Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Email Hacked - Infected too? [Solved]

Started by HelpNeeded911 , Sep 30 2014 11:44 AM

This topic is locked

#1
HelpNeeded911

Posted 30 September 2014 - 11:44 AM

Member

Member
80 posts

I only access my email account from my desktop computer, and the account was hacked recently. I changed my password but now I'm wondering if my computer is infected. All help is much appreciated!

OTL logfile created on: 9/30/2014 1:14:52 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\ronak_000\Desktop
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17278)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

9.94 Gb Total Physical Memory | 7.25 Gb Available Physical Memory | 72.95% Memory free
10.33 Gb Paging File | 7.40 Gb Available in Paging File | 71.60% Paging File free
Paging file location(s): c:\pagefile.sys 400 4096 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 217.65 Gb Total Space | 118.14 Gb Free Space | 54.28% Space Free | Partition Type: NTFS
Drive D: | 18.57 Gb Total Space | 2.29 Gb Free Space | 12.31% Space Free | Partition Type: NTFS
Drive E: | 931.26 Gb Total Space | 860.35 Gb Free Space | 92.38% Space Free | Partition Type: NTFS

Computer Name: HERDESKTOP | User Name: testaccount | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2014/09/30 13:06:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\ronak_000\Desktop\OTL.exe
PRC - [2014/09/25 21:06:07 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2014/09/16 22:15:08 | 002,460,488 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
PRC - [2014/09/16 22:14:57 | 001,795,912 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
PRC - [2014/09/13 16:12:58 | 000,411,968 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
PRC - [2014/09/12 14:14:55 | 013,559,056 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
PRC - [2014/09/12 14:14:55 | 004,799,760 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
PRC - [2014/09/12 14:00:53 | 000,229,648 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
PRC - [2014/09/12 05:43:06 | 000,064,704 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2014/09/09 16:17:11 | 001,870,000 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_15_0_0_152.exe
PRC - [2014/08/26 09:49:58 | 000,078,088 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
PRC - [2014/08/20 14:10:04 | 001,550,336 | ---- | M] (Zhorn Software) -- C:\Program Files (x86)\Stickies\stickies.exe
PRC - [2014/08/19 02:57:52 | 000,390,616 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2014/08/19 02:57:51 | 000,169,432 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
PRC - [2014/06/27 14:27:12 | 001,056,976 | R--- | M] (Carbonite, Inc.) -- C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe
PRC - [2014/05/12 10:24:42 | 000,860,472 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
PRC - [2014/05/12 10:24:40 | 001,809,720 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
PRC - [2014/05/12 10:24:34 | 006,970,168 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
PRC - [2013/09/27 00:18:31 | 000,298,760 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
PRC - [2013/09/27 00:18:28 | 000,077,576 | ---- | M] (CyberLink) -- C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
PRC - [2013/08/30 21:18:18 | 000,287,592 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
PRC - [2013/08/30 21:18:16 | 000,015,720 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2012/06/07 23:34:06 | 000,111,120 | ---- | M] (CyberLink) -- c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe

========== Modules (No Company Name) ==========

MOD - [2014/09/25 21:06:03 | 003,715,184 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2014/09/23 14:58:57 | 002,964,480 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.IdentityModel\d82137c37ef37707446bb6056c0ee9c4\System.IdentityModel.ni.dll
MOD - [2014/09/23 14:58:56 | 001,070,592 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Servf73e6522#\179c01bf41be41348199f8d41e779509\System.ServiceModel.Web.ni.dll
MOD - [2014/09/23 14:58:55 | 000,786,432 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Servd1dec626#\668eb7171833079353583f414ea7192d\System.ServiceModel.Internals.ni.dll
MOD - [2014/09/23 14:58:55 | 000,118,272 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\SMDiagnostics\9c66601bad4851a24e037f606482160f\SMDiagnostics.ni.dll
MOD - [2014/09/12 18:57:06 | 007,785,472 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Xml\462e6667cb4ef74abec9524d96c4d7d5\System.Xml.ni.dll
MOD - [2014/09/12 18:57:03 | 012,856,832 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\cc272fa4bc8ae7c468e3c75a57ae3c72\System.Windows.Forms.ni.dll
MOD - [2014/09/12 18:56:57 | 019,567,616 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.ServiceModel\528be8efca0c6b6c9ce63f3664c80443\System.ServiceModel.ni.dll
MOD - [2014/09/12 18:56:49 | 002,803,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\cf112546e5e77b821db19d8b958cfeee\System.Runtime.Serialization.ni.dll
MOD - [2014/09/12 18:56:46 | 001,635,328 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Drawing\9e99d85dfa5a3de8e34fe912acf82021\System.Drawing.ni.dll
MOD - [2014/09/12 18:56:42 | 000,968,192 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Configuration\04d455ea050b547ca661a16509fe4638\System.Configuration.ni.dll
MOD - [2014/09/12 18:56:27 | 006,951,424 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System.Core\5e8ea4bc2ddce0edd65f5c68b7241c06\System.Core.ni.dll
MOD - [2014/09/12 18:56:24 | 010,003,456 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\System\3028925cf331e81d2b55093a3f131bd5\System.ni.dll
MOD - [2014/09/09 16:17:10 | 016,825,520 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll
MOD - [2014/03/18 06:13:46 | 017,395,376 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v4.0.30319_32\mscorlib\c90ef9a73ea0044641d31b19023aad61\mscorlib.ni.dll
MOD - [2012/10/01 20:37:48 | 006,522,480 | ---- | M] () -- C:\Program Files (x86)\Microsoft Office\Office15\1033\GrooveIntlResource.dll
MOD - [2012/06/08 14:34:06 | 000,016,400 | ---- | M] () -- c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
MOD - [2012/06/07 23:34:06 | 000,627,216 | ---- | M] () -- c:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll

========== Services (SafeList) ==========

SRV:64bit: - [2014/09/16 22:14:56 | 001,148,744 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe -- (GfExperienceService)
SRV:64bit: - [2014/09/16 22:14:52 | 019,439,944 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe -- (NvStreamSvc)
SRV:64bit: - [2014/09/12 16:06:17 | 000,111,616 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
SRV:64bit: - [2014/08/19 06:27:27 | 001,306,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppXDeploymentServer.dll -- (AppXSvc)
SRV:64bit: - [2014/08/19 06:27:27 | 000,834,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\netlogon.dll -- (Netlogon)
SRV:64bit: - [2014/08/19 06:23:17 | 000,347,880 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Windows Defender\NisSrv.exe -- (WdNisSvc)
SRV:64bit: - [2014/08/19 06:23:17 | 000,023,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV:64bit: - [2014/08/19 06:23:00 | 000,491,520 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\GeofenceMonitorService.dll -- (lfsvc)
SRV:64bit: - [2014/08/19 06:23:00 | 000,201,216 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\AudioEndpointBuilder.dll -- (AudioEndpointBuilder)
SRV:64bit: - [2014/08/19 06:20:40 | 000,076,800 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\inetsrv\w3logsvc.dll -- (w3logsvc)
SRV:64bit: - [2014/08/15 23:29:38 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV:64bit: - [2014/08/15 20:58:35 | 000,287,744 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\SystemEventsBrokerServer.dll -- (SystemEventsBroker)
SRV:64bit: - [2014/08/15 20:45:51 | 000,267,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\bisrv.dll -- (BrokerInfrastructure)
SRV:64bit: - [2014/08/05 21:04:22 | 001,441,792 | ---- | M] () [Auto | Running] -- C:\Program Files\Everything\Everything.exe -- (Everything)
SRV:64bit: - [2014/07/24 03:28:58 | 001,600,000 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\workfolderssvc.dll -- (workfolderssvc)
SRV:64bit: - [2014/06/27 14:15:52 | 007,641,296 | R--- | M] (Carbonite, Inc. (www.carbonite.com)) [Auto | Running] -- C:\Program Files\Carbonite\Carbonite Backup\CarboniteService.exe -- (CarboniteService)
SRV:64bit: - [2014/03/24 18:50:50 | 000,357,144 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV:64bit: - [2014/03/18 06:13:26 | 000,710,656 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\lsm.dll -- (LSM)
SRV:64bit: - [2014/03/18 06:13:25 | 000,530,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AppReadiness.dll -- (AppReadiness)
SRV:64bit: - [2014/03/18 06:13:20 | 000,366,080 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\wcmsvc.dll -- (Wcmsvc)
SRV:64bit: - [2014/03/18 06:13:18 | 003,394,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\WSService.dll -- (WSService)
SRV:64bit: - [2014/03/18 06:13:18 | 001,576,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wlidsvc.dll -- (wlidsvc)
SRV:64bit: - [2014/03/18 06:13:14 | 000,399,872 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\das.dll -- (DeviceAssociationService)
SRV:64bit: - [2013/08/30 21:18:16 | 000,015,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV:64bit: - [2013/08/22 07:32:02 | 000,024,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wephostsvc.dll -- (WEPHOSTSVC)
SRV:64bit: - [2013/08/22 07:31:43 | 000,040,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\efssvc.dll -- (EFS)
SRV:64bit: - [2013/08/22 07:22:45 | 000,066,048 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wiarpc.dll -- (WiaRpc)
SRV:64bit: - [2013/08/22 07:21:15 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\svsvc.dll -- (svsvc)
SRV:64bit: - [2013/08/22 07:16:57 | 000,118,272 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\fhsvc.dll -- (fhsvc)
SRV:64bit: - [2013/08/22 06:25:28 | 000,164,352 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\NcaSvc.dll -- (NcaSvc)
SRV:64bit: - [2013/08/22 06:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicvss)
SRV:64bit: - [2013/08/22 06:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmictimesync)
SRV:64bit: - [2013/08/22 06:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicshutdown)
SRV:64bit: - [2013/08/22 06:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicrdv)
SRV:64bit: - [2013/08/22 06:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmickvpexchange)
SRV:64bit: - [2013/08/22 06:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicheartbeat)
SRV:64bit: - [2013/08/22 06:19:28 | 000,517,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\icsvc.dll -- (vmicguestinterface)
SRV:64bit: - [2013/08/22 06:02:47 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\smphost.dll -- (smphost)
SRV:64bit: - [2013/08/22 05:57:25 | 000,130,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\ScDeviceEnum.dll -- (ScDeviceEnum)
SRV:64bit: - [2013/08/22 05:54:59 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\keyiso.dll -- (KeyIso)
SRV:64bit: - [2013/08/22 05:50:59 | 000,245,760 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\TimeBrokerServer.dll -- (TimeBroker)
SRV:64bit: - [2013/08/22 05:50:00 | 000,525,312 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\netprofmsvc.dll -- (netprofm)
SRV:64bit: - [2013/08/22 05:45:59 | 000,151,040 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ncbservice.dll -- (NcbService)
SRV:64bit: - [2013/08/22 05:40:49 | 000,248,832 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\vaultsvc.dll -- (VaultSvc)
SRV:64bit: - [2013/08/22 05:31:03 | 000,201,728 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\DeviceSetupManager.dll -- (DsmSvc)
SRV:64bit: - [2013/08/22 05:15:54 | 000,073,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\NcdAutoSetup.dll -- (NcdAutoSetup)
SRV:64bit: - [2013/05/11 17:45:54 | 000,822,232 | ---- | M] (Intel® Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe -- (Intel®
SRV:64bit: - [2013/05/11 17:45:38 | 000,733,696 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel®
SRV:64bit: - [2012/10/24 22:16:23 | 000,327,680 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Program Files\IDT\WDM\stacsv64.exe -- (STacSV)
SRV:64bit: - [2011/12/12 00:00:00 | 000,135,824 | ---- | M] (Seiko Epson Corporation) [Auto | Running] -- C:\Windows\SysNative\escsvc64.exe -- (EpsonScanSvc)
SRV - [2014/09/23 00:32:08 | 000,833,728 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2014/09/16 22:14:57 | 001,795,912 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe -- (NvNetworkService)
SRV - [2014/09/13 16:12:58 | 000,411,968 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2014/09/12 14:14:55 | 004,799,760 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe -- (TeamViewer9)
SRV - [2014/09/12 05:43:06 | 000,064,704 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2014/09/09 16:17:11 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2014/08/26 09:49:58 | 000,078,088 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe -- (HPSupportSolutionsFrameworkService)
SRV - [2014/08/19 06:23:00 | 000,357,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\GeofenceMonitorService.dll -- (lfsvc)
SRV - [2014/08/19 06:20:41 | 000,475,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (WAS)
SRV - [2014/08/19 06:20:40 | 000,066,560 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\inetsrv\w3logsvc.dll -- (w3logsvc)
SRV - [2014/08/19 06:20:40 | 000,062,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll -- (AppHostSvc)
SRV - [2014/08/19 02:57:52 | 000,390,616 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2014/08/19 02:57:51 | 000,169,432 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2014/08/15 23:29:38 | 002,899,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll -- (PrintNotify)
SRV - [2014/05/12 10:24:42 | 000,860,472 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2014/05/12 10:24:40 | 001,809,720 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2014/04/03 20:21:48 | 000,315,008 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013/11/04 18:31:56 | 000,092,160 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe -- (HP Support Assistant Service)
SRV - [2013/09/27 12:21:38 | 000,243,464 | ---- | M] (CyberLink) [Auto | Stopped] -- C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\kmsvc.exe -- (CLKMSVC10_99E320F5)
SRV - [2013/09/27 00:18:31 | 000,298,760 | ---- | M] (CyberLink) [Auto | Running] -- C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe -- (CyberLink PowerDVD 12 Media Server Service)
SRV - [2013/09/27 00:18:28 | 000,077,576 | ---- | M] (CyberLink) [Auto | Running] -- C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe -- (CyberLink PowerDVD 12 Media Server Monitor Service)
SRV - [2013/08/21 23:55:35 | 000,018,944 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\StorSvc.dll -- (StorSvc)
SRV - [2013/08/21 22:53:34 | 000,011,776 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysWOW64\smphost.dll -- (smphost)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2014/09/30 11:58:02 | 000,122,584 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
DRV:64bit: - [2014/09/17 00:51:20 | 000,197,408 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:64bit: - [2014/09/16 22:14:52 | 000,019,272 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys -- (NvStreamKms)
DRV:64bit: - [2014/09/04 15:14:38 | 000,038,048 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvvad64v.sys -- (nvvad_WaveExtensible)
DRV:64bit: - [2014/08/19 06:27:27 | 000,376,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\clfs.sys -- (CLFS)
DRV:64bit: - [2014/08/19 06:27:27 | 000,157,016 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\WINDOWS\SysNative\drivers\wof.sys -- (Wof)
DRV:64bit: - [2014/08/19 06:27:27 | 000,136,024 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\wfplwfs.sys -- (WFPLWFS)
DRV:64bit: - [2014/08/19 06:23:26 | 000,055,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wpcfltr.sys -- (wpcfltr)
DRV:64bit: - [2014/08/19 06:23:17 | 000,257,880 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\WdFilter.sys -- (WdFilter)
DRV:64bit: - [2014/08/19 06:23:17 | 000,123,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WdNisDrv.sys -- (WdNisDrv)
DRV:64bit: - [2014/08/19 06:23:17 | 000,035,856 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\WdBoot.sys -- (WdBoot)
DRV:64bit: - [2014/08/19 02:57:51 | 000,099,288 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\TeeDriverx64.sys -- (MEIx64)
DRV:64bit: - [2014/08/14 20:36:55 | 000,146,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpioclx.sys -- (GPIOClx0101)
DRV:64bit: - [2014/07/24 11:28:38 | 000,468,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBHUB3.SYS -- (USBHUB3)
DRV:64bit: - [2014/07/24 11:28:38 | 000,412,992 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\spaceport.sys -- (spaceport)
DRV:64bit: - [2014/07/24 07:42:22 | 000,126,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NdisImPlatform.sys -- (NdisImPlatform)
DRV:64bit: - [2014/05/12 10:26:14 | 000,064,216 | ---- | M] (Malwarebytes Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\mwac.sys -- (MBAMWebAccessControl)
DRV:64bit: - [2014/05/12 10:26:00 | 000,091,352 | ---- | M] (Malwarebytes Corporation) [File_System | System | Running] -- C:\Windows\SysNative\drivers\mbamchameleon.sys -- (mbamchameleon)
DRV:64bit: - [2014/05/12 10:25:56 | 000,025,816 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2014/03/18 20:24:40 | 000,059,160 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt)
DRV:64bit: - [2014/03/18 20:24:38 | 000,076,568 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt)
DRV:64bit: - [2014/03/18 20:24:36 | 000,013,080 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidEqd.sys -- (LHidEqd)
DRV:64bit: - [2014/03/18 20:24:34 | 000,077,592 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LEqdUsb.sys -- (LEqdUsb)
DRV:64bit: - [2014/03/18 06:13:19 | 000,924,504 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\WINDOWS\SysNative\drivers\refs.sys -- (ReFS)
DRV:64bit: - [2014/03/18 06:13:15 | 000,146,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx2.sys -- (SerCx2)
DRV:64bit: - [2014/03/18 06:13:02 | 000,175,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VerifierExt.sys -- (VerifierExt)
DRV:64bit: - [2014/03/18 06:13:01 | 000,236,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdbus.sys -- (sdbus)
DRV:64bit: - [2014/03/18 06:13:01 | 000,086,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pdc.sys -- (pdc)
DRV:64bit: - [2014/03/18 06:13:01 | 000,079,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\sdstor.sys -- (sdstor)
DRV:64bit: - [2014/03/18 06:13:01 | 000,039,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\intelpep.sys -- (intelpep)
DRV:64bit: - [2014/03/18 06:13:01 | 000,033,280 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicRender.sys -- (BasicRender)
DRV:64bit: - [2014/03/18 06:13:00 | 000,325,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\USBXHCI.SYS -- (USBXHCI)
DRV:64bit: - [2014/03/18 06:13:00 | 000,189,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\UCX01000.SYS -- (UCX01000)
DRV:64bit: - [2014/03/18 06:13:00 | 000,057,176 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stornvme.sys -- (stornvme)
DRV:64bit: - [2014/03/18 05:45:47 | 000,027,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2014/03/18 05:45:41 | 000,037,216 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2013/12/04 14:02:30 | 002,505,904 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\netr28x.sys -- (netr28x)
DRV:64bit: - [2013/11/12 00:32:08 | 000,644,968 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStorA.sys -- (iaStorA)
DRV:64bit: - [2013/08/22 09:25:40 | 000,043,008 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\condrv.sys -- (condrv)
DRV:64bit: - [2013/08/22 09:25:40 | 000,030,048 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\WINDOWS\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2013/08/22 08:50:19 | 000,057,696 | ---- | M] (Microsoft Corporation) [Kernel | System | Stopped] -- C:\Windows\SysNative\drivers\dam.sys -- (dam)
DRV:64bit: - [2013/08/22 08:49:54 | 000,079,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\acpiex.sys -- (acpiex)
DRV:64bit: - [2013/08/22 08:49:33 | 000,159,584 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tpm.sys -- (TPM)
DRV:64bit: - [2013/08/22 08:43:49 | 000,063,840 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\mvumis.sys -- (mvumis)
DRV:64bit: - [2013/08/22 08:43:48 | 000,041,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\msgpiowin32.sys -- (msgpiowin32)
DRV:64bit: - [2013/08/22 08:43:45 | 003,357,024 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2013/08/22 08:43:45 | 000,093,536 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2013/08/22 08:43:45 | 000,082,784 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sss.sys -- (LSI_SSS)
DRV:64bit: - [2013/08/22 08:43:45 | 000,064,352 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2013/08/22 08:43:44 | 000,081,760 | ---- | M] (LSI Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas3.sys -- (LSI_SAS3)
DRV:64bit: - [2013/08/22 08:43:41 | 000,782,176 | ---- | M] (PMC-Sierra) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\adp80xx.sys -- (ADP80XX)
DRV:64bit: - [2013/08/22 08:43:41 | 000,531,296 | ---- | M] (Broadcom Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2013/08/22 08:43:41 | 000,259,424 | ---- | M] (AMD Technologies Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2013/08/22 08:43:41 | 000,108,896 | ---- | M] (LSI) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\3ware.sys -- (3ware)
DRV:64bit: - [2013/08/22 08:43:41 | 000,079,200 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2013/08/22 08:43:40 | 000,114,016 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorTcgDrv.sys -- (EhStorTcgDrv)
DRV:64bit: - [2013/08/22 08:43:40 | 000,082,784 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\EhStorClass.sys -- (EhStorClass)
DRV:64bit: - [2013/08/22 08:43:40 | 000,025,952 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2013/08/22 08:43:34 | 000,305,504 | ---- | M] (VIA Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\VSTXRAID.SYS -- (VSTXRAID)
DRV:64bit: - [2013/08/22 08:43:33 | 000,074,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uaspstor.sys -- (UASPStor)
DRV:64bit: - [2013/08/22 08:43:32 | 000,031,072 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2013/08/22 08:43:31 | 000,107,872 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\storahci.sys -- (storahci)
DRV:64bit: - [2013/08/22 08:43:31 | 000,072,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SpbCx.sys -- (SpbCx)
DRV:64bit: - [2013/08/22 08:43:31 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\SerCx.sys -- (SerCx)
DRV:64bit: - [2013/08/22 08:39:15 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\uefi.sys -- (UEFI)
DRV:64bit: - [2013/08/22 08:37:27 | 000,069,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vpci.sys -- (vpci)
DRV:64bit: - [2013/08/22 08:36:12 | 000,026,976 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WpdUpFltr.sys -- (WpdUpFltr)
DRV:64bit: - [2013/08/22 07:39:58 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WSDPrint.sys -- (WSDPrintDevice)
DRV:64bit: - [2013/08/22 07:39:54 | 000,076,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ahcache.sys -- (ahcache)
DRV:64bit: - [2013/08/22 07:39:50 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WSDScan.sys -- (WSDScan)
DRV:64bit: - [2013/08/22 07:39:31 | 000,050,688 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\BasicDisplay.sys -- (BasicDisplay)
DRV:64bit: - [2013/08/22 07:39:20 | 000,022,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HyperVideo.sys -- (HyperVideo)
DRV:64bit: - [2013/08/22 07:39:06 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidumdf.sys -- (mshidumdf)
DRV:64bit: - [2013/08/22 07:38:58 | 000,010,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpitime.sys -- (acpitime)
DRV:64bit: - [2013/08/22 07:38:48 | 000,010,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipagr.sys -- (acpipagr)
DRV:64bit: - [2013/08/22 07:38:39 | 000,036,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthAvrcpTg.sys -- (BthAvrcpTg)
DRV:64bit: - [2013/08/22 07:38:26 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\kdnic.sys -- (kdnic)
DRV:64bit: - [2013/08/22 07:38:23 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmgencounter.sys -- (gencounter)
DRV:64bit: - [2013/08/22 07:38:22 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\npsvctrig.sys -- (npsvctrig)
DRV:64bit: - [2013/08/22 07:38:16 | 000,030,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\BthhfHid.sys -- (bthhfhid)
DRV:64bit: - [2013/08/22 07:37:49 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hyperkbd.sys -- (hyperkbd)
DRV:64bit: - [2013/08/22 07:37:46 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2013/08/22 07:37:42 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bthhfenum.sys -- (BthHFEnum)
DRV:64bit: - [2013/08/22 07:37:28 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2013/08/22 07:37:28 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidi2c.sys -- (hidi2c)
DRV:64bit: - [2013/08/22 07:37:14 | 000,029,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2013/08/22 07:36:43 | 000,087,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\netvsc63.sys -- (netvsc)
DRV:64bit: - [2013/08/22 07:36:25 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\NdisVirtualBus.sys -- (NdisVirtualBus)
DRV:64bit: - [2013/08/22 07:36:07 | 000,066,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mslldp.sys -- (MsLldp)
DRV:64bit: - [2013/08/22 07:35:42 | 000,103,424 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\Ndu.sys -- (Ndu)
DRV:64bit: - [2013/08/22 04:46:33 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fxppm.sys -- (FxPPM)
DRV:64bit: - [2013/08/12 19:25:46 | 000,017,624 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bcmfn2.sys -- (bcmfn2)
DRV:64bit: - [2013/08/09 20:39:30 | 000,651,248 | ---- | M] (Intel Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\iaStorAV.sys -- (iaStorAV)
DRV:64bit: - [2013/07/30 14:47:35 | 000,024,568 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_GPIO.sys -- (iaLPSSi_GPIO)
DRV:64bit: - [2013/07/25 15:05:39 | 000,099,320 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\iaLPSSi_I2C.sys -- (iaLPSSi_I2C)
DRV:64bit: - [2013/06/18 10:44:59 | 000,129,224 | ---- | M] (Qualcomm Atheros Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\L1C63x64.sys -- (L1C)
DRV:64bit: - [2012/10/24 22:18:48 | 000,543,744 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\stwrt64.sys -- (STHDA)
DRV:64bit: - [2012/06/25 13:24:50 | 000,092,536 | ---- | M] (CyberLink) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\CLVirtualDrive.sys -- (CLVirtualDrive)
DRV:64bit: - [2009/12/30 13:21:26 | 000,031,800 | ---- | M] (VS Revo Group) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\revoflt.sys -- (Revoflt)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPDSK13/1
IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPDSK13/1
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...0TR&pc=HPDTDFJS
IE:64bit: - HKLM\..\SearchScopes\{F101994A-BBD4-4681-80A6-767B757D6E7C}: "URL" = http://www.amazon.co...s={searchTerms}
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...0TR&pc=HPDTDFJS
IE - HKLM\..\SearchScopes\{F101994A-BBD4-4681-80A6-767B757D6E7C}: "URL" = http://www.amazon.co...s={searchTerms}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPDSK13/1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\..\SearchScopes,DefaultScope = {F4A39D72-7D80-4983-A68B-CFA119BEB38F}
IE - HKCU\..\SearchScopes\{F4A39D72-7D80-4983-A68B-CFA119BEB38F}: "URL" = http://www.google.co...utputEncoding?}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.google.com"
FF - prefs.js..extensions.enabledAddons: %7Ba0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7%7D:20131118
FF - prefs.js..extensions.enabledAddons: openinie%40wittersworld.com:1.4
FF - prefs.js..extensions.enabledAddons: amznUWL2%40amazon.com:1.10
FF - prefs.js..extensions.enabledAddons: %7BF003DA68-8256-4b37-A6C4-350FA04494DF%7D:6.5
FF - prefs.js..extensions.enabledAddons: %7B37fa1426-b82d-11db-8314-0800200c9a66%7D:3.4.7
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:32.0.3
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3503.0728: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\hp.com/HPDetect: C:\Users\ronak_000\AppData\Roaming\HewlettPackard\HPDetect\1.0.0.0\npHPDetect.dll (HP)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{F003DA68-8256-4b37-A6C4-350FA04494DF}: C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2014/08/20 14:40:02 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 32.0.3\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 32.0.3\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2014/08/19 00:00:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\ronak_000\AppData\Roaming\mozilla\Extensions
[2014/09/20 20:05:42 | 000,000,000 | ---D | M] (No name found) -- C:\Users\ronak_000\AppData\Roaming\mozilla\Firefox\Profiles\u1mmo4yf.default\extensions
[2014/09/20 20:05:42 | 000,000,000 | ---D | M] (FT DeepDark) -- C:\Users\ronak_000\AppData\Roaming\mozilla\Firefox\Profiles\u1mmo4yf.default\extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66}
[2014/08/19 00:08:11 | 000,000,000 | ---D | M] (WOT) -- C:\Users\ronak_000\AppData\Roaming\mozilla\Firefox\Profiles\u1mmo4yf.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2014/08/19 00:08:11 | 000,243,287 | ---- | M] () (No name found) -- C:\Users\ronak_000\AppData\Roaming\mozilla\firefox\profiles\u1mmo4yf.default\extensions\[email protected]
[2014/08/19 00:08:11 | 000,021,645 | ---- | M] () (No name found) -- C:\Users\ronak_000\AppData\Roaming\mozilla\firefox\profiles\u1mmo4yf.default\extensions\[email protected]
[2014/09/08 23:00:33 | 000,220,453 | ---- | M] () (No name found) -- C:\Users\ronak_000\AppData\Roaming\mozilla\firefox\profiles\u1mmo4yf.default\extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi
[2014/08/19 01:46:19 | 000,967,685 | ---- | M] () (No name found) -- C:\Users\ronak_000\AppData\Roaming\mozilla\firefox\profiles\u1mmo4yf.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
[2014/08/19 00:00:19 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2014/09/25 21:06:08 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2014/08/20 14:40:02 | 000,000,000 | ---D | M] (Logitech SetPoint) -- C:\PROGRAM FILES\LOGITECH\SETPOINTP\LOGISMOOTHFIREFOXEXT

========== Chrome ==========

CHR - default_search_provider: ()
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - plugin: Error reading preferences file
CHR - Extension: Google Docs = C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\
CHR - Extension: Google Drive = C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: Google Voice Search Hotword (Beta) = C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn\0.1.1.5023_0\
CHR - Extension: YouTube = C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google Search = C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Rating Program Extension = C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\imbankdmoclhcdmdejkklikkpaidaeij\1.1.2_0\
CHR - Extension: Google Wallet = C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: Gmail = C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\

O1 HOSTS File: ([2013/08/22 09:25:41 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (ExplorerBHO Class) - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
O2:64bit: - BHO: (Logitech SetPoint) - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
O2:64bit: - BHO: (HP Network Check Helper) - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
O2:64bit: - BHO: (ClassicIEBHO Class) - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_64.dll (IvoSoft)
O2:64bit: - BHO: (Adblock Plus for IE Browser Helper Object) - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll (Adblock Plus)
O2 - BHO: (ExplorerBHO Class) - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
O2 - BHO: (Logitech SetPoint) - {AF949550-9094-4807-95EC-D1C317803333} - C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
O2 - BHO: (HP Network Check Helper) - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
O2 - BHO: (ClassicIEBHO Class) - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIEDLL_32.dll (IvoSoft)
O2 - BHO: (Adblock Plus for IE Browser Helper Object) - {FFCB3198-32F3-4E8B-9539-4324694ED664} - C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll (Adblock Plus)
O3:64bit: - HKLM\..\Toolbar: (Classic Explorer Bar) - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
O3 - HKLM\..\Toolbar: (Classic Explorer Bar) - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [BeatsOSDApp] C:\Program Files\IDT\WDM\Beats64.exe (Hewlett-Packard )
O4:64bit: - HKLM..\Run: [Classic Start Menu] C:\Program Files\Classic Shell\ClassicStartMenu.exe (IvoSoft)
O4:64bit: - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Logitech Download Assistant] C:\WINDOWS\SysNative\LogiLDA.dll (Logitech, Inc.)
O4:64bit: - HKLM..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [ShadowPlay] C:\WINDOWS\SysNative\nvspcap64.dll (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe (IDT, Inc.)
O4 - HKLM..\Run: [Carbonite Backup] C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe (Carbonite, Inc.)
O4 - HKCU..\Run: [CCleaner Monitoring] C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
O4 - HKCU..\Run: [EPLTarget\P0000000000000000] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIJIE.EXE /EPT "EPLTarget\P0000000000000000" /M "WF-3530 Series" /EF "HKCU" File not found
O4:64bit: - HKLM..\RunOnce: [NCPluginUpdater] C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe (Hewlett-Packard)
O4 - Startup: C:\Users\ronak_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stickies.lnk = C:\Program Files (x86)\Stickies\stickies.exe (Zhorn Software)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableCursorSuppression = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9:64bit: - Extra Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9:64bit: - Extra 'Tools' menuitem : @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9:64bit: - Extra 'Tools' menuitem : Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe (IvoSoft)
O9 - Extra Button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe (Hewlett-Packard)
O9 - Extra 'Tools' menuitem : Classic IE Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE_32.exe (IvoSoft)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: localhost ([]* in Local intranet)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{CE5EC543-607A-4404-846A-D8DCA026C6FC}: DhcpNameServer = 192.168.1.1
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\ms-help - No CLSID value found
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\WINDOWS\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\WINDOWS\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O30 - LSA: Security Packages - (livessp) - File not found
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2014/09/30 13:06:30 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\ronak_000\Desktop\OTL.exe
[2014/09/30 11:58:02 | 000,122,584 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\48230029.sys
[2014/09/29 13:55:54 | 000,000,000 | ---D | C] -- C:\Users\ronak_000\AppData\Roaming\TeamViewer
[2014/09/22 19:11:39 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies
[2014/09/12 15:05:31 | 000,000,000 | ---D | C] -- C:\Program Files\Adblock Plus for IE
[2014/09/08 23:11:38 | 000,000,000 | ---D | C] -- E:\Documents\MediaServer
[2014/09/08 23:11:37 | 000,000,000 | ---D | C] -- C:\Users\ronak_000\AppData\Local\MediaServer
[2014/09/08 23:11:37 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\CyberLink
[2014/09/08 23:11:33 | 000,000,000 | ---D | C] -- C:\ProgramData\PDVD
[2014/09/08 23:02:53 | 000,000,000 | ---D | C] -- C:\Users\ronak_000\AppData\Local\LogMeIn Rescue Calling Card
[2014/09/08 23:01:27 | 000,000,000 | ---D | C] -- C:\Users\ronak_000\AppData\Local\Cyberlink
[2014/09/03 21:18:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2014/09/03 21:18:28 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2014/09/03 21:18:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[1 C:\Users\ronak_000\*.tmp files -> C:\Users\ronak_000\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2014/09/30 13:17:00 | 000,000,830 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2014/09/30 13:06:32 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\ronak_000\Desktop\OTL.exe
[2014/09/30 13:04:00 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2014/09/30 11:58:12 | 000,000,926 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2014/09/30 11:58:02 | 000,122,584 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\MBAMSwissArmy.sys
[2014/09/30 11:58:02 | 000,122,584 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\SysNative\drivers\48230029.sys
[2014/09/30 11:57:54 | 000,067,584 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2014/09/29 13:57:22 | 000,000,847 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2014/09/28 13:54:01 | 000,000,378 | ---- | M] () -- C:\WINDOWS\tasks\HPCeeScheduleFortestaccount.job
[2014/09/28 13:15:19 | 000,958,356 | ---- | M] () -- C:\WINDOWS\SysNative\PerfStringBackup.INI
[2014/09/28 13:15:19 | 000,795,922 | ---- | M] () -- C:\WINDOWS\SysNative\perfh009.dat
[2014/09/28 13:15:19 | 000,161,676 | ---- | M] () -- C:\WINDOWS\SysNative\perfc009.dat
[2014/09/28 13:08:20 | 016,777,216 | -HS- | M] () -- C:\swapfile.sys
[2014/09/28 13:08:17 | 4243,066,879 | -HS- | M] () -- C:\hiberfil.sys
[2014/09/27 04:29:23 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
[2014/09/27 04:29:23 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2014/09/13 19:48:03 | 000,073,872 | ---- | M] (Khronos Group) -- C:\WINDOWS\SysNative\OpenCL.dll
[2014/09/13 19:48:03 | 000,060,560 | ---- | M] (Khronos Group) -- C:\WINDOWS\SysWow64\OpenCL.dll
[2014/09/13 19:48:03 | 000,026,956 | ---- | M] () -- C:\WINDOWS\SysNative\nvinfo.pb
[2014/09/12 17:48:58 | 000,516,952 | ---- | M] () -- C:\WINDOWS\SysNative\FNTCACHE.DAT
[2014/09/11 11:37:55 | 003,961,833 | ---- | M] () -- C:\WINDOWS\SysNative\nvcoproc.bin
[2014/09/03 18:48:02 | 000,084,904 | ---- | M] () -- C:\Users\ronak_000\Desktop\Xfinity Preferred XF Double Play.PNG
[1 C:\Users\ronak_000\*.tmp files -> C:\Users\ronak_000\*.tmp -> ]

========== Files Created - No Company Name ==========

[2014/09/29 13:21:33 | 000,001,207 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
[2014/09/27 04:29:23 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
[2014/09/27 04:29:23 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\SysNative\drivers\Msft_User_WpdFs_01_11_00.Wdf
[2014/09/12 17:47:16 | 000,388,729 | ---- | C] () -- C:\WINDOWS\SysNative\ApnDatabase.xml
[2014/09/08 23:02:53 | 000,002,472 | ---- | C] () -- C:\Users\ronak_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LogMeIn Rescue Calling Card.lnk
[2014/09/03 18:48:02 | 000,084,904 | ---- | C] () -- C:\Users\ronak_000\Desktop\Xfinity Preferred XF Double Play.PNG
[2014/08/19 02:34:35 | 000,973,226 | ---- | C] () -- C:\WINDOWS\SysWow64\PerfStringBackup.INI
[2014/03/18 06:13:28 | 000,002,255 | ---- | C] () -- C:\WINDOWS\SysWow64\WimBootCompress.ini
[2014/03/18 06:13:03 | 000,103,936 | ---- | C] () -- C:\WINDOWS\SysWow64\OEMLicense.dll
[2013/08/22 11:36:43 | 000,215,943 | ---- | C] () -- C:\WINDOWS\SysWow64\dssec.dat
[2013/08/22 11:36:42 | 000,000,741 | ---- | C] () -- C:\WINDOWS\SysWow64\NOISE.DAT
[2013/08/22 10:46:23 | 000,067,584 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2013/08/22 03:01:23 | 000,043,131 | ---- | C] () -- C:\WINDOWS\mib.bin
[2013/08/21 23:32:36 | 000,046,080 | ---- | C] () -- C:\WINDOWS\SysWow64\BWContextHandler.dll
[2013/08/21 19:55:20 | 000,364,544 | ---- | C] () -- C:\WINDOWS\SysWow64\msjetoledb40.dll
[2013/08/21 19:52:39 | 000,673,088 | ---- | C] () -- C:\WINDOWS\SysWow64\mlang.dat

========== ZeroAccess Check ==========

[2014/08/19 03:04:58 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2014/08/16 00:08:41 | 021,195,616 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2014/08/15 23:16:40 | 018,722,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2013/08/22 05:49:49 | 000,921,088 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2013/08/21 22:45:10 | 000,691,712 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2013/08/22 05:45:17 | 000,483,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2014/09/30 12:45:02 | 000,000,000 | ---D | M] -- C:\Users\ronak_000\AppData\Roaming\ClassicShell
[2014/08/20 20:02:50 | 000,000,000 | ---D | M] -- C:\Users\ronak_000\AppData\Roaming\Everything
[2014/08/26 14:26:19 | 000,000,000 | ---D | M] -- C:\Users\ronak_000\AppData\Roaming\Firestorm_x64
[2014/08/19 01:21:40 | 000,000,000 | ---D | M] -- C:\Users\ronak_000\AppData\Roaming\HewlettPackard
[2014/08/19 00:33:14 | 000,000,000 | ---D | M] -- C:\Users\ronak_000\AppData\Roaming\IDT
[2014/08/18 22:46:08 | 000,000,000 | ---D | M] -- C:\Users\ronak_000\AppData\Roaming\No Company Name
[2014/09/30 11:58:18 | 000,000,000 | ---D | M] -- C:\Users\ronak_000\AppData\Roaming\stickies
[2014/09/30 07:52:48 | 000,000,000 | ---D | M] -- C:\Users\ronak_000\AppData\Roaming\TeamViewer
[2014/08/29 00:42:02 | 000,000,000 | ---D | M] -- C:\Users\ronak_000\AppData\Roaming\WebApp
[2014/08/19 00:41:24 | 000,000,000 | ---D | M] -- C:\Users\ronak_000\AppData\Roaming\WinBatch

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 237 bytes -> C:\Users\ronak_000\SkyDrive:ms-properties
@Alternate Data Stream - 237 bytes -> C:\Users\ronak_000\OneDrive:ms-properties

< End of report >

#2
Naathim

Posted 06 October 2014 - 04:27 AM

GeekU Minion

Expert
4,568 posts

Minion%20Welcome.jpg

My name's Naathim and I'm a GeekU Minion! Now that we are mates and will be working together to clean your machine out of any junkware, feel free to call me Naat

I am terribly sorry that we've missed you, our forum is quite busy one and sometimes it happens to overlook a thread (not intentionally). Fortunately I have got now both time and will to help

Before we start please note the following:

Analysis and research take some time, also sometimes real life gets in the way, please be patient.
Limit your internet access to posting here, some infections just wait to steal typed-in passwords.
Don't run any scripts or tools on your own, unsupervised usage may cause more harm than good.
Paste the logs in your posts, attachments make my work harder and more complicated.
Stay with me to the end, the absence of symtoms doesn't mean that your machine is fully operational.
Note that we may live in totally different time zones, what may cause some delays between answers.

I can't foresee everything, so if anything unexpected happens, please stop and inform me!
There are no silly questions. Never be afraid to ask if in doubt!

Let's start and enjoy the fight!

We have a better scanner for the 64-bit type of OS.

Scan with Farbar Recovery Scan Tool

Please download Farbar Recovery Scan Tool x64 and save it to your Desktop.

Right-click on icon and select Run as Administrator to start the tool.
> Windows 8 users will be prompted about Windows SmartScreen protection - click More information and Run.
When the tool opens click Yes to disclaimer.
Make sure that Addition option is checked.
Press Scan button and wait.
The tool will produce two logfiles on your desktop: FRST.txt and Addition.txt.

Please include their content in your next reply.

#3
Naathim

Posted 08 October 2014 - 04:25 AM

GeekU Minion

Expert
4,568 posts

Hi,

Still with me?

#4
HelpNeeded911

Posted 08 October 2014 - 08:50 AM

Member

Topic Starter
Member
80 posts

:oops: Sorry about that. Still here. Here are those logs! THANKS

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-10-2014 01
Ran by testaccount (administrator) on HERDESKTOP on 08-10-2014 10:48:48
Running from C:\Users\ronak_000\Desktop
Loaded Profile: testaccount (Available profiles: testaccount & Administrator)
Platform: Windows 8.1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Carbonite, Inc. (www.carbonite.com)) C:\Program Files\Carbonite\Carbonite Backup\CarboniteService.exe
() C:\Program Files\Everything\Everything.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
(Hewlett-Packard ) C:\Program Files\IDT\WDM\Beats64.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIJIE.EXE
(Zhorn Software) C:\Program Files (x86)\Stickies\stickies.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Carbonite, Inc.) C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\MSOSYNC.EXE
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WMIADAP.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats64.exe [41664 2012-10-24] (Hewlett-Packard )
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-06-16] (Adobe Systems Incorporated)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161984 2014-04-20] (IvoSoft)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1664000 2012-10-24] (IDT, Inc.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2463552 2014-10-04] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-30] (Intel Corporation)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3100440 2014-05-19] (Logitech, Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Carbonite Backup] => C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe [1056976 2014-06-27] (Carbonite, Inc.)
HKLM-x32\...\Run: [amd_dc_opt] => C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [77824 2008-07-22] (AMD)
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-09-26] (Hewlett-Packard)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-3079756242-3303576260-2646273123-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIJIE.EXE [283232 2012-02-28] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3079756242-3303576260-2646273123-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6482200 2014-09-26] (Piriform Ltd)
HKU\S-1-5-18\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIJIE.EXE [283232 2012-02-28] (SEIKO EPSON CORPORATION)
Startup: C:\Users\ronak_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stickies.lnk
ShortcutTarget: Stickies.lnk -> C:\Program Files (x86)\Stickies\stickies.exe (Zhorn Software)
Startup: C:\Users\ronak_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stickies.lnk
ShortcutTarget: Stickies.lnk -> C:\Program Files (x86)\Stickies\stickies.exe (Zhorn Software)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers: [Carbonite.Green] -> {95A27763-F62A-4114-9072-E81D87DE3B68} => C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
ShellIconOverlayIdentifiers: [Carbonite.Partial] -> {E300CD91-100F-4E67-9AF3-1384A6124015} => C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
ShellIconOverlayIdentifiers: [Carbonite.Yellow] -> {5E529433-B50E-4bef-A63B-16A6B71B071A} => C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [Carbonite.Green] -> {95A27763-F62A-4114-9072-E81D87DE3B68} => C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
ShellIconOverlayIdentifiers-x32: [Carbonite.Partial] -> {E300CD91-100F-4E67-9AF3-1384A6124015} => C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
ShellIconOverlayIdentifiers-x32: [Carbonite.Yellow] -> {5E529433-B50E-4bef-A63B-16A6B71B071A} => C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll (Carbonite, Inc.)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPDSK13/1
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/HPDSK13/1
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/HPDSK13/1
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...0TR&pc=HPDTDFJS
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...0TR&pc=HPDTDFJS
SearchScopes: HKLM - {F101994A-BBD4-4681-80A6-767B757D6E7C} URL = http://www.amazon.co...s={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...0TR&pc=HPDTDFJS
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://www.bing.com/...0TR&pc=HPDTDFJS
SearchScopes: HKLM-x32 - {F101994A-BBD4-4681-80A6-767B757D6E7C} URL = http://www.amazon.co...s={searchTerms}
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - {F101994A-BBD4-4681-80A6-767B757D6E7C} URL =
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll (IvoSoft)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll (Adblock Plus)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll (IvoSoft)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll (Adblock Plus)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll (IvoSoft)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\ronak_000\AppData\Roaming\Mozilla\Firefox\Profiles\u1mmo4yf.default
FF Homepage: hxxp://www.google.com
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3503.0728 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: hp.com/HPDetect -> C:\Users\ronak_000\AppData\Roaming\HewlettPackard\HPDetect\1.0.0.0\npHPDetect.dll (HP)
FF Extension: FT DeepDark - C:\Users\ronak_000\AppData\Roaming\Mozilla\Firefox\Profiles\u1mmo4yf.default\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66} [2014-09-20]
FF Extension: WOT - C:\Users\ronak_000\AppData\Roaming\Mozilla\Firefox\Profiles\u1mmo4yf.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2014-08-19]
FF Extension: Add to Amazon Wish List Button - C:\Users\ronak_000\AppData\Roaming\Mozilla\Firefox\Profiles\u1mmo4yf.default\Extensions\[email protected] [2014-08-19]
FF Extension: Open in IE - C:\Users\ronak_000\AppData\Roaming\Mozilla\Firefox\Profiles\u1mmo4yf.default\Extensions\[email protected] [2014-08-19]
FF Extension: X-notifier - C:\Users\ronak_000\AppData\Roaming\Mozilla\Firefox\Profiles\u1mmo4yf.default\Extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2014-08-19]
FF Extension: Adblock Plus - C:\Users\ronak_000\AppData\Roaming\Mozilla\Firefox\Profiles\u1mmo4yf.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-08-19]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2014-08-20]

Chrome:
=======
CHR Profile: C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-19]
CHR Extension: (Google Drive) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-19]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-08-19]
CHR Extension: (YouTube) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-19]
CHR Extension: (Google Search) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-19]
CHR Extension: (Rating Program Extension) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\imbankdmoclhcdmdejkklikkpaidaeij [2014-08-19]
CHR Extension: (Google Wallet) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-19]
CHR Extension: (Gmail) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-19]
CHR Profile: C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Docs) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-19]
CHR Extension: (Google Drive) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-19]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-08-19]
CHR Extension: (YouTube) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-19]
CHR Extension: (Adblock Plus) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-08-20]
CHR Extension: (Google Search) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-19]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2014-08-20]
CHR Extension: (Google Wallet) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-19]
CHR Extension: (Gmail) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-19]
CHR Profile: C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Profile 2
CHR Extension: (Google Docs) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-19]
CHR Extension: (Google Drive) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-19]
CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-08-19]
CHR Extension: (YouTube) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-19]
CHR Extension: (Google Search) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-19]
CHR Extension: (Rating Program Extension) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\imbankdmoclhcdmdejkklikkpaidaeij [2014-08-19]
CHR Extension: (Google Wallet) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-19]
CHR Extension: (Gmail) - C:\Users\ronak_000\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-19]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 CLKMSVC10_99E320F5; C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\kmsvc.exe [243464 2014-08-12] (CyberLink)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation)
R2 Everything; C:\Program Files\Everything\Everything.exe [1441792 2014-08-05] () [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1149760 2014-10-04] (NVIDIA Corporation)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-11-04] (Hewlett-Packard Company) [File not signed]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [78088 2014-08-26] (Hewlett-Packard Company)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-30] (Intel Corporation)
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2014-08-19] (Intel Corporation)
S3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [44032 2013-08-21] (Microsoft Corporation)
S3 lfsvc; C:\Windows\SysWOW64\GeofenceMonitorService.dll [357376 2014-08-19] (Microsoft Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
S3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [688640 2014-08-19] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1796928 2014-10-04] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19440960 2014-10-04] (NVIDIA Corporation)
S3 smphost; C:\Windows\SysWOW64\smphost.dll [11776 2013-08-21] (Microsoft Corporation)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [327680 2012-10-24] (IDT, Inc.) [File not signed]
S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18944 2013-08-21] (Microsoft Corporation)
S3 w3logsvc; C:\Windows\system32\inetsrv\w3logsvc.dll [76800 2014-08-19] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-08-19] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-08-19] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R1 mbamchameleon; C:\WINDOWS\system32\drivers\mbamchameleon.sys [91352 2014-05-12] (Malwarebytes Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [122584 2014-10-08] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2014-05-12] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2014-08-19] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [20288 2014-10-04] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-08-19] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-08 10:48 - 2014-10-08 10:49 - 00027177 _____ () C:\Users\ronak_000\Desktop\FRST.txt
2014-10-08 10:48 - 2014-10-08 10:48 - 00000000 ____D () C:\FRST
2014-10-08 10:47 - 2014-10-08 10:48 - 02109952 _____ (Farbar) C:\Users\ronak_000\Desktop\FRST64.exe
2014-10-08 10:42 - 2014-10-08 10:45 - 00013107 ____N () C:\WINDOWS\WindowsUpdate.log
2014-10-03 19:09 - 2014-10-03 19:11 - 00000000 ____D () C:\Users\ronak_000\Desktop\IMG_3730
2014-09-30 17:45 - 2014-09-30 17:45 - 00000000 ____D () C:\Users\ronak_000\AppData\Local\Downloaded Installations
2014-09-30 17:45 - 2014-09-30 17:45 - 00000000 ____D () C:\Program Files (x86)\AMD
2014-09-30 17:45 - 2010-06-02 04:55 - 00239960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_7.dll
2014-09-30 17:45 - 2010-06-02 04:55 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_7.dll
2014-09-30 17:45 - 2010-05-26 11:41 - 01907552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_43.dll
2014-09-30 17:45 - 2010-05-26 11:41 - 01868128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_43.dll
2014-09-30 17:45 - 2010-02-04 10:01 - 00530776 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_6.dll
2014-09-30 17:45 - 2010-02-04 10:01 - 00528216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_6.dll
2014-09-30 17:45 - 2010-02-04 10:01 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_6.dll
2014-09-30 17:45 - 2010-02-04 10:01 - 00176984 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_6.dll
2014-09-30 17:45 - 2010-02-04 10:01 - 00078680 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_4.dll
2014-09-30 17:45 - 2010-02-04 10:01 - 00074072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_4.dll
2014-09-30 17:45 - 2010-02-04 10:01 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_7.dll
2014-09-30 17:45 - 2010-02-04 10:01 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_7.dll
2014-09-30 17:45 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_5.dll
2014-09-30 17:45 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_5.dll
2014-09-30 17:45 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_5.dll
2014-09-30 17:45 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_5.dll
2014-09-30 17:45 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2014-09-30 17:45 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_3.dll
2014-09-30 17:45 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dcsx_42.dll
2014-09-30 17:45 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dcsx_42.dll
2014-09-30 17:45 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_42.dll
2014-09-30 17:45 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_42.dll
2014-09-30 17:45 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_42.dll
2014-09-30 17:45 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_42.dll
2014-09-30 17:45 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx11_42.dll
2014-09-30 17:45 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx11_42.dll
2014-09-30 17:45 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2014-09-30 17:45 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_4.dll
2014-09-30 17:45 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_4.dll
2014-09-30 17:45 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2014-09-30 17:45 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2014-09-30 17:45 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_6.dll
2014-09-30 17:45 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2014-09-30 17:45 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_41.dll
2014-09-30 17:45 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2014-09-30 17:45 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2014-09-30 17:45 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2014-09-30 17:45 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_3.dll
2014-09-30 17:45 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_3.dll
2014-09-30 17:45 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2014-09-30 17:45 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2014-09-30 17:45 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_2.dll
2014-09-30 17:45 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2014-09-30 17:45 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_5.dll
2014-09-30 17:45 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2014-09-30 17:45 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_40.dll
2014-09-30 17:45 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2014-09-30 17:45 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_40.dll
2014-09-30 17:45 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2014-09-30 17:45 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_40.dll
2014-09-30 17:45 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_2.dll
2014-09-30 17:45 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2014-09-30 17:45 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2014-09-30 17:45 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_1.dll
2014-09-30 17:45 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2014-09-30 17:45 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_2.dll
2014-09-30 17:45 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_39.dll
2014-09-30 17:45 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2014-09-30 17:45 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_39.dll
2014-09-30 17:45 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2014-09-30 17:45 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_39.dll
2014-09-30 17:45 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2014-09-30 17:45 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2014-09-30 17:45 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_1.dll
2014-09-30 17:45 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_1.dll
2014-09-30 17:45 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2014-09-30 17:45 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2014-09-30 17:45 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAPOFX1_0.dll
2014-09-30 17:45 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_4.dll
2014-09-30 17:45 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2014-09-30 17:45 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2014-09-30 17:45 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_38.dll
2014-09-30 17:45 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2014-09-30 17:45 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_38.dll
2014-09-30 17:45 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2014-09-30 17:45 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_38.dll
2014-09-30 17:45 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2014-09-30 17:45 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XAudio2_0.dll
2014-09-30 17:45 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine3_0.dll
2014-09-30 17:45 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2014-09-30 17:45 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2014-09-30 17:45 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_3.dll
2014-09-30 17:45 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2014-09-30 17:45 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_37.dll
2014-09-30 17:45 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2014-09-30 17:45 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_37.dll
2014-09-30 17:44 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2014-09-30 17:44 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DX9_37.dll
2014-09-30 17:44 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2014-09-30 17:44 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_10.dll
2014-09-30 17:44 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2014-09-30 17:44 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\X3DAudio1_2.dll
2014-09-30 17:44 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2014-09-30 17:44 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_36.dll
2014-09-30 17:44 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2014-09-30 17:44 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_36.dll
2014-09-30 17:44 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2014-09-30 17:44 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_36.dll
2014-09-30 17:44 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2014-09-30 17:44 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_9.dll
2014-09-30 17:44 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2014-09-30 17:44 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_35.dll
2014-09-30 17:44 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2014-09-30 17:44 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_35.dll
2014-09-30 17:44 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2014-09-30 17:44 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_35.dll
2014-09-30 17:44 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2014-09-30 17:44 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_8.dll
2014-09-30 17:44 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2014-09-30 17:44 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_34.dll
2014-09-30 17:44 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2014-09-30 17:44 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_34.dll
2014-09-30 17:44 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2014-09-30 17:44 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_34.dll
2014-09-30 17:44 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2014-09-30 17:44 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_7.dll
2014-09-30 17:44 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_3.dll
2014-09-30 17:44 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_3.dll
2014-09-30 17:44 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2014-09-30 17:44 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10_33.dll
2014-09-30 17:44 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2014-09-30 17:44 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_33.dll
2014-09-30 17:44 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2014-09-30 17:44 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_33.dll
2014-09-30 17:44 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2014-09-30 17:44 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_1.dll
2014-09-30 17:44 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2014-09-30 17:44 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_6.dll
2014-09-30 17:44 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_5.dll
2014-09-30 17:44 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2014-09-30 17:44 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10.dll
2014-09-30 17:44 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx10.dll
2014-09-30 17:44 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2014-09-30 17:44 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_31.dll
2014-09-30 17:44 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_4.dll
2014-09-30 17:44 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2014-09-30 17:44 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2014-09-30 17:44 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2014-09-30 17:44 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_3.dll
2014-09-30 17:44 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_2.dll
2014-09-30 17:44 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_2.dll
2014-09-30 17:44 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2014-09-30 17:44 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2014-09-30 17:44 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_30.dll
2014-09-30 17:44 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2014-09-30 17:44 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_1.dll
2014-09-30 17:44 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2014-09-30 17:44 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xinput1_1.dll
2014-09-30 17:44 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2014-09-30 17:44 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_29.dll
2014-09-30 17:44 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2014-09-30 17:44 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xactengine2_0.dll
2014-09-30 17:44 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2014-09-30 17:44 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\x3daudio1_0.dll
2014-09-30 17:44 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2014-09-30 17:44 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_28.dll
2014-09-30 17:44 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2014-09-30 17:44 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_27.dll
2014-09-30 17:44 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2014-09-30 17:44 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_26.dll
2014-09-30 17:44 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2014-09-30 17:44 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_25.dll
2014-09-30 17:44 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2014-09-30 17:44 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3dx9_24.dll
2014-09-30 13:19 - 2014-09-30 13:19 - 00129014 _____ () C:\Users\ronak_000\Desktop\OTL.Txt
2014-09-30 13:19 - 2014-09-30 13:19 - 00081314 _____ () C:\Users\ronak_000\Desktop\Extras.Txt
2014-09-30 11:58 - 2014-10-01 11:30 - 00122584 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\48230029.sys
2014-09-29 13:55 - 2014-10-03 06:40 - 00000000 ____D () C:\Users\ronak_000\AppData\Roaming\TeamViewer
2014-09-29 13:21 - 2014-09-29 13:21 - 00001207 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 9.lnk
2014-09-27 04:29 - 2014-09-27 04:29 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2014-09-27 04:29 - 2014-09-27 04:29 - 00000000 ____H () C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-09-22 19:11 - 2014-09-22 19:11 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-09-22 19:11 - 2014-09-13 16:13 - 00613696 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2014-09-22 19:10 - 2014-09-17 00:51 - 00197408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda64v.sys
2014-09-22 19:10 - 2014-09-17 00:51 - 00031520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap64.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 31887680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 24552592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 20922512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 17259664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 14026304 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 13939272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 13157696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2014-09-22 19:10 - 2014-09-13 19:48 - 11392576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 11330776 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 04287296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 04008592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 01876296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6434411.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 01539272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6434411.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 00957584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 00925896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 00919240 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 00894096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 00867528 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 00501064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 00417096 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 00393024 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 00352016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 00348304 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 00303600 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 00174856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2014-09-22 19:10 - 2014-09-13 19:48 - 00156840 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2014-09-19 23:08 - 2014-09-04 15:14 - 00038048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2014-09-19 23:08 - 2014-09-04 15:14 - 00032416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2014-09-16 13:45 - 2014-09-16 13:45 - 00001037 _____ () C:\WINDOWS\system32\TeamViewer9_Hooks.log
2014-09-12 17:47 - 2014-08-28 21:58 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\appinfo.dll
2014-09-12 17:47 - 2014-08-28 21:32 - 02779136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2014-09-12 17:47 - 2014-08-28 20:59 - 03117568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2014-09-12 17:47 - 2014-08-28 19:56 - 02646016 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2014-09-12 17:47 - 2014-08-28 19:47 - 02321920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2014-09-12 17:47 - 2014-08-25 18:27 - 04148736 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2014-09-12 17:47 - 2014-08-16 00:08 - 21195616 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2014-09-12 17:47 - 2014-08-16 00:08 - 01507648 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2014-09-12 17:47 - 2014-08-16 00:01 - 01710184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2014-09-12 17:47 - 2014-08-15 23:58 - 01112512 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2014-09-12 17:47 - 2014-08-15 23:57 - 02498880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2014-09-12 17:47 - 2014-08-15 23:57 - 00428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\FWPKCLNT.SYS
2014-09-12 17:47 - 2014-08-15 23:16 - 18722600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2014-09-12 17:47 - 2014-08-15 23:16 - 01205976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2014-09-12 17:47 - 2014-08-15 23:03 - 01467384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2014-09-12 17:47 - 2014-08-15 21:31 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2014-09-12 17:47 - 2014-08-15 21:04 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wldap32.dll
2014-09-12 17:47 - 2014-08-15 20:58 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2014-09-12 17:47 - 2014-08-15 20:53 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\httpprxm.dll
2014-09-12 17:47 - 2014-08-15 20:46 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProximityService.dll
2014-09-12 17:47 - 2014-08-15 20:45 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2014-09-12 17:47 - 2014-08-15 20:43 - 00321024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wldap32.dll
2014-09-12 17:47 - 2014-08-15 20:43 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\adhsvc.dll
2014-09-12 17:47 - 2014-08-15 20:31 - 00914432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2014-09-12 17:47 - 2014-08-15 20:31 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcsvDevice.dll
2014-09-12 17:47 - 2014-08-15 20:29 - 00249344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-09-12 17:47 - 2014-08-15 20:23 - 01106432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2014-09-12 17:47 - 2014-08-15 20:22 - 00717824 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveTelemetry.dll
2014-09-12 17:47 - 2014-08-15 20:22 - 00286208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDriveShell.dll
2014-09-12 17:47 - 2014-08-15 20:20 - 00921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-09-12 17:47 - 2014-08-15 20:19 - 00189952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-09-12 17:47 - 2014-08-15 20:18 - 04758528 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncEngine.dll
2014-09-12 17:47 - 2014-08-15 20:17 - 08757760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2014-09-12 17:47 - 2014-08-15 20:14 - 00265216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SkyDriveShell.dll
2014-09-12 17:47 - 2014-08-15 20:13 - 06649344 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-09-12 17:47 - 2014-08-15 20:13 - 05902848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2014-09-12 17:47 - 2014-08-15 20:13 - 00840192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFolder.dll
2014-09-12 17:47 - 2014-08-15 20:11 - 00920064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2014-09-12 17:47 - 2014-08-15 20:11 - 00626688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-09-12 17:47 - 2014-08-15 20:10 - 01120768 _____ (Microsoft Corporation) C:\WINDOWS\system32\SkyDrive.exe
2014-09-12 17:47 - 2014-08-15 20:08 - 05777408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2014-09-12 17:47 - 2014-08-15 20:07 - 00756224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2014-09-12 17:47 - 2014-07-31 19:22 - 00388729 _____ () C:\WINDOWS\system32\ApnDatabase.xml
2014-09-12 16:06 - 2014-08-15 22:40 - 23591424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-09-12 16:06 - 2014-08-15 22:04 - 17455104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-09-12 16:06 - 2014-08-15 22:00 - 05833728 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-09-12 16:06 - 2014-08-15 22:00 - 02793984 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-09-12 16:06 - 2014-08-15 21:56 - 00547328 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-09-12 16:06 - 2014-08-15 21:54 - 00083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2014-09-12 16:06 - 2014-08-15 21:45 - 04232704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-09-12 16:06 - 2014-08-15 21:43 - 00758272 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2014-09-12 16:06 - 2014-08-15 21:32 - 00446464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtmsft.dll
2014-09-12 16:06 - 2014-08-15 21:25 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-09-12 16:06 - 2014-08-15 21:22 - 00454656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-09-12 16:06 - 2014-08-15 21:20 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-09-12 16:06 - 2014-08-15 21:19 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-09-12 16:06 - 2014-08-15 21:18 - 02185728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-09-12 16:06 - 2014-08-15 21:18 - 00289280 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-09-12 16:06 - 2014-08-15 21:11 - 00597504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2014-09-12 16:06 - 2014-08-15 21:06 - 00359424 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-09-12 16:06 - 2014-08-15 21:05 - 00727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-09-12 16:06 - 2014-08-15 21:05 - 00707072 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-09-12 16:06 - 2014-08-15 21:03 - 02104832 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-09-12 16:06 - 2014-08-15 21:03 - 00365056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtmsft.dll
2014-09-12 16:06 - 2014-08-15 20:58 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-12 16:06 - 2014-08-15 20:56 - 02310656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-09-12 16:06 - 2014-08-15 20:53 - 13588480 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-09-12 16:06 - 2014-08-15 20:53 - 00243200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-09-12 16:06 - 2014-08-15 20:53 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-09-12 16:06 - 2014-08-15 20:51 - 11769856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-09-12 16:06 - 2014-08-15 20:45 - 00603136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-09-12 16:06 - 2014-08-15 20:44 - 02014208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-09-12 16:06 - 2014-08-15 20:44 - 00312320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-09-12 16:06 - 2014-08-15 20:34 - 01447424 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-09-12 16:06 - 2014-08-15 20:20 - 01812992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-09-12 16:06 - 2014-08-15 20:18 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-09-12 16:06 - 2014-08-15 20:14 - 01190400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-09-12 16:06 - 2014-08-15 20:12 - 00678400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-09-12 16:03 - 2014-08-23 03:48 - 02374784 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2014-09-12 16:03 - 2014-08-23 03:13 - 02084520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2014-09-12 16:03 - 2014-08-23 02:10 - 00068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\UXInit.dll
2014-09-12 16:03 - 2014-08-23 01:32 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UXInit.dll
2014-09-12 16:03 - 2014-08-23 00:44 - 02860032 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2014-09-12 16:03 - 2014-08-23 00:34 - 13423104 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2014-09-12 16:03 - 2014-08-23 00:33 - 00796672 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll
2014-09-12 16:03 - 2014-08-23 00:31 - 01038336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2014-09-12 16:03 - 2014-08-23 00:20 - 11818496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2014-09-12 16:03 - 2014-08-01 20:18 - 01212928 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-09-12 16:03 - 2014-07-23 23:20 - 00875688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcr120_clr0400.dll
2014-09-12 16:03 - 2014-07-23 23:20 - 00869544 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr120_clr0400.dll
2014-09-12 15:05 - 2014-09-12 15:05 - 00000000 ____D () C:\Program Files\Adblock Plus for IE
2014-09-08 23:11 - 2014-09-08 23:15 - 00000000 ____D () C:\ProgramData\PDVD
2014-09-08 23:11 - 2014-09-08 23:11 - 00000000 ____D () C:\Users\ronak_000\AppData\Local\MediaServer
2014-09-08 23:02 - 2014-09-08 23:24 - 00000000 ____D () C:\Users\ronak_000\AppData\Local\LogMeIn Rescue Calling Card
2014-09-08 23:02 - 2014-09-08 23:02 - 00002472 _____ () C:\Users\ronak_000\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LogMeIn Rescue Calling Card.lnk
2014-09-08 23:01 - 2014-10-07 22:58 - 00000000 ____D () C:\Users\ronak_000\AppData\Local\Cyberlink

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-08 10:48 - 2014-03-18 06:03 - 00958356 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-10-08 10:47 - 2014-08-18 22:14 - 00000000 ____D () C:\Users\ronak_000\AppData\Roaming\ClassicShell
2014-10-08 10:47 - 2014-08-18 22:03 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3079756242-3303576260-2646273123-1001
2014-10-08 10:42 - 2014-08-20 14:10 - 00000000 ____D () C:\Users\ronak_000\AppData\Roaming\stickies
2014-10-08 10:42 - 2014-08-19 02:59 - 00000926 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-08 10:42 - 2014-08-19 02:53 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-10-08 10:42 - 2014-08-19 02:46 - 00000000 __RDO () C:\Users\ronak_000\OneDrive
2014-10-08 10:42 - 2014-08-18 22:09 - 00122584 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-10-08 10:42 - 2013-08-22 10:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-10-08 10:42 - 2013-08-22 09:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-10-08 10:17 - 2014-08-19 00:18 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-10-08 10:04 - 2014-08-19 02:59 - 00000930 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-08 10:00 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-10-08 06:11 - 2014-08-18 21:56 - 00003958 _____ () C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{95DE02EC-A144-46B8-86C8-82342A31E980}
2014-10-08 05:30 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\system32\FxsTmp
2014-10-07 22:58 - 2014-08-29 00:41 - 00000000 ____D () C:\Users\Public\CyberLink
2014-10-07 22:57 - 2013-04-22 15:38 - 00000000 ____D () C:\ProgramData\CyberLink
2014-10-07 22:57 - 2013-04-22 15:34 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2014-10-06 12:12 - 2014-08-19 02:57 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-10-05 19:29 - 2014-08-19 03:08 - 00003204 _____ () C:\WINDOWS\System32\Tasks\HPCeeScheduleFortestaccount
2014-10-05 19:29 - 2014-08-19 03:08 - 00000378 _____ () C:\WINDOWS\Tasks\HPCeeScheduleFortestaccount.job
2014-10-04 02:42 - 2014-08-19 02:54 - 02197680 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2014-10-04 02:42 - 2014-08-19 02:54 - 01291280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2014-10-04 02:41 - 2014-08-19 02:54 - 02800296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2014-10-04 02:41 - 2014-08-19 02:54 - 01715224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2014-10-02 11:16 - 2013-08-22 10:44 - 00516952 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-10-01 19:23 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-09-30 17:45 - 2014-08-25 17:18 - 00000000 ____D () C:\Users\ronak_000\AppData\Roaming\NVIDIA
2014-09-30 17:44 - 2013-10-16 13:13 - 00000000 ____D () C:\Users\ronak_000\Desktop\To Do
2014-09-30 14:51 - 2014-08-18 21:55 - 00000000 ____D () C:\Users\ronak_000\AppData\Local\Packages
2014-09-29 17:06 - 2014-08-19 00:37 - 00000052 _____ () C:\WINDOWS\SysWOW64\DOErrors.log
2014-09-29 13:57 - 2014-08-19 00:23 - 00000847 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-09-29 13:57 - 2014-08-19 00:22 - 00000000 ____D () C:\Program Files\CCleaner
2014-09-27 21:06 - 2014-08-19 00:36 - 00000000 _____ () C:\WINDOWS\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-09-25 21:06 - 2014-08-19 00:00 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-09-25 03:59 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-09-23 14:27 - 2012-07-26 03:59 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-09-23 14:24 - 2014-08-19 03:58 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-09-22 19:11 - 2014-08-19 02:33 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-09-22 02:42 - 2014-08-18 23:40 - 00278152 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2014-09-19 23:08 - 2014-08-19 02:33 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-09-17 00:51 - 2014-08-19 02:52 - 01538880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco6420103.dll
2014-09-13 19:48 - 2014-08-19 02:53 - 00073872 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2014-09-13 19:48 - 2014-08-19 02:53 - 00060560 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2014-09-13 19:48 - 2014-08-19 02:52 - 20589536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2014-09-13 19:48 - 2014-08-19 02:52 - 19954520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2014-09-13 19:48 - 2014-08-19 02:52 - 18106152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2014-09-13 19:48 - 2014-08-19 02:52 - 16875856 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2014-09-13 19:48 - 2014-08-19 02:52 - 03223120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2014-09-13 19:48 - 2014-08-19 02:52 - 02838424 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2014-09-13 19:48 - 2014-08-19 02:52 - 00984424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2014-09-13 19:48 - 2014-08-19 02:52 - 00026956 _____ () C:\WINDOWS\system32\nvinfo.pb
2014-09-13 17:53 - 2014-08-19 02:53 - 06890696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2014-09-13 17:53 - 2014-08-19 02:53 - 03529872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2014-09-13 17:53 - 2014-08-19 02:53 - 00934216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2014-09-13 17:53 - 2014-08-19 02:53 - 00385168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2014-09-13 17:53 - 2014-08-19 02:53 - 00062608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2014-09-12 17:48 - 2013-08-22 11:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-09-12 17:48 - 2013-08-22 11:36 - 00000000 ____D () C:\WINDOWS\WinStore
2014-09-12 16:06 - 2014-08-19 06:28 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msrating.dll
2014-09-12 16:06 - 2014-08-19 06:28 - 00164864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrating.dll
2014-09-12 16:06 - 2014-08-19 06:28 - 00139264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieUnatt.exe
2014-09-12 16:06 - 2014-08-19 06:28 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieUnatt.exe
2014-09-12 16:06 - 2014-08-19 06:28 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollector.exe
2014-09-12 16:06 - 2014-08-19 06:28 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2014-09-12 16:06 - 2014-08-19 06:28 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iesetup.dll
2014-09-12 16:06 - 2014-08-19 06:28 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieetwproxystub.dll
2014-09-12 16:06 - 2014-08-19 06:28 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2014-09-12 16:06 - 2014-08-19 06:28 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwproxystub.dll
2014-09-12 16:06 - 2014-08-19 06:28 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2014-09-12 16:06 - 2014-08-19 06:28 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2014-09-12 16:06 - 2014-08-19 06:28 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iernonce.dll
2014-09-12 16:06 - 2014-08-19 06:28 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieetwcollectorres.dll
2014-09-12 16:06 - 2014-08-19 06:23 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2014-09-12 16:06 - 2014-08-19 06:23 - 02724864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2014-09-12 16:05 - 2014-08-18 22:45 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-09-12 16:03 - 2014-08-18 22:45 - 101694776 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-09-11 11:37 - 2014-08-19 02:53 - 03961833 _____ () C:\WINDOWS\system32\nvcoproc.bin
2014-09-09 16:17 - 2014-08-19 00:18 - 00003718 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-09-08 23:49 - 2014-08-25 17:18 - 00000000 ____D () C:\Users\ronak_000\AppData\Local\FirestormOS_x64
2014-09-08 23:14 - 2014-08-29 00:41 - 00000000 ____D () C:\Users\ronak_000\AppData\Roaming\CyberLink
2014-09-08 23:11 - 2013-04-22 15:34 - 00000000 ____D () C:\ProgramData\install_clap
2014-09-08 23:10 - 2013-04-22 15:33 - 00000000 ____D () C:\ProgramData\Temp
2014-09-08 23:10 - 2013-04-22 15:30 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-09-08 23:07 - 2014-08-19 00:38 - 00000000 ____D () C:\Users\ronak_000\AppData\Local\Hewlett-Packard

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-10-04 12:08

==================== End Of Log ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-10-2014 01
Ran by testaccount at 2014-10-08 10:49:25
Running from C:\Users\ronak_000\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adblock Plus for IE (32-bit and 64-bit) (HKLM\...\{1CAFFEC6-23B4-484B-B17B-3200BE5C5636}) (Version: 99.9 - Eyeo GmbH)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Auslogics DiskDefrag (HKLM-x32\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: 4.5.4.0 - Auslogics Labs Pty Ltd)
Batman: Arkham City GOTY (HKLM-x32\...\Steam App 200260) (Version: - Rocksteady Studios)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Carbonite (HKLM-x32\...\Carbonite Backup) (Version: 5.5.5 build 4151 (Jun-27-2014) - Carbonite)
CCleaner (HKLM\...\CCleaner) (Version: 4.18 - Piriform)
Classic Shell (HKLM\...\{840C85B7-D3D6-4143-9AF9-DAE80FD54CFC}) (Version: 4.1.0 - IvoSoft)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.2.2114 - CyberLink Corp.)
CyberLink Media Suite 10 (x32 Version: 10.0.2.2114 - CyberLink Corp.) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.2.2126 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.2.2126 - CyberLink Corp.) Hidden
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.4.4230 - CyberLink Corp.)
CyberLink PowerDVD 12 (x32 Version: 12.0.4.4230 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dual-Core Optimizer (HKLM-x32\...\{9FD6F1A8-5550-46AF-8509-271DF0E768B5}) (Version: 1.1.4.0169 - AMD)
Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON WF-3530 Series Printer Uninstall (HKLM\...\EPSON WF-3530 Series) (Version: - SEIKO EPSON Corporation)
Everything 1.3.4.686 (x64) (HKLM\...\Everything) (Version: - )
Firestorm SecondLife and OpenSim viewer (Version: 4.6.42398 - Phoenix Viewer Project) Hidden
Firestorm-Releasex64 x64 (HKLM-x32\...\{5b0b9787-398d-46f9-ab2c-4f0ad6671f84}) (Version: 4.6.42398 - Phoenix Firestorm Project Inc)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.124 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Customer Experience Enhancements (x32 Version: 6.0.1.8 - Hewlett-Packard) Hidden
HP Postscript Converter (Version: 3.1.3591 - Hewlett-Packard) Hidden
HP Registration Service (HKLM\...\{C2E428EB-116E-41C0-9E84-B22DE9CCA42F}) (Version: 1.1.6232.4245 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{348A1F5B-07B3-4436-9A47-FFE44EFE856E}) (Version: 11.51.0004 - Hewlett-Packard Company)
HPDetect (HKLM-x32\...\{CCCDD476-98F9-4B06-91DB-23F27CEC3BE1}) (Version: 1.0.0.0 - HP)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6429.0 - IDT)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.13.1706 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.2.1000 - Intel Corporation)
Intel® Rapid Storage Technology (Version: 12.8.2.1000 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.28.487.1 - Intel Corporation) Hidden
Logitech SetPoint 6.65 (HKLM\...\sp6) (Version: 6.65.62 - Logitech)
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft Access MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Access Setup Metadata MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft DCF MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Excel MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Groove MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Lync MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office 2010 Service Pack 1 (SP1) (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{7BC9B5EB-125A-4E9B-97E1-8D85B5E960B8}) (Version: - Microsoft)
Microsoft Office 2010 Service Pack 1 (SP1) (Version: - Microsoft) Hidden
Microsoft Office 32-bit Components 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUSR) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Español (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000 - Microsoft Corporation) Hidden
Microsoft OneNote MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Word MUI (English) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Movie Maker (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Mozilla Firefox 32.0.3 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 en-US)) (Version: 32.0.3 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1108.0727 - Microsoft) Hidden
NVIDIA 3D Vision Controller Driver 344.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 344.11 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 344.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 344.11 - NVIDIA Corporation)
NVIDIA Control Panel 344.11 (Version: 344.11 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 2.1.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.3 - NVIDIA Corporation)
NVIDIA GeForce Experience Service (Version: 16.13.56 - NVIDIA Corporation) Hidden
NVIDIA Graphics Driver 344.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 344.11 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.32.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.32.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.162.1274 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 2.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.14.0702 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
NVIDIA ShadowPlay 16.13.56 (Version: 16.13.56 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Update 16.13.56 (Version: 16.13.56 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 16.13.56 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.25 (Version: 1.2.25 - NVIDIA Corporation) Hidden
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Photo Common (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Ralink RT5390R 802.11bgn Wi-Fi Adapter (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 5.0.5.0 - Ralink)
Recovery Manager (x32 Version: 5.5.0.5826 - CyberLink Corp.) Hidden
Revo Uninstaller Pro 3.0.8 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.8 - VS Revo Group, Ltd.)
SHIELD Streaming (Version: 3.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.56 - NVIDIA Corporation) Hidden
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.106 - Skype Technologies S.A.)
Software Updater (HKLM-x32\...\{B307472F-7BD9-4040-9255-CE6D6A1196A3}) (Version: 4.3.1 - SEIKO EPSON CORPORATION)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Stickies 8.0a (HKLM-x32\...\ZhornStickies) (Version: - Zhorn Software)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.32494 - TeamViewer)
The Elder Scrolls V: Skyrim (HKLM-x32\...\Steam App 72850) (Version: - Bethesda Game Studios)
Tomb Raider (HKLM-x32\...\Steam App 203160) (Version: - Crystal Dynamics)
Windows Live Communications Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3503.0728 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

==================== Restore Points =========================

28-09-2014 17:23:05 Scheduled Checkpoint
30-09-2014 21:44:28 Installed DirectX
08-10-2014 02:56:46 Configured PowerDVD

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 09:25 - 2013-08-22 09:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {018B974B-CC1E-48A2-B976-E3A352BC35D3} - System32\Tasks\CLMLSvc_P2G8 => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-06-07] (CyberLink)
Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask
Task: {0ACA2CD8-ACB3-4DD7-A5AB-A035BB229BA2} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-09-03] (Hewlett-Packard)
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {15195A59-752C-4789-BDB5-09D72922244A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {1E67A635-3DDD-424F-A923-1835855088DA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {1F247878-2703-4E44-9744-7093B4BC35A7} - System32\Tasks\{5F6010C8-60E5-41f3-BF5B-C3AF5DBE12D4} => C:\ProgramData\Carbonite\Carbonite Backup\CarboniteUpgrade.exe
Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-22] (Microsoft Corporation)
Task: {39175668-5DA0-4C1B-B892-AF6A97DCB4EE} - System32\Tasks\HPCeeScheduleFortestaccount => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15] (Hewlett-Packard)
Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation)
Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance
Task: {498E9FA5-EEC6-47F4-B6C4-96C17E7B8F02} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-09-26] (Piriform Ltd)
Task: {4EED288D-1F35-40EE-BE4F-E412077ADA0B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {4FF0DEF7-CC0F-4CB6-8631-378BF85EAA61} - System32\Tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start With Network => Sc.exe start wuauserv
Task: {57D6F1D0-443C-46CE-8658-4ECFC4620A41} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-19] (Google Inc.)
Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup
Task: {6C408895-93CA-4730-8F74-01EC8F487D6C} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-09] (Adobe Systems Incorporated)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task
Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {7851F8EC-AF1A-49D4-898A-C22AD45DE268} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\SymErr.exe
Task: {857A5A50-6064-4814-9313-41DA0FF44226} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task
Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
Task: {93C61819-6418-4BB8-BEBC-4A4F8347DA3F} - System32\Tasks\Microsoft Office 15 Sync Maintenance for HERDESKTOP-testaccount HerDesktop => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2012-10-01] (Microsoft Corporation)
Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work
Task: {B2EB4DE6-1B64-4DBE-825B-FD46C1BF4D40} - System32\Tasks\CLVDLauncher => c:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-07-24] (CyberLink Corp.)
Task: {B527CD21-64D4-416D-B69F-FF842C419C1C} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-09-12] (Microsoft Corporation)
Task: {BF58E14B-1069-43E0-80DD-BB525A2FD9CD} - System32\Tasks\Microsoft\Windows\DiskFootprint\Diagnostics
Task: {C4802E98-4640-408F-AF4A-BC0C0DDFEEC6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {CFA625AF-A9C5-40AC-9BB7-4CF2780EEA87} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload
Task: {CFBCE992-66BF-4805-B18E-0D2596475CDC} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\SymErr.exe
Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask
Task: {D08F1AB1-8F5E-4779-937E-7A750E734C77} - System32\Tasks\Microsoft\Windows\DiskCleanup\SilentCleanup => C:\Windows\system32\cleanmgr.exe [2014-03-18] (Microsoft Corporation)
Task: {D6A9A48B-ADBB-4AF3-B00F-D0AD30AB9F49} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\20.0.0.136\WSCStub.exe
Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization
Task: {E2ACF668-4308-4463-9ECA-B3DD4467FB01} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Validation
Task: {E3BDCA69-0278-4D27-AE94-D673C4802877} - System32\Tasks\Microsoft\Windows\WOF\WIM-Hash-Management
Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE
Task: {F91F7D0A-D509-4077-80A3-A895BA6312BE} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {FE4C1838-8D77-4121-AB3F-99DD3F545503} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-19] (Google Inc.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HPCeeScheduleFortestaccount.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Loaded Modules (whitelisted) =============

2014-08-19 02:53 - 2014-09-13 17:53 - 00116880 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2012-10-01 20:36 - 2012-10-01 20:36 - 06522480 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2011-03-17 00:07 - 2011-03-17 00:07 - 04297568 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 15:23 - 2010-10-20 15:23 - 08801632 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2014-08-18 22:27 - 2014-08-05 21:04 - 01441792 _____ () C:\Program Files\Everything\Everything.exe
2012-10-01 20:37 - 2012-10-01 20:37 - 06522480 _____ () C:\Program Files (x86)\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2013-04-22 15:34 - 2012-06-07 23:34 - 00627216 _____ () c:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2012-06-08 14:34 - 2012-06-08 14:34 - 00016400 _____ () c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2014-08-19 00:00 - 2014-09-25 21:06 - 03715184 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2014-08-19 02:58 - 2014-08-19 02:57 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\My\OneDrive:ms-properties
AlternateDataStreams: C:\Users\ronak_000\OneDrive:ms-properties
AlternateDataStreams: C:\Users\ronak_000\SkyDrive:ms-properties

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

========================= Accounts: ==========================

Administrator (S-1-5-21-3079756242-3303576260-2646273123-500 - Administrator - Disabled) => C:\Users\Administrator
Guest (S-1-5-21-3079756242-3303576260-2646273123-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3079756242-3303576260-2646273123-1004 - Limited - Enabled)
testaccount (S-1-5-21-3079756242-3303576260-2646273123-1001 - Administrator - Enabled) => C:\Users\ronak_000

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (10/08/2014 05:30:37 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 19622641

Error: (10/08/2014 05:30:37 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 19622641

Error: (10/08/2014 05:30:37 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/06/2014 06:04:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2250

Error: (10/06/2014 06:04:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2250

Error: (10/06/2014 06:04:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/06/2014 06:04:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1078

Error: (10/06/2014 06:04:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1078

Error: (10/06/2014 06:04:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/06/2014 01:10:50 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15452343

System errors:
=============
Error: (10/07/2014 10:57:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly. It has done this 2 time(s).

Error: (10/07/2014 10:57:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The CyberLink PowerDVD 12 Media Server Monitor Service service terminated unexpectedly. It has done this 1 time(s).

Error: (10/06/2014 06:04:27 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly. It has done this 1 time(s).

Error: (10/06/2014 00:22:17 PM) (Source: Schannel) (EventID: 4119) (User: NT AUTHORITY)
Description: A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 20.

Error: (10/06/2014 02:10:20 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly. It has done this 11 time(s).

Error: (10/05/2014 08:53:18 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly. It has done this 10 time(s).

Error: (10/05/2014 11:43:11 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly. It has done this 9 time(s).

Error: (10/05/2014 11:40:10 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly. It has done this 8 time(s).

Error: (10/05/2014 11:37:03 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly. It has done this 7 time(s).

Error: (10/05/2014 11:19:21 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly. It has done this 6 time(s).

Microsoft Office Sessions:
=========================
Error: (10/08/2014 05:30:37 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 19622641

Error: (10/08/2014 05:30:37 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 19622641

Error: (10/08/2014 05:30:37 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/06/2014 06:04:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2250

Error: (10/06/2014 06:04:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 2250

Error: (10/06/2014 06:04:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/06/2014 06:04:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1078

Error: (10/06/2014 06:04:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1078

Error: (10/06/2014 06:04:28 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/06/2014 01:10:50 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15452343

CodeIntegrity Errors:
===================================
Date: 2014-10-06 12:17:30.062
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-10-06 12:17:30.008
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-10-06 12:17:29.932
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-10-06 12:17:29.872
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-10-06 11:22:39.552
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-10-06 11:22:39.497
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-10-06 11:22:39.425
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-10-06 11:22:39.359
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-10-05 10:57:26.685
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-10-05 10:57:26.627
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

Processor: Intel® Core™ i7-3770 CPU @ 3.40GHz
Percentage of memory in use: 19%
Total physical RAM: 10178.13 MB
Available physical RAM: 8241.49 MB
Total Pagefile: 10578.13 MB
Available Pagefile: 7827.63 MB
Total Virtual: 131072 MB
Available Virtual: 131071.79 MB

==================== Drives ================================

Drive c: (OS & PROGRAMS) (Fixed) (Total:217.65 GB) (Free:114.86 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (Recovery Image) (Fixed) (Total:18.57 GB) (Free:2.29 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (DATA STORAGE) (Fixed) (Total:931.26 GB) (Free:860.35 GB) NTFS
Drive j: (SAFE_HOUSE_RENTAL) (CDROM) (Total:36.79 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 2201E60A)

Partition: GPT Partition Type.

========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: B97F44D5)

Partition: GPT Partition Type.

==================== End Of Log ============================

#5
Naathim

Posted 08 October 2014 - 11:44 AM

GeekU Minion

Expert
4,568 posts

Hi

I don't see any obvious signs of malware here. Let's dig deeper.

Scan with Gmer

This type of scan often produces false positives. At any point do not take any action for any suspicious entries you may see there. Instead post the log to be analyzed.

Please download GMER by Gmer and save the file to your desktop.
It will come as a randomly named file (like a6ge38b4.exe) - that's absolutely normal.

Temporary disable your AntiVirus and AntiSpyware protection - instructions here.
If you are a user of CD emulation software (like Daemon Tools or Alcohol) also disable it for the cleaning process - instructions here.

Right-click on randomly named icon and select Run as Administrator to start the tool.
It is very important that you do not use your computer while Gmer is running!
Gmer will open to the Rootkit/Malware tab and perform an automatic quick scan.
If you receive a warning about rootkit activity and are asked to fully scan your system click NO!

When the pre-scan is completed, please do the following:

Please check in the Quick scan box.
Please uncheck the IAT/EAT and Show All.
Click Scan.
If you see a rootkit warning window click OK.
When the scan is finished, Save the results to your desktop as gmer.log.

Please include the content of this file in your next reply.
Don't forget to re-enable previously switched-off protection software!

If you encounter any problems, try running GMER in Safe Mode.
If GMER crashes or keeps resulting in a Blue Screen of Death, uncheck Devices on the right side before scanning.

#6
HelpNeeded911

Posted 11 October 2014 - 02:57 PM

Member

Topic Starter
Member
80 posts

I just tried to scan with Gmer after disabling Windows Defender and Malwarebytes and running in safe mode. However, I keep receiving the following error: C:\WINDOWS\system32\config\system: The Process cannot access the file because it is being used by another process. Then, once I click OK, the second screenshot appears.

Attached Thumbnails

#7
Naathim

Posted 11 October 2014 - 06:45 PM

GeekU Minion

Expert
4,568 posts

OK, so let's try these two instead.

Scan with TDSSKiller

Please download TDSSKiller by Kaspersky and save it to your desktop.

Right-click on icon and select Run as Administrator to start the tool.
Click on Change parameters and put a checkmark beside Loaded modules. A reboot will be needed to apply the changes, allow it to do so.
Your machine may appear very slow and unusable after that - it's normal.
TDSSKiller will run automaticaly. Click on Change parameters and click OK.
Make sure that Verify driver digital signatures & Detect TDLFS File System are marked and click OK.
Click the Start Scan button and wait patiently.

If anything will be found follow this guidelines:

If a suspicious object is detected, the default action will be Skip, click on Continue.
If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
> Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
> If Cure is not available, please choose Skip instead.
Do not choose Delete unless instructed!

A report will be created in your root directory, (usually C:\ drive) in the form of TDSSKiller.[Version]_[Date]_[Time]_log.txt. Please include the contents of that file in your next post.

Scan with MBRScan

Please download MbrScan by Eric_71 and save it to your desktop.

Right-click on icon and select Run as Administrator to start the tool.
First click Scan at the upper bar.
When the table will get filled with data, click Report.
A log (MbrScan.txt) will open in notepad.

Please include the contents of that file in your reply. Due to special formatting, post it directly and not attach!
There will be also a file named Dump_Hdd*_DR*.mbr on your desktop. Do not click on it or delete it!

#8
HelpNeeded911

Posted 13 October 2014 - 08:45 AM

Member

Topic Starter
Member
80 posts

I keep receiving errors that my post is too long, so I'm including the two logs in several posts.

10:33:13.0482 0x10cc TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
10:33:13.0482 0x10cc UEFI system
10:33:13.0764 0x10cc ============================================================
10:33:13.0764 0x10cc Current date / time: 2014/10/13 10:33:13.0764
10:33:13.0764 0x10cc SystemInfo:
10:33:13.0764 0x10cc
10:33:13.0764 0x10cc OS Version: 6.3.9600 ServicePack: 0.0
10:33:13.0764 0x10cc Product type: Workstation
10:33:13.0764 0x10cc ComputerName: HERDESKTOP
10:33:13.0764 0x10cc UserName: testaccount
10:33:13.0764 0x10cc Windows directory: C:\WINDOWS
10:33:13.0764 0x10cc System windows directory: C:\WINDOWS
10:33:13.0764 0x10cc Running under WOW64
10:33:13.0764 0x10cc Processor architecture: Intel x64
10:33:13.0764 0x10cc Number of processors: 8
10:33:13.0764 0x10cc Page size: 0x1000
10:33:13.0764 0x10cc Boot type: Normal boot
10:33:13.0764 0x10cc ============================================================
10:33:13.0779 0x10cc BG loaded
10:33:14.0186 0x10cc System UUID: {1744B43F-B6AD-BF35-DC22-ECCB7DFA108D}
10:33:16.0592 0x10cc Drive \Device\Harddisk0\DR0 - Size: 0x3B9E656000 ( 238.47 Gb ), SectorSize: 0x200, Cylinders: 0x799A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:33:16.0592 0x10cc Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:33:16.0639 0x10cc ============================================================
10:33:16.0639 0x10cc \Device\Harddisk0\DR0:
10:33:16.0639 0x10cc GPT partitions:
10:33:16.0639 0x10cc \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {F4D0B81D-3CF6-4792-B7BA-BE9CB8536EB5}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x1FF800
10:33:16.0639 0x10cc \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {3A484EED-ED5B-4E8C-B0D3-6B5E2D26699A}, Name: EFI system partition, StartLBA 0x200000, BlocksNum 0xB4000
10:33:16.0639 0x10cc \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {4DC16DFE-16D4-4876-9D85-2C562ACDE3E9}, Name: Microsoft reserved partition, StartLBA 0x2B4000, BlocksNum 0x40000
10:33:16.0639 0x10cc \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {D328FED9-7683-4E42-B59A-4FBAD932C06F}, Name: Basic data partition, StartLBA 0x2F4000, BlocksNum 0x1B34D800
10:33:16.0639 0x10cc \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {17B23E46-C53E-4075-884D-0046068444ED}, Name: , StartLBA 0x1B641800, BlocksNum 0xE1000
10:33:16.0639 0x10cc \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {D23C0BE9-358C-4B41-A459-BEC8F9C1D102}, Name: , StartLBA 0x1B722800, BlocksNum 0xAF000
10:33:16.0639 0x10cc \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {F2708391-C8EC-4FAB-AB72-EE6A376DFDBC}, Name: Basic data partition, StartLBA 0x1B7D1800, BlocksNum 0x2521800
10:33:16.0639 0x10cc MBR partitions:
10:33:16.0639 0x10cc \Device\Harddisk1\DR1:
10:33:16.0639 0x10cc GPT partitions:
10:33:16.0639 0x10cc \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {5D983B00-6AE2-45CD-B386-7FA8BC7A612C}, Name: Microsoft reserved partition, StartLBA 0x22, BlocksNum 0x40000
10:33:16.0639 0x10cc \Device\Harddisk1\DR1\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {885CE0EE-DA51-429E-8D71-2A379F3A5370}, Name: Microsoft reserved partition, StartLBA 0x40800, BlocksNum 0x40000
10:33:16.0639 0x10cc \Device\Harddisk1\DR1\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {AD0E663B-AB1C-4F3A-A664-86BF4602FD06}, Name: Basic data partition, StartLBA 0x80800, BlocksNum 0x74686000
10:33:16.0639 0x10cc MBR partitions:
10:33:16.0639 0x10cc ============================================================
10:33:16.0639 0x10cc C: <-> \Device\Harddisk0\DR0\Partition4
10:33:16.0639 0x10cc D: <-> \Device\Harddisk0\DR0\Partition7
10:33:16.0654 0x10cc E: <-> \Device\Harddisk1\DR1\Partition3
10:33:16.0654 0x10cc ============================================================
10:33:16.0654 0x10cc Initialize success
10:33:16.0654 0x10cc ============================================================
10:33:39.0468 0x190c ============================================================
10:33:39.0468 0x190c Scan started
10:33:39.0468 0x190c Mode: Manual; SigCheck; TDLFS;
10:33:39.0468 0x190c ============================================================
10:33:39.0468 0x190c KSN ping started
10:33:39.0687 0x190c KSN ping finished: true
10:33:39.0874 0x190c ================ Scan system memory ========================
10:33:39.0874 0x190c System memory - ok
10:33:39.0874 0x190c ================ Scan services =============================
10:33:39.0921 0x190c [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
10:33:40.0015 0x190c 1394ohci - ok
10:33:40.0015 0x190c [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
10:33:40.0031 0x190c 3ware - ok
10:33:40.0046 0x190c [ 9539F7917B4B6D92C90F0FAA6B86C605, B4C284E8EECC2E7025053A3320EFDC9F47BCA9828853AD2A805DB826CA4AC27E ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
10:33:40.0062 0x190c ACPI - ok
10:33:40.0062 0x190c [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
10:33:40.0077 0x190c acpiex - ok
10:33:40.0077 0x190c [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
10:33:40.0077 0x190c acpipagr - ok
10:33:40.0093 0x190c [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
10:33:40.0093 0x190c AcpiPmi - ok
10:33:40.0093 0x190c [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
10:33:40.0109 0x190c acpitime - ok
10:33:40.0109 0x190c [ C5679E5186B2FC95BC76A8A9870D5456, 70AC61850B811A0A902532F098AE1D5DF4622455E56C78B89D4ABDBE4A061A48 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:33:40.0140 0x190c AdobeARMservice - ok
10:33:40.0156 0x190c [ FBB312C9DA3863673EC18F4AE4101778, 4E9AAE7C700E485C17FDFCC9100A79784673B006D00D4D4CE8F1DB617D25C864 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:33:40.0171 0x190c AdobeFlashPlayerUpdateSvc - ok
10:33:40.0187 0x190c [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
10:33:40.0203 0x190c ADP80XX - ok
10:33:40.0203 0x190c [ 0F17D49BE041B7EFF1D33BF1414E7AC6, F8B536B60903814DF88DAF535753288537EF0993E42AA4E734EDA8D68B24C7AB ] AeLookupSvc     C:\WINDOWS\System32\aelupsvc.dll
10:33:40.0218 0x190c AeLookupSvc - ok
10:33:40.0234 0x190c [ 374E27295F0A9DCAA8FC96370F9BEEA5, 51C394E0C2322D7D093941A1B8766171B5D1F47DF2FE0834209492891EA7D999 ] AFD             C:\WINDOWS\system32\drivers\afd.sys
10:33:40.0249 0x190c AFD - ok
10:33:40.0265 0x190c [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
10:33:40.0265 0x190c agp440 - ok
10:33:40.0265 0x190c [ 8E8E34B7BA059050EED827410D0697A2, 85B6684709F24729A6497563812A90A54068AC2DD9EEA03037CB1EEF5C85AAA9 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
10:33:40.0281 0x190c ahcache - ok
10:33:40.0281 0x190c [ A91D8E1E433EFB32551BCE69037E1CE7, 41DFDD5B56918D19D09DFB3E4B07460AA85647A8647ABBBB906158D8D6653290 ] ALG             C:\WINDOWS\System32\alg.exe
10:33:40.0296 0x190c ALG - ok
10:33:40.0296 0x190c [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
10:33:40.0312 0x190c AmdK8 - ok
10:33:40.0312 0x190c [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
10:33:40.0328 0x190c AmdPPM - ok
10:33:40.0328 0x190c [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
10:33:40.0343 0x190c amdsata - ok
10:33:40.0343 0x190c [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
10:33:40.0359 0x190c amdsbs - ok
10:33:40.0359 0x190c [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
10:33:40.0374 0x190c amdxata - ok
10:33:40.0374 0x190c [ 9DCB42905F1EBF9CEC57EE5DF0BDA965, 4C888AAD0DDE01565FD7FBB6B70A500158CF2E4CECF9ADD4AFD302A993587269 ] AppHostSvc      C:\WINDOWS\system32\inetsrv\apphostsvc.dll
10:33:40.0390 0x190c AppHostSvc - ok
10:33:40.0390 0x190c [ 04951A9A937CBE28A2D3FEEA360B6D1F, D8AAF000BE4FE4B203DC2EB2A64F780A542E5238CE3F9952FD03277379B11529 ] AppID           C:\WINDOWS\system32\drivers\appid.sys
10:33:40.0406 0x190c AppID - ok
10:33:40.0406 0x190c [ C0DC3F58214A227980AEB091CFD2F973, 0C3E8453C9F65ADA3E74C38C0E3AC3E0CBFD807B827097046265B38839E151E3 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
10:33:40.0421 0x190c AppIDSvc - ok
10:33:40.0421 0x190c [ 7667B9D81EA8FD6540E6CF72F92161A6, 98F3D0E376F715EBE083FE112CAA640BCE0F13DCE0F244D059D7FA019EA3D24C ] Appinfo         C:\WINDOWS\System32\appinfo.dll
10:33:40.0437 0x190c Appinfo - ok
10:33:40.0437 0x190c [ CB12C47647D8BDAFAA94C0856B14128B, 5590C98095357C92563EF94800107D3611AA6ECA1A70BE463C03B279E618A6C4 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
10:33:40.0468 0x190c AppReadiness - ok
10:33:40.0484 0x190c [ F7529BD3FFAC9C33D15F6DE3B7353B03, 8EF0A84C9687A246B60939A326E498121039E9CC617A7ABBA933EDD327F3467E ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
10:33:40.0515 0x190c AppXSvc - ok
10:33:40.0515 0x190c [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
10:33:40.0531 0x190c arcsas - ok
10:33:40.0531 0x190c [ AA2E8C6B8D7EA7BAF04C988801927F48, 4B82043F1B9C67CDCDC71102F7AEE05EEA8F9775A5CB33AE80F4DCDB42521C40 ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:33:40.0546 0x190c aspnet_state - ok
10:33:40.0546 0x190c [ 3DB7721F06BC2FEDB25029EA23AB27DA, 221861148C66FE53E4D6EE49C6E656479AB5804A2D348A280A1CD8093E8AB788 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
10:33:40.0562 0x190c AsyncMac - ok
10:33:40.0562 0x190c [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
10:33:40.0562 0x190c atapi - ok
10:33:40.0578 0x190c [ 886767FD022213F7885416134E9082E5, E248D82210FBEBF62C23EBEC74A976B2D1A4E62D3B7638D95B2574B77BA05DD0 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
10:33:40.0593 0x190c AudioEndpointBuilder - ok
10:33:40.0593 0x190c [ 79B134ECE836B406B212E28C24011538, 1B875DD23CCAD8A2759DCDBCDCF3DE14231B9DB5EEC8E84FE081E41A52A047A1 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
10:33:40.0624 0x190c Audiosrv - ok
10:33:40.0624 0x190c [ 96E8CAF20FC4B6C31CAD7816A801EB78, E4870DB8FFBDCFEE98449338D0BDBF2DD0B5FEC75514E41C11A882BE6EB16833 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
10:33:40.0640 0x190c AxInstSV - ok
10:33:40.0640 0x190c [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
10:33:40.0656 0x190c b06bdrv - ok
10:33:40.0671 0x190c [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
10:33:40.0671 0x190c BasicDisplay - ok
10:33:40.0687 0x190c [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
10:33:40.0687 0x190c BasicRender - ok
10:33:40.0703 0x190c [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
10:33:40.0718 0x190c bcmfn2 - ok
10:33:40.0734 0x190c [ E07C80468D0C599BFF01D9D4EC7AEDC3, F675F455924DEC3FF69AD816DFEB6E74C804AEC3D3BFF7515953DB9D79C9B2D0 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
10:33:40.0749 0x190c BDESVC - ok
10:33:40.0749 0x190c [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
10:33:40.0765 0x190c Beep - ok
10:33:40.0781 0x190c [ 20FB137ADDE1255F15F265A7BD9579BE, 87B4D5C91EFEAD987AAC3491A4360F82824C46AFF958B6F4CAED7C12224EF159 ] BFE             C:\WINDOWS\System32\bfe.dll
10:33:40.0796 0x190c BFE - ok
10:33:40.0812 0x190c [ 15225081966C785A9192782401643FD4, E2BA0C8D044556FDD9DD7A25F7F71553DE7A2924E78F9284413C2AC46F0BF4EB ] BITS            C:\WINDOWS\System32\qmgr.dll
10:33:40.0843 0x190c BITS - ok
10:33:40.0859 0x190c [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
10:33:40.0874 0x190c Bonjour Service - ok
10:33:40.0874 0x190c [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
10:33:40.0890 0x190c bowser - ok
10:33:40.0890 0x190c [ E325BCD68EC0CF2E2EDD0AB7CC17C698, 4DEDEF91F6BD1CC8DBE118AC28CA6BD874449A053B9CDE9FFEB1C7B98501D938 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
10:33:40.0906 0x190c BrokerInfrastructure - ok
10:33:40.0906 0x190c [ 041A999E4FF9A7CDBE67357751881FB8, 356C52637EA715D6FA2B65BD311C9BF1635A582023434902EC2DE4A2448961F8 ] Browser         C:\WINDOWS\System32\browser.dll
10:33:40.0921 0x190c Browser - ok
10:33:40.0921 0x190c [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
10:33:40.0937 0x190c BthAvrcpTg - ok
10:33:40.0937 0x190c [ 746B9F94214915AECDE4B7FEA5FF9664, EA2877D49DB4B7B9CE61653D63E8776DFF1CBCCAB12C14DB1D20DA44B8F06357 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
10:33:40.0953 0x190c BthHFEnum - ok
10:33:40.0953 0x190c [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
10:33:40.0968 0x190c bthhfhid - ok
10:33:40.0968 0x190c [ 66B791F6B11DC4303DD18A224A501542, 502AE4D6FFC6B0FCED081B0E0F61F699F96F20DFEE737B53828F5DEE3BD0FCB1 ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
10:33:40.0984 0x190c BTHMODEM - ok
10:33:40.0984 0x190c [ E5E48FEED73D463175EAB1542495191C, 0A8182F5BA7B694AB1DD3680F1194E4A568FE40DBA4BFDFF2EA09BAD045FFB29 ] bthserv         C:\WINDOWS\system32\bthserv.dll
10:33:40.0999 0x190c bthserv - ok
10:33:41.0109 0x190c [ 517C6E87783377105111CCE1EECF59B6, 7A92959F4B946A4D5942D48969E54BE09319FF1143B5716699A9E4FBC3CB76A7 ] CarboniteService C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe
10:33:41.0203 0x190c CarboniteService - ok
10:33:41.0218 0x190c [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
10:33:41.0234 0x190c cdfs - ok
10:33:41.0234 0x190c [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
10:33:41.0249 0x190c cdrom - ok
10:33:41.0249 0x190c [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
10:33:41.0265 0x190c CertPropSvc - ok
10:33:41.0281 0x190c [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
10:33:41.0281 0x190c circlass - ok
10:33:41.0296 0x190c [ 179A41249055D5F039F1B6703F3B6D2B, 886CF715D9E85DB5C9B991EBCB9B12E27AA0EEE52528E222C80CA5B5B0A7AF52 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
10:33:41.0312 0x190c CLFS - ok
10:33:41.0312 0x190c [ B9D8E695007ABBD99DEECA5B740709FE, 886702112AECBD4299347E9D46A6F729C3C27F32AB825148781125D32DBC0F9A ] CLKMSVC10_99E320F5 C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\kmsvc.exe
10:33:41.0328 0x190c CLKMSVC10_99E320F5 - ok
10:33:41.0328 0x190c [ 075CCE75090786F124573A788C8656E6, AA188CFF2F8EE2D9F50701AB2315D24E15D7715FD84F5054D3FC175D4BD35734 ] CLVirtualDrive C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys
10:33:41.0343 0x190c CLVirtualDrive - ok
10:33:41.0343 0x190c [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
10:33:41.0359 0x190c CmBatt - ok
10:33:41.0374 0x190c [ 1CD3A907D64D08F49208DA00B69BF35E, ABBD70FFCA0DE2274D855AFC08BF7BC0AA6D44EFC9FDBF7DF44B73CD5C210E28 ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
10:33:41.0390 0x190c CNG - ok
10:33:41.0390 0x190c [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\WINDOWS\System32\drivers\CompositeBus.sys
10:33:41.0406 0x190c CompositeBus - ok
10:33:41.0406 0x190c COMSysApp - ok
10:33:41.0406 0x190c [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
10:33:41.0421 0x190c condrv - ok
10:33:41.0421 0x190c [ 0EFE4B5884A8032617826A4D76F80969, 083D296CC623C83D36A97AEE343ADF819B17E490F931DBE4D161BD1E8C289E02 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
10:33:41.0437 0x190c CryptSvc - ok
10:33:41.0437 0x190c [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam             C:\WINDOWS\system32\drivers\dam.sys
10:33:41.0453 0x190c dam - ok
10:33:41.0453 0x190c [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
10:33:41.0484 0x190c DcomLaunch - ok
10:33:41.0484 0x190c [ D249C3A58A4FCF755EF4C94F7047E015, 68C044CE2DB93FB502F85F6E081EA164F6E6DCBA6B3EE2A5CBDA122065E522F8 ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
10:33:41.0515 0x190c defragsvc - ok
10:33:41.0515 0x190c [ 8F387C2C99EE09C6E2AC316205F86A17, EC9E8AE72A21992AA118964E17090BA4503EB051273AD18185C95172F57328CE ] DeviceAssociationService C:\WINDOWS\system32\das.dll
10:33:41.0531 0x190c DeviceAssociationService - ok
10:33:41.0531 0x190c [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
10:33:41.0562 0x190c DeviceInstall - ok
10:33:41.0562 0x190c [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
10:33:41.0578 0x190c Dfsc - ok
10:33:41.0578 0x190c [ 05DE04005CE0D84D0E6AD21CAEB369C6, E6704A2A685BCFD560796D7C328F8E53DF0793DBDA590598A492D9070D109298 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
10:33:41.0593 0x190c Dhcp - ok
10:33:41.0593 0x190c [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk            C:\WINDOWS\system32\drivers\disk.sys
10:33:41.0609 0x190c disk - ok
10:33:41.0609 0x190c [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
10:33:41.0624 0x190c dmvsc - ok
10:33:41.0624 0x190c [ FE7656474448BE6A6C68E5C9BEB7CA94, 8B9F04CAA29A6EEFCA3D1E7BAFE340D5CCA8AF665474E69B1DF7E2A518B83A89 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
10:33:41.0640 0x190c Dnscache - ok
10:33:41.0640 0x190c [ 50288EA079BB520C2B8C8A154202D518, 8916A9180CA009D124FFDFB4CCF5FDFEF7FA2FD37CBCD49FAD4C68E051B4734D ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
10:33:41.0656 0x190c dot3svc - ok
10:33:41.0671 0x190c [ 281BEE07BA97E3E98D12A822D923D0D8, 6EB482B2D4D6048D145C3738B2B6FA27A90B5EA53E9167447820F9981B004E63 ] DPS             C:\WINDOWS\system32\dps.dll
10:33:41.0687 0x190c DPS - ok
10:33:41.0687 0x190c [ DDC11A202207C0400CBE07315B8FDE5E, 3ED0CA3A714582D92001BA3BFF78BE082F4DC8021298D5A2632F3B2B0A1C09DC ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
10:33:41.0687 0x190c drmkaud - ok
10:33:41.0703 0x190c [ 5B074F14F5DD6418F46EE4CA2DEB7EA8, B8223D73C3DE123759101F7D5D45C60BD12B221F09D349575A1044CE3F43CBC5 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
10:33:41.0718 0x190c DsmSvc - ok
10:33:41.0734 0x190c [ 313DCE665B57000B18CB26C6B6A10DFE, 6C332D4AD13A316C192321AB7E7597E66AF8E1688101FFD851E06C52128DBA52 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
10:33:41.0765 0x190c DXGKrnl - ok
10:33:41.0781 0x190c [ 6073537F250B45E1CB2A02E97F0FE1B2, 653F3F2F2019168EDF225944A88AFDBF8393B62AA076BD19980691778F3DB67D ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
10:33:41.0796 0x190c Eaphost - ok
10:33:41.0843 0x190c [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
10:33:41.0906 0x190c ebdrv - ok
10:33:41.0921 0x190c [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] EFS             C:\WINDOWS\System32\lsass.exe
10:33:41.0921 0x190c EFS - ok
10:33:41.0937 0x190c [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
10:33:41.0937 0x190c EhStorClass - ok
10:33:41.0937 0x190c [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
10:33:41.0953 0x190c EhStorTcgDrv - ok
10:33:41.0953 0x190c [ 20ECD0A490A121CB34F553FAD1DBBD39, 17C9DA33E78FBC7582B0AA53C611929B80FBBE1343B84A179D515B51C964D218 ] EpsonScanSvc    C:\WINDOWS\system32\EscSvc64.exe
10:33:41.0968 0x190c EpsonScanSvc - ok
10:33:41.0968 0x190c [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
10:33:41.0984 0x190c ErrDev - ok
10:33:41.0984 0x190c [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3, 5264734F0572FAEDCCB008221C9982CCB7922C4FFC358605424EA413CDCDAE99 ] EventSystem     C:\WINDOWS\system32\es.dll
10:33:42.0015 0x190c EventSystem - ok
10:33:42.0031 0x190c [ FE18DDEA98D90DBF850AFCA0158ABEC8, 8EC0099B560CC23DA6D26A71A202667D1A7C4BC37CE0F9F3458EA40440541D06 ] Everything      C:\Program Files\Everything\Everything.exe
10:33:42.0156 0x190c Everything - detected UnsignedFile.Multi.Generic ( 1 )
10:33:42.0312 0x190c Detect skipped due to KSN trusted
10:33:42.0312 0x190c Everything - ok
10:33:42.0312 0x190c [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
10:33:42.0328 0x190c exfat - ok
10:33:42.0328 0x190c [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
10:33:42.0343 0x190c fastfat - ok
10:33:42.0359 0x190c [ 2BC8532ABF2B3756B78FA1DA54147DDE, DF65EE2AB0255A2CF3221085A6BE7C37E3DB6BFEED3BCADCDD69BB1049F6DCB1 ] Fax             C:\WINDOWS\system32\fxssvc.exe
10:33:42.0374 0x190c Fax - ok
10:33:42.0374 0x190c [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
10:33:42.0390 0x190c fdc - ok
10:33:42.0390 0x190c [ DC1A78BCCCB7EE53D6FD3BD615A8E222, EE16B6853185AAE779D7135035983938009901658F76A8856AAC12EBA15BB34E ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
10:33:42.0406 0x190c fdPHost - ok
10:33:42.0406 0x190c [ E5AD448F2DC84B1CF387FA7F2A3D1936, BBB29C79A085C503F5EFFB5144596D5DEC48A4EB34A049A4E7B38B27F6D92E0A ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
10:33:42.0421 0x190c FDResPub - ok
10:33:42.0421 0x190c [ 0046E0BD031213D37123876B0D0FA61C, A4FE17D56F0BAFB70D0D421ED9D1B6E50AF8ADAA4B59328A41AEC5B4C068A3CB ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
10:33:42.0437 0x190c fhsvc - ok
10:33:42.0437 0x190c [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
10:33:42.0453 0x190c FileInfo - ok
10:33:42.0453 0x190c [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
10:33:42.0468 0x190c Filetrace - ok
10:33:42.0468 0x190c [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
10:33:42.0468 0x190c flpydisk - ok
10:33:42.0484 0x190c [ 6592D192E2823C043EDBC010E7774053, C025A0EC5517DC3BD5D6656DC0F0F19021FB3D2EE90EC6194E1BD74E638EBBDC ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
10:33:42.0500 0x190c FltMgr - ok
10:33:42.0515 0x190c [ 3FA6DC6B29717E32E211C1FD821F2C75, E467F3775427C93CC2B87327B0A45669631A5FC460C558F6796BA26002A8BBFC ] FontCache       C:\WINDOWS\system32\FntCache.dll
10:33:42.0546 0x190c FontCache - ok
10:33:42.0546 0x190c [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:33:42.0562 0x190c FontCache3.0.0.0 - ok
10:33:42.0562 0x190c [ 35005534E600E993A90B036E4E599F2B, DA56FA3776FBD3D50276CB7410E0CB6F137DD8FCA84C0F3FEF8B1FEA5F6CA592 ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
10:33:42.0562 0x190c FsDepends - ok
10:33:42.0578 0x190c [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
10:33:42.0578 0x190c Fs_Rec - ok
10:33:42.0593 0x190c [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
10:33:42.0609 0x190c fvevol - ok
10:33:42.0609 0x190c [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\WINDOWS\System32\drivers\fxppm.sys
10:33:42.0625 0x190c FxPPM - ok
10:33:42.0625 0x190c [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
10:33:42.0625 0x190c gagp30kx - ok
10:33:42.0640 0x190c [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
10:33:42.0640 0x190c gencounter - ok
10:33:42.0656 0x190c [ C511B8331F7CCB3FD7902958C261CC85, DCF70C551A559A539C3366657EBBAC9A39CEFA916010813FE70D51D7742C0C1B ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
10:33:42.0703 0x190c GfExperienceService - ok
10:33:42.0703 0x190c [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
10:33:42.0718 0x190c GPIOClx0101 - ok
10:33:42.0734 0x190c [ 69DB09F0263C637DA8568D404842466A, D042194266978AAD31E04DAF7018CD50754077212DC74A4D8AFF6BFEE80CDD20 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
10:33:42.0765 0x190c gpsvc - ok
10:33:42.0781 0x190c [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:33:42.0781 0x190c gupdate - ok
10:33:42.0781 0x190c [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:33:42.0796 0x190c gupdatem - ok
10:33:42.0796 0x190c [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
10:33:42.0812 0x190c HDAudBus - ok
10:33:42.0812 0x190c [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
10:33:42.0828 0x190c HidBatt - ok
10:33:42.0828 0x190c [ 1EA1B4FABB8CC348E73CA90DBA22E104, 5C18C6BD499272F216DD4626B5E8D38181AEAC9AD917FBEB614A75B70467B258 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
10:33:42.0843 0x190c HidBth - ok
10:33:42.0843 0x190c [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
10:33:42.0859 0x190c hidi2c - ok
10:33:42.0859 0x190c [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
10:33:42.0859 0x190c HidIr - ok
10:33:42.0875 0x190c [ 449A20A674AA3FAA7F0DD4E33EE2DC20, 28B9BDA306456E8640C355718DE3477537B0FAF8C37F633C709129AAB64D9873 ] hidserv         C:\WINDOWS\system32\hidserv.dll
10:33:42.0875 0x190c hidserv - ok
10:33:42.0875 0x190c [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
10:33:42.0890 0x190c HidUsb - ok
10:33:42.0906 0x190c [ 7BF3ADCBD021D4F4A84CF40EB49C71B5, 5758A51FD2EBE67E6DBE3A298D714D351910F9E01C428D0C1359457C9242B298 ] hkmsvc          C:\WINDOWS\system32\kmsvc.dll
10:33:42.0906 0x190c hkmsvc - ok
10:33:42.0921 0x190c [ 6CD9C3819BE8C0A3DACC82AE5D3C4F18, 46BF4A968E506DE17CA401401D716B444CDC10A5C60EB081890DD4B886AEDF5F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
10:33:42.0937 0x190c HomeGroupListener - ok
10:33:42.0937 0x190c [ 1A4DA1D6287B99033D144B436C23B656, D4D1EEB372E61512EA36A33F095E68C225B8E6C72CC57ED8BD00533F88012F40 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
10:33:42.0953 0x190c HomeGroupProvider - ok
10:33:42.0953 0x190c [ 2A8B93A01621E100A578E83C768AFA2C, 6637D260AF180D1F200D219796FCE6D524FC6BF57C0CEEF9E1B3616E85865AD1 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
10:33:42.0968 0x190c HP Support Assistant Service - detected UnsignedFile.Multi.Generic ( 1 )
10:33:43.0484 0x190c Detect skipped due to KSN trusted
10:33:43.0484 0x190c HP Support Assistant Service - ok
10:33:43.0500 0x190c [ D2946D9F020AE76E9CEF9B4A6DF838C0, C29CE594879385DA12B8EAA90B258905827B613839CCD820DE49215B68676995 ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
10:33:43.0515 0x190c hpqwmiex - ok
10:33:43.0531 0x190c [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
10:33:43.0531 0x190c HpSAMD - ok
10:33:43.0546 0x190c [ 595F362A7C2F64304EFC77C72E7B9F84, 9C68F14DDC738212C839038CA0909C8D124ABB93C202EAE124872203BB3AD4BF ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
10:33:43.0562 0x190c HPSupportSolutionsFrameworkService - ok
10:33:43.0578 0x190c [ 9DDCA7F18983C5410DEFF79F819DF93C, CE97B4440377BFC5CA81BB600C3BD1DD9FB3951CA1EB70735F5E2050EBB74223 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
10:33:43.0593 0x190c HTTP - ok
10:33:43.0593 0x190c [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
10:33:43.0609 0x190c hwpolicy - ok
10:33:43.0609 0x190c [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
10:33:43.0625 0x190c hyperkbd - ok
10:33:43.0625 0x190c [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
10:33:43.0640 0x190c HyperVideo - ok
10:33:43.0640 0x190c [ 84CFC5EFA97D0C965EDE1D56F116A541, 0155EA62BF07D99D98D1C9B6559C8E3301B016A20D03DF1EF64B2FAB8C37403B ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
10:33:43.0656 0x190c i8042prt - ok
10:33:43.0656 0x190c [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
10:33:43.0656 0x190c iaLPSSi_GPIO - ok
10:33:43.0656 0x190c [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
10:33:43.0671 0x190c iaLPSSi_I2C - ok
10:33:43.0687 0x190c [ 350EDDB367832C2AC96A8CE21821269D, 55453AF933E59C4748302FB8E516C891BFF7D131E810F0E27DF29DE11A8C8A64 ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
10:33:43.0703 0x190c iaStorA - ok
10:33:43.0703 0x190c [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
10:33:43.0718 0x190c iaStorAV - ok
10:33:43.0734 0x190c [ B64E1D5BABD095C13A382838F9DCC77F, D8FF4E1BBA7EF5EE136CC5892C72E0774D0AAE40CD9EB3368A698DA6C078BBAA ] IAStorDataMgrSvc C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
10:33:43.0750 0x190c IAStorDataMgrSvc - ok
10:33:43.0750 0x190c [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
10:33:43.0765 0x190c iaStorV - ok
10:33:43.0765 0x190c IEEtwCollectorService - ok
10:33:43.0781 0x190c [ DEA76F90F9777E3427D70E380222B23B, B917BA423896A12E45623E3D494CA03317A6FC612CA433C62C897524DC3E756B ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
10:33:43.0812 0x190c IKEEXT - ok
10:33:43.0828 0x190c [ 0DB1E3F6189C628675F855C0EB510419, 989F539E82105019D2D81255369B96DC65826CD2A421DA09809155B26F69C555 ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
10:33:44.0234 0x190c Intel® Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
10:33:44.0765 0x190c Detect skipped due to KSN trusted
10:33:44.0765 0x190c Intel® Capability Licensing Service Interface - ok
10:33:44.0781 0x190c [ 492AAF2FF66F437F0E796574B116EFC3, 6BF21C61ED05705DD58203952A750D1AB4D4B62F3A2B640BBBD9B85D1ECC3E5C ] Intel® Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
10:33:45.0234 0x190c Intel® Capability Licensing Service TCP IP Interface - ok
10:33:45.0234 0x190c [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
10:33:45.0250 0x190c intelide - ok
10:33:45.0250 0x190c [ 139CFCDCD36B1B1782FD8C0014AC9B0E, E0D7E0E9B46A8CECE138D689820023BFA650FB689E4FD62855BED37E04F2D9FF ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
10:33:45.0265 0x190c intelpep - ok
10:33:45.0265 0x190c [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
10:33:45.0281 0x190c intelppm - ok
10:33:45.0281 0x190c [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
10:33:45.0297 0x190c IpFilterDriver - ok
10:33:45.0312 0x190c [ ACFEE9487693C2BD573DFCA71D98E17C, A347FD476147CD3568EEE6993B46AFC05A66A4269094CA51572D0FD013FCB535 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
10:33:45.0328 0x190c iphlpsvc - ok
10:33:45.0328 0x190c [ 9C096BF5E10CA8BFA56F32522A89FAF1, 6C1151160799338DA351C7237AB049926C6C15F24F5E154BBF5929B4A96C0B8D ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
10:33:45.0359 0x190c IPMIDRV - ok
10:33:45.0359 0x190c [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
10:33:45.0375 0x190c IPNAT - ok
10:33:45.0375 0x190c [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
10:33:45.0375 0x190c IRENUM - ok
10:33:45.0390 0x190c [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
10:33:45.0390 0x190c isapnp - ok
10:33:45.0406 0x190c [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
10:33:45.0406 0x190c iScsiPrt - ok
10:33:45.0422 0x190c [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
10:33:45.0453 0x190c jhi_service - ok
10:33:45.0453 0x190c [ 8BE92376799B6B44D543E8D07CDCF885, 425B8BB1BAF62F735B3CB5A002E6055879F02E7207E55942BFD37F1784F5F368 ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
10:33:45.0468 0x190c kbdclass - ok
10:33:45.0468 0x190c [ FB6E47E569D4872ABEB506BE03A45FBA, 5C4056CADA8F67587A119D9AE2A0EFAB30387CF6298F4019FF68AC92E2F6F54B ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
10:33:45.0484 0x190c kbdhid - ok
10:33:45.0484 0x190c [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\WINDOWS\system32\DRIVERS\kdnic.sys
10:33:45.0484 0x190c kdnic - ok
10:33:45.0500 0x190c [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] KeyIso          C:\WINDOWS\system32\lsass.exe
10:33:45.0500 0x190c KeyIso - ok
10:33:45.0500 0x190c [ ADDECBCC777665BD113BED437E602AB0, B6283475A1219CE44E9F683DD3BEB8C42DA0943297E5C4699B22176AD8A6A7ED ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
10:33:45.0515 0x190c KSecDD - ok
10:33:45.0515 0x190c [ F88CC88F4A6D8476F1664E805CA18CC2, 2C61EE5EEA4FD45AA3FA927CC16E34EF90BD44324EAB14198AF65C3A27617991 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
10:33:45.0531 0x190c KSecPkg - ok
10:33:45.0531 0x190c [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
10:33:45.0547 0x190c ksthunk - ok
10:33:45.0547 0x190c [ 32B1A8351160F307A8C66BCB0F94A9C2, 52F1DEC2BBD4D5DDBB85ED20B99D96BBA7EB83304D76F183A11FDAFDA364E873 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
10:33:45.0562 0x190c KtmRm - ok
10:33:45.0562 0x190c [ 50AECF8C21AB2A6428A6E1E10549D8E5, 6BC7C60CF5E8AFB9972619EE1C78357756E9C0A3EC783C3056CEB600DCBB1555 ] L1C             C:\WINDOWS\system32\DRIVERS\L1C63x64.sys
10:33:45.0578 0x190c L1C - ok
10:33:45.0593 0x190c [ 793EACA6BAE9F481C2059BCB3743EB4A, 2624905C6B6A1227BD1CAC7D4FE55A5F6543E1278DAB31EC553748472D180D1D ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
10:33:45.0609 0x190c LanmanServer - ok
10:33:45.0609 0x190c [ D0D9C2ECA4D03A8F06DCD91236B90C98, E2D1144DC8040EA5FEB0602A20BA4CB920B4BC86AD5AD05FC0DF7D74DC95DC66 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
10:33:45.0625 0x190c LanmanWorkstation - ok
10:33:45.0640 0x190c [ 1D5C6790425CB6DBB1B3C2722C34E199, D8BCC31A443B77711A7CA468E754A73137C1CC47D6F3DA5BEE3735B654327B0C ] LBTServ         C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
10:33:45.0640 0x190c LBTServ - ok
10:33:45.0656 0x190c [ 5EA1731968F2FD0E950DDCE6D36C5134, 16C47AA60CB62F206DBF3B4FAF99FCA667E7193178D1B7ECB162FA87C008BAA3 ] LEqdUsb         C:\WINDOWS\system32\DRIVERS\LEqdUsb.Sys
10:33:45.0656 0x190c LEqdUsb - ok
10:33:45.0672 0x190c [ 626D19F1771E1AE72208AE9A8F3082F7, 78FDB64545ED2EAE9F51C08120E21D2C3285208F6846BD8BBA08CAA839E7A0C4 ] lfsvc           C:\WINDOWS\System32\GeofenceMonitorService.dll
10:33:45.0687 0x190c lfsvc - ok
10:33:45.0687 0x190c [ 50AC0930F05DFB996F085B49E112E5C9, C5147E92656506981705AFCAA97B7BDAD0929FF39C1666E774BE1BD32FB08387 ] LHidEqd         C:\WINDOWS\system32\DRIVERS\LHidEqd.Sys
10:33:45.0687 0x190c LHidEqd - ok
10:33:45.0703 0x190c [ 96EB043E2843B5A87A486D0BC6921094, 0B339A18B2F536F12B2C1B4FEDEB3A815DC7F8E7B082144EE084B3E6ED067FBC ] LHidFilt        C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
10:33:45.0703 0x190c LHidFilt - ok
10:33:45.0703 0x190c [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\WINDOWS\system32\DRIVERS\lltdio.sys
10:33:45.0718 0x190c lltdio - ok
10:33:45.0718 0x190c [ 00E070FC0C673311AFD4B068D1242780, 50B0E0E625361145332C849709498FF444E46578DCAD2536E6D0289E0125580F ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
10:33:45.0734 0x190c lltdsvc - ok
10:33:45.0734 0x190c [ D113FAD71A5E67AA94B32A0F8828D265, 08DDB4BBDB570C59926DBF5E27FCF46DCDF8B8212BB9251E97837E0504516FB3 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
10:33:45.0750 0x190c lmhosts - ok
10:33:45.0750 0x190c [ A5C1DA229B3B660BBF3BDC30ADBFBB61, B657092424C6BF418A6FA56353370C195D9CA67999B355E8EDD6AFCFD9FEF8E5 ] LMouFilt        C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
10:33:45.0765 0x190c LMouFilt - ok
10:33:45.0765 0x190c [ B16F2A40E738277AB75515D4B024305E, 38F48CCD72FA2B32DFD3123C0864AB724AC673414EEE09C6F582754177CD4B98 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
10:33:45.0781 0x190c LMS - ok
10:33:45.0781 0x190c [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
10:33:45.0797 0x190c LSI_SAS - ok
10:33:45.0797 0x190c [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\WINDOWS\system32\drivers\lsi_sas2.sys
10:33:45.0812 0x190c LSI_SAS2 - ok
10:33:45.0812 0x190c [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\WINDOWS\system32\drivers\lsi_sas3.sys
10:33:45.0812 0x190c LSI_SAS3 - ok
10:33:45.0828 0x190c [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
10:33:45.0828 0x190c LSI_SSS - ok
10:33:45.0843 0x190c [ 8EBB271E4588D835784A3FF7E80076A8, A508BE95F6F5063A76F4C8726D9425BB1F00DE803EFE73A0BE145DD9AB82FF0A ] LSM             C:\WINDOWS\System32\lsm.dll
10:33:45.0859 0x190c LSM - ok
10:33:45.0859 0x190c [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
10:33:45.0875 0x190c luafv - ok
10:33:45.0875 0x190c [ 9D9ED48F841EA37AA5310D54B9E5D3C7, 147DBEBE08A49486F91B30DE3606AC3B7D765DA751DF6880FA5A2D8FBAA2E2A2 ] mbamchameleon   C:\WINDOWS\system32\drivers\mbamchameleon.sys
10:33:45.0890 0x190c mbamchameleon - ok
10:33:45.0890 0x190c [ F92B0E478C0FAA6D6661E6E977247E60, 8B26B57C2C60C98CD6273ACA126B2CD0356ADB13A59FEC12882357A6B973123C ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys
10:33:45.0890 0x190c MBAMProtector - ok
10:33:45.0922 0x190c [ D84AEA3F3329D622DFC1297DDDF6163B, 316FE56CC30ED1473A917253F46B79EAA12F4ABD5B4B1ADB03929DFEE940F577 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
10:33:45.0953 0x190c MBAMScheduler - ok
10:33:45.0968 0x190c [ 4F45ED469906494F9BF754E476390DBD, D8FF6AFD73D8C191F5732DF9737E6F83B2B52B06A3A6CD4CC6EAC9464CBB2772 ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
10:33:45.0984 0x190c MBAMService - ok
10:33:45.0984 0x190c [ 8A50D5304E6AE48664CF5838EC32F647, C76943FABEE1B5E1B641AA610668CCD4227E2C4B191DD30B79D3AB31A9E8B5BE ] MBAMSwissArmy   C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
10:33:46.0000 0x190c MBAMSwissArmy - ok
10:33:46.0000 0x190c [ 0664F6335F108F38FE08C3CA747311EE, 04C5F31C57573DC4ABFC609D3F7C589835CE5C528AF5EE07FB25E35F72DF98A4 ] MBAMWebAccessControl C:\WINDOWS\system32\drivers\mwac.sys
10:33:46.0000 0x190c MBAMWebAccessControl - ok
10:33:46.0015 0x190c [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
10:33:46.0015 0x190c megasas - ok
10:33:46.0031 0x190c [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
10:33:46.0047 0x190c megasr - ok
10:33:46.0047 0x190c [ 18B9AD128EC84E8D16A83F70CF36594F, 199DF15D68E2A079794E5DD325162C1A68A65EF26EEF5A6C6154281DDE57279A ] MEIx64          C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys
10:33:46.0062 0x190c MEIx64 - ok
10:33:46.0062 0x190c Microsoft SharePoint Workspace Audit Service - ok
10:33:46.0078 0x190c [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] MMCSS           C:\WINDOWS\system32\mmcss.dll
10:33:46.0078 0x190c MMCSS - ok
10:33:46.0093 0x190c [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\WINDOWS\system32\drivers\modem.sys
10:33:46.0093 0x190c Modem - ok
10:33:46.0093 0x190c [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
10:33:46.0109 0x190c monitor - ok
10:33:46.0109 0x190c [ CEAC6D40FE887CE8406C2393CF97DE06, 34E76908B802764FF0D7AB3AF89BE77BD35B44787983343FAD89891891C0A045 ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
10:33:46.0125 0x190c mouclass - ok
10:33:46.0125 0x190c [ 02D98BF804084E9A0D69D1C69B02CCA9, EC5BC5D87043DFFD035FD4DD27B3D94E03119063519E4151BCC3522B613E2D7F ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
10:33:46.0125 0x190c mouhid - ok
10:33:46.0140 0x190c [ 515549560D481138E6E21AF7C6998E56, C7E4B38D8CCAF15B9BDA63C8C8209F6193AD220DA02E1264F1B687AACD8F409F ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
10:33:46.0140 0x190c mountmgr - ok
10:33:46.0156 0x190c [ F170510BE94CF45E3C6274578F6204B2, 344C3DDE1D622607CA2ABECB2C47CB0166D2D258BD94A7960C45A5ADBB640566 ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
10:33:46.0156 0x190c mpsdrv - ok
10:33:46.0172 0x190c [ D186C5844393252147BE934F3871DB7A, 30160F8268B9F46E82C5CB536867E0CF280DC98074A481595072E3320200E343 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
10:33:46.0203 0x190c MpsSvc - ok
10:33:46.0203 0x190c [ 1D55DADC22D21883A2F80297F5A5AE48, B79DF4AFC2A9CBC54E74233596544D6E41C8CAA0516BD57CA695D051EC780265 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
10:33:46.0218 0x190c MRxDAV - ok
10:33:46.0218 0x190c [ 7A1A3F213CDB3363D179D5014272025D, 6756F5B7D9FBF6839DB1FF4E94EA45B5499D7DF925E75581C96FBBA4BE131542 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
10:33:46.0234 0x190c mrxsmb - ok
10:33:46.0250 0x190c [ 3E28B99198B514DFEB152EACF913025E, 6C1D8353DCD5F811F39C0C3CB5DF3D2457F0D17EE80FB06196AA169E3D19E9B2 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
10:33:46.0250 0x190c mrxsmb10 - ok
10:33:46.0265 0x190c [ C910E5D18958914A66F0E45689D0B40A, AD7C91DD8A60A511E580DD56BACC97F85075A539E7C5D95040A8F870A621DAF4 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
10:33:46.0281 0x190c mrxsmb20 - ok
10:33:46.0281 0x190c [ E0927EFA25D473367C3341B9F5969779, B77A162BD3334557623674373D8EC2BE7CC0B359DF06304E467ABFFEE0530271 ] MsBridge        C:\WINDOWS\system32\DRIVERS\bridge.sys
10:33:46.0312 0x190c MsBridge - ok
10:33:46.0312 0x190c [ A082C17D14D0790E27D064EA4B138AE1, 9A565ED885782D9D5135C8399C11C356DBF9EBF3B8EB4B4504BD2604AD0B45E6 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
10:33:46.0328 0x190c MSDTC - ok
10:33:46.0328 0x190c [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
10:33:46.0343 0x190c Msfs - ok
10:33:46.0343 0x190c [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
10:33:46.0343 0x190c msgpiowin32 - ok
10:33:46.0359 0x190c [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
10:33:46.0359 0x190c mshidkmdf - ok
10:33:46.0359 0x190c [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
10:33:46.0375 0x190c mshidumdf - ok
10:33:46.0375 0x190c [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
10:33:46.0375 0x190c msisadrv - ok
10:33:46.0390 0x190c [ 810F8A0A0680662BB0CE44D0E2CEF90C, 5631B07911B7EF378CB1583A480A3C5715E59A5488B33A528F4D7A2F849B9113 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
10:33:46.0406 0x190c MSiSCSI - ok
10:33:46.0406 0x190c msiserver - ok
10:33:46.0406 0x190c [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
10:33:46.0406 0x190c MSKSSRV - ok
10:33:46.0422 0x190c [ 375E44168F2DFB91A68B8A3F619C5A7C, AC243E02E9A39D0B4DE9571F196941700EE6EB5E94F5B0BA8994FB551E73A7A8 ] MsLldp          C:\WINDOWS\system32\DRIVERS\mslldp.sys
10:33:46.0422 0x190c MsLldp - ok
10:33:46.0422 0x190c [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
10:33:46.0437 0x190c MSPCLOCK - ok
10:33:46.0437 0x190c [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
10:33:46.0453 0x190c MSPQM - ok
10:33:46.0453 0x190c [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
10:33:46.0468 0x190c MsRPC - ok
10:33:46.0468 0x190c [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
10:33:46.0484 0x190c mssmbios - ok
10:33:46.0484 0x190c [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
10:33:46.0500 0x190c MSTEE - ok
10:33:46.0500 0x190c [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
10:33:46.0500 0x190c MTConfig - ok
10:33:46.0515 0x190c [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
10:33:46.0515 0x190c Mup - ok
10:33:46.0515 0x190c [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
10:33:46.0531 0x190c mvumis - ok
10:33:46.0531 0x190c [ 41A45D2A75494EABF2806EA051E00376, EB2497561C8E33A4297C044604C717FF854C7F046882A9E4A400AE7679BF5467 ] napagent        C:\WINDOWS\system32\qagentRT.dll
10:33:46.0562 0x190c napagent - ok
10:33:46.0562 0x190c [ 26ACA481FAFEC59FE311D719E3027BBA, 16A24CCA95A38BDFE970580159F6ACAA13FF1B74CF2290B1B020D909F90D3347 ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
10:33:46.0593 0x190c NativeWifiP - ok
10:33:46.0593 0x190c [ 71E3C0100AA19D11373CCEB2F51A6008, 58FBF35F5FE19BEABE483C11E9996BE93D76721C8C34465350FA98B465CA3672 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
10:33:46.0609 0x190c NcaSvc - ok
10:33:46.0609 0x190c [ 51DF09CAB2CAC64FEE3E371D9028ED01, 9B81604D0D0359AF8F54FED6DA7116FFD2F40407895028EAD99FF1D7CFDC2D14 ] NcbService      C:\WINDOWS\System32\ncbservice.dll
10:33:46.0625 0x190c NcbService - ok
10:33:46.0625 0x190c [ 2586C4C167499210DCBF3ECFD8CCE210, D8129FEDE9918BF4FB0057CC58700D4E08457060E810B9CC25CA0F598506ADB8 ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
10:33:46.0656 0x190c NcdAutoSetup - ok
10:33:46.0672 0x190c [ E4B4BE2D7750849C07589DA0B0AABA01, BB5AA727BA018A94B5DE2C4E0B594DD2E7A2B3457885446EE568F3A1E18AB3B0 ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
10:33:46.0687 0x190c NDIS - ok
10:33:46.0703 0x190c [ C6BB12BC35D1637CA17AE16D3A4725EB, 01C1D9FA738886A195166F88207EEB6715A1DE0608978ED6C5DC738AF5C02513 ] NdisCap         C:\WINDOWS\system32\DRIVERS\ndiscap.sys
10:33:46.0703 0x190c NdisCap - ok
10:33:46.0718 0x190c [ B1AA3B19A2E596A59224F893E01A5A75, E08696CA5E087E51AC3E64D4FB8490EEADD612DDF30C9A94DD1BD1BA124B71B7 ] NdisImPlatform C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
10:33:46.0734 0x190c NdisImPlatform - ok
10:33:46.0734 0x190c [ 9423421E735BD5394351E0C47C76BB92, 763E5D06F896C0EF8AD52515464F28BA85DB7A1560E451857AC9AA68FAFCBC66 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
10:33:46.0750 0x190c NdisTapi - ok
10:33:46.0750 0x190c [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
10:33:46.0765 0x190c Ndisuio - ok
10:33:46.0765 0x190c [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
10:33:46.0781 0x190c NdisVirtualBus - ok
10:33:46.0781 0x190c [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:33:46.0797 0x190c NdisWan - ok
10:33:46.0797 0x190c [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
10:33:46.0812 0x190c NdisWanLegacy - ok
10:33:46.0812 0x190c [ A5BD69A8812FA79D1A487691DD3FB244, 67B5EDE101943E0E8B8041DB2353D20C8B9F2D253E77964761CFE8F136C0BBC7 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
10:33:46.0828 0x190c NDProxy - ok
10:33:46.0828 0x190c [ 5A072F0B90C29C5233D78BE33EF5ED78, B32ED76A674B1FC743361FB7BBD4C915A78B14132AB056AADD445D5995AD4F32 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
10:33:46.0843 0x190c Ndu - ok
10:33:46.0843 0x190c [ A83D67D347A684F10B7D3019C8A6380C, 2B86832967981C8C786BF24C1CF8E13E01745ACE3333CF5C821DD93D623B96E4 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
10:33:46.0859 0x190c NetBIOS - ok
10:33:46.0859 0x190c [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
10:33:46.0875 0x190c NetBT - ok
10:33:46.0875 0x190c [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] Netlogon        C:\WINDOWS\system32\lsass.exe
10:33:46.0890 0x190c Netlogon - ok
10:33:46.0890 0x190c [ B7AD851A21FEBA3BA214972627614207, 29605320CCC3DAAD062CAECF0009DACBC2F6D28ED4E8AF7CE76132129F5572A0 ] Netman          C:\WINDOWS\System32\netman.dll
10:33:46.0906 0x190c Netman - ok
10:33:46.0922 0x190c [ F0F0A372C2EF6358399C4936F91B6131, CE596C71EB4D1A5E104D3148F2D0D8789882C59FD198DCF33CCAC7A08B50E4EE ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
10:33:46.0937 0x190c netprofm - ok
10:33:46.0968 0x190c [ 735E4E58539FA0F0B96B7D9599C6C041, 43B603C7EF5B1819FC99776984326C5AA6D2915BA70E12E5366BB456D1F2B7E3 ] netr28x         C:\WINDOWS\system32\DRIVERS\netr28x.sys
10:33:47.0031 0x190c netr28x - ok
10:33:47.0047 0x190c [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:33:47.0047 0x190c NetTcpPortSharing - ok
10:33:47.0062 0x190c [ 70414DB660BFBB7BD58FCE8EA4364E1B, 6DFB3897CD55E22BA1EDF0AE672F4D7A6A1F512F8A0A26AF106765E6B1CF65AC ] netvsc          C:\WINDOWS\system32\DRIVERS\netvsc63.sys
10:33:47.0062 0x190c netvsc - ok
10:33:47.0078 0x190c [ 3A280F3B3C7A46E29C404ACD46ECBF5E, 81C3367A2A212DBCC65B8A0166FD092E3205AB31A146B4B737061335CEC51F9D ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
10:33:47.0093 0x190c NlaSvc - ok
10:33:47.0093 0x190c [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
10:33:47.0109 0x190c Npfs - ok
10:33:47.0109 0x190c [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
10:33:47.0125 0x190c npsvctrig - ok
10:33:47.0125 0x190c [ 6E2271ED0C3E95B8E29F3752B91B9E84, 44026AD9757EA82967D7F7578455802FAD7FE0057EAC088E0AE207C15F594B86 ] nsi             C:\WINDOWS\system32\nsisvc.dll
10:33:47.0140 0x190c nsi - ok
10:33:47.0140 0x190c [ E490B459978CB87779E84C761D22B827, 1E5CA38626E41618E4CA16DD0C70EB2FA86E986F0CF21A749BDE2A17015DEEC6 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
10:33:47.0140 0x190c nsiproxy - ok
10:33:47.0187 0x190c [ 038C77D577900EE39410662478BB0D50, A33AAFD5750245C17A47EC71F3C6EAD2E0925CAD34C65AB3E6CEE44756C668E6 ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
10:33:47.0219 0x190c Ntfs - ok
10:33:47.0234 0x190c [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\WINDOWS\system32\drivers\Null.sys
10:33:47.0234 0x190c Null - ok
10:33:47.0250 0x190c [ C87B11EB78428853F9E8495C47E53C10, FAE479DB0812967B3FF968773BA998591B4F50BE4329B8349BCA7E6EAB1B0474 ] NVHDA           C:\WINDOWS\system32\drivers\nvhda64v.sys
10:33:47.0250 0x190c NVHDA - ok
10:33:47.0437 0x190c [ A6975E0E4BE34667933846DE2F28AEFC, DFCF194C457A80C8222821001626D089FB1D97A37CA4D50D92144CE324911A78 ] nvlddmkm        C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
10:33:47.0656 0x190c nvlddmkm - ok
10:33:47.0703 0x190c [ CF4905C5F3179F20DA550CD135EE90EE, D887773F537268CD1141776FC439299C2C9F2986D7962D83FE534E3CD4F983AD ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
10:33:48.0125 0x190c NvNetworkService - ok
10:33:48.0125 0x190c [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
10:33:48.0140 0x190c nvraid - ok
10:33:48.0140 0x190c [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
10:33:48.0156 0x190c nvstor - ok
10:33:48.0156 0x190c [ 6B2CFB1BF233F6946F293B5B30FD599A, 91FC84D5D0497235015850FA1DFFFD8EDEB3C89FAB0BAD65AC86E161CC3593BD ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
10:33:48.0172 0x190c NvStreamKms - ok
10:33:48.0453 0x190c [ 2FAD0F3004D0CFEE5148CB36E6999DBD, 4EE62420BBC6B81048B35E549F2332EA3640B41101FC174C74CCCC412AF0D6E3 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
10:33:48.0734 0x190c NvStreamSvc - ok
10:33:48.0765 0x190c [ 9AEDEFFFE581D775E70C1C228CCD495E, F31C6DED1292A9392B83F9F557070543984AAB73718785B1C189752B34D4805B ] nvsvc           C:\WINDOWS\system32\nvvsvc.exe
10:33:48.0828 0x190c nvsvc - ok
10:33:48.0828 0x190c [ 1AF619620613869C07F9C147BC37520F, 0AD4E100354E201D5E72BA236C1464F5083A7E3B58C4AC6BA712489D258955F5 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
10:33:48.0844 0x190c nvvad_WaveExtensible - ok
10:33:48.0844 0x190c [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
10:33:48.0859 0x190c nv_agp - ok
10:33:48.0859 0x190c [ B9C125314A025127FE562C116D614AA3, 79C46C0BACEBBB5B8E1C162766B21587365A100BBAD01171C77B995C514BC7D6 ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:33:48.0875 0x190c ose64 - ok
10:33:48.0937 0x190c [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
10:33:49.0031 0x190c osppsvc - ok
10:33:49.0031 0x190c [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
10:33:49.0047 0x190c p2pimsvc - ok
10:33:49.0062 0x190c [ 2A57A937BC5B1B2D6AFE6A8C5925F50B, 00D84EFED5A7129AAD86945940030474795905C32D65CBD5B1A3EBADCED8F873 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
10:33:49.0078 0x190c p2psvc - ok
10:33:49.0078 0x190c [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
10:33:49.0094 0x190c Parport - ok
10:33:49.0094 0x190c [ EF0C1749C9A8CEE9A457473D433CC00F, A5FDAB5AD47471640D697C6CFBA6C67730878ABBA47D394EAA47C9733EDCE1F3 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
10:33:49.0109 0x190c partmgr - ok
10:33:49.0109 0x190c [ 9A5309EF92F39346CFD5A4C2C3D1BFAD, 5908E0C9562F9CB24784491BD9AE7983A33A6BDF81AFA0A08045518A0C9BB2B1 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
10:33:49.0125 0x190c PcaSvc - ok
10:33:49.0140 0x190c [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci             C:\WINDOWS\system32\drivers\pci.sys
10:33:49.0156 0x190c pci - ok
10:33:49.0156 0x190c [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
10:33:49.0156 0x190c pciide - ok
10:33:49.0172 0x190c [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
10:33:49.0172 0x190c pcmcia - ok
10:33:49.0172 0x190c [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
10:33:49.0187 0x190c pcw - ok
10:33:49.0187 0x190c [ B9D968D8E2B0F9C6301CEB39CFC9B9E4, 83F32831B0727F18B56DC3CAF37E45A3523D2BBCD54D1421F0DE5A0179D8A404 ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
10:33:49.0203 0x190c pdc - ok
10:33:49.0203 0x190c [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
10:33:49.0234 0x190c PEAUTH - ok
10:33:49.0250 0x190c [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
10:33:49.0265 0x190c PerfHost - ok
10:33:49.0297 0x190c [ 928061178CD9856CA6B67FFFCE6BA766, 71DE3C7CA7F83EAAA550CD8A68FB67DE042B0AE51BFACB1ECB8852D502E11F50 ] pla             C:\WINDOWS\system32\pla.dll
10:33:49.0328 0x190c pla - ok
10:33:49.0328 0x190c [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
10:33:49.0344 0x190c PlugPlay - ok
10:33:49.0344 0x190c [ 045EB4F260606A03BE340D09DEAF3BA4, 6F34B8D414F7F69F4388F2F8A86E0F3AD179E423126990AF3E1EC4DCCB8E7693 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
10:33:49.0359 0x190c PNRPAutoReg - ok
10:33:49.0359 0x190c [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
10:33:49.0375 0x190c PNRPsvc - ok
10:33:49.0390 0x190c [ C16097D77A232A288D65F299E2E01105, 5CE4B44B06FD26569C0F92FF1D3991D0128D8444AE7BC9EBEF5A33811D721BE8 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
10:33:49.0406 0x190c PolicyAgent - ok
10:33:49.0406 0x190c [ 00E08B30E7F7C13ECE2CDF4F46A77311, 1807C0A64C1794E572C86730816C01DCF4D8F773ADE9CAEA3AC0658F7BD71A4E ] Power           C:\WINDOWS\system32\umpo.dll
10:33:49.0422 0x190c Power - ok
10:33:49.0422 0x190c [ E075CC071022BD4E9BE7C024717C0E0A, BE65A8C1082AE8DF8C37CA06B2BCC521478AC153EA7388B03F7FAE3913920E75 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
10:33:49.0437 0x190c PptpMiniport - ok
10:33:49.0484 0x190c [ 3C96A45CA3403A276B0F045C448EC27B, C0011DB8C5A85817CAF815CC0095EE2C1CDD5964DCD8EAF4C35A2495D6A873CC ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
10:33:49.0562 0x190c PrintNotify - ok
10:33:49.0578 0x190c [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
10:33:49.0578 0x190c Processor - ok
10:33:49.0594 0x190c [ EF1F8B57323E5D3FC6A0A25F98F90DBC, F50E81151604DCD59BB647FD6767C1631AE48B5FCA6D3423C4E32535C94D6369 ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
10:33:49.0609 0x190c ProfSvc - ok
10:33:49.0609 0x190c [ 8528BB05E4D4E25945F78B00B2555FB7, FF8E0D4580F93CD348080967F52FE6C2C68B56DAEACAE2EAEF04E19412A953AE ] Psched          C:\WINDOWS\system32\DRIVERS\pacer.sys
10:33:49.0625 0x190c Psched - ok
10:33:49.0625 0x190c [ AF90BB44C99D6820BE52C9BBAA523283, 9772D9CC1666959EC8EE4ED740A5179473CE4F38762109F1123DD68010D20EA1 ] QWAVE           C:\WINDOWS\system32\qwave.dll
10:33:49.0641 0x190c QWAVE - ok
10:33:49.0656 0x190c [ 3FB466684609A4329858CF2EBD62E0FD, CFC8FBAB1436948F9D34CE6A2D6DE2F86F3E93E50B86851CED979C8CCE609798 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
10:33:49.0656 0x190c QWAVEdrv - ok
10:33:49.0672 0x190c [ 2C56F0EE27E4EF70CA4B4983D3638905, AFFDD686886CE982424B644D9168D61C6F86A5244FF97BC644DF75B321E415E5 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
10:33:49.0672 0x190c RasAcd - ok
10:33:49.0672 0x190c [ 674A4702E4E144E8710ED1A2EC6DD049, 613A921101A6815C9185D5EF3E251A592604E56FADE945BB7E256885CAD473BC ] RasAgileVpn     C:\WINDOWS\system32\DRIVERS\AgileVpn.sys
10:33:49.0687 0x190c RasAgileVpn - ok
10:33:49.0687 0x190c [ 5F061AC45266841A2860C1858ED863B8, 9E0D52BAC8A50225C32D0397C35350601B996443E2481C808CC59D3B0763FEF0 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
10:33:49.0703 0x190c RasAuto - ok
10:33:49.0703 0x190c [ BBB6272B7F46C4640A8CDB8A70C3450F, 4266C3ABD0D1D0219F715EA0F155744F7C1E3A7B722BE863831B57AE785419A2 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
10:33:49.0719 0x190c Rasl2tp - ok
10:33:49.0734 0x190c [ 5C7B86EE33505E36026AFAAB62DA6364, 903BB1A355AC746BF09C2A7C87B068168648DB79DEF39AB1DC710B6A7A5F6556 ] RasMan          C:\WINDOWS\System32\rasmans.dll
10:33:49.0750 0x190c RasMan - ok
10:33:49.0750 0x190c [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
10:33:49.0766 0x190c RasPppoe - ok
10:33:49.0766 0x190c [ 2B0F1677CDD08967005F34488559BC6F, FFF168EBD171C0B85A448AD1A04F66534E889AE1DC128F68EA3F35D5996C8D39 ] RasSstp         C:\WINDOWS\system32\DRIVERS\rassstp.sys
10:33:49.0781 0x190c RasSstp - ok
10:33:49.0797 0x190c [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
10:33:49.0812 0x190c rdbss - ok
10:33:49.0812 0x190c [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
10:33:49.0828 0x190c rdpbus - ok
10:33:49.0828 0x190c [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
10:33:49.0844 0x190c RDPDR - ok
10:33:49.0844 0x190c [ 858776908AF838E3790F3261B799CDA6, 5BE4658540382D1B2F46E503CE175D74E3870FE492B8B8F37C3CFB34FF8E2DA8 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
10:33:49.0859 0x190c RdpVideoMiniport - ok
10:33:49.0859 0x190c [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
10:33:49.0875 0x190c rdyboost - ok
10:33:49.0891 0x190c [ E515A287C8FAE901EB8FB42F168E14F2, 9AE8D608587713FD18BB728BADD402C86FFF06A67359B22ED9431705522BC310 ] ReFS            C:\WINDOWS\system32\drivers\ReFS.sys
10:33:49.0906 0x190c ReFS - ok
10:33:49.0922 0x190c [ BFFB40FBE6D2C3469F8D06EE5E4934AB, 5B6763F973A740DCD53CEA75156926457BED8B075965033C484877DDA8B97F39 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
10:33:49.0937 0x190c RemoteAccess - ok
10:33:49.0937 0x190c [ 4DCCABE03D06955ED61BABBD8EF9F30F, 531CD60315AAF283B73E0F6CF77D4DE093B809E73C44D2AC43B7247500B3485E ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
10:33:49.0953 0x190c RemoteRegistry - ok
10:33:49.0953 0x190c [ 9C3AC71A9934B884FAC567A8807E9C4D, 0B6B2970098E3C21E1E54A25785544903E8CD415B527FCEF86ABC7B33BEC83E7 ] Revoflt         C:\WINDOWS\system32\DRIVERS\revoflt.sys
10:33:49.0969 0x190c Revoflt - ok
10:33:49.0969 0x190c [ D894CBD7DA753C881EE8D5E33B583225, DA4472A85F10A3DF8CE969F731E67FE7C75EE6095908AB8AC2C44851DC5A3F8B ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
10:33:49.0984 0x190c RpcEptMapper - ok
10:33:49.0984 0x190c [ 5CAE8F47B31D5CFC322B5B898C19E0FE, FDB5F0B6EA36403E031D9147AB0519011FAAD3AC8190DE5B1F17FB5472D79D47 ] RpcLocator      C:\WINDOWS\system32\locator.exe
10:33:50.0000 0x190c RpcLocator - ok
10:33:50.0016 0x190c [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
10:33:50.0031 0x190c RpcSs - ok
10:33:50.0031 0x190c [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\WINDOWS\system32\DRIVERS\rspndr.sys
10:33:50.0047 0x190c rspndr - ok
10:33:50.0047 0x190c [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
10:33:50.0062 0x190c s3cap - ok
10:33:50.0062 0x190c [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] SamSs           C:\WINDOWS\system32\lsass.exe
10:33:50.0062 0x190c SamSs - ok
10:33:50.0078 0x190c [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
10:33:50.0078 0x190c sbp2port - ok
10:33:50.0094 0x190c [ 47C497FA4DDEA908633CAA60CEBE6805, 4DF5742D4C99D3F7B6A5671AEDB1E5E47D3399D36B28BA19C105FA604D8D5A1C ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
10:33:50.0109 0x190c SCardSvr - ok
10:33:50.0109 0x190c [ E76C4E98302AE39CC6FA5D20FC8B5438, B6B6B59CF427515087689285797F4A5763103440EBE5D87A61FA74F80F895BD0 ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
10:33:50.0125 0x190c ScDeviceEnum - ok
10:33:50.0125 0x190c [ ABD0237B15DBD2B4695F4B7D734A58F7, D6831921F0CD3E03CBF1CA3ED5824EE0C75127842D12D4E897E74EC72B0792EB ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
10:33:50.0141 0x190c scfilter - ok
10:33:50.0156 0x190c [ D3AE5DB16EAF913860EC28654CE00E6B, AD76B6044F7247C6E86F6DCB7CFD6B25BCA2B9F09A97A419F043A999E66726A2 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
10:33:50.0187 0x190c Schedule - ok
10:33:50.0187 0x190c [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
10:33:50.0203 0x190c SCPolicySvc - ok
10:33:50.0219 0x190c [ FDEC5799BA499D18AFA3A540538866E7, 551EE0945FE4EC213FFF623E524500B57531EFEA2D76FA7ED1D2D605E7E2168F ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
10:33:50.0234 0x190c sdbus - ok
10:33:50.0234 0x190c [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
10:33:50.0250 0x190c sdstor - ok
10:33:50.0250 0x190c [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\WINDOWS\system32\drivers\secdrv.sys
10:33:50.0266 0x190c secdrv - ok
10:33:50.0266 0x190c [ C49009F897BA4F2F4F31043663AA1485, 48C8BE1E3A4F150662AD012AF4E0357ABA792AD1147AB90EFF6CB2630E2501B6 ] seclogon        C:\WINDOWS\system32\seclogon.dll
10:33:50.0281 0x190c seclogon - ok
10:33:50.0281 0x190c [ A88882E64BDC1D8E8D6E727B71CCCC53, 12D2235F54D0CEEED8AA268C17CDE44020269F4FEFC70CE957DBBF99AF7F553D ] SENS            C:\WINDOWS\System32\sens.dll
10:33:50.0297 0x190c SENS - ok
10:33:50.0312 0x190c [ E66A7C8CE7ED22DED6DF1CA479FB4790, ADEB076F131E7A8C3AD96022B09BB33EB9AB26C9C831503B8C6960AA763B8975 ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
10:33:50.0328 0x190c SensrSvc - ok
10:33:50.0328 0x190c [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
10:33:50.0328 0x190c SerCx - ok
10:33:50.0344 0x190c [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
10:33:50.0344 0x190c SerCx2 - ok
10:33:50.0359 0x190c [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
10:33:50.0359 0x190c Serenum - ok
10:33:50.0375 0x190c [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial          C:\WINDOWS\System32\drivers\serial.sys
10:33:50.0391 0x190c Serial - ok
10:33:50.0391 0x190c [ 0BD2B65DCE756FDE95A2E5CCCBF7705D, F13FAFEC8FCF3E796196562717C433CE359A74A3E5876AB070647C717AF74028 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
10:33:50.0391 0x190c sermouse - ok
10:33:50.0406 0x190c [ D5C3776CBD8BC307DCCA3FD4CE667A37, 98E4253B770C25914C91A6148E2EA15ED0EF37ADCB042A47252DBA135972BF74 ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
10:33:50.0437 0x190c SessionEnv - ok
10:33:50.0437 0x190c [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
10:33:50.0453 0x190c sfloppy - ok
10:33:50.0469 0x190c [ F4414F57DF2CECB8FC969AA43A6B0D50, AD09A6E1294721507DD6BE82B91F2EEB0FF0151B9BC14A75840CD657DBFDECEC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
10:33:50.0484 0x190c SharedAccess - ok
10:33:50.0500 0x190c [ 0D190D8B4B20446BE6299AC734DFADF1, 6551095971F99820BBFC5FED8FAB9591A3F8ABFA0F027887F3B71B79325FF6D9 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
10:33:50.0531 0x190c ShellHWDetection - ok
10:33:50.0547 0x190c [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
10:33:50.0547 0x190c SiSRaid2 - ok
10:33:50.0562 0x190c [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
10:33:50.0562 0x190c SiSRaid4 - ok
10:33:50.0578 0x190c [ 050A4112B00BCA2E13314CDE48C1DEEE, 86C679CD494DEEB984372BF954EFBB8982AC7995FBF89FCF83BC228991D1B825 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
10:33:50.0594 0x190c SkypeUpdate - ok
10:33:50.0594 0x190c [ 587ACA15210D1B01FBF272E07A08F91A, 1F3C13C218C5EA329C6E33E4AE7CFE88DAD59DA40F59FDE09D733AFD2E489000 ] smphost         C:\WINDOWS\System32\smphost.dll
10:33:50.0609 0x190c smphost - ok
10:33:50.0609 0x190c [ 49EEB92DE930B8566EF615D600781DB4, 0B7C929D24FAFC34F95BB4AA77DCBA29DDD8F1977EB42713B64228677D1FBFD3 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
10:33:50.0625 0x190c SNMPTRAP - ok
10:33:50.0641 0x190c [ 240C5C3793206725AA05665851E8C214, 96ADFB85EB1623EB00C251C1C6A1F441A1795F0EBFD10B17DD1CA58E3AE8A90D ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
10:33:50.0656 0x190c spaceport - ok
10:33:50.0656 0x190c [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
10:33:50.0672 0x190c SpbCx - ok
10:33:50.0672 0x190c [ 42FEA9E0BA9761D9E65A4F167D91515B, 9A34CE83F3ACD50608671BDABE5E475F8E0C8335D3B8B7B3D7E84B2A319FA29F ] Spooler         C:\WINDOWS\System32\spoolsv.exe
10:33:50.0703 0x190c Spooler - ok
10:33:50.0797 0x190c [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
10:33:50.0922 0x190c sppsvc - ok
10:33:50.0937 0x190c [ 6416E79A58A8FCC33A447A4DDDD3BF04, 839E3107ACCD520C309BD6C8324DF7A8EB724EAD442AB1F1CACB0D83F84BE488 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
10:33:50.0953 0x190c srv - ok
10:33:50.0969 0x190c [ 5BED3AB69797C8786EF70AEA8C33748B, 0474EE6C43D437CBA9848BCF25D1341B122D7E9F371A0FF3C62C83D14B2CB095 ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
10:33:51.0000 0x190c srv2 - ok
10:33:51.0000 0x190c [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
10:33:51.0031 0x190c srvnet - ok
10:33:51.0031 0x190c [ BB9ED3EDD8E85008215A7250D325A72E, D3404E31B7706B25CDEA7CB4260C343B5F090E8CCB9A5FA203B0F94A9112F1B3 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
10:33:51.0047 0x190c SSDPSRV - ok
10:33:51.0047 0x190c [ 3911418AFDE10EA6823B7799E4815524, A73517C4C1271E666B2B3A747756070098E923742B41572AA16573170440AA07 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
10:33:51.0062 0x190c SstpSvc - ok
10:33:51.0078 0x190c [ 29193D5E1A4BFADDBE2A0AB1E20C9166, 7E667B6F44F3B2B83BB8280729BBAE70E9E26F20AC150717544B12D03DB335A5 ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe
10:33:51.0109 0x190c STacSV - detected UnsignedFile.Multi.Generic ( 1 )
10:33:51.0406 0x190c Detect skipped due to KSN trusted
10:33:51.0406 0x190c STacSV - ok
10:33:51.0422 0x190c [ AFE32AFD30464FC59CB8E88DC72F66FA, 24644F8AA47E61B98EF867BE18A9BE383822D64F3AADF2ED35E42FBFBA7B340F ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
10:33:51.0656 0x190c Steam Client Service - ok
10:33:51.0672 0x190c [ AD5CE4DBBBAFB82B728BA0548876C5B6, 09022AE357FFBD9F3DF7807BF57704AA8E71767E043E92DA06DB5FE828B3F26F ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
10:33:52.0297 0x190c Stereo Service - ok
10:33:52.0313 0x190c [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
10:33:52.0313 0x190c stexstor - ok
10:33:52.0328 0x190c [ 730A8469CD476ACBDC450293B4C02298, 8893C938BF1718A323A8E1EAEB1D854BF221D8D32D279493B706E39E10D76D79 ] STHDA           C:\WINDOWS\system32\DRIVERS\stwrt64.sys
10:33:52.0344 0x190c STHDA - ok
10:33:52.0359 0x190c [ D638904FE86A5FE542A1BA13A9D68E5C, 89A956F932316BC50DD99B54BAF4E2809DCAA084DBB04CB84D11E5470BEAF251 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
10:33:52.0391 0x190c stisvc - ok
10:33:52.0391 0x190c [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
10:33:52.0391 0x190c storahci - ok
10:33:52.0406 0x190c [ 7A08CEE1535F5A448215634C5EA74E50, 41529CDC08A3956F8FE9D5759B147E2E56E3305149EA415EB200249F7CD32094 ] storflt         C:\WINDOWS\system32\DRIVERS\vmstorfl.sys
10:33:52.0406 0x190c storflt - ok
10:33:52.0406 0x190c [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
10:33:52.0422 0x190c stornvme - ok
10:33:52.0422 0x190c [ 3118058E3D07021A55324A943C6D722B, 0B255DF1977DADD2B9766EEEA814B464F0ABFA34D6439F3C453083850C121F16 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
10:33:52.0438 0x190c StorSvc - ok
10:33:52.0438 0x190c [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
10:33:52.0453 0x190c storvsc - ok
10:33:52.0453 0x190c [ D8E1AE075AB3E8AD56F69C44AA978596, CAFF5116DE7F0EEFFEBE38724BCEE7D11B44153AD35EE43E314C56D5E210758A ] svsvc           C:\WINDOWS\system32\svsvc.dll
10:33:52.0469 0x190c svsvc - ok
10:33:52.0469 0x190c [ 84E0F5D41C138C5CC975137A2A98F6D3, 1E36CED05E4F4365C2AB020CAF920E3959995D7F89F3FABD7B2FB05985F85F38 ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
10:33:52.0469 0x190c swenum - ok
10:33:52.0484 0x190c [ 850EBB87584484DC16F917E7B6F4A304, C253D1DFFCDFB018432063602FB01DBCBDDD6E03458E5C366AABD4670F114B0C ] swprv           C:\WINDOWS\System32\swprv.dll
10:33:52.0516 0x190c swprv - ok
10:33:52.0531 0x190c [ 3DA26652B12E9AB43FD04976AC6DFD33, DEFE220D86197949E97342FE3487CD6A07DD2FFAF6D17A7C65419C2C1B9D1AB5 ] SysMain         C:\WINDOWS\system32\sysmain.dll
10:33:52.0563 0x190c SysMain - ok
10:33:52.0563 0x190c [ FD4EA8E9232ADD51DC31C295DDEF2768, 3EA40D7376AB5AA5DA2BCF4745C79F7BF819363466967ECC3CD15ADECBFD7244 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
10:33:52.0594 0x190c SystemEventsBroker - ok
10:33:52.0594 0x190c [ BA6DD39266A5E15515C8C14DA2DA3E5C, 5BC917BA4E7281A67CC6CEF2F4D1972DF04DECBEFB6DED0B08FFBD06E15D4B4F ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
10:33:52.0609 0x190c TabletInputService - ok
10:33:52.0609 0x190c [ B517410F157693043DACA21B19B258A6, 2224EECEB575CEA811036C43BB5B0A408DE5F59BC97235AB948968E4C3E438F2 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
10:33:52.0625 0x190c TapiSrv - ok
10:33:52.0672 0x190c [ 87F3713E620F62D243A82B3CB66CBDDE, 5C14F43BC5114DB664490DEE5024555149766C2F2430A910AA9DA2210D968063 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
10:33:52.0719 0x190c Tcpip - ok
10:33:52.0766 0x190c [ 87F3713E620F62D243A82B3CB66CBDDE, 5C14F43BC5114DB664490DEE5024555149766C2F2430A910AA9DA2210D968063 ] TCPIP6          C:\WINDOWS\system32\DRIVERS\tcpip.sys
10:33:52.0813 0x190c TCPIP6 - ok
10:33:52.0813 0x190c [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
10:33:52.0828 0x190c tcpipreg - ok
10:33:52.0828 0x190c [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
10:33:52.0844 0x190c tdx - ok
10:33:52.0922 0x190c [ 4ACFC5853A3F0C6C2F54E537C23EE90F, 47D81F471A250696A1A0D19294FC553EB88D813612A8351C89F65D7BF99C8532 ] TeamViewer9     C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
10:33:53.0125 0x190c TeamViewer9 - ok
10:33:53.0125 0x190c [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
10:33:53.0141 0x190c terminpt - ok
10:33:53.0156 0x190c [ 3D748E5558FD9A9F03182CB2330698DC, 70B2069AB7912EB49AB3ABD18D4B42CB94AC99CA6DE3F63F4888B8EAAC78AAA2 ] TermService     C:\WINDOWS\System32\termsrv.dll
10:33:53.0188 0x190c TermService - ok
10:33:53.0188 0x190c [ 05FBE1F7C13E87AF7A414CDF288B1F62, 24079E1A6B2E33A1A8E76A77F73473B93DD6B379E44C982CE50D6CEED9747838 ] Themes          C:\WINDOWS\system32\themeservice.dll
10:33:53.0203 0x190c Themes - ok
10:33:53.0203 0x190c [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] THREADORDER     C:\WINDOWS\system32\mmcss.dll
10:33:53.0219 0x190c THREADORDER - ok
10:33:53.0219 0x190c [ 347A3E49CE18402305B8119A6EC7CFEB, 6768B20EE577880B0353FE84B980D4A18D323929A63FAE41F7A55123BBFC8DBA ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
10:33:53.0234 0x190c TimeBroker - ok
10:33:53.0234 0x190c [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
10:33:53.0250 0x190c TPM - ok
10:33:53.0250 0x190c [ C97E14BB6A196B0554D6EB67D8818175, C00588C94988F10507F84584DFA4C0A43B8648AD1AD35E9BAE14CDD21FCF7B90 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
10:33:53.0266 0x190c TrkWks - ok
10:33:53.0266 0x190c [ 887CC44830D3F367CAD17A0CA7CCA5C8, D4022A76433A11FD66D0F41A1EB4D6893BC5B22317E7E9E021739109EB493B44 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
10:33:53.0281 0x190c TrustedInstaller - ok
10:33:53.0281 0x190c [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
10:33:53.0297 0x190c TsUsbFlt - ok
10:33:53.0297 0x190c [ E0088068DCE2EE82897027DDB8E05254, FA9C201D3C885DAD2ABE6A23343EDCC83CFB342EFF9E3005FA50B1D88B21D203 ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
10:33:53.0313 0x190c TsUsbGD - ok
10:33:53.0313 0x190c [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel          C:\WINDOWS\system32\DRIVERS\tunnel.sys
10:33:53.0328 0x190c tunnel - ok
10:33:53.0328 0x190c [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
10:33:53.0344 0x190c uagp35 - ok
10:33:53.0344 0x190c [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
10:33:53.0344 0x190c UASPStor - ok
10:33:53.0359 0x190c [ B034A41891A36457B994307DFA772293, CA5E6500764A9777AE0E15B2AFB6F05982C90F01374E3F6DDC6DF3852282C66B ] UCX01000        C:\WINDOWS\System32\drivers\ucx01000.sys
10:33:53.0375 0x190c UCX01000 - ok
10:33:53.0375 0x190c [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
10:33:53.0391 0x190c udfs - ok
10:33:53.0391 0x190c [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
10:33:53.0406 0x190c UEFI - ok
10:33:53.0406 0x190c [ 320878AFECDBBD61BBE98624A6CAAC08, 15C090EA32A24D976B5FCB1373B1281DCC2295C075299C814345D694AEB47CB9 ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
10:33:53.0422 0x190c UI0Detect - ok
10:33:53.0422 0x190c [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
10:33:53.0438 0x190c uliagpkx - ok
10:33:53.0438 0x190c [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
10:33:53.0438 0x190c umbus - ok
10:33:53.0453 0x190c [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
10:33:53.0453 0x190c UmPass - ok
10:33:53.0469 0x190c [ E3DDF7D43E05784FAA5E042605EEE528, 8E20E880FAB09AF4FF5C438BF9EAE9970D46C05167870110869B744E498FD761 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
10:33:53.0469 0x190c UmRdpService - ok
10:33:53.0484 0x190c [ 4A2FFDAC45F317E17DF642C7160EB633, F1AB762912FAA5F469F322407DA37C91556086C42D1643AD27516C12A84F74D0 ] upnphost        C:\WINDOWS\System32\upnphost.dll
10:33:53.0500 0x190c upnphost - ok
10:33:53.0516 0x190c [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
10:33:53.0516 0x190c usbccgp - ok
10:33:53.0516 0x190c [ B3D6457D841A0CAEF4C52D88621715F2, CBDD76A8A28379B107B1FB530757B477B8AB74CD01F9F3CEDC7B1BA0C6E5A990 ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
10:33:53.0531 0x190c usbcir - ok
10:33:53.0531 0x190c [ 48BA326A3DBA5B5BEB5F2777F4618696, B9EC8155F11A3A7644BD9DC8910681B46AE44AE3BF53F052DF50E9C5555E3229 ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
10:33:53.0547 0x190c usbehci - ok
10:33:53.0563 0x190c [ FEF0BC107812B36849741C3211BA6B60, B3EF738BE1E6B6027F29C9713CD3F367EA067D2BE46580AFBC0FB58046EF6BBD ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
10:33:53.0578 0x190c usbhub - ok
10:33:53.0578 0x190c [ 65392F3F3F65E4C6CC82A0F4F8A0B051, C11B662A28D95820717DFFC6B76DBB755E4876009A2342E5E3992DE32D6BFF61 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
10:33:53.0609 0x190c USBHUB3 - ok
10:33:53.0609 0x190c [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
10:33:53.0625 0x190c usbohci - ok
10:33:53.0625 0x190c [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
10:33:53.0641 0x190c usbprint - ok
10:33:53.0641 0x190c [ EA23453240137F6773174E0D93F61A69, 579AD09FB428C2BB8B4055128620A7AADD1B606C1EA44B87A01D69A84232A5D9 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
10:33:53.0656 0x190c USBSTOR - ok
10:33:53.0656 0x190c [ 064260B3A5868AC894A4943543BC7AB7, D3534E98B34C4AC9A430D7E0AB301A0E5E1511E3117C2FEA392636B0DE2C38E2 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
10:33:53.0672 0x190c usbuhci - ok
10:33:53.0672 0x190c [ 48430B0313FC1CFE3D2400553F1A93CD, 92994DE6B131E904AFF2C9C4FBB4E6B0D58525A1539763327373DA18C9F08193 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
10:33:53.0688 0x190c USBXHCI - ok
10:33:53.0688 0x190c [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
10:33:53.0703 0x190c VaultSvc - ok
10:33:53.0703 0x190c [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
10:33:53.0719 0x190c vdrvroot - ok
10:33:53.0734 0x190c [ E3EF58D4123B5AA29C8E19825AF84A5E, FB1046722BC643E955DBC3B1459DBF2A6D575EBA2BCF7B20A0FA51E3993835E2 ] vds             C:\WINDOWS\System32\vds.exe
10:33:53.0766 0x190c vds - ok
10:33:53.0766 0x190c [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
10:33:53.0781 0x190c VerifierExt - ok
10:33:53.0797 0x190c [ 52E483A3701A5A61A75A06993720347D, 689E812755E485DF6960D1E049740FBAFB812467D23B673DCAA40C03FEBB544F ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
10:33:53.0813 0x190c vhdmp - ok
10:33:53.0813 0x190c [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\WINDOWS\system32\drivers\viaide.sys
10:33:53.0813 0x190c viaide - ok
10:33:53.0828 0x190c [ C6305BDFC4F7CE51F72BB072C03D4ACE, 73E62869CA3104F48CC3B0C45E69CE9BF4F8D7D06E29C2F049B9347ABB50554D ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
10:33:53.0828 0x190c vmbus - ok
10:33:53.0828 0x190c [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
10:33:53.0844 0x190c VMBusHID - ok
10:33:53.0859 0x190c [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
10:33:53.0875 0x190c vmicguestinterface - ok
10:33:53.0875 0x190c [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
10:33:53.0891 0x190c vmicheartbeat - ok
10:33:53.0906 0x190c [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
10:33:53.0922 0x190c vmickvpexchange - ok
10:33:53.0938 0x190c [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
10:33:53.0953 0x190c vmicrdv - ok
10:33:53.0953 0x190c [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
10:33:53.0969 0x190c vmicshutdown - ok
10:33:53.0984 0x190c [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
10:33:54.0000 0x190c vmictimesync - ok
10:33:54.0000 0x190c [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
10:33:54.0016 0x190c vmicvss - ok
10:33:54.0031 0x190c [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
10:33:54.0031 0x190c volmgr - ok
10:33:54.0047 0x190c [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
10:33:54.0047 0x190c volmgrx - ok
10:33:54.0063 0x190c [ 64CA2B4A49A8EAF495E435623ECCE7DB, 81151F295A54DE2B8B88C7F48C86BF58CDFF96F98493509C06D6F41484594386 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
10:33:54.0078 0x190c volsnap - ok
10:33:54.0078 0x190c [ 01355C98B5C3ED1EC446743CDA848FCE, B9FCF558C20E05DD0F53FFB70BBEF873EA57801E13A16701E636128D625C4B67 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
10:33:54.0094 0x190c vpci - ok
10:33:54.0094 0x190c [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
10:33:54.0109 0x190c vsmraid - ok
10:33:54.0125 0x190c [ E369C59F2C0852DDD090C07E0DDE0051, 4FAC94458EAAEED4F84A86FBAB8FBB332D0AF85BD528E63C0C058A2DA8E3011D ] VSS             C:\WINDOWS\system32\vssvc.exe
10:33:54.0156 0x190c VSS - ok
10:33:54.0172 0x190c [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
10:33:54.0172 0x190c VSTXRAID - ok
10:33:54.0188 0x190c [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
10:33:54.0188 0x190c vwifibus - ok
10:33:54.0203 0x190c [ 35BF5C5F5E3C9902C98978C7640574DA, C61E50B04000DCEC72365723F0C0725C2E005529DAF2777A59E624C14DA29E55 ] vwififlt        C:\WINDOWS\system32\DRIVERS\vwififlt.sys
10:33:54.0219 0x190c vwififlt - ok
10:33:54.0219 0x190c [ 65ED7B9CFEA893DF7748D5FF692690DE, 73AB9D8BB928B3247BDFC7BB47AD7FCA763B375DC250C251DB4E0573531040E8 ] vwifimp         C:\WINDOWS\system32\DRIVERS\vwifimp.sys
10:33:54.0235 0x190c vwifimp - ok
10:33:54.0266 0x190c [ 7599E582CA3A6AAA95A18FFE1172D339, A0410778FBBC4302EA91CF24B944427410B4706535F1192504D4F34C3ED4503E ] W32Time         C:\WINDOWS\system32\w32time.dll
10:33:54.0281 0x190c W32Time - ok
10:33:54.0297 0x190c [ 8E553C859C83784DEC08B10AFC3EAC92, 41D8DBA1500DBD3AC9783169ACF545805EF05069F12866238992A30794369254 ] w3logsvc        C:\WINDOWS\system32\inetsrv\w3logsvc.dll
10:33:54.0313 0x190c w3logsvc - ok
10:33:54.0328 0x190c [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
10:33:54.0328 0x190c WacomPen - ok
10:33:54.0344 0x190c [ AFCD4054D61BD708B82991348ED1C763, EBDAC0E218F1DFC405DB3C8A2F014D20A17B0690EA381C750BED5C2AFCDFEBE3 ] WANARP          C:\WINDOWS\system32\DRIVERS\wanarp.sys
10:33:54.0360 0x190c WANARP - ok
10:33:54.0360 0x190c [ AFCD4054D61BD708B82991348ED1C763, EBDAC0E218F1DFC405DB3C8A2F014D20A17B0690EA381C750BED5C2AFCDFEBE3 ] Wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
10:33:54.0360 0x190c Wanarpv6 - ok
10:33:54.0391 0x190c [ 9BAE40BD31E3EE0B0C70BEF167E0A2BC, 2419AC815C95F2629E1832973501983D06F788728755605D42D6C8565C3CBBF1 ] WAS             C:\WINDOWS\system32\inetsrv\iisw3adm.dll
10:33:54.0578 0x190c WAS - ok
10:33:54.0656 0x190c [ 61692DB39AD3DF2F29392D68EAA7BB93, 854D4B9C7DD1676968598ED973500650ECEC02C420E44C0B3957C24F073AA5FB ] wbengine        C:\WINDOWS\system32\wbengine.exe
10:33:54.0688 0x190c wbengine - ok
10:33:54.0703 0x190c [ 3BC1D1D56637A32CD91C8AE08E2484AA, 9EE1BD3FB0D289E25F3DDD0D8F67DC1C701A6B1D5418FADF348D0E642B1DEBEB ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
10:33:54.0719 0x190c WbioSrvc - ok
10:33:54.0719 0x190c [ A07CFC4B593D15B6BF06813C3B5B33BF, B57BD918E2AFF9943B51A24B95E0C4D3482B4DF73C0E2421E8CC67C2BC7A4C70 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
10:33:54.0735 0x190c Wcmsvc - ok
10:33:54.0750 0x190c [ D2726823DF7E19F213F4805A9D6D145F, A7F582C99918D204264D3B374F70D75984BDA5805203041E3DECB8153D16E102 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
10:33:54.0766 0x190c wcncsvc - ok

#9
HelpNeeded911

Posted 13 October 2014 - 08:49 AM

Member

Topic Starter
Member
80 posts

10:33:54.0766 0x190c [ 846C02A8B48CBD921A3D6AB521AA0DC4, B07573A774A6C65D24E5718DC25DF378270EB5B40221CA5A53B21D47838381D3 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
10:33:54.0781 0x190c WcsPlugInService - ok
10:33:54.0781 0x190c [ F5D4FA3E1F4879C361FFF3855259D2C2, 48C60FE4AAB011E2250157506FF0624031BFA346F8F2F8C6DFDF6F3CAA4F3F42 ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
10:33:54.0797 0x190c WdBoot - ok
10:33:54.0813 0x190c [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
10:33:54.0828 0x190c Wdf01000 - ok
10:33:54.0828 0x190c [ 019CC610AD95FF47EAD7C08B7A683B96, BB9D42F8ED90ECA2E7B8C906E06A1EA859FAD9BD1B3492BB1E28C0D00004812A ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
10:33:54.0844 0x190c WdFilter - ok
10:33:54.0844 0x190c [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
10:33:54.0860 0x190c WdiServiceHost - ok
10:33:54.0860 0x190c [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
10:33:54.0875 0x190c WdiSystemHost - ok
10:33:54.0891 0x190c [ 6CC1BB8F6851A262E2E824F0E92D5EEF, 45A88A984179BBA38C1F4434C4D6C2823C1FE6AFBE8CB0F656DAE0092D1D5611 ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
10:33:54.0891 0x190c WdNisDrv - ok
10:33:54.0891 0x190c WdNisSvc - ok
10:33:54.0906 0x190c [ 91B18D7A1702ED589E67C6C81052B955, 5D1DA8B86106A28E50BBCCB36527CC130D41201F5BE1D3DC5F1D6F7ECCF807BA ] WebClient       C:\WINDOWS\System32\webclnt.dll
10:33:54.0922 0x190c WebClient - ok
10:33:54.0922 0x190c [ 3274312F263882B51B964329FAF49734, 99A020377ACF0762BE5ECD2D68EB5E1497B9D59963247E725F7F96FB5DF41FAD ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
10:33:54.0938 0x190c Wecsvc - ok
10:33:54.0938 0x190c [ 7CDD84E0023A0C5C230B06A7965EC65E, 6EC7DC18C76D66CF9A893C3DD20F9BE3ADD76546F9A9BA42CE4F24854709F9D9 ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
10:33:54.0953 0x190c WEPHOSTSVC - ok
10:33:54.0953 0x190c [ 959534ACF085C137D2D094384EF89C45, D029F440789FE170A1C46217C6DE6D78DC0188A5CF33FCCC17FA65D3BC80C2B7 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
10:33:54.0969 0x190c wercplsupport - ok
10:33:54.0969 0x190c [ 82BCCF5FBE47AC9E8CBA2020994DFB3F, EA96C6BD98A701B465D0780EC10BDA92E45FE636D60C1385813AA3B456D8B931 ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
10:33:54.0985 0x190c WerSvc - ok
10:33:54.0985 0x190c [ BFBE1C5F57FE7A885673A1962D5532B7, F0BD05B257108699FE6AB32EF11F927C31932F27062A705B3FEFA4F5B4C0D8C3 ] WFPLWFS         C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
10:33:55.0000 0x190c WFPLWFS - ok
10:33:55.0000 0x190c [ E06AFE2F94BA7CFA2FE4FD2A449E60E2, 99A81E16366E9E77905D873B0246E4C11B383FE1E99E0E1D9A07FAD4E52EA9E4 ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
10:33:55.0016 0x190c WiaRpc - ok
10:33:55.0016 0x190c [ 867BCC69ED9C31C501465EB0E8BA9DFA, 678B7FF4D4E8624514301956CDA7FB451159BBFC83FF2E4E5E7DADAE3C7AB2EC ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
10:33:55.0016 0x190c WIMMount - ok
10:33:55.0016 0x190c WinDefend - ok
10:33:55.0047 0x190c [ DD079EC8F44DCA3A176B345C6ADEFB66, 6CD9371B83EA23D2181891FAE1DB285BC111A78C35F374E57666ED09860C91A9 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
10:33:55.0063 0x190c WinHttpAutoProxySvc - ok
10:33:55.0063 0x190c [ 9DB490F3E823C5C3C070644B96CB9D59, 81937D0B331E43C7C61514E60B3AD51370C5201F7B4D12F8534840D91EDC32DD ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
10:33:55.0078 0x190c Winmgmt - ok
10:33:55.0110 0x190c [ C8D6344BDE2691A196E61C0D3372EAB7, FF8EB79D8A7E298343C22B83276FF68293D08A9DA438BB22600BEFC4CA93A91D ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
10:33:55.0172 0x190c WinRM - ok
10:33:55.0172 0x190c [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUsb          C:\WINDOWS\system32\DRIVERS\WinUsb.sys
10:33:55.0188 0x190c WinUsb - ok
10:33:55.0203 0x190c [ 3F5EF31C6AA204B099EE76497DF80A26, CBE648A4E7E1D98A3D8C72582C1CB3C2FD2329EAA24EE4DCAD271AAA6F4D82CE ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
10:33:55.0235 0x190c WlanSvc - ok
10:33:55.0266 0x190c [ 5F56C0DE776C7AE43AF749845BFAA1EF, 837993C5853B7E682C7FB8401B7F5D951FFD15E5659EBB1B01DC3F5719ACEE19 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
10:33:55.0297 0x190c wlidsvc - ok
10:33:55.0297 0x190c [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
10:33:55.0313 0x190c WmiAcpi - ok
10:33:55.0313 0x190c [ 7AFAC828F52D62F304A911EC32F42EEE, 4EDCF4149069413A166169F2E23F7505F47B39B7EC319E1EF6D2C46CD140AA24 ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
10:33:55.0328 0x190c wmiApSrv - ok
10:33:55.0328 0x190c WMPNetworkSvc - ok
10:33:55.0328 0x190c [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
10:33:55.0344 0x190c Wof - ok
10:33:55.0375 0x190c [ 61BF52E9FFAB27A0B6D621BE26088373, 81291D52C381360E69D51E7DEB05CFAC651A7E9EF781CA23062C0583D0C94708 ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
10:33:55.0406 0x190c workfolderssvc - ok
10:33:55.0406 0x190c [ 182561A14F2E93E81E66FE3700D17A5A, FB9A06058A8BCCEDCDC5BF8899D9B2FBA5752C262C5FC6D2B8338884F3303D12 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
10:33:55.0422 0x190c wpcfltr - ok
10:33:55.0422 0x190c [ 4E6A0F60DA7EF050D3D26417CD4D24E9, E6B3BFB007B641D41F8532ED086F92CB3D86E210023DBFAA9AD8152A9FD33CCA ] WPCSvc          C:\WINDOWS\System32\wpcsvc.dll
10:33:55.0438 0x190c WPCSvc - ok
10:33:55.0438 0x190c [ 618A19EB31ECA7B7F2AA0207BAF598A5, CB18CF9B781EAB3D775F8201F294A7135E058D6C963D2CC759DCA14D95EED538 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
10:33:55.0453 0x190c WPDBusEnum - ok
10:33:55.0453 0x190c [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
10:33:55.0453 0x190c WpdUpFltr - ok
10:33:55.0469 0x190c [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
10:33:55.0469 0x190c ws2ifsl - ok
10:33:55.0469 0x190c [ 9654DE19551093CD73874281E1573C94, 5E3513EC0CB180D90904BE8970AB64A4434279E8C467AE2CF693254E47B1D11E ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
10:33:55.0485 0x190c wscsvc - ok
10:33:55.0485 0x190c [ F586F3F1BF962FE9AE4316E0D896B22F, 8D0AD48D79294567123D943D0F5B6D5A32D7A82B129A24DC821D3095AFAA100B ] WSDPrintDevice C:\WINDOWS\System32\drivers\WSDPrint.sys
10:33:55.0500 0x190c WSDPrintDevice - ok
10:33:55.0500 0x190c [ D38297814FB6E33655342D869996E617, 3701892EEF87D1BF0E73322B90678802B6EA4AFA9CBF6111F39611C79DBA96C7 ] WSDScan         C:\WINDOWS\system32\DRIVERS\WSDScan.sys
10:33:55.0516 0x190c WSDScan - ok
10:33:55.0516 0x190c WSearch - ok
10:33:55.0563 0x190c [ 95B6670E6933E1DEE19686C55BE709A0, 4B9EB8F1712B7959A71F6DA445D29BD09B25EEFC6B30D736EFE30163D79B233E ] WSService       C:\WINDOWS\System32\WSService.dll
10:33:55.0625 0x190c WSService - ok
10:33:55.0688 0x190c [ D24002EB2F4A8A04897703067E81CC5D, 03806198D26DD7BA3E27EFE0911B49E5B48CAD8A05EC4F56AF45CF1E3FAD6916 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
10:33:55.0735 0x190c wuauserv - ok
10:33:55.0750 0x190c [ D537815E450A149752C15868392AD1F3, 8788CE493349299DB36E409C8CC3C6EA08301FA492C95D9D556E00BC13A05F13 ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
10:33:55.0766 0x190c WudfPf - ok
10:33:55.0766 0x190c [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
10:33:55.0781 0x190c WUDFRd - ok
10:33:55.0781 0x190c [ 9CDC2059A23E3C9B57696178508777E7, B680A2E2EDA5C8C6A547E7D9B2F2F8E6407C3EA0A01B82A4B88D48A27913A597 ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
10:33:55.0797 0x190c wudfsvc - ok
10:33:55.0797 0x190c [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
10:33:55.0813 0x190c WUDFWpdFs - ok
10:33:55.0813 0x190c [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFWpdMtp      C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
10:33:55.0828 0x190c WUDFWpdMtp - ok
10:33:55.0844 0x190c [ 2FA9794CA36147756F3FDFD6CA29B46F, 4B86DC38C2411C281686E9A4E64DA6FB2992E39391371F78E012D6D8BB85123F ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
10:33:55.0860 0x190c WwanSvc - ok
10:33:55.0860 0x190c ================ Scan global ===============================
10:33:55.0860 0x190c [ C89780A6F58D113C28A96D85D1261DC5, 185114F33A60916C7904E4A0F278CA43258454343E614F01F0DAFA98BAC981B1 ] C:\WINDOWS\system32\basesrv.dll
10:33:55.0875 0x190c [ 00DD4D2ACC2E72155A8AAA82018BEC0D, 9D7CA68B4A81240477FCC85A3CC11EF986093F9D6228A6C5AC608EDAD664068C ] C:\WINDOWS\system32\winsrv.dll
10:33:55.0875 0x190c [ 9C1833ABD62876856836C5AE55C7CE86, 0A21E2C8B2FF3B0438C86DA7151A548F9C6F5C62CD402CBBEDB435994C8508F1 ] C:\WINDOWS\system32\sxssrv.dll
10:33:55.0891 0x190c [ 067CB90C277DB4A737D5DEABA3055972, C681BF013170F2D92A3FC4D783FC3F200CDC0C8173373B7ECC27FCF32A03CCBD ] C:\WINDOWS\system32\services.exe
10:33:55.0891 0x190c [ Global ] - ok
10:33:55.0891 0x190c ================ Scan MBR ==================================
10:33:55.0891 0x190c [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
10:33:55.0922 0x190c \Device\Harddisk0\DR0 - ok
10:33:55.0938 0x190c [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
10:33:55.0985 0x190c \Device\Harddisk1\DR1 - ok
10:33:56.0000 0x190c ================ Scan VBR ==================================
10:33:56.0000 0x190c [ C8F9145A6C2C194415DD73D6110E7C57 ] \Device\Harddisk0\DR0\Partition1
10:33:56.0000 0x190c \Device\Harddisk0\DR0\Partition1 - ok
10:33:56.0000 0x190c [ E55463AAE3A4B926F71CBD83C38BADAA ] \Device\Harddisk0\DR0\Partition2
10:33:56.0000 0x190c \Device\Harddisk0\DR0\Partition2 - ok
10:33:56.0000 0x190c [ B1CF74EEE1A040A344B338E8ED64BC08 ] \Device\Harddisk0\DR0\Partition3
10:33:56.0000 0x190c \Device\Harddisk0\DR0\Partition3 - ok
10:33:56.0000 0x190c [ 12CA977A5298B3C24D52736B3AEF5CE1 ] \Device\Harddisk0\DR0\Partition4
10:33:56.0000 0x190c \Device\Harddisk0\DR0\Partition4 - ok
10:33:56.0000 0x190c [ BDD7933D0CFB302B9C832F84E47C6727 ] \Device\Harddisk0\DR0\Partition5
10:33:56.0000 0x190c \Device\Harddisk0\DR0\Partition5 - ok
10:33:56.0000 0x190c [ 66E701DA921051B7BF68BDDF5E482C98 ] \Device\Harddisk0\DR0\Partition6
10:33:56.0000 0x190c \Device\Harddisk0\DR0\Partition6 - ok
10:33:56.0016 0x190c [ 3072F54D99C17FCEDB7654E76E06A47D ] \Device\Harddisk0\DR0\Partition7
10:33:56.0016 0x190c \Device\Harddisk0\DR0\Partition7 - ok
10:33:56.0016 0x190c [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk1\DR1\Partition1
10:33:56.0016 0x190c \Device\Harddisk1\DR1\Partition1 - ok
10:33:56.0016 0x190c [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk1\DR1\Partition2
10:33:56.0016 0x190c \Device\Harddisk1\DR1\Partition2 - ok
10:33:56.0016 0x190c [ 9AB3A575E091800816FFEF8282B5928F ] \Device\Harddisk1\DR1\Partition3
10:33:56.0063 0x190c \Device\Harddisk1\DR1\Partition3 - ok
10:33:56.0063 0x190c ================ Scan active images ========================
10:33:56.0063 0x190c [ FA47B0AA255B7CF4519E995C6404AE22, F7B315B96E27D1CA00FDB181646B4DF10A0B5AAA7D407AAECAABD7C2348D339F ] C:\Windows\System32\drivers\crashdmp.sys
10:33:56.0063 0x190c C:\Windows\System32\drivers\crashdmp.sys - ok
10:33:56.0063 0x190c [ 224C2CB37497472C345CB2A02DF11363, 73FE60B2D1D7395E1B97B673CC296A5FE36BA4F4AD9EAD13F3F545134DAC7B70 ] C:\Windows\System32\drivers\Diskdump.sys
10:33:56.0063 0x190c C:\Windows\System32\drivers\Diskdump.sys - ok
10:33:56.0063 0x190c [ 61A1C2641321A6B89A2B41C5D481EF48, A88596BD3095AB603151BE1C9FB2299039C4A049F940A300FBBBD69EC9D30914 ] C:\Windows\System32\drivers\dumpfve.sys
10:33:56.0063 0x190c C:\Windows\System32\drivers\dumpfve.sys - ok
10:33:56.0063 0x190c [ 350EDDB367832C2AC96A8CE21821269D, 55453AF933E59C4748302FB8E516C891BFF7D131E810F0E27DF29DE11A8C8A64 ] C:\Windows\System32\drivers\iaStorA.sys
10:33:56.0063 0x190c C:\Windows\System32\drivers\iaStorA.sys - ok
10:33:56.0078 0x190c [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] C:\Windows\System32\drivers\cdrom.sys
10:33:56.0078 0x190c C:\Windows\System32\drivers\cdrom.sys - ok
10:33:56.0078 0x190c [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] C:\Windows\System32\drivers\BasicRender.sys
10:33:56.0078 0x190c C:\Windows\System32\drivers\BasicRender.sys - ok
10:33:56.0078 0x190c [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] C:\Windows\System32\drivers\beep.sys
10:33:56.0078 0x190c C:\Windows\System32\drivers\beep.sys - ok
10:33:56.0078 0x190c [ 9D9ED48F841EA37AA5310D54B9E5D3C7, 147DBEBE08A49486F91B30DE3606AC3B7D765DA751DF6880FA5A2D8FBAA2E2A2 ] C:\Windows\System32\drivers\mbamchameleon.sys
10:33:56.0078 0x190c C:\Windows\System32\drivers\mbamchameleon.sys - ok
10:33:56.0078 0x190c [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] C:\Windows\System32\drivers\null.sys
10:33:56.0078 0x190c C:\Windows\System32\drivers\null.sys - ok
10:33:56.0078 0x190c [ 313DCE665B57000B18CB26C6B6A10DFE, 6C332D4AD13A316C192321AB7E7597E66AF8E1688101FFD851E06C52128DBA52 ] C:\Windows\System32\drivers\dxgkrnl.sys
10:33:56.0078 0x190c C:\Windows\System32\drivers\dxgkrnl.sys - ok
10:33:56.0078 0x190c [ 9CC0003FB8ED3763B977B43F1012FF63, 6FDB6FFE1D77F9BA0ABDCA387BFD9AE2C547DB8D89C20BB8D5C31798E569BFB7 ] C:\Windows\System32\drivers\watchdog.sys
10:33:56.0078 0x190c C:\Windows\System32\drivers\watchdog.sys - ok
10:33:56.0078 0x190c [ 4030CB06B8D963A45CED9E60C9F2A11E, 886EF96B7A8E8C503CBDFC64BBC8B01AB52978DDC9A5AC3A847CA25627E8ADD0 ] C:\Windows\System32\drivers\dxgmms1.sys
10:33:56.0078 0x190c C:\Windows\System32\drivers\dxgmms1.sys - ok
10:33:56.0078 0x190c [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] C:\Windows\System32\drivers\BasicDisplay.sys
10:33:56.0078 0x190c C:\Windows\System32\drivers\BasicDisplay.sys - ok
10:33:56.0094 0x190c [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] C:\Windows\System32\drivers\msfs.sys
10:33:56.0094 0x190c C:\Windows\System32\drivers\msfs.sys - ok
10:33:56.0094 0x190c [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] C:\Windows\System32\drivers\npfs.sys
10:33:56.0094 0x190c C:\Windows\System32\drivers\npfs.sys - ok
10:33:56.0094 0x190c [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] C:\Windows\System32\drivers\netbt.sys
10:33:56.0094 0x190c C:\Windows\System32\drivers\netbt.sys - ok
10:33:56.0094 0x190c [ 3C7361E0A5A6966DB957B94ECF924A9E, 6AE6BFD1E6987E85F4C134639F7AC2A92523B9E9A638A7FA0A98E3B195430D24 ] C:\Windows\System32\drivers\tdi.sys
10:33:56.0094 0x190c C:\Windows\System32\drivers\tdi.sys - ok
10:33:56.0094 0x190c [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] C:\Windows\System32\drivers\tdx.sys
10:33:56.0094 0x190c C:\Windows\System32\drivers\tdx.sys - ok
10:33:56.0094 0x190c [ 374E27295F0A9DCAA8FC96370F9BEEA5, 51C394E0C2322D7D093941A1B8766171B5D1F47DF2FE0834209492891EA7D999 ] C:\Windows\System32\drivers\afd.sys
10:33:56.0094 0x190c C:\Windows\System32\drivers\afd.sys - ok
10:33:56.0094 0x190c [ 8528BB05E4D4E25945F78B00B2555FB7, FF8E0D4580F93CD348080967F52FE6C2C68B56DAEACAE2EAEF04E19412A953AE ] C:\Windows\System32\drivers\pacer.sys
10:33:56.0094 0x190c C:\Windows\System32\drivers\pacer.sys - ok
10:33:56.0094 0x190c [ A83D67D347A684F10B7D3019C8A6380C, 2B86832967981C8C786BF24C1CF8E13E01745ACE3333CF5C821DD93D623B96E4 ] C:\Windows\System32\drivers\netbios.sys
10:33:56.0094 0x190c C:\Windows\System32\drivers\netbios.sys - ok
10:33:56.0110 0x190c [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] C:\Windows\System32\drivers\rdbss.sys
10:33:56.0110 0x190c C:\Windows\System32\drivers\rdbss.sys - ok
10:33:56.0110 0x190c [ 35BF5C5F5E3C9902C98978C7640574DA, C61E50B04000DCEC72365723F0C0725C2E005529DAF2777A59E624C14DA29E55 ] C:\Windows\System32\drivers\vwififlt.sys
10:33:56.0110 0x190c C:\Windows\System32\drivers\vwififlt.sys - ok
10:33:56.0110 0x190c [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] C:\Windows\System32\drivers\mssmbios.sys
10:33:56.0110 0x190c C:\Windows\System32\drivers\mssmbios.sys - ok
10:33:56.0110 0x190c [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] C:\Windows\System32\drivers\npsvctrig.sys
10:33:56.0110 0x190c C:\Windows\System32\drivers\npsvctrig.sys - ok
10:33:56.0110 0x190c [ E490B459978CB87779E84C761D22B827, 1E5CA38626E41618E4CA16DD0C70EB2FA86E986F0CF21A749BDE2A17015DEEC6 ] C:\Windows\System32\drivers\nsiproxy.sys
10:33:56.0110 0x190c C:\Windows\System32\drivers\nsiproxy.sys - ok
10:33:56.0110 0x190c [ AFCD4054D61BD708B82991348ED1C763, EBDAC0E218F1DFC405DB3C8A2F014D20A17B0690EA381C750BED5C2AFCDFEBE3 ] C:\Windows\System32\drivers\wanarp.sys
10:33:56.0110 0x190c C:\Windows\System32\drivers\wanarp.sys - ok
10:33:56.0110 0x190c [ 075CCE75090786F124573A788C8656E6, AA188CFF2F8EE2D9F50701AB2315D24E15D7715FD84F5054D3FC175D4BD35734 ] C:\Windows\System32\drivers\CLVirtualDrive.sys
10:33:56.0110 0x190c C:\Windows\System32\drivers\CLVirtualDrive.sys - ok
10:33:56.0110 0x190c [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] C:\Windows\System32\drivers\dam.sys
10:33:56.0110 0x190c C:\Windows\System32\drivers\dam.sys - ok
10:33:56.0125 0x190c [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] C:\Windows\System32\drivers\dfsc.sys
10:33:56.0125 0x190c C:\Windows\System32\drivers\dfsc.sys - ok
10:33:56.0125 0x190c [ 8E8E34B7BA059050EED827410D0697A2, 85B6684709F24729A6497563812A90A54068AC2DD9EEA03037CB1EEF5C85AAA9 ] C:\Windows\System32\drivers\ahcache.sys
10:33:56.0125 0x190c C:\Windows\System32\drivers\ahcache.sys - ok
10:33:56.0125 0x190c [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] C:\Windows\System32\drivers\CompositeBus.sys
10:33:56.0125 0x190c C:\Windows\System32\drivers\CompositeBus.sys - ok
10:33:56.0125 0x190c [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] C:\Windows\System32\drivers\kdnic.sys
10:33:56.0125 0x190c C:\Windows\System32\drivers\kdnic.sys - ok
10:33:56.0125 0x190c [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] C:\Windows\System32\drivers\umbus.sys
10:33:56.0125 0x190c C:\Windows\System32\drivers\umbus.sys - ok
10:33:56.0125 0x190c [ 5053FE9043FB84D71B04EFC7D5DA13CF, 3219D92AE46006C2831D518427B0E9724ED086E4E930584139AC7F4AA5EABEE9 ] C:\Windows\System32\ntdll.dll
10:33:56.0125 0x190c C:\Windows\System32\ntdll.dll - ok
10:33:56.0125 0x190c [ D8564418BAC13776E43DB5F6B4FA775E, FC8EF5704C871187AE4945000DB3D3758E8B867E90F8E530B0F12C6438D17D35 ] C:\Windows\System32\smss.exe
10:33:56.0125 0x190c C:\Windows\System32\smss.exe - ok
10:33:56.0125 0x190c [ 387A1E98BE548E4F199343CBA01E9D6D, 4A2B66E5587BE0BDEC99C1EC758DB67F35D1988B1FCD916355D6473E3BCDD13E ] C:\Windows\System32\autochk.exe
10:33:56.0125 0x190c C:\Windows\System32\autochk.exe - ok
10:33:56.0125 0x190c [ A6975E0E4BE34667933846DE2F28AEFC, DFCF194C457A80C8222821001626D089FB1D97A37CA4D50D92144CE324911A78 ] C:\Windows\System32\drivers\nvlddmkm.sys
10:33:56.0125 0x190c C:\Windows\System32\drivers\nvlddmkm.sys - ok
10:33:56.0141 0x190c [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] C:\Windows\System32\drivers\hdaudbus.sys
10:33:56.0141 0x190c C:\Windows\System32\drivers\hdaudbus.sys - ok
10:33:56.0141 0x190c [ 48430B0313FC1CFE3D2400553F1A93CD, 92994DE6B131E904AFF2C9C4FBB4E6B0D58525A1539763327373DA18C9F08193 ] C:\Windows\System32\drivers\USBXHCI.SYS
10:33:56.0141 0x190c C:\Windows\System32\drivers\USBXHCI.SYS - ok
10:33:56.0141 0x190c [ B034A41891A36457B994307DFA772293, CA5E6500764A9777AE0E15B2AFB6F05982C90F01374E3F6DDC6DF3852282C66B ] C:\Windows\System32\drivers\UCX01000.SYS
10:33:56.0141 0x190c C:\Windows\System32\drivers\UCX01000.SYS - ok
10:33:56.0141 0x190c [ 18B9AD128EC84E8D16A83F70CF36594F, 199DF15D68E2A079794E5DD325162C1A68A65EF26EEF5A6C6154281DDE57279A ] C:\Windows\System32\drivers\TeeDriverx64.sys
10:33:56.0141 0x190c C:\Windows\System32\drivers\TeeDriverx64.sys - ok
10:33:56.0141 0x190c [ 48BA326A3DBA5B5BEB5F2777F4618696, B9EC8155F11A3A7644BD9DC8910681B46AE44AE3BF53F052DF50E9C5555E3229 ] C:\Windows\System32\drivers\usbehci.sys
10:33:56.0141 0x190c C:\Windows\System32\drivers\usbehci.sys - ok
10:33:56.0141 0x190c [ FE0ADF5028EB8C1339B66B3AEDE3FEF9, F496053D0E184D4FC15B0615FCBEEBF1474ADF154144F67627E015F795669104 ] C:\Windows\System32\drivers\usbport.sys
10:33:56.0141 0x190c C:\Windows\System32\drivers\usbport.sys - ok
10:33:56.0141 0x190c [ 735E4E58539FA0F0B96B7D9599C6C041, 43B603C7EF5B1819FC99776984326C5AA6D2915BA70E12E5366BB456D1F2B7E3 ] C:\Windows\System32\drivers\netr28x.sys
10:33:56.0141 0x190c C:\Windows\System32\drivers\netr28x.sys - ok
10:33:56.0141 0x190c [ 50AECF8C21AB2A6428A6E1E10549D8E5, 6BC7C60CF5E8AFB9972619EE1C78357756E9C0A3EC783C3056CEB600DCBB1555 ] C:\Windows\System32\drivers\L1C63x64.sys
10:33:56.0141 0x190c C:\Windows\System32\drivers\L1C63x64.sys - ok
10:33:56.0141 0x190c [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] C:\Windows\System32\drivers\vwifibus.sys
10:33:56.0141 0x190c C:\Windows\System32\drivers\vwifibus.sys - ok
10:33:56.0156 0x190c [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] C:\Windows\System32\drivers\intelppm.sys
10:33:56.0156 0x190c C:\Windows\System32\drivers\intelppm.sys - ok
10:33:56.0156 0x190c [ 1DD05F4857C2188744B9E864658949DD, 438AB00C632C8B472C0BDB81CEE0133A58FE7421EA4D9349DAD78B9CC4747F69 ] C:\Windows\System32\drivers\ks.sys
10:33:56.0156 0x190c C:\Windows\System32\drivers\ks.sys - ok
10:33:56.0156 0x190c [ 3103BBAB41F0C75BE6FA302439C9B9D6, CC0D62B5B5A0E6193B27CA7E3BCDD3E5FFB5F1EFDA97CE1EB76FCA7D1B159FEF ] C:\Windows\System32\drivers\drmk.sys
10:33:56.0156 0x190c C:\Windows\System32\drivers\drmk.sys - ok
10:33:56.0156 0x190c [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] C:\Windows\System32\drivers\ksthunk.sys
10:33:56.0156 0x190c C:\Windows\System32\drivers\ksthunk.sys - ok
10:33:56.0156 0x190c [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] C:\Windows\System32\drivers\NdisVirtualBus.sys
10:33:56.0156 0x190c C:\Windows\System32\drivers\NdisVirtualBus.sys - ok
10:33:56.0156 0x190c [ 1AF619620613869C07F9C147BC37520F, 0AD4E100354E201D5E72BA236C1464F5083A7E3B58C4AC6BA712489D258955F5 ] C:\Windows\System32\drivers\nvvad64v.sys
10:33:56.0156 0x190c C:\Windows\System32\drivers\nvvad64v.sys - ok
10:33:56.0156 0x190c [ 8685379B82AC81187813225905531D1E, 9220153F68B58DF79B5847F53C9275CAD0BF1E47151EEA0C21BC55489DC2042C ] C:\Windows\System32\drivers\portcls.sys
10:33:56.0156 0x190c C:\Windows\System32\drivers\portcls.sys - ok
10:33:56.0156 0x190c [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] C:\Windows\System32\drivers\rdpbus.sys
10:33:56.0156 0x190c C:\Windows\System32\drivers\rdpbus.sys - ok
10:33:56.0172 0x190c [ 84E0F5D41C138C5CC975137A2A98F6D3, 1E36CED05E4F4365C2AB020CAF920E3959995D7F89F3FABD7B2FB05985F85F38 ] C:\Windows\System32\drivers\swenum.sys
10:33:56.0172 0x190c C:\Windows\System32\drivers\swenum.sys - ok
10:33:56.0172 0x190c [ D79920BE4E6683D3AB50F71457A4F6C6, 7D93885C5B86F4BDDBD2FAC588A1091858B674FA401BEE30D336F4B6D717443D ] C:\Windows\System32\drivers\usbd.sys
10:33:56.0172 0x190c C:\Windows\System32\drivers\usbd.sys - ok
10:33:56.0172 0x190c [ FEF0BC107812B36849741C3211BA6B60, B3EF738BE1E6B6027F29C9713CD3F367EA067D2BE46580AFBC0FB58046EF6BBD ] C:\Windows\System32\drivers\usbhub.sys
10:33:56.0172 0x190c C:\Windows\System32\drivers\usbhub.sys - ok
10:33:56.0172 0x190c [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] C:\Windows\System32\drivers\fastfat.sys
10:33:56.0172 0x190c C:\Windows\System32\drivers\fastfat.sys - ok
10:33:56.0172 0x190c [ 65392F3F3F65E4C6CC82A0F4F8A0B051, C11B662A28D95820717DFFC6B76DBB755E4876009A2342E5E3992DE32D6BFF61 ] C:\Windows\System32\drivers\USBHUB3.SYS
10:33:56.0172 0x190c C:\Windows\System32\drivers\USBHUB3.SYS - ok
10:33:56.0172 0x190c [ C87B11EB78428853F9E8495C47E53C10, FAE479DB0812967B3FF968773BA998591B4F50BE4329B8349BCA7E6EAB1B0474 ] C:\Windows\System32\drivers\nvhda64v.sys
10:33:56.0172 0x190c C:\Windows\System32\drivers\nvhda64v.sys - ok
10:33:56.0172 0x190c [ 730A8469CD476ACBDC450293B4C02298, 8893C938BF1718A323A8E1EAEB1D854BF221D8D32D279493B706E39E10D76D79 ] C:\Windows\System32\drivers\stwrt64.sys
10:33:56.0172 0x190c C:\Windows\System32\drivers\stwrt64.sys - ok
10:33:56.0172 0x190c [ 1BB9CC78C91536CBA7B04B61ED0F85C4, 5F3337266F8EC913BAFF5738955BE58D380499797CDCF06DDD52641438311797 ] C:\Windows\System32\rpcrt4.dll
10:33:56.0172 0x190c C:\Windows\System32\rpcrt4.dll - ok
10:33:56.0172 0x190c [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] C:\Windows\System32\drivers\usbccgp.sys
10:33:56.0172 0x190c C:\Windows\System32\drivers\usbccgp.sys - ok
10:33:56.0188 0x190c [ 7CE4D5AB5626A26A6E6DFC7397179841, 871E24E52C58BBECB251083F1705261E7B3D3D8E017089FCD52D7582571B59F1 ] C:\Windows\System32\msvcrt.dll
10:33:56.0188 0x190c C:\Windows\System32\msvcrt.dll - ok
10:33:56.0188 0x190c [ A055D7D686F1CB5CBEDCFBB4C6DC9E2E, 5259CB49BE88FE59D4F85EA5D9469C432094296591BDAED49E091A266A64954F ] C:\Windows\System32\user32.dll
10:33:56.0188 0x190c C:\Windows\System32\user32.dll - ok
10:33:56.0188 0x190c [ 1AEFA4B25F72772F131D760F664ED7E1, 13C4A554F34FBB54257EEA8832AAFB37453410B563D2589F9A533639D80B54C7 ] C:\Windows\System32\difxapi.dll
10:33:56.0188 0x190c C:\Windows\System32\difxapi.dll - ok
10:33:56.0188 0x190c [ 7FFB24B4A54B1ACD46CF6899D879CC9F, 7EBFADD2B35386226C69A21631A69FF82D66B855899C9B1CEE96987A3A64094D ] C:\Windows\System32\drivers\hidparse.sys
10:33:56.0188 0x190c C:\Windows\System32\drivers\hidparse.sys - ok
10:33:56.0188 0x190c [ ABB7341766902F5AAB45E15F34D19E15, B9C1D2D5E7D781A4CEFF17BD5C8E4CBC586D00C4F8315892561EA52F4CB339D2 ] C:\Windows\System32\drivers\hidclass.sys
10:33:56.0188 0x190c C:\Windows\System32\drivers\hidclass.sys - ok
10:33:56.0188 0x190c [ 7D7C2B72B81BABF192F1033460A3C434, 28B317BEBCC5EAA3A4694830637033CF7675CA2ABCE581908DC7D95991768218 ] C:\Windows\System32\msctf.dll
10:33:56.0188 0x190c C:\Windows\System32\msctf.dll - ok
10:33:56.0188 0x190c [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] C:\Windows\System32\drivers\hidusb.sys
10:33:56.0188 0x190c C:\Windows\System32\drivers\hidusb.sys - ok
10:33:56.0188 0x190c [ 5EA1731968F2FD0E950DDCE6D36C5134, 16C47AA60CB62F206DBF3B4FAF99FCA667E7193178D1B7ECB162FA87C008BAA3 ] C:\Windows\System32\drivers\LEqdUsb.sys
10:33:56.0188 0x190c C:\Windows\System32\drivers\LEqdUsb.sys - ok
10:33:56.0188 0x190c [ 1A5835F2E6B49A83F0AEAD17B4537AF7, 8B2E67949305E27925595BD376B39AFBA755BF70BAB92518D2B041FF95BF85A0 ] C:\Windows\System32\GdiPlus.dll
10:33:56.0188 0x190c C:\Windows\System32\GdiPlus.dll - ok
10:33:56.0203 0x190c [ B7564AB4F8A12A16C568F256EC6C429B, DD4E34227A1227F10BFD2DF1BA40D3EEB905FF6E9FF4905BE3323102ACD45F28 ] C:\Windows\System32\psapi.dll
10:33:56.0203 0x190c C:\Windows\System32\psapi.dll - ok
10:33:56.0203 0x190c [ ABB028BAB78E7B4AFE374F8246F6CCB6, 8F4BE7D662D4C9CCCB8E76ECEF3B1B35063878BBF9E002EFF5A31B7E51CFB89A ] C:\Windows\System32\Wldap32.dll
10:33:56.0203 0x190c C:\Windows\System32\Wldap32.dll - ok
10:33:56.0203 0x190c [ A4B86A08CEC7841895C817430CB76CE2, 1185171CDAB5373460EE225F5A2DBF7C89F5CFBEC19F2A02609F65241FFAD0DA ] C:\Windows\System32\clbcatq.dll
10:33:56.0203 0x190c C:\Windows\System32\clbcatq.dll - ok
10:33:56.0203 0x190c [ 6AFE9D20019BA4C76188A458573F4461, B7E9C9E6FD59521672553947833AEC7BB84E6B1DFFD7E4850B64171EB67C7D7D ] C:\Windows\System32\combase.dll
10:33:56.0203 0x190c C:\Windows\System32\combase.dll - ok
10:33:56.0203 0x190c [ B65523C830308241407F6EBCC6484E70, 0045EE4010BF5FB60886F1B02EA73590BBEEED78CE4577989EE55B4BF2B74923 ] C:\Windows\System32\sechost.dll
10:33:56.0203 0x190c C:\Windows\System32\sechost.dll - ok
10:33:56.0203 0x190c [ 447CB6699A8EAD2BC516991738A16277, 1A58913C5A51B26FBB87AE26C34A0C9F2F4444D7F50CEF90635EDE17DBED77CC ] C:\Windows\System32\imagehlp.dll
10:33:56.0203 0x190c C:\Windows\System32\imagehlp.dll - ok
10:33:56.0203 0x190c [ 34A16F6F9546595952C65003D9A4B474, 1FB1ACF5F5E08EB04BBFC9084E81C5EDB225742A9CB42324AA1FD717EA425759 ] C:\Windows\System32\shell32.dll
10:33:56.0203 0x190c C:\Windows\System32\shell32.dll - ok
10:33:56.0203 0x190c [ D04D884242F02CC02E9264A4DBF532DB, 9240087846AB1975F7DFABD1A143E26A2F587CE8B8CD28C64CC448FAE2366036 ] C:\Windows\System32\wow64win.dll
10:33:56.0203 0x190c C:\Windows\System32\wow64win.dll - ok
10:33:56.0219 0x190c [ 561F1AB95F4F01C691BDABA5FD5C67FC, 4C6184C1A72B2F84BB1CA5A72F89CC44F9F37FF225D834EBCEFF26F820635BED ] C:\Windows\System32\advapi32.dll
10:33:56.0219 0x190c C:\Windows\System32\advapi32.dll - ok
10:33:56.0219 0x190c [ D0AD65EE089F735BF546ABFE28D192C0, E18E9D87EB1984DE4787137EBC704BE2A4D95E5E06D36CA90D504CFB98B432C1 ] C:\Windows\System32\comdlg32.dll
10:33:56.0219 0x190c C:\Windows\System32\comdlg32.dll - ok
10:33:56.0219 0x190c [ E7F88B66FD5C0DA438371C998273FD0D, 674B6C08F58183949D775C5B2713A485F79AEBAAA86F8F67292576694C17F36C ] C:\Windows\System32\setupapi.dll
10:33:56.0219 0x190c C:\Windows\System32\setupapi.dll - ok
10:33:56.0219 0x190c [ 87CEF71F9D5951C9379D2F956C07C37D, 0898937BA0CB4127556C99E2C5AA36B7F39A815ADB2787AC365344FCD17C5678 ] C:\Windows\System32\gdi32.dll
10:33:56.0219 0x190c C:\Windows\System32\gdi32.dll - ok
10:33:56.0219 0x190c [ 75428240F81D41B9F8F7CE5DDB07CA0F, B420AD4B2DE3C6222F86E2FDE7F8FAB73675D81E817CD81EAEFC7E8FD076E50B ] C:\Windows\System32\nsi.dll
10:33:56.0219 0x190c C:\Windows\System32\nsi.dll - ok
10:33:56.0219 0x190c [ 905A32D35E8CC1F08F040F77B03697FF, CA1B6E1B52E9DA5977C5105C28E3FA5142B4CBF16391B532A6037B396A2F7884 ] C:\Windows\System32\shlwapi.dll
10:33:56.0219 0x190c C:\Windows\System32\shlwapi.dll - ok
10:33:56.0219 0x190c [ 6F997D98C6A30D79C622811FBAB9119E, 730BD302DEF13201B7E197524F373CB2E422D167C8ACBE190F551F6AC153D13C ] C:\Windows\System32\ws2_32.dll
10:33:56.0219 0x190c C:\Windows\System32\ws2_32.dll - ok
10:33:56.0219 0x190c [ 9E2ABB0CAB26EBD775D968EAB1C1F6EC, C71BA2C89FDD1395BDD2E8C4F7B00C2CF0BE428EA8DF59945CDCC5575922BCA4 ] C:\Windows\System32\normaliz.dll
10:33:56.0219 0x190c C:\Windows\System32\normaliz.dll - ok
10:33:56.0219 0x190c [ FADE737DEAFE3BF4CFC151AD0F548A47, D8E58838F966E69507EA60B3F2B15B088FA70F6A9536F5C8D7CA2794FD481894 ] C:\Windows\System32\wow64.dll
10:33:56.0219 0x190c C:\Windows\System32\wow64.dll - ok
10:33:56.0235 0x190c [ F3523E611AB0B0977B048263A12DCF2A, 85243102F253AD4FB3E593A4BC2E3801256995F9E1E2FCA28B28B1E326D57BEC ] C:\Windows\System32\kernel32.dll
10:33:56.0235 0x190c C:\Windows\System32\kernel32.dll - ok
10:33:56.0235 0x190c [ 48EBD5B3241D2324A92BA8EB993B2076, D4714B0913F5A4E79A6302A8C849B7948277ACB1C2A6353C1D86D01D53D55B0C ] C:\Windows\System32\oleaut32.dll
10:33:56.0235 0x190c C:\Windows\System32\oleaut32.dll - ok
10:33:56.0235 0x190c [ CC29613C244DA266D40DBACC108FEAB5, B92B10664D811EDF4A16A19AF01B0C5D9721748BDD2852B32F18DB9C9C267042 ] C:\Windows\System32\wow64cpu.dll
10:33:56.0235 0x190c C:\Windows\System32\wow64cpu.dll - ok
10:33:56.0235 0x190c [ 74B258D5896FC8F8256E8D03459AC2A2, B37DC91EA21A9E16DF4CA19099FA940063A690704E499D335F5104954E91715D ] C:\Windows\System32\lpk.dll
10:33:56.0235 0x190c C:\Windows\System32\lpk.dll - ok
10:33:56.0235 0x190c [ 4983684E2DDB7B617AA8EA94E037360F, B77720623D78D5BE64D041D4EC49E259C658D2637B3E1D778B8F6FA447B0BEBB ] C:\Windows\System32\imm32.dll
10:33:56.0235 0x190c C:\Windows\System32\imm32.dll - ok
10:33:56.0235 0x190c [ 332E5E35DE9E8175A9550501E57E0612, AA07A34F20225EE4619A7F1948DDD81EAC45BD499D9D2D1DCA979974FBB487F5 ] C:\Windows\System32\ole32.dll
10:33:56.0235 0x190c C:\Windows\System32\ole32.dll - ok
10:33:56.0235 0x190c [ 37C1CBCB3F420C754E86E3EC313D436D, 99DE183C3D3CEA2CFDB2D4AA7784CFF794772F7EC194BCF948C93C7A98D3944E ] C:\Windows\System32\KernelBase.dll
10:33:56.0235 0x190c C:\Windows\System32\KernelBase.dll - ok
10:33:56.0235 0x190c [ 8D2DF744C20A8960C022BF71505D3B45, CF29FDDA58CD2A30EEDFC44E7E8D8D2C378330CC71930A0BB65652AE7AD76B8B ] C:\Windows\System32\cfgmgr32.dll
10:33:56.0235 0x190c C:\Windows\System32\cfgmgr32.dll - ok
10:33:56.0235 0x190c [ 6EFAF0D87291F9FBD7C0ED3BD56511AA, 039895A75791F7107B98428EAA797D240E1A160312DC841973F8D9D1DC4D30E8 ] C:\Windows\System32\crypt32.dll
10:33:56.0250 0x190c C:\Windows\System32\crypt32.dll - ok
10:33:56.0250 0x190c [ 88ACBA95BB55B8226D52117462B76CD4, 0E1D19A202D664B8600D69E17C0A3DA659917474ECC2D6CD813AB9A326E5F649 ] C:\Windows\System32\wintrust.dll
10:33:56.0250 0x190c C:\Windows\System32\wintrust.dll - ok
10:33:56.0250 0x190c [ 980CDCBF3EDB80CA20921F2C88260406, 48CBFB7B8DB7A6B5F268D94D28D19711E93EE4E54415921AE233B66BEADAB9D0 ] C:\Windows\System32\comctl32.dll
10:33:56.0250 0x190c C:\Windows\System32\comctl32.dll - ok
10:33:56.0250 0x190c [ 7DA935827BC3F48AE146BA4B2755F1AD, BB5A9394BFCEAB681BDA3A32C9F5E6222BE4FA8D0D70BA9639FBA722F4D7B2C5 ] C:\Windows\System32\msasn1.dll
10:33:56.0250 0x190c C:\Windows\System32\msasn1.dll - ok
10:33:56.0250 0x190c [ 00542019B2969529C5E9C68C83BD6F88, A5EA5B5DD71A05E16CA6E32622825D415FF1BEE2A9C5DA7F4B8A8065EDEAAE36 ] C:\Windows\SysWOW64\normaliz.dll
10:33:56.0250 0x190c C:\Windows\SysWOW64\normaliz.dll - ok
10:33:56.0250 0x190c [ 32F9650CD23F6F36706E9EA23ECCF484, 742C036C9018CCAE53719D50E3AAFDED2088C8EA67CE59595B7AA575BD116B06 ] C:\Windows\SysWOW64\lpk.dll
10:33:56.0250 0x190c C:\Windows\SysWOW64\lpk.dll - ok
10:33:56.0250 0x190c [ FB6E47E569D4872ABEB506BE03A45FBA, 5C4056CADA8F67587A119D9AE2A0EFAB30387CF6298F4019FF68AC92E2F6F54B ] C:\Windows\System32\drivers\kbdhid.sys
10:33:56.0250 0x190c C:\Windows\System32\drivers\kbdhid.sys - ok
10:33:56.0250 0x190c [ 8BE92376799B6B44D543E8D07CDCF885, 425B8BB1BAF62F735B3CB5A002E6055879F02E7207E55942BFD37F1784F5F368 ] C:\Windows\System32\drivers\kbdclass.sys
10:33:56.0250 0x190c C:\Windows\System32\drivers\kbdclass.sys - ok
10:33:56.0250 0x190c [ 02D98BF804084E9A0D69D1C69B02CCA9, EC5BC5D87043DFFD035FD4DD27B3D94E03119063519E4151BCC3522B613E2D7F ] C:\Windows\System32\drivers\mouhid.sys
10:33:56.0250 0x190c C:\Windows\System32\drivers\mouhid.sys - ok
10:33:56.0266 0x190c [ CEAC6D40FE887CE8406C2393CF97DE06, 34E76908B802764FF0D7AB3AF89BE77BD35B44787983343FAD89891891C0A045 ] C:\Windows\System32\drivers\mouclass.sys
10:33:56.0266 0x190c C:\Windows\System32\drivers\mouclass.sys - ok
10:33:56.0266 0x190c [ 50AC0930F05DFB996F085B49E112E5C9, C5147E92656506981705AFCAA97B7BDAD0929FF39C1666E774BE1BD32FB08387 ] C:\Windows\System32\drivers\LHidEqd.sys
10:33:56.0266 0x190c C:\Windows\System32\drivers\LHidEqd.sys - ok
10:33:56.0266 0x190c [ 96EB043E2843B5A87A486D0BC6921094, 0B339A18B2F536F12B2C1B4FEDEB3A815DC7F8E7B082144EE084B3E6ED067FBC ] C:\Windows\System32\drivers\LHidFilt.Sys
10:33:56.0266 0x190c C:\Windows\System32\drivers\LHidFilt.Sys - ok
10:33:56.0266 0x190c [ A5C1DA229B3B660BBF3BDC30ADBFBB61, B657092424C6BF418A6FA56353370C195D9CA67999B355E8EDD6AFCFD9FEF8E5 ] C:\Windows\System32\drivers\LMouFilt.Sys
10:33:56.0266 0x190c C:\Windows\System32\drivers\LMouFilt.Sys - ok
10:33:56.0266 0x190c [ EA23453240137F6773174E0D93F61A69, 579AD09FB428C2BB8B4055128620A7AADD1B606C1EA44B87A01D69A84232A5D9 ] C:\Windows\System32\drivers\USBSTOR.SYS
10:33:56.0266 0x190c C:\Windows\System32\drivers\USBSTOR.SYS - ok
10:33:56.0266 0x190c [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] C:\Windows\System32\drivers\EhStorClass.sys
10:33:56.0266 0x190c C:\Windows\System32\drivers\EhStorClass.sys - ok
10:33:56.0266 0x190c [ A1864B6F524DAFAB750C613467E43515, 8F629ACBC86AC12DEE038DD894A4E9D472766A58C8BF718CF67F6B69816969F9 ] C:\Windows\System32\win32k.sys
10:33:56.0266 0x190c C:\Windows\System32\win32k.sys - ok
10:33:56.0266 0x190c [ 885901A37E73FA25F3F87A848BA8033F, 4335F74947E1C4FC8442E62D2BC61264D0019030F2F2D2E5D4D668548A411B01 ] C:\Windows\System32\csrsrv.dll
10:33:56.0266 0x190c C:\Windows\System32\csrsrv.dll - ok
10:33:56.0266 0x190c [ B2D3F07F5E8A13AF988A8B3C0A800880, CB41E9D0E8107AA9337DBD1C56F22461131AD0952A2472B4477E2649D16ECB15 ] C:\Windows\System32\csrss.exe
10:33:56.0266 0x190c C:\Windows\System32\csrss.exe - ok
10:33:56.0281 0x190c [ C89780A6F58D113C28A96D85D1261DC5, 185114F33A60916C7904E4A0F278CA43258454343E614F01F0DAFA98BAC981B1 ] C:\Windows\System32\basesrv.dll
10:33:56.0281 0x190c C:\Windows\System32\basesrv.dll - ok
10:33:56.0281 0x190c [ 00DD4D2ACC2E72155A8AAA82018BEC0D, 9D7CA68B4A81240477FCC85A3CC11EF986093F9D6228A6C5AC608EDAD664068C ] C:\Windows\System32\winsrv.dll
10:33:56.0281 0x190c C:\Windows\System32\winsrv.dll - ok
10:33:56.0281 0x190c [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] C:\Windows\System32\drivers\udfs.sys
10:33:56.0281 0x190c C:\Windows\System32\drivers\udfs.sys - ok
10:33:56.0281 0x190c [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] C:\Windows\System32\drivers\monitor.sys
10:33:56.0281 0x190c C:\Windows\System32\drivers\monitor.sys - ok
10:33:56.0281 0x190c [ 8D3421127B05432B743719C239ABF80F, 51BB0D8B68FB8AD9CF47DFB452DA633670D0B0183B912F512E807D92D2255517 ] C:\Windows\System32\tsddd.dll
10:33:56.0281 0x190c C:\Windows\System32\tsddd.dll - ok
10:33:56.0281 0x190c [ 8ED638461EFFCF584AF5A8C291A2F9DF, C8414D68E423D345212E90524897B781B944034C385123DED4ACA508FADDD11E ] C:\Windows\System32\profapi.dll
10:33:56.0281 0x190c C:\Windows\System32\profapi.dll - ok
10:33:56.0281 0x190c [ 9C1833ABD62876856836C5AE55C7CE86, 0A21E2C8B2FF3B0438C86DA7151A548F9C6F5C62CD402CBBEDB435994C8508F1 ] C:\Windows\System32\sxssrv.dll
10:33:56.0281 0x190c C:\Windows\System32\sxssrv.dll - ok
10:33:56.0281 0x190c [ 48CFA7BE561A7BE144C29BB912055016, 64BE1AFD9F55C2BD636914D1F808AD209C68BF97AA3D0B73568C2C1E48BE2800 ] C:\Windows\System32\wininit.exe
10:33:56.0281 0x190c C:\Windows\System32\wininit.exe - ok
10:33:56.0297 0x190c [ 14BEA911F78B44E47CBD18210E541A43, 49228F2B8757D7FD12011E86B963DCE177CE330EE208BE9528386A386983362C ] C:\Windows\System32\cdd.dll
10:33:56.0297 0x190c C:\Windows\System32\cdd.dll - ok
10:33:56.0297 0x190c [ A7B9FCF37B64E878310EC62E6DCB9059, 44B1DB4BBE1F054FDEA79C6F8B7A97B300E21304F28471E96132D23AD2F6DAB6 ] C:\Windows\System32\KBDUS.DLL
10:33:56.0297 0x190c C:\Windows\System32\KBDUS.DLL - ok
10:33:56.0297 0x190c [ 55D0BC5BA19B1BA3A82F75A33828BCC0, D30254D004A13746377D1554961C11BF3B5D7F06E361993D6FF396741A281D31 ] C:\Windows\System32\wininitext.dll
10:33:56.0297 0x190c C:\Windows\System32\wininitext.dll - ok
10:33:56.0297 0x190c [ F4DAE6CBE6EF5992934EFEE3A1AAC6D1, 9FBDB2728417B115BD041170DE39D073AE0A6A75A3E3F42F4774CA2D067E56A9 ] C:\Windows\System32\atmfd.dll
10:33:56.0297 0x190c C:\Windows\System32\atmfd.dll - ok
10:33:56.0297 0x190c [ 833D2DE53608A1C5B9DD71C867718448, E2BF767339E66053270B269C4D30CAAC2A9695F1BB95031D6EEA6EA62F696211 ] C:\Windows\System32\powrprof.dll
10:33:56.0297 0x190c C:\Windows\System32\powrprof.dll - ok
10:33:56.0297 0x190c [ 306EB21E5B480AE9065EA55AC8C35936, 50088738F54E9F7903DBD3E3C97E72B049C96025CD539523062D4FB0DA61C612 ] C:\Windows\System32\winlogon.exe
10:33:56.0297 0x190c C:\Windows\System32\winlogon.exe - ok
10:33:56.0297 0x190c [ 04F8A9CC544B08634EC932E017434457, FFA322DAB1C2FB6C56EF413210CBC4DF0981D9CE301F67A67DE38DE7CCEFB17E ] C:\Windows\System32\winlogonext.dll
10:33:56.0297 0x190c C:\Windows\System32\winlogonext.dll - ok
10:33:56.0297 0x190c [ A41455649982EE080BE5CA8A72153808, 2C86808D30875C83CBE7F1D34834349D5BD429DFBCA8BD17B7ED4E8E75735FF7 ] C:\Windows\System32\winsta.dll
10:33:56.0297 0x190c C:\Windows\System32\winsta.dll - ok
10:33:56.0297 0x190c [ BC18914CB16B0A7BF5D103A65359FAE4, 3CFD06E3B377CA9E777C8D6C7E77B5CC914EC60D8EF8D7B50F0505F48834B4D9 ] C:\Windows\System32\WlS0WndH.dll
10:33:56.0297 0x190c C:\Windows\System32\WlS0WndH.dll - ok
10:33:56.0313 0x190c [ BCECD25BCFFE2FC4498374BF2E572DBE, E8DF45593BBD7D9387EE127DC9CDFCB9695723D0AC47F9A615CB7203ACC8F190 ] C:\Windows\System32\sxs.dll
10:33:56.0313 0x190c C:\Windows\System32\sxs.dll - ok
10:33:56.0313 0x190c [ B83B06508CADBC204B3DAEECC395A571, 10045637ABA4EF52F93602F5F78E8A50F2C2D9B2E646D0D0CC91E684C2AD1030 ] C:\Windows\System32\cryptbase.dll
10:33:56.0313 0x190c C:\Windows\System32\cryptbase.dll - ok
10:33:56.0313 0x190c [ 504DDEF8526CECAAD886D5AC5656DF1A, BAC6D4FEFFF24312D804B6323E51051A6FC93BF82470A718503459DC0218216E ] C:\Windows\System32\bcryptprimitives.dll
10:33:56.0313 0x190c C:\Windows\System32\bcryptprimitives.dll - ok
10:33:56.0313 0x190c [ 067CB90C277DB4A737D5DEABA3055972, C681BF013170F2D92A3FC4D783FC3F200CDC0C8173373B7ECC27FCF32A03CCBD ] C:\Windows\System32\services.exe
10:33:56.0313 0x190c C:\Windows\System32\services.exe - ok
10:33:56.0313 0x190c [ 23F0DE75890E604B9DED5625EFA907FD, 08B2E5CAF7B8A28564F4C0650C3EC2711993F7F4634A2F409DC2BD317836B4CC ] C:\Windows\System32\lsasrv.dll
10:33:56.0313 0x190c C:\Windows\System32\lsasrv.dll - ok
10:33:56.0313 0x190c [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] C:\Windows\System32\lsass.exe
10:33:56.0313 0x190c C:\Windows\System32\lsass.exe - ok
10:33:56.0313 0x190c [ 1B0FCDBFDA0AD5DFCE2D99832BAAF5EC, 10C4613831A829680106468924A7C5DCB36B8A5A4F5A22EB3149D0C79A30920F ] C:\Windows\System32\scext.dll
10:33:56.0313 0x190c C:\Windows\System32\scext.dll - ok
10:33:56.0313 0x190c [ 652D7E7BC8D6A909480FF2BBD0E46210, 9871C9EBA42B9385A62C20AB23AE6A99ADB8D2043E85083454482075611AA510 ] C:\Windows\System32\sspicli.dll
10:33:56.0313 0x190c C:\Windows\System32\sspicli.dll - ok
10:33:56.0313 0x190c [ 0D85B43A59FB7A63782F6A8969B5BB43, 8B6C5BDC6DCDFE3A060D5147AE2DA40CC47009160E9667A68701A83246A4850C ] C:\Windows\System32\sspisrv.dll
10:33:56.0313 0x190c C:\Windows\System32\sspisrv.dll - ok
10:33:56.0328 0x190c [ 7A5CCEC20CF6AA21FF7CC51C0AEBF648, 8D03F0573B0ACC1776A7BC85FA88EFB43AF7C9E3EC1EEAA4AD8EB3ABA3E797E5 ] C:\Windows\System32\dabapi.dll
10:33:56.0328 0x190c C:\Windows\System32\dabapi.dll - ok
10:33:56.0328 0x190c [ 61BAE7A83A8650CFC976E8242CE2E4DE, 4277EB563DCE5882D7BF0913082A02E5B6797EDF9CC35BF30951AB1CF1B47B99 ] C:\Windows\System32\EventAggregation.dll
10:33:56.0328 0x190c C:\Windows\System32\EventAggregation.dll - ok
10:33:56.0328 0x190c [ 59245D8023A7C5D192C2ED7A1BD80F36, 6537220FC5E1D58575E4041BEC5C16E7A17B9CC749A57A1BDAAAF5B9A770D1CD ] C:\Windows\System32\samsrv.dll
10:33:56.0328 0x190c C:\Windows\System32\samsrv.dll - ok
10:33:56.0328 0x190c [ 13E04B8546D3F0D9533DA880A3357F12, F38A7F63E7D0D4AD61A575E874FE20EDF6DF8CAEC683441D2CC02A17BF3EF409 ] C:\Windows\System32\SPInf.dll
10:33:56.0328 0x190c C:\Windows\System32\SPInf.dll - ok
10:33:56.0328 0x190c [ AA9973F611039A02C8D1F71A65F8C775, 2CFCE559BED5BE35B1970DF544E0606AF6559E02EF8381BA09270ED5FB8E1BF5 ] C:\Windows\System32\srvcli.dll
10:33:56.0328 0x190c C:\Windows\System32\srvcli.dll - ok
10:33:56.0328 0x190c [ F56ACDD6374CAFC64E8339D387CB70E4, 59DFA1C33BFBE53C73B6F384816B0BA95F7C39A028B3EC1E9830B6F4DB1EC880 ] C:\Windows\System32\bcrypt.dll
10:33:56.0328 0x190c C:\Windows\System32\bcrypt.dll - ok
10:33:56.0328 0x190c [ FF6AE8D9D0F0264656DC55C7F60C1EE5, 0D2275B424D72207ADFBFBAC37A6D1FE4B410C953DA03178B8BA395025B915EE ] C:\Windows\System32\msprivs.dll
10:33:56.0328 0x190c C:\Windows\System32\msprivs.dll - ok
10:33:56.0328 0x190c [ BED41BC388BAF9D31152E9B0B4F88360, 2017B8D8F6A240E2940D7EC4ED39340F3A2B75464E22A4DFDEB2A46F17AB75C6 ] C:\Windows\System32\ncrypt.dll
10:33:56.0328 0x190c C:\Windows\System32\ncrypt.dll - ok
10:33:56.0328 0x190c [ 5AF14A9AEB3092F4304F5E5EC4328B67, 27D3C53087A952882CEEB66F02684863478D7BE96609095966546DD16115B62D ] C:\Windows\System32\ntasn1.dll
10:33:56.0328 0x190c C:\Windows\System32\ntasn1.dll - ok
10:33:56.0344 0x190c [ 853037685DDFA140E8386BA66A096BF8, 0CA7E08FDDB210F6F4DC423331D275220191F1664387450661F4B18605A1904F ] C:\Windows\System32\cryptdll.dll
10:33:56.0344 0x190c C:\Windows\System32\cryptdll.dll - ok
10:33:56.0344 0x190c [ 7D4665483FF800B8972E517748726AB6, 9F1DF7095B4A1038DD33F808426AAB246ABD5FC61B60EEC473C63E8C3286E97B ] C:\Windows\System32\negoexts.dll
10:33:56.0344 0x190c C:\Windows\System32\negoexts.dll - ok
10:33:56.0344 0x190c [ EECF7FE667129D5B52B1CCD54CB9EEF2, D01B2FCBF400AD3250CBE5467F3B42BD1DEC319E9E4CD013A098DDABC83ACDE7 ] C:\Windows\System32\netjoin.dll
10:33:56.0344 0x190c C:\Windows\System32\netjoin.dll - ok
10:33:56.0344 0x190c [ 7CDB6060224CFAD4D5AC49FFC5414F41, 2FDFD85E7B25069B077DD089D8DEBCBE8BDC3B118758B4BB4B9BF960F9365AA2 ] C:\Windows\System32\kerberos.dll
10:33:56.0344 0x190c C:\Windows\System32\kerberos.dll - ok
10:33:56.0344 0x190c [ 51DA757F8E4B7FB3DCB14184304C9328, 40181110E080C5D3B370D4F04DF0AB759FDC63073177AB972F6E6297A8FFFEAA ] C:\Windows\System32\cryptsp.dll
10:33:56.0344 0x190c C:\Windows\System32\cryptsp.dll - ok
10:33:56.0344 0x190c [ 53DC027553EB54B3F84B07122DEEE0CC, F6DDCA5EA12E2E79BBD3A59991A66486D54C82FA94348FDA1B1E6B19BF22B2B8 ] C:\Windows\System32\msv1_0.dll
10:33:56.0344 0x190c C:\Windows\System32\msv1_0.dll - ok
10:33:56.0344 0x190c [ 896B307E803430F67EC772807F9CC023, 84EA5BAF8824631C28BFF0FEDF41A4B78F9C63E376D0CB01121177DF0D728397 ] C:\Windows\System32\mswsock.dll
10:33:56.0344 0x190c C:\Windows\System32\mswsock.dll - ok
10:33:56.0344 0x190c [ 2468C21E34C49E4735B4BA430D448E91, B750294EB5076D44B814E01425594D33A281B2ED218997B1AFC2C9047CC95EB3 ] C:\Windows\System32\netlogon.dll
10:33:56.0344 0x190c C:\Windows\System32\netlogon.dll - ok
10:33:56.0360 0x190c [ B7E51F949ED8C3A75C1D3121AF9A4B6C, 6472E85CDB4D0FD393BEEFF48A41781317180D224DFD114A359FA1AE2648C69E ] C:\Windows\System32\dnsapi.dll
10:33:56.0360 0x190c C:\Windows\System32\dnsapi.dll - ok
10:33:56.0360 0x190c [ 66385FE1DDCEA70EDFB25F57C8507D7B, A32A2D23E6AE228CCE37302DB78B461811CBA3A00096F3EA07900B8ACA4A6997 ] C:\Windows\System32\logoncli.dll
10:33:56.0360 0x190c C:\Windows\System32\logoncli.dll - ok
10:33:56.0360 0x190c [ C51CF4D9DA57EA894967752090F6E2CF, 0040F439FAFD4DAA6DE1CE653CD79BFAB147C4BF6476BC85BC5BA8402A6632E8 ] C:\Windows\System32\pku2u.dll
10:33:56.0360 0x190c C:\Windows\System32\pku2u.dll - ok
10:33:56.0360 0x190c [ 40B10EAB69F4087C60DC21B5C92A4702, D73A9C7D32383BDF305E1B0D9DDEC01CE8CBCC6F867FE31697A01E02A0576891 ] C:\Windows\System32\TSpkg.dll
10:33:56.0360 0x190c C:\Windows\System32\TSpkg.dll - ok
10:33:56.0360 0x190c [ 16E9AD0F7A34C4F071E40CDD76E7C86D, D3846459CCD934642EB797D26EB4DC7B56D9939B39C9771969F9D16E75547FEB ] C:\Windows\System32\userenv.dll
10:33:56.0360 0x190c C:\Windows\System32\userenv.dll - ok
10:33:56.0360 0x190c [ D617071B11C99CFE5C4BD0FD82C0609C, BA1107A301771E0060FAC32590FA4F126E271D1780F1C6E742FDBFD0F5F65875 ] C:\Windows\System32\livessp.dll
10:33:56.0360 0x190c C:\Windows\System32\livessp.dll - ok
10:33:56.0360 0x190c [ B540693968BCA57F595A7B08DB4B46C3, 523951A2EC1B64F092D4DB2F0ED688D96128E43FFB8BBDCB7BE184705D137B0D ] C:\Windows\System32\rsaenh.dll
10:33:56.0360 0x190c C:\Windows\System32\rsaenh.dll - ok
10:33:56.0360 0x190c [ 45E4A2FADA3579F6DC68F2A0998C3419, 804DC0E59DA78591D6598A0ED3125A8F4A04C84E85FBB55BDC05D2E859FD8121 ] C:\Windows\System32\wdigest.dll
10:33:56.0360 0x190c C:\Windows\System32\wdigest.dll - ok
10:33:56.0360 0x190c [ 2E80E960F1D376A502E9811B20621F2A, D3D35DE4DBB81952EAE38AB68D0F72E5D9BA9188F02FCED49494E9A928396F44 ] C:\Windows\System32\schannel.dll
10:33:56.0360 0x190c C:\Windows\System32\schannel.dll - ok
10:33:56.0375 0x190c [ 700BB3365D04B1606A03FB1D6B19C138, F784DA339E5AE4F4C7CF73C4FC745F178FB8352D686567FE0FA1EE797D95CB4F ] C:\Windows\System32\credssp.dll
10:33:56.0375 0x190c C:\Windows\System32\credssp.dll - ok
10:33:56.0375 0x190c [ 995F43F02C9C99A895A72AAF8310CFE1, F2920363861198AF90C084384F91C4CA20A1E00AF81268E93ABA74C482564D9C ] C:\Windows\System32\dpapisrv.dll
10:33:56.0375 0x190c C:\Windows\System32\dpapisrv.dll - ok
10:33:56.0375 0x190c [ 5EBAF77D01D75CAFEF78B47840C75569, 29E2CC1E434BB35698E90C3E78B68E774EF511108EF8EC5A1D500BBF0819123B ] C:\Windows\System32\efslsaext.dll
10:33:56.0375 0x190c C:\Windows\System32\efslsaext.dll - ok
10:33:56.0375 0x190c [ 1F1B8D07708E40E54C55B392C78ECCE2, 965AC70B88E49B832204BA3710F5798FEAC08BBB794A079CC32035C326AB57A4 ] C:\Windows\System32\scecli.dll
10:33:56.0375 0x190c C:\Windows\System32\scecli.dll - ok
10:33:56.0375 0x190c [ 1A74CE3B49A227D0189712D9886D7772, 75DD245EF26DBDD430E65A894D1DFB4F15674F208E812005049DFFD9528C45E3 ] C:\Windows\System32\authz.dll
10:33:56.0375 0x190c C:\Windows\System32\authz.dll - ok
10:33:56.0375 0x190c [ 7172D44ED18787964B43146863466672, E87A98746079081395AD9BA2E7C048C470A5265A03182C542A4B9CF5B36A07C9 ] C:\Windows\System32\scesrv.dll
10:33:56.0375 0x190c C:\Windows\System32\scesrv.dll - ok
10:33:56.0375 0x190c [ 296823744D624E98A46759AD58911FC3, DFB6E863CB492E76AC970FC94BDF7DD1500D319B5DB52B5A7BD8F977EEA07E6E ] C:\Windows\System32\netutils.dll
10:33:56.0375 0x190c C:\Windows\System32\netutils.dll - ok
10:33:56.0375 0x190c [ E4CA434F251681590D0538BC21C32D2F, 99E7587D1744BF62086FEB06A778CF3966199F1CC2DFB91FDA53A9166A2A3AEC ] C:\Windows\System32\svchost.exe
10:33:56.0375 0x190c C:\Windows\System32\svchost.exe - ok
10:33:56.0375 0x190c [ 7B12172CCE581F76C9335D7A47E0AD50, C236F4E61B021F0E37E9EDBA6752F499DB85F9023B4E1800ACE74AC450F7BCE6 ] C:\Windows\System32\gpapi.dll
10:33:56.0375 0x190c C:\Windows\System32\gpapi.dll - ok
10:33:56.0391 0x190c [ 85936A752E6BBE740D9FCF156E1AC5E1, 45C71EB035AA246A6774DB784F01DEA73285909805CBA42FC4B9616D69ADB8A8 ] C:\Windows\System32\hid.dll
10:33:56.0391 0x190c C:\Windows\System32\hid.dll - ok
10:33:56.0391 0x190c [ 45F36BBDFD50134488ECA96BB9231818, A02BAA2F6FA640E4FCE55A126EC983A03A406FE329134524D3BDDB6C1B32C7CF ] C:\Windows\System32\pcwum.dll
10:33:56.0391 0x190c C:\Windows\System32\pcwum.dll - ok
10:33:56.0391 0x190c [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] C:\Windows\System32\umpnpmgr.dll
10:33:56.0391 0x190c C:\Windows\System32\umpnpmgr.dll - ok
10:33:56.0391 0x190c [ 00E08B30E7F7C13ECE2CDF4F46A77311, 1807C0A64C1794E572C86730816C01DCF4D8F773ADE9CAEA3AC0658F7BD71A4E ] C:\Windows\System32\umpo.dll
10:33:56.0391 0x190c C:\Windows\System32\umpo.dll - ok
10:33:56.0391 0x190c [ 9FF64147DB9078337C15F41A6043C74F, 79ADBEE555855E9B27A30091632AB4EDECAD9E243CA7D533C437657FC329CCA6 ] C:\Windows\System32\umpoext.dll
10:33:56.0391 0x190c C:\Windows\System32\umpoext.dll - ok
10:33:56.0391 0x190c [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] C:\Windows\System32\rpcss.dll
10:33:56.0391 0x190c C:\Windows\System32\rpcss.dll - ok
10:33:56.0391 0x190c [ D894CBD7DA753C881EE8D5E33B583225, DA4472A85F10A3DF8CE969F731E67FE7C75EE6095908AB8AC2C44851DC5A3F8B ] C:\Windows\System32\RpcEpMap.dll
10:33:56.0391 0x190c C:\Windows\System32\RpcEpMap.dll - ok
10:33:56.0391 0x190c [ 0D86DEB93CC1D2B32CAF658439350241, 77E04DA09A6B59BCAA04BC8B99F56EF2F8A9C18C3A030A93C2934A5DAFC3F10C ] C:\Windows\System32\RpcRtRemote.dll
10:33:56.0391 0x190c C:\Windows\System32\RpcRtRemote.dll - ok
10:33:56.0406 0x190c [ E325BCD68EC0CF2E2EDD0AB7CC17C698, 4DEDEF91F6BD1CC8DBE118AC28CA6BD874449A053B9CDE9FFEB1C7B98501D938 ] C:\Windows\System32\bisrv.dll
10:33:56.0406 0x190c C:\Windows\System32\bisrv.dll - ok
10:33:56.0406 0x190c [ 3260D5308DD9AE069FE4881D65389A84, 22150707B4606964F9008A1734BD885D2824B2E1515D073729427049FA6B999C ] C:\Windows\System32\FirewallAPI.dll
10:33:56.0406 0x190c C:\Windows\System32\FirewallAPI.dll - ok
10:33:56.0406 0x190c [ E804E9734A493A01316F209BA99F1F48, 028741BA864F6F4AD473C53C1F6389F1EB304F1C11159575022EC3E41AD659DF ] C:\Windows\System32\psmsrv.dll
10:33:56.0406 0x190c C:\Windows\System32\psmsrv.dll - ok
10:33:56.0406 0x190c [ 8EBB271E4588D835784A3FF7E80076A8, A508BE95F6F5063A76F4C8726D9425BB1F00DE803EFE73A0BE145DD9AB82FF0A ] C:\Windows\System32\lsm.dll
10:33:56.0406 0x190c C:\Windows\System32\lsm.dll - ok
10:33:56.0406 0x190c [ 5B19A3ED994EB972FBD99AC18D0AEA13, 5764DA74BB394013087AEFFD271C306207F98049B633352CB9F52C3805539826 ] C:\Windows\System32\devobj.dll
10:33:56.0406 0x190c C:\Windows\System32\devobj.dll - ok
10:33:56.0406 0x190c [ 9A1175EF7B9E297FDC0ADD33783EF8FF, 0FC1A3942E0F3F1B5FBA09598247FCB073150D485B25C4784710904A392B6CCD ] C:\Windows\System32\sysntfy.dll
10:33:56.0406 0x190c C:\Windows\System32\sysntfy.dll - ok
10:33:56.0406 0x190c [ 04AE20974DF91DC7B9075FC5A126B77C, B5E77C5E57DFC182D9A8FE82417BF628BE40C8D86133670A8584D65E13FEEC38 ] C:\Windows\System32\UXInit.dll
10:33:56.0406 0x190c C:\Windows\System32\UXInit.dll - ok
10:33:56.0406 0x190c [ E55B850489F154F85110AE3B436A40D6, BF783B6EEDED6DE52F3C3217EEBF3B43A8A1FA549EC182EC52915011CB83FE55 ] C:\Windows\System32\wmsgapi.dll
10:33:56.0406 0x190c C:\Windows\System32\wmsgapi.dll - ok
10:33:56.0406 0x190c [ CD45E3FE736150D45EFDC9145DA53757, 8E04D55117A6D44AF51528413DC0AAF347FD43580CB9FCA84F5928135A3B0FF3 ] C:\Windows\System32\bi.dll
10:33:56.0406 0x190c C:\Windows\System32\bi.dll - ok
10:33:56.0422 0x190c [ 6ECFFE49AA43A74DC15701EFE6355621, BA70C1CEEC7C3348A4A32D17FC2D2E8E36075FEB93D1D253B2C0598B3DA4871D ] C:\Windows\System32\dab.dll
10:33:56.0422 0x190c C:\Windows\System32\dab.dll - ok
10:33:56.0422 0x190c [ 0D50F3C3D50B878CEAE21B9BE3F6A638, BF0B1A5D4CEA656695FFB45D930F6ADD63519AEAE9F8AED21E4E50708FE5E84C ] C:\Windows\System32\kernel.appcore.dll
10:33:56.0422 0x190c C:\Windows\System32\kernel.appcore.dll - ok
10:33:56.0422 0x190c [ FD4EA8E9232ADD51DC31C295DDEF2768, 3EA40D7376AB5AA5DA2BCF4745C79F7BF819363466967ECC3CD15ADECBFD7244 ] C:\Windows\System32\SystemEventsBrokerServer.dll
10:33:56.0422 0x190c C:\Windows\System32\SystemEventsBrokerServer.dll - ok
10:33:56.0422 0x190c [ 561A97E82FA0645CB786C19B8D442C31, 74671D2827E586C33C91B0B77268CE558F3B29CE11D9966EDFD73A7C0C58ACD6 ] C:\Windows\System32\uxtheme.dll
10:33:56.0422 0x190c C:\Windows\System32\uxtheme.dll - ok
10:33:56.0422 0x190c [ 92ABF534E992C61730C24F003BBE192A, 5F7D4A471A066B53460193B3D9FB7217B87ACDB342E4258404699424D36E9C8D ] C:\Windows\System32\dpapi.dll
10:33:56.0422 0x190c C:\Windows\System32\dpapi.dll - ok
10:33:56.0422 0x190c [ 1524579B894C9B99F42A695B86881254, F42AFBBD25B999D39526EAE376569BEE8ABE1E8AB74F308F3868563FAF652F15 ] C:\Windows\System32\apphelp.dll
10:33:56.0422 0x190c C:\Windows\System32\apphelp.dll - ok
10:33:56.0422 0x190c [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] C:\Windows\System32\drivers\luafv.sys
10:33:56.0422 0x190c C:\Windows\System32\drivers\luafv.sys - ok
10:33:56.0422 0x190c [ 2E3340A90140E1F0965DAD96C5B28A41, 4D4771F439A2D532C58A06F6DF81B4C4635E3FE438BDEC26173C0260B7267DB0 ] C:\Windows\System32\dwm.exe
10:33:56.0422 0x190c C:\Windows\System32\dwm.exe - ok
10:33:56.0422 0x190c [ A00B916CD6A67984257DC53052350219, C4D74E7038F28BF4DC4E22AF22E61CA5E74B85631FA709F6E9E04034FBA7B09C ] C:\Windows\System32\authui.dll
10:33:56.0422 0x190c C:\Windows\System32\authui.dll - ok
10:33:56.0438 0x190c [ 8C569B429D897647A26A83D9901D3225, 1C0634325661420E1A3E193463AA4CFBCDB763D68B1CE1CBD98B4E5ADD8070CE ] C:\Windows\System32\dwmredir.dll
10:33:56.0438 0x190c C:\Windows\System32\dwmredir.dll - ok
10:33:56.0438 0x190c [ 3710A8A7508B36AD96A97CE79E17403E, DD9807B58607825F1B4E13602B147B5FF6F3D72559136B718DB3B99D42D015F6 ] C:\Windows\System32\LogonUI.exe
10:33:56.0438 0x190c C:\Windows\System32\LogonUI.exe - ok
10:33:56.0438 0x190c [ 454978FB3D24DE5C4199162D5F81FBEE, ECE67CF7BFB6856CC3B332897B47C8C2E819AB1D682637019DFF5390F1F8D1B0 ] C:\Windows\System32\dwmcore.dll
10:33:56.0438 0x190c C:\Windows\System32\dwmcore.dll - ok
10:33:56.0438 0x190c [ F92B0E478C0FAA6D6661E6E977247E60, 8B26B57C2C60C98CD6273ACA126B2CD0356ADB13A59FEC12882357A6B973123C ] C:\Windows\System32\drivers\mbam.sys
10:33:56.0438 0x190c C:\Windows\System32\drivers\mbam.sys - ok
10:33:56.0438 0x190c [ C253B8484DCABB3EBE6D60E67CADB373, 681D29A4A6DD428D2013C82D41E302BB72BAD501E8C3F5E2A8E113E34E138C92 ] C:\Windows\System32\dcomp.dll
10:33:56.0438 0x190c C:\Windows\System32\dcomp.dll - ok
10:33:56.0438 0x190c [ 79EFAEE6FBD8ABC066B944E1A7A605BB, CA4418ECC10019CF060EC07A93FA3EEFE554EA14BE144203AEF612E4A64A6DE1 ] C:\Windows\System32\SHCore.dll
10:33:56.0438 0x190c C:\Windows\System32\SHCore.dll - ok
10:33:56.0438 0x190c [ 837F8649A2FE7880899711FAA25A2AE3, E178ABF12B4BF18DE71F7F5A69ED84CA737C30354EDFB5CAE68E222AC4307DCF ] C:\Windows\System32\dui70.dll
10:33:56.0438 0x190c C:\Windows\System32\dui70.dll - ok
10:33:56.0438 0x190c [ 9AEDEFFFE581D775E70C1C228CCD495E, F31C6DED1292A9392B83F9F557070543984AAB73718785B1C189752B34D4805B ] C:\Windows\System32\nvvsvc.exe
10:33:56.0438 0x190c C:\Windows\System32\nvvsvc.exe - ok
10:33:56.0438 0x190c [ B83C0950E4F89CE586C2D38BD50218C6, BE4DBAB4BA6D75C0BD3ECC8AEECAF3C40115B5294DCBDF7BBE7E382D92024072 ] C:\Windows\System32\WindowsCodecs.dll
10:33:56.0438 0x190c C:\Windows\System32\WindowsCodecs.dll - ok
10:33:56.0453 0x190c [ A6CB3CBF88DF671AC85FA9AABC33137F, 21F9A80C73BB5E1FA6C02389A96E279BA05DC18389A78AE0924D14BC0B6AF758 ] C:\Windows\System32\dwmapi.dll
10:33:56.0453 0x190c C:\Windows\System32\dwmapi.dll - ok
10:33:56.0453 0x190c [ 8721643ED5447F245762DF0A976AB87A, 4208D723A105B22229C7502CBB6803C7A67F6BB1798D74F7EBE33BF58B177495 ] C:\Windows\System32\wtsapi32.dll
10:33:56.0453 0x190c C:\Windows\System32\wtsapi32.dll - ok
10:33:56.0453 0x190c [ 37A1B06AB3493CB276195B7358A6A805, E175ACF33F519E21AD85CF2917AF7671D05F4F12EB5888D4B6EA82A58D3490C9 ] C:\Windows\System32\avrt.dll
10:33:56.0453 0x190c C:\Windows\System32\avrt.dll - ok
10:33:56.0453 0x190c [ 8E5C2B32EE4166A3084B133183A00F2A, B94A122E537FFDED0622AF1E002037AC33AF634390CCC4755E663CC404168CCB ] C:\Windows\System32\d3d11.dll
10:33:56.0453 0x190c C:\Windows\System32\d3d11.dll - ok
10:33:56.0453 0x190c [ 5FF3970FE7577088F1C01E6E6707598C, 5AD0FF53092F430C28CA4900F8ECBE892760439FFE7B038CDB29ADCDB5054BDE ] C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1\comctl32.dll
10:33:56.0453 0x190c C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1\comctl32.dll - ok
10:33:56.0453 0x190c [ 24358F9A86ADC86C59184E3FD027DB12, 4394DCAD10E72D3690C4E260071BE3762A6D7704D9AEB88C19D40C25B2C5E208 ] C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll
10:33:56.0453 0x190c C:\Program Files\NVIDIA Corporation\Display\nvxdbat.dll - ok
10:33:56.0453 0x190c [ CC59B18DEC31120F9957ABA55EC49FAC, B8B231D7C9A34B46007CC080DC09454F7EA05524DFF78FA40F7DD5E0ECAF9127 ] C:\Windows\System32\d3d10warp.dll
10:33:56.0453 0x190c C:\Windows\System32\d3d10warp.dll - ok
10:33:56.0453 0x190c [ 59EAFAE3A34B4925990A2E679CA91C5B, 794167ACA7D8CD9C4B11793F28936E8CA89BA88AF0D63E04A05A62BA21928BD8 ] C:\Windows\System32\dxgi.dll
10:33:56.0453 0x190c C:\Windows\System32\dxgi.dll - ok
10:33:56.0469 0x190c [ AD5CE4DBBBAFB82B728BA0548876C5B6, 09022AE357FFBD9F3DF7807BF57704AA8E71767E043E92DA06DB5FE828B3F26F ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
10:33:56.0469 0x190c C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe - ok
10:33:56.0469 0x190c [ 4C66C21B6244A09DD671485D67D13DB9, 842FA6DBE0B32D23E74E0A0165752C583C45A13D507208772A5A5ECD60DB9866 ] C:\Windows\System32\duser.dll
10:33:56.0469 0x190c C:\Windows\System32\duser.dll - ok
10:33:56.0469 0x190c [ A4E624F7658D08C1717542FA10E0A973, 5FBCC7B676D2175E02DB2CA0CC6B437328B854D6A544555CF5D2AE590A4C7AA5 ] C:\Windows\SysWOW64\ntdll.dll
10:33:56.0469 0x190c C:\Windows\SysWOW64\ntdll.dll - ok
10:33:56.0469 0x190c [ F7C72AB44A5D1760AAFFED35DF7E9706, 5C7DC3F80BF824C2B35841CC38A3B12AC9FB7220E7A091980718594BF63A1BDD ] C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
10:33:56.0469 0x190c C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe - ok
10:33:56.0469 0x190c [ 1169646AAD0239C23CCF9C46BA00B2D6, 1CD37D98AD15EB9BD161AC126DD663054449C0C9AF8280489C696B9787EA1D3C ] C:\Windows\System32\MMDevAPI.dll
10:33:56.0469 0x190c C:\Windows\System32\MMDevAPI.dll - ok
10:33:56.0469 0x190c [ 3F496A83C68F0E227D177A1A48882205, 708D0BB7E52DCF9DCA10E793A5698547C06165A7DF936D27B88D69362D9C02F1 ] C:\Windows\System32\nvd3dumx.dll
10:33:56.0469 0x190c C:\Windows\System32\nvd3dumx.dll - ok
10:33:56.0469 0x190c [ 933C63C9003379F56BA4AF4149440FC8, 5C29730AE7018D59789C846613A60817D9BC34FFDB0E9C8F94FC0D605FAE6DC1 ] C:\Windows\System32\SndVolSSO.dll
10:33:56.0469 0x190c C:\Windows\System32\SndVolSSO.dll - ok
10:33:56.0469 0x190c [ 595653478434F2A8451EDA55CD954CED, B81A6648827D60CC2CD856344988F22A5A8570A5789F85835AA65745949EA598 ] C:\Windows\SysWOW64\kernel32.dll
10:33:56.0469 0x190c C:\Windows\SysWOW64\kernel32.dll - ok
10:33:56.0469 0x190c [ B1C2856F8199A9386C22E8325BC34D87, 2BB32BCE899CA5D7E1EF40647B6C2ECB557F4E554DBB1D6E3CA9E2012CA081AD ] C:\Windows\System32\slc.dll
10:33:56.0469 0x190c C:\Windows\System32\slc.dll - ok
10:33:56.0485 0x190c [ 0C45853878FE4F2AAE87A400E206FE59, D50E34C0A580A21F4DF8A901BC9D637CD723A628D8898547A5743ED5A563C7C3 ] C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll
10:33:56.0485 0x190c C:\Program Files\NVIDIA Corporation\Display\nvxdapix.dll - ok
10:33:56.0485 0x190c [ 3B85C2DC57230C3EA71E2AF88EEB9DEC, 6CEF9EF6A02321C5968AA4560C376569E242A03BD0E68E8BA8E1BB842BA0C9E0 ] C:\Windows\System32\BCP47Langs.dll
10:33:56.0485 0x190c C:\Windows\System32\BCP47Langs.dll - ok
10:33:56.0485 0x190c [ C1D7228D5743995256A17D8225FDC704, B90360E706DECA71B418B2C1D61D99D47ACC26ECA94678035439C6EB902150DE ] C:\Windows\System32\sppc.dll
10:33:56.0485 0x190c C:\Windows\System32\sppc.dll - ok
10:33:56.0485 0x190c [ 24B30DB8D1F8CF0F8C1AAAE319BC508E, FBB1DF883EB653E8165AC414BFEC00FF52500B1F78420004BFAE1C2F917352B0 ] C:\Windows\SysWOW64\KernelBase.dll
10:33:56.0485 0x190c C:\Windows\SysWOW64\KernelBase.dll - ok
10:33:56.0485 0x190c [ 9E40FFA517B09471F681576CCC098AC4, B95E17672776EBFD8546B52CBF0EE0094AFD54B0400DA861169B81804420D089 ] C:\Windows\System32\nvsvc64.dll
10:33:56.0485 0x190c C:\Windows\System32\nvsvc64.dll - ok
10:33:56.0485 0x190c [ C500954647E81A00700D3767C2B3CC4B, C8B9BD1EF3BC4B9CC4DF9AC11752CDB750276DDF823F7FFD9791E182DEA821F1 ] C:\Windows\SysWOW64\setupapi.dll
10:33:56.0485 0x190c C:\Windows\SysWOW64\setupapi.dll - ok
10:33:56.0485 0x190c [ DB530B4C83DC2439EA2397613C841AF4, 8ACB4700FF1A9F195E70D2FDD7326425B6197F8CD322A712080423BD973E5AF5 ] C:\Windows\SysWOW64\version.dll
10:33:56.0485 0x190c C:\Windows\SysWOW64\version.dll - ok
10:33:56.0485 0x190c [ 2898E39D1E0CB9074C18988A2F8B73D3, D397C26A4216603D369E136ABF6A8EF714FC23A7CAAB03B6AF1E37BC52BC7425 ] C:\Windows\System32\SmartcardCredentialProvider.dll
10:33:56.0485 0x190c C:\Windows\System32\SmartcardCredentialProvider.dll - ok
10:33:56.0500 0x190c [ A39251FAE3189E1AE1F0DF0884D37E2A, 8A9A108621513F7F04BEA02F7A812618E283ADD8F0D2EECA8AF30CF1116DD6EB ] C:\Windows\SysWOW64\user32.dll
10:33:56.0500 0x190c C:\Windows\SysWOW64\user32.dll - ok
10:33:56.0500 0x190c [ CC8E86B9C18BCA38D3C467CFD661A466, 55FFB33541A2329FB72C6436488FB81E28EA8B0C2EB6CEAFA5CC4E5570D94238 ] C:\Windows\System32\DWrite.dll
10:33:56.0500 0x190c C:\Windows\System32\DWrite.dll - ok
10:33:56.0500 0x190c [ 503AA3DD9125F1462399D6B175217C9C, BB761EBD9453AEC5603876B44036F90C961F2A1900675E2E060BDC5EDDE9CB89 ] C:\Windows\System32\mscms.dll
10:33:56.0500 0x190c C:\Windows\System32\mscms.dll - ok
10:33:56.0500 0x190c [ 3B03178E65E6903328644E329B24D8B2, 5B951EF351DB32E3E3623992231ECC8DAB34171E28304916C5359D4710278EDE ] C:\Windows\System32\version.dll
10:33:56.0500 0x190c C:\Windows\System32\version.dll - ok
10:33:56.0500 0x190c [ 7DEAD28D8FB9BCAE4A153A57338315E7, 8FD71604C7DA571177BD46171D414FB16BEAE7C4AFFFA2401D67A1AE8EF4468E ] C:\Windows\System32\winmm.dll
10:33:56.0500 0x190c C:\Windows\System32\winmm.dll - ok
10:33:56.0500 0x190c [ DBC4D46A7DDC14D1D1ED4B613F9E41A4, 2BDFEBD13152A9CF762534D5EB0D92B24413E9C1007056FCA6200B6349501B6E ] C:\Windows\SysWOW64\gdi32.dll
10:33:56.0500 0x190c C:\Windows\SysWOW64\gdi32.dll - ok
10:33:56.0500 0x190c [ 311BE1E8DDAC6E7DD77F00AF1A6F8377, FE37DCE2B3968F042C3D1B76A51209BE21718904ECBBB77AC1619E0D76280387 ] C:\Program Files\NVIDIA Corporation\Display\nvui.dll
10:33:56.0500 0x190c C:\Program Files\NVIDIA Corporation\Display\nvui.dll - ok
10:33:56.0500 0x190c [ 766B12FB02BD1E5D0BBA9488E091EE6D, 1F4FCABB403200447D2D41184612A2FC4D645436BFAE2C05D4B96C2CC320CE1A ] C:\Windows\System32\BioCredProv.dll
10:33:56.0500 0x190c C:\Windows\System32\BioCredProv.dll - ok
10:33:56.0500 0x190c [ D381B446466B468D27BF23A7A372D205, 833DABCC53EDE71667C7EE24AC63DB759D8B3DD878B034CEBDCEF1F2EF7BAE31 ] C:\Windows\System32\cngcredui.dll
10:33:56.0500 0x190c C:\Windows\System32\cngcredui.dll - ok
10:33:56.0516 0x190c [ 6A5C1EA6E0B31B168FDE21A1FDC078C2, 7DB716456F61905F9D038FA0E518E9C416614A3F7ED990308BF6F899376FB8D2 ] C:\Windows\System32\msimg32.dll
10:33:56.0516 0x190c C:\Windows\System32\msimg32.dll - ok
10:33:56.0516 0x190c [ E16EA152C77A48A809F1176FF4BDFB30, 25DADB3AD06C1CFE82171FA1940FD2172B591A08ADEA6CAE9E3C555820F153D1 ] C:\Windows\System32\nvapi64.dll
10:33:56.0516 0x190c C:\Windows\System32\nvapi64.dll - ok
10:33:56.0516 0x190c [ E521CCD352373B1825BEA80DEC2B7D97, CFA01810D4531A07BD9749DBCA34634DA749B846887315D26671CBA53B8D12A4 ] C:\Windows\System32\oleacc.dll
10:33:56.0516 0x190c C:\Windows\System32\oleacc.dll - ok
10:33:56.0516 0x190c [ 9D50C0B29FB20DF0A8FD197B332894B7, A183474F67522C59CFD511473B8DF219624AD2FCD310B0C36E45D48CC074EBBA ] C:\Windows\System32\winmmbase.dll
10:33:56.0516 0x190c C:\Windows\System32\winmmbase.dll - ok
10:33:56.0516 0x190c [ 421D685787762BBAE821159279B3000C, 536A851E1D24F6468F6313830AB91AC4991129F8691F01606A7AE553CEF7CF7D ] C:\Windows\SysWOW64\advapi32.dll
10:33:56.0516 0x190c C:\Windows\SysWOW64\advapi32.dll - ok
10:33:56.0516 0x190c [ 9DB8537C03BE40548968C445FC595753, 31BDE2BD41364DAB244C4A8143EB923C255C207190538DF1CC565C70739EA293 ] C:\Windows\SysWOW64\oleaut32.dll
10:33:56.0516 0x190c C:\Windows\SysWOW64\oleaut32.dll - ok
10:33:56.0516 0x190c [ 9D75171689317D82FBF8B155FCF34AE8, 1604BD5C018DE989B0A2313453A34CB10F70B6588454A056F99CA227AB936DE5 ] C:\Windows\SysWOW64\winspool.drv
10:33:56.0516 0x190c C:\Windows\SysWOW64\winspool.drv - ok
10:33:56.0516 0x190c [ 8BDD004DC92D09CCD1F3922C59983019, 4471FD9A339D3AEB51BE33BC176E8BA10E5B3FC6E3C375C36FCC650D78D1C58E ] C:\Windows\System32\winbio.dll
10:33:56.0516 0x190c C:\Windows\System32\winbio.dll - ok
10:33:56.0516 0x190c [ 6EBA4AA97BA64CEB363C1C8CE12214F9, 8DFCEF622E810C3AC2C3B0CED1303E18E3FB745460572B24722E556A5BE4E68F ] C:\Windows\SysWOW64\msvcrt.dll
10:33:56.0516 0x190c C:\Windows\SysWOW64\msvcrt.dll - ok
10:33:56.0531 0x190c [ F3C88687207F4F75773D288A6D4B61F7, D71AA9E00EE120FF8659770776405B3F15EAA0FC39E0D5834DFD88A621F14361 ] C:\Windows\System32\certCredProvider.dll
10:33:56.0531 0x190c C:\Windows\System32\certCredProvider.dll - ok
10:33:56.0531 0x190c [ A56878CE81935A6E3269C1B1669F9354, 03E2544B3ED333FC735E2F49118BDA4F2DB2FA1E2AFCA58E344C970173F6A511 ] C:\Windows\SysWOW64\cfgmgr32.dll
10:33:56.0531 0x190c C:\Windows\SysWOW64\cfgmgr32.dll - ok
10:33:56.0531 0x190c [ 119CE6CF93183EB144F5EA9A4A5A6AB3, A396903C90712CA8125D56AE690E36593EFEE6B7D9BE4B351CE36A3AD503FEA8 ] C:\Windows\System32\rasplap.dll
10:33:56.0531 0x190c C:\Windows\System32\rasplap.dll - ok
10:33:56.0531 0x190c [ A956CC9503FD75F2372A6B673E1C07B2, 334D9180357E6BF209C16BA680AB691B09DB36CF58EA4320DFC46946F6A9D94E ] C:\Windows\System32\UIAnimation.dll
10:33:56.0531 0x190c C:\Windows\System32\UIAnimation.dll - ok
10:33:56.0531 0x190c [ 629152E8745B63E63978FD1848ABC7AE, 62C104E98908100535DF7888DF17B9AEEC675D799DDC6141D0761097C311D596 ] C:\Windows\System32\wlidcredprov.dll
10:33:56.0531 0x190c C:\Windows\System32\wlidcredprov.dll - ok
10:33:56.0531 0x190c [ 128EC9879D462F89829E663417FE5DBD, 674FE1F81347045DD0731567D168A38873BC7435A48B4DFAF1879B03DEE09246 ] C:\Windows\SysWOW64\rpcrt4.dll
10:33:56.0531 0x190c C:\Windows\SysWOW64\rpcrt4.dll - ok
10:33:56.0531 0x190c [ 3503F1397CB9BEE0D9684A7CA4C1C315, A2F786D75653A46ED086A83CC85941DEA72F7F814325A9891F4420521BFED45D ] C:\Windows\SysWOW64\sechost.dll
10:33:56.0531 0x190c C:\Windows\SysWOW64\sechost.dll - ok
10:33:56.0531 0x190c [ C857FDBEB29D4043EC8CB7CABCD1DF30, 10C865E10DC1A10532912AB3FFD0E11FA114FF2026DC898043B9D9566265DA9E ] C:\Windows\System32\nvcpl.dll
10:33:56.0531 0x190c C:\Windows\System32\nvcpl.dll - ok
10:33:56.0547 0x190c [ 7C75BF2879AEAD311DAE25CB5F1A2C83, 9C25E41BADF1E2D216ADB29B75B8790AC4E4DFB1F631C416762FA2FCE52D1C1F ] C:\Windows\System32\rasapi32.dll
10:33:56.0547 0x190c C:\Windows\System32\rasapi32.dll - ok
10:33:56.0547 0x190c [ D47C2645C635D42AE5C1F5B2644EA093, 8D6D0F178793EE4004C3A70F0572BCAE8B33DFFA885E56CC5EC024EA63C190F8 ] C:\Windows\SysWOW64\combase.dll
10:33:56.0547 0x190c C:\Windows\SysWOW64\combase.dll - ok
10:33:56.0547 0x190c [ 9FB85E37238FEA836E5E6779A93DA461, 9CFBC92BB5C730AB194EC18A993640FD62F2FE3503D16B77C055242C7B84B800 ] C:\Windows\System32\rasman.dll
10:33:56.0547 0x190c C:\Windows\System32\rasman.dll - ok
10:33:56.0547 0x190c [ 950E87673E2AE1A536869BCC4E711D67, 1EE759FD810A3D199CF069454069D34522AE6AB332741E4F680CCF80A3AF9ED3 ] C:\Windows\System32\rtutils.dll
10:33:56.0547 0x190c C:\Windows\System32\rtutils.dll - ok
10:33:56.0547 0x190c [ F19F4DF5361132D5E19FBE1A0DCDC80B, 9B70F73A3D2DEECB0AEC541DFE2E61299691350633A43A0FDE724717E2713289 ] C:\Windows\SysWOW64\bcryptprimitives.dll
10:33:56.0547 0x190c C:\Windows\SysWOW64\bcryptprimitives.dll - ok
10:33:56.0547 0x190c [ C70E652B7D507AAB25208E1602B29B89, AF903E8815CD60A23C9F91BF071A263D7B5D3202576AB92CFC30429F379DA947 ] C:\Windows\SysWOW64\cryptbase.dll
10:33:56.0547 0x190c C:\Windows\SysWOW64\cryptbase.dll - ok
10:33:56.0547 0x190c [ 1CF1F62F2484C996DFB99D511E18D662, F807C9B5F39F4A00101C411657DB585B5571E89D9D1B34EBEC757237E886BB9C ] C:\Windows\SysWOW64\sspicli.dll
10:33:56.0547 0x190c C:\Windows\SysWOW64\sspicli.dll - ok
10:33:56.0547 0x190c [ 57CA7105857B8B0E3D9731FBF7226B5D, 150F3177F283D5AB716F0BB7D0490E8982AEE942A5BF9E8CCB144BDA60C78C53 ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstres.dll
10:33:56.0547 0x190c C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvstres.dll - ok
10:33:56.0563 0x190c [ 1A5835F2E6B49A83F0AEAD17B4537AF7, 8B2E67949305E27925595BD376B39AFBA755BF70BAB92518D2B041FF95BF85A0 ] C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9600.17227_none_932c0e57474f5080\GdiPlus.dll
10:33:56.0563 0x190c C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9600.17227_none_932c0e57474f5080\GdiPlus.dll - ok
10:33:56.0563 0x190c [ A74E2CC4004497A1480AECD8DFAD5DD5, C8A62F263A50963C277764984FA383587B6CF31449BA8CA1CDBAF304C2637CD9 ] C:\Windows\System32\nvwgf2umx.dll
10:33:56.0563 0x190c C:\Windows\System32\nvwgf2umx.dll - ok
10:33:56.0563 0x190c [ 5B6B32E83E371739B13AA67E260DC5C4, 7753D23EC6F6EFF2798D0BDB669D2DF250002C4845C13382DE329C6EBB921B18 ] C:\Windows\System32\winspool.drv
10:33:56.0563 0x190c C:\Windows\System32\winspool.drv - ok
10:33:56.0563 0x190c [ D58F43B801053A22BB5D83335CB4D7E2, B6451FB76566C5C6D868C967CDF2FCF93BEF81DD640C56F9CC53E36CF91AC9B0 ] C:\Windows\System32\nvumdshimx.dll
10:33:56.0563 0x190c C:\Windows\System32\nvumdshimx.dll - ok
10:33:56.0563 0x190c [ 9860C19010CFB3F70DC6EDAEB1F1A5E2, 9551D542B1F9398C468157BA0633072BEB339EC0955D1088F0F909769B03DA86 ] C:\Windows\System32\wevtsvc.dll
10:33:56.0563 0x190c C:\Windows\System32\wevtsvc.dll - ok
10:33:56.0563 0x190c [ 091E116DAD9B11B636C763242CFDB8DB, EE65B13FF9AAB08C9BD8AF777A022C2DB85F9ACE71BE8B6B232851E2F50BC71E ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvwl.dll
10:33:56.0563 0x190c C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvwl.dll - ok
10:33:56.0563 0x190c [ B315676EA4F826B0FB8335C0BB956322, F2563170FA1A2DF65D63D8238093000CD960D93CF956F1EE48BEEBF94D2AA855 ] C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll
10:33:56.0563 0x190c C:\Program Files\NVIDIA Corporation\Display\nvxdplcy.dll - ok
10:33:56.0563 0x190c [ E494AC90229C06ADB8ACC8D20A3F27CB, 2DDBA644739D3FC43C2444C104452E992B0D3FD6E3E2DB36C9496BEF52E8E6E0 ] C:\Windows\SysWOW64\devobj.dll
10:33:56.0563 0x190c C:\Windows\SysWOW64\devobj.dll - ok
10:33:56.0563 0x190c [ 619C6E72B8433B3F67738F7E6C972A96, 2EF5F3D8E768CA2654AD004AD91818B4181BD7E77B8AC96E007C9CC9E01E39EF ] C:\Windows\SysWOW64\wintrust.dll
10:33:56.0563 0x190c C:\Windows\SysWOW64\wintrust.dll - ok
10:33:56.0578 0x190c [ 9FAC7693213C54B25D0DC48BC20686CF, 9C9485DA86EED0399A5E91EE8C687C442435C97B239424983E76E201DDF852F7 ] C:\Windows\SysWOW64\crypt32.dll
10:33:56.0578 0x190c C:\Windows\SysWOW64\crypt32.dll - ok
10:33:56.0578 0x190c [ 070B4DE2729515E9F22E4AAFD7B2497C, 1353572251F10FAA92B586D5B483BD3684B86AA2292EF0D180B2E84910914624 ] C:\Windows\System32\ntmarta.dll
10:33:56.0578 0x190c C:\Windows\System32\ntmarta.dll - ok
10:33:56.0578 0x190c [ EF1F8B57323E5D3FC6A0A25F98F90DBC, F50E81151604DCD59BB647FD6767C1631AE48B5FCA6D3423C4E32535C94D6369 ] C:\Windows\System32\profsvc.dll
10:33:56.0578 0x190c C:\Windows\System32\profsvc.dll - ok
10:33:56.0578 0x190c [ 8685F31A9319FB0FA882C736783F5F5E, D772A7FEAEBC794B403EAB98C7E816DDE87A1C1F4AA7B756AA64DF117BD18085 ] C:\Windows\SysWOW64\msasn1.dll
10:33:56.0578 0x190c C:\Windows\SysWOW64\msasn1.dll - ok
10:33:56.0578 0x190c [ D6AE16663985EA7E81E17A1A810AC547, 550A0A765765BC3FDDDD5504FB6BA0159ED459541181F24FF7E9A5926E50621E ] C:\Windows\SysWOW64\ntmarta.dll
10:33:56.0578 0x190c C:\Windows\SysWOW64\ntmarta.dll - ok
10:33:56.0578 0x190c [ 69DB09F0263C637DA8568D404842466A, D042194266978AAD31E04DAF7018CD50754077212DC74A4D8AFF6BFEE80CDD20 ] C:\Windows\System32\gpsvc.dll
10:33:56.0578 0x190c C:\Windows\System32\gpsvc.dll - ok
10:33:56.0578 0x190c [ C3C9B251ABFA347AA454B6AA17068FA1, 1909A393E1CB19FEE787095C3BAAEBF202BEADCEE40EF0BE4A5D9319A35179E3 ] C:\Windows\SysWOW64\devrtl.dll
10:33:56.0578 0x190c C:\Windows\SysWOW64\devrtl.dll - ok
10:33:56.0578 0x190c [ 835D33D2EF07743028475486D0BA5696, 763BAD8395CDC537DE7B4A821117218187CC669410DFDDFB95C6759F32EBBE4F ] C:\Windows\System32\wevtapi.dll
10:33:56.0578 0x190c C:\Windows\System32\wevtapi.dll - ok
10:33:56.0578 0x190c [ 3756673BBCC51FF8D38B196B8E3DE209, BE88B53C515C2A7B1DC99983E9D314D87236924F45318E1EF9613B63BBDA1CC2 ] C:\Windows\SysWOW64\drvstore.dll
10:33:56.0578 0x190c C:\Windows\SysWOW64\drvstore.dll - ok
10:33:56.0594 0x190c [ 1A80F26049065554ABB056B7BF599B27, CA7A7FACD985BAA9FEAA99DD6883EC673CE375DA88BDF1C8BE657223FDF637AB ] C:\Windows\SysWOW64\SPInf.dll
10:33:56.0594 0x190c C:\Windows\SysWOW64\SPInf.dll - ok
10:33:56.0594 0x190c [ E5DFD54D2DAA70738F581D1AC74C09CD, A07F817EE75AA84A60290A4074DE059CA891E9E4932972531A1771BBA69A103E ] C:\Windows\System32\nlaapi.dll
10:33:56.0594 0x190c C:\Windows\System32\nlaapi.dll - ok
10:33:56.0594 0x190c [ 05FBE1F7C13E87AF7A414CDF288B1F62, 24079E1A6B2E33A1A8E76A77F73473B93DD6B379E44C982CE50D6CEED9747838 ] C:\Windows\System32\themeservice.dll
10:33:56.0594 0x190c C:\Windows\System32\themeservice.dll - ok
10:33:56.0594 0x190c [ 0341F92E52A8FF814671761179C103FB, 49037E34D4B572CAB85BBF29330D3DA188D1FBA65FA5E41728B47D1DD2206804 ] C:\Windows\System32\dsrole.dll
10:33:56.0594 0x190c C:\Windows\System32\dsrole.dll - ok
10:33:56.0594 0x190c [ BA25717D6694B6C472129AD93893A03D, 28F38C38914E093CC7BDF720E358D9F9D8E518CA16CAF69A60CBB4807D2C672B ] C:\Windows\System32\netapi32.dll
10:33:56.0594 0x190c C:\Windows\System32\netapi32.dll - ok
10:33:56.0594 0x190c [ A5F79CC03396AAC79F79C1368DA08A95, 5488DB19AADA6E711958A4FFF88AAE608DF27FCAF01058B5EC46AE76C9A10176 ] C:\Windows\System32\ntdsapi.dll
10:33:56.0594 0x190c C:\Windows\System32\ntdsapi.dll - ok
10:33:56.0594 0x190c [ C77D967840F17DED03DA4BA9D3C40FDB, 53A2FFFD3060E000537963B3CBF7D38BD296137011F88A83804E39AA0ACF980A ] C:\Windows\System32\profsvcext.dll
10:33:56.0594 0x190c C:\Windows\System32\profsvcext.dll - ok
10:33:56.0594 0x190c [ D60F99ECBFCE0C01BE4C5B06E09435DB, F45B7C70F23DF412E721FD50CF0197CA73A082A051B231C5D07929A346A07589 ] C:\Windows\System32\atl.dll
10:33:56.0594 0x190c C:\Windows\System32\atl.dll - ok
10:33:56.0610 0x190c [ F71E12EBA575EBD58B499BC7C39D0CD0, 47B384EAB195C13C07CC56CA9245CD90F2C27C846F5DB4C97D3466304A75CE70 ] C:\Windows\System32\wkscli.dll
10:33:56.0610 0x190c C:\Windows\System32\wkscli.dll - ok
10:33:56.0610 0x190c [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3, 5264734F0572FAEDCCB008221C9982CCB7922C4FFC358605424EA413CDCDAE99 ] C:\Windows\System32\es.dll
10:33:56.0610 0x190c C:\Windows\System32\es.dll - ok
10:33:56.0610 0x190c [ 5E47B467A1CD51943C370BF781E1A4F1, 17B679389382129E6E1193F2FD3C236B5FA6EE8B5621219D54A859476116B8DD ] C:\Windows\System32\taskschd.dll
10:33:56.0610 0x190c C:\Windows\System32\taskschd.dll - ok
10:33:56.0610 0x190c [ A88882E64BDC1D8E8D6E727B71CCCC53, 12D2235F54D0CEEED8AA268C17CDE44020269F4FEFC70CE957DBBF99AF7F553D ] C:\Windows\System32\Sens.dll
10:33:56.0610 0x190c C:\Windows\System32\Sens.dll - ok
10:33:56.0610 0x190c [ 29193D5E1A4BFADDBE2A0AB1E20C9166, 7E667B6F44F3B2B83BB8280729BBAE70E9E26F20AC150717544B12D03DB335A5 ] C:\Program Files\IDT\WDM\stacsv64.exe
10:33:56.0610 0x190c C:\Program Files\IDT\WDM\stacsv64.exe - ok
10:33:56.0610 0x190c [ 886767FD022213F7885416134E9082E5, E248D82210FBEBF62C23EBEC74A976B2D1A4E62D3B7638D95B2574B77BA05DD0 ] C:\Windows\System32\AudioEndpointBuilder.dll
10:33:56.0610 0x190c C:\Windows\System32\AudioEndpointBuilder.dll - ok
10:33:56.0610 0x190c [ 3FA6DC6B29717E32E211C1FD821F2C75, E467F3775427C93CC2B87327B0A45669631A5FC460C558F6796BA26002A8BBFC ] C:\Windows\System32\FntCache.dll
10:33:56.0610 0x190c C:\Windows\System32\FntCache.dll - ok
10:33:56.0610 0x190c [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] C:\Windows\System32\mmcss.dll
10:33:56.0610 0x190c C:\Windows\System32\mmcss.dll - ok
10:33:56.0610 0x190c [ 5F540AD6674AEFD64C1051648FF87DE3, BA4935185BD57AD6FB975F50AA49E8B6826A60DBCF1E3CB583582FC0BA09B503 ] C:\Windows\System32\dsound.dll
10:33:56.0610 0x190c C:\Windows\System32\dsound.dll - ok
10:33:56.0625 0x190c [ 8B952D9F7E5E6452ED3727C2F062E403, EEE0D1ACA821C0B3A75F7C8C562470CE53E083B36CF3ACE3DFD631631EFDABA0 ] C:\Windows\System32\nvspcap64.dll
10:33:56.0625 0x190c C:\Windows\System32\nvspcap64.dll - ok
10:33:56.0625 0x190c [ CA2609BC131CE1CB126619F8CBE3BF58, 62F29F1CA6C80B35EC95FF14E0291FD7E9A1C90625075552ACF5FF296CCA7C2A ] C:\Windows\System32\stapi64.dll
10:33:56.0625 0x190c C:\Windows\System32\stapi64.dll - ok
10:33:56.0625 0x190c [ F6D7EA7A1C30B8C51FA0AEC2F4F54BDE, F4A30A220D4C3BC1B5587E86C0692F6BDE3DB4E8D956E8D519E3A0F0B2C0901B ] C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll
10:33:56.0625 0x190c C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPI64.dll - ok
10:33:56.0625 0x190c [ 4B46C2268F2CA76A9C477943DB9038D2, FE1E30E6E7BE87D1C8F23CD74AED6857891B343FA4C0454270C78602304631BB ] C:\Program Files\IDT\WDM\SRCOM64.dll
10:33:56.0625 0x190c C:\Program Files\IDT\WDM\SRCOM64.dll - ok
10:33:56.0625 0x190c [ 1547E5B7D2EF477D422EBE0FE58508CC, 3EC11F4414C6C856972D654DB2627037AAF37F010C81B6E4612C2035C6EDD5B7 ] C:\Windows\System32\AuthExt.dll
10:33:56.0625 0x190c C:\Windows\System32\AuthExt.dll - ok
10:33:56.0625 0x190c [ 00CD1254837739E310505EBCB19F7971, 6629B861898EA9135DDA9BB299F557C025399F58A7C1A498F0F57C90D580A32E ] C:\Windows\System32\uDWM.dll
10:33:56.0625 0x190c C:\Windows\System32\uDWM.dll - ok
10:33:56.0625 0x190c [ 61E9834E1CA04DB74F0053BD8AE67BFC, 5623E63A40CFA9913FA0B0F0DF2DEC2F621B96480D575C47B821AE0D4103BC53 ] C:\Windows\System32\winbrand.dll
10:33:56.0625 0x190c C:\Windows\System32\winbrand.dll - ok
10:33:56.0625 0x190c [ 2ECA23663D13100032E09062C743C70D, 591DC05B54F1437C6F214FFFCF9CCA725D541C11C2AECC50E137D88FD297A416 ] C:\Windows\System32\propsys.dll
10:33:56.0625 0x190c C:\Windows\System32\propsys.dll - ok
10:33:56.0625 0x190c [ F4E351BB95D473CB55BB7C1A1FEB2798, 5786F72B8147845A8852A667316D61B2918997386600C7E578F0BDC2802B1FAD ] C:\Windows\System32\AudioSes.dll
10:33:56.0625 0x190c C:\Windows\System32\AudioSes.dll - ok
10:33:56.0641 0x190c [ EC2DB85DD72A3506D60B428A36F5E27E, 1E3DD6DD0DF3737E0207569A11F3AC9CDEB0A2D13EF4737E69F526EF1A00D91B ] C:\Windows\System32\NetworkStatus.dll
10:33:56.0641 0x190c C:\Windows\System32\NetworkStatus.dll - ok
10:33:56.0641 0x190c [ B8C9BC3542EDA9DB99B95543555877BC, AA812707DCCAAF172C6348FF4EBB93375AE40D0CE478651FFB3C44682FED191A ] C:\Windows\System32\samlib.dll
10:33:56.0641 0x190c C:\Windows\System32\samlib.dll - ok
10:33:56.0641 0x190c [ 1CE1F2BBF92DF79CF8638FDA04DB4F10, FBE8183204175B892DF543A0CC9296FE91C281E818CE9C343C6B16F4E6BEA006 ] C:\Windows\System32\shacct.dll
10:33:56.0641 0x190c C:\Windows\System32\shacct.dll - ok
10:33:56.0641 0x190c [ 053472337FDD116BD010C88DB0C34DF1, 970D80D6C67A9D66AF03D1223AE663C205484232C22A482584C55AB1E1BC49D4 ] C:\Windows\System32\d2d1.dll
10:33:56.0641 0x190c C:\Windows\System32\d2d1.dll - ok
10:33:56.0641 0x190c [ 8CF4AE81A247E1F6103FD1635C8816AF, 7C4CF85F036C404F8D3D09AE1EF01C0B3FE6FC68D60495CBB4A272A743261F0E ] C:\Windows\System32\InputSwitch.dll
10:33:56.0641 0x190c C:\Windows\System32\InputSwitch.dll - ok
10:33:56.0641 0x190c [ 5EC234995AFB7356A8B1A22C9244F243, 28B890FD933638C110DD227CABA929795DA148964E3D7201A10E1B4DD48F3B85 ] C:\Windows\System32\wuaext.dll
10:33:56.0641 0x190c C:\Windows\System32\wuaext.dll - ok
10:33:56.0641 0x190c [ 9543FE667E9709640F1D9852BCF97A17, 3EF13E6A9E551AAF552A54CB2347CCD9C42099B941794F4AC9D2DFD9DFBBEEDC ] C:\Windows\System32\xmllite.dll
10:33:56.0641 0x190c C:\Windows\System32\xmllite.dll - ok
10:33:56.0641 0x190c [ 79B134ECE836B406B212E28C24011538, 1B875DD23CCAD8A2759DCDBCDCF3DE14231B9DB5EEC8E84FE081E41A52A047A1 ] C:\Windows\System32\audiosrv.dll
10:33:56.0641 0x190c C:\Windows\System32\audiosrv.dll - ok
10:33:56.0641 0x190c [ F22BC2C1BD805F874540B7595F0C804D, C4AF63DC87DA9CC642C6E4942B77C081625FB4C1D7C3D5E7228DC4704E38643D ] C:\Windows\System32\IDStore.dll
10:33:56.0641 0x190c C:\Windows\System32\IDStore.dll - ok
10:33:56.0656 0x190c [ 8420491FFA891600A88FD12F5059A54C, 7A8750A5827198168BC6B92E9CA3AD6CA1F4498764094302A7714B265DE84A58 ] C:\Windows\System32\ksuser.dll
10:33:56.0656 0x190c C:\Windows\System32\ksuser.dll - ok
10:33:56.0656 0x190c [ 46E0F92B51247ECCE5A837D613517182, CC45C388704E0D55C559AF9C79605B60820CA0A40B758B2B85B0D87CBD0D8845 ] C:\Windows\System32\samcli.dll
10:33:56.0656 0x190c C:\Windows\System32\samcli.dll - ok
10:33:56.0656 0x190c [ 3BC1D1D56637A32CD91C8AE08E2484AA, 9EE1BD3FB0D289E25F3DDD0D8F67DC1C701A6B1D5418FADF348D0E642B1DEBEB ] C:\Windows\System32\wbiosrvc.dll
10:33:56.0656 0x190c C:\Windows\System32\wbiosrvc.dll - ok
10:33:56.0656 0x190c [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] C:\Windows\System32\drivers\lltdio.sys
10:33:56.0656 0x190c C:\Windows\System32\drivers\lltdio.sys - ok
10:33:56.0656 0x190c [ 26ACA481FAFEC59FE311D719E3027BBA, 16A24CCA95A38BDFE970580159F6ACAA13FF1B74CF2290B1B020D909F90D3347 ] C:\Windows\System32\drivers\nwifi.sys
10:33:56.0656 0x190c C:\Windows\System32\drivers\nwifi.sys - ok
10:33:56.0656 0x190c [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] C:\Windows\System32\drivers\ndisuio.sys
10:33:56.0656 0x190c C:\Windows\System32\drivers\ndisuio.sys - ok
10:33:56.0656 0x190c [ 1CD1B2F038D2697EA7AA7127551ED429, 60AA0E874929ED13E305FB51345C48AE0058C0DDC900F0007B7CAC8AD9FBA88F ] C:\Windows\System32\wlidres.dll
10:33:56.0656 0x190c C:\Windows\System32\wlidres.dll - ok
10:33:56.0656 0x190c [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] C:\Windows\System32\drivers\rspndr.sys
10:33:56.0656 0x190c C:\Windows\System32\drivers\rspndr.sys - ok
10:33:56.0672 0x190c [ 0D12F606DE18A5739AF27F12A32C6A6E, 5F2231EDB58B3C81BC85CC94807D0DA4235034DD89C429EABE5DF540AA9100BC ] C:\Windows\System32\IPHLPAPI.DLL
10:33:56.0672 0x190c C:\Windows\System32\IPHLPAPI.DLL - ok
10:33:56.0672 0x190c [ D113FAD71A5E67AA94B32A0F8828D265, 08DDB4BBDB570C59926DBF5E27FCF46DCDF8B8212BB9251E97837E0504516FB3 ] C:\Windows\System32\lmhsvc.dll
10:33:56.0672 0x190c C:\Windows\System32\lmhsvc.dll - ok
10:33:56.0672 0x190c [ DB9657253BD51C172B3262B9CD5463F3, DCD61909A2A875E721EDBF312A1814D00B49F868F169396767E9FD2FA177991C ] C:\Windows\System32\nrpsrv.dll
10:33:56.0672 0x190c C:\Windows\System32\nrpsrv.dll - ok
10:33:56.0672 0x190c [ 6E2271ED0C3E95B8E29F3752B91B9E84, 44026AD9757EA82967D7F7578455802FAD7FE0057EAC088E0AE207C15F594B86 ] C:\Windows\System32\nsisvc.dll
10:33:56.0672 0x190c C:\Windows\System32\nsisvc.dll - ok
10:33:56.0672 0x190c [ 05DE04005CE0D84D0E6AD21CAEB369C6, E6704A2A685BCFD560796D7C328F8E53DF0793DBDA590598A492D9070D109298 ] C:\Windows\System32\dhcpcore.dll
10:33:56.0672 0x190c C:\Windows\System32\dhcpcore.dll - ok
10:33:56.0672 0x190c [ A07CFC4B593D15B6BF06813C3B5B33BF, B57BD918E2AFF9943B51A24B95E0C4D3482B4DF73C0E2421E8CC67C2BC7A4C70 ] C:\Windows\System32\wcmsvc.dll
10:33:56.0672 0x190c C:\Windows\System32\wcmsvc.dll - ok
10:33:56.0672 0x190c [ FD9683552D97156E0C5B948BDABA2569, 5BB19966FAA3C5F786DBCC9F8416182BD865851906122AB84FF572E38AA8881F ] C:\Windows\System32\winnsi.dll
10:33:56.0672 0x190c C:\Windows\System32\winnsi.dll - ok
10:33:56.0672 0x190c [ 10AC9494ECE22A2362E4E4D98C528D01, 2EE119EBF734BE266238CC7A016BF62D39D9417CCB2A10543CFA346ADE7F4729 ] C:\Windows\System32\dhcpcore6.dll
10:33:56.0672 0x190c C:\Windows\System32\dhcpcore6.dll - ok
10:33:56.0672 0x190c [ 2B1C2CB5C97962C521CD806F0C86D2FE, CDBC97A442EBDA6883603AE9162F354AFCE6AE3D21809BA516521B25872AEFCC ] C:\Windows\System32\wcmcsp.dll
10:33:56.0672 0x190c C:\Windows\System32\wcmcsp.dll - ok
10:33:56.0688 0x190c [ 11C2A9D3D34632FC17EF8B3411AA972B, 279261AF81308E7A256EC7A0F5E6511218697EA451425020AAF6DA459172BD0A ] C:\Windows\System32\Windows.UI.Immersive.dll
10:33:56.0688 0x190c C:\Windows\System32\Windows.UI.Immersive.dll - ok
10:33:56.0688 0x190c [ E475BEF9B460F4F678972F88C5FF50D2, 4437CA70280C5C41DF29B684AF2500D98FBBE28B225DF9C84428916BA0130B5F ] C:\Windows\System32\wmiclnt.dll
10:33:56.0688 0x190c C:\Windows\System32\wmiclnt.dll - ok
10:33:56.0688 0x190c [ FE7656474448BE6A6C68E5C9BEB7CA94, 8B9F04CAA29A6EEFCA3D1E7BAFE340D5CCA8AF665474E69B1DF7E2A518B83A89 ] C:\Windows\System32\dnsrslvr.dll
10:33:56.0688 0x190c C:\Windows\System32\dnsrslvr.dll - ok
10:33:56.0688 0x190c [ 5ABA673EF6433BE68AAE77AE5C5FAFAA, EDD85F776957D1FAB93F27F27A2D60924C423E3EA161A5258F27FABCC6B45CF3 ] C:\Windows\System32\FWPUCLNT.DLL
10:33:56.0688 0x190c C:\Windows\System32\FWPUCLNT.DLL - ok
10:33:56.0688 0x190c [ 3F5EF31C6AA204B099EE76497DF80A26, CBE648A4E7E1D98A3D8C72582C1CB3C2FD2329EAA24EE4DCAD271AAA6F4D82CE ] C:\Windows\System32\wlansvc.dll
10:33:56.0688 0x190c C:\Windows\System32\wlansvc.dll - ok
10:33:56.0688 0x190c [ 7E1EBDB3424337ABB553F249A7811D94, D2C6797AD4753DEDA738F1F30191CCA0A5E00CB84E4D382B3226C54CBE66A192 ] C:\Windows\System32\dhcpcsvc.dll
10:33:56.0688 0x190c C:\Windows\System32\dhcpcsvc.dll - ok
10:33:56.0688 0x190c [ D3883FBCA97D10C8A39632D6CDDC6E85, E7DF51E73B79CC142CB247AF44F09A6F40E02FF668C70E4C1046E84356D01333 ] C:\Windows\System32\dhcpcsvc6.dll
10:33:56.0688 0x190c C:\Windows\System32\dhcpcsvc6.dll - ok
10:33:56.0688 0x190c [ 8D25DE2AC85BC807DC19D4DAF6AA6D27, CB6238AB8AC9DDDF7170511C6E512FF134E9E79831F58BCB670DE327F70D0AD8 ] C:\Windows\System32\dnsext.dll
10:33:56.0688 0x190c C:\Windows\System32\dnsext.dll - ok
10:33:56.0688 0x190c [ 03CC7C6D00212DF6D6CB5C93432410ED, C8ED6DAB3F69A4993AD41E40742E6ECBB848CFC3D3817CFEAEEFE99BDA50AB3F ] C:\Windows\System32\UIAutomationCore.dll
10:33:56.0688 0x190c C:\Windows\System32\UIAutomationCore.dll - ok
10:33:56.0703 0x190c [ BF6897E960C08E9FDD41B80726C61C2F, 01F2DE2949A8B8DBBF5831AB7E512F57CF9F44835DF02E5588835722164E073A ] C:\Windows\System32\wlanmsm.dll
10:33:56.0703 0x190c C:\Windows\System32\wlanmsm.dll - ok
10:33:56.0703 0x190c [ F5946BC89C6D350ADADDA9676DF28CF3, EA70848F403DE98A743C02D4020CEE31AAE01861A3EC6A4AE3CEA4DD971A3519 ] C:\Windows\System32\eappprxy.dll
10:33:56.0703 0x190c C:\Windows\System32\eappprxy.dll - ok
10:33:56.0703 0x190c [ 59C04629522B5815BF39F8A310FD2C81, 02096C293E4D6726DD944D1A1D66D2A41D0CDBE887809E8A30ABA95F53D289FA ] C:\Windows\System32\onex.dll
10:33:56.0703 0x190c C:\Windows\System32\onex.dll - ok
10:33:56.0703 0x190c [ A5141DD172927F04732F5B6BFBE49C15, 6CD9A08D6A5FF54CB05F8FED2A8797D31C8F895DBA22314D4E9B269600431B28 ] C:\Windows\System32\wlansec.dll
10:33:56.0703 0x190c C:\Windows\System32\wlansec.dll - ok
10:33:56.0703 0x190c [ 14CF2EAFCFA0BDC736BFDA130BD95EB2, F462FF5F64900F4069A55E58943FE9C9E9B25F3B0622922BA34BCB4ECC70562A ] C:\Windows\System32\bcd.dll
10:33:56.0703 0x190c C:\Windows\System32\bcd.dll - ok
10:33:56.0703 0x190c [ 98D0985521BF8F7086EA9C860898A1EE, B506CCE3ABBEDF4274CB488F7DAE357EAB3B9607DEE76B03B8746C051B3E8517 ] C:\Windows\System32\fveapi.dll
10:33:56.0703 0x190c C:\Windows\System32\fveapi.dll - ok
10:33:56.0703 0x190c [ 1B2CAD40A6FD2E9DC336F3A338293B29, 7CB8C03D1ED687940BE55520887574138F457BB379824C52CC86BBB052A034F7 ] C:\Windows\System32\msxml6.dll
10:33:56.0703 0x190c C:\Windows\System32\msxml6.dll - ok
10:33:56.0703 0x190c [ 3A80675FF8524B09817000B6A2E35B7A, 228428DA944057E87DC6AE96354FD5877177ADF0E035ED72A136820D5E1CCC50 ] C:\Windows\System32\wlansvcpal.dll
10:33:56.0703 0x190c C:\Windows\System32\wlansvcpal.dll - ok
10:33:56.0703 0x190c [ D50705D14E8C876A47FF14B999B4A6C3, 56D28EDB5F039F48DF1000FC7FB736556FF9A0A583D9A567F2533620F3A8FB96 ] C:\Windows\System32\fvecerts.dll
10:33:56.0703 0x190c C:\Windows\System32\fvecerts.dll - ok
10:33:56.0719 0x190c [ 398990EFC34218C3B6C4E6384502083B, CA1E756F89551B740465B01ACB2F41881CFC7BECA280299E7B78AB1A455F6DD7 ] C:\Windows\System32\msftedit.dll
10:33:56.0719 0x190c C:\Windows\System32\msftedit.dll - ok
10:33:56.0719 0x190c [ 0DF0FA32C2841537B0610B4179320A3A, 0B998280F28072CDF99BD9DE23A98D04CB07F5B83E412D941004FA3A20E6830C ] C:\Windows\System32\TetheringIeProvider.dll
10:33:56.0719 0x190c C:\Windows\System32\TetheringIeProvider.dll - ok
10:33:56.0719 0x190c [ 693CC2794DEFB8493ABFF68D509DACC4, CB85D04C380D7C17EE9D1263AB81438C6B1D8F3E5CC62BDE9F9671D3561CBD65 ] C:\Windows\System32\WiFiDisplay.dll
10:33:56.0719 0x190c C:\Windows\System32\WiFiDisplay.dll - ok
10:33:56.0719 0x190c [ 865E3C79BB0DB64D4AB2F6BA8FF5BD2C, 4CD5500CAB1DE72F5D2E6032D7CFB0CC90166F45D1F20309FE907122DAE00813 ] C:\Windows\System32\Windows.Globalization.dll
10:33:56.0719 0x190c C:\Windows\System32\Windows.Globalization.dll - ok
10:33:56.0719 0x190c [ AEDF08DDF4EA929FEDBC0A1CCF01F287, 5663B87DA6B13BECB652D68932B021A1D8DB420D99B41F1D904DC1427701831D ] C:\Windows\System32\wlanapi.dll
10:33:56.0719 0x190c C:\Windows\System32\wlanapi.dll - ok

#10
HelpNeeded911

Posted 13 October 2014 - 08:50 AM

Member

Topic Starter
Member
80 posts

10:33:56.0719 0x190c [ 7A1BAB2BDCF59A506588DDF58ED43E21, C7191778058E0CE498E6B21ADEA8A6928AE8B8669B2F00AB639728538ADDDA64 ] C:\Windows\System32\globinputhost.dll
10:33:56.0719 0x190c C:\Windows\System32\globinputhost.dll - ok
10:33:56.0719 0x190c [ 8DAE6957A4F0EC461575F68239E0A13E, DB788A4374618B111EAA052AB8FED6808F1426BE79FD5214A2A9751C6700216A ] C:\Windows\System32\l2gpstore.dll
10:33:56.0719 0x190c C:\Windows\System32\l2gpstore.dll - ok
10:33:56.0719 0x190c [ ED3387CE1F9F848A3F3BAA3FCE86E315, 044706F8EFBF67CEE73FB5B406CC17815C3681B7859E8EDB59F80D3F8ADB019D ] C:\Windows\System32\ninput.dll
10:33:56.0719 0x190c C:\Windows\System32\ninput.dll - ok
10:33:56.0735 0x190c [ 0D190D8B4B20446BE6299AC734DFADF1, 6551095971F99820BBFC5FED8FAB9591A3F8ABFA0F027887F3B71B79325FF6D9 ] C:\Windows\System32\shsvcs.dll
10:33:56.0735 0x190c C:\Windows\System32\shsvcs.dll - ok
10:33:56.0735 0x190c [ 682C1B06C4E00A9DC995E4B2FD626CB2, 52B2820171D1A345EDB6FF61FA27D4B03F86ED91D9C0BC997F9820A5646B1ED2 ] C:\Windows\System32\wlgpclnt.dll
10:33:56.0735 0x190c C:\Windows\System32\wlgpclnt.dll - ok
10:33:56.0735 0x190c [ A9C015F01499761908DE61F172FAF65D, 4CB7155035498ABE5E1A03B94D34B0ED959B437FC42EC2652012EC6094FF5C71 ] C:\Windows\System32\netcfgx.dll
10:33:56.0735 0x190c C:\Windows\System32\netcfgx.dll - ok
10:33:56.0735 0x190c [ D3AE5DB16EAF913860EC28654CE00E6B, AD76B6044F7247C6E86F6DCB7CFD6B25BCA2B9F09A97A419F043A999E66726A2 ] C:\Windows\System32\schedsvc.dll
10:33:56.0735 0x190c C:\Windows\System32\schedsvc.dll - ok
10:33:56.0735 0x190c [ 4897A55EEBC1D3F6DFEB1CD94C241F48, A68C504A5BF10D4C4C082EA4E92EC4358B4E09E87FB8C49A16080ABB900C4523 ] C:\Windows\System32\SubscriptionMgr.dll
10:33:56.0735 0x190c C:\Windows\System32\SubscriptionMgr.dll - ok
10:33:56.0735 0x190c [ 82FE5F302FD7C7EF0E41465BB873EFC7, 274A2ECD7A60056354883CD9E061F35B2220B5508B1253D00739D51AA0EF173B ] C:\Windows\System32\wlanhlp.dll
10:33:56.0735 0x190c C:\Windows\System32\wlanhlp.dll - ok
10:33:56.0735 0x190c [ 65ED7B9CFEA893DF7748D5FF692690DE, 73AB9D8BB928B3247BDFC7BB47AD7FCA763B375DC250C251DB4E0573531040E8 ] C:\Windows\System32\drivers\vwifimp.sys
10:33:56.0735 0x190c C:\Windows\System32\drivers\vwifimp.sys - ok
10:33:56.0735 0x190c [ E04863DDDA4D5386895D316B9A26958F, 326E1DC9AB3871F86A0DBAACEC1952A5018A0440269AF84EF9129C121440CC16 ] C:\Windows\System32\ktmw32.dll
10:33:56.0735 0x190c C:\Windows\System32\ktmw32.dll - ok
10:33:56.0750 0x190c [ 68CB2B575F0C67BB14590D1471285287, D3E8238CC5A63AEF556F3165F438745806A4827E627383CD0D48F09F3448EB20 ] C:\Windows\System32\ubpm.dll
10:33:56.0750 0x190c C:\Windows\System32\ubpm.dll - ok
10:33:56.0750 0x190c [ 5D9B166EFBA673C8221C5C97CCFB5BFE, 63F99158CB660FD4BC838B12DE1F4C2F3DAE43AF88EBC68FE73A43B62AF8D257 ] C:\Windows\System32\wcmapi.dll
10:33:56.0750 0x190c C:\Windows\System32\wcmapi.dll - ok
10:33:56.0750 0x190c [ 5B9290D5540BDC461500DB84FC3606F0, 5F7DD7581C21D107A933460085C126751DA535D01878C86D9159320194EF886E ] C:\Windows\System32\CSystemEventsBrokerClient.dll
10:33:56.0750 0x190c C:\Windows\System32\CSystemEventsBrokerClient.dll - ok
10:33:56.0750 0x190c [ 68DEABD4CB0CF3920D3B6CCAA36173BC, C87F86DE3E366975919D2A5722E9942F643D9B81185E06B49968D3A7BD1D76C0 ] C:\Windows\System32\taskcomp.dll
10:33:56.0750 0x190c C:\Windows\System32\taskcomp.dll - ok
10:33:56.0750 0x190c [ 722B1ED8A1C3115E0B215215FB56738D, 8528E7E9BD6A15F15D017DACDB0636A27D52F27AA1806CFFB51A89F6EED792D2 ] C:\Windows\System32\SettingSyncCore.dll
10:33:56.0750 0x190c C:\Windows\System32\SettingSyncCore.dll - ok
10:33:56.0750 0x190c [ 9DDCA7F18983C5410DEFF79F819DF93C, CE97B4440377BFC5CA81BB600C3BD1DD9FB3951CA1EB70735F5E2050EBB74223 ] C:\Windows\System32\drivers\http.sys
10:33:56.0750 0x190c C:\Windows\System32\drivers\http.sys - ok
10:33:56.0750 0x190c [ 0934499394EB3D8027B8AB78C07D56CB, 83D97B1EDD425C391B686141DC3325AB653F4A6DC0F422D1B2BB2F925841507B ] C:\Windows\System32\dllhost.exe
10:33:56.0750 0x190c C:\Windows\System32\dllhost.exe - ok
10:33:56.0750 0x190c [ 42FEA9E0BA9761D9E65A4F167D91515B, 9A34CE83F3ACD50608671BDABE5E475F8E0C8335D3B8B7B3D7E84B2A319FA29F ] C:\Windows\System32\spoolsv.exe
10:33:56.0750 0x190c C:\Windows\System32\spoolsv.exe - ok
10:33:56.0750 0x190c [ 3711306C8D1A859351D735D93090C1C0, 4FFFCB8BBDE656C5078BA890F0468556C4481FB21A1DA30803DB14461C234164 ] C:\Windows\System32\taskhost.exe
10:33:56.0750 0x190c C:\Windows\System32\taskhost.exe - ok
10:33:56.0766 0x190c [ 9F0759C6D691E7030BF33105EDA2C690, 5EDDC4475FFA96287D25D203F7EA45E6D770635C1ED6532D713BD9E6C76F745E ] C:\Windows\System32\CredentialMigrationHandler.dll
10:33:56.0766 0x190c C:\Windows\System32\CredentialMigrationHandler.dll - ok
10:33:56.0766 0x190c [ 30C355249224173151874A7B86A8BB66, 508796D289C8A6C5A5C28A50A68237CC0F86A9632474866266CCD4908C1EB525 ] C:\Windows\System32\wininet.dll
10:33:56.0766 0x190c C:\Windows\System32\wininet.dll - ok
10:33:56.0766 0x190c [ 20FB137ADDE1255F15F265A7BD9579BE, 87B4D5C91EFEAD987AAC3491A4360F82824C46AFF958B6F4CAED7C12224EF159 ] C:\Windows\System32\BFE.DLL
10:33:56.0766 0x190c C:\Windows\System32\BFE.DLL - ok
10:33:56.0766 0x190c [ 7F88F6790401199B2C9C932FD91965F9, 83A7F50BFBDB17499ABDB2EDE42A17E619DA2762B56E48C9018F20C15A405E6E ] C:\Windows\System32\iertutil.dll
10:33:56.0766 0x190c C:\Windows\System32\iertutil.dll - ok
10:33:56.0766 0x190c [ 48F25CC79C6CCFD4B776C8FDA9ED7271, 6D05A934678A8E0862C2F906FC7CAC277F30A0E187319D5D11BDE76B68C8B799 ] C:\Windows\System32\AppxAllUserStore.dll
10:33:56.0766 0x190c C:\Windows\System32\AppxAllUserStore.dll - ok
10:33:56.0766 0x190c [ 36F977EDAE6CEE96CE6409B2B16765B4, E7BC85FE92162A6A06B823F9146F94CA5BAD0CF735FD568C6EDB1DA194FB77F3 ] C:\Windows\System32\ProximityService.dll
10:33:56.0766 0x190c C:\Windows\System32\ProximityService.dll - ok
10:33:56.0766 0x190c [ 02C6DF84328E271C3F844E477CB25169, 04A345135E7150A869AC1B410B138746D53A7BE0934B748EF0C73D36E71487AF ] C:\Windows\System32\ProximityServicePal.dll
10:33:56.0766 0x190c C:\Windows\System32\ProximityServicePal.dll - ok
10:33:56.0766 0x190c [ 02E72187BE9329E4D9255BC5AE6D8286, F5CAF4A710052559715D2E7FBF6A6D04A83BFB31B76F8D7A758295936543E74A ] C:\Windows\System32\ProximityCommon.dll
10:33:56.0766 0x190c C:\Windows\System32\ProximityCommon.dll - ok
10:33:56.0782 0x190c [ 1EE65FEAA57FBC2050AE153D07C8DC3F, 5B3878780D3B3EE4EDA0B880E7D41949CB1D3C69937ACC56B8CDCA17014CF111 ] C:\Windows\System32\ProximityCommonPal.dll
10:33:56.0782 0x190c C:\Windows\System32\ProximityCommonPal.dll - ok
10:33:56.0782 0x190c [ E41C0291E2F2FDFBF2875E4473F81031, F0BE14072B7E40ACA27BDFC302C8F99B3ACDD28393339F5B4BA41075B10D6732 ] C:\Windows\System32\mpr.dll
10:33:56.0782 0x190c C:\Windows\System32\mpr.dll - ok
10:33:56.0782 0x190c [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] C:\Windows\System32\drivers\bowser.sys
10:33:56.0782 0x190c C:\Windows\System32\drivers\bowser.sys - ok
10:33:56.0782 0x190c [ F170510BE94CF45E3C6274578F6204B2, 344C3DDE1D622607CA2ABECB2C47CB0166D2D258BD94A7960C45A5ADBB640566 ] C:\Windows\System32\drivers\mpsdrv.sys
10:33:56.0782 0x190c C:\Windows\System32\drivers\mpsdrv.sys - ok
10:33:56.0782 0x190c [ 7A1A3F213CDB3363D179D5014272025D, 6756F5B7D9FBF6839DB1FF4E94EA45B5499D7DF925E75581C96FBBA4BE131542 ] C:\Windows\System32\drivers\mrxsmb.sys
10:33:56.0782 0x190c C:\Windows\System32\drivers\mrxsmb.sys - ok
10:33:56.0782 0x190c [ D186C5844393252147BE934F3871DB7A, 30160F8268B9F46E82C5CB536867E0CF280DC98074A481595072E3320200E343 ] C:\Windows\System32\MPSSVC.dll
10:33:56.0782 0x190c C:\Windows\System32\MPSSVC.dll - ok
10:33:56.0782 0x190c [ 08C191B2917862BE90C33E31CB6B6D79, E8CC905FA3CF0D1A7BB631963BF7B7CCE1D4B52B8358CB76DDDBB2D442189A0B ] C:\Windows\System32\userinit.exe
10:33:56.0782 0x190c C:\Windows\System32\userinit.exe - ok
10:33:56.0782 0x190c [ D8EB154CC954E526970E7C56B724E659, A83E896C33FE43C24E0B077B8ED2CB86C90FF5E02BDE6CB5A588B9D6C071CA55 ] C:\Windows\System32\userinitext.dll
10:33:56.0782 0x190c C:\Windows\System32\userinitext.dll - ok
10:33:56.0797 0x190c [ C910E5D18958914A66F0E45689D0B40A, AD7C91DD8A60A511E580DD56BACC97F85075A539E7C5D95040A8F870A621DAF4 ] C:\Windows\System32\drivers\mrxsmb20.sys
10:33:56.0797 0x190c C:\Windows\System32\drivers\mrxsmb20.sys - ok
10:33:56.0797 0x190c [ 1D8303D3ED5F8C403984A8820E5E599A, EC63C7C6B7C07D088DE336C6148D2CEE9B130000286DA0E4C1970F9385FD72EF ] C:\Windows\System32\taskhostex.exe
10:33:56.0797 0x190c C:\Windows\System32\taskhostex.exe - ok
10:33:56.0797 0x190c [ ACDBE1ED38167C8B01B8F63161BB2CEA, 3CFFE318DA2B6BA10535B15188ED4F075A6A9AF28121E7642340EA1A53412632 ] C:\Windows\explorer.exe
10:33:56.0797 0x190c C:\Windows\explorer.exe - ok
10:33:56.0797 0x190c [ CBCA90CF2ACE96038571ED0A7BD3D756, EF9031E493E9E1B4FBD556DA0FB2F0E89313CB8853F379AA277EE3519DED7D64 ] C:\Windows\System32\esent.dll
10:33:56.0797 0x190c C:\Windows\System32\esent.dll - ok
10:33:56.0797 0x190c [ 183360914EFC9D25E2A13D335D5E9EB8, 37A277D69DB0493410B58941D1B9C44B8C6D403AF6F31B2C47E910DF3056EF50 ] C:\Windows\System32\taskeng.exe
10:33:56.0797 0x190c C:\Windows\System32\taskeng.exe - ok
10:33:56.0797 0x190c [ F77C9F8A5F926CC77B41C45DB5ACAA26, F95C184A4F7330A47AE1F185BB200E5EF4B3C279CE5DB64E5B47E0045DBE1633 ] C:\Windows\System32\aepic.dll
10:33:56.0797 0x190c C:\Windows\System32\aepic.dll - ok
10:33:56.0797 0x190c [ D1A3B6C2F8F39EC7F75D03740A8112A1, CE3EC47954CCC70F78A4E49F8A585CC64B04A2B725A310034571902B663FEBED ] C:\Windows\System32\tbs.dll
10:33:56.0797 0x190c C:\Windows\System32\tbs.dll - ok
10:33:56.0797 0x190c [ BA0655E1856A16A14C9BC1FB27B111B9, 974BA0A5ABD08F2579B4A28DE5A8579641B4B3E40EFDFFAA3A0DD733AADE3D01 ] C:\Windows\System32\TpmTasks.dll
10:33:56.0797 0x190c C:\Windows\System32\TpmTasks.dll - ok
10:33:56.0797 0x190c [ 770D71782A90BE9C48C4310C5C35E25B, 00B9E8B04786D1E93A78F42896023AF2095D69ED70A56042B6C98EB531778779 ] C:\Windows\System32\sfc_os.dll
10:33:56.0797 0x190c C:\Windows\System32\sfc_os.dll - ok
10:33:56.0813 0x190c [ 494BB20A0251BC1315ED380687EEBAA1, 02A5ABCC313FB23086B9515F429F0CB0237F1C0E0A6094114F73C3800B46C9D8 ] C:\Windows\System32\TSChannel.dll
10:33:56.0813 0x190c C:\Windows\System32\TSChannel.dll - ok
10:33:56.0813 0x190c [ 1922AAE64BCD761A0377F6981FC67736, 67BEA62D5D2266E7447C9258B2AE468C25CE309459CA4037C542EA4DF46D392F ] C:\Windows\System32\twinapi.dll
10:33:56.0813 0x190c C:\Windows\System32\twinapi.dll - ok
10:33:56.0813 0x190c [ 9B95FCB49595A869F27034916382FE57, C9C98C5837D4562CF706B96C4B25AD264E3CA65BD442090F6093C235E1B7AE5E ] C:\Windows\System32\adhapi.dll
10:33:56.0813 0x190c C:\Windows\System32\adhapi.dll - ok
10:33:56.0813 0x190c [ D0D9C2ECA4D03A8F06DCD91236B90C98, E2D1144DC8040EA5FEB0602A20BA4CB920B4BC86AD5AD05FC0DF7D74DC95DC66 ] C:\Windows\System32\wkssvc.dll
10:33:56.0813 0x190c C:\Windows\System32\wkssvc.dll - ok
10:33:56.0813 0x190c [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:33:56.0813 0x190c C:\Program Files (x86)\Google\Update\GoogleUpdate.exe - ok
10:33:56.0813 0x190c [ 9DF590DEA96B6756CF8D73C2525797BE, 3FDF4B8794C800CD6586310A85A46F78AA0130E10712BF72CE442BC7C23715A0 ] C:\Windows\System32\wfapigp.dll
10:33:56.0813 0x190c C:\Windows\System32\wfapigp.dll - ok
10:33:56.0813 0x190c [ 6CB5CFF7F48B8E226523BF2E849AA6E5, A92EEF4B85C2F246447F3061156527305D9C410B0491ED79F6FF11684CD4BD06 ] C:\Windows\SysWOW64\shlwapi.dll
10:33:56.0813 0x190c C:\Windows\SysWOW64\shlwapi.dll - ok
10:33:56.0813 0x190c [ C5679E5186B2FC95BC76A8A9870D5456, 70AC61850B811A0A902532F098AE1D5DF4622455E56C78B89D4ABDBE4A061A48 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:33:56.0813 0x190c C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - ok
10:33:56.0828 0x190c [ 5E536FD2C9EBFB9388DD76BCC56C7232, BE0116CF45D5FE09219E6F8B4AA43EDFB717B2B323BC1ED8794DD2307D8FC3FA ] C:\Windows\System32\MsCtfMonitor.dll
10:33:56.0828 0x190c C:\Windows\System32\MsCtfMonitor.dll - ok
10:33:56.0828 0x190c [ 9729D3F9896B6F309DC50CE3769AC9C1, CA8BF2ADC0FFC87A1B3C5958D762010D308DC998C8727B963431FD2A6D07549A ] C:\Windows\System32\msutb.dll
10:33:56.0828 0x190c C:\Windows\System32\msutb.dll - ok
10:33:56.0828 0x190c [ 91F27BC87BEB6DFDC709FF484F64F1D4, F4D1AE178C714CA454D9447113D707AADA9E3AE3236955EE3171D071FC98F1F3 ] C:\Windows\System32\PlaySndSrv.dll
10:33:56.0828 0x190c C:\Windows\System32\PlaySndSrv.dll - ok
10:33:56.0828 0x190c [ F51B727AFF404ED8D730DFA069D88D7B, 65298A9CD6EE1DBFDE7874942D4D8F36003D5808046F94921689671BE2586CFB ] C:\Windows\SysWOW64\shell32.dll
10:33:56.0828 0x190c C:\Windows\SysWOW64\shell32.dll - ok
10:33:56.0828 0x190c [ 3B048C495ED3ADB6D8CA00769EC542B3, 8485326DBB1D4B9B8BD9B1315E7830DD06929D8F9EA955706C4E15A6F74B4B66 ] C:\Windows\System32\MrmCoreR.dll
10:33:56.0828 0x190c C:\Windows\System32\MrmCoreR.dll - ok
10:33:56.0828 0x190c [ 4C56EBB6A31E8323D3CBBC476C81B998, 42D136E2DCC4C0957FF8D5B49515334C8477E90CD3177A48F311CE1D16B4D534 ] C:\Windows\System32\urlmon.dll
10:33:56.0828 0x190c C:\Windows\System32\urlmon.dll - ok
10:33:56.0828 0x190c [ 2BDB085AA7ECA65D1793D150CEC960AF, EE8E25DEEC45230D85EBEFE7DC1FA7CB154427E6723AE401EA914C558B335A6B ] C:\Windows\SysWOW64\ole32.dll
10:33:56.0828 0x190c C:\Windows\SysWOW64\ole32.dll - ok
10:33:56.0828 0x190c [ FB970EC73EAB710FE1F529C139E258A0, 4848DF6FBCC87A89C4E6275B7CE6F6DA853C0C4C5F3B2E92F691A88D98AAE07A ] C:\Windows\SysWOW64\SHCore.dll
10:33:56.0828 0x190c C:\Windows\SysWOW64\SHCore.dll - ok
10:33:56.0828 0x190c [ 77E585EDD4C7EB7AB2ACC36BC1DC32A5, 57BF4D683CA66AAC2A4B7FEDF9F7FB254860BE77E1F4A6DD2C40410783B5C113 ] C:\Program Files (x86)\Google\Update\1.3.24.15\goopdate.dll
10:33:56.0828 0x190c C:\Program Files (x86)\Google\Update\1.3.24.15\goopdate.dll - ok
10:33:56.0844 0x190c [ 31D858C6F1C453AF516343758A4B2C69, 12ABCF99DD28BF35B3C224ACCFE2587BA5F4199D163224B344CDC770EED36130 ] C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.8387_none_5094ca96bcb6b2bb\msvcr90.dll
10:33:56.0844 0x190c C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.8387_none_5094ca96bcb6b2bb\msvcr90.dll - ok
10:33:56.0844 0x190c [ ACBA82820AF2B51B31969A0570A993F7, CCE1DB7255B3C0D1B3001EE8BFA322E25F1C955446F6A91B5DB3506803FD7462 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
10:33:56.0844 0x190c C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
10:33:56.0844 0x190c [ AA21423B380157AFAA2F82E96D910E0F, 5E037AD0B3AF9D5B1A6F82BBA8026CEA8DD5C8C0AECB8ED71F1ADAA940954C5D ] C:\Windows\SysWOW64\kernel.appcore.dll
10:33:56.0844 0x190c C:\Windows\SysWOW64\kernel.appcore.dll - ok
10:33:56.0844 0x190c [ A5BD16CF06D4ECB6445BFCAC9C0A366F, 07283D52AE5FB402A0155DCAD2141180D55C840F4E872C03F9F13EA66BADD719 ] C:\Windows\SysWOW64\netapi32.dll
10:33:56.0844 0x190c C:\Windows\SysWOW64\netapi32.dll - ok
10:33:56.0844 0x190c [ 9DCB42905F1EBF9CEC57EE5DF0BDA965, 4C888AAD0DDE01565FD7FBB6B70A500158CF2E4CECF9ADD4AFD302A993587269 ] C:\Windows\System32\inetsrv\apphostsvc.dll
10:33:56.0844 0x190c C:\Windows\System32\inetsrv\apphostsvc.dll - ok
10:33:56.0844 0x190c [ 6180E1E88377D1A9834D98B4BF12094E, 28AE4A1C42A3515D2792B4D612F091C56C9C91153B0C500744043947A11249C3 ] C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7\comctl32.dll
10:33:56.0844 0x190c C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7\comctl32.dll - ok
10:33:56.0844 0x190c [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] C:\Program Files\Bonjour\mDNSResponder.exe
10:33:56.0844 0x190c C:\Program Files\Bonjour\mDNSResponder.exe - ok
10:33:56.0844 0x190c [ 820DB03CB1D56D0016FB2136C7AB478E, 5BF8EA69F2D41E24062FBA6FED9DAB0AD24C826B7A1C6A07DD8EF7199D601B1E ] C:\Windows\System32\inetsrv\iisutil.dll
10:33:56.0844 0x190c C:\Windows\System32\inetsrv\iisutil.dll - ok
10:33:56.0844 0x190c [ B0AEE5428D90D439AA4C4935B53B144C, 010D37DA5A18F124F9ECD7B56C4D753F94AB46FA81E80DACCA22277B28EBE905 ] C:\Windows\System32\inetsrv\nativerd.dll
10:33:56.0844 0x190c C:\Windows\System32\inetsrv\nativerd.dll - ok
10:33:56.0860 0x190c [ CB90D56DB19B8213CF5F7CB789C1C778, 327CD860D886DCE87FB011F5788C2171CC0D5D8B115758C92C55690F33323571 ] C:\Windows\SysWOW64\msi.dll
10:33:56.0860 0x190c C:\Windows\SysWOW64\msi.dll - ok
10:33:56.0860 0x190c [ D387243179DCA6FCC252B2BCB216C7BF, 1161E64ED53EB04FE5CE4E39BDB821FA96FF759472DE437DECBF1A6FC80A09BB ] C:\Windows\System32\inetsrv\iisres.dll
10:33:56.0860 0x190c C:\Windows\System32\inetsrv\iisres.dll - ok
10:33:56.0860 0x190c [ 8FA4755F3BA513F4BAE0A2AF1BE8C5F7, 39748E6B58142793F44DDC89A0F3130022533D4BF38832B8D118915788C24461 ] C:\Windows\System32\vssapi.dll
10:33:56.0860 0x190c C:\Windows\System32\vssapi.dll - ok
10:33:56.0860 0x190c [ 941EDC6791A09356EEBEC309C1633CA2, 4E1F5843C96FAEE37D553D37FA25005D7412266A4E5DA47487C5420CE1F8ED42 ] C:\Windows\System32\vsstrace.dll
10:33:56.0860 0x190c C:\Windows\System32\vsstrace.dll - ok
10:33:56.0860 0x190c [ 3D7B4D033FE80A86B1FC530A03A53754, F926597A11B05948282008F5A3CB959BD40C187700BE6D9B241B9334319A4274 ] C:\Windows\SysWOW64\msimg32.dll
10:33:56.0860 0x190c C:\Windows\SysWOW64\msimg32.dll - ok
10:33:56.0860 0x190c [ A7069E793D4434CC7F4E5D0AFF493939, 4E21568A4DB81549A9532FDE33F1555ABB6AC93BFD4A8D97E77C191D7BD9355C ] C:\Windows\System32\mlang.dll
10:33:56.0860 0x190c C:\Windows\System32\mlang.dll - ok
10:33:56.0860 0x190c [ 2716EEC7A0B6016F11B0A0F8B423DBBE, C3A96C1C6DC9B98E84AF6F5173F6041FF4C6B6BDD775C011D8567E67CAE4328F ] C:\Windows\SysWOW64\uxtheme.dll
10:33:56.0860 0x190c C:\Windows\SysWOW64\uxtheme.dll - ok
10:33:56.0860 0x190c [ 1A03F9B1D9F0493B18B1E648F4F82D4F, 60DF9DD0EA41E0CACE01921C4A20AA83B0C1B9804CA6F3E99E0D83B6BA3336D7 ] C:\Windows\SysWOW64\wininet.dll
10:33:56.0860 0x190c C:\Windows\SysWOW64\wininet.dll - ok
10:33:56.0875 0x190c [ 64A5D80882CF405F515A1A1D3F136B6A, 954ECB5540F3DCDABCB4BDC738B2AB0ADC063E78F376247E5650DCA9C2B9F504 ] C:\Windows\SysWOW64\nsi.dll
10:33:56.0875 0x190c C:\Windows\SysWOW64\nsi.dll - ok
10:33:56.0875 0x190c [ 0E9317A95DD3E678AFCD457DAAD01DA5, E5790F6E2F526CE67C4DEE6277AEF29AD71ACC6C75FC865F96C9E9A86E693D0E ] C:\Windows\SysWOW64\netutils.dll
10:33:56.0875 0x190c C:\Windows\SysWOW64\netutils.dll - ok
10:33:56.0875 0x190c [ 522BF7088E69948A20DD5C89D359B2C4, 20949159376225C7DB8B4CBBA1F0C06113E2DED7369B59329AF00D3295BC627B ] C:\Windows\SysWOW64\srvcli.dll
10:33:56.0875 0x190c C:\Windows\SysWOW64\srvcli.dll - ok
10:33:56.0875 0x190c [ 3265F568468AB87950342764F6D77E78, 62D063F00323145860C3D2E21C99A4D961E01CED0DC142089FAD25BFFC6CEFE8 ] C:\Windows\SysWOW64\winnsi.dll
10:33:56.0875 0x190c C:\Windows\SysWOW64\winnsi.dll - ok
10:33:56.0875 0x190c [ 46DAF6EFC4D7E1C8AC9E0179EFB4B3A9, 13FA959D4D82336A22A118EFC6B59E4F64B90AF0FDEB7FD10ACF0C2556AB4D44 ] C:\Windows\SysWOW64\wkscli.dll
10:33:56.0875 0x190c C:\Windows\SysWOW64\wkscli.dll - ok
10:33:56.0875 0x190c [ 517C6E87783377105111CCE1EECF59B6, 7A92959F4B946A4D5942D48969E54BE09319FF1143B5716699A9E4FBC3CB76A7 ] C:\Program Files\Carbonite\Carbonite Backup\CarboniteService.exe
10:33:56.0875 0x190c C:\Program Files\Carbonite\Carbonite Backup\CarboniteService.exe - ok
10:33:56.0875 0x190c [ A98F492B4C63CA5E11DAAEB36A0CEFCE, 2EE783D092079F6D36541DCEDCA34DA343E72876700477CAB4EC253FBFEBB320 ] C:\Windows\SysWOW64\iertutil.dll
10:33:56.0875 0x190c C:\Windows\SysWOW64\iertutil.dll - ok
10:33:56.0875 0x190c [ CC877931A205C47710456FFEE0BEF29D, 3A063C6B064BBE812FCB9A54AC3AFF946A86C022028B48416AB8A164953CC67E ] C:\Windows\SysWOW64\profapi.dll
10:33:56.0875 0x190c C:\Windows\SysWOW64\profapi.dll - ok
10:33:56.0891 0x190c [ BD9306F715EA9B959EDB892614F6D581, C654ADB865FA1254FA0081D1DAAB47FCF91DA5EA7AD83CFB062DACF951639EC5 ] C:\Windows\SysWOW64\userenv.dll
10:33:56.0891 0x190c C:\Windows\SysWOW64\userenv.dll - ok
10:33:56.0891 0x190c [ 2C4965FA375C7C2C1FBD18EFD75F61CF, 5E9870E2034272F0CA7661DA6AD49D90E5D62F5DF5AF1B873342DA65DE193630 ] C:\Windows\SysWOW64\cscapi.dll
10:33:56.0891 0x190c C:\Windows\SysWOW64\cscapi.dll - ok
10:33:56.0891 0x190c [ F5033F3C6F8E706D78ACB9351EBF7B3E, 6E7C68A3BC532852860284B6D7687BE6BF1BC8F92D299A46C433F5BDCEB6F1F8 ] C:\Windows\SysWOW64\dbghelp.dll
10:33:56.0891 0x190c C:\Windows\SysWOW64\dbghelp.dll - ok
10:33:56.0891 0x190c [ C7DFBE21051D5E44B479CBF74B968335, BF0759D9DF2DB1A7F8C39FCD8BB3BF742259B8CC47BA02F5214F4B44477FDCDC ] C:\Windows\System32\dbghelp.dll
10:33:56.0891 0x190c C:\Windows\System32\dbghelp.dll - ok
10:33:56.0891 0x190c [ 5DAA60A74D178525DC6ACF53ABE343D6, 3927BF12545EED0D417258DC2EC65AC4EEA30DD211BEB5766D9565E0CA4EFDCA ] C:\Windows\System32\msi.dll
10:33:56.0891 0x190c C:\Windows\System32\msi.dll - ok
10:33:56.0891 0x190c [ DD02C0806C03506E03A24C984502B92B, 9CC961D4161D06F2AE49F5E98331C6D110A14DBD9255ED9C4C32A9490FB53329 ] C:\Windows\System32\secur32.dll
10:33:56.0891 0x190c C:\Windows\System32\secur32.dll - ok
10:33:56.0891 0x190c [ 8183820F2D9648A619AA3200EFC62D0B, A3E66457A55070FE4040D9233EF99DA65B90EFFD9B9CC4E74A23A7BF50024E10 ] C:\Windows\System32\pdh.dll
10:33:56.0891 0x190c C:\Windows\System32\pdh.dll - ok
10:33:56.0891 0x190c [ 4B76E621AFB97D0441F36978611A961C, 620C211E83325C609961413815BF301C10A3C00C57B7FA9E34A103CA1EE25EF1 ] C:\Windows\SysWOW64\apphelp.dll
10:33:56.0891 0x190c C:\Windows\SysWOW64\apphelp.dll - ok
10:33:56.0891 0x190c [ CE1F1DAA2C9FB3C3D95915CED394322C, DAEA9CE5EAC572E08E0840E41917DA1E15310B24AF51478BB7F833BD012CE290 ] C:\Windows\System32\perfdisk.dll
10:33:56.0891 0x190c C:\Windows\System32\perfdisk.dll - ok
10:33:56.0907 0x190c [ 397D14958D6C9C2B365469A857B2AC4E, 1465D7DC50A27A2C75FFC477E8A453B0884D1E298F804233483B63A47634B7EA ] C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe
10:33:56.0907 0x190c C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler.exe - ok
10:33:56.0907 0x190c [ 028A102C4473D3F53D5D727F05AE3B5D, 31FC81EB82D9623884E0A705A76570C5A82B9A3777E26F1DA4530D113A9BEE61 ] C:\Windows\System32\perfproc.dll
10:33:56.0907 0x190c C:\Windows\System32\perfproc.dll - ok
10:33:56.0907 0x190c [ B9D8E695007ABBD99DEECA5B740709FE, 886702112AECBD4299347E9D46A6F729C3C27F32AB825148781125D32DBC0F9A ] C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\kmsvc.exe
10:33:56.0907 0x190c C:\Program Files (x86)\CyberLink\PowerDVD12\Common\NavFilter\kmsvc.exe - ok
10:33:56.0907 0x190c [ 0EFE4B5884A8032617826A4D76F80969, 083D296CC623C83D36A97AEE343ADF819B17E490F931DBE4D161BD1E8C289E02 ] C:\Windows\System32\cryptsvc.dll
10:33:56.0907 0x190c C:\Windows\System32\cryptsvc.dll - ok
10:33:56.0907 0x190c [ 8F387C2C99EE09C6E2AC316205F86A17, EC9E8AE72A21992AA118964E17090BA4503EB051273AD18185C95172F57328CE ] C:\Windows\System32\das.dll
10:33:56.0907 0x190c C:\Windows\System32\das.dll - ok
10:33:56.0907 0x190c [ 281BEE07BA97E3E98D12A822D923D0D8, 6EB482B2D4D6048D145C3738B2B6FA27A90B5EA53E9167447820F9981B004E63 ] C:\Windows\System32\dps.dll
10:33:56.0907 0x190c C:\Windows\System32\dps.dll - ok
10:33:56.0907 0x190c [ FE18DDEA98D90DBF850AFCA0158ABEC8, 8EC0099B560CC23DA6D26A71A202667D1A7C4BC37CE0F9F3458EA40440541D06 ] C:\Program Files\Everything\Everything.exe
10:33:56.0907 0x190c C:\Program Files\Everything\Everything.exe - ok
10:33:56.0907 0x190c [ 6AB51A84C2400F1346CCD6B65766DDCD, EA4871C90E4026618A1415F394367599C5E005D33EBD590B6C8409BCC3DD01B7 ] C:\Windows\System32\cryptcatsvc.dll
10:33:56.0907 0x190c C:\Windows\System32\cryptcatsvc.dll - ok
10:33:56.0907 0x190c [ ED8901D9AF4023CAD4738D3A4DF9645B, 487DE071FAC1ACB1421DF9F3C770315795BC69031AA40ABB66627574110214C7 ] C:\Windows\System32\crypttpmeksvc.dll
10:33:56.0907 0x190c C:\Windows\System32\crypttpmeksvc.dll - ok
10:33:56.0922 0x190c [ 680EC64BB5A7A7E25F19F5FFC3CBDAC9, 4D01B8D229EAEBAFF71ED2D30B18000E7BF300E88AFFC7E92DD5E0851DDD216E ] C:\Windows\System32\drivers\rikvm_99E320F5.sys
10:33:56.0922 0x190c C:\Windows\System32\drivers\rikvm_99E320F5.sys - ok
10:33:56.0922 0x190c [ 76B7BB05C1BCC11C69162FB7C2CE8901, 7BE750CD2AE40A6632E9FEFC973B8AD66B1D31B19902D53851F4A1F5AF1037F9 ] C:\Windows\System32\dasHost.exe
10:33:56.0922 0x190c C:\Windows\System32\dasHost.exe - ok
10:33:56.0922 0x190c [ C511B8331F7CCB3FD7902958C261CC85, DCF70C551A559A539C3366657EBBAC9A39CEFA916010813FE70D51D7742C0C1B ] C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
10:33:56.0922 0x190c C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe - ok
10:33:56.0922 0x190c [ 595F362A7C2F64304EFC77C72E7B9F84, 9C68F14DDC738212C839038CA0909C8D124ABB93C202EAE124872203BB3AD4BF ] C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
10:33:56.0922 0x190c C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe - ok
10:33:56.0922 0x190c [ 473BFE3A7D556FD2FCBCA0B086FD125D, A959DD25D337F99A9BD4A4D9059C504A5FF188EFCB17C4EC9FEB5866A11AE77C ] C:\Program Files\NVIDIA Corporation\GeForce Experience Service\ShieldWirelessController.dll
10:33:56.0922 0x190c C:\Program Files\NVIDIA Corporation\GeForce Experience Service\ShieldWirelessController.dll - ok
10:33:56.0922 0x190c [ FD4C63C43CE395C8D3DE392E3F97BF8C, 23E64CCE7B85E98945BDC654534E3474E3270B8B30D99D175632FCBA466FC74B ] C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll
10:33:56.0922 0x190c C:\Program Files\NVIDIA Corporation\NvStreamSrv\rxinput.dll - ok
10:33:56.0922 0x190c [ 84F20198CAE435DE32ABDB4511550BD7, 89D1F58963BEFE5FE26E03292242F85F7D36731B9A177266B7B036E2C921594B ] C:\Windows\SysWOW64\mscoree.dll
10:33:56.0922 0x190c C:\Windows\SysWOW64\mscoree.dll - ok
10:33:56.0938 0x190c [ 5878613C2E0EFB4F656DDADC452551B6, C77BA7BBBE979AE507114766681B7E9F28273DA77AC410CF5BF9C850C3469B2A ] C:\Windows\SysWOW64\winsta.dll
10:33:56.0938 0x190c C:\Windows\SysWOW64\winsta.dll - ok
10:33:56.0938 0x190c [ 9EE220DEE3DA294D3815E2D4EB56A7D9, B6537D24229797ACD5BDDA7D69463F26706B2AF71DC9B8C3962B4C2DAF5733B0 ] C:\Windows\SysWOW64\wtsapi32.dll
10:33:56.0938 0x190c C:\Windows\SysWOW64\wtsapi32.dll - ok
10:33:56.0938 0x190c [ 8157346BD7FB8CE8D9B7D75436F44177, 3A8686E32A131749442E3A1F85FAFE56EB971DE8EBDDB91F8505506AFF3FF9C8 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
10:33:56.0938 0x190c C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll - ok
10:33:56.0938 0x190c [ 52EF8037A22F0EB0083AA29EAC706495, 31E4790C685DF7530E8E6A50CE73651144C51F82D91985D4F48F4B8696499122 ] C:\Windows\SysWOW64\psapi.dll
10:33:56.0938 0x190c C:\Windows\SysWOW64\psapi.dll - ok
10:33:56.0938 0x190c [ 984B3226C7A4CFC9FE91D7BACA133D8D, B8058FC049217DE89F13730425207C19B1967194F3BE3C8CAE2F8AA3BD932721 ] C:\Windows\SysWOW64\winhttp.dll
10:33:56.0938 0x190c C:\Windows\SysWOW64\winhttp.dll - ok
10:33:56.0938 0x190c [ 06A0EBE7954CFA61716515859F62B973, C9321F0C78CEFACB36B83CE72829F3F97D8CD7BCC9E8E83E7B3D4B9FDBCDAEEE ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
10:33:56.0938 0x190c C:\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll - ok
10:33:56.0938 0x190c [ A7DDBD5DA334F3BA342EB828012FD1A5, B9A86EC9BB107F1BB6FAE103EE9E571B639564AFBD036040F0A91C06E5C26522 ] C:\Windows\SysWOW64\clbcatq.dll
10:33:56.0938 0x190c C:\Windows\SysWOW64\clbcatq.dll - ok
10:33:56.0938 0x190c [ 428AF7FA03FF09CE1CD373ABFEBAD8A3, 43B3F6953DA33D87F58BA03295877ABA89FC9F36C0229A9D0D4A423B21629988 ] C:\Windows\SysWOW64\ws2_32.dll
10:33:56.0938 0x190c C:\Windows\SysWOW64\ws2_32.dll - ok
10:33:56.0938 0x190c [ 9D519CCC49EBEF2AB0F3282C097B141B, D1C88FA2DBD3D20C3FA5EB39472F49E5F43F9FC3C6B01B487FD8D31C963F756C ] C:\Windows\SysWOW64\cryptsp.dll
10:33:56.0938 0x190c C:\Windows\SysWOW64\cryptsp.dll - ok
10:33:56.0953 0x190c [ EBA5466233255ADAF7D5501F0CC2B9CF, BEF326A2D43B02A712C56F85BCD902E435E44E8C8AFC2BD914064382DEADC992 ] C:\Windows\SysWOW64\rsaenh.dll
10:33:56.0953 0x190c C:\Windows\SysWOW64\rsaenh.dll - ok
10:33:56.0953 0x190c [ 9281FA6B56D3B7A64CB140CE310686DE, D0854FA97D8C25A7F1308A7F46CA32BAFDE568C645B99F650E33C74A9888EA19 ] C:\Windows\SysWOW64\bcrypt.dll
10:33:56.0953 0x190c C:\Windows\SysWOW64\bcrypt.dll - ok
10:33:56.0953 0x190c [ 4C48253C6A21CCEBA071B58A5CDF17C1, 8FDE687199C82B1D41B0EA5423B295BCCDF603FDA1BF11FC737F77C93ADD738E ] C:\Windows\SysWOW64\msvcr120_clr0400.dll
10:33:56.0953 0x190c C:\Windows\SysWOW64\msvcr120_clr0400.dll - ok
10:33:56.0953 0x190c [ 46E72D419E37D19DE2C7EFF2F1199975, 2D57EF5F5101CDEEE1B163BB4E12D3C441370F67F85A6F5C9D04F78497158F8E ] C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\c90ef9a73ea0044641d31b19023aad61\mscorlib.ni.dll
10:33:56.0953 0x190c C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\c90ef9a73ea0044641d31b19023aad61\mscorlib.ni.dll - ok
10:33:56.0953 0x190c [ AA0E4F73727BFC8BA404884B1C1DB719, 0DEB88BBBC3DD37824B484FA38487280CB6A049D235519584DA562C3C91F18A7 ] C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe
10:33:56.0953 0x190c C:\Program Files (x86)\Google\Update\1.3.24.15\GoogleCrashHandler64.exe - ok
10:33:56.0953 0x190c [ 4CD5B246B2DB81DC403B7C9041456B0E, 333D19A56324AC3916B93DCD51EF3AFAD15256754EC306F0BE308B55352C1B37 ] C:\Windows\System32\NapiNSP.dll
10:33:56.0953 0x190c C:\Windows\System32\NapiNSP.dll - ok
10:33:56.0953 0x190c [ F916298AF3C6AC9887427E545C7E3A69, 5B346CED483C70A8B3A1B54E342D0522225CF56A5260AC5FF9C02324D9605B6D ] C:\Windows\System32\pnrpnsp.dll
10:33:56.0953 0x190c C:\Windows\System32\pnrpnsp.dll - ok
10:33:56.0953 0x190c [ F9D908DE6B166DAC9B89BF62FA291CE8, D0A918AD60221623BB0278EA94CD6938744617FDBB2054968AFAFC2940648F02 ] C:\Program Files\Bonjour\mdnsNSP.dll
10:33:56.0953 0x190c C:\Program Files\Bonjour\mdnsNSP.dll - ok
10:33:56.0969 0x190c [ E372BBF897005442ECEB7843CEB394D2, 25EDE9135ECDBE26E1D07DA1292081532474B743F69E75AC895850A70B78AC58 ] C:\Windows\System32\rasadhlp.dll
10:33:56.0969 0x190c C:\Windows\System32\rasadhlp.dll - ok
10:33:56.0969 0x190c [ D199A538404FB72FC0AB036595D20E1F, AE45AAD6EA30F241F77513FA84FCC86C09930BEE96F68C5EB3A47F2AD16E923D ] C:\Windows\System32\wdmaud.drv
10:33:56.0969 0x190c C:\Windows\System32\wdmaud.drv - ok
10:33:56.0969 0x190c [ 218F874A78CB670172280A39A58B8F8A, F5DFBC4502FBA2FB430C578744040C88129C94A3E8468227120B692D20907D22 ] C:\Windows\System32\winrnr.dll
10:33:56.0969 0x190c C:\Windows\System32\winrnr.dll - ok
10:33:56.0969 0x190c [ 7608A0EE3AAEE086E40E39621ED0EE82, 90D7C38630E5B0C993B45154CFFC6EA2DB575B7B739AAB4997A1CFF314DD2B03 ] C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
10:33:56.0969 0x190c C:\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll - ok
10:33:56.0969 0x190c [ AB8DC63BB90A2A3DE13B38D8B64B4DC6, A6B9F9BD48C0EFFDB93C66F5C33607BCB32ABC1B36D183B1EF62FB9451E64585 ] C:\Windows\System32\cscapi.dll
10:33:56.0969 0x190c C:\Windows\System32\cscapi.dll - ok
10:33:56.0969 0x190c [ 34AC6CD413369AEBBD283976011FE321, 475E694E6912752F34768DD28746C5D84586AC282DEA0F6F5A2EA49F00FA71F1 ] C:\Windows\System32\msacm32.dll
10:33:56.0969 0x190c C:\Windows\System32\msacm32.dll - ok
10:33:56.0969 0x190c [ ADB4E145B99352A3058A6AB502BB99A1, D91C0A14E0D0CAD0E00D5F68B84C2289FF953A43BE1052F15040E58727D16D48 ] C:\Windows\System32\msacm32.drv
10:33:56.0969 0x190c C:\Windows\System32\msacm32.drv - ok
10:33:56.0969 0x190c [ E9670BDDC9F9D4FC9A90177786EC2560, E1CF3249E3A3DAC631C96B34115B59498480C154BD3065A8FCC3857763559A46 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System\3028925cf331e81d2b55093a3f131bd5\System.ni.dll
10:33:56.0969 0x190c C:\Windows\assembly\NativeImages_v4.0.30319_32\System\3028925cf331e81d2b55093a3f131bd5\System.ni.dll - ok
10:33:56.0969 0x190c [ D72877D08AC821E3983C185D12034B19, 1194806EFBD672F8CE77EA97303076BDC642454C967662A2447A5BA264118270 ] C:\Windows\System32\midimap.dll
10:33:56.0969 0x190c C:\Windows\System32\midimap.dll - ok
10:33:56.0985 0x190c [ 572B312ADBD0BA9B9C2C94FF00AD4F77, 1A22058736538E6984EAC1241B1E07CD304C18F08849DC0DA35D923CD010BB16 ] C:\Windows\System32\stapo64.dll
10:33:56.0985 0x190c C:\Windows\System32\stapo64.dll - ok
10:33:56.0985 0x190c [ 01851563CB6FB986A4C0221C15AB6ADC, 2B299A0281C2D28FFAA424E244B4381831983C7677EF009E0CF3CF4634910037 ] C:\Windows\System32\AudioEng.dll
10:33:56.0985 0x190c C:\Windows\System32\AudioEng.dll - ok
10:33:56.0985 0x190c [ E60DEF401500F909C3DA7B13E21F02D8, B7B72B148968D15FC8006CAB8826312A5D4F7B54DA193A3E10E57DA51C787571 ] C:\Program Files\Microsoft Office\Office15\msoia.exe
10:33:56.0985 0x190c C:\Program Files\Microsoft Office\Office15\msoia.exe - ok
10:33:56.0985 0x190c [ 1FF6111D50C1EB532C7E63FFFB7176CA, 8CED2D0D395D09241AFBDD573BE5D7752AD9827406BCFA5EE8520E53C58B64E7 ] C:\Windows\System32\SRAPO64.DLL
10:33:56.0985 0x190c C:\Windows\System32\SRAPO64.DLL - ok
10:33:56.0985 0x190c [ D029339C0F59CF662094EDDF8C42B2B5, 934D882EFD3C0F3F1EFBC238EF87708F3879F5BB456D30AF62F3368D58B6AA4C ] C:\Windows\System32\msvcp100.dll
10:33:56.0985 0x190c C:\Windows\System32\msvcp100.dll - ok
10:33:56.0985 0x190c [ 366FD6F3A451351B5DF2D7C4ECF4C73A, AE3CB6C6AFBA9A4AA5C85F66023C35338CA579B30326DD02918F9D55259503D5 ] C:\Windows\System32\msvcr100.dll
10:33:56.0985 0x190c C:\Windows\System32\msvcr100.dll - ok
10:33:57.0000 0x190c [ 521ED020A6708FECA2473AF00B73FC4D, 83BAB477E38AF04EBA694B84A27C8BF914294F55B7596FBF13E6F47E68077B08 ] C:\Windows\System32\dimsjob.dll
10:33:57.0000 0x190c C:\Windows\System32\dimsjob.dll - ok
10:33:57.0000 0x190c [ 5CEC21295040B8FA8F26CB07D650954D, 549240C2308AFDB19561940EC3B7DC98AEF39F6655DAB8D541B2A0D4C508E70D ] C:\Windows\System32\netprofm.dll
10:33:57.0000 0x190c C:\Windows\System32\netprofm.dll - ok
10:33:57.0000 0x190c [ 30D750AB09B1BB732120522415DBF487, B3AA3D048F60B043A5467016CC3AA6079117E411EDF848203C64CD8CBEC38CFE ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Serv759bfb78#\e99d52ddc175721f6ed14653e32ba4c5\System.ServiceProcess.ni.dll
10:33:57.0000 0x190c C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Serv759bfb78#\e99d52ddc175721f6ed14653e32ba4c5\System.ServiceProcess.ni.dll - ok
10:33:57.0000 0x190c [ D9EECFAFB8607BB83B1BBE23B51D792C, 21F0AB259CCF5693E33239F4A062CF4B229733BB1EE6EBB511C1C8DB41EBE34A ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\5e8ea4bc2ddce0edd65f5c68b7241c06\System.Core.ni.dll
10:33:57.0000 0x190c C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\5e8ea4bc2ddce0edd65f5c68b7241c06\System.Core.ni.dll - ok
10:33:57.0000 0x190c [ 8FD5EC5C33A65A2523884F3013827CA9, E7DFD666B27AF72E06DA91FAA671B42C50FD9D1116D998873628AC48DABA05BB ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\04d455ea050b547ca661a16509fe4638\System.Configuration.ni.dll
10:33:57.0000 0x190c C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\04d455ea050b547ca661a16509fe4638\System.Configuration.ni.dll - ok
10:33:57.0000 0x190c [ F69C36BBF1220BDD2A114F4ABC6B0FC1, 3691C63EE84B2628E0C021418D0DEE979B50CE550178DB3EFC5E19FE5BAD5B4C ] C:\Program Files (x86)\Hp\Common\log4net.dll
10:33:57.0000 0x190c C:\Program Files (x86)\Hp\Common\log4net.dll - ok
10:33:57.0000 0x190c [ DCC72AB37A7B0DFB3CD850A601E5FE12, 91CFC1C4FCAFD4A82CAB961C1E29AD7F0E1881B8CA576A347E82A260337AB9B4 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\462e6667cb4ef74abec9524d96c4d7d5\System.Xml.ni.dll
10:33:57.0000 0x190c C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\462e6667cb4ef74abec9524d96c4d7d5\System.Xml.ni.dll - ok
10:33:57.0000 0x190c [ FD03915B5FD90025020971982CB32E18, 5837EEC1192791C991FCD822A95DC6F385C17A7DFCC2205B7D216FADCC6A99B2 ] C:\Windows\SysWOW64\httpapi.dll
10:33:57.0000 0x190c C:\Windows\SysWOW64\httpapi.dll - ok
10:33:57.0016 0x190c [ 5AA28997F6A30EB196A5AB09F684B7BE, E05770774B05836B2EF59A5B2089256268CCB53B41ADC6F3EB3985AC96194F4B ] C:\Windows\SysWOW64\imagehlp.dll
10:33:57.0016 0x190c C:\Windows\SysWOW64\imagehlp.dll - ok
10:33:57.0016 0x190c [ 88244F5A24F9CD98E74472FDFA827FA2, 40F2C8493A44F629A6D56D5A34721861A4CB7252FAFFD18FD33B7E895FF75F73 ] C:\Windows\SysWOW64\ncrypt.dll
10:33:57.0016 0x190c C:\Windows\SysWOW64\ncrypt.dll - ok
10:33:57.0016 0x190c [ 13B9417E93437480E168669EDE36298B, 6DA9F600805AF0D5C056E64387FCD17D593C7D57E1329CC90EA3ED6F13C2BF23 ] C:\Windows\SysWOW64\ntasn1.dll
10:33:57.0016 0x190c C:\Windows\SysWOW64\ntasn1.dll - ok
10:33:57.0016 0x190c [ D4031A30B9204249B5418252C17C7653, 52B2E2743CCC7E06029D8FDD401D38C150F4184A8C44AFACA6A612D7600AA6D5 ] C:\Program Files (x86)\Hp\Common\Plugins\HPDIA.exe
10:33:57.0016 0x190c C:\Program Files (x86)\Hp\Common\Plugins\HPDIA.exe - ok
10:33:57.0016 0x190c [ 6DBE009D0DECBD8F1F170366332BE432, 4FD67C3C2EEEC67183A908085C81598A3CB311C3D6BE6D1FE34606072FA95086 ] C:\Windows\SysWOW64\urlmon.dll
10:33:57.0016 0x190c C:\Windows\SysWOW64\urlmon.dll - ok
10:33:57.0016 0x190c [ E572557FD4CA855642A0B26CC9F3C788, 891D833853FB1CDEB57E6FBDF985360DADC7CB7642AD7A0107C15119CAD40C6E ] C:\Windows\SysWOW64\secur32.dll
10:33:57.0016 0x190c C:\Windows\SysWOW64\secur32.dll - ok
10:33:57.0016 0x190c [ A573EF8774E87574E344778C7F1F0054, 46E2A87763932E653D4E5FF0318A933D36AC5D2D879CC9953B9DD6CEE297E581 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\9e99d85dfa5a3de8e34fe912acf82021\System.Drawing.ni.dll
10:33:57.0016 0x190c C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\9e99d85dfa5a3de8e34fe912acf82021\System.Drawing.ni.dll - ok
10:33:57.0016 0x190c [ 866E7791B329B94A8D3CEF357C2E318B, 094F1EFFF36E940CF4CD51ECB9B8DF85C22186727A08078455EDE9E67EABB474 ] C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\cc272fa4bc8ae7c468e3c75a57ae3c72\System.Windows.Forms.ni.dll
10:33:57.0016 0x190c C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\cc272fa4bc8ae7c468e3c75a57ae3c72\System.Windows.Forms.ni.dll - ok
10:33:57.0032 0x190c [ 9C6918D82469EC89981F1E0F36D029C2, E14A9CEB3407A5D8EE14F451A3519008BFA205501A2737B7C68DB4C8AD4AAA28 ] C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\Installer\setup.exe
10:33:57.0032 0x190c C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\Installer\setup.exe - ok
10:33:57.0032 0x190c [ 0DB1E3F6189C628675F855C0EB510419, 989F539E82105019D2D81255369B96DC65826CD2A421DA09809155B26F69C555 ] C:\Program Files\Intel\iCLS Client\HeciServer.exe
10:33:57.0032 0x190c C:\Program Files\Intel\iCLS Client\HeciServer.exe - ok
10:33:57.0032 0x190c [ 5B4FF009D24F73F6FC6EB4870A789843, C542A72F67F667D7A83815CF434BDD12EB0C1CE03D98736862CCD763230BFDE5 ] C:\Windows\SysWOW64\mswsock.dll
10:33:57.0032 0x190c C:\Windows\SysWOW64\mswsock.dll - ok
10:33:57.0032 0x190c [ 40947436A70E0034E41123DF5A0A7702, 5D40FD92DA5CA59C1BADB58AD509DB6A6D613F18660A9A270A53ECA85D34C3A9 ] C:\Program Files (x86)\Bonjour\mdnsNSP.dll
10:33:57.0032 0x190c C:\Program Files (x86)\Bonjour\mdnsNSP.dll - ok
10:33:57.0032 0x190c [ FF0EE1B87E5DD7A82F7BB124D5CA8BB6, 9C4DA645D6EC97AA88D81CDC81F87C8B7A3434AF35A16F8622A097839EBFAB16 ] C:\Windows\SysWOW64\dnsapi.dll
10:33:57.0032 0x190c C:\Windows\SysWOW64\dnsapi.dll - ok
10:33:57.0032 0x190c [ AFFB4EB53FC1D04495C8A5EC80B1EBCD, 60A43F23B6357BD9E6B6BEA099CE9C745CA297CC99910E8E79C46ADBBED2536D ] C:\Windows\SysWOW64\FWPUCLNT.DLL
10:33:57.0032 0x190c C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
10:33:57.0032 0x190c [ B6C010F42053ED92E421EE5476E10645, 37B4DFF10DC8B276D979A1D04741A1D564720193E121B1D2A7B68020EF67DE38 ] C:\Windows\SysWOW64\rasadhlp.dll
10:33:57.0032 0x190c C:\Windows\SysWOW64\rasadhlp.dll - ok
10:33:57.0032 0x190c [ D84AEA3F3329D622DFC1297DDDF6163B, 316FE56CC30ED1473A917253F46B79EAA12F4ABD5B4B1ADB03929DFEE940F577 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
10:33:57.0032 0x190c C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe - ok
10:33:57.0032 0x190c [ 9B48E38C35F08FA831B387A0B27C40AA, A36F22314DC6D183DE1853FCAB4ED8A9C7A851B62F34A7DD5E059B6485B34C2C ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamsrv.dll
10:33:57.0032 0x190c C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamsrv.dll - ok
10:33:57.0047 0x190c [ E4B829081E639E42985853BAE754A53D, C94E8E6CE2999ED05D6738A2498F1FD521CE68466CDD3EDC3DDAD71278497879 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcp100.dll
10:33:57.0047 0x190c C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcp100.dll - ok
10:33:57.0047 0x190c [ 80FCEDBE920E9CBE30D9D3665BD6EFED, 5BCA95D4EADADE3046F5F95F9FAD97DF585638B49CCA2184BD0157AE374727C8 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcr100.dll
10:33:57.0047 0x190c C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcr100.dll - ok
10:33:57.0047 0x190c [ 30490EED6A1E20E8259C0B9C58F488FE, C8CE687EFFED31AD75D79A52D49E83F39BEE5FD9A1A67EC586BA930650A73D6C ] C:\Program Files (x86)\Malwarebytes Anti-Malware\QtCore4.dll
10:33:57.0047 0x190c C:\Program Files (x86)\Malwarebytes Anti-Malware\QtCore4.dll - ok
10:33:57.0047 0x190c [ 4F45ED469906494F9BF754E476390DBD, D8FF6AFD73D8C191F5732DF9737E6F83B2B52B06A3A6CD4CC6EAC9464CBB2772 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
10:33:57.0047 0x190c C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe - ok
10:33:57.0047 0x190c [ F722FA26739EAFCBD8D5F3829B632CD7, 8C7356AFF03748C4D565F3B6CBD4E289910253A3CA6CAE3A118F2C7E419CF649 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamcore.dll
10:33:57.0047 0x190c C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamcore.dll - ok
10:33:57.0047 0x190c [ 5D7148704D8715482695A534887359FA, A194BE35CFB3B5B157E4DEF24E4615EBE8C04156ABFD19718AA906598D26487E ] C:\Windows\SysWOW64\mpr.dll
10:33:57.0047 0x190c C:\Windows\SysWOW64\mpr.dll - ok
10:33:57.0047 0x190c [ 3E28B99198B514DFEB152EACF913025E, 6C1D8353DCD5F811F39C0C3CB5DF3D2457F0D17EE80FB06196AA169E3D19E9B2 ] C:\Windows\System32\drivers\mrxsmb10.sys
10:33:57.0047 0x190c C:\Windows\System32\drivers\mrxsmb10.sys - ok
10:33:57.0047 0x190c [ 5A072F0B90C29C5233D78BE33EF5ED78, B32ED76A674B1FC743361FB7BBD4C915A78B14132AB056AADD445D5995AD4F32 ] C:\Windows\System32\drivers\Ndu.sys
10:33:57.0047 0x190c C:\Windows\System32\drivers\Ndu.sys - ok
10:33:57.0063 0x190c [ 3A280F3B3C7A46E29C404ACD46ECBF5E, 81C3367A2A212DBCC65B8A0166FD092E3205AB31A146B4B737061335CEC51F9D ] C:\Windows\System32\nlasvc.dll
10:33:57.0063 0x190c C:\Windows\System32\nlasvc.dll - ok
10:33:57.0063 0x190c [ 380AA537624F698F4C51C55806D30E69, D27FC209A99E4EE175659590AD5CFD543D77667C0F0D2BC12535EA1E34C88430 ] C:\Windows\System32\ncsi.dll
10:33:57.0063 0x190c C:\Windows\System32\ncsi.dll - ok
10:33:57.0063 0x190c [ DD079EC8F44DCA3A176B345C6ADEFB66, 6CD9371B83EA23D2181891FAE1DB285BC111A78C35F374E57666ED09860C91A9 ] C:\Windows\System32\winhttp.dll
10:33:57.0063 0x190c C:\Windows\System32\winhttp.dll - ok
10:33:57.0063 0x190c [ 90B06AD0BA271ABDD56A77040B39C525, 8838337E09B4555FBD165EB02119B3DE5BC074E33D1A9D39FFFB82B0402F12AE ] C:\Windows\System32\ssdpapi.dll
10:33:57.0063 0x190c C:\Windows\System32\ssdpapi.dll - ok
10:33:57.0063 0x190c [ CF4905C5F3179F20DA550CD135EE90EE, D887773F537268CD1141776FC439299C2C9F2986D7962D83FE534E3CD4F983AD ] C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
10:33:57.0063 0x190c C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe - ok
10:33:57.0063 0x190c [ 4FBC630768570E6AC35C3DE8F6EC79F5, CF4E271683AA4AADF763A5B3081B8135C9D69F2C6D9DED9C3717B085A1BF14CF ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
10:33:57.0063 0x190c C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe - ok
10:33:57.0063 0x190c [ 2FAD0F3004D0CFEE5148CB36E6999DBD, 4EE62420BBC6B81048B35E549F2332EA3640B41101FC174C74CCCC412AF0D6E3 ] C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
10:33:57.0063 0x190c C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe - ok
10:33:57.0063 0x190c [ D32C2A98859CB22D57A665F15F351E7D, CD50473C7DD0E57F2784B137F3490DF710BEEAA31E4961DCC90CF6A70632B481 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.dll
10:33:57.0063 0x190c C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.dll - ok
10:33:57.0063 0x190c [ 15E21AA7D0C0C994CD565EEB96D13C20, 6B9AC59F8C17C639929E9BF911C20DA55459FA55F490E7E0CC284A9FBC077274 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\QtGui4.dll
10:33:57.0063 0x190c C:\Program Files (x86)\Malwarebytes Anti-Malware\QtGui4.dll - ok
10:33:57.0078 0x190c [ D7588D42E29080C32A003BEE465160D8, 03C23580F133C976A93F0BB5088E811BC2EC8AEB20A81FE54C9ED608B010C506 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\QtNetwork4.dll
10:33:57.0078 0x190c C:\Program Files (x86)\Malwarebytes Anti-Malware\QtNetwork4.dll - ok
10:33:57.0078 0x190c [ C1E44A99F7CF8C3A08CD5ADDF451636C, 191EA5A62837DA1EB31F80E9EE9D343F6F2A6FC0A33EA52415991A23B217AAB4 ] C:\Windows\System32\d3d9.dll
10:33:57.0078 0x190c C:\Windows\System32\d3d9.dll - ok
10:33:57.0078 0x190c [ 6ADEF3CCE9788849FA7F8D28A85B2833, 37DA6C868886282A5AD5B59A49D31AB01E5C125F2A67A6E54BBF463DF99A897D ] C:\Windows\SysWOW64\comdlg32.dll
10:33:57.0078 0x190c C:\Windows\SysWOW64\comdlg32.dll - ok
10:33:57.0078 0x190c [ 62969A88DE12FD62D59A6C7821A929BC, 47B49F37B11DAB2E686DC47616623D2332F6F889529820DA82CB6DC67B81884E ] C:\Windows\SysWOW64\imm32.dll
10:33:57.0078 0x190c C:\Windows\SysWOW64\imm32.dll - ok
10:33:57.0078 0x190c [ 21A13082B44A898B8DCC54972B2B5C31, 6D2018BCA2BF774D4D82E8AC9E6AF7579F1377266753459A45BBE5DD10BEB20D ] C:\Windows\SysWOW64\winmm.dll
10:33:57.0078 0x190c C:\Windows\SysWOW64\winmm.dll - ok
10:33:57.0078 0x190c [ 564B43AE09C66E6D7D442B0B5C5925CD, 8D1388AE0A068BBB96EECCCCCF3E9FA4FDA83DD14E65B15D7DCBF72710B0EC7E ] C:\Windows\SysWOW64\comctl32.dll
10:33:57.0078 0x190c C:\Windows\SysWOW64\comctl32.dll - ok
10:33:57.0078 0x190c [ F5C43BFE7EF27521ED25B912C9366CD9, A43758C33AB96CC2DE883B975C04B02B026663F9E7A523FEC99D15DA38DFFEE2 ] C:\Windows\SysWOW64\msctf.dll
10:33:57.0078 0x190c C:\Windows\SysWOW64\msctf.dll - ok
10:33:57.0078 0x190c [ 74C6B3109A607B89B1A3171A3D54C8D8, F3AB2D2B96C6FDB9F5EDFB10A4D9D4151B277049D7EB4C4A8195BFFA066F832C ] C:\Windows\System32\cryptui.dll
10:33:57.0078 0x190c C:\Windows\System32\cryptui.dll - ok
10:33:57.0078 0x190c [ 19C5844B56BCA187625D2CFA9A7C1144, E900740A3B629B8C3B53B2FD1632DB8D1C6875DF24331A91EEA963F8D945D120 ] C:\Windows\SysWOW64\winmmbase.dll
10:33:57.0078 0x190c C:\Windows\SysWOW64\winmmbase.dll - ok
10:33:57.0094 0x190c [ AC14EB294FE2FACAF1F0D944075B9B60, 03471061702A488440FA516382A82EF0A927FCC46E6BAE54D91AA65F18C11140 ] C:\Windows\System32\nvaudcap64v.dll
10:33:57.0094 0x190c C:\Windows\System32\nvaudcap64v.dll - ok
10:33:57.0094 0x190c [ 9A5309EF92F39346CFD5A4C2C3D1BFAD, 5908E0C9562F9CB24784491BD9AE7983A33A6BDF81AFA0A08045518A0C9BB2B1 ] C:\Windows\System32\pcasvc.dll
10:33:57.0094 0x190c C:\Windows\System32\pcasvc.dll - ok
10:33:57.0094 0x190c [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] C:\Windows\System32\drivers\PEAuth.sys
10:33:57.0094 0x190c C:\Windows\System32\drivers\PEAuth.sys - ok
10:33:57.0094 0x190c [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] C:\Windows\System32\drivers\secdrv.sys
10:33:57.0094 0x190c C:\Windows\System32\drivers\secdrv.sys - ok
10:33:57.0094 0x190c [ 050A4112B00BCA2E13314CDE48C1DEEE, 86C679CD494DEEB984372BF954EFBB8982AC7995FBF89FCF83BC228991D1B825 ] C:\Program Files (x86)\Skype\Updater\Updater.exe
10:33:57.0094 0x190c C:\Program Files (x86)\Skype\Updater\Updater.exe - ok
10:33:57.0094 0x190c [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] C:\Windows\System32\drivers\srvnet.sys
10:33:57.0094 0x190c C:\Windows\System32\drivers\srvnet.sys - ok
10:33:57.0094 0x190c [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] C:\Windows\System32\drivers\tcpipreg.sys
10:33:57.0094 0x190c C:\Windows\System32\drivers\tcpipreg.sys - ok
10:33:57.0094 0x190c [ 3DA26652B12E9AB43FD04976AC6DFD33, DEFE220D86197949E97342FE3487CD6A07DD2FFAF6D17A7C65419C2C1B9D1AB5 ] C:\Windows\System32\sysmain.dll
10:33:57.0094 0x190c C:\Windows\System32\sysmain.dll - ok
10:33:57.0110 0x190c [ D638904FE86A5FE542A1BA13A9D68E5C, 89A956F932316BC50DD99B54BAF4E2809DCAA084DBB04CB84D11E5470BEAF251 ] C:\Windows\System32\wiaservc.dll
10:33:57.0110 0x190c C:\Windows\System32\wiaservc.dll - ok
10:33:57.0110 0x190c [ 6E49FFDFBAC4AC6CB45238C67E3E15F2, AC2EC3D322E9227CD8C7637444D86F5737175BED5C770805A1782ED47BBCE50D ] C:\Windows\System32\wiatrace.dll
10:33:57.0110 0x190c C:\Windows\System32\wiatrace.dll - ok
10:33:57.0110 0x190c [ 2F6410A7641BE1196DC423025F208285, D1A31A5EC5FD3B4F26471E5DD17CE9386A7A23ECB8A57901B1DE11CF7998727C ] C:\Windows\SysWOW64\dwmapi.dll
10:33:57.0110 0x190c C:\Windows\SysWOW64\dwmapi.dll - ok
10:33:57.0110 0x190c [ C5784EFEEADA38050706FF368B6DD21F, 29515E525E4B21F90557E919BD9E7FE568AE0C11166E7A798871611FCA20A83D ] C:\Windows\System32\deviceassociation.dll
10:33:57.0110 0x190c C:\Windows\System32\deviceassociation.dll - ok
10:33:57.0110 0x190c [ B801371569B9E310BBD068E21D486F1A, 9A98B5ABD1918BE548A4239B4C25C1604FDAE85D865DBE16F2E415399A09707D ] C:\Windows\System32\fundisc.dll
10:33:57.0110 0x190c C:\Windows\System32\fundisc.dll - ok
10:33:57.0110 0x190c [ 536175601D6FDA57917D18D21476915A, 3482E67616FACA092128498829B726791A921A40281ECBA00484375B89E93FA7 ] C:\Windows\System32\wsdchngr.dll
10:33:57.0110 0x190c C:\Windows\System32\wsdchngr.dll - ok
10:33:57.0110 0x190c [ 16BF6ADAED1427A7AF08125DD14BA52C, BE50645151FB85FA044FF29A23ADA5E46001A42ACD0BF204B9AE377CC78AD5DB ] C:\Windows\System32\fdPnp.dll
10:33:57.0110 0x190c C:\Windows\System32\fdPnp.dll - ok
10:33:57.0110 0x190c [ CB3F6732C7027A65F56BCB4CC7C481D3, 095EC3EAAB9C475D3F378404721A45DD3774A45E5B10E1C55885F989F58E2DF6 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamtoast.dll
10:33:57.0110 0x190c C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamtoast.dll - ok
10:33:57.0110 0x190c [ 4ACFC5853A3F0C6C2F54E537C23EE90F, 47D81F471A250696A1A0D19294FC553EB88D813612A8351C89F65D7BF99C8532 ] C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
10:33:57.0110 0x190c C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe - ok
10:33:57.0125 0x190c [ 522FBA7CCAAC50E43E41C3B6269FD381, 0608C7FAAA6F0ED80E6A7FF6F8AD0875F6D24090D04DDA03FC981C08AAAB4784 ] C:\Program Files\Windows Defender\MpSvc.dll
10:33:57.0125 0x190c C:\Program Files\Windows Defender\MpSvc.dll - ok
10:33:57.0125 0x190c [ ED70EDCC4107F3727973C312E0049BD5, A72EA60BE2ADB8F15BBEC86910DC1C1F41ABE888FB87B1F3F902DCAA85E774F6 ] C:\Program Files\Windows Defender\MsMpEng.exe
10:33:57.0125 0x190c C:\Program Files\Windows Defender\MsMpEng.exe - ok
10:33:57.0125 0x190c [ C97E14BB6A196B0554D6EB67D8818175, C00588C94988F10507F84584DFA4C0A43B8648AD1AD35E9BAE14CDD21FCF7B90 ] C:\Windows\System32\trkwks.dll
10:33:57.0125 0x190c C:\Windows\System32\trkwks.dll - ok
10:33:57.0125 0x190c [ C0B4E207F403024DB67C79497D4B3546, 1B54F8F0EFE703E94C7D7147F0B4203115E0689F7208EFB530507769FAAAC983 ] C:\Windows\SysWOW64\avicap32.dll
10:33:57.0125 0x190c C:\Windows\SysWOW64\avicap32.dll - ok
10:33:57.0125 0x190c [ 2E8111191A367645DDAF84D49361B532, 279283AD95161CC6AD883627B40D301FBD3D154FA88FDE6B3EA44E42EA7F0F57 ] C:\Windows\SysWOW64\msvfw32.dll
10:33:57.0125 0x190c C:\Windows\SysWOW64\msvfw32.dll - ok
10:33:57.0125 0x190c [ 74FE544DF98B93BA9F0BCF2DDC622A08, 1FB1B7EF7D4F96D2C420E587E265BCC58ABAE1ED96741DD10AD67845B5180B0A ] C:\Windows\SysWOW64\quartz.dll
10:33:57.0125 0x190c C:\Windows\SysWOW64\quartz.dll - ok
10:33:57.0125 0x190c [ C878C66B13FA7F6DC0B0F869D85FA3A1, 0D89CA5191506F9947399011075244600C8A93106C9D933B5B5AA602F2FEB373 ] C:\Program Files\Windows Defender\MpClient.dll
10:33:57.0125 0x190c C:\Program Files\Windows Defender\MpClient.dll - ok
10:33:57.0125 0x190c [ 8A073508726DE4A69ED702A7A6082808, 751F1333E38AD8351D811708748C93BA0E98E20FA39DFEBAF1DE026E00A2ACC5 ] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9600.17227_none_dad9452e5bcb7986\GdiPlus.dll
10:33:57.0125 0x190c C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.9600.17227_none_dad9452e5bcb7986\GdiPlus.dll - ok
10:33:57.0125 0x190c [ 527429623E2A20C53DB246C51E6F2726, C3B714A70D58A2F31B6D3CB9527FF007E23D49A49EED4DF5F75BBE1BDA01D571 ] C:\Windows\System32\wbemcomn.dll
10:33:57.0125 0x190c C:\Windows\System32\wbemcomn.dll - ok
10:33:57.0141 0x190c [ 9DB490F3E823C5C3C070644B96CB9D59, 81937D0B331E43C7C61514E60B3AD51370C5201F7B4D12F8534840D91EDC32DD ] C:\Windows\System32\wbem\WMIsvc.dll
10:33:57.0141 0x190c C:\Windows\System32\wbem\WMIsvc.dll - ok
10:33:57.0141 0x190c [ 949E0E42DAAD0418513B44C31A697CA5, 53B51DB7A0DB413D3FF6D71C177E31EFA220909A4C966881963AB24FE7035FA4 ] C:\Windows\SysWOW64\d3d9.dll
10:33:57.0141 0x190c C:\Windows\SysWOW64\d3d9.dll - ok
10:33:57.0141 0x190c [ A50FE6492B55ECDDD398EF5EE35676F8, F7E525E4BFBBCFDF0435089961578FA26F9CAAD6E2CBE9BA9179836573F4BF11 ] C:\Windows\SysWOW64\Magnification.dll
10:33:57.0141 0x190c C:\Windows\SysWOW64\Magnification.dll - ok
10:33:57.0141 0x190c [ D24002EB2F4A8A04897703067E81CC5D, 03806198D26DD7BA3E27EFE0911B49E5B48CAD8A05EC4F56AF45CF1E3FAD6916 ] C:\Windows\System32\wuaueng.dll
10:33:57.0141 0x190c C:\Windows\System32\wuaueng.dll - ok
10:33:57.0141 0x190c [ 20ECD0A490A121CB34F553FAD1DBBD39, 17C9DA33E78FBC7582B0AA53C611929B80FBBE1343B84A179D515B51C964D218 ] C:\Windows\System32\escsvc64.exe
10:33:57.0141 0x190c C:\Windows\System32\escsvc64.exe - ok
10:33:57.0141 0x190c [ 62D2F0DEED2F7A6B2A7F84977DF9A23A, 4DDC1D1BD1FADC764C7C17E018107064BCC0A1C5E71C4A80EFE8C7BD4803D473 ] C:\Windows\System32\cabinet.dll
10:33:57.0141 0x190c C:\Windows\System32\cabinet.dll - ok
10:33:57.0141 0x190c [ 5BED3AB69797C8786EF70AEA8C33748B, 0474EE6C43D437CBA9848BCF25D1341B122D7E9F371A0FF3C62C83D14B2CB095 ] C:\Windows\System32\drivers\srv2.sys
10:33:57.0141 0x190c C:\Windows\System32\drivers\srv2.sys - ok
10:33:57.0141 0x190c [ 3FA61E33B20FD9D94DB7BDA9F324FBAB, 899E1AD0D118A941FEB95BC73F31770E9D5223CAD654B8CCE81D6545F617E5C3 ] C:\Windows\System32\mspatcha.dll
10:33:57.0141 0x190c C:\Windows\System32\mspatcha.dll - ok
10:33:57.0141 0x190c [ 6416E79A58A8FCC33A447A4DDDD3BF04, 839E3107ACCD520C309BD6C8324DF7A8EB724EAD442AB1F1CACB0D83F84BE488 ] C:\Windows\System32\drivers\srv.sys
10:33:57.0141 0x190c C:\Windows\System32\drivers\srv.sys - ok
10:33:57.0157 0x190c [ 793EACA6BAE9F481C2059BCB3743EB4A, 2624905C6B6A1227BD1CAC7D4FE55A5F6543E1278DAB31EC553748472D180D1D ] C:\Windows\System32\srvsvc.dll
10:33:57.0157 0x190c C:\Windows\System32\srvsvc.dll - ok
10:33:57.0157 0x190c [ 830445350C7CDEC426FA5E1F9E1B0DAD, D32B25C7E7F093718DCA6E5BD348F3A2C2F4EAF95C4B4F59096B792B4C47D2FD ] C:\Windows\System32\sscore.dll
10:33:57.0157 0x190c C:\Windows\System32\sscore.dll - ok
10:33:57.0157 0x190c [ CCD0DF268D9C9F5287B66565B4258FD6, 274CDBDF11AA27C002F5096EAEBA1954F2F66F20ECC0B877B6DC3F6C61E4B94B ] C:\Windows\System32\wups.dll
10:33:57.0157 0x190c C:\Windows\System32\wups.dll - ok
10:33:57.0157 0x190c [ 907456C38231601FA003ACF3F6ED4F77, 792F2E631854757E8B9B504267A66E4A354DAF845E2BFF066221A4C6F7FB2F1E ] C:\Program Files\Windows Defender\MpRtp.dll
10:33:57.0157 0x190c C:\Program Files\Windows Defender\MpRtp.dll - ok
10:33:57.0157 0x190c [ 3A8A50121A2600AEC63E4713AF6F25E7, 16D93213978146DFAEA42DAB1F62BD450E379C695D8AF285EF3BB71E245A0309 ] C:\Windows\System32\sscoreext.dll
10:33:57.0157 0x190c C:\Windows\System32\sscoreext.dll - ok
10:33:57.0157 0x190c [ 056A7F991CCBDACB5A132419FA244C3E, DD979234DAD651999617EA4721679D2D9B12CF2B82F228448CE3E893066EBAB0 ] C:\Windows\System32\mi.dll
10:33:57.0157 0x190c C:\Windows\System32\mi.dll - ok
10:33:57.0157 0x190c [ E8E50E7703204AE06C6B5FEFE2F701E7, BFAA008194FE873F6EE36FD769CC8202F9C55C41B02098B96EB6CCF127587363 ] C:\Windows\System32\miutils.dll
10:33:57.0157 0x190c C:\Windows\System32\miutils.dll - ok
10:33:57.0157 0x190c [ EA0DF4EA576FC466598499C8E98A7ECA, 8A63EA848450CE72C0050BB13C972AB235A21B14C2A45BA746761E2F88CA93BD ] C:\Program Files\Windows Defender\NisIpsPlugin.dll
10:33:57.0157 0x190c C:\Program Files\Windows Defender\NisIpsPlugin.dll - ok
10:33:57.0172 0x190c [ 57540FE9167823B79A6B9582732ABE50, DC9A0BCB3B9215EFE42FE9E494F74F6424D861016809AE15FECD4C148CC10DA5 ] C:\Windows\System32\fltLib.dll
10:33:57.0172 0x190c C:\Windows\System32\fltLib.dll - ok
10:33:57.0172 0x190c [ ACFEE9487693C2BD573DFCA71D98E17C, A347FD476147CD3568EEE6993B46AFC05A66A4269094CA51572D0FD013FCB535 ] C:\Windows\System32\iphlpsvc.dll
10:33:57.0172 0x190c C:\Windows\System32\iphlpsvc.dll - ok
10:33:57.0172 0x190c [ 5D4A403DAE434FBA11779496EAFBDDE8, A9BF489CCA7D3BEF074126AA393A2A044277BFD28B4340208771107BE3467834 ] C:\Windows\System32\adhsvc.dll
10:33:57.0172 0x190c C:\Windows\System32\adhsvc.dll - ok
10:33:57.0172 0x190c [ 73F269436228D5625E83A1EAF3549F58, 9D53F5EF7820FDBC72948ACE67093BEDA931FAAF35B9FCF6DCE75A6A7697DD1C ] C:\Windows\System32\httpprxm.dll
10:33:57.0172 0x190c C:\Windows\System32\httpprxm.dll - ok
10:33:57.0172 0x190c [ 95471DDCB3B3FF70015FD9AA13404F44, B8476161CA49B94BF89C64E9ACF961992FDE0B09525B749984E6093CFAADDEF8 ] C:\Windows\System32\resutils.dll
10:33:57.0172 0x190c C:\Windows\System32\resutils.dll - ok
10:33:57.0172 0x190c [ 38DF4E3D3559F58793E70ED8093A6F2B, F20F4ABA2EC8F8AE488B029D002347356D5607E1C0507DECD2E66D942441D928 ] C:\Windows\System32\wmidcom.dll
10:33:57.0172 0x190c C:\Windows\System32\wmidcom.dll - ok
10:33:57.0172 0x190c [ 1E01725D557B5325E8C99F712E7D4A7E, BF3F085EEA9B967F319B7F913C9117C9BBE9E30D63D2172BA00C5DDD9D4ABA7E ] C:\Windows\System32\wups2.dll
10:33:57.0172 0x190c C:\Windows\System32\wups2.dll - ok
10:33:57.0172 0x190c [ 9770D0FA691178C398657138F3B00953, E5CE0897A6860290575FED9D0685E86B05F89EC31A52D838BC3DB8BA7BD8BDBF ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F36DC468-5DC1-4329-8901-96DD19DF8003}\mpengine.dll
10:33:57.0172 0x190c C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F36DC468-5DC1-4329-8901-96DD19DF8003}\mpengine.dll - ok
10:33:57.0172 0x190c [ 8EE8CA953542A8E70A841C453BC15196, D327510D9B1176355302CFE623AB01DF95BCB304AB06AD778047C26576F70DA6 ] C:\Windows\System32\clusapi.dll
10:33:57.0172 0x190c C:\Windows\System32\clusapi.dll - ok
10:33:57.0188 0x190c [ 4BA57ED44973409C15406EE0CAD58778, 1110AA8A14D5AE41E37F1C9E519C143DCA31E6797525861E40B14EE723588912 ] C:\Windows\System32\sqmapi.dll
10:33:57.0188 0x190c C:\Windows\System32\sqmapi.dll - ok
10:33:57.0188 0x190c [ 5FE61B0E223FAC7316526A7B588E9F2D, 5AA77AA71A3BD0E0A6AB64A0771E51D3B1055A8D20D2A328C6BF77747633660B ] C:\Windows\System32\wdscore.dll
10:33:57.0188 0x190c C:\Windows\System32\wdscore.dll - ok
10:33:57.0188 0x190c [ 6E98157791491AEBF64B1392293E48A7, 89E6499C150341730113DBA193C0F778FC809E3AAE49A9227FC11A026DACD5EE ] C:\Windows\System32\nci.dll
10:33:57.0188 0x190c C:\Windows\System32\nci.dll - ok
10:33:57.0188 0x190c [ 4F32FE0318A902949E461F699030DA45, 2B0FD05FC6F2BBD79B613BE03432075C38CB7EE33087E1CE2B3A4040F4368477 ] C:\Windows\System32\DAFWSD.dll
10:33:57.0188 0x190c C:\Windows\System32\DAFWSD.dll - ok
10:33:57.0188 0x190c [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] C:\Windows\System32\drivers\tunnel.sys
10:33:57.0188 0x190c C:\Windows\System32\drivers\tunnel.sys - ok
10:33:57.0188 0x190c [ 15225081966C785A9192782401643FD4, E2BA0C8D044556FDD9DD7A25F7F71553DE7A2924E78F9284413C2AC46F0BF4EB ] C:\Windows\System32\qmgr.dll
10:33:57.0188 0x190c C:\Windows\System32\qmgr.dll - ok
10:33:57.0188 0x190c [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] C:\Windows\System32\wdi.dll
10:33:57.0188 0x190c C:\Windows\System32\wdi.dll - ok
10:33:57.0188 0x190c [ 93664065662467289E77F0982FA61D37, 8FC996A36B25988BE2773E3F3850B89415A49123E131BA8485536D44EC542ECA ] C:\Windows\System32\WSDApi.dll
10:33:57.0188 0x190c C:\Windows\System32\WSDApi.dll - ok
10:33:57.0203 0x190c [ 03694A8350222AC9F0E8693986E92BE2, 44FB5A8143A5782CB2E6056B04B73CB8E967585BFBED6D98C4AB49CA5AAA3730 ] C:\Windows\System32\diagperf.dll
10:33:57.0203 0x190c C:\Windows\System32\diagperf.dll - ok
10:33:57.0203 0x190c [ 449A20A674AA3FAA7F0DD4E33EE2DC20, 28B9BDA306456E8640C355718DE3477537B0FAF8C37F633C709129AAB64D9873 ] C:\Windows\System32\hidserv.dll
10:33:57.0203 0x190c C:\Windows\System32\hidserv.dll - ok
10:33:57.0203 0x190c [ F0F0A372C2EF6358399C4936F91B6131, CE596C71EB4D1A5E104D3148F2D0D8789882C59FD198DCF33CCAC7A08B50E4EE ] C:\Windows\System32\netprofmsvc.dll
10:33:57.0203 0x190c C:\Windows\System32\netprofmsvc.dll - ok
10:33:57.0203 0x190c [ F0D53BA526018350E227F6E3E80C3966, B070DEEF36B23A33142F7991B1F8655F61CD7761AE991F809B006FA50C519BDC ] C:\Windows\System32\webservices.dll
10:33:57.0203 0x190c C:\Windows\System32\webservices.dll - ok
10:33:57.0203 0x190c [ 618A19EB31ECA7B7F2AA0207BAF598A5, CB18CF9B781EAB3D775F8201F294A7135E058D6C963D2CC759DCA14D95EED538 ] C:\Windows\System32\wpdbusenum.dll
10:33:57.0203 0x190c C:\Windows\System32\wpdbusenum.dll - ok
10:33:57.0203 0x190c [ CBD8F6EAC15E1EF69917B3961315C4D4, FB80B32C5CCDA14BC1AC5A9215CBCB57A71A8BF9D6014B193F7E77E6976F791A ] C:\Windows\System32\bitsperf.dll
10:33:57.0203 0x190c C:\Windows\System32\bitsperf.dll - ok
10:33:57.0203 0x190c [ 041A999E4FF9A7CDBE67357751881FB8, 356C52637EA715D6FA2B65BD311C9BF1635A582023434902EC2DE4A2448961F8 ] C:\Windows\System32\browser.dll
10:33:57.0203 0x190c C:\Windows\System32\browser.dll - ok
10:33:57.0203 0x190c [ 1062C1D05E95306D878FFFE0A23B84C0, 75E27BB97A24CB5161B3CC7C48B9F0A48B587643B8FBD56EC72AF0162F9B5EEE ] C:\Windows\System32\perftrack.dll
10:33:57.0203 0x190c C:\Windows\System32\perftrack.dll - ok
10:33:57.0203 0x190c [ F0DF4F8D9F1F8FA36BA30ACAC213D03D, 1DC17A432EED9612E9A1308B319FEC037930B79A5E03B292909A3B0031F60A34 ] C:\Windows\System32\PortableDeviceApi.dll
10:33:57.0203 0x190c C:\Windows\System32\PortableDeviceApi.dll - ok
10:33:57.0219 0x190c [ 205B59C8B291A707B24C97B123834E70, 04034B153F3D9EF07E08615449250EAA6A3930AE28EB58B1CC1A40D34A812BD0 ] C:\Windows\System32\pnpts.dll
10:33:57.0219 0x190c C:\Windows\System32\pnpts.dll - ok
10:33:57.0219 0x190c [ 647B3E3A60DED8DAECF4F798A058EADB, 9A9DE6F0781FF01512E965D44514CD60DC645DCE8ECAAF0B3001DBA7379BB917 ] C:\Windows\System32\srumsvc.dll
10:33:57.0219 0x190c C:\Windows\System32\srumsvc.dll - ok
10:33:57.0219 0x190c [ C16097D77A232A288D65F299E2E01105, 5CE4B44B06FD26569C0F92FF1D3991D0128D8444AE7BC9EBEF5A33811D721BE8 ] C:\Windows\System32\IPSECSVC.DLL
10:33:57.0219 0x190c C:\Windows\System32\IPSECSVC.DLL - ok
10:33:57.0219 0x190c [ B4FC38795A0AFC18539E220F56348764, A7ACAD98BDE191EAE99E89145E476E92AE75AAA020406ABFFF36CC3DA2509A7C ] C:\Windows\System32\PortableDeviceConnectApi.dll
10:33:57.0219 0x190c C:\Windows\System32\PortableDeviceConnectApi.dll - ok
10:33:57.0219 0x190c [ 6AF7948D08E59B5690D3559AEB8E0F93, 66E825B05FE666BE7E8B79BB33E7AF9942D05F2CC6EB2702BA3D2183FB4C4598 ] C:\Windows\System32\wdiasqmmodule.dll
10:33:57.0219 0x190c C:\Windows\System32\wdiasqmmodule.dll - ok
10:33:57.0219 0x190c [ 22C3168D2AAA6C0546FE215CD079DBBB, 484D982D3BDAA4090D75C84226582D9B0344F19E32EFE3F12909C4ED125F5F6C ] C:\Windows\System32\wer.dll
10:33:57.0219 0x190c C:\Windows\System32\wer.dll - ok
10:33:57.0219 0x190c [ BEA157D1857FA63205558750720D9071, EC7FA0E0BBC2B0A826903D6E1989AFE73E5D06780306F478FE715A7E4A73EA7C ] C:\Windows\System32\appsruprov.dll
10:33:57.0219 0x190c C:\Windows\System32\appsruprov.dll - ok
10:33:57.0219 0x190c [ F13A820F50114A9F364D6CA2A89ECB2E, 068E8308CED9C9FDBBD8CE7507051ED0E66CA9B997B7946CB987D3F89CFBD67F ] C:\Windows\System32\FwRemoteSvr.dll
10:33:57.0219 0x190c C:\Windows\System32\FwRemoteSvr.dll - ok
10:33:57.0219 0x190c [ 8449B6B3E281AF44BEA98D318D7481A5, 74463B6DC0D88B29F3CB28A55C922887102DDD9450EF99242314238FBF488CB7 ] C:\Windows\System32\nduprov.dll
10:33:57.0219 0x190c C:\Windows\System32\nduprov.dll - ok
10:33:57.0235 0x190c [ 28C35503056748FA88499DAECF3D5557, 95CA9A24B5A782340D75A6268F8503513C4A51FDABE0897300471FD5EE78E960 ] C:\Windows\System32\npmproxy.dll
10:33:57.0235 0x190c C:\Windows\System32\npmproxy.dll - ok
10:33:57.0235 0x190c [ D3F794546CE8666B663A0A906CA97DCA, 9A9133B07FE27AC43716E018260ADB2B24519B2B582254E0FCA2B7DF7394BD36 ] C:\Windows\System32\wpnsruprov.dll
10:33:57.0235 0x190c C:\Windows\System32\wpnsruprov.dll - ok
10:33:57.0235 0x190c [ 7667B9D81EA8FD6540E6CF72F92161A6, 98F3D0E376F715EBE083FE112CAA640BCE0F13DCE0F244D059D7FA019EA3D24C ] C:\Windows\System32\appinfo.dll
10:33:57.0235 0x190c C:\Windows\System32\appinfo.dll - ok
10:33:57.0235 0x190c [ 5EE916C3272A19B459717A8D2397B07A, 7231A20E56EC571F6565DFEA348B2656E3032E56D207501620A212CC460897CA ] C:\Windows\System32\energyprov.dll
10:33:57.0235 0x190c C:\Windows\System32\energyprov.dll - ok
10:33:57.0235 0x190c [ F06F60158842691FA4B5DE0E08F55B29, 240C38803AD124CB67CCBDB5F8BAC98E9094ADBC7E56221CC4D8AD5106CBCDED ] C:\Windows\System32\ncuprov.dll
10:33:57.0235 0x190c C:\Windows\System32\ncuprov.dll - ok
10:33:57.0235 0x190c [ 0BDB5190B3AFAEFF93800F149781F942, 7385F8DD65010ADF32EBF5F065C39FF18D8033F0A9BFF0DD9E619430EFF09B12 ] C:\Windows\System32\pautoenr.dll
10:33:57.0235 0x190c C:\Windows\System32\pautoenr.dll - ok
10:33:57.0250 0x190c [ F12B563360D2BA8AD323A74986AF8A5B, AACCCB30F031940CB04926D32F6ED9FE89B93FD58DCB7B207B9EC0AB65D9B9FE ] C:\Windows\System32\wwapi.dll
10:33:57.0250 0x190c C:\Windows\System32\wwapi.dll - ok
10:33:57.0250 0x190c [ E90A3C2460984362BE38F572842C890A, 11EB6472B843FCF4CCDAA9C67EBDA071748AAE50C3D150C13143C6F90A352078 ] C:\Windows\System32\activeds.dll
10:33:57.0250 0x190c C:\Windows\System32\activeds.dll - ok
10:33:57.0250 0x190c [ E7CD6B5449030F4F9B29C742664B63B3, 290C95E4865E4F72EB849C458F8AE76BB31F86D20C9C02D2BDF075CA653D6E12 ] C:\Windows\System32\adsldpc.dll
10:33:57.0250 0x190c C:\Windows\System32\adsldpc.dll - ok
10:33:57.0250 0x190c [ 90AC8D4574103FCF8942C526998F46BF, 82B55E3C466526B04DC67EE8C2AEC30247C30C32C914DE34D63F0BF82CDB88D0 ] C:\Windows\System32\srumapi.dll
10:33:57.0250 0x190c C:\Windows\System32\srumapi.dll - ok
10:33:57.0250 0x190c [ 25F83CCBFA07077EFB4EEFCFF3CC3E7A, F0B62CCB2751E5FADFA357CB77F489564FB4BAA4C670B55F445577E7BC8210A3 ] C:\Windows\System32\bitsigd.dll
10:33:57.0250 0x190c C:\Windows\System32\bitsigd.dll - ok
10:33:57.0250 0x190c [ B344479C30A24B05C2E08EE35EF69530, 2D48C2C27E93DF1781760BAD773F9E41F11E93D0E504397610B9D8B611777253 ] C:\Windows\System32\certca.dll
10:33:57.0250 0x190c C:\Windows\System32\certca.dll - ok
10:33:57.0250 0x190c [ 448D8F8B51F785EAB56947D94EBDFC66, DFA1B360613DD5A8659313D7C390EE4989FEAF8D8BE0A75C3A617F90B8EA4E43 ] C:\Windows\System32\hnetcfg.dll
10:33:57.0250 0x190c C:\Windows\System32\hnetcfg.dll - ok
10:33:57.0250 0x190c [ F99300CAF66307E295438355E9B11ACD, 3BFB0F6633011964B29ECA3BC54E6F7B79D99A01A16622F2196A935F6CDD30D2 ] C:\Windows\System32\CertEnroll.dll
10:33:57.0250 0x190c C:\Windows\System32\CertEnroll.dll - ok
10:33:57.0250 0x190c [ 16A19EB29CDE3883DF43DC83D14F1817, CED0BCDF22D12D79A35DC3A00F97E5E2AD27A0CE2CDBA7356D41BD705206B267 ] C:\Windows\System32\upnp.dll
10:33:57.0250 0x190c C:\Windows\System32\upnp.dll - ok
10:33:57.0266 0x190c [ 5D4ADFA067F7760F6663E0B66768CDE2, 59EB501C1F735D16E1501DA1A47075DF514A90D1A976638602BD768D843DD3C1 ] C:\Windows\System32\wbem\wbemprox.dll
10:33:57.0266 0x190c C:\Windows\System32\wbem\wbemprox.dll - ok
10:33:57.0266 0x190c [ 4874EB05C1BE374B8A4AC15DF3DB07B0, 05B8D5CC52006308BAA9A91584E4E49BE97C10B7FB2628F0DD8EB8C93E47E49E ] C:\Windows\SysWOW64\gpapi.dll
10:33:57.0266 0x190c C:\Windows\SysWOW64\gpapi.dll - ok
10:33:57.0266 0x190c [ 0488E461EEE18F5CFCE7C1774BBFCBB3, AE7BF9A458547DE3454958320CA97F65EF03430825117C96E53D8D53C7450E17 ] C:\Windows\System32\adsldp.dll
10:33:57.0266 0x190c C:\Windows\System32\adsldp.dll - ok
10:33:57.0266 0x190c [ 17C9CEA667906DA7CAA1175DE437F4FC, 45677EA1918DD4D68C3342B333D0A57EB69E14BA88FFDD3D67DD21CED303B07C ] C:\Windows\System32\runonce.exe
10:33:57.0266 0x190c C:\Windows\System32\runonce.exe - ok
10:33:57.0266 0x190c [ E1D793FCCD26B862839217612830ECFC, 4A96199D07370BB44B9BF73F945DC65C6B165593419B41E9F5A5CB82E1A2B7B9 ] C:\Windows\System32\wbem\wbemcore.dll
10:33:57.0266 0x190c C:\Windows\System32\wbem\wbemcore.dll - ok
10:33:57.0266 0x190c [ 480C100DFBDACA7A702736E0F81F5080, BA13C27B12B9B996110045A82FDBE7CAEBB84D9E3E1EEEE4F07730DF1EE9A26D ] C:\Windows\System32\PCPKsp.dll
10:33:57.0266 0x190c C:\Windows\System32\PCPKsp.dll - ok
10:33:57.0266 0x190c [ BCCB98D8E406576180B5E808731510BF, 3A9B25557BBA086BB4C00D409340F5D6E1E9AC8818910DFA5E8B45846892865B ] C:\Windows\System32\PCPTpm12.dll
10:33:57.0266 0x190c C:\Windows\System32\PCPTpm12.dll - ok
10:33:57.0266 0x190c [ BB9ED3EDD8E85008215A7250D325A72E, D3404E31B7706B25CDEA7CB4260C343B5F090E8CCB9A5FA203B0F94A9112F1B3 ] C:\Windows\System32\ssdpsrv.dll
10:33:57.0266 0x190c C:\Windows\System32\ssdpsrv.dll - ok
10:33:57.0266 0x190c [ 5F2D1EADD8695E3C90193C307B12ACA3, AB759962398A7172DB924189DA898D04D3AE10FC09171B4E5F8CDE9D3BFA9438 ] C:\Windows\System32\wbem\esscli.dll
10:33:57.0266 0x190c C:\Windows\System32\wbem\esscli.dll - ok
10:33:57.0282 0x190c [ C510810D292782189F8BE12A1B0E366E, 486B8DE1FD5F8125276D423D153BEA653EB47E6C9358417A3F37D71730913B02 ] C:\Windows\System32\wbem\fastprox.dll
10:33:57.0282 0x190c C:\Windows\System32\wbem\fastprox.dll - ok
10:33:57.0282 0x190c [ BEA7A26C2C22381B6DD88758352B9D9B, C1153D7584DD7ABF59B7A2F7B81F53D08830A0CE5A96C50696894631BA7F6441 ] C:\Windows\SysWOW64\dhcpcsvc.dll
10:33:57.0282 0x190c C:\Windows\SysWOW64\dhcpcsvc.dll - ok
10:33:57.0282 0x190c [ DC1A78BCCCB7EE53D6FD3BD615A8E222, EE16B6853185AAE779D7135035983938009901658F76A8856AAC12EBA15BB34E ] C:\Windows\System32\fdPHost.dll
10:33:57.0282 0x190c C:\Windows\System32\fdPHost.dll - ok
10:33:57.0282 0x190c [ E5AD448F2DC84B1CF387FA7F2A3D1936, BBB29C79A085C503F5EFFB5144596D5DEC48A4EB34A049A4E7B38B27F6D92E0A ] C:\Windows\System32\FDResPub.dll
10:33:57.0282 0x190c C:\Windows\System32\FDResPub.dll - ok
10:33:57.0282 0x190c [ 2586C4C167499210DCBF3ECFD8CCE210, D8129FEDE9918BF4FB0057CC58700D4E08457060E810B9CC25CA0F598506ADB8 ] C:\Windows\System32\NcdAutoSetup.dll
10:33:57.0282 0x190c C:\Windows\System32\NcdAutoSetup.dll - ok
10:33:57.0282 0x190c [ 465E8A5B79FF5134CECE8E43031ADBE1, 093FA94EBF9B69247296DB9697F73809AED620808AD779DA68FE00F7D617555C ] C:\Windows\System32\dtsh.dll
10:33:57.0282 0x190c C:\Windows\System32\dtsh.dll - ok
10:33:57.0282 0x190c [ 45E8FB1F9A9191B1F7DF09DE346B81A7, AB31FBCB97E335BF3946BB3F77E5EC641784EA80C960A849FCB2018057DD973B ] C:\Windows\System32\fdWSD.dll
10:33:57.0282 0x190c C:\Windows\System32\fdWSD.dll - ok
10:33:57.0282 0x190c [ 25832FAE2E887A2FE46896E6C62D5880, C44C28F040FB92A852A130300E65C92F09E2A8382CCBCABABB97A2D1B64FF1C1 ] C:\Windows\System32\wbem\wbemsvc.dll
10:33:57.0282 0x190c C:\Windows\System32\wbem\wbemsvc.dll - ok
10:33:57.0282 0x190c [ 6F6B30EA184B51EB76051107DEAC89BD, 0BD5A384B97F3F503411779E40D5B2956D71F4A64D531391A96C37A444AAFCE4 ] C:\Windows\System32\wbem\wmiutils.dll
10:33:57.0282 0x190c C:\Windows\System32\wbem\wmiutils.dll - ok
10:33:57.0297 0x190c [ 20CF6C36949E73BE4462F09E1CAA1951, 39F12C70D3AC3B411CA7AB7C5D6073011C98C321B427FC63EF1D74992FE168DB ] C:\Windows\SysWOW64\wbemcomn.dll
10:33:57.0297 0x190c C:\Windows\SysWOW64\wbemcomn.dll - ok
10:33:57.0297 0x190c [ 6627B4111F4A54795958771973FEDD7F, E5EEF8BAACB7726E86FE3E918307DB19C5E82461438555E4711767055BBA7632 ] C:\Windows\SysWOW64\wbem\wbemprox.dll
10:33:57.0297 0x190c C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
10:33:57.0297 0x190c [ 7969580698D60958265942B9DDC12B63, 2EBA4EA7C2F5220C91259AA20D027A4CF6EFE024B8F174C48CC80FECBCFB9FDD ] C:\Windows\System32\fdSSDP.dll
10:33:57.0297 0x190c C:\Windows\System32\fdSSDP.dll - ok
10:33:57.0297 0x190c [ 4845FC917AB257CAE4F16A80ADC15412, 6267D746031947F05F08E7D95C98272E22020F89ACC75C545A1B42D03D1C13EA ] C:\Windows\System32\wbem\repdrvfs.dll
10:33:57.0297 0x190c C:\Windows\System32\wbem\repdrvfs.dll - ok
10:33:57.0297 0x190c [ 8DE93017BA7F77E95DF57E753269623D, 92238DB2684D5A1352B4BB492DFB3CFE219073AC63CE0CAE0A8D12CCF23A9A7D ] C:\Windows\SysWOW64\wbem\fastprox.dll
10:33:57.0297 0x190c C:\Windows\SysWOW64\wbem\fastprox.dll - ok
10:33:57.0297 0x190c [ AC75FBC8C85A9B64E66797A359701D4C, 66957E84AE7ABE49115E5C386E888CDEAD30E952D7D4C232778DD8A5C1DB7390 ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
10:33:57.0297 0x190c C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
10:33:57.0297 0x190c [ 4B365CD371C99FFDB778F4135A79E126, A12CAB56DF41187A89785C840D463EC10108CB7372E04B5BD83A855F1A7CDA1D ] C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL
10:33:57.0297 0x190c C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL - ok
10:33:57.0297 0x190c [ 824BC775A6B475D872431F6B36DD8BA3, B36C99A9B76DE63CE08794C8BFC49081E2D35D4BB7F993B949DD681F8EB991F8 ] C:\Windows\System32\wbem\WmiPrvSD.dll
10:33:57.0297 0x190c C:\Windows\System32\wbem\WmiPrvSD.dll - ok
10:33:57.0313 0x190c [ 1824052F17B12B5D7B21445B869EE9F2, 594AF9749A9ADE6B4DA8C3FC29ABAD75B2D4B63460C5B424279A8889EF04F244 ] C:\Windows\System32\ncobjapi.dll
10:33:57.0313 0x190c C:\Windows\System32\ncobjapi.dll - ok
10:33:57.0313 0x190c [ B2CF1AF98C13B3C19FDD7EF1EF56C05F, 016BE1B76DE48572DABBF20797ABAD87F73FB1CBD0A8E293D69B8CA6A1063550 ] C:\Windows\System32\wbem\wbemess.dll
10:33:57.0313 0x190c C:\Windows\System32\wbem\wbemess.dll - ok
10:33:57.0313 0x190c [ F79C112FCC0FEF9EBE07F903CEA05F9F, 880516E2E920027784B539971192232606D24F7F7758AEC313FA6BC7EDD33A97 ] C:\Windows\System32\SettingSyncHost.exe
10:33:57.0313 0x190c C:\Windows\System32\SettingSyncHost.exe - ok
10:33:57.0313 0x190c [ CE6D08350D0A1278E9A97D94023D1800, 54AACAADDD25CC44B59A7637C3A1E7E3A8392CC6D22F4D2C5A202D29BF44AFC1 ] C:\Windows\System32\wbem\WmiPrvSE.exe
10:33:57.0313 0x190c C:\Windows\System32\wbem\WmiPrvSE.exe - ok
10:33:57.0313 0x190c [ D0BAD4E2BCA23BD0DC9930EE4DEA6658, 2B71B72A13DF699C4E5A9C98EF2FF13FDA82C7E6D534A0B61B2E058CB0BACA7D ] C:\Windows\System32\dafupnp.dll
10:33:57.0313 0x190c C:\Windows\System32\dafupnp.dll - ok
10:33:57.0313 0x190c [ 6CDCCD5323EEB8EBD66E02CB8C9C703F, A7EF32670B2BBE4BDAF144F887536FAC354A7BDCA0E34AD719186E3231BB5F9E ] C:\Windows\System32\winbici.dll
10:33:57.0313 0x190c C:\Windows\System32\winbici.dll - ok
10:33:57.0313 0x190c [ 4585BC6152F3F255EF1E10A663D0FB0D, 3DC8143FF4A75C583A6C4C53EABE2B3B06A130ADF3333D30BBEA6504FDBDF04A ] C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.8387_none_08e793bfa83a89b5\msvcr90.dll
10:33:57.0313 0x190c C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.8387_none_08e793bfa83a89b5\msvcr90.dll - ok
10:33:57.0313 0x190c [ 589DBCBC569A0536010D854928D10EA1, 177DEED3758CCE7BA40CF68190B06C99C453434EFE95E41838B0E85A9CCACAF2 ] C:\Windows\System32\httpapi.dll
10:33:57.0313 0x190c C:\Windows\System32\httpapi.dll - ok
10:33:57.0313 0x190c [ 8B4FF31A06DA3BFB82D37D77040B2019, 8C238DFBD66F2E656009787604113AB0799C03DB2E9DE0CCEAC3D2560FCF5A63 ] C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.8387_none_08e793bfa83a89b5\msvcp90.dll
10:33:57.0313 0x190c C:\Windows\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.8387_none_08e793bfa83a89b5\msvcp90.dll - ok
10:33:57.0328 0x190c [ 1A4DA1D6287B99033D144B436C23B656, D4D1EEB372E61512EA36A33F095E68C225B8E6C72CC57ED8BD00533F88012F40 ] C:\Windows\System32\provsvc.dll
10:33:57.0328 0x190c C:\Windows\System32\provsvc.dll - ok
10:33:57.0328 0x190c [ 319A44F3656F89E045BCFAFD544810F5, E17540A2B2D6C178C8EA08A9115479995CE45713ECD53A0C21362EF7EC1BF2DC ] C:\Windows\System32\qmgrprxy.dll
10:33:57.0328 0x190c C:\Windows\System32\qmgrprxy.dll - ok
10:33:57.0328 0x190c [ 33F5EE33BAAD7DEF96DA4270D0F4B308, 97A554E73AFC4BA6C638DF14F77D61423CF37C25A61509CABB17E930812C289D ] C:\Windows\System32\wbem\cimwin32.dll
10:33:57.0328 0x190c C:\Windows\System32\wbem\cimwin32.dll - ok
10:33:57.0328 0x190c [ 18E756E0FE2FFCD5DE35F6B9F91244A6, 2B508EEA1F59BE0E627BB87921F88D6C7277609DCCEFCD3618F83503CF871761 ] C:\Windows\WinSxS\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.4148_none_0a1d2fcba76b3f00\ATL90.dll
10:33:57.0328 0x190c C:\Windows\WinSxS\amd64_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.4148_none_0a1d2fcba76b3f00\ATL90.dll - ok
10:33:57.0328 0x190c [ 5ABAEB53E6ECF7878A5C4C4ABED92050, 455A366677C25D06AD3D6EDE0A6BF087576CDDB1F2B1DB2C481BC62168F0C623 ] C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF
10:33:57.0328 0x190c C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE14\Cultures\OFFICE.ODF - ok
10:33:57.0328 0x190c [ A4EE37B24370FABA65EF64FF24B5539E, 65A18290CE471D63BA3D44A67EEB594B92D442D40804F38128F17A921AADED16 ] C:\Windows\System32\actxprxy.dll
10:33:57.0328 0x190c C:\Windows\System32\actxprxy.dll - ok
10:33:57.0328 0x190c [ FEF48CEA8EEB03CE5588BF7DE1859EF1, EE0F887907462F4E0D3654DF541626567D57CFF8272566AA25B4345E23777DFD ] C:\Windows\SysWOW64\qmgrprxy.dll
10:33:57.0328 0x190c C:\Windows\SysWOW64\qmgrprxy.dll - ok
10:33:57.0328 0x190c [ 2F60047076D57730FFD1981F53ACE052, D107405E9FE819E193279FF34A5FEEBFF521ACD07A2110999DAD62C35041FB25 ] C:\Windows\System32\fdProxy.dll
10:33:57.0328 0x190c C:\Windows\System32\fdProxy.dll - ok
10:33:57.0328 0x190c [ 6B374D279DC423FE69DB8DD1401E84FC, 50BF1E29C1FF9979099724FB3C4FD8EECBE12D70FE3334DDC5EF94482B93FF52 ] C:\Windows\System32\framedynos.dll
10:33:57.0328 0x190c C:\Windows\System32\framedynos.dll - ok
10:33:57.0344 0x190c [ 80D6B89F62395284E3CE5DE2E5F4D6A0, C40E1A61DCADE4EE3FF8F50489BBB4C9053F47B3EAE76022694C08CC44B64D4F ] C:\Windows\System32\webio.dll
10:33:57.0344 0x190c C:\Windows\System32\webio.dll - ok
10:33:57.0344 0x190c [ DBA00F3FC75495058A25B24906C24599, CC6CD190376BAB643D8C7C8B7C774DB0882198CCE8440D01C4AB2258B7F8AA35 ] C:\Windows\SysWOW64\propsys.dll
10:33:57.0344 0x190c C:\Windows\SysWOW64\propsys.dll - ok
10:33:57.0344 0x190c [ EE3ED9FF4BE5D79556EB8CC1BC889A74, DCF694734190FDC1F382F7118E58C2DED979DFCB207ECD5D33F3FD589AD17E29 ] C:\Windows\System32\security.dll
10:33:57.0344 0x190c C:\Windows\System32\security.dll - ok
10:33:57.0344 0x190c [ 02959B2556E18276DE7DDE527CFCB502, 05CC7A39FF3A26640C3C9C49CD89438AF6265AB06FD3DA71411610603F228EBD ] C:\Windows\System32\ncryptprov.dll
10:33:57.0344 0x190c C:\Windows\System32\ncryptprov.dll - ok
10:33:57.0344 0x190c [ 2203F8DA390024C0EEF00DB8472C534D, BEC5AFEB9D3D342F3E3A827298BA358EADCD58F6E5920B3333DA6EE7E256C016 ] C:\Windows\System32\ncryptsslp.dll
10:33:57.0344 0x190c C:\Windows\System32\ncryptsslp.dll - ok
10:33:57.0344 0x190c [ AACECE80A24B309935DF4023F25C129E, 044CDDF37BA1EA774C251F4B8C9FD1F361581C4B32978DBA76CEB2D2CE7163D6 ] C:\Windows\System32\SettingSyncPolicy.dll
10:33:57.0344 0x190c C:\Windows\System32\SettingSyncPolicy.dll - ok
10:33:57.0344 0x190c [ D9D960D70B1866A513BCBBA2FBEE6144, DB3AB9AAEFF452B6DC1ECEAFB23EEF8C5AD8AB8159F3C151CDFE06766EA992F3 ] C:\Windows\System32\dssenh.dll
10:33:57.0344 0x190c C:\Windows\System32\dssenh.dll - ok
10:33:57.0344 0x190c [ E59F533C26C8375CD120B4791482217E, FFF66E33DB80C549BD77FAC31FA54C0C5FBD505E2BCE7DDB10B873EA4471D55F ] C:\Program Files (x86)\Malwarebytes Anti-Malware\imageformats\qgif4.dll
10:33:57.0344 0x190c C:\Program Files (x86)\Malwarebytes Anti-Malware\imageformats\qgif4.dll - ok
10:33:57.0360 0x190c [ DD79A6B15C2F28DE98DF4852AAF6B13B, 0F7E9023E0BA4B40E2DE9A9FA34E85FEAF72B93049AAB3E1D73AD046BB113E05 ] C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe
10:33:57.0360 0x190c C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe - ok
10:33:57.0360 0x190c [ 2A857CCAFE18B1D396484AC9CC0B9B80, 8FA28E3ED2B6571E40B9471DAA45F6A530FE4B644A08DC49847AE66FC77449A4 ] C:\Windows\System32\mscoree.dll
10:33:57.0360 0x190c C:\Windows\System32\mscoree.dll - ok
10:33:57.0360 0x190c [ F2C379D322AAF9A427033D9E3CCBDCFF, D9BA1A5E510A929EB2E890D90F87856D12A2997158AF28CA0B518B774A11CB7E ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
10:33:57.0360 0x190c C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll - ok
10:33:57.0360 0x190c [ EA10272605422080EE2FAB142A75120D, 9705FA8055A3897C0510FF7A9E8D1429F681368966D6E7FB0F1DDEAE87ABAB40 ] C:\Windows\System32\conhost.exe
10:33:57.0360 0x190c C:\Windows\System32\conhost.exe - ok
10:33:57.0360 0x190c [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] C:\Windows\System32\drivers\condrv.sys
10:33:57.0360 0x190c C:\Windows\System32\drivers\condrv.sys - ok
10:33:57.0360 0x190c [ A030B48F73CB01B89AD5CF725240401A, 3334AFA0C57F2A9EFF0FC466B62AAD6513191360BF46CEB337E089650AD5A474 ] C:\Windows\System32\OnDemandConnRouteHelper.dll
10:33:57.0360 0x190c C:\Windows\System32\OnDemandConnRouteHelper.dll - ok
10:33:57.0360 0x190c [ CD8CA57C36E596875865F451393C7C66, A7304ADD73B16ED8CAE097F2ACA8FD856740276220D178054652CD14A945B1C9 ] C:\Windows\System32\SettingSync.dll
10:33:57.0360 0x190c C:\Windows\System32\SettingSync.dll - ok
10:33:57.0360 0x190c [ CDB670616597139259DEC5F2C562A54D, E83C2A974B43684CB297F966172FAA8C8FD110703F06BBB3E13853F03821EB42 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll
10:33:57.0360 0x190c C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorwks.dll - ok
10:33:57.0360 0x190c [ 35EF036F6EE1FAFD6CF49EBE9F2471C4, E05E3B52D2A414BDE89D76D9D2AD3F5E5475F5B44D44DB4036F2DC07895AEB22 ] C:\Windows\System32\browcli.dll
10:33:57.0360 0x190c C:\Windows\System32\browcli.dll - ok
10:33:57.0375 0x190c [ D3DDD474C0128EBEC4B4A48896A1D2DC, 73A1A421233F6DECE8B3646685814CF1B11A8B3348427D9F9EE9D2489D5A86DF ] C:\Windows\System32\schedcli.dll
10:33:57.0375 0x190c C:\Windows\System32\schedcli.dll - ok
10:33:57.0375 0x190c [ AD776C2F3396AA47ACF6CEAD8EC446C1, 170E9E525286388010EB9F8BA6A1B38C775188F55B3D46F7DDA75877DD2DEEB4 ] C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll
10:33:57.0375 0x190c C:\Windows\System32\Windows.Security.Authentication.OnlineId.dll - ok
10:33:57.0375 0x190c [ EBDB50C7BD8023CE98380A4648857F4B, F892B02C462B2B816125F529E22AE57616382E9006608FDF4AB5D489FD206E9D ] C:\Windows\System32\msauserext.dll
10:33:57.0375 0x190c C:\Windows\System32\msauserext.dll - ok
10:33:57.0375 0x190c [ 23065815C35146F455985878E0FEA1A8, E276CC29355CCB73DA4D3601A9586324E12C38FBDBD2F2468AF7E36F25EE36A8 ] C:\Windows\System32\AuthBroker.dll
10:33:57.0375 0x190c C:\Windows\System32\AuthBroker.dll - ok
10:33:57.0375 0x190c [ 91AEA2A8671DDDFA526604B2379867F3, C6890F5AD3E6696906678C48CF86DA5D424581DFB59A6D548184C20F543F9FB9 ] C:\Windows\System32\twinui.dll
10:33:57.0375 0x190c C:\Windows\System32\twinui.dll - ok
10:33:57.0375 0x190c [ D2D08C4A5EAFE12CEF7D48BC5A3CCED5, 276BB4F7E61C09EEA128B9A1E42FFDA5193C549E49C630E45A5581FD43814F25 ] C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.8428_none_88dcdb0b2fb19957\msvcr80.dll
10:33:57.0375 0x190c C:\Windows\WinSxS\amd64_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.8428_none_88dcdb0b2fb19957\msvcr80.dll - ok
10:33:57.0375 0x190c [ 213763029E9226ADBF2F574CAAE39380, 520D00958DE4D2F0F073860689DA60C2A91FB19CB78CBD356E83C86A03EA0578 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\6227ee011c9930128c5ad76841ecf2ee\mscorlib.ni.dll
10:33:57.0375 0x190c C:\Windows\assembly\NativeImages_v2.0.50727_64\mscorlib\6227ee011c9930128c5ad76841ecf2ee\mscorlib.ni.dll - ok
10:33:57.0375 0x190c [ 9FA466A42109F408AC6C2848E851C38A, 0CE75916186D19467D14E33E2CF6C1653D2CE854F05D0DBD0A1268FA413DF291 ] C:\Windows\System32\twinapi.appcore.dll
10:33:57.0375 0x190c C:\Windows\System32\twinapi.appcore.dll - ok
10:33:57.0391 0x190c [ 2C727D11CDF4F8B2477FC2B1B305ECB9, B4F83DAA73E99EF8AD88A4A9C5553ABC4A99E2FD22234C968D90A0BAE97104F8 ] C:\Windows\System32\wlidprov.dll
10:33:57.0391 0x190c C:\Windows\System32\wlidprov.dll - ok
10:33:57.0391 0x190c [ F46E33B5A378DC24BB57DAA42D0FA140, 8AD91827830F327B04D863E501C991EBAFF735F3C22D287A25084F6C52272C8D ] C:\Windows\SysWOW64\regsvr32.exe
10:33:57.0391 0x190c C:\Windows\SysWOW64\regsvr32.exe - ok
10:33:57.0391 0x190c [ 0FF2E68E46E2B8278B8CD717A866F9BF, 27FFAA28649FC4ED9CAF7750731E3467E86956F4FEBE8894B23583392E6A566C ] C:\Program Files\Internet Explorer\sqmapi.dll
10:33:57.0391 0x190c C:\Program Files\Internet Explorer\sqmapi.dll - ok
10:33:57.0391 0x190c [ 6B2CFB1BF233F6946F293B5B30FD599A, 91FC84D5D0497235015850FA1DFFFD8EDEB3C89FAB0BAD65AC86E161CC3593BD ] C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
10:33:57.0391 0x190c C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys - ok
10:33:57.0391 0x190c [ 7A554464C1B1380C5B74ADF3DED4F663, 93BC0FFBF003982CF873B270FF845185235205E33ED1B9BD1C9811AB657F4175 ] C:\Windows\apppatch\AcLayers.dll
10:33:57.0391 0x190c C:\Windows\apppatch\AcLayers.dll - ok
10:33:57.0391 0x190c [ 991FB4D35BCA212FF14314D9AB34833E, 91EECF388C14FCCCC3B7665019202EE3B2D0FED4939DFAD9F1B785C4A9BDCEAB ] C:\Windows\System32\PackageStateRoaming.dll
10:33:57.0391 0x190c C:\Windows\System32\PackageStateRoaming.dll - ok
10:33:57.0391 0x190c [ 3AA79A83EC7D1B16D296029035A9C399, 4674894D18CE9026CA54AFA9556987023C14A92EC24AFCB29030B80ABF7E0535 ] C:\Windows\SysWOW64\sfc.dll
10:33:57.0391 0x190c C:\Windows\SysWOW64\sfc.dll - ok
10:33:57.0391 0x190c [ EB5BB44DBA9F55DB59076E58F6E42C03, DB19B33CC13427CB915BBB1C9AC564AD91A8663AAB4CC64168DA40FAB0711817 ] C:\Windows\SysWOW64\sfc_os.dll
10:33:57.0391 0x190c C:\Windows\SysWOW64\sfc_os.dll - ok
10:33:57.0391 0x190c [ 945BB364B09F3A8E998DBFF02A0A5A58, FB8DEAA2DE1B3843A47E5592AE4FB4FD4C19F83AD09CAD3774144BF550267C39 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll
10:33:57.0391 0x190c C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll - ok
10:33:57.0407 0x190c [ B220B68B2C18F0CA4BF629F870FFCDFD, 255D15275D76F6534CAD7F86A5526F5A9E07474B9DC06D946B54D3C527636D6E ] C:\Windows\System32\regsvr32.exe
10:33:57.0407 0x190c C:\Windows\System32\regsvr32.exe - ok
10:33:57.0407 0x190c [ 4E472630DF3339388821D9AFB259F819, C2049EB8E5E2AC833B0B94C977889E8C1B62F9848C6E7F576B7746361B660B40 ] C:\Windows\apppatch\apppatch64\AcLayers.dll
10:33:57.0407 0x190c C:\Windows\apppatch\apppatch64\AcLayers.dll - ok
10:33:57.0407 0x190c [ E034B873FFB81EE0D0B2AE53BC4F3BE1, 73A127864DEFD3522EE90F08A798DC9643884A171C6B47F247B65C4245D46F97 ] C:\Windows\System32\sfc.dll
10:33:57.0407 0x190c C:\Windows\System32\sfc.dll - ok
10:33:57.0407 0x190c [ A6D86F1756AB48AB38C644A3F229D7D4, 48B07F7B5D9FF09B2C88D23B5BFCB6A9464751DA83E7E5B2A46ABADFC5B8D3D9 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll
10:33:57.0407 0x190c C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsec.dll - ok
10:33:57.0407 0x190c [ 9B870FE04BDF7DDF7DD736DE738038FB, 6733B80B760ADBBE7C5C2BA6801646268B3D4FC5B0E144F199D26D6C317E7C5D ] C:\Windows\System32\riched20.dll
10:33:57.0407 0x190c C:\Windows\System32\riched20.dll - ok
10:33:57.0407 0x190c [ B88E2CFB8D10FB189762D0AC99382AC5, 8A586D88ED2119B0A8D6E7EFCFAF3DA9FC5BEA79D20BA897B6343A1F5B6338DC ] C:\Windows\System32\usp10.dll
10:33:57.0407 0x190c C:\Windows\System32\usp10.dll - ok
10:33:57.0407 0x190c [ 09C693F051507A134D180556A011A6C5, 9328E74476A115086B8E051CB2335D84D39474EBD248CD2587538A6E736BD49E ] C:\Windows\System32\WinSync.dll
10:33:57.0407 0x190c C:\Windows\System32\WinSync.dll - ok
10:33:57.0407 0x190c [ 9371F0B982A5ECCABE5DB9266C6D447A, F5670F349C359E06025DDD3774C7CAB212C323FD640DCE20D4476F39E3CDEE94 ] C:\Windows\System32\wscapi.dll
10:33:57.0407 0x190c C:\Windows\System32\wscapi.dll - ok
10:33:57.0422 0x190c [ 6CC1BB8F6851A262E2E824F0E92D5EEF, 45A88A984179BBA38C1F4434C4D6C2823C1FE6AFBE8CB0F656DAE0092D1D5611 ] C:\Windows\System32\drivers\WdNisDrv.sys
10:33:57.0422 0x190c C:\Windows\System32\drivers\WdNisDrv.sys - ok
10:33:57.0422 0x190c [ 1DD757BFB4DB59B5E48E204F636F6777, 6D5C77BB793A2BC4E3A405B78D8635F767A80E730A73B61215CD987DB10BF922 ] C:\Windows\System32\msls31.dll
10:33:57.0422 0x190c C:\Windows\System32\msls31.dll - ok
10:33:57.0422 0x190c [ CDFFBC50C8F2B2E7841D2A29727D78AE, 410D9C35DFC1CFFFBFB0FD18E0D5B934E48C4968A00E8E9B5694BC1D81052E3B ] C:\Program Files\Windows Defender\NisLog.dll
10:33:57.0422 0x190c C:\Program Files\Windows Defender\NisLog.dll - ok
10:33:57.0422 0x190c [ CA9E3DB0D7C822F35D55D356F731FD2F, 750AB8E99E95E351C7319A9D837D24303BD426675661AE821350E20E42A0B1A4 ] C:\Program Files\Windows Defender\NisSrv.exe
10:33:57.0422 0x190c C:\Program Files\Windows Defender\NisSrv.exe - ok
10:33:57.0422 0x190c [ 7C2E3117F0BF7B6F010B8C071253404C, 51E936168C8E51F4352A26FDA591F23C0BE1BED6A27FA93BAC18654143A018D7 ] C:\Windows\System32\cryptnet.dll
10:33:57.0422 0x190c C:\Windows\System32\cryptnet.dll - ok
10:33:57.0422 0x190c [ 211BD0E2292CB18DD11515BE39CE5518, 9F2E1CCC3D2B0AC79A742FD894F31454408CC751F475F3FBE66EB2AABB85B117 ] C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll
10:33:57.0422 0x190c C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorjit.dll - ok
10:33:57.0422 0x190c [ 37C863F568421EE07CEAD1F181138F79, 64A7B34D4A0AA598637AB57181036928D28A3AA49863FF0BD09466EF8ABC771C ] C:\Windows\SysWOW64\WindowsCodecs.dll
10:33:57.0422 0x190c C:\Windows\SysWOW64\WindowsCodecs.dll - ok
10:33:57.0422 0x190c [ 34ACE6E837F846CF72AA2D445C0C6E2D, 1E231456D5993D3297B3DCEE61FA418E046EBDF2BAEBA06B5CBCBC5E9783F0D2 ] C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
10:33:57.0422 0x190c C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL - ok
10:33:57.0422 0x190c [ 9CEEBC72EF5AA6307D9765FA893187E5, 09F1E826F3844B16B0A6FE844D6769BD9D150C6D31FB5C77B9DC00F1A6683284 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System\0ac70a56613ab9ebe5a1ab13457f04f0\System.ni.dll
10:33:57.0422 0x190c C:\Windows\assembly\NativeImages_v2.0.50727_64\System\0ac70a56613ab9ebe5a1ab13457f04f0\System.ni.dll - ok
10:33:57.0438 0x190c [ 8A50D5304E6AE48664CF5838EC32F647, C76943FABEE1B5E1B641AA610668CCD4227E2C4B191DD30B79D3AB31A9E8B5BE ] C:\Windows\System32\drivers\MBAMSwissArmy.sys
10:33:57.0438 0x190c C:\Windows\System32\drivers\MBAMSwissArmy.sys - ok
10:33:57.0438 0x190c [ C85670AB64068F8080998AEBA6C5019C, 87D88235F69C062E5B759F91253ABAF7BD055937DD119BD26858237F812D3DED ] C:\Windows\SysWOW64\atl100.dll
10:33:57.0438 0x190c C:\Windows\SysWOW64\atl100.dll - ok
10:33:57.0438 0x190c [ 90EA3C8FDCC3B8974E13E9C166AD268E, 95F5BE7BDB34206475CD2CF791593605667753C8EA77D415385C586B2101F10C ] C:\PROGRA~2\MICROS~1\Office15\1033\GrooveIntlResource.dll
10:33:57.0438 0x190c C:\PROGRA~2\MICROS~1\Office15\1033\GrooveIntlResource.dll - ok
10:33:57.0438 0x190c [ 474DCC28414648BCFE5B5DC47A37EFA6, 5ED017A049371264992ED117B0FB539EA0104C54F56F8F43ACCDF3736446EE30 ] C:\Program Files\NVIDIA Corporation\Update Core\NvBackendAPI64.dll
10:33:57.0438 0x190c C:\Program Files\NVIDIA Corporation\Update Core\NvBackendAPI64.dll - ok
10:33:57.0438 0x190c [ A3F892865B520C8D903359C950F5E479, 00BB02F0718B320412D3099489DC56172FA2A6AC194828B07FEB26B5E8DFA820 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\0cfea2ca197071a37d16ce5a97167b95\System.Drawing.ni.dll
10:33:57.0438 0x190c C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Drawing\0cfea2ca197071a37d16ce5a97167b95\System.Drawing.ni.dll - ok
10:33:57.0438 0x190c [ D687D26B6634CC92E2646E2BF77F4ED1, 85F992B8D41BDD1ED0F622660764D179601CFA21A54807C11855AE357F41C459 ] C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\cc2ee7b0942286bb59d4de9c6a415b9a\System.Windows.Forms.ni.dll
10:33:57.0438 0x190c C:\Windows\assembly\NativeImages_v2.0.50727_64\System.Windows.Forms\cc2ee7b0942286bb59d4de9c6a415b9a\System.Windows.Forms.ni.dll - ok
10:33:57.0438 0x190c [ F02D03BD7D134ACFDB9A0C0C4252E12F, 3968522669FE6B892E4422A9C0D74ED163F31E733320923B3DE7B6D13659EC7D ] C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll
10:33:57.0438 0x190c C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteNSE.dll - ok
10:33:57.0438 0x190c [ 98611CC3037E05CD86808ABB89614802, 572CD3FAF1F637FB3860B67B8396DADCDF1BBFE4BC633676C259D7FBB645D514 ] C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9BD74E1C-0C36-48C0-856D-2CD31FD19587}\gapaengine.dll
10:33:57.0438 0x190c C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{9BD74E1C-0C36-48C0-856D-2CD31FD19587}\gapaengine.dll - ok
10:33:57.0453 0x190c [ A76A00A5244DA1CE40DE8BFBAD1E2C4E, F5035080E7629D0A0568F4F36F171D548331B99415A8EDC925FFE9401FB0D864 ] C:\Windows\SysWOW64\samcli.dll
10:33:57.0453 0x190c C:\Windows\SysWOW64\samcli.dll - ok
10:33:57.0453 0x190c [ D6DBF46C5CAE0EEDA1DF1BD080D6FE3B, F93A5992B384B663F3A9D60BADA8E031A45B96A66C9AEA4B948563520DB69992 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
10:33:57.0453 0x190c C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe - ok
10:33:57.0453 0x190c [ FE71A27C66112F15175747EE5C9C8CC9, CBE8F2D88CF4BC25E86B4A4B8095AF86060AB7F6739136CB921B3F22AC0AF8E8 ] C:\Program Files\Classic Shell\ClassicExplorer32.dll
10:33:57.0453 0x190c C:\Program Files\Classic Shell\ClassicExplorer32.dll - ok
10:33:57.0453 0x190c [ EFD9B12C1CD8FDFD50C48153AF0A49F3, EB5F906324DD1BC62BA92605F07EE1C2A94BCBA18845394AC2A48B22CF57F971 ] C:\Windows\SysWOW64\ntshrui.dll
10:33:57.0453 0x190c C:\Windows\SysWOW64\ntshrui.dll - ok
10:33:57.0453 0x190c [ 204A549F6AA4DC2F4CAF371FAA16747A, 323560257E409347D3BA1A3AC431C3EF0CD6C350F6BB1D5B5288A577F3F156ED ] C:\Windows\SysWOW64\oleacc.dll
10:33:57.0453 0x190c C:\Windows\SysWOW64\oleacc.dll - ok
10:33:57.0453 0x190c [ 9F522B2708CAB181C0F137ABBCD1DE2E, 498B73A45A4301C8045109621E0831DA806C4D3AEDED63DF81979D36D0284BA7 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\7z.dll
10:33:57.0453 0x190c C:\Program Files (x86)\Malwarebytes Anti-Malware\7z.dll - ok
10:33:57.0453 0x190c [ DBC61FE275917E75AE077A04E701C474, B9CE006FCC2B9892D689BD6DA831854514C6F6890B58FF8F87B19026266492E9 ] C:\Windows\System32\SearchIndexer.exe
10:33:57.0453 0x190c C:\Windows\System32\SearchIndexer.exe - ok
10:33:57.0453 0x190c [ EFF09C9865290B159F79980113358299, DCBDB210155712CEBE3FADF082C1C622A4637639A7EED4F43C60D246EF80297D ] C:\Windows\System32\tquery.dll
10:33:57.0453 0x190c C:\Windows\System32\tquery.dll - ok
10:33:57.0453 0x190c [ 0B9FBEC5714523FF76DDFEB320FE2DF2, 48BD658CD5B96E83D1C924FA083A7CC82BB367888C79EDA2F4CFBB1619045185 ] C:\Windows\System32\sti.dll
10:33:57.0453 0x190c C:\Windows\System32\sti.dll - ok
10:33:57.0469 0x190c [ 19AF77545FD61995E1062277320A92AF, 0A65204F9815AC2165387783F08D86382F33714439BD045C87DB766603B80634 ] C:\Windows\System32\mssrch.dll
10:33:57.0469 0x190c C:\Windows\System32\mssrch.dll - ok
10:33:57.0469 0x190c [ 8BE1C89BD0C6F659C3AE3A2C8D0955C4, 50D26482997BB44EBB55DA50D177459F76A708EBC23AB866330295E730EE71A9 ] C:\Windows\SysWOW64\runonce.exe
10:33:57.0469 0x190c C:\Windows\SysWOW64\runonce.exe - ok
10:33:57.0469 0x190c [ 951AECDFBE4925B59769D49873DD8051, B35B8ACFA0386A5E2BD3884498FF53BD676CF985D595D539F98A9C5183F6FD14 ] C:\Windows\System32\msidle.dll
10:33:57.0469 0x190c C:\Windows\System32\msidle.dll - ok
10:33:57.0469 0x190c [ 5B6EAF5BBB526E2B042016A1F061AC4D, 6E90F69E76C48F2ABD0E03B5DF2C2544C9AEA3BAD8B3DF0112528277CB05E380 ] C:\Windows\System32\mssprxy.dll
10:33:57.0469 0x190c C:\Windows\System32\mssprxy.dll - ok
10:33:57.0469 0x190c [ DC6C267FA152D4E5C068C747D00D1C56, F8201C1C5E794CAF742DDDEFAFF69E83B0FA31EE0C9C4F17418DD67B8A92A94B ] C:\Windows\SysWOW64\mssprxy.dll
10:33:57.0469 0x190c C:\Windows\SysWOW64\mssprxy.dll - ok
10:33:57.0469 0x190c [ 59A1D4FACD7B333F76C4142CD42D3ABA, E1A080E61FB1BAF0DA629D34BAEE6F0F9D0E0337BF6CED9F4B3AB9B1C23D91BA ] C:\Windows\SysWOW64\cmd.exe
10:33:57.0469 0x190c C:\Windows\SysWOW64\cmd.exe - ok
10:33:57.0469 0x190c [ 4C50680BDC98B551CE5C173BAB1C62D7, 040FA269D72978BC51F42BC3E056539F83F425CDCF1C20CB17C6E7D9FDEA2526 ] C:\Windows\SysWOW64\cmdext.dll
10:33:57.0469 0x190c C:\Windows\SysWOW64\cmdext.dll - ok
10:33:57.0469 0x190c [ 297E73D720133BD6A8BB8AF5BA0C2FE0, DFDACEBF4F791DD2482B5691125DCBAAAE4CEFD828D7306AAFD25217946F1A04 ] C:\Windows\SysWOW64\nvapi.dll
10:33:57.0469 0x190c C:\Windows\SysWOW64\nvapi.dll - ok
10:33:57.0485 0x190c [ F7EDF905549E40BC5AD7262699555C94, 3338ED79BD0B4B434EADEE1E72C51A6940436B929DDAE3BCF590C55112798207 ] C:\Windows\SysWOW64\thumbcache.dll
10:33:57.0485 0x190c C:\Windows\SysWOW64\thumbcache.dll - ok
10:33:57.0485 0x190c [ E0BC37F2051E1CB6B768A53D9514E3FA, FC7826A54D179321ACDA91115DB54DB427C185BE6AD0858127DB187E8E6692B9 ] C:\Windows\System32\pcacli.dll
10:33:57.0485 0x190c C:\Windows\System32\pcacli.dll - ok
10:33:57.0485 0x190c [ 3958E82529DA716D1D2F0C44E6F14187, 4813DF3A12DFA72461CBDFB01DBC3FADAEFB9360245798F05A3416ADE4DAED34 ] C:\Windows\System32\pcadm.dll
10:33:57.0485 0x190c C:\Windows\System32\pcadm.dll - ok
10:33:57.0485 0x190c [ DDE972537280676F685DEC67CE28932D, 781C862035C226C03008533B2CFAD3906661417C689E8A070C2D9639868F1C0B ] C:\Windows\System32\SearchProtocolHost.exe
10:33:57.0485 0x190c C:\Windows\System32\SearchProtocolHost.exe - ok
10:33:57.0485 0x190c [ B117A586AF354814BA3BF653A8DBBEBB, 382EEADC2A4EE39FBB86902F5D43D83D1DD166B98128B061B6F72B881D37AB3F ] C:\Windows\System32\msshooks.dll
10:33:57.0485 0x190c C:\Windows\System32\msshooks.dll - ok
10:33:57.0485 0x190c [ FF48213516573E515185F3E03ED9DAFC, 890536A7BB3AC1BFD01EAC137D9DB9B1845A8599A0DE0647A42262C43AD30985 ] C:\Windows\System32\SearchFilterHost.exe
10:33:57.0485 0x190c C:\Windows\System32\SearchFilterHost.exe - ok
10:33:57.0485 0x190c [ 858E46BB06924EB01C3DF8AEF2DC1CDF, 9A1B03FB12FF5F9CA1E51F2B0CBBD67669561CE3D8728718FAE1547CAA6C230C ] C:\Windows\System32\mssph.dll
10:33:57.0485 0x190c C:\Windows\System32\mssph.dll - ok
10:33:57.0485 0x190c [ 57E0A896C38C41C8B5B7F3127F8FD0D9, 98DEEF74D256E398576106BCFEFE84247FAFF5BD3A167F4CE2FAC2CFEC799D38 ] C:\Windows\SysWOW64\dhcpcsvc6.dll
10:33:57.0485 0x190c C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
10:33:57.0500 0x190c [ 4A895F718857F9A7F6198951F3B106CB, 8377EBDB9F8C1AA7A82F338A93B110DA1473D0B517E3D8B2A0E8187384899DAA ] C:\Windows\System32\mapi32.dll
10:33:57.0500 0x190c C:\Windows\System32\mapi32.dll - ok
10:33:57.0500 0x190c [ 4CEC4C390F0B53AC8AEA2407D88A0ABF, EEC7FBC4B7087C669DAAC0EA07B305C762EDF18B7C02B3FBD8B895D1F4FDD0F6 ] C:\Windows\SysWOW64\webio.dll
10:33:57.0500 0x190c C:\Windows\SysWOW64\webio.dll - ok
10:33:57.0500 0x190c [ AA881284EEE554296E985855C4363E32, D03EFD55AE0521EE38C1644EB80F3331EC8ABE2607D90073E71D29BDF621ADE3 ] C:\Users\ronak_000\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\Ontology.dll
10:33:57.0500 0x190c C:\Users\ronak_000\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\Ontology.dll - ok
10:33:57.0500 0x190c [ 184B6F1F219D4BE4EC586694484CDB9B, B745DD433DCCB7B14798C80DB521E5082A062DC0533278D561F54C6E4413834C ] C:\Users\ronak_000\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe
10:33:57.0500 0x190c C:\Users\ronak_000\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\OAWrapper.exe - ok
10:33:57.0500 0x190c [ 8DB30DA1FA8620A5C4AF53DEB85194D8, D106A7F3970324ED13943CA6E81626D500A6B38C117FB77A4F4F6AB18B2BA0AB ] C:\Windows\SysWOW64\NapiNSP.dll
10:33:57.0500 0x190c C:\Windows\SysWOW64\NapiNSP.dll - ok
10:33:57.0500 0x190c [ F604350906CE4E3F67D81384566DE3E4, 5A5AC4A42E40B34193DA41002133F2CBE4B48310408185A8846E3F112852029F ] C:\Windows\SysWOW64\nlaapi.dll
10:33:57.0500 0x190c C:\Windows\SysWOW64\nlaapi.dll - ok
10:33:57.0500 0x190c [ 4947B4C100BE88C83F027D1C8DBC4B84, 1C35AE176FA15918A8FEA50ED5D74B2BE18E3AE19928EF74A69690234FF9810F ] C:\Windows\SysWOW64\pnrpnsp.dll
10:33:57.0500 0x190c C:\Windows\SysWOW64\pnrpnsp.dll - ok
10:33:57.0500 0x190c [ 8700883867FBD565BF6C2DAE8B2D7810, DAD073DA251EB1AF756EE7739427B305FBE6D8F74B63D8B1CEC301ED8A2023BA ] C:\Windows\SysWOW64\winrnr.dll
10:33:57.0500 0x190c C:\Windows\SysWOW64\winrnr.dll - ok
10:33:57.0500 0x190c [ E864425BF77080E8D780A3AEB3AF7E13, 4508C51327232983802B514704B70B9298B2952214F6EB454597DA5DEA2D569B ] C:\Windows\System32\wmi.dll
10:33:57.0500 0x190c C:\Windows\System32\wmi.dll - ok
10:33:57.0516 0x190c [ 5232DEDED1A958814344D564F6C9C632, 21BB585AB46D447EF3A46AAF3CBED5ACF857B1CFAC7D96F62136A81D69E087CC ] C:\Windows\SysWOW64\schannel.dll
10:33:57.0516 0x190c C:\Windows\SysWOW64\schannel.dll - ok
10:33:57.0516 0x190c [ A75ECF09FC69DEDCF906C2021848EFE1, 1796E903A5A48416F9B919CA79462598E00ADBBD6D60A831DF3FED60840EC637 ] C:\Windows\System32\wbem\wmipcima.dll
10:33:57.0516 0x190c C:\Windows\System32\wbem\wmipcima.dll - ok
10:33:57.0516 0x190c [ E57556FDF54276A2901F36D072B3B13B, ACD0D385F8C378CE2C4AC0EAF977CBFEBA6B63FD852D1432786E3FD2C10DA57F ] C:\Windows\SysWOW64\netprofm.dll
10:33:57.0516 0x190c C:\Windows\SysWOW64\netprofm.dll - ok
10:33:57.0516 0x190c [ 8245D8290D263BB655E15C5FEFE8B8A8, 536D94DED5328BAD1DF33BED09527FAB60F5AE5F5C28D3C1BD53EF995A832485 ] C:\Windows\SysWOW64\browcli.dll
10:33:57.0516 0x190c C:\Windows\SysWOW64\browcli.dll - ok
10:33:57.0516 0x190c [ AF2A68F7890A680DAE0637EC49456A7B, B0CE5DDFD71D51356F77990C6F5212740E1B71578E815C3BAA59E242DFB8EA4C ] C:\Windows\SysWOW64\davclnt.dll
10:33:57.0516 0x190c C:\Windows\SysWOW64\davclnt.dll - ok
10:33:57.0516 0x190c [ 0CAC22201AF1F9A54CFCA93059C06A39, 847A23630C8C333ED3A9422926010845131F671A2B1100739312FEA440A142E6 ] C:\Windows\SysWOW64\davhlpr.dll
10:33:57.0516 0x190c C:\Windows\SysWOW64\davhlpr.dll - ok
10:33:57.0516 0x190c [ 3B122124BACF3F17A3336BD08E9D4D95, A397B636D47B92B617F59EFD49F392F133B97C01E6F6DE955473EF12476AEC27 ] C:\Windows\SysWOW64\drprov.dll
10:33:57.0516 0x190c C:\Windows\SysWOW64\drprov.dll - ok
10:33:57.0516 0x190c [ 369EC92E676537A3F86C5074BA30FC96, B2B2624DBA6F395C35D280A23D6C8272E4B521D628386C37F681A7C67750CA6B ] C:\Windows\SysWOW64\npmproxy.dll
10:33:57.0516 0x190c C:\Windows\SysWOW64\npmproxy.dll - ok
10:33:57.0516 0x190c [ 1CF62E2D53F326C40BDC1FEE3DF11BCB, D1DCD0E561BC71908E411AFC212FC652E4AE2ADDB5E2ADCC009A4D2AF940348C ] C:\Windows\SysWOW64\ntlanman.dll
10:33:57.0516 0x190c C:\Windows\SysWOW64\ntlanman.dll - ok
10:33:57.0532 0x190c [ D40E7B5FBB8E0EAA7C5C294389AF95AB, 8EFD521DF1F335AF416DEC15D5C0C6538903803AA1A8ED93AA704B384A29876B ] C:\Users\ronak_000\AppData\Local\Temp\{A1A2C7DB-CC02-4203-8849-AD22CD6D6A88}.exe
10:33:57.0532 0x190c C:\Users\ronak_000\AppData\Local\Temp\{A1A2C7DB-CC02-4203-8849-AD22CD6D6A88}.exe - ok
10:33:57.0532 0x190c [ 23C9D50C50954642D5B9224AF35858EC, DB39C37E004DA4D2A61323D8FA5248753DD713555B2DB1F030228467A8BC57BA ] C:\Windows\System32\brdgcfg.dll
10:33:57.0532 0x190c C:\Windows\System32\brdgcfg.dll - ok
10:33:57.0532 0x190c [ 3EB052F70F739728F89E2AEE2652E8CA, 4F25A83CB6055D92151696B5C35AAC4B82C189538B5B8C50A2CB4C58F10494ED ] C:\Windows\System32\localspl.dll
10:33:57.0532 0x190c C:\Windows\System32\localspl.dll - ok
10:33:57.0532 0x190c [ AABABEF97D4863A3490163802D41B39F, 745F6E9DB7E30F78096AF7586E7097BB12EEF68C7DB84BC1991ED2C70B58506F ] C:\Windows\System32\ndiscapCfg.dll
10:33:57.0532 0x190c C:\Windows\System32\ndiscapCfg.dll - ok
10:33:57.0532 0x190c [ D465E438E2356C21A51A416E67041F80, 6B967EE9BC1BCBCB8EB611BDB20A19EB91381503FB682109EB598B8678670A98 ] C:\Windows\System32\rascfg.dll
10:33:57.0532 0x190c C:\Windows\System32\rascfg.dll - ok
10:33:57.0532 0x190c [ 95ED0EB4E1D30448AF1C55BB2B4F014C, 3E7569C5CC4E6D37551F474C43478BA66F36AC9DE183D83CC7116263DCAB3097 ] C:\Windows\System32\mprapi.dll
10:33:57.0532 0x190c C:\Windows\System32\mprapi.dll - ok
10:33:57.0532 0x190c [ A46C1D6EE4BC27E8A767079CECCADE9E, F2E3F1D30C954CE9B838D33EF1D0DDEE732CABE6EC9D1A9C2952591C25AD1130 ] C:\Windows\System32\mprmsg.dll
10:33:57.0532 0x190c C:\Windows\System32\mprmsg.dll - ok
10:33:57.0532 0x190c [ 024A5FF9EB31F7D1E98E1167D28C6781, ADBE1F8F94774EAF6E64C7AD326B4289564C19C0F2CCCA67B637124E32325FAB ] C:\Windows\System32\spoolss.dll
10:33:57.0532 0x190c C:\Windows\System32\spoolss.dll - ok
10:33:57.0547 0x190c [ 3CD8F1967D355842CC044B25269EEDFE, F95699E97120FD48A7D0383AA7B57815151FB450615144EC1DC71DEC04DCC7D7 ] C:\Windows\System32\NdisImPlatform.dll
10:33:57.0547 0x190c C:\Windows\System32\NdisImPlatform.dll - ok
10:33:57.0547 0x190c [ 4F1E771801EED912FB37CEB838F8F153, C0868D2CAFB1AEF4342BCE53BC8EAF1DDC629C5AD2BC074D789FC574158306CD ] C:\Windows\System32\PrintIsolationProxy.dll
10:33:57.0547 0x190c C:\Windows\System32\PrintIsolationProxy.dll - ok
10:33:57.0547 0x190c [ ABCCF220548BA6EE8A27DA85951D0569, D378A45C1B2547BDF87F53DA452DB1D977B91CF6C8B183BC8406E20039BEDB9A ] C:\Windows\SysWOW64\ncryptsslp.dll
10:33:57.0547 0x190c C:\Windows\SysWOW64\ncryptsslp.dll - ok
10:33:57.0547 0x190c [ EC03B2D63A9A3AB25A7062CC9036F453, 2635C250F5B254A2032C71D12CA23227AB4D3F0A054A38222F36A2287A1BF1B6 ] C:\Windows\System32\E_YLMJIE.DLL
10:33:57.0547 0x190c C:\Windows\System32\E_YLMJIE.DLL - ok
10:33:57.0547 0x190c [ 67FC2C86490CB84F4AD74B6F5AF3A89C, 788F8675BFC96C0CF5CD290E6DEC96BA680E328B4D016BEFDCCEA24CBC8794AE ] C:\Windows\System32\hpbprtmon.dll
10:33:57.0547 0x190c C:\Windows\System32\hpbprtmon.dll - ok
10:33:57.0547 0x190c [ 23B8FA7B494D249EF162C1FE4DE99567, ED2239FB4162ADD20EE7C3FD75AAA4929117E769EF9E71CB62201E7DE767C5B0 ] C:\Windows\System32\LldpNotify.dll
10:33:57.0547 0x190c C:\Windows\System32\LldpNotify.dll - ok
10:33:57.0547 0x190c [ 0320929A497A57A243ED157BA082896D, 8454D4EFA24D042A11550B2C6424B4F845D8167C86FBFF1BE411BF4F47C3410C ] C:\Windows\SysWOW64\pcacli.dll
10:33:57.0547 0x190c C:\Windows\SysWOW64\pcacli.dll - ok
10:33:57.0547 0x190c [ 06F13BD51FB6A9B199B73C1605238BBF, 2B808A652E288BD6F198F9A7CBCF3C2DDBA5371F9C00E660DF015DC8D442D28C ] C:\Windows\System32\hpbrprtmon.dll
10:33:57.0547 0x190c C:\Windows\System32\hpbrprtmon.dll - ok
10:33:57.0547 0x190c [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] C:\Windows\System32\sppsvc.exe
10:33:57.0547 0x190c C:\Windows\System32\sppsvc.exe - ok
10:33:57.0563 0x190c [ D8F986E9781C4153EC73B52D19CF2E0D, A77F69BEC03D63B0C600B7EFA52F7CA4359C7262268AE7F34F75181CAE31C210 ] C:\Windows\System32\tcpipcfg.dll
10:33:57.0563 0x190c C:\Windows\System32\tcpipcfg.dll - ok
10:33:57.0563 0x190c [ E9286577AD0D3BE9158DCE178A879123, 5B404587CE415CF47A4ABC219FB2376002C6BFFAB6C010FC8DD1FA9DE815F6AC ] C:\Windows\System32\devrtl.dll
10:33:57.0563 0x190c C:\Windows\System32\devrtl.dll - ok
10:33:57.0563 0x190c [ 64362206C83D3C300E37267118D5936B, 80EC6B81C52C434A9EAC0EB0AAF7ADB9CC540C62515ABBE65B1DB198A625DA6C ] C:\Windows\System32\FXSMON.dll
10:33:57.0563 0x190c C:\Windows\System32\FXSMON.dll - ok
10:33:57.0563 0x190c [ DA947D89F64B72A40F678AAAE76F7564, A52C4EA4A909573C3F0397C10923D16631A8D6B5202F4AA4114B2EB62B35493E ] C:\Windows\System32\tcpmon.dll
10:33:57.0563 0x190c C:\Windows\System32\tcpmon.dll - ok
10:33:57.0563 0x190c [ 325D9D1D5D819BD6474BC3E674650138, 5657C46954E02A276439E385299FD3392A828DA223C37EA7A711264045D8609D ] C:\Windows\System32\cryptxml.dll
10:33:57.0563 0x190c C:\Windows\System32\cryptxml.dll - ok
10:33:57.0563 0x190c [ 3B17ED08AD8C86A1C6407CEE7CCF446B, C8785C39399AA883A2507FD6FC4C4B28EEC56A5DCD63F28D8D6C2308079C75FC ] C:\Windows\System32\snmpapi.dll
10:33:57.0563 0x190c C:\Windows\System32\snmpapi.dll - ok
10:33:57.0563 0x190c [ D01BA613D268DAD03DD32A0DC5FD24DF, D4EC7E090E7CA98305C794E6CF870BADD239DD367FE201B41A38FCE0BF6AF175 ] C:\Windows\System32\usbmon.dll
10:33:57.0563 0x190c C:\Windows\System32\usbmon.dll - ok
10:33:57.0563 0x190c [ 91F658373C97A1A2633690730B05C081, B79B896C364BEE88E84D46B727AB7B16DFEC51FB93252089E3813679836A0947 ] C:\Windows\System32\wsnmp32.dll
10:33:57.0563 0x190c C:\Windows\System32\wsnmp32.dll - ok
10:33:57.0563 0x190c [ E09BF40AA766B183F0F385C96B37D9E5, B86E31C415DC2991860D090101A0084D8A284CF9BB2610AA4E1871E1397EAF74 ] C:\Windows\System32\WSDMon.dll
10:33:57.0563 0x190c C:\Windows\System32\WSDMon.dll - ok
10:33:57.0578 0x190c [ 0F17D49BE041B7EFF1D33BF1414E7AC6, F8B536B60903814DF88DAF535753288537EF0993E42AA4E734EDA8D68B24C7AB ] C:\Windows\System32\aelupsvc.dll
10:33:57.0578 0x190c C:\Windows\System32\aelupsvc.dll - ok
10:33:57.0578 0x190c [ 5D3272C8B9D2B91B3A1A7B7D850E3C2C, 1A7B91A8162471CE186E0CB2900705F171A2C15BC506975894CEE853E3101A8F ] C:\Windows\System32\StartMenuHelper64.dll
10:33:57.0578 0x190c C:\Windows\System32\StartMenuHelper64.dll - ok
10:33:57.0578 0x190c [ 10B3D632CA42A042F9E38CC30830A800, B114B2E12B7FBCCCA34DBBABFB113AD3193EAD27F3DFCD7B4137AB9763FB2912 ] C:\Windows\System32\ExplorerFrame.dll
10:33:57.0578 0x190c C:\Windows\System32\ExplorerFrame.dll - ok
10:33:57.0578 0x190c [ 690EB331346D7ADFDA18E50042DEA4B4, 0C219D7A5FCD4E0252C815373E67F843DBD7356FAE7AB836C451068B51438FE7 ] C:\Program Files\Classic Shell\ClassicStartMenu.exe
10:33:57.0578 0x190c C:\Program Files\Classic Shell\ClassicStartMenu.exe - ok
10:33:57.0578 0x190c [ E37DCCB01E8CDD285006AA18A1AC2717, 3B0DC5745F0EF9D0275EBFD45FA6496A97E220BDF21B86A43DB1259C9BEE9DD5 ] C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFTaskbar.dll
10:33:57.0578 0x190c C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFTaskbar.dll - ok
10:33:57.0578 0x190c [ EF4C4EA376D172D966AB31388B3B63B6, FF07C7B6CA66200A20D28668E4E9B401936EAB7F9A4FBD9F90BBA3D49E19AD77 ] C:\Windows\System32\drvstore.dll
10:33:57.0578 0x190c C:\Windows\System32\drvstore.dll - ok
10:33:57.0578 0x190c [ 74541452095D89F4A9F5426AC53CB416, D1AB2EE30EB577A9D4C0450887914AA8F4EBA9233740C0BB15D21CC9F89545C8 ] C:\Windows\System32\windows.immersiveshell.serviceprovider.dll
10:33:57.0578 0x190c C:\Windows\System32\windows.immersiveshell.serviceprovider.dll - ok
10:33:57.0578 0x190c [ 07106140D0596D785328DEFE0297166A, FC024C3B551012F8AEA945FF14577C18327EFF6FF9B8109FE3834FC5C33CF5CA ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
10:33:57.0578 0x190c C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
10:33:57.0578 0x190c [ 138A81702EEC01DC703541710F801172, C94F44844D5C4771BD4725C87A30340375E92170797759C9DAA9CA581F48FA96 ] C:\Windows\SysWOW64\fltLib.dll
10:33:57.0578 0x190c C:\Windows\SysWOW64\fltLib.dll - ok
10:33:57.0594 0x190c [ 44A828D23618E21D85AB4DAD049C1A17, B35BECAFA91EF5A4BEFAC12F2000FDD04133E30F3F487FC921FB73B7DA710428 ] C:\Program Files\Classic Shell\ClassicStartMenuDLL.dll
10:33:57.0594 0x190c C:\Program Files\Classic Shell\ClassicStartMenuDLL.dll - ok
10:33:57.0594 0x190c [ AE27E63B6A4AFCF4EBCCE8AC4A96C0EF, BAA810C902596C7B6FD3F56525661373FA7E9764B9437238FAB7C0C917AB3725 ] C:\Windows\System32\win32spl.dll
10:33:57.0594 0x190c C:\Windows\System32\win32spl.dll - ok
10:33:57.0594 0x190c [ 63CB763FE4CEADFFF5F047332814E8F9, 814EB47BE61F80D88C1B8877E86FB3DBEB85B95019F4005C9FD4F9EEE832A169 ] C:\Windows\System32\wldp.dll
10:33:57.0594 0x190c C:\Windows\System32\wldp.dll - ok
10:33:57.0594 0x190c [ BE0FC6BFE7181F8621B2BD572658A83E, 919CEE8976A2D04A48F2BBE6178683C92F6B787E0BD5E8511596186B21A22D96 ] C:\Windows\System32\inetpp.dll
10:33:57.0594 0x190c C:\Windows\System32\inetpp.dll - ok
10:33:57.0594 0x190c [ 1263AABC78A04C45C093EBA201937724, BB7F35C54F6F8926AF7ADF930F3A864947715A20E148E8C7BAE981DF1C02C46E ] C:\Windows\System32\spool\drivers\x64\3\hpbxjobsvr1202.dll
10:33:57.0594 0x190c C:\Windows\System32\spool\drivers\x64\3\hpbxjobsvr1202.dll - ok
10:33:57.0594 0x190c [ AF033A6377288725830CF3CCD3C12773, C13190832847EF52B0C128DCB29459B00B69B3A9E6DB946A8D3D02B7242FAA93 ] C:\Windows\System32\bidispl.dll
10:33:57.0594 0x190c C:\Windows\System32\bidispl.dll - ok
10:33:57.0594 0x190c [ DE6533132FC2BD8A2ED5D370D41CBED3, 4CF0CBCF3ADC42614CF4C132FA52EFBBAE6FB69059AB6FA72735FB53B326D162 ] C:\Windows\System32\SyncCenter.dll
10:33:57.0594 0x190c C:\Windows\System32\SyncCenter.dll - ok
10:33:57.0594 0x190c [ BA247631B40720DAEA89BEFAA4632EB6, D18B009631F89A350B9BA81B11EE49AADF9295E7CDC6B15EE61983A935551A64 ] C:\Windows\System32\PhotoMetadataHandler.dll
10:33:57.0594 0x190c C:\Windows\System32\PhotoMetadataHandler.dll - ok
10:33:57.0610 0x190c [ 0664F6335F108F38FE08C3CA747311EE, 04C5F31C57573DC4ABFC609D3F7C589835CE5C528AF5EE07FB25E35F72DF98A4 ] C:\Windows\System32\drivers\mwac.sys
10:33:57.0610 0x190c C:\Windows\System32\drivers\mwac.sys - ok
10:33:57.0610 0x190c [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\ronak_000\AppData\Local\Temp\{ED54FE88-2A9F-499C-8773-BE899BBDD1D7}\{D2676F7C-2365-4828-9B70-F07D5A4252A0}.tmp
10:33:57.0610 0x190c C:\Users\ronak_000\AppData\Local\Temp\{ED54FE88-2A9F-499C-8773-BE899BBDD1D7}\{D2676F7C-2365-4828-9B70-F07D5A4252A0}.tmp - ok
10:33:57.0610 0x190c [ CCC6D7250D01DA7E5499B0722CF6CAE3, F111CF6BF87B36C491E09D65B342362F6F9C9BBA77784502CEB45F2B15D87CB2 ] C:\Windows\System32\twinui.appcore.dll
10:33:57.0610 0x190c C:\Windows\System32\twinui.appcore.dll - ok
10:33:57.0610 0x190c [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\ronak_000\AppData\Local\Temp\{ED54FE88-2A9F-499C-8773-BE899BBDD1D7}\{CAD89069-CC67-424F-800A-D75B0D8BD309}.tmp
10:33:57.0610 0x190c C:\Users\ronak_000\AppData\Local\Temp\{ED54FE88-2A9F-499C-8773-BE899BBDD1D7}\{CAD89069-CC67-424F-800A-D75B0D8BD309}.tmp - ok
10:33:57.0610 0x190c [ CE10041A39A0E6F598BFA50A5AB64CF3, D9738F27B1F16D3F2666B12FF080D82360F3DFCD285081DB90E7D4E46AD762E4 ] C:\Windows\System32\wpncore.dll
10:33:57.0610 0x190c C:\Windows\System32\wpncore.dll - ok
10:33:57.0610 0x190c [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\Users\ronak_000\AppData\Local\Temp\{ED54FE88-2A9F-499C-8773-BE899BBDD1D7}\{D5B1FE0E-786B-4D62-9540-A928F26BD5E2}.tmp
10:33:57.0610 0x190c C:\Users\ronak_000\AppData\Local\Temp\{ED54FE88-2A9F-499C-8773-BE899BBDD1D7}\{D5B1FE0E-786B-4D62-9540-A928F26BD5E2}.tmp - ok
10:33:57.0610 0x190c [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\ronak_000\AppData\Local\Temp\{ED54FE88-2A9F-499C-8773-BE899BBDD1D7}\{0CE7D1BE-01F7-4EA7-8595-65D0EE345D28}.tmp
10:33:57.0610 0x190c C:\Users\ronak_000\AppData\Local\Temp\{ED54FE88-2A9F-499C-8773-BE899BBDD1D7}\{0CE7D1BE-01F7-4EA7-8595-65D0EE345D28}.tmp - ok
10:33:57.0610 0x190c [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\ronak_000\AppData\Local\Temp\{ED54FE88-2A9F-499C-8773-BE899BBDD1D7}\{7CF1DC08-DB78-4320-B06D-EF53A684EA60}.tmp
10:33:57.0610 0x190c C:\Users\ronak_000\AppData\Local\Temp\{ED54FE88-2A9F-499C-8773-BE899BBDD1D7}\{7CF1DC08-DB78-4320-B06D-EF53A684EA60}.tmp - ok
10:33:57.0610 0x190c [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\ronak_000\AppData\Local\Temp\{ED54FE88-2A9F-499C-8773-BE899BBDD1D7}\{F22FD814-EEC6-4F67-9FA1-7F9894216277}.tmp
10:33:57.0610 0x190c C:\Users\ronak_000\AppData\Local\Temp\{ED54FE88-2A9F-499C-8773-BE899BBDD1D7}\{F22FD814-EEC6-4F67-9FA1-7F9894216277}.tmp - ok
10:33:57.0625 0x190c [ 12220BA871C6D7BAE08FFDD137BAB697, 69686D8AECE754BB23676C1B0FEEBBBF3FCDAE6A99EBB493A18D2E0271F3F858 ] C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
10:33:57.0625 0x190c C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe - ok
10:33:57.0625 0x190c [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\ronak_000\AppData\Local\Temp\{ED54FE88-2A9F-499C-8773-BE899BBDD1D7}\{B04310A8-A0C6-4861-AC15-4098F016308F}.tmp
10:33:57.0625 0x190c C:\Users\ronak_000\AppData\Local\Temp\{ED54FE88-2A9F-499C-8773-BE899BBDD1D7}\{B04310A8-A0C6-4861-AC15-4098F016308F}.tmp - ok
10:33:57.0625 0x190c [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\ronak_000\AppData\Local\Temp\{ED54FE88-2A9F-499C-8773-BE899BBDD1D7}\{79D0B7F1-FE14-469A-9017-AD28A745527D}.tmp
10:33:57.0625 0x190c C:\Users\ronak_000\AppData\Local\Temp\{ED54FE88-2A9F-499C-8773-BE899BBDD1D7}\{79D0B7F1-FE14-469A-9017-AD28A745527D}.tmp - ok
10:33:57.0625 0x190c [ 152152B5EE3512ED85C526967C350355, 13E0C65D85E8905C05FAF41221C94773B730361122CA277B50E69B4D4CA22B1D ] C:\Windows\System32\thumbcache.dll
10:33:57.0625 0x190c C:\Windows\System32\thumbcache.dll - ok
10:33:57.0625 0x190c [ 812F9BECC3D67371B4B6A41E09E1AEFE, 8B6426F2409797E80BA6A91E83D3BDFE424E524D99DD5AEB3A9117A88E090362 ] C:\Windows\System32\Windows.Networking.Connectivity.dll
10:33:57.0625 0x190c C:\Windows\System32\Windows.Networking.Connectivity.dll - ok
10:33:57.0625 0x190c [ FCA25104E526B1783F0366FF3B4E4445, 1156027076B432F8BE84D56A2739DC4957837F10E8756B2D37BE5EF870430BE4 ] C:\Windows\SysWOW64\FirewallAPI.dll
10:33:57.0625 0x190c C:\Windows\SysWOW64\FirewallAPI.dll - ok
10:33:57.0625 0x190c [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\ronak_000\AppData\Local\Temp\{ED54FE88-2A9F-499C-8773-BE899BBDD1D7}\{3CC42F84-5F79-4990-8FD2-810B8510B1D6}.tmp
10:33:57.0625 0x190c C:\Users\ronak_000\AppData\Local\Temp\{ED54FE88-2A9F-499C-8773-BE899BBDD1D7}\{3CC42F84-5F79-4990-8FD2-810B8510B1D6}.tmp - ok
10:33:57.0625 0x190c [ D4E3BC36A7A0D7A445DCF7342DCB3566, 1816BDBAAFC44D04947FA6B5AE93278E32C1E45E38CDB309EC352CB444AA9C87 ] C:\Windows\System32\ELSCore.dll
10:33:57.0625 0x190c C:\Windows\System32\ELSCore.dll - ok
10:33:57.0641 0x190c [ 51DF09CAB2CAC64FEE3E371D9028ED01, 9B81604D0D0359AF8F54FED6DA7116FFD2F40407895028EAD99FF1D7CFDC2D14 ] C:\Windows\System32\ncbservice.dll
10:33:57.0641 0x190c C:\Windows\System32\ncbservice.dll - ok
10:33:57.0641 0x190c [ 347A3E49CE18402305B8119A6EC7CFEB, 6768B20EE577880B0353FE84B980D4A18D323929A63FAE41F7A55123BBFC8DBA ] C:\Windows\System32\TimeBrokerServer.dll
10:33:57.0641 0x190c C:\Windows\System32\TimeBrokerServer.dll - ok
10:33:57.0641 0x190c [ 121BCF3FB6C1F8AA214EB83C76B944FB, 601696238E353AF241C28B20A1FCBD75B3CE92D6FE6B1A427E9D653FCFA8BA5A ] C:\Windows\System32\elsTrans.dll
10:33:57.0641 0x190c C:\Windows\System32\elsTrans.dll - ok
10:33:57.0641 0x190c [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\ronak_000\AppData\Local\Temp\{ED54FE88-2A9F-499C-8773-BE899BBDD1D7}\{F37C731E-2ACB-4D03-8450-3CD9EBEAD7E9}.tmp
10:33:57.0641 0x190c C:\Users\ronak_000\AppData\Local\Temp\{ED54FE88-2A9F-499C-8773-BE899BBDD1D7}\{F37C731E-2ACB-4D03-8450-3CD9EBEAD7E9}.tmp - ok
10:33:57.0641 0x190c [ E8511D133B449BEE41CABFCA6EB35526, 38D635B18B195AC1626E3B54B63A7EB0807409D234620697D7FB520680CDDED5 ] C:\Windows\System32\BrokerLib.dll
10:33:57.0641 0x190c C:\Windows\System32\BrokerLib.dll - ok
10:33:57.0641 0x190c [ 4CB85D450E4816BEDBBDB8ABD697F597, 8190B08A59FF468000D06C7F757201FDE437A82CF560929F47673FC3CD81514E ] C:\Windows\System32\elslad.dll
10:33:57.0641 0x190c C:\Windows\System32\elslad.dll - ok
10:33:57.0641 0x190c [ 39C288E39B7B02614F997FB2077575ED, 17CF253A688F1DC8DCF6AF815D7FB3966DAD26A5FCB2619ADF1427F2F0D504FF ] C:\Windows\System32\sppwinob.dll
10:33:57.0641 0x190c C:\Windows\System32\sppwinob.dll - ok
10:33:57.0641 0x190c [ A2BF5D466853422C143571064C7DD94F, FD8E16701597BFDA85894F6E084A3B615CAFD60945E8EA2DF15C01C7065487A2 ] C:\Windows\System32\AppXDeploymentClient.dll
10:33:57.0641 0x190c C:\Windows\System32\AppXDeploymentClient.dll - ok
10:33:57.0641 0x190c [ 28E8D340402C130427F2901004B7FA99, DB3324F8473B5318684D74B1B24B0A6C04BE0C3404471622564B5464C6777819 ] C:\Windows\System32\stobject.dll
10:33:57.0641 0x190c C:\Windows\System32\stobject.dll - ok
10:33:57.0657 0x190c [ F58FBEA392B663B936E62939A877CA80, 5B8B8EE4B2D7CB523C1950E1E6E71FFC46CA1BD0717C7DC00CBFD45B68B36F1A ] C:\Windows\System32\SkyDrive.exe
10:33:57.0657 0x190c C:\Windows\System32\SkyDrive.exe - ok
10:33:57.0657 0x190c [ 059D36ABEC9F2D3F677B8EA9240405CD, B4CD58747DBA0E9C1C22DDFB049302662D7875C6ABF04DA76565FCDFE5AA82C3 ] C:\Windows\System32\batmeter.dll
10:33:57.0657 0x190c C:\Windows\System32\batmeter.dll - ok
10:33:57.0657 0x190c [ 35F57F3C64A0E744F097159936DE3942, 8F1255458DF7244ADBCD103462C7B1EB5B3E355410ECC66228D5B339D7BE3ACB ] C:\Windows\System32\advpack.dll
10:33:57.0657 0x190c C:\Windows\System32\advpack.dll - ok
10:33:57.0657 0x190c [ EB34CE5EFA1591915F973EB30C77A1D8, 86D608B89997A5BF9A6BFD5386A26CFCFACB88A6E3A2D6B4BC9C375085F2AE7E ] C:\Windows\System32\Windows.Globalization.Fontgroups.dll
10:33:57.0657 0x190c C:\Windows\System32\Windows.Globalization.Fontgroups.dll - ok
10:33:57.0657 0x190c [ 7AF1074DAB6D56D0A575F507B6AC266E, FAC5F0F88D4EE13505E04B2DF6EB01212ADEFA72637F54CE36DFF62473718B36 ] C:\Windows\SysWOW64\mstask.dll
10:33:57.0657 0x190c C:\Windows\SysWOW64\mstask.dll - ok
10:33:57.0657 0x190c [ 0E28DA18EF14D77E236B4BD0E111BEC8, F07578D47952323D7C8C7AE4CA156983744B9FFD99191AD2C433B1B1DA104FCD ] C:\Windows\SysWOW64\activeds.dll
10:33:57.0657 0x190c C:\Windows\SysWOW64\activeds.dll - ok
10:33:57.0657 0x190c [ 2B96525A8E9A3FDD6516A0FFB6E7C0AF, 09EA43A3309965049FE264C121F164FE0F63AC9BADE07F2529B3AA43F3CBFAFB ] C:\Windows\System32\prnfldr.dll
10:33:57.0657 0x190c C:\Windows\System32\prnfldr.dll - ok
10:33:57.0657 0x190c [ 25E3826F8A5CB3E8E95926AD271ED365, 954FE1DFEEA8EB37AA2B99295F262304E45EF41250669A29E4DF08DA544328BE ] C:\Windows\SysWOW64\adsldpc.dll
10:33:57.0657 0x190c C:\Windows\SysWOW64\adsldpc.dll - ok
10:33:57.0672 0x190c [ BFC6F7889A9CFF451A418862444B9F63, DB73BF29472F07B4C3FBFC5BAA54C566A1EF90D5DF059640C78F9E41164F406A ] C:\Windows\SysWOW64\Wldap32.dll
10:33:57.0672 0x190c C:\Windows\SysWOW64\Wldap32.dll - ok
10:33:57.0672 0x190c [ F7529BD3FFAC9C33D15F6DE3B7353B03, 8EF0A84C9687A246B60939A326E498121039E9CC617A7ABBA933EDD327F3467E ] C:\Windows\System32\AppXDeploymentServer.dll
10:33:57.0672 0x190c C:\Windows\System32\AppXDeploymentServer.dll - ok
10:33:57.0672 0x190c [ 66CBCDDEF429E5BA83C3288EEB0771A6, DE14B6BD2040DA648F07287655DCDD58D5190A0428709110E63120E0E6898D15 ] C:\Windows\System32\SkyDriveTelemetry.dll
10:33:57.0672 0x190c C:\Windows\System32\SkyDriveTelemetry.dll - ok
10:33:57.0672 0x190c [ 9D2136DDE6753B36A0771FF34337B5D1, 8F139C765BFA080EE15BFC64EC357C9B5EB0BEB20A929E58AB00E19EDBE90254 ] C:\Windows\SysWOW64\riched20.dll
10:33:57.0672 0x190c C:\Windows\SysWOW64\riched20.dll - ok
10:33:57.0672 0x190c [ A2D053D11E3756DB3C5642AACA84E69B, 0915A5CEF05CBCC0C8AB16A19DFE025CAF1BF04EE0EA80846D23973A372AF5CA ] C:\Windows\SysWOW64\usp10.dll
10:33:57.0672 0x190c C:\Windows\SysWOW64\usp10.dll - ok
10:33:57.0672 0x190c [ 2FE534AC99FE081D9A6950C0C8032751, DF0AA724E9762B124B2B05EA7DA6061A44C470906A220D34017D3F912E64E3AA ] C:\Windows\SysWOW64\msls31.dll
10:33:57.0672 0x190c C:\Windows\SysWOW64\msls31.dll - ok
10:33:57.0672 0x190c [ 57CA779C19C2F224BE0C5EFC40F54B60, E7DE461E2A01D5260DA9335B61263D5B2D4C661D0495E73F4AA845B16581499B ] C:\Windows\System32\SyncEngine.dll
10:33:57.0672 0x190c C:\Windows\System32\SyncEngine.dll - ok
10:33:57.0672 0x190c [ 65FBC4306DA606058136DF5D552A4872, 8D45636D6986A7E3561E040F5BCA780F20E8A9442E92823575E5BA10F81293E6 ] C:\Windows\System32\tdh.dll
10:33:57.0672 0x190c C:\Windows\System32\tdh.dll - ok
10:33:57.0672 0x190c [ C3243F65447388A35107A996AC8B30C2, 51709134C24205DB62537F85CBC36B17DBD3BF034614115560CF72D379216880 ] C:\Windows\SysWOW64\ExplorerFrame.dll
10:33:57.0672 0x190c C:\Windows\SysWOW64\ExplorerFrame.dll - ok
10:33:57.0688 0x190c [ CFE23A35E84A2CCA5DE8DF34DC238782, 1E570819CF4104F563D0895259A210E4062B29BD6AECE408793417E38B2422F3 ] C:\Windows\SysWOW64\duser.dll
10:33:57.0688 0x190c C:\Windows\SysWOW64\duser.dll - ok
10:33:57.0688 0x190c [ 716228882A7BE5133B97D70CDDB69E6B, 9356E640B09597C81B2D6BAEFDE1A4955A673F8A9A15173BF4E9D80C3D2350EE ] C:\Windows\System32\Windows.ApplicationModel.dll
10:33:57.0688 0x190c C:\Windows\System32\Windows.ApplicationModel.dll - ok
10:33:57.0688 0x190c [ 4A87A56606776CC9E1520D8A2741E9AE, 565A99728A5833D2DE0BB01BA6A2F1424BCD88DF895BD096E2D78EEE42B7B279 ] C:\Windows\System32\WinTypes.dll
10:33:57.0688 0x190c C:\Windows\System32\WinTypes.dll - ok
10:33:57.0688 0x190c [ A5BFF3597F39015F18AC756F2B475D58, 9DFCC63C0010F4A988C64BEDD863A85B07FC7B068E6B3B07838B14C9ACF2FDF8 ] C:\Windows\SysWOW64\dui70.dll
10:33:57.0688 0x190c C:\Windows\SysWOW64\dui70.dll - ok
10:33:57.0688 0x190c [ 53F4FC66B94804BBF2016922CD826891, CB12B6C85BC38A03D2E90E5E43D79B9B45B00304DD28B2912DFC4B6E4C4FC54D ] C:\Windows\System32\ActionCenter.dll
10:33:57.0688 0x190c C:\Windows\System32\ActionCenter.dll - ok
10:33:57.0688 0x190c [ 9415D8364F64C603853D4CA27CECB3BA, 6D22ECE460948AEE682E72269C2907E2C04474FEE8ADFC4AC4619690F5DE7680 ] C:\Windows\System32\DXP.dll
10:33:57.0688 0x190c C:\Windows\System32\DXP.dll - ok
10:33:57.0688 0x190c [ BD11C5DBF7D84E4AE8703EF3B3AE794B, 52C31673A668E8163F274AF993EA36D491EC15D055809F6F2F8072B0957EB771 ] C:\Windows\System32\OpcServices.dll
10:33:57.0688 0x190c C:\Windows\System32\OpcServices.dll - ok
10:33:57.0688 0x190c [ E4B40D5609F2E5513E616F5BF9D32689, BCB94CCD277EE5B86E08B9841182FCECA9401E44088AF8D23526CB101546A8FE ] C:\Windows\System32\loadperf.dll
10:33:57.0688 0x190c C:\Windows\System32\loadperf.dll - ok
10:33:57.0703 0x190c [ 17F26A480391D5AB4935AE77D4F6F18A, 909A0F6DA49DC3E1D4200BA93C8690AFB5583B649AB135EE7EF6CFCC7B839FE0 ] C:\Windows\System32\shdocvw.dll
10:33:57.0703 0x190c C:\Windows\System32\shdocvw.dll - ok
10:33:57.0703 0x190c [ 67D2296474FB0F3B858E1758FFA3AC79, 072B8413840DFD27EC5335A8CDAF64E47702BDDAC4509B1595E4F3FC7AEF9916 ] C:\Windows\SysWOW64\d3d11.dll
10:33:57.0703 0x190c C:\Windows\SysWOW64\d3d11.dll - ok
10:33:57.0703 0x190c [ 2C01D8EA2B0FA834597FCD96AAAE4F52, 14C60381CE1DF0DB22A20B7EBAA558EC5D500E998363DF8C9318EC613EB5BB4E ] C:\Windows\SysWOW64\dxgi.dll
10:33:57.0703 0x190c C:\Windows\SysWOW64\dxgi.dll - ok
10:33:57.0703 0x190c [ 9590CA2728AACAD7ECE35008D789C3B6, E8F0E0A09EE74EB4E1BCEB82FC166B08A1D5D98649C6478F02D74CD8BC0B2D5B ] C:\Windows\System32\Syncreg.dll
10:33:57.0703 0x190c C:\Windows\System32\Syncreg.dll - ok
10:33:57.0703 0x190c [ 7668892E7ABC6FE867DCB097B36B6F3C, D182F048289DA6F24A628A57E54E46C3E7CF4EFBC4E1815B9E933A75D8F8D632 ] C:\Windows\System32\Windows.UI.dll
10:33:57.0703 0x190c C:\Windows\System32\Windows.UI.dll - ok
10:33:57.0703 0x190c [ 7FB2433AD4F18556CAB45092AF621FA2, C1EB54CCF21B0270ABDA820B741B0F30A3974065BE189168AC55CD3D0837D116 ] C:\Windows\System32\wpnprv.dll
10:33:57.0703 0x190c C:\Windows\System32\wpnprv.dll - ok
10:33:57.0703 0x190c [ 0A7F97DE49DB63E01CBCA067F4DA7AB8, 2ACDE214D995C8F7923C47BB8D8ADAA793FA65845DD79FAEDF1DBD1B5D9B5AD1 ] C:\Windows\System32\AppxPackaging.dll
10:33:57.0703 0x190c C:\Windows\System32\AppxPackaging.dll - ok
10:33:57.0703 0x190c [ DEE4954653FF7D6D8A5C6B82B95E938A, 108D5DB5B3163255821F555A9FB56E259B6E664FC4235600C5F6F41342B55FE0 ] C:\Windows\SysWOW64\ddraw.dll
10:33:57.0703 0x190c C:\Windows\SysWOW64\ddraw.dll - ok
10:33:57.0719 0x190c [ 9EFD95DED712105DB409138486D5FE26, A430CD1DADE7DE75CC4D043C7B6CDF50A2CF1CB9A5DB147658F255C3B694E375 ] C:\Windows\SysWOW64\dciman32.dll
10:33:57.0719 0x190c C:\Windows\SysWOW64\dciman32.dll - ok
10:33:57.0719 0x190c [ 776F9D8FA4186E2976DBC89D99CB59A6, 65CE3346E0149889494A7B6E05393D0AA24879D9B913571DA2F94DD01BE10E81 ] C:\Windows\System32\WPDShServiceObj.dll
10:33:57.0719 0x190c C:\Windows\System32\WPDShServiceObj.dll - ok
10:33:57.0719 0x190c [ 4235066EB3F3FE7F3153D7AC3BCD059A, BCEB88E9652709ECA05875BC99ADBBD2A5ECE226CBE2E831A4F5FCAD82101CE8 ] C:\Windows\System32\bitsprx2.dll
10:33:57.0719 0x190c C:\Windows\System32\bitsprx2.dll - ok
10:33:57.0719 0x190c [ DE320127B1ED10BF465AF9FB7EBD4557, BFF3F36E8398A089406F33C596398289CD20221E2F82235B3C9897540E6EE02E ] C:\Windows\System32\PortableDeviceTypes.dll
10:33:57.0719 0x190c C:\Windows\System32\PortableDeviceTypes.dll - ok
10:33:57.0719 0x190c [ 76C3A3F212D8ABE96B0B4BDA2A67F66F, 593DF65B95EE88B88008797C6BC5032FFAA9FFFECA5EEBF4FA2FBAD3BAB78D50 ] C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll
10:33:57.0719 0x190c C:\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll - ok
10:33:57.0719 0x190c [ 91AA701CC14DEDD1DD62E27CCADFD99B, 7977DAAC0F7584369D24C6DD6C14204F74DB99367367419469908738FF01A9A2 ] C:\Windows\System32\ThumbnailExtractionHost.exe
10:33:57.0719 0x190c C:\Windows\System32\ThumbnailExtractionHost.exe - ok
10:33:57.0719 0x190c [ DAF25B7F36517AAEA748819E78DCF6BD, C44B2E73E422976CCBE1A2FE22D59A93DF508CED6CFB9E54BA56E9D814A8EBD1 ] C:\Windows\System32\bitsprx7.dll
10:33:57.0719 0x190c C:\Windows\System32\bitsprx7.dll - ok
10:33:57.0719 0x190c [ 5764E8261620179F4B9472D2E589E5D9, 41510D4A21AAE673DEC295183DC59CF93036893CCDBAE826267E212E144A7301 ] C:\Windows\System32\TimeBrokerClient.dll
10:33:57.0719 0x190c C:\Windows\System32\TimeBrokerClient.dll - ok
10:33:57.0719 0x190c [ F815391F89F7656DACF6EA11C0357682, 3C48A5677B8E2B237F2391BEA9355D38909EC7DB7D57EE6E0E45F1E3D6E5FE38 ] C:\Windows\System32\AppxApplicabilityEngine.dll
10:33:57.0719 0x190c C:\Windows\System32\AppxApplicabilityEngine.dll - ok
10:33:57.0735 0x190c [ D121570F6E7A06B5C26686C3C3AF1127, C642DB311CEAA5A4A9EB05B26D7CBDC125B16AE3D97B79D4ADA0617DEADAA7BB ] C:\Windows\System32\bitsprx5.dll
10:33:57.0735 0x190c C:\Windows\System32\bitsprx5.dll - ok
10:33:57.0735 0x190c [ 29CAE0205F1749741308FC3D9E7433C0, EADD80911C65821FB9A335610E325BD49C0F0C5D1A17C2E7F053A9B8E6F9DE0A ] C:\Program Files\Windows Portable Devices\sqmapi.dll
10:33:57.0735 0x190c C:\Program Files\Windows Portable Devices\sqmapi.dll - ok
10:33:57.0735 0x190c [ A6306E2A24C11555D5A4E572291C551D, 764337B658D24DDFBF370C5BBBC97F039D1B796DB8F1B735B419AB6F9846DE49 ] C:\Windows\System32\ntshrui.dll
10:33:57.0735 0x190c C:\Windows\System32\ntshrui.dll - ok
10:33:57.0735 0x190c [ 0512FCA695595018A289C032A409EA64, 608922D1970E8FAC02DA0F01920C4E3706BE75C116018322FBCB926DC90882E7 ] C:\Windows\System32\SettingMonitor.dll
10:33:57.0735 0x190c C:\Windows\System32\SettingMonitor.dll - ok
10:33:57.0735 0x190c [ CD3B0300647818BBF24350C32BA21004, 38764C5E49E3D4362D3BC702C0D9698AA7EF938C6EFC9530CB02AABAF3CA354A ] C:\Windows\System32\bitsprx3.dll
10:33:57.0735 0x190c C:\Windows\System32\bitsprx3.dll - ok
10:33:57.0735 0x190c [ EB248189E980B367D09C36A1C2A6FC3D, 9D0AC50AA86E0650D0D3797FE5B38C82B919C2A16A9CD206A34793B412B31414 ] C:\Windows\System32\linkinfo.dll
10:33:57.0735 0x190c C:\Windows\System32\linkinfo.dll - ok
10:33:57.0735 0x190c [ EE7C82B0D69F038245CECBCE9EC45A9A, 522367CB0307FFD9EF6BABAE53DF3401F880A526636DCE7B7F633F2DF906FFBF ] C:\Windows\SysWOW64\dllhost.exe
10:33:57.0735 0x190c C:\Windows\SysWOW64\dllhost.exe - ok
10:33:57.0735 0x190c [ 817005B17E25BD6E2369635D5A33DA51, D9BF3391AC1DA28804FA1B83753C054D63F0BFB3A5E0020A36F00FA9247EFEC9 ] C:\Windows\System32\AepRoam.dll
10:33:57.0735 0x190c C:\Windows\System32\AepRoam.dll - ok
10:33:57.0750 0x190c [ C4D32A2A0032C65587993E637F2B78F6, 01384FCDEEDE02D88A49332CC6069345C5BA243C37ECC25F8BF9A45ACA7D4A26 ] C:\Windows\System32\AltTab.dll
10:33:57.0750 0x190c C:\Windows\System32\AltTab.dll - ok
10:33:57.0750 0x190c [ E6B65614304E4695C87FC4BD8894F3B3, 22B99BC0B863D6834D272B4AFF0A52F6C968056BFBFE8D73114C33C89CB8432A ] C:\Windows\System32\networkexplorer.dll
10:33:57.0750 0x190c C:\Windows\System32\networkexplorer.dll - ok
10:33:57.0750 0x190c [ 7FF1EBF5A376F5B17421E6868F353627, 6ADE337B227FA50489287169979593E5E05DBED4DB8F3B4271CEEBC3CCD76A72 ] C:\Windows\System32\pnidui.dll
10:33:57.0750 0x190c C:\Windows\System32\pnidui.dll - ok
10:33:57.0750 0x190c [ 1676B06421492B439A9E60C55692A921, F177384A6903A1BA6B67887FF71ACFFF2F92B533B32D9CCB00DE822128A6565F ] C:\Windows\System32\Windows.UI.Search.dll
10:33:57.0750 0x190c C:\Windows\System32\Windows.UI.Search.dll - ok
10:33:57.0750 0x190c [ 98A755F17458A425CCE6389346BA6540, D4B117BF19D6FD2D284D7CB6A7D24B91F023F5F8B0B3EB9894616BD60431552E ] C:\Windows\System32\wincorlib.dll
10:33:57.0750 0x190c C:\Windows\System32\wincorlib.dll - ok
10:33:57.0750 0x190c [ 30EC406493F585A43BC3F6E813E266A7, 0AF4F6941FA321AF916443443F268A15E1DA61342B7CDA9D1C911EBE17972749 ] C:\Windows\System32\WSClient.dll
10:33:57.0750 0x190c C:\Windows\System32\WSClient.dll - ok
10:33:57.0750 0x190c [ 6E0BDFBEEED65B017F2E4C2C910B0520, 54D798C2E2804DCDB84E9650EA4A032C669B10C586B396D5505F16235D83882C ] C:\Windows\System32\rundll32.exe
10:33:57.0750 0x190c C:\Windows\System32\rundll32.exe - ok
10:33:57.0750 0x190c [ C0281344E7702939DCE4A17734269E58, F74B109095EE58F213640B4FD07BA41A2D647AA25A1D5A9FF2E799CE9DFA042C ] C:\Windows\SysWOW64\actxprxy.dll
10:33:57.0750 0x190c C:\Windows\SysWOW64\actxprxy.dll - ok
10:33:57.0750 0x190c [ 1C683FB45C6CE0BB8A74BB0B1392599D, E3B810A46BAB0E1A08C37E31EDC419B076ABB5D8A1DA4D3B8A5774998CF1004A ] C:\Windows\System32\VAN.dll
10:33:57.0750 0x190c C:\Windows\System32\VAN.dll - ok
10:33:57.0766 0x190c [ 5F56C0DE776C7AE43AF749845BFAA1EF, 837993C5853B7E682C7FB8401B7F5D951FFD15E5659EBB1B01DC3F5719ACEE19 ] C:\Windows\System32\wlidsvc.dll
10:33:57.0766 0x190c C:\Windows\System32\wlidsvc.dll - ok
10:33:57.0766 0x190c [ 30293301B14D0D11D086B09831F5FE0D, A0A0E2D034857C1337D0254E02064B05A9A822BEF004154840D89117C1A5F07F ] C:\Windows\System32\WSShared.dll
10:33:57.0766 0x190c C:\Windows\System32\WSShared.dll - ok
10:33:57.0766 0x190c [ 839CF25B9B8614CE7319BC5CF1F5C01F, 586DA741CF98840E349EB08EE6102E42D69FD0CED41DCF5C34DD33411BDA5A4B ] C:\Windows\System32\WSSync.dll
10:33:57.0766 0x190c C:\Windows\System32\WSSync.dll - ok
10:33:57.0766 0x190c [ 75F06513C384B2B999FAD8375FC63766, 045AD2CC58482E30B0E511018B04DA779FAA9BAC92AAC8F83969172B8A4B1E29 ] C:\Windows\SysWOW64\mapi32.dll
10:33:57.0766 0x190c C:\Windows\SysWOW64\mapi32.dll - ok
10:33:57.0766 0x190c [ 3EC77C4625862483BFCF4CEE1231EED7, 2AB31AF3EB43F8E5E81F4AEFAA4C10520673A65CEAE02BEEECFF297B778383D4 ] C:\Windows\System32\ieframe.dll
10:33:57.0766 0x190c C:\Windows\System32\ieframe.dll - ok
10:33:57.0766 0x190c [ 3014CE5846A486C624E3E2CEB8C3290C, F4ED62455AD73B7CB206A419694807D5546AC7A0275FEF506FDCC608651581EA ] C:\Windows\System32\SkyDriveShell.dll
10:33:57.0766 0x190c C:\Windows\System32\SkyDriveShell.dll - ok
10:33:57.0766 0x190c [ DC225130BCAE999B1A660EEBF3D2E813, 563CB862B9DA11739A66C4D7E6AAFC3BAADD1CF8638A354D4ABC5AC11C2C88D4 ] C:\Windows\System32\MSWB7.dll
10:33:57.0766 0x190c C:\Windows\System32\MSWB7.dll - ok
10:33:57.0766 0x190c [ 4CED559981E38EB824B4281FB32118CB, 65E5CFBCCF322EAECD7CAB279CDFFA60065C810212757D3025F1C8BD543457CE ] C:\Program Files (x86)\TeamViewer\Version9\tv_w32.dll
10:33:57.0766 0x190c C:\Program Files (x86)\TeamViewer\Version9\tv_w32.dll - ok
10:33:57.0766 0x190c [ 83DE0CC30F2E7F7108F550AEBDDCE4C7, 3F0D1EBB16BD71BA05893D4BC8463548B37843E75B046725AF1486F853924847 ] C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe
10:33:57.0766 0x190c C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe - ok
10:33:57.0782 0x190c [ 2EC3B52F3359E87461F88C3D485B85C2, D9B0D3F87752201DDC7E64FC48B0345ABE49619B2BA73D8AC4ADC1249109B0C7 ] C:\Windows\System32\WWanAPI.dll
10:33:57.0782 0x190c C:\Windows\System32\WWanAPI.dll - ok
10:33:57.0782 0x190c [ 8C8E7948B3940BC2987D06D633DF4AEA, FCE242F4F43FCDC292855A8EBEB858AA6D0B798D356C92949FC36B3E37AC15EA ] C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe
10:33:57.0782 0x190c C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe - ok
10:33:57.0782 0x190c [ 726798E8D852FC48746850E3B1FB1066, 106E05AC9308D123FC2D598C68EA164C180BB37AA4EBE3C2CDFE4367B7BAA761 ] C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL
10:33:57.0782 0x190c C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL - ok
10:33:57.0782 0x190c [ 689ABA32B7C61B9B3E0153E83F638C57, C95CFB29680E9B11514842E79BE72D7E009C0BEE7619DA333A26684A2F03B7D1 ] C:\Windows\System32\NaturalLanguage6.dll
10:33:57.0782 0x190c C:\Windows\System32\NaturalLanguage6.dll - ok
10:33:57.0782 0x190c [ AB7892A876ED44FC9C1D80FD9F3046E0, F5AA37343F8BF3B6AD811F3F88CB227CDD7D02EA1A42BAF6A273087C0FAAA24A ] C:\Windows\System32\StructuredQuery.dll
10:33:57.0782 0x190c C:\Windows\System32\StructuredQuery.dll - ok
10:33:57.0782 0x190c [ B4FF8527DB0DDE49E48FD0DBE55AEF2D, C17F22B56C8B5FE7C12B97382D23764C61D6DB2E71503432DB9C57F120233EBA ] C:\Program Files\NVIDIA Corporation\Display\nvsmartmax64.dll
10:33:57.0782 0x190c C:\Program Files\NVIDIA Corporation\Display\nvsmartmax64.dll - ok
10:33:57.0782 0x190c [ 4B3493B5ED672A67AF1F82733F559922, 70452D6AF5F4334A92D62465E8C40A8BCBCD53D9FD60D44C9E632BDDCF1BD68B ] C:\Windows\System32\NlsData000c.dll
10:33:57.0782 0x190c C:\Windows\System32\NlsData000c.dll - ok
10:33:57.0782 0x190c [ 10CE7F7704E293F6CC6E0AF51DBFD95A, BA4B5C2F6329B9FF3F0522B3F583358D39355FD310146AAE2A1A666F4E2377A7 ] C:\Windows\System32\SearchFolder.dll
10:33:57.0782 0x190c C:\Windows\System32\SearchFolder.dll - ok
10:33:57.0782 0x190c [ 1060AE975A2E63E5E5D2F0ABDC5D557D, F2B5F711D0031612EDAD0DEE2F3E037C2E883C985087E227582750B8CF91765C ] C:\Windows\System32\sppobjs.dll
10:33:57.0782 0x190c C:\Windows\System32\sppobjs.dll - ok
10:33:57.0797 0x190c [ 2C161B551FDEEA7069CB87F3BE5E34C6, 515A0F1D71793D3C9509E929334557EB441D36BF4870273583E4D68A331B09FD ] C:\Windows\apppatch\AcGenral.dll
10:33:57.0797 0x190c C:\Windows\apppatch\AcGenral.dll - ok
10:33:57.0797 0x190c [ E3203EC9AAE6A5675A7C051A49002AD1, C75AB6FB1503B0CF69D291BF07E3B9B5A654E8E5591AFBDC7570A5916613A2DE ] C:\Windows\System32\newdev.dll
10:33:57.0797 0x190c C:\Windows\System32\newdev.dll - ok
10:33:57.0797 0x190c [ AA195EEF529D57407B4E75D0ADF2CEF1, C88B7C4B1747AABE0842471F4C8026718CE92AE7B0ACFF0760C2C948B9025DCA ] C:\Windows\SysWOW64\powrprof.dll
10:33:57.0797 0x190c C:\Windows\SysWOW64\powrprof.dll - ok
10:33:57.0797 0x190c [ 059A7EB8ABB9DAD1DB46F81EAFACC4DE, 820E6801903720524E691A7C4B8780A5077393B2B67C44C2C35FA0DE1314325B ] C:\Windows\SysWOW64\newdev.dll
10:33:57.0797 0x190c C:\Windows\SysWOW64\newdev.dll - ok
10:33:57.0797 0x190c [ 53A3DE22A97A40469FC6AEB54A151A61, ECE86E8A88DE3A06EBDA73D8945DDA04DF9A94A0C8F949C9C3E1C3D2355CA526 ] C:\Windows\System32\atl100.dll
10:33:57.0797 0x190c C:\Windows\System32\atl100.dll - ok
10:33:57.0797 0x190c [ 7101124E9C48FDBCD7C3DA690990010B, E4FC33B2D38CC75BF0C98A69DA2860F000BC17FFC86C96B342BDFDDE6C247C00 ] C:\Windows\System32\bthprops.cpl
10:33:57.0797 0x190c C:\Windows\System32\bthprops.cpl - ok
10:33:57.0797 0x190c [ AD1F2C725BA0D36F55A5612ABC74F23B, C081F19452FA55A7EC7878A8A71480C44F25002326283DB4FE82867C3D6783DF ] C:\Windows\System32\NlsLexicons000c.dll
10:33:57.0797 0x190c C:\Windows\System32\NlsLexicons000c.dll - ok
10:33:57.0797 0x190c [ A9669D7EB8431CBCE3F1382ED625A5DD, AB05D278539EEA582F8B1885CFDC41CB813510A3CD501E81DBB7F3091669C524 ] C:\Windows\SysWOW64\devenum.dll
10:33:57.0797 0x190c C:\Windows\SysWOW64\devenum.dll - ok
10:33:57.0797 0x190c [ B087305F29D8CE043DD31AD69AFDF1A9, 2241F42C148B4AD5D1DC3D9548A009B16FAB2B5C36792B474256474E12551C1B ] C:\Windows\System32\mssvp.dll
10:33:57.0797 0x190c C:\Windows\System32\mssvp.dll - ok
10:33:57.0813 0x190c [ A4DE7868879498A4E4CBB12788FAA3E8, C55EAB2C4B644C866B2BDE186D7BB4BCC19DEB4C738DA344FA00E9E49C11D12E ] C:\Windows\System32\BluetoothApis.dll
10:33:57.0813 0x190c C:\Windows\System32\BluetoothApis.dll - ok
10:33:57.0813 0x190c [ 49EEC8569BF200C95A38D00766AFB830, 722E7778B1C6B24AF7DB1B727C1BD6F422C9AFD910C0EB0ECEDB4BBBF2724D86 ] C:\Windows\System32\Windows.UI.Xaml.dll
10:33:57.0813 0x190c C:\Windows\System32\Windows.UI.Xaml.dll - ok
10:33:57.0813 0x190c [ 7A86A1DEC4F5DCCBF18AC3393016599E, 5F4E9B9D5E8E58ACF4726FE0C669B634D0C97BE6FBEA5915C7B35AA00E02C052 ] C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
10:33:57.0813 0x190c C:\Program Files\NVIDIA Corporation\Display\nvtray.exe - ok
10:33:57.0813 0x190c [ 17E700D2F6671196D0512BF806BB6435, 50E18CF85167C257329D6D72B73DBCD9816FC07092F6EE86E8E8CD2F5F465172 ] C:\Windows\System32\printui.dll
10:33:57.0813 0x190c C:\Windows\System32\printui.dll - ok
10:33:57.0813 0x190c [ DD51A0A01A20D1CFEAE681EAC9A789C6, 93B106BDA6B8DE9FDE481AF9D20E2F5D3F9CA921DAEAF24D0F02DA0871FB1BD0 ] C:\Windows\SysWOW64\msdmo.dll
10:33:57.0813 0x190c C:\Windows\SysWOW64\msdmo.dll - ok
10:33:57.0813 0x190c [ D39BD0DB9D91A4376F759282B2C276AE, E0888F71F402CA8EA8D9D85C7C04AA3377CEA46655C6CC52D84BE6DF94FB78FB ] C:\Windows\SysWOW64\printui.dll
10:33:57.0813 0x190c C:\Windows\SysWOW64\printui.dll - ok
10:33:57.0813 0x190c [ 0D70F07EB0BCCE2B13652EFFF0DDD75F, FC244FEC0A9745B94C772C68779DFFBE9A162BE8C03103ADE8CFA410B008B4F0 ] C:\Windows\SysWOW64\msacm32.dll
10:33:57.0813 0x190c C:\Windows\SysWOW64\msacm32.dll - ok
10:33:57.0813 0x190c [ 7EC611582CF2124499A28946AEEBC3B4, C4B1837A67C9217822588AA43ADA21B98267DDB16B63C69980CB681FF2AD14AE ] C:\Windows\SysWOW64\MMDevAPI.dll
10:33:57.0813 0x190c C:\Windows\SysWOW64\MMDevAPI.dll - ok
10:33:57.0828 0x190c [ A8732AFE4DB47114355ABB285ED776D2, 595C605E229372416FD322FDC9EAAABD3632CA426CFEE6B65647EBB1035102FD ] C:\Windows\System32\puiapi.dll
10:33:57.0828 0x190c C:\Windows\System32\puiapi.dll - ok
10:33:57.0828 0x190c [ D3EC1112BE0E06ED94308A7B97C929EF, 4BB9690070EC72713F656D9F08090EC579515A1806CC4FDE84BEF433F68A6996 ] C:\Windows\System32\srchadmin.dll
10:33:57.0828 0x190c C:\Windows\System32\srchadmin.dll - ok
10:33:57.0828 0x190c [ FA5BCD67BC10E0828D2A0A0FF52E62DE, E4FE241FE0F60CE5F365FF05B7C494E2C732839CFCEF70BAAE27CAD0F73453FB ] C:\Windows\System32\fontext.dll
10:33:57.0828 0x190c C:\Windows\System32\fontext.dll - ok
10:33:57.0828 0x190c [ 558838A9A51259F3E76030E3E997A72A, B9A730658FA1B94067F90240CBB34C012C8F76AA511EB30AE613CD393D7AC11C ] C:\Windows\SysWOW64\puiapi.dll
10:33:57.0828 0x190c C:\Windows\SysWOW64\puiapi.dll - ok
10:33:57.0828 0x190c [ 24A4E0AA22EF8B91651023E7E6C0A8E3, 18B10DC0A79B1FF04C557A01392E1A1869D4BC84BCD05DB8E249F81B543C7AED ] C:\Program Files (x86)\TeamViewer\Version9\tv_x64.dll
10:33:57.0828 0x190c C:\Program Files (x86)\TeamViewer\Version9\tv_x64.dll - ok
10:33:57.0828 0x190c [ C7AE6A1EAE773F8CEC7F1180CAAB2072, 93F96A178217834E3CD88BC107778E6FC7053C6B20916FBB3FFE3505A3AAEB7D ] C:\Windows\SysWOW64\dsound.dll
10:33:57.0828 0x190c C:\Windows\SysWOW64\dsound.dll - ok
10:33:57.0828 0x190c [ 7FA6470C89F68656D0D86A59177273CD, 819FD6B15DF5EF1EADCBC7E322381B6733AEF58A416F8F457718AF465533CF4A ] C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
10:33:57.0828 0x190c C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll - ok
10:33:57.0828 0x190c [ CD21A1BD8521451295E31B82B0A239F4, 1BBF2A31245E2DA56787318659C07075255B1E8C71905269C64A6ECFAB5FB6AB ] C:\Windows\SysWOW64\wdmaud.drv
10:33:57.0828 0x190c C:\Windows\SysWOW64\wdmaud.drv - ok
10:33:57.0844 0x190c [ 1E93DEF34A2368E7355467B34DE7A965, 02EBB40B64B6A88047C948A238D647F1C07098491B4BFB00682DA3625B9491FF ] C:\Windows\System32\DeviceCenter.dll
10:33:57.0844 0x190c C:\Windows\System32\DeviceCenter.dll - ok
10:33:57.0844 0x190c [ 0515B5D282D87678EE47D23AF95A948A, FC0757685C1E3155058F7602CD4462FEFC584918F7EA3F218DC8E76C0DB630D6 ] C:\Windows\System32\imapi2.dll
10:33:57.0844 0x190c C:\Windows\System32\imapi2.dll - ok
10:33:57.0844 0x190c [ 0757E3969B6C0FE8A8323E92219BFD65, 654ED0982CB4C7D7C10E64356335B97ED09826FB7E71534F64DF1E822C26F666 ] C:\Windows\SysWOW64\ksuser.dll
10:33:57.0844 0x190c C:\Windows\SysWOW64\ksuser.dll - ok
10:33:57.0844 0x190c [ 54BB3FBA7AAED0FCB23D404DD67D4F1F, 4A0DF0D3CD26A39A47D4809AACDDD77854D43A0CC405CBBDE1A3913B80440D3B ] C:\Windows\SysWOW64\avrt.dll
10:33:57.0844 0x190c C:\Windows\SysWOW64\avrt.dll - ok
10:33:57.0844 0x190c [ 081EFB3179E58A757115D129E9DB4631, 632612B44D0EC65A067D83D47B492812A9FEFADF761132600968F81B16C7F462 ] C:\Windows\System32\wscui.cpl
10:33:57.0844 0x190c C:\Windows\System32\wscui.cpl - ok
10:33:57.0844 0x190c [ A3ECC0F6960AA699895CB48BC69BEA3B, 35AE275C19130C4AEDA194E939AA7D924826651C611FBEDB88FF56C142C904CD ] C:\Windows\SysWOW64\AudioSes.dll
10:33:57.0844 0x190c C:\Windows\SysWOW64\AudioSes.dll - ok
10:33:57.0844 0x190c [ 51457E17EA3CB06B24AC83989BC6B819, 9220495B566A10D9631ACC69BDA5E250A48D07F371850389013913F82EF093C5 ] C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll
10:33:57.0844 0x190c C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll - ok
10:33:57.0844 0x190c [ 51271053AB89554B3F9F7C2D0472D913, 086C7C837A0035E9131B06D9330D01D2B5C99D5F6EF351A117BAD53159192523 ] C:\Windows\SysWOW64\msacm32.drv
10:33:57.0844 0x190c C:\Windows\SysWOW64\msacm32.drv - ok
10:33:57.0860 0x190c [ D7660D1DE5B90DBA7F657D6D42E0083D, C2758FD19C7DB538131055C95966A79E136214AADA3E3F9DEA308D0DB15963EC ] C:\Windows\SysWOW64\midimap.dll
10:33:57.0860 0x190c C:\Windows\SysWOW64\midimap.dll - ok
10:33:57.0860 0x190c [ A4A9EF85F21976E477F7426C0E616496, 133E9685160C66753BC834F9F869C9440698DB262FD2C19C56F7DDC10D03396A ] C:\Program Files\Microsoft Office\Office15\ONFILTER.DLL
10:33:57.0860 0x190c C:\Program Files\Microsoft Office\Office15\ONFILTER.DLL - ok
10:33:57.0860 0x190c [ 51E0339BAA4C418D894B0BF888A344A6, 0CBF88CEAB09615BCFE242BFF5E02872F2516EBFB19E6856E3B4710366140855 ] C:\Windows\System32\EhStorShell.dll
10:33:57.0860 0x190c C:\Windows\System32\EhStorShell.dll - ok
10:33:57.0860 0x190c [ 7C514A95C3EAB34547DDBEA9AB09FC19, 9C807A35AB9C8B9EDB4DDFAB37B97A4C85BEF4EBE6ED8A3FDA6DC80C09CF044B ] C:\Windows\System32\hgcpl.dll
10:33:57.0860 0x190c C:\Windows\System32\hgcpl.dll - ok
10:33:57.0860 0x190c [ A864CA7CB53B6D165CB29B4AFECFED53, 8C10C0F4B66C2A34D909EECB1F47C8366EC73224C9067231A3C0A2D750F334AF ] C:\Program Files\NVIDIA Corporation\Update Core\NvGFTrayPlugin.dll
10:33:57.0860 0x190c C:\Program Files\NVIDIA Corporation\Update Core\NvGFTrayPlugin.dll - ok
10:33:57.0860 0x190c [ 53FB52AC29DF3DF005273AC179141E62, A060C479E6F46CD0BB0438BCAB9259521DD8A0C5FB1D7480632D060ACA0C8CA6 ] C:\Windows\System32\drprov.dll
10:33:57.0860 0x190c C:\Windows\System32\drprov.dll - ok
10:33:57.0860 0x190c [ EDC796C4C9588D28CCB6031E365C4F32, 5526715B3B8D4D09750A8E400B97E1B8A8E475B0CD4EF650480B56B3783BD9D4 ] C:\Windows\System32\ntlanman.dll
10:33:57.0860 0x190c C:\Windows\System32\ntlanman.dll - ok
10:33:57.0860 0x190c [ 19F84D6153C06FE71203517BDAC9EA9F, 14B95B657CAE351D8E7E1400EAECDE66892C10B4B32FB37935B6C3CAE6203D72 ] C:\Windows\System32\davclnt.dll
10:33:57.0860 0x190c C:\Windows\System32\davclnt.dll - ok
10:33:57.0875 0x190c [ 8F37ADC302D59D09E0A9D29B9A78D3A6, D2438D5D5A1FE00ABEF14C1BBE1F89FD15F2CFD7DAE6773E35EEF371754884A9 ] C:\Windows\System32\davhlpr.dll
10:33:57.0875 0x190c C:\Windows\System32\davhlpr.dll - ok
10:33:57.0875 0x190c [ E91B5BE9C319293EACC01C9E6E3B0B9A, AC2781A083313E9C143070675C6BF003D3680F22BC32B360780AA465322C1C0B ] C:\Program Files\NVIDIA Corporation\Update Core\NvGFTrayPluginr.dll
10:33:57.0875 0x190c C:\Program Files\NVIDIA Corporation\Update Core\NvGFTrayPluginr.dll - ok
10:33:57.0875 0x190c [ 66E3C667D853DF349E310568F60B9B6A, 49623B6E56219D254EC0B89E180C774B681CF6675DEF888A675265BCCD84B432 ] C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
10:33:57.0875 0x190c C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll - ok
10:33:57.0875 0x190c [ 7B8C3081C03A0D8F1B0C1C1D017B45A2, 227C8524063F7C9A855E5716D4C7618F2AAA57D0882ED5DBDF5C635100D32E22 ] C:\Program Files\Classic Shell\ClassicExplorer64.dll
10:33:57.0875 0x190c C:\Program Files\Classic Shell\ClassicExplorer64.dll - ok
10:33:57.0875 0x190c [ 3BDED05A69947C6F2BC13C14B33BFCE7, D4CC0E96CD96CD472FB4D4C1186C519571D6E6C6A353978830D293E9A7224164 ] C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
10:33:57.0875 0x190c C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll - ok
10:33:57.0875 0x190c [ E81AC183EE021B3EC81B4005F4CE2D7D, D2486FCE463B1392283A8F1E6AAF7BE0E79463EE83290BFFC19FE7DCF9643160 ] C:\Windows\SysWOW64\linkinfo.dll
10:33:57.0875 0x190c C:\Windows\SysWOW64\linkinfo.dll - ok
10:33:57.0875 0x190c [ EEEE240929FFF404FADA3A4160C550DF, 7F4FB6D0625586248E0A4407FC25E0E33F21BB236F3729E1A335ECDFDA13C81D ] C:\Windows\System32\mmci.dll
10:33:57.0875 0x190c C:\Windows\System32\mmci.dll - ok
10:33:57.0875 0x190c [ C85D3A4401D1A18340B834D87BD10588, 5B4188D77FD82AB2529CF2A6F66AD7B2B9639BB3E8A0A041C33A704ABAF88CC1 ] C:\Windows\System32\mmcico.dll
10:33:57.0875 0x190c C:\Windows\System32\mmcico.dll - ok
10:33:57.0875 0x190c [ BA9ADE2B12F322224145350A88A23765, 14412984BD023341090851D4D0C5B4E6AEF0F607A9B7D9770ED24E138119F48E ] C:\Windows\System32\wlaninst.dll
10:33:57.0875 0x190c C:\Windows\System32\wlaninst.dll - ok
10:33:57.0891 0x190c [ 400657F9C16EE39A2A1F08AF7631192F, 9428E287530402E1DC5237920154229081B166BAE65E14009617890B980B17C4 ] C:\Windows\System32\wwaninst.dll
10:33:57.0891 0x190c C:\Windows\System32\wwaninst.dll - ok
10:33:57.0891 0x190c [ B25D266ECBF2FB06F48CAE1956FA3CF3, A8D25E196769A67413E0874980E7438F3F1CD3BE30C3A8A0680CADC85CA48FFF ] C:\Windows\System32\ntprint.dll
10:33:57.0891 0x190c C:\Windows\System32\ntprint.dll - ok
10:33:57.0891 0x190c [ BAC5074667751F72A9CE48CDC31BAC48, E50E0F6210E9EFC88A57689BBC98B103A400D54C84B35C19A71A50183FFCDA75 ] C:\Windows\System32\E_GCINST.DLL
10:33:57.0891 0x190c C:\Windows\System32\E_GCINST.DLL - ok
10:33:57.0891 0x190c [ C4C552E0D1DFDCFEC0B755C05EFFEAC8, 4F37717B8CA3F5901216564ECE6511F96D4D42C46D9B60D453224265F7AB59CF ] C:\Windows\System32\wpd_ci.dll
10:33:57.0891 0x190c C:\Windows\System32\wpd_ci.dll - ok
10:33:57.0891 0x190c [ 475FB7084CC6D2D11A2B6E56CF91C57B, DCB9A0B8047B6AB8B4D19961523D6B69FA0A9F72000C351CFD6FD243B529F3E4 ] C:\Windows\System32\msiltcfg.dll
10:33:57.0891 0x190c C:\Windows\System32\msiltcfg.dll - ok
10:33:57.0891 0x190c [ 739F79546EC16695E613F63864132000, 51981654469D2B8986E57495A7EE56E235DDF645EAA0869793FF8DC47B699970 ] C:\Windows\System32\WUDFCoinstaller.dll
10:33:57.0891 0x190c C:\Windows\System32\WUDFCoinstaller.dll - ok
10:33:57.0891 0x190c [ FCD3596AC11042A543CF54294A54B579, 50373666C941D4DC61DF2F2FAB5C7C214D3C61DA11433A65B998843548460580 ] C:\Windows\System32\gameux.dll
10:33:57.0891 0x190c C:\Windows\System32\gameux.dll - ok
10:33:57.0891 0x190c [ D38297814FB6E33655342D869996E617, 3701892EEF87D1BF0E73322B90678802B6EA4AFA9CBF6111F39611C79DBA96C7 ] C:\Windows\System32\drivers\WSDScan.sys
10:33:57.0891 0x190c C:\Windows\System32\drivers\WSDScan.sys - ok
10:33:57.0907 0x190c [ C76D1DA491995D7108A817714A702133, 81EDD40306D77DD658D91BD9825C9ADD31CB2E766D4BB2886C662A0B3F96418E ] C:\Windows\System32\WSDScDrv.dll
10:33:57.0907 0x190c C:\Windows\System32\WSDScDrv.dll - ok
10:33:57.0907 0x190c [ F586F3F1BF962FE9AE4316E0D896B22F, 8D0AD48D79294567123D943D0F5B6D5A32D7A82B129A24DC821D3095AFAA100B ] C:\Windows\System32\drivers\WSDPrint.sys
10:33:57.0907 0x190c C:\Windows\System32\drivers\WSDPrint.sys - ok
10:33:57.0907 0x190c [ 5D89931EB55AE7653A8F8A952DF3B9A8, B92C7F475558753358A357A3AAD0FA4DEC04F7879F2DAAEB68E225B7727B2550 ] C:\Windows\System32\WSDPrintProxy.DLL
10:33:57.0907 0x190c C:\Windows\System32\WSDPrintProxy.DLL - ok
10:33:57.0907 0x190c [ 431C905A43C16D0D830B5703D23C1917, 9F012EA5E8E6C77BB8FA721FFF6DC885A0259CAE78AD1CD684EC64151B7073BC ] C:\Windows\System32\WSDScanProxy.dll
10:33:57.0907 0x190c C:\Windows\System32\WSDScanProxy.dll - ok
10:33:57.0907 0x190c [ D87CCB226760B2642FDC1FE95E976F58, 9394284881FB2C15474FD58C00758DAEA43A617515B22932B22AA15D315CDEFA ] C:\Windows\System32\spool\drivers\x64\3\E_YUICJIE.DLL
10:33:57.0907 0x190c C:\Windows\System32\spool\drivers\x64\3\E_YUICJIE.DLL - ok
10:33:57.0907 0x190c [ 83481CF1FAD89FAA7E3CDF6AF10C11D1, 23B3C5FF5405C277E5F8336385E37E6FC4CA6D4F71F9A30E8017CBE862442CCC ] C:\Windows\System32\wpnapps.dll
10:33:57.0907 0x190c C:\Windows\System32\wpnapps.dll - ok
10:33:57.0907 0x190c [ 4A1780F986DC1EAE2FADF3219F211C8D, E321CFD28FD347BEF6AC894C92C4DC9B403795F0191D0DD04E3CE423DFD85E70 ] C:\Windows\SysWOW64\sxs.dll
10:33:57.0907 0x190c C:\Windows\SysWOW64\sxs.dll - ok
10:33:57.0907 0x190c [ 887CC44830D3F367CAD17A0CA7CCA5C8, D4022A76433A11FD66D0F41A1EB4D6893BC5B22317E7E9E021739109EB493B44 ] C:\Windows\servicing\TrustedInstaller.exe
10:33:57.0907 0x190c C:\Windows\servicing\TrustedInstaller.exe - ok
10:33:57.0907 0x190c [ EAE5F6EF53A70055EDAFF5BBD77D9E8D, 2033E604BB53D4A46F913F87EDF7C587F278B095887886F4539348FDE299AEE2 ] C:\Windows\servicing\CbsApi.dll
10:33:57.0907 0x190c C:\Windows\servicing\CbsApi.dll - ok
10:33:57.0922 0x190c [ 74EECFBAC0E327F54DCF41382912CF9F, 7B02C703CD93FB0B5A7F42AE59E2DA66CE82662C40571256CFFEA33B52CF40CA ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_fa4ae8e99b1f603c\TiWorker.exe
10:33:57.0922 0x190c C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_fa4ae8e99b1f603c\TiWorker.exe - ok
10:33:57.0922 0x190c [ 2B3BEEB75758B025B0DA88EC59D3871F, 538FA35D0416D4F880A2734154C000FAB6674CD79EE0E303846B3B4A208766DF ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_fa4ae8e99b1f603c\wdscore.dll
10:33:57.0922 0x190c C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_fa4ae8e99b1f603c\wdscore.dll - ok
10:33:57.0922 0x190c [ E4AFACCDDC185A8AB18ACCC1E6AAA09F, A2EF1F83636377D2607FAD39E8164394C321A8BA06A9FDCF9E0161D05468245D ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_fa4ae8e99b1f603c\CbsCore.dll
10:33:57.0922 0x190c C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_fa4ae8e99b1f603c\CbsCore.dll - ok
10:33:57.0922 0x190c [ 2798C06AB46B4D1DEFDF6B4A7022CC1B, 7AEA788E782A68914E730E5288CBFC3E217C22B584A8D20D04A81692BC03A6F8 ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_fa4ae8e99b1f603c\dpx.dll
10:33:57.0922 0x190c C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_fa4ae8e99b1f603c\dpx.dll - ok
10:33:57.0922 0x190c [ 51414DE57033C5C2B265A1A92907532B, 803F30F2A12E011A5615BDC2CD05CB2265E77C52648FF58161F606C808150EF8 ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_fa4ae8e99b1f603c\wcp.dll
10:33:57.0922 0x190c C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_fa4ae8e99b1f603c\wcp.dll - ok
10:33:57.0922 0x190c [ 8CA3AB63B9882C8F64B779419A877DA6, 5B65859AA4F9994EB0B642FE12C8CCF2C0F8E240EEB3B666E791126983EBBBEF ] C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_fa4ae8e99b1f603c\DrUpdate.dll
10:33:57.0922 0x190c C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17246_none_fa4ae8e99b1f603c\DrUpdate.dll - ok
10:33:57.0922 0x190c [ 9465F8E72887AC6CCDD97F738A5AB6B6, DD264018DD64D862FECB7B3D42FABDDFE40CEE7E7E26D7CDE9D88F3611858243 ] C:\Windows\System32\srclient.dll
10:33:57.0922 0x190c C:\Windows\System32\srclient.dll - ok
10:33:57.0922 0x190c [ 06304D50B5228BF1EB6E829A72A629DB, CF51394CF9319BCDA6CD21DA740FA6C4421AFD8AF1D26205F84266E6FD15F99D ] C:\Windows\System32\spp.dll
10:33:57.0922 0x190c C:\Windows\System32\spp.dll - ok
10:33:57.0938 0x190c [ 50DA2DFB41F5882861B6883F880792D9, C89EF6CFC416B6279B197BA72477EAA1315AD04025353F0CC0D8255EA83B0A5D ] C:\Windows\System32\SensApi.dll
10:33:57.0938 0x190c C:\Windows\System32\SensApi.dll - ok
10:33:57.0938 0x190c [ 04B470896143EA0BCCB210467DC69498, A2A577462A8C649D98D14C83EA88AA5A061768C86718BA09560FA6BB0E902DEA ] C:\Windows\System32\apprepapi.dll
10:33:57.0938 0x190c C:\Windows\System32\apprepapi.dll - ok
10:33:57.0938 0x190c [ 1C1C3C5D7DF9D6B19410168E7724F48E, 619F0F4FBC43BAD4215AFCF14AF7E00B84BF3C9F4AB69CC05DD6FEC77C6E0DAC ] C:\Windows\System32\LogiLDA.DLL
10:33:57.0938 0x190c C:\Windows\System32\LogiLDA.DLL - ok
10:33:57.0938 0x190c [ CA969D6FA6C19758D48C664B2D1CE08D, 9E76C5A9E8358589CBDD06EFA426ED0F0FA95B65377B976FF7D056D21A0F1F89 ] C:\Windows\System32\vccorlib110.dll
10:33:57.0938 0x190c C:\Windows\System32\vccorlib110.dll - ok
10:33:57.0938 0x190c [ 17804FCA602C24F7EF30791D4AF90885, BBD77ABA31024DB8AB912B3B7F0B5435D53F4AE0FADCED4AFC60BE70D73A4B96 ] C:\Windows\System32\oledlg.dll
10:33:57.0938 0x190c C:\Windows\System32\oledlg.dll - ok
10:33:57.0938 0x190c [ C72ABC6B7B90A61364B6DD889B5435F3, 0CBBD9691F08434DA3617874F99C6DD87538CBD65B5D8BC39FCE378D4ED29EED ] C:\Windows\System32\msvcr110.dll
10:33:57.0938 0x190c C:\Windows\System32\msvcr110.dll - ok
10:33:57.0938 0x190c [ 349B1D5D8D1B5A7B10BCD01470BD5F64, F0502E3D58713044F62F539B8738694E4CE9C619C665515F5ED2500C843C0C46 ] C:\Windows\System32\msvcp110.dll
10:33:57.0938 0x190c C:\Windows\System32\msvcp110.dll - ok
10:33:57.0938 0x190c [ 96A1D93D16F959C6F5A63E749A9F2EF7, 9EDD4EEC5C625ECF4A1C82318ED6B74404E63A3D43312B53E4F627D76D47658C ] C:\Program Files\IDT\WDM\Beats64.exe
10:33:57.0938 0x190c C:\Program Files\IDT\WDM\Beats64.exe - ok
10:33:57.0938 0x190c [ F9C48B76DA59CF5FF2ED937B62F5ED39, BABC2638F6C92947C79C918DFD3E605B196672B23745226DFA64F68867B7C257 ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
10:33:57.0938 0x190c C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe - ok
10:33:57.0953 0x190c [ 9911D485A187BF4A78F30CAB8707B41F, D31A1A8394941FDA10B1B5B1886F0292A7E5BCD2738195849DB86DD5DF32C674 ] C:\Windows\SysWOW64\taskschd.dll
10:33:57.0953 0x190c C:\Windows\SysWOW64\taskschd.dll - ok
10:33:57.0953 0x190c [ EBA8621EAAC98FB83144C83096F9F836, 4F71401E6012D39776961151F42764F0FC83AA23139E483992DD45E2563FB310 ] C:\Program Files\IDT\WDM\sttray64.exe
10:33:57.0953 0x190c C:\Program Files\IDT\WDM\sttray64.exe - ok
10:33:57.0953 0x190c [ C5B9D305CAD14D55BB4DA5071889EE49, 24C476A91447EB3C5CEFC3BA0DD43A3341D2274B6D8DF8482A9E62D766DEE6AE ] C:\Windows\System32\mfc42u.dll
10:33:57.0953 0x190c C:\Windows\System32\mfc42u.dll - ok
10:33:57.0953 0x190c [ F7546CC82AE959BF322A49A7C11C1D5A, 982FCBF1745E2F77A9B319438CC047EF0FA081BBEDE7F28257EA41901F1ED306 ] C:\Windows\System32\odbc32.dll
10:33:57.0953 0x190c C:\Windows\System32\odbc32.dll - ok
10:33:57.0953 0x190c [ 621F069A0EE526B381043B7E3BA36532, 4880764864A9CAA33B18A7B38C0F760C0A9891A722FAF435A1670A41A5FE59B8 ] C:\Windows\WinStore\WinStoreUI.dll
10:33:57.0953 0x190c C:\Windows\WinStore\WinStoreUI.dll - ok
10:33:57.0953 0x190c [ BAD24090378CD1D9D70DD21CF21D1BFB, A5FB5F8DCF33BB252304D6DA7CB62906E5A437A561A066A647C8D199EE3C57B8 ] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe
10:33:57.0953 0x190c C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe - ok
10:33:57.0953 0x190c [ 2433692BFC2631DC28B0705C1B760FF2, BBDE902F984E0968A3062F3EEA624E804B03095C67C280CDA4E85D02F46B7CDC ] C:\Program Files\Logitech\SetPointP\SetPoint.exe
10:33:57.0953 0x190c C:\Program Files\Logitech\SetPointP\SetPoint.exe - ok
10:33:57.0953 0x190c [ BEA61BAC330230D3B1340F29A2312DD2, 22E2439E63F27AFA596868FC31D0AE2F6DAA95A82F71D1FBF9FDFF8180F8E4CB ] C:\Windows\System32\wsock32.dll
10:33:57.0953 0x190c C:\Windows\System32\wsock32.dll - ok
10:33:57.0969 0x190c [ 3322B60878C62653A7F3FA4AF7F95F4F, DCC355AD7D10AA0624838D9CAE67AD2FC360E86D4978218E072C39A6778A4722 ] C:\Program Files\Logitech\SetPointP\KemUtil.dll
10:33:57.0969 0x190c C:\Program Files\Logitech\SetPointP\KemUtil.dll - ok
10:33:57.0969 0x190c [ B4FA8D816E528DC40E69E7B9819372E1, F8FF47762B6DDF5F10D268606F3907D31557299C2225EE6D9322C7E00C1249D4 ] C:\Program Files\Logitech\SetPointP\SetPointCOM.dll
10:33:57.0969 0x190c C:\Program Files\Logitech\SetPointP\SetPointCOM.dll - ok
10:33:57.0969 0x190c [ DC3F24C5AC8A9A375055C429B56E0DDD, 0ECDA5B6DBB7DACE21F5E9127764B3B5888237F9E6F6A959D9D66EDA44117CCD ] C:\Program Files\Logitech\SetPointP\kemutb.dll
10:33:57.0969 0x190c C:\Program Files\Logitech\SetPointP\kemutb.dll - ok
10:33:57.0969 0x190c [ EADEAB00F6AF4BF3AA61DA07131C39A7, 4103EAA6C674F135BBD6928D204AFF298F66AF4CC53556C4FFA23A8C9D24A363 ] C:\Program Files\Logitech\SetPointP\KemWnd.dll
10:33:57.0969 0x190c C:\Program Files\Logitech\SetPointP\KemWnd.dll - ok
10:33:57.0969 0x190c [ 8AE4F6A588048DC5BEF6C256FAA3D4C4, 77D66A6C66817F7FDCCE8015974E3FCE22967D71A8A9DB303AC2979A480962DE ] C:\Program Files\Logitech\SetPointP\KemXML.dll
10:33:57.0969 0x190c C:\Program Files\Logitech\SetPointP\KemXML.dll - ok
10:33:57.0969 0x190c [ EC04D6C6A6B14C92A39BCA9F74E07861, 4142537B1221906AC0F46595EDDE4E874F369C5723C30E258241A483898E3828 ] C:\Program Files\Logitech\SetPointP\khalwrapper.dll
10:33:57.0969 0x190c C:\Program Files\Logitech\SetPointP\khalwrapper.dll - ok
10:33:57.0969 0x190c [ E9017D8024BD96E95791DB3957C4230A, ACAC07A57604EF73B013F127CA39876B4F33027102819214389F9B2652E0BD9D ] C:\Windows\WinSxS\amd64_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_04480933ab2137b1\mfc90u.dll
10:33:57.0969 0x190c C:\Windows\WinSxS\amd64_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_04480933ab2137b1\mfc90u.dll - ok
10:33:57.0969 0x190c [ FC70F49F1B15802F5AE7F818AE3ECBC8, 1F471B87324666B45DCDA7AF69D8109240E632F289A81A02FDBE1EFDBE75DC7A ] C:\Windows\WinSxS\amd64_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_01c6b44660ce74c3\MFC90ENU.DLL
10:33:57.0969 0x190c C:\Windows\WinSxS\amd64_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_01c6b44660ce74c3\MFC90ENU.DLL - ok
10:33:57.0985 0x190c [ FB200B8990CD10C6E13D0DA5D27D0675, C34818EFAD445A30A2935D1928B9F9E2EA5C335F4AEC5997D0E051CE10F0FAD4 ] C:\Program Files\Logitech\SetPointP\Macros\MacroCore.dll
10:33:57.0985 0x190c C:\Program Files\Logitech\SetPointP\Macros\MacroCore.dll - ok
10:33:57.0985 0x190c [ B014A7884E09E33A97DA3005BA87FCDC, 4504D1EA311C236D3170D5D713411FA9F06655015CB56F41AA373D025234C96C ] C:\Program Files\Logitech\SetPointP\WebBrowserSupport.dll
10:33:57.0985 0x190c C:\Program Files\Logitech\SetPointP\WebBrowserSupport.dll - ok
10:33:57.0985 0x190c [ 22DB177DD70CF9FD54F9FEBFB01F7221, EC4B305A8F23294AA338EC8419502C601668C36D21B35458C2659690B0CC218E ] C:\Program Files\Logitech\SetPointP\Macros\MacroAppSwitch.dll
10:33:57.0985 0x190c C:\Program Files\Logitech\SetPointP\Macros\MacroAppSwitch.dll - ok
10:33:57.0985 0x190c [ 06E886998EBE9A47F940D158CE28277F, EA3A7885712B7D02153996D076DE2D550B4F9B4E6CA53E1623E04F1FBA248AA7 ] C:\Program Files\Logitech\SetPointP\Macros\MacroMedia.dll
10:33:57.0985 0x190c C:\Program Files\Logitech\SetPointP\Macros\MacroMedia.dll - ok
10:33:57.0985 0x190c [ 4EACBFE11C93E813470626487FC3F719, B6C77DDE90FFC841A1E8BF1440572BBF8A8CAC71FBB9E256D45325B55F60E9A4 ] C:\Program Files\Logitech\SetPointP\Macros\MacroEmail.dll
10:33:57.0985 0x190c C:\Program Files\Logitech\SetPointP\Macros\MacroEmail.dll - ok
10:33:57.0985 0x190c [ 9C206B63CF552C766705BEDFF82FFDC9, 9DF6F39928AF0E200D80E617805A1B4A77EBEE4AF550A6BB8C7BD8AC4A31275A ] C:\Program Files\Logitech\SetPointP\KemMon.dll
10:33:57.0985 0x190c C:\Program Files\Logitech\SetPointP\KemMon.dll - ok
10:33:57.0985 0x190c [ 90D6252D02A967FAE79CA823EBE08C3E, 4C4B4FC04DEBE8E6A9823170AB6A17F0CB535C6E7AC1BAF7C6770FB2F9F8FB31 ] C:\Program Files\Common Files\Logishrd\KHAL3\KHALAPI.dll
10:33:57.0985 0x190c C:\Program Files\Common Files\Logishrd\KHAL3\KHALAPI.dll - ok
10:33:57.0985 0x190c [ 2BE7ECC7CCC592226447DE976E41D2C3, 0BB8DA30171761DFF0F990F228FC7B284E0CF4E6B6AEAC6266C0E0B51A10475F ] C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe
10:33:57.0985 0x190c C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe - ok
10:33:58.0000 0x190c [ 657D49C8F2A2F29876D88F48AE03B0F3, B02205BD4E1C1E7B5338FCF9BDC66693709F2C17F36983F7624A40CD99AA8A3C ] C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.dll
10:33:58.0000 0x190c C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.dll - ok
10:33:58.0000 0x190c [ 0B042DB9DC6C1C256220DE418EAE66A7, 02D0BD8A8734D138B76CC7AD14FD4F7198F261A070567C5FFF34F81054E66ABE ] C:\Program Files\Common Files\Logishrd\KHAL3\KHALITCH.dll
10:33:58.0000 0x190c C:\Program Files\Common Files\Logishrd\KHAL3\KHALITCH.dll - ok
10:33:58.0000 0x190c [ 59674E4EC0ABC16C04FA444CB3347825, F5798A289F30D36D3C8456BB13CDAFD6412913B0CC7BFEF5F50071FB701E5280 ] C:\Program Files\Common Files\Logishrd\KHAL3\KHALMW.dll
10:33:58.0000 0x190c C:\Program Files\Common Files\Logishrd\KHAL3\KHALMW.dll - ok
10:33:58.0000 0x190c [ CB5F7C533B93178668D9DA93D0E5FA78, 418D459452D879170810C4F572B5C4A275C0FDB2B2956333324FE32D141BC684 ] C:\Program Files\Common Files\Logishrd\KHAL3\KHALHPP.dll
10:33:58.0000 0x190c C:\Program Files\Common Files\Logishrd\KHAL3\KHALHPP.dll - ok
10:33:58.0000 0x190c [ 3651FC864EE133B92D4D0234168A392B, 54CB92C48A8448201113FD99C6FA708A0829E5BE0455380B414BDE26AFB8D465 ] C:\Program Files\Common Files\Logishrd\KHAL3\KHALMOU.dll
10:33:58.0000 0x190c C:\Program Files\Common Files\Logishrd\KHAL3\KHALMOU.dll - ok
10:33:58.0000 0x190c [ 6ECE746BB283927604DA192CA0D1403D, 327E1E908B6DB1C8414B31DB277EF5EABA340B2EE7FEE19349860B3C8F7778FE ] C:\Windows\System32\spool\drivers\x64\3\E_YATIJIE.EXE
10:33:58.0000 0x190c C:\Windows\System32\spool\drivers\x64\3\E_YATIJIE.EXE - ok
10:33:58.0000 0x190c [ A630E544C3689419A2EF3B855C1DEE85, DEA3FBC95CBDF857B03252B32CE32964D85E7CEA538B9A537DBF5D0FBF7CD505 ] C:\Program Files\Common Files\Logishrd\KHAL3\KHALHID.dll
10:33:58.0000 0x190c C:\Program Files\Common Files\Logishrd\KHAL3\KHALHID.dll - ok
10:33:58.0000 0x190c [ F4959CF82DEB663781EC8DF8F1C358BD, 5FA6DA91B049C662B303AF88AD9D24B41655F3A4807763C8E38A0EB4647BDB57 ] C:\Program Files\Common Files\Logishrd\KHAL3\KHALUSB.dll
10:33:58.0000 0x190c C:\Program Files\Common Files\Logishrd\KHAL3\KHALUSB.dll - ok
10:33:58.0016 0x190c [ 6E3754AFF0B2DC3208D53E306EF6FD45, AB20591CEACD0F10A20399D3E1AFAB527F79789B851E1B79A18DFEBA5D09BF50 ] C:\Windows\System32\spool\drivers\x64\3\E_YAUDJIE.DLL
10:33:58.0016 0x190c C:\Windows\System32\spool\drivers\x64\3\E_YAUDJIE.DLL - ok
10:33:58.0016 0x190c [ 5B398875E84F131FF8E6BF47EB630583, 41F9EB1C1B7D9082E2E87B8F1A97D391AB46198686EA2D299D9F189949DF47AC ] C:\Program Files\Common Files\Logishrd\CDDRV3\LDConfig.exe
10:33:58.0016 0x190c C:\Program Files\Common Files\Logishrd\CDDRV3\LDConfig.exe - ok
10:33:58.0016 0x190c [ 9989169651234D5B9BF3C8FF0FC38974, E24ED46BACD28298077DE3EEAC8B7522F9559E150EB25A0728282FE3FA9C2DE0 ] C:\Windows\System32\spool\drivers\x64\3\E_YLMWJIE.DLL
10:33:58.0016 0x190c C:\Windows\System32\spool\drivers\x64\3\E_YLMWJIE.DLL - ok
10:33:58.0016 0x190c [ 6939264B9A65AA7A36538E64526E9451, 8307C3A6153B494DD3CC20A64FCFCC0E11B18EDA97123F5AD6F8D1FF06DDB6B4 ] C:\Program Files\Logitech\SetPointP\KGame.dll
10:33:58.0016 0x190c C:\Program Files\Logitech\SetPointP\KGame.dll - ok
10:33:58.0016 0x190c [ C8ABA21BBC2F0270FD313E45604E7F83, D71730000D11FDB21DCFE690D0AE7FAE47C1C69103D99FA00D38B12A3505139F ] C:\Windows\System32\spool\drivers\x64\3\E_YASRJIE.DLL
10:33:58.0016 0x190c C:\Windows\System32\spool\drivers\x64\3\E_YASRJIE.DLL - ok
10:33:58.0016 0x190c [ 169FFC6C591F975923EA7C45F9CF02B4, 91E67CFA28C9D9F6732D173E22AA5DAA31A22174B6FD9DD87EB5E24D17E78D3E ] C:\Program Files\Logitech\SetPointP\LCabHandler.dll
10:33:58.0016 0x190c C:\Program Files\Logitech\SetPointP\LCabHandler.dll - ok
10:33:58.0016 0x190c [ FABCBB30F15F5ECA93AAF7BEA18EDDEB, 60BC25F0C946B481687069B408DE951B66FC4BFD3F860DC09A72155B7E43CCF6 ] C:\Windows\System32\spool\drivers\x64\3\E_YABRJIE.DLL
10:33:58.0016 0x190c C:\Windows\System32\spool\drivers\x64\3\E_YABRJIE.DLL - ok
10:33:58.0016 0x190c [ 242713213B95368F9A3C1563272C0028, F9B20E1E73391D340E813A0A5DAF8647C376CE8F8F13DB0401B909323AC98274 ] C:\Windows\System32\spool\drivers\x64\3\E_YASOJIE.DLL
10:33:58.0016 0x190c C:\Windows\System32\spool\drivers\x64\3\E_YASOJIE.DLL - ok
10:33:58.0016 0x190c [ BC77AF87A6665EB31BB6F9AC7013C87C, F6F35045685937C0302337D7B197E68B694A3679D0A73262CE0F96286C573AD9 ] C:\Windows\System32\bitsprx6.dll
10:33:58.0016 0x190c C:\Windows\System32\bitsprx6.dll - ok
10:33:58.0032 0x190c [ 585515DFBBA950F12AB540FF050728AE, D408C167293250836B2E78BD32AAA90DF8A72A841E37EC11BC36163F507FAC0C ] C:\Windows\System32\spool\drivers\x64\3\E_YAPRJIE.DLL
10:33:58.0032 0x190c C:\Windows\System32\spool\drivers\x64\3\E_YAPRJIE.DLL - ok
10:33:58.0032 0x190c [ 4C5F631BE4BA554D482FFE85133C0EC5, ECA37CA392BF387404A83E21634BAEA7D0A61D99947C10ABE01D336FB65652BC ] C:\Windows\System32\spool\drivers\x64\3\E_YBA7JIE.DLL
10:33:58.0032 0x190c C:\Windows\System32\spool\drivers\x64\3\E_YBA7JIE.DLL - ok
10:33:58.0032 0x190c [ B3E76A119F522F981D672DD93ED74081, B00B08C496E092D4B5F75B032D3CE79AE3DAA58F939AB3385D71CE4F27323C90 ] C:\Windows\System32\spool\drivers\x64\3\E_YBL6JIE.DLL
10:33:58.0032 0x190c C:\Windows\System32\spool\drivers\x64\3\E_YBL6JIE.DLL - ok
10:33:58.0032 0x190c [ 05ED7941B21C09A585F4D6A1841CE448, B10A381C01FCCFFAF1E2BEE00A12EAF537C0B362BCD0BF2F8014BA307A312ABB ] C:\Windows\System32\spool\drivers\x64\3\E_YBEWJIE.DLL
10:33:58.0032 0x190c C:\Windows\System32\spool\drivers\x64\3\E_YBEWJIE.DLL - ok
10:33:58.0032 0x190c [ 7D16196C58287F15272DD885F8DA7F0E, FF04B4C78491F607700B2A1D67A140A6547D212438716DFA17D916892B3BBBA0 ] C:\Windows\System32\spool\drivers\x64\3\E_YERSJIE.DLL
10:33:58.0032 0x190c C:\Windows\System32\spool\drivers\x64\3\E_YERSJIE.DLL - ok
10:33:58.0032 0x190c [ 1B76D48A97E3E61661846A5BF64E2008, 5E3524F06CF733107092C36ED3CAF6C967E09E4F3AFDDFB6F8464D5AFDE30587 ] C:\Windows\System32\FXSRESM.dll
10:33:58.0032 0x190c C:\Windows\System32\FXSRESM.dll - ok
10:33:58.0032 0x190c [ 4DF6E378A00B6F89CB35078054057C36, 981BE3859AC48F43E739885BDA6756C5583BFD7353A57669067C8FB170DAE097 ] C:\Program Files\CCleaner\CCleaner64.exe
10:33:58.0032 0x190c C:\Program Files\CCleaner\CCleaner64.exe - ok
10:33:58.0032 0x190c [ 68F07A4750EEC27B4F6E85015798F26E, D7C93116FEAAB2C67655C2548BEF80ED90633C9BC1DBA5F4F12C5E6D6D6016E6 ] C:\Windows\System32\spool\drivers\x64\3\E_YLGRJIE.DLL
10:33:58.0032 0x190c C:\Windows\System32\spool\drivers\x64\3\E_YLGRJIE.DLL - ok
10:33:58.0047 0x190c [ 29D8A3F28222C72606901852ACD20D73, DE73FF8F8475C4DA8625A6610AAA31F7E53763B01D39757B7FAE13AE287C7657 ] C:\Windows\System32\spool\drivers\x64\3\E_YMAIJIE.DLL
10:33:58.0047 0x190c C:\Windows\System32\spool\drivers\x64\3\E_YMAIJIE.DLL - ok
10:33:58.0047 0x190c [ 1B333E6393F86841C7755ACD78885FC0, B368F5355102E4E4AB1FB7AFD15C19D689ED46DB96B56A93B05D1F7B0E89A2AE ] C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE
10:33:58.0047 0x190c C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE - ok
10:33:58.0047 0x190c [ F308D7378BF60B91DA495FCAA1C216E7, 7D67B6D1CE11685F87B3CF9689AF0B089D3340A72C7A0B9633C826AEE49B405E ] C:\Program Files\CCleaner\CCleaner.exe
10:33:58.0047 0x190c C:\Program Files\CCleaner\CCleaner.exe - ok
10:33:58.0047 0x190c [ 3C1919B85747ABAABAF01D9F13D1A253, BF39256975CE8D745263174FA3BBA71F7DC29EE1BCBA3B49850AAB48D8E3DCAA ] C:\Program Files\Microsoft Office\Office15\1033\ONINTL.DLL
10:33:58.0047 0x190c C:\Program Files\Microsoft Office\Office15\1033\ONINTL.DLL - ok
10:33:58.0047 0x190c [ 754E1BC6B892243B40CB19BCEDDA0597, 9D7B7AA71064747FC2C7738412B9E835914507B82298B284E9EE26BB44DA896C ] C:\Windows\SysWOW64\esent.dll
10:33:58.0047 0x190c C:\Windows\SysWOW64\esent.dll - ok
10:33:58.0047 0x190c [ 47EA5F76FAB723C61AB4A0D79BAD512C, A7A38EB0A7068B160E6949945EF639F999A06AE35746F6E79C7350745798E5C9 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
10:33:58.0047 0x190c C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
10:33:58.0047 0x190c [ 9CB652EAE0AB5EB27DD0B589D4A0D345, 4CC38FDBA128779BAC9F0495EC18C545C23619E4403C6A3B8E432BE4B294F132 ] C:\Windows\SysWOW64\SensApi.dll
10:33:58.0047 0x190c C:\Windows\SysWOW64\SensApi.dll - ok
10:33:58.0047 0x190c [ 7FE0EFDA5FB187BA437203DD39AD0674, 726D81A1DE7D0C7410B31BB201644BA02DD570A90470F612DF6E2CDEF1784BF4 ] C:\Program Files (x86)\Stickies\stickies.exe
10:33:58.0047 0x190c C:\Program Files (x86)\Stickies\stickies.exe - ok
10:33:58.0063 0x190c [ ACA8E5A15FE7E513E95FF2E9AE54ED0E, 055720A8B063F86C4E5D31699D624F8A2A0ACAD8F9FFF56C6FEF0413B4D23FC2 ] C:\Windows\System32\wbem\unsecapp.exe
10:33:58.0063 0x190c C:\Windows\System32\wbem\unsecapp.exe - ok
10:33:58.0063 0x190c [ 423069307FB726E51E2A66F1C3F738FE, 314EF0E1C636AC553C0E09F992B34573DA4A89ACCB759BDA27335E8125C08E35 ] C:\Windows\WinSxS\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_4bf5400abf9d60b7\mfc90u.dll
10:33:58.0063 0x190c C:\Windows\WinSxS\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_4bf5400abf9d60b7\mfc90u.dll - ok
10:33:58.0063 0x190c [ 3F7CD7873FA942C38F9831F286698414, 5D7F7D7E999BD5A4DD0D31D5DFFC325E53F52496B14D2DA179192FDB149DCF0A ] C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe
10:33:58.0063 0x190c C:\Program Files (x86)\Adobe\Reader 11.0\Reader\reader_sl.exe - ok
10:33:58.0063 0x190c [ 688FF87A0A328A880FBE32ABB1EE16BF, 9998D95045A2A55BC785378D5C4CC252E663FF0E9483CF1BE09DAE12195683F9 ] C:\Windows\SysWOW64\dpapi.dll
10:33:58.0063 0x190c C:\Windows\SysWOW64\dpapi.dll - ok
10:33:58.0063 0x190c [ 5433EE6EE9AD64B8D45729815221866B, 664A55F1ACAE07AEFC32EDDFD20BCB3EFD76DF7F78743ECACDF9500A08F630FD ] C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.8387_none_5094ca96bcb6b2bb\msvcp90.dll
10:33:58.0063 0x190c C:\Windows\WinSxS\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.8387_none_5094ca96bcb6b2bb\msvcp90.dll - ok
10:33:58.0063 0x190c [ BC83108B18756547013ED443B8CDB31B, B2AD109C15EAA92079582787B7772BA0A2F034F7D075907FF87028DF0EAEA671 ] C:\Windows\SysWOW64\msvcp100.dll
10:33:58.0063 0x190c C:\Windows\SysWOW64\msvcp100.dll - ok
10:33:58.0063 0x190c [ 0E37FBFA79D349D672456923EC5FBBE3, 8793353461826FBD48F25EA8B835BE204B758CE7510DB2AF631B28850355BD18 ] C:\Windows\SysWOW64\msvcr100.dll
10:33:58.0063 0x190c C:\Windows\SysWOW64\msvcr100.dll - ok
10:33:58.0063 0x190c [ 2A632A95433E9719F37AE06BA00543AC, 889704C5556AEC2C5BC1D09BAD9B1910C66A6D040AB5DE021375BA861A16FA19 ] C:\Windows\WinSxS\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_4973eb1d754a9dc9\MFC90ENU.DLL
10:33:58.0063 0x190c C:\Windows\WinSxS\x86_microsoft.vc90.mfcloc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_4973eb1d754a9dc9\MFC90ENU.DLL - ok
10:33:58.0078 0x190c [ B2EC086D45532BCFBB3042C78C27A904, 4E2BED5CA606B1F09A03450C33FE80F7F029FC5F84EABD786353965E198478BC ] C:\Windows\System32\dsparse.dll
10:33:58.0078 0x190c C:\Windows\System32\dsparse.dll - ok
10:33:58.0078 0x190c [ 5AEFC877161F7A481DD7CC137F97E761, 5CAA49EB604C8326865DA669978644A1719F5AE85161357CC76112BBDB0BCC10 ] C:\Windows\SysWOW64\msftedit.dll
10:33:58.0078 0x190c C:\Windows\SysWOW64\msftedit.dll - ok
10:33:58.0078 0x190c [ E25A714FFE55E8A913DE75227ABF6CD0, 9510C4D37AB897D33EFD51D720D4DEA052745EACAB86190C9086D284E202A3FB ] C:\Windows\System32\wbem\NCProv.dll
10:33:58.0078 0x190c C:\Windows\System32\wbem\NCProv.dll - ok
10:33:58.0078 0x190c [ 2BB04B67B907B341648376161070AF69, B16E76A2B4C7AA38F972AA7791255870AC6A10634B2987E006DC2F6B4F4DD302 ] C:\Windows\SysWOW64\riched32.dll
10:33:58.0078 0x190c C:\Windows\SysWOW64\riched32.dll - ok
10:33:58.0078 0x190c [ 963CB4CDD293FAB48907B8A9211262E5, 8CDDD8AAA865E23B8C52CD8FECD234E620256D01D0B7F0DB284AB1C770735992 ] C:\Windows\SysWOW64\BCP47Langs.dll
10:33:58.0078 0x190c C:\Windows\SysWOW64\BCP47Langs.dll - ok
10:33:58.0078 0x190c [ 7DCF616EF2D3197832396EC9D13C44D9, 10F70C18DAAA52BA90A516487459A3FA449A7E4DBBB9F80DD7DD0CB722E5C25F ] C:\Windows\SysWOW64\Windows.Globalization.dll
10:33:58.0078 0x190c C:\Windows\SysWOW64\Windows.Globalization.dll - ok
10:33:58.0078 0x190c [ 7CBEA2774F219C85D77326AC7A5A6DDB, AF1D3410E2769ED61A890450FB5C301D6682A5BF9546A6B4116D8E66AE915819 ] C:\Windows\SysWOW64\globinputhost.dll
10:33:58.0078 0x190c C:\Windows\SysWOW64\globinputhost.dll - ok
10:33:58.0078 0x190c [ 2FFEFB74864D962EF9F750787031A4E7, 4CC28A5BE8DC7425A4C4C1EF275CA392F18BE35D70232E777DCE6D9F3B4D79AC ] C:\Program Files (x86)\Common Files\Microsoft Shared\DAO\dao360.dll
10:33:58.0078 0x190c C:\Program Files (x86)\Common Files\Microsoft Shared\DAO\dao360.dll - ok
10:33:58.0094 0x190c [ 4154281B7A87D76CDC54483AEA6C5D51, 44EDFB2F750326D93648AD0F58B5B913C60AA10212017912212F70900232D204 ] C:\Windows\SysWOW64\msjet40.dll
10:33:58.0094 0x190c C:\Windows\SysWOW64\msjet40.dll - ok
10:33:58.0094 0x190c [ 0EA59D7329F3DE75BAA270EBFFC8C79B, 8B270A3EE55B31353AC78CF2D00FBB20248C1A35DC8806CF9E3F8E4358327636 ] C:\Windows\SysWOW64\mswstr10.dll
10:33:58.0094 0x190c C:\Windows\SysWOW64\mswstr10.dll - ok
10:33:58.0094 0x190c [ 394FFD8FACD3F664B84D921FE624D5BE, E9C61945C0C7B887EC786832AF1056334968D890FC042F0C16B8D7F80A2C0C9A ] C:\Windows\SysWOW64\expsrv.dll
10:33:58.0094 0x190c C:\Windows\SysWOW64\expsrv.dll - ok
10:33:58.0094 0x190c [ A8B799B873537232963697D7CDEC2CFA, 078D2CD98918638F40CE0F1FC0C3C9079EE1A6FBD3B45D6C32AB99FDA642EFE9 ] C:\Windows\SysWOW64\vbajet32.dll
10:33:58.0094 0x190c C:\Windows\SysWOW64\vbajet32.dll - ok
10:33:58.0094 0x190c [ E39E50740CC9DA4DE984EDA0745FD7CE, 622C7D40779271EA4275CE5B89F2DA17B41122F3E0AF3B93828184A037DE9B62 ] C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe
10:33:58.0094 0x190c C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe - ok
10:33:58.0094 0x190c [ 0DFB1C92C11220F24122480F99384770, AE72F8FB1019F4E66D919C50A662C504CE3984E53705BE5A4AA90A1E68765C1B ] C:\Windows\SysWOW64\msjint40.dll
10:33:58.0094 0x190c C:\Windows\SysWOW64\msjint40.dll - ok
10:33:58.0094 0x190c [ 7F2BF1F8E2E767629F2356153734E61E, F222AE1E261B8EFB6EE724EC1D0A451D8618B598D13C0B5D7D10B3015DFFB156 ] C:\Windows\SysWOW64\msjter40.dll
10:33:58.0094 0x190c C:\Windows\SysWOW64\msjter40.dll - ok
10:33:58.0094 0x190c [ E25794A9464433DAC5E4F5B6D7952711, EC729067C73244A4CC92437EC8ABF920C732CB87E33F574DAD6D205F75898941 ] C:\Windows\SysWOW64\msjtes40.dll
10:33:58.0094 0x190c C:\Windows\SysWOW64\msjtes40.dll - ok
10:33:58.0094 0x190c [ 7E1AB823D5F57E18392A2C6BC7466B07, 33D29F14F75F2DF44C8FCAF7D65B8B99B6BF845EAFA513153A6C104E772DB42B ] C:\Windows\SysWOW64\ieframe.dll
10:33:58.0094 0x190c C:\Windows\SysWOW64\ieframe.dll - ok
10:33:58.0110 0x190c [ FA5275F6BE4D2615B754F06E7CF228DB, 7E97DC05A123A953BFE6C2A1D0137C7C81BE17F9838F8D41D0EC99E1C44106E6 ] C:\Windows\SysWOW64\mshtml.dll
10:33:58.0110 0x190c C:\Windows\SysWOW64\mshtml.dll - ok
10:33:58.0110 0x190c [ 8B623D50C30C128C027602637E6EB7F3, 0C668522C11FE0E774705C20AC3232C5B917FE9CF8B70A525011EF17AF7436F3 ] C:\Windows\SysWOW64\OnDemandConnRouteHelper.dll
10:33:58.0110 0x190c C:\Windows\SysWOW64\OnDemandConnRouteHelper.dll - ok
10:33:58.0110 0x190c [ 513D77A8EE3FF8067CC3A65DAE1A3F5A, 7592058FC708C884BB2AC46A30C481495D267DD94FCBDA7332DF8221C9A5742C ] C:\Windows\SysWOW64\msimtf.dll
10:33:58.0110 0x190c C:\Windows\SysWOW64\msimtf.dll - ok
10:33:58.0110 0x190c [ 0379D09E8D407F5BBE07C9D06DDA783D, 38B5BF7C44B254E2E2CB08FB8507878EA68970357C94E749965D27FBF726E012 ] C:\Windows\SysWOW64\mlang.dll
10:33:58.0110 0x190c C:\Windows\SysWOW64\mlang.dll - ok
10:33:58.0110 0x190c [ 6D6E5210CA43AAC67082C69A8BA53705, 530C4C0F27F5B570EBA94BDC135069B56982A7502EED16E98255777C486878D2 ] C:\Windows\SysWOW64\jscript9.dll
10:33:58.0110 0x190c C:\Windows\SysWOW64\jscript9.dll - ok
10:33:58.0110 0x190c [ C9C0B562C7AA50A672766AAC8112DF05, D7AF67B1150AC1120FE6248065F2B95E63ED8E9F6F205F963CEC7CE6F5B0643F ] C:\Windows\SysWOW64\d2d1.dll
10:33:58.0110 0x190c C:\Windows\SysWOW64\d2d1.dll - ok
10:33:58.0110 0x190c [ 65FCEABE3128592F84B60140F814BDDB, C8CB2D0B36C11504A47CE1CC41A456DC6B50B160BFA157598A0BD4CDEE22D004 ] C:\Windows\SysWOW64\DWrite.dll
10:33:58.0110 0x190c C:\Windows\SysWOW64\DWrite.dll - ok
10:33:58.0110 0x190c [ AA3E2CEECFCD89D49FF902ECAD197946, 36ED7F69339E3B44C4F102ED1B8F89716429111E31CA4DEA555958CCCCB88BC4 ] C:\Windows\SysWOW64\d3d10warp.dll
10:33:58.0110 0x190c C:\Windows\SysWOW64\d3d10warp.dll - ok
10:33:58.0110 0x190c [ EBC0E8C0A4DDA2C32A7D5863462A321A, 2F410138DB66D0219254339F1F098E401CEDAA032596F1F67BC54F394256FC68 ] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
10:33:58.0110 0x190c C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe - ok
10:33:58.0125 0x190c [ 724CB7A116F7E1A67009D751BCF86586, F0C4BE7451C5573AD584F5EF125C0702841E30D928909B5B3EA702831EF2FD9B ] C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
10:33:58.0125 0x190c C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe - ok
10:33:58.0125 0x190c [ CF7927AE082B578E38B82AE6D95B5F90, 4BA66F1DB597775C9D2198C40DA1C92F7164F6C43C4FC217496F98096BB6D3A7 ] C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe
10:33:58.0125 0x190c C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe - ok
10:33:58.0125 0x190c [ C3A5FFD57C2563204CD9351F0C7A0DEA, 107899DBCF33DB6844B59D27C768069635B6A21E1BD20B9A1E7DCF3A7F895657 ] C:\Program Files (x86)\CyberLink\Power2Go8\msvcp71.dll
10:33:58.0125 0x190c C:\Program Files (x86)\CyberLink\Power2Go8\msvcp71.dll - ok
10:33:58.0125 0x190c [ A1A6FC56A1D0DADC164637FE43C40605, 8C43448D07F7827F5761B30EB0A903E1B2EFD8F460787F03404C8098B136AE33 ] C:\Program Files (x86)\CyberLink\Power2Go8\msvcr71.dll
10:33:58.0125 0x190c C:\Program Files (x86)\CyberLink\Power2Go8\msvcr71.dll - ok
10:33:58.0125 0x190c [ 2E86BBA86CFD3392FAB6BFEAD07DB43F, 20BC527A0B253DF36463FCD3E85C1439869B6D8C5EA5D5BA0C7445464C9D7C29 ] C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
10:33:58.0125 0x190c C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll - ok
10:33:58.0125 0x190c [ 1EB4589BD34FB1C05AE164F1237BC04A, 51610B040A65B565C5A688FBCA2EC0EB6A4DBA9545D38EFDADDD0ACA1BF6194A ] C:\Windows\SysWOW64\wmp.dll
10:33:58.0125 0x190c C:\Windows\SysWOW64\wmp.dll - ok
10:33:58.0125 0x190c [ 96BF21D5501C3EA064ADB56341B3DE4E, A89D84AD8EECFCAE61904F0D844A57502A09A72552B80799C66594E3F782AE56 ] C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe
10:33:58.0125 0x190c C:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe - ok
10:33:58.0125 0x190c [ 6403B9CB0267A6EAB6950DEA178C6121, FA718864395B049408837B560A36FC182864D0FC806B3AD48A3A4C55B2A75E32 ] C:\Windows\SysWOW64\wmploc.DLL
10:33:58.0125 0x190c C:\Windows\SysWOW64\wmploc.DLL - ok
10:33:58.0141 0x190c [ 9D72F3F2C6F8F83B101357C469CB91FF, 036E9C3F872CEB3DBB80B89315ADE399A29E93F75850256907BA2E50066AF665 ] C:\Program Files (x86)\CyberLink\Power2Go8\UNO.dll
10:33:58.0141 0x190c C:\Program Files (x86)\CyberLink\Power2Go8\UNO.dll - ok
10:33:58.0141 0x190c [ 95599A40AA517A9C566DF79C62A4A97A, C45C49CE8A7B5332CB25C00EE76E8B14CA062B59AEF54B40FF58E1216075B1B7 ] C:\Program Files (x86)\CyberLink\Power2Go8\MUITransfer\MUITransfer.dll
10:33:58.0141 0x190c C:\Program Files (x86)\CyberLink\Power2Go8\MUITransfer\MUITransfer.dll - ok
10:33:58.0141 0x190c [ 55ADDA5B29D1151727470FA165460773, 19226A211E04B35BF5C0194A630E8F6B24F1C2F51192FB142B7AE30EACB156AB ] C:\Windows\SysWOW64\msxml3.dll
10:33:58.0141 0x190c C:\Windows\SysWOW64\msxml3.dll - ok
10:33:58.0141 0x190c [ 94044DDF85DA3D6D95035BDB417E5BEF, 1559D323213AF9962025FBDBD2F0F891D0995CB18D60BE944F239D4087FDF1D0 ] C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
10:33:58.0141 0x190c C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll - ok
10:33:58.0141 0x190c [ 1A33E778E36C9B0C3A09D8E5D66F8D40, 18AB966F47A8D561E93CA4ECCA4C856BF2A8217C48DE57D352981DB9FD06B8C0 ] C:\Program Files (x86)\CyberLink\Power2Go8\Language\Enu\P2GRC.dll
10:33:58.0141 0x190c C:\Program Files (x86)\CyberLink\Power2Go8\Language\Enu\P2GRC.dll - ok
10:33:58.0141 0x190c [ BFA325DF25920870195FFD16DC81BC9B, 855D5CD609B05C2709BCD0C510BCABAA3B2A56D5DFF2B0CB9B3AAA44593F86B2 ] C:\Program Files (x86)\CyberLink\Power2Go8\Boomerang\x86\BoomerangLib.dll
10:33:58.0141 0x190c C:\Program Files (x86)\CyberLink\Power2Go8\Boomerang\x86\BoomerangLib.dll - ok
10:33:58.0141 0x190c [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] C:\Windows\System32\drivers\cdfs.sys
10:33:58.0141 0x190c C:\Windows\System32\drivers\cdfs.sys - ok
10:33:58.0141 0x190c ================ Scan generic autorun ======================
10:33:58.0157 0x190c [ 6E0BDFBEEED65B017F2E4C2C910B0520, 54D798C2E2804DCDB84E9650EA4A032C669B10C586B396D5505F16235D83882C ] C:\Windows\system32\rundll32.exe
10:33:58.0157 0x190c Logitech Download Assistant - ok
10:33:58.0172 0x190c [ 96A1D93D16F959C6F5A63E749A9F2EF7, 9EDD4EEC5C625ECF4A1C82318ED6B74404E63A3D43312B53E4F627D76D47658C ] C:\Program Files\IDT\WDM\beats64.exe
10:33:58.0172 0x190c BeatsOSDApp - detected UnsignedFile.Multi.Generic ( 1 )
10:33:58.0328 0x190c Detect skipped due to KSN trusted
10:33:58.0328 0x190c BeatsOSDApp - ok
10:33:58.0344 0x190c [ F9C48B76DA59CF5FF2ED937B62F5ED39, BABC2638F6C92947C79C918DFD3E605B196672B23745226DFA64F68867B7C257 ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
10:33:58.0344 0x190c AdobeAAMUpdater-1.0 - ok
10:33:58.0360 0x190c [ 690EB331346D7ADFDA18E50042DEA4B4, 0C219D7A5FCD4E0252C815373E67F843DBD7356FAE7AB836C451068B51438FE7 ] C:\Program Files\Classic Shell\ClassicStartMenu.exe
10:33:58.0360 0x190c Classic Start Menu - ok
10:33:58.0391 0x190c [ EBA8621EAAC98FB83144C83096F9F836, 4F71401E6012D39776961151F42764F0FC83AA23139E483992DD45E2563FB310 ] C:\Program Files\IDT\WDM\sttray64.exe
10:33:58.0422 0x190c SysTrayApp - detected UnsignedFile.Multi.Generic ( 1 )
10:33:58.0797 0x190c Detect skipped due to KSN trusted
10:33:58.0797 0x190c SysTrayApp - ok
10:33:58.0844 0x190c [ D6DBF46C5CAE0EEDA1DF1BD080D6FE3B, F93A5992B384B663F3A9D60BADA8E031A45B96A66C9AEA4B948563520DB69992 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
10:33:58.0875 0x190c NvBackend - ok
10:33:58.0891 0x190c [ 6E0BDFBEEED65B017F2E4C2C910B0520, 54D798C2E2804DCDB84E9650EA4A032C669B10C586B396D5505F16235D83882C ] C:\WINDOWS\system32\rundll32.exe
10:33:58.0891 0x190c ShadowPlay - ok
10:33:58.0907 0x190c [ BAD24090378CD1D9D70DD21CF21D1BFB, A5FB5F8DCF33BB252304D6DA7CB62906E5A437A561A066A647C8D199EE3C57B8 ] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe
10:33:58.0907 0x190c IAStorIcon - detected UnsignedFile.Multi.Generic ( 1 )
10:33:59.0079 0x190c Detect skipped due to KSN trusted
10:33:59.0079 0x190c IAStorIcon - ok
10:33:59.0125 0x190c [ 2433692BFC2631DC28B0705C1B760FF2, BBDE902F984E0968A3062F3EEA624E804B03095C67C280CDA4E85D02F46B7CDC ] C:\Program Files\Logitech\SetPointP\SetPoint.exe
10:33:59.0172 0x190c EvtMgr6 - ok
10:33:59.0172 0x190c [ DD79A6B15C2F28DE98DF4852AAF6B13B, 0F7E9023E0BA4B40E2DE9A9FA34E85FEAF72B93049AAB3E1D73AD046BB113E05 ] C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe
10:33:59.0188 0x190c NCPluginUpdater - ok
10:33:59.0204 0x190c [ 47EA5F76FAB723C61AB4A0D79BAD512C, A7A38EB0A7068B160E6949945EF639F999A06AE35746F6E79C7350745798E5C9 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
10:33:59.0219 0x190c Adobe ARM - ok
10:33:59.0235 0x190c [ E39E50740CC9DA4DE984EDA0745FD7CE, 622C7D40779271EA4275CE5B89F2DA17B41122F3E0AF3B93828184A037DE9B62 ] C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe
10:33:59.0250 0x190c Carbonite Backup - ok
10:33:59.0250 0x190c [ EBC0E8C0A4DDA2C32A7D5863462A321A, 2F410138DB66D0219254339F1F098E401CEDAA032596F1F67BC54F394256FC68 ] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
10:33:59.0250 0x190c amd_dc_opt - detected UnsignedFile.Multi.Generic ( 1 )
10:33:59.0782 0x190c Detect skipped due to KSN trusted
10:33:59.0782 0x190c amd_dc_opt - ok
10:33:59.0797 0x190c [ 6ECE746BB283927604DA192CA0D1403D, 327E1E908B6DB1C8414B31DB277EF5EABA340B2EE7FEE19349860B3C8F7778FE ] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIJIE.EXE
10:33:59.0813 0x190c EPLTarget\P0000000000000000 - ok
10:33:59.0922 0x190c [ 4DF6E378A00B6F89CB35078054057C36, 981BE3859AC48F43E739885BDA6756C5583BFD7353A57669067C8FB170DAE097 ] C:\Program Files\CCleaner\CCleaner64.exe
10:34:00.0000 0x190c CCleaner Monitoring - ok
10:34:00.0016 0x190c [ 2A65AE735E0C439762072787AD61FA07, 19E4A96924BBD51F45DD5D34D18B16D614779F508B3DF5895DF2218043BEF0E0 ] C:\Program Files (x86)\Windows Mail\wab.exe
10:34:00.0047 0x190c WAB Migrate - ok
10:34:00.0047 0x190c Waiting for KSN requests completion. In queue: 12
10:34:01.0079 0x190c AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.5.218.0 ), 0x61100 ( enabled : updated )
10:34:01.0079 0x190c Win FW state via NFP2: enabled
10:34:12.0282 0x190c ============================================================
10:34:12.0282 0x190c Scan finished
10:34:12.0282 0x190c ============================================================
10:34:12.0282 0x1904 Detected object count: 0
10:34:12.0282 0x1904 Actual detected object count: 0

#11
HelpNeeded911

Posted 13 October 2014 - 08:52 AM

Member

Topic Starter
Member
80 posts

MBRScan v1.1.1

OS             : Windows 8  (64 bit)
PROCESSOR      : Intel64 Family 6 Model 58 Stepping 9, GenuineIntel
BOOT           : Normal Boot
DATE           : 2014/10/13 (ISO 8601) at 10:36:10
________________________________________________________________________________

DISK           : Device\Harddisk0\DR0 __MTFDDAK256MAM-1K1 (040H)
BUS_TYPE       : (0x0B)  S-ATA
USE_PIO        : YES
MAX_TRANSFER   : 128 Kb
ALIGNMENT_MASK : word aligned
________________________________________________________________________________

DISK           : Device\Harddisk1\DR1 __WDC WD10EZEX-60ZF5A0 (80.00A80)
BUS_TYPE       : (0x0B)  S-ATA
USE_PIO        : YES
MAX_TRANSFER   : 128 Kb
ALIGNMENT_MASK : word aligned
________________________________________________________________________________

Device\Harddisk0\DR0    238.5 Go  [Fixed] ==> Unknown MBR Code...

MBR_MD5   : 3F7B367AB6BAFD3F725E7BD5FC287774
MBR_SHA1  : 56428138E3331F18CA93A7095986F0DE042CD05B

Device\Harddisk0\Partition1    2.00 To      0xEE EFI GPT[1]
________________________________________________________________________________

Device\Harddisk1\DR1    931.5 Go  [Fixed] ==> Unknown MBR Code...

MBR_MD5   : 854A2C302CE4EF9CC7BE8B5C97ABBDF9
MBR_SHA1  : 8DF79A42CF072C00D79CD08A66DE594931F894D0

Device\Harddisk1\Partition1    2.00 To      0xEE EFI GPT[1]
________________________________________________________________________________

############################### Additional scan ################################

DRIVER  : C:\WINDOWS\system32\ntoskrnl.exe => Invisible on the disk
ADDRESS : 0x01E82000
SIZE    : 7.54 Mo

DRIVER  : C:\WINDOWS\system32\hal.dll => Invisible on the disk
ADDRESS : 0x01E12000
SIZE    : 448.0 Ko

DRIVER  : C:\WINDOWS\system32\kd.dll => Invisible on the disk
ADDRESS : 0x00BCD000
SIZE    : 36.0 Ko

DRIVER  : C:\WINDOWS\system32\mcupdate_GenuineIntel.dll => Invisible on the disk
ADDRESS : 0x8CC1C000
SIZE    : 408.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\werkernel.sys => Invisible on the disk
ADDRESS : 0x8CC82000
SIZE    : 56.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\CLFS.SYS => Invisible on the disk
ADDRESS : 0x8CC90000
SIZE    : 388.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\tm.sys => Invisible on the disk
ADDRESS : 0x8CCF1000
SIZE    : 136.0 Ko

DRIVER  : C:\WINDOWS\system32\CI.dll => Invisible on the disk
ADDRESS : 0x8CD32000
SIZE    : 544.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\msrpc.sys => Invisible on the disk
ADDRESS : 0x8CE77000
SIZE    : 372.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\Wdf01000.sys => Invisible on the disk
ADDRESS : 0x8CED4000
SIZE    : 828.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\WDFLDR.SYS => Invisible on the disk
ADDRESS : 0x8CFA3000
SIZE    : 68.0 Ko

DRIVER  : C:\WINDOWS\System32\Drivers\acpiex.sys => Invisible on the disk
ADDRESS : 0x8CFB4000
SIZE    : 96.0 Ko

DRIVER  : C:\WINDOWS\System32\Drivers\WppRecorder.sys => Invisible on the disk
ADDRESS : 0x8CFCC000
SIZE    : 44.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\ACPI.sys => Invisible on the disk
ADDRESS : 0x8D0FC000
SIZE    : 552.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\WMILIB.SYS => Invisible on the disk
ADDRESS : 0x8D186000
SIZE    : 40.0 Ko

DRIVER  : C:\WINDOWS\System32\Drivers\cng.sys => Invisible on the disk
ADDRESS : 0x8D000000
SIZE    : 560.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\32569413.sys => Invisible on the disk
ADDRESS : 0x8D097000
SIZE    : 256.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\msisadrv.sys => Invisible on the disk
ADDRESS : 0x8D0D7000
SIZE    : 40.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\pci.sys => Invisible on the disk
ADDRESS : 0x8D190000
SIZE    : 288.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\vdrvroot.sys => Invisible on the disk
ADDRESS : 0x8D1D8000
SIZE    : 52.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\pdc.sys => Invisible on the disk
ADDRESS : 0x8CFD7000
SIZE    : 112.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\partmgr.sys => Invisible on the disk
ADDRESS : 0x8D1E5000
SIZE    : 96.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\spaceport.sys => Invisible on the disk
ADDRESS : 0x8CE00000
SIZE    : 420.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\volmgr.sys => Invisible on the disk
ADDRESS : 0x8D0E1000
SIZE    : 84.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\volmgrx.sys => Invisible on the disk
ADDRESS : 0x8D2A3000
SIZE    : 380.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\mountmgr.sys => Invisible on the disk
ADDRESS : 0x8D302000
SIZE    : 108.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\iaStorA.sys => Invisible on the disk
ADDRESS : 0x8D499000
SIZE    : 2.73 Mo

DRIVER  : C:\WINDOWS\System32\drivers\storport.sys => Invisible on the disk
ADDRESS : 0x8D753000
SIZE    : 380.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\fltmgr.sys => Invisible on the disk
ADDRESS : 0x8D400000
SIZE    : 368.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\fileinfo.sys => Invisible on the disk
ADDRESS : 0x8D45C000
SIZE    : 88.0 Ko

DRIVER  : C:\WINDOWS\System32\Drivers\Wof.sys => Invisible on the disk
ADDRESS : 0x8D7CC000
SIZE    : 172.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\WdFilter.sys => Invisible on the disk
ADDRESS : 0x8D31D000
SIZE    : 268.0 Ko

DRIVER  : C:\WINDOWS\System32\Drivers\Ntfs.sys => Invisible on the disk
ADDRESS : 0x8D826000
SIZE    : 1.96 Mo

DRIVER  : C:\WINDOWS\System32\Drivers\ksecdd.sys => Invisible on the disk
ADDRESS : 0x8DA1C000
SIZE    : 112.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\pcw.sys => Invisible on the disk
ADDRESS : 0x8DA38000
SIZE    : 64.0 Ko

DRIVER  : C:\WINDOWS\System32\Drivers\Fs_Rec.sys => Invisible on the disk
ADDRESS : 0x8DA48000
SIZE    : 44.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\ndis.sys => Invisible on the disk
ADDRESS : 0x8DA53000
SIZE    : 1.09 Mo

DRIVER  : C:\WINDOWS\system32\drivers\NETIO.SYS => Invisible on the disk
ADDRESS : 0x8DB6B000
SIZE    : 480.0 Ko

DRIVER  : C:\WINDOWS\System32\Drivers\ksecpkg.sys => Invisible on the disk
ADDRESS : 0x8D360000
SIZE    : 196.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\tcpip.sys => Invisible on the disk
ADDRESS : 0x8DCF9000
SIZE    : 2.45 Mo

DRIVER  : C:\WINDOWS\System32\drivers\fwpkclnt.sys => Invisible on the disk
ADDRESS : 0x8DF6B000
SIZE    : 432.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\wfplwfs.sys => Invisible on the disk
ADDRESS : 0x8DFD7000
SIZE    : 148.0 Ko

DRIVER  : C:\WINDOWS\System32\DRIVERS\fvevol.sys => Invisible on the disk
ADDRESS : 0x8DC00000
SIZE    : 596.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\volsnap.sys => Invisible on the disk
ADDRESS : 0x8DC95000
SIZE    : 316.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\rdyboost.sys => Invisible on the disk
ADDRESS : 0x8D391000
SIZE    : 280.0 Ko

DRIVER  : C:\WINDOWS\System32\Drivers\mup.sys => Invisible on the disk
ADDRESS : 0x8DBE3000
SIZE    : 92.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\intelpep.sys => Invisible on the disk
ADDRESS : 0x8DCE4000
SIZE    : 60.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\disk.sys => Invisible on the disk
ADDRESS : 0x8D472000
SIZE    : 112.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\CLASSPNP.SYS => Invisible on the disk
ADDRESS : 0x8D200000
SIZE    : 340.0 Ko

DRIVER  : C:\WINDOWS\System32\Drivers\crashdmp.sys => Invisible on the disk
ADDRESS : 0x8D80C000
SIZE    : 84.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\cdrom.sys => Invisible on the disk
ADDRESS : 0x8E502000
SIZE    : 184.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\mbamchameleon.sys => Invisible on the disk
ADDRESS : 0x8E530000
SIZE    : 104.0 Ko

DRIVER  : C:\WINDOWS\System32\Drivers\Null.SYS => Invisible on the disk
ADDRESS : 0x8E54A000
SIZE    : 36.0 Ko

DRIVER  : C:\WINDOWS\System32\Drivers\Beep.SYS => Invisible on the disk
ADDRESS : 0x8E553000
SIZE    : 32.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\BasicRender.sys => Invisible on the disk
ADDRESS : 0x8E55B000
SIZE    : 56.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\dxgkrnl.sys => Invisible on the disk
ADDRESS : 0x8E65E000
SIZE    : 1.50 Mo

DRIVER  : C:\WINDOWS\System32\drivers\watchdog.sys => Invisible on the disk
ADDRESS : 0x8E7DF000
SIZE    : 72.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\dxgmms1.sys => Invisible on the disk
ADDRESS : 0x8E569000
SIZE    : 388.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\BasicDisplay.sys => Invisible on the disk
ADDRESS : 0x8E600000
SIZE    : 72.0 Ko

DRIVER  : C:\WINDOWS\System32\Drivers\Npfs.SYS => Invisible on the disk
ADDRESS : 0x8E612000
SIZE    : 80.0 Ko

DRIVER  : C:\WINDOWS\System32\Drivers\Msfs.SYS => Invisible on the disk
ADDRESS : 0x8E626000
SIZE    : 48.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\tdx.sys => Invisible on the disk
ADDRESS : 0x8E632000
SIZE    : 128.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\TDI.SYS => Invisible on the disk
ADDRESS : 0x8E7F1000
SIZE    : 56.0 Ko

DRIVER  : C:\WINDOWS\System32\DRIVERS\netbt.sys => Invisible on the disk
ADDRESS : 0x8D255000
SIZE    : 304.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\afd.sys => Invisible on the disk
ADDRESS : 0x8E884000
SIZE    : 584.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\pacer.sys => Invisible on the disk
ADDRESS : 0x8E916000
SIZE    : 168.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\vwififlt.sys => Invisible on the disk
ADDRESS : 0x8E940000
SIZE    : 96.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\netbios.sys => Invisible on the disk
ADDRESS : 0x8E958000
SIZE    : 68.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\rdbss.sys => Invisible on the disk
ADDRESS : 0x8E969000
SIZE    : 448.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\wanarp.sys => Invisible on the disk
ADDRESS : 0x8E9D9000
SIZE    : 100.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\nsiproxy.sys => Invisible on the disk
ADDRESS : 0x8E9F2000
SIZE    : 56.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\npsvctrig.sys => Invisible on the disk
ADDRESS : 0x8E800000
SIZE    : 48.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\mssmbios.sys => Invisible on the disk
ADDRESS : 0x8E80C000
SIZE    : 48.0 Ko

DRIVER  : C:\WINDOWS\System32\Drivers\dfsc.sys => Invisible on the disk
ADDRESS : 0x8E818000
SIZE    : 152.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys => Invisible on the disk
ADDRESS : 0x8E84E000
SIZE    : 104.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\ahcache.sys => Invisible on the disk
ADDRESS : 0x8E868000
SIZE    : 92.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\CompositeBus.sys => Invisible on the disk
ADDRESS : 0x8E83E000
SIZE    : 60.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\kdnic.sys => Invisible on the disk
ADDRESS : 0x8E652000
SIZE    : 44.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\umbus.sys => Invisible on the disk
ADDRESS : 0x8E5CA000
SIZE    : 68.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys => Invisible on the disk
ADDRESS : 0x8EA9C000
SIZE    : 12.83 Mo

DRIVER  : C:\WINDOWS\System32\drivers\HDAudBus.sys => Invisible on the disk
ADDRESS : 0x8F770000
SIZE    : 100.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\USBXHCI.SYS => Invisible on the disk
ADDRESS : 0x8F789000
SIZE    : 340.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\ucx01000.sys => Invisible on the disk
ADDRESS : 0x8EA00000
SIZE    : 200.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys => Invisible on the disk
ADDRESS : 0x8EA32000
SIZE    : 112.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\usbehci.sys => Invisible on the disk
ADDRESS : 0x8EA4E000
SIZE    : 96.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\USBPORT.SYS => Invisible on the disk
ADDRESS : 0x8F832000
SIZE    : 444.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\netr28x.sys => Invisible on the disk
ADDRESS : 0x8FAB7000
SIZE    : 2.41 Mo

DRIVER  : C:\WINDOWS\System32\drivers\vwifibus.sys => Invisible on the disk
ADDRESS : 0x8FD21000
SIZE    : 52.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\L1C63x64.sys => Invisible on the disk
ADDRESS : 0x8FD2E000
SIZE    : 136.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\intelppm.sys => Invisible on the disk
ADDRESS : 0x8FD50000
SIZE    : 120.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\nvvad64v.sys => Invisible on the disk
ADDRESS : 0x8FD6E000
SIZE    : 52.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\portcls.sys => Invisible on the disk
ADDRESS : 0x8FD7B000
SIZE    : 284.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\drmk.sys => Invisible on the disk
ADDRESS : 0x8FDC2000
SIZE    : 112.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\ks.sys => Invisible on the disk
ADDRESS : 0x8FA00000
SIZE    : 312.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\ksthunk.sys => Invisible on the disk
ADDRESS : 0x8FA4E000
SIZE    : 24.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\NdisVirtualBus.sys => Invisible on the disk
ADDRESS : 0x8FA54000
SIZE    : 44.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\swenum.sys => Invisible on the disk
ADDRESS : 0x8FA5F000
SIZE    : 8.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\rdpbus.sys => Invisible on the disk
ADDRESS : 0x8FA61000
SIZE    : 44.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\usbhub.sys => Invisible on the disk
ADDRESS : 0x8F8A1000
SIZE    : 424.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\USBD.SYS => Invisible on the disk
ADDRESS : 0x8FA6C000
SIZE    : 48.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\UsbHub3.sys => Invisible on the disk
ADDRESS : 0x8F90B000
SIZE    : 480.0 Ko

DRIVER  : C:\WINDOWS\System32\Drivers\fastfat.SYS => Invisible on the disk
ADDRESS : 0x8FA78000
SIZE    : 228.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\nvhda64v.sys => Invisible on the disk
ADDRESS : 0x8F983000
SIZE    : 208.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\stwrt64.sys => Invisible on the disk
ADDRESS : 0x8FED4000
SIZE    : 548.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\usbccgp.sys => Invisible on the disk
ADDRESS : 0x8FF5D000
SIZE    : 156.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\hidusb.sys => Invisible on the disk
ADDRESS : 0x8FF84000
SIZE    : 56.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\HIDCLASS.SYS => Invisible on the disk
ADDRESS : 0x8FF92000
SIZE    : 124.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\HIDPARSE.SYS => Invisible on the disk
ADDRESS : 0x8FFB1000
SIZE    : 32.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\LEqdUsb.Sys => Invisible on the disk
ADDRESS : 0x8FFB9000
SIZE    : 92.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\kbdhid.sys => Invisible on the disk
ADDRESS : 0x8FFD0000
SIZE    : 56.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\kbdclass.sys => Invisible on the disk
ADDRESS : 0x8FFDE000
SIZE    : 64.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\mouhid.sys => Invisible on the disk
ADDRESS : 0x8FFEE000
SIZE    : 52.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\mouclass.sys => Invisible on the disk
ADDRESS : 0x8FE00000
SIZE    : 64.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\LHidEqd.Sys => Invisible on the disk
ADDRESS : 0x8FE10000
SIZE    : 32.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys => Invisible on the disk
ADDRESS : 0x8FE18000
SIZE    : 96.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys => Invisible on the disk
ADDRESS : 0x8FE30000
SIZE    : 80.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\USBSTOR.SYS => Invisible on the disk
ADDRESS : 0x8FE44000
SIZE    : 152.0 Ko

DRIVER  : C:\WINDOWS\System32\win32k.sys => Invisible on the disk
ADDRESS : 0x0000A000
SIZE    : 4.06 Mo

DRIVER  : C:\WINDOWS\system32\DRIVERS\udfs.sys => Invisible on the disk
ADDRESS : 0x8FE6A000
SIZE    : 328.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\monitor.sys => Invisible on the disk
ADDRESS : 0x8FEBC000
SIZE    : 56.0 Ko

DRIVER  : C:\WINDOWS\System32\TSDDD.dll => Invisible on the disk
ADDRESS : 0x007BF000
SIZE    : 36.0 Ko

DRIVER  : C:\WINDOWS\System32\Drivers\dump_diskdump.sys => Invisible on the disk
ADDRESS : 0x8FDDE000
SIZE    : 48.0 Ko

DRIVER  : C:\WINDOWS\System32\Drivers\dump_iaStorA.sys => Invisible on the disk
ADDRESS : 0x8E200000
SIZE    : 2.73 Mo

DRIVER  : C:\WINDOWS\System32\Drivers\dump_dumpfve.sys => Invisible on the disk
ADDRESS : 0x8FDEA000
SIZE    : 88.0 Ko

DRIVER  : C:\WINDOWS\System32\cdd.dll => Invisible on the disk
ADDRESS : 0x00997000
SIZE    : 236.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\luafv.sys => Invisible on the disk
ADDRESS : 0x8F9B7000
SIZE    : 144.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\mbam.sys => Invisible on the disk
ADDRESS : 0x8FECA000
SIZE    : 40.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\lltdio.sys => Invisible on the disk
ADDRESS : 0x8F9DB000
SIZE    : 80.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\nwifi.sys => Invisible on the disk
ADDRESS : 0x902E4000
SIZE    : 464.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\ndisuio.sys => Invisible on the disk
ADDRESS : 0x90358000
SIZE    : 80.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\rspndr.sys => Invisible on the disk
ADDRESS : 0x9036C000
SIZE    : 96.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\vwifimp.sys => Invisible on the disk
ADDRESS : 0x90384000
SIZE    : 60.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\HTTP.sys => Invisible on the disk
ADDRESS : 0x9044F000
SIZE    : 1000.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\bowser.sys => Invisible on the disk
ADDRESS : 0x90549000
SIZE    : 128.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\mpsdrv.sys => Invisible on the disk
ADDRESS : 0x90569000
SIZE    : 92.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\mrxsmb.sys => Invisible on the disk
ADDRESS : 0x90580000
SIZE    : 432.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys => Invisible on the disk
ADDRESS : 0x90400000
SIZE    : 228.0 Ko

DRIVER  : C:\WINDOWS\system32\Drivers\rikvm_99E320F5.sys => Invisible on the disk
ADDRESS : 0x906E0000
SIZE    : 6.29 Mo

DRIVER  : C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys => Invisible on the disk
ADDRESS : 0x90D29000
SIZE    : 300.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\Ndu.sys => Invisible on the disk
ADDRESS : 0x90D74000
SIZE    : 116.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\peauth.sys => Invisible on the disk
ADDRESS : 0x90600000
SIZE    : 676.0 Ko

DRIVER  : C:\WINDOWS\System32\Drivers\secdrv.SYS => Invisible on the disk
ADDRESS : 0x906A9000
SIZE    : 44.0 Ko

DRIVER  : C:\WINDOWS\System32\DRIVERS\srvnet.sys => Invisible on the disk
ADDRESS : 0x90D91000
SIZE    : 268.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\tcpipreg.sys => Invisible on the disk
ADDRESS : 0x90DD4000
SIZE    : 72.0 Ko

DRIVER  : C:\WINDOWS\System32\DRIVERS\srv2.sys => Invisible on the disk
ADDRESS : 0x90200000
SIZE    : 688.0 Ko

DRIVER  : C:\WINDOWS\System32\DRIVERS\srv.sys => Invisible on the disk
ADDRESS : 0x90E18000
SIZE    : 568.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\tunnel.sys => Invisible on the disk
ADDRESS : 0x90EA6000
SIZE    : 180.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\condrv.sys => Invisible on the disk
ADDRESS : 0x90ED3000
SIZE    : 64.0 Ko

DRIVER  : C:\WINDOWS\system32\Drivers\WdNisDrv.sys => Invisible on the disk
ADDRESS : 0x90EED000
SIZE    : 132.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys => Invisible on the disk
ADDRESS : 0x90F0E000
SIZE    : 132.0 Ko

DRIVER  : C:\WINDOWS\system32\drivers\mwac.sys => Invisible on the disk
ADDRESS : 0x90F2F000
SIZE    : 76.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\WSDScan.sys => Invisible on the disk
ADDRESS : 0x90F42000
SIZE    : 44.0 Ko

DRIVER  : C:\WINDOWS\System32\drivers\WSDPrint.sys => Invisible on the disk
ADDRESS : 0x90F4D000
SIZE    : 44.0 Ko

DRIVER  : C:\WINDOWS\system32\DRIVERS\cdfs.sys => Invisible on the disk
ADDRESS : 0x90F58000
SIZE    : 108.0 Ko

BCD EmsSettings {0CE4991B-E6B3-4B16-B23C-5E0D9250E5D9} => BcdLibraryBoolean_EmsEnabled (16000020)

SystemStartOptions :  NOEXECUTE=OPTIN  NOVGA

________________________________________________________________________________

_______MBR   \Device\Harddisk0\DR0  

0x00000000   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000010   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000020   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000030   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000040   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000050   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000060   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000070   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000080   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000090   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000000A0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000000B0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000000C0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000000D0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000000E0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000000F0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000100   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000110   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000120   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000130   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000140   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000150   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000160   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000170   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000180   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000190   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001A0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001B0   00 00 00 00 00 00 00 00 0A E6 01 22 00 00 00 00   .........æ."....
0x000001C0   02 00 EE FF FF FF 01 00 00 00 FF FF FF FF 00 00   ..î.............
0x000001D0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001E0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001F0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA   ..............Uª

_______MBR   \Device\Harddisk1\DR1  

0x00000000   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000010   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000020   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000030   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000040   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000050   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000060   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000070   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000080   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000090   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000000A0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000000B0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000000C0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000000D0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000000E0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000000F0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000100   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000110   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000120   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000130   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000140   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000150   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000160   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000170   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000180   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x00000190   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001A0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001B0   00 00 00 00 00 00 00 00 D5 44 7F B9 00 00 00 00   ........ÕD.¹....
0x000001C0   02 00 EE FF FF FF 01 00 00 00 FF FF FF FF 00 00   ..î.............
0x000001D0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001E0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00   ................
0x000001F0   00 00 00 00 00 00 00 00 00 00 00 00 00 00 55 AA   ..............Uª

#12
Naathim

Posted 13 October 2014 - 12:50 PM

GeekU Minion

Expert
4,568 posts

Also nothing here. Tell me what issues are you experiencing? Any special symptoms?

#13
HelpNeeded911

Posted 14 October 2014 - 12:48 PM

Member

Topic Starter
Member
80 posts

Oh glad to know! :yeah:

No special symptoms. Just wanted to make sure that my email wasn't hacked via the computer. I appreciate all the help!!

#14
Naathim

Posted 15 October 2014 - 12:03 AM

GeekU Minion

Expert
4,568 posts

Let's do some general scans then before I will send you on your merry way

51a46ae42d560-malwarebytes_anti_malware. Scan with Malwarebytes' Anti-Malware

Please download Malwarebytes Anti-Malware and save it to your desktop.

Install the progam and select update.
Once updated, click the Settings tab, in the left panel choose Detctions & protection and tick Scan for rootkits.
Click the Scan tab, choose Threat Scan is checked and click Scan Now.
If threats are detected, click the Apply Actions button. You will now be prompted to reboot. Click Yes.
Upon completion of the scan (or after the reboot), click the History tab.
Click Application Logs and double-click the Scan Log.
At the bottom click Export and choose Text file.

Save the file to your desktop and include its content in your next reply.

Scan with ESET Online Scanner

This step can only be done using Internet Explorer, Google Chrome or Mozilla Firefox.
Temporary disable your AntiVirus and AntiSpyware protection - instructions here.
Please visit ESET Online Scanner website.
Click there Run ESET Online Scanner.

If using Internet Explorer:

Accept the Terms of Use and click Start.
Allow the running of add-on.

If using Mozilla Firefox or Google Chrome:

Download esetsmartinstaller_enu.exe that you'll be given link to.
Double click esetsmartinstaller_enu.exe.
Allow the Terms of Use and click Start.

To perform the scan:

Make sure that Enable detecion of potentially unwanted applications is checked.
In the Advanced Settings dropdown menu:
- Make sure that Remove found threats is unchecked.
- Scan archives is checked.
- Scan for potentially unsafe applications and Enable Anti-Stealth technology are checked.
- Use custom proxy settings is unchecked.
Click Start
The program will begin to download it's virus database. The speed may vary depending on your Internet connection.
When completed, the program will begin to scan. This may take several hours. Please, be patient.
Do not do anything on your machine as it may interrupt the scan.
When the scan is done, click Finish.
A logfile will be created at C:\Program Files (x86)\ESET\ESET Online Scanner. Open it using Notepad.

Please include this logfile in your next reply.
Don't forget to re-enable previously switched-off protection software!

Scan with Security Check

Please download Security Check by Screen317 and save it to your desktop.

Right-click on icon and select Run as Administrator to start the tool.
Follow onscreen instructions inside the black box. This scan won't take long.
Soon a notepad document called checkup.txt will open automaticaly.

Please include the content of that document.

#15
HelpNeeded911

Posted 15 October 2014 - 06:47 AM

Member

Topic Starter
Member
80 posts

Sure thing!

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 10/15/2014
Scan Time: 5:44:14 AM
Logfile: MBAM.txt
Administrator: Yes

Version: 2.00.3.1025
Malware Database: v2014.10.15.02
Rootkit Database: v2014.10.15.01
License: Premium
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Enabled

OS: Windows 8.1
CPU: x64
File System: NTFS
User: testaccount

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 406105
Time Elapsed: 5 min, 5 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)

(end)

ESETSmartInstaller@High as CAB hook log:
OnlineScanner64.ocx - registred OK
OnlineScanner.ocx - registred OK

C:\AdwCleaner\Quarantine\C\Program Files\Freecorder extension\AddonsFramework.Typelib64.dll.vir   a variant of Win64/Toolbar.Besttoolbars.B potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\Freecorder extension\BackgroundHost64.exe.vir   a variant of Win64/Toolbar.Besttoolbars.A potentially unwanted application
C:\AdwCleaner\Quarantine\C\Program Files\Freecorder extension\ScriptHost64.dll.vir   a variant of Win32/Toolbar.Besttoolbars.J potentially unwanted application

Results of screen317's Security Check version 0.99.88
x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Windows Defender
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
Adobe Flash Player 15.0.0.152
Adobe Reader XI
Mozilla Firefox (32.0.3)
Google Chrome 37.0.2062.120
Google Chrome 37.0.2062.124
````````Process Check: objlist.exe by Laurent````````
Windows Defender MSMpEng.exe
Malwarebytes Anti-Malware mbamservice.exe
Malwarebytes Anti-Malware mbam.exe
Malwarebytes Anti-Malware mbamscheduler.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````