x0dac  [ 8098627D0AA1706D69C5AF3F74332ABB, 9582F6162A8405DC568FFBEA08A9090FE92FE2C9DB640077BD7F23AC4FABF700 ] C:\Windows\System32\sspisrv.dll
11:24:35.0319 0x0dac  C:\Windows\System32\sspisrv.dll - ok
11:24:35.0334 0x0dac  [ 68083118797CAF30FB2EA3E71494D67E, 5F1BCDFCB00A20CD60CBC70A2FD97405EF0F7173DD0E404BBA7B06D39DB37364 ] C:\Windows\System32\sysntfy.dll
11:24:35.0334 0x0dac  C:\Windows\System32\sysntfy.dll - ok
11:24:35.0334 0x0dac  [ DEE7267C5D232A3B816866872CE199E6, A1994FD37667C52E7CBF873514C190DA61A3D1349786D187BFAE0006F61799AE ] C:\Windows\System32\wmsgapi.dll
11:24:35.0334 0x0dac  C:\Windows\System32\wmsgapi.dll - ok
11:24:35.0334 0x0dac  [ BBCDF350817BA86416C0F06B6981BE8D, D064438F97852B9BD6015C8B19377C61C671E0969E09506B8359FE7B1F373A61 ] C:\Windows\System32\scesrv.dll
11:24:35.0334 0x0dac  C:\Windows\System32\scesrv.dll - ok
11:24:35.0334 0x0dac  [ 39312B37C5FE5138F99680A49ACD3AEA, B9566B4117FBBECF77A0D3F49E9DF302088B9D483F817720B22E4F9C5754264A ] C:\Windows\System32\secur32.dll
11:24:35.0334 0x0dac  C:\Windows\System32\secur32.dll - ok
11:24:35.0334 0x0dac  [ 3A9C9BAF610B0DD4967086040B3B62A9, E8E9A0F42B1EE7806EDCEED08AA024D037215D06CA317E3678BD5364AD513D23 ] C:\Windows\System32\srvcli.dll
11:24:35.0334 0x0dac  C:\Windows\System32\srvcli.dll - ok
11:24:35.0350 0x0dac  [ A744BA6E04C8AA4592818178DBF89521, 9E7C85D842DF16F9B8FED7B06AF309B5ECCBFD465F5552347D4C3F1FEFDC6F7A ] C:\Windows\System32\samsrv.dll
11:24:35.0350 0x0dac  C:\Windows\System32\samsrv.dll - ok
11:24:35.0350 0x0dac  [ 3A061472B38233BAFF9CFEFF2E49C46B, DF29B14C8D22A8A16AA336A09A6152E2C7FCA6CAF4E76F0C5DCB55BEF9D00515 ] C:\Windows\System32\cryptdll.dll
11:24:35.0350 0x0dac  C:\Windows\System32\cryptdll.dll - ok
11:24:35.0350 0x0dac  [ 3C073B0C596A0AF84933E7406766B040, 4698BBA678F553E15AD4B07AD7FB236281F872DEFEE97BFD637114476C8F97B3 ] C:\Windows\System32\wevtapi.dll
11:24:35.0350 0x0dac  C:\Windows\System32\wevtapi.dll - ok
11:24:35.0350 0x0dac  [ 7FBEBD2229EA5FD48D41B199EC2D541C, A465975D445A8D50CAF3EF29BD33354B320D11173C127BE30D5EBBFF7008CDCE ] C:\Windows\System32\authz.dll
11:24:35.0350 0x0dac  C:\Windows\System32\authz.dll - ok
11:24:35.0350 0x0dac  [ B9A95365E52F421A20E1501935FADDA5, DDB4CB575139233EFAF2C59B7E9B04AF36BBCCC63190181F3B2A7E6BFC86E77E ] C:\Windows\System32\bcrypt.dll
11:24:35.0350 0x0dac  C:\Windows\System32\bcrypt.dll - ok
11:24:35.0350 0x0dac  [ 86FE1B1F8FD42CD0DB641AB1CDB13093, 8C4BB4415105CE82FFFE658879EAE9D259A24C0F6DFC7D25507352DC99241BE2 ] C:\Windows\System32\cngaudit.dll
11:24:35.0350 0x0dac  C:\Windows\System32\cngaudit.dll - ok
11:24:35.0366 0x0dac  [ E23BA7A7BD97FC6B8AB5EA32A46D05CD, 593564F84B36451A5CDCA9B04DCFC7886DB124F7CA95464B67B1E65E041A1EC6 ] C:\Windows\System32\ncrypt.dll
11:24:35.0366 0x0dac  C:\Windows\System32\ncrypt.dll - ok
11:24:35.0366 0x0dac  [ 02B64609F865A39365FF88580DF11738, 2F676B93898E1B6131AF6227BB7AB731EB9C29477F9BD4C2C60F0FC1E35CD968 ] C:\Windows\System32\msprivs.dll
11:24:35.0366 0x0dac  C:\Windows\System32\msprivs.dll - ok
11:24:35.0366 0x0dac  [ 50532FCD7ECF02DD169CE5C485F02534, 8EE5D9D0EA53DC72BCC300692E521ACADD56AB09BFA3E78149D8B5A90648512C ] C:\Windows\System32\negoexts.dll
11:24:35.0366 0x0dac  C:\Windows\System32\negoexts.dll - ok
11:24:35.0366 0x0dac  [ C6505DE3561537BA1004D638C2F93F2F, 3E4FDF374B1A9E43A8F61FD2D79E0515390ECABFDAF72C4BD44A7B6429039AF6 ] C:\Windows\System32\netjoin.dll
11:24:35.0366 0x0dac  C:\Windows\System32\netjoin.dll - ok
11:24:35.0366 0x0dac  [ 33EF550DCCC58C93F5B65FD75BAD9832, 904DA99D4CBE5904E8D2580077FBB8909A44147F95492929D9A7A581C06645A8 ] C:\Windows\System32\kerberos.dll
11:24:35.0366 0x0dac  C:\Windows\System32\kerberos.dll - ok
11:24:35.0381 0x0dac  [ D0C2FBB6D97416B0166478FC7AE2B212, 7EAB6C37F0A845E645CA44CC060AC6C56E386C7EF7A64716C6786C9602AD8C9D ] C:\Windows\System32\cryptsp.dll
11:24:35.0381 0x0dac  C:\Windows\System32\cryptsp.dll - ok
11:24:35.0381 0x0dac  [ 9A9F9F1A77D6A80EE28B57664F00013E, 0D441638E086EF1342FCDC43E826BF9E9CC6B2E8AE100D89BFC70163F987DE91 ] C:\Windows\System32\mswsock.dll
11:24:35.0381 0x0dac  C:\Windows\System32\mswsock.dll - ok
11:24:35.0381 0x0dac  [ 94E026870A55AAEAFF7853C1754091E9, B2F5D5629D12BDFA98DBED3898368F37D9009C7531B6909C7285A2C11C9A0F93 ] C:\Windows\System32\version.dll
11:24:35.0381 0x0dac  C:\Windows\System32\version.dll - ok
11:24:35.0381 0x0dac  [ EC7CBFF96B05ECF3D366355B3C64ADCF, F69ED45EBEDCA9CF000AC03281F0EC2C351F98513FBA90E63394E4E561D6C7A2 ] C:\Windows\System32\wship6.dll
11:24:35.0381 0x0dac  C:\Windows\System32\wship6.dll - ok
11:24:35.0381 0x0dac  [ 7D1017ED11B7C3B162628069742B5E58, 0553ABF5C84469370748CA2496BA82655039E5048980C675742A88B761DED967 ] C:\Windows\System32\msv1_0.dll
11:24:35.0381 0x0dac  C:\Windows\System32\msv1_0.dll - ok
11:24:35.0381 0x0dac  [ AA339DD8BB128EF66660DFBBB59043D3, 76D9F849AFDDA38E04549EB67B4163478776F1B6EF46434168278F84FEB8FC5C ] C:\Windows\System32\netlogon.dll
11:24:35.0381 0x0dac  C:\Windows\System32\netlogon.dll - ok
11:24:35.0397 0x0dac  [ E1BB958681BE311E7CFF06CFEC5F1F2B, C2FDFC6C7350788A07DCB99A6A54FB9A96A6A578013DF46D0E5094A3CBF6E862 ] C:\Windows\System32\atmfd.dll
11:24:35.0397 0x0dac  C:\Windows\System32\atmfd.dll - ok
11:24:35.0397 0x0dac  [ 492D07D79E7024CA310867B526D9636D, F2FE647AB85C6C3C1AA3DF4BCE6E4D42B9676C9D837E11388C235AE8DB20044F ] C:\Windows\System32\dnsapi.dll
11:24:35.0397 0x0dac  C:\Windows\System32\dnsapi.dll - ok
11:24:35.0397 0x0dac  [ 8FFE297B8449386E7B6851458B6E474E, E149B37E11091D69D926242517E5655596594A6F01FEF06EB65D6BA5B354E326 ] C:\Windows\System32\logoncli.dll
11:24:35.0397 0x0dac  C:\Windows\System32\logoncli.dll - ok
11:24:35.0397 0x0dac  [ E8E98B3B7A6E1250F4AA7AF8FA17D5BB, 36EA8779A04E40B93961C8F4B1B6FF7E26254D38B30EA9B1031066B3FC02A776 ] C:\Windows\System32\schannel.dll
11:24:35.0397 0x0dac  C:\Windows\System32\schannel.dll - ok
11:24:35.0397 0x0dac  [ BFC98590EAB40C785D6134B1FA818A62, 3A0136DE59815C36ADD2E960D610371733B119635D2EBA15588DB62A05B928C8 ] C:\Windows\System32\wdigest.dll
11:24:35.0397 0x0dac  C:\Windows\System32\wdigest.dll - ok
11:24:35.0412 0x0dac  [ E08088A97F95345E181C3DFCE2C615EF, DEF3B087DF5E10E4F8418029DB6E82546E62FEFA39694B7BD6A48CE8AAFD1B96 ] C:\Windows\System32\pku2u.dll
11:24:35.0412 0x0dac  C:\Windows\System32\pku2u.dll - ok
11:24:35.0412 0x0dac  [ 5D8874A8C11DDDDE29E12DE0E2013493, 3E9A57137BF622AF83E3E4D58971E2C0200559CCA7545D16CF263AA03EE9C7D2 ] C:\Windows\System32\rsaenh.dll
11:24:35.0412 0x0dac  C:\Windows\System32\rsaenh.dll - ok
11:24:35.0412 0x0dac  [ 79EE13A5A406E4603874686B8005DA72, 3FC9C9463AFF70D9778C9CEDFCE6CEFDEE342A13BDE8EF2FF0420FE48421412B ] C:\Windows\System32\TSpkg.dll
11:24:35.0412 0x0dac  C:\Windows\System32\TSpkg.dll - ok
11:24:35.0412 0x0dac  [ D6C7780A364C6BBACFA796BAB9F1B374, 3B5ED1A030BFD0BB73D4FFCD67A6A0B8501EF70293F223EFAA12F430ADF270F9 ] C:\Windows\System32\bcryptprimitives.dll
11:24:35.0412 0x0dac  C:\Windows\System32\bcryptprimitives.dll - ok
11:24:35.0412 0x0dac  [ 90BDEFC5DF334E5100EAA781D798DE1A, F48B650D811B6D57D2252E326C0C9CC74534BE9D510E7D3403F91D1C5C36281E ] C:\Windows\System32\efslsaext.dll
11:24:35.0412 0x0dac  C:\Windows\System32\efslsaext.dll - ok
11:24:35.0412 0x0dac  [ C9DD5C0D5AF2D7A54BA32E8FBD3B67F1, 1EDB25297A9C8A87A7F33A9E9C5148F476D74BBDBF272036E5ACA46355D4A866 ] C:\Windows\System32\credssp.dll
11:24:35.0412 0x0dac  C:\Windows\System32\credssp.dll - ok
11:24:35.0428 0x0dac  [ ED78427259134C63ED69804D2132B86C, F6F51B8B35881ABCA5580ED111AAC80E466E6474ABAE31EC8BE46C23EDCA77B2 ] C:\Windows\System32\scecli.dll
11:24:35.0428 0x0dac  C:\Windows\System32\scecli.dll - ok
11:24:35.0428 0x0dac  [ 7CC7DF5B654DA579613F811D8C637E29, 70EAC059C1ED814810C75DBB9F4D188428CB942FFD8869D692158D384EB6BB35 ] C:\Windows\System32\ubpm.dll
11:24:35.0428 0x0dac  C:\Windows\System32\ubpm.dll - ok
11:24:35.0428 0x0dac  [ 0D9764D58C5EFD672B7184854B152E5E, 9827B43DABBEC39AB2E2294408D9C5304EF27A684903C5234C6070387723D49E ] C:\Windows\System32\winsta.dll
11:24:35.0428 0x0dac  C:\Windows\System32\winsta.dll - ok
11:24:35.0428 0x0dac  [ E6EB44ABAAF1F330119F854856C53EBE, 77279972FFBFA984578DD4F17EB615F5D2D93590AF3A9FEFEFDB9128206C9887 ] C:\Windows\System32\SPInf.dll
11:24:35.0428 0x0dac  C:\Windows\System32\SPInf.dll - ok
11:24:35.0428 0x0dac  [ C78655BC80301D76ED4FEF1C1EA40A7D, 93B2ED4004ED5F7F3039DD7ECBD22C7E4E24B6373B4D9EF8D6E45A179B13A5E8 ] C:\Windows\System32\svchost.exe
11:24:35.0428 0x0dac  C:\Windows\System32\svchost.exe - ok
11:24:35.0444 0x0dac  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] C:\Windows\System32\umpnpmgr.dll
11:24:35.0444 0x0dac  C:\Windows\System32\umpnpmgr.dll - ok
11:24:35.0444 0x0dac  [ CD1B5AD07E5F7FEF30E055DCC9E96180, 63C58551F32B0B09377F64A6AE1FA81AF93B8A707A57A8C18722086906AD3046 ] C:\Windows\System32\devrtl.dll
11:24:35.0444 0x0dac  C:\Windows\System32\devrtl.dll - ok
11:24:35.0444 0x0dac  [ 9C9307C95671AC962F3D6EB3A4A89BAE, D1433791C9B8BCEEAD8937EC18D33E89E4E2012B5975228A8500FD141BC30078 ] C:\Windows\System32\gpapi.dll
11:24:35.0444 0x0dac  C:\Windows\System32\gpapi.dll - ok
11:24:35.0444 0x0dac  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] C:\Windows\System32\umpo.dll
11:24:35.0444 0x0dac  C:\Windows\System32\umpo.dll - ok
11:24:35.0444 0x0dac  [ F6C011B46FAEEF33536B2E80F48B5CBE, BDD149D3D6F9F6C8F6F34C311219BE5618CEEFBC7D35E37473A47F1D5D015067 ] C:\Windows\System32\pcwum.dll
11:24:35.0444 0x0dac  C:\Windows\System32\pcwum.dll - ok
11:24:35.0444 0x0dac  [ 716175021BDA290504CE434273F666BC, FA18CA2D8A5F4335E051E2933147D3C1E7308F7D446E2AEB6596CDEF6E2AFC88 ] C:\Windows\System32\powrprof.dll
11:24:35.0444 0x0dac  C:\Windows\System32\powrprof.dll - ok
11:24:35.0459 0x0dac  [ 88AB9B72B4BF3963A0DE0820B4B0B06C, 29EFEADCB26E408CD41492FCEC6D411A018099D6FF5ECA9526ED59564975F3E6 ] C:\Windows\System32\winlogon.exe
11:24:35.0459 0x0dac  C:\Windows\System32\winlogon.exe - ok
11:24:35.0459 0x0dac  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] C:\Windows\System32\drivers\luafv.sys
11:24:35.0459 0x0dac  C:\Windows\System32\drivers\luafv.sys - ok
11:24:35.0459 0x0dac  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] C:\Windows\System32\rpcss.dll
11:24:35.0459 0x0dac  C:\Windows\System32\rpcss.dll - ok
11:24:35.0459 0x0dac  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] C:\Windows\System32\RpcEpMap.dll
11:24:35.0459 0x0dac  C:\Windows\System32\RpcEpMap.dll - ok
11:24:35.0459 0x0dac  [ 16E964ABF6D1E0F0CC7822FCA9BA754D, 0E461387ACFD641DA22EE542A3C68AF5F7D3A7F967D974E3B198143D461ABE39 ] C:\Windows\System32\wshqos.dll
11:24:35.0459 0x0dac  C:\Windows\System32\wshqos.dll - ok
11:24:35.0475 0x0dac  [ 31559F3244C6BC00A52030CAA83B6B91, B2025742B5F0025ACE9821D5722DE3F997EEEAB21D2F381C9E307882DF422579 ] C:\Windows\System32\WSHTCPIP.DLL
11:24:35.0475 0x0dac  C:\Windows\System32\WSHTCPIP.DLL - ok
11:24:35.0475 0x0dac  [ 19A47185AE12414F918A074048CB9EBC, DFEA9E3F74CDF4216E08C3C72A04F8217B0025E6026E9098645F6C2659906015 ] C:\Program Files\Microsoft Security Client\MpSvc.dll
11:24:35.0475 0x0dac  C:\Program Files\Microsoft Security Client\MpSvc.dll - ok
11:24:35.0475 0x0dac  [ F0D5494D8B177C37E16966262F5D0F68, DD63427DFFD9DD2BEC8336F6AD1BEFE347012331631DC5FEC65E83B1EACDBC67 ] C:\Program Files\Microsoft Security Client\MsMpEng.exe
11:24:35.0475 0x0dac  C:\Program Files\Microsoft Security Client\MsMpEng.exe - ok
11:24:35.0475 0x0dac  [ 9AD9E06F8656F296D91FAE8EE5B95A27, 53384747D5864D699BCC4F48E0A5E656430EDAA65DCDAB4B11EA68FC7106459E ] C:\Windows\System32\FirewallAPI.dll
11:24:35.0475 0x0dac  C:\Windows\System32\FirewallAPI.dll - ok
11:24:35.0475 0x0dac  [ 715F03B4C7223349768013EA95D9E5B7, 09AB0535A54C2E2962F0FD06988D99060F8CECA39B07AC00A63204C773B95893 ] C:\Windows\System32\LogonUI.exe
11:24:35.0475 0x0dac  C:\Windows\System32\LogonUI.exe - ok
11:24:35.0475 0x0dac  [ 685D87C61FEA48ADDAE4C5352B30E27D, 7CDEB3D277EAECBCE436C06BA9813ECE2223ABEFF8B61D53D5272339B57851D4 ] C:\Program Files\Microsoft Security Client\MpClient.dll
11:24:35.0475 0x0dac  C:\Program Files\Microsoft Security Client\MpClient.dll - ok
11:24:35.0490 0x0dac  [ 5DFFC12BF7DB53BDB401804A3C3A475E, DEACB4BFF904AD77389A8326BFCF12A490E1A7A10B68049D253552F1FC630FA3 ] C:\Windows\System32\authui.dll
11:24:35.0490 0x0dac  C:\Windows\System32\authui.dll - ok
11:24:35.0490 0x0dac  [ BD3674BE7FC9D8D3732C83E8499576ED, E6716A5895D629263A4D21959F48840429AB6F4B55A5FA2663EE5E86C9CA2BF1 ] C:\Windows\System32\wtsapi32.dll
11:24:35.0490 0x0dac  C:\Windows\System32\wtsapi32.dll - ok
11:24:35.0490 0x0dac  [ B3BFBD758506ECB50C5804AAA76318F9, 34E079A6AB2D41D1E0B3887B6AE31C43941061B7176FFF2801C3F465C2C89578 ] C:\Windows\System32\cryptui.dll
11:24:35.0490 0x0dac  C:\Windows\System32\cryptui.dll - ok
11:24:35.0490 0x0dac  [ 1F4492FE41767CDB8B89D17655847CDD, 184547FAC0C3D7148FAA3F601929A7089DE393BD19929A137DAD743331DD3F77 ] C:\Windows\System32\ntmarta.dll
11:24:35.0490 0x0dac  C:\Windows\System32\ntmarta.dll - ok
11:24:35.0490 0x0dac  [ 7FA8FDC2C2A27817FD0F624E78D3B50C, 7B63F6AA2CD6D4D07EA3C595B868B1A0749BB11620027A2BD9B935E3055481E4 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
11:24:35.0490 0x0dac  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
11:24:35.0506 0x0dac  [ C6E1C081C0849E08FECEC18DF73B10C4, B5E552F4744C91836CBAF3F62CB861C1D9422721870D11B5CCE21B45E384985A ] C:\Windows\System32\drivers\dc3d.sys
11:24:35.0506 0x0dac  C:\Windows\System32\drivers\dc3d.sys - ok
11:24:35.0506 0x0dac  [ 856E76B3641746ABBC2946BED1372098, FD93CC7F72560F72CA49AD5609C079E25B8A3A4802E72B127B63A9E7B4884710 ] C:\Windows\System32\drivers\hidparse.sys
11:24:35.0506 0x0dac  C:\Windows\System32\drivers\hidparse.sys - ok
11:24:35.0506 0x0dac  [ E6737687B7587339D1A6473117159F40, 9F2FAA2A729F98C8633C147ABD333B8EECB5A37A45E5D5ED469140222CB189D6 ] C:\Program Files\Microsoft Security Client\EppManifest.dll
11:24:35.0506 0x0dac  C:\Program Files\Microsoft Security Client\EppManifest.dll - ok
11:24:35.0506 0x0dac  [ E9269C2B132B1DF1EAFC0DD57B6F8A7D, AEE7E528E87237F8CBC749A6A84367E21183C1764328209D5A662CA6CB328317 ] C:\Windows\System32\atiesrxx.exe
11:24:35.0506 0x0dac  C:\Windows\System32\atiesrxx.exe - ok
11:24:35.0506 0x0dac  [ 4E9C2DB10F7E6AE91BF761139D4B745B, 8F63F78294F5585D599A114AF449DCC447CCB239D0F0B490BFE6B34A2146E730 ] C:\Windows\System32\shacct.dll
11:24:35.0506 0x0dac  C:\Windows\System32\shacct.dll - ok
11:24:35.0522 0x0dac  [ F06BB4E336EA57511FDBAFAFCC47DE62, BE43EC62548E9FF89A9495A1722E22DBB76EEC3764F86E64057B636F27D15765 ] C:\Windows\System32\propsys.dll
11:24:35.0522 0x0dac  C:\Windows\System32\propsys.dll - ok
11:24:35.0522 0x0dac  [ 5B3EBFC3DA142324B388DDCC4465E1FF, 5D58642305311F9BC9B779C9598BFC4E7433B3EA58404BF1FF9466838A2328C7 ] C:\Windows\System32\samlib.dll
11:24:35.0522 0x0dac  C:\Windows\System32\samlib.dll - ok
11:24:35.0522 0x0dac  [ 79B27F0DB10D1FF517F02F792830E538, 703025147FFBA95B865993F0AA7A1EFD769535FEDEFD305005ADFCCFAFDB61BC ] C:\Program Files\Microsoft Security Client\MpCommu.dll
11:24:35.0522 0x0dac  C:\Program Files\Microsoft Security Client\MpCommu.dll - ok
11:24:35.0522 0x0dac  [ 6011714C8C5C55CBFFAD24D61E879FBD, 75D615082A1C71C6ED3ABB49EDAF660EE538D112CF79B9C8AF0A583D1CE1BBB0 ] C:\Windows\System32\wevtsvc.dll
11:24:35.0522 0x0dac  C:\Windows\System32\wevtsvc.dll - ok
11:24:35.0522 0x0dac  [ D29E998E8277666982B4F0303BF4E7AF, 4F19AB5DC173E278EBE45832F6CEAA40E2DF6A2EDDC81B2828122442FE5D376C ] C:\Windows\System32\uxtheme.dll
11:24:35.0522 0x0dac  C:\Windows\System32\uxtheme.dll - ok
11:24:35.0522 0x0dac  [ 603EBD34E216C5654A2D774EAC98D278, ACE0171BB780DB2C1B1A8BF6FA8CF51C529D7E09141FA504C7199AF764FD9A36 ] C:\Windows\System32\webio.dll
11:24:35.0522 0x0dac  C:\Windows\System32\webio.dll - ok
11:24:35.0537 0x0dac  [ 58F4493BF748A3A89689997B7BD00E95, EC5DEEC73E357C7C87B001275C4E635011A9CF39419F2B86E2C2B8D7E388C551 ] C:\Windows\System32\winhttp.dll
11:24:35.0537 0x0dac  C:\Windows\System32\winhttp.dll - ok
11:24:35.0537 0x0dac  [ 1AAA3704C352767FA96FBCB2F44420FA, C492CA0D7CCEE0D0A69CC9632C67EEABD08A77FB1E1522DFA3F7303E09983FE0 ] C:\Program Files\Microsoft Security Client\MpRTP.dll
11:24:35.0537 0x0dac  C:\Program Files\Microsoft Security Client\MpRTP.dll - ok
11:24:35.0537 0x0dac  [ A9A87481B1A6589898C1DAB37C03E4AB, 803DB46E9FEE4E45B63A13A8CE3E589D7498532B8A7D8C3424E210E6A9AAC61F ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_2b283fd671e9bf4d\GdiPlus.dll
11:24:35.0537 0x0dac  C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_2b283fd671e9bf4d\GdiPlus.dll - ok
11:24:35.0537 0x0dac  [ 5DD8C3863757690D38BA3A487559CA5A, 062AF2721E1847FD000E1D8AD71A1F0EF4B830506E4680D3BF79FFE4BB3C0ACA ] C:\Program Files\Microsoft Security Client\MsMpLics.dll
11:24:35.0537 0x0dac  C:\Program Files\Microsoft Security Client\MsMpLics.dll - ok
11:24:35.0537 0x0dac  [ 6439D1E559D08BD8A1465A8943357053, 0E300508C22D12FBA3BE566B722F574CBE1B4A1A305356B92B8EA8B86267071B ] C:\Windows\System32\drivers\MpFilter.sys
11:24:35.0537 0x0dac  C:\Windows\System32\drivers\MpFilter.sys - ok
11:24:35.0553 0x0dac  [ F3D202F53A222D5F6944D459B73CF967, E9F1D48EB333D32331BCFD0348FE07BEE7D5352292E6020571DA395F596AFFE7 ] C:\Windows\System32\fltLib.dll
11:24:35.0553 0x0dac  C:\Windows\System32\fltLib.dll - ok
11:24:35.0553 0x0dac  [ 49BEBD78216688B48976981587AE9293, 0AFF7318D86B222F566FBCEEACEB8B3E4A4C9D9C5418AEC1B494540AB1D71588 ] C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll
11:24:35.0553 0x0dac  C:\Program Files\Microsoft Security Client\NisIpsPlugin.dll - ok
11:24:35.0553 0x0dac  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] C:\Windows\System32\audiosrv.dll
11:24:35.0553 0x0dac  C:\Windows\System32\audiosrv.dll - ok
11:24:35.0553 0x0dac  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] C:\Windows\System32\FntCache.dll
11:24:35.0553 0x0dac  C:\Windows\System32\FntCache.dll - ok
11:24:35.0553 0x0dac  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] C:\Windows\System32\wlansvc.dll
11:24:35.0553 0x0dac  C:\Windows\System32\wlansvc.dll - ok
11:24:35.0568 0x0dac  [ 6F391A20728B092E0E6D09F0AA05DA7D, 72A3167E947675849FECAC6FEABE23DCA1B482F8EE5117C3CC916921A99EBB41 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E08D0144-76BB-41F7-818B-2C28BA5DB9D9}\mpengine.dll
11:24:35.0568 0x0dac  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E08D0144-76BB-41F7-818B-2C28BA5DB9D9}\mpengine.dll - ok
11:24:35.0568 0x0dac  [ 78A1E65207484B7F8D3217507745F47C, 35F413ADB9D157F3666DD15DD58104D629CD9143198A1AB914B73A4A3C9903DD ] C:\Windows\System32\avrt.dll
11:24:35.0568 0x0dac  C:\Windows\System32\avrt.dll - ok
11:24:35.0568 0x0dac  [ 3CB6A7286422C72C34DAB54A5DFF1A34, 98D21EFFF511E407336A226420701E82554DA01FA05661303836B6860D63749D ] C:\Windows\System32\dui70.dll
11:24:35.0568 0x0dac  C:\Windows\System32\dui70.dll - ok
11:24:35.0568 0x0dac  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] C:\Windows\System32\mmcss.dll
11:24:35.0568 0x0dac  C:\Windows\System32\mmcss.dll - ok
11:24:35.0568 0x0dac  [ 227E2C382A1E02F8D4965E664D3BBE43, 1CFF20A8BF87ACE4FA4935EBEED72BFB1A1FE902A754899E2F50798D67DF5642 ] C:\Windows\System32\MMDevAPI.dll
11:24:35.0568 0x0dac  C:\Windows\System32\MMDevAPI.dll - ok
11:24:35.0568 0x0dac  [ 588CD0C78A7FAAE4186B5EEA0AF3ED67, E957E4463D318A44BA5109EE3428624DE901C5FF2BA358986DF6C6F059DDBCC2 ] C:\Windows\System32\adtschema.dll
11:24:35.0568 0x0dac  C:\Windows\System32\adtschema.dll - ok
11:24:35.0584 0x0dac  [ 8CCDE014A4CDF84564E03ACE064CA753, DD663029B2EB7B12FDB00FCE403D8326141E540E3B9CE84CD5871473D3E2E2CF ] C:\Windows\System32\duser.dll
11:24:35.0584 0x0dac  C:\Windows\System32\duser.dll - ok
11:24:35.0584 0x0dac  [ 50544D04AD845C43130B70212EC05CCD, B2E6B558DE7D273512226685FF53ED17C9B4BF81B739FBCA5D3FC82DF8D2BCF7 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
11:24:35.0584 0x0dac  C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
11:24:35.0584 0x0dac  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] C:\Windows\System32\netprofm.dll
11:24:35.0584 0x0dac  C:\Windows\System32\netprofm.dll - ok
11:24:35.0584 0x0dac  [ DA1B7075260F3872585BFCDD668C648B, 3E10EF6E1A5C341B478322CB78A0AB7BFC70AD8023779B8B4542A7CB4CA756AB ] C:\Windows\System32\dwmapi.dll
11:24:35.0584 0x0dac  C:\Windows\System32\dwmapi.dll - ok
11:24:35.0584 0x0dac  [ 896F15A6434D93EDB42519D5E18E6B50, 9263F0CEC58D45EBE3FB9C3061FB9392C55A7933B84B4592E6EE13CFC86D5A50 ] C:\Windows\System32\hid.dll
11:24:35.0584 0x0dac  C:\Windows\System32\hid.dll - ok
11:24:35.0600 0x0dac  [ D7F1EF374A90709B31591823B002F918, 05FD2837C9B03D14BB2A969C1AD77CAEF047D93DC5D0F6C2ACBF0888E8F7B359 ] C:\Windows\System32\SndVolSSO.dll
11:24:35.0600 0x0dac  C:\Windows\System32\SndVolSSO.dll - ok
11:24:35.0600 0x0dac  [ B1DF2D87DC8BF6072699AC8301B37796, D5A6FD1EDB627324DFA1A0555F1777A3313EF29DDE29982C3CE59DAF1ED0D105 ] C:\Windows\System32\WUDFPlatform.dll
11:24:35.0600 0x0dac  C:\Windows\System32\WUDFPlatform.dll - ok
11:24:35.0600 0x0dac  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] C:\Windows\System32\MPSSVC.dll
11:24:35.0600 0x0dac  C:\Windows\System32\MPSSVC.dll - ok
11:24:35.0600 0x0dac  [ 6F8B48F3D343E4B186AB6A9E302B7E16, 54DB52FC56509E61DF68BD251B3286E6CBE1A91D9BC4D950940A61FE2DA04DF8 ] C:\Windows\System32\xmllite.dll
11:24:35.0600 0x0dac  C:\Windows\System32\xmllite.dll - ok
11:24:35.0600 0x0dac  [ AFCA5C1ECEAF948FC815178BC077680E, D052C18EF455E1A272332F2E11FD4F36DA071FAB3B81CA312FB75BF8702ED72D ] C:\Windows\System32\WindowsCodecs.dll
11:24:35.0600 0x0dac  C:\Windows\System32\WindowsCodecs.dll - ok
11:24:35.0600 0x0dac  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] C:\Windows\System32\drivers\fltMgr.sys
11:24:35.0600 0x0dac  C:\Windows\System32\drivers\fltMgr.sys - ok
11:24:35.0615 0x0dac  [ A3DB3C17EE6CAE65D53602B4E80BCCBC, D802A7C6161F937DC42A6E45FE1BB2C8272819F92C294C180EBCDF8FF72CBFDC ] C:\Windows\System32\PSHED.DLL
11:24:35.0615 0x0dac  C:\Windows\System32\PSHED.DLL - ok
11:24:35.0615 0x0dac  [ B0945E538CF906BBDDC5A11C8EE868CC, 5F3459F6512918835F7C9400905EC7C1FAEAA7114E0D28C522040C359E3B93F7 ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
11:24:35.0615 0x0dac  C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
11:24:35.0615 0x0dac  [ 597C3699384E53CC59587ED50CCE5CA2, 4F61E9B5BEB3BD1634D733983381E516664BD7E250DF4B0150B168E05EFD652A ] C:\Windows\System32\drivers\hidclass.sys
11:24:35.0615 0x0dac  C:\Windows\System32\drivers\hidclass.sys - ok
11:24:35.0615 0x0dac  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] C:\Windows\System32\drivers\hidusb.sys
11:24:35.0615 0x0dac  C:\Windows\System32\drivers\hidusb.sys - ok
11:24:35.0615 0x0dac  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] C:\Windows\System32\drivers\kbdhid.sys
11:24:35.0615 0x0dac  C:\Windows\System32\drivers\kbdhid.sys - ok
11:24:35.0631 0x0dac  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] C:\Windows\System32\drivers\mouhid.sys
11:24:35.0631 0x0dac  C:\Windows\System32\drivers\mouhid.sys - ok
11:24:35.0631 0x0dac  [ 34A8FAE065249F85A67A3215FF5ECB34, 913297755C1046BA004E79660B7DA5BBE5E92B96AAA83D78AE3FF379371950D5 ] C:\Windows\System32\drivers\point64.sys
11:24:35.0631 0x0dac  C:\Windows\System32\drivers\point64.sys - ok
11:24:35.0631 0x0dac  [ 476E9E53452E9F1EE82E75F2BC7B2AE3, 21C936E9B08D63F8CD3EA18DE1B88103BEB427EC0C0CE30632801F011869162A ] C:\Windows\System32\drivers\netr28ux.sys
11:24:35.0631 0x0dac  C:\Windows\System32\drivers\netr28ux.sys - ok
11:24:35.0631 0x0dac  [ A021CC1D5F73CDB0D022D43AADBAB933, 1B220C905677D4DEE6FDF9860BAC367784684C685D75243B246E854ACEDBBB4D ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E08D0144-76BB-41F7-818B-2C28BA5DB9D9}\mpasbase.vdm
11:24:35.0631 0x0dac  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E08D0144-76BB-41F7-818B-2C28BA5DB9D9}\mpasbase.vdm - ok
11:24:35.0631 0x0dac  [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D, 19959D18601712901F03B83150D15E34EBCAB355BB4692C9A28511A72F57FC66 ] C:\Windows\System32\winbrand.dll
11:24:35.0631 0x0dac  C:\Windows\System32\winbrand.dll - ok
11:24:35.0646 0x0dac  [ BF352E73615F5461AA6884472435A544, 4B059E79325C5F08CD6FBBE6352E17ADB64B9608CC9EDB36A2DF4D148060C309 ] C:\Windows\System32\BioCredProv.dll
11:24:35.0646 0x0dac  C:\Windows\System32\BioCredProv.dll - ok
11:24:35.0646 0x0dac  [ 8563BA40DF4F1E93A61B70E2C8B60CF8, E5CAA520CBE61FAF3EAA784A51ED30E0CB2FD78EFD8AE1D5C6B0FE43A1009F39 ] C:\Windows\System32\SmartcardCredentialProvider.dll
11:24:35.0646 0x0dac  C:\Windows\System32\SmartcardCredentialProvider.dll - ok
11:24:35.0646 0x0dac  [ C2762A57DF0EE85E63CE4893C5215313, DDE22212D78353633CEDE27D7210469DE674563991105563CF64CCCE2D0743BD ] C:\Windows\System32\VaultCredProvider.dll
11:24:35.0646 0x0dac  C:\Windows\System32\VaultCredProvider.dll - ok
11:24:35.0646 0x0dac  [ 4403D5ECE7D8323CAF1207D1AA38FA01, BD0B34DCF658D3CB91C1B55E9E730C5F7C571AFC2BFA09270C377B72B6830D48 ] C:\Windows\System32\credui.dll
11:24:35.0646 0x0dac  C:\Windows\System32\credui.dll - ok
11:24:35.0646 0x0dac  [ 796B8123A7859AFD3A4AE10514DBAEB5, E76F69FAFEC3D66263ED95F3FA9EE309BDDACB287E30583A147DC97F6EEB8844 ] C:\Windows\System32\winbio.dll
11:24:35.0646 0x0dac  C:\Windows\System32\winbio.dll - ok
11:24:35.0646 0x0dac  [ EEEA40F0EDB0A6E5359E539E15D0BC77, BFCBF777239C29C6AC4BC5B59591308571647B7C7FDB5571903F7403DD241E8E ] C:\Windows\System32\netapi32.dll
11:24:35.0646 0x0dac  C:\Windows\System32\netapi32.dll - ok
11:24:35.0662 0x0dac  [ 6CECA4C6A489C9B2E6073AFDAAE3F607, 127506D1DB38275614CBEB047C133718EF9D03266BA9C98BE55EC7847CFC9C3D ] C:\Windows\System32\netutils.dll
11:24:35.0662 0x0dac  C:\Windows\System32\netutils.dll - ok
11:24:35.0662 0x0dac  [ FC51229C7D4AFA0D6F186133728B95AB, 37E58C8E1C8437D1981725A5DCDACA7316CEFBB570370CEFC8D122F523B96AC0 ] C:\Windows\System32\samcli.dll
11:24:35.0662 0x0dac  C:\Windows\System32\samcli.dll - ok
11:24:35.0662 0x0dac  [ 44B9C66177651F3F53C87B665D58D17A, 3FC426115FF87570889DB28D71970B82B525D2A4B9A00EDD273BF083B77A05CE ] C:\Windows\System32\vaultcli.dll
11:24:35.0662 0x0dac  C:\Windows\System32\vaultcli.dll - ok
11:24:35.0662 0x0dac  [ 3C91392D448F6E5D525A85B7550D8BA9, 6FD0DC73DBE7519E2C643554C2A7F8FBE4F9A678C4241BB54B3C6E65D2ABCF3A ] C:\Windows\System32\wkscli.dll
11:24:35.0662 0x0dac  C:\Windows\System32\wkscli.dll - ok
11:24:35.0662 0x0dac  [ 972C3301DB3DA91AE06A95F6B4160B1B, 678B533A06C306295FE97DC26CE9BAFFC8EAF1FB7405ACB040719099717744D5 ] C:\Windows\System32\certCredProvider.dll
11:24:35.0662 0x0dac  C:\Windows\System32\certCredProvider.dll - ok
11:24:35.0678 0x0dac  [ C8DF6DD042E7FB471FC9BFBE3F60C38D, 5EB11A8728E3393AF8CF3C9C22D10D663B057EF317FD248022B9B1D625C4C0F0 ] E:\Program Files (x86)\CyberLink\YouCam6\CLCredProv\x64\CLCredProv.dll
11:24:35.0678 0x0dac  E:\Program Files (x86)\CyberLink\YouCam6\CLCredProv\x64\CLCredProv.dll - ok
11:24:35.0678 0x0dac  [ 019CD868461B646E09BDF04474C19341, 01837EFACB02E52BC6E90C90C4CB01B11D56E449A37EA4FC2695507FF85EA9FE ] C:\Windows\System32\rasapi32.dll
11:24:35.0678 0x0dac  C:\Windows\System32\rasapi32.dll - ok
11:24:35.0678 0x0dac  [ 87FA0C48C3B2E9FEE518818FE26B15B5, DA4042DE9897397AEDCEFF9F69746726237305DDE64464309B6DCC45E05E42F4 ] C:\Windows\System32\rasplap.dll
11:24:35.0678 0x0dac  C:\Windows\System32\rasplap.dll - ok
11:24:35.0678 0x0dac  [ B28DEEC597C8DEB70C744C7CF9210E3E, E777F192D822990CA6301B3FEA2AEA213FA7901438EB3328914ADF02B6C39DB9 ] C:\Windows\System32\rasman.dll
11:24:35.0678 0x0dac  C:\Windows\System32\rasman.dll - ok
11:24:35.0678 0x0dac  [ B53C4B69B695EDA1B7E41D35CA4244E2, 3D98E9B263CADA576E4057E059AFC867F6E3F1001F3B73C8BCF9066763A45D9D ] C:\Windows\System32\rtutils.dll
11:24:35.0678 0x0dac  C:\Windows\System32\rtutils.dll - ok
11:24:35.0678 0x0dac  [ D5CCA1453B98A5801E6D5FF0FF89DC6C, 85F2C2480AAC31B6092187B431A562D79D4CFB1324F925C85055ABAB2483264B ] C:\Windows\System32\audiodg.exe
11:24:35.0678 0x0dac  C:\Windows\System32\audiodg.exe - ok
11:24:35.0693 0x0dac  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] C:\Windows\System32\gpsvc.dll
11:24:35.0693 0x0dac  C:\Windows\System32\gpsvc.dll - ok
11:24:35.0693 0x0dac  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] C:\Windows\System32\profsvc.dll
11:24:35.0693 0x0dac  C:\Windows\System32\profsvc.dll - ok
11:24:35.0693 0x0dac  [ 5AD2A2B5813CA78AFA69A076639E04EA, B8154554E9E2CF7DDC06DB75DB923AEE796F69BC1BE8AE20E507D74462A16970 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E08D0144-76BB-41F7-818B-2C28BA5DB9D9}\mpasdlta.vdm
11:24:35.0693 0x0dac  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E08D0144-76BB-41F7-818B-2C28BA5DB9D9}\mpasdlta.vdm - ok
11:24:35.0693 0x0dac  [ 58775492FFD419248B08325E583C527F, DBB013971F5894F25C222C2D4D50A29DB6DF3C413792EE9CCC1A9E6D85469093 ] C:\Windows\System32\atl.dll
11:24:35.0693 0x0dac  C:\Windows\System32\atl.dll - ok
11:24:35.0693 0x0dac  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] C:\Windows\System32\es.dll
11:24:35.0693 0x0dac  C:\Windows\System32\es.dll - ok
11:24:35.0709 0x0dac  [ 46BB91A169B9B31FF44EB04C48EC1D41, 8115B533D3A5BE07633FA54FA8847E3DEC00C5BEB193CF2FBE88428D23E2B3D6 ] C:\Windows\System32\nlaapi.dll
11:24:35.0709 0x0dac  C:\Windows\System32\nlaapi.dll - ok
11:24:35.0709 0x0dac  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] C:\Windows\System32\themeservice.dll
11:24:35.0709 0x0dac  C:\Windows\System32\themeservice.dll - ok
11:24:35.0709 0x0dac  [ 00000000000000000000000000000000, 0000000000000000000000000000000000000000000000000000000000000000 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E08D0144-76BB-41F7-818B-2C28BA5DB9D9}\mpavbase.vdm
11:24:35.0709 0x0dac  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E08D0144-76BB-41F7-818B-2C28BA5DB9D9}\mpavbase.vdm - ok
11:24:35.0709 0x0dac  [ 85587372BE5A11F6B1D4AD246DA5AB6A, 7947C3D84F5686C84FFCB92FBED526FF1EC4F8A51CBB8F39F83B5C60D06B2271 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E08D0144-76BB-41F7-818B-2C28BA5DB9D9}\mpavdlta.vdm
11:24:35.0709 0x0dac  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E08D0144-76BB-41F7-818B-2C28BA5DB9D9}\mpavdlta.vdm - ok
11:24:35.0709 0x0dac  [ 1A47D52E303B7543E4E6026595B95422, C577CD3837546A7CED5D2E8E97FA2EDACA133B4A8595770EF96CAE519BFE280F ] C:\Windows\System32\comres.dll
11:24:35.0709 0x0dac  C:\Windows\System32\comres.dll - ok
11:24:35.0724 0x0dac  [ A77BE7CB3222B4FB0AC6C71D1C2698D4, 73566223914BF670DF6B5931FA213E546713531B10391ED65B5256BBD7ABDE7F ] C:\Windows\System32\dsrole.dll
11:24:35.0724 0x0dac  C:\Windows\System32\dsrole.dll - ok
11:24:35.0724 0x0dac  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] C:\Windows\System32\Sens.dll
11:24:35.0724 0x0dac  C:\Windows\System32\Sens.dll - ok
11:24:35.0724 0x0dac  [ BE097F5BB10F9079FCEB2DC4E7E20F02, 90A88986C8C5F30FB153EC803FEDA6572B2C2630A6C9578FCC017800692694D5 ] C:\Windows\System32\slc.dll
11:24:35.0724 0x0dac  C:\Windows\System32\slc.dll - ok
11:24:35.0724 0x0dac  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] C:\Windows\System32\drivers\lltdio.sys
11:24:35.0724 0x0dac  C:\Windows\System32\drivers\lltdio.sys - ok
11:24:35.0724 0x0dac  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] C:\Windows\System32\uxsms.dll
11:24:35.0724 0x0dac  C:\Windows\System32\uxsms.dll - ok
11:24:35.0724 0x0dac  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] C:\Windows\System32\drivers\ndisuio.sys
11:24:35.0724 0x0dac  C:\Windows\System32\drivers\ndisuio.sys - ok
11:24:35.0740 0x0dac  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] C:\Windows\System32\drivers\nwifi.sys
11:24:35.0740 0x0dac  C:\Windows\System32\drivers\nwifi.sys - ok
11:24:35.0740 0x0dac  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] C:\Windows\System32\drivers\rspndr.sys
11:24:35.0740 0x0dac  C:\Windows\System32\drivers\rspndr.sys - ok
11:24:35.0740 0x0dac  [ 2B81776DA02017A37FE26C662827470E, A656353C50EE08422145D00DB9CFD9F6D3E664753B3C454B171E2A56A8AA94DC ] C:\Windows\System32\IPHLPAPI.DLL
11:24:35.0740 0x0dac  C:\Windows\System32\IPHLPAPI.DLL - ok
11:24:35.0740 0x0dac  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] C:\Windows\System32\lmhsvc.dll
11:24:35.0740 0x0dac  C:\Windows\System32\lmhsvc.dll - ok
11:24:35.0740 0x0dac  [ B73A6E4B319AFFE64582AC5C1801BB3F, 274EEA0743DC659180E691654CBB17136E9E9D83B07E302B47EA5B103EA57710 ] C:\Windows\System32\nrpsrv.dll
11:24:35.0740 0x0dac  C:\Windows\System32\nrpsrv.dll - ok
11:24:35.0756 0x0dac  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] C:\Windows\System32\nsisvc.dll
11:24:35.0756 0x0dac  C:\Windows\System32\nsisvc.dll - ok
11:24:35.0756 0x0dac  [ 4C9210E8F4E052F6A4EB87716DA0C24C, 460F7990BDADB7D58D6DC95B094D30A2EFDC4CEED444B18A2F36E8D9076FB8B9 ] C:\Windows\System32\winnsi.dll
11:24:35.0756 0x0dac  C:\Windows\System32\winnsi.dll - ok
11:24:35.0756 0x0dac  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] C:\Windows\System32\dhcpcore.dll
11:24:35.0756 0x0dac  C:\Windows\System32\dhcpcore.dll - ok
11:24:35.0756 0x0dac  [ 3CC16A849E6092E43909F48EF0E60306, 610B576654A69415E4F2FEDB6BA384C77715944E4F89BD2821B311968CA8D810 ] C:\Windows\System32\dhcpcore6.dll
11:24:35.0756 0x0dac  C:\Windows\System32\dhcpcore6.dll - ok
11:24:35.0756 0x0dac  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] C:\Windows\System32\dnsrslvr.dll
11:24:35.0756 0x0dac  C:\Windows\System32\dnsrslvr.dll - ok
11:24:35.0756 0x0dac  [ 87356377F31DA5F20A833811CD59499C, 4FEC1FD3AC4E4E34DCBC0109B248952604F438C84B1604EB9E2359FA721E23C4 ] C:\Windows\System32\eapphost.dll
11:24:35.0756 0x0dac  C:\Windows\System32\eapphost.dll - ok
11:24:35.0771 0x0dac  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] C:\Windows\System32\eapsvc.dll
11:24:35.0771 0x0dac  C:\Windows\System32\eapsvc.dll - ok
11:24:35.0771 0x0dac  [ D07EB640618F96490DB88C3CE58DB608, 0C553971259632031E6856A94EEB937D571627FC7CF061CCFC040F4BF0CFF259 ] C:\Windows\System32\FWPUCLNT.DLL
11:24:35.0771 0x0dac  C:\Windows\System32\FWPUCLNT.DLL - ok
11:24:35.0771 0x0dac  [ F9EC845C5EECF20E9A67F9F805F2EF1F, C3DBA8CF93DBF50954B1BF6D7EF3F6F5DD1A56DC62B7EB2749C54D9B65D9BB43 ] C:\Windows\System32\keyiso.dll
11:24:35.0771 0x0dac  C:\Windows\System32\keyiso.dll - ok
11:24:35.0771 0x0dac  [ F568F7C08458D69E4FCD8675BBB107E4, A5FA25ECF248999A68CCECFBB508BFA1ADD18A23E20A9A9081A87C41CAAA36C0 ] C:\Windows\System32\dhcpcsvc.dll
11:24:35.0771 0x0dac  C:\Windows\System32\dhcpcsvc.dll - ok
11:24:35.0771 0x0dac  [ 885D0942E0F28DB90919BE3129ECF279, 5A10D90EE656ECE3DCA174D6F924641509819FC20CB6EF46B5E1723E52DE85BE ] C:\Windows\System32\dnsext.dll
11:24:35.0771 0x0dac  C:\Windows\System32\dnsext.dll - ok
11:24:35.0787 0x0dac  [ 3C06D5A929B798D0B13F6481242A0FD2, CE6127A31AB09E21A912CA16E4BDF663E9D05C254CCF9090A8B5A9A2E055EFF3 ] C:\Windows\System32\dhcpcsvc6.dll
11:24:35.0787 0x0dac  C:\Windows\System32\dhcpcsvc6.dll - ok
11:24:35.0787 0x0dac  [ 9FCA3A84338ADEF2AFF67CDA46EF8539, 087DF72096852AE98C56990EE6E68835BE95E7E49ECDDE8B54DAC11C9E07FE94 ] C:\Windows\System32\umb.dll
11:24:35.0787 0x0dac  C:\Windows\System32\umb.dll - ok
11:24:35.0787 0x0dac  [ A648C4A06DE367065B24056D067B4460, 2412487D65A833DDD9AB17D039515CC08DA22D006259EC4B03E42475FAFFD2AD ] C:\Windows\System32\wlanmsm.dll
11:24:35.0787 0x0dac  C:\Windows\System32\wlanmsm.dll - ok
11:24:35.0787 0x0dac  [ 06A1386B6E3A0CBC368665C1840906F4, C10BCA5092A0B3F9435CE4D65C7449528C89F5C5243B410878D2EBF516DA2FB2 ] C:\Windows\System32\wlansec.dll
11:24:35.0787 0x0dac  C:\Windows\System32\wlansec.dll - ok
11:24:35.0787 0x0dac  [ 0D753307D274F3688BD21C377B616700, 5DD08E77A11F2561FB96BA212FDDFE21D4394C69C34C3EB88F7F5CD068EE55BF ] C:\Windows\System32\eappcfg.dll
11:24:35.0787 0x0dac  C:\Windows\System32\eappcfg.dll - ok
11:24:35.0787 0x0dac  [ 65522E77A1360DBC8D199DA3BF5EFFE4, E9D748070FA478A3D37F15049F998D340885C0DC5FCE03BFCE5D521C9EBA7350 ] C:\Windows\System32\eappprxy.dll
11:24:35.0787 0x0dac  C:\Windows\System32\eappprxy.dll - ok
11:24:35.0802 0x0dac  [ 73FCB7919DEE80EE556F2E498594EBAE, D0F7A0AD3BC33263E9C2CF9787DD326436F9E0C9F5031D769F8A43C64C08A762 ] C:\Windows\System32\onex.dll
11:24:35.0802 0x0dac  C:\Windows\System32\onex.dll - ok
11:24:35.0802 0x0dac  [ 97E43F324BE1503CB2FFB058534688DA, 50C781DF38D0D38C9A5420AB1FFF8672DC13FD1ED8E9F5432B4BA3077A7435D5 ] C:\Windows\System32\l2gpstore.dll
11:24:35.0802 0x0dac  C:\Windows\System32\l2gpstore.dll - ok
11:24:35.0802 0x0dac  [ 7D5645EE0EA77D539828433D9B95F5EB, EEF81E9B2205FC456DB6095AD0AEAB38BB131D3BCD090EA6CD91D5568ACAFB7F ] C:\Windows\System32\WinSCard.dll
11:24:35.0802 0x0dac  C:\Windows\System32\WinSCard.dll - ok
11:24:35.0802 0x0dac  [ 7F1B4C6FF3B85F9ADF74055187B8A22C, CC95DA5662638AACBE9643DCB236464C2C2095A8D5CDC8A747045870BE9D0E7D ] C:\Windows\System32\wlanutil.dll
11:24:35.0802 0x0dac  C:\Windows\System32\wlanutil.dll - ok
11:24:35.0802 0x0dac  [ 730BF204A595D5B6D7DC57A247CC741C, 264C6901F4A49B738BBD04BCA1783DEE892885BADE9085B0AEA40BAE7CC0A218 ] C:\Windows\System32\wlgpclnt.dll
11:24:35.0802 0x0dac  C:\Windows\System32\wlgpclnt.dll - ok
11:24:35.0818 0x0dac  [ 63316A8E10D243D087038FAEC2D80065, 5A82ED4266D73725315607D8FC4BB6597EEF0A32E1244747B25268469874E427 ] C:\Windows\System32\atieclxx.exe
11:24:35.0818 0x0dac  C:\Windows\System32\atieclxx.exe - ok
11:24:35.0818 0x0dac  [ 920BD93A0B64657A20CA66C2EBB167EA, F0E058D770418D94BAD473285720D079E9B1ED64C0E2DAF99187B8931EBC10F3 ] C:\Windows\System32\mshtml.dll
11:24:35.0818 0x0dac  C:\Windows\System32\mshtml.dll - ok
11:24:35.0818 0x0dac  [ 0E3A7EC2B9590EA7767BBB1823630DEA, 6858B7050465DB8505CF9E932868B123B925376C05363EA5A9198B2AE15CF728 ] C:\Windows\System32\msxml6.dll
11:24:35.0818 0x0dac  C:\Windows\System32\msxml6.dll - ok
11:24:35.0818 0x0dac  [ 9BC8610C32C96A2983A65DC21CAFA921, 2A4195F663C9D55939E3D8FEAA208090FDB0B8801A60164A7325B53104797CBC ] C:\Windows\System32\UXInit.dll
11:24:35.0818 0x0dac  C:\Windows\System32\UXInit.dll - ok
11:24:35.0818 0x0dac  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] C:\Windows\System32\shsvcs.dll
11:24:35.0818 0x0dac  C:\Windows\System32\shsvcs.dll - ok
11:24:35.0818 0x0dac  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] C:\Windows\System32\schedsvc.dll
11:24:35.0818 0x0dac  C:\Windows\System32\schedsvc.dll - ok
11:24:35.0834 0x0dac  [ BC414631876B2F28B8DAB08E849C12C5, 5973654AA3E90E6B699B0A43F645B893D95BAA803129B6967D746C8239AB26E3 ] C:\Windows\System32\ktmw32.dll
11:24:35.0834 0x0dac  C:\Windows\System32\ktmw32.dll - ok
11:24:35.0834 0x0dac  [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7, 4BC5A1279885EEFBEB27333AF719622A5FCDD9606697692C1978E434CE264D80 ] C:\Windows\System32\taskcomp.dll
11:24:35.0834 0x0dac  C:\Windows\System32\taskcomp.dll - ok
11:24:35.0834 0x0dac  [ 945E54F23C72D37B8CD1987AF0DB63BF, C2B217C94DBCA0A31ED834B9D492B53B25B235DDD02B1D1200E76609D32772EA ] C:\Windows\System32\fveapi.dll
11:24:35.0834 0x0dac  C:\Windows\System32\fveapi.dll - ok
11:24:35.0834 0x0dac  [ 891ECFD08E2C538B7948CBC45106D697, 628D0D618FF3A70E9FBE3B2C7206C9365ED2297784A5F10FFA05BD2C56657013 ] C:\Windows\System32\fvecerts.dll
11:24:35.0834 0x0dac  C:\Windows\System32\fvecerts.dll - ok
11:24:35.0834 0x0dac  [ 694865362F0965779F92BCFE97712323, 825EB75E37AFE9B738869FB5D95020D4F44AD419C2F6C5A658F82A5242FDEF6C ] C:\Windows\System32\tbs.dll
11:24:35.0834 0x0dac  C:\Windows\System32\tbs.dll - ok
11:24:35.0849 0x0dac  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] C:\Windows\System32\drivers\http.sys
11:24:35.0849 0x0dac  C:\Windows\System32\drivers\http.sys - ok
11:24:35.0849 0x0dac  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] C:\Windows\System32\spoolsv.exe
11:24:35.0849 0x0dac  C:\Windows\System32\spoolsv.exe - ok
11:24:35.0849 0x0dac  [ 8269210DAF3B12BC8300631B28A2A442, EABEB792C2EA8D4A1A7B13281CF557C194D5667AE0BA2A2D5664908D8269113D ] C:\Windows\System32\wiarpc.dll
11:24:35.0849 0x0dac  C:\Windows\System32\wiarpc.dll - ok
11:24:35.0849 0x0dac  [ 40CB28DC346D03A6B78C9B3E932488F0, AFBD10AA9A9BAB794AD5ED1E8E125BA39E6BAAF588E310DD260FF560A15556C6 ] C:\Windows\System32\atiadlxx.dll
11:24:35.0849 0x0dac  C:\Windows\System32\atiadlxx.dll - ok
11:24:35.0849 0x0dac  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] C:\Windows\System32\BFE.DLL
11:24:35.0849 0x0dac  C:\Windows\System32\BFE.DLL - ok
11:24:35.0849 0x0dac  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] C:\Windows\System32\drivers\bowser.sys
11:24:35.0849 0x0dac  C:\Windows\System32\drivers\bowser.sys - ok
11:24:35.0865 0x0dac  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] C:\Windows\System32\drivers\mpsdrv.sys
11:24:35.0865 0x0dac  C:\Windows\System32\drivers\mpsdrv.sys - ok
11:24:35.0865 0x0dac  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] C:\Windows\System32\drivers\mrxsmb.sys
11:24:35.0865 0x0dac  C:\Windows\System32\drivers\mrxsmb.sys - ok
11:24:35.0865 0x0dac  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] C:\Windows\System32\drivers\mrxsmb10.sys
11:24:35.0865 0x0dac  C:\Windows\System32\drivers\mrxsmb10.sys - ok
11:24:35.0865 0x0dac  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] C:\Windows\System32\drivers\mrxsmb20.sys
11:24:35.0865 0x0dac  C:\Windows\System32\drivers\mrxsmb20.sys - ok
11:24:35.0865 0x0dac  [ C67F8A962B2534224D5908D16D2AD3CE, CAC1821F5E867285638AEE7AE33CE574BCCF16277AC5AD805650B48F7759B4B4 ] C:\Windows\System32\wfapigp.dll
11:24:35.0865 0x0dac  C:\Windows\System32\wfapigp.dll - ok
11:24:35.0880 0x0dac  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] C:\Windows\System32\wkssvc.dll
11:24:35.0880 0x0dac  C:\Windows\System32\wkssvc.dll - ok
11:24:35.0880 0x0dac  [ 4DAC56FA0F599553F41B8CCB5E6F5F6B, CBCD4B0A375347BE6462E074190A2C4B538C8939413FEA55697B79B56A63D4A8 ] E:\Program Files (x86)\CyberLink\YouCam6\CLWFLService6.exe
11:24:35.0880 0x0dac  E:\Program Files (x86)\CyberLink\YouCam6\CLWFLService6.exe - ok
11:24:35.0880 0x0dac  [ 03706015DB44368375AEBE6339490E66, 02EB28B5156E320C1EBABC03D37E94EB770A721B99E1DD276F8DC2A50D76C381 ] C:\Windows\System32\netcfgx.dll
11:24:35.0880 0x0dac  C:\Windows\System32\netcfgx.dll - ok
11:24:35.0880 0x0dac  [ AA9A06FBF753CAFDE0748244B58663A6, F62D2710085E0D2F8FBE405CAEB03558E6113362D74B10029DBF7A517AA4473A ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
11:24:35.0880 0x0dac  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe - ok
11:24:35.0880 0x0dac  [ 349B1D5D8D1B5A7B10BCD01470BD5F64, F0502E3D58713044F62F539B8738694E4CE9C619C665515F5ED2500C843C0C46 ] C:\Windows\System32\msvcp110.dll
11:24:35.0880 0x0dac  C:\Windows\System32\msvcp110.dll - ok
11:24:35.0896 0x0dac  [ C72ABC6B7B90A61364B6DD889B5435F3, 0CBBD9691F08434DA3617874F99C6DD87538CBD65B5D8BC39FCE378D4ED29EED ] C:\Windows\System32\msvcr110.dll
11:24:35.0896 0x0dac  C:\Windows\System32\msvcr110.dll - ok
11:24:35.0896 0x0dac  [ A2B0924D50F4435FD389499047CE553A, 8D16D5CAAD71AAAAA1479F8477D2928B66581C79932A49A21EDF93DB2803AB9C ] C:\Windows\SysWOW64\ntdll.dll
11:24:35.0896 0x0dac  C:\Windows\SysWOW64\ntdll.dll - ok
11:24:35.0896 0x0dac  [ 1834B31C749B86DAC233BBBA1C03BC48, 27FCA9196842C0BB53CCAD895870A0EB10D2F8ED67E5486A4437067BD4BC4448 ] C:\Windows\System32\mscms.dll
11:24:35.0896 0x0dac  C:\Windows\System32\mscms.dll - ok
11:24:35.0896 0x0dac  [ 2A107B611C91CD256466C58C0D776E9D, 58EA4F6E0FE7EFB8D3024AE71EE16848C2A00BA5224C8054C80134F99D9A72AB ] C:\Windows\System32\wow64.dll
11:24:35.0896 0x0dac  C:\Windows\System32\wow64.dll - ok
11:24:35.0896 0x0dac  [ C3D487827E48CC5EC17994FEC5BDFF87, 5FCEA3EEA583755D0C9F6005ED3032E9DFECB57F504DC67701AE7D2D2631C30E ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys
11:24:35.0896 0x0dac  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys - ok
11:24:35.0912 0x0dac  [ 1B8714609585FAFC70671F391818C1AE, F6E66847B25A36AD120604D0F7D9AA2221EC0937412AA179FC5C687402A82690 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
11:24:35.0912 0x0dac  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll - ok
11:24:35.0912 0x0dac  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] C:\Windows\System32\pcasvc.dll
11:24:35.0912 0x0dac  C:\Windows\System32\pcasvc.dll - ok
11:24:35.0912 0x0dac  [ 7434E01FBCA3CB86539C39412A31D5E1, E40D5AEBB3A5D8F53C76E3FBF0C07B9C0227914C869F57622EA44A212383EE6D ] C:\Windows\System32\wow64win.dll
11:24:35.0912 0x0dac  C:\Windows\System32\wow64win.dll - ok
11:24:35.0912 0x0dac  [ 0F090A77E664CB0F70AB8D3B230B760C, A08EA0409B3BF88AB12792F721FA3A692BBE640DF2A06641E142843A7044EC5E ] C:\Windows\System32\wow64cpu.dll
11:24:35.0912 0x0dac  C:\Windows\System32\wow64cpu.dll - ok
11:24:35.0912 0x0dac  [ 8C1FD73CC27EDD8D3344C632571C224C, 52023B9D578C4EB49238B7F6390D508C48012CEA52B7042F21B7065718C7C14E ] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe
11:24:35.0912 0x0dac  C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsSysCtrlService.exe - ok
11:24:35.0927 0x0dac  [ C35448FA3C43DA8530D80BD0962A6EBB, 0DBF39B17AE4D6A4D269E7CA24577B407823A403BD5112223D3D9D0F7ECEE9E4 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\device.dll
11:24:35.0927 0x0dac  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\device.dll - ok
11:24:35.0927 0x0dac  [ 11FE7637A49B67D9B1F895B2AD4D982F, D448DA9083044E0B2627042D9FA5DC65C74A34AB09FF627777634B254260F4FB ] C:\Windows\System32\iprip.dll
11:24:35.0927 0x0dac  C:\Windows\System32\iprip.dll - ok
11:24:35.0927 0x0dac  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] C:\Windows\System32\snmptrap.exe
11:24:35.0927 0x0dac  C:\Windows\System32\snmptrap.exe - ok
11:24:35.0927 0x0dac  [ 76161B9D78A275F8F28DD67436013110, E4AE9648BDED9035D39DF20C3A6F453F67D49D7899038B21D88FFD4EFFCC4C08 ] C:\Windows\SysWOW64\kernel32.dll
11:24:35.0927 0x0dac  C:\Windows\SysWOW64\kernel32.dll - ok
11:24:35.0927 0x0dac  [ A8704A10FFDE468F4AB18EBF82A9A86F, 40F6502679CEE0B657B0005278FBE7213BDDA6DEAACF868058E17737C182E1B4 ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll
11:24:35.0927 0x0dac  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcp80.dll - ok
11:24:35.0943 0x0dac  [ 4004299B7AF4CBFF6540F1798899A11F, 5DD3AE149B7228A769F2FE95355795AC98ACD8CDFB78954A423A357F717203C3 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
11:24:35.0943 0x0dac  C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
11:24:35.0943 0x0dac  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] C:\Windows\System32\provsvc.dll
11:24:35.0943 0x0dac  C:\Windows\System32\provsvc.dll - ok
11:24:35.0943 0x0dac  [ D67472125471784DE7147946EDA25FEB, F41960118F412B6CA5E80AE5E8DB9AECDD043A7DB34388FF57C6F9C5A0056F91 ] C:\Windows\SysWOW64\advapi32.dll
11:24:35.0943 0x0dac  C:\Windows\SysWOW64\advapi32.dll - ok
11:24:35.0943 0x0dac  [ 461B713DE7F353C6447B744F1A049930, 3551C57128DAFA009C9DB3EE0D798D94B269D1605F74897566D7E79E5FDD437B ] C:\Windows\SysWOW64\KernelBase.dll
11:24:35.0943 0x0dac  C:\Windows\SysWOW64\KernelBase.dll - ok
11:24:35.0943 0x0dac  [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3, 01EB95FA3943CF3C6B1A21E473A5C3CB9FCBCE46913B15C96CAC14E4F04075B4 ] C:\Windows\SysWOW64\user32.dll
11:24:35.0943 0x0dac  C:\Windows\SysWOW64\user32.dll - ok
11:24:35.0943 0x0dac  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] C:\Windows\System32\sstpsvc.dll
11:24:35.0943 0x0dac  C:\Windows\System32\sstpsvc.dll - ok
11:24:35.0958 0x0dac  [ 980305AC3AF53C1964A11190451ABB32, D0FE0845F9FB51B1F556E3A1D327F30603033A1FAFC17DFA3D5047B93C7D4D82 ] C:\Windows\SysWOW64\gdi32.dll
11:24:35.0958 0x0dac  C:\Windows\SysWOW64\gdi32.dll - ok
11:24:35.0958 0x0dac  [ 9DC80A8AAAAAC397BDAB3C67165A824E, 051636BFDFF7AB0E4191354E846BD0DACCA1A01FCC13C1AFED91D8DBFE17127A ] C:\Windows\SysWOW64\msvcrt.dll
11:24:35.0958 0x0dac  C:\Windows\SysWOW64\msvcrt.dll - ok
11:24:35.0958 0x0dac  [ EC6BA7C92FA5B2AA4AFDF4DF22AEDAB7, 690F12C490BEE2BF17AB7B6804E6E9B96F51C304350CCDE80FE5C7EEFA89720E ] C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll
11:24:35.0958 0x0dac  C:\Windows\winsxs\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_88e41e092fab0294\msvcr80.dll - ok
11:24:35.0958 0x0dac  [ D3F27BC412760F184619B492C7998547, BC78C295FB0C400F07A1F085FBB6F84E7553497E04DEED24041F8DF83C2E0475 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\platform.dll
11:24:35.0958 0x0dac  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\platform.dll - ok
11:24:35.0958 0x0dac  [ CC23295DA8F7B5C53F93804D2F5D30EB, B290D96C40FBA934DE6CFF82D9BBA6780922CC5012C61599BD5006DAEDC82DDB ] C:\Windows\SysWOW64\lpk.dll
11:24:35.0958 0x0dac  C:\Windows\SysWOW64\lpk.dll - ok
11:24:35.0974 0x0dac  [ D8BED6BA298DBAAF6F3D746739FCD333, 83A40845EC448943F4737B730F95860983919677D84922E44EED4BECDFA71A31 ] C:\Windows\SysWOW64\rpcrt4.dll
11:24:35.0974 0x0dac  C:\Windows\SysWOW64\rpcrt4.dll - ok
11:24:35.0974 0x0dac  [ CFC97F07904067A1E5FAE195D534DA3A, EB4D2D127312EB09E2ACCA3276779E80F90FAF77322684BABF72B8EC6E1F906C ] C:\Windows\SysWOW64\sechost.dll
11:24:35.0974 0x0dac  C:\Windows\SysWOW64\sechost.dll - ok
11:24:35.0974 0x0dac  [ A5F833506BF6A1B5D693E1499DEE2444, 045874B7D37F49216E37D551076FF440E29DB5196564E714207DF753DF7FDDEE ] C:\Windows\SysWOW64\usp10.dll
11:24:35.0974 0x0dac  C:\Windows\SysWOW64\usp10.dll - ok
11:24:35.0974 0x0dac  [ 10826DA2FC073702AEAB93AF3D73B066, 1B55FE13B52109F1E427FCE6F64A02CF37AB6732BE4C968479BD871DE1D38A06 ] C:\Windows\SysWOW64\sspicli.dll
11:24:35.0974 0x0dac  C:\Windows\SysWOW64\sspicli.dll - ok
11:24:35.0974 0x0dac  [ D41D31D5B0C9B0CB2A34B878E84E7B6A, CFB009637B9BB5C52B0682DBC754399B3BAAEE9CBE65A590841F9D014C6E70E3 ] C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsAcpi.dll
11:24:35.0974 0x0dac  C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.05\AsAcpi.dll - ok
11:24:35.0990 0x0dac  [ F08F6FCD09F9BE94C37ACC1B344685FF, DE48D766258B46EFEAB16579421C4BD97ACC6883F782D00E9857F4A0CE7E8A34 ] C:\Windows\SysWOW64\cryptbase.dll
11:24:35.0990 0x0dac  C:\Windows\SysWOW64\cryptbase.dll - ok
11:24:35.0990 0x0dac  [ A6F09E5669D9A19035F6D942CAA15882, 68C8AF0CC1923E3A7245392F2480EE665D265DF300A609D2540BF7C6D9C1A1BE ] C:\Windows\SysWOW64\imm32.dll
11:24:35.0990 0x0dac  C:\Windows\SysWOW64\imm32.dll - ok
11:24:35.0990 0x0dac  [ C733D233B623B7FFCE5031E4B756EE26, 33CC8B140B0E4A9B702E3468BE2646AEE4273F20C6EA5BAC6C3D8FC8EDEF0881 ] C:\Windows\SysWOW64\profapi.dll
11:24:35.0990 0x0dac  C:\Windows\SysWOW64\profapi.dll - ok
11:24:35.0990 0x0dac  [ 386BF6FD9FC562B1A5558C49E1C3A6FB, 6ED5A61C911845027D0A67B2473603D87E79DB88F0C0C699CBB2D1639C1DFDA5 ] C:\Windows\SysWOW64\shell32.dll
11:24:35.0990 0x0dac  C:\Windows\SysWOW64\shell32.dll - ok
11:24:35.0990 0x0dac  [ D15618A0FF8DBC2C5BF3726BACC75A0B, ADD81EA1D208907D67802F0E96EC0327BA89021F870BA22B9C7E3A19013A6AE7 ] C:\Windows\SysWOW64\userenv.dll
11:24:35.0990 0x0dac  C:\Windows\SysWOW64\userenv.dll - ok
11:24:35.0990 0x0dac  [ 6A6B2EE4565A178035BE2A4FF6F2C968, E2E231F1C2E2CE19583483ACC53318651FA7CA2DE46BCB89B4CBF97CA0525122 ] C:\Windows\SysWOW64\wtsapi32.dll
11:24:36.0005 0x0dac  C:\Windows\SysWOW64\wtsapi32.dll - ok
11:24:36.0005 0x0dac  [ C9618BC9B2B0FD7C1138D8774795A79B, 0AC170669C2626519FA7A745C56BFBA6B83B8537488F5B9EB7BA72448E5E7A43 ] C:\Windows\SysWOW64\msctf.dll
11:24:36.0005 0x0dac  C:\Windows\SysWOW64\msctf.dll - ok
11:24:36.0005 0x0dac  [ D40CFBCF6E9960EA0F7090BCB26F2AD2, BEF2F399C6D9B39C10338055D5374C30411B415F03AC4369BEEA8D3A19B97A04 ] C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
11:24:36.0005 0x0dac  C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll - ok
11:24:36.0005 0x0dac  [ 357BE883C5236BFC7341CB9E82308908, 4DDB697FD9B7C516CF99D73C8799EA35BB97E2431216CD7C1045F17B06109FBF ] C:\Windows\System32\wlanapi.dll
11:24:36.0005 0x0dac  C:\Windows\System32\wlanapi.dll - ok
11:24:36.0005 0x0dac  [ 28DC376662EB61492BB33D98CD80CA5C, 62B98E091F9CFB8A9A934FC51C76E68DC9EB27E9832BF6FAC136EAEED4395286 ] E:\Program Files (x86)\ASUS\ASWLCCSVC.exe
11:24:36.0005 0x0dac  E:\Program Files (x86)\ASUS\ASWLCCSVC.exe - ok
11:24:36.0005 0x0dac  [ 8CC3C111D653E96F3EA1590891491D71, 1D326D7D116D76876EE2B14A5BFB7B4328E21DB9B5AAAB9CB67F8EFB93924230 ] C:\Windows\SysWOW64\shlwapi.dll
11:24:36.0005 0x0dac  C:\Windows\SysWOW64\shlwapi.dll - ok
11:24:36.0021 0x0dac  [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8, B1A9B2EF000917214C0198958CBD239D1D91B1720EC40DF041262A34D302AD74 ] C:\Windows\SysWOW64\winspool.drv
11:24:36.0021 0x0dac  C:\Windows\SysWOW64\winspool.drv - ok
11:24:36.0021 0x0dac  [ 928CF7268086631F54C3D8E17238C6DD, F058FAFB04E7EBD5CADE9B48195B7AA7C3508F332A89F5E6E5F3F071E8CADD4A ] C:\Windows\SysWOW64\ole32.dll
11:24:36.0021 0x0dac  C:\Windows\SysWOW64\ole32.dll - ok
11:24:36.0021 0x0dac  [ 6C765E82B57F2E66CE9C54AC238471D9, 97F410023F5C08B4BC5DBF89A642200E76F4025ADD9707C24FD89D673675BB43 ] C:\Windows\SysWOW64\oleaut32.dll
11:24:36.0021 0x0dac  C:\Windows\SysWOW64\oleaut32.dll - ok
11:24:36.0021 0x0dac  [ A6B726DCA228F7878E38368A1BDC68BE, 30E8300B09B876E3D4B2A9215C9CC070EADF915E1268F425B6F8E0596A0D3539 ] C:\Windows\System32\cryptnet.dll
11:24:36.0021 0x0dac  C:\Windows\System32\cryptnet.dll - ok
11:24:36.0021 0x0dac  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] C:\Windows\System32\cryptsvc.dll
11:24:36.0021 0x0dac  C:\Windows\System32\cryptsvc.dll - ok
11:24:36.0036 0x0dac  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] C:\Windows\System32\dps.dll
11:24:36.0036 0x0dac  C:\Windows\System32\dps.dll - ok
11:24:36.0036 0x0dac  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] C:\Windows\System32\IKEEXT.DLL
11:24:36.0036 0x0dac  C:\Windows\System32\IKEEXT.DLL - ok
11:24:36.0036 0x0dac  [ BAAFAF9CEAEC0B73C2A3550A01F6CECB, 018CB95A43CEA2063EA24691C71D51EF60D522C21502ABA8AD93876363D4B857 ] C:\Windows\System32\taskschd.dll
11:24:36.0036 0x0dac  C:\Windows\System32\taskschd.dll - ok
11:24:36.0036 0x0dac  [ F436E847FA799ECD75AD8C313673F450, 3C8BF3F0C08C7FA8DE5CD9C60AD9D00B742E84EB1FEBEEBA0F7159844BAAA471 ] C:\Windows\SysWOW64\cfgmgr32.dll
11:24:36.0036 0x0dac  C:\Windows\SysWOW64\cfgmgr32.dll - ok
11:24:36.0036 0x0dac  [ 7ED3A9C3763725BD700946971215EE77, 6150D52945E10B69CFA5E3E637DCEBA67158092C6350B4AFE456EA846CA90C18 ] C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
11:24:36.0036 0x0dac  C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe - ok
11:24:36.0052 0x0dac  [ 0E2F58F6E698EDCB9E58FAD0CBCD0567, 426FB40A065FEF61980C803EF72D0D326C623340C3AE99CA8AFFDEFB81E8D49D ] C:\Windows\System32\vssapi.dll
11:24:36.0052 0x0dac  C:\Windows\System32\vssapi.dll - ok
11:24:36.0052 0x0dac  [ C1985BD968C9AFD75A7113DC0DBB68CB, AB271A826002557F25E8D9EE522E0A12D51A9FDB887A3DFE67419BFB58CCD773 ] C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\css_core.dll
11:24:36.0052 0x0dac  C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\css_core.dll - ok
11:24:36.0052 0x0dac  [ 77B5035BC6EDF4D1B6265391AECEE4C0, FE69B715F04446BD42AF1B672E6AC54E954CFE0C847BFD2056CB11CF017B1844 ] C:\Windows\System32\vpnikeapi.dll
11:24:36.0052 0x0dac  C:\Windows\System32\vpnikeapi.dll - ok
11:24:36.0052 0x0dac  [ A543AC1F7138376D778D630A35FCBC4C, 2D824C66A97FC8C39DAFA397CC47495B712D175EEF393486946DA8936BDD466A ] C:\Windows\SysWOW64\psapi.dll
11:24:36.0052 0x0dac  C:\Windows\SysWOW64\psapi.dll - ok
11:24:36.0052 0x0dac  [ 10FB16B50AFFDA6D44588F3C445DC273, 6CDA17DA9B44D11E69F7C6682FA633EA75731623BB21B429A0FE2086ED4495A7 ] C:\Windows\SysWOW64\setupapi.dll
11:24:36.0052 0x0dac  C:\Windows\SysWOW64\setupapi.dll - ok
11:24:36.0068 0x0dac  [ 287923557447D7E4BDD7E65B1F0F5428, 14D85A0F036F28D77AA9723C3D7E8C4DA9BDFF8A1AD9BEA6FE5756DBF5D00F08 ] C:\Windows\System32\vsstrace.dll
11:24:36.0068 0x0dac  C:\Windows\System32\vsstrace.dll - ok
11:24:36.0068 0x0dac  [ 2EEFF4502F5E13B1BED4A04CCAD64C08, 209FF1B6D46D1AC99518FCF54F2F726143B2DBF2C5FDA90212FBEF7526F7CBF5 ] C:\Windows\SysWOW64\devobj.dll
11:24:36.0068 0x0dac  C:\Windows\SysWOW64\devobj.dll - ok
11:24:36.0068 0x0dac  [ D5AEFAD57C08349A4393D987DF7C715D, C36A45BC2448DF30CD17BD2F8A17FC196FAFB685612CACCEB22DC7B58515C201 ] C:\Windows\SysWOW64\winmm.dll
11:24:36.0068 0x0dac  C:\Windows\SysWOW64\winmm.dll - ok
11:24:36.0068 0x0dac  [ 7FF15A4F092CD4A96055BA69F903E3E9, 1B594E6D057C632ABB3A8CF838157369024BD6B9F515CA8E774B22FE71A11627 ] C:\Windows\SysWOW64\ws2_32.dll
11:24:36.0068 0x0dac  C:\Windows\SysWOW64\ws2_32.dll - ok
11:24:36.0068 0x0dac  [ DF13A51A5C591887D2EC6AE64CEED0FA, DFD503AEBCAA056B2B0E669ACA52F6D26F4E6892F2DCFCCD902752C23A621653 ] C:\Windows\SysWOW64\wsock32.dll
11:24:36.0068 0x0dac  C:\Windows\SysWOW64\wsock32.dll - ok
11:24:36.0083 0x0dac  [ EE19C85CA685A275BE346EC41F1870F9, F071D88C38C62E9D88DDE29F451B2B581499758A7E60BDA6DED3376280C5A635 ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_72d576ad8665e853\GdiPlus.dll
11:24:36.0083 0x0dac  C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_72d576ad8665e853\GdiPlus.dll - ok
11:24:36.0083 0x0dac  [ CC09E0C9A2D89C6E71D093DC8BD121B7, 5F92457E27D817541EBA92FED984D2E6C1E35AD4E4E4CAE0F0778B795C260FAA ] C:\Windows\SysWOW64\crypt32.dll
11:24:36.0083 0x0dac  C:\Windows\SysWOW64\crypt32.dll - ok
11:24:36.0083 0x0dac  [ A90DC9ABD65DB1A8902F361103029952, 26798758976CE53251AC342B966BE0363AE1794BD965C452F5DEBC33E18969F0 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
11:24:36.0083 0x0dac  C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
11:24:36.0083 0x0dac  [ DC6612A9EE015A36BA2A27BC9CC12537, F4456A3E4028BE3BDE46363290CCC1E8420034A122596D86272CE4B554C78DB5 ] C:\Windows\SysWOW64\mfc42.dll
11:24:36.0083 0x0dac  C:\Windows\SysWOW64\mfc42.dll - ok
11:24:36.0083 0x0dac  [ 6377051C63D5552A311935C67E9FDFDC, 3FB82988AAB66813567E8DB951D4EE87F156201070F005FDBF52EF998A323E65 ] C:\Windows\SysWOW64\nsi.dll
11:24:36.0083 0x0dac  C:\Windows\SysWOW64\nsi.dll - ok
11:24:36.0099 0x0dac  [ CFF35B879D1618D42C86644C717BA947, 1837275202628D3320867A3BF8CFDA15491730C4B74215F7C0D7E140BF01AC3C ] C:\Windows\SysWOW64\winnsi.dll
11:24:36.0099 0x0dac  C:\Windows\SysWOW64\winnsi.dll - ok
11:24:36.0099 0x0dac  [ 7D34AF98A706230CC2DEDFE0CABF87AB, 93237B839C2BC6E84C2C675BB211CA0FB781B348A033EF648A9AA5BDAC1EFDAE ] C:\Windows\SysWOW64\odbc32.dll
11:24:36.0099 0x0dac  C:\Windows\SysWOW64\odbc32.dll - ok
11:24:36.0099 0x0dac  [ FF5688D309347F2720911D8796912834, 3B0D73C50D40A6F42629B7750F99F656BF5C1C50237D5F98B6C0F2CE5E2DA359 ] C:\Windows\SysWOW64\clbcatq.dll
11:24:36.0099 0x0dac  C:\Windows\SysWOW64\clbcatq.dll - ok
11:24:36.0099 0x0dac  [ 938F39B50BAFE13D6F58C7790682C010, 902000EE51EFEABAF6A4B30F880AA37083D2232C6FC622CA513C4A823390FEDA ] C:\Windows\SysWOW64\msasn1.dll
11:24:36.0099 0x0dac  C:\Windows\SysWOW64\msasn1.dll - ok
11:24:36.0099 0x0dac  [ 43964FA89CCF97BA6BE34D69455AC65F, 10E3B89A5470E1BB6F73382135DD2352F5073C1EE8485D7476CFB5122D4AAA2F ] C:\Windows\SysWOW64\uxtheme.dll
11:24:36.0099 0x0dac  C:\Windows\SysWOW64\uxtheme.dll - ok
11:24:36.0114 0x0dac  [ 1F5AFD468EB5E09E9ED75A087529EAB5, 8204DBCC054C1E54B6065BACB78C55716681AD91759E25111B4E4797E51D0AA3 ] C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll
11:24:36.0114 0x0dac  C:\Windows\winsxs\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_cbf5e994470a1a8f\mfc80.dll - ok
11:24:36.0114 0x0dac  [ 7321F18D1F820612ED0E9F2D4B578A7E, 612BD7DE1DFBD100BD6ACB37A38565D88C39842D990D296B9B8E1FB75C3A94E7 ] C:\Windows\SysWOW64\cryptsp.dll
11:24:36.0114 0x0dac  C:\Windows\SysWOW64\cryptsp.dll - ok
11:24:36.0114 0x0dac  [ 5997D769CDB108390DCFAEBF442BF816, 0E25CA984C0EEB629184423FAA9BC6D4356DF9A93F281E06DC83B4AC638AEC4A ] C:\Windows\SysWOW64\RpcRtRemote.dll
11:24:36.0114 0x0dac  C:\Windows\SysWOW64\RpcRtRemote.dll - ok
11:24:36.0114 0x0dac  [ ED8EC63F7522DF4852147C84EC62C36A, 75633011CD28DCBD4834211A9D415F17DE15BFCD80FB9FF6CE25CBBD4E9899AF ] C:\Windows\SysWOW64\rsaenh.dll
11:24:36.0114 0x0dac  C:\Windows\SysWOW64\rsaenh.dll - ok
11:24:36.0114 0x0dac  [ 0B3595A4FF0B36D68E5FC67FD7D70FDC, 372AF797353F9335915CD06D4076BAB8410775DCAF2DAC0593197D7C41BBFFB2 ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll
11:24:36.0114 0x0dac  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcp80.dll - ok
11:24:36.0130 0x0dac  [ C9564CF4976E7E96B4052737AA2492B4, C3AC989C8489A23BB96400B1856F5325FFC67E844F04651EA5D61BC20A991C6D ] C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll
11:24:36.0130 0x0dac  C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\msvcr80.dll - ok
11:24:36.0130 0x0dac  [ ABA457BFC7EC0B5E130B2F1E0F549DFF, C944C75C351A276952D0A869F9ED3DF8674E9479797EE7B03D13E8FDCDEB2DC4 ] C:\Windows\SysWOW64\odbcint.dll
11:24:36.0130 0x0dac  C:\Windows\SysWOW64\odbcint.dll - ok
11:24:36.0130 0x0dac  [ 93F304DEB07095BCF33BD1C17C2DB2A7, DCD4A810512BE0D86E019DB19C4317AB3FD2FEEE1166162155F6B5BA7D0EFF4F ] C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
11:24:36.0130 0x0dac  C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe - ok
11:24:36.0130 0x0dac  [ E94C583CDE2348950155F2AF2876F34D, D00C7E0D665E467B712C68A446CC5BE14FDA743A2301878B3CEB72CDD0A8B8E7 ] C:\Windows\SysWOW64\mswsock.dll
11:24:36.0130 0x0dac  C:\Windows\SysWOW64\mswsock.dll - ok
11:24:36.0130 0x0dac  [ 702254574E7E52052DE39408457B7149, 645CA9E88DA21C63710A04A0F54421018DF415A3D612112C71A255C49325C082 ] C:\Windows\SysWOW64\version.dll
11:24:36.0130 0x0dac  C:\Windows\SysWOW64\version.dll - ok
11:24:36.0146 0x0dac  [ 28A09777D2D952122567A8A82F1A2C7B, 772260DF36AE85A0619C51402DE416E0C329976B724C8E9C4F8C013CBB7C7289 ] C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll
11:24:36.0146 0x0dac  C:\Windows\winsxs\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.6195_none_03ce2c72205943d3\mfc80ENU.dll - ok
11:24:36.0146 0x0dac  [ EE5C8E27C37B79CB54A2FCEEED2DC262, 0A5E200FD65A491756B951A4A0ED39B88B7B313E97C2BBF3C91AC4C290772BB7 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
11:24:36.0146 0x0dac  C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
11:24:36.0146 0x0dac  [ 7069AAB8536F29ED7323140973A2894B, 04B7FB6C64BFA3B80549F35CEF36D5DAE5D19A40E42444B3665B6BEFDF98EB5F ] C:\Windows\SysWOW64\msdmo.dll
11:24:36.0146 0x0dac  C:\Windows\SysWOW64\msdmo.dll - ok
11:24:36.0146 0x0dac  [ 586B7EC1604986F4DD4EEBB54818D3E9, 2F5FAFDF72C9543E082B63DA0952DB7121320A5EE06D45C9622A3DB64232B20E ] E:\Program Files (x86)\CyberLink\YouCam6\subsys\PyFaceLogin\CLWFL.dll
11:24:36.0146 0x0dac  E:\Program Files (x86)\CyberLink\YouCam6\subsys\PyFaceLogin\CLWFL.dll - ok
11:24:36.0146 0x0dac  [ 919001D2BB17DF06CA3F8AC16AD039F6, 5169ACFBE9E9D4C4012773ECDD28231C952675EF0C272A40F226E7B5D671B18B ] C:\Windows\SysWOW64\sxs.dll
11:24:36.0146 0x0dac  C:\Windows\SysWOW64\sxs.dll - ok
11:24:36.0161 0x0dac  [ A7A8CA53D9C9FD90C07AB0EB38E5316B, B98722E76601A98F038F40703C4B8BD21B5EC3B65DC1B07B7C367C06448F8A0E ] C:\Windows\System32\dbghelp.dll
11:24:36.0161 0x0dac  C:\Windows\System32\dbghelp.dll - ok
11:24:36.0161 0x0dac  [ CCE3B423254296E4E1C3C52AB504108F, 045EE134F1A1A6C00628F964DDB882A6E3893017025ECA291B01C2870579EDA9 ] C:\Program Files\Microsoft Security Client\MpAsDesc.dll
11:24:36.0161 0x0dac  C:\Program Files\Microsoft Security Client\MpAsDesc.dll - ok
11:24:36.0161 0x0dac  [ F5CEF064C7E6D95DA86B9D064A56A969, F118CD4364690F37A07AE458E043E8CFBA98F332DC9E7228C83409CF26F6EF6D ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
11:24:36.0161 0x0dac  C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
11:24:36.0161 0x0dac  [ 218A400108F280428FA22282D3268BBC, 7712687ABAEF6616E90AE5A321044C102E79EC23F4A1EAFB4278C93724873CB3 ] C:\Windows\System32\wscapi.dll
11:24:36.0161 0x0dac  C:\Windows\System32\wscapi.dll - ok
11:24:36.0161 0x0dac  [ A054EA8FBE16D4D34F06D81A4F0088E2, 1CD4EECFDA374C8A7B8AD4E664DC057B9C75813AF776A616DC6D845905567CBD ] C:\Windows\SysWOW64\WindowsCodecs.dll
11:24:36.0161 0x0dac  C:\Windows\SysWOW64\WindowsCodecs.dll - ok
11:24:36.0177 0x0dac  [ 1727B2A2F379A32B864C096FA794AADC, 87B77A5DF95F3A1C5ED6DEF820C7E384BEFCBAA2FE1BB4781AC6F777A081E5CC ] C:\Windows\System32\aepic.dll
11:24:36.0177 0x0dac  C:\Windows\System32\aepic.dll - ok
11:24:36.0177 0x0dac  [ F9EEFFC65C68A45001D1349E652B8B6F, E5F223129416083A12A85D48C65B2C8D1BF1124110399938E144308C89F9241D ] C:\Windows\System32\drivers\NisDrvWFP.sys
11:24:36.0177 0x0dac  C:\Windows\System32\drivers\NisDrvWFP.sys - ok
11:24:36.0177 0x0dac  [ D4FAC263861BAE06971C7F7D0A8EBF15, D494DEF0024288B9CC56EC6B500FF5828144BE9B8E7033340509EC5E68F8DED0 ] C:\Windows\System32\ncsi.dll
11:24:36.0177 0x0dac  C:\Windows\System32\ncsi.dll - ok
11:24:36.0177 0x0dac  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] C:\Windows\System32\nlasvc.dll
11:24:36.0177 0x0dac  C:\Windows\System32\nlasvc.dll - ok
11:24:36.0177 0x0dac  [ C6DCD1D11ED6827F05C00773C3E7053C, EA23BE261C9C04F44215D254D7A80FD0AEE84C6F192D0FEE49A7CF74ED3CB1A6 ] C:\Windows\System32\sfc.dll
11:24:36.0177 0x0dac  C:\Windows\System32\sfc.dll - ok
11:24:36.0177 0x0dac  [ 895C9AB0A855547445C4181195230757, 89BDA385D8CCB75C3D7B1BDFA567AC441A931F4E499C0835FEE9D010343FABB6 ] C:\Windows\System32\sfc_os.dll
11:24:36.0177 0x0dac  C:\Windows\System32\sfc_os.dll - ok
11:24:36.0192 0x0dac  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] C:\Windows\System32\drivers\PEAuth.sys
11:24:36.0192 0x0dac  C:\Windows\System32\drivers\PEAuth.sys - ok
11:24:36.0192 0x0dac  [ 2BBF3FDB70B8965DFA0258CBAB41ECCE, 4EFA41765E46E90C6CBDB0DC1E0CD375D7AB3307C477171EBAA6A16AC32E5211 ] C:\Windows\System32\ssdpapi.dll
11:24:36.0192 0x0dac  C:\Windows\System32\ssdpapi.dll - ok
11:24:36.0192 0x0dac  [ 39C5F32747B3414D1BB216FDB1DEFC58, 6FAE64CB9748304090113903A5AE9E7154BE16BA2EEA7AB3EF04AB9D79B81380 ] C:\Windows\SysWOW64\dwmapi.dll
11:24:36.0192 0x0dac  C:\Windows\SysWOW64\dwmapi.dll - ok
11:24:36.0192 0x0dac  [ C335EC1182AC10B188705554E0BC1186, 963CD11CEF7A79559361134FDF9C07B8EA829A40D3996D77E95C291DD17AAD2B ] C:\Windows\SysWOW64\msvfw32.dll
11:24:36.0192 0x0dac  C:\Windows\SysWOW64\msvfw32.dll - ok
11:24:36.0192 0x0dac  [ CC5BF60E9D3F181C0B62AC91AD8634B8, AFF680E62D989A62CBDEC2BF70B6D17F7615F9826EAEE0C8A524AF80F9FF862D ] C:\Windows\SysWOW64\qcap.dll
11:24:36.0192 0x0dac  C:\Windows\SysWOW64\qcap.dll - ok
11:24:36.0208 0x0dac  [ 75F5E1FE8D55CF8E577E0EC5F2290D3F, F4E2C81F0834018052A481AE8D7DF4780302A6844160CCDC09F7D82D3B992BDE ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll
11:24:36.0208 0x0dac  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll - ok
11:24:36.0208 0x0dac  [ 0AE0C4955E1DE29CCDC9DA1B816FE5EE, 93FDF0B256BCF62FEF1BF64775F5C19460D0269C1F4A11FBC3FF118851E75033 ] C:\Windows\SysWOW64\quartz.dll
11:24:36.0208 0x0dac  C:\Windows\SysWOW64\quartz.dll - ok
11:24:36.0208 0x0dac  [ 8FDA02E3E944E203E118F3DABA7C026D, A63DE68159B73FA9951E89F64471AA0734E8BBB3CF4A785F84162DF8670E3D40 ] C:\Windows\SysWOW64\PSIKey.dll
11:24:36.0208 0x0dac  C:\Windows\SysWOW64\PSIKey.dll - ok
11:24:36.0208 0x0dac  [ F115AF58ABE5605D7D709CBFBD83F418, 4855FCD6E455D6E374CE92E5B37D61E7E6D8A861BA76521E7CC2542621853471 ] C:\Windows\SysWOW64\PSIService.exe
11:24:36.0208 0x0dac  C:\Windows\SysWOW64\PSIService.exe - ok
11:24:36.0208 0x0dac  [ 5BB8C06EB5EA4BA22EE8A678F2D79B25, 019E9274DE2F5BAB16B4632B8A2E93DFC8DF0C08EC4EEA947B337FD29EB2E0CC ] C:\Windows\SysWOW64\devenum.dll
11:24:36.0208 0x0dac  C:\Windows\SysWOW64\devenum.dll - ok
11:24:36.0224 0x0dac  [ 3FD15B4611D9BDA3F8013548C0ECAECA, B47A8D9985D9B71EB870816A0AB2B6403D394CCBDF7DE5378D5721D58D68D28D ] C:\Windows\SysWOW64\ntmarta.dll
11:24:36.0224 0x0dac  C:\Windows\SysWOW64\ntmarta.dll - ok
11:24:36.0224 0x0dac  [ A8BB45F9ECAD993461E0FEF8E2A99152, ACB756EA54E71F124D928829666B5B439785593877FF7C0C76ADCF954F4E6C94 ] C:\Windows\SysWOW64\Wldap32.dll
11:24:36.0224 0x0dac  C:\Windows\SysWOW64\Wldap32.dll - ok
11:24:36.0224 0x0dac  [ D1DE1EAFDE97BE41CF6585027FF3E732, 76F17D4DF440D6734DC8157092D94EB18C2A73A0A49BEEA289E7B3EDE30E86A2 ] C:\Windows\SysWOW64\comdlg32.dll
11:24:36.0224 0x0dac  C:\Windows\SysWOW64\comdlg32.dll - ok
11:24:36.0224 0x0dac  [ E7B9D5FF20FFDD4AAE2EF1D1B8C27A37, 689D126B1B42140D5049015E3E324268E6542D4BC6CC14E31D8B89A25B94BAA5 ] C:\Windows\SysWOW64\imagehlp.dll
11:24:36.0224 0x0dac  C:\Windows\SysWOW64\imagehlp.dll - ok
11:24:36.0224 0x0dac  [ 8E01332CC4B68BC6B5B7EFFE374442AA, A4AD1D2FD3EC2F26949DBBC388F9FFF3713AD7EB4E9220AF817EBB5223E467C6 ] C:\Windows\SysWOW64\oleacc.dll
11:24:36.0224 0x0dac  C:\Windows\SysWOW64\oleacc.dll - ok
11:24:36.0224 0x0dac  [ 68EAAEDF0365168B804E8728368FA946, 1FA25087E8B247B099B729F780DBF24F77FD34F58186A1C94329261CF3D18B8E ] C:\Windows\SysWOW64\wintrust.dll
11:24:36.0224 0x0dac  C:\Windows\SysWOW64\wintrust.dll - ok
11:24:36.0239 0x0dac  [ E24FE90E9DE8D8AE70E59F7B01675DEF, DDB0691488DB424CC203505E27364B24E4410E599A972CF2C1AFF4E2F3E3C04F ] C:\Windows\SysWOW64\avicap32.dll
11:24:36.0239 0x0dac  C:\Windows\SysWOW64\avicap32.dll - ok
11:24:36.0239 0x0dac  [ C140F86932B5B61F54A4D836E2D34AB2, 94821597EC70F27BF11A747D5EED474C57F389F20A2E0C3F1D0CB3F00974A53B ] C:\Windows\SysWOW64\ksproxy.ax
11:24:36.0239 0x0dac  C:\Windows\SysWOW64\ksproxy.ax - ok
11:24:36.0239 0x0dac  [ 9C67F6BBDA3881CFD02095160CF91576, 6CE97C6F0AD8BE183DE935A7AAB7D46821E8DE9E55A4BFF54ACB49D056826A94 ] C:\Windows\SysWOW64\ksuser.dll
11:24:36.0239 0x0dac  C:\Windows\SysWOW64\ksuser.dll - ok
11:24:36.0239 0x0dac  [ 24498D084FAA7A459C91066EC241E1CE, 5214A26D8B441F7A55414DC2935AF6C76DB8C8D55F8677DA97D19943C69D765E ] C:\Windows\SysWOW64\vfwwdm32.dll
11:24:36.0239 0x0dac  C:\Windows\SysWOW64\vfwwdm32.dll - ok
11:24:36.0239 0x0dac  [ 6EF5F3F18413C367195F06E503AB86A6, 6F8B87FB4D67F9E76A51EF759B58A95D903C4AAC9C789A65A3FA1FC4F253D978 ] C:\Windows\SysWOW64\d3d9.dll
11:24:36.0239 0x0dac  C:\Windows\SysWOW64\d3d9.dll - ok
11:24:36.0255 0x0dac  [ 77B1471A490B53B24EFE136F09F76550, A650C3A244306F8E605BDA8E74BFE438356BA4403B0CB61E980D3183E3F0A7C7 ] C:\Windows\SysWOW64\d3d8thk.dll
11:24:36.0255 0x0dac  C:\Windows\SysWOW64\d3d8thk.dll - ok
11:24:36.0255 0x0dac  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] C:\Windows\System32\drivers\mspqm.sys
11:24:36.0255 0x0dac  C:\Windows\System32\drivers\mspqm.sys - ok
11:24:36.0255 0x0dac  [ 4DDACA8A66B95ABA02812FF3C13DE198, FC14FA85367B29A5DA6479D198B9FA1D9A41C965685F51D5F0166D72A9F4668E ] C:\Windows\SysWOW64\vidcap.ax
11:24:36.0255 0x0dac  C:\Windows\SysWOW64\vidcap.ax - ok
11:24:36.0255 0x0dac  [ 4BAA953BC60216E3C7531C45B1F1190F, 6FD5102660E28F218C55C0CA40C81066856B16A50F8B3959850190DE82D98148 ] E:\Program Files (x86)\CyberLink\YouCam6\Custom\Lang\ENU\IM.dll
11:24:36.0255 0x0dac  E:\Program Files (x86)\CyberLink\YouCam6\Custom\Lang\ENU\IM.dll - ok
11:24:36.0255 0x0dac  [ 5AA945234E9D4CCE4F715276B9AA712C, 65165BD131056816F009D987FC78AC86FFE0C3C38A27E73F873586B7FF4D59CF ] C:\Windows\System32\imageres.dll
11:24:36.0255 0x0dac  C:\Windows\System32\imageres.dll - ok
11:24:36.0270 0x0dac  [ 418E881201583A3039D81F43E39E6C78, C96AAC161E09BE12815A4E931E65F66DB1A456C03253EF1111AE66F44B1515FF ] C:\Windows\SysWOW64\winsta.dll
11:24:36.0270 0x0dac  C:\Windows\SysWOW64\winsta.dll - ok
11:24:36.0270 0x0dac  [ 210FCACAF902B2CD47CF9FD17D846146, 3F77AC721E084864C5966FF5337A90185F62203DC19C685328675500D629CB87 ] C:\Windows\System32\aeevts.dll
11:24:36.0270 0x0dac  C:\Windows\System32\aeevts.dll - ok
11:24:36.0270 0x0dac  [ EA735BF6DF13A857A83C99BF27A422AD, 026A57155FB9E01CFAFD8613980CDF0F3D744ABBBC66EFDC6C20B89980FB45CF ] C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
11:24:36.0270 0x0dac  C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe - ok
11:24:36.0270 0x0dac  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] C:\Windows\System32\drivers\secdrv.sys
11:24:36.0270 0x0dac  C:\Windows\System32\drivers\secdrv.sys - ok
11:24:36.0270 0x0dac  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] C:\Windows\System32\drivers\srvnet.sys
11:24:36.0270 0x0dac  C:\Windows\System32\drivers\srvnet.sys - ok
11:24:36.0286 0x0dac  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] C:\Windows\System32\drivers\tcpipreg.sys
11:24:36.0286 0x0dac  C:\Windows\System32\drivers\tcpipreg.sys - ok
11:24:36.0286 0x0dac  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] C:\Windows\System32\wiaservc.dll
11:24:36.0286 0x0dac  C:\Windows\System32\wiaservc.dll - ok
11:24:36.0286 0x0dac  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] C:\Windows\System32\drivers\srv2.sys
11:24:36.0286 0x0dac  C:\Windows\System32\drivers\srv2.sys - ok
11:24:36.0286 0x0dac  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] C:\Windows\System32\trkwks.dll
11:24:36.0286 0x0dac  C:\Windows\System32\trkwks.dll - ok
11:24:36.0286 0x0dac  [ 7DB5AA22A8A8E5C2D335F44853C1F6DE, A734A20357026C42950394682A52CBC3AF956D09F1949E1B4E95467E999BC428 ] C:\Windows\System32\wbemcomn.dll
11:24:36.0286 0x0dac  C:\Windows\System32\wbemcomn.dll - ok
11:24:36.0302 0x0dac  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] C:\Windows\System32\wbem\WMIsvc.dll
11:24:36.0302 0x0dac  C:\Windows\System32\wbem\WMIsvc.dll - ok
11:24:36.0302 0x0dac  [ 0364256B4A2A93A8C8CDA6B3B5A0EFF5, BDA403E6CACC249C467671FB1FAF7B77FB019326BC18F9F6CF377104520E2654 ] C:\Windows\System32\wiatrace.dll
11:24:36.0302 0x0dac  C:\Windows\System32\wiatrace.dll - ok
11:24:36.0302 0x0dac  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] C:\Windows\System32\drivers\srv.sys
11:24:36.0302 0x0dac  C:\Windows\System32\drivers\srv.sys - ok
11:24:36.0302 0x0dac  [ A3F5E8EC1316C3E2562B82694A251C9E, F3DC6AA6A9D3B5BBC730668FC52C1D4BB5D515D404578BDDD3D4869A7ED58822 ] C:\Windows\System32\wbem\fastprox.dll
11:24:36.0302 0x0dac  C:\Windows\System32\wbem\fastprox.dll - ok
11:24:36.0302 0x0dac  [ 0255C22D99602534F15CBB8D9B6F152F, 43CD89D6CA56E0B633142F7C86DA9E072EE0723B5EBC4CE8CCBCA58C396ECF54 ] C:\Windows\System32\wbem\WinMgmtR.dll
11:24:36.0302 0x0dac  C:\Windows\System32\wbem\WinMgmtR.dll - ok
11:24:36.0317 0x0dac  [ 0C52762C606BCF6A377D5E4688191A6B, C58C9A73AD07E3B93AB186D0D47C5F1CB7197771DBEE40646C3B801645BB388F ] C:\Windows\System32\wbem\WmiDcPrv.dll
11:24:36.0317 0x0dac  C:\Windows\System32\wbem\WmiDcPrv.dll - ok
11:24:36.0317 0x0dac  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] C:\Windows\System32\iphlpsvc.dll
11:24:36.0317 0x0dac  C:\Windows\System32\iphlpsvc.dll - ok
11:24:36.0317 0x0dac  [ 4581716B4BF76ACFD8E167EB0B26D82A, 39D822527114EEED68044CCE4D542767F53978D9E0A7F72638F1CA9A016DE13B ] C:\Windows\System32\fdPnp.dll
11:24:36.0317 0x0dac  C:\Windows\System32\fdPnp.dll - ok
11:24:36.0317 0x0dac  [ B5055B51BAA0FD0A736A88653DA3C1C0, A3BD057C7E8C926930BA7E9D11427D26FB37267026A0B72AB4021101EE424F74 ] C:\Windows\System32\fundisc.dll
11:24:36.0317 0x0dac  C:\Windows\System32\fundisc.dll - ok
11:24:36.0317 0x0dac  [ EE26D130808D16C0E417BBBED0451B34, 4886DCE4FAEF146A40BABD492A8000A2022FEA542A6135A9BAFD4CD09297B4E5 ] C:\Windows\System32\ntdsapi.dll
11:24:36.0317 0x0dac  C:\Windows\System32\ntdsapi.dll - ok
11:24:36.0317 0x0dac  [ 27B9E163740A226B65E4B9E186117911, 17411C6A6C1E699BC4B0C04D782FD9AA09CF577DBA41E743F7588904D489CB9F ] C:\Windows\System32\sqmapi.dll
11:24:36.0317 0x0dac  C:\Windows\System32\sqmapi.dll - ok
11:24:36.0333 0x0dac  [ 666A60F6F5E719856FF6254E0966EFF7, 58C072E7E215991E19C1CA062C476081982F7B9F039714539AE7FEB4981C200F ] C:\Windows\System32\wbem\wbemprox.dll
11:24:36.0333 0x0dac  C:\Windows\System32\wbem\wbemprox.dll - ok
11:24:36.0333 0x0dac  [ 7B38D7916A7CD058C16A0A6CA5077901, 3F6DD990E2DA5D3BD6D65A72CBFB0FE79EB30B118A8AD71B6C9BB5581A622DCE ] C:\Windows\System32\wdscore.dll
11:24:36.0333 0x0dac  C:\Windows\System32\wdscore.dll - ok
11:24:36.0333 0x0dac  [ 4C1244FEF74C60A4B1B151C76609CBE2, 3E500204A9232D5B332BE16C281A32B957D03BBA836851BE7754F030872FAC83 ] C:\Windows\System32\wsdchngr.dll
11:24:36.0333 0x0dac  C:\Windows\System32\wsdchngr.dll - ok
11:24:36.0333 0x0dac  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] C:\Windows\System32\browser.dll
11:24:36.0333 0x0dac  C:\Windows\System32\browser.dll - ok
11:24:36.0333 0x0dac  [ CFEFA40DDE34659BE5211966EAD86437, AC0A3AD8AA47012C40785013E2273FC571F416BC9C9FFDA418FE72B3123C1FB0 ] C:\Windows\System32\netmsg.dll
11:24:36.0333 0x0dac  C:\Windows\System32\netmsg.dll - ok
11:24:36.0348 0x0dac  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] C:\Windows\System32\srvsvc.dll
11:24:36.0348 0x0dac  C:\Windows\System32\srvsvc.dll - ok
11:24:36.0348 0x0dac  [ CFB89F5FF4D93244C722B4C86152870E, D68850BFA53D9A992A9332784D185368BC75CDAE83D3D6053B324AC921B06CF2 ] C:\Windows\System32\BrWia09b.dll
11:24:36.0348 0x0dac  C:\Windows\System32\BrWia09b.dll - ok
11:24:36.0348 0x0dac  [ 81749E073AC5857B044A686B406E5244, 3884EE705CA34235B29942FEDA8FEA654A21139B8C2A1D5E009C7D07D6E6ADF1 ] C:\Windows\System32\clusapi.dll
11:24:36.0348 0x0dac  C:\Windows\System32\clusapi.dll - ok
11:24:36.0348 0x0dac  [ 3B367397320C26DBA890B260F80D1B1B, 50BBE71B4380B5E86E197AF86F5C08266DD6B12344BA4ABDEA604B8C774C4147 ] C:\Windows\System32\hnetcfg.dll
11:24:36.0348 0x0dac  C:\Windows\System32\hnetcfg.dll - ok
11:24:36.0348 0x0dac  [ FF80CAD87555E8E4D2CFD7B9058343F8, 07653773FBEC1996408B8507B08E0E1E812830063F932F897F4B39EE63DDCDC4 ] C:\Windows\System32\sscore.dll
11:24:36.0348 0x0dac  C:\Windows\System32\sscore.dll - ok
11:24:36.0348 0x0dac  [ FEB91B4DA0D540865260A33838654FA3, 8636B008BA329D3E6CC235D08BA4C914EFF45DBFCB9297C893CCDA8D907BA946 ] C:\Windows\System32\nci.dll
11:24:36.0348 0x0dac  C:\Windows\System32\nci.dll - ok
11:24:36.0364 0x0dac  [ 344FCC9850C3A8A3B4D3C65151AF8E4C, C38853454E153B1AB4AEAE1AAFB7CB4B2E6234208CF24C09F3B2AFE25E271C5C ] C:\Windows\System32\resutils.dll
11:24:36.0364 0x0dac  C:\Windows\System32\resutils.dll - ok
11:24:36.0364 0x0dac  [ F7E457984E711DDBBB0BD7F0D8424D5F, EBB33FDE27B2EB9027541998B12D05BFAE4C041B1FA7945475339167CFAD4E02 ] C:\Windows\System32\BrUsi09a.dll
11:24:36.0364 0x0dac  C:\Windows\System32\BrUsi09a.dll - ok
11:24:36.0364 0x0dac  [ 5EB55F661DEBF156E126160BCD4D89F8, 948D1F627AA55D55FB3B558BA61B8366C5481A6041820631F24408F75EA5D2CC ] C:\Windows\System32\wbem\wbemcore.dll
11:24:36.0364 0x0dac  C:\Windows\System32\wbem\wbemcore.dll - ok
11:24:36.0364 0x0dac  [ EF2AE43BCD46ABB13FC3E5B2B1935C73, 81FC06F306F620845D7DD8D06E706309E70BC89B589C81F3478302A3F5F73431 ] C:\Windows\System32\winmm.dll
11:24:36.0364 0x0dac  C:\Windows\System32\winmm.dll - ok
11:24:36.0364 0x0dac  [ 087D8668C71634A3A3761135ABF16EEE, B7348A63299CFF4FFBF375E645A4850AE0F108D48D13AB25434CFAE7CF3D61FD ] C:\Windows\System32\wbem\esscli.dll
11:24:36.0364 0x0dac  C:\Windows\System32\wbem\esscli.dll - ok
11:24:36.0380 0x0dac  [ 0AB34456654C283DAA13B8D2BA21439B, 4B70FC5195DE39564E951C8542020BA3D4257E3D4488F69825F67A6099CB7549 ] C:\Windows\System32\wbem\repdrvfs.dll
11:24:36.0380 0x0dac  C:\Windows\System32\wbem\repdrvfs.dll - ok
11:24:36.0380 0x0dac  [ 718B6F51AB7F6FE2988A36868F9AD3AB, 76141B4E94C2766E2C34CEF523092948771A7893212EFADBE88D2171B85FF012 ] C:\Windows\System32\wbem\wbemsvc.dll
11:24:36.0380 0x0dac  C:\Windows\System32\wbem\wbemsvc.dll - ok
11:24:36.0380 0x0dac  [ 0143DB80DACFB7C2B5B7009ED9063353, 252885CF7C1BAB89B86908373546E5F5D674BEF7AACBDDCF321AD877CB9150A9 ] C:\Windows\System32\wbem\wmiutils.dll
11:24:36.0380 0x0dac  C:\Windows\System32\wbem\wmiutils.dll - ok
11:24:36.0380 0x0dac  [ DDD0357A92FA843EFF8915ED17253D6C, 0C78B1D41F0A7821186ADF653504F2BFF067CB512CB0E932047C301378BBADB6 ] C:\Windows\System32\wbem\WmiPrvSD.dll
11:24:36.0380 0x0dac  C:\Windows\System32\wbem\WmiPrvSD.dll - ok
11:24:36.0380 0x0dac  [ 2DF29664ED261F0FC448E58F338F0671, 4EFE79C383D0AF126FC4EE668D822563F8F037B1E61D73747A35FE11AAFDB8CE ] C:\Windows\System32\mprapi.dll
11:24:36.0380 0x0dac  C:\Windows\System32\mprapi.dll - ok
11:24:36.0380 0x0dac  [ 1CF21800E337F4039AAD4C94B4280EE4, EF434CEF6E62A202B85E8EC7916EB998E20B10675437CDE90084CDA938C0AA3F ] C:\Windows\System32\mprmsg.dll
11:24:36.0380 0x0dac  C:\Windows\System32\mprmsg.dll - ok
11:24:36.0395 0x0dac  [ D41FEBD098234F02485A4EA98D4730A4, 462DC8168C444F35B43BA3B8F7D77734665D84F1C6D25CAD7391C0145961628F ] C:\Windows\System32\ncobjapi.dll
11:24:36.0395 0x0dac  C:\Windows\System32\ncobjapi.dll - ok
11:24:36.0395 0x0dac  [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C, 78889511D6F471009674CC958F8BB77B4A79C952634B18E8AFF4A75AA6A60E87 ] C:\Windows\System32\ndiscapCfg.dll
11:24:36.0395 0x0dac  C:\Windows\System32\ndiscapCfg.dll - ok
11:24:36.0395 0x0dac  [ 3D6AF45673C4B31CDECD7F80AF09D443, 7D711D138C107816155AFA5E5FDC6892734074BEFF604B5904177B5D9ACE4670 ] C:\Windows\System32\rascfg.dll
11:24:36.0395 0x0dac  C:\Windows\System32\rascfg.dll - ok
11:24:36.0395 0x0dac  [ C3FFC0992B2D706976B5D4FEA1D01F05, A40EA91A3F254E7E9FA55A8B52438DDF9D557B3ADF3A0A36572D6D5CA2D830CA ] C:\Windows\System32\brdgcfg.dll
11:24:36.0395 0x0dac  C:\Windows\System32\brdgcfg.dll - ok
11:24:36.0395 0x0dac  [ 55DE45B116711881C852D2841E4C84DD, 18E5021530BB44042C85087BAE4FEDA633E01CDCBA09C90A5941B74C75133A35 ] C:\Windows\System32\tcpipcfg.dll
11:24:36.0395 0x0dac  C:\Windows\System32\tcpipcfg.dll - ok
11:24:36.0411 0x0dac  [ 6F40D6FB05E0C1E5402812B426971AF0, E41F138F0F2DB057F8DBB1587237C6FA8A2059B3D64EC894D1DC492A18DBBDED ] C:\Windows\System32\wbem\wbemess.dll
11:24:36.0411 0x0dac  C:\Windows\System32\wbem\wbemess.dll - ok
11:24:36.0411 0x0dac  [ 9690F420A99364C1E5C439914B0DE25C, 6C6E0B27C4255001FE5F1EAD911DE1A8BF922C405B0C8031A6BD253CEB1D02A6 ] C:\Program Files\Microsoft Security Client\NisSrv.exe
11:24:36.0411 0x0dac  C:\Program Files\Microsoft Security Client\NisSrv.exe - ok
11:24:36.0411 0x0dac  [ 88351B29B622B30962D2FEB6CA8D860B, A16CAD7D94C1C9807083BB36E9B4C3C14E6482C4CA2BDFACBCC86E737DDCE42E ] C:\Windows\System32\rasadhlp.dll
11:24:36.0411 0x0dac  C:\Windows\System32\rasadhlp.dll - ok
11:24:36.0411 0x0dac  [ 4ED32C3115AC5207F63B2DDB9EF21A6A, 235FB629D206E592BBB13E4452DA4B2590E635D1A2AA5FCE235A54D1E9984269 ] C:\Program Files\Microsoft Security Client\NisLog.dll
11:24:36.0411 0x0dac  C:\Program Files\Microsoft Security Client\NisLog.dll - ok
11:24:36.0411 0x0dac  [ 4449D23E8F197862F1B16F1E6C89C36C, 93AF52BF8E870C0381F027D3BB8F6829E449242074472F1593EB8172D7EB6559 ] C:\Windows\System32\diagperf.dll
11:24:36.0411 0x0dac  C:\Windows\System32\diagperf.dll - ok
11:24:36.0426 0x0dac  [ F7073C962C4FB7C415565DDE109DE49F, 781E7088DCEFBC34A808C3E7DA41A56112B3F23ABE9F54B5EF4D5CD9CD016B1D ] C:\Windows\System32\npmproxy.dll
11:24:36.0426 0x0dac  C:\Windows\System32\npmproxy.dll - ok
11:24:36.0426 0x0dac  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] C:\Windows\System32\wdi.dll
11:24:36.0426 0x0dac  C:\Windows\System32\wdi.dll - ok
11:24:36.0426 0x0dac  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] C:\Windows\System32\wpdbusenum.dll
11:24:36.0426 0x0dac  C:\Windows\System32\wpdbusenum.dll - ok
11:24:36.0426 0x0dac  [ E64D9EC8018C55873B40FDEE9DBEF5B3, 2DB11E7C631A9887CB75AFEAD2C79EC65F82C51F5F073CEFC8CDDF664EFF29C1 ] C:\Windows\System32\PortableDeviceApi.dll
11:24:36.0426 0x0dac  C:\Windows\System32\PortableDeviceApi.dll - ok
11:24:36.0426 0x0dac  [ E1B22739C933BE33F53DB58C5393ADD3, 26EE0DD091D2E00DECC774DC1EEDFFDE69AF74B0C769CCBE091AFC32C66E4207 ] C:\Windows\System32\Apphlpdm.dll
11:24:36.0426 0x0dac  C:\Windows\System32\Apphlpdm.dll - ok
11:24:36.0426 0x0dac  [ BF4AC709BE5BF64F331F5D67773A0C82, 96E5A2A12D386B8A7976FEC76FD350E6A3EEBDF5763F4BBF4AB18880E9F269E0 ] C:\Windows\System32\perftrack.dll
11:24:36.0426 0x0dac  C:\Windows\System32\perftrack.dll - ok
11:24:36.0442 0x0dac  [ 9719E3D834F5C8C43F56A93DFA497023, 4D78D4BD4835C0A237821967156C19DF4B90384A6BCB1F48CEAF35D003A0099A ] C:\Windows\System32\pnpts.dll
11:24:36.0442 0x0dac  C:\Windows\System32\pnpts.dll - ok
11:24:36.0442 0x0dac  [ E811F8510B133E70CF6E509FB809824F, 82541F2B15748250462B67B6C77530D4F7C45A1482237EC49B28F9FA5A414108 ] C:\Windows\System32\wdiasqmmodule.dll
11:24:36.0442 0x0dac  C:\Windows\System32\wdiasqmmodule.dll - ok
11:24:36.0442 0x0dac  [ 1075AB2C077B415760C0E948856B5126, D67804B4A038FC06BD84CBF9C047DD4C13073622027F825371DB98867EF4E9B9 ] C:\Windows\System32\wer.dll
11:24:36.0442 0x0dac  C:\Windows\System32\wer.dll - ok
11:24:36.0442 0x0dac  [ AFA79C343F9D1555F7E5D5FA70BB2A14, 440EF3ADC1F5C7A5ED3E872C8D8DFA61B039454C3CA67F8A51CA8BDCFDC4BA4A ] C:\Windows\System32\PortableDeviceConnectApi.dll
11:24:36.0442 0x0dac  C:\Windows\System32\PortableDeviceConnectApi.dll - ok
11:24:36.0442 0x0dac  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] C:\Windows\System32\drivers\WUDFRd.sys
11:24:36.0442 0x0dac  C:\Windows\System32\drivers\WUDFRd.sys - ok
11:24:36.0458 0x0dac  [ A3FCC4F97551087D65F8FEE879FEF736, 000EA00FD2644531F38D215972C22FE2BCE5B01CF483071398053099A342BF74 ] C:\Windows\System32\tdh.dll
11:24:36.0458 0x0dac  C:\Windows\System32\tdh.dll - ok
11:24:36.0458 0x0dac  [ 10F815BE90A66AAFC6C713D1BD626064, 01139FC04BC53594296F6A0E16B8D20B940F64BC8119FE7705C03C4947958F39 ] C:\Windows\System32\pnidui.dll
11:24:36.0458 0x0dac  C:\Windows\System32\pnidui.dll - ok
11:24:36.0458 0x0dac  [ B1DDE7212AAD17473FCF648AEC8795CD, F6D7D56717CEE18D2B8B3556766C34D8AD011099AF81A58AA94AE914FFA71683 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7249204A-EBEA-423F-B50F-7E580E7F2873}\gapaengine.dll
11:24:36.0458 0x0dac  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7249204A-EBEA-423F-B50F-7E580E7F2873}\gapaengine.dll - ok
11:24:36.0458 0x0dac  [ 68F9E433002902D0D8215937C1B501F5, 9F4A66909A57DC155A072D55C21DF5453D7B8BC6F8D86EB5B949F6755B0543E7 ] C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7249204A-EBEA-423F-B50F-7E580E7F2873}\nisfull.vdm
11:24:36.0458 0x0dac  C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7249204A-EBEA-423F-B50F-7E580E7F2873}\nisfull.vdm - ok
11:24:36.0458 0x0dac  [ 92E0508D924512F63FFEEFE498CBD11F, 1158011E4A1298DEC79133B40888AA87B06F5B64BA2AB461B58C22F5F9211D0C ] C:\Windows\System32\p2pcollab.dll
11:24:36.0458 0x0dac  C:\Windows\System32\p2pcollab.dll - ok
11:24:36.0473 0x0dac  [ 506A83A3BEEE9FCA09F0170DE9FC7D1B, 2DFBD792B68F3EBEF0843183CAE5D52B6FA04163808AFACF6C0D738455898C36 ] C:\Windows\System32\fveui.dll
11:24:36.0473 0x0dac  C:\Windows\System32\fveui.dll - ok
11:24:36.0473 0x0dac  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] C:\Windows\System32\QAGENTRT.DLL
11:24:36.0473 0x0dac  C:\Windows\System32\QAGENTRT.DLL - ok
11:24:36.0473 0x0dac  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] C:\Windows\System32\wuaueng.dll
11:24:36.0473 0x0dac  C:\Windows\System32\wuaueng.dll - ok
11:24:36.0473 0x0dac  [ 662BA98309818AF2C17D4E48BF4021C4, 57B3FFAECE3DF5E22B6764A95D2B8523AA02CCCB4BD0779025C11D02EEBF4B1E ] C:\Program Files\Windows Defender\MpClient.dll
11:24:36.0473 0x0dac  C:\Program Files\Windows Defender\MpClient.dll - ok
11:24:36.0473 0x0dac  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] C:\Windows\System32\drivers\WUDFPf.sys
11:24:36.0473 0x0dac  C:\Windows\System32\drivers\WUDFPf.sys - ok
11:24:36.0473 0x0dac  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] C:\Windows\System32\hidserv.dll
11:24:36.0473 0x0dac  C:\Windows\System32\hidserv.dll - ok
11:24:36.0489 0x0dac  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] C:\Windows\System32\WUDFSvc.dll
11:24:36.0489 0x0dac  C:\Windows\System32\WUDFSvc.dll - ok
11:24:36.0489 0x0dac  [ 8ABFE00F213F2571498F1B8FD7939A98, B557EC9EFD33612BAFE01FFD304B50EFB8C3C19763470560DA950B5AB4A9AC9C ] C:\Windows\System32\WUDFHost.exe
11:24:36.0489 0x0dac  C:\Windows\System32\WUDFHost.exe - ok
11:24:36.0489 0x0dac  [ 25AE683DCB4AE7E6F1B193A0CB9DB35F, 9DC4BE1A51A3E94DB05369222CFCBA2125DA519EAAC46823EAECD738974463EF ] C:\Windows\System32\WUDFx.dll
11:24:36.0489 0x0dac  C:\Windows\System32\WUDFx.dll - ok
11:24:36.0489 0x0dac  [ 91D6F0AB79AA36FFB932157865206F35, 5C20EA92737A4409DF4601D6D256DBC7A8D0AE4C31A32F20054E873473B27781 ] C:\Windows\System32\drivers\UMDF\WpdFs.dll
11:24:36.0489 0x0dac  C:\Windows\System32\drivers\UMDF\WpdFs.dll - ok
11:24:36.0489 0x0dac  [ 9864D52F15AD32094A636C6B5281D9E7, 2DBECE721AA11509F6D5005C5FB965EB0DF28729D0B6C524BB35603C1243BA42 ] C:\Windows\System32\WMVCORE.DLL
11:24:36.0489 0x0dac  C:\Windows\System32\WMVCORE.DLL - ok
11:24:36.0504 0x0dac  [ 389CA818132C1D7DCF0C791E8D9035DE, 5E54799F92CC604FABEF2F97AFD97F9CAD70D01BCDBC41FAC408D60821927C12 ] C:\Windows\System32\PortableDeviceClassExtension.dll
11:24:36.0504 0x0dac  C:\Windows\System32\PortableDeviceClassExtension.dll - ok
11:24:36.0504 0x0dac  [ 4F3CD1C59EA71401E155C432BCECE180, 6D4118A627CAE509E43D0CC0062EECAA0990C955BB15AE24834460551B2F51A2 ] C:\Windows\System32\PortableDeviceTypes.dll
11:24:36.0504 0x0dac  C:\Windows\System32\PortableDeviceTypes.dll - ok
11:24:36.0504 0x0dac  [ AACC48FE239F0DF126DA2F28930A5B83, D55E7D9AA79B1875E9074CFFBBCD484024902566B49806A8639B5C04847DFF89 ] C:\Windows\System32\WMASF.DLL
11:24:36.0504 0x0dac  C:\Windows\System32\WMASF.DLL - ok
11:24:36.0504 0x0dac  [ A8EDB86FC2A4D6D1285E4C70384AC35A, 61B8955CE0A2AA9D0719920B30216717B349B6FBE11C697C31CFA84F859CC1AE ] C:\Windows\System32\dllhost.exe
11:24:36.0504 0x0dac  C:\Windows\System32\dllhost.exe - ok
11:24:36.0504 0x0dac  [ 9028D1621C43DF8DFBD1C76860412A11, A1D48D9B33180BDE50D2FA9BB07E9520B7B7788C39B3AABB4A06AE4B1AACA755 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll
11:24:36.0504 0x0dac  C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll - ok
11:24:36.0504 0x0dac  [ A0A2C1D812C231C9BFE119FDC68E341B, F94446594EE17505956A715DFB28B51D09F00A7A65E56950661B889A57DE8FA8 ] C:\Windows\System32\IDStore.dll
11:24:36.0504 0x0dac  C:\Windows\System32\IDStore.dll - ok
11:24:36.0520 0x0dac  [ 639774C9ACD063F028F6084ABF5593AD, 9DFD80610CBBC9188F6C6BC85C87016B0AE42254FC289C2B578E85282BDD9C23 ] C:\Windows\System32\taskhost.exe
11:24:36.0520 0x0dac  C:\Windows\System32\taskhost.exe - ok
11:24:36.0520 0x0dac  [ 522B0466ED967A0762E9AF5B37D8F40A, B14C62D059BC7CF430E1B0F6E18E31EFD1959EFB3025A2B0EBB11751F38DD6D4 ] C:\Windows\System32\esent.dll
11:24:36.0520 0x0dac  C:\Windows\System32\esent.dll - ok
11:24:36.0520 0x0dac  [ 23566F9723771108D2E6CD768AC27407, FAC0293DD1061B151E779BF4B245E6652C951FEDEBC602A166156DFBD38B5D67 ] C:\Windows\System32\AtBroker.exe
11:24:36.0520 0x0dac  C:\Windows\System32\AtBroker.exe - ok
11:24:36.0520 0x0dac  [ 6CEF7856A3EFAC59470F6208F0F585CE, 0F7A80DB821FDE6580E9481B6DA44844F717DDB4983B0E3D562BE43726153951 ] C:\Windows\System32\mpr.dll
11:24:36.0520 0x0dac  C:\Windows\System32\mpr.dll - ok
11:24:36.0520 0x0dac  [ BAFE84E637BF7388C96EF48D4D3FDD53, 11C194D9ADCE90027272C627D7FBF3BA5025FF0F7B26A8333F764E11E1382CF9 ] C:\Windows\System32\userinit.exe
11:24:36.0520 0x0dac  C:\Windows\System32\userinit.exe - ok
11:24:36.0536 0x0dac  [ F162D5F5E845B9DC352DD1BAD8CEF1BC, 8A7B7528DB30AB123B060D8E41954D95913C07BB40CDAE32E97F9EDB0BAF79C7 ] C:\Windows\System32\dwm.exe
11:24:36.0536 0x0dac  C:\Windows\System32\dwm.exe - ok
11:24:36.0536 0x0dac  [ 4BA77A5EF71C14C764B0ED4701683E3E, 066A064CDBE09BF8BE1DF5B259F30FF6C124A1C3D637800D3E19E8E25EDB950E ] C:\Windows\System32\dwmcore.dll
11:24:36.0536 0x0dac  C:\Windows\System32\dwmcore.dll - ok
11:24:36.0536 0x0dac  [ FCFCD1101C5DA23B4B95F93D02B2C169, 040A086875B6C5475490A2F8B0CF4FF20DDB4FEDFE5FCABBA49692AA05F40527 ] C:\Windows\System32\dwmredir.dll
11:24:36.0536 0x0dac  C:\Windows\System32\dwmredir.dll - ok
11:24:36.0536 0x0dac  [ 9BB99503D6A4DD62569EDE9E5E2672A5, 6F4EA5BC50B1F929735246485263078BEF1B3BEB33F78CB1F483F13AA226C27E ] C:\Windows\System32\HotStartUserAgent.dll
11:24:36.0536 0x0dac  C:\Windows\System32\HotStartUserAgent.dll - ok
11:24:36.0536 0x0dac  [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA, 8A6ACEFAB95E5275CBFBE6CCB5A6C3A6A471260B279B9063E86B9C7765E18656 ] C:\Windows\System32\MsCtfMonitor.dll
11:24:36.0536 0x0dac  C:\Windows\System32\MsCtfMonitor.dll - ok
11:24:36.0536 0x0dac  [ F09A9A1AD21FE618C4C8B0A0D830C886, 29831DDAB2AB105358FBC067CDF96428220B6743CD6019F6FE74BAC7AF325E7E ] C:\Windows\System32\msutb.dll
11:24:36.0536 0x0dac  C:\Windows\System32\msutb.dll - ok
11:24:36.0551 0x0dac  [ 94EEAC26F57811BD1AEFC164412F7FCE, 7390BCD7709D48DE75D7D6E06AA7356D1C58EE63F3CC2E07ABCD2E2FF6CC81CF ] C:\Windows\System32\PlaySndSrv.dll
11:24:36.0551 0x0dac  C:\Windows\System32\PlaySndSrv.dll - ok
11:24:36.0551 0x0dac  [ B2742EA6ED844D747E2348A504E491CB, 38D2A3B32A77FE2ADCCACB74F7A8EAD6A4589A5E22D2A6E7DFEADACDAE66DA85 ] C:\Windows\System32\dxva2.dll
11:24:36.0551 0x0dac  C:\Windows\System32\dxva2.dll - ok
11:24:36.0551 0x0dac  [ 0015ACFBBDD164A8A730009908868CA7, E1FF243AD2CF959FAB81EFE701592414991C03416FF296ADC93906E76B707C4D ] C:\Windows\System32\winspool.drv
11:24:36.0551 0x0dac  C:\Windows\System32\winspool.drv - ok
11:24:36.0551 0x0dac  [ 9AE80F6A66B30E3ED8CDF858CF28B11B, A93E470DC54E3C74C10979D49CABB9A34893F9E847F88491F935DB44EEC3541A ] C:\Windows\System32\d3d10_1.dll
11:24:36.0551 0x0dac  C:\Windows\System32\d3d10_1.dll - ok
11:24:36.0551 0x0dac  [ 63F72417CA38D8FC8F53709649B589E3, 39AE8AFFCFB8A9E345FC4C6F11926F25552C464380F88CDECD299FD27AF7866B ] C:\Windows\System32\d3d10_1core.dll
11:24:36.0551 0x0dac  C:\Windows\System32\d3d10_1core.dll - ok
11:24:36.0567 0x0dac  [ 4C92EB7535CAA1681A77D928FBF9771F, 7D02B2357CA02393CA711C3C499AAD86B792EEFFDC67F2CE52F7F7BB8A28DE79 ] C:\Windows\System32\d3d11.dll
11:24:36.0567 0x0dac  C:\Windows\System32\d3d11.dll - ok
11:24:36.0567 0x0dac  [ 8DFB5752FCE145A6B295093C0A8BE131, F38029C8B36EFD46B1F6CCA0089FF4EFB0AB246497E38EDFF6A67FAC804D4A97 ] C:\Windows\System32\dxgi.dll
11:24:36.0567 0x0dac  C:\Windows\System32\dxgi.dll - ok
11:24:36.0567 0x0dac  [ 332FEAB1435662FC6C672E25BEB37BE3, 6BED1A3A956A859EF4420FEB2466C040800EAF01EF53214EF9DAB53AEFF1CFF0 ] C:\Windows\explorer.exe
11:24:36.0567 0x0dac  C:\Windows\explorer.exe - ok
11:24:36.0567 0x0dac  [ E629F1A051C82795DDFFD3E8D4855811, 6E4DFFEAB2795C98EA6DCAF10EA6D97413D0F8CA0C04869CB20B74FF4D6FE679 ] C:\Windows\System32\dimsjob.dll
11:24:36.0567 0x0dac  C:\Windows\System32\dimsjob.dll - ok
11:24:36.0567 0x0dac  [ 46863C4CC5B68EB09EA2D5EEF0F1193A, 9B5593E1F484AC8F96F89A5995FB1FE9C51CB2F0F545607F6850751191150CFE ] C:\Windows\System32\radardt.dll
11:24:36.0567 0x0dac  C:\Windows\System32\radardt.dll - ok
11:24:36.0582 0x0dac  [ 35CB97CBC3EDC463418ED4997AAB29B6, EE60EABE2D87CEDD68FB8985B6C5D70930015FB2B8DB9FDCB4044587BC6ECA4C ] C:\Windows\System32\pautoenr.dll
11:24:36.0582 0x0dac  C:\Windows\System32\pautoenr.dll - ok
11:24:36.0582 0x0dac  [ 94DFBB481BF51158B216E23C5C1C9D6E, 0199086A70B9B63E48A7A15C8AE5442E9C6BC0173BD80A104DE1BE6A6C25F202 ] C:\Windows\System32\certcli.dll
11:24:36.0582 0x0dac  C:\Windows\System32\certcli.dll - ok
11:24:36.0582 0x0dac  [ 263B26106606A010CF877472B535E4BB, 43ECE89E428D2BB34244894BEBA1B946B0767649D15B1C715223E4E471A9E504 ] C:\Windows\System32\CertEnroll.dll
11:24:36.0582 0x0dac  C:\Windows\System32\CertEnroll.dll - ok
11:24:36.0582 0x0dac  [ 200D25525651668E6B5D2AD53B04F579, D42F2EAAEF69318F6E4D4F0651821BB90F173DA29FFC151C01138E3C043B5D20 ] C:\Windows\System32\aticfx64.dll
11:24:36.0582 0x0dac  C:\Windows\System32\aticfx64.dll - ok
11:24:36.0582 0x0dac  [ EED05D42D91835064703E2318552ED25, E9EE1E2253445B207B76F5D3073C612ED979A982522C1515E0FE8FA9641AE568 ] C:\Windows\System32\ExplorerFrame.dll
11:24:36.0582 0x0dac  C:\Windows\System32\ExplorerFrame.dll - ok
11:24:36.0582 0x0dac  [ E16A5EE222ABC03DF6BC5937FD81FDFF, 28A300AEACDDCE7F2377161DF576769E18FC4B42AEFF151AA7F7838329523747 ] C:\Windows\System32\atiuxp64.dll
11:24:36.0582 0x0dac  C:\Windows\System32\atiuxp64.dll - ok
11:24:36.0598 0x0dac  [ F411AEFDC4E41806E277DF4A20AFB8E5, 9C73E2E42A02FEE1B0665F57895434D89C75AE0FAE13507126FFEE3E60E61F1D ] C:\Windows\System32\atidxx64.dll
11:24:36.0598 0x0dac  C:\Windows\System32\atidxx64.dll - ok
11:24:36.0598 0x0dac  [ E6F0F82788E8BD0F7A616350EFA0761C, 13091DCB3E3F4F52C3FF210E93AAF1DCE142CFC09F671AEAC5B922393B23E67B ] C:\Windows\System32\actxprxy.dll
11:24:36.0598 0x0dac  C:\Windows\System32\actxprxy.dll - ok
11:24:36.0598 0x0dac  [ D5C9EE4FFE894389F5DBDC3E096FF9C6, 095AD2AF75FA0D6E9D485098A4AE18483FE0E067837DA3EB182CE47465EE6EE9 ] E:\Program Files (x86)\ElephantDrive\ElephantDrive\IconOverlay-64bit.dll
11:24:36.0598 0x0dac  E:\Program Files (x86)\ElephantDrive\ElephantDrive\IconOverlay-64bit.dll - ok
11:24:36.0598 0x0dac  [ B54E84F5179D54005EB9CCBFA4C248E2, 79B2C871865EEF40ECBBC1B8F952CFDF6CF49008C8AC5530B08FFE3B8E91FAB8 ] E:\Program Files (x86)\ElephantDrive\ElephantDrive\atl100.dll
11:24:36.0598 0x0dac  E:\Program Files (x86)\ElephantDrive\ElephantDrive\atl100.dll - ok
11:24:36.0598 0x0dac  [ AED6D63CFA5A3EF7021AF9C457FEE994, B4BFA27F677295B00A1DF9A7E14DB4B75CAC2DD41B898D4E9A378ECCCE3699F0 ] E:\Program Files (x86)\ElephantDrive\ElephantDrive\msvcr100.dll
11:24:36.0598 0x0dac  E:\Program Files (x86)\ElephantDrive\ElephantDrive\msvcr100.dll - ok
11:24:36.0614 0x0dac  [ CAA0C16ADCCE6142A43AD83BFA20B38B, 03E87060097C4D52BEF11A33105A60154BA29B05D620740EB4A093DF249D5808 ] C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe
11:24:36.0614 0x0dac  C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperAgent.exe - ok
11:24:36.0614 0x0dac  [ 863F793D15B4026B1A5FDECA873D4D84, AF7ABD95BB5467551562F129F03C7AC9D52A021F7E547609F40A80E66932C942 ] C:\Windows\SysWOW64\apphelp.dll
11:24:36.0614 0x0dac  C:\Windows\SysWOW64\apphelp.dll - ok
11:24:36.0614 0x0dac  [ D58988722C72D265B51A54103DFC2C6F, AC951AFB047FCA763D9B37DB9FF0D00B6AA67DAA9E2086AD3226BACCF6B910CE ] C:\Windows\SysWOW64\wininet.dll
11:24:36.0614 0x0dac  C:\Windows\SysWOW64\wininet.dll - ok
11:24:36.0614 0x0dac  [ 65EA57712340C09B1B0C427B4848AE05, 5FDCF73191BFF9DBB03886755FFCF0BC15849F0E216884A5A8B9BB375FA7C1A5 ] C:\Windows\System32\taskeng.exe
11:24:36.0614 0x0dac  C:\Windows\System32\taskeng.exe - ok
11:24:36.0614 0x0dac  [ 6951562DC4625EEFC6EACD52AD165866, 44A0B3EA0232D613A5B4115492DF2A7CEF25B35300E6A3E3E50C9544C5D1049E ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
11:24:36.0614 0x0dac  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
11:24:36.0629 0x0dac  [ 589CBC4989F750E1DA35625AB481CF43, B93E1B8C3775F9C995FD5451C685A06DEFD24AE1DF0DD99D19D5E4B9AC0010F9 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
11:24:36.0629 0x0dac  C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
11:24:36.0629 0x0dac  [ 2E33DFD10F28F86C3FC40EE123CC3904, 57C65671A04EFCA437A69E8E97B2FCA17897EE4608C7DB69F77D44FBD3490B50 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
11:24:36.0629 0x0dac  C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
11:24:36.0629 0x0dac  [ 3BE0D923AA45A4DBE091C2D84F0B4FE7, 603EEC55D6F646150FC3F0F2C939CFE434C02FC7A7AB23B1FEC8B5C77E4C8381 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
11:24:36.0629 0x0dac  C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
11:24:36.0629 0x0dac  [ FD96C05DE700F5FD26273D6DDB6495A7, FED30D3045FA829491BB8FCAE842F6B6034288B679B1A515600A019A821AF916 ] C:\Windows\SysWOW64\iertutil.dll
11:24:36.0629 0x0dac  C:\Windows\SysWOW64\iertutil.dll - ok
11:24:36.0629 0x0dac  [ 6A13B4F3B3F575F1E24B877B9359AABA, 676AD5F8F709D4A9DCE9938D82DEEE329C9A385A6969C169B3DF37AA75F1E4C7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
11:24:36.0629 0x0dac  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
11:24:36.0645 0x0dac  [ 352B3DC62A0D259A82A052238425C872, 393B24E0D6007C74AEE2FB2EE2C18623D37DF64E279B6767952DCFEE0EACBB10 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
11:24:36.0645 0x0dac  C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
11:24:36.0645 0x0dac  [ 8B8D1CEF498678CAB9DF17145D34BC64, B833545CC592BBF77F4F3E6BA9961D10673AA3F4E2CF6369F6A3BDAF1BC02026 ] C:\Windows\SysWOW64\msxml3.dll
11:24:36.0645 0x0dac  C:\Windows\SysWOW64\msxml3.dll - ok
11:24:36.0645 0x0dac  [ 6C8EB0C50C276FE26DB2058A836D0280, B1AF644851EE7535EC198A99B7FBAE22A2108FE7CB34BBBA2627B22C6632EB9A ] C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
11:24:36.0645 0x0dac  C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe - ok
11:24:36.0645 0x0dac  [ 805A52C5AE26C28E88FDD9BCCFE6F312, 4FF28D3658C31722B7DD036DED9D544B14841C0E0B94D31A8EC5AB92128DA020 ] C:\Windows\System32\TSChannel.dll
11:24:36.0645 0x0dac  C:\Windows\System32\TSChannel.dll - ok
11:24:36.0645 0x0dac  [ A35B6619C5D1A519EC4B521F665414C1, 6889C9036DBAE214A149E1087B032D4465176EDD1E46B18744957E0FE8A906E4 ] C:\Program Files (x86)\ASUS\AASP\1.01.05\AsLoader.exe
11:24:36.0645 0x0dac  C:\Program Files (x86)\ASUS\AASP\1.01.05\AsLoader.exe - ok
11:24:36.0660 0x0dac  [ 4783BC9E09B35489A5384AC5DB074418, A8AD1E89C24BA42649345C14DB826D98528D8CCF01B3E8960AFD6C9F91E60962 ] C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
11:24:36.0660 0x0dac  C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe - ok
11:24:36.0660 0x0dac  [ 93812FDC01AA864195816CD814445F95, E5CB2576DA2905177AFD342DBE63E17CF626F93F430DEBC55155C18C60166BEE ] C:\Program Files\Microsoft Mouse and Keyboard Center\SQMAPI.dll
11:24:36.0660 0x0dac  C:\Program Files\Microsoft Mouse and Keyboard Center\SQMAPI.dll - ok
11:24:36.0660 0x0dac  [ E36112A8A6C7F840169A7E92C12F4203, 52795B2E6ECCE751EEF5074AF52FDE376A382D0A1C43B90DD4F77A397C00FBC5 ] C:\Windows\System32\wsock32.dll
11:24:36.0660 0x0dac  C:\Windows\System32\wsock32.dll - ok
11:24:36.0660 0x0dac  [ 41010A88B70A2168F801DC19EBD4CB4F, FDA04D1CCACB83F070166B968B0CE0C7A72B5ADEA975D72D1B5C0E10385716C1 ] C:\Windows\SysWOW64\urlmon.dll
11:24:36.0660 0x0dac  C:\Windows\SysWOW64\urlmon.dll - ok
11:24:36.0660 0x0dac  [ 81E7E920312D372CF57A817049AC7C76, FF9A2E7FE46937B34F8E61F58DF1F6108742CCE58505F212E8666CB4AB7B74F9 ] C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
11:24:36.0660 0x0dac  C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL - ok
11:24:36.0676 0x0dac  [ 1C60E09CA1C3A045BC4D367F67C915B7, DF1ED88CB57DA1AB1A4245AE0D5B42AFA3396EBF67B99411FFFB0DD06DE1AEAF ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
11:24:36.0676 0x0dac  C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
11:24:36.0676 0x0dac  [ 007863E45F25AA47A4C30D0930BBFD85, 60F2ABA40D520FCA2C57FA2DB72E111C14F21821DA17F662837506B80C269634 ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
11:24:36.0676 0x0dac  C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
11:24:36.0676 0x0dac  [ CDBE9690CF2B8409FACAD94FAC9479C9, 8E7FE1A1F3550C479FFD86A77BC9D10686D47F8727025BB891D8F4F0259354C8 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
11:24:36.0676 0x0dac  C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
11:24:36.0676 0x0dac  [ 49ACA548B2423F1C67898E6AC719A9A6, 23D84137EAB9AFDD31CBB6776B6B25AD135A120AF7F7885EB5BBF9E0A2CCC4C1 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
11:24:36.0676 0x0dac  C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
11:24:36.0676 0x0dac  [ B094390B6B2D0456821384771020870B, 137FEDD0EFBF1CEDA4930D8CE0A012A250CFF4020931846646090BB2C99EE7CE ] C:\Windows\SysWOW64\secur32.dll
11:24:36.0676 0x0dac  C:\Windows\SysWOW64\secur32.dll - ok
11:24:36.0692 0x0dac  [ E424B3EF666B184CEE0B6871AAA8C9F6, D182D9B3A813C75F88CA16A9C236AB6167DF5861D155B5DC016B90918C4BD579 ] C:\Windows\System32\msimg32.dll
11:24:36.0692 0x0dac  C:\Windows\System32\msimg32.dll - ok
11:24:36.0692 0x0dac  [ F4AD88FF508A573E3EC7C8E0E4760328, A2FD2357706EB8FE7708B7874F3AA507923C2676BDA84055F5903491EDE76C82 ] E:\Program Files (x86)\ASUS\ASUSUpdate\UpdateChecker\UpdateChecker.exe
11:24:36.0692 0x0dac  E:\Program Files (x86)\ASUS\ASUSUpdate\UpdateChecker\UpdateChecker.exe - ok
11:24:36.0692 0x0dac  [ 20C19D35588C5E6C55347A3A26F35B85, 34BC92DAE80193F2A7537C7320DF41A4B5B1B5E6F4EAFBA2E26798C68072F5F3 ] E:\Program Files\ASUS\TurboV EVO\TurboVHelp.exe
11:24:36.0692 0x0dac  E:\Program Files\ASUS\TurboV EVO\TurboVHelp.exe - ok
11:24:36.0692 0x0dac  [ DD502A2E7B85EA7A3814C1034E6C23D3, 551D6C28DA6116DC65111BFA21E23BA8AE77193BEAF3DF505C343E6DC3CD5304 ] C:\Windows\AppPatch\AcGenral.dll
11:24:36.0692 0x0dac  C:\Windows\AppPatch\AcGenral.dll - ok
11:24:36.0692 0x0dac  [ ECA6AC33BD9E441F7B47D173D715D268, 5B9017F80BD8C7823CFE1AB4C21D91388E1B31BF0D77058A98791D2FACA11EB6 ] C:\Windows\System32\msxml3.dll
11:24:36.0692 0x0dac  C:\Windows\System32\msxml3.dll - ok
11:24:36.0692 0x0dac  [ 68ECCA523ED760AAFC03C5D587569859, CDD734279C8F9F24EA2538BAD8E91EB8C3DD74C33032DB6B2D85C19576B42707 ] C:\Windows\SysWOW64\samcli.dll
11:24:36.0692 0x0dac  C:\Windows\SysWOW64\samcli.dll - ok
11:24:36.0707 0x0dac  [ F0C36D3E30E555FBFDCF4CCDCB9D3F21, 7AE19B41E19A89B16309BB3B09FAC1B678EE863A2AAFADF15453C6E7CCA2CBB9 ] E:\Program Files\ASUS\TurboV EVO\AsAcpi.dll
11:24:36.0707 0x0dac  E:\Program Files\ASUS\TurboV EVO\AsAcpi.dll - ok
11:24:36.0707 0x0dac  [ 85683DF1F917E4D7F6BE1A04986BF1C8, D68D9F525D31C1843B6EC8FA950166FA1F34DB71222716E7B22DD33981C152B6 ] C:\Windows\SysWOW64\msacm32.dll
11:24:36.0707 0x0dac  C:\Windows\SysWOW64\msacm32.dll - ok
11:24:36.0707 0x0dac  [ 539C49CEBB3C50957AC8A09D95ECD880, 49E75CDB556FBCE72C44648F8930CF2209C1360F9311C5B4CEB19E13B11E6B75 ] C:\Windows\SysWOW64\shfolder.dll
11:24:36.0707 0x0dac  C:\Windows\SysWOW64\shfolder.dll - ok
11:24:36.0707 0x0dac  [ 08DFDBD2FD4EA951DC46B1C7661ED35A, D926530C659DDAF80770663F46F1EFD94FFB4AAB475C4E3367CB531AF4A734E1 ] C:\Windows\SysWOW64\powrprof.dll
11:24:36.0707 0x0dac  C:\Windows\SysWOW64\powrprof.dll - ok
11:24:36.0707 0x0dac  [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9, E18D66455D00A6D2A2D7CC0833C233FE8A6DD910B59D6B5B5F82EF91450858DF ] C:\Windows\SysWOW64\sfc.dll
11:24:36.0707 0x0dac  C:\Windows\SysWOW64\sfc.dll - ok
11:24:36.0723 0x0dac  [ 84799328D87B3091A3BDD251E1AD31F9, F85521215924388830DBB13580688DB70B46AF4C7D82D549D09086438F8D237B ] C:\Windows\SysWOW64\sfc_os.dll
11:24:36.0723 0x0dac  C:\Windows\SysWOW64\sfc_os.dll - ok
11:24:36.0723 0x0dac  [ 22BD8652E4202EA8F9F54D256244FF5E, 227E0520C15CC82C55A6E2F39F149BC77CCB3099222BBB5C273679C898F7D27A ] E:\Program Files\ASUS\TurboV EVO\HookKey32.dll
11:24:36.0723 0x0dac  E:\Program Files\ASUS\TurboV EVO\HookKey32.dll - ok
11:24:36.0723 0x0dac  [ FB4045578F5180BDB1963AB352B78548, 8E645A63436EE6CDDB78E6064AEB04ECE39208F760A3EF13A3F49FDF41505E21 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
11:24:36.0723 0x0dac  C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
11:24:36.0723 0x0dac  [ B9A8CBCFCD3EC9D2EA4740AF347BF108, 97FA304E3880BC863D999F441AE47CB8ADF00D2DEC2A52ACD8FBD02CC096786A ] C:\Windows\SysWOW64\mpr.dll
11:24:36.0723 0x0dac  C:\Windows\SysWOW64\mpr.dll - ok
11:24:36.0723 0x0dac  [ B5106A79DD046815332B6E3B6E8D27D1, E85962463A8C5BE4AF589022EC73EAE268F4F3F7081ED0FFA45CF8B782342372 ] E:\Program Files\ASUS\TurboV EVO\pngio.dll
11:24:36.0723 0x0dac  E:\Program Files\ASUS\TurboV EVO\pngio.dll - ok
11:24:36.0738 0x0dac  [ 66C87DB880052104808507D6FA84D68E, 46BD5C16225B3D0BF786FDA6461CE9A549DAA9FA38C8BDADAA0AF08FA6A24260 ] C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
11:24:36.0738 0x0dac  C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL - ok
11:24:36.0738 0x0dac  [ DB03D0807D6629639B50A3C58458ABE1, CAC0A718959CE78A58B4B7106B90B260CE8CB18A6C401DEC511CCF7DD1BAF2A7 ] E:\Program Files (x86)\ASUS\ASUSUpdate\UpdateChecker\AsMultiLang.dll
11:24:36.0738 0x0dac  E:\Program Files (x86)\ASUS\ASUSUpdate\UpdateChecker\AsMultiLang.dll - ok
11:24:36.0738 0x0dac  [ D233C7FEAE3FAA25F93A9E6B46815ADC, 5330682AE9C08E5F2E30C5E256B91028389BBBDDAA8C38950DF76616FCA854FF ] C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll
11:24:36.0738 0x0dac  C:\Windows\winsxs\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_08e61857a83bc251\msvcr90.dll - ok
11:24:36.0738 0x0dac  [ A9E7EA6AFC08C0EE00B4E71A7704C646, B47F787050A968B102873314211536143B319EC653717CECDCFE8774FF2EC629 ] C:\Program Files\Microsoft Mouse and Keyboard Center\dpgcmd.dll
11:24:36.0738 0x0dac  C:\Program Files\Microsoft Mouse and Keyboard Center\dpgcmd.dll - ok
11:24:36.0738 0x0dac  [ 3B39F9D51E4D8BAABDA6518955B58C13, 64AE407FA65096D5483C31B14AAC7FA691A4736AEA1288DC6D4BCEE3A2CE8A6F ] C:\Windows\System32\msi.dll
11:24:36.0738 0x0dac  C:\Windows\System32\msi.dll - ok
11:24:36.0738 0x0dac  [ CF636C92B762B26F0B39B38E92380A09, F7B8B0EA4536CE3BA33EE1BD0783F6AAD8C0EF69714E874D4A30B720A04C7A18 ] C:\Windows\System32\oleacc.dll
11:24:36.0738 0x0dac  C:\Windows\System32\oleacc.dll - ok
11:24:36.0754 0x0dac  [ 6A83403CDE15B2C7AA7DDB5138E31091, 38C924B575D36466FD729044A2482114E4CBFC2AB1520E629E95B9387A0D6FFE ] C:\Program Files\Microsoft Mouse and Keyboard Center\Components\Commands\DPGHnt\DPGHnt.dll
11:24:36.0754 0x0dac  C:\Program Files\Microsoft Mouse and Keyboard Center\Components\Commands\DPGHnt\DPGHnt.dll - ok
11:24:36.0754 0x0dac  [ 45757C2E73F514856FEDA6EB3669991D, CAC5EAB360AA1A9C2EBC14254009C0591240349A3BAFE57FC293090A2A0CA3EB ] X:\Program Files\Adobe\Adobe Media Encoder CS6\Adobe Media Encoder.exe
11:24:36.0754 0x0dac  X:\Program Files\Adobe\Adobe Media Encoder CS6\Adobe Media Encoder.exe - ok
11:24:36.0754 0x0dac  [ 2551BF4F49F125B775B07210BC6D98A6, 3799CE803759557653BD67D50307B8458CA8A5C6FD60CFA4B0321ED0D123F7F6 ] X:\Program Files\Adobe\Adobe Premiere Pro CS6\Adobe Premiere Pro.exe
11:24:36.0754 0x0dac  X:\Program Files\Adobe\Adobe Premiere Pro CS6\Adobe Premiere Pro.exe - ok
11:24:36.0754 0x0dac  [ 024352FEEC9042260BB4CFB4D79A206B, 60CB39086E10C5B66EBC15E4DF219620B344B4358D2918AB6BB3448A0AC8BE36 ] C:\Windows\System32\EhStorShell.dll
11:24:36.0754 0x0dac  C:\Windows\System32\EhStorShell.dll - ok
11:24:36.0754 0x0dac  [ 037A719DAD50603202C978CD802623E4, BD4C222913D32D7CF5FE0201FEBE7BD67FC39DF47A7A672C2D6C228A6E13B5DE ] C:\Windows\System32\ntshrui.dll
11:24:36.0754 0x0dac  C:\Windows\System32\ntshrui.dll - ok
11:24:36.0770 0x0dac  [ 1BF0CB861A48FEB1638228760750F3CB, 37C781A8C546EAD8B4D28BD7D730B9AC78EB799599AD69DAD9054B6F9F1DD6BD ] C:\Windows\System32\cscapi.dll
11:24:36.0770 0x0dac  C:\Windows\System32\cscapi.dll - ok
11:24:36.0770 0x0dac  [ 1D63F4366288B8A7595397E27010FD44, 99EA4DDD88D9C4A4CC9B238F533CB4D2C062D46239173997E8594D8A75811A01 ] C:\Windows\System32\IconCodecService.dll
11:24:36.0770 0x0dac  C:\Windows\System32\IconCodecService.dll - ok
11:24:36.0770 0x0dac  [ 025E7DBDB98866ED3CB2D4DDA70B364D, 78962F23F066E362AF1A4B98FA7D5E30AF30C561307438503031D30C944B6A6E ] C:\Windows\System32\runonce.exe
11:24:36.0770 0x0dac  C:\Windows\System32\runonce.exe - ok
11:24:36.0770 0x0dac  [ D44741F65A1D71F65814A12CF6E2400A, C6721F830675ADC7E7FDE2B5E822E56F6A063146F5066F1E25EBFE86F0A87136 ] C:\Windows\SysWOW64\runonce.exe
11:24:36.0770 0x0dac  C:\Windows\SysWOW64\runonce.exe - ok
11:24:36.0770 0x0dac  [ 12C45E3CB6D65F73209549E2D02ECA7A, 9DFD9C58B90257C34D52B7156C1D2566BE32EE7BD4699DDE164A5F190EC4D44A ] C:\Windows\SysWOW64\propsys.dll
11:24:36.0770 0x0dac  C:\Windows\SysWOW64\propsys.dll - ok
11:24:36.0785 0x0dac  [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051, 8EFD0A6DE6F4E335D342782190008FB5AC84A6ADE49170B310DEC9AC48E623E8 ] C:\Windows\System32\localspl.dll
11:24:36.0785 0x0dac  C:\Windows\System32\localspl.dll - ok
11:24:36.0785 0x0dac  [ D38E5A781E4F4763387AFE0B866DFEE2, C0E6DBCC66CD86336E7711D4E50368B76BB4013FE0F3CFFE27D6010FD96F169B ] C:\Windows\System32\AdobePDF.dll
11:24:36.0785 0x0dac  C:\Windows\System32\AdobePDF.dll - ok
11:24:36.0785 0x0dac  [ 19E41CCCEE697CC9465396B370929792, A9FC4C33C71C3677FE57779380E55FDE2AC0B0C70A9DBCBA0D0B6FA92C709A7F ] C:\Windows\System32\FXSMON.dll
11:24:36.0785 0x0dac  C:\Windows\System32\FXSMON.dll - ok
11:24:36.0785 0x0dac  [ C5AC93CF3BA30D367FB49148A2B673B9, 07B556039BBA841BC9F28979C3AD5D238B55391F921C9C805F3AFC9EFB437766 ] C:\Windows\System32\PrintIsolationProxy.dll
11:24:36.0785 0x0dac  C:\Windows\System32\PrintIsolationProxy.dll - ok
11:24:36.0785 0x0dac  [ 3285481F5C12305CA104A6C493CA5A0B, ADB39B15D26A954B0F347C7BAFCC76DE5E3CF3CF05736E8987E0832AA7F8563C ] C:\Windows\System32\spoolss.dll
11:24:36.0785 0x0dac  C:\Windows\System32\spoolss.dll - ok
11:24:36.0785 0x0dac  [ 93518C6EDE0B61BCBD02BDB02BD05FEE, 3637F5E5F15093AFB501EE910368CF900B422AC22669391FFA4198BBAE6F8FCB ] C:\Windows\System32\snmpapi.dll
11:24:36.0785 0x0dac  C:\Windows\System32\snmpapi.dll - ok
11:24:36.0801 0x0dac  [ 32A3C8600AF124CBAAD845F13CFAE3CB, F36FE9E57D5C509FEECE890F9F8717F9CC6F762E32AE0B7DB7E0153370CE0B9D ] C:\Windows\System32\tcpmon.dll
11:24:36.0801 0x0dac  C:\Windows\System32\tcpmon.dll - ok
11:24:36.0801 0x0dac  [ DF72A9936D0C3F517083119648814B09, 6BA4DCAC2F55A393A266ED0B2AF92B38141654D1666E3E143D85BBAF21663E1E ] C:\Windows\System32\usbmon.dll
11:24:36.0801 0x0dac  C:\Windows\System32\usbmon.dll - ok
11:24:36.0801 0x0dac  [ A1D7E3ADCDB07DDB6F423862DCB1A52B, 6191C33D2AE090F6F055D6AE211096CE8F003EC5518A5333EE1E376052176BAB ] C:\Windows\System32\WSDMon.dll
11:24:36.0801 0x0dac  C:\Windows\System32\WSDMon.dll - ok
11:24:36.0801 0x0dac  [ FFF9D00CF16397C64317F213484F94BD, 94D0584E14BDB27F61F59A7BCEA529A1594261BE0CE74502C13E8865843BA414 ] C:\Windows\System32\wsnmp32.dll
11:24:36.0801 0x0dac  C:\Windows\System32\wsnmp32.dll - ok
11:24:36.0801 0x0dac  [ C55516D98DD5D8F0153C2A9B4227DA86, DBC62B776CF06D0873A4C7CFCDF5B6F5C6E6C41917C326C090BCE58DC66EE09C ] C:\Windows\System32\webservices.dll
11:24:36.0801 0x0dac  C:\Windows\System32\webservices.dll - ok
11:24:36.0816 0x0dac  [ F1B205F932F62F94506A5F332C895DAF, F02F01F20F655DD919C71AE814E4C3DD43330AAD1425FC5B1497F1613917CCDE ] C:\Windows\System32\WSDApi.dll
11:24:36.0816 0x0dac  C:\Windows\System32\WSDApi.dll - ok
11:24:36.0816 0x0dac  [ AD7B9C14083B52BC532FBA5948342B98, 17F746D82695FA9B35493B41859D39D786D32B23A9D2E00F4011DEC7A02402AE ] C:\Windows\SysWOW64\cmd.exe
11:24:36.0816 0x0dac  C:\Windows\SysWOW64\cmd.exe - ok
11:24:36.0816 0x0dac  [ 1D626FE2E13C1CE49CA0136CFF214E93, 4F02DD92045CF244979FFD074B2BDE6925A909227A474C60DCABE4384D916218 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
11:24:36.0816 0x0dac  C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
11:24:36.0816 0x0dac  [ 67CF11E00D026A5C0C88EA5F84D501E5, 5081A87466116232CF07F58229967B6C0CD3738B64A56EFC6BB3EBDA62E378F6 ] C:\Windows\System32\win32spl.dll
11:24:36.0816 0x0dac  C:\Windows\System32\win32spl.dll - ok
11:24:36.0816 0x0dac  [ BF95EA5809E3BBF55370F7CB309FEBD0, 62ADBA6E1A7DDDEFA971580161F30896DFFC27EB4EB82E3CC72062D57DA66500 ] C:\Windows\System32\conhost.exe
11:24:36.0816 0x0dac  C:\Windows\System32\conhost.exe - ok
11:24:36.0816 0x0dac  [ 2E483EC51216B52C711C7EC642798BB7, 98DFAAEA25FE4A450FEA18F36E0B0AA6143A0D1C89CB406857BEE5154D5931BB ] C:\Windows\System32\sti.dll
11:24:36.0816 0x0dac  C:\Windows\System32\sti.dll - ok
11:24:36.0832 0x0dac  [ 326C7F76A29897A892AA7726E91C1C67, 64305346B06EC14976130B0B80F14B4D5AB63E5B2A6A7B872EC9CE2BF8FADCD2 ] C:\Windows\SysWOW64\winbrand.dll
11:24:36.0832 0x0dac  C:\Windows\SysWOW64\winbrand.dll - ok
11:24:36.0832 0x0dac  [ A3560FAFC1686D5EE9830B33B5C74B66, 192DF588991B88D2F8B60C3D9A2793E869055955F0798DA01AE66C3F3BF70890 ] C:\Windows\SysWOW64\ieframe.dll
11:24:36.0832 0x0dac  C:\Windows\SysWOW64\ieframe.dll - ok
11:24:36.0832 0x0dac  [ 60F4AEFA103D421EA4A40E31409B4756, 037A8605CA504A4FF43E9D4DE9017CEA1E26D3556C975872C747E24D8B0835EF ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
11:24:36.0832 0x0dac  C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
11:24:36.0832 0x0dac  [ 2C4A87CA8C00E98EFDCFA2E8EC9A3503, DA59CE662E98E56D89E2894D2AC8B9F324C16DA23C860640EDC2C82E0AD06097 ] C:\Windows\SysWOW64\shdocvw.dll
11:24:36.0832 0x0dac  C:\Windows\SysWOW64\shdocvw.dll - ok
11:24:36.0832 0x0dac  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] C:\Windows\System32\aelupsvc.dll
11:24:36.0832 0x0dac  C:\Windows\System32\aelupsvc.dll - ok
11:24:36.0848 0x0dac  [ B0374EF227F086A483324E350787E8A3, 8A1D2F0D3ABF1EBFE1D43B7653C2C98F9D7680A9358F540677142D3221D7DC35 ] E:\Users\DLee\Desktop\BlueScreenView.exe
11:24:36.0848 0x0dac  E:\Users\DLee\Desktop\BlueScreenView.exe - ok
11:24:36.0848 0x0dac  [ 7F3717F4DDA68FFF5F8AB2CBEB3EB751, C1C2E5215F48D22F18465D76CD13FB025D629EE76E269F6A602EA9571DC22E21 ] E:\Program Files\Office14\CLVIEW.EXE
11:24:36.0848 0x0dac  E:\Program Files\Office14\CLVIEW.EXE - ok
11:24:36.0848 0x0dac  [ D40E7B5FBB8E0EAA7C5C294389AF95AB, 8EFD521DF1F335AF416DEC15D5C0C6538903803AA1A8ED93AA704B384A29876B ] E:\Users\DLee\AppData\Local\Temp\{705192FE-A932-46EA-86FB-D56C77985EE9}.exe
11:24:36.0848 0x0dac  E:\Users\DLee\AppData\Local\Temp\{705192FE-A932-46EA-86FB-D56C77985EE9}.exe - ok
11:24:36.0848 0x0dac  [ CE71B9119A258EDD0A05B37D7B0F92E3, D9310C5BBFE089B8C81E259C462EC1E6D7A7A87FA59FC1F174ED5C58D409AE7A ] C:\Windows\SysWOW64\bcrypt.dll
11:24:36.0848 0x0dac  C:\Windows\SysWOW64\bcrypt.dll - ok
11:24:36.0848 0x0dac  [ C61DDFE40204F3BE3DF111981D91560E, 450D5E608D344B2186A73F5421CAF1792902BFB428182D6C5A971C5E0686842F ] C:\Windows\SysWOW64\ncrypt.dll
11:24:36.0848 0x0dac  C:\Windows\SysWOW64\ncrypt.dll - ok
11:24:36.0863 0x0dac  [ E8449FE262D7406BCB2AC2A45C53EC5F, 6C118C9FB26404D1943824CF3990F36E12986547FFACB7CC0DF975A913065D78 ] C:\Windows\SysWOW64\bcryptprimitives.dll
11:24:36.0863 0x0dac  C:\Windows\SysWOW64\bcryptprimitives.dll - ok
11:24:36.0863 0x0dac  [ 1097F3035BAF46CED8B332B3564C5108, C69781683CA963A1335780DABBBC60E2C3CEF0888738D3425D358D12E8D0AF58 ] C:\Windows\SysWOW64\gpapi.dll
11:24:36.0863 0x0dac  C:\Windows\SysWOW64\gpapi.dll - ok
11:24:36.0863 0x0dac  [ BAE9ED9645B4DF7C05C2CD1046A6734F, FEFCFBB106405EEDF9591763EB3AF49EBC3929AF34568917134D4B373645E798 ] E:\Program Files\Office14\EXCEL.EXE
11:24:36.0863 0x0dac  E:\Program Files\Office14\EXCEL.EXE - ok
11:24:36.0863 0x0dac  [ 7B851A8018B1EA00A69707A390004884, DAE654713EF1DC66C8C2D27752B659081794063A7D522D1F680AA9A6E7FBA9FD ] C:\Windows\SysWOW64\cryptnet.dll
11:24:36.0863 0x0dac  C:\Windows\SysWOW64\cryptnet.dll - ok
11:24:36.0863 0x0dac  [ 6F8E3B7B70E1BBA871212940C1FBDF60, 3F9D4EE64E4210340C6FEE0DE81BFE3C613DDBE608EC09D63817D24CE24BFC5E ] C:\Windows\SysWOW64\SensApi.dll
11:24:36.0863 0x0dac  C:\Windows\SysWOW64\SensApi.dll - ok
11:24:36.0879 0x0dac  [ FB19FC5951A88F3C523E35C2C98D23C0, FF0DB8BF0C68DA0D09272E8181D2B5409C8850BB2F31AEA3AC4CD14C5A420A59 ] C:\Windows\SysWOW64\webio.dll
11:24:36.0879 0x0dac  C:\Windows\SysWOW64\webio.dll - ok
11:24:36.0879 0x0dac  [ CA9F7888B524D8100B977C81F44C3234, 57F3353F89724147D8AC8B69B12C1303DF26978309776F5F8CCF074526A915D3 ] C:\Windows\SysWOW64\winhttp.dll
11:24:36.0879 0x0dac  C:\Windows\SysWOW64\winhttp.dll - ok
11:24:36.0879 0x0dac  [ E3ECF5FFE3DEDF61DC6877B6A99ACBBF, 2944FE9035882830799F18B7A98112BA66F16994694CA0CFFC77306775F5EDB2 ] C:\Windows\SysWOW64\credssp.dll
11:24:36.0879 0x0dac  C:\Windows\SysWOW64\credssp.dll - ok
11:24:36.0879 0x0dac  [ 9A85ABCE0FDD1AF8E79E731EB0B679F3, 2A610BEB16610FE2F2E9A50477A62A05481E8A5843A814955A0EDFF45D0304B3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
11:24:36.0879 0x0dac  C:\Windows\SysWOW64\dhcpcsvc.dll - ok
11:24:36.0879 0x0dac  [ 81F6C1AE23B1C493D9E996C3103915D7, E22408B4D2EDE2F89E686A4FDCD4057BE27B86D050E9CB489F0FFB39C72AEC1D ] C:\Windows\SysWOW64\dhcpcsvc6.dll
11:24:36.0879 0x0dac  C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
11:24:36.0879 0x0dac  [ 73E8667A19FEEDD856DF2695E9E511D4, 68D66C36D1F293D10ADCC6A33C870F989A29743537592CF172F02E794BEAFD1C ] C:\Windows\SysWOW64\wship6.dll
11:24:36.0879 0x0dac  C:\Windows\SysWOW64\wship6.dll - ok
11:24:36.0894 0x0dac  [ B40420876B9288E0A1C8CCA8A84E5DC9, 0D3C73B45BC708D7B1E26DFB6D4F64031A998548FEA0FB5CE198ED716F7DC9A0 ] C:\Windows\SysWOW64\dnsapi.dll
11:24:36.0894 0x0dac  C:\Windows\SysWOW64\dnsapi.dll - ok
11:24:36.0894 0x0dac  [ ED6EE83D61EBC683C2CD8E899EA6FEBE, F82592908D038C44D9F2E5C5B7BC663A2D370FC565F40420E1138A9E55F0E7EB ] C:\Windows\SysWOW64\rasadhlp.dll
11:24:36.0894 0x0dac  C:\Windows\SysWOW64\rasadhlp.dll - ok
11:24:36.0894 0x0dac  [ D550D174C57FB5F2C2AE928F277A8DFE, 211DB0A3943FD3C7659EAC6560DC76192048B87A8B5831B50234ED01EE376551 ] E:\Program Files\MPC-HC\mpc-hc64.exe
11:24:36.0894 0x0dac  E:\Program Files\MPC-HC\mpc-hc64.exe - ok
11:24:36.0894 0x0dac  [ 58A0CDABEA255616827B1C22C9994466, 4FE1140AA8D3995579DE8CDF4ECAD1978804D05351EABB4079A63B303EF1B451 ] C:\Windows\System32\NapiNSP.dll
11:24:36.0894 0x0dac  C:\Windows\System32\NapiNSP.dll - ok
11:24:36.0894 0x0dac  [ 613C8CE10A5FDE582BA5FA64C4D56AAA, 30507B6BA79E1A271B07BBA58B4FF463678BE0960266A1D5E88031E932D768B6 ] C:\Windows\System32\pnrpnsp.dll
11:24:36.0894 0x0dac  C:\Windows\System32\pnrpnsp.dll - ok
11:24:36.0910 0x0dac  [ 2E2072EB48238FCA8FBB7A9F5FABAC45, AC70B9FC24847EEC2E18008F2894DCDAC19A9C90D5D88729326E493CA524F5C3 ] C:\Windows\System32\winrnr.dll
11:24:36.0910 0x0dac  C:\Windows\System32\winrnr.dll - ok
11:24:36.0910 0x0dac  [ A6AAD37CDCAE75CB62D039E3A4D8F5E3, 4FF763B0D129175BA1B1E794BA313E6C63F7A89D377C786BF5E730AF2A1D95D1 ] C:\Program Files\Microsoft Security Client\msseces.exe
11:24:36.0910 0x0dac  C:\Program Files\Microsoft Security Client\msseces.exe - ok
11:24:36.0910 0x0dac  [ 00000000000000000000000000000000, 0000000000000000000000000000000000000000000000000000000000000000 ] X:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe
11:24:36.0910 0x0dac  X:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe - ok
11:24:36.0910 0x0dac  [ 6D04467A68BFE25748575DF36638418F, 02CB1850D4286C8D6A6716002088D0F97497AFE193405062427657174395D42D ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
11:24:36.0910 0x0dac  C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
11:24:36.0910 0x0dac  [ 9DD8B9167F4EA4DAAFAFDA768FB8A3EB, 0C58A824DADC6ACF900DC80D66E970E7719F30C8CAD014B18BEC4B0E1508392A ] E:\Program Files\Recuva\recuva64.exe
11:24:36.0910 0x0dac  E:\Program Files\Recuva\recuva64.exe - ok
11:24:36.0926 0x0dac  [ F0D0E883EBBDC7615DC9EDEA0FFB2817, 58F1395445018CB16ED4D3710443FB5B0E087043F6A69F7B10D72D0455958954 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
11:24:36.0926 0x0dac  C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
11:24:36.0926 0x0dac  [ 846D0E4DB261CFAF363902E41498E961, D7E5591B7604FD583AF7FDA19E30928B24A6145318A3944E7D207F0CCEEB30D0 ] C:\Windows\SysWOW64\EhStorShell.dll
11:24:36.0926 0x0dac  C:\Windows\SysWOW64\EhStorShell.dll - ok
11:24:36.0926 0x0dac  [ 03F3B770DFBED6131653CEDA8CA780F0, 77373919DCA647F09851E7E460AE78FBD89F21516B961F84AC4446304E51E09C ] C:\Windows\SysWOW64\ntshrui.dll
11:24:36.0926 0x0dac  C:\Windows\SysWOW64\ntshrui.dll - ok
11:24:36.0926 0x0dac  [ 465BEA35F7ED4A4A57686DEA7EA10F47, 7F1B3CA09AB045F805DA5765BE7DD270F5DDACE3073017F7386FF1E2FA82D6FB ] C:\Windows\SysWOW64\cscapi.dll
11:24:36.0926 0x0dac  C:\Windows\SysWOW64\cscapi.dll - ok
11:24:36.0926 0x0dac  [ 827CB0D6C3F8057EA037FF271F8E9795, 82760DBDDD38D2A31CAAF51D065DF4E7E1D0F0C22733A0AF653776EBF7B79470 ] C:\Windows\SysWOW64\imageres.dll
11:24:36.0926 0x0dac  C:\Windows\SysWOW64\imageres.dll - ok
11:24:36.0926 0x0dac  [ 8B74CEC6980D4816B0037AE9A27E538F, 8721EDB4C51BF6020002FA5DDB1987C68590F9F433A2F18D9756B2DAC7542CB6 ] C:\Windows\SysWOW64\slc.dll
11:24:36.0926 0x0dac  C:\Windows\SysWOW64\slc.dll - ok
11:24:36.0941 0x0dac  [ 5CCDCD40E732D54E0F7451AC66AC1C87, 66F4DA105BD72E41250CD59E2B3CD931B47AC9FDB6C784B9E33C5EE1AC29841F ] C:\Windows\SysWOW64\srvcli.dll
11:24:36.0941 0x0dac  C:\Windows\SysWOW64\srvcli.dll - ok
11:24:36.0941 0x0dac  [ 162D247E995EAEBF3EF4289069E1111C, 19E858E9902E2D570FFD24AE2CB4165273F5BAB1FF7B04758B11AB5CD41FD752 ] C:\Windows\SysWOW64\devrtl.dll
11:24:36.0941 0x0dac  C:\Windows\SysWOW64\devrtl.dll - ok
11:24:36.0941 0x0dac  [ 20B3934DB73EABA2B49B7177873CB81F, 492EAC5C51472B43DE11825358AEC4B9E3A081DACFD7513C696D6FE40F302EE5 ] C:\Windows\SysWOW64\netutils.dll
11:24:36.0941 0x0dac  C:\Windows\SysWOW64\netutils.dll - ok
11:24:36.0941 0x0dac  [ 2C647ABE9A424E55B5F3DAE4629B4277, 7B33009D253BAFFF87535C075E75498B6A06F334035DDC0DF51E10A142B4DF9E ] C:\Windows\System32\themeui.dll
11:24:36.0941 0x0dac  C:\Windows\System32\themeui.dll - ok
11:24:36.0941 0x0dac  [ FB10715E4099AF9FA389C71873245226, 6A4CB43880B822A0C4714D6E52EB3EB2CE1E69C3AA9CA65EAAD6B131AE43F274 ] C:\Windows\System32\timedate.cpl
11:24:36.0941 0x0dac  C:\Windows\System32\timedate.cpl - ok
11:24:36.0957 0x0dac  [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86, E15ED4FEFC3010C213694331DDFDC03767682325C898D773AB243E2DC8B08461 ] C:\Windows\System32\msftedit.dll
11:24:36.0957 0x0dac  C:\Windows\System32\msftedit.dll - ok
11:24:36.0957 0x0dac  [ 2EBD0C5B090125AECF017C57344C45AB, 4FF8F2460115C60AD164EE0DC2079E1601B8AA21A1BA8033B7B731FAF85411B6 ] C:\Windows\System32\msls31.dll
11:24:36.0957 0x0dac  C:\Windows\System32\msls31.dll - ok
11:24:36.0957 0x0dac  [ A0A65D306A5490D2EB8E7DE66898ECFD, CE5DA408F4EDD5E81CE0925867F03C9A35172CF1571FE4C4C052E45AB69822BB ] C:\Windows\System32\linkinfo.dll
11:24:36.0957 0x0dac  C:\Windows\System32\linkinfo.dll - ok
11:24:36.0957 0x0dac  [ 23B001185B7C3CB1F4BDEB143E6B45B7, AB3A5AB346F6353B43B06FBE20B7785DA988975E2C8B73A6588F107FFAAACC47 ] C:\Windows\System32\shdocvw.dll
11:24:36.0957 0x0dac  C:\Windows\System32\shdocvw.dll - ok
11:24:36.0957 0x0dac  [ 4C2C4640BF23AAFCF90519E0F34436CE, 8ACCDA77C2DC5BE2DAED05134310122AFECC872A8D118612E55DD229BFE4D844 ] C:\Windows\System32\DeviceCenter.dll
11:24:36.0957 0x0dac  C:\Windows\System32\DeviceCenter.dll - ok
11:24:36.0957 0x0dac  [ 9110FFAD124283F37D38771BB60556AF, BB495FDF86B7C3DD7878C496090A624CE8FE68F61166C91A4C99EF1140F0AD23 ] C:\Windows\System32\dsound.dll
11:24:36.0957 0x0dac  C:\Windows\System32\dsound.dll - ok
11:24:36.0972 0x0dac  [ 585FED4CDB8034B8B58AEB8008255817, 13D1055929D79598C04A4AB66EF3DBAADD265F9D1C3F43E84531238D2526A1AE ] C:\Windows\System32\opengl32.dll
11:24:36.0972 0x0dac  C:\Windows\System32\opengl32.dll - ok
11:24:36.0972 0x0dac  [ A5ED9421B8D09ED4F57CDA386307713E, EC2EE043E94A53302A9721220AA42D29BE72AF3448B7AA01F7EB911ECF7DC6AE ] C:\Windows\System32\dciman32.dll
11:24:36.0972 0x0dac  C:\Windows\System32\dciman32.dll - ok
11:24:36.0972 0x0dac  [ A6C09924C6730DE8DEED9890A12AA691, 46EACBC27D15FD43431812D6CA770982178C07246AF3A1C2E0D40D745A1D5758 ] C:\Windows\System32\ddraw.dll
11:24:36.0972 0x0dac  C:\Windows\System32\ddraw.dll - ok
11:24:36.0972 0x0dac  [ F2967C0A97C0EA67D79D7F557213950D, 65516C83DCB3F952CD4454636B61CC2F153AF6BEEBC352463791D92F7F500F52 ] C:\Windows\System32\glu32.dll
11:24:36.0972 0x0dac  C:\Windows\System32\glu32.dll - ok
11:24:36.0972 0x0dac  [ 263E9A047D17CD50BAA9D3C02910D18D, F526648358AD121001D2776E0ACC333EC4AC168CA07B40A3D3C06C5CE6A361C3 ] C:\Windows\System32\oledlg.dll
11:24:36.0972 0x0dac  C:\Windows\System32\oledlg.dll - ok
11:24:36.0988 0x0dac  [ 297F164DF80D84D8B300CB7BB46F6BAE, 6EC9D640F1F5E59BDC702976E19312CD94B3A78D151E0B88447D4BFFFA869639 ] C:\Program Files\Microsoft Security Client\MsMpRes.dll
11:24:36.0988 0x0dac  C:\Program Files\Microsoft Security Client\MsMpRes.dll - ok
11:24:36.0988 0x0dac  [ DC220AE6F64819099F7EBD6F137E32E7, B8FE13B859FA83500DD95637FA6D4A5B8392C2A363E41D014D3B5374F636E1DE ] C:\Windows\System32\AudioSes.dll
11:24:36.0988 0x0dac  C:\Windows\System32\AudioSes.dll - ok
11:24:36.0988 0x0dac  [ DD515FF57CCE77FD6A13ECA7F2A98B1A, 84CD8AF9483424147EB24A097A8747D88E264AF8FC0552408825329C36F27746 ] C:\Windows\System32\RtkCfg64.dll
11:24:36.0988 0x0dac  C:\Windows\System32\RtkCfg64.dll - ok
11:24:36.0988 0x0dac  [ 28B90B154EAB06C22788B04C760AA8B3, D8296E2821564ED6BDA9E72EB24C627E6E7CA0D45C876BA3A5DA6242A14668B9 ] C:\Windows\System32\RtkAPO64.dll
11:24:36.0988 0x0dac  C:\Windows\System32\RtkAPO64.dll - ok
11:24:36.0988 0x0dac  [ 653ED63E28C80138FDA2E6D739DBD005, EB2DA34B39AAADE620A431D2818F2F4B21C2D4BA1EB17C8BC64F1E8044FCC78F ] E:\Program Files (x86)\ASUS\AI Suite\QFan4\FanHelp.exe
11:24:36.0988 0x0dac  E:\Program Files (x86)\ASUS\AI Suite\QFan4\FanHelp.exe - ok
11:24:36.0988 0x0dac  [ 93812FDC01AA864195816CD814445F95, E5CB2576DA2905177AFD342DBE63E17CF626F93F430DEBC55155C18C60166BEE ] C:\Program Files\Microsoft Security Client\SqmApi.dll
11:24:36.0988 0x0dac  C:\Program Files\Microsoft Security Client\SqmApi.dll - ok
11:24:37.0004 0x0dac  [ B837D1528CE2E3CB79F09496BC08DDC6, ACD54CE61CFE94F23DC283537AD8FFBEB3D6041BD30317B60BA7A10FCB240A27 ] C:\Windows\System32\SensApi.dll
11:24:37.0004 0x0dac  C:\Windows\System32\SensApi.dll - ok
11:24:37.0004 0x0dac  [ 2BCBA6052374959A30BD7948444DBB79, 46224A2B729026FEEBC3C6A09E69919D477097848DB2CA0C2F5B166CDF379660 ] C:\Windows\System32\gameux.dll
11:24:37.0004 0x0dac  C:\Windows\System32\gameux.dll - ok
11:24:37.0004 0x0dac  [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] E:\Users\DLee\AppData\Local\Temp\{906A9FB2-F764-4BAA-A477-7778E3FDC290}\{FD09264B-2CD5-4F4C-BA8F-8B6C5095CE64}.tmp
11:24:37.0004 0x0dac  E:\Users\DLee\AppData\Local\Temp\{906A9FB2-F764-4BAA-A477-7778E3FDC290}\{FD09264B-2CD5-4F4C-BA8F-8B6C5095CE64}.tmp - ok
11:24:37.0004 0x0dac  [ F0C36D3E30E555FBFDCF4CCDCB9D3F21, 7AE19B41E19A89B16309BB3B09FAC1B678EE863A2AAFADF15453C6E7CCA2CBB9 ] E:\Program Files (x86)\ASUS\AI Suite\QFan4\AsAcpi.dll
11:24:37.0004 0x0dac  E:\Program Files (x86)\ASUS\AI Suite\QFan4\AsAcpi.dll - ok
11:24:37.0004 0x0dac  [ B6296A1E765612688E7E9800CEBF2AC8, 9ECE99DADA4E79FDA642B601D7909606A8215182F4482402BA1E886F62045680 ] C:\Windows\SysWOW64\AsIO.dll
11:24:37.0004 0x0dac  C:\Windows\SysWOW64\AsIO.dll - ok
11:24:37.0019 0x0dac  [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] E:\Users\DLee\AppData\Local\Temp\{906A9FB2-F764-4BAA-A477-7778E3FDC290}\{3C509EB7-8ECF-4A81-8D64-B4B4747DC5ED}.tmp
11:24:37.0019 0x0dac  E:\Users\DLee\AppData\Local\Temp\{906A9FB2-F764-4BAA-A477-7778E3FDC290}\{3C509EB7-8ECF-4A81-8D64-B4B4747DC5ED}.tmp - ok
11:24:37.0019 0x0dac  [ 69754747274B76E7FAF287239333D7E6, A0BAEC1E56E4B1A17C0D41B317526AF5BB11E7E488C7016067A6229346A23B16 ] C:\Windows\System32\msiltcfg.dll
11:24:37.0019 0x0dac  C:\Windows\System32\msiltcfg.dll - ok
11:24:37.0019 0x0dac  [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] E:\Users\DLee\AppData\Local\Temp\{906A9FB2-F764-4BAA-A477-7778E3FDC290}\{E1CAE0AB-541E-4ED4-B8CB-6F08B40C7D4F}.tmp
11:24:37.0019 0x0dac  E:\Users\DLee\AppData\Local\Temp\{906A9FB2-F764-4BAA-A477-7778E3FDC290}\{E1CAE0AB-541E-4ED4-B8CB-6F08B40C7D4F}.tmp - ok
11:24:37.0019 0x0dac  [ BA56C68CCB912C4C08C97DD32C47AD31, 8B70D9BC097C8D1A4E12773B3D57E78E969C7C3ECE1DF0E4576109A4F10E0AA6 ] C:\Windows\System32\ieframe.dll
11:24:37.0019 0x0dac  C:\Windows\System32\ieframe.dll - ok
11:24:37.0019 0x0dac  [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] E:\Users\DLee\AppData\Local\Temp\{906A9FB2-F764-4BAA-A477-7778E3FDC290}\{BE4C636F-A91C-4C3D-889C-A6D52FEF1CDC}.tmp
11:24:37.0019 0x0dac  E:\Users\DLee\AppData\Local\Temp\{906A9FB2-F764-4BAA-A477-7778E3FDC290}\{BE4C636F-A91C-4C3D-889C-A6D52FEF1CDC}.tmp - ok
11:24:37.0035 0x0dac  [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] E:\Users\DLee\AppData\Local\Temp\{906A9FB2-F764-4BAA-A477-7778E3FDC290}\{DB67B922-8106-4747-998B-92BCEC6D1D82}.tmp
11:24:37.0035 0x0dac  E:\Users\DLee\AppData\Local\Temp\{906A9FB2-F764-4BAA-A477-7778E3FDC290}\{DB67B922-8106-4747-998B-92BCEC6D1D82}.tmp - ok
11:24:37.0035 0x0dac  [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] E:\Users\DLee\AppData\Local\Temp\{906A9FB2-F764-4BAA-A477-7778E3FDC290}\{36C8A252-9E1B-4591-AEC7-25C0D5587A20}.tmp
11:24:37.0035 0x0dac  E:\Users\DLee\AppData\Local\Temp\{906A9FB2-F764-4BAA-A477-7778E3FDC290}\{36C8A252-9E1B-4591-AEC7-25C0D5587A20}.tmp - ok
11:24:37.0035 0x0dac  [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] E:\Users\DLee\AppData\Local\Temp\{906A9FB2-F764-4BAA-A477-7778E3FDC290}\{AE732E71-67C6-4E60-B7CE-989ECD5E09C5}.tmp
11:24:37.0035 0x0dac  E:\Users\DLee\AppData\Local\Temp\{906A9FB2-F764-4BAA-A477-7778E3FDC290}\{AE732E71-67C6-4E60-B7CE-989ECD5E09C5}.tmp - ok
11:24:37.0035 0x0dac  [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] E:\Users\DLee\AppData\Local\Temp\{906A9FB2-F764-4BAA-A477-7778E3FDC290}\{B99A27C0-B356-447B-8970-64F00A263473}.tmp
11:24:37.0035 0x0dac  E:\Users\DLee\AppData\Local\Temp\{906A9FB2-F764-4BAA-A477-7778E3FDC290}\{B99A27C0-B356-447B-8970-64F00A263473}.tmp - ok
11:24:37.0035 0x0dac  [ 9108540E866F75C7AF2B91DD921A8091, 7208C8E05E818781D7F2703B86848FC90651E0D8BE10362863250F2283CEC511 ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
11:24:37.0035 0x0dac  C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
11:24:37.0050 0x0dac  [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] E:\Users\DLee\AppData\Local\Temp\{906A9FB2-F764-4BAA-A477-7778E3FDC290}\{413BA29B-EF32-40B3-AA72-2D8FB12236AB}.tmp
11:24:37.0050 0x0dac  E:\Users\DLee\AppData\Local\Temp\{906A9FB2-F764-4BAA-A477-7778E3FDC290}\{413BA29B-EF32-40B3-AA72-2D8FB12236AB}.tmp - ok
11:24:37.0050 0x0dac  [ 24F4B480F335A6C724AF352253C5D98B, 011413B236CAD7B78CE0A0EEC3E3085D48C7576A3205D025BA6EBFDF590538E4 ] C:\Windows\System32\thumbcache.dll
11:24:37.0050 0x0dac  C:\Windows\System32\thumbcache.dll - ok
11:24:37.0050 0x0dac  [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] E:\Users\DLee\AppData\Local\Temp\{906A9FB2-F764-4BAA-A477-7778E3FDC290}\{A6488157-EE66-4C35-8179-8C53698AA570}.tmp
11:24:37.0050 0x0dac  E:\Users\DLee\AppData\Local\Temp\{906A9FB2-F764-4BAA-A477-7778E3FDC290}\{A6488157-EE66-4C35-8179-8C53698AA570}.tmp - ok
11:24:37.0050 0x0dac  [ 405F4D32D2185F1F1BD753D8EEAFFB3A, CAC42C3E09C43BE96592B670D70821386014DB22D8239A9CFB9E33E54FB5C3D5 ] C:\Windows\System32\networkexplorer.dll
11:24:37.0050 0x0dac  C:\Windows\System32\networkexplorer.dll - ok
11:24:37.0050 0x0dac  [ C212A43AA83A717AD38505F23ACDCB33, 52BFF0FB72D2C4543ECB2C2F6E1DA63E548BAFCE553EECBB18F287AC2CF5EF28 ] C:\Windows\SysWOW64\msi.dll
11:24:37.0050 0x0dac  C:\Windows\SysWOW64\msi.dll - ok
11:24:37.0066 0x0dac  [ 2FCA0D2C59A855C54BAFA22AA329DF0F, ED9D26F539065D62FCCEDEEC8E509B30F4D15F8DA586C1F657ACEFE9DABAACD0 ] C:\Windows\SysWOW64\netapi32.dll
11:24:37.0066 0x0dac  C:\Windows\SysWOW64\netapi32.dll - ok
11:24:37.0066 0x0dac  [ E5A4A1326A02F8E7B59E6C3270CE7202, DCB76016F9AC47E631540874DA208A089F9D529DA9628705A2869B954526BFE0 ] C:\Windows\SysWOW64\wkscli.dll
11:24:37.0066 0x0dac  C:\Windows\SysWOW64\wkscli.dll - ok
11:24:37.0066 0x0dac  [ 102CF6879887BBE846A00C459E6D4ABC, A4C51C79CF95D5C79DCEFB02946A09A987FEAF83CE2EE1BA7677EBA90869AC80 ] C:\Windows\SysWOW64\riched20.dll
11:24:37.0066 0x0dac  C:\Windows\SysWOW64\riched20.dll - ok
11:24:37.0066 0x0dac  [ E2A17BCC08D92F42E08AF6BA2F93ABA7, 5FC9D47BF4B1094BECC0C0DDCD5CD4318DD3E4495D982F8785331616D5B82599 ] C:\Windows\SysWOW64\ExplorerFrame.dll
11:24:37.0066 0x0dac  C:\Windows\SysWOW64\ExplorerFrame.dll - ok
11:24:37.0066 0x0dac  [ EE06B85BC69F18826302348A2AD089E0, 417205797CC9F6C986A863A61179784D9ADCAF1961EF8A4D9042D73C5A86509A ] C:\Windows\SysWOW64\dui70.dll
11:24:37.0066 0x0dac  C:\Windows\SysWOW64\dui70.dll - ok
11:24:37.0066 0x0dac  [ 6E1F8165C365D35C8E3C045AF0CDD481, B861360D0A014265A0BEB4CC2FE31EA05AE95120E8B07820C13A044D64C00E2B ] C:\Windows\SysWOW64\duser.dll
11:24:37.0066 0x0dac  C:\Windows\SysWOW64\duser.dll - ok
11:24:37.0082 0x0dac  [ F832EEEA97CDDA1AF577E721F652A0D1, EBBB7CA199BA4DF231123922BD310D43DE0104C6185B70FE0281B938D5336F2E ] C:\Windows\System32\batmeter.dll
11:24:37.0082 0x0dac  C:\Windows\System32\batmeter.dll - ok
11:24:37.0082 0x0dac  [ C3761661C17C2248A9379A8FB89E3DE1, CE3477FA2B4058EB80739E0161FE957545F13CF86D313F6422732901D35F75F2 ] C:\Windows\System32\stobject.dll
11:24:37.0082 0x0dac  C:\Windows\System32\stobject.dll - ok
11:24:37.0082 0x0dac  [ F152755F131ADFE452D534F4E9383590, 6E0C52D409203F070B90350EF7405EE38185270E9579F4570DDA53DC65A4653E ] C:\Windows\System32\Faultrep.dll
11:24:37.0082 0x0dac  C:\Windows\System32\Faultrep.dll - ok
11:24:37.0082 0x0dac  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] C:\Windows\System32\wersvc.dll
11:24:37.0082 0x0dac  C:\Windows\System32\wersvc.dll - ok
11:24:37.0082 0x0dac  [ 8784236EED5079493DA9FC95B28B89F8, E59C349B964F585C27F63FBF7C1B5D7C6CF8CC958BD35100A36D57542DC13972 ] C:\Windows\System32\WerFault.exe
11:24:37.0082 0x0dac  C:\Windows\System32\WerFault.exe - ok
11:24:37.0097 0x0dac  [ 990EA3103E06D68CE0E755A9C3D70107, 39AC7F6D2A348BA50C3FBF50E23EAFEDAE232F0FA2F82937F18934E2D7C53CB7 ] C:\Windows\System32\dbgeng.dll
11:24:37.0097 0x0dac  C:\Windows\System32\dbgeng.dll - ok
11:24:37.0097 0x0dac  [ 850BD2D2D9CB5894935C3B6333CAD6FD, AB1EE5FD5E2F1CC927C3EA92E71C91ACA566E69622D47AE780DA391B7C30DDD6 ] C:\Windows\System32\riched20.dll
11:24:37.0097 0x0dac  C:\Windows\System32\riched20.dll - ok
11:24:37.0097 0x0dac  [ 0819EF7DB96DAB8AC3DACE567ED1B99E, 1489E5BC7F6E7E25665F0ED681A74DC65ADAC331895416F1980BD9D22E79B897 ] C:\Windows\System32\werui.dll
11:24:37.0097 0x0dac  C:\Windows\System32\werui.dll - ok
11:24:37.0097 0x0dac  [ EDF4DEC1041EEAF78A0B1E16C1BB4CC4, 72AB0E5499505AC25F4CACAB0C7581979100FAB552A253BB08DCD4643888702F ] C:\Windows\System32\fthsvc.dll
11:24:37.0097 0x0dac  C:\Windows\System32\fthsvc.dll - ok
11:24:37.0097 0x0dac  [ FA43D418BC945D27D0625B697B8442B5, 035DE0FEA440D2E3AD255EE84B388DDA538E778877033FDB54B8A61BB0AADE56 ] C:\Windows\System32\cabinet.dll
11:24:37.0097 0x0dac  C:\Windows\System32\cabinet.dll - ok
11:24:37.0097 0x0dac  [ 0DB2758CF1BAFE22E0970FDA0785B74C, 325DEABB182FCA8DCB426AD0095B3524C8F77F2A9204E703391F631B2C4A1157 ] C:\Windows\System32\wuapi.dll
11:24:37.0097 0x0dac  C:\Windows\System32\wuapi.dll - ok
11:24:37.0113 0x0dac  [ 7EC6617005F76714C7E16605E7A8AB06, 5940168249A9C1791CBD71C8F22FC618E8932808E1478986D89A386A5DA458AC ] C:\Windows\System32\wups.dll
11:24:37.0113 0x0dac  C:\Windows\System32\wups.dll - ok
11:24:37.0113 0x0dac  [ 0B7E85364CB878E2AD531DB7B601A9E5, F5AD3018427F1CD68450EE5CB55AA9572546322580E0FB1E7888702A291C2380 ] C:\Windows\SysWOW64\NapiNSP.dll
11:24:37.0113 0x0dac  C:\Windows\SysWOW64\NapiNSP.dll - ok
11:24:37.0113 0x0dac  [ 0BA65122FFA7E37564EE86422DBF7AE8, 3A37FC503D3228D021473AECA285427382518CC36C197E4C9912745BDF3AB757 ] C:\Windows\SysWOW64\nlaapi.dll
11:24:37.0113 0x0dac  C:\Windows\SysWOW64\nlaapi.dll - ok
11:24:37.0113 0x0dac  [ 5CF640EDDB1E40A5AB1BB743BCDEC610, 0313AA3F713C9F5B84DBB0B4DE78A96B173E9F7B4CF61C10FDC7DAE952DB04E5 ] C:\Windows\SysWOW64\pnrpnsp.dll
11:24:37.0113 0x0dac  C:\Windows\SysWOW64\pnrpnsp.dll - ok
11:24:37.0113 0x0dac  [ 5DF5D8CFD9B9573FA3B2C89D9061A240, 990EA273B640DF2D7E800C0CFF18550259C605A4951CD82CD9F1E7B6FF0C9533 ] C:\Windows\SysWOW64\winrnr.dll
11:24:37.0113 0x0dac  C:\Windows\SysWOW64\winrnr.dll - ok
11:24:37.0113 0x0dac  ================ Scan generic autorun ======================
11:24:37.0144 0x0dac  [ A6AAD37CDCAE75CB62D039E3A4D8F5E3, 4FF763B0D129175BA1B1E794BA313E6C63F7A89D377C786BF5E730AF2A1D95D1 ] C:\Program Files\Microsoft Security Client\msseces.exe
11:24:37.0191 0x0dac  MSC - ok
11:24:37.0394 0x0dac  [ 6D04467A68BFE25748575DF36638418F, 02CB1850D4286C8D6A6716002088D0F97497AFE193405062427657174395D42D ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
11:24:37.0597 0x0dac  RtHDVCpl - ok
11:24:37.0737 0x0dac  [ 653ED63E28C80138FDA2E6D739DBD005, EB2DA34B39AAADE620A431D2818F2F4B21C2D4BA1EB17C8BC64F1E8044FCC78F ] E:\Program Files (x86)\ASUS\AI Suite\QFan4\FanHelp.exe
11:24:37.0768 0x0dac  QFan Help - ok
11:24:37.0768 0x0dac  Waiting for KSN requests completion. In queue: 3
11:24:38.0782 0x0dac  Waiting for KSN requests completion. In queue: 3
11:24:39.0796 0x0dac  Waiting for KSN requests completion. In queue: 3
11:24:40.0810 0x0dac  Waiting for KSN requests completion. In queue: 3
11:24:41.0824 0x0dac  Waiting for KSN requests completion. In queue: 3
11:24:42.0838 0x0dac  Waiting for KSN requests completion. In queue: 3
11:24:43.0852 0x0dac  Waiting for KSN requests completion. In queue: 3
11:24:44.0866 0x0dac  Waiting for KSN requests completion. In queue: 3
11:24:45.0880 0x0dac  Waiting for KSN requests completion. In queue: 3
11:24:46.0894 0x0dac  Waiting for KSN requests completion. In queue: 3
11:24:47.0908 0x0dac  Waiting for KSN requests completion. In queue: 3
11:24:48.0922 0x0dac  Waiting for KSN requests completion. In queue: 3
11:24:49.0936 0x0dac  Waiting for KSN requests completion. In queue: 3
11:24:50.0950 0x0dac  Waiting for KSN requests completion. In queue: 3
11:24:51.0995 0x0dac  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.6.305.0 ), 0x61000 ( enabled : updated )
11:24:51.0995 0x0dac  Win FW state via NFP2: enabled
11:24:54.0569 0x0dac  ============================================================
11:24:54.0569 0x0dac  Scan finished
11:24:54.0569 0x0dac  ============================================================
11:24:54.0569 0x0da4  Detected object count: 1
11:24:54.0569 0x0da4  Actual detected object count: 1
11:25:04.0351 0x0da4  \Device\Harddisk2\DR2\TDLFS\ph.dll - copied to quarantine
11:25:04.0850 0x0da4  \Device\Harddisk2\DR2\TDLFS\phx.dll - copied to quarantine
11:25:04.0881 0x0da4  \Device\Harddisk2\DR2\TDLFS\phd - copied to quarantine
11:25:15.0130 0x0da4  \Device\Harddisk2\DR2\TDLFS\phdx - copied to quarantine
11:25:15.0146 0x0da4  \Device\Harddisk2\DR2\TDLFS\phs - copied to quarantine
11:25:15.0161 0x0da4  \Device\Harddisk2\DR2\TDLFS\phdata - copied to quarantine
11:25:15.0161 0x0da4  \Device\Harddisk2\DR2\TDLFS\phld - copied to quarantine
11:25:15.0395 0x0da4  \Device\Harddisk2\DR2\TDLFS\phln - copied to quarantine
11:25:15.0411 0x0da4  \Device\Harddisk2\DR2\TDLFS\phlx - copied to quarantine
11:25:15.0427 0x0da4  \Device\Harddisk2\DR2\TDLFS\phm - copied to quarantine
11:25:15.0458 0x0da4  \Device\Harddisk2\DR2\TDLFS - deleted
11:25:15.0458 0x0da4  \Device\Harddisk2\DR2 ( TDSS File System ) - User select action: Delete
 


  • 0

#13
Daniel Christmas Lee

Daniel Christmas Lee

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 208 posts

Step #2, BUT SEE ATTACHED SCREENSHOTS FIRST. I noticed the FRST64.exe desktop icon had changed, and running as admin failed; it thought I had the wrong version for my PC. So I re-downloaded FRST64.exe. I took a screenshot of the prompt and the icons next to each other.

 

Here is the fix log:

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 12-09-2014
Ran by DLee at 2014-09-14 11:30:38 Run:1
Running from E:\Users\DLee\Desktop
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKLM-x32\...\Run: [] => [X]
2014-09-07 12:25 - 2014-09-07 12:25 - 00003108 _____ () C:\Windows\System32\Tasks\{2C9578E6-E69F-4155-A18E-58E356D72B46}
Toolbar: HKCU - No Name - {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} -  No File
2014-08-27 23:10 - 2012-02-09 20:13 - 00000000 ____D () E:\Users\DLee\AppData\Roaming\uTorrent
AlternateDataStreams: C:\Program Files\Common Files\Microsoft Shared:Jz77p2Ukdsg0XTfpG6QUTcgjxkYEv
AlternateDataStreams: C:\ProgramData\Microsoft:0W3Y9k6estow6ZALHWQL
AlternateDataStreams: C:\ProgramData\Microsoft:ERZSStxkCfV7Yyk5ZTJYcx
AlternateDataStreams: C:\ProgramData\Microsoft:WircfwojjIUmYtMlSVdd
AlternateDataStreams: E:\Users\DLee\AppData\Local:f64If7TziAcEGSohO6rTOwDeyE
AlternateDataStreams: E:\Users\DLee\AppData\Local:uBYnK1DzTupy9y35mL2Khs0d
AlternateDataStreams: E:\Users\DLee\AppData\Local\Temp:wBe2A7x8Je6bxzPhuS
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
E:\Users\DLee\cc_20120922_115907.reg
E:\Users\DLee\flv.reg
E:\Users\DLee\MicrosoftFixit.Search.RNP.10728952160632807.2.1.Run.exe
Hosts:
EmptyTemp:




*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value deleted successfully.
C:\Windows\System32\Tasks\{2C9578E6-E69F-4155-A18E-58E356D72B46} => Moved successfully.
HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} => value deleted successfully.
"HKCR\CLSID\{8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3}" => Key not found.
"2014-08-27 23:10 - 2012-02-09 20:13 - 00000000 ____D () E:\Users\DLee\AppData\Roaming\uTorrent" => File/Directory not found.
C:\Program Files\Common Files\Microsoft Shared => ":Jz77p2Ukdsg0XTfpG6QUTcgjxkYEv" ADS removed successfully.
C:\ProgramData\Microsoft => ":0W3Y9k6estow6ZALHWQL" ADS removed successfully.
C:\ProgramData\Microsoft => ":ERZSStxkCfV7Yyk5ZTJYcx" ADS removed successfully.
C:\ProgramData\Microsoft => ":WircfwojjIUmYtMlSVdd" ADS removed successfully.
E:\Users\DLee\AppData\Local => ":f64If7TziAcEGSohO6rTOwDeyE" ADS removed successfully.
E:\Users\DLee\AppData\Local => ":uBYnK1DzTupy9y35mL2Khs0d" ADS removed successfully.
E:\Users\DLee\AppData\Local\Temp => ":wBe2A7x8Je6bxzPhuS" ADS removed successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin" => Key deleted successfully.
E:\Users\DLee\cc_20120922_115907.reg => Moved successfully.
E:\Users\DLee\flv.reg => Moved successfully.
E:\Users\DLee\MicrosoftFixit.Search.RNP.10728952160632807.2.1.Run.exe => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 1.7 GB temporary data.


The system needed a reboot.

==== End of Fixlog ====

Attached Thumbnails

  • FRST64 Fail.png
  • FRST Icons Next to Each Other.png

  • 0

#14
Daniel Christmas Lee

Daniel Christmas Lee

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 208 posts

Step #3, disclaimer, I already use MBAM and had it installed, but I re-downloaded and re-installed. Please do not auto remove my MBAM at the end of our session.

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 9/14/2014
Scan Time: 11:40:50 AM
Logfile:
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.09.14.07
Rootkit Database: v2014.09.13.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: DLee

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 407248
Time Elapsed: 8 min, 42 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Warn
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)


  • 0

#15
Daniel Christmas Lee

Daniel Christmas Lee

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 208 posts

... ESET is taking forever ...


  • 0






Similar Topics


Also tagged with one or more of these keywords: BSOD, Malware, Godawgs

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP