Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Multiple Google chrome *32 draining CPU


  • Please log in to reply

#16
scottzajaczkowski

scottzajaczkowski

    Member

  • Topic Starter
  • Member
  • PipPip
  • 23 posts

I deleted all folders and all files related to frst64; downloaded new version to flash drive on other computer because my computer will not let me download any file; plugged in flash drive put frst64, aswmbr and aswcleaner all on desktop.  Run frst as administrator, it scans and creates two files and puts them on desktop; they automatically open in notepad when I get a box that tells me it created a frst file, I click ok and then next box opens telling me additional file is saved, I click ok it then opens in notepad.  I have two files open along with application. These are the files I posted earlier;  then I click "fix" and it tells me that files must be saved to the same folder that the application was in.  it does not fix and does not create a file  for me to send you.  I just don't get what else to do? once I click that new box with the instruction the application just closes.


  • 0

Advertisements


#17
scottzajaczkowski

scottzajaczkowski

    Member

  • Topic Starter
  • Member
  • PipPip
  • 23 posts

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 06-10-2014 01
Ran by Scott at 2014-10-06 22:51:43 Run:1
Running from C:\Users\Scott\Desktop
Loaded Profile: Scott (Available profiles: Scott)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKU\S-1-5-21-860519808-2140715989-319308476-1000\...A8F59079A8D5}\localserver32: rundll32.exe javascript:"\..\mshtml,RunHTMLApplication ";eval("epdvnfou/xsjuf)(=tdsjqu!mbohvbhf>ktds (the data entry has 239 more characters). <==== Poweliks!
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://astromenda.co...cr=526708622=
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://astromenda.co...cr=526708622=
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://astromenda.co...cr=526708622=
2014-10-03 00:24 - 2014-10-03 20:02 - 00000000 ____D () C:\Program Files (x86)\AdvanceElite
2014-10-03 00:24 - 2014-10-03 19:57 - 00000000 ____D () C:\Program Files (x86)\Optimizer Pro
2014-10-02 15:32 - 2014-10-02 15:32 - 00287744 _____ () C:\Users\Scott\AppData\Local\Gapcgwxlhdd.dll
2014-10-01 21:48 - 2014-10-02 14:11 - 00000000 ____D () C:\windows\System32\Tasks\Safer-Networking
2014-10-01 21:47 - 2014-10-02 22:46 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-10-01 21:46 - 2014-10-02 23:26 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
CustomCLSID: HKU\S-1-5-21-860519808-2140715989-319308476-1000_Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\localserver32 -> rundll32.exe javascript:"\..\mshtml,RunHTMLApplication ";eval("epdvnfou/xsjuf)(=tdsjqu!mbohvbhf>ktds (the data entry has 247 more characters). <==== Poweliks?
Task: {EC495AED-5E15-48D6-B08D-8271E7459AC9} - \Optimizer Pro Schedule No Task File <==== ATTENTION
CloseProcesses:
EmptyTemp:
*****************

"HKU\S-1-5-21-860519808-2140715989-319308476-1000\Software\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}\localserver32" => Key Deleted Successfully.
"HKU\S-1-5-21-860519808-2140715989-319308476-1000\Software\Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}" => Key deleted successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key deleted successfully.
"HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key not found.
"HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key deleted successfully.
"HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => Key not found.
C:\Program Files (x86)\AdvanceElite => Moved successfully.
C:\Program Files (x86)\Optimizer Pro => Moved successfully.
C:\Users\Scott\AppData\Local\Gapcgwxlhdd.dll => Moved successfully.
C:\windows\System32\Tasks\Safer-Networking => Moved successfully.
C:\ProgramData\Spybot - Search & Destroy => Moved successfully.
C:\Program Files (x86)\Spybot - Search & Destroy 2 => Moved successfully.
"HKU\S-1-5-21-860519808-2140715989-319308476-1000_Classes\CLSID\{AB8902B4-09CA-4bb6-B78D-A8F59079A8D5}" => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{EC495AED-5E15-48D6-B08D-8271E7459AC9}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EC495AED-5E15-48D6-B08D-8271E7459AC9}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Optimizer Pro Schedule" => Key not found.
Processes closed successfully.
EmptyTemp: => Removed 9.9 GB temporary data.

The system needed a reboot.

==== End of Fixlog ====


  • 0

#18
SleepyDude

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,401 posts

Hi,

 

I deleted all folders and all files related to frst64; downloaded new version to flash drive on other computer because my computer will not let me download any file; plugged in flash drive put frst64, aswmbr and aswcleaner all on desktop.  Run frst as administrator, it scans and creates two files and puts them on desktop; they automatically open in notepad when I get a box that tells me it created a frst file, I click ok and then next box opens telling me additional file is saved, I click ok it then opens in notepad.  I have two files open along with application. These are the files I posted earlier;  then I click "fix" and it tells me that files must be saved to the same folder that the application was in.  it does not fix and does not create a file  for me to send you.  I just don't get what else to do? once I click that new box with the instruction the application just closes.

 

Only to clarify FRST doesn't scan unless you click the Scan button, to run the fix you only need to start the program and click the Fix button.

 

Edit: You got the fix applied successfully please run the other tasks and post the logs as requested.


  • 0

#19
scottzajaczkowski

scottzajaczkowski

    Member

  • Topic Starter
  • Member
  • PipPip
  • 23 posts

aswMBR version 1.0.1.2041 Copyright© 2014 AVAST Software
Run date: 2014-10-07 09:27:22
-----------------------------
09:27:22.208    OS Version: Windows x64 6.1.7601 Service Pack 1
09:27:22.223    Number of processors: 4 586 0x3A09
09:27:22.223    ComputerName: SCOTT-PC  UserName: Scott
09:27:22.426    Initialize success
09:27:22.457    VM: initialized successfully
09:27:22.457    VM: Intel CPU supported
09:27:25.043    VM: supported disk I/O iaStor.sys
09:30:02.521    AVAST engine defs: 14100700
09:31:25.857    The log file has been saved successfully to "C:\Users\Scott\Desktop\aswMBR.txt"
 


  • 0

#20
scottzajaczkowski

scottzajaczkowski

    Member

  • Topic Starter
  • Member
  • PipPip
  • 23 posts

# AdwCleaner v3.311 - Report created 07/10/2014 at 09:44:37
# Updated 30/09/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Scott - SCOTT-PC
# Running from : C:\Users\Scott\Desktop\adwcleaner_3.311.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

File Deleted : C:\Users\Scott\AppData\Roaming\Mozilla\Firefox\Profiles\bijhmdj4.default\user.js

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\optimizerpro_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\optimizerpro_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\optprostart_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\UpdateTask_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2E00D31D-D171-423D-836D-1A4D7EA7F1A9}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2E00D31D-D171-423D-836D-1A4D7EA7F1A9}
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKLM\SOFTWARE\InstallIQ

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17280

-\\ Mozilla Firefox v

[ File : C:\Users\Scott\AppData\Roaming\Mozilla\Firefox\Profiles\bijhmdj4.default\prefs.js ]

*************************

AdwCleaner[R0].txt - [797 octets] - [02/10/2014 23:22:04]
AdwCleaner[R1].txt - [2112 octets] - [05/10/2014 14:37:25]
AdwCleaner[R2].txt - [2183 octets] - [07/10/2014 09:42:43]
AdwCleaner[S0].txt - [857 octets] - [02/10/2014 23:25:39]
AdwCleaner[S1].txt - [2271 octets] - [05/10/2014 14:43:57]
AdwCleaner[S2].txt - [1970 octets] - [07/10/2014 09:44:37]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [2030 octets] ##########


  • 0

#21
scottzajaczkowski

scottzajaczkowski

    Member

  • Topic Starter
  • Member
  • PipPip
  • 23 posts
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-10-2014 01
Ran by Scott (administrator) on SCOTT-PC on 07-10-2014 09:52:11
Running from C:\Users\Scott\Desktop
Loaded Profile: Scott (Available profiles: Scott)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Windows\SysWOW64\irstrtsv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Easy Software Manager\SWMAgent.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\MovieColorEnhancer.exe
(Samsung Electronics) C:\Program Files (x86)\Samsung\Easy Settings\EasySpeedUpManager.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\Easy Support Center\SamoyedAgent.exe
(SEC) C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel® Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12460136 2012-03-29] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2816336 2012-05-08] (ELAN Microelectronics Corp.)
HKLM\...\Run: [BLEServicesCtrl] => C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [177936 2012-02-17] (Intel Corporation)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: localhost:8080
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung.msn.com
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76

FireFox:
========
FF ProfilePath: C:\Users\Scott\AppData\Roaming\Mozilla\Firefox\Profiles\bijhmdj4.default
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} [Not Found]

Chrome:
=======

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-02-07] ()
R2 irstrtsv; C:\windows\SysWOW64\irstrtsv.exe [193536 2012-02-06] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [161560 2012-02-07] (Intel Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273168 2011-12-07] ()
R2 SamsungDeviceConfigurationWinService; C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe [31624 2012-02-13] () [File not signed]
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [594704 2011-12-07] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 irstrtdv; C:\Windows\System32\DRIVERS\irstrtdv.sys [26504 2012-02-06] (Intel Corporation)
R3 rusb3hub; C:\Windows\System32\DRIVERS\rusb3hub.sys [100352 2011-10-08] (Renesas Electronics Corporation)
R3 rusb3xhc; C:\Windows\System32\DRIVERS\rusb3xhc.sys [216064 2011-10-08] (Renesas Electronics Corporation)
S3 clwvd; system32\DRIVERS\clwvd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-07 09:52 - 2014-10-07 09:52 - 00007989 _____ () C:\Users\Scott\Desktop\FRST.txt
2014-10-07 09:31 - 2014-10-07 09:31 - 00000616 _____ () C:\Users\Scott\Desktop\aswMBR.txt
2014-10-06 22:49 - 2014-10-06 20:03 - 02109952 _____ (Farbar) C:\Users\Scott\Desktop\FRST64.exe
2014-10-06 20:15 - 2014-10-07 09:52 - 00000000 ____D () C:\Users\Scott\Desktop\ebfe0bb6909f099
2014-10-06 20:15 - 2014-10-06 20:04 - 01375089 _____ () C:\Users\Scott\Desktop\adwcleaner_3.311.exe
2014-10-06 20:15 - 2014-10-06 20:03 - 05185536 _____ (AVAST Software) C:\Users\Scott\Desktop\aswmbr.exe
2014-10-04 20:46 - 2014-10-07 09:52 - 00000000 ____D () C:\FRST
2014-10-04 20:44 - 2014-10-04 20:44 - 00000000 ____H () C:\windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-10-04 17:34 - 2014-10-06 21:15 - 00000000 ____D () C:\Users\Scott\AppData\Local\CrashDumps
2014-10-04 10:29 - 2013-05-10 01:56 - 14631424 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2014-10-04 10:29 - 2013-05-10 01:56 - 12625920 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2014-10-04 10:29 - 2013-05-10 00:56 - 12625408 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmploc.DLL
2014-10-04 10:29 - 2013-05-10 00:56 - 11410432 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmp.dll
2014-10-04 10:24 - 2014-10-05 10:16 - 00760838 _____ () C:\windows\SysWOW64\PerfStringBackup.INI
2014-10-04 10:19 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\windows\system32\IEUDINIT.EXE
2014-10-04 10:17 - 2014-10-04 10:17 - 23591424 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 17455104 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 13588480 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 11769856 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 05833728 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 04232704 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 02793984 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-10-04 10:17 - 2014-10-04 10:17 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-10-04 10:17 - 2014-10-04 10:17 - 02310656 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 02185728 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 02104832 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-10-04 10:17 - 2014-10-04 10:17 - 02014208 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2014-10-04 10:17 - 2014-10-04 10:17 - 01812992 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 01447424 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 01249280 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 01190400 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 01068032 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00942592 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00775168 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00774144 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00758272 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00727040 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00707072 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00678400 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00645120 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsIntl.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00616104 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dat
2014-10-04 10:17 - 2014-10-04 10:17 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2014-10-04 10:17 - 2014-10-04 10:17 - 00610304 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00603136 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00597504 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00596480 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00547328 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00454656 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00446464 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00440320 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00413696 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2014-10-04 10:17 - 2014-10-04 10:17 - 00374968 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00365056 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2014-10-04 10:17 - 2014-10-04 10:17 - 00327872 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00289280 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00243200 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00235520 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00235008 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00233472 _____ (Microsoft Corporation) C:\windows\SysWOW64\url.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00208384 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00194048 _____ (Microsoft Corporation) C:\windows\SysWOW64\elshyph.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00182272 _____ (Microsoft Corporation) C:\windows\SysWOW64\msls31.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00167424 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00151552 _____ (Microsoft Corporation) C:\windows\SysWOW64\iexpress.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00147968 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00139264 _____ (Microsoft Corporation) C:\windows\SysWOW64\wextract.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00131072 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00127488 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00116736 _____ (Microsoft Corporation) C:\windows\SysWOW64\iepeers.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\IEAdvpack.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00105984 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00101376 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00090112 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00086016 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00085504 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00083456 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2014-10-04 10:17 - 2014-10-04 10:17 - 00074240 _____ (Microsoft Corporation) C:\windows\SysWOW64\SetIEInstalledDate.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00072704 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\RegisterIEPKEYs.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00069120 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardie.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2014-10-04 10:17 - 2014-10-04 10:17 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00056832 _____ (Microsoft Corporation) C:\windows\SysWOW64\pngfilt.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00048640 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmler.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00048128 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedsbs.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\imgutil.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\licmgr10.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00013312 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshta.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00012800 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedssync.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 03928064 _____ (Microsoft Corporation) C:\windows\system32\d2d1.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 03419136 _____ (Microsoft Corporation) C:\windows\SysWOW64\d2d1.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 02776576 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 02565120 _____ (Microsoft Corporation) C:\windows\system32\d3d10warp.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 02284544 _____ (Microsoft Corporation) C:\windows\SysWOW64\msmpeg2vdec.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 01988096 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10warp.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 01682432 _____ (Microsoft Corporation) C:\windows\system32\XpsPrint.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 01643520 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 01424384 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 01247744 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 01238528 _____ (Microsoft Corporation) C:\windows\system32\d3d10.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 01230336 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecs.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 01175552 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 01158144 _____ (Microsoft Corporation) C:\windows\SysWOW64\XpsPrint.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 01080832 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00648192 _____ (Microsoft Corporation) C:\windows\system32\d3d10level9.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00604160 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10level9.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00522752 _____ (Microsoft Corporation) C:\windows\system32\XpsGdiConverter.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00465920 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00417792 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMPhoto.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00364544 _____ (Microsoft Corporation) C:\windows\SysWOW64\XpsGdiConverter.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00363008 _____ (Microsoft Corporation) C:\windows\system32\dxgi.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00333312 _____ (Microsoft Corporation) C:\windows\system32\d3d10_1core.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\d3d10core.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00293376 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxgi.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00249856 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10_1core.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00245248 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecsExt.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\UIAnimation.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00220160 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10core.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00207872 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecsExt.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00194560 _____ (Microsoft Corporation) C:\windows\system32\d3d10_1.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00187392 _____ (Microsoft Corporation) C:\windows\SysWOW64\UIAnimation.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00161792 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10_1.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00010752 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00010752 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00009728 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00009728 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00005632 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00005632 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00005632 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00005632 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00002560 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00002560 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-10-04 10:13 - 2014-10-04 10:20 - 00012469 _____ () C:\windows\IE11_main.log
2014-10-04 09:48 - 2012-07-25 23:08 - 00744448 _____ (Microsoft Corporation) C:\windows\system32\WUDFx.dll
2014-10-04 09:48 - 2012-07-25 23:08 - 00229888 _____ (Microsoft Corporation) C:\windows\system32\WUDFHost.exe
2014-10-04 09:48 - 2012-07-25 23:08 - 00194048 _____ (Microsoft Corporation) C:\windows\system32\WUDFPlatform.dll
2014-10-04 09:48 - 2012-07-25 23:08 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\WUDFSvc.dll
2014-10-04 09:48 - 2012-07-25 23:08 - 00045056 _____ (Microsoft Corporation) C:\windows\system32\WUDFCoinstaller.dll
2014-10-04 09:48 - 2012-07-25 22:26 - 00198656 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WUDFRd.sys
2014-10-04 09:48 - 2012-07-25 22:26 - 00087040 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WUDFPf.sys
2014-10-04 09:48 - 2012-06-02 10:57 - 00000003 _____ () C:\windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-10-04 09:44 - 2012-03-01 02:46 - 00023408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fs_rec.sys
2014-10-04 09:44 - 2012-03-01 02:38 - 00220672 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2014-10-04 09:44 - 2012-03-01 02:28 - 00005120 _____ (Microsoft Corporation) C:\windows\system32\wmi.dll
2014-10-04 09:44 - 2012-03-01 01:37 - 00172544 _____ (Microsoft Corporation) C:\windows\SysWOW64\wintrust.dll
2014-10-04 09:44 - 2012-03-01 01:29 - 00005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmi.dll
2014-10-04 09:40 - 2014-10-04 09:40 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-10-04 09:38 - 2014-06-30 18:24 - 00008856 _____ (Microsoft Corporation) C:\windows\system32\icardres.dll
2014-10-04 09:38 - 2014-06-30 18:14 - 00008856 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardres.dll
2014-10-04 09:38 - 2014-06-06 02:16 - 00035480 _____ (Microsoft Corporation) C:\windows\SysWOW64\TsWpfWrp.exe
2014-10-04 09:38 - 2014-06-06 02:12 - 00035480 _____ (Microsoft Corporation) C:\windows\system32\TsWpfWrp.exe
2014-10-04 09:38 - 2014-03-09 17:48 - 01389208 _____ (Microsoft Corporation) C:\windows\system32\icardagt.exe
2014-10-04 09:38 - 2014-03-09 17:48 - 00171160 _____ (Microsoft Corporation) C:\windows\system32\infocardapi.dll
2014-10-04 09:38 - 2014-03-09 17:47 - 00619672 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardagt.exe
2014-10-04 09:38 - 2014-03-09 17:47 - 00099480 _____ (Microsoft Corporation) C:\windows\SysWOW64\infocardapi.dll
2014-10-03 17:43 - 2014-10-03 17:43 - 00000000 ____D () C:\Users\Scott\AppData\Local\Samsung
2014-10-03 17:10 - 2014-10-03 17:10 - 00099068 _____ () C:\Users\Scott\Downloads\OTL.Txt
2014-10-03 17:10 - 2014-10-03 17:10 - 00085638 _____ () C:\Users\Scott\Downloads\Extras.Txt
2014-10-03 16:51 - 2014-10-03 16:51 - 00602112 _____ (OldTimer Tools) C:\Users\Scott\Downloads\OTL.exe
2014-10-03 10:46 - 2013-10-03 22:16 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2014-10-03 10:46 - 2013-10-03 21:36 - 00230400 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2014-10-03 10:46 - 2013-08-04 22:25 - 00155584 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ataport.sys
2014-10-03 10:46 - 2013-07-12 06:41 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbcir.sys
2014-10-03 10:46 - 2013-07-03 00:05 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidclass.sys
2014-10-03 10:46 - 2013-07-03 00:05 - 00032896 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidparse.sys
2014-10-03 10:46 - 2011-04-09 02:58 - 00142336 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2014-10-03 10:46 - 2011-04-09 01:56 - 00123904 _____ (Microsoft Corporation) C:\windows\SysWOW64\poqexec.exe
2014-10-03 10:45 - 2013-09-07 22:27 - 00327168 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2014-10-03 10:45 - 2013-09-07 22:03 - 00231424 _____ (Microsoft Corporation) C:\windows\SysWOW64\mswsock.dll
2014-10-03 10:45 - 2013-08-28 22:17 - 05549504 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-10-03 10:45 - 2013-08-28 22:16 - 01732032 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2014-10-03 10:45 - 2013-08-28 22:16 - 00859648 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2014-10-03 10:45 - 2013-08-28 22:13 - 00878080 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2014-10-03 10:45 - 2013-08-28 21:51 - 03969472 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2014-10-03 10:45 - 2013-08-28 21:51 - 03914176 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2014-10-03 10:45 - 2013-08-28 21:50 - 01292192 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2014-10-03 10:45 - 2013-08-28 21:50 - 00619520 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdh.dll
2014-10-03 10:45 - 2013-08-28 21:48 - 00640512 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2014-10-03 10:44 - 2012-11-22 23:13 - 00068608 _____ (Microsoft Corporation) C:\windows\system32\taskhost.exe
2014-10-03 10:33 - 2014-10-03 10:33 - 00000045 _____ () C:\Users\Scott\AppData\Roaming\WB.CFG
2014-10-03 00:22 - 2014-10-03 00:22 - 00000472 _____ () C:\Users\Scott\Desktop\defogger_disable.log
2014-10-03 00:22 - 2014-10-03 00:22 - 00000000 _____ () C:\Users\Scott\defogger_reenable
2014-10-03 00:21 - 2014-10-03 00:21 - 00050477 _____ () C:\Users\Scott\Downloads\Defogger.exe
2014-10-02 23:27 - 2014-10-02 23:27 - 00000000 ____D () C:\windows\ERUNT
2014-10-02 23:21 - 2014-10-07 09:44 - 00000000 ____D () C:\AdwCleaner
2014-10-02 23:21 - 2014-10-02 23:21 - 01375089 _____ () C:\Users\Scott\Downloads\AdwCleaner.exe
2014-10-02 22:47 - 2014-10-02 22:47 - 00000000 ____D () C:\Users\Scott\AppData\Local\Amazon
2014-10-02 22:46 - 2014-10-02 22:46 - 00000085 _____ () C:\windows\wininit.ini
2014-10-02 17:52 - 2014-10-02 17:52 - 00000000 ____D () C:\ProgramData\Hewlett-Packard
2014-10-02 08:48 - 2014-01-27 22:32 - 00228864 _____ (Microsoft Corporation) C:\windows\system32\wwansvc.dll
2014-10-02 08:48 - 2013-10-29 22:32 - 00335360 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2014-10-02 08:48 - 2013-10-29 22:19 - 00301568 _____ (Microsoft Corporation) C:\windows\SysWOW64\msieftp.dll
2014-10-02 08:48 - 2013-07-04 08:50 - 00633856 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll
2014-10-02 08:48 - 2013-07-04 07:50 - 00530432 _____ (Microsoft Corporation) C:\windows\SysWOW64\comctl32.dll
2014-10-02 08:48 - 2013-03-19 01:53 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\wwanprotdim.dll
2014-10-02 08:48 - 2012-10-09 14:17 - 00226816 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore6.dll
2014-10-02 08:48 - 2012-10-09 14:17 - 00055296 _____ (Microsoft Corporation) C:\windows\system32\dhcpcsvc6.dll
2014-10-02 08:48 - 2012-10-09 13:40 - 00193536 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcore6.dll
2014-10-02 08:48 - 2012-10-09 13:40 - 00044032 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcsvc6.dll
2014-10-02 08:47 - 2013-02-15 02:08 - 00044032 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll
2014-10-02 08:47 - 2013-02-15 02:06 - 03717632 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2014-10-02 08:47 - 2013-02-15 02:02 - 00158720 _____ (Microsoft Corporation) C:\windows\system32\aaclient.dll
2014-10-02 08:47 - 2013-02-15 00:37 - 03217408 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2014-10-02 08:47 - 2013-02-15 00:34 - 00131584 _____ (Microsoft Corporation) C:\windows\SysWOW64\aaclient.dll
2014-10-02 08:47 - 2013-02-14 23:25 - 00036864 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsgqec.dll
2014-10-02 08:46 - 2014-08-01 07:53 - 01031168 _____ (Microsoft Corporation) C:\windows\system32\TSWorkspace.dll
2014-10-02 08:46 - 2014-08-01 07:35 - 00793600 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSWorkspace.dll
2014-10-02 08:46 - 2014-04-24 22:34 - 00801280 _____ (Microsoft Corporation) C:\windows\system32\usp10.dll
2014-10-02 08:46 - 2014-04-24 22:06 - 00626688 _____ (Microsoft Corporation) C:\windows\SysWOW64\usp10.dll
2014-10-02 08:45 - 2014-04-04 22:47 - 01903552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2014-10-02 08:45 - 2014-04-04 22:47 - 00288192 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2014-10-02 08:45 - 2014-01-28 22:32 - 00484864 _____ (Microsoft Corporation) C:\windows\system32\wer.dll
2014-10-02 08:45 - 2014-01-28 22:06 - 00381440 _____ (Microsoft Corporation) C:\windows\SysWOW64\wer.dll
2014-10-02 08:45 - 2013-12-31 19:05 - 00420008 _____ () C:\windows\SysWOW64\locale.nls
2014-10-02 08:45 - 2013-12-31 19:04 - 00420008 _____ () C:\windows\system32\locale.nls
2014-10-02 08:45 - 2013-11-26 07:40 - 00376768 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2014-10-02 08:45 - 2013-10-18 22:18 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\imagehlp.dll
2014-10-02 08:45 - 2013-10-18 21:36 - 00159232 _____ (Microsoft Corporation) C:\windows\SysWOW64\imagehlp.dll
2014-10-02 08:45 - 2013-10-05 16:25 - 01474048 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2014-10-02 08:45 - 2013-10-05 15:57 - 01168384 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll
2014-10-02 08:45 - 2013-07-09 01:46 - 00184320 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2014-10-02 08:45 - 2013-07-09 01:46 - 00139776 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll
2014-10-02 08:45 - 2013-07-09 00:46 - 00140288 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsvc.dll
2014-10-02 08:45 - 2013-07-09 00:46 - 00103936 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptnet.dll
2014-10-02 08:44 - 2014-06-17 22:18 - 00692736 _____ (Microsoft Corporation) C:\windows\system32\osk.exe
2014-10-02 08:44 - 2014-06-17 21:51 - 00646144 _____ (Microsoft Corporation) C:\windows\SysWOW64\osk.exe
2014-10-02 08:44 - 2014-03-26 10:44 - 02002432 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2014-10-02 08:44 - 2014-03-26 10:44 - 01882112 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2014-10-02 08:44 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml6r.dll
2014-10-02 08:44 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml3r.dll
2014-10-02 08:44 - 2014-03-26 10:27 - 01389056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6.dll
2014-10-02 08:44 - 2014-03-26 10:27 - 01237504 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3.dll
2014-10-02 08:44 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6r.dll
2014-10-02 08:44 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3r.dll
2014-10-02 08:44 - 2013-12-03 22:27 - 00488448 _____ (Microsoft Corporation) C:\windows\system32\secproc.dll
2014-10-02 08:44 - 2013-12-03 22:27 - 00485888 _____ (Microsoft Corporation) C:\windows\system32\secproc_isv.dll
2014-10-02 08:44 - 2013-12-03 22:27 - 00123392 _____ (Microsoft Corporation) C:\windows\system32\secproc_ssp_isv.dll
2014-10-02 08:44 - 2013-12-03 22:27 - 00123392 _____ (Microsoft Corporation) C:\windows\system32\secproc_ssp.dll
2014-10-02 08:44 - 2013-12-03 22:26 - 00528384 _____ (Microsoft Corporation) C:\windows\system32\msdrm.dll
2014-10-02 08:44 - 2013-12-03 22:16 - 00658432 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_isv.exe
2014-10-02 08:44 - 2013-12-03 22:16 - 00626176 _____ (Microsoft Corporation) C:\windows\system32\RMActivate.exe
2014-10-02 08:44 - 2013-12-03 22:16 - 00553984 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_ssp.exe
2014-10-02 08:44 - 2013-12-03 22:16 - 00552960 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_ssp_isv.exe
2014-10-02 08:44 - 2013-12-03 22:03 - 00428032 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc.dll
2014-10-02 08:44 - 2013-12-03 22:03 - 00423936 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc_isv.dll
2014-10-02 08:44 - 2013-12-03 22:03 - 00087040 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc_ssp_isv.dll
2014-10-02 08:44 - 2013-12-03 22:03 - 00087040 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc_ssp.dll
2014-10-02 08:44 - 2013-12-03 22:02 - 00390144 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdrm.dll
2014-10-02 08:44 - 2013-12-03 21:54 - 00594944 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_isv.exe
2014-10-02 08:44 - 2013-12-03 21:54 - 00572416 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate.exe
2014-10-02 08:44 - 2013-12-03 21:54 - 00510976 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_ssp.exe
2014-10-02 08:44 - 2013-12-03 21:54 - 00508928 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_ssp_isv.exe
2014-10-02 08:44 - 2013-11-26 21:41 - 00343040 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys
2014-10-02 08:44 - 2013-11-26 21:41 - 00325120 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys
2014-10-02 08:44 - 2013-11-26 21:41 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2014-10-02 08:44 - 2013-11-26 21:41 - 00053248 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys
2014-10-02 08:44 - 2013-11-26 21:41 - 00007808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys
2014-10-02 08:44 - 2013-10-03 22:28 - 00190464 _____ (Microsoft Corporation) C:\windows\system32\SmartcardCredentialProvider.dll
2014-10-02 08:44 - 2013-10-03 22:25 - 00197120 _____ (Microsoft Corporation) C:\windows\system32\credui.dll
2014-10-02 08:44 - 2013-10-03 21:58 - 00152576 _____ (Microsoft Corporation) C:\windows\SysWOW64\SmartcardCredentialProvider.dll
2014-10-02 08:44 - 2013-10-03 21:56 - 00168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\credui.dll
2014-10-02 08:44 - 2013-06-06 01:50 - 00041472 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2014-10-02 08:44 - 2013-06-06 01:49 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2014-10-02 08:44 - 2013-06-06 01:49 - 00014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2014-10-02 08:44 - 2013-06-06 01:47 - 00046080 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2014-10-02 08:44 - 2013-06-06 00:57 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2014-10-02 08:44 - 2013-06-06 00:51 - 00070656 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2014-10-02 08:44 - 2013-06-06 00:50 - 00010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2014-10-02 08:44 - 2013-06-05 23:30 - 00368128 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2014-10-02 08:44 - 2013-06-05 23:01 - 00295424 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2014-10-02 08:44 - 2013-06-05 23:01 - 00034304 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2014-10-02 08:44 - 2013-04-25 19:30 - 01505280 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d11.dll
2014-10-02 08:44 - 2013-03-31 18:52 - 01887232 _____ (Microsoft Corporation) C:\windows\system32\d3d11.dll
2014-10-02 08:43 - 2014-06-06 06:10 - 00624128 _____ (Microsoft Corporation) C:\windows\system32\qedit.dll
2014-10-02 08:43 - 2014-06-06 05:44 - 00509440 _____ (Microsoft Corporation) C:\windows\SysWOW64\qedit.dll
2014-10-02 08:43 - 2014-05-30 02:45 - 00497152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2014-10-02 08:43 - 2013-07-25 05:25 - 01888768 _____ (Microsoft Corporation) C:\windows\system32\WMVDECOD.DLL
2014-10-02 08:43 - 2013-07-25 04:57 - 01620992 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVDECOD.DLL
2014-10-02 08:43 - 2013-06-25 18:55 - 00785624 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Wdf01000.sys
2014-10-02 08:43 - 2013-02-12 00:12 - 00019968 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usb8023.sys
2014-10-02 08:43 - 2012-11-28 18:56 - 00054376 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdfLdr.sys
2014-10-02 08:43 - 2012-11-28 18:56 - 00009728 _____ (Microsoft Corporation) C:\windows\system32\Wdfres.dll
2014-10-02 08:43 - 2012-11-28 18:56 - 00000003 _____ () C:\windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-10-02 08:43 - 2012-10-03 13:44 - 00303104 _____ (Microsoft Corporation) C:\windows\system32\nlasvc.dll
2014-10-02 08:43 - 2012-10-03 13:44 - 00246272 _____ (Microsoft Corporation) C:\windows\system32\netcorehc.dll
2014-10-02 08:43 - 2012-10-03 13:44 - 00216576 _____ (Microsoft Corporation) C:\windows\system32\ncsi.dll
2014-10-02 08:43 - 2012-10-03 13:44 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\nlaapi.dll
2014-10-02 08:43 - 2012-10-03 13:44 - 00018944 _____ (Microsoft Corporation) C:\windows\system32\netevent.dll
2014-10-02 08:43 - 2012-10-03 13:42 - 00569344 _____ (Microsoft Corporation) C:\windows\system32\iphlpsvc.dll
2014-10-02 08:43 - 2012-10-03 12:42 - 00175104 _____ (Microsoft Corporation) C:\windows\SysWOW64\netcorehc.dll
2014-10-02 08:43 - 2012-10-03 12:42 - 00156672 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncsi.dll
2014-10-02 08:43 - 2012-10-03 12:42 - 00018944 _____ (Microsoft Corporation) C:\windows\SysWOW64\netevent.dll
2014-10-02 08:43 - 2012-10-03 12:07 - 00045568 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpipreg.sys
2014-10-02 08:43 - 2012-08-22 14:12 - 00950128 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndis.sys
2014-10-02 08:43 - 2012-07-04 16:26 - 00041472 _____ (Microsoft Corporation) C:\windows\system32\Drivers\RNDISMP.sys
2014-10-02 08:43 - 2012-05-01 01:40 - 00209920 _____ (Microsoft Corporation) C:\windows\system32\profsvc.dll
2014-10-02 08:43 - 2012-04-26 01:41 - 00149504 _____ (Microsoft Corporation) C:\windows\system32\rdpcorekmts.dll
2014-10-02 08:43 - 2012-04-26 01:41 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\rdpwsx.dll
2014-10-02 08:43 - 2012-04-26 01:34 - 00009216 _____ (Microsoft Corporation) C:\windows\system32\rdrmemptylst.exe
2014-10-02 08:43 - 2012-01-13 03:12 - 00052224 _____ (Microsoft Corporation) C:\windows\SysWOW64\nlaapi.dll
2014-10-02 08:42 - 2014-06-03 06:02 - 03241984 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2014-10-02 08:42 - 2014-06-03 06:02 - 01941504 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2014-10-02 08:42 - 2014-06-03 06:02 - 00504320 _____ (Microsoft Corporation) C:\windows\system32\msihnd.dll
2014-10-02 08:42 - 2014-06-03 06:02 - 00112064 _____ (Microsoft Corporation) C:\windows\system32\consent.exe
2014-10-02 08:42 - 2014-06-03 05:29 - 02363392 _____ (Microsoft Corporation) C:\windows\SysWOW64\msi.dll
2014-10-02 08:42 - 2014-06-03 05:29 - 01805824 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2014-10-02 08:42 - 2014-06-03 05:29 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\msihnd.dll
2014-10-02 08:42 - 2013-07-04 08:57 - 00259584 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll
2014-10-02 08:42 - 2013-07-04 08:50 - 00102400 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll
2014-10-02 08:42 - 2013-07-04 07:57 - 00205824 _____ (Microsoft Corporation) C:\windows\SysWOW64\WebClnt.dll
2014-10-02 08:42 - 2013-07-04 07:51 - 00081920 _____ (Microsoft Corporation) C:\windows\SysWOW64\davclnt.dll
2014-10-02 08:42 - 2013-07-04 06:11 - 00140800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2014-10-02 08:42 - 2013-02-27 01:47 - 00070144 _____ (Microsoft Corporation) C:\windows\system32\appinfo.dll
2014-10-02 08:42 - 2012-11-02 01:59 - 00478208 _____ (Microsoft Corporation) C:\windows\system32\dpnet.dll
2014-10-02 08:42 - 2012-11-02 01:11 - 00376832 _____ (Microsoft Corporation) C:\windows\SysWOW64\dpnet.dll
2014-10-02 08:41 - 2014-06-15 22:10 - 00985536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2014-10-02 08:41 - 2013-08-01 22:12 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2014-10-02 08:41 - 2013-08-01 22:12 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2014-10-02 08:41 - 2013-08-01 21:48 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2014-10-02 08:41 - 2013-08-01 20:59 - 00112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2014-10-02 08:41 - 2013-06-15 00:32 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tssecsrv.sys
2014-10-02 08:41 - 2013-04-10 02:01 - 00265064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2014-10-02 08:41 - 2012-08-21 17:01 - 00245760 _____ (Microsoft Corporation) C:\windows\system32\OxpsConverter.exe
2014-10-02 08:41 - 2011-02-03 07:25 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2014-10-02 08:40 - 2012-12-07 09:20 - 00441856 _____ (Microsoft Corporation) C:\windows\system32\Wpc.dll
2014-10-02 08:40 - 2012-12-07 09:15 - 02746368 _____ (Microsoft Corporation) C:\windows\system32\gameux.dll
2014-10-02 08:40 - 2012-12-07 08:26 - 00308736 _____ (Microsoft Corporation) C:\windows\SysWOW64\Wpc.dll
2014-10-02 08:40 - 2012-12-07 08:20 - 02576384 _____ (Microsoft Corporation) C:\windows\SysWOW64\gameux.dll
2014-10-02 08:40 - 2012-12-07 07:20 - 00045568 _____ (Microsoft) C:\windows\system32\oflc-nz.rs
2014-10-02 08:40 - 2012-12-07 07:20 - 00044544 _____ (Microsoft) C:\windows\system32\pegibbfc.rs
2014-10-02 08:40 - 2012-12-07 07:20 - 00043520 _____ (Microsoft) C:\windows\system32\csrr.rs
2014-10-02 08:40 - 2012-12-07 07:20 - 00030720 _____ (Microsoft) C:\windows\system32\usk.rs
2014-10-02 08:40 - 2012-12-07 07:20 - 00023552 _____ (Microsoft) C:\windows\system32\oflc.rs
2014-10-02 08:40 - 2012-12-07 07:20 - 00020480 _____ (Microsoft) C:\windows\system32\pegi-pt.rs
2014-10-02 08:40 - 2012-12-07 07:20 - 00020480 _____ (Microsoft) C:\windows\system32\pegi-fi.rs
2014-10-02 08:40 - 2012-12-07 07:19 - 00055296 _____ (Microsoft) C:\windows\system32\cero.rs
2014-10-02 08:40 - 2012-12-07 07:19 - 00051712 _____ (Microsoft) C:\windows\system32\esrb.rs
2014-10-02 08:40 - 2012-12-07 07:19 - 00046592 _____ (Microsoft) C:\windows\system32\fpb.rs
2014-10-02 08:40 - 2012-12-07 07:19 - 00040960 _____ (Microsoft) C:\windows\system32\cob-au.rs
2014-10-02 08:40 - 2012-12-07 07:19 - 00021504 _____ (Microsoft) C:\windows\system32\grb.rs
2014-10-02 08:40 - 2012-12-07 07:19 - 00020480 _____ (Microsoft) C:\windows\system32\pegi.rs
2014-10-02 08:40 - 2012-12-07 07:19 - 00015360 _____ (Microsoft) C:\windows\system32\djctq.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00055296 _____ (Microsoft) C:\windows\SysWOW64\cero.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00051712 _____ (Microsoft) C:\windows\SysWOW64\esrb.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00046592 _____ (Microsoft) C:\windows\SysWOW64\fpb.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00045568 _____ (Microsoft) C:\windows\SysWOW64\oflc-nz.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00044544 _____ (Microsoft) C:\windows\SysWOW64\pegibbfc.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00043520 _____ (Microsoft) C:\windows\SysWOW64\csrr.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00040960 _____ (Microsoft) C:\windows\SysWOW64\cob-au.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00030720 _____ (Microsoft) C:\windows\SysWOW64\usk.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00023552 _____ (Microsoft) C:\windows\SysWOW64\oflc.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00021504 _____ (Microsoft) C:\windows\SysWOW64\grb.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00020480 _____ (Microsoft) C:\windows\SysWOW64\pegi-pt.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00020480 _____ (Microsoft) C:\windows\SysWOW64\pegi-fi.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00020480 _____ (Microsoft) C:\windows\SysWOW64\pegi.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00015360 _____ (Microsoft) C:\windows\SysWOW64\djctq.rs
2014-10-02 08:40 - 2012-04-27 23:55 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdpwd.sys
2014-10-02 08:40 - 2012-03-17 03:58 - 00075120 _____ (Microsoft Corporation) C:\windows\system32\Drivers\partmgr.sys
2014-10-02 08:39 - 2014-02-03 22:35 - 00274880 _____ (Microsoft Corporation) C:\windows\system32\Drivers\msiscsi.sys
2014-10-02 08:39 - 2014-02-03 22:35 - 00190912 _____ (Microsoft Corporation) C:\windows\system32\Drivers\storport.sys
2014-10-02 08:39 - 2014-02-03 22:35 - 00027584 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Diskdump.sys
2014-10-02 08:39 - 2014-02-03 22:28 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\iologmsg.dll
2014-10-02 08:39 - 2014-02-03 22:00 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\iologmsg.dll
2014-10-02 08:38 - 2014-09-09 18:11 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2014-10-02 08:38 - 2014-09-09 17:47 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2014-10-02 08:38 - 2014-05-30 04:08 - 00340992 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-10-02 08:38 - 2014-05-30 04:08 - 00314880 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2014-10-02 08:38 - 2014-05-30 04:08 - 00307200 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2014-10-02 08:38 - 2014-05-30 04:08 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2014-10-02 08:38 - 2014-05-30 04:08 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2014-10-02 08:38 - 2014-05-30 04:08 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2014-10-02 08:38 - 2014-05-30 03:52 - 00259584 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2014-10-02 08:38 - 2014-05-30 03:52 - 00247808 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2014-10-02 08:38 - 2014-05-30 03:52 - 00220160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2014-10-02 08:38 - 2014-05-30 03:52 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2014-10-02 08:38 - 2014-05-30 03:52 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2014-10-02 08:38 - 2014-05-30 03:52 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2014-10-02 08:38 - 2013-07-25 22:24 - 00197120 _____ (Microsoft Corporation) C:\windows\system32\shdocvw.dll
2014-10-02 08:38 - 2013-07-25 21:55 - 00180224 _____ (Microsoft Corporation) C:\windows\SysWOW64\shdocvw.dll
2014-10-02 08:38 - 2013-04-26 01:51 - 00751104 _____ (Microsoft Corporation) C:\windows\system32\win32spl.dll
2014-10-02 08:38 - 2013-04-26 00:55 - 00492544 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32spl.dll
2014-10-02 08:38 - 2012-09-25 18:47 - 00078336 _____ (Microsoft Corporation) C:\windows\SysWOW64\synceng.dll
2014-10-02 08:38 - 2012-09-25 18:46 - 00095744 _____ (Microsoft Corporation) C:\windows\system32\synceng.dll
2014-10-02 08:37 - 2014-06-24 22:05 - 14175744 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2014-10-02 08:37 - 2014-06-24 21:41 - 12874240 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2014-10-02 08:37 - 2014-03-04 05:44 - 01163264 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2014-10-02 08:37 - 2014-03-04 05:44 - 00362496 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2014-10-02 08:37 - 2014-03-04 05:44 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2014-10-02 08:37 - 2014-03-04 05:44 - 00016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2014-10-02 08:37 - 2014-03-04 05:44 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2014-10-02 08:37 - 2014-03-04 05:17 - 00014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2014-10-02 08:37 - 2014-03-04 05:16 - 01114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2014-10-02 08:37 - 2014-03-04 05:16 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2014-10-02 08:37 - 2014-03-04 05:16 - 00005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2014-10-02 08:37 - 2014-03-04 04:09 - 00007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2014-10-02 08:37 - 2014-03-04 04:09 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2014-10-02 08:37 - 2014-01-23 22:37 - 01684928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ntfs.sys
2014-10-02 08:37 - 2013-08-01 22:14 - 00215040 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2014-10-02 08:37 - 2013-08-01 22:13 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:50 - 00274944 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:09 - 00338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2014-10-02 08:37 - 2013-08-01 20:43 - 00006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 20:43 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 20:43 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 20:43 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-10-02 08:37 - 2013-07-20 06:33 - 00124112 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-10-02 08:37 - 2013-07-20 06:33 - 00102608 _____ (Microsoft Corporation) C:\windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-10-02 08:37 - 2013-05-10 01:49 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\cryptdlg.dll
2014-10-02 08:37 - 2013-05-09 23:20 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptdlg.dll
2014-10-02 08:37 - 2013-01-24 02:01 - 00223752 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fvevol.sys
2014-10-02 08:37 - 2012-07-04 18:16 - 00073216 _____ (Microsoft Corporation) C:\windows\system32\netapi32.dll
2014-10-02 08:37 - 2012-07-04 18:13 - 00136704 _____ (Microsoft Corporation) C:\windows\system32\browser.dll
2014-10-02 08:37 - 2012-07-04 18:13 - 00059392 _____ (Microsoft Corporation) C:\windows\system32\browcli.dll
2014-10-02 08:37 - 2012-07-04 17:16 - 00057344 _____ (Microsoft Corporation) C:\windows\SysWOW64\netapi32.dll
2014-10-02 08:37 - 2012-07-04 17:14 - 00041984 _____ (Microsoft Corporation) C:\windows\SysWOW64\browcli.dll
2014-10-02 08:37 - 2012-05-05 04:36 - 00503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2014-10-02 08:37 - 2012-05-05 03:46 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2014-10-02 08:36 - 2014-07-06 22:06 - 01460736 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-10-02 08:36 - 2014-07-06 22:06 - 00728064 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2014-10-02 08:36 - 2014-07-06 21:40 - 00550912 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2014-10-02 08:36 - 2014-07-06 21:40 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2014-10-02 08:36 - 2014-07-06 21:39 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2014-10-02 08:36 - 2013-10-11 22:32 - 00150016 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2014-10-02 08:36 - 2013-10-11 22:31 - 00202752 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2014-10-02 08:36 - 2013-10-11 22:04 - 00121856 _____ (Microsoft Corporation) C:\windows\SysWOW64\wshom.ocx
2014-10-02 08:36 - 2013-10-11 22:03 - 00163840 _____ (Microsoft Corporation) C:\windows\SysWOW64\scrrun.dll
2014-10-02 08:36 - 2013-10-11 21:33 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\wscript.exe
2014-10-02 08:36 - 2013-10-11 21:33 - 00156160 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2014-10-02 08:36 - 2013-10-11 21:15 - 00141824 _____ (Microsoft Corporation) C:\windows\SysWOW64\wscript.exe
2014-10-02 08:36 - 2013-10-11 21:15 - 00126976 _____ (Microsoft Corporation) C:\windows\SysWOW64\cscript.exe
2014-10-02 08:36 - 2013-05-13 01:50 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\certenc.dll
2014-10-02 08:36 - 2013-05-12 23:43 - 01192448 _____ (Microsoft Corporation) C:\windows\system32\certutil.exe
2014-10-02 08:36 - 2013-05-12 23:08 - 00903168 _____ (Microsoft Corporation) C:\windows\SysWOW64\certutil.exe
2014-10-02 08:36 - 2013-05-12 23:08 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\certenc.dll
2014-10-02 08:35 - 2014-09-04 22:10 - 00578048 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-10-02 08:35 - 2014-09-04 22:05 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-10-02 08:35 - 2014-08-22 22:07 - 00404480 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2014-10-02 08:35 - 2014-08-22 21:45 - 00311808 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2014-10-02 08:35 - 2014-08-22 20:59 - 03163648 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-10-02 08:35 - 2014-07-13 22:02 - 01216000 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2014-10-02 08:35 - 2014-07-13 21:40 - 00664064 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2014-10-02 08:35 - 2014-04-11 22:22 - 00155072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2014-10-02 08:35 - 2014-04-11 22:22 - 00095680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2014-10-02 08:35 - 2014-04-11 22:19 - 00136192 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2014-10-02 08:35 - 2014-04-11 22:19 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2014-10-02 08:35 - 2014-04-11 22:19 - 00029184 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2014-10-02 08:35 - 2014-04-11 22:19 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2014-10-02 08:35 - 2013-10-11 22:30 - 00830464 _____ (Microsoft Corporation) C:\windows\system32\nshwfp.dll
2014-10-02 08:35 - 2013-10-11 22:29 - 00859648 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL
2014-10-02 08:35 - 2013-10-11 22:29 - 00324096 _____ (Microsoft Corporation) C:\windows\system32\FWPUCLNT.DLL
2014-10-02 08:35 - 2013-10-11 22:03 - 00656896 _____ (Microsoft Corporation) C:\windows\SysWOW64\nshwfp.dll
2014-10-02 08:35 - 2013-10-11 22:01 - 00216576 _____ (Microsoft Corporation) C:\windows\SysWOW64\FWPUCLNT.DLL
2014-10-02 08:35 - 2013-08-27 21:12 - 00461312 _____ (Microsoft Corporation) C:\windows\system32\scavengeui.dll
2014-10-02 08:35 - 2013-07-04 08:18 - 00458712 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2014-10-02 08:35 - 2012-06-06 02:02 - 01133568 _____ (Microsoft Corporation) C:\windows\system32\cdosys.dll
2014-10-02 08:35 - 2012-06-06 01:03 - 00805376 _____ (Microsoft Corporation) C:\windows\SysWOW64\cdosys.dll
2014-10-02 08:35 - 2012-05-14 01:26 - 00956928 _____ (Microsoft Corporation) C:\windows\system32\localspl.dll
2014-10-02 08:35 - 2011-02-23 00:55 - 00090624 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bowser.sys
2014-10-02 05:45 - 2014-10-04 16:08 - 00000000 __SHD () C:\Users\Scott\AppData\Local\EmieUserList
2014-10-02 05:45 - 2014-10-02 05:45 - 00000000 __SHD () C:\Users\Scott\AppData\Local\EmieSiteList
2014-10-01 22:31 - 2014-10-01 22:31 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-10-01 22:27 - 2014-09-24 22:08 - 00371712 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2014-10-01 22:27 - 2014-09-24 21:40 - 00519680 _____ (Microsoft Corporation) C:\windows\SysWOW64\qdvd.dll
2014-09-29 18:19 - 2014-10-02 14:07 - 00000000 ____D () C:\ProgramData\Windows Genuine Advantage
2014-09-28 18:52 - 2014-10-02 14:09 - 00000000 ____D () C:\windows\system32\Macromed
2014-09-28 07:39 - 2014-10-06 22:39 - 00058016 _____ () C:\Users\Scott\AppData\Local\GDIPFONTCACHEV1.DAT
2014-09-26 16:40 - 2014-10-02 22:44 - 00000000 ____D () C:\ProgramData\Adobe
2014-09-26 16:39 - 2014-10-03 11:13 - 00000000 ____D () C:\Users\Scott\AppData\Local\Adobe
2014-09-25 12:23 - 2013-07-12 06:41 - 00185344 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbvideo.sys
2014-09-25 12:22 - 2012-07-06 16:07 - 00552960 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bthport.sys
2014-09-24 23:22 - 2012-02-17 02:38 - 01031680 _____ (Microsoft Corporation) C:\windows\system32\rdpcore.dll
2014-09-24 23:22 - 2012-02-17 01:34 - 00826880 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdpcore.dll
2014-09-24 23:22 - 2012-02-17 00:57 - 00023552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tdtcp.sys
2014-09-24 23:14 - 2014-05-14 12:23 - 02477536 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2014-09-24 23:14 - 2014-05-14 12:23 - 00700384 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2014-09-24 23:14 - 2014-05-14 12:23 - 00581600 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2014-09-24 23:14 - 2014-05-14 12:23 - 00058336 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2014-09-24 23:14 - 2014-05-14 12:23 - 00044512 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2014-09-24 23:14 - 2014-05-14 12:23 - 00038880 _____ (Microsoft Corporation) C:\windows\system32\wups.dll
2014-09-24 23:14 - 2014-05-14 12:23 - 00036320 _____ (Microsoft Corporation) C:\windows\SysWOW64\wups.dll
2014-09-24 23:14 - 2014-05-14 12:21 - 02620928 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2014-09-24 23:14 - 2014-05-14 12:20 - 00097792 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2014-09-24 23:14 - 2014-05-14 12:17 - 00092672 _____ (Microsoft Corporation) C:\windows\SysWOW64\wudriver.dll
2014-09-24 23:14 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2014-09-24 23:14 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuwebv.dll
2014-09-24 23:14 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2014-09-24 23:14 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapp.exe
2014-09-24 21:45 - 2014-10-02 23:42 - 00000000 ____D () C:\Users\Scott\AppData\Roaming\Mozilla
2014-09-24 21:45 - 2014-09-24 21:46 - 00000000 ____D () C:\Users\Scott\AppData\Local\Mozilla
2014-09-24 21:45 - 2014-09-24 21:45 - 00000000 ____D () C:\ProgramData\Mozilla
2014-09-24 21:44 - 2014-09-24 21:44 - 00244136 _____ () C:\Users\Scott\Downloads\Firefox Setup Stub 32.0.3.exe
2014-09-24 18:17 - 2014-09-24 18:17 - 00000000 ____D () C:\Users\Scott\AppData\Roaming\Macromedia
2014-09-24 18:16 - 2014-10-02 14:08 - 00000000 ____D () C:\Users\Scott\AppData\Roaming\Adobe
2014-09-24 18:12 - 2014-10-04 14:53 - 00001413 _____ () C:\Users\Scott\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-09-24 18:11 - 2014-10-02 14:00 - 00000000 ____D () C:\ProgramData\Skype
2014-09-24 18:11 - 2014-09-24 18:11 - 00001076 _____ () C:\Users\Your Feedback is Important.lnk
2014-09-24 18:10 - 2014-10-02 14:11 - 00000000 ____D () C:\Users\Scott\AppData\Local\VirtualStore
2014-09-24 18:10 - 2014-09-24 18:10 - 00003186 _____ () C:\windows\System32\Tasks\FFSRConfigurer
2014-09-24 18:10 - 2014-09-24 18:10 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
2014-09-24 18:10 - 2014-09-24 18:10 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_btmaux_01009.Wdf
2014-09-24 18:09 - 2014-10-03 00:22 - 00000000 ____D () C:\Users\Scott
2014-09-24 18:09 - 2014-10-02 14:11 - 00000000 ___RD () C:\Users\Scott\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-09-24 18:09 - 2014-10-02 14:11 - 00000000 ___RD () C:\Users\Scott\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-09-24 18:09 - 2014-09-24 18:09 - 00000020 ___SH () C:\Users\Scott\ntuser.ini
2014-09-24 18:09 - 2014-09-24 18:09 - 00000000 __SHD () C:\Recovery
2014-09-24 18:09 - 2014-09-24 18:09 - 00000000 ____D () C:\Users\Scott\AppData\Roaming\Intel
2014-09-24 18:09 - 2014-09-24 18:09 - 00000000 _____ () C:\windows\system32\Drivers\144D_SAMSUNG_N_900X4C_P03A.mrk
2014-09-24 18:09 - 2014-09-24 18:09 - 00000000 _____ () C:\Users\Scott\agent.log
2014-09-19 18:14 - 2014-09-19 18:14 - 00000200 __RSH () C:\MSSTBJ.CAT
2014-09-19 17:07 - 2014-09-19 17:07 - 00000000 __SHD () C:\System Recovery

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-07 09:49 - 2009-07-14 01:13 - 00781298 _____ () C:\windows\system32\PerfStringBackup.INI
2014-10-07 09:48 - 2012-05-10 11:18 - 01543032 _____ () C:\windows\WindowsUpdate.log
2014-10-07 09:45 - 2012-05-10 11:15 - 00000828 _____ () C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2014-10-07 09:45 - 2010-11-20 23:47 - 01184374 _____ () C:\windows\PFRO.log
2014-10-07 09:45 - 2009-07-14 01:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-10-07 09:45 - 2009-07-14 00:51 - 00041965 _____ () C:\windows\setupact.log
2014-10-07 09:28 - 2009-07-14 00:45 - 00028624 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-07 09:28 - 2009-07-14 00:45 - 00028624 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-05 12:02 - 2012-05-10 11:15 - 00000830 _____ () C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2014-10-05 10:15 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-10-04 14:53 - 2009-07-14 00:45 - 00267672 _____ () C:\windows\system32\FNTCACHE.DAT
2014-10-04 14:52 - 2012-05-11 03:08 - 00000000 ____D () C:\Program Files\Windows Journal
2014-10-04 14:52 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-10-04 14:52 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-10-04 14:52 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\zh-HK
2014-10-04 14:52 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\tr-TR
2014-10-04 14:52 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\Dism
2014-10-04 14:52 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\zh-HK
2014-10-04 14:52 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\tr-TR
2014-10-04 14:52 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\Dism
2014-10-04 14:52 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\PolicyDefinitions
2014-10-04 14:52 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-10-03 10:59 - 2012-05-10 11:21 - 00000000 ____D () C:\ProgramData\Norton
2014-10-02 22:47 - 2012-05-10 12:10 - 00000000 ____D () C:\Program Files (x86)\Amazon
2014-10-02 16:41 - 2012-05-10 11:16 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-10-02 14:11 - 2012-05-11 03:08 - 00000000 ____D () C:\windows\ShellNew
2014-10-02 14:11 - 2012-05-10 11:28 - 00000000 ____D () C:\windows\SysWOW64\Macromed
2014-10-02 14:11 - 2012-05-10 11:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2014-10-02 14:11 - 2012-05-10 11:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WildTangent Games
2014-10-02 14:11 - 2009-07-14 01:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-10-02 14:11 - 2009-07-14 01:32 - 00000000 ____D () C:\windows\Offline Web Pages
2014-10-02 14:11 - 2009-07-13 23:20 - 00000000 __RSD () C:\windows\Media
2014-10-02 14:11 - 2009-07-13 23:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-10-02 14:11 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\NDF
2014-10-02 14:11 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\security
2014-10-02 14:11 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\rescache
2014-10-02 14:11 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\L2Schemas
2014-10-02 14:11 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\AppCompat
2014-10-02 14:10 - 2012-05-10 12:02 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-10-02 14:10 - 2012-05-10 11:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Absolute Software
2014-10-02 14:10 - 2012-05-10 11:29 - 00000000 ____D () C:\ProgramData\WinClon
2014-10-02 14:10 - 2012-05-10 11:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Corporation
2014-10-02 14:10 - 2012-05-10 11:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-10-02 14:10 - 2009-07-13 23:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-10-02 14:09 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\registration
2014-10-02 14:08 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\servicing
2014-10-02 14:07 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-10-02 14:07 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar
2014-09-25 18:23 - 2010-11-21 03:06 - 00000000 ____D () C:\windows\SysWOW64\winrm
2014-09-25 18:23 - 2010-11-21 03:06 - 00000000 ____D () C:\windows\SysWOW64\WCN
2014-09-25 18:23 - 2010-11-21 03:06 - 00000000 ____D () C:\windows\SysWOW64\sysprep
2014-09-25 18:23 - 2010-11-21 03:06 - 00000000 ____D () C:\windows\SysWOW64\slmgr
2014-09-25 18:23 - 2010-11-21 03:06 - 00000000 ____D () C:\windows\SysWOW64\Printing_Admin_Scripts
2014-09-25 18:23 - 2010-11-21 03:06 - 00000000 ____D () C:\windows\system32\winrm
2014-09-25 18:23 - 2010-11-21 03:06 - 00000000 ____D () C:\windows\system32\WCN
2014-09-25 18:23 - 2010-11-21 03:06 - 00000000 ____D () C:\windows\system32\slmgr
2014-09-25 18:23 - 2010-11-21 03:06 - 00000000 ____D () C:\windows\system32\Printing_Admin_Scripts
2014-09-25 18:23 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-09-25 18:23 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2014-09-25 18:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\Setup
2014-09-25 18:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\oobe
2014-09-25 18:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\MUI
2014-09-25 18:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\migwiz
2014-09-25 18:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\com
2014-09-25 18:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\sysprep
2014-09-25 18:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\Setup
2014-09-25 18:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\oobe
2014-09-25 18:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\MUI
2014-09-25 18:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\migwiz
2014-09-25 18:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\com
2014-09-24 18:18 - 2012-05-10 11:25 - 00000000 ____D () C:\ProgramData\SAMSUNG
2014-09-24 18:11 - 2012-05-11 03:07 - 00000000 ____D () C:\windows\MSetup
2014-09-24 18:11 - 2012-05-10 11:15 - 00000000 ____D () C:\Program Files (x86)\Samsung
2014-09-24 18:10 - 2012-05-10 12:10 - 00051158 _____ () C:\windows\SetDisplayResolution.log
2014-09-24 18:10 - 2012-05-10 11:18 - 00013210 _____ () C:\windows\DPINST.LOG
2014-09-24 18:10 - 2012-05-10 11:15 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-09-24 18:09 - 2012-05-10 11:54 - 00004336 _____ () C:\windows\LCDStretchMode.log
2014-09-24 18:09 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\Recovery
2014-09-19 09:27 - 2009-07-14 00:46 - 00004818 _____ () C:\windows\DtcInstall.log
2014-09-19 09:16 - 2012-05-10 12:18 - 00000988 _____ () C:\windows\SysWOW64\Master.log
2014-09-19 09:15 - 2012-05-10 11:16 - 00003350 _____ () C:\windows\System32\Tasks\Intel® Rapid Start Technology Manager
2014-09-15 09:06 - 2010-11-20 23:27 - 00278152 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe

Some content of TEMP:
====================
C:\Users\Scott\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-10-06 22:09

==================== End Of Log ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-10-2014 01
Ran by Scott at 2014-10-07 09:53:13
Running from C:\Users\Scott\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

„Windows Live Essentials“ (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
„Windows Live Mail“ (x32 Version: 15.4.3502.0922 - „Microsoft Corporation“) Hidden
„Windows Live Messenger“ (x32 Version: 15.4.3538.0513 - „Microsoft Corporation“) Hidden
„Windows Live“ fotogalerija (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Absolute Reminder (HKLM-x32\...\{40F4FF7A-B214-4453-B973-080B09CED019}) (Version: 2.0.0.17 - Absolute Software)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.82 - WildTangent) Hidden
Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Build-a-lot (x32 Version: 2.2.0.82 - WildTangent) Hidden
Chuzzle Deluxe (x32 Version: 2.2.0.82 - WildTangent) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.82 - WildTangent) Hidden
Easy File Share (HKLM-x32\...\{12F81925-F3C1-40DB-91F7-777817974319}) (Version: 1.2.4 - Samsung Electronics CO., LTD.)
Easy Migration (HKLM-x32\...\{EDE7A262-DB20-4432-A630-2ACEE186C416}) (Version: 1.0 - Samsung Electronics CO., LTD.)
Easy Settings (HKLM-x32\...\{17283B95-21A8-4996-97DA-547A48DB266F}) (Version: 1.1 - Samsung Electronics CO., LTD.)
Easy Software Manager (HKLM-x32\...\{DE256D8B-D971-456D-BC02-CB64DA24F115}) (Version: 1.2.17.12 - Samsung Electronics CO., LTD.)
Easy Support Center (HKLM\...\{0738F5F1-8E70-49A6-8692-F5722E1E5A4D}) (Version: 1.2.22 - Samsung Electronics CO., LTD.)
E-POP (HKLM-x32\...\{F06DD8D9-9DC8-430C-835C-C9BF21E05CC1}) (Version: 1.0.1 - Samsung Electronics CO., LTD.)
ETDWare PS/2-X64 10.7.16.1_WHQL (HKLM\...\Elantech) (Version: 10.7.16.1 - ELAN Microelectronic Corp.)
Farm Frenzy (x32 Version: 2.2.0.82 - WildTangent) Hidden
Fast Flash Sleep Resume (x32 Version: 1.0.19 - Samsung) Hidden
Fotogalerija Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie foto Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Insaniquarium Deluxe (x32 Version: 2.2.0.82 - WildTangent) Hidden
Intel PROSet Wireless (Version: - ) Hidden
Intel® Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35342 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.2.1410 - Intel Corporation)
Intel® OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2618 - Intel Corporation)
Intel® PROSet/Wireless for Bluetooth® 3.0 + High Speed (HKLM\...\{2C0E6BD4-65B1-4E82-B2AC-43EFFC8F100C}) (Version: 15.0.0.0059 - Intel Corporation)
Intel® PROSet/Wireless Software for Bluetooth® Technology (HKLM\...\{520C4DD4-2BC7-409B-BA48-E1A4F832662D}) (Version: 2.1.0.0140 - Intel Corporation)
Intel® Rapid Start Technology (HKLM-x32\...\3D073343-CEEB-4ce7-85AC-A69A7631B5D6) (Version: 1.0.0.1021 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation)
Intel® WiDi (HKLM-x32\...\{93F34C5C-ACAA-48F3-9B26-70359A117F12}) (Version: 3.0.12.0 - Intel Corporation)
Intel® Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version: - )
Intel® PROSet/Wireless WiFi Software (HKLM\...\{DF7756DD-656A-45C3-BA71-74673E8259A9}) (Version: 15.00.0000.0642 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)
Interactive Guide (HKLM-x32\...\{3C4E0F33-0D0E-43D5-A36D-A4F96D73BA2D}) (Version: 1.5 - Samsung Electronics CO., LTD.)
John Deere Drive Green (x32 Version: 2.2.0.82 - WildTangent) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
MovieClip (HKLM-x32\...\{AB777781-AC85-4CE5-B4B8-0F3C68C3974F}) (Version: 1.0.0 - Samsung)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
Multimedia POP (HKLM-x32\...\{78C2BF66-A446-485B-9337-6D6CCD4D4569}) (Version: 1.4 - Samsung Electronics CO., LTD.)
Peggle (x32 Version: 2.2.0.82 - WildTangent) Hidden
Penguins! (x32 Version: 2.2.0.82 - WildTangent) Hidden
Plants vs. Zombies (x32 Version: 2.2.0.82 - WildTangent) Hidden
Poczta usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Polar Golfer (x32 Version: 2.2.0.82 - WildTangent) Hidden
Pošta Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.50.1123.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6608 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{17528CE4-C333-48FB-A9E4-D841E795CDCE}) (Version: 3.0.8.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 3.0.8.0 - Renesas Electronics Corporation) Hidden
Samsung Recovery Solution 5 (HKLM-x32\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 5.0.2.6 - Samsung Electronics CO., LTD.)
Software Launcher (HKLM-x32\...\{B750B5C2-CC17-4967-905B-29F4EB986131}) (Version: 1.0.2 - Samsung Electronics CO., LTD.)
User Guide (HKLM-x32\...\{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}) (Version: 1.8 - Samsung Electronics CO., LTD.)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.1.5 - WildTangent)
WildTangent ORB Game Console (x32 Version: - WildTangent) Hidden
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live fotoattēlu galerija (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogaléria (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Foto-galerija (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalleri (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotoğraf Galerisi (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotótár (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Galeria de Fotos (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Galerija fotografija (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 15.4.3538.0513 - Корпорация Майкрософт) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Pošta (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Temel Parçalar (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 메일 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 사진 갤러리 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 필수 패키지 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 影像中心 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 照片库 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 程式集 (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
Windows Live 程式集 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live 软件包 (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Liven asennustyökalu (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Liven sähköposti (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Liven valokuvavalikoima (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden
Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Фотогалерия на Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
بريد Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points =========================

04-10-2014 20:55:44 Removed Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
04-10-2014 20:56:15 Removed Microsoft Silverlight
04-10-2014 20:56:34 Removed Microsoft Visual C++ 2005 Redistributable
04-10-2014 20:56:54 Removed Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
05-10-2014 14:13:51 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 22:34 - 2009-06-10 17:00 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0E04488B-6474-41F7-8C00-3CA941F836FA} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {16B9B624-821B-4892-B91F-E3B7BC9FF8D0} - System32\Tasks\Easy Software Manager Agent => C:\Program Files (x86)\Samsung\Easy Software Manager\SWMAgent.exe [2012-04-06] (Samsung Electronics CO., LTD.)
Task: {39D2D029-EE5E-4B40-965D-577454F18C6A} - System32\Tasks\SCCSpeedBoot => C:\Program Files (x86)\Samsung\Easy Settings\SCCSpeedBoot.exe [2012-03-27] (Samsung Electronics Co., Ltd.)
Task: {5E7B8FEB-EB82-4B78-8A66-433882444B8B} - System32\Tasks\SmartSetting => C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe [2012-05-01] (Samsung Electronics Co., Ltd.)
Task: {5FFCD499-A6F6-404F-90D8-860EE7B1E04E} - System32\Tasks\MovieColorEnhancer => C:\Program Files (x86)\Samsung\Easy Settings\MovieColorEnhancer.exe [2012-04-25] (Samsung Electronics Co., Ltd.)
Task: {745CD07A-4118-45F5-BE23-DC7DC3EA6640} - System32\Tasks\EasySpeedUpManager => C:\Program Files (x86)\Samsung\Easy Settings\EasySpeedUpManager.exe [2012-01-31] (Samsung Electronics)
Task: {7A4E3BC9-302B-4BF0-8134-D522BFE06459} - System32\Tasks\EasyDisplayMgr => C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe [2012-05-08] (Samsung Electronics Co., Ltd.)
Task: {7E3F5392-DB31-46D1-BFCB-E8B2754AC8A3} - System32\Tasks\Absolute Reminder => C:\Program Files (x86)\Absolute Software\Absolute Reminder\AbsoluteReminder.exe [2011-07-12] (Absolute Software)
Task: {A78596A5-9683-4BE6-A1BC-926276D546EF} - System32\Tasks\WLANStartup => C:\Program Files (x86)\Samsung\Easy Settings\WLANStartup.exe [2012-04-03] (Samsung Electronics)
Task: {AB96BCFB-3991-45A3-AA3A-A8451C7D0DF0} - System32\Tasks\FFSRConfigurer => C:\Program Files (x86)\Samsung\Fast Flash Sleep Resume\FFSRConfigurer.exe [2012-03-28] (Samsung)
Task: {CEF175F2-3E61-4461-9C28-C6150B82D1CE} - System32\Tasks\EasyBatteryManager => C:\Program Files (x86)\Samsung\Easy Settings\EBM\EasyBatteryMgr4.exe [2011-11-18] (SAMSUNG Electronics co., LTD.)
Task: {DC287724-E1BC-448B-A039-2BECB927F810} - System32\Tasks\advSRS5 => C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe [2012-01-28] (SEC)
Task: {E7FE0BB5-120E-4DCD-9B70-E2470A8E5FFB} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe [2011-11-25] (Intel Corporation)
Task: {EE7AE268-D03A-49FD-A345-A9113540100A} - System32\Tasks\Intel® Rapid Start Technology Manager => C:\Program Files (x86)\Intel\irstrt\RapidStartConfig.exe [2012-02-06] (Intel)
Task: {F7529B21-E855-4950-BEE9-BAEB47908225} - System32\Tasks\EasySupportCenter => C:\Program Files\Samsung\Easy Support Center\SamoyedAgent.exe [2012-04-06] (Samsung Electronics CO., LTD.)
Task: C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe

==================== Loaded Modules (whitelisted) =============

2012-05-10 11:15 - 2012-02-07 22:03 - 00128280 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
2012-05-10 11:25 - 2012-02-13 02:02 - 00031624 _____ () C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe
2012-02-06 00:42 - 2012-01-05 04:24 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-05-10 11:25 - 2011-02-16 12:03 - 00203776 _____ () C:\Program Files (x86)\Samsung\Easy Settings\WinCRT.dll
2012-05-10 11:25 - 2006-08-11 23:48 - 00049152 _____ () C:\Program Files (x86)\Samsung\Easy Settings\HookDllPS2.dll
2012-05-10 11:29 - 2011-09-08 06:40 - 01645056 _____ () C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\Resdll.dll
2012-05-10 11:15 - 2012-02-07 21:39 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


========================= Accounts: ==========================

Administrator (S-1-5-21-860519808-2140715989-319308476-500 - Administrator - Disabled)
Guest (S-1-5-21-860519808-2140715989-319308476-501 - Limited - Disabled)
Scott (S-1-5-21-860519808-2140715989-319308476-1000 - Administrator - Enabled) => C:\Users\Scott

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (10/07/2014 09:45:31 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/06/2014 11:17:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/06/2014 09:15:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17280, time stamp: 0x4a5bc6b7
Faulting module name: MSHTML.dll, version: 11.0.9600.17280, time stamp: 0x53f27d67
Exception code: 0xc00000fd
Fault offset: 0x002d2a26
Faulting process id: 0x1dec
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (10/06/2014 06:56:57 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/05/2014 02:44:24 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/05/2014 00:54:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17280, time stamp: 0x4a5bc6b7
Faulting module name: MSHTML.dll, version: 11.0.9600.17280, time stamp: 0x53f27d67
Exception code: 0xc00000fd
Fault offset: 0x000b72ef
Faulting process id: 0x524
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (10/05/2014 00:06:24 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/04/2014 09:20:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17280, time stamp: 0x4a5bc6b7
Faulting module name: MSHTML.dll, version: 11.0.9600.17280, time stamp: 0x53f27d67
Exception code: 0xc00000fd
Fault offset: 0x000d4417
Faulting process id: 0x1bd4
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (10/04/2014 08:08:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17280, time stamp: 0x4a5bc6b7
Faulting module name: MSHTML.dll, version: 11.0.9600.17280, time stamp: 0x53f27d67
Exception code: 0xc00000fd
Fault offset: 0x0006e5e2
Faulting process id: 0x1df8
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3

Error: (10/04/2014 05:34:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 11.0.9600.17280, time stamp: 0x4a5bc6b7
Faulting module name: MSHTML.dll, version: 11.0.9600.17280, time stamp: 0x53f27d67
Exception code: 0xc00000fd
Fault offset: 0x000d4417
Faulting process id: 0x2334
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3


System errors:
=============
Error: (10/06/2014 11:16:51 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.

Module Path: C:\windows\System32\IWMSSvc.dll

Error: (10/06/2014 11:16:51 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.

Module Path: C:\windows\System32\IWMSSvc.dll

Error: (10/06/2014 11:16:51 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.

Module Path: C:\windows\System32\IWMSSvc.dll

Error: (10/06/2014 11:16:50 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.

Module Path: C:\windows\System32\IWMSSvc.dll

Error: (10/06/2014 10:52:50 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Search service, but this action failed with the following error:
%%1056

Error: (10/06/2014 10:52:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Intel® Management and Security Application User Notification Service service terminated unexpectedly. It has done this 1 time(s).

Error: (10/06/2014 10:52:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Live ID Sign-in Assistant service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (10/06/2014 10:52:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Intel® Management and Security Application Local Management Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 10000 milliseconds: Restart the service.

Error: (10/06/2014 10:52:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Security Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.

Error: (10/06/2014 10:52:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.


Microsoft Office Sessions:
=========================
Error: (10/07/2014 09:45:31 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/06/2014 11:17:13 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/06/2014 09:15:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe11.0.9600.172804a5bc6b7MSHTML.dll11.0.9600.1728053f27d67c00000fd002d2a261dec01cfe1cc1daef0f0C:\Program Files\Internet Explorer\iexplore.exeC:\windows\system32\MSHTML.dll7225255d-4dbf-11e4-a686-c485088fad17

Error: (10/06/2014 06:56:57 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/05/2014 02:44:24 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/05/2014 00:54:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe11.0.9600.172804a5bc6b7MSHTML.dll11.0.9600.1728053f27d67c00000fd000b72ef52401cfe0bcecc0485cC:\Program Files\Internet Explorer\iexplore.exeC:\windows\system32\MSHTML.dll39e92ea4-4cb0-11e4-bafc-c485088fad17

Error: (10/05/2014 00:06:24 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/04/2014 09:20:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe11.0.9600.172804a5bc6b7MSHTML.dll11.0.9600.1728053f27d67c00000fd000d44171bd401cfe03a88e8246dC:\Program Files\Internet Explorer\iexplore.exeC:\windows\system32\MSHTML.dlld5295d8e-4c2d-11e4-a571-c485088fad17

Error: (10/04/2014 08:08:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe11.0.9600.172804a5bc6b7MSHTML.dll11.0.9600.1728053f27d67c00000fd0006e5e21df801cfe02fcf6387b5C:\Program Files\Internet Explorer\iexplore.exeC:\windows\system32\MSHTML.dllc03dfb91-4c23-11e4-a571-c485088fad17

Error: (10/04/2014 05:34:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe11.0.9600.172804a5bc6b7MSHTML.dll11.0.9600.1728053f27d67c00000fd000d4417233401cfe01ae3d091e4C:\Program Files\Internet Explorer\iexplore.exeC:\windows\system32\MSHTML.dll32a8279e-4c0e-11e4-a571-c485088fad17


==================== Memory info ===========================

Processor: Intel® Core™ i5-3317U CPU @ 1.70GHz
Percentage of memory in use: 22%
Total physical RAM: 7893.53 MB
Available physical RAM: 6080.74 MB
Total Pagefile: 15785.25 MB
Available Pagefile: 14023.79 MB
Total Virtual: 8192 MB
Available Virtual: 8191.86 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:100.85 GB) (Free:51.52 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: CFC67CF2)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=100.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=8.3 GB) - (Type=84)
Partition 4: (Not Active) - (Size=10 GB) - (Type=12)

==================== End Of Log ============================
  • 0

#22
SleepyDude

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,401 posts

Hi,

 

aswMBR version 1.0.1.2041 Copyright© 2014 AVAST Software
Run date: 2014-10-07 09:27:22
-----------------------------
09:27:22.208    OS Version: Windows x64 6.1.7601 Service Pack 1
09:27:22.223    Number of processors: 4 586 0x3A09
09:27:22.223    ComputerName: SCOTT-PC  UserName: Scott
09:27:22.426    Initialize success
09:27:22.457    VM: initialized successfully
09:27:22.457    VM: Intel CPU supported
09:27:25.043    VM: supported disk I/O iaStor.sys
09:30:02.521    AVAST engine defs: 14100700
09:31:25.857    The log file has been saved successfully to "C:\Users\Scott\Desktop\aswMBR.txt"
 

 

The log doesn't seems complete! After the program has downloaded the Avast virus definitions did you click Scan and wait uninstall the scan finished?

 

How is the computer running now?


Edited by SleepyDude, 07 October 2014 - 02:19 PM.
Typo.

  • 0

#23
scottzajaczkowski

scottzajaczkowski

    Member

  • Topic Starter
  • Member
  • PipPip
  • 23 posts
yes, I waited until it finished; it took a while. The computer does not have any signs of a virus. The surrogate *32 processes are gone. I was able to download Firefox so that's good. I hope it is fixed and I thank you for your help.
  • 0

#24
SleepyDude

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,401 posts

Hi,

 

I have to check what is going one with aswMBR...

 

I would like to see a new log, please run FRST64 but this time make sure you uncheck the options:

  • Registry
  • Services
  • Processes

Click Scan and post the new FRST.TXT log

 


  • 0

#25
scottzajaczkowski

scottzajaczkowski

    Member

  • Topic Starter
  • Member
  • PipPip
  • 23 posts
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-10-2014 01
Ran by Scott (administrator) on SCOTT-PC on 07-10-2014 18:00:20
Running from C:\Users\Scott\Desktop
Loaded Profile: Scott (Available profiles: Scott)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (All) =========================
(Microsoft Corporation) C:\Windows\System32\smss.exe
(Microsoft Corporation) C:\Windows\System32\csrss.exe
(Microsoft Corporation) C:\Windows\System32\wininit.exe
(Microsoft Corporation) C:\Windows\System32\csrss.exe
(Microsoft Corporation) C:\Windows\System32\services.exe
(Microsoft Corporation) C:\Windows\System32\lsass.exe
(Microsoft Corporation) C:\Windows\System32\lsm.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\winlogon.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\spoolsv.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Microsoft Corporation) C:\Windows\System32\taskhost.exe
(Microsoft Corporation) C:\Windows\System32\taskeng.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Microsoft Corporation) C:\Windows\System32\dwm.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Microsoft Corporation) C:\Windows\explorer.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Windows\SysWOW64\irstrtsv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Corporation) C:\Windows\System32\conhost.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Microsoft Corporation) C:\Windows\System32\WUDFHost.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
(Microsoft Corporation) C:\Windows\System32\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Windows\System32\SearchIndexer.exe
(Samsung Electronics CO., LTD.) C:\Program Files (x86)\Samsung\Easy Software Manager\SWMAgent.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\wmpnetwk.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe
(Microsoft Corporation) C:\Windows\System32\taskeng.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\MovieColorEnhancer.exe
(Samsung Electronics) C:\Program Files (x86)\Samsung\Easy Settings\EasySpeedUpManager.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\Easy Support Center\SamoyedAgent.exe
(SEC) C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel® Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\svchost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ismagent.exe
() C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\updateui.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files (x86)\Internet Explorer\iexplore.exe
(Farbar) C:\Users\Scott\Desktop\FRST64.exe
(Microsoft Corporation) C:\Windows\System32\SearchProtocolHost.exe
(Microsoft Corporation) C:\Windows\System32\SearchFilterHost.exe

==================== Registry (All) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IgfxTray] => C:\windows\system32\igfxtray.exe [170264 2012-02-02] (Intel Corporation)
HKLM\...\Run: [HotKeysCmds] => C:\windows\system32\hkcmd.exe [398104 2012-02-02] (Intel Corporation)
HKLM\...\Run: [Persistence] => C:\windows\system32\igfxpers.exe [440600 2012-02-02] (Intel Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12460136 2012-03-29] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2816336 2012-05-08] (ELAN Microelectronics Corp.)
HKLM\...\Run: [BLEServicesCtrl] => C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe [177936 2012-02-17] (Intel Corporation)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe, [30720 2010-11-20] (Microsoft Corporation)
HKLM-x32\...\Winlogon: [Userinit] C:\Windows\sysWOW64\userinit.exe [26624 2010-11-20] (Microsoft Corporation)
HKLM\...\Winlogon: [Shell] explorer.exe [2871808 2011-02-25] (Microsoft Corporation)
HKLM-x32\...\Winlogon: [Shell] explorer.exe [2616320 2011-02-25] (Microsoft Corporation)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [NoActiveDesktop] 1
HKLM\...\Policies\Explorer: [NoActiveDesktopChanges] 1
HKLM\...\Policies\Explorer: [ForceActiveDesktopOn] 0
HKU\S-1-5-19\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\Sidebar.exe [1475584 2010-11-20] (Microsoft Corporation)
HKU\S-1-5-19\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-13] (Microsoft Corporation)
HKU\S-1-5-20\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\Sidebar.exe [1475584 2010-11-20] (Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [mctadmin] => C:\Windows\System32\mctadmin.exe [97280 2009-07-13] (Microsoft Corporation)
HKU\S-1-5-21-860519808-2140715989-319308476-1000\...\Policies\system: [DisableRegistryTools] 0
HKU\S-1-5-21-860519808-2140715989-319308476-1000\...\Policies\system: [DisableTaskMgr] 0
Lsa: [Authentication Packages] msv1_0
Lsa: [Notification Packages] scecli
SecurityProviders: credssp.dll
SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No File
SSODL-x32: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No File
ShellIconOverlayIdentifiers: [EnhancedStorageShell] -> {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D} => C:\Windows\system32\EhStorShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [SharingPrivate] -> {08244EE6-92F0-47f2-9FC9-929BAA2E7235} => C:\Windows\system32\ntshrui.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [EnhancedStorageShell] -> {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D} => C:\Windows\SysWOW64\EhStorShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [SharingPrivate] -> {08244EE6-92F0-47f2-9FC9-929BAA2E7235} => C:\Windows\SysWOW64\ntshrui.dll (Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean64.exe
AlternateShell: cmd.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: localhost:8080
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung.msn.com
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76

FireFox:
========
FF ProfilePath: C:\Users\Scott\AppData\Roaming\Mozilla\Firefox\Profiles\bijhmdj4.default
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

Chrome:
=======

==================== Services (All) ========================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 AeLookupSvc; C:\Windows\System32\aelupsvc.dll [72192 2009-07-13] (Microsoft Corporation)
S3 ALG; C:\Windows\System32\alg.exe [79360 2009-07-13] (Microsoft Corporation)
R2 AMPPALR3; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [659968 2011-12-04] (Intel Corporation)
S3 AppIDSvc; C:\Windows\System32\appidsvc.dll [32256 2009-07-13] (Microsoft Corporation)
R3 Appinfo; C:\Windows\System32\appinfo.dll [70144 2013-02-27] (Microsoft Corporation)
S4 aspnet_state; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [51808 2013-09-11] (Microsoft Corporation)
R2 AudioEndpointBuilder; C:\Windows\System32\Audiosrv.dll [679424 2010-11-20] (Microsoft Corporation)
R2 AudioSrv; C:\Windows\System32\Audiosrv.dll [679424 2010-11-20] (Microsoft Corporation)
S3 AxInstSV; C:\Windows\System32\AxInstSV.dll [114688 2010-11-20] (Microsoft Corporation)
S3 BDESVC; C:\Windows\System32\bdesvc.dll [100864 2009-07-13] (Microsoft Corporation)
R2 BFE; C:\Windows\System32\bfe.dll [705024 2010-11-20] (Microsoft Corporation)
R3 BITS; C:\Windows\System32\qmgr.dll [849920 2010-11-20] (Microsoft Corporation)
R2 Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [1014096 2012-02-21] (Intel Corporation)
R3 Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [1304912 2012-02-21] (Intel Corporation)
R2 Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [1104208 2012-02-21] (Intel Corporation)
R3 Browser; C:\Windows\System32\browser.dll [136704 2012-07-04] (Microsoft Corporation)
R3 bthserv; C:\Windows\system32\bthserv.dll [83968 2009-07-13] (Microsoft Corporation)
R2 BTHSSecurityMgr; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [135952 2011-12-04] (Intel® Corporation)
S3 CertPropSvc; C:\Windows\System32\certprop.dll [80384 2010-11-20] (Microsoft Corporation)
S4 clr_optimization_v2.0.50727_32; C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [67224 2014-03-20] (Microsoft Corporation)
S4 clr_optimization_v2.0.50727_64; C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [90776 2014-03-20] (Microsoft Corporation)
S2 clr_optimization_v4.0.30319_32; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [105144 2013-09-11] (Microsoft Corporation)
S2 clr_optimization_v4.0.30319_64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [124088 2013-09-11] (Microsoft Corporation)
S3 COMSysApp; C:\Windows\system32\dllhost.exe [9728 2009-07-13] (Microsoft Corporation)
S3 COMSysApp; C:\Windows\SysWOW64\dllhost.exe [7168 2009-07-13] (Microsoft Corporation)
S3 cphs; C:\Windows\SysWow64\IntelCpHeciSvc.exe [274200 2012-02-02] (Intel Corporation)
R2 CryptSvc; C:\Windows\system32\cryptsvc.dll [184320 2013-07-09] (Microsoft Corporation)
R2 CryptSvc; C:\Windows\SysWOW64\cryptsvc.dll [140288 2013-07-09] (Microsoft Corporation)
R2 DcomLaunch; C:\Windows\system32\rpcss.dll [512000 2010-11-20] (Microsoft Corporation)
S3 defragsvc; C:\Windows\System32\defragsvc.dll [291328 2009-07-13] (Microsoft Corporation)
R2 Dhcp; C:\Windows\system32\dhcpcore.dll [317952 2010-11-20] (Microsoft Corporation)
R2 Dhcp; C:\Windows\SysWOW64\dhcpcore.dll [254464 2010-11-20] (Microsoft Corporation)
R2 Dnscache; C:\Windows\System32\dnsrslvr.dll [183296 2011-03-03] (Microsoft Corporation)
S3 dot3svc; C:\Windows\System32\dot3svc.dll [252416 2010-11-20] (Microsoft Corporation)
R2 DPS; C:\Windows\system32\dps.dll [162816 2010-11-20] (Microsoft Corporation)
R3 EapHost; C:\Windows\System32\eapsvc.dll [111104 2009-07-13] (Microsoft Corporation)
S3 EFS; C:\Windows\System32\lsass.exe [31232 2014-04-11] (Microsoft Corporation)
S3 ehRecvr; C:\Windows\ehome\ehRecvr.exe [696832 2010-11-20] (Microsoft Corporation)
S3 ehSched; C:\Windows\ehome\ehsched.exe [127488 2009-07-13] (Microsoft Corporation)
R2 eventlog; C:\Windows\System32\wevtsvc.dll [1646080 2010-11-20] (Microsoft Corporation)
R2 EventSystem; C:\Windows\system32\es.dll [402944 2009-07-13] (Microsoft Corporation)
R2 EventSystem; C:\Windows\SysWOW64\es.dll [271360 2009-07-13] (Microsoft Corporation)
R2 EvtEng; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [618256 2011-12-07] (Intel® Corporation)
S3 Fax; C:\Windows\system32\fxssvc.exe [689152 2010-11-20] (Microsoft Corporation)
R3 fdPHost; C:\Windows\system32\fdPHost.dll [16384 2009-07-13] (Microsoft Corporation)
R3 FDResPub; C:\Windows\system32\fdrespub.dll [34816 2009-07-13] (Microsoft Corporation)
R2 FontCache; C:\Windows\system32\FntCache.dll [1175552 2014-10-04] (Microsoft Corporation)
S3 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [42856 2010-11-20] (Microsoft Corporation)
S3 GameConsoleService; C:\Program Files (x86)\WildGames\Game Console - WildGames\GameConsoleService.exe [246520 2010-06-03] (WildTangent, Inc.)
R2 gpsvc; C:\Windows\System32\gpsvc.dll [777728 2010-11-20] (Microsoft Corporation)
S3 hidserv; C:\Windows\system32\hidserv.dll [38912 2009-07-13] (Microsoft Corporation)
S3 hidserv; C:\Windows\SysWOW64\hidserv.dll [49152 2009-07-13] (Microsoft Corporation)
S3 hkmsvc; C:\Windows\system32\kmsvc.dll [90624 2010-11-20] (Microsoft Corporation)
S3 HomeGroupListener; C:\Windows\system32\ListSvc.dll [232448 2010-11-20] (Microsoft Corporation)
R3 HomeGroupProvider; C:\Windows\system32\provsvc.dll [187904 2010-11-20] (Microsoft Corporation)
R3 HomeGroupProvider; C:\Windows\SysWOW64\provsvc.dll [165376 2010-11-20] (Microsoft Corporation)
S3 idsvc; C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe [859280 2014-06-30] (Microsoft Corporation)
S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [111616 2014-10-04] (Microsoft Corporation)
R2 IKEEXT; C:\Windows\System32\ikeext.dll [859648 2013-10-11] (Microsoft Corporation)
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [628448 2012-02-02] (Intel® Corporation)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-02-07] ()
S3 IPBusEnum; C:\Windows\system32\ipbusenum.dll [101888 2009-07-13] (Microsoft Corporation)
R2 iphlpsvc; C:\Windows\System32\iphlpsvc.dll [569344 2012-10-03] (Microsoft Corporation)
R2 irstrtsv; C:\windows\SysWOW64\irstrtsv.exe [193536 2012-02-06] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [161560 2012-02-07] (Intel Corporation)
R3 KeyIso; C:\Windows\system32\lsass.exe [31232 2014-04-11] (Microsoft Corporation)
S3 KtmRm; C:\Windows\system32\msdtckrm.dll [368640 2009-07-13] (Microsoft Corporation)
R2 LanmanServer; C:\Windows\system32\srvsvc.dll [236032 2010-11-20] (Microsoft Corporation)
R2 LanmanWorkstation; C:\Windows\System32\wkssvc.dll [118784 2010-11-20] (Microsoft Corporation)
S3 lltdsvc; C:\Windows\System32\lltdsvc.dll [300032 2009-07-13] (Microsoft Corporation)
R2 lmhosts; C:\Windows\System32\lmhsvc.dll [23552 2009-07-13] (Microsoft Corporation)
R2 LMS; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [277784 2012-02-07] (Intel Corporation)
S4 Mcx2Svc; C:\Windows\system32\Mcx2Svc.dll [84992 2010-11-20] (Microsoft Corporation)
R2 MMCSS; C:\Windows\system32\mmcss.dll [67584 2009-07-13] (Microsoft Corporation)
S3 MozillaMaintenance; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [114288 2014-09-24] (Mozilla Foundation)
R2 MpsSvc; C:\Windows\system32\mpssvc.dll [828416 2010-11-20] (Microsoft Corporation)
S3 MSDTC; C:\Windows\System32\msdtc.exe [141824 2009-07-13] (Microsoft Corporation)
S3 MSiSCSI; C:\Windows\system32\iscsiexe.dll [156672 2009-07-13] (Microsoft Corporation)
S3 msiserver; C:\Windows\System32\msiexec.exe [128000 2010-11-20] (Microsoft Corporation)
S3 msiserver; C:\Windows\SysWOW64\msiexec.exe [73216 2010-11-20] (Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273168 2011-12-07] ()
S3 napagent; C:\Windows\system32\qagentRT.dll [476160 2010-11-20] (Microsoft Corporation)
S3 Netlogon; C:\Windows\system32\lsass.exe [31232 2014-04-11] (Microsoft Corporation)
R3 Netman; C:\Windows\System32\netman.dll [360448 2009-07-13] (Microsoft Corporation)
S4 NetMsmqActivator; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139856 2013-09-11] (Microsoft Corporation)
S4 NetPipeActivator; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139856 2013-09-11] (Microsoft Corporation)
R3 netprofm; C:\Windows\System32\netprofm.dll [459776 2009-07-13] (Microsoft Corporation)
R3 netprofm; C:\Windows\SysWOW64\netprofm.dll [360448 2009-07-13] (Microsoft Corporation)
S4 NetTcpActivator; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139856 2013-09-11] (Microsoft Corporation)
S4 NetTcpPortSharing; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139856 2013-09-11] (Microsoft Corporation)
R2 NlaSvc; C:\Windows\System32\nlasvc.dll [303104 2012-10-03] (Microsoft Corporation)
R2 nsi; C:\Windows\system32\nsisvc.dll [25600 2009-07-13] (Microsoft Corporation)
S3 p2pimsvc; C:\Windows\system32\pnrpsvc.dll [327168 2009-07-13] (Microsoft Corporation)
S3 p2psvc; C:\Windows\system32\p2psvc.dll [438784 2009-07-13] (Microsoft Corporation)
R2 PcaSvc; C:\Windows\System32\pcasvc.dll [186368 2009-07-13] (Microsoft Corporation)
S3 PerfHost; C:\Windows\SysWow64\perfhost.exe [20992 2009-07-13] (Microsoft Corporation)
S3 pla; C:\Windows\system32\pla.dll [1389056 2010-11-20] (Microsoft Corporation)
S3 pla; C:\Windows\SysWOW64\pla.dll [1508864 2010-11-20] (Microsoft Corporation)
R2 PlugPlay; C:\Windows\system32\umpnpmgr.dll [404480 2011-05-24] (Microsoft Corporation)
S3 PNRPAutoReg; C:\Windows\system32\pnrpauto.dll [25088 2009-07-13] (Microsoft Corporation)
S3 PNRPsvc; C:\Windows\system32\pnrpsvc.dll [327168 2009-07-13] (Microsoft Corporation)
R3 PolicyAgent; C:\Windows\System32\ipsecsvc.dll [501248 2010-11-20] (Microsoft Corporation)
R2 Power; C:\Windows\system32\umpo.dll [163840 2009-07-13] (Microsoft Corporation)
R2 ProfSvc; C:\Windows\system32\profsvc.dll [209920 2012-05-01] (Microsoft Corporation)
S3 ProtectedStorage; C:\Windows\system32\lsass.exe [31232 2014-04-11] (Microsoft Corporation)
S3 QWAVE; C:\Windows\system32\qwave.dll [242688 2009-07-13] (Microsoft Corporation)
S3 RasAuto; C:\Windows\System32\rasauto.dll [99328 2009-07-13] (Microsoft Corporation)
S3 RasMan; C:\Windows\System32\rasmans.dll [344064 2010-11-20] (Microsoft Corporation)
R2 RegSrvc; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [148752 2011-12-07] (Intel® Corporation)
S4 RemoteAccess; C:\Windows\System32\mprdim.dll [97792 2009-07-13] (Microsoft Corporation)
S4 RemoteAccess; C:\Windows\SysWOW64\mprdim.dll [75264 2009-07-13] (Microsoft Corporation)
S3 RemoteRegistry; C:\Windows\system32\regsvc.dll [159232 2009-07-13] (Microsoft Corporation)
R2 RpcEptMapper; C:\Windows\System32\RpcEpMap.dll [67072 2009-07-13] (Microsoft Corporation)
S3 RpcLocator; C:\Windows\system32\locator.exe [10240 2009-07-13] (Microsoft Corporation)
R2 RpcSs; C:\Windows\system32\rpcss.dll [512000 2010-11-20] (Microsoft Corporation)
R2 SamSs; C:\Windows\system32\lsass.exe [31232 2014-04-11] (Microsoft Corporation)
R2 SamsungDeviceConfigurationWinService; C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe [31624 2012-02-13] () [File not signed]
S3 SCardSvr; C:\Windows\System32\SCardSvr.dll [190976 2009-07-13] (Microsoft Corporation)
R2 Schedule; C:\Windows\system32\schedsvc.dll [1110016 2010-11-20] (Microsoft Corporation)
S3 SCPolicySvc; C:\Windows\System32\certprop.dll [80384 2010-11-20] (Microsoft Corporation)
S3 SDRSVC; C:\Windows\System32\SDRSVC.dll [170496 2010-11-20] (Microsoft Corporation)
S3 seclogon; C:\Windows\system32\seclogon.dll [30720 2010-11-20] (Microsoft Corporation)
R2 SENS; C:\Windows\System32\sens.dll [64512 2009-07-13] (Microsoft Corporation)
R2 SENS; C:\Windows\SysWOW64\sens.dll [49664 2009-07-13] (Microsoft Corporation)
R2 SensrSvc; C:\Windows\system32\sensrsvc.dll [29184 2009-07-13] (Microsoft Corporation)
S3 SessionEnv; C:\Windows\system32\sessenv.dll [121856 2010-11-20] (Microsoft Corporation)
S3 SessionEnv; C:\Windows\SysWOW64\sessenv.dll [113664 2010-11-20] (Microsoft Corporation)
S4 SharedAccess; C:\Windows\System32\ipnathlp.dll [359424 2009-07-13] (Microsoft Corporation)
R2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [370688 2010-11-20] (Microsoft Corporation)
R2 ShellHWDetection; C:\Windows\SysWOW64\shsvcs.dll [328192 2010-11-20] (Microsoft Corporation)
S3 SNMPTRAP; C:\Windows\System32\snmptrap.exe [14336 2009-07-13] (Microsoft Corporation)
R2 Spooler; C:\Windows\System32\spoolsv.exe [559104 2010-11-20] (Microsoft Corporation)
S2 sppsvc; C:\Windows\system32\sppsvc.exe [3524608 2010-11-20] (Microsoft Corporation)
S3 sppuinotify; C:\Windows\system32\sppuinotify.dll [65536 2009-07-13] (Microsoft Corporation)
R3 SSDPSRV; C:\Windows\System32\ssdpsrv.dll [193024 2009-07-13] (Microsoft Corporation)
S3 SstpSvc; C:\Windows\system32\sstpsvc.dll [75264 2009-07-13] (Microsoft Corporation)
S2 stisvc; C:\Windows\System32\wiaservc.dll [580096 2010-11-20] (Microsoft Corporation)
S3 swprv; C:\Windows\System32\swprv.dll [524288 2009-07-13] (Microsoft Corporation)
R2 SysMain; C:\Windows\system32\sysmain.dll [1743360 2010-11-20] (Microsoft Corporation)
S3 TabletInputService; C:\Windows\System32\TabSvc.dll [92672 2010-11-20] (Microsoft Corporation)
S3 TapiSrv; C:\Windows\System32\tapisrv.dll [316928 2010-11-20] (Microsoft Corporation)
S3 TapiSrv; C:\Windows\SysWOW64\tapisrv.dll [242176 2010-11-20] (Microsoft Corporation)
S3 TBS; C:\Windows\System32\tbssvc.dll [65536 2009-07-13] (Microsoft Corporation)
S3 TermService; C:\Windows\System32\termsrv.dll [680960 2010-11-20] (Microsoft Corporation)
R2 Themes; C:\Windows\system32\themeservice.dll [44544 2009-07-13] (Microsoft Corporation)
S3 THREADORDER; C:\Windows\system32\mmcss.dll [67584 2009-07-13] (Microsoft Corporation)
R2 TrkWks; C:\Windows\System32\trkwks.dll [119808 2009-07-13] (Microsoft Corporation)
S3 TrustedInstaller; C:\Windows\servicing\TrustedInstaller.exe [194048 2010-11-20] (Microsoft Corporation)
S3 UI0Detect; C:\Windows\system32\UI0Detect.exe [40960 2009-07-13] (Microsoft Corporation)
R2 UNS; C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [363800 2012-02-07] (Intel Corporation)
S3 upnphost; C:\Windows\System32\upnphost.dll [353792 2009-07-13] (Microsoft Corporation)
S3 upnphost; C:\Windows\SysWOW64\upnphost.dll [266752 2009-07-13] (Microsoft Corporation)
R2 UxSms; C:\Windows\System32\uxsms.dll [38912 2009-07-13] (Microsoft Corporation)
S3 VaultSvc; C:\Windows\system32\lsass.exe [31232 2014-04-11] (Microsoft Corporation)
S3 vds; C:\Windows\System32\vds.exe [533504 2010-11-20] (Microsoft Corporation)
S3 VSS; C:\Windows\system32\vssvc.exe [1600512 2010-11-20] (Microsoft Corporation)
S3 W32Time; C:\Windows\system32\w32time.dll [381952 2009-07-13] (Microsoft Corporation)
S3 WatAdminSvc; C:\Windows\system32\Wat\WatAdminSvc.exe [1255736 2014-10-04] (Microsoft Corporation)
S3 wbengine; C:\Windows\system32\wbengine.exe [1504256 2010-11-20] (Microsoft Corporation)
S3 WbioSrvc; C:\Windows\System32\wbiosrvc.dll [202240 2009-07-13] (Microsoft Corporation)
S3 wcncsvc; C:\Windows\System32\wcncsvc.dll [367104 2010-11-20] (Microsoft Corporation)
S3 wcncsvc; C:\Windows\SysWOW64\wcncsvc.dll [276992 2010-11-20] (Microsoft Corporation)
S3 WcsPlugInService; C:\Windows\System32\WcsPlugInService.dll [40960 2009-07-13] (Microsoft Corporation)
S3 WcsPlugInService; C:\Windows\SysWOW64\WcsPlugInService.dll [32768 2009-07-13] (Microsoft Corporation)
R3 WdiServiceHost; C:\Windows\system32\wdi.dll [90624 2009-07-13] (Microsoft Corporation)
R3 WdiServiceHost; C:\Windows\SysWOW64\wdi.dll [76288 2009-07-13] (Microsoft Corporation)
S3 WdiSystemHost; C:\Windows\system32\wdi.dll [90624 2009-07-13] (Microsoft Corporation)
S3 WdiSystemHost; C:\Windows\SysWOW64\wdi.dll [76288 2009-07-13] (Microsoft Corporation)
S3 WebClient; C:\Windows\System32\webclnt.dll [259584 2013-07-04] (Microsoft Corporation)
S3 WebClient; C:\Windows\SysWOW64\webclnt.dll [205824 2013-07-04] (Microsoft Corporation)
S3 Wecsvc; C:\Windows\system32\wecsvc.dll [237568 2009-07-13] (Microsoft Corporation)
S3 wercplsupport; C:\Windows\System32\wercplsupport.dll [84480 2009-07-13] (Microsoft Corporation)
S3 WerSvc; C:\Windows\System32\WerSvc.dll [76800 2009-07-13] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S3 WinHttpAutoProxySvc; C:\windows\system32\winhttp.dll [444416 2010-11-20] (Microsoft Corporation)
S3 WinHttpAutoProxySvc; C:\windows\SysWOW64\winhttp.dll [351232 2010-11-20] (Microsoft Corporation)
R2 Winmgmt; C:\Windows\system32\wbem\WMIsvc.dll [242688 2009-07-13] (Microsoft Corporation)
S3 WinRM; C:\Windows\system32\WsmSvc.dll [2018304 2010-11-20] (Microsoft Corporation)
S3 WinRM; C:\Windows\SysWOW64\WsmSvc.dll [1175040 2010-11-20] (Microsoft Corporation)
R2 Wlansvc; C:\Windows\System32\wlansvc.dll [886784 2009-07-13] (Microsoft Corporation)
S4 wlcrasvc; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [57184 2010-09-22] (Microsoft Corporation)
R2 wlidsvc; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2292096 2011-03-28] (Microsoft Corp.)
S3 wmiApSrv; C:\Windows\system32\wbem\WmiApSrv.exe [203264 2009-07-13] (Microsoft Corporation)
R3 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [1525248 2010-11-20] (Microsoft Corporation)
S3 WPCSvc; C:\Windows\System32\wpcsvc.dll [12288 2009-07-13] (Microsoft Corporation)
S3 WPCSvc; C:\Windows\SysWOW64\wpcsvc.dll [10752 2009-07-13] (Microsoft Corporation)
S3 WPDBusEnum; C:\Windows\system32\wpdbusenum.dll [117248 2010-11-20] (Microsoft Corporation)
R2 wscsvc; C:\Windows\System32\wscsvc.dll [97280 2009-07-13] (Microsoft Corporation)
R2 WSearch; C:\Windows\system32\SearchIndexer.exe [591872 2011-05-04] (Microsoft Corporation)
R2 WSearch; C:\Windows\SysWOW64\SearchIndexer.exe [427520 2011-05-04] (Microsoft Corporation)
R2 wuauserv; C:\Windows\system32\wuaueng.dll [2477536 2014-05-14] (Microsoft Corporation)
R3 wudfsvc; C:\Windows\System32\WUDFSvc.dll [84992 2012-07-25] (Microsoft Corporation)
S3 WwanSvc; C:\Windows\System32\wwansvc.dll [228864 2014-01-27] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [594704 2011-12-07] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 irstrtdv; C:\Windows\System32\DRIVERS\irstrtdv.sys [26504 2012-02-06] (Intel Corporation)
R3 rusb3hub; C:\Windows\System32\DRIVERS\rusb3hub.sys [100352 2011-10-08] (Renesas Electronics Corporation)
R3 rusb3xhc; C:\Windows\System32\DRIVERS\rusb3xhc.sys [216064 2011-10-08] (Renesas Electronics Corporation)
S3 Serial; C:\Windows\system32\drivers\serial.sys [94208 2009-07-13] (Brother Industries Ltd.)
S3 clwvd; system32\DRIVERS\clwvd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-07 16:33 - 2014-10-07 16:33 - 00001165 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-10-07 16:33 - 2014-10-07 16:33 - 00001153 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-10-07 16:33 - 2014-10-07 16:33 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-07 16:33 - 2014-10-07 16:33 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-10-07 16:32 - 2014-10-07 16:32 - 00244136 _____ () C:\Users\Scott\Downloads\Firefox Setup Stub 32.0.3.exe
2014-10-07 09:52 - 2014-10-07 18:00 - 00030498 _____ () C:\Users\Scott\Desktop\FRST.txt
2014-10-07 09:31 - 2014-10-07 09:31 - 00000616 _____ () C:\Users\Scott\Desktop\aswMBR.txt
2014-10-06 22:49 - 2014-10-06 20:03 - 02109952 _____ (Farbar) C:\Users\Scott\Desktop\FRST64.exe
2014-10-06 20:15 - 2014-10-07 18:00 - 00000000 ____D () C:\Users\Scott\Desktop\ebfe0bb6909f099
2014-10-06 20:15 - 2014-10-06 20:04 - 01375089 _____ () C:\Users\Scott\Desktop\adwcleaner_3.311.exe
2014-10-06 20:15 - 2014-10-06 20:03 - 05185536 _____ (AVAST Software) C:\Users\Scott\Desktop\aswmbr.exe
2014-10-04 20:46 - 2014-10-07 18:00 - 00000000 ____D () C:\FRST
2014-10-04 20:44 - 2014-10-04 20:44 - 00000000 ____H () C:\windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-10-04 17:34 - 2014-10-06 21:15 - 00000000 ____D () C:\Users\Scott\AppData\Local\CrashDumps
2014-10-04 10:29 - 2013-05-10 01:56 - 14631424 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2014-10-04 10:29 - 2013-05-10 01:56 - 12625920 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2014-10-04 10:29 - 2013-05-10 00:56 - 12625408 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmploc.DLL
2014-10-04 10:29 - 2013-05-10 00:56 - 11410432 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmp.dll
2014-10-04 10:24 - 2014-10-05 10:16 - 00760838 _____ () C:\windows\SysWOW64\PerfStringBackup.INI
2014-10-04 10:19 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\windows\system32\IEUDINIT.EXE
2014-10-04 10:17 - 2014-10-04 10:17 - 23591424 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 17455104 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 13588480 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 11769856 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 05833728 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 04232704 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 02793984 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-10-04 10:17 - 2014-10-04 10:17 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-10-04 10:17 - 2014-10-04 10:17 - 02310656 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 02185728 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 02104832 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-10-04 10:17 - 2014-10-04 10:17 - 02014208 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2014-10-04 10:17 - 2014-10-04 10:17 - 01812992 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 01447424 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 01249280 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 01190400 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 01068032 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00942592 _____ (Microsoft Corporation) C:\windows\system32\jsIntl.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00775168 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00774144 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00758272 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00727040 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00707072 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00678400 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00645120 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsIntl.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00616104 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dat
2014-10-04 10:17 - 2014-10-04 10:17 - 00616104 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dat
2014-10-04 10:17 - 2014-10-04 10:17 - 00610304 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00603136 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00597504 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00596480 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00547328 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00454656 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00446464 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00440320 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00413696 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2014-10-04 10:17 - 2014-10-04 10:17 - 00374968 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00365056 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2014-10-04 10:17 - 2014-10-04 10:17 - 00327872 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00289280 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00247808 _____ (Microsoft Corporation) C:\windows\system32\msls31.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00243200 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00243200 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00235520 _____ (Microsoft Corporation) C:\windows\system32\url.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00235008 _____ (Microsoft Corporation) C:\windows\system32\elshyph.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00233472 _____ (Microsoft Corporation) C:\windows\SysWOW64\url.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00208384 _____ (Microsoft Corporation) C:\windows\SysWOW64\webcheck.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00194048 _____ (Microsoft Corporation) C:\windows\SysWOW64\elshyph.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00182272 _____ (Microsoft Corporation) C:\windows\SysWOW64\msls31.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00167424 _____ (Microsoft Corporation) C:\windows\system32\iexpress.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00151552 _____ (Microsoft Corporation) C:\windows\SysWOW64\iexpress.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00147968 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00143872 _____ (Microsoft Corporation) C:\windows\system32\wextract.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00139264 _____ (Microsoft Corporation) C:\windows\SysWOW64\wextract.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00135680 _____ (Microsoft Corporation) C:\windows\system32\iepeers.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00131072 _____ (Microsoft Corporation) C:\windows\system32\IEAdvpack.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00127488 _____ (Microsoft Corporation) C:\windows\SysWOW64\occache.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00116736 _____ (Microsoft Corporation) C:\windows\SysWOW64\iepeers.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00111616 _____ (Microsoft Corporation) C:\windows\SysWOW64\IEAdvpack.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00105984 _____ (Microsoft Corporation) C:\windows\system32\iesysprep.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00101376 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00090112 _____ (Microsoft Corporation) C:\windows\system32\SetIEInstalledDate.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00086016 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesysprep.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00086016 _____ (Microsoft Corporation) C:\windows\system32\RegisterIEPKEYs.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00085504 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00083456 _____ (Microsoft Corporation) C:\windows\SysWOW64\inseng.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\icardie.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\tdc.ocx
2014-10-04 10:17 - 2014-10-04 10:17 - 00074240 _____ (Microsoft Corporation) C:\windows\SysWOW64\SetIEInstalledDate.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00072704 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00071680 _____ (Microsoft Corporation) C:\windows\SysWOW64\RegisterIEPKEYs.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00069120 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardie.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdc.ocx
2014-10-04 10:17 - 2014-10-04 10:17 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\pngfilt.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00056832 _____ (Microsoft Corporation) C:\windows\SysWOW64\pngfilt.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\msfeedsbs.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00048640 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmler.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\mshtmler.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00048128 _____ (Microsoft Corporation) C:\windows\system32\imgutil.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedsbs.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00036352 _____ (Microsoft Corporation) C:\windows\SysWOW64\imgutil.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\licmgr10.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\licmgr10.dll
2014-10-04 10:17 - 2014-10-04 10:17 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\mshta.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00013312 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshta.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\msfeedssync.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00012800 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeedssync.exe
2014-10-04 10:17 - 2014-10-04 10:17 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 03928064 _____ (Microsoft Corporation) C:\windows\system32\d2d1.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 03419136 _____ (Microsoft Corporation) C:\windows\SysWOW64\d2d1.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 02776576 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 02565120 _____ (Microsoft Corporation) C:\windows\system32\d3d10warp.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 02284544 _____ (Microsoft Corporation) C:\windows\SysWOW64\msmpeg2vdec.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 01988096 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10warp.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 01682432 _____ (Microsoft Corporation) C:\windows\system32\XpsPrint.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 01643520 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 01424384 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 01247744 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 01238528 _____ (Microsoft Corporation) C:\windows\system32\d3d10.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 01230336 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecs.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 01175552 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 01158144 _____ (Microsoft Corporation) C:\windows\SysWOW64\XpsPrint.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 01080832 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00648192 _____ (Microsoft Corporation) C:\windows\system32\d3d10level9.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00604160 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10level9.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00522752 _____ (Microsoft Corporation) C:\windows\system32\XpsGdiConverter.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00465920 _____ (Microsoft Corporation) C:\windows\system32\WMPhoto.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00417792 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMPhoto.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00364544 _____ (Microsoft Corporation) C:\windows\SysWOW64\XpsGdiConverter.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00363008 _____ (Microsoft Corporation) C:\windows\system32\dxgi.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00333312 _____ (Microsoft Corporation) C:\windows\system32\d3d10_1core.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\d3d10core.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00293376 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxgi.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00249856 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10_1core.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00245248 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecsExt.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\UIAnimation.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00220160 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10core.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00207872 _____ (Microsoft Corporation) C:\windows\SysWOW64\WindowsCodecsExt.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00194560 _____ (Microsoft Corporation) C:\windows\system32\d3d10_1.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00187392 _____ (Microsoft Corporation) C:\windows\SysWOW64\UIAnimation.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00161792 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10_1.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00010752 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00010752 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00009728 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00009728 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00005632 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00005632 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00005632 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00005632 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00002560 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-10-04 10:14 - 2014-10-04 10:14 - 00002560 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-10-04 10:13 - 2014-10-04 10:20 - 00012469 _____ () C:\windows\IE11_main.log
2014-10-04 09:48 - 2012-07-25 23:08 - 00744448 _____ (Microsoft Corporation) C:\windows\system32\WUDFx.dll
2014-10-04 09:48 - 2012-07-25 23:08 - 00229888 _____ (Microsoft Corporation) C:\windows\system32\WUDFHost.exe
2014-10-04 09:48 - 2012-07-25 23:08 - 00194048 _____ (Microsoft Corporation) C:\windows\system32\WUDFPlatform.dll
2014-10-04 09:48 - 2012-07-25 23:08 - 00084992 _____ (Microsoft Corporation) C:\windows\system32\WUDFSvc.dll
2014-10-04 09:48 - 2012-07-25 23:08 - 00045056 _____ (Microsoft Corporation) C:\windows\system32\WUDFCoinstaller.dll
2014-10-04 09:48 - 2012-07-25 22:26 - 00198656 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WUDFRd.sys
2014-10-04 09:48 - 2012-07-25 22:26 - 00087040 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WUDFPf.sys
2014-10-04 09:48 - 2012-06-02 10:57 - 00000003 _____ () C:\windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2014-10-04 09:44 - 2012-03-01 02:46 - 00023408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fs_rec.sys
2014-10-04 09:44 - 2012-03-01 02:38 - 00220672 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2014-10-04 09:44 - 2012-03-01 02:28 - 00005120 _____ (Microsoft Corporation) C:\windows\system32\wmi.dll
2014-10-04 09:44 - 2012-03-01 01:37 - 00172544 _____ (Microsoft Corporation) C:\windows\SysWOW64\wintrust.dll
2014-10-04 09:44 - 2012-03-01 01:29 - 00005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmi.dll
2014-10-04 09:40 - 2014-10-04 09:40 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-10-04 09:38 - 2014-06-30 18:24 - 00008856 _____ (Microsoft Corporation) C:\windows\system32\icardres.dll
2014-10-04 09:38 - 2014-06-30 18:14 - 00008856 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardres.dll
2014-10-04 09:38 - 2014-06-06 02:16 - 00035480 _____ (Microsoft Corporation) C:\windows\SysWOW64\TsWpfWrp.exe
2014-10-04 09:38 - 2014-06-06 02:12 - 00035480 _____ (Microsoft Corporation) C:\windows\system32\TsWpfWrp.exe
2014-10-04 09:38 - 2014-03-09 17:48 - 01389208 _____ (Microsoft Corporation) C:\windows\system32\icardagt.exe
2014-10-04 09:38 - 2014-03-09 17:48 - 00171160 _____ (Microsoft Corporation) C:\windows\system32\infocardapi.dll
2014-10-04 09:38 - 2014-03-09 17:47 - 00619672 _____ (Microsoft Corporation) C:\windows\SysWOW64\icardagt.exe
2014-10-04 09:38 - 2014-03-09 17:47 - 00099480 _____ (Microsoft Corporation) C:\windows\SysWOW64\infocardapi.dll
2014-10-03 17:43 - 2014-10-03 17:43 - 00000000 ____D () C:\Users\Scott\AppData\Local\Samsung
2014-10-03 17:10 - 2014-10-03 17:10 - 00099068 _____ () C:\Users\Scott\Downloads\OTL.Txt
2014-10-03 17:10 - 2014-10-03 17:10 - 00085638 _____ () C:\Users\Scott\Downloads\Extras.Txt
2014-10-03 16:51 - 2014-10-03 16:51 - 00602112 _____ (OldTimer Tools) C:\Users\Scott\Downloads\OTL.exe
2014-10-03 10:46 - 2013-10-03 22:16 - 00116736 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2014-10-03 10:46 - 2013-10-03 21:36 - 00230400 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2014-10-03 10:46 - 2013-08-04 22:25 - 00155584 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ataport.sys
2014-10-03 10:46 - 2013-07-12 06:41 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbcir.sys
2014-10-03 10:46 - 2013-07-03 00:05 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidclass.sys
2014-10-03 10:46 - 2013-07-03 00:05 - 00032896 _____ (Microsoft Corporation) C:\windows\system32\Drivers\hidparse.sys
2014-10-03 10:46 - 2011-04-09 02:58 - 00142336 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2014-10-03 10:46 - 2011-04-09 01:56 - 00123904 _____ (Microsoft Corporation) C:\windows\SysWOW64\poqexec.exe
2014-10-03 10:45 - 2013-09-07 22:27 - 00327168 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2014-10-03 10:45 - 2013-09-07 22:03 - 00231424 _____ (Microsoft Corporation) C:\windows\SysWOW64\mswsock.dll
2014-10-03 10:45 - 2013-08-28 22:17 - 05549504 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-10-03 10:45 - 2013-08-28 22:16 - 01732032 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2014-10-03 10:45 - 2013-08-28 22:16 - 00859648 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2014-10-03 10:45 - 2013-08-28 22:13 - 00878080 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2014-10-03 10:45 - 2013-08-28 21:51 - 03969472 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2014-10-03 10:45 - 2013-08-28 21:51 - 03914176 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2014-10-03 10:45 - 2013-08-28 21:50 - 01292192 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2014-10-03 10:45 - 2013-08-28 21:50 - 00619520 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdh.dll
2014-10-03 10:45 - 2013-08-28 21:48 - 00640512 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2014-10-03 10:44 - 2012-11-22 23:13 - 00068608 _____ (Microsoft Corporation) C:\windows\system32\taskhost.exe
2014-10-03 10:33 - 2014-10-03 10:33 - 00000045 _____ () C:\Users\Scott\AppData\Roaming\WB.CFG
2014-10-03 00:22 - 2014-10-03 00:22 - 00000472 _____ () C:\Users\Scott\Desktop\defogger_disable.log
2014-10-03 00:22 - 2014-10-03 00:22 - 00000000 _____ () C:\Users\Scott\defogger_reenable
2014-10-03 00:21 - 2014-10-03 00:21 - 00050477 _____ () C:\Users\Scott\Downloads\Defogger.exe
2014-10-02 23:27 - 2014-10-02 23:27 - 00000000 ____D () C:\windows\ERUNT
2014-10-02 23:21 - 2014-10-07 09:44 - 00000000 ____D () C:\AdwCleaner
2014-10-02 23:21 - 2014-10-02 23:21 - 01375089 _____ () C:\Users\Scott\Downloads\AdwCleaner.exe
2014-10-02 22:47 - 2014-10-02 22:47 - 00000000 ____D () C:\Users\Scott\AppData\Local\Amazon
2014-10-02 22:46 - 2014-10-02 22:46 - 00000085 _____ () C:\windows\wininit.ini
2014-10-02 17:52 - 2014-10-02 17:52 - 00000000 ____D () C:\ProgramData\Hewlett-Packard
2014-10-02 08:48 - 2014-01-27 22:32 - 00228864 _____ (Microsoft Corporation) C:\windows\system32\wwansvc.dll
2014-10-02 08:48 - 2013-10-29 22:32 - 00335360 _____ (Microsoft Corporation) C:\windows\system32\msieftp.dll
2014-10-02 08:48 - 2013-10-29 22:19 - 00301568 _____ (Microsoft Corporation) C:\windows\SysWOW64\msieftp.dll
2014-10-02 08:48 - 2013-07-04 08:50 - 00633856 _____ (Microsoft Corporation) C:\windows\system32\comctl32.dll
2014-10-02 08:48 - 2013-07-04 07:50 - 00530432 _____ (Microsoft Corporation) C:\windows\SysWOW64\comctl32.dll
2014-10-02 08:48 - 2013-03-19 01:53 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\wwanprotdim.dll
2014-10-02 08:48 - 2012-10-09 14:17 - 00226816 _____ (Microsoft Corporation) C:\windows\system32\dhcpcore6.dll
2014-10-02 08:48 - 2012-10-09 14:17 - 00055296 _____ (Microsoft Corporation) C:\windows\system32\dhcpcsvc6.dll
2014-10-02 08:48 - 2012-10-09 13:40 - 00193536 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcore6.dll
2014-10-02 08:48 - 2012-10-09 13:40 - 00044032 _____ (Microsoft Corporation) C:\windows\SysWOW64\dhcpcsvc6.dll
2014-10-02 08:47 - 2013-02-15 02:08 - 00044032 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll
2014-10-02 08:47 - 2013-02-15 02:06 - 03717632 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2014-10-02 08:47 - 2013-02-15 02:02 - 00158720 _____ (Microsoft Corporation) C:\windows\system32\aaclient.dll
2014-10-02 08:47 - 2013-02-15 00:37 - 03217408 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2014-10-02 08:47 - 2013-02-15 00:34 - 00131584 _____ (Microsoft Corporation) C:\windows\SysWOW64\aaclient.dll
2014-10-02 08:47 - 2013-02-14 23:25 - 00036864 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsgqec.dll
2014-10-02 08:46 - 2014-08-01 07:53 - 01031168 _____ (Microsoft Corporation) C:\windows\system32\TSWorkspace.dll
2014-10-02 08:46 - 2014-08-01 07:35 - 00793600 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSWorkspace.dll
2014-10-02 08:46 - 2014-04-24 22:34 - 00801280 _____ (Microsoft Corporation) C:\windows\system32\usp10.dll
2014-10-02 08:46 - 2014-04-24 22:06 - 00626688 _____ (Microsoft Corporation) C:\windows\SysWOW64\usp10.dll
2014-10-02 08:45 - 2014-04-04 22:47 - 01903552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2014-10-02 08:45 - 2014-04-04 22:47 - 00288192 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2014-10-02 08:45 - 2014-01-28 22:32 - 00484864 _____ (Microsoft Corporation) C:\windows\system32\wer.dll
2014-10-02 08:45 - 2014-01-28 22:06 - 00381440 _____ (Microsoft Corporation) C:\windows\SysWOW64\wer.dll
2014-10-02 08:45 - 2013-12-31 19:05 - 00420008 _____ () C:\windows\SysWOW64\locale.nls
2014-10-02 08:45 - 2013-12-31 19:04 - 00420008 _____ () C:\windows\system32\locale.nls
2014-10-02 08:45 - 2013-11-26 07:40 - 00376768 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2014-10-02 08:45 - 2013-10-18 22:18 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\imagehlp.dll
2014-10-02 08:45 - 2013-10-18 21:36 - 00159232 _____ (Microsoft Corporation) C:\windows\SysWOW64\imagehlp.dll
2014-10-02 08:45 - 2013-10-05 16:25 - 01474048 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2014-10-02 08:45 - 2013-10-05 15:57 - 01168384 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll
2014-10-02 08:45 - 2013-07-09 01:46 - 00184320 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2014-10-02 08:45 - 2013-07-09 01:46 - 00139776 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll
2014-10-02 08:45 - 2013-07-09 00:46 - 00140288 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsvc.dll
2014-10-02 08:45 - 2013-07-09 00:46 - 00103936 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptnet.dll
2014-10-02 08:44 - 2014-06-17 22:18 - 00692736 _____ (Microsoft Corporation) C:\windows\system32\osk.exe
2014-10-02 08:44 - 2014-06-17 21:51 - 00646144 _____ (Microsoft Corporation) C:\windows\SysWOW64\osk.exe
2014-10-02 08:44 - 2014-03-26 10:44 - 02002432 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2014-10-02 08:44 - 2014-03-26 10:44 - 01882112 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2014-10-02 08:44 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml6r.dll
2014-10-02 08:44 - 2014-03-26 10:41 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml3r.dll
2014-10-02 08:44 - 2014-03-26 10:27 - 01389056 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6.dll
2014-10-02 08:44 - 2014-03-26 10:27 - 01237504 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3.dll
2014-10-02 08:44 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6r.dll
2014-10-02 08:44 - 2014-03-26 10:25 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3r.dll
2014-10-02 08:44 - 2013-12-03 22:27 - 00488448 _____ (Microsoft Corporation) C:\windows\system32\secproc.dll
2014-10-02 08:44 - 2013-12-03 22:27 - 00485888 _____ (Microsoft Corporation) C:\windows\system32\secproc_isv.dll
2014-10-02 08:44 - 2013-12-03 22:27 - 00123392 _____ (Microsoft Corporation) C:\windows\system32\secproc_ssp_isv.dll
2014-10-02 08:44 - 2013-12-03 22:27 - 00123392 _____ (Microsoft Corporation) C:\windows\system32\secproc_ssp.dll
2014-10-02 08:44 - 2013-12-03 22:26 - 00528384 _____ (Microsoft Corporation) C:\windows\system32\msdrm.dll
2014-10-02 08:44 - 2013-12-03 22:16 - 00658432 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_isv.exe
2014-10-02 08:44 - 2013-12-03 22:16 - 00626176 _____ (Microsoft Corporation) C:\windows\system32\RMActivate.exe
2014-10-02 08:44 - 2013-12-03 22:16 - 00553984 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_ssp.exe
2014-10-02 08:44 - 2013-12-03 22:16 - 00552960 _____ (Microsoft Corporation) C:\windows\system32\RMActivate_ssp_isv.exe
2014-10-02 08:44 - 2013-12-03 22:03 - 00428032 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc.dll
2014-10-02 08:44 - 2013-12-03 22:03 - 00423936 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc_isv.dll
2014-10-02 08:44 - 2013-12-03 22:03 - 00087040 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc_ssp_isv.dll
2014-10-02 08:44 - 2013-12-03 22:03 - 00087040 _____ (Microsoft Corporation) C:\windows\SysWOW64\secproc_ssp.dll
2014-10-02 08:44 - 2013-12-03 22:02 - 00390144 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdrm.dll
2014-10-02 08:44 - 2013-12-03 21:54 - 00594944 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_isv.exe
2014-10-02 08:44 - 2013-12-03 21:54 - 00572416 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate.exe
2014-10-02 08:44 - 2013-12-03 21:54 - 00510976 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_ssp.exe
2014-10-02 08:44 - 2013-12-03 21:54 - 00508928 _____ (Microsoft Corporation) C:\windows\SysWOW64\RMActivate_ssp_isv.exe
2014-10-02 08:44 - 2013-11-26 21:41 - 00343040 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys
2014-10-02 08:44 - 2013-11-26 21:41 - 00325120 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys
2014-10-02 08:44 - 2013-11-26 21:41 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2014-10-02 08:44 - 2013-11-26 21:41 - 00053248 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys
2014-10-02 08:44 - 2013-11-26 21:41 - 00007808 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys
2014-10-02 08:44 - 2013-10-03 22:28 - 00190464 _____ (Microsoft Corporation) C:\windows\system32\SmartcardCredentialProvider.dll
2014-10-02 08:44 - 2013-10-03 22:25 - 00197120 _____ (Microsoft Corporation) C:\windows\system32\credui.dll
2014-10-02 08:44 - 2013-10-03 21:58 - 00152576 _____ (Microsoft Corporation) C:\windows\SysWOW64\SmartcardCredentialProvider.dll
2014-10-02 08:44 - 2013-10-03 21:56 - 00168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\credui.dll
2014-10-02 08:44 - 2013-06-06 01:50 - 00041472 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2014-10-02 08:44 - 2013-06-06 01:49 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2014-10-02 08:44 - 2013-06-06 01:49 - 00014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2014-10-02 08:44 - 2013-06-06 01:47 - 00046080 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2014-10-02 08:44 - 2013-06-06 00:57 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2014-10-02 08:44 - 2013-06-06 00:51 - 00070656 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2014-10-02 08:44 - 2013-06-06 00:50 - 00010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2014-10-02 08:44 - 2013-06-05 23:30 - 00368128 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2014-10-02 08:44 - 2013-06-05 23:01 - 00295424 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2014-10-02 08:44 - 2013-06-05 23:01 - 00034304 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2014-10-02 08:44 - 2013-04-25 19:30 - 01505280 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d11.dll
2014-10-02 08:44 - 2013-03-31 18:52 - 01887232 _____ (Microsoft Corporation) C:\windows\system32\d3d11.dll
2014-10-02 08:43 - 2014-06-06 06:10 - 00624128 _____ (Microsoft Corporation) C:\windows\system32\qedit.dll
2014-10-02 08:43 - 2014-06-06 05:44 - 00509440 _____ (Microsoft Corporation) C:\windows\SysWOW64\qedit.dll
2014-10-02 08:43 - 2014-05-30 02:45 - 00497152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\afd.sys
2014-10-02 08:43 - 2013-07-25 05:25 - 01888768 _____ (Microsoft Corporation) C:\windows\system32\WMVDECOD.DLL
2014-10-02 08:43 - 2013-07-25 04:57 - 01620992 _____ (Microsoft Corporation) C:\windows\SysWOW64\WMVDECOD.DLL
2014-10-02 08:43 - 2013-06-25 18:55 - 00785624 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Wdf01000.sys
2014-10-02 08:43 - 2013-02-12 00:12 - 00019968 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usb8023.sys
2014-10-02 08:43 - 2012-11-28 18:56 - 00054376 _____ (Microsoft Corporation) C:\windows\system32\Drivers\WdfLdr.sys
2014-10-02 08:43 - 2012-11-28 18:56 - 00009728 _____ (Microsoft Corporation) C:\windows\system32\Wdfres.dll
2014-10-02 08:43 - 2012-11-28 18:56 - 00000003 _____ () C:\windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2014-10-02 08:43 - 2012-10-03 13:44 - 00303104 _____ (Microsoft Corporation) C:\windows\system32\nlasvc.dll
2014-10-02 08:43 - 2012-10-03 13:44 - 00246272 _____ (Microsoft Corporation) C:\windows\system32\netcorehc.dll
2014-10-02 08:43 - 2012-10-03 13:44 - 00216576 _____ (Microsoft Corporation) C:\windows\system32\ncsi.dll
2014-10-02 08:43 - 2012-10-03 13:44 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\nlaapi.dll
2014-10-02 08:43 - 2012-10-03 13:44 - 00018944 _____ (Microsoft Corporation) C:\windows\system32\netevent.dll
2014-10-02 08:43 - 2012-10-03 13:42 - 00569344 _____ (Microsoft Corporation) C:\windows\system32\iphlpsvc.dll
2014-10-02 08:43 - 2012-10-03 12:42 - 00175104 _____ (Microsoft Corporation) C:\windows\SysWOW64\netcorehc.dll
2014-10-02 08:43 - 2012-10-03 12:42 - 00156672 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncsi.dll
2014-10-02 08:43 - 2012-10-03 12:42 - 00018944 _____ (Microsoft Corporation) C:\windows\SysWOW64\netevent.dll
2014-10-02 08:43 - 2012-10-03 12:07 - 00045568 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpipreg.sys
2014-10-02 08:43 - 2012-08-22 14:12 - 00950128 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ndis.sys
2014-10-02 08:43 - 2012-07-04 16:26 - 00041472 _____ (Microsoft Corporation) C:\windows\system32\Drivers\RNDISMP.sys
2014-10-02 08:43 - 2012-05-01 01:40 - 00209920 _____ (Microsoft Corporation) C:\windows\system32\profsvc.dll
2014-10-02 08:43 - 2012-04-26 01:41 - 00149504 _____ (Microsoft Corporation) C:\windows\system32\rdpcorekmts.dll
2014-10-02 08:43 - 2012-04-26 01:41 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\rdpwsx.dll
2014-10-02 08:43 - 2012-04-26 01:34 - 00009216 _____ (Microsoft Corporation) C:\windows\system32\rdrmemptylst.exe
2014-10-02 08:43 - 2012-01-13 03:12 - 00052224 _____ (Microsoft Corporation) C:\windows\SysWOW64\nlaapi.dll
2014-10-02 08:42 - 2014-06-03 06:02 - 03241984 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2014-10-02 08:42 - 2014-06-03 06:02 - 01941504 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2014-10-02 08:42 - 2014-06-03 06:02 - 00504320 _____ (Microsoft Corporation) C:\windows\system32\msihnd.dll
2014-10-02 08:42 - 2014-06-03 06:02 - 00112064 _____ (Microsoft Corporation) C:\windows\system32\consent.exe
2014-10-02 08:42 - 2014-06-03 05:29 - 02363392 _____ (Microsoft Corporation) C:\windows\SysWOW64\msi.dll
2014-10-02 08:42 - 2014-06-03 05:29 - 01805824 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2014-10-02 08:42 - 2014-06-03 05:29 - 00337408 _____ (Microsoft Corporation) C:\windows\SysWOW64\msihnd.dll
2014-10-02 08:42 - 2013-07-04 08:57 - 00259584 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll
2014-10-02 08:42 - 2013-07-04 08:50 - 00102400 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll
2014-10-02 08:42 - 2013-07-04 07:57 - 00205824 _____ (Microsoft Corporation) C:\windows\SysWOW64\WebClnt.dll
2014-10-02 08:42 - 2013-07-04 07:51 - 00081920 _____ (Microsoft Corporation) C:\windows\SysWOW64\davclnt.dll
2014-10-02 08:42 - 2013-07-04 06:11 - 00140800 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2014-10-02 08:42 - 2013-02-27 01:47 - 00070144 _____ (Microsoft Corporation) C:\windows\system32\appinfo.dll
2014-10-02 08:42 - 2012-11-02 01:59 - 00478208 _____ (Microsoft Corporation) C:\windows\system32\dpnet.dll
2014-10-02 08:42 - 2012-11-02 01:11 - 00376832 _____ (Microsoft Corporation) C:\windows\SysWOW64\dpnet.dll
2014-10-02 08:41 - 2014-06-15 22:10 - 00985536 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2014-10-02 08:41 - 2013-08-01 22:12 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2014-10-02 08:41 - 2013-08-01 22:12 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2014-10-02 08:41 - 2013-08-01 21:48 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2014-10-02 08:41 - 2013-08-01 20:59 - 00112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2014-10-02 08:41 - 2013-06-15 00:32 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tssecsrv.sys
2014-10-02 08:41 - 2013-04-10 02:01 - 00265064 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2014-10-02 08:41 - 2012-08-21 17:01 - 00245760 _____ (Microsoft Corporation) C:\windows\system32\OxpsConverter.exe
2014-10-02 08:41 - 2011-02-03 07:25 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2014-10-02 08:40 - 2012-12-07 09:20 - 00441856 _____ (Microsoft Corporation) C:\windows\system32\Wpc.dll
2014-10-02 08:40 - 2012-12-07 09:15 - 02746368 _____ (Microsoft Corporation) C:\windows\system32\gameux.dll
2014-10-02 08:40 - 2012-12-07 08:26 - 00308736 _____ (Microsoft Corporation) C:\windows\SysWOW64\Wpc.dll
2014-10-02 08:40 - 2012-12-07 08:20 - 02576384 _____ (Microsoft Corporation) C:\windows\SysWOW64\gameux.dll
2014-10-02 08:40 - 2012-12-07 07:20 - 00045568 _____ (Microsoft) C:\windows\system32\oflc-nz.rs
2014-10-02 08:40 - 2012-12-07 07:20 - 00044544 _____ (Microsoft) C:\windows\system32\pegibbfc.rs
2014-10-02 08:40 - 2012-12-07 07:20 - 00043520 _____ (Microsoft) C:\windows\system32\csrr.rs
2014-10-02 08:40 - 2012-12-07 07:20 - 00030720 _____ (Microsoft) C:\windows\system32\usk.rs
2014-10-02 08:40 - 2012-12-07 07:20 - 00023552 _____ (Microsoft) C:\windows\system32\oflc.rs
2014-10-02 08:40 - 2012-12-07 07:20 - 00020480 _____ (Microsoft) C:\windows\system32\pegi-pt.rs
2014-10-02 08:40 - 2012-12-07 07:20 - 00020480 _____ (Microsoft) C:\windows\system32\pegi-fi.rs
2014-10-02 08:40 - 2012-12-07 07:19 - 00055296 _____ (Microsoft) C:\windows\system32\cero.rs
2014-10-02 08:40 - 2012-12-07 07:19 - 00051712 _____ (Microsoft) C:\windows\system32\esrb.rs
2014-10-02 08:40 - 2012-12-07 07:19 - 00046592 _____ (Microsoft) C:\windows\system32\fpb.rs
2014-10-02 08:40 - 2012-12-07 07:19 - 00040960 _____ (Microsoft) C:\windows\system32\cob-au.rs
2014-10-02 08:40 - 2012-12-07 07:19 - 00021504 _____ (Microsoft) C:\windows\system32\grb.rs
2014-10-02 08:40 - 2012-12-07 07:19 - 00020480 _____ (Microsoft) C:\windows\system32\pegi.rs
2014-10-02 08:40 - 2012-12-07 07:19 - 00015360 _____ (Microsoft) C:\windows\system32\djctq.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00055296 _____ (Microsoft) C:\windows\SysWOW64\cero.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00051712 _____ (Microsoft) C:\windows\SysWOW64\esrb.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00046592 _____ (Microsoft) C:\windows\SysWOW64\fpb.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00045568 _____ (Microsoft) C:\windows\SysWOW64\oflc-nz.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00044544 _____ (Microsoft) C:\windows\SysWOW64\pegibbfc.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00043520 _____ (Microsoft) C:\windows\SysWOW64\csrr.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00040960 _____ (Microsoft) C:\windows\SysWOW64\cob-au.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00030720 _____ (Microsoft) C:\windows\SysWOW64\usk.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00023552 _____ (Microsoft) C:\windows\SysWOW64\oflc.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00021504 _____ (Microsoft) C:\windows\SysWOW64\grb.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00020480 _____ (Microsoft) C:\windows\SysWOW64\pegi-pt.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00020480 _____ (Microsoft) C:\windows\SysWOW64\pegi-fi.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00020480 _____ (Microsoft) C:\windows\SysWOW64\pegi.rs
2014-10-02 08:40 - 2012-12-07 06:46 - 00015360 _____ (Microsoft) C:\windows\SysWOW64\djctq.rs
2014-10-02 08:40 - 2012-04-27 23:55 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdpwd.sys
2014-10-02 08:40 - 2012-03-17 03:58 - 00075120 _____ (Microsoft Corporation) C:\windows\system32\Drivers\partmgr.sys
2014-10-02 08:39 - 2014-02-03 22:35 - 00274880 _____ (Microsoft Corporation) C:\windows\system32\Drivers\msiscsi.sys
2014-10-02 08:39 - 2014-02-03 22:35 - 00190912 _____ (Microsoft Corporation) C:\windows\system32\Drivers\storport.sys
2014-10-02 08:39 - 2014-02-03 22:35 - 00027584 _____ (Microsoft Corporation) C:\windows\system32\Drivers\Diskdump.sys
2014-10-02 08:39 - 2014-02-03 22:28 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\iologmsg.dll
2014-10-02 08:39 - 2014-02-03 22:00 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\iologmsg.dll
2014-10-02 08:38 - 2014-09-09 18:11 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2014-10-02 08:38 - 2014-09-09 17:47 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2014-10-02 08:38 - 2014-05-30 04:08 - 00340992 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2014-10-02 08:38 - 2014-05-30 04:08 - 00314880 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2014-10-02 08:38 - 2014-05-30 04:08 - 00307200 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2014-10-02 08:38 - 2014-05-30 04:08 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2014-10-02 08:38 - 2014-05-30 04:08 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2014-10-02 08:38 - 2014-05-30 04:08 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2014-10-02 08:38 - 2014-05-30 03:52 - 00259584 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2014-10-02 08:38 - 2014-05-30 03:52 - 00247808 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2014-10-02 08:38 - 2014-05-30 03:52 - 00220160 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2014-10-02 08:38 - 2014-05-30 03:52 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2014-10-02 08:38 - 2014-05-30 03:52 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2014-10-02 08:38 - 2014-05-30 03:52 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2014-10-02 08:38 - 2013-07-25 22:24 - 00197120 _____ (Microsoft Corporation) C:\windows\system32\shdocvw.dll
2014-10-02 08:38 - 2013-07-25 21:55 - 00180224 _____ (Microsoft Corporation) C:\windows\SysWOW64\shdocvw.dll
2014-10-02 08:38 - 2013-04-26 01:51 - 00751104 _____ (Microsoft Corporation) C:\windows\system32\win32spl.dll
2014-10-02 08:38 - 2013-04-26 00:55 - 00492544 _____ (Microsoft Corporation) C:\windows\SysWOW64\win32spl.dll
2014-10-02 08:38 - 2012-09-25 18:47 - 00078336 _____ (Microsoft Corporation) C:\windows\SysWOW64\synceng.dll
2014-10-02 08:38 - 2012-09-25 18:46 - 00095744 _____ (Microsoft Corporation) C:\windows\system32\synceng.dll
2014-10-02 08:37 - 2014-06-24 22:05 - 14175744 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2014-10-02 08:37 - 2014-06-24 21:41 - 12874240 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2014-10-02 08:37 - 2014-03-04 05:44 - 01163264 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2014-10-02 08:37 - 2014-03-04 05:44 - 00362496 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2014-10-02 08:37 - 2014-03-04 05:44 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2014-10-02 08:37 - 2014-03-04 05:44 - 00016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2014-10-02 08:37 - 2014-03-04 05:44 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2014-10-02 08:37 - 2014-03-04 05:17 - 00014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2014-10-02 08:37 - 2014-03-04 05:16 - 01114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2014-10-02 08:37 - 2014-03-04 05:16 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2014-10-02 08:37 - 2014-03-04 05:16 - 00005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2014-10-02 08:37 - 2014-03-04 04:09 - 00007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2014-10-02 08:37 - 2014-03-04 04:09 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2014-10-02 08:37 - 2014-01-23 22:37 - 01684928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ntfs.sys
2014-10-02 08:37 - 2013-08-01 22:14 - 00215040 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2014-10-02 08:37 - 2013-08-01 22:13 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 22:12 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:50 - 00274944 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:48 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 21:09 - 00338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2014-10-02 08:37 - 2013-08-01 20:43 - 00006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 20:43 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 20:43 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-10-02 08:37 - 2013-08-01 20:43 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-10-02 08:37 - 2013-07-20 06:33 - 00124112 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-10-02 08:37 - 2013-07-20 06:33 - 00102608 _____ (Microsoft Corporation) C:\windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-10-02 08:37 - 2013-05-10 01:49 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\cryptdlg.dll
2014-10-02 08:37 - 2013-05-09 23:20 - 00024576 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptdlg.dll
2014-10-02 08:37 - 2013-01-24 02:01 - 00223752 _____ (Microsoft Corporation) C:\windows\system32\Drivers\fvevol.sys
2014-10-02 08:37 - 2012-07-04 18:16 - 00073216 _____ (Microsoft Corporation) C:\windows\system32\netapi32.dll
2014-10-02 08:37 - 2012-07-04 18:13 - 00136704 _____ (Microsoft Corporation) C:\windows\system32\browser.dll
2014-10-02 08:37 - 2012-07-04 18:13 - 00059392 _____ (Microsoft Corporation) C:\windows\system32\browcli.dll
2014-10-02 08:37 - 2012-07-04 17:16 - 00057344 _____ (Microsoft Corporation) C:\windows\SysWOW64\netapi32.dll
2014-10-02 08:37 - 2012-07-04 17:14 - 00041984 _____ (Microsoft Corporation) C:\windows\SysWOW64\browcli.dll
2014-10-02 08:37 - 2012-05-05 04:36 - 00503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2014-10-02 08:37 - 2012-05-05 03:46 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2014-10-02 08:36 - 2014-07-06 22:06 - 01460736 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2014-10-02 08:36 - 2014-07-06 22:06 - 00728064 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2014-10-02 08:36 - 2014-07-06 21:40 - 00550912 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2014-10-02 08:36 - 2014-07-06 21:40 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2014-10-02 08:36 - 2014-07-06 21:39 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2014-10-02 08:36 - 2013-10-11 22:32 - 00150016 _____ (Microsoft Corporation) C:\windows\system32\wshom.ocx
2014-10-02 08:36 - 2013-10-11 22:31 - 00202752 _____ (Microsoft Corporation) C:\windows\system32\scrrun.dll
2014-10-02 08:36 - 2013-10-11 22:04 - 00121856 _____ (Microsoft Corporation) C:\windows\SysWOW64\wshom.ocx
2014-10-02 08:36 - 2013-10-11 22:03 - 00163840 _____ (Microsoft Corporation) C:\windows\SysWOW64\scrrun.dll
2014-10-02 08:36 - 2013-10-11 21:33 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\wscript.exe
2014-10-02 08:36 - 2013-10-11 21:33 - 00156160 _____ (Microsoft Corporation) C:\windows\system32\cscript.exe
2014-10-02 08:36 - 2013-10-11 21:15 - 00141824 _____ (Microsoft Corporation) C:\windows\SysWOW64\wscript.exe
2014-10-02 08:36 - 2013-10-11 21:15 - 00126976 _____ (Microsoft Corporation) C:\windows\SysWOW64\cscript.exe
2014-10-02 08:36 - 2013-05-13 01:50 - 00052224 _____ (Microsoft Corporation) C:\windows\system32\certenc.dll
2014-10-02 08:36 - 2013-05-12 23:43 - 01192448 _____ (Microsoft Corporation) C:\windows\system32\certutil.exe
2014-10-02 08:36 - 2013-05-12 23:08 - 00903168 _____ (Microsoft Corporation) C:\windows\SysWOW64\certutil.exe
2014-10-02 08:36 - 2013-05-12 23:08 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\certenc.dll
2014-10-02 08:35 - 2014-09-04 22:10 - 00578048 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-10-02 08:35 - 2014-09-04 22:05 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-10-02 08:35 - 2014-08-22 22:07 - 00404480 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2014-10-02 08:35 - 2014-08-22 21:45 - 00311808 _____ (Microsoft Corporation) C:\windows\SysWOW64\gdi32.dll
2014-10-02 08:35 - 2014-08-22 20:59 - 03163648 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-10-02 08:35 - 2014-07-13 22:02 - 01216000 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2014-10-02 08:35 - 2014-07-13 21:40 - 00664064 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2014-10-02 08:35 - 2014-04-11 22:22 - 00155072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2014-10-02 08:35 - 2014-04-11 22:22 - 00095680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2014-10-02 08:35 - 2014-04-11 22:19 - 00136192 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2014-10-02 08:35 - 2014-04-11 22:19 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2014-10-02 08:35 - 2014-04-11 22:19 - 00029184 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2014-10-02 08:35 - 2014-04-11 22:19 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2014-10-02 08:35 - 2013-10-11 22:30 - 00830464 _____ (Microsoft Corporation) C:\windows\system32\nshwfp.dll
2014-10-02 08:35 - 2013-10-11 22:29 - 00859648 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL
2014-10-02 08:35 - 2013-10-11 22:29 - 00324096 _____ (Microsoft Corporation) C:\windows\system32\FWPUCLNT.DLL
2014-10-02 08:35 - 2013-10-11 22:03 - 00656896 _____ (Microsoft Corporation) C:\windows\SysWOW64\nshwfp.dll
2014-10-02 08:35 - 2013-10-11 22:01 - 00216576 _____ (Microsoft Corporation) C:\windows\SysWOW64\FWPUCLNT.DLL
2014-10-02 08:35 - 2013-08-27 21:12 - 00461312 _____ (Microsoft Corporation) C:\windows\system32\scavengeui.dll
2014-10-02 08:35 - 2013-07-04 08:18 - 00458712 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2014-10-02 08:35 - 2012-06-06 02:02 - 01133568 _____ (Microsoft Corporation) C:\windows\system32\cdosys.dll
2014-10-02 08:35 - 2012-06-06 01:03 - 00805376 _____ (Microsoft Corporation) C:\windows\SysWOW64\cdosys.dll
2014-10-02 08:35 - 2012-05-14 01:26 - 00956928 _____ (Microsoft Corporation) C:\windows\system32\localspl.dll
2014-10-02 08:35 - 2011-02-23 00:55 - 00090624 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bowser.sys
2014-10-02 05:45 - 2014-10-04 16:08 - 00000000 __SHD () C:\Users\Scott\AppData\Local\EmieUserList
2014-10-02 05:45 - 2014-10-02 05:45 - 00000000 __SHD () C:\Users\Scott\AppData\Local\EmieSiteList
2014-10-01 22:31 - 2014-10-01 22:31 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-10-01 22:27 - 2014-09-24 22:08 - 00371712 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2014-10-01 22:27 - 2014-09-24 21:40 - 00519680 _____ (Microsoft Corporation) C:\windows\SysWOW64\qdvd.dll
2014-09-29 18:19 - 2014-10-02 14:07 - 00000000 ____D () C:\ProgramData\Windows Genuine Advantage
2014-09-28 18:52 - 2014-10-02 14:09 - 00000000 ____D () C:\windows\system32\Macromed
2014-09-28 07:39 - 2014-10-06 22:39 - 00058016 _____ () C:\Users\Scott\AppData\Local\GDIPFONTCACHEV1.DAT
2014-09-26 16:40 - 2014-10-02 22:44 - 00000000 ____D () C:\ProgramData\Adobe
2014-09-26 16:39 - 2014-10-03 11:13 - 00000000 ____D () C:\Users\Scott\AppData\Local\Adobe
2014-09-25 12:23 - 2013-07-12 06:41 - 00185344 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbvideo.sys
2014-09-25 12:22 - 2012-07-06 16:07 - 00552960 _____ (Microsoft Corporation) C:\windows\system32\Drivers\bthport.sys
2014-09-24 23:22 - 2012-02-17 02:38 - 01031680 _____ (Microsoft Corporation) C:\windows\system32\rdpcore.dll
2014-09-24 23:22 - 2012-02-17 01:34 - 00826880 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdpcore.dll
2014-09-24 23:22 - 2012-02-17 00:57 - 00023552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tdtcp.sys
2014-09-24 23:14 - 2014-05-14 12:23 - 02477536 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2014-09-24 23:14 - 2014-05-14 12:23 - 00700384 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2014-09-24 23:14 - 2014-05-14 12:23 - 00581600 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2014-09-24 23:14 - 2014-05-14 12:23 - 00058336 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2014-09-24 23:14 - 2014-05-14 12:23 - 00044512 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2014-09-24 23:14 - 2014-05-14 12:23 - 00038880 _____ (Microsoft Corporation) C:\windows\system32\wups.dll
2014-09-24 23:14 - 2014-05-14 12:23 - 00036320 _____ (Microsoft Corporation) C:\windows\SysWOW64\wups.dll
2014-09-24 23:14 - 2014-05-14 12:21 - 02620928 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2014-09-24 23:14 - 2014-05-14 12:20 - 00097792 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2014-09-24 23:14 - 2014-05-14 12:17 - 00092672 _____ (Microsoft Corporation) C:\windows\SysWOW64\wudriver.dll
2014-09-24 23:14 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2014-09-24 23:14 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuwebv.dll
2014-09-24 23:14 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2014-09-24 23:14 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapp.exe
2014-09-24 21:45 - 2014-10-02 23:42 - 00000000 ____D () C:\Users\Scott\AppData\Roaming\Mozilla
2014-09-24 21:45 - 2014-09-24 21:46 - 00000000 ____D () C:\Users\Scott\AppData\Local\Mozilla
2014-09-24 21:45 - 2014-09-24 21:45 - 00000000 ____D () C:\ProgramData\Mozilla
2014-09-24 18:17 - 2014-09-24 18:17 - 00000000 ____D () C:\Users\Scott\AppData\Roaming\Macromedia
2014-09-24 18:16 - 2014-10-02 14:08 - 00000000 ____D () C:\Users\Scott\AppData\Roaming\Adobe
2014-09-24 18:12 - 2014-10-04 14:53 - 00001413 _____ () C:\Users\Scott\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-09-24 18:11 - 2014-10-02 14:00 - 00000000 ____D () C:\ProgramData\Skype
2014-09-24 18:11 - 2014-09-24 18:11 - 00001076 _____ () C:\Users\Your Feedback is Important.lnk
2014-09-24 18:10 - 2014-10-02 14:11 - 00000000 ____D () C:\Users\Scott\AppData\Local\VirtualStore
2014-09-24 18:10 - 2014-09-24 18:10 - 00003186 _____ () C:\windows\System32\Tasks\FFSRConfigurer
2014-09-24 18:10 - 2014-09-24 18:10 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_iBtFltCoex_01009.Wdf
2014-09-24 18:10 - 2014-09-24 18:10 - 00000000 ____H () C:\windows\system32\Drivers\Msft_Kernel_btmaux_01009.Wdf
2014-09-24 18:09 - 2014-10-03 00:22 - 00000000 ____D () C:\Users\Scott
2014-09-24 18:09 - 2014-10-02 14:11 - 00000000 ___RD () C:\Users\Scott\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-09-24 18:09 - 2014-10-02 14:11 - 00000000 ___RD () C:\Users\Scott\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-09-24 18:09 - 2014-09-24 18:09 - 00000020 ___SH () C:\Users\Scott\ntuser.ini
2014-09-24 18:09 - 2014-09-24 18:09 - 00000000 __SHD () C:\Recovery
2014-09-24 18:09 - 2014-09-24 18:09 - 00000000 ____D () C:\Users\Scott\AppData\Roaming\Intel
2014-09-24 18:09 - 2014-09-24 18:09 - 00000000 _____ () C:\windows\system32\Drivers\144D_SAMSUNG_N_900X4C_P03A.mrk
2014-09-24 18:09 - 2014-09-24 18:09 - 00000000 _____ () C:\Users\Scott\agent.log
2014-09-19 18:14 - 2014-09-19 18:14 - 00000200 __RSH () C:\MSSTBJ.CAT
2014-09-19 17:07 - 2014-09-19 17:07 - 00000000 __SHD () C:\System Recovery

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-07 17:00 - 2009-07-14 00:45 - 00028848 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-07 17:00 - 2009-07-14 00:45 - 00028848 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-07 17:00 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\rescache
2014-10-07 16:37 - 2012-05-10 11:18 - 01583841 _____ () C:\windows\WindowsUpdate.log
2014-10-07 16:25 - 2012-05-10 11:15 - 00000830 _____ () C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job
2014-10-07 09:49 - 2009-07-14 01:13 - 00781298 _____ () C:\windows\system32\PerfStringBackup.INI
2014-10-07 09:45 - 2012-05-10 11:15 - 00000828 _____ () C:\windows\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job
2014-10-07 09:45 - 2010-11-20 23:47 - 01184374 _____ () C:\windows\PFRO.log
2014-10-07 09:45 - 2009-07-14 01:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-10-07 09:45 - 2009-07-14 00:51 - 00041965 _____ () C:\windows\setupact.log
2014-10-05 10:15 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-10-04 14:53 - 2009-07-14 00:45 - 00267672 _____ () C:\windows\system32\FNTCACHE.DAT
2014-10-04 14:52 - 2012-05-11 03:08 - 00000000 ____D () C:\Program Files\Windows Journal
2014-10-04 14:52 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Defender
2014-10-04 14:52 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-10-04 14:52 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\zh-HK
2014-10-04 14:52 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\tr-TR
2014-10-04 14:52 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\Dism
2014-10-04 14:52 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\zh-HK
2014-10-04 14:52 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\tr-TR
2014-10-04 14:52 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\Dism
2014-10-04 14:52 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\PolicyDefinitions
2014-10-04 14:52 - 2009-07-13 23:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-10-03 10:59 - 2012-05-10 11:21 - 00000000 ____D () C:\ProgramData\Norton
2014-10-02 22:47 - 2012-05-10 12:10 - 00000000 ____D () C:\Program Files (x86)\Amazon
2014-10-02 16:41 - 2012-05-10 11:16 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-10-02 14:11 - 2012-05-11 03:08 - 00000000 ____D () C:\windows\ShellNew
2014-10-02 14:11 - 2012-05-10 11:28 - 00000000 ____D () C:\windows\SysWOW64\Macromed
2014-10-02 14:11 - 2012-05-10 11:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung
2014-10-02 14:11 - 2012-05-10 11:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WildTangent Games
2014-10-02 14:11 - 2009-07-14 01:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-10-02 14:11 - 2009-07-14 01:32 - 00000000 ____D () C:\windows\Offline Web Pages
2014-10-02 14:11 - 2009-07-13 23:20 - 00000000 __RSD () C:\windows\Media
2014-10-02 14:11 - 2009-07-13 23:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-10-02 14:11 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\NDF
2014-10-02 14:11 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\security
2014-10-02 14:11 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\L2Schemas
2014-10-02 14:11 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\AppCompat
2014-10-02 14:10 - 2012-05-10 12:02 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2014-10-02 14:10 - 2012-05-10 11:56 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Absolute Software
2014-10-02 14:10 - 2012-05-10 11:29 - 00000000 ____D () C:\ProgramData\WinClon
2014-10-02 14:10 - 2012-05-10 11:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel Corporation
2014-10-02 14:10 - 2012-05-10 11:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-10-02 14:10 - 2009-07-13 23:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-10-02 14:09 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\registration
2014-10-02 14:08 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\servicing
2014-10-02 14:07 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-10-02 14:07 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar
2014-09-25 18:23 - 2010-11-21 03:06 - 00000000 ____D () C:\windows\SysWOW64\winrm
2014-09-25 18:23 - 2010-11-21 03:06 - 00000000 ____D () C:\windows\SysWOW64\WCN
2014-09-25 18:23 - 2010-11-21 03:06 - 00000000 ____D () C:\windows\SysWOW64\sysprep
2014-09-25 18:23 - 2010-11-21 03:06 - 00000000 ____D () C:\windows\SysWOW64\slmgr
2014-09-25 18:23 - 2010-11-21 03:06 - 00000000 ____D () C:\windows\SysWOW64\Printing_Admin_Scripts
2014-09-25 18:23 - 2010-11-21 03:06 - 00000000 ____D () C:\windows\system32\winrm
2014-09-25 18:23 - 2010-11-21 03:06 - 00000000 ____D () C:\windows\system32\WCN
2014-09-25 18:23 - 2010-11-21 03:06 - 00000000 ____D () C:\windows\system32\slmgr
2014-09-25 18:23 - 2010-11-21 03:06 - 00000000 ____D () C:\windows\system32\Printing_Admin_Scripts
2014-09-25 18:23 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-09-25 18:23 - 2009-07-14 01:32 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2014-09-25 18:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\Setup
2014-09-25 18:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\oobe
2014-09-25 18:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\MUI
2014-09-25 18:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\migwiz
2014-09-25 18:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\SysWOW64\com
2014-09-25 18:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\sysprep
2014-09-25 18:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\Setup
2014-09-25 18:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\oobe
2014-09-25 18:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\MUI
2014-09-25 18:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\migwiz
2014-09-25 18:23 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\com
2014-09-24 18:18 - 2012-05-10 11:25 - 00000000 ____D () C:\ProgramData\SAMSUNG
2014-09-24 18:11 - 2012-05-11 03:07 - 00000000 ____D () C:\windows\MSetup
2014-09-24 18:11 - 2012-05-10 11:15 - 00000000 ____D () C:\Program Files (x86)\Samsung
2014-09-24 18:10 - 2012-05-10 12:10 - 00051158 _____ () C:\windows\SetDisplayResolution.log
2014-09-24 18:10 - 2012-05-10 11:18 - 00013210 _____ () C:\windows\DPINST.LOG
2014-09-24 18:10 - 2012-05-10 11:15 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-09-24 18:09 - 2012-05-10 11:54 - 00004336 _____ () C:\windows\LCDStretchMode.log
2014-09-24 18:09 - 2009-07-13 23:20 - 00000000 ____D () C:\windows\system32\Recovery
2014-09-19 09:27 - 2009-07-14 00:46 - 00004818 _____ () C:\windows\DtcInstall.log
2014-09-19 09:16 - 2012-05-10 12:18 - 00000988 _____ () C:\windows\SysWOW64\Master.log
2014-09-19 09:15 - 2012-05-10 11:16 - 00003350 _____ () C:\windows\System32\Tasks\Intel® Rapid Start Technology Manager
2014-09-15 09:06 - 2010-11-20 23:27 - 00278152 ____N (Microsoft Corporation) C:\windows\system32\MpSigStub.exe

Some content of TEMP:
====================
C:\Users\Scott\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-10-06 22:09

==================== End Of Log ============================
  • 0

Advertisements


#26
SleepyDude

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,401 posts

Hi,

 

The logs are looking better, let's continue...

 

 

Step 1 - Install and Run Malwarebytes

  • Please download Malwarebytes' Anti-Malware from here or here
  • Double Click the mbam-setup-2.x.x or mbam-setup MBAM2.jpg to install the application.
  • On the last step of installation make sure you uncheck the box Enable free trial of Malwarebytes Anti-Malware Premium then click Finish.
    MBAM2_Trial.png
  • If an update is found, it will download and install the latest updates automatically if not click Update Now »
    MBAM2_Updating.png
  • Click the Settings tab, and check the box next to Scan for rootkits:
    MBAM2_Settings.png
  • Go back to the Dashboard tab, and click the Scan Now button:
    MBAM2_Scan.png
  • The scan may take some time to finish, so please be patient.
  • When the scan is complete, it will show the results:
    MBAM2_threat-detected.jpg
  • Click on Quarantine All, then click on Apply Actions.
  • To complete any actions taken you will be prompted to restart your computer...click on Yes.
    Failure to reboot normally will prevent Malwarebytes from removing all the malware.
    MBAM2_RestartPrompt.png
  • After restarting the computer, copy and paste the mbam.log in your next reply.

To retrieve the Malwarebytes Anti-Malware 2.0 scan log information


  • The log is automatically saved by MBAM and can be viewed by going to the History tab, clicking on Application Logs:
    MBAM2_Log.png
  • Select (check) the box next to Scan Log. Choose the most current scan, and click on the View button:
  • In the bottom of the Scanning History Log window that opens, click on Export > Save to Text file (*.txt) button. Save the report to your Desktop.
  • Copy & Paste the entire contents of the report log in your next reply.

 

Step 2 - Scan with ESET On-line Scanner

  • Download Eset On-line Scanner, run the tool and follow the prompts to install the program.
    ESET_Scan.png
  • Select the option Enable detection of potential unwanted applications
  • Click on Advanced Settings, an check the following options:
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology
  • Disable your AntiVirus and AntiSpyware applications to speedup the scan
    (If you have difficulty properly disabling your security programs, refer to this link)
  • Click Start and then wait for the scan to finish (it can take some time).
    The virus signature database will begin to download and the Scan will start automatically. Be patient this make take some time depending on the speed of your Internet Connection.
  • Once the scan is completed, close the program
  • Use Notepad to open the log file located at C:\Program Files (x86)\ESET\ESET Online Scanner\log.txt
  • Copy and paste the log contents to your reply
  • Enable your AntiVirus and AntiSpyware applications

 

 

 

Things I would like to see in your next reply:

  • The mbam-log-yyyy-mm-dd
  • The ESET log

 


  • 0

#27
scottzajaczkowski

scottzajaczkowski

    Member

  • Topic Starter
  • Member
  • PipPip
  • 23 posts
Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 10/7/2014
Scan Time: 8:02:43 PM
Logfile: maleware log.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.10.07.15
Rootkit Database: v2014.09.19.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Scott

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 302754
Time Elapsed: 12 min, 28 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 2
Trojan.Agent.BPEN, C:\ProgramData\Windows Genuine Advantage\{CCE8A44A-C85C-4C9B-9DCE-FFBF2C074F3A}\msiexec.exe, Quarantined, [186d2cc32e4d3600b304219fb34e28d8],
Trojan.Agent.BPEN, C:\ProgramData\Windows Genuine Advantage\{DA382542-28B3-4746-89A1-11FB2397DC1C}\msiexec.exe, Quarantined, [1b6a5699fe7d77bf6750c7f94cb5c739],

Physical Sectors: 0
(No malicious items detected)


(end)


[email protected] as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=83bd533c008ab249b1401fd29c7e05ae
# engine=20490
# end=finished
# remove_checked=false
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2014-10-08 12:59:26
# local_time=2014-10-07 08:59:26 (-0500, Eastern Daylight Time)
# country="United States"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 94 0 164273416 0 0
# scanned=164312
# found=11
# cleaned=0
# scan_time=1857
sh=2EFF65173426CA303DEC447D66028552629836D5 ft=1 fh=c558ef1fba628ede vn="a variant of Win32/SProtector.I potentially unwanted application" ac=I fn="C:\FRST\Quarantine\C\Program Files (x86)\Optimizer Pro\OptProCrash.dll"
sh=0EFB03577ACC0863E6ED02C9D9739F10DE38A628 ft=1 fh=1651bb87b705b0ca vn="Win32/TrojanDownloader.Tracur.AL trojan" ac=I fn="C:\FRST\Quarantine\C\Users\Scott\AppData\Local\Gapcgwxlhdd.dll.xBAD"
sh=E8FF76F751E3472D910168A658E5411E4FEB1335 ft=1 fh=3a983735ed5f8b1e vn="Win32/TrojanDownloader.Cerabit.A trojan" ac=I fn="C:\ProgramData\Windows Genuine Advantage\{62F9335F-60F4-4912-9464-F92FFBC15798}\msiexec.exe"
sh=E8FF76F751E3472D910168A658E5411E4FEB1335 ft=1 fh=3a983735ed5f8b1e vn="Win32/TrojanDownloader.Cerabit.A trojan" ac=I fn="C:\ProgramData\Windows Genuine Advantage\{B7D2A09C-2E51-492B-B7AB-BA4467A39DB0}\msiexec.exe"
sh=E8FF76F751E3472D910168A658E5411E4FEB1335 ft=1 fh=3a983735ed5f8b1e vn="Win32/TrojanDownloader.Cerabit.A trojan" ac=I fn="C:\Users\All Users\Windows Genuine Advantage\{62F9335F-60F4-4912-9464-F92FFBC15798}\msiexec.exe"
sh=E8FF76F751E3472D910168A658E5411E4FEB1335 ft=1 fh=3a983735ed5f8b1e vn="Win32/TrojanDownloader.Cerabit.A trojan" ac=I fn="C:\Users\All Users\Windows Genuine Advantage\{B7D2A09C-2E51-492B-B7AB-BA4467A39DB0}\msiexec.exe"
sh=0EFB03577ACC0863E6ED02C9D9739F10DE38A628 ft=1 fh=1651bb87b705b0ca vn="Win32/TrojanDownloader.Tracur.AL trojan" ac=I fn="C:\Users\Scott\AppData\Local\Programs\Gapcgwxlhdd.dll"
sh=0EFB03577ACC0863E6ED02C9D9739F10DE38A628 ft=1 fh=1651bb87b705b0ca vn="Win32/TrojanDownloader.Tracur.AL trojan" ac=I fn="C:\Users\Scott\AppData\Local\VirtualStore\Gapcgwxlhdd.dll"
sh=0EFB03577ACC0863E6ED02C9D9739F10DE38A628 ft=1 fh=1651bb87b705b0ca vn="Win32/TrojanDownloader.Tracur.AL trojan" ac=I fn="C:\Users\Scott\AppData\Roaming\Media Center Programs\dpdfznv.dll"
sh=0EFB03577ACC0863E6ED02C9D9739F10DE38A628 ft=1 fh=1651bb87b705b0ca vn="Win32/TrojanDownloader.Tracur.AL trojan" ac=I fn="C:\Users\Scott\AppData\Roaming\Media Center Programs\lppxxzp.dll"
sh=0EFB03577ACC0863E6ED02C9D9739F10DE38A628 ft=1 fh=1651bb87b705b0ca vn="Win32/TrojanDownloader.Tracur.AL trojan" ac=I fn="C:\Users\Scott\AppData\Roaming\Mozilla\xzjldrrx.dll"
  • 0

#28
SleepyDude

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,401 posts

Hi,
 
Lets remove what ESET found and do some more checks...

 

 
Step 1 - FRST Fix

!!! WARNING !!! The following fix is only relevant for this system and no other, running the script on another computer will not work and may cause problems...

  • Attached File  fixlist.txt   385bytes   62 downloads
  • Download the file above and save it to the Desktop as fixlist.txt
    (It's important that both files, FRST or FRST64 and fixlist.txt are in the same location or the fix will not work!)
  • Execute FRST/FRST64 right click on the icon FRST.gif and choose Run as Administrator. Make sure all other windows are closed.
    FRST_Fix.png
  • Press the Fix button just once and Wait. After the fix the system needs to restart if the tool does not request it please Restart the computer.
  • The tool will make a log (Fixlog.txt) on the same location as FRST/FRST64 please post it in your next reply.

.

Step 2 - TDSSKiller

Please download the latest version of TDSSKiller from here and save it to your Desktop.

  • Doubleclick on TDSSKiller.exe to run the application
    (Accept the UAC prompt to allow changes to the computer).
  • Click Accept on the windows End User License Agreement and KSN Statement, then on the following window click on Change parameters
    TDSSKiller_Changep.png
  • Put a checkmark beside loaded modules.
    TDSSKiller-2.png
  • A reboot will be needed to apply the changes. Do it.
  • TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  • Then click again on Change parameters in TDSSKiller.
  • Check all boxes then click OK.
    TDSSKiller-3.png
  • Click the Start Scan button.
    TDSSKiller_Scan.png
  • The scan should take no longer than 2 minutes.
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
    TDSSKiller_Skip.png
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    TDSSKiller_Cure.png
    Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.
  • A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file on your next post.

 

Step 3 - Install Antivirus

I notice you uninstall Norton Internet Security if you have a valid license please reinstall the Antivirus ASAP to protect the computer from been reinfected again.
If your license expired and you need to install a free Antivirus we usually recommend Avast Antivirus Free because it provides a good protection level. Avast is free but you need to register by providing a valid e-mail address to activate the program, and repeat this process every year and carefully choose the free version.

 

Step 4 - Security Check

  • Download Security Check by screen317 from here or here and Save it to the Desktop.
  • Disable your AntiVirus and AntiSpyware applications because they can interfer with this tool.
     (If you have difficulty properly disabling your security programs, refer to this link)
  • Right click on the icon SecurityCheckIcon2.png and choose Run as Administrator.
    SecurityCheck.png
  • Follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the full contents of that document.
  • Enable your AntiVirus and AntiSpyware applications

 

Things I would like to see in your next reply:

  • The Fixlog.txt log
  • The TDSSKiller log
  • The checkup.txt log

  • 0

#29
scottzajaczkowski

scottzajaczkowski

    Member

  • Topic Starter
  • Member
  • PipPip
  • 23 posts
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 06-10-2014 01
Ran by Scott at 2014-10-08 17:48:14 Run:2
Running from C:\Users\Scott\Desktop
Loaded Profile: Scott (Available profiles: Scott)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
C:\ProgramData\Windows Genuine Advantage
C:\Users\All Users\Windows Genuine Advantage
C:\Users\Scott\AppData\Local\Programs\Gapcgwxlhdd.dll
C:\Users\Scott\AppData\Local\VirtualStore\Gapcgwxlhdd.dll
C:\Users\Scott\AppData\Roaming\Media Center Programs\dpdfznv.dll
C:\Users\Scott\AppData\Roaming\Media Center Programs\lppxxzp.dll
C:\Users\Scott\AppData\Roaming\Mozilla\xzjldrrx.dll
*****************

C:\ProgramData\Windows Genuine Advantage => Moved successfully.
"C:\Users\All Users\Windows Genuine Advantage" => File/Directory not found.
C:\Users\Scott\AppData\Local\Programs\Gapcgwxlhdd.dll => Moved successfully.
C:\Users\Scott\AppData\Local\VirtualStore\Gapcgwxlhdd.dll => Moved successfully.
C:\Users\Scott\AppData\Roaming\Media Center Programs\dpdfznv.dll => Moved successfully.
C:\Users\Scott\AppData\Roaming\Media Center Programs\lppxxzp.dll => Moved successfully.
C:\Users\Scott\AppData\Roaming\Mozilla\xzjldrrx.dll => Moved successfully.

==== End of Fixlog ====



18:00:17.0262 0x17e0 TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
18:00:22.0051 0x17e0 ============================================================
18:00:22.0051 0x17e0 Current date / time: 2014/10/08 18:00:22.0051
18:00:22.0051 0x17e0 SystemInfo:
18:00:22.0051 0x17e0
18:00:22.0051 0x17e0 OS Version: 6.1.7601 ServicePack: 1.0
18:00:22.0051 0x17e0 Product type: Workstation
18:00:22.0051 0x17e0 ComputerName: SCOTT-PC
18:00:22.0051 0x17e0 UserName: Scott
18:00:22.0051 0x17e0 Windows directory: C:\windows
18:00:22.0051 0x17e0 System windows directory: C:\windows
18:00:22.0051 0x17e0 Running under WOW64
18:00:22.0051 0x17e0 Processor architecture: Intel x64
18:00:22.0051 0x17e0 Number of processors: 4
18:00:22.0051 0x17e0 Page size: 0x1000
18:00:22.0051 0x17e0 Boot type: Normal boot
18:00:22.0051 0x17e0 ============================================================
18:00:22.0425 0x17e0 KLMD registered as C:\windows\system32\drivers\30803754.sys
18:00:22.0535 0x17e0 System UUID: {533237F5-8D40-4695-706A-F964A9ABAA58}
18:00:22.0893 0x17e0 Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 ( 119.24 Gb ), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:00:22.0893 0x17e0 ============================================================
18:00:22.0893 0x17e0 \Device\Harddisk0\DR0:
18:00:22.0893 0x17e0 MBR partitions:
18:00:22.0893 0x17e0 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
18:00:22.0893 0x17e0 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xC9B3800
18:00:22.0893 0x17e0 ============================================================
18:00:22.0893 0x17e0 C: <-> \Device\Harddisk0\DR0\Partition2
18:00:22.0893 0x17e0 ============================================================
18:00:22.0893 0x17e0 Initialize success
18:00:22.0893 0x17e0 ============================================================
18:01:06.0199 0x1798 KLMD registered as C:\windows\system32\drivers\32557483.sys
18:01:06.0761 0x1798 Deinitialize success


18:01:36.0405 0x0d5c TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
18:01:37.0045 0x0d5c ============================================================
18:01:37.0045 0x0d5c Current date / time: 2014/10/08 18:01:37.0045
18:01:37.0045 0x0d5c SystemInfo:
18:01:37.0045 0x0d5c
18:01:37.0045 0x0d5c OS Version: 6.1.7601 ServicePack: 1.0
18:01:37.0045 0x0d5c Product type: Workstation
18:01:37.0045 0x0d5c ComputerName: SCOTT-PC
18:01:37.0045 0x0d5c UserName: Scott
18:01:37.0045 0x0d5c Windows directory: C:\windows
18:01:37.0045 0x0d5c System windows directory: C:\windows
18:01:37.0045 0x0d5c Running under WOW64
18:01:37.0045 0x0d5c Processor architecture: Intel x64
18:01:37.0045 0x0d5c Number of processors: 4
18:01:37.0045 0x0d5c Page size: 0x1000
18:01:37.0045 0x0d5c Boot type: Normal boot
18:01:37.0045 0x0d5c ============================================================
18:01:37.0045 0x0d5c BG loaded
18:01:37.0357 0x0d5c System UUID: {533237F5-8D40-4695-706A-F964A9ABAA58}
18:01:39.0166 0x0d5c Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 ( 119.24 Gb ), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:01:39.0166 0x0d5c ============================================================
18:01:39.0166 0x0d5c \Device\Harddisk0\DR0:
18:01:39.0166 0x0d5c MBR partitions:
18:01:39.0166 0x0d5c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
18:01:39.0182 0x0d5c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xC9B3800
18:01:39.0182 0x0d5c ============================================================
18:01:39.0182 0x0d5c C: <-> \Device\Harddisk0\DR0\Partition2
18:01:39.0182 0x0d5c ============================================================
18:01:39.0182 0x0d5c Initialize success
18:01:39.0182 0x0d5c ============================================================
18:02:05.0857 0x12b4 ============================================================
18:02:05.0857 0x12b4 Scan started
18:02:05.0857 0x12b4 Mode: Manual; SigCheck; TDLFS;
18:02:05.0857 0x12b4 ============================================================
18:02:05.0857 0x12b4 KSN ping started
18:02:08.0806 0x12b4 KSN ping finished: true
18:02:09.0211 0x12b4 ================ Scan system memory ========================
18:02:09.0211 0x12b4 System memory - ok
18:02:09.0211 0x12b4 ================ Scan services =============================
18:02:09.0242 0x12b4 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\windows\system32\drivers\1394ohci.sys
18:02:09.0352 0x12b4 1394ohci - ok
18:02:09.0367 0x12b4 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\windows\system32\drivers\ACPI.sys
18:02:09.0383 0x12b4 ACPI - ok
18:02:09.0383 0x12b4 [ 12C5274CD87449A2A37A607CDB321922, 50FA524E66A8FA04037DC954D3AB5383C633898F111A3B7488630B649B897370 ] acpials C:\windows\system32\DRIVERS\acpials.sys
18:02:09.0398 0x12b4 acpials - ok
18:02:09.0398 0x12b4 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\windows\system32\drivers\acpipmi.sys
18:02:09.0414 0x12b4 AcpiPmi - ok
18:02:09.0430 0x12b4 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\windows\system32\drivers\adp94xx.sys
18:02:09.0445 0x12b4 adp94xx - ok
18:02:09.0461 0x12b4 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\windows\system32\drivers\adpahci.sys
18:02:09.0476 0x12b4 adpahci - ok
18:02:09.0476 0x12b4 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\windows\system32\drivers\adpu320.sys
18:02:09.0492 0x12b4 adpu320 - ok
18:02:09.0492 0x12b4 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\windows\System32\aelupsvc.dll
18:02:09.0539 0x12b4 AeLookupSvc - ok
18:02:09.0554 0x12b4 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\windows\system32\drivers\afd.sys
18:02:09.0586 0x12b4 AFD - ok
18:02:09.0586 0x12b4 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\windows\system32\drivers\agp440.sys
18:02:09.0586 0x12b4 agp440 - ok
18:02:09.0601 0x12b4 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\windows\System32\alg.exe
18:02:09.0601 0x12b4 ALG - ok
18:02:09.0617 0x12b4 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\windows\system32\drivers\aliide.sys
18:02:09.0617 0x12b4 aliide - ok
18:02:09.0617 0x12b4 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\windows\system32\drivers\amdide.sys
18:02:09.0632 0x12b4 amdide - ok
18:02:09.0632 0x12b4 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\windows\system32\drivers\amdk8.sys
18:02:09.0648 0x12b4 AmdK8 - ok
18:02:09.0648 0x12b4 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\windows\system32\drivers\amdppm.sys
18:02:09.0664 0x12b4 AmdPPM - ok
18:02:09.0664 0x12b4 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\windows\system32\drivers\amdsata.sys
18:02:09.0679 0x12b4 amdsata - ok
18:02:09.0679 0x12b4 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\windows\system32\drivers\amdsbs.sys
18:02:09.0695 0x12b4 amdsbs - ok
18:02:09.0695 0x12b4 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\windows\system32\drivers\amdxata.sys
18:02:09.0695 0x12b4 amdxata - ok
18:02:09.0710 0x12b4 [ 449D90F1FB6402773C2F1ECCEAE15F74, D432D3F9D9AD14C70324B13C0A82A5BADC0EA4927B2E49B8BC31A5DEE6440374 ] AMPPAL C:\windows\system32\DRIVERS\AMPPAL.sys
18:02:09.0726 0x12b4 AMPPAL - ok
18:02:09.0726 0x12b4 [ 449D90F1FB6402773C2F1ECCEAE15F74, D432D3F9D9AD14C70324B13C0A82A5BADC0EA4927B2E49B8BC31A5DEE6440374 ] AMPPALP C:\windows\system32\DRIVERS\amppal.sys
18:02:09.0742 0x12b4 AMPPALP - ok
18:02:09.0757 0x12b4 [ AB6E5B9333101E414D8F04BC570064F1, 4BB20C0ECE2C655B8E3A40E8C69A7B6974B73D3585AEDF47A0C52582D17BDAF6 ] AMPPALR3 C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
18:02:09.0804 0x12b4 AMPPALR3 - ok
18:02:09.0804 0x12b4 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\windows\system32\drivers\appid.sys
18:02:09.0851 0x12b4 AppID - ok
18:02:09.0866 0x12b4 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\windows\System32\appidsvc.dll
18:02:09.0882 0x12b4 AppIDSvc - ok
18:02:09.0898 0x12b4 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\windows\System32\appinfo.dll
18:02:09.0898 0x12b4 Appinfo - ok
18:02:09.0913 0x12b4 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\windows\system32\drivers\arc.sys
18:02:09.0913 0x12b4 arc - ok
18:02:09.0929 0x12b4 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\windows\system32\drivers\arcsas.sys
18:02:09.0929 0x12b4 arcsas - ok
18:02:09.0944 0x12b4 [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:02:09.0944 0x12b4 aspnet_state - ok
18:02:09.0944 0x12b4 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
18:02:09.0976 0x12b4 AsyncMac - ok
18:02:09.0976 0x12b4 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\windows\system32\drivers\atapi.sys
18:02:09.0991 0x12b4 atapi - ok
18:02:10.0007 0x12b4 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
18:02:10.0038 0x12b4 AudioEndpointBuilder - ok
18:02:10.0054 0x12b4 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\windows\System32\Audiosrv.dll
18:02:10.0100 0x12b4 AudioSrv - ok
18:02:10.0100 0x12b4 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\windows\System32\AxInstSV.dll
18:02:10.0132 0x12b4 AxInstSV - ok
18:02:10.0132 0x12b4 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
18:02:10.0163 0x12b4 b06bdrv - ok
18:02:10.0163 0x12b4 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\windows\system32\DRIVERS\b57nd60a.sys
18:02:10.0178 0x12b4 b57nd60a - ok
18:02:10.0194 0x12b4 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\windows\System32\bdesvc.dll
18:02:10.0194 0x12b4 BDESVC - ok
18:02:10.0210 0x12b4 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\windows\system32\drivers\Beep.sys
18:02:10.0225 0x12b4 Beep - ok
18:02:10.0241 0x12b4 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\windows\System32\bfe.dll
18:02:10.0272 0x12b4 BFE - ok
18:02:10.0288 0x12b4 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\windows\System32\qmgr.dll
18:02:10.0334 0x12b4 BITS - ok
18:02:10.0334 0x12b4 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\windows\system32\DRIVERS\blbdrive.sys
18:02:10.0350 0x12b4 blbdrive - ok
18:02:10.0366 0x12b4 [ A52EA1D8C2900055323C93DDB252A3DA, 70C30AACE3948DFD2E4C52818F93F03AF32430B43229F613FEE3C4CD4FA1EFE6 ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
18:02:10.0397 0x12b4 Bluetooth Device Monitor - ok
18:02:10.0412 0x12b4 [ 091210450CA7CED08F360D9D7FEC5D11, 52298A6FE7DCF5EA484E6A1CBE48E2B1106D006E18F2278CB38AAAB10BB905BD ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
18:02:10.0444 0x12b4 Bluetooth Media Service - ok
18:02:10.0475 0x12b4 [ 392450754E17FF778CBC5B9D20583AD1, 4E2CC0D5D41303202EE7655FB1F779C41808A714486BAFF22A321A5BAF9FD0F6 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
18:02:10.0506 0x12b4 Bluetooth OBEX Service - ok
18:02:10.0506 0x12b4 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\windows\system32\DRIVERS\bowser.sys
18:02:10.0522 0x12b4 bowser - ok
18:02:10.0522 0x12b4 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\windows\system32\drivers\BrFiltLo.sys
18:02:10.0522 0x12b4 BrFiltLo - ok
18:02:10.0537 0x12b4 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\windows\system32\drivers\BrFiltUp.sys
18:02:10.0537 0x12b4 BrFiltUp - ok
18:02:10.0553 0x12b4 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\windows\System32\browser.dll
18:02:10.0553 0x12b4 Browser - ok
18:02:10.0568 0x12b4 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\windows\System32\Drivers\Brserid.sys
18:02:10.0584 0x12b4 Brserid - ok
18:02:10.0584 0x12b4 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\windows\System32\Drivers\BrSerWdm.sys
18:02:10.0600 0x12b4 BrSerWdm - ok
18:02:10.0600 0x12b4 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\windows\System32\Drivers\BrUsbMdm.sys
18:02:10.0615 0x12b4 BrUsbMdm - ok
18:02:10.0615 0x12b4 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\windows\System32\Drivers\BrUsbSer.sys
18:02:10.0631 0x12b4 BrUsbSer - ok
18:02:10.0631 0x12b4 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\windows\system32\drivers\BthEnum.sys
18:02:10.0631 0x12b4 BthEnum - ok
18:02:10.0646 0x12b4 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\windows\system32\drivers\bthmodem.sys
18:02:10.0662 0x12b4 BTHMODEM - ok
18:02:10.0662 0x12b4 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\windows\system32\DRIVERS\bthpan.sys
18:02:10.0678 0x12b4 BthPan - ok
18:02:10.0693 0x12b4 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\windows\System32\Drivers\BTHport.sys
18:02:10.0724 0x12b4 BTHPORT - ok
18:02:10.0724 0x12b4 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\windows\system32\bthserv.dll
18:02:10.0771 0x12b4 bthserv - ok
18:02:10.0771 0x12b4 [ 588762F716C2B7A2054AFBC3D58E5C21, CD44B0200B2E0A81073563BE84ECF9C092F4B5E9DC166A8F0690D6272913CCB7 ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
18:02:10.0787 0x12b4 BTHSSecurityMgr - ok
18:02:10.0787 0x12b4 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\windows\System32\Drivers\BTHUSB.sys
18:02:10.0802 0x12b4 BTHUSB - ok
18:02:10.0802 0x12b4 [ 988CC6CC49303665D3B2435C51505C3F, 5217A7A1BAD77EBF4E5D68D191FCFD7CE4FB96ABB91638383A077BE9CE794EE3 ] btmaux C:\windows\system32\DRIVERS\btmaux.sys
18:02:10.0818 0x12b4 btmaux - ok
18:02:10.0834 0x12b4 [ 2B4B508AFAC2A563931AF1FE875A5B16, F6A5261BD3FB8AE7BF26F32B681A15E56317EF8A9D8AB84B9B6BCA66F5484698 ] btmhsf C:\windows\system32\DRIVERS\btmhsf.sys
18:02:10.0849 0x12b4 btmhsf - ok
18:02:10.0865 0x12b4 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
18:02:10.0896 0x12b4 cdfs - ok
18:02:10.0896 0x12b4 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\windows\system32\DRIVERS\cdrom.sys
18:02:10.0912 0x12b4 cdrom - ok
18:02:10.0912 0x12b4 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\windows\System32\certprop.dll
18:02:10.0943 0x12b4 CertPropSvc - ok
18:02:10.0943 0x12b4 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\windows\system32\drivers\circlass.sys
18:02:10.0958 0x12b4 circlass - ok
18:02:10.0958 0x12b4 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\windows\system32\CLFS.sys
18:02:10.0974 0x12b4 CLFS - ok
18:02:10.0990 0x12b4 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:02:10.0990 0x12b4 clr_optimization_v2.0.50727_32 - ok
18:02:11.0005 0x12b4 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:02:11.0005 0x12b4 clr_optimization_v2.0.50727_64 - ok
18:02:11.0021 0x12b4 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:02:11.0036 0x12b4 clr_optimization_v4.0.30319_32 - ok
18:02:11.0036 0x12b4 [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:02:11.0052 0x12b4 clr_optimization_v4.0.30319_64 - ok
18:02:11.0052 0x12b4 clwvd - ok
18:02:11.0052 0x12b4 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\windows\system32\DRIVERS\CmBatt.sys
18:02:11.0068 0x12b4 CmBatt - ok
18:02:11.0068 0x12b4 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\windows\system32\drivers\cmdide.sys
18:02:11.0068 0x12b4 cmdide - ok
18:02:11.0083 0x12b4 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\windows\system32\Drivers\cng.sys
18:02:11.0114 0x12b4 CNG - ok
18:02:11.0114 0x12b4 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\windows\system32\DRIVERS\compbatt.sys
18:02:11.0114 0x12b4 Compbatt - ok
18:02:11.0130 0x12b4 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\windows\system32\DRIVERS\CompositeBus.sys
18:02:11.0130 0x12b4 CompositeBus - ok
18:02:11.0146 0x12b4 COMSysApp - ok
18:02:11.0161 0x12b4 [ 2EB06FCCFACB43B0EA6EBDD1ABE8CB17, 4F29F185B794D5E5F24D51DC06F6D33A56B0F308626B61868F1551100335CBE2 ] cphs C:\windows\SysWow64\IntelCpHeciSvc.exe
18:02:11.0177 0x12b4 cphs - ok
18:02:11.0177 0x12b4 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\windows\system32\drivers\crcdisk.sys
18:02:11.0177 0x12b4 crcdisk - ok
18:02:11.0192 0x12b4 [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\windows\system32\cryptsvc.dll
18:02:11.0192 0x12b4 CryptSvc - ok
18:02:11.0208 0x12b4 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\windows\system32\rpcss.dll
18:02:11.0255 0x12b4 DcomLaunch - ok
18:02:11.0255 0x12b4 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\windows\System32\defragsvc.dll
18:02:11.0302 0x12b4 defragsvc - ok
18:02:11.0302 0x12b4 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\windows\system32\Drivers\dfsc.sys
18:02:11.0333 0x12b4 DfsC - ok
18:02:11.0333 0x12b4 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\windows\system32\dhcpcore.dll
18:02:11.0348 0x12b4 Dhcp - ok
18:02:11.0348 0x12b4 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\windows\system32\drivers\discache.sys
18:02:11.0380 0x12b4 discache - ok
18:02:11.0380 0x12b4 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\windows\system32\drivers\disk.sys
18:02:11.0395 0x12b4 Disk - ok
18:02:11.0395 0x12b4 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\windows\System32\dnsrslvr.dll
18:02:11.0411 0x12b4 Dnscache - ok
18:02:11.0426 0x12b4 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\windows\System32\dot3svc.dll
18:02:11.0458 0x12b4 dot3svc - ok
18:02:11.0458 0x12b4 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\windows\system32\dps.dll
18:02:11.0489 0x12b4 DPS - ok
18:02:11.0489 0x12b4 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\windows\system32\drivers\drmkaud.sys
18:02:11.0504 0x12b4 drmkaud - ok
18:02:11.0520 0x12b4 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
18:02:11.0551 0x12b4 DXGKrnl - ok
18:02:11.0551 0x12b4 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\windows\System32\eapsvc.dll
18:02:11.0582 0x12b4 EapHost - ok
18:02:11.0645 0x12b4 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\windows\system32\drivers\evbda.sys
18:02:11.0738 0x12b4 ebdrv - ok
18:02:11.0754 0x12b4 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS C:\windows\System32\lsass.exe
18:02:11.0754 0x12b4 EFS - ok
18:02:11.0785 0x12b4 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\windows\ehome\ehRecvr.exe
18:02:11.0801 0x12b4 ehRecvr - ok
18:02:11.0816 0x12b4 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\windows\ehome\ehsched.exe
18:02:11.0832 0x12b4 ehSched - ok
18:02:11.0832 0x12b4 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\windows\system32\drivers\elxstor.sys
18:02:11.0863 0x12b4 elxstor - ok
18:02:11.0863 0x12b4 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\windows\system32\drivers\errdev.sys
18:02:11.0863 0x12b4 ErrDev - ok
18:02:11.0879 0x12b4 [ F9B5EFCE2A856BBA9DA2A28252180036, 40AAD9FB5E05596FF0181352C08475FEB2F495E54EEBF20623358F90EDE7189B ] ETD C:\windows\system32\DRIVERS\ETD.sys
18:02:11.0894 0x12b4 ETD - ok
18:02:11.0910 0x12b4 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\windows\system32\es.dll
18:02:11.0941 0x12b4 EventSystem - ok
18:02:11.0957 0x12b4 [ 64D25284A4E9D11CA0722AF3F30FD970, C7C40CA8AC444F7B0F88086396C17316348480EBA09109222897B5A42AD655DF ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe
18:02:11.0972 0x12b4 EvtEng - ok
18:02:11.0972 0x12b4 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\windows\system32\drivers\exfat.sys
18:02:12.0004 0x12b4 exfat - ok
18:02:12.0019 0x12b4 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\windows\system32\drivers\fastfat.sys
18:02:12.0050 0x12b4 fastfat - ok
18:02:12.0066 0x12b4 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\windows\system32\fxssvc.exe
18:02:12.0082 0x12b4 Fax - ok
18:02:12.0097 0x12b4 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\windows\system32\drivers\fdc.sys
18:02:12.0097 0x12b4 fdc - ok
18:02:12.0097 0x12b4 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\windows\system32\fdPHost.dll
18:02:12.0128 0x12b4 fdPHost - ok
18:02:12.0128 0x12b4 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\windows\system32\fdrespub.dll
18:02:12.0160 0x12b4 FDResPub - ok
18:02:12.0160 0x12b4 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\windows\system32\drivers\fileinfo.sys
18:02:12.0175 0x12b4 FileInfo - ok
18:02:12.0175 0x12b4 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\windows\system32\drivers\filetrace.sys
18:02:12.0206 0x12b4 Filetrace - ok
18:02:12.0206 0x12b4 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\windows\system32\drivers\flpydisk.sys
18:02:12.0206 0x12b4 flpydisk - ok
18:02:12.0222 0x12b4 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
18:02:12.0238 0x12b4 FltMgr - ok
18:02:12.0253 0x12b4 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\windows\system32\FntCache.dll
18:02:12.0300 0x12b4 FontCache - ok
18:02:12.0300 0x12b4 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:02:12.0300 0x12b4 FontCache3.0.0.0 - ok
18:02:12.0316 0x12b4 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\windows\system32\drivers\FsDepends.sys
18:02:12.0316 0x12b4 FsDepends - ok
18:02:12.0316 0x12b4 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
18:02:12.0331 0x12b4 Fs_Rec - ok
18:02:12.0347 0x12b4 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
18:02:12.0362 0x12b4 fvevol - ok
18:02:12.0362 0x12b4 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
18:02:12.0378 0x12b4 gagp30kx - ok
18:02:12.0378 0x12b4 [ 521A469CAF61F00E1DE081CC2099C1D6, 5BF39C9797A28674203D5C3D5D942978B9C66F658A43D7696B4BE3E8A7880EB9 ] GameConsoleService C:\Program Files (x86)\WildGames\Game Console - WildGames\GameConsoleService.exe
18:02:12.0394 0x12b4 GameConsoleService - ok
18:02:12.0409 0x12b4 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\windows\System32\gpsvc.dll
18:02:12.0456 0x12b4 gpsvc - ok
18:02:12.0456 0x12b4 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\windows\system32\drivers\hcw85cir.sys
18:02:12.0472 0x12b4 hcw85cir - ok
18:02:12.0472 0x12b4 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
18:02:12.0503 0x12b4 HdAudAddService - ok
18:02:12.0503 0x12b4 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\windows\system32\DRIVERS\HDAudBus.sys
18:02:12.0518 0x12b4 HDAudBus - ok
18:02:12.0518 0x12b4 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\windows\system32\drivers\HidBatt.sys
18:02:12.0534 0x12b4 HidBatt - ok
18:02:12.0534 0x12b4 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\windows\system32\drivers\hidbth.sys
18:02:12.0550 0x12b4 HidBth - ok
18:02:12.0550 0x12b4 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\windows\system32\drivers\hidir.sys
18:02:12.0565 0x12b4 HidIr - ok
18:02:12.0565 0x12b4 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\windows\system32\hidserv.dll
18:02:12.0596 0x12b4 hidserv - ok
18:02:12.0596 0x12b4 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\windows\system32\drivers\hidusb.sys
18:02:12.0612 0x12b4 HidUsb - ok
18:02:12.0612 0x12b4 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\windows\system32\kmsvc.dll
18:02:12.0643 0x12b4 hkmsvc - ok
18:02:12.0643 0x12b4 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\windows\system32\ListSvc.dll
18:02:12.0674 0x12b4 HomeGroupListener - ok
18:02:12.0674 0x12b4 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\windows\system32\provsvc.dll
18:02:12.0690 0x12b4 HomeGroupProvider - ok
18:02:12.0690 0x12b4 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
18:02:12.0706 0x12b4 HpSAMD - ok
18:02:12.0721 0x12b4 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\windows\system32\drivers\HTTP.sys
18:02:12.0768 0x12b4 HTTP - ok
18:02:12.0784 0x12b4 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
18:02:12.0784 0x12b4 hwpolicy - ok
18:02:12.0784 0x12b4 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\windows\system32\DRIVERS\i8042prt.sys
18:02:12.0799 0x12b4 i8042prt - ok
18:02:12.0815 0x12b4 [ C224331A54571C8C9162F7714400BBBD, C2CA4881ACD46071E67435BE5E3DB133D0743B026FD20D6D6E26B2FE7A03FCAA ] iaStor C:\windows\system32\DRIVERS\iaStor.sys
18:02:12.0830 0x12b4 iaStor - ok
18:02:12.0846 0x12b4 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
18:02:12.0862 0x12b4 iaStorV - ok
18:02:12.0862 0x12b4 [ 60CC7AE9AEDB4D1E7923BD053B176D97, 52783EE81DCA8267267ADD862A1BF049765BB154F904196B55C0CA26E30FD393 ] ibtfltcoex C:\windows\system32\DRIVERS\iBtFltCoex.sys
18:02:12.0862 0x12b4 ibtfltcoex - ok
18:02:12.0893 0x12b4 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:02:12.0908 0x12b4 idsvc - ok
18:02:12.0908 0x12b4 IEEtwCollectorService - ok
18:02:13.0189 0x12b4 [ 54E37A4E66B2CA1C38E9728FAD5F9822, C53500674DD96909A34C3975C81D9325E4DAC0753A3E99535246BF7BADF19EF4 ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
18:02:13.0548 0x12b4 igfx - ok
18:02:13.0564 0x12b4 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\windows\system32\drivers\iirsp.sys
18:02:13.0564 0x12b4 iirsp - ok
18:02:13.0595 0x12b4 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\windows\System32\ikeext.dll
18:02:13.0610 0x12b4 IKEEXT - ok
18:02:13.0626 0x12b4 [ CADDF0927DAC63EDAE48F5C35A61D87D, C46006461311B1563C1D149B9D60B202F30147265B9D93069B084D03A09D2BEC ] intaud_WaveExtensible C:\windows\system32\drivers\intelaud.sys
18:02:13.0626 0x12b4 intaud_WaveExtensible - ok
18:02:13.0704 0x12b4 [ 6EF96DF5184DDB95A12107B8D7531FB7, 6FE47486E2D40891FA977E1EBB8FDB96FE9856836399ADAE7F91F24A42358583 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
18:02:13.0798 0x12b4 IntcAzAudAddService - ok
18:02:13.0813 0x12b4 [ 6C9FFFECA9FED31347D211C5D1FFBD2D, 36CF8B847FAED0D978B3169ED550CC958025902CAC1D7D304E2684B2483E72B8 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
18:02:13.0829 0x12b4 IntcDAud - ok
18:02:13.0844 0x12b4 [ 832CE330DD987227B7DEA8C03F22AEFA, 3DE64D9519D9D865D4C1AA7483D846F0154392B6685BDC451DEC7DA5EA0E2B2E ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
18:02:13.0860 0x12b4 Intel® Capability Licensing Service Interface - ok
18:02:13.0860 0x12b4 [ 9571D8BDB56EBC52280E8020574508E6, 0BF66B718E8261D3964CE0B24785F265DD31D4002CDA6F8AE24DDB4D66BF9DD0 ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
18:02:13.0876 0x12b4 Intel® ME Service - ok
18:02:13.0876 0x12b4 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\windows\system32\drivers\intelide.sys
18:02:13.0876 0x12b4 intelide - ok
18:02:13.0891 0x12b4 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\windows\system32\DRIVERS\intelppm.sys
18:02:13.0891 0x12b4 intelppm - ok
18:02:13.0891 0x12b4 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\windows\system32\ipbusenum.dll
18:02:13.0922 0x12b4 IPBusEnum - ok
18:02:13.0938 0x12b4 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
18:02:13.0969 0x12b4 IpFilterDriver - ok
18:02:13.0969 0x12b4 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\windows\System32\iphlpsvc.dll
18:02:14.0000 0x12b4 iphlpsvc - ok
18:02:14.0000 0x12b4 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\windows\system32\drivers\IPMIDrv.sys
18:02:14.0016 0x12b4 IPMIDRV - ok
18:02:14.0016 0x12b4 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\windows\system32\drivers\ipnat.sys
18:02:14.0047 0x12b4 IPNAT - ok
18:02:14.0047 0x12b4 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\windows\system32\drivers\irenum.sys
18:02:14.0063 0x12b4 IRENUM - ok
18:02:14.0063 0x12b4 [ 6DC22BDAA595BE00F19696E72F2F3312, B46B50395100D3A23663C56CC395A874130B72E314997AAD6C52F0C5C23364C4 ] irstrtdv C:\windows\system32\DRIVERS\irstrtdv.sys
18:02:14.0078 0x12b4 irstrtdv - ok
18:02:14.0078 0x12b4 [ 205FD80EF4B9832F9763B9A187957260, 560410A01B4C2395F7129413C2460F6A0776DF52D08758E3AE68EC41FC79A2D3 ] irstrtsv C:\windows\SysWOW64\irstrtsv.exe
18:02:14.0094 0x12b4 irstrtsv - ok
18:02:14.0094 0x12b4 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\windows\system32\drivers\isapnp.sys
18:02:14.0094 0x12b4 isapnp - ok
18:02:14.0110 0x12b4 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\windows\system32\drivers\msiscsi.sys
18:02:14.0125 0x12b4 iScsiPrt - ok
18:02:14.0125 0x12b4 [ 716F66336F10885D935B08174DC54242, 1992708956A2A45A8870CFCB532F3ABF24B1143B75EF32AB1F59D5D86E65F493 ] iwdbus C:\windows\system32\DRIVERS\iwdbus.sys
18:02:14.0125 0x12b4 iwdbus - ok
18:02:14.0141 0x12b4 [ DBD76BC1D498FE368F2C8CB76C3E00A4, CDFB082B57807CE89509A16D1C8A5BAEEC026EDD7068F5E359AA50557D2525DC ] jhi_service C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
18:02:14.0141 0x12b4 jhi_service - ok
18:02:14.0156 0x12b4 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\windows\system32\DRIVERS\kbdclass.sys
18:02:14.0156 0x12b4 kbdclass - ok
18:02:14.0156 0x12b4 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\windows\system32\drivers\kbdhid.sys
18:02:14.0172 0x12b4 kbdhid - ok
18:02:14.0172 0x12b4 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso C:\windows\system32\lsass.exe
18:02:14.0188 0x12b4 KeyIso - ok
18:02:14.0188 0x12b4 [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
18:02:14.0203 0x12b4 KSecDD - ok
18:02:14.0203 0x12b4 [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
18:02:14.0219 0x12b4 KSecPkg - ok
18:02:14.0219 0x12b4 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\windows\system32\drivers\ksthunk.sys
18:02:14.0250 0x12b4 ksthunk - ok
18:02:14.0250 0x12b4 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\windows\system32\msdtckrm.dll
18:02:14.0281 0x12b4 KtmRm - ok
18:02:14.0297 0x12b4 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\windows\system32\srvsvc.dll
18:02:14.0328 0x12b4 LanmanServer - ok
18:02:14.0328 0x12b4 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
18:02:14.0359 0x12b4 LanmanWorkstation - ok
18:02:14.0359 0x12b4 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
18:02:14.0390 0x12b4 lltdio - ok
18:02:14.0406 0x12b4 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\windows\System32\lltdsvc.dll
18:02:14.0437 0x12b4 lltdsvc - ok
18:02:14.0437 0x12b4 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\windows\System32\lmhsvc.dll
18:02:14.0468 0x12b4 lmhosts - ok
18:02:14.0484 0x12b4 [ 86E4CC39C953D11EF57CF54C4DC78238, 076973CA22E8BA94877241EC39D97612C32F3E744E026FA0E518C4DDE8277A55 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
18:02:14.0484 0x12b4 LMS - ok
18:02:14.0500 0x12b4 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\windows\system32\drivers\lsi_fc.sys
18:02:14.0500 0x12b4 LSI_FC - ok
18:02:14.0515 0x12b4 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
18:02:14.0515 0x12b4 LSI_SAS - ok
18:02:14.0531 0x12b4 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
18:02:14.0531 0x12b4 LSI_SAS2 - ok
18:02:14.0531 0x12b4 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
18:02:14.0546 0x12b4 LSI_SCSI - ok
18:02:14.0546 0x12b4 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\windows\system32\drivers\luafv.sys
18:02:14.0578 0x12b4 luafv - ok
18:02:14.0578 0x12b4 [ F92B0E478C0FAA6D6661E6E977247E60, 8B26B57C2C60C98CD6273ACA126B2CD0356ADB13A59FEC12882357A6B973123C ] MBAMProtector C:\windows\system32\drivers\mbam.sys
18:02:14.0593 0x12b4 MBAMProtector - ok
18:02:14.0624 0x12b4 [ D84AEA3F3329D622DFC1297DDDF6163B, 316FE56CC30ED1473A917253F46B79EAA12F4ABD5B4B1ADB03929DFEE940F577 ] MBAMScheduler C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
18:02:14.0671 0x12b4 MBAMScheduler - ok
18:02:14.0702 0x12b4 [ 4F45ED469906494F9BF754E476390DBD, D8FF6AFD73D8C191F5732DF9737E6F83B2B52B06A3A6CD4CC6EAC9464CBB2772 ] MBAMService C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
18:02:14.0718 0x12b4 MBAMService - ok
18:02:14.0734 0x12b4 [ 8A50D5304E6AE48664CF5838EC32F647, C76943FABEE1B5E1B641AA610668CCD4227E2C4B191DD30B79D3AB31A9E8B5BE ] MBAMSwissArmy C:\windows\system32\drivers\MBAMSwissArmy.sys
18:02:14.0734 0x12b4 MBAMSwissArmy - ok
18:02:14.0749 0x12b4 [ 15E8ABC06843672955CE26A009533BAD, E7221B7DE9DB45447C68E79C6BFD064713C5974F7E79925BD7DEEF71F73F3E83 ] MBAMWebAccessControl C:\windows\system32\drivers\mwac.sys
18:02:14.0749 0x12b4 MBAMWebAccessControl - ok
18:02:14.0765 0x12b4 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\windows\system32\Mcx2Svc.dll
18:02:14.0765 0x12b4 Mcx2Svc - ok
18:02:14.0780 0x12b4 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\windows\system32\drivers\megasas.sys
18:02:14.0780 0x12b4 megasas - ok
18:02:14.0796 0x12b4 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
18:02:14.0812 0x12b4 MegaSR - ok
18:02:14.0812 0x12b4 [ 6B01B7414A105B9E51652089A03027CF, 9B113DC22F7D0D0B376E577C6D7083F9EDC09BBFE47726393E16D4FDAAAE21FE ] MEIx64 C:\windows\system32\DRIVERS\HECIx64.sys
18:02:14.0827 0x12b4 MEIx64 - ok
18:02:14.0827 0x12b4 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\windows\system32\mmcss.dll
18:02:14.0858 0x12b4 MMCSS - ok
18:02:14.0858 0x12b4 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\windows\system32\drivers\modem.sys
18:02:14.0890 0x12b4 Modem - ok
18:02:14.0890 0x12b4 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\windows\system32\DRIVERS\monitor.sys
18:02:14.0905 0x12b4 monitor - ok
18:02:14.0905 0x12b4 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\windows\system32\DRIVERS\mouclass.sys
18:02:14.0921 0x12b4 mouclass - ok
18:02:14.0921 0x12b4 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\windows\system32\drivers\mouhid.sys
18:02:14.0936 0x12b4 mouhid - ok
18:02:14.0936 0x12b4 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\windows\system32\drivers\mountmgr.sys
18:02:14.0936 0x12b4 mountmgr - ok
18:02:14.0952 0x12b4 [ 707E98CC15C2224C078C9E71FF1889BC, 958416FE081436FDBF7F2BEBBB2795C54CC4F3F349D6DF463296A7BBA3404F13 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
18:02:14.0952 0x12b4 MozillaMaintenance - ok
18:02:14.0968 0x12b4 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\windows\system32\drivers\mpio.sys
18:02:14.0968 0x12b4 mpio - ok
18:02:14.0983 0x12b4 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
18:02:14.0999 0x12b4 mpsdrv - ok
18:02:15.0030 0x12b4 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\windows\system32\mpssvc.dll
18:02:15.0061 0x12b4 MpsSvc - ok
18:02:15.0077 0x12b4 [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
18:02:15.0092 0x12b4 MRxDAV - ok
18:02:15.0092 0x12b4 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
18:02:15.0108 0x12b4 mrxsmb - ok
18:02:15.0108 0x12b4 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
18:02:15.0124 0x12b4 mrxsmb10 - ok
18:02:15.0124 0x12b4 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
18:02:15.0139 0x12b4 mrxsmb20 - ok
18:02:15.0139 0x12b4 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\windows\system32\drivers\msahci.sys
18:02:15.0155 0x12b4 msahci - ok
18:02:15.0155 0x12b4 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\windows\system32\drivers\msdsm.sys
18:02:15.0170 0x12b4 msdsm - ok
18:02:15.0170 0x12b4 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\windows\System32\msdtc.exe
18:02:15.0186 0x12b4 MSDTC - ok
18:02:15.0186 0x12b4 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\windows\system32\drivers\Msfs.sys
18:02:15.0217 0x12b4 Msfs - ok
18:02:15.0217 0x12b4 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
18:02:15.0248 0x12b4 mshidkmdf - ok
18:02:15.0248 0x12b4 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\windows\system32\drivers\msisadrv.sys
18:02:15.0264 0x12b4 msisadrv - ok
18:02:15.0264 0x12b4 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\windows\system32\iscsiexe.dll
18:02:15.0295 0x12b4 MSiSCSI - ok
18:02:15.0295 0x12b4 msiserver - ok
18:02:15.0295 0x12b4 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
18:02:15.0326 0x12b4 MSKSSRV - ok
18:02:15.0342 0x12b4 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
18:02:15.0373 0x12b4 MSPCLOCK - ok
18:02:15.0373 0x12b4 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\windows\system32\drivers\MSPQM.sys
18:02:15.0404 0x12b4 MSPQM - ok
18:02:15.0420 0x12b4 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\windows\system32\drivers\MsRPC.sys
18:02:15.0436 0x12b4 MsRPC - ok
18:02:15.0436 0x12b4 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\windows\system32\DRIVERS\mssmbios.sys
18:02:15.0436 0x12b4 mssmbios - ok
18:02:15.0451 0x12b4 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\windows\system32\drivers\MSTEE.sys
18:02:15.0482 0x12b4 MSTEE - ok
18:02:15.0482 0x12b4 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\windows\system32\drivers\MTConfig.sys
18:02:15.0498 0x12b4 MTConfig - ok
18:02:15.0514 0x12b4 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\windows\system32\Drivers\mup.sys
18:02:15.0514 0x12b4 Mup - ok
18:02:15.0529 0x12b4 [ E3B58E3011B207C5289D11173B30E298, 68BDF7DE4FD5E38D33DBAD2A2E05E32BABA8BBD85DBC4364AF7CD62C54C6B539 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
18:02:15.0545 0x12b4 MyWiFiDHCPDNS - ok
18:02:15.0560 0x12b4 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\windows\system32\qagentRT.dll
18:02:15.0607 0x12b4 napagent - ok
18:02:15.0607 0x12b4 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
18:02:15.0638 0x12b4 NativeWifiP - ok
18:02:15.0654 0x12b4 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\windows\system32\drivers\ndis.sys
18:02:15.0701 0x12b4 NDIS - ok
18:02:15.0701 0x12b4 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
18:02:15.0732 0x12b4 NdisCap - ok
18:02:15.0732 0x12b4 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
18:02:15.0779 0x12b4 NdisTapi - ok
18:02:15.0779 0x12b4 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
18:02:15.0810 0x12b4 Ndisuio - ok
18:02:15.0826 0x12b4 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
18:02:15.0857 0x12b4 NdisWan - ok
18:02:15.0857 0x12b4 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
18:02:15.0904 0x12b4 NDProxy - ok
18:02:15.0904 0x12b4 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
18:02:15.0950 0x12b4 NetBIOS - ok
18:02:15.0950 0x12b4 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
18:02:15.0997 0x12b4 NetBT - ok
18:02:15.0997 0x12b4 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon C:\windows\system32\lsass.exe
18:02:16.0013 0x12b4 Netlogon - ok
18:02:16.0028 0x12b4 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\windows\System32\netman.dll
18:02:16.0060 0x12b4 Netman - ok
18:02:16.0075 0x12b4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:02:16.0091 0x12b4 NetMsmqActivator - ok
18:02:16.0091 0x12b4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:02:16.0106 0x12b4 NetPipeActivator - ok
18:02:16.0106 0x12b4 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\windows\System32\netprofm.dll
18:02:16.0153 0x12b4 netprofm - ok
18:02:16.0169 0x12b4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:02:16.0169 0x12b4 NetTcpActivator - ok
18:02:16.0184 0x12b4 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:02:16.0200 0x12b4 NetTcpPortSharing - ok
18:02:16.0450 0x12b4 [ B51E9AD4F4E4F8DBE0AB882756BC5DAB, 74E975F3BF39B360C466A0CEEEF545D1B814EE1AEFF6B2FCDD81A33FA276FBF3 ] NETwNs64 C:\windows\system32\DRIVERS\NETwNs64.sys
18:02:16.0762 0x12b4 NETwNs64 - ok
18:02:16.0777 0x12b4 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
18:02:16.0793 0x12b4 nfrd960 - ok
18:02:16.0793 0x12b4 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\windows\System32\nlasvc.dll
18:02:16.0808 0x12b4 NlaSvc - ok
18:02:16.0824 0x12b4 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\windows\system32\drivers\Npfs.sys
18:02:16.0855 0x12b4 Npfs - ok
18:02:16.0855 0x12b4 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\windows\system32\nsisvc.dll
18:02:16.0902 0x12b4 nsi - ok
18:02:16.0902 0x12b4 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
18:02:16.0949 0x12b4 nsiproxy - ok
18:02:16.0980 0x12b4 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
18:02:17.0027 0x12b4 Ntfs - ok
18:02:17.0042 0x12b4 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\windows\system32\drivers\Null.sys
18:02:17.0058 0x12b4 Null - ok
18:02:17.0074 0x12b4 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\windows\system32\drivers\nvraid.sys
18:02:17.0089 0x12b4 nvraid - ok
18:02:17.0089 0x12b4 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\windows\system32\drivers\nvstor.sys
18:02:17.0105 0x12b4 nvstor - ok
18:02:17.0105 0x12b4 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\windows\system32\drivers\nv_agp.sys
18:02:17.0120 0x12b4 nv_agp - ok
18:02:17.0120 0x12b4 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\windows\system32\drivers\ohci1394.sys
18:02:17.0136 0x12b4 ohci1394 - ok
18:02:17.0136 0x12b4 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\windows\system32\pnrpsvc.dll
18:02:17.0167 0x12b4 p2pimsvc - ok
18:02:17.0167 0x12b4 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\windows\system32\p2psvc.dll
18:02:17.0198 0x12b4 p2psvc - ok
18:02:17.0198 0x12b4 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\windows\system32\drivers\parport.sys
18:02:17.0214 0x12b4 Parport - ok
18:02:17.0214 0x12b4 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\windows\system32\drivers\partmgr.sys
18:02:17.0230 0x12b4 partmgr - ok
18:02:17.0230 0x12b4 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\windows\System32\pcasvc.dll
18:02:17.0245 0x12b4 PcaSvc - ok
18:02:17.0261 0x12b4 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\windows\system32\drivers\pci.sys
18:02:17.0261 0x12b4 pci - ok
18:02:17.0276 0x12b4 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\windows\system32\drivers\pciide.sys
18:02:17.0276 0x12b4 pciide - ok
18:02:17.0292 0x12b4 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\windows\system32\drivers\pcmcia.sys
18:02:17.0292 0x12b4 pcmcia - ok
18:02:17.0308 0x12b4 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\windows\system32\drivers\pcw.sys
18:02:17.0308 0x12b4 pcw - ok
18:02:17.0339 0x12b4 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\windows\system32\drivers\peauth.sys
18:02:17.0370 0x12b4 PEAUTH - ok
18:02:17.0386 0x12b4 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\windows\SysWow64\perfhost.exe
18:02:17.0386 0x12b4 PerfHost - ok
18:02:17.0448 0x12b4 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\windows\system32\pla.dll
18:02:17.0510 0x12b4 pla - ok
18:02:17.0526 0x12b4 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\windows\system32\umpnpmgr.dll
18:02:17.0557 0x12b4 PlugPlay - ok
18:02:17.0557 0x12b4 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
18:02:17.0573 0x12b4 PNRPAutoReg - ok
18:02:17.0588 0x12b4 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\windows\system32\pnrpsvc.dll
18:02:17.0604 0x12b4 PNRPsvc - ok
18:02:17.0620 0x12b4 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\windows\System32\ipsecsvc.dll
18:02:17.0651 0x12b4 PolicyAgent - ok
18:02:17.0666 0x12b4 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\windows\system32\umpo.dll
18:02:17.0698 0x12b4 Power - ok
18:02:17.0698 0x12b4 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
18:02:17.0729 0x12b4 PptpMiniport - ok
18:02:17.0744 0x12b4 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\windows\system32\drivers\processr.sys
18:02:17.0744 0x12b4 Processor - ok
18:02:17.0760 0x12b4 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\windows\system32\profsvc.dll
18:02:17.0776 0x12b4 ProfSvc - ok
18:02:17.0776 0x12b4 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\windows\system32\lsass.exe
18:02:17.0791 0x12b4 ProtectedStorage - ok
18:02:17.0791 0x12b4 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\windows\system32\DRIVERS\pacer.sys
18:02:17.0822 0x12b4 Psched - ok
18:02:17.0854 0x12b4 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\windows\system32\drivers\ql2300.sys
18:02:17.0900 0x12b4 ql2300 - ok
18:02:17.0916 0x12b4 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\windows\system32\drivers\ql40xx.sys
18:02:17.0916 0x12b4 ql40xx - ok
18:02:17.0932 0x12b4 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\windows\system32\qwave.dll
18:02:17.0963 0x12b4 QWAVE - ok
18:02:17.0963 0x12b4 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
18:02:17.0978 0x12b4 QWAVEdrv - ok
18:02:17.0978 0x12b4 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
18:02:18.0010 0x12b4 RasAcd - ok
18:02:18.0010 0x12b4 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
18:02:18.0041 0x12b4 RasAgileVpn - ok
18:02:18.0056 0x12b4 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\windows\System32\rasauto.dll
18:02:18.0088 0x12b4 RasAuto - ok
18:02:18.0103 0x12b4 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
18:02:18.0134 0x12b4 Rasl2tp - ok
18:02:18.0134 0x12b4 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\windows\System32\rasmans.dll
18:02:18.0181 0x12b4 RasMan - ok
18:02:18.0181 0x12b4 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
18:02:18.0212 0x12b4 RasPppoe - ok
18:02:18.0212 0x12b4 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
18:02:18.0259 0x12b4 RasSstp - ok
18:02:18.0259 0x12b4 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
18:02:18.0306 0x12b4 rdbss - ok
18:02:18.0306 0x12b4 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\windows\system32\drivers\rdpbus.sys
18:02:18.0322 0x12b4 rdpbus - ok
18:02:18.0322 0x12b4 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\windows\system32\DRIVERS\RDPCDD.sys
18:02:18.0353 0x12b4 RDPCDD - ok
18:02:18.0368 0x12b4 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\windows\system32\drivers\rdpencdd.sys
18:02:18.0400 0x12b4 RDPENCDD - ok
18:02:18.0400 0x12b4 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\windows\system32\drivers\rdprefmp.sys
18:02:18.0431 0x12b4 RDPREFMP - ok
18:02:18.0431 0x12b4 [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD C:\windows\system32\drivers\RDPWD.sys
18:02:18.0446 0x12b4 RDPWD - ok
18:02:18.0462 0x12b4 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\windows\system32\drivers\rdyboost.sys
18:02:18.0478 0x12b4 rdyboost - ok
18:02:18.0478 0x12b4 [ F3AF2B43F35DBB3A0EB9FEEEC7D62217, 5BFB97BFE94F52CE02DFB2B7E8A9AD34AE489B77BA689F63D733EFB65548D734 ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
18:02:18.0493 0x12b4 RegSrvc - ok
18:02:18.0493 0x12b4 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\windows\System32\mprdim.dll
18:02:18.0524 0x12b4 RemoteAccess - ok
18:02:18.0540 0x12b4 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\windows\system32\regsvc.dll
18:02:18.0571 0x12b4 RemoteRegistry - ok
18:02:18.0571 0x12b4 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\windows\system32\DRIVERS\rfcomm.sys
18:02:18.0587 0x12b4 RFCOMM - ok
18:02:18.0587 0x12b4 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
18:02:18.0634 0x12b4 RpcEptMapper - ok
18:02:18.0634 0x12b4 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\windows\system32\locator.exe
18:02:18.0649 0x12b4 RpcLocator - ok
18:02:18.0774 0x12b4 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\windows\system32\rpcss.dll
18:02:18.0821 0x12b4 RpcSs - ok
18:02:18.0836 0x12b4 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
18:02:18.0868 0x12b4 rspndr - ok
18:02:18.0883 0x12b4 [ 6CF9DB101A75360E98659F823852E540, A7D48DF41A831EEF9978B51786EF80DB9CC40602BE66D46CA11BE1548BC2D10C ] RTL8167 C:\windows\system32\DRIVERS\Rt64win7.sys
18:02:18.0899 0x12b4 RTL8167 - ok
18:02:18.0914 0x12b4 [ CAB06CA598638E0457E1DCF8CA824EC2, 0193FC501E19104A1F71B240CD4E7093742F910A1A3CC3852CBCCE146C2167DB ] rusb3hub C:\windows\system32\DRIVERS\rusb3hub.sys
18:02:18.0930 0x12b4 rusb3hub - ok
18:02:18.0930 0x12b4 [ F47E2920F2A8C34562AAE24B73800C5C, AE18CB3DD00A6C0582E561B22D1BE3ABF0A48E78A7536486102095E20A102844 ] rusb3xhc C:\windows\system32\DRIVERS\rusb3xhc.sys
18:02:18.0946 0x12b4 rusb3xhc - ok
18:02:18.0946 0x12b4 [ 62DB6CC4B0818F1B5F3441241B098F12, 7A53B3FBA3F82EDE6FA688E531FBE7EC9E1AE329090C0AFE0DCD64F65BD90F21 ] SABI C:\windows\system32\Drivers\SABI.sys
18:02:18.0961 0x12b4 SABI - ok
18:02:18.0961 0x12b4 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs C:\windows\system32\lsass.exe
18:02:18.0977 0x12b4 SamSs - ok
18:02:18.0977 0x12b4 [ 5E66ABD041D76C46CBF55AEF910FCA56, AA275FE0506EE47EB717451F8415E29757C813F29F5C4B5D1629902B15831966 ] SamsungDeviceConfigurationWinService C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe
18:02:18.0977 0x12b4 SamsungDeviceConfigurationWinService - detected UnsignedFile.Multi.Generic ( 1 )
18:02:21.0653 0x12b4 Detect skipped due to KSN trusted
18:02:21.0653 0x12b4 SamsungDeviceConfigurationWinService - ok
18:02:21.0653 0x12b4 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\windows\system32\drivers\sbp2port.sys
18:02:21.0668 0x12b4 sbp2port - ok
18:02:21.0668 0x12b4 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\windows\System32\SCardSvr.dll
18:02:21.0715 0x12b4 SCardSvr - ok
18:02:21.0715 0x12b4 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
18:02:21.0762 0x12b4 scfilter - ok
18:02:21.0778 0x12b4 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\windows\system32\schedsvc.dll
18:02:21.0840 0x12b4 Schedule - ok
18:02:21.0840 0x12b4 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\windows\System32\certprop.dll
18:02:21.0871 0x12b4 SCPolicySvc - ok
18:02:21.0871 0x12b4 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\windows\System32\SDRSVC.dll
18:02:21.0887 0x12b4 SDRSVC - ok
18:02:21.0887 0x12b4 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\windows\system32\drivers\secdrv.sys
18:02:21.0918 0x12b4 secdrv - ok
18:02:21.0918 0x12b4 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\windows\system32\seclogon.dll
18:02:21.0949 0x12b4 seclogon - ok
18:02:21.0949 0x12b4 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\windows\System32\sens.dll
18:02:21.0980 0x12b4 SENS - ok
18:02:21.0980 0x12b4 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\windows\system32\sensrsvc.dll
18:02:21.0996 0x12b4 SensrSvc - ok
18:02:21.0996 0x12b4 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\windows\system32\drivers\serenum.sys
18:02:22.0012 0x12b4 Serenum - ok
18:02:22.0012 0x12b4 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\windows\system32\drivers\serial.sys
18:02:22.0027 0x12b4 Serial - ok
18:02:22.0027 0x12b4 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\windows\system32\drivers\sermouse.sys
18:02:22.0043 0x12b4 sermouse - ok
18:02:22.0043 0x12b4 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\windows\system32\sessenv.dll
18:02:22.0074 0x12b4 SessionEnv - ok
18:02:22.0074 0x12b4 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\windows\system32\drivers\sffdisk.sys
18:02:22.0090 0x12b4 sffdisk - ok
18:02:22.0090 0x12b4 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\windows\system32\drivers\sffp_mmc.sys
18:02:22.0105 0x12b4 sffp_mmc - ok
18:02:22.0105 0x12b4 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\windows\system32\drivers\sffp_sd.sys
18:02:22.0121 0x12b4 sffp_sd - ok
18:02:22.0121 0x12b4 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\windows\system32\drivers\sfloppy.sys
18:02:22.0121 0x12b4 sfloppy - ok
18:02:22.0136 0x12b4 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\windows\System32\ipnathlp.dll
18:02:22.0168 0x12b4 SharedAccess - ok
18:02:22.0183 0x12b4 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\windows\System32\shsvcs.dll
18:02:22.0214 0x12b4 ShellHWDetection - ok
18:02:22.0214 0x12b4 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
18:02:22.0230 0x12b4 SiSRaid2 - ok
18:02:22.0230 0x12b4 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
18:02:22.0246 0x12b4 SiSRaid4 - ok
18:02:22.0246 0x12b4 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\windows\system32\DRIVERS\smb.sys
18:02:22.0277 0x12b4 Smb - ok
18:02:22.0277 0x12b4 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\windows\System32\snmptrap.exe
18:02:22.0292 0x12b4 SNMPTRAP - ok
18:02:22.0292 0x12b4 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\windows\system32\drivers\spldr.sys
18:02:22.0308 0x12b4 spldr - ok
18:02:22.0308 0x12b4 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\windows\System32\spoolsv.exe
18:02:22.0339 0x12b4 Spooler - ok
18:02:22.0402 0x12b4 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\windows\system32\sppsvc.exe
18:02:22.0529 0x12b4 sppsvc - ok
18:02:22.0544 0x12b4 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\windows\system32\sppuinotify.dll
18:02:22.0576 0x12b4 sppuinotify - ok
18:02:22.0591 0x12b4 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\windows\system32\DRIVERS\srv.sys
18:02:22.0607 0x12b4 srv - ok
18:02:22.0622 0x12b4 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\windows\system32\DRIVERS\srv2.sys
18:02:22.0638 0x12b4 srv2 - ok
18:02:22.0638 0x12b4 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
18:02:22.0654 0x12b4 srvnet - ok
18:02:22.0654 0x12b4 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
18:02:22.0685 0x12b4 SSDPSRV - ok
18:02:22.0700 0x12b4 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\windows\system32\sstpsvc.dll
18:02:22.0716 0x12b4 SstpSvc - ok
18:02:22.0732 0x12b4 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\windows\system32\drivers\stexstor.sys
18:02:22.0732 0x12b4 stexstor - ok
18:02:22.0747 0x12b4 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\windows\System32\wiaservc.dll
18:02:22.0778 0x12b4 stisvc - ok
18:02:22.0778 0x12b4 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\windows\system32\DRIVERS\swenum.sys
18:02:22.0794 0x12b4 swenum - ok
18:02:22.0794 0x12b4 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\windows\System32\swprv.dll
18:02:22.0841 0x12b4 swprv - ok
18:02:22.0872 0x12b4 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\windows\system32\sysmain.dll
18:02:22.0934 0x12b4 SysMain - ok
18:02:22.0934 0x12b4 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\windows\System32\TabSvc.dll
18:02:22.0950 0x12b4 TabletInputService - ok
18:02:22.0966 0x12b4 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\windows\System32\tapisrv.dll
18:02:22.0997 0x12b4 TapiSrv - ok
18:02:23.0012 0x12b4 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\windows\System32\tbssvc.dll
18:02:23.0044 0x12b4 TBS - ok
18:02:23.0090 0x12b4 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\windows\system32\drivers\tcpip.sys
18:02:23.0153 0x12b4 Tcpip - ok
18:02:23.0200 0x12b4 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
18:02:23.0246 0x12b4 TCPIP6 - ok
18:02:23.0246 0x12b4 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
18:02:23.0262 0x12b4 tcpipreg - ok
18:02:23.0262 0x12b4 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\windows\system32\drivers\tdpipe.sys
18:02:23.0278 0x12b4 TDPIPE - ok
18:02:23.0278 0x12b4 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\windows\system32\drivers\tdtcp.sys
18:02:23.0293 0x12b4 TDTCP - ok
18:02:23.0293 0x12b4 [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\windows\system32\DRIVERS\tdx.sys
18:02:23.0324 0x12b4 tdx - ok
18:02:23.0324 0x12b4 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\windows\system32\DRIVERS\termdd.sys
18:02:23.0340 0x12b4 TermDD - ok
18:02:23.0366 0x12b4 [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService C:\windows\System32\termsrv.dll
18:02:23.0423 0x12b4 TermService - ok
18:02:23.0431 0x12b4 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\windows\system32\themeservice.dll
18:02:23.0451 0x12b4 Themes - ok
18:02:23.0458 0x12b4 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\windows\system32\mmcss.dll
18:02:23.0503 0x12b4 THREADORDER - ok
18:02:23.0508 0x12b4 [ DBCC20C02E8A3E43B03C304A4E40A84F, BF5F3ACCB0342304A6870E94D2576644B08DBF307C853C7DBA4B82B0C7309DA4 ] TPM C:\windows\system32\drivers\tpm.sys
18:02:23.0523 0x12b4 TPM - ok
18:02:23.0533 0x12b4 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\windows\System32\trkwks.dll
18:02:23.0571 0x12b4 TrkWks - ok
18:02:23.0578 0x12b4 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
18:02:23.0611 0x12b4 TrustedInstaller - ok
18:02:23.0618 0x12b4 [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv C:\windows\system32\DRIVERS\tssecsrv.sys
18:02:23.0626 0x12b4 tssecsrv - ok
18:02:23.0631 0x12b4 [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
18:02:23.0641 0x12b4 TsUsbFlt - ok
18:02:23.0646 0x12b4 [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\windows\system32\drivers\TsUsbGD.sys
18:02:23.0656 0x12b4 TsUsbGD - ok
18:02:23.0661 0x12b4 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
18:02:23.0693 0x12b4 tunnel - ok
18:02:23.0698 0x12b4 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\windows\system32\drivers\uagp35.sys
18:02:23.0711 0x12b4 uagp35 - ok
18:02:23.0721 0x12b4 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\windows\system32\DRIVERS\udfs.sys
18:02:23.0756 0x12b4 udfs - ok
18:02:23.0763 0x12b4 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\windows\system32\UI0Detect.exe
18:02:23.0778 0x12b4 UI0Detect - ok
18:02:23.0783 0x12b4 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
18:02:23.0796 0x12b4 uliagpkx - ok
18:02:23.0801 0x12b4 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\windows\system32\DRIVERS\umbus.sys
18:02:23.0811 0x12b4 umbus - ok
18:02:23.0813 0x12b4 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\windows\system32\drivers\umpass.sys
18:02:23.0823 0x12b4 UmPass - ok
18:02:23.0838 0x12b4 [ D80B1075B69B57A3AB78F750CE463ECE, E8435B723C3D9F5B28D5588365E7D6BED298565BCF61240C2B505B1033180DAA ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
18:02:23.0853 0x12b4 UNS - ok
18:02:23.0863 0x12b4 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\windows\System32\upnphost.dll
18:02:23.0901 0x12b4 upnphost - ok
18:02:23.0908 0x12b4 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\windows\system32\DRIVERS\usbccgp.sys
18:02:23.0918 0x12b4 usbccgp - ok
18:02:23.0923 0x12b4 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\windows\system32\drivers\usbcir.sys
18:02:23.0938 0x12b4 usbcir - ok
18:02:23.0943 0x12b4 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\windows\system32\drivers\usbehci.sys
18:02:23.0951 0x12b4 usbehci - ok
18:02:23.0963 0x12b4 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\windows\system32\DRIVERS\usbhub.sys
18:02:23.0978 0x12b4 usbhub - ok
18:02:23.0981 0x12b4 [ 9840FC418B4CBD632D3D0A667A725C31, 776D86A032DCA2842EF7AADB35473193CA80547223EFAA7F110F296C377077B0 ] usbohci C:\windows\system32\drivers\usbohci.sys
18:02:23.0991 0x12b4 usbohci - ok
18:02:23.0996 0x12b4 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\windows\system32\drivers\usbprint.sys
18:02:24.0006 0x12b4 usbprint - ok
18:02:24.0013 0x12b4 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\windows\system32\DRIVERS\USBSTOR.SYS
18:02:24.0026 0x12b4 USBSTOR - ok
18:02:24.0031 0x12b4 [ 62069A34518BCF9C1FD9E74B3F6DB7CD, C58E21424718729324B285BEE1C96551540FCC3FD650B2D10895EBA48D981E25 ] usbuhci C:\windows\system32\drivers\usbuhci.sys
18:02:24.0038 0x12b4 usbuhci - ok
18:02:24.0046 0x12b4 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
18:02:24.0058 0x12b4 usbvideo - ok
18:02:24.0063 0x12b4 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\windows\System32\uxsms.dll
18:02:24.0106 0x12b4 UxSms - ok
18:02:24.0108 0x12b4 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc C:\windows\system32\lsass.exe
18:02:24.0121 0x12b4 VaultSvc - ok
18:02:24.0126 0x12b4 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
18:02:24.0133 0x12b4 vdrvroot - ok
18:02:24.0151 0x12b4 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\windows\System32\vds.exe
18:02:24.0193 0x12b4 vds - ok
18:02:24.0196 0x12b4 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\windows\system32\DRIVERS\vgapnp.sys
18:02:24.0218 0x12b4 vga - ok
18:02:24.0223 0x12b4 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\windows\System32\drivers\vga.sys
18:02:24.0268 0x12b4 VgaSave - ok
18:02:24.0276 0x12b4 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\windows\system32\drivers\vhdmp.sys
18:02:24.0291 0x12b4 vhdmp - ok
18:02:24.0301 0x12b4 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\windows\system32\drivers\viaide.sys
18:02:24.0313 0x12b4 viaide - ok
18:02:24.0318 0x12b4 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\windows\system32\drivers\volmgr.sys
18:02:24.0333 0x12b4 volmgr - ok
18:02:24.0351 0x12b4 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\windows\system32\drivers\volmgrx.sys
18:02:24.0368 0x12b4 volmgrx - ok
18:02:24.0381 0x12b4 [ DF8126BD41180351A093A3AD2FC8903B, AEFF4AA89CDDAAAD43CDE17C6B6EB2A397A0AC1651CBD51B889161EC2BC6527A ] volsnap C:\windows\system32\drivers\volsnap.sys
18:02:24.0401 0x12b4 volsnap - ok
18:02:24.0408 0x12b4 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\windows\system32\drivers\vsmraid.sys
18:02:24.0421 0x12b4 vsmraid - ok
18:02:24.0463 0x12b4 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\windows\system32\vssvc.exe
18:02:24.0568 0x12b4 VSS - ok
18:02:24.0573 0x12b4 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\windows\system32\DRIVERS\vwifibus.sys
18:02:24.0583 0x12b4 vwifibus - ok
18:02:24.0588 0x12b4 [ 13A0DECD1794DE60A8427862C8669D27, 4024AF9F2F052BC80C85F5B9A671499C20AF38838206CC649E6EFE37C380D3BF ] VWiFiFlt C:\windows\system32\DRIVERS\vwififlt.sys
18:02:24.0598 0x12b4 VWiFiFlt - ok
18:02:24.0603 0x12b4 [ 49003B357D101CDC474937437ECF5ABC, D3EC570D616DC39FE6BF02DA1CD6C30CD07C27CC5B4B6FD6DACB5D8A4F1596A6 ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
18:02:24.0613 0x12b4 vwifimp - ok
18:02:24.0623 0x12b4 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\windows\system32\w32time.dll
18:02:24.0656 0x12b4 W32Time - ok
18:02:24.0671 0x12b4 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\windows\system32\drivers\wacompen.sys
18:02:24.0671 0x12b4 WacomPen - ok
18:02:24.0671 0x12b4 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\windows\system32\DRIVERS\wanarp.sys
18:02:24.0702 0x12b4 WANARP - ok
18:02:24.0718 0x12b4 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
18:02:24.0734 0x12b4 Wanarpv6 - ok
18:02:24.0765 0x12b4 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\windows\system32\Wat\WatAdminSvc.exe
18:02:24.0796 0x12b4 WatAdminSvc - ok
18:02:24.0827 0x12b4 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\windows\system32\wbengine.exe
18:02:24.0890 0x12b4 wbengine - ok
18:02:24.0905 0x12b4 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\windows\System32\wbiosrvc.dll
18:02:24.0921 0x12b4 WbioSrvc - ok
18:02:24.0936 0x12b4 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\windows\System32\wcncsvc.dll
18:02:24.0968 0x12b4 wcncsvc - ok
18:02:24.0968 0x12b4 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
18:02:24.0983 0x12b4 WcsPlugInService - ok
18:02:24.0983 0x12b4 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\windows\system32\drivers\wd.sys
18:02:24.0999 0x12b4 Wd - ok
18:02:25.0014 0x12b4 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
18:02:25.0046 0x12b4 Wdf01000 - ok
18:02:25.0046 0x12b4 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\windows\system32\wdi.dll
18:02:25.0061 0x12b4 WdiServiceHost - ok
18:02:25.0061 0x12b4 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\windows\system32\wdi.dll
18:02:25.0077 0x12b4 WdiSystemHost - ok
18:02:25.0092 0x12b4 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\windows\System32\webclnt.dll
18:02:25.0108 0x12b4 WebClient - ok
18:02:25.0108 0x12b4 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\windows\system32\wecsvc.dll
18:02:25.0139 0x12b4 Wecsvc - ok
18:02:25.0155 0x12b4 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\windows\System32\wercplsupport.dll
18:02:25.0186 0x12b4 wercplsupport - ok
18:02:25.0186 0x12b4 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\windows\System32\WerSvc.dll
18:02:25.0217 0x12b4 WerSvc - ok
18:02:25.0217 0x12b4 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\windows\system32\DRIVERS\wfplwf.sys
18:02:25.0248 0x12b4 WfpLwf - ok
18:02:25.0248 0x12b4 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\windows\system32\drivers\wimmount.sys
18:02:25.0264 0x12b4 WIMMount - ok
18:02:25.0264 0x12b4 WinDefend - ok
18:02:25.0280 0x12b4 WinHttpAutoProxySvc - ok
18:02:25.0280 0x12b4 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
18:02:25.0326 0x12b4 Winmgmt - ok
18:02:25.0358 0x12b4 [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\windows\system32\WsmSvc.dll
18:02:25.0482 0x12b4 WinRM - ok
18:02:25.0498 0x12b4 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\windows\System32\wlansvc.dll
18:02:25.0545 0x12b4 Wlansvc - ok
18:02:25.0545 0x12b4 [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
18:02:25.0560 0x12b4 wlcrasvc - ok
18:02:25.0607 0x12b4 [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:02:25.0670 0x12b4 wlidsvc - ok
18:02:25.0685 0x12b4 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\windows\system32\DRIVERS\wmiacpi.sys
18:02:25.0685 0x12b4 WmiAcpi - ok
18:02:25.0701 0x12b4 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
18:02:25.0716 0x12b4 wmiApSrv - ok
18:02:25.0732 0x12b4 WMPNetworkSvc - ok
18:02:25.0732 0x12b4 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\windows\System32\wpcsvc.dll
18:02:25.0748 0x12b4 WPCSvc - ok
18:02:25.0748 0x12b4 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
18:02:25.0763 0x12b4 WPDBusEnum - ok
18:02:25.0763 0x12b4 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
18:02:25.0794 0x12b4 ws2ifsl - ok
18:02:25.0794 0x12b4 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\windows\System32\wscsvc.dll
18:02:25.0810 0x12b4 wscsvc - ok
18:02:25.0826 0x12b4 WSearch - ok
18:02:25.0872 0x12b4 [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv C:\windows\system32\wuaueng.dll
18:02:25.0935 0x12b4 wuauserv - ok
18:02:25.0950 0x12b4 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\windows\system32\drivers\WudfPf.sys
18:02:25.0966 0x12b4 WudfPf - ok
18:02:25.0966 0x12b4 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\windows\system32\DRIVERS\WUDFRd.sys
18:02:25.0982 0x12b4 WUDFRd - ok
18:02:25.0982 0x12b4 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\windows\System32\WUDFSvc.dll
18:02:25.0997 0x12b4 wudfsvc - ok
18:02:26.0013 0x12b4 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\windows\System32\wwansvc.dll
18:02:26.0028 0x12b4 WwanSvc - ok
18:02:26.0044 0x12b4 [ 74713CB32792F9C7632DAA7DA22CA974, 1B1D907F8F18AE22E36F371EE6417D068C01FB4F9413571444AF3845A27F3C4D ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
18:02:26.0060 0x12b4 ZeroConfigService - ok
18:02:26.0075 0x12b4 ================ Scan global ===============================
18:02:26.0075 0x12b4 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\windows\system32\basesrv.dll
18:02:26.0091 0x12b4 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll
18:02:26.0091 0x12b4 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll
18:02:26.0106 0x12b4 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\windows\system32\sxssrv.dll
18:02:26.0106 0x12b4 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\windows\system32\services.exe
18:02:26.0122 0x12b4 [ Global ] - ok
18:02:26.0122 0x12b4 ================ Scan MBR ==================================
18:02:26.0122 0x12b4 [ 2ADAEE26AD9CF678D070EC920CF7EFA0 ] \Device\Harddisk0\DR0
18:02:26.0184 0x12b4 \Device\Harddisk0\DR0 - ok
18:02:26.0200 0x12b4 ================ Scan VBR ==================================
18:02:26.0200 0x12b4 [ DCE86A13944E3E973625558795836F97 ] \Device\Harddisk0\DR0\Partition1
18:02:26.0200 0x12b4 \Device\Harddisk0\DR0\Partition1 - ok
18:02:26.0200 0x12b4 [ 026198F92CE45F38CE64871A43100F6A ] \Device\Harddisk0\DR0\Partition2
18:02:26.0200 0x12b4 \Device\Harddisk0\DR0\Partition2 - ok
18:02:26.0200 0x12b4 ================ Scan active images ========================
18:02:26.0200 0x12b4 [ 3E588B60EC061686BA05D33574A344C6, 19D2D863F95CCC4493A2328B6BEB04248B6A80F957532E58C1D1D868C19FDCCB ] C:\Windows\System32\drivers\crashdmp.sys
18:02:26.0200 0x12b4 C:\Windows\System32\drivers\crashdmp.sys - ok
18:02:26.0200 0x12b4 [ C224331A54571C8C9162F7714400BBBD, C2CA4881ACD46071E67435BE5E3DB133D0743B026FD20D6D6E26B2FE7A03FCAA ] C:\Windows\System32\drivers\iaStor.sys
18:02:26.0200 0x12b4 C:\Windows\System32\drivers\iaStor.sys - ok
18:02:26.0216 0x12b4 [ 814DB88F2641691575A455CF25354098, 79C50F0CD72612733217A0316BEFEA0B6D819C3159D9452EAB89AC26A18A0F89 ] C:\Windows\System32\drivers\dumpfve.sys
18:02:26.0216 0x12b4 C:\Windows\System32\drivers\dumpfve.sys - ok
18:02:26.0216 0x12b4 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] C:\Windows\System32\drivers\beep.sys
18:02:26.0216 0x12b4 C:\Windows\System32\drivers\beep.sys - ok
18:02:26.0216 0x12b4 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] C:\Windows\System32\drivers\null.sys
18:02:26.0216 0x12b4 C:\Windows\System32\drivers\null.sys - ok
18:02:26.0216 0x12b4 [ 54E37A4E66B2CA1C38E9728FAD5F9822, C53500674DD96909A34C3975C81D9325E4DAC0753A3E99535246BF7BADF19EF4 ] C:\Windows\System32\drivers\igdkmd64.sys
18:02:26.0216 0x12b4 C:\Windows\System32\drivers\igdkmd64.sys - ok
18:02:26.0216 0x12b4 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] C:\Windows\System32\drivers\dxgkrnl.sys
18:02:26.0216 0x12b4 C:\Windows\System32\drivers\dxgkrnl.sys - ok
18:02:26.0231 0x12b4 [ FC438D1430B28618E2D0C7C332A710AD, 873957B202E454E2C8F625E5799F278CAC16EC5EEAEE2C33E2FE5D1FF0408CB2 ] C:\Windows\System32\drivers\watchdog.sys
18:02:26.0231 0x12b4 C:\Windows\System32\drivers\watchdog.sys - ok
18:02:26.0231 0x12b4 [ 1F04CFB79DD5FB7694468CE3FB3DCC31, A40C0BF6D1EC6C4281611A830EA7B22FEF523A3E197E5A8F59332D64E90376B6 ] C:\Windows\System32\drivers\dxgmms1.sys
18:02:26.0231 0x12b4 C:\Windows\System32\drivers\dxgmms1.sys - ok
18:02:26.0231 0x12b4 [ E7353D59C9842BC7299FAEB7E7E09340, C37ED1025E07BAC2F535DCFED6C6C509515D95722EADE5AF94F1FC5D8B1DC783 ] C:\Windows\System32\drivers\videoprt.sys
18:02:26.0231 0x12b4 C:\Windows\System32\drivers\videoprt.sys - ok
18:02:26.0231 0x12b4 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] C:\Windows\System32\drivers\msfs.sys
18:02:26.0231 0x12b4 C:\Windows\System32\drivers\msfs.sys - ok
18:02:26.0231 0x12b4 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] C:\Windows\System32\drivers\RDPCDD.sys
18:02:26.0231 0x12b4 C:\Windows\System32\drivers\RDPCDD.sys - ok
18:02:26.0247 0x12b4 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] C:\Windows\System32\drivers\RDPENCDD.sys
18:02:26.0247 0x12b4 C:\Windows\System32\drivers\RDPENCDD.sys - ok
18:02:26.0247 0x12b4 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] C:\Windows\System32\drivers\RDPREFMP.sys
18:02:26.0247 0x12b4 C:\Windows\System32\drivers\RDPREFMP.sys - ok
18:02:26.0247 0x12b4 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] C:\Windows\System32\drivers\vga.sys
18:02:26.0247 0x12b4 C:\Windows\System32\drivers\vga.sys - ok
18:02:26.0247 0x12b4 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] C:\Windows\System32\drivers\npfs.sys
18:02:26.0247 0x12b4 C:\Windows\System32\drivers\npfs.sys - ok
18:02:26.0247 0x12b4 [ 6F020A220388ECA0AB6062DC27BD16B6, 48655230E482DEB7B4B50EF05818EBB29CA61E780AEFCD9D31B02DE4DF9D9540 ] C:\Windows\System32\drivers\tdi.sys
18:02:26.0247 0x12b4 C:\Windows\System32\drivers\tdi.sys - ok
18:02:26.0262 0x12b4 [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] C:\Windows\System32\drivers\tdx.sys
18:02:26.0262 0x12b4 C:\Windows\System32\drivers\tdx.sys - ok
18:02:26.0262 0x12b4 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] C:\Windows\System32\drivers\afd.sys
18:02:26.0262 0x12b4 C:\Windows\System32\drivers\afd.sys - ok
18:02:26.0262 0x12b4 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] C:\Windows\System32\drivers\netbt.sys
18:02:26.0262 0x12b4 C:\Windows\System32\drivers\netbt.sys - ok
18:02:26.0262 0x12b4 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] C:\Windows\System32\drivers\pacer.sys
18:02:26.0262 0x12b4 C:\Windows\System32\drivers\pacer.sys - ok
18:02:26.0262 0x12b4 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] C:\Windows\System32\drivers\wfplwf.sys
18:02:26.0262 0x12b4 C:\Windows\System32\drivers\wfplwf.sys - ok
18:02:26.0278 0x12b4 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] C:\Windows\System32\drivers\netbios.sys
18:02:26.0278 0x12b4 C:\Windows\System32\drivers\netbios.sys - ok
18:02:26.0278 0x12b4 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] C:\Windows\System32\drivers\termdd.sys
18:02:26.0278 0x12b4 C:\Windows\System32\drivers\termdd.sys - ok
18:02:26.0278 0x12b4 [ 13A0DECD1794DE60A8427862C8669D27, 4024AF9F2F052BC80C85F5B9A671499C20AF38838206CC649E6EFE37C380D3BF ] C:\Windows\System32\drivers\vwififlt.sys
18:02:26.0278 0x12b4 C:\Windows\System32\drivers\vwififlt.sys - ok
18:02:26.0278 0x12b4 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] C:\Windows\System32\drivers\wanarp.sys
18:02:26.0278 0x12b4 C:\Windows\System32\drivers\wanarp.sys - ok
18:02:26.0278 0x12b4 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] C:\Windows\System32\drivers\rdbss.sys
18:02:26.0278 0x12b4 C:\Windows\System32\drivers\rdbss.sys - ok
18:02:26.0294 0x12b4 [ 62DB6CC4B0818F1B5F3441241B098F12, 7A53B3FBA3F82EDE6FA688E531FBE7EC9E1AE329090C0AFE0DCD64F65BD90F21 ] C:\Windows\System32\drivers\SABI.sys
18:02:26.0294 0x12b4 C:\Windows\System32\drivers\SABI.sys - ok
18:02:26.0294 0x12b4 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] C:\Windows\System32\drivers\mssmbios.sys
18:02:26.0294 0x12b4 C:\Windows\System32\drivers\mssmbios.sys - ok
18:02:26.0294 0x12b4 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] C:\Windows\System32\drivers\nsiproxy.sys
18:02:26.0294 0x12b4 C:\Windows\System32\drivers\nsiproxy.sys - ok
18:02:26.0294 0x12b4 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] C:\Windows\System32\drivers\dfsc.sys
18:02:26.0294 0x12b4 C:\Windows\System32\drivers\dfsc.sys - ok
18:02:26.0294 0x12b4 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] C:\Windows\System32\drivers\discache.sys
18:02:26.0294 0x12b4 C:\Windows\System32\drivers\discache.sys - ok
18:02:26.0309 0x12b4 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] C:\Windows\System32\drivers\blbdrive.sys
18:02:26.0309 0x12b4 C:\Windows\System32\drivers\blbdrive.sys - ok
18:02:26.0309 0x12b4 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] C:\Windows\System32\drivers\tunnel.sys
18:02:26.0309 0x12b4 C:\Windows\System32\drivers\tunnel.sys - ok
18:02:26.0309 0x12b4 [ F0970A4BC8395659C22BF53D0FADF16F, 23BE3066D89A5ACBF8130899640D377476E78B6C3D19E2D13C32238464A83E21 ] C:\Windows\System32\smss.exe
18:02:26.0309 0x12b4 C:\Windows\System32\smss.exe - ok
18:02:26.0309 0x12b4 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] C:\Windows\System32\drivers\hdaudbus.sys
18:02:26.0309 0x12b4 C:\Windows\System32\drivers\hdaudbus.sys - ok
18:02:26.0309 0x12b4 [ 6B01B7414A105B9E51652089A03027CF, 9B113DC22F7D0D0B376E577C6D7083F9EDC09BBFE47726393E16D4FDAAAE21FE ] C:\Windows\System32\drivers\HECIx64.sys
18:02:26.0309 0x12b4 C:\Windows\System32\drivers\HECIx64.sys - ok
18:02:26.0325 0x12b4 [ CAAAC014C5C56A69F710B5F1B836DE22, DA98EF2EBF9A7F180344A88CC2C74F69101E17BBAB58B1C46176FD6EE7AA2E6A ] C:\Windows\System32\ntdll.dll
18:02:26.0325 0x12b4 C:\Windows\System32\ntdll.dll - ok
18:02:26.0325 0x12b4 [ 12C5274CD87449A2A37A607CDB321922, 50FA524E66A8FA04037DC954D3AB5383C633898F111A3B7488630B649B897370 ] C:\Windows\System32\drivers\acpials.sys
18:02:26.0325 0x12b4 C:\Windows\System32\drivers\acpials.sys - ok
18:02:26.0325 0x12b4 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] C:\Windows\System32\drivers\CmBatt.sys
18:02:26.0325 0x12b4 C:\Windows\System32\drivers\CmBatt.sys - ok
18:02:26.0325 0x12b4 [ F47E2920F2A8C34562AAE24B73800C5C, AE18CB3DD00A6C0582E561B22D1BE3ABF0A48E78A7536486102095E20A102844 ] C:\Windows\System32\drivers\rusb3xhc.sys
18:02:26.0325 0x12b4 C:\Windows\System32\drivers\rusb3xhc.sys - ok
18:02:26.0325 0x12b4 [ FFA06EF43987ED0DD42AD59B260C0C78, 260518D5E077E55E0F2099037DBEFA93016FD4D4655456DDB3147AF9CBE7BF6B ] C:\Windows\System32\drivers\usbd.sys
18:02:26.0325 0x12b4 C:\Windows\System32\drivers\usbd.sys - ok
18:02:26.0340 0x12b4 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] C:\Windows\System32\drivers\i8042prt.sys
18:02:26.0340 0x12b4 C:\Windows\System32\drivers\i8042prt.sys - ok
18:02:26.0340 0x12b4 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] C:\Windows\System32\drivers\WUDFRd.sys
18:02:26.0340 0x12b4 C:\Windows\System32\drivers\WUDFRd.sys - ok
18:02:26.0340 0x12b4 [ F9B5EFCE2A856BBA9DA2A28252180036, 40AAD9FB5E05596FF0181352C08475FEB2F495E54EEBF20623358F90EDE7189B ] C:\Windows\System32\drivers\ETD.sys
18:02:26.0340 0x12b4 C:\Windows\System32\drivers\ETD.sys - ok
18:02:26.0340 0x12b4 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] C:\Windows\System32\drivers\kbdclass.sys
18:02:26.0340 0x12b4 C:\Windows\System32\drivers\kbdclass.sys - ok
18:02:26.0356 0x12b4 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] C:\Windows\System32\drivers\intelppm.sys
18:02:26.0356 0x12b4 C:\Windows\System32\drivers\intelppm.sys - ok
18:02:26.0356 0x12b4 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] C:\Windows\System32\drivers\mouclass.sys
18:02:26.0356 0x12b4 C:\Windows\System32\drivers\mouclass.sys - ok
18:02:26.0356 0x12b4 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] C:\Windows\System32\drivers\wmiacpi.sys
18:02:26.0356 0x12b4 C:\Windows\System32\drivers\wmiacpi.sys - ok
18:02:26.0356 0x12b4 [ 449D90F1FB6402773C2F1ECCEAE15F74, D432D3F9D9AD14C70324B13C0A82A5BADC0EA4927B2E49B8BC31A5DEE6440374 ] C:\Windows\System32\drivers\AmpPal.sys
18:02:26.0356 0x12b4 C:\Windows\System32\drivers\AmpPal.sys - ok
18:02:26.0356 0x12b4 [ 6DC22BDAA595BE00F19696E72F2F3312, B46B50395100D3A23663C56CC395A874130B72E314997AAD6C52F0C5C23364C4 ] C:\Windows\System32\drivers\irstrtdv.sys
18:02:26.0356 0x12b4 C:\Windows\System32\drivers\irstrtdv.sys - ok
18:02:26.0372 0x12b4 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] C:\Windows\System32\drivers\agilevpn.sys
18:02:26.0372 0x12b4 C:\Windows\System32\drivers\agilevpn.sys - ok
18:02:26.0372 0x12b4 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] C:\Windows\System32\drivers\CompositeBus.sys
18:02:26.0372 0x12b4 C:\Windows\System32\drivers\CompositeBus.sys - ok
18:02:26.0372 0x12b4 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] C:\Windows\System32\drivers\ndistapi.sys
18:02:26.0372 0x12b4 C:\Windows\System32\drivers\ndistapi.sys - ok
18:02:26.0372 0x12b4 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] C:\Windows\System32\drivers\ndiswan.sys
18:02:26.0372 0x12b4 C:\Windows\System32\drivers\ndiswan.sys - ok
18:02:26.0372 0x12b4 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] C:\Windows\System32\drivers\rasl2tp.sys
18:02:26.0372 0x12b4 C:\Windows\System32\drivers\rasl2tp.sys - ok
18:02:26.0372 0x12b4 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] C:\Windows\System32\drivers\raspppoe.sys
18:02:26.0372 0x12b4 C:\Windows\System32\drivers\raspppoe.sys - ok
18:02:26.0387 0x12b4 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] C:\Windows\System32\drivers\raspptp.sys
18:02:26.0387 0x12b4 C:\Windows\System32\drivers\raspptp.sys - ok
18:02:26.0387 0x12b4 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] C:\Windows\System32\drivers\rassstp.sys
18:02:26.0387 0x12b4 C:\Windows\System32\drivers\rassstp.sys - ok
18:02:26.0387 0x12b4 [ 24FBF5CC5C04150073C315A7C83521EE, 581BD5F15B5E57B3BAA762E421FFD859FDA46DDB8515C2A7AAFF208D784E906C ] C:\Windows\System32\drivers\ks.sys
18:02:26.0387 0x12b4 C:\Windows\System32\drivers\ks.sys - ok
18:02:26.0387 0x12b4 [ 716F66336F10885D935B08174DC54242, 1992708956A2A45A8870CFCB532F3ABF24B1143B75EF32AB1F59D5D86E65F493 ] C:\Windows\System32\drivers\iwdbus.sys
18:02:26.0387 0x12b4 C:\Windows\System32\drivers\iwdbus.sys - ok
18:02:26.0387 0x12b4 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] C:\Windows\System32\drivers\swenum.sys
18:02:26.0387 0x12b4 C:\Windows\System32\drivers\swenum.sys - ok
18:02:26.0403 0x12b4 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] C:\Windows\System32\drivers\umbus.sys
18:02:26.0403 0x12b4 C:\Windows\System32\drivers\umbus.sys - ok
18:02:26.0403 0x12b4 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] C:\Windows\System32\drivers\ndproxy.sys
18:02:26.0403 0x12b4 C:\Windows\System32\drivers\ndproxy.sys - ok
18:02:26.0403 0x12b4 [ E0D3CD5841E5C7BE7B94BA946AF1E498, 4EAE1B226255623DA41A047633994D6902F6D4CA5757BF5D85E227378336227F ] C:\Windows\System32\drivers\drmk.sys
18:02:26.0403 0x12b4 C:\Windows\System32\drivers\drmk.sys - ok
18:02:26.0403 0x12b4 [ 1E0B4CBBA91C6B041A14ECC2186F7E24, 63039A317F906454A0652704DA2D646658A148B9B55BFB5D2F4B27997F357DF9 ] C:\Windows\System32\drivers\portcls.sys
18:02:26.0403 0x12b4 C:\Windows\System32\drivers\portcls.sys - ok
18:02:26.0403 0x12b4 [ 6EF96DF5184DDB95A12107B8D7531FB7, 6FE47486E2D40891FA977E1EBB8FDB96FE9856836399ADAE7F91F24A42358583 ] C:\Windows\System32\drivers\RTKVHD64.sys
18:02:26.0403 0x12b4 C:\Windows\System32\drivers\RTKVHD64.sys - ok
18:02:26.0418 0x12b4 [ 6C9FFFECA9FED31347D211C5D1FFBD2D, 36CF8B847FAED0D978B3169ED550CC958025902CAC1D7D304E2684B2483E72B8 ] C:\Windows\System32\drivers\IntcDAud.sys
18:02:26.0418 0x12b4 C:\Windows\System32\drivers\IntcDAud.sys - ok
18:02:26.0418 0x12b4 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] C:\Windows\System32\drivers\ksthunk.sys
18:02:26.0418 0x12b4 C:\Windows\System32\drivers\ksthunk.sys - ok
18:02:26.0418 0x12b4 [ CAB06CA598638E0457E1DCF8CA824EC2, 0193FC501E19104A1F71B240CD4E7093742F910A1A3CC3852CBCCE146C2167DB ] C:\Windows\System32\drivers\rusb3hub.sys
18:02:26.0418 0x12b4 C:\Windows\System32\drivers\rusb3hub.sys - ok
18:02:26.0418 0x12b4 [ 3B536A8BEC3B4F23FFDFD78B11A2AB93, 7BC847CE6C2D29C334F0D1600BBBDE3933FF45F6BEE5186F442E6270A3F9EC4E ] C:\Windows\System32\autochk.exe
18:02:26.0418 0x12b4 C:\Windows\System32\autochk.exe - ok
18:02:26.0418 0x12b4 [ AA2C08CE85653B1A0D2E4AB407FA176C, 83DFD0C119B20AEDB07114C9D1CF9CE2DFA938D0F1070256B0591A9E2C3997FA ] C:\Windows\System32\imm32.dll
18:02:26.0418 0x12b4 C:\Windows\System32\imm32.dll - ok
18:02:26.0434 0x12b4 [ 25983DE69B57142039AC8D95E71CD9C9, A677DA7EBCBCB6073D27E8A38809F51E971E83ED379BC599AAAD6EF4216348DA ] C:\Windows\System32\clbcatq.dll
18:02:26.0434 0x12b4 C:\Windows\System32\clbcatq.dll - ok
18:02:26.0434 0x12b4 [ 044FE45FFD6AD40E3BBBE60B7F41BABE, A1688A5E6E0F7037C850699462C2655006A7D873C97F9AB406C59D81749B6F09 ] C:\Windows\System32\nsi.dll
18:02:26.0434 0x12b4 C:\Windows\System32\nsi.dll - ok
18:02:26.0434 0x12b4 [ 4BBFA57F594F7E8A8EDC8F377184C3F0, 9F3AC5DEA5A6250C3DBB97AF79C81C0A48429486521F807355A1D7D3D861B75F ] C:\Windows\System32\ws2_32.dll
18:02:26.0434 0x12b4 C:\Windows\System32\ws2_32.dll - ok
18:02:26.0434 0x12b4 [ 63A580C88CFAF72A92550940054569EF, A66C89123D1833446ACC31D5CF536B0D0EC24D2F805C022A637596CF98429D9F ] C:\Windows\System32\advapi32.dll
18:02:26.0434 0x12b4 C:\Windows\System32\advapi32.dll - ok
18:02:26.0434 0x12b4 [ 5D8E6C95156ED1F79A63D1EADE6F9ED5, 12130837D7F89A2C7E9D25747A8E5B9001E0A38D545178B49B450C23AE62664A ] C:\Windows\System32\setupapi.dll
18:02:26.0434 0x12b4 C:\Windows\System32\setupapi.dll - ok
18:02:26.0450 0x12b4 [ 6C60B5ACA7442EFB794082CDACFC001C, FC1D9124856A70FF232EF3057D66BEE803295847624CE23B4D0217F23AF52C75 ] C:\Windows\System32\ole32.dll
18:02:26.0450 0x12b4 C:\Windows\System32\ole32.dll - ok
18:02:26.0450 0x12b4 [ F947D57534E01E3CA597BCF2AD8AE65B, 498A87443CE3344F82B19D4903F128337B5B3DA49D3C208F796394DA6B3A8946 ] C:\Windows\System32\rpcrt4.dll
18:02:26.0450 0x12b4 C:\Windows\System32\rpcrt4.dll - ok
18:02:26.0450 0x12b4 [ D87E1E59C73C1F98D5DED5B3850C40F5, 536419BFF9F877D4314B5D0C045D9A6E729489C389863FADF07E382050BC84FD ] C:\Windows\System32\psapi.dll
18:02:26.0450 0x12b4 C:\Windows\System32\psapi.dll - ok
18:02:26.0450 0x12b4 [ 83404DCBCE4925B6A5A77C5170F46D86, D669614D0B4461DB244AD99FBE1BA92CEB9B4ED5EC8E987E23764E77D9AC7074 ] C:\Windows\System32\sechost.dll
18:02:26.0450 0x12b4 C:\Windows\System32\sechost.dll - ok
18:02:26.0450 0x12b4 [ 4E4FFB09D895AA000DD56D1404F69A7E, D999E04BB35780088480EAB322176570591A21E311D204BDCAB010A63B34D24C ] C:\Windows\System32\Wldap32.dll
18:02:26.0450 0x12b4 C:\Windows\System32\Wldap32.dll - ok
18:02:26.0450 0x12b4 [ 75498A52C2AE248DEE5BDF5209768963, F200077B40B1B75004EE5436939C9E7F50871E824DDCC8403A6BA3823A2717D0 ] C:\Windows\System32\iertutil.dll
18:02:26.0450 0x12b4 C:\Windows\System32\iertutil.dll - ok
18:02:26.0465 0x12b4 [ C391FC68282A000CDF953F8B6B55D2EF, 1CB0DAB84545D9FDEA5A7865A1E7132CEAC91DECF8B100285B63098D7B09E584 ] C:\Windows\System32\msvcrt.dll
18:02:26.0465 0x12b4 C:\Windows\System32\msvcrt.dll - ok
18:02:26.0465 0x12b4 [ EAF32CB8C1F810E4715B4DFBE785C7FF, DB6AD07FDED42433E669508AB73FAFF6DAFF04575D6F1D016FE3EB6ECEC4DD5D ] C:\Windows\System32\shlwapi.dll
18:02:26.0465 0x12b4 C:\Windows\System32\shlwapi.dll - ok
18:02:26.0465 0x12b4 [ C431EAF5CAA1C82CAC2534A2EAB348A3, ADDF850128DC675E67FABA9A3D0D27E684F01F733962CA22927BB94503549E44 ] C:\Windows\System32\msctf.dll
18:02:26.0465 0x12b4 C:\Windows\System32\msctf.dll - ok
18:02:26.0465 0x12b4 [ F7CE0C81C545364020ED8203CF0A633E, 24B47A7492B7048096AF87E26786E8108455ADBD1A374B6A0466DE008505B8A9 ] C:\Windows\System32\difxapi.dll
18:02:26.0465 0x12b4 C:\Windows\System32\difxapi.dll - ok
18:02:26.0465 0x12b4 [ 39EBB9708453036A74C30C9A294023FF, 2158C48C046F2FBDFEC2F449F8EBA376ED9086E427A4BEDE8033A29F7415753E ] C:\Windows\System32\wininet.dll
18:02:26.0465 0x12b4 C:\Windows\System32\wininet.dll - ok
18:02:26.0481 0x12b4 [ AE57F6C7AB3ED244B5F14151C4EA0057, 60BAF0909C60B2387E2972EBBC77140E9E982549F0746EE26AF4EFB4E9FD77A4 ] C:\Windows\System32\shell32.dll
18:02:26.0481 0x12b4 C:\Windows\System32\shell32.dll - ok
18:02:26.0481 0x12b4 [ 860528C9E50AB84935843B23A80E665E, 1BBC4FC384A2C9B2E30DC8D84C435A6A8E1993F074CDBF0A6A3AC774A3E62AD4 ] C:\Windows\System32\gdi32.dll
18:02:26.0481 0x12b4 C:\Windows\System32\gdi32.dll - ok
18:02:26.0481 0x12b4 [ B4F29F65AD3114051F01E9403346047F, 7EB58545211C51E95B3F45C47C1F7CCE05B707D168E7C20F46D36E19EE3D8DFC ] C:\Windows\System32\imagehlp.dll
18:02:26.0481 0x12b4 C:\Windows\System32\imagehlp.dll - ok
18:02:26.0481 0x12b4 [ 28C0B5024F5C5A438E78B188CFC81B7F, AB81FB63F2908CE316B45609077ACBD85F4B2AAD1606B1E9030F06DB82EDDFAD ] C:\Windows\System32\normaliz.dll
18:02:26.0481 0x12b4 C:\Windows\System32\normaliz.dll - ok
18:02:26.0481 0x12b4 [ D2A513EE880D71BDE7F0257F38B9D019, 7BDBFEA312061C0498E4C09EF5E4B3AAA23309E7448028F67EAA6F8F7188E871 ] C:\Windows\System32\kernel32.dll
18:02:26.0481 0x12b4 C:\Windows\System32\kernel32.dll - ok
18:02:26.0496 0x12b4 [ 9835E63E09F824D22B689D2BB789BAB9, 5BCFFAFB894D69FBCDDB91E64D30A356F4BD57098E8B4C51B98AFAF6581BDB63 ] C:\Windows\System32\comdlg32.dll
18:02:26.0496 0x12b4 C:\Windows\System32\comdlg32.dll - ok
18:02:26.0496 0x12b4 [ C06B32165E23A72A898B7A89679AD754, 721405158F6E9F1A7FE7BB33EF642D91332726629D0D3B07DF3CF3152A91C85D ] C:\Windows\System32\oleaut32.dll
18:02:26.0496 0x12b4 C:\Windows\System32\oleaut32.dll - ok
18:02:26.0496 0x12b4 [ 796B47A4B82EF1C39F13435B88834C48, AFC3E89476BAAD8A71663F0DB8D15E00FF9D131F1306A2F69D728E3AD1184602 ] C:\Windows\System32\lpk.dll
18:02:26.0496 0x12b4 C:\Windows\System32\lpk.dll - ok
18:02:26.0496 0x12b4 [ FE70103391A64039A921DBFFF9C7AB1B, F7D219D75037BC98F6C69143B00AB6000A31F8B5E211E0AF514F4F4B681522A0 ] C:\Windows\System32\user32.dll
18:02:26.0496 0x12b4 C:\Windows\System32\user32.dll - ok
18:02:26.0496 0x12b4 [ 088CF6AFCD5CDD44E40C0ACDE3C1A5E0, AC6AFCAE3A58AAABC972B3D6A1ED383A59910C689F38D9D4A059A0A535BA1039 ] C:\Windows\System32\usp10.dll
18:02:26.0496 0x12b4 C:\Windows\System32\usp10.dll - ok
18:02:26.0496 0x12b4 [ FECA80905D551074E1A9298BD98103B7, 5655D56CDDE306CB350EAF90CEFCAC645D13A6E0BF78DE9372039205AA9C7BD0 ] C:\Windows\System32\urlmon.dll
18:02:26.0496 0x12b4 C:\Windows\System32\urlmon.dll - ok
18:02:26.0512 0x12b4 [ 64A4AB126E24FD3F58EBE64852773DB5, ED425BBC91EB8BEF54C363036A770C551C97EF324F1AE31049CA750D0E2D6776 ] C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll
18:02:26.0512 0x12b4 C:\Windows\System32\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
18:02:26.0512 0x12b4 [ 2477A28081BDAEE622CF045ACF8EE124, 00A09CAF9129E84FEEA98FA03CE9012C9F961B64FEE15C4F268822C0F82ACC3C ] C:\Windows\System32\cfgmgr32.dll
18:02:26.0512 0x12b4 C:\Windows\System32\cfgmgr32.dll - ok
18:02:26.0512 0x12b4 [ 851BB346CD59D9B3BC8854384C7DD5C3, 0CA1BCBDA6CB8CAC1186B3BE13C3937EDF46264FDFFCEBDF94C7EB10DE957DC6 ] C:\Windows\System32\KernelBase.dll
18:02:26.0512 0x12b4 C:\Windows\System32\KernelBase.dll - ok
18:02:26.0512 0x12b4 [ 7A17485DC7D8A7AC81321A42CD034519, 88D8705FA901793FC8C1CFD0175E49A6502BF0FC94A066BA573D2FD13AA5F04A ] C:\Windows\System32\userenv.dll
18:02:26.0512 0x12b4 C:\Windows\System32\userenv.dll - ok
18:02:26.0512 0x12b4 [ 780F6ECC4F55D76C9730E6B6C9B31913, 1AEA642AFA210A672A92AAA49CFDE52D9E48ED41248F7644FAADE760E8A0E72E ] C:\Windows\System32\crypt32.dll
18:02:26.0512 0x12b4 C:\Windows\System32\crypt32.dll - ok
18:02:26.0528 0x12b4 [ 0E6FBF19D9DFBB77316C23DF91F8A101, 680F88E1BC55EA3342AACE6F2E3511BF877AC8F03276D028FEE84EEFE8B5611A ] C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll
18:02:26.0528 0x12b4 C:\Windows\System32\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
18:02:26.0528 0x12b4 [ AFC3DB5C6EB8CA8017DDB81D6C0AD02A, 445C2857398252756FD25BB94DAFCCEFF573DE55F1F8BF9094C191F409FE6437 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
18:02:26.0528 0x12b4 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
18:02:26.0528 0x12b4 [ 9094039A00485F71C4DE64BF51F64C46, 4ACFEF4C747ADF806A4FDEDDFD9CC48168DFB05075306C77D3F3927749DD7484 ] C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll
18:02:26.0528 0x12b4 C:\Windows\System32\api-ms-win-downlevel-version-l1-1-0.dll - ok
18:02:26.0528 0x12b4 [ 959041D7014C97133D859B45BCA0FC58, 282D34828DA7404470949483CB9789A8B4861D188093F0FBD07138A37F60B94B ] C:\Windows\System32\wintrust.dll
18:02:26.0528 0x12b4 C:\Windows\System32\wintrust.dll - ok
18:02:26.0528 0x12b4 [ F49E92B50CED5C9F1725D3C0329FD933, 6155FA4D8242F07FC578FF746890C2EE19FC3D6A20ED8AE4C6F021DB2DAC184F ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll
18:02:26.0528 0x12b4 C:\Windows\System32\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
18:02:26.0543 0x12b4 [ 72723D3E4781BADC62C3180C137E7B23, 0BDA5292928578C5DA79C761E15B8A892B9D4A3DA26D3635E714797C653CF492 ] C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll
18:02:26.0543 0x12b4 C:\Windows\System32\api-ms-win-downlevel-user32-l1-1-0.dll - ok
18:02:26.0543 0x12b4 [ 9028D1621C43DF8DFBD1C76860412A11, A1D48D9B33180BDE50D2FA9BB07E9520B7B7788C39B3AABB4A06AE4B1AACA755 ] C:\Windows\System32\comctl32.dll
18:02:26.0543 0x12b4 C:\Windows\System32\comctl32.dll - ok
18:02:26.0543 0x12b4 [ 06FEC9E8117103BB1141A560E98077DA, C5E61B11DDBBBBBA3D9488970524F0975EA5FBDF16E2FA31F579F8BFA48353B1 ] C:\Windows\System32\devobj.dll
18:02:26.0543 0x12b4 C:\Windows\System32\devobj.dll - ok
18:02:26.0543 0x12b4 [ 2C942733A5983DD4502219FF37C7EBC7, 34B20B6B0D7274E4B5B783F1D2345BC3DD9888964D5C2C65712F041A00CF5B45 ] C:\Windows\System32\profapi.dll
18:02:26.0543 0x12b4 C:\Windows\System32\profapi.dll - ok
18:02:26.0543 0x12b4 [ 884415BD4269C02EAF8E2613BF85500D, EFE771709EC942694FD206AC8D0A48ED7DCD35036F074268E4AECD68AC982CEA ] C:\Windows\System32\msasn1.dll
18:02:26.0543 0x12b4 C:\Windows\System32\msasn1.dll - ok
18:02:26.0559 0x12b4 [ 9C278785347BCC991F8EA2999D90F58D, EA680C3642A6ABF627415AEE019956FAC702DC6A8F4B4D0FC8A4FB21EADD3896 ] C:\Windows\SysWOW64\normaliz.dll
18:02:26.0559 0x12b4 C:\Windows\SysWOW64\normaliz.dll - ok
18:02:26.0559 0x12b4 [ BF24D6F2ED97FE830BFD52B246F98E67, 6BBF4C4221A245462EF653798F6B416EEB12594AD1CB4E8BC8908A8CB2F53384 ] C:\Windows\System32\drivers\dxapi.sys
18:02:26.0559 0x12b4 C:\Windows\System32\drivers\dxapi.sys - ok
18:02:26.0559 0x12b4 [ A347EF56B7CD8360B3EF7772FEA597B9, 29FD47110ED21C4F0178C065AD05789A8387B6704CE1BA94C851C9785662CF95 ] C:\Windows\System32\win32k.sys
18:02:26.0559 0x12b4 C:\Windows\System32\win32k.sys - ok
18:02:26.0559 0x12b4 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\System32\basesrv.dll
18:02:26.0559 0x12b4 C:\Windows\System32\basesrv.dll - ok
18:02:26.0559 0x12b4 [ 216BABD555BC550952320EEA89C25DDF, 1BBB92415280032CD18F361382A69D0D91266AAD56FC88A99C804B0053743D72 ] C:\Windows\System32\csrsrv.dll
18:02:26.0559 0x12b4 C:\Windows\System32\csrsrv.dll - ok
18:02:26.0559 0x12b4 [ 60C2862B4BF0FD9F582EF344C2B1EC72, CB1C6018FC5C15483AC5BB96E5C2E2E115BB0C0E1314837D77201BAB37E8C03A ] C:\Windows\System32\csrss.exe
18:02:26.0559 0x12b4 C:\Windows\System32\csrss.exe - ok
18:02:26.0574 0x12b4 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\System32\winsrv.dll
18:02:26.0574 0x12b4 C:\Windows\System32\winsrv.dll - ok
18:02:26.0574 0x12b4 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] C:\Windows\System32\drivers\monitor.sys
18:02:26.0574 0x12b4 C:\Windows\System32\drivers\monitor.sys - ok
18:02:26.0574 0x12b4 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\System32\sxssrv.dll
18:02:26.0574 0x12b4 C:\Windows\System32\sxssrv.dll - ok
18:02:26.0574 0x12b4 [ F29FE765E1448EF371CFE05BFAC74ADB, F251581222D78543272FD4B14A6A59F4B0E0CC44A5FCBCF56DE4CA5783F78A75 ] C:\Windows\System32\tsddd.dll
18:02:26.0574 0x12b4 C:\Windows\System32\tsddd.dll - ok
18:02:26.0574 0x12b4 [ 94355C28C1970635A31B3FE52EB7CEBA, C4E98F07170CEC69CACDD5CEDB8927E48A2A299CB1B8CDA87526E768AF6174F0 ] C:\Windows\System32\wininit.exe
18:02:26.0574 0x12b4 C:\Windows\System32\wininit.exe - ok
18:02:26.0590 0x12b4 [ 78523A26F5604C0568FE9D1CE86E36F4, 534A7228BF69719106F581616A32EAEF0B770DDB36DCE94F84E7D52FDB1382B5 ] C:\Windows\System32\KBDUS.DLL
18:02:26.0590 0x12b4 C:\Windows\System32\KBDUS.DLL - ok
18:02:26.0590 0x12b4 [ C2A8CB1275ECB85D246A9ECC02A728E3, 3603FADCA0060BD201148F9D59E4E2627F024609A6463AB525B5D1AD17BDCD10 ] C:\Windows\System32\RpcRtRemote.dll
18:02:26.0590 0x12b4 C:\Windows\System32\RpcRtRemote.dll - ok
18:02:26.0590 0x12b4 [ 943F527DF79E6B400104341AA7023C75, 53C7B9426181D3D172E6B1A07E6DF8A0CB8FCA27D3A03CE5F544D3209B5F4651 ] C:\Windows\System32\cdd.dll
18:02:26.0590 0x12b4 C:\Windows\System32\cdd.dll - ok
18:02:26.0590 0x12b4 [ B26B1801356760841C3BC69F9F91537F, 83B9DF333E36C09E81D44E12AE5BE14650126FDA0CF4A0EA853BF40C5780EF81 ] C:\Windows\System32\WlS0WndH.dll
18:02:26.0590 0x12b4 C:\Windows\System32\WlS0WndH.dll - ok
18:02:26.0590 0x12b4 [ 9CEAD32E79A62150FE9F8557E58E008B, AFE4C1725EE94D7DE0749AE1495A4E5CC33C369F29B2A589DA66FFE27FF9777E ] C:\Windows\System32\sxs.dll
18:02:26.0590 0x12b4 C:\Windows\System32\sxs.dll - ok
18:02:26.0606 0x12b4 [ 90499F3163A9F815CF196A205EA3CD5D, 29B4ED3795CEC1177EB367132914CE21C194CDEC5DB9DC923FD928C85E94D821 ] C:\Windows\System32\apphelp.dll
18:02:26.0606 0x12b4 C:\Windows\System32\apphelp.dll - ok
18:02:26.0606 0x12b4 [ 784FA3DF338E2E8F5F0389D6FAC428AF, 9C8AA0CFDEB9E38AAF8EB08626070E0F0364F4F8A793CFE3532EC6C007980C34 ] C:\Windows\System32\cryptbase.dll
18:02:26.0606 0x12b4 C:\Windows\System32\cryptbase.dll - ok
18:02:26.0606 0x12b4 [ EE4B105F1DBE1E864AFC72E7F0315432, 0E69A25BA7ED920B3103F219D3BF117D8CEFBD4DC74C762945AE291D24772FAD ] C:\Windows\System32\lsasrv.dll
18:02:26.0606 0x12b4 C:\Windows\System32\lsasrv.dll - ok
18:02:26.0606 0x12b4 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] C:\Windows\System32\lsass.exe
18:02:26.0606 0x12b4 C:\Windows\System32\lsass.exe - ok
18:02:26.0606 0x12b4 [ 9662EE182644511439F1C53745DC1C88, D205B2C163E78AB42A5D67D7664EF6B75EA0374FF0924467D624F9DB0611F0AD ] C:\Windows\System32\lsm.exe
18:02:26.0606 0x12b4 C:\Windows\System32\lsm.exe - ok
18:02:26.0621 0x12b4 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\System32\services.exe
18:02:26.0621 0x12b4 C:\Windows\System32\services.exe - ok
18:02:26.0621 0x12b4 [ 8098627D0AA1706D69C5AF3F74332ABB, 9582F6162A8405DC568FFBEA08A9090FE92FE2C9DB640077BD7F23AC4FABF700 ] C:\Windows\System32\sspisrv.dll
18:02:26.0621 0x12b4 C:\Windows\System32\sspisrv.dll - ok
18:02:26.0621 0x12b4 [ BBCDF350817BA86416C0F06B6981BE8D, D064438F97852B9BD6015C8B19377C61C671E0969E09506B8359FE7B1F373A61 ] C:\Windows\System32\scesrv.dll
18:02:26.0621 0x12b4 C:\Windows\System32\scesrv.dll - ok
18:02:26.0621 0x12b4 [ E914A50A151DFFE63D3935226DB5E2C1, 7DCCE4060344E1C771679F1C20378A0BEB3C1F06DB684072F07B98921A62A299 ] C:\Windows\System32\scext.dll
18:02:26.0621 0x12b4 C:\Windows\System32\scext.dll - ok
18:02:26.0621 0x12b4 [ 39312B37C5FE5138F99680A49ACD3AEA, B9566B4117FBBECF77A0D3F49E9DF302088B9D483F817720B22E4F9C5754264A ] C:\Windows\System32\secur32.dll
18:02:26.0621 0x12b4 C:\Windows\System32\secur32.dll - ok
18:02:26.0637 0x12b4 [ C072064F95579C0D6D86AF5B3DC53192, CF4A088DF97F4D4963BEAB9CBDBF69FEA2D4773159054A0AF8B8DFFDF83E18DA ] C:\Windows\System32\sspicli.dll
18:02:26.0637 0x12b4 C:\Windows\System32\sspicli.dll - ok
18:02:26.0637 0x12b4 [ 68083118797CAF30FB2EA3E71494D67E, 5F1BCDFCB00A20CD60CBC70A2FD97405EF0F7173DD0E404BBA7B06D39DB37364 ] C:\Windows\System32\sysntfy.dll
18:02:26.0637 0x12b4 C:\Windows\System32\sysntfy.dll - ok
18:02:26.0637 0x12b4 [ DEE7267C5D232A3B816866872CE199E6, A1994FD37667C52E7CBF873514C190DA61A3D1349786D187BFAE0006F61799AE ] C:\Windows\System32\wmsgapi.dll
18:02:26.0637 0x12b4 C:\Windows\System32\wmsgapi.dll - ok
18:02:26.0637 0x12b4 [ A744BA6E04C8AA4592818178DBF89521, 9E7C85D842DF16F9B8FED7B06AF309B5ECCBFD465F5552347D4C3F1FEFDC6F7A ] C:\Windows\System32\samsrv.dll
18:02:26.0637 0x12b4 C:\Windows\System32\samsrv.dll - ok
18:02:26.0637 0x12b4 [ 3A9C9BAF610B0DD4967086040B3B62A9, E8E9A0F42B1EE7806EDCEED08AA024D037215D06CA317E3678BD5364AD513D23 ] C:\Windows\System32\srvcli.dll
18:02:26.0637 0x12b4 C:\Windows\System32\srvcli.dll - ok
18:02:26.0652 0x12b4 [ 3A061472B38233BAFF9CFEFF2E49C46B, DF29B14C8D22A8A16AA336A09A6152E2C7FCA6CAF4E76F0C5DCB55BEF9D00515 ] C:\Windows\System32\cryptdll.dll
18:02:26.0652 0x12b4 C:\Windows\System32\cryptdll.dll - ok
18:02:26.0652 0x12b4 [ 3C073B0C596A0AF84933E7406766B040, 4698BBA678F553E15AD4B07AD7FB236281F872DEFEE97BFD637114476C8F97B3 ] C:\Windows\System32\wevtapi.dll
18:02:26.0652 0x12b4 C:\Windows\System32\wevtapi.dll - ok
18:02:26.0652 0x12b4 [ 7FBEBD2229EA5FD48D41B199EC2D541C, A465975D445A8D50CAF3EF29BD33354B320D11173C127BE30D5EBBFF7008CDCE ] C:\Windows\System32\authz.dll
18:02:26.0652 0x12b4 C:\Windows\System32\authz.dll - ok
18:02:26.0652 0x12b4 [ 86FE1B1F8FD42CD0DB641AB1CDB13093, 8C4BB4415105CE82FFFE658879EAE9D259A24C0F6DFC7D25507352DC99241BE2 ] C:\Windows\System32\cngaudit.dll
18:02:26.0652 0x12b4 C:\Windows\System32\cngaudit.dll - ok
18:02:26.0652 0x12b4 [ E23BA7A7BD97FC6B8AB5EA32A46D05CD, 593564F84B36451A5CDCA9B04DCFC7886DB124F7CA95464B67B1E65E041A1EC6 ] C:\Windows\System32\ncrypt.dll
18:02:26.0652 0x12b4 C:\Windows\System32\ncrypt.dll - ok
18:02:26.0668 0x12b4 [ 88AB9B72B4BF3963A0DE0820B4B0B06C, 29EFEADCB26E408CD41492FCEC6D411A018099D6FF5ECA9526ED59564975F3E6 ] C:\Windows\System32\winlogon.exe
18:02:26.0668 0x12b4 C:\Windows\System32\winlogon.exe - ok
18:02:26.0668 0x12b4 [ B9A95365E52F421A20E1501935FADDA5, DDB4CB575139233EFAF2C59B7E9B04AF36BBCCC63190181F3B2A7E6BFC86E77E ] C:\Windows\System32\bcrypt.dll
18:02:26.0668 0x12b4 C:\Windows\System32\bcrypt.dll - ok
18:02:26.0668 0x12b4 [ 0D9764D58C5EFD672B7184854B152E5E, 9827B43DABBEC39AB2E2294408D9C5304EF27A684903C5234C6070387723D49E ] C:\Windows\System32\winsta.dll
18:02:26.0668 0x12b4 C:\Windows\System32\winsta.dll - ok
18:02:26.0668 0x12b4 [ 02B64609F865A39365FF88580DF11738, 2F676B93898E1B6131AF6227BB7AB731EB9C29477F9BD4C2C60F0FC1E35CD968 ] C:\Windows\System32\msprivs.dll
18:02:26.0668 0x12b4 C:\Windows\System32\msprivs.dll - ok
18:02:26.0668 0x12b4 [ 50532FCD7ECF02DD169CE5C485F02534, 8EE5D9D0EA53DC72BCC300692E521ACADD56AB09BFA3E78149D8B5A90648512C ] C:\Windows\System32\negoexts.dll
18:02:26.0668 0x12b4 C:\Windows\System32\negoexts.dll - ok
18:02:26.0668 0x12b4 [ C6505DE3561537BA1004D638C2F93F2F, 3E4FDF374B1A9E43A8F61FD2D79E0515390ECABFDAF72C4BD44A7B6429039AF6 ] C:\Windows\System32\netjoin.dll
18:02:26.0668 0x12b4 C:\Windows\System32\netjoin.dll - ok
18:02:26.0684 0x12b4 [ 33EF550DCCC58C93F5B65FD75BAD9832, 904DA99D4CBE5904E8D2580077FBB8909A44147F95492929D9A7A581C06645A8 ] C:\Windows\System32\kerberos.dll
18:02:26.0684 0x12b4 C:\Windows\System32\kerberos.dll - ok
18:02:26.0684 0x12b4 [ D0C2FBB6D97416B0166478FC7AE2B212, 7EAB6C37F0A845E645CA44CC060AC6C56E386C7EF7A64716C6786C9602AD8C9D ] C:\Windows\System32\cryptsp.dll
18:02:26.0684 0x12b4 C:\Windows\System32\cryptsp.dll - ok
18:02:26.0684 0x12b4 [ 7D1017ED11B7C3B162628069742B5E58, 0553ABF5C84469370748CA2496BA82655039E5048980C675742A88B761DED967 ] C:\Windows\System32\msv1_0.dll
18:02:26.0684 0x12b4 C:\Windows\System32\msv1_0.dll - ok
18:02:26.0684 0x12b4 [ 9A9F9F1A77D6A80EE28B57664F00013E, 0D441638E086EF1342FCDC43E826BF9E9CC6B2E8AE100D89BFC70163F987DE91 ] C:\Windows\System32\mswsock.dll
18:02:26.0684 0x12b4 C:\Windows\System32\mswsock.dll - ok
18:02:26.0684 0x12b4 [ EC7CBFF96B05ECF3D366355B3C64ADCF, F69ED45EBEDCA9CF000AC03281F0EC2C351F98513FBA90E63394E4E561D6C7A2 ] C:\Windows\System32\wship6.dll
18:02:26.0684 0x12b4 C:\Windows\System32\wship6.dll - ok
18:02:26.0699 0x12b4 [ AA339DD8BB128EF66660DFBBB59043D3, 76D9F849AFDDA38E04549EB67B4163478776F1B6EF46434168278F84FEB8FC5C ] C:\Windows\System32\netlogon.dll
18:02:26.0699 0x12b4 C:\Windows\System32\netlogon.dll - ok
18:02:26.0699 0x12b4 [ 492D07D79E7024CA310867B526D9636D, F2FE647AB85C6C3C1AA3DF4BCE6E4D42B9676C9D837E11388C235AE8DB20044F ] C:\Windows\System32\dnsapi.dll
18:02:26.0699 0x12b4 C:\Windows\System32\dnsapi.dll - ok
18:02:26.0699 0x12b4 [ 8FFE297B8449386E7B6851458B6E474E, E149B37E11091D69D926242517E5655596594A6F01FEF06EB65D6BA5B354E326 ] C:\Windows\System32\logoncli.dll
18:02:26.0699 0x12b4 C:\Windows\System32\logoncli.dll - ok
18:02:26.0699 0x12b4 [ E8E98B3B7A6E1250F4AA7AF8FA17D5BB, 36EA8779A04E40B93961C8F4B1B6FF7E26254D38B30EA9B1031066B3FC02A776 ] C:\Windows\System32\schannel.dll
18:02:26.0699 0x12b4 C:\Windows\System32\schannel.dll - ok
18:02:26.0699 0x12b4 [ 5D8874A8C11DDDDE29E12DE0E2013493, 3E9A57137BF622AF83E3E4D58971E2C0200559CCA7545D16CF263AA03EE9C7D2 ] C:\Windows\System32\rsaenh.dll
18:02:26.0699 0x12b4 C:\Windows\System32\rsaenh.dll - ok
18:02:26.0699 0x12b4 [ BFC98590EAB40C785D6134B1FA818A62, 3A0136DE59815C36ADD2E960D610371733B119635D2EBA15588DB62A05B928C8 ] C:\Windows\System32\wdigest.dll
18:02:26.0699 0x12b4 C:\Windows\System32\wdigest.dll - ok
18:02:26.0715 0x12b4 [ D6C7780A364C6BBACFA796BAB9F1B374, 3B5ED1A030BFD0BB73D4FFCD67A6A0B8501EF70293F223EFAA12F430ADF270F9 ] C:\Windows\System32\bcryptprimitives.dll
18:02:26.0715 0x12b4 C:\Windows\System32\bcryptprimitives.dll - ok
18:02:26.0715 0x12b4 [ 7DBA64AD70C2E2481C68D9E0F7CD7840, 52EE57E9A8D3C28336BB8E7536ECE77A9FB4BAF93B9651F9A897F79F873D66BE ] C:\Windows\System32\LIVESSP.DLL
18:02:26.0715 0x12b4 C:\Windows\System32\LIVESSP.DLL - ok
18:02:26.0715 0x12b4 [ E08088A97F95345E181C3DFCE2C615EF, DEF3B087DF5E10E4F8418029DB6E82546E62FEFA39694B7BD6A48CE8AAFD1B96 ] C:\Windows\System32\pku2u.dll
18:02:26.0715 0x12b4 C:\Windows\System32\pku2u.dll - ok
18:02:26.0715 0x12b4 [ 79EE13A5A406E4603874686B8005DA72, 3FC9C9463AFF70D9778C9CEDFCE6CEFDEE342A13BDE8EF2FF0420FE48421412B ] C:\Windows\System32\TSpkg.dll
18:02:26.0715 0x12b4 C:\Windows\System32\TSpkg.dll - ok
18:02:26.0715 0x12b4 [ C9DD5C0D5AF2D7A54BA32E8FBD3B67F1, 1EDB25297A9C8A87A7F33A9E9C5148F476D74BBDBF272036E5ACA46355D4A866 ] C:\Windows\System32\credssp.dll
18:02:26.0715 0x12b4 C:\Windows\System32\credssp.dll - ok
18:02:26.0730 0x12b4 [ 90BDEFC5DF334E5100EAA781D798DE1A, F48B650D811B6D57D2252E326C0C9CC74534BE9D510E7D3403F91D1C5C36281E ] C:\Windows\System32\efslsaext.dll
18:02:26.0730 0x12b4 C:\Windows\System32\efslsaext.dll - ok
18:02:26.0730 0x12b4 [ ED78427259134C63ED69804D2132B86C, F6F51B8B35881ABCA5580ED111AAC80E466E6474ABAE31EC8BE46C23EDCA77B2 ] C:\Windows\System32\scecli.dll
18:02:26.0730 0x12b4 C:\Windows\System32\scecli.dll - ok
18:02:26.0730 0x12b4 [ 7CC7DF5B654DA579613F811D8C637E29, 70EAC059C1ED814810C75DBB9F4D188428CB942FFD8869D692158D384EB6BB35 ] C:\Windows\System32\ubpm.dll
18:02:26.0730 0x12b4 C:\Windows\System32\ubpm.dll - ok
18:02:26.0730 0x12b4 [ E6EB44ABAAF1F330119F854856C53EBE, 77279972FFBFA984578DD4F17EB615F5D2D93590AF3A9FEFEFDB9128206C9887 ] C:\Windows\System32\SPInf.dll
18:02:26.0730 0x12b4 C:\Windows\System32\SPInf.dll - ok
18:02:26.0730 0x12b4 [ 6F68F63794097E54F36474ED4384B759, 745E45B1E868C395C033C3178B423D2BE121DA0ABBF859553ADF1A7D383099B7 ] C:\Windows\System32\svchost.exe
18:02:26.0730 0x12b4 C:\Windows\System32\svchost.exe - ok
18:02:26.0746 0x12b4 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] C:\Windows\System32\umpnpmgr.dll
18:02:26.0746 0x12b4 C:\Windows\System32\umpnpmgr.dll - ok
18:02:26.0746 0x12b4 [ CD1B5AD07E5F7FEF30E055DCC9E96180, 63C58551F32B0B09377F64A6AE1FA81AF93B8A707A57A8C18722086906AD3046 ] C:\Windows\System32\devrtl.dll
18:02:26.0746 0x12b4 C:\Windows\System32\devrtl.dll - ok
18:02:26.0746 0x12b4 [ 9C9307C95671AC962F3D6EB3A4A89BAE, D1433791C9B8BCEEAD8937EC18D33E89E4E2012B5975228A8500FD141BC30078 ] C:\Windows\System32\gpapi.dll
18:02:26.0746 0x12b4 C:\Windows\System32\gpapi.dll - ok
18:02:26.0746 0x12b4 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] C:\Windows\System32\umpo.dll
18:02:26.0746 0x12b4 C:\Windows\System32\umpo.dll - ok
18:02:26.0746 0x12b4 [ F6C011B46FAEEF33536B2E80F48B5CBE, BDD149D3D6F9F6C8F6F34C311219BE5618CEEFBC7D35E37473A47F1D5D015067 ] C:\Windows\System32\pcwum.dll
18:02:26.0746 0x12b4 C:\Windows\System32\pcwum.dll - ok
18:02:26.0746 0x12b4 [ 716175021BDA290504CE434273F666BC, FA18CA2D8A5F4335E051E2933147D3C1E7308F7D446E2AEB6596CDEF6E2AFC88 ] C:\Windows\System32\powrprof.dll
18:02:26.0746 0x12b4 C:\Windows\System32\powrprof.dll - ok
18:02:26.0762 0x12b4 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] C:\Windows\System32\drivers\luafv.sys
18:02:26.0762 0x12b4 C:\Windows\System32\drivers\luafv.sys - ok
18:02:26.0762 0x12b4 [ F92B0E478C0FAA6D6661E6E977247E60, 8B26B57C2C60C98CD6273ACA126B2CD0356ADB13A59FEC12882357A6B973123C ] C:\Windows\System32\drivers\mbam.sys
18:02:26.0762 0x12b4 C:\Windows\System32\drivers\mbam.sys - ok
18:02:26.0762 0x12b4 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] C:\Windows\System32\rpcss.dll
18:02:26.0762 0x12b4 C:\Windows\System32\rpcss.dll - ok
18:02:26.0762 0x12b4 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] C:\Windows\System32\RpcEpMap.dll
18:02:26.0762 0x12b4 C:\Windows\System32\RpcEpMap.dll - ok
18:02:26.0762 0x12b4 [ 31559F3244C6BC00A52030CAA83B6B91, B2025742B5F0025ACE9821D5722DE3F997EEEAB21D2F381C9E307882DF422579 ] C:\Windows\System32\WSHTCPIP.DLL
18:02:26.0762 0x12b4 C:\Windows\System32\WSHTCPIP.DLL - ok
18:02:26.0777 0x12b4 [ 9AD9E06F8656F296D91FAE8EE5B95A27, 53384747D5864D699BCC4F48E0A5E656430EDAA65DCDAB4B11EA68FC7106459E ] C:\Windows\System32\FirewallAPI.dll
18:02:26.0777 0x12b4 C:\Windows\System32\FirewallAPI.dll - ok
18:02:26.0777 0x12b4 [ 16E964ABF6D1E0F0CC7822FCA9BA754D, 0E461387ACFD641DA22EE542A3C68AF5F7D3A7F967D974E3B198143D461ABE39 ] C:\Windows\System32\wshqos.dll
18:02:26.0777 0x12b4 C:\Windows\System32\wshqos.dll - ok
18:02:26.0777 0x12b4 [ 94E026870A55AAEAFF7853C1754091E9, B2F5D5629D12BDFA98DBED3898368F37D9009C7531B6909C7285A2C11C9A0F93 ] C:\Windows\System32\version.dll
18:02:26.0777 0x12b4 C:\Windows\System32\version.dll - ok
18:02:26.0777 0x12b4 [ 6011714C8C5C55CBFFAD24D61E879FBD, 75D615082A1C71C6ED3ABB49EDAF660EE538D112CF79B9C8AF0A583D1CE1BBB0 ] C:\Windows\System32\wevtsvc.dll
18:02:26.0777 0x12b4 C:\Windows\System32\wevtsvc.dll - ok
18:02:26.0777 0x12b4 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] C:\Windows\System32\audiosrv.dll
18:02:26.0777 0x12b4 C:\Windows\System32\audiosrv.dll - ok
18:02:26.0793 0x12b4 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] C:\Windows\System32\profsvc.dll
18:02:26.0793 0x12b4 C:\Windows\System32\profsvc.dll - ok
18:02:26.0793 0x12b4 [ 588CD0C78A7FAAE4186B5EEA0AF3ED67, E957E4463D318A44BA5109EE3428624DE901C5FF2BA358986DF6C6F059DDBCC2 ] C:\Windows\System32\adtschema.dll
18:02:26.0793 0x12b4 C:\Windows\System32\adtschema.dll - ok
18:02:26.0793 0x12b4 [ 78A1E65207484B7F8D3217507745F47C, 35F413ADB9D157F3666DD15DD58104D629CD9143198A1AB914B73A4A3C9903DD ] C:\Windows\System32\avrt.dll
18:02:26.0793 0x12b4 C:\Windows\System32\avrt.dll - ok
18:02:26.0793 0x12b4 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] C:\Windows\System32\FntCache.dll
18:02:26.0793 0x12b4 C:\Windows\System32\FntCache.dll - ok
18:02:26.0793 0x12b4 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] C:\Windows\System32\mmcss.dll
18:02:26.0793 0x12b4 C:\Windows\System32\mmcss.dll - ok
18:02:26.0808 0x12b4 [ 227E2C382A1E02F8D4965E664D3BBE43, 1CFF20A8BF87ACE4FA4935EBEED72BFB1A1FE902A754899E2F50798D67DF5642 ] C:\Windows\System32\MMDevAPI.dll
18:02:26.0808 0x12b4 C:\Windows\System32\MMDevAPI.dll - ok
18:02:26.0808 0x12b4 [ F06BB4E336EA57511FDBAFAFCC47DE62, BE43EC62548E9FF89A9495A1722E22DBB76EEC3764F86E64057B636F27D15765 ] C:\Windows\System32\propsys.dll
18:02:26.0808 0x12b4 C:\Windows\System32\propsys.dll - ok
18:02:26.0808 0x12b4 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] C:\Windows\System32\wlansvc.dll
18:02:26.0808 0x12b4 C:\Windows\System32\wlansvc.dll - ok
18:02:26.0808 0x12b4 [ FE05D03B73000CFF476E1D29109F3A84, 7880B025413338A7B114BECB5DC67605FC7A97142C26FD12F765A64A21805842 ] C:\Program Files\Windows Defender\MpEvMsg.dll
18:02:26.0808 0x12b4 C:\Program Files\Windows Defender\MpEvMsg.dll - ok
18:02:26.0808 0x12b4 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] C:\Windows\System32\netprofm.dll
18:02:26.0808 0x12b4 C:\Windows\System32\netprofm.dll - ok
18:02:26.0808 0x12b4 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] C:\Windows\System32\MPSSVC.dll
18:02:26.0808 0x12b4 C:\Windows\System32\MPSSVC.dll - ok
18:02:26.0824 0x12b4 [ 50544D04AD845C43130B70212EC05CCD, B2E6B558DE7D273512226685FF53ED17C9B4BF81B739FBCA5D3FC82DF8D2BCF7 ] C:\Windows\System32\microsoft-windows-kernel-power-events.dll
18:02:26.0824 0x12b4 C:\Windows\System32\microsoft-windows-kernel-power-events.dll - ok
18:02:26.0824 0x12b4 [ B1DF2D87DC8BF6072699AC8301B37796, D5A6FD1EDB627324DFA1A0555F1777A3313EF29DDE29982C3CE59DAF1ED0D105 ] C:\Windows\System32\WUDFPlatform.dll
18:02:26.0824 0x12b4 C:\Windows\System32\WUDFPlatform.dll - ok
18:02:26.0824 0x12b4 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] C:\Windows\System32\drivers\fltMgr.sys
18:02:26.0824 0x12b4 C:\Windows\System32\drivers\fltMgr.sys - ok
18:02:26.0824 0x12b4 [ D5CCA1453B98A5801E6D5FF0FF89DC6C, 85F2C2480AAC31B6092187B431A562D79D4CFB1324F925C85055ABAB2483264B ] C:\Windows\System32\audiodg.exe
18:02:26.0824 0x12b4 C:\Windows\System32\audiodg.exe - ok
18:02:26.0824 0x12b4 [ B0945E538CF906BBDDC5A11C8EE868CC, 5F3459F6512918835F7C9400905EC7C1FAEAA7114E0D28C522040C359E3B93F7 ] C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
18:02:26.0824 0x12b4 C:\Windows\System32\microsoft-windows-kernel-processor-power-events.dll - ok
18:02:26.0840 0x12b4 [ A3DB3C17EE6CAE65D53602B4E80BCCBC, D802A7C6161F937DC42A6E45FE1BB2C8272819F92C294C180EBCDF8FF72CBFDC ] C:\Windows\System32\PSHED.DLL
18:02:26.0840 0x12b4 C:\Windows\System32\PSHED.DLL - ok
18:02:26.0840 0x12b4 [ 1F4492FE41767CDB8B89D17655847CDD, 184547FAC0C3D7148FAA3F601929A7089DE393BD19929A137DAD743331DD3F77 ] C:\Windows\System32\ntmarta.dll
18:02:26.0840 0x12b4 C:\Windows\System32\ntmarta.dll - ok
18:02:26.0840 0x12b4 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] C:\Windows\System32\gpsvc.dll
18:02:26.0840 0x12b4 C:\Windows\System32\gpsvc.dll - ok
18:02:26.0840 0x12b4 [ 58775492FFD419248B08325E583C527F, DBB013971F5894F25C222C2D4D50A29DB6DF3C413792EE9CCC1A9E6D85469093 ] C:\Windows\System32\atl.dll
18:02:26.0840 0x12b4 C:\Windows\System32\atl.dll - ok
18:02:26.0840 0x12b4 [ A77BE7CB3222B4FB0AC6C71D1C2698D4, 73566223914BF670DF6B5931FA213E546713531B10391ED65B5256BBD7ABDE7F ] C:\Windows\System32\dsrole.dll
18:02:26.0840 0x12b4 C:\Windows\System32\dsrole.dll - ok
18:02:26.0855 0x12b4 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] C:\Windows\System32\es.dll
18:02:26.0855 0x12b4 C:\Windows\System32\es.dll - ok
18:02:26.0855 0x12b4 [ 46BB91A169B9B31FF44EB04C48EC1D41, 8115B533D3A5BE07633FA54FA8847E3DEC00C5BEB193CF2FBE88428D23E2B3D6 ] C:\Windows\System32\nlaapi.dll
18:02:26.0855 0x12b4 C:\Windows\System32\nlaapi.dll - ok
18:02:26.0855 0x12b4 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] C:\Windows\System32\themeservice.dll
18:02:26.0855 0x12b4 C:\Windows\System32\themeservice.dll - ok
18:02:26.0855 0x12b4 [ BE097F5BB10F9079FCEB2DC4E7E20F02, 90A88986C8C5F30FB153EC803FEDA6572B2C2630A6C9578FCC017800692694D5 ] C:\Windows\System32\slc.dll
18:02:26.0855 0x12b4 C:\Windows\System32\slc.dll - ok
18:02:26.0855 0x12b4 [ 1A47D52E303B7543E4E6026595B95422, C577CD3837546A7CED5D2E8E97FA2EDACA133B4A8595770EF96CAE519BFE280F ] C:\Windows\System32\comres.dll
18:02:26.0855 0x12b4 C:\Windows\System32\comres.dll - ok
18:02:26.0855 0x12b4 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] C:\Windows\System32\drivers\lltdio.sys
18:02:26.0855 0x12b4 C:\Windows\System32\drivers\lltdio.sys - ok
18:02:26.0871 0x12b4 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] C:\Windows\System32\drivers\nwifi.sys
18:02:26.0871 0x12b4 C:\Windows\System32\drivers\nwifi.sys - ok
18:02:26.0871 0x12b4 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] C:\Windows\System32\Sens.dll
18:02:26.0871 0x12b4 C:\Windows\System32\Sens.dll - ok
18:02:26.0871 0x12b4 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] C:\Windows\System32\uxsms.dll
18:02:26.0871 0x12b4 C:\Windows\System32\uxsms.dll - ok
18:02:26.0871 0x12b4 [ BD3674BE7FC9D8D3732C83E8499576ED, E6716A5895D629263A4D21959F48840429AB6F4B55A5FA2663EE5E86C9CA2BF1 ] C:\Windows\System32\wtsapi32.dll
18:02:26.0871 0x12b4 C:\Windows\System32\wtsapi32.dll - ok
18:02:26.0871 0x12b4 [ 5DFFC12BF7DB53BDB401804A3C3A475E, DEACB4BFF904AD77389A8326BFCF12A490E1A7A10B68049D253552F1FC630FA3 ] C:\Windows\System32\authui.dll
18:02:26.0871 0x12b4 C:\Windows\System32\authui.dll - ok
18:02:26.0886 0x12b4 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] C:\Windows\System32\drivers\ndisuio.sys
18:02:26.0886 0x12b4 C:\Windows\System32\drivers\ndisuio.sys - ok
18:02:26.0886 0x12b4 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] C:\Windows\System32\drivers\rspndr.sys
18:02:26.0886 0x12b4 C:\Windows\System32\drivers\rspndr.sys - ok
18:02:26.0886 0x12b4 [ 715F03B4C7223349768013EA95D9E5B7, 09AB0535A54C2E2962F0FD06988D99060F8CECA39B07AC00A63204C773B95893 ] C:\Windows\System32\LogonUI.exe
18:02:26.0886 0x12b4 C:\Windows\System32\LogonUI.exe - ok
18:02:26.0886 0x12b4 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] C:\Windows\System32\dhcpcore.dll
18:02:26.0886 0x12b4 C:\Windows\System32\dhcpcore.dll - ok
18:02:26.0886 0x12b4 [ 2B81776DA02017A37FE26C662827470E, A656353C50EE08422145D00DB9CFD9F6D3E664753B3C454B171E2A56A8AA94DC ] C:\Windows\System32\IPHLPAPI.DLL
18:02:26.0886 0x12b4 C:\Windows\System32\IPHLPAPI.DLL - ok
18:02:26.0886 0x12b4 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] C:\Windows\System32\lmhsvc.dll
18:02:26.0886 0x12b4 C:\Windows\System32\lmhsvc.dll - ok
18:02:26.0902 0x12b4 [ B73A6E4B319AFFE64582AC5C1801BB3F, 274EEA0743DC659180E691654CBB17136E9E9D83B07E302B47EA5B103EA57710 ] C:\Windows\System32\nrpsrv.dll
18:02:26.0902 0x12b4 C:\Windows\System32\nrpsrv.dll - ok
18:02:26.0902 0x12b4 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] C:\Windows\System32\nsisvc.dll
18:02:26.0902 0x12b4 C:\Windows\System32\nsisvc.dll - ok
18:02:26.0902 0x12b4 [ 4C9210E8F4E052F6A4EB87716DA0C24C, 460F7990BDADB7D58D6DC95B094D30A2EFDC4CEED444B18A2F36E8D9076FB8B9 ] C:\Windows\System32\winnsi.dll
18:02:26.0902 0x12b4 C:\Windows\System32\winnsi.dll - ok
18:02:26.0902 0x12b4 [ 3CC16A849E6092E43909F48EF0E60306, 610B576654A69415E4F2FEDB6BA384C77715944E4F89BD2821B311968CA8D810 ] C:\Windows\System32\dhcpcore6.dll
18:02:26.0902 0x12b4 C:\Windows\System32\dhcpcore6.dll - ok
18:02:26.0902 0x12b4 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] C:\Windows\System32\dnsrslvr.dll
18:02:26.0902 0x12b4 C:\Windows\System32\dnsrslvr.dll - ok
18:02:26.0918 0x12b4 [ 87356377F31DA5F20A833811CD59499C, 4FEC1FD3AC4E4E34DCBC0109B248952604F438C84B1604EB9E2359FA721E23C4 ] C:\Windows\System32\eapphost.dll
18:02:26.0918 0x12b4 C:\Windows\System32\eapphost.dll - ok
18:02:26.0918 0x12b4 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] C:\Windows\System32\eapsvc.dll
18:02:26.0918 0x12b4 C:\Windows\System32\eapsvc.dll - ok
18:02:26.0918 0x12b4 [ D07EB640618F96490DB88C3CE58DB608, 0C553971259632031E6856A94EEB937D571627FC7CF061CCFC040F4BF0CFF259 ] C:\Windows\System32\FWPUCLNT.DLL
18:02:26.0918 0x12b4 C:\Windows\System32\FWPUCLNT.DLL - ok
18:02:26.0918 0x12b4 [ F9EC845C5EECF20E9A67F9F805F2EF1F, C3DBA8CF93DBF50954B1BF6D7EF3F6F5DD1A56DC62B7EB2749C54D9B65D9BB43 ] C:\Windows\System32\keyiso.dll
18:02:26.0918 0x12b4 C:\Windows\System32\keyiso.dll - ok
18:02:26.0918 0x12b4 [ F568F7C08458D69E4FCD8675BBB107E4, A5FA25ECF248999A68CCECFBB508BFA1ADD18A23E20A9A9081A87C41CAAA36C0 ] C:\Windows\System32\dhcpcsvc.dll
18:02:26.0918 0x12b4 C:\Windows\System32\dhcpcsvc.dll - ok
18:02:26.0933 0x12b4 [ 3C06D5A929B798D0B13F6481242A0FD2, CE6127A31AB09E21A912CA16E4BDF663E9D05C254CCF9090A8B5A9A2E055EFF3 ] C:\Windows\System32\dhcpcsvc6.dll
18:02:26.0933 0x12b4 C:\Windows\System32\dhcpcsvc6.dll - ok
18:02:26.0933 0x12b4 [ 885D0942E0F28DB90919BE3129ECF279, 5A10D90EE656ECE3DCA174D6F924641509819FC20CB6EF46B5E1723E52DE85BE ] C:\Windows\System32\dnsext.dll
18:02:26.0933 0x12b4 C:\Windows\System32\dnsext.dll - ok
18:02:26.0933 0x12b4 [ 9FCA3A84338ADEF2AFF67CDA46EF8539, 087DF72096852AE98C56990EE6E68835BE95E7E49ECDDE8B54DAC11C9E07FE94 ] C:\Windows\System32\umb.dll
18:02:26.0933 0x12b4 C:\Windows\System32\umb.dll - ok
18:02:26.0933 0x12b4 [ A648C4A06DE367065B24056D067B4460, 2412487D65A833DDD9AB17D039515CC08DA22D006259EC4B03E42475FAFFD2AD ] C:\Windows\System32\wlanmsm.dll
18:02:26.0933 0x12b4 C:\Windows\System32\wlanmsm.dll - ok
18:02:26.0933 0x12b4 [ B3BFBD758506ECB50C5804AAA76318F9, 34E079A6AB2D41D1E0B3887B6AE31C43941061B7176FFF2801C3F465C2C89578 ] C:\Windows\System32\cryptui.dll
18:02:26.0933 0x12b4 C:\Windows\System32\cryptui.dll - ok
18:02:26.0949 0x12b4 [ 65522E77A1360DBC8D199DA3BF5EFFE4, E9D748070FA478A3D37F15049F998D340885C0DC5FCE03BFCE5D521C9EBA7350 ] C:\Windows\System32\eappprxy.dll
18:02:26.0949 0x12b4 C:\Windows\System32\eappprxy.dll - ok
18:02:26.0949 0x12b4 [ 73FCB7919DEE80EE556F2E498594EBAE, D0F7A0AD3BC33263E9C2CF9787DD326436F9E0C9F5031D769F8A43C64C08A762 ] C:\Windows\System32\onex.dll
18:02:26.0949 0x12b4 C:\Windows\System32\onex.dll - ok
18:02:26.0949 0x12b4 [ 06A1386B6E3A0CBC368665C1840906F4, C10BCA5092A0B3F9435CE4D65C7449528C89F5C5243B410878D2EBF516DA2FB2 ] C:\Windows\System32\wlansec.dll
18:02:26.0949 0x12b4 C:\Windows\System32\wlansec.dll - ok
18:02:26.0949 0x12b4 [ 0D753307D274F3688BD21C377B616700, 5DD08E77A11F2561FB96BA212FDDFE21D4394C69C34C3EB88F7F5CD068EE55BF ] C:\Windows\System32\eappcfg.dll
18:02:26.0949 0x12b4 C:\Windows\System32\eappcfg.dll - ok
18:02:26.0949 0x12b4 [ 97E43F324BE1503CB2FFB058534688DA, 50C781DF38D0D38C9A5420AB1FFF8672DC13FD1ED8E9F5432B4BA3077A7435D5 ] C:\Windows\System32\l2gpstore.dll
18:02:26.0949 0x12b4 C:\Windows\System32\l2gpstore.dll - ok
18:02:26.0949 0x12b4 [ 7D5645EE0EA77D539828433D9B95F5EB, EEF81E9B2205FC456DB6095AD0AEAB38BB131D3BCD090EA6CD91D5568ACAFB7F ] C:\Windows\System32\WinSCard.dll
18:02:26.0949 0x12b4 C:\Windows\System32\WinSCard.dll - ok
18:02:26.0964 0x12b4 [ 7F1B4C6FF3B85F9ADF74055187B8A22C, CC95DA5662638AACBE9643DCB236464C2C2095A8D5CDC8A747045870BE9D0E7D ] C:\Windows\System32\wlanutil.dll
18:02:26.0964 0x12b4 C:\Windows\System32\wlanutil.dll - ok
18:02:26.0964 0x12b4 [ 730BF204A595D5B6D7DC57A247CC741C, 264C6901F4A49B738BBD04BCA1783DEE892885BADE9085B0AEA40BAE7CC0A218 ] C:\Windows\System32\wlgpclnt.dll
18:02:26.0964 0x12b4 C:\Windows\System32\wlgpclnt.dll - ok
18:02:26.0964 0x12b4 [ 7FA8FDC2C2A27817FD0F624E78D3B50C, 7B63F6AA2CD6D4D07EA3C595B868B1A0749BB11620027A2BD9B935E3055481E4 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll
18:02:26.0964 0x12b4 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac\comctl32.dll - ok
18:02:26.0964 0x12b4 [ 0E3A7EC2B9590EA7767BBB1823630DEA, 6858B7050465DB8505CF9E932868B123B925376C05363EA5A9198B2AE15CF728 ] C:\Windows\System32\msxml6.dll
18:02:26.0964 0x12b4 C:\Windows\System32\msxml6.dll - ok
18:02:26.0964 0x12b4 [ 5B3EBFC3DA142324B388DDCC4465E1FF, 5D58642305311F9BC9B779C9598BFC4E7433B3EA58404BF1FF9466838A2328C7 ] C:\Windows\System32\samlib.dll
18:02:26.0964 0x12b4 C:\Windows\System32\samlib.dll - ok
18:02:26.0980 0x12b4 [ 4E9C2DB10F7E6AE91BF761139D4B745B, 8F63F78294F5585D599A114AF449DCC447CCB239D0F0B490BFE6B34A2146E730 ] C:\Windows\System32\shacct.dll
18:02:26.0980 0x12b4 C:\Windows\System32\shacct.dll - ok
18:02:26.0980 0x12b4 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] C:\Windows\System32\shsvcs.dll
18:02:26.0980 0x12b4 C:\Windows\System32\shsvcs.dll - ok
18:02:26.0980 0x12b4 [ D29E998E8277666982B4F0303BF4E7AF, 4F19AB5DC173E278EBE45832F6CEAA40E2DF6A2EDDC81B2828122442FE5D376C ] C:\Windows\System32\uxtheme.dll
18:02:26.0980 0x12b4 C:\Windows\System32\uxtheme.dll - ok
18:02:26.0980 0x12b4 [ A9A87481B1A6589898C1DAB37C03E4AB, 803DB46E9FEE4E45B63A13A8CE3E589D7498532B8A7D8C3424E210E6A9AAC61F ] C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_2b283fd671e9bf4d\GdiPlus.dll
18:02:26.0980 0x12b4 C:\Windows\winsxs\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_2b283fd671e9bf4d\GdiPlus.dll - ok
18:02:26.0980 0x12b4 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] C:\Windows\System32\schedsvc.dll
18:02:26.0980 0x12b4 C:\Windows\System32\schedsvc.dll - ok
18:02:26.0996 0x12b4 [ EEEA40F0EDB0A6E5359E539E15D0BC77, BFCBF777239C29C6AC4BC5B59591308571647B7C7FDB5571903F7403DD241E8E ] C:\Windows\System32\netapi32.dll
18:02:26.0996 0x12b4 C:\Windows\System32\netapi32.dll - ok
18:02:26.0996 0x12b4 [ 6CECA4C6A489C9B2E6073AFDAAE3F607, 127506D1DB38275614CBEB047C133718EF9D03266BA9C98BE55EC7847CFC9C3D ] C:\Windows\System32\netutils.dll
18:02:26.0996 0x12b4 C:\Windows\System32\netutils.dll - ok
18:02:26.0996 0x12b4 [ 3C91392D448F6E5D525A85B7550D8BA9, 6FD0DC73DBE7519E2C643554C2A7F8FBE4F9A678C4241BB54B3C6E65D2ABCF3A ] C:\Windows\System32\wkscli.dll
18:02:26.0996 0x12b4 C:\Windows\System32\wkscli.dll - ok
18:02:26.0996 0x12b4 [ 3CB6A7286422C72C34DAB54A5DFF1A34, 98D21EFFF511E407336A226420701E82554DA01FA05661303836B6860D63749D ] C:\Windows\System32\dui70.dll
18:02:26.0996 0x12b4 C:\Windows\System32\dui70.dll - ok
18:02:26.0996 0x12b4 [ 945E54F23C72D37B8CD1987AF0DB63BF, C2B217C94DBCA0A31ED834B9D492B53B25B235DDD02B1D1200E76609D32772EA ] C:\Windows\System32\fveapi.dll
18:02:26.0996 0x12b4 C:\Windows\System32\fveapi.dll - ok
18:02:26.0996 0x12b4 [ BC414631876B2F28B8DAB08E849C12C5, 5973654AA3E90E6B699B0A43F645B893D95BAA803129B6967D746C8239AB26E3 ] C:\Windows\System32\ktmw32.dll
18:02:26.0996 0x12b4 C:\Windows\System32\ktmw32.dll - ok
18:02:27.0011 0x12b4 [ 6F8B48F3D343E4B186AB6A9E302B7E16, 54DB52FC56509E61DF68BD251B3286E6CBE1A91D9BC4D950940A61FE2DA04DF8 ] C:\Windows\System32\xmllite.dll
18:02:27.0011 0x12b4 C:\Windows\System32\xmllite.dll - ok
18:02:27.0011 0x12b4 [ 8CCDE014A4CDF84564E03ACE064CA753, DD663029B2EB7B12FDB00FCE403D8326141E540E3B9CE84CD5871473D3E2E2CF ] C:\Windows\System32\duser.dll
18:02:27.0011 0x12b4 C:\Windows\System32\duser.dll - ok
18:02:27.0011 0x12b4 [ 891ECFD08E2C538B7948CBC45106D697, 628D0D618FF3A70E9FBE3B2C7206C9365ED2297784A5F10FFA05BD2C56657013 ] C:\Windows\System32\fvecerts.dll
18:02:27.0011 0x12b4 C:\Windows\System32\fvecerts.dll - ok
18:02:27.0011 0x12b4 [ D7F1EF374A90709B31591823B002F918, 05FD2837C9B03D14BB2A969C1AD77CAEF047D93DC5D0F6C2ACBF0888E8F7B359 ] C:\Windows\System32\SndVolSSO.dll
18:02:27.0011 0x12b4 C:\Windows\System32\SndVolSSO.dll - ok
18:02:27.0011 0x12b4 [ 694865362F0965779F92BCFE97712323, 825EB75E37AFE9B738869FB5D95020D4F44AD419C2F6C5A658F82A5242FDEF6C ] C:\Windows\System32\tbs.dll
18:02:27.0011 0x12b4 C:\Windows\System32\tbs.dll - ok
18:02:27.0027 0x12b4 [ 8269210DAF3B12BC8300631B28A2A442, EABEB792C2EA8D4A1A7B13281CF557C194D5667AE0BA2A2D5664908D8269113D ] C:\Windows\System32\wiarpc.dll
18:02:27.0027 0x12b4 C:\Windows\System32\wiarpc.dll - ok
18:02:27.0027 0x12b4 [ DA1B7075260F3872585BFCDD668C648B, 3E10EF6E1A5C341B478322CB78A0AB7BFC70AD8023779B8B4542A7CB4CA756AB ] C:\Windows\System32\dwmapi.dll
18:02:27.0027 0x12b4 C:\Windows\System32\dwmapi.dll - ok
18:02:27.0027 0x12b4 [ 896F15A6434D93EDB42519D5E18E6B50, 9263F0CEC58D45EBE3FB9C3061FB9392C55A7933B84B4592E6EE13CFC86D5A50 ] C:\Windows\System32\hid.dll
18:02:27.0027 0x12b4 C:\Windows\System32\hid.dll - ok
18:02:27.0027 0x12b4 [ AFCA5C1ECEAF948FC815178BC077680E, D052C18EF455E1A272332F2E11FD4F36DA071FAB3B81CA312FB75BF8702ED72D ] C:\Windows\System32\WindowsCodecs.dll
18:02:27.0027 0x12b4 C:\Windows\System32\WindowsCodecs.dll - ok
18:02:27.0027 0x12b4 [ 6DC4A7242F565C9E9C9CCC7BB0FA75C7, 4BC5A1279885EEFBEB27333AF719622A5FCDD9606697692C1978E434CE264D80 ] C:\Windows\System32\taskcomp.dll
18:02:27.0027 0x12b4 C:\Windows\System32\taskcomp.dll - ok
18:02:27.0027 0x12b4 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] C:\Windows\System32\drivers\http.sys
18:02:27.0027 0x12b4 C:\Windows\System32\drivers\http.sys - ok
18:02:27.0042 0x12b4 [ 65EA57712340C09B1B0C427B4848AE05, 5FDCF73191BFF9DBB03886755FFCF0BC15849F0E216884A5A8B9BB375FA7C1A5 ] C:\Windows\System32\taskeng.exe
18:02:27.0042 0x12b4 C:\Windows\System32\taskeng.exe - ok
18:02:27.0042 0x12b4 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] C:\Windows\System32\spoolsv.exe
18:02:27.0042 0x12b4 C:\Windows\System32\spoolsv.exe - ok
18:02:27.0042 0x12b4 [ 9F2BACD5E1776A4BB7CC0EC3C3A4F96D, 19959D18601712901F03B83150D15E34EBCAB355BB4692C9A28511A72F57FC66 ] C:\Windows\System32\winbrand.dll
18:02:27.0042 0x12b4 C:\Windows\System32\winbrand.dll - ok
18:02:27.0042 0x12b4 [ BF352E73615F5461AA6884472435A544, 4B059E79325C5F08CD6FBBE6352E17ADB64B9608CC9EDB36A2DF4D148060C309 ] C:\Windows\System32\BioCredProv.dll
18:02:27.0042 0x12b4 C:\Windows\System32\BioCredProv.dll - ok
18:02:27.0042 0x12b4 [ 8563BA40DF4F1E93A61B70E2C8B60CF8, E5CAA520CBE61FAF3EAA784A51ED30E0CB2FD78EFD8AE1D5C6B0FE43A1009F39 ] C:\Windows\System32\SmartcardCredentialProvider.dll
18:02:27.0042 0x12b4 C:\Windows\System32\SmartcardCredentialProvider.dll - ok
18:02:27.0058 0x12b4 [ C2762A57DF0EE85E63CE4893C5215313, DDE22212D78353633CEDE27D7210469DE674563991105563CF64CCCE2D0743BD ] C:\Windows\System32\VaultCredProvider.dll
18:02:27.0058 0x12b4 C:\Windows\System32\VaultCredProvider.dll - ok
18:02:27.0058 0x12b4 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] C:\Windows\System32\BFE.DLL
18:02:27.0058 0x12b4 C:\Windows\System32\BFE.DLL - ok
18:02:27.0058 0x12b4 [ 4403D5ECE7D8323CAF1207D1AA38FA01, BD0B34DCF658D3CB91C1B55E9E730C5F7C571AFC2BFA09270C377B72B6830D48 ] C:\Windows\System32\credui.dll
18:02:27.0058 0x12b4 C:\Windows\System32\credui.dll - ok
18:02:27.0058 0x12b4 [ FC51229C7D4AFA0D6F186133728B95AB, 37E58C8E1C8437D1981725A5DCDACA7316CEFBB570370CEFC8D122F523B96AC0 ] C:\Windows\System32\samcli.dll
18:02:27.0058 0x12b4 C:\Windows\System32\samcli.dll - ok
18:02:27.0058 0x12b4 [ 44B9C66177651F3F53C87B665D58D17A, 3FC426115FF87570889DB28D71970B82B525D2A4B9A00EDD273BF083B77A05CE ] C:\Windows\System32\vaultcli.dll
18:02:27.0058 0x12b4 C:\Windows\System32\vaultcli.dll - ok
18:02:27.0058 0x12b4 [ 796B8123A7859AFD3A4AE10514DBAEB5, E76F69FAFEC3D66263ED95F3FA9EE309BDDACB287E30583A147DC97F6EEB8844 ] C:\Windows\System32\winbio.dll
18:02:27.0058 0x12b4 C:\Windows\System32\winbio.dll - ok
18:02:27.0074 0x12b4 [ 032229246107C5C7211E6D1498B52D3D, 8B492A0621BA88EBF3ABFC072C9023B2162C59AA6E9C61DA6D4762DB6C6C7B4A ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL
18:02:27.0074 0x12b4 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL - ok
18:02:27.0074 0x12b4 [ 972C3301DB3DA91AE06A95F6B4160B1B, 678B533A06C306295FE97DC26CE9BAFFC8EAF1FB7405ACB040719099717744D5 ] C:\Windows\System32\certCredProvider.dll
18:02:27.0074 0x12b4 C:\Windows\System32\certCredProvider.dll - ok
18:02:27.0074 0x12b4 [ 019CD868461B646E09BDF04474C19341, 01837EFACB02E52BC6E90C90C4CB01B11D56E449A37EA4FC2695507FF85EA9FE ] C:\Windows\System32\rasapi32.dll
18:02:27.0074 0x12b4 C:\Windows\System32\rasapi32.dll - ok
18:02:27.0074 0x12b4 [ 87FA0C48C3B2E9FEE518818FE26B15B5, DA4042DE9897397AEDCEFF9F69746726237305DDE64464309B6DCC45E05E42F4 ] C:\Windows\System32\rasplap.dll
18:02:27.0074 0x12b4 C:\Windows\System32\rasplap.dll - ok
18:02:27.0074 0x12b4 [ B28DEEC597C8DEB70C744C7CF9210E3E, E777F192D822990CA6301B3FEA2AEA213FA7901438EB3328914ADF02B6C39DB9 ] C:\Windows\System32\rasman.dll
18:02:27.0074 0x12b4 C:\Windows\System32\rasman.dll - ok
18:02:27.0089 0x12b4 [ B53C4B69B695EDA1B7E41D35CA4244E2, 3D98E9B263CADA576E4057E059AFC867F6E3F1001F3B73C8BCF9066763A45D9D ] C:\Windows\System32\rtutils.dll
18:02:27.0089 0x12b4 C:\Windows\System32\rtutils.dll - ok
18:02:27.0089 0x12b4 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] C:\Windows\System32\drivers\bowser.sys
18:02:27.0089 0x12b4 C:\Windows\System32\drivers\bowser.sys - ok
18:02:27.0089 0x12b4 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] C:\Windows\System32\drivers\mpsdrv.sys
18:02:27.0089 0x12b4 C:\Windows\System32\drivers\mpsdrv.sys - ok
18:02:27.0089 0x12b4 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] C:\Windows\System32\drivers\mrxsmb.sys
18:02:27.0089 0x12b4 C:\Windows\System32\drivers\mrxsmb.sys - ok
18:02:27.0089 0x12b4 [ 50D28F3F8B7C17056520C80A29EFE17C, 71613EA48467D1A0B00F8BCAED270B7527FC5771F540A8EB0515B3A5FDC8604F ] C:\Windows\System32\lpksetup.exe
18:02:27.0089 0x12b4 C:\Windows\System32\lpksetup.exe - ok
18:02:27.0089 0x12b4 [ 805A52C5AE26C28E88FDD9BCCFE6F312, 4FF28D3658C31722B7DD036DED9D544B14841C0E0B94D31A8EC5AB92128DA020 ] C:\Windows\System32\TSChannel.dll
18:02:27.0089 0x12b4 C:\Windows\System32\TSChannel.dll - ok
18:02:27.0105 0x12b4 [ 9BC8610C32C96A2983A65DC21CAFA921, 2A4195F663C9D55939E3D8FEAA208090FDB0B8801A60164A7325B53104797CBC ] C:\Windows\System32\UXInit.dll
18:02:27.0105 0x12b4 C:\Windows\System32\UXInit.dll - ok
18:02:27.0105 0x12b4 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] C:\Windows\System32\drivers\mrxsmb10.sys
18:02:27.0105 0x12b4 C:\Windows\System32\drivers\mrxsmb10.sys - ok
18:02:27.0105 0x12b4 [ 6369F960C28A16F4502C480EEDE3652C, 43712222F1DEF7277EC6A99BEA6FB9C7E0E1FCAB2AD35C0208747D70301D0E47 ] C:\Windows\System32\dpx.dll
18:02:27.0105 0x12b4 C:\Windows\System32\dpx.dll - ok
18:02:27.0105 0x12b4 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] C:\Windows\System32\drivers\mrxsmb20.sys
18:02:27.0105 0x12b4 C:\Windows\System32\drivers\mrxsmb20.sys - ok
18:02:27.0105 0x12b4 [ F1C09EE3A594B19DD1F4B4AEA9E353C9, 4F83F366F50CE1C8143CA7855EE8BDEAEF29EBAF76CF1C67B244D03AE4F8D438 ] C:\Windows\System32\comsvcs.dll
18:02:27.0105 0x12b4 C:\Windows\System32\comsvcs.dll - ok
18:02:27.0120 0x12b4 [ C67F8A962B2534224D5908D16D2AD3CE, CAC1821F5E867285638AEE7AE33CE574BCCF16277AC5AD805650B48F7759B4B4 ] C:\Windows\System32\wfapigp.dll
18:02:27.0120 0x12b4 C:\Windows\System32\wfapigp.dll - ok
18:02:27.0120 0x12b4 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] C:\Windows\System32\wkssvc.dll
18:02:27.0120 0x12b4 C:\Windows\System32\wkssvc.dll - ok
18:02:27.0120 0x12b4 [ A52EA1D8C2900055323C93DDB252A3DA, 70C30AACE3948DFD2E4C52818F93F03AF32430B43229F613FEE3C4CD4FA1EFE6 ] C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
18:02:27.0120 0x12b4 C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe - ok
18:02:27.0120 0x12b4 [ A2B0924D50F4435FD389499047CE553A, 8D16D5CAAD71AAAAA1479F8477D2928B66581C79932A49A21EDF93DB2803AB9C ] C:\Windows\SysWOW64\ntdll.dll
18:02:27.0120 0x12b4 C:\Windows\SysWOW64\ntdll.dll - ok
18:02:27.0120 0x12b4 [ 1834B31C749B86DAC233BBBA1C03BC48, 27FCA9196842C0BB53CCAD895870A0EB10D2F8ED67E5486A4437067BD4BC4448 ] C:\Windows\System32\mscms.dll
18:02:27.0120 0x12b4 C:\Windows\System32\mscms.dll - ok
18:02:27.0120 0x12b4 [ 2A107B611C91CD256466C58C0D776E9D, 58EA4F6E0FE7EFB8D3024AE71EE16848C2A00BA5224C8054C80134F99D9A72AB ] C:\Windows\System32\wow64.dll
18:02:27.0120 0x12b4 C:\Windows\System32\wow64.dll - ok
18:02:27.0136 0x12b4 [ 7434E01FBCA3CB86539C39412A31D5E1, E40D5AEBB3A5D8F53C76E3FBF0C07B9C0227914C869F57622EA44A212383EE6D ] C:\Windows\System32\wow64win.dll
18:02:27.0136 0x12b4 C:\Windows\System32\wow64win.dll - ok
18:02:27.0136 0x12b4 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] C:\Windows\System32\pcasvc.dll
18:02:27.0136 0x12b4 C:\Windows\System32\pcasvc.dll - ok
18:02:27.0136 0x12b4 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] C:\Windows\System32\snmptrap.exe
18:02:27.0136 0x12b4 C:\Windows\System32\snmptrap.exe - ok
18:02:27.0136 0x12b4 [ 0F090A77E664CB0F70AB8D3B230B760C, A08EA0409B3BF88AB12792F721FA3A692BBE640DF2A06641E142843A7044EC5E ] C:\Windows\System32\wow64cpu.dll
18:02:27.0136 0x12b4 C:\Windows\System32\wow64cpu.dll - ok
18:02:27.0136 0x12b4 [ 76161B9D78A275F8F28DD67436013110, E4AE9648BDED9035D39DF20C3A6F453F67D49D7899038B21D88FFD4EFFCC4C08 ] C:\Windows\SysWOW64\kernel32.dll
18:02:27.0136 0x12b4 C:\Windows\SysWOW64\kernel32.dll - ok
18:02:27.0152 0x12b4 [ 10EAB90C1AE8271B5FE5A8930987EE5C, 53E72964AA75526B161F859A509CB046809AE47C65DC998F0E49AC8AED9066EA ] C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll
18:02:27.0152 0x12b4 C:\Program Files\Windows Live\Mesh\WLRemoteServiceResource.dll - ok
18:02:27.0152 0x12b4 [ 4004299B7AF4CBFF6540F1798899A11F, 5DD3AE149B7228A769F2FE95355795AC98ACD8CDFB78954A423A357F717203C3 ] C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll
18:02:27.0152 0x12b4 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ServiceModelEvents.dll - ok
18:02:27.0152 0x12b4 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] C:\Windows\System32\sstpsvc.dll
18:02:27.0152 0x12b4 C:\Windows\System32\sstpsvc.dll - ok
18:02:27.0152 0x12b4 [ 461B713DE7F353C6447B744F1A049930, 3551C57128DAFA009C9DB3EE0D798D94B269D1605F74897566D7E79E5FDD437B ] C:\Windows\SysWOW64\KernelBase.dll
18:02:27.0152 0x12b4 C:\Windows\SysWOW64\KernelBase.dll - ok
18:02:27.0152 0x12b4 [ 10FB16B50AFFDA6D44588F3C445DC273, 6CDA17DA9B44D11E69F7C6682FA633EA75731623BB21B429A0FE2086ED4495A7 ] C:\Windows\SysWOW64\setupapi.dll
18:02:27.0152 0x12b4 C:\Windows\SysWOW64\setupapi.dll - ok
18:02:27.0167 0x12b4 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] C:\Windows\System32\provsvc.dll
18:02:27.0167 0x12b4 C:\Windows\System32\provsvc.dll - ok
18:02:27.0167 0x12b4 [ 5AA945234E9D4CCE4F715276B9AA712C, 65165BD131056816F009D987FC78AC86FFE0C3C38A27E73F873586B7FF4D59CF ] C:\Windows\System32\imageres.dll
18:02:27.0167 0x12b4 C:\Windows\System32\imageres.dll - ok
18:02:27.0167 0x12b4 [ F436E847FA799ECD75AD8C313673F450, 3C8BF3F0C08C7FA8DE5CD9C60AD9D00B742E84EB1FEBEEBA0F7159844BAAA471 ] C:\Windows\SysWOW64\cfgmgr32.dll
18:02:27.0167 0x12b4 C:\Windows\SysWOW64\cfgmgr32.dll - ok
18:02:27.0167 0x12b4 [ 9DC80A8AAAAAC397BDAB3C67165A824E, 051636BFDFF7AB0E4191354E846BD0DACCA1A01FCC13C1AFED91D8DBFE17127A ] C:\Windows\SysWOW64\msvcrt.dll
18:02:27.0167 0x12b4 C:\Windows\SysWOW64\msvcrt.dll - ok
18:02:27.0167 0x12b4 [ D8BED6BA298DBAAF6F3D746739FCD333, 83A40845EC448943F4737B730F95860983919677D84922E44EED4BECDFA71A31 ] C:\Windows\SysWOW64\rpcrt4.dll
18:02:27.0167 0x12b4 C:\Windows\SysWOW64\rpcrt4.dll - ok
18:02:27.0167 0x12b4 [ D67472125471784DE7147946EDA25FEB, F41960118F412B6CA5E80AE5E8DB9AECDD043A7DB34388FF57C6F9C5A0056F91 ] C:\Windows\SysWOW64\advapi32.dll
18:02:27.0167 0x12b4 C:\Windows\SysWOW64\advapi32.dll - ok
18:02:27.0183 0x12b4 [ F08F6FCD09F9BE94C37ACC1B344685FF, DE48D766258B46EFEAB16579421C4BD97ACC6883F782D00E9857F4A0CE7E8A34 ] C:\Windows\SysWOW64\cryptbase.dll
18:02:27.0183 0x12b4 C:\Windows\SysWOW64\cryptbase.dll - ok
18:02:27.0183 0x12b4 [ CFC97F07904067A1E5FAE195D534DA3A, EB4D2D127312EB09E2ACCA3276779E80F90FAF77322684BABF72B8EC6E1F906C ] C:\Windows\SysWOW64\sechost.dll
18:02:27.0183 0x12b4 C:\Windows\SysWOW64\sechost.dll - ok
18:02:27.0183 0x12b4 [ 10826DA2FC073702AEAB93AF3D73B066, 1B55FE13B52109F1E427FCE6F64A02CF37AB6732BE4C968479BD871DE1D38A06 ] C:\Windows\SysWOW64\sspicli.dll
18:02:27.0183 0x12b4 C:\Windows\SysWOW64\sspicli.dll - ok
18:02:27.0183 0x12b4 [ 980305AC3AF53C1964A11190451ABB32, D0FE0845F9FB51B1F556E3A1D327F30603033A1FAFC17DFA3D5047B93C7D4D82 ] C:\Windows\SysWOW64\gdi32.dll
18:02:27.0183 0x12b4 C:\Windows\SysWOW64\gdi32.dll - ok
18:02:27.0183 0x12b4 [ 5E0DB2D8B2750543CD2EBB9EA8E6CDD3, 01EB95FA3943CF3C6B1A21E473A5C3CB9FCBCE46913B15C96CAC14E4F04075B4 ] C:\Windows\SysWOW64\user32.dll
18:02:27.0183 0x12b4 C:\Windows\SysWOW64\user32.dll - ok
18:02:27.0198 0x12b4 [ CC23295DA8F7B5C53F93804D2F5D30EB, B290D96C40FBA934DE6CFF82D9BBA6780922CC5012C61599BD5006DAEDC82DDB ] C:\Windows\SysWOW64\lpk.dll
18:02:27.0198 0x12b4 C:\Windows\SysWOW64\lpk.dll - ok
18:02:27.0198 0x12b4 [ A5F833506BF6A1B5D693E1499DEE2444, 045874B7D37F49216E37D551076FF440E29DB5196564E714207DF753DF7FDDEE ] C:\Windows\SysWOW64\usp10.dll
18:02:27.0198 0x12b4 C:\Windows\SysWOW64\usp10.dll - ok
18:02:27.0198 0x12b4 [ 928CF7268086631F54C3D8E17238C6DD, F058FAFB04E7EBD5CADE9B48195B7AA7C3508F332A89F5E6E5F3F071E8CADD4A ] C:\Windows\SysWOW64\ole32.dll
18:02:27.0198 0x12b4 C:\Windows\SysWOW64\ole32.dll - ok
18:02:27.0198 0x12b4 [ 6C765E82B57F2E66CE9C54AC238471D9, 97F410023F5C08B4BC5DBF89A642200E76F4025ADD9707C24FD89D673675BB43 ] C:\Windows\SysWOW64\oleaut32.dll
18:02:27.0198 0x12b4 C:\Windows\SysWOW64\oleaut32.dll - ok
18:02:27.0214 0x12b4 [ 2EEFF4502F5E13B1BED4A04CCAD64C08, 209FF1B6D46D1AC99518FCF54F2F726143B2DBF2C5FDA90212FBEF7526F7CBF5 ] C:\Windows\SysWOW64\devobj.dll
18:02:27.0214 0x12b4 C:\Windows\SysWOW64\devobj.dll - ok
18:02:27.0214 0x12b4 [ 9E4B0E7472B4CEBA9E17F440B8CB0AB8, B1A9B2EF000917214C0198958CBD239D1D91B1720EC40DF041262A34D302AD74 ] C:\Windows\SysWOW64\winspool.drv
18:02:27.0214 0x12b4 C:\Windows\SysWOW64\winspool.drv - ok
18:02:27.0214 0x12b4 [ 386BF6FD9FC562B1A5558C49E1C3A6FB, 6ED5A61C911845027D0A67B2473603D87E79DB88F0C0C699CBB2D1639C1DFDA5 ] C:\Windows\SysWOW64\shell32.dll
18:02:27.0214 0x12b4 C:\Windows\SysWOW64\shell32.dll - ok
18:02:27.0214 0x12b4 [ E3D5E244807AD655787FCD25477CC1BC, 8A378249C936914DBFEDAE310D6ACB93D488C8F490EC4AAB435861C413A5BB0F ] C:\Windows\SysWOW64\bthprops.cpl
18:02:27.0214 0x12b4 C:\Windows\SysWOW64\bthprops.cpl - ok
18:02:27.0214 0x12b4 [ 8CC3C111D653E96F3EA1590891491D71, 1D326D7D116D76876EE2B14A5BFB7B4328E21DB9B5AAAB9CB67F8EFB93924230 ] C:\Windows\SysWOW64\shlwapi.dll
18:02:27.0214 0x12b4 C:\Windows\SysWOW64\shlwapi.dll - ok
18:02:27.0230 0x12b4 [ 7FF15A4F092CD4A96055BA69F903E3E9, 1B594E6D057C632ABB3A8CF838157369024BD6B9F515CA8E774B22FE71A11627 ] C:\Windows\SysWOW64\ws2_32.dll
18:02:27.0230 0x12b4 C:\Windows\SysWOW64\ws2_32.dll - ok
18:02:27.0230 0x12b4 [ A6F09E5669D9A19035F6D942CAA15882, 68C8AF0CC1923E3A7245392F2480EE665D265DF300A609D2540BF7C6D9C1A1BE ] C:\Windows\SysWOW64\imm32.dll
18:02:27.0230 0x12b4 C:\Windows\SysWOW64\imm32.dll - ok
18:02:27.0230 0x12b4 [ C9618BC9B2B0FD7C1138D8774795A79B, 0AC170669C2626519FA7A745C56BFBA6B83B8537488F5B9EB7BA72448E5E7A43 ] C:\Windows\SysWOW64\msctf.dll
18:02:27.0230 0x12b4 C:\Windows\SysWOW64\msctf.dll - ok
18:02:27.0230 0x12b4 [ 6377051C63D5552A311935C67E9FDFDC, 3FB82988AAB66813567E8DB951D4EE87F156201070F005FDBF52EF998A323E65 ] C:\Windows\SysWOW64\nsi.dll
18:02:27.0230 0x12b4 C:\Windows\SysWOW64\nsi.dll - ok
18:02:27.0230 0x12b4 [ 352B3DC62A0D259A82A052238425C872, 393B24E0D6007C74AEE2FB2EE2C18623D37DF64E279B6767952DCFEE0EACBB10 ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
18:02:27.0230 0x12b4 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll - ok
18:02:27.0230 0x12b4 [ A8EDB86FC2A4D6D1285E4C70384AC35A, 61B8955CE0A2AA9D0719920B30216717B349B6FBE11C697C31CFA84F859CC1AE ] C:\Windows\System32\dllhost.exe
18:02:27.0230 0x12b4 C:\Windows\System32\dllhost.exe - ok
18:02:27.0245 0x12b4 [ 9028D1621C43DF8DFBD1C76860412A11, A1D48D9B33180BDE50D2FA9BB07E9520B7B7788C39B3AABB4A06AE4B1AACA755 ] C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll
18:02:27.0245 0x12b4 C:\Windows\winsxs\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_a4d3b9377117c3df\comctl32.dll - ok
18:02:27.0245 0x12b4 [ A0A2C1D812C231C9BFE119FDC68E341B, F94446594EE17505956A715DFB28B51D09F00A7A65E56950661B889A57DE8FA8 ] C:\Windows\System32\IDStore.dll
18:02:27.0245 0x12b4 C:\Windows\System32\IDStore.dll - ok
18:02:27.0245 0x12b4 [ 639774C9ACD063F028F6084ABF5593AD, 9DFD80610CBBC9188F6C6BC85C87016B0AE42254FC289C2B578E85282BDD9C23 ] C:\Windows\System32\taskhost.exe
18:02:27.0245 0x12b4 C:\Windows\System32\taskhost.exe - ok
18:02:27.0245 0x12b4 [ C7AAC31A910E4BBFDF94D3786ED13E71, 8EEBA94A18032C6088D8ACB5075FADC2E1080F0382F35BC03C44EA1F507F8D76 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe
18:02:27.0245 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\Bootstrap.exe - ok
18:02:27.0245 0x12b4 [ AFB5B500AD69E24ED1BC15D1161641EF, C8EE01224FA8020DAE6F9BCE2FD88EDC2441164393ED6E68DAA1EA0B8190276F ] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL
18:02:27.0245 0x12b4 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL - ok
18:02:27.0261 0x12b4 [ 45CFBFA8EDC3DF4E2B7FB0D0260FE051, 8EFD0A6DE6F4E335D342782190008FB5AC84A6ADE49170B310DEC9AC48E623E8 ] C:\Windows\System32\localspl.dll
18:02:27.0261 0x12b4 C:\Windows\System32\localspl.dll - ok
18:02:27.0261 0x12b4 [ 88351B29B622B30962D2FEB6CA8D860B, A16CAD7D94C1C9807083BB36E9B4C3C14E6482C4CA2BDFACBCC86E737DDCE42E ] C:\Windows\System32\rasadhlp.dll
18:02:27.0261 0x12b4 C:\Windows\System32\rasadhlp.dll - ok
18:02:27.0261 0x12b4 [ 8FE3C29793755400E7876D17FA5811CF, FFE377C309FDBF404C04159262319273F676B59F4B5E7DF843455DDA8D6038F9 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\configurationManager.dll
18:02:27.0261 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\configurationManager.dll - ok
18:02:27.0261 0x12b4 [ 32EE27E6AC39863A2C99D29E73ED63A9, 0DA8CE6E10045CFF13190AA1398FCF46AFCBF027FEFF6000EB2A4CBBB4EB3FDC ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtCore4.dll
18:02:27.0261 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtCore4.dll - ok
18:02:27.0261 0x12b4 [ C733D233B623B7FFCE5031E4B756EE26, 33CC8B140B0E4A9B702E3468BE2646AEE4273F20C6EA5BAC6C3D8FC8EDEF0881 ] C:\Windows\SysWOW64\profapi.dll
18:02:27.0261 0x12b4 C:\Windows\SysWOW64\profapi.dll - ok
18:02:27.0276 0x12b4 [ D15618A0FF8DBC2C5BF3726BACC75A0B, ADD81EA1D208907D67802F0E96EC0327BA89021F870BA22B9C7E3A19013A6AE7 ] C:\Windows\SysWOW64\userenv.dll
18:02:27.0276 0x12b4 C:\Windows\SysWOW64\userenv.dll - ok
18:02:27.0276 0x12b4 [ 6A6B2EE4565A178035BE2A4FF6F2C968, E2E231F1C2E2CE19583483ACC53318651FA7CA2DE46BCB89B4CBF97CA0525122 ] C:\Windows\SysWOW64\wtsapi32.dll
18:02:27.0276 0x12b4 C:\Windows\SysWOW64\wtsapi32.dll - ok
18:02:27.0276 0x12b4 [ 3285481F5C12305CA104A6C493CA5A0B, ADB39B15D26A954B0F347C7BAFCC76DE5E3CF3CF05736E8987E0832AA7F8563C ] C:\Windows\System32\spoolss.dll
18:02:27.0276 0x12b4 C:\Windows\System32\spoolss.dll - ok
18:02:27.0276 0x12b4 [ 0015ACFBBDD164A8A730009908868CA7, E1FF243AD2CF959FAB81EFE701592414991C03416FF296ADC93906E76B707C4D ] C:\Windows\System32\winspool.drv
18:02:27.0276 0x12b4 C:\Windows\System32\winspool.drv - ok
18:02:27.0276 0x12b4 [ 19E41CCCEE697CC9465396B370929792, A9FC4C33C71C3677FE57779380E55FDE2AC0B0C70A9DBCBA0D0B6FA92C709A7F ] C:\Windows\System32\FXSMON.dll
18:02:27.0276 0x12b4 C:\Windows\System32\FXSMON.dll - ok
18:02:27.0292 0x12b4 [ 62A0ED06E9FF55EEF51B27EC4839EE0B, C206495B66EC9CBCDE0D7D9A2F420ADEF750B81BBD75A578F0A15F66864A0C98 ] C:\Windows\System32\hpz3lw71.dll
18:02:27.0292 0x12b4 C:\Windows\System32\hpz3lw71.dll - ok
18:02:27.0292 0x12b4 [ 6CEF7856A3EFAC59470F6208F0F585CE, 0F7A80DB821FDE6580E9481B6DA44844F717DDB4983B0E3D562BE43726153951 ] C:\Windows\System32\mpr.dll
18:02:27.0292 0x12b4 C:\Windows\System32\mpr.dll - ok
18:02:27.0292 0x12b4 [ C5AC93CF3BA30D367FB49148A2B673B9, 07B556039BBA841BC9F28979C3AD5D238B55391F921C9C805F3AFC9EFB437766 ] C:\Windows\System32\PrintIsolationProxy.dll
18:02:27.0292 0x12b4 C:\Windows\System32\PrintIsolationProxy.dll - ok
18:02:27.0308 0x12b4 [ 32A3C8600AF124CBAAD845F13CFAE3CB, F36FE9E57D5C509FEECE890F9F8717F9CC6F762E32AE0B7DB7E0153370CE0B9D ] C:\Windows\System32\tcpmon.dll
18:02:27.0308 0x12b4 C:\Windows\System32\tcpmon.dll - ok
18:02:27.0308 0x12b4 [ 93518C6EDE0B61BCBD02BDB02BD05FEE, 3637F5E5F15093AFB501EE910368CF900B422AC22669391FFA4198BBAE6F8FCB ] C:\Windows\System32\snmpapi.dll
18:02:27.0308 0x12b4 C:\Windows\System32\snmpapi.dll - ok
18:02:27.0308 0x12b4 [ DF72A9936D0C3F517083119648814B09, 6BA4DCAC2F55A393A266ED0B2AF92B38141654D1666E3E143D85BBAF21663E1E ] C:\Windows\System32\usbmon.dll
18:02:27.0308 0x12b4 C:\Windows\System32\usbmon.dll - ok
18:02:27.0308 0x12b4 [ BAFE84E637BF7388C96EF48D4D3FDD53, 11C194D9ADCE90027272C627D7FBF3BA5025FF0F7B26A8333F764E11E1382CF9 ] C:\Windows\System32\userinit.exe
18:02:27.0308 0x12b4 C:\Windows\System32\userinit.exe - ok
18:02:27.0308 0x12b4 [ A1D7E3ADCDB07DDB6F423862DCB1A52B, 6191C33D2AE090F6F055D6AE211096CE8F003EC5518A5333EE1E376052176BAB ] C:\Windows\System32\WSDMon.dll
18:02:27.0308 0x12b4 C:\Windows\System32\WSDMon.dll - ok
18:02:27.0308 0x12b4 [ FFF9D00CF16397C64317F213484F94BD, 94D0584E14BDB27F61F59A7BCEA529A1594261BE0CE74502C13E8865843BA414 ] C:\Windows\System32\wsnmp32.dll
18:02:27.0308 0x12b4 C:\Windows\System32\wsnmp32.dll - ok
18:02:27.0323 0x12b4 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] C:\Windows\System32\bthserv.dll
18:02:27.0323 0x12b4 C:\Windows\System32\bthserv.dll - ok
18:02:27.0323 0x12b4 [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] C:\Windows\System32\cryptsvc.dll
18:02:27.0323 0x12b4 C:\Windows\System32\cryptsvc.dll - ok
18:02:27.0323 0x12b4 [ F162D5F5E845B9DC352DD1BAD8CEF1BC, 8A7B7528DB30AB123B060D8E41954D95913C07BB40CDAE32E97F9EDB0BAF79C7 ] C:\Windows\System32\dwm.exe
18:02:27.0323 0x12b4 C:\Windows\System32\dwm.exe - ok
18:02:27.0323 0x12b4 [ F1B205F932F62F94506A5F332C895DAF, F02F01F20F655DD919C71AE814E4C3DD43330AAD1425FC5B1497F1613917CCDE ] C:\Windows\System32\WSDApi.dll
18:02:27.0323 0x12b4 C:\Windows\System32\WSDApi.dll - ok
18:02:27.0323 0x12b4 [ FF5688D309347F2720911D8796912834, 3B0D73C50D40A6F42629B7750F99F656BF5C1C50237D5F98B6C0F2CE5E2DA359 ] C:\Windows\SysWOW64\clbcatq.dll
18:02:27.0323 0x12b4 C:\Windows\SysWOW64\clbcatq.dll - ok
18:02:27.0339 0x12b4 [ 64D25284A4E9D11CA0722AF3F30FD970, C7C40CA8AC444F7B0F88086396C17316348480EBA09109222897B5A42AD655DF ] C:\Program Files\Intel\WiFi\bin\EvtEng.exe
18:02:27.0339 0x12b4 C:\Program Files\Intel\WiFi\bin\EvtEng.exe - ok
18:02:27.0339 0x12b4 [ A6B726DCA228F7878E38368A1BDC68BE, 30E8300B09B876E3D4B2A9215C9CC070EADF915E1268F425B6F8E0596A0D3539 ] C:\Windows\System32\cryptnet.dll
18:02:27.0339 0x12b4 C:\Windows\System32\cryptnet.dll - ok
18:02:27.0339 0x12b4 [ FCFCD1101C5DA23B4B95F93D02B2C169, 040A086875B6C5475490A2F8B0CF4FF20DDB4FEDFE5FCABBA49692AA05F40527 ] C:\Windows\System32\dwmredir.dll
18:02:27.0339 0x12b4 C:\Windows\System32\dwmredir.dll - ok
18:02:27.0339 0x12b4 [ CDAD3376DFF3D9AC7FDCBE2B94B0D3C8, C0B22B8C402EEEAF68F5380BC265C15418934D2F702F0A43674EC93853E26040 ] C:\Windows\System32\shfolder.dll
18:02:27.0339 0x12b4 C:\Windows\System32\shfolder.dll - ok
18:02:27.0339 0x12b4 [ 0E2F58F6E698EDCB9E58FAD0CBCD0567, 426FB40A065FEF61980C803EF72D0D326C623340C3AE99CA8AFFDEFB81E8D49D ] C:\Windows\System32\vssapi.dll
18:02:27.0339 0x12b4 C:\Windows\System32\vssapi.dll - ok
18:02:27.0339 0x12b4 [ C55516D98DD5D8F0153C2A9B4227DA86, DBC62B776CF06D0873A4C7CFCDF5B6F5C6E6C41917C326C090BCE58DC66EE09C ] C:\Windows\System32\webservices.dll
18:02:27.0339 0x12b4 C:\Windows\System32\webservices.dll - ok
18:02:27.0354 0x12b4 [ 7321F18D1F820612ED0E9F2D4B578A7E, 612BD7DE1DFBD100BD6ACB37A38565D88C39842D990D296B9B8E1FB75C3A94E7 ] C:\Windows\SysWOW64\cryptsp.dll
18:02:27.0354 0x12b4 C:\Windows\SysWOW64\cryptsp.dll - ok
18:02:27.0354 0x12b4 [ 4C39358EBDD2FFCD9132A30E1EC31E16, 06918CF99AD26CD6CF106881C0D5BDB212DC0BAC4549805C9F5906E3D03D152C ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll
18:02:27.0354 0x12b4 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcp90.dll - ok
18:02:27.0354 0x12b4 [ 3A8EB5DA39026C810BEE7CD397DA68B7, AFD0A6837B5D63A948A1F5E42837B3D2DBFDEE2FDDD9FE3640DADFBEDD07B4B6 ] C:\Program Files\Intel\WiFi\bin\MurocApi.dll
18:02:27.0354 0x12b4 C:\Program Files\Intel\WiFi\bin\MurocApi.dll - ok
18:02:27.0354 0x12b4 [ 4BA77A5EF71C14C764B0ED4701683E3E, 066A064CDBE09BF8BE1DF5B259F30FF6C124A1C3D637800D3E19E8E25EDB950E ] C:\Windows\System32\dwmcore.dll
18:02:27.0354 0x12b4 C:\Windows\System32\dwmcore.dll - ok
18:02:27.0354 0x12b4 [ CDBE9690CF2B8409FACAD94FAC9479C9, 8E7FE1A1F3550C479FFD86A77BC9D10686D47F8727025BB891D8F4F0259354C8 ] C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll
18:02:27.0354 0x12b4 C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcr90.dll - ok
18:02:27.0370 0x12b4 [ 2A5D98F0F5232E466F2A2EF5E549DF08, 6DCD6522CF35E64E402BB0AA5CD6933217243750DE221818A90DF9A042696923 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\uuid.dll
18:02:27.0370 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\uuid.dll - ok
18:02:27.0370 0x12b4 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] C:\Windows\System32\dps.dll
18:02:27.0370 0x12b4 C:\Windows\System32\dps.dll - ok
18:02:27.0370 0x12b4 [ B5055B51BAA0FD0A736A88653DA3C1C0, A3BD057C7E8C926930BA7E9D11427D26FB37267026A0B72AB4021101EE424F74 ] C:\Windows\System32\fundisc.dll
18:02:27.0370 0x12b4 C:\Windows\System32\fundisc.dll - ok
18:02:27.0370 0x12b4 [ ED8EC63F7522DF4852147C84EC62C36A, 75633011CD28DCBD4834211A9D415F17DE15BFCD80FB9FF6CE25CBBD4E9899AF ] C:\Windows\SysWOW64\rsaenh.dll
18:02:27.0370 0x12b4 C:\Windows\SysWOW64\rsaenh.dll - ok
18:02:27.0370 0x12b4 [ F6252071299496777D1E3EC407A90929, 8B20BB01EEBEA6BF406E761547AEEAC5D993B81D3AD2A01B1E0B73D99EB76544 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\log4cplus.dll
18:02:27.0370 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\log4cplus.dll - ok
18:02:27.0386 0x12b4 [ 6C518D405318E21AB6F1987EA056638F, 4814E6237A7781AA5627DFD52B2F30D0ADA88C75509A63B0123EAA78A5FED14C ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\logger.dll
18:02:27.0386 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\logger.dll - ok
18:02:27.0386 0x12b4 [ 4581716B4BF76ACFD8E167EB0B26D82A, 39D822527114EEED68044CCE4D542767F53978D9E0A7F72638F1CA9A016DE13B ] C:\Windows\System32\fdPnp.dll
18:02:27.0386 0x12b4 C:\Windows\System32\fdPnp.dll - ok
18:02:27.0386 0x12b4 [ E76FD59F422F714C3DCA4DF8FDD08298, 00571A64FCE3B01C7F10719D6F7585E88EA884057FF4B5819277DD0D7C6A419C ] C:\Windows\System32\mfc100.dll
18:02:27.0386 0x12b4 C:\Windows\System32\mfc100.dll - ok
18:02:27.0386 0x12b4 [ BAAFAF9CEAEC0B73C2A3550A01F6CECB, 018CB95A43CEA2063EA24691C71D51EF60D522C21502ABA8AD93876363D4B857 ] C:\Windows\System32\taskschd.dll
18:02:27.0386 0x12b4 C:\Windows\System32\taskschd.dll - ok
18:02:27.0386 0x12b4 [ 287923557447D7E4BDD7E65B1F0F5428, 14D85A0F036F28D77AA9723C3D7E8C4DA9BDFF8A1AD9BEA6FE5756DBF5D00F08 ] C:\Windows\System32\vsstrace.dll
18:02:27.0386 0x12b4 C:\Windows\System32\vsstrace.dll - ok
18:02:27.0401 0x12b4 [ 5997D769CDB108390DCFAEBF442BF816, 0E25CA984C0EEB629184423FAA9BC6D4356DF9A93F281E06DC83B4AC638AEC4A ] C:\Windows\SysWOW64\RpcRtRemote.dll
18:02:27.0401 0x12b4 C:\Windows\SysWOW64\RpcRtRemote.dll - ok
18:02:27.0401 0x12b4 [ 6A35DA5E8324247CA2915D0F40F69A99, 0D92EE3645C3B4D27E98AD4A8699EC8856890FBA37E5BDF4E6319FDCEF4D4B8A ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\UpdateServiceProxy.dll
18:02:27.0401 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\UpdateServiceProxy.dll - ok
18:02:27.0401 0x12b4 [ 94EEAC26F57811BD1AEFC164412F7FCE, 7390BCD7709D48DE75D7D6E06AA7356D1C58EE63F3CC2E07ABCD2E2FF6CC81CF ] C:\Windows\System32\PlaySndSrv.dll
18:02:27.0401 0x12b4 C:\Windows\System32\PlaySndSrv.dll - ok
18:02:27.0401 0x12b4 [ 1D626FE2E13C1CE49CA0136CFF214E93, 4F02DD92045CF244979FFD074B2BDE6925A909227A474C60DCABE4384D916218 ] C:\Windows\System32\spool\prtprocs\x64\winprint.dll
18:02:27.0401 0x12b4 C:\Windows\System32\spool\prtprocs\x64\winprint.dll - ok
18:02:27.0401 0x12b4 [ 6FB9BE56891EA4E85B4C9BDD4E9AFA69, CC29187582D78060AB7D910BF0D1E68F6B6E6DF7A71755205A2D466C32CD098D ] C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll
18:02:27.0401 0x12b4 C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll - ok
18:02:27.0417 0x12b4 [ 67CF11E00D026A5C0C88EA5F84D501E5, 5081A87466116232CF07F58229967B6C0CD3738B64A56EFC6BB3EBDA62E378F6 ] C:\Windows\System32\win32spl.dll
18:02:27.0417 0x12b4 C:\Windows\System32\win32spl.dll - ok
18:02:27.0417 0x12b4 [ CC09E0C9A2D89C6E71D093DC8BD121B7, 5F92457E27D817541EBA92FED984D2E6C1E35AD4E4E4CAE0F0778B795C260FAA ] C:\Windows\SysWOW64\crypt32.dll
18:02:27.0417 0x12b4 C:\Windows\SysWOW64\crypt32.dll - ok
18:02:27.0417 0x12b4 [ 68EAAEDF0365168B804E8728368FA946, 1FA25087E8B247B099B729F780DBF24F77FD34F58186A1C94329261CF3D18B8E ] C:\Windows\SysWOW64\wintrust.dll
18:02:27.0417 0x12b4 C:\Windows\SysWOW64\wintrust.dll - ok
18:02:27.0417 0x12b4 [ 9AE80F6A66B30E3ED8CDF858CF28B11B, A93E470DC54E3C74C10979D49CABB9A34893F9E847F88491F935DB44EEC3541A ] C:\Windows\System32\d3d10_1.dll
18:02:27.0417 0x12b4 C:\Windows\System32\d3d10_1.dll - ok
18:02:27.0417 0x12b4 [ A543AC1F7138376D778D630A35FCBC4C, 2D824C66A97FC8C39DAFA397CC47495B712D175EEF393486946DA8936BDD466A ] C:\Windows\SysWOW64\psapi.dll
18:02:27.0417 0x12b4 C:\Windows\SysWOW64\psapi.dll - ok
18:02:27.0417 0x12b4 [ 20D7EDD027DE6DB15517EAE69FB5F9DC, 2BC20D7C3D62D0CD68F5DB63CC24DEA9DFACDCB481A12285CC4446EE3F6BB802 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\serializer.dll
18:02:27.0417 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\serializer.dll - ok
18:02:27.0432 0x12b4 [ D14C0AD7D49D45FD61535ED2D6E854E6, 8F2316E7F9CA15D8EB06F6AACF113D259A8F52D498947938B8C24F17C76B0195 ] C:\Program Files (x86)\Samsung\Fast Flash Sleep Resume\FFSRConfigurer.exe
18:02:27.0432 0x12b4 C:\Program Files (x86)\Samsung\Fast Flash Sleep Resume\FFSRConfigurer.exe - ok
18:02:27.0432 0x12b4 [ 63F72417CA38D8FC8F53709649B589E3, 39AE8AFFCFB8A9E345FC4C6F11926F25552C464380F88CDECD299FD27AF7866B ] C:\Windows\System32\d3d10_1core.dll
18:02:27.0432 0x12b4 C:\Windows\System32\d3d10_1core.dll - ok
18:02:27.0432 0x12b4 [ 507D5567A0A4EE86C4B0CE2CE1777025, 408770B00CED498BF7782054F17A5CB361CF65429B0C816403D70E416E0EEF23 ] C:\Windows\System32\inetpp.dll
18:02:27.0432 0x12b4 C:\Windows\System32\inetpp.dll - ok
18:02:27.0432 0x12b4 [ 938F39B50BAFE13D6F58C7790682C010, 902000EE51EFEABAF6A4B30F880AA37083D2232C6FC622CA513C4A823390FEDA ] C:\Windows\SysWOW64\msasn1.dll
18:02:27.0432 0x12b4 C:\Windows\SysWOW64\msasn1.dll - ok
18:02:27.0432 0x12b4 [ 1BF0CB861A48FEB1638228760750F3CB, 37C781A8C546EAD8B4D28BD7D730B9AC78EB799599AD69DAD9054B6F9F1DD6BD ] C:\Windows\System32\cscapi.dll
18:02:27.0432 0x12b4 C:\Windows\System32\cscapi.dll - ok
18:02:27.0448 0x12b4 [ 4C92EB7535CAA1681A77D928FBF9771F, 7D02B2357CA02393CA711C3C499AAD86B792EEFFDC67F2CE52F7F7BB8A28DE79 ] C:\Windows\System32\d3d11.dll
18:02:27.0448 0x12b4 C:\Windows\System32\d3d11.dll - ok
18:02:27.0448 0x12b4 [ 8DFB5752FCE145A6B295093C0A8BE131, F38029C8B36EFD46B1F6CCA0089FF4EFB0AB246497E38EDFF6A67FAC804D4A97 ] C:\Windows\System32\dxgi.dll
18:02:27.0448 0x12b4 C:\Windows\System32\dxgi.dll - ok
18:02:27.0448 0x12b4 [ 275B00B7DC661CCF9146B63659041908, ABEDA2A4BE42AC7FD8F645FC303DBD51F0DB007C132FCB1206E30D65FCEBB618 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\payload.dll
18:02:27.0448 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\payload.dll - ok
18:02:27.0448 0x12b4 [ ED6EA226D8C2C1176D8D9A98A135D5E4, B8E477DDBFDC276CC29A549165859ADEF2A585CDEAE3C26C6185F5553EA32BE6 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtXml4.dll
18:02:27.0448 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtXml4.dll - ok
18:02:27.0448 0x12b4 [ 5AC3CB53406CB9AABB25D46B3385528F, D5213E1C8CBD9E82922CE7F0E49611119EC6C2C1A0DC3F5912199AF5F39830C0 ] C:\Windows\System32\spool\drivers\x64\3\unidrvui.dll
18:02:27.0448 0x12b4 C:\Windows\System32\spool\drivers\x64\3\unidrvui.dll - ok
18:02:27.0464 0x12b4 [ EF2AE43BCD46ABB13FC3E5B2B1935C73, 81FC06F306F620845D7DD8D06E706309E70BC89B589C81F3478302A3F5F73431 ] C:\Windows\System32\winmm.dll
18:02:27.0464 0x12b4 C:\Windows\System32\winmm.dll - ok
18:02:27.0464 0x12b4 [ C4BAEC2E8B56B6337E722F8161BAAAAF, 640EDF8DCB892E02B8BF59E1097A5E5D4CFCAB423220475185E1D64C7E6F9865 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DispatcherProxy.dll
18:02:27.0464 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DispatcherProxy.dll - ok
18:02:27.0464 0x12b4 [ 332FEAB1435662FC6C672E25BEB37BE3, 6BED1A3A956A859EF4420FEB2466C040800EAF01EF53214EF9DAB53AEFF1CFF0 ] C:\Windows\explorer.exe
18:02:27.0464 0x12b4 C:\Windows\explorer.exe - ok
18:02:27.0464 0x12b4 [ 9BB99503D6A4DD62569EDE9E5E2672A5, 6F4EA5BC50B1F929735246485263078BEF1B3BEB33F78CB1F483F13AA226C27E ] C:\Windows\System32\HotStartUserAgent.dll
18:02:27.0464 0x12b4 C:\Windows\System32\HotStartUserAgent.dll - ok
18:02:27.0464 0x12b4 [ EFEC3847B47CC9357D5C33BBAB59B7EB, C093AF387AC9B7C5FA92D90DB1C3EC228A2C64CE4229539A25C8A47AD7E6D133 ] C:\Windows\System32\mgmtapi.dll
18:02:27.0464 0x12b4 C:\Windows\System32\mgmtapi.dll - ok
18:02:27.0479 0x12b4 [ 1F1CA9E99DD5BF918BE0BF30B5A42FDA, 8A6ACEFAB95E5275CBFBE6CCB5A6C3A6A471260B279B9063E86B9C7765E18656 ] C:\Windows\System32\MsCtfMonitor.dll
18:02:27.0479 0x12b4 C:\Windows\System32\MsCtfMonitor.dll - ok
18:02:27.0479 0x12b4 [ F09A9A1AD21FE618C4C8B0A0D830C886, 29831DDAB2AB105358FBC067CDF96428220B6743CD6019F6FE74BAC7AF325E7E ] C:\Windows\System32\msutb.dll
18:02:27.0479 0x12b4 C:\Windows\System32\msutb.dll - ok
18:02:27.0479 0x12b4 [ B88DA7FD10BDBB3754D98AFD39677C29, 31E3DECA909A48DE0F809F8A0E54EA720CB6920A1427F9098A36DDEA250DA2C3 ] C:\Windows\System32\msvcr100.dll
18:02:27.0479 0x12b4 C:\Windows\System32\msvcr100.dll - ok
18:02:27.0479 0x12b4 [ E81F5A2F6D52215C0E84F2849503EBA8, D372F90035F38A91703E8C017A26D6BB91FDF9B65B7B6DA24BB9D25485A91942 ] C:\Windows\System32\tcpmib.dll
18:02:27.0479 0x12b4 C:\Windows\System32\tcpmib.dll - ok
18:02:27.0495 0x12b4 [ F9A5AEDEB954D37BE3C13F2CAC02727B, F3C4FCE22EA7C49D7F2A494A7DAABD36BF541BCC5BBC737E3DFED5F35E75F05E ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libeay32.dll
18:02:27.0495 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libeay32.dll - ok
18:02:27.0495 0x12b4 [ 4F096E6DF6D6AA79E0F1F5A8C09345F8, 7E11A1DD663FD3F8A52ED2685014694D958E79855CC8EA0B4ACB9013E346B74B ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libgsoap.dll
18:02:27.0495 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\libgsoap.dll - ok
18:02:27.0495 0x12b4 [ E424B3EF666B184CEE0B6871AAA8C9F6, D182D9B3A813C75F88CA16A9C236AB6167DF5861D155B5DC016B90918C4BD579 ] C:\Windows\System32\msimg32.dll
18:02:27.0495 0x12b4 C:\Windows\System32\msimg32.dll - ok
18:02:27.0495 0x12b4 [ F5CEF064C7E6D95DA86B9D064A56A969, F118CD4364690F37A07AE458E043E8CFBA98F332DC9E7228C83409CF26F6EF6D ] C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll
18:02:27.0495 0x12b4 C:\Windows\System32\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
18:02:27.0510 0x12b4 [ 37D44BFEA9B50D75764660ADC35C83AC, D2570A7B71749B01C45E8148D16AA28EA811FDC75C0724E4934FBB6295387503 ] C:\Windows\System32\msvcp100.dll
18:02:27.0510 0x12b4 C:\Windows\System32\msvcp100.dll - ok
18:02:27.0510 0x12b4 [ 22F020C76E339EB2B2187BA73A7E4173, 4605BF0C708441D146D2F902BB340858E314FCA70A4C88EB31CF3544C865C123 ] C:\Windows\System32\PrintIsolationHost.exe
18:02:27.0510 0x12b4 C:\Windows\System32\PrintIsolationHost.exe - ok
18:02:27.0510 0x12b4 [ B3FB360040585245DF0A4E63A8987BDF, 24AC5A6E4BA2667A8E7E3F86E8775495EF5B156764084C5E4856684178E4577D ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ssleay32.dll
18:02:27.0510 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ssleay32.dll - ok
18:02:27.0526 0x12b4 [ 522B0466ED967A0762E9AF5B37D8F40A, B14C62D059BC7CF430E1B0F6E18E31EFD1959EFB3025A2B0EBB11751F38DD6D4 ] C:\Windows\System32\esent.dll
18:02:27.0526 0x12b4 C:\Windows\System32\esent.dll - ok
18:02:27.0526 0x12b4 [ DF13A51A5C591887D2EC6AE64CEED0FA, DFD503AEBCAA056B2B0E669ACA52F6D26F4E6892F2DCFCCD902752C23A621653 ] C:\Windows\SysWOW64\wsock32.dll
18:02:27.0526 0x12b4 C:\Windows\SysWOW64\wsock32.dll - ok
18:02:27.0526 0x12b4 [ DDB8769E14BDF097879B6345394C5889, ED2418AB152B7204234F7BF50BAD4C90187A42C8D7DA3CAEE72DDDBF5883C10B ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\localMessage.dll
18:02:27.0526 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\localMessage.dll - ok
18:02:27.0526 0x12b4 [ 83564FD69621419EABBE1AE03428976D, 686B3B4A67D353CAF544947D7788A36C7B0CD6817A5110A3FEAC1244639D62FC ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\zlib1.dll
18:02:27.0526 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\zlib1.dll - ok
18:02:27.0526 0x12b4 [ 5203BA7F91EE2E113BB5C6AE1816E704, F2D846CD412C591758C783CC072D64E7C00082DA18BDD5E34928653DD430712C ] C:\Program Files\Common Files\Intel\WirelessCommon\libeay32.dll
18:02:27.0526 0x12b4 C:\Program Files\Common Files\Intel\WirelessCommon\libeay32.dll - ok
18:02:27.0542 0x12b4 [ 9EB9DB528A0546532ACD3D6D65B2648E, 03C50B3E7574431B2CEE5B9865A566DC66D8C06C27F0378CFD4506E80F39A46E ] C:\Windows\System32\igd10umd64.dll
18:02:27.0542 0x12b4 C:\Windows\System32\igd10umd64.dll - ok
18:02:27.0542 0x12b4 [ D56DE559D44C42074B97B2C5624E9FE9, 12AAC57ACB6C1FDF6F363688858D6F9313913FB56EEC982F4C0FF3B8C96CE6AB ] C:\Windows\System32\mfc100enu.dll
18:02:27.0542 0x12b4 C:\Windows\System32\mfc100enu.dll - ok
18:02:27.0542 0x12b4 [ D1DE1EAFDE97BE41CF6585027FF3E732, 76F17D4DF440D6734DC8157092D94EB18C2A73A0A49BEEA289E7B3EDE30E86A2 ] C:\Windows\SysWOW64\comdlg32.dll
18:02:27.0542 0x12b4 C:\Windows\SysWOW64\comdlg32.dll - ok
18:02:27.0542 0x12b4 [ 18AB2E5A40064ED5F7791AC5946A90F3, B7536CE56702C23B1CEC3E1B6C78866E0A76808B85A92AF3733D9ED9429E004C ] C:\Windows\SysWOW64\msimg32.dll
18:02:27.0542 0x12b4 C:\Windows\SysWOW64\msimg32.dll - ok
18:02:27.0557 0x12b4 [ AD18A46DE75479C9B9AEC783FB7F9883, B64F926BFBE7D6CEDC5792D66F99E65081075ABDF41E7C7F1CAFB8D24E999823 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtNetwork4.dll
18:02:27.0557 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtNetwork4.dll - ok
18:02:27.0557 0x12b4 [ A9539131F6C8EF5068FA16D581285EBB, 4B69692B7BCED822449A244C19EF03D85C0F4C51029D8EAB86EC96D9A5E90EE3 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ServiceManagerStarter.dll
18:02:27.0557 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ServiceManagerStarter.dll - ok
18:02:27.0557 0x12b4 [ EED05D42D91835064703E2318552ED25, E9EE1E2253445B207B76F5D3073C612ED979A982522C1515E0FE8FA9641AE568 ] C:\Windows\System32\ExplorerFrame.dll
18:02:27.0557 0x12b4 C:\Windows\System32\ExplorerFrame.dll - ok
18:02:27.0557 0x12b4 [ 936F728E04ACCF3F38801CFFCF1E3F40, 59CA86096F4B928E364B6A3C0408615F068BB8BC02DCFC5EAF4873EC6D6E0797 ] C:\Windows\SysWOW64\oledlg.dll
18:02:27.0557 0x12b4 C:\Windows\SysWOW64\oledlg.dll - ok
18:02:27.0573 0x12b4 [ EE19C85CA685A275BE346EC41F1870F9, F071D88C38C62E9D88DDE29F451B2B581499758A7E60BDA6DED3376280C5A635 ] C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_72d576ad8665e853\GdiPlus.dll
18:02:27.0573 0x12b4 C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.18455_none_72d576ad8665e853\GdiPlus.dll - ok
18:02:27.0573 0x12b4 [ C3473CA7B6114D6FAA9054C9C12B4DAD, F6DC5305E376B9668335DF7E294305EADB9F05542191F53748C26F02BE3C1CD5 ] C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll
18:02:27.0573 0x12b4 C:\Program Files\Common Files\Intel\WirelessCommon\PsRegApi.dll - ok
18:02:27.0573 0x12b4 [ 95D3964DA430CF95CEC424C98A90B013, E6AA1498E48BFE8DA5C54AD02B7CB89D7FBB931E8C703ADA34D511B349C536CF ] C:\Program Files\Common Files\Intel\WirelessCommon\TraceAPI.dll
18:02:27.0573 0x12b4 C:\Program Files\Common Files\Intel\WirelessCommon\TraceAPI.dll - ok
18:02:27.0573 0x12b4 [ ADE2BCD1FDE5C9669FCE1F4541AB46DD, 1C12491CDC2C91BC24F560CFCA82A1459F6FC96D13C92A68CB9D67213F5AA779 ] C:\Windows\System32\spool\drivers\x64\3\UNIDRV.DLL
18:02:27.0573 0x12b4 C:\Windows\System32\spool\drivers\x64\3\UNIDRV.DLL - ok
18:02:27.0588 0x12b4 [ 418E881201583A3039D81F43E39E6C78, C96AAC161E09BE12815A4E931E65F66DB1A456C03253EF1111AE66F44B1515FF ] C:\Windows\SysWOW64\winsta.dll
18:02:27.0588 0x12b4 C:\Windows\SysWOW64\winsta.dll - ok
18:02:27.0588 0x12b4 [ B6D0EB60B3F01A0B5554894784651190, EBF04860AEB7061D9FD79EF8BB49BB996D8B81D6D70741E0786075257B80DB45 ] C:\Windows\System32\spool\drivers\x64\3\HPZUIW71.DLL
18:02:27.0588 0x12b4 C:\Windows\System32\spool\drivers\x64\3\HPZUIW71.DLL - ok
18:02:27.0588 0x12b4 [ 863F793D15B4026B1A5FDECA873D4D84, AF7ABD95BB5467551562F129F03C7AC9D52A021F7E547609F40A80E66932C942 ] C:\Windows\SysWOW64\apphelp.dll
18:02:27.0588 0x12b4 C:\Windows\SysWOW64\apphelp.dll - ok
18:02:27.0588 0x12b4 [ 832CE330DD987227B7DEA8C03F22AEFA, 3DE64D9519D9D865D4C1AA7483D846F0154392B6685BDC451DEC7DA5EA0E2B2E ] C:\Program Files\Intel\iCLS Client\HeciServer.exe
18:02:27.0588 0x12b4 C:\Program Files\Intel\iCLS Client\HeciServer.exe - ok
18:02:27.0588 0x12b4 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] C:\Windows\System32\IKEEXT.DLL
18:02:27.0588 0x12b4 C:\Windows\System32\IKEEXT.DLL - ok
18:02:27.0604 0x12b4 [ D5AEFAD57C08349A4393D987DF7C715D, C36A45BC2448DF30CD17BD2F8A17FC196FAFB685612CACCEB22DC7B58515C201 ] C:\Windows\SysWOW64\winmm.dll
18:02:27.0604 0x12b4 C:\Windows\SysWOW64\winmm.dll - ok
18:02:27.0604 0x12b4 [ 024352FEEC9042260BB4CFB4D79A206B, 60CB39086E10C5B66EBC15E4DF219620B344B4358D2918AB6BB3448A0AC8BE36 ] C:\Windows\System32\EhStorShell.dll
18:02:27.0604 0x12b4 C:\Windows\System32\EhStorShell.dll - ok
18:02:27.0604 0x12b4 [ 037A719DAD50603202C978CD802623E4, BD4C222913D32D7CF5FE0201FEBE7BD67FC39DF47A7A672C2D6C228A6E13B5DE ] C:\Windows\System32\ntshrui.dll
18:02:27.0604 0x12b4 C:\Windows\System32\ntshrui.dll - ok
18:02:27.0604 0x12b4 [ 0AC0A2A1C4457249ADC21F28045F2664, B689D1861D5CC1EC1879DA4D76220334EC12B1CFC58A28CD6DD9560A6C4C7D05 ] C:\Program Files\Intel\WiFi\bin\iWrap.exe
18:02:27.0604 0x12b4 C:\Program Files\Intel\WiFi\bin\iWrap.exe - ok
18:02:27.0620 0x12b4 [ 1D63F4366288B8A7595397E27010FD44, 99EA4DDD88D9C4A4CC9B238F533CB4D2C062D46239173997E8594D8A75811A01 ] C:\Windows\System32\IconCodecService.dll
18:02:27.0620 0x12b4 C:\Windows\System32\IconCodecService.dll - ok
18:02:27.0620 0x12b4 [ 43964FA89CCF97BA6BE34D69455AC65F, 10E3B89A5470E1BB6F73382135DD2352F5073C1EE8485D7476CFB5122D4AAA2F ] C:\Windows\SysWOW64\uxtheme.dll
18:02:27.0620 0x12b4 C:\Windows\SysWOW64\uxtheme.dll - ok
18:02:27.0620 0x12b4 [ 77B5035BC6EDF4D1B6265391AECEE4C0, FE69B715F04446BD42AF1B672E6AC54E954CFE0C847BFD2056CB11CF017B1844 ] C:\Windows\System32\vpnikeapi.dll
18:02:27.0620 0x12b4 C:\Windows\System32\vpnikeapi.dll - ok
18:02:27.0620 0x12b4 [ 9571D8BDB56EBC52280E8020574508E6, 0BF66B718E8261D3964CE0B24785F265DD31D4002CDA6F8AE24DDB4D66BF9DD0 ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
18:02:27.0620 0x12b4 C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe - ok
18:02:27.0620 0x12b4 [ 205FD80EF4B9832F9763B9A187957260, 560410A01B4C2395F7129413C2460F6A0776DF52D08758E3AE68EC41FC79A2D3 ] C:\Windows\SysWOW64\irstrtsv.exe
18:02:27.0620 0x12b4 C:\Windows\SysWOW64\irstrtsv.exe - ok
18:02:27.0635 0x12b4 [ 12C45E3CB6D65F73209549E2D02ECA7A, 9DFD9C58B90257C34D52B7156C1D2566BE32EE7BD4699DDE164A5F190EC4D44A ] C:\Windows\SysWOW64\propsys.dll
18:02:27.0635 0x12b4 C:\Windows\SysWOW64\propsys.dll - ok
18:02:27.0635 0x12b4 [ DBD76BC1D498FE368F2C8CB76C3E00A4, CDFB082B57807CE89509A16D1C8A5BAEEC026EDD7068F5E359AA50557D2525DC ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
18:02:27.0635 0x12b4 C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe - ok
18:02:27.0635 0x12b4 [ A3560FAFC1686D5EE9830B33B5C74B66, 192DF588991B88D2F8B60C3D9A2793E869055955F0798DA01AE66C3F3BF70890 ] C:\Windows\SysWOW64\ieframe.dll
18:02:27.0635 0x12b4 C:\Windows\SysWOW64\ieframe.dll - ok
18:02:27.0635 0x12b4 [ B843A46F4882F6DCE1640B8913F1428E, CC51F1BE279E2E62F7714374C81DF8020A4F2D51CBFABB4C7E41282B67C2AD7A ] C:\Program Files (x86)\Samsung\Fast Flash Sleep Resume\SABI3.dll
18:02:27.0635 0x12b4 C:\Program Files (x86)\Samsung\Fast Flash Sleep Resume\SABI3.dll - ok
18:02:27.0651 0x12b4 [ CF636C92B762B26F0B39B38E92380A09, F7B8B0EA4536CE3BA33EE1BD0783F6AAD8C0EF69714E874D4A30B720A04C7A18 ] C:\Windows\System32\oleacc.dll
18:02:27.0651 0x12b4 C:\Windows\System32\oleacc.dll - ok
18:02:27.0651 0x12b4 [ 263E9A047D17CD50BAA9D3C02910D18D, F526648358AD121001D2776E0ACC333EC4AC168CA07B40A3D3C06C5CE6A361C3 ] C:\Windows\System32\oledlg.dll
18:02:27.0651 0x12b4 C:\Windows\System32\oledlg.dll - ok
18:02:27.0651 0x12b4 [ 39C5F32747B3414D1BB216FDB1DEFC58, 6FAE64CB9748304090113903A5AE9E7154BE16BA2EEA7AB3EF04AB9D79B81380 ] C:\Windows\SysWOW64\dwmapi.dll
18:02:27.0651 0x12b4 C:\Windows\SysWOW64\dwmapi.dll - ok
18:02:27.0651 0x12b4 [ E3C817F7FE44CC870ECDBCBC3EA36132, D769FAFA2B3232DE9FA7153212BA287F68E745257F1C00FAFB511E7A02DE7ADF ] C:\Windows\SysWOW64\msvcp100.dll
18:02:27.0651 0x12b4 C:\Windows\SysWOW64\msvcp100.dll - ok
18:02:27.0666 0x12b4 [ 702254574E7E52052DE39408457B7149, 645CA9E88DA21C63710A04A0F54421018DF415A3D612112C71A255C49325C082 ] C:\Windows\SysWOW64\version.dll
18:02:27.0666 0x12b4 C:\Windows\SysWOW64\version.dll - ok
18:02:27.0666 0x12b4 [ BF38660A9125935658CFA3E53FDC7D65, 60C06E0FA4449314DA3A0A87C1A9D9577DF99226F943637E06F61188E5862EFA ] C:\Windows\SysWOW64\msvcr100.dll
18:02:27.0666 0x12b4 C:\Windows\SysWOW64\msvcr100.dll - ok
18:02:27.0666 0x12b4 [ FB24438F64BAF5198EE7648B51FD3AB0, 69FC832A234847FFBC7691144F4ED21D28322BFEA13D15A98FEF79CF6B59A595 ] C:\Windows\System32\cacls.exe
18:02:27.0666 0x12b4 C:\Windows\System32\cacls.exe - ok
18:02:27.0666 0x12b4 [ BF95EA5809E3BBF55370F7CB309FEBD0, 62ADBA6E1A7DDDEFA971580161F30896DFFC27EB4EB82E3CC72062D57DA66500 ] C:\Windows\System32\conhost.exe
18:02:27.0666 0x12b4 C:\Windows\System32\conhost.exe - ok
18:02:27.0682 0x12b4 [ 49E5753D923F1AC63B22D3DCB0B47E00, 14CEC0BF5F625FF839A8D79B4A6B7C4AC0CBB705FD197C6B7FF8617C6C3E34FE ] C:\Windows\System32\uDWM.dll
18:02:27.0682 0x12b4 C:\Windows\System32\uDWM.dll - ok
18:02:27.0682 0x12b4 [ 357BE883C5236BFC7341CB9E82308908, 4DDB697FD9B7C516CF99D73C8799EA35BB97E2431216CD7C1045F17B06109FBF ] C:\Windows\System32\wlanapi.dll
18:02:27.0682 0x12b4 C:\Windows\System32\wlanapi.dll - ok
18:02:27.0682 0x12b4 [ D84AEA3F3329D622DFC1297DDDF6163B, 316FE56CC30ED1473A917253F46B79EAA12F4ABD5B4B1ADB03929DFEE940F577 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
18:02:27.0682 0x12b4 C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe - ok
18:02:27.0682 0x12b4 [ 7D3E562070B0A0D89D3DA07118F32B3C, 2B52FBD2783B35017ACBDBC8C34C272C2C60A02FC3288528DBBEA6C66F4295A1 ] C:\Program Files\Intel\WiFi\bin\IntStngs.dll
18:02:27.0682 0x12b4 C:\Program Files\Intel\WiFi\bin\IntStngs.dll - ok
18:02:27.0682 0x12b4 [ E94C583CDE2348950155F2AF2876F34D, D00C7E0D665E467B712C68A446CC5BE14FDA743A2301878B3CEB72CDD0A8B8E7 ] C:\Windows\SysWOW64\mswsock.dll
18:02:27.0682 0x12b4 C:\Windows\SysWOW64\mswsock.dll - ok
18:02:27.0698 0x12b4 [ 12B79422A23814429CDA9E734C58F78F, 88D8EBB4815896921ED88BC46E8C37844FB8C62CD05F507BFCF9825EBC9607DE ] C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL
18:02:27.0698 0x12b4 C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL - ok
18:02:27.0698 0x12b4 [ 77DCD9163C1322AA440AEDD4752F3965, 3F033C1D411FA80FF0F371EBFF07D4C99B19EF2E23AED3BF204DEE5AE139A1E9 ] C:\Program Files\Intel\WiFi\bin\AmtWsMan.dll
18:02:27.0698 0x12b4 C:\Program Files\Intel\WiFi\bin\AmtWsMan.dll - ok
18:02:27.0698 0x12b4 [ B40420876B9288E0A1C8CCA8A84E5DC9, 0D3C73B45BC708D7B1E26DFB6D4F64031A998548FEA0FB5CE198ED716F7DC9A0 ] C:\Windows\SysWOW64\dnsapi.dll
18:02:27.0698 0x12b4 C:\Windows\SysWOW64\dnsapi.dll - ok
18:02:27.0698 0x12b4 [ 73E8667A19FEEDD856DF2695E9E511D4, 68D66C36D1F293D10ADCC6A33C870F989A29743537592CF172F02E794BEAFD1C ] C:\Windows\SysWOW64\wship6.dll
18:02:27.0698 0x12b4 C:\Windows\SysWOW64\wship6.dll - ok
18:02:27.0713 0x12b4 [ EE5C8E27C37B79CB54A2FCEEED2DC262, 0A5E200FD65A491756B951A4A0ED39B88B7B313E97C2BBF3C91AC4C290772BB7 ] C:\Windows\SysWOW64\WSHTCPIP.DLL
18:02:27.0713 0x12b4 C:\Windows\SysWOW64\WSHTCPIP.DLL - ok
18:02:27.0713 0x12b4 [ F0D0E883EBBDC7615DC9EDEA0FFB2817, 58F1395445018CB16ED4D3710443FB5B0E087043F6A69F7B10D72D0455958954 ] C:\Windows\SysWOW64\FWPUCLNT.DLL
18:02:27.0713 0x12b4 C:\Windows\SysWOW64\FWPUCLNT.DLL - ok
18:02:27.0713 0x12b4 [ A90DC9ABD65DB1A8902F361103029952, 26798758976CE53251AC342B966BE0363AE1794BD965C452F5DEBC33E18969F0 ] C:\Windows\SysWOW64\IPHLPAPI.DLL
18:02:27.0713 0x12b4 C:\Windows\SysWOW64\IPHLPAPI.DLL - ok
18:02:27.0713 0x12b4 [ ED6EE83D61EBC683C2CD8E899EA6FEBE, F82592908D038C44D9F2E5C5B7BC663A2D370FC565F40420E1138A9E55F0E7EB ] C:\Windows\SysWOW64\rasadhlp.dll
18:02:27.0713 0x12b4 C:\Windows\SysWOW64\rasadhlp.dll - ok
18:02:27.0713 0x12b4 [ CFF35B879D1618D42C86644C717BA947, 1837275202628D3320867A3BF8CFDA15491730C4B74215F7C0D7E140BF01AC3C ] C:\Windows\SysWOW64\winnsi.dll
18:02:27.0713 0x12b4 C:\Windows\SysWOW64\winnsi.dll - ok
18:02:27.0729 0x12b4 [ 9B48E38C35F08FA831B387A0B27C40AA, A36F22314DC6D183DE1853FCAB4ED8A9C7A851B62F34A7DD5E059B6485B34C2C ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamsrv.dll
18:02:27.0729 0x12b4 C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamsrv.dll - ok
18:02:27.0729 0x12b4 [ 58F4493BF748A3A89689997B7BD00E95, EC5DEEC73E357C7C87B001275C4E635011A9CF39419F2B86E2C2B8D7E388C551 ] C:\Windows\System32\winhttp.dll
18:02:27.0729 0x12b4 C:\Windows\System32\winhttp.dll - ok
18:02:27.0729 0x12b4 [ E36112A8A6C7F840169A7E92C12F4203, 52795B2E6ECCE751EEF5074AF52FDE376A382D0A1C43B90DD4F77A397C00FBC5 ] C:\Windows\System32\wsock32.dll
18:02:27.0729 0x12b4 C:\Windows\System32\wsock32.dll - ok
18:02:27.0729 0x12b4 [ 603EBD34E216C5654A2D774EAC98D278, ACE0171BB780DB2C1B1A8BF6FA8CF51C529D7E09141FA504C7199AF764FD9A36 ] C:\Windows\System32\webio.dll
18:02:27.0729 0x12b4 C:\Windows\System32\webio.dll - ok
18:02:27.0729 0x12b4 [ 30490EED6A1E20E8259C0B9C58F488FE, C8CE687EFFED31AD75D79A52D49E83F39BEE5FD9A1A67EC586BA930650A73D6C ] C:\Program Files (x86)\Malwarebytes Anti-Malware\QtCore4.dll
18:02:27.0729 0x12b4 C:\Program Files (x86)\Malwarebytes Anti-Malware\QtCore4.dll - ok
18:02:27.0744 0x12b4 [ E4B829081E639E42985853BAE754A53D, C94E8E6CE2999ED05D6738A2498F1FD521CE68466CDD3EDC3DDAD71278497879 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcp100.dll
18:02:27.0744 0x12b4 C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcp100.dll - ok
18:02:27.0744 0x12b4 [ 6A13B4F3B3F575F1E24B877B9359AABA, 676AD5F8F709D4A9DCE9938D82DEEE329C9A385A6969C169B3DF37AA75F1E4C7 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll
18:02:27.0744 0x12b4 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l1-1-0.dll - ok
18:02:27.0744 0x12b4 [ 2E33DFD10F28F86C3FC40EE123CC3904, 57C65671A04EFCA437A69E8E97B2FCA17897EE4608C7DB69F77D44FBD3490B50 ] C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll
18:02:27.0744 0x12b4 C:\Windows\SysWOW64\api-ms-win-downlevel-normaliz-l1-1-0.dll - ok
18:02:27.0744 0x12b4 [ 60F4AEFA103D421EA4A40E31409B4756, 037A8605CA504A4FF43E9D4DE9017CEA1E26D3556C975872C747E24D8B0835EF ] C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll
18:02:27.0744 0x12b4 C:\Windows\SysWOW64\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
18:02:27.0744 0x12b4 [ 6951562DC4625EEFC6EACD52AD165866, 44A0B3EA0232D613A5B4115492DF2A7CEF25B35300E6A3E3E50C9544C5D1049E ] C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
18:02:27.0744 0x12b4 C:\Windows\SysWOW64\api-ms-win-downlevel-shlwapi-l1-1-0.dll - ok
18:02:27.0760 0x12b4 [ 589CBC4989F750E1DA35625AB481CF43, B93E1B8C3775F9C995FD5451C685A06DEFD24AE1DF0DD99D19D5E4B9AC0010F9 ] C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll
18:02:27.0760 0x12b4 C:\Windows\SysWOW64\api-ms-win-downlevel-user32-l1-1-0.dll - ok
18:02:27.0760 0x12b4 [ 3BE0D923AA45A4DBE091C2D84F0B4FE7, 603EEC55D6F646150FC3F0F2C939CFE434C02FC7A7AB23B1FEC8B5C77E4C8381 ] C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll
18:02:27.0760 0x12b4 C:\Windows\SysWOW64\api-ms-win-downlevel-version-l1-1-0.dll - ok
18:02:27.0760 0x12b4 [ FD96C05DE700F5FD26273D6DDB6495A7, FED30D3045FA829491BB8FCAE842F6B6034288B679B1A515600A019A821AF916 ] C:\Windows\SysWOW64\iertutil.dll
18:02:27.0760 0x12b4 C:\Windows\SysWOW64\iertutil.dll - ok
18:02:27.0760 0x12b4 [ 80FCEDBE920E9CBE30D9D3665BD6EFED, 5BCA95D4EADADE3046F5F95F9FAD97DF585638B49CCA2184BD0157AE374727C8 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcr100.dll
18:02:27.0760 0x12b4 C:\Program Files (x86)\Malwarebytes Anti-Malware\msvcr100.dll - ok
18:02:27.0760 0x12b4 [ 3FD15B4611D9BDA3F8013548C0ECAECA, B47A8D9985D9B71EB870816A0AB2B6403D394CCBDF7DE5378D5721D58D68D28D ] C:\Windows\SysWOW64\ntmarta.dll
18:02:27.0760 0x12b4 C:\Windows\SysWOW64\ntmarta.dll - ok
18:02:27.0776 0x12b4 [ A8BB45F9ECAD993461E0FEF8E2A99152, ACB756EA54E71F124D928829666B5B439785593877FF7C0C76ADCF954F4E6C94 ] C:\Windows\SysWOW64\Wldap32.dll
18:02:27.0776 0x12b4 C:\Windows\SysWOW64\Wldap32.dll - ok
18:02:27.0776 0x12b4 [ 41010A88B70A2168F801DC19EBD4CB4F, FDA04D1CCACB83F070166B968B0CE0C7A72B5ADEA975D72D1B5C0E10385716C1 ] C:\Windows\SysWOW64\urlmon.dll
18:02:27.0776 0x12b4 C:\Windows\SysWOW64\urlmon.dll - ok
18:02:27.0776 0x12b4 [ 1C60E09CA1C3A045BC4D367F67C915B7, DF1ED88CB57DA1AB1A4245AE0D5B42AFA3396EBF67B99411FFFB0DD06DE1AEAF ] C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll
18:02:27.0776 0x12b4 C:\Windows\SysWOW64\api-ms-win-downlevel-ole32-l1-1-0.dll - ok
18:02:27.0776 0x12b4 [ D58988722C72D265B51A54103DFC2C6F, AC951AFB047FCA763D9B37DB9FF0D00B6AA67DAA9E2086AD3226BACCF6B910CE ] C:\Windows\SysWOW64\wininet.dll
18:02:27.0776 0x12b4 C:\Windows\SysWOW64\wininet.dll - ok
18:02:27.0776 0x12b4 [ 4F45ED469906494F9BF754E476390DBD, D8FF6AFD73D8C191F5732DF9737E6F83B2B52B06A3A6CD4CC6EAC9464CBB2772 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
18:02:27.0776 0x12b4 C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe - ok
18:02:27.0791 0x12b4 [ B094390B6B2D0456821384771020870B, 137FEDD0EFBF1CEDA4930D8CE0A012A250CFF4020931846646090BB2C99EE7CE ] C:\Windows\SysWOW64\secur32.dll
18:02:27.0791 0x12b4 C:\Windows\SysWOW64\secur32.dll - ok
18:02:27.0791 0x12b4 [ CD37E8F77BFF71F104BDC941A393F0B5, 5CEBF2617E4DB089057DEF514F609C62358F2103667CF911147EBD20280C055D ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ismagent.exe
18:02:27.0791 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ismagent.exe - ok
18:02:27.0791 0x12b4 [ 49ACA548B2423F1C67898E6AC719A9A6, 23D84137EAB9AFDD31CBB6776B6B25AD135A120AF7F7885EB5BBF9E0A2CCC4C1 ] C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll
18:02:27.0791 0x12b4 C:\Windows\SysWOW64\api-ms-win-downlevel-advapi32-l2-1-0.dll - ok
18:02:27.0791 0x12b4 [ F722FA26739EAFCBD8D5F3829B632CD7, 8C7356AFF03748C4D565F3B6CBD4E289910253A3CA6CAE3A118F2C7E419CF649 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamcore.dll
18:02:27.0791 0x12b4 C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamcore.dll - ok
18:02:27.0791 0x12b4 [ 858176715EA25C14303FFEC047B98169, 825D9333E956101F7B3C91E62C60704660FCEE08D146A31FE4FD1ED74348A16D ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\CorePersistenceAPI.dll
18:02:27.0791 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\CorePersistenceAPI.dll - ok
18:02:27.0807 0x12b4 [ 9743899CE8E4C9686DC8D87E3AD2B0D3, 6A5217056961338A618B78BEA1E8EA23A9A73D4E174B904F8ADBCD2BF44A679C ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sqlite3.dll
18:02:27.0807 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sqlite3.dll - ok
18:02:27.0807 0x12b4 [ 577F78F9116565D5D634A85BA65D8815, 9CC180947A9D08DC4CD49C25C85BB80A0FA89C37CE0BB825A525ECEBC2175FC5 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\dispatcher.dll
18:02:27.0807 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\dispatcher.dll - ok
18:02:27.0807 0x12b4 [ 5B9E01A5C9370CA6A686C090C41A075E, FB4F9426B4DBB1132BCFECF972FABCF0ADB0C33A4E056B86495B065B7693EDF1 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\orchestrator.dll
18:02:27.0807 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\orchestrator.dll - ok
18:02:27.0807 0x12b4 [ 06A347F37D33D16520768EB3D5EAE9A0, C2A7DF1AB71CFAEE4E2E730A0B98C1AE5E7A2165AA64112615CEE7C7A3D43726 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sealing.dll
18:02:27.0807 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\sealing.dll - ok
18:02:27.0807 0x12b4 [ E7B9D5FF20FFDD4AAE2EF1D1B8C27A37, 689D126B1B42140D5049015E3E324268E6542D4BC6CC14E31D8B89A25B94BAA5 ] C:\Windows\SysWOW64\imagehlp.dll
18:02:27.0807 0x12b4 C:\Windows\SysWOW64\imagehlp.dll - ok
18:02:27.0822 0x12b4 [ B9A8CBCFCD3EC9D2EA4740AF347BF108, 97FA304E3880BC863D999F441AE47CB8ADF00D2DEC2A52ACD8FBD02CC096786A ] C:\Windows\SysWOW64\mpr.dll
18:02:27.0822 0x12b4 C:\Windows\SysWOW64\mpr.dll - ok
18:02:27.0822 0x12b4 [ E6A55378B998F55CD67BD44245FF4F1F, 2B68E3D78FD96458E0E59164FE2F3118E9D8C2ACE51797A903982208F2B2E2C3 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\featureController.dll
18:02:27.0822 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\featureController.dll - ok
18:02:27.0822 0x12b4 [ 53223B673A3FA2F9A4D1C31C8D3F6CD8, B07A12E3ECD5E418A3F99F00C56E7F482F68CADE330E7C079DCCDFFAD2E21299 ] C:\Windows\SysWOW64\dbghelp.dll
18:02:27.0822 0x12b4 C:\Windows\SysWOW64\dbghelp.dll - ok
18:02:27.0822 0x12b4 [ 181F69BC9C406B7FB5C0ADE8031630AC, 4625B362246EC092B4162836BBD4A1748BA2698FC49CAD634A01377FC1BDA29C ] C:\Windows\SysWOW64\wpdshext.dll
18:02:27.0822 0x12b4 C:\Windows\SysWOW64\wpdshext.dll - ok
18:02:27.0838 0x12b4 [ 1727B2A2F379A32B864C096FA794AADC, 87B77A5DF95F3A1C5ED6DEF820C7E384BEFCBAA2FE1BB4781AC6F777A081E5CC ] C:\Windows\System32\aepic.dll
18:02:27.0838 0x12b4 C:\Windows\System32\aepic.dll - ok
18:02:27.0838 0x12b4 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] C:\Windows\System32\nlasvc.dll
18:02:27.0838 0x12b4 C:\Windows\System32\nlasvc.dll - ok
18:02:27.0838 0x12b4 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] C:\Windows\System32\drivers\PEAuth.sys
18:02:27.0838 0x12b4 C:\Windows\System32\drivers\PEAuth.sys - ok
18:02:27.0838 0x12b4 [ D4FAC263861BAE06971C7F7D0A8EBF15, D494DEF0024288B9CC56EC6B500FF5828144BE9B8E7033340509EC5E68F8DED0 ] C:\Windows\System32\ncsi.dll
18:02:27.0838 0x12b4 C:\Windows\System32\ncsi.dll - ok
18:02:27.0854 0x12b4 [ C6DCD1D11ED6827F05C00773C3E7053C, EA23BE261C9C04F44215D254D7A80FD0AEE84C6F192D0FEE49A7CF74ED3CB1A6 ] C:\Windows\System32\sfc.dll
18:02:27.0854 0x12b4 C:\Windows\System32\sfc.dll - ok
18:02:27.0854 0x12b4 [ 895C9AB0A855547445C4181195230757, 89BDA385D8CCB75C3D7B1BDFA567AC441A931F4E499C0835FEE9D010343FABB6 ] C:\Windows\System32\sfc_os.dll
18:02:27.0854 0x12b4 C:\Windows\System32\sfc_os.dll - ok
18:02:27.0854 0x12b4 [ F3AF2B43F35DBB3A0EB9FEEEC7D62217, 5BFB97BFE94F52CE02DFB2B7E8A9AD34AE489B77BA689F63D733EFB65548D734 ] C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
18:02:27.0854 0x12b4 C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe - ok
18:02:27.0869 0x12b4 [ 2BBF3FDB70B8965DFA0258CBAB41ECCE, 4EFA41765E46E90C6CBDB0DC1E0CD375D7AB3307C477171EBAA6A16AC32E5211 ] C:\Windows\System32\ssdpapi.dll
18:02:27.0869 0x12b4 C:\Windows\System32\ssdpapi.dll - ok
18:02:27.0869 0x12b4 [ F263C3C1107C3E08DCA16B0DDF705836, 528C5086A170955345FA1AF3B408231C6144E19C5497D5B013599576D8CEB7C3 ] C:\Program Files (x86)\Samsung\Fast Flash Sleep Resume\ExpressCacheRun64.exe
18:02:27.0869 0x12b4 C:\Program Files (x86)\Samsung\Fast Flash Sleep Resume\ExpressCacheRun64.exe - ok
18:02:27.0869 0x12b4 [ 5E66ABD041D76C46CBF55AEF910FCA56, AA275FE0506EE47EB717451F8415E29757C813F29F5C4B5D1629902B15831966 ] C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe
18:02:27.0869 0x12b4 C:\Program Files (x86)\Samsung\Easy Settings\SamsungDeviceConfiguration.exe - ok
18:02:27.0869 0x12b4 [ 2C4A87CA8C00E98EFDCFA2E8EC9A3503, DA59CE662E98E56D89E2894D2AC8B9F324C16DA23C860640EDC2C82E0AD06097 ] C:\Windows\SysWOW64\shdocvw.dll
18:02:27.0869 0x12b4 C:\Windows\SysWOW64\shdocvw.dll - ok
18:02:27.0885 0x12b4 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] C:\Windows\System32\drivers\secdrv.sys
18:02:27.0885 0x12b4 C:\Windows\System32\drivers\secdrv.sys - ok
18:02:27.0885 0x12b4 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] C:\Windows\System32\drivers\srvnet.sys
18:02:27.0885 0x12b4 C:\Windows\System32\drivers\srvnet.sys - ok
18:02:27.0885 0x12b4 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] C:\Windows\System32\sensrsvc.dll
18:02:27.0885 0x12b4 C:\Windows\System32\sensrsvc.dll - ok
18:02:27.0900 0x12b4 [ 7DB5AA22A8A8E5C2D335F44853C1F6DE, A734A20357026C42950394682A52CBC3AF956D09F1949E1B4E95467E999BC428 ] C:\Windows\System32\wbemcomn.dll
18:02:27.0900 0x12b4 C:\Windows\System32\wbemcomn.dll - ok
18:02:27.0900 0x12b4 [ 666A60F6F5E719856FF6254E0966EFF7, 58C072E7E215991E19C1CA062C476081982F7B9F039714539AE7FEB4981C200F ] C:\Windows\System32\wbem\wbemprox.dll
18:02:27.0900 0x12b4 C:\Windows\System32\wbem\wbemprox.dll - ok
18:02:27.0900 0x12b4 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] C:\Windows\System32\drivers\tcpipreg.sys
18:02:27.0900 0x12b4 C:\Windows\System32\drivers\tcpipreg.sys - ok
18:02:27.0900 0x12b4 [ 9111354A308612483F8DA995A1DD1835, C5933496302BFF9E323F024747705397C70CE5728DED0BB55E257E5D5EF78C8C ] C:\Windows\System32\SensorsApi.dll
18:02:27.0900 0x12b4 C:\Windows\System32\SensorsApi.dll - ok
18:02:27.0916 0x12b4 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] C:\Windows\System32\sysmain.dll
18:02:27.0916 0x12b4 C:\Windows\System32\sysmain.dll - ok
18:02:27.0916 0x12b4 [ 7B38D7916A7CD058C16A0A6CA5077901, 3F6DD990E2DA5D3BD6D65A72CBFB0FE79EB30B118A8AD71B6C9BB5581A622DCE ] C:\Windows\System32\wdscore.dll
18:02:27.0916 0x12b4 C:\Windows\System32\wdscore.dll - ok
18:02:27.0916 0x12b4 [ 162D247E995EAEBF3EF4289069E1111C, 19E858E9902E2D570FFD24AE2CB4165273F5BAB1FF7B04758B11AB5CD41FD752 ] C:\Windows\SysWOW64\devrtl.dll
18:02:27.0916 0x12b4 C:\Windows\SysWOW64\devrtl.dll - ok
18:02:27.0916 0x12b4 [ 4F3CD1C59EA71401E155C432BCECE180, 6D4118A627CAE509E43D0CC0062EECAA0990C955BB15AE24834460551B2F51A2 ] C:\Windows\System32\PortableDeviceTypes.dll
18:02:27.0916 0x12b4 C:\Windows\System32\PortableDeviceTypes.dll - ok
18:02:27.0932 0x12b4 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] C:\Windows\System32\trkwks.dll
18:02:27.0932 0x12b4 C:\Windows\System32\trkwks.dll - ok
18:02:27.0932 0x12b4 [ 6B9FF8CBE106F76B8CF4DC8146FBFDC6, D77A72CF6437D6B8E832AFB6EDA64F74FB4BBCE7D02B903C09DB1ED96981DFD1 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\CrashReportSender.exe
18:02:27.0932 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\CrashReportSender.exe - ok
18:02:27.0932 0x12b4 [ 74713CB32792F9C7632DAA7DA22CA974, 1B1D907F8F18AE22E36F371EE6417D068C01FB4F9413571444AF3845A27F3C4D ] C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
18:02:27.0932 0x12b4 C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe - ok
18:02:27.0947 0x12b4 [ 61930F3CFF07F50B503AFA6397BFB40A, 31E8C8CE88DF4A3389D9A78DA43AF0F295769971202C0F3AFE38D0D277CE15DF ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\BackendService.dll
18:02:27.0947 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\BackendService.dll - ok
18:02:27.0947 0x12b4 [ 10BD241827150536A6689536DB3F1CC5, B131A971E5AAF36495EE31E21E4F9874B6A4DBF5E348FAFFFAEF1A7441CA5834 ] C:\Program Files (x86)\Samsung\Fast Flash Sleep Resume\ECAPI64.dll
18:02:27.0947 0x12b4 C:\Program Files (x86)\Samsung\Fast Flash Sleep Resume\ECAPI64.dll - ok
18:02:27.0947 0x12b4 [ 210FCACAF902B2CD47CF9FD17D846146, 3F77AC721E084864C5966FF5337A90185F62203DC19C685328675500D629CB87 ] C:\Windows\System32\aeevts.dll
18:02:27.0947 0x12b4 C:\Windows\System32\aeevts.dll - ok
18:02:27.0947 0x12b4 [ FDC385A0F7D7DD880C4622D1DF08ABE9, D9596264D98B09A5C44DD63B69B7253377B5FF237B6F2C4F97258E86FFAD055A ] C:\Windows\System32\ntprint.dll
18:02:27.0947 0x12b4 C:\Windows\System32\ntprint.dll - ok
18:02:27.0963 0x12b4 [ AC627A247B23297B50B03856626C19B7, A768246DB598357EDFBE2AC28CC940FF47415959BC0A2592B7F8FB70B2293F9A ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\network.dll
18:02:27.0963 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\network.dll - ok
18:02:27.0963 0x12b4 [ 064CB6CD2B1B525BF52425A818C1A15E, 1506BA4406A1F7BB9869767C15FC1D1528D63555FC97F6934746C17D9E264AA0 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\policyManager.dll
18:02:27.0963 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\policyManager.dll - ok
18:02:27.0963 0x12b4 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] C:\Windows\System32\wbem\WMIsvc.dll
18:02:27.0963 0x12b4 C:\Windows\System32\wbem\WMIsvc.dll - ok
18:02:27.0978 0x12b4 [ 392450754E17FF778CBC5B9D20583AD1, 4E2CC0D5D41303202EE7655FB1F779C41808A714486BAFF22A321A5BAF9FD0F6 ] C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
18:02:27.0978 0x12b4 C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe - ok
18:02:27.0978 0x12b4 [ A3F5E8EC1316C3E2562B82694A251C9E, F3DC6AA6A9D3B5BBC730668FC52C1D4BB5D515D404578BDDD3D4869A7ED58822 ] C:\Windows\System32\wbem\fastprox.dll
18:02:27.0978 0x12b4 C:\Windows\System32\wbem\fastprox.dll - ok
18:02:27.0978 0x12b4 [ 0C52762C606BCF6A377D5E4688191A6B, C58C9A73AD07E3B93AB186D0D47C5F1CB7197771DBEE40646C3B801645BB388F ] C:\Windows\System32\wbem\WmiDcPrv.dll
18:02:27.0978 0x12b4 C:\Windows\System32\wbem\WmiDcPrv.dll - ok
18:02:27.0978 0x12b4 [ CA9F7888B524D8100B977C81F44C3234, 57F3353F89724147D8AC8B69B12C1303DF26978309776F5F8CCF074526A915D3 ] C:\Windows\SysWOW64\winhttp.dll
18:02:27.0978 0x12b4 C:\Windows\SysWOW64\winhttp.dll - ok
18:02:27.0994 0x12b4 [ 5EB55F661DEBF156E126160BCD4D89F8, 948D1F627AA55D55FB3B558BA61B8366C5481A6041820631F24408F75EA5D2CC ] C:\Windows\System32\wbem\wbemcore.dll
18:02:27.0994 0x12b4 C:\Windows\System32\wbem\wbemcore.dll - ok
18:02:27.0994 0x12b4 [ FB19FC5951A88F3C523E35C2C98D23C0, FF0DB8BF0C68DA0D09272E8181D2B5409C8850BB2F31AEA3AC4CD14C5A420A59 ] C:\Windows\SysWOW64\webio.dll
18:02:27.0994 0x12b4 C:\Windows\SysWOW64\webio.dll - ok
18:02:27.0994 0x12b4 [ 52FDF003556C7DC2733F1B0687487B1C, 3835D4FD1706D62F32074C1388195E5151902F5E3D1908DDFB5E80328FA5D002 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtGui4.dll
18:02:27.0994 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\QtGui4.dll - ok
18:02:28.0010 0x12b4 [ EE26D130808D16C0E417BBBED0451B34, 4886DCE4FAEF146A40BABD492A8000A2022FEA542A6135A9BAFD4CD09297B4E5 ] C:\Windows\System32\ntdsapi.dll
18:02:28.0010 0x12b4 C:\Windows\System32\ntdsapi.dll - ok
18:02:28.0010 0x12b4 [ C61DDFE40204F3BE3DF111981D91560E, 450D5E608D344B2186A73F5421CAF1792902BFB428182D6C5A971C5E0686842F ] C:\Windows\SysWOW64\ncrypt.dll
18:02:28.0010 0x12b4 C:\Windows\SysWOW64\ncrypt.dll - ok
18:02:28.0010 0x12b4 [ CE71B9119A258EDD0A05B37D7B0F92E3, D9310C5BBFE089B8C81E259C462EC1E6D7A7A87FA59FC1F174ED5C58D409AE7A ] C:\Windows\SysWOW64\bcrypt.dll
18:02:28.0010 0x12b4 C:\Windows\SysWOW64\bcrypt.dll - ok
18:02:28.0010 0x12b4 [ E8449FE262D7406BCB2AC2A45C53EC5F, 6C118C9FB26404D1943824CF3990F36E12986547FFACB7CC0DF975A913065D78 ] C:\Windows\SysWOW64\bcryptprimitives.dll
18:02:28.0010 0x12b4 C:\Windows\SysWOW64\bcryptprimitives.dll - ok
18:02:28.0025 0x12b4 [ B51E9AD4F4E4F8DBE0AB882756BC5DAB, 74E975F3BF39B360C466A0CEEEF545D1B814EE1AEFF6B2FCDD81A33FA276FBF3 ] C:\Windows\System32\drivers\NETwNs64.sys
18:02:28.0025 0x12b4 C:\Windows\System32\drivers\NETwNs64.sys - ok
18:02:28.0025 0x12b4 [ 087D8668C71634A3A3761135ABF16EEE, B7348A63299CFF4FFBF375E645A4850AE0F108D48D13AB25434CFAE7CF3D61FD ] C:\Windows\System32\wbem\esscli.dll
18:02:28.0025 0x12b4 C:\Windows\System32\wbem\esscli.dll - ok
18:02:28.0025 0x12b4 [ 718B6F51AB7F6FE2988A36868F9AD3AB, 76141B4E94C2766E2C34CEF523092948771A7893212EFADBE88D2171B85FF012 ] C:\Windows\System32\wbem\wbemsvc.dll
18:02:28.0025 0x12b4 C:\Windows\System32\wbem\wbemsvc.dll - ok
18:02:28.0025 0x12b4 [ 0255C22D99602534F15CBB8D9B6F152F, 43CD89D6CA56E0B633142F7C86DA9E072EE0723B5EBC4CE8CCBCA58C396ECF54 ] C:\Windows\System32\wbem\WinMgmtR.dll
18:02:28.0025 0x12b4 C:\Windows\System32\wbem\WinMgmtR.dll - ok
18:02:28.0041 0x12b4 [ 1097F3035BAF46CED8B332B3564C5108, C69781683CA963A1335780DABBBC60E2C3CEF0888738D3425D358D12E8D0AF58 ] C:\Windows\SysWOW64\gpapi.dll
18:02:28.0041 0x12b4 C:\Windows\SysWOW64\gpapi.dll - ok
18:02:28.0041 0x12b4 [ 0AB34456654C283DAA13B8D2BA21439B, 4B70FC5195DE39564E951C8542020BA3D4257E3D4488F69825F67A6099CB7549 ] C:\Windows\System32\wbem\repdrvfs.dll
18:02:28.0041 0x12b4 C:\Windows\System32\wbem\repdrvfs.dll - ok
18:02:28.0041 0x12b4 [ 0143DB80DACFB7C2B5B7009ED9063353, 252885CF7C1BAB89B86908373546E5F5D674BEF7AACBDDCF321AD877CB9150A9 ] C:\Windows\System32\wbem\wmiutils.dll
18:02:28.0041 0x12b4 C:\Windows\System32\wbem\wmiutils.dll - ok
18:02:28.0056 0x12b4 [ DDD0357A92FA843EFF8915ED17253D6C, 0C78B1D41F0A7821186ADF653504F2BFF067CB512CB0E932047C301378BBADB6 ] C:\Windows\System32\wbem\WmiPrvSD.dll
18:02:28.0056 0x12b4 C:\Windows\System32\wbem\WmiPrvSD.dll - ok
18:02:28.0056 0x12b4 [ D41FEBD098234F02485A4EA98D4730A4, 462DC8168C444F35B43BA3B8F7D77734665D84F1C6D25CAD7391C0145961628F ] C:\Windows\System32\ncobjapi.dll
18:02:28.0056 0x12b4 C:\Windows\System32\ncobjapi.dll - ok
18:02:28.0056 0x12b4 [ 6F40D6FB05E0C1E5402812B426971AF0, E41F138F0F2DB057F8DBB1587237C6FA8A2059B3D64EC894D1DC492A18DBBDED ] C:\Windows\System32\wbem\wbemess.dll
18:02:28.0056 0x12b4 C:\Windows\System32\wbem\wbemess.dll - ok
18:02:28.0056 0x12b4 [ 65BD1467E164396A00B92C8F0E57E557, C842A44B7673A3D0157E7D977EE1743D3C72D38CFFDA197D92FE902676708C38 ] C:\Program Files\Intel\WiFi\bin\Ps7ZCfgS.dll
18:02:28.0056 0x12b4 C:\Program Files\Intel\WiFi\bin\Ps7ZCfgS.dll - ok
18:02:28.0072 0x12b4 [ 521202AA6F2B74FCCC6BC7E162109D71, 3B2F41EFDA68C82D9D50AF329AC9B403C806CBE74F87917CDB350E542ADDA017 ] C:\Windows\System32\wbem\unsecapp.exe
18:02:28.0072 0x12b4 C:\Windows\System32\wbem\unsecapp.exe - ok
18:02:28.0072 0x12b4 [ 7B851A8018B1EA00A69707A390004884, DAE654713EF1DC66C8C2D27752B659081794063A7D522D1F680AA9A6E7FBA9FD ] C:\Windows\SysWOW64\cryptnet.dll
18:02:28.0072 0x12b4 C:\Windows\SysWOW64\cryptnet.dll - ok
18:02:28.0072 0x12b4 [ 6F8E3B7B70E1BBA871212940C1FBDF60, 3F9D4EE64E4210340C6FEE0DE81BFE3C613DDBE608EC09D63817D24CE24BFC5E ] C:\Windows\SysWOW64\SensApi.dll
18:02:28.0072 0x12b4 C:\Windows\SysWOW64\SensApi.dll - ok
18:02:28.0072 0x12b4 [ 75F5E1FE8D55CF8E577E0EC5F2290D3F, F4E2C81F0834018052A481AE8D7DF4780302A6844160CCDC09F7D82D3B992BDE ] C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll
18:02:28.0072 0x12b4 C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18201_none_ec80f00e8593ece5\comctl32.dll - ok
18:02:28.0088 0x12b4 [ AB113FF5C7FC4571135A1B7E8BA8BB1D, A54E811485C03D8DB154CBFB496ADF94AE4FB37205599E2BF714FB3BBAF87C9D ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\DeviceProfileService.dll
18:02:28.0088 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\DeviceProfileService.dll - ok
18:02:28.0088 0x12b4 [ 4FBC630768570E6AC35C3DE8F6EC79F5, CF4E271683AA4AADF763A5B3081B8135C9D69F2C6D9DED9C3717B085A1BF14CF ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
18:02:28.0088 0x12b4 C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe - ok
18:02:28.0088 0x12b4 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] C:\Windows\System32\drivers\vwifibus.sys
18:02:28.0088 0x12b4 C:\Windows\System32\drivers\vwifibus.sys - ok
18:02:28.0103 0x12b4 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] C:\Windows\System32\iphlpsvc.dll
18:02:28.0103 0x12b4 C:\Windows\System32\iphlpsvc.dll - ok
18:02:28.0103 0x12b4 [ 8A28776BC6DA3AA5BE8EA80567ECB2B7, 36541FA65E000C45F55FF9A29792AF3837772A653C437C4384CA16FCDAA42505 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DeviceProfile.dll
18:02:28.0103 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\DeviceProfile.dll - ok
18:02:28.0103 0x12b4 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] C:\Windows\System32\drivers\srv2.sys
18:02:28.0103 0x12b4 C:\Windows\System32\drivers\srv2.sys - ok
18:02:28.0119 0x12b4 [ E1DDFAE44AC4746207B8704F8D647020, CA32A0BE47CD461535E545D56A477A129E48080C2D7ECB91F254440F444BAE85 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\systemInfo.dll
18:02:28.0119 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\systemInfo.dll - ok
18:02:28.0119 0x12b4 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] C:\Windows\System32\drivers\srv.sys
18:02:28.0119 0x12b4 C:\Windows\System32\drivers\srv.sys - ok
18:02:28.0119 0x12b4 [ 0D4E31F533C7773DF732F1189A55A72C, A4946FBDFA6008275E0F6869FF5081F81EA65AD28CDDF31DBB3E8D41CA6ECD06 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\dispatcherServer.dll
18:02:28.0119 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\dispatcherServer.dll - ok
18:02:28.0119 0x12b4 [ 27B9E163740A226B65E4B9E186117911, 17411C6A6C1E699BC4B0C04D782FD9AA09CF577DBA41E743F7588904D489CB9F ] C:\Windows\System32\sqmapi.dll
18:02:28.0119 0x12b4 C:\Windows\System32\sqmapi.dll - ok
18:02:28.0134 0x12b4 [ 03706015DB44368375AEBE6339490E66, 02EB28B5156E320C1EBABC03D37E94EB770A721B99E1DD276F8DC2A50D76C381 ] C:\Windows\System32\netcfgx.dll
18:02:28.0134 0x12b4 C:\Windows\System32\netcfgx.dll - ok
18:02:28.0134 0x12b4 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] C:\Windows\System32\browser.dll
18:02:28.0134 0x12b4 C:\Windows\System32\browser.dll - ok
18:02:28.0134 0x12b4 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] C:\Windows\System32\srvsvc.dll
18:02:28.0134 0x12b4 C:\Windows\System32\srvsvc.dll - ok
18:02:28.0150 0x12b4 [ 9BA4D8AA5EE052D34EFAF4D6358A90A5, 16763D1186DDB1296B70AA51756E810E347769C4D6EA0CBE9C04DA32BAA6EACE ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\DownloadManager.dll
18:02:28.0150 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\DownloadManager.dll - ok
18:02:28.0150 0x12b4 [ FEB91B4DA0D540865260A33838654FA3, 8636B008BA329D3E6CC235D08BA4C914EFF45DBFCB9297C893CCDA8D907BA946 ] C:\Windows\System32\nci.dll
18:02:28.0150 0x12b4 C:\Windows\System32\nci.dll - ok
18:02:28.0150 0x12b4 [ CFEFA40DDE34659BE5211966EAD86437, AC0A3AD8AA47012C40785013E2273FC571F416BC9C9FFDA418FE72B3123C1FB0 ] C:\Windows\System32\netmsg.dll
18:02:28.0150 0x12b4 C:\Windows\System32\netmsg.dll - ok
18:02:28.0166 0x12b4 [ 81749E073AC5857B044A686B406E5244, 3884EE705CA34235B29942FEDA8FEA654A21139B8C2A1D5E009C7D07D6E6ADF1 ] C:\Windows\System32\clusapi.dll
18:02:28.0166 0x12b4 C:\Windows\System32\clusapi.dll - ok
18:02:28.0171 0x12b4 [ FF80CAD87555E8E4D2CFD7B9058343F8, 07653773FBEC1996408B8507B08E0E1E812830063F932F897F4B39EE63DDCDC4 ] C:\Windows\System32\sscore.dll
18:02:28.0171 0x12b4 C:\Windows\System32\sscore.dll - ok
18:02:28.0173 0x12b4 [ 619A67C9F617B7E69315BB28ECD5E1DF, F34F231D117CCDFEBB9CB35C8D6FDFA7051DA27FDC1204FCCFF361FC0B13A0FF ] C:\Windows\System32\wbem\WmiPrvSE.exe
18:02:28.0173 0x12b4 C:\Windows\System32\wbem\WmiPrvSE.exe - ok
18:02:28.0178 0x12b4 [ 7C883AACA6C9A774CA9D7AEE67113D47, 3AEE8841B42BA48FC77B83AB9D71A984BE63400E4260D399340D0615DC2B9654 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\PServerPlugin.dll
18:02:28.0178 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\PServerPlugin.dll - ok
18:02:28.0183 0x12b4 [ C29BD7974796BF039B15D2BB74E21A8B, 2B410023149C6A1E4CDAEB8C885A5AA89C2E4E53C14DF7ECBF44412F97A29B65 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\SystemMonitor.dll
18:02:28.0183 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\SystemMonitor.dll - ok
18:02:28.0188 0x12b4 [ 344FCC9850C3A8A3B4D3C65151AF8E4C, C38853454E153B1AB4AEAE1AAFB7CB4B2E6234208CF24C09F3B2AFE25E271C5C ] C:\Windows\System32\resutils.dll
18:02:28.0188 0x12b4 C:\Windows\System32\resutils.dll - ok
18:02:28.0193 0x12b4 [ 43FAB56AE5F639AD59D7209693F4C4C2, C64155944DA774A80D443A0E6DCC40A3405D9C69CA3EBC95CA46BFD65C7A4908 ] C:\Windows\System32\wlanext.exe
18:02:28.0193 0x12b4 C:\Windows\System32\wlanext.exe - ok
18:02:28.0198 0x12b4 [ D32C2A98859CB22D57A665F15F351E7D, CD50473C7DD0E57F2784B137F3490DF710BEEAA31E4961DCC90CF6A70632B481 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.dll
18:02:28.0198 0x12b4 C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.dll - ok
18:02:28.0203 0x12b4 [ 6CF9DB101A75360E98659F823852E540, A7D48DF41A831EEF9978B51786EF80DB9CC40602BE66D46CA11BE1548BC2D10C ] C:\Windows\System32\drivers\Rt64win7.sys
18:02:28.0203 0x12b4 C:\Windows\System32\drivers\Rt64win7.sys - ok
18:02:28.0206 0x12b4 [ 220159496484D34009DE71CA1A68E0D4, 94BD3DEB4E84F95D80BE5775E5A612EFF181ECB212FB668674C67AD19194DE69 ] C:\Windows\System32\wbem\NCProv.dll
18:02:28.0206 0x12b4 C:\Windows\System32\wbem\NCProv.dll - ok
18:02:28.0211 0x12b4 [ 6575B3174C3C86515916CDC2FDC5EF32, 5B11494F5EDC8B22314E60B1F7B449EE488B1F926886B49CD586F3A8CF7C2046 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\UpdateService.dll
18:02:28.0211 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\plugin\UpdateService.dll - ok
18:02:28.0218 0x12b4 [ 15E21AA7D0C0C994CD565EEB96D13C20, 6B9AC59F8C17C639929E9BF911C20DA55459FA55F490E7E0CC284A9FBC077274 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\QtGui4.dll
18:02:28.0218 0x12b4 C:\Program Files (x86)\Malwarebytes Anti-Malware\QtGui4.dll - ok
18:02:28.0221 0x12b4 [ 8A327BB9D9C77B48474FAB738AC2F2F3, AA1E917900F0981D4F2ED3977F355F7D1CEB5B98969E710479D90C74D9673D67 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\eventsSender.dll
18:02:28.0221 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\eventsSender.dll - ok
18:02:28.0226 0x12b4 [ 037D78392A17C46EF00129A827A7684E, 343B3C93ACB09C03D596A61BD566F9B876FE80F8ED8B3DFCDE137C3A3F2342B8 ] C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ChannelAdapter.dll
18:02:28.0226 0x12b4 C:\Program Files (x86)\Intel\Intel® ME FW Recovery Agent\bin\ChannelAdapter.dll - ok
18:02:28.0231 0x12b4 [ 79AFFC7FEEA9CD2FEFEA5EF3B631A02C, 78889511D6F471009674CC958F8BB77B4A79C952634B18E8AFF4A75AA6A60E87 ] C:\Windows\System32\ndiscapCfg.dll
18:02:28.0231 0x12b4 C:\Windows\System32\ndiscapCfg.dll - ok
18:02:28.0236 0x12b4 [ 3D6AF45673C4B31CDECD7F80AF09D443, 7D711D138C107816155AFA5E5FDC6892734074BEFF604B5904177B5D9ACE4670 ] C:\Windows\System32\rascfg.dll
18:02:28.0236 0x12b4 C:\Windows\System32\rascfg.dll - ok
18:02:28.0241 0x12b4 [ 12FEB33791920678F8433701C822BCFD, 7D1AD944CF0532D5AF951ACCE064EA9288F068964603674854CD7658D2B96039 ] C:\Windows\System32\drivers\usbport.sys
18:02:28.0241 0x12b4 C:\Windows\System32\drivers\usbport.sys - ok
18:02:28.0243 0x12b4 [ 2DF29664ED261F0FC448E58F338F0671, 4EFE79C383D0AF126FC4EE668D822563F8F037B1E61D73747A35FE11AAFDB8CE ] C:\Windows\System32\mprapi.dll
18:02:28.0243 0x12b4 C:\Windows\System32\mprapi.dll - ok
18:02:28.0248 0x12b4 [ 1CF21800E337F4039AAD4C94B4280EE4, EF434CEF6E62A202B85E8EC7916EB998E20B10675437CDE90084CDA938C0AA3F ] C:\Windows\System32\mprmsg.dll
18:02:28.0248 0x12b4 C:\Windows\System32\mprmsg.dll - ok
18:02:28.0253 0x12b4 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] C:\Windows\System32\drivers\usbehci.sys
18:02:28.0253 0x12b4 C:\Windows\System32\drivers\usbehci.sys - ok
18:02:28.0256 0x12b4 [ 55DE45B116711881C852D2841E4C84DD, 18E5021530BB44042C85087BAE4FEDA633E01CDCBA09C90A5941B74C75133A35 ] C:\Windows\System32\tcpipcfg.dll
18:02:28.0256 0x12b4 C:\Windows\System32\tcpipcfg.dll - ok
18:02:28.0261 0x12b4 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] C:\Windows\System32\drivers\usbhub.sys
18:02:28.0261 0x12b4 C:\Windows\System32\drivers\usbhub.sys - ok
18:02:28.0266 0x12b4 [ D7588D42E29080C32A003BEE465160D8, 03C23580F133C976A93F0BB5088E811BC2EC8AEB20A81FE54C9ED608B010C506 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\QtNetwork4.dll
18:02:28.0266 0x12b4 C:\Program Files (x86)\Malwarebytes Anti-Malware\QtNetwork4.dll - ok
18:02:28.0271 0x12b4 [ D3A8AF8BC003E16DAB96AB1ED20A52B8, 5576A958F77EE6B9C02807DA6B6D41DEB2380CF64968BFA57C13CB8EAFA1AF1F ] C:\Program Files\Intel\WiFi\bin\iWMSProv.dll
18:02:28.0271 0x12b4 C:\Program Files\Intel\WiFi\bin\iWMSProv.dll - ok
18:02:28.0276 0x12b4 [ 2FCA0D2C59A855C54BAFA22AA329DF0F, ED9D26F539065D62FCCEDEEC8E509B30F4D15F8DA586C1F657ACEFE9DABAACD0 ] C:\Windows\SysWOW64\netapi32.dll
18:02:28.0276 0x12b4 C:\Windows\SysWOW64\netapi32.dll - ok
18:02:28.0278 0x12b4 [ 20B3934DB73EABA2B49B7177873CB81F, 492EAC5C51472B43DE11825358AEC4B9E3A081DACFD7513C696D6FE40F302EE5 ] C:\Windows\SysWOW64\netutils.dll
18:02:28.0278 0x12b4 C:\Windows\SysWOW64\netutils.dll - ok
18:02:28.0283 0x12b4 [ 5CCDCD40E732D54E0F7451AC66AC1C87, 66F4DA105BD72E41250CD59E2B3CD931B47AC9FDB6C784B9E33C5EE1AC29841F ] C:\Windows\SysWOW64\srvcli.dll
18:02:28.0283 0x12b4 C:\Windows\SysWOW64\srvcli.dll - ok
18:02:28.0286 0x12b4 [ E5A4A1326A02F8E7B59E6C3270CE7202, DCB76016F9AC47E631540874DA208A089F9D529DA9628705A2869B954526BFE0 ] C:\Windows\SysWOW64\wkscli.dll
18:02:28.0286 0x12b4 C:\Windows\SysWOW64\wkscli.dll - ok
18:02:28.0291 0x12b4 [ 388027CF7F4876107708499575FA04DB, BC7BA60C3BAD3E3B27D7242FD56E25BF25560A48C04FF1E4B6BF5903197FB278 ] C:\Windows\System32\iwmssvc.dll
18:02:28.0291 0x12b4 C:\Windows\System32\iwmssvc.dll - ok
18:02:28.0296 0x12b4 [ 323764C9E02492A382EE9480314850E3, 47EBFD718FEF80FC9448BFE95414F5E3D1CDEEF6D61A0CB078809CEF407B6263 ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\ccxplugin.dll
18:02:28.0296 0x12b4 C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\ccxplugin.dll - ok
18:02:28.0301 0x12b4 [ 3FA1CAE9D094AA7718ECBEC2CB9F2EE6, 962B8361F4220FF13FCB77E976BF238D91BB681A034AB166F201F0D9D9BDD76C ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\IHVWPSPlugin.dll
18:02:28.0301 0x12b4 C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\IHVWPSPlugin.dll - ok
18:02:28.0306 0x12b4 [ 748849C42DEA24C723048E24BCA1BD55, 517DDE70E7CB8E94C6E8B9B05CCD4BC6490A8837FD8BB874C9E1186D8EF07659 ] C:\Windows\System32\wshbth.dll
18:02:28.0306 0x12b4 C:\Windows\System32\wshbth.dll - ok
18:02:28.0308 0x12b4 [ 930FE4496413D491FF78E61FA3DEAC1E, 9CEB6F7FD3159839310CE31D62524666AF12627FEBE8F003C9508F43483C93C0 ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\P2PSupplicantPlugin.dll
18:02:28.0308 0x12b4 C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\P2PSupplicantPlugin.dll - ok
18:02:28.0313 0x12b4 [ BF1152024FDD908A1535E69FDB21439E, CBAF11D1B6B3BF17236F88DDB4E1F93D8462AFC1FAD769E4196CD53CDFDC31F0 ] C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\PanAuthenticator.dll
18:02:28.0313 0x12b4 C:\Program Files\Intel\WiFi\bin\KmmdlPlugins\PanAuthenticator.dll - ok
18:02:28.0318 0x12b4 [ 6132603F7D745CED00C6E6525A7FB4E3, 13EC03143582C1E9784EF1B6F0C519DC4A6CB0CCF4B86C1F18CC7A600E13A5D1 ] C:\Program Files\Intel\WiFi\bin\PfMgrApi.dll
18:02:28.0318 0x12b4 C:\Program Files\Intel\WiFi\bin\PfMgrApi.dll - ok
18:02:28.0321 0x12b4 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] C:\Windows\System32\appinfo.dll
18:02:28.0321 0x12b4 C:\Windows\System32\appinfo.dll - ok
18:02:28.0326 0x12b4 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] C:\Windows\System32\drivers\WUDFPf.sys
18:02:28.0326 0x12b4 C:\Windows\System32\drivers\WUDFPf.sys - ok
18:02:28.0331 0x12b4 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] C:\Windows\System32\wdi.dll
18:02:28.0331 0x12b4 C:\Windows\System32\wdi.dll - ok
18:02:28.0333 0x12b4 [ BF4AC709BE5BF64F331F5D67773A0C82, 96E5A2A12D386B8A7976FEC76FD350E6A3EEBDF5763F4BBF4AB18880E9F269E0 ] C:\Windows\System32\perftrack.dll
18:02:28.0333 0x12b4 C:\Windows\System32\perftrack.dll - ok
18:02:28.0338 0x12b4 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] C:\Windows\System32\wpdbusenum.dll
18:02:28.0338 0x12b4 C:\Windows\System32\wpdbusenum.dll - ok
18:02:28.0343 0x12b4 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] C:\Windows\System32\WUDFSvc.dll
18:02:28.0343 0x12b4 C:\Windows\System32\WUDFSvc.dll - ok
18:02:28.0346 0x12b4 [ E64D9EC8018C55873B40FDEE9DBEF5B3, 2DB11E7C631A9887CB75AFEAD2C79EC65F82C51F5F073CEFC8CDDF664EFF29C1 ] C:\Windows\System32\PortableDeviceApi.dll
18:02:28.0346 0x12b4 C:\Windows\System32\PortableDeviceApi.dll - ok
18:02:28.0351 0x12b4 [ 1075AB2C077B415760C0E948856B5126, D67804B4A038FC06BD84CBF9C047DD4C13073622027F825371DB98867EF4E9B9 ] C:\Windows\System32\wer.dll
18:02:28.0351 0x12b4 C:\Windows\System32\wer.dll - ok
18:02:28.0353 0x12b4 [ 4449D23E8F197862F1B16F1E6C89C36C, 93AF52BF8E870C0381F027D3BB8F6829E449242074472F1593EB8172D7EB6559 ] C:\Windows\System32\diagperf.dll
18:02:28.0356 0x12b4 C:\Windows\System32\diagperf.dll - ok
18:02:28.0358 0x12b4 [ E155362D3C60232CFC15397EA6617E88, 1DA0A50D8B770F738348AE83894BC43C6F165AD1742AC474C7B4AA7E184B5081 ] C:\Program Files\Intel\WiFi\bin\DbEngine.dll
18:02:28.0358 0x12b4 C:\Program Files\Intel\WiFi\bin\DbEngine.dll - ok
18:02:28.0363 0x12b4 [ E1B22739C933BE33F53DB58C5393ADD3, 26EE0DD091D2E00DECC774DC1EEDFFDE69AF74B0C769CCBE091AFC32C66E4207 ] C:\Windows\System32\Apphlpdm.dll
18:02:28.0363 0x12b4 C:\Windows\System32\Apphlpdm.dll - ok
18:02:28.0368 0x12b4 [ F7073C962C4FB7C415565DDE109DE49F, 781E7088DCEFBC34A808C3E7DA41A56112B3F23ABE9F54B5EF4D5CD9CD016B1D ] C:\Windows\System32\npmproxy.dll
18:02:28.0368 0x12b4 C:\Windows\System32\npmproxy.dll - ok
18:02:28.0373 0x12b4 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] C:\Windows\System32\IPSECSVC.DLL
18:02:28.0373 0x12b4 C:\Windows\System32\IPSECSVC.DLL - ok
18:02:28.0376 0x12b4 [ 9BC93C9ACFA34DB5A41B89357B31E4ED, C3B9DDCB31970F91F8CAF85D2431903DB1738872775EEFD6712B7646BDE1250C ] C:\Windows\System32\FwRemoteSvr.dll
18:02:28.0376 0x12b4 C:\Windows\System32\FwRemoteSvr.dll - ok
18:02:28.0378 0x12b4 [ 9719E3D834F5C8C43F56A93DFA497023, 4D78D4BD4835C0A237821967156C19DF4B90384A6BCB1F48CEAF35D003A0099A ] C:\Windows\System32\pnpts.dll
18:02:28.0378 0x12b4 C:\Windows\System32\pnpts.dll - ok
18:02:28.0381 0x12b4 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] C:\Windows\System32\aelupsvc.dll
18:02:28.0381 0x12b4 C:\Windows\System32\aelupsvc.dll - ok
18:02:28.0386 0x12b4 [ E811F8510B133E70CF6E509FB809824F, 82541F2B15748250462B67B6C77530D4F7C45A1482237EC49B28F9FA5A414108 ] C:\Windows\System32\wdiasqmmodule.dll
18:02:28.0386 0x12b4 C:\Windows\System32\wdiasqmmodule.dll - ok
18:02:28.0388 0x12b4 [ 8ABFE00F213F2571498F1B8FD7939A98, B557EC9EFD33612BAFE01FFD304B50EFB8C3C19763470560DA950B5AB4A9AC9C ] C:\Windows\System32\WUDFHost.exe
18:02:28.0388 0x12b4 C:\Windows\System32\WUDFHost.exe - ok
18:02:28.0393 0x12b4 [ 3B367397320C26DBA890B260F80D1B1B, 50BBE71B4380B5E86E197AF86F5C08266DD6B12344BA4ABDEA604B8C774C4147 ] C:\Windows\System32\hnetcfg.dll
18:02:28.0393 0x12b4 C:\Windows\System32\hnetcfg.dll - ok
18:02:28.0396 0x12b4 [ 46863C4CC5B68EB09EA2D5EEF0F1193A, 9B5593E1F484AC8F96F89A5995FB1FE9C51CB2F0F545607F6850751191150CFE ] C:\Windows\System32\radardt.dll
18:02:28.0396 0x12b4 C:\Windows\System32\radardt.dll - ok
18:02:28.0401 0x12b4 [ AFA79C343F9D1555F7E5D5FA70BB2A14, 440EF3ADC1F5C7A5ED3E872C8D8DFA61B039454C3CA67F8A51CA8BDCFDC4BA4A ] C:\Windows\System32\PortableDeviceConnectApi.dll
18:02:28.0401 0x12b4 C:\Windows\System32\PortableDeviceConnectApi.dll - ok
18:02:28.0406 0x12b4 [ 25AE683DCB4AE7E6F1B193A0CB9DB35F, 9DC4BE1A51A3E94DB05369222CFCBA2125DA519EAAC46823EAECD738974463EF ] C:\Windows\System32\WUDFx.dll
18:02:28.0406 0x12b4 C:\Windows\System32\WUDFx.dll - ok
18:02:28.0408 0x12b4 [ 719791FD6C86D0FF4F2AFB829CA878E1, 8FD7D4C33F238AE5EB22505F5105620EF5DDF8F37A1504FA02764C96B1BC1459 ] C:\Windows\System32\drivers\UMDF\SensorsAlsDriver.dll
18:02:28.0408 0x12b4 C:\Windows\System32\drivers\UMDF\SensorsAlsDriver.dll - ok
18:02:28.0413 0x12b4 [ 3130CB59CAF6B16F83FA4075D0AE7366, 1ECF0D4AE72D4F57359AC7C35BB2690E6DAC43CCFA26375C00E80DD23221F3B6 ] C:\Windows\System32\SensorsClassExtension.dll
18:02:28.0413 0x12b4 C:\Windows\System32\SensorsClassExtension.dll - ok
18:02:28.0418 0x12b4 [ 389CA818132C1D7DCF0C791E8D9035DE, 5E54799F92CC604FABEF2F97AFD97F9CAD70D01BCDBC41FAC408D60821927C12 ] C:\Windows\System32\PortableDeviceClassExtension.dll
18:02:28.0418 0x12b4 C:\Windows\System32\PortableDeviceClassExtension.dll - ok
18:02:28.0423 0x12b4 [ 704314FD398C81D5F342CAA5DF7B7F21, CDA660E1E8AAE0789780B6B9604B138E67B2BDD1404A5E4C2354B35879D43085 ] C:\Windows\SysWOW64\wbemcomn.dll
18:02:28.0423 0x12b4 C:\Windows\SysWOW64\wbemcomn.dll - ok
18:02:28.0426 0x12b4 [ C5B0324DB461559ADD070E632A6919FA, AB09CACB5B7DD372B27921A5E01220552A611CECA27EF87961001FA467FDED45 ] C:\Windows\SysWOW64\wbem\wbemprox.dll
18:02:28.0426 0x12b4 C:\Windows\SysWOW64\wbem\wbemprox.dll - ok
18:02:28.0431 0x12b4 [ 025E7DBDB98866ED3CB2D4DDA70B364D, 78962F23F066E362AF1A4B98FA7D5E30AF30C561307438503031D30C944B6A6E ] C:\Windows\System32\runonce.exe
18:02:28.0431 0x12b4 C:\Windows\System32\runonce.exe - ok
18:02:28.0436 0x12b4 [ 776AE0564F8B1C282E331FD95A1BDC5F, 601CFCA3922FFEA46A54AD323845A76A12FC6AF9FF64E9B0AE294FBB1AFCF4CB ] C:\Windows\SysWOW64\wbem\wbemsvc.dll
18:02:28.0436 0x12b4 C:\Windows\SysWOW64\wbem\wbemsvc.dll - ok
18:02:28.0438 0x12b4 [ CFC7D8289D2B5F3CF8D16E2DB7F93D4A, 61B4D669C692775EF361445293163E84FAD8636AC49C8047BE806DB4E4093291 ] C:\Windows\SysWOW64\wbem\fastprox.dll
18:02:28.0438 0x12b4 C:\Windows\SysWOW64\wbem\fastprox.dll - ok
18:02:28.0441 0x12b4 [ E59F533C26C8375CD120B4791482217E, FFF66E33DB80C549BD77FAC31FA54C0C5FBD505E2BCE7DDB10B873EA4471D55F ] C:\Program Files (x86)\Malwarebytes Anti-Malware\imageformats\qgif4.dll
18:02:28.0441 0x12b4 C:\Program Files (x86)\Malwarebytes Anti-Malware\imageformats\qgif4.dll - ok
18:02:28.0446 0x12b4 [ E3E811471DE781900FF21C1FD84E941E, 2A47FF52D1D6480AAD1919382E783EA184BF926311F8C7E466FEBE9F6FB88FD6 ] C:\Windows\SysWOW64\ntdsapi.dll
18:02:28.0446 0x12b4 C:\Windows\SysWOW64\ntdsapi.dll - ok
18:02:28.0448 0x12b4 [ D44741F65A1D71F65814A12CF6E2400A, C6721F830675ADC7E7FDE2B5E822E56F6A063146F5066F1E25EBFE86F0A87136 ] C:\Windows\SysWOW64\runonce.exe
18:02:28.0448 0x12b4 C:\Windows\SysWOW64\runonce.exe - ok
18:02:28.0451 0x12b4 [ 8CF4B0337B06CCC624C20EE4C934767E, D4663FB98FA595B0220ECC60C1CB84891441586E53AB9C8E2AC8D4C1341C95D3 ] C:\Windows\System32\lpksetupproxyserv.dll
18:02:28.0451 0x12b4 C:\Windows\System32\lpksetupproxyserv.dll - ok
18:02:28.0456 0x12b4 [ DB3FB9F91EA29B0B4B6D9ADE2630FC63, 37D4CE9BDC01E8ABCACF1BA58C1EE3730C40C88089B1101D957FD04A852230F1 ] C:\Program Files\Intel\WiFi\bin\PanIHVInt.dll
18:02:28.0456 0x12b4 C:\Program Files\Intel\WiFi\bin\PanIHVInt.dll - ok
18:02:28.0461 0x12b4 [ 512D4FD86DE088A0DBDE4A5D5F10B3E2, A10A0401CBE952C631B501C72D9A568D297592E4FE00A371D5C99E2D64300344 ] C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll
18:02:28.0461 0x12b4 C:\Program Files\Intel\WiFi\bin\S24MUDLL.dll - ok
18:02:28.0463 0x12b4 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] C:\Windows\servicing\TrustedInstaller.exe
18:02:28.0463 0x12b4 C:\Windows\servicing\TrustedInstaller.exe - ok
18:02:28.0468 0x12b4 [ AD7B9C14083B52BC532FBA5948342B98, 17F746D82695FA9B35493B41859D39D786D32B23A9D2E00F4011DEC7A02402AE ] C:\Windows\SysWOW64\cmd.exe
18:02:28.0468 0x12b4 C:\Windows\SysWOW64\cmd.exe - ok
18:02:28.0473 0x12b4 [ 6607C2182C6A53ED983813AFE2F85768, FC9E718ABC4E0FBC7B0DD145F9C377A1800A7776AD832AB645796E13B1E15A1F ] C:\Windows\System32\wbem\cimwin32.dll
18:02:28.0473 0x12b4 C:\Windows\System32\wbem\cimwin32.dll - ok
18:02:28.0476 0x12b4 [ A7A8CA53D9C9FD90C07AB0EB38E5316B, B98722E76601A98F038F40703C4B8BD21B5EC3B65DC1B07B7C367C06448F8A0E ] C:\Windows\System32\dbghelp.dll
18:02:28.0476 0x12b4 C:\Windows\System32\dbghelp.dll - ok
18:02:28.0481 0x12b4 [ 1484B9EBF567346582DE571B0E164AE0, 9862BF22B2E32DABE7A82ACEE5B4EA1F0A93BDC3C71B20A6A4E568CCCD76A7A6 ] C:\Windows\System32\framedynos.dll
18:02:28.0481 0x12b4 C:\Windows\System32\framedynos.dll - ok
18:02:28.0486 0x12b4 [ 288ADDED26C80FDC135CAB4340161686, FEA5CBCD061E6F347670E9ED7261F1FF3433480158A2FF0AEBC8DF53930B7000 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll
18:02:28.0486 0x12b4 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\CbsCore.dll - ok
18:02:28.0491 0x12b4 [ 387F2728BFCF50066F7F3219197918EB, 12D1E818C64D02F48C0A8A1094390329B8A65248E53E43D21CCF94E9A9701556 ] C:\Windows\System32\makecab.exe
18:02:28.0491 0x12b4 C:\Windows\System32\makecab.exe - ok
18:02:28.0493 0x12b4 [ 326C7F76A29897A892AA7726E91C1C67, 64305346B06EC14976130B0B80F14B4D5AB63E5B2A6A7B872EC9CE2BF8FADCD2 ] C:\Windows\SysWOW64\winbrand.dll
18:02:28.0493 0x12b4 C:\Windows\SysWOW64\winbrand.dll - ok
18:02:28.0498 0x12b4 [ 7957A194B8421BC070FABBF1C55DB68B, 782389F39C4CD9E13D5F9847AC33DF82BBFAEF6CF8E6150698D462F1DC270559 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll
18:02:28.0498 0x12b4 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wcp.dll - ok
18:02:28.0501 0x12b4 [ 8EE6BDE1D572677AA35707C52C585F75, 588A08C0FC3881186CD673F749E46A154F58BE39CA7AE8A2E1F25539B2299752 ] C:\Windows\SysWOW64\mlang.dll
18:02:28.0501 0x12b4 C:\Windows\SysWOW64\mlang.dll - ok
18:02:28.0506 0x12b4 [ D40E7B5FBB8E0EAA7C5C294389AF95AB, 8EFD521DF1F335AF416DEC15D5C0C6538903803AA1A8ED93AA704B384A29876B ] C:\Users\Scott\AppData\Local\Temp\{34329C52-37E8-4D8C-9964-A5865950F16D}.exe
18:02:28.0506 0x12b4 C:\Users\Scott\AppData\Local\Temp\{34329C52-37E8-4D8C-9964-A5865950F16D}.exe - ok
18:02:28.0508 0x12b4 [ 2B4B508AFAC2A563931AF1FE875A5B16, F6A5261BD3FB8AE7BF26F32B681A15E56317EF8A9D8AB84B9B6BCA66F5484698 ] C:\Windows\System32\drivers\btmhsf.sys
18:02:28.0508 0x12b4 C:\Windows\System32\drivers\btmhsf.sys - ok
18:02:28.0511 0x12b4 [ 60CC7AE9AEDB4D1E7923BD053B176D97, 52783EE81DCA8267267ADD862A1BF049765BB154F904196B55C0CA26E30FD393 ] C:\Windows\System32\drivers\iBtFltCoex.sys
18:02:28.0511 0x12b4 C:\Windows\System32\drivers\iBtFltCoex.sys - ok
18:02:28.0516 0x12b4 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] C:\Windows\System32\drivers\bthport.sys
18:02:28.0516 0x12b4 C:\Windows\System32\drivers\bthport.sys - ok
18:02:28.0518 0x12b4 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] C:\Windows\System32\drivers\BTHUSB.SYS
18:02:28.0518 0x12b4 C:\Windows\System32\drivers\BTHUSB.SYS - ok
18:02:28.0523 0x12b4 [ 9297F004FCE79FB7B26DAC6968FB5FEB, 797B4501823123FB6530F613CE996E77C3D323CD7B2365836504BD622F4CEFC2 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll
18:02:28.0523 0x12b4 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\DrUpdate.dll - ok
18:02:28.0526 0x12b4 [ B7AC66C1CCD87D7C49256B5451DED4FA, 2BA412A69605D75CF10B9446725917B850A29369BD3970CA14796CC24C9BFD72 ] C:\Windows\System32\spp.dll
18:02:28.0526 0x12b4 C:\Windows\System32\spp.dll - ok
18:02:28.0531 0x12b4 [ FC6C5D860CDB82411DA626821201BDF0, E062B9AFBEE5BEC64C7DC9C6C57CD31EE3148388055C4B66D208BF604C703560 ] C:\Windows\System32\srclient.dll
18:02:28.0531 0x12b4 C:\Windows\System32\srclient.dll - ok
18:02:28.0536 0x12b4 [ B837D1528CE2E3CB79F09496BC08DDC6, ACD54CE61CFE94F23DC283537AD8FFBEB3D6041BD30317B60BA7A10FCB240A27 ] C:\Windows\System32\SensApi.dll
18:02:28.0536 0x12b4 C:\Windows\System32\SensApi.dll - ok
18:02:28.0538 0x12b4 [ 6685DD5CC357D45EEE30FD089E8A111A, FA261701D1E81029ADBE431AD740BBB00185ADD9A2E226374B9C0A0992A157D5 ] C:\Windows\System32\sxsstore.dll
18:02:28.0538 0x12b4 C:\Windows\System32\sxsstore.dll - ok
18:02:28.0543 0x12b4 [ 943F48CC3A59169E52A054946C2F59B8, 0F98177902498B251F573613EFEAC1052B9BE23115A58EF2740363BC5DE99F61 ] C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll
18:02:28.0543 0x12b4 C:\Windows\winsxs\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.1.7601.17592_none_672ce6c3de2cb17f\wrpint.dll - ok
18:02:28.0546 0x12b4 [ 432BE6CF7311062633459EEF6B242FB5, 890C1734ED1EF6B2422A9B21D6205CF91E014ADD8A7F41AA5A294FCF60631A7B ] C:\Windows\SysWOW64\regsvr32.exe
18:02:28.0546 0x12b4 C:\Windows\SysWOW64\regsvr32.exe - ok
18:02:28.0551 0x12b4 [ DD502A2E7B85EA7A3814C1034E6C23D3, 551D6C28DA6116DC65111BFA21E23BA8AE77193BEAF3DF505C343E6DC3CD5304 ] C:\Windows\AppPatch\AcGenral.dll
18:02:28.0551 0x12b4 C:\Windows\AppPatch\AcGenral.dll - ok
18:02:28.0553 0x12b4 [ 85683DF1F917E4D7F6BE1A04986BF1C8, D68D9F525D31C1843B6EC8FA950166FA1F34DB71222716E7B22DD33981C152B6 ] C:\Windows\SysWOW64\msacm32.dll
18:02:28.0553 0x12b4 C:\Windows\SysWOW64\msacm32.dll - ok
18:02:28.0556 0x12b4 [ 68ECCA523ED760AAFC03C5D587569859, CDD734279C8F9F24EA2538BAD8E91EB8C3DD74C33032DB6B2D85C19576B42707 ] C:\Windows\SysWOW64\samcli.dll
18:02:28.0556 0x12b4 C:\Windows\SysWOW64\samcli.dll - ok
18:02:28.0558 0x12b4 [ 40CAEEE0EAF1B8569F7C8DF6420F2CB9, E18D66455D00A6D2A2D7CC0833C233FE8A6DD910B59D6B5B5F82EF91450858DF ] C:\Windows\SysWOW64\sfc.dll
18:02:28.0558 0x12b4 C:\Windows\SysWOW64\sfc.dll - ok
18:02:28.0563 0x12b4 [ 84799328D87B3091A3BDD251E1AD31F9, F85521215924388830DBB13580688DB70B46AF4C7D82D549D09086438F8D237B ] C:\Windows\SysWOW64\sfc_os.dll
18:02:28.0563 0x12b4 C:\Windows\SysWOW64\sfc_os.dll - ok
18:02:28.0568 0x12b4 [ 945BB364B09F3A8E998DBFF02A0A5A58, FB8DEAA2DE1B3843A47E5592AE4FB4FD4C19F83AD09CAD3774144BF550267C39 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll
18:02:28.0568 0x12b4 C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamext.dll - ok
18:02:28.0571 0x12b4 [ 59BCE9F07985F8A4204F4D6554CFF708, CA24AEF558647274D019DFB4D7FD1506D84EC278795C30BA53B81BB36130DC57 ] C:\Windows\System32\regsvr32.exe
18:02:28.0571 0x12b4 C:\Windows\System32\regsvr32.exe - ok
18:02:28.0576 0x12b4 [ B6A17555D2CB159A47E910670DE6F7AF, DA548471F6FF5CD4FEC8E592C5C94AF7041AE79ED6ACBF07E9E818E24EB383D1 ] C:\Windows\AppPatch\AppPatch64\AcGenral.dll
18:02:28.0576 0x12b4 C:\Windows\AppPatch\AppPatch64\AcGenral.dll - ok
18:02:28.0581 0x12b4 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] C:\Windows\System32\drivers\rfcomm.sys
18:02:28.0581 0x12b4 C:\Windows\System32\drivers\rfcomm.sys - ok
18:02:28.0586 0x12b4 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] C:\Windows\System32\drivers\bthenum.sys
18:02:28.0586 0x12b4 C:\Windows\System32\drivers\bthenum.sys - ok
18:02:28.0588 0x12b4 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] C:\Windows\System32\drivers\bthpan.sys
18:02:28.0588 0x12b4 C:\Windows\System32\drivers\bthpan.sys - ok
18:02:28.0593 0x12b4 [ 988CC6CC49303665D3B2435C51505C3F, 5217A7A1BAD77EBF4E5D68D191FCFD7CE4FB96ABB91638383A077BE9CE794EE3 ] C:\Windows\System32\drivers\btmaux.sys
18:02:28.0593 0x12b4 C:\Windows\System32\drivers\btmaux.sys - ok
18:02:28.0596 0x12b4 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] C:\Windows\System32\drivers\usbccgp.sys
18:02:28.0596 0x12b4 C:\Windows\System32\drivers\usbccgp.sys - ok
18:02:28.0601 0x12b4 [ A054EA8FBE16D4D34F06D81A4F0088E2, 1CD4EECFDA374C8A7B8AD4E664DC057B9C75813AF776A616DC6D845905567CBD ] C:\Windows\SysWOW64\WindowsCodecs.dll
18:02:28.0601 0x12b4 C:\Windows\SysWOW64\WindowsCodecs.dll - ok
18:02:28.0603 0x12b4 [ 846D0E4DB261CFAF363902E41498E961, D7E5591B7604FD583AF7FDA19E30928B24A6145318A3944E7D207F0CCEEB30D0 ] C:\Windows\SysWOW64\EhStorShell.dll
18:02:28.0603 0x12b4 C:\Windows\SysWOW64\EhStorShell.dll - ok
18:02:28.0606 0x12b4 [ AC122407B29378FF9646F03404AC7C54, 01F03A11C4419665557C3CB7E712B8AD59B13703115CB10C9F39FBE82D177BE6 ] C:\Windows\SysWOW64\wshbth.dll
18:02:28.0606 0x12b4 C:\Windows\SysWOW64\wshbth.dll - ok
18:02:28.0608 0x12b4 [ 03F3B770DFBED6131653CEDA8CA780F0, 77373919DCA647F09851E7E460AE78FBD89F21516B961F84AC4446304E51E09C ] C:\Windows\SysWOW64\ntshrui.dll
18:02:28.0608 0x12b4 C:\Windows\SysWOW64\ntshrui.dll - ok
18:02:28.0611 0x12b4 [ 465BEA35F7ED4A4A57686DEA7EA10F47, 7F1B3CA09AB045F805DA5765BE7DD270F5DDACE3073017F7386FF1E2FA82D6FB ] C:\Windows\SysWOW64\cscapi.dll
18:02:28.0613 0x12b4 C:\Windows\SysWOW64\cscapi.dll - ok
18:02:28.0616 0x12b4 [ 827CB0D6C3F8057EA037FF271F8E9795, 82760DBDDD38D2A31CAAF51D065DF4E7E1D0F0C22733A0AF653776EBF7B79470 ] C:\Windows\SysWOW64\imageres.dll
18:02:28.0616 0x12b4 C:\Windows\SysWOW64\imageres.dll - ok
18:02:28.0618 0x12b4 [ 8B74CEC6980D4816B0037AE9A27E538F, 8721EDB4C51BF6020002FA5DDB1987C68590F9F433A2F18D9756B2DAC7542CB6 ] C:\Windows\SysWOW64\slc.dll
18:02:28.0618 0x12b4 C:\Windows\SysWOW64\slc.dll - ok
18:02:28.0621 0x12b4 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] C:\Windows\System32\drivers\usbvideo.sys
18:02:28.0621 0x12b4 C:\Windows\System32\drivers\usbvideo.sys - ok
18:02:28.0626 0x12b4 [ 8A50D5304E6AE48664CF5838EC32F647, C76943FABEE1B5E1B641AA610668CCD4227E2C4B191DD30B79D3AB31A9E8B5BE ] C:\Windows\System32\drivers\MBAMSwissArmy.sys
18:02:28.0626 0x12b4 C:\Windows\System32\drivers\MBAMSwissArmy.sys - ok
18:02:28.0631 0x12b4 [ D485D1BE97777617B186FC8095F58421, 6F4947E651D1D8FA4DA006AE874E91D5D87813BA84EE71C91FF6F92833B921FF ] C:\Windows\servicing\CbsApi.dll
18:02:28.0631 0x12b4 C:\Windows\servicing\CbsApi.dll - ok
18:02:28.0636 0x12b4 [ DB70FE36AC8F594E9E69479C076BADB8, 839D46AEE1407409194AB7B34AC66F0F6EA299BA89680CD8DA8F7729D8FC9E4E ] C:\Windows\System32\HelpPaneProxy.dll
18:02:28.0636 0x12b4 C:\Windows\System32\HelpPaneProxy.dll - ok
18:02:28.0638 0x12b4 [ 49003B357D101CDC474937437ECF5ABC, D3EC570D616DC39FE6BF02DA1CD6C30CD07C27CC5B4B6FD6DACB5D8A4F1596A6 ] C:\Windows\System32\drivers\vwifimp.sys
18:02:28.0638 0x12b4 C:\Windows\System32\drivers\vwifimp.sys - ok
18:02:28.0641 0x12b4 [ 9F522B2708CAB181C0F137ABBCD1DE2E, 498B73A45A4301C8045109621E0831DA806C4D3AEDED63DF81979D36D0284BA7 ] C:\Program Files (x86)\Malwarebytes Anti-Malware\7z.dll
18:02:28.0641 0x12b4 C:\Program Files (x86)\Malwarebytes Anti-Malware\7z.dll - ok
18:02:28.0646 0x12b4 [ 07AD88DF9EF73215458867EFC1BFFE9E, 8C659B6F31111C09448B68889623886658C96467E7E5C95C1714E18AD3924463 ] C:\Windows\System32\wbem\wmiprov.dll
18:02:28.0646 0x12b4 C:\Windows\System32\wbem\wmiprov.dll - ok
18:02:28.0648 0x12b4 [ AC0C9CEA1218DAB1994AF8B28E680BD9, 7C79144AD91C5B578B48DD6412884A58F4E6C23732612655A73486FC7BCE68A0 ] C:\Windows\System32\wlaninst.dll
18:02:28.0648 0x12b4 C:\Windows\System32\wlaninst.dll - ok
18:02:28.0651 0x12b4 [ 5A406C9C8E0880D3EABADC5DFD1ACDAE, D3228D81B30A37DDDBF2E9FECC8885404FB95DBD11C5F55A425B27BD361BC2C1 ] C:\Windows\System32\wwaninst.dll
18:02:28.0651 0x12b4 C:\Windows\System32\wwaninst.dll - ok
18:02:28.0656 0x12b4 [ 198803E5E93E29967DFB0BCFD0186151, 72C3B0FA35578A71E9988FA31A7AD91A9CF31A6BA6EC00EA1F153E99277807BF ] C:\Windows\System32\spfileq.dll
18:02:28.0656 0x12b4 C:\Windows\System32\spfileq.dll - ok
18:02:28.0658 0x12b4 [ A42F2C1EB3B66C54FB3C7B79D30C1A6D, A63836DB3B01835DC1311526A95198D6EBCCB1DC9DDAFBC38EC36C128CDB98B9 ] C:\Windows\System32\netshell.dll
18:02:28.0658 0x12b4 C:\Windows\System32\netshell.dll - ok
18:02:28.0661 0x12b4 [ 711726A65821211AC12F21EA8B7CBE83, 88B7F2575D022F436B2DD31D32536E7FD895C6A7C55C08F68C699DEF716E0749 ] C:\Program Files\Intel\WiFi\bin\P2PSupplicant.dll
18:02:28.0661 0x12b4 C:\Program Files\Intel\WiFi\bin\P2PSupplicant.dll - ok
18:02:28.0666 0x12b4 [ 42A93F9F75F2334631861C3106792761, 6C0831DB1DA93D9B7AFA2C7B4AD6B5E3A558DFD8A53CD79A46709851450A6671 ] C:\Program Files (x86)\Samsung\Easy Settings\WLANStartup.exe
18:02:28.0666 0x12b4 C:\Program Files (x86)\Samsung\Easy Settings\WLANStartup.exe - ok
18:02:28.0668 0x12b4 [ E629F1A051C82795DDFFD3E8D4855811, 6E4DFFEAB2795C98EA6DCAF10EA6D97413D0F8CA0C04869CB20B74FF4D6FE679 ] C:\Windows\System32\dimsjob.dll
18:02:28.0671 0x12b4 C:\Windows\System32\dimsjob.dll - ok
18:02:28.0673 0x12b4 [ 35CB97CBC3EDC463418ED4997AAB29B6, EE60EABE2D87CEDD68FB8985B6C5D70930015FB2B8DB9FDCB4044587BC6ECA4C ] C:\Windows\System32\pautoenr.dll
18:02:28.0673 0x12b4 C:\Windows\System32\pautoenr.dll - ok
18:02:28.0676 0x12b4 [ 94DFBB481BF51158B216E23C5C1C9D6E, 0199086A70B9B63E48A7A15C8AE5442E9C6BC0173BD80A104DE1BE6A6C25F202 ] C:\Windows\System32\certcli.dll
18:02:28.0676 0x12b4 C:\Windows\System32\certcli.dll - ok
18:02:28.0681 0x12b4 [ 263B26106606A010CF877472B535E4BB, 43ECE89E428D2BB34244894BEBA1B946B0767649D15B1C715223E4E471A9E504 ] C:\Windows\System32\CertEnroll.dll
18:02:28.0681 0x12b4 C:\Windows\System32\CertEnroll.dll - ok
18:02:28.0683 0x12b4 [ 8E01332CC4B68BC6B5B7EFFE374442AA, A4AD1D2FD3EC2F26949DBBC388F9FFF3713AD7EB4E9220AF817EBB5223E467C6 ] C:\Windows\SysWOW64\oleacc.dll
18:02:28.0683 0x12b4 C:\Windows\SysWOW64\oleacc.dll - ok
18:02:28.0688 0x12b4 [ B010CF886420EE29C2C276646721D255, CBCD032D679ADE3A9942A1D116648D6A9ECC71F66F8630629E724E5EE23F9F73 ] C:\Windows\SysWOW64\wlanapi.dll
18:02:28.0688 0x12b4 C:\Windows\SysWOW64\wlanapi.dll - ok
18:02:28.0691 0x12b4 [ 1D6A771D1D702AE07919DB52C889A249, E5F3378AC40AEE6114EEAF3BF11DC1059466891CAE353E80C08622A60485C954 ] C:\Windows\SysWOW64\wlanutil.dll
18:02:28.0691 0x12b4 C:\Windows\SysWOW64\wlanutil.dll - ok
18:02:28.0696 0x12b4 [ 1EBE9524683C7C4EED8B8BC93FB6FBCC, 78AF098E270EDE62466557091F14B2D37BDAB488F02E7CC769251FD17C02BA4A ] C:\Windows\SysWOW64\fltLib.dll
18:02:28.0696 0x12b4 C:\Windows\SysWOW64\fltLib.dll - ok
18:02:28.0698 0x12b4 [ 8E5BCAF663844CAB2F27F9EBACF9577A, DD050C838C5FE43CB127B8880AD7C293D76268FFE27BC0AD28D83F1FFC884EAA ] C:\Program Files (x86)\Samsung\Easy Software Manager\SWMAgent.exe
18:02:28.0698 0x12b4 C:\Program Files (x86)\Samsung\Easy Software Manager\SWMAgent.exe - ok
18:02:28.0703 0x12b4 [ 70A1D465390C393AA118D9764E065B06, 9CF967E76E5D6F3BE7E3A11EBF53F9AC4B3EF88432D338331EC7522FE8C11F10 ] C:\Windows\System32\apisetschema.dll
18:02:28.0703 0x12b4 C:\Windows\System32\apisetschema.dll - ok
18:02:28.0708 0x12b4 [ F76F099A26875E1D2B96546662A7824D, 3EE2D4DA1CAE81BD94325354421FC874BEFE41C62B69FD75F7F8C0C4E5C277CA ] C:\Program Files (x86)\Samsung\Easy Software Manager\SWMDBBrocker.dll
18:02:28.0708 0x12b4 C:\Program Files (x86)\Samsung\Easy Software Manager\SWMDBBrocker.dll - ok
18:02:28.0713 0x12b4 [ 15E8ABC06843672955CE26A009533BAD, E7221B7DE9DB45447C68E79C6BFD064713C5974F7E79925BD7DEEF71F73F3E83 ] C:\Windows\System32\drivers\mwac.sys
18:02:28.0713 0x12b4 C:\Windows\System32\drivers\mwac.sys - ok
18:02:28.0716 0x12b4 [ 045C408170B3B2390D26B8ED6B803A26, ACF9EF28130210718D1B0D3BCE3858FA1BD1DA103489F46B839FE41C76F1C851 ] C:\Windows\System32\en-US\taskhost.exe.mui
18:02:28.0716 0x12b4 C:\Windows\System32\en-US\taskhost.exe.mui - ok
18:02:28.0721 0x12b4 [ 58A0CDABEA255616827B1C22C9994466, 4FE1140AA8D3995579DE8CDF4ECAD1978804D05351EABB4079A63B303EF1B451 ] C:\Windows\System32\NapiNSP.dll
18:02:28.0721 0x12b4 C:\Windows\System32\NapiNSP.dll - ok
18:02:28.0723 0x12b4 [ 613C8CE10A5FDE582BA5FA64C4D56AAA, 30507B6BA79E1A271B07BBA58B4FF463678BE0960266A1D5E88031E932D768B6 ] C:\Windows\System32\pnrpnsp.dll
18:02:28.0723 0x12b4 C:\Windows\System32\pnrpnsp.dll - ok
18:02:28.0726 0x12b4 [ 37160C0C4302E410F0B806CD2DD963D8, 05B409B7108CE33928CFD0D3F452831CD4D650FE7328BF8A563116B06402641F ] C:\Windows\System32\en-US\setupapi.dll.mui
18:02:28.0726 0x12b4 C:\Windows\System32\en-US\setupapi.dll.mui - ok
18:02:28.0731 0x12b4 [ 2E2072EB48238FCA8FBB7A9F5FABAC45, AC70B9FC24847EEC2E18008F2894DCDAC19A9C90D5D88729326E493CA524F5C3 ] C:\Windows\System32\winrnr.dll
18:02:28.0731 0x12b4 C:\Windows\System32\winrnr.dll - ok
18:02:28.0733 0x12b4 [ C00DB14550E4BD49737F311C644E45FF, 7085C47DADEED82B6F98ED3903197D76B648E9D6CC67D40C789E236264D9A0DC ] C:\Windows\System32\wmi.dll
18:02:28.0733 0x12b4 C:\Windows\System32\wmi.dll - ok
18:02:28.0738 0x12b4 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] C:\Windows\System32\QAGENTRT.DLL
18:02:28.0738 0x12b4 C:\Windows\System32\QAGENTRT.DLL - ok
18:02:28.0743 0x12b4 [ 012787CEB35505EB78DF82E0A0072888, FE082EF9F8462589F8C8BEEFB1D10AB06E1E3D6F4494CABF34097328C109C03E ] C:\Windows\System32\browcli.dll
18:02:28.0743 0x12b4 C:\Windows\System32\browcli.dll - ok
18:02:28.0746 0x12b4 [ C4BFE4B61086416B0529212F92BCE081, A5EE6FB81229885C7A4A4EF0A9C3E9EE9E7F85C1EDE9BEEE236EB0503093D8F3 ] C:\Windows\System32\schedcli.dll
18:02:28.0746 0x12b4 C:\Windows\System32\schedcli.dll - ok
18:02:28.0751 0x12b4 [ FB10715E4099AF9FA389C71873245226, 6A4CB43880B822A0C4714D6E52EB3EB2CE1E69C3AA9CA65EAAD6B131AE43F274 ] C:\Windows\System32\timedate.cpl
18:02:28.0751 0x12b4 C:\Windows\System32\timedate.cpl - ok
18:02:28.0753 0x12b4 [ E6F0F82788E8BD0F7A616350EFA0761C, 13091DCB3E3F4F52C3FF210E93AAF1DCE142CFC09F671AEAC5B922393B23E67B ] C:\Windows\System32\actxprxy.dll
18:02:28.0753 0x12b4 C:\Windows\System32\actxprxy.dll - ok
18:02:28.0758 0x12b4 [ 23B001185B7C3CB1F4BDEB143E6B45B7, AB3A5AB346F6353B43B06FBE20B7785DA988975E2C8B73A6588F107FFAAACC47 ] C:\Windows\System32\shdocvw.dll
18:02:28.0758 0x12b4 C:\Windows\System32\shdocvw.dll - ok
18:02:28.0763 0x12b4 [ A0A65D306A5490D2EB8E7DE66898ECFD, CE5DA408F4EDD5E81CE0925867F03C9A35172CF1571FE4C4C052E45AB69822BB ] C:\Windows\System32\linkinfo.dll
18:02:28.0763 0x12b4 C:\Windows\System32\linkinfo.dll - ok
18:02:28.0766 0x12b4 [ 661CEEDE98A2E0E5CDD7DE239EB38353, 3F8A23FD9CC3516A9366235662942B942A64A4264F35BFFD339D1B054AD1080E ] C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll
18:02:28.0766 0x12b4 C:\PROGRA~2\WIC4A1~1\MESSEN~1\msgslang.dll - ok
18:02:28.0771 0x12b4 [ 2BCBA6052374959A30BD7948444DBB79, 46224A2B729026FEEBC3C6A09E69919D477097848DB2CA0C2F5B166CDF379660 ] C:\Windows\System32\gameux.dll
18:02:28.0771 0x12b4 C:\Windows\System32\gameux.dll - ok
18:02:28.0776 0x12b4 [ E3ECF5FFE3DEDF61DC6877B6A99ACBBF, 2944FE9035882830799F18B7A98112BA66F16994694CA0CFFC77306775F5EDB2 ] C:\Windows\SysWOW64\credssp.dll
18:02:28.0776 0x12b4 C:\Windows\SysWOW64\credssp.dll - ok
18:02:28.0778 0x12b4 [ 1EAC1A8CA6874BF5B15E2EFB9A9A7B86, E15ED4FEFC3010C213694331DDFDC03767682325C898D773AB243E2DC8B08461 ] C:\Windows\System32\msftedit.dll
18:02:28.0778 0x12b4 C:\Windows\System32\msftedit.dll - ok
18:02:28.0781 0x12b4 [ 2EBD0C5B090125AECF017C57344C45AB, 4FF8F2460115C60AD164EE0DC2079E1601B8AA21A1BA8033B7B731FAF85411B6 ] C:\Windows\System32\msls31.dll
18:02:28.0781 0x12b4 C:\Windows\System32\msls31.dll - ok
18:02:28.0786 0x12b4 [ 80041798F2F049259241393A2017DB02, 59B8913A129EC26FB111C2C614C0C7440D521F65BAF32E57CA48E34337C0DDEE ] C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
18:02:28.0786 0x12b4 C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll - ok
18:02:28.0788 0x12b4 [ 69754747274B76E7FAF287239333D7E6, A0BAEC1E56E4B1A17C0D41B317526AF5BB11E7E488C7016067A6229346A23B16 ] C:\Windows\System32\msiltcfg.dll
18:02:28.0788 0x12b4 C:\Windows\System32\msiltcfg.dll - ok
18:02:28.0793 0x12b4 [ 3B39F9D51E4D8BAABDA6518955B58C13, 64AE407FA65096D5483C31B14AAC7FA691A4736AEA1288DC6D4BCEE3A2CE8A6F ] C:\Windows\System32\msi.dll
18:02:28.0793 0x12b4 C:\Windows\System32\msi.dll - ok
18:02:28.0796 0x12b4 [ 4C2C4640BF23AAFCF90519E0F34436CE, 8ACCDA77C2DC5BE2DAED05134310122AFECC872A8D118612E55DD229BFE4D844 ] C:\Windows\System32\DeviceCenter.dll
18:02:28.0796 0x12b4 C:\Windows\System32\DeviceCenter.dll - ok
18:02:28.0801 0x12b4 [ A68ACDD128C173301FE03CC00A6834FD, BC5A3F2D48329B8F5260654C853587B931B56B5CA7CE2A1F954E0BD06C647286 ] C:\Windows\System32\igfxtray.exe
18:02:28.0801 0x12b4 C:\Windows\System32\igfxtray.exe - ok
18:02:28.0803 0x12b4 [ 24F4B480F335A6C724AF352253C5D98B, 011413B236CAD7B78CE0A0EEC3E3085D48C7576A3205D025BA6EBFDF590538E4 ] C:\Windows\System32\thumbcache.dll
18:02:28.0803 0x12b4 C:\Windows\System32\thumbcache.dll - ok
18:02:28.0808 0x12b4 [ 0F6E4A9E95A57D2F4D6F9F10A9D3AE66, 216A379A8B40F8B4A84955F6788985A35D07FA616C61981C5B606EE85B19258B ] C:\Windows\System32\hccutils.dll
18:02:28.0808 0x12b4 C:\Windows\System32\hccutils.dll - ok
18:02:28.0811 0x12b4 [ 9DD06F00898AA5CA7E24186EFC8E5E25, 51141D0D07DBC955B63281351D3F17163ACE9A5B08628EA1C82F33FD2913970E ] C:\Users\Scott\AppData\Local\Temp\{50586B4E-2CCF-4805-8DD8-60BC201D53EB}\{97A7C663-F3F6-46D1-BBBC-46230425DE4C}.tmp
18:02:28.0811 0x12b4 C:\Users\Scott\AppData\Local\Temp\{50586B4E-2CCF-4805-8DD8-60BC201D53EB}\{97A7C663-F3F6-46D1-BBBC-46230425DE4C}.tmp - ok
18:02:28.0813 0x12b4 [ 405F4D32D2185F1F1BD753D8EEAFFB3A, CAC42C3E09C43BE96592B670D70821386014DB22D8239A9CFB9E33E54FB5C3D5 ] C:\Windows\System32\networkexplorer.dll
18:02:28.0813 0x12b4 C:\Windows\System32\networkexplorer.dll - ok
18:02:28.0818 0x12b4 [ 91A7771934C0D9D2DA7699D25BB5B348, 154A6EB866AF22B38AEE8DB5A864653FEB15DED69DE26E5B602B7C5056CDDF72 ] C:\Users\Scott\AppData\Local\Temp\{50586B4E-2CCF-4805-8DD8-60BC201D53EB}\{6E8050B0-4279-485F-A639-09572E960022}.tmp
18:02:28.0818 0x12b4 C:\Users\Scott\AppData\Local\Temp\{50586B4E-2CCF-4805-8DD8-60BC201D53EB}\{6E8050B0-4279-485F-A639-09572E960022}.tmp - ok
18:02:28.0821 0x12b4 [ 0F438391192ADBE82407F19079309B31, 175222C78AE6B2707ABDF7612FE80534D9BFD5584088BB1858DC44C90358E0E7 ] C:\Windows\System32\hkcmd.exe
18:02:28.0821 0x12b4 C:\Windows\System32\hkcmd.exe - ok
18:02:28.0826 0x12b4 [ 80808656078CFCC32CF8BFEB0DD66279, 383F37599ABF16EEDEB2A60242DB7EDCC3D210A2A59DD61169047059F7041C5C ] C:\Users\Scott\AppData\Local\Temp\{50586B4E-2CCF-4805-8DD8-60BC201D53EB}\{557DE5D9-C3F4-4842-9F06-1D9C2C64E846}.tmp
18:02:28.0826 0x12b4 C:\Users\Scott\AppData\Local\Temp\{50586B4E-2CCF-4805-8DD8-60BC201D53EB}\{557DE5D9-C3F4-4842-9F06-1D9C2C64E846}.tmp - ok
18:02:28.0828 0x12b4 [ 4F9B7A0369D598CE305636122CA083E8, CD865805C60A1B6F0DDE7D5E595A5F76CA200A12B44838EE8270EC21A6996C06 ] C:\Windows\System32\igfxpers.exe
18:02:28.0828 0x12b4 C:\Windows\System32\igfxpers.exe - ok
18:02:28.0828 0x12b4 [ 1473768973453DE50DC738C2955FC4DD, 14BC5DA2442CB726ACC1F277DDBECCF5D61E3A0A3E083A55A0BB610191E35220 ] C:\Windows\System32\wdmaud.drv
18:02:28.0828 0x12b4 C:\Windows\System32\wdmaud.drv - ok
18:02:28.0828 0x12b4 [ DF471F11CC78BE02FE6BA15F2D94F65B, 9AC230DE58CE40E78AE6872BCF4778B69EEBF17E0E41B1301FF364ABD4737A78 ] C:\Users\Scott\AppData\Local\Temp\{50586B4E-2CCF-4805-8DD8-60BC201D53EB}\{16300D94-97FF-4207-A027-CFD861F1E4E3}.tmp
18:02:28.0828 0x12b4 C:\Users\Scott\AppData\Local\Temp\{50586B4E-2CCF-4805-8DD8-60BC201D53EB}\{16300D94-97FF-4207-A027-CFD861F1E4E3}.tmp - ok
18:02:28.0828 0x12b4 [ 0FD19BDDD2513874FF6903F717367795, DFAF9C33F993BA26FC84EF66ABC7C483E62762F7E1FC763605A75ACC2E8AA4EE ] C:\Users\Scott\AppData\Local\Temp\{50586B4E-2CCF-4805-8DD8-60BC201D53EB}\{A0D8EFCC-BBAC-4AAC-B81C-45ED709145A7}.tmp
18:02:28.0828 0x12b4 C:\Users\Scott\AppData\Local\Temp\{50586B4E-2CCF-4805-8DD8-60BC201D53EB}\{A0D8EFCC-BBAC-4AAC-B81C-45ED709145A7}.tmp - ok
18:02:28.0844 0x12b4 [ 8560FFFC8EB3A806DCD4F82252CFC8C6, CC27BC092369A89D6147B16568FEDEB68B584D5738CD686C31F7FAE22ED17B3B ] C:\Windows\System32\ksuser.dll
18:02:28.0844 0x12b4 C:\Windows\System32\ksuser.dll - ok
18:02:28.0844 0x12b4 [ DD88BBF87A43331A4E99E37F7BF59FDB, 872190F559FA0DD1F711E9FA101BA1AB6E6DE5ED0CCCE1AB7AFE45BC3B78A0F1 ] C:\Users\Scott\AppData\Local\Temp\{50586B4E-2CCF-4805-8DD8-60BC201D53EB}\{E3E90D22-8A76-4FC1-9244-9F8B427F1228}.tmp
18:02:28.0844 0x12b4 C:\Users\Scott\AppData\Local\Temp\{50586B4E-2CCF-4805-8DD8-60BC201D53EB}\{E3E90D22-8A76-4FC1-9244-9F8B427F1228}.tmp - ok
18:02:28.0844 0x12b4 [ DF5A8AB846BB8BC221A5D203FAEDDA6D, 7EC51AD50952256A55E044E5D3A3A57CE405C5C71032D692DB2EAF47A69EB7E7 ] C:\Windows\System32\igfxsrvc.exe
18:02:28.0844 0x12b4 C:\Windows\System32\igfxsrvc.exe - ok
18:02:28.0844 0x12b4 [ 1E53162B343E5B89A3B7DE2EDBD3BC54, 7E4CEEBF2C16DB7DB689EACED9499BCC4923E89262836E1D1BD1F60DFD991A5C ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
18:02:28.0844 0x12b4 C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe - ok
18:02:28.0859 0x12b4 [ DC220AE6F64819099F7EBD6F137E32E7, B8FE13B859FA83500DD95637FA6D4A5B8392C2A363E41D014D3B5374F636E1DE ] C:\Windows\System32\AudioSes.dll
18:02:28.0859 0x12b4 C:\Windows\System32\AudioSes.dll - ok
18:02:28.0859 0x12b4 [ 4261449C1CADA6B007E5C27522946D2B, 11E79D1C529E816CCCAC9266089C77A4DB44676CAEEE25C66D6DB420B18D3ACB ] C:\Users\Scott\AppData\Local\Temp\{50586B4E-2CCF-4805-8DD8-60BC201D53EB}\{BCD39D1B-B665-45C0-99AA-937B5F25115E}.tmp
18:02:28.0859 0x12b4 C:\Users\Scott\AppData\Local\Temp\{50586B4E-2CCF-4805-8DD8-60BC201D53EB}\{BCD39D1B-B665-45C0-99AA-937B5F25115E}.tmp - ok
18:02:28.0859 0x12b4 [ 1B7C3A37362C7B2890168C5FC61C8D9B, 03727930E5BB5F9D91BAB901FC9A2E3B795D68E2AEE6A2CC3477F356C45A9C54 ] C:\Windows\System32\msacm32.drv
18:02:28.0859 0x12b4 C:\Windows\System32\msacm32.drv - ok
18:02:28.0875 0x12b4 [ 6627AA675A5C1B0330487A02E23F0560, 256AE9BA4273D4247FFAD6099D5A4FC8E98EDB27293AC8CAF7A571EB3890FAA7 ] C:\Users\Scott\AppData\Local\Temp\{50586B4E-2CCF-4805-8DD8-60BC201D53EB}\{168A47AB-A517-489D-8E67-890A8D283DE2}.tmp
18:02:28.0875 0x12b4 C:\Users\Scott\AppData\Local\Temp\{50586B4E-2CCF-4805-8DD8-60BC201D53EB}\{168A47AB-A517-489D-8E67-890A8D283DE2}.tmp - ok
18:02:28.0875 0x12b4 [ 10AC5CE9F78DC281A1BBD9B8CC587B8A, 72288C0A88916D3C3828DBD948DBDB0928F26106319F8E60102D6C9004514D60 ] C:\Windows\System32\msacm32.dll
18:02:28.0875 0x12b4 C:\Windows\System32\msacm32.dll - ok
18:02:28.0875 0x12b4 [ 9110FFAD124283F37D38771BB60556AF, BB495FDF86B7C3DD7878C496090A624CE8FE68F61166C91A4C99EF1140F0AD23 ] C:\Windows\System32\dsound.dll
18:02:28.0875 0x12b4 C:\Windows\System32\dsound.dll - ok
18:02:28.0875 0x12b4 [ 8ABA3F7183EF6441F2A04E8057258215, 36F91B153BBB69C67F12D6E59A21A0B38AA1343D2BE69D872C39D7AC65BB22C7 ] C:\Windows\System32\igfxsrvc.dll
18:02:28.0875 0x12b4 C:\Windows\System32\igfxsrvc.dll - ok
18:02:28.0891 0x12b4 [ CA2A0750ED830678997695FF61B04C30, E84860CD97AA3C4565ABB2D5D406A5C42B1AD2D8BA1B8CF81FE564D91F15F976 ] C:\Windows\System32\midimap.dll
18:02:28.0891 0x12b4 C:\Windows\System32\midimap.dll - ok
18:02:28.0891 0x12b4 [ 08448F7C21003EA35219EE692186BD23, 015B8C596077D12FC2B12247589E5389A5C705C94F9DF22CF4D153AF23DF1EA0 ] C:\Program Files\Elantech\ETDCtrl.exe
18:02:28.0891 0x12b4 C:\Program Files\Elantech\ETDCtrl.exe - ok
18:02:28.0891 0x12b4 [ 723B834A07F7DF7DE4CEB637D57ACEA3, B42867045DD3FB7682CDBD133970421010F0F14125E4992C73657CABA4659250 ] C:\Users\Scott\AppData\Local\Temp\{50586B4E-2CCF-4805-8DD8-60BC201D53EB}\{B461CDAB-CEE8-4F3B-A8C4-2640763E7AC6}.tmp
18:02:28.0891 0x12b4 C:\Users\Scott\AppData\Local\Temp\{50586B4E-2CCF-4805-8DD8-60BC201D53EB}\{B461CDAB-CEE8-4F3B-A8C4-2640763E7AC6}.tmp - ok
18:02:28.0891 0x12b4 [ C1DE893FAF6D7F6CFB479A1F61835482, AD5FA3CE73777704C67C933691F1F068E1A7FF545F728B97574F9C33AC4BBC01 ] C:\Users\Scott\AppData\Local\Temp\{50586B4E-2CCF-4805-8DD8-60BC201D53EB}\{1A7DC278-5F73-4697-8E04-E6C61E3F7EBF}.tmp
18:02:28.0891 0x12b4 C:\Users\Scott\AppData\Local\Temp\{50586B4E-2CCF-4805-8DD8-60BC201D53EB}\{1A7DC278-5F73-4697-8E04-E6C61E3F7EBF}.tmp - ok
18:02:28.0906 0x12b4 [ E1B31A60ABFA6ADA34C6268017FE5F39, FE394D85DD8677EACA7969392109C9C604A3BB5202C41EF7AB5998FCCA6168D3 ] C:\Windows\System32\igfxdev.dll
18:02:28.0906 0x12b4 C:\Windows\System32\igfxdev.dll - ok
18:02:28.0906 0x12b4 [ C8560742F5E4C77A91A75C14D3583604, EDFFBCF84667C47621D78C3239DCC296AC5295249CCE01850AE2578EC59FF045 ] C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
18:02:28.0906 0x12b4 C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe - ok
18:02:28.0906 0x12b4 [ AE796055654387C7269039E1C4909CC6, E769CAEBC9A6E4A85FD19DD7D6FD498DDBB1B6DC539A6A5B0BE27892EAA74592 ] C:\Windows\System32\mbtleapi.dll
18:02:28.0906 0x12b4 C:\Windows\System32\mbtleapi.dll - ok
18:02:28.0906 0x12b4 [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\System32\rundll32.exe
18:02:28.0906 0x12b4 C:\Windows\System32\rundll32.exe - ok
18:02:28.0922 0x12b4 [ F7A256EC899C72B4ECDD2C02CB592EFD, 9C1AA9322E83CABB94AEA4375EAEB0C44700E1F33B8BE98649BA1DF4DDFAD326 ] C:\Windows\System32\bthprops.cpl
18:02:28.0922 0x12b4 C:\Windows\System32\bthprops.cpl - ok
18:02:28.0922 0x12b4 [ B782BD5438B7938E1CDD6E9AA88702DC, BA3E79ADD4F5688DABAE98EDE023348617CF0E9EB98314508BABDBFFC1D27C6B ] C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll
18:02:28.0922 0x12b4 C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll - ok
18:02:28.0922 0x12b4 [ 5EDBB34736DD7AC1A73CF8792A835E10, 15E87C449AAF2095273341DD9355D8DF2690340D1DEFAF0DFF034F1CDF4316F8 ] C:\Windows\System32\AudioEng.dll
18:02:28.0922 0x12b4 C:\Windows\System32\AudioEng.dll - ok
18:02:28.0922 0x12b4 [ 0EF2A6818FAE466418BF96A67B49FA13, 61753D230C3E17F741BA4EF0CD9E69D9AF6DA1279852AF7F8AC854F31A254881 ] C:\Windows\System32\igfxrenu.lrc
18:02:28.0922 0x12b4 C:\Windows\System32\igfxrenu.lrc - ok
18:02:28.0922 0x12b4 [ 105CFE016CCB20175BEACEC146F175AB, BA21F40CDBF159EE4EACCBFB2A7D20EB9E1C2758883AF089A8E53EE478002E83 ] C:\Windows\System32\IccLibDll_x64.dll
18:02:28.0937 0x12b4 C:\Windows\System32\IccLibDll_x64.dll - ok
18:02:28.0937 0x12b4 [ 9F7C4732521C9BFB08F915D5953CF94A, 567E0E7D471C10B49B056BCD94E7E90AAC58CF4589E83CB0F1C9F616A7587E24 ] C:\Windows\System32\igfxress.dll
18:02:28.0937 0x12b4 C:\Windows\System32\igfxress.dll - ok
18:02:28.0937 0x12b4 [ 423E9561F2B0EF8AC08F5BE5C3377CA7, B399097EB2F91FE3246D201FF1476609D67F9F1B2463CDA79043780E3F65E690 ] C:\Windows\System32\mfc100u.dll
18:02:28.0937 0x12b4 C:\Windows\System32\mfc100u.dll - ok
18:02:28.0937 0x12b4 [ C212A43AA83A717AD38505F23ACDCB33, 52BFF0FB72D2C4543ECB2C2F6E1DA63E548BAFCE553EECBB18F287AC2CF5EF28 ] C:\Windows\SysWOW64\msi.dll
18:02:28.0937 0x12b4 C:\Windows\SysWOW64\msi.dll - ok
18:02:28.0937 0x12b4 [ C1395286B822E306B4FE1568A8A77813, 0642B6C793BE0EED5E7D1D2533FC5A01417C50040FC60A8E89BD97CE4A119388 ] C:\Windows\System32\AUDIOKSE.dll
18:02:28.0937 0x12b4 C:\Windows\System32\AUDIOKSE.dll - ok
18:02:28.0953 0x12b4 [ 102CF6879887BBE846A00C459E6D4ABC, A4C51C79CF95D5C79DCEFB02946A09A987FEAF83CE2EE1BA7677EBA90869AC80 ] C:\Windows\SysWOW64\riched20.dll
18:02:28.0953 0x12b4 C:\Windows\SysWOW64\riched20.dll - ok
18:02:28.0953 0x12b4 [ 850BD2D2D9CB5894935C3B6333CAD6FD, AB1EE5FD5E2F1CC927C3EA92E71C91ACA566E69622D47AE780DA391B7C30DDD6 ] C:\Windows\System32\riched20.dll
18:02:28.0953 0x12b4 C:\Windows\System32\riched20.dll - ok
18:02:28.0953 0x12b4 [ E2A17BCC08D92F42E08AF6BA2F93ABA7, 5FC9D47BF4B1094BECC0C0DDCD5CD4318DD3E4495D982F8785331616D5B82599 ] C:\Windows\SysWOW64\ExplorerFrame.dll
18:02:28.0953 0x12b4 C:\Windows\SysWOW64\ExplorerFrame.dll - ok
18:02:28.0953 0x12b4 [ F933885B8E2CB640710DCD48409A84C3, CEDE1623F836B57E9DF4BD73E24712CA2E3A65C7DD9BECA7195436D086990600 ] C:\Program Files\Elantech\ETDFavorite.dll
18:02:28.0953 0x12b4 C:\Program Files\Elantech\ETDFavorite.dll - ok
18:02:28.0969 0x12b4 [ 6E1F8165C365D35C8E3C045AF0CDD481, B861360D0A014265A0BEB4CC2FE31EA05AE95120E8B07820C13A044D64C00E2B ] C:\Windows\SysWOW64\duser.dll
18:02:28.0969 0x12b4 C:\Windows\SysWOW64\duser.dll - ok
18:02:28.0969 0x12b4 [ 9FD9A3349AFA3EE4B2A0589176CF1D0E, A569926CC9A2BA6741517EFC60C47112B142EC50DEE4AA689252E73B00ED8D86 ] C:\Program Files (x86)\Intel\Bluetooth\blesvcs.dll
18:02:28.0969 0x12b4 C:\Program Files (x86)\Intel\Bluetooth\blesvcs.dll - ok
18:02:28.0969 0x12b4 [ 75BF98A1AFFFBF49229580811BCD86D2, E0F066B5FCD516B2A3C401599C36287D891884F9E0AC98D0C81EE1E0A6A16B63 ] C:\Windows\System32\RtkAPO64.dll
18:02:28.0969 0x12b4 C:\Windows\System32\RtkAPO64.dll - ok
18:02:28.0969 0x12b4 [ 0805289E121F3E3C458C970B08314EB2, D9B448A04C09F525F599D0369CF9A197F471AABDA0A97201760C46D2EB8F3CDE ] C:\Windows\System32\RtkCfg64.dll
18:02:28.0969 0x12b4 C:\Windows\System32\RtkCfg64.dll - ok
18:02:28.0969 0x12b4 [ EE06B85BC69F18826302348A2AD089E0, 417205797CC9F6C986A863A61179784D9ADCAF1961EF8A4D9042D73C5A86509A ] C:\Windows\SysWOW64\dui70.dll
18:02:28.0969 0x12b4 C:\Windows\SysWOW64\dui70.dll - ok
18:02:28.0987 0x12b4 [ 5FFCF94A88340EA54C97B983C050D7AB, C9F0D1DF04CA22B7675CD1072B7C1235824F2CF7266423C6121342F270D8248B ] C:\Program Files\Elantech\ETDApix.dll
18:02:28.0987 0x12b4 C:\Program Files\Elantech\ETDApix.dll - ok
18:02:28.0989 0x12b4 [ 6F7D1601DA55BBE5C7A79E01E236D7B9, 4B048B1F4FECE72E7A7ADA3838068EB199CBB9A8F9C7A0EA87DDCCB3F14E15BF ] C:\Windows\System32\KAAPORT64.dll
18:02:28.0989 0x12b4 C:\Windows\System32\KAAPORT64.dll - ok
18:02:28.0992 0x12b4 [ 04CB7C8FDC6D9640DD82A527208F72C4, 0F8A327B0234A29EAB1F03D9102A3DF7DB4515BF580163198C5A8C174C98DE4F ] C:\Windows\System32\UIAnimation.dll
18:02:28.0992 0x12b4 C:\Windows\System32\UIAnimation.dll - ok
18:02:28.0994 0x12b4 [ 6F3C559B82F2912354BE5B098744CC8C, EB64E5C02C81588921A65194E1256E80699A1317E7D9A57395CD38C2639C8B08 ] C:\Windows\System32\WMALFXGFXDSP.dll
18:02:28.0994 0x12b4 C:\Windows\System32\WMALFXGFXDSP.dll - ok
18:02:28.0999 0x12b4 [ 919001D2BB17DF06CA3F8AC16AD039F6, 5169ACFBE9E9D4C4012773ECDD28231C952675EF0C272A40F226E7B5D671B18B ] C:\Windows\SysWOW64\sxs.dll
18:02:28.0999 0x12b4 C:\Windows\SysWOW64\sxs.dll - ok
18:02:29.0002 0x12b4 [ ED409CBF5372DA4B0273463B8D2E16A7, F799ABF3845A1496098B38B3CF3988F5CFF2DF5DCD72F82527E73DFDBB1368E9 ] C:\Program Files\Elantech\ETDCmds.dll
18:02:29.0002 0x12b4 C:\Program Files\Elantech\ETDCmds.dll - ok
18:02:29.0004 0x12b4 [ 54B5DCD55B223BC5DF50B82E1E9E86B1, 025294DD69A421FE4EACAA463F8CB797610D8F3A7A3C61656AE83D0CEE07A9BF ] C:\Windows\System32\mfplat.dll
18:02:29.0004 0x12b4 C:\Windows\System32\mfplat.dll - ok
18:02:29.0007 0x12b4 [ 091210450CA7CED08F360D9D7FEC5D11, 52298A6FE7DCF5EA484E6A1CBE48E2B1106D006E18F2278CB38AAAB10BB905BD ] C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
18:02:29.0007 0x12b4 C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe - ok
18:02:29.0012 0x12b4 [ 9CBF37B12B1D16901039F29F300A3804, 62F77CAB31740C2EDA1DDB332D2AF8AC357F810206368ADFB0DDC9B1DF7287E2 ] C:\Program Files\Elantech\ETDCtrlHelper.exe
18:02:29.0012 0x12b4 C:\Program Files\Elantech\ETDCtrlHelper.exe - ok
18:02:29.0014 0x12b4 [ B0F8CCA08DBC392442E27377B98DD0CD, D76D5897EFE57BD3897F3ACD44A85003BD412E9C0CAF1C78D18137C32327A399 ] C:\Windows\System32\consent.exe
18:02:29.0014 0x12b4 C:\Windows\System32\consent.exe - ok
18:02:29.0019 0x12b4 [ CA1DC0FFE7DD4D633421B8BC39ED5FFD, 76623A962E575925201B6B4C324E8789D0CB8928984A12EE6395E48BF8CEC78F ] C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
18:02:29.0019 0x12b4 C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe - ok
18:02:29.0024 0x12b4 [ 0E85C11F8850D524B02181C6E02BA9AE, 8703566931067CCF949E9779E4D328DD21210329DD687459300C83DDD06390A8 ] C:\Windows\SysWOW64\dsound.dll
18:02:29.0024 0x12b4 C:\Windows\SysWOW64\dsound.dll - ok
18:02:29.0027 0x12b4 [ 08DFDBD2FD4EA951DC46B1C7661ED35A, D926530C659DDAF80770663F46F1EFD94FFB4AAB475C4E3367CB531AF4A734E1 ] C:\Windows\SysWOW64\powrprof.dll
18:02:29.0027 0x12b4 C:\Windows\SysWOW64\powrprof.dll - ok
18:02:29.0029 0x12b4 [ C3761661C17C2248A9379A8FB89E3DE1, CE3477FA2B4058EB80739E0161FE957545F13CF86D313F6422732901D35F75F2 ] C:\Windows\System32\stobject.dll
18:02:29.0029 0x12b4 C:\Windows\System32\stobject.dll - ok
18:02:29.0032 0x12b4 [ F832EEEA97CDDA1AF577E721F652A0D1, EBBB7CA199BA4DF231123922BD310D43DE0104C6185B70FE0281B938D5336F2E ] C:\Windows\System32\batmeter.dll
18:02:29.0032 0x12b4 C:\Windows\System32\batmeter.dll - ok
18:02:29.0034 0x12b4 [ 2D2A6EC8EAD30EC3ACE2FD6FB1B3E122, E7EA375A3BDE8FC764CB09524344370B9EE25F98AD6C83E6F37A569EB8D277D6 ] C:\Windows\System32\prnfldr.dll
18:02:29.0034 0x12b4 C:\Windows\System32\prnfldr.dll - ok
18:02:29.0037 0x12b4 [ 42A9CB6906D9A8BEDC83B57163E62924, E18522D3137653140757829EFBFCE624A5BAA5842E2BBA10B9E5AB6C84BE49E1 ] C:\Windows\System32\DXP.dll
18:02:29.0037 0x12b4 C:\Windows\System32\DXP.dll - ok
18:02:29.0039 0x12b4 [ 2BC7C9FD0A9F2C9AFC373F3AD1EE3891, 0A82A475301202791A7C10F978F952EAB7DB146A702D4EA67E24E2C98BC19638 ] C:\Windows\System32\Syncreg.dll
18:02:29.0039 0x12b4 C:\Windows\System32\Syncreg.dll - ok
18:02:29.0044 0x12b4 [ C836175870E00ACC546066632E15BD10, 4347F3319C26DA1C38F395C74DBD67AF886149C8F29EDE765DD96C8480A3054A ] C:\Windows\ehome\ehSSO.dll
18:02:29.0044 0x12b4 C:\Windows\ehome\ehSSO.dll - ok
18:02:29.0047 0x12b4 [ E7368F0A8D19445EAF5C5D0DBB8B8DAB, CF9082360E32A7C3E13A67AC2C6192F4A76870D43DA9FF2936993A637F712761 ] C:\Windows\System32\AltTab.dll
18:02:29.0047 0x12b4 C:\Windows\System32\AltTab.dll - ok
18:02:29.0049 0x12b4 [ C8FDF0FA9E97E2FAAF3F814716AAA881, DD24A1CAB44D943B0E1A795A347AD25D9305FC7F012A2566A6A14BD47221831F ] C:\Windows\System32\WPDShServiceObj.dll
18:02:29.0049 0x12b4 C:\Windows\System32\WPDShServiceObj.dll - ok
18:02:29.0052 0x12b4 [ E0B340996A41C9A75DFA3B99BBA9C500, D029AD8ABBD2267B1E44DF5172B93C3F832B4C21F930F5512C24E800F5CE4F8B ] C:\Windows\System32\SearchIndexer.exe
18:02:29.0052 0x12b4 C:\Windows\System32\SearchIndexer.exe - ok
18:02:29.0054 0x12b4 [ 10F815BE90A66AAFC6C713D1BD626064, 01139FC04BC53594296F6A0E16B8D20B940F64BC8119FE7705C03C4947958F39 ] C:\Windows\System32\pnidui.dll
18:02:29.0054 0x12b4 C:\Windows\System32\pnidui.dll - ok
18:02:29.0059 0x12b4 [ 589DF683A6C81424A6CECE52ABF98A50, 8CE0D07B2FC1F1BF8C07434FAFCDC63FDD3B75007C3B2EED130DB69D2D16E90A ] C:\Windows\System32\tquery.dll
18:02:29.0059 0x12b4 C:\Windows\System32\tquery.dll - ok
18:02:29.0062 0x12b4 [ B9F0A4020AA98B7A20287BF7FE99A1FD, 21138F161EEEA46198890C7A2D073F2C82829E15676131BDAD9F237EDC7477CD ] C:\Windows\System32\QUTIL.DLL
18:02:29.0062 0x12b4 C:\Windows\System32\QUTIL.DLL - ok
18:02:29.0064 0x12b4 [ 7568CC720ACE4D03B84AF97817E745EF, 7155144CB0B260B969C398A36BC277C97BEADB5DB137D19A4F7E5AF61C3E24D4 ] C:\Windows\System32\mssrch.dll
18:02:29.0064 0x12b4 C:\Windows\System32\mssrch.dll - ok
18:02:29.0069 0x12b4 [ 8569E35D00F45972E506502EEE622BA4, 01FE851C03DB88C8373099C279F995A559D962B08932E193032FA3EAD522FB01 ] C:\Windows\System32\srchadmin.dll
18:02:29.0069 0x12b4 C:\Windows\System32\srchadmin.dll - ok
18:02:29.0072 0x12b4 [ 3121A79D13A61562BE9CC902CD46B542, 00A5833A48338A4A9A5530844924AF4F1FAB618DA46D7EBBC6E2165C32ED376C ] C:\Windows\System32\msidle.dll
18:02:29.0072 0x12b4 C:\Windows\System32\msidle.dll - ok
18:02:29.0074 0x12b4 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] C:\Windows\System32\netman.dll
18:02:29.0074 0x12b4 C:\Windows\System32\netman.dll - ok
18:02:29.0079 0x12b4 [ ACE1BB07E0377E37A2C514CD2EC119B1, A9AFA4774DFA875496764D6E541A6333A3ACD3C5D2BBEF753C2D80BA83B4AC15 ] C:\Windows\System32\mssprxy.dll
18:02:29.0079 0x12b4 C:\Windows\System32\mssprxy.dll - ok
18:02:29.0082 0x12b4 [ D2155709E336C3BC15729EB87FEC6064, 682A84C0F2D892E7A6CEE4E5937B4799E352AAE3B71E7037F2A343373467443C ] C:\Windows\System32\rasdlg.dll
18:02:29.0082 0x12b4 C:\Windows\System32\rasdlg.dll - ok
18:02:29.0087 0x12b4 [ 92DBF0A4C9239169010FC6E07859C82E, 00FB2CF4420F0FFEF519AFE732A708CF249640121E2A891CAA164313ABD7F804 ] C:\Windows\System32\ActionCenter.dll
18:02:29.0087 0x12b4 C:\Windows\System32\ActionCenter.dll - ok
18:02:29.0092 0x12b4 [ C9FB9038B15036CA28CF0B4BE2BED9BD, 0F56384E798B3F725FFEFC6E31A980DA31F620DB847F601273EF19E8CE74A226 ] C:\Windows\System32\en-US\tquery.dll.mui
18:02:29.0092 0x12b4 C:\Windows\System32\en-US\tquery.dll.mui - ok
18:02:29.0094 0x12b4 [ F00AE7B953ABEF1B53FBBA187DFC8238, 6FFA160FB6821A725A7D81E1BECE1DE89E3E022B33E56A7468E2E0B4C8B2AE31 ] C:\Windows\System32\webcheck.dll
18:02:29.0094 0x12b4 C:\Windows\System32\webcheck.dll - ok
18:02:29.0104 0x12b4 [ BA56C68CCB912C4C08C97DD32C47AD31, 8B70D9BC097C8D1A4E12773B3D57E78E969C7C3ECE1DF0E4576109A4F10E0AA6 ] C:\Windows\System32\ieframe.dll
18:02:29.0104 0x12b4 C:\Windows\System32\ieframe.dll - ok
18:02:29.0107 0x12b4 [ 9108540E866F75C7AF2B91DD921A8091, 7208C8E05E818781D7F2703B86848FC90651E0D8BE10362863250F2283CEC511 ] C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll
18:02:29.0107 0x12b4 C:\Windows\System32\api-ms-win-downlevel-shell32-l1-1-0.dll - ok
18:02:29.0112 0x12b4 [ 101797BA603D227946B4B5109867EB19, EBF2B48D1A4FE148F455EA32023ABC0D479215D48C7CE76E765F199CD3C80AF8 ] C:\Windows\System32\SyncCenter.dll
18:02:29.0112 0x12b4 C:\Windows\System32\SyncCenter.dll - ok
18:02:29.0114 0x12b4 [ F9AFD12BB4B1CFA5FCC0A5B37C604FD2, E8ACB693B1A78FAEF292111BE3F9B10BA95C76833C06C931A08EAAAE39A21334 ] C:\Windows\System32\dot3api.dll
18:02:29.0114 0x12b4 C:\Windows\System32\dot3api.dll - ok
18:02:29.0119 0x12b4 [ E4FCA0F99A41E460C84016DEFD31E6EF, 8EB14AF2025EADC7C86280E8417D8F286E8271B4F88B31696E33DFD72B3A0EF2 ] C:\Windows\System32\wlanhlp.dll
18:02:29.0119 0x12b4 C:\Windows\System32\wlanhlp.dll - ok
18:02:29.0124 0x12b4 [ 8130391F82D52D36C0441F714136957F, 1FD4FEE7CAF63E450F27729E07EA2A2F09288629FD872DBB6E8710B16D8DBD5D ] C:\Windows\System32\imapi2.dll
18:02:29.0124 0x12b4 C:\Windows\System32\imapi2.dll - ok
18:02:29.0127 0x12b4 [ 6A5C1A8AC0B572679361026D0E900420, B5E693B48B462E97738A3D4E58B60846159649EB15F4D11074B4BC107CC88562 ] C:\Windows\System32\hgcpl.dll
18:02:29.0127 0x12b4 C:\Windows\System32\hgcpl.dll - ok
18:02:29.0132 0x12b4 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] C:\Windows\System32\fdPHost.dll
18:02:29.0132 0x12b4 C:\Windows\System32\fdPHost.dll - ok
18:02:29.0137 0x12b4 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] C:\Windows\System32\FDResPub.dll
18:02:29.0137 0x12b4 C:\Windows\System32\FDResPub.dll - ok
18:02:29.0139 0x12b4 [ 171D7DB433314A868507C4326E8209DC, 254E0D9F99CE47104CF21D8E968D89D6A09B9CE47168E760BAB28AD5A1E9E6A3 ] C:\Windows\System32\fdWSD.dll
18:02:29.0139 0x12b4 C:\Windows\System32\fdWSD.dll - ok
18:02:29.0142 0x12b4 [ 8494E126F0B10180F3293AF861CE1F7A, 538B1F30423DB2398E611BC46C80150C090698E633BABF7362F7060DBF0C3064 ] C:\Windows\System32\mlang.dll
18:02:29.0142 0x12b4 C:\Windows\System32\mlang.dll - ok
18:02:29.0147 0x12b4 [ 6699A112A3BDC9B52338512894EBA9D6, 10888BB9C3799E1E8B010C0F9088CED376AAD63A509FCE1727C457B022CDC717 ] C:\Program Files\Windows Media Player\wmpnscfg.exe
18:02:29.0147 0x12b4 C:\Program Files\Windows Media Player\wmpnscfg.exe - ok
18:02:29.0152 0x12b4 [ A2E5B2D20954210DCE1A75A1FC8CC36D, 1EA240AC37ECA4EC3E542F9E6DF72753EBA1DF76CBA8691EC61ABCC51EE6FCB2 ] C:\Windows\System32\fdSSDP.dll
18:02:29.0152 0x12b4 C:\Windows\System32\fdSSDP.dll - ok
18:02:29.0154 0x12b4 [ 5DA219F57A9076FB6FBD3C9C3713A672, 274FE616625B336D81841FDC752C8053D4CD6926565B899760D298D145CBA1A3 ] C:\Windows\System32\WWanAPI.dll
18:02:29.0154 0x12b4 C:\Windows\System32\WWanAPI.dll - ok
18:02:29.0159 0x12b4 [ 62C7AACC746C9723468A8F2169ED3E85, 40E901F3EAFE52DF11D6BC4EF0E79F666EBDACE0B3C090CAD2358076E893EA47 ] C:\Windows\System32\wwapi.dll
18:02:29.0159 0x12b4 C:\Windows\System32\wwapi.dll - ok
18:02:29.0162 0x12b4 [ 12395E528456DFE82979ACFEA96D290C, CB2841A419A3051269944C30D29C57EC03E0D1DE6FCFE96C3E9D03D28FF9C7C1 ] C:\Program Files\Windows Media Player\en-US\wmpnscfg.exe.mui
18:02:29.0162 0x12b4 C:\Program Files\Windows Media Player\en-US\wmpnscfg.exe.mui - ok
18:02:29.0167 0x12b4 [ 6B851E682A36453E1B1EE297FFB6E2AB, A641D3FD9463C4788B45B8B5584EA4489C1F63A71B4B595AE85FF3482CD5EDA6 ] C:\Windows\System32\QAGENT.DLL
18:02:29.0167 0x12b4 C:\Windows\System32\QAGENT.DLL - ok
18:02:29.0169 0x12b4 [ C7494C67A6BF6FE914808E42F8265FEF, 3A3871983F2D9A57739C70365DC3F417D9BF02F5C0C4CC3272EA9F3D380EF962 ] C:\Program Files\Windows Media Player\wmpnssci.dll
18:02:29.0169 0x12b4 C:\Program Files\Windows Media Player\wmpnssci.dll - ok
18:02:29.0172 0x12b4 [ BCEA9AB347E53BC03B2E36BE0B8BA0EF, 868DEFB78767E91694E83F931725257DF3FF79A4BFED3B914D27F3493EB7A8D0 ] C:\Windows\System32\httpapi.dll
18:02:29.0172 0x12b4 C:\Windows\System32\httpapi.dll - ok
18:02:29.0177 0x12b4 [ 2A436796758BF2555A26C770FE8A6FEE, 9E42AF3A3CB05E323CBB7F93FE7C454CD251672C5D9F5E94909131A5D8F9204A ] C:\Windows\System32\fdProxy.dll
18:02:29.0177 0x12b4 C:\Windows\System32\fdProxy.dll - ok
18:02:29.0179 0x12b4 [ 8CBBB27369F9F07BC5E874E750EAF9D0, 4C4BEA5AD454692E0A56ACFC83C495CA44B7BB2393388A5582CE3EBE5D81E2E1 ] C:\Windows\System32\wmp.dll
18:02:29.0179 0x12b4 C:\Windows\System32\wmp.dll - ok
18:02:29.0184 0x12b4 [ AB272BBFB05A8585C3405EFA9F605774, 2E019FB20769BDBAAC5C55B0055602A5AAEC4F93494F4B2A686756ADA3B3D4E2 ] C:\Windows\System32\wmploc.DLL
18:02:29.0184 0x12b4 C:\Windows\System32\wmploc.DLL - ok
18:02:29.0189 0x12b4 [ CB924D3FCF27D35E1068DADEB403739F, E7592F8E39A1EF356D4C975CB17289CB1D7882A7B47F5F9B259F7383862FE63F ] C:\Windows\System32\en-US\wmploc.DLL.mui
18:02:29.0189 0x12b4 C:\Windows\System32\en-US\wmploc.DLL.mui - ok
18:02:29.0194 0x12b4 [ A9F3BFC9345F49614D5859EC95B9E994, 306467D280E99D0616E839278A4DB5BED684F002AE284C3678CABB5251459CB3 ] C:\Program Files\Windows Media Player\wmpnetwk.exe
18:02:29.0194 0x12b4 C:\Program Files\Windows Media Player\wmpnetwk.exe - ok
18:02:29.0199 0x12b4 [ 01C7F6D51C93148D2B74B34C4D29FD0E, 35A5CB6033BB140112AF7E9BD181EE3E3C0D7CD32418CED0EEE55883A1085EAA ] C:\Program Files\Windows Media Player\en-US\wmpnetwk.exe.mui
18:02:29.0199 0x12b4 C:\Program Files\Windows Media Player\en-US\wmpnetwk.exe.mui - ok
18:02:29.0202 0x12b4 [ 423982DD851406A52B6399DDB196C606, 5FFBA6D1E9398E7C5D18553EE1C485F59174013622332F7BD8D461F707F1EC93 ] C:\Windows\System32\wmdrmdev.dll
18:02:29.0202 0x12b4 C:\Windows\System32\wmdrmdev.dll - ok
18:02:29.0207 0x12b4 [ 2C1055E2C6D42753241FB2A129136994, A8E858B4CB8E1E13C7574330C703E0060AEE8B7B19B682F9AE5B4A02BDC659E2 ] C:\Windows\System32\drmv2clt.dll
18:02:29.0207 0x12b4 C:\Windows\System32\drmv2clt.dll - ok
18:02:29.0212 0x12b4 [ F7BEEFF93EEDF1F8C08597BB61AE4CD2, E21006A0A0E07E57E6DE4D1C92088B9C01F69BC6F7CDFBE4D5AF748363E4AF9D ] C:\Program Files\Internet Explorer\ieproxy.dll
18:02:29.0212 0x12b4 C:\Program Files\Internet Explorer\ieproxy.dll - ok
18:02:29.0217 0x12b4 [ FB4045578F5180BDB1963AB352B78548, 8E645A63436EE6CDDB78E6064AEB04ECE39208F760A3EF13A3F49FDF41505E21 ] C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
18:02:29.0217 0x12b4 C:\Windows\System32\api-ms-win-downlevel-shlwapi-l2-1-0.dll - ok
18:02:29.0222 0x12b4 [ 97A891E2BF7FDA830BCFC6269DA3F5E9, 7C8D68F0B0A7E4FF93820CC37D666FBA5400F8689860CFEB215E4A204F2C216B ] C:\Windows\System32\blackbox.dll
18:02:29.0222 0x12b4 C:\Windows\System32\blackbox.dll - ok
18:02:29.0224 0x12b4 [ 96DB78C9C50CEED9DA5050EFFEE272A2, 51CF3E1F96555A4E4B5BC0DE2598CE5A0199F495644A91C2105F25A5A4CF10E3 ] C:\Windows\System32\upnp.dll
18:02:29.0224 0x12b4 C:\Windows\System32\upnp.dll - ok
18:02:29.0227 0x12b4 [ F82327D36EA4DC51563283326E4D7784, EF13147F41FEF4A9181FB50E4A2A2CCED3C57B71A275A797CF58D9BF459F38E9 ] C:\Windows\System32\stdole2.tlb
18:02:29.0227 0x12b4 C:\Windows\System32\stdole2.tlb - ok
18:02:29.0232 0x12b4 [ 355A138ABDFD43FBABCAE3A1B06AB93D, 26015CE72D27E2F7FA7322203CDF236896A079F8325F1B24975CA12C57FD4B7B ] C:\Windows\System32\wmpps.dll
18:02:29.0232 0x12b4 C:\Windows\System32\wmpps.dll - ok
18:02:29.0237 0x12b4 [ C355096C37A19A4FC4A9176863C6D2DB, DF8083C15F13A49955E23EABB0B3951D7EAA5513B4E6C60DBCF2D6766A5DC37F ] C:\Windows\System32\en-US\FirewallAPI.dll.mui
18:02:29.0237 0x12b4 C:\Windows\System32\en-US\FirewallAPI.dll.mui - ok
18:02:29.0239 0x12b4 [ 07531B287890150E348BA7EB1FE76C36, A7578EDE61F968DE31D16C2AC4A75289E78BFA26946B65E6B7F680469496B2C7 ] C:\Windows\System32\en-US\KernelBase.dll.mui
18:02:29.0239 0x12b4 C:\Windows\System32\en-US\KernelBase.dll.mui - ok
18:02:29.0242 0x12b4 [ C746F3BF98E92FB137B5BD2B8B5925BD, 67A8990F3D491D149E65C90042909259793C65E671DC953FDA1F7590FAC23D9E ] C:\Windows\System32\FXSST.dll
18:02:29.0242 0x12b4 C:\Windows\System32\FXSST.dll - ok
18:02:29.0247 0x12b4 [ ECA6AC33BD9E441F7B47D173D715D268, 5B9017F80BD8C7823CFE1AB4C21D91388E1B31BF0D77058A98791D2FACA11EB6 ] C:\Windows\System32\msxml3.dll
18:02:29.0247 0x12b4 C:\Windows\System32\msxml3.dll - ok
18:02:29.0249 0x12b4 [ 0465A8CFDDB4FFDB569802A70B9443D5, 4A1C70F87D85CBB633E677217E559BF02A4A1B4AE281DB3F2FA82A4C76A3EA25 ] C:\Windows\System32\msxml3r.dll
18:02:29.0249 0x12b4 C:\Windows\System32\msxml3r.dll - ok
18:02:29.0254 0x12b4 [ 650CAEA856943E29F25A25D31E004B18, DCA63D2AF4C6F14B27EA006F200E58A5C13AC940A51947A40F668908A446CC4E ] C:\Windows\System32\FXSAPI.dll
18:02:29.0254 0x12b4 C:\Windows\System32\FXSAPI.dll - ok
18:02:29.0257 0x12b4 [ C8E8B8239FCF17BEA10E751BE5854631, CB869195E78AB613CEF50AE3B247F0E4E42F233A7AAF5B2BFC5ADEA2C45C5F8D ] C:\Windows\System32\FXSRESM.dll
18:02:29.0257 0x12b4 C:\Windows\System32\FXSRESM.dll - ok
18:02:29.0262 0x12b4 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] C:\Windows\System32\FXSSVC.exe
18:02:29.0262 0x12b4 C:\Windows\System32\FXSSVC.exe - ok
18:02:29.0264 0x12b4 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] C:\Windows\System32\ssdpsrv.dll
18:02:29.0264 0x12b4 C:\Windows\System32\ssdpsrv.dll - ok
18:02:29.0272 0x12b4 [ 0F16BEBA5BEA46511A73CF74356693BF, 17CE1CFCC6D84F9E4CAB6265533A87EAF37A5176488AA95D94C4EACC9B6A5066 ] C:\Program Files (x86)\Samsung\Easy Settings\SCCSpeedBoot.exe
18:02:29.0272 0x12b4 C:\Program Files (x86)\Samsung\Easy Settings\SCCSpeedBoot.exe - ok
18:02:29.0274 0x12b4 [ D7E546DAF03DEED037D50CDF96C7CF7F, CC21DDAD7847A63B73658C061426724861CD04064D508508FA3A4C4DF4EB1006 ] C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe
18:02:29.0274 0x12b4 C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe - ok
18:02:29.0279 0x12b4 [ 2E655BA36F7791C1A6DC2BF2F2E29B17, AFF6E85A8F5D42235F6FE301E0D413093613FE99E745F64857B91FD397215D73 ] C:\Windows\System32\en-US\TaskEng.exe.mui
18:02:29.0279 0x12b4 C:\Windows\System32\en-US\TaskEng.exe.mui - ok
18:02:29.0282 0x12b4 [ 487F44B08EFEAF5AD087878357B9403D, B02C99850940588D52B3E6DB30DB64582F294E0BD62101067BECFEA1483010C6 ] C:\Windows\SysWOW64\pdh.dll
18:02:29.0282 0x12b4 C:\Windows\SysWOW64\pdh.dll - ok
18:02:29.0289 0x12b4 [ 57DCA6CE6F6DE6DE818654693B339ADC, 3E90DC6539B37DFCA0680B6E5BA6FFAAC99A7257B26CEF2999E8C71B86E74C41 ] C:\Program Files (x86)\Samsung\Easy Settings\MovieColorEnhancer.exe
18:02:29.0289 0x12b4 C:\Program Files (x86)\Samsung\Easy Settings\MovieColorEnhancer.exe - ok
18:02:29.0292 0x12b4 [ C241F69831832B04B20D2632DFF8B900, C3849C234B060850E3B4449772C7DAF48390D27371716312EECF2F2925FD8E1B ] C:\Program Files (x86)\Samsung\Easy Settings\SUS.dll
18:02:29.0292 0x12b4 C:\Program Files (x86)\Samsung\Easy Settings\SUS.dll - ok
18:02:29.0297 0x12b4 [ 5AB7CCCEB94C3C9ECE35142CCC527B0D, 0D9D28492C505C4AD0FBE23E3C84690CEB5D577BFCF9F54B1FFC110E9389E385 ] C:\Program Files (x86)\Samsung\Easy Settings\EasySpeedUpManager.exe
18:02:29.0297 0x12b4 C:\Program Files (x86)\Samsung\Easy Settings\EasySpeedUpManager.exe - ok
18:02:29.0299 0x12b4 [ 2086EDCB57FB3D1317CBBF6F1D0CB49D, E0369D9C244D64891A5CB807B75BBFBF3E667E1C46545336D34FB86728A422A0 ] C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe
18:02:29.0299 0x12b4 C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe - ok
18:02:29.0302 0x12b4 [ 845A13B2CEE718E81562FE94EE762D7D, 74210A431E3CF6C1A68ABBA8896B44A4D41F8F849DDEDF0DE162B53BBAE9CE93 ] C:\Program Files (x86)\Samsung\Easy Settings\Sabi3.dll
18:02:29.0304 0x12b4 C:\Program Files (x86)\Samsung\Easy Settings\Sabi3.dll - ok
18:02:29.0307 0x12b4 [ 1498259FFF991A4135737080AA0679D1, 5D9D08A6338F84DCC87D217B9BE01531D11C0243F35D6E4B4CE8718F84624129 ] C:\Program Files (x86)\Samsung\Easy Settings\HookDllPS2.dll
18:02:29.0307 0x12b4 C:\Program Files (x86)\Samsung\Easy Settings\HookDllPS2.dll - ok
18:02:29.0309 0x12b4 [ 243974EC02F7AE49E4179C54624143AB, 755FA67F7BF10E3C6336788D297FBAA70F28F630852A43A78D3F7D7E3A7ECED0 ] C:\Windows\SysWOW64\MMDevAPI.dll
18:02:29.0309 0x12b4 C:\Windows\SysWOW64\MMDevAPI.dll - ok
18:02:29.0312 0x12b4 [ C940F2F5C60B3727C5F18840735B229C, EFC3F465FD6C570505C214A92644357ACD01B1843ED25B5FCCCE10533403485C ] C:\Windows\SysWOW64\AudioSes.dll
18:02:29.0312 0x12b4 C:\Windows\SysWOW64\AudioSes.dll - ok
18:02:29.0317 0x12b4 [ 081D5C1EE03B1A537B761FBAF6C5E6E0, 011527F9F18EE335273A4B320938AE2D7B57C39FD3E311609372AC79EABDC7A2 ] C:\Program Files (x86)\Samsung\Easy Settings\WinCRT.dll
18:02:29.0317 0x12b4 C:\Program Files (x86)\Samsung\Easy Settings\WinCRT.dll - ok
18:02:29.0322 0x12b4 [ 8B90A2D9FDC21854614BF99A3B92CE9F, B4EDC36019A2E0CA49B65948630F6859D7338DCAD773FF8D9F391D9C4D4864C1 ] C:\Program Files (x86)\Samsung\Easy Settings\SCCColorDll.dll
18:02:29.0322 0x12b4 C:\Program Files (x86)\Samsung\Easy Settings\SCCColorDll.dll - ok
18:02:29.0324 0x12b4 [ A3A2225177E5923B64A1DB9460576C35, 43C8AD3DCB9F1790E18991233738E92C7874412D67D1A915C41D25DF930B61B3 ] C:\Program Files (x86)\Samsung\Easy Settings\GPSTurboModeDLL.dll
18:02:29.0324 0x12b4 C:\Program Files (x86)\Samsung\Easy Settings\GPSTurboModeDLL.dll - ok
18:02:29.0329 0x12b4 [ EBB65A7811610951E6A98740D36448AC, BDA9A3B9075279F336C2290C9F597F00A991FF5BE3E993ACAED62B20DBD6F508 ] C:\Windows\System32\igfxext.exe
18:02:29.0329 0x12b4 C:\Windows\System32\igfxext.exe - ok
18:02:29.0334 0x12b4 [ 617611FBF31AF49761F9656D643DF48F, 31E939EBA37C2E0A41416D4792D92230936A0ED22E197C4EACBF93B310BF7558 ] C:\Windows\System32\igfxexps.dll
18:02:29.0334 0x12b4 C:\Windows\System32\igfxexps.dll - ok
18:02:29.0339 0x12b4 [ D2958325C1AE1AE37A83334C6229E3BC, D8263CB39A25447442B75A8D8E8111DF671D645DA90A33865C089DEDA9706904 ] C:\Windows\SysWOW64\actxprxy.dll
18:02:29.0339 0x12b4 C:\Windows\SysWOW64\actxprxy.dll - ok
18:02:29.0342 0x12b4 [ CCFCB0C9378D2D4EF3A67463A4504659, 5F924FE9E27944771EC4F0A78091193E07149B0C28B706265A13F3650433F4E2 ] C:\Windows\SysWOW64\igfxexps32.dll
18:02:29.0342 0x12b4 C:\Windows\SysWOW64\igfxexps32.dll - ok
18:02:29.0344 0x12b4 [ 9EE6996E3D4EDDFBE7477CFBD14E9774, 9611C104E9A3041D745684CB6015C48AB4A2375782FEB0BAE681F467AD58313E ] C:\Program Files (x86)\Samsung\Easy Settings\MobileAPset.exe
18:02:29.0344 0x12b4 C:\Program Files (x86)\Samsung\Easy Settings\MobileAPset.exe - ok
18:02:29.0349 0x12b4 [ 6FA41E0C86EF049A12C05CA4BBA8F9AF, D18758C5A33B4C596EA6E87A16B53D7CF68EA9586C7F11C9518577BC8D7CBC9B ] C:\Windows\SysWOW64\perfos.dll
18:02:29.0349 0x12b4 C:\Windows\SysWOW64\perfos.dll - ok
18:02:29.0354 0x12b4 [ C72CDAF53EC908044113F38264D5B396, 7AD820041F50F8FDB7A1E0BB628D3913F24319423A88808C6AB50F57D5221A3D ] C:\Program Files (x86)\Samsung\Easy Settings\ExpressCacheRun64.exe
18:02:29.0354 0x12b4 C:\Program Files (x86)\Samsung\Easy Settings\ExpressCacheRun64.exe - ok
18:02:29.0359 0x12b4 [ 5FC2D30C05487B480C2A154D5D281BA0, 51D856E6E6C4BC75E96BFE6F1CBD1E49A7D6E9C7C673963DDB03FF5504E5947F ] C:\Windows\SysWOW64\connect.dll
18:02:29.0359 0x12b4 C:\Windows\SysWOW64\connect.dll - ok
18:02:29.0362 0x12b4 [ 12118DA04F2E4BC739CE8A6AB24338EA, E94505C7EC80F858EE97FAD096CC8B4AAE06B278D057236E259F59CC9CE7B2CE ] C:\Windows\SysWOW64\console.dll
18:02:29.0362 0x12b4 C:\Windows\SysWOW64\console.dll - ok
18:02:29.0367 0x12b4 [ FA5C490197C97EC58CF751F8CE6439D3, B5C415DEDE4C4A45F1CB356A6DE4445CB153BF0A215683A6477D3A1AC54282FD ] C:\Windows\SysWOW64\convert.exe
18:02:29.0367 0x12b4 C:\Windows\SysWOW64\convert.exe - ok
18:02:29.0372 0x12b4 [ 92FB57D9D865019D26346EB13E15CD75, D3F8D5E60D2F92C4D819A042CDABB7273F1214071E48D6D5CCCC1FE7375AB158 ] C:\Windows\SysWOW64\CPFilters.dll
18:02:29.0372 0x12b4 C:\Windows\SysWOW64\CPFilters.dll - ok
18:02:29.0374 0x12b4 [ E9BB0CD09DA17C71FD1B9954D75AEEF7, FF5E2F04F1FD56FDD19368150B5750275F0A44E9EA9820C8087E84ECBBF45286 ] C:\Windows\SysWOW64\credui.dll
18:02:29.0374 0x12b4 C:\Windows\SysWOW64\credui.dll - ok
18:02:29.0379 0x12b4 [ 15CF85C3D904A7D8650164B0B831A318, 17EABFB88A164AA95731F198BD69A7285CC7F64ACD7C289062CD3979A4A2F5BF ] C:\Windows\SysWOW64\credwiz.exe
18:02:29.0379 0x12b4 C:\Windows\SysWOW64\credwiz.exe - ok
18:02:29.0384 0x12b4 [ FCC8F25A5F5A4D6BD57D917DB7A00D78, 099E7E1C85B8EF996F0E4C4098A71FB232CF2F9BC0D6EB630FF61971330D1E1E ] C:\Windows\SysWOW64\crtdll.dll
18:02:29.0384 0x12b4 C:\Windows\SysWOW64\crtdll.dll - ok
18:02:29.0387 0x12b4 [ 45FBAFFA68CBC29AC2563985CEE72B9C, 7E9F559C9EA65535DD523BBB3C6F6FF5CD1FB07851A05370DB7E60954B0F9123 ] C:\Windows\SysWOW64\cryptdlg.dll
18:02:29.0387 0x12b4 C:\Windows\SysWOW64\cryptdlg.dll - ok
18:02:29.0392 0x12b4 [ 1128637CAD49A8E3C8B5FA5D0A061525, 6B80E50D8296F9E2C978CC6BC002B964ACFD8F4BCF623F4770513792845B5278 ] C:\Windows\SysWOW64\cryptdll.dll
18:02:29.0392 0x12b4 C:\Windows\SysWOW64\cryptdll.dll - ok
18:02:29.0394 0x12b4 [ 0BA65122FFA7E37564EE86422DBF7AE8, 3A37FC503D3228D021473AECA285427382518CC36C197E4C9912745BDF3AB757 ] C:\Windows\SysWOW64\nlaapi.dll
18:02:29.0394 0x12b4 C:\Windows\SysWOW64\nlaapi.dll - ok
18:02:29.0399 0x12b4 [ 0B7E85364CB878E2AD531DB7B601A9E5, F5AD3018427F1CD68450EE5CB55AA9572546322580E0FB1E7888702A291C2380 ] C:\Windows\SysWOW64\NapiNSP.dll
18:02:29.0399 0x12b4 C:\Windows\SysWOW64\NapiNSP.dll - ok
18:02:29.0404 0x12b4 [ 5CF640EDDB1E40A5AB1BB743BCDEC610, 0313AA3F713C9F5B84DBB0B4DE78A96B173E9F7B4CF61C10FDC7DAE952DB04E5 ] C:\Windows\SysWOW64\pnrpnsp.dll
18:02:29.0404 0x12b4 C:\Windows\SysWOW64\pnrpnsp.dll - ok
18:02:29.0407 0x12b4 [ 5DF5D8CFD9B9573FA3B2C89D9061A240, 990EA273B640DF2D7E800C0CFF18550259C605A4951CD82CD9F1E7B6FF0C9533 ] C:\Windows\SysWOW64\winrnr.dll
18:02:29.0409 0x12b4 C:\Windows\SysWOW64\winrnr.dll - ok
18:02:29.0412 0x12b4 [ 9A85ABCE0FDD1AF8E79E731EB0B679F3, 2A610BEB16610FE2F2E9A50477A62A05481E8A5843A814955A0EDFF45D0304B3 ] C:\Windows\SysWOW64\dhcpcsvc.dll
18:02:29.0412 0x12b4 C:\Windows\SysWOW64\dhcpcsvc.dll - ok
18:02:29.0414 0x12b4 [ 81F6C1AE23B1C493D9E996C3103915D7, E22408B4D2EDE2F89E686A4FDCD4057BE27B86D050E9CB489F0FFB39C72AEC1D ] C:\Windows\SysWOW64\dhcpcsvc6.dll
18:02:29.0414 0x12b4 C:\Windows\SysWOW64\dhcpcsvc6.dll - ok
18:02:29.0417 0x12b4 ================ Scan generic autorun ======================
18:02:29.0424 0x12b4 [ A68ACDD128C173301FE03CC00A6834FD, BC5A3F2D48329B8F5260654C853587B931B56B5CA7CE2A1F954E0BD06C647286 ] C:\windows\system32\igfxtray.exe
18:02:29.0437 0x12b4 IgfxTray - ok
18:02:29.0447 0x12b4 [ 0F438391192ADBE82407F19079309B31, 175222C78AE6B2707ABDF7612FE80534D9BFD5584088BB1858DC44C90358E0E7 ] C:\windows\system32\hkcmd.exe
18:02:29.0459 0x12b4 HotKeysCmds - ok
18:02:29.0472 0x12b4 [ 4F9B7A0369D598CE305636122CA083E8, CD865805C60A1B6F0DDE7D5E595A5F76CA200A12B44838EE8270EC21A6996C06 ] C:\windows\system32\igfxpers.exe
18:02:29.0489 0x12b4 Persistence - ok
18:02:29.0728 0x12b4 [ 1E53162B343E5B89A3B7DE2EDBD3BC54, 7E4CEEBF2C16DB7DB689EACED9499BCC4923E89262836E1D1BD1F60DFD991A5C ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
18:02:30.0001 0x12b4 RtHDVCpl - ok
18:02:30.0001 0x12b4 ETDCtrl - ok
18:02:30.0017 0x12b4 [ C8560742F5E4C77A91A75C14D3583604, EDFFBCF84667C47621D78C3239DCC296AC5295249CCE01850AE2578EC59FF045 ] C:\Program Files (x86)\Intel\Bluetooth\BleServicesCtrl.exe
18:02:30.0032 0x12b4 BLEServicesCtrl - ok
18:02:30.0032 0x12b4 BTMTrayAgent - ok
18:02:30.0048 0x12b4 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
18:02:30.0095 0x12b4 Sidebar - ok
18:02:30.0095 0x12b4 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
18:02:30.0110 0x12b4 mctadmin - ok
18:02:30.0141 0x12b4 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
18:02:30.0188 0x12b4 Sidebar - ok
18:02:30.0188 0x12b4 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
18:02:30.0204 0x12b4 mctadmin - ok
18:02:30.0204 0x12b4 Waiting for KSN requests completion. In queue: 133
18:02:31.0218 0x12b4 Waiting for KSN requests completion. In queue: 133
18:02:32.0232 0x12b4 Waiting for KSN requests completion. In queue: 133
18:02:33.0293 0x12b4 Win FW state via NFP2: disabled
18:02:35.0960 0x12b4 ============================================================
18:02:35.0960 0x12b4 Scan finished
18:02:35.0960 0x12b4 ============================================================
18:02:35.0960 0x12e4 Detected object count: 0
18:02:35.0960 0x12e4 Actual detected object count: 0



Results of screen317's Security Check version 0.99.88
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
Windows Firewall Disabled!
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
Mozilla Firefox (32.0.3)
````````Process Check: objlist.exe by Laurent````````
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 6%
````````````````````End of Log``````````````````````
  • 0

#30
SleepyDude

SleepyDude

    Trusted Helper

  • Malware Removal
  • 4,401 posts

Hi,

 

The logs are looking good. How about installing one Antivirus program?

 

Any other issues with your computer?


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP